1 11372 10560 2 00000000:0031f1ab 131795770632346846 0 0 1 Обязательная метка\Высокий обязательный уровень WIN-0UOTFKKVN1S\User Procmon64.exe C:\Users\User\AppData\Local\Temp\Procmon64.exe "C:\Users\User\AppData\Local\Temp\Procmon64.exe" /originalpath "C:\Users\User\Downloads\ProcessMonitor\Procmon.exe" Sysinternals - www.sysinternals.com 3.50 Process Monitor 131795770645297135 0x7ff7ed960000 1224704 C:\Users\User\AppData\Local\Temp\Procmon64.exe 3.50 Sysinternals - www.sysinternals.com Process Monitor 131795770645297135 0x7ffac2b80000 40960 C:\Windows\SYSTEM32\VERSION.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Version Checking and File Installation Libraries 131795770645297135 0x7ffac3270000 40960 C:\Windows\SYSTEM32\FLTLIB.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека фильтров 131795770645297135 0x7ffac5630000 339968 C:\Windows\System32\thumbcache.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Кэш эскизов Майкрософт 131795770645297135 0x7ffac6c40000 2596864 C:\Windows\WinSxS\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.14393.953_none_42151e83c686086b\COMCTL32.dll 6.10 (rs1_release_inmarket.170303-1614) Microsoft Corporation Библиотека элементов управления взаимодействия с пользователем 131795770645297135 0x7ffac84f0000 299008 C:\Windows\system32\dataexchange.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation Data exchange 131795770645297135 0x7ffac88a0000 2842624 C:\Windows\system32\d3d11.dll 10.0.14393.953 (rs1_release_inmarket.170303-1614) Microsoft Corporation Direct3D 11 Runtime 131795770645297135 0x7ffac8df0000 1646592 C:\Windows\SYSTEM32\dbghelp.dll 10.0.14321.1024 (rs1_release.160715-1616) Microsoft Windows Image Helper 131795770645297135 0x7ffac9f50000 1736704 C:\Windows\SYSTEM32\WindowsCodecs.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Microsoft Windows Codecs Library 131795770645297135 0x7ffaca340000 1593344 C:\Windows\SYSTEM32\PROPSYS.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Система страниц свойств (Майкрософт) 131795770645297135 0x7ffaca5e0000 155648 C:\Windows\SYSTEM32\dwmapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Интерфейс API диспетчера окон рабочего стола (Майкрософт) 131795770645297135 0x7ffaca770000 1380352 C:\Windows\system32\dcomp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft DirectComposition Library 131795770645297135 0x7ffacadf0000 499712 C:\Windows\system32\apphelp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиентская библиотека совместимости приложений 131795770645297135 0x7ffacaf00000 610304 C:\Windows\SYSTEM32\uxtheme.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека тем UxTheme (Microsoft) 131795770645297135 0x7ffacb1e0000 1163264 C:\Windows\system32\twinapi.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation twinapi.appcore 131795770645297135 0x7ffacb780000 651264 C:\Windows\system32\dxgi.dll 10.0.14393.953 (rs1_release_inmarket.170303-1614) Microsoft Corporation DirectX Graphics Infrastructure 131795770645297135 0x7ffacc620000 176128 C:\Windows\system32\bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795770645297135 0x7ffacc6e0000 61440 C:\Windows\System32\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795770645297135 0x7ffacc6f0000 311296 C:\Windows\System32\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795770645297135 0x7ffacc740000 81920 C:\Windows\System32\profapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Profile Basic API 131795770645297135 0x7ffacc8f0000 1003520 C:\Windows\System32\ucrtbase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645297135 0x7ffacc9f0000 434176 C:\Windows\System32\bcryptPrimitives.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Cryptographic Primitives Library 131795770645297135 0x7ffacca60000 122880 C:\Windows\System32\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795770645297135 0x7ffaccae0000 692224 C:\Windows\System32\shcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795770645297135 0x7ffaccb90000 7180288 C:\Windows\System32\windows.storage.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API хранения Microsoft WinRT 131795770645297135 0x7ffacd270000 2215936 C:\Windows\System32\KERNELBASE.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645297135 0x7ffacd710000 638976 C:\Windows\System32\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645297135 0x7ffacd7b0000 270336 C:\Windows\System32\cfgmgr32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Configuration Manager DLL 131795770645297135 0x7ffacd810000 22056960 C:\Windows\System32\SHELL32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Общая библиотека оболочки Windows 131795770645297135 0x7ffaced20000 782336 C:\Windows\System32\OLEAUT32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795770645297135 0x7ffacee50000 1183744 C:\Windows\System32\RPCRT4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795770645297135 0x7ffacef90000 647168 C:\Windows\System32\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795770645297135 0x7ffacf030000 651264 C:\Windows\System32\clbcatq.dll 2001.12.10941.16384 (rs1_release.160715-1616) Microsoft Corporation COM+ Configuration Catalog 131795770645297135 0x7ffacf0d0000 704512 C:\Windows\System32\KERNEL32.DLL 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645297135 0x7ffacf1e0000 1417216 C:\Windows\System32\MSCTF.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Серверная библиотека MSCTF 131795770645297135 0x7ffacf770000 212992 C:\Windows\System32\GDI32.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation GDI Client DLL 131795770645297135 0x7ffacf820000 434176 C:\Windows\System32\WS2_32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation 32-разрядная библиотека Windows Socket 2.0 131795770645297135 0x7ffacf890000 188416 C:\Windows\System32\IMM32.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Multi-User Windows IMM32 API Client DLL 131795770645297135 0x7ffacf8c0000 1462272 C:\Windows\System32\USER32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795770645297135 0x7ffacfa30000 1024000 C:\Windows\System32\COMDLG32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека общих диалоговых окон 131795770645297135 0x7ffacfb30000 2916352 C:\Windows\System32\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795770645297135 0x7ffacfe20000 663552 C:\Windows\System32\advapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795770645297135 0x7ffad0070000 1277952 C:\Windows\System32\ole32.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft OLE для Windows 131795770645297135 0x7ffad01b0000 335872 C:\Windows\System32\SHLWAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека небольших программ оболочки 131795770645297135 0x7ffad0210000 364544 C:\Windows\System32\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795770645297135 0x7ffad0270000 1908736 C:\Windows\SYSTEM32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 2 10560 3108 11 00000000:0031f1ab 131795770594566098 0 0 0 Обязательная метка\Высокий обязательный уровень WIN-0UOTFKKVN1S\User Procmon.exe C:\Users\User\Downloads\ProcessMonitor\Procmon.exe "C:\Users\User\Downloads\ProcessMonitor\Procmon.exe" Sysinternals - www.sysinternals.com 3.50 Process Monitor 131795770645662037 0x1000000 2191360 C:\Users\User\Downloads\ProcessMonitor\Procmon.exe 3.50 Sysinternals - www.sysinternals.com Process Monitor 131795770645662037 0x5c020000 335872 C:\Windows\System32\wow64.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation Win32 Emulation on NT64 131795770645662037 0x5c080000 487424 C:\Windows\System32\wow64win.dll 10.0.14393.1884 (rs1_release.171101-1233) Microsoft Corporation Wow64 Console and Win32 API Logging 131795770645662037 0x5c100000 40960 C:\Windows\System32\wow64cpu.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation AMD64 Wow64 CPU 131795770645662037 0x60750000 1556480 C:\Program Files (x86)\360\Total Security\safemon\safemon.dll 8, 4, 0, 1420 Qihu 360 Software Co., Ltd. 360 Internet Security Internet Protection 131795770645662037 0x62530000 65536 C:\Windows\SysWOW64\DEVRTL.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Device Management Run Time Library 131795770645662037 0x627d0000 249856 C:\Windows\SysWOW64\edputil.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служебная программа EDP 131795770645662037 0x67690000 61440 C:\Windows\SysWOW64\sfc_os.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows File Protection 131795770645662037 0x676b0000 32768 C:\Windows\SysWOW64\FLTLIB.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека фильтров 131795770645662037 0x6dd70000 528384 C:\Windows\SysWOW64\RICHED20.dll 5.31.23.1231 Microsoft Corporation Rich Text Edit Control, v3.1 131795770645662037 0x6e710000 335872 C:\Windows\SysWOW64\Bcp47Langs.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation BCP47 Language Classes 131795770645662037 0x70a20000 94208 C:\Windows\SysWOW64\USP10.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Uniscribe Unicode script processor 131795770645662037 0x70ca0000 45056 C:\Windows\SysWOW64\NETUTILS.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API Helpers DLL 131795770645662037 0x70cb0000 65536 C:\Windows\SysWOW64\WKSCLI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Workstation Service Client DLL 131795770645662037 0x70cd0000 49152 C:\Windows\SysWOW64\pcacli.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Program Compatibility Assistant Client Module 131795770645662037 0x70ec0000 200704 C:\Windows\SysWOW64\msls31.dll 3.10.349.0 Microsoft Corporation Microsoft Line Services library file 131795770645662037 0x71140000 77824 C:\Windows\SysWOW64\NETAPI32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API DLL 131795770645662037 0x72520000 24576 C:\Windows\SysWOW64\Riched32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Wrapper Dll for Richedit 1.0 131795770645662037 0x725e0000 2273280 C:\Windows\SysWOW64\iertutil.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служебная программа времени выполнения для Internet Explorer 131795770645662037 0x728e0000 1372160 C:\Windows\SysWOW64\PROPSYS.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Система страниц свойств (Майкрософт) 131795770645662037 0x72b90000 126976 C:\Windows\SysWOW64\dwmapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Интерфейс API диспетчера окон рабочего стола (Майкрософт) 131795770645662037 0x72cc0000 1658880 C:\Windows\SysWOW64\urlmon.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширения OLE32 для Win32 131795770645662037 0x74110000 479232 C:\Windows\SysWOW64\uxtheme.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека тем UxTheme (Microsoft) 131795770645662037 0x74190000 110592 C:\Windows\SysWOW64\bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795770645662037 0x744d0000 2138112 C:\Windows\WinSxS\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.14393.953_none_89c2555adb023171\COMCTL32.dll 6.10 (rs1_release_inmarket.170303-1614) Microsoft Corporation Библиотека элементов управления взаимодействия с пользователем 131795770645662037 0x746e0000 32768 C:\Windows\SysWOW64\VERSION.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Version Checking and File Installation Libraries 131795770645662037 0x746f0000 106496 C:\Windows\SysWOW64\USERENV.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Userenv 131795770645662037 0x74710000 90112 C:\Windows\SysWOW64\MPR.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека маршрутизации для нескольких служб доступа 131795770645662037 0x74730000 598016 C:\Windows\SysWOW64\apphelp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиентская библиотека совместимости приложений 131795770645662037 0x747d0000 40960 C:\Windows\SysWOW64\CRYPTBASE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base cryptographic API DLL 131795770645662037 0x747e0000 126976 C:\Windows\SysWOW64\SspiCli.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Security Support Provider Interface 131795770645662037 0x74800000 151552 C:\Windows\SysWOW64\IMM32.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Multi-User Windows IMM32 API Client DLL 131795770645662037 0x74910000 2170880 C:\Windows\SysWOW64\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795770645662037 0x74b30000 53248 C:\Windows\SysWOW64\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795770645662037 0x74b60000 790528 C:\Windows\SysWOW64\RPCRT4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795770645662037 0x74c30000 1417216 C:\Windows\SysWOW64\gdi32full.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation GDI Client DLL 131795770645662037 0x74d90000 24576 C:\Windows\SysWOW64\PSAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Process Status Helper 131795770645662037 0x74da0000 778240 C:\Windows\SysWOW64\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795770645662037 0x74e60000 557056 C:\Windows\SysWOW64\shcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795770645662037 0x74ef0000 540672 C:\Windows\SysWOW64\clbcatq.dll 2001.12.10941.16384 (rs1_release.160715-1616) Microsoft Corporation COM+ Configuration Catalog 131795770645662037 0x74fd0000 405504 C:\Windows\SysWOW64\WS2_32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation 32-разрядная библиотека Windows Socket 2.0 131795770645662037 0x75040000 282624 C:\Windows\SysWOW64\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795770645662037 0x75090000 1265664 C:\Windows\SysWOW64\MSCTF.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Серверная библиотека MSCTF 131795770645662037 0x751e0000 1708032 C:\Windows\SysWOW64\KERNELBASE.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645662037 0x75390000 266240 C:\Windows\SysWOW64\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795770645662037 0x75560000 487424 C:\Windows\SysWOW64\advapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795770645662037 0x756c0000 5693440 C:\Windows\SysWOW64\windows.storage.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API хранения Microsoft WinRT 131795770645662037 0x75c90000 286720 C:\Windows\SysWOW64\SHLWAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека небольших программ оболочки 131795770645662037 0x75ce0000 20811776 C:\Windows\SysWOW64\SHELL32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Общая библиотека оболочки Windows 131795770645662037 0x770c0000 4239360 C:\Windows\SysWOW64\SETUPAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Setup API 131795770645662037 0x774d0000 86016 C:\Windows\SysWOW64\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795770645662037 0x774f0000 61440 C:\Windows\SysWOW64\profapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Profile Basic API 131795770645662037 0x77560000 1437696 C:\Windows\SysWOW64\USER32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795770645662037 0x776c0000 368640 C:\Windows\SysWOW64\bcryptPrimitives.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation Windows Cryptographic Primitives Library 131795770645662037 0x77780000 503808 C:\Windows\SysWOW64\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645662037 0x77800000 606208 C:\Windows\SysWOW64\OLEAUT32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795770645662037 0x77ac0000 966656 C:\Windows\SysWOW64\ole32.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft OLE для Windows 131795770645662037 0x77bb0000 176128 C:\Windows\SysWOW64\GDI32.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation GDI Client DLL 131795770645662037 0x77be0000 937984 C:\Windows\SysWOW64\COMDLG32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека общих диалоговых окон 131795770645662037 0x77cd0000 221184 C:\Windows\SysWOW64\cfgmgr32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Configuration Manager DLL 131795770645662037 0x77d20000 1585152 C:\Windows\SysWOW64\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 131795770645662037 0x7ffad0270000 1908736 C:\Windows\SYSTEM32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 3 4048 580 4 00000000:000003e7 131765778109600457 0 0 1 Обязательная метка\Обязательный уровень системы NT AUTHORITY\СИСТЕМА SearchIndexer.exe C:\Windows\system32\SearchIndexer.exe C:\Windows\system32\SearchIndexer.exe /Embedding Microsoft Corporation 7.0.14393.0 (rs1_release.160715-1616) Индексатор службы Microsoft Windows Search 131795770645302950 0x7ff63db40000 929792 C:\Windows\system32\SearchIndexer.exe 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Индексатор службы Microsoft Windows Search 131795770645302950 0x7ffab1fd0000 2277376 C:\Windows\System32\msxml3.dll 8.110.14393.1532 Microsoft Corporation MSXML 3.0 131795770645302950 0x7ffab4b90000 655360 C:\Windows\System32\StructuredQuery.dll 7.0.14393.2068 (rs1_release.180209-1727) Microsoft Corporation Structured Query 131795770645302950 0x7ffab7780000 2576384 C:\Windows\system32\MSSRCH.DLL 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Встроенный поиск (Майкрософт) 131795770645302950 0x7ffab7a00000 3424256 C:\Windows\system32\TQUERY.DLL 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Запросы Microsoft Tripoli 131795770645302950 0x7ffabd990000 720896 C:\Windows\system32\ElsLad.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ELS Language Detection 131795770645302950 0x7ffabe4d0000 286720 C:\Windows\System32\MSWB7.dll 10.0.14393.1737 (rs1_release_inmarket.170914-1249) Microsoft Corporation MSWB7 DLL 131795770645302950 0x7ffabf010000 98304 C:\Windows\SYSTEM32\elscore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL ядра платформы Els 131795770645302950 0x7ffac0bf0000 3559424 C:\Windows\System32\ActXPrxy.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation ActiveX Interface Marshaling Library 131795770645302950 0x7ffac2960000 143360 C:\Windows\system32\mssprxy.dll 7.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation Microsoft Search Proxy 131795770645302950 0x7ffac34c0000 81920 C:\Windows\system32\vss_ps.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation Microsoft® Volume Shadow Copy Service proxy/stub 131795770645302950 0x7ffac3840000 3088384 C:\Windows\system32\ESENT.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширяемая подсистема хранения данных ESE для Microsoft(R) Windows(R) 131795770645302950 0x7ffac4000000 274432 C:\Windows\SYSTEM32\policymanager.dll 10.0.14393.2035 (rs1_release_inmarket.180110-1910) Microsoft Corporation Policy Manager DLL 131795770645302950 0x7ffac4e70000 102400 C:\Windows\system32\samcli.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Security Accounts Manager Client DLL 131795770645302950 0x7ffac6410000 98304 C:\Windows\system32\VssTrace.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека трассировки службы теневого копирования тома Microsoft® 131795770645302950 0x7ffac6430000 1581056 C:\Windows\SYSTEM32\vssapi.dll 10.0.14393.953 (rs1_release_inmarket.170303-1614) Microsoft Corporation Microsoft® Volume Shadow Copy Requestor/Writer Services API DLL 131795770645302950 0x7ffac7e40000 28672 C:\Windows\system32\Msidle.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Idle Monitor 131795770645302950 0x7ffac9bb0000 479232 C:\Windows\System32\ES.DLL 2001.12.10941.16384 (rs1_release.160715-1616) Microsoft Corporation COM+ 131795770645302950 0x7ffaca340000 1593344 C:\Windows\system32\propsys.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Система страниц свойств (Майкрософт) 131795770645302950 0x7ffaca4e0000 77824 C:\Windows\SYSTEM32\wtsapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Remote Desktop Session Host Server SDK APIs 131795770645302950 0x7ffaca570000 421888 C:\Windows\system32\Bcp47Langs.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation BCP47 Language Classes 131795770645302950 0x7ffaca610000 143360 C:\Windows\system32\SAMLIB.dll 10.0.14393.82 (rs1_release.160805-1735) Microsoft Corporation SAM Library DLL 131795770645302950 0x7ffacb140000 593920 C:\Windows\system32\msvcp110_win.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Microsoft® STL110 C++ Runtime Library 131795770645302950 0x7ffacb3f0000 163840 C:\Windows\system32\DEVOBJ.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Device Information Set DLL 131795770645302950 0x7ffacb420000 204800 C:\Windows\SYSTEM32\ntmarta.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик Windows NT MARTA 131795770645302950 0x7ffacbe20000 53248 C:\Windows\system32\netutils.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API Helpers DLL 131795770645302950 0x7ffacbe40000 126976 C:\Windows\system32\USERENV.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Userenv 131795770645302950 0x7ffacc170000 45056 C:\Windows\system32\CRYPTBASE.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base cryptographic API DLL 131795770645302950 0x7ffacc350000 180224 C:\Windows\system32\sspicli.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Security Support Provider Interface 131795770645302950 0x7ffacc520000 622592 C:\Windows\SYSTEM32\sxs.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Fusion 2.5 131795770645302950 0x7ffacc5c0000 352256 C:\Windows\system32\WINSTA.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Winstation Library 131795770645302950 0x7ffacc620000 176128 C:\Windows\System32\bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795770645302950 0x7ffacc6e0000 61440 C:\Windows\System32\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795770645302950 0x7ffacc6f0000 311296 C:\Windows\System32\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795770645302950 0x7ffacc740000 81920 C:\Windows\System32\profapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Profile Basic API 131795770645302950 0x7ffacc8f0000 1003520 C:\Windows\System32\ucrtbase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645302950 0x7ffacc9f0000 434176 C:\Windows\System32\bcryptPrimitives.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Cryptographic Primitives Library 131795770645302950 0x7ffacca60000 122880 C:\Windows\System32\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795770645302950 0x7ffaccae0000 692224 C:\Windows\System32\shcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795770645302950 0x7ffaccb90000 7180288 C:\Windows\System32\Windows.Storage.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API хранения Microsoft WinRT 131795770645302950 0x7ffacd270000 2215936 C:\Windows\System32\KERNELBASE.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645302950 0x7ffacd710000 638976 C:\Windows\System32\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645302950 0x7ffacd7b0000 270336 C:\Windows\System32\cfgmgr32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Configuration Manager DLL 131795770645302950 0x7ffaced20000 782336 C:\Windows\System32\OLEAUT32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795770645302950 0x7ffacee50000 1183744 C:\Windows\System32\RPCRT4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795770645302950 0x7ffacef90000 647168 C:\Windows\System32\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795770645302950 0x7ffacf030000 651264 C:\Windows\System32\clbcatq.dll 2001.12.10941.16384 (rs1_release.160715-1616) Microsoft Corporation COM+ Configuration Catalog 131795770645302950 0x7ffacf0d0000 704512 C:\Windows\System32\KERNEL32.DLL 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645302950 0x7ffacf770000 212992 C:\Windows\System32\GDI32.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation GDI Client DLL 131795770645302950 0x7ffacf820000 434176 C:\Windows\System32\WS2_32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation 32-разрядная библиотека Windows Socket 2.0 131795770645302950 0x7ffacf8c0000 1462272 C:\Windows\System32\USER32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795770645302950 0x7ffacfb30000 2916352 C:\Windows\System32\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795770645302950 0x7ffacfe20000 663552 C:\Windows\System32\advapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795770645302950 0x7ffad0070000 1277952 C:\Windows\System32\ole32.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft OLE для Windows 131795770645302950 0x7ffad01b0000 335872 C:\Windows\System32\shlwapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека небольших программ оболочки 131795770645302950 0x7ffad0210000 364544 C:\Windows\System32\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795770645302950 0x7ffad0270000 1908736 C:\Windows\SYSTEM32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 4 580 484 17 00000000:000003e7 131765776275984299 0 0 1 Обязательная метка\Обязательный уровень системы NT AUTHORITY\СИСТЕМА services.exe C:\Windows\system32\services.exe C:\Windows\system32\services.exe Microsoft Corporation 10.0.14393.0 (rs1_release.160715-1616) Приложение служб и контроллеров 5 9600 664 6 00000000:0031f1da 131795770643965692 131795770702408501 0 1 Обязательная метка\Средний обязательный уровень WIN-0UOTFKKVN1S\User DllHost.exe C:\Windows\system32\DllHost.exe C:\Windows\system32\DllHost.exe /Processid:{AB8902B4-09CA-4BB6-B78D-A8F59079A8D5} Microsoft Corporation 10.0.14393.0 (rs1_release.160715-1616) COM Surrogate 131795770645313279 0x7ff7a2280000 36864 C:\Windows\system32\DllHost.exe 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation COM Surrogate 131795770645320867 0x7ffac5630000 339968 C:\Windows\System32\thumbcache.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Кэш эскизов Майкрософт 131795770645748052 0x7ffaca340000 1593344 C:\Windows\System32\propsys.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Система страниц свойств (Майкрософт) 131795770645313279 0x7ffacaf00000 610304 C:\Windows\system32\uxtheme.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека тем UxTheme (Microsoft) 131795770645313279 0x7ffacc6e0000 61440 C:\Windows\System32\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795770645313279 0x7ffacc8f0000 1003520 C:\Windows\System32\ucrtbase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645313279 0x7ffacc9f0000 434176 C:\Windows\System32\bcryptPrimitives.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Cryptographic Primitives Library 131795770645313279 0x7ffacca60000 122880 C:\Windows\System32\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795770645321771 0x7ffaccae0000 692224 C:\Windows\System32\SHCore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795770645313279 0x7ffacd270000 2215936 C:\Windows\System32\KERNELBASE.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645749803 0x7ffacd710000 638976 C:\Windows\System32\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645749049 0x7ffaced20000 782336 C:\Windows\System32\oleaut32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795770645313279 0x7ffacee50000 1183744 C:\Windows\System32\RPCRT4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795770645313279 0x7ffacef90000 647168 C:\Windows\System32\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795770645313279 0x7ffacf030000 651264 C:\Windows\System32\clbcatq.dll 2001.12.10941.16384 (rs1_release.160715-1616) Microsoft Corporation COM+ Configuration Catalog 131795770645313279 0x7ffacf0d0000 704512 C:\Windows\System32\KERNEL32.DLL 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645313279 0x7ffacf770000 212992 C:\Windows\System32\GDI32.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation GDI Client DLL 131795770645313279 0x7ffacf890000 188416 C:\Windows\System32\IMM32.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Multi-User Windows IMM32 API Client DLL 131795770645313279 0x7ffacf8c0000 1462272 C:\Windows\System32\user32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795770645313279 0x7ffacfb30000 2916352 C:\Windows\System32\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795770645313279 0x7ffad0210000 364544 C:\Windows\System32\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795770645313279 0x7ffad0270000 1908736 C:\Windows\SYSTEM32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 6 664 580 4 00000000:000003e7 131765776282506625 0 0 1 Обязательная метка\Обязательный уровень системы NT AUTHORITY\СИСТЕМА svchost.exe C:\Windows\system32\svchost.exe C:\Windows\system32\svchost.exe -k DcomLaunch Microsoft Corporation 10.0.14393.0 (rs1_release.160715-1616) Хост-процесс для служб Windows 131795770645375819 0x7ff718c20000 57344 C:\Windows\system32\svchost.exe 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Хост-процесс для служб Windows 131795770645375819 0x7ffabae40000 110592 C:\Windows\SYSTEM32\capauthz.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API авторизации возможностей 131795770645375819 0x7ffabc510000 90112 C:\Windows\system32\execmodelproxy.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ExecModelProxy 131795770645375819 0x7ffabc570000 94208 C:\Windows\SYSTEM32\licensemanagerapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation "LicenseManagerApi.DYNLINK" 131795770645375819 0x7ffabc6a0000 61440 C:\Windows\system32\SebBackgroundManagerPolicy.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation <d> SEB Background Manager Policy DLL 131795770645375819 0x7ffabc7e0000 73728 C:\Windows\system32\SmartCardBackgroundPolicy.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SmartCardBackgroundPolicy 131795770645375819 0x7ffabc8c0000 61440 C:\Windows\system32\CbtBackgroundManagerPolicy.dll 10.0.14393.479 (rs1_release.161110-2025) Microsoft Corporation <d> CBT Background Manager Policy DLL 131795770645375819 0x7ffabc8d0000 176128 C:\Windows\System32\ACPBackgroundManagerPolicy.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation <d> ACP Background Manager Policy DLL 131795770645375819 0x7ffabc900000 73728 C:\Windows\System32\BackgroundMediaPolicy.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation <d> Background Media Policy DLL 131795770645375819 0x7ffabc920000 270336 C:\Windows\SYSTEM32\execmodelclient.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation ExecModelClient 131795770645375819 0x7ffac0bf0000 3559424 C:\Windows\System32\ActXPrxy.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation ActiveX Interface Marshaling Library 131795770645375819 0x7ffac20d0000 110592 C:\Windows\system32\RmClient.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Resource Manager Client 131795770645375819 0x7ffac23c0000 331776 C:\Windows\System32\OneCoreCommonProxyStub.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation OneCore Common Proxy Stub 131795770645375819 0x7ffac42a0000 659456 C:\Windows\System32\StateRepository.Core.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation StateRepository Core 131795770645375819 0x7ffac4450000 86016 C:\Windows\SYSTEM32\usermgrcli.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation UserMgr API DLL 131795770645375819 0x7ffac46d0000 4161536 C:\Windows\System32\Windows.StateRepository.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Сервер Windows StateRepository API Server 131795770645375819 0x7ffac7720000 1601536 C:\Windows\System32\OneCoreUAPCommonProxyStub.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation OneCoreUAP Common Proxy Stub 131795770645375819 0x7ffaca250000 49152 C:\Windows\SYSTEM32\bi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Background Broker Infrastructure Client Library 131795770645375819 0x7ffaca4e0000 77824 C:\Windows\SYSTEM32\wtsapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Remote Desktop Session Host Server SDK APIs 131795770645375819 0x7ffaca640000 770048 c:\windows\system32\CoreMessaging.dll 10.0.14393.0 Microsoft Corporation Microsoft CoreMessaging Dll 131795770645375819 0x7ffaca740000 135168 c:\windows\system32\DAB.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL брокера активности компьютера 131795770645375819 0x7ffacabd0000 69632 C:\Windows\System32\OnDemandBrokerClient.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation OnDemandBrokerClient 131795770645375819 0x7ffacad70000 278528 c:\windows\system32\BrokerLib.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Broker Base Library 131795770645375819 0x7ffacadf0000 499712 C:\Windows\system32\apphelp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиентская библиотека совместимости приложений 131795770645375819 0x7ffacae70000 409600 c:\windows\system32\systemeventsbrokerserver.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Брокер системных событий 131795770645375819 0x7ffacafc0000 229376 C:\Windows\SYSTEM32\resourcepolicyserver.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Resource Policy RM Service Extension 131795770645375819 0x7ffacb000000 53248 c:\windows\system32\SYSNTFY.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Windows Notifications Dynamic Link Library 131795770645375819 0x7ffacb010000 348160 C:\Windows\SYSTEM32\psmserviceexthost.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Resource Manager PSM Service Extension 131795770645375819 0x7ffacb070000 69632 C:\Windows\SYSTEM32\embeddedmodesvcapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Embedded Mode Service Client DLL 131795770645375819 0x7ffacb140000 593920 c:\windows\system32\msvcp110_win.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Microsoft® STL110 C++ Runtime Library 131795770645375819 0x7ffacb1e0000 1163264 C:\Windows\SYSTEM32\twinapi.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation twinapi.appcore 131795770645375819 0x7ffacb300000 364544 c:\windows\system32\VEEventDispatcher.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Visual Element Event dispatcher 131795770645375819 0x7ffacb390000 225280 c:\windows\system32\psmsrv.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Process State Manager (PSM) Service 131795770645375819 0x7ffacb3d0000 110592 c:\windows\system32\ResourcePolicyClient.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Resource Policy Client 131795770645375819 0x7ffacb3f0000 163840 c:\windows\system32\DEVOBJ.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Device Information Set DLL 131795770645375819 0x7ffacb420000 204800 C:\Windows\SYSTEM32\ntmarta.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик Windows NT MARTA 131795770645375819 0x7ffacb4f0000 794624 c:\windows\system32\bisrv.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служба инфраструктуры фоновых задач 131795770645375819 0x7ffacb5c0000 913408 c:\windows\system32\rpcss.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Distributed COM Services 131795770645375819 0x7ffacb6e0000 49152 C:\Windows\SYSTEM32\HID.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека пользователя HID 131795770645375819 0x7ffacb6f0000 143360 C:\Windows\SYSTEM32\gpapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиентские функции API групповой политики 131795770645375819 0x7ffacb720000 344064 c:\windows\system32\mintdh.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Вспомогательная библиотека трассировки событий 131795770645375819 0x7ffacb780000 651264 c:\windows\system32\dxgi.dll 10.0.14393.953 (rs1_release_inmarket.170303-1614) Microsoft Corporation DirectX Graphics Infrastructure 131795770645375819 0x7ffacb820000 712704 C:\Windows\SYSTEM32\tdh.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Вспомогательная библиотека трассировки событий 131795770645375819 0x7ffacb8d0000 114688 C:\Windows\SYSTEM32\umpoext.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширения службы пользовательского режима питания 131795770645375819 0x7ffacb8f0000 147456 c:\windows\system32\umpo.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служба пользовательского режима питания 131795770645375819 0x7ffacb920000 81920 C:\Windows\SYSTEM32\WLDP.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Политика блокировки Windows 131795770645375819 0x7ffacb940000 131072 c:\windows\system32\umpnpmgr.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Пользовательский режим службы самонастройки (Plug-and-Play) 131795770645375819 0x7ffacbbb0000 208896 C:\Windows\system32\rsaenh.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Enhanced Cryptographic Provider 131795770645375819 0x7ffacbbf0000 40960 C:\Windows\SYSTEM32\DPAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Data Protection API 131795770645375819 0x7ffacbe40000 126976 C:\Windows\System32\Userenv.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Userenv 131795770645375819 0x7ffacc150000 94208 C:\Windows\SYSTEM32\CRYPTSP.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Cryptographic Service Provider API 131795770645375819 0x7ffacc170000 45056 C:\Windows\System32\CRYPTBASE.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base cryptographic API DLL 131795770645375819 0x7ffacc350000 180224 c:\windows\system32\SspiCli.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Security Support Provider Interface 131795770645375819 0x7ffacc500000 102400 c:\windows\system32\EventAggregation.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Event Aggregation User Mode Library 131795770645375819 0x7ffacc5c0000 352256 C:\Windows\SYSTEM32\WINSTA.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Winstation Library 131795770645375819 0x7ffacc620000 176128 c:\windows\system32\bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795770645375819 0x7ffacc6e0000 61440 C:\Windows\System32\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795770645375819 0x7ffacc6f0000 311296 C:\Windows\System32\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795770645375819 0x7ffacc740000 81920 C:\Windows\System32\profapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Profile Basic API 131795770645375819 0x7ffacc760000 65536 C:\Windows\System32\MSASN1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ASN.1 Runtime APIs 131795770645375819 0x7ffacc8f0000 1003520 C:\Windows\System32\ucrtbase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645375819 0x7ffacc9f0000 434176 C:\Windows\System32\bcryptPrimitives.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Cryptographic Primitives Library 131795770645375819 0x7ffacca60000 122880 C:\Windows\System32\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795770645375819 0x7ffacca80000 348160 C:\Windows\System32\WINTRUST.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation Microsoft Trust Verification APIs 131795770645375819 0x7ffaccae0000 692224 C:\Windows\System32\shcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795770645375819 0x7ffaccb90000 7180288 C:\Windows\System32\windows.storage.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API хранения Microsoft WinRT 131795770645375819 0x7ffacd270000 2215936 C:\Windows\System32\KERNELBASE.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645375819 0x7ffacd490000 1871872 C:\Windows\System32\CRYPT32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API32 криптографии 131795770645375819 0x7ffacd710000 638976 C:\Windows\System32\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645375819 0x7ffacd7b0000 270336 C:\Windows\System32\cfgmgr32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Configuration Manager DLL 131795770645375819 0x7ffaced20000 782336 C:\Windows\System32\OLEAUT32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795770645375819 0x7ffacede0000 450560 C:\Windows\System32\coml2.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft COM for Windows 131795770645375819 0x7ffacee50000 1183744 C:\Windows\System32\RPCRT4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795770645375819 0x7ffacef90000 647168 C:\Windows\System32\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795770645375819 0x7ffacf030000 651264 C:\Windows\System32\clbcatq.dll 2001.12.10941.16384 (rs1_release.160715-1616) Microsoft Corporation COM+ Configuration Catalog 131795770645375819 0x7ffacf0d0000 704512 C:\Windows\System32\KERNEL32.DLL 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645375819 0x7ffacf770000 212992 C:\Windows\System32\gdi32.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation GDI Client DLL 131795770645375819 0x7ffacf8c0000 1462272 C:\Windows\System32\USER32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795770645375819 0x7ffacfb30000 2916352 C:\Windows\System32\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795770645375819 0x7ffacfe20000 663552 C:\Windows\System32\advapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795770645375819 0x7ffad0070000 1277952 C:\Windows\System32\ole32.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft OLE для Windows 131795770645375819 0x7ffad01b0000 335872 C:\Windows\System32\shlwapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека небольших программ оболочки 131795770645375819 0x7ffad0210000 364544 C:\Windows\System32\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795770645375819 0x7ffad0270000 1908736 C:\Windows\SYSTEM32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 7 884 580 4 00000000:000003e5 131765776292813936 0 0 1 Обязательная метка\Обязательный уровень системы NT AUTHORITY\LOCAL SERVICE svchost.exe C:\Windows\System32\svchost.exe C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted Microsoft Corporation 10.0.14393.0 (rs1_release.160715-1616) Хост-процесс для служб Windows 131795770645326170 0x7ff718c20000 57344 C:\Windows\System32\svchost.exe 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Хост-процесс для служб Windows 131795770645326170 0x7ffab9230000 143360 C:\Windows\SYSTEM32\bluetoothapis.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Bluetooth Usermode Api host 131795770645326170 0x7ffab9580000 118784 C:\Windows\system32\BthRadioMedia.dll 10.0.14393.351 (rs1_release_inmarket.161014-1755) Microsoft Corporation Bluetooth Radio Media Provider 131795770645326170 0x7ffab95a0000 77824 C:\Windows\system32\WlanRadioManager.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Wlan Radio Manager 131795770645326170 0x7ffaba920000 155648 c:\windows\system32\rmapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Radio Manager API 131795770645326170 0x7ffabae80000 69632 C:\Windows\system32\NfcRadioMedia.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation NFC Radio Media Provider 131795770645326170 0x7ffabb8a0000 81920 C:\Windows\system32\XboxGipRadioManager.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Xbox GIP Radio Manager 131795770645326170 0x7ffabc0e0000 81920 C:\Windows\system32\WwanRadioManager.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Wwan Radio Manager 131795770645326170 0x7ffabc510000 90112 C:\Windows\system32\execmodelproxy.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ExecModelProxy 131795770645326170 0x7ffabe850000 155648 C:\Windows\System32\IDStore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Identity Store 131795770645326170 0x7ffac05f0000 94208 C:\Windows\SYSTEM32\wwapi.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation WWAN API 131795770645326170 0x7ffac0bf0000 3559424 C:\Windows\System32\ActXPrxy.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation ActiveX Interface Marshaling Library 131795770645326170 0x7ffac1fd0000 999424 C:\Windows\system32\wbem\fastprox.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation WMI Custom Marshaller 131795770645326170 0x7ffac21d0000 81920 C:\Windows\system32\wbem\wbemsvc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation WMI 131795770645326170 0x7ffac23c0000 331776 C:\Windows\System32\OneCoreCommonProxyStub.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation OneCore Common Proxy Stub 131795770645326170 0x7ffac41a0000 77824 C:\Windows\System32\fdproxy.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation Function Discovery Proxy Dll 131795770645326170 0x7ffac4220000 520192 C:\Windows\SYSTEM32\wbemcomn.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation WMI 131795770645326170 0x7ffac4450000 86016 C:\Windows\SYSTEM32\usermgrcli.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation UserMgr API DLL 131795770645326170 0x7ffac4470000 65536 C:\Windows\system32\wbem\wbemprox.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation WMI 131795770645326170 0x7ffac4df0000 462848 c:\windows\system32\provsvc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Домашняя группа Windows 131795770645326170 0x7ffac60e0000 221184 C:\Windows\System32\XmlLite.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft XmlLite Library 131795770645326170 0x7ffac6710000 172032 C:\Windows\System32\FunDisc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL обнаружения функции 131795770645326170 0x7ffac69c0000 839680 c:\windows\system32\WINHTTP.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Службы HTTP Windows 131795770645326170 0x7ffac78c0000 163840 C:\Windows\System32\shacct.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Shell Accounts Classes 131795770645326170 0x7ffac79c0000 57344 C:\Windows\System32\npmproxy.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Network List Manager Proxy 131795770645326170 0x7ffac7aa0000 401408 C:\Windows\system32\wlanapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows WLAN AutoConfig Client Side API DLL 131795770645326170 0x7ffac7f80000 208896 c:\windows\system32\wscsvc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служба центра обеспечения безопасности Windows 131795770645326170 0x7ffac83d0000 106496 C:\Windows\SYSTEM32\dhcpcsvc.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служба DHCP-клиента 131795770645326170 0x7ffac83f0000 90112 C:\Windows\SYSTEM32\dhcpcsvc6.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиент DHCPv6 131795770645326170 0x7ffac8490000 294912 C:\Windows\System32\dhcpcore6.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиент DHCPv6 131795770645326170 0x7ffac8810000 45056 C:\Windows\SYSTEM32\WINNSI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Network Store Information RPC interface 131795770645326170 0x7ffac8c90000 385024 c:\windows\system32\dhcpcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служба DHCP-клиента 131795770645326170 0x7ffac8df0000 1646592 c:\windows\system32\dbghelp.dll 10.0.14321.1024 (rs1_release.160715-1616) Microsoft Windows Image Helper 131795770645326170 0x7ffac9c30000 1732608 c:\windows\system32\wevtsvc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служба протоколирования событий 131795770645326170 0x7ffaca250000 49152 C:\Windows\SYSTEM32\bi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Background Broker Infrastructure Client Library 131795770645326170 0x7ffaca2a0000 192512 c:\windows\system32\timebrokerserver.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Брокер событий времени 131795770645326170 0x7ffaca330000 36864 c:\windows\system32\nrpsrv.DLL 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Name Resolution Proxy (NRP) RPC interface 131795770645326170 0x7ffaca340000 1593344 C:\Windows\system32\propsys.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Система страниц свойств (Майкрософт) 131795770645326170 0x7ffaca4d0000 53248 c:\windows\system32\lmhsvc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL служб транспорта TCPIP NetBios 131795770645326170 0x7ffaca4e0000 77824 C:\Windows\SYSTEM32\wtsapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Remote Desktop Session Host Server SDK APIs 131795770645326170 0x7ffaca610000 143360 C:\Windows\System32\SAMLIB.dll 10.0.14393.82 (rs1_release.160805-1735) Microsoft Corporation SAM Library DLL 131795770645326170 0x7ffacad70000 278528 c:\windows\system32\BrokerLib.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Broker Base Library 131795770645326170 0x7ffacb1e0000 1163264 C:\Windows\System32\twinapi.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation twinapi.appcore 131795770645326170 0x7ffacb360000 176128 C:\Windows\SYSTEM32\fwbase.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Firewall Base DLL 131795770645326170 0x7ffacb3f0000 163840 c:\windows\system32\DEVOBJ.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Device Information Set DLL 131795770645326170 0x7ffacb420000 204800 C:\Windows\SYSTEM32\ntmarta.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик Windows NT MARTA 131795770645326170 0x7ffacb460000 548864 C:\Windows\SYSTEM32\firewallapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API брандмауэра Windows 131795770645326170 0x7ffacb6e0000 49152 c:\windows\system32\HID.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека пользователя HID 131795770645326170 0x7ffacb6f0000 143360 C:\Windows\SYSTEM32\gpapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиентские функции API групповой политики 131795770645326170 0x7ffacb920000 81920 C:\Windows\SYSTEM32\WLDP.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Политика блокировки Windows 131795770645326170 0x7ffacbbb0000 208896 C:\Windows\system32\rsaenh.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Enhanced Cryptographic Provider 131795770645326170 0x7ffacbd30000 229376 C:\Windows\SYSTEM32\IPHLPAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API вспомогательного приложения IP 131795770645326170 0x7ffacbd70000 659456 C:\Windows\SYSTEM32\DNSAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Динамическая библиотека API DNS-клиента 131795770645326170 0x7ffacbe20000 53248 c:\windows\system32\netutils.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API Helpers DLL 131795770645326170 0x7ffacbe40000 126976 c:\windows\system32\USERENV.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Userenv 131795770645326170 0x7ffacbfb0000 376832 C:\Windows\system32\mswsock.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширение поставщика службы API Microsoft Windows Sockets 2.0 131795770645326170 0x7ffacc150000 94208 C:\Windows\SYSTEM32\CRYPTSP.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Cryptographic Service Provider API 131795770645326170 0x7ffacc170000 45056 C:\Windows\SYSTEM32\CRYPTBASE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base cryptographic API DLL 131795770645326170 0x7ffacc350000 180224 C:\Windows\System32\sspicli.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Security Support Provider Interface 131795770645326170 0x7ffacc5c0000 352256 C:\Windows\SYSTEM32\WINSTA.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Winstation Library 131795770645326170 0x7ffacc620000 176128 c:\windows\system32\bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795770645326170 0x7ffacc6e0000 61440 C:\Windows\System32\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795770645326170 0x7ffacc6f0000 311296 C:\Windows\System32\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795770645326170 0x7ffacc740000 81920 C:\Windows\System32\profapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Profile Basic API 131795770645326170 0x7ffacc760000 65536 C:\Windows\System32\MSASN1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ASN.1 Runtime APIs 131795770645326170 0x7ffacc8f0000 1003520 C:\Windows\System32\ucrtbase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645326170 0x7ffacc9f0000 434176 C:\Windows\System32\bcryptPrimitives.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Cryptographic Primitives Library 131795770645326170 0x7ffacca60000 122880 C:\Windows\System32\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795770645326170 0x7ffacca80000 348160 C:\Windows\System32\WINTRUST.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation Microsoft Trust Verification APIs 131795770645326170 0x7ffaccae0000 692224 C:\Windows\System32\shcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795770645326170 0x7ffacd270000 2215936 C:\Windows\System32\KERNELBASE.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645326170 0x7ffacd490000 1871872 C:\Windows\System32\CRYPT32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API32 криптографии 131795770645326170 0x7ffacd710000 638976 C:\Windows\System32\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645326170 0x7ffacd7b0000 270336 C:\Windows\System32\cfgmgr32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Configuration Manager DLL 131795770645326170 0x7ffaced20000 782336 C:\Windows\System32\OLEAUT32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795770645326170 0x7ffacede0000 450560 C:\Windows\System32\coml2.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft COM for Windows 131795770645326170 0x7ffacee50000 1183744 C:\Windows\System32\RPCRT4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795770645326170 0x7ffacef80000 32768 C:\Windows\System32\NSI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation NSI User-mode interface DLL 131795770645326170 0x7ffacef90000 647168 C:\Windows\System32\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795770645326170 0x7ffacf030000 651264 C:\Windows\System32\clbcatq.dll 2001.12.10941.16384 (rs1_release.160715-1616) Microsoft Corporation COM+ Configuration Catalog 131795770645326170 0x7ffacf0d0000 704512 C:\Windows\System32\KERNEL32.DLL 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645326170 0x7ffacf770000 212992 C:\Windows\System32\GDI32.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation GDI Client DLL 131795770645326170 0x7ffacf820000 434176 C:\Windows\System32\WS2_32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation 32-разрядная библиотека Windows Socket 2.0 131795770645326170 0x7ffacf8c0000 1462272 C:\Windows\System32\user32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795770645326170 0x7ffacfb30000 2916352 C:\Windows\System32\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795770645326170 0x7ffacfe00000 114688 C:\Windows\System32\imagehlp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT Image Helper 131795770645326170 0x7ffacfe20000 663552 C:\Windows\System32\ADVAPI32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795770645326170 0x7ffad0070000 1277952 C:\Windows\System32\ole32.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft OLE для Windows 131795770645326170 0x7ffad0210000 364544 C:\Windows\System32\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795770645326170 0x7ffad0270000 1908736 C:\Windows\SYSTEM32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 8 0 0 8 00000000:00000000 131765775874898587 0 4294967295 1 Idle Idle 131795770645349496 0x7ff7ed960000 1224704 C:\Users\User\AppData\Local\Temp\Procmon64.exe 3.50 Sysinternals - www.sysinternals.com Process Monitor 131795770645349496 0x7ffac1fd0000 999424 C:\Windows\system32\wbem\fastprox.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation WMI Custom Marshaller 131795770645349496 0x7ffac21d0000 81920 C:\Windows\system32\wbem\wbemsvc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation WMI 131795770645349496 0x7ffac2b80000 40960 C:\Windows\SYSTEM32\VERSION.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Version Checking and File Installation Libraries 131795770645349496 0x7ffac3270000 40960 C:\Windows\SYSTEM32\FLTLIB.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека фильтров 131795770645349496 0x7ffac4220000 520192 C:\Windows\SYSTEM32\wbemcomn.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation WMI 131795770645349496 0x7ffac4470000 65536 C:\Windows\system32\wbem\wbemprox.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation WMI 131795770645349496 0x7ffac5630000 339968 C:\Windows\System32\thumbcache.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Кэш эскизов Майкрософт 131795770645349496 0x7ffac6c40000 2596864 C:\Windows\WinSxS\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.14393.953_none_42151e83c686086b\COMCTL32.dll 6.10 (rs1_release_inmarket.170303-1614) Microsoft Corporation Библиотека элементов управления взаимодействия с пользователем 131795770645349496 0x7ffac84f0000 299008 C:\Windows\system32\dataexchange.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation Data exchange 131795770645349496 0x7ffac88a0000 2842624 C:\Windows\system32\d3d11.dll 10.0.14393.953 (rs1_release_inmarket.170303-1614) Microsoft Corporation Direct3D 11 Runtime 131795770645349496 0x7ffac8df0000 1646592 C:\Windows\SYSTEM32\dbghelp.dll 10.0.14321.1024 (rs1_release.160715-1616) Microsoft Windows Image Helper 131795770645349496 0x7ffac9f50000 1736704 C:\Windows\SYSTEM32\WindowsCodecs.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Microsoft Windows Codecs Library 131795770645349496 0x7ffaca340000 1593344 C:\Windows\SYSTEM32\PROPSYS.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Система страниц свойств (Майкрософт) 131795770645349496 0x7ffaca5e0000 155648 C:\Windows\SYSTEM32\dwmapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Интерфейс API диспетчера окон рабочего стола (Майкрософт) 131795770645349496 0x7ffaca770000 1380352 C:\Windows\system32\dcomp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft DirectComposition Library 131795770645349496 0x7ffacadf0000 499712 C:\Windows\system32\apphelp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиентская библиотека совместимости приложений 131795770645349496 0x7ffacaf00000 610304 C:\Windows\SYSTEM32\uxtheme.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека тем UxTheme (Microsoft) 131795770645349496 0x7ffacb1e0000 1163264 C:\Windows\system32\twinapi.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation twinapi.appcore 131795770645349496 0x7ffacb780000 651264 C:\Windows\system32\dxgi.dll 10.0.14393.953 (rs1_release_inmarket.170303-1614) Microsoft Corporation DirectX Graphics Infrastructure 131795770645349496 0x7ffacc620000 176128 C:\Windows\system32\bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795770645349496 0x7ffacc6e0000 61440 C:\Windows\System32\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795770645349496 0x7ffacc6f0000 311296 C:\Windows\System32\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795770645349496 0x7ffacc740000 81920 C:\Windows\System32\profapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Profile Basic API 131795770645349496 0x7ffacc8f0000 1003520 C:\Windows\System32\ucrtbase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645349496 0x7ffacc9f0000 434176 C:\Windows\System32\bcryptPrimitives.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Cryptographic Primitives Library 131795770645349496 0x7ffacca60000 122880 C:\Windows\System32\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795770645349496 0x7ffaccae0000 692224 C:\Windows\System32\shcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795770645349496 0x7ffaccb90000 7180288 C:\Windows\System32\windows.storage.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API хранения Microsoft WinRT 131795770645349496 0x7ffacd270000 2215936 C:\Windows\System32\KERNELBASE.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645349496 0x7ffacd710000 638976 C:\Windows\System32\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645349496 0x7ffacd7b0000 270336 C:\Windows\System32\cfgmgr32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Configuration Manager DLL 131795770645349496 0x7ffacd810000 22056960 C:\Windows\System32\SHELL32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Общая библиотека оболочки Windows 131795770645349496 0x7ffaced20000 782336 C:\Windows\System32\OLEAUT32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795770645349496 0x7ffacee50000 1183744 C:\Windows\System32\RPCRT4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795770645349496 0x7ffacef90000 647168 C:\Windows\System32\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795770645349496 0x7ffacf030000 651264 C:\Windows\System32\clbcatq.dll 2001.12.10941.16384 (rs1_release.160715-1616) Microsoft Corporation COM+ Configuration Catalog 131795770645349496 0x7ffacf0d0000 704512 C:\Windows\System32\KERNEL32.DLL 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645349496 0x7ffacf1e0000 1417216 C:\Windows\System32\MSCTF.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Серверная библиотека MSCTF 131795770645349496 0x7ffacf770000 212992 C:\Windows\System32\GDI32.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation GDI Client DLL 131795770645349496 0x7ffacf820000 434176 C:\Windows\System32\WS2_32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation 32-разрядная библиотека Windows Socket 2.0 131795770645349496 0x7ffacf890000 188416 C:\Windows\System32\IMM32.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Multi-User Windows IMM32 API Client DLL 131795770645349496 0x7ffacf8c0000 1462272 C:\Windows\System32\USER32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795770645349496 0x7ffacfa30000 1024000 C:\Windows\System32\COMDLG32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека общих диалоговых окон 131795770645349496 0x7ffacfb30000 2916352 C:\Windows\System32\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795770645349496 0x7ffacfe20000 663552 C:\Windows\System32\advapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795770645349496 0x7ffad0070000 1277952 C:\Windows\System32\ole32.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft OLE для Windows 131795770645349496 0x7ffad01b0000 335872 C:\Windows\System32\SHLWAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека небольших программ оболочки 131795770645349496 0x7ffad0210000 364544 C:\Windows\System32\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795770645349496 0x7ffad0270000 1908736 C:\Windows\SYSTEM32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 9 4 0 8 00000000:000003e7 131765775907178738 0 0 1 Обязательная метка\Обязательный уровень системы NT AUTHORITY\СИСТЕМА System System 131795770645349720 0xffffc709b6e00000 3698688 C:\Windows\System32\win32kfull.sys 10.0.14393.2189 (rs1_release.180329-1711) Microsoft Corporation Full/Desktop Win32k Kernel Driver 131795770645349720 0xffffc709b7190000 1576960 C:\Windows\System32\win32kbase.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Базовый драйвер ядра Win32k 131795770645349720 0xffffc709b7320000 40960 C:\Windows\System32\TSDDD.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Framebuffer Display Driver 131795770645349720 0xffffc709b7330000 258048 C:\Windows\System32\cdd.dll 10.0.14393.2189 (rs1_release.180329-1711) Microsoft Corporation Canonical Display Driver 131795770645349720 0xffffc709b74a0000 241664 C:\Windows\System32\win32k.sys 10.0.14393.594 (rs1_release_inmarket.161213-1754) Microsoft Corporation Full/Desktop Multi-User Win32 Driver 131795770645349720 0xfffff80278934000 45056 C:\Windows\system32\kd.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Local Kernel Debugger 131795770645349720 0xfffff80279678000 8527872 C:\Windows\system32\ntoskrnl.exe 10.0.14393.2189 (rs1_release.180329-1711) Microsoft Corporation NT Kernel & System 131795770645349720 0xfffff80d92e00000 163840 C:\Windows\System32\drivers\ksecdd.sys 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Kernel Security Support Provider Interface 131795770645349720 0xfffff80d92ee0000 53248 C:\Windows\System32\drivers\cmimcext.sys 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation Kernel Configuration Manager Initial Configuration Extension Host Export Driver 131795770645349720 0xfffff80d92ef0000 49152 C:\Windows\System32\drivers\ntosext.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation NTOS extension host driver 131795770645349720 0xfffff80d92fa0000 647168 C:\Windows\System32\drivers\cng.sys 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Kernel Cryptography, Next Generation 131795770645349720 0xfffff80d93040000 868352 C:\Windows\system32\drivers\Wdf01000.sys 1.19.14393.0 (rs1_release.160715-1616) Microsoft Corporation Среда выполнения платформы драйвера режима ядра 131795770645349720 0xfffff80d93120000 77824 C:\Windows\system32\drivers\WDFLDR.SYS 1.19.14393.0 (rs1_release.160715-1616) Microsoft Corporation Kernel Mode Driver Framework Loader 131795770645349720 0xfffff80d93140000 143360 C:\Windows\System32\Drivers\acpiex.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ACPIEx Driver 131795770645349720 0xfffff80d93170000 57344 C:\Windows\System32\Drivers\WppRecorder.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation WPP Trace Recorder 131795770645349720 0xfffff80d93180000 733184 C:\Windows\System32\drivers\ACPI.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ACPI драйвер для NT 131795770645349720 0xfffff80d93240000 49152 C:\Windows\System32\drivers\WMILIB.SYS 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation WMILIB WMI support library Dll 131795770645349720 0xfffff80d93260000 69632 C:\Windows\System32\drivers\intelpep.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Intel Power Engine Plugin 131795770645349720 0xfffff80d93280000 126976 C:\Windows\system32\drivers\WindowsTrustedRT.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Trusted Runtime Interface Driver 131795770645349720 0xfffff80d932a0000 45056 C:\Windows\System32\drivers\WindowsTrustedRTProxy.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Trusted Runtime Service Proxy Driver 131795770645349720 0xfffff80d932b0000 73728 C:\Windows\System32\drivers\pcw.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Performance Counters for Windows Driver 131795770645349720 0xfffff80d932d0000 45056 C:\Windows\System32\drivers\msisadrv.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ISA Driver 131795770645349720 0xfffff80d932e0000 45056 C:\Windows\System32\drivers\isapnp.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Драйвер шины PNP ISA 131795770645349720 0xfffff80d932f0000 356352 C:\Windows\System32\drivers\pci.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation NT Plug and Play PCI-перечислитель 131795770645349720 0xfffff80d93350000 73728 C:\Windows\System32\drivers\vdrvroot.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Virtual Drive Root Enumerator 131795770645349720 0xfffff80d93370000 135168 C:\Windows\system32\drivers\pdc.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Power Dependency Coordinator Driver 131795770645349720 0xfffff80d933a0000 102400 C:\Windows\system32\drivers\CEA.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Event Aggregation Kernel Mode Library 131795770645349720 0xfffff80d933c0000 147456 C:\Windows\System32\drivers\partmgr.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Partition driver 131795770645349720 0xfffff80d933f0000 163840 C:\Windows\System32\drivers\nvraid.sys 10.6.0.23 (PART_L3.131021-1012) NVIDIA Corporation NVIDIA® nForce(TM) RAID Driver 131795770645349720 0xfffff80d93420000 401408 C:\Windows\System32\drivers\CLASSPNP.SYS 10.0.14393.953 (rs1_release_inmarket.170303-1614) Microsoft Corporation SCSI Class System Dll 131795770645349720 0xfffff80d93490000 139264 C:\Windows\System32\drivers\vmbus.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Дочерний драйвер шины виртуальной машины Microsoft Hyper-V 131795770645349720 0xfffff80d934c0000 1212416 C:\Windows\System32\drivers\NDIS.SYS 10.0.14393.953 (rs1_release_inmarket.170303-1614) Microsoft Corporation NDIS (Network Driver Interface Specification) 131795770645349720 0xfffff80d935f0000 495616 C:\Windows\System32\drivers\NETIO.SYS 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Network I/O Subsystem 131795770645349720 0xfffff80d93670000 135168 C:\Windows\System32\drivers\hvsocket.sys 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Microsoft Hyper-V Socket Provider 131795770645349720 0xfffff80d936a0000 98304 C:\Windows\System32\drivers\vmbkmcl.sys 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Hyper-V VMBus KMCL 131795770645349720 0xfffff80d936c0000 57344 C:\Windows\System32\drivers\winhv.sys 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Windows Hypervisor Interface Driver 131795770645349720 0xfffff80d936d0000 40960 C:\Windows\System32\drivers\pciide.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Generic PCI IDE Bus Driver 131795770645349720 0xfffff80d936e0000 69632 C:\Windows\System32\drivers\PCIIDEX.SYS 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation PCI IDE Bus Driver Extension 131795770645349720 0xfffff80d93700000 593920 C:\Windows\System32\drivers\spaceport.sys 10.0.14393.1914 (rs1_release_inmarket.171117-1700) Microsoft Corporation Storage Spaces Driver 131795770645349720 0xfffff80d937a0000 40960 C:\Windows\System32\drivers\intelide.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Intel PCI IDE Driver 131795770645349720 0xfffff80d937b0000 98304 C:\Windows\System32\drivers\volmgr.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Драйвер диспетчера томов 131795770645349720 0xfffff80d937d0000 385024 C:\Windows\System32\drivers\volmgrx.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Драйвер расширения диспетчера томов 131795770645349720 0xfffff80d93830000 122880 C:\Windows\System32\drivers\mountmgr.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Диспетчер точек подключения 131795770645349720 0xfffff80d93850000 172032 C:\Windows\System32\drivers\nvstor.sys 10.6.0.23 (PART_L3.131021-1012) NVIDIA Corporation NVIDIA® nForce(TM) Sata Performance Driver 131795770645349720 0xfffff80d93880000 532480 C:\Windows\System32\drivers\storport.sys 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft Storage Port Driver 131795770645349720 0xfffff80d93910000 49152 C:\Windows\System32\drivers\atapi.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ATAPI IDE Miniport Driver 131795770645349720 0xfffff80d93920000 217088 C:\Windows\System32\drivers\ataport.SYS 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ATAPI Driver Extension 131795770645349720 0xfffff80d93960000 147456 C:\Windows\System32\drivers\storahci.sys 10.0.14393.2068 (rs1_release.180209-1727) Microsoft Corporation MS AHCI Storport Miniport Driver 131795770645349720 0xfffff80d93990000 102400 C:\Windows\System32\drivers\stornvme.sys 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation Microsoft NVM Express Storport Miniport Driver 131795770645349720 0xfffff80d939b0000 114688 C:\Windows\System32\drivers\EhStorClass.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Enhanced Storage Class driver for IEEE 1667 devices 131795770645349720 0xfffff80d939d0000 102400 C:\Windows\System32\drivers\fileinfo.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation FileInfo Filter Driver 131795770645349720 0xfffff80d939f0000 229376 C:\Windows\System32\Drivers\Wof.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Фильтр оверлея Windows 131795770645349720 0xfffff80d93a80000 2297856 C:\Windows\System32\Drivers\NTFS.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Драйвер файловой системы NT 131795770645349720 0xfffff80d93cc0000 57344 C:\Windows\System32\drivers\storvsc.sys 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Storage VSC Driver 131795770645349720 0xfffff80d93cd0000 53248 C:\Windows\System32\Drivers\Fs_Rec.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation File System Recognizer Driver 131795770645349720 0xfffff80d93d10000 483328 C:\Windows\System32\drivers\USBPORT.SYS 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Драйвер порта USB 1.1 и 2.0 131795770645349720 0xfffff80d93db0000 581632 C:\Windows\system32\mcupdate_GenuineIntel.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Intel Microcode Update Library 131795770645349720 0xfffff80d93e50000 405504 C:\Windows\System32\drivers\CLFS.SYS 10.0.14393.2068 (rs1_release.180209-1727) Microsoft Corporation Common Log File System Driver 131795770645349720 0xfffff80d93ec0000 151552 C:\Windows\System32\drivers\tm.sys 10.0.14393.2189 (rs1_release.180329-1711) Microsoft Corporation Kernel Transaction Manager Driver 131795770645349720 0xfffff80d93ef0000 94208 C:\Windows\system32\PSHED.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Драйвер аппаратных ошибок, специфичных для платформы 131795770645349720 0xfffff80d93f10000 49152 C:\Windows\system32\BOOTVID.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation VGA Boot Driver 131795770645349720 0xfffff80d93f20000 401408 C:\Windows\System32\drivers\FLTMGR.SYS 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Диспетчер фильтров файловых систем Майкрософт 131795770645349720 0xfffff80d93f90000 380928 C:\Windows\System32\drivers\msrpc.sys 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation Kernel Remote Procedure Call Provider 131795770645349720 0xfffff80d94000000 430080 C:\Windows\System32\drivers\fwpkclnt.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation FWP/IPsec Kernel-Mode API 131795770645349720 0xfffff80d94070000 172032 C:\Windows\System32\drivers\wfplwfs.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation WFP NDIS 6.30 Lightweight Filter Driver 131795770645349720 0xfffff80d940b0000 659456 C:\Windows\System32\DRIVERS\fvevol.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation BitLocker Drive Encryption Driver 131795770645349720 0xfffff80d94160000 45056 C:\Windows\System32\drivers\volume.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Volume driver 131795770645349720 0xfffff80d94170000 409600 C:\Windows\System32\drivers\volsnap.sys 10.0.14393.1794 (rs1_release.171008-1615) Microsoft Corporation Volume Shadow Copy driver 131795770645349720 0xfffff80d941e0000 106496 C:\Windows\System32\drivers\scmbus.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Storage Class Memory Bus Driver 131795770645349720 0xfffff80d94200000 294912 C:\Windows\System32\drivers\rdyboost.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ReadyBoost Driver 131795770645349720 0xfffff80d94250000 151552 C:\Windows\System32\Drivers\mup.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Драйвер поставщика множественных UNC 131795770645349720 0xfffff80d94280000 65536 C:\Windows\system32\drivers\iorate.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation I/O rate control Filter 131795770645349720 0xfffff80d942a0000 126976 C:\Windows\System32\drivers\disk.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation PnP Disk Driver 131795770645349720 0xfffff80d942e0000 102400 C:\Windows\System32\Drivers\crashdmp.sys 10.0.14393.351 (rs1_release_inmarket.161014-1755) Microsoft Corporation Crash Dump Driver 131795770645349720 0xfffff80d943c0000 200704 C:\Windows\System32\drivers\cdrom.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SCSI CD-ROM Driver 131795770645349720 0xfffff80d94400000 118784 C:\Windows\system32\drivers\filecrypt.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows sandboxing and encryption filter 131795770645349720 0xfffff80d94420000 57344 C:\Windows\system32\drivers\tbs.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Export driver for kernel mode TPM API 131795770645349720 0xfffff80d94430000 40960 C:\Windows\System32\Drivers\Null.SYS 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation NULL Driver 131795770645349720 0xfffff80d94440000 40960 C:\Windows\System32\Drivers\Beep.SYS 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation BEEP Driver 131795770645349720 0xfffff80d94450000 81920 C:\Windows\System32\drivers\BasicDisplay.sys 10.0.14393.1066 (rs1_release_sec.170327-1835) Microsoft Corporation Microsoft Basic Display Driver 131795770645349720 0xfffff80d94470000 81920 C:\Windows\System32\drivers\watchdog.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Watchdog Driver 131795770645349720 0xfffff80d94490000 2220032 C:\Windows\System32\drivers\dxgkrnl.sys 10.0.14393.2189 (rs1_release.180329-1711) Microsoft Corporation DirectX Graphics Kernel 131795770645349720 0xfffff80d946b0000 73728 C:\Windows\System32\drivers\BasicRender.sys 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation Microsoft Basic Render Driver 131795770645349720 0xfffff80d946d0000 102400 C:\Windows\System32\Drivers\Npfs.SYS 10.0.14393.1737 (rs1_release_inmarket.170914-1249) Microsoft Corporation NPFS Driver 131795770645349720 0xfffff80d94700000 143360 C:\Windows\system32\DRIVERS\tdx.sys 10.0.14393.1613 (rs1_release_d.170807-1806) Microsoft Corporation TDI Translation Driver 131795770645349720 0xfffff80d94740000 307200 C:\Windows\System32\DRIVERS\netbt.sys 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation MBT Transport driver 131795770645349720 0xfffff80d94790000 610304 C:\Windows\system32\drivers\afd.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Драйвер дополнительных функций для Winsock 131795770645349720 0xfffff80d94830000 102400 C:\Windows\System32\drivers\vwififlt.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Virtual WiFi Filter Driver 131795770645349720 0xfffff80d94850000 176128 C:\Windows\System32\drivers\pacer.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Планировщик пакетов QoS 131795770645349720 0xfffff80d94880000 73728 C:\Windows\system32\drivers\netbios.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation NetBIOS interface driver 131795770645349720 0xfffff80d948a0000 479232 C:\Windows\system32\DRIVERS\rdbss.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Драйвер подсистемы буферизации перенаправленного диска 131795770645349720 0xfffff80d94920000 581632 C:\Windows\system32\drivers\csc.sys 10.0.14393.953 (rs1_release_inmarket.170303-1614) Microsoft Corporation Windows Client Side Caching Driver 131795770645349720 0xfffff80d949b0000 106496 C:\Windows\system32\drivers\nsiproxy.sys 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation NSI Proxy 131795770645349720 0xfffff80d949d0000 53248 C:\Windows\System32\drivers\npsvctrig.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Named pipe service triggers 131795770645349720 0xfffff80d949f0000 40960 C:\Windows\System32\drivers\gpuenergydrv.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation GPU Energy Kernel Driver 131795770645349720 0xfffff80d94a00000 172032 C:\Windows\System32\Drivers\dfsc.sys 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation DFS Namespace Client Driver 131795770645349720 0xfffff80d94a50000 258048 C:\Windows\system32\DRIVERS\ahcache.sys 10.0.14393.351 (rs1_release_inmarket.161014-1755) Microsoft Corporation Application Compatibility Cache 131795770645349720 0xfffff80d94a90000 69632 C:\Windows\System32\DriverStore\FileRepository\compositebus.inf_amd64_a140581a8f8b58b7\CompositeBus.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Multi-Transport Composite Bus Enumerator 131795770645349720 0xfffff80d94ab0000 57344 C:\Windows\System32\drivers\kdnic.sys 6.01.00.0000 (rs1_release.160715-1616) Microsoft Corporation Microsoft Kernel Debugger Network Miniport 131795770645349720 0xfffff80d94ac0000 86016 C:\Windows\System32\drivers\umbus.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User-Mode Bus Enumerator 131795770645349720 0xfffff80d94ae0000 139264 C:\Windows\System32\drivers\i8042prt.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Драйвер порта i8042 131795770645349720 0xfffff80d94b10000 77824 C:\Windows\System32\drivers\kbdclass.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Драйвер класса клавиатуры 131795770645349720 0xfffff80d94b30000 73728 C:\Windows\System32\drivers\mouclass.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Драйвер класса мыши 131795770645349720 0xfffff80d94b80000 110592 C:\Windows\System32\drivers\HDAudBus.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation High Definition Audio Bus Driver 131795770645349720 0xfffff80d94ba0000 397312 C:\Windows\System32\drivers\portcls.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Port Class (Class Driver for Port/Miniport Devices) 131795770645349720 0xfffff80d94c10000 135168 C:\Windows\System32\drivers\drmk.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Trusted Audio Drivers 131795770645349720 0xfffff80d94c40000 425984 C:\Windows\System32\drivers\ks.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Kernel CSA Library 131795770645349720 0xfffff80d94cb0000 61440 C:\Windows\System32\drivers\usbohci.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation OHCI USB Miniport Driver 131795770645349720 0xfffff80d94cc0000 57344 C:\Windows\System32\drivers\CmBatt.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Control Method Battery Driver 131795770645349720 0xfffff80d94cd0000 57344 C:\Windows\System32\drivers\BATTC.SYS 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Battery Class Driver 131795770645349720 0xfffff80d94ce0000 176128 C:\Windows\System32\drivers\intelppm.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Processor Device Driver 131795770645349720 0xfffff80d94d10000 53248 C:\Windows\System32\drivers\NdisVirtualBus.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Перечислитель виртуальных сетевых адаптеров (Майкрософт) 131795770645349720 0xfffff80d94d20000 2588672 C:\Windows\System32\drivers\tcpip.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Драйвер TCP/IP 131795770645349720 0xfffff80d94fa0000 49152 C:\Windows\System32\drivers\swenum.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Plug and Play Software Device Enumerator 131795770645349720 0xfffff80d94fb0000 57344 C:\Windows\System32\drivers\rdpbus.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft RDP Bus Device driver 131795770645349720 0xfffff80d95200000 344064 C:\Windows\system32\DRIVERS\udfs.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation UDF File System Driver 131795770645349720 0xfffff80d95280000 61440 C:\Windows\System32\Drivers\dump_diskdump.sys 131795770645349720 0xfffff80d952c0000 147456 C:\Windows\System32\Drivers\dump_storahci.sys 131795770645349720 0xfffff80d95310000 118784 C:\Windows\System32\Drivers\dump_dumpfve.sys 131795770645349720 0xfffff80d95330000 1122304 C:\Windows\system32\drivers\HTTP.sys 10.0.14393.1532 (rs1_release_d.170711-1840) Microsoft Corporation Стек протокола HTTP 131795770645349720 0xfffff80d95450000 122880 C:\Windows\system32\drivers\WudfPf.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Driver Foundation - User-mode Driver Framework Platform Driver 131795770645349720 0xfffff80d95470000 139264 C:\Windows\system32\DRIVERS\bowser.sys 10.0.14393.447 (rs1_release_inmarket.161102-0100) Microsoft Corporation NT Lan Manager Datagram Receiver Driver 131795770645349720 0xfffff80d954a0000 479232 C:\Windows\system32\DRIVERS\mrxsmb.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT SMB Minirdr 131795770645349720 0xfffff80d95520000 102400 C:\Windows\System32\drivers\mpsdrv.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Protection Service Driver 131795770645349720 0xfffff80d95540000 241664 C:\Windows\system32\DRIVERS\mrxsmb20.sys 10.0.14393.2035 (rs1_release_inmarket.180110-1910) Microsoft Corporation Longhorn SMB 2.0 Redirector 131795770645349720 0xfffff80d95580000 278528 C:\Windows\System32\DRIVERS\srvnet.sys 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Server Network driver 131795770645349720 0xfffff80d955d0000 741376 C:\Windows\System32\DRIVERS\srv2.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Драйвер сервера SMB 2.0 131795770645349720 0xfffff80d95690000 315392 C:\Windows\system32\DRIVERS\mrxsmb10.sys 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Longhorn SMB Downlevel SubRdr 131795770645349720 0xfffff80d956e0000 573440 C:\Windows\System32\DRIVERS\srv.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Server driver 131795770645349720 0xfffff80d95770000 81920 C:\Windows\System32\drivers\tcpipreg.sys 10.0.14393.1480 (rs1_release.170706-2004) Microsoft Corporation TCP/IP Registry Compatibility Driver 131795770645349720 0xfffff80d95860000 684032 C:\Windows\System32\drivers\dxgmms2.sys 10.0.14393.2189 (rs1_release.180329-1711) Microsoft Corporation DirectX Graphics MMS 131795770645349720 0xfffff80d95910000 155648 C:\Windows\system32\drivers\luafv.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Драйвер фильтра виртуализации файлов LUA 131795770645349720 0xfffff80d95960000 102400 C:\Windows\system32\drivers\storqosflt.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Фильтр качества обслуживания хранилища 131795770645349720 0xfffff80d95980000 98304 C:\Windows\System32\drivers\registry.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Registry Containment Driver 131795770645349720 0xfffff80d959a0000 90112 C:\Windows\system32\drivers\lltdio.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Link-Layer Topology Mapper I/O Driver 131795770645349720 0xfffff80d959c0000 98304 C:\Windows\system32\drivers\mslldp.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Драйвер протокола Microsoft LLDP 131795770645349720 0xfffff80d959e0000 106496 C:\Windows\system32\drivers\rspndr.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Link-Layer Topology Responder Driver for NDIS 6 131795770645349720 0xfffff80d95ae0000 57344 C:\Windows\System32\drivers\USBD.SYS 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Universal Serial Bus Driver 131795770645349720 0xfffff80d95af0000 434176 C:\Windows\system32\DRIVERS\HdAudio.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation High Definition Audio Function Driver 131795770645349720 0xfffff80d95b60000 57344 C:\Windows\system32\drivers\ksthunk.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Kernel Streaming WOW Thunk Service 131795770645349720 0xfffff80d95bc0000 73728 C:\Windows\System32\drivers\HIDPARSE.SYS 10.0.14393.2068 (rs1_release.180209-1727) Microsoft Corporation Hid Parsing Library 131795770645349720 0xfffff80d97020000 208896 C:\Windows\System32\Drivers\360AntiHacker64.sys 1.0.0.1149 360.cn 360安全卫士 网络防黑模块 131795770645349720 0xfffff80d97060000 102400 C:\Windows\system32\DRIVERS\360AvFlt.sys 1.1.0.1056 360.cn 360杀毒 文件监控驱动 131795770645349720 0xfffff80d97080000 217088 C:\Windows\system32\DRIVERS\BAPIDRV64.sys 2.0.0.1221 360.cn BAPIDRV 131795770645349720 0xfffff80d970c0000 372736 C:\Windows\system32\drivers\360netmon.sys 2.1.11.5195 360.cn 360netmon 131795770645349720 0xfffff80d97120000 356352 C:\Windows\system32\DRIVERS\360Box64.sys 2.1.0.1253 360.cn 360Box64 131795770645349720 0xfffff80d97180000 811008 C:\Windows\system32\DRIVERS\360FsFlt.sys 6.9.1.1751 360.cn 360 Total Security 131795770645349720 0xfffff80d97330000 69632 C:\Windows\System32\drivers\hidusb.sys 10.0.14393.82 (rs1_release.160805-1735) Microsoft Corporation USB Miniport Driver for Input Devices 131795770645349720 0xfffff80d97350000 192512 C:\Windows\System32\drivers\HIDCLASS.SYS 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека классов HID 131795770645349720 0xfffff80d97380000 61440 C:\Windows\System32\drivers\mouhid.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Драйвер фильтра мыши HID 131795770645349720 0xfffff80d97390000 106496 C:\Windows\System32\drivers\rassstp.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation RAS SSTP Miniport Call Manager 131795770645349720 0xfffff80d973b0000 86016 C:\Windows\System32\DRIVERS\NDProxy.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation NDIS Proxy 131795770645349720 0xfffff80d973d0000 159744 C:\Windows\System32\drivers\AgileVpn.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Диспетчер вызовов минипорта RAS Agile VPN 131795770645349720 0xfffff80d97420000 131072 C:\Windows\System32\drivers\rasl2tp.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation RAS L2TP mini-port/call-manager driver 131795770645349720 0xfffff80d97460000 126976 C:\Windows\System32\drivers\raspptp.sys 10.0.14393.2035 (rs1_release_inmarket.180110-1910) Microsoft Corporation Peer-to-Peer Tunneling Protocol 131795770645349720 0xfffff80d974a0000 110592 C:\Windows\System32\drivers\raspppoe.sys 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation RAS PPPoE mini-port/call-manager driver 131795770645349720 0xfffff80d974c0000 57344 C:\Windows\System32\DRIVERS\ndistapi.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation NDIS 3.0 connection wrapper driver 131795770645349720 0xfffff80d974d0000 221184 C:\Windows\System32\drivers\ndiswan.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation MS PPP Framing Driver (Strong Encryption) 131795770645349720 0xfffff80d97510000 110592 C:\Windows\System32\DRIVERS\wanarp.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation MS Remote Access and Routing ARP Driver 131795770645349720 0xfffff80d97550000 151552 C:\Windows\System32\drivers\E1G6032E.sys 8.4.13.0 built by: WinDDK Intel Corporation Intel(R) PRO/1000 Adapter NDIS 6 deserialized driver 131795770645349720 0xfffff80d97580000 192512 C:\Windows\System32\drivers\tunnel.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Драйвер интерфейса туннеля (Майкрософт) 131795770645349720 0xfffff80d97600000 106496 C:\Windows\system32\Drivers\PROCMON24.SYS 3.10 Sysinternals - www.sysinternals.com Process Monitor Driver 131795770645349720 0xfffff80d97a60000 794624 C:\Windows\system32\drivers\peauth.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Protected Environment Authentication and Authorization Export Driver 131795770645349720 0xfffff80d97b30000 155648 C:\Windows\system32\drivers\Ndu.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Network Data Usage Monitoring Driver 131795770645349720 0xfffff80d97b60000 81920 C:\Windows\system32\drivers\mmcss.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation MMCSS Driver 131795770645349720 0xfffff80d97bb0000 73728 C:\Windows\System32\drivers\condrv.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Console Driver 10 320 4 9 00000000:000003e7 131765775908989732 0 0 1 Обязательная метка\Обязательный уровень системы NT AUTHORITY\СИСТЕМА smss.exe C:\Windows\System32\smss.exe \SystemRoot\System32\smss.exe Microsoft Corporation 10.0.14393.0 (rs1_release.160715-1616) Диспетчер сеанса Windows 11 3108 3092 12 00000000:0031f1da 131765777624392598 0 0 1 Обязательная метка\Средний обязательный уровень WIN-0UOTFKKVN1S\User Explorer.EXE C:\Windows\Explorer.EXE C:\Windows\Explorer.EXE Microsoft Corporation 10.0.14393.0 (rs1_release.160715-1616) Проводник 131795770645352881 0x31b0000 12288 C:\Windows\system32\sfc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows File Protection 131795770645352881 0x5db0000 397312 C:\Program Files\Uninstall Tool\utshellext.dll 1.1.0.15 CrystalIDEA Software Uninstall Tool Shell Extension 131795770645352881 0x81a0000 8937472 C:\Program Files\MICROS~1\Office16\1049\GrooveIntlResource.dll 16.0.4266.1001 Корпорация Майкрософт Модуль международных ресурсов для Microsoft OneDrive для бизнеса 131795770645352881 0x8cb0000 593920 C:\Windows\SYSTEM32\UIRibbonRes.dll 10.0.14393.2189 (rs1_release.180329-1711) Microsoft Corporation Windows Ribbon Framework Resources 131795770645352881 0x5bf70000 667648 C:\Windows\WinSxS\amd64_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.9247_none_08e394a1a83e212f\MSVCR90.dll 9.00.30729.9247 Microsoft Corporation Microsoft® C Runtime Library 131795770645352881 0x180000000 241664 C:\Program Files (x86)\Notepad++\NppShell_06.dll 0.1 ShellHandler for Notepad++ (64 bit) 131795770645352881 0x7ff6a5b30000 4665344 C:\Windows\Explorer.EXE 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Проводник 131795770645352881 0x7ff7808b0000 8527872 C:\Windows\system32\ntoskrnl.exe 10.0.14393.2189 (rs1_release.180329-1711) Microsoft Corporation NT Kernel & System 131795770645352881 0x7ffaa6c80000 2093056 C:\Windows\system32\wpdshext.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширение оболочки для переносных устройств 131795770645352881 0x7ffaab350000 1683456 C:\Windows\System32\comsvcs.dll 2001.12.10941.16384 (rs1_release_1.180305-1842) Microsoft Corporation COM+ Services 131795770645352881 0x7ffaab4f0000 1400832 C:\Windows\system32\connect.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Мастера подключений 131795770645352881 0x7ffaab650000 970752 C:\Windows\system32\rasgcw.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Страницы мастера RAS 131795770645352881 0x7ffaab880000 532480 C:\Windows\System32\MPRAPI.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation Windows NT MP Router Administration DLL 131795770645352881 0x7ffaab910000 905216 C:\Windows\System32\RASDLG.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API общих диалогов службы удаленного доступа 131795770645352881 0x7ffaac6e0000 13156352 C:\Windows\system32\ieframe.DLL 11.00.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Браузер 131795770645352881 0x7ffab0df0000 1626112 C:\Windows\SYSTEM32\d3d9.dll 10.0.14393.447 (rs1_release_inmarket.161102-0100) Microsoft Corporation Direct3D 9 Runtime 131795770645352881 0x7ffab0f80000 1777664 C:\Program Files\Windows Photo Viewer\PhotoViewer.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Просмотр фотографий Windows 131795770645352881 0x7ffab1d80000 262144 C:\Windows\system32\eappcfg.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Eap Peer Config 131795770645352881 0x7ffab2460000 2822144 C:\Windows\System32\netshell.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Оболочка сетевых подключений 131795770645352881 0x7ffab2720000 606208 C:\Windows\System32\DUser.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows DirectUser Engine 131795770645352881 0x7ffab27c0000 516096 C:\Windows\System32\imapi2.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation IMAPI версии 2 131795770645352881 0x7ffab2840000 253952 C:\Windows\System32\bthprops.cpl 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Приложение панели управления Bluetooth 131795770645352881 0x7ffab2880000 315392 C:\Windows\System32\cscobj.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Внутрипроцессный COM-объект используемый клиентами CSC API 131795770645352881 0x7ffab28d0000 802816 C:\Windows\System32\cscui.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Интерфейс кэширования на стороне клиента 131795770645352881 0x7ffab29a0000 1912832 C:\Windows\System32\pnidui.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Значок сетевой системы 131795770645352881 0x7ffab2b80000 212992 C:\Windows\system32\SettingMonitor.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Setting Synchronization Change Monitor 131795770645352881 0x7ffab2bc0000 204800 C:\Windows\System32\PortableDeviceTypes.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Portable Device (Parameter) Types Component 131795770645352881 0x7ffab33d0000 258048 C:\Windows\SYSTEM32\MLANG.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL многоязыковой поддержки 131795770645352881 0x7ffab34f0000 323584 C:\Windows\System32\Actioncenter.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Центр безопасности и обслуживания 131795770645352881 0x7ffab4af0000 606208 C:\Windows\SYSTEM32\AUDIOSES.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Сеанс обработки звука 131795770645352881 0x7ffab4b90000 655360 C:\Windows\System32\StructuredQuery.dll 7.0.14393.2068 (rs1_release.180209-1727) Microsoft Corporation Structured Query 131795770645352881 0x7ffab5120000 1691648 C:\Windows\system32\BatMeter.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Battery Meter Helper DLL 131795770645352881 0x7ffab5520000 3231744 C:\Windows\SYSTEM32\MsftEdit.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Элемент управления "Поле ввода форматированного текста", версия 8.5 131795770645352881 0x7ffab5b40000 2527232 C:\Windows\SYSTEM32\DWrite.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Службы Microsoft DirectX Typography 131795770645352881 0x7ffab7d80000 753664 C:\Windows\System32\RASAPI32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API удаленного доступа 131795770645352881 0x7ffab7e40000 3420160 C:\Windows\System32\SyncCenter.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Центр синхронизации Майкрософт 131795770645352881 0x7ffab8190000 9191424 C:\Windows\System32\TwinUI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation TWINUI 131795770645352881 0x7ffab8da0000 1675264 C:\Windows\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.14393.1715_none_aec701fbddd850fa\gdiplus.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Microsoft GDI+ 131795770645352881 0x7ffab92e0000 827392 C:\Windows\system32\Windows.Storage.Search.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows.Storage.Search 131795770645352881 0x7ffab93b0000 897024 C:\Windows\System32\TokenBroker.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Token Broker 131795770645352881 0x7ffab9490000 860160 C:\Windows\system32\ntshrui.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширения оболочки, обеспечивающие общий доступ 131795770645352881 0x7ffab95c0000 4091904 C:\Windows\system32\UIRibbon.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Платформа ленты Windows 131795770645352881 0x7ffab99b0000 499712 C:\Windows\system32\dxp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширение оболочки компонента Device Stage 131795770645352881 0x7ffab9ba0000 389120 C:\Windows\SYSTEM32\searchfolder.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SearchFolder 131795770645352881 0x7ffaba950000 188416 C:\Windows\System32\EthernetMediaManager.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Ethernet Media Manager DLL 131795770645352881 0x7ffabaa50000 339968 C:\Windows\System32\NetworkUXBroker.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation NetworkUXBroker DLL 131795770645352881 0x7ffabaab0000 94208 C:\Windows\SYSTEM32\profext.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation profext 131795770645352881 0x7ffabab30000 303104 C:\Windows\System32\NotificationObjFactory.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Notifications Object Factory 131795770645352881 0x7ffabac60000 151552 C:\Windows\System32\EhStorAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Enhanced Storage API 131795770645352881 0x7ffabacc0000 1380352 C:\Windows\System32\SharedStartModel.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Shared Start Model InProc Server 131795770645352881 0x7ffabae20000 40960 C:\Windows\SYSTEM32\msiltcfg.dll 5.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Installer Configuration API Stub 131795770645352881 0x7ffabae60000 77824 C:\Windows\System32\DEVRTL.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Device Management Run Time Library 131795770645352881 0x7ffabaea0000 266240 C:\Windows\system32\SHDOCVW.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека объектов документов и элементов управления оболочки 131795770645352881 0x7ffabaf70000 270336 C:\Windows\SYSTEM32\edputil.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служебная программа EDP 131795770645352881 0x7ffabafc0000 700416 C:\Windows\System32\wer.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека сообщений об ошибках Windows 131795770645352881 0x7ffabb2b0000 1089536 C:\Windows\SYSTEM32\settingsynccore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Setting Synchronization Core 131795770645352881 0x7ffabb430000 65536 C:\Windows\SYSTEM32\pcacli.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Program Compatibility Assistant Client Module 131795770645352881 0x7ffabb490000 512000 C:\Windows\SYSTEM32\TWINAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation twinapi 131795770645352881 0x7ffabba80000 995328 C:\Windows\System32\twinui.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation TWINUI.APPCORE 131795770645352881 0x7ffabbb80000 61440 C:\Windows\System32\dsclient.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Data Sharing Service Client DLL 131795770645352881 0x7ffabbb90000 581632 C:\Windows\System32\Windows.System.Launcher.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows.System.Launcher 131795770645352881 0x7ffabbc40000 643072 C:\Windows\SYSTEM32\MSVCP140.dll 14.10.24516.0 built by: VCTOOLSRELESC Microsoft Corporation Microsoft® C Runtime Library 131795770645352881 0x7ffabbce0000 90112 C:\Windows\SYSTEM32\VCRUNTIME140.dll 14.10.24516.0 built by: VCTOOLSRELESC Microsoft Corporation Microsoft® C Runtime Library 131795770645352881 0x7ffabbd00000 36864 C:\Windows\System32\WpPortingLibrary.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation <d> DLL 131795770645352881 0x7ffabbd20000 106496 C:\Windows\SYSTEM32\settingsyncpolicy.dll 10.0.14393.82 (rs1_release.160805-1735) Microsoft Corporation SettingSync Policy 131795770645352881 0x7ffabc0b0000 65536 C:\Windows\SYSTEM32\LINKINFO.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Volume Tracking 131795770645352881 0x7ffabc510000 90112 C:\Windows\system32\execmodelproxy.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ExecModelProxy 131795770645352881 0x7ffabc880000 73728 C:\Windows\SYSTEM32\cscapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Offline Files Win32 API 131795770645352881 0x7ffabcf30000 110592 C:\Windows\SYSTEM32\MPR.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека маршрутизации для нескольких служб доступа 131795770645352881 0x7ffabd3c0000 368640 C:\Windows\System32\InputSwitch.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Переключатель ввода Microsoft Windows 131795770645352881 0x7ffabd4a0000 1613824 C:\Windows\System32\Windows.Globalization.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Globalization 131795770645352881 0x7ffabd670000 315392 C:\Windows\System32\framedynos.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation WMI SDK Provider Framework 131795770645352881 0x7ffabd6c0000 1306624 C:\Windows\System32\werconcpl.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation PRS CPL 131795770645352881 0x7ffabd800000 876544 C:\Windows\System32\NPSMDesktopProvider.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation <d> Библиотека DLL локального поставщика рабочего стола NPSM 131795770645352881 0x7ffabda60000 1241088 C:\Windows\System32\wscui.cpl 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Центр безопасности и обслуживания 131795770645352881 0x7ffabdbb0000 1736704 C:\Windows\SYSTEM32\DUI70.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Подсистема DirectUI Windows 131795770645352881 0x7ffabdeb0000 86016 C:\Windows\system32\wpdshserviceobj.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Portable Device Shell Service Object 131795770645352881 0x7ffabded0000 413696 C:\Windows\system32\stobject.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Объект службы оболочки Systray 131795770645352881 0x7ffabe070000 610304 C:\Windows\SYSTEM32\efswrt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Storage Protection Windows Runtime DLL 131795770645352881 0x7ffabe470000 180224 C:\Windows\System32\wscinterop.dll 10.0.14393.479 (rs1_release.161110-2025) Microsoft Corporation Windows Health Center WSC Interop 131795770645352881 0x7ffabe4d0000 286720 C:\Windows\System32\MSWB7.dll 10.0.14393.1737 (rs1_release_inmarket.170914-1249) Microsoft Corporation MSWB7 DLL 131795770645352881 0x7ffabe580000 831488 C:\Program Files (x86)\360\Total Security\MenuEx64.dll 9, 6, 0, 1001 360 Total Security 131795770645352881 0x7ffabe650000 405504 C:\Windows\system32\zipfldr.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Сжатые ZIP-папки 131795770645352881 0x7ffabe850000 155648 C:\Windows\System32\IDStore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Identity Store 131795770645352881 0x7ffabe9a0000 94208 C:\Windows\system32\Syncreg.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Synchronization Framework Registration 131795770645352881 0x7ffabe9c0000 188416 C:\Windows\SYSTEM32\globinputhost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Globalization Extension API for Input 131795770645352881 0x7ffabebf0000 1208320 C:\Windows\system32\NetworkExplorer.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Сетевой проводник 131795770645352881 0x7ffabef80000 69632 C:\Windows\System32\sfc_os.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows File Protection 131795770645352881 0x7ffabf0b0000 176128 C:\Windows\System32\playtomenu.dll 12.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека меню функции "Передать на устройство" 131795770645352881 0x7ffabf0e0000 372736 C:\Windows\System32\hnetcfg.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Диспетчер конфигурации домашней сети 131795770645352881 0x7ffabf330000 2457600 C:\Windows\System32\msxml6.dll 6.30.14393.2156 Microsoft Corporation MSXML 6.0 131795770645352881 0x7ffabf590000 208896 C:\Windows\system32\syncui.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Портфель Windows 131795770645352881 0x7ffabf5d0000 2924544 C:\Windows\SYSTEM32\WININET.dll 11.00.14393.447 (rs1_release_inmarket.161102-0100) Microsoft Corporation Расширения Интернета для Win32 131795770645352881 0x7ffabf8c0000 802816 C:\Windows\system32\Windows.Internal.Shell.Broker.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation Windows Shell Broker 131795770645352881 0x7ffabfb00000 626688 C:\Windows\System32\ContentDeliveryManager.Utilities.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation ContentDeliveryManager.Utilities 131795770645352881 0x7ffabfba0000 212992 C:\Windows\System32\WSCAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API центра обеспечения безопасности Windows 131795770645352881 0x7ffabfdc0000 86016 C:\Windows\system32\keepaliveprovider.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Keep alive provider API 131795770645352881 0x7ffabfe50000 643072 C:\Windows\System32\wpnprv.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик подключения платформы push-уведомлений Windows 131795770645352881 0x7ffabff10000 155648 C:\Windows\system32\srvcli.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Server Service Client DLL 131795770645352881 0x7ffabff60000 135168 C:\Windows\system32\ncryptsslp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft SChannel Provider 131795770645352881 0x7ffac01e0000 397312 C:\Windows\System32\wincorlib.DLL 10.0.14393.576 (rs1_release_inmarket.161208-2252) Microsoft Corporation Microsoft Windows ® WinRT core library 131795770645352881 0x7ffac0250000 2179072 C:\Program Files\MICROS~1\Office16\GROOVEEX.DLL 16.0.4266.1001 Microsoft Corporation Microsoft OneDrive for Business Extensions 131795770645352881 0x7ffac0470000 1478656 C:\Windows\SYSTEM32\MFPlat.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Media Foundation Platform DLL 131795770645352881 0x7ffac05f0000 94208 C:\Windows\System32\wwapi.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation WWAN API 131795770645352881 0x7ffac0610000 3088384 C:\Windows\SYSTEM32\msi.dll 5.0.14393.2155 Microsoft Corporation Windows Installer 131795770645352881 0x7ffac0910000 724992 C:\Windows\System32\Windows.Networking.Connectivity.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Networking Connectivity Runtime DLL 131795770645352881 0x7ffac09d0000 884736 C:\Windows\System32\wpnapps.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Приложения для push-уведомлений Windows 131795770645352881 0x7ffac0ad0000 86016 C:\Windows\SYSTEM32\mskeyprotect.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик защиты ключей (Майкрософт) 131795770645352881 0x7ffac0af0000 114688 C:\Windows\System32\ATL.DLL 3.05.2284 Microsoft Corporation ATL Module for Windows XP (Unicode) 131795770645352881 0x7ffac0b40000 315392 C:\Windows\System32\dlnashext.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLNA Namespace DLL 131795770645352881 0x7ffac0b90000 380928 C:\Windows\System32\srchadmin.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Параметры индексирования 131795770645352881 0x7ffac0bf0000 3559424 C:\Windows\System32\ActXPrxy.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation ActiveX Interface Marshaling Library 131795770645352881 0x7ffac0f60000 151552 C:\Windows\SYSTEM32\CHARTV.dll 10.0.14393.351 (rs1_release_inmarket.161014-1755) Microsoft Corporation Chart View 131795770645352881 0x7ffac1b70000 122880 C:\Windows\System32\DevDispItemProvider.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Подсистема DeviceItem inproc devquery 131795770645352881 0x7ffac1cc0000 163840 C:\Windows\System32\Windows.Networking.Sockets.PushEnabledApplication.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows.Networking.Sockets.PushEnabledApplication DLL 131795770645352881 0x7ffac1d60000 589824 C:\Windows\System32\webio.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API протоколов передачи по Веб 131795770645352881 0x7ffac1e50000 188416 C:\Windows\SYSTEM32\RTWorkQ.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL для WorkQueue реального времени 131795770645352881 0x7ffac1fd0000 999424 C:\Windows\system32\wbem\fastprox.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation WMI Custom Marshaller 131795770645352881 0x7ffac20d0000 110592 C:\Windows\System32\RMCLIENT.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Resource Manager Client 131795770645352881 0x7ffac21d0000 81920 C:\Windows\system32\wbem\wbemsvc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation WMI 131795770645352881 0x7ffac2360000 57344 C:\Windows\System32\TimeBrokerClient.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Time Broker Client Library 131795770645352881 0x7ffac23c0000 331776 C:\Windows\System32\OneCoreCommonProxyStub.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation OneCore Common Proxy Stub 131795770645352881 0x7ffac2530000 270336 C:\Windows\system32\hnetcfgclient.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиент API конфигурации домашней сети 131795770645352881 0x7ffac2700000 98304 C:\Windows\system32\NETAPI32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API DLL 131795770645352881 0x7ffac27a0000 1642496 C:\Users\User\AppData\Local\Microsoft\OneDrive\18.111.0603.0006\amd64\FileSyncShell64.dll 18.111.0603.0006 Microsoft Corporation Microsoft OneDrive Shell Extension 131795770645352881 0x7ffac2960000 143360 C:\Windows\system32\mssprxy.dll 7.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation Microsoft Search Proxy 131795770645352881 0x7ffac2990000 385024 C:\Windows\SYSTEM32\NInput.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Pen and Touch Input Component 131795770645352881 0x7ffac29f0000 159744 C:\Windows\system32\NetSetupApi.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Network Configuration API 131795770645352881 0x7ffac2a20000 81920 C:\Windows\System32\rtutils.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Routing Utilities 131795770645352881 0x7ffac2b80000 40960 C:\Windows\SYSTEM32\VERSION.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Version Checking and File Installation Libraries 131795770645352881 0x7ffac2cb0000 778240 C:\Windows\System32\winsqlite3.dll 3.12.2 SQLite Development Team SQLite is a software library that implements a self-contained, serverless, zero-configuration, transactional SQL database engine. 131795770645352881 0x7ffac2d80000 5140480 C:\Windows\System32\cdp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API клиента Microsoft (R) CDP 131795770645352881 0x7ffac32e0000 180224 C:\Windows\system32\twext.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Свойства: Предыдущие версии 131795770645352881 0x7ffac3350000 36864 C:\Windows\SYSTEM32\OLEACCHOOKS.DLL 7.2.14393.0 (rs1_release.160715-1616) Microsoft Corporation Active Accessibility Event Hooks Library 131795770645352881 0x7ffac3360000 1396736 C:\Windows\System32\wpncore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Ядро извещающих уведомлений Windows 131795770645352881 0x7ffac34e0000 1843200 C:\Windows\SYSTEM32\urlmon.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширения OLE32 для Win32 131795770645352881 0x7ffac37d0000 258048 C:\Windows\SYSTEM32\wdmaud.drv 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Системный звуковой драйвер Winmm 131795770645352881 0x7ffac3cb0000 2772992 C:\Windows\SYSTEM32\iertutil.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служебная программа времени выполнения для Internet Explorer 131795770645352881 0x7ffac4000000 274432 C:\Windows\SYSTEM32\policymanager.dll 10.0.14393.2035 (rs1_release_inmarket.180110-1910) Microsoft Corporation Policy Manager DLL 131795770645352881 0x7ffac4070000 499712 C:\Windows\SYSTEM32\dsreg.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation AD/AAD User Device Registration 131795770645352881 0x7ffac4140000 114688 C:\Windows\SYSTEM32\MSACM32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Фильтр диспетчера аудиосжатия Microsoft 131795770645352881 0x7ffac4220000 520192 C:\Windows\SYSTEM32\wbemcomn.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation WMI 131795770645352881 0x7ffac42a0000 659456 C:\Windows\System32\StateRepository.Core.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation StateRepository Core 131795770645352881 0x7ffac4450000 86016 C:\Windows\SYSTEM32\usermgrcli.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation UserMgr API DLL 131795770645352881 0x7ffac4470000 65536 C:\Windows\system32\wbem\wbemprox.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation WMI 131795770645352881 0x7ffac46d0000 4161536 C:\Windows\System32\Windows.StateRepository.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Сервер Windows StateRepository API Server 131795770645352881 0x7ffac4df0000 462848 C:\Windows\System32\provsvc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Домашняя группа Windows 131795770645352881 0x7ffac4ea0000 36864 C:\Windows\SYSTEM32\atlthunk.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation atlthunk.dll 131795770645352881 0x7ffac4f60000 143360 C:\Windows\System32\wcmapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Connection Manager Client API 131795770645352881 0x7ffac4f90000 221184 C:\Windows\System32\EhStorShell.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL расширения оболочки Windows Enhanced Storage 131795770645352881 0x7ffac4fd0000 618496 C:\Windows\System32\wlidprov.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft® Account Provider 131795770645352881 0x7ffac5070000 798720 C:\Windows\System32\Windows.Web.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL веб-клиента 131795770645352881 0x7ffac5140000 307200 C:\Windows\System32\AboveLockAppHost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AboveLockAppHost 131795770645352881 0x7ffac5190000 659456 C:\Windows\System32\NotificationController.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation NotificationController 131795770645352881 0x7ffac5350000 1765376 C:\Windows\System32\Windows.UI.Immersive.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation WINDOWS.UI.IMMERSIVE 131795770645352881 0x7ffac5500000 438272 C:\Windows\SYSTEM32\PhotoMetadataHandler.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Photo Metadata Handler 131795770645352881 0x7ffac5570000 339968 C:\Windows\system32\twinui.pcshell.dll 10.0.14393.351 (rs1_release_inmarket.161014-1755) Microsoft Corporation Twinui.PCShell 131795770645352881 0x7ffac55d0000 376832 C:\Windows\System32\windows.immersiveshell.serviceprovider.dll 10.0.14393.1593 (rs1_release.170731-1934) Microsoft Corporation Windows.ImmersiveShell.ServiceProvider 131795770645352881 0x7ffac5630000 339968 C:\Windows\System32\thumbcache.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Кэш эскизов Майкрософт 131795770645352881 0x7ffac5690000 4734976 C:\Windows\system32\explorerframe.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ExplorerFrame 131795770645352881 0x7ffac5bb0000 622592 C:\Program Files\Common Files\microsoft shared\ink\tiptsf.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Инфраструктура текстовых служб сенсорной клавиатуры и панели рукописного ввода 131795770645352881 0x7ffac5c70000 65536 C:\Program Files\Windows Photo Viewer\PhotoBase.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Photo Base Library 131795770645352881 0x7ffac5ce0000 1744896 C:\Windows\SYSTEM32\UIAutomationCore.DLL 7.2.14393.0 (rs1_release.160715-1616) Microsoft Corporation Основные автоматические компоненты Microsoft UI 131795770645352881 0x7ffac60e0000 221184 C:\Windows\System32\XmlLite.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft XmlLite Library 131795770645352881 0x7ffac6610000 40960 C:\Windows\System32\rasadhlp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Remote Access AutoDial Helper 131795770645352881 0x7ffac6650000 176128 C:\Windows\System32\npsm.dll 10.0.14393.447 (rs1_release_inmarket.161102-0100) Microsoft Corporation NPSM 131795770645352881 0x7ffac69c0000 839680 C:\Windows\System32\WINHTTP.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Службы HTTP Windows 131795770645352881 0x7ffac6ac0000 835584 C:\Windows\System32\Windows.UI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Runtime UI Foundation DLL 131795770645352881 0x7ffac6ba0000 49152 C:\Windows\SYSTEM32\Secur32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Security Support Provider Interface 131795770645352881 0x7ffac6bd0000 413696 C:\Windows\SYSTEM32\OLEACC.dll 7.2.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Active Accessibility Core Component 131795770645352881 0x7ffac6c40000 2596864 C:\Windows\WinSxS\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.14393.953_none_42151e83c686086b\comctl32.dll 6.10 (rs1_release_inmarket.170303-1614) Microsoft Corporation Библиотека элементов управления взаимодействия с пользователем 131795770645352881 0x7ffac6ec0000 36864 C:\Windows\system32\IconCodecService.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Converts a PNG part of the icon to a legacy bmp icon 131795770645352881 0x7ffac6f50000 5632000 C:\Windows\System32\d2d1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека Microsoft D2D 131795770645352881 0x7ffac7580000 1077248 C:\Windows\SYSTEM32\MrmCoreR.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Windows MRM 131795770645352881 0x7ffac76a0000 159744 C:\Windows\SYSTEM32\sppc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Software Licensing Client DLL 131795770645352881 0x7ffac78f0000 647168 C:\Windows\System32\hgcpl.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Панель управления домашней группы 131795770645352881 0x7ffac7990000 155648 C:\Windows\SYSTEM32\SLC.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Software Licensing Client DLL 131795770645352881 0x7ffac79c0000 57344 C:\Windows\System32\npmproxy.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Network List Manager Proxy 131795770645352881 0x7ffac7aa0000 401408 C:\Windows\SYSTEM32\wlanapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows WLAN AutoConfig Client Side API DLL 131795770645352881 0x7ffac7d40000 131072 C:\Windows\system32\SYNCENG.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Briefcase Engine 131795770645352881 0x7ffac7d90000 454656 C:\Windows\SYSTEM32\SndVolSSO.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Громкость SCA 131795770645352881 0x7ffac7f50000 73728 C:\Windows\system32\acppage.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека расширений для вкладки "Совместимость" 131795770645352881 0x7ffac7fc0000 2674688 C:\Windows\SYSTEM32\d3d10warp.dll 10.0.14393.576 (rs1_release_inmarket.161208-2252) Microsoft Corporation Direct3D 10 Rasterizer 131795770645352881 0x7ffac83d0000 106496 C:\Windows\SYSTEM32\dhcpcsvc.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служба DHCP-клиента 131795770645352881 0x7ffac83f0000 90112 C:\Windows\SYSTEM32\dhcpcsvc6.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиент DHCPv6 131795770645352881 0x7ffac8420000 434176 C:\Windows\System32\fwpuclnt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API пользовательского режима FWP/IPsec 131795770645352881 0x7ffac84e0000 53248 C:\Windows\System32\NotificationControllerPS.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation NotificationController Proxy Stub 131795770645352881 0x7ffac84f0000 299008 C:\Windows\system32\dataexchange.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation Data exchange 131795770645352881 0x7ffac8810000 45056 C:\Windows\SYSTEM32\WINNSI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Network Store Information RPC interface 131795770645352881 0x7ffac8880000 69632 C:\Windows\system32\WMICLNT.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation WMI Client API 131795770645352881 0x7ffac88a0000 2842624 C:\Windows\system32\d3d11.dll 10.0.14393.953 (rs1_release_inmarket.170303-1614) Microsoft Corporation Direct3D 11 Runtime 131795770645352881 0x7ffac8f90000 45056 C:\Windows\SYSTEM32\AVRT.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Среда выполнения мультимедиа в реальном времени 131795770645352881 0x7ffac90b0000 90112 C:\Windows\SYSTEM32\wkscli.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Workstation Service Client DLL 131795770645352881 0x7ffac9220000 397312 C:\Windows\System32\wevtapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API настройки и использования событий 131795770645352881 0x7ffac9290000 40960 C:\Windows\system32\DSROLE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DS Setup Client DLL 131795770645352881 0x7ffac92e0000 1269760 C:\Windows\System32\WinTypes.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL основных типов Windows 131795770645352881 0x7ffac9480000 462848 C:\Windows\System32\MMDevApi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation MMDevice API 131795770645352881 0x7ffac9500000 2682880 C:\Windows\SYSTEM32\CoreUIComponents.dll 131795770645352881 0x7ffac9790000 98304 C:\Windows\System32\nlaapi.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Network Location Awareness 2 131795770645352881 0x7ffac97d0000 40960 C:\Windows\SYSTEM32\midimap.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft MIDI Mapper 131795770645352881 0x7ffac9bb0000 479232 C:\Windows\system32\es.dll 2001.12.10941.16384 (rs1_release.160715-1616) Microsoft Corporation COM+ 131795770645352881 0x7ffac9e00000 647168 C:\Windows\System32\PortableDeviceApi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Компоненты API для переносных устройств Windows 131795770645352881 0x7ffac9ea0000 81920 C:\Windows\System32\hcproviders.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщики компонента "Центр безопасности и обслуживания" 131795770645352881 0x7ffac9ec0000 294912 C:\Windows\System32\UIAnimation.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Animation Manager 131795770645352881 0x7ffac9f10000 221184 C:\Windows\System32\netprofm.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Network List Manager 131795770645352881 0x7ffac9f50000 1736704 C:\Windows\system32\windowscodecs.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Microsoft Windows Codecs Library 131795770645352881 0x7ffaca170000 45056 C:\Windows\SYSTEM32\ktmw32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows KTM Win32 Client DLL 131795770645352881 0x7ffaca180000 53248 C:\Windows\SYSTEM32\msacm32.drv 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Программа переназначения звуковых устройств 131795770645352881 0x7ffaca190000 241664 C:\Windows\System32\WorkFoldersShell.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширение оболочки рабочих папок (Майкрософт) 131795770645352881 0x7ffaca260000 45056 C:\Windows\System32\SystemEventsBrokerClient.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation system Events Broker Client Library 131795770645352881 0x7ffaca340000 1593344 C:\Windows\SYSTEM32\PROPSYS.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Система страниц свойств (Майкрософт) 131795770645352881 0x7ffaca4e0000 77824 C:\Windows\SYSTEM32\wtsapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Remote Desktop Session Host Server SDK APIs 131795770645352881 0x7ffaca550000 36864 C:\Windows\SYSTEM32\ksuser.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User CSA Library 131795770645352881 0x7ffaca570000 421888 C:\Windows\SYSTEM32\Bcp47Langs.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation BCP47 Language Classes 131795770645352881 0x7ffaca5e0000 155648 C:\Windows\SYSTEM32\dwmapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Интерфейс API диспетчера окон рабочего стола (Майкрософт) 131795770645352881 0x7ffaca610000 143360 C:\Windows\System32\SAMLIB.dll 10.0.14393.82 (rs1_release.160805-1735) Microsoft Corporation SAM Library DLL 131795770645352881 0x7ffaca640000 770048 C:\Windows\System32\CoreMessaging.dll 10.0.14393.0 Microsoft Corporation Microsoft CoreMessaging Dll 131795770645352881 0x7ffaca770000 1380352 C:\Windows\system32\dcomp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft DirectComposition Library 131795770645352881 0x7ffacab40000 176128 C:\Windows\SYSTEM32\WINMMBASE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base Multimedia Extension API DLL 131795770645352881 0x7ffacaba0000 143360 C:\Windows\SYSTEM32\WINMM.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation MCI API DLL 131795770645352881 0x7ffacac60000 69632 C:\Windows\system32\credui.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Credential Manager User Interface 131795770645352881 0x7ffacac80000 28672 C:\Windows\SYSTEM32\MSIMG32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation GDIEXT Client DLL 131795770645352881 0x7ffacadf0000 499712 C:\Windows\SYSTEM32\apphelp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиентская библиотека совместимости приложений 131795770645352881 0x7ffacaf00000 610304 C:\Windows\SYSTEM32\UxTheme.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека тем UxTheme (Microsoft) 131795770645352881 0x7ffacb140000 593920 C:\Windows\System32\msvcp110_win.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Microsoft® STL110 C++ Runtime Library 131795770645352881 0x7ffacb1e0000 1163264 C:\Windows\SYSTEM32\twinapi.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation twinapi.appcore 131795770645352881 0x7ffacb300000 364544 C:\Windows\System32\VEEventDispatcher.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Visual Element Event dispatcher 131795770645352881 0x7ffacb3d0000 110592 C:\Windows\SYSTEM32\resourcepolicyclient.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Resource Policy Client 131795770645352881 0x7ffacb3f0000 163840 C:\Windows\System32\DEVOBJ.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Device Information Set DLL 131795770645352881 0x7ffacb420000 204800 C:\Windows\SYSTEM32\ntmarta.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик Windows NT MARTA 131795770645352881 0x7ffacb6f0000 143360 C:\Windows\SYSTEM32\gpapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиентские функции API групповой политики 131795770645352881 0x7ffacb780000 651264 C:\Windows\system32\dxgi.dll 10.0.14393.953 (rs1_release_inmarket.170303-1614) Microsoft Corporation DirectX Graphics Infrastructure 131795770645352881 0x7ffacb920000 81920 C:\Windows\SYSTEM32\WLDP.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Политика блокировки Windows 131795770645352881 0x7ffacbaf0000 495616 C:\Windows\system32\schannel.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик безопасности TLS/SSL 131795770645352881 0x7ffacbbb0000 208896 C:\Windows\system32\rsaenh.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Enhanced Cryptographic Provider 131795770645352881 0x7ffacbbf0000 40960 C:\Windows\SYSTEM32\DPAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Data Protection API 131795770645352881 0x7ffacbd30000 229376 C:\Windows\System32\IPHLPAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API вспомогательного приложения IP 131795770645352881 0x7ffacbd70000 659456 C:\Windows\System32\DNSAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Динамическая библиотека API DNS-клиента 131795770645352881 0x7ffacbe20000 53248 C:\Windows\system32\netutils.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API Helpers DLL 131795770645352881 0x7ffacbe40000 126976 C:\Windows\SYSTEM32\USERENV.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Userenv 131795770645352881 0x7ffacbfb0000 376832 C:\Windows\system32\mswsock.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширение поставщика службы API Microsoft Windows Sockets 2.0 131795770645352881 0x7ffacc150000 94208 C:\Windows\SYSTEM32\cryptsp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Cryptographic Service Provider API 131795770645352881 0x7ffacc170000 45056 C:\Windows\System32\CRYPTBASE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base cryptographic API DLL 131795770645352881 0x7ffacc1f0000 241664 C:\Windows\System32\NTASN1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft ASN.1 API 131795770645352881 0x7ffacc230000 155648 C:\Windows\System32\ncrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Маршрутизатор Windows NCrypt 131795770645352881 0x7ffacc350000 180224 C:\Windows\SYSTEM32\SspiCli.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Security Support Provider Interface 131795770645352881 0x7ffacc500000 102400 C:\Windows\System32\EventAggregation.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Event Aggregation User Mode Library 131795770645352881 0x7ffacc520000 622592 C:\Windows\SYSTEM32\sxs.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Fusion 2.5 131795770645352881 0x7ffacc5c0000 352256 C:\Windows\SYSTEM32\WINSTA.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Winstation Library 131795770645352881 0x7ffacc620000 176128 C:\Windows\SYSTEM32\bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795770645352881 0x7ffacc6e0000 61440 C:\Windows\System32\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795770645352881 0x7ffacc6f0000 311296 C:\Windows\System32\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795770645352881 0x7ffacc740000 81920 C:\Windows\System32\profapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Profile Basic API 131795770645352881 0x7ffacc760000 65536 C:\Windows\System32\MSASN1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ASN.1 Runtime APIs 131795770645352881 0x7ffacc8f0000 1003520 C:\Windows\System32\ucrtbase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645352881 0x7ffacc9f0000 434176 C:\Windows\System32\bcryptPrimitives.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Cryptographic Primitives Library 131795770645352881 0x7ffacca60000 122880 C:\Windows\System32\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795770645352881 0x7ffacca80000 348160 C:\Windows\System32\WINTRUST.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation Microsoft Trust Verification APIs 131795770645352881 0x7ffaccae0000 692224 C:\Windows\System32\SHCORE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795770645352881 0x7ffaccb90000 7180288 C:\Windows\System32\windows.storage.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API хранения Microsoft WinRT 131795770645352881 0x7ffacd270000 2215936 C:\Windows\System32\KERNELBASE.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645352881 0x7ffacd490000 1871872 C:\Windows\System32\CRYPT32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API32 криптографии 131795770645352881 0x7ffacd710000 638976 C:\Windows\System32\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645352881 0x7ffacd7b0000 270336 C:\Windows\System32\cfgmgr32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Configuration Manager DLL 131795770645352881 0x7ffacd810000 22056960 C:\Windows\System32\SHELL32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Общая библиотека оболочки Windows 131795770645352881 0x7ffaced20000 782336 C:\Windows\System32\OLEAUT32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795770645352881 0x7ffacede0000 450560 C:\Windows\System32\coml2.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft COM for Windows 131795770645352881 0x7ffacee50000 1183744 C:\Windows\System32\RPCRT4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795770645352881 0x7ffacef80000 32768 C:\Windows\System32\NSI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation NSI User-mode interface DLL 131795770645352881 0x7ffacef90000 647168 C:\Windows\System32\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795770645352881 0x7ffacf030000 651264 C:\Windows\System32\clbcatq.dll 2001.12.10941.16384 (rs1_release.160715-1616) Microsoft Corporation COM+ Configuration Catalog 131795770645352881 0x7ffacf0d0000 704512 C:\Windows\System32\KERNEL32.DLL 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645352881 0x7ffacf1e0000 1417216 C:\Windows\System32\MSCTF.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Серверная библиотека MSCTF 131795770645352881 0x7ffacf340000 4362240 C:\Windows\System32\SETUPAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Setup API 131795770645352881 0x7ffacf770000 212992 C:\Windows\System32\GDI32.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation GDI Client DLL 131795770645352881 0x7ffacf820000 434176 C:\Windows\System32\WS2_32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation 32-разрядная библиотека Windows Socket 2.0 131795770645352881 0x7ffacf890000 188416 C:\Windows\System32\IMM32.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Multi-User Windows IMM32 API Client DLL 131795770645352881 0x7ffacf8c0000 1462272 C:\Windows\System32\USER32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795770645352881 0x7ffacfb30000 2916352 C:\Windows\System32\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795770645352881 0x7ffacfe00000 114688 C:\Windows\System32\imagehlp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT Image Helper 131795770645352881 0x7ffacfe20000 663552 C:\Windows\System32\advapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795770645352881 0x7ffad0070000 1277952 C:\Windows\System32\ole32.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft OLE для Windows 131795770645352881 0x7ffad01b0000 335872 C:\Windows\System32\SHLWAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека небольших программ оболочки 131795770645352881 0x7ffad0210000 364544 C:\Windows\System32\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795770645352881 0x7ffad0270000 1908736 C:\Windows\SYSTEM32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 13 404 396 14 00000000:000003e7 131765776186257169 0 0 1 Обязательная метка\Обязательный уровень системы NT AUTHORITY\СИСТЕМА csrss.exe C:\Windows\system32\csrss.exe %SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16 Microsoft Corporation 10.0.14393.0 (rs1_release.160715-1616) Процесс исполнения клиент-сервер 15 468 460 16 00000000:000003e7 131765776223665667 0 0 1 Обязательная метка\Обязательный уровень системы NT AUTHORITY\СИСТЕМА csrss.exe C:\Windows\system32\csrss.exe %SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16 Microsoft Corporation 10.0.14393.0 (rs1_release.160715-1616) Процесс исполнения клиент-сервер 17 484 396 14 00000000:000003e7 131765776226419105 0 0 1 Обязательная метка\Обязательный уровень системы NT AUTHORITY\СИСТЕМА wininit.exe C:\Windows\system32\wininit.exe wininit.exe Microsoft Corporation 10.0.14393.0 (rs1_release.160715-1616) Автозагрузка приложений Windows 18 520 460 16 00000000:000003e7 131765776226825613 0 0 1 Обязательная метка\Обязательный уровень системы NT AUTHORITY\СИСТЕМА winlogon.exe C:\Windows\system32\winlogon.exe winlogon.exe Microsoft Corporation 10.0.14393.0 (rs1_release.160715-1616) Программа входа в систему Windows 131795770645375500 0x7ff7b5570000 696320 C:\Windows\system32\winlogon.exe 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Программа входа в систему Windows 131795770645375500 0x7ffabaab0000 94208 C:\Windows\SYSTEM32\profext.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation profext 131795770645375500 0x7ffabcf30000 110592 C:\Windows\system32\MPR.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека маршрутизации для нескольких служб доступа 131795770645375500 0x7ffac4450000 86016 C:\Windows\SYSTEM32\usermgrcli.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation UserMgr API DLL 131795770645375500 0x7ffac90b0000 90112 C:\Windows\system32\wkscli.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Workstation Service Client DLL 131795770645375500 0x7ffaca4e0000 77824 C:\Windows\SYSTEM32\wtsapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Remote Desktop Session Host Server SDK APIs 131795770645375500 0x7ffacadf0000 499712 C:\Windows\system32\apphelp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиентская библиотека совместимости приложений 131795770645375500 0x7ffacaee0000 81920 C:\Windows\SYSTEM32\dwminit.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DWMInit 131795770645375500 0x7ffacaf00000 610304 C:\Windows\system32\UxTheme.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека тем UxTheme (Microsoft) 131795770645375500 0x7ffacafa0000 118784 C:\Windows\system32\UXINIT.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows User Experience Session Initialization Dll 131795770645375500 0x7ffacb360000 176128 C:\Windows\system32\fwbase.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Firewall Base DLL 131795770645375500 0x7ffacb420000 204800 C:\Windows\SYSTEM32\ntmarta.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик Windows NT MARTA 131795770645375500 0x7ffacb460000 548864 C:\Windows\SYSTEM32\firewallapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API брандмауэра Windows 131795770645375500 0x7ffacbbf0000 40960 C:\Windows\system32\DPAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Data Protection API 131795770645375500 0x7ffacbe20000 53248 C:\Windows\system32\netutils.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API Helpers DLL 131795770645375500 0x7ffacbe40000 126976 C:\Windows\system32\USERENV.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Userenv 131795770645375500 0x7ffacc170000 45056 C:\Windows\system32\CRYPTBASE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base cryptographic API DLL 131795770645375500 0x7ffacc350000 180224 C:\Windows\system32\SspiCli.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Security Support Provider Interface 131795770645375500 0x7ffacc5c0000 352256 C:\Windows\SYSTEM32\winsta.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Winstation Library 131795770645375500 0x7ffacc620000 176128 C:\Windows\system32\bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795770645375500 0x7ffacc6f0000 311296 C:\Windows\System32\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795770645375500 0x7ffacc740000 81920 C:\Windows\System32\profapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Profile Basic API 131795770645375500 0x7ffacc760000 65536 C:\Windows\System32\MSASN1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ASN.1 Runtime APIs 131795770645375500 0x7ffacc8f0000 1003520 C:\Windows\System32\ucrtbase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645375500 0x7ffacc9f0000 434176 C:\Windows\System32\bcryptPrimitives.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Cryptographic Primitives Library 131795770645375500 0x7ffacca60000 122880 C:\Windows\System32\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795770645375500 0x7ffaccae0000 692224 C:\Windows\System32\shcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795770645375500 0x7ffacd270000 2215936 C:\Windows\System32\KERNELBASE.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645375500 0x7ffacd490000 1871872 C:\Windows\System32\CRYPT32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API32 криптографии 131795770645375500 0x7ffacee50000 1183744 C:\Windows\System32\RPCRT4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795770645375500 0x7ffacef90000 647168 C:\Windows\System32\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795770645375500 0x7ffacf0d0000 704512 C:\Windows\System32\KERNEL32.DLL 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645375500 0x7ffacf770000 212992 C:\Windows\System32\GDI32.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation GDI Client DLL 131795770645375500 0x7ffacf890000 188416 C:\Windows\System32\IMM32.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Multi-User Windows IMM32 API Client DLL 131795770645375500 0x7ffacf8c0000 1462272 C:\Windows\System32\user32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795770645375500 0x7ffacfb30000 2916352 C:\Windows\System32\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795770645375500 0x7ffacfe20000 663552 C:\Windows\System32\advapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795770645375500 0x7ffad0210000 364544 C:\Windows\System32\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795770645375500 0x7ffad0270000 1908736 C:\Windows\SYSTEM32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 19 588 484 17 00000000:000003e7 131765776277547408 0 0 1 Обязательная метка\Обязательный уровень системы NT AUTHORITY\СИСТЕМА lsass.exe C:\Windows\system32\lsass.exe C:\Windows\system32\lsass.exe Microsoft Corporation 10.0.14393.1770 (rs1_release.170917-1700) Local Security Authority Process 131795770645375702 0x222e3610000 12288 C:\Windows\system32\msprivs.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Переводы привилегий Майкрософт 131795770645375702 0x7ff6b2d20000 69632 C:\Windows\system32\lsass.exe 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Local Security Authority Process 131795770645375702 0x7ffab9170000 380928 C:\Windows\System32\vaultsvc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служба диспетчера учетных данных 131795770645375702 0x7ffabf170000 77824 C:\Windows\system32\hmkd.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows HMAC Key Derivation API 131795770645375702 0x7ffabf190000 126976 C:\Windows\System32\ngcpopkeysrv.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Microsoft Passport Proof-of-possession Key Service 131795770645375702 0x7ffabf1b0000 114688 C:\Windows\system32\keyiso.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служба изоляции ключей CNG 131795770645375702 0x7ffabf1d0000 192512 C:\Windows\System32\cryptnet.dll 10.0.14393.2035 (rs1_release_inmarket.180110-1910) Microsoft Corporation Crypto Network Related API 131795770645375702 0x7ffabf200000 405504 C:\Windows\SYSTEM32\cryptngc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API службы Microsoft Passport 131795770645375702 0x7ffabf270000 143360 C:\Windows\System32\SecureTimeAggregator.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Secure Time Aggregator 131795770645375702 0x7ffabf2a0000 159744 C:\Windows\system32\dssenh.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Enhanced DSS and Diffie-Hellman Cryptographic Provider 131795770645375702 0x7ffabf2d0000 344064 C:\Windows\system32\ncryptprov.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft KSP 131795770645375702 0x7ffabff60000 135168 C:\Windows\system32\ncryptsslp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft SChannel Provider 131795770645375702 0x7ffac0ac0000 53248 C:\Windows\system32\tbs.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation TBS 131795770645375702 0x7ffac0ad0000 86016 C:\Windows\SYSTEM32\mskeyprotect.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик защиты ключей (Майкрософт) 131795770645375702 0x7ffac1d60000 589824 C:\Windows\system32\webio.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API протоколов передачи по Веб 131795770645375702 0x7ffac6610000 40960 C:\Windows\System32\rasadhlp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Remote Access AutoDial Helper 131795770645375702 0x7ffac69c0000 839680 C:\Windows\system32\WINHTTP.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Службы HTTP Windows 131795770645375702 0x7ffac6b90000 53248 C:\Windows\system32\DSPARSE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Active Directory Domain Services API 131795770645375702 0x7ffac6ba0000 49152 C:\Windows\SYSTEM32\secur32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Security Support Provider Interface 131795770645375702 0x7ffac83d0000 106496 C:\Windows\SYSTEM32\dhcpcsvc.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служба DHCP-клиента 131795770645375702 0x7ffac83f0000 90112 C:\Windows\SYSTEM32\dhcpcsvc6.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиент DHCPv6 131795770645375702 0x7ffac8420000 434176 C:\Windows\System32\fwpuclnt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API пользовательского режима FWP/IPsec 131795770645375702 0x7ffac8810000 45056 C:\Windows\SYSTEM32\WINNSI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Network Store Information RPC interface 131795770645375702 0x7ffac8fa0000 253952 C:\Windows\system32\logoncli.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Net Logon Client DLL 131795770645375702 0x7ffac9220000 397312 C:\Windows\SYSTEM32\wevtapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API настройки и использования событий 131795770645375702 0x7ffac9290000 40960 C:\Windows\system32\DSROLE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DS Setup Client DLL 131795770645375702 0x7ffacb6f0000 143360 C:\Windows\SYSTEM32\gpapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиентские функции API групповой политики 131795770645375702 0x7ffacb960000 303104 C:\Windows\system32\AUTHZ.dll 10.0.14393.1737 (rs1_release_inmarket.170914-1249) Microsoft Corporation Authorization Framework 131795770645375702 0x7ffacb9b0000 294912 C:\Windows\system32\scecli.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиент редактора конфигураций безопасности 131795770645375702 0x7ffacba80000 49152 C:\Windows\SYSTEM32\SspiSrv.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation LSA SSPI RPC interface DLL 131795770645375702 0x7ffacba90000 221184 C:\Windows\system32\dpapisrv.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DPAPI Server 131795770645375702 0x7ffacbad0000 102400 C:\Windows\system32\efslsaext.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation LSA extension for EFS 131795770645375702 0x7ffacbaf0000 495616 C:\Windows\system32\schannel.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик безопасности TLS/SSL 131795770645375702 0x7ffacbb70000 245760 C:\Windows\system32\wdigest.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Digest Access 131795770645375702 0x7ffacbbb0000 208896 C:\Windows\system32\rsaenh.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Enhanced Cryptographic Provider 131795770645375702 0x7ffacbbf0000 40960 C:\Windows\SYSTEM32\DPAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Data Protection API 131795770645375702 0x7ffacbc00000 290816 C:\Windows\SYSTEM32\MicrosoftAccountCloudAP.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation MicrosoftAccount Cloud AP Plugin 131795770645375702 0x7ffacbc50000 372736 C:\Windows\system32\cloudAP.DLL 10.0.14393.1358 (rs1_release.170602-2252) Microsoft Corporation Cloud AP Security Package 131795770645375702 0x7ffacbcb0000 278528 C:\Windows\system32\pku2u.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Pku2u Security Package 131795770645375702 0x7ffacbd00000 139264 C:\Windows\system32\tspkg.DLL 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation Web Service Security Package 131795770645375702 0x7ffacbd30000 229376 C:\Windows\SYSTEM32\IPHLPAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API вспомогательного приложения IP 131795770645375702 0x7ffacbd70000 659456 C:\Windows\system32\DNSAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Динамическая библиотека API DNS-клиента 131795770645375702 0x7ffacbe20000 53248 C:\Windows\system32\netutils.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API Helpers DLL 131795770645375702 0x7ffacbe30000 57344 C:\Windows\system32\gmsaclient.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation "gmsaclient.DYNLINK" 131795770645375702 0x7ffacbe40000 126976 C:\Windows\system32\USERENV.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Userenv 131795770645375702 0x7ffacbe60000 843776 C:\Windows\system32\netlogon.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Динамическая библиотека службы Net Logon 131795770645375702 0x7ffacbf30000 49152 C:\Windows\system32\NtlmShared.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation NTLM Shared Functionality 131795770645375702 0x7ffacbf40000 421888 C:\Windows\system32\msv1_0.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Authentication Package v1.0 131795770645375702 0x7ffacbfb0000 376832 C:\Windows\system32\mswsock.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширение поставщика службы API Microsoft Windows Sockets 2.0 131795770645375702 0x7ffacc010000 86016 C:\Windows\system32\cryptdll.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Cryptography Manager 131795770645375702 0x7ffacc030000 163840 C:\Windows\system32\KerbClientShared.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Kerberos Client Shared Functionality 131795770645375702 0x7ffacc150000 94208 C:\Windows\system32\CRYPTSP.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Cryptographic Service Provider API 131795770645375702 0x7ffacc170000 45056 C:\Windows\system32\CRYPTBASE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base cryptographic API DLL 131795770645375702 0x7ffacc180000 155648 C:\Windows\system32\negoexts.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation NegoExtender Security Package 131795770645375702 0x7ffacc1b0000 126976 C:\Windows\system32\JOINUTIL.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Join Utility DLL 131795770645375702 0x7ffacc1d0000 86016 C:\Windows\SYSTEM32\netprovfw.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Provisioning Service Framework DLL 131795770645375702 0x7ffacc1f0000 241664 C:\Windows\system32\NTASN1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft ASN.1 API 131795770645375702 0x7ffacc230000 155648 C:\Windows\system32\ncrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Маршрутизатор Windows NCrypt 131795770645375702 0x7ffacc260000 921600 C:\Windows\SYSTEM32\samsrv.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека сервера диспетчера учетных записей 131795770645375702 0x7ffacc350000 180224 C:\Windows\system32\SspiCli.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Security Support Provider Interface 131795770645375702 0x7ffacc380000 1527808 C:\Windows\system32\lsasrv.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation Библиотека DLL сервера LSA 131795770645375702 0x7ffacc5c0000 352256 C:\Windows\SYSTEM32\winsta.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Winstation Library 131795770645375702 0x7ffacc620000 176128 C:\Windows\system32\bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795770645375702 0x7ffacc6f0000 311296 C:\Windows\System32\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795770645375702 0x7ffacc740000 81920 C:\Windows\System32\profapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Profile Basic API 131795770645375702 0x7ffacc760000 65536 C:\Windows\System32\MSASN1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ASN.1 Runtime APIs 131795770645375702 0x7ffacc8f0000 1003520 C:\Windows\System32\ucrtbase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645375702 0x7ffacc9f0000 434176 C:\Windows\System32\bcryptprimitives.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Cryptographic Primitives Library 131795770645375702 0x7ffacd270000 2215936 C:\Windows\System32\KERNELBASE.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645375702 0x7ffacd490000 1871872 C:\Windows\System32\CRYPT32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API32 криптографии 131795770645375702 0x7ffacd710000 638976 C:\Windows\System32\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645375702 0x7ffaced20000 782336 C:\Windows\System32\OLEAUT32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795770645375702 0x7ffacee50000 1183744 C:\Windows\System32\RPCRT4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795770645375702 0x7ffacef80000 32768 C:\Windows\System32\NSI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation NSI User-mode interface DLL 131795770645375702 0x7ffacef90000 647168 C:\Windows\System32\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795770645375702 0x7ffacf0d0000 704512 C:\Windows\System32\KERNEL32.DLL 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645375702 0x7ffacf180000 376832 C:\Windows\System32\WLDAP32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Win32 LDAP API DLL 131795770645375702 0x7ffacf820000 434176 C:\Windows\System32\WS2_32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation 32-разрядная библиотека Windows Socket 2.0 131795770645375702 0x7ffacfb30000 2916352 C:\Windows\System32\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795770645375702 0x7ffacfe20000 663552 C:\Windows\System32\advapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795770645375702 0x7ffad0210000 364544 C:\Windows\System32\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795770645375702 0x7ffad0270000 1908736 C:\Windows\SYSTEM32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 20 704 580 4 00000000:000003e4 131765776284978539 0 0 1 Обязательная метка\Обязательный уровень системы NT AUTHORITY\NETWORK SERVICE svchost.exe C:\Windows\system32\svchost.exe C:\Windows\system32\svchost.exe -k RPCSS Microsoft Corporation 10.0.14393.0 (rs1_release.160715-1616) Хост-процесс для служб Windows 131795770645375918 0x7ff718c20000 57344 C:\Windows\system32\svchost.exe 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Хост-процесс для служб Windows 131795770645375918 0x7ffabae40000 110592 C:\Windows\SYSTEM32\capauthz.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API авторизации возможностей 131795770645375918 0x7ffac4450000 86016 C:\Windows\SYSTEM32\usermgrcli.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation UserMgr API DLL 131795770645375918 0x7ffac6610000 40960 C:\Windows\System32\rasadhlp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Remote Access AutoDial Helper 131795770645375918 0x7ffac8250000 28672 C:\Windows\system32\wshhyperv.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Hyper-V Winsock2 Helper DLL 131795770645375918 0x7ffac8420000 434176 C:\Windows\system32\fwpuclnt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API пользовательского режима FWP/IPsec 131795770645375918 0x7ffaca4e0000 77824 C:\Windows\SYSTEM32\wtsapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Remote Desktop Session Host Server SDK APIs 131795770645375918 0x7ffacb360000 176128 C:\Windows\system32\fwbase.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Firewall Base DLL 131795770645375918 0x7ffacb460000 548864 C:\Windows\system32\FirewallAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API брандмауэра Windows 131795770645375918 0x7ffacb5c0000 913408 c:\windows\system32\rpcss.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Distributed COM Services 131795770645375918 0x7ffacb6a0000 73728 C:\Windows\system32\RpcRtRemote.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Remote RPC Extension 131795770645375918 0x7ffacb6c0000 98304 c:\windows\system32\rpcepmap.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Сопоставитель конечных точек RPC 131795770645375918 0x7ffacb920000 81920 C:\Windows\SYSTEM32\WLDP.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Политика блокировки Windows 131795770645375918 0x7ffacbd30000 229376 C:\Windows\SYSTEM32\IPHLPAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API вспомогательного приложения IP 131795770645375918 0x7ffacbd70000 659456 C:\Windows\SYSTEM32\DNSAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Динамическая библиотека API DNS-клиента 131795770645375918 0x7ffacbf30000 49152 C:\Windows\system32\NtlmShared.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation NTLM Shared Functionality 131795770645375918 0x7ffacbf40000 421888 C:\Windows\system32\msv1_0.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Authentication Package v1.0 131795770645375918 0x7ffacbfb0000 376832 C:\Windows\system32\mswsock.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширение поставщика службы API Microsoft Windows Sockets 2.0 131795770645375918 0x7ffacc010000 86016 C:\Windows\system32\cryptdll.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Cryptography Manager 131795770645375918 0x7ffacc350000 180224 C:\Windows\system32\sspicli.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Security Support Provider Interface 131795770645375918 0x7ffacc5c0000 352256 C:\Windows\SYSTEM32\WINSTA.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Winstation Library 131795770645375918 0x7ffacc620000 176128 C:\Windows\system32\bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795770645375918 0x7ffacc6e0000 61440 C:\Windows\System32\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795770645375918 0x7ffacc6f0000 311296 C:\Windows\System32\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795770645375918 0x7ffacc760000 65536 C:\Windows\System32\MSASN1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ASN.1 Runtime APIs 131795770645375918 0x7ffacc8f0000 1003520 C:\Windows\System32\ucrtbase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645375918 0x7ffacc9f0000 434176 C:\Windows\System32\bcryptPrimitives.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Cryptographic Primitives Library 131795770645375918 0x7ffacca60000 122880 C:\Windows\System32\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795770645375918 0x7ffacca80000 348160 C:\Windows\System32\WINTRUST.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation Microsoft Trust Verification APIs 131795770645375918 0x7ffacd270000 2215936 C:\Windows\System32\KERNELBASE.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645375918 0x7ffacd490000 1871872 C:\Windows\System32\CRYPT32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API32 криптографии 131795770645375918 0x7ffacee50000 1183744 C:\Windows\System32\RPCRT4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795770645375918 0x7ffacef80000 32768 C:\Windows\System32\NSI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation NSI User-mode interface DLL 131795770645375918 0x7ffacef90000 647168 C:\Windows\System32\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795770645375918 0x7ffacf030000 651264 C:\Windows\System32\clbcatq.dll 2001.12.10941.16384 (rs1_release.160715-1616) Microsoft Corporation COM+ Configuration Catalog 131795770645375918 0x7ffacf0d0000 704512 C:\Windows\System32\KERNEL32.DLL 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645375918 0x7ffacf770000 212992 C:\Windows\System32\GDI32.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation GDI Client DLL 131795770645375918 0x7ffacf820000 434176 C:\Windows\System32\WS2_32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation 32-разрядная библиотека Windows Socket 2.0 131795770645375918 0x7ffacf8c0000 1462272 C:\Windows\System32\USER32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795770645375918 0x7ffacfb30000 2916352 C:\Windows\System32\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795770645375918 0x7ffacfe20000 663552 C:\Windows\System32\advapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795770645375918 0x7ffad0070000 1277952 C:\Windows\System32\ole32.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft OLE для Windows 131795770645375918 0x7ffad0210000 364544 C:\Windows\System32\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795770645375918 0x7ffad0270000 1908736 C:\Windows\SYSTEM32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 21 808 520 18 00000000:0000c8d4 131765776288401882 0 0 1 Обязательная метка\Обязательный уровень системы Window Manager\DWM-1 dwm.exe C:\Windows\system32\dwm.exe "dwm.exe" Microsoft Corporation 10.0.14393.0 (rs1_release.160715-1616) Диспетчер окон рабочего стола 131795770645376024 0x7ff683990000 77824 C:\Windows\system32\dwm.exe 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Диспетчер окон рабочего стола 131795770645376024 0x7ffac3810000 167936 C:\Windows\system32\Cabinet.dll 5.00 (rs1_release.160715-1616) Microsoft Corporation Microsoft® Cabinet File API 131795770645376024 0x7ffac60e0000 221184 C:\Windows\system32\XmlLite.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft XmlLite Library 131795770645376024 0x7ffac6f50000 5632000 C:\Windows\system32\d2d1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека Microsoft D2D 131795770645376024 0x7ffac7720000 1601536 C:\Windows\System32\OneCoreUAPCommonProxyStub.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation OneCoreUAP Common Proxy Stub 131795770645376024 0x7ffac7b70000 569344 C:\Windows\System32\Windows.Gaming.Input.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Gaming Input API 131795770645376024 0x7ffac7fc0000 2674688 C:\Windows\system32\d3d10warp.dll 10.0.14393.576 (rs1_release_inmarket.161208-2252) Microsoft Corporation Direct3D 10 Rasterizer 131795770645376024 0x7ffac88a0000 2842624 C:\Windows\system32\d3d11.dll 10.0.14393.953 (rs1_release_inmarket.170303-1614) Microsoft Corporation Direct3D 11 Runtime 131795770645376024 0x7ffac8f90000 45056 C:\Windows\system32\avrt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Среда выполнения мультимедиа в реальном времени 131795770645376024 0x7ffac92e0000 1269760 C:\Windows\SYSTEM32\wintypes.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL основных типов Windows 131795770645376024 0x7ffac9500000 2682880 C:\Windows\system32\CoreUIComponents.dll 131795770645376024 0x7ffac9a30000 249856 C:\Windows\SYSTEM32\ism32k.dll 131795770645376024 0x7ffac9ec0000 294912 C:\Windows\System32\UIAnimation.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Animation Manager 131795770645376024 0x7ffac9f50000 1736704 C:\Windows\system32\WindowsCodecs.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Microsoft Windows Codecs Library 131795770645376024 0x7ffaca110000 94208 C:\Windows\SYSTEM32\dwmghost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DWMGhost 131795770645376024 0x7ffaca5e0000 155648 C:\Windows\system32\dwmapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Интерфейс API диспетчера окон рабочего стола (Майкрософт) 131795770645376024 0x7ffaca640000 770048 C:\Windows\system32\CoreMessaging.dll 10.0.14393.0 Microsoft Corporation Microsoft CoreMessaging Dll 131795770645376024 0x7ffaca770000 1380352 C:\Windows\system32\dcomp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft DirectComposition Library 131795770645376024 0x7ffaca8d0000 2318336 C:\Windows\system32\dwmcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека ядра Microsoft DWM 131795770645376024 0x7ffacac90000 856064 C:\Windows\SYSTEM32\udwm.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Диспетчер окон рабочего стола Майкрософт 131795770645376024 0x7ffacadc0000 167936 C:\Windows\SYSTEM32\dwmredir.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Компонент перенаправления диспетчера окон рабочего стола Microsoft 131795770645376024 0x7ffacadf0000 499712 C:\Windows\system32\apphelp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиентская библиотека совместимости приложений 131795770645376024 0x7ffacaf00000 610304 C:\Windows\system32\uxtheme.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека тем UxTheme (Microsoft) 131795770645376024 0x7ffacb1e0000 1163264 C:\Windows\System32\twinapi.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation twinapi.appcore 131795770645376024 0x7ffacb780000 651264 C:\Windows\system32\dxgi.dll 10.0.14393.953 (rs1_release_inmarket.170303-1614) Microsoft Corporation DirectX Graphics Infrastructure 131795770645376024 0x7ffacc620000 176128 C:\Windows\System32\bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795770645376024 0x7ffacc6e0000 61440 C:\Windows\System32\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795770645376024 0x7ffacc760000 65536 C:\Windows\System32\MSASN1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ASN.1 Runtime APIs 131795770645376024 0x7ffacc8f0000 1003520 C:\Windows\System32\ucrtbase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645376024 0x7ffacc9f0000 434176 C:\Windows\System32\bcryptPrimitives.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Cryptographic Primitives Library 131795770645376024 0x7ffacca60000 122880 C:\Windows\System32\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795770645376024 0x7ffaccae0000 692224 C:\Windows\System32\shcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795770645376024 0x7ffacd270000 2215936 C:\Windows\System32\KERNELBASE.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645376024 0x7ffacd490000 1871872 C:\Windows\System32\CRYPT32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API32 криптографии 131795770645376024 0x7ffacd710000 638976 C:\Windows\System32\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645376024 0x7ffacd7b0000 270336 C:\Windows\System32\cfgmgr32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Configuration Manager DLL 131795770645376024 0x7ffaced20000 782336 C:\Windows\System32\OLEAUT32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795770645376024 0x7ffacee50000 1183744 C:\Windows\System32\RPCRT4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795770645376024 0x7ffacef90000 647168 C:\Windows\System32\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795770645376024 0x7ffacf030000 651264 C:\Windows\System32\clbcatq.dll 2001.12.10941.16384 (rs1_release.160715-1616) Microsoft Corporation COM+ Configuration Catalog 131795770645376024 0x7ffacf0d0000 704512 C:\Windows\System32\KERNEL32.DLL 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645376024 0x7ffacf770000 212992 C:\Windows\System32\gdi32.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation GDI Client DLL 131795770645376024 0x7ffacf890000 188416 C:\Windows\System32\IMM32.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Multi-User Windows IMM32 API Client DLL 131795770645376024 0x7ffacf8c0000 1462272 C:\Windows\System32\USER32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795770645376024 0x7ffacfb30000 2916352 C:\Windows\System32\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795770645376024 0x7ffacfe20000 663552 C:\Windows\System32\advapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795770645376024 0x7ffad0210000 364544 C:\Windows\System32\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795770645376024 0x7ffad0270000 1908736 C:\Windows\SYSTEM32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 22 904 580 4 00000000:000003e7 131765776293087855 0 0 1 Обязательная метка\Обязательный уровень системы NT AUTHORITY\СИСТЕМА svchost.exe C:\Windows\System32\svchost.exe C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted Microsoft Corporation 10.0.14393.0 (rs1_release.160715-1616) Хост-процесс для служб Windows 131795770645376243 0x259b0640000 12288 C:\Windows\system32\SFC.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows File Protection 131795770645376243 0x7ff718c20000 57344 C:\Windows\System32\svchost.exe 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Хост-процесс для служб Windows 131795770645376243 0x7ffaab830000 278528 c:\windows\system32\netman.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Диспетчер сетевых подключений 131795770645376243 0x7ffaab880000 532480 c:\windows\system32\MPRAPI.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation Windows NT MP Router Administration DLL 131795770645376243 0x7ffaab910000 905216 c:\windows\system32\RASDLG.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API общих диалогов службы удаленного доступа 131795770645376243 0x7ffab1260000 10350592 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\clr.dll 4.7.2117.0 built by: NET47REL1LAST Microsoft Corporation Microsoft .NET Runtime Common Language Runtime - WorkStation 131795770645376243 0x7ffab2460000 2822144 C:\Windows\System32\netshell.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Оболочка сетевых подключений 131795770645376243 0x7ffab7d80000 753664 c:\windows\system32\RASAPI32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API удаленного доступа 131795770645376243 0x7ffabae60000 77824 C:\Windows\System32\DEVRTL.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Device Management Run Time Library 131795770645376243 0x7ffabb430000 65536 C:\Windows\System32\pcacli.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Program Compatibility Assistant Client Module 131795770645376243 0x7ffabc510000 90112 C:\Windows\system32\execmodelproxy.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ExecModelProxy 131795770645376243 0x7ffabcf30000 110592 C:\Windows\System32\MPR.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека маршрутизации для нескольких служб доступа 131795770645376243 0x7ffabcf50000 921600 C:\Windows\System32\drvstore.dll 10.0.14393.351 (rs1_release_inmarket.161014-1755) Microsoft Corporation Driver Store API 131795770645376243 0x7ffabdd60000 425984 C:\Windows\System32\AppXDeploymentClient.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL-библиотека клиента развертывания AppX 131795770645376243 0x7ffabef80000 69632 C:\Windows\System32\sfc_os.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows File Protection 131795770645376243 0x7ffabfa00000 1011712 C:\Windows\SYSTEM32\MSVCR120_CLR0400.dll 12.00.52519.0 built by: VSWINSERVICING Microsoft Corporation Microsoft® C Runtime Library 131795770645376243 0x7ffac0610000 3088384 C:\Windows\System32\MSI.DLL 5.0.14393.2155 Microsoft Corporation Windows Installer 131795770645376243 0x7ffac0bf0000 3559424 C:\Windows\System32\ActXPrxy.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation ActiveX Interface Marshaling Library 131795770645376243 0x7ffac0fc0000 294912 C:\Windows\system32\spp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека общих точек защиты Microsoft® Windows 131795770645376243 0x7ffac1010000 417792 C:\Windows\system32\MSCOREE.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft .NET Runtime Execution Engine 131795770645376243 0x7ffac10f0000 421888 c:\windows\system32\storsvc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Службы хранения 131795770645376243 0x7ffac1240000 638976 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscoreei.dll 4.7.2623.0 built by: NET471REL1LAST_C Microsoft Corporation Microsoft .NET Runtime Execution Engine 131795770645376243 0x7ffac1e80000 507904 C:\Windows\System32\NetSetupShim.dll 10.0.14393.1532 (rs1_release_d.170711-1840) Microsoft Corporation Network Configuration API 131795770645376243 0x7ffac1fd0000 999424 C:\Windows\system32\wbem\fastprox.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation WMI Custom Marshaller 131795770645376243 0x7ffac20d0000 110592 c:\windows\system32\RMCLIENT.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Resource Manager Client 131795770645376243 0x7ffac21d0000 81920 C:\Windows\system32\wbem\wbemsvc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation WMI 131795770645376243 0x7ffac2360000 57344 c:\windows\system32\TimeBrokerClient.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Time Broker Client Library 131795770645376243 0x7ffac23c0000 331776 C:\Windows\System32\OneCoreCommonProxyStub.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation OneCore Common Proxy Stub 131795770645376243 0x7ffac2420000 466944 c:\windows\system32\das.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служба сопоставления устройств 131795770645376243 0x7ffac2530000 270336 C:\Windows\system32\hnetcfgclient.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиент API конфигурации домашней сети 131795770645376243 0x7ffac2750000 106496 c:\windows\system32\bcd.dll 10.0.14393.1794 (rs1_release.171008-1615) Microsoft Corporation BCD DLL 131795770645376243 0x7ffac29f0000 159744 C:\Windows\System32\NetSetupApi.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Network Configuration API 131795770645376243 0x7ffac2a20000 81920 c:\windows\system32\rtutils.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Routing Utilities 131795770645376243 0x7ffac2b80000 40960 C:\Windows\System32\VERSION.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Version Checking and File Installation Libraries 131795770645376243 0x7ffac3270000 40960 c:\windows\system32\FLTLIB.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека фильтров 131795770645376243 0x7ffac34c0000 81920 C:\Windows\system32\vss_ps.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation Microsoft® Volume Shadow Copy Service proxy/stub 131795770645376243 0x7ffac3840000 3088384 c:\windows\system32\ESENT.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширяемая подсистема хранения данных ESE для Microsoft(R) Windows(R) 131795770645376243 0x7ffac4050000 118784 c:\windows\system32\wdi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Инфраструктура диагностики Windows 131795770645376243 0x7ffac41c0000 139264 c:\windows\system32\trkwks.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиент отслеживания изменившихся связей 131795770645376243 0x7ffac4220000 520192 C:\Windows\SYSTEM32\wbemcomn.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation WMI 131795770645376243 0x7ffac4450000 86016 C:\Windows\SYSTEM32\usermgrcli.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation UserMgr API DLL 131795770645376243 0x7ffac4470000 65536 C:\Windows\system32\wbem\wbemprox.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation WMI 131795770645376243 0x7ffac4650000 516096 c:\windows\system32\pcasvc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служба помощника по совместимости программ 131795770645376243 0x7ffac4f40000 122880 C:\Windows\system32\radardt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Программа обнаружения нехватки системных ресурсов Windows 131795770645376243 0x7ffac4fd0000 618496 C:\Windows\System32\wlidprov.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft® Account Provider 131795770645376243 0x7ffac5b30000 114688 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\fusion.dll 4.6.1586.0 built by: NETFXREL2 Microsoft Corporation Assembly manager 131795770645376243 0x7ffac5b50000 180224 c:\windows\system32\dssvc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL службы NT для службы совместного доступа к данным 131795770645376243 0x7ffac5c50000 131072 c:\windows\system32\rasman.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Remote Access Connection Manager 131795770645376243 0x7ffac60e0000 221184 C:\Windows\System32\XmlLite.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft XmlLite Library 131795770645376243 0x7ffac6120000 966656 c:\windows\system32\sysmain.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Хост службы Superfetch 131795770645376243 0x7ffac6410000 98304 C:\Windows\system32\VssTrace.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека трассировки службы теневого копирования тома Microsoft® 131795770645376243 0x7ffac6430000 1581056 C:\Windows\system32\VSSAPI.DLL 10.0.14393.953 (rs1_release_inmarket.170303-1614) Microsoft Corporation Microsoft® Volume Shadow Copy Requestor/Writer Services API DLL 131795770645376243 0x7ffac6c40000 2596864 C:\Windows\WinSxS\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.14393.953_none_42151e83c686086b\Comctl32.dll 6.10 (rs1_release_inmarket.170303-1614) Microsoft Corporation Библиотека элементов управления взаимодействия с пользователем 131795770645376243 0x7ffac79c0000 57344 C:\Windows\System32\npmproxy.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Network List Manager Proxy 131795770645376243 0x7ffac7b10000 217088 C:\Windows\SYSTEM32\WUDFPlatform.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Driver Foundation - библиотека платформ пользовательского режима 131795770645376243 0x7ffac7b50000 114688 c:\windows\system32\wudfsvc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Driver Foundation (WDF) - служба среды выполнения платформы драйвера режима пользователя 131795770645376243 0x7ffac8810000 45056 c:\windows\system32\WINNSI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Network Store Information RPC interface 131795770645376243 0x7ffac8880000 69632 c:\windows\system32\WMICLNT.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation WMI Client API 131795770645376243 0x7ffac8cf0000 815104 C:\Windows\System32\taskschd.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Task Scheduler COM API 131795770645376243 0x7ffac9290000 40960 c:\windows\system32\DSROLE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DS Setup Client DLL 131795770645376243 0x7ffac9480000 462848 c:\windows\system32\MMDevAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation MMDevice API 131795770645376243 0x7ffac9790000 98304 C:\Windows\System32\nlaapi.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Network Location Awareness 2 131795770645376243 0x7ffac9800000 376832 c:\windows\system32\audioendpointbuilder.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Средство построения конечных точек Windows Audio 131795770645376243 0x7ffac9de0000 94208 C:\Windows\System32\portabledeviceconnectapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Portable Device Connection API Components 131795770645376243 0x7ffac9e00000 647168 C:\Windows\SYSTEM32\PortableDeviceApi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Компоненты API для переносных устройств Windows 131795770645376243 0x7ffac9f10000 221184 C:\Windows\System32\netprofm.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Network List Manager 131795770645376243 0x7ffaca100000 36864 C:\Windows\SYSTEM32\httpprxc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Proxy Manager Provider RPC interface 131795770645376243 0x7ffaca130000 204800 C:\Windows\SYSTEM32\windows.devices.radios.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows.Devices.Radios DLL 131795770645376243 0x7ffaca1f0000 65536 C:\Windows\SYSTEM32\storageusage.dll 10.0.14393.82 (rs1_release.160805-1735) Microsoft Corporation Storage Usage 131795770645376243 0x7ffaca250000 49152 C:\Windows\SYSTEM32\bi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Background Broker Infrastructure Client Library 131795770645376243 0x7ffaca260000 45056 c:\windows\system32\SystemEventsBrokerClient.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation system Events Broker Client Library 131795770645376243 0x7ffaca2d0000 360448 c:\windows\system32\ncbservice.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Посредник подключений к сети 131795770645376243 0x7ffaca340000 1593344 c:\windows\system32\PROPSYS.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Система страниц свойств (Майкрософт) 131795770645376243 0x7ffaca4e0000 77824 c:\windows\system32\WTSAPI32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Remote Desktop Session Host Server SDK APIs 131795770645376243 0x7ffaca710000 65536 C:\Windows\system32\pcadm.dll 10.0.14393.2189 (rs1_release.180329-1711) Microsoft Corporation Program Compatibility Assistant Diagnostic Module 131795770645376243 0x7ffacad70000 278528 c:\windows\system32\BrokerLib.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Broker Base Library 131795770645376243 0x7ffacadf0000 499712 c:\windows\system32\apphelp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиентская библиотека совместимости приложений 131795770645376243 0x7ffacb1e0000 1163264 C:\Windows\SYSTEM32\twinapi.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation twinapi.appcore 131795770645376243 0x7ffacb3f0000 163840 C:\Windows\System32\DEVOBJ.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Device Information Set DLL 131795770645376243 0x7ffacb420000 204800 C:\Windows\SYSTEM32\ntmarta.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик Windows NT MARTA 131795770645376243 0x7ffacb920000 81920 C:\Windows\SYSTEM32\WLDP.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Политика блокировки Windows 131795770645376243 0x7ffacbbb0000 208896 C:\Windows\system32\rsaenh.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Enhanced Cryptographic Provider 131795770645376243 0x7ffacbbf0000 40960 c:\windows\system32\DPAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Data Protection API 131795770645376243 0x7ffacbd30000 229376 c:\windows\system32\IPHLPAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API вспомогательного приложения IP 131795770645376243 0x7ffacbe40000 126976 c:\windows\system32\USERENV.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Userenv 131795770645376243 0x7ffacbfb0000 376832 C:\Windows\system32\mswsock.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширение поставщика службы API Microsoft Windows Sockets 2.0 131795770645376243 0x7ffacc150000 94208 C:\Windows\System32\CRYPTSP.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Cryptographic Service Provider API 131795770645376243 0x7ffacc170000 45056 C:\Windows\System32\CRYPTBASE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base cryptographic API DLL 131795770645376243 0x7ffacc350000 180224 c:\windows\system32\SspiCli.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Security Support Provider Interface 131795770645376243 0x7ffacc500000 102400 c:\windows\system32\EventAggregation.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Event Aggregation User Mode Library 131795770645376243 0x7ffacc520000 622592 C:\Windows\system32\SXS.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Fusion 2.5 131795770645376243 0x7ffacc5c0000 352256 c:\windows\system32\WINSTA.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Winstation Library 131795770645376243 0x7ffacc620000 176128 c:\windows\system32\bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795770645376243 0x7ffacc6e0000 61440 C:\Windows\System32\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795770645376243 0x7ffacc6f0000 311296 C:\Windows\System32\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795770645376243 0x7ffacc740000 81920 C:\Windows\System32\profapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Profile Basic API 131795770645376243 0x7ffacc760000 65536 C:\Windows\System32\MSASN1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ASN.1 Runtime APIs 131795770645376243 0x7ffacc8f0000 1003520 C:\Windows\System32\ucrtbase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645376243 0x7ffacc9f0000 434176 C:\Windows\System32\bcryptPrimitives.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Cryptographic Primitives Library 131795770645376243 0x7ffacca60000 122880 C:\Windows\System32\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795770645376243 0x7ffacca80000 348160 C:\Windows\System32\WINTRUST.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation Microsoft Trust Verification APIs 131795770645376243 0x7ffaccae0000 692224 C:\Windows\System32\shcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795770645376243 0x7ffaccb90000 7180288 C:\Windows\System32\windows.storage.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API хранения Microsoft WinRT 131795770645376243 0x7ffacd270000 2215936 C:\Windows\System32\KERNELBASE.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645376243 0x7ffacd490000 1871872 C:\Windows\System32\CRYPT32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API32 криптографии 131795770645376243 0x7ffacd710000 638976 C:\Windows\System32\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645376243 0x7ffacd7b0000 270336 C:\Windows\System32\cfgmgr32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Configuration Manager DLL 131795770645376243 0x7ffacd810000 22056960 C:\Windows\System32\SHELL32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Общая библиотека оболочки Windows 131795770645376243 0x7ffaced20000 782336 C:\Windows\System32\OLEAUT32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795770645376243 0x7ffacede0000 450560 C:\Windows\System32\coml2.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft COM for Windows 131795770645376243 0x7ffacee50000 1183744 C:\Windows\System32\RPCRT4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795770645376243 0x7ffacef80000 32768 C:\Windows\System32\NSI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation NSI User-mode interface DLL 131795770645376243 0x7ffacef90000 647168 C:\Windows\System32\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795770645376243 0x7ffacf030000 651264 C:\Windows\System32\clbcatq.dll 2001.12.10941.16384 (rs1_release.160715-1616) Microsoft Corporation COM+ Configuration Catalog 131795770645376243 0x7ffacf0d0000 704512 C:\Windows\System32\KERNEL32.DLL 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645376243 0x7ffacf340000 4362240 C:\Windows\System32\SETUPAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Setup API 131795770645376243 0x7ffacf770000 212992 C:\Windows\System32\GDI32.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation GDI Client DLL 131795770645376243 0x7ffacf820000 434176 C:\Windows\System32\WS2_32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation 32-разрядная библиотека Windows Socket 2.0 131795770645376243 0x7ffacf8c0000 1462272 C:\Windows\System32\user32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795770645376243 0x7ffacfb30000 2916352 C:\Windows\System32\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795770645376243 0x7ffacfe20000 663552 C:\Windows\System32\ADVAPI32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795770645376243 0x7ffad0070000 1277952 C:\Windows\System32\ole32.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft OLE для Windows 131795770645376243 0x7ffad01b0000 335872 C:\Windows\System32\SHLWAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека небольших программ оболочки 131795770645376243 0x7ffad0210000 364544 C:\Windows\System32\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795770645376243 0x7ffad0270000 1908736 C:\Windows\SYSTEM32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 23 96 580 4 00000000:000003e5 131765776304995849 0 0 1 Обязательная метка\Обязательный уровень системы NT AUTHORITY\LOCAL SERVICE svchost.exe C:\Windows\system32\svchost.exe C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork Microsoft Corporation 10.0.14393.0 (rs1_release.160715-1616) Хост-процесс для служб Windows 131795770645376384 0x7ff718c20000 57344 C:\Windows\system32\svchost.exe 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Хост-процесс для служб Windows 131795770645376384 0x7ffac0bf0000 3559424 C:\Windows\System32\ActXPrxy.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation ActiveX Interface Marshaling Library 131795770645376384 0x7ffac1fd0000 999424 C:\Windows\system32\wbem\fastprox.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation WMI Custom Marshaller 131795770645376384 0x7ffac21b0000 77824 C:\Windows\System32\srumapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation System Resource Usage Monitor API 131795770645376384 0x7ffac21d0000 81920 C:\Windows\system32\wbem\wbemsvc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation WMI 131795770645376384 0x7ffac2510000 102400 C:\Windows\System32\energyprov.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Energy System Resource Usage Monitor (SRUM) provider 131795770645376384 0x7ffac2580000 49152 C:\Windows\System32\ncuprov.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Network Connectivity Statistics Provider for System Resource Usage Monitor Service 131795770645376384 0x7ffac2b90000 90112 C:\Windows\System32\nduprov.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик сетевой статистики для службы отслеживания использования ресурсов системы 131795770645376384 0x7ffac2bb0000 106496 C:\Windows\SYSTEM32\appsruprov.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Application System Resource Usage Monitor (SRUM) provider 131795770645376384 0x7ffac2bd0000 131072 C:\Windows\System32\eeprov.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Energy Estimator SRUM provider 131795770645376384 0x7ffac2c20000 45056 C:\Windows\system32\wfapigp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Firewall GPO Helper dll 131795770645376384 0x7ffac2d70000 57344 C:\Windows\System32\wpnsruprov.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SRUM provider for WPN 131795770645376384 0x7ffac3310000 225280 C:\Windows\System32\srumsvc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation System Resource Usage Monitor Service 131795770645376384 0x7ffac3730000 36864 C:\Windows\system32\pnpts.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation PlugPlay Troubleshooter 131795770645376384 0x7ffac3840000 3088384 C:\Windows\system32\ESENT.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширяемая подсистема хранения данных ESE для Microsoft(R) Windows(R) 131795770645376384 0x7ffac3bd0000 106496 c:\windows\system32\ncdautosetup.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL службы автоматической настройки сетевых устройств 131795770645376384 0x7ffac3cb0000 2772992 C:\Windows\SYSTEM32\iertutil.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служебная программа времени выполнения для Internet Explorer 131795770645376384 0x7ffac3f60000 225280 c:\windows\system32\FWPolicyIOMgr.dll 10.0.14393.2189 (rs1_release.180329-1711) Microsoft Corporation FwPolicyIoMgr DLL 131795770645376384 0x7ffac4000000 274432 C:\Windows\SYSTEM32\policymanager.dll 10.0.14393.2035 (rs1_release_inmarket.180110-1910) Microsoft Corporation Policy Manager DLL 131795770645376384 0x7ffac4050000 118784 c:\windows\system32\wdi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Инфраструктура диагностики Windows 131795770645376384 0x7ffac41f0000 40960 C:\Windows\system32\adhapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AD harvest sites and subnets API 131795770645376384 0x7ffac4220000 520192 C:\Windows\SYSTEM32\wbemcomn.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation WMI 131795770645376384 0x7ffac4470000 65536 C:\Windows\system32\wbem\wbemprox.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation WMI 131795770645376384 0x7ffac4500000 200704 c:\windows\system32\dps.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служба политики диагностики WDI 131795770645376384 0x7ffac4cd0000 933888 c:\windows\system32\mpssvc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служба защиты (Microsoft) 131795770645376384 0x7ffac4f40000 122880 C:\Windows\system32\radardt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Программа обнаружения нехватки системных ресурсов Windows 131795770645376384 0x7ffac66c0000 32768 C:\Windows\system32\wship6.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL помощника Winsock2 (TL/IPv6) 131795770645376384 0x7ffac66d0000 32768 C:\Windows\system32\wshtcpip.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL помощника службы Winsock2 (TL/IPv4) 131795770645376384 0x7ffac6700000 40960 C:\Windows\system32\wshqos.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL помощника службы QoS Winsock2 131795770645376384 0x7ffac6740000 53248 C:\Windows\system32\dtsh.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека API состояния общего доступа и обнаружения 131795770645376384 0x7ffac6990000 69632 c:\windows\system32\deviceassociation.dll 10.0.14393.82 (rs1_release.160805-1735) Microsoft Corporation Device Association Client DLL 131795770645376384 0x7ffac74b0000 827392 c:\windows\system32\bfe.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служба базовой фильтрации 131795770645376384 0x7ffac7580000 1077248 C:\Windows\SYSTEM32\mrmcorer.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Windows MRM 131795770645376384 0x7ffac79c0000 57344 C:\Windows\System32\npmproxy.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Network List Manager Proxy 131795770645376384 0x7ffac83d0000 106496 C:\Windows\SYSTEM32\dhcpcsvc.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служба DHCP-клиента 131795770645376384 0x7ffac83f0000 90112 C:\Windows\SYSTEM32\dhcpcsvc6.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиент DHCPv6 131795770645376384 0x7ffac8420000 434176 c:\windows\system32\fwpuclnt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API пользовательского режима FWP/IPsec 131795770645376384 0x7ffac8810000 45056 C:\Windows\SYSTEM32\WINNSI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Network Store Information RPC interface 131795770645376384 0x7ffac8cf0000 815104 C:\Windows\System32\taskschd.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Task Scheduler COM API 131795770645376384 0x7ffac90b0000 90112 c:\windows\system32\wkscli.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Workstation Service Client DLL 131795770645376384 0x7ffac9220000 397312 C:\Windows\SYSTEM32\wevtapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API настройки и использования событий 131795770645376384 0x7ffac9f10000 221184 C:\Windows\System32\netprofm.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Network List Manager 131795770645376384 0x7ffaca100000 36864 C:\Windows\SYSTEM32\httpprxc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Proxy Manager Provider RPC interface 131795770645376384 0x7ffaca170000 45056 c:\windows\system32\ktmw32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows KTM Win32 Client DLL 131795770645376384 0x7ffaca340000 1593344 C:\Windows\System32\PROPSYS.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Система страниц свойств (Майкрософт) 131795770645376384 0x7ffaca4e0000 77824 C:\Windows\system32\WTSAPI32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Remote Desktop Session Host Server SDK APIs 131795770645376384 0x7ffaca640000 770048 c:\windows\system32\coremessaging.dll 10.0.14393.0 Microsoft Corporation Microsoft CoreMessaging Dll 131795770645376384 0x7ffacb070000 69632 C:\Windows\SYSTEM32\embeddedmodesvcapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Embedded Mode Service Client DLL 131795770645376384 0x7ffacb140000 593920 c:\windows\system32\msvcp110_win.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Microsoft® STL110 C++ Runtime Library 131795770645376384 0x7ffacb360000 176128 C:\Windows\system32\fwbase.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Firewall Base DLL 131795770645376384 0x7ffacb3f0000 163840 C:\Windows\system32\DEVOBJ.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Device Information Set DLL 131795770645376384 0x7ffacb420000 204800 C:\Windows\system32\ntmarta.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик Windows NT MARTA 131795770645376384 0x7ffacb460000 548864 C:\Windows\system32\FirewallAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API брандмауэра Windows 131795770645376384 0x7ffacb6f0000 143360 C:\Windows\SYSTEM32\gpapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиентские функции API групповой политики 131795770645376384 0x7ffacb920000 81920 C:\Windows\SYSTEM32\WLDP.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Политика блокировки Windows 131795770645376384 0x7ffacb960000 303104 c:\windows\system32\AUTHZ.dll 10.0.14393.1737 (rs1_release_inmarket.170914-1249) Microsoft Corporation Authorization Framework 131795770645376384 0x7ffacbd30000 229376 c:\windows\system32\IPHLPAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API вспомогательного приложения IP 131795770645376384 0x7ffacbd70000 659456 c:\windows\system32\DNSAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Динамическая библиотека API DNS-клиента 131795770645376384 0x7ffacbe20000 53248 c:\windows\system32\netutils.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API Helpers DLL 131795770645376384 0x7ffacbfb0000 376832 C:\Windows\system32\mswsock.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширение поставщика службы API Microsoft Windows Sockets 2.0 131795770645376384 0x7ffacc170000 45056 C:\Windows\system32\CRYPTBASE.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base cryptographic API DLL 131795770645376384 0x7ffacc350000 180224 c:\windows\system32\SspiCli.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Security Support Provider Interface 131795770645376384 0x7ffacc5c0000 352256 C:\Windows\system32\WINSTA.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Winstation Library 131795770645376384 0x7ffacc620000 176128 c:\windows\system32\bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795770645376384 0x7ffacc6e0000 61440 C:\Windows\System32\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795770645376384 0x7ffacc6f0000 311296 C:\Windows\System32\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795770645376384 0x7ffacc740000 81920 C:\Windows\System32\profapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Profile Basic API 131795770645376384 0x7ffacc760000 65536 C:\Windows\System32\MSASN1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ASN.1 Runtime APIs 131795770645376384 0x7ffacc8f0000 1003520 C:\Windows\System32\ucrtbase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645376384 0x7ffacc9f0000 434176 C:\Windows\System32\bcryptPrimitives.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Cryptographic Primitives Library 131795770645376384 0x7ffacca60000 122880 C:\Windows\System32\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795770645376384 0x7ffacca80000 348160 C:\Windows\System32\WINTRUST.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation Microsoft Trust Verification APIs 131795770645376384 0x7ffaccae0000 692224 C:\Windows\System32\shcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795770645376384 0x7ffaccb90000 7180288 C:\Windows\System32\windows.storage.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API хранения Microsoft WinRT 131795770645376384 0x7ffacd270000 2215936 C:\Windows\System32\KERNELBASE.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645376384 0x7ffacd490000 1871872 C:\Windows\System32\CRYPT32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API32 криптографии 131795770645376384 0x7ffacd710000 638976 C:\Windows\System32\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645376384 0x7ffacd7b0000 270336 C:\Windows\System32\CFGMGR32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Configuration Manager DLL 131795770645376384 0x7ffacd810000 22056960 C:\Windows\System32\SHELL32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Общая библиотека оболочки Windows 131795770645376384 0x7ffaced20000 782336 C:\Windows\System32\OLEAUT32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795770645376384 0x7ffacee50000 1183744 C:\Windows\System32\RPCRT4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795770645376384 0x7ffacef80000 32768 C:\Windows\System32\NSI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation NSI User-mode interface DLL 131795770645376384 0x7ffacef90000 647168 C:\Windows\System32\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795770645376384 0x7ffacf030000 651264 C:\Windows\System32\clbcatq.dll 2001.12.10941.16384 (rs1_release.160715-1616) Microsoft Corporation COM+ Configuration Catalog 131795770645376384 0x7ffacf0d0000 704512 C:\Windows\System32\KERNEL32.DLL 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645376384 0x7ffacf770000 212992 C:\Windows\System32\GDI32.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation GDI Client DLL 131795770645376384 0x7ffacf820000 434176 C:\Windows\System32\WS2_32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation 32-разрядная библиотека Windows Socket 2.0 131795770645376384 0x7ffacf8c0000 1462272 C:\Windows\System32\user32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795770645376384 0x7ffacfb30000 2916352 C:\Windows\System32\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795770645376384 0x7ffacfe20000 663552 C:\Windows\System32\advapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795770645376384 0x7ffad0070000 1277952 C:\Windows\System32\ole32.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft OLE для Windows 131795770645376384 0x7ffad01b0000 335872 C:\Windows\System32\shlwapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека небольших программ оболочки 131795770645376384 0x7ffad0210000 364544 C:\Windows\System32\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795770645376384 0x7ffad0270000 1908736 C:\Windows\SYSTEM32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 24 348 580 4 00000000:000003e7 131765776305446235 0 0 1 Обязательная метка\Обязательный уровень системы NT AUTHORITY\СИСТЕМА svchost.exe C:\Windows\system32\svchost.exe C:\Windows\system32\svchost.exe -k netsvcs Microsoft Corporation 10.0.14393.0 (rs1_release.160715-1616) Хост-процесс для служб Windows 131795770645376622 0x7ff718c20000 57344 C:\Windows\system32\svchost.exe 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Хост-процесс для служб Windows 131795770645376622 0x7ffaa0aa0000 2138112 c:\windows\system32\wlidsvc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служба учетных записей Майкрософт 131795770645376622 0x7ffab0750000 368640 C:\Windows\system32\rascustom.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Модуль настраиваемых протоколов 131795770645376622 0x7ffab07b0000 606208 C:\Windows\system32\vpnike.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation VPNIKE Protocol Engine - Test dll 131795770645376622 0x7ffab09b0000 323584 C:\Windows\system32\rasppp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Remote Access PPP 131795770645376622 0x7ffab0a00000 270336 C:\Windows\system32\rastapi.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Remote Access TAPI Compliance Layer 131795770645376622 0x7ffab1d80000 262144 C:\Windows\system32\eappcfg.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Eap Peer Config 131795770645376622 0x7ffab3440000 696320 c:\windows\system32\rasmans.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Диспетчер подключений удаленного доступа 131795770645376622 0x7ffab4b90000 655360 C:\Windows\System32\StructuredQuery.dll 7.0.14393.2068 (rs1_release.180209-1727) Microsoft Corporation Structured Query 131795770645376622 0x7ffab4c50000 90112 c:\windows\system32\eappprxy.dll 10.0.14393.187 (rs1_release_inmarket.160906-1818) Microsoft Corporation Microsoft EAPHost Peer Client DLL 131795770645376622 0x7ffab7d80000 753664 C:\Windows\system32\RASAPI32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API удаленного доступа 131795770645376622 0x7ffab9a90000 479232 C:\Windows\system32\dmEnrollEngine.DLL 10.0.14393.479 (rs1_release.161110-2025) Microsoft Corporation Enroll Engine DLL 131795770645376622 0x7ffabae60000 77824 C:\Windows\system32\DEVRTL.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Device Management Run Time Library 131795770645376622 0x7ffabafc0000 700416 C:\Windows\SYSTEM32\wer.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека сообщений об ошибках Windows 131795770645376622 0x7ffabc210000 2355200 c:\windows\system32\wuaueng.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Агент Центра обновления Windows 131795770645376622 0x7ffabcf30000 110592 c:\windows\system32\MPR.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека маршрутизации для нескольких служб доступа 131795770645376622 0x7ffabcf50000 921600 C:\Windows\system32\drvstore.dll 10.0.14393.351 (rs1_release_inmarket.161014-1755) Microsoft Corporation Driver Store API 131795770645376622 0x7ffabd180000 548864 C:\Windows\SYSTEM32\WINSPOOL.DRV 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Драйвер диспетчера очереди Windows 131795770645376622 0x7ffabdf60000 159744 C:\Windows\System32\raschap.dll 10.0.14393.1480 (rs1_release.170706-2004) Microsoft Corporation Удаленные доступ через PPP CHAP 131795770645376622 0x7ffabe4a0000 147456 c:\windows\system32\appinfo.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служба сведений о приложении 131795770645376622 0x7ffabe4d0000 286720 C:\Windows\System32\MSWB7.dll 10.0.14393.1737 (rs1_release_inmarket.170914-1249) Microsoft Corporation MSWB7 DLL 131795770645376622 0x7ffabed80000 540672 C:\Windows\system32\wbem\wbemess.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation WMI 131795770645376622 0x7ffabee10000 90112 C:\Windows\SYSTEM32\NCObjAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation 131795770645376622 0x7ffabee30000 847872 C:\Windows\system32\wbem\wmiprvsd.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation WMI 131795770645376622 0x7ffabefd0000 258048 C:\Windows\SYSTEM32\AEPIC.dll 10.0.17060.1029 (WinBuild.160101.0800) Microsoft Corporation Application Experience Program Cache 131795770645376622 0x7ffabf010000 98304 C:\Windows\SYSTEM32\elscore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL ядра платформы Els 131795770645376622 0x7ffabf090000 98304 C:\Windows\System32\LocationFrameworkInternalPS.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Geolocation Framework Internal PS 131795770645376622 0x7ffabf0e0000 372736 C:\Windows\system32\hnetcfg.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Диспетчер конфигурации домашней сети 131795770645376622 0x7ffabf1d0000 192512 C:\Windows\System32\cryptnet.dll 10.0.14393.2035 (rs1_release_inmarket.180110-1910) Microsoft Corporation Crypto Network Related API 131795770645376622 0x7ffabf200000 405504 c:\windows\system32\cryptngc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API службы Microsoft Passport 131795770645376622 0x7ffabf2a0000 159744 C:\Windows\system32\dssenh.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Enhanced DSS and Diffie-Hellman Cryptographic Provider 131795770645376622 0x7ffabf330000 2457600 C:\Windows\System32\msxml6.dll 6.30.14393.2156 Microsoft Corporation MSXML 6.0 131795770645376622 0x7ffabfd60000 90112 C:\Windows\system32\napinsp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик оболочки совместимости для имен электронной почты 131795770645376622 0x7ffabfda0000 122880 C:\Windows\system32\wbem\ncprov.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Non-COM WMI Event Provision APIs 131795770645376622 0x7ffabfdc0000 86016 C:\Windows\system32\keepaliveprovider.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Keep alive provider API 131795770645376622 0x7ffabfe50000 643072 C:\Windows\System32\wpnprv.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик подключения платформы push-уведомлений Windows 131795770645376622 0x7ffabfef0000 106496 C:\Windows\system32\pnrpnsp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик пространства имен PNRP 131795770645376622 0x7ffabff60000 135168 C:\Windows\system32\ncryptsslp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft SChannel Provider 131795770645376622 0x7ffac0000000 401408 C:\Windows\system32\wbem\repdrvfs.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation WMI Repository Driver 131795770645376622 0x7ffac05f0000 94208 C:\Windows\System32\wwapi.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation WWAN API 131795770645376622 0x7ffac0610000 3088384 C:\Windows\SYSTEM32\msi.dll 5.0.14393.2155 Microsoft Corporation Windows Installer 131795770645376622 0x7ffac0910000 724992 C:\Windows\System32\Windows.Networking.Connectivity.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Networking Connectivity Runtime DLL 131795770645376622 0x7ffac0ab0000 57344 C:\Windows\System32\winrnr.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation LDAP RnR Provider DLL 131795770645376622 0x7ffac0ac0000 53248 c:\windows\system32\tbs.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation TBS 131795770645376622 0x7ffac0ad0000 86016 C:\Windows\SYSTEM32\mskeyprotect.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик защиты ключей (Майкрософт) 131795770645376622 0x7ffac0af0000 114688 C:\Windows\system32\ATL.DLL 3.05.2284 Microsoft Corporation ATL Module for Windows XP (Unicode) 131795770645376622 0x7ffac0bf0000 3559424 C:\Windows\System32\ActXPrxy.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation ActiveX Interface Marshaling Library 131795770645376622 0x7ffac1090000 94208 C:\Windows\System32\shacctprofile.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Shell Accounts Profile Classes 131795770645376622 0x7ffac1160000 892928 C:\Windows\System32\wuapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API клиента Центра обновления Windows 131795770645376622 0x7ffac1530000 528384 C:\Windows\SYSTEM32\dpx.dll 5.00 (rs1_release.160715-1616) Microsoft Corporation Microsoft(R) Delta Package Expander 131795770645376622 0x7ffac1900000 225280 c:\windows\system32\appxapplicabilityblob.dll 10.0.14393.953 (rs1_release_inmarket.170303-1614) Microsoft Corporation Appx Applicability Blob DLL 131795770645376622 0x7ffac1970000 1073152 c:\windows\system32\qmgr.dll 7.8.14393.0 (rs1_release.160715-1616) Microsoft Corporation Фоновая интеллектуальная служба передачи 131795770645376622 0x7ffac1b70000 122880 C:\Windows\System32\DevDispItemProvider.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Подсистема DeviceItem inproc devquery 131795770645376622 0x7ffac1c30000 49152 C:\Windows\system32\DMProcessXMLFiltered.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation dmprocessxmlfiltered 131795770645376622 0x7ffac1cf0000 417792 C:\Windows\SYSTEM32\wuuhext.dll 10.0.14393.2189 (rs1_release.180329-1711) Microsoft Corporation Windows Update Agent plugin for Windows 131795770645376622 0x7ffac1df0000 61440 c:\windows\system32\NCI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation CoInstaller: NET 131795770645376622 0x7ffac1e20000 147456 C:\Windows\system32\wbem\wmiutils.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation WMI 131795770645376622 0x7ffac1e80000 507904 C:\Windows\System32\NetSetupShim.dll 10.0.14393.1532 (rs1_release_d.170711-1840) Microsoft Corporation Network Configuration API 131795770645376622 0x7ffac1f10000 126976 c:\windows\system32\DMCmnUtils.dll 10.0.14393.1737 (rs1_release_inmarket.170914-1249) Microsoft Corporation dmcmnutils 131795770645376622 0x7ffac1f30000 118784 C:\Windows\system32\SPINF.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows SPINF 131795770645376622 0x7ffac1f50000 471040 C:\Windows\system32\wbem\esscli.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation WMI 131795770645376622 0x7ffac1fd0000 999424 C:\Windows\system32\wbem\FastProx.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation WMI Custom Marshaller 131795770645376622 0x7ffac20d0000 110592 c:\windows\system32\RMCLIENT.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Resource Manager Client 131795770645376622 0x7ffac20f0000 753664 C:\Windows\system32\CLUSAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека API кластера 131795770645376622 0x7ffac21d0000 81920 C:\Windows\system32\wbem\wbemsvc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation WMI 131795770645376622 0x7ffac2210000 1351680 C:\Windows\system32\wbem\wbemcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Инструментарий управления Windows 131795770645376622 0x7ffac2360000 57344 c:\windows\system32\TimeBrokerClient.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Time Broker Client Library 131795770645376622 0x7ffac2370000 110592 C:\Windows\system32\adhsvc.dll 10.0.14393.2189 (rs1_release.180329-1711) Microsoft Corporation AD Harvest Sites and Subnets Service 131795770645376622 0x7ffac2390000 147456 C:\Windows\system32\httpprxm.dll 10.0.14393.2189 (rs1_release.180329-1711) Microsoft Corporation Proxy Manager 131795770645376622 0x7ffac24a0000 397312 C:\Windows\system32\RESUTILS.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL служебной программы ресурсов кластера (Майкрософт) 131795770645376622 0x7ffac2530000 270336 C:\Windows\system32\hnetcfgclient.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиент API конфигурации домашней сети 131795770645376622 0x7ffac2640000 188416 C:\Windows\system32\wmidcom.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation WMI 131795770645376622 0x7ffac2670000 376832 C:\Windows\system32\miutils.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Инфраструктура управления 131795770645376622 0x7ffac26f0000 36864 C:\Windows\SYSTEM32\sscoreext.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Server Service Core DLL 131795770645376622 0x7ffac2720000 192512 C:\Windows\SYSTEM32\WPTaskScheduler.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation WP Task Scheduler DLL 131795770645376622 0x7ffac2770000 69632 C:\Windows\system32\SSCORE.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Основная DLL-библиотека службы сервера 131795770645376622 0x7ffac2940000 45056 c:\windows\system32\CSystemEventsBrokerClient.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Classic System Events Broker Client Library 131795770645376622 0x7ffac29f0000 159744 c:\windows\system32\NetSetupApi.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Network Configuration API 131795770645376622 0x7ffac2a20000 81920 c:\windows\system32\rtutils.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Routing Utilities 131795770645376622 0x7ffac2a40000 974848 c:\windows\system32\iphlpsvc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Эта служба предоставляет автоматическое подключение IPv6 в сети IPv4. 131795770645376622 0x7ffac2b30000 286720 C:\Windows\System32\usermgrproxy.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation UserMgrProxy 131795770645376622 0x7ffac2c30000 135168 c:\windows\system32\CLIPC.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиент платформы лицензирования клиента 131795770645376622 0x7ffac2c60000 278528 c:\windows\system32\WDSCORE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Panther Engine Module 131795770645376622 0x7ffac2cb0000 778240 C:\Windows\System32\winsqlite3.dll 3.12.2 SQLite Development Team SQLite is a software library that implements a self-contained, serverless, zero-configuration, transactional SQL database engine. 131795770645376622 0x7ffac2d80000 5140480 C:\Windows\System32\cdp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API клиента Microsoft (R) CDP 131795770645376622 0x7ffac3360000 1396736 C:\Windows\System32\wpncore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Ядро извещающих уведомлений Windows 131795770645376622 0x7ffac34c0000 81920 C:\Windows\system32\vss_ps.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation Microsoft® Volume Shadow Copy Service proxy/stub 131795770645376622 0x7ffac34e0000 1843200 C:\Windows\System32\urlmon.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширения OLE32 для Win32 131795770645376622 0x7ffac36b0000 524288 C:\Windows\system32\msdelta.dll 5.00 (rs1_release.160715-1616) Microsoft Corporation Microsoft Patch Engine 131795770645376622 0x7ffac3740000 413696 C:\Windows\system32\upnp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API контрольной точки UPnP 131795770645376622 0x7ffac3810000 167936 C:\Windows\SYSTEM32\Cabinet.dll 5.00 (rs1_release.160715-1616) Microsoft Corporation Microsoft® Cabinet File API 131795770645376622 0x7ffac3840000 3088384 c:\windows\system32\ESENT.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширяемая подсистема хранения данных ESE для Microsoft(R) Windows(R) 131795770645376622 0x7ffac3b40000 245760 c:\windows\system32\wbem\wmisvc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation WMI 131795770645376622 0x7ffac3cb0000 2772992 C:\Windows\System32\iertutil.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служебная программа времени выполнения для Internet Explorer 131795770645376622 0x7ffac3f60000 225280 C:\Windows\system32\FWPolicyIOMgr.dll 10.0.14393.2189 (rs1_release.180329-1711) Microsoft Corporation FwPolicyIoMgr DLL 131795770645376622 0x7ffac3fa0000 331776 c:\windows\system32\srvsvc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека (DLL) ресурсов для службы сервера 131795770645376622 0x7ffac4000000 274432 C:\Windows\SYSTEM32\policymanager.dll 10.0.14393.2035 (rs1_release_inmarket.180110-1910) Microsoft Corporation Policy Manager DLL 131795770645376622 0x7ffac4160000 253952 c:\windows\system32\wpnservice.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служба системы push-уведомлений Windows 131795770645376622 0x7ffac4220000 520192 C:\Windows\SYSTEM32\wbemcomn.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation WMI 131795770645376622 0x7ffac4450000 86016 C:\Windows\SYSTEM32\usermgrcli.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation UserMgr API DLL 131795770645376622 0x7ffac4480000 499712 C:\Windows\system32\taskcomp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Оснастка обратной совместимости диспетчера задач 131795770645376622 0x7ffac4540000 69632 C:\Windows\system32\ProximityServicePAL.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Proximity Service PAL 131795771111594425 0x7ffac4b60000 155648 C:\Windows\System32\browser.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL службы браузера компьютеров 131795770645376622 0x7ffac4cc0000 36864 C:\Windows\system32\ProximityCommonPal.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Proximity Common PAL 131795770645376622 0x7ffac4dc0000 176128 C:\Windows\system32\ProximityCommon.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Универсальная реализация близкого взаимодействия 131795770645376622 0x7ffac4e70000 102400 C:\Windows\SYSTEM32\samcli.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Security Accounts Manager Client DLL 131795770645376622 0x7ffac4ee0000 331776 C:\Windows\System32\ProximityService.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Proximity Service Implementation 131795770645376622 0x7ffac4f60000 143360 C:\Windows\SYSTEM32\wcmapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Connection Manager Client API 131795770645376622 0x7ffac5c50000 131072 C:\Windows\system32\rasman.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Remote Access Connection Manager 131795770645376622 0x7ffac5ef0000 868352 C:\Windows\System32\MbaeApiPublic.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Mobile Broadband Account API 131795770645376622 0x7ffac60e0000 221184 C:\Windows\System32\XmlLite.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft XmlLite Library 131795770645376622 0x7ffac6410000 98304 C:\Windows\SYSTEM32\VssTrace.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека трассировки службы теневого копирования тома Microsoft® 131795770645376622 0x7ffac6430000 1581056 C:\Windows\SYSTEM32\VSSAPI.DLL 10.0.14393.953 (rs1_release_inmarket.170303-1614) Microsoft Corporation Microsoft® Volume Shadow Copy Requestor/Writer Services API DLL 131795770645376622 0x7ffac6610000 40960 C:\Windows\System32\rasadhlp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Remote Access AutoDial Helper 131795770645376622 0x7ffac66a0000 86016 C:\Windows\SYSTEM32\ondemandconnroutehelper.dll 10.0.14393.351 (rs1_release_inmarket.161014-1755) Microsoft Corporation On Demand Connctiond Route Helper 131795770645376622 0x7ffac6750000 1380352 c:\windows\system32\webservices.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Среда выполнения веб-служб Windows 131795770645376622 0x7ffac69c0000 839680 C:\Windows\System32\WINHTTP.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Службы HTTP Windows 131795770645376622 0x7ffac6a90000 49152 C:\Windows\System32\LocationFrameworkPS.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Geolocation Framework PS 131795770645376622 0x7ffac6c40000 2596864 C:\Windows\WinSxS\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.14393.953_none_42151e83c686086b\Comctl32.dll 6.10 (rs1_release_inmarket.170303-1614) Microsoft Corporation Библиотека элементов управления взаимодействия с пользователем 131795770645376622 0x7ffac7580000 1077248 C:\Windows\SYSTEM32\mrmcorer.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Windows MRM 131795770645376622 0x7ffac7700000 65536 C:\Windows\system32\CredentialMigrationHandler.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Credential Migration Handler 131795770645376622 0x7ffac79c0000 57344 C:\Windows\System32\npmproxy.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Network List Manager Proxy 131795770645376622 0x7ffac79d0000 53248 C:\Windows\system32\sqmapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SQM Client 131795770645376622 0x7ffac7aa0000 401408 C:\Windows\SYSTEM32\wlanapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows WLAN AutoConfig Client Side API DLL 131795770645376622 0x7ffac7d20000 106496 C:\Windows\SYSTEM32\msauserext.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation MSA USER Extension DLL 131795770645376622 0x7ffac7d60000 114688 c:\windows\system32\UpdatePolicy.dll 10.0.14393.2189 (rs1_release.180329-1711) Microsoft Corporation Update Policy Reader 131795770645376622 0x7ffac7e50000 86016 C:\Windows\system32\SSDPAPI.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation SSDP Client API DLL 131795770645376622 0x7ffac7e90000 749568 c:\windows\system32\FVEAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows BitLocker Drive Encryption API 131795770645376622 0x7ffac82d0000 643072 c:\windows\system32\shsvcs.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL служб оболочки Windows 131795770645376622 0x7ffac83d0000 106496 C:\Windows\SYSTEM32\dhcpcsvc.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служба DHCP-клиента 131795770645376622 0x7ffac83f0000 90112 C:\Windows\SYSTEM32\dhcpcsvc6.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиент DHCPv6 131795770645376622 0x7ffac8420000 434176 c:\windows\system32\fwpuclnt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API пользовательского режима FWP/IPsec 131795770645376622 0x7ffac8590000 135168 C:\Windows\System32\LocationWinPalMisc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Location Platform Abstraction Layer 131795770645376622 0x7ffac85c0000 1810432 c:\windows\system32\LocationFramework.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Платформа географического положения Windows 131795770645376622 0x7ffac8780000 274432 c:\windows\system32\UBPM.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL единого диспетчера фоновых процессов 131795770645376622 0x7ffac8810000 45056 c:\windows\system32\WINNSI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Network Store Information RPC interface 131795770645376622 0x7ffac8880000 69632 c:\windows\system32\WMICLNT.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation WMI Client API 131795770645376622 0x7ffac8b60000 966656 c:\windows\system32\schedsvc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служба планировщика заданий 131795770645376622 0x7ffac8dc0000 167936 C:\Windows\system32\dbgcore.DLL 10.0.14321.1024 (debuggers(dbg).160715-1616) Microsoft Windows Core Debugging Helpers 131795770645376622 0x7ffac8df0000 1646592 C:\Windows\system32\dbghelp.dll 10.0.14321.1024 (rs1_release.160715-1616) Microsoft Windows Image Helper 131795770645376622 0x7ffac8fa0000 253952 c:\windows\system32\logoncli.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Net Logon Client DLL 131795770645376622 0x7ffac90b0000 90112 c:\windows\system32\wkscli.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Workstation Service Client DLL 131795770645376622 0x7ffac91c0000 167936 C:\Windows\SYSTEM32\profsvcext.dll 10.0.14393.1532 (rs1_release_d.170711-1840) Microsoft Corporation ProfSvcExt 131795770645376622 0x7ffac9220000 397312 C:\Windows\SYSTEM32\wevtapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API настройки и использования событий 131795770645376622 0x7ffac9290000 40960 c:\windows\system32\DSROLE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DS Setup Client DLL 131795770645376622 0x7ffac92a0000 90112 c:\windows\system32\sens.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служба уведомления о системных событиях (SENS) 131795770645376622 0x7ffac92c0000 98304 c:\windows\system32\themeservice.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL службы темы оболочки Windows 131795770645376622 0x7ffac92e0000 1269760 C:\Windows\SYSTEM32\wintypes.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL основных типов Windows 131795770645376622 0x7ffac9420000 380928 c:\windows\system32\profsvc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ProfSvc 131795770645376622 0x7ffac9790000 98304 c:\windows\system32\nlaapi.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Network Location Awareness 2 131795770645376622 0x7ffac9a70000 1257472 c:\windows\system32\gpsvc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиент групповой политики 131795770645376622 0x7ffac9bb0000 479232 C:\Windows\System32\ES.DLL 2001.12.10941.16384 (rs1_release.160715-1616) Microsoft Corporation COM+ 131795770645376622 0x7ffac9f10000 221184 C:\Windows\System32\netprofm.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Network List Manager 131795770645376622 0x7ffaca100000 36864 C:\Windows\SYSTEM32\httpprxc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Proxy Manager Provider RPC interface 131795770645376622 0x7ffaca1f0000 65536 C:\Windows\SYSTEM32\storageusage.dll 10.0.14393.82 (rs1_release.160805-1735) Microsoft Corporation Storage Usage 131795770645376622 0x7ffaca250000 49152 C:\Windows\SYSTEM32\bi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Background Broker Infrastructure Client Library 131795770645376622 0x7ffaca280000 73728 C:\Windows\System32\BitsProxy.dll 7.8.14393.0 (rs1_release.160715-1616) Microsoft Corporation Background Intelligent Transfer Service Proxy 131795770645376622 0x7ffaca340000 1593344 C:\Windows\System32\PROPSYS.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Система страниц свойств (Майкрософт) 131795770645376622 0x7ffaca4e0000 77824 C:\Windows\SYSTEM32\wtsapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Remote Desktop Session Host Server SDK APIs 131795770645376622 0x7ffaca500000 69632 C:\Windows\System32\wups.dll 10.0.14393.2122 (rs1_release.180217-2341) Microsoft Corporation Windows Update client proxy stub 131795770645376622 0x7ffaca570000 421888 C:\Windows\SYSTEM32\Bcp47Langs.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation BCP47 Language Classes 131795770645376622 0x7ffaca610000 143360 C:\Windows\SYSTEM32\SAMLIB.dll 10.0.14393.82 (rs1_release.160805-1735) Microsoft Corporation SAM Library DLL 131795770645376622 0x7ffaca700000 32768 c:\windows\system32\DABAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Desktop Activity Broker API 131795770645376622 0x7ffaca720000 77824 C:\Windows\system32\bitsigd.dll 7.8.14393.0 (rs1_release.160715-1616) Microsoft Corporation Background Intelligent Transfer Service IGD Support 131795770645376622 0x7ffacab70000 53248 c:\windows\system32\lfsvc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служба географического положения 131795770645376622 0x7ffacac40000 53248 c:\windows\system32\seclogon.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL службы вторичного входа 131795770645376622 0x7ffacac50000 45056 c:\windows\system32\bitsperf.dll 7.8.14393.0 (rs1_release.160715-1616) Microsoft Corporation Perfmon Counter Access 131795770645376622 0x7ffacad70000 278528 c:\windows\system32\BrokerLib.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Broker Base Library 131795770645376622 0x7ffacadf0000 499712 c:\windows\system32\apphelp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиентская библиотека совместимости приложений 131795770645376622 0x7ffacb000000 53248 c:\windows\system32\SYSNTFY.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Windows Notifications Dynamic Link Library 131795770645376622 0x7ffacb140000 593920 C:\Windows\System32\msvcp110_win.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Microsoft® STL110 C++ Runtime Library 131795770645376622 0x7ffacb1e0000 1163264 C:\Windows\SYSTEM32\twinapi.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation twinapi.appcore 131795770645376622 0x7ffacb300000 364544 C:\Windows\System32\VEEventDispatcher.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Visual Element Event dispatcher 131795770645376622 0x7ffacb360000 176128 C:\Windows\system32\fwbase.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Firewall Base DLL 131795770645376622 0x7ffacb3d0000 110592 C:\Windows\SYSTEM32\resourcepolicyclient.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Resource Policy Client 131795770645376622 0x7ffacb3f0000 163840 c:\windows\system32\DEVOBJ.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Device Information Set DLL 131795770645376622 0x7ffacb420000 204800 C:\Windows\SYSTEM32\ntmarta.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик Windows NT MARTA 131795770645376622 0x7ffacb460000 548864 C:\Windows\SYSTEM32\firewallapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API брандмауэра Windows 131795770645376622 0x7ffacb6e0000 49152 c:\windows\system32\HID.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека пользователя HID 131795770645376622 0x7ffacb6f0000 143360 C:\Windows\SYSTEM32\gpapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиентские функции API групповой политики 131795770645376622 0x7ffacb920000 81920 C:\Windows\SYSTEM32\WLDP.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Политика блокировки Windows 131795770645376622 0x7ffacb960000 303104 c:\windows\system32\AUTHZ.dll 10.0.14393.1737 (rs1_release_inmarket.170914-1249) Microsoft Corporation Authorization Framework 131795770645376622 0x7ffacbaf0000 495616 C:\Windows\system32\schannel.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик безопасности TLS/SSL 131795770645376622 0x7ffacbbb0000 208896 C:\Windows\system32\rsaenh.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Enhanced Cryptographic Provider 131795770645376622 0x7ffacbbf0000 40960 C:\Windows\system32\DPAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Data Protection API 131795770645376622 0x7ffacbd30000 229376 C:\Windows\system32\IPHLPAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API вспомогательного приложения IP 131795770645376622 0x7ffacbd70000 659456 C:\Windows\system32\DNSAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Динамическая библиотека API DNS-клиента 131795770645376622 0x7ffacbe20000 53248 c:\windows\system32\netutils.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API Helpers DLL 131795770645376622 0x7ffacbe40000 126976 c:\windows\system32\USERENV.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Userenv 131795770645376622 0x7ffacbfb0000 376832 C:\Windows\system32\MSWSOCK.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширение поставщика службы API Microsoft Windows Sockets 2.0 131795770645376622 0x7ffacc150000 94208 C:\Windows\SYSTEM32\cryptsp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Cryptographic Service Provider API 131795770645376622 0x7ffacc170000 45056 C:\Windows\System32\CRYPTBASE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base cryptographic API DLL 131795770645376622 0x7ffacc1f0000 241664 C:\Windows\System32\NTASN1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft ASN.1 API 131795770645376622 0x7ffacc230000 155648 C:\Windows\System32\ncrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Маршрутизатор Windows NCrypt 131795770645376622 0x7ffacc350000 180224 C:\Windows\System32\SspiCli.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Security Support Provider Interface 131795770645376622 0x7ffacc500000 102400 c:\windows\system32\EventAggregation.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Event Aggregation User Mode Library 131795770645376622 0x7ffacc520000 622592 C:\Windows\SYSTEM32\sxs.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Fusion 2.5 131795770645376622 0x7ffacc5c0000 352256 C:\Windows\SYSTEM32\winsta.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Winstation Library 131795770645376622 0x7ffacc620000 176128 c:\windows\system32\bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795770645376622 0x7ffacc6e0000 61440 C:\Windows\System32\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795770645376622 0x7ffacc6f0000 311296 C:\Windows\System32\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795770645376622 0x7ffacc740000 81920 C:\Windows\System32\profapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Profile Basic API 131795770645376622 0x7ffacc760000 65536 C:\Windows\System32\MSASN1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ASN.1 Runtime APIs 131795770645376622 0x7ffacc8f0000 1003520 C:\Windows\System32\ucrtbase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645376622 0x7ffacc9f0000 434176 C:\Windows\System32\bcryptPrimitives.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Cryptographic Primitives Library 131795770645376622 0x7ffacca60000 122880 C:\Windows\System32\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795770645376622 0x7ffacca80000 348160 C:\Windows\System32\WINTRUST.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation Microsoft Trust Verification APIs 131795770645376622 0x7ffaccae0000 692224 C:\Windows\System32\shcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795770645376622 0x7ffaccb90000 7180288 C:\Windows\System32\windows.storage.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API хранения Microsoft WinRT 131795770645376622 0x7ffacd270000 2215936 C:\Windows\System32\KERNELBASE.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645376622 0x7ffacd490000 1871872 C:\Windows\System32\CRYPT32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API32 криптографии 131795770645376622 0x7ffacd710000 638976 C:\Windows\System32\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645376622 0x7ffacd7b0000 270336 C:\Windows\System32\cfgmgr32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Configuration Manager DLL 131795770645376622 0x7ffacd810000 22056960 C:\Windows\System32\SHELL32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Общая библиотека оболочки Windows 131795770645376622 0x7ffaced20000 782336 C:\Windows\System32\OLEAUT32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795770645376622 0x7ffacede0000 450560 C:\Windows\System32\coml2.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft COM for Windows 131795770645376622 0x7ffacee50000 1183744 C:\Windows\System32\RPCRT4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795770645376622 0x7ffacef80000 32768 C:\Windows\System32\NSI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation NSI User-mode interface DLL 131795770645376622 0x7ffacef90000 647168 C:\Windows\System32\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795770645376622 0x7ffacf030000 651264 C:\Windows\System32\clbcatq.dll 2001.12.10941.16384 (rs1_release.160715-1616) Microsoft Corporation COM+ Configuration Catalog 131795770645376622 0x7ffacf0d0000 704512 C:\Windows\System32\KERNEL32.DLL 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645376622 0x7ffacf180000 376832 C:\Windows\System32\WLDAP32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Win32 LDAP API DLL 131795770645376622 0x7ffacf340000 4362240 C:\Windows\System32\setupapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Setup API 131795770645376622 0x7ffacf770000 212992 C:\Windows\System32\GDI32.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation GDI Client DLL 131795770645376622 0x7ffacf820000 434176 C:\Windows\System32\WS2_32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation 32-разрядная библиотека Windows Socket 2.0 131795770645376622 0x7ffacf8c0000 1462272 C:\Windows\System32\user32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795770645376622 0x7ffacfb30000 2916352 C:\Windows\System32\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795770645376622 0x7ffacfe00000 114688 C:\Windows\System32\imagehlp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT Image Helper 131795770645376622 0x7ffacfe20000 663552 C:\Windows\System32\advapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795770645376622 0x7ffad0070000 1277952 C:\Windows\System32\ole32.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft OLE для Windows 131795770645376622 0x7ffad01b0000 335872 C:\Windows\System32\shlwapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека небольших программ оболочки 131795770645376622 0x7ffad0210000 364544 C:\Windows\System32\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795770645376622 0x7ffad0270000 1908736 C:\Windows\SYSTEM32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 25 372 580 4 00000000:000003e5 131765776305463443 0 0 1 Обязательная метка\Обязательный уровень системы NT AUTHORITY\LOCAL SERVICE svchost.exe C:\Windows\system32\svchost.exe C:\Windows\system32\svchost.exe -k LocalService Microsoft Corporation 10.0.14393.0 (rs1_release.160715-1616) Хост-процесс для служб Windows 131795770645376755 0x7ff718c20000 57344 C:\Windows\system32\svchost.exe 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Хост-процесс для служб Windows 131795770645376755 0x7ffab1c40000 1302528 c:\windows\system32\LicenseManager.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation LicenseManager 131795770645376755 0x7ffab91f0000 233472 c:\windows\system32\sstpsvc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Обеспечивает возможность использования SSTP для подключения к удаленным компьютерам с помощью VPN. 131795770645376755 0x7ffab93b0000 897024 C:\Windows\System32\TokenBroker.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Token Broker 131795770645376755 0x7ffabaab0000 94208 C:\Windows\SYSTEM32\profext.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation profext 131795770645376755 0x7ffabbd10000 65536 C:\Windows\System32\TOKENBINDING.dll 10.0.14393.1593 (rs1_release.170731-1934) Microsoft Corporation Token Binding Protocol 131795770645376755 0x7ffabc610000 540672 c:\windows\system32\w32time.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служба времени Windows 131795770645376755 0x7ffabca50000 819200 C:\Windows\System32\Windows.Security.Authentication.Web.Core.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Token Broker WinRT API 131795770645376755 0x7ffabcb70000 262144 C:\Windows\System32\cdprt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft (R) CDP Client WinRT API 131795770645376755 0x7ffabef00000 499712 c:\windows\system32\cdpsvc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служба CDP Майкрософт (R) 131795770645376755 0x7ffabf2d0000 344064 C:\Windows\system32\ncryptprov.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft KSP 131795770645376755 0x7ffabf330000 2457600 C:\Windows\System32\msxml6.dll 6.30.14393.2156 Microsoft Corporation MSXML 6.0 131795770645376755 0x7ffabfbe0000 1011712 C:\Windows\System32\Windows.Security.Authentication.OnlineId.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation Windows Runtime OnlineId Authentication DLL 131795770645376755 0x7ffabff60000 135168 C:\Windows\system32\ncryptsslp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft SChannel Provider 131795770645376755 0x7ffac05e0000 40960 c:\windows\system32\sbservicetrigger.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Socket Broker Service Trigger 131795770645376755 0x7ffac05f0000 94208 C:\Windows\System32\wwapi.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation WWAN API 131795770645376755 0x7ffac0910000 724992 C:\Windows\System32\Windows.Networking.Connectivity.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Networking Connectivity Runtime DLL 131795770645376755 0x7ffac0ad0000 86016 C:\Windows\SYSTEM32\mskeyprotect.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик защиты ключей (Майкрософт) 131795770645376755 0x7ffac1160000 892928 C:\Windows\System32\wuapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API клиента Центра обновления Windows 131795770645376755 0x7ffac1d60000 589824 C:\Windows\System32\webio.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API протоколов передачи по Веб 131795770645376755 0x7ffac23c0000 331776 C:\Windows\System32\OneCoreCommonProxyStub.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation OneCore Common Proxy Stub 131795770645376755 0x7ffac2a20000 81920 c:\windows\system32\rtutils.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Routing Utilities 131795770645376755 0x7ffac2b30000 286720 C:\Windows\System32\usermgrproxy.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation UserMgrProxy 131795770645376755 0x7ffac2c30000 135168 c:\windows\system32\CLIPC.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиент платформы лицензирования клиента 131795770645376755 0x7ffac2d80000 5140480 c:\windows\system32\cdp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API клиента Microsoft (R) CDP 131795770645376755 0x7ffac3cb0000 2772992 C:\Windows\System32\iertutil.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служебная программа времени выполнения для Internet Explorer 131795770645376755 0x7ffac3f60000 225280 C:\Windows\System32\FWPolicyIOMgr.dll 10.0.14393.2189 (rs1_release.180329-1711) Microsoft Corporation FwPolicyIoMgr DLL 131795770645376755 0x7ffac4050000 118784 c:\windows\system32\wdi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Инфраструктура диагностики Windows 131795770645376755 0x7ffac4130000 40960 c:\windows\system32\fdphost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служба размещения поставщиков функций обнаружения 131795770645376755 0x7ffac41a0000 77824 C:\Windows\System32\fdproxy.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation Function Discovery Proxy Dll 131795770645376755 0x7ffac4200000 98304 C:\Windows\system32\perftrack.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Performance PerfTrack 131795770645376755 0x7ffac42a0000 659456 C:\Windows\System32\StateRepository.Core.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation StateRepository Core 131795770645376755 0x7ffac4450000 86016 C:\Windows\SYSTEM32\usermgrcli.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation UserMgr API DLL 131795770645376755 0x7ffac46d0000 4161536 C:\Windows\System32\Windows.StateRepository.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Сервер Windows StateRepository API Server 131795770645376755 0x7ffac5070000 798720 C:\Windows\System32\Windows.Web.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL веб-клиента 131795770645376755 0x7ffac5b80000 184320 C:\Windows\SYSTEM32\AuthBroker.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API WinRT для веб-проверки подлинности 131795770645376755 0x7ffac60e0000 221184 C:\Windows\System32\XmlLite.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft XmlLite Library 131795770645376755 0x7ffac6400000 53248 c:\windows\system32\HTTPAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation HTTP Protocol Stack API 131795770645376755 0x7ffac6610000 40960 C:\Windows\System32\rasadhlp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Remote Access AutoDial Helper 131795770645376755 0x7ffac66a0000 86016 C:\Windows\SYSTEM32\ondemandconnroutehelper.dll 10.0.14393.351 (rs1_release_inmarket.161014-1755) Microsoft Corporation On Demand Connctiond Route Helper 131795770645376755 0x7ffac66e0000 122880 C:\Windows\System32\fdssdp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Function Discovery SSDP Provider Dll 131795770645376755 0x7ffac6710000 172032 C:\Windows\System32\FunDisc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL обнаружения функции 131795770645376755 0x7ffac6750000 1380352 C:\Windows\System32\webservices.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Среда выполнения веб-служб Windows 131795770645376755 0x7ffac68b0000 696320 C:\Windows\System32\wsdapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Веб-службы для библиотек DLL API-интерфейсов устройств 131795770645376755 0x7ffac6960000 167936 C:\Windows\System32\fdwsd.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Function Discovery WS Discovery Provider Dll 131795770645376755 0x7ffac69c0000 839680 C:\Windows\System32\WINHTTP.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Службы HTTP Windows 131795770645376755 0x7ffac76d0000 65536 C:\Windows\System32\vmictimeprovider.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Virtual Machine Integration Component Time Sync Provider Library 131795770645376755 0x7ffac79c0000 57344 C:\Windows\System32\npmproxy.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Network List Manager Proxy 131795770645376755 0x7ffac7a10000 544768 c:\windows\system32\netprofmsvc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Диспетчер списка сетей 131795770645376755 0x7ffac7aa0000 401408 C:\Windows\SYSTEM32\wlanapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows WLAN AutoConfig Client Side API DLL 131795770645376755 0x7ffac7d20000 106496 C:\Windows\SYSTEM32\msauserext.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation MSA USER Extension DLL 131795770645376755 0x7ffac7e50000 86016 C:\Windows\System32\SSDPAPI.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation SSDP Client API DLL 131795770645376755 0x7ffac7f70000 49152 c:\windows\system32\licensemanagersvc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation LicenseManagerSvc 131795770645376755 0x7ffac83d0000 106496 C:\Windows\SYSTEM32\dhcpcsvc.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служба DHCP-клиента 131795770645376755 0x7ffac83f0000 90112 C:\Windows\SYSTEM32\dhcpcsvc6.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиент DHCPv6 131795770645376755 0x7ffac8420000 434176 C:\Windows\System32\fwpuclnt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API пользовательского режима FWP/IPsec 131795770645376755 0x7ffac8540000 286720 C:\Windows\System32\vaultcli.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиентская библиотека хранилища учетных данных 131795770645376755 0x7ffac8810000 45056 C:\Windows\SYSTEM32\WINNSI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Network Store Information RPC interface 131795770645376755 0x7ffac8fa0000 253952 c:\windows\system32\logoncli.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Net Logon Client DLL 131795770645376755 0x7ffac90a0000 53248 c:\windows\system32\nsisvc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation RPC-сервер интерфейса сохранения сети 131795770645376755 0x7ffac90b0000 90112 C:\Windows\SYSTEM32\wkscli.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Workstation Service Client DLL 131795770645376755 0x7ffac91f0000 172032 c:\windows\system32\FontProvider.dll 10.0.14393.1066 (rs1_release_sec.170327-1835) Microsoft Corporation Windows Font Provider Library 131795770645376755 0x7ffac9290000 40960 c:\windows\system32\DSROLE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DS Setup Client DLL 131795770645376755 0x7ffac92e0000 1269760 C:\Windows\System32\WinTypes.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL основных типов Windows 131795770645376755 0x7ffac9790000 98304 c:\windows\system32\nlaapi.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Network Location Awareness 2 131795770645376755 0x7ffac9860000 1896448 c:\windows\system32\fntcache.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служба кэша шрифтов Windows 131795770645376755 0x7ffac9bb0000 479232 c:\windows\system32\es.dll 2001.12.10941.16384 (rs1_release.160715-1616) Microsoft Corporation COM+ 131795770645376755 0x7ffaca130000 204800 C:\Windows\SYSTEM32\windows.devices.radios.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows.Devices.Radios DLL 131795770645376755 0x7ffaca280000 73728 C:\Windows\System32\BitsProxy.dll 7.8.14393.0 (rs1_release.160715-1616) Microsoft Corporation Background Intelligent Transfer Service Proxy 131795770645376755 0x7ffaca340000 1593344 C:\Windows\system32\propsys.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Система страниц свойств (Майкрософт) 131795770645376755 0x7ffaca500000 69632 C:\Windows\System32\wups.dll 10.0.14393.2122 (rs1_release.180217-2341) Microsoft Corporation Windows Update client proxy stub 131795770645376755 0x7ffacb140000 593920 c:\windows\system32\msvcp110_win.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Microsoft® STL110 C++ Runtime Library 131795770645376755 0x7ffacb1e0000 1163264 C:\Windows\System32\twinapi.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation twinapi.appcore 131795770645376755 0x7ffacb300000 364544 c:\windows\system32\VEEventDispatcher.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Visual Element Event dispatcher 131795770645376755 0x7ffacb360000 176128 C:\Windows\System32\fwbase.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Firewall Base DLL 131795770645376755 0x7ffacb420000 204800 C:\Windows\SYSTEM32\ntmarta.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик Windows NT MARTA 131795770645376755 0x7ffacb460000 548864 C:\Windows\System32\FirewallAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API брандмауэра Windows 131795770645376755 0x7ffacb6f0000 143360 C:\Windows\SYSTEM32\gpapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиентские функции API групповой политики 131795770645376755 0x7ffacb920000 81920 C:\Windows\SYSTEM32\WLDP.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Политика блокировки Windows 131795770645376755 0x7ffacbaf0000 495616 C:\Windows\system32\schannel.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик безопасности TLS/SSL 131795770645376755 0x7ffacbbb0000 208896 C:\Windows\system32\rsaenh.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Enhanced Cryptographic Provider 131795770645376755 0x7ffacbbf0000 40960 C:\Windows\SYSTEM32\DPAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Data Protection API 131795770645376755 0x7ffacbd30000 229376 c:\windows\system32\IPHLPAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API вспомогательного приложения IP 131795770645376755 0x7ffacbd70000 659456 C:\Windows\SYSTEM32\DNSAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Динамическая библиотека API DNS-клиента 131795770645376755 0x7ffacbe20000 53248 C:\Windows\SYSTEM32\netutils.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API Helpers DLL 131795770645376755 0x7ffacbe40000 126976 c:\windows\system32\USERENV.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Userenv 131795770645376755 0x7ffacbfb0000 376832 C:\Windows\system32\mswsock.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширение поставщика службы API Microsoft Windows Sockets 2.0 131795770645376755 0x7ffacc150000 94208 C:\Windows\System32\CRYPTSP.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Cryptographic Service Provider API 131795770645376755 0x7ffacc170000 45056 C:\Windows\system32\CRYPTBASE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base cryptographic API DLL 131795770645376755 0x7ffacc1f0000 241664 c:\windows\system32\NTASN1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft ASN.1 API 131795770645376755 0x7ffacc230000 155648 c:\windows\system32\ncrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Маршрутизатор Windows NCrypt 131795770645376755 0x7ffacc350000 180224 C:\Windows\System32\SspiCli.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Security Support Provider Interface 131795770645376755 0x7ffacc520000 622592 C:\Windows\SYSTEM32\sxs.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Fusion 2.5 131795770645376755 0x7ffacc620000 176128 C:\Windows\System32\bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795770645376755 0x7ffacc6e0000 61440 C:\Windows\System32\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795770645376755 0x7ffacc6f0000 311296 C:\Windows\System32\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795770645376755 0x7ffacc740000 81920 C:\Windows\System32\profapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Profile Basic API 131795770645376755 0x7ffacc760000 65536 C:\Windows\System32\MSASN1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ASN.1 Runtime APIs 131795770645376755 0x7ffacc8f0000 1003520 C:\Windows\System32\ucrtbase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645376755 0x7ffacc9f0000 434176 C:\Windows\System32\bcryptPrimitives.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Cryptographic Primitives Library 131795770645376755 0x7ffacca60000 122880 C:\Windows\System32\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795770645376755 0x7ffacca80000 348160 C:\Windows\System32\WINTRUST.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation Microsoft Trust Verification APIs 131795770645376755 0x7ffaccae0000 692224 C:\Windows\System32\shcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795770645376755 0x7ffacd270000 2215936 C:\Windows\System32\KERNELBASE.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645376755 0x7ffacd490000 1871872 C:\Windows\System32\CRYPT32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API32 криптографии 131795770645376755 0x7ffacd710000 638976 C:\Windows\System32\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645376755 0x7ffacd7b0000 270336 C:\Windows\System32\cfgmgr32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Configuration Manager DLL 131795770645376755 0x7ffaced20000 782336 C:\Windows\System32\OLEAUT32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795770645376755 0x7ffacede0000 450560 C:\Windows\System32\coml2.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft COM for Windows 131795770645376755 0x7ffacee50000 1183744 C:\Windows\System32\RPCRT4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795770645376755 0x7ffacef80000 32768 C:\Windows\System32\NSI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation NSI User-mode interface DLL 131795770645376755 0x7ffacef90000 647168 C:\Windows\System32\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795770645376755 0x7ffacf030000 651264 C:\Windows\System32\clbcatq.dll 2001.12.10941.16384 (rs1_release.160715-1616) Microsoft Corporation COM+ Configuration Catalog 131795770645376755 0x7ffacf0d0000 704512 C:\Windows\System32\KERNEL32.DLL 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645376755 0x7ffacf770000 212992 C:\Windows\System32\GDI32.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation GDI Client DLL 131795770645376755 0x7ffacf820000 434176 C:\Windows\System32\WS2_32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation 32-разрядная библиотека Windows Socket 2.0 131795770645376755 0x7ffacf8c0000 1462272 C:\Windows\System32\user32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795770645376755 0x7ffacfb30000 2916352 C:\Windows\System32\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795770645376755 0x7ffacfe20000 663552 C:\Windows\System32\advapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795770645376755 0x7ffad0070000 1277952 C:\Windows\System32\ole32.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft OLE для Windows 131795770645376755 0x7ffad0210000 364544 C:\Windows\System32\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795770645376755 0x7ffad0270000 1908736 C:\Windows\SYSTEM32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 26 360 580 4 00000000:000003e5 131765776311216195 0 0 1 Обязательная метка\Обязательный уровень системы NT AUTHORITY\LOCAL SERVICE svchost.exe C:\Windows\System32\svchost.exe C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted Microsoft Corporation 10.0.14393.0 (rs1_release.160715-1616) Хост-процесс для служб Windows 131795770645376855 0x7ff718c20000 57344 C:\Windows\System32\svchost.exe 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Хост-процесс для служб Windows 131795770645376855 0x7ffab4af0000 606208 C:\Windows\System32\audioses.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Сеанс обработки звука 131795770645376855 0x7ffabaad0000 352256 C:\Windows\System32\deviceaccess.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Device Broker And Policy COM Server 131795770645376855 0x7ffac7e70000 36864 C:\Windows\SYSTEM32\coreaudiopolicymanagerext.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation "coreaudiopolicymanagerext.DYNLINK" 131795770645376855 0x7ffac87d0000 237568 c:\windows\system32\AUDIOSRVPOLICYMANAGER.dll 10.0.14393.351 (rs1_release_inmarket.161014-1755) Microsoft Corporation Windows Audio Service Policy Manager 131795770645376855 0x7ffac90d0000 978944 c:\windows\system32\audiosrv.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служба Windows Audio 131795770645376855 0x7ffac92e0000 1269760 C:\Windows\SYSTEM32\wintypes.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL основных типов Windows 131795770645376855 0x7ffac9480000 462848 c:\windows\system32\MMDevAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation MMDevice API 131795770645376855 0x7ffaca340000 1593344 c:\windows\system32\PROPSYS.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Система страниц свойств (Майкрософт) 131795770645376855 0x7ffaca4e0000 77824 C:\Windows\SYSTEM32\wtsapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Remote Desktop Session Host Server SDK APIs 131795770645376855 0x7ffacb1e0000 1163264 C:\Windows\System32\twinapi.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation twinapi.appcore 131795770645376855 0x7ffacb3f0000 163840 c:\windows\system32\DEVOBJ.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Device Information Set DLL 131795770645376855 0x7ffacb920000 81920 C:\Windows\SYSTEM32\WLDP.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Политика блокировки Windows 131795770645376855 0x7ffacc5c0000 352256 C:\Windows\SYSTEM32\winsta.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Winstation Library 131795770645376855 0x7ffacc620000 176128 C:\Windows\System32\bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795770645376855 0x7ffacc6e0000 61440 C:\Windows\System32\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795770645376855 0x7ffacc6f0000 311296 C:\Windows\System32\POWRPROF.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795770645376855 0x7ffacc760000 65536 C:\Windows\System32\MSASN1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ASN.1 Runtime APIs 131795770645376855 0x7ffacc8f0000 1003520 C:\Windows\System32\ucrtbase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645376855 0x7ffacc9f0000 434176 C:\Windows\System32\bcryptPrimitives.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Cryptographic Primitives Library 131795770645376855 0x7ffacca60000 122880 C:\Windows\System32\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795770645376855 0x7ffacca80000 348160 C:\Windows\System32\WINTRUST.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation Microsoft Trust Verification APIs 131795770645376855 0x7ffaccae0000 692224 C:\Windows\System32\shcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795770645376855 0x7ffacd270000 2215936 C:\Windows\System32\KERNELBASE.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645376855 0x7ffacd490000 1871872 C:\Windows\System32\CRYPT32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API32 криптографии 131795770645376855 0x7ffacd710000 638976 C:\Windows\System32\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645376855 0x7ffacd7b0000 270336 C:\Windows\System32\cfgmgr32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Configuration Manager DLL 131795770645376855 0x7ffaced20000 782336 C:\Windows\System32\OLEAUT32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795770645376855 0x7ffacee50000 1183744 C:\Windows\System32\RPCRT4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795770645376855 0x7ffacef90000 647168 C:\Windows\System32\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795770645376855 0x7ffacf030000 651264 C:\Windows\System32\clbcatq.dll 2001.12.10941.16384 (rs1_release.160715-1616) Microsoft Corporation COM+ Configuration Catalog 131795770645376855 0x7ffacf0d0000 704512 C:\Windows\System32\KERNEL32.DLL 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645376855 0x7ffacf770000 212992 C:\Windows\System32\GDI32.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation GDI Client DLL 131795770645376855 0x7ffacf8c0000 1462272 C:\Windows\System32\user32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795770645376855 0x7ffacfb30000 2916352 C:\Windows\System32\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795770645376855 0x7ffad0210000 364544 C:\Windows\System32\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795770645376855 0x7ffad0270000 1908736 C:\Windows\SYSTEM32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 27 1040 580 4 00000000:000003e5 131765776311708649 0 0 1 Обязательная метка\Обязательный уровень системы NT AUTHORITY\LOCAL SERVICE svchost.exe C:\Windows\system32\svchost.exe C:\Windows\system32\svchost.exe -k LocalServiceNetworkRestricted Microsoft Corporation 10.0.14393.0 (rs1_release.160715-1616) Хост-процесс для служб Windows 131795770645376955 0x7ff718c20000 57344 C:\Windows\system32\svchost.exe 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Хост-процесс для служб Windows 131795770645376955 0x7ffac8820000 57344 C:\Windows\SYSTEM32\cmintegrator.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation cmintegrator.dll 131795770645376955 0x7ffac8880000 69632 C:\Windows\system32\WMICLNT.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation WMI Client API 131795770645376955 0x7ffac8c50000 245760 C:\Windows\system32\wcmcsp.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Windows Connection Service Provider DLL 131795770645376955 0x7ffac8fe0000 737280 c:\windows\system32\wcmsvc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL службы диспетчера подключений Windows 131795770645376955 0x7ffac9790000 98304 C:\Windows\SYSTEM32\nlaapi.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Network Location Awareness 2 131795770645376955 0x7ffaca4e0000 77824 C:\Windows\SYSTEM32\wtsapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Remote Desktop Session Host Server SDK APIs 131795770645376955 0x7ffacb6f0000 143360 C:\Windows\SYSTEM32\gpapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиентские функции API групповой политики 131795770645376955 0x7ffacb920000 81920 C:\Windows\SYSTEM32\WLDP.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Политика блокировки Windows 131795770645376955 0x7ffacbd30000 229376 c:\windows\system32\IPHLPAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API вспомогательного приложения IP 131795770645376955 0x7ffacc5c0000 352256 C:\Windows\SYSTEM32\WINSTA.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Winstation Library 131795770645376955 0x7ffacc6e0000 61440 C:\Windows\System32\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795770645376955 0x7ffacc6f0000 311296 C:\Windows\System32\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795770645376955 0x7ffacc760000 65536 C:\Windows\System32\MSASN1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ASN.1 Runtime APIs 131795770645376955 0x7ffacc8f0000 1003520 C:\Windows\System32\ucrtbase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645376955 0x7ffacc9f0000 434176 C:\Windows\System32\bcryptPrimitives.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Cryptographic Primitives Library 131795770645376955 0x7ffacca60000 122880 C:\Windows\System32\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795770645376955 0x7ffacca80000 348160 C:\Windows\System32\WINTRUST.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation Microsoft Trust Verification APIs 131795770645376955 0x7ffacd270000 2215936 C:\Windows\System32\KERNELBASE.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645376955 0x7ffacd490000 1871872 C:\Windows\System32\CRYPT32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API32 криптографии 131795770645376955 0x7ffacd710000 638976 C:\Windows\System32\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645376955 0x7ffacd7b0000 270336 C:\Windows\System32\cfgmgr32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Configuration Manager DLL 131795770645376955 0x7ffaced20000 782336 C:\Windows\System32\OLEAUT32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795770645376955 0x7ffacee50000 1183744 C:\Windows\System32\RPCRT4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795770645376955 0x7ffacef80000 32768 C:\Windows\System32\NSI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation NSI User-mode interface DLL 131795770645376955 0x7ffacef90000 647168 C:\Windows\System32\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795770645376955 0x7ffacf0d0000 704512 C:\Windows\System32\KERNEL32.DLL 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645376955 0x7ffacf770000 212992 C:\Windows\System32\GDI32.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation GDI Client DLL 131795770645376955 0x7ffacf820000 434176 C:\Windows\System32\WS2_32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation 32-разрядная библиотека Windows Socket 2.0 131795770645376955 0x7ffacf8c0000 1462272 C:\Windows\System32\user32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795770645376955 0x7ffacfb30000 2916352 C:\Windows\System32\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795770645376955 0x7ffacfe20000 663552 C:\Windows\System32\advapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795770645376955 0x7ffad0210000 364544 C:\Windows\System32\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795770645376955 0x7ffad0270000 1908736 C:\Windows\SYSTEM32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 28 1068 580 4 00000000:000003e4 131765776312395030 0 0 1 Обязательная метка\Обязательный уровень системы NT AUTHORITY\NETWORK SERVICE svchost.exe C:\Windows\system32\svchost.exe C:\Windows\system32\svchost.exe -k NetworkService Microsoft Corporation 10.0.14393.0 (rs1_release.160715-1616) Хост-процесс для служб Windows 131795770645377076 0x7ff718c20000 57344 C:\Windows\system32\svchost.exe 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Хост-процесс для служб Windows 131795770645377076 0x7ffab1fd0000 2277376 C:\Windows\System32\msxml3.dll 8.110.14393.1532 Microsoft Corporation MSXML 3.0 131795770645377076 0x7ffabcf50000 921600 C:\Windows\system32\drvstore.dll 10.0.14393.351 (rs1_release_inmarket.161014-1755) Microsoft Corporation Driver Store API 131795770645377076 0x7ffabf1d0000 192512 c:\windows\system32\CRYPTNET.dll 10.0.14393.2035 (rs1_release_inmarket.180110-1910) Microsoft Corporation Crypto Network Related API 131795770645377076 0x7ffac1d60000 589824 c:\windows\system32\webio.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API протоколов передачи по Веб 131795770645377076 0x7ffac34c0000 81920 C:\Windows\system32\vss_ps.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation Microsoft® Volume Shadow Copy Service proxy/stub 131795770645377076 0x7ffac3810000 167936 C:\Windows\SYSTEM32\Cabinet.dll 5.00 (rs1_release.160715-1616) Microsoft Corporation Microsoft® Cabinet File API 131795770645377076 0x7ffac3840000 3088384 C:\Windows\system32\ESENT.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширяемая подсистема хранения данных ESE для Microsoft(R) Windows(R) 131795770645377076 0x7ffac4e70000 102400 C:\Windows\system32\samcli.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Security Accounts Manager Client DLL 131795770645377076 0x7ffac6410000 98304 C:\Windows\system32\VssTrace.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека трассировки службы теневого копирования тома Microsoft® 131795770645377076 0x7ffac6430000 1581056 C:\Windows\system32\VSSAPI.DLL 10.0.14393.953 (rs1_release_inmarket.170303-1614) Microsoft Corporation Microsoft® Volume Shadow Copy Requestor/Writer Services API DLL 131795770645377076 0x7ffac65c0000 155648 C:\Windows\System32\cryptcatsvc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Cryptographic Catalog Services 131795770645377076 0x7ffac65f0000 77824 C:\Windows\System32\crypttpmeksvc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Cryptographic TPM Endorsement Key Services 131795770645377076 0x7ffac6610000 40960 C:\Windows\System32\rasadhlp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Remote Access AutoDial Helper 131795770645377076 0x7ffac6680000 102400 c:\windows\system32\cryptsvc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Службы криптографии 131795770645377076 0x7ffac69c0000 839680 c:\windows\system32\WINHTTP.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Службы HTTP Windows 131795770645377076 0x7ffac6b90000 53248 c:\windows\system32\DSPARSE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Active Directory Domain Services API 131795770645377076 0x7ffac6f00000 303104 c:\windows\system32\wkssvc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL службы рабочей станции 131795770645377076 0x7ffac79c0000 57344 C:\Windows\System32\npmproxy.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Network List Manager Proxy 131795770645377076 0x7ffac79e0000 184320 C:\Windows\SYSTEM32\netjoin.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL присоединения к домену 131795770645377076 0x7ffac7aa0000 401408 C:\Windows\system32\WlanApi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows WLAN AutoConfig Client Side API DLL 131795770645377076 0x7ffac7c00000 266240 C:\Windows\System32\mstask.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека интерфейса планировщика заданий 131795770645377076 0x7ffac7e50000 86016 C:\Windows\system32\ssdpapi.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation SSDP Client API DLL 131795770645377076 0x7ffac8260000 425984 c:\windows\system32\ncsi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Индикатор работоспособности сетевых подключений 131795770645377076 0x7ffac8370000 389120 c:\windows\system32\nlasvc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служба сведений о подключенных сетях 2 131795770645377076 0x7ffac83d0000 106496 C:\Windows\SYSTEM32\dhcpcsvc.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служба DHCP-клиента 131795770645377076 0x7ffac83f0000 90112 C:\Windows\SYSTEM32\dhcpcsvc6.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиент DHCPv6 131795770645377076 0x7ffac8410000 40960 C:\Windows\System32\dnsext.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DNS extension DLL 131795770645377076 0x7ffac8420000 434176 C:\Windows\SYSTEM32\Fwpuclnt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API пользовательского режима FWP/IPsec 131795770645377076 0x7ffac8810000 45056 C:\Windows\SYSTEM32\WINNSI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Network Store Information RPC interface 131795770645377076 0x7ffac8830000 290816 c:\windows\system32\dnsrslvr.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служба кэширующего сопоставителя DNS 131795770645377076 0x7ffac8880000 69632 c:\windows\system32\WMICLNT.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation WMI Client API 131795770645377076 0x7ffac8cf0000 815104 C:\Windows\System32\taskschd.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Task Scheduler COM API 131795770645377076 0x7ffac90b0000 90112 c:\windows\system32\wkscli.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Workstation Service Client DLL 131795770645377076 0x7ffac9220000 397312 C:\Windows\SYSTEM32\wevtapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API настройки и использования событий 131795770645377076 0x7ffac9bb0000 479232 C:\Windows\System32\ES.DLL 2001.12.10941.16384 (rs1_release.160715-1616) Microsoft Corporation COM+ 131795770645377076 0x7ffac9f10000 221184 C:\Windows\System32\netprofm.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Network List Manager 131795770645377076 0x7ffaca340000 1593344 C:\Windows\System32\PROPSYS.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Система страниц свойств (Майкрософт) 131795770645377076 0x7ffaca4e0000 77824 C:\Windows\SYSTEM32\wtsapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Remote Desktop Session Host Server SDK APIs 131795770645377076 0x7ffaca610000 143360 C:\Windows\system32\SAMLIB.dll 10.0.14393.82 (rs1_release.160805-1735) Microsoft Corporation SAM Library DLL 131795770645377076 0x7ffacb3f0000 163840 c:\windows\system32\DEVOBJ.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Device Information Set DLL 131795770645377076 0x7ffacb6f0000 143360 C:\Windows\SYSTEM32\gpapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиентские функции API групповой политики 131795770645377076 0x7ffacb920000 81920 C:\Windows\SYSTEM32\WLDP.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Политика блокировки Windows 131795770645377076 0x7ffacbbb0000 208896 C:\Windows\system32\rsaenh.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Enhanced Cryptographic Provider 131795770645377076 0x7ffacbd30000 229376 C:\Windows\SYSTEM32\IPHLPAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API вспомогательного приложения IP 131795770645377076 0x7ffacbd70000 659456 C:\Windows\SYSTEM32\DNSAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Динамическая библиотека API DNS-клиента 131795770645377076 0x7ffacbe20000 53248 C:\Windows\SYSTEM32\netutils.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API Helpers DLL 131795770645377076 0x7ffacbe40000 126976 C:\Windows\system32\USERENV.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Userenv 131795770645377076 0x7ffacbfb0000 376832 C:\Windows\system32\mswsock.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширение поставщика службы API Microsoft Windows Sockets 2.0 131795770645377076 0x7ffacc150000 94208 C:\Windows\SYSTEM32\CRYPTSP.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Cryptographic Service Provider API 131795770645377076 0x7ffacc170000 45056 C:\Windows\SYSTEM32\CRYPTBASE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base cryptographic API DLL 131795770645377076 0x7ffacc1b0000 126976 C:\Windows\SYSTEM32\JoinUtil.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Join Utility DLL 131795770645377076 0x7ffacc350000 180224 C:\Windows\system32\sspicli.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Security Support Provider Interface 131795770645377076 0x7ffacc520000 622592 C:\Windows\SYSTEM32\sxs.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Fusion 2.5 131795770645377076 0x7ffacc5c0000 352256 C:\Windows\SYSTEM32\WINSTA.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Winstation Library 131795770645377076 0x7ffacc620000 176128 C:\Windows\SYSTEM32\bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795770645377076 0x7ffacc6e0000 61440 C:\Windows\System32\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795770645377076 0x7ffacc6f0000 311296 C:\Windows\System32\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795770645377076 0x7ffacc740000 81920 C:\Windows\System32\profapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Profile Basic API 131795770645377076 0x7ffacc760000 65536 C:\Windows\System32\MSASN1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ASN.1 Runtime APIs 131795770645377076 0x7ffacc8f0000 1003520 C:\Windows\System32\ucrtbase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645377076 0x7ffacc9f0000 434176 C:\Windows\System32\bcryptPrimitives.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Cryptographic Primitives Library 131795770645377076 0x7ffacca60000 122880 C:\Windows\System32\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795770645377076 0x7ffacca80000 348160 C:\Windows\System32\WINTRUST.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation Microsoft Trust Verification APIs 131795770645377076 0x7ffaccae0000 692224 C:\Windows\System32\shcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795770645377076 0x7ffacd270000 2215936 C:\Windows\System32\KERNELBASE.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645377076 0x7ffacd490000 1871872 C:\Windows\System32\CRYPT32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API32 криптографии 131795770645377076 0x7ffacd710000 638976 C:\Windows\System32\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645377076 0x7ffacd7b0000 270336 C:\Windows\System32\cfgmgr32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Configuration Manager DLL 131795770645377076 0x7ffaced20000 782336 C:\Windows\System32\OLEAUT32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795770645377076 0x7ffacee50000 1183744 C:\Windows\System32\RPCRT4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795770645377076 0x7ffacef80000 32768 C:\Windows\System32\NSI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation NSI User-mode interface DLL 131795770645377076 0x7ffacef90000 647168 C:\Windows\System32\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795770645377076 0x7ffacf030000 651264 C:\Windows\System32\clbcatq.dll 2001.12.10941.16384 (rs1_release.160715-1616) Microsoft Corporation COM+ Configuration Catalog 131795770645377076 0x7ffacf0d0000 704512 C:\Windows\System32\KERNEL32.DLL 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645377076 0x7ffacf770000 212992 C:\Windows\System32\GDI32.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation GDI Client DLL 131795770645377076 0x7ffacf820000 434176 C:\Windows\System32\WS2_32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation 32-разрядная библиотека Windows Socket 2.0 131795770645377076 0x7ffacf8c0000 1462272 C:\Windows\System32\user32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795770645377076 0x7ffacfb30000 2916352 C:\Windows\System32\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795770645377076 0x7ffacfe20000 663552 C:\Windows\System32\ADVAPI32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795770645377076 0x7ffad0210000 364544 C:\Windows\System32\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795770645377076 0x7ffad0270000 1908736 C:\Windows\SYSTEM32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 29 1248 580 4 00000000:000003e7 131765776322176070 0 0 1 Обязательная метка\Обязательный уровень системы NT AUTHORITY\СИСТЕМА spoolsv.exe C:\Windows\System32\spoolsv.exe C:\Windows\System32\spoolsv.exe Microsoft Corporation 10.0.14393.0 (rs1_release.160715-1616) Диспетчер очереди печати 131795770645377182 0x7ff639680000 819200 C:\Windows\System32\spoolsv.exe 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Диспетчер очереди печати 131795770645377182 0x7ffab8a60000 3346432 C:\Windows\system32\spool\DRIVERS\x64\3\PrintConfig.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Пользовательский интерфейс PrintConfig 131795770645377182 0x7ffaba980000 815104 C:\Windows\System32\jscript.dll 5.812.10240.16384 Microsoft Corporation Microsoft ® JScript 131795770645377182 0x7ffabae60000 77824 C:\Windows\System32\DEVRTL.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Device Management Run Time Library 131795770645377182 0x7ffabb7d0000 851968 C:\Windows\System32\win32spl.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик печати с исполнением на стороне клиента 131795770645377182 0x7ffabbd40000 176128 C:\Windows\SYSTEM32\prntvpt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Print Ticket Services Module 131795770645377182 0x7ffabbd70000 3346432 C:\Windows\System32\DriverStore\FileRepository\prnms003.inf_amd64_53d78f68bc1697cc\Amd64\PrintConfig.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Пользовательский интерфейс PrintConfig 131795770645377182 0x7ffabc0c0000 118784 C:\Windows\System32\SPFILEQ.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows SPFILEQ 131795770645377182 0x7ffabc590000 118784 C:\Program Files\Windows Defender\MpOav.dll 4.10.14393.1794 (rs1_release.171008-1615) Microsoft Corporation IOfficeAntiVirus Module 131795770645377182 0x7ffabc5b0000 65536 C:\Windows\SYSTEM32\amsi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Anti-Malware Scan Interface 131795770645377182 0x7ffabc880000 73728 C:\Windows\System32\cscapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Offline Files Win32 API 131795770645377182 0x7ffabcf50000 921600 C:\Windows\System32\drvstore.dll 10.0.14393.351 (rs1_release_inmarket.161014-1755) Microsoft Corporation Driver Store API 131795770645377182 0x7ffabd040000 77824 C:\Windows\System32\fdPnp.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Pnp Provider Dll 131795770645377182 0x7ffabd060000 610304 C:\Windows\System32\WSDMon.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Диспетчер порта принтера WSD 131795770645377182 0x7ffabd100000 348160 C:\Windows\System32\usbmon.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Standard Dynamic Printing Port Monitor DLL 131795770645377182 0x7ffabd160000 86016 C:\Windows\System32\wsnmp32.dll 10.0.14393.2189 (rs1_release.180329-1711) Microsoft Corporation Microsoft WinSNMP v2.0 Manager API 131795770645377182 0x7ffabd180000 548864 C:\Windows\system32\winspool.drv 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Драйвер диспетчера очереди Windows 131795770645377182 0x7ffabd2a0000 1159168 C:\Windows\System32\localspl.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Библиотека локального диспетчера очереди 131795770645377182 0x7ffabde60000 237568 C:\Windows\System32\tcpmon.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека монитора портов TCP/IP 131795770645377182 0x7ffabe3f0000 65536 C:\Windows\system32\spool\PRTPROCS\x64\winprint.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Windows Print Processor DLL 131795770645377182 0x7ffabe6c0000 77824 C:\Windows\System32\PrintIsolationProxy.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Print Sandbox COM Proxy Stub 131795770645377182 0x7ffabe8a0000 49152 C:\Windows\System32\snmpapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SNMP Utility Library 131795770645377182 0x7ffabe980000 114688 C:\Windows\System32\SPOOLSS.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Spooler SubSystem DLL 131795770645377182 0x7ffabef80000 69632 C:\Windows\System32\sfc_os.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows File Protection 131795770645377182 0x7ffabf330000 2457600 C:\Windows\System32\msxml6.dll 6.30.14393.2156 Microsoft Corporation MSXML 6.0 131795770645377182 0x7ffabf5d0000 2924544 C:\Windows\SYSTEM32\wininet.dll 11.00.14393.447 (rs1_release_inmarket.161102-0100) Microsoft Corporation Расширения Интернета для Win32 131795770645377182 0x7ffabff10000 155648 C:\Windows\System32\srvcli.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Server Service Client DLL 131795770645377182 0x7ffac0af0000 114688 C:\Windows\System32\ATL.DLL 3.05.2284 Microsoft Corporation ATL Module for Windows XP (Unicode) 131795770645377182 0x7ffac1f00000 65536 C:\Windows\System32\FXSMON.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Fax Print Monitor 131795770645377182 0x7ffac1f30000 118784 C:\Windows\System32\SPINF.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows SPINF 131795770645377182 0x7ffac2b80000 40960 C:\Windows\SYSTEM32\VERSION.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Version Checking and File Installation Libraries 131795770645377182 0x7ffac34e0000 1843200 C:\Windows\SYSTEM32\urlmon.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширения OLE32 для Win32 131795770645377182 0x7ffac3810000 167936 C:\Windows\System32\cabinet.dll 5.00 (rs1_release.160715-1616) Microsoft Corporation Microsoft® Cabinet File API 131795770645377182 0x7ffac3cb0000 2772992 C:\Windows\SYSTEM32\iertutil.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служебная программа времени выполнения для Internet Explorer 131795770645377182 0x7ffac4e90000 32768 C:\Windows\System32\wshirda.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Sockets Helper DLL 131795770645377182 0x7ffac60e0000 221184 C:\Windows\System32\XmlLite.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft XmlLite Library 131795770645377182 0x7ffac6610000 40960 C:\Windows\System32\rasadhlp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Remote Access AutoDial Helper 131795770645377182 0x7ffac6710000 172032 C:\Windows\System32\FunDisc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL обнаружения функции 131795770645377182 0x7ffac6750000 1380352 C:\Windows\System32\webservices.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Среда выполнения веб-служб Windows 131795770645377182 0x7ffac68b0000 696320 C:\Windows\System32\wsdapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Веб-службы для библиотек DLL API-интерфейсов устройств 131795770645377182 0x7ffac6990000 69632 C:\Windows\System32\deviceassociation.dll 10.0.14393.82 (rs1_release.160805-1735) Microsoft Corporation Device Association Client DLL 131795770645377182 0x7ffac69c0000 839680 C:\Windows\System32\WINHTTP.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Службы HTTP Windows 131795770645377182 0x7ffac6ba0000 49152 C:\Windows\System32\Secur32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Security Support Provider Interface 131795770645377182 0x7ffac7e00000 196608 C:\Windows\System32\inetpp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL Internet Print Provider 131795770645377182 0x7ffac8420000 434176 C:\Windows\System32\fwpuclnt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API пользовательского режима FWP/IPsec 131795770645377182 0x7ffac8810000 45056 C:\Windows\SYSTEM32\WINNSI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Network Store Information RPC interface 131795770645377182 0x7ffac9290000 40960 C:\Windows\System32\DSROLE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DS Setup Client DLL 131795770645377182 0x7ffaca4e0000 77824 C:\Windows\System32\WTSAPI32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Remote Desktop Session Host Server SDK APIs 131795770645377182 0x7ffacadf0000 499712 C:\Windows\system32\apphelp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиентская библиотека совместимости приложений 131795770645377182 0x7ffacb360000 176128 C:\Windows\System32\fwbase.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Firewall Base DLL 131795770645377182 0x7ffacb3f0000 163840 C:\Windows\System32\DEVOBJ.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Device Information Set DLL 131795770645377182 0x7ffacb420000 204800 C:\Windows\SYSTEM32\ntmarta.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик Windows NT MARTA 131795770645377182 0x7ffacb460000 548864 C:\Windows\System32\FirewallAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API брандмауэра Windows 131795770645377182 0x7ffacb6f0000 143360 C:\Windows\SYSTEM32\gpapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиентские функции API групповой политики 131795770645377182 0x7ffacbbb0000 208896 C:\Windows\system32\rsaenh.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Enhanced Cryptographic Provider 131795770645377182 0x7ffacbd30000 229376 C:\Windows\SYSTEM32\IPHLPAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API вспомогательного приложения IP 131795770645377182 0x7ffacbd70000 659456 C:\Windows\System32\DNSAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Динамическая библиотека API DNS-клиента 131795770645377182 0x7ffacbe20000 53248 C:\Windows\System32\netutils.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API Helpers DLL 131795770645377182 0x7ffacbe40000 126976 C:\Windows\System32\USERENV.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Userenv 131795770645377182 0x7ffacbfb0000 376832 C:\Windows\system32\mswsock.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширение поставщика службы API Microsoft Windows Sockets 2.0 131795770645377182 0x7ffacc150000 94208 C:\Windows\System32\CRYPTSP.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Cryptographic Service Provider API 131795770645377182 0x7ffacc170000 45056 C:\Windows\System32\CRYPTBASE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base cryptographic API DLL 131795770645377182 0x7ffacc350000 180224 C:\Windows\System32\SspiCli.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Security Support Provider Interface 131795770645377182 0x7ffacc520000 622592 C:\Windows\SYSTEM32\sxs.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Fusion 2.5 131795770645377182 0x7ffacc5c0000 352256 C:\Windows\System32\WINSTA.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Winstation Library 131795770645377182 0x7ffacc620000 176128 C:\Windows\System32\bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795770645377182 0x7ffacc6e0000 61440 C:\Windows\System32\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795770645377182 0x7ffacc6f0000 311296 C:\Windows\System32\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795770645377182 0x7ffacc740000 81920 C:\Windows\System32\profapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Profile Basic API 131795770645377182 0x7ffacc760000 65536 C:\Windows\System32\MSASN1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ASN.1 Runtime APIs 131795770645377182 0x7ffacc8f0000 1003520 C:\Windows\System32\ucrtbase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645377182 0x7ffacc9f0000 434176 C:\Windows\System32\bcryptPrimitives.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Cryptographic Primitives Library 131795770645377182 0x7ffacca60000 122880 C:\Windows\System32\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795770645377182 0x7ffacca80000 348160 C:\Windows\System32\WINTRUST.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation Microsoft Trust Verification APIs 131795770645377182 0x7ffaccae0000 692224 C:\Windows\System32\shcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795770645377182 0x7ffaccb90000 7180288 C:\Windows\System32\windows.storage.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API хранения Microsoft WinRT 131795770645377182 0x7ffacd270000 2215936 C:\Windows\System32\KERNELBASE.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645377182 0x7ffacd490000 1871872 C:\Windows\System32\CRYPT32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API32 криптографии 131795770645377182 0x7ffacd710000 638976 C:\Windows\System32\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645377182 0x7ffacd7b0000 270336 C:\Windows\System32\cfgmgr32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Configuration Manager DLL 131795770645377182 0x7ffacd810000 22056960 C:\Windows\System32\SHELL32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Общая библиотека оболочки Windows 131795770645377182 0x7ffaced20000 782336 C:\Windows\System32\OLEAUT32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795770645377182 0x7ffacee50000 1183744 C:\Windows\System32\RPCRT4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795770645377182 0x7ffacef80000 32768 C:\Windows\System32\NSI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation NSI User-mode interface DLL 131795770645377182 0x7ffacef90000 647168 C:\Windows\System32\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795770645377182 0x7ffacf030000 651264 C:\Windows\System32\clbcatq.dll 2001.12.10941.16384 (rs1_release.160715-1616) Microsoft Corporation COM+ Configuration Catalog 131795770645377182 0x7ffacf0d0000 704512 C:\Windows\System32\KERNEL32.DLL 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645377182 0x7ffacf340000 4362240 C:\Windows\System32\SETUPAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Setup API 131795770645377182 0x7ffacf770000 212992 C:\Windows\System32\GDI32.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation GDI Client DLL 131795770645377182 0x7ffacf820000 434176 C:\Windows\System32\WS2_32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation 32-разрядная библиотека Windows Socket 2.0 131795770645377182 0x7ffacf8c0000 1462272 C:\Windows\System32\USER32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795770645377182 0x7ffacfb30000 2916352 C:\Windows\System32\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795770645377182 0x7ffacfe20000 663552 C:\Windows\System32\advapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795770645377182 0x7ffad0070000 1277952 C:\Windows\System32\ole32.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft OLE для Windows 131795770645377182 0x7ffad01b0000 335872 C:\Windows\System32\SHLWAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека небольших программ оболочки 131795770645377182 0x7ffad0210000 364544 C:\Windows\System32\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795770645377182 0x7ffad0270000 1908736 C:\Windows\SYSTEM32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 30 1512 580 4 00000000:000003e5 131765776336551242 0 0 1 Обязательная метка\Обязательный уровень системы NT AUTHORITY\LOCAL SERVICE svchost.exe C:\Windows\system32\svchost.exe C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation Microsoft Corporation 10.0.14393.0 (rs1_release.160715-1616) Хост-процесс для служб Windows 131795770645377290 0x7ff718c20000 57344 C:\Windows\system32\svchost.exe 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Хост-процесс для служб Windows 131795770645377290 0x7ffabe9f0000 258048 c:\windows\system32\ssdpsrv.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL службы SSDP 131795770645377290 0x7ffac3f60000 225280 c:\windows\system32\FWPolicyIOMgr.dll 10.0.14393.2189 (rs1_release.180329-1711) Microsoft Corporation FwPolicyIoMgr DLL 131795770645377290 0x7ffac60e0000 221184 C:\Windows\System32\XmlLite.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft XmlLite Library 131795770645377290 0x7ffac6400000 53248 c:\windows\system32\HTTPAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation HTTP Protocol Stack API 131795770645377290 0x7ffac66c0000 32768 C:\Windows\system32\wship6.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL помощника Winsock2 (TL/IPv6) 131795770645377290 0x7ffac66d0000 32768 C:\Windows\system32\wshtcpip.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL помощника службы Winsock2 (TL/IPv4) 131795770645377290 0x7ffac6700000 40960 C:\Windows\system32\wshqos.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL помощника службы QoS Winsock2 131795770645377290 0x7ffac6710000 172032 C:\Windows\System32\FunDisc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL обнаружения функции 131795770645377290 0x7ffac6750000 1380352 c:\windows\system32\webservices.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Среда выполнения веб-служб Windows 131795770645377290 0x7ffac68b0000 696320 c:\windows\system32\wsdapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Веб-службы для библиотек DLL API-интерфейсов устройств 131795770645377290 0x7ffac69b0000 57344 c:\windows\system32\fdrespub.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служба публикации ресурсов обнаружения функции 131795770645377290 0x7ffac69c0000 839680 c:\windows\system32\WINHTTP.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Службы HTTP Windows 131795770645377290 0x7ffac83d0000 106496 C:\Windows\SYSTEM32\dhcpcsvc.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служба DHCP-клиента 131795770645377290 0x7ffac83f0000 90112 C:\Windows\SYSTEM32\dhcpcsvc6.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиент DHCPv6 131795770645377290 0x7ffac8810000 45056 C:\Windows\SYSTEM32\WINNSI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Network Store Information RPC interface 131795770645377290 0x7ffac90b0000 90112 c:\windows\system32\wkscli.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Workstation Service Client DLL 131795770645377290 0x7ffacb360000 176128 c:\windows\system32\fwbase.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Firewall Base DLL 131795770645377290 0x7ffacb460000 548864 c:\windows\system32\FirewallAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API брандмауэра Windows 131795770645377290 0x7ffacb920000 81920 C:\Windows\SYSTEM32\WLDP.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Политика блокировки Windows 131795770645377290 0x7ffacbbb0000 208896 C:\Windows\system32\rsaenh.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Enhanced Cryptographic Provider 131795770645377290 0x7ffacbd30000 229376 c:\windows\system32\IPHLPAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API вспомогательного приложения IP 131795770645377290 0x7ffacbe20000 53248 c:\windows\system32\netutils.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API Helpers DLL 131795770645377290 0x7ffacbfb0000 376832 C:\Windows\system32\mswsock.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширение поставщика службы API Microsoft Windows Sockets 2.0 131795770645377290 0x7ffacc150000 94208 c:\windows\system32\CRYPTSP.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Cryptographic Service Provider API 131795770645377290 0x7ffacc170000 45056 C:\Windows\system32\CRYPTBASE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base cryptographic API DLL 131795770645377290 0x7ffacc350000 180224 C:\Windows\system32\sspicli.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Security Support Provider Interface 131795770645377290 0x7ffacc620000 176128 c:\windows\system32\bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795770645377290 0x7ffacc6e0000 61440 C:\Windows\System32\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795770645377290 0x7ffacc6f0000 311296 C:\Windows\System32\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795770645377290 0x7ffacc760000 65536 C:\Windows\System32\MSASN1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ASN.1 Runtime APIs 131795770645377290 0x7ffacc8f0000 1003520 C:\Windows\System32\ucrtbase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645377290 0x7ffacc9f0000 434176 C:\Windows\System32\bcryptPrimitives.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Cryptographic Primitives Library 131795770645377290 0x7ffacca60000 122880 C:\Windows\System32\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795770645377290 0x7ffacca80000 348160 C:\Windows\System32\WINTRUST.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation Microsoft Trust Verification APIs 131795770645377290 0x7ffacd270000 2215936 C:\Windows\System32\KERNELBASE.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645377290 0x7ffacd490000 1871872 C:\Windows\System32\CRYPT32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API32 криптографии 131795770645377290 0x7ffacee50000 1183744 C:\Windows\System32\RPCRT4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795770645377290 0x7ffacef80000 32768 C:\Windows\System32\NSI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation NSI User-mode interface DLL 131795770645377290 0x7ffacef90000 647168 C:\Windows\System32\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795770645377290 0x7ffacf030000 651264 C:\Windows\System32\clbcatq.dll 2001.12.10941.16384 (rs1_release.160715-1616) Microsoft Corporation COM+ Configuration Catalog 131795770645377290 0x7ffacf0d0000 704512 C:\Windows\System32\KERNEL32.DLL 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645377290 0x7ffacf770000 212992 C:\Windows\System32\GDI32.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation GDI Client DLL 131795770645377290 0x7ffacf820000 434176 C:\Windows\System32\WS2_32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation 32-разрядная библиотека Windows Socket 2.0 131795770645377290 0x7ffacf8c0000 1462272 C:\Windows\System32\user32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795770645377290 0x7ffacfb30000 2916352 C:\Windows\System32\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795770645377290 0x7ffad0210000 364544 C:\Windows\System32\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795770645377290 0x7ffad0270000 1908736 C:\Windows\SYSTEM32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 31 1556 580 4 00000000:000003e7 131765776339471770 0 0 1 Обязательная метка\Обязательный уровень системы NT AUTHORITY\СИСТЕМА svchost.exe C:\Windows\System32\svchost.exe C:\Windows\System32\svchost.exe -k utcsvc Microsoft Corporation 10.0.14393.0 (rs1_release.160715-1616) Хост-процесс для служб Windows 131795770645377395 0x272f9bf0000 12288 C:\Windows\SYSTEM32\sfc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows File Protection 131795770645377395 0x7ff718c20000 57344 C:\Windows\System32\svchost.exe 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Хост-процесс для служб Windows 131795770645377395 0x7ffab93b0000 897024 C:\Windows\System32\TokenBroker.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Token Broker 131795770645377395 0x7ffabaab0000 94208 C:\Windows\SYSTEM32\profext.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation profext 131795770645377395 0x7ffabae60000 77824 C:\Windows\SYSTEM32\DEVRTL.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Device Management Run Time Library 131795770645377395 0x7ffabbd10000 65536 C:\Windows\System32\TOKENBINDING.dll 10.0.14393.1593 (rs1_release.170731-1934) Microsoft Corporation Token Binding Protocol 131795770645377395 0x7ffabca50000 819200 C:\Windows\System32\Windows.Security.Authentication.Web.Core.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Token Broker WinRT API 131795770645377395 0x7ffabcf50000 921600 C:\Windows\System32\drvstore.dll 10.0.14393.351 (rs1_release_inmarket.161014-1755) Microsoft Corporation Driver Store API 131795770645377395 0x7ffabe850000 155648 C:\Windows\System32\IDStore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Identity Store 131795770645377395 0x7ffabef80000 69632 C:\Windows\SYSTEM32\sfc_os.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows File Protection 131795770645377395 0x7ffabefd0000 258048 C:\Windows\SYSTEM32\aepic.dll 10.0.17060.1029 (WinBuild.160101.0800) Microsoft Corporation Application Experience Program Cache 131795770645377395 0x7ffabf140000 176128 C:\Windows\System32\CourtesyEngine.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Feedback Courtesy Engine DLL Server 131795770645377395 0x7ffabf1d0000 192512 C:\Windows\System32\cryptnet.dll 10.0.14393.2035 (rs1_release_inmarket.180110-1910) Microsoft Corporation Crypto Network Related API 131795770645377395 0x7ffabfbe0000 1011712 C:\Windows\System32\Windows.Security.Authentication.OnlineId.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation Windows Runtime OnlineId Authentication DLL 131795770645377395 0x7ffabfde0000 143360 c:\windows\system32\CRYPTXML.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API-интерфейс XML DigSig 131795770645377395 0x7ffabff60000 135168 C:\Windows\system32\ncryptsslp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft SChannel Provider 131795770645377395 0x7ffac05f0000 94208 C:\Windows\System32\wwapi.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation WWAN API 131795770645377395 0x7ffac0910000 724992 C:\Windows\System32\Windows.Networking.Connectivity.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Networking Connectivity Runtime DLL 131795770645377395 0x7ffac09d0000 884736 C:\Windows\System32\wpnapps.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Приложения для push-уведомлений Windows 131795770645377395 0x7ffac0ad0000 86016 C:\Windows\SYSTEM32\mskeyprotect.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик защиты ключей (Майкрософт) 131795770645377395 0x7ffac0bf0000 3559424 C:\Windows\System32\ActXPrxy.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation ActiveX Interface Marshaling Library 131795770645377395 0x7ffac1d60000 589824 c:\windows\system32\webio.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API протоколов передачи по Веб 131795770645377395 0x7ffac20d0000 110592 C:\Windows\System32\RMCLIENT.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Resource Manager Client 131795770645377395 0x7ffac23c0000 331776 C:\Windows\System32\OneCoreCommonProxyStub.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation OneCore Common Proxy Stub 131795770645377395 0x7ffac2590000 659456 C:\Windows\System32\FlightSettings.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Параметры цикла тестирования 131795770645377395 0x7ffac2700000 98304 C:\Windows\SYSTEM32\Netapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API DLL 131795770645377395 0x7ffac2750000 106496 C:\Windows\System32\bcd.dll 10.0.14393.1794 (rs1_release.171008-1615) Microsoft Corporation BCD DLL 131795770645377395 0x7ffac2b30000 286720 C:\Windows\System32\usermgrproxy.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation UserMgrProxy 131795770645377395 0x7ffac3cb0000 2772992 C:\Windows\SYSTEM32\iertutil.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служебная программа времени выполнения для Internet Explorer 131795770645377395 0x7ffac4000000 274432 C:\Windows\SYSTEM32\policymanager.dll 10.0.14393.2035 (rs1_release_inmarket.180110-1910) Microsoft Corporation Policy Manager DLL 131795770645377395 0x7ffac4070000 499712 C:\Windows\SYSTEM32\DSREG.DLL 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation AD/AAD User Device Registration 131795770645377395 0x7ffac4450000 86016 C:\Windows\SYSTEM32\usermgrcli.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation UserMgr API DLL 131795770645377395 0x7ffac5fd0000 1056768 c:\windows\system32\WindowsPerformanceRecorderControl.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Windows Performance Recorder Control Library 131795770645377395 0x7ffac60e0000 221184 c:\windows\system32\XmlLite.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft XmlLite Library 131795770645377395 0x7ffac6210000 2007040 c:\windows\system32\diagtrack.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Диагностическое отслеживание Microsoft Windows 131795770645377395 0x7ffac6610000 40960 C:\Windows\System32\rasadhlp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Remote Access AutoDial Helper 131795770645377395 0x7ffac6750000 1380352 c:\windows\system32\webservices.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Среда выполнения веб-служб Windows 131795770645377395 0x7ffac69c0000 839680 c:\windows\system32\WINHTTP.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Службы HTTP Windows 131795770645377395 0x7ffac79c0000 57344 C:\Windows\System32\npmproxy.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Network List Manager Proxy 131795770645377395 0x7ffac7aa0000 401408 C:\Windows\SYSTEM32\wlanapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows WLAN AutoConfig Client Side API DLL 131795770645377395 0x7ffac83d0000 106496 C:\Windows\SYSTEM32\dhcpcsvc.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служба DHCP-клиента 131795770645377395 0x7ffac83f0000 90112 C:\Windows\SYSTEM32\dhcpcsvc6.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиент DHCPv6 131795770645377395 0x7ffac8540000 286720 C:\Windows\System32\vaultcli.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиентская библиотека хранилища учетных данных 131795770645377395 0x7ffac8810000 45056 C:\Windows\SYSTEM32\WINNSI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Network Store Information RPC interface 131795770645377395 0x7ffac8cf0000 815104 C:\Windows\System32\taskschd.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Task Scheduler COM API 131795770645377395 0x7ffac8dc0000 167936 C:\Windows\System32\dbgcore.DLL 10.0.14321.1024 (debuggers(dbg).160715-1616) Microsoft Windows Core Debugging Helpers 131795770645377395 0x7ffac8df0000 1646592 C:\Windows\system32\dbghelp.dll 10.0.14321.1024 (rs1_release.160715-1616) Microsoft Windows Image Helper 131795770645377395 0x7ffac90b0000 90112 C:\Windows\System32\wkscli.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Workstation Service Client DLL 131795770645377395 0x7ffac92e0000 1269760 C:\Windows\System32\WinTypes.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL основных типов Windows 131795770645377395 0x7ffaca4e0000 77824 C:\Windows\SYSTEM32\wtsapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Remote Desktop Session Host Server SDK APIs 131795770645377395 0x7ffaca610000 143360 C:\Windows\System32\SAMLIB.dll 10.0.14393.82 (rs1_release.160805-1735) Microsoft Corporation SAM Library DLL 131795770645377395 0x7ffacb140000 593920 c:\windows\system32\msvcp110_win.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Microsoft® STL110 C++ Runtime Library 131795770645377395 0x7ffacb1e0000 1163264 C:\Windows\System32\twinapi.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation twinapi.appcore 131795770645377395 0x7ffacb420000 204800 C:\Windows\SYSTEM32\ntmarta.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик Windows NT MARTA 131795770645377395 0x7ffacb6f0000 143360 C:\Windows\SYSTEM32\gpapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиентские функции API групповой политики 131795770645377395 0x7ffacb920000 81920 C:\Windows\SYSTEM32\WLDP.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Политика блокировки Windows 131795770645377395 0x7ffacbaf0000 495616 C:\Windows\system32\schannel.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик безопасности TLS/SSL 131795770645377395 0x7ffacbbb0000 208896 C:\Windows\system32\rsaenh.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Enhanced Cryptographic Provider 131795770645377395 0x7ffacbbf0000 40960 C:\Windows\System32\DPAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Data Protection API 131795770645377395 0x7ffacbd30000 229376 C:\Windows\System32\IPHLPAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API вспомогательного приложения IP 131795770645377395 0x7ffacbd70000 659456 c:\windows\system32\DNSAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Динамическая библиотека API DNS-клиента 131795770645377395 0x7ffacbe20000 53248 C:\Windows\System32\netutils.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API Helpers DLL 131795770645377395 0x7ffacbe40000 126976 c:\windows\system32\USERENV.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Userenv 131795770645377395 0x7ffacbfb0000 376832 C:\Windows\system32\mswsock.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширение поставщика службы API Microsoft Windows Sockets 2.0 131795770645377395 0x7ffacc150000 94208 C:\Windows\SYSTEM32\cryptsp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Cryptographic Service Provider API 131795770645377395 0x7ffacc170000 45056 C:\Windows\System32\CRYPTBASE.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base cryptographic API DLL 131795770645377395 0x7ffacc1f0000 241664 C:\Windows\SYSTEM32\NTASN1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft ASN.1 API 131795770645377395 0x7ffacc230000 155648 C:\Windows\SYSTEM32\ncrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Маршрутизатор Windows NCrypt 131795770645377395 0x7ffacc350000 180224 C:\Windows\SYSTEM32\SspiCli.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Security Support Provider Interface 131795770645377395 0x7ffacc5c0000 352256 C:\Windows\SYSTEM32\WINSTA.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Winstation Library 131795770645377395 0x7ffacc620000 176128 c:\windows\system32\bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795770645377395 0x7ffacc6e0000 61440 C:\Windows\System32\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795770645377395 0x7ffacc6f0000 311296 C:\Windows\System32\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795770645377395 0x7ffacc740000 81920 C:\Windows\System32\profapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Profile Basic API 131795770645377395 0x7ffacc760000 65536 C:\Windows\System32\MSASN1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ASN.1 Runtime APIs 131795770645377395 0x7ffacc8f0000 1003520 C:\Windows\System32\ucrtbase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645377395 0x7ffacc9f0000 434176 C:\Windows\System32\bcryptPrimitives.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Cryptographic Primitives Library 131795770645377395 0x7ffacca60000 122880 C:\Windows\System32\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795770645377395 0x7ffacca80000 348160 C:\Windows\System32\WINTRUST.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation Microsoft Trust Verification APIs 131795770645377395 0x7ffaccae0000 692224 C:\Windows\System32\shcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795770645377395 0x7ffaccb90000 7180288 C:\Windows\System32\windows.storage.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API хранения Microsoft WinRT 131795770645377395 0x7ffacd270000 2215936 C:\Windows\System32\KERNELBASE.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645377395 0x7ffacd490000 1871872 C:\Windows\System32\CRYPT32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API32 криптографии 131795770645377395 0x7ffacd710000 638976 C:\Windows\System32\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645377395 0x7ffacd7b0000 270336 C:\Windows\System32\cfgmgr32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Configuration Manager DLL 131795770645377395 0x7ffacd810000 22056960 C:\Windows\System32\SHELL32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Общая библиотека оболочки Windows 131795770645377395 0x7ffaced20000 782336 C:\Windows\System32\OLEAUT32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795770645377395 0x7ffacede0000 450560 C:\Windows\System32\coml2.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft COM for Windows 131795770645377395 0x7ffacee50000 1183744 C:\Windows\System32\RPCRT4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795770645377395 0x7ffacef80000 32768 C:\Windows\System32\NSI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation NSI User-mode interface DLL 131795770645377395 0x7ffacef90000 647168 C:\Windows\System32\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795770645377395 0x7ffacf030000 651264 C:\Windows\System32\clbcatq.dll 2001.12.10941.16384 (rs1_release.160715-1616) Microsoft Corporation COM+ Configuration Catalog 131795770645377395 0x7ffacf0d0000 704512 C:\Windows\System32\KERNEL32.DLL 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645377395 0x7ffacf340000 4362240 C:\Windows\System32\SETUPAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Setup API 131795770645377395 0x7ffacf770000 212992 C:\Windows\System32\GDI32.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation GDI Client DLL 131795770645377395 0x7ffacf820000 434176 C:\Windows\System32\WS2_32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation 32-разрядная библиотека Windows Socket 2.0 131795770645377395 0x7ffacf8c0000 1462272 C:\Windows\System32\user32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795770645377395 0x7ffacfb30000 2916352 C:\Windows\System32\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795770645377395 0x7ffacfe20000 663552 C:\Windows\System32\advapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795770645377395 0x7ffad0070000 1277952 C:\Windows\System32\OLE32.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft OLE для Windows 131795770645377395 0x7ffad01b0000 335872 C:\Windows\System32\SHLWAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека небольших программ оболочки 131795770645377395 0x7ffad0210000 364544 C:\Windows\System32\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795770645377395 0x7ffad0270000 1908736 C:\Windows\SYSTEM32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 32 1636 580 4 00000000:000003e7 131765776343009549 0 0 1 Обязательная метка\Обязательный уровень системы NT AUTHORITY\СИСТЕМА svchost.exe C:\Windows\system32\svchost.exe C:\Windows\system32\svchost.exe -k appmodel Microsoft Corporation 10.0.14393.0 (rs1_release.160715-1616) Хост-процесс для служб Windows 131795770645377489 0x7ff718c20000 57344 C:\Windows\system32\svchost.exe 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Хост-процесс для служб Windows 131795770645377489 0x7ffac0bf0000 3559424 C:\Windows\System32\ActXPrxy.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation ActiveX Interface Marshaling Library 131795770645377489 0x7ffac34e0000 1843200 c:\windows\system32\urlmon.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширения OLE32 для Win32 131795770645377489 0x7ffac3840000 3088384 c:\windows\system32\ESENT.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширяемая подсистема хранения данных ESE для Microsoft(R) Windows(R) 131795770645377489 0x7ffac3c10000 593920 c:\windows\system32\tileobjserver.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Сервер моделей данных плиток 131795770645377489 0x7ffac3cb0000 2772992 c:\windows\system32\iertutil.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служебная программа времени выполнения для Internet Explorer 131795770645377489 0x7ffac42a0000 659456 c:\windows\system32\StateRepository.Core.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation StateRepository Core 131795770645377489 0x7ffac46d0000 4161536 c:\windows\system32\windows.staterepository.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Сервер Windows StateRepository API Server 131795770645377489 0x7ffac6ac0000 835584 C:\Windows\System32\Windows.UI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Runtime UI Foundation DLL 131795770645377489 0x7ffac7580000 1077248 C:\Windows\System32\MrmCoreR.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Windows MRM 131795770645377489 0x7ffaca4e0000 77824 C:\Windows\SYSTEM32\wtsapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Remote Desktop Session Host Server SDK APIs 131795770645377489 0x7ffaca570000 421888 C:\Windows\System32\Bcp47Langs.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation BCP47 Language Classes 131795770645377489 0x7ffacb140000 593920 c:\windows\system32\msvcp110_win.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Microsoft® STL110 C++ Runtime Library 131795770645377489 0x7ffacb920000 81920 C:\Windows\SYSTEM32\WLDP.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Политика блокировки Windows 131795770645377489 0x7ffacbe40000 126976 C:\Windows\system32\USERENV.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Userenv 131795770645377489 0x7ffacc170000 45056 C:\Windows\system32\CRYPTBASE.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base cryptographic API DLL 131795770645377489 0x7ffacc350000 180224 C:\Windows\SYSTEM32\SspiCli.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Security Support Provider Interface 131795770645377489 0x7ffacc5c0000 352256 C:\Windows\SYSTEM32\WINSTA.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Winstation Library 131795770645377489 0x7ffacc620000 176128 C:\Windows\system32\Bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795770645377489 0x7ffacc6e0000 61440 C:\Windows\System32\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795770645377489 0x7ffacc6f0000 311296 C:\Windows\System32\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795770645377489 0x7ffacc740000 81920 C:\Windows\System32\profapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Profile Basic API 131795770645377489 0x7ffacc760000 65536 C:\Windows\System32\MSASN1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ASN.1 Runtime APIs 131795770645377489 0x7ffacc8f0000 1003520 C:\Windows\System32\ucrtbase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645377489 0x7ffacc9f0000 434176 C:\Windows\System32\bcryptPrimitives.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Cryptographic Primitives Library 131795770645377489 0x7ffacca60000 122880 C:\Windows\System32\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795770645377489 0x7ffacca80000 348160 C:\Windows\System32\WINTRUST.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation Microsoft Trust Verification APIs 131795770645377489 0x7ffaccae0000 692224 C:\Windows\System32\shcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795770645377489 0x7ffaccb90000 7180288 C:\Windows\System32\windows.storage.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API хранения Microsoft WinRT 131795770645377489 0x7ffacd270000 2215936 C:\Windows\System32\KERNELBASE.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645377489 0x7ffacd490000 1871872 C:\Windows\System32\CRYPT32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API32 криптографии 131795770645377489 0x7ffacd710000 638976 C:\Windows\System32\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645377489 0x7ffaced20000 782336 C:\Windows\System32\OLEAUT32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795770645377489 0x7ffacee50000 1183744 C:\Windows\System32\RPCRT4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795770645377489 0x7ffacef90000 647168 C:\Windows\System32\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795770645377489 0x7ffacf030000 651264 C:\Windows\System32\clbcatq.dll 2001.12.10941.16384 (rs1_release.160715-1616) Microsoft Corporation COM+ Configuration Catalog 131795770645377489 0x7ffacf0d0000 704512 C:\Windows\System32\KERNEL32.DLL 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645377489 0x7ffacf770000 212992 C:\Windows\System32\GDI32.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation GDI Client DLL 131795770645377489 0x7ffacf8c0000 1462272 C:\Windows\System32\user32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795770645377489 0x7ffacfb30000 2916352 C:\Windows\System32\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795770645377489 0x7ffacfe20000 663552 C:\Windows\System32\advapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795770645377489 0x7ffad01b0000 335872 C:\Windows\System32\shlwapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека небольших программ оболочки 131795770645377489 0x7ffad0210000 364544 C:\Windows\System32\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795770645377489 0x7ffad0270000 1908736 C:\Windows\SYSTEM32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 33 1744 4 9 00000000:000003e7 131765776348255325 0 0 1 Обязательная метка\Обязательный уровень системы NT AUTHORITY\СИСТЕМА MemCompression MemCompression 34 2100 580 4 00000000:000003e4 131765776438403561 0 0 1 Обязательная метка\Обязательный уровень системы NT AUTHORITY\NETWORK SERVICE svchost.exe C:\Windows\system32\svchost.exe C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted Microsoft Corporation 10.0.14393.0 (rs1_release.160715-1616) Хост-процесс для служб Windows 131795770645377758 0x7ff718c20000 57344 C:\Windows\system32\svchost.exe 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Хост-процесс для служб Windows 131795770645377758 0x7ffabff90000 409600 c:\windows\system32\ipsecsvc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows IPsec SPD Server DLL 131795770645377758 0x7ffac1e00000 114688 c:\windows\system32\FwRemoteSvr.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Firewall Remote APIs Server 131795770645377758 0x7ffac3f60000 225280 c:\windows\system32\FWPolicyIOMgr.dll 10.0.14393.2189 (rs1_release.180329-1711) Microsoft Corporation FwPolicyIoMgr DLL 131795770645377758 0x7ffac83d0000 106496 C:\Windows\SYSTEM32\dhcpcsvc.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служба DHCP-клиента 131795770645377758 0x7ffac83f0000 90112 C:\Windows\SYSTEM32\dhcpcsvc6.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиент DHCPv6 131795770645377758 0x7ffac8420000 434176 c:\windows\system32\fwpuclnt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API пользовательского режима FWP/IPsec 131795770645377758 0x7ffacb360000 176128 c:\windows\system32\fwbase.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Firewall Base DLL 131795770645377758 0x7ffacb460000 548864 c:\windows\system32\FirewallAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API брандмауэра Windows 131795770645377758 0x7ffacb920000 81920 C:\Windows\SYSTEM32\WLDP.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Политика блокировки Windows 131795770645377758 0x7ffacb960000 303104 c:\windows\system32\AUTHZ.dll 10.0.14393.1737 (rs1_release_inmarket.170914-1249) Microsoft Corporation Authorization Framework 131795770645377758 0x7ffacbd30000 229376 c:\windows\system32\IPHLPAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API вспомогательного приложения IP 131795770645377758 0x7ffacbfb0000 376832 C:\Windows\system32\mswsock.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширение поставщика службы API Microsoft Windows Sockets 2.0 131795770645377758 0x7ffacc350000 180224 C:\Windows\system32\sspicli.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Security Support Provider Interface 131795770645377758 0x7ffacc620000 176128 c:\windows\system32\bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795770645377758 0x7ffacc6e0000 61440 C:\Windows\System32\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795770645377758 0x7ffacc760000 65536 C:\Windows\System32\MSASN1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ASN.1 Runtime APIs 131795770645377758 0x7ffacc8f0000 1003520 C:\Windows\System32\ucrtbase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645377758 0x7ffacc9f0000 434176 C:\Windows\System32\bcryptPrimitives.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Cryptographic Primitives Library 131795770645377758 0x7ffacca80000 348160 C:\Windows\System32\WINTRUST.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation Microsoft Trust Verification APIs 131795770645377758 0x7ffacd270000 2215936 C:\Windows\System32\KERNELBASE.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645377758 0x7ffacd490000 1871872 C:\Windows\System32\CRYPT32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API32 криптографии 131795770645377758 0x7ffacd710000 638976 C:\Windows\System32\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645377758 0x7ffaced20000 782336 C:\Windows\System32\OLEAUT32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795770645377758 0x7ffacee50000 1183744 C:\Windows\System32\RPCRT4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795770645377758 0x7ffacef80000 32768 C:\Windows\System32\NSI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation NSI User-mode interface DLL 131795770645377758 0x7ffacef90000 647168 C:\Windows\System32\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795770645377758 0x7ffacf030000 651264 C:\Windows\System32\clbcatq.dll 2001.12.10941.16384 (rs1_release.160715-1616) Microsoft Corporation COM+ Configuration Catalog 131795770645377758 0x7ffacf0d0000 704512 C:\Windows\System32\KERNEL32.DLL 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645377758 0x7ffacf820000 434176 C:\Windows\System32\WS2_32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation 32-разрядная библиотека Windows Socket 2.0 131795770645377758 0x7ffacfb30000 2916352 C:\Windows\System32\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795770645377758 0x7ffad0210000 364544 C:\Windows\System32\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795770645377758 0x7ffad0270000 1908736 C:\Windows\SYSTEM32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 35 2648 348 24 00000000:0031f1da 131765777555980720 0 0 1 Обязательная метка\Средний обязательный уровень WIN-0UOTFKKVN1S\User sihost.exe C:\Windows\system32\sihost.exe sihost.exe Microsoft Corporation 10.0.14393.0 (rs1_release.160715-1616) Shell Infrastructure Host 131795770645377872 0x7ff7bbae0000 94208 C:\Windows\system32\sihost.exe 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Shell Infrastructure Host 131795770645377872 0x7ffab9490000 860160 C:\Windows\System32\ntshrui.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширения оболочки, обеспечивающие общий доступ 131795770645377872 0x7ffabae40000 110592 C:\Windows\SYSTEM32\capauthz.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API авторизации возможностей 131795770645377872 0x7ffabaf70000 270336 C:\Windows\System32\edputil.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служебная программа EDP 131795770645377872 0x7ffabb910000 344064 C:\Windows\System32\container.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Windows Containers 131795770645377872 0x7ffabb970000 487424 C:\Windows\System32\daxexec.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation daxexec 131795770645377872 0x7ffabba80000 995328 C:\Windows\System32\twinui.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation TWINUI.APPCORE 131795770645377872 0x7ffabbb80000 61440 C:\Windows\System32\dsclient.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Data Sharing Service Client DLL 131795770645377872 0x7ffabbb90000 581632 C:\Windows\System32\Windows.System.Launcher.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows.System.Launcher 131795770645377872 0x7ffabbd00000 36864 C:\Windows\system32\WpPortingLibrary.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation <d> DLL 131795770645377872 0x7ffabc0b0000 65536 C:\Windows\System32\LINKINFO.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Volume Tracking 131795770645377872 0x7ffabc450000 741376 C:\Windows\system32\ShareHost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ShareHost 131795770645377872 0x7ffabc510000 90112 C:\Windows\system32\execmodelproxy.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ExecModelProxy 131795770645377872 0x7ffabc570000 94208 C:\Windows\SYSTEM32\licensemanagerapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation "LicenseManagerApi.DYNLINK" 131795770645377872 0x7ffabc6b0000 1114112 C:\Windows\System32\AppContracts.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Сервер API Windows AppContracts 131795770645377872 0x7ffabc800000 266240 C:\Windows\System32\windowmanagement.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Window Management 131795770645377872 0x7ffabc850000 159744 C:\Windows\System32\AppointmentActivation.dll 10.0.14393.2189 (rs1_release.180329-1711) Microsoft Corporation DLL for AppointmentActivation 131795770645377872 0x7ffabc880000 73728 C:\Windows\system32\cscapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Offline Files Win32 API 131795770645377872 0x7ffabc8b0000 61440 C:\Windows\System32\NotificationPlatformComponent.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation NotificationPlatformComponent 131795770645377872 0x7ffabc920000 270336 C:\Windows\system32\ExecModelClient.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation ExecModelClient 131795770645377872 0x7ffabc9a0000 413696 C:\Windows\system32\activationmanager.dll 10.0.14393.479 (rs1_release.161110-2025) Microsoft Corporation Activation Manager 131795770645377872 0x7ffabca10000 221184 C:\Windows\System32\ClipboardServer.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Сервер API Modern Clipboard 131795770645377872 0x7ffabcde0000 983040 C:\Windows\System32\modernexecserver.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Сервер Modern Execution 131795770645377872 0x7ffabcef0000 102400 C:\Windows\System32\Windows.Shell.ServiceHostBuilder.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows.Shell.ServiceHostBuilder 131795770645377872 0x7ffabcf10000 122880 C:\Windows\system32\desktopshellext.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DesktopHost Extensions 131795770645377872 0x7ffabff10000 155648 C:\Windows\System32\srvcli.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Server Service Client DLL 131795770645377872 0x7ffac0bf0000 3559424 C:\Windows\System32\ActXPrxy.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation ActiveX Interface Marshaling Library 131795770645377872 0x7ffac20d0000 110592 C:\Windows\System32\RMCLIENT.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Resource Manager Client 131795770645377872 0x7ffac23c0000 331776 C:\Windows\System32\OneCoreCommonProxyStub.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation OneCore Common Proxy Stub 131795770645377872 0x7ffac2b30000 286720 C:\Windows\System32\usermgrproxy.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation UserMgrProxy 131795770645377872 0x7ffac3270000 40960 C:\Windows\System32\FLTLIB.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека фильтров 131795770645377872 0x7ffac34e0000 1843200 C:\Windows\System32\urlmon.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширения OLE32 для Win32 131795770645377872 0x7ffac3cb0000 2772992 C:\Windows\System32\iertutil.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служебная программа времени выполнения для Internet Explorer 131795770645377872 0x7ffac42a0000 659456 C:\Windows\System32\StateRepository.Core.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation StateRepository Core 131795770645377872 0x7ffac4450000 86016 C:\Windows\SYSTEM32\usermgrcli.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation UserMgr API DLL 131795770645377872 0x7ffac46d0000 4161536 C:\Windows\System32\Windows.StateRepository.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Сервер Windows StateRepository API Server 131795770645377872 0x7ffac5500000 438272 C:\Windows\system32\PhotoMetadataHandler.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Photo Metadata Handler 131795770645377872 0x7ffac7720000 1601536 C:\Windows\System32\OneCoreUAPCommonProxyStub.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation OneCoreUAP Common Proxy Stub 131795770645377872 0x7ffac92e0000 1269760 C:\Windows\SYSTEM32\wintypes.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL основных типов Windows 131795770645377872 0x7ffac9500000 2682880 C:\Windows\system32\CoreUIComponents.dll 131795770645377872 0x7ffac9f50000 1736704 C:\Windows\system32\WindowsCodecs.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Microsoft Windows Codecs Library 131795770645377872 0x7ffaca340000 1593344 C:\Windows\System32\PROPSYS.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Система страниц свойств (Майкрософт) 131795770645377872 0x7ffaca4e0000 77824 C:\Windows\SYSTEM32\wtsapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Remote Desktop Session Host Server SDK APIs 131795770645377872 0x7ffaca5e0000 155648 C:\Windows\System32\dwmapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Интерфейс API диспетчера окон рабочего стола (Майкрософт) 131795770645377872 0x7ffaca640000 770048 C:\Windows\system32\CoreMessaging.dll 10.0.14393.0 Microsoft Corporation Microsoft CoreMessaging Dll 131795770645377872 0x7ffacadf0000 499712 C:\Windows\System32\apphelp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиентская библиотека совместимости приложений 131795770645377872 0x7ffacaf00000 610304 C:\Windows\system32\uxtheme.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека тем UxTheme (Microsoft) 131795770645377872 0x7ffacb140000 593920 C:\Windows\System32\msvcp110_win.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Microsoft® STL110 C++ Runtime Library 131795770645377872 0x7ffacb1e0000 1163264 C:\Windows\SYSTEM32\twinapi.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation twinapi.appcore 131795770645377872 0x7ffacb300000 364544 C:\Windows\System32\VEEventDispatcher.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Visual Element Event dispatcher 131795770645377872 0x7ffacb3d0000 110592 C:\Windows\System32\ResourcePolicyClient.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Resource Policy Client 131795770645377872 0x7ffacb420000 204800 C:\Windows\SYSTEM32\ntmarta.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик Windows NT MARTA 131795770645377872 0x7ffacbd30000 229376 C:\Windows\System32\IPHLPAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API вспомогательного приложения IP 131795770645377872 0x7ffacc350000 180224 C:\Windows\System32\SspiCli.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Security Support Provider Interface 131795770645377872 0x7ffacc5c0000 352256 C:\Windows\SYSTEM32\WINSTA.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Winstation Library 131795770645377872 0x7ffacc620000 176128 C:\Windows\System32\bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795770645377872 0x7ffacc6e0000 61440 C:\Windows\System32\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795770645377872 0x7ffacc6f0000 311296 C:\Windows\System32\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795770645377872 0x7ffacc740000 81920 C:\Windows\System32\profapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Profile Basic API 131795770645377872 0x7ffacc8f0000 1003520 C:\Windows\System32\ucrtbase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645377872 0x7ffacc9f0000 434176 C:\Windows\System32\bcryptPrimitives.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Cryptographic Primitives Library 131795770645377872 0x7ffacca60000 122880 C:\Windows\System32\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795770645377872 0x7ffaccae0000 692224 C:\Windows\System32\shcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795770645377872 0x7ffaccb90000 7180288 C:\Windows\System32\Windows.Storage.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API хранения Microsoft WinRT 131795770645377872 0x7ffacd270000 2215936 C:\Windows\System32\KERNELBASE.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645377872 0x7ffacd710000 638976 C:\Windows\System32\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645377872 0x7ffacd7b0000 270336 C:\Windows\System32\cfgmgr32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Configuration Manager DLL 131795770645377872 0x7ffacd810000 22056960 C:\Windows\System32\shell32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Общая библиотека оболочки Windows 131795770645377872 0x7ffaced20000 782336 C:\Windows\System32\OLEAUT32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795770645377872 0x7ffacee50000 1183744 C:\Windows\System32\RPCRT4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795770645377872 0x7ffacef90000 647168 C:\Windows\System32\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795770645377872 0x7ffacf030000 651264 C:\Windows\System32\clbcatq.dll 2001.12.10941.16384 (rs1_release.160715-1616) Microsoft Corporation COM+ Configuration Catalog 131795770645377872 0x7ffacf0d0000 704512 C:\Windows\System32\KERNEL32.DLL 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645377872 0x7ffacf770000 212992 C:\Windows\System32\GDI32.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation GDI Client DLL 131795770645377872 0x7ffacf890000 188416 C:\Windows\System32\IMM32.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Multi-User Windows IMM32 API Client DLL 131795770645377872 0x7ffacf8c0000 1462272 C:\Windows\System32\user32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795770645377872 0x7ffacfb30000 2916352 C:\Windows\System32\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795770645377872 0x7ffacfe20000 663552 C:\Windows\System32\advapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795770645377872 0x7ffad0070000 1277952 C:\Windows\System32\ole32.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft OLE для Windows 131795770645377872 0x7ffad01b0000 335872 C:\Windows\System32\shlwapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека небольших программ оболочки 131795770645377872 0x7ffad0210000 364544 C:\Windows\System32\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795770645377872 0x7ffad0270000 1908736 C:\Windows\SYSTEM32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 36 840 580 4 00000000:0031f1da 131765777563791648 0 0 1 Обязательная метка\Средний обязательный уровень WIN-0UOTFKKVN1S\User svchost.exe C:\Windows\system32\svchost.exe C:\Windows\system32\svchost.exe -k UnistackSvcGroup Microsoft Corporation 10.0.14393.0 (rs1_release.160715-1616) Хост-процесс для служб Windows 131795770645377971 0x7ff718c20000 57344 C:\Windows\system32\svchost.exe 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Хост-процесс для служб Windows 131795770645377971 0x7ffaaf6a0000 331776 C:\Windows\System32\PhoneUtil.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Phone utilities 131795770645377971 0x7ffaaf700000 1421312 C:\Windows\System32\PIMSTORE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation POOM 131795770645377971 0x7ffab05d0000 339968 C:\Windows\System32\AccountAccessor.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Sync data model to access accounts 131795770645377971 0x7ffab0630000 618496 C:\Windows\System32\SyncController.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SyncController for managing sync of mail, contacts, calendar 131795770645377971 0x7ffab93b0000 897024 C:\Windows\System32\TokenBroker.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Token Broker 131795770645377971 0x7ffabaab0000 94208 C:\Windows\SYSTEM32\profext.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation profext 131795770645377971 0x7ffabbb80000 61440 C:\Windows\System32\dsclient.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Data Sharing Service Client DLL 131795770645377971 0x7ffabbd10000 65536 C:\Windows\System32\TOKENBINDING.dll 10.0.14393.1593 (rs1_release.170731-1934) Microsoft Corporation Token Binding Protocol 131795770645377971 0x7ffabca50000 819200 C:\Windows\System32\Windows.Security.Authentication.Web.Core.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Token Broker WinRT API 131795770645377971 0x7ffabcb20000 266240 C:\Windows\System32\CEMAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation CEMAPI 131795770645377971 0x7ffabcb70000 262144 C:\Windows\System32\cdprt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft (R) CDP Client WinRT API 131795770645377971 0x7ffabcd80000 360448 c:\windows\system32\cdpusersvc.dll 10.0.14393.479 (rs1_release.161110-2025) Microsoft Corporation Microsoft (R) CDP User Components 131795770645377971 0x7ffabd630000 200704 C:\Windows\System32\MCCSEngineShared.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Utilies shared among OneSync engines 131795770645377971 0x7ffabdde0000 462848 c:\windows\system32\SYNCUTIL.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Sync utilities for mail, contacts, calendar 131795770645377971 0x7ffabe850000 155648 C:\Windows\System32\IDStore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Identity Store 131795770645377971 0x7ffabed20000 389120 c:\windows\system32\aphostservice.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Accounts Host Service 131795770645377971 0x7ffabfbe0000 1011712 C:\Windows\System32\Windows.Security.Authentication.OnlineId.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation Windows Runtime OnlineId Authentication DLL 131795770645377971 0x7ffac05f0000 94208 C:\Windows\System32\wwapi.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation WWAN API 131795770645377971 0x7ffac0910000 724992 C:\Windows\System32\Windows.Networking.Connectivity.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Networking Connectivity Runtime DLL 131795770645377971 0x7ffac09d0000 884736 C:\Windows\System32\wpnapps.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Приложения для push-уведомлений Windows 131795770645377971 0x7ffac0bf0000 3559424 C:\Windows\System32\ActXPrxy.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation ActiveX Interface Marshaling Library 131795770645377971 0x7ffac20d0000 110592 C:\Windows\System32\RMCLIENT.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Resource Manager Client 131795770645377971 0x7ffac23c0000 331776 C:\Windows\System32\OneCoreCommonProxyStub.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation OneCore Common Proxy Stub 131795770645377971 0x7ffac2590000 659456 C:\Windows\System32\FlightSettings.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Параметры цикла тестирования 131795770645377971 0x7ffac2750000 106496 C:\Windows\System32\bcd.dll 10.0.14393.1794 (rs1_release.171008-1615) Microsoft Corporation BCD DLL 131795770645377971 0x7ffac2b30000 286720 C:\Windows\System32\usermgrproxy.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation UserMgrProxy 131795770645377971 0x7ffac2cb0000 778240 c:\windows\system32\winsqlite3.dll 3.12.2 SQLite Development Team SQLite is a software library that implements a self-contained, serverless, zero-configuration, transactional SQL database engine. 131795770645377971 0x7ffac2d80000 5140480 c:\windows\system32\cdp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API клиента Microsoft (R) CDP 131795770645377971 0x7ffac3cb0000 2772992 C:\Windows\System32\iertutil.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служебная программа времени выполнения для Internet Explorer 131795770645377971 0x7ffac4000000 274432 C:\Windows\SYSTEM32\policymanager.dll 10.0.14393.2035 (rs1_release_inmarket.180110-1910) Microsoft Corporation Policy Manager DLL 131795770645377971 0x7ffac4100000 151552 c:\windows\system32\NetworkHelper.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Network utilities for mail, contacts, calendar 131795770645377971 0x7ffac4450000 86016 C:\Windows\SYSTEM32\usermgrcli.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation UserMgr API DLL 131795770645377971 0x7ffac60e0000 221184 C:\Windows\System32\XmlLite.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft XmlLite Library 131795770645377971 0x7ffac66a0000 86016 C:\Windows\SYSTEM32\ondemandconnroutehelper.dll 10.0.14393.351 (rs1_release_inmarket.161014-1755) Microsoft Corporation On Demand Connctiond Route Helper 131795770645377971 0x7ffac69c0000 839680 c:\windows\system32\WINHTTP.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Службы HTTP Windows 131795770645377971 0x7ffac79c0000 57344 C:\Windows\System32\npmproxy.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Network List Manager Proxy 131795770645377971 0x7ffac7aa0000 401408 C:\Windows\SYSTEM32\wlanapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows WLAN AutoConfig Client Side API DLL 131795770645377971 0x7ffac83d0000 106496 C:\Windows\SYSTEM32\dhcpcsvc.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служба DHCP-клиента 131795770645377971 0x7ffac83f0000 90112 C:\Windows\SYSTEM32\dhcpcsvc6.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиент DHCPv6 131795770645377971 0x7ffac8540000 286720 C:\Windows\System32\vaultcli.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиентская библиотека хранилища учетных данных 131795770645377971 0x7ffac92e0000 1269760 C:\Windows\SYSTEM32\wintypes.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL основных типов Windows 131795770645377971 0x7ffac97b0000 81920 c:\windows\system32\InprocLogger.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation In-proc Private Event Trace Logger 131795770645377971 0x7ffaca1d0000 69632 C:\Windows\System32\UserDataTypeHelperUtil.dll 10.0.14393.2189 (rs1_release.180329-1711) Microsoft Corporation Type Utilities for data access 131795770645377971 0x7ffaca270000 65536 C:\Windows\System32\UserDataLanguageUtil.dll 10.0.14393.2189 (rs1_release.180329-1711) Microsoft Corporation Language-related helper functions for user data 131795770645377971 0x7ffaca4e0000 77824 C:\Windows\SYSTEM32\wtsapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Remote Desktop Session Host Server SDK APIs 131795770645377971 0x7ffaca520000 90112 C:\Windows\System32\APHostClient.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Accounts Host Service RPC Client 131795770645377971 0x7ffaca610000 143360 C:\Windows\System32\SAMLIB.dll 10.0.14393.82 (rs1_release.160805-1735) Microsoft Corporation SAM Library DLL 131795770645377971 0x7ffacabf0000 45056 c:\windows\system32\MCCSPal.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Platform abstraction layer dll for MCCS 131795770645377971 0x7ffacac20000 86016 c:\windows\system32\UserDataPlatformHelperUtil.dll 10.0.14393.2189 (rs1_release.180329-1711) Microsoft Corporation Platform Utilities for data access 131795770645377971 0x7ffacb140000 593920 c:\windows\system32\msvcp110_win.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Microsoft® STL110 C++ Runtime Library 131795770645377971 0x7ffacb1e0000 1163264 C:\Windows\System32\twinapi.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation twinapi.appcore 131795770645377971 0x7ffacb300000 364544 c:\windows\system32\VEEventDispatcher.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Visual Element Event dispatcher 131795770645377971 0x7ffacb420000 204800 C:\Windows\SYSTEM32\ntmarta.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик Windows NT MARTA 131795770645377971 0x7ffacb920000 81920 C:\Windows\SYSTEM32\WLDP.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Политика блокировки Windows 131795770645377971 0x7ffacbbf0000 40960 C:\Windows\System32\DPAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Data Protection API 131795770645377971 0x7ffacbd30000 229376 c:\windows\system32\IPHLPAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API вспомогательного приложения IP 131795770645377971 0x7ffacbe40000 126976 C:\Windows\System32\USERENV.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Userenv 131795770645377971 0x7ffacbf30000 49152 C:\Windows\system32\NtlmShared.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation NTLM Shared Functionality 131795770645377971 0x7ffacbf40000 421888 C:\Windows\system32\msv1_0.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Authentication Package v1.0 131795770645377971 0x7ffacc010000 86016 C:\Windows\system32\cryptdll.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Cryptography Manager 131795770645377971 0x7ffacc150000 94208 C:\Windows\SYSTEM32\cryptsp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Cryptographic Service Provider API 131795770645377971 0x7ffacc170000 45056 c:\windows\system32\CRYPTBASE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base cryptographic API DLL 131795770645377971 0x7ffacc1f0000 241664 c:\windows\system32\NTASN1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft ASN.1 API 131795770645377971 0x7ffacc230000 155648 c:\windows\system32\ncrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Маршрутизатор Windows NCrypt 131795770645377971 0x7ffacc350000 180224 c:\windows\system32\SspiCli.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Security Support Provider Interface 131795770645377971 0x7ffacc620000 176128 c:\windows\system32\bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795770645377971 0x7ffacc6e0000 61440 C:\Windows\System32\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795770645377971 0x7ffacc6f0000 311296 C:\Windows\System32\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795770645377971 0x7ffacc740000 81920 C:\Windows\System32\profapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Profile Basic API 131795770645377971 0x7ffacc760000 65536 C:\Windows\System32\MSASN1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ASN.1 Runtime APIs 131795770645377971 0x7ffacc8f0000 1003520 C:\Windows\System32\ucrtbase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645377971 0x7ffacc9f0000 434176 C:\Windows\System32\bcryptPrimitives.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Cryptographic Primitives Library 131795770645377971 0x7ffacca60000 122880 C:\Windows\System32\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795770645377971 0x7ffacca80000 348160 C:\Windows\System32\WINTRUST.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation Microsoft Trust Verification APIs 131795770645377971 0x7ffaccae0000 692224 C:\Windows\System32\shcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795770645377971 0x7ffaccb90000 7180288 C:\Windows\System32\windows.storage.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API хранения Microsoft WinRT 131795770645377971 0x7ffacd270000 2215936 C:\Windows\System32\KERNELBASE.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645377971 0x7ffacd490000 1871872 C:\Windows\System32\CRYPT32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API32 криптографии 131795770645377971 0x7ffacd710000 638976 C:\Windows\System32\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645377971 0x7ffacd7b0000 270336 C:\Windows\System32\cfgmgr32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Configuration Manager DLL 131795770645377971 0x7ffaced20000 782336 C:\Windows\System32\OLEAUT32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795770645377971 0x7ffacee50000 1183744 C:\Windows\System32\RPCRT4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795770645377971 0x7ffacef80000 32768 C:\Windows\System32\NSI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation NSI User-mode interface DLL 131795770645377971 0x7ffacef90000 647168 C:\Windows\System32\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795770645377971 0x7ffacf030000 651264 C:\Windows\System32\clbcatq.dll 2001.12.10941.16384 (rs1_release.160715-1616) Microsoft Corporation COM+ Configuration Catalog 131795770645377971 0x7ffacf0d0000 704512 C:\Windows\System32\KERNEL32.DLL 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645377971 0x7ffacf770000 212992 C:\Windows\System32\GDI32.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation GDI Client DLL 131795770645377971 0x7ffacf820000 434176 C:\Windows\System32\WS2_32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation 32-разрядная библиотека Windows Socket 2.0 131795770645377971 0x7ffacf890000 188416 C:\Windows\System32\IMM32.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Multi-User Windows IMM32 API Client DLL 131795770645377971 0x7ffacf8c0000 1462272 C:\Windows\System32\user32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795770645377971 0x7ffacfb30000 2916352 C:\Windows\System32\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795770645377971 0x7ffacfe20000 663552 C:\Windows\System32\advapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795770645377971 0x7ffad01b0000 335872 C:\Windows\System32\shlwapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека небольших программ оболочки 131795770645377971 0x7ffad0210000 364544 C:\Windows\System32\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795770645377971 0x7ffad0270000 1908736 C:\Windows\SYSTEM32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 37 528 348 24 00000000:0031f1da 131765777565618284 0 0 1 Обязательная метка\Средний обязательный уровень WIN-0UOTFKKVN1S\User taskhostw.exe C:\Windows\system32\taskhostw.exe taskhostw.exe {222A245B-E637-4AE9-A93F-A59CA119A75E} Microsoft Corporation 10.0.14393.0 (rs1_release.160715-1616) Хост-процесс для задач Windows 131795770645378085 0x7ff794e10000 102400 C:\Windows\system32\taskhostw.exe 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Хост-процесс для задач Windows 131795770645378085 0x7ffab4af0000 606208 C:\Windows\system32\AUDIOSES.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Сеанс обработки звука 131795770645378085 0x7ffabaab0000 94208 C:\Windows\SYSTEM32\profext.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation profext 131795770645378085 0x7ffabb3c0000 450560 C:\Windows\system32\TextInputFramework.dll 10.0.14393.2189 (rs1_release.180329-1711) Microsoft Corporation "TextInputFramework.DYNLINK" 131795770645378085 0x7ffabb440000 282624 C:\Windows\system32\MTFServer.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation "MTFServer.DYNLINK" 131795770645378085 0x7ffabb510000 2854912 C:\Windows\system32\InputService.dll 10.0.14393.2189 (rs1_release.180329-1711) Microsoft Corporation Microsoft Text InputService Dll 131795770645378085 0x7ffabb8c0000 131072 C:\Windows\system32\InputLocaleManager.dll 10.0.14393.576 (rs1_release_inmarket.161208-2252) Microsoft Corporation "InputLocaleManager.DYNLINK" 131795770645378085 0x7ffabb8f0000 98304 C:\Windows\system32\EditBufferTestHook.dll 10.0.14393.576 (rs1_release_inmarket.161208-2252) Microsoft Corporation "EditBufferTestHook.DYNLINK" 131795770645378085 0x7ffabb9f0000 483328 C:\Windows\system32\MSUTB.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека (DLL) сервера MSUTB 131795770645378085 0x7ffabba70000 53248 C:\Windows\system32\MsCtfMonitor.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation MsCtfMonitor DLL 131795770645378085 0x7ffabbc20000 106496 C:\Windows\System32\PlaySndSrv.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служба PlaySound 131795770645378085 0x7ffabf5d0000 2924544 C:\Windows\system32\wininet.dll 11.00.14393.447 (rs1_release_inmarket.161102-0100) Microsoft Corporation Расширения Интернета для Win32 131795770645378085 0x7ffac37d0000 258048 C:\Windows\system32\wdmaud.drv 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Системный звуковой драйвер Winmm 131795770645378085 0x7ffac3840000 3088384 C:\Windows\system32\ESENT.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширяемая подсистема хранения данных ESE для Microsoft(R) Windows(R) 131795770645378085 0x7ffac3cb0000 2772992 C:\Windows\system32\iertutil.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служебная программа времени выполнения для Internet Explorer 131795770645378085 0x7ffac4000000 274432 C:\Windows\SYSTEM32\policymanager.dll 10.0.14393.2035 (rs1_release_inmarket.180110-1910) Microsoft Corporation Policy Manager DLL 131795770645378085 0x7ffac4140000 114688 C:\Windows\system32\MSACM32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Фильтр диспетчера аудиосжатия Microsoft 131795770645378085 0x7ffac7d10000 32768 C:\Windows\system32\KBDUS.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation United States Keyboard Layout 131795770645378085 0x7ffac8f90000 45056 C:\Windows\system32\AVRT.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Среда выполнения мультимедиа в реальном времени 131795770645378085 0x7ffac92e0000 1269760 C:\Windows\SYSTEM32\wintypes.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL основных типов Windows 131795770645378085 0x7ffac9480000 462848 C:\Windows\System32\MMDevAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation MMDevice API 131795770645378085 0x7ffac9500000 2682880 C:\Windows\system32\CoreUIComponents.dll 131795770645378085 0x7ffac97d0000 40960 C:\Windows\system32\midimap.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft MIDI Mapper 131795770645378085 0x7ffaca180000 53248 C:\Windows\system32\msacm32.drv 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Программа переназначения звуковых устройств 131795770645378085 0x7ffaca340000 1593344 C:\Windows\System32\PROPSYS.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Система страниц свойств (Майкрософт) 131795770645378085 0x7ffaca550000 36864 C:\Windows\system32\ksuser.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User CSA Library 131795770645378085 0x7ffaca5e0000 155648 C:\Windows\system32\dwmapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Интерфейс API диспетчера окон рабочего стола (Майкрософт) 131795770645378085 0x7ffaca640000 770048 C:\Windows\system32\CoreMessaging.dll 10.0.14393.0 Microsoft Corporation Microsoft CoreMessaging Dll 131795770645378085 0x7ffacab10000 61440 C:\Windows\System32\WordBreakers.dll 10.0.14393.2189 (rs1_release.180329-1711) Microsoft Corporation "WordBreakers.DYNLINK" 131795770645378085 0x7ffacab40000 176128 C:\Windows\System32\WINMMBASE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base Multimedia Extension API DLL 131795770645378085 0x7ffacaba0000 143360 C:\Windows\System32\WINMM.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation MCI API DLL 131795770645378085 0x7ffacaf00000 610304 C:\Windows\system32\uxtheme.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека тем UxTheme (Microsoft) 131795770645378085 0x7ffacb140000 593920 C:\Windows\system32\msvcp110_win.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Microsoft® STL110 C++ Runtime Library 131795770645378085 0x7ffacb3f0000 163840 C:\Windows\System32\DEVOBJ.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Device Information Set DLL 131795770645378085 0x7ffacb420000 204800 C:\Windows\SYSTEM32\ntmarta.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик Windows NT MARTA 131795770645378085 0x7ffacbe40000 126976 C:\Windows\SYSTEM32\userenv.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Userenv 131795770645378085 0x7ffacc170000 45056 C:\Windows\system32\CRYPTBASE.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base cryptographic API DLL 131795770645378085 0x7ffacc5c0000 352256 C:\Windows\system32\WINSTA.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Winstation Library 131795770645378085 0x7ffacc6e0000 61440 C:\Windows\System32\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795770645378085 0x7ffacc6f0000 311296 C:\Windows\System32\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795770645378085 0x7ffacc740000 81920 C:\Windows\System32\profapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Profile Basic API 131795770645378085 0x7ffacc8f0000 1003520 C:\Windows\System32\ucrtbase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645378085 0x7ffacc9f0000 434176 C:\Windows\System32\bcryptPrimitives.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Cryptographic Primitives Library 131795770645378085 0x7ffacca60000 122880 C:\Windows\System32\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795770645378085 0x7ffaccae0000 692224 C:\Windows\System32\shcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795770645378085 0x7ffaccb90000 7180288 C:\Windows\System32\windows.storage.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API хранения Microsoft WinRT 131795770645378085 0x7ffacd270000 2215936 C:\Windows\System32\KERNELBASE.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645378085 0x7ffacd710000 638976 C:\Windows\System32\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645378085 0x7ffacd7b0000 270336 C:\Windows\System32\cfgmgr32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Configuration Manager DLL 131795770645378085 0x7ffaced20000 782336 C:\Windows\System32\OLEAUT32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795770645378085 0x7ffacee50000 1183744 C:\Windows\System32\RPCRT4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795770645378085 0x7ffacef90000 647168 C:\Windows\System32\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795770645378085 0x7ffacf030000 651264 C:\Windows\System32\clbcatq.dll 2001.12.10941.16384 (rs1_release.160715-1616) Microsoft Corporation COM+ Configuration Catalog 131795770645378085 0x7ffacf0d0000 704512 C:\Windows\System32\KERNEL32.DLL 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645378085 0x7ffacf1e0000 1417216 C:\Windows\System32\MSCTF.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Серверная библиотека MSCTF 131795770645378085 0x7ffacf770000 212992 C:\Windows\System32\GDI32.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation GDI Client DLL 131795770645378085 0x7ffacf890000 188416 C:\Windows\System32\imm32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Multi-User Windows IMM32 API Client DLL 131795770645378085 0x7ffacf8c0000 1462272 C:\Windows\System32\USER32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795770645378085 0x7ffacfb30000 2916352 C:\Windows\System32\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795770645378085 0x7ffacfe20000 663552 C:\Windows\System32\advapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795770645378085 0x7ffad0070000 1277952 C:\Windows\System32\ole32.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft OLE для Windows 131795770645378085 0x7ffad01b0000 335872 C:\Windows\System32\shlwapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека небольших программ оболочки 131795770645378085 0x7ffad0210000 364544 C:\Windows\System32\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795770645378085 0x7ffad0270000 1908736 C:\Windows\SYSTEM32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 38 3632 664 6 00000000:0031f1da 131765777941176116 0 0 1 Обязательная метка\Средний обязательный уровень WIN-0UOTFKKVN1S\User RuntimeBroker.exe C:\Windows\System32\RuntimeBroker.exe C:\Windows\System32\RuntimeBroker.exe -Embedding Microsoft Corporation 10.0.14393.0 (rs1_release.160715-1616) Runtime Broker 131795770645378207 0x7ff7808b0000 8527872 C:\Windows\system32\ntoskrnl.exe 10.0.14393.2189 (rs1_release.180329-1711) Microsoft Corporation NT Kernel & System 131795770645378207 0x7ff7a45f0000 49152 C:\Windows\System32\RuntimeBroker.exe 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Runtime Broker 131795770645378207 0x7ffaab750000 876544 C:\Windows\System32\Windows.Media.Import.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation Windows Photo Import API (WinRT/COM) 131795770645378207 0x7ffaac6e0000 13156352 C:\Windows\System32\ieframe.dll 11.00.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Браузер 131795770645378207 0x7ffab33d0000 258048 C:\Windows\System32\MLANG.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL многоязыковой поддержки 131795770645378207 0x7ffab4b90000 655360 C:\Windows\System32\StructuredQuery.dll 7.0.14393.2068 (rs1_release.180209-1727) Microsoft Corporation Structured Query 131795770645378207 0x7ffab7780000 2576384 C:\Windows\system32\mssrch.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Встроенный поиск (Майкрософт) 131795770645378207 0x7ffab7a00000 3424256 C:\Windows\system32\TQUERY.DLL 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Запросы Microsoft Tripoli 131795770645378207 0x7ffab7d80000 753664 C:\Windows\System32\RASAPI32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API удаленного доступа 131795770645378207 0x7ffab8190000 9191424 C:\Windows\system32\twinui.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation TWINUI 131795770645378207 0x7ffab92e0000 827392 C:\Windows\system32\Windows.Storage.Search.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows.Storage.Search 131795770645378207 0x7ffab9490000 860160 C:\Windows\System32\ntshrui.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширения оболочки, обеспечивающие общий доступ 131795770645378207 0x7ffab9a40000 299008 C:\Windows\System32\RasMediaManager.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Ras Media Manager DLL 131795770645378207 0x7ffaba950000 188416 C:\Windows\System32\EthernetMediaManager.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Ethernet Media Manager DLL 131795770645378207 0x7ffabaa50000 339968 C:\Windows\System32\NetworkUXBroker.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation NetworkUXBroker DLL 131795770645378207 0x7ffabaab0000 94208 C:\Windows\SYSTEM32\profext.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation profext 131795770645378207 0x7ffabae40000 110592 C:\Windows\SYSTEM32\capauthz.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API авторизации возможностей 131795770645378207 0x7ffabaf70000 270336 C:\Windows\System32\edputil.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служебная программа EDP 131795770645378207 0x7ffabb2b0000 1089536 C:\Windows\system32\SettingSyncCore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Setting Synchronization Core 131795770645378207 0x7ffabba80000 995328 C:\Windows\System32\twinui.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation TWINUI.APPCORE 131795770645378207 0x7ffabc0b0000 65536 C:\Windows\System32\LINKINFO.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Volume Tracking 131795770645378207 0x7ffabc510000 90112 C:\Windows\system32\execmodelproxy.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ExecModelProxy 131795770645378207 0x7ffabc530000 241664 C:\Windows\System32\Windows.Networking.HostName.dll 10.0.14393.953 (rs1_release_inmarket.170303-1614) Microsoft Corporation Windows.Networking.HostName DLL 131795770645378207 0x7ffabc880000 73728 C:\Windows\System32\cscapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Offline Files Win32 API 131795770645378207 0x7ffabcf30000 110592 C:\Windows\System32\MPR.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека маршрутизации для нескольких служб доступа 131795770645378207 0x7ffabdd60000 425984 C:\Windows\System32\AppXDeploymentClient.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL-библиотека клиента развертывания AppX 131795770645378207 0x7ffabe070000 610304 C:\Windows\System32\efswrt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Storage Protection Windows Runtime DLL 131795770645378207 0x7ffabe4d0000 286720 C:\Windows\System32\MSWB7.dll 10.0.14393.1737 (rs1_release_inmarket.170914-1249) Microsoft Corporation MSWB7 DLL 131795770645378207 0x7ffabe880000 94208 C:\Windows\System32\FeClient.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT File Encryption Client Interfaces 131795770645378207 0x7ffabe8c0000 454656 C:\Windows\system32\windows.cortana.Desktop.dll 10.0.14393.953 (rs1_release_inmarket.170303-1614) Microsoft Corporation Windows.Cortana.Desktop 131795770645378207 0x7ffabf330000 2457600 C:\Windows\System32\msxml6.dll 6.30.14393.2156 Microsoft Corporation MSXML 6.0 131795770645378207 0x7ffabf5d0000 2924544 C:\Windows\System32\WININET.dll 11.00.14393.447 (rs1_release_inmarket.161102-0100) Microsoft Corporation Расширения Интернета для Win32 131795771229682115 0x7ffabf8a0000 122880 C:\Windows\System32\Windows.Cortana.ProxyStub.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows.Cortana.ProxyStub 131795770645378207 0x7ffabf8c0000 802816 C:\Windows\system32\Windows.Internal.Shell.Broker.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation Windows Shell Broker 131795770645378207 0x7ffabf9c0000 200704 C:\Windows\system32\windows.cortana.onecore.dll 10.0.14393.953 (rs1_release_inmarket.170303-1614) Microsoft Corporation Windows.Cortana.OneCore 131795770645378207 0x7ffabfb00000 626688 C:\Windows\System32\ContentDeliveryManager.Utilities.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation ContentDeliveryManager.Utilities 131795770645378207 0x7ffabff10000 155648 C:\Windows\System32\srvcli.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Server Service Client DLL 131795770645378207 0x7ffac05f0000 94208 C:\Windows\System32\wwapi.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation WWAN API 131795770645378207 0x7ffac0910000 724992 C:\Windows\System32\Windows.Networking.Connectivity.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Networking Connectivity Runtime DLL 131795770645378207 0x7ffac09d0000 884736 C:\Windows\System32\wpnapps.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Приложения для push-уведомлений Windows 131795770645378207 0x7ffac0bf0000 3559424 C:\Windows\System32\ActXPrxy.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation ActiveX Interface Marshaling Library 131795770645378207 0x7ffac1470000 704512 C:\Windows\System32\ieproxy.dll 11.00.14393.2007 (rs1_release.171231-1800) Microsoft Corporation IE ActiveX Interface Marshaling Library 131795770645378207 0x7ffac1c40000 94208 C:\Windows\System32\SystemSettings.DataModel.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SystemSettings.Datamodel private API 131795770645378207 0x7ffac20d0000 110592 C:\Windows\System32\RMCLIENT.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Resource Manager Client 131795770645378207 0x7ffac23c0000 331776 C:\Windows\System32\OneCoreCommonProxyStub.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation OneCore Common Proxy Stub 131795770645378207 0x7ffac2700000 98304 C:\Windows\System32\NETAPI32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API DLL 131795770645378207 0x7ffac2960000 143360 C:\Windows\system32\mssprxy.dll 7.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation Microsoft Search Proxy 131795770645378207 0x7ffac2a20000 81920 C:\Windows\System32\rtutils.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Routing Utilities 131795770645378207 0x7ffac2b80000 40960 C:\Windows\System32\VERSION.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Version Checking and File Installation Libraries 131795770645378207 0x7ffac34e0000 1843200 C:\Windows\System32\urlmon.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширения OLE32 для Win32 131795770645378207 0x7ffac3840000 3088384 C:\Windows\system32\ESENT.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширяемая подсистема хранения данных ESE для Microsoft(R) Windows(R) 131795770645378207 0x7ffac3cb0000 2772992 C:\Windows\System32\iertutil.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служебная программа времени выполнения для Internet Explorer 131795770645378207 0x7ffac4000000 274432 C:\Windows\system32\policymanager.dll 10.0.14393.2035 (rs1_release_inmarket.180110-1910) Microsoft Corporation Policy Manager DLL 131795770645378207 0x7ffac42a0000 659456 C:\Windows\System32\StateRepository.Core.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation StateRepository Core 131795770645378207 0x7ffac4450000 86016 C:\Windows\SYSTEM32\usermgrcli.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation UserMgr API DLL 131795770645378207 0x7ffac46d0000 4161536 C:\Windows\System32\Windows.StateRepository.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Сервер Windows StateRepository API Server 131795771234179313 0x7ffac4b70000 106496 C:\Windows\System32\ShellCommonCommonProxyStub.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ShellCommon Common Proxy Stub 131795770645378207 0x7ffac4b90000 774144 C:\Windows\System32\StoreAgent.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation StoreAgent 131795770645378207 0x7ffac4f60000 143360 C:\Windows\System32\wcmapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Connection Manager Client API 131795770645378207 0x7ffac5630000 339968 C:\Windows\System32\thumbcache.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Кэш эскизов Майкрософт 131795770645378207 0x7ffac5c50000 131072 C:\Windows\System32\rasman.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Remote Access Connection Manager 131795770645378207 0x7ffac5ca0000 200704 C:\Windows\System32\AppExtension.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API AppExtension 131795770645378207 0x7ffac60e0000 221184 C:\Windows\System32\XmlLite.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft XmlLite Library 131795770645378207 0x7ffac69c0000 839680 C:\Windows\System32\WINHTTP.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Службы HTTP Windows 131795770645378207 0x7ffac6a90000 49152 C:\Windows\System32\LocationFrameworkPS.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Geolocation Framework PS 131795771242759756 0x7ffac6ac0000 835584 C:\Windows\System32\Windows.UI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Runtime UI Foundation DLL 131795770645378207 0x7ffac6ba0000 49152 C:\Windows\System32\Secur32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Security Support Provider Interface 131795770645378207 0x7ffac6c40000 2596864 C:\Windows\WinSxS\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.14393.953_none_42151e83c686086b\comctl32.dll 6.10 (rs1_release_inmarket.170303-1614) Microsoft Corporation Библиотека элементов управления взаимодействия с пользователем 131795770645378207 0x7ffac6ec0000 36864 C:\Windows\system32\IconCodecService.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Converts a PNG part of the icon to a legacy bmp icon 131795770645378207 0x7ffac7580000 1077248 C:\Windows\SYSTEM32\mrmcorer.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Windows MRM 131795770645378207 0x7ffac76a0000 159744 C:\Windows\System32\sppc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Software Licensing Client DLL 131795770645378207 0x7ffac7720000 1601536 C:\Windows\System32\OneCoreUAPCommonProxyStub.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation OneCoreUAP Common Proxy Stub 131795770645378207 0x7ffac7aa0000 401408 C:\Windows\SYSTEM32\wlanapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows WLAN AutoConfig Client Side API DLL 131795770645378207 0x7ffac7d00000 32768 C:\Windows\SYSTEM32\familysafetyext.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation FamilySafety ChildAccount Extensions 131795770645378207 0x7ffac90b0000 90112 C:\Windows\System32\wkscli.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Workstation Service Client DLL 131795770645378207 0x7ffac9290000 40960 C:\Windows\System32\DSROLE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DS Setup Client DLL 131795770645378207 0x7ffac92e0000 1269760 C:\Windows\System32\WinTypes.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL основных типов Windows 131795770645378207 0x7ffac9f50000 1736704 C:\Windows\system32\windowscodecs.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Microsoft Windows Codecs Library 131795770645378207 0x7ffaca340000 1593344 C:\Windows\system32\PROPSYS.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Система страниц свойств (Майкрософт) 131795770645378207 0x7ffaca4e0000 77824 C:\Windows\SYSTEM32\wtsapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Remote Desktop Session Host Server SDK APIs 131795770645378207 0x7ffaca570000 421888 C:\Windows\System32\Bcp47Langs.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation BCP47 Language Classes 131795770645378207 0x7ffaca5e0000 155648 C:\Windows\system32\dwmapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Интерфейс API диспетчера окон рабочего стола (Майкрософт) 131795770645378207 0x7ffacadf0000 499712 C:\Windows\System32\apphelp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиентская библиотека совместимости приложений 131795770645378207 0x7ffacaf00000 610304 C:\Windows\system32\uxtheme.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека тем UxTheme (Microsoft) 131795770645378207 0x7ffacb140000 593920 C:\Windows\system32\msvcp110_win.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Microsoft® STL110 C++ Runtime Library 131795770645378207 0x7ffacb1e0000 1163264 C:\Windows\System32\twinapi.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation twinapi.appcore 131795770645378207 0x7ffacb300000 364544 C:\Windows\system32\VEEventDispatcher.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Visual Element Event dispatcher 131795770645378207 0x7ffacb3f0000 163840 C:\Windows\System32\DEVOBJ.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Device Information Set DLL 131795770645378207 0x7ffacb420000 204800 C:\Windows\SYSTEM32\ntmarta.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик Windows NT MARTA 131795770645378207 0x7ffacbd30000 229376 C:\Windows\System32\IPHLPAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API вспомогательного приложения IP 131795770645378207 0x7ffacbe20000 53248 C:\Windows\System32\netutils.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API Helpers DLL 131795770645378207 0x7ffacbe40000 126976 C:\Windows\system32\USERENV.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Userenv 131795770645378207 0x7ffacc150000 94208 C:\Windows\System32\CRYPTSP.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Cryptographic Service Provider API 131795770645378207 0x7ffacc350000 180224 C:\Windows\System32\SspiCli.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Security Support Provider Interface 131795770645378207 0x7ffacc520000 622592 C:\Windows\SYSTEM32\sxs.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Fusion 2.5 131795770645378207 0x7ffacc5c0000 352256 C:\Windows\SYSTEM32\WINSTA.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Winstation Library 131795770645378207 0x7ffacc620000 176128 C:\Windows\System32\bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795770645378207 0x7ffacc6e0000 61440 C:\Windows\System32\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795770645378207 0x7ffacc6f0000 311296 C:\Windows\System32\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795770645378207 0x7ffacc740000 81920 C:\Windows\System32\profapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Profile Basic API 131795770645378207 0x7ffacc8f0000 1003520 C:\Windows\System32\ucrtbase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645378207 0x7ffacc9f0000 434176 C:\Windows\System32\bcryptPrimitives.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Cryptographic Primitives Library 131795770645378207 0x7ffacca60000 122880 C:\Windows\System32\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795770645378207 0x7ffaccae0000 692224 C:\Windows\System32\shcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795770645378207 0x7ffaccb90000 7180288 C:\Windows\System32\windows.storage.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API хранения Microsoft WinRT 131795770645378207 0x7ffacd270000 2215936 C:\Windows\System32\KERNELBASE.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645378207 0x7ffacd710000 638976 C:\Windows\System32\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645378207 0x7ffacd7b0000 270336 C:\Windows\System32\cfgmgr32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Configuration Manager DLL 131795770645378207 0x7ffacd810000 22056960 C:\Windows\System32\SHELL32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Общая библиотека оболочки Windows 131795770645378207 0x7ffaced20000 782336 C:\Windows\System32\OLEAUT32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795770645378207 0x7ffacede0000 450560 C:\Windows\System32\coml2.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft COM for Windows 131795770645378207 0x7ffacee50000 1183744 C:\Windows\System32\RPCRT4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795770645378207 0x7ffacef80000 32768 C:\Windows\System32\NSI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation NSI User-mode interface DLL 131795770645378207 0x7ffacef90000 647168 C:\Windows\System32\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795770645378207 0x7ffacf030000 651264 C:\Windows\System32\clbcatq.dll 2001.12.10941.16384 (rs1_release.160715-1616) Microsoft Corporation COM+ Configuration Catalog 131795770645378207 0x7ffacf0d0000 704512 C:\Windows\System32\KERNEL32.DLL 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645378207 0x7ffacf1e0000 1417216 C:\Windows\System32\MSCTF.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Серверная библиотека MSCTF 131795770645378207 0x7ffacf770000 212992 C:\Windows\System32\GDI32.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation GDI Client DLL 131795770645378207 0x7ffacf820000 434176 C:\Windows\System32\WS2_32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation 32-разрядная библиотека Windows Socket 2.0 131795770645378207 0x7ffacf890000 188416 C:\Windows\System32\IMM32.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Multi-User Windows IMM32 API Client DLL 131795770645378207 0x7ffacf8c0000 1462272 C:\Windows\System32\USER32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795770645378207 0x7ffacfb30000 2916352 C:\Windows\System32\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795770645378207 0x7ffacfe20000 663552 C:\Windows\System32\advapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795770645378207 0x7ffad0070000 1277952 C:\Windows\System32\ole32.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft OLE для Windows 131795770645378207 0x7ffad01b0000 335872 C:\Windows\System32\shlwapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека небольших программ оболочки 131795770645378207 0x7ffad0210000 364544 C:\Windows\System32\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795770645378207 0x7ffad0270000 1908736 C:\Windows\SYSTEM32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 39 3164 664 6 00000000:0031f1da 131765778119045372 0 0 1 Обязательная метка\Низкий обязательный уровень WIN-0UOTFKKVN1S\User ShellExperienceHost.exe C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\ShellExperienceHost.exe "C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\ShellExperienceHost.exe" -ServerName:App.AppXtk181tbxbce2qsex02s8tw7hfxa9xb3t.mca Microsoft Corporation 10.0.14393.2125 (rs1_release.180301-2139) Windows Shell Experience Host 131795770645379346 0x7ff697570000 1662976 C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\ShellExperienceHost.exe 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation Windows Shell Experience Host 131795770645379346 0x7ffa9f150000 6311936 C:\Windows\System32\Windows.Media.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Media Runtime DLL 131795770645379346 0x7ffa9f760000 3796992 C:\Windows\System32\MFMediaEngine.dll 10.0.14393.351 (rs1_release_inmarket.161014-1755) Microsoft Corporation Media Foundation Media Engine DLL 131795770645379346 0x7ffaabad0000 1871872 C:\Windows\System32\mfsrcsnk.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Media Foundation Source and Sink DLL 131795770645379346 0x7ffaafe70000 4239360 C:\Windows\System32\mfcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Media Foundation Core DLL 131795770645379346 0x7ffab0be0000 1421312 C:\Windows\ShellExperiences\NetworkUX.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Network Experience 131795770645379346 0x7ffab4af0000 606208 C:\Windows\SYSTEM32\AUDIOSES.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Сеанс обработки звука 131795770645379346 0x7ffab5b40000 2527232 C:\Windows\SYSTEM32\dwrite.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Службы Microsoft DirectX Typography 131795770645379346 0x7ffab6710000 17231872 C:\Windows\System32\Windows.UI.Xaml.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows.UI.Xaml dll 131795770645379346 0x7ffab9eb0000 2899968 C:\Windows\ShellExperiences\Windows.UI.ActionCenter.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation ActionCenter Experience 131795770645379346 0x7ffaba180000 7880704 C:\Windows\ShellExperiences\StartUI.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Start UI 131795770645379346 0x7ffabaa50000 339968 C:\Windows\System32\NetworkUXBroker.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation NetworkUXBroker DLL 131795770645379346 0x7ffabab30000 303104 C:\Windows\System32\NotificationObjFactory.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Notifications Object Factory 131795770645379346 0x7ffabacc0000 1380352 C:\Windows\System32\SharedStartModel.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Shared Start Model InProc Server 131795770645379346 0x7ffabaf70000 270336 C:\Windows\SYSTEM32\edputil.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служебная программа EDP 131795770645379346 0x7ffabb3c0000 450560 C:\Windows\SYSTEM32\TextInputFramework.dll 10.0.14393.2189 (rs1_release.180329-1711) Microsoft Corporation "TextInputFramework.DYNLINK" 131795770645379346 0x7ffabb490000 512000 C:\Windows\system32\twinapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation twinapi 131795770645379346 0x7ffabbb80000 61440 C:\Windows\SYSTEM32\dsclient.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Data Sharing Service Client DLL 131795770645379346 0x7ffabbb90000 581632 C:\Windows\System32\Windows.System.Launcher.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows.System.Launcher 131795770645379346 0x7ffabbd00000 36864 C:\Windows\SYSTEM32\WpPortingLibrary.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation <d> DLL 131795770645379346 0x7ffabc5c0000 319488 C:\Windows\SYSTEM32\MFSENSORGROUP.dll 10.0.14393.447 (rs1_release_inmarket.161102-0100) Microsoft Corporation Media Foundation Sensor Group DLL 131795770645379346 0x7ffabcef0000 102400 C:\Windows\System32\Windows.Shell.ServiceHostBuilder.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows.Shell.ServiceHostBuilder 131795770645379346 0x7ffabd420000 487424 C:\Windows\System32\RTMediaFrame.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Runtime MediaFrame DLL 131795770645379346 0x7ffabd4a0000 1613824 C:\Windows\System32\Windows.Globalization.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Globalization 131795770645379346 0x7ffabe410000 339968 C:\Windows\SYSTEM32\globcollationhost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation GlobCollationHost 131795770645379346 0x7ffabe6e0000 561152 C:\Windows\system32\directmanipulation.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Direct Manipulation Component 131795770645379346 0x7ffabeac0000 335872 C:\Windows\System32\Windows.Storage.ApplicationData.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Application Data API Server 131795770645379346 0x7ffabf330000 2457600 C:\Windows\System32\msxml6.dll 6.30.14393.2156 Microsoft Corporation MSXML 6.0 131795770645379346 0x7ffabfce0000 90112 C:\Windows\System32\Windows.Globalization.Fontgroups.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Fonts Mapping API 131795770645379346 0x7ffabfd00000 356352 C:\Windows\System32\Windows.Graphics.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation WinRT Windows Graphics DLL 131795770645379346 0x7ffabfd80000 86016 C:\Windows\System32\threadpoolwinrt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows WinRT Threadpool 131795770645379346 0x7ffac0080000 249856 C:\Windows\System32\resampledmo.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Media Resampler 131795770645379346 0x7ffac00c0000 282624 C:\Windows\SYSTEM32\windows.ui.core.textinput.dll 10.0.14393.2189 (rs1_release.180329-1711) Microsoft Corporation Windows.UI.Core.TextInput dll 131795770645379346 0x7ffac0110000 290816 C:\Windows\SYSTEM32\QuickActionsDataModel.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation QuickActionsDataModel 131795770645379346 0x7ffac0160000 491520 C:\Windows\ShellExperiences\QuickActions.dll 131795770645379346 0x7ffac01e0000 397312 C:\Windows\SYSTEM32\wincorlib.DLL 10.0.14393.576 (rs1_release_inmarket.161208-2252) Microsoft Corporation Microsoft Windows ® WinRT core library 131795770645379346 0x7ffac0470000 1478656 C:\Windows\SYSTEM32\MFPlat.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Media Foundation Platform DLL 131795770645379346 0x7ffac0bf0000 3559424 C:\Windows\System32\ActXPrxy.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation ActiveX Interface Marshaling Library 131795770645379346 0x7ffac1c40000 94208 C:\Windows\System32\SystemSettings.DataModel.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SystemSettings.Datamodel private API 131795770645379346 0x7ffac1e50000 188416 C:\Windows\SYSTEM32\RTWorkQ.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL для WorkQueue реального времени 131795770645379346 0x7ffac20d0000 110592 C:\Windows\System32\rmclient.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Resource Manager Client 131795770645379346 0x7ffac23c0000 331776 C:\Windows\System32\OneCoreCommonProxyStub.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation OneCore Common Proxy Stub 131795770645379346 0x7ffac2990000 385024 C:\Windows\SYSTEM32\NInput.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Pen and Touch Input Component 131795770645379346 0x7ffac34e0000 1843200 C:\Windows\SYSTEM32\urlmon.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширения OLE32 для Win32 131795770645379346 0x7ffac3cb0000 2772992 C:\Windows\SYSTEM32\iertutil.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служебная программа времени выполнения для Internet Explorer 131795770645379346 0x7ffac4000000 274432 C:\Windows\SYSTEM32\policymanager.dll 10.0.14393.2035 (rs1_release_inmarket.180110-1910) Microsoft Corporation Policy Manager DLL 131795770645379346 0x7ffac40f0000 40960 C:\Windows\SYSTEM32\msdmo.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DMO Runtime 131795770645379346 0x7ffac42a0000 659456 C:\Windows\SYSTEM32\StateRepository.Core.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation StateRepository Core 131795770645379346 0x7ffac46d0000 4161536 C:\Windows\System32\Windows.StateRepository.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Сервер Windows StateRepository API Server 131795770645379346 0x7ffac4eb0000 147456 C:\Windows\ShellExperiences\Windows.UI.Shell.SharedUtilities.dll 131795770645379346 0x7ffac5350000 1765376 C:\Windows\System32\Windows.UI.Immersive.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation WINDOWS.UI.IMMERSIVE 131795770645379346 0x7ffac5500000 438272 C:\Windows\SYSTEM32\PhotoMetadataHandler.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Photo Metadata Handler 131795770645379346 0x7ffac5b20000 49152 C:\Windows\SYSTEM32\CompPkgSup.DLL 10.0.14393.969 (rs1_release_inmarket.170315-1735) Microsoft Corporation Component Package Support DLL 131795770645379346 0x7ffac5ce0000 1744896 C:\Windows\SYSTEM32\uiautomationcore.dll 7.2.14393.0 (rs1_release.160715-1616) Microsoft Corporation Основные автоматические компоненты Microsoft UI 131795770645379346 0x7ffac5e90000 380928 C:\Windows\System32\Windows.Media.MediaControl.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL сервера MediaControl среды выполнения Windows 131795770645379346 0x7ffac60e0000 221184 C:\Windows\SYSTEM32\XmlLite.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft XmlLite Library 131795770645379346 0x7ffac6ac0000 835584 C:\Windows\System32\Windows.UI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Runtime UI Foundation DLL 131795770645379346 0x7ffac6bd0000 413696 C:\Windows\SYSTEM32\OLEACC.dll 7.2.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Active Accessibility Core Component 131795770645379346 0x7ffac6f50000 5632000 C:\Windows\SYSTEM32\d2d1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека Microsoft D2D 131795770645379346 0x7ffac7580000 1077248 C:\Windows\SYSTEM32\MrmCoreR.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Windows MRM 131795770645379346 0x7ffac76a0000 159744 C:\Windows\SYSTEM32\sppc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Software Licensing Client DLL 131795770645379346 0x7ffac7720000 1601536 C:\Windows\System32\OneCoreUAPCommonProxyStub.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation OneCoreUAP Common Proxy Stub 131795770645379346 0x7ffac7990000 155648 C:\Windows\SYSTEM32\SLC.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Software Licensing Client DLL 131795770645379346 0x7ffac7e30000 40960 C:\Windows\SYSTEM32\fontgroupsoverride.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation fontgroupsoverride.dll 131795770645379346 0x7ffac7fc0000 2674688 C:\Windows\SYSTEM32\d3d10warp.dll 10.0.14393.576 (rs1_release_inmarket.161208-2252) Microsoft Corporation Direct3D 10 Rasterizer 131795770645379346 0x7ffac84e0000 53248 C:\Windows\System32\NotificationControllerPS.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation NotificationController Proxy Stub 131795770645379346 0x7ffac84f0000 299008 C:\Windows\system32\DataExchange.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation Data exchange 131795770645379346 0x7ffac88a0000 2842624 C:\Windows\SYSTEM32\d3d11.dll 10.0.14393.953 (rs1_release_inmarket.170303-1614) Microsoft Corporation Direct3D 11 Runtime 131795770645379346 0x7ffac8f90000 45056 C:\Windows\SYSTEM32\AVRT.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Среда выполнения мультимедиа в реальном времени 131795770645379346 0x7ffac8fa0000 253952 C:\Windows\SYSTEM32\logoncli.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Net Logon Client DLL 131795770645379346 0x7ffac92e0000 1269760 C:\Windows\System32\WinTypes.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL основных типов Windows 131795770645379346 0x7ffac9480000 462848 C:\Windows\System32\MMDevApi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation MMDevice API 131795770645379346 0x7ffac9500000 2682880 C:\Windows\system32\CoreUIComponents.dll 131795770645379346 0x7ffac9f50000 1736704 C:\Windows\system32\windowscodecs.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Microsoft Windows Codecs Library 131795770645379346 0x7ffaca340000 1593344 C:\Windows\SYSTEM32\PROPSYS.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Система страниц свойств (Майкрософт) 131795770645379346 0x7ffaca550000 36864 C:\Windows\SYSTEM32\ksuser.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User CSA Library 131795770645379346 0x7ffaca570000 421888 C:\Windows\SYSTEM32\Bcp47Langs.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation BCP47 Language Classes 131795770645379346 0x7ffaca5e0000 155648 C:\Windows\SYSTEM32\dwmapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Интерфейс API диспетчера окон рабочего стола (Майкрософт) 131795770645379346 0x7ffaca640000 770048 C:\Windows\SYSTEM32\CoreMessaging.dll 10.0.14393.0 Microsoft Corporation Microsoft CoreMessaging Dll 131795770645379346 0x7ffaca770000 1380352 C:\Windows\SYSTEM32\dcomp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft DirectComposition Library 131795770645379346 0x7ffacab40000 176128 C:\Windows\SYSTEM32\winmmbase.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base Multimedia Extension API DLL 131795770645379346 0x7ffacaf00000 610304 C:\Windows\system32\uxtheme.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека тем UxTheme (Microsoft) 131795770645379346 0x7ffacb140000 593920 C:\Windows\SYSTEM32\msvcp110_win.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Microsoft® STL110 C++ Runtime Library 131795770645379346 0x7ffacb1e0000 1163264 C:\Windows\System32\twinapi.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation twinapi.appcore 131795770645379346 0x7ffacb300000 364544 C:\Windows\SYSTEM32\VEEventDispatcher.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Visual Element Event dispatcher 131795770645379346 0x7ffacb3f0000 163840 C:\Windows\SYSTEM32\DEVOBJ.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Device Information Set DLL 131795770645379346 0x7ffacb780000 651264 C:\Windows\SYSTEM32\dxgi.dll 10.0.14393.953 (rs1_release_inmarket.170303-1614) Microsoft Corporation DirectX Graphics Infrastructure 131795770645379346 0x7ffacbe40000 126976 C:\Windows\SYSTEM32\USERENV.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Userenv 131795770645379346 0x7ffacc170000 45056 C:\Windows\SYSTEM32\CRYPTBASE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base cryptographic API DLL 131795770645379346 0x7ffacc350000 180224 C:\Windows\SYSTEM32\SspiCli.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Security Support Provider Interface 131795770645379346 0x7ffacc5c0000 352256 C:\Windows\SYSTEM32\winsta.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Winstation Library 131795770645379346 0x7ffacc620000 176128 C:\Windows\SYSTEM32\bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795770645379346 0x7ffacc6e0000 61440 C:\Windows\System32\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795770645379346 0x7ffacc6f0000 311296 C:\Windows\System32\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795770645379346 0x7ffacc740000 81920 C:\Windows\System32\profapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Profile Basic API 131795770645379346 0x7ffacc760000 65536 C:\Windows\System32\MSASN1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ASN.1 Runtime APIs 131795770645379346 0x7ffacc8f0000 1003520 C:\Windows\System32\ucrtbase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645379346 0x7ffacc9f0000 434176 C:\Windows\System32\bcryptPrimitives.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Cryptographic Primitives Library 131795770645379346 0x7ffacca60000 122880 C:\Windows\System32\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795770645379346 0x7ffaccae0000 692224 C:\Windows\System32\shcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795770645379346 0x7ffaccb90000 7180288 C:\Windows\System32\windows.storage.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API хранения Microsoft WinRT 131795770645379346 0x7ffacd270000 2215936 C:\Windows\System32\KERNELBASE.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645379346 0x7ffacd490000 1871872 C:\Windows\System32\CRYPT32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API32 криптографии 131795770645379346 0x7ffacd710000 638976 C:\Windows\System32\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645379346 0x7ffacd7b0000 270336 C:\Windows\System32\cfgmgr32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Configuration Manager DLL 131795770645379346 0x7ffacd810000 22056960 C:\Windows\System32\SHELL32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Общая библиотека оболочки Windows 131795770645379346 0x7ffaced20000 782336 C:\Windows\System32\OLEAUT32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795770645379346 0x7ffacee50000 1183744 C:\Windows\System32\RPCRT4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795770645379346 0x7ffacef90000 647168 C:\Windows\System32\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795770645379346 0x7ffacf0d0000 704512 C:\Windows\System32\KERNEL32.DLL 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645379346 0x7ffacf1e0000 1417216 C:\Windows\System32\msctf.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Серверная библиотека MSCTF 131795770645379346 0x7ffacf770000 212992 C:\Windows\System32\GDI32.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation GDI Client DLL 131795770645379346 0x7ffacf890000 188416 C:\Windows\System32\IMM32.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Multi-User Windows IMM32 API Client DLL 131795770645379346 0x7ffacf8c0000 1462272 C:\Windows\System32\user32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795770645379346 0x7ffacfb30000 2916352 C:\Windows\System32\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795770645379346 0x7ffacfe20000 663552 C:\Windows\System32\advapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795770645379346 0x7ffad0070000 1277952 C:\Windows\System32\ole32.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft OLE для Windows 131795770645379346 0x7ffad01b0000 335872 C:\Windows\System32\SHLWAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека небольших программ оболочки 131795770645379346 0x7ffad0210000 364544 C:\Windows\System32\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795770645379346 0x7ffad0270000 1908736 C:\Windows\SYSTEM32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 40 4856 3108 11 00000000:0031f1da 131765778391112136 0 0 1 Обязательная метка\Средний обязательный уровень WIN-0UOTFKKVN1S\User MSASCuiL.exe C:\Program Files\Windows Defender\MSASCuiL.exe "C:\Program Files\Windows Defender\MSASCuiL.exe" Microsoft Corporation 4.10.14393.1198 (rs1_release_sec.170427-1353) Windows Defender notification icon 131795770645379462 0x23622c70000 733184 C:\Program Files\Windows Defender\EppManifest.dll 4.10.14393.0 (rs1_release.160715-1616) Microsoft Corporation Модуль ресурсов настройки пользовательского интерфейса 131795770645379462 0x7ff63bef0000 651264 C:\Program Files\Windows Defender\MSASCuiL.exe 4.10.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Windows Defender notification icon 131795770645379462 0x7ffab8da0000 1675264 C:\Windows\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.14393.1715_none_aec701fbddd850fa\gdiplus.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Microsoft GDI+ 131795770645379462 0x7ffabf330000 2457600 C:\Windows\System32\msxml6.dll 6.30.14393.2156 Microsoft Corporation MSXML 6.0 131795770645379462 0x7ffac4560000 950272 C:\Program Files\Windows Defender\mpclient.dll 4.10.14393.1794 (rs1_release.171008-1615) Microsoft Corporation Client Interface 131795770645379462 0x7ffac4ea0000 36864 C:\Windows\SYSTEM32\atlthunk.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation atlthunk.dll 131795770645379462 0x7ffac9f50000 1736704 C:\Windows\SYSTEM32\WindowsCodecs.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Microsoft Windows Codecs Library 131795770645379462 0x7ffaca4e0000 77824 C:\Windows\SYSTEM32\WTSAPI32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Remote Desktop Session Host Server SDK APIs 131795770645379462 0x7ffaca5e0000 155648 C:\Windows\system32\dwmapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Интерфейс API диспетчера окон рабочего стола (Майкрософт) 131795770645379462 0x7ffacaf00000 610304 C:\Windows\system32\uxtheme.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека тем UxTheme (Microsoft) 131795770645379462 0x7ffacb6f0000 143360 C:\Windows\SYSTEM32\gpapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиентские функции API групповой политики 131795770645379462 0x7ffacbbb0000 208896 C:\Windows\system32\rsaenh.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Enhanced Cryptographic Provider 131795770645379462 0x7ffacbe40000 126976 C:\Windows\SYSTEM32\USERENV.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Userenv 131795770645379462 0x7ffacc150000 94208 C:\Windows\SYSTEM32\CRYPTSP.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Cryptographic Service Provider API 131795770645379462 0x7ffacc170000 45056 C:\Windows\SYSTEM32\CRYPTBASE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base cryptographic API DLL 131795770645379462 0x7ffacc620000 176128 C:\Windows\SYSTEM32\bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795770645379462 0x7ffacc6e0000 61440 C:\Windows\System32\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795770645379462 0x7ffacc6f0000 311296 C:\Windows\System32\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795770645379462 0x7ffacc740000 81920 C:\Windows\System32\profapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Profile Basic API 131795770645379462 0x7ffacc760000 65536 C:\Windows\System32\MSASN1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ASN.1 Runtime APIs 131795770645379462 0x7ffacc8f0000 1003520 C:\Windows\System32\ucrtbase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645379462 0x7ffacc9f0000 434176 C:\Windows\System32\bcryptPrimitives.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Cryptographic Primitives Library 131795770645379462 0x7ffacca60000 122880 C:\Windows\System32\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795770645379462 0x7ffacca80000 348160 C:\Windows\System32\WINTRUST.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation Microsoft Trust Verification APIs 131795770645379462 0x7ffaccae0000 692224 C:\Windows\System32\shcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795770645379462 0x7ffaccb90000 7180288 C:\Windows\System32\windows.storage.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API хранения Microsoft WinRT 131795770645379462 0x7ffacd270000 2215936 C:\Windows\System32\KERNELBASE.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645379462 0x7ffacd490000 1871872 C:\Windows\System32\CRYPT32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API32 криптографии 131795770645379462 0x7ffacd710000 638976 C:\Windows\System32\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645379462 0x7ffacd7b0000 270336 C:\Windows\System32\cfgmgr32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Configuration Manager DLL 131795770645379462 0x7ffacd810000 22056960 C:\Windows\System32\SHELL32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Общая библиотека оболочки Windows 131795770645379462 0x7ffaced20000 782336 C:\Windows\System32\OLEAUT32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795770645379462 0x7ffacee50000 1183744 C:\Windows\System32\RPCRT4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795770645379462 0x7ffacef90000 647168 C:\Windows\System32\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795770645379462 0x7ffacf030000 651264 C:\Windows\System32\clbcatq.dll 2001.12.10941.16384 (rs1_release.160715-1616) Microsoft Corporation COM+ Configuration Catalog 131795770645379462 0x7ffacf0d0000 704512 C:\Windows\System32\KERNEL32.DLL 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645379462 0x7ffacf1e0000 1417216 C:\Windows\System32\MSCTF.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Серверная библиотека MSCTF 131795770645379462 0x7ffacf770000 212992 C:\Windows\System32\GDI32.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation GDI Client DLL 131795770645379462 0x7ffacf890000 188416 C:\Windows\System32\IMM32.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Multi-User Windows IMM32 API Client DLL 131795770645379462 0x7ffacf8c0000 1462272 C:\Windows\System32\USER32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795770645379462 0x7ffacfb30000 2916352 C:\Windows\System32\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795770645379462 0x7ffacfe00000 114688 C:\Windows\System32\imagehlp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT Image Helper 131795770645379462 0x7ffacfe20000 663552 C:\Windows\System32\ADVAPI32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795770645379462 0x7ffad0070000 1277952 C:\Windows\System32\ole32.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft OLE для Windows 131795770645379462 0x7ffad01b0000 335872 C:\Windows\System32\SHLWAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека небольших программ оболочки 131795770645379462 0x7ffad0210000 364544 C:\Windows\System32\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795770645379462 0x7ffad0270000 1908736 C:\Windows\SYSTEM32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 41 4928 3108 11 00000000:0031f1da 131765778406250112 0 0 0 Обязательная метка\Средний обязательный уровень WIN-0UOTFKKVN1S\User uTorrent.exe C:\Users\User\AppData\Roaming\uTorrent\uTorrent.exe "C:\Users\User\AppData\Roaming\uTorrent\uTorrent.exe" /MINIMIZED BitTorrent Inc. 3.5.4.44498 µTorrent 131795770645379614 0x400000 5406720 C:\Users\User\AppData\Roaming\uTorrent\uTorrent.exe 3.5.4.44498 BitTorrent Inc. µTorrent 131795770645379614 0x5c020000 335872 C:\Windows\System32\wow64.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation Win32 Emulation on NT64 131795770645379614 0x5c080000 487424 C:\Windows\System32\wow64win.dll 10.0.14393.1884 (rs1_release.171101-1233) Microsoft Corporation Wow64 Console and Win32 API Logging 131795770645379614 0x5c100000 40960 C:\Windows\System32\wow64cpu.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation AMD64 Wow64 CPU 131795770645379614 0x60750000 1556480 C:\Program Files (x86)\360\Total Security\safemon\safemon.dll 8, 4, 0, 1420 Qihu 360 Software Co., Ltd. 360 Internet Security Internet Protection 131795770645379614 0x6c5c0000 1384448 C:\Windows\SysWOW64\UIAutomationCore.DLL 7.2.14393.0 (rs1_release.160715-1616) Microsoft Corporation Основные автоматические компоненты Microsoft UI 131795770645379614 0x6cda0000 528384 C:\Windows\SysWOW64\sxs.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Fusion 2.5 131795770645379614 0x6e140000 348160 C:\Windows\SysWOW64\upnp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API контрольной точки UPnP 131795770645379614 0x6e1a0000 98304 C:\Windows\SysWOW64\ATL.DLL 3.05.2284 Microsoft Corporation ATL Module for Windows XP (Unicode) 131795770645379614 0x6e1c0000 307200 C:\Windows\SysWOW64\hnetcfg.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Диспетчер конфигурации домашней сети 131795770645379614 0x6ef20000 65536 C:\Windows\SysWOW64\SSDPAPI.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation SSDP Client API DLL 131795770645379614 0x6fc70000 385024 C:\Windows\SysWOW64\FirewallAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API брандмауэра Windows 131795770645379614 0x6fd30000 139264 C:\Windows\SysWOW64\DEVOBJ.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Device Information Set DLL 131795770645379614 0x703d0000 2056192 C:\Windows\SysWOW64\DWrite.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Службы Microsoft DirectX Typography 131795770645379614 0x705e0000 344064 C:\Windows\SysWOW64\OLEACC.dll 7.2.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Active Accessibility Core Component 131795770645379614 0x70640000 1499136 C:\Windows\SysWOW64\WindowsCodecs.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Microsoft Windows Codecs Library 131795770645379614 0x707b0000 110592 C:\Windows\SysWOW64\ncryptsslp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft SChannel Provider 131795770645379614 0x70a40000 81920 C:\Windows\SysWOW64\NLAapi.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Network Location Awareness 2 131795770645379614 0x70a60000 90112 C:\Windows\SysWOW64\pnrpnsp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик пространства имен PNRP 131795770645379614 0x70a80000 409600 C:\Windows\SysWOW64\schannel.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик безопасности TLS/SSL 131795770645379614 0x70af0000 36864 C:\Windows\SysWOW64\npmproxy.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Network List Manager Proxy 131795770645379614 0x70b40000 69632 C:\Windows\SysWOW64\mskeyprotect.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик защиты ключей (Майкрософт) 131795770645379614 0x70b70000 163840 C:\Windows\SysWOW64\ntmarta.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик Windows NT MARTA 131795770645379614 0x70ba0000 188416 C:\Windows\SysWOW64\FWPolicyIOMgr.dll 10.0.14393.2189 (rs1_release.180329-1711) Microsoft Corporation FwPolicyIoMgr DLL 131795770645379614 0x70bd0000 147456 C:\Windows\SysWOW64\fwbase.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Firewall Base DLL 131795770645379614 0x70c00000 49152 C:\Windows\SysWOW64\winrnr.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation LDAP RnR Provider DLL 131795770645379614 0x70c10000 73728 C:\Windows\SysWOW64\napinsp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик оболочки совместимости для имен электронной почты 131795770645379614 0x70ca0000 45056 C:\Windows\SysWOW64\NETUTILS.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API Helpers DLL 131795770645379614 0x70cc0000 65536 C:\Windows\SysWOW64\ondemandconnroutehelper.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation On Demand Connctiond Route Helper 131795770645379614 0x70e60000 176128 C:\Windows\SysWOW64\NTASN1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft ASN.1 API 131795770645379614 0x71140000 77824 C:\Windows\SysWOW64\NETAPI32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API DLL 131795770645379614 0x71610000 77824 C:\Windows\SysWOW64\dhcpcsvc6.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиент DHCPv6 131795770645379614 0x725e0000 2273280 C:\Windows\SysWOW64\iertutil.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служебная программа времени выполнения для Internet Explorer 131795770645379614 0x728e0000 1372160 C:\Windows\SysWOW64\PROPSYS.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Система страниц свойств (Майкрософт) 131795770645379614 0x72b90000 126976 C:\Windows\SysWOW64\dwmapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Интерфейс API диспетчера окон рабочего стола (Майкрософт) 131795770645379614 0x73a40000 32768 C:\Windows\SysWOW64\WINNSI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Network Store Information RPC interface 131795770645379614 0x73a50000 299008 C:\Windows\SysWOW64\fwpuclnt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API пользовательского режима FWP/IPsec 131795770645379614 0x73aa0000 32768 C:\Windows\SysWOW64\DPAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Data Protection API 131795770645379614 0x73ab0000 32768 C:\Windows\SysWOW64\rasadhlp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Remote Access AutoDial Helper 131795770645379614 0x73ac0000 81920 C:\Windows\SysWOW64\dhcpcsvc.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служба DHCP-клиента 131795770645379614 0x73ae0000 40960 C:\Windows\SysWOW64\Secur32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Security Support Provider Interface 131795770645379614 0x73c50000 1478656 C:\Windows\WinSxS\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.14393.1715_none_f67438d2f2547a00\gdiplus.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Microsoft GDI+ 131795770645379614 0x73ee0000 61440 C:\Windows\SysWOW64\WTSAPI32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Remote Desktop Session Host Server SDK APIs 131795770645379614 0x73ef0000 24576 C:\Windows\SysWOW64\MSIMG32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation GDIEXT Client DLL 131795770645379614 0x73f00000 192512 C:\Windows\SysWOW64\IPHLPAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API вспомогательного приложения IP 131795770645379614 0x73f30000 512000 C:\Windows\SysWOW64\DNSAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Динамическая библиотека API DNS-клиента 131795770645379614 0x73fc0000 28672 C:\Windows\SysWOW64\wship6.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL помощника Winsock2 (TL/IPv6) 131795770645379614 0x73fd0000 28672 C:\Windows\SysWOW64\wshtcpip.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL помощника службы Winsock2 (TL/IPv4) 131795770645379614 0x73fe0000 32768 C:\Windows\SysWOW64\wshqos.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL помощника службы QoS Winsock2 131795770645379614 0x73ff0000 319488 C:\Windows\SysWOW64\mswsock.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширение поставщика службы API Microsoft Windows Sockets 2.0 131795770645379614 0x74040000 126976 C:\Windows\SysWOW64\gpapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиентские функции API групповой политики 131795770645379614 0x74060000 192512 C:\Windows\SysWOW64\rsaenh.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Enhanced Cryptographic Provider 131795770645379614 0x74110000 479232 C:\Windows\SysWOW64\uxtheme.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека тем UxTheme (Microsoft) 131795770645379614 0x74190000 110592 C:\Windows\SysWOW64\bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795770645379614 0x741b0000 77824 C:\Windows\SysWOW64\CRYPTSP.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Cryptographic Service Provider API 131795770645379614 0x74260000 2514944 C:\Windows\SysWOW64\WININET.dll 11.00.14393.447 (rs1_release_inmarket.161102-0100) Microsoft Corporation Расширения Интернета для Win32 131795770645379614 0x744d0000 2138112 C:\Windows\WinSxS\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.14393.953_none_89c2555adb023171\COMCTL32.dll 6.10 (rs1_release_inmarket.170303-1614) Microsoft Corporation Библиотека элементов управления взаимодействия с пользователем 131795770645379614 0x746e0000 32768 C:\Windows\SysWOW64\VERSION.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Version Checking and File Installation Libraries 131795770645379614 0x746f0000 106496 C:\Windows\SysWOW64\USERENV.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Userenv 131795770645379614 0x747d0000 40960 C:\Windows\SysWOW64\CRYPTBASE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base cryptographic API DLL 131795770645379614 0x747e0000 126976 C:\Windows\SysWOW64\SspiCli.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Security Support Provider Interface 131795770645379614 0x74800000 151552 C:\Windows\SysWOW64\IMM32.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Multi-User Windows IMM32 API Client DLL 131795770645379614 0x74910000 2170880 C:\Windows\SysWOW64\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795770645379614 0x74b30000 53248 C:\Windows\SysWOW64\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795770645379614 0x74b40000 102400 C:\Windows\SysWOW64\imagehlp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT Image Helper 131795770645379614 0x74b60000 790528 C:\Windows\SysWOW64\RPCRT4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795770645379614 0x74c30000 1417216 C:\Windows\SysWOW64\gdi32full.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation GDI Client DLL 131795770645379614 0x74d90000 24576 C:\Windows\SysWOW64\PSAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Process Status Helper 131795770645379614 0x74da0000 778240 C:\Windows\SysWOW64\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795770645379614 0x74e60000 557056 C:\Windows\SysWOW64\shcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795770645379614 0x74ef0000 540672 C:\Windows\SysWOW64\clbcatq.dll 2001.12.10941.16384 (rs1_release.160715-1616) Microsoft Corporation COM+ Configuration Catalog 131795770645379614 0x74f80000 278528 C:\Windows\SysWOW64\wintrust.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation Microsoft Trust Verification APIs 131795770645379614 0x74fd0000 405504 C:\Windows\SysWOW64\WS2_32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation 32-разрядная библиотека Windows Socket 2.0 131795770645379614 0x75040000 282624 C:\Windows\SysWOW64\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795770645379614 0x75090000 1265664 C:\Windows\SysWOW64\MSCTF.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Серверная библиотека MSCTF 131795770645379614 0x751d0000 57344 C:\Windows\SysWOW64\MSASN1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ASN.1 Runtime APIs 131795770645379614 0x751e0000 1708032 C:\Windows\SysWOW64\KERNELBASE.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645379614 0x75390000 266240 C:\Windows\SysWOW64\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795770645379614 0x753e0000 1560576 C:\Windows\SysWOW64\CRYPT32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API32 криптографии 131795770645379614 0x75560000 487424 C:\Windows\SysWOW64\ADVAPI32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795770645379614 0x756c0000 5693440 C:\Windows\SysWOW64\windows.storage.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API хранения Microsoft WinRT 131795770645379614 0x75c90000 286720 C:\Windows\SysWOW64\SHLWAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека небольших программ оболочки 131795770645379614 0x75ce0000 20811776 C:\Windows\SysWOW64\SHELL32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Общая библиотека оболочки Windows 131795770645379614 0x770c0000 4239360 C:\Windows\SysWOW64\SETUPAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Setup API 131795770645379614 0x774d0000 86016 C:\Windows\SysWOW64\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795770645379614 0x774f0000 61440 C:\Windows\SysWOW64\profapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Profile Basic API 131795770645379614 0x77560000 1437696 C:\Windows\SysWOW64\USER32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795770645379614 0x776c0000 368640 C:\Windows\SysWOW64\bcryptPrimitives.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation Windows Cryptographic Primitives Library 131795770645379614 0x77780000 503808 C:\Windows\SysWOW64\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645379614 0x77800000 606208 C:\Windows\SysWOW64\OLEAUT32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795770645379614 0x77ac0000 966656 C:\Windows\SysWOW64\ole32.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft OLE для Windows 131795770645379614 0x77bb0000 176128 C:\Windows\SysWOW64\GDI32.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation GDI Client DLL 131795770645379614 0x77be0000 937984 C:\Windows\SysWOW64\COMDLG32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека общих диалоговых окон 131795770645379614 0x77cd0000 221184 C:\Windows\SysWOW64\cfgmgr32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Configuration Manager DLL 131795770645379614 0x77d10000 28672 C:\Windows\SysWOW64\NSI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation NSI User-mode interface DLL 131795770645379614 0x77d20000 1585152 C:\Windows\SysWOW64\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 131795770645379614 0x7ffad0270000 1908736 C:\Windows\SYSTEM32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 42 3608 664 6 00000000:0031f1da 131765778496229053 0 0 1 Обязательная метка\Средний обязательный уровень WIN-0UOTFKKVN1S\User ApplicationFrameHost.exe C:\Windows\system32\ApplicationFrameHost.exe C:\Windows\system32\ApplicationFrameHost.exe -Embedding Microsoft Corporation 10.0.14393.0 (rs1_release.160715-1616) Application Frame Host 131795770645379722 0x7ff6aa270000 61440 C:\Windows\system32\ApplicationFrameHost.exe 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Application Frame Host 131795770645379722 0x7ffabb490000 512000 C:\Windows\System32\TWINAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation twinapi 131795770645379722 0x7ffac0bf0000 3559424 C:\Windows\System32\ActXPrxy.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation ActiveX Interface Marshaling Library 131795770645379722 0x7ffac3cb0000 2772992 C:\Windows\SYSTEM32\iertutil.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служебная программа времени выполнения для Internet Explorer 131795770645379722 0x7ffac5240000 1114112 C:\Windows\System32\ApplicationFrame.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Фрейм приложения 131795770645379722 0x7ffac5ce0000 1744896 C:\Windows\system32\UIAutomationCore.DLL 7.2.14393.0 (rs1_release.160715-1616) Microsoft Corporation Основные автоматические компоненты Microsoft UI 131795770645379722 0x7ffac6bd0000 413696 C:\Windows\system32\OLEACC.dll 7.2.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Active Accessibility Core Component 131795770645379722 0x7ffac6f50000 5632000 C:\Windows\System32\d2d1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека Microsoft D2D 131795770645379722 0x7ffac7580000 1077248 C:\Windows\SYSTEM32\mrmcorer.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Windows MRM 131795770645379722 0x7ffac7fc0000 2674688 C:\Windows\system32\D3D10Warp.dll 10.0.14393.576 (rs1_release_inmarket.161208-2252) Microsoft Corporation Direct3D 10 Rasterizer 131795770645379722 0x7ffac88a0000 2842624 C:\Windows\System32\d3d11.dll 10.0.14393.953 (rs1_release_inmarket.170303-1614) Microsoft Corporation Direct3D 11 Runtime 131795770645379722 0x7ffac9ec0000 294912 C:\Windows\System32\UIAnimation.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Animation Manager 131795770645379722 0x7ffac9f50000 1736704 C:\Windows\system32\windowscodecs.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Microsoft Windows Codecs Library 131795770645379722 0x7ffaca340000 1593344 C:\Windows\System32\PROPSYS.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Система страниц свойств (Майкрософт) 131795770645379722 0x7ffaca570000 421888 C:\Windows\system32\Bcp47Langs.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation BCP47 Language Classes 131795770645379722 0x7ffaca5e0000 155648 C:\Windows\System32\dwmapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Интерфейс API диспетчера окон рабочего стола (Майкрософт) 131795770645379722 0x7ffaca770000 1380352 C:\Windows\System32\dcomp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft DirectComposition Library 131795770645379722 0x7ffacaf00000 610304 C:\Windows\System32\UxTheme.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека тем UxTheme (Microsoft) 131795770645379722 0x7ffacb1e0000 1163264 C:\Windows\System32\twinapi.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation twinapi.appcore 131795770645379722 0x7ffacb3f0000 163840 C:\Windows\System32\DEVOBJ.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Device Information Set DLL 131795770645379722 0x7ffacb780000 651264 C:\Windows\System32\dxgi.dll 10.0.14393.953 (rs1_release_inmarket.170303-1614) Microsoft Corporation DirectX Graphics Infrastructure 131795770645379722 0x7ffacbe40000 126976 C:\Windows\system32\USERENV.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Userenv 131795770645379722 0x7ffacc520000 622592 C:\Windows\SYSTEM32\sxs.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Fusion 2.5 131795770645379722 0x7ffacc620000 176128 C:\Windows\System32\bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795770645379722 0x7ffacc6e0000 61440 C:\Windows\System32\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795770645379722 0x7ffacc6f0000 311296 C:\Windows\System32\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795770645379722 0x7ffacc740000 81920 C:\Windows\System32\profapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Profile Basic API 131795770645379722 0x7ffacc760000 65536 C:\Windows\System32\MSASN1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ASN.1 Runtime APIs 131795770645379722 0x7ffacc8f0000 1003520 C:\Windows\System32\ucrtbase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645379722 0x7ffacc9f0000 434176 C:\Windows\System32\bcryptPrimitives.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Cryptographic Primitives Library 131795770645379722 0x7ffacca60000 122880 C:\Windows\System32\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795770645379722 0x7ffaccae0000 692224 C:\Windows\System32\SHCORE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795770645379722 0x7ffaccb90000 7180288 C:\Windows\System32\windows.storage.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API хранения Microsoft WinRT 131795770645379722 0x7ffacd270000 2215936 C:\Windows\System32\KERNELBASE.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645379722 0x7ffacd490000 1871872 C:\Windows\System32\CRYPT32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API32 криптографии 131795770645379722 0x7ffacd710000 638976 C:\Windows\System32\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645379722 0x7ffacd7b0000 270336 C:\Windows\System32\cfgmgr32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Configuration Manager DLL 131795770645379722 0x7ffacd810000 22056960 C:\Windows\System32\SHELL32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Общая библиотека оболочки Windows 131795770645379722 0x7ffaced20000 782336 C:\Windows\System32\OLEAUT32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795770645379722 0x7ffacee50000 1183744 C:\Windows\System32\RPCRT4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795770645379722 0x7ffacef90000 647168 C:\Windows\System32\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795770645379722 0x7ffacf030000 651264 C:\Windows\System32\clbcatq.dll 2001.12.10941.16384 (rs1_release.160715-1616) Microsoft Corporation COM+ Configuration Catalog 131795770645379722 0x7ffacf0d0000 704512 C:\Windows\System32\KERNEL32.DLL 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645379722 0x7ffacf1e0000 1417216 C:\Windows\System32\MSCTF.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Серверная библиотека MSCTF 131795770645379722 0x7ffacf770000 212992 C:\Windows\System32\GDI32.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation GDI Client DLL 131795770645379722 0x7ffacf890000 188416 C:\Windows\System32\IMM32.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Multi-User Windows IMM32 API Client DLL 131795770645379722 0x7ffacf8c0000 1462272 C:\Windows\System32\USER32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795770645379722 0x7ffacfb30000 2916352 C:\Windows\System32\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795770645379722 0x7ffacfe20000 663552 C:\Windows\System32\advapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795770645379722 0x7ffad01b0000 335872 C:\Windows\System32\SHLWAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека небольших программ оболочки 131795770645379722 0x7ffad0210000 364544 C:\Windows\System32\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795770645379722 0x7ffad0270000 1908736 C:\Windows\SYSTEM32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 43 5952 4928 41 00000000:0031f1da 131765778883326814 0 1 0 Обязательная метка\Низкий обязательный уровень WIN-0UOTFKKVN1S\User utorrentie.exe C:\Users\User\AppData\Roaming\uTorrent\updates\3.5.4_44498\utorrentie.exe "C:\Users\User\AppData\Roaming\uTorrent\updates\3.5.4_44498\utorrentie.exe" uTorrent_4928_02D54150_1240996307 µTorrent4823DF041B09 uTorrent BitTorrent Inc. 1.0.0 WebHelper 131795770645379833 0x1180000 417792 C:\Users\User\AppData\Roaming\uTorrent\updates\3.5.4_44498\utorrentie.exe 1.0.0 BitTorrent Inc. WebHelper 131795770645379833 0x5c020000 335872 C:\Windows\System32\wow64.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation Win32 Emulation on NT64 131795770645379833 0x5c080000 487424 C:\Windows\System32\wow64win.dll 10.0.14393.1884 (rs1_release.171101-1233) Microsoft Corporation Wow64 Console and Win32 API Logging 131795770645379833 0x5c100000 40960 C:\Windows\System32\wow64cpu.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation AMD64 Wow64 CPU 131795770645379833 0x63490000 221184 C:\Windows\SysWOW64\dinput8.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft DirectInput 131795770645379833 0x634d0000 561152 C:\Windows\SysWOW64\DSOUND.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DirectSound 131795770645379833 0x63560000 23334912 C:\Windows\SysWOW64\Macromed\Flash\Flash.ocx 29,0,0,140 Adobe Systems, Inc. Adobe Flash Player 29.0 r0 131795770645379833 0x64d00000 5079040 C:\Windows\SysWOW64\d2d1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека Microsoft D2D 131795770645379833 0x651e0000 20537344 C:\Windows\SysWOW64\mshtml.dll 11.00.14393.447 (rs1_release_inmarket.161102-0100) Microsoft Corporation Средство просмотра HTML Microsoft® 131795770645379833 0x66580000 12247040 C:\Windows\SysWOW64\ieframe.dll 11.00.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Браузер 131795770645379833 0x6b670000 212992 C:\Windows\SysWOW64\mlang.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL многоязыковой поддержки 131795770645379833 0x6b6b0000 36864 C:\Windows\SysWOW64\atlthunk.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation atlthunk.dll 131795770645379833 0x6c290000 987136 C:\Windows\SysWOW64\twinapi.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation twinapi.appcore 131795770645379833 0x6c390000 1126400 C:\Windows\SysWOW64\dcomp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft DirectComposition Library 131795770645379833 0x6c4b0000 278528 C:\Windows\SysWOW64\dataexchange.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation Data exchange 131795770645379833 0x6c540000 483328 C:\Windows\SysWOW64\webio.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API протоколов передачи по Веб 131795770645379833 0x6c5c0000 1384448 C:\Windows\SysWOW64\UIAutomationCore.DLL 7.2.14393.0 (rs1_release.160715-1616) Microsoft Corporation Основные автоматические компоненты Microsoft UI 131795770645379833 0x6c720000 2318336 C:\Windows\SysWOW64\d3d10warp.dll 10.0.14393.576 (rs1_release_inmarket.161208-2252) Microsoft Corporation Direct3D 10 Rasterizer 131795770645379833 0x6c960000 57344 C:\Windows\SysWOW64\msimtf.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Active IMM Server DLL 131795770645379833 0x6c970000 3698688 C:\Windows\SysWOW64\jscript9.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft ® JScript 131795770645379833 0x6cd00000 69632 C:\Windows\SysWOW64\WLDP.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Политика блокировки Windows 131795770645379833 0x6cd20000 135168 C:\Windows\SysWOW64\srpapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL программных интерфейсов (API) поставщика общих ресурсов 131795770645379833 0x6cda0000 528384 C:\Windows\SysWOW64\sxs.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Fusion 2.5 131795770645379833 0x6d080000 151552 C:\Windows\SysWOW64\cryptnet.dll 10.0.14393.2035 (rs1_release_inmarket.180110-1910) Microsoft Corporation Crypto Network Related API 131795770645379833 0x6d0b0000 847872 C:\Windows\SysWOW64\wintypes.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL основных типов Windows 131795770645379833 0x6fd30000 139264 C:\Windows\SysWOW64\DEVOBJ.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Device Information Set DLL 131795770645379833 0x6fd60000 360448 C:\Windows\SysWOW64\MMDevApi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation MMDevice API 131795770645379833 0x6fdc0000 507904 C:\Windows\SysWOW64\AUDIOSES.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Сеанс обработки звука 131795770645379833 0x6fe90000 544768 C:\Windows\SysWOW64\mscms.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL-библиотека системы сопоставления цветов Майкрософт 131795770645379833 0x70340000 536576 C:\Windows\SysWOW64\dxgi.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation DirectX Graphics Infrastructure 131795770645379833 0x703d0000 2056192 C:\Windows\SysWOW64\DWrite.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Службы Microsoft DirectX Typography 131795770645379833 0x70640000 1499136 C:\Windows\SysWOW64\windowscodecs.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Microsoft Windows Codecs Library 131795770645379833 0x707b0000 110592 C:\Windows\SysWOW64\ncryptsslp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft SChannel Provider 131795770645379833 0x707f0000 2293760 C:\Windows\SysWOW64\d3d11.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation Direct3D 11 Runtime 131795770645379833 0x70a80000 409600 C:\Windows\SysWOW64\schannel.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик безопасности TLS/SSL 131795770645379833 0x70b40000 69632 C:\Windows\SysWOW64\mskeyprotect.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик защиты ключей (Майкрософт) 131795770645379833 0x70ca0000 45056 C:\Windows\SysWOW64\NETUTILS.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API Helpers DLL 131795770645379833 0x70cc0000 65536 C:\Windows\SysWOW64\ondemandconnroutehelper.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation On Demand Connctiond Route Helper 131795770645379833 0x70e60000 176128 C:\Windows\SysWOW64\NTASN1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft ASN.1 API 131795770645379833 0x71140000 77824 C:\Windows\SysWOW64\NETAPI32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API DLL 131795770645379833 0x71610000 77824 C:\Windows\SysWOW64\dhcpcsvc6.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиент DHCPv6 131795770645379833 0x725e0000 2273280 C:\Windows\SysWOW64\iertutil.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служебная программа времени выполнения для Internet Explorer 131795770645379833 0x728e0000 1372160 C:\Windows\SysWOW64\PROPSYS.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Система страниц свойств (Майкрософт) 131795770645379833 0x72b90000 126976 C:\Windows\SysWOW64\dwmapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Интерфейс API диспетчера окон рабочего стола (Майкрософт) 131795770645379833 0x72cc0000 1658880 C:\Windows\SysWOW64\urlmon.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширения OLE32 для Win32 131795770645379833 0x73a40000 32768 C:\Windows\SysWOW64\WINNSI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Network Store Information RPC interface 131795770645379833 0x73a50000 299008 C:\Windows\SysWOW64\fwpuclnt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API пользовательского режима FWP/IPsec 131795770645379833 0x73aa0000 32768 C:\Windows\SysWOW64\DPAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Data Protection API 131795770645379833 0x73ab0000 32768 C:\Windows\SysWOW64\rasadhlp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Remote Access AutoDial Helper 131795770645379833 0x73ac0000 81920 C:\Windows\SysWOW64\dhcpcsvc.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служба DHCP-клиента 131795770645379833 0x73ae0000 40960 C:\Windows\SysWOW64\Secur32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Security Support Provider Interface 131795770645379833 0x73ef0000 24576 C:\Windows\SysWOW64\MSIMG32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation GDIEXT Client DLL 131795770645379833 0x73f00000 192512 C:\Windows\SysWOW64\IPHLPAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API вспомогательного приложения IP 131795770645379833 0x73f30000 512000 C:\Windows\SysWOW64\DNSAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Динамическая библиотека API DNS-клиента 131795770645379833 0x73ff0000 319488 C:\Windows\SysWOW64\mswsock.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширение поставщика службы API Microsoft Windows Sockets 2.0 131795770645379833 0x74060000 192512 C:\Windows\SysWOW64\rsaenh.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Enhanced Cryptographic Provider 131795770645379833 0x74110000 479232 C:\Windows\SysWOW64\uxtheme.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека тем UxTheme (Microsoft) 131795770645379833 0x74190000 110592 C:\Windows\SysWOW64\bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795770645379833 0x741b0000 77824 C:\Windows\SysWOW64\CRYPTSP.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Cryptographic Service Provider API 131795770645379833 0x741f0000 143360 C:\Windows\SysWOW64\WINMMBASE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base Multimedia Extension API DLL 131795770645379833 0x74230000 147456 C:\Windows\SysWOW64\WINMM.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation MCI API DLL 131795770645379833 0x74260000 2514944 C:\Windows\SysWOW64\WININET.dll 11.00.14393.447 (rs1_release_inmarket.161102-0100) Microsoft Corporation Расширения Интернета для Win32 131795770645379833 0x744d0000 2138112 C:\Windows\WinSxS\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.14393.953_none_89c2555adb023171\comctl32.dll 6.10 (rs1_release_inmarket.170303-1614) Microsoft Corporation Библиотека элементов управления взаимодействия с пользователем 131795770645379833 0x746e0000 32768 C:\Windows\SysWOW64\VERSION.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Version Checking and File Installation Libraries 131795770645379833 0x746f0000 106496 C:\Windows\SysWOW64\USERENV.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Userenv 131795770645379833 0x74730000 598016 C:\Windows\SysWOW64\apphelp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиентская библиотека совместимости приложений 131795770645379833 0x747d0000 40960 C:\Windows\SysWOW64\CRYPTBASE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base cryptographic API DLL 131795770645379833 0x747e0000 126976 C:\Windows\SysWOW64\SspiCli.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Security Support Provider Interface 131795770645379833 0x74800000 151552 C:\Windows\SysWOW64\IMM32.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Multi-User Windows IMM32 API Client DLL 131795770645379833 0x74910000 2170880 C:\Windows\SysWOW64\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795770645379833 0x74b30000 53248 C:\Windows\SysWOW64\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795770645379833 0x74b60000 790528 C:\Windows\SysWOW64\RPCRT4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795770645379833 0x74c30000 1417216 C:\Windows\SysWOW64\gdi32full.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation GDI Client DLL 131795770645379833 0x74da0000 778240 C:\Windows\SysWOW64\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795770645379833 0x74e60000 557056 C:\Windows\SysWOW64\shcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795770645379833 0x74ef0000 540672 C:\Windows\SysWOW64\clbcatq.dll 2001.12.10941.16384 (rs1_release.160715-1616) Microsoft Corporation COM+ Configuration Catalog 131795770645379833 0x74f80000 278528 C:\Windows\SysWOW64\WINTRUST.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation Microsoft Trust Verification APIs 131795770645379833 0x74fd0000 405504 C:\Windows\SysWOW64\WS2_32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation 32-разрядная библиотека Windows Socket 2.0 131795770645379833 0x75040000 282624 C:\Windows\SysWOW64\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795770645379833 0x75090000 1265664 C:\Windows\SysWOW64\MSCTF.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Серверная библиотека MSCTF 131795770645379833 0x751d0000 57344 C:\Windows\SysWOW64\MSASN1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ASN.1 Runtime APIs 131795770645379833 0x751e0000 1708032 C:\Windows\SysWOW64\KERNELBASE.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645379833 0x75390000 266240 C:\Windows\SysWOW64\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795770645379833 0x753e0000 1560576 C:\Windows\SysWOW64\CRYPT32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API32 криптографии 131795770645379833 0x75560000 487424 C:\Windows\SysWOW64\advapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795770645379833 0x756c0000 5693440 C:\Windows\SysWOW64\windows.storage.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API хранения Microsoft WinRT 131795770645379833 0x75c30000 372736 C:\Windows\SysWOW64\coml2.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft COM for Windows 131795770645379833 0x75c90000 286720 C:\Windows\SysWOW64\shlwapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека небольших программ оболочки 131795770645379833 0x75ce0000 20811776 C:\Windows\SysWOW64\SHELL32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Общая библиотека оболочки Windows 131795770645379833 0x774d0000 86016 C:\Windows\SysWOW64\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795770645379833 0x774f0000 61440 C:\Windows\SysWOW64\profapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Profile Basic API 131795770645379833 0x77560000 1437696 C:\Windows\SysWOW64\USER32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795770645379833 0x776c0000 368640 C:\Windows\SysWOW64\bcryptPrimitives.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation Windows Cryptographic Primitives Library 131795770645379833 0x77780000 503808 C:\Windows\SysWOW64\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645379833 0x77800000 606208 C:\Windows\SysWOW64\OLEAUT32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795770645379833 0x77ac0000 966656 C:\Windows\SysWOW64\ole32.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft OLE для Windows 131795770645379833 0x77bb0000 176128 C:\Windows\SysWOW64\GDI32.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation GDI Client DLL 131795770645379833 0x77cd0000 221184 C:\Windows\SysWOW64\cfgmgr32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Configuration Manager DLL 131795770645379833 0x77d10000 28672 C:\Windows\SysWOW64\NSI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation NSI User-mode interface DLL 131795770645379833 0x77d20000 1585152 C:\Windows\SysWOW64\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 131795770645379833 0x7ffad0270000 1908736 C:\Windows\SYSTEM32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 44 5800 664 6 00000000:0031f1da 131765779120650795 0 0 1 Обязательная метка\Средний обязательный уровень WIN-0UOTFKKVN1S\User DllHost.exe C:\Windows\system32\DllHost.exe C:\Windows\system32\DllHost.exe /Processid:{49F6E667-6658-4BD1-9DE9-6AF87F9FAF85} Microsoft Corporation 10.0.14393.0 (rs1_release.160715-1616) COM Surrogate 131795770645379938 0x7ff7a2280000 36864 C:\Windows\system32\DllHost.exe 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation COM Surrogate 131795770645379938 0x7ffac3840000 3088384 C:\Windows\SYSTEM32\esent.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширяемая подсистема хранения данных ESE для Microsoft(R) Windows(R) 131795770645379938 0x7ffac3b80000 286720 C:\Windows\system32\indexeddbserver.dll 10.0.14393.2189 (rs1_release.180329-1711) Microsoft Corporation IndexedDb host 131795770645379938 0x7ffac3cb0000 2772992 C:\Windows\system32\iertutil.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служебная программа времени выполнения для Internet Explorer 131795770645379938 0x7ffacaf00000 610304 C:\Windows\system32\uxtheme.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека тем UxTheme (Microsoft) 131795770645379938 0x7ffacc170000 45056 C:\Windows\system32\CRYPTBASE.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base cryptographic API DLL 131795770645379938 0x7ffacc6e0000 61440 C:\Windows\System32\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795770645379938 0x7ffacc6f0000 311296 C:\Windows\System32\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795770645379938 0x7ffacc740000 81920 C:\Windows\System32\profapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Profile Basic API 131795770645379938 0x7ffacc8f0000 1003520 C:\Windows\System32\ucrtbase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645379938 0x7ffacc9f0000 434176 C:\Windows\System32\bcryptPrimitives.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Cryptographic Primitives Library 131795770645379938 0x7ffacca60000 122880 C:\Windows\System32\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795770645379938 0x7ffaccae0000 692224 C:\Windows\System32\shcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795770645379938 0x7ffaccb90000 7180288 C:\Windows\System32\windows.storage.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API хранения Microsoft WinRT 131795770645379938 0x7ffacd270000 2215936 C:\Windows\System32\KERNELBASE.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645379938 0x7ffacd710000 638976 C:\Windows\System32\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645379938 0x7ffaced20000 782336 C:\Windows\System32\OLEAUT32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795770645379938 0x7ffacee50000 1183744 C:\Windows\System32\RPCRT4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795770645379938 0x7ffacef90000 647168 C:\Windows\System32\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795770645379938 0x7ffacf030000 651264 C:\Windows\System32\clbcatq.dll 2001.12.10941.16384 (rs1_release.160715-1616) Microsoft Corporation COM+ Configuration Catalog 131795770645379938 0x7ffacf0d0000 704512 C:\Windows\System32\KERNEL32.DLL 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645379938 0x7ffacf770000 212992 C:\Windows\System32\GDI32.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation GDI Client DLL 131795770645379938 0x7ffacf890000 188416 C:\Windows\System32\IMM32.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Multi-User Windows IMM32 API Client DLL 131795770645379938 0x7ffacf8c0000 1462272 C:\Windows\System32\user32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795770645379938 0x7ffacfb30000 2916352 C:\Windows\System32\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795770645379938 0x7ffacfe20000 663552 C:\Windows\System32\advapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795770645379938 0x7ffad01b0000 335872 C:\Windows\System32\shlwapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека небольших программ оболочки 131795770645379938 0x7ffad0210000 364544 C:\Windows\System32\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795770645379938 0x7ffad0270000 1908736 C:\Windows\SYSTEM32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 45 340 4928 41 00000000:0031f1da 131765800389528045 0 1 0 Обязательная метка\Низкий обязательный уровень WIN-0UOTFKKVN1S\User utorrentie.exe C:\Users\User\AppData\Roaming\uTorrent\updates\3.5.4_44498\utorrentie.exe "C:\Users\User\AppData\Roaming\uTorrent\updates\3.5.4_44498\utorrentie.exe" uTorrent_4928_02D54870_1839591030 µTorrent4823DF041B09 uTorrent BitTorrent Inc. 1.0.0 WebHelper 131795770645380038 0x1180000 417792 C:\Users\User\AppData\Roaming\uTorrent\updates\3.5.4_44498\utorrentie.exe 1.0.0 BitTorrent Inc. WebHelper 131795770645380038 0x5c020000 335872 C:\Windows\System32\wow64.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation Win32 Emulation on NT64 131795770645380038 0x5c080000 487424 C:\Windows\System32\wow64win.dll 10.0.14393.1884 (rs1_release.171101-1233) Microsoft Corporation Wow64 Console and Win32 API Logging 131795770645380038 0x5c100000 40960 C:\Windows\System32\wow64cpu.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation AMD64 Wow64 CPU 131795770645380038 0x60750000 1556480 C:\Program Files (x86)\360\Total Security\safemon\safemon.dll 8, 4, 0, 1420 Qihu 360 Software Co., Ltd. 360 Internet Security Internet Protection 131795770645380038 0x63490000 221184 C:\Windows\SysWOW64\dinput8.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft DirectInput 131795770645380038 0x634d0000 561152 C:\Windows\SysWOW64\DSOUND.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DirectSound 131795770645380038 0x63560000 23334912 C:\Windows\SysWOW64\Macromed\Flash\Flash.ocx 29,0,0,140 Adobe Systems, Inc. Adobe Flash Player 29.0 r0 131795770645380038 0x64d00000 5079040 C:\Windows\SysWOW64\d2d1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека Microsoft D2D 131795770645380038 0x651e0000 20537344 C:\Windows\SysWOW64\mshtml.dll 11.00.14393.447 (rs1_release_inmarket.161102-0100) Microsoft Corporation Средство просмотра HTML Microsoft® 131795770645380038 0x66580000 12247040 C:\Windows\SysWOW64\ieframe.dll 11.00.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Браузер 131795770645380038 0x6b670000 212992 C:\Windows\SysWOW64\mlang.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL многоязыковой поддержки 131795770645380038 0x6b6b0000 36864 C:\Windows\SysWOW64\atlthunk.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation atlthunk.dll 131795770645380038 0x6c290000 987136 C:\Windows\SysWOW64\twinapi.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation twinapi.appcore 131795770645380038 0x6c390000 1126400 C:\Windows\SysWOW64\dcomp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft DirectComposition Library 131795770645380038 0x6c4b0000 278528 C:\Windows\SysWOW64\dataexchange.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation Data exchange 131795770645380038 0x6c540000 483328 C:\Windows\SysWOW64\webio.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API протоколов передачи по Веб 131795770645380038 0x6c5c0000 1384448 C:\Windows\SysWOW64\UIAutomationCore.DLL 7.2.14393.0 (rs1_release.160715-1616) Microsoft Corporation Основные автоматические компоненты Microsoft UI 131795770645380038 0x6c720000 2318336 C:\Windows\SysWOW64\d3d10warp.dll 10.0.14393.576 (rs1_release_inmarket.161208-2252) Microsoft Corporation Direct3D 10 Rasterizer 131795770645380038 0x6c960000 57344 C:\Windows\SysWOW64\msimtf.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Active IMM Server DLL 131795770645380038 0x6c970000 3698688 C:\Windows\SysWOW64\jscript9.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft ® JScript 131795770645380038 0x6cd00000 69632 C:\Windows\SysWOW64\WLDP.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Политика блокировки Windows 131795770645380038 0x6cd20000 135168 C:\Windows\SysWOW64\srpapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL программных интерфейсов (API) поставщика общих ресурсов 131795770645380038 0x6cda0000 528384 C:\Windows\SysWOW64\sxs.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Fusion 2.5 131795770645380038 0x6d080000 151552 C:\Windows\SysWOW64\cryptnet.dll 10.0.14393.2035 (rs1_release_inmarket.180110-1910) Microsoft Corporation Crypto Network Related API 131795770645380038 0x6d0b0000 847872 C:\Windows\SysWOW64\wintypes.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL основных типов Windows 131795770645380038 0x6fd30000 139264 C:\Windows\SysWOW64\DEVOBJ.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Device Information Set DLL 131795770645380038 0x6fd60000 360448 C:\Windows\SysWOW64\MMDevApi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation MMDevice API 131795770645380038 0x6fdc0000 507904 C:\Windows\SysWOW64\AUDIOSES.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Сеанс обработки звука 131795770645380038 0x6fe90000 544768 C:\Windows\SysWOW64\mscms.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL-библиотека системы сопоставления цветов Майкрософт 131795770645380038 0x70340000 536576 C:\Windows\SysWOW64\dxgi.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation DirectX Graphics Infrastructure 131795770645380038 0x703d0000 2056192 C:\Windows\SysWOW64\DWrite.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Службы Microsoft DirectX Typography 131795770645380038 0x70640000 1499136 C:\Windows\SysWOW64\windowscodecs.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Microsoft Windows Codecs Library 131795770645380038 0x707b0000 110592 C:\Windows\SysWOW64\ncryptsslp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft SChannel Provider 131795770645380038 0x707f0000 2293760 C:\Windows\SysWOW64\d3d11.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation Direct3D 11 Runtime 131795770645380038 0x70a40000 81920 C:\Windows\SysWOW64\NLAapi.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Network Location Awareness 2 131795770645380038 0x70a60000 90112 C:\Windows\SysWOW64\pnrpnsp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик пространства имен PNRP 131795770645380038 0x70a80000 409600 C:\Windows\SysWOW64\schannel.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик безопасности TLS/SSL 131795770645380038 0x70b40000 69632 C:\Windows\SysWOW64\mskeyprotect.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик защиты ключей (Майкрософт) 131795770645380038 0x70c00000 49152 C:\Windows\SysWOW64\winrnr.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation LDAP RnR Provider DLL 131795770645380038 0x70c10000 73728 C:\Windows\SysWOW64\napinsp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик оболочки совместимости для имен электронной почты 131795770645380038 0x70c30000 114688 C:\Windows\SysWOW64\srvcli.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Server Service Client DLL 131795770645380038 0x70c50000 319488 C:\Windows\SysWOW64\Ninput.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Pen and Touch Input Component 131795770645380038 0x70ca0000 45056 C:\Windows\SysWOW64\NETUTILS.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API Helpers DLL 131795770645380038 0x70cc0000 65536 C:\Windows\SysWOW64\ondemandconnroutehelper.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation On Demand Connctiond Route Helper 131795770645380038 0x70e60000 176128 C:\Windows\SysWOW64\NTASN1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft ASN.1 API 131795770645380038 0x71140000 77824 C:\Windows\SysWOW64\NETAPI32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API DLL 131795770645380038 0x71610000 77824 C:\Windows\SysWOW64\dhcpcsvc6.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиент DHCPv6 131795770645380038 0x725e0000 2273280 C:\Windows\SysWOW64\iertutil.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служебная программа времени выполнения для Internet Explorer 131795770645380038 0x728e0000 1372160 C:\Windows\SysWOW64\PROPSYS.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Система страниц свойств (Майкрософт) 131795770645380038 0x72b90000 126976 C:\Windows\SysWOW64\dwmapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Интерфейс API диспетчера окон рабочего стола (Майкрософт) 131795770645380038 0x72cc0000 1658880 C:\Windows\SysWOW64\urlmon.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширения OLE32 для Win32 131795770645380038 0x73a40000 32768 C:\Windows\SysWOW64\WINNSI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Network Store Information RPC interface 131795770645380038 0x73a50000 299008 C:\Windows\SysWOW64\fwpuclnt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API пользовательского режима FWP/IPsec 131795770645380038 0x73aa0000 32768 C:\Windows\SysWOW64\DPAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Data Protection API 131795770645380038 0x73ab0000 32768 C:\Windows\SysWOW64\rasadhlp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Remote Access AutoDial Helper 131795770645380038 0x73ac0000 81920 C:\Windows\SysWOW64\dhcpcsvc.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служба DHCP-клиента 131795770645380038 0x73ae0000 40960 C:\Windows\SysWOW64\Secur32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Security Support Provider Interface 131795770645380038 0x73ef0000 24576 C:\Windows\SysWOW64\MSIMG32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation GDIEXT Client DLL 131795770645380038 0x73f00000 192512 C:\Windows\SysWOW64\IPHLPAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API вспомогательного приложения IP 131795770645380038 0x73f30000 512000 C:\Windows\SysWOW64\DNSAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Динамическая библиотека API DNS-клиента 131795770645380038 0x73ff0000 319488 C:\Windows\SysWOW64\mswsock.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширение поставщика службы API Microsoft Windows Sockets 2.0 131795770645380038 0x74060000 192512 C:\Windows\SysWOW64\rsaenh.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Enhanced Cryptographic Provider 131795770645380038 0x74110000 479232 C:\Windows\SysWOW64\uxtheme.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека тем UxTheme (Microsoft) 131795770645380038 0x74190000 110592 C:\Windows\SysWOW64\bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795770645380038 0x741b0000 77824 C:\Windows\SysWOW64\CRYPTSP.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Cryptographic Service Provider API 131795770645380038 0x741f0000 143360 C:\Windows\SysWOW64\WINMMBASE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base Multimedia Extension API DLL 131795770645380038 0x74230000 147456 C:\Windows\SysWOW64\WINMM.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation MCI API DLL 131795770645380038 0x74260000 2514944 C:\Windows\SysWOW64\WININET.dll 11.00.14393.447 (rs1_release_inmarket.161102-0100) Microsoft Corporation Расширения Интернета для Win32 131795770645380038 0x744d0000 2138112 C:\Windows\WinSxS\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.14393.953_none_89c2555adb023171\comctl32.dll 6.10 (rs1_release_inmarket.170303-1614) Microsoft Corporation Библиотека элементов управления взаимодействия с пользователем 131795770645380038 0x746e0000 32768 C:\Windows\SysWOW64\VERSION.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Version Checking and File Installation Libraries 131795770645380038 0x746f0000 106496 C:\Windows\SysWOW64\USERENV.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Userenv 131795770645380038 0x74730000 598016 C:\Windows\SysWOW64\apphelp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиентская библиотека совместимости приложений 131795770645380038 0x747d0000 40960 C:\Windows\SysWOW64\CRYPTBASE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base cryptographic API DLL 131795770645380038 0x747e0000 126976 C:\Windows\SysWOW64\SspiCli.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Security Support Provider Interface 131795770645380038 0x74800000 151552 C:\Windows\SysWOW64\IMM32.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Multi-User Windows IMM32 API Client DLL 131795770645380038 0x74910000 2170880 C:\Windows\SysWOW64\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795770645380038 0x74b30000 53248 C:\Windows\SysWOW64\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795770645380038 0x74b60000 790528 C:\Windows\SysWOW64\RPCRT4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795770645380038 0x74c30000 1417216 C:\Windows\SysWOW64\gdi32full.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation GDI Client DLL 131795770645380038 0x74d90000 24576 C:\Windows\SysWOW64\PSAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Process Status Helper 131795770645380038 0x74da0000 778240 C:\Windows\SysWOW64\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795770645380038 0x74e60000 557056 C:\Windows\SysWOW64\shcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795770645380038 0x74ef0000 540672 C:\Windows\SysWOW64\clbcatq.dll 2001.12.10941.16384 (rs1_release.160715-1616) Microsoft Corporation COM+ Configuration Catalog 131795770645380038 0x74f80000 278528 C:\Windows\SysWOW64\WINTRUST.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation Microsoft Trust Verification APIs 131795770645380038 0x74fd0000 405504 C:\Windows\SysWOW64\WS2_32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation 32-разрядная библиотека Windows Socket 2.0 131795770645380038 0x75040000 282624 C:\Windows\SysWOW64\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795770645380038 0x75090000 1265664 C:\Windows\SysWOW64\MSCTF.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Серверная библиотека MSCTF 131795770645380038 0x751d0000 57344 C:\Windows\SysWOW64\MSASN1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ASN.1 Runtime APIs 131795770645380038 0x751e0000 1708032 C:\Windows\SysWOW64\KERNELBASE.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645380038 0x75390000 266240 C:\Windows\SysWOW64\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795770645380038 0x753e0000 1560576 C:\Windows\SysWOW64\CRYPT32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API32 криптографии 131795770645380038 0x75560000 487424 C:\Windows\SysWOW64\advapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795770645380038 0x756c0000 5693440 C:\Windows\SysWOW64\windows.storage.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API хранения Microsoft WinRT 131795770645380038 0x75c30000 372736 C:\Windows\SysWOW64\coml2.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft COM for Windows 131795770645380038 0x75c90000 286720 C:\Windows\SysWOW64\shlwapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека небольших программ оболочки 131795770645380038 0x75ce0000 20811776 C:\Windows\SysWOW64\SHELL32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Общая библиотека оболочки Windows 131795770645380038 0x774d0000 86016 C:\Windows\SysWOW64\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795770645380038 0x774f0000 61440 C:\Windows\SysWOW64\profapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Profile Basic API 131795770645380038 0x77560000 1437696 C:\Windows\SysWOW64\USER32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795770645380038 0x776c0000 368640 C:\Windows\SysWOW64\bcryptPrimitives.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation Windows Cryptographic Primitives Library 131795770645380038 0x77780000 503808 C:\Windows\SysWOW64\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645380038 0x77800000 606208 C:\Windows\SysWOW64\OLEAUT32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795770645380038 0x77ac0000 966656 C:\Windows\SysWOW64\ole32.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft OLE для Windows 131795770645380038 0x77bb0000 176128 C:\Windows\SysWOW64\GDI32.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation GDI Client DLL 131795770645380038 0x77cd0000 221184 C:\Windows\SysWOW64\cfgmgr32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Configuration Manager DLL 131795770645380038 0x77d10000 28672 C:\Windows\SysWOW64\NSI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation NSI User-mode interface DLL 131795770645380038 0x77d20000 1585152 C:\Windows\SysWOW64\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 131795770645380038 0x7ffad0270000 1908736 C:\Windows\SYSTEM32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 46 2736 3976 47 00000000:0031f1ab 131765800903010156 0 0 1 Обязательная метка\Высокий обязательный уровень WIN-0UOTFKKVN1S\User Taskmgr.exe C:\Windows\System32\Taskmgr.exe "C:\Windows\System32\Taskmgr.exe" /2 Microsoft® Windows® Operating System 1, 0, 0, 1 Task Manager 131795770645380149 0x7ff7c2a70000 1286144 C:\Windows\System32\Taskmgr.exe 1, 0, 0, 1 Microsoft® Windows® Operating System Task Manager 131795770645380149 0x7ffab2720000 606208 C:\Windows\System32\DUser.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows DirectUser Engine 131795770645380149 0x7ffab8190000 9191424 C:\Windows\System32\TwinUI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation TWINUI 131795770645380149 0x7ffabdbb0000 1736704 C:\Windows\System32\DUI70.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Подсистема DirectUI Windows 131795770645380149 0x7ffabdfa0000 393216 C:\Windows\System32\faultrep.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека отчетов о сбоях в пользовательском режиме Windows 131795770645380149 0x7ffabeb20000 385024 C:\Windows\System32\Windows.ApplicationModel.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows ApplicationModel API Server 131795770645380149 0x7ffac0bf0000 3559424 C:\Windows\System32\ActXPrxy.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation ActiveX Interface Marshaling Library 131795770645380149 0x7ffac21b0000 77824 C:\Windows\System32\srumapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation System Resource Usage Monitor API 131795770645380149 0x7ffac3cb0000 2772992 C:\Windows\SYSTEM32\iertutil.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служебная программа времени выполнения для Internet Explorer 131795770645380149 0x7ffac4000000 274432 C:\Windows\SYSTEM32\policymanager.dll 10.0.14393.2035 (rs1_release_inmarket.180110-1910) Microsoft Corporation Policy Manager DLL 131795770645380149 0x7ffac42a0000 659456 C:\Windows\System32\StateRepository.Core.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation StateRepository Core 131795770645380149 0x7ffac46d0000 4161536 C:\Windows\System32\Windows.StateRepository.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Сервер Windows StateRepository API Server 131795770645380149 0x7ffac4e70000 102400 C:\Windows\System32\samcli.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Security Accounts Manager Client DLL 131795770645380149 0x7ffac4ea0000 36864 C:\Windows\SYSTEM32\atlthunk.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation atlthunk.dll 131795770645380149 0x7ffac5350000 1765376 C:\Windows\System32\Windows.UI.Immersive.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation WINDOWS.UI.IMMERSIVE 131795770645380149 0x7ffac5630000 339968 C:\Windows\System32\thumbcache.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Кэш эскизов Майкрософт 131795770645380149 0x7ffac60e0000 221184 C:\Windows\System32\XmlLite.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft XmlLite Library 131795770645380149 0x7ffac6ac0000 835584 C:\Windows\System32\Windows.UI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Runtime UI Foundation DLL 131795770645380149 0x7ffac6bd0000 413696 C:\Windows\System32\OLEACC.dll 7.2.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Active Accessibility Core Component 131795770645380149 0x7ffac6c40000 2596864 C:\Windows\WinSxS\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.14393.953_none_42151e83c686086b\COMCTL32.dll 6.10 (rs1_release_inmarket.170303-1614) Microsoft Corporation Библиотека элементов управления взаимодействия с пользователем 131795770645380149 0x7ffac7580000 1077248 C:\Windows\SYSTEM32\MrmCoreR.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Windows MRM 131795770645380149 0x7ffac83d0000 106496 C:\Windows\SYSTEM32\dhcpcsvc.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служба DHCP-клиента 131795770645380149 0x7ffac83f0000 90112 C:\Windows\SYSTEM32\dhcpcsvc6.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиент DHCPv6 131795770645380149 0x7ffac8810000 45056 C:\Windows\SYSTEM32\WINNSI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Network Store Information RPC interface 131795770645380149 0x7ffac8dc0000 167936 C:\Windows\System32\dbgcore.DLL 10.0.14321.1024 (debuggers(dbg).160715-1616) Microsoft Windows Core Debugging Helpers 131795770645380149 0x7ffac8df0000 1646592 C:\Windows\System32\dbghelp.dll 10.0.14321.1024 (rs1_release.160715-1616) Microsoft Windows Image Helper 131795770645380149 0x7ffac90b0000 90112 C:\Windows\System32\wkscli.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Workstation Service Client DLL 131795770645380149 0x7ffac92e0000 1269760 C:\Windows\SYSTEM32\wintypes.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL основных типов Windows 131795770645380149 0x7ffac9f50000 1736704 C:\Windows\System32\WindowsCodecs.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Microsoft Windows Codecs Library 131795770645380149 0x7ffaca340000 1593344 C:\Windows\system32\propsys.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Система страниц свойств (Майкрософт) 131795770645380149 0x7ffaca4e0000 77824 C:\Windows\System32\WTSAPI32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Remote Desktop Session Host Server SDK APIs 131795770645380149 0x7ffaca570000 421888 C:\Windows\System32\Bcp47Langs.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation BCP47 Language Classes 131795770645380149 0x7ffaca5e0000 155648 C:\Windows\System32\dwmapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Интерфейс API диспетчера окон рабочего стола (Майкрософт) 131795770645380149 0x7ffaca610000 143360 C:\Windows\System32\SAMLIB.dll 10.0.14393.82 (rs1_release.160805-1735) Microsoft Corporation SAM Library DLL 131795770645380149 0x7ffacac60000 69632 C:\Windows\System32\credui.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Credential Manager User Interface 131795770645380149 0x7ffacadf0000 499712 C:\Windows\System32\apphelp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиентская библиотека совместимости приложений 131795770645380149 0x7ffacaf00000 610304 C:\Windows\System32\UxTheme.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека тем UxTheme (Microsoft) 131795770645380149 0x7ffacb140000 593920 C:\Windows\SYSTEM32\msvcp110_win.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Microsoft® STL110 C++ Runtime Library 131795770645380149 0x7ffacb1e0000 1163264 C:\Windows\System32\twinapi.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation twinapi.appcore 131795770645380149 0x7ffacb300000 364544 C:\Windows\SYSTEM32\VEEventDispatcher.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Visual Element Event dispatcher 131795770645380149 0x7ffacbd30000 229376 C:\Windows\System32\IPHLPAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API вспомогательного приложения IP 131795770645380149 0x7ffacbe20000 53248 C:\Windows\System32\netutils.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API Helpers DLL 131795770645380149 0x7ffacbe40000 126976 C:\Windows\System32\USERENV.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Userenv 131795770645380149 0x7ffacc5c0000 352256 C:\Windows\System32\WINSTA.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Winstation Library 131795770645380149 0x7ffacc620000 176128 C:\Windows\System32\bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795770645380149 0x7ffacc6e0000 61440 C:\Windows\System32\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795770645380149 0x7ffacc6f0000 311296 C:\Windows\System32\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795770645380149 0x7ffacc740000 81920 C:\Windows\System32\profapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Profile Basic API 131795770645380149 0x7ffacc8f0000 1003520 C:\Windows\System32\ucrtbase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645380149 0x7ffacc9f0000 434176 C:\Windows\System32\bcryptPrimitives.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Cryptographic Primitives Library 131795770645380149 0x7ffacca60000 122880 C:\Windows\System32\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795770645380149 0x7ffaccae0000 692224 C:\Windows\System32\shcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795770645380149 0x7ffaccb90000 7180288 C:\Windows\System32\windows.storage.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API хранения Microsoft WinRT 131795770645380149 0x7ffacd270000 2215936 C:\Windows\System32\KERNELBASE.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645380149 0x7ffacd710000 638976 C:\Windows\System32\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645380149 0x7ffacd7b0000 270336 C:\Windows\System32\cfgmgr32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Configuration Manager DLL 131795770645380149 0x7ffacd810000 22056960 C:\Windows\System32\SHELL32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Общая библиотека оболочки Windows 131795770645380149 0x7ffaced20000 782336 C:\Windows\System32\OLEAUT32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795770645380149 0x7ffacee50000 1183744 C:\Windows\System32\RPCRT4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795770645380149 0x7ffacef80000 32768 C:\Windows\System32\NSI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation NSI User-mode interface DLL 131795770645380149 0x7ffacef90000 647168 C:\Windows\System32\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795770645380149 0x7ffacf030000 651264 C:\Windows\System32\clbcatq.dll 2001.12.10941.16384 (rs1_release.160715-1616) Microsoft Corporation COM+ Configuration Catalog 131795770645380149 0x7ffacf0d0000 704512 C:\Windows\System32\KERNEL32.DLL 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645380149 0x7ffacf1e0000 1417216 C:\Windows\System32\MSCTF.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Серверная библиотека MSCTF 131795770645380149 0x7ffacf770000 212992 C:\Windows\System32\GDI32.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation GDI Client DLL 131795770645380149 0x7ffacf820000 434176 C:\Windows\System32\WS2_32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation 32-разрядная библиотека Windows Socket 2.0 131795770645380149 0x7ffacf890000 188416 C:\Windows\System32\IMM32.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Multi-User Windows IMM32 API Client DLL 131795770645380149 0x7ffacf8c0000 1462272 C:\Windows\System32\USER32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795770645380149 0x7ffacfb30000 2916352 C:\Windows\System32\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795770645380149 0x7ffacfe20000 663552 C:\Windows\System32\advapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795770645380149 0x7ffad0070000 1277952 C:\Windows\System32\ole32.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft OLE для Windows 131795770645380149 0x7ffad01b0000 335872 C:\Windows\System32\SHLWAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека небольших программ оболочки 131795770645380149 0x7ffad0210000 364544 C:\Windows\System32\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795770645380149 0x7ffad0270000 1908736 C:\Windows\SYSTEM32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 48 5448 664 6 00000000:0031f1da 131765800971792901 131795770924543695 0 1 Обязательная метка\Средний обязательный уровень WIN-0UOTFKKVN1S\User explorer.exe C:\Windows\explorer.exe C:\Windows\explorer.exe /factory,{75dff2b7-6936-4c06-a8bb-676a7b00b24b} -Embedding Microsoft Corporation 10.0.14393.0 (rs1_release.160715-1616) Проводник 49 6724 580 4 00000000:000003e7 131765803507001117 0 0 0 Обязательная метка\Обязательный уровень системы NT AUTHORITY\СИСТЕМА QHActiveDefense.exe C:\Program Files (x86)\360\Total Security\safemon\QHActiveDefense.exe "C:\Program Files (x86)\360\Total Security\safemon\QHActiveDefense.exe" Qihoo 360 Technology Co. Ltd. 10,0,0,1008 360 Total Security 131795770645381706 0xd0000 983040 C:\Program Files (x86)\360\Total Security\safemon\QHActiveDefense.exe 10,0,0,1008 Qihoo 360 Technology Co. Ltd. 360 Total Security 131795771117425875 0x400000 2830336 C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe 1.0 131795770645381706 0x3c80000 12288 C:\Windows\SysWOW64\sfc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows File Protection 131795770645381706 0x5c020000 335872 C:\Windows\System32\wow64.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation Win32 Emulation on NT64 131795770645381706 0x5c080000 487424 C:\Windows\System32\wow64win.dll 10.0.14393.1884 (rs1_release.171101-1233) Microsoft Corporation Wow64 Console and Win32 API Logging 131795770645381706 0x5c100000 40960 C:\Windows\System32\wow64cpu.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation AMD64 Wow64 CPU 131795770645381706 0x5fb90000 2736128 C:\Program Files (x86)\360\Total Security\deepscan\deepscan.dll 3, 5, 1, 2130 Qihu 360 Software Co., Ltd. 360 Total Security Cloud Security 131795770645381706 0x5fec0000 794624 C:\Windows\SysWOW64\wbem\fastprox.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation WMI Custom Marshaller 131795770645381706 0x5ffa0000 421888 C:\Windows\SysWOW64\wbemcomn.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation WMI 131795770645381706 0x60010000 53248 C:\Windows\SysWOW64\wbem\wbemprox.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation WMI 131795770645381706 0x60190000 475136 C:\Program Files (x86)\360\Total Security\safemon\360SafeCamera.tpi 2, 0, 0, 1031 QIHU 360 SOFTWARE CO. LIMITED 360 Total Security Proactive Defense 131795770645381706 0x60210000 1269760 C:\Program Files (x86)\360\Total Security\deepscan\jcloudscan.dll 1, 0, 0, 1012 360.cn 360安全卫士 移动云查询模块 131795770645381706 0x604a0000 196608 C:\Program Files (x86)\360\Total Security\ipc\appdext.dll 1, 0, 0, 1483 360.cn 360安全卫士 木马防火墙模块 131795770645381706 0x604e0000 188416 C:\Program Files (x86)\360\Total Security\ipc\DrvUtility.dll 1, 0, 0, 1081 Qihu 360 Software Co., Ltd. 360 Internet Security 2013 Proactive Defense 131795770645381706 0x60510000 409600 C:\Program Files (x86)\360\Total Security\SafeScan.dll 1, 0, 0, 1074 Qihoo 360 Technology Co. Ltd. 360 Scan Util Module 131795770645381706 0x60580000 204800 C:\Program Files (x86)\360\Total Security\ScanStub.dll 1, 0, 0, 1014 Qihoo 360 Technology Co. Ltd. 360 Scan Util Module 131795770645381706 0x605c0000 249856 C:\Program Files (x86)\360\Total Security\netmon\360gameidentify.dll 1, 0, 1, 1050 360.cn 360流量防火墙 游戏识别模块 131795770645381706 0x60600000 200704 C:\Program Files (x86)\360\Total Security\safemon\WDRecord.dll 1, 0, 1, 1130 Qihu 360 Software Co., Ltd. 360 Internet Security Internet Protection 131795770645381706 0x60640000 430080 C:\Program Files (x86)\360\Total Security\netmon\Netgm.dll 9,0,0,1005 360.cn 360流量防火墙 游戏模式判断模块 131795770645381706 0x608d0000 159744 C:\Program Files (x86)\360\Total Security\safemon\safemonhlp.dll 1, 0, 0, 1265 Qihu 360 Software Co., Ltd. 360 Internet Security Internet Protection 131795770645381706 0x60a50000 479232 C:\Program Files (x86)\360\Total Security\deepscan\DsSysRepair.dll 1, 0, 0, 1062 QIHU360 SOFTWARE CO. LIMITED 360 Total Security System Repair Module 131795770645381706 0x60ad0000 352256 C:\Program Files (x86)\360\Total Security\360Common.dll 7, 3, 0, 3233 360.cn 360安全衛士 基礎模塊 131795770645381706 0x60b30000 1712128 C:\Program Files (x86)\360\Total Security\safemon\360safemonpro.tpi 3, 1, 1, 3140 Qihu 360 Software Co., Ltd. 360 Internet Security Internet Protection 131795770645381706 0x60ce0000 581632 C:\Program Files (x86)\360\Total Security\dynlenv.dll 1, 1, 0, 1016 360.cn dynlenv Dynamic Link Library 131795770645381706 0x61000000 184320 C:\Program Files (x86)\360\Total Security\ipc\qutmipc.dll 7, 3, 0, 1267 360.cn 360安全卫士 木马防火墙模块 131795770645381706 0x61030000 262144 C:\Program Files (x86)\360\Total Security\safemon\safehmpg.dll 3, 0, 0, 1160 Qihu 360 Software Co., Ltd. 360 Internet Security Browser HomePage Protection 131795770645381706 0x610d0000 1097728 C:\Program Files (x86)\360\Total Security\SoftMgr\SomAdvUtils.dll 3, 1, 1, 2020 360.cn 360 Safeguard PC Boost 131795770645381706 0x61380000 315392 C:\Program Files (x86)\360\Total Security\safemon\360bsmon.tpi 6, 8, 0, 1248 Qihu 360 Software Co., Ltd. 360 Total Security Active Protection 131795770645381706 0x61480000 2191360 C:\Program Files (x86)\360\Total Security\deepscan\qex\qex.dll 4.1.13.3366 Qihu 360 Software Co., Ltd. 360 Internet Security 2017 Antivirus 131795770645381706 0x616a0000 331776 C:\Program Files (x86)\360\Total Security\safemon\SelfProtectAPI2.dll 7, 1, 1, 1033 Qihu 360 Software Co., Ltd. 360 Total Security Proactive Defense 131795770645381706 0x61700000 483328 C:\Program Files (x86)\360\Total Security\safemon\360procmon.dll 7, 1, 1, 1221 Qihu 360 Software Co., Ltd. 360 Total Security Proactive Defense 131795770645381706 0x61780000 335872 C:\Program Files (x86)\360\Total Security\ipc\netdefender.dll 1, 0, 0, 1129 Qihu 360 Software Co., Ltd. 360 Internet Security Internet Protection 131795770645381706 0x617e0000 897024 C:\Program Files (x86)\360\Total Security\ipc\appd.dll 7, 3, 6, 3113 Qihu 360 Software Co., Ltd. 360 Total Security Proactive Defense 131795770645381706 0x61a30000 512000 C:\Program Files (x86)\360\Total Security\safemon\360HipsPopWnd.dll 7,3,2,1211 Qihoo 360 Technology Co. Ltd. 360 Internet Security Proactive Defense 131795770645381706 0x61ab0000 495616 C:\Program Files (x86)\360\Total Security\ipc\fileMgr.dll 7, 3, 0, 1963 Qihu 360 Software Co., Ltd. 360 Total Security Proactive Defense 131795770645381706 0x61b30000 3350528 C:\Program Files (x86)\360\Total Security\SoftMgr\somkernl.dll 2, 1, 0, 1130 360.cn 360软件管家 131795770645381706 0x61e70000 614400 C:\Program Files (x86)\360\Total Security\ipc\ipcservice.dll 7, 1, 2, 1643 Qihu 360 Software Co., Ltd. 360 Total Security Proactive Defense 131795770645381706 0x61f10000 1458176 C:\Program Files (x86)\360\Total Security\deepscan\cloudcom2.dll 3, 3, 10, 1288 Qihu 360 Software Co., Ltd. 360 Total Security 131795770645381706 0x621a0000 458752 C:\Program Files (x86)\360\Total Security\ipc\yhregd.dll 7, 2, 0, 1903 Qihu 360 Software Co., Ltd. 360 Total Security Proactive Defense 131795770645381706 0x62280000 454656 C:\Program Files (x86)\360\Total Security\SoftMgr\360SoftMgrS.dll 2, 1, 6, 1490 360.cn 360软件管家 服务模块 131795770645381706 0x622f0000 520192 C:\Program Files (x86)\360\Total Security\deepscan\heavygate.dll 3, 8, 11, 1 Qihu 360 Software Co., Ltd. 360 Total Security Cloud Security 131795770645381706 0x62370000 602112 C:\Program Files (x86)\360\Total Security\360util.dll 1.0.0.1485 360.cn 360安全卫士 公共模块 131795770645381706 0x62410000 352256 C:\Program Files (x86)\360\Total Security\CrashReport.dll 7, 0, 0, 1000 360.cn 360杀毒 异常捕获程序 131795770645381706 0x62470000 405504 C:\Program Files (x86)\360\Total Security\deepscan\qutmload.dll 7, 2, 1, 1279 360.cn 360安全卫士 木马防火墙模块 131795770645381706 0x624e0000 315392 C:\Program Files (x86)\360\Total Security\ipc\360box.dll 2, 0, 0, 1043 360.cn 360隔离沙箱模块 131795770645381706 0x62540000 278528 C:\Program Files (x86)\360\Total Security\360conf.dll 1, 0, 0, 1014 Qihu 360 Software Co., Ltd. 360 Internet Security Base Module 131795770645381706 0x62590000 987136 C:\Program Files (x86)\360\Total Security\360base.dll 1, 0, 0, 1165 360.cn 360安全卫士 基础模块 131795770645381706 0x62690000 266240 C:\Program Files (x86)\360\Total Security\deepscan\BAPI.dll 2.0.0.1191 360.cn BAPI 131795770645381706 0x627d0000 249856 C:\Windows\SysWOW64\edputil.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служебная программа EDP 131795770645381706 0x62980000 376832 C:\Program Files (x86)\360\Total Security\360NetBase.dll 7, 25, 0, 76 360.cn 360安全卫士 网络基础模块 131795770645381706 0x62b50000 106496 C:\Program Files (x86)\360\Total Security\i18n\ru\deepscan\DsRes.dll 1,0,0,1012 Qihu 360 Software Co., Ltd. 360 Total Security Cloud Security Resource 131795770645381706 0x62b70000 208896 C:\Program Files (x86)\360\Total Security\safemon\gamemode.tpi 9,0,0,1001 QIHU 360 SOFTWARE CO. LIMITED 360 Total Security Game Mode Control 131795770645381706 0x67130000 86016 C:\Windows\SysWOW64\devenum.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Перечисление устройств. 131795770645381706 0x67690000 61440 C:\Windows\SysWOW64\sfc_os.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows File Protection 131795770645381706 0x676a0000 61440 C:\Program Files (x86)\360\Total Security\ipc\x64for32lib.dll 6, 8, 0, 1059 360.cn 360安全卫士 木马防火墙模块 131795770645381706 0x676b0000 32768 C:\Windows\SysWOW64\fltlib.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека фильтров 131795770645381706 0x6b6c0000 36864 C:\Windows\SysWOW64\msdmo.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DMO Runtime 131795770645381706 0x6b6d0000 102400 C:\Program Files (x86)\360\Total Security\i18n.dll 1, 0, 0, 1016 Qihu 360 Software Co., Ltd. 360 Total Security 131795770645381706 0x6bf00000 3715072 C:\Windows\SysWOW64\msi.dll 5.0.14393.2155 Microsoft Corporation Windows Installer 131795770645381706 0x6cd50000 106496 C:\Windows\SysWOW64\SAMLIB.dll 10.0.14393.82 (rs1_release.160805-1735) Microsoft Corporation SAM Library DLL 131795770645381706 0x6cf60000 569344 C:\Windows\SysWOW64\taskschd.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Task Scheduler COM API 131795770645381706 0x6d080000 151552 C:\Windows\SysWOW64\cryptnet.dll 10.0.14393.2035 (rs1_release_inmarket.180110-1910) Microsoft Corporation Crypto Network Related API 131795770645381706 0x6ea80000 860160 C:\Program Files (x86)\360\Total Security\deepscan\QVM\360QVM.dll 5.0.2.1003 Qihu 360 Software Co., Ltd. 360 Internet Security QVM Engine 131795770645381706 0x6fcd0000 151552 C:\Windows\SysWOW64\dbgcore.DLL 10.0.14321.1024 (debuggers(dbg).160715-1616) Microsoft Windows Core Debugging Helpers 131795770645381706 0x6fd30000 139264 C:\Windows\SysWOW64\DEVOBJ.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Device Information Set DLL 131795770645381706 0x700d0000 434176 C:\Windows\SysWOW64\WINSPOOL.DRV 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Драйвер диспетчера очереди Windows 131795770645381706 0x70140000 274432 C:\Windows\SysWOW64\WINSTA.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Winstation Library 131795770645381706 0x70210000 966656 C:\Program Files (x86)\360\Total Security\deepscan\ave\AVEngine.dll 1, 0, 0, 2016 Qihu 360 Software Co., Ltd. 360 Internet Security 2013 AntiVirus Engine 131795770645381706 0x70300000 208896 C:\Program Files (x86)\360\Total Security\deepscan\ave\AVEI.dll 1, 0, 0, 2003 Qihu 360 Software Co., Ltd. 360 Internet Security 2013 AntiVirus Engine 131795770645381706 0x707d0000 86016 C:\Windows\SysWOW64\SAMCLI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Security Accounts Manager Client DLL 131795770645381706 0x70a40000 81920 C:\Windows\SysWOW64\NLAapi.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Network Location Awareness 2 131795770645381706 0x70a60000 90112 C:\Windows\SysWOW64\pnrpnsp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик пространства имен PNRP 131795770645381706 0x70b70000 163840 C:\Windows\SysWOW64\ntmarta.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик Windows NT MARTA 131795770645381706 0x70c00000 49152 C:\Windows\SysWOW64\winrnr.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation LDAP RnR Provider DLL 131795770645381706 0x70c10000 73728 C:\Windows\SysWOW64\napinsp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик оболочки совместимости для имен электронной почты 131795770645381706 0x70c30000 114688 C:\Windows\SysWOW64\srvcli.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Server Service Client DLL 131795770645381706 0x70ca0000 45056 C:\Windows\SysWOW64\NETUTILS.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API Helpers DLL 131795770645381706 0x70cb0000 65536 C:\Windows\SysWOW64\wkscli.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Workstation Service Client DLL 131795770645381706 0x70fd0000 1331200 C:\Windows\SysWOW64\dbghelp.dll 10.0.14321.1024 (rs1_release.160715-1616) Microsoft Windows Image Helper 131795770645381706 0x71140000 77824 C:\Windows\SysWOW64\NETAPI32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API DLL 131795770645381706 0x71610000 77824 C:\Windows\SysWOW64\dhcpcsvc6.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиент DHCPv6 131795770645381706 0x725e0000 2273280 C:\Windows\SysWOW64\iertutil.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служебная программа времени выполнения для Internet Explorer 131795770645381706 0x728e0000 1372160 C:\Windows\SysWOW64\propsys.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Система страниц свойств (Майкрософт) 131795770645381706 0x72a30000 188416 C:\Windows\SysWOW64\XmlLite.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft XmlLite Library 131795770645381706 0x72cc0000 1658880 C:\Windows\SysWOW64\urlmon.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширения OLE32 для Win32 131795770645381706 0x73a40000 32768 C:\Windows\SysWOW64\WINNSI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Network Store Information RPC interface 131795770645381706 0x73a50000 299008 C:\Windows\SysWOW64\fwpuclnt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API пользовательского режима FWP/IPsec 131795770645381706 0x73ab0000 32768 C:\Windows\SysWOW64\rasadhlp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Remote Access AutoDial Helper 131795770645381706 0x73ac0000 81920 C:\Windows\SysWOW64\dhcpcsvc.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служба DHCP-клиента 131795770645381706 0x73ae0000 40960 C:\Windows\SysWOW64\secur32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Security Support Provider Interface 131795770645381706 0x73c50000 1478656 C:\Windows\WinSxS\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.14393.1715_none_f67438d2f2547a00\gdiplus.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Microsoft GDI+ 131795770645381706 0x73ee0000 61440 C:\Windows\SysWOW64\WTSAPI32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Remote Desktop Session Host Server SDK APIs 131795770645381706 0x73ef0000 24576 C:\Windows\SysWOW64\MSIMG32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation GDIEXT Client DLL 131795770645381706 0x73f00000 192512 C:\Windows\SysWOW64\IPHLPAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API вспомогательного приложения IP 131795770645381706 0x73f30000 512000 C:\Windows\SysWOW64\dnsapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Динамическая библиотека API DNS-клиента 131795770645381706 0x73ff0000 319488 C:\Windows\SysWOW64\mswsock.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширение поставщика службы API Microsoft Windows Sockets 2.0 131795770645381706 0x74040000 126976 C:\Windows\SysWOW64\gpapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиентские функции API групповой политики 131795770645381706 0x74060000 192512 C:\Windows\SysWOW64\rsaenh.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Enhanced Cryptographic Provider 131795770645381706 0x74190000 110592 C:\Windows\SysWOW64\bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795770645381706 0x741b0000 77824 C:\Windows\SysWOW64\CRYPTSP.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Cryptographic Service Provider API 131795770645381706 0x741f0000 143360 C:\Windows\SysWOW64\WINMMBASE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base Multimedia Extension API DLL 131795770645381706 0x74230000 147456 C:\Windows\SysWOW64\WINMM.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation MCI API DLL 131795770645381706 0x74260000 2514944 C:\Windows\SysWOW64\WININET.dll 11.00.14393.447 (rs1_release_inmarket.161102-0100) Microsoft Corporation Расширения Интернета для Win32 131795770645381706 0x746e0000 32768 C:\Windows\SysWOW64\VERSION.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Version Checking and File Installation Libraries 131795770645381706 0x746f0000 106496 C:\Windows\SysWOW64\USERENV.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Userenv 131795770645381706 0x74710000 90112 C:\Windows\SysWOW64\MPR.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека маршрутизации для нескольких служб доступа 131795770645381706 0x74730000 598016 C:\Windows\SysWOW64\apphelp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиентская библиотека совместимости приложений 131795770645381706 0x747d0000 40960 C:\Windows\SysWOW64\CRYPTBASE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base cryptographic API DLL 131795770645381706 0x747e0000 126976 C:\Windows\SysWOW64\SspiCli.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Security Support Provider Interface 131795770645381706 0x74910000 2170880 C:\Windows\SysWOW64\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795770645381706 0x74b30000 53248 C:\Windows\SysWOW64\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795770645381706 0x74b40000 102400 C:\Windows\SysWOW64\imagehlp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT Image Helper 131795770645381706 0x74b60000 790528 C:\Windows\SysWOW64\RPCRT4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795770645381706 0x74c30000 1417216 C:\Windows\SysWOW64\gdi32full.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation GDI Client DLL 131795770645381706 0x74d90000 24576 C:\Windows\SysWOW64\PSAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Process Status Helper 131795770645381706 0x74da0000 778240 C:\Windows\SysWOW64\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795770645381706 0x74e60000 557056 C:\Windows\SysWOW64\shcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795770645381706 0x74ef0000 540672 C:\Windows\SysWOW64\clbcatq.dll 2001.12.10941.16384 (rs1_release.160715-1616) Microsoft Corporation COM+ Configuration Catalog 131795770645381706 0x74f80000 278528 C:\Windows\SysWOW64\WINTRUST.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation Microsoft Trust Verification APIs 131795770645381706 0x74fd0000 405504 C:\Windows\SysWOW64\WS2_32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation 32-разрядная библиотека Windows Socket 2.0 131795770645381706 0x75040000 282624 C:\Windows\SysWOW64\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795770645381706 0x751d0000 57344 C:\Windows\SysWOW64\MSASN1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ASN.1 Runtime APIs 131795770645381706 0x751e0000 1708032 C:\Windows\SysWOW64\KERNELBASE.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645381706 0x75390000 266240 C:\Windows\SysWOW64\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795770645381706 0x753e0000 1560576 C:\Windows\SysWOW64\CRYPT32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API32 криптографии 131795770645381706 0x75560000 487424 C:\Windows\SysWOW64\ADVAPI32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795770645381706 0x756c0000 5693440 C:\Windows\SysWOW64\windows.storage.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API хранения Microsoft WinRT 131795770645381706 0x75c30000 372736 C:\Windows\SysWOW64\coml2.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft COM for Windows 131795770645381706 0x75c90000 286720 C:\Windows\SysWOW64\shlwapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека небольших программ оболочки 131795770645381706 0x75ce0000 20811776 C:\Windows\SysWOW64\SHELL32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Общая библиотека оболочки Windows 131795770645381706 0x770c0000 4239360 C:\Windows\SysWOW64\SETUPAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Setup API 131795770645381706 0x774d0000 86016 C:\Windows\SysWOW64\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795770645381706 0x774f0000 61440 C:\Windows\SysWOW64\profapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Profile Basic API 131795770645381706 0x77560000 1437696 C:\Windows\SysWOW64\USER32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795770645381706 0x776c0000 368640 C:\Windows\SysWOW64\bcryptPrimitives.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation Windows Cryptographic Primitives Library 131795770645381706 0x77780000 503808 C:\Windows\SysWOW64\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645381706 0x77800000 606208 C:\Windows\SysWOW64\OLEAUT32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795770645381706 0x77ac0000 966656 C:\Windows\SysWOW64\ole32.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft OLE для Windows 131795770645381706 0x77bb0000 176128 C:\Windows\SysWOW64\GDI32.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation GDI Client DLL 131795770645381706 0x77cd0000 221184 C:\Windows\SysWOW64\cfgmgr32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Configuration Manager DLL 131795770645381706 0x77d10000 28672 C:\Windows\SysWOW64\NSI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation NSI User-mode interface DLL 131795770645381706 0x77d20000 1585152 C:\Windows\SysWOW64\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 131795770645381706 0x7ffad0270000 1908736 C:\Windows\SYSTEM32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 50 6340 6724 49 00000000:0031f1ab 131765803510844292 0 0 0 Обязательная метка\Высокий обязательный уровень WIN-0UOTFKKVN1S\User QHSafeTray.exe C:\Program Files (x86)\360\Total Security\safemon\QHSafeTray.exe /showtrayicon Qihoo 360 Technology Co. Ltd. 10,0,0,1024 360 Total Security 131795770645381850 0xec0000 2351104 C:\Program Files (x86)\360\Total Security\safemon\QHSafeTray.exe 10,0,0,1024 Qihoo 360 Technology Co. Ltd. 360 Total Security 131795770645381850 0x68f0000 12288 C:\Windows\SysWOW64\sfc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows File Protection 131795770645381850 0x5c020000 335872 C:\Windows\System32\wow64.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation Win32 Emulation on NT64 131795770645381850 0x5c080000 487424 C:\Windows\System32\wow64win.dll 10.0.14393.1884 (rs1_release.171101-1233) Microsoft Corporation Wow64 Console and Win32 API Logging 131795770645381850 0x5c100000 40960 C:\Windows\System32\wow64cpu.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation AMD64 Wow64 CPU 131795770645381850 0x5c480000 245760 C:\Program Files (x86)\360\Total Security\PDown.dll 1, 3, 0, 1420 Qihu 360 Software Co., Ltd. 360 Security Center Network Module 131795770645381850 0x5fe30000 581632 C:\Program Files (x86)\360\Total Security\safemon\wdui2.dll 9,6,0,1001 131795770645381850 0x60020000 413696 C:\Program Files (x86)\360\Total Security\netmon\360netctrl.dll 5, 3, 15, 2232 360.cn 360 Total Security NetwokrMonCtrl 131795770645381850 0x60090000 335872 C:\Program Files (x86)\360\Total Security\safemon\netmon.tpi 5, 1, 1, 3157 Qihoo 360 Technology Co. Ltd. 360安全卫士 流量防火墙模块 131795770645381850 0x60350000 1331200 C:\Program Files (x86)\360\Total Security\ToolBox.dll 1, 0, 0, 1094 Qihoo 360 Technology Co. Ltd. 360 Total Security 131795770645381850 0x60600000 200704 C:\Program Files (x86)\360\Total Security\safemon\WDRecord.dll 1, 0, 1, 1130 Qihu 360 Software Co., Ltd. 360 Internet Security Internet Protection 131795770645381850 0x606b0000 598016 C:\Program Files (x86)\360\Total Security\safemon\spsafe.dll 1, 0, 0, 1120 Qihu 360 Software Co., Ltd. 360 Internet Security Internet Protection 131795770645381850 0x60750000 1556480 C:\Program Files (x86)\360\Total Security\safemon\safemon.dll 8, 4, 0, 1420 Qihu 360 Software Co., Ltd. 360 Internet Security Internet Protection 131795770645381850 0x608d0000 159744 C:\Program Files (x86)\360\Total Security\safemon\safemonhlp.dll 1, 0, 0, 1265 Qihu 360 Software Co., Ltd. 360 Internet Security Internet Protection 131795770645381850 0x609b0000 241664 C:\Program Files (x86)\360\Total Security\safemon\360GuardBase.dll 3, 1, 0, 1060 360.cn 360保镖 131795770645381850 0x60ad0000 352256 C:\Program Files (x86)\360\Total Security\360Common.dll 7, 3, 0, 3233 360.cn 360安全衛士 基礎模塊 131795770645381850 0x60b30000 1712128 C:\Program Files (x86)\360\Total Security\safemon\360safemonpro.tpi 3, 1, 1, 3140 Qihu 360 Software Co., Ltd. 360 Internet Security Internet Protection 131795770645381850 0x60ce0000 581632 C:\Program Files (x86)\360\Total Security\dynlenv.dll 1, 1, 0, 1016 360.cn dynlenv Dynamic Link Library 131795770645381850 0x61070000 393216 C:\Program Files (x86)\360\Total Security\safemon\SomProxy.dll 1, 0, 0, 1900 Qihu 360 Software Co., Ltd. 360 Internet Security Internet Protection 131795770645381850 0x611e0000 1662976 C:\Program Files (x86)\360\Total Security\safemon\360connect.tpi 9,2,0,1030 QIHU 360 SOFTWARE CO. LIMITED 360 Connect 131795770645381850 0x61380000 315392 C:\Program Files (x86)\360\Total Security\safemon\360bsmon.tpi 6, 8, 0, 1248 Qihu 360 Software Co., Ltd. 360 Total Security Active Protection 131795770645381850 0x613d0000 667648 C:\Windows\WinSxS\x86_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.9247_none_5090cb78bcba4a35\MSVCR90.dll 9.00.30729.9247 Microsoft Corporation Microsoft® C Runtime Library 131795770645381850 0x618c0000 1478656 C:\Program Files (x86)\360\Total Security\sites.dll 11, 1, 0, 1212 360.cn 360安全卫士 131795770645381850 0x61a30000 512000 C:\Program Files (x86)\360\Total Security\safemon\360hipsPopWnd.dll 7,3,2,1211 Qihoo 360 Technology Co. Ltd. 360 Internet Security Proactive Defense 131795770645381850 0x61b30000 3350528 C:\Program Files (x86)\360\Total Security\softmgr\somkernl.dll 2, 1, 0, 1130 360.cn 360软件管家 131795770645381850 0x61e70000 614400 C:\Program Files (x86)\360\Total Security\ipc\ipcservice.dll 7, 1, 2, 1643 Qihu 360 Software Co., Ltd. 360 Total Security Proactive Defense 131795770645381850 0x61f10000 1458176 C:\Program Files (x86)\360\Total Security\deepscan\Cloudcom2.dll 3, 3, 10, 1288 Qihu 360 Software Co., Ltd. 360 Total Security 131795770645381850 0x62210000 446464 C:\Program Files (x86)\360\Total Security\360TSCommon.dll 9, 0, 0, 1016 QIHU 360 SOFTWARE CO. LIMITED 360 Total Security 131795770645381850 0x622f0000 520192 C:\Program Files (x86)\360\Total Security\deepscan\heavygate.dll 3, 8, 11, 1 Qihu 360 Software Co., Ltd. 360 Total Security Cloud Security 131795770645381850 0x62370000 602112 C:\Program Files (x86)\360\Total Security\360util.dll 1.0.0.1485 360.cn 360安全卫士 公共模块 131795770645381850 0x62410000 352256 C:\Program Files (x86)\360\Total Security\CrashReport.dll 7, 0, 0, 1000 360.cn 360杀毒 异常捕获程序 131795770645381850 0x62540000 278528 C:\Program Files (x86)\360\Total Security\360conf.dll 1, 0, 0, 1014 Qihu 360 Software Co., Ltd. 360 Internet Security Base Module 131795770645381850 0x62590000 987136 C:\Program Files (x86)\360\Total Security\360base.dll 1, 0, 0, 1165 360.cn 360安全卫士 基础模块 131795770645381850 0x62690000 266240 C:\Program Files (x86)\360\Total Security\deepscan\BAPI.dll 2.0.0.1191 360.cn BAPI 131795770645381850 0x627d0000 249856 C:\Windows\SysWOW64\edputil.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служебная программа EDP 131795770645381850 0x62960000 77824 C:\Program Files (x86)\360\Total Security\safemon\CleanPlusCache.tpi 1, 0, 0, 1004 QIHU 360 SOFTWARE CO. LIMITED CleanPlusCache 131795770645381850 0x62980000 376832 C:\Program Files (x86)\360\Total Security\360NetBase.dll 7, 25, 0, 76 360.cn 360安全卫士 网络基础模块 131795770645381850 0x67500000 1597440 C:\Windows\SysWOW64\ActXPrxy.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation ActiveX Interface Marshaling Library 131795770645381850 0x67690000 61440 C:\Windows\SysWOW64\sfc_os.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows File Protection 131795770645381850 0x676a0000 61440 C:\Program Files (x86)\360\Total Security\ipc\x64for32lib.dll 6, 8, 0, 1059 360.cn 360安全卫士 木马防火墙模块 131795771279916892 0x68850000 2764800 C:\Windows\SysWOW64\msftedit.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Элемент управления "Поле ввода форматированного текста", версия 8.5 131795770645381850 0x6b6d0000 102400 C:\Program Files (x86)\360\Total Security\i18n.dll 1, 0, 0, 1016 Qihu 360 Software Co., Ltd. 360 Total Security 131795770645381850 0x6bf00000 3715072 C:\Windows\SysWOW64\msi.dll 5.0.14393.2155 Microsoft Corporation Windows Installer 131795770645381850 0x6c290000 987136 C:\Windows\SysWOW64\twinapi.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation twinapi.appcore 131795770645381850 0x6c390000 1126400 C:\Windows\SysWOW64\dcomp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft DirectComposition Library 131795770645381850 0x6c4b0000 278528 C:\Windows\SysWOW64\dataexchange.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation Data exchange 131795770645381850 0x6e6e0000 151552 C:\Windows\SysWOW64\globinputhost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Globalization Extension API for Input 131795770645381850 0x6e710000 335872 C:\Windows\SysWOW64\Bcp47Langs.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation BCP47 Language Classes 131795770645381850 0x6e770000 1269760 C:\Windows\SysWOW64\Windows.Globalization.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Globalization 131795770645381850 0x6eed0000 274432 C:\Windows\SysWOW64\thumbcache.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Кэш эскизов Майкрософт 131795770645381850 0x6fc70000 385024 C:\Windows\SysWOW64\FirewallAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API брандмауэра Windows 131795770645381850 0x6fcd0000 151552 C:\Windows\SysWOW64\dbgcore.DLL 10.0.14321.1024 (debuggers(dbg).160715-1616) Microsoft Windows Core Debugging Helpers 131795770645381850 0x700d0000 434176 C:\Windows\SysWOW64\WINSPOOL.DRV 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Драйвер диспетчера очереди Windows 131795770645381850 0x70140000 274432 C:\Windows\SysWOW64\WINSTA.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Winstation Library 131795770645381850 0x70340000 536576 C:\Windows\SysWOW64\dxgi.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation DirectX Graphics Infrastructure 131795770645381850 0x703d0000 2056192 C:\Windows\SysWOW64\DWrite.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Службы Microsoft DirectX Typography 131795770645381850 0x705e0000 344064 C:\Windows\SysWOW64\OLEACC.dll 7.2.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Active Accessibility Core Component 131795770645381850 0x70640000 1499136 C:\Windows\SysWOW64\WindowsCodecs.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Microsoft Windows Codecs Library 131795770645381850 0x707b0000 110592 C:\Windows\SysWOW64\ncryptsslp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft SChannel Provider 131795770645381850 0x707f0000 2293760 C:\Windows\SysWOW64\d3d11.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation Direct3D 11 Runtime 131795770645381850 0x70a40000 81920 C:\Windows\SysWOW64\NLAapi.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Network Location Awareness 2 131795770645381850 0x70a60000 90112 C:\Windows\SysWOW64\pnrpnsp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик пространства имен PNRP 131795770645381850 0x70a80000 409600 C:\Windows\SysWOW64\schannel.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик безопасности TLS/SSL 131795770645381850 0x70b40000 69632 C:\Windows\SysWOW64\mskeyprotect.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик защиты ключей (Майкрософт) 131795770645381850 0x70b70000 163840 C:\Windows\SysWOW64\ntmarta.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик Windows NT MARTA 131795770645381850 0x70ba0000 188416 C:\Windows\SysWOW64\FWPolicyIOMgr.dll 10.0.14393.2189 (rs1_release.180329-1711) Microsoft Corporation FwPolicyIoMgr DLL 131795770645381850 0x70bd0000 147456 C:\Windows\SysWOW64\fwbase.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Firewall Base DLL 131795770645381850 0x70c00000 49152 C:\Windows\SysWOW64\winrnr.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation LDAP RnR Provider DLL 131795770645381850 0x70c10000 73728 C:\Windows\SysWOW64\napinsp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик оболочки совместимости для имен электронной почты 131795770645381850 0x70c30000 114688 C:\Windows\SysWOW64\SRVCLI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Server Service Client DLL 131795770645381850 0x70ca0000 45056 C:\Windows\SysWOW64\NETUTILS.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API Helpers DLL 131795770645381850 0x70cc0000 65536 C:\Windows\SysWOW64\ondemandconnroutehelper.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation On Demand Connctiond Route Helper 131795770645381850 0x70e60000 176128 C:\Windows\SysWOW64\NTASN1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft ASN.1 API 131795770645381850 0x70fd0000 1331200 C:\Windows\SysWOW64\dbghelp.dll 10.0.14321.1024 (rs1_release.160715-1616) Microsoft Windows Image Helper 131795770645381850 0x71140000 77824 C:\Windows\SysWOW64\NETAPI32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API DLL 131795770645381850 0x71170000 466944 C:\Program Files (x86)\360\Total Security\deepscan\CQhCltHttpW.dll 1, 4, 0, 1030 QIHU 360 SOFTWARE CO. LIMITED 360 Internet Security Base Module 131795770645381850 0x71610000 77824 C:\Windows\SysWOW64\dhcpcsvc6.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиент DHCPv6 131795770645381850 0x725e0000 2273280 C:\Windows\SysWOW64\iertutil.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служебная программа времени выполнения для Internet Explorer 131795770645381850 0x728e0000 1372160 C:\Windows\SysWOW64\PROPSYS.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Система страниц свойств (Майкрософт) 131795770645381850 0x72b90000 126976 C:\Windows\SysWOW64\dwmapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Интерфейс API диспетчера окон рабочего стола (Майкрософт) 131795770645381850 0x72cc0000 1658880 C:\Windows\SysWOW64\urlmon.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширения OLE32 для Win32 131795770645381850 0x73a40000 32768 C:\Windows\SysWOW64\WINNSI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Network Store Information RPC interface 131795770645381850 0x73a50000 299008 C:\Windows\SysWOW64\fwpuclnt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API пользовательского режима FWP/IPsec 131795770645381850 0x73ab0000 32768 C:\Windows\SysWOW64\rasadhlp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Remote Access AutoDial Helper 131795770645381850 0x73ac0000 81920 C:\Windows\SysWOW64\dhcpcsvc.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служба DHCP-клиента 131795770645381850 0x73ae0000 40960 C:\Windows\SysWOW64\Secur32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Security Support Provider Interface 131795770645381850 0x73c50000 1478656 C:\Windows\WinSxS\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.14393.1715_none_f67438d2f2547a00\gdiplus.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Microsoft GDI+ 131795770645381850 0x73ee0000 61440 C:\Windows\SysWOW64\WTSAPI32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Remote Desktop Session Host Server SDK APIs 131795770645381850 0x73ef0000 24576 C:\Windows\SysWOW64\MSIMG32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation GDIEXT Client DLL 131795770645381850 0x73f00000 192512 C:\Windows\SysWOW64\IPHLPAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API вспомогательного приложения IP 131795770645381850 0x73f30000 512000 C:\Windows\SysWOW64\DNSAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Динамическая библиотека API DNS-клиента 131795770645381850 0x73ff0000 319488 C:\Windows\SysWOW64\mswsock.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширение поставщика службы API Microsoft Windows Sockets 2.0 131795770645381850 0x74060000 192512 C:\Windows\SysWOW64\rsaenh.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Enhanced Cryptographic Provider 131795770645381850 0x74110000 479232 C:\Windows\SysWOW64\uxtheme.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека тем UxTheme (Microsoft) 131795770645381850 0x74190000 110592 C:\Windows\SysWOW64\bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795770645381850 0x741b0000 77824 C:\Windows\SysWOW64\CRYPTSP.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Cryptographic Service Provider API 131795770645381850 0x741f0000 143360 C:\Windows\SysWOW64\WINMMBASE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base Multimedia Extension API DLL 131795770645381850 0x74230000 147456 C:\Windows\SysWOW64\WINMM.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation MCI API DLL 131795770645381850 0x74260000 2514944 C:\Windows\SysWOW64\WININET.dll 11.00.14393.447 (rs1_release_inmarket.161102-0100) Microsoft Corporation Расширения Интернета для Win32 131795770645381850 0x744d0000 2138112 C:\Windows\WinSxS\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.14393.953_none_89c2555adb023171\COMCTL32.dll 6.10 (rs1_release_inmarket.170303-1614) Microsoft Corporation Библиотека элементов управления взаимодействия с пользователем 131795770645381850 0x746e0000 32768 C:\Windows\SysWOW64\VERSION.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Version Checking and File Installation Libraries 131795770645381850 0x746f0000 106496 C:\Windows\SysWOW64\USERENV.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Userenv 131795770645381850 0x74730000 598016 C:\Windows\SysWOW64\apphelp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиентская библиотека совместимости приложений 131795770645381850 0x747d0000 40960 C:\Windows\SysWOW64\CRYPTBASE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base cryptographic API DLL 131795770645381850 0x747e0000 126976 C:\Windows\SysWOW64\SspiCli.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Security Support Provider Interface 131795770645381850 0x74800000 151552 C:\Windows\SysWOW64\IMM32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Multi-User Windows IMM32 API Client DLL 131795770645381850 0x74910000 2170880 C:\Windows\SysWOW64\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795770645381850 0x74b30000 53248 C:\Windows\SysWOW64\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795770645381850 0x74b40000 102400 C:\Windows\SysWOW64\imagehlp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT Image Helper 131795770645381850 0x74b60000 790528 C:\Windows\SysWOW64\RPCRT4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795770645381850 0x74c30000 1417216 C:\Windows\SysWOW64\gdi32full.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation GDI Client DLL 131795770645381850 0x74d90000 24576 C:\Windows\SysWOW64\PSAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Process Status Helper 131795770645381850 0x74da0000 778240 C:\Windows\SysWOW64\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795770645381850 0x74e60000 557056 C:\Windows\SysWOW64\shcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795770645381850 0x74ef0000 540672 C:\Windows\SysWOW64\clbcatq.dll 2001.12.10941.16384 (rs1_release.160715-1616) Microsoft Corporation COM+ Configuration Catalog 131795770645381850 0x74f80000 278528 C:\Windows\SysWOW64\WINTRUST.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation Microsoft Trust Verification APIs 131795770645381850 0x74fd0000 405504 C:\Windows\SysWOW64\WS2_32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation 32-разрядная библиотека Windows Socket 2.0 131795770645381850 0x75040000 282624 C:\Windows\SysWOW64\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795770645381850 0x75090000 1265664 C:\Windows\SysWOW64\MSCTF.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Серверная библиотека MSCTF 131795770645381850 0x751d0000 57344 C:\Windows\SysWOW64\MSASN1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ASN.1 Runtime APIs 131795770645381850 0x751e0000 1708032 C:\Windows\SysWOW64\KERNELBASE.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645381850 0x75390000 266240 C:\Windows\SysWOW64\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795770645381850 0x753e0000 1560576 C:\Windows\SysWOW64\CRYPT32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API32 криптографии 131795770645381850 0x75560000 487424 C:\Windows\SysWOW64\ADVAPI32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795770645381850 0x756c0000 5693440 C:\Windows\SysWOW64\windows.storage.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API хранения Microsoft WinRT 131795770645381850 0x75c30000 372736 C:\Windows\SysWOW64\coml2.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft COM for Windows 131795770645381850 0x75c90000 286720 C:\Windows\SysWOW64\shlwapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека небольших программ оболочки 131795770645381850 0x75ce0000 20811776 C:\Windows\SysWOW64\SHELL32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Общая библиотека оболочки Windows 131795770645381850 0x770c0000 4239360 C:\Windows\SysWOW64\SETUPAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Setup API 131795770645381850 0x774d0000 86016 C:\Windows\SysWOW64\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795770645381850 0x774f0000 61440 C:\Windows\SysWOW64\profapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Profile Basic API 131795770645381850 0x77560000 1437696 C:\Windows\SysWOW64\USER32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795770645381850 0x776c0000 368640 C:\Windows\SysWOW64\bcryptPrimitives.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation Windows Cryptographic Primitives Library 131795770645381850 0x77780000 503808 C:\Windows\SysWOW64\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645381850 0x77800000 606208 C:\Windows\SysWOW64\OLEAUT32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795770645381850 0x77ac0000 966656 C:\Windows\SysWOW64\ole32.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft OLE для Windows 131795770645381850 0x77bb0000 176128 C:\Windows\SysWOW64\GDI32.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation GDI Client DLL 131795770645381850 0x77cd0000 221184 C:\Windows\SysWOW64\cfgmgr32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Configuration Manager DLL 131795770645381850 0x77d10000 28672 C:\Windows\SysWOW64\NSI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation NSI User-mode interface DLL 131795770645381850 0x77d20000 1585152 C:\Windows\SysWOW64\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 131795770645381850 0x7ffad0270000 1908736 C:\Windows\SYSTEM32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 51 6860 6724 49 00000000:000003e7 131765803555957830 0 0 0 Обязательная метка\Обязательный уровень системы NT AUTHORITY\СИСТЕМА QHWatchdog.exe C:\Program Files (x86)\360\Total Security\safemon\QHWatchdog.exe "C:\Program Files (x86)\360\Total Security\safemon\QHWatchdog.exe" /watch QIHU 360 SOFTWARE CO. LIMITED 8,2,0,1000 360 Total Security 131795770645381936 0xdf0000 139264 C:\Program Files (x86)\360\Total Security\safemon\QHWatchdog.exe 8,2,0,1000 QIHU 360 SOFTWARE CO. LIMITED 360 Total Security 131795770645381936 0x5c020000 335872 C:\Windows\System32\wow64.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation Win32 Emulation on NT64 131795770645381936 0x5c080000 487424 C:\Windows\System32\wow64win.dll 10.0.14393.1884 (rs1_release.171101-1233) Microsoft Corporation Wow64 Console and Win32 API Logging 131795770645381936 0x5c100000 40960 C:\Windows\System32\wow64cpu.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation AMD64 Wow64 CPU 131795770645381936 0x74730000 598016 C:\Windows\SysWOW64\apphelp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиентская библиотека совместимости приложений 131795770645381936 0x747d0000 40960 C:\Windows\SysWOW64\CRYPTBASE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base cryptographic API DLL 131795770645381936 0x747e0000 126976 C:\Windows\SysWOW64\SspiCli.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Security Support Provider Interface 131795770645381936 0x74910000 2170880 C:\Windows\SysWOW64\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795770645381936 0x74b60000 790528 C:\Windows\SysWOW64\RPCRT4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795770645381936 0x74c30000 1417216 C:\Windows\SysWOW64\gdi32full.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation GDI Client DLL 131795770645381936 0x74da0000 778240 C:\Windows\SysWOW64\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795770645381936 0x74e60000 557056 C:\Windows\SysWOW64\shcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795770645381936 0x751e0000 1708032 C:\Windows\SysWOW64\KERNELBASE.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645381936 0x75390000 266240 C:\Windows\SysWOW64\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795770645381936 0x75560000 487424 C:\Windows\SysWOW64\ADVAPI32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795770645381936 0x755e0000 917504 C:\Windows\SysWOW64\KERNEL32.DLL 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645381936 0x75c90000 286720 C:\Windows\SysWOW64\SHLWAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека небольших программ оболочки 131795770645381936 0x774d0000 86016 C:\Windows\SysWOW64\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795770645381936 0x77560000 1437696 C:\Windows\SysWOW64\USER32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795770645381936 0x776c0000 368640 C:\Windows\SysWOW64\bcryptPrimitives.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation Windows Cryptographic Primitives Library 131795770645381936 0x77bb0000 176128 C:\Windows\SysWOW64\GDI32.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation GDI Client DLL 131795770645381936 0x77d20000 1585152 C:\Windows\SysWOW64\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 131795770645381936 0x7ffad0270000 1908736 C:\Windows\SYSTEM32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 52 5924 664 6 00000000:000003e4 131765805232900810 0 0 0 Обязательная метка\Обязательный уровень системы NT AUTHORITY\NETWORK SERVICE wmiprvse.exe C:\Windows\sysWOW64\wbem\wmiprvse.exe C:\Windows\sysWOW64\wbem\wmiprvse.exe -Embedding Microsoft Corporation 10.0.14393.2155 (rs1_release_1.180305-1842) WMI Provider Host 131795770645382027 0x950000 434176 C:\Windows\sysWOW64\wbem\wmiprvse.exe 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation WMI Provider Host 131795770645382027 0x5c020000 335872 C:\Windows\System32\wow64.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation Win32 Emulation on NT64 131795770645382027 0x5c080000 487424 C:\Windows\System32\wow64win.dll 10.0.14393.1884 (rs1_release.171101-1233) Microsoft Corporation Wow64 Console and Win32 API Logging 131795770645382027 0x5c100000 40960 C:\Windows\System32\wow64cpu.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation AMD64 Wow64 CPU 131795770645382027 0x5fec0000 794624 C:\Windows\SysWOW64\wbem\FastProx.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation WMI Custom Marshaller 131795770645382027 0x5ffa0000 421888 C:\Windows\SysWOW64\wbemcomn.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation WMI 131795770645382027 0x60130000 36864 C:\Windows\SysWOW64\storagewmi_passthru.dll 10.0.14393.103 (rs1_release_inmarket.160819-1924) Microsoft Corporation WMI PassThru Provider for Storage Management 131795770645382027 0x60140000 114688 C:\Windows\SysWOW64\wbem\wmiutils.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation WMI 131795770645382027 0x60160000 73728 C:\Windows\SysWOW64\NCObjAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation 131795770645382027 0x604d0000 36864 C:\Windows\SysWOW64\delegatorprovider.dll 10.0.14393.103 (rs1_release_inmarket.160819-1924) Microsoft Corporation WMI PassThru Provider for Storage Management 131795770645382027 0x74190000 110592 C:\Windows\SysWOW64\bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795770645382027 0x747d0000 40960 C:\Windows\SysWOW64\CRYPTBASE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base cryptographic API DLL 131795770645382027 0x747e0000 126976 C:\Windows\SysWOW64\SspiCli.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Security Support Provider Interface 131795770645382027 0x74910000 2170880 C:\Windows\SysWOW64\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795770645382027 0x74b30000 53248 C:\Windows\SysWOW64\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795770645382027 0x74b60000 790528 C:\Windows\SysWOW64\RPCRT4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795770645382027 0x74c30000 1417216 C:\Windows\SysWOW64\gdi32full.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation GDI Client DLL 131795770645382027 0x74da0000 778240 C:\Windows\SysWOW64\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795770645382027 0x74ef0000 540672 C:\Windows\SysWOW64\clbcatq.dll 2001.12.10941.16384 (rs1_release.160715-1616) Microsoft Corporation COM+ Configuration Catalog 131795770645382027 0x74fd0000 405504 C:\Windows\SysWOW64\WS2_32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation 32-разрядная библиотека Windows Socket 2.0 131795770645382027 0x751e0000 1708032 C:\Windows\SysWOW64\KERNELBASE.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645382027 0x75390000 266240 C:\Windows\SysWOW64\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795770645382027 0x75560000 487424 C:\Windows\SysWOW64\advapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795770645382027 0x755e0000 917504 C:\Windows\SysWOW64\KERNEL32.DLL 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645382027 0x774d0000 86016 C:\Windows\SysWOW64\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795770645382027 0x77560000 1437696 C:\Windows\SysWOW64\user32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795770645382027 0x776c0000 368640 C:\Windows\SysWOW64\bcryptPrimitives.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation Windows Cryptographic Primitives Library 131795770645382027 0x77780000 503808 C:\Windows\SysWOW64\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645382027 0x77800000 606208 C:\Windows\SysWOW64\OLEAUT32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795770645382027 0x77bb0000 176128 C:\Windows\SysWOW64\GDI32.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation GDI Client DLL 131795770645382027 0x77d20000 1585152 C:\Windows\SysWOW64\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 131795770645382027 0x7ffad0270000 1908736 C:\Windows\SYSTEM32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 53 6180 664 6 00000000:0031f1da 131765807370364309 0 0 1 Обязательная метка\Средний обязательный уровень WIN-0UOTFKKVN1S\User smartscreen.exe C:\Windows\System32\smartscreen.exe C:\Windows\System32\smartscreen.exe -Embedding Microsoft Corporation 10.0.14393.0 (rs1_release.160715-1616) SmartScreen 131795770645382127 0x7ff688690000 2416640 C:\Windows\System32\smartscreen.exe 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SmartScreen 131795770645382127 0x7ffaafa00000 2936832 C:\Windows\System32\certenroll.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиент регистрации служб сертификатов Active Directory Microsoft® 131795770645382127 0x7ffab2210000 798720 C:\Windows\System32\certca.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ЦС служб сертификации Microsoft® Active Directory 131795770645382127 0x7ffab2c00000 8179712 C:\Windows\System32\chakra.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft ® Chakra (Private) 131795770645382127 0x7ffab9c00000 1343488 C:\Windows\System32\Windows.Web.Http.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL Windows.Web.Http 131795770645382127 0x7ffabd4a0000 1613824 C:\Windows\SYSTEM32\windows.globalization.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Globalization 131795770645382127 0x7ffabe850000 155648 C:\Windows\System32\IDStore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Identity Store 131795770645382127 0x7ffabf1d0000 192512 C:\Windows\System32\cryptnet.dll 10.0.14393.2035 (rs1_release_inmarket.180110-1910) Microsoft Corporation Crypto Network Related API 131795770645382127 0x7ffabf5d0000 2924544 C:\Windows\System32\WININET.dll 11.00.14393.447 (rs1_release_inmarket.161102-0100) Microsoft Corporation Расширения Интернета для Win32 131795770645382127 0x7ffabfd80000 86016 C:\Windows\System32\threadpoolwinrt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows WinRT Threadpool 131795770645382127 0x7ffabff60000 135168 C:\Windows\system32\ncryptsslp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft SChannel Provider 131795770645382127 0x7ffac0ac0000 53248 C:\Windows\System32\tbs.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation TBS 131795770645382127 0x7ffac0ad0000 86016 C:\Windows\SYSTEM32\mskeyprotect.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик защиты ключей (Майкрософт) 131795770645382127 0x7ffac3290000 77824 C:\Windows\System32\smartscreenps.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SmartScreenPS 131795770645382127 0x7ffac34e0000 1843200 C:\Windows\System32\urlmon.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширения OLE32 для Win32 131795770645382127 0x7ffac36b0000 524288 C:\Windows\System32\msdelta.dll 5.00 (rs1_release.160715-1616) Microsoft Corporation Microsoft Patch Engine 131795770645382127 0x7ffac3cb0000 2772992 C:\Windows\System32\iertutil.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служебная программа времени выполнения для Internet Explorer 131795770645382127 0x7ffac6610000 40960 C:\Windows\System32\rasadhlp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Remote Access AutoDial Helper 131795770645382127 0x7ffac66a0000 86016 C:\Windows\SYSTEM32\ondemandconnroutehelper.dll 10.0.14393.351 (rs1_release_inmarket.161014-1755) Microsoft Corporation On Demand Connctiond Route Helper 131795770645382127 0x7ffac69c0000 839680 C:\Windows\SYSTEM32\winhttp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Службы HTTP Windows 131795770645382127 0x7ffac6b90000 53248 C:\Windows\System32\DSPARSE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Active Directory Domain Services API 131795770645382127 0x7ffac7720000 1601536 C:\Windows\System32\OneCoreUAPCommonProxyStub.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation OneCoreUAP Common Proxy Stub 131795770645382127 0x7ffac83d0000 106496 C:\Windows\SYSTEM32\dhcpcsvc.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служба DHCP-клиента 131795770645382127 0x7ffac83f0000 90112 C:\Windows\SYSTEM32\dhcpcsvc6.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиент DHCPv6 131795770645382127 0x7ffac8420000 434176 C:\Windows\System32\fwpuclnt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API пользовательского режима FWP/IPsec 131795770645382127 0x7ffac8810000 45056 C:\Windows\SYSTEM32\WINNSI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Network Store Information RPC interface 131795770645382127 0x7ffac90b0000 90112 C:\Windows\System32\wkscli.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Workstation Service Client DLL 131795770645382127 0x7ffac92e0000 1269760 C:\Windows\SYSTEM32\wintypes.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL основных типов Windows 131795770645382127 0x7ffaca570000 421888 C:\Windows\SYSTEM32\Bcp47Langs.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation BCP47 Language Classes 131795770645382127 0x7ffaca610000 143360 C:\Windows\System32\SAMLIB.dll 10.0.14393.82 (rs1_release.160805-1735) Microsoft Corporation SAM Library DLL 131795770645382127 0x7ffacb360000 176128 C:\Windows\SYSTEM32\fwbase.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Firewall Base DLL 131795770645382127 0x7ffacb460000 548864 C:\Windows\SYSTEM32\firewallapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API брандмауэра Windows 131795770645382127 0x7ffacb6f0000 143360 C:\Windows\SYSTEM32\gpapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиентские функции API групповой политики 131795770645382127 0x7ffacbaf0000 495616 C:\Windows\system32\schannel.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик безопасности TLS/SSL 131795770645382127 0x7ffacbbb0000 208896 C:\Windows\system32\rsaenh.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Enhanced Cryptographic Provider 131795770645382127 0x7ffacbbf0000 40960 C:\Windows\System32\DPAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Data Protection API 131795770645382127 0x7ffacbd30000 229376 C:\Windows\SYSTEM32\IPHLPAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API вспомогательного приложения IP 131795770645382127 0x7ffacbd70000 659456 C:\Windows\System32\DNSAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Динамическая библиотека API DNS-клиента 131795770645382127 0x7ffacbe20000 53248 C:\Windows\System32\netutils.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API Helpers DLL 131795770645382127 0x7ffacbfb0000 376832 C:\Windows\system32\mswsock.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширение поставщика службы API Microsoft Windows Sockets 2.0 131795770645382127 0x7ffacc150000 94208 C:\Windows\SYSTEM32\cryptsp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Cryptographic Service Provider API 131795770645382127 0x7ffacc170000 45056 C:\Windows\System32\CRYPTBASE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base cryptographic API DLL 131795770645382127 0x7ffacc1f0000 241664 C:\Windows\SYSTEM32\NTASN1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft ASN.1 API 131795770645382127 0x7ffacc230000 155648 C:\Windows\SYSTEM32\ncrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Маршрутизатор Windows NCrypt 131795770645382127 0x7ffacc350000 180224 C:\Windows\System32\SspiCli.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Security Support Provider Interface 131795770645382127 0x7ffacc620000 176128 C:\Windows\System32\bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795770645382127 0x7ffacc6e0000 61440 C:\Windows\System32\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795770645382127 0x7ffacc6f0000 311296 C:\Windows\System32\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795770645382127 0x7ffacc740000 81920 C:\Windows\System32\profapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Profile Basic API 131795770645382127 0x7ffacc760000 65536 C:\Windows\System32\MSASN1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ASN.1 Runtime APIs 131795770645382127 0x7ffacc8f0000 1003520 C:\Windows\System32\ucrtbase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645382127 0x7ffacc9f0000 434176 C:\Windows\System32\bcryptPrimitives.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Cryptographic Primitives Library 131795770645382127 0x7ffacca60000 122880 C:\Windows\System32\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795770645382127 0x7ffacca80000 348160 C:\Windows\System32\WINTRUST.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation Microsoft Trust Verification APIs 131795770645382127 0x7ffaccae0000 692224 C:\Windows\System32\shcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795770645382127 0x7ffaccb90000 7180288 C:\Windows\System32\windows.storage.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API хранения Microsoft WinRT 131795770645382127 0x7ffacd270000 2215936 C:\Windows\System32\KERNELBASE.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645382127 0x7ffacd490000 1871872 C:\Windows\System32\CRYPT32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API32 криптографии 131795770645382127 0x7ffacd710000 638976 C:\Windows\System32\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645382127 0x7ffacd7b0000 270336 C:\Windows\System32\CFGMGR32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Configuration Manager DLL 131795770645382127 0x7ffaced20000 782336 C:\Windows\System32\OLEAUT32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795770645382127 0x7ffacee50000 1183744 C:\Windows\System32\RPCRT4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795770645382127 0x7ffacef80000 32768 C:\Windows\System32\NSI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation NSI User-mode interface DLL 131795770645382127 0x7ffacef90000 647168 C:\Windows\System32\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795770645382127 0x7ffacf030000 651264 C:\Windows\System32\clbcatq.dll 2001.12.10941.16384 (rs1_release.160715-1616) Microsoft Corporation COM+ Configuration Catalog 131795770645382127 0x7ffacf0d0000 704512 C:\Windows\System32\KERNEL32.DLL 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645382127 0x7ffacf180000 376832 C:\Windows\System32\WLDAP32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Win32 LDAP API DLL 131795770645382127 0x7ffacf770000 212992 C:\Windows\System32\GDI32.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation GDI Client DLL 131795770645382127 0x7ffacf820000 434176 C:\Windows\System32\WS2_32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation 32-разрядная библиотека Windows Socket 2.0 131795770645382127 0x7ffacf890000 188416 C:\Windows\System32\IMM32.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Multi-User Windows IMM32 API Client DLL 131795770645382127 0x7ffacf8c0000 1462272 C:\Windows\System32\user32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795770645382127 0x7ffacfb30000 2916352 C:\Windows\System32\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795770645382127 0x7ffacfe20000 663552 C:\Windows\System32\advapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795770645382127 0x7ffad0070000 1277952 C:\Windows\System32\ole32.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft OLE для Windows 131795770645382127 0x7ffad01b0000 335872 C:\Windows\System32\shlwapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека небольших программ оболочки 131795770645382127 0x7ffad0210000 364544 C:\Windows\System32\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795770645382127 0x7ffad0270000 1908736 C:\Windows\SYSTEM32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 54 4408 348 24 00000000:0031f1ab 131765812380694767 0 0 1 Обязательная метка\Высокий обязательный уровень WIN-0UOTFKKVN1S\User taskhostw.exe C:\Windows\system32\taskhostw.exe taskhostw.exe Microsoft Corporation 10.0.14393.0 (rs1_release.160715-1616) Хост-процесс для задач Windows 131795770645382224 0x17826230000 12288 C:\Windows\SYSTEM32\sfc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows File Protection 131795770645382224 0x7ff794e10000 102400 C:\Windows\system32\taskhostw.exe 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Хост-процесс для задач Windows 131795770645382224 0x7ffab1140000 1134592 C:\Windows\System32\ReAgent.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL агента восстановления Microsoft Windows 131795770645382224 0x7ffab1c40000 1302528 C:\Windows\System32\LicenseManager.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation LicenseManager 131795770645382224 0x7ffab8da0000 1675264 C:\Windows\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.14393.1715_none_aec701fbddd850fa\gdiplus.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Microsoft GDI+ 131795770645382224 0x7ffab93b0000 897024 C:\Windows\System32\TokenBroker.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Token Broker 131795770645382224 0x7ffabafc0000 700416 C:\Windows\system32\wer.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека сообщений об ошибках Windows 131795770645382224 0x7ffabb2b0000 1089536 C:\Windows\system32\SettingSyncCore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Setting Synchronization Core 131795770645382224 0x7ffabbd20000 106496 C:\Windows\SYSTEM32\settingsyncpolicy.dll 10.0.14393.82 (rs1_release.160805-1735) Microsoft Corporation SettingSync Policy 131795770645382224 0x7ffabe000000 409600 C:\Windows\system32\WinSATAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows System Assessment Tool API 131795770645382224 0x7ffabe850000 155648 C:\Windows\System32\IDStore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Identity Store 131795770645382224 0x7ffabef80000 69632 C:\Windows\SYSTEM32\sfc_os.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows File Protection 131795770645382224 0x7ffabefd0000 258048 C:\Windows\system32\AEPIC.dll 10.0.17060.1029 (WinBuild.160101.0800) Microsoft Corporation Application Experience Program Cache 131795770645382224 0x7ffabf050000 225280 C:\Windows\System32\sdiageng.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Подсистема выполнения сценариев диагностики 131795770645382224 0x7ffabf1d0000 192512 C:\Windows\system32\cryptnet.dll 10.0.14393.2035 (rs1_release_inmarket.180110-1910) Microsoft Corporation Crypto Network Related API 131795770645382224 0x7ffabf330000 2457600 C:\Windows\System32\msxml6.dll 6.30.14393.2156 Microsoft Corporation MSXML 6.0 131795770645382224 0x7ffabfbe0000 1011712 C:\Windows\System32\Windows.Security.Authentication.OnlineId.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation Windows Runtime OnlineId Authentication DLL 131795770645382224 0x7ffabff60000 135168 C:\Windows\system32\ncryptsslp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft SChannel Provider 131795770645382224 0x7ffac0ad0000 86016 C:\Windows\SYSTEM32\mskeyprotect.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик защиты ключей (Майкрософт) 131795770645382224 0x7ffac0bf0000 3559424 C:\Windows\System32\ActXPrxy.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation ActiveX Interface Marshaling Library 131795770645382224 0x7ffac1d60000 589824 C:\Windows\system32\webio.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API протоколов передачи по Веб 131795770645382224 0x7ffac23c0000 331776 C:\Windows\System32\OneCoreCommonProxyStub.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation OneCore Common Proxy Stub 131795770645382224 0x7ffac2750000 106496 C:\Windows\System32\bcd.dll 10.0.14393.1794 (rs1_release.171008-1615) Microsoft Corporation BCD DLL 131795770645382224 0x7ffac2b80000 40960 C:\Windows\system32\VERSION.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Version Checking and File Installation Libraries 131795770645382224 0x7ffac2c30000 135168 C:\Windows\System32\CLIPC.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиент платформы лицензирования клиента 131795770645382224 0x7ffac3810000 167936 C:\Windows\System32\Cabinet.dll 5.00 (rs1_release.160715-1616) Microsoft Corporation Microsoft® Cabinet File API 131795770645382224 0x7ffac3cb0000 2772992 C:\Windows\SYSTEM32\iertutil.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служебная программа времени выполнения для Internet Explorer 131795770645382224 0x7ffac4000000 274432 C:\Windows\SYSTEM32\policymanager.dll 10.0.14393.2035 (rs1_release_inmarket.180110-1910) Microsoft Corporation Policy Manager DLL 131795770645382224 0x7ffac4050000 118784 C:\Windows\System32\wdi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Инфраструктура диагностики Windows 131795770645382224 0x7ffac4ae0000 69632 C:\Windows\System32\sdiagschd.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Запланированная задача сценариев проверки 131795770645382224 0x7ffac4b00000 45056 C:\Windows\System32\MemoryDiagnostic.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Обработчик задач средства проверки памяти Windows (Майкрософт) 131795770645382224 0x7ffac5c80000 90112 C:\Windows\System32\TempSignedLicenseExchangeTask.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation TempSignedLicenseExchangeTask Task 131795770645382224 0x7ffac60e0000 221184 C:\Windows\system32\XmlLite.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft XmlLite Library 131795770645382224 0x7ffac6610000 40960 C:\Windows\System32\rasadhlp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Remote Access AutoDial Helper 131795770645382224 0x7ffac69c0000 839680 C:\Windows\system32\WINHTTP.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Службы HTTP Windows 131795770645382224 0x7ffac6c40000 2596864 C:\Windows\WinSxS\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.14393.953_none_42151e83c686086b\COMCTL32.dll 6.10 (rs1_release_inmarket.170303-1614) Microsoft Corporation Библиотека элементов управления взаимодействия с пользователем 131795770645382224 0x7ffac79c0000 57344 C:\Windows\System32\npmproxy.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Network List Manager Proxy 131795770645382224 0x7ffac83d0000 106496 C:\Windows\SYSTEM32\dhcpcsvc.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служба DHCP-клиента 131795770645382224 0x7ffac83f0000 90112 C:\Windows\SYSTEM32\dhcpcsvc6.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиент DHCPv6 131795770645382224 0x7ffac8810000 45056 C:\Windows\SYSTEM32\WINNSI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Network Store Information RPC interface 131795770645382224 0x7ffac8cf0000 815104 C:\Windows\System32\taskschd.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Task Scheduler COM API 131795770645382224 0x7ffac8dc0000 167936 C:\Windows\system32\dbgcore.DLL 10.0.14321.1024 (debuggers(dbg).160715-1616) Microsoft Windows Core Debugging Helpers 131795770645382224 0x7ffac8df0000 1646592 C:\Windows\system32\dbghelp.dll 10.0.14321.1024 (rs1_release.160715-1616) Microsoft Windows Image Helper 131795770645382224 0x7ffac9220000 397312 C:\Windows\System32\wevtapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API настройки и использования событий 131795770645382224 0x7ffac92e0000 1269760 C:\Windows\System32\WinTypes.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL основных типов Windows 131795770645382224 0x7ffac9f10000 221184 C:\Windows\System32\netprofm.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Network List Manager 131795770645382224 0x7ffaca200000 32768 C:\Windows\System32\ReAgentTask.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Обработчик задач агента восстановления Microsoft Windows 131795770645382224 0x7ffaca210000 225280 C:\Windows\system32\RstrtMgr.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Диспетчер перезапуска 131795770645382224 0x7ffaca4e0000 77824 C:\Windows\SYSTEM32\wtsapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Remote Desktop Session Host Server SDK APIs 131795770645382224 0x7ffaca5e0000 155648 C:\Windows\system32\dwmapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Интерфейс API диспетчера окон рабочего стола (Майкрософт) 131795770645382224 0x7ffaca610000 143360 C:\Windows\System32\SAMLIB.dll 10.0.14393.82 (rs1_release.160805-1735) Microsoft Corporation SAM Library DLL 131795770645382224 0x7ffacac00000 94208 C:\Windows\system32\radarrs.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation программа устранения нехватки системных ресурсов Microsoft Windows 131795770645382224 0x7ffacaf00000 610304 C:\Windows\system32\uxtheme.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека тем UxTheme (Microsoft) 131795770645382224 0x7ffacb140000 593920 C:\Windows\SYSTEM32\msvcp110_win.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Microsoft® STL110 C++ Runtime Library 131795770645382224 0x7ffacb1e0000 1163264 C:\Windows\System32\twinapi.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation twinapi.appcore 131795770645382224 0x7ffacb420000 204800 C:\Windows\SYSTEM32\ntmarta.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик Windows NT MARTA 131795770645382224 0x7ffacb6f0000 143360 C:\Windows\SYSTEM32\gpapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиентские функции API групповой политики 131795770645382224 0x7ffacb780000 651264 C:\Windows\system32\dxgi.dll 10.0.14393.953 (rs1_release_inmarket.170303-1614) Microsoft Corporation DirectX Graphics Infrastructure 131795770645382224 0x7ffacbaf0000 495616 C:\Windows\system32\schannel.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик безопасности TLS/SSL 131795770645382224 0x7ffacbbb0000 208896 C:\Windows\system32\rsaenh.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Enhanced Cryptographic Provider 131795770645382224 0x7ffacbbf0000 40960 C:\Windows\System32\DPAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Data Protection API 131795770645382224 0x7ffacbd30000 229376 C:\Windows\SYSTEM32\IPHLPAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API вспомогательного приложения IP 131795770645382224 0x7ffacbd70000 659456 C:\Windows\system32\DNSAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Динамическая библиотека API DNS-клиента 131795770645382224 0x7ffacbe40000 126976 C:\Windows\system32\USERENV.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Userenv 131795770645382224 0x7ffacbfb0000 376832 C:\Windows\system32\mswsock.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширение поставщика службы API Microsoft Windows Sockets 2.0 131795770645382224 0x7ffacc150000 94208 C:\Windows\system32\CRYPTSP.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Cryptographic Service Provider API 131795770645382224 0x7ffacc170000 45056 C:\Windows\system32\CRYPTBASE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base cryptographic API DLL 131795770645382224 0x7ffacc1f0000 241664 C:\Windows\system32\NTASN1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft ASN.1 API 131795770645382224 0x7ffacc230000 155648 C:\Windows\system32\ncrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Маршрутизатор Windows NCrypt 131795770645382224 0x7ffacc350000 180224 C:\Windows\system32\SspiCli.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Security Support Provider Interface 131795770645382224 0x7ffacc520000 622592 C:\Windows\SYSTEM32\sxs.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Fusion 2.5 131795770645382224 0x7ffacc620000 176128 C:\Windows\system32\bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795770645382224 0x7ffacc6e0000 61440 C:\Windows\System32\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795770645382224 0x7ffacc6f0000 311296 C:\Windows\System32\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795770645382224 0x7ffacc740000 81920 C:\Windows\System32\profapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Profile Basic API 131795770645382224 0x7ffacc760000 65536 C:\Windows\System32\MSASN1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ASN.1 Runtime APIs 131795770645382224 0x7ffacc8f0000 1003520 C:\Windows\System32\ucrtbase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645382224 0x7ffacc9f0000 434176 C:\Windows\System32\bcryptPrimitives.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Cryptographic Primitives Library 131795770645382224 0x7ffacca60000 122880 C:\Windows\System32\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795770645382224 0x7ffacca80000 348160 C:\Windows\System32\WINTRUST.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation Microsoft Trust Verification APIs 131795770645382224 0x7ffaccae0000 692224 C:\Windows\System32\shcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795770645382224 0x7ffaccb90000 7180288 C:\Windows\System32\windows.storage.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API хранения Microsoft WinRT 131795770645382224 0x7ffacd270000 2215936 C:\Windows\System32\KERNELBASE.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645382224 0x7ffacd490000 1871872 C:\Windows\System32\CRYPT32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API32 криптографии 131795770645382224 0x7ffacd710000 638976 C:\Windows\System32\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645382224 0x7ffacd7b0000 270336 C:\Windows\System32\cfgmgr32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Configuration Manager DLL 131795770645382224 0x7ffacd810000 22056960 C:\Windows\System32\SHELL32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Общая библиотека оболочки Windows 131795770645382224 0x7ffaced20000 782336 C:\Windows\System32\OLEAUT32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795770645382224 0x7ffacee50000 1183744 C:\Windows\System32\RPCRT4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795770645382224 0x7ffacef80000 32768 C:\Windows\System32\NSI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation NSI User-mode interface DLL 131795770645382224 0x7ffacef90000 647168 C:\Windows\System32\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795770645382224 0x7ffacf030000 651264 C:\Windows\System32\clbcatq.dll 2001.12.10941.16384 (rs1_release.160715-1616) Microsoft Corporation COM+ Configuration Catalog 131795770645382224 0x7ffacf0d0000 704512 C:\Windows\System32\KERNEL32.DLL 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645382224 0x7ffacf1e0000 1417216 C:\Windows\System32\MSCTF.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Серверная библиотека MSCTF 131795770645382224 0x7ffacf340000 4362240 C:\Windows\System32\SETUPAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Setup API 131795770645382224 0x7ffacf770000 212992 C:\Windows\System32\GDI32.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation GDI Client DLL 131795770645382224 0x7ffacf820000 434176 C:\Windows\System32\WS2_32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation 32-разрядная библиотека Windows Socket 2.0 131795770645382224 0x7ffacf890000 188416 C:\Windows\System32\imm32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Multi-User Windows IMM32 API Client DLL 131795770645382224 0x7ffacf8c0000 1462272 C:\Windows\System32\USER32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795770645382224 0x7ffacfb30000 2916352 C:\Windows\System32\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795770645382224 0x7ffacfe00000 114688 C:\Windows\System32\imagehlp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT Image Helper 131795770645382224 0x7ffacfe20000 663552 C:\Windows\System32\ADVAPI32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795770645382224 0x7ffad0070000 1277952 C:\Windows\System32\ole32.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft OLE для Windows 131795770645382224 0x7ffad01b0000 335872 C:\Windows\System32\SHLWAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека небольших программ оболочки 131795770645382224 0x7ffad0210000 364544 C:\Windows\System32\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795770645382224 0x7ffad0270000 1908736 C:\Windows\SYSTEM32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 55 6944 664 6 00000000:0031f1da 131767576301455145 0 0 1 Обязательная метка\Низкий обязательный уровень WIN-0UOTFKKVN1S\User SkypeHost.exe C:\Program Files\WindowsApps\Microsoft.SkypeApp_12.1815.210.0_x64__kzf8qxf38zg5c\SkypeHost.exe "C:\Program Files\WindowsApps\Microsoft.SkypeApp_12.1815.210.0_x64__kzf8qxf38zg5c\SkypeHost.exe" -ServerName:SkypeHost.ServerServer Microsoft Corporation 12.1815.210.0 Microsoft Skype 131795770645382388 0x7ff7e8670000 102400 C:\Program Files\WindowsApps\Microsoft.SkypeApp_12.1815.210.0_x64__kzf8qxf38zg5c\SkypeHost.exe 12.1815.210.0 Microsoft Corporation Microsoft Skype 131795770645382388 0x7ffaae130000 22437888 C:\Program Files\WindowsApps\Microsoft.SkypeApp_12.1815.210.0_x64__kzf8qxf38zg5c\SkyWrap.dll 12.1815.210.0 Microsoft Corporation Microsoft Skype 131795770645382388 0x7ffabaab0000 94208 C:\Windows\SYSTEM32\profext.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation profext 131795770645382388 0x7ffabc530000 241664 C:\Windows\SYSTEM32\Windows.Networking.HostName.dll 10.0.14393.953 (rs1_release_inmarket.170303-1614) Microsoft Corporation Windows.Networking.HostName DLL 131795770645382388 0x7ffabca50000 819200 C:\Windows\System32\Windows.Security.Authentication.Web.Core.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Token Broker WinRT API 131795770645382388 0x7ffabe150000 2691072 C:\Program Files\WindowsApps\Microsoft.SkypeApp_12.1815.210.0_x64__kzf8qxf38zg5c\skypert.dll 2018.15.01.31 SkypeRT shared library 131795770645382388 0x7ffabea90000 135168 C:\Windows\System32\Windows.ApplicationModel.Background.SystemEventsBroker.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Background System Events Broker API Server 131795770645382388 0x7ffabeac0000 335872 C:\Windows\System32\Windows.Storage.ApplicationData.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Application Data API Server 131795770645382388 0x7ffac0470000 1478656 C:\Windows\SYSTEM32\MFPlat.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Media Foundation Platform DLL 131795770645382388 0x7ffac0910000 724992 C:\Windows\SYSTEM32\Windows.Networking.Connectivity.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Networking Connectivity Runtime DLL 131795770645382388 0x7ffac0bf0000 3559424 C:\Windows\System32\ActXPrxy.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation ActiveX Interface Marshaling Library 131795770645382388 0x7ffac1a80000 978944 C:\Windows\SYSTEM32\Windows.Networking.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows.Networking DLL 131795770645382388 0x7ffac1b90000 630784 C:\Program Files\WindowsApps\Microsoft.VCLibs.140.00_14.0.25426.0_x64__8wekyb3d8bbwe\MSVCP140_APP.dll 14.11.25426.0 built by: VCTOOLSREL Microsoft Corporation Microsoft® C Runtime Library 131795770645382388 0x7ffac1e50000 188416 C:\Windows\SYSTEM32\RTWorkQ.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL для WorkQueue реального времени 131795770645382388 0x7ffac23c0000 331776 C:\Windows\System32\OneCoreCommonProxyStub.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation OneCore Common Proxy Stub 131795770645382388 0x7ffac2b30000 286720 C:\Windows\System32\usermgrproxy.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation UserMgrProxy 131795770645382388 0x7ffac2c30000 135168 C:\Windows\SYSTEM32\clipc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиент платформы лицензирования клиента 131795770645382388 0x7ffac3cb0000 2772992 C:\Windows\System32\iertutil.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служебная программа времени выполнения для Internet Explorer 131795770645382388 0x7ffac4b10000 307200 C:\Program Files\WindowsApps\Microsoft.VCLibs.140.00_14.0.25426.0_x64__8wekyb3d8bbwe\CONCRT140_APP.dll 14.11.25426.0 built by: VCTOOLSREL Microsoft Corporation Microsoft® Concurrency Runtime Library 131795770645382388 0x7ffac4c60000 385024 C:\Program Files\WindowsApps\Microsoft.VCLibs.140.00_14.0.25426.0_x64__8wekyb3d8bbwe\vccorlib140_app.DLL 14.11.25426.0 built by: VCTOOLSREL Microsoft Corporation Microsoft ® VC WinRT core library 131795770645382388 0x7ffac5070000 798720 C:\Windows\System32\Windows.Web.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL веб-клиента 131795770645382388 0x7ffac6620000 192512 C:\Windows\System32\biwinrt.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation Windows Background Broker Infrastructure 131795770645382388 0x7ffac7580000 1077248 C:\Windows\SYSTEM32\mrmcorer.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Windows MRM 131795770645382388 0x7ffac7720000 1601536 C:\Windows\System32\OneCoreUAPCommonProxyStub.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation OneCoreUAP Common Proxy Stub 131795770645382388 0x7ffac7c80000 208896 C:\Program Files\WindowsApps\Microsoft.SkypeApp_12.1815.210.0_x64__kzf8qxf38zg5c\SkypeBackgroundTasks.dll 12.1815.210.0 Microsoft Corporation Microsoft Skype 131795770645382388 0x7ffac7d80000 49152 C:\Windows\System32\Windows.ApplicationModel.Background.TimeBroker.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Background Time Broker API Server 131795770645382388 0x7ffac8540000 286720 C:\Windows\System32\vaultcli.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиентская библиотека хранилища учетных данных 131795770645382388 0x7ffac92e0000 1269760 C:\Windows\System32\WinTypes.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL основных типов Windows 131795770645382388 0x7ffaca260000 45056 C:\Windows\SYSTEM32\SystemEventsBrokerClient.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation system Events Broker Client Library 131795770645382388 0x7ffaca340000 1593344 C:\Windows\SYSTEM32\PROPSYS.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Система страниц свойств (Майкрософт) 131795770645382388 0x7ffacab80000 90112 C:\Program Files\WindowsApps\Microsoft.VCLibs.140.00_14.0.25426.0_x64__8wekyb3d8bbwe\VCRUNTIME140_APP.dll 14.11.25426.0 built by: VCTOOLSREL Microsoft Corporation Microsoft® C Runtime Library 131795770645382388 0x7ffacb1e0000 1163264 C:\Windows\SYSTEM32\twinapi.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation twinapi.appcore 131795770645382388 0x7ffacb360000 176128 C:\Windows\SYSTEM32\fwbase.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Firewall Base DLL 131795770645382388 0x7ffacb420000 204800 C:\Windows\SYSTEM32\ntmarta.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик Windows NT MARTA 131795770645382388 0x7ffacb460000 548864 C:\Windows\SYSTEM32\FirewallAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API брандмауэра Windows 131795770645382388 0x7ffacbbf0000 40960 C:\Windows\SYSTEM32\DPAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Data Protection API 131795770645382388 0x7ffacbd30000 229376 C:\Windows\SYSTEM32\IPHLPAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API вспомогательного приложения IP 131795770645382388 0x7ffacbe40000 126976 C:\Windows\SYSTEM32\USERENV.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Userenv 131795770645382388 0x7ffacc170000 45056 C:\Windows\SYSTEM32\CRYPTBASE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base cryptographic API DLL 131795770645382388 0x7ffacc620000 176128 C:\Windows\SYSTEM32\bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795770645382388 0x7ffacc6e0000 61440 C:\Windows\System32\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795770645382388 0x7ffacc6f0000 311296 C:\Windows\System32\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795770645382388 0x7ffacc740000 81920 C:\Windows\System32\profapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Profile Basic API 131795770645382388 0x7ffacc760000 65536 C:\Windows\System32\MSASN1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ASN.1 Runtime APIs 131795770645382388 0x7ffacc8f0000 1003520 C:\Windows\System32\ucrtbase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645382388 0x7ffacc9f0000 434176 C:\Windows\System32\bcryptPrimitives.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Cryptographic Primitives Library 131795770645382388 0x7ffacca60000 122880 C:\Windows\System32\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795770645382388 0x7ffaccae0000 692224 C:\Windows\System32\shcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795770645382388 0x7ffaccb90000 7180288 C:\Windows\System32\windows.storage.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API хранения Microsoft WinRT 131795770645382388 0x7ffacd270000 2215936 C:\Windows\System32\KERNELBASE.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645382388 0x7ffacd490000 1871872 C:\Windows\System32\CRYPT32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API32 криптографии 131795770645382388 0x7ffacd710000 638976 C:\Windows\System32\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645382388 0x7ffacd7b0000 270336 C:\Windows\System32\cfgmgr32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Configuration Manager DLL 131795770645382388 0x7ffaced20000 782336 C:\Windows\System32\OLEAUT32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795770645382388 0x7ffacee50000 1183744 C:\Windows\System32\RPCRT4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795770645382388 0x7ffacef90000 647168 C:\Windows\System32\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795770645382388 0x7ffacf0d0000 704512 C:\Windows\System32\KERNEL32.DLL 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645382388 0x7ffacf770000 212992 C:\Windows\System32\GDI32.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation GDI Client DLL 131795770645382388 0x7ffacf820000 434176 C:\Windows\System32\WS2_32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation 32-разрядная библиотека Windows Socket 2.0 131795770645382388 0x7ffacf890000 188416 C:\Windows\System32\IMM32.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Multi-User Windows IMM32 API Client DLL 131795770645382388 0x7ffacf8c0000 1462272 C:\Windows\System32\USER32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795770645382388 0x7ffacfb30000 2916352 C:\Windows\System32\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795770645382388 0x7ffacfe20000 663552 C:\Windows\System32\advapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795770645382388 0x7ffad01b0000 335872 C:\Windows\System32\shlwapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека небольших программ оболочки 131795770645382388 0x7ffad0210000 364544 C:\Windows\System32\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795770645382388 0x7ffad0270000 1908736 C:\Windows\SYSTEM32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 56 1048 580 4 00000000:000003e7 131768729449405953 0 0 1 Обязательная метка\Обязательный уровень системы NT AUTHORITY\СИСТЕМА sedsvc.exe C:\Program Files\rempl\sedsvc.exe "C:\Program Files\rempl\sedsvc.exe" Microsoft Corporation 10.0.16299.10000 (WinBuild.160101.0800) sedsvc 131795770645382485 0x7ff751430000 307200 C:\Program Files\rempl\sedsvc.exe 10.0.16299.10000 (WinBuild.160101.0800) Microsoft Corporation sedsvc 131795770645382485 0x7ffabf5d0000 2924544 C:\Windows\SYSTEM32\WININET.dll 11.00.14393.447 (rs1_release_inmarket.161102-0100) Microsoft Corporation Расширения Интернета для Win32 131795770645382485 0x7ffac2b80000 40960 C:\Windows\SYSTEM32\VERSION.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Version Checking and File Installation Libraries 131795770645382485 0x7ffac69c0000 839680 C:\Windows\SYSTEM32\WINHTTP.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Службы HTTP Windows 131795770645382485 0x7ffac8cf0000 815104 C:\Windows\System32\taskschd.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Task Scheduler COM API 131795770645382485 0x7ffaca4e0000 77824 C:\Windows\SYSTEM32\WTSAPI32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Remote Desktop Session Host Server SDK APIs 131795770645382485 0x7ffacb6f0000 143360 C:\Windows\SYSTEM32\gpapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиентские функции API групповой политики 131795770645382485 0x7ffacbbb0000 208896 C:\Windows\system32\rsaenh.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Enhanced Cryptographic Provider 131795770645382485 0x7ffacc150000 94208 C:\Windows\SYSTEM32\CRYPTSP.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Cryptographic Service Provider API 131795770645382485 0x7ffacc170000 45056 C:\Windows\SYSTEM32\CRYPTBASE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base cryptographic API DLL 131795770645382485 0x7ffacc350000 180224 C:\Windows\System32\SspiCli.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Security Support Provider Interface 131795770645382485 0x7ffacc620000 176128 C:\Windows\SYSTEM32\bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795770645382485 0x7ffacc6e0000 61440 C:\Windows\System32\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795770645382485 0x7ffacc6f0000 311296 C:\Windows\System32\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795770645382485 0x7ffacc740000 81920 C:\Windows\System32\profapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Profile Basic API 131795770645382485 0x7ffacc760000 65536 C:\Windows\System32\MSASN1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ASN.1 Runtime APIs 131795770645382485 0x7ffacc8f0000 1003520 C:\Windows\System32\ucrtbase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645382485 0x7ffacc9f0000 434176 C:\Windows\System32\bcryptPrimitives.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Cryptographic Primitives Library 131795770645382485 0x7ffacca60000 122880 C:\Windows\System32\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795770645382485 0x7ffacca80000 348160 C:\Windows\System32\WINTRUST.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation Microsoft Trust Verification APIs 131795770645382485 0x7ffaccae0000 692224 C:\Windows\System32\shcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795770645382485 0x7ffaccb90000 7180288 C:\Windows\System32\windows.storage.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API хранения Microsoft WinRT 131795770645382485 0x7ffacd270000 2215936 C:\Windows\System32\KERNELBASE.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645382485 0x7ffacd490000 1871872 C:\Windows\System32\CRYPT32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API32 криптографии 131795770645382485 0x7ffacd710000 638976 C:\Windows\System32\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645382485 0x7ffacd7b0000 270336 C:\Windows\System32\cfgmgr32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Configuration Manager DLL 131795770645382485 0x7ffacd810000 22056960 C:\Windows\System32\SHELL32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Общая библиотека оболочки Windows 131795770645382485 0x7ffaced20000 782336 C:\Windows\System32\OLEAUT32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795770645382485 0x7ffacee50000 1183744 C:\Windows\System32\RPCRT4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795770645382485 0x7ffacef90000 647168 C:\Windows\System32\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795770645382485 0x7ffacf030000 651264 C:\Windows\System32\clbcatq.dll 2001.12.10941.16384 (rs1_release.160715-1616) Microsoft Corporation COM+ Configuration Catalog 131795770645382485 0x7ffacf0d0000 704512 C:\Windows\System32\KERNEL32.DLL 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645382485 0x7ffacf340000 4362240 C:\Windows\System32\setupapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Setup API 131795770645382485 0x7ffacf770000 212992 C:\Windows\System32\GDI32.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation GDI Client DLL 131795770645382485 0x7ffacf8c0000 1462272 C:\Windows\System32\USER32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795770645382485 0x7ffacfb30000 2916352 C:\Windows\System32\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795770645382485 0x7ffacfe00000 114688 C:\Windows\System32\imagehlp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT Image Helper 131795770645382485 0x7ffacfe20000 663552 C:\Windows\System32\advapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795770645382485 0x7ffad01b0000 335872 C:\Windows\System32\shlwapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека небольших программ оболочки 131795770645382485 0x7ffad0210000 364544 C:\Windows\System32\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795770645382485 0x7ffad0270000 1908736 C:\Windows\SYSTEM32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 57 7744 3108 11 00000000:0031f1da 131769081112364684 0 0 0 Обязательная метка\Средний обязательный уровень WIN-0UOTFKKVN1S\User browser.exe C:\Users\User\AppData\Local\Yandex\YandexBrowser\Application\browser.exe "C:\Users\User\AppData\Local\Yandex\YandexBrowser\Application\browser.exe" YANDEX LLC 18.6.1.770 Yandex 131795770645382623 0x10e0000 2519040 C:\Users\User\AppData\Local\Yandex\YandexBrowser\Application\browser.exe 18.6.1.770 YANDEX LLC Yandex 131795770645382623 0x11330000 172032 C:\Windows\SysWOW64\RTWorkQ.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL для WorkQueue реального времени 131795770645382623 0x5c020000 335872 C:\Windows\System32\wow64.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation Win32 Emulation on NT64 131795770645382623 0x5c080000 487424 C:\Windows\System32\wow64win.dll 10.0.14393.1884 (rs1_release.171101-1233) Microsoft Corporation Wow64 Console and Win32 API Logging 131795770645382623 0x5c100000 40960 C:\Windows\System32\wow64cpu.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation AMD64 Wow64 CPU 131795770645382623 0x5fec0000 794624 C:\Windows\SysWOW64\wbem\fastprox.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation WMI Custom Marshaller 131795770645382623 0x5ffa0000 421888 C:\Windows\SysWOW64\wbemcomn.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation WMI 131795770645382623 0x60010000 53248 C:\Windows\SysWOW64\wbem\wbemprox.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation WMI 131795770645382623 0x60750000 1556480 C:\Program Files (x86)\360\Total Security\safemon\safemon.dll 8, 4, 0, 1420 Qihu 360 Software Co., Ltd. 360 Internet Security Internet Protection 131795770645382623 0x60900000 720896 C:\Program Files (x86)\360\Total Security\safemon\urlproc.dll 2, 9, 5, 1260 Qihu 360 Software Co., Ltd. 360 Internet Security 2013 Internet Protection 131795770645382623 0x622f0000 520192 C:\Program Files (x86)\360\Total Security\deepscan\heavygate.dll 3, 8, 11, 1 Qihu 360 Software Co., Ltd. 360 Total Security Cloud Security 131795770645382623 0x62980000 376832 C:\Program Files (x86)\360\Total Security\360NetBase.dll 7, 25, 0, 76 360.cn 360安全卫士 网络基础模块 131795770645382623 0x68b00000 44998656 C:\Users\User\AppData\Local\Yandex\YandexBrowser\Application\18.6.1.770\browser.dll 18.6.1.770 YANDEX LLC Yandex 131795770645382623 0x6b6b0000 36864 C:\Windows\SysWOW64\atlthunk.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation atlthunk.dll 131795770645382623 0x6b6d0000 102400 C:\Program Files (x86)\360\Total Security\I18N.dll 1, 0, 0, 1016 Qihu 360 Software Co., Ltd. 360 Total Security 131795770645382623 0x6bf00000 3715072 C:\Windows\SysWOW64\msi.dll 5.0.14393.2155 Microsoft Corporation Windows Installer 131795770645382623 0x6c290000 987136 C:\Windows\SysWOW64\twinapi.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation twinapi.appcore 131795770645382623 0x6c390000 1126400 C:\Windows\SysWOW64\dcomp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft DirectComposition Library 131795770645382623 0x6c4b0000 278528 C:\Windows\SysWOW64\dataexchange.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation Data exchange 131795770645382623 0x6c540000 483328 C:\Windows\SysWOW64\webio.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API протоколов передачи по Веб 131795770645382623 0x6cd50000 106496 C:\Windows\SysWOW64\SAMLIB.dll 10.0.14393.82 (rs1_release.160805-1735) Microsoft Corporation SAM Library DLL 131795770645382623 0x6ce30000 421888 C:\Windows\SysWOW64\msvcp110_win.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Microsoft® STL110 C++ Runtime Library 131795770645382623 0x6cf60000 569344 C:\Windows\SysWOW64\taskschd.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Task Scheduler COM API 131795770645382623 0x6d080000 151552 C:\Windows\SysWOW64\cryptnet.dll 10.0.14393.2035 (rs1_release_inmarket.180110-1910) Microsoft Corporation Crypto Network Related API 131795770645382623 0x6d0b0000 847872 C:\Windows\SysWOW64\wintypes.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL основных типов Windows 131795770645382623 0x6dc80000 90112 C:\Program Files (x86)\Windows Defender\MpOav.dll 4.10.14393.1794 (rs1_release.171008-1615) Microsoft Corporation IOfficeAntiVirus Module 131795770645382623 0x6df70000 245760 C:\Windows\SysWOW64\shdocvw.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека объектов документов и элементов управления оболочки 131795770645382623 0x6e070000 98304 C:\Windows\SysWOW64\MSACM32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Фильтр диспетчера аудиосжатия Microsoft 131795770645382623 0x6e090000 233472 C:\Windows\SysWOW64\wdmaud.drv 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Системный звуковой драйвер Winmm 131795770645382623 0x6e110000 32768 C:\Windows\SysWOW64\midimap.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft MIDI Mapper 131795770645382623 0x6e120000 40960 C:\Windows\SysWOW64\msacm32.drv 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Программа переназначения звуковых устройств 131795770645382623 0x6e130000 36864 C:\Windows\SysWOW64\AVRT.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Multimedia Realtime Runtime 131795770645382623 0x6e2a0000 4440064 C:\Windows\SysWOW64\explorerframe.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ExplorerFrame 131795770645382623 0x6e8b0000 1859584 C:\Windows\SysWOW64\mfmp4srcsnk.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL источника и приемника MPEG4 Media Foundation 131795770645382623 0x6eb60000 28672 C:\Windows\SysWOW64\ksuser.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User CSA Library 131795770645382623 0x6eb70000 790528 C:\Windows\SysWOW64\ntshrui.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширения оболочки, обеспечивающие общий доступ 131795770645382623 0x6ec40000 442368 C:\Windows\SysWOW64\twinapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation twinapi 131795770645382623 0x6eed0000 274432 C:\Windows\SysWOW64\thumbcache.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Кэш эскизов Майкрософт 131795770645382623 0x6ef30000 647168 C:\Windows\SysWOW64\evr.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека DLL средства отображения видео 131795770645382623 0x6efd0000 458752 C:\Windows\SysWOW64\msauddecmft.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Media Foundation Audio Decoders 131795770645382623 0x6f790000 1085440 C:\Windows\SysWOW64\mfperfhelper.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation MFPerf DLL 131795770645382623 0x6f8a0000 2220032 C:\Windows\SysWOW64\msmpeg2vdec.dll 10.0.14393.953 (rs1_release_inmarket.170303-1614) Microsoft Corporation Microsoft DTV-DVD Video Decoder 131795770645382623 0x6fac0000 1130496 C:\Windows\SysWOW64\mfplat.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Media Foundation Platform DLL 131795770645382623 0x6fc70000 385024 C:\Windows\SysWOW64\FirewallAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API брандмауэра Windows 131795770645382623 0x6fd00000 73728 C:\Windows\SysWOW64\mssprxy.dll 7.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation Microsoft Search Proxy 131795770645382623 0x6fd20000 61440 C:\Windows\SysWOW64\cscapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Offline Files Win32 API 131795770645382623 0x6fd30000 139264 C:\Windows\SysWOW64\DEVOBJ.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Device Information Set DLL 131795770645382623 0x6fd60000 360448 C:\Windows\SysWOW64\MMDevAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation MMDevice API 131795770645382623 0x6fdc0000 507904 C:\Windows\SysWOW64\audioses.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Сеанс обработки звука 131795770645382623 0x6fe40000 57344 C:\Windows\SysWOW64\BitsProxy.dll 7.8.14393.0 (rs1_release.160715-1616) Microsoft Corporation Background Intelligent Transfer Service Proxy 131795770645382623 0x6fe50000 241664 C:\Windows\SysWOW64\mstask.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека интерфейса планировщика заданий 131795770645382623 0x6fe90000 544768 C:\Windows\SysWOW64\mscms.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL-библиотека системы сопоставления цветов Майкрософт 131795770645382623 0x6ff90000 323584 C:\Windows\SysWOW64\wlanapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows WLAN AutoConfig Client Side API DLL 131795770645382623 0x6ffe0000 303104 C:\Windows\SysWOW64\wevtapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API настройки и использования событий 131795770645382623 0x70030000 593920 C:\Users\User\AppData\Local\Yandex\YandexBrowser\Application\18.6.1.770\browser_elf.dll 18.6.1.770 YANDEX LLC Yandex 131795770645382623 0x70140000 274432 C:\Windows\SysWOW64\WINSTA.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Winstation Library 131795770645382623 0x70190000 53248 C:\Windows\SysWOW64\LINKINFO.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Volume Tracking 131795770645382623 0x701a0000 401408 C:\Users\User\AppData\Local\Yandex\YandexBrowser\Application\18.6.1.770\dllyupdate.dll 1.2.0.1831 Yandex LLC Yandex updater (CU) 131795770645382623 0x70340000 536576 C:\Windows\SysWOW64\dxgi.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation DirectX Graphics Infrastructure 131795770645382623 0x703d0000 2056192 C:\Windows\SysWOW64\DWrite.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Службы Microsoft DirectX Typography 131795770645382623 0x705e0000 344064 C:\Windows\SysWOW64\OLEACC.dll 7.2.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Active Accessibility Core Component 131795770645382623 0x70640000 1499136 C:\Windows\SysWOW64\WindowsCodecs.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Microsoft Windows Codecs Library 131795770645382623 0x707d0000 86016 C:\Windows\SysWOW64\SAMCLI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Security Accounts Manager Client DLL 131795770645382623 0x70a20000 94208 C:\Windows\SysWOW64\USP10.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Uniscribe Unicode script processor 131795770645382623 0x70a40000 81920 C:\Windows\SysWOW64\NLAapi.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Network Location Awareness 2 131795770645382623 0x70b00000 176128 C:\Windows\SysWOW64\wscapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API центра обеспечения безопасности Windows 131795770645382623 0x70b30000 36864 C:\Windows\SysWOW64\WINUSB.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows USB Driver User Library 131795770645382623 0x70b60000 40960 C:\Windows\SysWOW64\HID.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека пользователя HID 131795770645382623 0x70b70000 163840 C:\Windows\SysWOW64\ntmarta.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик Windows NT MARTA 131795770645382623 0x70ba0000 188416 C:\Windows\SysWOW64\FWPolicyIOMgr.dll 10.0.14393.2189 (rs1_release.180329-1711) Microsoft Corporation FwPolicyIoMgr DLL 131795770645382623 0x70bd0000 147456 C:\Windows\SysWOW64\fwbase.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Firewall Base DLL 131795770645382623 0x70c30000 114688 C:\Windows\SysWOW64\srvcli.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Server Service Client DLL 131795770645382623 0x70ca0000 45056 C:\Windows\SysWOW64\NETUTILS.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API Helpers DLL 131795770645382623 0x70cc0000 65536 C:\Windows\SysWOW64\ondemandconnroutehelper.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation On Demand Connctiond Route Helper 131795770645382623 0x70e60000 176128 C:\Windows\SysWOW64\NTASN1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft ASN.1 API 131795770645382623 0x70fd0000 1331200 C:\Windows\SysWOW64\dbghelp.dll 10.0.14321.1024 (rs1_release.160715-1616) Microsoft Windows Image Helper 131795770645382623 0x71140000 77824 C:\Windows\SysWOW64\NETAPI32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API DLL 131795770645382623 0x711f0000 32768 C:\Windows\SysWOW64\IconCodecService.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Converts a PNG part of the icon to a legacy bmp icon 131795770645382623 0x71610000 77824 C:\Windows\SysWOW64\dhcpcsvc6.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиент DHCPv6 131795770645382623 0x724f0000 57344 C:\Windows\SysWOW64\credui.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Credential Manager User Interface 131795770645382623 0x725e0000 2273280 C:\Windows\SysWOW64\iertutil.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служебная программа времени выполнения для Internet Explorer 131795770645382623 0x728e0000 1372160 C:\Windows\SysWOW64\PROPSYS.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Система страниц свойств (Майкрософт) 131795770645382623 0x72b90000 126976 C:\Windows\SysWOW64\dwmapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Интерфейс API диспетчера окон рабочего стола (Майкрософт) 131795770645382623 0x72cc0000 1658880 C:\Windows\SysWOW64\urlmon.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширения OLE32 для Win32 131795770645382623 0x73a40000 32768 C:\Windows\SysWOW64\WINNSI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Network Store Information RPC interface 131795770645382623 0x73a50000 299008 C:\Windows\SysWOW64\fwpuclnt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API пользовательского режима FWP/IPsec 131795770645382623 0x73aa0000 32768 C:\Windows\SysWOW64\DPAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Data Protection API 131795770645382623 0x73ab0000 32768 C:\Windows\SysWOW64\rasadhlp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Remote Access AutoDial Helper 131795770645382623 0x73ac0000 81920 C:\Windows\SysWOW64\dhcpcsvc.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служба DHCP-клиента 131795770645382623 0x73ae0000 40960 C:\Windows\SysWOW64\Secur32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Security Support Provider Interface 131795770645382623 0x73ee0000 61440 C:\Windows\SysWOW64\WTSAPI32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Remote Desktop Session Host Server SDK APIs 131795770645382623 0x73f00000 192512 C:\Windows\SysWOW64\IPHLPAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API вспомогательного приложения IP 131795770645382623 0x73f30000 512000 C:\Windows\SysWOW64\DNSAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Динамическая библиотека API DNS-клиента 131795770645382623 0x73ff0000 319488 C:\Windows\SysWOW64\mswsock.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширение поставщика службы API Microsoft Windows Sockets 2.0 131795770645382623 0x74040000 126976 C:\Windows\SysWOW64\gpapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиентские функции API групповой политики 131795770645382623 0x74060000 192512 C:\Windows\SysWOW64\rsaenh.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Enhanced Cryptographic Provider 131795770645382623 0x74110000 479232 C:\Windows\SysWOW64\uxtheme.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека тем UxTheme (Microsoft) 131795770645382623 0x74190000 110592 C:\Windows\SysWOW64\bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795770645382623 0x741b0000 77824 C:\Windows\SysWOW64\CRYPTSP.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Cryptographic Service Provider API 131795770645382623 0x741f0000 143360 C:\Windows\SysWOW64\WINMMBASE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base Multimedia Extension API DLL 131795770645382623 0x74230000 147456 C:\Windows\SysWOW64\WINMM.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation MCI API DLL 131795770645382623 0x74260000 2514944 C:\Windows\SysWOW64\WININET.dll 11.00.14393.447 (rs1_release_inmarket.161102-0100) Microsoft Corporation Расширения Интернета для Win32 131795770645382623 0x744d0000 2138112 C:\Windows\WinSxS\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.14393.953_none_89c2555adb023171\COMCTL32.dll 6.10 (rs1_release_inmarket.170303-1614) Microsoft Corporation Библиотека элементов управления взаимодействия с пользователем 131795770645382623 0x746e0000 32768 C:\Windows\SysWOW64\VERSION.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Version Checking and File Installation Libraries 131795770645382623 0x746f0000 106496 C:\Windows\SysWOW64\USERENV.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Userenv 131795770645382623 0x74730000 598016 C:\Windows\SysWOW64\apphelp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиентская библиотека совместимости приложений 131795770645382623 0x747d0000 40960 C:\Windows\SysWOW64\CRYPTBASE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base cryptographic API DLL 131795770645382623 0x747e0000 126976 C:\Windows\SysWOW64\SspiCli.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Security Support Provider Interface 131795770645382623 0x74800000 151552 C:\Windows\SysWOW64\IMM32.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Multi-User Windows IMM32 API Client DLL 131795770645382623 0x74910000 2170880 C:\Windows\SysWOW64\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795770645382623 0x74b30000 53248 C:\Windows\SysWOW64\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795770645382623 0x74b40000 102400 C:\Windows\SysWOW64\imagehlp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT Image Helper 131795770645382623 0x74b60000 790528 C:\Windows\SysWOW64\RPCRT4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795770645382623 0x74c30000 1417216 C:\Windows\SysWOW64\gdi32full.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation GDI Client DLL 131795770645382623 0x74d90000 24576 C:\Windows\SysWOW64\PSAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Process Status Helper 131795770645382623 0x74da0000 778240 C:\Windows\SysWOW64\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795770645382623 0x74e60000 557056 C:\Windows\SysWOW64\shcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795770645382623 0x74ef0000 540672 C:\Windows\SysWOW64\clbcatq.dll 2001.12.10941.16384 (rs1_release.160715-1616) Microsoft Corporation COM+ Configuration Catalog 131795770645382623 0x74f80000 278528 C:\Windows\SysWOW64\WINTRUST.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation Microsoft Trust Verification APIs 131795770645382623 0x74fd0000 405504 C:\Windows\SysWOW64\WS2_32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation 32-разрядная библиотека Windows Socket 2.0 131795770645382623 0x75040000 282624 C:\Windows\SysWOW64\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795770645382623 0x75090000 1265664 C:\Windows\SysWOW64\MSCTF.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Серверная библиотека MSCTF 131795770645382623 0x751d0000 57344 C:\Windows\SysWOW64\MSASN1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ASN.1 Runtime APIs 131795770645382623 0x751e0000 1708032 C:\Windows\SysWOW64\KERNELBASE.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645382623 0x75390000 266240 C:\Windows\SysWOW64\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795770645382623 0x753e0000 1560576 C:\Windows\SysWOW64\CRYPT32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API32 криптографии 131795770645382623 0x75560000 487424 C:\Windows\SysWOW64\ADVAPI32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795770645382623 0x756c0000 5693440 C:\Windows\SysWOW64\windows.storage.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API хранения Microsoft WinRT 131795770645382623 0x75c30000 372736 C:\Windows\SysWOW64\coml2.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft COM for Windows 131795770645382623 0x75c90000 286720 C:\Windows\SysWOW64\shlwapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека небольших программ оболочки 131795770645382623 0x75ce0000 20811776 C:\Windows\SysWOW64\SHELL32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Общая библиотека оболочки Windows 131795770645382623 0x774d0000 86016 C:\Windows\SysWOW64\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795770645382623 0x774f0000 61440 C:\Windows\SysWOW64\profapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Profile Basic API 131795770645382623 0x77560000 1437696 C:\Windows\SysWOW64\USER32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795770645382623 0x776c0000 368640 C:\Windows\SysWOW64\bcryptPrimitives.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation Windows Cryptographic Primitives Library 131795770645382623 0x77780000 503808 C:\Windows\SysWOW64\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645382623 0x77800000 606208 C:\Windows\SysWOW64\OLEAUT32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795770645382623 0x77ac0000 966656 C:\Windows\SysWOW64\ole32.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft OLE для Windows 131795770645382623 0x77bb0000 176128 C:\Windows\SysWOW64\GDI32.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation GDI Client DLL 131795770645382623 0x77cd0000 221184 C:\Windows\SysWOW64\cfgmgr32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Configuration Manager DLL 131795770645382623 0x77d10000 28672 C:\Windows\SysWOW64\NSI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation NSI User-mode interface DLL 131795770645382623 0x77d20000 1585152 C:\Windows\SysWOW64\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 131795770645382623 0x7ffad0270000 1908736 C:\Windows\SYSTEM32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 58 5696 7744 57 00000000:0031f1da 131769081114193232 0 0 0 Обязательная метка\Средний обязательный уровень WIN-0UOTFKKVN1S\User browser.exe C:\Users\User\AppData\Local\Yandex\YandexBrowser\Application\browser.exe C:\Users\User\AppData\Local\Yandex\YandexBrowser\Application\browser.exe --type=crashpad-handler "--user-data-dir=C:\Users\User\AppData\Local\Yandex\YandexBrowser\User Data" /prefetch:7 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Users\User\AppData\Local\Yandex\YandexBrowser\User Data\Crashpad" "--metrics-dir=C:\Users\User\AppData\Local\Yandex\YandexBrowser\User Data" --url=https://crash-reports.browser.yandex.net/submit --annotation=machine_id=c46245ef0fec9d5c44d2fa20241f2070 --annotation=main_process_pid=7744 --annotation=metrics_client_id=520f4dd3247d4cdfb744f32b1130b1bf --annotation=plat=Win32 --annotation=prod=Yandex --annotation=ver=18.6.1.770 --initial-client-data=0x1c4,0x1cc,0x1d0,0x1c0,0x1d4,0x700b800c,0x700b7ffc,0x700b7fe0,0x1c8 YANDEX LLC 18.6.1.770 Yandex 131795770645382726 0x10e0000 2519040 C:\Users\User\AppData\Local\Yandex\YandexBrowser\Application\browser.exe 18.6.1.770 YANDEX LLC Yandex 131795770645382726 0x5c020000 335872 C:\Windows\System32\wow64.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation Win32 Emulation on NT64 131795770645382726 0x5c080000 487424 C:\Windows\System32\wow64win.dll 10.0.14393.1884 (rs1_release.171101-1233) Microsoft Corporation Wow64 Console and Win32 API Logging 131795770645382726 0x5c100000 40960 C:\Windows\System32\wow64cpu.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation AMD64 Wow64 CPU 131795770645382726 0x60750000 1556480 C:\Program Files (x86)\360\Total Security\safemon\safemon.dll 8, 4, 0, 1420 Qihu 360 Software Co., Ltd. 360 Internet Security Internet Protection 131795770645382726 0x70030000 593920 C:\Users\User\AppData\Local\Yandex\YandexBrowser\Application\18.6.1.770\browser_elf.dll 18.6.1.770 YANDEX LLC Yandex 131795770645382726 0x70b70000 163840 C:\Windows\SysWOW64\ntmarta.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик Windows NT MARTA 131795770645382726 0x70ca0000 45056 C:\Windows\SysWOW64\NETUTILS.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API Helpers DLL 131795770645382726 0x70cb0000 65536 C:\Windows\SysWOW64\WKSCLI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Workstation Service Client DLL 131795770645382726 0x71140000 77824 C:\Windows\SysWOW64\NETAPI32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API DLL 131795770645382726 0x72b90000 126976 C:\Windows\SysWOW64\dwmapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Интерфейс API диспетчера окон рабочего стола (Майкрософт) 131795770645382726 0x74110000 479232 C:\Windows\SysWOW64\uxtheme.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека тем UxTheme (Microsoft) 131795770645382726 0x74190000 110592 C:\Windows\SysWOW64\bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795770645382726 0x741f0000 143360 C:\Windows\SysWOW64\WINMMBASE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base Multimedia Extension API DLL 131795770645382726 0x74230000 147456 C:\Windows\SysWOW64\WINMM.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation MCI API DLL 131795770645382726 0x746e0000 32768 C:\Windows\SysWOW64\VERSION.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Version Checking and File Installation Libraries 131795770645382726 0x746f0000 106496 C:\Windows\SysWOW64\USERENV.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Userenv 131795770645382726 0x747d0000 40960 C:\Windows\SysWOW64\CRYPTBASE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base cryptographic API DLL 131795770645382726 0x747e0000 126976 C:\Windows\SysWOW64\SspiCli.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Security Support Provider Interface 131795770645382726 0x74800000 151552 C:\Windows\SysWOW64\IMM32.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Multi-User Windows IMM32 API Client DLL 131795770645382726 0x74910000 2170880 C:\Windows\SysWOW64\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795770645382726 0x74b30000 53248 C:\Windows\SysWOW64\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795770645382726 0x74b60000 790528 C:\Windows\SysWOW64\RPCRT4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795770645382726 0x74c30000 1417216 C:\Windows\SysWOW64\gdi32full.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation GDI Client DLL 131795770645382726 0x74d90000 24576 C:\Windows\SysWOW64\PSAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Process Status Helper 131795770645382726 0x74da0000 778240 C:\Windows\SysWOW64\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795770645382726 0x74e60000 557056 C:\Windows\SysWOW64\shcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795770645382726 0x74fd0000 405504 C:\Windows\SysWOW64\WS2_32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation 32-разрядная библиотека Windows Socket 2.0 131795770645382726 0x75040000 282624 C:\Windows\SysWOW64\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795770645382726 0x75090000 1265664 C:\Windows\SysWOW64\MSCTF.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Серверная библиотека MSCTF 131795770645382726 0x751e0000 1708032 C:\Windows\SysWOW64\KERNELBASE.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645382726 0x75390000 266240 C:\Windows\SysWOW64\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795770645382726 0x75560000 487424 C:\Windows\SysWOW64\ADVAPI32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795770645382726 0x756c0000 5693440 C:\Windows\SysWOW64\windows.storage.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API хранения Microsoft WinRT 131795770645382726 0x75c90000 286720 C:\Windows\SysWOW64\shlwapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека небольших программ оболочки 131795770645382726 0x75ce0000 20811776 C:\Windows\SysWOW64\SHELL32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Общая библиотека оболочки Windows 131795770645382726 0x774d0000 86016 C:\Windows\SysWOW64\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795770645382726 0x774f0000 61440 C:\Windows\SysWOW64\profapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Profile Basic API 131795770645382726 0x77560000 1437696 C:\Windows\SysWOW64\USER32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795770645382726 0x776c0000 368640 C:\Windows\SysWOW64\bcryptPrimitives.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation Windows Cryptographic Primitives Library 131795770645382726 0x77780000 503808 C:\Windows\SysWOW64\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645382726 0x77800000 606208 C:\Windows\SysWOW64\OLEAUT32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795770645382726 0x77ac0000 966656 C:\Windows\SysWOW64\ole32.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft OLE для Windows 131795770645382726 0x77bb0000 176128 C:\Windows\SysWOW64\GDI32.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation GDI Client DLL 131795770645382726 0x77cd0000 221184 C:\Windows\SysWOW64\cfgmgr32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Configuration Manager DLL 131795770645382726 0x77d20000 1585152 C:\Windows\SysWOW64\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 131795770645382726 0x7ffad0270000 1908736 C:\Windows\SYSTEM32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 59 4664 7744 57 00000000:0031f1da 131769081123844756 0 0 0 Обязательная метка\Низкий обязательный уровень WIN-0UOTFKKVN1S\User browser.exe C:\Users\User\AppData\Local\Yandex\YandexBrowser\Application\browser.exe "C:\Users\User\AppData\Local\Yandex\YandexBrowser\Application\browser.exe" --type=gpu-process --field-trial-handle=1292,9555382311565764851,7120838982649204725,131072 --user-id=32B2E0A1-3039-4C67-86BE-75A88EF21B54 --brand-id=yandex --partner-id=7924 --gpu-preferences=KAAAAAAAAACAAwCAAQAAAAAAAAAAAGAAEAAAAAAAAAAAAAAAAAAAACgAAAAEAAAAIAAAAAAAAAAoAAAAAAAAADAAAAAAAAAAOAAAAAAAAAAQAAAAAAAAAAAAAAAKAAAAEAAAAAAAAAAAAAAACwAAABAAAAAAAAAAAQAAAAoAAAAQAAAAAAAAAAEAAAALAAAA --user-id=32B2E0A1-3039-4C67-86BE-75A88EF21B54 --brand-id=yandex --partner-id=7924 --service-request-channel-token=CC1AC8FA9C8EFF1EEBC2375FE4F704C6 --mojo-platform-channel-handle=1588 --ignored=" --type=renderer " /prefetch:2 YANDEX LLC 18.6.1.770 Yandex 131795770645382836 0x10e0000 2519040 C:\Users\User\AppData\Local\Yandex\YandexBrowser\Application\browser.exe 18.6.1.770 YANDEX LLC Yandex 131795770645382836 0x58720000 59748352 C:\Users\User\AppData\Local\Yandex\YandexBrowser\Application\18.6.1.770\browser_child.dll 18.6.1.770 YANDEX LLC Yandex 131795770645382836 0x5c020000 335872 C:\Windows\System32\wow64.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation Win32 Emulation on NT64 131795770645382836 0x5c080000 487424 C:\Windows\System32\wow64win.dll 10.0.14393.1884 (rs1_release.171101-1233) Microsoft Corporation Wow64 Console and Win32 API Logging 131795770645382836 0x5c100000 40960 C:\Windows\System32\wow64cpu.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation AMD64 Wow64 CPU 131795770645382836 0x6ecb0000 2228224 C:\Windows\SysWOW64\mfh264enc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Media Foundation H264 Encoder 131795770645382836 0x6f250000 970752 C:\Windows\SysWOW64\ddraw.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft DirectDraw 131795770645382836 0x6f340000 3784704 C:\Windows\SysWOW64\D3DCompiler_47.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Direct3D HLSL Compiler 131795770645382836 0x6f6e0000 688128 C:\Windows\SysWOW64\msvproc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Media Foundation Video Processor 131795770645382836 0x6f790000 1085440 C:\Windows\SysWOW64\mfperfhelper.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation MFPerf DLL 131795770645382836 0x6f8a0000 2220032 C:\Windows\SysWOW64\msmpeg2vdec.dll 10.0.14393.953 (rs1_release_inmarket.170303-1614) Microsoft Corporation Microsoft DTV-DVD Video Decoder 131795770645382836 0x6fac0000 1130496 C:\Windows\SysWOW64\MFPlat.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Media Foundation Platform DLL 131795770645382836 0x6fbe0000 540672 C:\Windows\SysWOW64\mf.dll 10.0.14393.953 (rs1_release_inmarket.170303-1614) Microsoft Corporation Библиотека DLL Media Foundation 131795770645382836 0x6fd30000 139264 C:\Windows\SysWOW64\DEVOBJ.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Device Information Set DLL 131795770645382836 0x6ff20000 118784 C:\Users\User\AppData\Local\Yandex\YandexBrowser\Application\18.6.1.770\swiftshader\libegl.dll 4.0.0.3 SwiftShader libEGL 32-bit Dynamic Link Library 131795770645382836 0x6ff40000 126976 C:\Windows\SysWOW64\dxva2.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DirectX Video Acceleration 2.0 DLL 131795770645382836 0x6ff60000 172032 C:\Windows\SysWOW64\RTWorkQ.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL для WorkQueue реального времени 131795770645382836 0x70030000 593920 C:\Users\User\AppData\Local\Yandex\YandexBrowser\Application\18.6.1.770\browser_elf.dll 18.6.1.770 YANDEX LLC Yandex 131795770645382836 0x700d0000 434176 C:\Windows\SysWOW64\WINSPOOL.DRV 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Драйвер диспетчера очереди Windows 131795770645382836 0x70340000 536576 C:\Windows\SysWOW64\dxgi.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation DirectX Graphics Infrastructure 131795770645382836 0x703d0000 2056192 C:\Windows\SysWOW64\DWrite.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Службы Microsoft DirectX Typography 131795770645382836 0x705d0000 28672 C:\Windows\SysWOW64\DCIMAN32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DCI Manager 131795770645382836 0x707d0000 86016 C:\Windows\SysWOW64\SAMCLI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Security Accounts Manager Client DLL 131795770645382836 0x70a20000 94208 C:\Windows\SysWOW64\USP10.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Uniscribe Unicode script processor 131795770645382836 0x70ca0000 45056 C:\Windows\SysWOW64\NETUTILS.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API Helpers DLL 131795770645382836 0x70fd0000 1331200 C:\Windows\SysWOW64\dbghelp.dll 10.0.14321.1024 (rs1_release.160715-1616) Microsoft Windows Image Helper 131795770645382836 0x71140000 77824 C:\Windows\SysWOW64\NETAPI32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API DLL 131795770645382836 0x725e0000 2273280 C:\Windows\SysWOW64\iertutil.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служебная программа времени выполнения для Internet Explorer 131795770645382836 0x728e0000 1372160 C:\Windows\SysWOW64\PROPSYS.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Система страниц свойств (Майкрософт) 131795770645382836 0x72b90000 126976 C:\Windows\SysWOW64\dwmapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Интерфейс API диспетчера окон рабочего стола (Майкрософт) 131795770645382836 0x72cc0000 1658880 C:\Windows\SysWOW64\urlmon.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширения OLE32 для Win32 131795770645382836 0x73ac0000 81920 C:\Windows\SysWOW64\dhcpcsvc.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служба DHCP-клиента 131795770645382836 0x73ae0000 40960 C:\Windows\SysWOW64\Secur32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Security Support Provider Interface 131795770645382836 0x73f00000 192512 C:\Windows\SysWOW64\IPHLPAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API вспомогательного приложения IP 131795770645382836 0x74190000 110592 C:\Windows\SysWOW64\bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795770645382836 0x741b0000 77824 C:\Windows\SysWOW64\cryptsp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Cryptographic Service Provider API 131795770645382836 0x741f0000 143360 C:\Windows\SysWOW64\WINMMBASE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base Multimedia Extension API DLL 131795770645382836 0x74230000 147456 C:\Windows\SysWOW64\WINMM.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation MCI API DLL 131795770645382836 0x744d0000 2138112 C:\Windows\WinSxS\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.14393.953_none_89c2555adb023171\COMCTL32.dll 6.10 (rs1_release_inmarket.170303-1614) Microsoft Corporation Библиотека элементов управления взаимодействия с пользователем 131795770645382836 0x746e0000 32768 C:\Windows\SysWOW64\VERSION.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Version Checking and File Installation Libraries 131795770645382836 0x746f0000 106496 C:\Windows\SysWOW64\USERENV.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Userenv 131795770645382836 0x747d0000 40960 C:\Windows\SysWOW64\CRYPTBASE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base cryptographic API DLL 131795770645382836 0x747e0000 126976 C:\Windows\SysWOW64\SspiCli.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Security Support Provider Interface 131795770645382836 0x74800000 151552 C:\Windows\SysWOW64\IMM32.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Multi-User Windows IMM32 API Client DLL 131795770645382836 0x74910000 2170880 C:\Windows\SysWOW64\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795770645382836 0x74b30000 53248 C:\Windows\SysWOW64\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795770645382836 0x74b60000 790528 C:\Windows\SysWOW64\RPCRT4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795770645382836 0x74c30000 1417216 C:\Windows\SysWOW64\gdi32full.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation GDI Client DLL 131795770645382836 0x74d90000 24576 C:\Windows\SysWOW64\PSAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Process Status Helper 131795770645382836 0x74da0000 778240 C:\Windows\SysWOW64\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795770645382836 0x74e60000 557056 C:\Windows\SysWOW64\shcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795770645382836 0x74ef0000 540672 C:\Windows\SysWOW64\clbcatq.dll 2001.12.10941.16384 (rs1_release.160715-1616) Microsoft Corporation COM+ Configuration Catalog 131795770645382836 0x74f80000 278528 C:\Windows\SysWOW64\WINTRUST.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation Microsoft Trust Verification APIs 131795770645382836 0x74fd0000 405504 C:\Windows\SysWOW64\WS2_32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation 32-разрядная библиотека Windows Socket 2.0 131795770645382836 0x75040000 282624 C:\Windows\SysWOW64\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795770645382836 0x751d0000 57344 C:\Windows\SysWOW64\MSASN1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ASN.1 Runtime APIs 131795770645382836 0x751e0000 1708032 C:\Windows\SysWOW64\KERNELBASE.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645382836 0x75390000 266240 C:\Windows\SysWOW64\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795770645382836 0x753e0000 1560576 C:\Windows\SysWOW64\CRYPT32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API32 криптографии 131795770645382836 0x75560000 487424 C:\Windows\SysWOW64\ADVAPI32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795770645382836 0x756c0000 5693440 C:\Windows\SysWOW64\windows.storage.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API хранения Microsoft WinRT 131795770645382836 0x75c90000 286720 C:\Windows\SysWOW64\shlwapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека небольших программ оболочки 131795770645382836 0x75ce0000 20811776 C:\Windows\SysWOW64\SHELL32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Общая библиотека оболочки Windows 131795770645382836 0x770c0000 4239360 C:\Windows\SysWOW64\SETUPAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Setup API 131795770645382836 0x774d0000 86016 C:\Windows\SysWOW64\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795770645382836 0x774f0000 61440 C:\Windows\SysWOW64\profapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Profile Basic API 131795770645382836 0x77560000 1437696 C:\Windows\SysWOW64\USER32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795770645382836 0x776c0000 368640 C:\Windows\SysWOW64\bcryptPrimitives.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation Windows Cryptographic Primitives Library 131795770645382836 0x77780000 503808 C:\Windows\SysWOW64\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645382836 0x77800000 606208 C:\Windows\SysWOW64\OLEAUT32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795770645382836 0x77ac0000 966656 C:\Windows\SysWOW64\ole32.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft OLE для Windows 131795770645382836 0x77bb0000 176128 C:\Windows\SysWOW64\GDI32.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation GDI Client DLL 131795770645382836 0x77be0000 937984 C:\Windows\SysWOW64\COMDLG32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека общих диалоговых окон 131795770645382836 0x77cd0000 221184 C:\Windows\SysWOW64\cfgmgr32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Configuration Manager DLL 131795770645382836 0x77d10000 28672 C:\Windows\SysWOW64\NSI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation NSI User-mode interface DLL 131795770645382836 0x77d20000 1585152 C:\Windows\SysWOW64\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 131795770645382836 0x7ffad0270000 1908736 C:\Windows\SYSTEM32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 60 8968 7744 57 00000000:0031f1da 131769081206363215 0 0 0 Обязательная метка\Ненадежный обязательный уровень WIN-0UOTFKKVN1S\User browser.exe C:\Users\User\AppData\Local\Yandex\YandexBrowser\Application\browser.exe "C:\Users\User\AppData\Local\Yandex\YandexBrowser\Application\browser.exe" --type=renderer --enable-in-process-wmf-demuxer --field-trial-handle=1292,9555382311565764851,7120838982649204725,131072 --enable-ignition --service-pipe-token=183F52B8A6577BFD721F95F3A9641348 --lang=ru --user-id=32B2E0A1-3039-4C67-86BE-75A88EF21B54 --brand-id=yandex --partner-id=7924 --help-url=https://api.browser.yandex.ru/redirect/help/ --user-agent-info --translate-security-origin=https://translate.yandex.net --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --enable-instaserp --device-scale-factor=1 --num-raster-threads=1 --enable-compositor-image-animations --service-request-channel-token=183F52B8A6577BFD721F95F3A9641348 --renderer-client-id=4 --mojo-platform-channel-handle=2640 /prefetch:1 YANDEX LLC 18.6.1.770 Yandex 131795770645382953 0x10e0000 2519040 C:\Users\User\AppData\Local\Yandex\YandexBrowser\Application\browser.exe 18.6.1.770 YANDEX LLC Yandex 131795770645382953 0x58720000 59748352 C:\Users\User\AppData\Local\Yandex\YandexBrowser\Application\18.6.1.770\browser_child.dll 18.6.1.770 YANDEX LLC Yandex 131795770645382953 0x5c020000 335872 C:\Windows\System32\wow64.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation Win32 Emulation on NT64 131795770645382953 0x5c080000 487424 C:\Windows\System32\wow64win.dll 10.0.14393.1884 (rs1_release.171101-1233) Microsoft Corporation Wow64 Console and Win32 API Logging 131795770645382953 0x5c100000 40960 C:\Windows\System32\wow64cpu.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation AMD64 Wow64 CPU 131795770645382953 0x6e8b0000 1859584 C:\Windows\SysWOW64\mfmp4srcsnk.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL источника и приемника MPEG4 Media Foundation 131795770645382953 0x6ef30000 647168 C:\Windows\SysWOW64\evr.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека DLL средства отображения видео 131795770645382953 0x6efd0000 458752 C:\Windows\SysWOW64\msauddecmft.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Media Foundation Audio Decoders 131795770645382953 0x6f790000 1085440 C:\Windows\SysWOW64\mfperfhelper.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation MFPerf DLL 131795770645382953 0x6f8a0000 2220032 C:\Windows\SysWOW64\msmpeg2vdec.dll 10.0.14393.953 (rs1_release_inmarket.170303-1614) Microsoft Corporation Microsoft DTV-DVD Video Decoder 131795770645382953 0x6fac0000 1130496 C:\Windows\SysWOW64\mfplat.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Media Foundation Platform DLL 131795770645382953 0x6ff60000 172032 C:\Windows\SysWOW64\RTWorkQ.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL для WorkQueue реального времени 131795770645382953 0x70030000 593920 C:\Users\User\AppData\Local\Yandex\YandexBrowser\Application\18.6.1.770\browser_elf.dll 18.6.1.770 YANDEX LLC Yandex 131795770645382953 0x700d0000 434176 C:\Windows\SysWOW64\WINSPOOL.DRV 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Драйвер диспетчера очереди Windows 131795770645382953 0x70340000 536576 C:\Windows\SysWOW64\dxgi.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation DirectX Graphics Infrastructure 131795770645382953 0x703d0000 2056192 C:\Windows\SysWOW64\DWrite.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Службы Microsoft DirectX Typography 131795770645382953 0x707d0000 86016 C:\Windows\SysWOW64\SAMCLI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Security Accounts Manager Client DLL 131795770645382953 0x70a20000 94208 C:\Windows\SysWOW64\USP10.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Uniscribe Unicode script processor 131795770645382953 0x70ca0000 45056 C:\Windows\SysWOW64\NETUTILS.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API Helpers DLL 131795770645382953 0x70fd0000 1331200 C:\Windows\SysWOW64\dbghelp.dll 10.0.14321.1024 (rs1_release.160715-1616) Microsoft Windows Image Helper 131795770645382953 0x71140000 77824 C:\Windows\SysWOW64\NETAPI32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API DLL 131795770645382953 0x725e0000 2273280 C:\Windows\SysWOW64\iertutil.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служебная программа времени выполнения для Internet Explorer 131795770645382953 0x728e0000 1372160 C:\Windows\SysWOW64\PROPSYS.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Система страниц свойств (Майкрософт) 131795770645382953 0x72af0000 655360 C:\Windows\SysWOW64\WINHTTP.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Службы HTTP Windows 131795770645382953 0x72cc0000 1658880 C:\Windows\SysWOW64\urlmon.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширения OLE32 для Win32 131795770645382953 0x73ac0000 81920 C:\Windows\SysWOW64\dhcpcsvc.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служба DHCP-клиента 131795770645382953 0x73ae0000 40960 C:\Windows\SysWOW64\Secur32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Security Support Provider Interface 131795770645382953 0x73f00000 192512 C:\Windows\SysWOW64\IPHLPAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API вспомогательного приложения IP 131795770645382953 0x74190000 110592 C:\Windows\SysWOW64\bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795770645382953 0x741b0000 77824 C:\Windows\SysWOW64\cryptsp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Cryptographic Service Provider API 131795770645382953 0x741f0000 143360 C:\Windows\SysWOW64\WINMMBASE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base Multimedia Extension API DLL 131795770645382953 0x74230000 147456 C:\Windows\SysWOW64\WINMM.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation MCI API DLL 131795770645382953 0x744d0000 2138112 C:\Windows\WinSxS\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.14393.953_none_89c2555adb023171\COMCTL32.dll 6.10 (rs1_release_inmarket.170303-1614) Microsoft Corporation Библиотека элементов управления взаимодействия с пользователем 131795770645382953 0x746e0000 32768 C:\Windows\SysWOW64\VERSION.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Version Checking and File Installation Libraries 131795770645382953 0x746f0000 106496 C:\Windows\SysWOW64\USERENV.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Userenv 131795770645382953 0x747d0000 40960 C:\Windows\SysWOW64\CRYPTBASE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base cryptographic API DLL 131795770645382953 0x747e0000 126976 C:\Windows\SysWOW64\SspiCli.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Security Support Provider Interface 131795770645382953 0x74800000 151552 C:\Windows\SysWOW64\IMM32.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Multi-User Windows IMM32 API Client DLL 131795770645382953 0x74910000 2170880 C:\Windows\SysWOW64\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795770645382953 0x74b30000 53248 C:\Windows\SysWOW64\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795770645382953 0x74b60000 790528 C:\Windows\SysWOW64\RPCRT4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795770645382953 0x74c30000 1417216 C:\Windows\SysWOW64\gdi32full.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation GDI Client DLL 131795770645382953 0x74d90000 24576 C:\Windows\SysWOW64\PSAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Process Status Helper 131795770645382953 0x74da0000 778240 C:\Windows\SysWOW64\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795770645382953 0x74e60000 557056 C:\Windows\SysWOW64\shcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795770645382953 0x74f80000 278528 C:\Windows\SysWOW64\WINTRUST.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation Microsoft Trust Verification APIs 131795770645382953 0x74fd0000 405504 C:\Windows\SysWOW64\WS2_32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation 32-разрядная библиотека Windows Socket 2.0 131795770645382953 0x75040000 282624 C:\Windows\SysWOW64\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795770645382953 0x751d0000 57344 C:\Windows\SysWOW64\MSASN1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ASN.1 Runtime APIs 131795770645382953 0x751e0000 1708032 C:\Windows\SysWOW64\KERNELBASE.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645382953 0x75390000 266240 C:\Windows\SysWOW64\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795770645382953 0x753e0000 1560576 C:\Windows\SysWOW64\CRYPT32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API32 криптографии 131795770645382953 0x75560000 487424 C:\Windows\SysWOW64\ADVAPI32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795770645382953 0x756c0000 5693440 C:\Windows\SysWOW64\windows.storage.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API хранения Microsoft WinRT 131795770645382953 0x75c90000 286720 C:\Windows\SysWOW64\shlwapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека небольших программ оболочки 131795770645382953 0x75ce0000 20811776 C:\Windows\SysWOW64\SHELL32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Общая библиотека оболочки Windows 131795770645382953 0x774d0000 86016 C:\Windows\SysWOW64\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795770645382953 0x774f0000 61440 C:\Windows\SysWOW64\profapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Profile Basic API 131795770645382953 0x77560000 1437696 C:\Windows\SysWOW64\USER32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795770645382953 0x776c0000 368640 C:\Windows\SysWOW64\bcryptPrimitives.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation Windows Cryptographic Primitives Library 131795770645382953 0x77780000 503808 C:\Windows\SysWOW64\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645382953 0x77800000 606208 C:\Windows\SysWOW64\OLEAUT32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795770645382953 0x77ac0000 966656 C:\Windows\SysWOW64\ole32.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft OLE для Windows 131795770645382953 0x77bb0000 176128 C:\Windows\SysWOW64\GDI32.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation GDI Client DLL 131795770645382953 0x77be0000 937984 C:\Windows\SysWOW64\COMDLG32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека общих диалоговых окон 131795770645382953 0x77cd0000 221184 C:\Windows\SysWOW64\cfgmgr32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Configuration Manager DLL 131795770645382953 0x77d10000 28672 C:\Windows\SysWOW64\NSI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation NSI User-mode interface DLL 131795770645382953 0x77d20000 1585152 C:\Windows\SysWOW64\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 131795770645382953 0x7ffad0270000 1908736 C:\Windows\SYSTEM32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 61 4992 7744 57 00000000:0031f1da 131769081244357280 0 0 0 Обязательная метка\Ненадежный обязательный уровень WIN-0UOTFKKVN1S\User browser.exe C:\Users\User\AppData\Local\Yandex\YandexBrowser\Application\browser.exe "C:\Users\User\AppData\Local\Yandex\YandexBrowser\Application\browser.exe" --type=renderer --enable-in-process-wmf-demuxer --field-trial-handle=1292,9555382311565764851,7120838982649204725,131072 --enable-ignition --service-pipe-token=7E8A8199C364F4B0114F2A163B757250 --lang=ru --user-id=32B2E0A1-3039-4C67-86BE-75A88EF21B54 --brand-id=yandex --partner-id=7924 --help-url=https://api.browser.yandex.ru/redirect/help/ --user-agent-info --translate-security-origin=https://translate.yandex.net --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --enable-instaserp --device-scale-factor=1 --num-raster-threads=1 --enable-compositor-image-animations --service-request-channel-token=7E8A8199C364F4B0114F2A163B757250 --renderer-client-id=10 --mojo-platform-channel-handle=3904 /prefetch:1 YANDEX LLC 18.6.1.770 Yandex 131795770645383069 0x10e0000 2519040 C:\Users\User\AppData\Local\Yandex\YandexBrowser\Application\browser.exe 18.6.1.770 YANDEX LLC Yandex 131795770645383069 0x58720000 59748352 C:\Users\User\AppData\Local\Yandex\YandexBrowser\Application\18.6.1.770\browser_child.dll 18.6.1.770 YANDEX LLC Yandex 131795770645383069 0x5c020000 335872 C:\Windows\System32\wow64.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation Win32 Emulation on NT64 131795770645383069 0x5c080000 487424 C:\Windows\System32\wow64win.dll 10.0.14393.1884 (rs1_release.171101-1233) Microsoft Corporation Wow64 Console and Win32 API Logging 131795770645383069 0x5c100000 40960 C:\Windows\System32\wow64cpu.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation AMD64 Wow64 CPU 131795770645383069 0x6e8b0000 1859584 C:\Windows\SysWOW64\mfmp4srcsnk.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL источника и приемника MPEG4 Media Foundation 131795770645383069 0x6ef30000 647168 C:\Windows\SysWOW64\evr.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека DLL средства отображения видео 131795770645383069 0x6efd0000 458752 C:\Windows\SysWOW64\msauddecmft.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Media Foundation Audio Decoders 131795770645383069 0x6f790000 1085440 C:\Windows\SysWOW64\mfperfhelper.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation MFPerf DLL 131795770645383069 0x6f8a0000 2220032 C:\Windows\SysWOW64\msmpeg2vdec.dll 10.0.14393.953 (rs1_release_inmarket.170303-1614) Microsoft Corporation Microsoft DTV-DVD Video Decoder 131795770645383069 0x6fac0000 1130496 C:\Windows\SysWOW64\mfplat.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Media Foundation Platform DLL 131795770645383069 0x6ff60000 172032 C:\Windows\SysWOW64\RTWorkQ.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL для WorkQueue реального времени 131795770645383069 0x70030000 593920 C:\Users\User\AppData\Local\Yandex\YandexBrowser\Application\18.6.1.770\browser_elf.dll 18.6.1.770 YANDEX LLC Yandex 131795770645383069 0x700d0000 434176 C:\Windows\SysWOW64\WINSPOOL.DRV 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Драйвер диспетчера очереди Windows 131795770645383069 0x70340000 536576 C:\Windows\SysWOW64\dxgi.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation DirectX Graphics Infrastructure 131795770645383069 0x703d0000 2056192 C:\Windows\SysWOW64\DWrite.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Службы Microsoft DirectX Typography 131795770645383069 0x707d0000 86016 C:\Windows\SysWOW64\SAMCLI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Security Accounts Manager Client DLL 131795770645383069 0x70a20000 94208 C:\Windows\SysWOW64\USP10.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Uniscribe Unicode script processor 131795770645383069 0x70ca0000 45056 C:\Windows\SysWOW64\NETUTILS.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API Helpers DLL 131795770645383069 0x70fd0000 1331200 C:\Windows\SysWOW64\dbghelp.dll 10.0.14321.1024 (rs1_release.160715-1616) Microsoft Windows Image Helper 131795770645383069 0x71140000 77824 C:\Windows\SysWOW64\NETAPI32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API DLL 131795770645383069 0x725e0000 2273280 C:\Windows\SysWOW64\iertutil.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служебная программа времени выполнения для Internet Explorer 131795770645383069 0x728e0000 1372160 C:\Windows\SysWOW64\PROPSYS.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Система страниц свойств (Майкрософт) 131795770645383069 0x72af0000 655360 C:\Windows\SysWOW64\WINHTTP.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Службы HTTP Windows 131795770645383069 0x72cc0000 1658880 C:\Windows\SysWOW64\urlmon.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширения OLE32 для Win32 131795770645383069 0x73ac0000 81920 C:\Windows\SysWOW64\dhcpcsvc.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служба DHCP-клиента 131795770645383069 0x73ae0000 40960 C:\Windows\SysWOW64\Secur32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Security Support Provider Interface 131795770645383069 0x73f00000 192512 C:\Windows\SysWOW64\IPHLPAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API вспомогательного приложения IP 131795770645383069 0x74190000 110592 C:\Windows\SysWOW64\bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795770645383069 0x741b0000 77824 C:\Windows\SysWOW64\cryptsp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Cryptographic Service Provider API 131795770645383069 0x741f0000 143360 C:\Windows\SysWOW64\WINMMBASE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base Multimedia Extension API DLL 131795770645383069 0x74230000 147456 C:\Windows\SysWOW64\WINMM.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation MCI API DLL 131795770645383069 0x744d0000 2138112 C:\Windows\WinSxS\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.14393.953_none_89c2555adb023171\COMCTL32.dll 6.10 (rs1_release_inmarket.170303-1614) Microsoft Corporation Библиотека элементов управления взаимодействия с пользователем 131795770645383069 0x746e0000 32768 C:\Windows\SysWOW64\VERSION.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Version Checking and File Installation Libraries 131795770645383069 0x746f0000 106496 C:\Windows\SysWOW64\USERENV.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Userenv 131795770645383069 0x747d0000 40960 C:\Windows\SysWOW64\CRYPTBASE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base cryptographic API DLL 131795770645383069 0x747e0000 126976 C:\Windows\SysWOW64\SspiCli.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Security Support Provider Interface 131795770645383069 0x74800000 151552 C:\Windows\SysWOW64\IMM32.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Multi-User Windows IMM32 API Client DLL 131795770645383069 0x74910000 2170880 C:\Windows\SysWOW64\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795770645383069 0x74b30000 53248 C:\Windows\SysWOW64\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795770645383069 0x74b60000 790528 C:\Windows\SysWOW64\RPCRT4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795770645383069 0x74c30000 1417216 C:\Windows\SysWOW64\gdi32full.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation GDI Client DLL 131795770645383069 0x74d90000 24576 C:\Windows\SysWOW64\PSAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Process Status Helper 131795770645383069 0x74da0000 778240 C:\Windows\SysWOW64\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795770645383069 0x74e60000 557056 C:\Windows\SysWOW64\shcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795770645383069 0x74f80000 278528 C:\Windows\SysWOW64\WINTRUST.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation Microsoft Trust Verification APIs 131795770645383069 0x74fd0000 405504 C:\Windows\SysWOW64\WS2_32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation 32-разрядная библиотека Windows Socket 2.0 131795770645383069 0x75040000 282624 C:\Windows\SysWOW64\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795770645383069 0x751d0000 57344 C:\Windows\SysWOW64\MSASN1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ASN.1 Runtime APIs 131795770645383069 0x751e0000 1708032 C:\Windows\SysWOW64\KERNELBASE.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645383069 0x75390000 266240 C:\Windows\SysWOW64\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795770645383069 0x753e0000 1560576 C:\Windows\SysWOW64\CRYPT32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API32 криптографии 131795770645383069 0x75560000 487424 C:\Windows\SysWOW64\ADVAPI32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795770645383069 0x756c0000 5693440 C:\Windows\SysWOW64\windows.storage.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API хранения Microsoft WinRT 131795770645383069 0x75c90000 286720 C:\Windows\SysWOW64\shlwapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека небольших программ оболочки 131795770645383069 0x75ce0000 20811776 C:\Windows\SysWOW64\SHELL32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Общая библиотека оболочки Windows 131795770645383069 0x774d0000 86016 C:\Windows\SysWOW64\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795770645383069 0x774f0000 61440 C:\Windows\SysWOW64\profapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Profile Basic API 131795770645383069 0x77560000 1437696 C:\Windows\SysWOW64\USER32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795770645383069 0x776c0000 368640 C:\Windows\SysWOW64\bcryptPrimitives.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation Windows Cryptographic Primitives Library 131795770645383069 0x77780000 503808 C:\Windows\SysWOW64\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645383069 0x77800000 606208 C:\Windows\SysWOW64\OLEAUT32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795770645383069 0x77ac0000 966656 C:\Windows\SysWOW64\ole32.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft OLE для Windows 131795770645383069 0x77bb0000 176128 C:\Windows\SysWOW64\GDI32.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation GDI Client DLL 131795770645383069 0x77be0000 937984 C:\Windows\SysWOW64\COMDLG32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека общих диалоговых окон 131795770645383069 0x77cd0000 221184 C:\Windows\SysWOW64\cfgmgr32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Configuration Manager DLL 131795770645383069 0x77d10000 28672 C:\Windows\SysWOW64\NSI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation NSI User-mode interface DLL 131795770645383069 0x77d20000 1585152 C:\Windows\SysWOW64\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 131795770645383069 0x7ffad0270000 1908736 C:\Windows\SYSTEM32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 62 2156 664 6 00000000:0031f1da 131769082134099148 131795770677456415 0 1 Обязательная метка\Средний обязательный уровень WIN-0UOTFKKVN1S\User explorer.exe C:\Windows\explorer.exe C:\Windows\explorer.exe /factory,{75dff2b7-6936-4c06-a8bb-676a7b00b24b} -Embedding Microsoft Corporation 10.0.14393.0 (rs1_release.160715-1616) Проводник 63 9504 664 6 00000000:0031f1da 131794956266598229 0 0 1 Обязательная метка\Средний обязательный уровень WIN-0UOTFKKVN1S\User InstallAgent.exe C:\Windows\System32\InstallAgent.exe C:\Windows\System32\InstallAgent.exe -Embedding Microsoft Corporation 10.0.14393.0 (rs1_release.160715-1616) InstallAgent 131795770645383260 0x7ff63d380000 229376 C:\Windows\System32\InstallAgent.exe 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation InstallAgent 131795770645383260 0x7ffabea60000 180224 C:\Windows\System32\VEStoreEventHandlers.dll 10.0.14393.479 (rs1_release.161110-2025) Microsoft Corporation TDL Store Event Handlers 131795770645383260 0x7ffac0bf0000 3559424 C:\Windows\System32\ActXPrxy.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation ActiveX Interface Marshaling Library 131795770645383260 0x7ffac4000000 274432 C:\Windows\SYSTEM32\policymanager.dll 10.0.14393.2035 (rs1_release_inmarket.180110-1910) Microsoft Corporation Policy Manager DLL 131795770645383260 0x7ffac4450000 86016 C:\Windows\SYSTEM32\usermgrcli.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation UserMgr API DLL 131795770645383260 0x7ffac4ad0000 61440 C:\Windows\System32\EAMProgressHandler.dll 10.0.14393.479 (rs1_release.161110-2025) Microsoft Corporation EAMProgressHandler 131795770645383260 0x7ffac4b90000 774144 C:\Windows\System32\StoreAgent.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation StoreAgent 131795770645383260 0x7ffac76a0000 159744 C:\Windows\System32\sppc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Software Licensing Client DLL 131795770645383260 0x7ffac7990000 155648 C:\Windows\System32\SLC.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Software Licensing Client DLL 131795770645383260 0x7ffacb140000 593920 C:\Windows\System32\msvcp110_win.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Microsoft® STL110 C++ Runtime Library 131795770645383260 0x7ffacc150000 94208 C:\Windows\System32\CRYPTSP.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Cryptographic Service Provider API 131795770645383260 0x7ffacc520000 622592 C:\Windows\SYSTEM32\sxs.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Fusion 2.5 131795770645383260 0x7ffacc620000 176128 C:\Windows\System32\Bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795770645383260 0x7ffacc6e0000 61440 C:\Windows\System32\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795770645383260 0x7ffacc6f0000 311296 C:\Windows\System32\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795770645383260 0x7ffacc740000 81920 C:\Windows\System32\profapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Profile Basic API 131795770645383260 0x7ffacc8f0000 1003520 C:\Windows\System32\ucrtbase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645383260 0x7ffacc9f0000 434176 C:\Windows\System32\bcryptPrimitives.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Cryptographic Primitives Library 131795770645383260 0x7ffacca60000 122880 C:\Windows\System32\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795770645383260 0x7ffaccae0000 692224 C:\Windows\System32\shcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795770645383260 0x7ffaccb90000 7180288 C:\Windows\System32\windows.storage.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API хранения Microsoft WinRT 131795770645383260 0x7ffacd270000 2215936 C:\Windows\System32\KERNELBASE.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645383260 0x7ffacd710000 638976 C:\Windows\System32\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645383260 0x7ffaced20000 782336 C:\Windows\System32\OLEAUT32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795770645383260 0x7ffacee50000 1183744 C:\Windows\System32\RPCRT4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795770645383260 0x7ffacef90000 647168 C:\Windows\System32\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795770645383260 0x7ffacf030000 651264 C:\Windows\System32\clbcatq.dll 2001.12.10941.16384 (rs1_release.160715-1616) Microsoft Corporation COM+ Configuration Catalog 131795770645383260 0x7ffacf0d0000 704512 C:\Windows\System32\KERNEL32.DLL 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645383260 0x7ffacf770000 212992 C:\Windows\System32\GDI32.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation GDI Client DLL 131795770645383260 0x7ffacf890000 188416 C:\Windows\System32\IMM32.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Multi-User Windows IMM32 API Client DLL 131795770645383260 0x7ffacf8c0000 1462272 C:\Windows\System32\user32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795770645383260 0x7ffacfb30000 2916352 C:\Windows\System32\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795770645383260 0x7ffacfe20000 663552 C:\Windows\System32\advapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795770645383260 0x7ffad01b0000 335872 C:\Windows\System32\shlwapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека небольших программ оболочки 131795770645383260 0x7ffad0210000 364544 C:\Windows\System32\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795770645383260 0x7ffad0270000 1908736 C:\Windows\SYSTEM32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 64 8768 664 6 00000000:0031f1da 131794956321853179 0 0 1 Обязательная метка\Средний обязательный уровень WIN-0UOTFKKVN1S\User InstallAgentUserBroker.exe C:\Windows\System32\InstallAgentUserBroker.exe C:\Windows\System32\InstallAgentUserBroker.exe -Embedding Microsoft Corporation 10.0.14393.2156 (rs1_release_inmarket.180321-1733) InstallAgentUserBroker 131795770645383355 0x22530450000 12288 C:\Windows\SYSTEM32\sfc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows File Protection 131795770645383355 0x7ff74f890000 278528 C:\Windows\System32\InstallAgentUserBroker.exe 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation InstallAgentUserBroker 131795770645383355 0x7ffabafc0000 700416 C:\Windows\SYSTEM32\wer.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека сообщений об ошибках Windows 131795770645383355 0x7ffabd8e0000 704512 C:\Windows\WinSxS\amd64_microsoft.windows.common-controls_6595b64144ccf1df_5.82.14393.447_none_0d5aa7fbb6d35646\Comctl32.dll 6.10 (rs1_release_inmarket.170303-1614) Microsoft Corporation Библиотека элементов управления взаимодействия с пользователем 131795770645383355 0x7ffabef80000 69632 C:\Windows\SYSTEM32\sfc_os.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows File Protection 131795770645383355 0x7ffabefd0000 258048 C:\Windows\System32\AEPIC.dll 10.0.17060.1029 (WinBuild.160101.0800) Microsoft Corporation Application Experience Program Cache 131795770645383355 0x7ffabf1d0000 192512 C:\Windows\System32\cryptnet.dll 10.0.14393.2035 (rs1_release_inmarket.180110-1910) Microsoft Corporation Crypto Network Related API 131795770645383355 0x7ffabf5d0000 2924544 C:\Windows\System32\WININET.dll 11.00.14393.447 (rs1_release_inmarket.161102-0100) Microsoft Corporation Расширения Интернета для Win32 131795770645383355 0x7ffabff60000 135168 C:\Windows\system32\ncryptsslp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft SChannel Provider 131795770645383355 0x7ffac0ad0000 86016 C:\Windows\SYSTEM32\mskeyprotect.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик защиты ключей (Майкрософт) 131795770645383355 0x7ffac34e0000 1843200 C:\Windows\System32\urlmon.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширения OLE32 для Win32 131795770645383355 0x7ffac3cb0000 2772992 C:\Windows\System32\iertutil.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служебная программа времени выполнения для Internet Explorer 131795770645383355 0x7ffac4000000 274432 C:\Windows\SYSTEM32\policymanager.dll 10.0.14393.2035 (rs1_release_inmarket.180110-1910) Microsoft Corporation Policy Manager DLL 131795770645383355 0x7ffac4b90000 774144 C:\Windows\System32\StoreAgent.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation StoreAgent 131795770645383355 0x7ffac6610000 40960 C:\Windows\System32\rasadhlp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Remote Access AutoDial Helper 131795770645383355 0x7ffac66a0000 86016 C:\Windows\SYSTEM32\ondemandconnroutehelper.dll 10.0.14393.351 (rs1_release_inmarket.161014-1755) Microsoft Corporation On Demand Connctiond Route Helper 131795770645383355 0x7ffac69c0000 839680 C:\Windows\SYSTEM32\winhttp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Службы HTTP Windows 131795770645383355 0x7ffac76a0000 159744 C:\Windows\System32\sppc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Software Licensing Client DLL 131795770645383355 0x7ffac7990000 155648 C:\Windows\System32\SLC.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Software Licensing Client DLL 131795770645383355 0x7ffac83d0000 106496 C:\Windows\SYSTEM32\dhcpcsvc.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служба DHCP-клиента 131795770645383355 0x7ffac83f0000 90112 C:\Windows\SYSTEM32\dhcpcsvc6.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиент DHCPv6 131795770645383355 0x7ffac8420000 434176 C:\Windows\System32\fwpuclnt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API пользовательского режима FWP/IPsec 131795770645383355 0x7ffac8810000 45056 C:\Windows\SYSTEM32\WINNSI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Network Store Information RPC interface 131795770645383355 0x7ffacb140000 593920 C:\Windows\System32\msvcp110_win.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Microsoft® STL110 C++ Runtime Library 131795770645383355 0x7ffacb420000 204800 C:\Windows\SYSTEM32\ntmarta.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик Windows NT MARTA 131795770645383355 0x7ffacbaf0000 495616 C:\Windows\system32\schannel.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик безопасности TLS/SSL 131795770645383355 0x7ffacbbb0000 208896 C:\Windows\system32\rsaenh.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Enhanced Cryptographic Provider 131795770645383355 0x7ffacbbf0000 40960 C:\Windows\System32\DPAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Data Protection API 131795770645383355 0x7ffacbd30000 229376 C:\Windows\SYSTEM32\IPHLPAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API вспомогательного приложения IP 131795770645383355 0x7ffacbd70000 659456 C:\Windows\System32\DNSAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Динамическая библиотека API DNS-клиента 131795770645383355 0x7ffacbfb0000 376832 C:\Windows\system32\mswsock.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширение поставщика службы API Microsoft Windows Sockets 2.0 131795770645383355 0x7ffacc150000 94208 C:\Windows\System32\CRYPTSP.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Cryptographic Service Provider API 131795770645383355 0x7ffacc170000 45056 C:\Windows\System32\CRYPTBASE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base cryptographic API DLL 131795770645383355 0x7ffacc1f0000 241664 C:\Windows\SYSTEM32\NTASN1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft ASN.1 API 131795770645383355 0x7ffacc230000 155648 C:\Windows\SYSTEM32\ncrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Маршрутизатор Windows NCrypt 131795770645383355 0x7ffacc350000 180224 C:\Windows\System32\SspiCli.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Security Support Provider Interface 131795770645383355 0x7ffacc520000 622592 C:\Windows\SYSTEM32\sxs.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Fusion 2.5 131795770645383355 0x7ffacc620000 176128 C:\Windows\System32\bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795770645383355 0x7ffacc6e0000 61440 C:\Windows\System32\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795770645383355 0x7ffacc6f0000 311296 C:\Windows\System32\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795770645383355 0x7ffacc740000 81920 C:\Windows\System32\profapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Profile Basic API 131795770645383355 0x7ffacc760000 65536 C:\Windows\System32\MSASN1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ASN.1 Runtime APIs 131795770645383355 0x7ffacc8f0000 1003520 C:\Windows\System32\ucrtbase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645383355 0x7ffacc9f0000 434176 C:\Windows\System32\bcryptPrimitives.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Cryptographic Primitives Library 131795770645383355 0x7ffacca60000 122880 C:\Windows\System32\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795770645383355 0x7ffacca80000 348160 C:\Windows\System32\WINTRUST.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation Microsoft Trust Verification APIs 131795770645383355 0x7ffaccae0000 692224 C:\Windows\System32\shcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795770645383355 0x7ffaccb90000 7180288 C:\Windows\System32\windows.storage.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API хранения Microsoft WinRT 131795770645383355 0x7ffacd270000 2215936 C:\Windows\System32\KERNELBASE.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645383355 0x7ffacd490000 1871872 C:\Windows\System32\CRYPT32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API32 криптографии 131795770645383355 0x7ffacd710000 638976 C:\Windows\System32\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645383355 0x7ffacd7b0000 270336 C:\Windows\System32\cfgmgr32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Configuration Manager DLL 131795770645383355 0x7ffacd810000 22056960 C:\Windows\System32\SHELL32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Общая библиотека оболочки Windows 131795770645383355 0x7ffaced20000 782336 C:\Windows\System32\OLEAUT32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795770645383355 0x7ffacee50000 1183744 C:\Windows\System32\RPCRT4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795770645383355 0x7ffacef80000 32768 C:\Windows\System32\NSI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation NSI User-mode interface DLL 131795770645383355 0x7ffacef90000 647168 C:\Windows\System32\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795770645383355 0x7ffacf030000 651264 C:\Windows\System32\clbcatq.dll 2001.12.10941.16384 (rs1_release.160715-1616) Microsoft Corporation COM+ Configuration Catalog 131795770645383355 0x7ffacf0d0000 704512 C:\Windows\System32\KERNEL32.DLL 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645383355 0x7ffacf770000 212992 C:\Windows\System32\GDI32.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation GDI Client DLL 131795770645383355 0x7ffacf820000 434176 C:\Windows\System32\WS2_32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation 32-разрядная библиотека Windows Socket 2.0 131795770645383355 0x7ffacf890000 188416 C:\Windows\System32\IMM32.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Multi-User Windows IMM32 API Client DLL 131795770645383355 0x7ffacf8c0000 1462272 C:\Windows\System32\user32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795770645383355 0x7ffacfb30000 2916352 C:\Windows\System32\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795770645383355 0x7ffacfe20000 663552 C:\Windows\System32\advapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795770645383355 0x7ffad0070000 1277952 C:\Windows\System32\OLE32.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft OLE для Windows 131795770645383355 0x7ffad01b0000 335872 C:\Windows\System32\SHLWAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека небольших программ оболочки 131795770645383355 0x7ffad0210000 364544 C:\Windows\System32\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795770645383355 0x7ffad0270000 1908736 C:\Windows\SYSTEM32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 65 9636 664 6 00000000:0031f1da 131794956424585250 0 0 1 Обязательная метка\Средний обязательный уровень WIN-0UOTFKKVN1S\User SystemSettingsBroker.exe C:\Windows\System32\SystemSettingsBroker.exe C:\Windows\System32\SystemSettingsBroker.exe -Embedding Microsoft Corporation 10.0.14393.0 (rs1_release.160715-1616) System Settings Broker 131795770645383490 0x7ff6015f0000 196608 C:\Windows\System32\SystemSettingsBroker.exe 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation System Settings Broker 131795770645383490 0x7ffac1c40000 94208 C:\Windows\System32\SystemSettings.DataModel.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SystemSettings.Datamodel private API 131795770645383490 0x7ffacc6e0000 61440 C:\Windows\System32\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795770645383490 0x7ffacc8f0000 1003520 C:\Windows\System32\ucrtbase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645383490 0x7ffacc9f0000 434176 C:\Windows\System32\bcryptPrimitives.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Cryptographic Primitives Library 131795770645383490 0x7ffacd270000 2215936 C:\Windows\System32\KERNELBASE.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645383490 0x7ffacee50000 1183744 C:\Windows\System32\RPCRT4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795770645383490 0x7ffacef90000 647168 C:\Windows\System32\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795770645383490 0x7ffacf030000 651264 C:\Windows\System32\clbcatq.dll 2001.12.10941.16384 (rs1_release.160715-1616) Microsoft Corporation COM+ Configuration Catalog 131795770645383490 0x7ffacf0d0000 704512 C:\Windows\System32\KERNEL32.DLL 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645383490 0x7ffacfb30000 2916352 C:\Windows\System32\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795770645383490 0x7ffad0210000 364544 C:\Windows\System32\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795770645383490 0x7ffad0270000 1908736 C:\Windows\SYSTEM32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 66 10592 664 6 00000000:0031f1da 131794956519902643 0 0 1 Обязательная метка\Средний обязательный уровень WIN-0UOTFKKVN1S\User SystemSettings.exe C:\Windows\ImmersiveControlPanel\SystemSettings.exe "C:\Windows\ImmersiveControlPanel\SystemSettings.exe" -ServerName:microsoft.windows.immersivecontrolpanel Microsoft Corporation 10.0.14393.82 (rs1_release.160805-1735) Параметры 131795770645383654 0x18099ef0000 12288 C:\Windows\SYSTEM32\WMI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation WMI DC and DP functionality 131795770645383654 0x7ff7937a0000 98304 C:\Windows\ImmersiveControlPanel\SystemSettings.exe 10.0.14393.82 (rs1_release.160805-1735) Microsoft Corporation Параметры 131795770645383654 0x7ffaabce0000 2535424 C:\Windows\System32\NetworkMobileSettings.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation System settings network mobile handlers group 131795770645383654 0x7ffaac0c0000 1396736 C:\Windows\System32\Windows.UI.Xaml.Phone.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows UI XAML Phone API 131795770645383654 0x7ffaac220000 4952064 C:\Windows\ImmersiveControlPanel\SystemSettings.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation System Settings Application 131795770645383654 0x7ffaadd90000 258048 C:\Windows\System32\NetworkDesktopSettings.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Группа обработчиков системных параметров сетевого рабочего стола 131795770645383654 0x7ffaaf920000 905216 C:\Windows\ImmersiveControlPanel\SystemSettingsViewModel.Desktop.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation System Settings View Model Desktop 131795770645383654 0x7ffab0970000 262144 C:\Windows\system32\credprovhost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Хост инфраструктуры поставщика учетных данных 131795770645383654 0x7ffab0a70000 454656 C:\Windows\System32\fhcfg.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Диспетчер конфигураций истории файлов 131795770645383654 0x7ffab1d80000 262144 C:\Windows\SYSTEM32\eappcfg.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Eap Peer Config 131795770645383654 0x7ffab5520000 3231744 C:\Windows\SYSTEM32\msftedit.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Элемент управления "Поле ввода форматированного текста", версия 8.5 131795770645383654 0x7ffab5b40000 2527232 C:\Windows\SYSTEM32\dwrite.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Службы Microsoft DirectX Typography 131795770645383654 0x7ffab6710000 17231872 C:\Windows\System32\Windows.UI.Xaml.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows.UI.Xaml dll 131795770645383654 0x7ffab7d80000 753664 C:\Windows\SYSTEM32\RASAPI32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API удаленного доступа 131795770645383654 0x7ffab8190000 9191424 C:\Windows\system32\twinui.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation TWINUI 131795770645383654 0x7ffab91d0000 69632 C:\Windows\ImmersiveControlPanel\Telemetry.Desktop.dll 10.0.14393.953 (rs1_release_inmarket.170303-1614) Microsoft Corporation System Settings Telemetry Desktop 131795770645383654 0x7ffab9a40000 299008 C:\Windows\System32\RasMediaManager.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Ras Media Manager DLL 131795770645383654 0x7ffaba950000 188416 C:\Windows\System32\EthernetMediaManager.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Ethernet Media Manager DLL 131795770645383654 0x7ffabaa50000 339968 C:\Windows\System32\NetworkUXBroker.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation NetworkUXBroker DLL 131795770645383654 0x7ffabae40000 110592 C:\Windows\SYSTEM32\capauthz.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API авторизации возможностей 131795770645383654 0x7ffabaf70000 270336 C:\Windows\SYSTEM32\edputil.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служебная программа EDP 131795770645383654 0x7ffabb3c0000 450560 C:\Windows\SYSTEM32\TextInputFramework.dll 10.0.14393.2189 (rs1_release.180329-1711) Microsoft Corporation "TextInputFramework.DYNLINK" 131795770645383654 0x7ffabb430000 65536 C:\Windows\SYSTEM32\pcacli.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Program Compatibility Assistant Client Module 131795770645383654 0x7ffabb490000 512000 C:\Windows\system32\twinapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation twinapi 131795770645383654 0x7ffabcc60000 1122304 C:\Windows\System32\MiracastReceiver.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API приемника Miracast 131795770645383654 0x7ffabcf30000 110592 C:\Windows\SYSTEM32\MPR.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека маршрутизации для нескольких служб доступа 131795770645383654 0x7ffabd4a0000 1613824 C:\Windows\System32\Windows.Globalization.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Globalization 131795770645383654 0x7ffabe6e0000 561152 C:\Windows\system32\directmanipulation.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Direct Manipulation Component 131795770645383654 0x7ffabe9c0000 188416 C:\Windows\SYSTEM32\globinputhost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Globalization Extension API for Input 131795770645383654 0x7ffabeb20000 385024 C:\Windows\System32\Windows.ApplicationModel.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows ApplicationModel API Server 131795770645383654 0x7ffabfd80000 86016 C:\Windows\System32\threadpoolwinrt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows WinRT Threadpool 131795770645383654 0x7ffabff10000 155648 C:\Windows\SYSTEM32\SRVCLI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Server Service Client DLL 131795770645383654 0x7ffac00c0000 282624 C:\Windows\SYSTEM32\windows.ui.core.textinput.dll 10.0.14393.2189 (rs1_release.180329-1711) Microsoft Corporation Windows.UI.Core.TextInput dll 131795770645383654 0x7ffac01e0000 397312 C:\Windows\SYSTEM32\wincorlib.DLL 10.0.14393.576 (rs1_release_inmarket.161208-2252) Microsoft Corporation Microsoft Windows ® WinRT core library 131795770645383654 0x7ffac0470000 1478656 C:\Windows\SYSTEM32\MFPlat.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Media Foundation Platform DLL 131795770645383654 0x7ffac0bf0000 3559424 C:\Windows\System32\ActXPrxy.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation ActiveX Interface Marshaling Library 131795770645383654 0x7ffac1470000 704512 C:\Windows\System32\ieproxy.dll 11.00.14393.2007 (rs1_release.171231-1800) Microsoft Corporation IE ActiveX Interface Marshaling Library 131795770645383654 0x7ffac1e50000 188416 C:\Windows\SYSTEM32\RTWorkQ.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL для WorkQueue реального времени 131795770645383654 0x7ffac20d0000 110592 C:\Windows\System32\rmclient.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Resource Manager Client 131795770645383654 0x7ffac23c0000 331776 C:\Windows\System32\OneCoreCommonProxyStub.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation OneCore Common Proxy Stub 131795770645383654 0x7ffac2700000 98304 C:\Windows\SYSTEM32\NETAPI32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API DLL 131795770645383654 0x7ffac2990000 385024 C:\Windows\SYSTEM32\NInput.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Pen and Touch Input Component 131795770645383654 0x7ffac2a20000 81920 C:\Windows\SYSTEM32\rtutils.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Routing Utilities 131795770645383654 0x7ffac2bf0000 65536 C:\Windows\SYSTEM32\EFSUTIL.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation EFS Utility Library 131795770645383654 0x7ffac34e0000 1843200 C:\Windows\SYSTEM32\urlmon.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширения OLE32 для Win32 131795770645383654 0x7ffac3cb0000 2772992 C:\Windows\SYSTEM32\iertutil.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служебная программа времени выполнения для Internet Explorer 131795770645383654 0x7ffac4000000 274432 C:\Windows\SYSTEM32\policymanager.dll 10.0.14393.2035 (rs1_release_inmarket.180110-1910) Microsoft Corporation Policy Manager DLL 131795770645383654 0x7ffac42a0000 659456 C:\Windows\SYSTEM32\StateRepository.Core.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation StateRepository Core 131795770645383654 0x7ffac46d0000 4161536 C:\Windows\System32\Windows.StateRepository.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Сервер Windows StateRepository API Server 131795770645383654 0x7ffac4e70000 102400 C:\Windows\SYSTEM32\samcli.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Security Accounts Manager Client DLL 131795770645383654 0x7ffac5350000 1765376 C:\Windows\System32\Windows.UI.Immersive.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation WINDOWS.UI.IMMERSIVE 131795770645383654 0x7ffac5c50000 131072 C:\Windows\SYSTEM32\rasman.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Remote Access Connection Manager 131795770645383654 0x7ffac60e0000 221184 C:\Windows\SYSTEM32\XmlLite.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft XmlLite Library 131795770645383654 0x7ffac69c0000 839680 C:\Windows\SYSTEM32\WINHTTP.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Службы HTTP Windows 131795770645383654 0x7ffac6ac0000 835584 C:\Windows\System32\Windows.UI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Runtime UI Foundation DLL 131795770645383654 0x7ffac6c40000 2596864 C:\Windows\WinSxS\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.14393.953_none_42151e83c686086b\Comctl32.dll 6.10 (rs1_release_inmarket.170303-1614) Microsoft Corporation Библиотека элементов управления взаимодействия с пользователем 131795770645383654 0x7ffac6f50000 5632000 C:\Windows\SYSTEM32\d2d1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека Microsoft D2D 131795770645383654 0x7ffac7580000 1077248 C:\Windows\SYSTEM32\MrmCoreR.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Windows MRM 131795770645383654 0x7ffac76a0000 159744 C:\Windows\SYSTEM32\sppc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Software Licensing Client DLL 131795770645383654 0x7ffac7720000 1601536 C:\Windows\System32\OneCoreUAPCommonProxyStub.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation OneCoreUAP Common Proxy Stub 131795770645383654 0x7ffac7990000 155648 C:\Windows\SYSTEM32\SLC.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Software Licensing Client DLL 131795770645383654 0x7ffac7fc0000 2674688 C:\Windows\SYSTEM32\d3d10warp.dll 10.0.14393.576 (rs1_release_inmarket.161208-2252) Microsoft Corporation Direct3D 10 Rasterizer 131795770645383654 0x7ffac84f0000 299008 C:\Windows\system32\DataExchange.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation Data exchange 131795770645383654 0x7ffac8880000 69632 C:\Windows\SYSTEM32\wmiclnt.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation WMI Client API 131795770645383654 0x7ffac88a0000 2842624 C:\Windows\SYSTEM32\d3d11.dll 10.0.14393.953 (rs1_release_inmarket.170303-1614) Microsoft Corporation Direct3D 11 Runtime 131795770645383654 0x7ffac9220000 397312 C:\Windows\SYSTEM32\wevtapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API настройки и использования событий 131795770645383654 0x7ffac9290000 40960 C:\Windows\SYSTEM32\DSROLE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DS Setup Client DLL 131795770645383654 0x7ffac92e0000 1269760 C:\Windows\System32\WinTypes.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL основных типов Windows 131795770645383654 0x7ffac9500000 2682880 C:\Windows\system32\CoreUIComponents.dll 131795770645383654 0x7ffac9f50000 1736704 C:\Windows\system32\windowscodecs.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Microsoft Windows Codecs Library 131795770645383654 0x7ffaca340000 1593344 C:\Windows\SYSTEM32\PROPSYS.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Система страниц свойств (Майкрософт) 131795770645383654 0x7ffaca4e0000 77824 C:\Windows\SYSTEM32\WTSAPI32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Remote Desktop Session Host Server SDK APIs 131795770645383654 0x7ffaca560000 45056 C:\Windows\SYSTEM32\NcaApi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Network Connectivity Assistant API 131795770645383654 0x7ffaca570000 421888 C:\Windows\SYSTEM32\Bcp47Langs.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation BCP47 Language Classes 131795770645383654 0x7ffaca5e0000 155648 C:\Windows\SYSTEM32\dwmapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Интерфейс API диспетчера окон рабочего стола (Майкрософт) 131795770645383654 0x7ffaca640000 770048 C:\Windows\SYSTEM32\CoreMessaging.dll 10.0.14393.0 Microsoft Corporation Microsoft CoreMessaging Dll 131795770645383654 0x7ffaca770000 1380352 C:\Windows\SYSTEM32\dcomp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft DirectComposition Library 131795770645383654 0x7ffacaf00000 610304 C:\Windows\system32\uxtheme.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека тем UxTheme (Microsoft) 131795770645383654 0x7ffacb140000 593920 C:\Windows\SYSTEM32\msvcp110_win.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Microsoft® STL110 C++ Runtime Library 131795770645383654 0x7ffacb1e0000 1163264 C:\Windows\System32\twinapi.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation twinapi.appcore 131795770645383654 0x7ffacb300000 364544 C:\Windows\SYSTEM32\VEEventDispatcher.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Visual Element Event dispatcher 131795770645383654 0x7ffacb3f0000 163840 C:\Windows\SYSTEM32\DEVOBJ.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Device Information Set DLL 131795770645383654 0x7ffacb780000 651264 C:\Windows\SYSTEM32\dxgi.dll 10.0.14393.953 (rs1_release_inmarket.170303-1614) Microsoft Corporation DirectX Graphics Infrastructure 131795770645383654 0x7ffacbd30000 229376 C:\Windows\SYSTEM32\IPHLPAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API вспомогательного приложения IP 131795770645383654 0x7ffacbe20000 53248 C:\Windows\SYSTEM32\netutils.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API Helpers DLL 131795770645383654 0x7ffacbe40000 126976 C:\Windows\SYSTEM32\USERENV.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Userenv 131795770645383654 0x7ffacc150000 94208 C:\Windows\SYSTEM32\cryptsp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Cryptographic Service Provider API 131795770645383654 0x7ffacc170000 45056 C:\Windows\SYSTEM32\CRYPTBASE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base cryptographic API DLL 131795770645383654 0x7ffacc1f0000 241664 C:\Windows\SYSTEM32\NTASN1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft ASN.1 API 131795770645383654 0x7ffacc230000 155648 C:\Windows\SYSTEM32\ncrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Маршрутизатор Windows NCrypt 131795770645383654 0x7ffacc350000 180224 C:\Windows\SYSTEM32\SspiCli.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Security Support Provider Interface 131795770645383654 0x7ffacc5c0000 352256 C:\Windows\SYSTEM32\WINSTA.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Winstation Library 131795770645383654 0x7ffacc620000 176128 C:\Windows\SYSTEM32\bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795770645383654 0x7ffacc6e0000 61440 C:\Windows\System32\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795770645383654 0x7ffacc6f0000 311296 C:\Windows\System32\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795770645383654 0x7ffacc740000 81920 C:\Windows\System32\profapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Profile Basic API 131795770645383654 0x7ffacc760000 65536 C:\Windows\System32\MSASN1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ASN.1 Runtime APIs 131795770645383654 0x7ffacc8f0000 1003520 C:\Windows\System32\ucrtbase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645383654 0x7ffacc9f0000 434176 C:\Windows\System32\bcryptPrimitives.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Cryptographic Primitives Library 131795770645383654 0x7ffacca60000 122880 C:\Windows\System32\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795770645383654 0x7ffaccae0000 692224 C:\Windows\System32\shcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795770645383654 0x7ffaccb90000 7180288 C:\Windows\System32\windows.storage.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API хранения Microsoft WinRT 131795770645383654 0x7ffacd270000 2215936 C:\Windows\System32\KERNELBASE.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645383654 0x7ffacd490000 1871872 C:\Windows\System32\CRYPT32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API32 криптографии 131795770645383654 0x7ffacd710000 638976 C:\Windows\System32\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645383654 0x7ffacd7b0000 270336 C:\Windows\System32\cfgmgr32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Configuration Manager DLL 131795770645383654 0x7ffacd810000 22056960 C:\Windows\System32\SHELL32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Общая библиотека оболочки Windows 131795770645383654 0x7ffaced20000 782336 C:\Windows\System32\OLEAUT32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795770645383654 0x7ffacee50000 1183744 C:\Windows\System32\RPCRT4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795770645383654 0x7ffacef90000 647168 C:\Windows\System32\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795770645383654 0x7ffacf030000 651264 C:\Windows\System32\clbcatq.dll 2001.12.10941.16384 (rs1_release.160715-1616) Microsoft Corporation COM+ Configuration Catalog 131795770645383654 0x7ffacf0d0000 704512 C:\Windows\System32\KERNEL32.DLL 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645383654 0x7ffacf1e0000 1417216 C:\Windows\System32\msctf.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Серверная библиотека MSCTF 131795770645383654 0x7ffacf770000 212992 C:\Windows\System32\GDI32.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation GDI Client DLL 131795770645383654 0x7ffacf820000 434176 C:\Windows\System32\WS2_32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation 32-разрядная библиотека Windows Socket 2.0 131795770645383654 0x7ffacf890000 188416 C:\Windows\System32\IMM32.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Multi-User Windows IMM32 API Client DLL 131795770645383654 0x7ffacf8c0000 1462272 C:\Windows\System32\USER32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795770645383654 0x7ffacfb30000 2916352 C:\Windows\System32\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795770645383654 0x7ffacfe20000 663552 C:\Windows\System32\advapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795770645383654 0x7ffad0070000 1277952 C:\Windows\System32\ole32.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft OLE для Windows 131795770645383654 0x7ffad01b0000 335872 C:\Windows\System32\SHLWAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека небольших программ оболочки 131795770645383654 0x7ffad0210000 364544 C:\Windows\System32\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795770645383654 0x7ffad0270000 1908736 C:\Windows\SYSTEM32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 67 10964 664 6 00000000:0031f1ab 131794956837373387 0 0 1 Обязательная метка\Высокий обязательный уровень WIN-0UOTFKKVN1S\User DllHost.exe C:\Windows\system32\DllHost.exe C:\Windows\system32\DllHost.exe /Processid:{BA126F01-2166-11D1-B1D0-00805FC1270E} Microsoft Corporation 10.0.14393.0 (rs1_release.160715-1616) COM Surrogate 131795770645383742 0x7ff7a2280000 36864 C:\Windows\system32\DllHost.exe 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation COM Surrogate 131795770645383742 0x7ffab2460000 2822144 C:\Windows\system32\netshell.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Оболочка сетевых подключений 131795770645383742 0x7ffac9790000 98304 C:\Windows\system32\nlaapi.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Network Location Awareness 2 131795770645383742 0x7ffacaf00000 610304 C:\Windows\system32\uxtheme.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека тем UxTheme (Microsoft) 131795770645383742 0x7ffacbd30000 229376 C:\Windows\system32\IPHLPAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API вспомогательного приложения IP 131795770645383742 0x7ffacc6e0000 61440 C:\Windows\System32\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795770645383742 0x7ffacc6f0000 311296 C:\Windows\System32\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795770645383742 0x7ffacc740000 81920 C:\Windows\System32\profapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Profile Basic API 131795770645383742 0x7ffacc8f0000 1003520 C:\Windows\System32\ucrtbase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645383742 0x7ffacc9f0000 434176 C:\Windows\System32\bcryptPrimitives.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Cryptographic Primitives Library 131795770645383742 0x7ffacca60000 122880 C:\Windows\System32\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795770645383742 0x7ffaccae0000 692224 C:\Windows\System32\shcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795770645383742 0x7ffaccb90000 7180288 C:\Windows\System32\windows.storage.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API хранения Microsoft WinRT 131795770645383742 0x7ffacd270000 2215936 C:\Windows\System32\KERNELBASE.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645383742 0x7ffacd7b0000 270336 C:\Windows\System32\cfgmgr32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Configuration Manager DLL 131795770645383742 0x7ffacd810000 22056960 C:\Windows\System32\SHELL32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Общая библиотека оболочки Windows 131795770645383742 0x7ffacee50000 1183744 C:\Windows\System32\RPCRT4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795770645383742 0x7ffacef90000 647168 C:\Windows\System32\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795770645383742 0x7ffacf030000 651264 C:\Windows\System32\clbcatq.dll 2001.12.10941.16384 (rs1_release.160715-1616) Microsoft Corporation COM+ Configuration Catalog 131795770645383742 0x7ffacf0d0000 704512 C:\Windows\System32\KERNEL32.DLL 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645383742 0x7ffacf770000 212992 C:\Windows\System32\GDI32.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation GDI Client DLL 131795770645383742 0x7ffacf890000 188416 C:\Windows\System32\IMM32.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Multi-User Windows IMM32 API Client DLL 131795770645383742 0x7ffacf8c0000 1462272 C:\Windows\System32\user32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795770645383742 0x7ffacfb30000 2916352 C:\Windows\System32\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795770645383742 0x7ffacfe20000 663552 C:\Windows\System32\advapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795770645383742 0x7ffad0070000 1277952 C:\Windows\System32\ole32.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft OLE для Windows 131795770645383742 0x7ffad01b0000 335872 C:\Windows\System32\SHLWAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека небольших программ оболочки 131795770645383742 0x7ffad0210000 364544 C:\Windows\System32\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795770645383742 0x7ffad0270000 1908736 C:\Windows\SYSTEM32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 68 8940 2156 62 00000000:0031f1da 131794956984780982 0 0 1 Обязательная метка\Средний обязательный уровень WIN-0UOTFKKVN1S\User Photoshop.exe C:\Program Files\Adobe\Adobe Photoshop CC 2017\Photoshop.exe "C:\Program Files\Adobe\Adobe Photoshop CC 2017\Photoshop.exe" "C:\Users\User\Downloads\tlauncher_psd\tlauncher_psd.psd" Adobe Systems, Incorporated 18.0.1 (2017.0.1 20161130.r.29 2016/11/30:23:00:00 CL 1099099) Adobe Photoshop CC 2017 131795770645383911 0xb20000 9846784 C:\Program Files\Adobe\Adobe Photoshop CC 2017\cg.dll 3.0.00007 NVIDIA Corporation Cg Core Runtime Library 131795770645383911 0x1490000 3276800 C:\Program Files\Adobe\Adobe Photoshop CC 2017\libmmd.dll 12.0.12.2 Intel Corporation Math Library for Intel(r) Compilers (thread-safe) 131795770645383911 0x10000000 6070272 C:\Program Files\Adobe\Adobe Photoshop CC 2017\svml_dispmd.dll 12.0.12.2 Intel Corporation SVML Library for Intel(r) Compilers (thread-safe) 131795770645383911 0x4fad0000 70561792 C:\Program Files\Common Files\Adobe\Plug-Ins\CC\File Formats\Camera Raw.8bi 9.8 Adobe Systems Incorporated Photoshop Camera Raw Plug-in 131795770645383911 0x5b690000 4763648 C:\Program Files\Adobe\Adobe Photoshop CC 2017\SVGRE.dll 6, 0, 0, 37447 Adobe Systems Incorporated SVGRE 6.0 131795770645383911 0x5bcf0000 241664 C:\Program Files\Adobe\Adobe Photoshop CC 2017\AXE8SharedExpat.dll 3.8.0.34320 Adobe Systems Incorporated AXE Shared EXPAT (UTF-8 native) 131795770645383911 0x5bd30000 61440 C:\Program Files\Adobe\Adobe Photoshop CC 2017\dnssd.dll 3,0,0,2 Apple Inc. Bonjour Client Library 131795770645383911 0x5bd40000 974848 C:\Program Files\Adobe\Adobe Photoshop CC 2017\AXEDOMCore.dll 3.8.0.34320 Adobe Systems Incorporated Adobe XML Engine: DOM Core 131795770645383911 0x5be30000 1306624 C:\Program Files\Adobe\Adobe Photoshop CC 2017\icucnv40.dll 4, 0, 0, 1001 IBM Corporation and others IBM ICU Common DLL 131795770645383911 0x6a400000 479232 C:\Program Files\Adobe\Adobe Photoshop CC 2017\cgGL.dll 3.0.00007 NVIDIA Corporation Cg GL Runtime Library 131795770645383911 0x180000000 159744 C:\Program Files\Adobe\Adobe Photoshop CC 2017\Required\Plug-Ins\File Formats\PSDX.8bi 14.0 Adobe Systems Incorporated Photoshop Remix Plug-In 131795770645383911 0x1c2eee90000 13922304 C:\Program Files\Adobe\Adobe Photoshop CC 2017\icudt40.dll 4, 0, 0, 1001 IBM Corporation and others ICU Data DLL 131795770645383911 0x1c2f1470000 12288 C:\Program Files\Adobe\Adobe Photoshop CC 2017\PSArt.dll 18.0.1 (2017.0.1 20161130.r.29 2016/11/30:23:00:00 CL 1099099) Adobe Systems, Incorporated Photoshop Resource DLL 131795770645383911 0x1c2f3490000 1593344 C:\Program Files\Adobe\Adobe Photoshop CC 2017\Photoshop.dll 18.0.1 (2017.0.1 20161130.r.29 2016/11/30:23:00:00 CL 1099099) Adobe Systems, Incorporated Photoshop Resource DLL 131795770645383911 0x1c2f3620000 2699264 C:\Program Files\Adobe\Adobe Photoshop CC 2017\PSViews.dll 18.0.1 (2017.0.1 20161130.r.29 2016/11/30:23:00:00 CL 1099099) Adobe Systems, Incorporated Photoshop Resource DLL 131795770645383911 0x1c2f93a0000 1429504 C:\Program Files\Adobe\Adobe Photoshop CC 2017\WRServices.dll 12.0.0.1000 WinSoft S.A. WRServices Engine 131795770645383911 0x1c2f9540000 1085440 C:\Program Files\Adobe\Adobe Photoshop CC 2017\Required\Linguistics\Providers\Plugins2\WRLiloPlugin.bundle\WRLiloPlugin.dll 1.3.6rc1 WinSoft SA WR LILO Plugin 131795770645383911 0x7ff6c3030000 182624256 C:\Program Files\Adobe\Adobe Photoshop CC 2017\Photoshop.exe 18.0.1 (2017.0.1 20161130.r.29 2016/11/30:23:00:00 CL 1099099) Adobe Systems, Incorporated Adobe Photoshop CC 2017 131795770645383911 0x7ffaa0cb0000 1880064 C:\Program Files\Adobe\Adobe Photoshop CC 2017\aif.dll 131795770645383911 0x7ffaa0e80000 2637824 C:\Program Files\Adobe\Adobe Photoshop CC 2017\LogSession.dll 7.4.1.60.45263 Adobe Systems Incorporated LogSession 131795770645383911 0x7ffaa1110000 70823936 C:\Program Files\Adobe\Adobe Photoshop CC 2017\Required\Plug-Ins\Spaces\libcef.dll 3.2526.1347.gcf20046 Chromium Embedded Framework (CEF) Dynamic Link Library 131795770645383911 0x7ffaa54a0000 7950336 C:\Program Files\Adobe\Adobe Photoshop CC 2017\Required\Plug-Ins\Extensions\ScriptingSupport.8li 18.0.1 Adobe Systems, Incorporated ScriptingSupport 131795770645383911 0x7ffaa5c40000 2113536 C:\Program Files\Adobe\Adobe Photoshop CC 2017\Required\Linguistics\Providers\Plugins2\AdobeHunspellPlugin\AdobeHunspellPlugin.dll 11.0.0.22122 Adobe Systems Incorporated AdobeHunspellPlugin 131795770645383911 0x7ffaa5e50000 4493312 C:\Program Files\Adobe\Adobe Photoshop CC 2017\CoolType.dll 5.15.00.37447 Adobe Systems Incorporated CoolType Typography Engine 131795770645383911 0x7ffaa62a0000 5267456 C:\Program Files\Adobe\Adobe Photoshop CC 2017\AGM.dll 4.30.60.37447 Adobe Systems Incorporated Adobe Graphics Manager 131795770645383911 0x7ffaa67b0000 1839104 C:\Program Files\Adobe\Adobe Photoshop CC 2017\ACE.dll 2.20.02.37447 Adobe Systems Incorporated Adobe Color Engine 131795770645383911 0x7ffaa6980000 1302528 C:\Program Files\Adobe\Adobe Photoshop CC 2017\AdobeXMP.dll 5.6-c138 ( 64 bit ), 79.159824, 2016/09/14-01:09:01 Adobe Systems Incorporated Adobe XMP Core 5.6-c138 ( 64 bit ) 131795770645383911 0x7ffaa6ac0000 692224 C:\Program Files\Adobe\Adobe Photoshop CC 2017\Required\Plug-Ins\Extensions\MultiProcessor Support.8bx 18.0.1 (2017.0.1 x001 x003) Adobe Systems, Incorporated Adobe Photoshop CC 2017 131795770645383911 0x7ffaa6b70000 1077248 C:\Program Files\Adobe\Adobe Photoshop CC 2017\Required\Plug-Ins\Extensions\MMXCore.8bx 18.0.1 (2017.0.1 x001 x003) Adobe Systems, Incorporated Adobe Photoshop CC 2017 131795770645383911 0x7ffaa6c80000 2093056 C:\Windows\system32\wpdshext.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширение оболочки для переносных устройств 131795770645383911 0x7ffaa6fd0000 978944 C:\Windows\SYSTEM32\MSVCR120.dll 12.00.40660.0 built by: VSULDR Microsoft Corporation Microsoft® C Runtime Library 131795770645383911 0x7ffaa70c0000 679936 C:\Windows\SYSTEM32\MSVCP120.dll 12.00.40660.0 built by: VSULDR Microsoft Corporation Microsoft® C Runtime Library 131795770645383911 0x7ffaa7170000 2826240 C:\Program Files\Adobe\Adobe Photoshop CC 2017\opencv_imgproc249.dll 131795770645383911 0x7ffaa7430000 2564096 C:\Program Files\Adobe\Adobe Photoshop CC 2017\opencv_core249.dll 131795770645383911 0x7ffaa76b0000 1478656 C:\Program Files\Adobe\Adobe Photoshop CC 2017\AIDE.dll 1.5.0.36540 Adobe Systems Incorporated Adobe Image Decode Encode Library 131795770645383911 0x7ffaa7820000 278528 C:\Program Files\Adobe\Adobe Photoshop CC 2017\tbbmalloc.dll 4, 4, 2016, 0412 Intel Corporation Scalable Allocator library 131795770645383911 0x7ffaa7870000 1011712 C:\Windows\SYSTEM32\DDRAW.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft DirectDraw 131795770645383911 0x7ffaa7b20000 2613248 C:\Program Files\Adobe\Adobe Photoshop CC 2017\AdobeOwl.dll 5.2.11 Adobe Systems, Incorporated Adobe Owl(64 bit) 131795770645383911 0x7ffaa7da0000 749568 C:\Program Files\Adobe\Adobe Photoshop CC 2017\ScCore.dll 4.5.6.4 Adobe Systems Incorporated Scripting Components Core (64 bit) 131795770645383911 0x7ffaa7e60000 18792448 C:\Program Files\Adobe\Adobe Photoshop CC 2017\mona.dll 131795770645383911 0x7ffaa9050000 802816 C:\Program Files\Adobe\Adobe Photoshop CC 2017\ExtendScript.dll 4.5.6.4 Adobe Systems Incorporated Adobe ExtendScript scripting engine (64 bit) 131795770645383911 0x7ffaa9120000 5681152 C:\Program Files\Adobe\Adobe Photoshop CC 2017\PlugPlugOwl.dll 7.0.0.67 Adobe Systems Incorporated PlugPlugOwl Standard Dll (64 bit) 131795770645383911 0x7ffaa9690000 5595136 C:\Program Files\Adobe\Adobe Photoshop CC 2017\MPS.dll 5.8.1.37174 Adobe Systems Incorporated Modular Parsing System 131795770645383911 0x7ffaa9bf0000 335872 C:\Program Files\Adobe\Adobe Photoshop CC 2017\ahclient.dll 2.0.0.0 Adobe Systems Incorporated Adobe Help Client Library 131795770645383911 0x7ffaa9c50000 569344 C:\Program Files\Adobe\Adobe Photoshop CC 2017\manta.dll 131795770645383911 0x7ffaa9ce0000 278528 C:\Program Files\Adobe\Adobe Photoshop CC 2017\tbb.dll 4, 4, 2016, 0412 Intel Corporation Intel(R) Threading Building Blocks library 131795770645383911 0x7ffaa9d30000 499712 C:\Program Files\Adobe\Adobe Photoshop CC 2017\VulcanControl.dll __ Adobe Systems Incorporated Vulcan Application Control Library 131795770645383911 0x7ffaa9db0000 630784 C:\Program Files\Adobe\Adobe Photoshop CC 2017\VulcanMessage5.dll __ Adobe Systems Incorporated Vulcan Message Library 131795770645383911 0x7ffaa9e50000 1241088 C:\Program Files\Adobe\Adobe Photoshop CC 2017\AdbePM.dll 2.5.00 Adobe Systems Incorporated Adobe PatchMatch 131795770645383911 0x7ffaa9f80000 167936 C:\Program Files\Adobe\Adobe Photoshop CC 2017\CITThreading.dll 2.1.0.1 ( 32 bit Debug) Adobe Systems Incorporated CITTHREADING_NAME, 2.1.0.1 ( 32 bit Debug) 131795770645383911 0x7ffaa9fb0000 1101824 C:\Program Files\Adobe\Adobe Photoshop CC 2017\adobe_caps.dll 10,0,0,6 Adobe Systems Incorporated Adobe CAPS DLL 131795770645383911 0x7ffaaa190000 1191936 C:\Windows\SYSTEM32\OPENGL32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation OpenGL Client DLL 131795770645383911 0x7ffaaa2c0000 593920 C:\Windows\SYSTEM32\mscms.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL-библиотека системы сопоставления цветов Майкрософт 131795770645383911 0x7ffaaa5f0000 2056192 C:\Program Files\Adobe\Adobe Photoshop CC 2017\IMSLib.dll 10.0.0.1 Adobe Systems Incorporated IMSLib DLL 131795770645383911 0x7ffaaa9c0000 9007104 C:\Program Files\Adobe\Adobe Photoshop CC 2017\Required\Plug-Ins\File Formats\Dicom.8bi 18.0.1 Adobe Systems, Incorporated Adobe Dicom Plugin 131795770645383911 0x7ffaaba80000 184320 C:\Windows\SYSTEM32\GLU32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека подпрограмм OpenGL 131795770645383911 0x7ffaabca0000 233472 C:\Program Files\Adobe\Adobe Photoshop CC 2017\PLUGIN.dll 18.0.1 (2017.0.1 x001 x003) Adobe Systems, Incorporated Photoshop Plugin Utilities 131795770645383911 0x7ffaade70000 270336 C:\Windows\SYSTEM32\icm32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Color Management Module (CMM) 131795770645383911 0x7ffab06d0000 245760 C:\Windows\system32\c_g18030.dll 10.0.14393.103 (rs1_release_inmarket.160819-1924) Microsoft Corporation GB18030 DBCS-Unicode Conversion DLL 131795770645383911 0x7ffab0b60000 495616 C:\Program Files\Adobe\Adobe Photoshop CC 2017\AdobeSVGAGM.dll 1.0.0.37447 Adobe Systems Incorporated Adobe SVG AGM Library 131795770645383911 0x7ffab1e60000 1478656 C:\Program Files\Adobe\Adobe Photoshop CC 2017\AdobeXMPFiles.dll 5.7-f022 ( 64 bit ), 79.159824, 2016/09/14-01:09:01 Adobe Systems Incorporated Adobe XMP Files 5.7-f022 ( 64 bit ) 131795770645383911 0x7ffab22e0000 1544192 C:\Program Files\Adobe\Adobe Photoshop CC 2017\Required\Plug-Ins\Spaces\Spaces.8li 18.0.1 Adobe Systems, Incorporated Spaces 131795770645383911 0x7ffab3410000 167936 C:\Program Files\Adobe\Adobe Photoshop CC 2017\libglog.dll 131795770645383911 0x7ffab4af0000 606208 C:\Windows\system32\audioses.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Сеанс обработки звука 131795770645383911 0x7ffab5b40000 2527232 C:\Windows\SYSTEM32\DWrite.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Службы Microsoft DirectX Typography 131795770645383911 0x7ffab8da0000 1675264 C:\Windows\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.14393.1715_none_aec701fbddd850fa\gdiplus.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Microsoft GDI+ 131795770645383911 0x7ffabaf70000 270336 C:\Windows\SYSTEM32\edputil.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служебная программа EDP 131795770645383911 0x7ffabb070000 512000 C:\Program Files\Adobe\Adobe Photoshop CC 2017\AdobePIP.dll 7.4.1.60.45263 Adobe Systems, Incorporated Adobe Product Improvement Program 131795770645383911 0x7ffabb250000 380928 C:\Program Files\Adobe\Adobe Photoshop CC 2017\BIBUtils.dll 1.1.01.37447 Adobe Systems Incorporated Bravo Interface Binder Utilities 131795770645383911 0x7ffabbc40000 643072 C:\Windows\SYSTEM32\MSVCP140.dll 14.10.24516.0 built by: VCTOOLSRELESC Microsoft Corporation Microsoft® C Runtime Library 131795770645383911 0x7ffabbce0000 90112 C:\Windows\SYSTEM32\VCRUNTIME140.dll 14.10.24516.0 built by: VCTOOLSRELESC Microsoft Corporation Microsoft® C Runtime Library 131795770645383911 0x7ffabcc00000 339968 C:\Windows\SYSTEM32\STI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиентская библиотека устройств неподвижных изображений 131795770645383911 0x7ffabd180000 548864 C:\Windows\SYSTEM32\WINSPOOL.DRV 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Драйвер диспетчера очереди Windows 131795770645383911 0x7ffabf5d0000 2924544 C:\Windows\SYSTEM32\WININET.dll 11.00.14393.447 (rs1_release_inmarket.161102-0100) Microsoft Corporation Расширения Интернета для Win32 131795770645383911 0x7ffac0610000 3088384 C:\Windows\SYSTEM32\msi.dll 5.0.14393.2155 Microsoft Corporation Windows Installer 131795770645383911 0x7ffac0b40000 315392 C:\Windows\System32\dlnashext.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLNA Namespace DLL 131795770645383911 0x7ffac0bf0000 3559424 C:\Windows\System32\ActXPrxy.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation ActiveX Interface Marshaling Library 131795770645383911 0x7ffac1300000 598016 C:\Program Files\Adobe\Adobe Photoshop CC 2017\BIB.dll 1.2.03.37447 Adobe Systems Incorporated Bravo Interface Binder 131795770645383911 0x7ffac1b70000 122880 C:\Windows\System32\DevDispItemProvider.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Подсистема DeviceItem inproc devquery 131795770645383911 0x7ffac1d60000 589824 C:\Windows\SYSTEM32\webio.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API протоколов передачи по Веб 131795770645383911 0x7ffac1fd0000 999424 C:\Windows\system32\wbem\fastprox.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation WMI Custom Marshaller 131795770645383911 0x7ffac21d0000 81920 C:\Windows\system32\wbem\wbemsvc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation WMI 131795770645383911 0x7ffac2700000 98304 C:\Windows\SYSTEM32\NETAPI32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API DLL 131795770645383911 0x7ffac2b80000 40960 C:\Windows\SYSTEM32\VERSION.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Version Checking and File Installation Libraries 131795770645383911 0x7ffac32b0000 151552 C:\Program Files\Adobe\Adobe Photoshop CC 2017\AdobeXMPScript.dll 5.2-s002 ( 64 bit ), 79.159824, 2016/09/14-01:09:01 Adobe Systems Incorporated Adobe XMP Script 5.2-s002 ( 64 bit ) 131795770645383911 0x7ffac34e0000 1843200 C:\Windows\SYSTEM32\urlmon.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширения OLE32 для Win32 131795770645383911 0x7ffac3cb0000 2772992 C:\Windows\SYSTEM32\iertutil.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служебная программа времени выполнения для Internet Explorer 131795770645383911 0x7ffac4220000 520192 C:\Windows\SYSTEM32\wbemcomn.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation WMI 131795770645383911 0x7ffac4470000 65536 C:\Windows\system32\wbem\wbemprox.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation WMI 131795770645383911 0x7ffac4c50000 36864 C:\Windows\SYSTEM32\WSOCK32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Socket 32-Bit DLL 131795770645383911 0x7ffac6610000 40960 C:\Windows\System32\rasadhlp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Remote Access AutoDial Helper 131795770645383911 0x7ffac69c0000 839680 C:\Windows\SYSTEM32\WINHTTP.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Службы HTTP Windows 131795770645383911 0x7ffac6aa0000 94208 C:\Program Files\Adobe\Adobe Photoshop CC 2017\amtlib.dll 10.0.0.3 painter AMTEmu Licensing 131795770645383911 0x7ffac6ba0000 49152 C:\Windows\SYSTEM32\Secur32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Security Support Provider Interface 131795770645383911 0x7ffac6bd0000 413696 C:\Windows\SYSTEM32\OLEACC.dll 7.2.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Active Accessibility Core Component 131795770645383911 0x7ffac6c40000 2596864 C:\Windows\WinSxS\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.14393.953_none_42151e83c686086b\Comctl32.dll 6.10 (rs1_release_inmarket.170303-1614) Microsoft Corporation Библиотека элементов управления взаимодействия с пользователем 131795770645383911 0x7ffac6ec0000 36864 C:\Windows\system32\IconCodecService.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Converts a PNG part of the icon to a legacy bmp icon 131795770645383911 0x7ffac76e0000 118784 C:\Program Files\Adobe\Adobe Photoshop CC 2017\Required\Plug-Ins\Extensions\FastCore.8bx 18.0.1 (2017.0.1 x001 x003) Adobe Systems, Incorporated Adobe Photoshop CC 2017 131795770645383911 0x7ffac7710000 40960 C:\Windows\SYSTEM32\wiatrace.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation WIA Tracing 131795770645383911 0x7ffac83d0000 106496 C:\Windows\SYSTEM32\dhcpcsvc.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служба DHCP-клиента 131795770645383911 0x7ffac83f0000 90112 C:\Windows\SYSTEM32\dhcpcsvc6.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиент DHCPv6 131795770645383911 0x7ffac84f0000 299008 C:\Windows\system32\dataexchange.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation Data exchange 131795770645383911 0x7ffac8810000 45056 C:\Windows\SYSTEM32\WINNSI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Network Store Information RPC interface 131795770645383911 0x7ffac88a0000 2842624 C:\Windows\system32\d3d11.dll 10.0.14393.953 (rs1_release_inmarket.170303-1614) Microsoft Corporation Direct3D 11 Runtime 131795770645383911 0x7ffac92e0000 1269760 C:\Windows\SYSTEM32\wintypes.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL основных типов Windows 131795770645383911 0x7ffac9480000 462848 C:\Windows\System32\MMDevApi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation MMDevice API 131795770645383911 0x7ffac9790000 98304 C:\Windows\system32\NLAapi.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Network Location Awareness 2 131795770645383911 0x7ffac9f50000 1736704 C:\Windows\SYSTEM32\WindowsCodecs.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Microsoft Windows Codecs Library 131795770645383911 0x7ffaca340000 1593344 C:\Windows\SYSTEM32\PROPSYS.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Система страниц свойств (Майкрософт) 131795770645383911 0x7ffaca4e0000 77824 C:\Windows\SYSTEM32\WTSAPI32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Remote Desktop Session Host Server SDK APIs 131795770645383911 0x7ffaca540000 32768 C:\Windows\SYSTEM32\DCIMAN32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DCI Manager 131795770645383911 0x7ffaca5e0000 155648 C:\Windows\system32\dwmapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Интерфейс API диспетчера окон рабочего стола (Майкрософт) 131795770645383911 0x7ffaca770000 1380352 C:\Windows\system32\dcomp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft DirectComposition Library 131795770645383911 0x7ffacab20000 102400 C:\Windows\SYSTEM32\USP10.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Uniscribe Unicode script processor 131795770645383911 0x7ffacab40000 176128 C:\Windows\SYSTEM32\WINMMBASE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base Multimedia Extension API DLL 131795770645383911 0x7ffacaba0000 143360 C:\Windows\SYSTEM32\WINMM.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation MCI API DLL 131795770645383911 0x7ffacac80000 28672 C:\Windows\SYSTEM32\MSIMG32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation GDIEXT Client DLL 131795770645383911 0x7ffacadf0000 499712 C:\Windows\SYSTEM32\apphelp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиентская библиотека совместимости приложений 131795770645383911 0x7ffacaf00000 610304 C:\Windows\system32\uxtheme.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека тем UxTheme (Microsoft) 131795770645383911 0x7ffacb1e0000 1163264 C:\Windows\system32\twinapi.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation twinapi.appcore 131795770645383911 0x7ffacb3f0000 163840 C:\Windows\System32\DEVOBJ.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Device Information Set DLL 131795770645383911 0x7ffacb420000 204800 C:\Windows\SYSTEM32\ntmarta.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик Windows NT MARTA 131795770645383911 0x7ffacb780000 651264 C:\Windows\SYSTEM32\dxgi.dll 10.0.14393.953 (rs1_release_inmarket.170303-1614) Microsoft Corporation DirectX Graphics Infrastructure 131795770645383911 0x7ffacbbb0000 208896 C:\Windows\system32\rsaenh.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Enhanced Cryptographic Provider 131795770645383911 0x7ffacbd30000 229376 C:\Windows\SYSTEM32\IPHLPAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API вспомогательного приложения IP 131795770645383911 0x7ffacbd70000 659456 C:\Windows\SYSTEM32\DNSAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Динамическая библиотека API DNS-клиента 131795770645383911 0x7ffacbe40000 126976 C:\Windows\SYSTEM32\USERENV.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Userenv 131795770645383911 0x7ffacbfb0000 376832 C:\Windows\system32\mswsock.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширение поставщика службы API Microsoft Windows Sockets 2.0 131795770645383911 0x7ffacc150000 94208 C:\Windows\SYSTEM32\CRYPTSP.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Cryptographic Service Provider API 131795770645383911 0x7ffacc170000 45056 C:\Windows\SYSTEM32\CRYPTBASE.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base cryptographic API DLL 131795770645383911 0x7ffacc350000 180224 C:\Windows\SYSTEM32\SspiCli.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Security Support Provider Interface 131795770645383911 0x7ffacc520000 622592 C:\Windows\SYSTEM32\sxs.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Fusion 2.5 131795770645383911 0x7ffacc5c0000 352256 C:\Windows\SYSTEM32\WINSTA.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Winstation Library 131795770645383911 0x7ffacc620000 176128 C:\Windows\SYSTEM32\bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795770645383911 0x7ffacc6e0000 61440 C:\Windows\System32\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795770645383911 0x7ffacc6f0000 311296 C:\Windows\System32\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795770645383911 0x7ffacc740000 81920 C:\Windows\System32\profapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Profile Basic API 131795770645383911 0x7ffacc760000 65536 C:\Windows\System32\MSASN1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ASN.1 Runtime APIs 131795770645383911 0x7ffacc8f0000 1003520 C:\Windows\System32\ucrtbase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645383911 0x7ffacc9f0000 434176 C:\Windows\System32\bcryptPrimitives.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Cryptographic Primitives Library 131795770645383911 0x7ffacca60000 122880 C:\Windows\System32\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795770645383911 0x7ffacca80000 348160 C:\Windows\System32\WINTRUST.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation Microsoft Trust Verification APIs 131795770645383911 0x7ffaccae0000 692224 C:\Windows\System32\shcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795770645383911 0x7ffaccb90000 7180288 C:\Windows\System32\windows.storage.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API хранения Microsoft WinRT 131795770645383911 0x7ffacd270000 2215936 C:\Windows\System32\KERNELBASE.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645383911 0x7ffacd490000 1871872 C:\Windows\System32\CRYPT32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API32 криптографии 131795770645383911 0x7ffacd710000 638976 C:\Windows\System32\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645383911 0x7ffacd7b0000 270336 C:\Windows\System32\cfgmgr32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Configuration Manager DLL 131795770645383911 0x7ffacd800000 32768 C:\Windows\System32\PSAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Process Status Helper 131795770645383911 0x7ffacd810000 22056960 C:\Windows\System32\SHELL32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Общая библиотека оболочки Windows 131795770645383911 0x7ffaced20000 782336 C:\Windows\System32\OLEAUT32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795770645383911 0x7ffacee50000 1183744 C:\Windows\System32\RPCRT4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795770645383911 0x7ffacef80000 32768 C:\Windows\System32\NSI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation NSI User-mode interface DLL 131795770645383911 0x7ffacef90000 647168 C:\Windows\System32\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795770645383911 0x7ffacf030000 651264 C:\Windows\System32\clbcatq.dll 2001.12.10941.16384 (rs1_release.160715-1616) Microsoft Corporation COM+ Configuration Catalog 131795770645383911 0x7ffacf0d0000 704512 C:\Windows\System32\KERNEL32.DLL 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645383911 0x7ffacf1e0000 1417216 C:\Windows\System32\MSCTF.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Серверная библиотека MSCTF 131795770645383911 0x7ffacf340000 4362240 C:\Windows\System32\SETUPAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Setup API 131795770645383911 0x7ffacf770000 212992 C:\Windows\System32\GDI32.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation GDI Client DLL 131795770645383911 0x7ffacf820000 434176 C:\Windows\System32\WS2_32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation 32-разрядная библиотека Windows Socket 2.0 131795770645383911 0x7ffacf890000 188416 C:\Windows\System32\IMM32.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Multi-User Windows IMM32 API Client DLL 131795770645383911 0x7ffacf8c0000 1462272 C:\Windows\System32\USER32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795770645383911 0x7ffacfa30000 1024000 C:\Windows\System32\COMDLG32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека общих диалоговых окон 131795770645383911 0x7ffacfb30000 2916352 C:\Windows\System32\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795770645383911 0x7ffacfe20000 663552 C:\Windows\System32\ADVAPI32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795770645383911 0x7ffad0070000 1277952 C:\Windows\System32\ole32.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft OLE для Windows 131795770645383911 0x7ffad01b0000 335872 C:\Windows\System32\shlwapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека небольших программ оболочки 131795770645383911 0x7ffad0210000 364544 C:\Windows\System32\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795770645383911 0x7ffad0270000 1908736 C:\Windows\SYSTEM32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 69 10000 8940 68 00000000:0031f1da 131794957424930105 0 0 0 Обязательная метка\Средний обязательный уровень WIN-0UOTFKKVN1S\User AdobeIPCBroker.exe C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\IPC\AdobeIPCBroker.exe "C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\IPC\AdobeIPCBroker.exe" "-launchedbyvulcan" Adobe Systems Incorporated 5.0.0.76 Adobe IPC Broker 131795770645384008 0xbe0000 798720 C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\IPC\AdobeIPCBroker.exe 5.0.0.76 Adobe Systems Incorporated Adobe IPC Broker 131795770645384008 0x5c020000 335872 C:\Windows\System32\wow64.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation Win32 Emulation on NT64 131795770645384008 0x5c080000 487424 C:\Windows\System32\wow64win.dll 10.0.14393.1884 (rs1_release.171101-1233) Microsoft Corporation Wow64 Console and Win32 API Logging 131795770645384008 0x5c100000 40960 C:\Windows\System32\wow64cpu.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation AMD64 Wow64 CPU 131795770645384008 0x60750000 1556480 C:\Program Files (x86)\360\Total Security\safemon\safemon.dll 8, 4, 0, 1420 Qihu 360 Software Co., Ltd. 360 Internet Security Internet Protection 131795770645384008 0x70ca0000 45056 C:\Windows\SysWOW64\NETUTILS.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API Helpers DLL 131795770645384008 0x70cb0000 65536 C:\Windows\SysWOW64\WKSCLI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Workstation Service Client DLL 131795770645384008 0x71140000 77824 C:\Windows\SysWOW64\NETAPI32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API DLL 131795770645384008 0x72b90000 126976 C:\Windows\SysWOW64\dwmapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Интерфейс API диспетчера окон рабочего стола (Майкрософт) 131795770645384008 0x74110000 479232 C:\Windows\SysWOW64\uxtheme.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека тем UxTheme (Microsoft) 131795770645384008 0x74190000 110592 C:\Windows\SysWOW64\bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795770645384008 0x746e0000 32768 C:\Windows\SysWOW64\VERSION.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Version Checking and File Installation Libraries 131795770645384008 0x74730000 598016 C:\Windows\SysWOW64\apphelp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиентская библиотека совместимости приложений 131795770645384008 0x747d0000 40960 C:\Windows\SysWOW64\CRYPTBASE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base cryptographic API DLL 131795770645384008 0x747e0000 126976 C:\Windows\SysWOW64\SspiCli.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Security Support Provider Interface 131795770645384008 0x74800000 151552 C:\Windows\SysWOW64\IMM32.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Multi-User Windows IMM32 API Client DLL 131795770645384008 0x74910000 2170880 C:\Windows\SysWOW64\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795770645384008 0x74b30000 53248 C:\Windows\SysWOW64\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795770645384008 0x74b60000 790528 C:\Windows\SysWOW64\RPCRT4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795770645384008 0x74c30000 1417216 C:\Windows\SysWOW64\gdi32full.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation GDI Client DLL 131795770645384008 0x74d90000 24576 C:\Windows\SysWOW64\PSAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Process Status Helper 131795770645384008 0x74da0000 778240 C:\Windows\SysWOW64\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795770645384008 0x74e60000 557056 C:\Windows\SysWOW64\shcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795770645384008 0x74ef0000 540672 C:\Windows\SysWOW64\clbcatq.dll 2001.12.10941.16384 (rs1_release.160715-1616) Microsoft Corporation COM+ Configuration Catalog 131795770645384008 0x74fd0000 405504 C:\Windows\SysWOW64\WS2_32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation 32-разрядная библиотека Windows Socket 2.0 131795770645384008 0x75040000 282624 C:\Windows\SysWOW64\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795770645384008 0x751e0000 1708032 C:\Windows\SysWOW64\KERNELBASE.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645384008 0x75390000 266240 C:\Windows\SysWOW64\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795770645384008 0x75560000 487424 C:\Windows\SysWOW64\ADVAPI32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795770645384008 0x756c0000 5693440 C:\Windows\SysWOW64\windows.storage.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API хранения Microsoft WinRT 131795770645384008 0x75c90000 286720 C:\Windows\SysWOW64\shlwapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека небольших программ оболочки 131795770645384008 0x75ce0000 20811776 C:\Windows\SysWOW64\SHELL32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Общая библиотека оболочки Windows 131795770645384008 0x774d0000 86016 C:\Windows\SysWOW64\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795770645384008 0x774f0000 61440 C:\Windows\SysWOW64\profapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Profile Basic API 131795770645384008 0x77560000 1437696 C:\Windows\SysWOW64\USER32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795770645384008 0x776c0000 368640 C:\Windows\SysWOW64\bcryptPrimitives.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation Windows Cryptographic Primitives Library 131795770645384008 0x77780000 503808 C:\Windows\SysWOW64\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645384008 0x77800000 606208 C:\Windows\SysWOW64\OLEAUT32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795770645384008 0x77ac0000 966656 C:\Windows\SysWOW64\ole32.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft OLE для Windows 131795770645384008 0x77bb0000 176128 C:\Windows\SysWOW64\GDI32.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation GDI Client DLL 131795770645384008 0x77cd0000 221184 C:\Windows\SysWOW64\cfgmgr32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Configuration Manager DLL 131795770645384008 0x77d20000 1585152 C:\Windows\SysWOW64\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 131795770645384008 0x7ffad0270000 1908736 C:\Windows\SYSTEM32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 70 10064 8940 68 00000000:0031f1da 131794957636746019 0 0 1 Обязательная метка\Средний обязательный уровень WIN-0UOTFKKVN1S\User Adobe Spaces Helper.exe C:\Program Files\Adobe\Adobe Photoshop CC 2017\Required\Plug-Ins\Spaces\Adobe Spaces Helper.exe "C:\Program Files\Adobe\Adobe Photoshop CC 2017\Required\Plug-Ins\Spaces\Adobe Spaces Helper.exe" --type=renderer --no-sandbox --touch-events=disabled --lang=en-US --lang=ru --locales-dir-path="C:\Program Files\Adobe\Adobe Photoshop CC 2017\Required\Plug-Ins\Spaces\Resources\locales\\" --log-file="C:\Users\User\AppData\Roaming\Adobe\Adobe Photoshop CC 2017\Logs\debug.log" --resources-dir-path="C:\Program Files\Adobe\Adobe Photoshop CC 2017\Required\Plug-Ins\Spaces\Resources\\" --enable-pinch --device-scale-factor=1 --num-raster-threads=1 --content-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --video-image-texture-target=3553 --disable-accelerated-video-decode --disable-webrtc-hw-encoding --disable-gpu-compositing --channel="8940.0.1405287427\319210639" /prefetch:673131151 131795770645384116 0x7ff6c2ef0000 1196032 C:\Program Files\Adobe\Adobe Photoshop CC 2017\Required\Plug-Ins\Spaces\Adobe Spaces Helper.exe 131795770645384116 0x7ffaa1110000 70823936 C:\Program Files\Adobe\Adobe Photoshop CC 2017\Required\Plug-Ins\Spaces\libcef.dll 3.2526.1347.gcf20046 Chromium Embedded Framework (CEF) Dynamic Link Library 131795770645384116 0x7ffab5b40000 2527232 C:\Windows\SYSTEM32\dwrite.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Службы Microsoft DirectX Typography 131795770645384116 0x7ffabbc40000 643072 C:\Windows\SYSTEM32\MSVCP140.dll 14.10.24516.0 built by: VCTOOLSRELESC Microsoft Corporation Microsoft® C Runtime Library 131795770645384116 0x7ffabbce0000 90112 C:\Windows\SYSTEM32\VCRUNTIME140.dll 14.10.24516.0 built by: VCTOOLSRELESC Microsoft Corporation Microsoft® C Runtime Library 131795770645384116 0x7ffabd180000 548864 C:\Windows\SYSTEM32\WINSPOOL.DRV 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Драйвер диспетчера очереди Windows 131795770645384116 0x7ffac2b80000 40960 C:\Windows\SYSTEM32\VERSION.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Version Checking and File Installation Libraries 131795770645384116 0x7ffac34e0000 1843200 C:\Windows\SYSTEM32\urlmon.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширения OLE32 для Win32 131795770645384116 0x7ffac3cb0000 2772992 C:\Windows\SYSTEM32\iertutil.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служебная программа времени выполнения для Internet Explorer 131795770645384116 0x7ffac69c0000 839680 C:\Windows\SYSTEM32\WINHTTP.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Службы HTTP Windows 131795770645384116 0x7ffac6ba0000 49152 C:\Windows\SYSTEM32\Secur32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Security Support Provider Interface 131795770645384116 0x7ffac6bd0000 413696 C:\Windows\SYSTEM32\OLEACC.dll 7.2.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Active Accessibility Core Component 131795770645384116 0x7ffac6c40000 2596864 C:\Windows\WinSxS\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.14393.953_none_42151e83c686086b\COMCTL32.dll 6.10 (rs1_release_inmarket.170303-1614) Microsoft Corporation Библиотека элементов управления взаимодействия с пользователем 131795770645384116 0x7ffac83d0000 106496 C:\Windows\SYSTEM32\dhcpcsvc.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служба DHCP-клиента 131795770645384116 0x7ffac8df0000 1646592 C:\Windows\SYSTEM32\dbghelp.dll 10.0.14321.1024 (rs1_release.160715-1616) Microsoft Windows Image Helper 131795770645384116 0x7ffaca4e0000 77824 C:\Windows\SYSTEM32\WTSAPI32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Remote Desktop Session Host Server SDK APIs 131795770645384116 0x7ffacab20000 102400 C:\Windows\SYSTEM32\USP10.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Uniscribe Unicode script processor 131795770645384116 0x7ffacab40000 176128 C:\Windows\SYSTEM32\WINMMBASE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base Multimedia Extension API DLL 131795770645384116 0x7ffacaba0000 143360 C:\Windows\SYSTEM32\WINMM.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation MCI API DLL 131795770645384116 0x7ffacadf0000 499712 C:\Windows\system32\apphelp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиентская библиотека совместимости приложений 131795770645384116 0x7ffacaf00000 610304 C:\Windows\system32\uxtheme.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека тем UxTheme (Microsoft) 131795770645384116 0x7ffacbd30000 229376 C:\Windows\SYSTEM32\IPHLPAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API вспомогательного приложения IP 131795770645384116 0x7ffacbe40000 126976 C:\Windows\SYSTEM32\USERENV.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Userenv 131795770645384116 0x7ffacc170000 45056 C:\Windows\SYSTEM32\CRYPTBASE.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base cryptographic API DLL 131795770645384116 0x7ffacc350000 180224 C:\Windows\SYSTEM32\SSPICLI.DLL 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Security Support Provider Interface 131795770645384116 0x7ffacc620000 176128 C:\Windows\SYSTEM32\bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795770645384116 0x7ffacc6e0000 61440 C:\Windows\System32\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795770645384116 0x7ffacc6f0000 311296 C:\Windows\System32\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795770645384116 0x7ffacc740000 81920 C:\Windows\System32\profapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Profile Basic API 131795770645384116 0x7ffacc760000 65536 C:\Windows\System32\MSASN1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ASN.1 Runtime APIs 131795770645384116 0x7ffacc8f0000 1003520 C:\Windows\System32\ucrtbase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645384116 0x7ffacc9f0000 434176 C:\Windows\System32\bcryptPrimitives.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Cryptographic Primitives Library 131795770645384116 0x7ffacca60000 122880 C:\Windows\System32\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795770645384116 0x7ffaccae0000 692224 C:\Windows\System32\shcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795770645384116 0x7ffaccb90000 7180288 C:\Windows\System32\windows.storage.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API хранения Microsoft WinRT 131795770645384116 0x7ffacd270000 2215936 C:\Windows\System32\KERNELBASE.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645384116 0x7ffacd490000 1871872 C:\Windows\System32\CRYPT32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API32 криптографии 131795770645384116 0x7ffacd710000 638976 C:\Windows\System32\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645384116 0x7ffacd7b0000 270336 C:\Windows\System32\cfgmgr32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Configuration Manager DLL 131795770645384116 0x7ffacd800000 32768 C:\Windows\System32\PSAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Process Status Helper 131795770645384116 0x7ffacd810000 22056960 C:\Windows\System32\SHELL32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Общая библиотека оболочки Windows 131795770645384116 0x7ffaced20000 782336 C:\Windows\System32\OLEAUT32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795770645384116 0x7ffacee50000 1183744 C:\Windows\System32\RPCRT4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795770645384116 0x7ffacef80000 32768 C:\Windows\System32\NSI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation NSI User-mode interface DLL 131795770645384116 0x7ffacef90000 647168 C:\Windows\System32\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795770645384116 0x7ffacf0d0000 704512 C:\Windows\System32\KERNEL32.DLL 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645384116 0x7ffacf770000 212992 C:\Windows\System32\GDI32.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation GDI Client DLL 131795770645384116 0x7ffacf820000 434176 C:\Windows\System32\WS2_32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation 32-разрядная библиотека Windows Socket 2.0 131795770645384116 0x7ffacf890000 188416 C:\Windows\System32\IMM32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Multi-User Windows IMM32 API Client DLL 131795770645384116 0x7ffacf8c0000 1462272 C:\Windows\System32\USER32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795770645384116 0x7ffacfa30000 1024000 C:\Windows\System32\COMDLG32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека общих диалоговых окон 131795770645384116 0x7ffacfb30000 2916352 C:\Windows\System32\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795770645384116 0x7ffacfe20000 663552 C:\Windows\System32\ADVAPI32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795770645384116 0x7ffad0070000 1277952 C:\Windows\System32\ole32.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft OLE для Windows 131795770645384116 0x7ffad01b0000 335872 C:\Windows\System32\SHLWAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека небольших программ оболочки 131795770645384116 0x7ffad0210000 364544 C:\Windows\System32\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795770645384116 0x7ffad0270000 1908736 C:\Windows\SYSTEM32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 71 8596 8940 68 00000000:0031f1da 131794957641371503 0 0 1 Обязательная метка\Средний обязательный уровень WIN-0UOTFKKVN1S\User Adobe Spaces Helper.exe C:\Program Files\Adobe\Adobe Photoshop CC 2017\Required\Plug-Ins\Spaces\Adobe Spaces Helper.exe "C:\Program Files\Adobe\Adobe Photoshop CC 2017\Required\Plug-Ins\Spaces\Adobe Spaces Helper.exe" --type=renderer --no-sandbox --touch-events=disabled --lang=en-US --lang=ru --locales-dir-path="C:\Program Files\Adobe\Adobe Photoshop CC 2017\Required\Plug-Ins\Spaces\Resources\locales\\" --log-file="C:\Users\User\AppData\Roaming\Adobe\Adobe Photoshop CC 2017\Logs\debug.log" --resources-dir-path="C:\Program Files\Adobe\Adobe Photoshop CC 2017\Required\Plug-Ins\Spaces\Resources\\" --enable-pinch --device-scale-factor=1 --num-raster-threads=1 --content-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --video-image-texture-target=3553 --disable-accelerated-video-decode --disable-webrtc-hw-encoding --disable-gpu-compositing --channel="8940.1.1139889345\75461215" /prefetch:673131151 131795770645384222 0x7ff6c2ef0000 1196032 C:\Program Files\Adobe\Adobe Photoshop CC 2017\Required\Plug-Ins\Spaces\Adobe Spaces Helper.exe 131795770645384222 0x7ffaa1110000 70823936 C:\Program Files\Adobe\Adobe Photoshop CC 2017\Required\Plug-Ins\Spaces\libcef.dll 3.2526.1347.gcf20046 Chromium Embedded Framework (CEF) Dynamic Link Library 131795770645384222 0x7ffab5b40000 2527232 C:\Windows\SYSTEM32\dwrite.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Службы Microsoft DirectX Typography 131795770645384222 0x7ffabbc40000 643072 C:\Windows\SYSTEM32\MSVCP140.dll 14.10.24516.0 built by: VCTOOLSRELESC Microsoft Corporation Microsoft® C Runtime Library 131795770645384222 0x7ffabbce0000 90112 C:\Windows\SYSTEM32\VCRUNTIME140.dll 14.10.24516.0 built by: VCTOOLSRELESC Microsoft Corporation Microsoft® C Runtime Library 131795770645384222 0x7ffabd180000 548864 C:\Windows\SYSTEM32\WINSPOOL.DRV 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Драйвер диспетчера очереди Windows 131795770645384222 0x7ffac2b80000 40960 C:\Windows\SYSTEM32\VERSION.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Version Checking and File Installation Libraries 131795770645384222 0x7ffac34e0000 1843200 C:\Windows\SYSTEM32\urlmon.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширения OLE32 для Win32 131795770645384222 0x7ffac3cb0000 2772992 C:\Windows\SYSTEM32\iertutil.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служебная программа времени выполнения для Internet Explorer 131795770645384222 0x7ffac69c0000 839680 C:\Windows\SYSTEM32\WINHTTP.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Службы HTTP Windows 131795770645384222 0x7ffac6ba0000 49152 C:\Windows\SYSTEM32\Secur32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Security Support Provider Interface 131795770645384222 0x7ffac6bd0000 413696 C:\Windows\SYSTEM32\OLEACC.dll 7.2.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Active Accessibility Core Component 131795770645384222 0x7ffac6c40000 2596864 C:\Windows\WinSxS\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.14393.953_none_42151e83c686086b\COMCTL32.dll 6.10 (rs1_release_inmarket.170303-1614) Microsoft Corporation Библиотека элементов управления взаимодействия с пользователем 131795770645384222 0x7ffac83d0000 106496 C:\Windows\SYSTEM32\dhcpcsvc.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служба DHCP-клиента 131795770645384222 0x7ffac8df0000 1646592 C:\Windows\SYSTEM32\dbghelp.dll 10.0.14321.1024 (rs1_release.160715-1616) Microsoft Windows Image Helper 131795770645384222 0x7ffaca4e0000 77824 C:\Windows\SYSTEM32\WTSAPI32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Remote Desktop Session Host Server SDK APIs 131795770645384222 0x7ffacab20000 102400 C:\Windows\SYSTEM32\USP10.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Uniscribe Unicode script processor 131795770645384222 0x7ffacab40000 176128 C:\Windows\SYSTEM32\WINMMBASE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base Multimedia Extension API DLL 131795770645384222 0x7ffacaba0000 143360 C:\Windows\SYSTEM32\WINMM.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation MCI API DLL 131795770645384222 0x7ffacaf00000 610304 C:\Windows\system32\uxtheme.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека тем UxTheme (Microsoft) 131795770645384222 0x7ffacbd30000 229376 C:\Windows\SYSTEM32\IPHLPAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API вспомогательного приложения IP 131795770645384222 0x7ffacbe40000 126976 C:\Windows\SYSTEM32\USERENV.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Userenv 131795770645384222 0x7ffacc170000 45056 C:\Windows\SYSTEM32\CRYPTBASE.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base cryptographic API DLL 131795770645384222 0x7ffacc350000 180224 C:\Windows\SYSTEM32\SSPICLI.DLL 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Security Support Provider Interface 131795770645384222 0x7ffacc620000 176128 C:\Windows\SYSTEM32\bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795770645384222 0x7ffacc6e0000 61440 C:\Windows\System32\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795770645384222 0x7ffacc6f0000 311296 C:\Windows\System32\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795770645384222 0x7ffacc740000 81920 C:\Windows\System32\profapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Profile Basic API 131795770645384222 0x7ffacc760000 65536 C:\Windows\System32\MSASN1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ASN.1 Runtime APIs 131795770645384222 0x7ffacc8f0000 1003520 C:\Windows\System32\ucrtbase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645384222 0x7ffacc9f0000 434176 C:\Windows\System32\bcryptPrimitives.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Cryptographic Primitives Library 131795770645384222 0x7ffacca60000 122880 C:\Windows\System32\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795770645384222 0x7ffaccae0000 692224 C:\Windows\System32\shcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795770645384222 0x7ffaccb90000 7180288 C:\Windows\System32\windows.storage.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API хранения Microsoft WinRT 131795770645384222 0x7ffacd270000 2215936 C:\Windows\System32\KERNELBASE.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645384222 0x7ffacd490000 1871872 C:\Windows\System32\CRYPT32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API32 криптографии 131795770645384222 0x7ffacd710000 638976 C:\Windows\System32\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645384222 0x7ffacd7b0000 270336 C:\Windows\System32\cfgmgr32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Configuration Manager DLL 131795770645384222 0x7ffacd800000 32768 C:\Windows\System32\PSAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Process Status Helper 131795770645384222 0x7ffacd810000 22056960 C:\Windows\System32\SHELL32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Общая библиотека оболочки Windows 131795770645384222 0x7ffaced20000 782336 C:\Windows\System32\OLEAUT32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795770645384222 0x7ffacee50000 1183744 C:\Windows\System32\RPCRT4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795770645384222 0x7ffacef80000 32768 C:\Windows\System32\NSI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation NSI User-mode interface DLL 131795770645384222 0x7ffacef90000 647168 C:\Windows\System32\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795770645384222 0x7ffacf0d0000 704512 C:\Windows\System32\KERNEL32.DLL 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645384222 0x7ffacf770000 212992 C:\Windows\System32\GDI32.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation GDI Client DLL 131795770645384222 0x7ffacf820000 434176 C:\Windows\System32\WS2_32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation 32-разрядная библиотека Windows Socket 2.0 131795770645384222 0x7ffacf890000 188416 C:\Windows\System32\IMM32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Multi-User Windows IMM32 API Client DLL 131795770645384222 0x7ffacf8c0000 1462272 C:\Windows\System32\USER32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795770645384222 0x7ffacfa30000 1024000 C:\Windows\System32\COMDLG32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека общих диалоговых окон 131795770645384222 0x7ffacfb30000 2916352 C:\Windows\System32\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795770645384222 0x7ffacfe20000 663552 C:\Windows\System32\ADVAPI32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795770645384222 0x7ffad0070000 1277952 C:\Windows\System32\ole32.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft OLE для Windows 131795770645384222 0x7ffad01b0000 335872 C:\Windows\System32\SHLWAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека небольших программ оболочки 131795770645384222 0x7ffad0210000 364544 C:\Windows\System32\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795770645384222 0x7ffad0270000 1908736 C:\Windows\SYSTEM32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 72 11172 8940 68 00000000:0031f1da 131794957658059215 0 1 0 Обязательная метка\Средний обязательный уровень WIN-0UOTFKKVN1S\User CEPHtmlEngine.exe C:\Program Files\Adobe\Adobe Photoshop CC 2017\Required\CEP\CEPHtmlEngine\CEPHtmlEngine.exe "C:\Program Files\Adobe\Adobe Photoshop CC 2017\Required\CEP\CEPHtmlEngine\CEPHtmlEngine.exe" "C:\Program Files (x86)\Common Files\Adobe\CEP\extensions\com.adobe.previewHD\PSLoader\loader.html" 2ec98b7b-08f4-4716-915a-e20a700b24cb 8940 PHXS 18.0.1 com.adobe.preview.loader 1 "C:\Program Files (x86)\Common Files\Adobe\CEP\extensions\com.adobe.previewHD" "Photoshop" 16 WyItLWVuYWJsZS1ub2RlanMiXQ== ru_RU 4293980400 1 Adobe Systems Incorporated 7.0.0 Adobe CEP HTML Engine 131795770645384338 0x240000 4014080 C:\Program Files\Adobe\Adobe Photoshop CC 2017\Required\CEP\CEPHtmlEngine\CEPHtmlEngine.exe 7.0.0 Adobe Systems Incorporated Adobe CEP HTML Engine 131795770645384338 0x5c020000 335872 C:\Windows\System32\wow64.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation Win32 Emulation on NT64 131795770645384338 0x5c080000 487424 C:\Windows\System32\wow64win.dll 10.0.14393.1884 (rs1_release.171101-1233) Microsoft Corporation Wow64 Console and Win32 API Logging 131795770645384338 0x5c100000 40960 C:\Windows\System32\wow64cpu.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation AMD64 Wow64 CPU 131795770645384338 0x5d110000 44531712 C:\Program Files\Adobe\Adobe Photoshop CC 2017\Required\CEP\CEPHtmlEngine\libcef.dll 3.2272.67.g479a5bd Chromium Embedded Framework (CEF) Dynamic Link Library 131795770645384338 0x60750000 1556480 C:\Program Files (x86)\360\Total Security\safemon\safemon.dll 8, 4, 0, 1420 Qihu 360 Software Co., Ltd. 360 Internet Security Internet Protection 131795770645384338 0x6c290000 987136 C:\Windows\SysWOW64\twinapi.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation twinapi.appcore 131795770645384338 0x6c390000 1126400 C:\Windows\SysWOW64\dcomp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft DirectComposition Library 131795770645384338 0x6c4b0000 278528 C:\Windows\SysWOW64\dataexchange.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation Data exchange 131795770645384338 0x6d0b0000 847872 C:\Windows\SysWOW64\wintypes.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL основных типов Windows 131795770645384338 0x6e210000 81920 C:\Windows\SysWOW64\VCRUNTIME140.dll 14.10.24516.0 built by: VCTOOLSRELESC Microsoft Corporation Microsoft® C Runtime Library 131795770645384338 0x6e230000 446464 C:\Windows\SysWOW64\MSVCP140.dll 14.10.24516.0 built by: VCTOOLSRELESC Microsoft Corporation Microsoft® C Runtime Library 131795770645384338 0x6fd30000 139264 C:\Windows\SysWOW64\DEVOBJ.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Device Information Set DLL 131795770645384338 0x6fd60000 360448 C:\Windows\SysWOW64\MMDevAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation MMDevice API 131795770645384338 0x6fdc0000 507904 C:\Windows\SysWOW64\audioses.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Сеанс обработки звука 131795770645384338 0x700d0000 434176 C:\Windows\SysWOW64\WINSPOOL.DRV 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Драйвер диспетчера очереди Windows 131795770645384338 0x70140000 274432 C:\Windows\SysWOW64\WINSTA.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Winstation Library 131795770645384338 0x70340000 536576 C:\Windows\SysWOW64\dxgi.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation DirectX Graphics Infrastructure 131795770645384338 0x703d0000 2056192 C:\Windows\SysWOW64\dwrite.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Службы Microsoft DirectX Typography 131795770645384338 0x705e0000 344064 C:\Windows\SysWOW64\OLEACC.dll 7.2.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Active Accessibility Core Component 131795770645384338 0x70a20000 94208 C:\Windows\SysWOW64\USP10.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Uniscribe Unicode script processor 131795770645384338 0x70a40000 81920 C:\Windows\SysWOW64\NLAapi.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Network Location Awareness 2 131795770645384338 0x70ca0000 45056 C:\Windows\SysWOW64\NETUTILS.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API Helpers DLL 131795770645384338 0x70cb0000 65536 C:\Windows\SysWOW64\WKSCLI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Workstation Service Client DLL 131795770645384338 0x71140000 77824 C:\Windows\SysWOW64\NETAPI32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API DLL 131795770645384338 0x71610000 77824 C:\Windows\SysWOW64\dhcpcsvc6.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиент DHCPv6 131795770645384338 0x725e0000 2273280 C:\Windows\SysWOW64\iertutil.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служебная программа времени выполнения для Internet Explorer 131795770645384338 0x728e0000 1372160 C:\Windows\SysWOW64\PROPSYS.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Система страниц свойств (Майкрософт) 131795770645384338 0x72b90000 126976 C:\Windows\SysWOW64\dwmapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Интерфейс API диспетчера окон рабочего стола (Майкрософт) 131795770645384338 0x72cc0000 1658880 C:\Windows\SysWOW64\urlmon.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширения OLE32 для Win32 131795770645384338 0x73ab0000 32768 C:\Windows\SysWOW64\rasadhlp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Remote Access AutoDial Helper 131795770645384338 0x73ac0000 81920 C:\Windows\SysWOW64\dhcpcsvc.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служба DHCP-клиента 131795770645384338 0x73ae0000 40960 C:\Windows\SysWOW64\Secur32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Security Support Provider Interface 131795770645384338 0x73ee0000 61440 C:\Windows\SysWOW64\WTSAPI32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Remote Desktop Session Host Server SDK APIs 131795770645384338 0x73f00000 192512 C:\Windows\SysWOW64\IPHLPAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API вспомогательного приложения IP 131795770645384338 0x73f30000 512000 C:\Windows\SysWOW64\DNSAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Динамическая библиотека API DNS-клиента 131795770645384338 0x73ff0000 319488 C:\Windows\SysWOW64\mswsock.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширение поставщика службы API Microsoft Windows Sockets 2.0 131795770645384338 0x74040000 126976 C:\Windows\SysWOW64\gpapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиентские функции API групповой политики 131795770645384338 0x74060000 192512 C:\Windows\SysWOW64\rsaenh.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Enhanced Cryptographic Provider 131795770645384338 0x74110000 479232 C:\Windows\SysWOW64\uxtheme.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека тем UxTheme (Microsoft) 131795770645384338 0x74190000 110592 C:\Windows\SysWOW64\bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795770645384338 0x741b0000 77824 C:\Windows\SysWOW64\CRYPTSP.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Cryptographic Service Provider API 131795770645384338 0x741f0000 143360 C:\Windows\SysWOW64\WINMMBASE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base Multimedia Extension API DLL 131795770645384338 0x74230000 147456 C:\Windows\SysWOW64\WINMM.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation MCI API DLL 131795770645384338 0x744d0000 2138112 C:\Windows\WinSxS\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.14393.953_none_89c2555adb023171\COMCTL32.dll 6.10 (rs1_release_inmarket.170303-1614) Microsoft Corporation Библиотека элементов управления взаимодействия с пользователем 131795770645384338 0x746e0000 32768 C:\Windows\SysWOW64\VERSION.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Version Checking and File Installation Libraries 131795770645384338 0x746f0000 106496 C:\Windows\SysWOW64\USERENV.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Userenv 131795770645384338 0x747d0000 40960 C:\Windows\SysWOW64\CRYPTBASE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base cryptographic API DLL 131795770645384338 0x747e0000 126976 C:\Windows\SysWOW64\SspiCli.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Security Support Provider Interface 131795770645384338 0x74800000 151552 C:\Windows\SysWOW64\IMM32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Multi-User Windows IMM32 API Client DLL 131795770645384338 0x74910000 2170880 C:\Windows\SysWOW64\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795770645384338 0x74b30000 53248 C:\Windows\SysWOW64\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795770645384338 0x74b60000 790528 C:\Windows\SysWOW64\RPCRT4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795770645384338 0x74c30000 1417216 C:\Windows\SysWOW64\gdi32full.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation GDI Client DLL 131795770645384338 0x74d90000 24576 C:\Windows\SysWOW64\PSAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Process Status Helper 131795770645384338 0x74da0000 778240 C:\Windows\SysWOW64\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795770645384338 0x74e60000 557056 C:\Windows\SysWOW64\shcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795770645384338 0x74ef0000 540672 C:\Windows\SysWOW64\clbcatq.dll 2001.12.10941.16384 (rs1_release.160715-1616) Microsoft Corporation COM+ Configuration Catalog 131795770645384338 0x74f80000 278528 C:\Windows\SysWOW64\WINTRUST.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation Microsoft Trust Verification APIs 131795770645384338 0x74fd0000 405504 C:\Windows\SysWOW64\WS2_32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation 32-разрядная библиотека Windows Socket 2.0 131795770645384338 0x75040000 282624 C:\Windows\SysWOW64\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795770645384338 0x75090000 1265664 C:\Windows\SysWOW64\MSCTF.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Серверная библиотека MSCTF 131795770645384338 0x751d0000 57344 C:\Windows\SysWOW64\MSASN1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ASN.1 Runtime APIs 131795770645384338 0x751e0000 1708032 C:\Windows\SysWOW64\KERNELBASE.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645384338 0x75390000 266240 C:\Windows\SysWOW64\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795770645384338 0x753e0000 1560576 C:\Windows\SysWOW64\CRYPT32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API32 криптографии 131795770645384338 0x75560000 487424 C:\Windows\SysWOW64\advapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795770645384338 0x756c0000 5693440 C:\Windows\SysWOW64\windows.storage.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API хранения Microsoft WinRT 131795770645384338 0x75c90000 286720 C:\Windows\SysWOW64\SHLWAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека небольших программ оболочки 131795770645384338 0x75ce0000 20811776 C:\Windows\SysWOW64\SHELL32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Общая библиотека оболочки Windows 131795770645384338 0x770c0000 4239360 C:\Windows\SysWOW64\SETUPAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Setup API 131795770645384338 0x774d0000 86016 C:\Windows\SysWOW64\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795770645384338 0x774f0000 61440 C:\Windows\SysWOW64\profapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Profile Basic API 131795770645384338 0x77560000 1437696 C:\Windows\SysWOW64\USER32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795770645384338 0x776c0000 368640 C:\Windows\SysWOW64\bcryptPrimitives.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation Windows Cryptographic Primitives Library 131795770645384338 0x77780000 503808 C:\Windows\SysWOW64\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645384338 0x77800000 606208 C:\Windows\SysWOW64\OLEAUT32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795770645384338 0x77ac0000 966656 C:\Windows\SysWOW64\ole32.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft OLE для Windows 131795770645384338 0x77bb0000 176128 C:\Windows\SysWOW64\GDI32.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation GDI Client DLL 131795770645384338 0x77be0000 937984 C:\Windows\SysWOW64\COMDLG32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека общих диалоговых окон 131795770645384338 0x77cd0000 221184 C:\Windows\SysWOW64\cfgmgr32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Configuration Manager DLL 131795770645384338 0x77d10000 28672 C:\Windows\SysWOW64\NSI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation NSI User-mode interface DLL 131795770645384338 0x77d20000 1585152 C:\Windows\SysWOW64\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 131795770645384338 0x7ffad0270000 1908736 C:\Windows\SYSTEM32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 73 11216 11172 72 00000000:0031f1da 131794957800622174 0 1 0 Обязательная метка\Средний обязательный уровень WIN-0UOTFKKVN1S\User CEPHtmlEngine.exe C:\Program Files\Adobe\Adobe Photoshop CC 2017\Required\CEP\CEPHtmlEngine\CEPHtmlEngine.exe "C:\Program Files\Adobe\Adobe Photoshop CC 2017\Required\CEP\CEPHtmlEngine\CEPHtmlEngine.exe" --type=renderer --no-sandbox --enable-deferred-image-decoding --lang=en-US --lang=ru --log-file="C:\Users\User\AppData\Local\Temp\CEPHtmlEngine7-PHXS-18.0.1-com.adobe.preview.loader.log" --log-severity=error --params_ppid=PHXS --params_ppversion=18.0.1 --params_extensionid=com.adobe.preview.loader --params_loglevel=1 --params_serverid=8940 --params_extensionuuid=2ec98b7b-08f4-4716-915a-e20a700b24cb --params_windowid=70742 --params_commandline=WyItLWVuYWJsZS1ub2RlanMiXQ== --enable-pinch --device-scale-factor=1 --font-cache-shared-mem-suffix=11172 --enable-pinch-virtual-viewport --enable-delegated-renderer --num-raster-threads=1 --disable-accelerated-video-decode --disable-webrtc-hw-encoding --disable-gpu-compositing --channel="11172.0.296388529\1274093304" /prefetch:673131151 Adobe Systems Incorporated 7.0.0 Adobe CEP HTML Engine 131795770645384488 0x240000 4014080 C:\Program Files\Adobe\Adobe Photoshop CC 2017\Required\CEP\CEPHtmlEngine\CEPHtmlEngine.exe 7.0.0 Adobe Systems Incorporated Adobe CEP HTML Engine 131795770645384488 0x5c020000 335872 C:\Windows\System32\wow64.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation Win32 Emulation on NT64 131795770645384488 0x5c080000 487424 C:\Windows\System32\wow64win.dll 10.0.14393.1884 (rs1_release.171101-1233) Microsoft Corporation Wow64 Console and Win32 API Logging 131795770645384488 0x5c100000 40960 C:\Windows\System32\wow64cpu.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation AMD64 Wow64 CPU 131795770645384488 0x5d110000 44531712 C:\Program Files\Adobe\Adobe Photoshop CC 2017\Required\CEP\CEPHtmlEngine\libcef.dll 3.2272.67.g479a5bd Chromium Embedded Framework (CEF) Dynamic Link Library 131795770645384488 0x6d990000 3055616 C:\Program Files\Adobe\Adobe Photoshop CC 2017\Required\CEP\CEPHtmlEngine\ffmpegsumo.dll 41.0.2272.104 The Chromium Authors Chromium 131795770645384488 0x6e210000 81920 C:\Windows\SysWOW64\VCRUNTIME140.dll 14.10.24516.0 built by: VCTOOLSRELESC Microsoft Corporation Microsoft® C Runtime Library 131795770645384488 0x6e230000 446464 C:\Windows\SysWOW64\MSVCP140.dll 14.10.24516.0 built by: VCTOOLSRELESC Microsoft Corporation Microsoft® C Runtime Library 131795770645384488 0x700d0000 434176 C:\Windows\SysWOW64\WINSPOOL.DRV 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Драйвер диспетчера очереди Windows 131795770645384488 0x703d0000 2056192 C:\Windows\SysWOW64\dwrite.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Службы Microsoft DirectX Typography 131795770645384488 0x705e0000 344064 C:\Windows\SysWOW64\OLEACC.dll 7.2.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Active Accessibility Core Component 131795770645384488 0x70a20000 94208 C:\Windows\SysWOW64\USP10.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Uniscribe Unicode script processor 131795770645384488 0x70a40000 81920 C:\Windows\SysWOW64\NLAapi.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Network Location Awareness 2 131795770645384488 0x70a60000 90112 C:\Windows\SysWOW64\pnrpnsp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик пространства имен PNRP 131795770645384488 0x70c00000 49152 C:\Windows\SysWOW64\winrnr.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation LDAP RnR Provider DLL 131795770645384488 0x70c10000 73728 C:\Windows\SysWOW64\napinsp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик оболочки совместимости для имен электронной почты 131795770645384488 0x71610000 77824 C:\Windows\SysWOW64\dhcpcsvc6.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиент DHCPv6 131795770645384488 0x725e0000 2273280 C:\Windows\SysWOW64\iertutil.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служебная программа времени выполнения для Internet Explorer 131795770645384488 0x72af0000 655360 C:\Windows\SysWOW64\WINHTTP.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Службы HTTP Windows 131795770645384488 0x72cc0000 1658880 C:\Windows\SysWOW64\urlmon.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширения OLE32 для Win32 131795770645384488 0x73ac0000 81920 C:\Windows\SysWOW64\dhcpcsvc.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служба DHCP-клиента 131795770645384488 0x73ae0000 40960 C:\Windows\SysWOW64\Secur32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Security Support Provider Interface 131795770645384488 0x73ee0000 61440 C:\Windows\SysWOW64\WTSAPI32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Remote Desktop Session Host Server SDK APIs 131795770645384488 0x73f00000 192512 C:\Windows\SysWOW64\IPHLPAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API вспомогательного приложения IP 131795770645384488 0x73f30000 512000 C:\Windows\SysWOW64\DNSAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Динамическая библиотека API DNS-клиента 131795770645384488 0x73ff0000 319488 C:\Windows\SysWOW64\mswsock.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширение поставщика службы API Microsoft Windows Sockets 2.0 131795770645384488 0x74060000 192512 C:\Windows\SysWOW64\rsaenh.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Enhanced Cryptographic Provider 131795770645384488 0x74110000 479232 C:\Windows\SysWOW64\uxtheme.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека тем UxTheme (Microsoft) 131795770645384488 0x74190000 110592 C:\Windows\SysWOW64\bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795770645384488 0x741b0000 77824 C:\Windows\SysWOW64\CRYPTSP.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Cryptographic Service Provider API 131795770645384488 0x741f0000 143360 C:\Windows\SysWOW64\WINMMBASE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base Multimedia Extension API DLL 131795770645384488 0x74230000 147456 C:\Windows\SysWOW64\WINMM.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation MCI API DLL 131795770645384488 0x744d0000 2138112 C:\Windows\WinSxS\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.14393.953_none_89c2555adb023171\COMCTL32.dll 6.10 (rs1_release_inmarket.170303-1614) Microsoft Corporation Библиотека элементов управления взаимодействия с пользователем 131795770645384488 0x746e0000 32768 C:\Windows\SysWOW64\VERSION.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Version Checking and File Installation Libraries 131795770645384488 0x746f0000 106496 C:\Windows\SysWOW64\USERENV.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Userenv 131795770645384488 0x747d0000 40960 C:\Windows\SysWOW64\CRYPTBASE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base cryptographic API DLL 131795770645384488 0x747e0000 126976 C:\Windows\SysWOW64\SspiCli.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Security Support Provider Interface 131795770645384488 0x74800000 151552 C:\Windows\SysWOW64\IMM32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Multi-User Windows IMM32 API Client DLL 131795770645384488 0x74910000 2170880 C:\Windows\SysWOW64\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795770645384488 0x74b30000 53248 C:\Windows\SysWOW64\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795770645384488 0x74b60000 790528 C:\Windows\SysWOW64\RPCRT4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795770645384488 0x74c30000 1417216 C:\Windows\SysWOW64\gdi32full.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation GDI Client DLL 131795770645384488 0x74d90000 24576 C:\Windows\SysWOW64\PSAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Process Status Helper 131795770645384488 0x74da0000 778240 C:\Windows\SysWOW64\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795770645384488 0x74e60000 557056 C:\Windows\SysWOW64\shcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795770645384488 0x74fd0000 405504 C:\Windows\SysWOW64\WS2_32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation 32-разрядная библиотека Windows Socket 2.0 131795770645384488 0x75040000 282624 C:\Windows\SysWOW64\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795770645384488 0x751d0000 57344 C:\Windows\SysWOW64\MSASN1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ASN.1 Runtime APIs 131795770645384488 0x751e0000 1708032 C:\Windows\SysWOW64\KERNELBASE.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645384488 0x75390000 266240 C:\Windows\SysWOW64\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795770645384488 0x753e0000 1560576 C:\Windows\SysWOW64\CRYPT32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API32 криптографии 131795770645384488 0x75560000 487424 C:\Windows\SysWOW64\advapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795770645384488 0x756c0000 5693440 C:\Windows\SysWOW64\windows.storage.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API хранения Microsoft WinRT 131795770645384488 0x75c90000 286720 C:\Windows\SysWOW64\SHLWAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека небольших программ оболочки 131795770645384488 0x75ce0000 20811776 C:\Windows\SysWOW64\SHELL32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Общая библиотека оболочки Windows 131795770645384488 0x774d0000 86016 C:\Windows\SysWOW64\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795770645384488 0x774f0000 61440 C:\Windows\SysWOW64\profapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Profile Basic API 131795770645384488 0x77560000 1437696 C:\Windows\SysWOW64\USER32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795770645384488 0x776c0000 368640 C:\Windows\SysWOW64\bcryptPrimitives.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation Windows Cryptographic Primitives Library 131795770645384488 0x77780000 503808 C:\Windows\SysWOW64\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645384488 0x77800000 606208 C:\Windows\SysWOW64\OLEAUT32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795770645384488 0x77ac0000 966656 C:\Windows\SysWOW64\ole32.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft OLE для Windows 131795770645384488 0x77bb0000 176128 C:\Windows\SysWOW64\GDI32.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation GDI Client DLL 131795770645384488 0x77be0000 937984 C:\Windows\SysWOW64\COMDLG32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека общих диалоговых окон 131795770645384488 0x77cd0000 221184 C:\Windows\SysWOW64\cfgmgr32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Configuration Manager DLL 131795770645384488 0x77d10000 28672 C:\Windows\SysWOW64\NSI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation NSI User-mode interface DLL 131795770645384488 0x77d20000 1585152 C:\Windows\SysWOW64\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 131795770645384488 0x7ffad0270000 1908736 C:\Windows\SYSTEM32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 74 10844 8940 68 00000000:0031f1da 131794958201141405 0 1 0 Обязательная метка\Средний обязательный уровень WIN-0UOTFKKVN1S\User CEPHtmlEngine.exe C:\Program Files\Adobe\Adobe Photoshop CC 2017\Required\CEP\CEPHtmlEngine\CEPHtmlEngine.exe "C:\Program Files\Adobe\Adobe Photoshop CC 2017\Required\CEP\CEPHtmlEngine\CEPHtmlEngine.exe" "C:\Program Files\Adobe\Adobe Photoshop CC 2017\Required\CEP\extensions\com.adobe.experimentation.extension\index.html" e44c0384-b65f-4f05-a36a-c6092cb32d00 8940 PHXS 18.0.1 com.adobe.experimentation.extension 1 "C:\Program Files\Adobe\Adobe Photoshop CC 2017\Required\CEP\extensions\com.adobe.experimentation.extension" "Photoshop" 16 WyItLWVuYWJsZS1ub2RlanMiXQ== ru_RU 4293980400 1 Adobe Systems Incorporated 7.0.0 Adobe CEP HTML Engine 131795770645384610 0x240000 4014080 C:\Program Files\Adobe\Adobe Photoshop CC 2017\Required\CEP\CEPHtmlEngine\CEPHtmlEngine.exe 7.0.0 Adobe Systems Incorporated Adobe CEP HTML Engine 131795770645384610 0x5c020000 335872 C:\Windows\System32\wow64.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation Win32 Emulation on NT64 131795770645384610 0x5c080000 487424 C:\Windows\System32\wow64win.dll 10.0.14393.1884 (rs1_release.171101-1233) Microsoft Corporation Wow64 Console and Win32 API Logging 131795770645384610 0x5c100000 40960 C:\Windows\System32\wow64cpu.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation AMD64 Wow64 CPU 131795770645384610 0x5d110000 44531712 C:\Program Files\Adobe\Adobe Photoshop CC 2017\Required\CEP\CEPHtmlEngine\libcef.dll 3.2272.67.g479a5bd Chromium Embedded Framework (CEF) Dynamic Link Library 131795770645384610 0x60750000 1556480 C:\Program Files (x86)\360\Total Security\safemon\safemon.dll 8, 4, 0, 1420 Qihu 360 Software Co., Ltd. 360 Internet Security Internet Protection 131795770645384610 0x6c290000 987136 C:\Windows\SysWOW64\twinapi.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation twinapi.appcore 131795770645384610 0x6c390000 1126400 C:\Windows\SysWOW64\dcomp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft DirectComposition Library 131795770645384610 0x6c4b0000 278528 C:\Windows\SysWOW64\dataexchange.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation Data exchange 131795770645384610 0x6d0b0000 847872 C:\Windows\SysWOW64\wintypes.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL основных типов Windows 131795770645384610 0x6e210000 81920 C:\Windows\SysWOW64\VCRUNTIME140.dll 14.10.24516.0 built by: VCTOOLSRELESC Microsoft Corporation Microsoft® C Runtime Library 131795770645384610 0x6e230000 446464 C:\Windows\SysWOW64\MSVCP140.dll 14.10.24516.0 built by: VCTOOLSRELESC Microsoft Corporation Microsoft® C Runtime Library 131795770645384610 0x6fd30000 139264 C:\Windows\SysWOW64\DEVOBJ.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Device Information Set DLL 131795770645384610 0x6fd60000 360448 C:\Windows\SysWOW64\MMDevAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation MMDevice API 131795770645384610 0x6fdc0000 507904 C:\Windows\SysWOW64\audioses.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Сеанс обработки звука 131795770645384610 0x700d0000 434176 C:\Windows\SysWOW64\WINSPOOL.DRV 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Драйвер диспетчера очереди Windows 131795770645384610 0x70140000 274432 C:\Windows\SysWOW64\WINSTA.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Winstation Library 131795770645384610 0x70340000 536576 C:\Windows\SysWOW64\dxgi.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation DirectX Graphics Infrastructure 131795770645384610 0x703d0000 2056192 C:\Windows\SysWOW64\dwrite.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Службы Microsoft DirectX Typography 131795770645384610 0x705e0000 344064 C:\Windows\SysWOW64\OLEACC.dll 7.2.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Active Accessibility Core Component 131795770645384610 0x70a20000 94208 C:\Windows\SysWOW64\USP10.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Uniscribe Unicode script processor 131795770645384610 0x70a40000 81920 C:\Windows\SysWOW64\NLAapi.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Network Location Awareness 2 131795770645384610 0x70ca0000 45056 C:\Windows\SysWOW64\NETUTILS.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API Helpers DLL 131795770645384610 0x70cb0000 65536 C:\Windows\SysWOW64\WKSCLI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Workstation Service Client DLL 131795770645384610 0x71140000 77824 C:\Windows\SysWOW64\NETAPI32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API DLL 131795770645384610 0x71610000 77824 C:\Windows\SysWOW64\dhcpcsvc6.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиент DHCPv6 131795770645384610 0x725e0000 2273280 C:\Windows\SysWOW64\iertutil.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служебная программа времени выполнения для Internet Explorer 131795770645384610 0x728e0000 1372160 C:\Windows\SysWOW64\PROPSYS.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Система страниц свойств (Майкрософт) 131795770645384610 0x72b90000 126976 C:\Windows\SysWOW64\dwmapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Интерфейс API диспетчера окон рабочего стола (Майкрософт) 131795770645384610 0x72cc0000 1658880 C:\Windows\SysWOW64\urlmon.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширения OLE32 для Win32 131795770645384610 0x73ab0000 32768 C:\Windows\SysWOW64\rasadhlp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Remote Access AutoDial Helper 131795770645384610 0x73ac0000 81920 C:\Windows\SysWOW64\dhcpcsvc.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служба DHCP-клиента 131795770645384610 0x73ae0000 40960 C:\Windows\SysWOW64\Secur32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Security Support Provider Interface 131795770645384610 0x73ee0000 61440 C:\Windows\SysWOW64\WTSAPI32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Remote Desktop Session Host Server SDK APIs 131795770645384610 0x73f00000 192512 C:\Windows\SysWOW64\IPHLPAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API вспомогательного приложения IP 131795770645384610 0x73f30000 512000 C:\Windows\SysWOW64\DNSAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Динамическая библиотека API DNS-клиента 131795770645384610 0x73ff0000 319488 C:\Windows\SysWOW64\mswsock.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширение поставщика службы API Microsoft Windows Sockets 2.0 131795770645384610 0x74040000 126976 C:\Windows\SysWOW64\gpapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиентские функции API групповой политики 131795770645384610 0x74060000 192512 C:\Windows\SysWOW64\rsaenh.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Enhanced Cryptographic Provider 131795770645384610 0x74110000 479232 C:\Windows\SysWOW64\uxtheme.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека тем UxTheme (Microsoft) 131795770645384610 0x74190000 110592 C:\Windows\SysWOW64\bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795770645384610 0x741b0000 77824 C:\Windows\SysWOW64\CRYPTSP.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Cryptographic Service Provider API 131795770645384610 0x741f0000 143360 C:\Windows\SysWOW64\WINMMBASE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base Multimedia Extension API DLL 131795770645384610 0x74230000 147456 C:\Windows\SysWOW64\WINMM.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation MCI API DLL 131795770645384610 0x744d0000 2138112 C:\Windows\WinSxS\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.14393.953_none_89c2555adb023171\COMCTL32.dll 6.10 (rs1_release_inmarket.170303-1614) Microsoft Corporation Библиотека элементов управления взаимодействия с пользователем 131795770645384610 0x746e0000 32768 C:\Windows\SysWOW64\VERSION.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Version Checking and File Installation Libraries 131795770645384610 0x746f0000 106496 C:\Windows\SysWOW64\USERENV.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Userenv 131795770645384610 0x747d0000 40960 C:\Windows\SysWOW64\CRYPTBASE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base cryptographic API DLL 131795770645384610 0x747e0000 126976 C:\Windows\SysWOW64\SspiCli.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Security Support Provider Interface 131795770645384610 0x74800000 151552 C:\Windows\SysWOW64\IMM32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Multi-User Windows IMM32 API Client DLL 131795770645384610 0x74910000 2170880 C:\Windows\SysWOW64\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795770645384610 0x74b30000 53248 C:\Windows\SysWOW64\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795770645384610 0x74b60000 790528 C:\Windows\SysWOW64\RPCRT4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795770645384610 0x74c30000 1417216 C:\Windows\SysWOW64\gdi32full.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation GDI Client DLL 131795770645384610 0x74d90000 24576 C:\Windows\SysWOW64\PSAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Process Status Helper 131795770645384610 0x74da0000 778240 C:\Windows\SysWOW64\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795770645384610 0x74e60000 557056 C:\Windows\SysWOW64\shcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795770645384610 0x74ef0000 540672 C:\Windows\SysWOW64\clbcatq.dll 2001.12.10941.16384 (rs1_release.160715-1616) Microsoft Corporation COM+ Configuration Catalog 131795770645384610 0x74f80000 278528 C:\Windows\SysWOW64\WINTRUST.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation Microsoft Trust Verification APIs 131795770645384610 0x74fd0000 405504 C:\Windows\SysWOW64\WS2_32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation 32-разрядная библиотека Windows Socket 2.0 131795770645384610 0x75040000 282624 C:\Windows\SysWOW64\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795770645384610 0x75090000 1265664 C:\Windows\SysWOW64\MSCTF.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Серверная библиотека MSCTF 131795770645384610 0x751d0000 57344 C:\Windows\SysWOW64\MSASN1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ASN.1 Runtime APIs 131795770645384610 0x751e0000 1708032 C:\Windows\SysWOW64\KERNELBASE.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645384610 0x75390000 266240 C:\Windows\SysWOW64\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795770645384610 0x753e0000 1560576 C:\Windows\SysWOW64\CRYPT32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API32 криптографии 131795770645384610 0x75560000 487424 C:\Windows\SysWOW64\advapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795770645384610 0x756c0000 5693440 C:\Windows\SysWOW64\windows.storage.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API хранения Microsoft WinRT 131795770645384610 0x75c90000 286720 C:\Windows\SysWOW64\SHLWAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека небольших программ оболочки 131795770645384610 0x75ce0000 20811776 C:\Windows\SysWOW64\SHELL32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Общая библиотека оболочки Windows 131795770645384610 0x770c0000 4239360 C:\Windows\SysWOW64\SETUPAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Setup API 131795770645384610 0x774d0000 86016 C:\Windows\SysWOW64\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795770645384610 0x774f0000 61440 C:\Windows\SysWOW64\profapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Profile Basic API 131795770645384610 0x77560000 1437696 C:\Windows\SysWOW64\USER32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795770645384610 0x776c0000 368640 C:\Windows\SysWOW64\bcryptPrimitives.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation Windows Cryptographic Primitives Library 131795770645384610 0x77780000 503808 C:\Windows\SysWOW64\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645384610 0x77800000 606208 C:\Windows\SysWOW64\OLEAUT32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795770645384610 0x77ac0000 966656 C:\Windows\SysWOW64\ole32.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft OLE для Windows 131795770645384610 0x77bb0000 176128 C:\Windows\SysWOW64\GDI32.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation GDI Client DLL 131795770645384610 0x77be0000 937984 C:\Windows\SysWOW64\COMDLG32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека общих диалоговых окон 131795770645384610 0x77cd0000 221184 C:\Windows\SysWOW64\cfgmgr32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Configuration Manager DLL 131795770645384610 0x77d10000 28672 C:\Windows\SysWOW64\NSI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation NSI User-mode interface DLL 131795770645384610 0x77d20000 1585152 C:\Windows\SysWOW64\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 131795770645384610 0x7ffad0270000 1908736 C:\Windows\SYSTEM32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 75 9092 10844 74 00000000:0031f1da 131794958208470288 0 1 0 Обязательная метка\Средний обязательный уровень WIN-0UOTFKKVN1S\User CEPHtmlEngine.exe C:\Program Files\Adobe\Adobe Photoshop CC 2017\Required\CEP\CEPHtmlEngine\CEPHtmlEngine.exe "C:\Program Files\Adobe\Adobe Photoshop CC 2017\Required\CEP\CEPHtmlEngine\CEPHtmlEngine.exe" --type=renderer --no-sandbox --enable-deferred-image-decoding --lang=en-US --lang=ru --log-file="C:\Users\User\AppData\Local\Temp\CEPHtmlEngine7-PHXS-18.0.1-com.adobe.experimentation.extension.log" --log-severity=error --params_ppid=PHXS --params_ppversion=18.0.1 --params_extensionid=com.adobe.experimentation.extension --params_loglevel=1 --params_serverid=8940 --params_extensionuuid=e44c0384-b65f-4f05-a36a-c6092cb32d00 --params_windowid=198892 --params_commandline=WyItLWVuYWJsZS1ub2RlanMiXQ== --enable-pinch --device-scale-factor=1 --font-cache-shared-mem-suffix=10844 --enable-pinch-virtual-viewport --enable-delegated-renderer --num-raster-threads=1 --disable-accelerated-video-decode --disable-webrtc-hw-encoding --disable-gpu-compositing --channel="10844.0.379179099\270765323" /prefetch:673131151 Adobe Systems Incorporated 7.0.0 Adobe CEP HTML Engine 131795770645384720 0x240000 4014080 C:\Program Files\Adobe\Adobe Photoshop CC 2017\Required\CEP\CEPHtmlEngine\CEPHtmlEngine.exe 7.0.0 Adobe Systems Incorporated Adobe CEP HTML Engine 131795770645384720 0x5c020000 335872 C:\Windows\System32\wow64.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation Win32 Emulation on NT64 131795770645384720 0x5c080000 487424 C:\Windows\System32\wow64win.dll 10.0.14393.1884 (rs1_release.171101-1233) Microsoft Corporation Wow64 Console and Win32 API Logging 131795770645384720 0x5c100000 40960 C:\Windows\System32\wow64cpu.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation AMD64 Wow64 CPU 131795770645384720 0x5d110000 44531712 C:\Program Files\Adobe\Adobe Photoshop CC 2017\Required\CEP\CEPHtmlEngine\libcef.dll 3.2272.67.g479a5bd Chromium Embedded Framework (CEF) Dynamic Link Library 131795770645384720 0x6d990000 3055616 C:\Program Files\Adobe\Adobe Photoshop CC 2017\Required\CEP\CEPHtmlEngine\ffmpegsumo.dll 41.0.2272.104 The Chromium Authors Chromium 131795770645384720 0x6e210000 81920 C:\Windows\SysWOW64\VCRUNTIME140.dll 14.10.24516.0 built by: VCTOOLSRELESC Microsoft Corporation Microsoft® C Runtime Library 131795770645384720 0x6e230000 446464 C:\Windows\SysWOW64\MSVCP140.dll 14.10.24516.0 built by: VCTOOLSRELESC Microsoft Corporation Microsoft® C Runtime Library 131795770645384720 0x700d0000 434176 C:\Windows\SysWOW64\WINSPOOL.DRV 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Драйвер диспетчера очереди Windows 131795770645384720 0x703d0000 2056192 C:\Windows\SysWOW64\dwrite.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Службы Microsoft DirectX Typography 131795770645384720 0x705e0000 344064 C:\Windows\SysWOW64\OLEACC.dll 7.2.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Active Accessibility Core Component 131795770645384720 0x70a20000 94208 C:\Windows\SysWOW64\USP10.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Uniscribe Unicode script processor 131795770645384720 0x70a40000 81920 C:\Windows\SysWOW64\NLAapi.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Network Location Awareness 2 131795770645384720 0x70a60000 90112 C:\Windows\SysWOW64\pnrpnsp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик пространства имен PNRP 131795770645384720 0x70c00000 49152 C:\Windows\SysWOW64\winrnr.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation LDAP RnR Provider DLL 131795770645384720 0x70c10000 73728 C:\Windows\SysWOW64\napinsp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик оболочки совместимости для имен электронной почты 131795770645384720 0x71610000 77824 C:\Windows\SysWOW64\dhcpcsvc6.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиент DHCPv6 131795770645384720 0x725e0000 2273280 C:\Windows\SysWOW64\iertutil.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служебная программа времени выполнения для Internet Explorer 131795770645384720 0x72af0000 655360 C:\Windows\SysWOW64\WINHTTP.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Службы HTTP Windows 131795770645384720 0x72cc0000 1658880 C:\Windows\SysWOW64\urlmon.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширения OLE32 для Win32 131795770645384720 0x73ac0000 81920 C:\Windows\SysWOW64\dhcpcsvc.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служба DHCP-клиента 131795770645384720 0x73ae0000 40960 C:\Windows\SysWOW64\Secur32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Security Support Provider Interface 131795770645384720 0x73ee0000 61440 C:\Windows\SysWOW64\WTSAPI32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Remote Desktop Session Host Server SDK APIs 131795770645384720 0x73f00000 192512 C:\Windows\SysWOW64\IPHLPAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API вспомогательного приложения IP 131795770645384720 0x73f30000 512000 C:\Windows\SysWOW64\DNSAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Динамическая библиотека API DNS-клиента 131795770645384720 0x73ff0000 319488 C:\Windows\SysWOW64\mswsock.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширение поставщика службы API Microsoft Windows Sockets 2.0 131795770645384720 0x74060000 192512 C:\Windows\SysWOW64\rsaenh.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Enhanced Cryptographic Provider 131795770645384720 0x74110000 479232 C:\Windows\SysWOW64\uxtheme.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека тем UxTheme (Microsoft) 131795770645384720 0x74190000 110592 C:\Windows\SysWOW64\bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795770645384720 0x741b0000 77824 C:\Windows\SysWOW64\CRYPTSP.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Cryptographic Service Provider API 131795770645384720 0x741f0000 143360 C:\Windows\SysWOW64\WINMMBASE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base Multimedia Extension API DLL 131795770645384720 0x74230000 147456 C:\Windows\SysWOW64\WINMM.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation MCI API DLL 131795770645384720 0x744d0000 2138112 C:\Windows\WinSxS\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.14393.953_none_89c2555adb023171\COMCTL32.dll 6.10 (rs1_release_inmarket.170303-1614) Microsoft Corporation Библиотека элементов управления взаимодействия с пользователем 131795770645384720 0x746e0000 32768 C:\Windows\SysWOW64\VERSION.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Version Checking and File Installation Libraries 131795770645384720 0x746f0000 106496 C:\Windows\SysWOW64\USERENV.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Userenv 131795770645384720 0x747d0000 40960 C:\Windows\SysWOW64\CRYPTBASE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base cryptographic API DLL 131795770645384720 0x747e0000 126976 C:\Windows\SysWOW64\SspiCli.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Security Support Provider Interface 131795770645384720 0x74800000 151552 C:\Windows\SysWOW64\IMM32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Multi-User Windows IMM32 API Client DLL 131795770645384720 0x74910000 2170880 C:\Windows\SysWOW64\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795770645384720 0x74b30000 53248 C:\Windows\SysWOW64\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795770645384720 0x74b60000 790528 C:\Windows\SysWOW64\RPCRT4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795770645384720 0x74c30000 1417216 C:\Windows\SysWOW64\gdi32full.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation GDI Client DLL 131795770645384720 0x74d90000 24576 C:\Windows\SysWOW64\PSAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Process Status Helper 131795770645384720 0x74da0000 778240 C:\Windows\SysWOW64\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795770645384720 0x74e60000 557056 C:\Windows\SysWOW64\shcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795770645384720 0x74fd0000 405504 C:\Windows\SysWOW64\WS2_32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation 32-разрядная библиотека Windows Socket 2.0 131795770645384720 0x75040000 282624 C:\Windows\SysWOW64\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795770645384720 0x751d0000 57344 C:\Windows\SysWOW64\MSASN1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ASN.1 Runtime APIs 131795770645384720 0x751e0000 1708032 C:\Windows\SysWOW64\KERNELBASE.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645384720 0x75390000 266240 C:\Windows\SysWOW64\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795770645384720 0x753e0000 1560576 C:\Windows\SysWOW64\CRYPT32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API32 криптографии 131795770645384720 0x75560000 487424 C:\Windows\SysWOW64\advapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795770645384720 0x756c0000 5693440 C:\Windows\SysWOW64\windows.storage.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API хранения Microsoft WinRT 131795770645384720 0x75c90000 286720 C:\Windows\SysWOW64\SHLWAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека небольших программ оболочки 131795770645384720 0x75ce0000 20811776 C:\Windows\SysWOW64\SHELL32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Общая библиотека оболочки Windows 131795770645384720 0x774d0000 86016 C:\Windows\SysWOW64\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795770645384720 0x774f0000 61440 C:\Windows\SysWOW64\profapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Profile Basic API 131795770645384720 0x77560000 1437696 C:\Windows\SysWOW64\USER32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795770645384720 0x776c0000 368640 C:\Windows\SysWOW64\bcryptPrimitives.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation Windows Cryptographic Primitives Library 131795770645384720 0x77780000 503808 C:\Windows\SysWOW64\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645384720 0x77800000 606208 C:\Windows\SysWOW64\OLEAUT32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795770645384720 0x77ac0000 966656 C:\Windows\SysWOW64\ole32.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft OLE для Windows 131795770645384720 0x77bb0000 176128 C:\Windows\SysWOW64\GDI32.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation GDI Client DLL 131795770645384720 0x77be0000 937984 C:\Windows\SysWOW64\COMDLG32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека общих диалоговых окон 131795770645384720 0x77cd0000 221184 C:\Windows\SysWOW64\cfgmgr32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Configuration Manager DLL 131795770645384720 0x77d10000 28672 C:\Windows\SysWOW64\NSI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation NSI User-mode interface DLL 131795770645384720 0x77d20000 1585152 C:\Windows\SysWOW64\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 131795770645384720 0x7ffad0270000 1908736 C:\Windows\SYSTEM32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 76 11496 664 6 00000000:0031f1da 131794958406617238 0 0 1 Обязательная метка\Низкий обязательный уровень WIN-0UOTFKKVN1S\User SearchUI.exe C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\SearchUI.exe "C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\SearchUI.exe" -ServerName:CortanaUI.AppXa50dqqa5gqv4a428c9y1jjw7m3btvepj.mca Microsoft Corporation 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Search and Cortana application 131795770645385613 0x7ff79c3c0000 10706944 C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\SearchUI.exe 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Search and Cortana application 131795770645385613 0x7ffab2c00000 8179712 C:\Windows\SYSTEM32\chakra.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft ® Chakra (Private) 131795770645385613 0x7ffab33d0000 258048 C:\Windows\SYSTEM32\MLANG.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL многоязыковой поддержки 131795770645385613 0x7ffab3540000 22740992 C:\Windows\SYSTEM32\edgehtml.dll 11.00.14393.447 (rs1_release_inmarket.161102-0100) Microsoft Corporation Веб-платформа Microsoft Edge 131795770645385613 0x7ffab4b90000 655360 C:\Windows\System32\StructuredQuery.dll 7.0.14393.2068 (rs1_release.180209-1727) Microsoft Corporation Structured Query 131795770645385613 0x7ffab4c70000 4874240 C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\RemindersUI.dll 131795770645385613 0x7ffab52c0000 2445312 C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.BackgroundTask.dll 131795770645385613 0x7ffab5520000 3231744 C:\Windows\SYSTEM32\msftedit.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Элемент управления "Поле ввода форматированного текста", версия 8.5 131795770645385613 0x7ffab5840000 3108864 C:\Windows\System32\Speech_OneCore\Common\sapi_onecore.dll 5.3.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Speech API 131795770645385613 0x7ffab5b40000 2527232 C:\Windows\SYSTEM32\dwrite.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Службы Microsoft DirectX Typography 131795770645385613 0x7ffab5db0000 9781248 C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\CortanaApi.dll 131795770645385613 0x7ffab6710000 17231872 C:\Windows\System32\Windows.UI.Xaml.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows.UI.Xaml dll 131795770645385613 0x7ffab7a00000 3424256 C:\Windows\system32\tquery.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Запросы Microsoft Tripoli 131795770645385613 0x7ffab9c00000 1343488 C:\Windows\System32\Windows.Web.Http.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL Windows.Web.Http 131795770645385613 0x7ffab9d50000 1429504 C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Core.dll 131795770645385613 0x7ffabaab0000 94208 C:\Windows\SYSTEM32\profext.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation profext 131795770645385613 0x7ffabae40000 110592 C:\Windows\SYSTEM32\capauthz.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API авторизации возможностей 131795770645385613 0x7ffabaf70000 270336 C:\Windows\SYSTEM32\edputil.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служебная программа EDP 131795770645385613 0x7ffabb200000 294912 C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\CortanaApi.ProxyStub.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation "CortanaApi.ProxyStub.DYNLINK" 131795770645385613 0x7ffabb3c0000 450560 C:\Windows\SYSTEM32\TextInputFramework.dll 10.0.14393.2189 (rs1_release.180329-1711) Microsoft Corporation "TextInputFramework.DYNLINK" 131795770645385613 0x7ffabb490000 512000 C:\Windows\System32\twinapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation twinapi 131795770645385613 0x7ffabbd10000 65536 C:\Windows\SYSTEM32\tokenbinding.dll 10.0.14393.1593 (rs1_release.170731-1934) Microsoft Corporation Token Binding Protocol 131795770645385613 0x7ffabd4a0000 1613824 C:\Windows\System32\Windows.Globalization.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Globalization 131795770645385613 0x7ffabe4d0000 286720 C:\Windows\System32\MSWB7.dll 10.0.14393.1737 (rs1_release_inmarket.170914-1249) Microsoft Corporation MSWB7 DLL 131795770645385613 0x7ffabe6e0000 561152 C:\Windows\system32\directmanipulation.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Direct Manipulation Component 131795770645385613 0x7ffabe770000 774144 C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\CSGSuggestLib.dll 131795770645385613 0x7ffabe9c0000 188416 C:\Windows\SYSTEM32\globinputhost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Globalization Extension API for Input 131795770645385613 0x7ffabea90000 135168 C:\Windows\System32\Windows.ApplicationModel.Background.SystemEventsBroker.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Background System Events Broker API Server 131795770645385613 0x7ffabeac0000 335872 C:\Windows\System32\Windows.Storage.ApplicationData.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Application Data API Server 131795770645385613 0x7ffabeb20000 385024 C:\Windows\System32\Windows.ApplicationModel.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows ApplicationModel API Server 131795770645385613 0x7ffabefa0000 192512 C:\Windows\system32\Cortana.Persona.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Cortana.Persona 131795770645385613 0x7ffabf5d0000 2924544 C:\Windows\SYSTEM32\WININET.dll 11.00.14393.447 (rs1_release_inmarket.161102-0100) Microsoft Corporation Расширения Интернета для Win32 131795770645385613 0x7ffabf8a0000 122880 C:\Windows\System32\Windows.Cortana.ProxyStub.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows.Cortana.ProxyStub 131795770645385613 0x7ffabfce0000 90112 C:\Windows\System32\Windows.Globalization.Fontgroups.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Fonts Mapping API 131795770645385613 0x7ffabfd00000 356352 C:\Windows\System32\Windows.Graphics.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation WinRT Windows Graphics DLL 131795770645385613 0x7ffabfd80000 86016 C:\Windows\System32\threadpoolwinrt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows WinRT Threadpool 131795770645385613 0x7ffabfe10000 237568 C:\Windows\SYSTEM32\rometadata.dll 4.6.1586.0 built by: NETFXREL2 Microsoft Corporation Microsoft MetaData Library 131795770645385613 0x7ffac00c0000 282624 C:\Windows\SYSTEM32\windows.ui.core.textinput.dll 10.0.14393.2189 (rs1_release.180329-1711) Microsoft Corporation Windows.UI.Core.TextInput dll 131795770645385613 0x7ffac01e0000 397312 C:\Windows\SYSTEM32\wincorlib.DLL 10.0.14393.576 (rs1_release_inmarket.161208-2252) Microsoft Corporation Microsoft Windows ® WinRT core library 131795770645385613 0x7ffac0bf0000 3559424 C:\Windows\System32\ActXPrxy.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation ActiveX Interface Marshaling Library 131795770645385613 0x7ffac10b0000 217088 C:\Windows\system32\PersonaX.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation PersonaX 131795770645385613 0x7ffac1c40000 94208 C:\Windows\System32\SystemSettings.DataModel.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SystemSettings.Datamodel private API 131795770645385613 0x7ffac20d0000 110592 C:\Windows\System32\rmclient.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Resource Manager Client 131795770645385613 0x7ffac23c0000 331776 C:\Windows\System32\OneCoreCommonProxyStub.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation OneCore Common Proxy Stub 131795770645385613 0x7ffac2990000 385024 C:\Windows\SYSTEM32\NInput.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Pen and Touch Input Component 131795770645385613 0x7ffac2c30000 135168 C:\Windows\SYSTEM32\clipc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиент платформы лицензирования клиента 131795770645385613 0x7ffac2d80000 5140480 C:\Windows\SYSTEM32\cdp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API клиента Microsoft (R) CDP 131795770645385613 0x7ffac34e0000 1843200 C:\Windows\SYSTEM32\urlmon.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширения OLE32 для Win32 131795770645385613 0x7ffac3810000 167936 C:\Windows\SYSTEM32\Cabinet.dll 5.00 (rs1_release.160715-1616) Microsoft Corporation Microsoft® Cabinet File API 131795770645385613 0x7ffac3b80000 286720 C:\Windows\system32\indexeddbserver.dll 10.0.14393.2189 (rs1_release.180329-1711) Microsoft Corporation IndexedDb host 131795770645385613 0x7ffac3bf0000 94208 C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\ActionMgr.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Cortana Action Manager 131795770645385613 0x7ffac3cb0000 2772992 C:\Windows\SYSTEM32\iertutil.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служебная программа времени выполнения для Internet Explorer 131795770645385613 0x7ffac4000000 274432 C:\Windows\SYSTEM32\policymanager.dll 10.0.14393.2035 (rs1_release_inmarket.180110-1910) Microsoft Corporation Policy Manager DLL 131795770645385613 0x7ffac5070000 798720 C:\Windows\System32\Windows.Web.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL веб-клиента 131795770645385613 0x7ffac5350000 1765376 C:\Windows\System32\Windows.UI.Immersive.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation WINDOWS.UI.IMMERSIVE 131795770645385613 0x7ffac5ce0000 1744896 C:\Windows\SYSTEM32\UIAutomationCore.DLL 7.2.14393.0 (rs1_release.160715-1616) Microsoft Corporation Основные автоматические компоненты Microsoft UI 131795770645385613 0x7ffac60e0000 221184 C:\Windows\SYSTEM32\XmlLite.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft XmlLite Library 131795770645385613 0x7ffac6610000 40960 C:\Windows\System32\rasadhlp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Remote Access AutoDial Helper 131795770645385613 0x7ffac6620000 192512 C:\Windows\System32\biwinrt.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation Windows Background Broker Infrastructure 131795770645385613 0x7ffac66a0000 86016 C:\Windows\SYSTEM32\ondemandconnroutehelper.dll 10.0.14393.351 (rs1_release_inmarket.161014-1755) Microsoft Corporation On Demand Connctiond Route Helper 131795770645385613 0x7ffac69c0000 839680 C:\Windows\SYSTEM32\WINHTTP.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Службы HTTP Windows 131795770645385613 0x7ffac6ac0000 835584 C:\Windows\System32\Windows.UI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Runtime UI Foundation DLL 131795770645385613 0x7ffac6bb0000 118784 C:\Windows\system32\windows.cortana.pal.desktop.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows.Cortana.PAL.Desktop 131795770645385613 0x7ffac6bd0000 413696 C:\Windows\SYSTEM32\OLEACC.dll 7.2.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Active Accessibility Core Component 131795770645385613 0x7ffac6ed0000 155648 C:\Windows\SYSTEM32\srpapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL программных интерфейсов (API) поставщика общих ресурсов 131795770645385613 0x7ffac6f50000 5632000 C:\Windows\SYSTEM32\d2d1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека Microsoft D2D 131795770645385613 0x7ffac7580000 1077248 C:\Windows\System32\MrmCoreR.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Windows MRM 131795770645385613 0x7ffac7720000 1601536 C:\Windows\System32\OneCoreUAPCommonProxyStub.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation OneCoreUAP Common Proxy Stub 131795770645385613 0x7ffac78b0000 65536 C:\Windows\system32\msimtf.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Active IMM Server DLL 131795770645385613 0x7ffac7c50000 118784 C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\BingConfigurationClient.dll 10.0.14393.82 (rs1_release.160805-1735) Microsoft Corporation Bing Configuration Client DLL 131795770645385613 0x7ffac7d80000 49152 C:\Windows\System32\Windows.ApplicationModel.Background.TimeBroker.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Background Time Broker API Server 131795770645385613 0x7ffac7e30000 40960 C:\Windows\SYSTEM32\fontgroupsoverride.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation fontgroupsoverride.dll 131795770645385613 0x7ffac7fc0000 2674688 C:\Windows\SYSTEM32\d3d10warp.dll 10.0.14393.576 (rs1_release_inmarket.161208-2252) Microsoft Corporation Direct3D 10 Rasterizer 131795770645385613 0x7ffac83d0000 106496 C:\Windows\SYSTEM32\dhcpcsvc.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служба DHCP-клиента 131795770645385613 0x7ffac83f0000 90112 C:\Windows\SYSTEM32\dhcpcsvc6.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиент DHCPv6 131795770645385613 0x7ffac84f0000 299008 C:\Windows\system32\DataExchange.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation Data exchange 131795770645385613 0x7ffac8810000 45056 C:\Windows\SYSTEM32\WINNSI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Network Store Information RPC interface 131795770645385613 0x7ffac88a0000 2842624 C:\Windows\SYSTEM32\d3d11.dll 10.0.14393.953 (rs1_release_inmarket.170303-1614) Microsoft Corporation Direct3D 11 Runtime 131795770645385613 0x7ffac8fa0000 253952 C:\Windows\SYSTEM32\logoncli.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Net Logon Client DLL 131795770645385613 0x7ffac92e0000 1269760 C:\Windows\System32\WinTypes.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL основных типов Windows 131795770645385613 0x7ffac9480000 462848 C:\Windows\SYSTEM32\MMDevAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation MMDevice API 131795770645385613 0x7ffac9500000 2682880 C:\Windows\system32\CoreUIComponents.dll 131795770645385613 0x7ffac9f50000 1736704 C:\Windows\system32\windowscodecs.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Microsoft Windows Codecs Library 131795770645385613 0x7ffaca260000 45056 C:\Windows\SYSTEM32\SystemEventsBrokerClient.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation system Events Broker Client Library 131795770645385613 0x7ffaca340000 1593344 C:\Windows\SYSTEM32\PROPSYS.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Система страниц свойств (Майкрософт) 131795770645385613 0x7ffaca570000 421888 C:\Windows\SYSTEM32\Bcp47Langs.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation BCP47 Language Classes 131795770645385613 0x7ffaca5e0000 155648 C:\Windows\SYSTEM32\dwmapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Интерфейс API диспетчера окон рабочего стола (Майкрософт) 131795770645385613 0x7ffaca640000 770048 C:\Windows\SYSTEM32\CoreMessaging.dll 10.0.14393.0 Microsoft Corporation Microsoft CoreMessaging Dll 131795770645385613 0x7ffaca770000 1380352 C:\Windows\SYSTEM32\dcomp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft DirectComposition Library 131795770645385613 0x7ffacab40000 176128 C:\Windows\SYSTEM32\winmmbase.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base Multimedia Extension API DLL 131795770645385613 0x7ffacadf0000 499712 C:\Windows\system32\apphelp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиентская библиотека совместимости приложений 131795770645385613 0x7ffacaf00000 610304 C:\Windows\system32\uxtheme.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека тем UxTheme (Microsoft) 131795770645385613 0x7ffacb140000 593920 C:\Windows\SYSTEM32\msvcp110_win.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Microsoft® STL110 C++ Runtime Library 131795770645385613 0x7ffacb1e0000 1163264 C:\Windows\System32\twinapi.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation twinapi.appcore 131795770645385613 0x7ffacb300000 364544 C:\Windows\SYSTEM32\VEEventDispatcher.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Visual Element Event dispatcher 131795770645385613 0x7ffacb3f0000 163840 C:\Windows\SYSTEM32\DEVOBJ.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Device Information Set DLL 131795770645385613 0x7ffacb420000 204800 C:\Windows\SYSTEM32\ntmarta.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик Windows NT MARTA 131795770645385613 0x7ffacb780000 651264 C:\Windows\SYSTEM32\dxgi.dll 10.0.14393.953 (rs1_release_inmarket.170303-1614) Microsoft Corporation DirectX Graphics Infrastructure 131795770645385613 0x7ffacbd30000 229376 C:\Windows\SYSTEM32\IPHLPAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API вспомогательного приложения IP 131795770645385613 0x7ffacbd70000 659456 C:\Windows\SYSTEM32\DNSAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Динамическая библиотека API DNS-клиента 131795770645385613 0x7ffacbe40000 126976 C:\Windows\SYSTEM32\userenv.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Userenv 131795770645385613 0x7ffacbfb0000 376832 C:\Windows\system32\mswsock.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширение поставщика службы API Microsoft Windows Sockets 2.0 131795770645385613 0x7ffacc150000 94208 C:\Windows\SYSTEM32\cryptsp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Cryptographic Service Provider API 131795770645385613 0x7ffacc170000 45056 C:\Windows\SYSTEM32\CRYPTBASE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base cryptographic API DLL 131795770645385613 0x7ffacc1f0000 241664 C:\Windows\SYSTEM32\NTASN1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft ASN.1 API 131795770645385613 0x7ffacc230000 155648 C:\Windows\SYSTEM32\ncrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Маршрутизатор Windows NCrypt 131795770645385613 0x7ffacc350000 180224 C:\Windows\SYSTEM32\SspiCli.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Security Support Provider Interface 131795770645385613 0x7ffacc620000 176128 C:\Windows\SYSTEM32\bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795770645385613 0x7ffacc6e0000 61440 C:\Windows\System32\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795770645385613 0x7ffacc6f0000 311296 C:\Windows\System32\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795770645385613 0x7ffacc740000 81920 C:\Windows\System32\profapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Profile Basic API 131795770645385613 0x7ffacc760000 65536 C:\Windows\System32\MSASN1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ASN.1 Runtime APIs 131795770645385613 0x7ffacc8f0000 1003520 C:\Windows\System32\ucrtbase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645385613 0x7ffacc9f0000 434176 C:\Windows\System32\bcryptPrimitives.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Cryptographic Primitives Library 131795770645385613 0x7ffacca60000 122880 C:\Windows\System32\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795770645385613 0x7ffaccae0000 692224 C:\Windows\System32\shcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795770645385613 0x7ffaccb90000 7180288 C:\Windows\System32\windows.storage.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API хранения Microsoft WinRT 131795770645385613 0x7ffacd270000 2215936 C:\Windows\System32\KERNELBASE.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645385613 0x7ffacd490000 1871872 C:\Windows\System32\CRYPT32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API32 криптографии 131795770645385613 0x7ffacd710000 638976 C:\Windows\System32\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645385613 0x7ffacd7b0000 270336 C:\Windows\System32\cfgmgr32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Configuration Manager DLL 131795770645385613 0x7ffacd810000 22056960 C:\Windows\System32\shell32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Общая библиотека оболочки Windows 131795770645385613 0x7ffaced20000 782336 C:\Windows\System32\OLEAUT32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795770645385613 0x7ffacee50000 1183744 C:\Windows\System32\RPCRT4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795770645385613 0x7ffacef80000 32768 C:\Windows\System32\NSI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation NSI User-mode interface DLL 131795770645385613 0x7ffacef90000 647168 C:\Windows\System32\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795770645385613 0x7ffacf0d0000 704512 C:\Windows\System32\KERNEL32.DLL 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645385613 0x7ffacf1e0000 1417216 C:\Windows\System32\msctf.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Серверная библиотека MSCTF 131795770645385613 0x7ffacf770000 212992 C:\Windows\System32\GDI32.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation GDI Client DLL 131795770645385613 0x7ffacf820000 434176 C:\Windows\System32\WS2_32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation 32-разрядная библиотека Windows Socket 2.0 131795770645385613 0x7ffacf890000 188416 C:\Windows\System32\IMM32.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Multi-User Windows IMM32 API Client DLL 131795770645385613 0x7ffacf8c0000 1462272 C:\Windows\System32\user32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795770645385613 0x7ffacfb30000 2916352 C:\Windows\System32\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795770645385613 0x7ffacfe20000 663552 C:\Windows\System32\advapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795770645385613 0x7ffad0070000 1277952 C:\Windows\System32\ole32.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft OLE для Windows 131795770645385613 0x7ffad01b0000 335872 C:\Windows\System32\shlwapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека небольших программ оболочки 131795770645385613 0x7ffad0210000 364544 C:\Windows\System32\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795770645385613 0x7ffad0270000 1908736 C:\Windows\SYSTEM32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 77 11408 8940 68 00000000:0031f1da 131794962679173110 0 0 1 Обязательная метка\Средний обязательный уровень WIN-0UOTFKKVN1S\User node.exe C:\Program Files\Adobe\Adobe Photoshop CC 2017\node.exe "C:\Program Files\Adobe\Adobe Photoshop CC 2017\node.exe" "C:\Program Files\Adobe\Adobe Photoshop CC 2017\Required\Generator-builtin" --launchreason menu --menu crema-dummy-menu --photoshopVersion 18.0.1 -i \\.\pipe\36b615a8-a6c5-11e8-b291-8ffa7e69373b_i -o \\.\pipe\36b615a8-a6c5-11e8-b291-8ffa7e69373b_o -f "C:\Program Files\Adobe\Adobe Photoshop CC 2017\Required\Plug-Ins\Generator" -f "C:\Program Files\Common Files\Adobe\Plug-Ins\CC\Generator" Node.js 4.3.1 Node.js: Server-side JavaScript 131795770645385734 0x7ff6cbb20000 14237696 C:\Program Files\Adobe\Adobe Photoshop CC 2017\node.exe 4.3.1 Node.js Node.js: Server-side JavaScript 131795770645385734 0x7ffabfd60000 90112 C:\Windows\system32\napinsp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик оболочки совместимости для имен электронной почты 131795770645385734 0x7ffabfef0000 106496 C:\Windows\system32\pnrpnsp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик пространства имен PNRP 131795770645385734 0x7ffac0ab0000 57344 C:\Windows\System32\winrnr.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation LDAP RnR Provider DLL 131795770645385734 0x7ffac83d0000 106496 C:\Windows\SYSTEM32\dhcpcsvc.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служба DHCP-клиента 131795770645385734 0x7ffac83f0000 90112 C:\Windows\SYSTEM32\dhcpcsvc6.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиент DHCPv6 131795770645385734 0x7ffac9790000 98304 C:\Windows\system32\NLAapi.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Network Location Awareness 2 131795770645385734 0x7ffacab40000 176128 C:\Windows\SYSTEM32\WINMMBASE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base Multimedia Extension API DLL 131795770645385734 0x7ffacaba0000 143360 C:\Windows\SYSTEM32\WINMM.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation MCI API DLL 131795770645385734 0x7ffacadf0000 499712 C:\Windows\system32\apphelp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиентская библиотека совместимости приложений 131795770645385734 0x7ffacbbb0000 208896 C:\Windows\system32\rsaenh.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Enhanced Cryptographic Provider 131795770645385734 0x7ffacbd30000 229376 C:\Windows\SYSTEM32\IPHLPAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API вспомогательного приложения IP 131795770645385734 0x7ffacbd70000 659456 C:\Windows\SYSTEM32\DNSAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Динамическая библиотека API DNS-клиента 131795770645385734 0x7ffacbe40000 126976 C:\Windows\SYSTEM32\USERENV.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Userenv 131795770645385734 0x7ffacbfb0000 376832 C:\Windows\system32\mswsock.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширение поставщика службы API Microsoft Windows Sockets 2.0 131795770645385734 0x7ffacc150000 94208 C:\Windows\SYSTEM32\CRYPTSP.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Cryptographic Service Provider API 131795770645385734 0x7ffacc170000 45056 C:\Windows\SYSTEM32\CRYPTBASE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base cryptographic API DLL 131795770645385734 0x7ffacc620000 176128 C:\Windows\SYSTEM32\bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795770645385734 0x7ffacc740000 81920 C:\Windows\System32\profapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Profile Basic API 131795770645385734 0x7ffacc8f0000 1003520 C:\Windows\System32\ucrtbase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645385734 0x7ffacc9f0000 434176 C:\Windows\System32\bcryptPrimitives.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Cryptographic Primitives Library 131795770645385734 0x7ffacca60000 122880 C:\Windows\System32\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795770645385734 0x7ffacd270000 2215936 C:\Windows\System32\KERNELBASE.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645385734 0x7ffacd7b0000 270336 C:\Windows\System32\cfgmgr32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Configuration Manager DLL 131795770645385734 0x7ffacd800000 32768 C:\Windows\System32\PSAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Process Status Helper 131795770645385734 0x7ffacee50000 1183744 C:\Windows\System32\RPCRT4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795770645385734 0x7ffacef80000 32768 C:\Windows\System32\NSI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation NSI User-mode interface DLL 131795770645385734 0x7ffacef90000 647168 C:\Windows\System32\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795770645385734 0x7ffacf0d0000 704512 C:\Windows\System32\KERNEL32.DLL 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645385734 0x7ffacf770000 212992 C:\Windows\System32\GDI32.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation GDI Client DLL 131795770645385734 0x7ffacf820000 434176 C:\Windows\System32\WS2_32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation 32-разрядная библиотека Windows Socket 2.0 131795770645385734 0x7ffacf890000 188416 C:\Windows\System32\IMM32.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Multi-User Windows IMM32 API Client DLL 131795770645385734 0x7ffacf8c0000 1462272 C:\Windows\System32\USER32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795770645385734 0x7ffacfe20000 663552 C:\Windows\System32\ADVAPI32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795770645385734 0x7ffad0210000 364544 C:\Windows\System32\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795770645385734 0x7ffad0270000 1908736 C:\Windows\SYSTEM32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 78 12164 11408 77 00000000:0031f1da 131794962697229215 0 0 1 Обязательная метка\Средний обязательный уровень WIN-0UOTFKKVN1S\User conhost.exe C:\Windows\system32\conhost.exe \??\C:\Windows\system32\conhost.exe 0x4 Microsoft Corporation 10.0.14393.0 (rs1_release.160715-1616) Console Window Host 131795770645385831 0x7ff768b40000 69632 C:\Windows\system32\conhost.exe 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Console Window Host 131795770645385831 0x7ffabe520000 368640 C:\Windows\SYSTEM32\ConhostV2.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Хост окна консоли 131795770645385831 0x7ffac6c40000 2596864 C:\Windows\WinSxS\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.14393.953_none_42151e83c686086b\comctl32.DLL 6.10 (rs1_release_inmarket.170303-1614) Microsoft Corporation Библиотека элементов управления взаимодействия с пользователем 131795770645385831 0x7ffaca340000 1593344 C:\Windows\SYSTEM32\PROPSYS.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Система страниц свойств (Майкрософт) 131795770645385831 0x7ffaca5e0000 155648 C:\Windows\system32\dwmapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Интерфейс API диспетчера окон рабочего стола (Майкрософт) 131795770645385831 0x7ffacaf00000 610304 C:\Windows\system32\uxtheme.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека тем UxTheme (Microsoft) 131795770645385831 0x7ffacc6e0000 61440 C:\Windows\System32\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795770645385831 0x7ffacc6f0000 311296 C:\Windows\System32\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795770645385831 0x7ffacc740000 81920 C:\Windows\System32\profapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Profile Basic API 131795770645385831 0x7ffacc8f0000 1003520 C:\Windows\System32\ucrtbase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645385831 0x7ffacc9f0000 434176 C:\Windows\System32\bcryptPrimitives.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Cryptographic Primitives Library 131795770645385831 0x7ffacca60000 122880 C:\Windows\System32\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795770645385831 0x7ffaccae0000 692224 C:\Windows\System32\shcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795770645385831 0x7ffaccb90000 7180288 C:\Windows\System32\windows.storage.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API хранения Microsoft WinRT 131795770645385831 0x7ffacd270000 2215936 C:\Windows\System32\KERNELBASE.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645385831 0x7ffacd710000 638976 C:\Windows\System32\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645385831 0x7ffacd7b0000 270336 C:\Windows\System32\cfgmgr32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Configuration Manager DLL 131795770645385831 0x7ffacd810000 22056960 C:\Windows\System32\SHELL32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Общая библиотека оболочки Windows 131795770645385831 0x7ffaced20000 782336 C:\Windows\System32\OLEAUT32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795770645385831 0x7ffacee50000 1183744 C:\Windows\System32\RPCRT4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795770645385831 0x7ffacef90000 647168 C:\Windows\System32\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795770645385831 0x7ffacf0d0000 704512 C:\Windows\System32\KERNEL32.DLL 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645385831 0x7ffacf1e0000 1417216 C:\Windows\System32\MSCTF.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Серверная библиотека MSCTF 131795770645385831 0x7ffacf770000 212992 C:\Windows\System32\GDI32.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation GDI Client DLL 131795770645385831 0x7ffacf890000 188416 C:\Windows\System32\IMM32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Multi-User Windows IMM32 API Client DLL 131795770645385831 0x7ffacf8c0000 1462272 C:\Windows\System32\USER32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795770645385831 0x7ffacfb30000 2916352 C:\Windows\System32\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795770645385831 0x7ffacfe20000 663552 C:\Windows\System32\advapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795770645385831 0x7ffad01b0000 335872 C:\Windows\System32\shlwapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека небольших программ оболочки 131795770645385831 0x7ffad0210000 364544 C:\Windows\System32\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795770645385831 0x7ffad0270000 1908736 C:\Windows\SYSTEM32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 79 5612 904 22 00000000:000003e5 131794965205293998 0 0 1 Обязательная метка\Обязательный уровень системы NT AUTHORITY\LOCAL SERVICE dashost.exe C:\Windows\system32\dashost.exe dashost.exe {609e1ffd-7b4d-4dbc-a36f725917d81f2d} Microsoft Corporation 10.0.14393.82 (rs1_release.160805-1735) Device Association Framework Provider Host 131795770645385987 0x7ff6559c0000 110592 C:\Windows\system32\dashost.exe 10.0.14393.82 (rs1_release.160805-1735) Microsoft Corporation Device Association Framework Provider Host 131795770645385987 0x7ffabb1a0000 274432 C:\Windows\system32\DAFWSD.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DAF WSD Provider 131795770645385987 0x7ffabc970000 188416 C:\Windows\system32\dafupnp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DAF UPnP Provider 131795770645385987 0x7ffac1d60000 589824 C:\Windows\system32\webio.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API протоколов передачи по Веб 131795770645385987 0x7ffac3f60000 225280 C:\Windows\system32\FWPolicyIOMgr.dll 10.0.14393.2189 (rs1_release.180329-1711) Microsoft Corporation FwPolicyIoMgr DLL 131795770645385987 0x7ffac60e0000 221184 C:\Windows\system32\XmlLite.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft XmlLite Library 131795770645385987 0x7ffac66c0000 32768 C:\Windows\system32\wship6.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL помощника Winsock2 (TL/IPv6) 131795770645385987 0x7ffac66d0000 32768 C:\Windows\system32\wshtcpip.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL помощника службы Winsock2 (TL/IPv4) 131795770645385987 0x7ffac6700000 40960 C:\Windows\system32\wshqos.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL помощника службы QoS Winsock2 131795770645385987 0x7ffac6750000 1380352 C:\Windows\system32\webservices.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Среда выполнения веб-служб Windows 131795770645385987 0x7ffac68b0000 696320 C:\Windows\system32\wsdapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Веб-службы для библиотек DLL API-интерфейсов устройств 131795770645385987 0x7ffac6990000 69632 C:\Windows\system32\deviceassociation.dll 10.0.14393.82 (rs1_release.160805-1735) Microsoft Corporation Device Association Client DLL 131795770645385987 0x7ffac69c0000 839680 C:\Windows\system32\WINHTTP.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Службы HTTP Windows 131795770645385987 0x7ffac79c0000 57344 C:\Windows\System32\npmproxy.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Network List Manager Proxy 131795770645385987 0x7ffac7e50000 86016 C:\Windows\system32\SSDPAPI.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation SSDP Client API DLL 131795770645385987 0x7ffac83d0000 106496 C:\Windows\SYSTEM32\dhcpcsvc.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служба DHCP-клиента 131795770645385987 0x7ffac83f0000 90112 C:\Windows\SYSTEM32\dhcpcsvc6.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиент DHCPv6 131795770645385987 0x7ffac8810000 45056 C:\Windows\SYSTEM32\WINNSI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Network Store Information RPC interface 131795770645385987 0x7ffac9f10000 221184 C:\Windows\System32\netprofm.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Network List Manager 131795770645385987 0x7ffacb360000 176128 C:\Windows\system32\fwbase.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Firewall Base DLL 131795770645385987 0x7ffacb460000 548864 C:\Windows\system32\FirewallAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API брандмауэра Windows 131795770645385987 0x7ffacbbb0000 208896 C:\Windows\system32\rsaenh.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Enhanced Cryptographic Provider 131795770645385987 0x7ffacbd30000 229376 C:\Windows\system32\IPHLPAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API вспомогательного приложения IP 131795770645385987 0x7ffacbd70000 659456 C:\Windows\system32\DNSAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Динамическая библиотека API DNS-клиента 131795770645385987 0x7ffacbfb0000 376832 C:\Windows\system32\mswsock.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширение поставщика службы API Microsoft Windows Sockets 2.0 131795770645385987 0x7ffacc150000 94208 C:\Windows\system32\CRYPTSP.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Cryptographic Service Provider API 131795770645385987 0x7ffacc170000 45056 C:\Windows\system32\CRYPTBASE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base cryptographic API DLL 131795770645385987 0x7ffacc350000 180224 C:\Windows\system32\SspiCli.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Security Support Provider Interface 131795770645385987 0x7ffacc620000 176128 C:\Windows\system32\bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795770645385987 0x7ffacc6e0000 61440 C:\Windows\System32\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795770645385987 0x7ffacc6f0000 311296 C:\Windows\System32\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795770645385987 0x7ffacc760000 65536 C:\Windows\System32\MSASN1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ASN.1 Runtime APIs 131795770645385987 0x7ffacc8f0000 1003520 C:\Windows\System32\ucrtbase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645385987 0x7ffacc9f0000 434176 C:\Windows\System32\bcryptPrimitives.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Cryptographic Primitives Library 131795770645385987 0x7ffacca60000 122880 C:\Windows\System32\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795770645385987 0x7ffacd270000 2215936 C:\Windows\System32\KERNELBASE.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645385987 0x7ffacd490000 1871872 C:\Windows\System32\CRYPT32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API32 криптографии 131795770645385987 0x7ffacd710000 638976 C:\Windows\System32\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645385987 0x7ffacd7b0000 270336 C:\Windows\System32\cfgmgr32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Configuration Manager DLL 131795770645385987 0x7ffaced20000 782336 C:\Windows\System32\OLEAUT32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795770645385987 0x7ffacee50000 1183744 C:\Windows\System32\RPCRT4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795770645385987 0x7ffacef80000 32768 C:\Windows\System32\NSI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation NSI User-mode interface DLL 131795770645385987 0x7ffacef90000 647168 C:\Windows\System32\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795770645385987 0x7ffacf030000 651264 C:\Windows\System32\clbcatq.dll 2001.12.10941.16384 (rs1_release.160715-1616) Microsoft Corporation COM+ Configuration Catalog 131795770645385987 0x7ffacf0d0000 704512 C:\Windows\System32\KERNEL32.DLL 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645385987 0x7ffacf770000 212992 C:\Windows\System32\GDI32.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation GDI Client DLL 131795770645385987 0x7ffacf820000 434176 C:\Windows\System32\WS2_32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation 32-разрядная библиотека Windows Socket 2.0 131795770645385987 0x7ffacf8c0000 1462272 C:\Windows\System32\user32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795770645385987 0x7ffacfb30000 2916352 C:\Windows\System32\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795770645385987 0x7ffad0210000 364544 C:\Windows\System32\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795770645385987 0x7ffad0270000 1908736 C:\Windows\SYSTEM32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 80 9720 9180 81 00000000:0031f1ab 131794969418818027 0 0 0 Обязательная метка\Высокий обязательный уровень WIN-0UOTFKKVN1S\User Windows10UpgraderApp.exe C:\Windows10Upgrade\Windows10UpgraderApp.exe "C:\Windows10Upgrade\Windows10UpgraderApp.exe" /Install /ClientID Win10Upgrade:VNL:NHV18:{} /SkipEULA /PostEosUi Microsoft Corporation 1.4.9200.22452 Помощник по обновлению Windows 10 131795770645386103 0xb30000 1875968 C:\Windows10Upgrade\Windows10UpgraderApp.exe 1.4.9200.22452 Microsoft Corporation Помощник по обновлению Windows 10 131795770645386103 0x5c020000 335872 C:\Windows\System32\wow64.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation Win32 Emulation on NT64 131795770645386103 0x5c080000 487424 C:\Windows\System32\wow64win.dll 10.0.14393.1884 (rs1_release.171101-1233) Microsoft Corporation Wow64 Console and Win32 API Logging 131795770645386103 0x5c100000 40960 C:\Windows\System32\wow64cpu.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation AMD64 Wow64 CPU 131795770645386103 0x5fec0000 794624 C:\Windows\SysWOW64\wbem\fastprox.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation WMI Custom Marshaller 131795770645386103 0x5ffa0000 421888 C:\Windows\SysWOW64\wbemcomn.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation WMI 131795770645386103 0x60010000 53248 C:\Windows\SysWOW64\wbem\wbemprox.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation WMI 131795770645386103 0x60750000 1556480 C:\Program Files (x86)\360\Total Security\safemon\safemon.dll 8, 4, 0, 1420 Qihu 360 Software Co., Ltd. 360 Internet Security Internet Protection 131795770645386103 0x627d0000 249856 C:\Windows\SysWOW64\edputil.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служебная программа EDP 131795770645386103 0x64d00000 5079040 C:\Windows\SysWOW64\d2d1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека Microsoft D2D 131795770645386103 0x651e0000 20537344 C:\Windows\SysWOW64\mshtml.dll 11.00.14393.447 (rs1_release_inmarket.161102-0100) Microsoft Corporation Средство просмотра HTML Microsoft® 131795770645386103 0x66580000 12247040 C:\Windows\SysWOW64\ieframe.dll 11.00.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Браузер 131795770645386103 0x67200000 1978368 C:\Windows\SysWOW64\msxml6.dll 6.30.14393.2156 Microsoft Corporation MSXML 6.0 131795770645386103 0x67500000 1597440 C:\Windows\SysWOW64\ActXPrxy.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation ActiveX Interface Marshaling Library 131795770645386103 0x6b670000 212992 C:\Windows\SysWOW64\mlang.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL многоязыковой поддержки 131795770645386103 0x6c290000 987136 C:\Windows\SysWOW64\twinapi.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation twinapi.appcore 131795770645386103 0x6c390000 1126400 C:\Windows\SysWOW64\dcomp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft DirectComposition Library 131795770645386103 0x6c4b0000 278528 C:\Windows\SysWOW64\dataexchange.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation Data exchange 131795770645386103 0x6c540000 483328 C:\Windows\SysWOW64\webio.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API протоколов передачи по Веб 131795770645386103 0x6c720000 2318336 C:\Windows\SysWOW64\d3d10warp.dll 10.0.14393.576 (rs1_release_inmarket.161208-2252) Microsoft Corporation Direct3D 10 Rasterizer 131795770645386103 0x6c960000 57344 C:\Windows\SysWOW64\msimtf.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Active IMM Server DLL 131795770645386103 0x6c970000 3698688 C:\Windows\SysWOW64\jscript9.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft ® JScript 131795770645386103 0x6cd00000 69632 C:\Windows\SysWOW64\WLDP.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Политика блокировки Windows 131795770645386103 0x6cd20000 135168 C:\Windows\SysWOW64\srpapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL программных интерфейсов (API) поставщика общих ресурсов 131795770645386103 0x6cda0000 528384 C:\Windows\SysWOW64\sxs.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Fusion 2.5 131795770645386103 0x6d080000 151552 C:\Windows\SysWOW64\cryptnet.dll 10.0.14393.2035 (rs1_release_inmarket.180110-1910) Microsoft Corporation Crypto Network Related API 131795770645386103 0x6d0b0000 847872 C:\Windows\SysWOW64\WinTypes.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL основных типов Windows 131795770645386103 0x6d6e0000 634880 C:\Windows\SysWOW64\Windows.UI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Runtime UI Foundation DLL 131795770645386103 0x6d780000 876544 C:\Windows\SysWOW64\mrmcorer.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Windows MRM 131795770645386103 0x6d860000 1245184 C:\Windows\SysWOW64\MFC42u.dll 6.06.8063.0 Microsoft Corporation Общая библиотека MFCDLL - розничная версия 131795770645386103 0x6dcd0000 606208 C:\Windows\WinSxS\x86_microsoft.windows.common-controls_6595b64144ccf1df_5.82.14393.447_none_5507ded2cb4f7f4c\COMCTL32.dll 6.10 (rs1_release_inmarket.170303-1614) Microsoft Corporation Библиотека элементов управления взаимодействия с пользователем 131795770645386103 0x6ded0000 630784 C:\Windows\SysWOW64\ODBC32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ODBC Driver Manager 131795770645386103 0x6dfc0000 53248 C:\Windows\SysWOW64\execmodelproxy.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ExecModelProxy 131795770645386103 0x6dfd0000 253952 C:\Windows\SysWOW64\UIAnimation.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Animation Manager 131795770645386103 0x6e010000 208896 C:\Windows10Upgrade\Downloader.dll 1.4.9200.22452 (win8_ldr.180426-0600) Microsoft Corporation Downloader 131795770645386103 0x6e050000 81920 C:\Windows\SysWOW64\Windows.Shell.ServiceHostBuilder.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows.Shell.ServiceHostBuilder 131795770645386103 0x6e710000 335872 C:\Windows\SysWOW64\Bcp47Langs.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation BCP47 Language Classes 131795770645386103 0x70340000 536576 C:\Windows\SysWOW64\dxgi.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation DirectX Graphics Infrastructure 131795770645386103 0x703d0000 2056192 C:\Windows\SysWOW64\DWrite.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Службы Microsoft DirectX Typography 131795770645386103 0x705e0000 344064 C:\Windows\SysWOW64\OLEACC.DLL 7.2.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Active Accessibility Core Component 131795770645386103 0x70640000 1499136 C:\Windows\SysWOW64\windowscodecs.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Microsoft Windows Codecs Library 131795770645386103 0x707b0000 110592 C:\Windows\SysWOW64\ncryptsslp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft SChannel Provider 131795770645386103 0x707d0000 86016 C:\Windows\SysWOW64\SAMCLI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Security Accounts Manager Client DLL 131795770645386103 0x707f0000 2293760 C:\Windows\SysWOW64\d3d11.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation Direct3D 11 Runtime 131795770645386103 0x70a80000 409600 C:\Windows\SysWOW64\schannel.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик безопасности TLS/SSL 131795770645386103 0x70b40000 69632 C:\Windows\SysWOW64\mskeyprotect.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик защиты ключей (Майкрософт) 131795770645386103 0x70b70000 163840 C:\Windows\SysWOW64\ntmarta.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик Windows NT MARTA 131795770645386103 0x70ca0000 45056 C:\Windows\SysWOW64\NETUTILS.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API Helpers DLL 131795770645386103 0x70cc0000 65536 C:\Windows\SysWOW64\ondemandconnroutehelper.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation On Demand Connctiond Route Helper 131795770645386103 0x70e60000 176128 C:\Windows\SysWOW64\NTASN1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft ASN.1 API 131795770645386103 0x71140000 77824 C:\Windows\SysWOW64\NETAPI32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API DLL 131795770645386103 0x71610000 77824 C:\Windows\SysWOW64\dhcpcsvc6.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиент DHCPv6 131795770645386103 0x725e0000 2273280 C:\Windows\SysWOW64\iertutil.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служебная программа времени выполнения для Internet Explorer 131795770645386103 0x728e0000 1372160 C:\Windows\SysWOW64\PROPSYS.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Система страниц свойств (Майкрософт) 131795770645386103 0x72b90000 126976 C:\Windows\SysWOW64\dwmapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Интерфейс API диспетчера окон рабочего стола (Майкрософт) 131795770645386103 0x72cc0000 1658880 C:\Windows\SysWOW64\urlmon.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширения OLE32 для Win32 131795770645386103 0x73a40000 32768 C:\Windows\SysWOW64\WINNSI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Network Store Information RPC interface 131795770645386103 0x73a50000 299008 C:\Windows\SysWOW64\fwpuclnt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API пользовательского режима FWP/IPsec 131795770645386103 0x73aa0000 32768 C:\Windows\SysWOW64\DPAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Data Protection API 131795770645386103 0x73ab0000 32768 C:\Windows\SysWOW64\rasadhlp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Remote Access AutoDial Helper 131795770645386103 0x73ac0000 81920 C:\Windows\SysWOW64\dhcpcsvc.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служба DHCP-клиента 131795770645386103 0x73ae0000 40960 C:\Windows\SysWOW64\Secur32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Security Support Provider Interface 131795770645386103 0x73f00000 192512 C:\Windows\SysWOW64\IPHLPAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API вспомогательного приложения IP 131795770645386103 0x73f30000 512000 C:\Windows\SysWOW64\DNSAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Динамическая библиотека API DNS-клиента 131795770645386103 0x73ff0000 319488 C:\Windows\SysWOW64\mswsock.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширение поставщика службы API Microsoft Windows Sockets 2.0 131795770645386103 0x74060000 192512 C:\Windows\SysWOW64\rsaenh.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Enhanced Cryptographic Provider 131795770645386103 0x74110000 479232 C:\Windows\SysWOW64\uxtheme.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека тем UxTheme (Microsoft) 131795770645386103 0x74190000 110592 C:\Windows\SysWOW64\bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795770645386103 0x741b0000 77824 C:\Windows\SysWOW64\CRYPTSP.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Cryptographic Service Provider API 131795770645386103 0x74260000 2514944 C:\Windows\SysWOW64\WININET.dll 11.00.14393.447 (rs1_release_inmarket.161102-0100) Microsoft Corporation Расширения Интернета для Win32 131795770645386103 0x744d0000 2138112 C:\Windows\WinSxS\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.14393.953_none_89c2555adb023171\comctl32.dll 6.10 (rs1_release_inmarket.170303-1614) Microsoft Corporation Библиотека элементов управления взаимодействия с пользователем 131795770645386103 0x746e0000 32768 C:\Windows\SysWOW64\VERSION.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Version Checking and File Installation Libraries 131795770645386103 0x746f0000 106496 C:\Windows\SysWOW64\USERENV.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Userenv 131795770645386103 0x74730000 598016 C:\Windows\SysWOW64\apphelp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиентская библиотека совместимости приложений 131795770645386103 0x747d0000 40960 C:\Windows\SysWOW64\CRYPTBASE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base cryptographic API DLL 131795770645386103 0x747e0000 126976 C:\Windows\SysWOW64\SspiCli.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Security Support Provider Interface 131795770645386103 0x74800000 151552 C:\Windows\SysWOW64\IMM32.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Multi-User Windows IMM32 API Client DLL 131795770645386103 0x74910000 2170880 C:\Windows\SysWOW64\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795770645386103 0x74b30000 53248 C:\Windows\SysWOW64\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795770645386103 0x74b60000 790528 C:\Windows\SysWOW64\RPCRT4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795770645386103 0x74c30000 1417216 C:\Windows\SysWOW64\gdi32full.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation GDI Client DLL 131795770645386103 0x74d90000 24576 C:\Windows\SysWOW64\PSAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Process Status Helper 131795770645386103 0x74da0000 778240 C:\Windows\SysWOW64\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795770645386103 0x74e60000 557056 C:\Windows\SysWOW64\shcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795770645386103 0x74ef0000 540672 C:\Windows\SysWOW64\clbcatq.dll 2001.12.10941.16384 (rs1_release.160715-1616) Microsoft Corporation COM+ Configuration Catalog 131795770645386103 0x74f80000 278528 C:\Windows\SysWOW64\WINTRUST.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation Microsoft Trust Verification APIs 131795770645386103 0x74fd0000 405504 C:\Windows\SysWOW64\WS2_32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation 32-разрядная библиотека Windows Socket 2.0 131795770645386103 0x75040000 282624 C:\Windows\SysWOW64\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795770645386103 0x75090000 1265664 C:\Windows\SysWOW64\MSCTF.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Серверная библиотека MSCTF 131795770645386103 0x751d0000 57344 C:\Windows\SysWOW64\MSASN1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ASN.1 Runtime APIs 131795770645386103 0x751e0000 1708032 C:\Windows\SysWOW64\KERNELBASE.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645386103 0x75390000 266240 C:\Windows\SysWOW64\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795770645386103 0x753e0000 1560576 C:\Windows\SysWOW64\CRYPT32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API32 криптографии 131795770645386103 0x75560000 487424 C:\Windows\SysWOW64\ADVAPI32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795770645386103 0x756c0000 5693440 C:\Windows\SysWOW64\windows.storage.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API хранения Microsoft WinRT 131795770645386103 0x75c90000 286720 C:\Windows\SysWOW64\shlwapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека небольших программ оболочки 131795770645386103 0x75ce0000 20811776 C:\Windows\SysWOW64\SHELL32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Общая библиотека оболочки Windows 131795770645386103 0x774d0000 86016 C:\Windows\SysWOW64\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795770645386103 0x774f0000 61440 C:\Windows\SysWOW64\profapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Profile Basic API 131795770645386103 0x77560000 1437696 C:\Windows\SysWOW64\USER32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795770645386103 0x776c0000 368640 C:\Windows\SysWOW64\bcryptPrimitives.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation Windows Cryptographic Primitives Library 131795770645386103 0x77780000 503808 C:\Windows\SysWOW64\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645386103 0x77800000 606208 C:\Windows\SysWOW64\OLEAUT32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795770645386103 0x77ac0000 966656 C:\Windows\SysWOW64\ole32.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft OLE для Windows 131795770645386103 0x77bb0000 176128 C:\Windows\SysWOW64\GDI32.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation GDI Client DLL 131795770645386103 0x77cd0000 221184 C:\Windows\SysWOW64\cfgmgr32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Configuration Manager DLL 131795770645386103 0x77d10000 28672 C:\Windows\SysWOW64\NSI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation NSI User-mode interface DLL 131795770645386103 0x77d20000 1585152 C:\Windows\SysWOW64\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 131795770645386103 0x7ffad0270000 1908736 C:\Windows\SYSTEM32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 82 8944 520 18 00000000:0031f1da 131795005508439638 0 0 1 Обязательная метка\Низкий обязательный уровень WIN-0UOTFKKVN1S\User fontdrvhost.exe C:\Windows\system32\fontdrvhost.exe "fontdrvhost.exe" Microsoft Corporation 10.0.14393.2189 (rs1_release.180329-1711) Usermode Font Driver Host 131795770645386388 0x7ff654db0000 638976 C:\Windows\system32\fontdrvhost.exe 10.0.14393.2189 (rs1_release.180329-1711) Microsoft Corporation Usermode Font Driver Host 131795770645386388 0x7ffacc770000 1572864 C:\Windows\System32\gdi32full.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation GDI Client DLL 131795770645386388 0x7ffacca60000 122880 C:\Windows\System32\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795770645386388 0x7ffacd270000 2215936 C:\Windows\System32\KERNELBASE.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645386388 0x7ffacef90000 647168 C:\Windows\System32\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795770645386388 0x7ffacf0d0000 704512 C:\Windows\System32\KERNEL32.DLL 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645386388 0x7ffacf770000 212992 C:\Windows\System32\gdi32.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation GDI Client DLL 131795770645386388 0x7ffacf890000 188416 C:\Windows\System32\IMM32.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Multi-User Windows IMM32 API Client DLL 131795770645386388 0x7ffacf8c0000 1462272 C:\Windows\System32\USER32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795770645386388 0x7ffad0270000 1908736 C:\Windows\SYSTEM32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 83 6684 664 6 00000000:0031f1da 131795006053748558 0 0 1 Обязательная метка\Низкий обязательный уровень WIN-0UOTFKKVN1S\User Microsoft.Photos.exe C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2017.35063.44410.0_x64__8wekyb3d8bbwe\Microsoft.Photos.exe "C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2017.35063.44410.0_x64__8wekyb3d8bbwe\Microsoft.Photos.exe" -ServerName:App.AppXzst44mncqdg84v7sv6p7yznqwssy6f7f.mca 131795770645660438 0x7ff705e40000 36864 C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2017.35063.44410.0_x64__8wekyb3d8bbwe\Microsoft.Photos.exe 131795770645660438 0x7ffa9bb10000 1380352 C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2017.35063.44410.0_x64__8wekyb3d8bbwe\Microsoft.RichMedia.Ink.Controls.dll 131795770645660438 0x7ffa9bc70000 3158016 C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2017.35063.44410.0_x64__8wekyb3d8bbwe\Microsoft.UI.Xaml.dll 131795770645660438 0x7ffa9bf80000 2994176 C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2017.35063.44410.0_x64__8wekyb3d8bbwe\AppCore.Windows.dll 131795770645660438 0x7ffa9c260000 20144128 C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2017.35063.44410.0_x64__8wekyb3d8bbwe\PhotosApp.Windows.dll 131795770645660438 0x7ffa9d5a0000 29011968 C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2017.35063.44410.0_x64__8wekyb3d8bbwe\Microsoft.Photos.dll 131795770645660438 0x7ffa9f150000 6311936 C:\Windows\System32\Windows.Media.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Media Runtime DLL 131795770645660438 0x7ffa9fb20000 7950336 C:\Program Files\WindowsApps\Microsoft.NET.Native.Framework.1.3_1.3.24201.0_x64__8wekyb3d8bbwe\SharedLibrary.dll Microsoft Corporation Microsoft .NET Native Shared Framework 131795770645660438 0x7ffaa03f0000 4546560 C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2017.35063.44410.0_x64__8wekyb3d8bbwe\FaceSdkStoreWrapper.dll 16.425.0.0 Microsoft Corporation FaceSdkStoreWrapper 131795770645660438 0x7ffaa0850000 2371584 C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2017.35063.44410.0_x64__8wekyb3d8bbwe\MediaEngine.dll 131795770645660438 0x7ffaab270000 917504 C:\Windows\System32\Windows.AccountsControl.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Accounts Control 131795770645660438 0x7ffaab750000 876544 C:\Windows\System32\Windows.Media.Import.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation Windows Photo Import API (WinRT/COM) 131795770645660438 0x7ffaac0c0000 1396736 C:\Windows\System32\Windows.UI.Xaml.Phone.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows UI XAML Phone API 131795770645660438 0x7ffab5b40000 2527232 C:\Windows\SYSTEM32\dwrite.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Службы Microsoft DirectX Typography 131795770645660438 0x7ffab6710000 17231872 C:\Windows\System32\Windows.UI.Xaml.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows.UI.Xaml dll 131795770645660438 0x7ffab8f40000 94208 C:\Windows\System32\Windows.System.Diagnostics.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows System Diagnostics DLL 131795770645660438 0x7ffab8f60000 397312 C:\Windows\System32\CryptoWinRT.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Crypto WinRT Library 131795770645660438 0x7ffab9270000 454656 C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2017.35063.44410.0_x64__8wekyb3d8bbwe\Microsoft.Photos.AGM.Native.Windows.dll 131795770645660438 0x7ffab9b40000 389120 C:\Program Files\WindowsApps\Microsoft.NET.Native.Runtime.1.4_1.4.24201.0_x64__8wekyb3d8bbwe\mrt100_app.dll 1.4.24201.0 built by: PROJECTNREL Microsoft Corporation Microsoft .NET Native Runtime 131795770645660438 0x7ffabb3c0000 450560 C:\Windows\SYSTEM32\TextInputFramework.dll 10.0.14393.2189 (rs1_release.180329-1711) Microsoft Corporation "TextInputFramework.DYNLINK" 131795770645660438 0x7ffabc510000 90112 C:\Windows\system32\execmodelproxy.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ExecModelProxy 131795770645660438 0x7ffabc5c0000 319488 C:\Windows\SYSTEM32\MFSENSORGROUP.dll 10.0.14393.447 (rs1_release_inmarket.161102-0100) Microsoft Corporation Media Foundation Sensor Group DLL 131795770645660438 0x7ffabc920000 270336 C:\Windows\System32\execmodelclient.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation ExecModelClient 131795770645660438 0x7ffabcef0000 102400 C:\Windows\System32\Windows.Shell.ServiceHostBuilder.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows.Shell.ServiceHostBuilder 131795770645660438 0x7ffabd4a0000 1613824 C:\Windows\System32\Windows.Globalization.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Globalization 131795770645660438 0x7ffabd8e0000 704512 C:\Windows\WinSxS\amd64_microsoft.windows.common-controls_6595b64144ccf1df_5.82.14393.447_none_0d5aa7fbb6d35646\comctl32.dll 6.10 (rs1_release_inmarket.170303-1614) Microsoft Corporation Библиотека элементов управления взаимодействия с пользователем 131795770645660438 0x7ffabe6e0000 561152 C:\Windows\system32\directmanipulation.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Direct Manipulation Component 131795770645660438 0x7ffabea30000 192512 C:\Windows\System32\Windows.Energy.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Energy Runtime DLL 131795770645660438 0x7ffabeac0000 335872 C:\Windows\System32\Windows.Storage.ApplicationData.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Application Data API Server 131795770645660438 0x7ffabeb20000 385024 C:\Windows\System32\Windows.ApplicationModel.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows ApplicationModel API Server 131795770645660438 0x7ffabf330000 2457600 C:\Windows\System32\msxml6.dll 6.30.14393.2156 Microsoft Corporation MSXML 6.0 131795770645660438 0x7ffabfce0000 90112 C:\Windows\System32\Windows.Globalization.Fontgroups.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Fonts Mapping API 131795770645660438 0x7ffabfd00000 356352 C:\Windows\System32\Windows.Graphics.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation WinRT Windows Graphics DLL 131795770645660438 0x7ffabfd80000 86016 C:\Windows\System32\threadpoolwinrt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows WinRT Threadpool 131795770645660438 0x7ffabfe10000 237568 C:\Windows\SYSTEM32\rometadata.dll 4.6.1586.0 built by: NETFXREL2 Microsoft Corporation Microsoft MetaData Library 131795770645660438 0x7ffac00c0000 282624 C:\Windows\SYSTEM32\windows.ui.core.textinput.dll 10.0.14393.2189 (rs1_release.180329-1711) Microsoft Corporation Windows.UI.Core.TextInput dll 131795770645660438 0x7ffac0470000 1478656 C:\Windows\SYSTEM32\MFPlat.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Media Foundation Platform DLL 131795770645660438 0x7ffac0910000 724992 C:\Windows\System32\Windows.Networking.Connectivity.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Networking Connectivity Runtime DLL 131795770645660438 0x7ffac0bf0000 3559424 C:\Windows\System32\ActXPrxy.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation ActiveX Interface Marshaling Library 131795770645660438 0x7ffac0fa0000 77824 C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2017.35063.44410.0_x64__8wekyb3d8bbwe\Microsoft.Photos.Edit.Services.dll 131795770645660438 0x7ffac1b90000 630784 C:\Program Files\WindowsApps\Microsoft.VCLibs.140.00_14.0.25426.0_x64__8wekyb3d8bbwe\MSVCP140_APP.dll 14.11.25426.0 built by: VCTOOLSREL Microsoft Corporation Microsoft® C Runtime Library 131795770645660438 0x7ffac1c70000 69632 C:\Program Files\WindowsApps\Microsoft.VCLibs.140.00_14.0.25426.0_x64__8wekyb3d8bbwe\VCOMP140_app.DLL 14.11.25426.0 built by: VCTOOLSREL Microsoft Corporation Microsoft® C/C++ OpenMP Runtime 131795770645660438 0x7ffac1e50000 188416 C:\Windows\SYSTEM32\RTWorkQ.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL для WorkQueue реального времени 131795770645660438 0x7ffac20d0000 110592 C:\Windows\System32\rmclient.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Resource Manager Client 131795770645660438 0x7ffac2c00000 69632 C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2017.35063.44410.0_x64__8wekyb3d8bbwe\clrcompression.dll 1.0.23123.00 built by: PROJECTKREL Microsoft Corporation ClrCompression 131795770645660438 0x7ffac2cb0000 778240 C:\Windows\SYSTEM32\winsqlite3.dll 3.12.2 SQLite Development Team SQLite is a software library that implements a self-contained, serverless, zero-configuration, transactional SQL database engine. 131795770645660438 0x7ffac3280000 36864 C:\Windows\SYSTEM32\mrt100.dll 1.0.24120.0 built by: PROJECTNREL Microsoft Corporation Microsoft .NET Native Runtime 131795770645660438 0x7ffac34e0000 1843200 C:\Windows\SYSTEM32\urlmon.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширения OLE32 для Win32 131795770645660438 0x7ffac3cb0000 2772992 C:\Windows\SYSTEM32\iertutil.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служебная программа времени выполнения для Internet Explorer 131795770645660438 0x7ffac4b10000 307200 C:\Program Files\WindowsApps\Microsoft.VCLibs.140.00_14.0.25426.0_x64__8wekyb3d8bbwe\CONCRT140_APP.dll 14.11.25426.0 built by: VCTOOLSREL Microsoft Corporation Microsoft® Concurrency Runtime Library 131795770645660438 0x7ffac4c60000 385024 C:\Program Files\WindowsApps\Microsoft.VCLibs.140.00_14.0.25426.0_x64__8wekyb3d8bbwe\vccorlib140_app.DLL 14.11.25426.0 built by: VCTOOLSREL Microsoft Corporation Microsoft ® VC WinRT core library 131795770645660438 0x7ffac5350000 1765376 C:\Windows\System32\Windows.UI.Immersive.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation WINDOWS.UI.IMMERSIVE 131795770645660438 0x7ffac60e0000 221184 C:\Windows\SYSTEM32\XmlLite.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft XmlLite Library 131795770645660438 0x7ffac6620000 192512 C:\Windows\System32\biwinrt.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation Windows Background Broker Infrastructure 131795770645660438 0x7ffac6ac0000 835584 C:\Windows\System32\Windows.UI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Runtime UI Foundation DLL 131795770645660438 0x7ffac6f50000 5632000 C:\Windows\SYSTEM32\d2d1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека Microsoft D2D 131795770645660438 0x7ffac7580000 1077248 C:\Windows\System32\MrmCoreR.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Windows MRM 131795770645660438 0x7ffac7720000 1601536 C:\Windows\System32\OneCoreUAPCommonProxyStub.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation OneCoreUAP Common Proxy Stub 131795770645660438 0x7ffac7e30000 40960 C:\Windows\SYSTEM32\fontgroupsoverride.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation fontgroupsoverride.dll 131795770645660438 0x7ffac7fc0000 2674688 C:\Windows\SYSTEM32\d3d10warp.dll 10.0.14393.576 (rs1_release_inmarket.161208-2252) Microsoft Corporation Direct3D 10 Rasterizer 131795770645660438 0x7ffac84f0000 299008 C:\Windows\system32\DataExchange.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation Data exchange 131795770645660438 0x7ffac8540000 286720 C:\Windows\System32\vaultcli.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиентская библиотека хранилища учетных данных 131795770645660438 0x7ffac88a0000 2842624 C:\Windows\SYSTEM32\d3d11.dll 10.0.14393.953 (rs1_release_inmarket.170303-1614) Microsoft Corporation Direct3D 11 Runtime 131795770645660438 0x7ffac8fa0000 253952 C:\Windows\SYSTEM32\logoncli.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Net Logon Client DLL 131795770645660438 0x7ffac92e0000 1269760 C:\Windows\SYSTEM32\wintypes.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL основных типов Windows 131795770645660438 0x7ffac9500000 2682880 C:\Windows\system32\CoreUIComponents.dll 131795770645660438 0x7ffac9f50000 1736704 C:\Windows\system32\windowscodecs.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Microsoft Windows Codecs Library 131795770645660438 0x7ffaca340000 1593344 C:\Windows\SYSTEM32\PROPSYS.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Система страниц свойств (Майкрософт) 131795770645660438 0x7ffaca570000 421888 C:\Windows\SYSTEM32\Bcp47Langs.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation BCP47 Language Classes 131795770645660438 0x7ffaca5e0000 155648 C:\Windows\SYSTEM32\dwmapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Интерфейс API диспетчера окон рабочего стола (Майкрософт) 131795770645660438 0x7ffaca640000 770048 C:\Windows\SYSTEM32\CoreMessaging.dll 10.0.14393.0 Microsoft Corporation Microsoft CoreMessaging Dll 131795770645660438 0x7ffaca770000 1380352 C:\Windows\SYSTEM32\dcomp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft DirectComposition Library 131795770645660438 0x7ffacab80000 90112 C:\Program Files\WindowsApps\Microsoft.VCLibs.140.00_14.0.25426.0_x64__8wekyb3d8bbwe\VCRUNTIME140_APP.dll 14.11.25426.0 built by: VCTOOLSREL Microsoft Corporation Microsoft® C Runtime Library 131795770645660438 0x7ffacadf0000 499712 C:\Windows\system32\apphelp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиентская библиотека совместимости приложений 131795770645660438 0x7ffacaf00000 610304 C:\Windows\system32\uxtheme.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека тем UxTheme (Microsoft) 131795770645660438 0x7ffacb1e0000 1163264 C:\Windows\SYSTEM32\twinapi.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation twinapi.appcore 131795770645660438 0x7ffacb780000 651264 C:\Windows\SYSTEM32\dxgi.dll 10.0.14393.953 (rs1_release_inmarket.170303-1614) Microsoft Corporation DirectX Graphics Infrastructure 131795770645660438 0x7ffacbe40000 126976 C:\Windows\SYSTEM32\USERENV.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Userenv 131795770645660438 0x7ffacc170000 45056 C:\Windows\SYSTEM32\CRYPTBASE.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base cryptographic API DLL 131795770645660438 0x7ffacc350000 180224 C:\Windows\SYSTEM32\SspiCli.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Security Support Provider Interface 131795770645660438 0x7ffacc620000 176128 C:\Windows\SYSTEM32\bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795770645660438 0x7ffacc6e0000 61440 C:\Windows\System32\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795770645660438 0x7ffacc6f0000 311296 C:\Windows\System32\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795770645660438 0x7ffacc740000 81920 C:\Windows\System32\profapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Profile Basic API 131795770645660438 0x7ffacc760000 65536 C:\Windows\System32\MSASN1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ASN.1 Runtime APIs 131795770645660438 0x7ffacc8f0000 1003520 C:\Windows\System32\ucrtbase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645660438 0x7ffacc9f0000 434176 C:\Windows\System32\bcryptPrimitives.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Cryptographic Primitives Library 131795770645660438 0x7ffacca60000 122880 C:\Windows\System32\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795770645660438 0x7ffaccae0000 692224 C:\Windows\System32\shcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795770645660438 0x7ffaccb90000 7180288 C:\Windows\System32\windows.storage.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API хранения Microsoft WinRT 131795770645660438 0x7ffacd270000 2215936 C:\Windows\System32\KERNELBASE.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645660438 0x7ffacd490000 1871872 C:\Windows\System32\CRYPT32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API32 криптографии 131795770645660438 0x7ffacd710000 638976 C:\Windows\System32\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645660438 0x7ffacd7b0000 270336 C:\Windows\System32\cfgmgr32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Configuration Manager DLL 131795770645660438 0x7ffaced20000 782336 C:\Windows\System32\OleAut32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795770645660438 0x7ffacee50000 1183744 C:\Windows\System32\RPCRT4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795770645660438 0x7ffacef90000 647168 C:\Windows\System32\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795770645660438 0x7ffacf0d0000 704512 C:\Windows\System32\KERNEL32.DLL 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645660438 0x7ffacf1e0000 1417216 C:\Windows\System32\msctf.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Серверная библиотека MSCTF 131795770645660438 0x7ffacf770000 212992 C:\Windows\System32\GDI32.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation GDI Client DLL 131795770645660438 0x7ffacf890000 188416 C:\Windows\System32\IMM32.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Multi-User Windows IMM32 API Client DLL 131795770645660438 0x7ffacf8c0000 1462272 C:\Windows\System32\USER32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795770645660438 0x7ffacfb30000 2916352 C:\Windows\System32\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795770645660438 0x7ffacfe20000 663552 C:\Windows\System32\advapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795770645660438 0x7ffad01b0000 335872 C:\Windows\System32\shlwapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека небольших программ оболочки 131795770645660438 0x7ffad0210000 364544 C:\Windows\System32\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795770645660438 0x7ffad0270000 1908736 C:\Windows\SYSTEM32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 84 6208 12140 85 00000000:0031f1da 131795181740423780 0 0 0 Обязательная метка\Средний обязательный уровень WIN-0UOTFKKVN1S\User OneDrive.exe C:\Users\User\AppData\Local\Microsoft\OneDrive\OneDrive.exe /updateInstalled /background Microsoft Corporation 18.131.0701.0007 Microsoft OneDrive 131795770645660654 0x11f0000 1646592 C:\Users\User\AppData\Local\Microsoft\OneDrive\OneDrive.exe 18.131.0701.0007 Microsoft Corporation Microsoft OneDrive 131795770645660654 0x55a0000 1003520 C:\Users\User\AppData\Local\Microsoft\OneDrive\18.131.0701.0007\FileSync.Resources.dll 18.131.0701.0007 Microsoft Corporation Microsoft OneDrive 131795770645660654 0x5c020000 335872 C:\Windows\System32\wow64.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation Win32 Emulation on NT64 131795770645660654 0x5c080000 487424 C:\Windows\System32\wow64win.dll 10.0.14393.1884 (rs1_release.171101-1233) Microsoft Corporation Wow64 Console and Win32 API Logging 131795770645660654 0x5c100000 40960 C:\Windows\System32\wow64cpu.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation AMD64 Wow64 CPU 131795770645660654 0x60750000 1556480 C:\Program Files (x86)\360\Total Security\safemon\safemon.dll 8, 4, 0, 1420 Qihu 360 Software Co., Ltd. 360 Internet Security Internet Protection 131795770645660654 0x64d00000 5079040 C:\Windows\SysWOW64\d2d1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека Microsoft D2D 131795770645660654 0x651e0000 20537344 C:\Windows\SysWOW64\MSHTML.dll 11.00.14393.447 (rs1_release_inmarket.161102-0100) Microsoft Corporation Средство просмотра HTML Microsoft® 131795770645660654 0x66580000 12247040 C:\Windows\SysWOW64\ieframe.dll 11.00.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Браузер 131795770645660654 0x67200000 1978368 C:\Windows\SysWOW64\msxml6.dll 6.30.14393.2156 Microsoft Corporation MSXML 6.0 131795770645660654 0x67500000 1597440 C:\Windows\SysWOW64\ActXPrxy.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation ActiveX Interface Marshaling Library 131795770645660654 0x6b670000 212992 C:\Windows\SysWOW64\mlang.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL многоязыковой поддержки 131795770645660654 0x6b6b0000 36864 C:\Windows\SysWOW64\atlthunk.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation atlthunk.dll 131795770645660654 0x6bab0000 4472832 C:\Users\User\AppData\Local\Microsoft\OneDrive\18.131.0701.0007\Qt5Widgets.dll 5.9.1.0 The Qt Company Ltd C++ application development framework. 131795770645660654 0x6c290000 987136 C:\Windows\SysWOW64\twinapi.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation twinapi.appcore 131795770645660654 0x6c390000 1126400 C:\Windows\SysWOW64\dcomp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft DirectComposition Library 131795770645660654 0x6c4b0000 278528 C:\Windows\SysWOW64\dataexchange.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation Data exchange 131795770645660654 0x6c540000 483328 C:\Windows\SysWOW64\webio.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API протоколов передачи по Веб 131795770645660654 0x6c5c0000 1384448 C:\Windows\SysWOW64\uiautomationcore.dll 7.2.14393.0 (rs1_release.160715-1616) Microsoft Corporation Основные автоматические компоненты Microsoft UI 131795770645660654 0x6c960000 57344 C:\Windows\SysWOW64\msimtf.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Active IMM Server DLL 131795770645660654 0x6c970000 3698688 C:\Windows\SysWOW64\jscript9.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft ® JScript 131795770645660654 0x6cd20000 135168 C:\Windows\SysWOW64\srpapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL программных интерфейсов (API) поставщика общих ресурсов 131795770645660654 0x6cd50000 106496 C:\Windows\SysWOW64\SAMLIB.dll 10.0.14393.82 (rs1_release.160805-1735) Microsoft Corporation SAM Library DLL 131795770645660654 0x6cda0000 528384 C:\Windows\SysWOW64\sxs.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Fusion 2.5 131795770645660654 0x6cf60000 569344 C:\Windows\SysWOW64\taskschd.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Task Scheduler COM API 131795770645660654 0x6d080000 151552 C:\Windows\SysWOW64\cryptnet.dll 10.0.14393.2035 (rs1_release_inmarket.180110-1910) Microsoft Corporation Crypto Network Related API 131795770645660654 0x6d0b0000 847872 C:\Windows\SysWOW64\WinTypes.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL основных типов Windows 131795770645660654 0x6d210000 4993024 C:\Users\User\AppData\Local\Microsoft\OneDrive\18.131.0701.0007\Qt5Gui.dll 5.9.1.0 The Qt Company Ltd C++ application development framework. 131795770645660654 0x6fcd0000 151552 C:\Windows\SysWOW64\dbgcore.DLL 10.0.14321.1024 (debuggers(dbg).160715-1616) Microsoft Windows Core Debugging Helpers 131795770645660654 0x70340000 536576 C:\Windows\SysWOW64\dxgi.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation DirectX Graphics Infrastructure 131795770645660654 0x703d0000 2056192 C:\Windows\SysWOW64\DWrite.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Службы Microsoft DirectX Typography 131795770645660654 0x707b0000 110592 C:\Windows\SysWOW64\ncryptsslp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft SChannel Provider 131795770645660654 0x707f0000 2293760 C:\Windows\SysWOW64\d3d11.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation Direct3D 11 Runtime 131795770645660654 0x70a80000 409600 C:\Windows\SysWOW64\schannel.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик безопасности TLS/SSL 131795770645660654 0x70b00000 176128 C:\Windows\SysWOW64\Wscapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API центра обеспечения безопасности Windows 131795770645660654 0x70b40000 69632 C:\Windows\SysWOW64\mskeyprotect.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик защиты ключей (Майкрософт) 131795770645660654 0x70ca0000 45056 C:\Windows\SysWOW64\NETUTILS.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API Helpers DLL 131795770645660654 0x70cc0000 65536 C:\Windows\SysWOW64\ondemandconnroutehelper.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation On Demand Connctiond Route Helper 131795770645660654 0x70ce0000 1519616 C:\Windows\SysWOW64\wpc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека параметров родительского контроля 131795770645660654 0x70e60000 176128 C:\Windows\SysWOW64\NTASN1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft ASN.1 API 131795770645660654 0x70f00000 815104 C:\Windows\SysWOW64\OneCoreUAPCommonProxyStub.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation OneCoreUAP Common Proxy Stub 131795770645660654 0x70fd0000 1331200 C:\Windows\SysWOW64\dbghelp.dll 10.0.14321.1024 (rs1_release.160715-1616) Microsoft Windows Image Helper 131795770645660654 0x71140000 77824 C:\Windows\SysWOW64\NETAPI32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API DLL 131795770645660654 0x71200000 708608 C:\Windows\SysWOW64\TokenBroker.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Token Broker 131795770645660654 0x712b0000 602112 C:\Windows\SysWOW64\Windows.Security.Authentication.Web.Core.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Token Broker WinRT API 131795770645660654 0x71350000 2867200 C:\Users\User\AppData\Local\Microsoft\OneDrive\18.131.0701.0007\Qt5Quick.dll 5.9.1.0 The Qt Company Ltd C++ application development framework. 131795770645660654 0x71610000 77824 C:\Windows\SysWOW64\dhcpcsvc6.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиент DHCPv6 131795770645660654 0x71630000 487424 C:\Windows\SysWOW64\wlidprov.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft® Account Provider 131795770645660654 0x716b0000 1294336 C:\Users\User\AppData\Local\Microsoft\OneDrive\18.131.0701.0007\LIBEAY32.dll 1.0.2k The OpenSSL Project, http://www.openssl.org/ OpenSSL Shared Library 131795770645660654 0x717f0000 2637824 C:\Users\User\AppData\Local\Microsoft\OneDrive\18.131.0701.0007\Qt5Qml.dll 5.9.1.0 The Qt Company Ltd C++ application development framework. 131795770645660654 0x71a80000 4796416 C:\Users\User\AppData\Local\Microsoft\OneDrive\18.131.0701.0007\Qt5Core.dll 5.9.1.0 The Qt Company Ltd C++ application development framework. 131795770645660654 0x71f20000 6033408 C:\Users\User\AppData\Local\Microsoft\OneDrive\18.131.0701.0007\SyncEngine.DLL 18.131.0701.0007 Microsoft Corporation Microsoft OneDrive Sync Engine 131795770645660654 0x724f0000 57344 C:\Windows\SysWOW64\credui.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Credential Manager User Interface 131795770645660654 0x72530000 126976 C:\Windows\SysWOW64\IDStore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Identity Store 131795770645660654 0x72550000 561152 C:\Windows\SysWOW64\Windows.Networking.Connectivity.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Networking Connectivity Runtime DLL 131795770645660654 0x725e0000 2273280 C:\Windows\SysWOW64\iertutil.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служебная программа времени выполнения для Internet Explorer 131795770645660654 0x72810000 28672 C:\Windows\SysWOW64\familysafetyext.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation FamilySafety ChildAccount Extensions 131795770645660654 0x72820000 167936 C:\Windows\SysWOW64\MicrosoftAccountTokenProvider.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft® Account Token Provider 131795770645660654 0x72850000 331776 C:\Windows\SysWOW64\AppXDeploymentClient.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL-библиотека клиента развертывания AppX 131795770645660654 0x728b0000 135168 C:\Users\User\AppData\Local\Microsoft\OneDrive\18.131.0701.0007\FileSyncFAL.dll 18.131.0701.0007 Microsoft Corporation Microsoft OneDriveFile Sync FAL 131795770645660654 0x728e0000 1372160 C:\Windows\SysWOW64\PROPSYS.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Система страниц свойств (Майкрософт) 131795770645660654 0x72a30000 188416 C:\Windows\SysWOW64\XmlLite.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft XmlLite Library 131795770645660654 0x72a60000 589824 C:\Windows\SysWOW64\wer.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека сообщений об ошибках Windows 131795770645660654 0x72b90000 126976 C:\Windows\SysWOW64\dwmapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Интерфейс API диспетчера окон рабочего стола (Майкрософт) 131795770645660654 0x72bb0000 1105920 C:\Users\User\AppData\Local\Microsoft\OneDrive\18.131.0701.0007\platforms\qwindows.dll 5.9.1.0 The Qt Company Ltd C++ application development framework. 131795770645660654 0x72cc0000 1658880 C:\Windows\SysWOW64\urlmon.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширения OLE32 для Win32 131795770645660654 0x72e60000 172032 C:\Windows\SysWOW64\rometadata.dll 4.6.1586.0 built by: NETFXREL2 Microsoft Corporation Microsoft MetaData Library 131795770645660654 0x72e90000 299008 C:\Users\User\AppData\Local\Microsoft\OneDrive\18.131.0701.0007\SSLEAY32.dll 1.0.2k The OpenSSL Project, http://www.openssl.org/ OpenSSL Shared Library 131795770645660654 0x72ee0000 950272 C:\Users\User\AppData\Local\Microsoft\OneDrive\18.131.0701.0007\Qt5Network.dll 5.9.1.0 The Qt Company Ltd C++ application development framework. 131795770645660654 0x72fd0000 126976 C:\Windows\SysWOW64\loadperf.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Загрузка и выгрузка счетчиков производительности 131795770645660654 0x72ff0000 278528 C:\Windows\SysWOW64\pdh.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Модуль поддержки данных производительности Windows 131795770645660654 0x73040000 253952 C:\Users\User\AppData\Local\Microsoft\OneDrive\18.131.0701.0007\Qt5WinExtras.dll 5.9.1.0 The Qt Company Ltd C++ application development framework. 131795770645660654 0x73080000 880640 C:\Users\User\AppData\Local\Microsoft\OneDrive\18.131.0701.0007\ADAL.dll 1.0.2110.0526 Microsoft ADAL.Native 131795770645660654 0x73160000 32768 C:\Windows\SysWOW64\WSOCK32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Socket 32-Bit DLL 131795770645660654 0x73170000 352256 C:\Windows\SysWOW64\faultrep.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека отчетов о сбоях в пользовательском режиме Windows 131795770645660654 0x731d0000 413696 C:\Users\User\AppData\Local\Microsoft\OneDrive\18.131.0701.0007\WnsClientApi.dll 18.131.0701.0007 Microsoft Corporation OneDrive WNS Client Library 131795770645660654 0x73240000 520192 C:\Users\User\AppData\Local\Microsoft\OneDrive\18.131.0701.0007\LogUploader.dll 18.131.0701.0007 Microsoft Corporation OneDrive Sync LogUploader Library 131795770645660654 0x732c0000 1269760 C:\Users\User\AppData\Local\Microsoft\OneDrive\18.131.0701.0007\FileSyncViews.dll 18.131.0701.0007 Microsoft Corporation Microsoft OneDrive Qt Components 131795770645660654 0x73400000 159744 C:\Users\User\AppData\Local\Microsoft\OneDrive\18.131.0701.0007\UpdateRingSettings.dll 18.131.0701.0007 Microsoft Corporation Update Ring Settings 131795770645660654 0x73430000 1748992 C:\Users\User\AppData\Local\Microsoft\OneDrive\18.131.0701.0007\FileSyncSessions.dll 18.131.0701.0007 Microsoft Corporation P2P Session Library 131795770645660654 0x735e0000 671744 C:\Users\User\AppData\Local\Microsoft\OneDrive\18.131.0701.0007\RemoteAccess.dll 18.131.0701.0007 Microsoft Corporation Remote Access 131795770645660654 0x73690000 188416 C:\Users\User\AppData\Local\Microsoft\OneDrive\18.131.0701.0007\Telemetry.dll 18.131.0701.0007 Microsoft Corporation Telemetry Library 131795770645660654 0x736c0000 32768 C:\Users\User\AppData\Local\Microsoft\OneDrive\18.131.0701.0007\ETWLog.dll 18.131.0701.0007 Microsoft Corporation ETW Session Library 131795770645660654 0x736d0000 3600384 C:\Users\User\AppData\Local\Microsoft\OneDrive\18.131.0701.0007\FileSyncClient.dll 18.131.0701.0007 Microsoft Corporation Microsoft OneDrive Client 131795770645660654 0x73a40000 32768 C:\Windows\SysWOW64\WINNSI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Network Store Information RPC interface 131795770645660654 0x73a50000 299008 C:\Windows\SysWOW64\fwpuclnt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API пользовательского режима FWP/IPsec 131795770645660654 0x73aa0000 32768 C:\Windows\SysWOW64\DPAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Data Protection API 131795770645660654 0x73ab0000 32768 C:\Windows\SysWOW64\rasadhlp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Remote Access AutoDial Helper 131795770645660654 0x73ac0000 81920 C:\Windows\SysWOW64\dhcpcsvc.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служба DHCP-клиента 131795770645660654 0x73ae0000 40960 C:\Windows\SysWOW64\Secur32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Security Support Provider Interface 131795770645660654 0x73af0000 1417216 C:\Users\User\AppData\Local\Microsoft\OneDrive\18.131.0701.0007\LoggingPlatform.dll 18.131.0701.0007 Microsoft Corporation Logging Platform 131795770645660654 0x73c50000 1478656 C:\Windows\WinSxS\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.14393.1715_none_f67438d2f2547a00\gdiplus.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Microsoft GDI+ 131795770645660654 0x73dc0000 1171456 C:\Users\User\AppData\Local\Microsoft\OneDrive\18.131.0701.0007\ucrtbase.dll 10.0.17134.12 (WinBuild.160101.0800) Microsoft Corporation Microsoft® C Runtime Library 131795770645660654 0x73ee0000 61440 C:\Windows\SysWOW64\wtsapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Remote Desktop Session Host Server SDK APIs 131795770645660654 0x73f00000 192512 C:\Windows\SysWOW64\IPHLPAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API вспомогательного приложения IP 131795770645660654 0x73f30000 512000 C:\Windows\SysWOW64\DNSAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Динамическая библиотека API DNS-клиента 131795770645660654 0x73fb0000 36864 C:\Windows\SysWOW64\ktmw32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows KTM Win32 Client DLL 131795770645660654 0x73ff0000 319488 C:\Windows\SysWOW64\MSWSOCK.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширение поставщика службы API Microsoft Windows Sockets 2.0 131795770645660654 0x74060000 192512 C:\Windows\SysWOW64\rsaenh.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Enhanced Cryptographic Provider 131795770645660654 0x74090000 462848 C:\Users\User\AppData\Local\Microsoft\OneDrive\18.131.0701.0007\MSVCP140.dll 14.13.26020.0 built by: VCTOOLSREL Microsoft Corporation Microsoft® C Runtime Library 131795770645660654 0x74110000 479232 C:\Windows\SysWOW64\UxTheme.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека тем UxTheme (Microsoft) 131795770645660654 0x74190000 110592 C:\Windows\SysWOW64\bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795770645660654 0x741b0000 77824 C:\Windows\SysWOW64\CRYPTSP.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Cryptographic Service Provider API 131795770645660654 0x741d0000 86016 C:\Users\User\AppData\Local\Microsoft\OneDrive\18.131.0701.0007\VCRUNTIME140.dll 14.13.26020.0 built by: VCTOOLSREL Microsoft Corporation Microsoft® C Runtime Library 131795770645660654 0x741f0000 143360 C:\Windows\SysWOW64\WINMMBASE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base Multimedia Extension API DLL 131795770645660654 0x74220000 53248 C:\Windows\SysWOW64\TOKENBINDING.dll 10.0.14393.1593 (rs1_release.170731-1934) Microsoft Corporation Token Binding Protocol 131795770645660654 0x74230000 147456 C:\Windows\SysWOW64\WINMM.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation MCI API DLL 131795770645660654 0x74260000 2514944 C:\Windows\SysWOW64\WININET.dll 11.00.14393.447 (rs1_release_inmarket.161102-0100) Microsoft Corporation Расширения Интернета для Win32 131795770645660654 0x744d0000 2138112 C:\Windows\WinSxS\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.14393.953_none_89c2555adb023171\COMCTL32.dll 6.10 (rs1_release_inmarket.170303-1614) Microsoft Corporation Библиотека элементов управления взаимодействия с пользователем 131795770645660654 0x746e0000 32768 C:\Windows\SysWOW64\VERSION.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Version Checking and File Installation Libraries 131795770645660654 0x746f0000 106496 C:\Windows\SysWOW64\USERENV.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Userenv 131795770645660654 0x74710000 90112 C:\Windows\SysWOW64\MPR.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека маршрутизации для нескольких служб доступа 131795770645660654 0x74730000 598016 C:\Windows\SysWOW64\apphelp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиентская библиотека совместимости приложений 131795770645660654 0x747d0000 40960 C:\Windows\SysWOW64\CRYPTBASE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base cryptographic API DLL 131795770645660654 0x747e0000 126976 C:\Windows\SysWOW64\SspiCli.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Security Support Provider Interface 131795770645660654 0x74800000 151552 C:\Windows\SysWOW64\IMM32.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Multi-User Windows IMM32 API Client DLL 131795770645660654 0x74910000 2170880 C:\Windows\SysWOW64\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795770645660654 0x74b30000 53248 C:\Windows\SysWOW64\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795770645660654 0x74b60000 790528 C:\Windows\SysWOW64\RPCRT4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795770645660654 0x74c30000 1417216 C:\Windows\SysWOW64\gdi32full.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation GDI Client DLL 131795770645660654 0x74d90000 24576 C:\Windows\SysWOW64\PSAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Process Status Helper 131795770645660654 0x74da0000 778240 C:\Windows\SysWOW64\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795770645660654 0x74e60000 557056 C:\Windows\SysWOW64\shcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795770645660654 0x74ef0000 540672 C:\Windows\SysWOW64\clbcatq.dll 2001.12.10941.16384 (rs1_release.160715-1616) Microsoft Corporation COM+ Configuration Catalog 131795770645660654 0x74f80000 278528 C:\Windows\SysWOW64\WINTRUST.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation Microsoft Trust Verification APIs 131795770645660654 0x74fd0000 405504 C:\Windows\SysWOW64\WS2_32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation 32-разрядная библиотека Windows Socket 2.0 131795770645660654 0x75040000 282624 C:\Windows\SysWOW64\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795770645660654 0x75090000 1265664 C:\Windows\SysWOW64\MSCTF.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Серверная библиотека MSCTF 131795770645660654 0x751d0000 57344 C:\Windows\SysWOW64\MSASN1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ASN.1 Runtime APIs 131795770645660654 0x751e0000 1708032 C:\Windows\SysWOW64\KERNELBASE.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645660654 0x75390000 266240 C:\Windows\SysWOW64\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795770645660654 0x753e0000 1560576 C:\Windows\SysWOW64\CRYPT32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API32 криптографии 131795770645660654 0x75560000 487424 C:\Windows\SysWOW64\ADVAPI32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795770645660654 0x756c0000 5693440 C:\Windows\SysWOW64\windows.storage.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API хранения Microsoft WinRT 131795770645660654 0x75c90000 286720 C:\Windows\SysWOW64\shlwapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека небольших программ оболочки 131795770645660654 0x75ce0000 20811776 C:\Windows\SysWOW64\SHELL32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Общая библиотека оболочки Windows 131795770645660654 0x774d0000 86016 C:\Windows\SysWOW64\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795770645660654 0x774f0000 61440 C:\Windows\SysWOW64\profapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Profile Basic API 131795770645660654 0x77560000 1437696 C:\Windows\SysWOW64\USER32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795770645660654 0x776c0000 368640 C:\Windows\SysWOW64\bcryptPrimitives.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation Windows Cryptographic Primitives Library 131795770645660654 0x77780000 503808 C:\Windows\SysWOW64\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645660654 0x77800000 606208 C:\Windows\SysWOW64\OLEAUT32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795770645660654 0x77ac0000 966656 C:\Windows\SysWOW64\ole32.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft OLE для Windows 131795770645660654 0x77bb0000 176128 C:\Windows\SysWOW64\GDI32.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation GDI Client DLL 131795770645660654 0x77cd0000 221184 C:\Windows\SysWOW64\cfgmgr32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Configuration Manager DLL 131795770645660654 0x77d10000 28672 C:\Windows\SysWOW64\NSI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation NSI User-mode interface DLL 131795770645660654 0x77d20000 1585152 C:\Windows\SysWOW64\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 131795770645660654 0x7ffad0270000 1908736 C:\Windows\SYSTEM32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 86 6140 7744 57 00000000:0031f1da 131795747339404666 0 0 0 Обязательная метка\Ненадежный обязательный уровень WIN-0UOTFKKVN1S\User browser.exe C:\Users\User\AppData\Local\Yandex\YandexBrowser\Application\browser.exe "C:\Users\User\AppData\Local\Yandex\YandexBrowser\Application\browser.exe" --type=renderer --enable-in-process-wmf-demuxer --field-trial-handle=1292,9555382311565764851,7120838982649204725,131072 --enable-ignition --disable-gpu-compositing --service-pipe-token=764E64A4EA650A23B18EB059FF0B4B51 --lang=ru --user-id=32B2E0A1-3039-4C67-86BE-75A88EF21B54 --brand-id=yandex --partner-id=7924 --help-url=https://api.browser.yandex.ru/redirect/help/ --user-agent-info --translate-security-origin=https://translate.yandex.net --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --enable-instaserp --device-scale-factor=1 --num-raster-threads=1 --enable-compositor-image-animations --service-request-channel-token=764E64A4EA650A23B18EB059FF0B4B51 --renderer-client-id=106 --mojo-platform-channel-handle=6612 /prefetch:1 YANDEX LLC 18.6.1.770 Yandex 131795770645660799 0x10e0000 2519040 C:\Users\User\AppData\Local\Yandex\YandexBrowser\Application\browser.exe 18.6.1.770 YANDEX LLC Yandex 131795770645660799 0x58720000 59748352 C:\Users\User\AppData\Local\Yandex\YandexBrowser\Application\18.6.1.770\browser_child.dll 18.6.1.770 YANDEX LLC Yandex 131795770645660799 0x5c020000 335872 C:\Windows\System32\wow64.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation Win32 Emulation on NT64 131795770645660799 0x5c080000 487424 C:\Windows\System32\wow64win.dll 10.0.14393.1884 (rs1_release.171101-1233) Microsoft Corporation Wow64 Console and Win32 API Logging 131795770645660799 0x5c100000 40960 C:\Windows\System32\wow64cpu.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation AMD64 Wow64 CPU 131795770645660799 0x6e8b0000 1859584 C:\Windows\SysWOW64\mfmp4srcsnk.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL источника и приемника MPEG4 Media Foundation 131795770645660799 0x6ef30000 647168 C:\Windows\SysWOW64\evr.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека DLL средства отображения видео 131795770645660799 0x6efd0000 458752 C:\Windows\SysWOW64\msauddecmft.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Media Foundation Audio Decoders 131795770645660799 0x6f790000 1085440 C:\Windows\SysWOW64\mfperfhelper.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation MFPerf DLL 131795770645660799 0x6f8a0000 2220032 C:\Windows\SysWOW64\msmpeg2vdec.dll 10.0.14393.953 (rs1_release_inmarket.170303-1614) Microsoft Corporation Microsoft DTV-DVD Video Decoder 131795770645660799 0x6fac0000 1130496 C:\Windows\SysWOW64\mfplat.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Media Foundation Platform DLL 131795770645660799 0x6ff60000 172032 C:\Windows\SysWOW64\RTWorkQ.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL для WorkQueue реального времени 131795770645660799 0x70030000 593920 C:\Users\User\AppData\Local\Yandex\YandexBrowser\Application\18.6.1.770\browser_elf.dll 18.6.1.770 YANDEX LLC Yandex 131795770645660799 0x700d0000 434176 C:\Windows\SysWOW64\WINSPOOL.DRV 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Драйвер диспетчера очереди Windows 131795770645660799 0x70340000 536576 C:\Windows\SysWOW64\dxgi.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation DirectX Graphics Infrastructure 131795770645660799 0x703d0000 2056192 C:\Windows\SysWOW64\DWrite.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Службы Microsoft DirectX Typography 131795770645660799 0x707d0000 86016 C:\Windows\SysWOW64\SAMCLI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Security Accounts Manager Client DLL 131795770645660799 0x70a20000 94208 C:\Windows\SysWOW64\USP10.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Uniscribe Unicode script processor 131795770645660799 0x70ca0000 45056 C:\Windows\SysWOW64\NETUTILS.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API Helpers DLL 131795770645660799 0x70fd0000 1331200 C:\Windows\SysWOW64\dbghelp.dll 10.0.14321.1024 (rs1_release.160715-1616) Microsoft Windows Image Helper 131795770645660799 0x71140000 77824 C:\Windows\SysWOW64\NETAPI32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API DLL 131795770645660799 0x725e0000 2273280 C:\Windows\SysWOW64\iertutil.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служебная программа времени выполнения для Internet Explorer 131795770645660799 0x728e0000 1372160 C:\Windows\SysWOW64\PROPSYS.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Система страниц свойств (Майкрософт) 131795770645660799 0x72af0000 655360 C:\Windows\SysWOW64\WINHTTP.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Службы HTTP Windows 131795770645660799 0x72cc0000 1658880 C:\Windows\SysWOW64\urlmon.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширения OLE32 для Win32 131795770645660799 0x73ac0000 81920 C:\Windows\SysWOW64\dhcpcsvc.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служба DHCP-клиента 131795770645660799 0x73ae0000 40960 C:\Windows\SysWOW64\Secur32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Security Support Provider Interface 131795770645660799 0x73f00000 192512 C:\Windows\SysWOW64\IPHLPAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API вспомогательного приложения IP 131795770645660799 0x74190000 110592 C:\Windows\SysWOW64\bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795770645660799 0x741b0000 77824 C:\Windows\SysWOW64\cryptsp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Cryptographic Service Provider API 131795770645660799 0x741f0000 143360 C:\Windows\SysWOW64\WINMMBASE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base Multimedia Extension API DLL 131795770645660799 0x74230000 147456 C:\Windows\SysWOW64\WINMM.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation MCI API DLL 131795770645660799 0x744d0000 2138112 C:\Windows\WinSxS\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.14393.953_none_89c2555adb023171\COMCTL32.dll 6.10 (rs1_release_inmarket.170303-1614) Microsoft Corporation Библиотека элементов управления взаимодействия с пользователем 131795770645660799 0x746e0000 32768 C:\Windows\SysWOW64\VERSION.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Version Checking and File Installation Libraries 131795770645660799 0x746f0000 106496 C:\Windows\SysWOW64\USERENV.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Userenv 131795770645660799 0x747d0000 40960 C:\Windows\SysWOW64\CRYPTBASE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base cryptographic API DLL 131795770645660799 0x747e0000 126976 C:\Windows\SysWOW64\SspiCli.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Security Support Provider Interface 131795770645660799 0x74800000 151552 C:\Windows\SysWOW64\IMM32.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Multi-User Windows IMM32 API Client DLL 131795770645660799 0x74910000 2170880 C:\Windows\SysWOW64\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795770645660799 0x74b30000 53248 C:\Windows\SysWOW64\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795770645660799 0x74b60000 790528 C:\Windows\SysWOW64\RPCRT4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795770645660799 0x74c30000 1417216 C:\Windows\SysWOW64\gdi32full.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation GDI Client DLL 131795770645660799 0x74d90000 24576 C:\Windows\SysWOW64\PSAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Process Status Helper 131795770645660799 0x74da0000 778240 C:\Windows\SysWOW64\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795770645660799 0x74e60000 557056 C:\Windows\SysWOW64\shcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795770645660799 0x74f80000 278528 C:\Windows\SysWOW64\WINTRUST.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation Microsoft Trust Verification APIs 131795770645660799 0x74fd0000 405504 C:\Windows\SysWOW64\WS2_32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation 32-разрядная библиотека Windows Socket 2.0 131795770645660799 0x75040000 282624 C:\Windows\SysWOW64\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795770645660799 0x751d0000 57344 C:\Windows\SysWOW64\MSASN1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ASN.1 Runtime APIs 131795770645660799 0x751e0000 1708032 C:\Windows\SysWOW64\KERNELBASE.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645660799 0x75390000 266240 C:\Windows\SysWOW64\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795770645660799 0x753e0000 1560576 C:\Windows\SysWOW64\CRYPT32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API32 криптографии 131795770645660799 0x75560000 487424 C:\Windows\SysWOW64\ADVAPI32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795770645660799 0x756c0000 5693440 C:\Windows\SysWOW64\windows.storage.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API хранения Microsoft WinRT 131795770645660799 0x75c90000 286720 C:\Windows\SysWOW64\shlwapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека небольших программ оболочки 131795770645660799 0x75ce0000 20811776 C:\Windows\SysWOW64\SHELL32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Общая библиотека оболочки Windows 131795770645660799 0x774d0000 86016 C:\Windows\SysWOW64\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795770645660799 0x774f0000 61440 C:\Windows\SysWOW64\profapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Profile Basic API 131795770645660799 0x77560000 1437696 C:\Windows\SysWOW64\USER32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795770645660799 0x776c0000 368640 C:\Windows\SysWOW64\bcryptPrimitives.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation Windows Cryptographic Primitives Library 131795770645660799 0x77780000 503808 C:\Windows\SysWOW64\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645660799 0x77800000 606208 C:\Windows\SysWOW64\OLEAUT32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795770645660799 0x77ac0000 966656 C:\Windows\SysWOW64\ole32.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft OLE для Windows 131795770645660799 0x77bb0000 176128 C:\Windows\SysWOW64\GDI32.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation GDI Client DLL 131795770645660799 0x77be0000 937984 C:\Windows\SysWOW64\COMDLG32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека общих диалоговых окон 131795770645660799 0x77cd0000 221184 C:\Windows\SysWOW64\cfgmgr32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Configuration Manager DLL 131795770645660799 0x77d10000 28672 C:\Windows\SysWOW64\NSI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation NSI User-mode interface DLL 131795770645660799 0x77d20000 1585152 C:\Windows\SysWOW64\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 131795770645660799 0x7ffad0270000 1908736 C:\Windows\SYSTEM32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 87 11432 7744 57 00000000:0031f1da 131795755605761168 0 0 0 Обязательная метка\Ненадежный обязательный уровень WIN-0UOTFKKVN1S\User browser.exe C:\Users\User\AppData\Local\Yandex\YandexBrowser\Application\browser.exe "C:\Users\User\AppData\Local\Yandex\YandexBrowser\Application\browser.exe" --type=renderer --enable-in-process-wmf-demuxer --field-trial-handle=1292,9555382311565764851,7120838982649204725,131072 --enable-ignition --disable-gpu-compositing --service-pipe-token=9DD318D38190D474A9A0F5AFD262A449 --lang=ru --user-id=32B2E0A1-3039-4C67-86BE-75A88EF21B54 --brand-id=yandex --partner-id=7924 --help-url=https://api.browser.yandex.ru/redirect/help/ --user-agent-info --translate-security-origin=https://translate.yandex.net --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --enable-instaserp --device-scale-factor=1 --num-raster-threads=1 --enable-compositor-image-animations --service-request-channel-token=9DD318D38190D474A9A0F5AFD262A449 --renderer-client-id=109 --mojo-platform-channel-handle=4152 /prefetch:1 YANDEX LLC 18.6.1.770 Yandex 131795770645660929 0x10e0000 2519040 C:\Users\User\AppData\Local\Yandex\YandexBrowser\Application\browser.exe 18.6.1.770 YANDEX LLC Yandex 131795770645660929 0x58720000 59748352 C:\Users\User\AppData\Local\Yandex\YandexBrowser\Application\18.6.1.770\browser_child.dll 18.6.1.770 YANDEX LLC Yandex 131795770645660929 0x5c020000 335872 C:\Windows\System32\wow64.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation Win32 Emulation on NT64 131795770645660929 0x5c080000 487424 C:\Windows\System32\wow64win.dll 10.0.14393.1884 (rs1_release.171101-1233) Microsoft Corporation Wow64 Console and Win32 API Logging 131795770645660929 0x5c100000 40960 C:\Windows\System32\wow64cpu.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation AMD64 Wow64 CPU 131795770645660929 0x6e8b0000 1859584 C:\Windows\SysWOW64\mfmp4srcsnk.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL источника и приемника MPEG4 Media Foundation 131795770645660929 0x6ef30000 647168 C:\Windows\SysWOW64\evr.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека DLL средства отображения видео 131795770645660929 0x6efd0000 458752 C:\Windows\SysWOW64\msauddecmft.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Media Foundation Audio Decoders 131795770645660929 0x6f790000 1085440 C:\Windows\SysWOW64\mfperfhelper.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation MFPerf DLL 131795770645660929 0x6f8a0000 2220032 C:\Windows\SysWOW64\msmpeg2vdec.dll 10.0.14393.953 (rs1_release_inmarket.170303-1614) Microsoft Corporation Microsoft DTV-DVD Video Decoder 131795770645660929 0x6fac0000 1130496 C:\Windows\SysWOW64\mfplat.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Media Foundation Platform DLL 131795770645660929 0x6ff60000 172032 C:\Windows\SysWOW64\RTWorkQ.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL для WorkQueue реального времени 131795770645660929 0x70030000 593920 C:\Users\User\AppData\Local\Yandex\YandexBrowser\Application\18.6.1.770\browser_elf.dll 18.6.1.770 YANDEX LLC Yandex 131795770645660929 0x700d0000 434176 C:\Windows\SysWOW64\WINSPOOL.DRV 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Драйвер диспетчера очереди Windows 131795770645660929 0x70340000 536576 C:\Windows\SysWOW64\dxgi.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation DirectX Graphics Infrastructure 131795770645660929 0x703d0000 2056192 C:\Windows\SysWOW64\DWrite.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Службы Microsoft DirectX Typography 131795770645660929 0x707d0000 86016 C:\Windows\SysWOW64\SAMCLI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Security Accounts Manager Client DLL 131795770645660929 0x70a20000 94208 C:\Windows\SysWOW64\USP10.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Uniscribe Unicode script processor 131795770645660929 0x70ca0000 45056 C:\Windows\SysWOW64\NETUTILS.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API Helpers DLL 131795770645660929 0x70fd0000 1331200 C:\Windows\SysWOW64\dbghelp.dll 10.0.14321.1024 (rs1_release.160715-1616) Microsoft Windows Image Helper 131795770645660929 0x71140000 77824 C:\Windows\SysWOW64\NETAPI32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API DLL 131795770645660929 0x725e0000 2273280 C:\Windows\SysWOW64\iertutil.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служебная программа времени выполнения для Internet Explorer 131795770645660929 0x728e0000 1372160 C:\Windows\SysWOW64\PROPSYS.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Система страниц свойств (Майкрософт) 131795770645660929 0x72af0000 655360 C:\Windows\SysWOW64\WINHTTP.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Службы HTTP Windows 131795770645660929 0x72cc0000 1658880 C:\Windows\SysWOW64\urlmon.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширения OLE32 для Win32 131795770645660929 0x73ac0000 81920 C:\Windows\SysWOW64\dhcpcsvc.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служба DHCP-клиента 131795770645660929 0x73ae0000 40960 C:\Windows\SysWOW64\Secur32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Security Support Provider Interface 131795770645660929 0x73f00000 192512 C:\Windows\SysWOW64\IPHLPAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API вспомогательного приложения IP 131795770645660929 0x74190000 110592 C:\Windows\SysWOW64\bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795770645660929 0x741b0000 77824 C:\Windows\SysWOW64\cryptsp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Cryptographic Service Provider API 131795770645660929 0x741f0000 143360 C:\Windows\SysWOW64\WINMMBASE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base Multimedia Extension API DLL 131795770645660929 0x74230000 147456 C:\Windows\SysWOW64\WINMM.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation MCI API DLL 131795770645660929 0x744d0000 2138112 C:\Windows\WinSxS\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.14393.953_none_89c2555adb023171\COMCTL32.dll 6.10 (rs1_release_inmarket.170303-1614) Microsoft Corporation Библиотека элементов управления взаимодействия с пользователем 131795770645660929 0x746e0000 32768 C:\Windows\SysWOW64\VERSION.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Version Checking and File Installation Libraries 131795770645660929 0x746f0000 106496 C:\Windows\SysWOW64\USERENV.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Userenv 131795770645660929 0x747d0000 40960 C:\Windows\SysWOW64\CRYPTBASE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base cryptographic API DLL 131795770645660929 0x747e0000 126976 C:\Windows\SysWOW64\SspiCli.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Security Support Provider Interface 131795770645660929 0x74800000 151552 C:\Windows\SysWOW64\IMM32.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Multi-User Windows IMM32 API Client DLL 131795770645660929 0x74910000 2170880 C:\Windows\SysWOW64\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795770645660929 0x74b30000 53248 C:\Windows\SysWOW64\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795770645660929 0x74b60000 790528 C:\Windows\SysWOW64\RPCRT4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795770645660929 0x74c30000 1417216 C:\Windows\SysWOW64\gdi32full.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation GDI Client DLL 131795770645660929 0x74d90000 24576 C:\Windows\SysWOW64\PSAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Process Status Helper 131795770645660929 0x74da0000 778240 C:\Windows\SysWOW64\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795770645660929 0x74e60000 557056 C:\Windows\SysWOW64\shcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795770645660929 0x74f80000 278528 C:\Windows\SysWOW64\WINTRUST.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation Microsoft Trust Verification APIs 131795770645660929 0x74fd0000 405504 C:\Windows\SysWOW64\WS2_32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation 32-разрядная библиотека Windows Socket 2.0 131795770645660929 0x75040000 282624 C:\Windows\SysWOW64\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795770645660929 0x751d0000 57344 C:\Windows\SysWOW64\MSASN1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ASN.1 Runtime APIs 131795770645660929 0x751e0000 1708032 C:\Windows\SysWOW64\KERNELBASE.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645660929 0x75390000 266240 C:\Windows\SysWOW64\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795770645660929 0x753e0000 1560576 C:\Windows\SysWOW64\CRYPT32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API32 криптографии 131795770645660929 0x75560000 487424 C:\Windows\SysWOW64\ADVAPI32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795770645660929 0x756c0000 5693440 C:\Windows\SysWOW64\windows.storage.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API хранения Microsoft WinRT 131795770645660929 0x75c90000 286720 C:\Windows\SysWOW64\shlwapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека небольших программ оболочки 131795770645660929 0x75ce0000 20811776 C:\Windows\SysWOW64\SHELL32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Общая библиотека оболочки Windows 131795770645660929 0x774d0000 86016 C:\Windows\SysWOW64\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795770645660929 0x774f0000 61440 C:\Windows\SysWOW64\profapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Profile Basic API 131795770645660929 0x77560000 1437696 C:\Windows\SysWOW64\USER32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795770645660929 0x776c0000 368640 C:\Windows\SysWOW64\bcryptPrimitives.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation Windows Cryptographic Primitives Library 131795770645660929 0x77780000 503808 C:\Windows\SysWOW64\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645660929 0x77800000 606208 C:\Windows\SysWOW64\OLEAUT32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795770645660929 0x77ac0000 966656 C:\Windows\SysWOW64\ole32.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft OLE для Windows 131795770645660929 0x77bb0000 176128 C:\Windows\SysWOW64\GDI32.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation GDI Client DLL 131795770645660929 0x77be0000 937984 C:\Windows\SysWOW64\COMDLG32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека общих диалоговых окон 131795770645660929 0x77cd0000 221184 C:\Windows\SysWOW64\cfgmgr32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Configuration Manager DLL 131795770645660929 0x77d10000 28672 C:\Windows\SysWOW64\NSI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation NSI User-mode interface DLL 131795770645660929 0x77d20000 1585152 C:\Windows\SysWOW64\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 131795770645660929 0x7ffad0270000 1908736 C:\Windows\SYSTEM32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 88 10384 7744 57 00000000:0031f1da 131795755746873891 0 0 0 Обязательная метка\Ненадежный обязательный уровень WIN-0UOTFKKVN1S\User browser.exe C:\Users\User\AppData\Local\Yandex\YandexBrowser\Application\browser.exe "C:\Users\User\AppData\Local\Yandex\YandexBrowser\Application\browser.exe" --type=renderer --enable-in-process-wmf-demuxer --field-trial-handle=1292,9555382311565764851,7120838982649204725,131072 --enable-ignition --disable-gpu-compositing --service-pipe-token=7E669976FFDCEE94D9B90B02CADE1179 --lang=ru --user-id=32B2E0A1-3039-4C67-86BE-75A88EF21B54 --brand-id=yandex --partner-id=7924 --help-url=https://api.browser.yandex.ru/redirect/help/ --user-agent-info --translate-security-origin=https://translate.yandex.net --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --enable-instaserp --device-scale-factor=1 --num-raster-threads=1 --enable-compositor-image-animations --service-request-channel-token=7E669976FFDCEE94D9B90B02CADE1179 --renderer-client-id=112 --mojo-platform-channel-handle=5412 /prefetch:1 YANDEX LLC 18.6.1.770 Yandex 131795770645661053 0x10e0000 2519040 C:\Users\User\AppData\Local\Yandex\YandexBrowser\Application\browser.exe 18.6.1.770 YANDEX LLC Yandex 131795770645661053 0x58720000 59748352 C:\Users\User\AppData\Local\Yandex\YandexBrowser\Application\18.6.1.770\browser_child.dll 18.6.1.770 YANDEX LLC Yandex 131795770645661053 0x5c020000 335872 C:\Windows\System32\wow64.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation Win32 Emulation on NT64 131795770645661053 0x5c080000 487424 C:\Windows\System32\wow64win.dll 10.0.14393.1884 (rs1_release.171101-1233) Microsoft Corporation Wow64 Console and Win32 API Logging 131795770645661053 0x5c100000 40960 C:\Windows\System32\wow64cpu.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation AMD64 Wow64 CPU 131795770645661053 0x6e8b0000 1859584 C:\Windows\SysWOW64\mfmp4srcsnk.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL источника и приемника MPEG4 Media Foundation 131795770645661053 0x6ef30000 647168 C:\Windows\SysWOW64\evr.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека DLL средства отображения видео 131795770645661053 0x6efd0000 458752 C:\Windows\SysWOW64\msauddecmft.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Media Foundation Audio Decoders 131795770645661053 0x6f790000 1085440 C:\Windows\SysWOW64\mfperfhelper.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation MFPerf DLL 131795770645661053 0x6f8a0000 2220032 C:\Windows\SysWOW64\msmpeg2vdec.dll 10.0.14393.953 (rs1_release_inmarket.170303-1614) Microsoft Corporation Microsoft DTV-DVD Video Decoder 131795770645661053 0x6fac0000 1130496 C:\Windows\SysWOW64\mfplat.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Media Foundation Platform DLL 131795770645661053 0x6ff60000 172032 C:\Windows\SysWOW64\RTWorkQ.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL для WorkQueue реального времени 131795770645661053 0x70030000 593920 C:\Users\User\AppData\Local\Yandex\YandexBrowser\Application\18.6.1.770\browser_elf.dll 18.6.1.770 YANDEX LLC Yandex 131795770645661053 0x700d0000 434176 C:\Windows\SysWOW64\WINSPOOL.DRV 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Драйвер диспетчера очереди Windows 131795770645661053 0x70340000 536576 C:\Windows\SysWOW64\dxgi.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation DirectX Graphics Infrastructure 131795770645661053 0x703d0000 2056192 C:\Windows\SysWOW64\DWrite.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Службы Microsoft DirectX Typography 131795770645661053 0x707d0000 86016 C:\Windows\SysWOW64\SAMCLI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Security Accounts Manager Client DLL 131795770645661053 0x70a20000 94208 C:\Windows\SysWOW64\USP10.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Uniscribe Unicode script processor 131795770645661053 0x70ca0000 45056 C:\Windows\SysWOW64\NETUTILS.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API Helpers DLL 131795770645661053 0x70fd0000 1331200 C:\Windows\SysWOW64\dbghelp.dll 10.0.14321.1024 (rs1_release.160715-1616) Microsoft Windows Image Helper 131795770645661053 0x71140000 77824 C:\Windows\SysWOW64\NETAPI32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API DLL 131795770645661053 0x725e0000 2273280 C:\Windows\SysWOW64\iertutil.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служебная программа времени выполнения для Internet Explorer 131795770645661053 0x728e0000 1372160 C:\Windows\SysWOW64\PROPSYS.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Система страниц свойств (Майкрософт) 131795770645661053 0x72af0000 655360 C:\Windows\SysWOW64\WINHTTP.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Службы HTTP Windows 131795770645661053 0x72cc0000 1658880 C:\Windows\SysWOW64\urlmon.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширения OLE32 для Win32 131795770645661053 0x73ac0000 81920 C:\Windows\SysWOW64\dhcpcsvc.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служба DHCP-клиента 131795770645661053 0x73ae0000 40960 C:\Windows\SysWOW64\Secur32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Security Support Provider Interface 131795770645661053 0x73f00000 192512 C:\Windows\SysWOW64\IPHLPAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API вспомогательного приложения IP 131795770645661053 0x74190000 110592 C:\Windows\SysWOW64\bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795770645661053 0x741b0000 77824 C:\Windows\SysWOW64\cryptsp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Cryptographic Service Provider API 131795770645661053 0x741f0000 143360 C:\Windows\SysWOW64\WINMMBASE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base Multimedia Extension API DLL 131795770645661053 0x74230000 147456 C:\Windows\SysWOW64\WINMM.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation MCI API DLL 131795770645661053 0x744d0000 2138112 C:\Windows\WinSxS\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.14393.953_none_89c2555adb023171\COMCTL32.dll 6.10 (rs1_release_inmarket.170303-1614) Microsoft Corporation Библиотека элементов управления взаимодействия с пользователем 131795770645661053 0x746e0000 32768 C:\Windows\SysWOW64\VERSION.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Version Checking and File Installation Libraries 131795770645661053 0x746f0000 106496 C:\Windows\SysWOW64\USERENV.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Userenv 131795770645661053 0x747d0000 40960 C:\Windows\SysWOW64\CRYPTBASE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base cryptographic API DLL 131795770645661053 0x747e0000 126976 C:\Windows\SysWOW64\SspiCli.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Security Support Provider Interface 131795770645661053 0x74800000 151552 C:\Windows\SysWOW64\IMM32.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Multi-User Windows IMM32 API Client DLL 131795770645661053 0x74910000 2170880 C:\Windows\SysWOW64\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795770645661053 0x74b30000 53248 C:\Windows\SysWOW64\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795770645661053 0x74b60000 790528 C:\Windows\SysWOW64\RPCRT4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795770645661053 0x74c30000 1417216 C:\Windows\SysWOW64\gdi32full.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation GDI Client DLL 131795770645661053 0x74d90000 24576 C:\Windows\SysWOW64\PSAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Process Status Helper 131795770645661053 0x74da0000 778240 C:\Windows\SysWOW64\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795770645661053 0x74e60000 557056 C:\Windows\SysWOW64\shcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795770645661053 0x74f80000 278528 C:\Windows\SysWOW64\WINTRUST.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation Microsoft Trust Verification APIs 131795770645661053 0x74fd0000 405504 C:\Windows\SysWOW64\WS2_32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation 32-разрядная библиотека Windows Socket 2.0 131795770645661053 0x75040000 282624 C:\Windows\SysWOW64\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795770645661053 0x751d0000 57344 C:\Windows\SysWOW64\MSASN1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ASN.1 Runtime APIs 131795770645661053 0x751e0000 1708032 C:\Windows\SysWOW64\KERNELBASE.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645661053 0x75390000 266240 C:\Windows\SysWOW64\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795770645661053 0x753e0000 1560576 C:\Windows\SysWOW64\CRYPT32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API32 криптографии 131795770645661053 0x75560000 487424 C:\Windows\SysWOW64\ADVAPI32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795770645661053 0x756c0000 5693440 C:\Windows\SysWOW64\windows.storage.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API хранения Microsoft WinRT 131795770645661053 0x75c90000 286720 C:\Windows\SysWOW64\shlwapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека небольших программ оболочки 131795770645661053 0x75ce0000 20811776 C:\Windows\SysWOW64\SHELL32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Общая библиотека оболочки Windows 131795770645661053 0x774d0000 86016 C:\Windows\SysWOW64\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795770645661053 0x774f0000 61440 C:\Windows\SysWOW64\profapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Profile Basic API 131795770645661053 0x77560000 1437696 C:\Windows\SysWOW64\USER32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795770645661053 0x776c0000 368640 C:\Windows\SysWOW64\bcryptPrimitives.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation Windows Cryptographic Primitives Library 131795770645661053 0x77780000 503808 C:\Windows\SysWOW64\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645661053 0x77800000 606208 C:\Windows\SysWOW64\OLEAUT32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795770645661053 0x77ac0000 966656 C:\Windows\SysWOW64\ole32.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft OLE для Windows 131795770645661053 0x77bb0000 176128 C:\Windows\SysWOW64\GDI32.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation GDI Client DLL 131795770645661053 0x77be0000 937984 C:\Windows\SysWOW64\COMDLG32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека общих диалоговых окон 131795770645661053 0x77cd0000 221184 C:\Windows\SysWOW64\cfgmgr32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Configuration Manager DLL 131795770645661053 0x77d10000 28672 C:\Windows\SysWOW64\NSI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation NSI User-mode interface DLL 131795770645661053 0x77d20000 1585152 C:\Windows\SysWOW64\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 131795770645661053 0x7ffad0270000 1908736 C:\Windows\SYSTEM32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 89 10568 664 6 00000000:0031f1da 131795755818164194 131795770840820338 0 1 Обязательная метка\Средний обязательный уровень WIN-0UOTFKKVN1S\User explorer.exe C:\Windows\explorer.exe C:\Windows\explorer.exe /factory,{75dff2b7-6936-4c06-a8bb-676a7b00b24b} -Embedding Microsoft Corporation 10.0.14393.0 (rs1_release.160715-1616) Проводник 90 6936 7744 57 00000000:0031f1da 131795756360200321 0 0 0 Обязательная метка\Ненадежный обязательный уровень WIN-0UOTFKKVN1S\User browser.exe C:\Users\User\AppData\Local\Yandex\YandexBrowser\Application\browser.exe "C:\Users\User\AppData\Local\Yandex\YandexBrowser\Application\browser.exe" --type=renderer --enable-in-process-wmf-demuxer --field-trial-handle=1292,9555382311565764851,7120838982649204725,131072 --enable-ignition --disable-gpu-compositing --service-pipe-token=73B8CB09F7D184AD1D3DDBFE4AFC07BA --lang=ru --user-id=32B2E0A1-3039-4C67-86BE-75A88EF21B54 --brand-id=yandex --partner-id=7924 --help-url=https://api.browser.yandex.ru/redirect/help/ --user-agent-info --translate-security-origin=https://translate.yandex.net --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --enable-instaserp --device-scale-factor=1 --num-raster-threads=1 --enable-compositor-image-animations --service-request-channel-token=73B8CB09F7D184AD1D3DDBFE4AFC07BA --renderer-client-id=116 --mojo-platform-channel-handle=4024 /prefetch:1 YANDEX LLC 18.6.1.770 Yandex 131795770645661289 0x10e0000 2519040 C:\Users\User\AppData\Local\Yandex\YandexBrowser\Application\browser.exe 18.6.1.770 YANDEX LLC Yandex 131795770645661289 0x58720000 59748352 C:\Users\User\AppData\Local\Yandex\YandexBrowser\Application\18.6.1.770\browser_child.dll 18.6.1.770 YANDEX LLC Yandex 131795770645661289 0x5c020000 335872 C:\Windows\System32\wow64.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation Win32 Emulation on NT64 131795770645661289 0x5c080000 487424 C:\Windows\System32\wow64win.dll 10.0.14393.1884 (rs1_release.171101-1233) Microsoft Corporation Wow64 Console and Win32 API Logging 131795770645661289 0x5c100000 40960 C:\Windows\System32\wow64cpu.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation AMD64 Wow64 CPU 131795770645661289 0x6e8b0000 1859584 C:\Windows\SysWOW64\mfmp4srcsnk.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL источника и приемника MPEG4 Media Foundation 131795770645661289 0x6ef30000 647168 C:\Windows\SysWOW64\evr.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека DLL средства отображения видео 131795770645661289 0x6efd0000 458752 C:\Windows\SysWOW64\msauddecmft.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Media Foundation Audio Decoders 131795770645661289 0x6f790000 1085440 C:\Windows\SysWOW64\mfperfhelper.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation MFPerf DLL 131795770645661289 0x6f8a0000 2220032 C:\Windows\SysWOW64\msmpeg2vdec.dll 10.0.14393.953 (rs1_release_inmarket.170303-1614) Microsoft Corporation Microsoft DTV-DVD Video Decoder 131795770645661289 0x6fac0000 1130496 C:\Windows\SysWOW64\mfplat.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Media Foundation Platform DLL 131795770645661289 0x6ff60000 172032 C:\Windows\SysWOW64\RTWorkQ.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL для WorkQueue реального времени 131795770645661289 0x70030000 593920 C:\Users\User\AppData\Local\Yandex\YandexBrowser\Application\18.6.1.770\browser_elf.dll 18.6.1.770 YANDEX LLC Yandex 131795770645661289 0x700d0000 434176 C:\Windows\SysWOW64\WINSPOOL.DRV 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Драйвер диспетчера очереди Windows 131795770645661289 0x70340000 536576 C:\Windows\SysWOW64\dxgi.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation DirectX Graphics Infrastructure 131795770645661289 0x703d0000 2056192 C:\Windows\SysWOW64\DWrite.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Службы Microsoft DirectX Typography 131795770645661289 0x707d0000 86016 C:\Windows\SysWOW64\SAMCLI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Security Accounts Manager Client DLL 131795770645661289 0x70a20000 94208 C:\Windows\SysWOW64\USP10.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Uniscribe Unicode script processor 131795770645661289 0x70ca0000 45056 C:\Windows\SysWOW64\NETUTILS.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API Helpers DLL 131795770645661289 0x70fd0000 1331200 C:\Windows\SysWOW64\dbghelp.dll 10.0.14321.1024 (rs1_release.160715-1616) Microsoft Windows Image Helper 131795770645661289 0x71140000 77824 C:\Windows\SysWOW64\NETAPI32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API DLL 131795770645661289 0x725e0000 2273280 C:\Windows\SysWOW64\iertutil.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служебная программа времени выполнения для Internet Explorer 131795770645661289 0x728e0000 1372160 C:\Windows\SysWOW64\PROPSYS.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Система страниц свойств (Майкрософт) 131795770645661289 0x72af0000 655360 C:\Windows\SysWOW64\WINHTTP.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Службы HTTP Windows 131795770645661289 0x72cc0000 1658880 C:\Windows\SysWOW64\urlmon.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширения OLE32 для Win32 131795770645661289 0x73ac0000 81920 C:\Windows\SysWOW64\dhcpcsvc.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служба DHCP-клиента 131795770645661289 0x73ae0000 40960 C:\Windows\SysWOW64\Secur32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Security Support Provider Interface 131795770645661289 0x73f00000 192512 C:\Windows\SysWOW64\IPHLPAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API вспомогательного приложения IP 131795770645661289 0x74190000 110592 C:\Windows\SysWOW64\bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795770645661289 0x741b0000 77824 C:\Windows\SysWOW64\cryptsp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Cryptographic Service Provider API 131795770645661289 0x741f0000 143360 C:\Windows\SysWOW64\WINMMBASE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base Multimedia Extension API DLL 131795770645661289 0x74230000 147456 C:\Windows\SysWOW64\WINMM.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation MCI API DLL 131795770645661289 0x744d0000 2138112 C:\Windows\WinSxS\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.14393.953_none_89c2555adb023171\COMCTL32.dll 6.10 (rs1_release_inmarket.170303-1614) Microsoft Corporation Библиотека элементов управления взаимодействия с пользователем 131795770645661289 0x746e0000 32768 C:\Windows\SysWOW64\VERSION.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Version Checking and File Installation Libraries 131795770645661289 0x746f0000 106496 C:\Windows\SysWOW64\USERENV.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Userenv 131795770645661289 0x747d0000 40960 C:\Windows\SysWOW64\CRYPTBASE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base cryptographic API DLL 131795770645661289 0x747e0000 126976 C:\Windows\SysWOW64\SspiCli.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Security Support Provider Interface 131795770645661289 0x74800000 151552 C:\Windows\SysWOW64\IMM32.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Multi-User Windows IMM32 API Client DLL 131795770645661289 0x74910000 2170880 C:\Windows\SysWOW64\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795770645661289 0x74b30000 53248 C:\Windows\SysWOW64\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795770645661289 0x74b60000 790528 C:\Windows\SysWOW64\RPCRT4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795770645661289 0x74c30000 1417216 C:\Windows\SysWOW64\gdi32full.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation GDI Client DLL 131795770645661289 0x74d90000 24576 C:\Windows\SysWOW64\PSAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Process Status Helper 131795770645661289 0x74da0000 778240 C:\Windows\SysWOW64\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795770645661289 0x74e60000 557056 C:\Windows\SysWOW64\shcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795770645661289 0x74f80000 278528 C:\Windows\SysWOW64\WINTRUST.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation Microsoft Trust Verification APIs 131795770645661289 0x74fd0000 405504 C:\Windows\SysWOW64\WS2_32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation 32-разрядная библиотека Windows Socket 2.0 131795770645661289 0x75040000 282624 C:\Windows\SysWOW64\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795770645661289 0x751d0000 57344 C:\Windows\SysWOW64\MSASN1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ASN.1 Runtime APIs 131795770645661289 0x751e0000 1708032 C:\Windows\SysWOW64\KERNELBASE.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645661289 0x75390000 266240 C:\Windows\SysWOW64\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795770645661289 0x753e0000 1560576 C:\Windows\SysWOW64\CRYPT32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API32 криптографии 131795770645661289 0x75560000 487424 C:\Windows\SysWOW64\ADVAPI32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795770645661289 0x756c0000 5693440 C:\Windows\SysWOW64\windows.storage.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API хранения Microsoft WinRT 131795770645661289 0x75c90000 286720 C:\Windows\SysWOW64\shlwapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека небольших программ оболочки 131795770645661289 0x75ce0000 20811776 C:\Windows\SysWOW64\SHELL32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Общая библиотека оболочки Windows 131795770645661289 0x774d0000 86016 C:\Windows\SysWOW64\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795770645661289 0x774f0000 61440 C:\Windows\SysWOW64\profapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Profile Basic API 131795770645661289 0x77560000 1437696 C:\Windows\SysWOW64\USER32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795770645661289 0x776c0000 368640 C:\Windows\SysWOW64\bcryptPrimitives.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation Windows Cryptographic Primitives Library 131795770645661289 0x77780000 503808 C:\Windows\SysWOW64\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645661289 0x77800000 606208 C:\Windows\SysWOW64\OLEAUT32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795770645661289 0x77ac0000 966656 C:\Windows\SysWOW64\ole32.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft OLE для Windows 131795770645661289 0x77bb0000 176128 C:\Windows\SysWOW64\GDI32.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation GDI Client DLL 131795770645661289 0x77be0000 937984 C:\Windows\SysWOW64\COMDLG32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека общих диалоговых окон 131795770645661289 0x77cd0000 221184 C:\Windows\SysWOW64\cfgmgr32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Configuration Manager DLL 131795770645661289 0x77d10000 28672 C:\Windows\SysWOW64\NSI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation NSI User-mode interface DLL 131795770645661289 0x77d20000 1585152 C:\Windows\SysWOW64\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 131795770645661289 0x7ffad0270000 1908736 C:\Windows\SYSTEM32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 91 11356 664 6 00000000:0031f1da 131795756462509250 131795770879304196 0 1 Обязательная метка\Средний обязательный уровень WIN-0UOTFKKVN1S\User explorer.exe C:\Windows\explorer.exe C:\Windows\explorer.exe /factory,{75dff2b7-6936-4c06-a8bb-676a7b00b24b} -Embedding Microsoft Corporation 10.0.14393.0 (rs1_release.160715-1616) Проводник 92 9252 664 6 00000000:000003e7 131795764376794664 0 0 1 Обязательная метка\Обязательный уровень системы NT AUTHORITY\СИСТЕМА wmiprvse.exe C:\Windows\system32\wbem\wmiprvse.exe C:\Windows\system32\wbem\wmiprvse.exe Microsoft Corporation 10.0.14393.2155 (rs1_release_1.180305-1842) WMI Provider Host 131795770645661522 0x7ff7fdea0000 516096 C:\Windows\system32\wbem\wmiprvse.exe 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation WMI Provider Host 131795770645661522 0x7ffabee10000 90112 C:\Windows\SYSTEM32\NCObjAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation 131795770662992743 0x7ffac1e20000 147456 C:\Windows\System32\wbem\wmiutils.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation WMI 131795770663908408 0x7ffac1f50000 471040 C:\Windows\System32\wbem\esscli.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation WMI 131795770645661522 0x7ffac1fd0000 999424 C:\Windows\system32\wbem\FastProx.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation WMI Custom Marshaller 131795770645661522 0x7ffac21d0000 81920 C:\Windows\system32\wbem\wbemsvc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation WMI 131795770645661522 0x7ffac4220000 520192 C:\Windows\SYSTEM32\wbemcomn.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation WMI 131795770664479193 0x7ffac4470000 65536 C:\Windows\System32\wbem\wbemprox.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation WMI 131795770663594346 0x7ffac7cc0000 229376 C:\Windows\System32\wbem\wmiprov.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation WMI 131795770664758405 0x7ffac8880000 69632 C:\Windows\System32\wmiclnt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation WMI Client API 131795770663902811 0x7ffacb420000 204800 C:\Windows\System32\ntmarta.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик Windows NT MARTA 131795770645661522 0x7ffacc620000 176128 C:\Windows\SYSTEM32\bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795770645661522 0x7ffacc6e0000 61440 C:\Windows\System32\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795770645661522 0x7ffacc8f0000 1003520 C:\Windows\System32\ucrtbase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645661522 0x7ffacc9f0000 434176 C:\Windows\System32\bcryptPrimitives.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Cryptographic Primitives Library 131795770645661522 0x7ffacca60000 122880 C:\Windows\System32\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795770645661522 0x7ffacd270000 2215936 C:\Windows\System32\KERNELBASE.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645661522 0x7ffacd710000 638976 C:\Windows\System32\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645661522 0x7ffaced20000 782336 C:\Windows\System32\OLEAUT32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795770645661522 0x7ffacee50000 1183744 C:\Windows\System32\RPCRT4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795770645661522 0x7ffacef90000 647168 C:\Windows\System32\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795770645661522 0x7ffacf030000 651264 C:\Windows\System32\clbcatq.dll 2001.12.10941.16384 (rs1_release.160715-1616) Microsoft Corporation COM+ Configuration Catalog 131795770645661522 0x7ffacf0d0000 704512 C:\Windows\System32\KERNEL32.DLL 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645661522 0x7ffacf770000 212992 C:\Windows\System32\GDI32.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation GDI Client DLL 131795770645661522 0x7ffacf820000 434176 C:\Windows\System32\WS2_32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation 32-разрядная библиотека Windows Socket 2.0 131795770645661522 0x7ffacf8c0000 1462272 C:\Windows\System32\user32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795770645661522 0x7ffacfb30000 2916352 C:\Windows\System32\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795770645661522 0x7ffacfe20000 663552 C:\Windows\System32\advapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795770645661522 0x7ffad0210000 364544 C:\Windows\System32\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795770645661522 0x7ffad0270000 1908736 C:\Windows\SYSTEM32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 93 8764 360 26 00000000:000003e5 131795765999556420 0 0 1 Обязательная метка\Обязательный уровень системы NT AUTHORITY\LOCAL SERVICE AUDIODG.EXE C:\Windows\system32\AUDIODG.EXE C:\Windows\system32\AUDIODG.EXE 0x310 Microsoft Corporation 10.0.14393.0 (rs1_release.160715-1616) Изоляция графов аудиоустройств Windows 131795770645661619 0x7ff644450000 389120 C:\Windows\system32\AUDIODG.EXE 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Изоляция графов аудиоустройств Windows 131795770645661619 0x7ffab02b0000 1802240 C:\Windows\System32\WMALFXGFXDSP.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SysFx DSP 131795770645661619 0x7ffab4af0000 606208 C:\Windows\System32\audioses.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Сеанс обработки звука 131795770645661619 0x7ffabc1a0000 438272 C:\Windows\System32\audiokse.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Audio Ks Endpoint 131795770645661619 0x7ffabd210000 552960 C:\Windows\System32\audioeng.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Audio Engine 131795770645661619 0x7ffac8f90000 45056 C:\Windows\System32\AVRT.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Среда выполнения мультимедиа в реальном времени 131795770645661619 0x7ffac92e0000 1269760 C:\Windows\SYSTEM32\wintypes.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL основных типов Windows 131795770645661619 0x7ffac9480000 462848 C:\Windows\system32\MMDevAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation MMDevice API 131795770645661619 0x7ffaca340000 1593344 C:\Windows\system32\PROPSYS.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Система страниц свойств (Майкрософт) 131795770645661619 0x7ffacb3f0000 163840 C:\Windows\system32\DEVOBJ.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Device Information Set DLL 131795770645661619 0x7ffacc6e0000 61440 C:\Windows\System32\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795770645661619 0x7ffacc6f0000 311296 C:\Windows\System32\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795770645661619 0x7ffacc8f0000 1003520 C:\Windows\System32\ucrtbase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645661619 0x7ffacc9f0000 434176 C:\Windows\System32\bcryptPrimitives.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Cryptographic Primitives Library 131795770645661619 0x7ffacca60000 122880 C:\Windows\System32\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795770645661619 0x7ffaccae0000 692224 C:\Windows\System32\shcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795770645661619 0x7ffacd270000 2215936 C:\Windows\System32\KERNELBASE.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645661619 0x7ffacd710000 638976 C:\Windows\System32\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645661619 0x7ffacd7b0000 270336 C:\Windows\System32\cfgmgr32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Configuration Manager DLL 131795770645661619 0x7ffaced20000 782336 C:\Windows\System32\OLEAUT32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795770645661619 0x7ffacee50000 1183744 C:\Windows\System32\RPCRT4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795770645661619 0x7ffacef90000 647168 C:\Windows\System32\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795770645661619 0x7ffacf030000 651264 C:\Windows\System32\clbcatq.dll 2001.12.10941.16384 (rs1_release.160715-1616) Microsoft Corporation COM+ Configuration Catalog 131795770645661619 0x7ffacf0d0000 704512 C:\Windows\System32\KERNEL32.DLL 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645661619 0x7ffacf770000 212992 C:\Windows\System32\GDI32.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation GDI Client DLL 131795770645661619 0x7ffacf8c0000 1462272 C:\Windows\System32\user32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795770645661619 0x7ffacfb30000 2916352 C:\Windows\System32\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795770645661619 0x7ffad0210000 364544 C:\Windows\System32\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795770645661619 0x7ffad0270000 1908736 C:\Windows\SYSTEM32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 94 4580 4048 3 00000000:000003e7 131795769397390596 0 0 1 Обязательная метка\Обязательный уровень системы NT AUTHORITY\СИСТЕМА SearchProtocolHost.exe C:\Windows\system32\SearchProtocolHost.exe "C:\Windows\system32\SearchProtocolHost.exe" Global\UsGthrFltPipeMssGthrPipe285_ Global\UsGthrCtrlFltPipeMssGthrPipe285 1 -2147483646 "Software\Microsoft\Windows Search" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT; MS Search 4.0 Robot)" "C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc" "DownLevelDaemon" Microsoft Corporation 7.0.14393.2125 (rs1_release.180301-2139) Microsoft Windows Search Protocol Host 131795770645661738 0x7ff71ad80000 368640 C:\Windows\system32\SearchProtocolHost.exe 7.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation Microsoft Windows Search Protocol Host 131795770645661738 0x7ffab7a00000 3424256 C:\Windows\system32\TQUERY.DLL 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Запросы Microsoft Tripoli 131795770645661738 0x7ffab9490000 860160 C:\Windows\system32\ntshrui.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширения оболочки, обеспечивающие общий доступ 131795770645661738 0x7ffabaf70000 270336 C:\Windows\system32\edputil.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служебная программа EDP 131795770645661738 0x7ffabc880000 73728 C:\Windows\system32\cscapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Offline Files Win32 API 131795770645661738 0x7ffabff10000 155648 C:\Windows\system32\srvcli.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Server Service Client DLL 131795770645661738 0x7ffac1c90000 192512 C:\Windows\system32\mssph.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Обработчик протоколов поиска Microsoft 131795770645661738 0x7ffac2960000 143360 C:\Windows\system32\mssprxy.dll 7.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation Microsoft Search Proxy 131795770645661738 0x7ffac7e40000 28672 C:\Windows\system32\Msidle.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Idle Monitor 131795770645661738 0x7ffaca340000 1593344 C:\Windows\system32\propsys.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Система страниц свойств (Майкрософт) 131795770645661738 0x7ffacb420000 204800 C:\Windows\SYSTEM32\ntmarta.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик Windows NT MARTA 131795770645661738 0x7ffacb960000 303104 C:\Windows\system32\AUTHZ.dll 10.0.14393.1737 (rs1_release_inmarket.170914-1249) Microsoft Corporation Authorization Framework 131795770645661738 0x7ffacc350000 180224 C:\Windows\system32\SspiCli.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Security Support Provider Interface 131795770645661738 0x7ffacc6e0000 61440 C:\Windows\System32\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795770645661738 0x7ffacc6f0000 311296 C:\Windows\System32\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795770645661738 0x7ffacc740000 81920 C:\Windows\System32\profapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Profile Basic API 131795770645661738 0x7ffacc8f0000 1003520 C:\Windows\System32\ucrtbase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645661738 0x7ffacc9f0000 434176 C:\Windows\System32\bcryptPrimitives.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Cryptographic Primitives Library 131795770645661738 0x7ffacca60000 122880 C:\Windows\System32\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795770645661738 0x7ffaccae0000 692224 C:\Windows\System32\shcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795770645661738 0x7ffaccb90000 7180288 C:\Windows\System32\Windows.Storage.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API хранения Microsoft WinRT 131795770645661738 0x7ffacd270000 2215936 C:\Windows\System32\KERNELBASE.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645661738 0x7ffacd710000 638976 C:\Windows\System32\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645661738 0x7ffacd7b0000 270336 C:\Windows\System32\cfgmgr32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Configuration Manager DLL 131795770645661738 0x7ffacd810000 22056960 C:\Windows\System32\shell32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Общая библиотека оболочки Windows 131795770645661738 0x7ffaced20000 782336 C:\Windows\System32\OLEAUT32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795770645661738 0x7ffacee50000 1183744 C:\Windows\System32\RPCRT4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795770645661738 0x7ffacef90000 647168 C:\Windows\System32\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795770645661738 0x7ffacf030000 651264 C:\Windows\System32\clbcatq.dll 2001.12.10941.16384 (rs1_release.160715-1616) Microsoft Corporation COM+ Configuration Catalog 131795770645661738 0x7ffacf0d0000 704512 C:\Windows\System32\KERNEL32.DLL 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645661738 0x7ffacf770000 212992 C:\Windows\System32\GDI32.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation GDI Client DLL 131795770645661738 0x7ffacf890000 188416 C:\Windows\System32\imm32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Multi-User Windows IMM32 API Client DLL 131795770645661738 0x7ffacf8c0000 1462272 C:\Windows\System32\USER32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795770645661738 0x7ffacfb30000 2916352 C:\Windows\System32\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795770645661738 0x7ffacfe20000 663552 C:\Windows\System32\advapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795770645661738 0x7ffad0070000 1277952 C:\Windows\System32\ole32.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft OLE для Windows 131795770645661738 0x7ffad01b0000 335872 C:\Windows\System32\shlwapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека небольших программ оболочки 131795770645661738 0x7ffad0210000 364544 C:\Windows\System32\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795770645661738 0x7ffad0270000 1908736 C:\Windows\SYSTEM32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 95 8304 580 4 00000000:000003e7 131795770292311800 0 0 1 Обязательная метка\Обязательный уровень системы NT AUTHORITY\СИСТЕМА svchost.exe C:\Windows\system32\svchost.exe C:\Windows\system32\svchost.exe -k wsappx Microsoft Corporation 10.0.14393.0 (rs1_release.160715-1616) Хост-процесс для служб Windows 96 10360 4048 3 00000000:000003e7 131795770393041927 0 0 1 Обязательная метка\Средний обязательный уровень NT AUTHORITY\СИСТЕМА SearchFilterHost.exe C:\Windows\system32\SearchFilterHost.exe "C:\Windows\system32\SearchFilterHost.exe" 0 708 712 720 8192 716 Microsoft Corporation 7.0.14393.2125 (rs1_release.180301-2139) Microsoft Windows Search Filter Host 131795770645661946 0x7ff68a750000 225280 C:\Windows\system32\SearchFilterHost.exe 7.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation Microsoft Windows Search Filter Host 131795770645661946 0x7ffab7a00000 3424256 C:\Windows\system32\TQUERY.DLL 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Запросы Microsoft Tripoli 131795770645661946 0x7ffab8fe0000 1613824 C:\Program Files\Common Files\Microsoft Shared\Filters\offfiltx.dll 16.0.4266.1001 Microsoft Corporation Microsoft Office Open XML Format Filter 131795770645661946 0x7ffabbc40000 643072 C:\Windows\SYSTEM32\MSVCP140.dll 14.10.24516.0 built by: VCTOOLSRELESC Microsoft Corporation Microsoft® C Runtime Library 131795770645661946 0x7ffabbce0000 90112 C:\Windows\SYSTEM32\VCRUNTIME140.dll 14.10.24516.0 built by: VCTOOLSRELESC Microsoft Corporation Microsoft® C Runtime Library 131795770645661946 0x7ffac2960000 143360 C:\Windows\system32\mssprxy.dll 7.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation Microsoft Search Proxy 131795770645661946 0x7ffac97e0000 110592 C:\Windows\SYSTEM32\query.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека служебной программы индексирования содержимого 131795770645661946 0x7ffacc520000 622592 C:\Windows\SYSTEM32\sxs.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Fusion 2.5 131795770645661946 0x7ffacc6e0000 61440 C:\Windows\System32\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795770645661946 0x7ffacc8f0000 1003520 C:\Windows\System32\ucrtbase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645661946 0x7ffacc9f0000 434176 C:\Windows\System32\bcryptPrimitives.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Cryptographic Primitives Library 131795770645661946 0x7ffacca60000 122880 C:\Windows\System32\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795770645661946 0x7ffaccae0000 692224 C:\Windows\System32\shcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795770645661946 0x7ffacd270000 2215936 C:\Windows\System32\KERNELBASE.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645661946 0x7ffacd710000 638976 C:\Windows\System32\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645661946 0x7ffaced20000 782336 C:\Windows\System32\OLEAUT32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795770645661946 0x7ffacee50000 1183744 C:\Windows\System32\RPCRT4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795770645661946 0x7ffacef90000 647168 C:\Windows\System32\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795770645661946 0x7ffacf030000 651264 C:\Windows\System32\clbcatq.dll 2001.12.10941.16384 (rs1_release.160715-1616) Microsoft Corporation COM+ Configuration Catalog 131795770645661946 0x7ffacf0d0000 704512 C:\Windows\System32\KERNEL32.DLL 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645661946 0x7ffacf770000 212992 C:\Windows\System32\GDI32.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation GDI Client DLL 131795770645661946 0x7ffacf890000 188416 C:\Windows\System32\imm32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Multi-User Windows IMM32 API Client DLL 131795770645661946 0x7ffacf8c0000 1462272 C:\Windows\System32\USER32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795770645661946 0x7ffacfb30000 2916352 C:\Windows\System32\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795770645661946 0x7ffacfe20000 663552 C:\Windows\System32\advapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795770645661946 0x7ffad0070000 1277952 C:\Windows\System32\ole32.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft OLE для Windows 131795770645661946 0x7ffad0210000 364544 C:\Windows\System32\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795770645661946 0x7ffad0270000 1908736 C:\Windows\SYSTEM32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 97 84 3108 11 00000000:0031f1da 131795771095730473 131795771129561094 0 0 Обязательная метка\Средний обязательный уровень WIN-0UOTFKKVN1S\User MCLauncher.exe C:\Users\User\Downloads\MCLauncher.exe "C:\Users\User\Downloads\MCLauncher.exe" 1.0 131795771100052569 0x400000 2830336 C:\Users\User\Downloads\MCLauncher.exe 1.0 131795771107990028 0x6c0000 704512 C:\Windows\System32\kernel32.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795771107990477 0x7d0000 1462272 C:\Windows\System32\user32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795771107980658 0x5c020000 335872 C:\Windows\System32\wow64.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation Win32 Emulation on NT64 131795771107981450 0x5c080000 487424 C:\Windows\System32\wow64win.dll 10.0.14393.1884 (rs1_release.171101-1233) Microsoft Corporation Wow64 Console and Win32 API Logging 131795771107993070 0x5c100000 40960 C:\Windows\System32\wow64cpu.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation AMD64 Wow64 CPU 131795771113736952 0x60750000 1556480 C:\Program Files (x86)\360\Total Security\safemon\safemon.dll 8, 4, 0, 1420 Qihu 360 Software Co., Ltd. 360 Internet Security Internet Protection 131795771108602128 0x613d0000 667648 C:\Windows\WinSxS\x86_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.9247_none_5090cb78bcba4a35\msvcr90.dll 9.00.30729.9247 Microsoft Corporation Microsoft® C Runtime Library 131795771115551275 0x627d0000 249856 C:\Windows\SysWOW64\edputil.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служебная программа EDP 131795771108103192 0x66680000 12288 C:\Windows\SysWOW64\sfc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows File Protection 131795771108128503 0x67690000 61440 C:\Windows\SysWOW64\sfc_os.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows File Protection 131795771108053759 0x6b830000 2584576 C:\Windows\AppPatch\AcLayers.dll 10.0.14393.953 (rs1_release_inmarket.170303-1614) Microsoft Corporation Windows Compatibility DLL 131795771110329320 0x6d180000 581632 C:\Windows\WinSxS\x86_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.9247_none_5090cb78bcba4a35\msvcp90.dll 9.00.30729.9247 Microsoft Corporation Microsoft® C++ Runtime Library 131795771112527946 0x6dcd0000 606208 C:\Windows\WinSxS\x86_microsoft.windows.common-controls_6595b64144ccf1df_5.82.14393.447_none_5507ded2cb4f7f4c\comctl32.dll 6.10 (rs1_release_inmarket.170303-1614) Microsoft Corporation Библиотека элементов управления взаимодействия с пользователем 131795771108111223 0x700d0000 434176 C:\Windows\SysWOW64\winspool.drv 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Драйвер диспетчера очереди Windows 131795771113764461 0x70ca0000 45056 C:\Windows\SysWOW64\netutils.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API Helpers DLL 131795771113778189 0x70cb0000 65536 C:\Windows\SysWOW64\wkscli.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Workstation Service Client DLL 131795771113752450 0x71140000 77824 C:\Windows\SysWOW64\netapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API DLL 131795771113882758 0x725e0000 2273280 C:\Windows\SysWOW64\iertutil.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служебная программа времени выполнения для Internet Explorer 131795771114479545 0x728e0000 1372160 C:\Windows\SysWOW64\propsys.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Система страниц свойств (Майкрософт) 131795771113871825 0x72cc0000 1658880 C:\Windows\SysWOW64\urlmon.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширения OLE32 для Win32 131795771113645033 0x73ae0000 40960 C:\Windows\SysWOW64\secur32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Security Support Provider Interface 131795771109643878 0x74060000 192512 C:\Windows\SysWOW64\rsaenh.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Enhanced Cryptographic Provider 131795771113687519 0x74110000 479232 C:\Windows\SysWOW64\uxtheme.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека тем UxTheme (Microsoft) 131795771108120411 0x74190000 110592 C:\Windows\SysWOW64\bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795771109630638 0x741b0000 77824 C:\Windows\SysWOW64\cryptsp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Cryptographic Service Provider API 131795771111790290 0x741f0000 143360 C:\Windows\SysWOW64\winmmbase.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base Multimedia Extension API DLL 131795771111779368 0x74230000 147456 C:\Windows\SysWOW64\winmm.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation MCI API DLL 131795771110706989 0x746e0000 32768 C:\Windows\SysWOW64\version.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Version Checking and File Installation Libraries 131795771108094068 0x74710000 90112 C:\Windows\SysWOW64\mpr.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека маршрутизации для нескольких служб доступа 131795771108018712 0x74730000 598016 C:\Windows\SysWOW64\apphelp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиентская библиотека совместимости приложений 131795771108065537 0x747d0000 40960 C:\Windows\SysWOW64\cryptbase.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base cryptographic API DLL 131795771108064515 0x747e0000 126976 C:\Windows\SysWOW64\sspicli.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Security Support Provider Interface 131795771108208686 0x74800000 151552 C:\Windows\SysWOW64\imm32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Multi-User Windows IMM32 API Client DLL 131795771108062855 0x74830000 917504 C:\Windows\SysWOW64\ucrtbase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795771108062126 0x74910000 2170880 C:\Windows\SysWOW64\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795771108070762 0x74b30000 53248 C:\Windows\SysWOW64\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795771108063667 0x74b60000 790528 C:\Windows\SysWOW64\rpcrt4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795771108058408 0x74c30000 1417216 C:\Windows\SysWOW64\gdi32full.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation GDI Client DLL 131795771113741177 0x74d90000 24576 C:\Windows\SysWOW64\psapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Process Status Helper 131795771108054879 0x74da0000 778240 C:\Windows\SysWOW64\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795771108071560 0x74e60000 557056 C:\Windows\SysWOW64\SHCore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795771114505987 0x74ef0000 540672 C:\Windows\SysWOW64\clbcatq.dll 2001.12.10941.16384 (rs1_release.160715-1616) Microsoft Corporation COM+ Configuration Catalog 131795771110692760 0x74fd0000 405504 C:\Windows\SysWOW64\ws2_32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation 32-разрядная библиотека Windows Socket 2.0 131795771108068017 0x75040000 282624 C:\Windows\SysWOW64\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795771113571954 0x751d0000 57344 C:\Windows\SysWOW64\msasn1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ASN.1 Runtime APIs 131795771107999750 0x751e0000 1708032 C:\Windows\SysWOW64\KernelBase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795771108066925 0x75390000 266240 C:\Windows\SysWOW64\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795771113570641 0x753e0000 1560576 C:\Windows\SysWOW64\crypt32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API32 криптографии 131795771108068870 0x75560000 487424 C:\Windows\SysWOW64\advapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795771108061351 0x756c0000 5693440 C:\Windows\SysWOW64\windows.storage.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API хранения Microsoft WinRT 131795771108069823 0x75c90000 286720 C:\Windows\SysWOW64\shlwapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека небольших программ оболочки 131795771108059372 0x75ce0000 20811776 C:\Windows\SysWOW64\shell32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Общая библиотека оболочки Windows 131795771108075237 0x770c0000 4239360 C:\Windows\SysWOW64\setupapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Setup API 131795771108056691 0x774d0000 86016 C:\Windows\SysWOW64\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795771108072455 0x774f0000 61440 C:\Windows\SysWOW64\profapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Profile Basic API 131795771108055879 0x77560000 1437696 C:\Windows\SysWOW64\user32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795771108066224 0x776c0000 368640 C:\Windows\SysWOW64\bcryptprimitives.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation Windows Cryptographic Primitives Library 131795771108074059 0x77780000 503808 C:\Windows\SysWOW64\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795771108073333 0x77800000 606208 C:\Windows\SysWOW64\oleaut32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795771110173939 0x77ac0000 966656 C:\Windows\SysWOW64\ole32.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft OLE для Windows 131795771108057591 0x77bb0000 176128 C:\Windows\SysWOW64\gdi32.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation GDI Client DLL 131795771112512757 0x77be0000 937984 C:\Windows\SysWOW64\comdlg32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека общих диалоговых окон 131795771108060378 0x77cd0000 221184 C:\Windows\SysWOW64\cfgmgr32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Configuration Manager DLL 131795771100053240 0x77d20000 1585152 C:\Windows\SysWOW64\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 131795771100052962 0x7ffad0270000 1908736 C:\Windows\System32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 98 6080 84 97 00000000:0031f1da 131795771125310655 0 0 0 Обязательная метка\Средний обязательный уровень WIN-0UOTFKKVN1S\User MCLauncher.exe C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe "C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe" 1.0 131795771127806606 0x400000 2830336 C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe 1.0 131795771129292604 0x750000 1462272 C:\Windows\System32\user32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795771335510731 0x11000000 1396736 C:\Users\User\AppData\Roaming\MCLauncher\libeay32.dll 1.0.2o The OpenSSL Project, http://www.openssl.org/ OpenSSL Shared Library 131795771334241016 0x12000000 360448 C:\Users\User\AppData\Roaming\MCLauncher\ssleay32.dll 1.0.2o The OpenSSL Project, http://www.openssl.org/ OpenSSL Shared Library 131795771129285523 0x5c020000 335872 C:\Windows\System32\wow64.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation Win32 Emulation on NT64 131795771129286235 0x5c080000 487424 C:\Windows\System32\wow64win.dll 10.0.14393.1884 (rs1_release.171101-1233) Microsoft Corporation Wow64 Console and Win32 API Logging 131795771129295328 0x5c100000 40960 C:\Windows\System32\wow64cpu.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation AMD64 Wow64 CPU 131795771135408057 0x60750000 1556480 C:\Program Files (x86)\360\Total Security\safemon\safemon.dll 8, 4, 0, 1420 Qihu 360 Software Co., Ltd. 360 Internet Security Internet Protection 131795771129575672 0x613d0000 667648 C:\Windows\WinSxS\x86_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.9247_none_5090cb78bcba4a35\msvcr90.dll 9.00.30729.9247 Microsoft Corporation Microsoft® C Runtime Library 131795771129398434 0x66680000 12288 C:\Windows\SysWOW64\sfc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows File Protection 131795771136825814 0x67500000 1597440 C:\Windows\SysWOW64\actxprxy.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation ActiveX Interface Marshaling Library 131795771129423112 0x67690000 61440 C:\Windows\SysWOW64\sfc_os.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows File Protection 131795771129349562 0x6b830000 2584576 C:\Windows\AppPatch\AcLayers.dll 10.0.14393.953 (rs1_release_inmarket.170303-1614) Microsoft Corporation Windows Compatibility DLL 131795771329638947 0x6c290000 987136 C:\Windows\SysWOW64\twinapi.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation twinapi.appcore 131795771329610149 0x6c390000 1126400 C:\Windows\SysWOW64\dcomp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft DirectComposition Library 131795771329592759 0x6c4b0000 278528 C:\Windows\SysWOW64\DataExchange.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation Data exchange 131795771136045859 0x6cda0000 528384 C:\Windows\SysWOW64\sxs.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Fusion 2.5 131795771131298623 0x6d180000 581632 C:\Windows\WinSxS\x86_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.9247_none_5090cb78bcba4a35\msvcp90.dll 9.00.30729.9247 Microsoft Corporation Microsoft® C++ Runtime Library 131795771136082794 0x6dca0000 176128 C:\Windows\SysWOW64\scrrun.dll 5.812.10240.16384 Microsoft Corporation Microsoft ® Script Runtime 131795771133718253 0x6dcd0000 606208 C:\Windows\WinSxS\x86_microsoft.windows.common-controls_6595b64144ccf1df_5.82.14393.447_none_5507ded2cb4f7f4c\comctl32.dll 6.10 (rs1_release_inmarket.170303-1614) Microsoft Corporation Библиотека элементов управления взаимодействия с пользователем 131795771129406131 0x700d0000 434176 C:\Windows\SysWOW64\winspool.drv 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Драйвер диспетчера очереди Windows 131795771329618480 0x70340000 536576 C:\Windows\SysWOW64\dxgi.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation DirectX Graphics Infrastructure 131795771329601483 0x707f0000 2293760 C:\Windows\SysWOW64\d3d11.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation Direct3D 11 Runtime 131795771336447829 0x70c30000 114688 C:\Windows\SysWOW64\srvcli.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Server Service Client DLL 131795771135435621 0x70ca0000 45056 C:\Windows\SysWOW64\netutils.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API Helpers DLL 131795771135446667 0x70cb0000 65536 C:\Windows\SysWOW64\wkscli.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Workstation Service Client DLL 131795771136073867 0x70e90000 147456 C:\Windows\SysWOW64\wshom.ocx 5.812.10240.16384 Microsoft Corporation Windows Script Host Runtime Library 131795771135423397 0x71140000 77824 C:\Windows\SysWOW64\netapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API DLL 131795771135552456 0x725e0000 2273280 C:\Windows\SysWOW64\iertutil.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служебная программа времени выполнения для Internet Explorer 131795771136181434 0x728e0000 1372160 C:\Windows\SysWOW64\propsys.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Система страниц свойств (Майкрософт) 131795771328759427 0x72b90000 126976 C:\Windows\SysWOW64\dwmapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Интерфейс API диспетчера окон рабочего стола (Майкрософт) 131795771135541570 0x72cc0000 1658880 C:\Windows\SysWOW64\urlmon.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширения OLE32 для Win32 131795771347140137 0x73a50000 299008 C:\Windows\SysWOW64\FWPUCLNT.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API пользовательского режима FWP/IPsec 131795771347110306 0x73ab0000 32768 C:\Windows\SysWOW64\rasadhlp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Remote Access AutoDial Helper 131795771135314174 0x73ae0000 40960 C:\Windows\SysWOW64\secur32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Security Support Provider Interface 131795771347090516 0x73f00000 192512 C:\Windows\SysWOW64\IPHLPAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API вспомогательного приложения IP 131795771347075776 0x73f30000 512000 C:\Windows\SysWOW64\dnsapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Динамическая библиотека API DNS-клиента 131795771328179609 0x73ff0000 319488 C:\Windows\SysWOW64\mswsock.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширение поставщика службы API Microsoft Windows Sockets 2.0 131795771130913562 0x74060000 192512 C:\Windows\SysWOW64\rsaenh.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Enhanced Cryptographic Provider 131795771135359123 0x74110000 479232 C:\Windows\SysWOW64\uxtheme.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека тем UxTheme (Microsoft) 131795771129415027 0x74190000 110592 C:\Windows\SysWOW64\bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795771130899582 0x741b0000 77824 C:\Windows\SysWOW64\cryptsp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Cryptographic Service Provider API 131795771133098293 0x741f0000 143360 C:\Windows\SysWOW64\winmmbase.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base Multimedia Extension API DLL 131795771132990161 0x74230000 147456 C:\Windows\SysWOW64\winmm.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation MCI API DLL 131795771131765102 0x746e0000 32768 C:\Windows\SysWOW64\version.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Version Checking and File Installation Libraries 131795771129389543 0x74710000 90112 C:\Windows\SysWOW64\mpr.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека маршрутизации для нескольких служб доступа 131795771129317462 0x74730000 598016 C:\Windows\SysWOW64\apphelp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиентская библиотека совместимости приложений 131795771129360685 0x747d0000 40960 C:\Windows\SysWOW64\cryptbase.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base cryptographic API DLL 131795771129360034 0x747e0000 126976 C:\Windows\SysWOW64\sspicli.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Security Support Provider Interface 131795771129496759 0x74800000 151552 C:\Windows\SysWOW64\imm32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Multi-User Windows IMM32 API Client DLL 131795771129358136 0x74830000 917504 C:\Windows\SysWOW64\ucrtbase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795771129357408 0x74910000 2170880 C:\Windows\SysWOW64\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795771129365891 0x74b30000 53248 C:\Windows\SysWOW64\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795771129359203 0x74b60000 790528 C:\Windows\SysWOW64\rpcrt4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795771129353720 0x74c30000 1417216 C:\Windows\SysWOW64\gdi32full.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation GDI Client DLL 131795771135412052 0x74d90000 24576 C:\Windows\SysWOW64\psapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Process Status Helper 131795771129350362 0x74da0000 778240 C:\Windows\SysWOW64\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795771129366695 0x74e60000 557056 C:\Windows\SysWOW64\SHCore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795771136054082 0x74ef0000 540672 C:\Windows\SysWOW64\clbcatq.dll 2001.12.10941.16384 (rs1_release.160715-1616) Microsoft Corporation COM+ Configuration Catalog 131795771131750596 0x74fd0000 405504 C:\Windows\SysWOW64\ws2_32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation 32-разрядная библиотека Windows Socket 2.0 131795771129363162 0x75040000 282624 C:\Windows\SysWOW64\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795771328737550 0x75090000 1265664 C:\Windows\SysWOW64\msctf.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Серверная библиотека MSCTF 131795771135228888 0x751d0000 57344 C:\Windows\SysWOW64\msasn1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ASN.1 Runtime APIs 131795771129301509 0x751e0000 1708032 C:\Windows\SysWOW64\KernelBase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795771129362062 0x75390000 266240 C:\Windows\SysWOW64\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795771135227735 0x753e0000 1560576 C:\Windows\SysWOW64\crypt32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API32 криптографии 131795771129363985 0x75560000 487424 C:\Windows\SysWOW64\advapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795771129356607 0x756c0000 5693440 C:\Windows\SysWOW64\windows.storage.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API хранения Microsoft WinRT 131795771129364960 0x75c90000 286720 C:\Windows\SysWOW64\shlwapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека небольших программ оболочки 131795771129354665 0x75ce0000 20811776 C:\Windows\SysWOW64\shell32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Общая библиотека оболочки Windows 131795771129370252 0x770c0000 4239360 C:\Windows\SysWOW64\setupapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Setup API 131795771129352041 0x774d0000 86016 C:\Windows\SysWOW64\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795771129367584 0x774f0000 61440 C:\Windows\SysWOW64\profapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Profile Basic API 131795771129351257 0x77560000 1437696 C:\Windows\SysWOW64\user32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795771129361361 0x776c0000 368640 C:\Windows\SysWOW64\bcryptprimitives.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation Windows Cryptographic Primitives Library 131795771129369244 0x77780000 503808 C:\Windows\SysWOW64\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795771129368545 0x77800000 606208 C:\Windows\SysWOW64\oleaut32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795771131168008 0x77ac0000 966656 C:\Windows\SysWOW64\ole32.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft OLE для Windows 131795771129352931 0x77bb0000 176128 C:\Windows\SysWOW64\gdi32.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation GDI Client DLL 131795771133704572 0x77be0000 937984 C:\Windows\SysWOW64\comdlg32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека общих диалоговых окон 131795771129355632 0x77cd0000 221184 C:\Windows\SysWOW64\cfgmgr32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Configuration Manager DLL 131795771347076821 0x77d10000 28672 C:\Windows\SysWOW64\nsi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation NSI User-mode interface DLL 131795771127807387 0x77d20000 1585152 C:\Windows\SysWOW64\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 131795771127807116 0x7ffad0270000 1908736 C:\Windows\System32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 99 12576 664 6 00000000:0031f1da 131795771145349737 131795771235538758 0 1 Обязательная метка\Средний обязательный уровень WIN-0UOTFKKVN1S\User DllHost.exe C:\Windows\system32\DllHost.exe C:\Windows\system32\DllHost.exe /Processid:{AB8902B4-09CA-4BB6-B78D-A8F59079A8D5} Microsoft Corporation 10.0.14393.0 (rs1_release.160715-1616) COM Surrogate 131795771184507262 0x7ff7a2280000 36864 C:\Windows\System32\dllhost.exe 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation COM Surrogate 131795771185288430 0x7ffac5630000 339968 C:\Windows\System32\thumbcache.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Кэш эскизов Майкрософт 131795771185308436 0x7ffaca340000 1593344 C:\Windows\System32\propsys.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Система страниц свойств (Майкрософт) 131795771185208723 0x7ffacaf00000 610304 C:\Windows\System32\uxtheme.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека тем UxTheme (Microsoft) 131795771184866545 0x7ffacc6e0000 61440 C:\Windows\System32\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795771185150589 0x7ffacc770000 1572864 C:\Windows\System32\gdi32full.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation GDI Client DLL 131795771184523591 0x7ffacc8f0000 1003520 C:\Windows\System32\ucrtbase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795771184526373 0x7ffacc9f0000 434176 C:\Windows\System32\bcryptprimitives.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Cryptographic Primitives Library 131795771185149095 0x7ffacca60000 122880 C:\Windows\System32\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795771185289336 0x7ffaccae0000 692224 C:\Windows\System32\SHCore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795771184515216 0x7ffacd270000 2215936 C:\Windows\System32\KernelBase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795771185310190 0x7ffacd710000 638976 C:\Windows\System32\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795771185309450 0x7ffaced20000 782336 C:\Windows\System32\oleaut32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795771184525473 0x7ffacee50000 1183744 C:\Windows\System32\rpcrt4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795771184867324 0x7ffacef90000 647168 C:\Windows\System32\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795771184872618 0x7ffacf030000 651264 C:\Windows\System32\clbcatq.dll 2001.12.10941.16384 (rs1_release.160715-1616) Microsoft Corporation COM+ Configuration Catalog 131795771184514352 0x7ffacf0d0000 704512 C:\Windows\System32\kernel32.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795771185149852 0x7ffacf770000 212992 C:\Windows\System32\gdi32.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation GDI Client DLL 131795771185162968 0x7ffacf890000 188416 C:\Windows\System32\imm32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Multi-User Windows IMM32 API Client DLL 131795771185148270 0x7ffacf8c0000 1462272 C:\Windows\System32\user32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795771184524725 0x7ffacfb30000 2916352 C:\Windows\System32\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795771185124568 0x7ffad0210000 364544 C:\Windows\System32\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795771184507503 0x7ffad0270000 1908736 C:\Windows\System32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 100 11424 664 6 00000000:0031f1da 131795771175195605 0 0 1 Обязательная метка\Низкий обязательный уровень WIN-0UOTFKKVN1S\User backgroundTaskHost.exe C:\Windows\system32\backgroundTaskHost.exe "C:\Windows\system32\backgroundTaskHost.exe" -ServerName:CortanaUI.AppXy7vb4pc2dr3kc93kfc509b1d0arkfb2x.mca Microsoft Corporation 10.0.14393.0 (rs1_release.160715-1616) Background Task Host 131795771215003918 0x7ff7e0340000 28672 C:\Windows\System32\backgroundTaskHost.exe 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Background Task Host 131795771218915398 0x7ffab52c0000 2445312 C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.BackgroundTask.dll 131795771248257542 0x7ffab5db0000 9781248 C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\CortanaApi.dll 131795771221125701 0x7ffab9d50000 1429504 C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Core.dll 131795771219014731 0x7ffabae40000 110592 C:\Windows\System32\capauthz.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API авторизации возможностей 131795771244982867 0x7ffabd4a0000 1613824 C:\Windows\System32\Windows.Globalization.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Globalization 131795771253593996 0x7ffabe4d0000 286720 C:\Windows\System32\MSWB7.dll 10.0.14393.1737 (rs1_release_inmarket.170914-1249) Microsoft Corporation MSWB7 DLL 131795771249779530 0x7ffabe770000 774144 C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\CSGSuggestLib.dll 131795771220596574 0x7ffabea90000 135168 C:\Windows\System32\Windows.ApplicationModel.Background.SystemEventsBroker.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Background System Events Broker API Server 131795771221984040 0x7ffabeac0000 335872 C:\Windows\System32\Windows.Storage.ApplicationData.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Application Data API Server 131795771229903710 0x7ffabf8a0000 122880 C:\Windows\System32\Windows.Cortana.ProxyStub.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows.Cortana.ProxyStub 131795771222450040 0x7ffabfd80000 86016 C:\Windows\System32\threadpoolwinrt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows WinRT Threadpool 131795771218944309 0x7ffac01e0000 397312 C:\Windows\System32\wincorlib.dll 10.0.14393.576 (rs1_release_inmarket.161208-2252) Microsoft Corporation Microsoft Windows ® WinRT core library 131795771217261903 0x7ffac0bf0000 3559424 C:\Windows\System32\actxprxy.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation ActiveX Interface Marshaling Library 131795771221184651 0x7ffac2c30000 135168 C:\Windows\System32\Clipc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиент платформы лицензирования клиента 131795771219025520 0x7ffac2d80000 5140480 C:\Windows\System32\cdp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API клиента Microsoft (R) CDP 131795771248269029 0x7ffac3810000 167936 C:\Windows\System32\cabinet.dll 5.00 (rs1_release.160715-1616) Microsoft Corporation Microsoft® Cabinet File API 131795771221208674 0x7ffac3bf0000 94208 C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\ActionMgr.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Cortana Action Manager 131795771244919374 0x7ffac3cb0000 2772992 C:\Windows\System32\iertutil.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служебная программа времени выполнения для Internet Explorer 131795771228411342 0x7ffac42a0000 659456 C:\Windows\System32\StateRepository.Core.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation StateRepository Core 131795771228399176 0x7ffac46d0000 4161536 C:\Windows\System32\Windows.StateRepository.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Сервер Windows StateRepository API Server 131795771238266123 0x7ffac4b70000 106496 C:\Windows\System32\ShellCommonCommonProxyStub.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ShellCommon Common Proxy Stub 131795771244908192 0x7ffac5070000 798720 C:\Windows\System32\Windows.Web.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL веб-клиента 131795771219005372 0x7ffac60e0000 221184 C:\Windows\System32\xmllite.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft XmlLite Library 131795771218728294 0x7ffac6620000 192512 C:\Windows\System32\biwinrt.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation Windows Background Broker Infrastructure 131795771219113271 0x7ffac69c0000 839680 C:\Windows\System32\winhttp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Службы HTTP Windows 131795771217463389 0x7ffac6ac0000 835584 C:\Windows\System32\Windows.UI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Runtime UI Foundation DLL 131795771229000770 0x7ffac6bb0000 118784 C:\Windows\System32\Windows.Cortana.PAL.Desktop.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows.Cortana.PAL.Desktop 131795771217062375 0x7ffac7580000 1077248 C:\Windows\System32\MrmCoreR.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Windows MRM 131795771218870257 0x7ffac7720000 1601536 C:\Windows\System32\OneCoreUAPCommonProxyStub.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation OneCoreUAP Common Proxy Stub 131795771221134703 0x7ffac7c50000 118784 C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\BingConfigurationClient.dll 10.0.14393.82 (rs1_release.160805-1735) Microsoft Corporation Bing Configuration Client DLL 131795771250869876 0x7ffac8fa0000 253952 C:\Windows\System32\logoncli.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Net Logon Client DLL 131795771215247819 0x7ffac92e0000 1269760 C:\Windows\System32\WinTypes.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL основных типов Windows 131795771246630966 0x7ffaca340000 1593344 C:\Windows\System32\propsys.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Система страниц свойств (Майкрософт) 131795771218005942 0x7ffaca570000 421888 C:\Windows\System32\BCP47Langs.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation BCP47 Language Classes 131795771215028077 0x7ffacadf0000 499712 C:\Windows\System32\apphelp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиентская библиотека совместимости приложений 131795771218142921 0x7ffacaf00000 610304 C:\Windows\System32\uxtheme.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека тем UxTheme (Microsoft) 131795771218992988 0x7ffacb140000 593920 C:\Windows\System32\msvcp110_win.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Microsoft® STL110 C++ Runtime Library 131795771215190452 0x7ffacb1e0000 1163264 C:\Windows\System32\twinapi.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation twinapi.appcore 131795771219041691 0x7ffacb300000 364544 C:\Windows\System32\VEEventDispatcher.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Visual Element Event dispatcher 131795771248177767 0x7ffacb420000 204800 C:\Windows\System32\ntmarta.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик Windows NT MARTA 131795771219101100 0x7ffacbd30000 229376 C:\Windows\System32\IPHLPAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API вспомогательного приложения IP 131795771219186292 0x7ffacc1f0000 241664 C:\Windows\System32\ntasn1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft ASN.1 API 131795771219053691 0x7ffacc230000 155648 C:\Windows\System32\ncrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Маршрутизатор Windows NCrypt 131795771219065792 0x7ffacc350000 180224 C:\Windows\System32\sspicli.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Security Support Provider Interface 131795771215202412 0x7ffacc620000 176128 C:\Windows\System32\bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795771215165891 0x7ffacc6e0000 61440 C:\Windows\System32\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795771228948589 0x7ffacc6f0000 311296 C:\Windows\System32\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795771217446746 0x7ffacc740000 81920 C:\Windows\System32\profapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Profile Basic API 131795771219027312 0x7ffacc760000 65536 C:\Windows\System32\msasn1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ASN.1 Runtime APIs 131795771216016613 0x7ffacc770000 1572864 C:\Windows\System32\gdi32full.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation GDI Client DLL 131795771215052508 0x7ffacc8f0000 1003520 C:\Windows\System32\ucrtbase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795771215054137 0x7ffacc9f0000 434176 C:\Windows\System32\bcryptprimitives.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Cryptographic Primitives Library 131795771216015001 0x7ffacca60000 122880 C:\Windows\System32\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795771215602268 0x7ffaccae0000 692224 C:\Windows\System32\SHCore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795771228947467 0x7ffaccb90000 7180288 C:\Windows\System32\windows.storage.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API хранения Microsoft WinRT 131795771215010911 0x7ffacd270000 2215936 C:\Windows\System32\KernelBase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795771219026473 0x7ffacd490000 1871872 C:\Windows\System32\crypt32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API32 криптографии 131795771218982293 0x7ffacd710000 638976 C:\Windows\System32\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795771218945076 0x7ffaced20000 782336 C:\Windows\System32\oleaut32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795771215053234 0x7ffacee50000 1183744 C:\Windows\System32\rpcrt4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795771215050566 0x7ffacef90000 647168 C:\Windows\System32\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795771215009974 0x7ffacf0d0000 704512 C:\Windows\System32\kernel32.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795771216015829 0x7ffacf770000 212992 C:\Windows\System32\gdi32.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation GDI Client DLL 131795771219028093 0x7ffacf820000 434176 C:\Windows\System32\ws2_32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation 32-разрядная библиотека Windows Socket 2.0 131795771216029532 0x7ffacf890000 188416 C:\Windows\System32\imm32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Multi-User Windows IMM32 API Client DLL 131795771216013945 0x7ffacf8c0000 1462272 C:\Windows\System32\user32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795771215051746 0x7ffacfb30000 2916352 C:\Windows\System32\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795771218916542 0x7ffacfe20000 663552 C:\Windows\System32\advapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795771251394640 0x7ffad0070000 1277952 C:\Windows\System32\ole32.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft OLE для Windows 131795771228949614 0x7ffad01b0000 335872 C:\Windows\System32\shlwapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека небольших программ оболочки 131795771215191449 0x7ffad0210000 364544 C:\Windows\System32\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795771215004228 0x7ffad0270000 1908736 C:\Windows\System32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 101 12976 6340 50 00000000:0031f1ab 131795771282376077 131795771284328494 0 0 Обязательная метка\Высокий обязательный уровень WIN-0UOTFKKVN1S\User QHToasts.exe C:\Program Files (x86)\360\Total Security\safemon\QHToasts.exe "C:\Program Files (x86)\360\Total Security\safemon\QHToasts.exe" /riskprompt 8,6,0,1000 Windows 8 Toast Notification 131795771283557190 0x700000 1462272 C:\Windows\System32\user32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795771282475058 0xae0000 299008 C:\Program Files (x86)\360\Total Security\safemon\QHToasts.exe 8,6,0,1000 Windows 8 Toast Notification 131795771283550335 0x5c020000 335872 C:\Windows\System32\wow64.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation Win32 Emulation on NT64 131795771283551019 0x5c080000 487424 C:\Windows\System32\wow64win.dll 10.0.14393.1884 (rs1_release.171101-1233) Microsoft Corporation Wow64 Console and Win32 API Logging 131795771283559644 0x5c100000 40960 C:\Windows\System32\wow64cpu.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation AMD64 Wow64 CPU 131795771283619746 0x73c50000 1478656 C:\Windows\WinSxS\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.14393.1715_none_f67438d2f2547a00\GdiPlus.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Microsoft GDI+ 131795771283577556 0x747d0000 40960 C:\Windows\SysWOW64\cryptbase.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base cryptographic API DLL 131795771283576079 0x747e0000 126976 C:\Windows\SysWOW64\sspicli.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Security Support Provider Interface 131795771283598798 0x74800000 151552 C:\Windows\SysWOW64\imm32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Multi-User Windows IMM32 API Client DLL 131795771283574107 0x74830000 917504 C:\Windows\SysWOW64\ucrtbase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795771283573256 0x74910000 2170880 C:\Windows\SysWOW64\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795771283589533 0x74b30000 53248 C:\Windows\SysWOW64\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795771283575215 0x74b60000 790528 C:\Windows\SysWOW64\rpcrt4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795771283582521 0x74c30000 1417216 C:\Windows\SysWOW64\gdi32full.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation GDI Client DLL 131795771283584139 0x74da0000 778240 C:\Windows\SysWOW64\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795771283590270 0x74e60000 557056 C:\Windows\SysWOW64\SHCore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795771283587788 0x75040000 282624 C:\Windows\SysWOW64\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795771283565831 0x751e0000 1708032 C:\Windows\SysWOW64\KernelBase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795771283579022 0x75390000 266240 C:\Windows\SysWOW64\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795771283583432 0x75560000 487424 C:\Windows\SysWOW64\advapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795771283586973 0x756c0000 5693440 C:\Windows\SysWOW64\windows.storage.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API хранения Microsoft WinRT 131795771283588610 0x75c90000 286720 C:\Windows\SysWOW64\shlwapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека небольших программ оболочки 131795771283585111 0x75ce0000 20811776 C:\Windows\SysWOW64\shell32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Общая библиотека оболочки Windows 131795771283580806 0x774d0000 86016 C:\Windows\SysWOW64\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795771283591137 0x774f0000 61440 C:\Windows\SysWOW64\profapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Profile Basic API 131795771283580085 0x77560000 1437696 C:\Windows\SysWOW64\user32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795771283578315 0x776c0000 368640 C:\Windows\SysWOW64\bcryptprimitives.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation Windows Cryptographic Primitives Library 131795771283593675 0x77780000 503808 C:\Windows\SysWOW64\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795771283593010 0x77800000 606208 C:\Windows\SysWOW64\oleaut32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795771283591957 0x77ac0000 966656 C:\Windows\SysWOW64\ole32.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft OLE для Windows 131795771283581642 0x77bb0000 176128 C:\Windows\SysWOW64\gdi32.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation GDI Client DLL 131795771283586078 0x77cd0000 221184 C:\Windows\SysWOW64\cfgmgr32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Configuration Manager DLL 131795771282475651 0x77d20000 1585152 C:\Windows\SysWOW64\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 131795771282475383 0x7ffad0270000 1908736 C:\Windows\System32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 1 11372 10560 2 00000000:0031f1ab 131795770632346846 0 0 1 Обязательная метка\Высокий обязательный уровень WIN-0UOTFKKVN1S\User Procmon64.exe C:\Users\User\AppData\Local\Temp\Procmon64.exe "C:\Users\User\AppData\Local\Temp\Procmon64.exe" /originalpath "C:\Users\User\Downloads\ProcessMonitor\Procmon.exe" Sysinternals - www.sysinternals.com 3.50 Process Monitor 131795770645297135 0x7ff7ed960000 1224704 C:\Users\User\AppData\Local\Temp\Procmon64.exe 3.50 Sysinternals - www.sysinternals.com Process Monitor 131795770645297135 0x7ffac2b80000 40960 C:\Windows\SYSTEM32\VERSION.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Version Checking and File Installation Libraries 131795770645297135 0x7ffac3270000 40960 C:\Windows\SYSTEM32\FLTLIB.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека фильтров 131795770645297135 0x7ffac5630000 339968 C:\Windows\System32\thumbcache.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Кэш эскизов Майкрософт 131795770645297135 0x7ffac6c40000 2596864 C:\Windows\WinSxS\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.14393.953_none_42151e83c686086b\COMCTL32.dll 6.10 (rs1_release_inmarket.170303-1614) Microsoft Corporation Библиотека элементов управления взаимодействия с пользователем 131795770645297135 0x7ffac84f0000 299008 C:\Windows\system32\dataexchange.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation Data exchange 131795770645297135 0x7ffac88a0000 2842624 C:\Windows\system32\d3d11.dll 10.0.14393.953 (rs1_release_inmarket.170303-1614) Microsoft Corporation Direct3D 11 Runtime 131795770645297135 0x7ffac8df0000 1646592 C:\Windows\SYSTEM32\dbghelp.dll 10.0.14321.1024 (rs1_release.160715-1616) Microsoft Windows Image Helper 131795770645297135 0x7ffac9f50000 1736704 C:\Windows\SYSTEM32\WindowsCodecs.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Microsoft Windows Codecs Library 131795770645297135 0x7ffaca340000 1593344 C:\Windows\SYSTEM32\PROPSYS.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Система страниц свойств (Майкрософт) 131795770645297135 0x7ffaca5e0000 155648 C:\Windows\SYSTEM32\dwmapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Интерфейс API диспетчера окон рабочего стола (Майкрософт) 131795770645297135 0x7ffaca770000 1380352 C:\Windows\system32\dcomp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft DirectComposition Library 131795770645297135 0x7ffacadf0000 499712 C:\Windows\system32\apphelp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиентская библиотека совместимости приложений 131795770645297135 0x7ffacaf00000 610304 C:\Windows\SYSTEM32\uxtheme.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека тем UxTheme (Microsoft) 131795770645297135 0x7ffacb1e0000 1163264 C:\Windows\system32\twinapi.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation twinapi.appcore 131795770645297135 0x7ffacb780000 651264 C:\Windows\system32\dxgi.dll 10.0.14393.953 (rs1_release_inmarket.170303-1614) Microsoft Corporation DirectX Graphics Infrastructure 131795770645297135 0x7ffacc620000 176128 C:\Windows\system32\bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795770645297135 0x7ffacc6e0000 61440 C:\Windows\System32\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795770645297135 0x7ffacc6f0000 311296 C:\Windows\System32\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795770645297135 0x7ffacc740000 81920 C:\Windows\System32\profapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Profile Basic API 131795770645297135 0x7ffacc8f0000 1003520 C:\Windows\System32\ucrtbase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645297135 0x7ffacc9f0000 434176 C:\Windows\System32\bcryptPrimitives.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Cryptographic Primitives Library 131795770645297135 0x7ffacca60000 122880 C:\Windows\System32\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795770645297135 0x7ffaccae0000 692224 C:\Windows\System32\shcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795770645297135 0x7ffaccb90000 7180288 C:\Windows\System32\windows.storage.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API хранения Microsoft WinRT 131795770645297135 0x7ffacd270000 2215936 C:\Windows\System32\KERNELBASE.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645297135 0x7ffacd710000 638976 C:\Windows\System32\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645297135 0x7ffacd7b0000 270336 C:\Windows\System32\cfgmgr32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Configuration Manager DLL 131795770645297135 0x7ffacd810000 22056960 C:\Windows\System32\SHELL32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Общая библиотека оболочки Windows 131795770645297135 0x7ffaced20000 782336 C:\Windows\System32\OLEAUT32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795770645297135 0x7ffacee50000 1183744 C:\Windows\System32\RPCRT4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795770645297135 0x7ffacef90000 647168 C:\Windows\System32\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795770645297135 0x7ffacf030000 651264 C:\Windows\System32\clbcatq.dll 2001.12.10941.16384 (rs1_release.160715-1616) Microsoft Corporation COM+ Configuration Catalog 131795770645297135 0x7ffacf0d0000 704512 C:\Windows\System32\KERNEL32.DLL 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645297135 0x7ffacf1e0000 1417216 C:\Windows\System32\MSCTF.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Серверная библиотека MSCTF 131795770645297135 0x7ffacf770000 212992 C:\Windows\System32\GDI32.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation GDI Client DLL 131795770645297135 0x7ffacf820000 434176 C:\Windows\System32\WS2_32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation 32-разрядная библиотека Windows Socket 2.0 131795770645297135 0x7ffacf890000 188416 C:\Windows\System32\IMM32.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Multi-User Windows IMM32 API Client DLL 131795770645297135 0x7ffacf8c0000 1462272 C:\Windows\System32\USER32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795770645297135 0x7ffacfa30000 1024000 C:\Windows\System32\COMDLG32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека общих диалоговых окон 131795770645297135 0x7ffacfb30000 2916352 C:\Windows\System32\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795770645297135 0x7ffacfe20000 663552 C:\Windows\System32\advapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795770645297135 0x7ffad0070000 1277952 C:\Windows\System32\ole32.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft OLE для Windows 131795770645297135 0x7ffad01b0000 335872 C:\Windows\System32\SHLWAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека небольших программ оболочки 131795770645297135 0x7ffad0210000 364544 C:\Windows\System32\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795770645297135 0x7ffad0270000 1908736 C:\Windows\SYSTEM32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 2 10560 3108 11 00000000:0031f1ab 131795770594566098 0 0 0 Обязательная метка\Высокий обязательный уровень WIN-0UOTFKKVN1S\User Procmon.exe C:\Users\User\Downloads\ProcessMonitor\Procmon.exe "C:\Users\User\Downloads\ProcessMonitor\Procmon.exe" Sysinternals - www.sysinternals.com 3.50 Process Monitor 131795770645662037 0x1000000 2191360 C:\Users\User\Downloads\ProcessMonitor\Procmon.exe 3.50 Sysinternals - www.sysinternals.com Process Monitor 131795770645662037 0x5c020000 335872 C:\Windows\System32\wow64.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation Win32 Emulation on NT64 131795770645662037 0x5c080000 487424 C:\Windows\System32\wow64win.dll 10.0.14393.1884 (rs1_release.171101-1233) Microsoft Corporation Wow64 Console and Win32 API Logging 131795770645662037 0x5c100000 40960 C:\Windows\System32\wow64cpu.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation AMD64 Wow64 CPU 131795770645662037 0x60750000 1556480 C:\Program Files (x86)\360\Total Security\safemon\safemon.dll 8, 4, 0, 1420 Qihu 360 Software Co., Ltd. 360 Internet Security Internet Protection 131795770645662037 0x62530000 65536 C:\Windows\SysWOW64\DEVRTL.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Device Management Run Time Library 131795770645662037 0x627d0000 249856 C:\Windows\SysWOW64\edputil.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служебная программа EDP 131795770645662037 0x67690000 61440 C:\Windows\SysWOW64\sfc_os.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows File Protection 131795770645662037 0x676b0000 32768 C:\Windows\SysWOW64\FLTLIB.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека фильтров 131795770645662037 0x6dd70000 528384 C:\Windows\SysWOW64\RICHED20.dll 5.31.23.1231 Microsoft Corporation Rich Text Edit Control, v3.1 131795770645662037 0x6e710000 335872 C:\Windows\SysWOW64\Bcp47Langs.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation BCP47 Language Classes 131795770645662037 0x70a20000 94208 C:\Windows\SysWOW64\USP10.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Uniscribe Unicode script processor 131795770645662037 0x70ca0000 45056 C:\Windows\SysWOW64\NETUTILS.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API Helpers DLL 131795770645662037 0x70cb0000 65536 C:\Windows\SysWOW64\WKSCLI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Workstation Service Client DLL 131795770645662037 0x70cd0000 49152 C:\Windows\SysWOW64\pcacli.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Program Compatibility Assistant Client Module 131795770645662037 0x70ec0000 200704 C:\Windows\SysWOW64\msls31.dll 3.10.349.0 Microsoft Corporation Microsoft Line Services library file 131795770645662037 0x71140000 77824 C:\Windows\SysWOW64\NETAPI32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API DLL 131795770645662037 0x72520000 24576 C:\Windows\SysWOW64\Riched32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Wrapper Dll for Richedit 1.0 131795770645662037 0x725e0000 2273280 C:\Windows\SysWOW64\iertutil.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служебная программа времени выполнения для Internet Explorer 131795770645662037 0x728e0000 1372160 C:\Windows\SysWOW64\PROPSYS.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Система страниц свойств (Майкрософт) 131795770645662037 0x72b90000 126976 C:\Windows\SysWOW64\dwmapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Интерфейс API диспетчера окон рабочего стола (Майкрософт) 131795770645662037 0x72cc0000 1658880 C:\Windows\SysWOW64\urlmon.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширения OLE32 для Win32 131795770645662037 0x74110000 479232 C:\Windows\SysWOW64\uxtheme.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека тем UxTheme (Microsoft) 131795770645662037 0x74190000 110592 C:\Windows\SysWOW64\bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795770645662037 0x744d0000 2138112 C:\Windows\WinSxS\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.14393.953_none_89c2555adb023171\COMCTL32.dll 6.10 (rs1_release_inmarket.170303-1614) Microsoft Corporation Библиотека элементов управления взаимодействия с пользователем 131795770645662037 0x746e0000 32768 C:\Windows\SysWOW64\VERSION.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Version Checking and File Installation Libraries 131795770645662037 0x746f0000 106496 C:\Windows\SysWOW64\USERENV.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Userenv 131795770645662037 0x74710000 90112 C:\Windows\SysWOW64\MPR.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека маршрутизации для нескольких служб доступа 131795770645662037 0x74730000 598016 C:\Windows\SysWOW64\apphelp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиентская библиотека совместимости приложений 131795770645662037 0x747d0000 40960 C:\Windows\SysWOW64\CRYPTBASE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base cryptographic API DLL 131795770645662037 0x747e0000 126976 C:\Windows\SysWOW64\SspiCli.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Security Support Provider Interface 131795770645662037 0x74800000 151552 C:\Windows\SysWOW64\IMM32.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Multi-User Windows IMM32 API Client DLL 131795770645662037 0x74910000 2170880 C:\Windows\SysWOW64\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795770645662037 0x74b30000 53248 C:\Windows\SysWOW64\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795770645662037 0x74b60000 790528 C:\Windows\SysWOW64\RPCRT4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795770645662037 0x74c30000 1417216 C:\Windows\SysWOW64\gdi32full.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation GDI Client DLL 131795770645662037 0x74d90000 24576 C:\Windows\SysWOW64\PSAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Process Status Helper 131795770645662037 0x74da0000 778240 C:\Windows\SysWOW64\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795770645662037 0x74e60000 557056 C:\Windows\SysWOW64\shcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795770645662037 0x74ef0000 540672 C:\Windows\SysWOW64\clbcatq.dll 2001.12.10941.16384 (rs1_release.160715-1616) Microsoft Corporation COM+ Configuration Catalog 131795770645662037 0x74fd0000 405504 C:\Windows\SysWOW64\WS2_32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation 32-разрядная библиотека Windows Socket 2.0 131795770645662037 0x75040000 282624 C:\Windows\SysWOW64\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795770645662037 0x75090000 1265664 C:\Windows\SysWOW64\MSCTF.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Серверная библиотека MSCTF 131795770645662037 0x751e0000 1708032 C:\Windows\SysWOW64\KERNELBASE.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645662037 0x75390000 266240 C:\Windows\SysWOW64\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795770645662037 0x75560000 487424 C:\Windows\SysWOW64\advapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795770645662037 0x756c0000 5693440 C:\Windows\SysWOW64\windows.storage.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API хранения Microsoft WinRT 131795770645662037 0x75c90000 286720 C:\Windows\SysWOW64\SHLWAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека небольших программ оболочки 131795770645662037 0x75ce0000 20811776 C:\Windows\SysWOW64\SHELL32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Общая библиотека оболочки Windows 131795770645662037 0x770c0000 4239360 C:\Windows\SysWOW64\SETUPAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Setup API 131795770645662037 0x774d0000 86016 C:\Windows\SysWOW64\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795770645662037 0x774f0000 61440 C:\Windows\SysWOW64\profapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Profile Basic API 131795770645662037 0x77560000 1437696 C:\Windows\SysWOW64\USER32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795770645662037 0x776c0000 368640 C:\Windows\SysWOW64\bcryptPrimitives.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation Windows Cryptographic Primitives Library 131795770645662037 0x77780000 503808 C:\Windows\SysWOW64\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645662037 0x77800000 606208 C:\Windows\SysWOW64\OLEAUT32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795770645662037 0x77ac0000 966656 C:\Windows\SysWOW64\ole32.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft OLE для Windows 131795770645662037 0x77bb0000 176128 C:\Windows\SysWOW64\GDI32.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation GDI Client DLL 131795770645662037 0x77be0000 937984 C:\Windows\SysWOW64\COMDLG32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека общих диалоговых окон 131795770645662037 0x77cd0000 221184 C:\Windows\SysWOW64\cfgmgr32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Configuration Manager DLL 131795770645662037 0x77d20000 1585152 C:\Windows\SysWOW64\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 131795770645662037 0x7ffad0270000 1908736 C:\Windows\SYSTEM32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 3 4048 580 4 00000000:000003e7 131765778109600457 0 0 1 Обязательная метка\Обязательный уровень системы NT AUTHORITY\СИСТЕМА SearchIndexer.exe C:\Windows\system32\SearchIndexer.exe C:\Windows\system32\SearchIndexer.exe /Embedding Microsoft Corporation 7.0.14393.0 (rs1_release.160715-1616) Индексатор службы Microsoft Windows Search 131795770645302950 0x7ff63db40000 929792 C:\Windows\system32\SearchIndexer.exe 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Индексатор службы Microsoft Windows Search 131795770645302950 0x7ffab1fd0000 2277376 C:\Windows\System32\msxml3.dll 8.110.14393.1532 Microsoft Corporation MSXML 3.0 131795770645302950 0x7ffab4b90000 655360 C:\Windows\System32\StructuredQuery.dll 7.0.14393.2068 (rs1_release.180209-1727) Microsoft Corporation Structured Query 131795770645302950 0x7ffab7780000 2576384 C:\Windows\system32\MSSRCH.DLL 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Встроенный поиск (Майкрософт) 131795770645302950 0x7ffab7a00000 3424256 C:\Windows\system32\TQUERY.DLL 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Запросы Microsoft Tripoli 131795770645302950 0x7ffabd990000 720896 C:\Windows\system32\ElsLad.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ELS Language Detection 131795770645302950 0x7ffabe4d0000 286720 C:\Windows\System32\MSWB7.dll 10.0.14393.1737 (rs1_release_inmarket.170914-1249) Microsoft Corporation MSWB7 DLL 131795770645302950 0x7ffabf010000 98304 C:\Windows\SYSTEM32\elscore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL ядра платформы Els 131795770645302950 0x7ffac0bf0000 3559424 C:\Windows\System32\ActXPrxy.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation ActiveX Interface Marshaling Library 131795770645302950 0x7ffac2960000 143360 C:\Windows\system32\mssprxy.dll 7.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation Microsoft Search Proxy 131795770645302950 0x7ffac34c0000 81920 C:\Windows\system32\vss_ps.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation Microsoft® Volume Shadow Copy Service proxy/stub 131795770645302950 0x7ffac3840000 3088384 C:\Windows\system32\ESENT.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширяемая подсистема хранения данных ESE для Microsoft(R) Windows(R) 131795770645302950 0x7ffac4000000 274432 C:\Windows\SYSTEM32\policymanager.dll 10.0.14393.2035 (rs1_release_inmarket.180110-1910) Microsoft Corporation Policy Manager DLL 131795770645302950 0x7ffac4e70000 102400 C:\Windows\system32\samcli.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Security Accounts Manager Client DLL 131795770645302950 0x7ffac6410000 98304 C:\Windows\system32\VssTrace.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека трассировки службы теневого копирования тома Microsoft® 131795770645302950 0x7ffac6430000 1581056 C:\Windows\SYSTEM32\vssapi.dll 10.0.14393.953 (rs1_release_inmarket.170303-1614) Microsoft Corporation Microsoft® Volume Shadow Copy Requestor/Writer Services API DLL 131795770645302950 0x7ffac7e40000 28672 C:\Windows\system32\Msidle.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Idle Monitor 131795770645302950 0x7ffac9bb0000 479232 C:\Windows\System32\ES.DLL 2001.12.10941.16384 (rs1_release.160715-1616) Microsoft Corporation COM+ 131795770645302950 0x7ffaca340000 1593344 C:\Windows\system32\propsys.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Система страниц свойств (Майкрософт) 131795770645302950 0x7ffaca4e0000 77824 C:\Windows\SYSTEM32\wtsapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Remote Desktop Session Host Server SDK APIs 131795770645302950 0x7ffaca570000 421888 C:\Windows\system32\Bcp47Langs.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation BCP47 Language Classes 131795770645302950 0x7ffaca610000 143360 C:\Windows\system32\SAMLIB.dll 10.0.14393.82 (rs1_release.160805-1735) Microsoft Corporation SAM Library DLL 131795770645302950 0x7ffacb140000 593920 C:\Windows\system32\msvcp110_win.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Microsoft® STL110 C++ Runtime Library 131795770645302950 0x7ffacb3f0000 163840 C:\Windows\system32\DEVOBJ.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Device Information Set DLL 131795770645302950 0x7ffacb420000 204800 C:\Windows\SYSTEM32\ntmarta.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик Windows NT MARTA 131795770645302950 0x7ffacbe20000 53248 C:\Windows\system32\netutils.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API Helpers DLL 131795770645302950 0x7ffacbe40000 126976 C:\Windows\system32\USERENV.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Userenv 131795770645302950 0x7ffacc170000 45056 C:\Windows\system32\CRYPTBASE.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base cryptographic API DLL 131795770645302950 0x7ffacc350000 180224 C:\Windows\system32\sspicli.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Security Support Provider Interface 131795770645302950 0x7ffacc520000 622592 C:\Windows\SYSTEM32\sxs.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Fusion 2.5 131795770645302950 0x7ffacc5c0000 352256 C:\Windows\system32\WINSTA.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Winstation Library 131795770645302950 0x7ffacc620000 176128 C:\Windows\System32\bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795770645302950 0x7ffacc6e0000 61440 C:\Windows\System32\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795770645302950 0x7ffacc6f0000 311296 C:\Windows\System32\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795770645302950 0x7ffacc740000 81920 C:\Windows\System32\profapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Profile Basic API 131795770645302950 0x7ffacc8f0000 1003520 C:\Windows\System32\ucrtbase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645302950 0x7ffacc9f0000 434176 C:\Windows\System32\bcryptPrimitives.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Cryptographic Primitives Library 131795770645302950 0x7ffacca60000 122880 C:\Windows\System32\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795770645302950 0x7ffaccae0000 692224 C:\Windows\System32\shcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795770645302950 0x7ffaccb90000 7180288 C:\Windows\System32\Windows.Storage.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API хранения Microsoft WinRT 131795770645302950 0x7ffacd270000 2215936 C:\Windows\System32\KERNELBASE.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645302950 0x7ffacd710000 638976 C:\Windows\System32\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645302950 0x7ffacd7b0000 270336 C:\Windows\System32\cfgmgr32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Configuration Manager DLL 131795770645302950 0x7ffaced20000 782336 C:\Windows\System32\OLEAUT32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795770645302950 0x7ffacee50000 1183744 C:\Windows\System32\RPCRT4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795770645302950 0x7ffacef90000 647168 C:\Windows\System32\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795770645302950 0x7ffacf030000 651264 C:\Windows\System32\clbcatq.dll 2001.12.10941.16384 (rs1_release.160715-1616) Microsoft Corporation COM+ Configuration Catalog 131795770645302950 0x7ffacf0d0000 704512 C:\Windows\System32\KERNEL32.DLL 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645302950 0x7ffacf770000 212992 C:\Windows\System32\GDI32.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation GDI Client DLL 131795770645302950 0x7ffacf820000 434176 C:\Windows\System32\WS2_32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation 32-разрядная библиотека Windows Socket 2.0 131795770645302950 0x7ffacf8c0000 1462272 C:\Windows\System32\USER32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795770645302950 0x7ffacfb30000 2916352 C:\Windows\System32\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795770645302950 0x7ffacfe20000 663552 C:\Windows\System32\advapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795770645302950 0x7ffad0070000 1277952 C:\Windows\System32\ole32.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft OLE для Windows 131795770645302950 0x7ffad01b0000 335872 C:\Windows\System32\shlwapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека небольших программ оболочки 131795770645302950 0x7ffad0210000 364544 C:\Windows\System32\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795770645302950 0x7ffad0270000 1908736 C:\Windows\SYSTEM32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 4 580 484 17 00000000:000003e7 131765776275984299 0 0 1 Обязательная метка\Обязательный уровень системы NT AUTHORITY\СИСТЕМА services.exe C:\Windows\system32\services.exe C:\Windows\system32\services.exe Microsoft Corporation 10.0.14393.0 (rs1_release.160715-1616) Приложение служб и контроллеров 6 664 580 4 00000000:000003e7 131765776282506625 0 0 1 Обязательная метка\Обязательный уровень системы NT AUTHORITY\СИСТЕМА svchost.exe C:\Windows\system32\svchost.exe C:\Windows\system32\svchost.exe -k DcomLaunch Microsoft Corporation 10.0.14393.0 (rs1_release.160715-1616) Хост-процесс для служб Windows 131795770645375819 0x7ff718c20000 57344 C:\Windows\system32\svchost.exe 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Хост-процесс для служб Windows 131795770645375819 0x7ffabae40000 110592 C:\Windows\SYSTEM32\capauthz.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API авторизации возможностей 131795770645375819 0x7ffabc510000 90112 C:\Windows\system32\execmodelproxy.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ExecModelProxy 131795770645375819 0x7ffabc570000 94208 C:\Windows\SYSTEM32\licensemanagerapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation "LicenseManagerApi.DYNLINK" 131795770645375819 0x7ffabc6a0000 61440 C:\Windows\system32\SebBackgroundManagerPolicy.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation <d> SEB Background Manager Policy DLL 131795770645375819 0x7ffabc7e0000 73728 C:\Windows\system32\SmartCardBackgroundPolicy.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SmartCardBackgroundPolicy 131795770645375819 0x7ffabc8c0000 61440 C:\Windows\system32\CbtBackgroundManagerPolicy.dll 10.0.14393.479 (rs1_release.161110-2025) Microsoft Corporation <d> CBT Background Manager Policy DLL 131795770645375819 0x7ffabc8d0000 176128 C:\Windows\System32\ACPBackgroundManagerPolicy.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation <d> ACP Background Manager Policy DLL 131795770645375819 0x7ffabc900000 73728 C:\Windows\System32\BackgroundMediaPolicy.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation <d> Background Media Policy DLL 131795770645375819 0x7ffabc920000 270336 C:\Windows\SYSTEM32\execmodelclient.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation ExecModelClient 131795770645375819 0x7ffac0bf0000 3559424 C:\Windows\System32\ActXPrxy.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation ActiveX Interface Marshaling Library 131795770645375819 0x7ffac20d0000 110592 C:\Windows\system32\RmClient.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Resource Manager Client 131795770645375819 0x7ffac23c0000 331776 C:\Windows\System32\OneCoreCommonProxyStub.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation OneCore Common Proxy Stub 131795770645375819 0x7ffac42a0000 659456 C:\Windows\System32\StateRepository.Core.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation StateRepository Core 131795770645375819 0x7ffac4450000 86016 C:\Windows\SYSTEM32\usermgrcli.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation UserMgr API DLL 131795770645375819 0x7ffac46d0000 4161536 C:\Windows\System32\Windows.StateRepository.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Сервер Windows StateRepository API Server 131795770645375819 0x7ffac7720000 1601536 C:\Windows\System32\OneCoreUAPCommonProxyStub.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation OneCoreUAP Common Proxy Stub 131795770645375819 0x7ffaca250000 49152 C:\Windows\SYSTEM32\bi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Background Broker Infrastructure Client Library 131795770645375819 0x7ffaca4e0000 77824 C:\Windows\SYSTEM32\wtsapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Remote Desktop Session Host Server SDK APIs 131795770645375819 0x7ffaca640000 770048 c:\windows\system32\CoreMessaging.dll 10.0.14393.0 Microsoft Corporation Microsoft CoreMessaging Dll 131795770645375819 0x7ffaca740000 135168 c:\windows\system32\DAB.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL брокера активности компьютера 131795770645375819 0x7ffacabd0000 69632 C:\Windows\System32\OnDemandBrokerClient.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation OnDemandBrokerClient 131795770645375819 0x7ffacad70000 278528 c:\windows\system32\BrokerLib.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Broker Base Library 131795770645375819 0x7ffacadf0000 499712 C:\Windows\system32\apphelp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиентская библиотека совместимости приложений 131795770645375819 0x7ffacae70000 409600 c:\windows\system32\systemeventsbrokerserver.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Брокер системных событий 131795770645375819 0x7ffacafc0000 229376 C:\Windows\SYSTEM32\resourcepolicyserver.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Resource Policy RM Service Extension 131795770645375819 0x7ffacb000000 53248 c:\windows\system32\SYSNTFY.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Windows Notifications Dynamic Link Library 131795770645375819 0x7ffacb010000 348160 C:\Windows\SYSTEM32\psmserviceexthost.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Resource Manager PSM Service Extension 131795770645375819 0x7ffacb070000 69632 C:\Windows\SYSTEM32\embeddedmodesvcapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Embedded Mode Service Client DLL 131795770645375819 0x7ffacb140000 593920 c:\windows\system32\msvcp110_win.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Microsoft® STL110 C++ Runtime Library 131795770645375819 0x7ffacb1e0000 1163264 C:\Windows\SYSTEM32\twinapi.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation twinapi.appcore 131795770645375819 0x7ffacb300000 364544 c:\windows\system32\VEEventDispatcher.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Visual Element Event dispatcher 131795770645375819 0x7ffacb390000 225280 c:\windows\system32\psmsrv.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Process State Manager (PSM) Service 131795770645375819 0x7ffacb3d0000 110592 c:\windows\system32\ResourcePolicyClient.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Resource Policy Client 131795770645375819 0x7ffacb3f0000 163840 c:\windows\system32\DEVOBJ.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Device Information Set DLL 131795770645375819 0x7ffacb420000 204800 C:\Windows\SYSTEM32\ntmarta.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик Windows NT MARTA 131795770645375819 0x7ffacb4f0000 794624 c:\windows\system32\bisrv.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служба инфраструктуры фоновых задач 131795770645375819 0x7ffacb5c0000 913408 c:\windows\system32\rpcss.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Distributed COM Services 131795770645375819 0x7ffacb6e0000 49152 C:\Windows\SYSTEM32\HID.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека пользователя HID 131795770645375819 0x7ffacb6f0000 143360 C:\Windows\SYSTEM32\gpapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиентские функции API групповой политики 131795770645375819 0x7ffacb720000 344064 c:\windows\system32\mintdh.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Вспомогательная библиотека трассировки событий 131795770645375819 0x7ffacb780000 651264 c:\windows\system32\dxgi.dll 10.0.14393.953 (rs1_release_inmarket.170303-1614) Microsoft Corporation DirectX Graphics Infrastructure 131795770645375819 0x7ffacb820000 712704 C:\Windows\SYSTEM32\tdh.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Вспомогательная библиотека трассировки событий 131795770645375819 0x7ffacb8d0000 114688 C:\Windows\SYSTEM32\umpoext.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширения службы пользовательского режима питания 131795770645375819 0x7ffacb8f0000 147456 c:\windows\system32\umpo.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служба пользовательского режима питания 131795770645375819 0x7ffacb920000 81920 C:\Windows\SYSTEM32\WLDP.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Политика блокировки Windows 131795770645375819 0x7ffacb940000 131072 c:\windows\system32\umpnpmgr.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Пользовательский режим службы самонастройки (Plug-and-Play) 131795770645375819 0x7ffacbbb0000 208896 C:\Windows\system32\rsaenh.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Enhanced Cryptographic Provider 131795770645375819 0x7ffacbbf0000 40960 C:\Windows\SYSTEM32\DPAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Data Protection API 131795770645375819 0x7ffacbe40000 126976 C:\Windows\System32\Userenv.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Userenv 131795770645375819 0x7ffacc150000 94208 C:\Windows\SYSTEM32\CRYPTSP.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Cryptographic Service Provider API 131795770645375819 0x7ffacc170000 45056 C:\Windows\System32\CRYPTBASE.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base cryptographic API DLL 131795770645375819 0x7ffacc350000 180224 c:\windows\system32\SspiCli.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Security Support Provider Interface 131795770645375819 0x7ffacc500000 102400 c:\windows\system32\EventAggregation.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Event Aggregation User Mode Library 131795770645375819 0x7ffacc5c0000 352256 C:\Windows\SYSTEM32\WINSTA.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Winstation Library 131795770645375819 0x7ffacc620000 176128 c:\windows\system32\bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795770645375819 0x7ffacc6e0000 61440 C:\Windows\System32\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795770645375819 0x7ffacc6f0000 311296 C:\Windows\System32\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795770645375819 0x7ffacc740000 81920 C:\Windows\System32\profapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Profile Basic API 131795770645375819 0x7ffacc760000 65536 C:\Windows\System32\MSASN1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ASN.1 Runtime APIs 131795770645375819 0x7ffacc8f0000 1003520 C:\Windows\System32\ucrtbase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645375819 0x7ffacc9f0000 434176 C:\Windows\System32\bcryptPrimitives.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Cryptographic Primitives Library 131795770645375819 0x7ffacca60000 122880 C:\Windows\System32\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795770645375819 0x7ffacca80000 348160 C:\Windows\System32\WINTRUST.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation Microsoft Trust Verification APIs 131795770645375819 0x7ffaccae0000 692224 C:\Windows\System32\shcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795770645375819 0x7ffaccb90000 7180288 C:\Windows\System32\windows.storage.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API хранения Microsoft WinRT 131795770645375819 0x7ffacd270000 2215936 C:\Windows\System32\KERNELBASE.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645375819 0x7ffacd490000 1871872 C:\Windows\System32\CRYPT32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API32 криптографии 131795770645375819 0x7ffacd710000 638976 C:\Windows\System32\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645375819 0x7ffacd7b0000 270336 C:\Windows\System32\cfgmgr32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Configuration Manager DLL 131795770645375819 0x7ffaced20000 782336 C:\Windows\System32\OLEAUT32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795770645375819 0x7ffacede0000 450560 C:\Windows\System32\coml2.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft COM for Windows 131795770645375819 0x7ffacee50000 1183744 C:\Windows\System32\RPCRT4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795770645375819 0x7ffacef90000 647168 C:\Windows\System32\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795770645375819 0x7ffacf030000 651264 C:\Windows\System32\clbcatq.dll 2001.12.10941.16384 (rs1_release.160715-1616) Microsoft Corporation COM+ Configuration Catalog 131795770645375819 0x7ffacf0d0000 704512 C:\Windows\System32\KERNEL32.DLL 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645375819 0x7ffacf770000 212992 C:\Windows\System32\gdi32.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation GDI Client DLL 131795770645375819 0x7ffacf8c0000 1462272 C:\Windows\System32\USER32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795770645375819 0x7ffacfb30000 2916352 C:\Windows\System32\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795770645375819 0x7ffacfe20000 663552 C:\Windows\System32\advapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795770645375819 0x7ffad0070000 1277952 C:\Windows\System32\ole32.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft OLE для Windows 131795770645375819 0x7ffad01b0000 335872 C:\Windows\System32\shlwapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека небольших программ оболочки 131795770645375819 0x7ffad0210000 364544 C:\Windows\System32\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795770645375819 0x7ffad0270000 1908736 C:\Windows\SYSTEM32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 7 884 580 4 00000000:000003e5 131765776292813936 0 0 1 Обязательная метка\Обязательный уровень системы NT AUTHORITY\LOCAL SERVICE svchost.exe C:\Windows\System32\svchost.exe C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted Microsoft Corporation 10.0.14393.0 (rs1_release.160715-1616) Хост-процесс для служб Windows 131795770645326170 0x7ff718c20000 57344 C:\Windows\System32\svchost.exe 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Хост-процесс для служб Windows 131795770645326170 0x7ffab9230000 143360 C:\Windows\SYSTEM32\bluetoothapis.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Bluetooth Usermode Api host 131795770645326170 0x7ffab9580000 118784 C:\Windows\system32\BthRadioMedia.dll 10.0.14393.351 (rs1_release_inmarket.161014-1755) Microsoft Corporation Bluetooth Radio Media Provider 131795770645326170 0x7ffab95a0000 77824 C:\Windows\system32\WlanRadioManager.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Wlan Radio Manager 131795770645326170 0x7ffaba920000 155648 c:\windows\system32\rmapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Radio Manager API 131795770645326170 0x7ffabae80000 69632 C:\Windows\system32\NfcRadioMedia.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation NFC Radio Media Provider 131795770645326170 0x7ffabb8a0000 81920 C:\Windows\system32\XboxGipRadioManager.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Xbox GIP Radio Manager 131795770645326170 0x7ffabc0e0000 81920 C:\Windows\system32\WwanRadioManager.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Wwan Radio Manager 131795770645326170 0x7ffabc510000 90112 C:\Windows\system32\execmodelproxy.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ExecModelProxy 131795770645326170 0x7ffabe850000 155648 C:\Windows\System32\IDStore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Identity Store 131795770645326170 0x7ffac05f0000 94208 C:\Windows\SYSTEM32\wwapi.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation WWAN API 131795770645326170 0x7ffac0bf0000 3559424 C:\Windows\System32\ActXPrxy.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation ActiveX Interface Marshaling Library 131795770645326170 0x7ffac1fd0000 999424 C:\Windows\system32\wbem\fastprox.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation WMI Custom Marshaller 131795770645326170 0x7ffac21d0000 81920 C:\Windows\system32\wbem\wbemsvc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation WMI 131795770645326170 0x7ffac23c0000 331776 C:\Windows\System32\OneCoreCommonProxyStub.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation OneCore Common Proxy Stub 131795770645326170 0x7ffac41a0000 77824 C:\Windows\System32\fdproxy.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation Function Discovery Proxy Dll 131795770645326170 0x7ffac4220000 520192 C:\Windows\SYSTEM32\wbemcomn.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation WMI 131795770645326170 0x7ffac4450000 86016 C:\Windows\SYSTEM32\usermgrcli.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation UserMgr API DLL 131795770645326170 0x7ffac4470000 65536 C:\Windows\system32\wbem\wbemprox.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation WMI 131795770645326170 0x7ffac4df0000 462848 c:\windows\system32\provsvc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Домашняя группа Windows 131795770645326170 0x7ffac60e0000 221184 C:\Windows\System32\XmlLite.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft XmlLite Library 131795770645326170 0x7ffac6710000 172032 C:\Windows\System32\FunDisc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL обнаружения функции 131795770645326170 0x7ffac69c0000 839680 c:\windows\system32\WINHTTP.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Службы HTTP Windows 131795770645326170 0x7ffac78c0000 163840 C:\Windows\System32\shacct.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Shell Accounts Classes 131795770645326170 0x7ffac79c0000 57344 C:\Windows\System32\npmproxy.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Network List Manager Proxy 131795770645326170 0x7ffac7aa0000 401408 C:\Windows\system32\wlanapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows WLAN AutoConfig Client Side API DLL 131795770645326170 0x7ffac7f80000 208896 c:\windows\system32\wscsvc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служба центра обеспечения безопасности Windows 131795770645326170 0x7ffac83d0000 106496 C:\Windows\SYSTEM32\dhcpcsvc.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служба DHCP-клиента 131795770645326170 0x7ffac83f0000 90112 C:\Windows\SYSTEM32\dhcpcsvc6.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиент DHCPv6 131795770645326170 0x7ffac8490000 294912 C:\Windows\System32\dhcpcore6.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиент DHCPv6 131795770645326170 0x7ffac8810000 45056 C:\Windows\SYSTEM32\WINNSI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Network Store Information RPC interface 131795770645326170 0x7ffac8c90000 385024 c:\windows\system32\dhcpcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служба DHCP-клиента 131795770645326170 0x7ffac8df0000 1646592 c:\windows\system32\dbghelp.dll 10.0.14321.1024 (rs1_release.160715-1616) Microsoft Windows Image Helper 131795770645326170 0x7ffac9c30000 1732608 c:\windows\system32\wevtsvc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служба протоколирования событий 131795770645326170 0x7ffaca250000 49152 C:\Windows\SYSTEM32\bi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Background Broker Infrastructure Client Library 131795770645326170 0x7ffaca2a0000 192512 c:\windows\system32\timebrokerserver.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Брокер событий времени 131795770645326170 0x7ffaca330000 36864 c:\windows\system32\nrpsrv.DLL 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Name Resolution Proxy (NRP) RPC interface 131795770645326170 0x7ffaca340000 1593344 C:\Windows\system32\propsys.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Система страниц свойств (Майкрософт) 131795770645326170 0x7ffaca4d0000 53248 c:\windows\system32\lmhsvc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL служб транспорта TCPIP NetBios 131795770645326170 0x7ffaca4e0000 77824 C:\Windows\SYSTEM32\wtsapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Remote Desktop Session Host Server SDK APIs 131795770645326170 0x7ffaca610000 143360 C:\Windows\System32\SAMLIB.dll 10.0.14393.82 (rs1_release.160805-1735) Microsoft Corporation SAM Library DLL 131795770645326170 0x7ffacad70000 278528 c:\windows\system32\BrokerLib.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Broker Base Library 131795770645326170 0x7ffacb1e0000 1163264 C:\Windows\System32\twinapi.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation twinapi.appcore 131795770645326170 0x7ffacb360000 176128 C:\Windows\SYSTEM32\fwbase.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Firewall Base DLL 131795770645326170 0x7ffacb3f0000 163840 c:\windows\system32\DEVOBJ.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Device Information Set DLL 131795770645326170 0x7ffacb420000 204800 C:\Windows\SYSTEM32\ntmarta.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик Windows NT MARTA 131795770645326170 0x7ffacb460000 548864 C:\Windows\SYSTEM32\firewallapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API брандмауэра Windows 131795770645326170 0x7ffacb6e0000 49152 c:\windows\system32\HID.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека пользователя HID 131795770645326170 0x7ffacb6f0000 143360 C:\Windows\SYSTEM32\gpapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиентские функции API групповой политики 131795770645326170 0x7ffacb920000 81920 C:\Windows\SYSTEM32\WLDP.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Политика блокировки Windows 131795770645326170 0x7ffacbbb0000 208896 C:\Windows\system32\rsaenh.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Enhanced Cryptographic Provider 131795770645326170 0x7ffacbd30000 229376 C:\Windows\SYSTEM32\IPHLPAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API вспомогательного приложения IP 131795770645326170 0x7ffacbd70000 659456 C:\Windows\SYSTEM32\DNSAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Динамическая библиотека API DNS-клиента 131795770645326170 0x7ffacbe20000 53248 c:\windows\system32\netutils.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API Helpers DLL 131795770645326170 0x7ffacbe40000 126976 c:\windows\system32\USERENV.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Userenv 131795770645326170 0x7ffacbfb0000 376832 C:\Windows\system32\mswsock.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширение поставщика службы API Microsoft Windows Sockets 2.0 131795770645326170 0x7ffacc150000 94208 C:\Windows\SYSTEM32\CRYPTSP.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Cryptographic Service Provider API 131795770645326170 0x7ffacc170000 45056 C:\Windows\SYSTEM32\CRYPTBASE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base cryptographic API DLL 131795770645326170 0x7ffacc350000 180224 C:\Windows\System32\sspicli.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Security Support Provider Interface 131795770645326170 0x7ffacc5c0000 352256 C:\Windows\SYSTEM32\WINSTA.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Winstation Library 131795770645326170 0x7ffacc620000 176128 c:\windows\system32\bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795770645326170 0x7ffacc6e0000 61440 C:\Windows\System32\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795770645326170 0x7ffacc6f0000 311296 C:\Windows\System32\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795770645326170 0x7ffacc740000 81920 C:\Windows\System32\profapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Profile Basic API 131795770645326170 0x7ffacc760000 65536 C:\Windows\System32\MSASN1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ASN.1 Runtime APIs 131795770645326170 0x7ffacc8f0000 1003520 C:\Windows\System32\ucrtbase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645326170 0x7ffacc9f0000 434176 C:\Windows\System32\bcryptPrimitives.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Cryptographic Primitives Library 131795770645326170 0x7ffacca60000 122880 C:\Windows\System32\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795770645326170 0x7ffacca80000 348160 C:\Windows\System32\WINTRUST.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation Microsoft Trust Verification APIs 131795770645326170 0x7ffaccae0000 692224 C:\Windows\System32\shcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795770645326170 0x7ffacd270000 2215936 C:\Windows\System32\KERNELBASE.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645326170 0x7ffacd490000 1871872 C:\Windows\System32\CRYPT32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API32 криптографии 131795770645326170 0x7ffacd710000 638976 C:\Windows\System32\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645326170 0x7ffacd7b0000 270336 C:\Windows\System32\cfgmgr32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Configuration Manager DLL 131795770645326170 0x7ffaced20000 782336 C:\Windows\System32\OLEAUT32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795770645326170 0x7ffacede0000 450560 C:\Windows\System32\coml2.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft COM for Windows 131795770645326170 0x7ffacee50000 1183744 C:\Windows\System32\RPCRT4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795770645326170 0x7ffacef80000 32768 C:\Windows\System32\NSI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation NSI User-mode interface DLL 131795770645326170 0x7ffacef90000 647168 C:\Windows\System32\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795770645326170 0x7ffacf030000 651264 C:\Windows\System32\clbcatq.dll 2001.12.10941.16384 (rs1_release.160715-1616) Microsoft Corporation COM+ Configuration Catalog 131795770645326170 0x7ffacf0d0000 704512 C:\Windows\System32\KERNEL32.DLL 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645326170 0x7ffacf770000 212992 C:\Windows\System32\GDI32.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation GDI Client DLL 131795770645326170 0x7ffacf820000 434176 C:\Windows\System32\WS2_32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation 32-разрядная библиотека Windows Socket 2.0 131795770645326170 0x7ffacf8c0000 1462272 C:\Windows\System32\user32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795770645326170 0x7ffacfb30000 2916352 C:\Windows\System32\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795770645326170 0x7ffacfe00000 114688 C:\Windows\System32\imagehlp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT Image Helper 131795770645326170 0x7ffacfe20000 663552 C:\Windows\System32\ADVAPI32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795770645326170 0x7ffad0070000 1277952 C:\Windows\System32\ole32.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft OLE для Windows 131795770645326170 0x7ffad0210000 364544 C:\Windows\System32\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795770645326170 0x7ffad0270000 1908736 C:\Windows\SYSTEM32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 8 0 0 8 00000000:00000000 131765775874898587 0 4294967295 1 Idle Idle 131795770645349496 0x7ff7ed960000 1224704 C:\Users\User\AppData\Local\Temp\Procmon64.exe 3.50 Sysinternals - www.sysinternals.com Process Monitor 131795770645349496 0x7ffac1fd0000 999424 C:\Windows\system32\wbem\fastprox.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation WMI Custom Marshaller 131795770645349496 0x7ffac21d0000 81920 C:\Windows\system32\wbem\wbemsvc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation WMI 131795770645349496 0x7ffac2b80000 40960 C:\Windows\SYSTEM32\VERSION.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Version Checking and File Installation Libraries 131795770645349496 0x7ffac3270000 40960 C:\Windows\SYSTEM32\FLTLIB.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека фильтров 131795770645349496 0x7ffac4220000 520192 C:\Windows\SYSTEM32\wbemcomn.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation WMI 131795770645349496 0x7ffac4470000 65536 C:\Windows\system32\wbem\wbemprox.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation WMI 131795770645349496 0x7ffac5630000 339968 C:\Windows\System32\thumbcache.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Кэш эскизов Майкрософт 131795770645349496 0x7ffac6c40000 2596864 C:\Windows\WinSxS\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.14393.953_none_42151e83c686086b\COMCTL32.dll 6.10 (rs1_release_inmarket.170303-1614) Microsoft Corporation Библиотека элементов управления взаимодействия с пользователем 131795770645349496 0x7ffac84f0000 299008 C:\Windows\system32\dataexchange.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation Data exchange 131795770645349496 0x7ffac88a0000 2842624 C:\Windows\system32\d3d11.dll 10.0.14393.953 (rs1_release_inmarket.170303-1614) Microsoft Corporation Direct3D 11 Runtime 131795770645349496 0x7ffac8df0000 1646592 C:\Windows\SYSTEM32\dbghelp.dll 10.0.14321.1024 (rs1_release.160715-1616) Microsoft Windows Image Helper 131795770645349496 0x7ffac9f50000 1736704 C:\Windows\SYSTEM32\WindowsCodecs.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Microsoft Windows Codecs Library 131795770645349496 0x7ffaca340000 1593344 C:\Windows\SYSTEM32\PROPSYS.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Система страниц свойств (Майкрософт) 131795770645349496 0x7ffaca5e0000 155648 C:\Windows\SYSTEM32\dwmapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Интерфейс API диспетчера окон рабочего стола (Майкрософт) 131795770645349496 0x7ffaca770000 1380352 C:\Windows\system32\dcomp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft DirectComposition Library 131795770645349496 0x7ffacadf0000 499712 C:\Windows\system32\apphelp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиентская библиотека совместимости приложений 131795770645349496 0x7ffacaf00000 610304 C:\Windows\SYSTEM32\uxtheme.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека тем UxTheme (Microsoft) 131795770645349496 0x7ffacb1e0000 1163264 C:\Windows\system32\twinapi.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation twinapi.appcore 131795770645349496 0x7ffacb780000 651264 C:\Windows\system32\dxgi.dll 10.0.14393.953 (rs1_release_inmarket.170303-1614) Microsoft Corporation DirectX Graphics Infrastructure 131795770645349496 0x7ffacc620000 176128 C:\Windows\system32\bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795770645349496 0x7ffacc6e0000 61440 C:\Windows\System32\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795770645349496 0x7ffacc6f0000 311296 C:\Windows\System32\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795770645349496 0x7ffacc740000 81920 C:\Windows\System32\profapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Profile Basic API 131795770645349496 0x7ffacc8f0000 1003520 C:\Windows\System32\ucrtbase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645349496 0x7ffacc9f0000 434176 C:\Windows\System32\bcryptPrimitives.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Cryptographic Primitives Library 131795770645349496 0x7ffacca60000 122880 C:\Windows\System32\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795770645349496 0x7ffaccae0000 692224 C:\Windows\System32\shcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795770645349496 0x7ffaccb90000 7180288 C:\Windows\System32\windows.storage.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API хранения Microsoft WinRT 131795770645349496 0x7ffacd270000 2215936 C:\Windows\System32\KERNELBASE.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645349496 0x7ffacd710000 638976 C:\Windows\System32\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645349496 0x7ffacd7b0000 270336 C:\Windows\System32\cfgmgr32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Configuration Manager DLL 131795770645349496 0x7ffacd810000 22056960 C:\Windows\System32\SHELL32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Общая библиотека оболочки Windows 131795770645349496 0x7ffaced20000 782336 C:\Windows\System32\OLEAUT32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795770645349496 0x7ffacee50000 1183744 C:\Windows\System32\RPCRT4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795770645349496 0x7ffacef90000 647168 C:\Windows\System32\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795770645349496 0x7ffacf030000 651264 C:\Windows\System32\clbcatq.dll 2001.12.10941.16384 (rs1_release.160715-1616) Microsoft Corporation COM+ Configuration Catalog 131795770645349496 0x7ffacf0d0000 704512 C:\Windows\System32\KERNEL32.DLL 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645349496 0x7ffacf1e0000 1417216 C:\Windows\System32\MSCTF.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Серверная библиотека MSCTF 131795770645349496 0x7ffacf770000 212992 C:\Windows\System32\GDI32.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation GDI Client DLL 131795770645349496 0x7ffacf820000 434176 C:\Windows\System32\WS2_32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation 32-разрядная библиотека Windows Socket 2.0 131795770645349496 0x7ffacf890000 188416 C:\Windows\System32\IMM32.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Multi-User Windows IMM32 API Client DLL 131795770645349496 0x7ffacf8c0000 1462272 C:\Windows\System32\USER32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795770645349496 0x7ffacfa30000 1024000 C:\Windows\System32\COMDLG32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека общих диалоговых окон 131795770645349496 0x7ffacfb30000 2916352 C:\Windows\System32\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795770645349496 0x7ffacfe20000 663552 C:\Windows\System32\advapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795770645349496 0x7ffad0070000 1277952 C:\Windows\System32\ole32.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft OLE для Windows 131795770645349496 0x7ffad01b0000 335872 C:\Windows\System32\SHLWAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека небольших программ оболочки 131795770645349496 0x7ffad0210000 364544 C:\Windows\System32\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795770645349496 0x7ffad0270000 1908736 C:\Windows\SYSTEM32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 9 4 0 8 00000000:000003e7 131765775907178738 0 0 1 Обязательная метка\Обязательный уровень системы NT AUTHORITY\СИСТЕМА System System 131795770645349720 0xffffc709b6e00000 3698688 C:\Windows\System32\win32kfull.sys 10.0.14393.2189 (rs1_release.180329-1711) Microsoft Corporation Full/Desktop Win32k Kernel Driver 131795770645349720 0xffffc709b7190000 1576960 C:\Windows\System32\win32kbase.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Базовый драйвер ядра Win32k 131795770645349720 0xffffc709b7320000 40960 C:\Windows\System32\TSDDD.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Framebuffer Display Driver 131795770645349720 0xffffc709b7330000 258048 C:\Windows\System32\cdd.dll 10.0.14393.2189 (rs1_release.180329-1711) Microsoft Corporation Canonical Display Driver 131795770645349720 0xffffc709b74a0000 241664 C:\Windows\System32\win32k.sys 10.0.14393.594 (rs1_release_inmarket.161213-1754) Microsoft Corporation Full/Desktop Multi-User Win32 Driver 131795770645349720 0xfffff80278934000 45056 C:\Windows\system32\kd.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Local Kernel Debugger 131795770645349720 0xfffff80279678000 8527872 C:\Windows\system32\ntoskrnl.exe 10.0.14393.2189 (rs1_release.180329-1711) Microsoft Corporation NT Kernel & System 131795770645349720 0xfffff80d92e00000 163840 C:\Windows\System32\drivers\ksecdd.sys 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Kernel Security Support Provider Interface 131795770645349720 0xfffff80d92ee0000 53248 C:\Windows\System32\drivers\cmimcext.sys 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation Kernel Configuration Manager Initial Configuration Extension Host Export Driver 131795770645349720 0xfffff80d92ef0000 49152 C:\Windows\System32\drivers\ntosext.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation NTOS extension host driver 131795770645349720 0xfffff80d92fa0000 647168 C:\Windows\System32\drivers\cng.sys 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Kernel Cryptography, Next Generation 131795770645349720 0xfffff80d93040000 868352 C:\Windows\system32\drivers\Wdf01000.sys 1.19.14393.0 (rs1_release.160715-1616) Microsoft Corporation Среда выполнения платформы драйвера режима ядра 131795770645349720 0xfffff80d93120000 77824 C:\Windows\system32\drivers\WDFLDR.SYS 1.19.14393.0 (rs1_release.160715-1616) Microsoft Corporation Kernel Mode Driver Framework Loader 131795770645349720 0xfffff80d93140000 143360 C:\Windows\System32\Drivers\acpiex.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ACPIEx Driver 131795770645349720 0xfffff80d93170000 57344 C:\Windows\System32\Drivers\WppRecorder.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation WPP Trace Recorder 131795770645349720 0xfffff80d93180000 733184 C:\Windows\System32\drivers\ACPI.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ACPI драйвер для NT 131795770645349720 0xfffff80d93240000 49152 C:\Windows\System32\drivers\WMILIB.SYS 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation WMILIB WMI support library Dll 131795770645349720 0xfffff80d93260000 69632 C:\Windows\System32\drivers\intelpep.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Intel Power Engine Plugin 131795770645349720 0xfffff80d93280000 126976 C:\Windows\system32\drivers\WindowsTrustedRT.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Trusted Runtime Interface Driver 131795770645349720 0xfffff80d932a0000 45056 C:\Windows\System32\drivers\WindowsTrustedRTProxy.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Trusted Runtime Service Proxy Driver 131795770645349720 0xfffff80d932b0000 73728 C:\Windows\System32\drivers\pcw.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Performance Counters for Windows Driver 131795770645349720 0xfffff80d932d0000 45056 C:\Windows\System32\drivers\msisadrv.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ISA Driver 131795770645349720 0xfffff80d932e0000 45056 C:\Windows\System32\drivers\isapnp.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Драйвер шины PNP ISA 131795770645349720 0xfffff80d932f0000 356352 C:\Windows\System32\drivers\pci.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation NT Plug and Play PCI-перечислитель 131795770645349720 0xfffff80d93350000 73728 C:\Windows\System32\drivers\vdrvroot.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Virtual Drive Root Enumerator 131795770645349720 0xfffff80d93370000 135168 C:\Windows\system32\drivers\pdc.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Power Dependency Coordinator Driver 131795770645349720 0xfffff80d933a0000 102400 C:\Windows\system32\drivers\CEA.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Event Aggregation Kernel Mode Library 131795770645349720 0xfffff80d933c0000 147456 C:\Windows\System32\drivers\partmgr.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Partition driver 131795770645349720 0xfffff80d933f0000 163840 C:\Windows\System32\drivers\nvraid.sys 10.6.0.23 (PART_L3.131021-1012) NVIDIA Corporation NVIDIA® nForce(TM) RAID Driver 131795770645349720 0xfffff80d93420000 401408 C:\Windows\System32\drivers\CLASSPNP.SYS 10.0.14393.953 (rs1_release_inmarket.170303-1614) Microsoft Corporation SCSI Class System Dll 131795770645349720 0xfffff80d93490000 139264 C:\Windows\System32\drivers\vmbus.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Дочерний драйвер шины виртуальной машины Microsoft Hyper-V 131795770645349720 0xfffff80d934c0000 1212416 C:\Windows\System32\drivers\NDIS.SYS 10.0.14393.953 (rs1_release_inmarket.170303-1614) Microsoft Corporation NDIS (Network Driver Interface Specification) 131795770645349720 0xfffff80d935f0000 495616 C:\Windows\System32\drivers\NETIO.SYS 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Network I/O Subsystem 131795770645349720 0xfffff80d93670000 135168 C:\Windows\System32\drivers\hvsocket.sys 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Microsoft Hyper-V Socket Provider 131795770645349720 0xfffff80d936a0000 98304 C:\Windows\System32\drivers\vmbkmcl.sys 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Hyper-V VMBus KMCL 131795770645349720 0xfffff80d936c0000 57344 C:\Windows\System32\drivers\winhv.sys 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Windows Hypervisor Interface Driver 131795770645349720 0xfffff80d936d0000 40960 C:\Windows\System32\drivers\pciide.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Generic PCI IDE Bus Driver 131795770645349720 0xfffff80d936e0000 69632 C:\Windows\System32\drivers\PCIIDEX.SYS 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation PCI IDE Bus Driver Extension 131795770645349720 0xfffff80d93700000 593920 C:\Windows\System32\drivers\spaceport.sys 10.0.14393.1914 (rs1_release_inmarket.171117-1700) Microsoft Corporation Storage Spaces Driver 131795770645349720 0xfffff80d937a0000 40960 C:\Windows\System32\drivers\intelide.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Intel PCI IDE Driver 131795770645349720 0xfffff80d937b0000 98304 C:\Windows\System32\drivers\volmgr.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Драйвер диспетчера томов 131795770645349720 0xfffff80d937d0000 385024 C:\Windows\System32\drivers\volmgrx.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Драйвер расширения диспетчера томов 131795770645349720 0xfffff80d93830000 122880 C:\Windows\System32\drivers\mountmgr.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Диспетчер точек подключения 131795770645349720 0xfffff80d93850000 172032 C:\Windows\System32\drivers\nvstor.sys 10.6.0.23 (PART_L3.131021-1012) NVIDIA Corporation NVIDIA® nForce(TM) Sata Performance Driver 131795770645349720 0xfffff80d93880000 532480 C:\Windows\System32\drivers\storport.sys 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft Storage Port Driver 131795770645349720 0xfffff80d93910000 49152 C:\Windows\System32\drivers\atapi.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ATAPI IDE Miniport Driver 131795770645349720 0xfffff80d93920000 217088 C:\Windows\System32\drivers\ataport.SYS 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ATAPI Driver Extension 131795770645349720 0xfffff80d93960000 147456 C:\Windows\System32\drivers\storahci.sys 10.0.14393.2068 (rs1_release.180209-1727) Microsoft Corporation MS AHCI Storport Miniport Driver 131795770645349720 0xfffff80d93990000 102400 C:\Windows\System32\drivers\stornvme.sys 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation Microsoft NVM Express Storport Miniport Driver 131795770645349720 0xfffff80d939b0000 114688 C:\Windows\System32\drivers\EhStorClass.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Enhanced Storage Class driver for IEEE 1667 devices 131795770645349720 0xfffff80d939d0000 102400 C:\Windows\System32\drivers\fileinfo.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation FileInfo Filter Driver 131795770645349720 0xfffff80d939f0000 229376 C:\Windows\System32\Drivers\Wof.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Фильтр оверлея Windows 131795770645349720 0xfffff80d93a80000 2297856 C:\Windows\System32\Drivers\NTFS.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Драйвер файловой системы NT 131795770645349720 0xfffff80d93cc0000 57344 C:\Windows\System32\drivers\storvsc.sys 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Storage VSC Driver 131795770645349720 0xfffff80d93cd0000 53248 C:\Windows\System32\Drivers\Fs_Rec.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation File System Recognizer Driver 131795770645349720 0xfffff80d93d10000 483328 C:\Windows\System32\drivers\USBPORT.SYS 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Драйвер порта USB 1.1 и 2.0 131795770645349720 0xfffff80d93db0000 581632 C:\Windows\system32\mcupdate_GenuineIntel.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Intel Microcode Update Library 131795770645349720 0xfffff80d93e50000 405504 C:\Windows\System32\drivers\CLFS.SYS 10.0.14393.2068 (rs1_release.180209-1727) Microsoft Corporation Common Log File System Driver 131795770645349720 0xfffff80d93ec0000 151552 C:\Windows\System32\drivers\tm.sys 10.0.14393.2189 (rs1_release.180329-1711) Microsoft Corporation Kernel Transaction Manager Driver 131795770645349720 0xfffff80d93ef0000 94208 C:\Windows\system32\PSHED.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Драйвер аппаратных ошибок, специфичных для платформы 131795770645349720 0xfffff80d93f10000 49152 C:\Windows\system32\BOOTVID.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation VGA Boot Driver 131795770645349720 0xfffff80d93f20000 401408 C:\Windows\System32\drivers\FLTMGR.SYS 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Диспетчер фильтров файловых систем Майкрософт 131795770645349720 0xfffff80d93f90000 380928 C:\Windows\System32\drivers\msrpc.sys 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation Kernel Remote Procedure Call Provider 131795770645349720 0xfffff80d94000000 430080 C:\Windows\System32\drivers\fwpkclnt.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation FWP/IPsec Kernel-Mode API 131795770645349720 0xfffff80d94070000 172032 C:\Windows\System32\drivers\wfplwfs.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation WFP NDIS 6.30 Lightweight Filter Driver 131795770645349720 0xfffff80d940b0000 659456 C:\Windows\System32\DRIVERS\fvevol.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation BitLocker Drive Encryption Driver 131795770645349720 0xfffff80d94160000 45056 C:\Windows\System32\drivers\volume.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Volume driver 131795770645349720 0xfffff80d94170000 409600 C:\Windows\System32\drivers\volsnap.sys 10.0.14393.1794 (rs1_release.171008-1615) Microsoft Corporation Volume Shadow Copy driver 131795770645349720 0xfffff80d941e0000 106496 C:\Windows\System32\drivers\scmbus.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Storage Class Memory Bus Driver 131795770645349720 0xfffff80d94200000 294912 C:\Windows\System32\drivers\rdyboost.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ReadyBoost Driver 131795770645349720 0xfffff80d94250000 151552 C:\Windows\System32\Drivers\mup.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Драйвер поставщика множественных UNC 131795770645349720 0xfffff80d94280000 65536 C:\Windows\system32\drivers\iorate.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation I/O rate control Filter 131795770645349720 0xfffff80d942a0000 126976 C:\Windows\System32\drivers\disk.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation PnP Disk Driver 131795770645349720 0xfffff80d942e0000 102400 C:\Windows\System32\Drivers\crashdmp.sys 10.0.14393.351 (rs1_release_inmarket.161014-1755) Microsoft Corporation Crash Dump Driver 131795770645349720 0xfffff80d943c0000 200704 C:\Windows\System32\drivers\cdrom.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SCSI CD-ROM Driver 131795770645349720 0xfffff80d94400000 118784 C:\Windows\system32\drivers\filecrypt.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows sandboxing and encryption filter 131795770645349720 0xfffff80d94420000 57344 C:\Windows\system32\drivers\tbs.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Export driver for kernel mode TPM API 131795770645349720 0xfffff80d94430000 40960 C:\Windows\System32\Drivers\Null.SYS 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation NULL Driver 131795770645349720 0xfffff80d94440000 40960 C:\Windows\System32\Drivers\Beep.SYS 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation BEEP Driver 131795770645349720 0xfffff80d94450000 81920 C:\Windows\System32\drivers\BasicDisplay.sys 10.0.14393.1066 (rs1_release_sec.170327-1835) Microsoft Corporation Microsoft Basic Display Driver 131795770645349720 0xfffff80d94470000 81920 C:\Windows\System32\drivers\watchdog.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Watchdog Driver 131795770645349720 0xfffff80d94490000 2220032 C:\Windows\System32\drivers\dxgkrnl.sys 10.0.14393.2189 (rs1_release.180329-1711) Microsoft Corporation DirectX Graphics Kernel 131795770645349720 0xfffff80d946b0000 73728 C:\Windows\System32\drivers\BasicRender.sys 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation Microsoft Basic Render Driver 131795770645349720 0xfffff80d946d0000 102400 C:\Windows\System32\Drivers\Npfs.SYS 10.0.14393.1737 (rs1_release_inmarket.170914-1249) Microsoft Corporation NPFS Driver 131795770645349720 0xfffff80d94700000 143360 C:\Windows\system32\DRIVERS\tdx.sys 10.0.14393.1613 (rs1_release_d.170807-1806) Microsoft Corporation TDI Translation Driver 131795770645349720 0xfffff80d94740000 307200 C:\Windows\System32\DRIVERS\netbt.sys 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation MBT Transport driver 131795770645349720 0xfffff80d94790000 610304 C:\Windows\system32\drivers\afd.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Драйвер дополнительных функций для Winsock 131795770645349720 0xfffff80d94830000 102400 C:\Windows\System32\drivers\vwififlt.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Virtual WiFi Filter Driver 131795770645349720 0xfffff80d94850000 176128 C:\Windows\System32\drivers\pacer.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Планировщик пакетов QoS 131795770645349720 0xfffff80d94880000 73728 C:\Windows\system32\drivers\netbios.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation NetBIOS interface driver 131795770645349720 0xfffff80d948a0000 479232 C:\Windows\system32\DRIVERS\rdbss.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Драйвер подсистемы буферизации перенаправленного диска 131795770645349720 0xfffff80d94920000 581632 C:\Windows\system32\drivers\csc.sys 10.0.14393.953 (rs1_release_inmarket.170303-1614) Microsoft Corporation Windows Client Side Caching Driver 131795770645349720 0xfffff80d949b0000 106496 C:\Windows\system32\drivers\nsiproxy.sys 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation NSI Proxy 131795770645349720 0xfffff80d949d0000 53248 C:\Windows\System32\drivers\npsvctrig.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Named pipe service triggers 131795770645349720 0xfffff80d949f0000 40960 C:\Windows\System32\drivers\gpuenergydrv.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation GPU Energy Kernel Driver 131795770645349720 0xfffff80d94a00000 172032 C:\Windows\System32\Drivers\dfsc.sys 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation DFS Namespace Client Driver 131795770645349720 0xfffff80d94a50000 258048 C:\Windows\system32\DRIVERS\ahcache.sys 10.0.14393.351 (rs1_release_inmarket.161014-1755) Microsoft Corporation Application Compatibility Cache 131795770645349720 0xfffff80d94a90000 69632 C:\Windows\System32\DriverStore\FileRepository\compositebus.inf_amd64_a140581a8f8b58b7\CompositeBus.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Multi-Transport Composite Bus Enumerator 131795770645349720 0xfffff80d94ab0000 57344 C:\Windows\System32\drivers\kdnic.sys 6.01.00.0000 (rs1_release.160715-1616) Microsoft Corporation Microsoft Kernel Debugger Network Miniport 131795770645349720 0xfffff80d94ac0000 86016 C:\Windows\System32\drivers\umbus.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User-Mode Bus Enumerator 131795770645349720 0xfffff80d94ae0000 139264 C:\Windows\System32\drivers\i8042prt.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Драйвер порта i8042 131795770645349720 0xfffff80d94b10000 77824 C:\Windows\System32\drivers\kbdclass.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Драйвер класса клавиатуры 131795770645349720 0xfffff80d94b30000 73728 C:\Windows\System32\drivers\mouclass.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Драйвер класса мыши 131795770645349720 0xfffff80d94b80000 110592 C:\Windows\System32\drivers\HDAudBus.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation High Definition Audio Bus Driver 131795770645349720 0xfffff80d94ba0000 397312 C:\Windows\System32\drivers\portcls.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Port Class (Class Driver for Port/Miniport Devices) 131795770645349720 0xfffff80d94c10000 135168 C:\Windows\System32\drivers\drmk.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Trusted Audio Drivers 131795770645349720 0xfffff80d94c40000 425984 C:\Windows\System32\drivers\ks.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Kernel CSA Library 131795770645349720 0xfffff80d94cb0000 61440 C:\Windows\System32\drivers\usbohci.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation OHCI USB Miniport Driver 131795770645349720 0xfffff80d94cc0000 57344 C:\Windows\System32\drivers\CmBatt.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Control Method Battery Driver 131795770645349720 0xfffff80d94cd0000 57344 C:\Windows\System32\drivers\BATTC.SYS 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Battery Class Driver 131795770645349720 0xfffff80d94ce0000 176128 C:\Windows\System32\drivers\intelppm.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Processor Device Driver 131795770645349720 0xfffff80d94d10000 53248 C:\Windows\System32\drivers\NdisVirtualBus.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Перечислитель виртуальных сетевых адаптеров (Майкрософт) 131795770645349720 0xfffff80d94d20000 2588672 C:\Windows\System32\drivers\tcpip.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Драйвер TCP/IP 131795770645349720 0xfffff80d94fa0000 49152 C:\Windows\System32\drivers\swenum.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Plug and Play Software Device Enumerator 131795770645349720 0xfffff80d94fb0000 57344 C:\Windows\System32\drivers\rdpbus.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft RDP Bus Device driver 131795770645349720 0xfffff80d95200000 344064 C:\Windows\system32\DRIVERS\udfs.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation UDF File System Driver 131795770645349720 0xfffff80d95280000 61440 C:\Windows\System32\Drivers\dump_diskdump.sys 131795770645349720 0xfffff80d952c0000 147456 C:\Windows\System32\Drivers\dump_storahci.sys 131795770645349720 0xfffff80d95310000 118784 C:\Windows\System32\Drivers\dump_dumpfve.sys 131795770645349720 0xfffff80d95330000 1122304 C:\Windows\system32\drivers\HTTP.sys 10.0.14393.1532 (rs1_release_d.170711-1840) Microsoft Corporation Стек протокола HTTP 131795770645349720 0xfffff80d95450000 122880 C:\Windows\system32\drivers\WudfPf.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Driver Foundation - User-mode Driver Framework Platform Driver 131795770645349720 0xfffff80d95470000 139264 C:\Windows\system32\DRIVERS\bowser.sys 10.0.14393.447 (rs1_release_inmarket.161102-0100) Microsoft Corporation NT Lan Manager Datagram Receiver Driver 131795770645349720 0xfffff80d954a0000 479232 C:\Windows\system32\DRIVERS\mrxsmb.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT SMB Minirdr 131795770645349720 0xfffff80d95520000 102400 C:\Windows\System32\drivers\mpsdrv.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Protection Service Driver 131795770645349720 0xfffff80d95540000 241664 C:\Windows\system32\DRIVERS\mrxsmb20.sys 10.0.14393.2035 (rs1_release_inmarket.180110-1910) Microsoft Corporation Longhorn SMB 2.0 Redirector 131795770645349720 0xfffff80d95580000 278528 C:\Windows\System32\DRIVERS\srvnet.sys 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Server Network driver 131795770645349720 0xfffff80d955d0000 741376 C:\Windows\System32\DRIVERS\srv2.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Драйвер сервера SMB 2.0 131795770645349720 0xfffff80d95690000 315392 C:\Windows\system32\DRIVERS\mrxsmb10.sys 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Longhorn SMB Downlevel SubRdr 131795770645349720 0xfffff80d956e0000 573440 C:\Windows\System32\DRIVERS\srv.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Server driver 131795770645349720 0xfffff80d95770000 81920 C:\Windows\System32\drivers\tcpipreg.sys 10.0.14393.1480 (rs1_release.170706-2004) Microsoft Corporation TCP/IP Registry Compatibility Driver 131795770645349720 0xfffff80d95860000 684032 C:\Windows\System32\drivers\dxgmms2.sys 10.0.14393.2189 (rs1_release.180329-1711) Microsoft Corporation DirectX Graphics MMS 131795770645349720 0xfffff80d95910000 155648 C:\Windows\system32\drivers\luafv.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Драйвер фильтра виртуализации файлов LUA 131795770645349720 0xfffff80d95960000 102400 C:\Windows\system32\drivers\storqosflt.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Фильтр качества обслуживания хранилища 131795770645349720 0xfffff80d95980000 98304 C:\Windows\System32\drivers\registry.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Registry Containment Driver 131795770645349720 0xfffff80d959a0000 90112 C:\Windows\system32\drivers\lltdio.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Link-Layer Topology Mapper I/O Driver 131795770645349720 0xfffff80d959c0000 98304 C:\Windows\system32\drivers\mslldp.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Драйвер протокола Microsoft LLDP 131795770645349720 0xfffff80d959e0000 106496 C:\Windows\system32\drivers\rspndr.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Link-Layer Topology Responder Driver for NDIS 6 131795770645349720 0xfffff80d95ae0000 57344 C:\Windows\System32\drivers\USBD.SYS 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Universal Serial Bus Driver 131795770645349720 0xfffff80d95af0000 434176 C:\Windows\system32\DRIVERS\HdAudio.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation High Definition Audio Function Driver 131795770645349720 0xfffff80d95b60000 57344 C:\Windows\system32\drivers\ksthunk.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Kernel Streaming WOW Thunk Service 131795770645349720 0xfffff80d95bc0000 73728 C:\Windows\System32\drivers\HIDPARSE.SYS 10.0.14393.2068 (rs1_release.180209-1727) Microsoft Corporation Hid Parsing Library 131795770645349720 0xfffff80d97020000 208896 C:\Windows\System32\Drivers\360AntiHacker64.sys 1.0.0.1149 360.cn 360安全卫士 网络防黑模块 131795770645349720 0xfffff80d97060000 102400 C:\Windows\system32\DRIVERS\360AvFlt.sys 1.1.0.1056 360.cn 360杀毒 文件监控驱动 131795770645349720 0xfffff80d97080000 217088 C:\Windows\system32\DRIVERS\BAPIDRV64.sys 2.0.0.1221 360.cn BAPIDRV 131795770645349720 0xfffff80d970c0000 372736 C:\Windows\system32\drivers\360netmon.sys 2.1.11.5195 360.cn 360netmon 131795770645349720 0xfffff80d97120000 356352 C:\Windows\system32\DRIVERS\360Box64.sys 2.1.0.1253 360.cn 360Box64 131795770645349720 0xfffff80d97180000 811008 C:\Windows\system32\DRIVERS\360FsFlt.sys 6.9.1.1751 360.cn 360 Total Security 131795770645349720 0xfffff80d97330000 69632 C:\Windows\System32\drivers\hidusb.sys 10.0.14393.82 (rs1_release.160805-1735) Microsoft Corporation USB Miniport Driver for Input Devices 131795770645349720 0xfffff80d97350000 192512 C:\Windows\System32\drivers\HIDCLASS.SYS 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека классов HID 131795770645349720 0xfffff80d97380000 61440 C:\Windows\System32\drivers\mouhid.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Драйвер фильтра мыши HID 131795770645349720 0xfffff80d97390000 106496 C:\Windows\System32\drivers\rassstp.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation RAS SSTP Miniport Call Manager 131795770645349720 0xfffff80d973b0000 86016 C:\Windows\System32\DRIVERS\NDProxy.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation NDIS Proxy 131795770645349720 0xfffff80d973d0000 159744 C:\Windows\System32\drivers\AgileVpn.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Диспетчер вызовов минипорта RAS Agile VPN 131795770645349720 0xfffff80d97420000 131072 C:\Windows\System32\drivers\rasl2tp.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation RAS L2TP mini-port/call-manager driver 131795770645349720 0xfffff80d97460000 126976 C:\Windows\System32\drivers\raspptp.sys 10.0.14393.2035 (rs1_release_inmarket.180110-1910) Microsoft Corporation Peer-to-Peer Tunneling Protocol 131795770645349720 0xfffff80d974a0000 110592 C:\Windows\System32\drivers\raspppoe.sys 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation RAS PPPoE mini-port/call-manager driver 131795770645349720 0xfffff80d974c0000 57344 C:\Windows\System32\DRIVERS\ndistapi.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation NDIS 3.0 connection wrapper driver 131795770645349720 0xfffff80d974d0000 221184 C:\Windows\System32\drivers\ndiswan.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation MS PPP Framing Driver (Strong Encryption) 131795770645349720 0xfffff80d97510000 110592 C:\Windows\System32\DRIVERS\wanarp.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation MS Remote Access and Routing ARP Driver 131795770645349720 0xfffff80d97550000 151552 C:\Windows\System32\drivers\E1G6032E.sys 8.4.13.0 built by: WinDDK Intel Corporation Intel(R) PRO/1000 Adapter NDIS 6 deserialized driver 131795770645349720 0xfffff80d97580000 192512 C:\Windows\System32\drivers\tunnel.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Драйвер интерфейса туннеля (Майкрософт) 131795770645349720 0xfffff80d97600000 106496 C:\Windows\system32\Drivers\PROCMON24.SYS 3.10 Sysinternals - www.sysinternals.com Process Monitor Driver 131795770645349720 0xfffff80d97a60000 794624 C:\Windows\system32\drivers\peauth.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Protected Environment Authentication and Authorization Export Driver 131795770645349720 0xfffff80d97b30000 155648 C:\Windows\system32\drivers\Ndu.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Network Data Usage Monitoring Driver 131795770645349720 0xfffff80d97b60000 81920 C:\Windows\system32\drivers\mmcss.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation MMCSS Driver 131795770645349720 0xfffff80d97bb0000 73728 C:\Windows\System32\drivers\condrv.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Console Driver 10 320 4 9 00000000:000003e7 131765775908989732 0 0 1 Обязательная метка\Обязательный уровень системы NT AUTHORITY\СИСТЕМА smss.exe C:\Windows\System32\smss.exe \SystemRoot\System32\smss.exe Microsoft Corporation 10.0.14393.0 (rs1_release.160715-1616) Диспетчер сеанса Windows 11 3108 3092 12 00000000:0031f1da 131765777624392598 0 0 1 Обязательная метка\Средний обязательный уровень WIN-0UOTFKKVN1S\User Explorer.EXE C:\Windows\Explorer.EXE C:\Windows\Explorer.EXE Microsoft Corporation 10.0.14393.0 (rs1_release.160715-1616) Проводник 131795770645352881 0x31b0000 12288 C:\Windows\system32\sfc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows File Protection 131795770645352881 0x5db0000 397312 C:\Program Files\Uninstall Tool\utshellext.dll 1.1.0.15 CrystalIDEA Software Uninstall Tool Shell Extension 131795770645352881 0x81a0000 8937472 C:\Program Files\MICROS~1\Office16\1049\GrooveIntlResource.dll 16.0.4266.1001 Корпорация Майкрософт Модуль международных ресурсов для Microsoft OneDrive для бизнеса 131795770645352881 0x8cb0000 593920 C:\Windows\SYSTEM32\UIRibbonRes.dll 10.0.14393.2189 (rs1_release.180329-1711) Microsoft Corporation Windows Ribbon Framework Resources 131795770645352881 0x5bf70000 667648 C:\Windows\WinSxS\amd64_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.9247_none_08e394a1a83e212f\MSVCR90.dll 9.00.30729.9247 Microsoft Corporation Microsoft® C Runtime Library 131795770645352881 0x180000000 241664 C:\Program Files (x86)\Notepad++\NppShell_06.dll 0.1 ShellHandler for Notepad++ (64 bit) 131795770645352881 0x7ff6a5b30000 4665344 C:\Windows\Explorer.EXE 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Проводник 131795770645352881 0x7ff7808b0000 8527872 C:\Windows\system32\ntoskrnl.exe 10.0.14393.2189 (rs1_release.180329-1711) Microsoft Corporation NT Kernel & System 131795770645352881 0x7ffaa6c80000 2093056 C:\Windows\system32\wpdshext.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширение оболочки для переносных устройств 131795770645352881 0x7ffaab350000 1683456 C:\Windows\System32\comsvcs.dll 2001.12.10941.16384 (rs1_release_1.180305-1842) Microsoft Corporation COM+ Services 131795770645352881 0x7ffaab4f0000 1400832 C:\Windows\system32\connect.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Мастера подключений 131795770645352881 0x7ffaab650000 970752 C:\Windows\system32\rasgcw.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Страницы мастера RAS 131795770645352881 0x7ffaab880000 532480 C:\Windows\System32\MPRAPI.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation Windows NT MP Router Administration DLL 131795770645352881 0x7ffaab910000 905216 C:\Windows\System32\RASDLG.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API общих диалогов службы удаленного доступа 131795770645352881 0x7ffaac6e0000 13156352 C:\Windows\system32\ieframe.DLL 11.00.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Браузер 131795770645352881 0x7ffab0df0000 1626112 C:\Windows\SYSTEM32\d3d9.dll 10.0.14393.447 (rs1_release_inmarket.161102-0100) Microsoft Corporation Direct3D 9 Runtime 131795770645352881 0x7ffab0f80000 1777664 C:\Program Files\Windows Photo Viewer\PhotoViewer.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Просмотр фотографий Windows 131795770645352881 0x7ffab1d80000 262144 C:\Windows\system32\eappcfg.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Eap Peer Config 131795770645352881 0x7ffab2460000 2822144 C:\Windows\System32\netshell.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Оболочка сетевых подключений 131795770645352881 0x7ffab2720000 606208 C:\Windows\System32\DUser.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows DirectUser Engine 131795770645352881 0x7ffab27c0000 516096 C:\Windows\System32\imapi2.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation IMAPI версии 2 131795770645352881 0x7ffab2840000 253952 C:\Windows\System32\bthprops.cpl 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Приложение панели управления Bluetooth 131795770645352881 0x7ffab2880000 315392 C:\Windows\System32\cscobj.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Внутрипроцессный COM-объект используемый клиентами CSC API 131795770645352881 0x7ffab28d0000 802816 C:\Windows\System32\cscui.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Интерфейс кэширования на стороне клиента 131795770645352881 0x7ffab29a0000 1912832 C:\Windows\System32\pnidui.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Значок сетевой системы 131795770645352881 0x7ffab2b80000 212992 C:\Windows\system32\SettingMonitor.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Setting Synchronization Change Monitor 131795770645352881 0x7ffab2bc0000 204800 C:\Windows\System32\PortableDeviceTypes.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Portable Device (Parameter) Types Component 131795770645352881 0x7ffab33d0000 258048 C:\Windows\SYSTEM32\MLANG.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL многоязыковой поддержки 131795770645352881 0x7ffab34f0000 323584 C:\Windows\System32\Actioncenter.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Центр безопасности и обслуживания 131795770645352881 0x7ffab4af0000 606208 C:\Windows\SYSTEM32\AUDIOSES.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Сеанс обработки звука 131795770645352881 0x7ffab4b90000 655360 C:\Windows\System32\StructuredQuery.dll 7.0.14393.2068 (rs1_release.180209-1727) Microsoft Corporation Structured Query 131795770645352881 0x7ffab5120000 1691648 C:\Windows\system32\BatMeter.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Battery Meter Helper DLL 131795770645352881 0x7ffab5520000 3231744 C:\Windows\SYSTEM32\MsftEdit.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Элемент управления "Поле ввода форматированного текста", версия 8.5 131795770645352881 0x7ffab5b40000 2527232 C:\Windows\SYSTEM32\DWrite.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Службы Microsoft DirectX Typography 131795770645352881 0x7ffab7d80000 753664 C:\Windows\System32\RASAPI32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API удаленного доступа 131795770645352881 0x7ffab7e40000 3420160 C:\Windows\System32\SyncCenter.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Центр синхронизации Майкрософт 131795770645352881 0x7ffab8190000 9191424 C:\Windows\System32\TwinUI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation TWINUI 131795770645352881 0x7ffab8da0000 1675264 C:\Windows\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.14393.1715_none_aec701fbddd850fa\gdiplus.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Microsoft GDI+ 131795770645352881 0x7ffab92e0000 827392 C:\Windows\system32\Windows.Storage.Search.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows.Storage.Search 131795770645352881 0x7ffab93b0000 897024 C:\Windows\System32\TokenBroker.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Token Broker 131795770645352881 0x7ffab9490000 860160 C:\Windows\system32\ntshrui.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширения оболочки, обеспечивающие общий доступ 131795770645352881 0x7ffab95c0000 4091904 C:\Windows\system32\UIRibbon.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Платформа ленты Windows 131795770645352881 0x7ffab99b0000 499712 C:\Windows\system32\dxp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширение оболочки компонента Device Stage 131795770645352881 0x7ffab9ba0000 389120 C:\Windows\SYSTEM32\searchfolder.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SearchFolder 131795770645352881 0x7ffaba950000 188416 C:\Windows\System32\EthernetMediaManager.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Ethernet Media Manager DLL 131795770645352881 0x7ffabaa50000 339968 C:\Windows\System32\NetworkUXBroker.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation NetworkUXBroker DLL 131795770645352881 0x7ffabaab0000 94208 C:\Windows\SYSTEM32\profext.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation profext 131795770645352881 0x7ffabab30000 303104 C:\Windows\System32\NotificationObjFactory.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Notifications Object Factory 131795770645352881 0x7ffabac60000 151552 C:\Windows\System32\EhStorAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Enhanced Storage API 131795770645352881 0x7ffabacc0000 1380352 C:\Windows\System32\SharedStartModel.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Shared Start Model InProc Server 131795770645352881 0x7ffabae20000 40960 C:\Windows\SYSTEM32\msiltcfg.dll 5.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Installer Configuration API Stub 131795770645352881 0x7ffabae60000 77824 C:\Windows\System32\DEVRTL.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Device Management Run Time Library 131795770645352881 0x7ffabaea0000 266240 C:\Windows\system32\SHDOCVW.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека объектов документов и элементов управления оболочки 131795770645352881 0x7ffabaf70000 270336 C:\Windows\SYSTEM32\edputil.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служебная программа EDP 131795770645352881 0x7ffabafc0000 700416 C:\Windows\System32\wer.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека сообщений об ошибках Windows 131795770645352881 0x7ffabb2b0000 1089536 C:\Windows\SYSTEM32\settingsynccore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Setting Synchronization Core 131795770645352881 0x7ffabb430000 65536 C:\Windows\SYSTEM32\pcacli.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Program Compatibility Assistant Client Module 131795770645352881 0x7ffabb490000 512000 C:\Windows\SYSTEM32\TWINAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation twinapi 131795770645352881 0x7ffabba80000 995328 C:\Windows\System32\twinui.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation TWINUI.APPCORE 131795770645352881 0x7ffabbb80000 61440 C:\Windows\System32\dsclient.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Data Sharing Service Client DLL 131795770645352881 0x7ffabbb90000 581632 C:\Windows\System32\Windows.System.Launcher.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows.System.Launcher 131795770645352881 0x7ffabbc40000 643072 C:\Windows\SYSTEM32\MSVCP140.dll 14.10.24516.0 built by: VCTOOLSRELESC Microsoft Corporation Microsoft® C Runtime Library 131795770645352881 0x7ffabbce0000 90112 C:\Windows\SYSTEM32\VCRUNTIME140.dll 14.10.24516.0 built by: VCTOOLSRELESC Microsoft Corporation Microsoft® C Runtime Library 131795770645352881 0x7ffabbd00000 36864 C:\Windows\System32\WpPortingLibrary.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation <d> DLL 131795770645352881 0x7ffabbd20000 106496 C:\Windows\SYSTEM32\settingsyncpolicy.dll 10.0.14393.82 (rs1_release.160805-1735) Microsoft Corporation SettingSync Policy 131795770645352881 0x7ffabc0b0000 65536 C:\Windows\SYSTEM32\LINKINFO.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Volume Tracking 131795770645352881 0x7ffabc510000 90112 C:\Windows\system32\execmodelproxy.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ExecModelProxy 131795770645352881 0x7ffabc880000 73728 C:\Windows\SYSTEM32\cscapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Offline Files Win32 API 131795770645352881 0x7ffabcf30000 110592 C:\Windows\SYSTEM32\MPR.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека маршрутизации для нескольких служб доступа 131795770645352881 0x7ffabd3c0000 368640 C:\Windows\System32\InputSwitch.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Переключатель ввода Microsoft Windows 131795770645352881 0x7ffabd4a0000 1613824 C:\Windows\System32\Windows.Globalization.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Globalization 131795770645352881 0x7ffabd670000 315392 C:\Windows\System32\framedynos.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation WMI SDK Provider Framework 131795770645352881 0x7ffabd6c0000 1306624 C:\Windows\System32\werconcpl.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation PRS CPL 131795770645352881 0x7ffabd800000 876544 C:\Windows\System32\NPSMDesktopProvider.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation <d> Библиотека DLL локального поставщика рабочего стола NPSM 131795770645352881 0x7ffabda60000 1241088 C:\Windows\System32\wscui.cpl 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Центр безопасности и обслуживания 131795770645352881 0x7ffabdbb0000 1736704 C:\Windows\SYSTEM32\DUI70.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Подсистема DirectUI Windows 131795770645352881 0x7ffabdeb0000 86016 C:\Windows\system32\wpdshserviceobj.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Portable Device Shell Service Object 131795770645352881 0x7ffabded0000 413696 C:\Windows\system32\stobject.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Объект службы оболочки Systray 131795770645352881 0x7ffabe070000 610304 C:\Windows\SYSTEM32\efswrt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Storage Protection Windows Runtime DLL 131795770645352881 0x7ffabe470000 180224 C:\Windows\System32\wscinterop.dll 10.0.14393.479 (rs1_release.161110-2025) Microsoft Corporation Windows Health Center WSC Interop 131795770645352881 0x7ffabe4d0000 286720 C:\Windows\System32\MSWB7.dll 10.0.14393.1737 (rs1_release_inmarket.170914-1249) Microsoft Corporation MSWB7 DLL 131795770645352881 0x7ffabe580000 831488 C:\Program Files (x86)\360\Total Security\MenuEx64.dll 9, 6, 0, 1001 360 Total Security 131795770645352881 0x7ffabe650000 405504 C:\Windows\system32\zipfldr.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Сжатые ZIP-папки 131795770645352881 0x7ffabe850000 155648 C:\Windows\System32\IDStore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Identity Store 131795770645352881 0x7ffabe9a0000 94208 C:\Windows\system32\Syncreg.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Synchronization Framework Registration 131795770645352881 0x7ffabe9c0000 188416 C:\Windows\SYSTEM32\globinputhost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Globalization Extension API for Input 131795770645352881 0x7ffabebf0000 1208320 C:\Windows\system32\NetworkExplorer.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Сетевой проводник 131795770645352881 0x7ffabef80000 69632 C:\Windows\System32\sfc_os.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows File Protection 131795770645352881 0x7ffabf0b0000 176128 C:\Windows\System32\playtomenu.dll 12.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека меню функции "Передать на устройство" 131795770645352881 0x7ffabf0e0000 372736 C:\Windows\System32\hnetcfg.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Диспетчер конфигурации домашней сети 131795770645352881 0x7ffabf330000 2457600 C:\Windows\System32\msxml6.dll 6.30.14393.2156 Microsoft Corporation MSXML 6.0 131795770645352881 0x7ffabf590000 208896 C:\Windows\system32\syncui.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Портфель Windows 131795770645352881 0x7ffabf5d0000 2924544 C:\Windows\SYSTEM32\WININET.dll 11.00.14393.447 (rs1_release_inmarket.161102-0100) Microsoft Corporation Расширения Интернета для Win32 131795770645352881 0x7ffabf8c0000 802816 C:\Windows\system32\Windows.Internal.Shell.Broker.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation Windows Shell Broker 131795770645352881 0x7ffabfb00000 626688 C:\Windows\System32\ContentDeliveryManager.Utilities.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation ContentDeliveryManager.Utilities 131795770645352881 0x7ffabfba0000 212992 C:\Windows\System32\WSCAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API центра обеспечения безопасности Windows 131795770645352881 0x7ffabfdc0000 86016 C:\Windows\system32\keepaliveprovider.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Keep alive provider API 131795770645352881 0x7ffabfe50000 643072 C:\Windows\System32\wpnprv.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик подключения платформы push-уведомлений Windows 131795770645352881 0x7ffabff10000 155648 C:\Windows\system32\srvcli.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Server Service Client DLL 131795770645352881 0x7ffabff60000 135168 C:\Windows\system32\ncryptsslp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft SChannel Provider 131795770645352881 0x7ffac01e0000 397312 C:\Windows\System32\wincorlib.DLL 10.0.14393.576 (rs1_release_inmarket.161208-2252) Microsoft Corporation Microsoft Windows ® WinRT core library 131795770645352881 0x7ffac0250000 2179072 C:\Program Files\MICROS~1\Office16\GROOVEEX.DLL 16.0.4266.1001 Microsoft Corporation Microsoft OneDrive for Business Extensions 131795770645352881 0x7ffac0470000 1478656 C:\Windows\SYSTEM32\MFPlat.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Media Foundation Platform DLL 131795770645352881 0x7ffac05f0000 94208 C:\Windows\System32\wwapi.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation WWAN API 131795770645352881 0x7ffac0610000 3088384 C:\Windows\SYSTEM32\msi.dll 5.0.14393.2155 Microsoft Corporation Windows Installer 131795770645352881 0x7ffac0910000 724992 C:\Windows\System32\Windows.Networking.Connectivity.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Networking Connectivity Runtime DLL 131795770645352881 0x7ffac09d0000 884736 C:\Windows\System32\wpnapps.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Приложения для push-уведомлений Windows 131795770645352881 0x7ffac0ad0000 86016 C:\Windows\SYSTEM32\mskeyprotect.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик защиты ключей (Майкрософт) 131795770645352881 0x7ffac0af0000 114688 C:\Windows\System32\ATL.DLL 3.05.2284 Microsoft Corporation ATL Module for Windows XP (Unicode) 131795770645352881 0x7ffac0b40000 315392 C:\Windows\System32\dlnashext.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLNA Namespace DLL 131795770645352881 0x7ffac0b90000 380928 C:\Windows\System32\srchadmin.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Параметры индексирования 131795770645352881 0x7ffac0bf0000 3559424 C:\Windows\System32\ActXPrxy.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation ActiveX Interface Marshaling Library 131795770645352881 0x7ffac0f60000 151552 C:\Windows\SYSTEM32\CHARTV.dll 10.0.14393.351 (rs1_release_inmarket.161014-1755) Microsoft Corporation Chart View 131795770645352881 0x7ffac1b70000 122880 C:\Windows\System32\DevDispItemProvider.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Подсистема DeviceItem inproc devquery 131795770645352881 0x7ffac1cc0000 163840 C:\Windows\System32\Windows.Networking.Sockets.PushEnabledApplication.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows.Networking.Sockets.PushEnabledApplication DLL 131795770645352881 0x7ffac1d60000 589824 C:\Windows\System32\webio.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API протоколов передачи по Веб 131795770645352881 0x7ffac1e50000 188416 C:\Windows\SYSTEM32\RTWorkQ.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL для WorkQueue реального времени 131795770645352881 0x7ffac1fd0000 999424 C:\Windows\system32\wbem\fastprox.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation WMI Custom Marshaller 131795770645352881 0x7ffac20d0000 110592 C:\Windows\System32\RMCLIENT.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Resource Manager Client 131795770645352881 0x7ffac21d0000 81920 C:\Windows\system32\wbem\wbemsvc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation WMI 131795770645352881 0x7ffac2360000 57344 C:\Windows\System32\TimeBrokerClient.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Time Broker Client Library 131795770645352881 0x7ffac23c0000 331776 C:\Windows\System32\OneCoreCommonProxyStub.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation OneCore Common Proxy Stub 131795770645352881 0x7ffac2530000 270336 C:\Windows\system32\hnetcfgclient.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиент API конфигурации домашней сети 131795770645352881 0x7ffac2700000 98304 C:\Windows\system32\NETAPI32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API DLL 131795770645352881 0x7ffac27a0000 1642496 C:\Users\User\AppData\Local\Microsoft\OneDrive\18.111.0603.0006\amd64\FileSyncShell64.dll 18.111.0603.0006 Microsoft Corporation Microsoft OneDrive Shell Extension 131795770645352881 0x7ffac2960000 143360 C:\Windows\system32\mssprxy.dll 7.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation Microsoft Search Proxy 131795770645352881 0x7ffac2990000 385024 C:\Windows\SYSTEM32\NInput.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Pen and Touch Input Component 131795770645352881 0x7ffac29f0000 159744 C:\Windows\system32\NetSetupApi.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Network Configuration API 131795770645352881 0x7ffac2a20000 81920 C:\Windows\System32\rtutils.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Routing Utilities 131795770645352881 0x7ffac2b80000 40960 C:\Windows\SYSTEM32\VERSION.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Version Checking and File Installation Libraries 131795770645352881 0x7ffac2cb0000 778240 C:\Windows\System32\winsqlite3.dll 3.12.2 SQLite Development Team SQLite is a software library that implements a self-contained, serverless, zero-configuration, transactional SQL database engine. 131795770645352881 0x7ffac2d80000 5140480 C:\Windows\System32\cdp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API клиента Microsoft (R) CDP 131795770645352881 0x7ffac32e0000 180224 C:\Windows\system32\twext.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Свойства: Предыдущие версии 131795770645352881 0x7ffac3350000 36864 C:\Windows\SYSTEM32\OLEACCHOOKS.DLL 7.2.14393.0 (rs1_release.160715-1616) Microsoft Corporation Active Accessibility Event Hooks Library 131795770645352881 0x7ffac3360000 1396736 C:\Windows\System32\wpncore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Ядро извещающих уведомлений Windows 131795770645352881 0x7ffac34e0000 1843200 C:\Windows\SYSTEM32\urlmon.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширения OLE32 для Win32 131795770645352881 0x7ffac37d0000 258048 C:\Windows\SYSTEM32\wdmaud.drv 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Системный звуковой драйвер Winmm 131795770645352881 0x7ffac3cb0000 2772992 C:\Windows\SYSTEM32\iertutil.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служебная программа времени выполнения для Internet Explorer 131795770645352881 0x7ffac4000000 274432 C:\Windows\SYSTEM32\policymanager.dll 10.0.14393.2035 (rs1_release_inmarket.180110-1910) Microsoft Corporation Policy Manager DLL 131795770645352881 0x7ffac4070000 499712 C:\Windows\SYSTEM32\dsreg.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation AD/AAD User Device Registration 131795770645352881 0x7ffac4140000 114688 C:\Windows\SYSTEM32\MSACM32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Фильтр диспетчера аудиосжатия Microsoft 131795770645352881 0x7ffac4220000 520192 C:\Windows\SYSTEM32\wbemcomn.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation WMI 131795770645352881 0x7ffac42a0000 659456 C:\Windows\System32\StateRepository.Core.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation StateRepository Core 131795770645352881 0x7ffac4450000 86016 C:\Windows\SYSTEM32\usermgrcli.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation UserMgr API DLL 131795770645352881 0x7ffac4470000 65536 C:\Windows\system32\wbem\wbemprox.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation WMI 131795770645352881 0x7ffac46d0000 4161536 C:\Windows\System32\Windows.StateRepository.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Сервер Windows StateRepository API Server 131795770645352881 0x7ffac4df0000 462848 C:\Windows\System32\provsvc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Домашняя группа Windows 131795770645352881 0x7ffac4ea0000 36864 C:\Windows\SYSTEM32\atlthunk.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation atlthunk.dll 131795770645352881 0x7ffac4f60000 143360 C:\Windows\System32\wcmapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Connection Manager Client API 131795770645352881 0x7ffac4f90000 221184 C:\Windows\System32\EhStorShell.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL расширения оболочки Windows Enhanced Storage 131795770645352881 0x7ffac4fd0000 618496 C:\Windows\System32\wlidprov.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft® Account Provider 131795770645352881 0x7ffac5070000 798720 C:\Windows\System32\Windows.Web.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL веб-клиента 131795770645352881 0x7ffac5140000 307200 C:\Windows\System32\AboveLockAppHost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AboveLockAppHost 131795770645352881 0x7ffac5190000 659456 C:\Windows\System32\NotificationController.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation NotificationController 131795770645352881 0x7ffac5350000 1765376 C:\Windows\System32\Windows.UI.Immersive.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation WINDOWS.UI.IMMERSIVE 131795770645352881 0x7ffac5500000 438272 C:\Windows\SYSTEM32\PhotoMetadataHandler.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Photo Metadata Handler 131795770645352881 0x7ffac5570000 339968 C:\Windows\system32\twinui.pcshell.dll 10.0.14393.351 (rs1_release_inmarket.161014-1755) Microsoft Corporation Twinui.PCShell 131795770645352881 0x7ffac55d0000 376832 C:\Windows\System32\windows.immersiveshell.serviceprovider.dll 10.0.14393.1593 (rs1_release.170731-1934) Microsoft Corporation Windows.ImmersiveShell.ServiceProvider 131795770645352881 0x7ffac5630000 339968 C:\Windows\System32\thumbcache.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Кэш эскизов Майкрософт 131795770645352881 0x7ffac5690000 4734976 C:\Windows\system32\explorerframe.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ExplorerFrame 131795770645352881 0x7ffac5bb0000 622592 C:\Program Files\Common Files\microsoft shared\ink\tiptsf.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Инфраструктура текстовых служб сенсорной клавиатуры и панели рукописного ввода 131795770645352881 0x7ffac5c70000 65536 C:\Program Files\Windows Photo Viewer\PhotoBase.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Photo Base Library 131795770645352881 0x7ffac5ce0000 1744896 C:\Windows\SYSTEM32\UIAutomationCore.DLL 7.2.14393.0 (rs1_release.160715-1616) Microsoft Corporation Основные автоматические компоненты Microsoft UI 131795770645352881 0x7ffac60e0000 221184 C:\Windows\System32\XmlLite.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft XmlLite Library 131795770645352881 0x7ffac6610000 40960 C:\Windows\System32\rasadhlp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Remote Access AutoDial Helper 131795770645352881 0x7ffac6650000 176128 C:\Windows\System32\npsm.dll 10.0.14393.447 (rs1_release_inmarket.161102-0100) Microsoft Corporation NPSM 131795770645352881 0x7ffac69c0000 839680 C:\Windows\System32\WINHTTP.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Службы HTTP Windows 131795770645352881 0x7ffac6ac0000 835584 C:\Windows\System32\Windows.UI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Runtime UI Foundation DLL 131795770645352881 0x7ffac6ba0000 49152 C:\Windows\SYSTEM32\Secur32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Security Support Provider Interface 131795770645352881 0x7ffac6bd0000 413696 C:\Windows\SYSTEM32\OLEACC.dll 7.2.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Active Accessibility Core Component 131795770645352881 0x7ffac6c40000 2596864 C:\Windows\WinSxS\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.14393.953_none_42151e83c686086b\comctl32.dll 6.10 (rs1_release_inmarket.170303-1614) Microsoft Corporation Библиотека элементов управления взаимодействия с пользователем 131795770645352881 0x7ffac6ec0000 36864 C:\Windows\system32\IconCodecService.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Converts a PNG part of the icon to a legacy bmp icon 131795770645352881 0x7ffac6f50000 5632000 C:\Windows\System32\d2d1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека Microsoft D2D 131795770645352881 0x7ffac7580000 1077248 C:\Windows\SYSTEM32\MrmCoreR.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Windows MRM 131795770645352881 0x7ffac76a0000 159744 C:\Windows\SYSTEM32\sppc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Software Licensing Client DLL 131795770645352881 0x7ffac78f0000 647168 C:\Windows\System32\hgcpl.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Панель управления домашней группы 131795770645352881 0x7ffac7990000 155648 C:\Windows\SYSTEM32\SLC.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Software Licensing Client DLL 131795770645352881 0x7ffac79c0000 57344 C:\Windows\System32\npmproxy.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Network List Manager Proxy 131795770645352881 0x7ffac7aa0000 401408 C:\Windows\SYSTEM32\wlanapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows WLAN AutoConfig Client Side API DLL 131795770645352881 0x7ffac7d40000 131072 C:\Windows\system32\SYNCENG.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Briefcase Engine 131795770645352881 0x7ffac7d90000 454656 C:\Windows\SYSTEM32\SndVolSSO.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Громкость SCA 131795770645352881 0x7ffac7f50000 73728 C:\Windows\system32\acppage.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека расширений для вкладки "Совместимость" 131795770645352881 0x7ffac7fc0000 2674688 C:\Windows\SYSTEM32\d3d10warp.dll 10.0.14393.576 (rs1_release_inmarket.161208-2252) Microsoft Corporation Direct3D 10 Rasterizer 131795770645352881 0x7ffac83d0000 106496 C:\Windows\SYSTEM32\dhcpcsvc.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служба DHCP-клиента 131795770645352881 0x7ffac83f0000 90112 C:\Windows\SYSTEM32\dhcpcsvc6.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиент DHCPv6 131795770645352881 0x7ffac8420000 434176 C:\Windows\System32\fwpuclnt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API пользовательского режима FWP/IPsec 131795770645352881 0x7ffac84e0000 53248 C:\Windows\System32\NotificationControllerPS.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation NotificationController Proxy Stub 131795770645352881 0x7ffac84f0000 299008 C:\Windows\system32\dataexchange.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation Data exchange 131795770645352881 0x7ffac8810000 45056 C:\Windows\SYSTEM32\WINNSI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Network Store Information RPC interface 131795770645352881 0x7ffac8880000 69632 C:\Windows\system32\WMICLNT.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation WMI Client API 131795770645352881 0x7ffac88a0000 2842624 C:\Windows\system32\d3d11.dll 10.0.14393.953 (rs1_release_inmarket.170303-1614) Microsoft Corporation Direct3D 11 Runtime 131795770645352881 0x7ffac8f90000 45056 C:\Windows\SYSTEM32\AVRT.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Среда выполнения мультимедиа в реальном времени 131795770645352881 0x7ffac90b0000 90112 C:\Windows\SYSTEM32\wkscli.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Workstation Service Client DLL 131795770645352881 0x7ffac9220000 397312 C:\Windows\System32\wevtapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API настройки и использования событий 131795770645352881 0x7ffac9290000 40960 C:\Windows\system32\DSROLE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DS Setup Client DLL 131795770645352881 0x7ffac92e0000 1269760 C:\Windows\System32\WinTypes.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL основных типов Windows 131795770645352881 0x7ffac9480000 462848 C:\Windows\System32\MMDevApi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation MMDevice API 131795770645352881 0x7ffac9500000 2682880 C:\Windows\SYSTEM32\CoreUIComponents.dll 131795770645352881 0x7ffac9790000 98304 C:\Windows\System32\nlaapi.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Network Location Awareness 2 131795770645352881 0x7ffac97d0000 40960 C:\Windows\SYSTEM32\midimap.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft MIDI Mapper 131795773562346782 0x7ffac97e0000 73728 C:\Windows\System32\ploptin.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Prelaunch OptIn 131795770645352881 0x7ffac9bb0000 479232 C:\Windows\system32\es.dll 2001.12.10941.16384 (rs1_release.160715-1616) Microsoft Corporation COM+ 131795770645352881 0x7ffac9e00000 647168 C:\Windows\System32\PortableDeviceApi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Компоненты API для переносных устройств Windows 131795770645352881 0x7ffac9ea0000 81920 C:\Windows\System32\hcproviders.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщики компонента "Центр безопасности и обслуживания" 131795770645352881 0x7ffac9ec0000 294912 C:\Windows\System32\UIAnimation.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Animation Manager 131795770645352881 0x7ffac9f10000 221184 C:\Windows\System32\netprofm.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Network List Manager 131795770645352881 0x7ffac9f50000 1736704 C:\Windows\system32\windowscodecs.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Microsoft Windows Codecs Library 131795770645352881 0x7ffaca170000 45056 C:\Windows\SYSTEM32\ktmw32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows KTM Win32 Client DLL 131795770645352881 0x7ffaca180000 53248 C:\Windows\SYSTEM32\msacm32.drv 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Программа переназначения звуковых устройств 131795770645352881 0x7ffaca190000 241664 C:\Windows\System32\WorkFoldersShell.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширение оболочки рабочих папок (Майкрософт) 131795770645352881 0x7ffaca260000 45056 C:\Windows\System32\SystemEventsBrokerClient.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation system Events Broker Client Library 131795770645352881 0x7ffaca340000 1593344 C:\Windows\SYSTEM32\PROPSYS.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Система страниц свойств (Майкрософт) 131795770645352881 0x7ffaca4e0000 77824 C:\Windows\SYSTEM32\wtsapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Remote Desktop Session Host Server SDK APIs 131795770645352881 0x7ffaca550000 36864 C:\Windows\SYSTEM32\ksuser.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User CSA Library 131795770645352881 0x7ffaca570000 421888 C:\Windows\SYSTEM32\Bcp47Langs.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation BCP47 Language Classes 131795770645352881 0x7ffaca5e0000 155648 C:\Windows\SYSTEM32\dwmapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Интерфейс API диспетчера окон рабочего стола (Майкрософт) 131795770645352881 0x7ffaca610000 143360 C:\Windows\System32\SAMLIB.dll 10.0.14393.82 (rs1_release.160805-1735) Microsoft Corporation SAM Library DLL 131795770645352881 0x7ffaca640000 770048 C:\Windows\System32\CoreMessaging.dll 10.0.14393.0 Microsoft Corporation Microsoft CoreMessaging Dll 131795770645352881 0x7ffaca770000 1380352 C:\Windows\system32\dcomp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft DirectComposition Library 131795770645352881 0x7ffacab40000 176128 C:\Windows\SYSTEM32\WINMMBASE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base Multimedia Extension API DLL 131795770645352881 0x7ffacaba0000 143360 C:\Windows\SYSTEM32\WINMM.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation MCI API DLL 131795770645352881 0x7ffacac60000 69632 C:\Windows\system32\credui.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Credential Manager User Interface 131795770645352881 0x7ffacac80000 28672 C:\Windows\SYSTEM32\MSIMG32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation GDIEXT Client DLL 131795770645352881 0x7ffacadf0000 499712 C:\Windows\SYSTEM32\apphelp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиентская библиотека совместимости приложений 131795770645352881 0x7ffacaf00000 610304 C:\Windows\SYSTEM32\UxTheme.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека тем UxTheme (Microsoft) 131795770645352881 0x7ffacb140000 593920 C:\Windows\System32\msvcp110_win.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Microsoft® STL110 C++ Runtime Library 131795770645352881 0x7ffacb1e0000 1163264 C:\Windows\SYSTEM32\twinapi.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation twinapi.appcore 131795770645352881 0x7ffacb300000 364544 C:\Windows\System32\VEEventDispatcher.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Visual Element Event dispatcher 131795770645352881 0x7ffacb3d0000 110592 C:\Windows\SYSTEM32\resourcepolicyclient.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Resource Policy Client 131795770645352881 0x7ffacb3f0000 163840 C:\Windows\System32\DEVOBJ.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Device Information Set DLL 131795770645352881 0x7ffacb420000 204800 C:\Windows\SYSTEM32\ntmarta.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик Windows NT MARTA 131795770645352881 0x7ffacb6f0000 143360 C:\Windows\SYSTEM32\gpapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиентские функции API групповой политики 131795770645352881 0x7ffacb780000 651264 C:\Windows\system32\dxgi.dll 10.0.14393.953 (rs1_release_inmarket.170303-1614) Microsoft Corporation DirectX Graphics Infrastructure 131795770645352881 0x7ffacb920000 81920 C:\Windows\SYSTEM32\WLDP.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Политика блокировки Windows 131795770645352881 0x7ffacbaf0000 495616 C:\Windows\system32\schannel.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик безопасности TLS/SSL 131795770645352881 0x7ffacbbb0000 208896 C:\Windows\system32\rsaenh.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Enhanced Cryptographic Provider 131795770645352881 0x7ffacbbf0000 40960 C:\Windows\SYSTEM32\DPAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Data Protection API 131795770645352881 0x7ffacbd30000 229376 C:\Windows\System32\IPHLPAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API вспомогательного приложения IP 131795770645352881 0x7ffacbd70000 659456 C:\Windows\System32\DNSAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Динамическая библиотека API DNS-клиента 131795770645352881 0x7ffacbe20000 53248 C:\Windows\system32\netutils.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API Helpers DLL 131795770645352881 0x7ffacbe40000 126976 C:\Windows\SYSTEM32\USERENV.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Userenv 131795770645352881 0x7ffacbfb0000 376832 C:\Windows\system32\mswsock.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширение поставщика службы API Microsoft Windows Sockets 2.0 131795770645352881 0x7ffacc150000 94208 C:\Windows\SYSTEM32\cryptsp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Cryptographic Service Provider API 131795770645352881 0x7ffacc170000 45056 C:\Windows\System32\CRYPTBASE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base cryptographic API DLL 131795770645352881 0x7ffacc1f0000 241664 C:\Windows\System32\NTASN1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft ASN.1 API 131795770645352881 0x7ffacc230000 155648 C:\Windows\System32\ncrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Маршрутизатор Windows NCrypt 131795770645352881 0x7ffacc350000 180224 C:\Windows\SYSTEM32\SspiCli.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Security Support Provider Interface 131795770645352881 0x7ffacc500000 102400 C:\Windows\System32\EventAggregation.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Event Aggregation User Mode Library 131795770645352881 0x7ffacc520000 622592 C:\Windows\SYSTEM32\sxs.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Fusion 2.5 131795770645352881 0x7ffacc5c0000 352256 C:\Windows\SYSTEM32\WINSTA.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Winstation Library 131795770645352881 0x7ffacc620000 176128 C:\Windows\SYSTEM32\bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795770645352881 0x7ffacc6e0000 61440 C:\Windows\System32\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795770645352881 0x7ffacc6f0000 311296 C:\Windows\System32\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795770645352881 0x7ffacc740000 81920 C:\Windows\System32\profapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Profile Basic API 131795770645352881 0x7ffacc760000 65536 C:\Windows\System32\MSASN1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ASN.1 Runtime APIs 131795770645352881 0x7ffacc8f0000 1003520 C:\Windows\System32\ucrtbase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645352881 0x7ffacc9f0000 434176 C:\Windows\System32\bcryptPrimitives.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Cryptographic Primitives Library 131795770645352881 0x7ffacca60000 122880 C:\Windows\System32\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795770645352881 0x7ffacca80000 348160 C:\Windows\System32\WINTRUST.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation Microsoft Trust Verification APIs 131795770645352881 0x7ffaccae0000 692224 C:\Windows\System32\SHCORE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795770645352881 0x7ffaccb90000 7180288 C:\Windows\System32\windows.storage.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API хранения Microsoft WinRT 131795770645352881 0x7ffacd270000 2215936 C:\Windows\System32\KERNELBASE.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645352881 0x7ffacd490000 1871872 C:\Windows\System32\CRYPT32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API32 криптографии 131795770645352881 0x7ffacd710000 638976 C:\Windows\System32\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645352881 0x7ffacd7b0000 270336 C:\Windows\System32\cfgmgr32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Configuration Manager DLL 131795770645352881 0x7ffacd810000 22056960 C:\Windows\System32\SHELL32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Общая библиотека оболочки Windows 131795770645352881 0x7ffaced20000 782336 C:\Windows\System32\OLEAUT32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795770645352881 0x7ffacede0000 450560 C:\Windows\System32\coml2.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft COM for Windows 131795770645352881 0x7ffacee50000 1183744 C:\Windows\System32\RPCRT4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795770645352881 0x7ffacef80000 32768 C:\Windows\System32\NSI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation NSI User-mode interface DLL 131795770645352881 0x7ffacef90000 647168 C:\Windows\System32\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795770645352881 0x7ffacf030000 651264 C:\Windows\System32\clbcatq.dll 2001.12.10941.16384 (rs1_release.160715-1616) Microsoft Corporation COM+ Configuration Catalog 131795770645352881 0x7ffacf0d0000 704512 C:\Windows\System32\KERNEL32.DLL 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645352881 0x7ffacf1e0000 1417216 C:\Windows\System32\MSCTF.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Серверная библиотека MSCTF 131795770645352881 0x7ffacf340000 4362240 C:\Windows\System32\SETUPAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Setup API 131795770645352881 0x7ffacf770000 212992 C:\Windows\System32\GDI32.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation GDI Client DLL 131795770645352881 0x7ffacf820000 434176 C:\Windows\System32\WS2_32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation 32-разрядная библиотека Windows Socket 2.0 131795770645352881 0x7ffacf890000 188416 C:\Windows\System32\IMM32.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Multi-User Windows IMM32 API Client DLL 131795770645352881 0x7ffacf8c0000 1462272 C:\Windows\System32\USER32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795770645352881 0x7ffacfb30000 2916352 C:\Windows\System32\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795770645352881 0x7ffacfe00000 114688 C:\Windows\System32\imagehlp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT Image Helper 131795770645352881 0x7ffacfe20000 663552 C:\Windows\System32\advapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795770645352881 0x7ffad0070000 1277952 C:\Windows\System32\ole32.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft OLE для Windows 131795770645352881 0x7ffad01b0000 335872 C:\Windows\System32\SHLWAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека небольших программ оболочки 131795770645352881 0x7ffad0210000 364544 C:\Windows\System32\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795770645352881 0x7ffad0270000 1908736 C:\Windows\SYSTEM32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 13 404 396 14 00000000:000003e7 131765776186257169 0 0 1 Обязательная метка\Обязательный уровень системы NT AUTHORITY\СИСТЕМА csrss.exe C:\Windows\system32\csrss.exe %SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16 Microsoft Corporation 10.0.14393.0 (rs1_release.160715-1616) Процесс исполнения клиент-сервер 15 468 460 16 00000000:000003e7 131765776223665667 0 0 1 Обязательная метка\Обязательный уровень системы NT AUTHORITY\СИСТЕМА csrss.exe C:\Windows\system32\csrss.exe %SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16 Microsoft Corporation 10.0.14393.0 (rs1_release.160715-1616) Процесс исполнения клиент-сервер 17 484 396 14 00000000:000003e7 131765776226419105 0 0 1 Обязательная метка\Обязательный уровень системы NT AUTHORITY\СИСТЕМА wininit.exe C:\Windows\system32\wininit.exe wininit.exe Microsoft Corporation 10.0.14393.0 (rs1_release.160715-1616) Автозагрузка приложений Windows 18 520 460 16 00000000:000003e7 131765776226825613 0 0 1 Обязательная метка\Обязательный уровень системы NT AUTHORITY\СИСТЕМА winlogon.exe C:\Windows\system32\winlogon.exe winlogon.exe Microsoft Corporation 10.0.14393.0 (rs1_release.160715-1616) Программа входа в систему Windows 131795770645375500 0x7ff7b5570000 696320 C:\Windows\system32\winlogon.exe 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Программа входа в систему Windows 131795770645375500 0x7ffabaab0000 94208 C:\Windows\SYSTEM32\profext.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation profext 131795770645375500 0x7ffabcf30000 110592 C:\Windows\system32\MPR.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека маршрутизации для нескольких служб доступа 131795770645375500 0x7ffac4450000 86016 C:\Windows\SYSTEM32\usermgrcli.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation UserMgr API DLL 131795770645375500 0x7ffac90b0000 90112 C:\Windows\system32\wkscli.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Workstation Service Client DLL 131795770645375500 0x7ffaca4e0000 77824 C:\Windows\SYSTEM32\wtsapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Remote Desktop Session Host Server SDK APIs 131795770645375500 0x7ffacadf0000 499712 C:\Windows\system32\apphelp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиентская библиотека совместимости приложений 131795770645375500 0x7ffacaee0000 81920 C:\Windows\SYSTEM32\dwminit.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DWMInit 131795770645375500 0x7ffacaf00000 610304 C:\Windows\system32\UxTheme.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека тем UxTheme (Microsoft) 131795770645375500 0x7ffacafa0000 118784 C:\Windows\system32\UXINIT.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows User Experience Session Initialization Dll 131795770645375500 0x7ffacb360000 176128 C:\Windows\system32\fwbase.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Firewall Base DLL 131795770645375500 0x7ffacb420000 204800 C:\Windows\SYSTEM32\ntmarta.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик Windows NT MARTA 131795770645375500 0x7ffacb460000 548864 C:\Windows\SYSTEM32\firewallapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API брандмауэра Windows 131795770645375500 0x7ffacbbf0000 40960 C:\Windows\system32\DPAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Data Protection API 131795770645375500 0x7ffacbe20000 53248 C:\Windows\system32\netutils.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API Helpers DLL 131795770645375500 0x7ffacbe40000 126976 C:\Windows\system32\USERENV.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Userenv 131795770645375500 0x7ffacc170000 45056 C:\Windows\system32\CRYPTBASE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base cryptographic API DLL 131795770645375500 0x7ffacc350000 180224 C:\Windows\system32\SspiCli.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Security Support Provider Interface 131795770645375500 0x7ffacc5c0000 352256 C:\Windows\SYSTEM32\winsta.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Winstation Library 131795770645375500 0x7ffacc620000 176128 C:\Windows\system32\bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795770645375500 0x7ffacc6f0000 311296 C:\Windows\System32\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795770645375500 0x7ffacc740000 81920 C:\Windows\System32\profapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Profile Basic API 131795770645375500 0x7ffacc760000 65536 C:\Windows\System32\MSASN1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ASN.1 Runtime APIs 131795770645375500 0x7ffacc8f0000 1003520 C:\Windows\System32\ucrtbase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645375500 0x7ffacc9f0000 434176 C:\Windows\System32\bcryptPrimitives.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Cryptographic Primitives Library 131795770645375500 0x7ffacca60000 122880 C:\Windows\System32\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795770645375500 0x7ffaccae0000 692224 C:\Windows\System32\shcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795770645375500 0x7ffacd270000 2215936 C:\Windows\System32\KERNELBASE.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645375500 0x7ffacd490000 1871872 C:\Windows\System32\CRYPT32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API32 криптографии 131795770645375500 0x7ffacee50000 1183744 C:\Windows\System32\RPCRT4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795770645375500 0x7ffacef90000 647168 C:\Windows\System32\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795770645375500 0x7ffacf0d0000 704512 C:\Windows\System32\KERNEL32.DLL 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645375500 0x7ffacf770000 212992 C:\Windows\System32\GDI32.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation GDI Client DLL 131795770645375500 0x7ffacf890000 188416 C:\Windows\System32\IMM32.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Multi-User Windows IMM32 API Client DLL 131795770645375500 0x7ffacf8c0000 1462272 C:\Windows\System32\user32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795770645375500 0x7ffacfb30000 2916352 C:\Windows\System32\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795770645375500 0x7ffacfe20000 663552 C:\Windows\System32\advapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795770645375500 0x7ffad0210000 364544 C:\Windows\System32\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795770645375500 0x7ffad0270000 1908736 C:\Windows\SYSTEM32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 19 588 484 17 00000000:000003e7 131765776277547408 0 0 1 Обязательная метка\Обязательный уровень системы NT AUTHORITY\СИСТЕМА lsass.exe C:\Windows\system32\lsass.exe C:\Windows\system32\lsass.exe Microsoft Corporation 10.0.14393.1770 (rs1_release.170917-1700) Local Security Authority Process 131795770645375702 0x222e3610000 12288 C:\Windows\system32\msprivs.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Переводы привилегий Майкрософт 131795770645375702 0x7ff6b2d20000 69632 C:\Windows\system32\lsass.exe 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Local Security Authority Process 131795770645375702 0x7ffab9170000 380928 C:\Windows\System32\vaultsvc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служба диспетчера учетных данных 131795770645375702 0x7ffabf170000 77824 C:\Windows\system32\hmkd.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows HMAC Key Derivation API 131795770645375702 0x7ffabf190000 126976 C:\Windows\System32\ngcpopkeysrv.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Microsoft Passport Proof-of-possession Key Service 131795770645375702 0x7ffabf1b0000 114688 C:\Windows\system32\keyiso.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служба изоляции ключей CNG 131795770645375702 0x7ffabf1d0000 192512 C:\Windows\System32\cryptnet.dll 10.0.14393.2035 (rs1_release_inmarket.180110-1910) Microsoft Corporation Crypto Network Related API 131795770645375702 0x7ffabf200000 405504 C:\Windows\SYSTEM32\cryptngc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API службы Microsoft Passport 131795770645375702 0x7ffabf270000 143360 C:\Windows\System32\SecureTimeAggregator.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Secure Time Aggregator 131795770645375702 0x7ffabf2a0000 159744 C:\Windows\system32\dssenh.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Enhanced DSS and Diffie-Hellman Cryptographic Provider 131795770645375702 0x7ffabf2d0000 344064 C:\Windows\system32\ncryptprov.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft KSP 131795770645375702 0x7ffabff60000 135168 C:\Windows\system32\ncryptsslp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft SChannel Provider 131795770645375702 0x7ffac0ac0000 53248 C:\Windows\system32\tbs.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation TBS 131795770645375702 0x7ffac0ad0000 86016 C:\Windows\SYSTEM32\mskeyprotect.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик защиты ключей (Майкрософт) 131795770645375702 0x7ffac1d60000 589824 C:\Windows\system32\webio.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API протоколов передачи по Веб 131795770645375702 0x7ffac6610000 40960 C:\Windows\System32\rasadhlp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Remote Access AutoDial Helper 131795770645375702 0x7ffac69c0000 839680 C:\Windows\system32\WINHTTP.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Службы HTTP Windows 131795770645375702 0x7ffac6b90000 53248 C:\Windows\system32\DSPARSE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Active Directory Domain Services API 131795770645375702 0x7ffac6ba0000 49152 C:\Windows\SYSTEM32\secur32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Security Support Provider Interface 131795770645375702 0x7ffac83d0000 106496 C:\Windows\SYSTEM32\dhcpcsvc.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служба DHCP-клиента 131795770645375702 0x7ffac83f0000 90112 C:\Windows\SYSTEM32\dhcpcsvc6.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиент DHCPv6 131795770645375702 0x7ffac8420000 434176 C:\Windows\System32\fwpuclnt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API пользовательского режима FWP/IPsec 131795770645375702 0x7ffac8810000 45056 C:\Windows\SYSTEM32\WINNSI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Network Store Information RPC interface 131795770645375702 0x7ffac8fa0000 253952 C:\Windows\system32\logoncli.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Net Logon Client DLL 131795770645375702 0x7ffac9220000 397312 C:\Windows\SYSTEM32\wevtapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API настройки и использования событий 131795770645375702 0x7ffac9290000 40960 C:\Windows\system32\DSROLE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DS Setup Client DLL 131795770645375702 0x7ffacb6f0000 143360 C:\Windows\SYSTEM32\gpapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиентские функции API групповой политики 131795770645375702 0x7ffacb960000 303104 C:\Windows\system32\AUTHZ.dll 10.0.14393.1737 (rs1_release_inmarket.170914-1249) Microsoft Corporation Authorization Framework 131795770645375702 0x7ffacb9b0000 294912 C:\Windows\system32\scecli.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиент редактора конфигураций безопасности 131795770645375702 0x7ffacba80000 49152 C:\Windows\SYSTEM32\SspiSrv.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation LSA SSPI RPC interface DLL 131795770645375702 0x7ffacba90000 221184 C:\Windows\system32\dpapisrv.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DPAPI Server 131795770645375702 0x7ffacbad0000 102400 C:\Windows\system32\efslsaext.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation LSA extension for EFS 131795770645375702 0x7ffacbaf0000 495616 C:\Windows\system32\schannel.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик безопасности TLS/SSL 131795770645375702 0x7ffacbb70000 245760 C:\Windows\system32\wdigest.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Digest Access 131795770645375702 0x7ffacbbb0000 208896 C:\Windows\system32\rsaenh.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Enhanced Cryptographic Provider 131795770645375702 0x7ffacbbf0000 40960 C:\Windows\SYSTEM32\DPAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Data Protection API 131795770645375702 0x7ffacbc00000 290816 C:\Windows\SYSTEM32\MicrosoftAccountCloudAP.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation MicrosoftAccount Cloud AP Plugin 131795770645375702 0x7ffacbc50000 372736 C:\Windows\system32\cloudAP.DLL 10.0.14393.1358 (rs1_release.170602-2252) Microsoft Corporation Cloud AP Security Package 131795770645375702 0x7ffacbcb0000 278528 C:\Windows\system32\pku2u.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Pku2u Security Package 131795770645375702 0x7ffacbd00000 139264 C:\Windows\system32\tspkg.DLL 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation Web Service Security Package 131795770645375702 0x7ffacbd30000 229376 C:\Windows\SYSTEM32\IPHLPAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API вспомогательного приложения IP 131795770645375702 0x7ffacbd70000 659456 C:\Windows\system32\DNSAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Динамическая библиотека API DNS-клиента 131795770645375702 0x7ffacbe20000 53248 C:\Windows\system32\netutils.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API Helpers DLL 131795770645375702 0x7ffacbe30000 57344 C:\Windows\system32\gmsaclient.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation "gmsaclient.DYNLINK" 131795770645375702 0x7ffacbe40000 126976 C:\Windows\system32\USERENV.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Userenv 131795770645375702 0x7ffacbe60000 843776 C:\Windows\system32\netlogon.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Динамическая библиотека службы Net Logon 131795770645375702 0x7ffacbf30000 49152 C:\Windows\system32\NtlmShared.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation NTLM Shared Functionality 131795770645375702 0x7ffacbf40000 421888 C:\Windows\system32\msv1_0.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Authentication Package v1.0 131795770645375702 0x7ffacbfb0000 376832 C:\Windows\system32\mswsock.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширение поставщика службы API Microsoft Windows Sockets 2.0 131795770645375702 0x7ffacc010000 86016 C:\Windows\system32\cryptdll.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Cryptography Manager 131795770645375702 0x7ffacc030000 163840 C:\Windows\system32\KerbClientShared.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Kerberos Client Shared Functionality 131795770645375702 0x7ffacc150000 94208 C:\Windows\system32\CRYPTSP.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Cryptographic Service Provider API 131795770645375702 0x7ffacc170000 45056 C:\Windows\system32\CRYPTBASE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base cryptographic API DLL 131795770645375702 0x7ffacc180000 155648 C:\Windows\system32\negoexts.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation NegoExtender Security Package 131795770645375702 0x7ffacc1b0000 126976 C:\Windows\system32\JOINUTIL.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Join Utility DLL 131795770645375702 0x7ffacc1d0000 86016 C:\Windows\SYSTEM32\netprovfw.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Provisioning Service Framework DLL 131795770645375702 0x7ffacc1f0000 241664 C:\Windows\system32\NTASN1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft ASN.1 API 131795770645375702 0x7ffacc230000 155648 C:\Windows\system32\ncrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Маршрутизатор Windows NCrypt 131795770645375702 0x7ffacc260000 921600 C:\Windows\SYSTEM32\samsrv.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека сервера диспетчера учетных записей 131795770645375702 0x7ffacc350000 180224 C:\Windows\system32\SspiCli.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Security Support Provider Interface 131795770645375702 0x7ffacc380000 1527808 C:\Windows\system32\lsasrv.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation Библиотека DLL сервера LSA 131795770645375702 0x7ffacc5c0000 352256 C:\Windows\SYSTEM32\winsta.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Winstation Library 131795770645375702 0x7ffacc620000 176128 C:\Windows\system32\bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795770645375702 0x7ffacc6f0000 311296 C:\Windows\System32\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795770645375702 0x7ffacc740000 81920 C:\Windows\System32\profapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Profile Basic API 131795770645375702 0x7ffacc760000 65536 C:\Windows\System32\MSASN1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ASN.1 Runtime APIs 131795770645375702 0x7ffacc8f0000 1003520 C:\Windows\System32\ucrtbase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645375702 0x7ffacc9f0000 434176 C:\Windows\System32\bcryptprimitives.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Cryptographic Primitives Library 131795770645375702 0x7ffacd270000 2215936 C:\Windows\System32\KERNELBASE.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645375702 0x7ffacd490000 1871872 C:\Windows\System32\CRYPT32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API32 криптографии 131795770645375702 0x7ffacd710000 638976 C:\Windows\System32\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645375702 0x7ffaced20000 782336 C:\Windows\System32\OLEAUT32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795770645375702 0x7ffacee50000 1183744 C:\Windows\System32\RPCRT4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795770645375702 0x7ffacef80000 32768 C:\Windows\System32\NSI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation NSI User-mode interface DLL 131795770645375702 0x7ffacef90000 647168 C:\Windows\System32\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795770645375702 0x7ffacf0d0000 704512 C:\Windows\System32\KERNEL32.DLL 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645375702 0x7ffacf180000 376832 C:\Windows\System32\WLDAP32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Win32 LDAP API DLL 131795770645375702 0x7ffacf820000 434176 C:\Windows\System32\WS2_32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation 32-разрядная библиотека Windows Socket 2.0 131795770645375702 0x7ffacfb30000 2916352 C:\Windows\System32\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795770645375702 0x7ffacfe20000 663552 C:\Windows\System32\advapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795770645375702 0x7ffad0210000 364544 C:\Windows\System32\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795770645375702 0x7ffad0270000 1908736 C:\Windows\SYSTEM32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 20 704 580 4 00000000:000003e4 131765776284978539 0 0 1 Обязательная метка\Обязательный уровень системы NT AUTHORITY\NETWORK SERVICE svchost.exe C:\Windows\system32\svchost.exe C:\Windows\system32\svchost.exe -k RPCSS Microsoft Corporation 10.0.14393.0 (rs1_release.160715-1616) Хост-процесс для служб Windows 131795770645375918 0x7ff718c20000 57344 C:\Windows\system32\svchost.exe 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Хост-процесс для служб Windows 131795770645375918 0x7ffabae40000 110592 C:\Windows\SYSTEM32\capauthz.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API авторизации возможностей 131795770645375918 0x7ffac4450000 86016 C:\Windows\SYSTEM32\usermgrcli.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation UserMgr API DLL 131795770645375918 0x7ffac6610000 40960 C:\Windows\System32\rasadhlp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Remote Access AutoDial Helper 131795770645375918 0x7ffac8250000 28672 C:\Windows\system32\wshhyperv.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Hyper-V Winsock2 Helper DLL 131795770645375918 0x7ffac8420000 434176 C:\Windows\system32\fwpuclnt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API пользовательского режима FWP/IPsec 131795770645375918 0x7ffaca4e0000 77824 C:\Windows\SYSTEM32\wtsapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Remote Desktop Session Host Server SDK APIs 131795770645375918 0x7ffacb360000 176128 C:\Windows\system32\fwbase.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Firewall Base DLL 131795770645375918 0x7ffacb460000 548864 C:\Windows\system32\FirewallAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API брандмауэра Windows 131795770645375918 0x7ffacb5c0000 913408 c:\windows\system32\rpcss.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Distributed COM Services 131795770645375918 0x7ffacb6a0000 73728 C:\Windows\system32\RpcRtRemote.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Remote RPC Extension 131795770645375918 0x7ffacb6c0000 98304 c:\windows\system32\rpcepmap.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Сопоставитель конечных точек RPC 131795770645375918 0x7ffacb920000 81920 C:\Windows\SYSTEM32\WLDP.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Политика блокировки Windows 131795770645375918 0x7ffacbd30000 229376 C:\Windows\SYSTEM32\IPHLPAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API вспомогательного приложения IP 131795770645375918 0x7ffacbd70000 659456 C:\Windows\SYSTEM32\DNSAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Динамическая библиотека API DNS-клиента 131795770645375918 0x7ffacbf30000 49152 C:\Windows\system32\NtlmShared.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation NTLM Shared Functionality 131795770645375918 0x7ffacbf40000 421888 C:\Windows\system32\msv1_0.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Authentication Package v1.0 131795770645375918 0x7ffacbfb0000 376832 C:\Windows\system32\mswsock.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширение поставщика службы API Microsoft Windows Sockets 2.0 131795770645375918 0x7ffacc010000 86016 C:\Windows\system32\cryptdll.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Cryptography Manager 131795770645375918 0x7ffacc350000 180224 C:\Windows\system32\sspicli.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Security Support Provider Interface 131795770645375918 0x7ffacc5c0000 352256 C:\Windows\SYSTEM32\WINSTA.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Winstation Library 131795770645375918 0x7ffacc620000 176128 C:\Windows\system32\bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795770645375918 0x7ffacc6e0000 61440 C:\Windows\System32\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795770645375918 0x7ffacc6f0000 311296 C:\Windows\System32\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795770645375918 0x7ffacc760000 65536 C:\Windows\System32\MSASN1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ASN.1 Runtime APIs 131795770645375918 0x7ffacc8f0000 1003520 C:\Windows\System32\ucrtbase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645375918 0x7ffacc9f0000 434176 C:\Windows\System32\bcryptPrimitives.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Cryptographic Primitives Library 131795770645375918 0x7ffacca60000 122880 C:\Windows\System32\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795770645375918 0x7ffacca80000 348160 C:\Windows\System32\WINTRUST.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation Microsoft Trust Verification APIs 131795770645375918 0x7ffacd270000 2215936 C:\Windows\System32\KERNELBASE.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645375918 0x7ffacd490000 1871872 C:\Windows\System32\CRYPT32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API32 криптографии 131795770645375918 0x7ffacee50000 1183744 C:\Windows\System32\RPCRT4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795770645375918 0x7ffacef80000 32768 C:\Windows\System32\NSI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation NSI User-mode interface DLL 131795770645375918 0x7ffacef90000 647168 C:\Windows\System32\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795770645375918 0x7ffacf030000 651264 C:\Windows\System32\clbcatq.dll 2001.12.10941.16384 (rs1_release.160715-1616) Microsoft Corporation COM+ Configuration Catalog 131795770645375918 0x7ffacf0d0000 704512 C:\Windows\System32\KERNEL32.DLL 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645375918 0x7ffacf770000 212992 C:\Windows\System32\GDI32.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation GDI Client DLL 131795770645375918 0x7ffacf820000 434176 C:\Windows\System32\WS2_32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation 32-разрядная библиотека Windows Socket 2.0 131795770645375918 0x7ffacf8c0000 1462272 C:\Windows\System32\USER32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795770645375918 0x7ffacfb30000 2916352 C:\Windows\System32\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795770645375918 0x7ffacfe20000 663552 C:\Windows\System32\advapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795770645375918 0x7ffad0070000 1277952 C:\Windows\System32\ole32.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft OLE для Windows 131795770645375918 0x7ffad0210000 364544 C:\Windows\System32\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795770645375918 0x7ffad0270000 1908736 C:\Windows\SYSTEM32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 21 808 520 18 00000000:0000c8d4 131765776288401882 0 0 1 Обязательная метка\Обязательный уровень системы Window Manager\DWM-1 dwm.exe C:\Windows\system32\dwm.exe "dwm.exe" Microsoft Corporation 10.0.14393.0 (rs1_release.160715-1616) Диспетчер окон рабочего стола 131795770645376024 0x7ff683990000 77824 C:\Windows\system32\dwm.exe 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Диспетчер окон рабочего стола 131795770645376024 0x7ffac3810000 167936 C:\Windows\system32\Cabinet.dll 5.00 (rs1_release.160715-1616) Microsoft Corporation Microsoft® Cabinet File API 131795770645376024 0x7ffac60e0000 221184 C:\Windows\system32\XmlLite.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft XmlLite Library 131795770645376024 0x7ffac6f50000 5632000 C:\Windows\system32\d2d1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека Microsoft D2D 131795770645376024 0x7ffac7720000 1601536 C:\Windows\System32\OneCoreUAPCommonProxyStub.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation OneCoreUAP Common Proxy Stub 131795770645376024 0x7ffac7b70000 569344 C:\Windows\System32\Windows.Gaming.Input.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Gaming Input API 131795770645376024 0x7ffac7fc0000 2674688 C:\Windows\system32\d3d10warp.dll 10.0.14393.576 (rs1_release_inmarket.161208-2252) Microsoft Corporation Direct3D 10 Rasterizer 131795770645376024 0x7ffac88a0000 2842624 C:\Windows\system32\d3d11.dll 10.0.14393.953 (rs1_release_inmarket.170303-1614) Microsoft Corporation Direct3D 11 Runtime 131795770645376024 0x7ffac8f90000 45056 C:\Windows\system32\avrt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Среда выполнения мультимедиа в реальном времени 131795770645376024 0x7ffac92e0000 1269760 C:\Windows\SYSTEM32\wintypes.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL основных типов Windows 131795770645376024 0x7ffac9500000 2682880 C:\Windows\system32\CoreUIComponents.dll 131795770645376024 0x7ffac9a30000 249856 C:\Windows\SYSTEM32\ism32k.dll 131795770645376024 0x7ffac9ec0000 294912 C:\Windows\System32\UIAnimation.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Animation Manager 131795770645376024 0x7ffac9f50000 1736704 C:\Windows\system32\WindowsCodecs.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Microsoft Windows Codecs Library 131795770645376024 0x7ffaca110000 94208 C:\Windows\SYSTEM32\dwmghost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DWMGhost 131795770645376024 0x7ffaca5e0000 155648 C:\Windows\system32\dwmapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Интерфейс API диспетчера окон рабочего стола (Майкрософт) 131795770645376024 0x7ffaca640000 770048 C:\Windows\system32\CoreMessaging.dll 10.0.14393.0 Microsoft Corporation Microsoft CoreMessaging Dll 131795770645376024 0x7ffaca770000 1380352 C:\Windows\system32\dcomp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft DirectComposition Library 131795770645376024 0x7ffaca8d0000 2318336 C:\Windows\system32\dwmcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека ядра Microsoft DWM 131795770645376024 0x7ffacac90000 856064 C:\Windows\SYSTEM32\udwm.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Диспетчер окон рабочего стола Майкрософт 131795770645376024 0x7ffacadc0000 167936 C:\Windows\SYSTEM32\dwmredir.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Компонент перенаправления диспетчера окон рабочего стола Microsoft 131795770645376024 0x7ffacadf0000 499712 C:\Windows\system32\apphelp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиентская библиотека совместимости приложений 131795770645376024 0x7ffacaf00000 610304 C:\Windows\system32\uxtheme.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека тем UxTheme (Microsoft) 131795770645376024 0x7ffacb1e0000 1163264 C:\Windows\System32\twinapi.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation twinapi.appcore 131795770645376024 0x7ffacb780000 651264 C:\Windows\system32\dxgi.dll 10.0.14393.953 (rs1_release_inmarket.170303-1614) Microsoft Corporation DirectX Graphics Infrastructure 131795770645376024 0x7ffacc620000 176128 C:\Windows\System32\bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795770645376024 0x7ffacc6e0000 61440 C:\Windows\System32\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795770645376024 0x7ffacc760000 65536 C:\Windows\System32\MSASN1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ASN.1 Runtime APIs 131795770645376024 0x7ffacc8f0000 1003520 C:\Windows\System32\ucrtbase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645376024 0x7ffacc9f0000 434176 C:\Windows\System32\bcryptPrimitives.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Cryptographic Primitives Library 131795770645376024 0x7ffacca60000 122880 C:\Windows\System32\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795770645376024 0x7ffaccae0000 692224 C:\Windows\System32\shcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795770645376024 0x7ffacd270000 2215936 C:\Windows\System32\KERNELBASE.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645376024 0x7ffacd490000 1871872 C:\Windows\System32\CRYPT32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API32 криптографии 131795770645376024 0x7ffacd710000 638976 C:\Windows\System32\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645376024 0x7ffacd7b0000 270336 C:\Windows\System32\cfgmgr32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Configuration Manager DLL 131795770645376024 0x7ffaced20000 782336 C:\Windows\System32\OLEAUT32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795770645376024 0x7ffacee50000 1183744 C:\Windows\System32\RPCRT4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795770645376024 0x7ffacef90000 647168 C:\Windows\System32\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795770645376024 0x7ffacf030000 651264 C:\Windows\System32\clbcatq.dll 2001.12.10941.16384 (rs1_release.160715-1616) Microsoft Corporation COM+ Configuration Catalog 131795770645376024 0x7ffacf0d0000 704512 C:\Windows\System32\KERNEL32.DLL 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645376024 0x7ffacf770000 212992 C:\Windows\System32\gdi32.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation GDI Client DLL 131795770645376024 0x7ffacf890000 188416 C:\Windows\System32\IMM32.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Multi-User Windows IMM32 API Client DLL 131795770645376024 0x7ffacf8c0000 1462272 C:\Windows\System32\USER32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795770645376024 0x7ffacfb30000 2916352 C:\Windows\System32\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795770645376024 0x7ffacfe20000 663552 C:\Windows\System32\advapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795770645376024 0x7ffad0210000 364544 C:\Windows\System32\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795770645376024 0x7ffad0270000 1908736 C:\Windows\SYSTEM32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 22 904 580 4 00000000:000003e7 131765776293087855 0 0 1 Обязательная метка\Обязательный уровень системы NT AUTHORITY\СИСТЕМА svchost.exe C:\Windows\System32\svchost.exe C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted Microsoft Corporation 10.0.14393.0 (rs1_release.160715-1616) Хост-процесс для служб Windows 131795770645376243 0x259b0640000 12288 C:\Windows\system32\SFC.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows File Protection 131795770645376243 0x7ff718c20000 57344 C:\Windows\System32\svchost.exe 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Хост-процесс для служб Windows 131795770645376243 0x7ffaab830000 278528 c:\windows\system32\netman.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Диспетчер сетевых подключений 131795770645376243 0x7ffaab880000 532480 c:\windows\system32\MPRAPI.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation Windows NT MP Router Administration DLL 131795770645376243 0x7ffaab910000 905216 c:\windows\system32\RASDLG.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API общих диалогов службы удаленного доступа 131795770645376243 0x7ffab1260000 10350592 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\clr.dll 4.7.2117.0 built by: NET47REL1LAST Microsoft Corporation Microsoft .NET Runtime Common Language Runtime - WorkStation 131795770645376243 0x7ffab2460000 2822144 C:\Windows\System32\netshell.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Оболочка сетевых подключений 131795770645376243 0x7ffab7d80000 753664 c:\windows\system32\RASAPI32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API удаленного доступа 131795770645376243 0x7ffabae60000 77824 C:\Windows\System32\DEVRTL.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Device Management Run Time Library 131795770645376243 0x7ffabb430000 65536 C:\Windows\System32\pcacli.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Program Compatibility Assistant Client Module 131795770645376243 0x7ffabc510000 90112 C:\Windows\system32\execmodelproxy.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ExecModelProxy 131795770645376243 0x7ffabcf30000 110592 C:\Windows\System32\MPR.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека маршрутизации для нескольких служб доступа 131795770645376243 0x7ffabcf50000 921600 C:\Windows\System32\drvstore.dll 10.0.14393.351 (rs1_release_inmarket.161014-1755) Microsoft Corporation Driver Store API 131795770645376243 0x7ffabdd60000 425984 C:\Windows\System32\AppXDeploymentClient.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL-библиотека клиента развертывания AppX 131795770645376243 0x7ffabef80000 69632 C:\Windows\System32\sfc_os.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows File Protection 131795770645376243 0x7ffabfa00000 1011712 C:\Windows\SYSTEM32\MSVCR120_CLR0400.dll 12.00.52519.0 built by: VSWINSERVICING Microsoft Corporation Microsoft® C Runtime Library 131795770645376243 0x7ffac0610000 3088384 C:\Windows\System32\MSI.DLL 5.0.14393.2155 Microsoft Corporation Windows Installer 131795770645376243 0x7ffac0bf0000 3559424 C:\Windows\System32\ActXPrxy.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation ActiveX Interface Marshaling Library 131795770645376243 0x7ffac0fc0000 294912 C:\Windows\system32\spp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека общих точек защиты Microsoft® Windows 131795770645376243 0x7ffac1010000 417792 C:\Windows\system32\MSCOREE.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft .NET Runtime Execution Engine 131795770645376243 0x7ffac10f0000 421888 c:\windows\system32\storsvc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Службы хранения 131795770645376243 0x7ffac1240000 638976 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscoreei.dll 4.7.2623.0 built by: NET471REL1LAST_C Microsoft Corporation Microsoft .NET Runtime Execution Engine 131795770645376243 0x7ffac1e80000 507904 C:\Windows\System32\NetSetupShim.dll 10.0.14393.1532 (rs1_release_d.170711-1840) Microsoft Corporation Network Configuration API 131795770645376243 0x7ffac1fd0000 999424 C:\Windows\system32\wbem\fastprox.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation WMI Custom Marshaller 131795770645376243 0x7ffac20d0000 110592 c:\windows\system32\RMCLIENT.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Resource Manager Client 131795770645376243 0x7ffac21d0000 81920 C:\Windows\system32\wbem\wbemsvc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation WMI 131795770645376243 0x7ffac2360000 57344 c:\windows\system32\TimeBrokerClient.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Time Broker Client Library 131795770645376243 0x7ffac23c0000 331776 C:\Windows\System32\OneCoreCommonProxyStub.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation OneCore Common Proxy Stub 131795770645376243 0x7ffac2420000 466944 c:\windows\system32\das.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служба сопоставления устройств 131795770645376243 0x7ffac2530000 270336 C:\Windows\system32\hnetcfgclient.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиент API конфигурации домашней сети 131795770645376243 0x7ffac2750000 106496 c:\windows\system32\bcd.dll 10.0.14393.1794 (rs1_release.171008-1615) Microsoft Corporation BCD DLL 131795770645376243 0x7ffac29f0000 159744 C:\Windows\System32\NetSetupApi.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Network Configuration API 131795770645376243 0x7ffac2a20000 81920 c:\windows\system32\rtutils.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Routing Utilities 131795770645376243 0x7ffac2b80000 40960 C:\Windows\System32\VERSION.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Version Checking and File Installation Libraries 131795770645376243 0x7ffac3270000 40960 c:\windows\system32\FLTLIB.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека фильтров 131795770645376243 0x7ffac34c0000 81920 C:\Windows\system32\vss_ps.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation Microsoft® Volume Shadow Copy Service proxy/stub 131795770645376243 0x7ffac3840000 3088384 c:\windows\system32\ESENT.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширяемая подсистема хранения данных ESE для Microsoft(R) Windows(R) 131795770645376243 0x7ffac4050000 118784 c:\windows\system32\wdi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Инфраструктура диагностики Windows 131795770645376243 0x7ffac41c0000 139264 c:\windows\system32\trkwks.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиент отслеживания изменившихся связей 131795770645376243 0x7ffac4220000 520192 C:\Windows\SYSTEM32\wbemcomn.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation WMI 131795770645376243 0x7ffac4450000 86016 C:\Windows\SYSTEM32\usermgrcli.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation UserMgr API DLL 131795770645376243 0x7ffac4470000 65536 C:\Windows\system32\wbem\wbemprox.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation WMI 131795770645376243 0x7ffac4650000 516096 c:\windows\system32\pcasvc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служба помощника по совместимости программ 131795770645376243 0x7ffac4f40000 122880 C:\Windows\system32\radardt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Программа обнаружения нехватки системных ресурсов Windows 131795770645376243 0x7ffac4fd0000 618496 C:\Windows\System32\wlidprov.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft® Account Provider 131795770645376243 0x7ffac5b30000 114688 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\fusion.dll 4.6.1586.0 built by: NETFXREL2 Microsoft Corporation Assembly manager 131795770645376243 0x7ffac5b50000 180224 c:\windows\system32\dssvc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL службы NT для службы совместного доступа к данным 131795770645376243 0x7ffac5c50000 131072 c:\windows\system32\rasman.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Remote Access Connection Manager 131795770645376243 0x7ffac60e0000 221184 C:\Windows\System32\XmlLite.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft XmlLite Library 131795770645376243 0x7ffac6120000 966656 c:\windows\system32\sysmain.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Хост службы Superfetch 131795770645376243 0x7ffac6410000 98304 C:\Windows\system32\VssTrace.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека трассировки службы теневого копирования тома Microsoft® 131795770645376243 0x7ffac6430000 1581056 C:\Windows\system32\VSSAPI.DLL 10.0.14393.953 (rs1_release_inmarket.170303-1614) Microsoft Corporation Microsoft® Volume Shadow Copy Requestor/Writer Services API DLL 131795770645376243 0x7ffac6c40000 2596864 C:\Windows\WinSxS\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.14393.953_none_42151e83c686086b\Comctl32.dll 6.10 (rs1_release_inmarket.170303-1614) Microsoft Corporation Библиотека элементов управления взаимодействия с пользователем 131795770645376243 0x7ffac79c0000 57344 C:\Windows\System32\npmproxy.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Network List Manager Proxy 131795770645376243 0x7ffac7b10000 217088 C:\Windows\SYSTEM32\WUDFPlatform.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Driver Foundation - библиотека платформ пользовательского режима 131795770645376243 0x7ffac7b50000 114688 c:\windows\system32\wudfsvc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Driver Foundation (WDF) - служба среды выполнения платформы драйвера режима пользователя 131795770645376243 0x7ffac8810000 45056 c:\windows\system32\WINNSI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Network Store Information RPC interface 131795770645376243 0x7ffac8880000 69632 c:\windows\system32\WMICLNT.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation WMI Client API 131795770645376243 0x7ffac8cf0000 815104 C:\Windows\System32\taskschd.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Task Scheduler COM API 131795770645376243 0x7ffac9290000 40960 c:\windows\system32\DSROLE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DS Setup Client DLL 131795770645376243 0x7ffac9480000 462848 c:\windows\system32\MMDevAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation MMDevice API 131795770645376243 0x7ffac9790000 98304 C:\Windows\System32\nlaapi.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Network Location Awareness 2 131795770645376243 0x7ffac9800000 376832 c:\windows\system32\audioendpointbuilder.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Средство построения конечных точек Windows Audio 131795770645376243 0x7ffac9de0000 94208 C:\Windows\System32\portabledeviceconnectapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Portable Device Connection API Components 131795770645376243 0x7ffac9e00000 647168 C:\Windows\SYSTEM32\PortableDeviceApi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Компоненты API для переносных устройств Windows 131795770645376243 0x7ffac9f10000 221184 C:\Windows\System32\netprofm.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Network List Manager 131795770645376243 0x7ffaca100000 36864 C:\Windows\SYSTEM32\httpprxc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Proxy Manager Provider RPC interface 131795770645376243 0x7ffaca130000 204800 C:\Windows\SYSTEM32\windows.devices.radios.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows.Devices.Radios DLL 131795770645376243 0x7ffaca1f0000 65536 C:\Windows\SYSTEM32\storageusage.dll 10.0.14393.82 (rs1_release.160805-1735) Microsoft Corporation Storage Usage 131795770645376243 0x7ffaca250000 49152 C:\Windows\SYSTEM32\bi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Background Broker Infrastructure Client Library 131795770645376243 0x7ffaca260000 45056 c:\windows\system32\SystemEventsBrokerClient.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation system Events Broker Client Library 131795770645376243 0x7ffaca2d0000 360448 c:\windows\system32\ncbservice.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Посредник подключений к сети 131795770645376243 0x7ffaca340000 1593344 c:\windows\system32\PROPSYS.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Система страниц свойств (Майкрософт) 131795770645376243 0x7ffaca4e0000 77824 c:\windows\system32\WTSAPI32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Remote Desktop Session Host Server SDK APIs 131795770645376243 0x7ffaca710000 65536 C:\Windows\system32\pcadm.dll 10.0.14393.2189 (rs1_release.180329-1711) Microsoft Corporation Program Compatibility Assistant Diagnostic Module 131795770645376243 0x7ffacad70000 278528 c:\windows\system32\BrokerLib.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Broker Base Library 131795770645376243 0x7ffacadf0000 499712 c:\windows\system32\apphelp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиентская библиотека совместимости приложений 131795770645376243 0x7ffacb1e0000 1163264 C:\Windows\SYSTEM32\twinapi.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation twinapi.appcore 131795770645376243 0x7ffacb3f0000 163840 C:\Windows\System32\DEVOBJ.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Device Information Set DLL 131795770645376243 0x7ffacb420000 204800 C:\Windows\SYSTEM32\ntmarta.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик Windows NT MARTA 131795770645376243 0x7ffacb920000 81920 C:\Windows\SYSTEM32\WLDP.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Политика блокировки Windows 131795770645376243 0x7ffacbbb0000 208896 C:\Windows\system32\rsaenh.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Enhanced Cryptographic Provider 131795770645376243 0x7ffacbbf0000 40960 c:\windows\system32\DPAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Data Protection API 131795770645376243 0x7ffacbd30000 229376 c:\windows\system32\IPHLPAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API вспомогательного приложения IP 131795770645376243 0x7ffacbe40000 126976 c:\windows\system32\USERENV.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Userenv 131795770645376243 0x7ffacbfb0000 376832 C:\Windows\system32\mswsock.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширение поставщика службы API Microsoft Windows Sockets 2.0 131795770645376243 0x7ffacc150000 94208 C:\Windows\System32\CRYPTSP.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Cryptographic Service Provider API 131795770645376243 0x7ffacc170000 45056 C:\Windows\System32\CRYPTBASE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base cryptographic API DLL 131795770645376243 0x7ffacc350000 180224 c:\windows\system32\SspiCli.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Security Support Provider Interface 131795770645376243 0x7ffacc500000 102400 c:\windows\system32\EventAggregation.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Event Aggregation User Mode Library 131795770645376243 0x7ffacc520000 622592 C:\Windows\system32\SXS.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Fusion 2.5 131795770645376243 0x7ffacc5c0000 352256 c:\windows\system32\WINSTA.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Winstation Library 131795770645376243 0x7ffacc620000 176128 c:\windows\system32\bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795770645376243 0x7ffacc6e0000 61440 C:\Windows\System32\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795770645376243 0x7ffacc6f0000 311296 C:\Windows\System32\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795770645376243 0x7ffacc740000 81920 C:\Windows\System32\profapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Profile Basic API 131795770645376243 0x7ffacc760000 65536 C:\Windows\System32\MSASN1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ASN.1 Runtime APIs 131795770645376243 0x7ffacc8f0000 1003520 C:\Windows\System32\ucrtbase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645376243 0x7ffacc9f0000 434176 C:\Windows\System32\bcryptPrimitives.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Cryptographic Primitives Library 131795770645376243 0x7ffacca60000 122880 C:\Windows\System32\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795770645376243 0x7ffacca80000 348160 C:\Windows\System32\WINTRUST.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation Microsoft Trust Verification APIs 131795770645376243 0x7ffaccae0000 692224 C:\Windows\System32\shcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795770645376243 0x7ffaccb90000 7180288 C:\Windows\System32\windows.storage.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API хранения Microsoft WinRT 131795770645376243 0x7ffacd270000 2215936 C:\Windows\System32\KERNELBASE.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645376243 0x7ffacd490000 1871872 C:\Windows\System32\CRYPT32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API32 криптографии 131795770645376243 0x7ffacd710000 638976 C:\Windows\System32\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645376243 0x7ffacd7b0000 270336 C:\Windows\System32\cfgmgr32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Configuration Manager DLL 131795770645376243 0x7ffacd810000 22056960 C:\Windows\System32\SHELL32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Общая библиотека оболочки Windows 131795770645376243 0x7ffaced20000 782336 C:\Windows\System32\OLEAUT32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795770645376243 0x7ffacede0000 450560 C:\Windows\System32\coml2.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft COM for Windows 131795770645376243 0x7ffacee50000 1183744 C:\Windows\System32\RPCRT4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795770645376243 0x7ffacef80000 32768 C:\Windows\System32\NSI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation NSI User-mode interface DLL 131795770645376243 0x7ffacef90000 647168 C:\Windows\System32\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795770645376243 0x7ffacf030000 651264 C:\Windows\System32\clbcatq.dll 2001.12.10941.16384 (rs1_release.160715-1616) Microsoft Corporation COM+ Configuration Catalog 131795770645376243 0x7ffacf0d0000 704512 C:\Windows\System32\KERNEL32.DLL 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645376243 0x7ffacf340000 4362240 C:\Windows\System32\SETUPAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Setup API 131795770645376243 0x7ffacf770000 212992 C:\Windows\System32\GDI32.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation GDI Client DLL 131795770645376243 0x7ffacf820000 434176 C:\Windows\System32\WS2_32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation 32-разрядная библиотека Windows Socket 2.0 131795770645376243 0x7ffacf8c0000 1462272 C:\Windows\System32\user32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795770645376243 0x7ffacfb30000 2916352 C:\Windows\System32\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795770645376243 0x7ffacfe20000 663552 C:\Windows\System32\ADVAPI32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795770645376243 0x7ffad0070000 1277952 C:\Windows\System32\ole32.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft OLE для Windows 131795770645376243 0x7ffad01b0000 335872 C:\Windows\System32\SHLWAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека небольших программ оболочки 131795770645376243 0x7ffad0210000 364544 C:\Windows\System32\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795770645376243 0x7ffad0270000 1908736 C:\Windows\SYSTEM32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 23 96 580 4 00000000:000003e5 131765776304995849 0 0 1 Обязательная метка\Обязательный уровень системы NT AUTHORITY\LOCAL SERVICE svchost.exe C:\Windows\system32\svchost.exe C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork Microsoft Corporation 10.0.14393.0 (rs1_release.160715-1616) Хост-процесс для служб Windows 131795770645376384 0x7ff718c20000 57344 C:\Windows\system32\svchost.exe 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Хост-процесс для служб Windows 131795770645376384 0x7ffac0bf0000 3559424 C:\Windows\System32\ActXPrxy.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation ActiveX Interface Marshaling Library 131795770645376384 0x7ffac1fd0000 999424 C:\Windows\system32\wbem\fastprox.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation WMI Custom Marshaller 131795770645376384 0x7ffac21b0000 77824 C:\Windows\System32\srumapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation System Resource Usage Monitor API 131795770645376384 0x7ffac21d0000 81920 C:\Windows\system32\wbem\wbemsvc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation WMI 131795770645376384 0x7ffac2510000 102400 C:\Windows\System32\energyprov.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Energy System Resource Usage Monitor (SRUM) provider 131795770645376384 0x7ffac2580000 49152 C:\Windows\System32\ncuprov.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Network Connectivity Statistics Provider for System Resource Usage Monitor Service 131795770645376384 0x7ffac2b90000 90112 C:\Windows\System32\nduprov.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик сетевой статистики для службы отслеживания использования ресурсов системы 131795770645376384 0x7ffac2bb0000 106496 C:\Windows\SYSTEM32\appsruprov.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Application System Resource Usage Monitor (SRUM) provider 131795770645376384 0x7ffac2bd0000 131072 C:\Windows\System32\eeprov.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Energy Estimator SRUM provider 131795770645376384 0x7ffac2c20000 45056 C:\Windows\system32\wfapigp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Firewall GPO Helper dll 131795770645376384 0x7ffac2d70000 57344 C:\Windows\System32\wpnsruprov.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SRUM provider for WPN 131795770645376384 0x7ffac3310000 225280 C:\Windows\System32\srumsvc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation System Resource Usage Monitor Service 131795770645376384 0x7ffac3730000 36864 C:\Windows\system32\pnpts.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation PlugPlay Troubleshooter 131795770645376384 0x7ffac3840000 3088384 C:\Windows\system32\ESENT.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширяемая подсистема хранения данных ESE для Microsoft(R) Windows(R) 131795770645376384 0x7ffac3bd0000 106496 c:\windows\system32\ncdautosetup.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL службы автоматической настройки сетевых устройств 131795770645376384 0x7ffac3cb0000 2772992 C:\Windows\SYSTEM32\iertutil.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служебная программа времени выполнения для Internet Explorer 131795770645376384 0x7ffac3f60000 225280 c:\windows\system32\FWPolicyIOMgr.dll 10.0.14393.2189 (rs1_release.180329-1711) Microsoft Corporation FwPolicyIoMgr DLL 131795770645376384 0x7ffac4000000 274432 C:\Windows\SYSTEM32\policymanager.dll 10.0.14393.2035 (rs1_release_inmarket.180110-1910) Microsoft Corporation Policy Manager DLL 131795770645376384 0x7ffac4050000 118784 c:\windows\system32\wdi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Инфраструктура диагностики Windows 131795770645376384 0x7ffac41f0000 40960 C:\Windows\system32\adhapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AD harvest sites and subnets API 131795770645376384 0x7ffac4220000 520192 C:\Windows\SYSTEM32\wbemcomn.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation WMI 131795770645376384 0x7ffac4470000 65536 C:\Windows\system32\wbem\wbemprox.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation WMI 131795770645376384 0x7ffac4500000 200704 c:\windows\system32\dps.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служба политики диагностики WDI 131795770645376384 0x7ffac4cd0000 933888 c:\windows\system32\mpssvc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служба защиты (Microsoft) 131795770645376384 0x7ffac4f40000 122880 C:\Windows\system32\radardt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Программа обнаружения нехватки системных ресурсов Windows 131795770645376384 0x7ffac66c0000 32768 C:\Windows\system32\wship6.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL помощника Winsock2 (TL/IPv6) 131795770645376384 0x7ffac66d0000 32768 C:\Windows\system32\wshtcpip.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL помощника службы Winsock2 (TL/IPv4) 131795770645376384 0x7ffac6700000 40960 C:\Windows\system32\wshqos.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL помощника службы QoS Winsock2 131795770645376384 0x7ffac6740000 53248 C:\Windows\system32\dtsh.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека API состояния общего доступа и обнаружения 131795770645376384 0x7ffac6990000 69632 c:\windows\system32\deviceassociation.dll 10.0.14393.82 (rs1_release.160805-1735) Microsoft Corporation Device Association Client DLL 131795770645376384 0x7ffac74b0000 827392 c:\windows\system32\bfe.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служба базовой фильтрации 131795770645376384 0x7ffac7580000 1077248 C:\Windows\SYSTEM32\mrmcorer.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Windows MRM 131795770645376384 0x7ffac79c0000 57344 C:\Windows\System32\npmproxy.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Network List Manager Proxy 131795770645376384 0x7ffac83d0000 106496 C:\Windows\SYSTEM32\dhcpcsvc.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служба DHCP-клиента 131795770645376384 0x7ffac83f0000 90112 C:\Windows\SYSTEM32\dhcpcsvc6.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиент DHCPv6 131795770645376384 0x7ffac8420000 434176 c:\windows\system32\fwpuclnt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API пользовательского режима FWP/IPsec 131795770645376384 0x7ffac8810000 45056 C:\Windows\SYSTEM32\WINNSI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Network Store Information RPC interface 131795770645376384 0x7ffac8cf0000 815104 C:\Windows\System32\taskschd.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Task Scheduler COM API 131795770645376384 0x7ffac90b0000 90112 c:\windows\system32\wkscli.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Workstation Service Client DLL 131795770645376384 0x7ffac9220000 397312 C:\Windows\SYSTEM32\wevtapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API настройки и использования событий 131795770645376384 0x7ffac9f10000 221184 C:\Windows\System32\netprofm.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Network List Manager 131795770645376384 0x7ffaca100000 36864 C:\Windows\SYSTEM32\httpprxc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Proxy Manager Provider RPC interface 131795770645376384 0x7ffaca170000 45056 c:\windows\system32\ktmw32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows KTM Win32 Client DLL 131795770645376384 0x7ffaca340000 1593344 C:\Windows\System32\PROPSYS.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Система страниц свойств (Майкрософт) 131795770645376384 0x7ffaca4e0000 77824 C:\Windows\system32\WTSAPI32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Remote Desktop Session Host Server SDK APIs 131795770645376384 0x7ffaca640000 770048 c:\windows\system32\coremessaging.dll 10.0.14393.0 Microsoft Corporation Microsoft CoreMessaging Dll 131795770645376384 0x7ffacb070000 69632 C:\Windows\SYSTEM32\embeddedmodesvcapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Embedded Mode Service Client DLL 131795770645376384 0x7ffacb140000 593920 c:\windows\system32\msvcp110_win.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Microsoft® STL110 C++ Runtime Library 131795770645376384 0x7ffacb360000 176128 C:\Windows\system32\fwbase.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Firewall Base DLL 131795770645376384 0x7ffacb3f0000 163840 C:\Windows\system32\DEVOBJ.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Device Information Set DLL 131795770645376384 0x7ffacb420000 204800 C:\Windows\system32\ntmarta.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик Windows NT MARTA 131795770645376384 0x7ffacb460000 548864 C:\Windows\system32\FirewallAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API брандмауэра Windows 131795770645376384 0x7ffacb6f0000 143360 C:\Windows\SYSTEM32\gpapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиентские функции API групповой политики 131795770645376384 0x7ffacb920000 81920 C:\Windows\SYSTEM32\WLDP.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Политика блокировки Windows 131795770645376384 0x7ffacb960000 303104 c:\windows\system32\AUTHZ.dll 10.0.14393.1737 (rs1_release_inmarket.170914-1249) Microsoft Corporation Authorization Framework 131795770645376384 0x7ffacbd30000 229376 c:\windows\system32\IPHLPAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API вспомогательного приложения IP 131795770645376384 0x7ffacbd70000 659456 c:\windows\system32\DNSAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Динамическая библиотека API DNS-клиента 131795770645376384 0x7ffacbe20000 53248 c:\windows\system32\netutils.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API Helpers DLL 131795770645376384 0x7ffacbfb0000 376832 C:\Windows\system32\mswsock.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширение поставщика службы API Microsoft Windows Sockets 2.0 131795770645376384 0x7ffacc170000 45056 C:\Windows\system32\CRYPTBASE.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base cryptographic API DLL 131795770645376384 0x7ffacc350000 180224 c:\windows\system32\SspiCli.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Security Support Provider Interface 131795770645376384 0x7ffacc5c0000 352256 C:\Windows\system32\WINSTA.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Winstation Library 131795770645376384 0x7ffacc620000 176128 c:\windows\system32\bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795770645376384 0x7ffacc6e0000 61440 C:\Windows\System32\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795770645376384 0x7ffacc6f0000 311296 C:\Windows\System32\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795770645376384 0x7ffacc740000 81920 C:\Windows\System32\profapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Profile Basic API 131795770645376384 0x7ffacc760000 65536 C:\Windows\System32\MSASN1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ASN.1 Runtime APIs 131795770645376384 0x7ffacc8f0000 1003520 C:\Windows\System32\ucrtbase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645376384 0x7ffacc9f0000 434176 C:\Windows\System32\bcryptPrimitives.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Cryptographic Primitives Library 131795770645376384 0x7ffacca60000 122880 C:\Windows\System32\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795770645376384 0x7ffacca80000 348160 C:\Windows\System32\WINTRUST.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation Microsoft Trust Verification APIs 131795770645376384 0x7ffaccae0000 692224 C:\Windows\System32\shcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795770645376384 0x7ffaccb90000 7180288 C:\Windows\System32\windows.storage.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API хранения Microsoft WinRT 131795770645376384 0x7ffacd270000 2215936 C:\Windows\System32\KERNELBASE.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645376384 0x7ffacd490000 1871872 C:\Windows\System32\CRYPT32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API32 криптографии 131795770645376384 0x7ffacd710000 638976 C:\Windows\System32\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645376384 0x7ffacd7b0000 270336 C:\Windows\System32\CFGMGR32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Configuration Manager DLL 131795770645376384 0x7ffacd810000 22056960 C:\Windows\System32\SHELL32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Общая библиотека оболочки Windows 131795770645376384 0x7ffaced20000 782336 C:\Windows\System32\OLEAUT32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795770645376384 0x7ffacee50000 1183744 C:\Windows\System32\RPCRT4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795770645376384 0x7ffacef80000 32768 C:\Windows\System32\NSI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation NSI User-mode interface DLL 131795770645376384 0x7ffacef90000 647168 C:\Windows\System32\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795770645376384 0x7ffacf030000 651264 C:\Windows\System32\clbcatq.dll 2001.12.10941.16384 (rs1_release.160715-1616) Microsoft Corporation COM+ Configuration Catalog 131795770645376384 0x7ffacf0d0000 704512 C:\Windows\System32\KERNEL32.DLL 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645376384 0x7ffacf770000 212992 C:\Windows\System32\GDI32.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation GDI Client DLL 131795770645376384 0x7ffacf820000 434176 C:\Windows\System32\WS2_32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation 32-разрядная библиотека Windows Socket 2.0 131795770645376384 0x7ffacf8c0000 1462272 C:\Windows\System32\user32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795770645376384 0x7ffacfb30000 2916352 C:\Windows\System32\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795770645376384 0x7ffacfe20000 663552 C:\Windows\System32\advapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795770645376384 0x7ffad0070000 1277952 C:\Windows\System32\ole32.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft OLE для Windows 131795770645376384 0x7ffad01b0000 335872 C:\Windows\System32\shlwapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека небольших программ оболочки 131795770645376384 0x7ffad0210000 364544 C:\Windows\System32\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795770645376384 0x7ffad0270000 1908736 C:\Windows\SYSTEM32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 24 348 580 4 00000000:000003e7 131765776305446235 0 0 1 Обязательная метка\Обязательный уровень системы NT AUTHORITY\СИСТЕМА svchost.exe C:\Windows\system32\svchost.exe C:\Windows\system32\svchost.exe -k netsvcs Microsoft Corporation 10.0.14393.0 (rs1_release.160715-1616) Хост-процесс для служб Windows 131795770645376622 0x7ff718c20000 57344 C:\Windows\system32\svchost.exe 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Хост-процесс для служб Windows 131795770645376622 0x7ffaa0aa0000 2138112 c:\windows\system32\wlidsvc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служба учетных записей Майкрософт 131795770645376622 0x7ffab0750000 368640 C:\Windows\system32\rascustom.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Модуль настраиваемых протоколов 131795770645376622 0x7ffab07b0000 606208 C:\Windows\system32\vpnike.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation VPNIKE Protocol Engine - Test dll 131795770645376622 0x7ffab09b0000 323584 C:\Windows\system32\rasppp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Remote Access PPP 131795770645376622 0x7ffab0a00000 270336 C:\Windows\system32\rastapi.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Remote Access TAPI Compliance Layer 131795770645376622 0x7ffab1d80000 262144 C:\Windows\system32\eappcfg.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Eap Peer Config 131795770645376622 0x7ffab3440000 696320 c:\windows\system32\rasmans.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Диспетчер подключений удаленного доступа 131795770645376622 0x7ffab4b90000 655360 C:\Windows\System32\StructuredQuery.dll 7.0.14393.2068 (rs1_release.180209-1727) Microsoft Corporation Structured Query 131795770645376622 0x7ffab4c50000 90112 c:\windows\system32\eappprxy.dll 10.0.14393.187 (rs1_release_inmarket.160906-1818) Microsoft Corporation Microsoft EAPHost Peer Client DLL 131795770645376622 0x7ffab7d80000 753664 C:\Windows\system32\RASAPI32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API удаленного доступа 131795770645376622 0x7ffab9a90000 479232 C:\Windows\system32\dmEnrollEngine.DLL 10.0.14393.479 (rs1_release.161110-2025) Microsoft Corporation Enroll Engine DLL 131795770645376622 0x7ffabae60000 77824 C:\Windows\system32\DEVRTL.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Device Management Run Time Library 131795770645376622 0x7ffabafc0000 700416 C:\Windows\SYSTEM32\wer.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека сообщений об ошибках Windows 131795770645376622 0x7ffabc210000 2355200 c:\windows\system32\wuaueng.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Агент Центра обновления Windows 131795770645376622 0x7ffabcf30000 110592 c:\windows\system32\MPR.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека маршрутизации для нескольких служб доступа 131795770645376622 0x7ffabcf50000 921600 C:\Windows\system32\drvstore.dll 10.0.14393.351 (rs1_release_inmarket.161014-1755) Microsoft Corporation Driver Store API 131795770645376622 0x7ffabd180000 548864 C:\Windows\SYSTEM32\WINSPOOL.DRV 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Драйвер диспетчера очереди Windows 131795770645376622 0x7ffabdf60000 159744 C:\Windows\System32\raschap.dll 10.0.14393.1480 (rs1_release.170706-2004) Microsoft Corporation Удаленные доступ через PPP CHAP 131795770645376622 0x7ffabe4a0000 147456 c:\windows\system32\appinfo.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служба сведений о приложении 131795770645376622 0x7ffabe4d0000 286720 C:\Windows\System32\MSWB7.dll 10.0.14393.1737 (rs1_release_inmarket.170914-1249) Microsoft Corporation MSWB7 DLL 131795770645376622 0x7ffabed80000 540672 C:\Windows\system32\wbem\wbemess.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation WMI 131795770645376622 0x7ffabee10000 90112 C:\Windows\SYSTEM32\NCObjAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation 131795770645376622 0x7ffabee30000 847872 C:\Windows\system32\wbem\wmiprvsd.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation WMI 131795770645376622 0x7ffabefd0000 258048 C:\Windows\SYSTEM32\AEPIC.dll 10.0.17060.1029 (WinBuild.160101.0800) Microsoft Corporation Application Experience Program Cache 131795770645376622 0x7ffabf010000 98304 C:\Windows\SYSTEM32\elscore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL ядра платформы Els 131795770645376622 0x7ffabf090000 98304 C:\Windows\System32\LocationFrameworkInternalPS.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Geolocation Framework Internal PS 131795770645376622 0x7ffabf0e0000 372736 C:\Windows\system32\hnetcfg.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Диспетчер конфигурации домашней сети 131795770645376622 0x7ffabf1d0000 192512 C:\Windows\System32\cryptnet.dll 10.0.14393.2035 (rs1_release_inmarket.180110-1910) Microsoft Corporation Crypto Network Related API 131795770645376622 0x7ffabf200000 405504 c:\windows\system32\cryptngc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API службы Microsoft Passport 131795770645376622 0x7ffabf2a0000 159744 C:\Windows\system32\dssenh.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Enhanced DSS and Diffie-Hellman Cryptographic Provider 131795770645376622 0x7ffabf330000 2457600 C:\Windows\System32\msxml6.dll 6.30.14393.2156 Microsoft Corporation MSXML 6.0 131795770645376622 0x7ffabfd60000 90112 C:\Windows\system32\napinsp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик оболочки совместимости для имен электронной почты 131795770645376622 0x7ffabfda0000 122880 C:\Windows\system32\wbem\ncprov.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Non-COM WMI Event Provision APIs 131795770645376622 0x7ffabfdc0000 86016 C:\Windows\system32\keepaliveprovider.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Keep alive provider API 131795770645376622 0x7ffabfe50000 643072 C:\Windows\System32\wpnprv.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик подключения платформы push-уведомлений Windows 131795770645376622 0x7ffabfef0000 106496 C:\Windows\system32\pnrpnsp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик пространства имен PNRP 131795770645376622 0x7ffabff60000 135168 C:\Windows\system32\ncryptsslp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft SChannel Provider 131795770645376622 0x7ffac0000000 401408 C:\Windows\system32\wbem\repdrvfs.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation WMI Repository Driver 131795770645376622 0x7ffac05f0000 94208 C:\Windows\System32\wwapi.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation WWAN API 131795770645376622 0x7ffac0610000 3088384 C:\Windows\SYSTEM32\msi.dll 5.0.14393.2155 Microsoft Corporation Windows Installer 131795770645376622 0x7ffac0910000 724992 C:\Windows\System32\Windows.Networking.Connectivity.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Networking Connectivity Runtime DLL 131795770645376622 0x7ffac0ab0000 57344 C:\Windows\System32\winrnr.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation LDAP RnR Provider DLL 131795770645376622 0x7ffac0ac0000 53248 c:\windows\system32\tbs.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation TBS 131795770645376622 0x7ffac0ad0000 86016 C:\Windows\SYSTEM32\mskeyprotect.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик защиты ключей (Майкрософт) 131795770645376622 0x7ffac0af0000 114688 C:\Windows\system32\ATL.DLL 3.05.2284 Microsoft Corporation ATL Module for Windows XP (Unicode) 131795770645376622 0x7ffac0bf0000 3559424 C:\Windows\System32\ActXPrxy.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation ActiveX Interface Marshaling Library 131795770645376622 0x7ffac1090000 94208 C:\Windows\System32\shacctprofile.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Shell Accounts Profile Classes 131795770645376622 0x7ffac1160000 892928 C:\Windows\System32\wuapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API клиента Центра обновления Windows 131795770645376622 0x7ffac1530000 528384 C:\Windows\SYSTEM32\dpx.dll 5.00 (rs1_release.160715-1616) Microsoft Corporation Microsoft(R) Delta Package Expander 131795770645376622 0x7ffac1900000 225280 c:\windows\system32\appxapplicabilityblob.dll 10.0.14393.953 (rs1_release_inmarket.170303-1614) Microsoft Corporation Appx Applicability Blob DLL 131795770645376622 0x7ffac1970000 1073152 c:\windows\system32\qmgr.dll 7.8.14393.0 (rs1_release.160715-1616) Microsoft Corporation Фоновая интеллектуальная служба передачи 131795770645376622 0x7ffac1b70000 122880 C:\Windows\System32\DevDispItemProvider.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Подсистема DeviceItem inproc devquery 131795770645376622 0x7ffac1c30000 49152 C:\Windows\system32\DMProcessXMLFiltered.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation dmprocessxmlfiltered 131795770645376622 0x7ffac1cf0000 417792 C:\Windows\SYSTEM32\wuuhext.dll 10.0.14393.2189 (rs1_release.180329-1711) Microsoft Corporation Windows Update Agent plugin for Windows 131795770645376622 0x7ffac1df0000 61440 c:\windows\system32\NCI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation CoInstaller: NET 131795770645376622 0x7ffac1e20000 147456 C:\Windows\system32\wbem\wmiutils.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation WMI 131795770645376622 0x7ffac1e80000 507904 C:\Windows\System32\NetSetupShim.dll 10.0.14393.1532 (rs1_release_d.170711-1840) Microsoft Corporation Network Configuration API 131795770645376622 0x7ffac1f10000 126976 c:\windows\system32\DMCmnUtils.dll 10.0.14393.1737 (rs1_release_inmarket.170914-1249) Microsoft Corporation dmcmnutils 131795770645376622 0x7ffac1f30000 118784 C:\Windows\system32\SPINF.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows SPINF 131795770645376622 0x7ffac1f50000 471040 C:\Windows\system32\wbem\esscli.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation WMI 131795770645376622 0x7ffac1fd0000 999424 C:\Windows\system32\wbem\FastProx.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation WMI Custom Marshaller 131795770645376622 0x7ffac20d0000 110592 c:\windows\system32\RMCLIENT.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Resource Manager Client 131795770645376622 0x7ffac20f0000 753664 C:\Windows\system32\CLUSAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека API кластера 131795770645376622 0x7ffac21d0000 81920 C:\Windows\system32\wbem\wbemsvc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation WMI 131795770645376622 0x7ffac2210000 1351680 C:\Windows\system32\wbem\wbemcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Инструментарий управления Windows 131795770645376622 0x7ffac2360000 57344 c:\windows\system32\TimeBrokerClient.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Time Broker Client Library 131795770645376622 0x7ffac2370000 110592 C:\Windows\system32\adhsvc.dll 10.0.14393.2189 (rs1_release.180329-1711) Microsoft Corporation AD Harvest Sites and Subnets Service 131795770645376622 0x7ffac2390000 147456 C:\Windows\system32\httpprxm.dll 10.0.14393.2189 (rs1_release.180329-1711) Microsoft Corporation Proxy Manager 131795775850813653 0x7ffac23c0000 331776 C:\Windows\System32\OneCoreCommonProxyStub.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation OneCore Common Proxy Stub 131795770645376622 0x7ffac24a0000 397312 C:\Windows\system32\RESUTILS.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL служебной программы ресурсов кластера (Майкрософт) 131795770645376622 0x7ffac2530000 270336 C:\Windows\system32\hnetcfgclient.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиент API конфигурации домашней сети 131795775850596192 0x7ffac2590000 659456 C:\Windows\System32\FlightSettings.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Параметры цикла тестирования 131795770645376622 0x7ffac2640000 188416 C:\Windows\system32\wmidcom.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation WMI 131795770645376622 0x7ffac2670000 376832 C:\Windows\system32\miutils.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Инфраструктура управления 131795770645376622 0x7ffac26f0000 36864 C:\Windows\SYSTEM32\sscoreext.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Server Service Core DLL 131795770645376622 0x7ffac2720000 192512 C:\Windows\SYSTEM32\WPTaskScheduler.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation WP Task Scheduler DLL 131795775850744400 0x7ffac2750000 106496 C:\Windows\System32\bcd.dll 10.0.14393.1794 (rs1_release.171008-1615) Microsoft Corporation BCD DLL 131795770645376622 0x7ffac2770000 69632 C:\Windows\system32\SSCORE.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Основная DLL-библиотека службы сервера 131795770645376622 0x7ffac2940000 45056 c:\windows\system32\CSystemEventsBrokerClient.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Classic System Events Broker Client Library 131795770645376622 0x7ffac29f0000 159744 c:\windows\system32\NetSetupApi.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Network Configuration API 131795770645376622 0x7ffac2a20000 81920 c:\windows\system32\rtutils.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Routing Utilities 131795770645376622 0x7ffac2a40000 974848 c:\windows\system32\iphlpsvc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Эта служба предоставляет автоматическое подключение IPv6 в сети IPv4. 131795770645376622 0x7ffac2b30000 286720 C:\Windows\System32\usermgrproxy.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation UserMgrProxy 131795770645376622 0x7ffac2c30000 135168 c:\windows\system32\CLIPC.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиент платформы лицензирования клиента 131795770645376622 0x7ffac2c60000 278528 c:\windows\system32\WDSCORE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Panther Engine Module 131795770645376622 0x7ffac2cb0000 778240 C:\Windows\System32\winsqlite3.dll 3.12.2 SQLite Development Team SQLite is a software library that implements a self-contained, serverless, zero-configuration, transactional SQL database engine. 131795770645376622 0x7ffac2d80000 5140480 C:\Windows\System32\cdp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API клиента Microsoft (R) CDP 131795770645376622 0x7ffac3360000 1396736 C:\Windows\System32\wpncore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Ядро извещающих уведомлений Windows 131795770645376622 0x7ffac34c0000 81920 C:\Windows\system32\vss_ps.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation Microsoft® Volume Shadow Copy Service proxy/stub 131795770645376622 0x7ffac34e0000 1843200 C:\Windows\System32\urlmon.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширения OLE32 для Win32 131795770645376622 0x7ffac36b0000 524288 C:\Windows\system32\msdelta.dll 5.00 (rs1_release.160715-1616) Microsoft Corporation Microsoft Patch Engine 131795770645376622 0x7ffac3740000 413696 C:\Windows\system32\upnp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API контрольной точки UPnP 131795770645376622 0x7ffac3810000 167936 C:\Windows\SYSTEM32\Cabinet.dll 5.00 (rs1_release.160715-1616) Microsoft Corporation Microsoft® Cabinet File API 131795770645376622 0x7ffac3840000 3088384 c:\windows\system32\ESENT.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширяемая подсистема хранения данных ESE для Microsoft(R) Windows(R) 131795770645376622 0x7ffac3b40000 245760 c:\windows\system32\wbem\wmisvc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation WMI 131795770645376622 0x7ffac3cb0000 2772992 C:\Windows\System32\iertutil.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служебная программа времени выполнения для Internet Explorer 131795770645376622 0x7ffac3f60000 225280 C:\Windows\system32\FWPolicyIOMgr.dll 10.0.14393.2189 (rs1_release.180329-1711) Microsoft Corporation FwPolicyIoMgr DLL 131795770645376622 0x7ffac3fa0000 331776 c:\windows\system32\srvsvc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека (DLL) ресурсов для службы сервера 131795770645376622 0x7ffac4000000 274432 C:\Windows\SYSTEM32\policymanager.dll 10.0.14393.2035 (rs1_release_inmarket.180110-1910) Microsoft Corporation Policy Manager DLL 131795770645376622 0x7ffac4160000 253952 c:\windows\system32\wpnservice.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служба системы push-уведомлений Windows 131795770645376622 0x7ffac4220000 520192 C:\Windows\SYSTEM32\wbemcomn.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation WMI 131795770645376622 0x7ffac4450000 86016 C:\Windows\SYSTEM32\usermgrcli.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation UserMgr API DLL 131795770645376622 0x7ffac4480000 499712 C:\Windows\system32\taskcomp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Оснастка обратной совместимости диспетчера задач 131795770645376622 0x7ffac4540000 69632 C:\Windows\system32\ProximityServicePAL.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Proximity Service PAL 131795775380234927 0x7ffac4b60000 155648 C:\Windows\System32\browser.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL службы браузера компьютеров 131795770645376622 0x7ffac4cc0000 36864 C:\Windows\system32\ProximityCommonPal.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Proximity Common PAL 131795770645376622 0x7ffac4dc0000 176128 C:\Windows\system32\ProximityCommon.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Универсальная реализация близкого взаимодействия 131795770645376622 0x7ffac4e70000 102400 C:\Windows\SYSTEM32\samcli.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Security Accounts Manager Client DLL 131795770645376622 0x7ffac4ee0000 331776 C:\Windows\System32\ProximityService.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Proximity Service Implementation 131795770645376622 0x7ffac4f60000 143360 C:\Windows\SYSTEM32\wcmapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Connection Manager Client API 131795770645376622 0x7ffac5c50000 131072 C:\Windows\system32\rasman.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Remote Access Connection Manager 131795770645376622 0x7ffac5ef0000 868352 C:\Windows\System32\MbaeApiPublic.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Mobile Broadband Account API 131795770645376622 0x7ffac60e0000 221184 C:\Windows\System32\XmlLite.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft XmlLite Library 131795770645376622 0x7ffac6410000 98304 C:\Windows\SYSTEM32\VssTrace.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека трассировки службы теневого копирования тома Microsoft® 131795770645376622 0x7ffac6430000 1581056 C:\Windows\SYSTEM32\VSSAPI.DLL 10.0.14393.953 (rs1_release_inmarket.170303-1614) Microsoft Corporation Microsoft® Volume Shadow Copy Requestor/Writer Services API DLL 131795770645376622 0x7ffac6610000 40960 C:\Windows\System32\rasadhlp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Remote Access AutoDial Helper 131795770645376622 0x7ffac66a0000 86016 C:\Windows\SYSTEM32\ondemandconnroutehelper.dll 10.0.14393.351 (rs1_release_inmarket.161014-1755) Microsoft Corporation On Demand Connctiond Route Helper 131795770645376622 0x7ffac6750000 1380352 c:\windows\system32\webservices.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Среда выполнения веб-служб Windows 131795770645376622 0x7ffac69c0000 839680 C:\Windows\System32\WINHTTP.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Службы HTTP Windows 131795770645376622 0x7ffac6a90000 49152 C:\Windows\System32\LocationFrameworkPS.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Geolocation Framework PS 131795770645376622 0x7ffac6c40000 2596864 C:\Windows\WinSxS\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.14393.953_none_42151e83c686086b\Comctl32.dll 6.10 (rs1_release_inmarket.170303-1614) Microsoft Corporation Библиотека элементов управления взаимодействия с пользователем 131795770645376622 0x7ffac7580000 1077248 C:\Windows\SYSTEM32\mrmcorer.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Windows MRM 131795770645376622 0x7ffac7700000 65536 C:\Windows\system32\CredentialMigrationHandler.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Credential Migration Handler 131795770645376622 0x7ffac79c0000 57344 C:\Windows\System32\npmproxy.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Network List Manager Proxy 131795770645376622 0x7ffac79d0000 53248 C:\Windows\system32\sqmapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SQM Client 131795770645376622 0x7ffac7aa0000 401408 C:\Windows\SYSTEM32\wlanapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows WLAN AutoConfig Client Side API DLL 131795770645376622 0x7ffac7d20000 106496 C:\Windows\SYSTEM32\msauserext.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation MSA USER Extension DLL 131795770645376622 0x7ffac7d60000 114688 c:\windows\system32\UpdatePolicy.dll 10.0.14393.2189 (rs1_release.180329-1711) Microsoft Corporation Update Policy Reader 131795770645376622 0x7ffac7e50000 86016 C:\Windows\system32\SSDPAPI.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation SSDP Client API DLL 131795770645376622 0x7ffac7e90000 749568 c:\windows\system32\FVEAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows BitLocker Drive Encryption API 131795770645376622 0x7ffac82d0000 643072 c:\windows\system32\shsvcs.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL служб оболочки Windows 131795770645376622 0x7ffac83d0000 106496 C:\Windows\SYSTEM32\dhcpcsvc.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служба DHCP-клиента 131795770645376622 0x7ffac83f0000 90112 C:\Windows\SYSTEM32\dhcpcsvc6.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиент DHCPv6 131795770645376622 0x7ffac8420000 434176 c:\windows\system32\fwpuclnt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API пользовательского режима FWP/IPsec 131795770645376622 0x7ffac8590000 135168 C:\Windows\System32\LocationWinPalMisc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Location Platform Abstraction Layer 131795770645376622 0x7ffac85c0000 1810432 c:\windows\system32\LocationFramework.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Платформа географического положения Windows 131795770645376622 0x7ffac8780000 274432 c:\windows\system32\UBPM.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL единого диспетчера фоновых процессов 131795770645376622 0x7ffac8810000 45056 c:\windows\system32\WINNSI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Network Store Information RPC interface 131795770645376622 0x7ffac8880000 69632 c:\windows\system32\WMICLNT.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation WMI Client API 131795770645376622 0x7ffac8b60000 966656 c:\windows\system32\schedsvc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служба планировщика заданий 131795770645376622 0x7ffac8dc0000 167936 C:\Windows\system32\dbgcore.DLL 10.0.14321.1024 (debuggers(dbg).160715-1616) Microsoft Windows Core Debugging Helpers 131795770645376622 0x7ffac8df0000 1646592 C:\Windows\system32\dbghelp.dll 10.0.14321.1024 (rs1_release.160715-1616) Microsoft Windows Image Helper 131795770645376622 0x7ffac8fa0000 253952 c:\windows\system32\logoncli.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Net Logon Client DLL 131795770645376622 0x7ffac90b0000 90112 c:\windows\system32\wkscli.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Workstation Service Client DLL 131795770645376622 0x7ffac91c0000 167936 C:\Windows\SYSTEM32\profsvcext.dll 10.0.14393.1532 (rs1_release_d.170711-1840) Microsoft Corporation ProfSvcExt 131795770645376622 0x7ffac9220000 397312 C:\Windows\SYSTEM32\wevtapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API настройки и использования событий 131795770645376622 0x7ffac9290000 40960 c:\windows\system32\DSROLE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DS Setup Client DLL 131795770645376622 0x7ffac92a0000 90112 c:\windows\system32\sens.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служба уведомления о системных событиях (SENS) 131795770645376622 0x7ffac92c0000 98304 c:\windows\system32\themeservice.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL службы темы оболочки Windows 131795770645376622 0x7ffac92e0000 1269760 C:\Windows\SYSTEM32\wintypes.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL основных типов Windows 131795770645376622 0x7ffac9420000 380928 c:\windows\system32\profsvc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ProfSvc 131795770645376622 0x7ffac9790000 98304 c:\windows\system32\nlaapi.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Network Location Awareness 2 131795770645376622 0x7ffac9a70000 1257472 c:\windows\system32\gpsvc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиент групповой политики 131795770645376622 0x7ffac9bb0000 479232 C:\Windows\System32\ES.DLL 2001.12.10941.16384 (rs1_release.160715-1616) Microsoft Corporation COM+ 131795770645376622 0x7ffac9f10000 221184 C:\Windows\System32\netprofm.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Network List Manager 131795770645376622 0x7ffaca100000 36864 C:\Windows\SYSTEM32\httpprxc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Proxy Manager Provider RPC interface 131795770645376622 0x7ffaca1f0000 65536 C:\Windows\SYSTEM32\storageusage.dll 10.0.14393.82 (rs1_release.160805-1735) Microsoft Corporation Storage Usage 131795770645376622 0x7ffaca250000 49152 C:\Windows\SYSTEM32\bi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Background Broker Infrastructure Client Library 131795770645376622 0x7ffaca280000 73728 C:\Windows\System32\BitsProxy.dll 7.8.14393.0 (rs1_release.160715-1616) Microsoft Corporation Background Intelligent Transfer Service Proxy 131795770645376622 0x7ffaca340000 1593344 C:\Windows\System32\PROPSYS.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Система страниц свойств (Майкрософт) 131795770645376622 0x7ffaca4e0000 77824 C:\Windows\SYSTEM32\wtsapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Remote Desktop Session Host Server SDK APIs 131795770645376622 0x7ffaca500000 69632 C:\Windows\System32\wups.dll 10.0.14393.2122 (rs1_release.180217-2341) Microsoft Corporation Windows Update client proxy stub 131795770645376622 0x7ffaca570000 421888 C:\Windows\SYSTEM32\Bcp47Langs.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation BCP47 Language Classes 131795770645376622 0x7ffaca610000 143360 C:\Windows\SYSTEM32\SAMLIB.dll 10.0.14393.82 (rs1_release.160805-1735) Microsoft Corporation SAM Library DLL 131795770645376622 0x7ffaca700000 32768 c:\windows\system32\DABAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Desktop Activity Broker API 131795770645376622 0x7ffaca720000 77824 C:\Windows\system32\bitsigd.dll 7.8.14393.0 (rs1_release.160715-1616) Microsoft Corporation Background Intelligent Transfer Service IGD Support 131795770645376622 0x7ffacab70000 53248 c:\windows\system32\lfsvc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служба географического положения 131795770645376622 0x7ffacac40000 53248 c:\windows\system32\seclogon.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL службы вторичного входа 131795770645376622 0x7ffacac50000 45056 c:\windows\system32\bitsperf.dll 7.8.14393.0 (rs1_release.160715-1616) Microsoft Corporation Perfmon Counter Access 131795770645376622 0x7ffacad70000 278528 c:\windows\system32\BrokerLib.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Broker Base Library 131795770645376622 0x7ffacadf0000 499712 c:\windows\system32\apphelp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиентская библиотека совместимости приложений 131795770645376622 0x7ffacb000000 53248 c:\windows\system32\SYSNTFY.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Windows Notifications Dynamic Link Library 131795770645376622 0x7ffacb140000 593920 C:\Windows\System32\msvcp110_win.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Microsoft® STL110 C++ Runtime Library 131795770645376622 0x7ffacb1e0000 1163264 C:\Windows\SYSTEM32\twinapi.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation twinapi.appcore 131795770645376622 0x7ffacb300000 364544 C:\Windows\System32\VEEventDispatcher.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Visual Element Event dispatcher 131795770645376622 0x7ffacb360000 176128 C:\Windows\system32\fwbase.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Firewall Base DLL 131795770645376622 0x7ffacb3d0000 110592 C:\Windows\SYSTEM32\resourcepolicyclient.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Resource Policy Client 131795770645376622 0x7ffacb3f0000 163840 c:\windows\system32\DEVOBJ.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Device Information Set DLL 131795770645376622 0x7ffacb420000 204800 C:\Windows\SYSTEM32\ntmarta.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик Windows NT MARTA 131795770645376622 0x7ffacb460000 548864 C:\Windows\SYSTEM32\firewallapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API брандмауэра Windows 131795770645376622 0x7ffacb6e0000 49152 c:\windows\system32\HID.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека пользователя HID 131795770645376622 0x7ffacb6f0000 143360 C:\Windows\SYSTEM32\gpapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиентские функции API групповой политики 131795770645376622 0x7ffacb920000 81920 C:\Windows\SYSTEM32\WLDP.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Политика блокировки Windows 131795770645376622 0x7ffacb960000 303104 c:\windows\system32\AUTHZ.dll 10.0.14393.1737 (rs1_release_inmarket.170914-1249) Microsoft Corporation Authorization Framework 131795770645376622 0x7ffacbaf0000 495616 C:\Windows\system32\schannel.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик безопасности TLS/SSL 131795770645376622 0x7ffacbbb0000 208896 C:\Windows\system32\rsaenh.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Enhanced Cryptographic Provider 131795770645376622 0x7ffacbbf0000 40960 C:\Windows\system32\DPAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Data Protection API 131795770645376622 0x7ffacbd30000 229376 C:\Windows\system32\IPHLPAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API вспомогательного приложения IP 131795770645376622 0x7ffacbd70000 659456 C:\Windows\system32\DNSAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Динамическая библиотека API DNS-клиента 131795770645376622 0x7ffacbe20000 53248 c:\windows\system32\netutils.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API Helpers DLL 131795770645376622 0x7ffacbe40000 126976 c:\windows\system32\USERENV.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Userenv 131795770645376622 0x7ffacbfb0000 376832 C:\Windows\system32\MSWSOCK.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширение поставщика службы API Microsoft Windows Sockets 2.0 131795770645376622 0x7ffacc150000 94208 C:\Windows\SYSTEM32\cryptsp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Cryptographic Service Provider API 131795770645376622 0x7ffacc170000 45056 C:\Windows\System32\CRYPTBASE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base cryptographic API DLL 131795770645376622 0x7ffacc1f0000 241664 C:\Windows\System32\NTASN1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft ASN.1 API 131795770645376622 0x7ffacc230000 155648 C:\Windows\System32\ncrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Маршрутизатор Windows NCrypt 131795770645376622 0x7ffacc350000 180224 C:\Windows\System32\SspiCli.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Security Support Provider Interface 131795770645376622 0x7ffacc500000 102400 c:\windows\system32\EventAggregation.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Event Aggregation User Mode Library 131795770645376622 0x7ffacc520000 622592 C:\Windows\SYSTEM32\sxs.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Fusion 2.5 131795770645376622 0x7ffacc5c0000 352256 C:\Windows\SYSTEM32\winsta.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Winstation Library 131795770645376622 0x7ffacc620000 176128 c:\windows\system32\bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795770645376622 0x7ffacc6e0000 61440 C:\Windows\System32\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795770645376622 0x7ffacc6f0000 311296 C:\Windows\System32\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795770645376622 0x7ffacc740000 81920 C:\Windows\System32\profapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Profile Basic API 131795770645376622 0x7ffacc760000 65536 C:\Windows\System32\MSASN1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ASN.1 Runtime APIs 131795770645376622 0x7ffacc8f0000 1003520 C:\Windows\System32\ucrtbase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645376622 0x7ffacc9f0000 434176 C:\Windows\System32\bcryptPrimitives.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Cryptographic Primitives Library 131795770645376622 0x7ffacca60000 122880 C:\Windows\System32\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795770645376622 0x7ffacca80000 348160 C:\Windows\System32\WINTRUST.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation Microsoft Trust Verification APIs 131795770645376622 0x7ffaccae0000 692224 C:\Windows\System32\shcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795770645376622 0x7ffaccb90000 7180288 C:\Windows\System32\windows.storage.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API хранения Microsoft WinRT 131795770645376622 0x7ffacd270000 2215936 C:\Windows\System32\KERNELBASE.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645376622 0x7ffacd490000 1871872 C:\Windows\System32\CRYPT32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API32 криптографии 131795770645376622 0x7ffacd710000 638976 C:\Windows\System32\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645376622 0x7ffacd7b0000 270336 C:\Windows\System32\cfgmgr32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Configuration Manager DLL 131795770645376622 0x7ffacd810000 22056960 C:\Windows\System32\SHELL32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Общая библиотека оболочки Windows 131795770645376622 0x7ffaced20000 782336 C:\Windows\System32\OLEAUT32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795770645376622 0x7ffacede0000 450560 C:\Windows\System32\coml2.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft COM for Windows 131795770645376622 0x7ffacee50000 1183744 C:\Windows\System32\RPCRT4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795770645376622 0x7ffacef80000 32768 C:\Windows\System32\NSI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation NSI User-mode interface DLL 131795770645376622 0x7ffacef90000 647168 C:\Windows\System32\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795770645376622 0x7ffacf030000 651264 C:\Windows\System32\clbcatq.dll 2001.12.10941.16384 (rs1_release.160715-1616) Microsoft Corporation COM+ Configuration Catalog 131795770645376622 0x7ffacf0d0000 704512 C:\Windows\System32\KERNEL32.DLL 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645376622 0x7ffacf180000 376832 C:\Windows\System32\WLDAP32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Win32 LDAP API DLL 131795770645376622 0x7ffacf340000 4362240 C:\Windows\System32\setupapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Setup API 131795770645376622 0x7ffacf770000 212992 C:\Windows\System32\GDI32.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation GDI Client DLL 131795770645376622 0x7ffacf820000 434176 C:\Windows\System32\WS2_32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation 32-разрядная библиотека Windows Socket 2.0 131795770645376622 0x7ffacf8c0000 1462272 C:\Windows\System32\user32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795770645376622 0x7ffacfb30000 2916352 C:\Windows\System32\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795770645376622 0x7ffacfe00000 114688 C:\Windows\System32\imagehlp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT Image Helper 131795770645376622 0x7ffacfe20000 663552 C:\Windows\System32\advapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795770645376622 0x7ffad0070000 1277952 C:\Windows\System32\ole32.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft OLE для Windows 131795770645376622 0x7ffad01b0000 335872 C:\Windows\System32\shlwapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека небольших программ оболочки 131795770645376622 0x7ffad0210000 364544 C:\Windows\System32\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795770645376622 0x7ffad0270000 1908736 C:\Windows\SYSTEM32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 25 372 580 4 00000000:000003e5 131765776305463443 0 0 1 Обязательная метка\Обязательный уровень системы NT AUTHORITY\LOCAL SERVICE svchost.exe C:\Windows\system32\svchost.exe C:\Windows\system32\svchost.exe -k LocalService Microsoft Corporation 10.0.14393.0 (rs1_release.160715-1616) Хост-процесс для служб Windows 131795770645376755 0x7ff718c20000 57344 C:\Windows\system32\svchost.exe 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Хост-процесс для служб Windows 131795770645376755 0x7ffab1c40000 1302528 c:\windows\system32\LicenseManager.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation LicenseManager 131795770645376755 0x7ffab91f0000 233472 c:\windows\system32\sstpsvc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Обеспечивает возможность использования SSTP для подключения к удаленным компьютерам с помощью VPN. 131795770645376755 0x7ffab93b0000 897024 C:\Windows\System32\TokenBroker.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Token Broker 131795770645376755 0x7ffabaab0000 94208 C:\Windows\SYSTEM32\profext.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation profext 131795770645376755 0x7ffabbd10000 65536 C:\Windows\System32\TOKENBINDING.dll 10.0.14393.1593 (rs1_release.170731-1934) Microsoft Corporation Token Binding Protocol 131795770645376755 0x7ffabc610000 540672 c:\windows\system32\w32time.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служба времени Windows 131795770645376755 0x7ffabca50000 819200 C:\Windows\System32\Windows.Security.Authentication.Web.Core.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Token Broker WinRT API 131795770645376755 0x7ffabcb70000 262144 C:\Windows\System32\cdprt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft (R) CDP Client WinRT API 131795770645376755 0x7ffabef00000 499712 c:\windows\system32\cdpsvc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служба CDP Майкрософт (R) 131795770645376755 0x7ffabf2d0000 344064 C:\Windows\system32\ncryptprov.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft KSP 131795770645376755 0x7ffabf330000 2457600 C:\Windows\System32\msxml6.dll 6.30.14393.2156 Microsoft Corporation MSXML 6.0 131795770645376755 0x7ffabfbe0000 1011712 C:\Windows\System32\Windows.Security.Authentication.OnlineId.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation Windows Runtime OnlineId Authentication DLL 131795770645376755 0x7ffabff60000 135168 C:\Windows\system32\ncryptsslp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft SChannel Provider 131795770645376755 0x7ffac05e0000 40960 c:\windows\system32\sbservicetrigger.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Socket Broker Service Trigger 131795770645376755 0x7ffac05f0000 94208 C:\Windows\System32\wwapi.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation WWAN API 131795770645376755 0x7ffac0910000 724992 C:\Windows\System32\Windows.Networking.Connectivity.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Networking Connectivity Runtime DLL 131795770645376755 0x7ffac0ad0000 86016 C:\Windows\SYSTEM32\mskeyprotect.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик защиты ключей (Майкрософт) 131795770645376755 0x7ffac1160000 892928 C:\Windows\System32\wuapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API клиента Центра обновления Windows 131795770645376755 0x7ffac1d60000 589824 C:\Windows\System32\webio.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API протоколов передачи по Веб 131795770645376755 0x7ffac23c0000 331776 C:\Windows\System32\OneCoreCommonProxyStub.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation OneCore Common Proxy Stub 131795770645376755 0x7ffac2a20000 81920 c:\windows\system32\rtutils.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Routing Utilities 131795770645376755 0x7ffac2b30000 286720 C:\Windows\System32\usermgrproxy.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation UserMgrProxy 131795770645376755 0x7ffac2c30000 135168 c:\windows\system32\CLIPC.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиент платформы лицензирования клиента 131795770645376755 0x7ffac2d80000 5140480 c:\windows\system32\cdp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API клиента Microsoft (R) CDP 131795770645376755 0x7ffac3cb0000 2772992 C:\Windows\System32\iertutil.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служебная программа времени выполнения для Internet Explorer 131795770645376755 0x7ffac3f60000 225280 C:\Windows\System32\FWPolicyIOMgr.dll 10.0.14393.2189 (rs1_release.180329-1711) Microsoft Corporation FwPolicyIoMgr DLL 131795770645376755 0x7ffac4050000 118784 c:\windows\system32\wdi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Инфраструктура диагностики Windows 131795770645376755 0x7ffac4130000 40960 c:\windows\system32\fdphost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служба размещения поставщиков функций обнаружения 131795770645376755 0x7ffac41a0000 77824 C:\Windows\System32\fdproxy.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation Function Discovery Proxy Dll 131795770645376755 0x7ffac4200000 98304 C:\Windows\system32\perftrack.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Performance PerfTrack 131795770645376755 0x7ffac42a0000 659456 C:\Windows\System32\StateRepository.Core.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation StateRepository Core 131795770645376755 0x7ffac4450000 86016 C:\Windows\SYSTEM32\usermgrcli.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation UserMgr API DLL 131795770645376755 0x7ffac46d0000 4161536 C:\Windows\System32\Windows.StateRepository.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Сервер Windows StateRepository API Server 131795770645376755 0x7ffac5070000 798720 C:\Windows\System32\Windows.Web.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL веб-клиента 131795770645376755 0x7ffac5b80000 184320 C:\Windows\SYSTEM32\AuthBroker.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API WinRT для веб-проверки подлинности 131795770645376755 0x7ffac60e0000 221184 C:\Windows\System32\XmlLite.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft XmlLite Library 131795770645376755 0x7ffac6400000 53248 c:\windows\system32\HTTPAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation HTTP Protocol Stack API 131795770645376755 0x7ffac6610000 40960 C:\Windows\System32\rasadhlp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Remote Access AutoDial Helper 131795770645376755 0x7ffac66a0000 86016 C:\Windows\SYSTEM32\ondemandconnroutehelper.dll 10.0.14393.351 (rs1_release_inmarket.161014-1755) Microsoft Corporation On Demand Connctiond Route Helper 131795770645376755 0x7ffac66e0000 122880 C:\Windows\System32\fdssdp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Function Discovery SSDP Provider Dll 131795770645376755 0x7ffac6710000 172032 C:\Windows\System32\FunDisc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL обнаружения функции 131795770645376755 0x7ffac6750000 1380352 C:\Windows\System32\webservices.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Среда выполнения веб-служб Windows 131795770645376755 0x7ffac68b0000 696320 C:\Windows\System32\wsdapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Веб-службы для библиотек DLL API-интерфейсов устройств 131795770645376755 0x7ffac6960000 167936 C:\Windows\System32\fdwsd.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Function Discovery WS Discovery Provider Dll 131795770645376755 0x7ffac69c0000 839680 C:\Windows\System32\WINHTTP.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Службы HTTP Windows 131795770645376755 0x7ffac76d0000 65536 C:\Windows\System32\vmictimeprovider.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Virtual Machine Integration Component Time Sync Provider Library 131795770645376755 0x7ffac79c0000 57344 C:\Windows\System32\npmproxy.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Network List Manager Proxy 131795770645376755 0x7ffac7a10000 544768 c:\windows\system32\netprofmsvc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Диспетчер списка сетей 131795770645376755 0x7ffac7aa0000 401408 C:\Windows\SYSTEM32\wlanapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows WLAN AutoConfig Client Side API DLL 131795770645376755 0x7ffac7d20000 106496 C:\Windows\SYSTEM32\msauserext.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation MSA USER Extension DLL 131795770645376755 0x7ffac7e50000 86016 C:\Windows\System32\SSDPAPI.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation SSDP Client API DLL 131795770645376755 0x7ffac7f70000 49152 c:\windows\system32\licensemanagersvc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation LicenseManagerSvc 131795770645376755 0x7ffac83d0000 106496 C:\Windows\SYSTEM32\dhcpcsvc.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служба DHCP-клиента 131795770645376755 0x7ffac83f0000 90112 C:\Windows\SYSTEM32\dhcpcsvc6.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиент DHCPv6 131795770645376755 0x7ffac8420000 434176 C:\Windows\System32\fwpuclnt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API пользовательского режима FWP/IPsec 131795770645376755 0x7ffac8540000 286720 C:\Windows\System32\vaultcli.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиентская библиотека хранилища учетных данных 131795770645376755 0x7ffac8810000 45056 C:\Windows\SYSTEM32\WINNSI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Network Store Information RPC interface 131795770645376755 0x7ffac8fa0000 253952 c:\windows\system32\logoncli.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Net Logon Client DLL 131795770645376755 0x7ffac90a0000 53248 c:\windows\system32\nsisvc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation RPC-сервер интерфейса сохранения сети 131795770645376755 0x7ffac90b0000 90112 C:\Windows\SYSTEM32\wkscli.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Workstation Service Client DLL 131795770645376755 0x7ffac91f0000 172032 c:\windows\system32\FontProvider.dll 10.0.14393.1066 (rs1_release_sec.170327-1835) Microsoft Corporation Windows Font Provider Library 131795770645376755 0x7ffac9290000 40960 c:\windows\system32\DSROLE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DS Setup Client DLL 131795770645376755 0x7ffac92e0000 1269760 C:\Windows\System32\WinTypes.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL основных типов Windows 131795770645376755 0x7ffac9790000 98304 c:\windows\system32\nlaapi.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Network Location Awareness 2 131795770645376755 0x7ffac9860000 1896448 c:\windows\system32\fntcache.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служба кэша шрифтов Windows 131795770645376755 0x7ffac9bb0000 479232 c:\windows\system32\es.dll 2001.12.10941.16384 (rs1_release.160715-1616) Microsoft Corporation COM+ 131795770645376755 0x7ffaca130000 204800 C:\Windows\SYSTEM32\windows.devices.radios.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows.Devices.Radios DLL 131795770645376755 0x7ffaca280000 73728 C:\Windows\System32\BitsProxy.dll 7.8.14393.0 (rs1_release.160715-1616) Microsoft Corporation Background Intelligent Transfer Service Proxy 131795770645376755 0x7ffaca340000 1593344 C:\Windows\system32\propsys.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Система страниц свойств (Майкрософт) 131795770645376755 0x7ffaca500000 69632 C:\Windows\System32\wups.dll 10.0.14393.2122 (rs1_release.180217-2341) Microsoft Corporation Windows Update client proxy stub 131795770645376755 0x7ffacb140000 593920 c:\windows\system32\msvcp110_win.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Microsoft® STL110 C++ Runtime Library 131795770645376755 0x7ffacb1e0000 1163264 C:\Windows\System32\twinapi.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation twinapi.appcore 131795770645376755 0x7ffacb300000 364544 c:\windows\system32\VEEventDispatcher.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Visual Element Event dispatcher 131795770645376755 0x7ffacb360000 176128 C:\Windows\System32\fwbase.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Firewall Base DLL 131795770645376755 0x7ffacb420000 204800 C:\Windows\SYSTEM32\ntmarta.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик Windows NT MARTA 131795770645376755 0x7ffacb460000 548864 C:\Windows\System32\FirewallAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API брандмауэра Windows 131795770645376755 0x7ffacb6f0000 143360 C:\Windows\SYSTEM32\gpapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиентские функции API групповой политики 131795770645376755 0x7ffacb920000 81920 C:\Windows\SYSTEM32\WLDP.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Политика блокировки Windows 131795770645376755 0x7ffacbaf0000 495616 C:\Windows\system32\schannel.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик безопасности TLS/SSL 131795770645376755 0x7ffacbbb0000 208896 C:\Windows\system32\rsaenh.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Enhanced Cryptographic Provider 131795770645376755 0x7ffacbbf0000 40960 C:\Windows\SYSTEM32\DPAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Data Protection API 131795770645376755 0x7ffacbd30000 229376 c:\windows\system32\IPHLPAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API вспомогательного приложения IP 131795770645376755 0x7ffacbd70000 659456 C:\Windows\SYSTEM32\DNSAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Динамическая библиотека API DNS-клиента 131795770645376755 0x7ffacbe20000 53248 C:\Windows\SYSTEM32\netutils.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API Helpers DLL 131795770645376755 0x7ffacbe40000 126976 c:\windows\system32\USERENV.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Userenv 131795770645376755 0x7ffacbfb0000 376832 C:\Windows\system32\mswsock.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширение поставщика службы API Microsoft Windows Sockets 2.0 131795770645376755 0x7ffacc150000 94208 C:\Windows\System32\CRYPTSP.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Cryptographic Service Provider API 131795770645376755 0x7ffacc170000 45056 C:\Windows\system32\CRYPTBASE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base cryptographic API DLL 131795770645376755 0x7ffacc1f0000 241664 c:\windows\system32\NTASN1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft ASN.1 API 131795770645376755 0x7ffacc230000 155648 c:\windows\system32\ncrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Маршрутизатор Windows NCrypt 131795770645376755 0x7ffacc350000 180224 C:\Windows\System32\SspiCli.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Security Support Provider Interface 131795770645376755 0x7ffacc520000 622592 C:\Windows\SYSTEM32\sxs.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Fusion 2.5 131795770645376755 0x7ffacc620000 176128 C:\Windows\System32\bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795770645376755 0x7ffacc6e0000 61440 C:\Windows\System32\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795770645376755 0x7ffacc6f0000 311296 C:\Windows\System32\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795770645376755 0x7ffacc740000 81920 C:\Windows\System32\profapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Profile Basic API 131795770645376755 0x7ffacc760000 65536 C:\Windows\System32\MSASN1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ASN.1 Runtime APIs 131795770645376755 0x7ffacc8f0000 1003520 C:\Windows\System32\ucrtbase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645376755 0x7ffacc9f0000 434176 C:\Windows\System32\bcryptPrimitives.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Cryptographic Primitives Library 131795770645376755 0x7ffacca60000 122880 C:\Windows\System32\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795770645376755 0x7ffacca80000 348160 C:\Windows\System32\WINTRUST.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation Microsoft Trust Verification APIs 131795770645376755 0x7ffaccae0000 692224 C:\Windows\System32\shcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795770645376755 0x7ffacd270000 2215936 C:\Windows\System32\KERNELBASE.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645376755 0x7ffacd490000 1871872 C:\Windows\System32\CRYPT32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API32 криптографии 131795770645376755 0x7ffacd710000 638976 C:\Windows\System32\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645376755 0x7ffacd7b0000 270336 C:\Windows\System32\cfgmgr32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Configuration Manager DLL 131795770645376755 0x7ffaced20000 782336 C:\Windows\System32\OLEAUT32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795770645376755 0x7ffacede0000 450560 C:\Windows\System32\coml2.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft COM for Windows 131795770645376755 0x7ffacee50000 1183744 C:\Windows\System32\RPCRT4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795770645376755 0x7ffacef80000 32768 C:\Windows\System32\NSI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation NSI User-mode interface DLL 131795770645376755 0x7ffacef90000 647168 C:\Windows\System32\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795770645376755 0x7ffacf030000 651264 C:\Windows\System32\clbcatq.dll 2001.12.10941.16384 (rs1_release.160715-1616) Microsoft Corporation COM+ Configuration Catalog 131795770645376755 0x7ffacf0d0000 704512 C:\Windows\System32\KERNEL32.DLL 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645376755 0x7ffacf770000 212992 C:\Windows\System32\GDI32.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation GDI Client DLL 131795770645376755 0x7ffacf820000 434176 C:\Windows\System32\WS2_32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation 32-разрядная библиотека Windows Socket 2.0 131795770645376755 0x7ffacf8c0000 1462272 C:\Windows\System32\user32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795770645376755 0x7ffacfb30000 2916352 C:\Windows\System32\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795770645376755 0x7ffacfe20000 663552 C:\Windows\System32\advapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795770645376755 0x7ffad0070000 1277952 C:\Windows\System32\ole32.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft OLE для Windows 131795770645376755 0x7ffad0210000 364544 C:\Windows\System32\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795770645376755 0x7ffad0270000 1908736 C:\Windows\SYSTEM32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 26 360 580 4 00000000:000003e5 131765776311216195 0 0 1 Обязательная метка\Обязательный уровень системы NT AUTHORITY\LOCAL SERVICE svchost.exe C:\Windows\System32\svchost.exe C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted Microsoft Corporation 10.0.14393.0 (rs1_release.160715-1616) Хост-процесс для служб Windows 131795770645376855 0x7ff718c20000 57344 C:\Windows\System32\svchost.exe 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Хост-процесс для служб Windows 131795770645376855 0x7ffab4af0000 606208 C:\Windows\System32\audioses.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Сеанс обработки звука 131795770645376855 0x7ffabaad0000 352256 C:\Windows\System32\deviceaccess.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Device Broker And Policy COM Server 131795770645376855 0x7ffac7e70000 36864 C:\Windows\SYSTEM32\coreaudiopolicymanagerext.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation "coreaudiopolicymanagerext.DYNLINK" 131795770645376855 0x7ffac87d0000 237568 c:\windows\system32\AUDIOSRVPOLICYMANAGER.dll 10.0.14393.351 (rs1_release_inmarket.161014-1755) Microsoft Corporation Windows Audio Service Policy Manager 131795770645376855 0x7ffac90d0000 978944 c:\windows\system32\audiosrv.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служба Windows Audio 131795770645376855 0x7ffac92e0000 1269760 C:\Windows\SYSTEM32\wintypes.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL основных типов Windows 131795770645376855 0x7ffac9480000 462848 c:\windows\system32\MMDevAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation MMDevice API 131795770645376855 0x7ffaca340000 1593344 c:\windows\system32\PROPSYS.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Система страниц свойств (Майкрософт) 131795770645376855 0x7ffaca4e0000 77824 C:\Windows\SYSTEM32\wtsapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Remote Desktop Session Host Server SDK APIs 131795770645376855 0x7ffacb1e0000 1163264 C:\Windows\System32\twinapi.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation twinapi.appcore 131795770645376855 0x7ffacb3f0000 163840 c:\windows\system32\DEVOBJ.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Device Information Set DLL 131795770645376855 0x7ffacb920000 81920 C:\Windows\SYSTEM32\WLDP.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Политика блокировки Windows 131795770645376855 0x7ffacc5c0000 352256 C:\Windows\SYSTEM32\winsta.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Winstation Library 131795770645376855 0x7ffacc620000 176128 C:\Windows\System32\bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795770645376855 0x7ffacc6e0000 61440 C:\Windows\System32\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795770645376855 0x7ffacc6f0000 311296 C:\Windows\System32\POWRPROF.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795770645376855 0x7ffacc760000 65536 C:\Windows\System32\MSASN1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ASN.1 Runtime APIs 131795770645376855 0x7ffacc8f0000 1003520 C:\Windows\System32\ucrtbase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645376855 0x7ffacc9f0000 434176 C:\Windows\System32\bcryptPrimitives.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Cryptographic Primitives Library 131795770645376855 0x7ffacca60000 122880 C:\Windows\System32\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795770645376855 0x7ffacca80000 348160 C:\Windows\System32\WINTRUST.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation Microsoft Trust Verification APIs 131795770645376855 0x7ffaccae0000 692224 C:\Windows\System32\shcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795770645376855 0x7ffacd270000 2215936 C:\Windows\System32\KERNELBASE.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645376855 0x7ffacd490000 1871872 C:\Windows\System32\CRYPT32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API32 криптографии 131795770645376855 0x7ffacd710000 638976 C:\Windows\System32\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645376855 0x7ffacd7b0000 270336 C:\Windows\System32\cfgmgr32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Configuration Manager DLL 131795770645376855 0x7ffaced20000 782336 C:\Windows\System32\OLEAUT32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795770645376855 0x7ffacee50000 1183744 C:\Windows\System32\RPCRT4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795770645376855 0x7ffacef90000 647168 C:\Windows\System32\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795770645376855 0x7ffacf030000 651264 C:\Windows\System32\clbcatq.dll 2001.12.10941.16384 (rs1_release.160715-1616) Microsoft Corporation COM+ Configuration Catalog 131795770645376855 0x7ffacf0d0000 704512 C:\Windows\System32\KERNEL32.DLL 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645376855 0x7ffacf770000 212992 C:\Windows\System32\GDI32.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation GDI Client DLL 131795770645376855 0x7ffacf8c0000 1462272 C:\Windows\System32\user32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795770645376855 0x7ffacfb30000 2916352 C:\Windows\System32\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795770645376855 0x7ffad0210000 364544 C:\Windows\System32\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795770645376855 0x7ffad0270000 1908736 C:\Windows\SYSTEM32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 27 1040 580 4 00000000:000003e5 131765776311708649 0 0 1 Обязательная метка\Обязательный уровень системы NT AUTHORITY\LOCAL SERVICE svchost.exe C:\Windows\system32\svchost.exe C:\Windows\system32\svchost.exe -k LocalServiceNetworkRestricted Microsoft Corporation 10.0.14393.0 (rs1_release.160715-1616) Хост-процесс для служб Windows 131795770645376955 0x7ff718c20000 57344 C:\Windows\system32\svchost.exe 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Хост-процесс для служб Windows 131795770645376955 0x7ffac8820000 57344 C:\Windows\SYSTEM32\cmintegrator.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation cmintegrator.dll 131795770645376955 0x7ffac8880000 69632 C:\Windows\system32\WMICLNT.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation WMI Client API 131795770645376955 0x7ffac8c50000 245760 C:\Windows\system32\wcmcsp.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Windows Connection Service Provider DLL 131795770645376955 0x7ffac8fe0000 737280 c:\windows\system32\wcmsvc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL службы диспетчера подключений Windows 131795770645376955 0x7ffac9790000 98304 C:\Windows\SYSTEM32\nlaapi.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Network Location Awareness 2 131795770645376955 0x7ffaca4e0000 77824 C:\Windows\SYSTEM32\wtsapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Remote Desktop Session Host Server SDK APIs 131795770645376955 0x7ffacb6f0000 143360 C:\Windows\SYSTEM32\gpapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиентские функции API групповой политики 131795770645376955 0x7ffacb920000 81920 C:\Windows\SYSTEM32\WLDP.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Политика блокировки Windows 131795770645376955 0x7ffacbd30000 229376 c:\windows\system32\IPHLPAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API вспомогательного приложения IP 131795770645376955 0x7ffacc5c0000 352256 C:\Windows\SYSTEM32\WINSTA.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Winstation Library 131795770645376955 0x7ffacc6e0000 61440 C:\Windows\System32\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795770645376955 0x7ffacc6f0000 311296 C:\Windows\System32\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795770645376955 0x7ffacc760000 65536 C:\Windows\System32\MSASN1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ASN.1 Runtime APIs 131795770645376955 0x7ffacc8f0000 1003520 C:\Windows\System32\ucrtbase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645376955 0x7ffacc9f0000 434176 C:\Windows\System32\bcryptPrimitives.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Cryptographic Primitives Library 131795770645376955 0x7ffacca60000 122880 C:\Windows\System32\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795770645376955 0x7ffacca80000 348160 C:\Windows\System32\WINTRUST.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation Microsoft Trust Verification APIs 131795770645376955 0x7ffacd270000 2215936 C:\Windows\System32\KERNELBASE.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645376955 0x7ffacd490000 1871872 C:\Windows\System32\CRYPT32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API32 криптографии 131795770645376955 0x7ffacd710000 638976 C:\Windows\System32\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645376955 0x7ffacd7b0000 270336 C:\Windows\System32\cfgmgr32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Configuration Manager DLL 131795770645376955 0x7ffaced20000 782336 C:\Windows\System32\OLEAUT32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795770645376955 0x7ffacee50000 1183744 C:\Windows\System32\RPCRT4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795770645376955 0x7ffacef80000 32768 C:\Windows\System32\NSI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation NSI User-mode interface DLL 131795770645376955 0x7ffacef90000 647168 C:\Windows\System32\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795770645376955 0x7ffacf0d0000 704512 C:\Windows\System32\KERNEL32.DLL 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645376955 0x7ffacf770000 212992 C:\Windows\System32\GDI32.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation GDI Client DLL 131795770645376955 0x7ffacf820000 434176 C:\Windows\System32\WS2_32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation 32-разрядная библиотека Windows Socket 2.0 131795770645376955 0x7ffacf8c0000 1462272 C:\Windows\System32\user32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795770645376955 0x7ffacfb30000 2916352 C:\Windows\System32\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795770645376955 0x7ffacfe20000 663552 C:\Windows\System32\advapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795770645376955 0x7ffad0210000 364544 C:\Windows\System32\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795770645376955 0x7ffad0270000 1908736 C:\Windows\SYSTEM32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 28 1068 580 4 00000000:000003e4 131765776312395030 0 0 1 Обязательная метка\Обязательный уровень системы NT AUTHORITY\NETWORK SERVICE svchost.exe C:\Windows\system32\svchost.exe C:\Windows\system32\svchost.exe -k NetworkService Microsoft Corporation 10.0.14393.0 (rs1_release.160715-1616) Хост-процесс для служб Windows 131795770645377076 0x7ff718c20000 57344 C:\Windows\system32\svchost.exe 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Хост-процесс для служб Windows 131795770645377076 0x7ffab1fd0000 2277376 C:\Windows\System32\msxml3.dll 8.110.14393.1532 Microsoft Corporation MSXML 3.0 131795770645377076 0x7ffabcf50000 921600 C:\Windows\system32\drvstore.dll 10.0.14393.351 (rs1_release_inmarket.161014-1755) Microsoft Corporation Driver Store API 131795770645377076 0x7ffabf1d0000 192512 c:\windows\system32\CRYPTNET.dll 10.0.14393.2035 (rs1_release_inmarket.180110-1910) Microsoft Corporation Crypto Network Related API 131795770645377076 0x7ffac1d60000 589824 c:\windows\system32\webio.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API протоколов передачи по Веб 131795770645377076 0x7ffac34c0000 81920 C:\Windows\system32\vss_ps.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation Microsoft® Volume Shadow Copy Service proxy/stub 131795770645377076 0x7ffac3810000 167936 C:\Windows\SYSTEM32\Cabinet.dll 5.00 (rs1_release.160715-1616) Microsoft Corporation Microsoft® Cabinet File API 131795770645377076 0x7ffac3840000 3088384 C:\Windows\system32\ESENT.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширяемая подсистема хранения данных ESE для Microsoft(R) Windows(R) 131795770645377076 0x7ffac4e70000 102400 C:\Windows\system32\samcli.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Security Accounts Manager Client DLL 131795770645377076 0x7ffac6410000 98304 C:\Windows\system32\VssTrace.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека трассировки службы теневого копирования тома Microsoft® 131795770645377076 0x7ffac6430000 1581056 C:\Windows\system32\VSSAPI.DLL 10.0.14393.953 (rs1_release_inmarket.170303-1614) Microsoft Corporation Microsoft® Volume Shadow Copy Requestor/Writer Services API DLL 131795770645377076 0x7ffac65c0000 155648 C:\Windows\System32\cryptcatsvc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Cryptographic Catalog Services 131795770645377076 0x7ffac65f0000 77824 C:\Windows\System32\crypttpmeksvc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Cryptographic TPM Endorsement Key Services 131795770645377076 0x7ffac6610000 40960 C:\Windows\System32\rasadhlp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Remote Access AutoDial Helper 131795770645377076 0x7ffac6680000 102400 c:\windows\system32\cryptsvc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Службы криптографии 131795770645377076 0x7ffac69c0000 839680 c:\windows\system32\WINHTTP.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Службы HTTP Windows 131795770645377076 0x7ffac6b90000 53248 c:\windows\system32\DSPARSE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Active Directory Domain Services API 131795770645377076 0x7ffac6f00000 303104 c:\windows\system32\wkssvc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL службы рабочей станции 131795770645377076 0x7ffac79c0000 57344 C:\Windows\System32\npmproxy.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Network List Manager Proxy 131795770645377076 0x7ffac79e0000 184320 C:\Windows\SYSTEM32\netjoin.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL присоединения к домену 131795770645377076 0x7ffac7aa0000 401408 C:\Windows\system32\WlanApi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows WLAN AutoConfig Client Side API DLL 131795770645377076 0x7ffac7c00000 266240 C:\Windows\System32\mstask.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека интерфейса планировщика заданий 131795770645377076 0x7ffac7e50000 86016 C:\Windows\system32\ssdpapi.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation SSDP Client API DLL 131795770645377076 0x7ffac8260000 425984 c:\windows\system32\ncsi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Индикатор работоспособности сетевых подключений 131795770645377076 0x7ffac8370000 389120 c:\windows\system32\nlasvc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служба сведений о подключенных сетях 2 131795770645377076 0x7ffac83d0000 106496 C:\Windows\SYSTEM32\dhcpcsvc.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служба DHCP-клиента 131795770645377076 0x7ffac83f0000 90112 C:\Windows\SYSTEM32\dhcpcsvc6.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиент DHCPv6 131795770645377076 0x7ffac8410000 40960 C:\Windows\System32\dnsext.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DNS extension DLL 131795770645377076 0x7ffac8420000 434176 C:\Windows\SYSTEM32\Fwpuclnt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API пользовательского режима FWP/IPsec 131795770645377076 0x7ffac8810000 45056 C:\Windows\SYSTEM32\WINNSI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Network Store Information RPC interface 131795770645377076 0x7ffac8830000 290816 c:\windows\system32\dnsrslvr.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служба кэширующего сопоставителя DNS 131795770645377076 0x7ffac8880000 69632 c:\windows\system32\WMICLNT.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation WMI Client API 131795770645377076 0x7ffac8cf0000 815104 C:\Windows\System32\taskschd.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Task Scheduler COM API 131795770645377076 0x7ffac90b0000 90112 c:\windows\system32\wkscli.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Workstation Service Client DLL 131795770645377076 0x7ffac9220000 397312 C:\Windows\SYSTEM32\wevtapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API настройки и использования событий 131795770645377076 0x7ffac9bb0000 479232 C:\Windows\System32\ES.DLL 2001.12.10941.16384 (rs1_release.160715-1616) Microsoft Corporation COM+ 131795770645377076 0x7ffac9f10000 221184 C:\Windows\System32\netprofm.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Network List Manager 131795770645377076 0x7ffaca340000 1593344 C:\Windows\System32\PROPSYS.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Система страниц свойств (Майкрософт) 131795770645377076 0x7ffaca4e0000 77824 C:\Windows\SYSTEM32\wtsapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Remote Desktop Session Host Server SDK APIs 131795770645377076 0x7ffaca610000 143360 C:\Windows\system32\SAMLIB.dll 10.0.14393.82 (rs1_release.160805-1735) Microsoft Corporation SAM Library DLL 131795770645377076 0x7ffacb3f0000 163840 c:\windows\system32\DEVOBJ.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Device Information Set DLL 131795770645377076 0x7ffacb6f0000 143360 C:\Windows\SYSTEM32\gpapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиентские функции API групповой политики 131795770645377076 0x7ffacb920000 81920 C:\Windows\SYSTEM32\WLDP.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Политика блокировки Windows 131795770645377076 0x7ffacbbb0000 208896 C:\Windows\system32\rsaenh.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Enhanced Cryptographic Provider 131795770645377076 0x7ffacbd30000 229376 C:\Windows\SYSTEM32\IPHLPAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API вспомогательного приложения IP 131795770645377076 0x7ffacbd70000 659456 C:\Windows\SYSTEM32\DNSAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Динамическая библиотека API DNS-клиента 131795770645377076 0x7ffacbe20000 53248 C:\Windows\SYSTEM32\netutils.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API Helpers DLL 131795770645377076 0x7ffacbe40000 126976 C:\Windows\system32\USERENV.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Userenv 131795770645377076 0x7ffacbfb0000 376832 C:\Windows\system32\mswsock.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширение поставщика службы API Microsoft Windows Sockets 2.0 131795770645377076 0x7ffacc150000 94208 C:\Windows\SYSTEM32\CRYPTSP.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Cryptographic Service Provider API 131795770645377076 0x7ffacc170000 45056 C:\Windows\SYSTEM32\CRYPTBASE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base cryptographic API DLL 131795770645377076 0x7ffacc1b0000 126976 C:\Windows\SYSTEM32\JoinUtil.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Join Utility DLL 131795770645377076 0x7ffacc350000 180224 C:\Windows\system32\sspicli.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Security Support Provider Interface 131795770645377076 0x7ffacc520000 622592 C:\Windows\SYSTEM32\sxs.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Fusion 2.5 131795770645377076 0x7ffacc5c0000 352256 C:\Windows\SYSTEM32\WINSTA.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Winstation Library 131795770645377076 0x7ffacc620000 176128 C:\Windows\SYSTEM32\bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795770645377076 0x7ffacc6e0000 61440 C:\Windows\System32\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795770645377076 0x7ffacc6f0000 311296 C:\Windows\System32\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795770645377076 0x7ffacc740000 81920 C:\Windows\System32\profapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Profile Basic API 131795770645377076 0x7ffacc760000 65536 C:\Windows\System32\MSASN1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ASN.1 Runtime APIs 131795770645377076 0x7ffacc8f0000 1003520 C:\Windows\System32\ucrtbase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645377076 0x7ffacc9f0000 434176 C:\Windows\System32\bcryptPrimitives.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Cryptographic Primitives Library 131795770645377076 0x7ffacca60000 122880 C:\Windows\System32\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795770645377076 0x7ffacca80000 348160 C:\Windows\System32\WINTRUST.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation Microsoft Trust Verification APIs 131795770645377076 0x7ffaccae0000 692224 C:\Windows\System32\shcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795770645377076 0x7ffacd270000 2215936 C:\Windows\System32\KERNELBASE.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645377076 0x7ffacd490000 1871872 C:\Windows\System32\CRYPT32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API32 криптографии 131795770645377076 0x7ffacd710000 638976 C:\Windows\System32\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645377076 0x7ffacd7b0000 270336 C:\Windows\System32\cfgmgr32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Configuration Manager DLL 131795770645377076 0x7ffaced20000 782336 C:\Windows\System32\OLEAUT32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795770645377076 0x7ffacee50000 1183744 C:\Windows\System32\RPCRT4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795770645377076 0x7ffacef80000 32768 C:\Windows\System32\NSI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation NSI User-mode interface DLL 131795770645377076 0x7ffacef90000 647168 C:\Windows\System32\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795770645377076 0x7ffacf030000 651264 C:\Windows\System32\clbcatq.dll 2001.12.10941.16384 (rs1_release.160715-1616) Microsoft Corporation COM+ Configuration Catalog 131795770645377076 0x7ffacf0d0000 704512 C:\Windows\System32\KERNEL32.DLL 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645377076 0x7ffacf770000 212992 C:\Windows\System32\GDI32.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation GDI Client DLL 131795770645377076 0x7ffacf820000 434176 C:\Windows\System32\WS2_32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation 32-разрядная библиотека Windows Socket 2.0 131795770645377076 0x7ffacf8c0000 1462272 C:\Windows\System32\user32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795770645377076 0x7ffacfb30000 2916352 C:\Windows\System32\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795770645377076 0x7ffacfe20000 663552 C:\Windows\System32\ADVAPI32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795770645377076 0x7ffad0210000 364544 C:\Windows\System32\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795770645377076 0x7ffad0270000 1908736 C:\Windows\SYSTEM32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 29 1248 580 4 00000000:000003e7 131765776322176070 0 0 1 Обязательная метка\Обязательный уровень системы NT AUTHORITY\СИСТЕМА spoolsv.exe C:\Windows\System32\spoolsv.exe C:\Windows\System32\spoolsv.exe Microsoft Corporation 10.0.14393.0 (rs1_release.160715-1616) Диспетчер очереди печати 131795770645377182 0x7ff639680000 819200 C:\Windows\System32\spoolsv.exe 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Диспетчер очереди печати 131795770645377182 0x7ffab8a60000 3346432 C:\Windows\system32\spool\DRIVERS\x64\3\PrintConfig.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Пользовательский интерфейс PrintConfig 131795770645377182 0x7ffaba980000 815104 C:\Windows\System32\jscript.dll 5.812.10240.16384 Microsoft Corporation Microsoft ® JScript 131795770645377182 0x7ffabae60000 77824 C:\Windows\System32\DEVRTL.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Device Management Run Time Library 131795770645377182 0x7ffabb7d0000 851968 C:\Windows\System32\win32spl.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик печати с исполнением на стороне клиента 131795770645377182 0x7ffabbd40000 176128 C:\Windows\SYSTEM32\prntvpt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Print Ticket Services Module 131795770645377182 0x7ffabbd70000 3346432 C:\Windows\System32\DriverStore\FileRepository\prnms003.inf_amd64_53d78f68bc1697cc\Amd64\PrintConfig.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Пользовательский интерфейс PrintConfig 131795770645377182 0x7ffabc0c0000 118784 C:\Windows\System32\SPFILEQ.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows SPFILEQ 131795770645377182 0x7ffabc590000 118784 C:\Program Files\Windows Defender\MpOav.dll 4.10.14393.1794 (rs1_release.171008-1615) Microsoft Corporation IOfficeAntiVirus Module 131795770645377182 0x7ffabc5b0000 65536 C:\Windows\SYSTEM32\amsi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Anti-Malware Scan Interface 131795770645377182 0x7ffabc880000 73728 C:\Windows\System32\cscapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Offline Files Win32 API 131795770645377182 0x7ffabcf50000 921600 C:\Windows\System32\drvstore.dll 10.0.14393.351 (rs1_release_inmarket.161014-1755) Microsoft Corporation Driver Store API 131795770645377182 0x7ffabd040000 77824 C:\Windows\System32\fdPnp.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Pnp Provider Dll 131795770645377182 0x7ffabd060000 610304 C:\Windows\System32\WSDMon.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Диспетчер порта принтера WSD 131795770645377182 0x7ffabd100000 348160 C:\Windows\System32\usbmon.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Standard Dynamic Printing Port Monitor DLL 131795770645377182 0x7ffabd160000 86016 C:\Windows\System32\wsnmp32.dll 10.0.14393.2189 (rs1_release.180329-1711) Microsoft Corporation Microsoft WinSNMP v2.0 Manager API 131795770645377182 0x7ffabd180000 548864 C:\Windows\system32\winspool.drv 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Драйвер диспетчера очереди Windows 131795770645377182 0x7ffabd2a0000 1159168 C:\Windows\System32\localspl.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Библиотека локального диспетчера очереди 131795770645377182 0x7ffabde60000 237568 C:\Windows\System32\tcpmon.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека монитора портов TCP/IP 131795770645377182 0x7ffabe3f0000 65536 C:\Windows\system32\spool\PRTPROCS\x64\winprint.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Windows Print Processor DLL 131795770645377182 0x7ffabe6c0000 77824 C:\Windows\System32\PrintIsolationProxy.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Print Sandbox COM Proxy Stub 131795770645377182 0x7ffabe8a0000 49152 C:\Windows\System32\snmpapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SNMP Utility Library 131795770645377182 0x7ffabe980000 114688 C:\Windows\System32\SPOOLSS.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Spooler SubSystem DLL 131795770645377182 0x7ffabef80000 69632 C:\Windows\System32\sfc_os.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows File Protection 131795770645377182 0x7ffabf330000 2457600 C:\Windows\System32\msxml6.dll 6.30.14393.2156 Microsoft Corporation MSXML 6.0 131795770645377182 0x7ffabf5d0000 2924544 C:\Windows\SYSTEM32\wininet.dll 11.00.14393.447 (rs1_release_inmarket.161102-0100) Microsoft Corporation Расширения Интернета для Win32 131795770645377182 0x7ffabff10000 155648 C:\Windows\System32\srvcli.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Server Service Client DLL 131795770645377182 0x7ffac0af0000 114688 C:\Windows\System32\ATL.DLL 3.05.2284 Microsoft Corporation ATL Module for Windows XP (Unicode) 131795770645377182 0x7ffac1f00000 65536 C:\Windows\System32\FXSMON.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Fax Print Monitor 131795770645377182 0x7ffac1f30000 118784 C:\Windows\System32\SPINF.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows SPINF 131795770645377182 0x7ffac2b80000 40960 C:\Windows\SYSTEM32\VERSION.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Version Checking and File Installation Libraries 131795770645377182 0x7ffac34e0000 1843200 C:\Windows\SYSTEM32\urlmon.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширения OLE32 для Win32 131795770645377182 0x7ffac3810000 167936 C:\Windows\System32\cabinet.dll 5.00 (rs1_release.160715-1616) Microsoft Corporation Microsoft® Cabinet File API 131795770645377182 0x7ffac3cb0000 2772992 C:\Windows\SYSTEM32\iertutil.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служебная программа времени выполнения для Internet Explorer 131795770645377182 0x7ffac4e90000 32768 C:\Windows\System32\wshirda.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Sockets Helper DLL 131795770645377182 0x7ffac60e0000 221184 C:\Windows\System32\XmlLite.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft XmlLite Library 131795770645377182 0x7ffac6610000 40960 C:\Windows\System32\rasadhlp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Remote Access AutoDial Helper 131795770645377182 0x7ffac6710000 172032 C:\Windows\System32\FunDisc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL обнаружения функции 131795770645377182 0x7ffac6750000 1380352 C:\Windows\System32\webservices.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Среда выполнения веб-служб Windows 131795770645377182 0x7ffac68b0000 696320 C:\Windows\System32\wsdapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Веб-службы для библиотек DLL API-интерфейсов устройств 131795770645377182 0x7ffac6990000 69632 C:\Windows\System32\deviceassociation.dll 10.0.14393.82 (rs1_release.160805-1735) Microsoft Corporation Device Association Client DLL 131795770645377182 0x7ffac69c0000 839680 C:\Windows\System32\WINHTTP.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Службы HTTP Windows 131795770645377182 0x7ffac6ba0000 49152 C:\Windows\System32\Secur32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Security Support Provider Interface 131795770645377182 0x7ffac7e00000 196608 C:\Windows\System32\inetpp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL Internet Print Provider 131795770645377182 0x7ffac8420000 434176 C:\Windows\System32\fwpuclnt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API пользовательского режима FWP/IPsec 131795770645377182 0x7ffac8810000 45056 C:\Windows\SYSTEM32\WINNSI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Network Store Information RPC interface 131795770645377182 0x7ffac9290000 40960 C:\Windows\System32\DSROLE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DS Setup Client DLL 131795770645377182 0x7ffaca4e0000 77824 C:\Windows\System32\WTSAPI32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Remote Desktop Session Host Server SDK APIs 131795770645377182 0x7ffacadf0000 499712 C:\Windows\system32\apphelp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиентская библиотека совместимости приложений 131795770645377182 0x7ffacb360000 176128 C:\Windows\System32\fwbase.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Firewall Base DLL 131795770645377182 0x7ffacb3f0000 163840 C:\Windows\System32\DEVOBJ.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Device Information Set DLL 131795770645377182 0x7ffacb420000 204800 C:\Windows\SYSTEM32\ntmarta.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик Windows NT MARTA 131795770645377182 0x7ffacb460000 548864 C:\Windows\System32\FirewallAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API брандмауэра Windows 131795770645377182 0x7ffacb6f0000 143360 C:\Windows\SYSTEM32\gpapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиентские функции API групповой политики 131795770645377182 0x7ffacbbb0000 208896 C:\Windows\system32\rsaenh.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Enhanced Cryptographic Provider 131795770645377182 0x7ffacbd30000 229376 C:\Windows\SYSTEM32\IPHLPAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API вспомогательного приложения IP 131795770645377182 0x7ffacbd70000 659456 C:\Windows\System32\DNSAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Динамическая библиотека API DNS-клиента 131795770645377182 0x7ffacbe20000 53248 C:\Windows\System32\netutils.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API Helpers DLL 131795770645377182 0x7ffacbe40000 126976 C:\Windows\System32\USERENV.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Userenv 131795770645377182 0x7ffacbfb0000 376832 C:\Windows\system32\mswsock.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширение поставщика службы API Microsoft Windows Sockets 2.0 131795770645377182 0x7ffacc150000 94208 C:\Windows\System32\CRYPTSP.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Cryptographic Service Provider API 131795770645377182 0x7ffacc170000 45056 C:\Windows\System32\CRYPTBASE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base cryptographic API DLL 131795770645377182 0x7ffacc350000 180224 C:\Windows\System32\SspiCli.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Security Support Provider Interface 131795770645377182 0x7ffacc520000 622592 C:\Windows\SYSTEM32\sxs.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Fusion 2.5 131795770645377182 0x7ffacc5c0000 352256 C:\Windows\System32\WINSTA.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Winstation Library 131795770645377182 0x7ffacc620000 176128 C:\Windows\System32\bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795770645377182 0x7ffacc6e0000 61440 C:\Windows\System32\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795770645377182 0x7ffacc6f0000 311296 C:\Windows\System32\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795770645377182 0x7ffacc740000 81920 C:\Windows\System32\profapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Profile Basic API 131795770645377182 0x7ffacc760000 65536 C:\Windows\System32\MSASN1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ASN.1 Runtime APIs 131795770645377182 0x7ffacc8f0000 1003520 C:\Windows\System32\ucrtbase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645377182 0x7ffacc9f0000 434176 C:\Windows\System32\bcryptPrimitives.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Cryptographic Primitives Library 131795770645377182 0x7ffacca60000 122880 C:\Windows\System32\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795770645377182 0x7ffacca80000 348160 C:\Windows\System32\WINTRUST.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation Microsoft Trust Verification APIs 131795770645377182 0x7ffaccae0000 692224 C:\Windows\System32\shcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795770645377182 0x7ffaccb90000 7180288 C:\Windows\System32\windows.storage.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API хранения Microsoft WinRT 131795770645377182 0x7ffacd270000 2215936 C:\Windows\System32\KERNELBASE.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645377182 0x7ffacd490000 1871872 C:\Windows\System32\CRYPT32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API32 криптографии 131795770645377182 0x7ffacd710000 638976 C:\Windows\System32\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645377182 0x7ffacd7b0000 270336 C:\Windows\System32\cfgmgr32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Configuration Manager DLL 131795770645377182 0x7ffacd810000 22056960 C:\Windows\System32\SHELL32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Общая библиотека оболочки Windows 131795770645377182 0x7ffaced20000 782336 C:\Windows\System32\OLEAUT32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795770645377182 0x7ffacee50000 1183744 C:\Windows\System32\RPCRT4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795770645377182 0x7ffacef80000 32768 C:\Windows\System32\NSI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation NSI User-mode interface DLL 131795770645377182 0x7ffacef90000 647168 C:\Windows\System32\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795770645377182 0x7ffacf030000 651264 C:\Windows\System32\clbcatq.dll 2001.12.10941.16384 (rs1_release.160715-1616) Microsoft Corporation COM+ Configuration Catalog 131795770645377182 0x7ffacf0d0000 704512 C:\Windows\System32\KERNEL32.DLL 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645377182 0x7ffacf340000 4362240 C:\Windows\System32\SETUPAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Setup API 131795770645377182 0x7ffacf770000 212992 C:\Windows\System32\GDI32.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation GDI Client DLL 131795770645377182 0x7ffacf820000 434176 C:\Windows\System32\WS2_32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation 32-разрядная библиотека Windows Socket 2.0 131795770645377182 0x7ffacf8c0000 1462272 C:\Windows\System32\USER32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795770645377182 0x7ffacfb30000 2916352 C:\Windows\System32\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795770645377182 0x7ffacfe20000 663552 C:\Windows\System32\advapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795770645377182 0x7ffad0070000 1277952 C:\Windows\System32\ole32.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft OLE для Windows 131795770645377182 0x7ffad01b0000 335872 C:\Windows\System32\SHLWAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека небольших программ оболочки 131795770645377182 0x7ffad0210000 364544 C:\Windows\System32\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795770645377182 0x7ffad0270000 1908736 C:\Windows\SYSTEM32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 30 1512 580 4 00000000:000003e5 131765776336551242 0 0 1 Обязательная метка\Обязательный уровень системы NT AUTHORITY\LOCAL SERVICE svchost.exe C:\Windows\system32\svchost.exe C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation Microsoft Corporation 10.0.14393.0 (rs1_release.160715-1616) Хост-процесс для служб Windows 131795770645377290 0x7ff718c20000 57344 C:\Windows\system32\svchost.exe 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Хост-процесс для служб Windows 131795770645377290 0x7ffabe9f0000 258048 c:\windows\system32\ssdpsrv.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL службы SSDP 131795770645377290 0x7ffac3f60000 225280 c:\windows\system32\FWPolicyIOMgr.dll 10.0.14393.2189 (rs1_release.180329-1711) Microsoft Corporation FwPolicyIoMgr DLL 131795770645377290 0x7ffac60e0000 221184 C:\Windows\System32\XmlLite.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft XmlLite Library 131795770645377290 0x7ffac6400000 53248 c:\windows\system32\HTTPAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation HTTP Protocol Stack API 131795770645377290 0x7ffac66c0000 32768 C:\Windows\system32\wship6.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL помощника Winsock2 (TL/IPv6) 131795770645377290 0x7ffac66d0000 32768 C:\Windows\system32\wshtcpip.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL помощника службы Winsock2 (TL/IPv4) 131795770645377290 0x7ffac6700000 40960 C:\Windows\system32\wshqos.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL помощника службы QoS Winsock2 131795770645377290 0x7ffac6710000 172032 C:\Windows\System32\FunDisc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL обнаружения функции 131795770645377290 0x7ffac6750000 1380352 c:\windows\system32\webservices.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Среда выполнения веб-служб Windows 131795770645377290 0x7ffac68b0000 696320 c:\windows\system32\wsdapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Веб-службы для библиотек DLL API-интерфейсов устройств 131795770645377290 0x7ffac69b0000 57344 c:\windows\system32\fdrespub.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служба публикации ресурсов обнаружения функции 131795770645377290 0x7ffac69c0000 839680 c:\windows\system32\WINHTTP.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Службы HTTP Windows 131795770645377290 0x7ffac83d0000 106496 C:\Windows\SYSTEM32\dhcpcsvc.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служба DHCP-клиента 131795770645377290 0x7ffac83f0000 90112 C:\Windows\SYSTEM32\dhcpcsvc6.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиент DHCPv6 131795770645377290 0x7ffac8810000 45056 C:\Windows\SYSTEM32\WINNSI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Network Store Information RPC interface 131795770645377290 0x7ffac90b0000 90112 c:\windows\system32\wkscli.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Workstation Service Client DLL 131795770645377290 0x7ffacb360000 176128 c:\windows\system32\fwbase.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Firewall Base DLL 131795770645377290 0x7ffacb460000 548864 c:\windows\system32\FirewallAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API брандмауэра Windows 131795770645377290 0x7ffacb920000 81920 C:\Windows\SYSTEM32\WLDP.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Политика блокировки Windows 131795770645377290 0x7ffacbbb0000 208896 C:\Windows\system32\rsaenh.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Enhanced Cryptographic Provider 131795770645377290 0x7ffacbd30000 229376 c:\windows\system32\IPHLPAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API вспомогательного приложения IP 131795770645377290 0x7ffacbe20000 53248 c:\windows\system32\netutils.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API Helpers DLL 131795770645377290 0x7ffacbfb0000 376832 C:\Windows\system32\mswsock.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширение поставщика службы API Microsoft Windows Sockets 2.0 131795770645377290 0x7ffacc150000 94208 c:\windows\system32\CRYPTSP.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Cryptographic Service Provider API 131795770645377290 0x7ffacc170000 45056 C:\Windows\system32\CRYPTBASE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base cryptographic API DLL 131795770645377290 0x7ffacc350000 180224 C:\Windows\system32\sspicli.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Security Support Provider Interface 131795770645377290 0x7ffacc620000 176128 c:\windows\system32\bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795770645377290 0x7ffacc6e0000 61440 C:\Windows\System32\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795770645377290 0x7ffacc6f0000 311296 C:\Windows\System32\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795770645377290 0x7ffacc760000 65536 C:\Windows\System32\MSASN1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ASN.1 Runtime APIs 131795770645377290 0x7ffacc8f0000 1003520 C:\Windows\System32\ucrtbase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645377290 0x7ffacc9f0000 434176 C:\Windows\System32\bcryptPrimitives.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Cryptographic Primitives Library 131795770645377290 0x7ffacca60000 122880 C:\Windows\System32\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795770645377290 0x7ffacca80000 348160 C:\Windows\System32\WINTRUST.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation Microsoft Trust Verification APIs 131795770645377290 0x7ffacd270000 2215936 C:\Windows\System32\KERNELBASE.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645377290 0x7ffacd490000 1871872 C:\Windows\System32\CRYPT32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API32 криптографии 131795770645377290 0x7ffacee50000 1183744 C:\Windows\System32\RPCRT4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795770645377290 0x7ffacef80000 32768 C:\Windows\System32\NSI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation NSI User-mode interface DLL 131795770645377290 0x7ffacef90000 647168 C:\Windows\System32\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795770645377290 0x7ffacf030000 651264 C:\Windows\System32\clbcatq.dll 2001.12.10941.16384 (rs1_release.160715-1616) Microsoft Corporation COM+ Configuration Catalog 131795770645377290 0x7ffacf0d0000 704512 C:\Windows\System32\KERNEL32.DLL 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645377290 0x7ffacf770000 212992 C:\Windows\System32\GDI32.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation GDI Client DLL 131795770645377290 0x7ffacf820000 434176 C:\Windows\System32\WS2_32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation 32-разрядная библиотека Windows Socket 2.0 131795770645377290 0x7ffacf8c0000 1462272 C:\Windows\System32\user32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795770645377290 0x7ffacfb30000 2916352 C:\Windows\System32\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795770645377290 0x7ffad0210000 364544 C:\Windows\System32\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795770645377290 0x7ffad0270000 1908736 C:\Windows\SYSTEM32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 31 1556 580 4 00000000:000003e7 131765776339471770 0 0 1 Обязательная метка\Обязательный уровень системы NT AUTHORITY\СИСТЕМА svchost.exe C:\Windows\System32\svchost.exe C:\Windows\System32\svchost.exe -k utcsvc Microsoft Corporation 10.0.14393.0 (rs1_release.160715-1616) Хост-процесс для служб Windows 131795770645377395 0x272f9bf0000 12288 C:\Windows\SYSTEM32\sfc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows File Protection 131795770645377395 0x7ff718c20000 57344 C:\Windows\System32\svchost.exe 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Хост-процесс для служб Windows 131795770645377395 0x7ffab93b0000 897024 C:\Windows\System32\TokenBroker.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Token Broker 131795770645377395 0x7ffabaab0000 94208 C:\Windows\SYSTEM32\profext.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation profext 131795770645377395 0x7ffabae60000 77824 C:\Windows\SYSTEM32\DEVRTL.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Device Management Run Time Library 131795770645377395 0x7ffabbd10000 65536 C:\Windows\System32\TOKENBINDING.dll 10.0.14393.1593 (rs1_release.170731-1934) Microsoft Corporation Token Binding Protocol 131795770645377395 0x7ffabca50000 819200 C:\Windows\System32\Windows.Security.Authentication.Web.Core.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Token Broker WinRT API 131795770645377395 0x7ffabcf50000 921600 C:\Windows\System32\drvstore.dll 10.0.14393.351 (rs1_release_inmarket.161014-1755) Microsoft Corporation Driver Store API 131795770645377395 0x7ffabe850000 155648 C:\Windows\System32\IDStore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Identity Store 131795770645377395 0x7ffabef80000 69632 C:\Windows\SYSTEM32\sfc_os.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows File Protection 131795770645377395 0x7ffabefd0000 258048 C:\Windows\SYSTEM32\aepic.dll 10.0.17060.1029 (WinBuild.160101.0800) Microsoft Corporation Application Experience Program Cache 131795770645377395 0x7ffabf140000 176128 C:\Windows\System32\CourtesyEngine.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Feedback Courtesy Engine DLL Server 131795770645377395 0x7ffabf1d0000 192512 C:\Windows\System32\cryptnet.dll 10.0.14393.2035 (rs1_release_inmarket.180110-1910) Microsoft Corporation Crypto Network Related API 131795770645377395 0x7ffabfbe0000 1011712 C:\Windows\System32\Windows.Security.Authentication.OnlineId.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation Windows Runtime OnlineId Authentication DLL 131795770645377395 0x7ffabfde0000 143360 c:\windows\system32\CRYPTXML.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API-интерфейс XML DigSig 131795770645377395 0x7ffabff60000 135168 C:\Windows\system32\ncryptsslp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft SChannel Provider 131795770645377395 0x7ffac05f0000 94208 C:\Windows\System32\wwapi.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation WWAN API 131795770645377395 0x7ffac0910000 724992 C:\Windows\System32\Windows.Networking.Connectivity.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Networking Connectivity Runtime DLL 131795770645377395 0x7ffac09d0000 884736 C:\Windows\System32\wpnapps.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Приложения для push-уведомлений Windows 131795770645377395 0x7ffac0ad0000 86016 C:\Windows\SYSTEM32\mskeyprotect.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик защиты ключей (Майкрософт) 131795770645377395 0x7ffac0bf0000 3559424 C:\Windows\System32\ActXPrxy.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation ActiveX Interface Marshaling Library 131795770645377395 0x7ffac1d60000 589824 c:\windows\system32\webio.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API протоколов передачи по Веб 131795770645377395 0x7ffac20d0000 110592 C:\Windows\System32\RMCLIENT.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Resource Manager Client 131795770645377395 0x7ffac23c0000 331776 C:\Windows\System32\OneCoreCommonProxyStub.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation OneCore Common Proxy Stub 131795770645377395 0x7ffac2590000 659456 C:\Windows\System32\FlightSettings.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Параметры цикла тестирования 131795770645377395 0x7ffac2700000 98304 C:\Windows\SYSTEM32\Netapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API DLL 131795770645377395 0x7ffac2750000 106496 C:\Windows\System32\bcd.dll 10.0.14393.1794 (rs1_release.171008-1615) Microsoft Corporation BCD DLL 131795770645377395 0x7ffac2b30000 286720 C:\Windows\System32\usermgrproxy.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation UserMgrProxy 131795770645377395 0x7ffac3cb0000 2772992 C:\Windows\SYSTEM32\iertutil.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служебная программа времени выполнения для Internet Explorer 131795770645377395 0x7ffac4000000 274432 C:\Windows\SYSTEM32\policymanager.dll 10.0.14393.2035 (rs1_release_inmarket.180110-1910) Microsoft Corporation Policy Manager DLL 131795770645377395 0x7ffac4070000 499712 C:\Windows\SYSTEM32\DSREG.DLL 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation AD/AAD User Device Registration 131795770645377395 0x7ffac4450000 86016 C:\Windows\SYSTEM32\usermgrcli.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation UserMgr API DLL 131795770645377395 0x7ffac5fd0000 1056768 c:\windows\system32\WindowsPerformanceRecorderControl.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Windows Performance Recorder Control Library 131795770645377395 0x7ffac60e0000 221184 c:\windows\system32\XmlLite.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft XmlLite Library 131795770645377395 0x7ffac6210000 2007040 c:\windows\system32\diagtrack.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Диагностическое отслеживание Microsoft Windows 131795770645377395 0x7ffac6610000 40960 C:\Windows\System32\rasadhlp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Remote Access AutoDial Helper 131795775838362137 0x7ffac66a0000 86016 C:\Windows\System32\OnDemandConnRouteHelper.dll 10.0.14393.351 (rs1_release_inmarket.161014-1755) Microsoft Corporation On Demand Connctiond Route Helper 131795770645377395 0x7ffac6750000 1380352 c:\windows\system32\webservices.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Среда выполнения веб-служб Windows 131795770645377395 0x7ffac69c0000 839680 c:\windows\system32\WINHTTP.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Службы HTTP Windows 131795770645377395 0x7ffac79c0000 57344 C:\Windows\System32\npmproxy.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Network List Manager Proxy 131795770645377395 0x7ffac7aa0000 401408 C:\Windows\SYSTEM32\wlanapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows WLAN AutoConfig Client Side API DLL 131795770645377395 0x7ffac83d0000 106496 C:\Windows\SYSTEM32\dhcpcsvc.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служба DHCP-клиента 131795770645377395 0x7ffac83f0000 90112 C:\Windows\SYSTEM32\dhcpcsvc6.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиент DHCPv6 131795775839498740 0x7ffac8420000 434176 C:\Windows\System32\FWPUCLNT.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API пользовательского режима FWP/IPsec 131795770645377395 0x7ffac8540000 286720 C:\Windows\System32\vaultcli.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиентская библиотека хранилища учетных данных 131795770645377395 0x7ffac8810000 45056 C:\Windows\SYSTEM32\WINNSI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Network Store Information RPC interface 131795770645377395 0x7ffac8cf0000 815104 C:\Windows\System32\taskschd.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Task Scheduler COM API 131795770645377395 0x7ffac8dc0000 167936 C:\Windows\System32\dbgcore.DLL 10.0.14321.1024 (debuggers(dbg).160715-1616) Microsoft Windows Core Debugging Helpers 131795770645377395 0x7ffac8df0000 1646592 C:\Windows\system32\dbghelp.dll 10.0.14321.1024 (rs1_release.160715-1616) Microsoft Windows Image Helper 131795770645377395 0x7ffac90b0000 90112 C:\Windows\System32\wkscli.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Workstation Service Client DLL 131795770645377395 0x7ffac92e0000 1269760 C:\Windows\System32\WinTypes.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL основных типов Windows 131795770645377395 0x7ffaca4e0000 77824 C:\Windows\SYSTEM32\wtsapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Remote Desktop Session Host Server SDK APIs 131795770645377395 0x7ffaca610000 143360 C:\Windows\System32\SAMLIB.dll 10.0.14393.82 (rs1_release.160805-1735) Microsoft Corporation SAM Library DLL 131795770645377395 0x7ffacb140000 593920 c:\windows\system32\msvcp110_win.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Microsoft® STL110 C++ Runtime Library 131795770645377395 0x7ffacb1e0000 1163264 C:\Windows\System32\twinapi.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation twinapi.appcore 131795770645377395 0x7ffacb420000 204800 C:\Windows\SYSTEM32\ntmarta.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик Windows NT MARTA 131795770645377395 0x7ffacb6f0000 143360 C:\Windows\SYSTEM32\gpapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиентские функции API групповой политики 131795770645377395 0x7ffacb920000 81920 C:\Windows\SYSTEM32\WLDP.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Политика блокировки Windows 131795770645377395 0x7ffacbaf0000 495616 C:\Windows\system32\schannel.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик безопасности TLS/SSL 131795770645377395 0x7ffacbbb0000 208896 C:\Windows\system32\rsaenh.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Enhanced Cryptographic Provider 131795770645377395 0x7ffacbbf0000 40960 C:\Windows\System32\DPAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Data Protection API 131795770645377395 0x7ffacbd30000 229376 C:\Windows\System32\IPHLPAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API вспомогательного приложения IP 131795770645377395 0x7ffacbd70000 659456 c:\windows\system32\DNSAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Динамическая библиотека API DNS-клиента 131795770645377395 0x7ffacbe20000 53248 C:\Windows\System32\netutils.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API Helpers DLL 131795770645377395 0x7ffacbe40000 126976 c:\windows\system32\USERENV.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Userenv 131795770645377395 0x7ffacbfb0000 376832 C:\Windows\system32\mswsock.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширение поставщика службы API Microsoft Windows Sockets 2.0 131795770645377395 0x7ffacc150000 94208 C:\Windows\SYSTEM32\cryptsp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Cryptographic Service Provider API 131795770645377395 0x7ffacc170000 45056 C:\Windows\System32\CRYPTBASE.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base cryptographic API DLL 131795770645377395 0x7ffacc1f0000 241664 C:\Windows\SYSTEM32\NTASN1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft ASN.1 API 131795770645377395 0x7ffacc230000 155648 C:\Windows\SYSTEM32\ncrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Маршрутизатор Windows NCrypt 131795770645377395 0x7ffacc350000 180224 C:\Windows\SYSTEM32\SspiCli.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Security Support Provider Interface 131795770645377395 0x7ffacc5c0000 352256 C:\Windows\SYSTEM32\WINSTA.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Winstation Library 131795770645377395 0x7ffacc620000 176128 c:\windows\system32\bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795770645377395 0x7ffacc6e0000 61440 C:\Windows\System32\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795770645377395 0x7ffacc6f0000 311296 C:\Windows\System32\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795770645377395 0x7ffacc740000 81920 C:\Windows\System32\profapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Profile Basic API 131795770645377395 0x7ffacc760000 65536 C:\Windows\System32\MSASN1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ASN.1 Runtime APIs 131795770645377395 0x7ffacc8f0000 1003520 C:\Windows\System32\ucrtbase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645377395 0x7ffacc9f0000 434176 C:\Windows\System32\bcryptPrimitives.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Cryptographic Primitives Library 131795770645377395 0x7ffacca60000 122880 C:\Windows\System32\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795770645377395 0x7ffacca80000 348160 C:\Windows\System32\WINTRUST.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation Microsoft Trust Verification APIs 131795770645377395 0x7ffaccae0000 692224 C:\Windows\System32\shcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795770645377395 0x7ffaccb90000 7180288 C:\Windows\System32\windows.storage.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API хранения Microsoft WinRT 131795770645377395 0x7ffacd270000 2215936 C:\Windows\System32\KERNELBASE.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645377395 0x7ffacd490000 1871872 C:\Windows\System32\CRYPT32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API32 криптографии 131795770645377395 0x7ffacd710000 638976 C:\Windows\System32\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645377395 0x7ffacd7b0000 270336 C:\Windows\System32\cfgmgr32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Configuration Manager DLL 131795770645377395 0x7ffacd810000 22056960 C:\Windows\System32\SHELL32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Общая библиотека оболочки Windows 131795770645377395 0x7ffaced20000 782336 C:\Windows\System32\OLEAUT32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795770645377395 0x7ffacede0000 450560 C:\Windows\System32\coml2.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft COM for Windows 131795770645377395 0x7ffacee50000 1183744 C:\Windows\System32\RPCRT4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795770645377395 0x7ffacef80000 32768 C:\Windows\System32\NSI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation NSI User-mode interface DLL 131795770645377395 0x7ffacef90000 647168 C:\Windows\System32\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795770645377395 0x7ffacf030000 651264 C:\Windows\System32\clbcatq.dll 2001.12.10941.16384 (rs1_release.160715-1616) Microsoft Corporation COM+ Configuration Catalog 131795770645377395 0x7ffacf0d0000 704512 C:\Windows\System32\KERNEL32.DLL 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645377395 0x7ffacf340000 4362240 C:\Windows\System32\SETUPAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Setup API 131795770645377395 0x7ffacf770000 212992 C:\Windows\System32\GDI32.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation GDI Client DLL 131795770645377395 0x7ffacf820000 434176 C:\Windows\System32\WS2_32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation 32-разрядная библиотека Windows Socket 2.0 131795770645377395 0x7ffacf8c0000 1462272 C:\Windows\System32\user32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795770645377395 0x7ffacfb30000 2916352 C:\Windows\System32\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795770645377395 0x7ffacfe20000 663552 C:\Windows\System32\advapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795770645377395 0x7ffad0070000 1277952 C:\Windows\System32\OLE32.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft OLE для Windows 131795770645377395 0x7ffad01b0000 335872 C:\Windows\System32\SHLWAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека небольших программ оболочки 131795770645377395 0x7ffad0210000 364544 C:\Windows\System32\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795770645377395 0x7ffad0270000 1908736 C:\Windows\SYSTEM32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 32 1636 580 4 00000000:000003e7 131765776343009549 0 0 1 Обязательная метка\Обязательный уровень системы NT AUTHORITY\СИСТЕМА svchost.exe C:\Windows\system32\svchost.exe C:\Windows\system32\svchost.exe -k appmodel Microsoft Corporation 10.0.14393.0 (rs1_release.160715-1616) Хост-процесс для служб Windows 131795770645377489 0x7ff718c20000 57344 C:\Windows\system32\svchost.exe 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Хост-процесс для служб Windows 131795770645377489 0x7ffac0bf0000 3559424 C:\Windows\System32\ActXPrxy.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation ActiveX Interface Marshaling Library 131795770645377489 0x7ffac34e0000 1843200 c:\windows\system32\urlmon.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширения OLE32 для Win32 131795770645377489 0x7ffac3840000 3088384 c:\windows\system32\ESENT.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширяемая подсистема хранения данных ESE для Microsoft(R) Windows(R) 131795770645377489 0x7ffac3c10000 593920 c:\windows\system32\tileobjserver.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Сервер моделей данных плиток 131795770645377489 0x7ffac3cb0000 2772992 c:\windows\system32\iertutil.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служебная программа времени выполнения для Internet Explorer 131795770645377489 0x7ffac42a0000 659456 c:\windows\system32\StateRepository.Core.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation StateRepository Core 131795770645377489 0x7ffac46d0000 4161536 c:\windows\system32\windows.staterepository.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Сервер Windows StateRepository API Server 131795770645377489 0x7ffac6ac0000 835584 C:\Windows\System32\Windows.UI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Runtime UI Foundation DLL 131795770645377489 0x7ffac7580000 1077248 C:\Windows\System32\MrmCoreR.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Windows MRM 131795770645377489 0x7ffaca4e0000 77824 C:\Windows\SYSTEM32\wtsapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Remote Desktop Session Host Server SDK APIs 131795770645377489 0x7ffaca570000 421888 C:\Windows\System32\Bcp47Langs.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation BCP47 Language Classes 131795770645377489 0x7ffacb140000 593920 c:\windows\system32\msvcp110_win.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Microsoft® STL110 C++ Runtime Library 131795770645377489 0x7ffacb920000 81920 C:\Windows\SYSTEM32\WLDP.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Политика блокировки Windows 131795770645377489 0x7ffacbe40000 126976 C:\Windows\system32\USERENV.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Userenv 131795770645377489 0x7ffacc170000 45056 C:\Windows\system32\CRYPTBASE.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base cryptographic API DLL 131795770645377489 0x7ffacc350000 180224 C:\Windows\SYSTEM32\SspiCli.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Security Support Provider Interface 131795770645377489 0x7ffacc5c0000 352256 C:\Windows\SYSTEM32\WINSTA.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Winstation Library 131795770645377489 0x7ffacc620000 176128 C:\Windows\system32\Bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795770645377489 0x7ffacc6e0000 61440 C:\Windows\System32\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795770645377489 0x7ffacc6f0000 311296 C:\Windows\System32\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795770645377489 0x7ffacc740000 81920 C:\Windows\System32\profapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Profile Basic API 131795770645377489 0x7ffacc760000 65536 C:\Windows\System32\MSASN1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ASN.1 Runtime APIs 131795770645377489 0x7ffacc8f0000 1003520 C:\Windows\System32\ucrtbase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645377489 0x7ffacc9f0000 434176 C:\Windows\System32\bcryptPrimitives.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Cryptographic Primitives Library 131795770645377489 0x7ffacca60000 122880 C:\Windows\System32\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795770645377489 0x7ffacca80000 348160 C:\Windows\System32\WINTRUST.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation Microsoft Trust Verification APIs 131795770645377489 0x7ffaccae0000 692224 C:\Windows\System32\shcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795770645377489 0x7ffaccb90000 7180288 C:\Windows\System32\windows.storage.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API хранения Microsoft WinRT 131795770645377489 0x7ffacd270000 2215936 C:\Windows\System32\KERNELBASE.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645377489 0x7ffacd490000 1871872 C:\Windows\System32\CRYPT32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API32 криптографии 131795770645377489 0x7ffacd710000 638976 C:\Windows\System32\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645377489 0x7ffaced20000 782336 C:\Windows\System32\OLEAUT32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795770645377489 0x7ffacee50000 1183744 C:\Windows\System32\RPCRT4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795770645377489 0x7ffacef90000 647168 C:\Windows\System32\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795770645377489 0x7ffacf030000 651264 C:\Windows\System32\clbcatq.dll 2001.12.10941.16384 (rs1_release.160715-1616) Microsoft Corporation COM+ Configuration Catalog 131795770645377489 0x7ffacf0d0000 704512 C:\Windows\System32\KERNEL32.DLL 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645377489 0x7ffacf770000 212992 C:\Windows\System32\GDI32.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation GDI Client DLL 131795770645377489 0x7ffacf8c0000 1462272 C:\Windows\System32\user32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795770645377489 0x7ffacfb30000 2916352 C:\Windows\System32\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795770645377489 0x7ffacfe20000 663552 C:\Windows\System32\advapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795770645377489 0x7ffad01b0000 335872 C:\Windows\System32\shlwapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека небольших программ оболочки 131795770645377489 0x7ffad0210000 364544 C:\Windows\System32\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795770645377489 0x7ffad0270000 1908736 C:\Windows\SYSTEM32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 33 1744 4 9 00000000:000003e7 131765776348255325 0 0 1 Обязательная метка\Обязательный уровень системы NT AUTHORITY\СИСТЕМА MemCompression MemCompression 34 2100 580 4 00000000:000003e4 131765776438403561 0 0 1 Обязательная метка\Обязательный уровень системы NT AUTHORITY\NETWORK SERVICE svchost.exe C:\Windows\system32\svchost.exe C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted Microsoft Corporation 10.0.14393.0 (rs1_release.160715-1616) Хост-процесс для служб Windows 131795770645377758 0x7ff718c20000 57344 C:\Windows\system32\svchost.exe 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Хост-процесс для служб Windows 131795770645377758 0x7ffabff90000 409600 c:\windows\system32\ipsecsvc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows IPsec SPD Server DLL 131795770645377758 0x7ffac1e00000 114688 c:\windows\system32\FwRemoteSvr.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Firewall Remote APIs Server 131795770645377758 0x7ffac3f60000 225280 c:\windows\system32\FWPolicyIOMgr.dll 10.0.14393.2189 (rs1_release.180329-1711) Microsoft Corporation FwPolicyIoMgr DLL 131795770645377758 0x7ffac83d0000 106496 C:\Windows\SYSTEM32\dhcpcsvc.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служба DHCP-клиента 131795770645377758 0x7ffac83f0000 90112 C:\Windows\SYSTEM32\dhcpcsvc6.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиент DHCPv6 131795770645377758 0x7ffac8420000 434176 c:\windows\system32\fwpuclnt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API пользовательского режима FWP/IPsec 131795770645377758 0x7ffacb360000 176128 c:\windows\system32\fwbase.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Firewall Base DLL 131795770645377758 0x7ffacb460000 548864 c:\windows\system32\FirewallAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API брандмауэра Windows 131795770645377758 0x7ffacb920000 81920 C:\Windows\SYSTEM32\WLDP.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Политика блокировки Windows 131795770645377758 0x7ffacb960000 303104 c:\windows\system32\AUTHZ.dll 10.0.14393.1737 (rs1_release_inmarket.170914-1249) Microsoft Corporation Authorization Framework 131795770645377758 0x7ffacbd30000 229376 c:\windows\system32\IPHLPAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API вспомогательного приложения IP 131795770645377758 0x7ffacbfb0000 376832 C:\Windows\system32\mswsock.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширение поставщика службы API Microsoft Windows Sockets 2.0 131795770645377758 0x7ffacc350000 180224 C:\Windows\system32\sspicli.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Security Support Provider Interface 131795770645377758 0x7ffacc620000 176128 c:\windows\system32\bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795770645377758 0x7ffacc6e0000 61440 C:\Windows\System32\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795770645377758 0x7ffacc760000 65536 C:\Windows\System32\MSASN1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ASN.1 Runtime APIs 131795770645377758 0x7ffacc8f0000 1003520 C:\Windows\System32\ucrtbase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645377758 0x7ffacc9f0000 434176 C:\Windows\System32\bcryptPrimitives.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Cryptographic Primitives Library 131795770645377758 0x7ffacca80000 348160 C:\Windows\System32\WINTRUST.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation Microsoft Trust Verification APIs 131795770645377758 0x7ffacd270000 2215936 C:\Windows\System32\KERNELBASE.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645377758 0x7ffacd490000 1871872 C:\Windows\System32\CRYPT32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API32 криптографии 131795770645377758 0x7ffacd710000 638976 C:\Windows\System32\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645377758 0x7ffaced20000 782336 C:\Windows\System32\OLEAUT32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795770645377758 0x7ffacee50000 1183744 C:\Windows\System32\RPCRT4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795770645377758 0x7ffacef80000 32768 C:\Windows\System32\NSI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation NSI User-mode interface DLL 131795770645377758 0x7ffacef90000 647168 C:\Windows\System32\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795770645377758 0x7ffacf030000 651264 C:\Windows\System32\clbcatq.dll 2001.12.10941.16384 (rs1_release.160715-1616) Microsoft Corporation COM+ Configuration Catalog 131795770645377758 0x7ffacf0d0000 704512 C:\Windows\System32\KERNEL32.DLL 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645377758 0x7ffacf820000 434176 C:\Windows\System32\WS2_32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation 32-разрядная библиотека Windows Socket 2.0 131795770645377758 0x7ffacfb30000 2916352 C:\Windows\System32\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795770645377758 0x7ffad0210000 364544 C:\Windows\System32\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795770645377758 0x7ffad0270000 1908736 C:\Windows\SYSTEM32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 35 2648 348 24 00000000:0031f1da 131765777555980720 0 0 1 Обязательная метка\Средний обязательный уровень WIN-0UOTFKKVN1S\User sihost.exe C:\Windows\system32\sihost.exe sihost.exe Microsoft Corporation 10.0.14393.0 (rs1_release.160715-1616) Shell Infrastructure Host 131795770645377872 0x7ff7bbae0000 94208 C:\Windows\system32\sihost.exe 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Shell Infrastructure Host 131795770645377872 0x7ffab9490000 860160 C:\Windows\System32\ntshrui.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширения оболочки, обеспечивающие общий доступ 131795770645377872 0x7ffabae40000 110592 C:\Windows\SYSTEM32\capauthz.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API авторизации возможностей 131795770645377872 0x7ffabaf70000 270336 C:\Windows\System32\edputil.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служебная программа EDP 131795770645377872 0x7ffabb910000 344064 C:\Windows\System32\container.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Windows Containers 131795770645377872 0x7ffabb970000 487424 C:\Windows\System32\daxexec.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation daxexec 131795770645377872 0x7ffabba80000 995328 C:\Windows\System32\twinui.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation TWINUI.APPCORE 131795770645377872 0x7ffabbb80000 61440 C:\Windows\System32\dsclient.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Data Sharing Service Client DLL 131795770645377872 0x7ffabbb90000 581632 C:\Windows\System32\Windows.System.Launcher.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows.System.Launcher 131795770645377872 0x7ffabbd00000 36864 C:\Windows\system32\WpPortingLibrary.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation <d> DLL 131795770645377872 0x7ffabc0b0000 65536 C:\Windows\System32\LINKINFO.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Volume Tracking 131795770645377872 0x7ffabc450000 741376 C:\Windows\system32\ShareHost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ShareHost 131795770645377872 0x7ffabc510000 90112 C:\Windows\system32\execmodelproxy.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ExecModelProxy 131795770645377872 0x7ffabc570000 94208 C:\Windows\SYSTEM32\licensemanagerapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation "LicenseManagerApi.DYNLINK" 131795770645377872 0x7ffabc6b0000 1114112 C:\Windows\System32\AppContracts.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Сервер API Windows AppContracts 131795770645377872 0x7ffabc800000 266240 C:\Windows\System32\windowmanagement.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Window Management 131795770645377872 0x7ffabc850000 159744 C:\Windows\System32\AppointmentActivation.dll 10.0.14393.2189 (rs1_release.180329-1711) Microsoft Corporation DLL for AppointmentActivation 131795770645377872 0x7ffabc880000 73728 C:\Windows\system32\cscapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Offline Files Win32 API 131795770645377872 0x7ffabc8b0000 61440 C:\Windows\System32\NotificationPlatformComponent.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation NotificationPlatformComponent 131795770645377872 0x7ffabc920000 270336 C:\Windows\system32\ExecModelClient.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation ExecModelClient 131795770645377872 0x7ffabc9a0000 413696 C:\Windows\system32\activationmanager.dll 10.0.14393.479 (rs1_release.161110-2025) Microsoft Corporation Activation Manager 131795770645377872 0x7ffabca10000 221184 C:\Windows\System32\ClipboardServer.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Сервер API Modern Clipboard 131795770645377872 0x7ffabcde0000 983040 C:\Windows\System32\modernexecserver.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Сервер Modern Execution 131795770645377872 0x7ffabcef0000 102400 C:\Windows\System32\Windows.Shell.ServiceHostBuilder.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows.Shell.ServiceHostBuilder 131795770645377872 0x7ffabcf10000 122880 C:\Windows\system32\desktopshellext.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DesktopHost Extensions 131795770645377872 0x7ffabff10000 155648 C:\Windows\System32\srvcli.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Server Service Client DLL 131795770645377872 0x7ffac0bf0000 3559424 C:\Windows\System32\ActXPrxy.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation ActiveX Interface Marshaling Library 131795770645377872 0x7ffac20d0000 110592 C:\Windows\System32\RMCLIENT.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Resource Manager Client 131795770645377872 0x7ffac23c0000 331776 C:\Windows\System32\OneCoreCommonProxyStub.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation OneCore Common Proxy Stub 131795770645377872 0x7ffac2b30000 286720 C:\Windows\System32\usermgrproxy.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation UserMgrProxy 131795770645377872 0x7ffac3270000 40960 C:\Windows\System32\FLTLIB.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека фильтров 131795770645377872 0x7ffac34e0000 1843200 C:\Windows\System32\urlmon.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширения OLE32 для Win32 131795770645377872 0x7ffac3cb0000 2772992 C:\Windows\System32\iertutil.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служебная программа времени выполнения для Internet Explorer 131795770645377872 0x7ffac42a0000 659456 C:\Windows\System32\StateRepository.Core.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation StateRepository Core 131795770645377872 0x7ffac4450000 86016 C:\Windows\SYSTEM32\usermgrcli.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation UserMgr API DLL 131795770645377872 0x7ffac46d0000 4161536 C:\Windows\System32\Windows.StateRepository.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Сервер Windows StateRepository API Server 131795770645377872 0x7ffac5500000 438272 C:\Windows\system32\PhotoMetadataHandler.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Photo Metadata Handler 131795770645377872 0x7ffac7720000 1601536 C:\Windows\System32\OneCoreUAPCommonProxyStub.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation OneCoreUAP Common Proxy Stub 131795770645377872 0x7ffac92e0000 1269760 C:\Windows\SYSTEM32\wintypes.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL основных типов Windows 131795770645377872 0x7ffac9500000 2682880 C:\Windows\system32\CoreUIComponents.dll 131795770645377872 0x7ffac9f50000 1736704 C:\Windows\system32\WindowsCodecs.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Microsoft Windows Codecs Library 131795770645377872 0x7ffaca340000 1593344 C:\Windows\System32\PROPSYS.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Система страниц свойств (Майкрософт) 131795770645377872 0x7ffaca4e0000 77824 C:\Windows\SYSTEM32\wtsapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Remote Desktop Session Host Server SDK APIs 131795770645377872 0x7ffaca5e0000 155648 C:\Windows\System32\dwmapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Интерфейс API диспетчера окон рабочего стола (Майкрософт) 131795770645377872 0x7ffaca640000 770048 C:\Windows\system32\CoreMessaging.dll 10.0.14393.0 Microsoft Corporation Microsoft CoreMessaging Dll 131795770645377872 0x7ffacadf0000 499712 C:\Windows\System32\apphelp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиентская библиотека совместимости приложений 131795770645377872 0x7ffacaf00000 610304 C:\Windows\system32\uxtheme.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека тем UxTheme (Microsoft) 131795770645377872 0x7ffacb140000 593920 C:\Windows\System32\msvcp110_win.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Microsoft® STL110 C++ Runtime Library 131795770645377872 0x7ffacb1e0000 1163264 C:\Windows\SYSTEM32\twinapi.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation twinapi.appcore 131795770645377872 0x7ffacb300000 364544 C:\Windows\System32\VEEventDispatcher.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Visual Element Event dispatcher 131795770645377872 0x7ffacb3d0000 110592 C:\Windows\System32\ResourcePolicyClient.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Resource Policy Client 131795770645377872 0x7ffacb420000 204800 C:\Windows\SYSTEM32\ntmarta.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик Windows NT MARTA 131795770645377872 0x7ffacbd30000 229376 C:\Windows\System32\IPHLPAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API вспомогательного приложения IP 131795770645377872 0x7ffacc350000 180224 C:\Windows\System32\SspiCli.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Security Support Provider Interface 131795770645377872 0x7ffacc5c0000 352256 C:\Windows\SYSTEM32\WINSTA.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Winstation Library 131795770645377872 0x7ffacc620000 176128 C:\Windows\System32\bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795770645377872 0x7ffacc6e0000 61440 C:\Windows\System32\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795770645377872 0x7ffacc6f0000 311296 C:\Windows\System32\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795770645377872 0x7ffacc740000 81920 C:\Windows\System32\profapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Profile Basic API 131795770645377872 0x7ffacc8f0000 1003520 C:\Windows\System32\ucrtbase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645377872 0x7ffacc9f0000 434176 C:\Windows\System32\bcryptPrimitives.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Cryptographic Primitives Library 131795770645377872 0x7ffacca60000 122880 C:\Windows\System32\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795770645377872 0x7ffaccae0000 692224 C:\Windows\System32\shcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795770645377872 0x7ffaccb90000 7180288 C:\Windows\System32\Windows.Storage.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API хранения Microsoft WinRT 131795770645377872 0x7ffacd270000 2215936 C:\Windows\System32\KERNELBASE.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645377872 0x7ffacd710000 638976 C:\Windows\System32\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645377872 0x7ffacd7b0000 270336 C:\Windows\System32\cfgmgr32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Configuration Manager DLL 131795770645377872 0x7ffacd810000 22056960 C:\Windows\System32\shell32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Общая библиотека оболочки Windows 131795770645377872 0x7ffaced20000 782336 C:\Windows\System32\OLEAUT32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795770645377872 0x7ffacee50000 1183744 C:\Windows\System32\RPCRT4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795770645377872 0x7ffacef90000 647168 C:\Windows\System32\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795770645377872 0x7ffacf030000 651264 C:\Windows\System32\clbcatq.dll 2001.12.10941.16384 (rs1_release.160715-1616) Microsoft Corporation COM+ Configuration Catalog 131795770645377872 0x7ffacf0d0000 704512 C:\Windows\System32\KERNEL32.DLL 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645377872 0x7ffacf770000 212992 C:\Windows\System32\GDI32.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation GDI Client DLL 131795770645377872 0x7ffacf890000 188416 C:\Windows\System32\IMM32.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Multi-User Windows IMM32 API Client DLL 131795770645377872 0x7ffacf8c0000 1462272 C:\Windows\System32\user32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795770645377872 0x7ffacfb30000 2916352 C:\Windows\System32\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795770645377872 0x7ffacfe20000 663552 C:\Windows\System32\advapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795770645377872 0x7ffad0070000 1277952 C:\Windows\System32\ole32.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft OLE для Windows 131795770645377872 0x7ffad01b0000 335872 C:\Windows\System32\shlwapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека небольших программ оболочки 131795770645377872 0x7ffad0210000 364544 C:\Windows\System32\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795770645377872 0x7ffad0270000 1908736 C:\Windows\SYSTEM32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 36 840 580 4 00000000:0031f1da 131765777563791648 0 0 1 Обязательная метка\Средний обязательный уровень WIN-0UOTFKKVN1S\User svchost.exe C:\Windows\system32\svchost.exe C:\Windows\system32\svchost.exe -k UnistackSvcGroup Microsoft Corporation 10.0.14393.0 (rs1_release.160715-1616) Хост-процесс для служб Windows 131795770645377971 0x7ff718c20000 57344 C:\Windows\system32\svchost.exe 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Хост-процесс для служб Windows 131795770645377971 0x7ffaaf6a0000 331776 C:\Windows\System32\PhoneUtil.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Phone utilities 131795770645377971 0x7ffaaf700000 1421312 C:\Windows\System32\PIMSTORE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation POOM 131795770645377971 0x7ffab05d0000 339968 C:\Windows\System32\AccountAccessor.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Sync data model to access accounts 131795770645377971 0x7ffab0630000 618496 C:\Windows\System32\SyncController.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SyncController for managing sync of mail, contacts, calendar 131795770645377971 0x7ffab93b0000 897024 C:\Windows\System32\TokenBroker.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Token Broker 131795770645377971 0x7ffabaab0000 94208 C:\Windows\SYSTEM32\profext.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation profext 131795770645377971 0x7ffabbb80000 61440 C:\Windows\System32\dsclient.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Data Sharing Service Client DLL 131795770645377971 0x7ffabbd10000 65536 C:\Windows\System32\TOKENBINDING.dll 10.0.14393.1593 (rs1_release.170731-1934) Microsoft Corporation Token Binding Protocol 131795770645377971 0x7ffabca50000 819200 C:\Windows\System32\Windows.Security.Authentication.Web.Core.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Token Broker WinRT API 131795770645377971 0x7ffabcb20000 266240 C:\Windows\System32\CEMAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation CEMAPI 131795770645377971 0x7ffabcb70000 262144 C:\Windows\System32\cdprt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft (R) CDP Client WinRT API 131795770645377971 0x7ffabcd80000 360448 c:\windows\system32\cdpusersvc.dll 10.0.14393.479 (rs1_release.161110-2025) Microsoft Corporation Microsoft (R) CDP User Components 131795770645377971 0x7ffabd630000 200704 C:\Windows\System32\MCCSEngineShared.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Utilies shared among OneSync engines 131795770645377971 0x7ffabdde0000 462848 c:\windows\system32\SYNCUTIL.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Sync utilities for mail, contacts, calendar 131795770645377971 0x7ffabe850000 155648 C:\Windows\System32\IDStore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Identity Store 131795770645377971 0x7ffabed20000 389120 c:\windows\system32\aphostservice.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Accounts Host Service 131795770645377971 0x7ffabfbe0000 1011712 C:\Windows\System32\Windows.Security.Authentication.OnlineId.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation Windows Runtime OnlineId Authentication DLL 131795770645377971 0x7ffac05f0000 94208 C:\Windows\System32\wwapi.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation WWAN API 131795770645377971 0x7ffac0910000 724992 C:\Windows\System32\Windows.Networking.Connectivity.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Networking Connectivity Runtime DLL 131795770645377971 0x7ffac09d0000 884736 C:\Windows\System32\wpnapps.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Приложения для push-уведомлений Windows 131795770645377971 0x7ffac0bf0000 3559424 C:\Windows\System32\ActXPrxy.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation ActiveX Interface Marshaling Library 131795770645377971 0x7ffac20d0000 110592 C:\Windows\System32\RMCLIENT.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Resource Manager Client 131795770645377971 0x7ffac23c0000 331776 C:\Windows\System32\OneCoreCommonProxyStub.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation OneCore Common Proxy Stub 131795770645377971 0x7ffac2590000 659456 C:\Windows\System32\FlightSettings.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Параметры цикла тестирования 131795770645377971 0x7ffac2750000 106496 C:\Windows\System32\bcd.dll 10.0.14393.1794 (rs1_release.171008-1615) Microsoft Corporation BCD DLL 131795770645377971 0x7ffac2b30000 286720 C:\Windows\System32\usermgrproxy.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation UserMgrProxy 131795770645377971 0x7ffac2cb0000 778240 c:\windows\system32\winsqlite3.dll 3.12.2 SQLite Development Team SQLite is a software library that implements a self-contained, serverless, zero-configuration, transactional SQL database engine. 131795770645377971 0x7ffac2d80000 5140480 c:\windows\system32\cdp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API клиента Microsoft (R) CDP 131795770645377971 0x7ffac3cb0000 2772992 C:\Windows\System32\iertutil.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служебная программа времени выполнения для Internet Explorer 131795770645377971 0x7ffac4000000 274432 C:\Windows\SYSTEM32\policymanager.dll 10.0.14393.2035 (rs1_release_inmarket.180110-1910) Microsoft Corporation Policy Manager DLL 131795770645377971 0x7ffac4100000 151552 c:\windows\system32\NetworkHelper.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Network utilities for mail, contacts, calendar 131795770645377971 0x7ffac4450000 86016 C:\Windows\SYSTEM32\usermgrcli.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation UserMgr API DLL 131795770645377971 0x7ffac60e0000 221184 C:\Windows\System32\XmlLite.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft XmlLite Library 131795770645377971 0x7ffac66a0000 86016 C:\Windows\SYSTEM32\ondemandconnroutehelper.dll 10.0.14393.351 (rs1_release_inmarket.161014-1755) Microsoft Corporation On Demand Connctiond Route Helper 131795770645377971 0x7ffac69c0000 839680 c:\windows\system32\WINHTTP.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Службы HTTP Windows 131795770645377971 0x7ffac79c0000 57344 C:\Windows\System32\npmproxy.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Network List Manager Proxy 131795770645377971 0x7ffac7aa0000 401408 C:\Windows\SYSTEM32\wlanapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows WLAN AutoConfig Client Side API DLL 131795770645377971 0x7ffac83d0000 106496 C:\Windows\SYSTEM32\dhcpcsvc.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служба DHCP-клиента 131795770645377971 0x7ffac83f0000 90112 C:\Windows\SYSTEM32\dhcpcsvc6.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиент DHCPv6 131795770645377971 0x7ffac8540000 286720 C:\Windows\System32\vaultcli.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиентская библиотека хранилища учетных данных 131795770645377971 0x7ffac92e0000 1269760 C:\Windows\SYSTEM32\wintypes.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL основных типов Windows 131795770645377971 0x7ffac97b0000 81920 c:\windows\system32\InprocLogger.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation In-proc Private Event Trace Logger 131795770645377971 0x7ffaca1d0000 69632 C:\Windows\System32\UserDataTypeHelperUtil.dll 10.0.14393.2189 (rs1_release.180329-1711) Microsoft Corporation Type Utilities for data access 131795770645377971 0x7ffaca270000 65536 C:\Windows\System32\UserDataLanguageUtil.dll 10.0.14393.2189 (rs1_release.180329-1711) Microsoft Corporation Language-related helper functions for user data 131795770645377971 0x7ffaca4e0000 77824 C:\Windows\SYSTEM32\wtsapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Remote Desktop Session Host Server SDK APIs 131795770645377971 0x7ffaca520000 90112 C:\Windows\System32\APHostClient.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Accounts Host Service RPC Client 131795770645377971 0x7ffaca610000 143360 C:\Windows\System32\SAMLIB.dll 10.0.14393.82 (rs1_release.160805-1735) Microsoft Corporation SAM Library DLL 131795770645377971 0x7ffacabf0000 45056 c:\windows\system32\MCCSPal.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Platform abstraction layer dll for MCCS 131795770645377971 0x7ffacac20000 86016 c:\windows\system32\UserDataPlatformHelperUtil.dll 10.0.14393.2189 (rs1_release.180329-1711) Microsoft Corporation Platform Utilities for data access 131795770645377971 0x7ffacb140000 593920 c:\windows\system32\msvcp110_win.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Microsoft® STL110 C++ Runtime Library 131795770645377971 0x7ffacb1e0000 1163264 C:\Windows\System32\twinapi.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation twinapi.appcore 131795770645377971 0x7ffacb300000 364544 c:\windows\system32\VEEventDispatcher.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Visual Element Event dispatcher 131795770645377971 0x7ffacb420000 204800 C:\Windows\SYSTEM32\ntmarta.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик Windows NT MARTA 131795770645377971 0x7ffacb920000 81920 C:\Windows\SYSTEM32\WLDP.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Политика блокировки Windows 131795770645377971 0x7ffacbbf0000 40960 C:\Windows\System32\DPAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Data Protection API 131795770645377971 0x7ffacbd30000 229376 c:\windows\system32\IPHLPAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API вспомогательного приложения IP 131795770645377971 0x7ffacbe40000 126976 C:\Windows\System32\USERENV.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Userenv 131795770645377971 0x7ffacbf30000 49152 C:\Windows\system32\NtlmShared.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation NTLM Shared Functionality 131795770645377971 0x7ffacbf40000 421888 C:\Windows\system32\msv1_0.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Authentication Package v1.0 131795770645377971 0x7ffacc010000 86016 C:\Windows\system32\cryptdll.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Cryptography Manager 131795770645377971 0x7ffacc150000 94208 C:\Windows\SYSTEM32\cryptsp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Cryptographic Service Provider API 131795770645377971 0x7ffacc170000 45056 c:\windows\system32\CRYPTBASE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base cryptographic API DLL 131795770645377971 0x7ffacc1f0000 241664 c:\windows\system32\NTASN1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft ASN.1 API 131795770645377971 0x7ffacc230000 155648 c:\windows\system32\ncrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Маршрутизатор Windows NCrypt 131795770645377971 0x7ffacc350000 180224 c:\windows\system32\SspiCli.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Security Support Provider Interface 131795770645377971 0x7ffacc620000 176128 c:\windows\system32\bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795770645377971 0x7ffacc6e0000 61440 C:\Windows\System32\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795770645377971 0x7ffacc6f0000 311296 C:\Windows\System32\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795770645377971 0x7ffacc740000 81920 C:\Windows\System32\profapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Profile Basic API 131795770645377971 0x7ffacc760000 65536 C:\Windows\System32\MSASN1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ASN.1 Runtime APIs 131795770645377971 0x7ffacc8f0000 1003520 C:\Windows\System32\ucrtbase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645377971 0x7ffacc9f0000 434176 C:\Windows\System32\bcryptPrimitives.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Cryptographic Primitives Library 131795770645377971 0x7ffacca60000 122880 C:\Windows\System32\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795770645377971 0x7ffacca80000 348160 C:\Windows\System32\WINTRUST.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation Microsoft Trust Verification APIs 131795770645377971 0x7ffaccae0000 692224 C:\Windows\System32\shcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795770645377971 0x7ffaccb90000 7180288 C:\Windows\System32\windows.storage.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API хранения Microsoft WinRT 131795770645377971 0x7ffacd270000 2215936 C:\Windows\System32\KERNELBASE.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645377971 0x7ffacd490000 1871872 C:\Windows\System32\CRYPT32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API32 криптографии 131795770645377971 0x7ffacd710000 638976 C:\Windows\System32\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645377971 0x7ffacd7b0000 270336 C:\Windows\System32\cfgmgr32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Configuration Manager DLL 131795770645377971 0x7ffaced20000 782336 C:\Windows\System32\OLEAUT32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795770645377971 0x7ffacee50000 1183744 C:\Windows\System32\RPCRT4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795770645377971 0x7ffacef80000 32768 C:\Windows\System32\NSI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation NSI User-mode interface DLL 131795770645377971 0x7ffacef90000 647168 C:\Windows\System32\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795770645377971 0x7ffacf030000 651264 C:\Windows\System32\clbcatq.dll 2001.12.10941.16384 (rs1_release.160715-1616) Microsoft Corporation COM+ Configuration Catalog 131795770645377971 0x7ffacf0d0000 704512 C:\Windows\System32\KERNEL32.DLL 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645377971 0x7ffacf770000 212992 C:\Windows\System32\GDI32.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation GDI Client DLL 131795770645377971 0x7ffacf820000 434176 C:\Windows\System32\WS2_32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation 32-разрядная библиотека Windows Socket 2.0 131795770645377971 0x7ffacf890000 188416 C:\Windows\System32\IMM32.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Multi-User Windows IMM32 API Client DLL 131795770645377971 0x7ffacf8c0000 1462272 C:\Windows\System32\user32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795770645377971 0x7ffacfb30000 2916352 C:\Windows\System32\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795770645377971 0x7ffacfe20000 663552 C:\Windows\System32\advapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795770645377971 0x7ffad01b0000 335872 C:\Windows\System32\shlwapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека небольших программ оболочки 131795770645377971 0x7ffad0210000 364544 C:\Windows\System32\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795770645377971 0x7ffad0270000 1908736 C:\Windows\SYSTEM32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 37 528 348 24 00000000:0031f1da 131765777565618284 0 0 1 Обязательная метка\Средний обязательный уровень WIN-0UOTFKKVN1S\User taskhostw.exe C:\Windows\system32\taskhostw.exe taskhostw.exe {222A245B-E637-4AE9-A93F-A59CA119A75E} Microsoft Corporation 10.0.14393.0 (rs1_release.160715-1616) Хост-процесс для задач Windows 131795770645378085 0x7ff794e10000 102400 C:\Windows\system32\taskhostw.exe 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Хост-процесс для задач Windows 131795770645378085 0x7ffab4af0000 606208 C:\Windows\system32\AUDIOSES.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Сеанс обработки звука 131795770645378085 0x7ffabaab0000 94208 C:\Windows\SYSTEM32\profext.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation profext 131795770645378085 0x7ffabb3c0000 450560 C:\Windows\system32\TextInputFramework.dll 10.0.14393.2189 (rs1_release.180329-1711) Microsoft Corporation "TextInputFramework.DYNLINK" 131795770645378085 0x7ffabb440000 282624 C:\Windows\system32\MTFServer.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation "MTFServer.DYNLINK" 131795770645378085 0x7ffabb510000 2854912 C:\Windows\system32\InputService.dll 10.0.14393.2189 (rs1_release.180329-1711) Microsoft Corporation Microsoft Text InputService Dll 131795770645378085 0x7ffabb8c0000 131072 C:\Windows\system32\InputLocaleManager.dll 10.0.14393.576 (rs1_release_inmarket.161208-2252) Microsoft Corporation "InputLocaleManager.DYNLINK" 131795770645378085 0x7ffabb8f0000 98304 C:\Windows\system32\EditBufferTestHook.dll 10.0.14393.576 (rs1_release_inmarket.161208-2252) Microsoft Corporation "EditBufferTestHook.DYNLINK" 131795770645378085 0x7ffabb9f0000 483328 C:\Windows\system32\MSUTB.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека (DLL) сервера MSUTB 131795770645378085 0x7ffabba70000 53248 C:\Windows\system32\MsCtfMonitor.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation MsCtfMonitor DLL 131795770645378085 0x7ffabbc20000 106496 C:\Windows\System32\PlaySndSrv.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служба PlaySound 131795770645378085 0x7ffabf5d0000 2924544 C:\Windows\system32\wininet.dll 11.00.14393.447 (rs1_release_inmarket.161102-0100) Microsoft Corporation Расширения Интернета для Win32 131795770645378085 0x7ffac37d0000 258048 C:\Windows\system32\wdmaud.drv 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Системный звуковой драйвер Winmm 131795770645378085 0x7ffac3840000 3088384 C:\Windows\system32\ESENT.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширяемая подсистема хранения данных ESE для Microsoft(R) Windows(R) 131795770645378085 0x7ffac3cb0000 2772992 C:\Windows\system32\iertutil.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служебная программа времени выполнения для Internet Explorer 131795770645378085 0x7ffac4000000 274432 C:\Windows\SYSTEM32\policymanager.dll 10.0.14393.2035 (rs1_release_inmarket.180110-1910) Microsoft Corporation Policy Manager DLL 131795770645378085 0x7ffac4140000 114688 C:\Windows\system32\MSACM32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Фильтр диспетчера аудиосжатия Microsoft 131795770645378085 0x7ffac7d10000 32768 C:\Windows\system32\KBDUS.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation United States Keyboard Layout 131795770645378085 0x7ffac8f90000 45056 C:\Windows\system32\AVRT.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Среда выполнения мультимедиа в реальном времени 131795770645378085 0x7ffac92e0000 1269760 C:\Windows\SYSTEM32\wintypes.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL основных типов Windows 131795770645378085 0x7ffac9480000 462848 C:\Windows\System32\MMDevAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation MMDevice API 131795770645378085 0x7ffac9500000 2682880 C:\Windows\system32\CoreUIComponents.dll 131795770645378085 0x7ffac97d0000 40960 C:\Windows\system32\midimap.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft MIDI Mapper 131795770645378085 0x7ffaca180000 53248 C:\Windows\system32\msacm32.drv 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Программа переназначения звуковых устройств 131795770645378085 0x7ffaca340000 1593344 C:\Windows\System32\PROPSYS.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Система страниц свойств (Майкрософт) 131795770645378085 0x7ffaca550000 36864 C:\Windows\system32\ksuser.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User CSA Library 131795770645378085 0x7ffaca5e0000 155648 C:\Windows\system32\dwmapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Интерфейс API диспетчера окон рабочего стола (Майкрософт) 131795770645378085 0x7ffaca640000 770048 C:\Windows\system32\CoreMessaging.dll 10.0.14393.0 Microsoft Corporation Microsoft CoreMessaging Dll 131795770645378085 0x7ffacab10000 61440 C:\Windows\System32\WordBreakers.dll 10.0.14393.2189 (rs1_release.180329-1711) Microsoft Corporation "WordBreakers.DYNLINK" 131795770645378085 0x7ffacab40000 176128 C:\Windows\System32\WINMMBASE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base Multimedia Extension API DLL 131795770645378085 0x7ffacaba0000 143360 C:\Windows\System32\WINMM.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation MCI API DLL 131795770645378085 0x7ffacaf00000 610304 C:\Windows\system32\uxtheme.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека тем UxTheme (Microsoft) 131795770645378085 0x7ffacb140000 593920 C:\Windows\system32\msvcp110_win.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Microsoft® STL110 C++ Runtime Library 131795770645378085 0x7ffacb3f0000 163840 C:\Windows\System32\DEVOBJ.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Device Information Set DLL 131795770645378085 0x7ffacb420000 204800 C:\Windows\SYSTEM32\ntmarta.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик Windows NT MARTA 131795770645378085 0x7ffacbe40000 126976 C:\Windows\SYSTEM32\userenv.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Userenv 131795770645378085 0x7ffacc170000 45056 C:\Windows\system32\CRYPTBASE.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base cryptographic API DLL 131795770645378085 0x7ffacc5c0000 352256 C:\Windows\system32\WINSTA.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Winstation Library 131795770645378085 0x7ffacc6e0000 61440 C:\Windows\System32\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795770645378085 0x7ffacc6f0000 311296 C:\Windows\System32\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795770645378085 0x7ffacc740000 81920 C:\Windows\System32\profapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Profile Basic API 131795770645378085 0x7ffacc8f0000 1003520 C:\Windows\System32\ucrtbase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645378085 0x7ffacc9f0000 434176 C:\Windows\System32\bcryptPrimitives.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Cryptographic Primitives Library 131795770645378085 0x7ffacca60000 122880 C:\Windows\System32\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795770645378085 0x7ffaccae0000 692224 C:\Windows\System32\shcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795770645378085 0x7ffaccb90000 7180288 C:\Windows\System32\windows.storage.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API хранения Microsoft WinRT 131795770645378085 0x7ffacd270000 2215936 C:\Windows\System32\KERNELBASE.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645378085 0x7ffacd710000 638976 C:\Windows\System32\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645378085 0x7ffacd7b0000 270336 C:\Windows\System32\cfgmgr32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Configuration Manager DLL 131795770645378085 0x7ffaced20000 782336 C:\Windows\System32\OLEAUT32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795770645378085 0x7ffacee50000 1183744 C:\Windows\System32\RPCRT4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795770645378085 0x7ffacef90000 647168 C:\Windows\System32\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795770645378085 0x7ffacf030000 651264 C:\Windows\System32\clbcatq.dll 2001.12.10941.16384 (rs1_release.160715-1616) Microsoft Corporation COM+ Configuration Catalog 131795770645378085 0x7ffacf0d0000 704512 C:\Windows\System32\KERNEL32.DLL 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645378085 0x7ffacf1e0000 1417216 C:\Windows\System32\MSCTF.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Серверная библиотека MSCTF 131795770645378085 0x7ffacf770000 212992 C:\Windows\System32\GDI32.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation GDI Client DLL 131795770645378085 0x7ffacf890000 188416 C:\Windows\System32\imm32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Multi-User Windows IMM32 API Client DLL 131795770645378085 0x7ffacf8c0000 1462272 C:\Windows\System32\USER32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795770645378085 0x7ffacfb30000 2916352 C:\Windows\System32\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795770645378085 0x7ffacfe20000 663552 C:\Windows\System32\advapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795770645378085 0x7ffad0070000 1277952 C:\Windows\System32\ole32.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft OLE для Windows 131795770645378085 0x7ffad01b0000 335872 C:\Windows\System32\shlwapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека небольших программ оболочки 131795770645378085 0x7ffad0210000 364544 C:\Windows\System32\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795770645378085 0x7ffad0270000 1908736 C:\Windows\SYSTEM32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 38 3632 664 6 00000000:0031f1da 131765777941176116 0 0 1 Обязательная метка\Средний обязательный уровень WIN-0UOTFKKVN1S\User RuntimeBroker.exe C:\Windows\System32\RuntimeBroker.exe C:\Windows\System32\RuntimeBroker.exe -Embedding Microsoft Corporation 10.0.14393.0 (rs1_release.160715-1616) Runtime Broker 131795770645378207 0x7ff7808b0000 8527872 C:\Windows\system32\ntoskrnl.exe 10.0.14393.2189 (rs1_release.180329-1711) Microsoft Corporation NT Kernel & System 131795770645378207 0x7ff7a45f0000 49152 C:\Windows\System32\RuntimeBroker.exe 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Runtime Broker 131795770645378207 0x7ffaab750000 876544 C:\Windows\System32\Windows.Media.Import.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation Windows Photo Import API (WinRT/COM) 131795770645378207 0x7ffaac6e0000 13156352 C:\Windows\System32\ieframe.dll 11.00.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Браузер 131795770645378207 0x7ffab33d0000 258048 C:\Windows\System32\MLANG.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL многоязыковой поддержки 131795770645378207 0x7ffab4b90000 655360 C:\Windows\System32\StructuredQuery.dll 7.0.14393.2068 (rs1_release.180209-1727) Microsoft Corporation Structured Query 131795770645378207 0x7ffab7780000 2576384 C:\Windows\system32\mssrch.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Встроенный поиск (Майкрософт) 131795770645378207 0x7ffab7a00000 3424256 C:\Windows\system32\TQUERY.DLL 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Запросы Microsoft Tripoli 131795770645378207 0x7ffab7d80000 753664 C:\Windows\System32\RASAPI32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API удаленного доступа 131795770645378207 0x7ffab8190000 9191424 C:\Windows\system32\twinui.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation TWINUI 131795770645378207 0x7ffab92e0000 827392 C:\Windows\system32\Windows.Storage.Search.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows.Storage.Search 131795770645378207 0x7ffab9490000 860160 C:\Windows\System32\ntshrui.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширения оболочки, обеспечивающие общий доступ 131795770645378207 0x7ffab9a40000 299008 C:\Windows\System32\RasMediaManager.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Ras Media Manager DLL 131795770645378207 0x7ffaba950000 188416 C:\Windows\System32\EthernetMediaManager.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Ethernet Media Manager DLL 131795770645378207 0x7ffabaa50000 339968 C:\Windows\System32\NetworkUXBroker.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation NetworkUXBroker DLL 131795770645378207 0x7ffabaab0000 94208 C:\Windows\SYSTEM32\profext.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation profext 131795770645378207 0x7ffabae40000 110592 C:\Windows\SYSTEM32\capauthz.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API авторизации возможностей 131795770645378207 0x7ffabaf70000 270336 C:\Windows\System32\edputil.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служебная программа EDP 131795770645378207 0x7ffabb2b0000 1089536 C:\Windows\system32\SettingSyncCore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Setting Synchronization Core 131795770645378207 0x7ffabba80000 995328 C:\Windows\System32\twinui.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation TWINUI.APPCORE 131795770645378207 0x7ffabc0b0000 65536 C:\Windows\System32\LINKINFO.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Volume Tracking 131795770645378207 0x7ffabc510000 90112 C:\Windows\system32\execmodelproxy.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ExecModelProxy 131795770645378207 0x7ffabc530000 241664 C:\Windows\System32\Windows.Networking.HostName.dll 10.0.14393.953 (rs1_release_inmarket.170303-1614) Microsoft Corporation Windows.Networking.HostName DLL 131795770645378207 0x7ffabc880000 73728 C:\Windows\System32\cscapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Offline Files Win32 API 131795770645378207 0x7ffabcf30000 110592 C:\Windows\System32\MPR.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека маршрутизации для нескольких служб доступа 131795770645378207 0x7ffabdd60000 425984 C:\Windows\System32\AppXDeploymentClient.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL-библиотека клиента развертывания AppX 131795770645378207 0x7ffabe070000 610304 C:\Windows\System32\efswrt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Storage Protection Windows Runtime DLL 131795770645378207 0x7ffabe4d0000 286720 C:\Windows\System32\MSWB7.dll 10.0.14393.1737 (rs1_release_inmarket.170914-1249) Microsoft Corporation MSWB7 DLL 131795770645378207 0x7ffabe880000 94208 C:\Windows\System32\FeClient.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT File Encryption Client Interfaces 131795770645378207 0x7ffabe8c0000 454656 C:\Windows\system32\windows.cortana.Desktop.dll 10.0.14393.953 (rs1_release_inmarket.170303-1614) Microsoft Corporation Windows.Cortana.Desktop 131795770645378207 0x7ffabf330000 2457600 C:\Windows\System32\msxml6.dll 6.30.14393.2156 Microsoft Corporation MSXML 6.0 131795770645378207 0x7ffabf5d0000 2924544 C:\Windows\System32\WININET.dll 11.00.14393.447 (rs1_release_inmarket.161102-0100) Microsoft Corporation Расширения Интернета для Win32 131795771229682115 0x7ffabf8a0000 122880 C:\Windows\System32\Windows.Cortana.ProxyStub.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows.Cortana.ProxyStub 131795770645378207 0x7ffabf8c0000 802816 C:\Windows\system32\Windows.Internal.Shell.Broker.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation Windows Shell Broker 131795770645378207 0x7ffabf9c0000 200704 C:\Windows\system32\windows.cortana.onecore.dll 10.0.14393.953 (rs1_release_inmarket.170303-1614) Microsoft Corporation Windows.Cortana.OneCore 131795770645378207 0x7ffabfb00000 626688 C:\Windows\System32\ContentDeliveryManager.Utilities.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation ContentDeliveryManager.Utilities 131795770645378207 0x7ffabff10000 155648 C:\Windows\System32\srvcli.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Server Service Client DLL 131795770645378207 0x7ffac05f0000 94208 C:\Windows\System32\wwapi.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation WWAN API 131795770645378207 0x7ffac0910000 724992 C:\Windows\System32\Windows.Networking.Connectivity.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Networking Connectivity Runtime DLL 131795770645378207 0x7ffac09d0000 884736 C:\Windows\System32\wpnapps.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Приложения для push-уведомлений Windows 131795770645378207 0x7ffac0bf0000 3559424 C:\Windows\System32\ActXPrxy.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation ActiveX Interface Marshaling Library 131795770645378207 0x7ffac1470000 704512 C:\Windows\System32\ieproxy.dll 11.00.14393.2007 (rs1_release.171231-1800) Microsoft Corporation IE ActiveX Interface Marshaling Library 131795770645378207 0x7ffac1c40000 94208 C:\Windows\System32\SystemSettings.DataModel.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SystemSettings.Datamodel private API 131795770645378207 0x7ffac20d0000 110592 C:\Windows\System32\RMCLIENT.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Resource Manager Client 131795770645378207 0x7ffac23c0000 331776 C:\Windows\System32\OneCoreCommonProxyStub.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation OneCore Common Proxy Stub 131795770645378207 0x7ffac2700000 98304 C:\Windows\System32\NETAPI32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API DLL 131795770645378207 0x7ffac2960000 143360 C:\Windows\system32\mssprxy.dll 7.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation Microsoft Search Proxy 131795770645378207 0x7ffac2a20000 81920 C:\Windows\System32\rtutils.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Routing Utilities 131795770645378207 0x7ffac2b80000 40960 C:\Windows\System32\VERSION.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Version Checking and File Installation Libraries 131795770645378207 0x7ffac34e0000 1843200 C:\Windows\System32\urlmon.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширения OLE32 для Win32 131795770645378207 0x7ffac3840000 3088384 C:\Windows\system32\ESENT.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширяемая подсистема хранения данных ESE для Microsoft(R) Windows(R) 131795770645378207 0x7ffac3cb0000 2772992 C:\Windows\System32\iertutil.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служебная программа времени выполнения для Internet Explorer 131795770645378207 0x7ffac4000000 274432 C:\Windows\system32\policymanager.dll 10.0.14393.2035 (rs1_release_inmarket.180110-1910) Microsoft Corporation Policy Manager DLL 131795770645378207 0x7ffac42a0000 659456 C:\Windows\System32\StateRepository.Core.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation StateRepository Core 131795770645378207 0x7ffac4450000 86016 C:\Windows\SYSTEM32\usermgrcli.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation UserMgr API DLL 131795770645378207 0x7ffac46d0000 4161536 C:\Windows\System32\Windows.StateRepository.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Сервер Windows StateRepository API Server 131795771234179313 0x7ffac4b70000 106496 C:\Windows\System32\ShellCommonCommonProxyStub.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ShellCommon Common Proxy Stub 131795770645378207 0x7ffac4b90000 774144 C:\Windows\System32\StoreAgent.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation StoreAgent 131795770645378207 0x7ffac4f60000 143360 C:\Windows\System32\wcmapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Connection Manager Client API 131795770645378207 0x7ffac5630000 339968 C:\Windows\System32\thumbcache.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Кэш эскизов Майкрософт 131795770645378207 0x7ffac5c50000 131072 C:\Windows\System32\rasman.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Remote Access Connection Manager 131795770645378207 0x7ffac5ca0000 200704 C:\Windows\System32\AppExtension.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API AppExtension 131795770645378207 0x7ffac60e0000 221184 C:\Windows\System32\XmlLite.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft XmlLite Library 131795770645378207 0x7ffac69c0000 839680 C:\Windows\System32\WINHTTP.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Службы HTTP Windows 131795770645378207 0x7ffac6a90000 49152 C:\Windows\System32\LocationFrameworkPS.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Geolocation Framework PS 131795771242759756 0x7ffac6ac0000 835584 C:\Windows\System32\Windows.UI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Runtime UI Foundation DLL 131795770645378207 0x7ffac6ba0000 49152 C:\Windows\System32\Secur32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Security Support Provider Interface 131795770645378207 0x7ffac6c40000 2596864 C:\Windows\WinSxS\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.14393.953_none_42151e83c686086b\comctl32.dll 6.10 (rs1_release_inmarket.170303-1614) Microsoft Corporation Библиотека элементов управления взаимодействия с пользователем 131795770645378207 0x7ffac6ec0000 36864 C:\Windows\system32\IconCodecService.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Converts a PNG part of the icon to a legacy bmp icon 131795770645378207 0x7ffac7580000 1077248 C:\Windows\SYSTEM32\mrmcorer.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Windows MRM 131795770645378207 0x7ffac76a0000 159744 C:\Windows\System32\sppc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Software Licensing Client DLL 131795770645378207 0x7ffac7720000 1601536 C:\Windows\System32\OneCoreUAPCommonProxyStub.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation OneCoreUAP Common Proxy Stub 131795770645378207 0x7ffac7aa0000 401408 C:\Windows\SYSTEM32\wlanapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows WLAN AutoConfig Client Side API DLL 131795770645378207 0x7ffac7d00000 32768 C:\Windows\SYSTEM32\familysafetyext.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation FamilySafety ChildAccount Extensions 131795770645378207 0x7ffac90b0000 90112 C:\Windows\System32\wkscli.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Workstation Service Client DLL 131795770645378207 0x7ffac9290000 40960 C:\Windows\System32\DSROLE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DS Setup Client DLL 131795770645378207 0x7ffac92e0000 1269760 C:\Windows\System32\WinTypes.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL основных типов Windows 131795770645378207 0x7ffac9f50000 1736704 C:\Windows\system32\windowscodecs.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Microsoft Windows Codecs Library 131795770645378207 0x7ffaca340000 1593344 C:\Windows\system32\PROPSYS.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Система страниц свойств (Майкрософт) 131795770645378207 0x7ffaca4e0000 77824 C:\Windows\SYSTEM32\wtsapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Remote Desktop Session Host Server SDK APIs 131795770645378207 0x7ffaca570000 421888 C:\Windows\System32\Bcp47Langs.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation BCP47 Language Classes 131795770645378207 0x7ffaca5e0000 155648 C:\Windows\system32\dwmapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Интерфейс API диспетчера окон рабочего стола (Майкрософт) 131795770645378207 0x7ffacadf0000 499712 C:\Windows\System32\apphelp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиентская библиотека совместимости приложений 131795770645378207 0x7ffacaf00000 610304 C:\Windows\system32\uxtheme.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека тем UxTheme (Microsoft) 131795770645378207 0x7ffacb140000 593920 C:\Windows\system32\msvcp110_win.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Microsoft® STL110 C++ Runtime Library 131795770645378207 0x7ffacb1e0000 1163264 C:\Windows\System32\twinapi.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation twinapi.appcore 131795770645378207 0x7ffacb300000 364544 C:\Windows\system32\VEEventDispatcher.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Visual Element Event dispatcher 131795770645378207 0x7ffacb3f0000 163840 C:\Windows\System32\DEVOBJ.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Device Information Set DLL 131795770645378207 0x7ffacb420000 204800 C:\Windows\SYSTEM32\ntmarta.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик Windows NT MARTA 131795770645378207 0x7ffacbd30000 229376 C:\Windows\System32\IPHLPAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API вспомогательного приложения IP 131795770645378207 0x7ffacbe20000 53248 C:\Windows\System32\netutils.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API Helpers DLL 131795770645378207 0x7ffacbe40000 126976 C:\Windows\system32\USERENV.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Userenv 131795770645378207 0x7ffacc150000 94208 C:\Windows\System32\CRYPTSP.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Cryptographic Service Provider API 131795770645378207 0x7ffacc350000 180224 C:\Windows\System32\SspiCli.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Security Support Provider Interface 131795770645378207 0x7ffacc520000 622592 C:\Windows\SYSTEM32\sxs.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Fusion 2.5 131795770645378207 0x7ffacc5c0000 352256 C:\Windows\SYSTEM32\WINSTA.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Winstation Library 131795770645378207 0x7ffacc620000 176128 C:\Windows\System32\bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795770645378207 0x7ffacc6e0000 61440 C:\Windows\System32\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795770645378207 0x7ffacc6f0000 311296 C:\Windows\System32\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795770645378207 0x7ffacc740000 81920 C:\Windows\System32\profapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Profile Basic API 131795770645378207 0x7ffacc8f0000 1003520 C:\Windows\System32\ucrtbase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645378207 0x7ffacc9f0000 434176 C:\Windows\System32\bcryptPrimitives.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Cryptographic Primitives Library 131795770645378207 0x7ffacca60000 122880 C:\Windows\System32\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795770645378207 0x7ffaccae0000 692224 C:\Windows\System32\shcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795770645378207 0x7ffaccb90000 7180288 C:\Windows\System32\windows.storage.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API хранения Microsoft WinRT 131795770645378207 0x7ffacd270000 2215936 C:\Windows\System32\KERNELBASE.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645378207 0x7ffacd710000 638976 C:\Windows\System32\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645378207 0x7ffacd7b0000 270336 C:\Windows\System32\cfgmgr32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Configuration Manager DLL 131795770645378207 0x7ffacd810000 22056960 C:\Windows\System32\SHELL32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Общая библиотека оболочки Windows 131795770645378207 0x7ffaced20000 782336 C:\Windows\System32\OLEAUT32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795770645378207 0x7ffacede0000 450560 C:\Windows\System32\coml2.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft COM for Windows 131795770645378207 0x7ffacee50000 1183744 C:\Windows\System32\RPCRT4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795770645378207 0x7ffacef80000 32768 C:\Windows\System32\NSI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation NSI User-mode interface DLL 131795770645378207 0x7ffacef90000 647168 C:\Windows\System32\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795770645378207 0x7ffacf030000 651264 C:\Windows\System32\clbcatq.dll 2001.12.10941.16384 (rs1_release.160715-1616) Microsoft Corporation COM+ Configuration Catalog 131795770645378207 0x7ffacf0d0000 704512 C:\Windows\System32\KERNEL32.DLL 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645378207 0x7ffacf1e0000 1417216 C:\Windows\System32\MSCTF.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Серверная библиотека MSCTF 131795770645378207 0x7ffacf770000 212992 C:\Windows\System32\GDI32.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation GDI Client DLL 131795770645378207 0x7ffacf820000 434176 C:\Windows\System32\WS2_32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation 32-разрядная библиотека Windows Socket 2.0 131795770645378207 0x7ffacf890000 188416 C:\Windows\System32\IMM32.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Multi-User Windows IMM32 API Client DLL 131795770645378207 0x7ffacf8c0000 1462272 C:\Windows\System32\USER32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795770645378207 0x7ffacfb30000 2916352 C:\Windows\System32\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795770645378207 0x7ffacfe20000 663552 C:\Windows\System32\advapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795770645378207 0x7ffad0070000 1277952 C:\Windows\System32\ole32.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft OLE для Windows 131795770645378207 0x7ffad01b0000 335872 C:\Windows\System32\shlwapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека небольших программ оболочки 131795770645378207 0x7ffad0210000 364544 C:\Windows\System32\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795770645378207 0x7ffad0270000 1908736 C:\Windows\SYSTEM32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 39 3164 664 6 00000000:0031f1da 131765778119045372 0 0 1 Обязательная метка\Низкий обязательный уровень WIN-0UOTFKKVN1S\User ShellExperienceHost.exe C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\ShellExperienceHost.exe "C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\ShellExperienceHost.exe" -ServerName:App.AppXtk181tbxbce2qsex02s8tw7hfxa9xb3t.mca Microsoft Corporation 10.0.14393.2125 (rs1_release.180301-2139) Windows Shell Experience Host 131795770645379346 0x7ff697570000 1662976 C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\ShellExperienceHost.exe 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation Windows Shell Experience Host 131795770645379346 0x7ffa9f150000 6311936 C:\Windows\System32\Windows.Media.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Media Runtime DLL 131795770645379346 0x7ffa9f760000 3796992 C:\Windows\System32\MFMediaEngine.dll 10.0.14393.351 (rs1_release_inmarket.161014-1755) Microsoft Corporation Media Foundation Media Engine DLL 131795770645379346 0x7ffaabad0000 1871872 C:\Windows\System32\mfsrcsnk.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Media Foundation Source and Sink DLL 131795770645379346 0x7ffaafe70000 4239360 C:\Windows\System32\mfcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Media Foundation Core DLL 131795770645379346 0x7ffab0be0000 1421312 C:\Windows\ShellExperiences\NetworkUX.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Network Experience 131795770645379346 0x7ffab4af0000 606208 C:\Windows\SYSTEM32\AUDIOSES.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Сеанс обработки звука 131795770645379346 0x7ffab5b40000 2527232 C:\Windows\SYSTEM32\dwrite.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Службы Microsoft DirectX Typography 131795770645379346 0x7ffab6710000 17231872 C:\Windows\System32\Windows.UI.Xaml.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows.UI.Xaml dll 131795770645379346 0x7ffab9eb0000 2899968 C:\Windows\ShellExperiences\Windows.UI.ActionCenter.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation ActionCenter Experience 131795770645379346 0x7ffaba180000 7880704 C:\Windows\ShellExperiences\StartUI.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Start UI 131795770645379346 0x7ffabaa50000 339968 C:\Windows\System32\NetworkUXBroker.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation NetworkUXBroker DLL 131795770645379346 0x7ffabab30000 303104 C:\Windows\System32\NotificationObjFactory.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Notifications Object Factory 131795770645379346 0x7ffabacc0000 1380352 C:\Windows\System32\SharedStartModel.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Shared Start Model InProc Server 131795770645379346 0x7ffabaf70000 270336 C:\Windows\SYSTEM32\edputil.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служебная программа EDP 131795770645379346 0x7ffabb3c0000 450560 C:\Windows\SYSTEM32\TextInputFramework.dll 10.0.14393.2189 (rs1_release.180329-1711) Microsoft Corporation "TextInputFramework.DYNLINK" 131795770645379346 0x7ffabb490000 512000 C:\Windows\system32\twinapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation twinapi 131795770645379346 0x7ffabbb80000 61440 C:\Windows\SYSTEM32\dsclient.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Data Sharing Service Client DLL 131795770645379346 0x7ffabbb90000 581632 C:\Windows\System32\Windows.System.Launcher.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows.System.Launcher 131795770645379346 0x7ffabbd00000 36864 C:\Windows\SYSTEM32\WpPortingLibrary.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation <d> DLL 131795770645379346 0x7ffabc5c0000 319488 C:\Windows\SYSTEM32\MFSENSORGROUP.dll 10.0.14393.447 (rs1_release_inmarket.161102-0100) Microsoft Corporation Media Foundation Sensor Group DLL 131795770645379346 0x7ffabcef0000 102400 C:\Windows\System32\Windows.Shell.ServiceHostBuilder.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows.Shell.ServiceHostBuilder 131795770645379346 0x7ffabd420000 487424 C:\Windows\System32\RTMediaFrame.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Runtime MediaFrame DLL 131795770645379346 0x7ffabd4a0000 1613824 C:\Windows\System32\Windows.Globalization.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Globalization 131795770645379346 0x7ffabe410000 339968 C:\Windows\SYSTEM32\globcollationhost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation GlobCollationHost 131795770645379346 0x7ffabe6e0000 561152 C:\Windows\system32\directmanipulation.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Direct Manipulation Component 131795770645379346 0x7ffabeac0000 335872 C:\Windows\System32\Windows.Storage.ApplicationData.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Application Data API Server 131795770645379346 0x7ffabf330000 2457600 C:\Windows\System32\msxml6.dll 6.30.14393.2156 Microsoft Corporation MSXML 6.0 131795770645379346 0x7ffabfce0000 90112 C:\Windows\System32\Windows.Globalization.Fontgroups.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Fonts Mapping API 131795770645379346 0x7ffabfd00000 356352 C:\Windows\System32\Windows.Graphics.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation WinRT Windows Graphics DLL 131795770645379346 0x7ffabfd80000 86016 C:\Windows\System32\threadpoolwinrt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows WinRT Threadpool 131795770645379346 0x7ffac0080000 249856 C:\Windows\System32\resampledmo.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Media Resampler 131795770645379346 0x7ffac00c0000 282624 C:\Windows\SYSTEM32\windows.ui.core.textinput.dll 10.0.14393.2189 (rs1_release.180329-1711) Microsoft Corporation Windows.UI.Core.TextInput dll 131795770645379346 0x7ffac0110000 290816 C:\Windows\SYSTEM32\QuickActionsDataModel.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation QuickActionsDataModel 131795770645379346 0x7ffac0160000 491520 C:\Windows\ShellExperiences\QuickActions.dll 131795770645379346 0x7ffac01e0000 397312 C:\Windows\SYSTEM32\wincorlib.DLL 10.0.14393.576 (rs1_release_inmarket.161208-2252) Microsoft Corporation Microsoft Windows ® WinRT core library 131795770645379346 0x7ffac0470000 1478656 C:\Windows\SYSTEM32\MFPlat.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Media Foundation Platform DLL 131795770645379346 0x7ffac0bf0000 3559424 C:\Windows\System32\ActXPrxy.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation ActiveX Interface Marshaling Library 131795770645379346 0x7ffac1c40000 94208 C:\Windows\System32\SystemSettings.DataModel.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SystemSettings.Datamodel private API 131795770645379346 0x7ffac1e50000 188416 C:\Windows\SYSTEM32\RTWorkQ.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL для WorkQueue реального времени 131795770645379346 0x7ffac20d0000 110592 C:\Windows\System32\rmclient.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Resource Manager Client 131795770645379346 0x7ffac23c0000 331776 C:\Windows\System32\OneCoreCommonProxyStub.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation OneCore Common Proxy Stub 131795770645379346 0x7ffac2990000 385024 C:\Windows\SYSTEM32\NInput.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Pen and Touch Input Component 131795770645379346 0x7ffac34e0000 1843200 C:\Windows\SYSTEM32\urlmon.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширения OLE32 для Win32 131795770645379346 0x7ffac3cb0000 2772992 C:\Windows\SYSTEM32\iertutil.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служебная программа времени выполнения для Internet Explorer 131795770645379346 0x7ffac4000000 274432 C:\Windows\SYSTEM32\policymanager.dll 10.0.14393.2035 (rs1_release_inmarket.180110-1910) Microsoft Corporation Policy Manager DLL 131795770645379346 0x7ffac40f0000 40960 C:\Windows\SYSTEM32\msdmo.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DMO Runtime 131795770645379346 0x7ffac42a0000 659456 C:\Windows\SYSTEM32\StateRepository.Core.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation StateRepository Core 131795770645379346 0x7ffac46d0000 4161536 C:\Windows\System32\Windows.StateRepository.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Сервер Windows StateRepository API Server 131795770645379346 0x7ffac4eb0000 147456 C:\Windows\ShellExperiences\Windows.UI.Shell.SharedUtilities.dll 131795770645379346 0x7ffac5350000 1765376 C:\Windows\System32\Windows.UI.Immersive.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation WINDOWS.UI.IMMERSIVE 131795770645379346 0x7ffac5500000 438272 C:\Windows\SYSTEM32\PhotoMetadataHandler.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Photo Metadata Handler 131795770645379346 0x7ffac5b20000 49152 C:\Windows\SYSTEM32\CompPkgSup.DLL 10.0.14393.969 (rs1_release_inmarket.170315-1735) Microsoft Corporation Component Package Support DLL 131795770645379346 0x7ffac5ce0000 1744896 C:\Windows\SYSTEM32\uiautomationcore.dll 7.2.14393.0 (rs1_release.160715-1616) Microsoft Corporation Основные автоматические компоненты Microsoft UI 131795770645379346 0x7ffac5e90000 380928 C:\Windows\System32\Windows.Media.MediaControl.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL сервера MediaControl среды выполнения Windows 131795770645379346 0x7ffac60e0000 221184 C:\Windows\SYSTEM32\XmlLite.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft XmlLite Library 131795770645379346 0x7ffac6ac0000 835584 C:\Windows\System32\Windows.UI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Runtime UI Foundation DLL 131795770645379346 0x7ffac6bd0000 413696 C:\Windows\SYSTEM32\OLEACC.dll 7.2.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Active Accessibility Core Component 131795770645379346 0x7ffac6f50000 5632000 C:\Windows\SYSTEM32\d2d1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека Microsoft D2D 131795770645379346 0x7ffac7580000 1077248 C:\Windows\SYSTEM32\MrmCoreR.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Windows MRM 131795770645379346 0x7ffac76a0000 159744 C:\Windows\SYSTEM32\sppc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Software Licensing Client DLL 131795770645379346 0x7ffac7720000 1601536 C:\Windows\System32\OneCoreUAPCommonProxyStub.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation OneCoreUAP Common Proxy Stub 131795770645379346 0x7ffac7990000 155648 C:\Windows\SYSTEM32\SLC.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Software Licensing Client DLL 131795770645379346 0x7ffac7e30000 40960 C:\Windows\SYSTEM32\fontgroupsoverride.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation fontgroupsoverride.dll 131795770645379346 0x7ffac7fc0000 2674688 C:\Windows\SYSTEM32\d3d10warp.dll 10.0.14393.576 (rs1_release_inmarket.161208-2252) Microsoft Corporation Direct3D 10 Rasterizer 131795770645379346 0x7ffac84e0000 53248 C:\Windows\System32\NotificationControllerPS.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation NotificationController Proxy Stub 131795770645379346 0x7ffac84f0000 299008 C:\Windows\system32\DataExchange.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation Data exchange 131795770645379346 0x7ffac88a0000 2842624 C:\Windows\SYSTEM32\d3d11.dll 10.0.14393.953 (rs1_release_inmarket.170303-1614) Microsoft Corporation Direct3D 11 Runtime 131795770645379346 0x7ffac8f90000 45056 C:\Windows\SYSTEM32\AVRT.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Среда выполнения мультимедиа в реальном времени 131795770645379346 0x7ffac8fa0000 253952 C:\Windows\SYSTEM32\logoncli.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Net Logon Client DLL 131795770645379346 0x7ffac92e0000 1269760 C:\Windows\System32\WinTypes.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL основных типов Windows 131795770645379346 0x7ffac9480000 462848 C:\Windows\System32\MMDevApi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation MMDevice API 131795770645379346 0x7ffac9500000 2682880 C:\Windows\system32\CoreUIComponents.dll 131795770645379346 0x7ffac9f50000 1736704 C:\Windows\system32\windowscodecs.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Microsoft Windows Codecs Library 131795770645379346 0x7ffaca340000 1593344 C:\Windows\SYSTEM32\PROPSYS.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Система страниц свойств (Майкрософт) 131795770645379346 0x7ffaca550000 36864 C:\Windows\SYSTEM32\ksuser.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User CSA Library 131795770645379346 0x7ffaca570000 421888 C:\Windows\SYSTEM32\Bcp47Langs.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation BCP47 Language Classes 131795770645379346 0x7ffaca5e0000 155648 C:\Windows\SYSTEM32\dwmapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Интерфейс API диспетчера окон рабочего стола (Майкрософт) 131795770645379346 0x7ffaca640000 770048 C:\Windows\SYSTEM32\CoreMessaging.dll 10.0.14393.0 Microsoft Corporation Microsoft CoreMessaging Dll 131795770645379346 0x7ffaca770000 1380352 C:\Windows\SYSTEM32\dcomp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft DirectComposition Library 131795770645379346 0x7ffacab40000 176128 C:\Windows\SYSTEM32\winmmbase.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base Multimedia Extension API DLL 131795770645379346 0x7ffacaf00000 610304 C:\Windows\system32\uxtheme.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека тем UxTheme (Microsoft) 131795770645379346 0x7ffacb140000 593920 C:\Windows\SYSTEM32\msvcp110_win.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Microsoft® STL110 C++ Runtime Library 131795770645379346 0x7ffacb1e0000 1163264 C:\Windows\System32\twinapi.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation twinapi.appcore 131795770645379346 0x7ffacb300000 364544 C:\Windows\SYSTEM32\VEEventDispatcher.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Visual Element Event dispatcher 131795770645379346 0x7ffacb3f0000 163840 C:\Windows\SYSTEM32\DEVOBJ.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Device Information Set DLL 131795770645379346 0x7ffacb780000 651264 C:\Windows\SYSTEM32\dxgi.dll 10.0.14393.953 (rs1_release_inmarket.170303-1614) Microsoft Corporation DirectX Graphics Infrastructure 131795770645379346 0x7ffacbe40000 126976 C:\Windows\SYSTEM32\USERENV.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Userenv 131795770645379346 0x7ffacc170000 45056 C:\Windows\SYSTEM32\CRYPTBASE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base cryptographic API DLL 131795770645379346 0x7ffacc350000 180224 C:\Windows\SYSTEM32\SspiCli.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Security Support Provider Interface 131795770645379346 0x7ffacc5c0000 352256 C:\Windows\SYSTEM32\winsta.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Winstation Library 131795770645379346 0x7ffacc620000 176128 C:\Windows\SYSTEM32\bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795770645379346 0x7ffacc6e0000 61440 C:\Windows\System32\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795770645379346 0x7ffacc6f0000 311296 C:\Windows\System32\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795770645379346 0x7ffacc740000 81920 C:\Windows\System32\profapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Profile Basic API 131795770645379346 0x7ffacc760000 65536 C:\Windows\System32\MSASN1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ASN.1 Runtime APIs 131795770645379346 0x7ffacc8f0000 1003520 C:\Windows\System32\ucrtbase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645379346 0x7ffacc9f0000 434176 C:\Windows\System32\bcryptPrimitives.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Cryptographic Primitives Library 131795770645379346 0x7ffacca60000 122880 C:\Windows\System32\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795770645379346 0x7ffaccae0000 692224 C:\Windows\System32\shcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795770645379346 0x7ffaccb90000 7180288 C:\Windows\System32\windows.storage.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API хранения Microsoft WinRT 131795770645379346 0x7ffacd270000 2215936 C:\Windows\System32\KERNELBASE.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645379346 0x7ffacd490000 1871872 C:\Windows\System32\CRYPT32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API32 криптографии 131795770645379346 0x7ffacd710000 638976 C:\Windows\System32\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645379346 0x7ffacd7b0000 270336 C:\Windows\System32\cfgmgr32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Configuration Manager DLL 131795770645379346 0x7ffacd810000 22056960 C:\Windows\System32\SHELL32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Общая библиотека оболочки Windows 131795770645379346 0x7ffaced20000 782336 C:\Windows\System32\OLEAUT32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795770645379346 0x7ffacee50000 1183744 C:\Windows\System32\RPCRT4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795770645379346 0x7ffacef90000 647168 C:\Windows\System32\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795770645379346 0x7ffacf0d0000 704512 C:\Windows\System32\KERNEL32.DLL 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645379346 0x7ffacf1e0000 1417216 C:\Windows\System32\msctf.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Серверная библиотека MSCTF 131795770645379346 0x7ffacf770000 212992 C:\Windows\System32\GDI32.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation GDI Client DLL 131795770645379346 0x7ffacf890000 188416 C:\Windows\System32\IMM32.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Multi-User Windows IMM32 API Client DLL 131795770645379346 0x7ffacf8c0000 1462272 C:\Windows\System32\user32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795770645379346 0x7ffacfb30000 2916352 C:\Windows\System32\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795770645379346 0x7ffacfe20000 663552 C:\Windows\System32\advapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795770645379346 0x7ffad0070000 1277952 C:\Windows\System32\ole32.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft OLE для Windows 131795770645379346 0x7ffad01b0000 335872 C:\Windows\System32\SHLWAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека небольших программ оболочки 131795770645379346 0x7ffad0210000 364544 C:\Windows\System32\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795770645379346 0x7ffad0270000 1908736 C:\Windows\SYSTEM32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 40 4856 3108 11 00000000:0031f1da 131765778391112136 0 0 1 Обязательная метка\Средний обязательный уровень WIN-0UOTFKKVN1S\User MSASCuiL.exe C:\Program Files\Windows Defender\MSASCuiL.exe "C:\Program Files\Windows Defender\MSASCuiL.exe" Microsoft Corporation 4.10.14393.1198 (rs1_release_sec.170427-1353) Windows Defender notification icon 131795770645379462 0x23622c70000 733184 C:\Program Files\Windows Defender\EppManifest.dll 4.10.14393.0 (rs1_release.160715-1616) Microsoft Corporation Модуль ресурсов настройки пользовательского интерфейса 131795770645379462 0x7ff63bef0000 651264 C:\Program Files\Windows Defender\MSASCuiL.exe 4.10.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Windows Defender notification icon 131795770645379462 0x7ffab8da0000 1675264 C:\Windows\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.14393.1715_none_aec701fbddd850fa\gdiplus.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Microsoft GDI+ 131795770645379462 0x7ffabf330000 2457600 C:\Windows\System32\msxml6.dll 6.30.14393.2156 Microsoft Corporation MSXML 6.0 131795770645379462 0x7ffac4560000 950272 C:\Program Files\Windows Defender\mpclient.dll 4.10.14393.1794 (rs1_release.171008-1615) Microsoft Corporation Client Interface 131795770645379462 0x7ffac4ea0000 36864 C:\Windows\SYSTEM32\atlthunk.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation atlthunk.dll 131795770645379462 0x7ffac9f50000 1736704 C:\Windows\SYSTEM32\WindowsCodecs.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Microsoft Windows Codecs Library 131795770645379462 0x7ffaca4e0000 77824 C:\Windows\SYSTEM32\WTSAPI32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Remote Desktop Session Host Server SDK APIs 131795770645379462 0x7ffaca5e0000 155648 C:\Windows\system32\dwmapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Интерфейс API диспетчера окон рабочего стола (Майкрософт) 131795770645379462 0x7ffacaf00000 610304 C:\Windows\system32\uxtheme.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека тем UxTheme (Microsoft) 131795770645379462 0x7ffacb6f0000 143360 C:\Windows\SYSTEM32\gpapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиентские функции API групповой политики 131795770645379462 0x7ffacbbb0000 208896 C:\Windows\system32\rsaenh.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Enhanced Cryptographic Provider 131795770645379462 0x7ffacbe40000 126976 C:\Windows\SYSTEM32\USERENV.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Userenv 131795770645379462 0x7ffacc150000 94208 C:\Windows\SYSTEM32\CRYPTSP.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Cryptographic Service Provider API 131795770645379462 0x7ffacc170000 45056 C:\Windows\SYSTEM32\CRYPTBASE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base cryptographic API DLL 131795770645379462 0x7ffacc620000 176128 C:\Windows\SYSTEM32\bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795770645379462 0x7ffacc6e0000 61440 C:\Windows\System32\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795770645379462 0x7ffacc6f0000 311296 C:\Windows\System32\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795770645379462 0x7ffacc740000 81920 C:\Windows\System32\profapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Profile Basic API 131795770645379462 0x7ffacc760000 65536 C:\Windows\System32\MSASN1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ASN.1 Runtime APIs 131795770645379462 0x7ffacc8f0000 1003520 C:\Windows\System32\ucrtbase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645379462 0x7ffacc9f0000 434176 C:\Windows\System32\bcryptPrimitives.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Cryptographic Primitives Library 131795770645379462 0x7ffacca60000 122880 C:\Windows\System32\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795770645379462 0x7ffacca80000 348160 C:\Windows\System32\WINTRUST.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation Microsoft Trust Verification APIs 131795770645379462 0x7ffaccae0000 692224 C:\Windows\System32\shcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795770645379462 0x7ffaccb90000 7180288 C:\Windows\System32\windows.storage.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API хранения Microsoft WinRT 131795770645379462 0x7ffacd270000 2215936 C:\Windows\System32\KERNELBASE.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645379462 0x7ffacd490000 1871872 C:\Windows\System32\CRYPT32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API32 криптографии 131795770645379462 0x7ffacd710000 638976 C:\Windows\System32\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645379462 0x7ffacd7b0000 270336 C:\Windows\System32\cfgmgr32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Configuration Manager DLL 131795770645379462 0x7ffacd810000 22056960 C:\Windows\System32\SHELL32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Общая библиотека оболочки Windows 131795770645379462 0x7ffaced20000 782336 C:\Windows\System32\OLEAUT32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795770645379462 0x7ffacee50000 1183744 C:\Windows\System32\RPCRT4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795770645379462 0x7ffacef90000 647168 C:\Windows\System32\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795770645379462 0x7ffacf030000 651264 C:\Windows\System32\clbcatq.dll 2001.12.10941.16384 (rs1_release.160715-1616) Microsoft Corporation COM+ Configuration Catalog 131795770645379462 0x7ffacf0d0000 704512 C:\Windows\System32\KERNEL32.DLL 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645379462 0x7ffacf1e0000 1417216 C:\Windows\System32\MSCTF.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Серверная библиотека MSCTF 131795770645379462 0x7ffacf770000 212992 C:\Windows\System32\GDI32.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation GDI Client DLL 131795770645379462 0x7ffacf890000 188416 C:\Windows\System32\IMM32.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Multi-User Windows IMM32 API Client DLL 131795770645379462 0x7ffacf8c0000 1462272 C:\Windows\System32\USER32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795770645379462 0x7ffacfb30000 2916352 C:\Windows\System32\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795770645379462 0x7ffacfe00000 114688 C:\Windows\System32\imagehlp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT Image Helper 131795770645379462 0x7ffacfe20000 663552 C:\Windows\System32\ADVAPI32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795770645379462 0x7ffad0070000 1277952 C:\Windows\System32\ole32.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft OLE для Windows 131795770645379462 0x7ffad01b0000 335872 C:\Windows\System32\SHLWAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека небольших программ оболочки 131795770645379462 0x7ffad0210000 364544 C:\Windows\System32\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795770645379462 0x7ffad0270000 1908736 C:\Windows\SYSTEM32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 41 4928 3108 11 00000000:0031f1da 131765778406250112 0 0 0 Обязательная метка\Средний обязательный уровень WIN-0UOTFKKVN1S\User uTorrent.exe C:\Users\User\AppData\Roaming\uTorrent\uTorrent.exe "C:\Users\User\AppData\Roaming\uTorrent\uTorrent.exe" /MINIMIZED BitTorrent Inc. 3.5.4.44498 µTorrent 131795770645379614 0x400000 5406720 C:\Users\User\AppData\Roaming\uTorrent\uTorrent.exe 3.5.4.44498 BitTorrent Inc. µTorrent 131795770645379614 0x5c020000 335872 C:\Windows\System32\wow64.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation Win32 Emulation on NT64 131795770645379614 0x5c080000 487424 C:\Windows\System32\wow64win.dll 10.0.14393.1884 (rs1_release.171101-1233) Microsoft Corporation Wow64 Console and Win32 API Logging 131795770645379614 0x5c100000 40960 C:\Windows\System32\wow64cpu.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation AMD64 Wow64 CPU 131795770645379614 0x60750000 1556480 C:\Program Files (x86)\360\Total Security\safemon\safemon.dll 8, 4, 0, 1420 Qihu 360 Software Co., Ltd. 360 Internet Security Internet Protection 131795770645379614 0x6c5c0000 1384448 C:\Windows\SysWOW64\UIAutomationCore.DLL 7.2.14393.0 (rs1_release.160715-1616) Microsoft Corporation Основные автоматические компоненты Microsoft UI 131795770645379614 0x6cda0000 528384 C:\Windows\SysWOW64\sxs.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Fusion 2.5 131795770645379614 0x6e140000 348160 C:\Windows\SysWOW64\upnp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API контрольной точки UPnP 131795770645379614 0x6e1a0000 98304 C:\Windows\SysWOW64\ATL.DLL 3.05.2284 Microsoft Corporation ATL Module for Windows XP (Unicode) 131795770645379614 0x6e1c0000 307200 C:\Windows\SysWOW64\hnetcfg.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Диспетчер конфигурации домашней сети 131795770645379614 0x6ef20000 65536 C:\Windows\SysWOW64\SSDPAPI.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation SSDP Client API DLL 131795770645379614 0x6fc70000 385024 C:\Windows\SysWOW64\FirewallAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API брандмауэра Windows 131795770645379614 0x6fd30000 139264 C:\Windows\SysWOW64\DEVOBJ.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Device Information Set DLL 131795770645379614 0x703d0000 2056192 C:\Windows\SysWOW64\DWrite.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Службы Microsoft DirectX Typography 131795770645379614 0x705e0000 344064 C:\Windows\SysWOW64\OLEACC.dll 7.2.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Active Accessibility Core Component 131795770645379614 0x70640000 1499136 C:\Windows\SysWOW64\WindowsCodecs.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Microsoft Windows Codecs Library 131795770645379614 0x707b0000 110592 C:\Windows\SysWOW64\ncryptsslp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft SChannel Provider 131795770645379614 0x70a40000 81920 C:\Windows\SysWOW64\NLAapi.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Network Location Awareness 2 131795770645379614 0x70a60000 90112 C:\Windows\SysWOW64\pnrpnsp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик пространства имен PNRP 131795770645379614 0x70a80000 409600 C:\Windows\SysWOW64\schannel.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик безопасности TLS/SSL 131795770645379614 0x70af0000 36864 C:\Windows\SysWOW64\npmproxy.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Network List Manager Proxy 131795770645379614 0x70b40000 69632 C:\Windows\SysWOW64\mskeyprotect.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик защиты ключей (Майкрософт) 131795770645379614 0x70b70000 163840 C:\Windows\SysWOW64\ntmarta.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик Windows NT MARTA 131795770645379614 0x70ba0000 188416 C:\Windows\SysWOW64\FWPolicyIOMgr.dll 10.0.14393.2189 (rs1_release.180329-1711) Microsoft Corporation FwPolicyIoMgr DLL 131795770645379614 0x70bd0000 147456 C:\Windows\SysWOW64\fwbase.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Firewall Base DLL 131795770645379614 0x70c00000 49152 C:\Windows\SysWOW64\winrnr.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation LDAP RnR Provider DLL 131795770645379614 0x70c10000 73728 C:\Windows\SysWOW64\napinsp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик оболочки совместимости для имен электронной почты 131795770645379614 0x70ca0000 45056 C:\Windows\SysWOW64\NETUTILS.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API Helpers DLL 131795770645379614 0x70cc0000 65536 C:\Windows\SysWOW64\ondemandconnroutehelper.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation On Demand Connctiond Route Helper 131795770645379614 0x70e60000 176128 C:\Windows\SysWOW64\NTASN1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft ASN.1 API 131795770645379614 0x71140000 77824 C:\Windows\SysWOW64\NETAPI32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API DLL 131795770645379614 0x71610000 77824 C:\Windows\SysWOW64\dhcpcsvc6.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиент DHCPv6 131795770645379614 0x725e0000 2273280 C:\Windows\SysWOW64\iertutil.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служебная программа времени выполнения для Internet Explorer 131795770645379614 0x728e0000 1372160 C:\Windows\SysWOW64\PROPSYS.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Система страниц свойств (Майкрософт) 131795770645379614 0x72b90000 126976 C:\Windows\SysWOW64\dwmapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Интерфейс API диспетчера окон рабочего стола (Майкрософт) 131795770645379614 0x73a40000 32768 C:\Windows\SysWOW64\WINNSI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Network Store Information RPC interface 131795770645379614 0x73a50000 299008 C:\Windows\SysWOW64\fwpuclnt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API пользовательского режима FWP/IPsec 131795770645379614 0x73aa0000 32768 C:\Windows\SysWOW64\DPAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Data Protection API 131795770645379614 0x73ab0000 32768 C:\Windows\SysWOW64\rasadhlp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Remote Access AutoDial Helper 131795770645379614 0x73ac0000 81920 C:\Windows\SysWOW64\dhcpcsvc.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служба DHCP-клиента 131795770645379614 0x73ae0000 40960 C:\Windows\SysWOW64\Secur32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Security Support Provider Interface 131795770645379614 0x73c50000 1478656 C:\Windows\WinSxS\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.14393.1715_none_f67438d2f2547a00\gdiplus.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Microsoft GDI+ 131795770645379614 0x73ee0000 61440 C:\Windows\SysWOW64\WTSAPI32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Remote Desktop Session Host Server SDK APIs 131795770645379614 0x73ef0000 24576 C:\Windows\SysWOW64\MSIMG32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation GDIEXT Client DLL 131795770645379614 0x73f00000 192512 C:\Windows\SysWOW64\IPHLPAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API вспомогательного приложения IP 131795770645379614 0x73f30000 512000 C:\Windows\SysWOW64\DNSAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Динамическая библиотека API DNS-клиента 131795770645379614 0x73fc0000 28672 C:\Windows\SysWOW64\wship6.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL помощника Winsock2 (TL/IPv6) 131795770645379614 0x73fd0000 28672 C:\Windows\SysWOW64\wshtcpip.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL помощника службы Winsock2 (TL/IPv4) 131795770645379614 0x73fe0000 32768 C:\Windows\SysWOW64\wshqos.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL помощника службы QoS Winsock2 131795770645379614 0x73ff0000 319488 C:\Windows\SysWOW64\mswsock.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширение поставщика службы API Microsoft Windows Sockets 2.0 131795770645379614 0x74040000 126976 C:\Windows\SysWOW64\gpapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиентские функции API групповой политики 131795770645379614 0x74060000 192512 C:\Windows\SysWOW64\rsaenh.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Enhanced Cryptographic Provider 131795770645379614 0x74110000 479232 C:\Windows\SysWOW64\uxtheme.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека тем UxTheme (Microsoft) 131795770645379614 0x74190000 110592 C:\Windows\SysWOW64\bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795770645379614 0x741b0000 77824 C:\Windows\SysWOW64\CRYPTSP.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Cryptographic Service Provider API 131795770645379614 0x74260000 2514944 C:\Windows\SysWOW64\WININET.dll 11.00.14393.447 (rs1_release_inmarket.161102-0100) Microsoft Corporation Расширения Интернета для Win32 131795770645379614 0x744d0000 2138112 C:\Windows\WinSxS\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.14393.953_none_89c2555adb023171\COMCTL32.dll 6.10 (rs1_release_inmarket.170303-1614) Microsoft Corporation Библиотека элементов управления взаимодействия с пользователем 131795770645379614 0x746e0000 32768 C:\Windows\SysWOW64\VERSION.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Version Checking and File Installation Libraries 131795770645379614 0x746f0000 106496 C:\Windows\SysWOW64\USERENV.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Userenv 131795770645379614 0x747d0000 40960 C:\Windows\SysWOW64\CRYPTBASE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base cryptographic API DLL 131795770645379614 0x747e0000 126976 C:\Windows\SysWOW64\SspiCli.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Security Support Provider Interface 131795770645379614 0x74800000 151552 C:\Windows\SysWOW64\IMM32.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Multi-User Windows IMM32 API Client DLL 131795770645379614 0x74910000 2170880 C:\Windows\SysWOW64\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795770645379614 0x74b30000 53248 C:\Windows\SysWOW64\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795770645379614 0x74b40000 102400 C:\Windows\SysWOW64\imagehlp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT Image Helper 131795770645379614 0x74b60000 790528 C:\Windows\SysWOW64\RPCRT4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795770645379614 0x74c30000 1417216 C:\Windows\SysWOW64\gdi32full.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation GDI Client DLL 131795770645379614 0x74d90000 24576 C:\Windows\SysWOW64\PSAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Process Status Helper 131795770645379614 0x74da0000 778240 C:\Windows\SysWOW64\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795770645379614 0x74e60000 557056 C:\Windows\SysWOW64\shcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795770645379614 0x74ef0000 540672 C:\Windows\SysWOW64\clbcatq.dll 2001.12.10941.16384 (rs1_release.160715-1616) Microsoft Corporation COM+ Configuration Catalog 131795770645379614 0x74f80000 278528 C:\Windows\SysWOW64\wintrust.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation Microsoft Trust Verification APIs 131795770645379614 0x74fd0000 405504 C:\Windows\SysWOW64\WS2_32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation 32-разрядная библиотека Windows Socket 2.0 131795770645379614 0x75040000 282624 C:\Windows\SysWOW64\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795770645379614 0x75090000 1265664 C:\Windows\SysWOW64\MSCTF.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Серверная библиотека MSCTF 131795770645379614 0x751d0000 57344 C:\Windows\SysWOW64\MSASN1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ASN.1 Runtime APIs 131795770645379614 0x751e0000 1708032 C:\Windows\SysWOW64\KERNELBASE.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645379614 0x75390000 266240 C:\Windows\SysWOW64\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795770645379614 0x753e0000 1560576 C:\Windows\SysWOW64\CRYPT32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API32 криптографии 131795770645379614 0x75560000 487424 C:\Windows\SysWOW64\ADVAPI32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795770645379614 0x756c0000 5693440 C:\Windows\SysWOW64\windows.storage.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API хранения Microsoft WinRT 131795770645379614 0x75c90000 286720 C:\Windows\SysWOW64\SHLWAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека небольших программ оболочки 131795770645379614 0x75ce0000 20811776 C:\Windows\SysWOW64\SHELL32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Общая библиотека оболочки Windows 131795770645379614 0x770c0000 4239360 C:\Windows\SysWOW64\SETUPAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Setup API 131795770645379614 0x774d0000 86016 C:\Windows\SysWOW64\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795770645379614 0x774f0000 61440 C:\Windows\SysWOW64\profapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Profile Basic API 131795770645379614 0x77560000 1437696 C:\Windows\SysWOW64\USER32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795770645379614 0x776c0000 368640 C:\Windows\SysWOW64\bcryptPrimitives.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation Windows Cryptographic Primitives Library 131795770645379614 0x77780000 503808 C:\Windows\SysWOW64\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645379614 0x77800000 606208 C:\Windows\SysWOW64\OLEAUT32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795770645379614 0x77ac0000 966656 C:\Windows\SysWOW64\ole32.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft OLE для Windows 131795770645379614 0x77bb0000 176128 C:\Windows\SysWOW64\GDI32.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation GDI Client DLL 131795770645379614 0x77be0000 937984 C:\Windows\SysWOW64\COMDLG32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека общих диалоговых окон 131795770645379614 0x77cd0000 221184 C:\Windows\SysWOW64\cfgmgr32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Configuration Manager DLL 131795770645379614 0x77d10000 28672 C:\Windows\SysWOW64\NSI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation NSI User-mode interface DLL 131795770645379614 0x77d20000 1585152 C:\Windows\SysWOW64\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 131795770645379614 0x7ffad0270000 1908736 C:\Windows\SYSTEM32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 42 3608 664 6 00000000:0031f1da 131765778496229053 0 0 1 Обязательная метка\Средний обязательный уровень WIN-0UOTFKKVN1S\User ApplicationFrameHost.exe C:\Windows\system32\ApplicationFrameHost.exe C:\Windows\system32\ApplicationFrameHost.exe -Embedding Microsoft Corporation 10.0.14393.0 (rs1_release.160715-1616) Application Frame Host 131795770645379722 0x7ff6aa270000 61440 C:\Windows\system32\ApplicationFrameHost.exe 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Application Frame Host 131795770645379722 0x7ffabb490000 512000 C:\Windows\System32\TWINAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation twinapi 131795770645379722 0x7ffac0bf0000 3559424 C:\Windows\System32\ActXPrxy.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation ActiveX Interface Marshaling Library 131795770645379722 0x7ffac3cb0000 2772992 C:\Windows\SYSTEM32\iertutil.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служебная программа времени выполнения для Internet Explorer 131795770645379722 0x7ffac5240000 1114112 C:\Windows\System32\ApplicationFrame.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Фрейм приложения 131795770645379722 0x7ffac5ce0000 1744896 C:\Windows\system32\UIAutomationCore.DLL 7.2.14393.0 (rs1_release.160715-1616) Microsoft Corporation Основные автоматические компоненты Microsoft UI 131795770645379722 0x7ffac6bd0000 413696 C:\Windows\system32\OLEACC.dll 7.2.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Active Accessibility Core Component 131795770645379722 0x7ffac6f50000 5632000 C:\Windows\System32\d2d1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека Microsoft D2D 131795770645379722 0x7ffac7580000 1077248 C:\Windows\SYSTEM32\mrmcorer.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Windows MRM 131795770645379722 0x7ffac7fc0000 2674688 C:\Windows\system32\D3D10Warp.dll 10.0.14393.576 (rs1_release_inmarket.161208-2252) Microsoft Corporation Direct3D 10 Rasterizer 131795770645379722 0x7ffac88a0000 2842624 C:\Windows\System32\d3d11.dll 10.0.14393.953 (rs1_release_inmarket.170303-1614) Microsoft Corporation Direct3D 11 Runtime 131795770645379722 0x7ffac9ec0000 294912 C:\Windows\System32\UIAnimation.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Animation Manager 131795770645379722 0x7ffac9f50000 1736704 C:\Windows\system32\windowscodecs.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Microsoft Windows Codecs Library 131795770645379722 0x7ffaca340000 1593344 C:\Windows\System32\PROPSYS.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Система страниц свойств (Майкрософт) 131795770645379722 0x7ffaca570000 421888 C:\Windows\system32\Bcp47Langs.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation BCP47 Language Classes 131795770645379722 0x7ffaca5e0000 155648 C:\Windows\System32\dwmapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Интерфейс API диспетчера окон рабочего стола (Майкрософт) 131795770645379722 0x7ffaca770000 1380352 C:\Windows\System32\dcomp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft DirectComposition Library 131795770645379722 0x7ffacaf00000 610304 C:\Windows\System32\UxTheme.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека тем UxTheme (Microsoft) 131795770645379722 0x7ffacb1e0000 1163264 C:\Windows\System32\twinapi.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation twinapi.appcore 131795770645379722 0x7ffacb3f0000 163840 C:\Windows\System32\DEVOBJ.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Device Information Set DLL 131795770645379722 0x7ffacb780000 651264 C:\Windows\System32\dxgi.dll 10.0.14393.953 (rs1_release_inmarket.170303-1614) Microsoft Corporation DirectX Graphics Infrastructure 131795770645379722 0x7ffacbe40000 126976 C:\Windows\system32\USERENV.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Userenv 131795770645379722 0x7ffacc520000 622592 C:\Windows\SYSTEM32\sxs.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Fusion 2.5 131795770645379722 0x7ffacc620000 176128 C:\Windows\System32\bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795770645379722 0x7ffacc6e0000 61440 C:\Windows\System32\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795770645379722 0x7ffacc6f0000 311296 C:\Windows\System32\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795770645379722 0x7ffacc740000 81920 C:\Windows\System32\profapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Profile Basic API 131795770645379722 0x7ffacc760000 65536 C:\Windows\System32\MSASN1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ASN.1 Runtime APIs 131795770645379722 0x7ffacc8f0000 1003520 C:\Windows\System32\ucrtbase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645379722 0x7ffacc9f0000 434176 C:\Windows\System32\bcryptPrimitives.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Cryptographic Primitives Library 131795770645379722 0x7ffacca60000 122880 C:\Windows\System32\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795770645379722 0x7ffaccae0000 692224 C:\Windows\System32\SHCORE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795770645379722 0x7ffaccb90000 7180288 C:\Windows\System32\windows.storage.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API хранения Microsoft WinRT 131795770645379722 0x7ffacd270000 2215936 C:\Windows\System32\KERNELBASE.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645379722 0x7ffacd490000 1871872 C:\Windows\System32\CRYPT32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API32 криптографии 131795770645379722 0x7ffacd710000 638976 C:\Windows\System32\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645379722 0x7ffacd7b0000 270336 C:\Windows\System32\cfgmgr32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Configuration Manager DLL 131795770645379722 0x7ffacd810000 22056960 C:\Windows\System32\SHELL32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Общая библиотека оболочки Windows 131795770645379722 0x7ffaced20000 782336 C:\Windows\System32\OLEAUT32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795770645379722 0x7ffacee50000 1183744 C:\Windows\System32\RPCRT4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795770645379722 0x7ffacef90000 647168 C:\Windows\System32\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795770645379722 0x7ffacf030000 651264 C:\Windows\System32\clbcatq.dll 2001.12.10941.16384 (rs1_release.160715-1616) Microsoft Corporation COM+ Configuration Catalog 131795770645379722 0x7ffacf0d0000 704512 C:\Windows\System32\KERNEL32.DLL 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645379722 0x7ffacf1e0000 1417216 C:\Windows\System32\MSCTF.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Серверная библиотека MSCTF 131795770645379722 0x7ffacf770000 212992 C:\Windows\System32\GDI32.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation GDI Client DLL 131795770645379722 0x7ffacf890000 188416 C:\Windows\System32\IMM32.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Multi-User Windows IMM32 API Client DLL 131795770645379722 0x7ffacf8c0000 1462272 C:\Windows\System32\USER32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795770645379722 0x7ffacfb30000 2916352 C:\Windows\System32\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795770645379722 0x7ffacfe20000 663552 C:\Windows\System32\advapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795770645379722 0x7ffad01b0000 335872 C:\Windows\System32\SHLWAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека небольших программ оболочки 131795770645379722 0x7ffad0210000 364544 C:\Windows\System32\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795770645379722 0x7ffad0270000 1908736 C:\Windows\SYSTEM32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 43 5952 4928 41 00000000:0031f1da 131765778883326814 0 1 0 Обязательная метка\Низкий обязательный уровень WIN-0UOTFKKVN1S\User utorrentie.exe C:\Users\User\AppData\Roaming\uTorrent\updates\3.5.4_44498\utorrentie.exe "C:\Users\User\AppData\Roaming\uTorrent\updates\3.5.4_44498\utorrentie.exe" uTorrent_4928_02D54150_1240996307 µTorrent4823DF041B09 uTorrent BitTorrent Inc. 1.0.0 WebHelper 131795770645379833 0x1180000 417792 C:\Users\User\AppData\Roaming\uTorrent\updates\3.5.4_44498\utorrentie.exe 1.0.0 BitTorrent Inc. WebHelper 131795770645379833 0x5c020000 335872 C:\Windows\System32\wow64.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation Win32 Emulation on NT64 131795770645379833 0x5c080000 487424 C:\Windows\System32\wow64win.dll 10.0.14393.1884 (rs1_release.171101-1233) Microsoft Corporation Wow64 Console and Win32 API Logging 131795770645379833 0x5c100000 40960 C:\Windows\System32\wow64cpu.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation AMD64 Wow64 CPU 131795770645379833 0x63490000 221184 C:\Windows\SysWOW64\dinput8.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft DirectInput 131795770645379833 0x634d0000 561152 C:\Windows\SysWOW64\DSOUND.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DirectSound 131795770645379833 0x63560000 23334912 C:\Windows\SysWOW64\Macromed\Flash\Flash.ocx 29,0,0,140 Adobe Systems, Inc. Adobe Flash Player 29.0 r0 131795770645379833 0x64d00000 5079040 C:\Windows\SysWOW64\d2d1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека Microsoft D2D 131795770645379833 0x651e0000 20537344 C:\Windows\SysWOW64\mshtml.dll 11.00.14393.447 (rs1_release_inmarket.161102-0100) Microsoft Corporation Средство просмотра HTML Microsoft® 131795770645379833 0x66580000 12247040 C:\Windows\SysWOW64\ieframe.dll 11.00.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Браузер 131795770645379833 0x6b670000 212992 C:\Windows\SysWOW64\mlang.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL многоязыковой поддержки 131795770645379833 0x6b6b0000 36864 C:\Windows\SysWOW64\atlthunk.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation atlthunk.dll 131795770645379833 0x6c290000 987136 C:\Windows\SysWOW64\twinapi.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation twinapi.appcore 131795770645379833 0x6c390000 1126400 C:\Windows\SysWOW64\dcomp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft DirectComposition Library 131795770645379833 0x6c4b0000 278528 C:\Windows\SysWOW64\dataexchange.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation Data exchange 131795770645379833 0x6c540000 483328 C:\Windows\SysWOW64\webio.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API протоколов передачи по Веб 131795770645379833 0x6c5c0000 1384448 C:\Windows\SysWOW64\UIAutomationCore.DLL 7.2.14393.0 (rs1_release.160715-1616) Microsoft Corporation Основные автоматические компоненты Microsoft UI 131795770645379833 0x6c720000 2318336 C:\Windows\SysWOW64\d3d10warp.dll 10.0.14393.576 (rs1_release_inmarket.161208-2252) Microsoft Corporation Direct3D 10 Rasterizer 131795770645379833 0x6c960000 57344 C:\Windows\SysWOW64\msimtf.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Active IMM Server DLL 131795770645379833 0x6c970000 3698688 C:\Windows\SysWOW64\jscript9.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft ® JScript 131795770645379833 0x6cd00000 69632 C:\Windows\SysWOW64\WLDP.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Политика блокировки Windows 131795770645379833 0x6cd20000 135168 C:\Windows\SysWOW64\srpapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL программных интерфейсов (API) поставщика общих ресурсов 131795770645379833 0x6cda0000 528384 C:\Windows\SysWOW64\sxs.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Fusion 2.5 131795770645379833 0x6d080000 151552 C:\Windows\SysWOW64\cryptnet.dll 10.0.14393.2035 (rs1_release_inmarket.180110-1910) Microsoft Corporation Crypto Network Related API 131795770645379833 0x6d0b0000 847872 C:\Windows\SysWOW64\wintypes.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL основных типов Windows 131795770645379833 0x6fd30000 139264 C:\Windows\SysWOW64\DEVOBJ.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Device Information Set DLL 131795770645379833 0x6fd60000 360448 C:\Windows\SysWOW64\MMDevApi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation MMDevice API 131795770645379833 0x6fdc0000 507904 C:\Windows\SysWOW64\AUDIOSES.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Сеанс обработки звука 131795770645379833 0x6fe90000 544768 C:\Windows\SysWOW64\mscms.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL-библиотека системы сопоставления цветов Майкрософт 131795770645379833 0x70340000 536576 C:\Windows\SysWOW64\dxgi.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation DirectX Graphics Infrastructure 131795770645379833 0x703d0000 2056192 C:\Windows\SysWOW64\DWrite.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Службы Microsoft DirectX Typography 131795770645379833 0x70640000 1499136 C:\Windows\SysWOW64\windowscodecs.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Microsoft Windows Codecs Library 131795770645379833 0x707b0000 110592 C:\Windows\SysWOW64\ncryptsslp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft SChannel Provider 131795770645379833 0x707f0000 2293760 C:\Windows\SysWOW64\d3d11.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation Direct3D 11 Runtime 131795770645379833 0x70a80000 409600 C:\Windows\SysWOW64\schannel.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик безопасности TLS/SSL 131795770645379833 0x70b40000 69632 C:\Windows\SysWOW64\mskeyprotect.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик защиты ключей (Майкрософт) 131795770645379833 0x70ca0000 45056 C:\Windows\SysWOW64\NETUTILS.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API Helpers DLL 131795770645379833 0x70cc0000 65536 C:\Windows\SysWOW64\ondemandconnroutehelper.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation On Demand Connctiond Route Helper 131795770645379833 0x70e60000 176128 C:\Windows\SysWOW64\NTASN1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft ASN.1 API 131795770645379833 0x71140000 77824 C:\Windows\SysWOW64\NETAPI32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API DLL 131795770645379833 0x71610000 77824 C:\Windows\SysWOW64\dhcpcsvc6.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиент DHCPv6 131795770645379833 0x725e0000 2273280 C:\Windows\SysWOW64\iertutil.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служебная программа времени выполнения для Internet Explorer 131795770645379833 0x728e0000 1372160 C:\Windows\SysWOW64\PROPSYS.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Система страниц свойств (Майкрософт) 131795770645379833 0x72b90000 126976 C:\Windows\SysWOW64\dwmapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Интерфейс API диспетчера окон рабочего стола (Майкрософт) 131795770645379833 0x72cc0000 1658880 C:\Windows\SysWOW64\urlmon.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширения OLE32 для Win32 131795770645379833 0x73a40000 32768 C:\Windows\SysWOW64\WINNSI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Network Store Information RPC interface 131795770645379833 0x73a50000 299008 C:\Windows\SysWOW64\fwpuclnt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API пользовательского режима FWP/IPsec 131795770645379833 0x73aa0000 32768 C:\Windows\SysWOW64\DPAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Data Protection API 131795770645379833 0x73ab0000 32768 C:\Windows\SysWOW64\rasadhlp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Remote Access AutoDial Helper 131795770645379833 0x73ac0000 81920 C:\Windows\SysWOW64\dhcpcsvc.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служба DHCP-клиента 131795770645379833 0x73ae0000 40960 C:\Windows\SysWOW64\Secur32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Security Support Provider Interface 131795770645379833 0x73ef0000 24576 C:\Windows\SysWOW64\MSIMG32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation GDIEXT Client DLL 131795770645379833 0x73f00000 192512 C:\Windows\SysWOW64\IPHLPAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API вспомогательного приложения IP 131795770645379833 0x73f30000 512000 C:\Windows\SysWOW64\DNSAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Динамическая библиотека API DNS-клиента 131795770645379833 0x73ff0000 319488 C:\Windows\SysWOW64\mswsock.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширение поставщика службы API Microsoft Windows Sockets 2.0 131795770645379833 0x74060000 192512 C:\Windows\SysWOW64\rsaenh.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Enhanced Cryptographic Provider 131795770645379833 0x74110000 479232 C:\Windows\SysWOW64\uxtheme.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека тем UxTheme (Microsoft) 131795770645379833 0x74190000 110592 C:\Windows\SysWOW64\bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795770645379833 0x741b0000 77824 C:\Windows\SysWOW64\CRYPTSP.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Cryptographic Service Provider API 131795770645379833 0x741f0000 143360 C:\Windows\SysWOW64\WINMMBASE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base Multimedia Extension API DLL 131795770645379833 0x74230000 147456 C:\Windows\SysWOW64\WINMM.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation MCI API DLL 131795770645379833 0x74260000 2514944 C:\Windows\SysWOW64\WININET.dll 11.00.14393.447 (rs1_release_inmarket.161102-0100) Microsoft Corporation Расширения Интернета для Win32 131795770645379833 0x744d0000 2138112 C:\Windows\WinSxS\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.14393.953_none_89c2555adb023171\comctl32.dll 6.10 (rs1_release_inmarket.170303-1614) Microsoft Corporation Библиотека элементов управления взаимодействия с пользователем 131795770645379833 0x746e0000 32768 C:\Windows\SysWOW64\VERSION.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Version Checking and File Installation Libraries 131795770645379833 0x746f0000 106496 C:\Windows\SysWOW64\USERENV.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Userenv 131795770645379833 0x74730000 598016 C:\Windows\SysWOW64\apphelp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиентская библиотека совместимости приложений 131795770645379833 0x747d0000 40960 C:\Windows\SysWOW64\CRYPTBASE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base cryptographic API DLL 131795770645379833 0x747e0000 126976 C:\Windows\SysWOW64\SspiCli.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Security Support Provider Interface 131795770645379833 0x74800000 151552 C:\Windows\SysWOW64\IMM32.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Multi-User Windows IMM32 API Client DLL 131795770645379833 0x74910000 2170880 C:\Windows\SysWOW64\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795770645379833 0x74b30000 53248 C:\Windows\SysWOW64\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795770645379833 0x74b60000 790528 C:\Windows\SysWOW64\RPCRT4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795770645379833 0x74c30000 1417216 C:\Windows\SysWOW64\gdi32full.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation GDI Client DLL 131795770645379833 0x74da0000 778240 C:\Windows\SysWOW64\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795770645379833 0x74e60000 557056 C:\Windows\SysWOW64\shcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795770645379833 0x74ef0000 540672 C:\Windows\SysWOW64\clbcatq.dll 2001.12.10941.16384 (rs1_release.160715-1616) Microsoft Corporation COM+ Configuration Catalog 131795770645379833 0x74f80000 278528 C:\Windows\SysWOW64\WINTRUST.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation Microsoft Trust Verification APIs 131795770645379833 0x74fd0000 405504 C:\Windows\SysWOW64\WS2_32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation 32-разрядная библиотека Windows Socket 2.0 131795770645379833 0x75040000 282624 C:\Windows\SysWOW64\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795770645379833 0x75090000 1265664 C:\Windows\SysWOW64\MSCTF.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Серверная библиотека MSCTF 131795770645379833 0x751d0000 57344 C:\Windows\SysWOW64\MSASN1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ASN.1 Runtime APIs 131795770645379833 0x751e0000 1708032 C:\Windows\SysWOW64\KERNELBASE.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645379833 0x75390000 266240 C:\Windows\SysWOW64\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795770645379833 0x753e0000 1560576 C:\Windows\SysWOW64\CRYPT32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API32 криптографии 131795770645379833 0x75560000 487424 C:\Windows\SysWOW64\advapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795770645379833 0x756c0000 5693440 C:\Windows\SysWOW64\windows.storage.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API хранения Microsoft WinRT 131795770645379833 0x75c30000 372736 C:\Windows\SysWOW64\coml2.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft COM for Windows 131795770645379833 0x75c90000 286720 C:\Windows\SysWOW64\shlwapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека небольших программ оболочки 131795770645379833 0x75ce0000 20811776 C:\Windows\SysWOW64\SHELL32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Общая библиотека оболочки Windows 131795770645379833 0x774d0000 86016 C:\Windows\SysWOW64\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795770645379833 0x774f0000 61440 C:\Windows\SysWOW64\profapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Profile Basic API 131795770645379833 0x77560000 1437696 C:\Windows\SysWOW64\USER32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795770645379833 0x776c0000 368640 C:\Windows\SysWOW64\bcryptPrimitives.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation Windows Cryptographic Primitives Library 131795770645379833 0x77780000 503808 C:\Windows\SysWOW64\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645379833 0x77800000 606208 C:\Windows\SysWOW64\OLEAUT32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795770645379833 0x77ac0000 966656 C:\Windows\SysWOW64\ole32.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft OLE для Windows 131795770645379833 0x77bb0000 176128 C:\Windows\SysWOW64\GDI32.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation GDI Client DLL 131795770645379833 0x77cd0000 221184 C:\Windows\SysWOW64\cfgmgr32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Configuration Manager DLL 131795770645379833 0x77d10000 28672 C:\Windows\SysWOW64\NSI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation NSI User-mode interface DLL 131795770645379833 0x77d20000 1585152 C:\Windows\SysWOW64\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 131795770645379833 0x7ffad0270000 1908736 C:\Windows\SYSTEM32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 44 5800 664 6 00000000:0031f1da 131765779120650795 0 0 1 Обязательная метка\Средний обязательный уровень WIN-0UOTFKKVN1S\User DllHost.exe C:\Windows\system32\DllHost.exe C:\Windows\system32\DllHost.exe /Processid:{49F6E667-6658-4BD1-9DE9-6AF87F9FAF85} Microsoft Corporation 10.0.14393.0 (rs1_release.160715-1616) COM Surrogate 131795770645379938 0x7ff7a2280000 36864 C:\Windows\system32\DllHost.exe 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation COM Surrogate 131795770645379938 0x7ffac3840000 3088384 C:\Windows\SYSTEM32\esent.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширяемая подсистема хранения данных ESE для Microsoft(R) Windows(R) 131795770645379938 0x7ffac3b80000 286720 C:\Windows\system32\indexeddbserver.dll 10.0.14393.2189 (rs1_release.180329-1711) Microsoft Corporation IndexedDb host 131795770645379938 0x7ffac3cb0000 2772992 C:\Windows\system32\iertutil.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служебная программа времени выполнения для Internet Explorer 131795770645379938 0x7ffacaf00000 610304 C:\Windows\system32\uxtheme.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека тем UxTheme (Microsoft) 131795770645379938 0x7ffacc170000 45056 C:\Windows\system32\CRYPTBASE.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base cryptographic API DLL 131795770645379938 0x7ffacc6e0000 61440 C:\Windows\System32\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795770645379938 0x7ffacc6f0000 311296 C:\Windows\System32\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795770645379938 0x7ffacc740000 81920 C:\Windows\System32\profapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Profile Basic API 131795770645379938 0x7ffacc8f0000 1003520 C:\Windows\System32\ucrtbase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645379938 0x7ffacc9f0000 434176 C:\Windows\System32\bcryptPrimitives.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Cryptographic Primitives Library 131795770645379938 0x7ffacca60000 122880 C:\Windows\System32\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795770645379938 0x7ffaccae0000 692224 C:\Windows\System32\shcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795770645379938 0x7ffaccb90000 7180288 C:\Windows\System32\windows.storage.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API хранения Microsoft WinRT 131795770645379938 0x7ffacd270000 2215936 C:\Windows\System32\KERNELBASE.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645379938 0x7ffacd710000 638976 C:\Windows\System32\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645379938 0x7ffaced20000 782336 C:\Windows\System32\OLEAUT32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795770645379938 0x7ffacee50000 1183744 C:\Windows\System32\RPCRT4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795770645379938 0x7ffacef90000 647168 C:\Windows\System32\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795770645379938 0x7ffacf030000 651264 C:\Windows\System32\clbcatq.dll 2001.12.10941.16384 (rs1_release.160715-1616) Microsoft Corporation COM+ Configuration Catalog 131795770645379938 0x7ffacf0d0000 704512 C:\Windows\System32\KERNEL32.DLL 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645379938 0x7ffacf770000 212992 C:\Windows\System32\GDI32.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation GDI Client DLL 131795770645379938 0x7ffacf890000 188416 C:\Windows\System32\IMM32.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Multi-User Windows IMM32 API Client DLL 131795770645379938 0x7ffacf8c0000 1462272 C:\Windows\System32\user32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795770645379938 0x7ffacfb30000 2916352 C:\Windows\System32\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795770645379938 0x7ffacfe20000 663552 C:\Windows\System32\advapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795770645379938 0x7ffad01b0000 335872 C:\Windows\System32\shlwapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека небольших программ оболочки 131795770645379938 0x7ffad0210000 364544 C:\Windows\System32\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795770645379938 0x7ffad0270000 1908736 C:\Windows\SYSTEM32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 45 340 4928 41 00000000:0031f1da 131765800389528045 0 1 0 Обязательная метка\Низкий обязательный уровень WIN-0UOTFKKVN1S\User utorrentie.exe C:\Users\User\AppData\Roaming\uTorrent\updates\3.5.4_44498\utorrentie.exe "C:\Users\User\AppData\Roaming\uTorrent\updates\3.5.4_44498\utorrentie.exe" uTorrent_4928_02D54870_1839591030 µTorrent4823DF041B09 uTorrent BitTorrent Inc. 1.0.0 WebHelper 131795770645380038 0x1180000 417792 C:\Users\User\AppData\Roaming\uTorrent\updates\3.5.4_44498\utorrentie.exe 1.0.0 BitTorrent Inc. WebHelper 131795770645380038 0x5c020000 335872 C:\Windows\System32\wow64.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation Win32 Emulation on NT64 131795770645380038 0x5c080000 487424 C:\Windows\System32\wow64win.dll 10.0.14393.1884 (rs1_release.171101-1233) Microsoft Corporation Wow64 Console and Win32 API Logging 131795770645380038 0x5c100000 40960 C:\Windows\System32\wow64cpu.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation AMD64 Wow64 CPU 131795770645380038 0x60750000 1556480 C:\Program Files (x86)\360\Total Security\safemon\safemon.dll 8, 4, 0, 1420 Qihu 360 Software Co., Ltd. 360 Internet Security Internet Protection 131795770645380038 0x63490000 221184 C:\Windows\SysWOW64\dinput8.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft DirectInput 131795770645380038 0x634d0000 561152 C:\Windows\SysWOW64\DSOUND.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DirectSound 131795770645380038 0x63560000 23334912 C:\Windows\SysWOW64\Macromed\Flash\Flash.ocx 29,0,0,140 Adobe Systems, Inc. Adobe Flash Player 29.0 r0 131795770645380038 0x64d00000 5079040 C:\Windows\SysWOW64\d2d1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека Microsoft D2D 131795770645380038 0x651e0000 20537344 C:\Windows\SysWOW64\mshtml.dll 11.00.14393.447 (rs1_release_inmarket.161102-0100) Microsoft Corporation Средство просмотра HTML Microsoft® 131795770645380038 0x66580000 12247040 C:\Windows\SysWOW64\ieframe.dll 11.00.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Браузер 131795770645380038 0x6b670000 212992 C:\Windows\SysWOW64\mlang.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL многоязыковой поддержки 131795770645380038 0x6b6b0000 36864 C:\Windows\SysWOW64\atlthunk.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation atlthunk.dll 131795770645380038 0x6c290000 987136 C:\Windows\SysWOW64\twinapi.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation twinapi.appcore 131795770645380038 0x6c390000 1126400 C:\Windows\SysWOW64\dcomp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft DirectComposition Library 131795770645380038 0x6c4b0000 278528 C:\Windows\SysWOW64\dataexchange.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation Data exchange 131795770645380038 0x6c540000 483328 C:\Windows\SysWOW64\webio.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API протоколов передачи по Веб 131795770645380038 0x6c5c0000 1384448 C:\Windows\SysWOW64\UIAutomationCore.DLL 7.2.14393.0 (rs1_release.160715-1616) Microsoft Corporation Основные автоматические компоненты Microsoft UI 131795770645380038 0x6c720000 2318336 C:\Windows\SysWOW64\d3d10warp.dll 10.0.14393.576 (rs1_release_inmarket.161208-2252) Microsoft Corporation Direct3D 10 Rasterizer 131795770645380038 0x6c960000 57344 C:\Windows\SysWOW64\msimtf.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Active IMM Server DLL 131795770645380038 0x6c970000 3698688 C:\Windows\SysWOW64\jscript9.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft ® JScript 131795770645380038 0x6cd00000 69632 C:\Windows\SysWOW64\WLDP.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Политика блокировки Windows 131795770645380038 0x6cd20000 135168 C:\Windows\SysWOW64\srpapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL программных интерфейсов (API) поставщика общих ресурсов 131795770645380038 0x6cda0000 528384 C:\Windows\SysWOW64\sxs.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Fusion 2.5 131795770645380038 0x6d080000 151552 C:\Windows\SysWOW64\cryptnet.dll 10.0.14393.2035 (rs1_release_inmarket.180110-1910) Microsoft Corporation Crypto Network Related API 131795770645380038 0x6d0b0000 847872 C:\Windows\SysWOW64\wintypes.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL основных типов Windows 131795770645380038 0x6fd30000 139264 C:\Windows\SysWOW64\DEVOBJ.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Device Information Set DLL 131795770645380038 0x6fd60000 360448 C:\Windows\SysWOW64\MMDevApi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation MMDevice API 131795770645380038 0x6fdc0000 507904 C:\Windows\SysWOW64\AUDIOSES.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Сеанс обработки звука 131795770645380038 0x6fe90000 544768 C:\Windows\SysWOW64\mscms.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL-библиотека системы сопоставления цветов Майкрософт 131795770645380038 0x70340000 536576 C:\Windows\SysWOW64\dxgi.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation DirectX Graphics Infrastructure 131795770645380038 0x703d0000 2056192 C:\Windows\SysWOW64\DWrite.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Службы Microsoft DirectX Typography 131795770645380038 0x70640000 1499136 C:\Windows\SysWOW64\windowscodecs.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Microsoft Windows Codecs Library 131795770645380038 0x707b0000 110592 C:\Windows\SysWOW64\ncryptsslp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft SChannel Provider 131795770645380038 0x707f0000 2293760 C:\Windows\SysWOW64\d3d11.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation Direct3D 11 Runtime 131795770645380038 0x70a40000 81920 C:\Windows\SysWOW64\NLAapi.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Network Location Awareness 2 131795770645380038 0x70a60000 90112 C:\Windows\SysWOW64\pnrpnsp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик пространства имен PNRP 131795770645380038 0x70a80000 409600 C:\Windows\SysWOW64\schannel.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик безопасности TLS/SSL 131795770645380038 0x70b40000 69632 C:\Windows\SysWOW64\mskeyprotect.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик защиты ключей (Майкрософт) 131795770645380038 0x70c00000 49152 C:\Windows\SysWOW64\winrnr.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation LDAP RnR Provider DLL 131795770645380038 0x70c10000 73728 C:\Windows\SysWOW64\napinsp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик оболочки совместимости для имен электронной почты 131795770645380038 0x70c30000 114688 C:\Windows\SysWOW64\srvcli.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Server Service Client DLL 131795770645380038 0x70c50000 319488 C:\Windows\SysWOW64\Ninput.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Pen and Touch Input Component 131795770645380038 0x70ca0000 45056 C:\Windows\SysWOW64\NETUTILS.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API Helpers DLL 131795770645380038 0x70cc0000 65536 C:\Windows\SysWOW64\ondemandconnroutehelper.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation On Demand Connctiond Route Helper 131795770645380038 0x70e60000 176128 C:\Windows\SysWOW64\NTASN1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft ASN.1 API 131795770645380038 0x71140000 77824 C:\Windows\SysWOW64\NETAPI32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API DLL 131795770645380038 0x71610000 77824 C:\Windows\SysWOW64\dhcpcsvc6.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиент DHCPv6 131795770645380038 0x725e0000 2273280 C:\Windows\SysWOW64\iertutil.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служебная программа времени выполнения для Internet Explorer 131795770645380038 0x728e0000 1372160 C:\Windows\SysWOW64\PROPSYS.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Система страниц свойств (Майкрософт) 131795770645380038 0x72b90000 126976 C:\Windows\SysWOW64\dwmapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Интерфейс API диспетчера окон рабочего стола (Майкрософт) 131795770645380038 0x72cc0000 1658880 C:\Windows\SysWOW64\urlmon.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширения OLE32 для Win32 131795770645380038 0x73a40000 32768 C:\Windows\SysWOW64\WINNSI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Network Store Information RPC interface 131795770645380038 0x73a50000 299008 C:\Windows\SysWOW64\fwpuclnt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API пользовательского режима FWP/IPsec 131795770645380038 0x73aa0000 32768 C:\Windows\SysWOW64\DPAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Data Protection API 131795770645380038 0x73ab0000 32768 C:\Windows\SysWOW64\rasadhlp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Remote Access AutoDial Helper 131795770645380038 0x73ac0000 81920 C:\Windows\SysWOW64\dhcpcsvc.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служба DHCP-клиента 131795770645380038 0x73ae0000 40960 C:\Windows\SysWOW64\Secur32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Security Support Provider Interface 131795770645380038 0x73ef0000 24576 C:\Windows\SysWOW64\MSIMG32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation GDIEXT Client DLL 131795770645380038 0x73f00000 192512 C:\Windows\SysWOW64\IPHLPAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API вспомогательного приложения IP 131795770645380038 0x73f30000 512000 C:\Windows\SysWOW64\DNSAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Динамическая библиотека API DNS-клиента 131795770645380038 0x73ff0000 319488 C:\Windows\SysWOW64\mswsock.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширение поставщика службы API Microsoft Windows Sockets 2.0 131795770645380038 0x74060000 192512 C:\Windows\SysWOW64\rsaenh.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Enhanced Cryptographic Provider 131795770645380038 0x74110000 479232 C:\Windows\SysWOW64\uxtheme.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека тем UxTheme (Microsoft) 131795770645380038 0x74190000 110592 C:\Windows\SysWOW64\bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795770645380038 0x741b0000 77824 C:\Windows\SysWOW64\CRYPTSP.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Cryptographic Service Provider API 131795770645380038 0x741f0000 143360 C:\Windows\SysWOW64\WINMMBASE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base Multimedia Extension API DLL 131795770645380038 0x74230000 147456 C:\Windows\SysWOW64\WINMM.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation MCI API DLL 131795770645380038 0x74260000 2514944 C:\Windows\SysWOW64\WININET.dll 11.00.14393.447 (rs1_release_inmarket.161102-0100) Microsoft Corporation Расширения Интернета для Win32 131795770645380038 0x744d0000 2138112 C:\Windows\WinSxS\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.14393.953_none_89c2555adb023171\comctl32.dll 6.10 (rs1_release_inmarket.170303-1614) Microsoft Corporation Библиотека элементов управления взаимодействия с пользователем 131795770645380038 0x746e0000 32768 C:\Windows\SysWOW64\VERSION.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Version Checking and File Installation Libraries 131795770645380038 0x746f0000 106496 C:\Windows\SysWOW64\USERENV.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Userenv 131795770645380038 0x74730000 598016 C:\Windows\SysWOW64\apphelp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиентская библиотека совместимости приложений 131795770645380038 0x747d0000 40960 C:\Windows\SysWOW64\CRYPTBASE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base cryptographic API DLL 131795770645380038 0x747e0000 126976 C:\Windows\SysWOW64\SspiCli.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Security Support Provider Interface 131795770645380038 0x74800000 151552 C:\Windows\SysWOW64\IMM32.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Multi-User Windows IMM32 API Client DLL 131795770645380038 0x74910000 2170880 C:\Windows\SysWOW64\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795770645380038 0x74b30000 53248 C:\Windows\SysWOW64\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795770645380038 0x74b60000 790528 C:\Windows\SysWOW64\RPCRT4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795770645380038 0x74c30000 1417216 C:\Windows\SysWOW64\gdi32full.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation GDI Client DLL 131795770645380038 0x74d90000 24576 C:\Windows\SysWOW64\PSAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Process Status Helper 131795770645380038 0x74da0000 778240 C:\Windows\SysWOW64\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795770645380038 0x74e60000 557056 C:\Windows\SysWOW64\shcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795770645380038 0x74ef0000 540672 C:\Windows\SysWOW64\clbcatq.dll 2001.12.10941.16384 (rs1_release.160715-1616) Microsoft Corporation COM+ Configuration Catalog 131795770645380038 0x74f80000 278528 C:\Windows\SysWOW64\WINTRUST.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation Microsoft Trust Verification APIs 131795770645380038 0x74fd0000 405504 C:\Windows\SysWOW64\WS2_32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation 32-разрядная библиотека Windows Socket 2.0 131795770645380038 0x75040000 282624 C:\Windows\SysWOW64\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795770645380038 0x75090000 1265664 C:\Windows\SysWOW64\MSCTF.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Серверная библиотека MSCTF 131795770645380038 0x751d0000 57344 C:\Windows\SysWOW64\MSASN1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ASN.1 Runtime APIs 131795770645380038 0x751e0000 1708032 C:\Windows\SysWOW64\KERNELBASE.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645380038 0x75390000 266240 C:\Windows\SysWOW64\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795770645380038 0x753e0000 1560576 C:\Windows\SysWOW64\CRYPT32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API32 криптографии 131795770645380038 0x75560000 487424 C:\Windows\SysWOW64\advapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795770645380038 0x756c0000 5693440 C:\Windows\SysWOW64\windows.storage.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API хранения Microsoft WinRT 131795770645380038 0x75c30000 372736 C:\Windows\SysWOW64\coml2.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft COM for Windows 131795770645380038 0x75c90000 286720 C:\Windows\SysWOW64\shlwapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека небольших программ оболочки 131795770645380038 0x75ce0000 20811776 C:\Windows\SysWOW64\SHELL32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Общая библиотека оболочки Windows 131795770645380038 0x774d0000 86016 C:\Windows\SysWOW64\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795770645380038 0x774f0000 61440 C:\Windows\SysWOW64\profapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Profile Basic API 131795770645380038 0x77560000 1437696 C:\Windows\SysWOW64\USER32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795770645380038 0x776c0000 368640 C:\Windows\SysWOW64\bcryptPrimitives.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation Windows Cryptographic Primitives Library 131795770645380038 0x77780000 503808 C:\Windows\SysWOW64\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645380038 0x77800000 606208 C:\Windows\SysWOW64\OLEAUT32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795770645380038 0x77ac0000 966656 C:\Windows\SysWOW64\ole32.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft OLE для Windows 131795770645380038 0x77bb0000 176128 C:\Windows\SysWOW64\GDI32.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation GDI Client DLL 131795770645380038 0x77cd0000 221184 C:\Windows\SysWOW64\cfgmgr32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Configuration Manager DLL 131795770645380038 0x77d10000 28672 C:\Windows\SysWOW64\NSI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation NSI User-mode interface DLL 131795770645380038 0x77d20000 1585152 C:\Windows\SysWOW64\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 131795770645380038 0x7ffad0270000 1908736 C:\Windows\SYSTEM32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 46 2736 3976 47 00000000:0031f1ab 131765800903010156 0 0 1 Обязательная метка\Высокий обязательный уровень WIN-0UOTFKKVN1S\User Taskmgr.exe C:\Windows\System32\Taskmgr.exe "C:\Windows\System32\Taskmgr.exe" /2 Microsoft® Windows® Operating System 1, 0, 0, 1 Task Manager 131795770645380149 0x7ff7c2a70000 1286144 C:\Windows\System32\Taskmgr.exe 1, 0, 0, 1 Microsoft® Windows® Operating System Task Manager 131795770645380149 0x7ffab2720000 606208 C:\Windows\System32\DUser.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows DirectUser Engine 131795770645380149 0x7ffab8190000 9191424 C:\Windows\System32\TwinUI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation TWINUI 131795770645380149 0x7ffabdbb0000 1736704 C:\Windows\System32\DUI70.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Подсистема DirectUI Windows 131795770645380149 0x7ffabdfa0000 393216 C:\Windows\System32\faultrep.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека отчетов о сбоях в пользовательском режиме Windows 131795770645380149 0x7ffabeb20000 385024 C:\Windows\System32\Windows.ApplicationModel.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows ApplicationModel API Server 131795770645380149 0x7ffac0bf0000 3559424 C:\Windows\System32\ActXPrxy.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation ActiveX Interface Marshaling Library 131795770645380149 0x7ffac21b0000 77824 C:\Windows\System32\srumapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation System Resource Usage Monitor API 131795770645380149 0x7ffac3cb0000 2772992 C:\Windows\SYSTEM32\iertutil.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служебная программа времени выполнения для Internet Explorer 131795770645380149 0x7ffac4000000 274432 C:\Windows\SYSTEM32\policymanager.dll 10.0.14393.2035 (rs1_release_inmarket.180110-1910) Microsoft Corporation Policy Manager DLL 131795770645380149 0x7ffac42a0000 659456 C:\Windows\System32\StateRepository.Core.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation StateRepository Core 131795770645380149 0x7ffac46d0000 4161536 C:\Windows\System32\Windows.StateRepository.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Сервер Windows StateRepository API Server 131795770645380149 0x7ffac4e70000 102400 C:\Windows\System32\samcli.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Security Accounts Manager Client DLL 131795770645380149 0x7ffac4ea0000 36864 C:\Windows\SYSTEM32\atlthunk.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation atlthunk.dll 131795770645380149 0x7ffac5350000 1765376 C:\Windows\System32\Windows.UI.Immersive.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation WINDOWS.UI.IMMERSIVE 131795770645380149 0x7ffac5630000 339968 C:\Windows\System32\thumbcache.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Кэш эскизов Майкрософт 131795770645380149 0x7ffac60e0000 221184 C:\Windows\System32\XmlLite.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft XmlLite Library 131795770645380149 0x7ffac6ac0000 835584 C:\Windows\System32\Windows.UI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Runtime UI Foundation DLL 131795770645380149 0x7ffac6bd0000 413696 C:\Windows\System32\OLEACC.dll 7.2.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Active Accessibility Core Component 131795770645380149 0x7ffac6c40000 2596864 C:\Windows\WinSxS\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.14393.953_none_42151e83c686086b\COMCTL32.dll 6.10 (rs1_release_inmarket.170303-1614) Microsoft Corporation Библиотека элементов управления взаимодействия с пользователем 131795770645380149 0x7ffac7580000 1077248 C:\Windows\SYSTEM32\MrmCoreR.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Windows MRM 131795770645380149 0x7ffac83d0000 106496 C:\Windows\SYSTEM32\dhcpcsvc.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служба DHCP-клиента 131795770645380149 0x7ffac83f0000 90112 C:\Windows\SYSTEM32\dhcpcsvc6.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиент DHCPv6 131795770645380149 0x7ffac8810000 45056 C:\Windows\SYSTEM32\WINNSI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Network Store Information RPC interface 131795770645380149 0x7ffac8dc0000 167936 C:\Windows\System32\dbgcore.DLL 10.0.14321.1024 (debuggers(dbg).160715-1616) Microsoft Windows Core Debugging Helpers 131795770645380149 0x7ffac8df0000 1646592 C:\Windows\System32\dbghelp.dll 10.0.14321.1024 (rs1_release.160715-1616) Microsoft Windows Image Helper 131795770645380149 0x7ffac90b0000 90112 C:\Windows\System32\wkscli.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Workstation Service Client DLL 131795770645380149 0x7ffac92e0000 1269760 C:\Windows\SYSTEM32\wintypes.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL основных типов Windows 131795770645380149 0x7ffac9f50000 1736704 C:\Windows\System32\WindowsCodecs.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Microsoft Windows Codecs Library 131795770645380149 0x7ffaca340000 1593344 C:\Windows\system32\propsys.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Система страниц свойств (Майкрософт) 131795770645380149 0x7ffaca4e0000 77824 C:\Windows\System32\WTSAPI32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Remote Desktop Session Host Server SDK APIs 131795770645380149 0x7ffaca570000 421888 C:\Windows\System32\Bcp47Langs.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation BCP47 Language Classes 131795770645380149 0x7ffaca5e0000 155648 C:\Windows\System32\dwmapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Интерфейс API диспетчера окон рабочего стола (Майкрософт) 131795770645380149 0x7ffaca610000 143360 C:\Windows\System32\SAMLIB.dll 10.0.14393.82 (rs1_release.160805-1735) Microsoft Corporation SAM Library DLL 131795770645380149 0x7ffacac60000 69632 C:\Windows\System32\credui.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Credential Manager User Interface 131795770645380149 0x7ffacadf0000 499712 C:\Windows\System32\apphelp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиентская библиотека совместимости приложений 131795770645380149 0x7ffacaf00000 610304 C:\Windows\System32\UxTheme.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека тем UxTheme (Microsoft) 131795770645380149 0x7ffacb140000 593920 C:\Windows\SYSTEM32\msvcp110_win.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Microsoft® STL110 C++ Runtime Library 131795770645380149 0x7ffacb1e0000 1163264 C:\Windows\System32\twinapi.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation twinapi.appcore 131795770645380149 0x7ffacb300000 364544 C:\Windows\SYSTEM32\VEEventDispatcher.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Visual Element Event dispatcher 131795770645380149 0x7ffacbd30000 229376 C:\Windows\System32\IPHLPAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API вспомогательного приложения IP 131795770645380149 0x7ffacbe20000 53248 C:\Windows\System32\netutils.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API Helpers DLL 131795770645380149 0x7ffacbe40000 126976 C:\Windows\System32\USERENV.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Userenv 131795770645380149 0x7ffacc5c0000 352256 C:\Windows\System32\WINSTA.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Winstation Library 131795770645380149 0x7ffacc620000 176128 C:\Windows\System32\bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795770645380149 0x7ffacc6e0000 61440 C:\Windows\System32\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795770645380149 0x7ffacc6f0000 311296 C:\Windows\System32\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795770645380149 0x7ffacc740000 81920 C:\Windows\System32\profapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Profile Basic API 131795770645380149 0x7ffacc8f0000 1003520 C:\Windows\System32\ucrtbase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645380149 0x7ffacc9f0000 434176 C:\Windows\System32\bcryptPrimitives.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Cryptographic Primitives Library 131795770645380149 0x7ffacca60000 122880 C:\Windows\System32\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795770645380149 0x7ffaccae0000 692224 C:\Windows\System32\shcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795770645380149 0x7ffaccb90000 7180288 C:\Windows\System32\windows.storage.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API хранения Microsoft WinRT 131795770645380149 0x7ffacd270000 2215936 C:\Windows\System32\KERNELBASE.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645380149 0x7ffacd710000 638976 C:\Windows\System32\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645380149 0x7ffacd7b0000 270336 C:\Windows\System32\cfgmgr32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Configuration Manager DLL 131795770645380149 0x7ffacd810000 22056960 C:\Windows\System32\SHELL32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Общая библиотека оболочки Windows 131795770645380149 0x7ffaced20000 782336 C:\Windows\System32\OLEAUT32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795770645380149 0x7ffacee50000 1183744 C:\Windows\System32\RPCRT4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795770645380149 0x7ffacef80000 32768 C:\Windows\System32\NSI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation NSI User-mode interface DLL 131795770645380149 0x7ffacef90000 647168 C:\Windows\System32\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795770645380149 0x7ffacf030000 651264 C:\Windows\System32\clbcatq.dll 2001.12.10941.16384 (rs1_release.160715-1616) Microsoft Corporation COM+ Configuration Catalog 131795770645380149 0x7ffacf0d0000 704512 C:\Windows\System32\KERNEL32.DLL 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645380149 0x7ffacf1e0000 1417216 C:\Windows\System32\MSCTF.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Серверная библиотека MSCTF 131795770645380149 0x7ffacf770000 212992 C:\Windows\System32\GDI32.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation GDI Client DLL 131795770645380149 0x7ffacf820000 434176 C:\Windows\System32\WS2_32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation 32-разрядная библиотека Windows Socket 2.0 131795770645380149 0x7ffacf890000 188416 C:\Windows\System32\IMM32.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Multi-User Windows IMM32 API Client DLL 131795770645380149 0x7ffacf8c0000 1462272 C:\Windows\System32\USER32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795770645380149 0x7ffacfb30000 2916352 C:\Windows\System32\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795770645380149 0x7ffacfe20000 663552 C:\Windows\System32\advapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795770645380149 0x7ffad0070000 1277952 C:\Windows\System32\ole32.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft OLE для Windows 131795770645380149 0x7ffad01b0000 335872 C:\Windows\System32\SHLWAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека небольших программ оболочки 131795770645380149 0x7ffad0210000 364544 C:\Windows\System32\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795770645380149 0x7ffad0270000 1908736 C:\Windows\SYSTEM32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 49 6724 580 4 00000000:000003e7 131765803507001117 0 0 0 Обязательная метка\Обязательный уровень системы NT AUTHORITY\СИСТЕМА QHActiveDefense.exe C:\Program Files (x86)\360\Total Security\safemon\QHActiveDefense.exe "C:\Program Files (x86)\360\Total Security\safemon\QHActiveDefense.exe" Qihoo 360 Technology Co. Ltd. 10,0,0,1008 360 Total Security 131795770645381706 0xd0000 983040 C:\Program Files (x86)\360\Total Security\safemon\QHActiveDefense.exe 10,0,0,1008 Qihoo 360 Technology Co. Ltd. 360 Total Security 131795771117425875 0x400000 2830336 C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe 1.0 131795770645381706 0x3c80000 12288 C:\Windows\SysWOW64\sfc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows File Protection 131795770645381706 0x5c020000 335872 C:\Windows\System32\wow64.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation Win32 Emulation on NT64 131795770645381706 0x5c080000 487424 C:\Windows\System32\wow64win.dll 10.0.14393.1884 (rs1_release.171101-1233) Microsoft Corporation Wow64 Console and Win32 API Logging 131795770645381706 0x5c100000 40960 C:\Windows\System32\wow64cpu.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation AMD64 Wow64 CPU 131795770645381706 0x5fb90000 2736128 C:\Program Files (x86)\360\Total Security\deepscan\deepscan.dll 3, 5, 1, 2130 Qihu 360 Software Co., Ltd. 360 Total Security Cloud Security 131795770645381706 0x5fec0000 794624 C:\Windows\SysWOW64\wbem\fastprox.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation WMI Custom Marshaller 131795770645381706 0x5ffa0000 421888 C:\Windows\SysWOW64\wbemcomn.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation WMI 131795770645381706 0x60010000 53248 C:\Windows\SysWOW64\wbem\wbemprox.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation WMI 131795770645381706 0x60190000 475136 C:\Program Files (x86)\360\Total Security\safemon\360SafeCamera.tpi 2, 0, 0, 1031 QIHU 360 SOFTWARE CO. LIMITED 360 Total Security Proactive Defense 131795770645381706 0x60210000 1269760 C:\Program Files (x86)\360\Total Security\deepscan\jcloudscan.dll 1, 0, 0, 1012 360.cn 360安全卫士 移动云查询模块 131795770645381706 0x604a0000 196608 C:\Program Files (x86)\360\Total Security\ipc\appdext.dll 1, 0, 0, 1483 360.cn 360安全卫士 木马防火墙模块 131795770645381706 0x604e0000 188416 C:\Program Files (x86)\360\Total Security\ipc\DrvUtility.dll 1, 0, 0, 1081 Qihu 360 Software Co., Ltd. 360 Internet Security 2013 Proactive Defense 131795770645381706 0x60510000 409600 C:\Program Files (x86)\360\Total Security\SafeScan.dll 1, 0, 0, 1074 Qihoo 360 Technology Co. Ltd. 360 Scan Util Module 131795770645381706 0x60580000 204800 C:\Program Files (x86)\360\Total Security\ScanStub.dll 1, 0, 0, 1014 Qihoo 360 Technology Co. Ltd. 360 Scan Util Module 131795770645381706 0x605c0000 249856 C:\Program Files (x86)\360\Total Security\netmon\360gameidentify.dll 1, 0, 1, 1050 360.cn 360流量防火墙 游戏识别模块 131795770645381706 0x60600000 200704 C:\Program Files (x86)\360\Total Security\safemon\WDRecord.dll 1, 0, 1, 1130 Qihu 360 Software Co., Ltd. 360 Internet Security Internet Protection 131795770645381706 0x60640000 430080 C:\Program Files (x86)\360\Total Security\netmon\Netgm.dll 9,0,0,1005 360.cn 360流量防火墙 游戏模式判断模块 131795770645381706 0x608d0000 159744 C:\Program Files (x86)\360\Total Security\safemon\safemonhlp.dll 1, 0, 0, 1265 Qihu 360 Software Co., Ltd. 360 Internet Security Internet Protection 131795770645381706 0x60a50000 479232 C:\Program Files (x86)\360\Total Security\deepscan\DsSysRepair.dll 1, 0, 0, 1062 QIHU360 SOFTWARE CO. LIMITED 360 Total Security System Repair Module 131795770645381706 0x60ad0000 352256 C:\Program Files (x86)\360\Total Security\360Common.dll 7, 3, 0, 3233 360.cn 360安全衛士 基礎模塊 131795770645381706 0x60b30000 1712128 C:\Program Files (x86)\360\Total Security\safemon\360safemonpro.tpi 3, 1, 1, 3140 Qihu 360 Software Co., Ltd. 360 Internet Security Internet Protection 131795770645381706 0x60ce0000 581632 C:\Program Files (x86)\360\Total Security\dynlenv.dll 1, 1, 0, 1016 360.cn dynlenv Dynamic Link Library 131795770645381706 0x61000000 184320 C:\Program Files (x86)\360\Total Security\ipc\qutmipc.dll 7, 3, 0, 1267 360.cn 360安全卫士 木马防火墙模块 131795770645381706 0x61030000 262144 C:\Program Files (x86)\360\Total Security\safemon\safehmpg.dll 3, 0, 0, 1160 Qihu 360 Software Co., Ltd. 360 Internet Security Browser HomePage Protection 131795770645381706 0x610d0000 1097728 C:\Program Files (x86)\360\Total Security\SoftMgr\SomAdvUtils.dll 3, 1, 1, 2020 360.cn 360 Safeguard PC Boost 131795770645381706 0x61380000 315392 C:\Program Files (x86)\360\Total Security\safemon\360bsmon.tpi 6, 8, 0, 1248 Qihu 360 Software Co., Ltd. 360 Total Security Active Protection 131795770645381706 0x61480000 2191360 C:\Program Files (x86)\360\Total Security\deepscan\qex\qex.dll 4.1.13.3366 Qihu 360 Software Co., Ltd. 360 Internet Security 2017 Antivirus 131795770645381706 0x616a0000 331776 C:\Program Files (x86)\360\Total Security\safemon\SelfProtectAPI2.dll 7, 1, 1, 1033 Qihu 360 Software Co., Ltd. 360 Total Security Proactive Defense 131795770645381706 0x61700000 483328 C:\Program Files (x86)\360\Total Security\safemon\360procmon.dll 7, 1, 1, 1221 Qihu 360 Software Co., Ltd. 360 Total Security Proactive Defense 131795770645381706 0x61780000 335872 C:\Program Files (x86)\360\Total Security\ipc\netdefender.dll 1, 0, 0, 1129 Qihu 360 Software Co., Ltd. 360 Internet Security Internet Protection 131795770645381706 0x617e0000 897024 C:\Program Files (x86)\360\Total Security\ipc\appd.dll 7, 3, 6, 3113 Qihu 360 Software Co., Ltd. 360 Total Security Proactive Defense 131795770645381706 0x61a30000 512000 C:\Program Files (x86)\360\Total Security\safemon\360HipsPopWnd.dll 7,3,2,1211 Qihoo 360 Technology Co. Ltd. 360 Internet Security Proactive Defense 131795770645381706 0x61ab0000 495616 C:\Program Files (x86)\360\Total Security\ipc\fileMgr.dll 7, 3, 0, 1963 Qihu 360 Software Co., Ltd. 360 Total Security Proactive Defense 131795770645381706 0x61b30000 3350528 C:\Program Files (x86)\360\Total Security\SoftMgr\somkernl.dll 2, 1, 0, 1130 360.cn 360软件管家 131795770645381706 0x61e70000 614400 C:\Program Files (x86)\360\Total Security\ipc\ipcservice.dll 7, 1, 2, 1643 Qihu 360 Software Co., Ltd. 360 Total Security Proactive Defense 131795770645381706 0x61f10000 1458176 C:\Program Files (x86)\360\Total Security\deepscan\cloudcom2.dll 3, 3, 10, 1288 Qihu 360 Software Co., Ltd. 360 Total Security 131795770645381706 0x621a0000 458752 C:\Program Files (x86)\360\Total Security\ipc\yhregd.dll 7, 2, 0, 1903 Qihu 360 Software Co., Ltd. 360 Total Security Proactive Defense 131795770645381706 0x62280000 454656 C:\Program Files (x86)\360\Total Security\SoftMgr\360SoftMgrS.dll 2, 1, 6, 1490 360.cn 360软件管家 服务模块 131795770645381706 0x622f0000 520192 C:\Program Files (x86)\360\Total Security\deepscan\heavygate.dll 3, 8, 11, 1 Qihu 360 Software Co., Ltd. 360 Total Security Cloud Security 131795770645381706 0x62370000 602112 C:\Program Files (x86)\360\Total Security\360util.dll 1.0.0.1485 360.cn 360安全卫士 公共模块 131795770645381706 0x62410000 352256 C:\Program Files (x86)\360\Total Security\CrashReport.dll 7, 0, 0, 1000 360.cn 360杀毒 异常捕获程序 131795770645381706 0x62470000 405504 C:\Program Files (x86)\360\Total Security\deepscan\qutmload.dll 7, 2, 1, 1279 360.cn 360安全卫士 木马防火墙模块 131795770645381706 0x624e0000 315392 C:\Program Files (x86)\360\Total Security\ipc\360box.dll 2, 0, 0, 1043 360.cn 360隔离沙箱模块 131795770645381706 0x62540000 278528 C:\Program Files (x86)\360\Total Security\360conf.dll 1, 0, 0, 1014 Qihu 360 Software Co., Ltd. 360 Internet Security Base Module 131795770645381706 0x62590000 987136 C:\Program Files (x86)\360\Total Security\360base.dll 1, 0, 0, 1165 360.cn 360安全卫士 基础模块 131795770645381706 0x62690000 266240 C:\Program Files (x86)\360\Total Security\deepscan\BAPI.dll 2.0.0.1191 360.cn BAPI 131795770645381706 0x627d0000 249856 C:\Windows\SysWOW64\edputil.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служебная программа EDP 131795770645381706 0x62980000 376832 C:\Program Files (x86)\360\Total Security\360NetBase.dll 7, 25, 0, 76 360.cn 360安全卫士 网络基础模块 131795770645381706 0x62b50000 106496 C:\Program Files (x86)\360\Total Security\i18n\ru\deepscan\DsRes.dll 1,0,0,1012 Qihu 360 Software Co., Ltd. 360 Total Security Cloud Security Resource 131795770645381706 0x62b70000 208896 C:\Program Files (x86)\360\Total Security\safemon\gamemode.tpi 9,0,0,1001 QIHU 360 SOFTWARE CO. LIMITED 360 Total Security Game Mode Control 131795770645381706 0x67130000 86016 C:\Windows\SysWOW64\devenum.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Перечисление устройств. 131795770645381706 0x67690000 61440 C:\Windows\SysWOW64\sfc_os.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows File Protection 131795770645381706 0x676a0000 61440 C:\Program Files (x86)\360\Total Security\ipc\x64for32lib.dll 6, 8, 0, 1059 360.cn 360安全卫士 木马防火墙模块 131795770645381706 0x676b0000 32768 C:\Windows\SysWOW64\fltlib.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека фильтров 131795770645381706 0x6b6c0000 36864 C:\Windows\SysWOW64\msdmo.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DMO Runtime 131795770645381706 0x6b6d0000 102400 C:\Program Files (x86)\360\Total Security\i18n.dll 1, 0, 0, 1016 Qihu 360 Software Co., Ltd. 360 Total Security 131795770645381706 0x6bf00000 3715072 C:\Windows\SysWOW64\msi.dll 5.0.14393.2155 Microsoft Corporation Windows Installer 131795770645381706 0x6cd50000 106496 C:\Windows\SysWOW64\SAMLIB.dll 10.0.14393.82 (rs1_release.160805-1735) Microsoft Corporation SAM Library DLL 131795770645381706 0x6cf60000 569344 C:\Windows\SysWOW64\taskschd.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Task Scheduler COM API 131795770645381706 0x6d080000 151552 C:\Windows\SysWOW64\cryptnet.dll 10.0.14393.2035 (rs1_release_inmarket.180110-1910) Microsoft Corporation Crypto Network Related API 131795770645381706 0x6ea80000 860160 C:\Program Files (x86)\360\Total Security\deepscan\QVM\360QVM.dll 5.0.2.1003 Qihu 360 Software Co., Ltd. 360 Internet Security QVM Engine 131795770645381706 0x6fcd0000 151552 C:\Windows\SysWOW64\dbgcore.DLL 10.0.14321.1024 (debuggers(dbg).160715-1616) Microsoft Windows Core Debugging Helpers 131795770645381706 0x6fd30000 139264 C:\Windows\SysWOW64\DEVOBJ.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Device Information Set DLL 131795770645381706 0x700d0000 434176 C:\Windows\SysWOW64\WINSPOOL.DRV 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Драйвер диспетчера очереди Windows 131795770645381706 0x70140000 274432 C:\Windows\SysWOW64\WINSTA.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Winstation Library 131795770645381706 0x70210000 966656 C:\Program Files (x86)\360\Total Security\deepscan\ave\AVEngine.dll 1, 0, 0, 2016 Qihu 360 Software Co., Ltd. 360 Internet Security 2013 AntiVirus Engine 131795770645381706 0x70300000 208896 C:\Program Files (x86)\360\Total Security\deepscan\ave\AVEI.dll 1, 0, 0, 2003 Qihu 360 Software Co., Ltd. 360 Internet Security 2013 AntiVirus Engine 131795770645381706 0x707d0000 86016 C:\Windows\SysWOW64\SAMCLI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Security Accounts Manager Client DLL 131795770645381706 0x70a40000 81920 C:\Windows\SysWOW64\NLAapi.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Network Location Awareness 2 131795770645381706 0x70a60000 90112 C:\Windows\SysWOW64\pnrpnsp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик пространства имен PNRP 131795770645381706 0x70b70000 163840 C:\Windows\SysWOW64\ntmarta.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик Windows NT MARTA 131795770645381706 0x70c00000 49152 C:\Windows\SysWOW64\winrnr.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation LDAP RnR Provider DLL 131795770645381706 0x70c10000 73728 C:\Windows\SysWOW64\napinsp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик оболочки совместимости для имен электронной почты 131795770645381706 0x70c30000 114688 C:\Windows\SysWOW64\srvcli.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Server Service Client DLL 131795770645381706 0x70ca0000 45056 C:\Windows\SysWOW64\NETUTILS.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API Helpers DLL 131795770645381706 0x70cb0000 65536 C:\Windows\SysWOW64\wkscli.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Workstation Service Client DLL 131795770645381706 0x70fd0000 1331200 C:\Windows\SysWOW64\dbghelp.dll 10.0.14321.1024 (rs1_release.160715-1616) Microsoft Windows Image Helper 131795770645381706 0x71140000 77824 C:\Windows\SysWOW64\NETAPI32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API DLL 131795770645381706 0x71610000 77824 C:\Windows\SysWOW64\dhcpcsvc6.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиент DHCPv6 131795770645381706 0x725e0000 2273280 C:\Windows\SysWOW64\iertutil.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служебная программа времени выполнения для Internet Explorer 131795770645381706 0x728e0000 1372160 C:\Windows\SysWOW64\propsys.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Система страниц свойств (Майкрософт) 131795770645381706 0x72a30000 188416 C:\Windows\SysWOW64\XmlLite.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft XmlLite Library 131795770645381706 0x72cc0000 1658880 C:\Windows\SysWOW64\urlmon.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширения OLE32 для Win32 131795770645381706 0x73a40000 32768 C:\Windows\SysWOW64\WINNSI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Network Store Information RPC interface 131795770645381706 0x73a50000 299008 C:\Windows\SysWOW64\fwpuclnt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API пользовательского режима FWP/IPsec 131795770645381706 0x73ab0000 32768 C:\Windows\SysWOW64\rasadhlp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Remote Access AutoDial Helper 131795770645381706 0x73ac0000 81920 C:\Windows\SysWOW64\dhcpcsvc.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служба DHCP-клиента 131795770645381706 0x73ae0000 40960 C:\Windows\SysWOW64\secur32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Security Support Provider Interface 131795770645381706 0x73c50000 1478656 C:\Windows\WinSxS\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.14393.1715_none_f67438d2f2547a00\gdiplus.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Microsoft GDI+ 131795770645381706 0x73ee0000 61440 C:\Windows\SysWOW64\WTSAPI32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Remote Desktop Session Host Server SDK APIs 131795770645381706 0x73ef0000 24576 C:\Windows\SysWOW64\MSIMG32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation GDIEXT Client DLL 131795770645381706 0x73f00000 192512 C:\Windows\SysWOW64\IPHLPAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API вспомогательного приложения IP 131795770645381706 0x73f30000 512000 C:\Windows\SysWOW64\dnsapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Динамическая библиотека API DNS-клиента 131795770645381706 0x73ff0000 319488 C:\Windows\SysWOW64\mswsock.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширение поставщика службы API Microsoft Windows Sockets 2.0 131795770645381706 0x74040000 126976 C:\Windows\SysWOW64\gpapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиентские функции API групповой политики 131795770645381706 0x74060000 192512 C:\Windows\SysWOW64\rsaenh.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Enhanced Cryptographic Provider 131795770645381706 0x74190000 110592 C:\Windows\SysWOW64\bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795770645381706 0x741b0000 77824 C:\Windows\SysWOW64\CRYPTSP.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Cryptographic Service Provider API 131795770645381706 0x741f0000 143360 C:\Windows\SysWOW64\WINMMBASE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base Multimedia Extension API DLL 131795770645381706 0x74230000 147456 C:\Windows\SysWOW64\WINMM.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation MCI API DLL 131795770645381706 0x74260000 2514944 C:\Windows\SysWOW64\WININET.dll 11.00.14393.447 (rs1_release_inmarket.161102-0100) Microsoft Corporation Расширения Интернета для Win32 131795770645381706 0x746e0000 32768 C:\Windows\SysWOW64\VERSION.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Version Checking and File Installation Libraries 131795770645381706 0x746f0000 106496 C:\Windows\SysWOW64\USERENV.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Userenv 131795770645381706 0x74710000 90112 C:\Windows\SysWOW64\MPR.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека маршрутизации для нескольких служб доступа 131795770645381706 0x74730000 598016 C:\Windows\SysWOW64\apphelp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиентская библиотека совместимости приложений 131795770645381706 0x747d0000 40960 C:\Windows\SysWOW64\CRYPTBASE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base cryptographic API DLL 131795770645381706 0x747e0000 126976 C:\Windows\SysWOW64\SspiCli.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Security Support Provider Interface 131795770645381706 0x74910000 2170880 C:\Windows\SysWOW64\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795770645381706 0x74b30000 53248 C:\Windows\SysWOW64\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795770645381706 0x74b40000 102400 C:\Windows\SysWOW64\imagehlp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT Image Helper 131795770645381706 0x74b60000 790528 C:\Windows\SysWOW64\RPCRT4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795770645381706 0x74c30000 1417216 C:\Windows\SysWOW64\gdi32full.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation GDI Client DLL 131795770645381706 0x74d90000 24576 C:\Windows\SysWOW64\PSAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Process Status Helper 131795770645381706 0x74da0000 778240 C:\Windows\SysWOW64\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795770645381706 0x74e60000 557056 C:\Windows\SysWOW64\shcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795770645381706 0x74ef0000 540672 C:\Windows\SysWOW64\clbcatq.dll 2001.12.10941.16384 (rs1_release.160715-1616) Microsoft Corporation COM+ Configuration Catalog 131795770645381706 0x74f80000 278528 C:\Windows\SysWOW64\WINTRUST.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation Microsoft Trust Verification APIs 131795770645381706 0x74fd0000 405504 C:\Windows\SysWOW64\WS2_32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation 32-разрядная библиотека Windows Socket 2.0 131795770645381706 0x75040000 282624 C:\Windows\SysWOW64\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795770645381706 0x751d0000 57344 C:\Windows\SysWOW64\MSASN1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ASN.1 Runtime APIs 131795770645381706 0x751e0000 1708032 C:\Windows\SysWOW64\KERNELBASE.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645381706 0x75390000 266240 C:\Windows\SysWOW64\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795770645381706 0x753e0000 1560576 C:\Windows\SysWOW64\CRYPT32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API32 криптографии 131795770645381706 0x75560000 487424 C:\Windows\SysWOW64\ADVAPI32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795770645381706 0x756c0000 5693440 C:\Windows\SysWOW64\windows.storage.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API хранения Microsoft WinRT 131795770645381706 0x75c30000 372736 C:\Windows\SysWOW64\coml2.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft COM for Windows 131795770645381706 0x75c90000 286720 C:\Windows\SysWOW64\shlwapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека небольших программ оболочки 131795770645381706 0x75ce0000 20811776 C:\Windows\SysWOW64\SHELL32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Общая библиотека оболочки Windows 131795770645381706 0x770c0000 4239360 C:\Windows\SysWOW64\SETUPAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Setup API 131795770645381706 0x774d0000 86016 C:\Windows\SysWOW64\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795770645381706 0x774f0000 61440 C:\Windows\SysWOW64\profapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Profile Basic API 131795770645381706 0x77560000 1437696 C:\Windows\SysWOW64\USER32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795770645381706 0x776c0000 368640 C:\Windows\SysWOW64\bcryptPrimitives.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation Windows Cryptographic Primitives Library 131795770645381706 0x77780000 503808 C:\Windows\SysWOW64\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645381706 0x77800000 606208 C:\Windows\SysWOW64\OLEAUT32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795770645381706 0x77ac0000 966656 C:\Windows\SysWOW64\ole32.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft OLE для Windows 131795770645381706 0x77bb0000 176128 C:\Windows\SysWOW64\GDI32.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation GDI Client DLL 131795770645381706 0x77cd0000 221184 C:\Windows\SysWOW64\cfgmgr32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Configuration Manager DLL 131795770645381706 0x77d10000 28672 C:\Windows\SysWOW64\NSI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation NSI User-mode interface DLL 131795770645381706 0x77d20000 1585152 C:\Windows\SysWOW64\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 131795770645381706 0x7ffad0270000 1908736 C:\Windows\SYSTEM32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 50 6340 6724 49 00000000:0031f1ab 131765803510844292 0 0 0 Обязательная метка\Высокий обязательный уровень WIN-0UOTFKKVN1S\User QHSafeTray.exe C:\Program Files (x86)\360\Total Security\safemon\QHSafeTray.exe /showtrayicon Qihoo 360 Technology Co. Ltd. 10,0,0,1024 360 Total Security 131795770645381850 0xec0000 2351104 C:\Program Files (x86)\360\Total Security\safemon\QHSafeTray.exe 10,0,0,1024 Qihoo 360 Technology Co. Ltd. 360 Total Security 131795770645381850 0x68f0000 12288 C:\Windows\SysWOW64\sfc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows File Protection 131795770645381850 0x5c020000 335872 C:\Windows\System32\wow64.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation Win32 Emulation on NT64 131795770645381850 0x5c080000 487424 C:\Windows\System32\wow64win.dll 10.0.14393.1884 (rs1_release.171101-1233) Microsoft Corporation Wow64 Console and Win32 API Logging 131795770645381850 0x5c100000 40960 C:\Windows\System32\wow64cpu.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation AMD64 Wow64 CPU 131795770645381850 0x5c480000 245760 C:\Program Files (x86)\360\Total Security\PDown.dll 1, 3, 0, 1420 Qihu 360 Software Co., Ltd. 360 Security Center Network Module 131795770645381850 0x5fe30000 581632 C:\Program Files (x86)\360\Total Security\safemon\wdui2.dll 9,6,0,1001 131795770645381850 0x60020000 413696 C:\Program Files (x86)\360\Total Security\netmon\360netctrl.dll 5, 3, 15, 2232 360.cn 360 Total Security NetwokrMonCtrl 131795770645381850 0x60090000 335872 C:\Program Files (x86)\360\Total Security\safemon\netmon.tpi 5, 1, 1, 3157 Qihoo 360 Technology Co. Ltd. 360安全卫士 流量防火墙模块 131795770645381850 0x60350000 1331200 C:\Program Files (x86)\360\Total Security\ToolBox.dll 1, 0, 0, 1094 Qihoo 360 Technology Co. Ltd. 360 Total Security 131795770645381850 0x60600000 200704 C:\Program Files (x86)\360\Total Security\safemon\WDRecord.dll 1, 0, 1, 1130 Qihu 360 Software Co., Ltd. 360 Internet Security Internet Protection 131795770645381850 0x606b0000 598016 C:\Program Files (x86)\360\Total Security\safemon\spsafe.dll 1, 0, 0, 1120 Qihu 360 Software Co., Ltd. 360 Internet Security Internet Protection 131795770645381850 0x60750000 1556480 C:\Program Files (x86)\360\Total Security\safemon\safemon.dll 8, 4, 0, 1420 Qihu 360 Software Co., Ltd. 360 Internet Security Internet Protection 131795770645381850 0x608d0000 159744 C:\Program Files (x86)\360\Total Security\safemon\safemonhlp.dll 1, 0, 0, 1265 Qihu 360 Software Co., Ltd. 360 Internet Security Internet Protection 131795770645381850 0x609b0000 241664 C:\Program Files (x86)\360\Total Security\safemon\360GuardBase.dll 3, 1, 0, 1060 360.cn 360保镖 131795770645381850 0x60ad0000 352256 C:\Program Files (x86)\360\Total Security\360Common.dll 7, 3, 0, 3233 360.cn 360安全衛士 基礎模塊 131795770645381850 0x60b30000 1712128 C:\Program Files (x86)\360\Total Security\safemon\360safemonpro.tpi 3, 1, 1, 3140 Qihu 360 Software Co., Ltd. 360 Internet Security Internet Protection 131795770645381850 0x60ce0000 581632 C:\Program Files (x86)\360\Total Security\dynlenv.dll 1, 1, 0, 1016 360.cn dynlenv Dynamic Link Library 131795770645381850 0x61070000 393216 C:\Program Files (x86)\360\Total Security\safemon\SomProxy.dll 1, 0, 0, 1900 Qihu 360 Software Co., Ltd. 360 Internet Security Internet Protection 131795770645381850 0x611e0000 1662976 C:\Program Files (x86)\360\Total Security\safemon\360connect.tpi 9,2,0,1030 QIHU 360 SOFTWARE CO. LIMITED 360 Connect 131795770645381850 0x61380000 315392 C:\Program Files (x86)\360\Total Security\safemon\360bsmon.tpi 6, 8, 0, 1248 Qihu 360 Software Co., Ltd. 360 Total Security Active Protection 131795770645381850 0x613d0000 667648 C:\Windows\WinSxS\x86_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.9247_none_5090cb78bcba4a35\MSVCR90.dll 9.00.30729.9247 Microsoft Corporation Microsoft® C Runtime Library 131795770645381850 0x618c0000 1478656 C:\Program Files (x86)\360\Total Security\sites.dll 11, 1, 0, 1212 360.cn 360安全卫士 131795770645381850 0x61a30000 512000 C:\Program Files (x86)\360\Total Security\safemon\360hipsPopWnd.dll 7,3,2,1211 Qihoo 360 Technology Co. Ltd. 360 Internet Security Proactive Defense 131795770645381850 0x61b30000 3350528 C:\Program Files (x86)\360\Total Security\softmgr\somkernl.dll 2, 1, 0, 1130 360.cn 360软件管家 131795770645381850 0x61e70000 614400 C:\Program Files (x86)\360\Total Security\ipc\ipcservice.dll 7, 1, 2, 1643 Qihu 360 Software Co., Ltd. 360 Total Security Proactive Defense 131795770645381850 0x61f10000 1458176 C:\Program Files (x86)\360\Total Security\deepscan\Cloudcom2.dll 3, 3, 10, 1288 Qihu 360 Software Co., Ltd. 360 Total Security 131795770645381850 0x62210000 446464 C:\Program Files (x86)\360\Total Security\360TSCommon.dll 9, 0, 0, 1016 QIHU 360 SOFTWARE CO. LIMITED 360 Total Security 131795770645381850 0x622f0000 520192 C:\Program Files (x86)\360\Total Security\deepscan\heavygate.dll 3, 8, 11, 1 Qihu 360 Software Co., Ltd. 360 Total Security Cloud Security 131795770645381850 0x62370000 602112 C:\Program Files (x86)\360\Total Security\360util.dll 1.0.0.1485 360.cn 360安全卫士 公共模块 131795770645381850 0x62410000 352256 C:\Program Files (x86)\360\Total Security\CrashReport.dll 7, 0, 0, 1000 360.cn 360杀毒 异常捕获程序 131795770645381850 0x62540000 278528 C:\Program Files (x86)\360\Total Security\360conf.dll 1, 0, 0, 1014 Qihu 360 Software Co., Ltd. 360 Internet Security Base Module 131795770645381850 0x62590000 987136 C:\Program Files (x86)\360\Total Security\360base.dll 1, 0, 0, 1165 360.cn 360安全卫士 基础模块 131795770645381850 0x62690000 266240 C:\Program Files (x86)\360\Total Security\deepscan\BAPI.dll 2.0.0.1191 360.cn BAPI 131795770645381850 0x627d0000 249856 C:\Windows\SysWOW64\edputil.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служебная программа EDP 131795770645381850 0x62960000 77824 C:\Program Files (x86)\360\Total Security\safemon\CleanPlusCache.tpi 1, 0, 0, 1004 QIHU 360 SOFTWARE CO. LIMITED CleanPlusCache 131795770645381850 0x62980000 376832 C:\Program Files (x86)\360\Total Security\360NetBase.dll 7, 25, 0, 76 360.cn 360安全卫士 网络基础模块 131795770645381850 0x67500000 1597440 C:\Windows\SysWOW64\ActXPrxy.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation ActiveX Interface Marshaling Library 131795770645381850 0x67690000 61440 C:\Windows\SysWOW64\sfc_os.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows File Protection 131795770645381850 0x676a0000 61440 C:\Program Files (x86)\360\Total Security\ipc\x64for32lib.dll 6, 8, 0, 1059 360.cn 360安全卫士 木马防火墙模块 131795771279916892 0x68850000 2764800 C:\Windows\SysWOW64\msftedit.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Элемент управления "Поле ввода форматированного текста", версия 8.5 131795770645381850 0x6b6d0000 102400 C:\Program Files (x86)\360\Total Security\i18n.dll 1, 0, 0, 1016 Qihu 360 Software Co., Ltd. 360 Total Security 131795770645381850 0x6bf00000 3715072 C:\Windows\SysWOW64\msi.dll 5.0.14393.2155 Microsoft Corporation Windows Installer 131795770645381850 0x6c290000 987136 C:\Windows\SysWOW64\twinapi.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation twinapi.appcore 131795770645381850 0x6c390000 1126400 C:\Windows\SysWOW64\dcomp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft DirectComposition Library 131795770645381850 0x6c4b0000 278528 C:\Windows\SysWOW64\dataexchange.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation Data exchange 131795770645381850 0x6e6e0000 151552 C:\Windows\SysWOW64\globinputhost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Globalization Extension API for Input 131795770645381850 0x6e710000 335872 C:\Windows\SysWOW64\Bcp47Langs.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation BCP47 Language Classes 131795770645381850 0x6e770000 1269760 C:\Windows\SysWOW64\Windows.Globalization.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Globalization 131795770645381850 0x6eed0000 274432 C:\Windows\SysWOW64\thumbcache.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Кэш эскизов Майкрософт 131795770645381850 0x6fc70000 385024 C:\Windows\SysWOW64\FirewallAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API брандмауэра Windows 131795770645381850 0x6fcd0000 151552 C:\Windows\SysWOW64\dbgcore.DLL 10.0.14321.1024 (debuggers(dbg).160715-1616) Microsoft Windows Core Debugging Helpers 131795770645381850 0x700d0000 434176 C:\Windows\SysWOW64\WINSPOOL.DRV 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Драйвер диспетчера очереди Windows 131795770645381850 0x70140000 274432 C:\Windows\SysWOW64\WINSTA.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Winstation Library 131795770645381850 0x70340000 536576 C:\Windows\SysWOW64\dxgi.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation DirectX Graphics Infrastructure 131795770645381850 0x703d0000 2056192 C:\Windows\SysWOW64\DWrite.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Службы Microsoft DirectX Typography 131795770645381850 0x705e0000 344064 C:\Windows\SysWOW64\OLEACC.dll 7.2.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Active Accessibility Core Component 131795770645381850 0x70640000 1499136 C:\Windows\SysWOW64\WindowsCodecs.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Microsoft Windows Codecs Library 131795770645381850 0x707b0000 110592 C:\Windows\SysWOW64\ncryptsslp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft SChannel Provider 131795770645381850 0x707f0000 2293760 C:\Windows\SysWOW64\d3d11.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation Direct3D 11 Runtime 131795770645381850 0x70a40000 81920 C:\Windows\SysWOW64\NLAapi.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Network Location Awareness 2 131795770645381850 0x70a60000 90112 C:\Windows\SysWOW64\pnrpnsp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик пространства имен PNRP 131795770645381850 0x70a80000 409600 C:\Windows\SysWOW64\schannel.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик безопасности TLS/SSL 131795770645381850 0x70b40000 69632 C:\Windows\SysWOW64\mskeyprotect.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик защиты ключей (Майкрософт) 131795770645381850 0x70b70000 163840 C:\Windows\SysWOW64\ntmarta.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик Windows NT MARTA 131795770645381850 0x70ba0000 188416 C:\Windows\SysWOW64\FWPolicyIOMgr.dll 10.0.14393.2189 (rs1_release.180329-1711) Microsoft Corporation FwPolicyIoMgr DLL 131795770645381850 0x70bd0000 147456 C:\Windows\SysWOW64\fwbase.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Firewall Base DLL 131795770645381850 0x70c00000 49152 C:\Windows\SysWOW64\winrnr.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation LDAP RnR Provider DLL 131795770645381850 0x70c10000 73728 C:\Windows\SysWOW64\napinsp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик оболочки совместимости для имен электронной почты 131795770645381850 0x70c30000 114688 C:\Windows\SysWOW64\SRVCLI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Server Service Client DLL 131795770645381850 0x70ca0000 45056 C:\Windows\SysWOW64\NETUTILS.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API Helpers DLL 131795770645381850 0x70cc0000 65536 C:\Windows\SysWOW64\ondemandconnroutehelper.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation On Demand Connctiond Route Helper 131795770645381850 0x70e60000 176128 C:\Windows\SysWOW64\NTASN1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft ASN.1 API 131795770645381850 0x70fd0000 1331200 C:\Windows\SysWOW64\dbghelp.dll 10.0.14321.1024 (rs1_release.160715-1616) Microsoft Windows Image Helper 131795770645381850 0x71140000 77824 C:\Windows\SysWOW64\NETAPI32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API DLL 131795770645381850 0x71170000 466944 C:\Program Files (x86)\360\Total Security\deepscan\CQhCltHttpW.dll 1, 4, 0, 1030 QIHU 360 SOFTWARE CO. LIMITED 360 Internet Security Base Module 131795770645381850 0x71610000 77824 C:\Windows\SysWOW64\dhcpcsvc6.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиент DHCPv6 131795770645381850 0x725e0000 2273280 C:\Windows\SysWOW64\iertutil.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служебная программа времени выполнения для Internet Explorer 131795770645381850 0x728e0000 1372160 C:\Windows\SysWOW64\PROPSYS.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Система страниц свойств (Майкрософт) 131795770645381850 0x72b90000 126976 C:\Windows\SysWOW64\dwmapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Интерфейс API диспетчера окон рабочего стола (Майкрософт) 131795770645381850 0x72cc0000 1658880 C:\Windows\SysWOW64\urlmon.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширения OLE32 для Win32 131795770645381850 0x73a40000 32768 C:\Windows\SysWOW64\WINNSI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Network Store Information RPC interface 131795770645381850 0x73a50000 299008 C:\Windows\SysWOW64\fwpuclnt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API пользовательского режима FWP/IPsec 131795770645381850 0x73ab0000 32768 C:\Windows\SysWOW64\rasadhlp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Remote Access AutoDial Helper 131795770645381850 0x73ac0000 81920 C:\Windows\SysWOW64\dhcpcsvc.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служба DHCP-клиента 131795770645381850 0x73ae0000 40960 C:\Windows\SysWOW64\Secur32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Security Support Provider Interface 131795770645381850 0x73c50000 1478656 C:\Windows\WinSxS\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.14393.1715_none_f67438d2f2547a00\gdiplus.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Microsoft GDI+ 131795770645381850 0x73ee0000 61440 C:\Windows\SysWOW64\WTSAPI32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Remote Desktop Session Host Server SDK APIs 131795770645381850 0x73ef0000 24576 C:\Windows\SysWOW64\MSIMG32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation GDIEXT Client DLL 131795770645381850 0x73f00000 192512 C:\Windows\SysWOW64\IPHLPAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API вспомогательного приложения IP 131795770645381850 0x73f30000 512000 C:\Windows\SysWOW64\DNSAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Динамическая библиотека API DNS-клиента 131795770645381850 0x73ff0000 319488 C:\Windows\SysWOW64\mswsock.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширение поставщика службы API Microsoft Windows Sockets 2.0 131795770645381850 0x74060000 192512 C:\Windows\SysWOW64\rsaenh.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Enhanced Cryptographic Provider 131795770645381850 0x74110000 479232 C:\Windows\SysWOW64\uxtheme.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека тем UxTheme (Microsoft) 131795770645381850 0x74190000 110592 C:\Windows\SysWOW64\bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795770645381850 0x741b0000 77824 C:\Windows\SysWOW64\CRYPTSP.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Cryptographic Service Provider API 131795770645381850 0x741f0000 143360 C:\Windows\SysWOW64\WINMMBASE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base Multimedia Extension API DLL 131795770645381850 0x74230000 147456 C:\Windows\SysWOW64\WINMM.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation MCI API DLL 131795770645381850 0x74260000 2514944 C:\Windows\SysWOW64\WININET.dll 11.00.14393.447 (rs1_release_inmarket.161102-0100) Microsoft Corporation Расширения Интернета для Win32 131795770645381850 0x744d0000 2138112 C:\Windows\WinSxS\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.14393.953_none_89c2555adb023171\COMCTL32.dll 6.10 (rs1_release_inmarket.170303-1614) Microsoft Corporation Библиотека элементов управления взаимодействия с пользователем 131795770645381850 0x746e0000 32768 C:\Windows\SysWOW64\VERSION.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Version Checking and File Installation Libraries 131795770645381850 0x746f0000 106496 C:\Windows\SysWOW64\USERENV.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Userenv 131795770645381850 0x74730000 598016 C:\Windows\SysWOW64\apphelp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиентская библиотека совместимости приложений 131795770645381850 0x747d0000 40960 C:\Windows\SysWOW64\CRYPTBASE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base cryptographic API DLL 131795770645381850 0x747e0000 126976 C:\Windows\SysWOW64\SspiCli.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Security Support Provider Interface 131795770645381850 0x74800000 151552 C:\Windows\SysWOW64\IMM32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Multi-User Windows IMM32 API Client DLL 131795770645381850 0x74910000 2170880 C:\Windows\SysWOW64\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795770645381850 0x74b30000 53248 C:\Windows\SysWOW64\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795770645381850 0x74b40000 102400 C:\Windows\SysWOW64\imagehlp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT Image Helper 131795770645381850 0x74b60000 790528 C:\Windows\SysWOW64\RPCRT4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795770645381850 0x74c30000 1417216 C:\Windows\SysWOW64\gdi32full.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation GDI Client DLL 131795770645381850 0x74d90000 24576 C:\Windows\SysWOW64\PSAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Process Status Helper 131795770645381850 0x74da0000 778240 C:\Windows\SysWOW64\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795770645381850 0x74e60000 557056 C:\Windows\SysWOW64\shcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795770645381850 0x74ef0000 540672 C:\Windows\SysWOW64\clbcatq.dll 2001.12.10941.16384 (rs1_release.160715-1616) Microsoft Corporation COM+ Configuration Catalog 131795770645381850 0x74f80000 278528 C:\Windows\SysWOW64\WINTRUST.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation Microsoft Trust Verification APIs 131795770645381850 0x74fd0000 405504 C:\Windows\SysWOW64\WS2_32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation 32-разрядная библиотека Windows Socket 2.0 131795770645381850 0x75040000 282624 C:\Windows\SysWOW64\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795770645381850 0x75090000 1265664 C:\Windows\SysWOW64\MSCTF.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Серверная библиотека MSCTF 131795770645381850 0x751d0000 57344 C:\Windows\SysWOW64\MSASN1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ASN.1 Runtime APIs 131795770645381850 0x751e0000 1708032 C:\Windows\SysWOW64\KERNELBASE.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645381850 0x75390000 266240 C:\Windows\SysWOW64\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795770645381850 0x753e0000 1560576 C:\Windows\SysWOW64\CRYPT32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API32 криптографии 131795770645381850 0x75560000 487424 C:\Windows\SysWOW64\ADVAPI32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795770645381850 0x756c0000 5693440 C:\Windows\SysWOW64\windows.storage.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API хранения Microsoft WinRT 131795770645381850 0x75c30000 372736 C:\Windows\SysWOW64\coml2.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft COM for Windows 131795770645381850 0x75c90000 286720 C:\Windows\SysWOW64\shlwapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека небольших программ оболочки 131795770645381850 0x75ce0000 20811776 C:\Windows\SysWOW64\SHELL32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Общая библиотека оболочки Windows 131795770645381850 0x770c0000 4239360 C:\Windows\SysWOW64\SETUPAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Setup API 131795770645381850 0x774d0000 86016 C:\Windows\SysWOW64\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795770645381850 0x774f0000 61440 C:\Windows\SysWOW64\profapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Profile Basic API 131795770645381850 0x77560000 1437696 C:\Windows\SysWOW64\USER32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795770645381850 0x776c0000 368640 C:\Windows\SysWOW64\bcryptPrimitives.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation Windows Cryptographic Primitives Library 131795770645381850 0x77780000 503808 C:\Windows\SysWOW64\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645381850 0x77800000 606208 C:\Windows\SysWOW64\OLEAUT32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795770645381850 0x77ac0000 966656 C:\Windows\SysWOW64\ole32.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft OLE для Windows 131795770645381850 0x77bb0000 176128 C:\Windows\SysWOW64\GDI32.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation GDI Client DLL 131795770645381850 0x77cd0000 221184 C:\Windows\SysWOW64\cfgmgr32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Configuration Manager DLL 131795770645381850 0x77d10000 28672 C:\Windows\SysWOW64\NSI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation NSI User-mode interface DLL 131795770645381850 0x77d20000 1585152 C:\Windows\SysWOW64\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 131795770645381850 0x7ffad0270000 1908736 C:\Windows\SYSTEM32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 51 6860 6724 49 00000000:000003e7 131765803555957830 0 0 0 Обязательная метка\Обязательный уровень системы NT AUTHORITY\СИСТЕМА QHWatchdog.exe C:\Program Files (x86)\360\Total Security\safemon\QHWatchdog.exe "C:\Program Files (x86)\360\Total Security\safemon\QHWatchdog.exe" /watch QIHU 360 SOFTWARE CO. LIMITED 8,2,0,1000 360 Total Security 131795770645381936 0xdf0000 139264 C:\Program Files (x86)\360\Total Security\safemon\QHWatchdog.exe 8,2,0,1000 QIHU 360 SOFTWARE CO. LIMITED 360 Total Security 131795770645381936 0x5c020000 335872 C:\Windows\System32\wow64.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation Win32 Emulation on NT64 131795770645381936 0x5c080000 487424 C:\Windows\System32\wow64win.dll 10.0.14393.1884 (rs1_release.171101-1233) Microsoft Corporation Wow64 Console and Win32 API Logging 131795770645381936 0x5c100000 40960 C:\Windows\System32\wow64cpu.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation AMD64 Wow64 CPU 131795770645381936 0x74730000 598016 C:\Windows\SysWOW64\apphelp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиентская библиотека совместимости приложений 131795770645381936 0x747d0000 40960 C:\Windows\SysWOW64\CRYPTBASE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base cryptographic API DLL 131795770645381936 0x747e0000 126976 C:\Windows\SysWOW64\SspiCli.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Security Support Provider Interface 131795770645381936 0x74910000 2170880 C:\Windows\SysWOW64\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795770645381936 0x74b60000 790528 C:\Windows\SysWOW64\RPCRT4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795770645381936 0x74c30000 1417216 C:\Windows\SysWOW64\gdi32full.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation GDI Client DLL 131795770645381936 0x74da0000 778240 C:\Windows\SysWOW64\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795770645381936 0x74e60000 557056 C:\Windows\SysWOW64\shcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795770645381936 0x751e0000 1708032 C:\Windows\SysWOW64\KERNELBASE.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645381936 0x75390000 266240 C:\Windows\SysWOW64\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795770645381936 0x75560000 487424 C:\Windows\SysWOW64\ADVAPI32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795770645381936 0x755e0000 917504 C:\Windows\SysWOW64\KERNEL32.DLL 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645381936 0x75c90000 286720 C:\Windows\SysWOW64\SHLWAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека небольших программ оболочки 131795770645381936 0x774d0000 86016 C:\Windows\SysWOW64\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795770645381936 0x77560000 1437696 C:\Windows\SysWOW64\USER32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795770645381936 0x776c0000 368640 C:\Windows\SysWOW64\bcryptPrimitives.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation Windows Cryptographic Primitives Library 131795770645381936 0x77bb0000 176128 C:\Windows\SysWOW64\GDI32.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation GDI Client DLL 131795770645381936 0x77d20000 1585152 C:\Windows\SysWOW64\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 131795770645381936 0x7ffad0270000 1908736 C:\Windows\SYSTEM32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 52 5924 664 6 00000000:000003e4 131765805232900810 0 0 0 Обязательная метка\Обязательный уровень системы NT AUTHORITY\NETWORK SERVICE wmiprvse.exe C:\Windows\sysWOW64\wbem\wmiprvse.exe C:\Windows\sysWOW64\wbem\wmiprvse.exe -Embedding Microsoft Corporation 10.0.14393.2155 (rs1_release_1.180305-1842) WMI Provider Host 131795770645382027 0x950000 434176 C:\Windows\sysWOW64\wbem\wmiprvse.exe 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation WMI Provider Host 131795770645382027 0x5c020000 335872 C:\Windows\System32\wow64.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation Win32 Emulation on NT64 131795770645382027 0x5c080000 487424 C:\Windows\System32\wow64win.dll 10.0.14393.1884 (rs1_release.171101-1233) Microsoft Corporation Wow64 Console and Win32 API Logging 131795770645382027 0x5c100000 40960 C:\Windows\System32\wow64cpu.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation AMD64 Wow64 CPU 131795770645382027 0x5fec0000 794624 C:\Windows\SysWOW64\wbem\FastProx.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation WMI Custom Marshaller 131795770645382027 0x5ffa0000 421888 C:\Windows\SysWOW64\wbemcomn.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation WMI 131795770645382027 0x60130000 36864 C:\Windows\SysWOW64\storagewmi_passthru.dll 10.0.14393.103 (rs1_release_inmarket.160819-1924) Microsoft Corporation WMI PassThru Provider for Storage Management 131795770645382027 0x60140000 114688 C:\Windows\SysWOW64\wbem\wmiutils.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation WMI 131795770645382027 0x60160000 73728 C:\Windows\SysWOW64\NCObjAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation 131795770645382027 0x604d0000 36864 C:\Windows\SysWOW64\delegatorprovider.dll 10.0.14393.103 (rs1_release_inmarket.160819-1924) Microsoft Corporation WMI PassThru Provider for Storage Management 131795770645382027 0x74190000 110592 C:\Windows\SysWOW64\bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795770645382027 0x747d0000 40960 C:\Windows\SysWOW64\CRYPTBASE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base cryptographic API DLL 131795770645382027 0x747e0000 126976 C:\Windows\SysWOW64\SspiCli.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Security Support Provider Interface 131795770645382027 0x74910000 2170880 C:\Windows\SysWOW64\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795770645382027 0x74b30000 53248 C:\Windows\SysWOW64\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795770645382027 0x74b60000 790528 C:\Windows\SysWOW64\RPCRT4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795770645382027 0x74c30000 1417216 C:\Windows\SysWOW64\gdi32full.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation GDI Client DLL 131795770645382027 0x74da0000 778240 C:\Windows\SysWOW64\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795770645382027 0x74ef0000 540672 C:\Windows\SysWOW64\clbcatq.dll 2001.12.10941.16384 (rs1_release.160715-1616) Microsoft Corporation COM+ Configuration Catalog 131795770645382027 0x74fd0000 405504 C:\Windows\SysWOW64\WS2_32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation 32-разрядная библиотека Windows Socket 2.0 131795770645382027 0x751e0000 1708032 C:\Windows\SysWOW64\KERNELBASE.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645382027 0x75390000 266240 C:\Windows\SysWOW64\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795770645382027 0x75560000 487424 C:\Windows\SysWOW64\advapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795770645382027 0x755e0000 917504 C:\Windows\SysWOW64\KERNEL32.DLL 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645382027 0x774d0000 86016 C:\Windows\SysWOW64\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795770645382027 0x77560000 1437696 C:\Windows\SysWOW64\user32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795770645382027 0x776c0000 368640 C:\Windows\SysWOW64\bcryptPrimitives.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation Windows Cryptographic Primitives Library 131795770645382027 0x77780000 503808 C:\Windows\SysWOW64\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645382027 0x77800000 606208 C:\Windows\SysWOW64\OLEAUT32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795770645382027 0x77bb0000 176128 C:\Windows\SysWOW64\GDI32.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation GDI Client DLL 131795770645382027 0x77d20000 1585152 C:\Windows\SysWOW64\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 131795770645382027 0x7ffad0270000 1908736 C:\Windows\SYSTEM32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 53 6180 664 6 00000000:0031f1da 131765807370364309 0 0 1 Обязательная метка\Средний обязательный уровень WIN-0UOTFKKVN1S\User smartscreen.exe C:\Windows\System32\smartscreen.exe C:\Windows\System32\smartscreen.exe -Embedding Microsoft Corporation 10.0.14393.0 (rs1_release.160715-1616) SmartScreen 131795770645382127 0x7ff688690000 2416640 C:\Windows\System32\smartscreen.exe 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SmartScreen 131795770645382127 0x7ffaafa00000 2936832 C:\Windows\System32\certenroll.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиент регистрации служб сертификатов Active Directory Microsoft® 131795770645382127 0x7ffab2210000 798720 C:\Windows\System32\certca.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ЦС служб сертификации Microsoft® Active Directory 131795770645382127 0x7ffab2c00000 8179712 C:\Windows\System32\chakra.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft ® Chakra (Private) 131795770645382127 0x7ffab9c00000 1343488 C:\Windows\System32\Windows.Web.Http.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL Windows.Web.Http 131795770645382127 0x7ffabd4a0000 1613824 C:\Windows\SYSTEM32\windows.globalization.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Globalization 131795770645382127 0x7ffabe850000 155648 C:\Windows\System32\IDStore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Identity Store 131795770645382127 0x7ffabf1d0000 192512 C:\Windows\System32\cryptnet.dll 10.0.14393.2035 (rs1_release_inmarket.180110-1910) Microsoft Corporation Crypto Network Related API 131795770645382127 0x7ffabf5d0000 2924544 C:\Windows\System32\WININET.dll 11.00.14393.447 (rs1_release_inmarket.161102-0100) Microsoft Corporation Расширения Интернета для Win32 131795770645382127 0x7ffabfd80000 86016 C:\Windows\System32\threadpoolwinrt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows WinRT Threadpool 131795770645382127 0x7ffabff60000 135168 C:\Windows\system32\ncryptsslp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft SChannel Provider 131795770645382127 0x7ffac0ac0000 53248 C:\Windows\System32\tbs.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation TBS 131795770645382127 0x7ffac0ad0000 86016 C:\Windows\SYSTEM32\mskeyprotect.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик защиты ключей (Майкрософт) 131795770645382127 0x7ffac3290000 77824 C:\Windows\System32\smartscreenps.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SmartScreenPS 131795770645382127 0x7ffac34e0000 1843200 C:\Windows\System32\urlmon.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширения OLE32 для Win32 131795770645382127 0x7ffac36b0000 524288 C:\Windows\System32\msdelta.dll 5.00 (rs1_release.160715-1616) Microsoft Corporation Microsoft Patch Engine 131795770645382127 0x7ffac3cb0000 2772992 C:\Windows\System32\iertutil.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служебная программа времени выполнения для Internet Explorer 131795770645382127 0x7ffac6610000 40960 C:\Windows\System32\rasadhlp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Remote Access AutoDial Helper 131795770645382127 0x7ffac66a0000 86016 C:\Windows\SYSTEM32\ondemandconnroutehelper.dll 10.0.14393.351 (rs1_release_inmarket.161014-1755) Microsoft Corporation On Demand Connctiond Route Helper 131795770645382127 0x7ffac69c0000 839680 C:\Windows\SYSTEM32\winhttp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Службы HTTP Windows 131795770645382127 0x7ffac6b90000 53248 C:\Windows\System32\DSPARSE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Active Directory Domain Services API 131795770645382127 0x7ffac7720000 1601536 C:\Windows\System32\OneCoreUAPCommonProxyStub.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation OneCoreUAP Common Proxy Stub 131795770645382127 0x7ffac83d0000 106496 C:\Windows\SYSTEM32\dhcpcsvc.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служба DHCP-клиента 131795770645382127 0x7ffac83f0000 90112 C:\Windows\SYSTEM32\dhcpcsvc6.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиент DHCPv6 131795770645382127 0x7ffac8420000 434176 C:\Windows\System32\fwpuclnt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API пользовательского режима FWP/IPsec 131795770645382127 0x7ffac8810000 45056 C:\Windows\SYSTEM32\WINNSI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Network Store Information RPC interface 131795770645382127 0x7ffac90b0000 90112 C:\Windows\System32\wkscli.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Workstation Service Client DLL 131795770645382127 0x7ffac92e0000 1269760 C:\Windows\SYSTEM32\wintypes.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL основных типов Windows 131795770645382127 0x7ffaca570000 421888 C:\Windows\SYSTEM32\Bcp47Langs.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation BCP47 Language Classes 131795770645382127 0x7ffaca610000 143360 C:\Windows\System32\SAMLIB.dll 10.0.14393.82 (rs1_release.160805-1735) Microsoft Corporation SAM Library DLL 131795770645382127 0x7ffacb360000 176128 C:\Windows\SYSTEM32\fwbase.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Firewall Base DLL 131795770645382127 0x7ffacb460000 548864 C:\Windows\SYSTEM32\firewallapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API брандмауэра Windows 131795770645382127 0x7ffacb6f0000 143360 C:\Windows\SYSTEM32\gpapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиентские функции API групповой политики 131795770645382127 0x7ffacbaf0000 495616 C:\Windows\system32\schannel.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик безопасности TLS/SSL 131795770645382127 0x7ffacbbb0000 208896 C:\Windows\system32\rsaenh.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Enhanced Cryptographic Provider 131795770645382127 0x7ffacbbf0000 40960 C:\Windows\System32\DPAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Data Protection API 131795770645382127 0x7ffacbd30000 229376 C:\Windows\SYSTEM32\IPHLPAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API вспомогательного приложения IP 131795770645382127 0x7ffacbd70000 659456 C:\Windows\System32\DNSAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Динамическая библиотека API DNS-клиента 131795770645382127 0x7ffacbe20000 53248 C:\Windows\System32\netutils.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API Helpers DLL 131795770645382127 0x7ffacbfb0000 376832 C:\Windows\system32\mswsock.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширение поставщика службы API Microsoft Windows Sockets 2.0 131795770645382127 0x7ffacc150000 94208 C:\Windows\SYSTEM32\cryptsp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Cryptographic Service Provider API 131795770645382127 0x7ffacc170000 45056 C:\Windows\System32\CRYPTBASE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base cryptographic API DLL 131795770645382127 0x7ffacc1f0000 241664 C:\Windows\SYSTEM32\NTASN1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft ASN.1 API 131795770645382127 0x7ffacc230000 155648 C:\Windows\SYSTEM32\ncrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Маршрутизатор Windows NCrypt 131795770645382127 0x7ffacc350000 180224 C:\Windows\System32\SspiCli.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Security Support Provider Interface 131795770645382127 0x7ffacc620000 176128 C:\Windows\System32\bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795770645382127 0x7ffacc6e0000 61440 C:\Windows\System32\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795770645382127 0x7ffacc6f0000 311296 C:\Windows\System32\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795770645382127 0x7ffacc740000 81920 C:\Windows\System32\profapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Profile Basic API 131795770645382127 0x7ffacc760000 65536 C:\Windows\System32\MSASN1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ASN.1 Runtime APIs 131795770645382127 0x7ffacc8f0000 1003520 C:\Windows\System32\ucrtbase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645382127 0x7ffacc9f0000 434176 C:\Windows\System32\bcryptPrimitives.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Cryptographic Primitives Library 131795770645382127 0x7ffacca60000 122880 C:\Windows\System32\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795770645382127 0x7ffacca80000 348160 C:\Windows\System32\WINTRUST.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation Microsoft Trust Verification APIs 131795770645382127 0x7ffaccae0000 692224 C:\Windows\System32\shcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795770645382127 0x7ffaccb90000 7180288 C:\Windows\System32\windows.storage.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API хранения Microsoft WinRT 131795770645382127 0x7ffacd270000 2215936 C:\Windows\System32\KERNELBASE.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645382127 0x7ffacd490000 1871872 C:\Windows\System32\CRYPT32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API32 криптографии 131795770645382127 0x7ffacd710000 638976 C:\Windows\System32\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645382127 0x7ffacd7b0000 270336 C:\Windows\System32\CFGMGR32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Configuration Manager DLL 131795770645382127 0x7ffaced20000 782336 C:\Windows\System32\OLEAUT32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795770645382127 0x7ffacee50000 1183744 C:\Windows\System32\RPCRT4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795770645382127 0x7ffacef80000 32768 C:\Windows\System32\NSI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation NSI User-mode interface DLL 131795770645382127 0x7ffacef90000 647168 C:\Windows\System32\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795770645382127 0x7ffacf030000 651264 C:\Windows\System32\clbcatq.dll 2001.12.10941.16384 (rs1_release.160715-1616) Microsoft Corporation COM+ Configuration Catalog 131795770645382127 0x7ffacf0d0000 704512 C:\Windows\System32\KERNEL32.DLL 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645382127 0x7ffacf180000 376832 C:\Windows\System32\WLDAP32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Win32 LDAP API DLL 131795770645382127 0x7ffacf770000 212992 C:\Windows\System32\GDI32.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation GDI Client DLL 131795770645382127 0x7ffacf820000 434176 C:\Windows\System32\WS2_32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation 32-разрядная библиотека Windows Socket 2.0 131795770645382127 0x7ffacf890000 188416 C:\Windows\System32\IMM32.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Multi-User Windows IMM32 API Client DLL 131795770645382127 0x7ffacf8c0000 1462272 C:\Windows\System32\user32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795770645382127 0x7ffacfb30000 2916352 C:\Windows\System32\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795770645382127 0x7ffacfe20000 663552 C:\Windows\System32\advapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795770645382127 0x7ffad0070000 1277952 C:\Windows\System32\ole32.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft OLE для Windows 131795770645382127 0x7ffad01b0000 335872 C:\Windows\System32\shlwapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека небольших программ оболочки 131795770645382127 0x7ffad0210000 364544 C:\Windows\System32\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795770645382127 0x7ffad0270000 1908736 C:\Windows\SYSTEM32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 54 4408 348 24 00000000:0031f1ab 131765812380694767 0 0 1 Обязательная метка\Высокий обязательный уровень WIN-0UOTFKKVN1S\User taskhostw.exe C:\Windows\system32\taskhostw.exe taskhostw.exe Microsoft Corporation 10.0.14393.0 (rs1_release.160715-1616) Хост-процесс для задач Windows 131795770645382224 0x17826230000 12288 C:\Windows\SYSTEM32\sfc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows File Protection 131795770645382224 0x7ff794e10000 102400 C:\Windows\system32\taskhostw.exe 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Хост-процесс для задач Windows 131795770645382224 0x7ffab1140000 1134592 C:\Windows\System32\ReAgent.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL агента восстановления Microsoft Windows 131795770645382224 0x7ffab1c40000 1302528 C:\Windows\System32\LicenseManager.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation LicenseManager 131795770645382224 0x7ffab8da0000 1675264 C:\Windows\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.14393.1715_none_aec701fbddd850fa\gdiplus.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Microsoft GDI+ 131795770645382224 0x7ffab93b0000 897024 C:\Windows\System32\TokenBroker.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Token Broker 131795770645382224 0x7ffabafc0000 700416 C:\Windows\system32\wer.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека сообщений об ошибках Windows 131795770645382224 0x7ffabb2b0000 1089536 C:\Windows\system32\SettingSyncCore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Setting Synchronization Core 131795770645382224 0x7ffabbd20000 106496 C:\Windows\SYSTEM32\settingsyncpolicy.dll 10.0.14393.82 (rs1_release.160805-1735) Microsoft Corporation SettingSync Policy 131795770645382224 0x7ffabe000000 409600 C:\Windows\system32\WinSATAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows System Assessment Tool API 131795770645382224 0x7ffabe850000 155648 C:\Windows\System32\IDStore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Identity Store 131795770645382224 0x7ffabef80000 69632 C:\Windows\SYSTEM32\sfc_os.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows File Protection 131795770645382224 0x7ffabefd0000 258048 C:\Windows\system32\AEPIC.dll 10.0.17060.1029 (WinBuild.160101.0800) Microsoft Corporation Application Experience Program Cache 131795770645382224 0x7ffabf050000 225280 C:\Windows\System32\sdiageng.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Подсистема выполнения сценариев диагностики 131795770645382224 0x7ffabf1d0000 192512 C:\Windows\system32\cryptnet.dll 10.0.14393.2035 (rs1_release_inmarket.180110-1910) Microsoft Corporation Crypto Network Related API 131795770645382224 0x7ffabf330000 2457600 C:\Windows\System32\msxml6.dll 6.30.14393.2156 Microsoft Corporation MSXML 6.0 131795770645382224 0x7ffabfbe0000 1011712 C:\Windows\System32\Windows.Security.Authentication.OnlineId.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation Windows Runtime OnlineId Authentication DLL 131795770645382224 0x7ffabff60000 135168 C:\Windows\system32\ncryptsslp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft SChannel Provider 131795770645382224 0x7ffac0ad0000 86016 C:\Windows\SYSTEM32\mskeyprotect.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик защиты ключей (Майкрософт) 131795770645382224 0x7ffac0bf0000 3559424 C:\Windows\System32\ActXPrxy.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation ActiveX Interface Marshaling Library 131795770645382224 0x7ffac1d60000 589824 C:\Windows\system32\webio.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API протоколов передачи по Веб 131795770645382224 0x7ffac23c0000 331776 C:\Windows\System32\OneCoreCommonProxyStub.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation OneCore Common Proxy Stub 131795770645382224 0x7ffac2750000 106496 C:\Windows\System32\bcd.dll 10.0.14393.1794 (rs1_release.171008-1615) Microsoft Corporation BCD DLL 131795770645382224 0x7ffac2b80000 40960 C:\Windows\system32\VERSION.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Version Checking and File Installation Libraries 131795770645382224 0x7ffac2c30000 135168 C:\Windows\System32\CLIPC.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиент платформы лицензирования клиента 131795770645382224 0x7ffac3810000 167936 C:\Windows\System32\Cabinet.dll 5.00 (rs1_release.160715-1616) Microsoft Corporation Microsoft® Cabinet File API 131795770645382224 0x7ffac3cb0000 2772992 C:\Windows\SYSTEM32\iertutil.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служебная программа времени выполнения для Internet Explorer 131795770645382224 0x7ffac4000000 274432 C:\Windows\SYSTEM32\policymanager.dll 10.0.14393.2035 (rs1_release_inmarket.180110-1910) Microsoft Corporation Policy Manager DLL 131795770645382224 0x7ffac4050000 118784 C:\Windows\System32\wdi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Инфраструктура диагностики Windows 131795770645382224 0x7ffac4ae0000 69632 C:\Windows\System32\sdiagschd.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Запланированная задача сценариев проверки 131795770645382224 0x7ffac4b00000 45056 C:\Windows\System32\MemoryDiagnostic.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Обработчик задач средства проверки памяти Windows (Майкрософт) 131795770645382224 0x7ffac5c80000 90112 C:\Windows\System32\TempSignedLicenseExchangeTask.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation TempSignedLicenseExchangeTask Task 131795770645382224 0x7ffac60e0000 221184 C:\Windows\system32\XmlLite.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft XmlLite Library 131795770645382224 0x7ffac6610000 40960 C:\Windows\System32\rasadhlp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Remote Access AutoDial Helper 131795770645382224 0x7ffac69c0000 839680 C:\Windows\system32\WINHTTP.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Службы HTTP Windows 131795770645382224 0x7ffac6c40000 2596864 C:\Windows\WinSxS\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.14393.953_none_42151e83c686086b\COMCTL32.dll 6.10 (rs1_release_inmarket.170303-1614) Microsoft Corporation Библиотека элементов управления взаимодействия с пользователем 131795770645382224 0x7ffac79c0000 57344 C:\Windows\System32\npmproxy.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Network List Manager Proxy 131795770645382224 0x7ffac83d0000 106496 C:\Windows\SYSTEM32\dhcpcsvc.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служба DHCP-клиента 131795770645382224 0x7ffac83f0000 90112 C:\Windows\SYSTEM32\dhcpcsvc6.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиент DHCPv6 131795770645382224 0x7ffac8810000 45056 C:\Windows\SYSTEM32\WINNSI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Network Store Information RPC interface 131795770645382224 0x7ffac8cf0000 815104 C:\Windows\System32\taskschd.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Task Scheduler COM API 131795770645382224 0x7ffac8dc0000 167936 C:\Windows\system32\dbgcore.DLL 10.0.14321.1024 (debuggers(dbg).160715-1616) Microsoft Windows Core Debugging Helpers 131795770645382224 0x7ffac8df0000 1646592 C:\Windows\system32\dbghelp.dll 10.0.14321.1024 (rs1_release.160715-1616) Microsoft Windows Image Helper 131795770645382224 0x7ffac9220000 397312 C:\Windows\System32\wevtapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API настройки и использования событий 131795770645382224 0x7ffac92e0000 1269760 C:\Windows\System32\WinTypes.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL основных типов Windows 131795770645382224 0x7ffac9f10000 221184 C:\Windows\System32\netprofm.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Network List Manager 131795770645382224 0x7ffaca200000 32768 C:\Windows\System32\ReAgentTask.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Обработчик задач агента восстановления Microsoft Windows 131795770645382224 0x7ffaca210000 225280 C:\Windows\system32\RstrtMgr.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Диспетчер перезапуска 131795770645382224 0x7ffaca4e0000 77824 C:\Windows\SYSTEM32\wtsapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Remote Desktop Session Host Server SDK APIs 131795770645382224 0x7ffaca5e0000 155648 C:\Windows\system32\dwmapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Интерфейс API диспетчера окон рабочего стола (Майкрософт) 131795770645382224 0x7ffaca610000 143360 C:\Windows\System32\SAMLIB.dll 10.0.14393.82 (rs1_release.160805-1735) Microsoft Corporation SAM Library DLL 131795770645382224 0x7ffacac00000 94208 C:\Windows\system32\radarrs.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation программа устранения нехватки системных ресурсов Microsoft Windows 131795770645382224 0x7ffacaf00000 610304 C:\Windows\system32\uxtheme.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека тем UxTheme (Microsoft) 131795770645382224 0x7ffacb140000 593920 C:\Windows\SYSTEM32\msvcp110_win.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Microsoft® STL110 C++ Runtime Library 131795770645382224 0x7ffacb1e0000 1163264 C:\Windows\System32\twinapi.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation twinapi.appcore 131795770645382224 0x7ffacb420000 204800 C:\Windows\SYSTEM32\ntmarta.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик Windows NT MARTA 131795770645382224 0x7ffacb6f0000 143360 C:\Windows\SYSTEM32\gpapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиентские функции API групповой политики 131795770645382224 0x7ffacb780000 651264 C:\Windows\system32\dxgi.dll 10.0.14393.953 (rs1_release_inmarket.170303-1614) Microsoft Corporation DirectX Graphics Infrastructure 131795770645382224 0x7ffacbaf0000 495616 C:\Windows\system32\schannel.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик безопасности TLS/SSL 131795770645382224 0x7ffacbbb0000 208896 C:\Windows\system32\rsaenh.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Enhanced Cryptographic Provider 131795770645382224 0x7ffacbbf0000 40960 C:\Windows\System32\DPAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Data Protection API 131795770645382224 0x7ffacbd30000 229376 C:\Windows\SYSTEM32\IPHLPAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API вспомогательного приложения IP 131795770645382224 0x7ffacbd70000 659456 C:\Windows\system32\DNSAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Динамическая библиотека API DNS-клиента 131795770645382224 0x7ffacbe40000 126976 C:\Windows\system32\USERENV.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Userenv 131795770645382224 0x7ffacbfb0000 376832 C:\Windows\system32\mswsock.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширение поставщика службы API Microsoft Windows Sockets 2.0 131795770645382224 0x7ffacc150000 94208 C:\Windows\system32\CRYPTSP.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Cryptographic Service Provider API 131795770645382224 0x7ffacc170000 45056 C:\Windows\system32\CRYPTBASE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base cryptographic API DLL 131795770645382224 0x7ffacc1f0000 241664 C:\Windows\system32\NTASN1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft ASN.1 API 131795770645382224 0x7ffacc230000 155648 C:\Windows\system32\ncrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Маршрутизатор Windows NCrypt 131795770645382224 0x7ffacc350000 180224 C:\Windows\system32\SspiCli.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Security Support Provider Interface 131795770645382224 0x7ffacc520000 622592 C:\Windows\SYSTEM32\sxs.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Fusion 2.5 131795770645382224 0x7ffacc620000 176128 C:\Windows\system32\bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795770645382224 0x7ffacc6e0000 61440 C:\Windows\System32\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795770645382224 0x7ffacc6f0000 311296 C:\Windows\System32\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795770645382224 0x7ffacc740000 81920 C:\Windows\System32\profapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Profile Basic API 131795770645382224 0x7ffacc760000 65536 C:\Windows\System32\MSASN1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ASN.1 Runtime APIs 131795770645382224 0x7ffacc8f0000 1003520 C:\Windows\System32\ucrtbase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645382224 0x7ffacc9f0000 434176 C:\Windows\System32\bcryptPrimitives.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Cryptographic Primitives Library 131795770645382224 0x7ffacca60000 122880 C:\Windows\System32\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795770645382224 0x7ffacca80000 348160 C:\Windows\System32\WINTRUST.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation Microsoft Trust Verification APIs 131795770645382224 0x7ffaccae0000 692224 C:\Windows\System32\shcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795770645382224 0x7ffaccb90000 7180288 C:\Windows\System32\windows.storage.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API хранения Microsoft WinRT 131795770645382224 0x7ffacd270000 2215936 C:\Windows\System32\KERNELBASE.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645382224 0x7ffacd490000 1871872 C:\Windows\System32\CRYPT32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API32 криптографии 131795770645382224 0x7ffacd710000 638976 C:\Windows\System32\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645382224 0x7ffacd7b0000 270336 C:\Windows\System32\cfgmgr32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Configuration Manager DLL 131795770645382224 0x7ffacd810000 22056960 C:\Windows\System32\SHELL32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Общая библиотека оболочки Windows 131795770645382224 0x7ffaced20000 782336 C:\Windows\System32\OLEAUT32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795770645382224 0x7ffacee50000 1183744 C:\Windows\System32\RPCRT4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795770645382224 0x7ffacef80000 32768 C:\Windows\System32\NSI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation NSI User-mode interface DLL 131795770645382224 0x7ffacef90000 647168 C:\Windows\System32\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795770645382224 0x7ffacf030000 651264 C:\Windows\System32\clbcatq.dll 2001.12.10941.16384 (rs1_release.160715-1616) Microsoft Corporation COM+ Configuration Catalog 131795770645382224 0x7ffacf0d0000 704512 C:\Windows\System32\KERNEL32.DLL 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645382224 0x7ffacf1e0000 1417216 C:\Windows\System32\MSCTF.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Серверная библиотека MSCTF 131795770645382224 0x7ffacf340000 4362240 C:\Windows\System32\SETUPAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Setup API 131795770645382224 0x7ffacf770000 212992 C:\Windows\System32\GDI32.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation GDI Client DLL 131795770645382224 0x7ffacf820000 434176 C:\Windows\System32\WS2_32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation 32-разрядная библиотека Windows Socket 2.0 131795770645382224 0x7ffacf890000 188416 C:\Windows\System32\imm32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Multi-User Windows IMM32 API Client DLL 131795770645382224 0x7ffacf8c0000 1462272 C:\Windows\System32\USER32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795770645382224 0x7ffacfb30000 2916352 C:\Windows\System32\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795770645382224 0x7ffacfe00000 114688 C:\Windows\System32\imagehlp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT Image Helper 131795770645382224 0x7ffacfe20000 663552 C:\Windows\System32\ADVAPI32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795770645382224 0x7ffad0070000 1277952 C:\Windows\System32\ole32.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft OLE для Windows 131795770645382224 0x7ffad01b0000 335872 C:\Windows\System32\SHLWAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека небольших программ оболочки 131795770645382224 0x7ffad0210000 364544 C:\Windows\System32\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795770645382224 0x7ffad0270000 1908736 C:\Windows\SYSTEM32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 55 6944 664 6 00000000:0031f1da 131767576301455145 0 0 1 Обязательная метка\Низкий обязательный уровень WIN-0UOTFKKVN1S\User SkypeHost.exe C:\Program Files\WindowsApps\Microsoft.SkypeApp_12.1815.210.0_x64__kzf8qxf38zg5c\SkypeHost.exe "C:\Program Files\WindowsApps\Microsoft.SkypeApp_12.1815.210.0_x64__kzf8qxf38zg5c\SkypeHost.exe" -ServerName:SkypeHost.ServerServer Microsoft Corporation 12.1815.210.0 Microsoft Skype 131795770645382388 0x7ff7e8670000 102400 C:\Program Files\WindowsApps\Microsoft.SkypeApp_12.1815.210.0_x64__kzf8qxf38zg5c\SkypeHost.exe 12.1815.210.0 Microsoft Corporation Microsoft Skype 131795770645382388 0x7ffaae130000 22437888 C:\Program Files\WindowsApps\Microsoft.SkypeApp_12.1815.210.0_x64__kzf8qxf38zg5c\SkyWrap.dll 12.1815.210.0 Microsoft Corporation Microsoft Skype 131795770645382388 0x7ffabaab0000 94208 C:\Windows\SYSTEM32\profext.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation profext 131795770645382388 0x7ffabc530000 241664 C:\Windows\SYSTEM32\Windows.Networking.HostName.dll 10.0.14393.953 (rs1_release_inmarket.170303-1614) Microsoft Corporation Windows.Networking.HostName DLL 131795770645382388 0x7ffabca50000 819200 C:\Windows\System32\Windows.Security.Authentication.Web.Core.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Token Broker WinRT API 131795770645382388 0x7ffabe150000 2691072 C:\Program Files\WindowsApps\Microsoft.SkypeApp_12.1815.210.0_x64__kzf8qxf38zg5c\skypert.dll 2018.15.01.31 SkypeRT shared library 131795770645382388 0x7ffabea90000 135168 C:\Windows\System32\Windows.ApplicationModel.Background.SystemEventsBroker.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Background System Events Broker API Server 131795770645382388 0x7ffabeac0000 335872 C:\Windows\System32\Windows.Storage.ApplicationData.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Application Data API Server 131795770645382388 0x7ffac0470000 1478656 C:\Windows\SYSTEM32\MFPlat.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Media Foundation Platform DLL 131795770645382388 0x7ffac0910000 724992 C:\Windows\SYSTEM32\Windows.Networking.Connectivity.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Networking Connectivity Runtime DLL 131795770645382388 0x7ffac0bf0000 3559424 C:\Windows\System32\ActXPrxy.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation ActiveX Interface Marshaling Library 131795770645382388 0x7ffac1a80000 978944 C:\Windows\SYSTEM32\Windows.Networking.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows.Networking DLL 131795770645382388 0x7ffac1b90000 630784 C:\Program Files\WindowsApps\Microsoft.VCLibs.140.00_14.0.25426.0_x64__8wekyb3d8bbwe\MSVCP140_APP.dll 14.11.25426.0 built by: VCTOOLSREL Microsoft Corporation Microsoft® C Runtime Library 131795770645382388 0x7ffac1e50000 188416 C:\Windows\SYSTEM32\RTWorkQ.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL для WorkQueue реального времени 131795770645382388 0x7ffac23c0000 331776 C:\Windows\System32\OneCoreCommonProxyStub.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation OneCore Common Proxy Stub 131795770645382388 0x7ffac2b30000 286720 C:\Windows\System32\usermgrproxy.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation UserMgrProxy 131795770645382388 0x7ffac2c30000 135168 C:\Windows\SYSTEM32\clipc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиент платформы лицензирования клиента 131795770645382388 0x7ffac3cb0000 2772992 C:\Windows\System32\iertutil.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служебная программа времени выполнения для Internet Explorer 131795770645382388 0x7ffac4b10000 307200 C:\Program Files\WindowsApps\Microsoft.VCLibs.140.00_14.0.25426.0_x64__8wekyb3d8bbwe\CONCRT140_APP.dll 14.11.25426.0 built by: VCTOOLSREL Microsoft Corporation Microsoft® Concurrency Runtime Library 131795770645382388 0x7ffac4c60000 385024 C:\Program Files\WindowsApps\Microsoft.VCLibs.140.00_14.0.25426.0_x64__8wekyb3d8bbwe\vccorlib140_app.DLL 14.11.25426.0 built by: VCTOOLSREL Microsoft Corporation Microsoft ® VC WinRT core library 131795770645382388 0x7ffac5070000 798720 C:\Windows\System32\Windows.Web.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL веб-клиента 131795770645382388 0x7ffac6620000 192512 C:\Windows\System32\biwinrt.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation Windows Background Broker Infrastructure 131795770645382388 0x7ffac7580000 1077248 C:\Windows\SYSTEM32\mrmcorer.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Windows MRM 131795770645382388 0x7ffac7720000 1601536 C:\Windows\System32\OneCoreUAPCommonProxyStub.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation OneCoreUAP Common Proxy Stub 131795770645382388 0x7ffac7c80000 208896 C:\Program Files\WindowsApps\Microsoft.SkypeApp_12.1815.210.0_x64__kzf8qxf38zg5c\SkypeBackgroundTasks.dll 12.1815.210.0 Microsoft Corporation Microsoft Skype 131795770645382388 0x7ffac7d80000 49152 C:\Windows\System32\Windows.ApplicationModel.Background.TimeBroker.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Background Time Broker API Server 131795770645382388 0x7ffac8540000 286720 C:\Windows\System32\vaultcli.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиентская библиотека хранилища учетных данных 131795770645382388 0x7ffac92e0000 1269760 C:\Windows\System32\WinTypes.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL основных типов Windows 131795770645382388 0x7ffaca260000 45056 C:\Windows\SYSTEM32\SystemEventsBrokerClient.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation system Events Broker Client Library 131795770645382388 0x7ffaca340000 1593344 C:\Windows\SYSTEM32\PROPSYS.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Система страниц свойств (Майкрософт) 131795770645382388 0x7ffacab80000 90112 C:\Program Files\WindowsApps\Microsoft.VCLibs.140.00_14.0.25426.0_x64__8wekyb3d8bbwe\VCRUNTIME140_APP.dll 14.11.25426.0 built by: VCTOOLSREL Microsoft Corporation Microsoft® C Runtime Library 131795770645382388 0x7ffacb1e0000 1163264 C:\Windows\SYSTEM32\twinapi.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation twinapi.appcore 131795770645382388 0x7ffacb360000 176128 C:\Windows\SYSTEM32\fwbase.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Firewall Base DLL 131795770645382388 0x7ffacb420000 204800 C:\Windows\SYSTEM32\ntmarta.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик Windows NT MARTA 131795770645382388 0x7ffacb460000 548864 C:\Windows\SYSTEM32\FirewallAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API брандмауэра Windows 131795770645382388 0x7ffacbbf0000 40960 C:\Windows\SYSTEM32\DPAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Data Protection API 131795770645382388 0x7ffacbd30000 229376 C:\Windows\SYSTEM32\IPHLPAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API вспомогательного приложения IP 131795770645382388 0x7ffacbe40000 126976 C:\Windows\SYSTEM32\USERENV.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Userenv 131795770645382388 0x7ffacc170000 45056 C:\Windows\SYSTEM32\CRYPTBASE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base cryptographic API DLL 131795770645382388 0x7ffacc620000 176128 C:\Windows\SYSTEM32\bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795770645382388 0x7ffacc6e0000 61440 C:\Windows\System32\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795770645382388 0x7ffacc6f0000 311296 C:\Windows\System32\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795770645382388 0x7ffacc740000 81920 C:\Windows\System32\profapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Profile Basic API 131795770645382388 0x7ffacc760000 65536 C:\Windows\System32\MSASN1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ASN.1 Runtime APIs 131795770645382388 0x7ffacc8f0000 1003520 C:\Windows\System32\ucrtbase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645382388 0x7ffacc9f0000 434176 C:\Windows\System32\bcryptPrimitives.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Cryptographic Primitives Library 131795770645382388 0x7ffacca60000 122880 C:\Windows\System32\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795770645382388 0x7ffaccae0000 692224 C:\Windows\System32\shcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795770645382388 0x7ffaccb90000 7180288 C:\Windows\System32\windows.storage.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API хранения Microsoft WinRT 131795770645382388 0x7ffacd270000 2215936 C:\Windows\System32\KERNELBASE.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645382388 0x7ffacd490000 1871872 C:\Windows\System32\CRYPT32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API32 криптографии 131795770645382388 0x7ffacd710000 638976 C:\Windows\System32\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645382388 0x7ffacd7b0000 270336 C:\Windows\System32\cfgmgr32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Configuration Manager DLL 131795770645382388 0x7ffaced20000 782336 C:\Windows\System32\OLEAUT32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795770645382388 0x7ffacee50000 1183744 C:\Windows\System32\RPCRT4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795770645382388 0x7ffacef90000 647168 C:\Windows\System32\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795770645382388 0x7ffacf0d0000 704512 C:\Windows\System32\KERNEL32.DLL 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645382388 0x7ffacf770000 212992 C:\Windows\System32\GDI32.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation GDI Client DLL 131795770645382388 0x7ffacf820000 434176 C:\Windows\System32\WS2_32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation 32-разрядная библиотека Windows Socket 2.0 131795770645382388 0x7ffacf890000 188416 C:\Windows\System32\IMM32.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Multi-User Windows IMM32 API Client DLL 131795770645382388 0x7ffacf8c0000 1462272 C:\Windows\System32\USER32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795770645382388 0x7ffacfb30000 2916352 C:\Windows\System32\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795770645382388 0x7ffacfe20000 663552 C:\Windows\System32\advapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795770645382388 0x7ffad01b0000 335872 C:\Windows\System32\shlwapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека небольших программ оболочки 131795770645382388 0x7ffad0210000 364544 C:\Windows\System32\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795770645382388 0x7ffad0270000 1908736 C:\Windows\SYSTEM32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 56 1048 580 4 00000000:000003e7 131768729449405953 0 0 1 Обязательная метка\Обязательный уровень системы NT AUTHORITY\СИСТЕМА sedsvc.exe C:\Program Files\rempl\sedsvc.exe "C:\Program Files\rempl\sedsvc.exe" Microsoft Corporation 10.0.16299.10000 (WinBuild.160101.0800) sedsvc 131795770645382485 0x7ff751430000 307200 C:\Program Files\rempl\sedsvc.exe 10.0.16299.10000 (WinBuild.160101.0800) Microsoft Corporation sedsvc 131795770645382485 0x7ffabf5d0000 2924544 C:\Windows\SYSTEM32\WININET.dll 11.00.14393.447 (rs1_release_inmarket.161102-0100) Microsoft Corporation Расширения Интернета для Win32 131795770645382485 0x7ffac2b80000 40960 C:\Windows\SYSTEM32\VERSION.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Version Checking and File Installation Libraries 131795770645382485 0x7ffac69c0000 839680 C:\Windows\SYSTEM32\WINHTTP.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Службы HTTP Windows 131795770645382485 0x7ffac8cf0000 815104 C:\Windows\System32\taskschd.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Task Scheduler COM API 131795770645382485 0x7ffaca4e0000 77824 C:\Windows\SYSTEM32\WTSAPI32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Remote Desktop Session Host Server SDK APIs 131795770645382485 0x7ffacb6f0000 143360 C:\Windows\SYSTEM32\gpapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиентские функции API групповой политики 131795770645382485 0x7ffacbbb0000 208896 C:\Windows\system32\rsaenh.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Enhanced Cryptographic Provider 131795770645382485 0x7ffacc150000 94208 C:\Windows\SYSTEM32\CRYPTSP.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Cryptographic Service Provider API 131795770645382485 0x7ffacc170000 45056 C:\Windows\SYSTEM32\CRYPTBASE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base cryptographic API DLL 131795770645382485 0x7ffacc350000 180224 C:\Windows\System32\SspiCli.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Security Support Provider Interface 131795770645382485 0x7ffacc620000 176128 C:\Windows\SYSTEM32\bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795770645382485 0x7ffacc6e0000 61440 C:\Windows\System32\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795770645382485 0x7ffacc6f0000 311296 C:\Windows\System32\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795770645382485 0x7ffacc740000 81920 C:\Windows\System32\profapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Profile Basic API 131795770645382485 0x7ffacc760000 65536 C:\Windows\System32\MSASN1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ASN.1 Runtime APIs 131795770645382485 0x7ffacc8f0000 1003520 C:\Windows\System32\ucrtbase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645382485 0x7ffacc9f0000 434176 C:\Windows\System32\bcryptPrimitives.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Cryptographic Primitives Library 131795770645382485 0x7ffacca60000 122880 C:\Windows\System32\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795770645382485 0x7ffacca80000 348160 C:\Windows\System32\WINTRUST.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation Microsoft Trust Verification APIs 131795770645382485 0x7ffaccae0000 692224 C:\Windows\System32\shcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795770645382485 0x7ffaccb90000 7180288 C:\Windows\System32\windows.storage.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API хранения Microsoft WinRT 131795770645382485 0x7ffacd270000 2215936 C:\Windows\System32\KERNELBASE.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645382485 0x7ffacd490000 1871872 C:\Windows\System32\CRYPT32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API32 криптографии 131795770645382485 0x7ffacd710000 638976 C:\Windows\System32\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645382485 0x7ffacd7b0000 270336 C:\Windows\System32\cfgmgr32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Configuration Manager DLL 131795770645382485 0x7ffacd810000 22056960 C:\Windows\System32\SHELL32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Общая библиотека оболочки Windows 131795770645382485 0x7ffaced20000 782336 C:\Windows\System32\OLEAUT32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795770645382485 0x7ffacee50000 1183744 C:\Windows\System32\RPCRT4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795770645382485 0x7ffacef90000 647168 C:\Windows\System32\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795770645382485 0x7ffacf030000 651264 C:\Windows\System32\clbcatq.dll 2001.12.10941.16384 (rs1_release.160715-1616) Microsoft Corporation COM+ Configuration Catalog 131795770645382485 0x7ffacf0d0000 704512 C:\Windows\System32\KERNEL32.DLL 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645382485 0x7ffacf340000 4362240 C:\Windows\System32\setupapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Setup API 131795770645382485 0x7ffacf770000 212992 C:\Windows\System32\GDI32.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation GDI Client DLL 131795770645382485 0x7ffacf8c0000 1462272 C:\Windows\System32\USER32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795770645382485 0x7ffacfb30000 2916352 C:\Windows\System32\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795770645382485 0x7ffacfe00000 114688 C:\Windows\System32\imagehlp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT Image Helper 131795770645382485 0x7ffacfe20000 663552 C:\Windows\System32\advapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795770645382485 0x7ffad01b0000 335872 C:\Windows\System32\shlwapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека небольших программ оболочки 131795770645382485 0x7ffad0210000 364544 C:\Windows\System32\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795770645382485 0x7ffad0270000 1908736 C:\Windows\SYSTEM32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 57 7744 3108 11 00000000:0031f1da 131769081112364684 0 0 0 Обязательная метка\Средний обязательный уровень WIN-0UOTFKKVN1S\User browser.exe C:\Users\User\AppData\Local\Yandex\YandexBrowser\Application\browser.exe "C:\Users\User\AppData\Local\Yandex\YandexBrowser\Application\browser.exe" YANDEX LLC 18.6.1.770 Yandex 131795770645382623 0x10e0000 2519040 C:\Users\User\AppData\Local\Yandex\YandexBrowser\Application\browser.exe 18.6.1.770 YANDEX LLC Yandex 131795770645382623 0x11330000 172032 C:\Windows\SysWOW64\RTWorkQ.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL для WorkQueue реального времени 131795770645382623 0x5c020000 335872 C:\Windows\System32\wow64.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation Win32 Emulation on NT64 131795770645382623 0x5c080000 487424 C:\Windows\System32\wow64win.dll 10.0.14393.1884 (rs1_release.171101-1233) Microsoft Corporation Wow64 Console and Win32 API Logging 131795770645382623 0x5c100000 40960 C:\Windows\System32\wow64cpu.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation AMD64 Wow64 CPU 131795770645382623 0x5fec0000 794624 C:\Windows\SysWOW64\wbem\fastprox.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation WMI Custom Marshaller 131795770645382623 0x5ffa0000 421888 C:\Windows\SysWOW64\wbemcomn.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation WMI 131795770645382623 0x60010000 53248 C:\Windows\SysWOW64\wbem\wbemprox.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation WMI 131795770645382623 0x60750000 1556480 C:\Program Files (x86)\360\Total Security\safemon\safemon.dll 8, 4, 0, 1420 Qihu 360 Software Co., Ltd. 360 Internet Security Internet Protection 131795770645382623 0x60900000 720896 C:\Program Files (x86)\360\Total Security\safemon\urlproc.dll 2, 9, 5, 1260 Qihu 360 Software Co., Ltd. 360 Internet Security 2013 Internet Protection 131795770645382623 0x622f0000 520192 C:\Program Files (x86)\360\Total Security\deepscan\heavygate.dll 3, 8, 11, 1 Qihu 360 Software Co., Ltd. 360 Total Security Cloud Security 131795770645382623 0x62980000 376832 C:\Program Files (x86)\360\Total Security\360NetBase.dll 7, 25, 0, 76 360.cn 360安全卫士 网络基础模块 131795770645382623 0x68b00000 44998656 C:\Users\User\AppData\Local\Yandex\YandexBrowser\Application\18.6.1.770\browser.dll 18.6.1.770 YANDEX LLC Yandex 131795770645382623 0x6b6b0000 36864 C:\Windows\SysWOW64\atlthunk.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation atlthunk.dll 131795770645382623 0x6b6d0000 102400 C:\Program Files (x86)\360\Total Security\I18N.dll 1, 0, 0, 1016 Qihu 360 Software Co., Ltd. 360 Total Security 131795770645382623 0x6bf00000 3715072 C:\Windows\SysWOW64\msi.dll 5.0.14393.2155 Microsoft Corporation Windows Installer 131795770645382623 0x6c290000 987136 C:\Windows\SysWOW64\twinapi.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation twinapi.appcore 131795770645382623 0x6c390000 1126400 C:\Windows\SysWOW64\dcomp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft DirectComposition Library 131795770645382623 0x6c4b0000 278528 C:\Windows\SysWOW64\dataexchange.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation Data exchange 131795770645382623 0x6c540000 483328 C:\Windows\SysWOW64\webio.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API протоколов передачи по Веб 131795770645382623 0x6cd50000 106496 C:\Windows\SysWOW64\SAMLIB.dll 10.0.14393.82 (rs1_release.160805-1735) Microsoft Corporation SAM Library DLL 131795770645382623 0x6ce30000 421888 C:\Windows\SysWOW64\msvcp110_win.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Microsoft® STL110 C++ Runtime Library 131795770645382623 0x6cf60000 569344 C:\Windows\SysWOW64\taskschd.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Task Scheduler COM API 131795770645382623 0x6d080000 151552 C:\Windows\SysWOW64\cryptnet.dll 10.0.14393.2035 (rs1_release_inmarket.180110-1910) Microsoft Corporation Crypto Network Related API 131795770645382623 0x6d0b0000 847872 C:\Windows\SysWOW64\wintypes.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL основных типов Windows 131795770645382623 0x6dc80000 90112 C:\Program Files (x86)\Windows Defender\MpOav.dll 4.10.14393.1794 (rs1_release.171008-1615) Microsoft Corporation IOfficeAntiVirus Module 131795770645382623 0x6df70000 245760 C:\Windows\SysWOW64\shdocvw.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека объектов документов и элементов управления оболочки 131795770645382623 0x6e070000 98304 C:\Windows\SysWOW64\MSACM32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Фильтр диспетчера аудиосжатия Microsoft 131795770645382623 0x6e090000 233472 C:\Windows\SysWOW64\wdmaud.drv 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Системный звуковой драйвер Winmm 131795770645382623 0x6e110000 32768 C:\Windows\SysWOW64\midimap.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft MIDI Mapper 131795770645382623 0x6e120000 40960 C:\Windows\SysWOW64\msacm32.drv 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Программа переназначения звуковых устройств 131795770645382623 0x6e130000 36864 C:\Windows\SysWOW64\AVRT.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Multimedia Realtime Runtime 131795770645382623 0x6e2a0000 4440064 C:\Windows\SysWOW64\explorerframe.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ExplorerFrame 131795770645382623 0x6e8b0000 1859584 C:\Windows\SysWOW64\mfmp4srcsnk.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL источника и приемника MPEG4 Media Foundation 131795770645382623 0x6eb60000 28672 C:\Windows\SysWOW64\ksuser.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User CSA Library 131795770645382623 0x6eb70000 790528 C:\Windows\SysWOW64\ntshrui.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширения оболочки, обеспечивающие общий доступ 131795770645382623 0x6ec40000 442368 C:\Windows\SysWOW64\twinapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation twinapi 131795770645382623 0x6eed0000 274432 C:\Windows\SysWOW64\thumbcache.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Кэш эскизов Майкрософт 131795770645382623 0x6ef30000 647168 C:\Windows\SysWOW64\evr.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека DLL средства отображения видео 131795770645382623 0x6efd0000 458752 C:\Windows\SysWOW64\msauddecmft.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Media Foundation Audio Decoders 131795770645382623 0x6f790000 1085440 C:\Windows\SysWOW64\mfperfhelper.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation MFPerf DLL 131795770645382623 0x6f8a0000 2220032 C:\Windows\SysWOW64\msmpeg2vdec.dll 10.0.14393.953 (rs1_release_inmarket.170303-1614) Microsoft Corporation Microsoft DTV-DVD Video Decoder 131795770645382623 0x6fac0000 1130496 C:\Windows\SysWOW64\mfplat.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Media Foundation Platform DLL 131795770645382623 0x6fc70000 385024 C:\Windows\SysWOW64\FirewallAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API брандмауэра Windows 131795770645382623 0x6fd00000 73728 C:\Windows\SysWOW64\mssprxy.dll 7.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation Microsoft Search Proxy 131795770645382623 0x6fd20000 61440 C:\Windows\SysWOW64\cscapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Offline Files Win32 API 131795770645382623 0x6fd30000 139264 C:\Windows\SysWOW64\DEVOBJ.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Device Information Set DLL 131795770645382623 0x6fd60000 360448 C:\Windows\SysWOW64\MMDevAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation MMDevice API 131795770645382623 0x6fdc0000 507904 C:\Windows\SysWOW64\audioses.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Сеанс обработки звука 131795770645382623 0x6fe40000 57344 C:\Windows\SysWOW64\BitsProxy.dll 7.8.14393.0 (rs1_release.160715-1616) Microsoft Corporation Background Intelligent Transfer Service Proxy 131795770645382623 0x6fe50000 241664 C:\Windows\SysWOW64\mstask.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека интерфейса планировщика заданий 131795770645382623 0x6fe90000 544768 C:\Windows\SysWOW64\mscms.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL-библиотека системы сопоставления цветов Майкрософт 131795770645382623 0x6ff90000 323584 C:\Windows\SysWOW64\wlanapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows WLAN AutoConfig Client Side API DLL 131795770645382623 0x6ffe0000 303104 C:\Windows\SysWOW64\wevtapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API настройки и использования событий 131795770645382623 0x70030000 593920 C:\Users\User\AppData\Local\Yandex\YandexBrowser\Application\18.6.1.770\browser_elf.dll 18.6.1.770 YANDEX LLC Yandex 131795770645382623 0x70140000 274432 C:\Windows\SysWOW64\WINSTA.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Winstation Library 131795770645382623 0x70190000 53248 C:\Windows\SysWOW64\LINKINFO.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Volume Tracking 131795770645382623 0x701a0000 401408 C:\Users\User\AppData\Local\Yandex\YandexBrowser\Application\18.6.1.770\dllyupdate.dll 1.2.0.1831 Yandex LLC Yandex updater (CU) 131795770645382623 0x70340000 536576 C:\Windows\SysWOW64\dxgi.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation DirectX Graphics Infrastructure 131795770645382623 0x703d0000 2056192 C:\Windows\SysWOW64\DWrite.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Службы Microsoft DirectX Typography 131795770645382623 0x705e0000 344064 C:\Windows\SysWOW64\OLEACC.dll 7.2.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Active Accessibility Core Component 131795770645382623 0x70640000 1499136 C:\Windows\SysWOW64\WindowsCodecs.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Microsoft Windows Codecs Library 131795770645382623 0x707d0000 86016 C:\Windows\SysWOW64\SAMCLI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Security Accounts Manager Client DLL 131795770645382623 0x70a20000 94208 C:\Windows\SysWOW64\USP10.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Uniscribe Unicode script processor 131795770645382623 0x70a40000 81920 C:\Windows\SysWOW64\NLAapi.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Network Location Awareness 2 131795770645382623 0x70b00000 176128 C:\Windows\SysWOW64\wscapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API центра обеспечения безопасности Windows 131795770645382623 0x70b30000 36864 C:\Windows\SysWOW64\WINUSB.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows USB Driver User Library 131795770645382623 0x70b60000 40960 C:\Windows\SysWOW64\HID.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека пользователя HID 131795770645382623 0x70b70000 163840 C:\Windows\SysWOW64\ntmarta.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик Windows NT MARTA 131795770645382623 0x70ba0000 188416 C:\Windows\SysWOW64\FWPolicyIOMgr.dll 10.0.14393.2189 (rs1_release.180329-1711) Microsoft Corporation FwPolicyIoMgr DLL 131795770645382623 0x70bd0000 147456 C:\Windows\SysWOW64\fwbase.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Firewall Base DLL 131795770645382623 0x70c30000 114688 C:\Windows\SysWOW64\srvcli.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Server Service Client DLL 131795770645382623 0x70ca0000 45056 C:\Windows\SysWOW64\NETUTILS.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API Helpers DLL 131795770645382623 0x70cc0000 65536 C:\Windows\SysWOW64\ondemandconnroutehelper.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation On Demand Connctiond Route Helper 131795770645382623 0x70e60000 176128 C:\Windows\SysWOW64\NTASN1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft ASN.1 API 131795770645382623 0x70fd0000 1331200 C:\Windows\SysWOW64\dbghelp.dll 10.0.14321.1024 (rs1_release.160715-1616) Microsoft Windows Image Helper 131795770645382623 0x71140000 77824 C:\Windows\SysWOW64\NETAPI32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API DLL 131795770645382623 0x711f0000 32768 C:\Windows\SysWOW64\IconCodecService.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Converts a PNG part of the icon to a legacy bmp icon 131795770645382623 0x71610000 77824 C:\Windows\SysWOW64\dhcpcsvc6.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиент DHCPv6 131795770645382623 0x724f0000 57344 C:\Windows\SysWOW64\credui.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Credential Manager User Interface 131795770645382623 0x725e0000 2273280 C:\Windows\SysWOW64\iertutil.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служебная программа времени выполнения для Internet Explorer 131795770645382623 0x728e0000 1372160 C:\Windows\SysWOW64\PROPSYS.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Система страниц свойств (Майкрософт) 131795770645382623 0x72b90000 126976 C:\Windows\SysWOW64\dwmapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Интерфейс API диспетчера окон рабочего стола (Майкрософт) 131795770645382623 0x72cc0000 1658880 C:\Windows\SysWOW64\urlmon.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширения OLE32 для Win32 131795770645382623 0x73a40000 32768 C:\Windows\SysWOW64\WINNSI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Network Store Information RPC interface 131795770645382623 0x73a50000 299008 C:\Windows\SysWOW64\fwpuclnt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API пользовательского режима FWP/IPsec 131795770645382623 0x73aa0000 32768 C:\Windows\SysWOW64\DPAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Data Protection API 131795770645382623 0x73ab0000 32768 C:\Windows\SysWOW64\rasadhlp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Remote Access AutoDial Helper 131795770645382623 0x73ac0000 81920 C:\Windows\SysWOW64\dhcpcsvc.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служба DHCP-клиента 131795770645382623 0x73ae0000 40960 C:\Windows\SysWOW64\Secur32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Security Support Provider Interface 131795770645382623 0x73ee0000 61440 C:\Windows\SysWOW64\WTSAPI32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Remote Desktop Session Host Server SDK APIs 131795770645382623 0x73f00000 192512 C:\Windows\SysWOW64\IPHLPAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API вспомогательного приложения IP 131795770645382623 0x73f30000 512000 C:\Windows\SysWOW64\DNSAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Динамическая библиотека API DNS-клиента 131795770645382623 0x73ff0000 319488 C:\Windows\SysWOW64\mswsock.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширение поставщика службы API Microsoft Windows Sockets 2.0 131795770645382623 0x74040000 126976 C:\Windows\SysWOW64\gpapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиентские функции API групповой политики 131795770645382623 0x74060000 192512 C:\Windows\SysWOW64\rsaenh.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Enhanced Cryptographic Provider 131795770645382623 0x74110000 479232 C:\Windows\SysWOW64\uxtheme.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека тем UxTheme (Microsoft) 131795770645382623 0x74190000 110592 C:\Windows\SysWOW64\bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795770645382623 0x741b0000 77824 C:\Windows\SysWOW64\CRYPTSP.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Cryptographic Service Provider API 131795770645382623 0x741f0000 143360 C:\Windows\SysWOW64\WINMMBASE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base Multimedia Extension API DLL 131795770645382623 0x74230000 147456 C:\Windows\SysWOW64\WINMM.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation MCI API DLL 131795770645382623 0x74260000 2514944 C:\Windows\SysWOW64\WININET.dll 11.00.14393.447 (rs1_release_inmarket.161102-0100) Microsoft Corporation Расширения Интернета для Win32 131795770645382623 0x744d0000 2138112 C:\Windows\WinSxS\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.14393.953_none_89c2555adb023171\COMCTL32.dll 6.10 (rs1_release_inmarket.170303-1614) Microsoft Corporation Библиотека элементов управления взаимодействия с пользователем 131795770645382623 0x746e0000 32768 C:\Windows\SysWOW64\VERSION.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Version Checking and File Installation Libraries 131795770645382623 0x746f0000 106496 C:\Windows\SysWOW64\USERENV.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Userenv 131795770645382623 0x74730000 598016 C:\Windows\SysWOW64\apphelp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиентская библиотека совместимости приложений 131795770645382623 0x747d0000 40960 C:\Windows\SysWOW64\CRYPTBASE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base cryptographic API DLL 131795770645382623 0x747e0000 126976 C:\Windows\SysWOW64\SspiCli.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Security Support Provider Interface 131795770645382623 0x74800000 151552 C:\Windows\SysWOW64\IMM32.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Multi-User Windows IMM32 API Client DLL 131795770645382623 0x74910000 2170880 C:\Windows\SysWOW64\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795770645382623 0x74b30000 53248 C:\Windows\SysWOW64\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795770645382623 0x74b40000 102400 C:\Windows\SysWOW64\imagehlp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT Image Helper 131795770645382623 0x74b60000 790528 C:\Windows\SysWOW64\RPCRT4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795770645382623 0x74c30000 1417216 C:\Windows\SysWOW64\gdi32full.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation GDI Client DLL 131795770645382623 0x74d90000 24576 C:\Windows\SysWOW64\PSAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Process Status Helper 131795770645382623 0x74da0000 778240 C:\Windows\SysWOW64\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795770645382623 0x74e60000 557056 C:\Windows\SysWOW64\shcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795770645382623 0x74ef0000 540672 C:\Windows\SysWOW64\clbcatq.dll 2001.12.10941.16384 (rs1_release.160715-1616) Microsoft Corporation COM+ Configuration Catalog 131795770645382623 0x74f80000 278528 C:\Windows\SysWOW64\WINTRUST.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation Microsoft Trust Verification APIs 131795770645382623 0x74fd0000 405504 C:\Windows\SysWOW64\WS2_32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation 32-разрядная библиотека Windows Socket 2.0 131795770645382623 0x75040000 282624 C:\Windows\SysWOW64\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795770645382623 0x75090000 1265664 C:\Windows\SysWOW64\MSCTF.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Серверная библиотека MSCTF 131795770645382623 0x751d0000 57344 C:\Windows\SysWOW64\MSASN1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ASN.1 Runtime APIs 131795770645382623 0x751e0000 1708032 C:\Windows\SysWOW64\KERNELBASE.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645382623 0x75390000 266240 C:\Windows\SysWOW64\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795770645382623 0x753e0000 1560576 C:\Windows\SysWOW64\CRYPT32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API32 криптографии 131795770645382623 0x75560000 487424 C:\Windows\SysWOW64\ADVAPI32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795770645382623 0x756c0000 5693440 C:\Windows\SysWOW64\windows.storage.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API хранения Microsoft WinRT 131795770645382623 0x75c30000 372736 C:\Windows\SysWOW64\coml2.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft COM for Windows 131795770645382623 0x75c90000 286720 C:\Windows\SysWOW64\shlwapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека небольших программ оболочки 131795770645382623 0x75ce0000 20811776 C:\Windows\SysWOW64\SHELL32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Общая библиотека оболочки Windows 131795770645382623 0x774d0000 86016 C:\Windows\SysWOW64\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795770645382623 0x774f0000 61440 C:\Windows\SysWOW64\profapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Profile Basic API 131795770645382623 0x77560000 1437696 C:\Windows\SysWOW64\USER32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795770645382623 0x776c0000 368640 C:\Windows\SysWOW64\bcryptPrimitives.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation Windows Cryptographic Primitives Library 131795770645382623 0x77780000 503808 C:\Windows\SysWOW64\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645382623 0x77800000 606208 C:\Windows\SysWOW64\OLEAUT32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795770645382623 0x77ac0000 966656 C:\Windows\SysWOW64\ole32.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft OLE для Windows 131795770645382623 0x77bb0000 176128 C:\Windows\SysWOW64\GDI32.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation GDI Client DLL 131795770645382623 0x77cd0000 221184 C:\Windows\SysWOW64\cfgmgr32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Configuration Manager DLL 131795770645382623 0x77d10000 28672 C:\Windows\SysWOW64\NSI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation NSI User-mode interface DLL 131795770645382623 0x77d20000 1585152 C:\Windows\SysWOW64\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 131795770645382623 0x7ffad0270000 1908736 C:\Windows\SYSTEM32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 58 5696 7744 57 00000000:0031f1da 131769081114193232 0 0 0 Обязательная метка\Средний обязательный уровень WIN-0UOTFKKVN1S\User browser.exe C:\Users\User\AppData\Local\Yandex\YandexBrowser\Application\browser.exe C:\Users\User\AppData\Local\Yandex\YandexBrowser\Application\browser.exe --type=crashpad-handler "--user-data-dir=C:\Users\User\AppData\Local\Yandex\YandexBrowser\User Data" /prefetch:7 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Users\User\AppData\Local\Yandex\YandexBrowser\User Data\Crashpad" "--metrics-dir=C:\Users\User\AppData\Local\Yandex\YandexBrowser\User Data" --url=https://crash-reports.browser.yandex.net/submit --annotation=machine_id=c46245ef0fec9d5c44d2fa20241f2070 --annotation=main_process_pid=7744 --annotation=metrics_client_id=520f4dd3247d4cdfb744f32b1130b1bf --annotation=plat=Win32 --annotation=prod=Yandex --annotation=ver=18.6.1.770 --initial-client-data=0x1c4,0x1cc,0x1d0,0x1c0,0x1d4,0x700b800c,0x700b7ffc,0x700b7fe0,0x1c8 YANDEX LLC 18.6.1.770 Yandex 131795770645382726 0x10e0000 2519040 C:\Users\User\AppData\Local\Yandex\YandexBrowser\Application\browser.exe 18.6.1.770 YANDEX LLC Yandex 131795770645382726 0x5c020000 335872 C:\Windows\System32\wow64.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation Win32 Emulation on NT64 131795770645382726 0x5c080000 487424 C:\Windows\System32\wow64win.dll 10.0.14393.1884 (rs1_release.171101-1233) Microsoft Corporation Wow64 Console and Win32 API Logging 131795770645382726 0x5c100000 40960 C:\Windows\System32\wow64cpu.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation AMD64 Wow64 CPU 131795770645382726 0x60750000 1556480 C:\Program Files (x86)\360\Total Security\safemon\safemon.dll 8, 4, 0, 1420 Qihu 360 Software Co., Ltd. 360 Internet Security Internet Protection 131795770645382726 0x70030000 593920 C:\Users\User\AppData\Local\Yandex\YandexBrowser\Application\18.6.1.770\browser_elf.dll 18.6.1.770 YANDEX LLC Yandex 131795770645382726 0x70b70000 163840 C:\Windows\SysWOW64\ntmarta.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик Windows NT MARTA 131795770645382726 0x70ca0000 45056 C:\Windows\SysWOW64\NETUTILS.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API Helpers DLL 131795770645382726 0x70cb0000 65536 C:\Windows\SysWOW64\WKSCLI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Workstation Service Client DLL 131795770645382726 0x71140000 77824 C:\Windows\SysWOW64\NETAPI32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API DLL 131795770645382726 0x72b90000 126976 C:\Windows\SysWOW64\dwmapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Интерфейс API диспетчера окон рабочего стола (Майкрософт) 131795770645382726 0x74110000 479232 C:\Windows\SysWOW64\uxtheme.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека тем UxTheme (Microsoft) 131795770645382726 0x74190000 110592 C:\Windows\SysWOW64\bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795770645382726 0x741f0000 143360 C:\Windows\SysWOW64\WINMMBASE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base Multimedia Extension API DLL 131795770645382726 0x74230000 147456 C:\Windows\SysWOW64\WINMM.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation MCI API DLL 131795770645382726 0x746e0000 32768 C:\Windows\SysWOW64\VERSION.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Version Checking and File Installation Libraries 131795770645382726 0x746f0000 106496 C:\Windows\SysWOW64\USERENV.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Userenv 131795770645382726 0x747d0000 40960 C:\Windows\SysWOW64\CRYPTBASE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base cryptographic API DLL 131795770645382726 0x747e0000 126976 C:\Windows\SysWOW64\SspiCli.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Security Support Provider Interface 131795770645382726 0x74800000 151552 C:\Windows\SysWOW64\IMM32.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Multi-User Windows IMM32 API Client DLL 131795770645382726 0x74910000 2170880 C:\Windows\SysWOW64\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795770645382726 0x74b30000 53248 C:\Windows\SysWOW64\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795770645382726 0x74b60000 790528 C:\Windows\SysWOW64\RPCRT4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795770645382726 0x74c30000 1417216 C:\Windows\SysWOW64\gdi32full.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation GDI Client DLL 131795770645382726 0x74d90000 24576 C:\Windows\SysWOW64\PSAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Process Status Helper 131795770645382726 0x74da0000 778240 C:\Windows\SysWOW64\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795770645382726 0x74e60000 557056 C:\Windows\SysWOW64\shcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795770645382726 0x74fd0000 405504 C:\Windows\SysWOW64\WS2_32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation 32-разрядная библиотека Windows Socket 2.0 131795770645382726 0x75040000 282624 C:\Windows\SysWOW64\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795770645382726 0x75090000 1265664 C:\Windows\SysWOW64\MSCTF.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Серверная библиотека MSCTF 131795770645382726 0x751e0000 1708032 C:\Windows\SysWOW64\KERNELBASE.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645382726 0x75390000 266240 C:\Windows\SysWOW64\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795770645382726 0x75560000 487424 C:\Windows\SysWOW64\ADVAPI32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795770645382726 0x756c0000 5693440 C:\Windows\SysWOW64\windows.storage.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API хранения Microsoft WinRT 131795770645382726 0x75c90000 286720 C:\Windows\SysWOW64\shlwapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека небольших программ оболочки 131795770645382726 0x75ce0000 20811776 C:\Windows\SysWOW64\SHELL32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Общая библиотека оболочки Windows 131795770645382726 0x774d0000 86016 C:\Windows\SysWOW64\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795770645382726 0x774f0000 61440 C:\Windows\SysWOW64\profapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Profile Basic API 131795770645382726 0x77560000 1437696 C:\Windows\SysWOW64\USER32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795770645382726 0x776c0000 368640 C:\Windows\SysWOW64\bcryptPrimitives.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation Windows Cryptographic Primitives Library 131795770645382726 0x77780000 503808 C:\Windows\SysWOW64\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645382726 0x77800000 606208 C:\Windows\SysWOW64\OLEAUT32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795770645382726 0x77ac0000 966656 C:\Windows\SysWOW64\ole32.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft OLE для Windows 131795770645382726 0x77bb0000 176128 C:\Windows\SysWOW64\GDI32.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation GDI Client DLL 131795770645382726 0x77cd0000 221184 C:\Windows\SysWOW64\cfgmgr32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Configuration Manager DLL 131795770645382726 0x77d20000 1585152 C:\Windows\SysWOW64\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 131795770645382726 0x7ffad0270000 1908736 C:\Windows\SYSTEM32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 59 4664 7744 57 00000000:0031f1da 131769081123844756 0 0 0 Обязательная метка\Низкий обязательный уровень WIN-0UOTFKKVN1S\User browser.exe C:\Users\User\AppData\Local\Yandex\YandexBrowser\Application\browser.exe "C:\Users\User\AppData\Local\Yandex\YandexBrowser\Application\browser.exe" --type=gpu-process --field-trial-handle=1292,9555382311565764851,7120838982649204725,131072 --user-id=32B2E0A1-3039-4C67-86BE-75A88EF21B54 --brand-id=yandex --partner-id=7924 --gpu-preferences=KAAAAAAAAACAAwCAAQAAAAAAAAAAAGAAEAAAAAAAAAAAAAAAAAAAACgAAAAEAAAAIAAAAAAAAAAoAAAAAAAAADAAAAAAAAAAOAAAAAAAAAAQAAAAAAAAAAAAAAAKAAAAEAAAAAAAAAAAAAAACwAAABAAAAAAAAAAAQAAAAoAAAAQAAAAAAAAAAEAAAALAAAA --user-id=32B2E0A1-3039-4C67-86BE-75A88EF21B54 --brand-id=yandex --partner-id=7924 --service-request-channel-token=CC1AC8FA9C8EFF1EEBC2375FE4F704C6 --mojo-platform-channel-handle=1588 --ignored=" --type=renderer " /prefetch:2 YANDEX LLC 18.6.1.770 Yandex 131795770645382836 0x10e0000 2519040 C:\Users\User\AppData\Local\Yandex\YandexBrowser\Application\browser.exe 18.6.1.770 YANDEX LLC Yandex 131795770645382836 0x58720000 59748352 C:\Users\User\AppData\Local\Yandex\YandexBrowser\Application\18.6.1.770\browser_child.dll 18.6.1.770 YANDEX LLC Yandex 131795770645382836 0x5c020000 335872 C:\Windows\System32\wow64.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation Win32 Emulation on NT64 131795770645382836 0x5c080000 487424 C:\Windows\System32\wow64win.dll 10.0.14393.1884 (rs1_release.171101-1233) Microsoft Corporation Wow64 Console and Win32 API Logging 131795770645382836 0x5c100000 40960 C:\Windows\System32\wow64cpu.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation AMD64 Wow64 CPU 131795770645382836 0x6ecb0000 2228224 C:\Windows\SysWOW64\mfh264enc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Media Foundation H264 Encoder 131795770645382836 0x6f250000 970752 C:\Windows\SysWOW64\ddraw.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft DirectDraw 131795770645382836 0x6f340000 3784704 C:\Windows\SysWOW64\D3DCompiler_47.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Direct3D HLSL Compiler 131795770645382836 0x6f6e0000 688128 C:\Windows\SysWOW64\msvproc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Media Foundation Video Processor 131795770645382836 0x6f790000 1085440 C:\Windows\SysWOW64\mfperfhelper.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation MFPerf DLL 131795770645382836 0x6f8a0000 2220032 C:\Windows\SysWOW64\msmpeg2vdec.dll 10.0.14393.953 (rs1_release_inmarket.170303-1614) Microsoft Corporation Microsoft DTV-DVD Video Decoder 131795770645382836 0x6fac0000 1130496 C:\Windows\SysWOW64\MFPlat.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Media Foundation Platform DLL 131795770645382836 0x6fbe0000 540672 C:\Windows\SysWOW64\mf.dll 10.0.14393.953 (rs1_release_inmarket.170303-1614) Microsoft Corporation Библиотека DLL Media Foundation 131795770645382836 0x6fd30000 139264 C:\Windows\SysWOW64\DEVOBJ.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Device Information Set DLL 131795770645382836 0x6ff20000 118784 C:\Users\User\AppData\Local\Yandex\YandexBrowser\Application\18.6.1.770\swiftshader\libegl.dll 4.0.0.3 SwiftShader libEGL 32-bit Dynamic Link Library 131795770645382836 0x6ff40000 126976 C:\Windows\SysWOW64\dxva2.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DirectX Video Acceleration 2.0 DLL 131795770645382836 0x6ff60000 172032 C:\Windows\SysWOW64\RTWorkQ.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL для WorkQueue реального времени 131795770645382836 0x70030000 593920 C:\Users\User\AppData\Local\Yandex\YandexBrowser\Application\18.6.1.770\browser_elf.dll 18.6.1.770 YANDEX LLC Yandex 131795770645382836 0x700d0000 434176 C:\Windows\SysWOW64\WINSPOOL.DRV 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Драйвер диспетчера очереди Windows 131795770645382836 0x70340000 536576 C:\Windows\SysWOW64\dxgi.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation DirectX Graphics Infrastructure 131795770645382836 0x703d0000 2056192 C:\Windows\SysWOW64\DWrite.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Службы Microsoft DirectX Typography 131795770645382836 0x705d0000 28672 C:\Windows\SysWOW64\DCIMAN32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DCI Manager 131795770645382836 0x707d0000 86016 C:\Windows\SysWOW64\SAMCLI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Security Accounts Manager Client DLL 131795770645382836 0x70a20000 94208 C:\Windows\SysWOW64\USP10.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Uniscribe Unicode script processor 131795770645382836 0x70ca0000 45056 C:\Windows\SysWOW64\NETUTILS.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API Helpers DLL 131795770645382836 0x70fd0000 1331200 C:\Windows\SysWOW64\dbghelp.dll 10.0.14321.1024 (rs1_release.160715-1616) Microsoft Windows Image Helper 131795770645382836 0x71140000 77824 C:\Windows\SysWOW64\NETAPI32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API DLL 131795770645382836 0x725e0000 2273280 C:\Windows\SysWOW64\iertutil.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служебная программа времени выполнения для Internet Explorer 131795770645382836 0x728e0000 1372160 C:\Windows\SysWOW64\PROPSYS.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Система страниц свойств (Майкрософт) 131795770645382836 0x72b90000 126976 C:\Windows\SysWOW64\dwmapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Интерфейс API диспетчера окон рабочего стола (Майкрософт) 131795770645382836 0x72cc0000 1658880 C:\Windows\SysWOW64\urlmon.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширения OLE32 для Win32 131795770645382836 0x73ac0000 81920 C:\Windows\SysWOW64\dhcpcsvc.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служба DHCP-клиента 131795770645382836 0x73ae0000 40960 C:\Windows\SysWOW64\Secur32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Security Support Provider Interface 131795770645382836 0x73f00000 192512 C:\Windows\SysWOW64\IPHLPAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API вспомогательного приложения IP 131795770645382836 0x74190000 110592 C:\Windows\SysWOW64\bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795770645382836 0x741b0000 77824 C:\Windows\SysWOW64\cryptsp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Cryptographic Service Provider API 131795770645382836 0x741f0000 143360 C:\Windows\SysWOW64\WINMMBASE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base Multimedia Extension API DLL 131795770645382836 0x74230000 147456 C:\Windows\SysWOW64\WINMM.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation MCI API DLL 131795770645382836 0x744d0000 2138112 C:\Windows\WinSxS\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.14393.953_none_89c2555adb023171\COMCTL32.dll 6.10 (rs1_release_inmarket.170303-1614) Microsoft Corporation Библиотека элементов управления взаимодействия с пользователем 131795770645382836 0x746e0000 32768 C:\Windows\SysWOW64\VERSION.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Version Checking and File Installation Libraries 131795770645382836 0x746f0000 106496 C:\Windows\SysWOW64\USERENV.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Userenv 131795770645382836 0x747d0000 40960 C:\Windows\SysWOW64\CRYPTBASE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base cryptographic API DLL 131795770645382836 0x747e0000 126976 C:\Windows\SysWOW64\SspiCli.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Security Support Provider Interface 131795770645382836 0x74800000 151552 C:\Windows\SysWOW64\IMM32.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Multi-User Windows IMM32 API Client DLL 131795770645382836 0x74910000 2170880 C:\Windows\SysWOW64\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795770645382836 0x74b30000 53248 C:\Windows\SysWOW64\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795770645382836 0x74b60000 790528 C:\Windows\SysWOW64\RPCRT4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795770645382836 0x74c30000 1417216 C:\Windows\SysWOW64\gdi32full.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation GDI Client DLL 131795770645382836 0x74d90000 24576 C:\Windows\SysWOW64\PSAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Process Status Helper 131795770645382836 0x74da0000 778240 C:\Windows\SysWOW64\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795770645382836 0x74e60000 557056 C:\Windows\SysWOW64\shcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795770645382836 0x74ef0000 540672 C:\Windows\SysWOW64\clbcatq.dll 2001.12.10941.16384 (rs1_release.160715-1616) Microsoft Corporation COM+ Configuration Catalog 131795770645382836 0x74f80000 278528 C:\Windows\SysWOW64\WINTRUST.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation Microsoft Trust Verification APIs 131795770645382836 0x74fd0000 405504 C:\Windows\SysWOW64\WS2_32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation 32-разрядная библиотека Windows Socket 2.0 131795770645382836 0x75040000 282624 C:\Windows\SysWOW64\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795770645382836 0x751d0000 57344 C:\Windows\SysWOW64\MSASN1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ASN.1 Runtime APIs 131795770645382836 0x751e0000 1708032 C:\Windows\SysWOW64\KERNELBASE.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645382836 0x75390000 266240 C:\Windows\SysWOW64\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795770645382836 0x753e0000 1560576 C:\Windows\SysWOW64\CRYPT32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API32 криптографии 131795770645382836 0x75560000 487424 C:\Windows\SysWOW64\ADVAPI32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795770645382836 0x756c0000 5693440 C:\Windows\SysWOW64\windows.storage.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API хранения Microsoft WinRT 131795770645382836 0x75c90000 286720 C:\Windows\SysWOW64\shlwapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека небольших программ оболочки 131795770645382836 0x75ce0000 20811776 C:\Windows\SysWOW64\SHELL32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Общая библиотека оболочки Windows 131795770645382836 0x770c0000 4239360 C:\Windows\SysWOW64\SETUPAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Setup API 131795770645382836 0x774d0000 86016 C:\Windows\SysWOW64\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795770645382836 0x774f0000 61440 C:\Windows\SysWOW64\profapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Profile Basic API 131795770645382836 0x77560000 1437696 C:\Windows\SysWOW64\USER32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795770645382836 0x776c0000 368640 C:\Windows\SysWOW64\bcryptPrimitives.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation Windows Cryptographic Primitives Library 131795770645382836 0x77780000 503808 C:\Windows\SysWOW64\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645382836 0x77800000 606208 C:\Windows\SysWOW64\OLEAUT32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795770645382836 0x77ac0000 966656 C:\Windows\SysWOW64\ole32.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft OLE для Windows 131795770645382836 0x77bb0000 176128 C:\Windows\SysWOW64\GDI32.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation GDI Client DLL 131795770645382836 0x77be0000 937984 C:\Windows\SysWOW64\COMDLG32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека общих диалоговых окон 131795770645382836 0x77cd0000 221184 C:\Windows\SysWOW64\cfgmgr32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Configuration Manager DLL 131795770645382836 0x77d10000 28672 C:\Windows\SysWOW64\NSI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation NSI User-mode interface DLL 131795770645382836 0x77d20000 1585152 C:\Windows\SysWOW64\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 131795770645382836 0x7ffad0270000 1908736 C:\Windows\SYSTEM32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 60 8968 7744 57 00000000:0031f1da 131769081206363215 0 0 0 Обязательная метка\Ненадежный обязательный уровень WIN-0UOTFKKVN1S\User browser.exe C:\Users\User\AppData\Local\Yandex\YandexBrowser\Application\browser.exe "C:\Users\User\AppData\Local\Yandex\YandexBrowser\Application\browser.exe" --type=renderer --enable-in-process-wmf-demuxer --field-trial-handle=1292,9555382311565764851,7120838982649204725,131072 --enable-ignition --service-pipe-token=183F52B8A6577BFD721F95F3A9641348 --lang=ru --user-id=32B2E0A1-3039-4C67-86BE-75A88EF21B54 --brand-id=yandex --partner-id=7924 --help-url=https://api.browser.yandex.ru/redirect/help/ --user-agent-info --translate-security-origin=https://translate.yandex.net --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --enable-instaserp --device-scale-factor=1 --num-raster-threads=1 --enable-compositor-image-animations --service-request-channel-token=183F52B8A6577BFD721F95F3A9641348 --renderer-client-id=4 --mojo-platform-channel-handle=2640 /prefetch:1 YANDEX LLC 18.6.1.770 Yandex 131795770645382953 0x10e0000 2519040 C:\Users\User\AppData\Local\Yandex\YandexBrowser\Application\browser.exe 18.6.1.770 YANDEX LLC Yandex 131795770645382953 0x58720000 59748352 C:\Users\User\AppData\Local\Yandex\YandexBrowser\Application\18.6.1.770\browser_child.dll 18.6.1.770 YANDEX LLC Yandex 131795770645382953 0x5c020000 335872 C:\Windows\System32\wow64.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation Win32 Emulation on NT64 131795770645382953 0x5c080000 487424 C:\Windows\System32\wow64win.dll 10.0.14393.1884 (rs1_release.171101-1233) Microsoft Corporation Wow64 Console and Win32 API Logging 131795770645382953 0x5c100000 40960 C:\Windows\System32\wow64cpu.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation AMD64 Wow64 CPU 131795770645382953 0x6e8b0000 1859584 C:\Windows\SysWOW64\mfmp4srcsnk.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL источника и приемника MPEG4 Media Foundation 131795770645382953 0x6ef30000 647168 C:\Windows\SysWOW64\evr.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека DLL средства отображения видео 131795770645382953 0x6efd0000 458752 C:\Windows\SysWOW64\msauddecmft.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Media Foundation Audio Decoders 131795770645382953 0x6f790000 1085440 C:\Windows\SysWOW64\mfperfhelper.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation MFPerf DLL 131795770645382953 0x6f8a0000 2220032 C:\Windows\SysWOW64\msmpeg2vdec.dll 10.0.14393.953 (rs1_release_inmarket.170303-1614) Microsoft Corporation Microsoft DTV-DVD Video Decoder 131795770645382953 0x6fac0000 1130496 C:\Windows\SysWOW64\mfplat.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Media Foundation Platform DLL 131795770645382953 0x6ff60000 172032 C:\Windows\SysWOW64\RTWorkQ.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL для WorkQueue реального времени 131795770645382953 0x70030000 593920 C:\Users\User\AppData\Local\Yandex\YandexBrowser\Application\18.6.1.770\browser_elf.dll 18.6.1.770 YANDEX LLC Yandex 131795770645382953 0x700d0000 434176 C:\Windows\SysWOW64\WINSPOOL.DRV 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Драйвер диспетчера очереди Windows 131795770645382953 0x70340000 536576 C:\Windows\SysWOW64\dxgi.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation DirectX Graphics Infrastructure 131795770645382953 0x703d0000 2056192 C:\Windows\SysWOW64\DWrite.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Службы Microsoft DirectX Typography 131795770645382953 0x707d0000 86016 C:\Windows\SysWOW64\SAMCLI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Security Accounts Manager Client DLL 131795770645382953 0x70a20000 94208 C:\Windows\SysWOW64\USP10.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Uniscribe Unicode script processor 131795770645382953 0x70ca0000 45056 C:\Windows\SysWOW64\NETUTILS.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API Helpers DLL 131795770645382953 0x70fd0000 1331200 C:\Windows\SysWOW64\dbghelp.dll 10.0.14321.1024 (rs1_release.160715-1616) Microsoft Windows Image Helper 131795770645382953 0x71140000 77824 C:\Windows\SysWOW64\NETAPI32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API DLL 131795770645382953 0x725e0000 2273280 C:\Windows\SysWOW64\iertutil.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служебная программа времени выполнения для Internet Explorer 131795770645382953 0x728e0000 1372160 C:\Windows\SysWOW64\PROPSYS.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Система страниц свойств (Майкрософт) 131795770645382953 0x72af0000 655360 C:\Windows\SysWOW64\WINHTTP.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Службы HTTP Windows 131795770645382953 0x72cc0000 1658880 C:\Windows\SysWOW64\urlmon.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширения OLE32 для Win32 131795770645382953 0x73ac0000 81920 C:\Windows\SysWOW64\dhcpcsvc.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служба DHCP-клиента 131795770645382953 0x73ae0000 40960 C:\Windows\SysWOW64\Secur32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Security Support Provider Interface 131795770645382953 0x73f00000 192512 C:\Windows\SysWOW64\IPHLPAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API вспомогательного приложения IP 131795770645382953 0x74190000 110592 C:\Windows\SysWOW64\bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795770645382953 0x741b0000 77824 C:\Windows\SysWOW64\cryptsp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Cryptographic Service Provider API 131795770645382953 0x741f0000 143360 C:\Windows\SysWOW64\WINMMBASE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base Multimedia Extension API DLL 131795770645382953 0x74230000 147456 C:\Windows\SysWOW64\WINMM.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation MCI API DLL 131795770645382953 0x744d0000 2138112 C:\Windows\WinSxS\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.14393.953_none_89c2555adb023171\COMCTL32.dll 6.10 (rs1_release_inmarket.170303-1614) Microsoft Corporation Библиотека элементов управления взаимодействия с пользователем 131795770645382953 0x746e0000 32768 C:\Windows\SysWOW64\VERSION.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Version Checking and File Installation Libraries 131795770645382953 0x746f0000 106496 C:\Windows\SysWOW64\USERENV.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Userenv 131795770645382953 0x747d0000 40960 C:\Windows\SysWOW64\CRYPTBASE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base cryptographic API DLL 131795770645382953 0x747e0000 126976 C:\Windows\SysWOW64\SspiCli.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Security Support Provider Interface 131795770645382953 0x74800000 151552 C:\Windows\SysWOW64\IMM32.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Multi-User Windows IMM32 API Client DLL 131795770645382953 0x74910000 2170880 C:\Windows\SysWOW64\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795770645382953 0x74b30000 53248 C:\Windows\SysWOW64\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795770645382953 0x74b60000 790528 C:\Windows\SysWOW64\RPCRT4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795770645382953 0x74c30000 1417216 C:\Windows\SysWOW64\gdi32full.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation GDI Client DLL 131795770645382953 0x74d90000 24576 C:\Windows\SysWOW64\PSAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Process Status Helper 131795770645382953 0x74da0000 778240 C:\Windows\SysWOW64\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795770645382953 0x74e60000 557056 C:\Windows\SysWOW64\shcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795770645382953 0x74f80000 278528 C:\Windows\SysWOW64\WINTRUST.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation Microsoft Trust Verification APIs 131795770645382953 0x74fd0000 405504 C:\Windows\SysWOW64\WS2_32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation 32-разрядная библиотека Windows Socket 2.0 131795770645382953 0x75040000 282624 C:\Windows\SysWOW64\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795770645382953 0x751d0000 57344 C:\Windows\SysWOW64\MSASN1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ASN.1 Runtime APIs 131795770645382953 0x751e0000 1708032 C:\Windows\SysWOW64\KERNELBASE.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645382953 0x75390000 266240 C:\Windows\SysWOW64\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795770645382953 0x753e0000 1560576 C:\Windows\SysWOW64\CRYPT32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API32 криптографии 131795770645382953 0x75560000 487424 C:\Windows\SysWOW64\ADVAPI32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795770645382953 0x756c0000 5693440 C:\Windows\SysWOW64\windows.storage.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API хранения Microsoft WinRT 131795770645382953 0x75c90000 286720 C:\Windows\SysWOW64\shlwapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека небольших программ оболочки 131795770645382953 0x75ce0000 20811776 C:\Windows\SysWOW64\SHELL32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Общая библиотека оболочки Windows 131795770645382953 0x774d0000 86016 C:\Windows\SysWOW64\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795770645382953 0x774f0000 61440 C:\Windows\SysWOW64\profapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Profile Basic API 131795770645382953 0x77560000 1437696 C:\Windows\SysWOW64\USER32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795770645382953 0x776c0000 368640 C:\Windows\SysWOW64\bcryptPrimitives.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation Windows Cryptographic Primitives Library 131795770645382953 0x77780000 503808 C:\Windows\SysWOW64\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645382953 0x77800000 606208 C:\Windows\SysWOW64\OLEAUT32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795770645382953 0x77ac0000 966656 C:\Windows\SysWOW64\ole32.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft OLE для Windows 131795770645382953 0x77bb0000 176128 C:\Windows\SysWOW64\GDI32.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation GDI Client DLL 131795770645382953 0x77be0000 937984 C:\Windows\SysWOW64\COMDLG32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека общих диалоговых окон 131795770645382953 0x77cd0000 221184 C:\Windows\SysWOW64\cfgmgr32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Configuration Manager DLL 131795770645382953 0x77d10000 28672 C:\Windows\SysWOW64\NSI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation NSI User-mode interface DLL 131795770645382953 0x77d20000 1585152 C:\Windows\SysWOW64\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 131795770645382953 0x7ffad0270000 1908736 C:\Windows\SYSTEM32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 61 4992 7744 57 00000000:0031f1da 131769081244357280 0 0 0 Обязательная метка\Ненадежный обязательный уровень WIN-0UOTFKKVN1S\User browser.exe C:\Users\User\AppData\Local\Yandex\YandexBrowser\Application\browser.exe "C:\Users\User\AppData\Local\Yandex\YandexBrowser\Application\browser.exe" --type=renderer --enable-in-process-wmf-demuxer --field-trial-handle=1292,9555382311565764851,7120838982649204725,131072 --enable-ignition --service-pipe-token=7E8A8199C364F4B0114F2A163B757250 --lang=ru --user-id=32B2E0A1-3039-4C67-86BE-75A88EF21B54 --brand-id=yandex --partner-id=7924 --help-url=https://api.browser.yandex.ru/redirect/help/ --user-agent-info --translate-security-origin=https://translate.yandex.net --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --enable-instaserp --device-scale-factor=1 --num-raster-threads=1 --enable-compositor-image-animations --service-request-channel-token=7E8A8199C364F4B0114F2A163B757250 --renderer-client-id=10 --mojo-platform-channel-handle=3904 /prefetch:1 YANDEX LLC 18.6.1.770 Yandex 131795770645383069 0x10e0000 2519040 C:\Users\User\AppData\Local\Yandex\YandexBrowser\Application\browser.exe 18.6.1.770 YANDEX LLC Yandex 131795770645383069 0x58720000 59748352 C:\Users\User\AppData\Local\Yandex\YandexBrowser\Application\18.6.1.770\browser_child.dll 18.6.1.770 YANDEX LLC Yandex 131795770645383069 0x5c020000 335872 C:\Windows\System32\wow64.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation Win32 Emulation on NT64 131795770645383069 0x5c080000 487424 C:\Windows\System32\wow64win.dll 10.0.14393.1884 (rs1_release.171101-1233) Microsoft Corporation Wow64 Console and Win32 API Logging 131795770645383069 0x5c100000 40960 C:\Windows\System32\wow64cpu.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation AMD64 Wow64 CPU 131795770645383069 0x6e8b0000 1859584 C:\Windows\SysWOW64\mfmp4srcsnk.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL источника и приемника MPEG4 Media Foundation 131795770645383069 0x6ef30000 647168 C:\Windows\SysWOW64\evr.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека DLL средства отображения видео 131795770645383069 0x6efd0000 458752 C:\Windows\SysWOW64\msauddecmft.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Media Foundation Audio Decoders 131795770645383069 0x6f790000 1085440 C:\Windows\SysWOW64\mfperfhelper.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation MFPerf DLL 131795770645383069 0x6f8a0000 2220032 C:\Windows\SysWOW64\msmpeg2vdec.dll 10.0.14393.953 (rs1_release_inmarket.170303-1614) Microsoft Corporation Microsoft DTV-DVD Video Decoder 131795770645383069 0x6fac0000 1130496 C:\Windows\SysWOW64\mfplat.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Media Foundation Platform DLL 131795770645383069 0x6ff60000 172032 C:\Windows\SysWOW64\RTWorkQ.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL для WorkQueue реального времени 131795770645383069 0x70030000 593920 C:\Users\User\AppData\Local\Yandex\YandexBrowser\Application\18.6.1.770\browser_elf.dll 18.6.1.770 YANDEX LLC Yandex 131795770645383069 0x700d0000 434176 C:\Windows\SysWOW64\WINSPOOL.DRV 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Драйвер диспетчера очереди Windows 131795770645383069 0x70340000 536576 C:\Windows\SysWOW64\dxgi.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation DirectX Graphics Infrastructure 131795770645383069 0x703d0000 2056192 C:\Windows\SysWOW64\DWrite.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Службы Microsoft DirectX Typography 131795770645383069 0x707d0000 86016 C:\Windows\SysWOW64\SAMCLI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Security Accounts Manager Client DLL 131795770645383069 0x70a20000 94208 C:\Windows\SysWOW64\USP10.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Uniscribe Unicode script processor 131795770645383069 0x70ca0000 45056 C:\Windows\SysWOW64\NETUTILS.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API Helpers DLL 131795770645383069 0x70fd0000 1331200 C:\Windows\SysWOW64\dbghelp.dll 10.0.14321.1024 (rs1_release.160715-1616) Microsoft Windows Image Helper 131795770645383069 0x71140000 77824 C:\Windows\SysWOW64\NETAPI32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API DLL 131795770645383069 0x725e0000 2273280 C:\Windows\SysWOW64\iertutil.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служебная программа времени выполнения для Internet Explorer 131795770645383069 0x728e0000 1372160 C:\Windows\SysWOW64\PROPSYS.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Система страниц свойств (Майкрософт) 131795770645383069 0x72af0000 655360 C:\Windows\SysWOW64\WINHTTP.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Службы HTTP Windows 131795770645383069 0x72cc0000 1658880 C:\Windows\SysWOW64\urlmon.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширения OLE32 для Win32 131795770645383069 0x73ac0000 81920 C:\Windows\SysWOW64\dhcpcsvc.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служба DHCP-клиента 131795770645383069 0x73ae0000 40960 C:\Windows\SysWOW64\Secur32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Security Support Provider Interface 131795770645383069 0x73f00000 192512 C:\Windows\SysWOW64\IPHLPAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API вспомогательного приложения IP 131795770645383069 0x74190000 110592 C:\Windows\SysWOW64\bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795770645383069 0x741b0000 77824 C:\Windows\SysWOW64\cryptsp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Cryptographic Service Provider API 131795770645383069 0x741f0000 143360 C:\Windows\SysWOW64\WINMMBASE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base Multimedia Extension API DLL 131795770645383069 0x74230000 147456 C:\Windows\SysWOW64\WINMM.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation MCI API DLL 131795770645383069 0x744d0000 2138112 C:\Windows\WinSxS\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.14393.953_none_89c2555adb023171\COMCTL32.dll 6.10 (rs1_release_inmarket.170303-1614) Microsoft Corporation Библиотека элементов управления взаимодействия с пользователем 131795770645383069 0x746e0000 32768 C:\Windows\SysWOW64\VERSION.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Version Checking and File Installation Libraries 131795770645383069 0x746f0000 106496 C:\Windows\SysWOW64\USERENV.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Userenv 131795770645383069 0x747d0000 40960 C:\Windows\SysWOW64\CRYPTBASE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base cryptographic API DLL 131795770645383069 0x747e0000 126976 C:\Windows\SysWOW64\SspiCli.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Security Support Provider Interface 131795770645383069 0x74800000 151552 C:\Windows\SysWOW64\IMM32.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Multi-User Windows IMM32 API Client DLL 131795770645383069 0x74910000 2170880 C:\Windows\SysWOW64\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795770645383069 0x74b30000 53248 C:\Windows\SysWOW64\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795770645383069 0x74b60000 790528 C:\Windows\SysWOW64\RPCRT4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795770645383069 0x74c30000 1417216 C:\Windows\SysWOW64\gdi32full.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation GDI Client DLL 131795770645383069 0x74d90000 24576 C:\Windows\SysWOW64\PSAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Process Status Helper 131795770645383069 0x74da0000 778240 C:\Windows\SysWOW64\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795770645383069 0x74e60000 557056 C:\Windows\SysWOW64\shcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795770645383069 0x74f80000 278528 C:\Windows\SysWOW64\WINTRUST.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation Microsoft Trust Verification APIs 131795770645383069 0x74fd0000 405504 C:\Windows\SysWOW64\WS2_32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation 32-разрядная библиотека Windows Socket 2.0 131795770645383069 0x75040000 282624 C:\Windows\SysWOW64\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795770645383069 0x751d0000 57344 C:\Windows\SysWOW64\MSASN1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ASN.1 Runtime APIs 131795770645383069 0x751e0000 1708032 C:\Windows\SysWOW64\KERNELBASE.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645383069 0x75390000 266240 C:\Windows\SysWOW64\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795770645383069 0x753e0000 1560576 C:\Windows\SysWOW64\CRYPT32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API32 криптографии 131795770645383069 0x75560000 487424 C:\Windows\SysWOW64\ADVAPI32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795770645383069 0x756c0000 5693440 C:\Windows\SysWOW64\windows.storage.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API хранения Microsoft WinRT 131795770645383069 0x75c90000 286720 C:\Windows\SysWOW64\shlwapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека небольших программ оболочки 131795770645383069 0x75ce0000 20811776 C:\Windows\SysWOW64\SHELL32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Общая библиотека оболочки Windows 131795770645383069 0x774d0000 86016 C:\Windows\SysWOW64\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795770645383069 0x774f0000 61440 C:\Windows\SysWOW64\profapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Profile Basic API 131795770645383069 0x77560000 1437696 C:\Windows\SysWOW64\USER32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795770645383069 0x776c0000 368640 C:\Windows\SysWOW64\bcryptPrimitives.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation Windows Cryptographic Primitives Library 131795770645383069 0x77780000 503808 C:\Windows\SysWOW64\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645383069 0x77800000 606208 C:\Windows\SysWOW64\OLEAUT32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795770645383069 0x77ac0000 966656 C:\Windows\SysWOW64\ole32.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft OLE для Windows 131795770645383069 0x77bb0000 176128 C:\Windows\SysWOW64\GDI32.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation GDI Client DLL 131795770645383069 0x77be0000 937984 C:\Windows\SysWOW64\COMDLG32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека общих диалоговых окон 131795770645383069 0x77cd0000 221184 C:\Windows\SysWOW64\cfgmgr32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Configuration Manager DLL 131795770645383069 0x77d10000 28672 C:\Windows\SysWOW64\NSI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation NSI User-mode interface DLL 131795770645383069 0x77d20000 1585152 C:\Windows\SysWOW64\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 131795770645383069 0x7ffad0270000 1908736 C:\Windows\SYSTEM32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 63 9504 664 6 00000000:0031f1da 131794956266598229 0 0 1 Обязательная метка\Средний обязательный уровень WIN-0UOTFKKVN1S\User InstallAgent.exe C:\Windows\System32\InstallAgent.exe C:\Windows\System32\InstallAgent.exe -Embedding Microsoft Corporation 10.0.14393.0 (rs1_release.160715-1616) InstallAgent 131795770645383260 0x7ff63d380000 229376 C:\Windows\System32\InstallAgent.exe 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation InstallAgent 131795770645383260 0x7ffabea60000 180224 C:\Windows\System32\VEStoreEventHandlers.dll 10.0.14393.479 (rs1_release.161110-2025) Microsoft Corporation TDL Store Event Handlers 131795770645383260 0x7ffac0bf0000 3559424 C:\Windows\System32\ActXPrxy.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation ActiveX Interface Marshaling Library 131795770645383260 0x7ffac4000000 274432 C:\Windows\SYSTEM32\policymanager.dll 10.0.14393.2035 (rs1_release_inmarket.180110-1910) Microsoft Corporation Policy Manager DLL 131795770645383260 0x7ffac4450000 86016 C:\Windows\SYSTEM32\usermgrcli.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation UserMgr API DLL 131795770645383260 0x7ffac4ad0000 61440 C:\Windows\System32\EAMProgressHandler.dll 10.0.14393.479 (rs1_release.161110-2025) Microsoft Corporation EAMProgressHandler 131795770645383260 0x7ffac4b90000 774144 C:\Windows\System32\StoreAgent.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation StoreAgent 131795770645383260 0x7ffac76a0000 159744 C:\Windows\System32\sppc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Software Licensing Client DLL 131795770645383260 0x7ffac7990000 155648 C:\Windows\System32\SLC.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Software Licensing Client DLL 131795770645383260 0x7ffacb140000 593920 C:\Windows\System32\msvcp110_win.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Microsoft® STL110 C++ Runtime Library 131795770645383260 0x7ffacc150000 94208 C:\Windows\System32\CRYPTSP.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Cryptographic Service Provider API 131795770645383260 0x7ffacc520000 622592 C:\Windows\SYSTEM32\sxs.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Fusion 2.5 131795770645383260 0x7ffacc620000 176128 C:\Windows\System32\Bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795770645383260 0x7ffacc6e0000 61440 C:\Windows\System32\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795770645383260 0x7ffacc6f0000 311296 C:\Windows\System32\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795770645383260 0x7ffacc740000 81920 C:\Windows\System32\profapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Profile Basic API 131795770645383260 0x7ffacc8f0000 1003520 C:\Windows\System32\ucrtbase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645383260 0x7ffacc9f0000 434176 C:\Windows\System32\bcryptPrimitives.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Cryptographic Primitives Library 131795770645383260 0x7ffacca60000 122880 C:\Windows\System32\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795770645383260 0x7ffaccae0000 692224 C:\Windows\System32\shcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795770645383260 0x7ffaccb90000 7180288 C:\Windows\System32\windows.storage.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API хранения Microsoft WinRT 131795770645383260 0x7ffacd270000 2215936 C:\Windows\System32\KERNELBASE.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645383260 0x7ffacd710000 638976 C:\Windows\System32\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645383260 0x7ffaced20000 782336 C:\Windows\System32\OLEAUT32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795770645383260 0x7ffacee50000 1183744 C:\Windows\System32\RPCRT4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795770645383260 0x7ffacef90000 647168 C:\Windows\System32\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795770645383260 0x7ffacf030000 651264 C:\Windows\System32\clbcatq.dll 2001.12.10941.16384 (rs1_release.160715-1616) Microsoft Corporation COM+ Configuration Catalog 131795770645383260 0x7ffacf0d0000 704512 C:\Windows\System32\KERNEL32.DLL 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645383260 0x7ffacf770000 212992 C:\Windows\System32\GDI32.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation GDI Client DLL 131795770645383260 0x7ffacf890000 188416 C:\Windows\System32\IMM32.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Multi-User Windows IMM32 API Client DLL 131795770645383260 0x7ffacf8c0000 1462272 C:\Windows\System32\user32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795770645383260 0x7ffacfb30000 2916352 C:\Windows\System32\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795770645383260 0x7ffacfe20000 663552 C:\Windows\System32\advapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795770645383260 0x7ffad01b0000 335872 C:\Windows\System32\shlwapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека небольших программ оболочки 131795770645383260 0x7ffad0210000 364544 C:\Windows\System32\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795770645383260 0x7ffad0270000 1908736 C:\Windows\SYSTEM32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 64 8768 664 6 00000000:0031f1da 131794956321853179 0 0 1 Обязательная метка\Средний обязательный уровень WIN-0UOTFKKVN1S\User InstallAgentUserBroker.exe C:\Windows\System32\InstallAgentUserBroker.exe C:\Windows\System32\InstallAgentUserBroker.exe -Embedding Microsoft Corporation 10.0.14393.2156 (rs1_release_inmarket.180321-1733) InstallAgentUserBroker 131795770645383355 0x22530450000 12288 C:\Windows\SYSTEM32\sfc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows File Protection 131795770645383355 0x7ff74f890000 278528 C:\Windows\System32\InstallAgentUserBroker.exe 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation InstallAgentUserBroker 131795770645383355 0x7ffabafc0000 700416 C:\Windows\SYSTEM32\wer.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека сообщений об ошибках Windows 131795770645383355 0x7ffabd8e0000 704512 C:\Windows\WinSxS\amd64_microsoft.windows.common-controls_6595b64144ccf1df_5.82.14393.447_none_0d5aa7fbb6d35646\Comctl32.dll 6.10 (rs1_release_inmarket.170303-1614) Microsoft Corporation Библиотека элементов управления взаимодействия с пользователем 131795770645383355 0x7ffabef80000 69632 C:\Windows\SYSTEM32\sfc_os.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows File Protection 131795770645383355 0x7ffabefd0000 258048 C:\Windows\System32\AEPIC.dll 10.0.17060.1029 (WinBuild.160101.0800) Microsoft Corporation Application Experience Program Cache 131795770645383355 0x7ffabf1d0000 192512 C:\Windows\System32\cryptnet.dll 10.0.14393.2035 (rs1_release_inmarket.180110-1910) Microsoft Corporation Crypto Network Related API 131795770645383355 0x7ffabf5d0000 2924544 C:\Windows\System32\WININET.dll 11.00.14393.447 (rs1_release_inmarket.161102-0100) Microsoft Corporation Расширения Интернета для Win32 131795770645383355 0x7ffabff60000 135168 C:\Windows\system32\ncryptsslp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft SChannel Provider 131795770645383355 0x7ffac0ad0000 86016 C:\Windows\SYSTEM32\mskeyprotect.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик защиты ключей (Майкрософт) 131795770645383355 0x7ffac34e0000 1843200 C:\Windows\System32\urlmon.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширения OLE32 для Win32 131795770645383355 0x7ffac3cb0000 2772992 C:\Windows\System32\iertutil.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служебная программа времени выполнения для Internet Explorer 131795770645383355 0x7ffac4000000 274432 C:\Windows\SYSTEM32\policymanager.dll 10.0.14393.2035 (rs1_release_inmarket.180110-1910) Microsoft Corporation Policy Manager DLL 131795770645383355 0x7ffac4b90000 774144 C:\Windows\System32\StoreAgent.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation StoreAgent 131795770645383355 0x7ffac6610000 40960 C:\Windows\System32\rasadhlp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Remote Access AutoDial Helper 131795770645383355 0x7ffac66a0000 86016 C:\Windows\SYSTEM32\ondemandconnroutehelper.dll 10.0.14393.351 (rs1_release_inmarket.161014-1755) Microsoft Corporation On Demand Connctiond Route Helper 131795770645383355 0x7ffac69c0000 839680 C:\Windows\SYSTEM32\winhttp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Службы HTTP Windows 131795770645383355 0x7ffac76a0000 159744 C:\Windows\System32\sppc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Software Licensing Client DLL 131795770645383355 0x7ffac7990000 155648 C:\Windows\System32\SLC.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Software Licensing Client DLL 131795770645383355 0x7ffac83d0000 106496 C:\Windows\SYSTEM32\dhcpcsvc.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служба DHCP-клиента 131795770645383355 0x7ffac83f0000 90112 C:\Windows\SYSTEM32\dhcpcsvc6.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиент DHCPv6 131795770645383355 0x7ffac8420000 434176 C:\Windows\System32\fwpuclnt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API пользовательского режима FWP/IPsec 131795770645383355 0x7ffac8810000 45056 C:\Windows\SYSTEM32\WINNSI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Network Store Information RPC interface 131795770645383355 0x7ffacb140000 593920 C:\Windows\System32\msvcp110_win.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Microsoft® STL110 C++ Runtime Library 131795770645383355 0x7ffacb420000 204800 C:\Windows\SYSTEM32\ntmarta.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик Windows NT MARTA 131795770645383355 0x7ffacbaf0000 495616 C:\Windows\system32\schannel.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик безопасности TLS/SSL 131795770645383355 0x7ffacbbb0000 208896 C:\Windows\system32\rsaenh.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Enhanced Cryptographic Provider 131795770645383355 0x7ffacbbf0000 40960 C:\Windows\System32\DPAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Data Protection API 131795770645383355 0x7ffacbd30000 229376 C:\Windows\SYSTEM32\IPHLPAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API вспомогательного приложения IP 131795770645383355 0x7ffacbd70000 659456 C:\Windows\System32\DNSAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Динамическая библиотека API DNS-клиента 131795770645383355 0x7ffacbfb0000 376832 C:\Windows\system32\mswsock.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширение поставщика службы API Microsoft Windows Sockets 2.0 131795770645383355 0x7ffacc150000 94208 C:\Windows\System32\CRYPTSP.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Cryptographic Service Provider API 131795770645383355 0x7ffacc170000 45056 C:\Windows\System32\CRYPTBASE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base cryptographic API DLL 131795770645383355 0x7ffacc1f0000 241664 C:\Windows\SYSTEM32\NTASN1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft ASN.1 API 131795770645383355 0x7ffacc230000 155648 C:\Windows\SYSTEM32\ncrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Маршрутизатор Windows NCrypt 131795770645383355 0x7ffacc350000 180224 C:\Windows\System32\SspiCli.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Security Support Provider Interface 131795770645383355 0x7ffacc520000 622592 C:\Windows\SYSTEM32\sxs.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Fusion 2.5 131795770645383355 0x7ffacc620000 176128 C:\Windows\System32\bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795770645383355 0x7ffacc6e0000 61440 C:\Windows\System32\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795770645383355 0x7ffacc6f0000 311296 C:\Windows\System32\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795770645383355 0x7ffacc740000 81920 C:\Windows\System32\profapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Profile Basic API 131795770645383355 0x7ffacc760000 65536 C:\Windows\System32\MSASN1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ASN.1 Runtime APIs 131795770645383355 0x7ffacc8f0000 1003520 C:\Windows\System32\ucrtbase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645383355 0x7ffacc9f0000 434176 C:\Windows\System32\bcryptPrimitives.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Cryptographic Primitives Library 131795770645383355 0x7ffacca60000 122880 C:\Windows\System32\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795770645383355 0x7ffacca80000 348160 C:\Windows\System32\WINTRUST.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation Microsoft Trust Verification APIs 131795770645383355 0x7ffaccae0000 692224 C:\Windows\System32\shcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795770645383355 0x7ffaccb90000 7180288 C:\Windows\System32\windows.storage.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API хранения Microsoft WinRT 131795770645383355 0x7ffacd270000 2215936 C:\Windows\System32\KERNELBASE.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645383355 0x7ffacd490000 1871872 C:\Windows\System32\CRYPT32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API32 криптографии 131795770645383355 0x7ffacd710000 638976 C:\Windows\System32\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645383355 0x7ffacd7b0000 270336 C:\Windows\System32\cfgmgr32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Configuration Manager DLL 131795770645383355 0x7ffacd810000 22056960 C:\Windows\System32\SHELL32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Общая библиотека оболочки Windows 131795770645383355 0x7ffaced20000 782336 C:\Windows\System32\OLEAUT32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795770645383355 0x7ffacee50000 1183744 C:\Windows\System32\RPCRT4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795770645383355 0x7ffacef80000 32768 C:\Windows\System32\NSI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation NSI User-mode interface DLL 131795770645383355 0x7ffacef90000 647168 C:\Windows\System32\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795770645383355 0x7ffacf030000 651264 C:\Windows\System32\clbcatq.dll 2001.12.10941.16384 (rs1_release.160715-1616) Microsoft Corporation COM+ Configuration Catalog 131795770645383355 0x7ffacf0d0000 704512 C:\Windows\System32\KERNEL32.DLL 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645383355 0x7ffacf770000 212992 C:\Windows\System32\GDI32.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation GDI Client DLL 131795770645383355 0x7ffacf820000 434176 C:\Windows\System32\WS2_32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation 32-разрядная библиотека Windows Socket 2.0 131795770645383355 0x7ffacf890000 188416 C:\Windows\System32\IMM32.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Multi-User Windows IMM32 API Client DLL 131795770645383355 0x7ffacf8c0000 1462272 C:\Windows\System32\user32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795770645383355 0x7ffacfb30000 2916352 C:\Windows\System32\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795770645383355 0x7ffacfe20000 663552 C:\Windows\System32\advapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795770645383355 0x7ffad0070000 1277952 C:\Windows\System32\OLE32.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft OLE для Windows 131795770645383355 0x7ffad01b0000 335872 C:\Windows\System32\SHLWAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека небольших программ оболочки 131795770645383355 0x7ffad0210000 364544 C:\Windows\System32\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795770645383355 0x7ffad0270000 1908736 C:\Windows\SYSTEM32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 65 9636 664 6 00000000:0031f1da 131794956424585250 0 0 1 Обязательная метка\Средний обязательный уровень WIN-0UOTFKKVN1S\User SystemSettingsBroker.exe C:\Windows\System32\SystemSettingsBroker.exe C:\Windows\System32\SystemSettingsBroker.exe -Embedding Microsoft Corporation 10.0.14393.0 (rs1_release.160715-1616) System Settings Broker 131795770645383490 0x7ff6015f0000 196608 C:\Windows\System32\SystemSettingsBroker.exe 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation System Settings Broker 131795770645383490 0x7ffac1c40000 94208 C:\Windows\System32\SystemSettings.DataModel.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SystemSettings.Datamodel private API 131795770645383490 0x7ffacc6e0000 61440 C:\Windows\System32\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795770645383490 0x7ffacc8f0000 1003520 C:\Windows\System32\ucrtbase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645383490 0x7ffacc9f0000 434176 C:\Windows\System32\bcryptPrimitives.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Cryptographic Primitives Library 131795770645383490 0x7ffacd270000 2215936 C:\Windows\System32\KERNELBASE.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645383490 0x7ffacee50000 1183744 C:\Windows\System32\RPCRT4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795770645383490 0x7ffacef90000 647168 C:\Windows\System32\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795770645383490 0x7ffacf030000 651264 C:\Windows\System32\clbcatq.dll 2001.12.10941.16384 (rs1_release.160715-1616) Microsoft Corporation COM+ Configuration Catalog 131795770645383490 0x7ffacf0d0000 704512 C:\Windows\System32\KERNEL32.DLL 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645383490 0x7ffacfb30000 2916352 C:\Windows\System32\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795770645383490 0x7ffad0210000 364544 C:\Windows\System32\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795770645383490 0x7ffad0270000 1908736 C:\Windows\SYSTEM32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 66 10592 664 6 00000000:0031f1da 131794956519902643 0 0 1 Обязательная метка\Средний обязательный уровень WIN-0UOTFKKVN1S\User SystemSettings.exe C:\Windows\ImmersiveControlPanel\SystemSettings.exe "C:\Windows\ImmersiveControlPanel\SystemSettings.exe" -ServerName:microsoft.windows.immersivecontrolpanel Microsoft Corporation 10.0.14393.82 (rs1_release.160805-1735) Параметры 131795770645383654 0x18099ef0000 12288 C:\Windows\SYSTEM32\WMI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation WMI DC and DP functionality 131795770645383654 0x7ff7937a0000 98304 C:\Windows\ImmersiveControlPanel\SystemSettings.exe 10.0.14393.82 (rs1_release.160805-1735) Microsoft Corporation Параметры 131795770645383654 0x7ffaabce0000 2535424 C:\Windows\System32\NetworkMobileSettings.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation System settings network mobile handlers group 131795770645383654 0x7ffaac0c0000 1396736 C:\Windows\System32\Windows.UI.Xaml.Phone.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows UI XAML Phone API 131795770645383654 0x7ffaac220000 4952064 C:\Windows\ImmersiveControlPanel\SystemSettings.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation System Settings Application 131795770645383654 0x7ffaadd90000 258048 C:\Windows\System32\NetworkDesktopSettings.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Группа обработчиков системных параметров сетевого рабочего стола 131795770645383654 0x7ffaaf920000 905216 C:\Windows\ImmersiveControlPanel\SystemSettingsViewModel.Desktop.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation System Settings View Model Desktop 131795770645383654 0x7ffab0970000 262144 C:\Windows\system32\credprovhost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Хост инфраструктуры поставщика учетных данных 131795770645383654 0x7ffab0a70000 454656 C:\Windows\System32\fhcfg.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Диспетчер конфигураций истории файлов 131795770645383654 0x7ffab1d80000 262144 C:\Windows\SYSTEM32\eappcfg.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Eap Peer Config 131795770645383654 0x7ffab5520000 3231744 C:\Windows\SYSTEM32\msftedit.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Элемент управления "Поле ввода форматированного текста", версия 8.5 131795770645383654 0x7ffab5b40000 2527232 C:\Windows\SYSTEM32\dwrite.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Службы Microsoft DirectX Typography 131795770645383654 0x7ffab6710000 17231872 C:\Windows\System32\Windows.UI.Xaml.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows.UI.Xaml dll 131795770645383654 0x7ffab7d80000 753664 C:\Windows\SYSTEM32\RASAPI32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API удаленного доступа 131795770645383654 0x7ffab8190000 9191424 C:\Windows\system32\twinui.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation TWINUI 131795770645383654 0x7ffab91d0000 69632 C:\Windows\ImmersiveControlPanel\Telemetry.Desktop.dll 10.0.14393.953 (rs1_release_inmarket.170303-1614) Microsoft Corporation System Settings Telemetry Desktop 131795770645383654 0x7ffab9a40000 299008 C:\Windows\System32\RasMediaManager.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Ras Media Manager DLL 131795770645383654 0x7ffaba950000 188416 C:\Windows\System32\EthernetMediaManager.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Ethernet Media Manager DLL 131795770645383654 0x7ffabaa50000 339968 C:\Windows\System32\NetworkUXBroker.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation NetworkUXBroker DLL 131795770645383654 0x7ffabae40000 110592 C:\Windows\SYSTEM32\capauthz.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API авторизации возможностей 131795770645383654 0x7ffabaf70000 270336 C:\Windows\SYSTEM32\edputil.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служебная программа EDP 131795770645383654 0x7ffabb3c0000 450560 C:\Windows\SYSTEM32\TextInputFramework.dll 10.0.14393.2189 (rs1_release.180329-1711) Microsoft Corporation "TextInputFramework.DYNLINK" 131795770645383654 0x7ffabb430000 65536 C:\Windows\SYSTEM32\pcacli.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Program Compatibility Assistant Client Module 131795770645383654 0x7ffabb490000 512000 C:\Windows\system32\twinapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation twinapi 131795770645383654 0x7ffabcc60000 1122304 C:\Windows\System32\MiracastReceiver.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API приемника Miracast 131795770645383654 0x7ffabcf30000 110592 C:\Windows\SYSTEM32\MPR.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека маршрутизации для нескольких служб доступа 131795770645383654 0x7ffabd4a0000 1613824 C:\Windows\System32\Windows.Globalization.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Globalization 131795770645383654 0x7ffabe6e0000 561152 C:\Windows\system32\directmanipulation.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Direct Manipulation Component 131795770645383654 0x7ffabe9c0000 188416 C:\Windows\SYSTEM32\globinputhost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Globalization Extension API for Input 131795770645383654 0x7ffabeb20000 385024 C:\Windows\System32\Windows.ApplicationModel.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows ApplicationModel API Server 131795770645383654 0x7ffabfd80000 86016 C:\Windows\System32\threadpoolwinrt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows WinRT Threadpool 131795770645383654 0x7ffabff10000 155648 C:\Windows\SYSTEM32\SRVCLI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Server Service Client DLL 131795770645383654 0x7ffac00c0000 282624 C:\Windows\SYSTEM32\windows.ui.core.textinput.dll 10.0.14393.2189 (rs1_release.180329-1711) Microsoft Corporation Windows.UI.Core.TextInput dll 131795770645383654 0x7ffac01e0000 397312 C:\Windows\SYSTEM32\wincorlib.DLL 10.0.14393.576 (rs1_release_inmarket.161208-2252) Microsoft Corporation Microsoft Windows ® WinRT core library 131795770645383654 0x7ffac0470000 1478656 C:\Windows\SYSTEM32\MFPlat.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Media Foundation Platform DLL 131795770645383654 0x7ffac0bf0000 3559424 C:\Windows\System32\ActXPrxy.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation ActiveX Interface Marshaling Library 131795770645383654 0x7ffac1470000 704512 C:\Windows\System32\ieproxy.dll 11.00.14393.2007 (rs1_release.171231-1800) Microsoft Corporation IE ActiveX Interface Marshaling Library 131795770645383654 0x7ffac1e50000 188416 C:\Windows\SYSTEM32\RTWorkQ.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL для WorkQueue реального времени 131795770645383654 0x7ffac20d0000 110592 C:\Windows\System32\rmclient.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Resource Manager Client 131795770645383654 0x7ffac23c0000 331776 C:\Windows\System32\OneCoreCommonProxyStub.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation OneCore Common Proxy Stub 131795770645383654 0x7ffac2700000 98304 C:\Windows\SYSTEM32\NETAPI32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API DLL 131795770645383654 0x7ffac2990000 385024 C:\Windows\SYSTEM32\NInput.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Pen and Touch Input Component 131795770645383654 0x7ffac2a20000 81920 C:\Windows\SYSTEM32\rtutils.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Routing Utilities 131795770645383654 0x7ffac2bf0000 65536 C:\Windows\SYSTEM32\EFSUTIL.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation EFS Utility Library 131795770645383654 0x7ffac34e0000 1843200 C:\Windows\SYSTEM32\urlmon.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширения OLE32 для Win32 131795770645383654 0x7ffac3cb0000 2772992 C:\Windows\SYSTEM32\iertutil.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служебная программа времени выполнения для Internet Explorer 131795770645383654 0x7ffac4000000 274432 C:\Windows\SYSTEM32\policymanager.dll 10.0.14393.2035 (rs1_release_inmarket.180110-1910) Microsoft Corporation Policy Manager DLL 131795770645383654 0x7ffac42a0000 659456 C:\Windows\SYSTEM32\StateRepository.Core.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation StateRepository Core 131795770645383654 0x7ffac46d0000 4161536 C:\Windows\System32\Windows.StateRepository.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Сервер Windows StateRepository API Server 131795770645383654 0x7ffac4e70000 102400 C:\Windows\SYSTEM32\samcli.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Security Accounts Manager Client DLL 131795770645383654 0x7ffac5350000 1765376 C:\Windows\System32\Windows.UI.Immersive.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation WINDOWS.UI.IMMERSIVE 131795770645383654 0x7ffac5c50000 131072 C:\Windows\SYSTEM32\rasman.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Remote Access Connection Manager 131795770645383654 0x7ffac60e0000 221184 C:\Windows\SYSTEM32\XmlLite.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft XmlLite Library 131795770645383654 0x7ffac69c0000 839680 C:\Windows\SYSTEM32\WINHTTP.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Службы HTTP Windows 131795770645383654 0x7ffac6ac0000 835584 C:\Windows\System32\Windows.UI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Runtime UI Foundation DLL 131795770645383654 0x7ffac6c40000 2596864 C:\Windows\WinSxS\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.14393.953_none_42151e83c686086b\Comctl32.dll 6.10 (rs1_release_inmarket.170303-1614) Microsoft Corporation Библиотека элементов управления взаимодействия с пользователем 131795770645383654 0x7ffac6f50000 5632000 C:\Windows\SYSTEM32\d2d1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека Microsoft D2D 131795770645383654 0x7ffac7580000 1077248 C:\Windows\SYSTEM32\MrmCoreR.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Windows MRM 131795770645383654 0x7ffac76a0000 159744 C:\Windows\SYSTEM32\sppc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Software Licensing Client DLL 131795770645383654 0x7ffac7720000 1601536 C:\Windows\System32\OneCoreUAPCommonProxyStub.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation OneCoreUAP Common Proxy Stub 131795770645383654 0x7ffac7990000 155648 C:\Windows\SYSTEM32\SLC.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Software Licensing Client DLL 131795770645383654 0x7ffac7fc0000 2674688 C:\Windows\SYSTEM32\d3d10warp.dll 10.0.14393.576 (rs1_release_inmarket.161208-2252) Microsoft Corporation Direct3D 10 Rasterizer 131795770645383654 0x7ffac84f0000 299008 C:\Windows\system32\DataExchange.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation Data exchange 131795770645383654 0x7ffac8880000 69632 C:\Windows\SYSTEM32\wmiclnt.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation WMI Client API 131795770645383654 0x7ffac88a0000 2842624 C:\Windows\SYSTEM32\d3d11.dll 10.0.14393.953 (rs1_release_inmarket.170303-1614) Microsoft Corporation Direct3D 11 Runtime 131795770645383654 0x7ffac9220000 397312 C:\Windows\SYSTEM32\wevtapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API настройки и использования событий 131795770645383654 0x7ffac9290000 40960 C:\Windows\SYSTEM32\DSROLE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DS Setup Client DLL 131795770645383654 0x7ffac92e0000 1269760 C:\Windows\System32\WinTypes.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL основных типов Windows 131795770645383654 0x7ffac9500000 2682880 C:\Windows\system32\CoreUIComponents.dll 131795770645383654 0x7ffac9f50000 1736704 C:\Windows\system32\windowscodecs.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Microsoft Windows Codecs Library 131795770645383654 0x7ffaca340000 1593344 C:\Windows\SYSTEM32\PROPSYS.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Система страниц свойств (Майкрософт) 131795770645383654 0x7ffaca4e0000 77824 C:\Windows\SYSTEM32\WTSAPI32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Remote Desktop Session Host Server SDK APIs 131795770645383654 0x7ffaca560000 45056 C:\Windows\SYSTEM32\NcaApi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Network Connectivity Assistant API 131795770645383654 0x7ffaca570000 421888 C:\Windows\SYSTEM32\Bcp47Langs.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation BCP47 Language Classes 131795770645383654 0x7ffaca5e0000 155648 C:\Windows\SYSTEM32\dwmapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Интерфейс API диспетчера окон рабочего стола (Майкрософт) 131795770645383654 0x7ffaca640000 770048 C:\Windows\SYSTEM32\CoreMessaging.dll 10.0.14393.0 Microsoft Corporation Microsoft CoreMessaging Dll 131795770645383654 0x7ffaca770000 1380352 C:\Windows\SYSTEM32\dcomp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft DirectComposition Library 131795770645383654 0x7ffacaf00000 610304 C:\Windows\system32\uxtheme.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека тем UxTheme (Microsoft) 131795770645383654 0x7ffacb140000 593920 C:\Windows\SYSTEM32\msvcp110_win.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Microsoft® STL110 C++ Runtime Library 131795770645383654 0x7ffacb1e0000 1163264 C:\Windows\System32\twinapi.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation twinapi.appcore 131795770645383654 0x7ffacb300000 364544 C:\Windows\SYSTEM32\VEEventDispatcher.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Visual Element Event dispatcher 131795770645383654 0x7ffacb3f0000 163840 C:\Windows\SYSTEM32\DEVOBJ.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Device Information Set DLL 131795770645383654 0x7ffacb780000 651264 C:\Windows\SYSTEM32\dxgi.dll 10.0.14393.953 (rs1_release_inmarket.170303-1614) Microsoft Corporation DirectX Graphics Infrastructure 131795770645383654 0x7ffacbd30000 229376 C:\Windows\SYSTEM32\IPHLPAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API вспомогательного приложения IP 131795770645383654 0x7ffacbe20000 53248 C:\Windows\SYSTEM32\netutils.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API Helpers DLL 131795770645383654 0x7ffacbe40000 126976 C:\Windows\SYSTEM32\USERENV.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Userenv 131795770645383654 0x7ffacc150000 94208 C:\Windows\SYSTEM32\cryptsp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Cryptographic Service Provider API 131795770645383654 0x7ffacc170000 45056 C:\Windows\SYSTEM32\CRYPTBASE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base cryptographic API DLL 131795770645383654 0x7ffacc1f0000 241664 C:\Windows\SYSTEM32\NTASN1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft ASN.1 API 131795770645383654 0x7ffacc230000 155648 C:\Windows\SYSTEM32\ncrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Маршрутизатор Windows NCrypt 131795770645383654 0x7ffacc350000 180224 C:\Windows\SYSTEM32\SspiCli.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Security Support Provider Interface 131795770645383654 0x7ffacc5c0000 352256 C:\Windows\SYSTEM32\WINSTA.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Winstation Library 131795770645383654 0x7ffacc620000 176128 C:\Windows\SYSTEM32\bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795770645383654 0x7ffacc6e0000 61440 C:\Windows\System32\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795770645383654 0x7ffacc6f0000 311296 C:\Windows\System32\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795770645383654 0x7ffacc740000 81920 C:\Windows\System32\profapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Profile Basic API 131795770645383654 0x7ffacc760000 65536 C:\Windows\System32\MSASN1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ASN.1 Runtime APIs 131795770645383654 0x7ffacc8f0000 1003520 C:\Windows\System32\ucrtbase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645383654 0x7ffacc9f0000 434176 C:\Windows\System32\bcryptPrimitives.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Cryptographic Primitives Library 131795770645383654 0x7ffacca60000 122880 C:\Windows\System32\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795770645383654 0x7ffaccae0000 692224 C:\Windows\System32\shcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795770645383654 0x7ffaccb90000 7180288 C:\Windows\System32\windows.storage.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API хранения Microsoft WinRT 131795770645383654 0x7ffacd270000 2215936 C:\Windows\System32\KERNELBASE.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645383654 0x7ffacd490000 1871872 C:\Windows\System32\CRYPT32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API32 криптографии 131795770645383654 0x7ffacd710000 638976 C:\Windows\System32\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645383654 0x7ffacd7b0000 270336 C:\Windows\System32\cfgmgr32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Configuration Manager DLL 131795770645383654 0x7ffacd810000 22056960 C:\Windows\System32\SHELL32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Общая библиотека оболочки Windows 131795770645383654 0x7ffaced20000 782336 C:\Windows\System32\OLEAUT32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795770645383654 0x7ffacee50000 1183744 C:\Windows\System32\RPCRT4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795770645383654 0x7ffacef90000 647168 C:\Windows\System32\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795770645383654 0x7ffacf030000 651264 C:\Windows\System32\clbcatq.dll 2001.12.10941.16384 (rs1_release.160715-1616) Microsoft Corporation COM+ Configuration Catalog 131795770645383654 0x7ffacf0d0000 704512 C:\Windows\System32\KERNEL32.DLL 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645383654 0x7ffacf1e0000 1417216 C:\Windows\System32\msctf.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Серверная библиотека MSCTF 131795770645383654 0x7ffacf770000 212992 C:\Windows\System32\GDI32.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation GDI Client DLL 131795770645383654 0x7ffacf820000 434176 C:\Windows\System32\WS2_32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation 32-разрядная библиотека Windows Socket 2.0 131795770645383654 0x7ffacf890000 188416 C:\Windows\System32\IMM32.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Multi-User Windows IMM32 API Client DLL 131795770645383654 0x7ffacf8c0000 1462272 C:\Windows\System32\USER32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795770645383654 0x7ffacfb30000 2916352 C:\Windows\System32\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795770645383654 0x7ffacfe20000 663552 C:\Windows\System32\advapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795770645383654 0x7ffad0070000 1277952 C:\Windows\System32\ole32.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft OLE для Windows 131795770645383654 0x7ffad01b0000 335872 C:\Windows\System32\SHLWAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека небольших программ оболочки 131795770645383654 0x7ffad0210000 364544 C:\Windows\System32\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795770645383654 0x7ffad0270000 1908736 C:\Windows\SYSTEM32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 67 10964 664 6 00000000:0031f1ab 131794956837373387 0 0 1 Обязательная метка\Высокий обязательный уровень WIN-0UOTFKKVN1S\User DllHost.exe C:\Windows\system32\DllHost.exe C:\Windows\system32\DllHost.exe /Processid:{BA126F01-2166-11D1-B1D0-00805FC1270E} Microsoft Corporation 10.0.14393.0 (rs1_release.160715-1616) COM Surrogate 131795770645383742 0x7ff7a2280000 36864 C:\Windows\system32\DllHost.exe 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation COM Surrogate 131795770645383742 0x7ffab2460000 2822144 C:\Windows\system32\netshell.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Оболочка сетевых подключений 131795770645383742 0x7ffac9790000 98304 C:\Windows\system32\nlaapi.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Network Location Awareness 2 131795770645383742 0x7ffacaf00000 610304 C:\Windows\system32\uxtheme.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека тем UxTheme (Microsoft) 131795770645383742 0x7ffacbd30000 229376 C:\Windows\system32\IPHLPAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API вспомогательного приложения IP 131795770645383742 0x7ffacc6e0000 61440 C:\Windows\System32\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795770645383742 0x7ffacc6f0000 311296 C:\Windows\System32\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795770645383742 0x7ffacc740000 81920 C:\Windows\System32\profapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Profile Basic API 131795770645383742 0x7ffacc8f0000 1003520 C:\Windows\System32\ucrtbase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645383742 0x7ffacc9f0000 434176 C:\Windows\System32\bcryptPrimitives.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Cryptographic Primitives Library 131795770645383742 0x7ffacca60000 122880 C:\Windows\System32\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795770645383742 0x7ffaccae0000 692224 C:\Windows\System32\shcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795770645383742 0x7ffaccb90000 7180288 C:\Windows\System32\windows.storage.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API хранения Microsoft WinRT 131795770645383742 0x7ffacd270000 2215936 C:\Windows\System32\KERNELBASE.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645383742 0x7ffacd7b0000 270336 C:\Windows\System32\cfgmgr32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Configuration Manager DLL 131795770645383742 0x7ffacd810000 22056960 C:\Windows\System32\SHELL32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Общая библиотека оболочки Windows 131795770645383742 0x7ffacee50000 1183744 C:\Windows\System32\RPCRT4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795770645383742 0x7ffacef90000 647168 C:\Windows\System32\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795770645383742 0x7ffacf030000 651264 C:\Windows\System32\clbcatq.dll 2001.12.10941.16384 (rs1_release.160715-1616) Microsoft Corporation COM+ Configuration Catalog 131795770645383742 0x7ffacf0d0000 704512 C:\Windows\System32\KERNEL32.DLL 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645383742 0x7ffacf770000 212992 C:\Windows\System32\GDI32.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation GDI Client DLL 131795770645383742 0x7ffacf890000 188416 C:\Windows\System32\IMM32.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Multi-User Windows IMM32 API Client DLL 131795770645383742 0x7ffacf8c0000 1462272 C:\Windows\System32\user32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795770645383742 0x7ffacfb30000 2916352 C:\Windows\System32\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795770645383742 0x7ffacfe20000 663552 C:\Windows\System32\advapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795770645383742 0x7ffad0070000 1277952 C:\Windows\System32\ole32.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft OLE для Windows 131795770645383742 0x7ffad01b0000 335872 C:\Windows\System32\SHLWAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека небольших программ оболочки 131795770645383742 0x7ffad0210000 364544 C:\Windows\System32\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795770645383742 0x7ffad0270000 1908736 C:\Windows\SYSTEM32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 68 8940 2156 62 00000000:0031f1da 131794956984780982 0 0 1 Обязательная метка\Средний обязательный уровень WIN-0UOTFKKVN1S\User Photoshop.exe C:\Program Files\Adobe\Adobe Photoshop CC 2017\Photoshop.exe "C:\Program Files\Adobe\Adobe Photoshop CC 2017\Photoshop.exe" "C:\Users\User\Downloads\tlauncher_psd\tlauncher_psd.psd" Adobe Systems, Incorporated 18.0.1 (2017.0.1 20161130.r.29 2016/11/30:23:00:00 CL 1099099) Adobe Photoshop CC 2017 131795770645383911 0xb20000 9846784 C:\Program Files\Adobe\Adobe Photoshop CC 2017\cg.dll 3.0.00007 NVIDIA Corporation Cg Core Runtime Library 131795770645383911 0x1490000 3276800 C:\Program Files\Adobe\Adobe Photoshop CC 2017\libmmd.dll 12.0.12.2 Intel Corporation Math Library for Intel(r) Compilers (thread-safe) 131795770645383911 0x10000000 6070272 C:\Program Files\Adobe\Adobe Photoshop CC 2017\svml_dispmd.dll 12.0.12.2 Intel Corporation SVML Library for Intel(r) Compilers (thread-safe) 131795770645383911 0x4fad0000 70561792 C:\Program Files\Common Files\Adobe\Plug-Ins\CC\File Formats\Camera Raw.8bi 9.8 Adobe Systems Incorporated Photoshop Camera Raw Plug-in 131795770645383911 0x5b690000 4763648 C:\Program Files\Adobe\Adobe Photoshop CC 2017\SVGRE.dll 6, 0, 0, 37447 Adobe Systems Incorporated SVGRE 6.0 131795770645383911 0x5bcf0000 241664 C:\Program Files\Adobe\Adobe Photoshop CC 2017\AXE8SharedExpat.dll 3.8.0.34320 Adobe Systems Incorporated AXE Shared EXPAT (UTF-8 native) 131795770645383911 0x5bd30000 61440 C:\Program Files\Adobe\Adobe Photoshop CC 2017\dnssd.dll 3,0,0,2 Apple Inc. Bonjour Client Library 131795770645383911 0x5bd40000 974848 C:\Program Files\Adobe\Adobe Photoshop CC 2017\AXEDOMCore.dll 3.8.0.34320 Adobe Systems Incorporated Adobe XML Engine: DOM Core 131795770645383911 0x5be30000 1306624 C:\Program Files\Adobe\Adobe Photoshop CC 2017\icucnv40.dll 4, 0, 0, 1001 IBM Corporation and others IBM ICU Common DLL 131795770645383911 0x6a400000 479232 C:\Program Files\Adobe\Adobe Photoshop CC 2017\cgGL.dll 3.0.00007 NVIDIA Corporation Cg GL Runtime Library 131795770645383911 0x180000000 159744 C:\Program Files\Adobe\Adobe Photoshop CC 2017\Required\Plug-Ins\File Formats\PSDX.8bi 14.0 Adobe Systems Incorporated Photoshop Remix Plug-In 131795770645383911 0x1c2eee90000 13922304 C:\Program Files\Adobe\Adobe Photoshop CC 2017\icudt40.dll 4, 0, 0, 1001 IBM Corporation and others ICU Data DLL 131795770645383911 0x1c2f1470000 12288 C:\Program Files\Adobe\Adobe Photoshop CC 2017\PSArt.dll 18.0.1 (2017.0.1 20161130.r.29 2016/11/30:23:00:00 CL 1099099) Adobe Systems, Incorporated Photoshop Resource DLL 131795770645383911 0x1c2f3490000 1593344 C:\Program Files\Adobe\Adobe Photoshop CC 2017\Photoshop.dll 18.0.1 (2017.0.1 20161130.r.29 2016/11/30:23:00:00 CL 1099099) Adobe Systems, Incorporated Photoshop Resource DLL 131795770645383911 0x1c2f3620000 2699264 C:\Program Files\Adobe\Adobe Photoshop CC 2017\PSViews.dll 18.0.1 (2017.0.1 20161130.r.29 2016/11/30:23:00:00 CL 1099099) Adobe Systems, Incorporated Photoshop Resource DLL 131795770645383911 0x1c2f93a0000 1429504 C:\Program Files\Adobe\Adobe Photoshop CC 2017\WRServices.dll 12.0.0.1000 WinSoft S.A. WRServices Engine 131795770645383911 0x1c2f9540000 1085440 C:\Program Files\Adobe\Adobe Photoshop CC 2017\Required\Linguistics\Providers\Plugins2\WRLiloPlugin.bundle\WRLiloPlugin.dll 1.3.6rc1 WinSoft SA WR LILO Plugin 131795770645383911 0x7ff6c3030000 182624256 C:\Program Files\Adobe\Adobe Photoshop CC 2017\Photoshop.exe 18.0.1 (2017.0.1 20161130.r.29 2016/11/30:23:00:00 CL 1099099) Adobe Systems, Incorporated Adobe Photoshop CC 2017 131795770645383911 0x7ffaa0cb0000 1880064 C:\Program Files\Adobe\Adobe Photoshop CC 2017\aif.dll 131795770645383911 0x7ffaa0e80000 2637824 C:\Program Files\Adobe\Adobe Photoshop CC 2017\LogSession.dll 7.4.1.60.45263 Adobe Systems Incorporated LogSession 131795770645383911 0x7ffaa1110000 70823936 C:\Program Files\Adobe\Adobe Photoshop CC 2017\Required\Plug-Ins\Spaces\libcef.dll 3.2526.1347.gcf20046 Chromium Embedded Framework (CEF) Dynamic Link Library 131795770645383911 0x7ffaa54a0000 7950336 C:\Program Files\Adobe\Adobe Photoshop CC 2017\Required\Plug-Ins\Extensions\ScriptingSupport.8li 18.0.1 Adobe Systems, Incorporated ScriptingSupport 131795770645383911 0x7ffaa5c40000 2113536 C:\Program Files\Adobe\Adobe Photoshop CC 2017\Required\Linguistics\Providers\Plugins2\AdobeHunspellPlugin\AdobeHunspellPlugin.dll 11.0.0.22122 Adobe Systems Incorporated AdobeHunspellPlugin 131795770645383911 0x7ffaa5e50000 4493312 C:\Program Files\Adobe\Adobe Photoshop CC 2017\CoolType.dll 5.15.00.37447 Adobe Systems Incorporated CoolType Typography Engine 131795770645383911 0x7ffaa62a0000 5267456 C:\Program Files\Adobe\Adobe Photoshop CC 2017\AGM.dll 4.30.60.37447 Adobe Systems Incorporated Adobe Graphics Manager 131795770645383911 0x7ffaa67b0000 1839104 C:\Program Files\Adobe\Adobe Photoshop CC 2017\ACE.dll 2.20.02.37447 Adobe Systems Incorporated Adobe Color Engine 131795770645383911 0x7ffaa6980000 1302528 C:\Program Files\Adobe\Adobe Photoshop CC 2017\AdobeXMP.dll 5.6-c138 ( 64 bit ), 79.159824, 2016/09/14-01:09:01 Adobe Systems Incorporated Adobe XMP Core 5.6-c138 ( 64 bit ) 131795770645383911 0x7ffaa6ac0000 692224 C:\Program Files\Adobe\Adobe Photoshop CC 2017\Required\Plug-Ins\Extensions\MultiProcessor Support.8bx 18.0.1 (2017.0.1 x001 x003) Adobe Systems, Incorporated Adobe Photoshop CC 2017 131795770645383911 0x7ffaa6b70000 1077248 C:\Program Files\Adobe\Adobe Photoshop CC 2017\Required\Plug-Ins\Extensions\MMXCore.8bx 18.0.1 (2017.0.1 x001 x003) Adobe Systems, Incorporated Adobe Photoshop CC 2017 131795770645383911 0x7ffaa6c80000 2093056 C:\Windows\system32\wpdshext.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширение оболочки для переносных устройств 131795770645383911 0x7ffaa6fd0000 978944 C:\Windows\SYSTEM32\MSVCR120.dll 12.00.40660.0 built by: VSULDR Microsoft Corporation Microsoft® C Runtime Library 131795770645383911 0x7ffaa70c0000 679936 C:\Windows\SYSTEM32\MSVCP120.dll 12.00.40660.0 built by: VSULDR Microsoft Corporation Microsoft® C Runtime Library 131795770645383911 0x7ffaa7170000 2826240 C:\Program Files\Adobe\Adobe Photoshop CC 2017\opencv_imgproc249.dll 131795770645383911 0x7ffaa7430000 2564096 C:\Program Files\Adobe\Adobe Photoshop CC 2017\opencv_core249.dll 131795770645383911 0x7ffaa76b0000 1478656 C:\Program Files\Adobe\Adobe Photoshop CC 2017\AIDE.dll 1.5.0.36540 Adobe Systems Incorporated Adobe Image Decode Encode Library 131795770645383911 0x7ffaa7820000 278528 C:\Program Files\Adobe\Adobe Photoshop CC 2017\tbbmalloc.dll 4, 4, 2016, 0412 Intel Corporation Scalable Allocator library 131795770645383911 0x7ffaa7870000 1011712 C:\Windows\SYSTEM32\DDRAW.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft DirectDraw 131795770645383911 0x7ffaa7b20000 2613248 C:\Program Files\Adobe\Adobe Photoshop CC 2017\AdobeOwl.dll 5.2.11 Adobe Systems, Incorporated Adobe Owl(64 bit) 131795770645383911 0x7ffaa7da0000 749568 C:\Program Files\Adobe\Adobe Photoshop CC 2017\ScCore.dll 4.5.6.4 Adobe Systems Incorporated Scripting Components Core (64 bit) 131795770645383911 0x7ffaa7e60000 18792448 C:\Program Files\Adobe\Adobe Photoshop CC 2017\mona.dll 131795770645383911 0x7ffaa9050000 802816 C:\Program Files\Adobe\Adobe Photoshop CC 2017\ExtendScript.dll 4.5.6.4 Adobe Systems Incorporated Adobe ExtendScript scripting engine (64 bit) 131795770645383911 0x7ffaa9120000 5681152 C:\Program Files\Adobe\Adobe Photoshop CC 2017\PlugPlugOwl.dll 7.0.0.67 Adobe Systems Incorporated PlugPlugOwl Standard Dll (64 bit) 131795770645383911 0x7ffaa9690000 5595136 C:\Program Files\Adobe\Adobe Photoshop CC 2017\MPS.dll 5.8.1.37174 Adobe Systems Incorporated Modular Parsing System 131795770645383911 0x7ffaa9bf0000 335872 C:\Program Files\Adobe\Adobe Photoshop CC 2017\ahclient.dll 2.0.0.0 Adobe Systems Incorporated Adobe Help Client Library 131795770645383911 0x7ffaa9c50000 569344 C:\Program Files\Adobe\Adobe Photoshop CC 2017\manta.dll 131795770645383911 0x7ffaa9ce0000 278528 C:\Program Files\Adobe\Adobe Photoshop CC 2017\tbb.dll 4, 4, 2016, 0412 Intel Corporation Intel(R) Threading Building Blocks library 131795770645383911 0x7ffaa9d30000 499712 C:\Program Files\Adobe\Adobe Photoshop CC 2017\VulcanControl.dll __ Adobe Systems Incorporated Vulcan Application Control Library 131795770645383911 0x7ffaa9db0000 630784 C:\Program Files\Adobe\Adobe Photoshop CC 2017\VulcanMessage5.dll __ Adobe Systems Incorporated Vulcan Message Library 131795770645383911 0x7ffaa9e50000 1241088 C:\Program Files\Adobe\Adobe Photoshop CC 2017\AdbePM.dll 2.5.00 Adobe Systems Incorporated Adobe PatchMatch 131795770645383911 0x7ffaa9f80000 167936 C:\Program Files\Adobe\Adobe Photoshop CC 2017\CITThreading.dll 2.1.0.1 ( 32 bit Debug) Adobe Systems Incorporated CITTHREADING_NAME, 2.1.0.1 ( 32 bit Debug) 131795770645383911 0x7ffaa9fb0000 1101824 C:\Program Files\Adobe\Adobe Photoshop CC 2017\adobe_caps.dll 10,0,0,6 Adobe Systems Incorporated Adobe CAPS DLL 131795770645383911 0x7ffaaa190000 1191936 C:\Windows\SYSTEM32\OPENGL32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation OpenGL Client DLL 131795770645383911 0x7ffaaa2c0000 593920 C:\Windows\SYSTEM32\mscms.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL-библиотека системы сопоставления цветов Майкрософт 131795770645383911 0x7ffaaa5f0000 2056192 C:\Program Files\Adobe\Adobe Photoshop CC 2017\IMSLib.dll 10.0.0.1 Adobe Systems Incorporated IMSLib DLL 131795770645383911 0x7ffaaa9c0000 9007104 C:\Program Files\Adobe\Adobe Photoshop CC 2017\Required\Plug-Ins\File Formats\Dicom.8bi 18.0.1 Adobe Systems, Incorporated Adobe Dicom Plugin 131795770645383911 0x7ffaaba80000 184320 C:\Windows\SYSTEM32\GLU32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека подпрограмм OpenGL 131795770645383911 0x7ffaabca0000 233472 C:\Program Files\Adobe\Adobe Photoshop CC 2017\PLUGIN.dll 18.0.1 (2017.0.1 x001 x003) Adobe Systems, Incorporated Photoshop Plugin Utilities 131795770645383911 0x7ffaade70000 270336 C:\Windows\SYSTEM32\icm32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Color Management Module (CMM) 131795770645383911 0x7ffab06d0000 245760 C:\Windows\system32\c_g18030.dll 10.0.14393.103 (rs1_release_inmarket.160819-1924) Microsoft Corporation GB18030 DBCS-Unicode Conversion DLL 131795770645383911 0x7ffab0b60000 495616 C:\Program Files\Adobe\Adobe Photoshop CC 2017\AdobeSVGAGM.dll 1.0.0.37447 Adobe Systems Incorporated Adobe SVG AGM Library 131795770645383911 0x7ffab1e60000 1478656 C:\Program Files\Adobe\Adobe Photoshop CC 2017\AdobeXMPFiles.dll 5.7-f022 ( 64 bit ), 79.159824, 2016/09/14-01:09:01 Adobe Systems Incorporated Adobe XMP Files 5.7-f022 ( 64 bit ) 131795770645383911 0x7ffab22e0000 1544192 C:\Program Files\Adobe\Adobe Photoshop CC 2017\Required\Plug-Ins\Spaces\Spaces.8li 18.0.1 Adobe Systems, Incorporated Spaces 131795770645383911 0x7ffab3410000 167936 C:\Program Files\Adobe\Adobe Photoshop CC 2017\libglog.dll 131795770645383911 0x7ffab4af0000 606208 C:\Windows\system32\audioses.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Сеанс обработки звука 131795770645383911 0x7ffab5b40000 2527232 C:\Windows\SYSTEM32\DWrite.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Службы Microsoft DirectX Typography 131795770645383911 0x7ffab8da0000 1675264 C:\Windows\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.14393.1715_none_aec701fbddd850fa\gdiplus.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Microsoft GDI+ 131795770645383911 0x7ffabaf70000 270336 C:\Windows\SYSTEM32\edputil.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служебная программа EDP 131795770645383911 0x7ffabb070000 512000 C:\Program Files\Adobe\Adobe Photoshop CC 2017\AdobePIP.dll 7.4.1.60.45263 Adobe Systems, Incorporated Adobe Product Improvement Program 131795770645383911 0x7ffabb250000 380928 C:\Program Files\Adobe\Adobe Photoshop CC 2017\BIBUtils.dll 1.1.01.37447 Adobe Systems Incorporated Bravo Interface Binder Utilities 131795770645383911 0x7ffabbc40000 643072 C:\Windows\SYSTEM32\MSVCP140.dll 14.10.24516.0 built by: VCTOOLSRELESC Microsoft Corporation Microsoft® C Runtime Library 131795770645383911 0x7ffabbce0000 90112 C:\Windows\SYSTEM32\VCRUNTIME140.dll 14.10.24516.0 built by: VCTOOLSRELESC Microsoft Corporation Microsoft® C Runtime Library 131795770645383911 0x7ffabcc00000 339968 C:\Windows\SYSTEM32\STI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиентская библиотека устройств неподвижных изображений 131795770645383911 0x7ffabd180000 548864 C:\Windows\SYSTEM32\WINSPOOL.DRV 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Драйвер диспетчера очереди Windows 131795770645383911 0x7ffabf5d0000 2924544 C:\Windows\SYSTEM32\WININET.dll 11.00.14393.447 (rs1_release_inmarket.161102-0100) Microsoft Corporation Расширения Интернета для Win32 131795770645383911 0x7ffac0610000 3088384 C:\Windows\SYSTEM32\msi.dll 5.0.14393.2155 Microsoft Corporation Windows Installer 131795770645383911 0x7ffac0b40000 315392 C:\Windows\System32\dlnashext.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLNA Namespace DLL 131795770645383911 0x7ffac0bf0000 3559424 C:\Windows\System32\ActXPrxy.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation ActiveX Interface Marshaling Library 131795770645383911 0x7ffac1300000 598016 C:\Program Files\Adobe\Adobe Photoshop CC 2017\BIB.dll 1.2.03.37447 Adobe Systems Incorporated Bravo Interface Binder 131795770645383911 0x7ffac1b70000 122880 C:\Windows\System32\DevDispItemProvider.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Подсистема DeviceItem inproc devquery 131795770645383911 0x7ffac1d60000 589824 C:\Windows\SYSTEM32\webio.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API протоколов передачи по Веб 131795770645383911 0x7ffac1fd0000 999424 C:\Windows\system32\wbem\fastprox.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation WMI Custom Marshaller 131795770645383911 0x7ffac21d0000 81920 C:\Windows\system32\wbem\wbemsvc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation WMI 131795770645383911 0x7ffac2700000 98304 C:\Windows\SYSTEM32\NETAPI32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API DLL 131795770645383911 0x7ffac2b80000 40960 C:\Windows\SYSTEM32\VERSION.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Version Checking and File Installation Libraries 131795770645383911 0x7ffac32b0000 151552 C:\Program Files\Adobe\Adobe Photoshop CC 2017\AdobeXMPScript.dll 5.2-s002 ( 64 bit ), 79.159824, 2016/09/14-01:09:01 Adobe Systems Incorporated Adobe XMP Script 5.2-s002 ( 64 bit ) 131795770645383911 0x7ffac34e0000 1843200 C:\Windows\SYSTEM32\urlmon.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширения OLE32 для Win32 131795770645383911 0x7ffac3cb0000 2772992 C:\Windows\SYSTEM32\iertutil.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служебная программа времени выполнения для Internet Explorer 131795770645383911 0x7ffac4220000 520192 C:\Windows\SYSTEM32\wbemcomn.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation WMI 131795770645383911 0x7ffac4470000 65536 C:\Windows\system32\wbem\wbemprox.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation WMI 131795770645383911 0x7ffac4c50000 36864 C:\Windows\SYSTEM32\WSOCK32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Socket 32-Bit DLL 131795770645383911 0x7ffac6610000 40960 C:\Windows\System32\rasadhlp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Remote Access AutoDial Helper 131795770645383911 0x7ffac69c0000 839680 C:\Windows\SYSTEM32\WINHTTP.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Службы HTTP Windows 131795770645383911 0x7ffac6aa0000 94208 C:\Program Files\Adobe\Adobe Photoshop CC 2017\amtlib.dll 10.0.0.3 painter AMTEmu Licensing 131795770645383911 0x7ffac6ba0000 49152 C:\Windows\SYSTEM32\Secur32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Security Support Provider Interface 131795770645383911 0x7ffac6bd0000 413696 C:\Windows\SYSTEM32\OLEACC.dll 7.2.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Active Accessibility Core Component 131795770645383911 0x7ffac6c40000 2596864 C:\Windows\WinSxS\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.14393.953_none_42151e83c686086b\Comctl32.dll 6.10 (rs1_release_inmarket.170303-1614) Microsoft Corporation Библиотека элементов управления взаимодействия с пользователем 131795770645383911 0x7ffac6ec0000 36864 C:\Windows\system32\IconCodecService.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Converts a PNG part of the icon to a legacy bmp icon 131795770645383911 0x7ffac76e0000 118784 C:\Program Files\Adobe\Adobe Photoshop CC 2017\Required\Plug-Ins\Extensions\FastCore.8bx 18.0.1 (2017.0.1 x001 x003) Adobe Systems, Incorporated Adobe Photoshop CC 2017 131795770645383911 0x7ffac7710000 40960 C:\Windows\SYSTEM32\wiatrace.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation WIA Tracing 131795770645383911 0x7ffac83d0000 106496 C:\Windows\SYSTEM32\dhcpcsvc.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служба DHCP-клиента 131795770645383911 0x7ffac83f0000 90112 C:\Windows\SYSTEM32\dhcpcsvc6.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиент DHCPv6 131795770645383911 0x7ffac84f0000 299008 C:\Windows\system32\dataexchange.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation Data exchange 131795770645383911 0x7ffac8810000 45056 C:\Windows\SYSTEM32\WINNSI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Network Store Information RPC interface 131795770645383911 0x7ffac88a0000 2842624 C:\Windows\system32\d3d11.dll 10.0.14393.953 (rs1_release_inmarket.170303-1614) Microsoft Corporation Direct3D 11 Runtime 131795770645383911 0x7ffac92e0000 1269760 C:\Windows\SYSTEM32\wintypes.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL основных типов Windows 131795770645383911 0x7ffac9480000 462848 C:\Windows\System32\MMDevApi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation MMDevice API 131795770645383911 0x7ffac9790000 98304 C:\Windows\system32\NLAapi.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Network Location Awareness 2 131795770645383911 0x7ffac9f50000 1736704 C:\Windows\SYSTEM32\WindowsCodecs.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Microsoft Windows Codecs Library 131795770645383911 0x7ffaca340000 1593344 C:\Windows\SYSTEM32\PROPSYS.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Система страниц свойств (Майкрософт) 131795770645383911 0x7ffaca4e0000 77824 C:\Windows\SYSTEM32\WTSAPI32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Remote Desktop Session Host Server SDK APIs 131795770645383911 0x7ffaca540000 32768 C:\Windows\SYSTEM32\DCIMAN32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DCI Manager 131795770645383911 0x7ffaca5e0000 155648 C:\Windows\system32\dwmapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Интерфейс API диспетчера окон рабочего стола (Майкрософт) 131795770645383911 0x7ffaca770000 1380352 C:\Windows\system32\dcomp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft DirectComposition Library 131795770645383911 0x7ffacab20000 102400 C:\Windows\SYSTEM32\USP10.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Uniscribe Unicode script processor 131795770645383911 0x7ffacab40000 176128 C:\Windows\SYSTEM32\WINMMBASE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base Multimedia Extension API DLL 131795770645383911 0x7ffacaba0000 143360 C:\Windows\SYSTEM32\WINMM.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation MCI API DLL 131795770645383911 0x7ffacac80000 28672 C:\Windows\SYSTEM32\MSIMG32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation GDIEXT Client DLL 131795770645383911 0x7ffacadf0000 499712 C:\Windows\SYSTEM32\apphelp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиентская библиотека совместимости приложений 131795770645383911 0x7ffacaf00000 610304 C:\Windows\system32\uxtheme.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека тем UxTheme (Microsoft) 131795770645383911 0x7ffacb1e0000 1163264 C:\Windows\system32\twinapi.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation twinapi.appcore 131795770645383911 0x7ffacb3f0000 163840 C:\Windows\System32\DEVOBJ.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Device Information Set DLL 131795770645383911 0x7ffacb420000 204800 C:\Windows\SYSTEM32\ntmarta.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик Windows NT MARTA 131795770645383911 0x7ffacb780000 651264 C:\Windows\SYSTEM32\dxgi.dll 10.0.14393.953 (rs1_release_inmarket.170303-1614) Microsoft Corporation DirectX Graphics Infrastructure 131795770645383911 0x7ffacbbb0000 208896 C:\Windows\system32\rsaenh.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Enhanced Cryptographic Provider 131795770645383911 0x7ffacbd30000 229376 C:\Windows\SYSTEM32\IPHLPAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API вспомогательного приложения IP 131795770645383911 0x7ffacbd70000 659456 C:\Windows\SYSTEM32\DNSAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Динамическая библиотека API DNS-клиента 131795770645383911 0x7ffacbe40000 126976 C:\Windows\SYSTEM32\USERENV.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Userenv 131795770645383911 0x7ffacbfb0000 376832 C:\Windows\system32\mswsock.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширение поставщика службы API Microsoft Windows Sockets 2.0 131795770645383911 0x7ffacc150000 94208 C:\Windows\SYSTEM32\CRYPTSP.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Cryptographic Service Provider API 131795770645383911 0x7ffacc170000 45056 C:\Windows\SYSTEM32\CRYPTBASE.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base cryptographic API DLL 131795770645383911 0x7ffacc350000 180224 C:\Windows\SYSTEM32\SspiCli.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Security Support Provider Interface 131795770645383911 0x7ffacc520000 622592 C:\Windows\SYSTEM32\sxs.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Fusion 2.5 131795770645383911 0x7ffacc5c0000 352256 C:\Windows\SYSTEM32\WINSTA.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Winstation Library 131795770645383911 0x7ffacc620000 176128 C:\Windows\SYSTEM32\bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795770645383911 0x7ffacc6e0000 61440 C:\Windows\System32\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795770645383911 0x7ffacc6f0000 311296 C:\Windows\System32\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795770645383911 0x7ffacc740000 81920 C:\Windows\System32\profapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Profile Basic API 131795770645383911 0x7ffacc760000 65536 C:\Windows\System32\MSASN1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ASN.1 Runtime APIs 131795770645383911 0x7ffacc8f0000 1003520 C:\Windows\System32\ucrtbase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645383911 0x7ffacc9f0000 434176 C:\Windows\System32\bcryptPrimitives.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Cryptographic Primitives Library 131795770645383911 0x7ffacca60000 122880 C:\Windows\System32\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795770645383911 0x7ffacca80000 348160 C:\Windows\System32\WINTRUST.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation Microsoft Trust Verification APIs 131795770645383911 0x7ffaccae0000 692224 C:\Windows\System32\shcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795770645383911 0x7ffaccb90000 7180288 C:\Windows\System32\windows.storage.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API хранения Microsoft WinRT 131795770645383911 0x7ffacd270000 2215936 C:\Windows\System32\KERNELBASE.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645383911 0x7ffacd490000 1871872 C:\Windows\System32\CRYPT32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API32 криптографии 131795770645383911 0x7ffacd710000 638976 C:\Windows\System32\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645383911 0x7ffacd7b0000 270336 C:\Windows\System32\cfgmgr32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Configuration Manager DLL 131795770645383911 0x7ffacd800000 32768 C:\Windows\System32\PSAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Process Status Helper 131795770645383911 0x7ffacd810000 22056960 C:\Windows\System32\SHELL32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Общая библиотека оболочки Windows 131795770645383911 0x7ffaced20000 782336 C:\Windows\System32\OLEAUT32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795770645383911 0x7ffacee50000 1183744 C:\Windows\System32\RPCRT4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795770645383911 0x7ffacef80000 32768 C:\Windows\System32\NSI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation NSI User-mode interface DLL 131795770645383911 0x7ffacef90000 647168 C:\Windows\System32\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795770645383911 0x7ffacf030000 651264 C:\Windows\System32\clbcatq.dll 2001.12.10941.16384 (rs1_release.160715-1616) Microsoft Corporation COM+ Configuration Catalog 131795770645383911 0x7ffacf0d0000 704512 C:\Windows\System32\KERNEL32.DLL 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645383911 0x7ffacf1e0000 1417216 C:\Windows\System32\MSCTF.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Серверная библиотека MSCTF 131795770645383911 0x7ffacf340000 4362240 C:\Windows\System32\SETUPAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Setup API 131795770645383911 0x7ffacf770000 212992 C:\Windows\System32\GDI32.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation GDI Client DLL 131795770645383911 0x7ffacf820000 434176 C:\Windows\System32\WS2_32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation 32-разрядная библиотека Windows Socket 2.0 131795770645383911 0x7ffacf890000 188416 C:\Windows\System32\IMM32.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Multi-User Windows IMM32 API Client DLL 131795770645383911 0x7ffacf8c0000 1462272 C:\Windows\System32\USER32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795770645383911 0x7ffacfa30000 1024000 C:\Windows\System32\COMDLG32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека общих диалоговых окон 131795770645383911 0x7ffacfb30000 2916352 C:\Windows\System32\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795770645383911 0x7ffacfe20000 663552 C:\Windows\System32\ADVAPI32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795770645383911 0x7ffad0070000 1277952 C:\Windows\System32\ole32.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft OLE для Windows 131795770645383911 0x7ffad01b0000 335872 C:\Windows\System32\shlwapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека небольших программ оболочки 131795770645383911 0x7ffad0210000 364544 C:\Windows\System32\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795770645383911 0x7ffad0270000 1908736 C:\Windows\SYSTEM32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 69 10000 8940 68 00000000:0031f1da 131794957424930105 0 0 0 Обязательная метка\Средний обязательный уровень WIN-0UOTFKKVN1S\User AdobeIPCBroker.exe C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\IPC\AdobeIPCBroker.exe "C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\IPC\AdobeIPCBroker.exe" "-launchedbyvulcan" Adobe Systems Incorporated 5.0.0.76 Adobe IPC Broker 131795770645384008 0xbe0000 798720 C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\IPC\AdobeIPCBroker.exe 5.0.0.76 Adobe Systems Incorporated Adobe IPC Broker 131795770645384008 0x5c020000 335872 C:\Windows\System32\wow64.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation Win32 Emulation on NT64 131795770645384008 0x5c080000 487424 C:\Windows\System32\wow64win.dll 10.0.14393.1884 (rs1_release.171101-1233) Microsoft Corporation Wow64 Console and Win32 API Logging 131795770645384008 0x5c100000 40960 C:\Windows\System32\wow64cpu.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation AMD64 Wow64 CPU 131795770645384008 0x60750000 1556480 C:\Program Files (x86)\360\Total Security\safemon\safemon.dll 8, 4, 0, 1420 Qihu 360 Software Co., Ltd. 360 Internet Security Internet Protection 131795770645384008 0x70ca0000 45056 C:\Windows\SysWOW64\NETUTILS.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API Helpers DLL 131795770645384008 0x70cb0000 65536 C:\Windows\SysWOW64\WKSCLI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Workstation Service Client DLL 131795770645384008 0x71140000 77824 C:\Windows\SysWOW64\NETAPI32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API DLL 131795770645384008 0x72b90000 126976 C:\Windows\SysWOW64\dwmapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Интерфейс API диспетчера окон рабочего стола (Майкрософт) 131795770645384008 0x74110000 479232 C:\Windows\SysWOW64\uxtheme.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека тем UxTheme (Microsoft) 131795770645384008 0x74190000 110592 C:\Windows\SysWOW64\bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795770645384008 0x746e0000 32768 C:\Windows\SysWOW64\VERSION.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Version Checking and File Installation Libraries 131795770645384008 0x74730000 598016 C:\Windows\SysWOW64\apphelp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиентская библиотека совместимости приложений 131795770645384008 0x747d0000 40960 C:\Windows\SysWOW64\CRYPTBASE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base cryptographic API DLL 131795770645384008 0x747e0000 126976 C:\Windows\SysWOW64\SspiCli.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Security Support Provider Interface 131795770645384008 0x74800000 151552 C:\Windows\SysWOW64\IMM32.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Multi-User Windows IMM32 API Client DLL 131795770645384008 0x74910000 2170880 C:\Windows\SysWOW64\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795770645384008 0x74b30000 53248 C:\Windows\SysWOW64\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795770645384008 0x74b60000 790528 C:\Windows\SysWOW64\RPCRT4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795770645384008 0x74c30000 1417216 C:\Windows\SysWOW64\gdi32full.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation GDI Client DLL 131795770645384008 0x74d90000 24576 C:\Windows\SysWOW64\PSAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Process Status Helper 131795770645384008 0x74da0000 778240 C:\Windows\SysWOW64\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795770645384008 0x74e60000 557056 C:\Windows\SysWOW64\shcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795770645384008 0x74ef0000 540672 C:\Windows\SysWOW64\clbcatq.dll 2001.12.10941.16384 (rs1_release.160715-1616) Microsoft Corporation COM+ Configuration Catalog 131795770645384008 0x74fd0000 405504 C:\Windows\SysWOW64\WS2_32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation 32-разрядная библиотека Windows Socket 2.0 131795770645384008 0x75040000 282624 C:\Windows\SysWOW64\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795770645384008 0x751e0000 1708032 C:\Windows\SysWOW64\KERNELBASE.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645384008 0x75390000 266240 C:\Windows\SysWOW64\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795770645384008 0x75560000 487424 C:\Windows\SysWOW64\ADVAPI32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795770645384008 0x756c0000 5693440 C:\Windows\SysWOW64\windows.storage.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API хранения Microsoft WinRT 131795770645384008 0x75c90000 286720 C:\Windows\SysWOW64\shlwapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека небольших программ оболочки 131795770645384008 0x75ce0000 20811776 C:\Windows\SysWOW64\SHELL32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Общая библиотека оболочки Windows 131795770645384008 0x774d0000 86016 C:\Windows\SysWOW64\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795770645384008 0x774f0000 61440 C:\Windows\SysWOW64\profapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Profile Basic API 131795770645384008 0x77560000 1437696 C:\Windows\SysWOW64\USER32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795770645384008 0x776c0000 368640 C:\Windows\SysWOW64\bcryptPrimitives.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation Windows Cryptographic Primitives Library 131795770645384008 0x77780000 503808 C:\Windows\SysWOW64\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645384008 0x77800000 606208 C:\Windows\SysWOW64\OLEAUT32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795770645384008 0x77ac0000 966656 C:\Windows\SysWOW64\ole32.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft OLE для Windows 131795770645384008 0x77bb0000 176128 C:\Windows\SysWOW64\GDI32.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation GDI Client DLL 131795770645384008 0x77cd0000 221184 C:\Windows\SysWOW64\cfgmgr32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Configuration Manager DLL 131795770645384008 0x77d20000 1585152 C:\Windows\SysWOW64\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 131795770645384008 0x7ffad0270000 1908736 C:\Windows\SYSTEM32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 70 10064 8940 68 00000000:0031f1da 131794957636746019 0 0 1 Обязательная метка\Средний обязательный уровень WIN-0UOTFKKVN1S\User Adobe Spaces Helper.exe C:\Program Files\Adobe\Adobe Photoshop CC 2017\Required\Plug-Ins\Spaces\Adobe Spaces Helper.exe "C:\Program Files\Adobe\Adobe Photoshop CC 2017\Required\Plug-Ins\Spaces\Adobe Spaces Helper.exe" --type=renderer --no-sandbox --touch-events=disabled --lang=en-US --lang=ru --locales-dir-path="C:\Program Files\Adobe\Adobe Photoshop CC 2017\Required\Plug-Ins\Spaces\Resources\locales\\" --log-file="C:\Users\User\AppData\Roaming\Adobe\Adobe Photoshop CC 2017\Logs\debug.log" --resources-dir-path="C:\Program Files\Adobe\Adobe Photoshop CC 2017\Required\Plug-Ins\Spaces\Resources\\" --enable-pinch --device-scale-factor=1 --num-raster-threads=1 --content-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --video-image-texture-target=3553 --disable-accelerated-video-decode --disable-webrtc-hw-encoding --disable-gpu-compositing --channel="8940.0.1405287427\319210639" /prefetch:673131151 131795770645384116 0x7ff6c2ef0000 1196032 C:\Program Files\Adobe\Adobe Photoshop CC 2017\Required\Plug-Ins\Spaces\Adobe Spaces Helper.exe 131795770645384116 0x7ffaa1110000 70823936 C:\Program Files\Adobe\Adobe Photoshop CC 2017\Required\Plug-Ins\Spaces\libcef.dll 3.2526.1347.gcf20046 Chromium Embedded Framework (CEF) Dynamic Link Library 131795770645384116 0x7ffab5b40000 2527232 C:\Windows\SYSTEM32\dwrite.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Службы Microsoft DirectX Typography 131795770645384116 0x7ffabbc40000 643072 C:\Windows\SYSTEM32\MSVCP140.dll 14.10.24516.0 built by: VCTOOLSRELESC Microsoft Corporation Microsoft® C Runtime Library 131795770645384116 0x7ffabbce0000 90112 C:\Windows\SYSTEM32\VCRUNTIME140.dll 14.10.24516.0 built by: VCTOOLSRELESC Microsoft Corporation Microsoft® C Runtime Library 131795770645384116 0x7ffabd180000 548864 C:\Windows\SYSTEM32\WINSPOOL.DRV 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Драйвер диспетчера очереди Windows 131795770645384116 0x7ffac2b80000 40960 C:\Windows\SYSTEM32\VERSION.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Version Checking and File Installation Libraries 131795770645384116 0x7ffac34e0000 1843200 C:\Windows\SYSTEM32\urlmon.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширения OLE32 для Win32 131795770645384116 0x7ffac3cb0000 2772992 C:\Windows\SYSTEM32\iertutil.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служебная программа времени выполнения для Internet Explorer 131795770645384116 0x7ffac69c0000 839680 C:\Windows\SYSTEM32\WINHTTP.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Службы HTTP Windows 131795770645384116 0x7ffac6ba0000 49152 C:\Windows\SYSTEM32\Secur32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Security Support Provider Interface 131795770645384116 0x7ffac6bd0000 413696 C:\Windows\SYSTEM32\OLEACC.dll 7.2.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Active Accessibility Core Component 131795770645384116 0x7ffac6c40000 2596864 C:\Windows\WinSxS\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.14393.953_none_42151e83c686086b\COMCTL32.dll 6.10 (rs1_release_inmarket.170303-1614) Microsoft Corporation Библиотека элементов управления взаимодействия с пользователем 131795770645384116 0x7ffac83d0000 106496 C:\Windows\SYSTEM32\dhcpcsvc.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служба DHCP-клиента 131795770645384116 0x7ffac8df0000 1646592 C:\Windows\SYSTEM32\dbghelp.dll 10.0.14321.1024 (rs1_release.160715-1616) Microsoft Windows Image Helper 131795770645384116 0x7ffaca4e0000 77824 C:\Windows\SYSTEM32\WTSAPI32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Remote Desktop Session Host Server SDK APIs 131795770645384116 0x7ffacab20000 102400 C:\Windows\SYSTEM32\USP10.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Uniscribe Unicode script processor 131795770645384116 0x7ffacab40000 176128 C:\Windows\SYSTEM32\WINMMBASE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base Multimedia Extension API DLL 131795770645384116 0x7ffacaba0000 143360 C:\Windows\SYSTEM32\WINMM.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation MCI API DLL 131795770645384116 0x7ffacadf0000 499712 C:\Windows\system32\apphelp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиентская библиотека совместимости приложений 131795770645384116 0x7ffacaf00000 610304 C:\Windows\system32\uxtheme.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека тем UxTheme (Microsoft) 131795770645384116 0x7ffacbd30000 229376 C:\Windows\SYSTEM32\IPHLPAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API вспомогательного приложения IP 131795770645384116 0x7ffacbe40000 126976 C:\Windows\SYSTEM32\USERENV.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Userenv 131795770645384116 0x7ffacc170000 45056 C:\Windows\SYSTEM32\CRYPTBASE.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base cryptographic API DLL 131795770645384116 0x7ffacc350000 180224 C:\Windows\SYSTEM32\SSPICLI.DLL 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Security Support Provider Interface 131795770645384116 0x7ffacc620000 176128 C:\Windows\SYSTEM32\bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795770645384116 0x7ffacc6e0000 61440 C:\Windows\System32\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795770645384116 0x7ffacc6f0000 311296 C:\Windows\System32\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795770645384116 0x7ffacc740000 81920 C:\Windows\System32\profapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Profile Basic API 131795770645384116 0x7ffacc760000 65536 C:\Windows\System32\MSASN1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ASN.1 Runtime APIs 131795770645384116 0x7ffacc8f0000 1003520 C:\Windows\System32\ucrtbase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645384116 0x7ffacc9f0000 434176 C:\Windows\System32\bcryptPrimitives.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Cryptographic Primitives Library 131795770645384116 0x7ffacca60000 122880 C:\Windows\System32\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795770645384116 0x7ffaccae0000 692224 C:\Windows\System32\shcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795770645384116 0x7ffaccb90000 7180288 C:\Windows\System32\windows.storage.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API хранения Microsoft WinRT 131795770645384116 0x7ffacd270000 2215936 C:\Windows\System32\KERNELBASE.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645384116 0x7ffacd490000 1871872 C:\Windows\System32\CRYPT32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API32 криптографии 131795770645384116 0x7ffacd710000 638976 C:\Windows\System32\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645384116 0x7ffacd7b0000 270336 C:\Windows\System32\cfgmgr32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Configuration Manager DLL 131795770645384116 0x7ffacd800000 32768 C:\Windows\System32\PSAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Process Status Helper 131795770645384116 0x7ffacd810000 22056960 C:\Windows\System32\SHELL32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Общая библиотека оболочки Windows 131795770645384116 0x7ffaced20000 782336 C:\Windows\System32\OLEAUT32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795770645384116 0x7ffacee50000 1183744 C:\Windows\System32\RPCRT4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795770645384116 0x7ffacef80000 32768 C:\Windows\System32\NSI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation NSI User-mode interface DLL 131795770645384116 0x7ffacef90000 647168 C:\Windows\System32\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795770645384116 0x7ffacf0d0000 704512 C:\Windows\System32\KERNEL32.DLL 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645384116 0x7ffacf770000 212992 C:\Windows\System32\GDI32.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation GDI Client DLL 131795770645384116 0x7ffacf820000 434176 C:\Windows\System32\WS2_32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation 32-разрядная библиотека Windows Socket 2.0 131795770645384116 0x7ffacf890000 188416 C:\Windows\System32\IMM32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Multi-User Windows IMM32 API Client DLL 131795770645384116 0x7ffacf8c0000 1462272 C:\Windows\System32\USER32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795770645384116 0x7ffacfa30000 1024000 C:\Windows\System32\COMDLG32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека общих диалоговых окон 131795770645384116 0x7ffacfb30000 2916352 C:\Windows\System32\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795770645384116 0x7ffacfe20000 663552 C:\Windows\System32\ADVAPI32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795770645384116 0x7ffad0070000 1277952 C:\Windows\System32\ole32.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft OLE для Windows 131795770645384116 0x7ffad01b0000 335872 C:\Windows\System32\SHLWAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека небольших программ оболочки 131795770645384116 0x7ffad0210000 364544 C:\Windows\System32\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795770645384116 0x7ffad0270000 1908736 C:\Windows\SYSTEM32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 71 8596 8940 68 00000000:0031f1da 131794957641371503 0 0 1 Обязательная метка\Средний обязательный уровень WIN-0UOTFKKVN1S\User Adobe Spaces Helper.exe C:\Program Files\Adobe\Adobe Photoshop CC 2017\Required\Plug-Ins\Spaces\Adobe Spaces Helper.exe "C:\Program Files\Adobe\Adobe Photoshop CC 2017\Required\Plug-Ins\Spaces\Adobe Spaces Helper.exe" --type=renderer --no-sandbox --touch-events=disabled --lang=en-US --lang=ru --locales-dir-path="C:\Program Files\Adobe\Adobe Photoshop CC 2017\Required\Plug-Ins\Spaces\Resources\locales\\" --log-file="C:\Users\User\AppData\Roaming\Adobe\Adobe Photoshop CC 2017\Logs\debug.log" --resources-dir-path="C:\Program Files\Adobe\Adobe Photoshop CC 2017\Required\Plug-Ins\Spaces\Resources\\" --enable-pinch --device-scale-factor=1 --num-raster-threads=1 --content-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --video-image-texture-target=3553 --disable-accelerated-video-decode --disable-webrtc-hw-encoding --disable-gpu-compositing --channel="8940.1.1139889345\75461215" /prefetch:673131151 131795770645384222 0x7ff6c2ef0000 1196032 C:\Program Files\Adobe\Adobe Photoshop CC 2017\Required\Plug-Ins\Spaces\Adobe Spaces Helper.exe 131795770645384222 0x7ffaa1110000 70823936 C:\Program Files\Adobe\Adobe Photoshop CC 2017\Required\Plug-Ins\Spaces\libcef.dll 3.2526.1347.gcf20046 Chromium Embedded Framework (CEF) Dynamic Link Library 131795770645384222 0x7ffab5b40000 2527232 C:\Windows\SYSTEM32\dwrite.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Службы Microsoft DirectX Typography 131795770645384222 0x7ffabbc40000 643072 C:\Windows\SYSTEM32\MSVCP140.dll 14.10.24516.0 built by: VCTOOLSRELESC Microsoft Corporation Microsoft® C Runtime Library 131795770645384222 0x7ffabbce0000 90112 C:\Windows\SYSTEM32\VCRUNTIME140.dll 14.10.24516.0 built by: VCTOOLSRELESC Microsoft Corporation Microsoft® C Runtime Library 131795770645384222 0x7ffabd180000 548864 C:\Windows\SYSTEM32\WINSPOOL.DRV 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Драйвер диспетчера очереди Windows 131795770645384222 0x7ffac2b80000 40960 C:\Windows\SYSTEM32\VERSION.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Version Checking and File Installation Libraries 131795770645384222 0x7ffac34e0000 1843200 C:\Windows\SYSTEM32\urlmon.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширения OLE32 для Win32 131795770645384222 0x7ffac3cb0000 2772992 C:\Windows\SYSTEM32\iertutil.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служебная программа времени выполнения для Internet Explorer 131795770645384222 0x7ffac69c0000 839680 C:\Windows\SYSTEM32\WINHTTP.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Службы HTTP Windows 131795770645384222 0x7ffac6ba0000 49152 C:\Windows\SYSTEM32\Secur32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Security Support Provider Interface 131795770645384222 0x7ffac6bd0000 413696 C:\Windows\SYSTEM32\OLEACC.dll 7.2.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Active Accessibility Core Component 131795770645384222 0x7ffac6c40000 2596864 C:\Windows\WinSxS\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.14393.953_none_42151e83c686086b\COMCTL32.dll 6.10 (rs1_release_inmarket.170303-1614) Microsoft Corporation Библиотека элементов управления взаимодействия с пользователем 131795770645384222 0x7ffac83d0000 106496 C:\Windows\SYSTEM32\dhcpcsvc.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служба DHCP-клиента 131795770645384222 0x7ffac8df0000 1646592 C:\Windows\SYSTEM32\dbghelp.dll 10.0.14321.1024 (rs1_release.160715-1616) Microsoft Windows Image Helper 131795770645384222 0x7ffaca4e0000 77824 C:\Windows\SYSTEM32\WTSAPI32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Remote Desktop Session Host Server SDK APIs 131795770645384222 0x7ffacab20000 102400 C:\Windows\SYSTEM32\USP10.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Uniscribe Unicode script processor 131795770645384222 0x7ffacab40000 176128 C:\Windows\SYSTEM32\WINMMBASE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base Multimedia Extension API DLL 131795770645384222 0x7ffacaba0000 143360 C:\Windows\SYSTEM32\WINMM.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation MCI API DLL 131795770645384222 0x7ffacaf00000 610304 C:\Windows\system32\uxtheme.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека тем UxTheme (Microsoft) 131795770645384222 0x7ffacbd30000 229376 C:\Windows\SYSTEM32\IPHLPAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API вспомогательного приложения IP 131795770645384222 0x7ffacbe40000 126976 C:\Windows\SYSTEM32\USERENV.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Userenv 131795770645384222 0x7ffacc170000 45056 C:\Windows\SYSTEM32\CRYPTBASE.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base cryptographic API DLL 131795770645384222 0x7ffacc350000 180224 C:\Windows\SYSTEM32\SSPICLI.DLL 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Security Support Provider Interface 131795770645384222 0x7ffacc620000 176128 C:\Windows\SYSTEM32\bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795770645384222 0x7ffacc6e0000 61440 C:\Windows\System32\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795770645384222 0x7ffacc6f0000 311296 C:\Windows\System32\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795770645384222 0x7ffacc740000 81920 C:\Windows\System32\profapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Profile Basic API 131795770645384222 0x7ffacc760000 65536 C:\Windows\System32\MSASN1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ASN.1 Runtime APIs 131795770645384222 0x7ffacc8f0000 1003520 C:\Windows\System32\ucrtbase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645384222 0x7ffacc9f0000 434176 C:\Windows\System32\bcryptPrimitives.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Cryptographic Primitives Library 131795770645384222 0x7ffacca60000 122880 C:\Windows\System32\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795770645384222 0x7ffaccae0000 692224 C:\Windows\System32\shcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795770645384222 0x7ffaccb90000 7180288 C:\Windows\System32\windows.storage.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API хранения Microsoft WinRT 131795770645384222 0x7ffacd270000 2215936 C:\Windows\System32\KERNELBASE.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645384222 0x7ffacd490000 1871872 C:\Windows\System32\CRYPT32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API32 криптографии 131795770645384222 0x7ffacd710000 638976 C:\Windows\System32\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645384222 0x7ffacd7b0000 270336 C:\Windows\System32\cfgmgr32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Configuration Manager DLL 131795770645384222 0x7ffacd800000 32768 C:\Windows\System32\PSAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Process Status Helper 131795770645384222 0x7ffacd810000 22056960 C:\Windows\System32\SHELL32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Общая библиотека оболочки Windows 131795770645384222 0x7ffaced20000 782336 C:\Windows\System32\OLEAUT32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795770645384222 0x7ffacee50000 1183744 C:\Windows\System32\RPCRT4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795770645384222 0x7ffacef80000 32768 C:\Windows\System32\NSI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation NSI User-mode interface DLL 131795770645384222 0x7ffacef90000 647168 C:\Windows\System32\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795770645384222 0x7ffacf0d0000 704512 C:\Windows\System32\KERNEL32.DLL 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645384222 0x7ffacf770000 212992 C:\Windows\System32\GDI32.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation GDI Client DLL 131795770645384222 0x7ffacf820000 434176 C:\Windows\System32\WS2_32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation 32-разрядная библиотека Windows Socket 2.0 131795770645384222 0x7ffacf890000 188416 C:\Windows\System32\IMM32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Multi-User Windows IMM32 API Client DLL 131795770645384222 0x7ffacf8c0000 1462272 C:\Windows\System32\USER32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795770645384222 0x7ffacfa30000 1024000 C:\Windows\System32\COMDLG32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека общих диалоговых окон 131795770645384222 0x7ffacfb30000 2916352 C:\Windows\System32\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795770645384222 0x7ffacfe20000 663552 C:\Windows\System32\ADVAPI32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795770645384222 0x7ffad0070000 1277952 C:\Windows\System32\ole32.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft OLE для Windows 131795770645384222 0x7ffad01b0000 335872 C:\Windows\System32\SHLWAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека небольших программ оболочки 131795770645384222 0x7ffad0210000 364544 C:\Windows\System32\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795770645384222 0x7ffad0270000 1908736 C:\Windows\SYSTEM32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 72 11172 8940 68 00000000:0031f1da 131794957658059215 0 1 0 Обязательная метка\Средний обязательный уровень WIN-0UOTFKKVN1S\User CEPHtmlEngine.exe C:\Program Files\Adobe\Adobe Photoshop CC 2017\Required\CEP\CEPHtmlEngine\CEPHtmlEngine.exe "C:\Program Files\Adobe\Adobe Photoshop CC 2017\Required\CEP\CEPHtmlEngine\CEPHtmlEngine.exe" "C:\Program Files (x86)\Common Files\Adobe\CEP\extensions\com.adobe.previewHD\PSLoader\loader.html" 2ec98b7b-08f4-4716-915a-e20a700b24cb 8940 PHXS 18.0.1 com.adobe.preview.loader 1 "C:\Program Files (x86)\Common Files\Adobe\CEP\extensions\com.adobe.previewHD" "Photoshop" 16 WyItLWVuYWJsZS1ub2RlanMiXQ== ru_RU 4293980400 1 Adobe Systems Incorporated 7.0.0 Adobe CEP HTML Engine 131795770645384338 0x240000 4014080 C:\Program Files\Adobe\Adobe Photoshop CC 2017\Required\CEP\CEPHtmlEngine\CEPHtmlEngine.exe 7.0.0 Adobe Systems Incorporated Adobe CEP HTML Engine 131795770645384338 0x5c020000 335872 C:\Windows\System32\wow64.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation Win32 Emulation on NT64 131795770645384338 0x5c080000 487424 C:\Windows\System32\wow64win.dll 10.0.14393.1884 (rs1_release.171101-1233) Microsoft Corporation Wow64 Console and Win32 API Logging 131795770645384338 0x5c100000 40960 C:\Windows\System32\wow64cpu.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation AMD64 Wow64 CPU 131795770645384338 0x5d110000 44531712 C:\Program Files\Adobe\Adobe Photoshop CC 2017\Required\CEP\CEPHtmlEngine\libcef.dll 3.2272.67.g479a5bd Chromium Embedded Framework (CEF) Dynamic Link Library 131795770645384338 0x60750000 1556480 C:\Program Files (x86)\360\Total Security\safemon\safemon.dll 8, 4, 0, 1420 Qihu 360 Software Co., Ltd. 360 Internet Security Internet Protection 131795770645384338 0x6c290000 987136 C:\Windows\SysWOW64\twinapi.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation twinapi.appcore 131795770645384338 0x6c390000 1126400 C:\Windows\SysWOW64\dcomp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft DirectComposition Library 131795770645384338 0x6c4b0000 278528 C:\Windows\SysWOW64\dataexchange.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation Data exchange 131795770645384338 0x6d0b0000 847872 C:\Windows\SysWOW64\wintypes.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL основных типов Windows 131795770645384338 0x6e210000 81920 C:\Windows\SysWOW64\VCRUNTIME140.dll 14.10.24516.0 built by: VCTOOLSRELESC Microsoft Corporation Microsoft® C Runtime Library 131795770645384338 0x6e230000 446464 C:\Windows\SysWOW64\MSVCP140.dll 14.10.24516.0 built by: VCTOOLSRELESC Microsoft Corporation Microsoft® C Runtime Library 131795770645384338 0x6fd30000 139264 C:\Windows\SysWOW64\DEVOBJ.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Device Information Set DLL 131795770645384338 0x6fd60000 360448 C:\Windows\SysWOW64\MMDevAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation MMDevice API 131795770645384338 0x6fdc0000 507904 C:\Windows\SysWOW64\audioses.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Сеанс обработки звука 131795770645384338 0x700d0000 434176 C:\Windows\SysWOW64\WINSPOOL.DRV 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Драйвер диспетчера очереди Windows 131795770645384338 0x70140000 274432 C:\Windows\SysWOW64\WINSTA.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Winstation Library 131795770645384338 0x70340000 536576 C:\Windows\SysWOW64\dxgi.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation DirectX Graphics Infrastructure 131795770645384338 0x703d0000 2056192 C:\Windows\SysWOW64\dwrite.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Службы Microsoft DirectX Typography 131795770645384338 0x705e0000 344064 C:\Windows\SysWOW64\OLEACC.dll 7.2.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Active Accessibility Core Component 131795770645384338 0x70a20000 94208 C:\Windows\SysWOW64\USP10.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Uniscribe Unicode script processor 131795770645384338 0x70a40000 81920 C:\Windows\SysWOW64\NLAapi.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Network Location Awareness 2 131795770645384338 0x70ca0000 45056 C:\Windows\SysWOW64\NETUTILS.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API Helpers DLL 131795770645384338 0x70cb0000 65536 C:\Windows\SysWOW64\WKSCLI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Workstation Service Client DLL 131795770645384338 0x71140000 77824 C:\Windows\SysWOW64\NETAPI32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API DLL 131795770645384338 0x71610000 77824 C:\Windows\SysWOW64\dhcpcsvc6.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиент DHCPv6 131795770645384338 0x725e0000 2273280 C:\Windows\SysWOW64\iertutil.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служебная программа времени выполнения для Internet Explorer 131795770645384338 0x728e0000 1372160 C:\Windows\SysWOW64\PROPSYS.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Система страниц свойств (Майкрософт) 131795770645384338 0x72b90000 126976 C:\Windows\SysWOW64\dwmapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Интерфейс API диспетчера окон рабочего стола (Майкрософт) 131795770645384338 0x72cc0000 1658880 C:\Windows\SysWOW64\urlmon.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширения OLE32 для Win32 131795770645384338 0x73ab0000 32768 C:\Windows\SysWOW64\rasadhlp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Remote Access AutoDial Helper 131795770645384338 0x73ac0000 81920 C:\Windows\SysWOW64\dhcpcsvc.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служба DHCP-клиента 131795770645384338 0x73ae0000 40960 C:\Windows\SysWOW64\Secur32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Security Support Provider Interface 131795770645384338 0x73ee0000 61440 C:\Windows\SysWOW64\WTSAPI32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Remote Desktop Session Host Server SDK APIs 131795770645384338 0x73f00000 192512 C:\Windows\SysWOW64\IPHLPAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API вспомогательного приложения IP 131795770645384338 0x73f30000 512000 C:\Windows\SysWOW64\DNSAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Динамическая библиотека API DNS-клиента 131795770645384338 0x73ff0000 319488 C:\Windows\SysWOW64\mswsock.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширение поставщика службы API Microsoft Windows Sockets 2.0 131795770645384338 0x74040000 126976 C:\Windows\SysWOW64\gpapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиентские функции API групповой политики 131795770645384338 0x74060000 192512 C:\Windows\SysWOW64\rsaenh.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Enhanced Cryptographic Provider 131795770645384338 0x74110000 479232 C:\Windows\SysWOW64\uxtheme.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека тем UxTheme (Microsoft) 131795770645384338 0x74190000 110592 C:\Windows\SysWOW64\bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795770645384338 0x741b0000 77824 C:\Windows\SysWOW64\CRYPTSP.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Cryptographic Service Provider API 131795770645384338 0x741f0000 143360 C:\Windows\SysWOW64\WINMMBASE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base Multimedia Extension API DLL 131795770645384338 0x74230000 147456 C:\Windows\SysWOW64\WINMM.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation MCI API DLL 131795770645384338 0x744d0000 2138112 C:\Windows\WinSxS\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.14393.953_none_89c2555adb023171\COMCTL32.dll 6.10 (rs1_release_inmarket.170303-1614) Microsoft Corporation Библиотека элементов управления взаимодействия с пользователем 131795770645384338 0x746e0000 32768 C:\Windows\SysWOW64\VERSION.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Version Checking and File Installation Libraries 131795770645384338 0x746f0000 106496 C:\Windows\SysWOW64\USERENV.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Userenv 131795770645384338 0x747d0000 40960 C:\Windows\SysWOW64\CRYPTBASE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base cryptographic API DLL 131795770645384338 0x747e0000 126976 C:\Windows\SysWOW64\SspiCli.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Security Support Provider Interface 131795770645384338 0x74800000 151552 C:\Windows\SysWOW64\IMM32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Multi-User Windows IMM32 API Client DLL 131795770645384338 0x74910000 2170880 C:\Windows\SysWOW64\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795770645384338 0x74b30000 53248 C:\Windows\SysWOW64\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795770645384338 0x74b60000 790528 C:\Windows\SysWOW64\RPCRT4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795770645384338 0x74c30000 1417216 C:\Windows\SysWOW64\gdi32full.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation GDI Client DLL 131795770645384338 0x74d90000 24576 C:\Windows\SysWOW64\PSAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Process Status Helper 131795770645384338 0x74da0000 778240 C:\Windows\SysWOW64\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795770645384338 0x74e60000 557056 C:\Windows\SysWOW64\shcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795770645384338 0x74ef0000 540672 C:\Windows\SysWOW64\clbcatq.dll 2001.12.10941.16384 (rs1_release.160715-1616) Microsoft Corporation COM+ Configuration Catalog 131795770645384338 0x74f80000 278528 C:\Windows\SysWOW64\WINTRUST.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation Microsoft Trust Verification APIs 131795770645384338 0x74fd0000 405504 C:\Windows\SysWOW64\WS2_32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation 32-разрядная библиотека Windows Socket 2.0 131795770645384338 0x75040000 282624 C:\Windows\SysWOW64\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795770645384338 0x75090000 1265664 C:\Windows\SysWOW64\MSCTF.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Серверная библиотека MSCTF 131795770645384338 0x751d0000 57344 C:\Windows\SysWOW64\MSASN1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ASN.1 Runtime APIs 131795770645384338 0x751e0000 1708032 C:\Windows\SysWOW64\KERNELBASE.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645384338 0x75390000 266240 C:\Windows\SysWOW64\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795770645384338 0x753e0000 1560576 C:\Windows\SysWOW64\CRYPT32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API32 криптографии 131795770645384338 0x75560000 487424 C:\Windows\SysWOW64\advapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795770645384338 0x756c0000 5693440 C:\Windows\SysWOW64\windows.storage.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API хранения Microsoft WinRT 131795770645384338 0x75c90000 286720 C:\Windows\SysWOW64\SHLWAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека небольших программ оболочки 131795770645384338 0x75ce0000 20811776 C:\Windows\SysWOW64\SHELL32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Общая библиотека оболочки Windows 131795770645384338 0x770c0000 4239360 C:\Windows\SysWOW64\SETUPAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Setup API 131795770645384338 0x774d0000 86016 C:\Windows\SysWOW64\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795770645384338 0x774f0000 61440 C:\Windows\SysWOW64\profapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Profile Basic API 131795770645384338 0x77560000 1437696 C:\Windows\SysWOW64\USER32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795770645384338 0x776c0000 368640 C:\Windows\SysWOW64\bcryptPrimitives.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation Windows Cryptographic Primitives Library 131795770645384338 0x77780000 503808 C:\Windows\SysWOW64\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645384338 0x77800000 606208 C:\Windows\SysWOW64\OLEAUT32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795770645384338 0x77ac0000 966656 C:\Windows\SysWOW64\ole32.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft OLE для Windows 131795770645384338 0x77bb0000 176128 C:\Windows\SysWOW64\GDI32.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation GDI Client DLL 131795770645384338 0x77be0000 937984 C:\Windows\SysWOW64\COMDLG32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека общих диалоговых окон 131795770645384338 0x77cd0000 221184 C:\Windows\SysWOW64\cfgmgr32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Configuration Manager DLL 131795770645384338 0x77d10000 28672 C:\Windows\SysWOW64\NSI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation NSI User-mode interface DLL 131795770645384338 0x77d20000 1585152 C:\Windows\SysWOW64\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 131795770645384338 0x7ffad0270000 1908736 C:\Windows\SYSTEM32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 73 11216 11172 72 00000000:0031f1da 131794957800622174 0 1 0 Обязательная метка\Средний обязательный уровень WIN-0UOTFKKVN1S\User CEPHtmlEngine.exe C:\Program Files\Adobe\Adobe Photoshop CC 2017\Required\CEP\CEPHtmlEngine\CEPHtmlEngine.exe "C:\Program Files\Adobe\Adobe Photoshop CC 2017\Required\CEP\CEPHtmlEngine\CEPHtmlEngine.exe" --type=renderer --no-sandbox --enable-deferred-image-decoding --lang=en-US --lang=ru --log-file="C:\Users\User\AppData\Local\Temp\CEPHtmlEngine7-PHXS-18.0.1-com.adobe.preview.loader.log" --log-severity=error --params_ppid=PHXS --params_ppversion=18.0.1 --params_extensionid=com.adobe.preview.loader --params_loglevel=1 --params_serverid=8940 --params_extensionuuid=2ec98b7b-08f4-4716-915a-e20a700b24cb --params_windowid=70742 --params_commandline=WyItLWVuYWJsZS1ub2RlanMiXQ== --enable-pinch --device-scale-factor=1 --font-cache-shared-mem-suffix=11172 --enable-pinch-virtual-viewport --enable-delegated-renderer --num-raster-threads=1 --disable-accelerated-video-decode --disable-webrtc-hw-encoding --disable-gpu-compositing --channel="11172.0.296388529\1274093304" /prefetch:673131151 Adobe Systems Incorporated 7.0.0 Adobe CEP HTML Engine 131795770645384488 0x240000 4014080 C:\Program Files\Adobe\Adobe Photoshop CC 2017\Required\CEP\CEPHtmlEngine\CEPHtmlEngine.exe 7.0.0 Adobe Systems Incorporated Adobe CEP HTML Engine 131795770645384488 0x5c020000 335872 C:\Windows\System32\wow64.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation Win32 Emulation on NT64 131795770645384488 0x5c080000 487424 C:\Windows\System32\wow64win.dll 10.0.14393.1884 (rs1_release.171101-1233) Microsoft Corporation Wow64 Console and Win32 API Logging 131795770645384488 0x5c100000 40960 C:\Windows\System32\wow64cpu.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation AMD64 Wow64 CPU 131795770645384488 0x5d110000 44531712 C:\Program Files\Adobe\Adobe Photoshop CC 2017\Required\CEP\CEPHtmlEngine\libcef.dll 3.2272.67.g479a5bd Chromium Embedded Framework (CEF) Dynamic Link Library 131795770645384488 0x6d990000 3055616 C:\Program Files\Adobe\Adobe Photoshop CC 2017\Required\CEP\CEPHtmlEngine\ffmpegsumo.dll 41.0.2272.104 The Chromium Authors Chromium 131795770645384488 0x6e210000 81920 C:\Windows\SysWOW64\VCRUNTIME140.dll 14.10.24516.0 built by: VCTOOLSRELESC Microsoft Corporation Microsoft® C Runtime Library 131795770645384488 0x6e230000 446464 C:\Windows\SysWOW64\MSVCP140.dll 14.10.24516.0 built by: VCTOOLSRELESC Microsoft Corporation Microsoft® C Runtime Library 131795770645384488 0x700d0000 434176 C:\Windows\SysWOW64\WINSPOOL.DRV 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Драйвер диспетчера очереди Windows 131795770645384488 0x703d0000 2056192 C:\Windows\SysWOW64\dwrite.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Службы Microsoft DirectX Typography 131795770645384488 0x705e0000 344064 C:\Windows\SysWOW64\OLEACC.dll 7.2.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Active Accessibility Core Component 131795770645384488 0x70a20000 94208 C:\Windows\SysWOW64\USP10.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Uniscribe Unicode script processor 131795770645384488 0x70a40000 81920 C:\Windows\SysWOW64\NLAapi.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Network Location Awareness 2 131795770645384488 0x70a60000 90112 C:\Windows\SysWOW64\pnrpnsp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик пространства имен PNRP 131795770645384488 0x70c00000 49152 C:\Windows\SysWOW64\winrnr.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation LDAP RnR Provider DLL 131795770645384488 0x70c10000 73728 C:\Windows\SysWOW64\napinsp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик оболочки совместимости для имен электронной почты 131795770645384488 0x71610000 77824 C:\Windows\SysWOW64\dhcpcsvc6.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиент DHCPv6 131795770645384488 0x725e0000 2273280 C:\Windows\SysWOW64\iertutil.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служебная программа времени выполнения для Internet Explorer 131795770645384488 0x72af0000 655360 C:\Windows\SysWOW64\WINHTTP.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Службы HTTP Windows 131795770645384488 0x72cc0000 1658880 C:\Windows\SysWOW64\urlmon.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширения OLE32 для Win32 131795770645384488 0x73ac0000 81920 C:\Windows\SysWOW64\dhcpcsvc.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служба DHCP-клиента 131795770645384488 0x73ae0000 40960 C:\Windows\SysWOW64\Secur32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Security Support Provider Interface 131795770645384488 0x73ee0000 61440 C:\Windows\SysWOW64\WTSAPI32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Remote Desktop Session Host Server SDK APIs 131795770645384488 0x73f00000 192512 C:\Windows\SysWOW64\IPHLPAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API вспомогательного приложения IP 131795770645384488 0x73f30000 512000 C:\Windows\SysWOW64\DNSAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Динамическая библиотека API DNS-клиента 131795770645384488 0x73ff0000 319488 C:\Windows\SysWOW64\mswsock.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширение поставщика службы API Microsoft Windows Sockets 2.0 131795770645384488 0x74060000 192512 C:\Windows\SysWOW64\rsaenh.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Enhanced Cryptographic Provider 131795770645384488 0x74110000 479232 C:\Windows\SysWOW64\uxtheme.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека тем UxTheme (Microsoft) 131795770645384488 0x74190000 110592 C:\Windows\SysWOW64\bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795770645384488 0x741b0000 77824 C:\Windows\SysWOW64\CRYPTSP.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Cryptographic Service Provider API 131795770645384488 0x741f0000 143360 C:\Windows\SysWOW64\WINMMBASE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base Multimedia Extension API DLL 131795770645384488 0x74230000 147456 C:\Windows\SysWOW64\WINMM.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation MCI API DLL 131795770645384488 0x744d0000 2138112 C:\Windows\WinSxS\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.14393.953_none_89c2555adb023171\COMCTL32.dll 6.10 (rs1_release_inmarket.170303-1614) Microsoft Corporation Библиотека элементов управления взаимодействия с пользователем 131795770645384488 0x746e0000 32768 C:\Windows\SysWOW64\VERSION.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Version Checking and File Installation Libraries 131795770645384488 0x746f0000 106496 C:\Windows\SysWOW64\USERENV.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Userenv 131795770645384488 0x747d0000 40960 C:\Windows\SysWOW64\CRYPTBASE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base cryptographic API DLL 131795770645384488 0x747e0000 126976 C:\Windows\SysWOW64\SspiCli.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Security Support Provider Interface 131795770645384488 0x74800000 151552 C:\Windows\SysWOW64\IMM32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Multi-User Windows IMM32 API Client DLL 131795770645384488 0x74910000 2170880 C:\Windows\SysWOW64\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795770645384488 0x74b30000 53248 C:\Windows\SysWOW64\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795770645384488 0x74b60000 790528 C:\Windows\SysWOW64\RPCRT4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795770645384488 0x74c30000 1417216 C:\Windows\SysWOW64\gdi32full.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation GDI Client DLL 131795770645384488 0x74d90000 24576 C:\Windows\SysWOW64\PSAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Process Status Helper 131795770645384488 0x74da0000 778240 C:\Windows\SysWOW64\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795770645384488 0x74e60000 557056 C:\Windows\SysWOW64\shcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795770645384488 0x74fd0000 405504 C:\Windows\SysWOW64\WS2_32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation 32-разрядная библиотека Windows Socket 2.0 131795770645384488 0x75040000 282624 C:\Windows\SysWOW64\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795770645384488 0x751d0000 57344 C:\Windows\SysWOW64\MSASN1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ASN.1 Runtime APIs 131795770645384488 0x751e0000 1708032 C:\Windows\SysWOW64\KERNELBASE.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645384488 0x75390000 266240 C:\Windows\SysWOW64\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795770645384488 0x753e0000 1560576 C:\Windows\SysWOW64\CRYPT32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API32 криптографии 131795770645384488 0x75560000 487424 C:\Windows\SysWOW64\advapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795770645384488 0x756c0000 5693440 C:\Windows\SysWOW64\windows.storage.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API хранения Microsoft WinRT 131795770645384488 0x75c90000 286720 C:\Windows\SysWOW64\SHLWAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека небольших программ оболочки 131795770645384488 0x75ce0000 20811776 C:\Windows\SysWOW64\SHELL32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Общая библиотека оболочки Windows 131795770645384488 0x774d0000 86016 C:\Windows\SysWOW64\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795770645384488 0x774f0000 61440 C:\Windows\SysWOW64\profapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Profile Basic API 131795770645384488 0x77560000 1437696 C:\Windows\SysWOW64\USER32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795770645384488 0x776c0000 368640 C:\Windows\SysWOW64\bcryptPrimitives.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation Windows Cryptographic Primitives Library 131795770645384488 0x77780000 503808 C:\Windows\SysWOW64\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645384488 0x77800000 606208 C:\Windows\SysWOW64\OLEAUT32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795770645384488 0x77ac0000 966656 C:\Windows\SysWOW64\ole32.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft OLE для Windows 131795770645384488 0x77bb0000 176128 C:\Windows\SysWOW64\GDI32.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation GDI Client DLL 131795770645384488 0x77be0000 937984 C:\Windows\SysWOW64\COMDLG32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека общих диалоговых окон 131795770645384488 0x77cd0000 221184 C:\Windows\SysWOW64\cfgmgr32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Configuration Manager DLL 131795770645384488 0x77d10000 28672 C:\Windows\SysWOW64\NSI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation NSI User-mode interface DLL 131795770645384488 0x77d20000 1585152 C:\Windows\SysWOW64\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 131795770645384488 0x7ffad0270000 1908736 C:\Windows\SYSTEM32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 74 10844 8940 68 00000000:0031f1da 131794958201141405 0 1 0 Обязательная метка\Средний обязательный уровень WIN-0UOTFKKVN1S\User CEPHtmlEngine.exe C:\Program Files\Adobe\Adobe Photoshop CC 2017\Required\CEP\CEPHtmlEngine\CEPHtmlEngine.exe "C:\Program Files\Adobe\Adobe Photoshop CC 2017\Required\CEP\CEPHtmlEngine\CEPHtmlEngine.exe" "C:\Program Files\Adobe\Adobe Photoshop CC 2017\Required\CEP\extensions\com.adobe.experimentation.extension\index.html" e44c0384-b65f-4f05-a36a-c6092cb32d00 8940 PHXS 18.0.1 com.adobe.experimentation.extension 1 "C:\Program Files\Adobe\Adobe Photoshop CC 2017\Required\CEP\extensions\com.adobe.experimentation.extension" "Photoshop" 16 WyItLWVuYWJsZS1ub2RlanMiXQ== ru_RU 4293980400 1 Adobe Systems Incorporated 7.0.0 Adobe CEP HTML Engine 131795770645384610 0x240000 4014080 C:\Program Files\Adobe\Adobe Photoshop CC 2017\Required\CEP\CEPHtmlEngine\CEPHtmlEngine.exe 7.0.0 Adobe Systems Incorporated Adobe CEP HTML Engine 131795770645384610 0x5c020000 335872 C:\Windows\System32\wow64.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation Win32 Emulation on NT64 131795770645384610 0x5c080000 487424 C:\Windows\System32\wow64win.dll 10.0.14393.1884 (rs1_release.171101-1233) Microsoft Corporation Wow64 Console and Win32 API Logging 131795770645384610 0x5c100000 40960 C:\Windows\System32\wow64cpu.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation AMD64 Wow64 CPU 131795770645384610 0x5d110000 44531712 C:\Program Files\Adobe\Adobe Photoshop CC 2017\Required\CEP\CEPHtmlEngine\libcef.dll 3.2272.67.g479a5bd Chromium Embedded Framework (CEF) Dynamic Link Library 131795770645384610 0x60750000 1556480 C:\Program Files (x86)\360\Total Security\safemon\safemon.dll 8, 4, 0, 1420 Qihu 360 Software Co., Ltd. 360 Internet Security Internet Protection 131795770645384610 0x6c290000 987136 C:\Windows\SysWOW64\twinapi.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation twinapi.appcore 131795770645384610 0x6c390000 1126400 C:\Windows\SysWOW64\dcomp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft DirectComposition Library 131795770645384610 0x6c4b0000 278528 C:\Windows\SysWOW64\dataexchange.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation Data exchange 131795770645384610 0x6d0b0000 847872 C:\Windows\SysWOW64\wintypes.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL основных типов Windows 131795770645384610 0x6e210000 81920 C:\Windows\SysWOW64\VCRUNTIME140.dll 14.10.24516.0 built by: VCTOOLSRELESC Microsoft Corporation Microsoft® C Runtime Library 131795770645384610 0x6e230000 446464 C:\Windows\SysWOW64\MSVCP140.dll 14.10.24516.0 built by: VCTOOLSRELESC Microsoft Corporation Microsoft® C Runtime Library 131795770645384610 0x6fd30000 139264 C:\Windows\SysWOW64\DEVOBJ.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Device Information Set DLL 131795770645384610 0x6fd60000 360448 C:\Windows\SysWOW64\MMDevAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation MMDevice API 131795770645384610 0x6fdc0000 507904 C:\Windows\SysWOW64\audioses.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Сеанс обработки звука 131795770645384610 0x700d0000 434176 C:\Windows\SysWOW64\WINSPOOL.DRV 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Драйвер диспетчера очереди Windows 131795770645384610 0x70140000 274432 C:\Windows\SysWOW64\WINSTA.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Winstation Library 131795770645384610 0x70340000 536576 C:\Windows\SysWOW64\dxgi.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation DirectX Graphics Infrastructure 131795770645384610 0x703d0000 2056192 C:\Windows\SysWOW64\dwrite.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Службы Microsoft DirectX Typography 131795770645384610 0x705e0000 344064 C:\Windows\SysWOW64\OLEACC.dll 7.2.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Active Accessibility Core Component 131795770645384610 0x70a20000 94208 C:\Windows\SysWOW64\USP10.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Uniscribe Unicode script processor 131795770645384610 0x70a40000 81920 C:\Windows\SysWOW64\NLAapi.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Network Location Awareness 2 131795770645384610 0x70ca0000 45056 C:\Windows\SysWOW64\NETUTILS.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API Helpers DLL 131795770645384610 0x70cb0000 65536 C:\Windows\SysWOW64\WKSCLI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Workstation Service Client DLL 131795770645384610 0x71140000 77824 C:\Windows\SysWOW64\NETAPI32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API DLL 131795770645384610 0x71610000 77824 C:\Windows\SysWOW64\dhcpcsvc6.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиент DHCPv6 131795770645384610 0x725e0000 2273280 C:\Windows\SysWOW64\iertutil.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служебная программа времени выполнения для Internet Explorer 131795770645384610 0x728e0000 1372160 C:\Windows\SysWOW64\PROPSYS.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Система страниц свойств (Майкрософт) 131795770645384610 0x72b90000 126976 C:\Windows\SysWOW64\dwmapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Интерфейс API диспетчера окон рабочего стола (Майкрософт) 131795770645384610 0x72cc0000 1658880 C:\Windows\SysWOW64\urlmon.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширения OLE32 для Win32 131795770645384610 0x73ab0000 32768 C:\Windows\SysWOW64\rasadhlp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Remote Access AutoDial Helper 131795770645384610 0x73ac0000 81920 C:\Windows\SysWOW64\dhcpcsvc.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служба DHCP-клиента 131795770645384610 0x73ae0000 40960 C:\Windows\SysWOW64\Secur32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Security Support Provider Interface 131795770645384610 0x73ee0000 61440 C:\Windows\SysWOW64\WTSAPI32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Remote Desktop Session Host Server SDK APIs 131795770645384610 0x73f00000 192512 C:\Windows\SysWOW64\IPHLPAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API вспомогательного приложения IP 131795770645384610 0x73f30000 512000 C:\Windows\SysWOW64\DNSAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Динамическая библиотека API DNS-клиента 131795770645384610 0x73ff0000 319488 C:\Windows\SysWOW64\mswsock.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширение поставщика службы API Microsoft Windows Sockets 2.0 131795770645384610 0x74040000 126976 C:\Windows\SysWOW64\gpapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиентские функции API групповой политики 131795770645384610 0x74060000 192512 C:\Windows\SysWOW64\rsaenh.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Enhanced Cryptographic Provider 131795770645384610 0x74110000 479232 C:\Windows\SysWOW64\uxtheme.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека тем UxTheme (Microsoft) 131795770645384610 0x74190000 110592 C:\Windows\SysWOW64\bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795770645384610 0x741b0000 77824 C:\Windows\SysWOW64\CRYPTSP.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Cryptographic Service Provider API 131795770645384610 0x741f0000 143360 C:\Windows\SysWOW64\WINMMBASE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base Multimedia Extension API DLL 131795770645384610 0x74230000 147456 C:\Windows\SysWOW64\WINMM.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation MCI API DLL 131795770645384610 0x744d0000 2138112 C:\Windows\WinSxS\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.14393.953_none_89c2555adb023171\COMCTL32.dll 6.10 (rs1_release_inmarket.170303-1614) Microsoft Corporation Библиотека элементов управления взаимодействия с пользователем 131795770645384610 0x746e0000 32768 C:\Windows\SysWOW64\VERSION.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Version Checking and File Installation Libraries 131795770645384610 0x746f0000 106496 C:\Windows\SysWOW64\USERENV.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Userenv 131795770645384610 0x747d0000 40960 C:\Windows\SysWOW64\CRYPTBASE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base cryptographic API DLL 131795770645384610 0x747e0000 126976 C:\Windows\SysWOW64\SspiCli.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Security Support Provider Interface 131795770645384610 0x74800000 151552 C:\Windows\SysWOW64\IMM32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Multi-User Windows IMM32 API Client DLL 131795770645384610 0x74910000 2170880 C:\Windows\SysWOW64\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795770645384610 0x74b30000 53248 C:\Windows\SysWOW64\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795770645384610 0x74b60000 790528 C:\Windows\SysWOW64\RPCRT4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795770645384610 0x74c30000 1417216 C:\Windows\SysWOW64\gdi32full.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation GDI Client DLL 131795770645384610 0x74d90000 24576 C:\Windows\SysWOW64\PSAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Process Status Helper 131795770645384610 0x74da0000 778240 C:\Windows\SysWOW64\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795770645384610 0x74e60000 557056 C:\Windows\SysWOW64\shcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795770645384610 0x74ef0000 540672 C:\Windows\SysWOW64\clbcatq.dll 2001.12.10941.16384 (rs1_release.160715-1616) Microsoft Corporation COM+ Configuration Catalog 131795770645384610 0x74f80000 278528 C:\Windows\SysWOW64\WINTRUST.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation Microsoft Trust Verification APIs 131795770645384610 0x74fd0000 405504 C:\Windows\SysWOW64\WS2_32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation 32-разрядная библиотека Windows Socket 2.0 131795770645384610 0x75040000 282624 C:\Windows\SysWOW64\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795770645384610 0x75090000 1265664 C:\Windows\SysWOW64\MSCTF.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Серверная библиотека MSCTF 131795770645384610 0x751d0000 57344 C:\Windows\SysWOW64\MSASN1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ASN.1 Runtime APIs 131795770645384610 0x751e0000 1708032 C:\Windows\SysWOW64\KERNELBASE.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645384610 0x75390000 266240 C:\Windows\SysWOW64\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795770645384610 0x753e0000 1560576 C:\Windows\SysWOW64\CRYPT32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API32 криптографии 131795770645384610 0x75560000 487424 C:\Windows\SysWOW64\advapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795770645384610 0x756c0000 5693440 C:\Windows\SysWOW64\windows.storage.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API хранения Microsoft WinRT 131795770645384610 0x75c90000 286720 C:\Windows\SysWOW64\SHLWAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека небольших программ оболочки 131795770645384610 0x75ce0000 20811776 C:\Windows\SysWOW64\SHELL32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Общая библиотека оболочки Windows 131795770645384610 0x770c0000 4239360 C:\Windows\SysWOW64\SETUPAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Setup API 131795770645384610 0x774d0000 86016 C:\Windows\SysWOW64\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795770645384610 0x774f0000 61440 C:\Windows\SysWOW64\profapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Profile Basic API 131795770645384610 0x77560000 1437696 C:\Windows\SysWOW64\USER32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795770645384610 0x776c0000 368640 C:\Windows\SysWOW64\bcryptPrimitives.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation Windows Cryptographic Primitives Library 131795770645384610 0x77780000 503808 C:\Windows\SysWOW64\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645384610 0x77800000 606208 C:\Windows\SysWOW64\OLEAUT32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795770645384610 0x77ac0000 966656 C:\Windows\SysWOW64\ole32.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft OLE для Windows 131795770645384610 0x77bb0000 176128 C:\Windows\SysWOW64\GDI32.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation GDI Client DLL 131795770645384610 0x77be0000 937984 C:\Windows\SysWOW64\COMDLG32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека общих диалоговых окон 131795770645384610 0x77cd0000 221184 C:\Windows\SysWOW64\cfgmgr32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Configuration Manager DLL 131795770645384610 0x77d10000 28672 C:\Windows\SysWOW64\NSI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation NSI User-mode interface DLL 131795770645384610 0x77d20000 1585152 C:\Windows\SysWOW64\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 131795770645384610 0x7ffad0270000 1908736 C:\Windows\SYSTEM32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 75 9092 10844 74 00000000:0031f1da 131794958208470288 0 1 0 Обязательная метка\Средний обязательный уровень WIN-0UOTFKKVN1S\User CEPHtmlEngine.exe C:\Program Files\Adobe\Adobe Photoshop CC 2017\Required\CEP\CEPHtmlEngine\CEPHtmlEngine.exe "C:\Program Files\Adobe\Adobe Photoshop CC 2017\Required\CEP\CEPHtmlEngine\CEPHtmlEngine.exe" --type=renderer --no-sandbox --enable-deferred-image-decoding --lang=en-US --lang=ru --log-file="C:\Users\User\AppData\Local\Temp\CEPHtmlEngine7-PHXS-18.0.1-com.adobe.experimentation.extension.log" --log-severity=error --params_ppid=PHXS --params_ppversion=18.0.1 --params_extensionid=com.adobe.experimentation.extension --params_loglevel=1 --params_serverid=8940 --params_extensionuuid=e44c0384-b65f-4f05-a36a-c6092cb32d00 --params_windowid=198892 --params_commandline=WyItLWVuYWJsZS1ub2RlanMiXQ== --enable-pinch --device-scale-factor=1 --font-cache-shared-mem-suffix=10844 --enable-pinch-virtual-viewport --enable-delegated-renderer --num-raster-threads=1 --disable-accelerated-video-decode --disable-webrtc-hw-encoding --disable-gpu-compositing --channel="10844.0.379179099\270765323" /prefetch:673131151 Adobe Systems Incorporated 7.0.0 Adobe CEP HTML Engine 131795770645384720 0x240000 4014080 C:\Program Files\Adobe\Adobe Photoshop CC 2017\Required\CEP\CEPHtmlEngine\CEPHtmlEngine.exe 7.0.0 Adobe Systems Incorporated Adobe CEP HTML Engine 131795770645384720 0x5c020000 335872 C:\Windows\System32\wow64.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation Win32 Emulation on NT64 131795770645384720 0x5c080000 487424 C:\Windows\System32\wow64win.dll 10.0.14393.1884 (rs1_release.171101-1233) Microsoft Corporation Wow64 Console and Win32 API Logging 131795770645384720 0x5c100000 40960 C:\Windows\System32\wow64cpu.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation AMD64 Wow64 CPU 131795770645384720 0x5d110000 44531712 C:\Program Files\Adobe\Adobe Photoshop CC 2017\Required\CEP\CEPHtmlEngine\libcef.dll 3.2272.67.g479a5bd Chromium Embedded Framework (CEF) Dynamic Link Library 131795770645384720 0x6d990000 3055616 C:\Program Files\Adobe\Adobe Photoshop CC 2017\Required\CEP\CEPHtmlEngine\ffmpegsumo.dll 41.0.2272.104 The Chromium Authors Chromium 131795770645384720 0x6e210000 81920 C:\Windows\SysWOW64\VCRUNTIME140.dll 14.10.24516.0 built by: VCTOOLSRELESC Microsoft Corporation Microsoft® C Runtime Library 131795770645384720 0x6e230000 446464 C:\Windows\SysWOW64\MSVCP140.dll 14.10.24516.0 built by: VCTOOLSRELESC Microsoft Corporation Microsoft® C Runtime Library 131795770645384720 0x700d0000 434176 C:\Windows\SysWOW64\WINSPOOL.DRV 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Драйвер диспетчера очереди Windows 131795770645384720 0x703d0000 2056192 C:\Windows\SysWOW64\dwrite.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Службы Microsoft DirectX Typography 131795770645384720 0x705e0000 344064 C:\Windows\SysWOW64\OLEACC.dll 7.2.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Active Accessibility Core Component 131795770645384720 0x70a20000 94208 C:\Windows\SysWOW64\USP10.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Uniscribe Unicode script processor 131795770645384720 0x70a40000 81920 C:\Windows\SysWOW64\NLAapi.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Network Location Awareness 2 131795770645384720 0x70a60000 90112 C:\Windows\SysWOW64\pnrpnsp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик пространства имен PNRP 131795770645384720 0x70c00000 49152 C:\Windows\SysWOW64\winrnr.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation LDAP RnR Provider DLL 131795770645384720 0x70c10000 73728 C:\Windows\SysWOW64\napinsp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик оболочки совместимости для имен электронной почты 131795770645384720 0x71610000 77824 C:\Windows\SysWOW64\dhcpcsvc6.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиент DHCPv6 131795770645384720 0x725e0000 2273280 C:\Windows\SysWOW64\iertutil.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служебная программа времени выполнения для Internet Explorer 131795770645384720 0x72af0000 655360 C:\Windows\SysWOW64\WINHTTP.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Службы HTTP Windows 131795770645384720 0x72cc0000 1658880 C:\Windows\SysWOW64\urlmon.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширения OLE32 для Win32 131795770645384720 0x73ac0000 81920 C:\Windows\SysWOW64\dhcpcsvc.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служба DHCP-клиента 131795770645384720 0x73ae0000 40960 C:\Windows\SysWOW64\Secur32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Security Support Provider Interface 131795770645384720 0x73ee0000 61440 C:\Windows\SysWOW64\WTSAPI32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Remote Desktop Session Host Server SDK APIs 131795770645384720 0x73f00000 192512 C:\Windows\SysWOW64\IPHLPAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API вспомогательного приложения IP 131795770645384720 0x73f30000 512000 C:\Windows\SysWOW64\DNSAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Динамическая библиотека API DNS-клиента 131795770645384720 0x73ff0000 319488 C:\Windows\SysWOW64\mswsock.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширение поставщика службы API Microsoft Windows Sockets 2.0 131795770645384720 0x74060000 192512 C:\Windows\SysWOW64\rsaenh.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Enhanced Cryptographic Provider 131795770645384720 0x74110000 479232 C:\Windows\SysWOW64\uxtheme.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека тем UxTheme (Microsoft) 131795770645384720 0x74190000 110592 C:\Windows\SysWOW64\bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795770645384720 0x741b0000 77824 C:\Windows\SysWOW64\CRYPTSP.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Cryptographic Service Provider API 131795770645384720 0x741f0000 143360 C:\Windows\SysWOW64\WINMMBASE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base Multimedia Extension API DLL 131795770645384720 0x74230000 147456 C:\Windows\SysWOW64\WINMM.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation MCI API DLL 131795770645384720 0x744d0000 2138112 C:\Windows\WinSxS\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.14393.953_none_89c2555adb023171\COMCTL32.dll 6.10 (rs1_release_inmarket.170303-1614) Microsoft Corporation Библиотека элементов управления взаимодействия с пользователем 131795770645384720 0x746e0000 32768 C:\Windows\SysWOW64\VERSION.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Version Checking and File Installation Libraries 131795770645384720 0x746f0000 106496 C:\Windows\SysWOW64\USERENV.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Userenv 131795770645384720 0x747d0000 40960 C:\Windows\SysWOW64\CRYPTBASE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base cryptographic API DLL 131795770645384720 0x747e0000 126976 C:\Windows\SysWOW64\SspiCli.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Security Support Provider Interface 131795770645384720 0x74800000 151552 C:\Windows\SysWOW64\IMM32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Multi-User Windows IMM32 API Client DLL 131795770645384720 0x74910000 2170880 C:\Windows\SysWOW64\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795770645384720 0x74b30000 53248 C:\Windows\SysWOW64\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795770645384720 0x74b60000 790528 C:\Windows\SysWOW64\RPCRT4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795770645384720 0x74c30000 1417216 C:\Windows\SysWOW64\gdi32full.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation GDI Client DLL 131795770645384720 0x74d90000 24576 C:\Windows\SysWOW64\PSAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Process Status Helper 131795770645384720 0x74da0000 778240 C:\Windows\SysWOW64\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795770645384720 0x74e60000 557056 C:\Windows\SysWOW64\shcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795770645384720 0x74fd0000 405504 C:\Windows\SysWOW64\WS2_32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation 32-разрядная библиотека Windows Socket 2.0 131795770645384720 0x75040000 282624 C:\Windows\SysWOW64\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795770645384720 0x751d0000 57344 C:\Windows\SysWOW64\MSASN1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ASN.1 Runtime APIs 131795770645384720 0x751e0000 1708032 C:\Windows\SysWOW64\KERNELBASE.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645384720 0x75390000 266240 C:\Windows\SysWOW64\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795770645384720 0x753e0000 1560576 C:\Windows\SysWOW64\CRYPT32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API32 криптографии 131795770645384720 0x75560000 487424 C:\Windows\SysWOW64\advapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795770645384720 0x756c0000 5693440 C:\Windows\SysWOW64\windows.storage.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API хранения Microsoft WinRT 131795770645384720 0x75c90000 286720 C:\Windows\SysWOW64\SHLWAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека небольших программ оболочки 131795770645384720 0x75ce0000 20811776 C:\Windows\SysWOW64\SHELL32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Общая библиотека оболочки Windows 131795770645384720 0x774d0000 86016 C:\Windows\SysWOW64\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795770645384720 0x774f0000 61440 C:\Windows\SysWOW64\profapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Profile Basic API 131795770645384720 0x77560000 1437696 C:\Windows\SysWOW64\USER32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795770645384720 0x776c0000 368640 C:\Windows\SysWOW64\bcryptPrimitives.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation Windows Cryptographic Primitives Library 131795770645384720 0x77780000 503808 C:\Windows\SysWOW64\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645384720 0x77800000 606208 C:\Windows\SysWOW64\OLEAUT32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795770645384720 0x77ac0000 966656 C:\Windows\SysWOW64\ole32.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft OLE для Windows 131795770645384720 0x77bb0000 176128 C:\Windows\SysWOW64\GDI32.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation GDI Client DLL 131795770645384720 0x77be0000 937984 C:\Windows\SysWOW64\COMDLG32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека общих диалоговых окон 131795770645384720 0x77cd0000 221184 C:\Windows\SysWOW64\cfgmgr32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Configuration Manager DLL 131795770645384720 0x77d10000 28672 C:\Windows\SysWOW64\NSI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation NSI User-mode interface DLL 131795770645384720 0x77d20000 1585152 C:\Windows\SysWOW64\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 131795770645384720 0x7ffad0270000 1908736 C:\Windows\SYSTEM32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 76 11496 664 6 00000000:0031f1da 131794958406617238 0 0 1 Обязательная метка\Низкий обязательный уровень WIN-0UOTFKKVN1S\User SearchUI.exe C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\SearchUI.exe "C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\SearchUI.exe" -ServerName:CortanaUI.AppXa50dqqa5gqv4a428c9y1jjw7m3btvepj.mca Microsoft Corporation 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Search and Cortana application 131795770645385613 0x7ff79c3c0000 10706944 C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\SearchUI.exe 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Search and Cortana application 131795770645385613 0x7ffab2c00000 8179712 C:\Windows\SYSTEM32\chakra.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft ® Chakra (Private) 131795770645385613 0x7ffab33d0000 258048 C:\Windows\SYSTEM32\MLANG.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL многоязыковой поддержки 131795770645385613 0x7ffab3540000 22740992 C:\Windows\SYSTEM32\edgehtml.dll 11.00.14393.447 (rs1_release_inmarket.161102-0100) Microsoft Corporation Веб-платформа Microsoft Edge 131795770645385613 0x7ffab4b90000 655360 C:\Windows\System32\StructuredQuery.dll 7.0.14393.2068 (rs1_release.180209-1727) Microsoft Corporation Structured Query 131795770645385613 0x7ffab4c70000 4874240 C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\RemindersUI.dll 131795770645385613 0x7ffab52c0000 2445312 C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.BackgroundTask.dll 131795770645385613 0x7ffab5520000 3231744 C:\Windows\SYSTEM32\msftedit.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Элемент управления "Поле ввода форматированного текста", версия 8.5 131795770645385613 0x7ffab5840000 3108864 C:\Windows\System32\Speech_OneCore\Common\sapi_onecore.dll 5.3.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Speech API 131795770645385613 0x7ffab5b40000 2527232 C:\Windows\SYSTEM32\dwrite.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Службы Microsoft DirectX Typography 131795770645385613 0x7ffab5db0000 9781248 C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\CortanaApi.dll 131795770645385613 0x7ffab6710000 17231872 C:\Windows\System32\Windows.UI.Xaml.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows.UI.Xaml dll 131795770645385613 0x7ffab7a00000 3424256 C:\Windows\system32\tquery.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Запросы Microsoft Tripoli 131795770645385613 0x7ffab9c00000 1343488 C:\Windows\System32\Windows.Web.Http.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL Windows.Web.Http 131795770645385613 0x7ffab9d50000 1429504 C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Core.dll 131795770645385613 0x7ffabaab0000 94208 C:\Windows\SYSTEM32\profext.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation profext 131795770645385613 0x7ffabae40000 110592 C:\Windows\SYSTEM32\capauthz.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API авторизации возможностей 131795770645385613 0x7ffabaf70000 270336 C:\Windows\SYSTEM32\edputil.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служебная программа EDP 131795770645385613 0x7ffabb200000 294912 C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\CortanaApi.ProxyStub.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation "CortanaApi.ProxyStub.DYNLINK" 131795770645385613 0x7ffabb3c0000 450560 C:\Windows\SYSTEM32\TextInputFramework.dll 10.0.14393.2189 (rs1_release.180329-1711) Microsoft Corporation "TextInputFramework.DYNLINK" 131795770645385613 0x7ffabb490000 512000 C:\Windows\System32\twinapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation twinapi 131795770645385613 0x7ffabbd10000 65536 C:\Windows\SYSTEM32\tokenbinding.dll 10.0.14393.1593 (rs1_release.170731-1934) Microsoft Corporation Token Binding Protocol 131795770645385613 0x7ffabd4a0000 1613824 C:\Windows\System32\Windows.Globalization.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Globalization 131795770645385613 0x7ffabe4d0000 286720 C:\Windows\System32\MSWB7.dll 10.0.14393.1737 (rs1_release_inmarket.170914-1249) Microsoft Corporation MSWB7 DLL 131795770645385613 0x7ffabe6e0000 561152 C:\Windows\system32\directmanipulation.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Direct Manipulation Component 131795770645385613 0x7ffabe770000 774144 C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\CSGSuggestLib.dll 131795770645385613 0x7ffabe9c0000 188416 C:\Windows\SYSTEM32\globinputhost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Globalization Extension API for Input 131795770645385613 0x7ffabea90000 135168 C:\Windows\System32\Windows.ApplicationModel.Background.SystemEventsBroker.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Background System Events Broker API Server 131795770645385613 0x7ffabeac0000 335872 C:\Windows\System32\Windows.Storage.ApplicationData.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Application Data API Server 131795770645385613 0x7ffabeb20000 385024 C:\Windows\System32\Windows.ApplicationModel.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows ApplicationModel API Server 131795770645385613 0x7ffabefa0000 192512 C:\Windows\system32\Cortana.Persona.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Cortana.Persona 131795770645385613 0x7ffabf5d0000 2924544 C:\Windows\SYSTEM32\WININET.dll 11.00.14393.447 (rs1_release_inmarket.161102-0100) Microsoft Corporation Расширения Интернета для Win32 131795770645385613 0x7ffabf8a0000 122880 C:\Windows\System32\Windows.Cortana.ProxyStub.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows.Cortana.ProxyStub 131795770645385613 0x7ffabfce0000 90112 C:\Windows\System32\Windows.Globalization.Fontgroups.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Fonts Mapping API 131795770645385613 0x7ffabfd00000 356352 C:\Windows\System32\Windows.Graphics.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation WinRT Windows Graphics DLL 131795770645385613 0x7ffabfd80000 86016 C:\Windows\System32\threadpoolwinrt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows WinRT Threadpool 131795770645385613 0x7ffabfe10000 237568 C:\Windows\SYSTEM32\rometadata.dll 4.6.1586.0 built by: NETFXREL2 Microsoft Corporation Microsoft MetaData Library 131795770645385613 0x7ffac00c0000 282624 C:\Windows\SYSTEM32\windows.ui.core.textinput.dll 10.0.14393.2189 (rs1_release.180329-1711) Microsoft Corporation Windows.UI.Core.TextInput dll 131795770645385613 0x7ffac01e0000 397312 C:\Windows\SYSTEM32\wincorlib.DLL 10.0.14393.576 (rs1_release_inmarket.161208-2252) Microsoft Corporation Microsoft Windows ® WinRT core library 131795770645385613 0x7ffac0bf0000 3559424 C:\Windows\System32\ActXPrxy.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation ActiveX Interface Marshaling Library 131795770645385613 0x7ffac10b0000 217088 C:\Windows\system32\PersonaX.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation PersonaX 131795770645385613 0x7ffac1c40000 94208 C:\Windows\System32\SystemSettings.DataModel.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SystemSettings.Datamodel private API 131795770645385613 0x7ffac20d0000 110592 C:\Windows\System32\rmclient.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Resource Manager Client 131795770645385613 0x7ffac23c0000 331776 C:\Windows\System32\OneCoreCommonProxyStub.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation OneCore Common Proxy Stub 131795770645385613 0x7ffac2990000 385024 C:\Windows\SYSTEM32\NInput.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Pen and Touch Input Component 131795770645385613 0x7ffac2c30000 135168 C:\Windows\SYSTEM32\clipc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиент платформы лицензирования клиента 131795770645385613 0x7ffac2d80000 5140480 C:\Windows\SYSTEM32\cdp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API клиента Microsoft (R) CDP 131795770645385613 0x7ffac34e0000 1843200 C:\Windows\SYSTEM32\urlmon.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширения OLE32 для Win32 131795770645385613 0x7ffac3810000 167936 C:\Windows\SYSTEM32\Cabinet.dll 5.00 (rs1_release.160715-1616) Microsoft Corporation Microsoft® Cabinet File API 131795770645385613 0x7ffac3b80000 286720 C:\Windows\system32\indexeddbserver.dll 10.0.14393.2189 (rs1_release.180329-1711) Microsoft Corporation IndexedDb host 131795770645385613 0x7ffac3bf0000 94208 C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\ActionMgr.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Cortana Action Manager 131795770645385613 0x7ffac3cb0000 2772992 C:\Windows\SYSTEM32\iertutil.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служебная программа времени выполнения для Internet Explorer 131795770645385613 0x7ffac4000000 274432 C:\Windows\SYSTEM32\policymanager.dll 10.0.14393.2035 (rs1_release_inmarket.180110-1910) Microsoft Corporation Policy Manager DLL 131795770645385613 0x7ffac5070000 798720 C:\Windows\System32\Windows.Web.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL веб-клиента 131795770645385613 0x7ffac5350000 1765376 C:\Windows\System32\Windows.UI.Immersive.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation WINDOWS.UI.IMMERSIVE 131795770645385613 0x7ffac5ce0000 1744896 C:\Windows\SYSTEM32\UIAutomationCore.DLL 7.2.14393.0 (rs1_release.160715-1616) Microsoft Corporation Основные автоматические компоненты Microsoft UI 131795770645385613 0x7ffac60e0000 221184 C:\Windows\SYSTEM32\XmlLite.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft XmlLite Library 131795770645385613 0x7ffac6610000 40960 C:\Windows\System32\rasadhlp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Remote Access AutoDial Helper 131795770645385613 0x7ffac6620000 192512 C:\Windows\System32\biwinrt.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation Windows Background Broker Infrastructure 131795770645385613 0x7ffac66a0000 86016 C:\Windows\SYSTEM32\ondemandconnroutehelper.dll 10.0.14393.351 (rs1_release_inmarket.161014-1755) Microsoft Corporation On Demand Connctiond Route Helper 131795770645385613 0x7ffac69c0000 839680 C:\Windows\SYSTEM32\WINHTTP.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Службы HTTP Windows 131795770645385613 0x7ffac6ac0000 835584 C:\Windows\System32\Windows.UI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Runtime UI Foundation DLL 131795770645385613 0x7ffac6bb0000 118784 C:\Windows\system32\windows.cortana.pal.desktop.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows.Cortana.PAL.Desktop 131795770645385613 0x7ffac6bd0000 413696 C:\Windows\SYSTEM32\OLEACC.dll 7.2.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Active Accessibility Core Component 131795770645385613 0x7ffac6ed0000 155648 C:\Windows\SYSTEM32\srpapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL программных интерфейсов (API) поставщика общих ресурсов 131795770645385613 0x7ffac6f50000 5632000 C:\Windows\SYSTEM32\d2d1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека Microsoft D2D 131795770645385613 0x7ffac7580000 1077248 C:\Windows\System32\MrmCoreR.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Windows MRM 131795770645385613 0x7ffac7720000 1601536 C:\Windows\System32\OneCoreUAPCommonProxyStub.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation OneCoreUAP Common Proxy Stub 131795770645385613 0x7ffac78b0000 65536 C:\Windows\system32\msimtf.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Active IMM Server DLL 131795770645385613 0x7ffac7c50000 118784 C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\BingConfigurationClient.dll 10.0.14393.82 (rs1_release.160805-1735) Microsoft Corporation Bing Configuration Client DLL 131795770645385613 0x7ffac7d80000 49152 C:\Windows\System32\Windows.ApplicationModel.Background.TimeBroker.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Background Time Broker API Server 131795770645385613 0x7ffac7e30000 40960 C:\Windows\SYSTEM32\fontgroupsoverride.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation fontgroupsoverride.dll 131795770645385613 0x7ffac7fc0000 2674688 C:\Windows\SYSTEM32\d3d10warp.dll 10.0.14393.576 (rs1_release_inmarket.161208-2252) Microsoft Corporation Direct3D 10 Rasterizer 131795770645385613 0x7ffac83d0000 106496 C:\Windows\SYSTEM32\dhcpcsvc.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служба DHCP-клиента 131795770645385613 0x7ffac83f0000 90112 C:\Windows\SYSTEM32\dhcpcsvc6.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиент DHCPv6 131795770645385613 0x7ffac84f0000 299008 C:\Windows\system32\DataExchange.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation Data exchange 131795770645385613 0x7ffac8810000 45056 C:\Windows\SYSTEM32\WINNSI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Network Store Information RPC interface 131795770645385613 0x7ffac88a0000 2842624 C:\Windows\SYSTEM32\d3d11.dll 10.0.14393.953 (rs1_release_inmarket.170303-1614) Microsoft Corporation Direct3D 11 Runtime 131795770645385613 0x7ffac8fa0000 253952 C:\Windows\SYSTEM32\logoncli.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Net Logon Client DLL 131795770645385613 0x7ffac92e0000 1269760 C:\Windows\System32\WinTypes.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL основных типов Windows 131795770645385613 0x7ffac9480000 462848 C:\Windows\SYSTEM32\MMDevAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation MMDevice API 131795770645385613 0x7ffac9500000 2682880 C:\Windows\system32\CoreUIComponents.dll 131795770645385613 0x7ffac9f50000 1736704 C:\Windows\system32\windowscodecs.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Microsoft Windows Codecs Library 131795770645385613 0x7ffaca260000 45056 C:\Windows\SYSTEM32\SystemEventsBrokerClient.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation system Events Broker Client Library 131795770645385613 0x7ffaca340000 1593344 C:\Windows\SYSTEM32\PROPSYS.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Система страниц свойств (Майкрософт) 131795770645385613 0x7ffaca570000 421888 C:\Windows\SYSTEM32\Bcp47Langs.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation BCP47 Language Classes 131795770645385613 0x7ffaca5e0000 155648 C:\Windows\SYSTEM32\dwmapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Интерфейс API диспетчера окон рабочего стола (Майкрософт) 131795770645385613 0x7ffaca640000 770048 C:\Windows\SYSTEM32\CoreMessaging.dll 10.0.14393.0 Microsoft Corporation Microsoft CoreMessaging Dll 131795770645385613 0x7ffaca770000 1380352 C:\Windows\SYSTEM32\dcomp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft DirectComposition Library 131795770645385613 0x7ffacab40000 176128 C:\Windows\SYSTEM32\winmmbase.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base Multimedia Extension API DLL 131795770645385613 0x7ffacadf0000 499712 C:\Windows\system32\apphelp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиентская библиотека совместимости приложений 131795770645385613 0x7ffacaf00000 610304 C:\Windows\system32\uxtheme.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека тем UxTheme (Microsoft) 131795770645385613 0x7ffacb140000 593920 C:\Windows\SYSTEM32\msvcp110_win.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Microsoft® STL110 C++ Runtime Library 131795770645385613 0x7ffacb1e0000 1163264 C:\Windows\System32\twinapi.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation twinapi.appcore 131795770645385613 0x7ffacb300000 364544 C:\Windows\SYSTEM32\VEEventDispatcher.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Visual Element Event dispatcher 131795770645385613 0x7ffacb3f0000 163840 C:\Windows\SYSTEM32\DEVOBJ.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Device Information Set DLL 131795770645385613 0x7ffacb420000 204800 C:\Windows\SYSTEM32\ntmarta.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик Windows NT MARTA 131795770645385613 0x7ffacb780000 651264 C:\Windows\SYSTEM32\dxgi.dll 10.0.14393.953 (rs1_release_inmarket.170303-1614) Microsoft Corporation DirectX Graphics Infrastructure 131795770645385613 0x7ffacbd30000 229376 C:\Windows\SYSTEM32\IPHLPAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API вспомогательного приложения IP 131795770645385613 0x7ffacbd70000 659456 C:\Windows\SYSTEM32\DNSAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Динамическая библиотека API DNS-клиента 131795770645385613 0x7ffacbe40000 126976 C:\Windows\SYSTEM32\userenv.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Userenv 131795770645385613 0x7ffacbfb0000 376832 C:\Windows\system32\mswsock.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширение поставщика службы API Microsoft Windows Sockets 2.0 131795770645385613 0x7ffacc150000 94208 C:\Windows\SYSTEM32\cryptsp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Cryptographic Service Provider API 131795770645385613 0x7ffacc170000 45056 C:\Windows\SYSTEM32\CRYPTBASE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base cryptographic API DLL 131795770645385613 0x7ffacc1f0000 241664 C:\Windows\SYSTEM32\NTASN1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft ASN.1 API 131795770645385613 0x7ffacc230000 155648 C:\Windows\SYSTEM32\ncrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Маршрутизатор Windows NCrypt 131795770645385613 0x7ffacc350000 180224 C:\Windows\SYSTEM32\SspiCli.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Security Support Provider Interface 131795770645385613 0x7ffacc620000 176128 C:\Windows\SYSTEM32\bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795770645385613 0x7ffacc6e0000 61440 C:\Windows\System32\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795770645385613 0x7ffacc6f0000 311296 C:\Windows\System32\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795770645385613 0x7ffacc740000 81920 C:\Windows\System32\profapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Profile Basic API 131795770645385613 0x7ffacc760000 65536 C:\Windows\System32\MSASN1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ASN.1 Runtime APIs 131795770645385613 0x7ffacc8f0000 1003520 C:\Windows\System32\ucrtbase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645385613 0x7ffacc9f0000 434176 C:\Windows\System32\bcryptPrimitives.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Cryptographic Primitives Library 131795770645385613 0x7ffacca60000 122880 C:\Windows\System32\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795770645385613 0x7ffaccae0000 692224 C:\Windows\System32\shcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795770645385613 0x7ffaccb90000 7180288 C:\Windows\System32\windows.storage.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API хранения Microsoft WinRT 131795770645385613 0x7ffacd270000 2215936 C:\Windows\System32\KERNELBASE.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645385613 0x7ffacd490000 1871872 C:\Windows\System32\CRYPT32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API32 криптографии 131795770645385613 0x7ffacd710000 638976 C:\Windows\System32\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645385613 0x7ffacd7b0000 270336 C:\Windows\System32\cfgmgr32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Configuration Manager DLL 131795770645385613 0x7ffacd810000 22056960 C:\Windows\System32\shell32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Общая библиотека оболочки Windows 131795770645385613 0x7ffaced20000 782336 C:\Windows\System32\OLEAUT32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795770645385613 0x7ffacee50000 1183744 C:\Windows\System32\RPCRT4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795770645385613 0x7ffacef80000 32768 C:\Windows\System32\NSI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation NSI User-mode interface DLL 131795770645385613 0x7ffacef90000 647168 C:\Windows\System32\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795770645385613 0x7ffacf0d0000 704512 C:\Windows\System32\KERNEL32.DLL 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645385613 0x7ffacf1e0000 1417216 C:\Windows\System32\msctf.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Серверная библиотека MSCTF 131795770645385613 0x7ffacf770000 212992 C:\Windows\System32\GDI32.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation GDI Client DLL 131795770645385613 0x7ffacf820000 434176 C:\Windows\System32\WS2_32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation 32-разрядная библиотека Windows Socket 2.0 131795770645385613 0x7ffacf890000 188416 C:\Windows\System32\IMM32.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Multi-User Windows IMM32 API Client DLL 131795770645385613 0x7ffacf8c0000 1462272 C:\Windows\System32\user32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795770645385613 0x7ffacfb30000 2916352 C:\Windows\System32\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795770645385613 0x7ffacfe20000 663552 C:\Windows\System32\advapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795770645385613 0x7ffad0070000 1277952 C:\Windows\System32\ole32.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft OLE для Windows 131795770645385613 0x7ffad01b0000 335872 C:\Windows\System32\shlwapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека небольших программ оболочки 131795770645385613 0x7ffad0210000 364544 C:\Windows\System32\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795770645385613 0x7ffad0270000 1908736 C:\Windows\SYSTEM32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 77 11408 8940 68 00000000:0031f1da 131794962679173110 0 0 1 Обязательная метка\Средний обязательный уровень WIN-0UOTFKKVN1S\User node.exe C:\Program Files\Adobe\Adobe Photoshop CC 2017\node.exe "C:\Program Files\Adobe\Adobe Photoshop CC 2017\node.exe" "C:\Program Files\Adobe\Adobe Photoshop CC 2017\Required\Generator-builtin" --launchreason menu --menu crema-dummy-menu --photoshopVersion 18.0.1 -i \\.\pipe\36b615a8-a6c5-11e8-b291-8ffa7e69373b_i -o \\.\pipe\36b615a8-a6c5-11e8-b291-8ffa7e69373b_o -f "C:\Program Files\Adobe\Adobe Photoshop CC 2017\Required\Plug-Ins\Generator" -f "C:\Program Files\Common Files\Adobe\Plug-Ins\CC\Generator" Node.js 4.3.1 Node.js: Server-side JavaScript 131795770645385734 0x7ff6cbb20000 14237696 C:\Program Files\Adobe\Adobe Photoshop CC 2017\node.exe 4.3.1 Node.js Node.js: Server-side JavaScript 131795770645385734 0x7ffabfd60000 90112 C:\Windows\system32\napinsp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик оболочки совместимости для имен электронной почты 131795770645385734 0x7ffabfef0000 106496 C:\Windows\system32\pnrpnsp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик пространства имен PNRP 131795770645385734 0x7ffac0ab0000 57344 C:\Windows\System32\winrnr.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation LDAP RnR Provider DLL 131795770645385734 0x7ffac83d0000 106496 C:\Windows\SYSTEM32\dhcpcsvc.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служба DHCP-клиента 131795770645385734 0x7ffac83f0000 90112 C:\Windows\SYSTEM32\dhcpcsvc6.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиент DHCPv6 131795770645385734 0x7ffac9790000 98304 C:\Windows\system32\NLAapi.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Network Location Awareness 2 131795770645385734 0x7ffacab40000 176128 C:\Windows\SYSTEM32\WINMMBASE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base Multimedia Extension API DLL 131795770645385734 0x7ffacaba0000 143360 C:\Windows\SYSTEM32\WINMM.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation MCI API DLL 131795770645385734 0x7ffacadf0000 499712 C:\Windows\system32\apphelp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиентская библиотека совместимости приложений 131795770645385734 0x7ffacbbb0000 208896 C:\Windows\system32\rsaenh.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Enhanced Cryptographic Provider 131795770645385734 0x7ffacbd30000 229376 C:\Windows\SYSTEM32\IPHLPAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API вспомогательного приложения IP 131795770645385734 0x7ffacbd70000 659456 C:\Windows\SYSTEM32\DNSAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Динамическая библиотека API DNS-клиента 131795770645385734 0x7ffacbe40000 126976 C:\Windows\SYSTEM32\USERENV.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Userenv 131795770645385734 0x7ffacbfb0000 376832 C:\Windows\system32\mswsock.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширение поставщика службы API Microsoft Windows Sockets 2.0 131795770645385734 0x7ffacc150000 94208 C:\Windows\SYSTEM32\CRYPTSP.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Cryptographic Service Provider API 131795770645385734 0x7ffacc170000 45056 C:\Windows\SYSTEM32\CRYPTBASE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base cryptographic API DLL 131795770645385734 0x7ffacc620000 176128 C:\Windows\SYSTEM32\bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795770645385734 0x7ffacc740000 81920 C:\Windows\System32\profapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Profile Basic API 131795770645385734 0x7ffacc8f0000 1003520 C:\Windows\System32\ucrtbase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645385734 0x7ffacc9f0000 434176 C:\Windows\System32\bcryptPrimitives.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Cryptographic Primitives Library 131795770645385734 0x7ffacca60000 122880 C:\Windows\System32\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795770645385734 0x7ffacd270000 2215936 C:\Windows\System32\KERNELBASE.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645385734 0x7ffacd7b0000 270336 C:\Windows\System32\cfgmgr32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Configuration Manager DLL 131795770645385734 0x7ffacd800000 32768 C:\Windows\System32\PSAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Process Status Helper 131795770645385734 0x7ffacee50000 1183744 C:\Windows\System32\RPCRT4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795770645385734 0x7ffacef80000 32768 C:\Windows\System32\NSI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation NSI User-mode interface DLL 131795770645385734 0x7ffacef90000 647168 C:\Windows\System32\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795770645385734 0x7ffacf0d0000 704512 C:\Windows\System32\KERNEL32.DLL 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645385734 0x7ffacf770000 212992 C:\Windows\System32\GDI32.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation GDI Client DLL 131795770645385734 0x7ffacf820000 434176 C:\Windows\System32\WS2_32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation 32-разрядная библиотека Windows Socket 2.0 131795770645385734 0x7ffacf890000 188416 C:\Windows\System32\IMM32.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Multi-User Windows IMM32 API Client DLL 131795770645385734 0x7ffacf8c0000 1462272 C:\Windows\System32\USER32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795770645385734 0x7ffacfe20000 663552 C:\Windows\System32\ADVAPI32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795770645385734 0x7ffad0210000 364544 C:\Windows\System32\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795770645385734 0x7ffad0270000 1908736 C:\Windows\SYSTEM32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 78 12164 11408 77 00000000:0031f1da 131794962697229215 0 0 1 Обязательная метка\Средний обязательный уровень WIN-0UOTFKKVN1S\User conhost.exe C:\Windows\system32\conhost.exe \??\C:\Windows\system32\conhost.exe 0x4 Microsoft Corporation 10.0.14393.0 (rs1_release.160715-1616) Console Window Host 131795770645385831 0x7ff768b40000 69632 C:\Windows\system32\conhost.exe 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Console Window Host 131795770645385831 0x7ffabe520000 368640 C:\Windows\SYSTEM32\ConhostV2.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Хост окна консоли 131795770645385831 0x7ffac6c40000 2596864 C:\Windows\WinSxS\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.14393.953_none_42151e83c686086b\comctl32.DLL 6.10 (rs1_release_inmarket.170303-1614) Microsoft Corporation Библиотека элементов управления взаимодействия с пользователем 131795770645385831 0x7ffaca340000 1593344 C:\Windows\SYSTEM32\PROPSYS.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Система страниц свойств (Майкрософт) 131795770645385831 0x7ffaca5e0000 155648 C:\Windows\system32\dwmapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Интерфейс API диспетчера окон рабочего стола (Майкрософт) 131795770645385831 0x7ffacaf00000 610304 C:\Windows\system32\uxtheme.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека тем UxTheme (Microsoft) 131795770645385831 0x7ffacc6e0000 61440 C:\Windows\System32\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795770645385831 0x7ffacc6f0000 311296 C:\Windows\System32\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795770645385831 0x7ffacc740000 81920 C:\Windows\System32\profapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Profile Basic API 131795770645385831 0x7ffacc8f0000 1003520 C:\Windows\System32\ucrtbase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645385831 0x7ffacc9f0000 434176 C:\Windows\System32\bcryptPrimitives.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Cryptographic Primitives Library 131795770645385831 0x7ffacca60000 122880 C:\Windows\System32\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795770645385831 0x7ffaccae0000 692224 C:\Windows\System32\shcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795770645385831 0x7ffaccb90000 7180288 C:\Windows\System32\windows.storage.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API хранения Microsoft WinRT 131795770645385831 0x7ffacd270000 2215936 C:\Windows\System32\KERNELBASE.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645385831 0x7ffacd710000 638976 C:\Windows\System32\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645385831 0x7ffacd7b0000 270336 C:\Windows\System32\cfgmgr32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Configuration Manager DLL 131795770645385831 0x7ffacd810000 22056960 C:\Windows\System32\SHELL32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Общая библиотека оболочки Windows 131795770645385831 0x7ffaced20000 782336 C:\Windows\System32\OLEAUT32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795770645385831 0x7ffacee50000 1183744 C:\Windows\System32\RPCRT4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795770645385831 0x7ffacef90000 647168 C:\Windows\System32\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795770645385831 0x7ffacf0d0000 704512 C:\Windows\System32\KERNEL32.DLL 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645385831 0x7ffacf1e0000 1417216 C:\Windows\System32\MSCTF.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Серверная библиотека MSCTF 131795770645385831 0x7ffacf770000 212992 C:\Windows\System32\GDI32.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation GDI Client DLL 131795770645385831 0x7ffacf890000 188416 C:\Windows\System32\IMM32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Multi-User Windows IMM32 API Client DLL 131795770645385831 0x7ffacf8c0000 1462272 C:\Windows\System32\USER32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795770645385831 0x7ffacfb30000 2916352 C:\Windows\System32\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795770645385831 0x7ffacfe20000 663552 C:\Windows\System32\advapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795770645385831 0x7ffad01b0000 335872 C:\Windows\System32\shlwapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека небольших программ оболочки 131795770645385831 0x7ffad0210000 364544 C:\Windows\System32\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795770645385831 0x7ffad0270000 1908736 C:\Windows\SYSTEM32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 79 5612 904 22 00000000:000003e5 131794965205293998 0 0 1 Обязательная метка\Обязательный уровень системы NT AUTHORITY\LOCAL SERVICE dashost.exe C:\Windows\system32\dashost.exe dashost.exe {609e1ffd-7b4d-4dbc-a36f725917d81f2d} Microsoft Corporation 10.0.14393.82 (rs1_release.160805-1735) Device Association Framework Provider Host 131795770645385987 0x7ff6559c0000 110592 C:\Windows\system32\dashost.exe 10.0.14393.82 (rs1_release.160805-1735) Microsoft Corporation Device Association Framework Provider Host 131795770645385987 0x7ffabb1a0000 274432 C:\Windows\system32\DAFWSD.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DAF WSD Provider 131795770645385987 0x7ffabc970000 188416 C:\Windows\system32\dafupnp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DAF UPnP Provider 131795770645385987 0x7ffac1d60000 589824 C:\Windows\system32\webio.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API протоколов передачи по Веб 131795770645385987 0x7ffac3f60000 225280 C:\Windows\system32\FWPolicyIOMgr.dll 10.0.14393.2189 (rs1_release.180329-1711) Microsoft Corporation FwPolicyIoMgr DLL 131795770645385987 0x7ffac60e0000 221184 C:\Windows\system32\XmlLite.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft XmlLite Library 131795770645385987 0x7ffac66c0000 32768 C:\Windows\system32\wship6.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL помощника Winsock2 (TL/IPv6) 131795770645385987 0x7ffac66d0000 32768 C:\Windows\system32\wshtcpip.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL помощника службы Winsock2 (TL/IPv4) 131795770645385987 0x7ffac6700000 40960 C:\Windows\system32\wshqos.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL помощника службы QoS Winsock2 131795770645385987 0x7ffac6750000 1380352 C:\Windows\system32\webservices.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Среда выполнения веб-служб Windows 131795770645385987 0x7ffac68b0000 696320 C:\Windows\system32\wsdapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Веб-службы для библиотек DLL API-интерфейсов устройств 131795770645385987 0x7ffac6990000 69632 C:\Windows\system32\deviceassociation.dll 10.0.14393.82 (rs1_release.160805-1735) Microsoft Corporation Device Association Client DLL 131795770645385987 0x7ffac69c0000 839680 C:\Windows\system32\WINHTTP.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Службы HTTP Windows 131795770645385987 0x7ffac79c0000 57344 C:\Windows\System32\npmproxy.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Network List Manager Proxy 131795770645385987 0x7ffac7e50000 86016 C:\Windows\system32\SSDPAPI.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation SSDP Client API DLL 131795770645385987 0x7ffac83d0000 106496 C:\Windows\SYSTEM32\dhcpcsvc.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служба DHCP-клиента 131795770645385987 0x7ffac83f0000 90112 C:\Windows\SYSTEM32\dhcpcsvc6.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиент DHCPv6 131795770645385987 0x7ffac8810000 45056 C:\Windows\SYSTEM32\WINNSI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Network Store Information RPC interface 131795770645385987 0x7ffac9f10000 221184 C:\Windows\System32\netprofm.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Network List Manager 131795770645385987 0x7ffacb360000 176128 C:\Windows\system32\fwbase.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Firewall Base DLL 131795770645385987 0x7ffacb460000 548864 C:\Windows\system32\FirewallAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API брандмауэра Windows 131795770645385987 0x7ffacbbb0000 208896 C:\Windows\system32\rsaenh.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Enhanced Cryptographic Provider 131795770645385987 0x7ffacbd30000 229376 C:\Windows\system32\IPHLPAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API вспомогательного приложения IP 131795770645385987 0x7ffacbd70000 659456 C:\Windows\system32\DNSAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Динамическая библиотека API DNS-клиента 131795770645385987 0x7ffacbfb0000 376832 C:\Windows\system32\mswsock.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширение поставщика службы API Microsoft Windows Sockets 2.0 131795770645385987 0x7ffacc150000 94208 C:\Windows\system32\CRYPTSP.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Cryptographic Service Provider API 131795770645385987 0x7ffacc170000 45056 C:\Windows\system32\CRYPTBASE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base cryptographic API DLL 131795770645385987 0x7ffacc350000 180224 C:\Windows\system32\SspiCli.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Security Support Provider Interface 131795770645385987 0x7ffacc620000 176128 C:\Windows\system32\bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795770645385987 0x7ffacc6e0000 61440 C:\Windows\System32\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795770645385987 0x7ffacc6f0000 311296 C:\Windows\System32\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795770645385987 0x7ffacc760000 65536 C:\Windows\System32\MSASN1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ASN.1 Runtime APIs 131795770645385987 0x7ffacc8f0000 1003520 C:\Windows\System32\ucrtbase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645385987 0x7ffacc9f0000 434176 C:\Windows\System32\bcryptPrimitives.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Cryptographic Primitives Library 131795770645385987 0x7ffacca60000 122880 C:\Windows\System32\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795770645385987 0x7ffacd270000 2215936 C:\Windows\System32\KERNELBASE.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645385987 0x7ffacd490000 1871872 C:\Windows\System32\CRYPT32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API32 криптографии 131795770645385987 0x7ffacd710000 638976 C:\Windows\System32\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645385987 0x7ffacd7b0000 270336 C:\Windows\System32\cfgmgr32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Configuration Manager DLL 131795770645385987 0x7ffaced20000 782336 C:\Windows\System32\OLEAUT32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795770645385987 0x7ffacee50000 1183744 C:\Windows\System32\RPCRT4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795770645385987 0x7ffacef80000 32768 C:\Windows\System32\NSI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation NSI User-mode interface DLL 131795770645385987 0x7ffacef90000 647168 C:\Windows\System32\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795770645385987 0x7ffacf030000 651264 C:\Windows\System32\clbcatq.dll 2001.12.10941.16384 (rs1_release.160715-1616) Microsoft Corporation COM+ Configuration Catalog 131795770645385987 0x7ffacf0d0000 704512 C:\Windows\System32\KERNEL32.DLL 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645385987 0x7ffacf770000 212992 C:\Windows\System32\GDI32.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation GDI Client DLL 131795770645385987 0x7ffacf820000 434176 C:\Windows\System32\WS2_32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation 32-разрядная библиотека Windows Socket 2.0 131795770645385987 0x7ffacf8c0000 1462272 C:\Windows\System32\user32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795770645385987 0x7ffacfb30000 2916352 C:\Windows\System32\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795770645385987 0x7ffad0210000 364544 C:\Windows\System32\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795770645385987 0x7ffad0270000 1908736 C:\Windows\SYSTEM32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 80 9720 9180 81 00000000:0031f1ab 131794969418818027 0 0 0 Обязательная метка\Высокий обязательный уровень WIN-0UOTFKKVN1S\User Windows10UpgraderApp.exe C:\Windows10Upgrade\Windows10UpgraderApp.exe "C:\Windows10Upgrade\Windows10UpgraderApp.exe" /Install /ClientID Win10Upgrade:VNL:NHV18:{} /SkipEULA /PostEosUi Microsoft Corporation 1.4.9200.22452 Помощник по обновлению Windows 10 131795770645386103 0xb30000 1875968 C:\Windows10Upgrade\Windows10UpgraderApp.exe 1.4.9200.22452 Microsoft Corporation Помощник по обновлению Windows 10 131795770645386103 0x5c020000 335872 C:\Windows\System32\wow64.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation Win32 Emulation on NT64 131795770645386103 0x5c080000 487424 C:\Windows\System32\wow64win.dll 10.0.14393.1884 (rs1_release.171101-1233) Microsoft Corporation Wow64 Console and Win32 API Logging 131795770645386103 0x5c100000 40960 C:\Windows\System32\wow64cpu.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation AMD64 Wow64 CPU 131795770645386103 0x5fec0000 794624 C:\Windows\SysWOW64\wbem\fastprox.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation WMI Custom Marshaller 131795770645386103 0x5ffa0000 421888 C:\Windows\SysWOW64\wbemcomn.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation WMI 131795770645386103 0x60010000 53248 C:\Windows\SysWOW64\wbem\wbemprox.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation WMI 131795770645386103 0x60750000 1556480 C:\Program Files (x86)\360\Total Security\safemon\safemon.dll 8, 4, 0, 1420 Qihu 360 Software Co., Ltd. 360 Internet Security Internet Protection 131795770645386103 0x627d0000 249856 C:\Windows\SysWOW64\edputil.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служебная программа EDP 131795770645386103 0x64d00000 5079040 C:\Windows\SysWOW64\d2d1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека Microsoft D2D 131795770645386103 0x651e0000 20537344 C:\Windows\SysWOW64\mshtml.dll 11.00.14393.447 (rs1_release_inmarket.161102-0100) Microsoft Corporation Средство просмотра HTML Microsoft® 131795770645386103 0x66580000 12247040 C:\Windows\SysWOW64\ieframe.dll 11.00.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Браузер 131795770645386103 0x67200000 1978368 C:\Windows\SysWOW64\msxml6.dll 6.30.14393.2156 Microsoft Corporation MSXML 6.0 131795770645386103 0x67500000 1597440 C:\Windows\SysWOW64\ActXPrxy.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation ActiveX Interface Marshaling Library 131795770645386103 0x6b670000 212992 C:\Windows\SysWOW64\mlang.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL многоязыковой поддержки 131795770645386103 0x6c290000 987136 C:\Windows\SysWOW64\twinapi.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation twinapi.appcore 131795770645386103 0x6c390000 1126400 C:\Windows\SysWOW64\dcomp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft DirectComposition Library 131795770645386103 0x6c4b0000 278528 C:\Windows\SysWOW64\dataexchange.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation Data exchange 131795770645386103 0x6c540000 483328 C:\Windows\SysWOW64\webio.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API протоколов передачи по Веб 131795770645386103 0x6c720000 2318336 C:\Windows\SysWOW64\d3d10warp.dll 10.0.14393.576 (rs1_release_inmarket.161208-2252) Microsoft Corporation Direct3D 10 Rasterizer 131795770645386103 0x6c960000 57344 C:\Windows\SysWOW64\msimtf.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Active IMM Server DLL 131795770645386103 0x6c970000 3698688 C:\Windows\SysWOW64\jscript9.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft ® JScript 131795770645386103 0x6cd00000 69632 C:\Windows\SysWOW64\WLDP.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Политика блокировки Windows 131795770645386103 0x6cd20000 135168 C:\Windows\SysWOW64\srpapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL программных интерфейсов (API) поставщика общих ресурсов 131795770645386103 0x6cda0000 528384 C:\Windows\SysWOW64\sxs.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Fusion 2.5 131795770645386103 0x6d080000 151552 C:\Windows\SysWOW64\cryptnet.dll 10.0.14393.2035 (rs1_release_inmarket.180110-1910) Microsoft Corporation Crypto Network Related API 131795770645386103 0x6d0b0000 847872 C:\Windows\SysWOW64\WinTypes.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL основных типов Windows 131795770645386103 0x6d6e0000 634880 C:\Windows\SysWOW64\Windows.UI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Runtime UI Foundation DLL 131795770645386103 0x6d780000 876544 C:\Windows\SysWOW64\mrmcorer.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Windows MRM 131795770645386103 0x6d860000 1245184 C:\Windows\SysWOW64\MFC42u.dll 6.06.8063.0 Microsoft Corporation Общая библиотека MFCDLL - розничная версия 131795770645386103 0x6dcd0000 606208 C:\Windows\WinSxS\x86_microsoft.windows.common-controls_6595b64144ccf1df_5.82.14393.447_none_5507ded2cb4f7f4c\COMCTL32.dll 6.10 (rs1_release_inmarket.170303-1614) Microsoft Corporation Библиотека элементов управления взаимодействия с пользователем 131795770645386103 0x6ded0000 630784 C:\Windows\SysWOW64\ODBC32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ODBC Driver Manager 131795770645386103 0x6dfc0000 53248 C:\Windows\SysWOW64\execmodelproxy.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ExecModelProxy 131795770645386103 0x6dfd0000 253952 C:\Windows\SysWOW64\UIAnimation.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Animation Manager 131795770645386103 0x6e010000 208896 C:\Windows10Upgrade\Downloader.dll 1.4.9200.22452 (win8_ldr.180426-0600) Microsoft Corporation Downloader 131795770645386103 0x6e050000 81920 C:\Windows\SysWOW64\Windows.Shell.ServiceHostBuilder.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows.Shell.ServiceHostBuilder 131795770645386103 0x6e710000 335872 C:\Windows\SysWOW64\Bcp47Langs.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation BCP47 Language Classes 131795770645386103 0x70340000 536576 C:\Windows\SysWOW64\dxgi.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation DirectX Graphics Infrastructure 131795770645386103 0x703d0000 2056192 C:\Windows\SysWOW64\DWrite.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Службы Microsoft DirectX Typography 131795770645386103 0x705e0000 344064 C:\Windows\SysWOW64\OLEACC.DLL 7.2.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Active Accessibility Core Component 131795770645386103 0x70640000 1499136 C:\Windows\SysWOW64\windowscodecs.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Microsoft Windows Codecs Library 131795770645386103 0x707b0000 110592 C:\Windows\SysWOW64\ncryptsslp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft SChannel Provider 131795770645386103 0x707d0000 86016 C:\Windows\SysWOW64\SAMCLI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Security Accounts Manager Client DLL 131795770645386103 0x707f0000 2293760 C:\Windows\SysWOW64\d3d11.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation Direct3D 11 Runtime 131795770645386103 0x70a80000 409600 C:\Windows\SysWOW64\schannel.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик безопасности TLS/SSL 131795770645386103 0x70b40000 69632 C:\Windows\SysWOW64\mskeyprotect.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик защиты ключей (Майкрософт) 131795770645386103 0x70b70000 163840 C:\Windows\SysWOW64\ntmarta.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик Windows NT MARTA 131795770645386103 0x70ca0000 45056 C:\Windows\SysWOW64\NETUTILS.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API Helpers DLL 131795770645386103 0x70cc0000 65536 C:\Windows\SysWOW64\ondemandconnroutehelper.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation On Demand Connctiond Route Helper 131795770645386103 0x70e60000 176128 C:\Windows\SysWOW64\NTASN1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft ASN.1 API 131795770645386103 0x71140000 77824 C:\Windows\SysWOW64\NETAPI32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API DLL 131795770645386103 0x71610000 77824 C:\Windows\SysWOW64\dhcpcsvc6.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиент DHCPv6 131795770645386103 0x725e0000 2273280 C:\Windows\SysWOW64\iertutil.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служебная программа времени выполнения для Internet Explorer 131795770645386103 0x728e0000 1372160 C:\Windows\SysWOW64\PROPSYS.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Система страниц свойств (Майкрософт) 131795770645386103 0x72b90000 126976 C:\Windows\SysWOW64\dwmapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Интерфейс API диспетчера окон рабочего стола (Майкрософт) 131795770645386103 0x72cc0000 1658880 C:\Windows\SysWOW64\urlmon.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширения OLE32 для Win32 131795770645386103 0x73a40000 32768 C:\Windows\SysWOW64\WINNSI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Network Store Information RPC interface 131795770645386103 0x73a50000 299008 C:\Windows\SysWOW64\fwpuclnt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API пользовательского режима FWP/IPsec 131795770645386103 0x73aa0000 32768 C:\Windows\SysWOW64\DPAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Data Protection API 131795770645386103 0x73ab0000 32768 C:\Windows\SysWOW64\rasadhlp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Remote Access AutoDial Helper 131795770645386103 0x73ac0000 81920 C:\Windows\SysWOW64\dhcpcsvc.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служба DHCP-клиента 131795770645386103 0x73ae0000 40960 C:\Windows\SysWOW64\Secur32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Security Support Provider Interface 131795770645386103 0x73f00000 192512 C:\Windows\SysWOW64\IPHLPAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API вспомогательного приложения IP 131795770645386103 0x73f30000 512000 C:\Windows\SysWOW64\DNSAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Динамическая библиотека API DNS-клиента 131795770645386103 0x73ff0000 319488 C:\Windows\SysWOW64\mswsock.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширение поставщика службы API Microsoft Windows Sockets 2.0 131795770645386103 0x74060000 192512 C:\Windows\SysWOW64\rsaenh.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Enhanced Cryptographic Provider 131795770645386103 0x74110000 479232 C:\Windows\SysWOW64\uxtheme.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека тем UxTheme (Microsoft) 131795770645386103 0x74190000 110592 C:\Windows\SysWOW64\bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795770645386103 0x741b0000 77824 C:\Windows\SysWOW64\CRYPTSP.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Cryptographic Service Provider API 131795770645386103 0x74260000 2514944 C:\Windows\SysWOW64\WININET.dll 11.00.14393.447 (rs1_release_inmarket.161102-0100) Microsoft Corporation Расширения Интернета для Win32 131795770645386103 0x744d0000 2138112 C:\Windows\WinSxS\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.14393.953_none_89c2555adb023171\comctl32.dll 6.10 (rs1_release_inmarket.170303-1614) Microsoft Corporation Библиотека элементов управления взаимодействия с пользователем 131795770645386103 0x746e0000 32768 C:\Windows\SysWOW64\VERSION.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Version Checking and File Installation Libraries 131795770645386103 0x746f0000 106496 C:\Windows\SysWOW64\USERENV.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Userenv 131795770645386103 0x74730000 598016 C:\Windows\SysWOW64\apphelp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиентская библиотека совместимости приложений 131795770645386103 0x747d0000 40960 C:\Windows\SysWOW64\CRYPTBASE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base cryptographic API DLL 131795770645386103 0x747e0000 126976 C:\Windows\SysWOW64\SspiCli.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Security Support Provider Interface 131795770645386103 0x74800000 151552 C:\Windows\SysWOW64\IMM32.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Multi-User Windows IMM32 API Client DLL 131795770645386103 0x74910000 2170880 C:\Windows\SysWOW64\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795770645386103 0x74b30000 53248 C:\Windows\SysWOW64\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795770645386103 0x74b60000 790528 C:\Windows\SysWOW64\RPCRT4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795770645386103 0x74c30000 1417216 C:\Windows\SysWOW64\gdi32full.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation GDI Client DLL 131795770645386103 0x74d90000 24576 C:\Windows\SysWOW64\PSAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Process Status Helper 131795770645386103 0x74da0000 778240 C:\Windows\SysWOW64\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795770645386103 0x74e60000 557056 C:\Windows\SysWOW64\shcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795770645386103 0x74ef0000 540672 C:\Windows\SysWOW64\clbcatq.dll 2001.12.10941.16384 (rs1_release.160715-1616) Microsoft Corporation COM+ Configuration Catalog 131795770645386103 0x74f80000 278528 C:\Windows\SysWOW64\WINTRUST.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation Microsoft Trust Verification APIs 131795770645386103 0x74fd0000 405504 C:\Windows\SysWOW64\WS2_32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation 32-разрядная библиотека Windows Socket 2.0 131795770645386103 0x75040000 282624 C:\Windows\SysWOW64\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795770645386103 0x75090000 1265664 C:\Windows\SysWOW64\MSCTF.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Серверная библиотека MSCTF 131795770645386103 0x751d0000 57344 C:\Windows\SysWOW64\MSASN1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ASN.1 Runtime APIs 131795770645386103 0x751e0000 1708032 C:\Windows\SysWOW64\KERNELBASE.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645386103 0x75390000 266240 C:\Windows\SysWOW64\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795770645386103 0x753e0000 1560576 C:\Windows\SysWOW64\CRYPT32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API32 криптографии 131795770645386103 0x75560000 487424 C:\Windows\SysWOW64\ADVAPI32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795770645386103 0x756c0000 5693440 C:\Windows\SysWOW64\windows.storage.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API хранения Microsoft WinRT 131795770645386103 0x75c90000 286720 C:\Windows\SysWOW64\shlwapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека небольших программ оболочки 131795770645386103 0x75ce0000 20811776 C:\Windows\SysWOW64\SHELL32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Общая библиотека оболочки Windows 131795770645386103 0x774d0000 86016 C:\Windows\SysWOW64\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795770645386103 0x774f0000 61440 C:\Windows\SysWOW64\profapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Profile Basic API 131795770645386103 0x77560000 1437696 C:\Windows\SysWOW64\USER32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795770645386103 0x776c0000 368640 C:\Windows\SysWOW64\bcryptPrimitives.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation Windows Cryptographic Primitives Library 131795770645386103 0x77780000 503808 C:\Windows\SysWOW64\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645386103 0x77800000 606208 C:\Windows\SysWOW64\OLEAUT32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795770645386103 0x77ac0000 966656 C:\Windows\SysWOW64\ole32.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft OLE для Windows 131795770645386103 0x77bb0000 176128 C:\Windows\SysWOW64\GDI32.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation GDI Client DLL 131795770645386103 0x77cd0000 221184 C:\Windows\SysWOW64\cfgmgr32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Configuration Manager DLL 131795770645386103 0x77d10000 28672 C:\Windows\SysWOW64\NSI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation NSI User-mode interface DLL 131795770645386103 0x77d20000 1585152 C:\Windows\SysWOW64\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 131795770645386103 0x7ffad0270000 1908736 C:\Windows\SYSTEM32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 82 8944 520 18 00000000:0031f1da 131795005508439638 0 0 1 Обязательная метка\Низкий обязательный уровень WIN-0UOTFKKVN1S\User fontdrvhost.exe C:\Windows\system32\fontdrvhost.exe "fontdrvhost.exe" Microsoft Corporation 10.0.14393.2189 (rs1_release.180329-1711) Usermode Font Driver Host 131795770645386388 0x7ff654db0000 638976 C:\Windows\system32\fontdrvhost.exe 10.0.14393.2189 (rs1_release.180329-1711) Microsoft Corporation Usermode Font Driver Host 131795770645386388 0x7ffacc770000 1572864 C:\Windows\System32\gdi32full.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation GDI Client DLL 131795770645386388 0x7ffacca60000 122880 C:\Windows\System32\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795770645386388 0x7ffacd270000 2215936 C:\Windows\System32\KERNELBASE.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645386388 0x7ffacef90000 647168 C:\Windows\System32\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795770645386388 0x7ffacf0d0000 704512 C:\Windows\System32\KERNEL32.DLL 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645386388 0x7ffacf770000 212992 C:\Windows\System32\gdi32.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation GDI Client DLL 131795770645386388 0x7ffacf890000 188416 C:\Windows\System32\IMM32.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Multi-User Windows IMM32 API Client DLL 131795770645386388 0x7ffacf8c0000 1462272 C:\Windows\System32\USER32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795770645386388 0x7ffad0270000 1908736 C:\Windows\SYSTEM32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 83 6684 664 6 00000000:0031f1da 131795006053748558 0 0 1 Обязательная метка\Низкий обязательный уровень WIN-0UOTFKKVN1S\User Microsoft.Photos.exe C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2017.35063.44410.0_x64__8wekyb3d8bbwe\Microsoft.Photos.exe "C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2017.35063.44410.0_x64__8wekyb3d8bbwe\Microsoft.Photos.exe" -ServerName:App.AppXzst44mncqdg84v7sv6p7yznqwssy6f7f.mca 131795770645660438 0x7ff705e40000 36864 C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2017.35063.44410.0_x64__8wekyb3d8bbwe\Microsoft.Photos.exe 131795770645660438 0x7ffa9bb10000 1380352 C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2017.35063.44410.0_x64__8wekyb3d8bbwe\Microsoft.RichMedia.Ink.Controls.dll 131795770645660438 0x7ffa9bc70000 3158016 C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2017.35063.44410.0_x64__8wekyb3d8bbwe\Microsoft.UI.Xaml.dll 131795770645660438 0x7ffa9bf80000 2994176 C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2017.35063.44410.0_x64__8wekyb3d8bbwe\AppCore.Windows.dll 131795770645660438 0x7ffa9c260000 20144128 C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2017.35063.44410.0_x64__8wekyb3d8bbwe\PhotosApp.Windows.dll 131795770645660438 0x7ffa9d5a0000 29011968 C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2017.35063.44410.0_x64__8wekyb3d8bbwe\Microsoft.Photos.dll 131795770645660438 0x7ffa9f150000 6311936 C:\Windows\System32\Windows.Media.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Media Runtime DLL 131795770645660438 0x7ffa9fb20000 7950336 C:\Program Files\WindowsApps\Microsoft.NET.Native.Framework.1.3_1.3.24201.0_x64__8wekyb3d8bbwe\SharedLibrary.dll Microsoft Corporation Microsoft .NET Native Shared Framework 131795770645660438 0x7ffaa03f0000 4546560 C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2017.35063.44410.0_x64__8wekyb3d8bbwe\FaceSdkStoreWrapper.dll 16.425.0.0 Microsoft Corporation FaceSdkStoreWrapper 131795770645660438 0x7ffaa0850000 2371584 C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2017.35063.44410.0_x64__8wekyb3d8bbwe\MediaEngine.dll 131795770645660438 0x7ffaab270000 917504 C:\Windows\System32\Windows.AccountsControl.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Accounts Control 131795770645660438 0x7ffaab750000 876544 C:\Windows\System32\Windows.Media.Import.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation Windows Photo Import API (WinRT/COM) 131795770645660438 0x7ffaac0c0000 1396736 C:\Windows\System32\Windows.UI.Xaml.Phone.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows UI XAML Phone API 131795770645660438 0x7ffab5b40000 2527232 C:\Windows\SYSTEM32\dwrite.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Службы Microsoft DirectX Typography 131795770645660438 0x7ffab6710000 17231872 C:\Windows\System32\Windows.UI.Xaml.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows.UI.Xaml dll 131795770645660438 0x7ffab8f40000 94208 C:\Windows\System32\Windows.System.Diagnostics.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows System Diagnostics DLL 131795770645660438 0x7ffab8f60000 397312 C:\Windows\System32\CryptoWinRT.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Crypto WinRT Library 131795770645660438 0x7ffab9270000 454656 C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2017.35063.44410.0_x64__8wekyb3d8bbwe\Microsoft.Photos.AGM.Native.Windows.dll 131795770645660438 0x7ffab9b40000 389120 C:\Program Files\WindowsApps\Microsoft.NET.Native.Runtime.1.4_1.4.24201.0_x64__8wekyb3d8bbwe\mrt100_app.dll 1.4.24201.0 built by: PROJECTNREL Microsoft Corporation Microsoft .NET Native Runtime 131795770645660438 0x7ffabb3c0000 450560 C:\Windows\SYSTEM32\TextInputFramework.dll 10.0.14393.2189 (rs1_release.180329-1711) Microsoft Corporation "TextInputFramework.DYNLINK" 131795770645660438 0x7ffabc510000 90112 C:\Windows\system32\execmodelproxy.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ExecModelProxy 131795770645660438 0x7ffabc5c0000 319488 C:\Windows\SYSTEM32\MFSENSORGROUP.dll 10.0.14393.447 (rs1_release_inmarket.161102-0100) Microsoft Corporation Media Foundation Sensor Group DLL 131795770645660438 0x7ffabc920000 270336 C:\Windows\System32\execmodelclient.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation ExecModelClient 131795770645660438 0x7ffabcef0000 102400 C:\Windows\System32\Windows.Shell.ServiceHostBuilder.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows.Shell.ServiceHostBuilder 131795770645660438 0x7ffabd4a0000 1613824 C:\Windows\System32\Windows.Globalization.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Globalization 131795770645660438 0x7ffabd8e0000 704512 C:\Windows\WinSxS\amd64_microsoft.windows.common-controls_6595b64144ccf1df_5.82.14393.447_none_0d5aa7fbb6d35646\comctl32.dll 6.10 (rs1_release_inmarket.170303-1614) Microsoft Corporation Библиотека элементов управления взаимодействия с пользователем 131795770645660438 0x7ffabe6e0000 561152 C:\Windows\system32\directmanipulation.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Direct Manipulation Component 131795770645660438 0x7ffabea30000 192512 C:\Windows\System32\Windows.Energy.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Energy Runtime DLL 131795770645660438 0x7ffabeac0000 335872 C:\Windows\System32\Windows.Storage.ApplicationData.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Application Data API Server 131795770645660438 0x7ffabeb20000 385024 C:\Windows\System32\Windows.ApplicationModel.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows ApplicationModel API Server 131795770645660438 0x7ffabf330000 2457600 C:\Windows\System32\msxml6.dll 6.30.14393.2156 Microsoft Corporation MSXML 6.0 131795770645660438 0x7ffabfce0000 90112 C:\Windows\System32\Windows.Globalization.Fontgroups.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Fonts Mapping API 131795770645660438 0x7ffabfd00000 356352 C:\Windows\System32\Windows.Graphics.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation WinRT Windows Graphics DLL 131795770645660438 0x7ffabfd80000 86016 C:\Windows\System32\threadpoolwinrt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows WinRT Threadpool 131795770645660438 0x7ffabfe10000 237568 C:\Windows\SYSTEM32\rometadata.dll 4.6.1586.0 built by: NETFXREL2 Microsoft Corporation Microsoft MetaData Library 131795770645660438 0x7ffac00c0000 282624 C:\Windows\SYSTEM32\windows.ui.core.textinput.dll 10.0.14393.2189 (rs1_release.180329-1711) Microsoft Corporation Windows.UI.Core.TextInput dll 131795770645660438 0x7ffac0470000 1478656 C:\Windows\SYSTEM32\MFPlat.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Media Foundation Platform DLL 131795770645660438 0x7ffac0910000 724992 C:\Windows\System32\Windows.Networking.Connectivity.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Networking Connectivity Runtime DLL 131795770645660438 0x7ffac0bf0000 3559424 C:\Windows\System32\ActXPrxy.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation ActiveX Interface Marshaling Library 131795770645660438 0x7ffac0fa0000 77824 C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2017.35063.44410.0_x64__8wekyb3d8bbwe\Microsoft.Photos.Edit.Services.dll 131795770645660438 0x7ffac1b90000 630784 C:\Program Files\WindowsApps\Microsoft.VCLibs.140.00_14.0.25426.0_x64__8wekyb3d8bbwe\MSVCP140_APP.dll 14.11.25426.0 built by: VCTOOLSREL Microsoft Corporation Microsoft® C Runtime Library 131795770645660438 0x7ffac1c70000 69632 C:\Program Files\WindowsApps\Microsoft.VCLibs.140.00_14.0.25426.0_x64__8wekyb3d8bbwe\VCOMP140_app.DLL 14.11.25426.0 built by: VCTOOLSREL Microsoft Corporation Microsoft® C/C++ OpenMP Runtime 131795770645660438 0x7ffac1e50000 188416 C:\Windows\SYSTEM32\RTWorkQ.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL для WorkQueue реального времени 131795770645660438 0x7ffac20d0000 110592 C:\Windows\System32\rmclient.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Resource Manager Client 131795770645660438 0x7ffac2c00000 69632 C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2017.35063.44410.0_x64__8wekyb3d8bbwe\clrcompression.dll 1.0.23123.00 built by: PROJECTKREL Microsoft Corporation ClrCompression 131795770645660438 0x7ffac2cb0000 778240 C:\Windows\SYSTEM32\winsqlite3.dll 3.12.2 SQLite Development Team SQLite is a software library that implements a self-contained, serverless, zero-configuration, transactional SQL database engine. 131795770645660438 0x7ffac3280000 36864 C:\Windows\SYSTEM32\mrt100.dll 1.0.24120.0 built by: PROJECTNREL Microsoft Corporation Microsoft .NET Native Runtime 131795770645660438 0x7ffac34e0000 1843200 C:\Windows\SYSTEM32\urlmon.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширения OLE32 для Win32 131795770645660438 0x7ffac3cb0000 2772992 C:\Windows\SYSTEM32\iertutil.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служебная программа времени выполнения для Internet Explorer 131795770645660438 0x7ffac4b10000 307200 C:\Program Files\WindowsApps\Microsoft.VCLibs.140.00_14.0.25426.0_x64__8wekyb3d8bbwe\CONCRT140_APP.dll 14.11.25426.0 built by: VCTOOLSREL Microsoft Corporation Microsoft® Concurrency Runtime Library 131795770645660438 0x7ffac4c60000 385024 C:\Program Files\WindowsApps\Microsoft.VCLibs.140.00_14.0.25426.0_x64__8wekyb3d8bbwe\vccorlib140_app.DLL 14.11.25426.0 built by: VCTOOLSREL Microsoft Corporation Microsoft ® VC WinRT core library 131795770645660438 0x7ffac5350000 1765376 C:\Windows\System32\Windows.UI.Immersive.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation WINDOWS.UI.IMMERSIVE 131795770645660438 0x7ffac60e0000 221184 C:\Windows\SYSTEM32\XmlLite.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft XmlLite Library 131795770645660438 0x7ffac6620000 192512 C:\Windows\System32\biwinrt.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation Windows Background Broker Infrastructure 131795770645660438 0x7ffac6ac0000 835584 C:\Windows\System32\Windows.UI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Runtime UI Foundation DLL 131795770645660438 0x7ffac6f50000 5632000 C:\Windows\SYSTEM32\d2d1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека Microsoft D2D 131795770645660438 0x7ffac7580000 1077248 C:\Windows\System32\MrmCoreR.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Windows MRM 131795770645660438 0x7ffac7720000 1601536 C:\Windows\System32\OneCoreUAPCommonProxyStub.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation OneCoreUAP Common Proxy Stub 131795770645660438 0x7ffac7e30000 40960 C:\Windows\SYSTEM32\fontgroupsoverride.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation fontgroupsoverride.dll 131795770645660438 0x7ffac7fc0000 2674688 C:\Windows\SYSTEM32\d3d10warp.dll 10.0.14393.576 (rs1_release_inmarket.161208-2252) Microsoft Corporation Direct3D 10 Rasterizer 131795770645660438 0x7ffac84f0000 299008 C:\Windows\system32\DataExchange.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation Data exchange 131795770645660438 0x7ffac8540000 286720 C:\Windows\System32\vaultcli.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиентская библиотека хранилища учетных данных 131795770645660438 0x7ffac88a0000 2842624 C:\Windows\SYSTEM32\d3d11.dll 10.0.14393.953 (rs1_release_inmarket.170303-1614) Microsoft Corporation Direct3D 11 Runtime 131795770645660438 0x7ffac8fa0000 253952 C:\Windows\SYSTEM32\logoncli.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Net Logon Client DLL 131795770645660438 0x7ffac92e0000 1269760 C:\Windows\SYSTEM32\wintypes.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL основных типов Windows 131795770645660438 0x7ffac9500000 2682880 C:\Windows\system32\CoreUIComponents.dll 131795770645660438 0x7ffac9f50000 1736704 C:\Windows\system32\windowscodecs.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Microsoft Windows Codecs Library 131795770645660438 0x7ffaca340000 1593344 C:\Windows\SYSTEM32\PROPSYS.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Система страниц свойств (Майкрософт) 131795770645660438 0x7ffaca570000 421888 C:\Windows\SYSTEM32\Bcp47Langs.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation BCP47 Language Classes 131795770645660438 0x7ffaca5e0000 155648 C:\Windows\SYSTEM32\dwmapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Интерфейс API диспетчера окон рабочего стола (Майкрософт) 131795770645660438 0x7ffaca640000 770048 C:\Windows\SYSTEM32\CoreMessaging.dll 10.0.14393.0 Microsoft Corporation Microsoft CoreMessaging Dll 131795770645660438 0x7ffaca770000 1380352 C:\Windows\SYSTEM32\dcomp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft DirectComposition Library 131795770645660438 0x7ffacab80000 90112 C:\Program Files\WindowsApps\Microsoft.VCLibs.140.00_14.0.25426.0_x64__8wekyb3d8bbwe\VCRUNTIME140_APP.dll 14.11.25426.0 built by: VCTOOLSREL Microsoft Corporation Microsoft® C Runtime Library 131795770645660438 0x7ffacadf0000 499712 C:\Windows\system32\apphelp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиентская библиотека совместимости приложений 131795770645660438 0x7ffacaf00000 610304 C:\Windows\system32\uxtheme.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека тем UxTheme (Microsoft) 131795770645660438 0x7ffacb1e0000 1163264 C:\Windows\SYSTEM32\twinapi.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation twinapi.appcore 131795770645660438 0x7ffacb780000 651264 C:\Windows\SYSTEM32\dxgi.dll 10.0.14393.953 (rs1_release_inmarket.170303-1614) Microsoft Corporation DirectX Graphics Infrastructure 131795770645660438 0x7ffacbe40000 126976 C:\Windows\SYSTEM32\USERENV.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Userenv 131795770645660438 0x7ffacc170000 45056 C:\Windows\SYSTEM32\CRYPTBASE.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base cryptographic API DLL 131795770645660438 0x7ffacc350000 180224 C:\Windows\SYSTEM32\SspiCli.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Security Support Provider Interface 131795770645660438 0x7ffacc620000 176128 C:\Windows\SYSTEM32\bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795770645660438 0x7ffacc6e0000 61440 C:\Windows\System32\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795770645660438 0x7ffacc6f0000 311296 C:\Windows\System32\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795770645660438 0x7ffacc740000 81920 C:\Windows\System32\profapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Profile Basic API 131795770645660438 0x7ffacc760000 65536 C:\Windows\System32\MSASN1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ASN.1 Runtime APIs 131795770645660438 0x7ffacc8f0000 1003520 C:\Windows\System32\ucrtbase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645660438 0x7ffacc9f0000 434176 C:\Windows\System32\bcryptPrimitives.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Cryptographic Primitives Library 131795770645660438 0x7ffacca60000 122880 C:\Windows\System32\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795770645660438 0x7ffaccae0000 692224 C:\Windows\System32\shcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795770645660438 0x7ffaccb90000 7180288 C:\Windows\System32\windows.storage.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API хранения Microsoft WinRT 131795770645660438 0x7ffacd270000 2215936 C:\Windows\System32\KERNELBASE.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645660438 0x7ffacd490000 1871872 C:\Windows\System32\CRYPT32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API32 криптографии 131795770645660438 0x7ffacd710000 638976 C:\Windows\System32\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645660438 0x7ffacd7b0000 270336 C:\Windows\System32\cfgmgr32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Configuration Manager DLL 131795770645660438 0x7ffaced20000 782336 C:\Windows\System32\OleAut32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795770645660438 0x7ffacee50000 1183744 C:\Windows\System32\RPCRT4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795770645660438 0x7ffacef90000 647168 C:\Windows\System32\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795770645660438 0x7ffacf0d0000 704512 C:\Windows\System32\KERNEL32.DLL 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645660438 0x7ffacf1e0000 1417216 C:\Windows\System32\msctf.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Серверная библиотека MSCTF 131795770645660438 0x7ffacf770000 212992 C:\Windows\System32\GDI32.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation GDI Client DLL 131795770645660438 0x7ffacf890000 188416 C:\Windows\System32\IMM32.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Multi-User Windows IMM32 API Client DLL 131795770645660438 0x7ffacf8c0000 1462272 C:\Windows\System32\USER32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795770645660438 0x7ffacfb30000 2916352 C:\Windows\System32\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795770645660438 0x7ffacfe20000 663552 C:\Windows\System32\advapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795770645660438 0x7ffad01b0000 335872 C:\Windows\System32\shlwapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека небольших программ оболочки 131795770645660438 0x7ffad0210000 364544 C:\Windows\System32\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795770645660438 0x7ffad0270000 1908736 C:\Windows\SYSTEM32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 84 6208 12140 85 00000000:0031f1da 131795181740423780 0 0 0 Обязательная метка\Средний обязательный уровень WIN-0UOTFKKVN1S\User OneDrive.exe C:\Users\User\AppData\Local\Microsoft\OneDrive\OneDrive.exe /updateInstalled /background Microsoft Corporation 18.131.0701.0007 Microsoft OneDrive 131795770645660654 0x11f0000 1646592 C:\Users\User\AppData\Local\Microsoft\OneDrive\OneDrive.exe 18.131.0701.0007 Microsoft Corporation Microsoft OneDrive 131795770645660654 0x55a0000 1003520 C:\Users\User\AppData\Local\Microsoft\OneDrive\18.131.0701.0007\FileSync.Resources.dll 18.131.0701.0007 Microsoft Corporation Microsoft OneDrive 131795770645660654 0x5c020000 335872 C:\Windows\System32\wow64.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation Win32 Emulation on NT64 131795770645660654 0x5c080000 487424 C:\Windows\System32\wow64win.dll 10.0.14393.1884 (rs1_release.171101-1233) Microsoft Corporation Wow64 Console and Win32 API Logging 131795770645660654 0x5c100000 40960 C:\Windows\System32\wow64cpu.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation AMD64 Wow64 CPU 131795770645660654 0x60750000 1556480 C:\Program Files (x86)\360\Total Security\safemon\safemon.dll 8, 4, 0, 1420 Qihu 360 Software Co., Ltd. 360 Internet Security Internet Protection 131795770645660654 0x64d00000 5079040 C:\Windows\SysWOW64\d2d1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека Microsoft D2D 131795770645660654 0x651e0000 20537344 C:\Windows\SysWOW64\MSHTML.dll 11.00.14393.447 (rs1_release_inmarket.161102-0100) Microsoft Corporation Средство просмотра HTML Microsoft® 131795770645660654 0x66580000 12247040 C:\Windows\SysWOW64\ieframe.dll 11.00.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Браузер 131795770645660654 0x67200000 1978368 C:\Windows\SysWOW64\msxml6.dll 6.30.14393.2156 Microsoft Corporation MSXML 6.0 131795770645660654 0x67500000 1597440 C:\Windows\SysWOW64\ActXPrxy.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation ActiveX Interface Marshaling Library 131795770645660654 0x6b670000 212992 C:\Windows\SysWOW64\mlang.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL многоязыковой поддержки 131795770645660654 0x6b6b0000 36864 C:\Windows\SysWOW64\atlthunk.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation atlthunk.dll 131795770645660654 0x6bab0000 4472832 C:\Users\User\AppData\Local\Microsoft\OneDrive\18.131.0701.0007\Qt5Widgets.dll 5.9.1.0 The Qt Company Ltd C++ application development framework. 131795770645660654 0x6c290000 987136 C:\Windows\SysWOW64\twinapi.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation twinapi.appcore 131795770645660654 0x6c390000 1126400 C:\Windows\SysWOW64\dcomp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft DirectComposition Library 131795770645660654 0x6c4b0000 278528 C:\Windows\SysWOW64\dataexchange.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation Data exchange 131795770645660654 0x6c540000 483328 C:\Windows\SysWOW64\webio.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API протоколов передачи по Веб 131795770645660654 0x6c5c0000 1384448 C:\Windows\SysWOW64\uiautomationcore.dll 7.2.14393.0 (rs1_release.160715-1616) Microsoft Corporation Основные автоматические компоненты Microsoft UI 131795770645660654 0x6c960000 57344 C:\Windows\SysWOW64\msimtf.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Active IMM Server DLL 131795770645660654 0x6c970000 3698688 C:\Windows\SysWOW64\jscript9.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft ® JScript 131795770645660654 0x6cd20000 135168 C:\Windows\SysWOW64\srpapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL программных интерфейсов (API) поставщика общих ресурсов 131795770645660654 0x6cd50000 106496 C:\Windows\SysWOW64\SAMLIB.dll 10.0.14393.82 (rs1_release.160805-1735) Microsoft Corporation SAM Library DLL 131795770645660654 0x6cda0000 528384 C:\Windows\SysWOW64\sxs.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Fusion 2.5 131795770645660654 0x6cf60000 569344 C:\Windows\SysWOW64\taskschd.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Task Scheduler COM API 131795770645660654 0x6d080000 151552 C:\Windows\SysWOW64\cryptnet.dll 10.0.14393.2035 (rs1_release_inmarket.180110-1910) Microsoft Corporation Crypto Network Related API 131795770645660654 0x6d0b0000 847872 C:\Windows\SysWOW64\WinTypes.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL основных типов Windows 131795770645660654 0x6d210000 4993024 C:\Users\User\AppData\Local\Microsoft\OneDrive\18.131.0701.0007\Qt5Gui.dll 5.9.1.0 The Qt Company Ltd C++ application development framework. 131795770645660654 0x6fcd0000 151552 C:\Windows\SysWOW64\dbgcore.DLL 10.0.14321.1024 (debuggers(dbg).160715-1616) Microsoft Windows Core Debugging Helpers 131795770645660654 0x70340000 536576 C:\Windows\SysWOW64\dxgi.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation DirectX Graphics Infrastructure 131795770645660654 0x703d0000 2056192 C:\Windows\SysWOW64\DWrite.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Службы Microsoft DirectX Typography 131795770645660654 0x707b0000 110592 C:\Windows\SysWOW64\ncryptsslp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft SChannel Provider 131795770645660654 0x707f0000 2293760 C:\Windows\SysWOW64\d3d11.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation Direct3D 11 Runtime 131795770645660654 0x70a80000 409600 C:\Windows\SysWOW64\schannel.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик безопасности TLS/SSL 131795770645660654 0x70b00000 176128 C:\Windows\SysWOW64\Wscapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API центра обеспечения безопасности Windows 131795770645660654 0x70b40000 69632 C:\Windows\SysWOW64\mskeyprotect.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик защиты ключей (Майкрософт) 131795770645660654 0x70ca0000 45056 C:\Windows\SysWOW64\NETUTILS.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API Helpers DLL 131795770645660654 0x70cc0000 65536 C:\Windows\SysWOW64\ondemandconnroutehelper.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation On Demand Connctiond Route Helper 131795770645660654 0x70ce0000 1519616 C:\Windows\SysWOW64\wpc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека параметров родительского контроля 131795770645660654 0x70e60000 176128 C:\Windows\SysWOW64\NTASN1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft ASN.1 API 131795770645660654 0x70f00000 815104 C:\Windows\SysWOW64\OneCoreUAPCommonProxyStub.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation OneCoreUAP Common Proxy Stub 131795770645660654 0x70fd0000 1331200 C:\Windows\SysWOW64\dbghelp.dll 10.0.14321.1024 (rs1_release.160715-1616) Microsoft Windows Image Helper 131795770645660654 0x71140000 77824 C:\Windows\SysWOW64\NETAPI32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API DLL 131795770645660654 0x71200000 708608 C:\Windows\SysWOW64\TokenBroker.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Token Broker 131795770645660654 0x712b0000 602112 C:\Windows\SysWOW64\Windows.Security.Authentication.Web.Core.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Token Broker WinRT API 131795770645660654 0x71350000 2867200 C:\Users\User\AppData\Local\Microsoft\OneDrive\18.131.0701.0007\Qt5Quick.dll 5.9.1.0 The Qt Company Ltd C++ application development framework. 131795770645660654 0x71610000 77824 C:\Windows\SysWOW64\dhcpcsvc6.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиент DHCPv6 131795770645660654 0x71630000 487424 C:\Windows\SysWOW64\wlidprov.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft® Account Provider 131795770645660654 0x716b0000 1294336 C:\Users\User\AppData\Local\Microsoft\OneDrive\18.131.0701.0007\LIBEAY32.dll 1.0.2k The OpenSSL Project, http://www.openssl.org/ OpenSSL Shared Library 131795770645660654 0x717f0000 2637824 C:\Users\User\AppData\Local\Microsoft\OneDrive\18.131.0701.0007\Qt5Qml.dll 5.9.1.0 The Qt Company Ltd C++ application development framework. 131795770645660654 0x71a80000 4796416 C:\Users\User\AppData\Local\Microsoft\OneDrive\18.131.0701.0007\Qt5Core.dll 5.9.1.0 The Qt Company Ltd C++ application development framework. 131795770645660654 0x71f20000 6033408 C:\Users\User\AppData\Local\Microsoft\OneDrive\18.131.0701.0007\SyncEngine.DLL 18.131.0701.0007 Microsoft Corporation Microsoft OneDrive Sync Engine 131795770645660654 0x724f0000 57344 C:\Windows\SysWOW64\credui.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Credential Manager User Interface 131795770645660654 0x72530000 126976 C:\Windows\SysWOW64\IDStore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Identity Store 131795770645660654 0x72550000 561152 C:\Windows\SysWOW64\Windows.Networking.Connectivity.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Networking Connectivity Runtime DLL 131795770645660654 0x725e0000 2273280 C:\Windows\SysWOW64\iertutil.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служебная программа времени выполнения для Internet Explorer 131795770645660654 0x72810000 28672 C:\Windows\SysWOW64\familysafetyext.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation FamilySafety ChildAccount Extensions 131795770645660654 0x72820000 167936 C:\Windows\SysWOW64\MicrosoftAccountTokenProvider.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft® Account Token Provider 131795770645660654 0x72850000 331776 C:\Windows\SysWOW64\AppXDeploymentClient.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL-библиотека клиента развертывания AppX 131795770645660654 0x728b0000 135168 C:\Users\User\AppData\Local\Microsoft\OneDrive\18.131.0701.0007\FileSyncFAL.dll 18.131.0701.0007 Microsoft Corporation Microsoft OneDriveFile Sync FAL 131795770645660654 0x728e0000 1372160 C:\Windows\SysWOW64\PROPSYS.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Система страниц свойств (Майкрософт) 131795770645660654 0x72a30000 188416 C:\Windows\SysWOW64\XmlLite.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft XmlLite Library 131795770645660654 0x72a60000 589824 C:\Windows\SysWOW64\wer.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека сообщений об ошибках Windows 131795770645660654 0x72b90000 126976 C:\Windows\SysWOW64\dwmapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Интерфейс API диспетчера окон рабочего стола (Майкрософт) 131795770645660654 0x72bb0000 1105920 C:\Users\User\AppData\Local\Microsoft\OneDrive\18.131.0701.0007\platforms\qwindows.dll 5.9.1.0 The Qt Company Ltd C++ application development framework. 131795770645660654 0x72cc0000 1658880 C:\Windows\SysWOW64\urlmon.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширения OLE32 для Win32 131795770645660654 0x72e60000 172032 C:\Windows\SysWOW64\rometadata.dll 4.6.1586.0 built by: NETFXREL2 Microsoft Corporation Microsoft MetaData Library 131795770645660654 0x72e90000 299008 C:\Users\User\AppData\Local\Microsoft\OneDrive\18.131.0701.0007\SSLEAY32.dll 1.0.2k The OpenSSL Project, http://www.openssl.org/ OpenSSL Shared Library 131795770645660654 0x72ee0000 950272 C:\Users\User\AppData\Local\Microsoft\OneDrive\18.131.0701.0007\Qt5Network.dll 5.9.1.0 The Qt Company Ltd C++ application development framework. 131795770645660654 0x72fd0000 126976 C:\Windows\SysWOW64\loadperf.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Загрузка и выгрузка счетчиков производительности 131795770645660654 0x72ff0000 278528 C:\Windows\SysWOW64\pdh.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Модуль поддержки данных производительности Windows 131795770645660654 0x73040000 253952 C:\Users\User\AppData\Local\Microsoft\OneDrive\18.131.0701.0007\Qt5WinExtras.dll 5.9.1.0 The Qt Company Ltd C++ application development framework. 131795770645660654 0x73080000 880640 C:\Users\User\AppData\Local\Microsoft\OneDrive\18.131.0701.0007\ADAL.dll 1.0.2110.0526 Microsoft ADAL.Native 131795770645660654 0x73160000 32768 C:\Windows\SysWOW64\WSOCK32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Socket 32-Bit DLL 131795770645660654 0x73170000 352256 C:\Windows\SysWOW64\faultrep.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека отчетов о сбоях в пользовательском режиме Windows 131795770645660654 0x731d0000 413696 C:\Users\User\AppData\Local\Microsoft\OneDrive\18.131.0701.0007\WnsClientApi.dll 18.131.0701.0007 Microsoft Corporation OneDrive WNS Client Library 131795770645660654 0x73240000 520192 C:\Users\User\AppData\Local\Microsoft\OneDrive\18.131.0701.0007\LogUploader.dll 18.131.0701.0007 Microsoft Corporation OneDrive Sync LogUploader Library 131795770645660654 0x732c0000 1269760 C:\Users\User\AppData\Local\Microsoft\OneDrive\18.131.0701.0007\FileSyncViews.dll 18.131.0701.0007 Microsoft Corporation Microsoft OneDrive Qt Components 131795770645660654 0x73400000 159744 C:\Users\User\AppData\Local\Microsoft\OneDrive\18.131.0701.0007\UpdateRingSettings.dll 18.131.0701.0007 Microsoft Corporation Update Ring Settings 131795770645660654 0x73430000 1748992 C:\Users\User\AppData\Local\Microsoft\OneDrive\18.131.0701.0007\FileSyncSessions.dll 18.131.0701.0007 Microsoft Corporation P2P Session Library 131795770645660654 0x735e0000 671744 C:\Users\User\AppData\Local\Microsoft\OneDrive\18.131.0701.0007\RemoteAccess.dll 18.131.0701.0007 Microsoft Corporation Remote Access 131795770645660654 0x73690000 188416 C:\Users\User\AppData\Local\Microsoft\OneDrive\18.131.0701.0007\Telemetry.dll 18.131.0701.0007 Microsoft Corporation Telemetry Library 131795770645660654 0x736c0000 32768 C:\Users\User\AppData\Local\Microsoft\OneDrive\18.131.0701.0007\ETWLog.dll 18.131.0701.0007 Microsoft Corporation ETW Session Library 131795770645660654 0x736d0000 3600384 C:\Users\User\AppData\Local\Microsoft\OneDrive\18.131.0701.0007\FileSyncClient.dll 18.131.0701.0007 Microsoft Corporation Microsoft OneDrive Client 131795770645660654 0x73a40000 32768 C:\Windows\SysWOW64\WINNSI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Network Store Information RPC interface 131795770645660654 0x73a50000 299008 C:\Windows\SysWOW64\fwpuclnt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API пользовательского режима FWP/IPsec 131795770645660654 0x73aa0000 32768 C:\Windows\SysWOW64\DPAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Data Protection API 131795770645660654 0x73ab0000 32768 C:\Windows\SysWOW64\rasadhlp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Remote Access AutoDial Helper 131795770645660654 0x73ac0000 81920 C:\Windows\SysWOW64\dhcpcsvc.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служба DHCP-клиента 131795770645660654 0x73ae0000 40960 C:\Windows\SysWOW64\Secur32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Security Support Provider Interface 131795770645660654 0x73af0000 1417216 C:\Users\User\AppData\Local\Microsoft\OneDrive\18.131.0701.0007\LoggingPlatform.dll 18.131.0701.0007 Microsoft Corporation Logging Platform 131795770645660654 0x73c50000 1478656 C:\Windows\WinSxS\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.14393.1715_none_f67438d2f2547a00\gdiplus.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Microsoft GDI+ 131795770645660654 0x73dc0000 1171456 C:\Users\User\AppData\Local\Microsoft\OneDrive\18.131.0701.0007\ucrtbase.dll 10.0.17134.12 (WinBuild.160101.0800) Microsoft Corporation Microsoft® C Runtime Library 131795770645660654 0x73ee0000 61440 C:\Windows\SysWOW64\wtsapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Remote Desktop Session Host Server SDK APIs 131795770645660654 0x73f00000 192512 C:\Windows\SysWOW64\IPHLPAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API вспомогательного приложения IP 131795770645660654 0x73f30000 512000 C:\Windows\SysWOW64\DNSAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Динамическая библиотека API DNS-клиента 131795770645660654 0x73fb0000 36864 C:\Windows\SysWOW64\ktmw32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows KTM Win32 Client DLL 131795770645660654 0x73ff0000 319488 C:\Windows\SysWOW64\MSWSOCK.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширение поставщика службы API Microsoft Windows Sockets 2.0 131795770645660654 0x74060000 192512 C:\Windows\SysWOW64\rsaenh.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Enhanced Cryptographic Provider 131795770645660654 0x74090000 462848 C:\Users\User\AppData\Local\Microsoft\OneDrive\18.131.0701.0007\MSVCP140.dll 14.13.26020.0 built by: VCTOOLSREL Microsoft Corporation Microsoft® C Runtime Library 131795770645660654 0x74110000 479232 C:\Windows\SysWOW64\UxTheme.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека тем UxTheme (Microsoft) 131795770645660654 0x74190000 110592 C:\Windows\SysWOW64\bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795770645660654 0x741b0000 77824 C:\Windows\SysWOW64\CRYPTSP.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Cryptographic Service Provider API 131795770645660654 0x741d0000 86016 C:\Users\User\AppData\Local\Microsoft\OneDrive\18.131.0701.0007\VCRUNTIME140.dll 14.13.26020.0 built by: VCTOOLSREL Microsoft Corporation Microsoft® C Runtime Library 131795770645660654 0x741f0000 143360 C:\Windows\SysWOW64\WINMMBASE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base Multimedia Extension API DLL 131795770645660654 0x74220000 53248 C:\Windows\SysWOW64\TOKENBINDING.dll 10.0.14393.1593 (rs1_release.170731-1934) Microsoft Corporation Token Binding Protocol 131795770645660654 0x74230000 147456 C:\Windows\SysWOW64\WINMM.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation MCI API DLL 131795770645660654 0x74260000 2514944 C:\Windows\SysWOW64\WININET.dll 11.00.14393.447 (rs1_release_inmarket.161102-0100) Microsoft Corporation Расширения Интернета для Win32 131795770645660654 0x744d0000 2138112 C:\Windows\WinSxS\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.14393.953_none_89c2555adb023171\COMCTL32.dll 6.10 (rs1_release_inmarket.170303-1614) Microsoft Corporation Библиотека элементов управления взаимодействия с пользователем 131795770645660654 0x746e0000 32768 C:\Windows\SysWOW64\VERSION.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Version Checking and File Installation Libraries 131795770645660654 0x746f0000 106496 C:\Windows\SysWOW64\USERENV.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Userenv 131795770645660654 0x74710000 90112 C:\Windows\SysWOW64\MPR.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека маршрутизации для нескольких служб доступа 131795770645660654 0x74730000 598016 C:\Windows\SysWOW64\apphelp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиентская библиотека совместимости приложений 131795770645660654 0x747d0000 40960 C:\Windows\SysWOW64\CRYPTBASE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base cryptographic API DLL 131795770645660654 0x747e0000 126976 C:\Windows\SysWOW64\SspiCli.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Security Support Provider Interface 131795770645660654 0x74800000 151552 C:\Windows\SysWOW64\IMM32.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Multi-User Windows IMM32 API Client DLL 131795770645660654 0x74910000 2170880 C:\Windows\SysWOW64\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795770645660654 0x74b30000 53248 C:\Windows\SysWOW64\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795770645660654 0x74b60000 790528 C:\Windows\SysWOW64\RPCRT4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795770645660654 0x74c30000 1417216 C:\Windows\SysWOW64\gdi32full.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation GDI Client DLL 131795770645660654 0x74d90000 24576 C:\Windows\SysWOW64\PSAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Process Status Helper 131795770645660654 0x74da0000 778240 C:\Windows\SysWOW64\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795770645660654 0x74e60000 557056 C:\Windows\SysWOW64\shcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795770645660654 0x74ef0000 540672 C:\Windows\SysWOW64\clbcatq.dll 2001.12.10941.16384 (rs1_release.160715-1616) Microsoft Corporation COM+ Configuration Catalog 131795770645660654 0x74f80000 278528 C:\Windows\SysWOW64\WINTRUST.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation Microsoft Trust Verification APIs 131795770645660654 0x74fd0000 405504 C:\Windows\SysWOW64\WS2_32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation 32-разрядная библиотека Windows Socket 2.0 131795770645660654 0x75040000 282624 C:\Windows\SysWOW64\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795770645660654 0x75090000 1265664 C:\Windows\SysWOW64\MSCTF.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Серверная библиотека MSCTF 131795770645660654 0x751d0000 57344 C:\Windows\SysWOW64\MSASN1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ASN.1 Runtime APIs 131795770645660654 0x751e0000 1708032 C:\Windows\SysWOW64\KERNELBASE.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645660654 0x75390000 266240 C:\Windows\SysWOW64\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795770645660654 0x753e0000 1560576 C:\Windows\SysWOW64\CRYPT32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API32 криптографии 131795770645660654 0x75560000 487424 C:\Windows\SysWOW64\ADVAPI32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795770645660654 0x756c0000 5693440 C:\Windows\SysWOW64\windows.storage.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API хранения Microsoft WinRT 131795770645660654 0x75c90000 286720 C:\Windows\SysWOW64\shlwapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека небольших программ оболочки 131795770645660654 0x75ce0000 20811776 C:\Windows\SysWOW64\SHELL32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Общая библиотека оболочки Windows 131795770645660654 0x774d0000 86016 C:\Windows\SysWOW64\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795770645660654 0x774f0000 61440 C:\Windows\SysWOW64\profapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Profile Basic API 131795770645660654 0x77560000 1437696 C:\Windows\SysWOW64\USER32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795770645660654 0x776c0000 368640 C:\Windows\SysWOW64\bcryptPrimitives.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation Windows Cryptographic Primitives Library 131795770645660654 0x77780000 503808 C:\Windows\SysWOW64\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645660654 0x77800000 606208 C:\Windows\SysWOW64\OLEAUT32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795770645660654 0x77ac0000 966656 C:\Windows\SysWOW64\ole32.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft OLE для Windows 131795770645660654 0x77bb0000 176128 C:\Windows\SysWOW64\GDI32.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation GDI Client DLL 131795770645660654 0x77cd0000 221184 C:\Windows\SysWOW64\cfgmgr32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Configuration Manager DLL 131795770645660654 0x77d10000 28672 C:\Windows\SysWOW64\NSI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation NSI User-mode interface DLL 131795770645660654 0x77d20000 1585152 C:\Windows\SysWOW64\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 131795770645660654 0x7ffad0270000 1908736 C:\Windows\SYSTEM32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 86 6140 7744 57 00000000:0031f1da 131795747339404666 0 0 0 Обязательная метка\Ненадежный обязательный уровень WIN-0UOTFKKVN1S\User browser.exe C:\Users\User\AppData\Local\Yandex\YandexBrowser\Application\browser.exe "C:\Users\User\AppData\Local\Yandex\YandexBrowser\Application\browser.exe" --type=renderer --enable-in-process-wmf-demuxer --field-trial-handle=1292,9555382311565764851,7120838982649204725,131072 --enable-ignition --disable-gpu-compositing --service-pipe-token=764E64A4EA650A23B18EB059FF0B4B51 --lang=ru --user-id=32B2E0A1-3039-4C67-86BE-75A88EF21B54 --brand-id=yandex --partner-id=7924 --help-url=https://api.browser.yandex.ru/redirect/help/ --user-agent-info --translate-security-origin=https://translate.yandex.net --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --enable-instaserp --device-scale-factor=1 --num-raster-threads=1 --enable-compositor-image-animations --service-request-channel-token=764E64A4EA650A23B18EB059FF0B4B51 --renderer-client-id=106 --mojo-platform-channel-handle=6612 /prefetch:1 YANDEX LLC 18.6.1.770 Yandex 131795770645660799 0x10e0000 2519040 C:\Users\User\AppData\Local\Yandex\YandexBrowser\Application\browser.exe 18.6.1.770 YANDEX LLC Yandex 131795770645660799 0x58720000 59748352 C:\Users\User\AppData\Local\Yandex\YandexBrowser\Application\18.6.1.770\browser_child.dll 18.6.1.770 YANDEX LLC Yandex 131795770645660799 0x5c020000 335872 C:\Windows\System32\wow64.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation Win32 Emulation on NT64 131795770645660799 0x5c080000 487424 C:\Windows\System32\wow64win.dll 10.0.14393.1884 (rs1_release.171101-1233) Microsoft Corporation Wow64 Console and Win32 API Logging 131795770645660799 0x5c100000 40960 C:\Windows\System32\wow64cpu.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation AMD64 Wow64 CPU 131795770645660799 0x6e8b0000 1859584 C:\Windows\SysWOW64\mfmp4srcsnk.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL источника и приемника MPEG4 Media Foundation 131795770645660799 0x6ef30000 647168 C:\Windows\SysWOW64\evr.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека DLL средства отображения видео 131795770645660799 0x6efd0000 458752 C:\Windows\SysWOW64\msauddecmft.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Media Foundation Audio Decoders 131795770645660799 0x6f790000 1085440 C:\Windows\SysWOW64\mfperfhelper.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation MFPerf DLL 131795770645660799 0x6f8a0000 2220032 C:\Windows\SysWOW64\msmpeg2vdec.dll 10.0.14393.953 (rs1_release_inmarket.170303-1614) Microsoft Corporation Microsoft DTV-DVD Video Decoder 131795770645660799 0x6fac0000 1130496 C:\Windows\SysWOW64\mfplat.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Media Foundation Platform DLL 131795770645660799 0x6ff60000 172032 C:\Windows\SysWOW64\RTWorkQ.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL для WorkQueue реального времени 131795770645660799 0x70030000 593920 C:\Users\User\AppData\Local\Yandex\YandexBrowser\Application\18.6.1.770\browser_elf.dll 18.6.1.770 YANDEX LLC Yandex 131795770645660799 0x700d0000 434176 C:\Windows\SysWOW64\WINSPOOL.DRV 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Драйвер диспетчера очереди Windows 131795770645660799 0x70340000 536576 C:\Windows\SysWOW64\dxgi.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation DirectX Graphics Infrastructure 131795770645660799 0x703d0000 2056192 C:\Windows\SysWOW64\DWrite.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Службы Microsoft DirectX Typography 131795770645660799 0x707d0000 86016 C:\Windows\SysWOW64\SAMCLI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Security Accounts Manager Client DLL 131795770645660799 0x70a20000 94208 C:\Windows\SysWOW64\USP10.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Uniscribe Unicode script processor 131795770645660799 0x70ca0000 45056 C:\Windows\SysWOW64\NETUTILS.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API Helpers DLL 131795770645660799 0x70fd0000 1331200 C:\Windows\SysWOW64\dbghelp.dll 10.0.14321.1024 (rs1_release.160715-1616) Microsoft Windows Image Helper 131795770645660799 0x71140000 77824 C:\Windows\SysWOW64\NETAPI32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API DLL 131795770645660799 0x725e0000 2273280 C:\Windows\SysWOW64\iertutil.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служебная программа времени выполнения для Internet Explorer 131795770645660799 0x728e0000 1372160 C:\Windows\SysWOW64\PROPSYS.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Система страниц свойств (Майкрософт) 131795770645660799 0x72af0000 655360 C:\Windows\SysWOW64\WINHTTP.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Службы HTTP Windows 131795770645660799 0x72cc0000 1658880 C:\Windows\SysWOW64\urlmon.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширения OLE32 для Win32 131795770645660799 0x73ac0000 81920 C:\Windows\SysWOW64\dhcpcsvc.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служба DHCP-клиента 131795770645660799 0x73ae0000 40960 C:\Windows\SysWOW64\Secur32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Security Support Provider Interface 131795770645660799 0x73f00000 192512 C:\Windows\SysWOW64\IPHLPAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API вспомогательного приложения IP 131795770645660799 0x74190000 110592 C:\Windows\SysWOW64\bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795770645660799 0x741b0000 77824 C:\Windows\SysWOW64\cryptsp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Cryptographic Service Provider API 131795770645660799 0x741f0000 143360 C:\Windows\SysWOW64\WINMMBASE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base Multimedia Extension API DLL 131795770645660799 0x74230000 147456 C:\Windows\SysWOW64\WINMM.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation MCI API DLL 131795770645660799 0x744d0000 2138112 C:\Windows\WinSxS\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.14393.953_none_89c2555adb023171\COMCTL32.dll 6.10 (rs1_release_inmarket.170303-1614) Microsoft Corporation Библиотека элементов управления взаимодействия с пользователем 131795770645660799 0x746e0000 32768 C:\Windows\SysWOW64\VERSION.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Version Checking and File Installation Libraries 131795770645660799 0x746f0000 106496 C:\Windows\SysWOW64\USERENV.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Userenv 131795770645660799 0x747d0000 40960 C:\Windows\SysWOW64\CRYPTBASE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base cryptographic API DLL 131795770645660799 0x747e0000 126976 C:\Windows\SysWOW64\SspiCli.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Security Support Provider Interface 131795770645660799 0x74800000 151552 C:\Windows\SysWOW64\IMM32.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Multi-User Windows IMM32 API Client DLL 131795770645660799 0x74910000 2170880 C:\Windows\SysWOW64\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795770645660799 0x74b30000 53248 C:\Windows\SysWOW64\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795770645660799 0x74b60000 790528 C:\Windows\SysWOW64\RPCRT4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795770645660799 0x74c30000 1417216 C:\Windows\SysWOW64\gdi32full.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation GDI Client DLL 131795770645660799 0x74d90000 24576 C:\Windows\SysWOW64\PSAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Process Status Helper 131795770645660799 0x74da0000 778240 C:\Windows\SysWOW64\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795770645660799 0x74e60000 557056 C:\Windows\SysWOW64\shcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795770645660799 0x74f80000 278528 C:\Windows\SysWOW64\WINTRUST.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation Microsoft Trust Verification APIs 131795770645660799 0x74fd0000 405504 C:\Windows\SysWOW64\WS2_32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation 32-разрядная библиотека Windows Socket 2.0 131795770645660799 0x75040000 282624 C:\Windows\SysWOW64\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795770645660799 0x751d0000 57344 C:\Windows\SysWOW64\MSASN1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ASN.1 Runtime APIs 131795770645660799 0x751e0000 1708032 C:\Windows\SysWOW64\KERNELBASE.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645660799 0x75390000 266240 C:\Windows\SysWOW64\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795770645660799 0x753e0000 1560576 C:\Windows\SysWOW64\CRYPT32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API32 криптографии 131795770645660799 0x75560000 487424 C:\Windows\SysWOW64\ADVAPI32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795770645660799 0x756c0000 5693440 C:\Windows\SysWOW64\windows.storage.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API хранения Microsoft WinRT 131795770645660799 0x75c90000 286720 C:\Windows\SysWOW64\shlwapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека небольших программ оболочки 131795770645660799 0x75ce0000 20811776 C:\Windows\SysWOW64\SHELL32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Общая библиотека оболочки Windows 131795770645660799 0x774d0000 86016 C:\Windows\SysWOW64\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795770645660799 0x774f0000 61440 C:\Windows\SysWOW64\profapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Profile Basic API 131795770645660799 0x77560000 1437696 C:\Windows\SysWOW64\USER32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795770645660799 0x776c0000 368640 C:\Windows\SysWOW64\bcryptPrimitives.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation Windows Cryptographic Primitives Library 131795770645660799 0x77780000 503808 C:\Windows\SysWOW64\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645660799 0x77800000 606208 C:\Windows\SysWOW64\OLEAUT32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795770645660799 0x77ac0000 966656 C:\Windows\SysWOW64\ole32.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft OLE для Windows 131795770645660799 0x77bb0000 176128 C:\Windows\SysWOW64\GDI32.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation GDI Client DLL 131795770645660799 0x77be0000 937984 C:\Windows\SysWOW64\COMDLG32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека общих диалоговых окон 131795770645660799 0x77cd0000 221184 C:\Windows\SysWOW64\cfgmgr32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Configuration Manager DLL 131795770645660799 0x77d10000 28672 C:\Windows\SysWOW64\NSI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation NSI User-mode interface DLL 131795770645660799 0x77d20000 1585152 C:\Windows\SysWOW64\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 131795770645660799 0x7ffad0270000 1908736 C:\Windows\SYSTEM32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 87 11432 7744 57 00000000:0031f1da 131795755605761168 0 0 0 Обязательная метка\Ненадежный обязательный уровень WIN-0UOTFKKVN1S\User browser.exe C:\Users\User\AppData\Local\Yandex\YandexBrowser\Application\browser.exe "C:\Users\User\AppData\Local\Yandex\YandexBrowser\Application\browser.exe" --type=renderer --enable-in-process-wmf-demuxer --field-trial-handle=1292,9555382311565764851,7120838982649204725,131072 --enable-ignition --disable-gpu-compositing --service-pipe-token=9DD318D38190D474A9A0F5AFD262A449 --lang=ru --user-id=32B2E0A1-3039-4C67-86BE-75A88EF21B54 --brand-id=yandex --partner-id=7924 --help-url=https://api.browser.yandex.ru/redirect/help/ --user-agent-info --translate-security-origin=https://translate.yandex.net --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --enable-instaserp --device-scale-factor=1 --num-raster-threads=1 --enable-compositor-image-animations --service-request-channel-token=9DD318D38190D474A9A0F5AFD262A449 --renderer-client-id=109 --mojo-platform-channel-handle=4152 /prefetch:1 YANDEX LLC 18.6.1.770 Yandex 131795770645660929 0x10e0000 2519040 C:\Users\User\AppData\Local\Yandex\YandexBrowser\Application\browser.exe 18.6.1.770 YANDEX LLC Yandex 131795770645660929 0x58720000 59748352 C:\Users\User\AppData\Local\Yandex\YandexBrowser\Application\18.6.1.770\browser_child.dll 18.6.1.770 YANDEX LLC Yandex 131795770645660929 0x5c020000 335872 C:\Windows\System32\wow64.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation Win32 Emulation on NT64 131795770645660929 0x5c080000 487424 C:\Windows\System32\wow64win.dll 10.0.14393.1884 (rs1_release.171101-1233) Microsoft Corporation Wow64 Console and Win32 API Logging 131795770645660929 0x5c100000 40960 C:\Windows\System32\wow64cpu.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation AMD64 Wow64 CPU 131795770645660929 0x6e8b0000 1859584 C:\Windows\SysWOW64\mfmp4srcsnk.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL источника и приемника MPEG4 Media Foundation 131795770645660929 0x6ef30000 647168 C:\Windows\SysWOW64\evr.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека DLL средства отображения видео 131795770645660929 0x6efd0000 458752 C:\Windows\SysWOW64\msauddecmft.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Media Foundation Audio Decoders 131795770645660929 0x6f790000 1085440 C:\Windows\SysWOW64\mfperfhelper.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation MFPerf DLL 131795770645660929 0x6f8a0000 2220032 C:\Windows\SysWOW64\msmpeg2vdec.dll 10.0.14393.953 (rs1_release_inmarket.170303-1614) Microsoft Corporation Microsoft DTV-DVD Video Decoder 131795770645660929 0x6fac0000 1130496 C:\Windows\SysWOW64\mfplat.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Media Foundation Platform DLL 131795770645660929 0x6ff60000 172032 C:\Windows\SysWOW64\RTWorkQ.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL для WorkQueue реального времени 131795770645660929 0x70030000 593920 C:\Users\User\AppData\Local\Yandex\YandexBrowser\Application\18.6.1.770\browser_elf.dll 18.6.1.770 YANDEX LLC Yandex 131795770645660929 0x700d0000 434176 C:\Windows\SysWOW64\WINSPOOL.DRV 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Драйвер диспетчера очереди Windows 131795770645660929 0x70340000 536576 C:\Windows\SysWOW64\dxgi.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation DirectX Graphics Infrastructure 131795770645660929 0x703d0000 2056192 C:\Windows\SysWOW64\DWrite.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Службы Microsoft DirectX Typography 131795770645660929 0x707d0000 86016 C:\Windows\SysWOW64\SAMCLI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Security Accounts Manager Client DLL 131795770645660929 0x70a20000 94208 C:\Windows\SysWOW64\USP10.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Uniscribe Unicode script processor 131795770645660929 0x70ca0000 45056 C:\Windows\SysWOW64\NETUTILS.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API Helpers DLL 131795770645660929 0x70fd0000 1331200 C:\Windows\SysWOW64\dbghelp.dll 10.0.14321.1024 (rs1_release.160715-1616) Microsoft Windows Image Helper 131795770645660929 0x71140000 77824 C:\Windows\SysWOW64\NETAPI32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API DLL 131795770645660929 0x725e0000 2273280 C:\Windows\SysWOW64\iertutil.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служебная программа времени выполнения для Internet Explorer 131795770645660929 0x728e0000 1372160 C:\Windows\SysWOW64\PROPSYS.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Система страниц свойств (Майкрософт) 131795770645660929 0x72af0000 655360 C:\Windows\SysWOW64\WINHTTP.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Службы HTTP Windows 131795770645660929 0x72cc0000 1658880 C:\Windows\SysWOW64\urlmon.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширения OLE32 для Win32 131795770645660929 0x73ac0000 81920 C:\Windows\SysWOW64\dhcpcsvc.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служба DHCP-клиента 131795770645660929 0x73ae0000 40960 C:\Windows\SysWOW64\Secur32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Security Support Provider Interface 131795770645660929 0x73f00000 192512 C:\Windows\SysWOW64\IPHLPAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API вспомогательного приложения IP 131795770645660929 0x74190000 110592 C:\Windows\SysWOW64\bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795770645660929 0x741b0000 77824 C:\Windows\SysWOW64\cryptsp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Cryptographic Service Provider API 131795770645660929 0x741f0000 143360 C:\Windows\SysWOW64\WINMMBASE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base Multimedia Extension API DLL 131795770645660929 0x74230000 147456 C:\Windows\SysWOW64\WINMM.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation MCI API DLL 131795770645660929 0x744d0000 2138112 C:\Windows\WinSxS\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.14393.953_none_89c2555adb023171\COMCTL32.dll 6.10 (rs1_release_inmarket.170303-1614) Microsoft Corporation Библиотека элементов управления взаимодействия с пользователем 131795770645660929 0x746e0000 32768 C:\Windows\SysWOW64\VERSION.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Version Checking and File Installation Libraries 131795770645660929 0x746f0000 106496 C:\Windows\SysWOW64\USERENV.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Userenv 131795770645660929 0x747d0000 40960 C:\Windows\SysWOW64\CRYPTBASE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base cryptographic API DLL 131795770645660929 0x747e0000 126976 C:\Windows\SysWOW64\SspiCli.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Security Support Provider Interface 131795770645660929 0x74800000 151552 C:\Windows\SysWOW64\IMM32.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Multi-User Windows IMM32 API Client DLL 131795770645660929 0x74910000 2170880 C:\Windows\SysWOW64\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795770645660929 0x74b30000 53248 C:\Windows\SysWOW64\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795770645660929 0x74b60000 790528 C:\Windows\SysWOW64\RPCRT4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795770645660929 0x74c30000 1417216 C:\Windows\SysWOW64\gdi32full.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation GDI Client DLL 131795770645660929 0x74d90000 24576 C:\Windows\SysWOW64\PSAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Process Status Helper 131795770645660929 0x74da0000 778240 C:\Windows\SysWOW64\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795770645660929 0x74e60000 557056 C:\Windows\SysWOW64\shcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795770645660929 0x74f80000 278528 C:\Windows\SysWOW64\WINTRUST.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation Microsoft Trust Verification APIs 131795770645660929 0x74fd0000 405504 C:\Windows\SysWOW64\WS2_32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation 32-разрядная библиотека Windows Socket 2.0 131795770645660929 0x75040000 282624 C:\Windows\SysWOW64\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795770645660929 0x751d0000 57344 C:\Windows\SysWOW64\MSASN1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ASN.1 Runtime APIs 131795770645660929 0x751e0000 1708032 C:\Windows\SysWOW64\KERNELBASE.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645660929 0x75390000 266240 C:\Windows\SysWOW64\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795770645660929 0x753e0000 1560576 C:\Windows\SysWOW64\CRYPT32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API32 криптографии 131795770645660929 0x75560000 487424 C:\Windows\SysWOW64\ADVAPI32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795770645660929 0x756c0000 5693440 C:\Windows\SysWOW64\windows.storage.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API хранения Microsoft WinRT 131795770645660929 0x75c90000 286720 C:\Windows\SysWOW64\shlwapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека небольших программ оболочки 131795770645660929 0x75ce0000 20811776 C:\Windows\SysWOW64\SHELL32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Общая библиотека оболочки Windows 131795770645660929 0x774d0000 86016 C:\Windows\SysWOW64\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795770645660929 0x774f0000 61440 C:\Windows\SysWOW64\profapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Profile Basic API 131795770645660929 0x77560000 1437696 C:\Windows\SysWOW64\USER32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795770645660929 0x776c0000 368640 C:\Windows\SysWOW64\bcryptPrimitives.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation Windows Cryptographic Primitives Library 131795770645660929 0x77780000 503808 C:\Windows\SysWOW64\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645660929 0x77800000 606208 C:\Windows\SysWOW64\OLEAUT32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795770645660929 0x77ac0000 966656 C:\Windows\SysWOW64\ole32.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft OLE для Windows 131795770645660929 0x77bb0000 176128 C:\Windows\SysWOW64\GDI32.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation GDI Client DLL 131795770645660929 0x77be0000 937984 C:\Windows\SysWOW64\COMDLG32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека общих диалоговых окон 131795770645660929 0x77cd0000 221184 C:\Windows\SysWOW64\cfgmgr32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Configuration Manager DLL 131795770645660929 0x77d10000 28672 C:\Windows\SysWOW64\NSI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation NSI User-mode interface DLL 131795770645660929 0x77d20000 1585152 C:\Windows\SysWOW64\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 131795770645660929 0x7ffad0270000 1908736 C:\Windows\SYSTEM32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 88 10384 7744 57 00000000:0031f1da 131795755746873891 0 0 0 Обязательная метка\Ненадежный обязательный уровень WIN-0UOTFKKVN1S\User browser.exe C:\Users\User\AppData\Local\Yandex\YandexBrowser\Application\browser.exe "C:\Users\User\AppData\Local\Yandex\YandexBrowser\Application\browser.exe" --type=renderer --enable-in-process-wmf-demuxer --field-trial-handle=1292,9555382311565764851,7120838982649204725,131072 --enable-ignition --disable-gpu-compositing --service-pipe-token=7E669976FFDCEE94D9B90B02CADE1179 --lang=ru --user-id=32B2E0A1-3039-4C67-86BE-75A88EF21B54 --brand-id=yandex --partner-id=7924 --help-url=https://api.browser.yandex.ru/redirect/help/ --user-agent-info --translate-security-origin=https://translate.yandex.net --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --enable-instaserp --device-scale-factor=1 --num-raster-threads=1 --enable-compositor-image-animations --service-request-channel-token=7E669976FFDCEE94D9B90B02CADE1179 --renderer-client-id=112 --mojo-platform-channel-handle=5412 /prefetch:1 YANDEX LLC 18.6.1.770 Yandex 131795770645661053 0x10e0000 2519040 C:\Users\User\AppData\Local\Yandex\YandexBrowser\Application\browser.exe 18.6.1.770 YANDEX LLC Yandex 131795770645661053 0x58720000 59748352 C:\Users\User\AppData\Local\Yandex\YandexBrowser\Application\18.6.1.770\browser_child.dll 18.6.1.770 YANDEX LLC Yandex 131795770645661053 0x5c020000 335872 C:\Windows\System32\wow64.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation Win32 Emulation on NT64 131795770645661053 0x5c080000 487424 C:\Windows\System32\wow64win.dll 10.0.14393.1884 (rs1_release.171101-1233) Microsoft Corporation Wow64 Console and Win32 API Logging 131795770645661053 0x5c100000 40960 C:\Windows\System32\wow64cpu.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation AMD64 Wow64 CPU 131795770645661053 0x6e8b0000 1859584 C:\Windows\SysWOW64\mfmp4srcsnk.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL источника и приемника MPEG4 Media Foundation 131795770645661053 0x6ef30000 647168 C:\Windows\SysWOW64\evr.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека DLL средства отображения видео 131795770645661053 0x6efd0000 458752 C:\Windows\SysWOW64\msauddecmft.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Media Foundation Audio Decoders 131795770645661053 0x6f790000 1085440 C:\Windows\SysWOW64\mfperfhelper.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation MFPerf DLL 131795770645661053 0x6f8a0000 2220032 C:\Windows\SysWOW64\msmpeg2vdec.dll 10.0.14393.953 (rs1_release_inmarket.170303-1614) Microsoft Corporation Microsoft DTV-DVD Video Decoder 131795770645661053 0x6fac0000 1130496 C:\Windows\SysWOW64\mfplat.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Media Foundation Platform DLL 131795770645661053 0x6ff60000 172032 C:\Windows\SysWOW64\RTWorkQ.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL для WorkQueue реального времени 131795770645661053 0x70030000 593920 C:\Users\User\AppData\Local\Yandex\YandexBrowser\Application\18.6.1.770\browser_elf.dll 18.6.1.770 YANDEX LLC Yandex 131795770645661053 0x700d0000 434176 C:\Windows\SysWOW64\WINSPOOL.DRV 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Драйвер диспетчера очереди Windows 131795770645661053 0x70340000 536576 C:\Windows\SysWOW64\dxgi.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation DirectX Graphics Infrastructure 131795770645661053 0x703d0000 2056192 C:\Windows\SysWOW64\DWrite.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Службы Microsoft DirectX Typography 131795770645661053 0x707d0000 86016 C:\Windows\SysWOW64\SAMCLI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Security Accounts Manager Client DLL 131795770645661053 0x70a20000 94208 C:\Windows\SysWOW64\USP10.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Uniscribe Unicode script processor 131795770645661053 0x70ca0000 45056 C:\Windows\SysWOW64\NETUTILS.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API Helpers DLL 131795770645661053 0x70fd0000 1331200 C:\Windows\SysWOW64\dbghelp.dll 10.0.14321.1024 (rs1_release.160715-1616) Microsoft Windows Image Helper 131795770645661053 0x71140000 77824 C:\Windows\SysWOW64\NETAPI32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API DLL 131795770645661053 0x725e0000 2273280 C:\Windows\SysWOW64\iertutil.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служебная программа времени выполнения для Internet Explorer 131795770645661053 0x728e0000 1372160 C:\Windows\SysWOW64\PROPSYS.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Система страниц свойств (Майкрософт) 131795770645661053 0x72af0000 655360 C:\Windows\SysWOW64\WINHTTP.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Службы HTTP Windows 131795770645661053 0x72cc0000 1658880 C:\Windows\SysWOW64\urlmon.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширения OLE32 для Win32 131795770645661053 0x73ac0000 81920 C:\Windows\SysWOW64\dhcpcsvc.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служба DHCP-клиента 131795770645661053 0x73ae0000 40960 C:\Windows\SysWOW64\Secur32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Security Support Provider Interface 131795770645661053 0x73f00000 192512 C:\Windows\SysWOW64\IPHLPAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API вспомогательного приложения IP 131795770645661053 0x74190000 110592 C:\Windows\SysWOW64\bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795770645661053 0x741b0000 77824 C:\Windows\SysWOW64\cryptsp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Cryptographic Service Provider API 131795770645661053 0x741f0000 143360 C:\Windows\SysWOW64\WINMMBASE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base Multimedia Extension API DLL 131795770645661053 0x74230000 147456 C:\Windows\SysWOW64\WINMM.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation MCI API DLL 131795770645661053 0x744d0000 2138112 C:\Windows\WinSxS\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.14393.953_none_89c2555adb023171\COMCTL32.dll 6.10 (rs1_release_inmarket.170303-1614) Microsoft Corporation Библиотека элементов управления взаимодействия с пользователем 131795770645661053 0x746e0000 32768 C:\Windows\SysWOW64\VERSION.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Version Checking and File Installation Libraries 131795770645661053 0x746f0000 106496 C:\Windows\SysWOW64\USERENV.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Userenv 131795770645661053 0x747d0000 40960 C:\Windows\SysWOW64\CRYPTBASE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base cryptographic API DLL 131795770645661053 0x747e0000 126976 C:\Windows\SysWOW64\SspiCli.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Security Support Provider Interface 131795770645661053 0x74800000 151552 C:\Windows\SysWOW64\IMM32.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Multi-User Windows IMM32 API Client DLL 131795770645661053 0x74910000 2170880 C:\Windows\SysWOW64\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795770645661053 0x74b30000 53248 C:\Windows\SysWOW64\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795770645661053 0x74b60000 790528 C:\Windows\SysWOW64\RPCRT4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795770645661053 0x74c30000 1417216 C:\Windows\SysWOW64\gdi32full.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation GDI Client DLL 131795770645661053 0x74d90000 24576 C:\Windows\SysWOW64\PSAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Process Status Helper 131795770645661053 0x74da0000 778240 C:\Windows\SysWOW64\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795770645661053 0x74e60000 557056 C:\Windows\SysWOW64\shcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795770645661053 0x74f80000 278528 C:\Windows\SysWOW64\WINTRUST.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation Microsoft Trust Verification APIs 131795770645661053 0x74fd0000 405504 C:\Windows\SysWOW64\WS2_32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation 32-разрядная библиотека Windows Socket 2.0 131795770645661053 0x75040000 282624 C:\Windows\SysWOW64\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795770645661053 0x751d0000 57344 C:\Windows\SysWOW64\MSASN1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ASN.1 Runtime APIs 131795770645661053 0x751e0000 1708032 C:\Windows\SysWOW64\KERNELBASE.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645661053 0x75390000 266240 C:\Windows\SysWOW64\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795770645661053 0x753e0000 1560576 C:\Windows\SysWOW64\CRYPT32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API32 криптографии 131795770645661053 0x75560000 487424 C:\Windows\SysWOW64\ADVAPI32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795770645661053 0x756c0000 5693440 C:\Windows\SysWOW64\windows.storage.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API хранения Microsoft WinRT 131795770645661053 0x75c90000 286720 C:\Windows\SysWOW64\shlwapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека небольших программ оболочки 131795770645661053 0x75ce0000 20811776 C:\Windows\SysWOW64\SHELL32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Общая библиотека оболочки Windows 131795770645661053 0x774d0000 86016 C:\Windows\SysWOW64\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795770645661053 0x774f0000 61440 C:\Windows\SysWOW64\profapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Profile Basic API 131795770645661053 0x77560000 1437696 C:\Windows\SysWOW64\USER32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795770645661053 0x776c0000 368640 C:\Windows\SysWOW64\bcryptPrimitives.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation Windows Cryptographic Primitives Library 131795770645661053 0x77780000 503808 C:\Windows\SysWOW64\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645661053 0x77800000 606208 C:\Windows\SysWOW64\OLEAUT32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795770645661053 0x77ac0000 966656 C:\Windows\SysWOW64\ole32.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft OLE для Windows 131795770645661053 0x77bb0000 176128 C:\Windows\SysWOW64\GDI32.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation GDI Client DLL 131795770645661053 0x77be0000 937984 C:\Windows\SysWOW64\COMDLG32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека общих диалоговых окон 131795770645661053 0x77cd0000 221184 C:\Windows\SysWOW64\cfgmgr32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Configuration Manager DLL 131795770645661053 0x77d10000 28672 C:\Windows\SysWOW64\NSI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation NSI User-mode interface DLL 131795770645661053 0x77d20000 1585152 C:\Windows\SysWOW64\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 131795770645661053 0x7ffad0270000 1908736 C:\Windows\SYSTEM32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 90 6936 7744 57 00000000:0031f1da 131795756360200321 0 0 0 Обязательная метка\Ненадежный обязательный уровень WIN-0UOTFKKVN1S\User browser.exe C:\Users\User\AppData\Local\Yandex\YandexBrowser\Application\browser.exe "C:\Users\User\AppData\Local\Yandex\YandexBrowser\Application\browser.exe" --type=renderer --enable-in-process-wmf-demuxer --field-trial-handle=1292,9555382311565764851,7120838982649204725,131072 --enable-ignition --disable-gpu-compositing --service-pipe-token=73B8CB09F7D184AD1D3DDBFE4AFC07BA --lang=ru --user-id=32B2E0A1-3039-4C67-86BE-75A88EF21B54 --brand-id=yandex --partner-id=7924 --help-url=https://api.browser.yandex.ru/redirect/help/ --user-agent-info --translate-security-origin=https://translate.yandex.net --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --enable-instaserp --device-scale-factor=1 --num-raster-threads=1 --enable-compositor-image-animations --service-request-channel-token=73B8CB09F7D184AD1D3DDBFE4AFC07BA --renderer-client-id=116 --mojo-platform-channel-handle=4024 /prefetch:1 YANDEX LLC 18.6.1.770 Yandex 131795770645661289 0x10e0000 2519040 C:\Users\User\AppData\Local\Yandex\YandexBrowser\Application\browser.exe 18.6.1.770 YANDEX LLC Yandex 131795770645661289 0x58720000 59748352 C:\Users\User\AppData\Local\Yandex\YandexBrowser\Application\18.6.1.770\browser_child.dll 18.6.1.770 YANDEX LLC Yandex 131795770645661289 0x5c020000 335872 C:\Windows\System32\wow64.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation Win32 Emulation on NT64 131795770645661289 0x5c080000 487424 C:\Windows\System32\wow64win.dll 10.0.14393.1884 (rs1_release.171101-1233) Microsoft Corporation Wow64 Console and Win32 API Logging 131795770645661289 0x5c100000 40960 C:\Windows\System32\wow64cpu.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation AMD64 Wow64 CPU 131795770645661289 0x6e8b0000 1859584 C:\Windows\SysWOW64\mfmp4srcsnk.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL источника и приемника MPEG4 Media Foundation 131795770645661289 0x6ef30000 647168 C:\Windows\SysWOW64\evr.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека DLL средства отображения видео 131795770645661289 0x6efd0000 458752 C:\Windows\SysWOW64\msauddecmft.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Media Foundation Audio Decoders 131795770645661289 0x6f790000 1085440 C:\Windows\SysWOW64\mfperfhelper.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation MFPerf DLL 131795770645661289 0x6f8a0000 2220032 C:\Windows\SysWOW64\msmpeg2vdec.dll 10.0.14393.953 (rs1_release_inmarket.170303-1614) Microsoft Corporation Microsoft DTV-DVD Video Decoder 131795770645661289 0x6fac0000 1130496 C:\Windows\SysWOW64\mfplat.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Media Foundation Platform DLL 131795770645661289 0x6ff60000 172032 C:\Windows\SysWOW64\RTWorkQ.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL для WorkQueue реального времени 131795770645661289 0x70030000 593920 C:\Users\User\AppData\Local\Yandex\YandexBrowser\Application\18.6.1.770\browser_elf.dll 18.6.1.770 YANDEX LLC Yandex 131795770645661289 0x700d0000 434176 C:\Windows\SysWOW64\WINSPOOL.DRV 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Драйвер диспетчера очереди Windows 131795770645661289 0x70340000 536576 C:\Windows\SysWOW64\dxgi.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation DirectX Graphics Infrastructure 131795770645661289 0x703d0000 2056192 C:\Windows\SysWOW64\DWrite.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Службы Microsoft DirectX Typography 131795770645661289 0x707d0000 86016 C:\Windows\SysWOW64\SAMCLI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Security Accounts Manager Client DLL 131795770645661289 0x70a20000 94208 C:\Windows\SysWOW64\USP10.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Uniscribe Unicode script processor 131795770645661289 0x70ca0000 45056 C:\Windows\SysWOW64\NETUTILS.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API Helpers DLL 131795770645661289 0x70fd0000 1331200 C:\Windows\SysWOW64\dbghelp.dll 10.0.14321.1024 (rs1_release.160715-1616) Microsoft Windows Image Helper 131795770645661289 0x71140000 77824 C:\Windows\SysWOW64\NETAPI32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API DLL 131795770645661289 0x725e0000 2273280 C:\Windows\SysWOW64\iertutil.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служебная программа времени выполнения для Internet Explorer 131795770645661289 0x728e0000 1372160 C:\Windows\SysWOW64\PROPSYS.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Система страниц свойств (Майкрософт) 131795770645661289 0x72af0000 655360 C:\Windows\SysWOW64\WINHTTP.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Службы HTTP Windows 131795770645661289 0x72cc0000 1658880 C:\Windows\SysWOW64\urlmon.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширения OLE32 для Win32 131795770645661289 0x73ac0000 81920 C:\Windows\SysWOW64\dhcpcsvc.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служба DHCP-клиента 131795770645661289 0x73ae0000 40960 C:\Windows\SysWOW64\Secur32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Security Support Provider Interface 131795770645661289 0x73f00000 192512 C:\Windows\SysWOW64\IPHLPAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API вспомогательного приложения IP 131795770645661289 0x74190000 110592 C:\Windows\SysWOW64\bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795770645661289 0x741b0000 77824 C:\Windows\SysWOW64\cryptsp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Cryptographic Service Provider API 131795770645661289 0x741f0000 143360 C:\Windows\SysWOW64\WINMMBASE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base Multimedia Extension API DLL 131795770645661289 0x74230000 147456 C:\Windows\SysWOW64\WINMM.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation MCI API DLL 131795770645661289 0x744d0000 2138112 C:\Windows\WinSxS\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.14393.953_none_89c2555adb023171\COMCTL32.dll 6.10 (rs1_release_inmarket.170303-1614) Microsoft Corporation Библиотека элементов управления взаимодействия с пользователем 131795770645661289 0x746e0000 32768 C:\Windows\SysWOW64\VERSION.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Version Checking and File Installation Libraries 131795770645661289 0x746f0000 106496 C:\Windows\SysWOW64\USERENV.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Userenv 131795770645661289 0x747d0000 40960 C:\Windows\SysWOW64\CRYPTBASE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base cryptographic API DLL 131795770645661289 0x747e0000 126976 C:\Windows\SysWOW64\SspiCli.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Security Support Provider Interface 131795770645661289 0x74800000 151552 C:\Windows\SysWOW64\IMM32.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Multi-User Windows IMM32 API Client DLL 131795770645661289 0x74910000 2170880 C:\Windows\SysWOW64\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795770645661289 0x74b30000 53248 C:\Windows\SysWOW64\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795770645661289 0x74b60000 790528 C:\Windows\SysWOW64\RPCRT4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795770645661289 0x74c30000 1417216 C:\Windows\SysWOW64\gdi32full.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation GDI Client DLL 131795770645661289 0x74d90000 24576 C:\Windows\SysWOW64\PSAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Process Status Helper 131795770645661289 0x74da0000 778240 C:\Windows\SysWOW64\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795770645661289 0x74e60000 557056 C:\Windows\SysWOW64\shcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795770645661289 0x74f80000 278528 C:\Windows\SysWOW64\WINTRUST.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation Microsoft Trust Verification APIs 131795770645661289 0x74fd0000 405504 C:\Windows\SysWOW64\WS2_32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation 32-разрядная библиотека Windows Socket 2.0 131795770645661289 0x75040000 282624 C:\Windows\SysWOW64\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795770645661289 0x751d0000 57344 C:\Windows\SysWOW64\MSASN1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ASN.1 Runtime APIs 131795770645661289 0x751e0000 1708032 C:\Windows\SysWOW64\KERNELBASE.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645661289 0x75390000 266240 C:\Windows\SysWOW64\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795770645661289 0x753e0000 1560576 C:\Windows\SysWOW64\CRYPT32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API32 криптографии 131795770645661289 0x75560000 487424 C:\Windows\SysWOW64\ADVAPI32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795770645661289 0x756c0000 5693440 C:\Windows\SysWOW64\windows.storage.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API хранения Microsoft WinRT 131795770645661289 0x75c90000 286720 C:\Windows\SysWOW64\shlwapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека небольших программ оболочки 131795770645661289 0x75ce0000 20811776 C:\Windows\SysWOW64\SHELL32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Общая библиотека оболочки Windows 131795770645661289 0x774d0000 86016 C:\Windows\SysWOW64\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795770645661289 0x774f0000 61440 C:\Windows\SysWOW64\profapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Profile Basic API 131795770645661289 0x77560000 1437696 C:\Windows\SysWOW64\USER32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795770645661289 0x776c0000 368640 C:\Windows\SysWOW64\bcryptPrimitives.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation Windows Cryptographic Primitives Library 131795770645661289 0x77780000 503808 C:\Windows\SysWOW64\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645661289 0x77800000 606208 C:\Windows\SysWOW64\OLEAUT32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795770645661289 0x77ac0000 966656 C:\Windows\SysWOW64\ole32.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft OLE для Windows 131795770645661289 0x77bb0000 176128 C:\Windows\SysWOW64\GDI32.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation GDI Client DLL 131795770645661289 0x77be0000 937984 C:\Windows\SysWOW64\COMDLG32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека общих диалоговых окон 131795770645661289 0x77cd0000 221184 C:\Windows\SysWOW64\cfgmgr32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Configuration Manager DLL 131795770645661289 0x77d10000 28672 C:\Windows\SysWOW64\NSI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation NSI User-mode interface DLL 131795770645661289 0x77d20000 1585152 C:\Windows\SysWOW64\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 131795770645661289 0x7ffad0270000 1908736 C:\Windows\SYSTEM32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 92 9252 664 6 00000000:000003e7 131795764376794664 131795777590883773 0 1 Обязательная метка\Обязательный уровень системы NT AUTHORITY\СИСТЕМА wmiprvse.exe C:\Windows\system32\wbem\wmiprvse.exe C:\Windows\system32\wbem\wmiprvse.exe Microsoft Corporation 10.0.14393.2155 (rs1_release_1.180305-1842) WMI Provider Host 131795770645661522 0x7ff7fdea0000 516096 C:\Windows\system32\wbem\wmiprvse.exe 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation WMI Provider Host 131795770645661522 0x7ffabee10000 90112 C:\Windows\SYSTEM32\NCObjAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation 131795770662992743 0x7ffac1e20000 147456 C:\Windows\System32\wbem\wmiutils.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation WMI 131795770663908408 0x7ffac1f50000 471040 C:\Windows\System32\wbem\esscli.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation WMI 131795770645661522 0x7ffac1fd0000 999424 C:\Windows\system32\wbem\FastProx.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation WMI Custom Marshaller 131795770645661522 0x7ffac21d0000 81920 C:\Windows\system32\wbem\wbemsvc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation WMI 131795770645661522 0x7ffac4220000 520192 C:\Windows\SYSTEM32\wbemcomn.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation WMI 131795770664479193 0x7ffac4470000 65536 C:\Windows\System32\wbem\wbemprox.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation WMI 131795770663594346 0x7ffac7cc0000 229376 C:\Windows\System32\wbem\wmiprov.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation WMI 131795770664758405 0x7ffac8880000 69632 C:\Windows\System32\wmiclnt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation WMI Client API 131795770663902811 0x7ffacb420000 204800 C:\Windows\System32\ntmarta.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик Windows NT MARTA 131795770645661522 0x7ffacc620000 176128 C:\Windows\SYSTEM32\bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795770645661522 0x7ffacc6e0000 61440 C:\Windows\System32\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795770645661522 0x7ffacc8f0000 1003520 C:\Windows\System32\ucrtbase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645661522 0x7ffacc9f0000 434176 C:\Windows\System32\bcryptPrimitives.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Cryptographic Primitives Library 131795770645661522 0x7ffacca60000 122880 C:\Windows\System32\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795770645661522 0x7ffacd270000 2215936 C:\Windows\System32\KERNELBASE.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645661522 0x7ffacd710000 638976 C:\Windows\System32\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645661522 0x7ffaced20000 782336 C:\Windows\System32\OLEAUT32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795770645661522 0x7ffacee50000 1183744 C:\Windows\System32\RPCRT4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795770645661522 0x7ffacef90000 647168 C:\Windows\System32\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795770645661522 0x7ffacf030000 651264 C:\Windows\System32\clbcatq.dll 2001.12.10941.16384 (rs1_release.160715-1616) Microsoft Corporation COM+ Configuration Catalog 131795770645661522 0x7ffacf0d0000 704512 C:\Windows\System32\KERNEL32.DLL 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645661522 0x7ffacf770000 212992 C:\Windows\System32\GDI32.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation GDI Client DLL 131795770645661522 0x7ffacf820000 434176 C:\Windows\System32\WS2_32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation 32-разрядная библиотека Windows Socket 2.0 131795770645661522 0x7ffacf8c0000 1462272 C:\Windows\System32\user32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795770645661522 0x7ffacfb30000 2916352 C:\Windows\System32\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795770645661522 0x7ffacfe20000 663552 C:\Windows\System32\advapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795770645661522 0x7ffad0210000 364544 C:\Windows\System32\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795770645661522 0x7ffad0270000 1908736 C:\Windows\SYSTEM32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 93 8764 360 26 00000000:000003e5 131795765999556420 131795773594672986 0 1 Обязательная метка\Обязательный уровень системы NT AUTHORITY\LOCAL SERVICE AUDIODG.EXE C:\Windows\system32\AUDIODG.EXE C:\Windows\system32\AUDIODG.EXE 0x310 Microsoft Corporation 10.0.14393.0 (rs1_release.160715-1616) Изоляция графов аудиоустройств Windows 131795770645661619 0x7ff644450000 389120 C:\Windows\system32\AUDIODG.EXE 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Изоляция графов аудиоустройств Windows 131795770645661619 0x7ffab02b0000 1802240 C:\Windows\System32\WMALFXGFXDSP.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SysFx DSP 131795770645661619 0x7ffab4af0000 606208 C:\Windows\System32\audioses.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Сеанс обработки звука 131795770645661619 0x7ffabc1a0000 438272 C:\Windows\System32\audiokse.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Audio Ks Endpoint 131795770645661619 0x7ffabd210000 552960 C:\Windows\System32\audioeng.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Audio Engine 131795770645661619 0x7ffac8f90000 45056 C:\Windows\System32\AVRT.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Среда выполнения мультимедиа в реальном времени 131795770645661619 0x7ffac92e0000 1269760 C:\Windows\SYSTEM32\wintypes.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL основных типов Windows 131795770645661619 0x7ffac9480000 462848 C:\Windows\system32\MMDevAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation MMDevice API 131795770645661619 0x7ffaca340000 1593344 C:\Windows\system32\PROPSYS.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Система страниц свойств (Майкрософт) 131795770645661619 0x7ffacb3f0000 163840 C:\Windows\system32\DEVOBJ.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Device Information Set DLL 131795770645661619 0x7ffacc6e0000 61440 C:\Windows\System32\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795770645661619 0x7ffacc6f0000 311296 C:\Windows\System32\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795770645661619 0x7ffacc8f0000 1003520 C:\Windows\System32\ucrtbase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645661619 0x7ffacc9f0000 434176 C:\Windows\System32\bcryptPrimitives.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Cryptographic Primitives Library 131795770645661619 0x7ffacca60000 122880 C:\Windows\System32\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795770645661619 0x7ffaccae0000 692224 C:\Windows\System32\shcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795770645661619 0x7ffacd270000 2215936 C:\Windows\System32\KERNELBASE.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645661619 0x7ffacd710000 638976 C:\Windows\System32\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645661619 0x7ffacd7b0000 270336 C:\Windows\System32\cfgmgr32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Configuration Manager DLL 131795770645661619 0x7ffaced20000 782336 C:\Windows\System32\OLEAUT32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795770645661619 0x7ffacee50000 1183744 C:\Windows\System32\RPCRT4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795770645661619 0x7ffacef90000 647168 C:\Windows\System32\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795770645661619 0x7ffacf030000 651264 C:\Windows\System32\clbcatq.dll 2001.12.10941.16384 (rs1_release.160715-1616) Microsoft Corporation COM+ Configuration Catalog 131795770645661619 0x7ffacf0d0000 704512 C:\Windows\System32\KERNEL32.DLL 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645661619 0x7ffacf770000 212992 C:\Windows\System32\GDI32.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation GDI Client DLL 131795770645661619 0x7ffacf8c0000 1462272 C:\Windows\System32\user32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795770645661619 0x7ffacfb30000 2916352 C:\Windows\System32\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795770645661619 0x7ffad0210000 364544 C:\Windows\System32\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795770645661619 0x7ffad0270000 1908736 C:\Windows\SYSTEM32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 94 4580 4048 3 00000000:000003e7 131795769397390596 131795772585329431 0 1 Обязательная метка\Обязательный уровень системы NT AUTHORITY\СИСТЕМА SearchProtocolHost.exe C:\Windows\system32\SearchProtocolHost.exe "C:\Windows\system32\SearchProtocolHost.exe" Global\UsGthrFltPipeMssGthrPipe285_ Global\UsGthrCtrlFltPipeMssGthrPipe285 1 -2147483646 "Software\Microsoft\Windows Search" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT; MS Search 4.0 Robot)" "C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc" "DownLevelDaemon" Microsoft Corporation 7.0.14393.2125 (rs1_release.180301-2139) Microsoft Windows Search Protocol Host 131795770645661738 0x7ff71ad80000 368640 C:\Windows\system32\SearchProtocolHost.exe 7.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation Microsoft Windows Search Protocol Host 131795770645661738 0x7ffab7a00000 3424256 C:\Windows\system32\TQUERY.DLL 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Запросы Microsoft Tripoli 131795770645661738 0x7ffab9490000 860160 C:\Windows\system32\ntshrui.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширения оболочки, обеспечивающие общий доступ 131795770645661738 0x7ffabaf70000 270336 C:\Windows\system32\edputil.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служебная программа EDP 131795770645661738 0x7ffabc880000 73728 C:\Windows\system32\cscapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Offline Files Win32 API 131795770645661738 0x7ffabff10000 155648 C:\Windows\system32\srvcli.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Server Service Client DLL 131795770645661738 0x7ffac1c90000 192512 C:\Windows\system32\mssph.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Обработчик протоколов поиска Microsoft 131795770645661738 0x7ffac2960000 143360 C:\Windows\system32\mssprxy.dll 7.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation Microsoft Search Proxy 131795770645661738 0x7ffac7e40000 28672 C:\Windows\system32\Msidle.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Idle Monitor 131795770645661738 0x7ffaca340000 1593344 C:\Windows\system32\propsys.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Система страниц свойств (Майкрософт) 131795770645661738 0x7ffacb420000 204800 C:\Windows\SYSTEM32\ntmarta.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик Windows NT MARTA 131795770645661738 0x7ffacb960000 303104 C:\Windows\system32\AUTHZ.dll 10.0.14393.1737 (rs1_release_inmarket.170914-1249) Microsoft Corporation Authorization Framework 131795772585257264 0x7ffacbe20000 53248 C:\Windows\System32\netutils.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API Helpers DLL 131795770645661738 0x7ffacc350000 180224 C:\Windows\system32\SspiCli.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Security Support Provider Interface 131795770645661738 0x7ffacc6e0000 61440 C:\Windows\System32\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795770645661738 0x7ffacc6f0000 311296 C:\Windows\System32\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795770645661738 0x7ffacc740000 81920 C:\Windows\System32\profapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Profile Basic API 131795770645661738 0x7ffacc8f0000 1003520 C:\Windows\System32\ucrtbase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645661738 0x7ffacc9f0000 434176 C:\Windows\System32\bcryptPrimitives.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Cryptographic Primitives Library 131795770645661738 0x7ffacca60000 122880 C:\Windows\System32\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795770645661738 0x7ffaccae0000 692224 C:\Windows\System32\shcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795770645661738 0x7ffaccb90000 7180288 C:\Windows\System32\Windows.Storage.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API хранения Microsoft WinRT 131795770645661738 0x7ffacd270000 2215936 C:\Windows\System32\KERNELBASE.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645661738 0x7ffacd710000 638976 C:\Windows\System32\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645661738 0x7ffacd7b0000 270336 C:\Windows\System32\cfgmgr32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Configuration Manager DLL 131795770645661738 0x7ffacd810000 22056960 C:\Windows\System32\shell32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Общая библиотека оболочки Windows 131795770645661738 0x7ffaced20000 782336 C:\Windows\System32\OLEAUT32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795770645661738 0x7ffacee50000 1183744 C:\Windows\System32\RPCRT4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795770645661738 0x7ffacef90000 647168 C:\Windows\System32\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795770645661738 0x7ffacf030000 651264 C:\Windows\System32\clbcatq.dll 2001.12.10941.16384 (rs1_release.160715-1616) Microsoft Corporation COM+ Configuration Catalog 131795770645661738 0x7ffacf0d0000 704512 C:\Windows\System32\KERNEL32.DLL 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645661738 0x7ffacf770000 212992 C:\Windows\System32\GDI32.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation GDI Client DLL 131795770645661738 0x7ffacf890000 188416 C:\Windows\System32\imm32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Multi-User Windows IMM32 API Client DLL 131795770645661738 0x7ffacf8c0000 1462272 C:\Windows\System32\USER32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795770645661738 0x7ffacfb30000 2916352 C:\Windows\System32\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795770645661738 0x7ffacfe20000 663552 C:\Windows\System32\advapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795770645661738 0x7ffad0070000 1277952 C:\Windows\System32\ole32.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft OLE для Windows 131795770645661738 0x7ffad01b0000 335872 C:\Windows\System32\shlwapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека небольших программ оболочки 131795770645661738 0x7ffad0210000 364544 C:\Windows\System32\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795770645661738 0x7ffad0270000 1908736 C:\Windows\SYSTEM32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 95 8304 580 4 00000000:000003e7 131795770292311800 131795773336859980 0 1 Обязательная метка\Обязательный уровень системы NT AUTHORITY\СИСТЕМА svchost.exe C:\Windows\system32\svchost.exe C:\Windows\system32\svchost.exe -k wsappx Microsoft Corporation 10.0.14393.0 (rs1_release.160715-1616) Хост-процесс для служб Windows 96 10360 4048 3 00000000:000003e7 131795770393041927 131795772585920370 0 1 Обязательная метка\Средний обязательный уровень NT AUTHORITY\СИСТЕМА SearchFilterHost.exe C:\Windows\system32\SearchFilterHost.exe "C:\Windows\system32\SearchFilterHost.exe" 0 708 712 720 8192 716 Microsoft Corporation 7.0.14393.2125 (rs1_release.180301-2139) Microsoft Windows Search Filter Host 131795770645661946 0x7ff68a750000 225280 C:\Windows\system32\SearchFilterHost.exe 7.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation Microsoft Windows Search Filter Host 131795770645661946 0x7ffab7a00000 3424256 C:\Windows\system32\TQUERY.DLL 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Запросы Microsoft Tripoli 131795770645661946 0x7ffab8fe0000 1613824 C:\Program Files\Common Files\Microsoft Shared\Filters\offfiltx.dll 16.0.4266.1001 Microsoft Corporation Microsoft Office Open XML Format Filter 131795770645661946 0x7ffabbc40000 643072 C:\Windows\SYSTEM32\MSVCP140.dll 14.10.24516.0 built by: VCTOOLSRELESC Microsoft Corporation Microsoft® C Runtime Library 131795770645661946 0x7ffabbce0000 90112 C:\Windows\SYSTEM32\VCRUNTIME140.dll 14.10.24516.0 built by: VCTOOLSRELESC Microsoft Corporation Microsoft® C Runtime Library 131795770645661946 0x7ffac2960000 143360 C:\Windows\system32\mssprxy.dll 7.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation Microsoft Search Proxy 131795770645661946 0x7ffac97e0000 110592 C:\Windows\SYSTEM32\query.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека служебной программы индексирования содержимого 131795770645661946 0x7ffacc520000 622592 C:\Windows\SYSTEM32\sxs.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Fusion 2.5 131795770645661946 0x7ffacc6e0000 61440 C:\Windows\System32\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795770645661946 0x7ffacc8f0000 1003520 C:\Windows\System32\ucrtbase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645661946 0x7ffacc9f0000 434176 C:\Windows\System32\bcryptPrimitives.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Cryptographic Primitives Library 131795770645661946 0x7ffacca60000 122880 C:\Windows\System32\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795770645661946 0x7ffaccae0000 692224 C:\Windows\System32\shcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795770645661946 0x7ffacd270000 2215936 C:\Windows\System32\KERNELBASE.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645661946 0x7ffacd710000 638976 C:\Windows\System32\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645661946 0x7ffaced20000 782336 C:\Windows\System32\OLEAUT32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795770645661946 0x7ffacee50000 1183744 C:\Windows\System32\RPCRT4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795770645661946 0x7ffacef90000 647168 C:\Windows\System32\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795770645661946 0x7ffacf030000 651264 C:\Windows\System32\clbcatq.dll 2001.12.10941.16384 (rs1_release.160715-1616) Microsoft Corporation COM+ Configuration Catalog 131795770645661946 0x7ffacf0d0000 704512 C:\Windows\System32\KERNEL32.DLL 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645661946 0x7ffacf770000 212992 C:\Windows\System32\GDI32.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation GDI Client DLL 131795770645661946 0x7ffacf890000 188416 C:\Windows\System32\imm32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Multi-User Windows IMM32 API Client DLL 131795770645661946 0x7ffacf8c0000 1462272 C:\Windows\System32\USER32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795770645661946 0x7ffacfb30000 2916352 C:\Windows\System32\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795770645661946 0x7ffacfe20000 663552 C:\Windows\System32\advapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795770645661946 0x7ffad0070000 1277952 C:\Windows\System32\ole32.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft OLE для Windows 131795770645661946 0x7ffad0210000 364544 C:\Windows\System32\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795770645661946 0x7ffad0270000 1908736 C:\Windows\SYSTEM32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 98 6080 84 97 00000000:0031f1da 131795771125310655 0 0 0 Обязательная метка\Средний обязательный уровень WIN-0UOTFKKVN1S\User MCLauncher.exe C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe "C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe" 1.0 131795771127806606 0x400000 2830336 C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe 1.0 131795771129292604 0x750000 1462272 C:\Windows\System32\user32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795771335510731 0x11000000 1396736 C:\Users\User\AppData\Roaming\MCLauncher\libeay32.dll 1.0.2o The OpenSSL Project, http://www.openssl.org/ OpenSSL Shared Library 131795771334241016 0x12000000 360448 C:\Users\User\AppData\Roaming\MCLauncher\ssleay32.dll 1.0.2o The OpenSSL Project, http://www.openssl.org/ OpenSSL Shared Library 131795771129285523 0x5c020000 335872 C:\Windows\System32\wow64.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation Win32 Emulation on NT64 131795771129286235 0x5c080000 487424 C:\Windows\System32\wow64win.dll 10.0.14393.1884 (rs1_release.171101-1233) Microsoft Corporation Wow64 Console and Win32 API Logging 131795771129295328 0x5c100000 40960 C:\Windows\System32\wow64cpu.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation AMD64 Wow64 CPU 131795771135408057 0x60750000 1556480 C:\Program Files (x86)\360\Total Security\safemon\safemon.dll 8, 4, 0, 1420 Qihu 360 Software Co., Ltd. 360 Internet Security Internet Protection 131795771129575672 0x613d0000 667648 C:\Windows\WinSxS\x86_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.9247_none_5090cb78bcba4a35\msvcr90.dll 9.00.30729.9247 Microsoft Corporation Microsoft® C Runtime Library 131795771129398434 0x66680000 12288 C:\Windows\SysWOW64\sfc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows File Protection 131795771136825814 0x67500000 1597440 C:\Windows\SysWOW64\actxprxy.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation ActiveX Interface Marshaling Library 131795771129423112 0x67690000 61440 C:\Windows\SysWOW64\sfc_os.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows File Protection 131795771129349562 0x6b830000 2584576 C:\Windows\AppPatch\AcLayers.dll 10.0.14393.953 (rs1_release_inmarket.170303-1614) Microsoft Corporation Windows Compatibility DLL 131795771329638947 0x6c290000 987136 C:\Windows\SysWOW64\twinapi.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation twinapi.appcore 131795771329610149 0x6c390000 1126400 C:\Windows\SysWOW64\dcomp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft DirectComposition Library 131795771329592759 0x6c4b0000 278528 C:\Windows\SysWOW64\DataExchange.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation Data exchange 131795771136045859 0x6cda0000 528384 C:\Windows\SysWOW64\sxs.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Fusion 2.5 131795771131298623 0x6d180000 581632 C:\Windows\WinSxS\x86_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.9247_none_5090cb78bcba4a35\msvcp90.dll 9.00.30729.9247 Microsoft Corporation Microsoft® C++ Runtime Library 131795771136082794 0x6dca0000 176128 C:\Windows\SysWOW64\scrrun.dll 5.812.10240.16384 Microsoft Corporation Microsoft ® Script Runtime 131795771133718253 0x6dcd0000 606208 C:\Windows\WinSxS\x86_microsoft.windows.common-controls_6595b64144ccf1df_5.82.14393.447_none_5507ded2cb4f7f4c\comctl32.dll 6.10 (rs1_release_inmarket.170303-1614) Microsoft Corporation Библиотека элементов управления взаимодействия с пользователем 131795771129406131 0x700d0000 434176 C:\Windows\SysWOW64\winspool.drv 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Драйвер диспетчера очереди Windows 131795771329618480 0x70340000 536576 C:\Windows\SysWOW64\dxgi.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation DirectX Graphics Infrastructure 131795771329601483 0x707f0000 2293760 C:\Windows\SysWOW64\d3d11.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation Direct3D 11 Runtime 131795771336447829 0x70c30000 114688 C:\Windows\SysWOW64\srvcli.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Server Service Client DLL 131795771135435621 0x70ca0000 45056 C:\Windows\SysWOW64\netutils.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API Helpers DLL 131795771135446667 0x70cb0000 65536 C:\Windows\SysWOW64\wkscli.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Workstation Service Client DLL 131795771136073867 0x70e90000 147456 C:\Windows\SysWOW64\wshom.ocx 5.812.10240.16384 Microsoft Corporation Windows Script Host Runtime Library 131795771135423397 0x71140000 77824 C:\Windows\SysWOW64\netapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API DLL 131795771135552456 0x725e0000 2273280 C:\Windows\SysWOW64\iertutil.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служебная программа времени выполнения для Internet Explorer 131795771136181434 0x728e0000 1372160 C:\Windows\SysWOW64\propsys.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Система страниц свойств (Майкрософт) 131795771328759427 0x72b90000 126976 C:\Windows\SysWOW64\dwmapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Интерфейс API диспетчера окон рабочего стола (Майкрософт) 131795771135541570 0x72cc0000 1658880 C:\Windows\SysWOW64\urlmon.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширения OLE32 для Win32 131795771347140137 0x73a50000 299008 C:\Windows\SysWOW64\FWPUCLNT.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API пользовательского режима FWP/IPsec 131795771347110306 0x73ab0000 32768 C:\Windows\SysWOW64\rasadhlp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Remote Access AutoDial Helper 131795771135314174 0x73ae0000 40960 C:\Windows\SysWOW64\secur32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Security Support Provider Interface 131795771347090516 0x73f00000 192512 C:\Windows\SysWOW64\IPHLPAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API вспомогательного приложения IP 131795771347075776 0x73f30000 512000 C:\Windows\SysWOW64\dnsapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Динамическая библиотека API DNS-клиента 131795771328179609 0x73ff0000 319488 C:\Windows\SysWOW64\mswsock.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширение поставщика службы API Microsoft Windows Sockets 2.0 131795771130913562 0x74060000 192512 C:\Windows\SysWOW64\rsaenh.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Enhanced Cryptographic Provider 131795771135359123 0x74110000 479232 C:\Windows\SysWOW64\uxtheme.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека тем UxTheme (Microsoft) 131795771129415027 0x74190000 110592 C:\Windows\SysWOW64\bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795771130899582 0x741b0000 77824 C:\Windows\SysWOW64\cryptsp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Cryptographic Service Provider API 131795771133098293 0x741f0000 143360 C:\Windows\SysWOW64\winmmbase.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base Multimedia Extension API DLL 131795771132990161 0x74230000 147456 C:\Windows\SysWOW64\winmm.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation MCI API DLL 131795771131765102 0x746e0000 32768 C:\Windows\SysWOW64\version.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Version Checking and File Installation Libraries 131795771129389543 0x74710000 90112 C:\Windows\SysWOW64\mpr.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека маршрутизации для нескольких служб доступа 131795771129317462 0x74730000 598016 C:\Windows\SysWOW64\apphelp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиентская библиотека совместимости приложений 131795771129360685 0x747d0000 40960 C:\Windows\SysWOW64\cryptbase.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base cryptographic API DLL 131795771129360034 0x747e0000 126976 C:\Windows\SysWOW64\sspicli.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Security Support Provider Interface 131795771129496759 0x74800000 151552 C:\Windows\SysWOW64\imm32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Multi-User Windows IMM32 API Client DLL 131795771129358136 0x74830000 917504 C:\Windows\SysWOW64\ucrtbase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795771129357408 0x74910000 2170880 C:\Windows\SysWOW64\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795771129365891 0x74b30000 53248 C:\Windows\SysWOW64\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795771129359203 0x74b60000 790528 C:\Windows\SysWOW64\rpcrt4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795771129353720 0x74c30000 1417216 C:\Windows\SysWOW64\gdi32full.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation GDI Client DLL 131795771135412052 0x74d90000 24576 C:\Windows\SysWOW64\psapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Process Status Helper 131795771129350362 0x74da0000 778240 C:\Windows\SysWOW64\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795771129366695 0x74e60000 557056 C:\Windows\SysWOW64\SHCore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795771136054082 0x74ef0000 540672 C:\Windows\SysWOW64\clbcatq.dll 2001.12.10941.16384 (rs1_release.160715-1616) Microsoft Corporation COM+ Configuration Catalog 131795771131750596 0x74fd0000 405504 C:\Windows\SysWOW64\ws2_32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation 32-разрядная библиотека Windows Socket 2.0 131795771129363162 0x75040000 282624 C:\Windows\SysWOW64\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795771328737550 0x75090000 1265664 C:\Windows\SysWOW64\msctf.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Серверная библиотека MSCTF 131795771135228888 0x751d0000 57344 C:\Windows\SysWOW64\msasn1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ASN.1 Runtime APIs 131795771129301509 0x751e0000 1708032 C:\Windows\SysWOW64\KernelBase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795771129362062 0x75390000 266240 C:\Windows\SysWOW64\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795771135227735 0x753e0000 1560576 C:\Windows\SysWOW64\crypt32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API32 криптографии 131795771129363985 0x75560000 487424 C:\Windows\SysWOW64\advapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795771129356607 0x756c0000 5693440 C:\Windows\SysWOW64\windows.storage.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API хранения Microsoft WinRT 131795771129364960 0x75c90000 286720 C:\Windows\SysWOW64\shlwapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека небольших программ оболочки 131795771129354665 0x75ce0000 20811776 C:\Windows\SysWOW64\shell32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Общая библиотека оболочки Windows 131795771129370252 0x770c0000 4239360 C:\Windows\SysWOW64\setupapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Setup API 131795771129352041 0x774d0000 86016 C:\Windows\SysWOW64\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795771129367584 0x774f0000 61440 C:\Windows\SysWOW64\profapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Profile Basic API 131795771129351257 0x77560000 1437696 C:\Windows\SysWOW64\user32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795771129361361 0x776c0000 368640 C:\Windows\SysWOW64\bcryptprimitives.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation Windows Cryptographic Primitives Library 131795771129369244 0x77780000 503808 C:\Windows\SysWOW64\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795771129368545 0x77800000 606208 C:\Windows\SysWOW64\oleaut32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795771131168008 0x77ac0000 966656 C:\Windows\SysWOW64\ole32.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft OLE для Windows 131795771129352931 0x77bb0000 176128 C:\Windows\SysWOW64\gdi32.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation GDI Client DLL 131795771133704572 0x77be0000 937984 C:\Windows\SysWOW64\comdlg32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека общих диалоговых окон 131795771129355632 0x77cd0000 221184 C:\Windows\SysWOW64\cfgmgr32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Configuration Manager DLL 131795771347076821 0x77d10000 28672 C:\Windows\SysWOW64\nsi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation NSI User-mode interface DLL 131795771127807387 0x77d20000 1585152 C:\Windows\SysWOW64\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 131795771127807116 0x7ffad0270000 1908736 C:\Windows\System32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 100 11424 664 6 00000000:0031f1da 131795771175195605 131795772369655492 0 1 Обязательная метка\Низкий обязательный уровень WIN-0UOTFKKVN1S\User backgroundTaskHost.exe C:\Windows\system32\backgroundTaskHost.exe "C:\Windows\system32\backgroundTaskHost.exe" -ServerName:CortanaUI.AppXy7vb4pc2dr3kc93kfc509b1d0arkfb2x.mca Microsoft Corporation 10.0.14393.0 (rs1_release.160715-1616) Background Task Host 131795771215003918 0x7ff7e0340000 28672 C:\Windows\System32\backgroundTaskHost.exe 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Background Task Host 131795771218915398 0x7ffab52c0000 2445312 C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.BackgroundTask.dll 131795771248257542 0x7ffab5db0000 9781248 C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\CortanaApi.dll 131795771221125701 0x7ffab9d50000 1429504 C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Core.dll 131795771219014731 0x7ffabae40000 110592 C:\Windows\System32\capauthz.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API авторизации возможностей 131795771244982867 0x7ffabd4a0000 1613824 C:\Windows\System32\Windows.Globalization.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Globalization 131795771253593996 0x7ffabe4d0000 286720 C:\Windows\System32\MSWB7.dll 10.0.14393.1737 (rs1_release_inmarket.170914-1249) Microsoft Corporation MSWB7 DLL 131795771249779530 0x7ffabe770000 774144 C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\CSGSuggestLib.dll 131795771220596574 0x7ffabea90000 135168 C:\Windows\System32\Windows.ApplicationModel.Background.SystemEventsBroker.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Background System Events Broker API Server 131795771221984040 0x7ffabeac0000 335872 C:\Windows\System32\Windows.Storage.ApplicationData.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Application Data API Server 131795771229903710 0x7ffabf8a0000 122880 C:\Windows\System32\Windows.Cortana.ProxyStub.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows.Cortana.ProxyStub 131795771222450040 0x7ffabfd80000 86016 C:\Windows\System32\threadpoolwinrt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows WinRT Threadpool 131795771218944309 0x7ffac01e0000 397312 C:\Windows\System32\wincorlib.dll 10.0.14393.576 (rs1_release_inmarket.161208-2252) Microsoft Corporation Microsoft Windows ® WinRT core library 131795771217261903 0x7ffac0bf0000 3559424 C:\Windows\System32\actxprxy.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation ActiveX Interface Marshaling Library 131795771221184651 0x7ffac2c30000 135168 C:\Windows\System32\Clipc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиент платформы лицензирования клиента 131795771219025520 0x7ffac2d80000 5140480 C:\Windows\System32\cdp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API клиента Microsoft (R) CDP 131795771248269029 0x7ffac3810000 167936 C:\Windows\System32\cabinet.dll 5.00 (rs1_release.160715-1616) Microsoft Corporation Microsoft® Cabinet File API 131795771221208674 0x7ffac3bf0000 94208 C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\ActionMgr.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Cortana Action Manager 131795771244919374 0x7ffac3cb0000 2772992 C:\Windows\System32\iertutil.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служебная программа времени выполнения для Internet Explorer 131795771228411342 0x7ffac42a0000 659456 C:\Windows\System32\StateRepository.Core.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation StateRepository Core 131795771228399176 0x7ffac46d0000 4161536 C:\Windows\System32\Windows.StateRepository.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Сервер Windows StateRepository API Server 131795771238266123 0x7ffac4b70000 106496 C:\Windows\System32\ShellCommonCommonProxyStub.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ShellCommon Common Proxy Stub 131795771244908192 0x7ffac5070000 798720 C:\Windows\System32\Windows.Web.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL веб-клиента 131795771219005372 0x7ffac60e0000 221184 C:\Windows\System32\xmllite.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft XmlLite Library 131795771218728294 0x7ffac6620000 192512 C:\Windows\System32\biwinrt.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation Windows Background Broker Infrastructure 131795771219113271 0x7ffac69c0000 839680 C:\Windows\System32\winhttp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Службы HTTP Windows 131795771217463389 0x7ffac6ac0000 835584 C:\Windows\System32\Windows.UI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Runtime UI Foundation DLL 131795771229000770 0x7ffac6bb0000 118784 C:\Windows\System32\Windows.Cortana.PAL.Desktop.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows.Cortana.PAL.Desktop 131795771217062375 0x7ffac7580000 1077248 C:\Windows\System32\MrmCoreR.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Windows MRM 131795771218870257 0x7ffac7720000 1601536 C:\Windows\System32\OneCoreUAPCommonProxyStub.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation OneCoreUAP Common Proxy Stub 131795771221134703 0x7ffac7c50000 118784 C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\BingConfigurationClient.dll 10.0.14393.82 (rs1_release.160805-1735) Microsoft Corporation Bing Configuration Client DLL 131795771250869876 0x7ffac8fa0000 253952 C:\Windows\System32\logoncli.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Net Logon Client DLL 131795771215247819 0x7ffac92e0000 1269760 C:\Windows\System32\WinTypes.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL основных типов Windows 131795771246630966 0x7ffaca340000 1593344 C:\Windows\System32\propsys.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Система страниц свойств (Майкрософт) 131795771218005942 0x7ffaca570000 421888 C:\Windows\System32\BCP47Langs.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation BCP47 Language Classes 131795771215028077 0x7ffacadf0000 499712 C:\Windows\System32\apphelp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиентская библиотека совместимости приложений 131795771218142921 0x7ffacaf00000 610304 C:\Windows\System32\uxtheme.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека тем UxTheme (Microsoft) 131795771218992988 0x7ffacb140000 593920 C:\Windows\System32\msvcp110_win.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Microsoft® STL110 C++ Runtime Library 131795771215190452 0x7ffacb1e0000 1163264 C:\Windows\System32\twinapi.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation twinapi.appcore 131795771219041691 0x7ffacb300000 364544 C:\Windows\System32\VEEventDispatcher.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Visual Element Event dispatcher 131795771248177767 0x7ffacb420000 204800 C:\Windows\System32\ntmarta.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик Windows NT MARTA 131795771219101100 0x7ffacbd30000 229376 C:\Windows\System32\IPHLPAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API вспомогательного приложения IP 131795771219186292 0x7ffacc1f0000 241664 C:\Windows\System32\ntasn1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft ASN.1 API 131795771219053691 0x7ffacc230000 155648 C:\Windows\System32\ncrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Маршрутизатор Windows NCrypt 131795771219065792 0x7ffacc350000 180224 C:\Windows\System32\sspicli.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Security Support Provider Interface 131795771215202412 0x7ffacc620000 176128 C:\Windows\System32\bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795771215165891 0x7ffacc6e0000 61440 C:\Windows\System32\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795771228948589 0x7ffacc6f0000 311296 C:\Windows\System32\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795771217446746 0x7ffacc740000 81920 C:\Windows\System32\profapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Profile Basic API 131795771219027312 0x7ffacc760000 65536 C:\Windows\System32\msasn1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ASN.1 Runtime APIs 131795771216016613 0x7ffacc770000 1572864 C:\Windows\System32\gdi32full.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation GDI Client DLL 131795771215052508 0x7ffacc8f0000 1003520 C:\Windows\System32\ucrtbase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795771215054137 0x7ffacc9f0000 434176 C:\Windows\System32\bcryptprimitives.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Cryptographic Primitives Library 131795771216015001 0x7ffacca60000 122880 C:\Windows\System32\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795771215602268 0x7ffaccae0000 692224 C:\Windows\System32\SHCore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795771228947467 0x7ffaccb90000 7180288 C:\Windows\System32\windows.storage.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API хранения Microsoft WinRT 131795771215010911 0x7ffacd270000 2215936 C:\Windows\System32\KernelBase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795771219026473 0x7ffacd490000 1871872 C:\Windows\System32\crypt32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API32 криптографии 131795771218982293 0x7ffacd710000 638976 C:\Windows\System32\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795771218945076 0x7ffaced20000 782336 C:\Windows\System32\oleaut32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795771215053234 0x7ffacee50000 1183744 C:\Windows\System32\rpcrt4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795771215050566 0x7ffacef90000 647168 C:\Windows\System32\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795771215009974 0x7ffacf0d0000 704512 C:\Windows\System32\kernel32.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795771216015829 0x7ffacf770000 212992 C:\Windows\System32\gdi32.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation GDI Client DLL 131795771219028093 0x7ffacf820000 434176 C:\Windows\System32\ws2_32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation 32-разрядная библиотека Windows Socket 2.0 131795771216029532 0x7ffacf890000 188416 C:\Windows\System32\imm32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Multi-User Windows IMM32 API Client DLL 131795771216013945 0x7ffacf8c0000 1462272 C:\Windows\System32\user32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795771215051746 0x7ffacfb30000 2916352 C:\Windows\System32\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795771218916542 0x7ffacfe20000 663552 C:\Windows\System32\advapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795771251394640 0x7ffad0070000 1277952 C:\Windows\System32\ole32.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft OLE для Windows 131795771228949614 0x7ffad01b0000 335872 C:\Windows\System32\shlwapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека небольших программ оболочки 131795771215191449 0x7ffad0210000 364544 C:\Windows\System32\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795771215004228 0x7ffad0270000 1908736 C:\Windows\System32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 102 5352 7744 57 00000000:0031f1da 131795777512297277 131795777577947395 0 0 Обязательная метка\Низкий обязательный уровень WIN-0UOTFKKVN1S\User browser.exe C:\Users\User\AppData\Local\Yandex\YandexBrowser\Application\browser.exe "C:\Users\User\AppData\Local\Yandex\YandexBrowser\Application\browser.exe" --type=utility --field-trial-handle=1292,9555382311565764851,7120838982649204725,131072 --lang=ru --service-sandbox-type=utility --user-id=32B2E0A1-3039-4C67-86BE-75A88EF21B54 --brand-id=yandex --partner-id=7924 --service-request-channel-token=DEB3ACFB74E724388EDD708B8EC58AAC --process-name="Data Decoder Service" --mojo-platform-channel-handle=6360 --ignored=" --type=renderer " /prefetch:8 YANDEX LLC 18.6.1.770 Yandex 131795777515297838 0x1030000 704512 C:\Windows\System32\kernel32.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795777512642132 0x10e0000 2519040 C:\Users\User\AppData\Local\Yandex\YandexBrowser\Application\browser.exe 18.6.1.770 YANDEX LLC Yandex 131795777515299019 0x5480000 1462272 C:\Windows\System32\user32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795777524260638 0x58720000 59748352 C:\Users\User\AppData\Local\Yandex\YandexBrowser\Application\18.6.1.770\browser_child.dll 18.6.1.770 YANDEX LLC Yandex 131795777515289424 0x5c020000 335872 C:\Windows\System32\wow64.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation Win32 Emulation on NT64 131795777515290624 0x5c080000 487424 C:\Windows\System32\wow64win.dll 10.0.14393.1884 (rs1_release.171101-1233) Microsoft Corporation Wow64 Console and Win32 API Logging 131795777515302177 0x5c100000 40960 C:\Windows\System32\wow64cpu.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation AMD64 Wow64 CPU 131795777515363490 0x70030000 593920 C:\Users\User\AppData\Local\Yandex\YandexBrowser\Application\18.6.1.770\browser_elf.dll 18.6.1.770 YANDEX LLC Yandex 131795777524463548 0x700d0000 434176 C:\Windows\SysWOW64\winspool.drv 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Драйвер диспетчера очереди Windows 131795777524511218 0x70340000 536576 C:\Windows\SysWOW64\dxgi.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation DirectX Graphics Infrastructure 131795777524499734 0x703d0000 2056192 C:\Windows\SysWOW64\DWrite.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Службы Microsoft DirectX Typography 131795777524575772 0x707d0000 86016 C:\Windows\SysWOW64\samcli.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Security Accounts Manager Client DLL 131795777524451950 0x70a20000 94208 C:\Windows\SysWOW64\usp10.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Uniscribe Unicode script processor 131795777524589185 0x70ca0000 45056 C:\Windows\SysWOW64\netutils.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API Helpers DLL 131795777524415365 0x70fd0000 1331200 C:\Windows\SysWOW64\dbghelp.dll 10.0.14321.1024 (rs1_release.160715-1616) Microsoft Windows Image Helper 131795777524378747 0x71140000 77824 C:\Windows\SysWOW64\netapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API DLL 131795777524559678 0x725e0000 2273280 C:\Windows\SysWOW64\iertutil.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служебная программа времени выполнения для Internet Explorer 131795777524390458 0x728e0000 1372160 C:\Windows\SysWOW64\propsys.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Система страниц свойств (Майкрософт) 131795777515438231 0x72af0000 655360 C:\Windows\SysWOW64\winhttp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Службы HTTP Windows 131795777524487452 0x72cc0000 1658880 C:\Windows\SysWOW64\urlmon.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширения OLE32 для Win32 131795777524529620 0x73ac0000 81920 C:\Windows\SysWOW64\dhcpcsvc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служба DHCP-клиента 131795777524402307 0x73ae0000 40960 C:\Windows\SysWOW64\secur32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Security Support Provider Interface 131795777524475450 0x73f00000 192512 C:\Windows\SysWOW64\IPHLPAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API вспомогательного приложения IP 131795777524546438 0x74190000 110592 C:\Windows\SysWOW64\bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795777515456134 0x741f0000 143360 C:\Windows\SysWOW64\winmmbase.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base Multimedia Extension API DLL 131795777515414823 0x74230000 147456 C:\Windows\SysWOW64\winmm.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation MCI API DLL 131795777524365005 0x744d0000 2138112 C:\Windows\WinSxS\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.14393.953_none_89c2555adb023171\comctl32.dll 6.10 (rs1_release_inmarket.170303-1614) Microsoft Corporation Библиотека элементов управления взаимодействия с пользователем 131795777515403765 0x746e0000 32768 C:\Windows\SysWOW64\version.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Version Checking and File Installation Libraries 131795777515426052 0x746f0000 106496 C:\Windows\SysWOW64\userenv.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Userenv 131795777515327766 0x747d0000 40960 C:\Windows\SysWOW64\cryptbase.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base cryptographic API DLL 131795777515326697 0x747e0000 126976 C:\Windows\SysWOW64\sspicli.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Security Support Provider Interface 131795777515482316 0x74800000 151552 C:\Windows\SysWOW64\imm32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Multi-User Windows IMM32 API Client DLL 131795777515341101 0x74830000 917504 C:\Windows\SysWOW64\ucrtbase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795777515339815 0x74910000 2170880 C:\Windows\SysWOW64\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795777515351055 0x74b30000 53248 C:\Windows\SysWOW64\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795777515325414 0x74b60000 790528 C:\Windows\SysWOW64\rpcrt4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795777515346736 0x74c30000 1417216 C:\Windows\SysWOW64\gdi32full.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation GDI Client DLL 131795777515330858 0x74d90000 24576 C:\Windows\SysWOW64\psapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Process Status Helper 131795777515322779 0x74da0000 778240 C:\Windows\SysWOW64\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795777515352322 0x74e60000 557056 C:\Windows\SysWOW64\SHCore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795777524351432 0x74f80000 278528 C:\Windows\SysWOW64\wintrust.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation Microsoft Trust Verification APIs 131795777524349996 0x74fd0000 405504 C:\Windows\SysWOW64\ws2_32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation 32-разрядная библиотека Windows Socket 2.0 131795777515342564 0x75040000 282624 C:\Windows\SysWOW64\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795777524352750 0x751d0000 57344 C:\Windows\SysWOW64\msasn1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ASN.1 Runtime APIs 131795777515310300 0x751e0000 1708032 C:\Windows\SysWOW64\KernelBase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795777515324131 0x75390000 266240 C:\Windows\SysWOW64\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795777524354141 0x753e0000 1560576 C:\Windows\SysWOW64\crypt32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API32 криптографии 131795777515321247 0x75560000 487424 C:\Windows\SysWOW64\advapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795777515338333 0x756c0000 5693440 C:\Windows\SysWOW64\windows.storage.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API хранения Microsoft WinRT 131795777515343891 0x75c90000 286720 C:\Windows\SysWOW64\shlwapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека небольших программ оболочки 131795777515334745 0x75ce0000 20811776 C:\Windows\SysWOW64\shell32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Общая библиотека оболочки Windows 131795777515349559 0x774d0000 86016 C:\Windows\SysWOW64\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795777515353626 0x774f0000 61440 C:\Windows\SysWOW64\profapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Profile Basic API 131795777515348271 0x77560000 1437696 C:\Windows\SysWOW64\user32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795777515329268 0x776c0000 368640 C:\Windows\SysWOW64\bcryptprimitives.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation Windows Cryptographic Primitives Library 131795777524348384 0x77780000 503808 C:\Windows\SysWOW64\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795777524346680 0x77800000 606208 C:\Windows\SysWOW64\oleaut32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795777515378789 0x77ac0000 966656 C:\Windows\SysWOW64\ole32.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft OLE для Windows 131795777515345356 0x77bb0000 176128 C:\Windows\SysWOW64\gdi32.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation GDI Client DLL 131795777524340305 0x77be0000 937984 C:\Windows\SysWOW64\comdlg32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека общих диалоговых окон 131795777515336197 0x77cd0000 221184 C:\Windows\SysWOW64\cfgmgr32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Configuration Manager DLL 131795777524530922 0x77d10000 28672 C:\Windows\SysWOW64\nsi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation NSI User-mode interface DLL 131795777512642733 0x77d20000 1585152 C:\Windows\SysWOW64\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 131795777512642464 0x7ffad0270000 1908736 C:\Windows\System32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 103 12928 7744 57 00000000:0031f1da 131795777540701988 131795777572368143 0 0 Обязательная метка\Низкий обязательный уровень WIN-0UOTFKKVN1S\User browser.exe C:\Users\User\AppData\Local\Yandex\YandexBrowser\Application\browser.exe "C:\Users\User\AppData\Local\Yandex\YandexBrowser\Application\browser.exe" --type=renderer --enable-in-process-wmf-demuxer --field-trial-handle=1292,9555382311565764851,7120838982649204725,131072 --enable-ignition --disable-gpu-compositing --service-pipe-token=EF6B4169C61A7709F19FAC37385B88FF --lang=ru --user-id=32B2E0A1-3039-4C67-86BE-75A88EF21B54 --brand-id=yandex --partner-id=7924 --help-url=https://api.browser.yandex.ru/redirect/help/ --user-agent-info --translate-security-origin=https://translate.yandex.net --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --enable-instaserp --device-scale-factor=1 --num-raster-threads=1 --enable-compositor-image-animations --service-request-channel-token=EF6B4169C61A7709F19FAC37385B88FF --renderer-client-id=118 --mojo-platform-channel-handle=5600 /prefetch:1 YANDEX LLC 18.6.1.770 Yandex 131795777544816074 0x1000000 704512 C:\Windows\System32\kernel32.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795777540824769 0x10e0000 2519040 C:\Users\User\AppData\Local\Yandex\YandexBrowser\Application\browser.exe 18.6.1.770 YANDEX LLC Yandex 131795777544817293 0x5540000 1462272 C:\Windows\System32\user32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795777545695386 0x58720000 59748352 C:\Users\User\AppData\Local\Yandex\YandexBrowser\Application\18.6.1.770\browser_child.dll 18.6.1.770 YANDEX LLC Yandex 131795777544807438 0x5c020000 335872 C:\Windows\System32\wow64.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation Win32 Emulation on NT64 131795777544808477 0x5c080000 487424 C:\Windows\System32\wow64win.dll 10.0.14393.1884 (rs1_release.171101-1233) Microsoft Corporation Wow64 Console and Win32 API Logging 131795777544820274 0x5c100000 40960 C:\Windows\System32\wow64cpu.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation AMD64 Wow64 CPU 131795777547474848 0x6e8b0000 1859584 C:\Windows\SysWOW64\mfmp4srcsnk.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL источника и приемника MPEG4 Media Foundation 131795777547451922 0x6ef30000 647168 C:\Windows\SysWOW64\evr.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека DLL средства отображения видео 131795777547398829 0x6efd0000 458752 C:\Windows\SysWOW64\MSAudDecMFT.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Media Foundation Audio Decoders 131795777547412145 0x6f790000 1085440 C:\Windows\SysWOW64\mfperfhelper.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation MFPerf DLL 131795777547425421 0x6f8a0000 2220032 C:\Windows\SysWOW64\msmpeg2vdec.dll 10.0.14393.953 (rs1_release_inmarket.170303-1614) Microsoft Corporation Microsoft DTV-DVD Video Decoder 131795777547366131 0x6fac0000 1130496 C:\Windows\SysWOW64\mfplat.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Media Foundation Platform DLL 131795777547383954 0x6ff60000 172032 C:\Windows\SysWOW64\RTWorkQ.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL для WorkQueue реального времени 131795777544902779 0x70030000 593920 C:\Users\User\AppData\Local\Yandex\YandexBrowser\Application\18.6.1.770\browser_elf.dll 18.6.1.770 YANDEX LLC Yandex 131795777547050478 0x700d0000 434176 C:\Windows\SysWOW64\winspool.drv 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Драйвер диспетчера очереди Windows 131795777547101720 0x70340000 536576 C:\Windows\SysWOW64\dxgi.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation DirectX Graphics Infrastructure 131795777547089255 0x703d0000 2056192 C:\Windows\SysWOW64\DWrite.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Службы Microsoft DirectX Typography 131795777547163695 0x707d0000 86016 C:\Windows\SysWOW64\samcli.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Security Accounts Manager Client DLL 131795777547039183 0x70a20000 94208 C:\Windows\SysWOW64\usp10.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Uniscribe Unicode script processor 131795777547181182 0x70ca0000 45056 C:\Windows\SysWOW64\netutils.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API Helpers DLL 131795777547026978 0x70fd0000 1331200 C:\Windows\SysWOW64\dbghelp.dll 10.0.14321.1024 (rs1_release.160715-1616) Microsoft Windows Image Helper 131795777545741840 0x71140000 77824 C:\Windows\SysWOW64\netapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API DLL 131795777547147720 0x725e0000 2273280 C:\Windows\SysWOW64\iertutil.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служебная программа времени выполнения для Internet Explorer 131795777546997974 0x728e0000 1372160 C:\Windows\SysWOW64\propsys.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Система страниц свойств (Майкрософт) 131795777545424927 0x72af0000 655360 C:\Windows\SysWOW64\winhttp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Службы HTTP Windows 131795777547076749 0x72cc0000 1658880 C:\Windows\SysWOW64\urlmon.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширения OLE32 для Win32 131795777547113614 0x73ac0000 81920 C:\Windows\SysWOW64\dhcpcsvc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служба DHCP-клиента 131795777547011732 0x73ae0000 40960 C:\Windows\SysWOW64\secur32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Security Support Provider Interface 131795777547062273 0x73f00000 192512 C:\Windows\SysWOW64\IPHLPAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API вспомогательного приложения IP 131795777547131578 0x74190000 110592 C:\Windows\SysWOW64\bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795777547437013 0x741b0000 77824 C:\Windows\SysWOW64\cryptsp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Cryptographic Service Provider API 131795777545453020 0x741f0000 143360 C:\Windows\SysWOW64\winmmbase.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base Multimedia Extension API DLL 131795777544956879 0x74230000 147456 C:\Windows\SysWOW64\winmm.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation MCI API DLL 131795777545724538 0x744d0000 2138112 C:\Windows\WinSxS\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.14393.953_none_89c2555adb023171\comctl32.dll 6.10 (rs1_release_inmarket.170303-1614) Microsoft Corporation Библиотека элементов управления взаимодействия с пользователем 131795777544945423 0x746e0000 32768 C:\Windows\SysWOW64\version.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Version Checking and File Installation Libraries 131795777544971328 0x746f0000 106496 C:\Windows\SysWOW64\userenv.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Userenv 131795777544856995 0x747d0000 40960 C:\Windows\SysWOW64\cryptbase.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base cryptographic API DLL 131795777544855901 0x747e0000 126976 C:\Windows\SysWOW64\sspicli.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Security Support Provider Interface 131795777545476966 0x74800000 151552 C:\Windows\SysWOW64\imm32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Multi-User Windows IMM32 API Client DLL 131795777544877442 0x74830000 917504 C:\Windows\SysWOW64\ucrtbase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795777544875993 0x74910000 2170880 C:\Windows\SysWOW64\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795777544888660 0x74b30000 53248 C:\Windows\SysWOW64\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795777544854319 0x74b60000 790528 C:\Windows\SysWOW64\rpcrt4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795777544883634 0x74c30000 1417216 C:\Windows\SysWOW64\gdi32full.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation GDI Client DLL 131795777544859849 0x74d90000 24576 C:\Windows\SysWOW64\psapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Process Status Helper 131795777544851504 0x74da0000 778240 C:\Windows\SysWOW64\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795777544889990 0x74e60000 557056 C:\Windows\SysWOW64\SHCore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795777545711131 0x74f80000 278528 C:\Windows\SysWOW64\wintrust.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation Microsoft Trust Verification APIs 131795777545709724 0x74fd0000 405504 C:\Windows\SysWOW64\ws2_32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation 32-разрядная библиотека Windows Socket 2.0 131795777544879143 0x75040000 282624 C:\Windows\SysWOW64\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795777545712278 0x751d0000 57344 C:\Windows\SysWOW64\msasn1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ASN.1 Runtime APIs 131795777544828669 0x751e0000 1708032 C:\Windows\SysWOW64\KernelBase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795777544852958 0x75390000 266240 C:\Windows\SysWOW64\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795777545713874 0x753e0000 1560576 C:\Windows\SysWOW64\crypt32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API32 криптографии 131795777544844417 0x75560000 487424 C:\Windows\SysWOW64\advapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795777544874425 0x756c0000 5693440 C:\Windows\SysWOW64\windows.storage.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API хранения Microsoft WinRT 131795777544880528 0x75c90000 286720 C:\Windows\SysWOW64\shlwapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека небольших программ оболочки 131795777544863758 0x75ce0000 20811776 C:\Windows\SysWOW64\shell32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Общая библиотека оболочки Windows 131795777544886945 0x774d0000 86016 C:\Windows\SysWOW64\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795777544891320 0x774f0000 61440 C:\Windows\SysWOW64\profapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Profile Basic API 131795777544885513 0x77560000 1437696 C:\Windows\SysWOW64\user32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795777544858181 0x776c0000 368640 C:\Windows\SysWOW64\bcryptprimitives.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation Windows Cryptographic Primitives Library 131795777545707510 0x77780000 503808 C:\Windows\SysWOW64\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795777545706130 0x77800000 606208 C:\Windows\SysWOW64\oleaut32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795777544920230 0x77ac0000 966656 C:\Windows\SysWOW64\ole32.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft OLE для Windows 131795777544881947 0x77bb0000 176128 C:\Windows\SysWOW64\gdi32.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation GDI Client DLL 131795777545700210 0x77be0000 937984 C:\Windows\SysWOW64\comdlg32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека общих диалоговых окон 131795777544871942 0x77cd0000 221184 C:\Windows\SysWOW64\cfgmgr32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Configuration Manager DLL 131795777547117462 0x77d10000 28672 C:\Windows\SysWOW64\nsi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation NSI User-mode interface DLL 131795777540825345 0x77d20000 1585152 C:\Windows\SysWOW64\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 131795777540825087 0x7ffad0270000 1908736 C:\Windows\System32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 104 12696 7744 57 00000000:0031f1da 131795777567759490 0 0 0 Обязательная метка\Низкий обязательный уровень WIN-0UOTFKKVN1S\User browser.exe C:\Users\User\AppData\Local\Yandex\YandexBrowser\Application\browser.exe "C:\Users\User\AppData\Local\Yandex\YandexBrowser\Application\browser.exe" --type=renderer --enable-in-process-wmf-demuxer --field-trial-handle=1292,9555382311565764851,7120838982649204725,131072 --enable-ignition --disable-gpu-compositing --service-pipe-token=E83DB721798C8A70C76CD26F6F4EE1BC --lang=ru --user-id=32B2E0A1-3039-4C67-86BE-75A88EF21B54 --brand-id=yandex --partner-id=7924 --help-url=https://api.browser.yandex.ru/redirect/help/ --user-agent-info --translate-security-origin=https://translate.yandex.net --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --enable-instaserp --device-scale-factor=1 --num-raster-threads=1 --enable-compositor-image-animations --service-request-channel-token=E83DB721798C8A70C76CD26F6F4EE1BC --renderer-client-id=119 --mojo-platform-channel-handle=7052 /prefetch:1 YANDEX LLC 18.6.1.770 Yandex 131795777567991690 0xc00000 1462272 C:\Windows\System32\user32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795777567961139 0x10e0000 2519040 C:\Users\User\AppData\Local\Yandex\YandexBrowser\Application\browser.exe 18.6.1.770 YANDEX LLC Yandex 131795777569452751 0x58720000 59748352 C:\Users\User\AppData\Local\Yandex\YandexBrowser\Application\18.6.1.770\browser_child.dll 18.6.1.770 YANDEX LLC Yandex 131795777567980184 0x5c020000 335872 C:\Windows\System32\wow64.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation Win32 Emulation on NT64 131795777567981270 0x5c080000 487424 C:\Windows\System32\wow64win.dll 10.0.14393.1884 (rs1_release.171101-1233) Microsoft Corporation Wow64 Console and Win32 API Logging 131795777567994943 0x5c100000 40960 C:\Windows\System32\wow64cpu.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation AMD64 Wow64 CPU 131795777570994535 0x6e8b0000 1859584 C:\Windows\SysWOW64\mfmp4srcsnk.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL источника и приемника MPEG4 Media Foundation 131795777570968696 0x6ef30000 647168 C:\Windows\SysWOW64\evr.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека DLL средства отображения видео 131795777570908362 0x6efd0000 458752 C:\Windows\SysWOW64\MSAudDecMFT.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Media Foundation Audio Decoders 131795777570920904 0x6f790000 1085440 C:\Windows\SysWOW64\mfperfhelper.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation MFPerf DLL 131795777570943637 0x6f8a0000 2220032 C:\Windows\SysWOW64\msmpeg2vdec.dll 10.0.14393.953 (rs1_release_inmarket.170303-1614) Microsoft Corporation Microsoft DTV-DVD Video Decoder 131795777570874151 0x6fac0000 1130496 C:\Windows\SysWOW64\mfplat.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Media Foundation Platform DLL 131795777570891841 0x6ff60000 172032 C:\Windows\SysWOW64\RTWorkQ.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL для WorkQueue реального времени 131795777568100773 0x70030000 593920 C:\Users\User\AppData\Local\Yandex\YandexBrowser\Application\18.6.1.770\browser_elf.dll 18.6.1.770 YANDEX LLC Yandex 131795777570569484 0x700d0000 434176 C:\Windows\SysWOW64\winspool.drv 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Драйвер диспетчера очереди Windows 131795777570619251 0x70340000 536576 C:\Windows\SysWOW64\dxgi.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation DirectX Graphics Infrastructure 131795777570607590 0x703d0000 2056192 C:\Windows\SysWOW64\DWrite.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Службы Microsoft DirectX Typography 131795777570676211 0x707d0000 86016 C:\Windows\SysWOW64\samcli.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Security Accounts Manager Client DLL 131795777570557202 0x70a20000 94208 C:\Windows\SysWOW64\usp10.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Uniscribe Unicode script processor 131795777570691164 0x70ca0000 45056 C:\Windows\SysWOW64\netutils.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API Helpers DLL 131795777570539079 0x70fd0000 1331200 C:\Windows\SysWOW64\dbghelp.dll 10.0.14321.1024 (rs1_release.160715-1616) Microsoft Windows Image Helper 131795777569494420 0x71140000 77824 C:\Windows\SysWOW64\netapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API DLL 131795777570658737 0x725e0000 2273280 C:\Windows\SysWOW64\iertutil.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служебная программа времени выполнения для Internet Explorer 131795777569526517 0x728e0000 1372160 C:\Windows\SysWOW64\propsys.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Система страниц свойств (Майкрософт) 131795777569154123 0x72af0000 655360 C:\Windows\SysWOW64\winhttp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Службы HTTP Windows 131795777570594964 0x72cc0000 1658880 C:\Windows\SysWOW64\urlmon.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширения OLE32 для Win32 131795777570630821 0x73ac0000 81920 C:\Windows\SysWOW64\dhcpcsvc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служба DHCP-клиента 131795777570523174 0x73ae0000 40960 C:\Windows\SysWOW64\secur32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Security Support Provider Interface 131795777570582120 0x73f00000 192512 C:\Windows\SysWOW64\IPHLPAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API вспомогательного приложения IP 131795777570646486 0x74190000 110592 C:\Windows\SysWOW64\bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795777570953652 0x741b0000 77824 C:\Windows\SysWOW64\cryptsp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Cryptographic Service Provider API 131795777569213807 0x741f0000 143360 C:\Windows\SysWOW64\winmmbase.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base Multimedia Extension API DLL 131795777568156054 0x74230000 147456 C:\Windows\SysWOW64\winmm.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation MCI API DLL 131795777569481011 0x744d0000 2138112 C:\Windows\WinSxS\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.14393.953_none_89c2555adb023171\comctl32.dll 6.10 (rs1_release_inmarket.170303-1614) Microsoft Corporation Библиотека элементов управления взаимодействия с пользователем 131795777568142933 0x746e0000 32768 C:\Windows\SysWOW64\version.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Version Checking and File Installation Libraries 131795777568179155 0x746f0000 106496 C:\Windows\SysWOW64\userenv.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Userenv 131795777568043561 0x747d0000 40960 C:\Windows\SysWOW64\cryptbase.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base cryptographic API DLL 131795777568042430 0x747e0000 126976 C:\Windows\SysWOW64\sspicli.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Security Support Provider Interface 131795777569239058 0x74800000 151552 C:\Windows\SysWOW64\imm32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Multi-User Windows IMM32 API Client DLL 131795777568075566 0x74830000 917504 C:\Windows\SysWOW64\ucrtbase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795777568073430 0x74910000 2170880 C:\Windows\SysWOW64\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795777568086784 0x74b30000 53248 C:\Windows\SysWOW64\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795777568041126 0x74b60000 790528 C:\Windows\SysWOW64\rpcrt4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795777568081914 0x74c30000 1417216 C:\Windows\SysWOW64\gdi32full.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation GDI Client DLL 131795777568046844 0x74d90000 24576 C:\Windows\SysWOW64\psapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Process Status Helper 131795777568038347 0x74da0000 778240 C:\Windows\SysWOW64\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795777568088134 0x74e60000 557056 C:\Windows\SysWOW64\SHCore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795777569468247 0x74f80000 278528 C:\Windows\SysWOW64\wintrust.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation Microsoft Trust Verification APIs 131795777569466798 0x74fd0000 405504 C:\Windows\SysWOW64\ws2_32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation 32-разрядная библиотека Windows Socket 2.0 131795777568077279 0x75040000 282624 C:\Windows\SysWOW64\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795777569469408 0x751d0000 57344 C:\Windows\SysWOW64\msasn1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ASN.1 Runtime APIs 131795777568024100 0x751e0000 1708032 C:\Windows\SysWOW64\KernelBase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795777568039823 0x75390000 266240 C:\Windows\SysWOW64\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795777569470854 0x753e0000 1560576 C:\Windows\SysWOW64\crypt32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API32 криптографии 131795777568036731 0x75560000 487424 C:\Windows\SysWOW64\advapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795777568054568 0x756c0000 5693440 C:\Windows\SysWOW64\windows.storage.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API хранения Microsoft WinRT 131795777568078714 0x75c90000 286720 C:\Windows\SysWOW64\shlwapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека небольших программ оболочки 131795777568050811 0x75ce0000 20811776 C:\Windows\SysWOW64\shell32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Общая библиотека оболочки Windows 131795777568084892 0x774d0000 86016 C:\Windows\SysWOW64\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795777568089486 0x774f0000 61440 C:\Windows\SysWOW64\profapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Profile Basic API 131795777568083413 0x77560000 1437696 C:\Windows\SysWOW64\user32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795777568044758 0x776c0000 368640 C:\Windows\SysWOW64\bcryptprimitives.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation Windows Cryptographic Primitives Library 131795777569464930 0x77780000 503808 C:\Windows\SysWOW64\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795777569463567 0x77800000 606208 C:\Windows\SysWOW64\oleaut32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795777568116745 0x77ac0000 966656 C:\Windows\SysWOW64\ole32.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft OLE для Windows 131795777568080182 0x77bb0000 176128 C:\Windows\SysWOW64\gdi32.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation GDI Client DLL 131795777569457550 0x77be0000 937984 C:\Windows\SysWOW64\comdlg32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека общих диалоговых окон 131795777568052363 0x77cd0000 221184 C:\Windows\SysWOW64\cfgmgr32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Configuration Manager DLL 131795777570632192 0x77d10000 28672 C:\Windows\SysWOW64\nsi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation NSI User-mode interface DLL 131795777567961904 0x77d20000 1585152 C:\Windows\SysWOW64\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 131795777567961630 0x7ffad0270000 1908736 C:\Windows\System32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 105 3772 7744 57 00000000:0031f1da 131795777578913885 131795777634085840 0 0 Обязательная метка\Низкий обязательный уровень WIN-0UOTFKKVN1S\User browser.exe C:\Users\User\AppData\Local\Yandex\YandexBrowser\Application\browser.exe "C:\Users\User\AppData\Local\Yandex\YandexBrowser\Application\browser.exe" --type=utility --field-trial-handle=1292,9555382311565764851,7120838982649204725,131072 --lang=ru --service-sandbox-type=utility --user-id=32B2E0A1-3039-4C67-86BE-75A88EF21B54 --brand-id=yandex --partner-id=7924 --service-request-channel-token=ABCF409A7678936923419CA50C501EDC --process-name="Data Decoder Service" --mojo-platform-channel-handle=744 --ignored=" --type=renderer " /prefetch:8 YANDEX LLC 18.6.1.770 Yandex 131795777579128753 0xe30000 1462272 C:\Windows\System32\user32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795777579111989 0x10e0000 2519040 C:\Users\User\AppData\Local\Yandex\YandexBrowser\Application\browser.exe 18.6.1.770 YANDEX LLC Yandex 131795777580914723 0x58720000 59748352 C:\Users\User\AppData\Local\Yandex\YandexBrowser\Application\18.6.1.770\browser_child.dll 18.6.1.770 YANDEX LLC Yandex 131795777579118940 0x5c020000 335872 C:\Windows\System32\wow64.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation Win32 Emulation on NT64 131795777579120176 0x5c080000 487424 C:\Windows\System32\wow64win.dll 10.0.14393.1884 (rs1_release.171101-1233) Microsoft Corporation Wow64 Console and Win32 API Logging 131795777579131942 0x5c100000 40960 C:\Windows\System32\wow64cpu.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation AMD64 Wow64 CPU 131795777579219043 0x70030000 593920 C:\Users\User\AppData\Local\Yandex\YandexBrowser\Application\18.6.1.770\browser_elf.dll 18.6.1.770 YANDEX LLC Yandex 131795777582176680 0x700d0000 434176 C:\Windows\SysWOW64\winspool.drv 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Драйвер диспетчера очереди Windows 131795777582226861 0x70340000 536576 C:\Windows\SysWOW64\dxgi.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation DirectX Graphics Infrastructure 131795777582214961 0x703d0000 2056192 C:\Windows\SysWOW64\DWrite.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Службы Microsoft DirectX Typography 131795777582297546 0x707d0000 86016 C:\Windows\SysWOW64\samcli.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Security Accounts Manager Client DLL 131795777582164864 0x70a20000 94208 C:\Windows\SysWOW64\usp10.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Uniscribe Unicode script processor 131795777582309468 0x70ca0000 45056 C:\Windows\SysWOW64\netutils.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API Helpers DLL 131795777582100365 0x70fd0000 1331200 C:\Windows\SysWOW64\dbghelp.dll 10.0.14321.1024 (rs1_release.160715-1616) Microsoft Windows Image Helper 131795777580956121 0x71140000 77824 C:\Windows\SysWOW64\netapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API DLL 131795777582281413 0x725e0000 2273280 C:\Windows\SysWOW64\iertutil.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служебная программа времени выполнения для Internet Explorer 131795777580978864 0x728e0000 1372160 C:\Windows\SysWOW64\propsys.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Система страниц свойств (Майкрософт) 131795777579935579 0x72af0000 655360 C:\Windows\SysWOW64\winhttp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Службы HTTP Windows 131795777582202045 0x72cc0000 1658880 C:\Windows\SysWOW64\urlmon.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширения OLE32 для Win32 131795777582242381 0x73ac0000 81920 C:\Windows\SysWOW64\dhcpcsvc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служба DHCP-клиента 131795777582086365 0x73ae0000 40960 C:\Windows\SysWOW64\secur32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Security Support Provider Interface 131795777582188438 0x73f00000 192512 C:\Windows\SysWOW64\IPHLPAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API вспомогательного приложения IP 131795777582258004 0x74190000 110592 C:\Windows\SysWOW64\bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795777579955314 0x741f0000 143360 C:\Windows\SysWOW64\winmmbase.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base Multimedia Extension API DLL 131795777579287925 0x74230000 147456 C:\Windows\SysWOW64\winmm.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation MCI API DLL 131795777580942792 0x744d0000 2138112 C:\Windows\WinSxS\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.14393.953_none_89c2555adb023171\comctl32.dll 6.10 (rs1_release_inmarket.170303-1614) Microsoft Corporation Библиотека элементов управления взаимодействия с пользователем 131795777579276056 0x746e0000 32768 C:\Windows\SysWOW64\version.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Version Checking and File Installation Libraries 131795777579299716 0x746f0000 106496 C:\Windows\SysWOW64\userenv.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Userenv 131795777579160232 0x747d0000 40960 C:\Windows\SysWOW64\cryptbase.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base cryptographic API DLL 131795777579159124 0x747e0000 126976 C:\Windows\SysWOW64\sspicli.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Security Support Provider Interface 131795777579983324 0x74800000 151552 C:\Windows\SysWOW64\imm32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Multi-User Windows IMM32 API Client DLL 131795777579173778 0x74830000 917504 C:\Windows\SysWOW64\ucrtbase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795777579172440 0x74910000 2170880 C:\Windows\SysWOW64\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795777579184306 0x74b30000 53248 C:\Windows\SysWOW64\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795777579157794 0x74b60000 790528 C:\Windows\SysWOW64\rpcrt4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795777579179147 0x74c30000 1417216 C:\Windows\SysWOW64\gdi32full.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation GDI Client DLL 131795777579163189 0x74d90000 24576 C:\Windows\SysWOW64\psapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Process Status Helper 131795777579153905 0x74da0000 778240 C:\Windows\SysWOW64\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795777579185555 0x74e60000 557056 C:\Windows\SysWOW64\SHCore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795777580930349 0x74f80000 278528 C:\Windows\SysWOW64\wintrust.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation Microsoft Trust Verification APIs 131795777580928881 0x74fd0000 405504 C:\Windows\SysWOW64\ws2_32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation 32-разрядная библиотека Windows Socket 2.0 131795777579175221 0x75040000 282624 C:\Windows\SysWOW64\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795777580931410 0x751d0000 57344 C:\Windows\SysWOW64\msasn1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ASN.1 Runtime APIs 131795777579141102 0x751e0000 1708032 C:\Windows\SysWOW64\KernelBase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795777579155226 0x75390000 266240 C:\Windows\SysWOW64\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795777580932676 0x753e0000 1560576 C:\Windows\SysWOW64\crypt32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API32 криптографии 131795777579152298 0x75560000 487424 C:\Windows\SysWOW64\advapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795777579171004 0x756c0000 5693440 C:\Windows\SysWOW64\windows.storage.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API хранения Microsoft WinRT 131795777579176504 0x75c90000 286720 C:\Windows\SysWOW64\shlwapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека небольших программ оболочки 131795777579167353 0x75ce0000 20811776 C:\Windows\SysWOW64\shell32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Общая библиотека оболочки Windows 131795777579182821 0x774d0000 86016 C:\Windows\SysWOW64\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795777579186833 0x774f0000 61440 C:\Windows\SysWOW64\profapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Profile Basic API 131795777579180890 0x77560000 1437696 C:\Windows\SysWOW64\user32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795777579161706 0x776c0000 368640 C:\Windows\SysWOW64\bcryptprimitives.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation Windows Cryptographic Primitives Library 131795777580927138 0x77780000 503808 C:\Windows\SysWOW64\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795777580925844 0x77800000 606208 C:\Windows\SysWOW64\oleaut32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795777579235572 0x77ac0000 966656 C:\Windows\SysWOW64\ole32.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft OLE для Windows 131795777579177837 0x77bb0000 176128 C:\Windows\SysWOW64\gdi32.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation GDI Client DLL 131795777580919815 0x77be0000 937984 C:\Windows\SysWOW64\comdlg32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека общих диалоговых окон 131795777579168782 0x77cd0000 221184 C:\Windows\SysWOW64\cfgmgr32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Configuration Manager DLL 131795777582243780 0x77d10000 28672 C:\Windows\SysWOW64\nsi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation NSI User-mode interface DLL 131795777579113116 0x77d20000 1585152 C:\Windows\SysWOW64\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 131795777579112823 0x7ffad0270000 1908736 C:\Windows\System32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 106 5556 7744 57 00000000:0031f1da 131795777595302537 0 0 0 Обязательная метка\Низкий обязательный уровень WIN-0UOTFKKVN1S\User browser.exe C:\Users\User\AppData\Local\Yandex\YandexBrowser\Application\browser.exe "C:\Users\User\AppData\Local\Yandex\YandexBrowser\Application\browser.exe" --type=renderer --enable-in-process-wmf-demuxer --field-trial-handle=1292,9555382311565764851,7120838982649204725,131072 --enable-ignition --disable-gpu-compositing --service-pipe-token=3ADFA2396247AD5E547F61590603D06D --lang=ru --user-id=32B2E0A1-3039-4C67-86BE-75A88EF21B54 --brand-id=yandex --partner-id=7924 --help-url=https://api.browser.yandex.ru/redirect/help/ --user-agent-info --translate-security-origin=https://translate.yandex.net --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --enable-instaserp --device-scale-factor=1 --num-raster-threads=1 --enable-compositor-image-animations --service-request-channel-token=3ADFA2396247AD5E547F61590603D06D --renderer-client-id=121 --mojo-platform-channel-handle=6636 /prefetch:1 YANDEX LLC 18.6.1.770 Yandex 131795777595490187 0x1020000 704512 C:\Windows\System32\kernel32.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795777595475498 0x10e0000 2519040 C:\Users\User\AppData\Local\Yandex\YandexBrowser\Application\browser.exe 18.6.1.770 YANDEX LLC Yandex 131795777595491301 0x5550000 1462272 C:\Windows\System32\user32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795777596381097 0x58720000 59748352 C:\Users\User\AppData\Local\Yandex\YandexBrowser\Application\18.6.1.770\browser_child.dll 18.6.1.770 YANDEX LLC Yandex 131795777595481485 0x5c020000 335872 C:\Windows\System32\wow64.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation Win32 Emulation on NT64 131795777595482474 0x5c080000 487424 C:\Windows\System32\wow64win.dll 10.0.14393.1884 (rs1_release.171101-1233) Microsoft Corporation Wow64 Console and Win32 API Logging 131795777595494304 0x5c100000 40960 C:\Windows\System32\wow64cpu.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation AMD64 Wow64 CPU 131795777597543015 0x6e8b0000 1859584 C:\Windows\SysWOW64\mfmp4srcsnk.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL источника и приемника MPEG4 Media Foundation 131795777597521210 0x6ef30000 647168 C:\Windows\SysWOW64\evr.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека DLL средства отображения видео 131795777597472595 0x6efd0000 458752 C:\Windows\SysWOW64\MSAudDecMFT.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Media Foundation Audio Decoders 131795777597484525 0x6f790000 1085440 C:\Windows\SysWOW64\mfperfhelper.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation MFPerf DLL 131795777597497517 0x6f8a0000 2220032 C:\Windows\SysWOW64\msmpeg2vdec.dll 10.0.14393.953 (rs1_release_inmarket.170303-1614) Microsoft Corporation Microsoft DTV-DVD Video Decoder 131795777597428793 0x6fac0000 1130496 C:\Windows\SysWOW64\mfplat.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Media Foundation Platform DLL 131795777597448444 0x6ff60000 172032 C:\Windows\SysWOW64\RTWorkQ.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL для WorkQueue реального времени 131795777595565558 0x70030000 593920 C:\Users\User\AppData\Local\Yandex\YandexBrowser\Application\18.6.1.770\browser_elf.dll 18.6.1.770 YANDEX LLC Yandex 131795777597103476 0x700d0000 434176 C:\Windows\SysWOW64\winspool.drv 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Драйвер диспетчера очереди Windows 131795777597165296 0x70340000 536576 C:\Windows\SysWOW64\dxgi.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation DirectX Graphics Infrastructure 131795777597153510 0x703d0000 2056192 C:\Windows\SysWOW64\DWrite.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Службы Microsoft DirectX Typography 131795777597221087 0x707d0000 86016 C:\Windows\SysWOW64\samcli.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Security Accounts Manager Client DLL 131795777597072535 0x70a20000 94208 C:\Windows\SysWOW64\usp10.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Uniscribe Unicode script processor 131795777597233493 0x70ca0000 45056 C:\Windows\SysWOW64\netutils.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API Helpers DLL 131795777597059294 0x70fd0000 1331200 C:\Windows\SysWOW64\dbghelp.dll 10.0.14321.1024 (rs1_release.160715-1616) Microsoft Windows Image Helper 131795777596424202 0x71140000 77824 C:\Windows\SysWOW64\netapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API DLL 131795777597205195 0x725e0000 2273280 C:\Windows\SysWOW64\iertutil.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служебная программа времени выполнения для Internet Explorer 131795777596436120 0x728e0000 1372160 C:\Windows\SysWOW64\propsys.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Система страниц свойств (Майкрософт) 131795777596128973 0x72af0000 655360 C:\Windows\SysWOW64\winhttp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Службы HTTP Windows 131795777597128037 0x72cc0000 1658880 C:\Windows\SysWOW64\urlmon.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширения OLE32 для Win32 131795777597177209 0x73ac0000 81920 C:\Windows\SysWOW64\dhcpcsvc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служба DHCP-клиента 131795777597044137 0x73ae0000 40960 C:\Windows\SysWOW64\secur32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Security Support Provider Interface 131795777597116160 0x73f00000 192512 C:\Windows\SysWOW64\IPHLPAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API вспомогательного приложения IP 131795777597192860 0x74190000 110592 C:\Windows\SysWOW64\bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795777597506812 0x741b0000 77824 C:\Windows\SysWOW64\cryptsp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Cryptographic Service Provider API 131795777596148547 0x741f0000 143360 C:\Windows\SysWOW64\winmmbase.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base Multimedia Extension API DLL 131795777595627397 0x74230000 147456 C:\Windows\SysWOW64\winmm.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation MCI API DLL 131795777596410831 0x744d0000 2138112 C:\Windows\WinSxS\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.14393.953_none_89c2555adb023171\comctl32.dll 6.10 (rs1_release_inmarket.170303-1614) Microsoft Corporation Библиотека элементов управления взаимодействия с пользователем 131795777595610560 0x746e0000 32768 C:\Windows\SysWOW64\version.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Version Checking and File Installation Libraries 131795777595638942 0x746f0000 106496 C:\Windows\SysWOW64\userenv.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Userenv 131795777595529014 0x747d0000 40960 C:\Windows\SysWOW64\cryptbase.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base cryptographic API DLL 131795777595527983 0x747e0000 126976 C:\Windows\SysWOW64\sspicli.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Security Support Provider Interface 131795777596182171 0x74800000 151552 C:\Windows\SysWOW64\imm32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Multi-User Windows IMM32 API Client DLL 131795777595541526 0x74830000 917504 C:\Windows\SysWOW64\ucrtbase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795777595540326 0x74910000 2170880 C:\Windows\SysWOW64\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795777595551866 0x74b30000 53248 C:\Windows\SysWOW64\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795777595526606 0x74b60000 790528 C:\Windows\SysWOW64\rpcrt4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795777595547732 0x74c30000 1417216 C:\Windows\SysWOW64\gdi32full.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation GDI Client DLL 131795777595531563 0x74d90000 24576 C:\Windows\SysWOW64\psapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Process Status Helper 131795777595524005 0x74da0000 778240 C:\Windows\SysWOW64\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795777595553384 0x74e60000 557056 C:\Windows\SysWOW64\SHCore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795777596396507 0x74f80000 278528 C:\Windows\SysWOW64\wintrust.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation Microsoft Trust Verification APIs 131795777596394953 0x74fd0000 405504 C:\Windows\SysWOW64\ws2_32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation 32-разрядная библиотека Windows Socket 2.0 131795777595543299 0x75040000 282624 C:\Windows\SysWOW64\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795777596397607 0x751d0000 57344 C:\Windows\SysWOW64\msasn1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ASN.1 Runtime APIs 131795777595508927 0x751e0000 1708032 C:\Windows\SysWOW64\KernelBase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795777595525398 0x75390000 266240 C:\Windows\SysWOW64\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795777596398892 0x753e0000 1560576 C:\Windows\SysWOW64\crypt32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API32 криптографии 131795777595522182 0x75560000 487424 C:\Windows\SysWOW64\advapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795777595538927 0x756c0000 5693440 C:\Windows\SysWOW64\windows.storage.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API хранения Microsoft WinRT 131795777595544568 0x75c90000 286720 C:\Windows\SysWOW64\shlwapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека небольших программ оболочки 131795777595535397 0x75ce0000 20811776 C:\Windows\SysWOW64\shell32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Общая библиотека оболочки Windows 131795777595550455 0x774d0000 86016 C:\Windows\SysWOW64\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795777595554628 0x774f0000 61440 C:\Windows\SysWOW64\profapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Profile Basic API 131795777595549128 0x77560000 1437696 C:\Windows\SysWOW64\user32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795777595530150 0x776c0000 368640 C:\Windows\SysWOW64\bcryptprimitives.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation Windows Cryptographic Primitives Library 131795777596393437 0x77780000 503808 C:\Windows\SysWOW64\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795777596392132 0x77800000 606208 C:\Windows\SysWOW64\oleaut32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795777595583766 0x77ac0000 966656 C:\Windows\SysWOW64\ole32.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft OLE для Windows 131795777595545878 0x77bb0000 176128 C:\Windows\SysWOW64\gdi32.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation GDI Client DLL 131795777596385979 0x77be0000 937984 C:\Windows\SysWOW64\comdlg32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека общих диалоговых окон 131795777595536930 0x77cd0000 221184 C:\Windows\SysWOW64\cfgmgr32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Configuration Manager DLL 131795777597178434 0x77d10000 28672 C:\Windows\SysWOW64\nsi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation NSI User-mode interface DLL 131795777595476066 0x77d20000 1585152 C:\Windows\SysWOW64\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 131795777595475814 0x7ffad0270000 1908736 C:\Windows\System32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 107 12560 7744 57 00000000:0031f1da 131795777638339022 0 0 0 Обязательная метка\Низкий обязательный уровень WIN-0UOTFKKVN1S\User browser.exe C:\Users\User\AppData\Local\Yandex\YandexBrowser\Application\browser.exe "C:\Users\User\AppData\Local\Yandex\YandexBrowser\Application\browser.exe" --type=utility --field-trial-handle=1292,9555382311565764851,7120838982649204725,131072 --lang=ru --service-sandbox-type=utility --utility-allowed-dir="C:\Users\User\AppData\Local\Yandex\YandexBrowser\User Data\file_rating" --utility-enable-file-rating --user-id=32B2E0A1-3039-4C67-86BE-75A88EF21B54 --brand-id=yandex --partner-id=7924 --service-request-channel-token=641C5D89318E923EF94DCE862505059D --process-name="Антивирусная проверка загруженных файлов" --mojo-platform-channel-handle=6132 --ignored=" --type=renderer " /prefetch:8 YANDEX LLC 18.6.1.770 Yandex 131795777638514999 0x9a0000 1462272 C:\Windows\System32\user32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795777638499252 0x10e0000 2519040 C:\Users\User\AppData\Local\Yandex\YandexBrowser\Application\browser.exe 18.6.1.770 YANDEX LLC Yandex 131795777640777675 0x58720000 59748352 C:\Users\User\AppData\Local\Yandex\YandexBrowser\Application\18.6.1.770\browser_child.dll 18.6.1.770 YANDEX LLC Yandex 131795777638505336 0x5c020000 335872 C:\Windows\System32\wow64.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation Win32 Emulation on NT64 131795777638506616 0x5c080000 487424 C:\Windows\System32\wow64win.dll 10.0.14393.1884 (rs1_release.171101-1233) Microsoft Corporation Wow64 Console and Win32 API Logging 131795777638520771 0x5c100000 40960 C:\Windows\System32\wow64cpu.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation AMD64 Wow64 CPU 131795777643013198 0x68970000 1605632 C:\Users\User\AppData\Local\Yandex\YandexBrowser\Application\18.6.1.770\7z.dll 16.04 Igor Pavlov 7z Plugin 131795777644063584 0x6cea0000 741376 C:\Users\User\AppData\Local\Yandex\YandexBrowser\Application\18.6.1.770\unpacki.dll 131795777644499194 0x6d050000 188416 C:\Users\User\AppData\Local\Yandex\YandexBrowser\Application\18.6.1.770\ph.dll 1.0.0.3 Yandex LLC PH 131795777638678022 0x70030000 593920 C:\Users\User\AppData\Local\Yandex\YandexBrowser\Application\18.6.1.770\browser_elf.dll 18.6.1.770 YANDEX LLC Yandex 131795777641007171 0x700d0000 434176 C:\Windows\SysWOW64\winspool.drv 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Драйвер диспетчера очереди Windows 131795777641094369 0x70340000 536576 C:\Windows\SysWOW64\dxgi.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation DirectX Graphics Infrastructure 131795777641078940 0x703d0000 2056192 C:\Windows\SysWOW64\DWrite.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Службы Microsoft DirectX Typography 131795777641162760 0x707d0000 86016 C:\Windows\SysWOW64\samcli.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Security Accounts Manager Client DLL 131795777640993878 0x70a20000 94208 C:\Windows\SysWOW64\usp10.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Uniscribe Unicode script processor 131795777641193425 0x70ca0000 45056 C:\Windows\SysWOW64\netutils.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API Helpers DLL 131795777640980953 0x70fd0000 1331200 C:\Windows\SysWOW64\dbghelp.dll 10.0.14321.1024 (rs1_release.160715-1616) Microsoft Windows Image Helper 131795777640934358 0x71140000 77824 C:\Windows\SysWOW64\netapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API DLL 131795777641144289 0x725e0000 2273280 C:\Windows\SysWOW64\iertutil.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служебная программа времени выполнения для Internet Explorer 131795777640949510 0x728e0000 1372160 C:\Windows\SysWOW64\propsys.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Система страниц свойств (Майкрософт) 131795777638805651 0x72af0000 655360 C:\Windows\SysWOW64\winhttp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Службы HTTP Windows 131795777641060291 0x72cc0000 1658880 C:\Windows\SysWOW64\urlmon.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширения OLE32 для Win32 131795777641111375 0x73ac0000 81920 C:\Windows\SysWOW64\dhcpcsvc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служба DHCP-клиента 131795777640964374 0x73ae0000 40960 C:\Windows\SysWOW64\secur32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Security Support Provider Interface 131795777641045959 0x73f00000 192512 C:\Windows\SysWOW64\IPHLPAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API вспомогательного приложения IP 131795777641129849 0x74190000 110592 C:\Windows\SysWOW64\bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795777638824119 0x741f0000 143360 C:\Windows\SysWOW64\winmmbase.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base Multimedia Extension API DLL 131795777638777842 0x74230000 147456 C:\Windows\SysWOW64\winmm.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation MCI API DLL 131795777640905386 0x744d0000 2138112 C:\Windows\WinSxS\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.14393.953_none_89c2555adb023171\comctl32.dll 6.10 (rs1_release_inmarket.170303-1614) Microsoft Corporation Библиотека элементов управления взаимодействия с пользователем 131795777638757989 0x746e0000 32768 C:\Windows\SysWOW64\version.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Version Checking and File Installation Libraries 131795777638790654 0x746f0000 106496 C:\Windows\SysWOW64\userenv.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Userenv 131795777638640639 0x747d0000 40960 C:\Windows\SysWOW64\cryptbase.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base cryptographic API DLL 131795777638639616 0x747e0000 126976 C:\Windows\SysWOW64\sspicli.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Security Support Provider Interface 131795777638865082 0x74800000 151552 C:\Windows\SysWOW64\imm32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Multi-User Windows IMM32 API Client DLL 131795777638653602 0x74830000 917504 C:\Windows\SysWOW64\ucrtbase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795777638652361 0x74910000 2170880 C:\Windows\SysWOW64\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795777638664931 0x74b30000 53248 C:\Windows\SysWOW64\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795777638638334 0x74b60000 790528 C:\Windows\SysWOW64\rpcrt4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795777638660518 0x74c30000 1417216 C:\Windows\SysWOW64\gdi32full.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation GDI Client DLL 131795777638643504 0x74d90000 24576 C:\Windows\SysWOW64\psapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Process Status Helper 131795777638635699 0x74da0000 778240 C:\Windows\SysWOW64\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795777638666147 0x74e60000 557056 C:\Windows\SysWOW64\SHCore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795777640885499 0x74f80000 278528 C:\Windows\SysWOW64\wintrust.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation Microsoft Trust Verification APIs 131795777640884150 0x74fd0000 405504 C:\Windows\SysWOW64\ws2_32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation 32-разрядная библиотека Windows Socket 2.0 131795777638655024 0x75040000 282624 C:\Windows\SysWOW64\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795777640887705 0x751d0000 57344 C:\Windows\SysWOW64\msasn1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ASN.1 Runtime APIs 131795777638622442 0x751e0000 1708032 C:\Windows\SysWOW64\KernelBase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795777638636998 0x75390000 266240 C:\Windows\SysWOW64\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795777640890927 0x753e0000 1560576 C:\Windows\SysWOW64\crypt32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API32 криптографии 131795777638634183 0x75560000 487424 C:\Windows\SysWOW64\advapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795777638650757 0x756c0000 5693440 C:\Windows\SysWOW64\windows.storage.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API хранения Microsoft WinRT 131795777638657739 0x75c90000 286720 C:\Windows\SysWOW64\shlwapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека небольших программ оболочки 131795777638647299 0x75ce0000 20811776 C:\Windows\SysWOW64\shell32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Общая библиотека оболочки Windows 131795777638663396 0x774d0000 86016 C:\Windows\SysWOW64\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795777638667522 0x774f0000 61440 C:\Windows\SysWOW64\profapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Profile Basic API 131795777638661911 0x77560000 1437696 C:\Windows\SysWOW64\user32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795777638641764 0x776c0000 368640 C:\Windows\SysWOW64\bcryptprimitives.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation Windows Cryptographic Primitives Library 131795777640882612 0x77780000 503808 C:\Windows\SysWOW64\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795777640878814 0x77800000 606208 C:\Windows\SysWOW64\oleaut32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795777638718043 0x77ac0000 966656 C:\Windows\SysWOW64\ole32.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft OLE для Windows 131795777638659168 0x77bb0000 176128 C:\Windows\SysWOW64\gdi32.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation GDI Client DLL 131795777640867696 0x77be0000 937984 C:\Windows\SysWOW64\comdlg32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека общих диалоговых окон 131795777638648757 0x77cd0000 221184 C:\Windows\SysWOW64\cfgmgr32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Configuration Manager DLL 131795777641112838 0x77d10000 28672 C:\Windows\SysWOW64\nsi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation NSI User-mode interface DLL 131795777638499795 0x77d20000 1585152 C:\Windows\SysWOW64\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 131795777638499542 0x7ffad0270000 1908736 C:\Windows\System32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 108 2436 4048 3 00000000:000003e7 131795777644009218 0 0 1 Обязательная метка\Обязательный уровень системы NT AUTHORITY\СИСТЕМА SearchProtocolHost.exe C:\Windows\system32\SearchProtocolHost.exe "C:\Windows\system32\SearchProtocolHost.exe" Global\UsGthrFltPipeMssGthrPipe286_ Global\UsGthrCtrlFltPipeMssGthrPipe286 1 -2147483646 "Software\Microsoft\Windows Search" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT; MS Search 4.0 Robot)" "C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc" "DownLevelDaemon" Microsoft Corporation 7.0.14393.2125 (rs1_release.180301-2139) Microsoft Windows Search Protocol Host 131795777645159014 0x7ff71ad80000 368640 C:\Windows\System32\SearchProtocolHost.exe 7.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation Microsoft Windows Search Protocol Host 131795777646253333 0x7ffab7a00000 3424256 C:\Windows\System32\tquery.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Запросы Microsoft Tripoli 131795777674143166 0x7ffabaf70000 270336 C:\Windows\System32\edputil.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служебная программа EDP 131795777653911361 0x7ffac2960000 143360 C:\Windows\System32\mssprxy.dll 7.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation Microsoft Search Proxy 131795777653958760 0x7ffac7cd0000 192512 C:\Windows\System32\mssph.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Обработчик протоколов поиска Microsoft 131795777646404209 0x7ffac7e40000 28672 C:\Windows\System32\msidle.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Idle Monitor 131795777672706217 0x7ffaca340000 1593344 C:\Windows\System32\propsys.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Система страниц свойств (Майкрософт) 131795777662406241 0x7ffacb420000 204800 C:\Windows\System32\ntmarta.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик Windows NT MARTA 131795777654238495 0x7ffacb960000 303104 C:\Windows\System32\authz.dll 10.0.14393.1737 (rs1_release_inmarket.170914-1249) Microsoft Corporation Authorization Framework 131795777646239073 0x7ffacc6e0000 61440 C:\Windows\System32\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795777646227946 0x7ffacc6f0000 311296 C:\Windows\System32\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795777646240001 0x7ffacc740000 81920 C:\Windows\System32\profapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Profile Basic API 131795777646230573 0x7ffacc770000 1572864 C:\Windows\System32\gdi32full.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation GDI Client DLL 131795777646209419 0x7ffacc8f0000 1003520 C:\Windows\System32\ucrtbase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795777646219266 0x7ffacc9f0000 434176 C:\Windows\System32\bcryptprimitives.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Cryptographic Primitives Library 131795777646236729 0x7ffacca60000 122880 C:\Windows\System32\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795777646225633 0x7ffaccae0000 692224 C:\Windows\System32\SHCore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795777646226951 0x7ffaccb90000 7180288 C:\Windows\System32\windows.storage.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API хранения Microsoft WinRT 131795777646182523 0x7ffacd270000 2215936 C:\Windows\System32\KernelBase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795777646208766 0x7ffacd710000 638976 C:\Windows\System32\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795777672880184 0x7ffacd7b0000 270336 C:\Windows\System32\cfgmgr32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Configuration Manager DLL 131795777672879070 0x7ffacd810000 22056960 C:\Windows\System32\shell32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Общая библиотека оболочки Windows 131795777646208012 0x7ffaced20000 782336 C:\Windows\System32\oleaut32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795777646218296 0x7ffacee50000 1183744 C:\Windows\System32\rpcrt4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795777646204698 0x7ffacef90000 647168 C:\Windows\System32\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795777648403085 0x7ffacf030000 651264 C:\Windows\System32\clbcatq.dll 2001.12.10941.16384 (rs1_release.160715-1616) Microsoft Corporation COM+ Configuration Catalog 131795777646181578 0x7ffacf0d0000 704512 C:\Windows\System32\kernel32.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795777646229758 0x7ffacf770000 212992 C:\Windows\System32\gdi32.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation GDI Client DLL 131795777646359182 0x7ffacf890000 188416 C:\Windows\System32\imm32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Multi-User Windows IMM32 API Client DLL 131795777646231420 0x7ffacf8c0000 1462272 C:\Windows\System32\user32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795777646217468 0x7ffacfb30000 2916352 C:\Windows\System32\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795777646223693 0x7ffacfe20000 663552 C:\Windows\System32\advapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795777651470786 0x7ffad0070000 1277952 C:\Windows\System32\ole32.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft OLE для Windows 131795777646228871 0x7ffad01b0000 335872 C:\Windows\System32\shlwapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека небольших программ оболочки 131795777646224544 0x7ffad0210000 364544 C:\Windows\System32\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795777645159316 0x7ffad0270000 1908736 C:\Windows\System32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 109 12008 4048 3 00000000:000003e7 131795777651421021 0 0 1 Обязательная метка\Средний обязательный уровень NT AUTHORITY\СИСТЕМА SearchFilterHost.exe C:\Windows\system32\SearchFilterHost.exe "C:\Windows\system32\SearchFilterHost.exe" 0 708 712 720 8192 716 Microsoft Corporation 7.0.14393.2125 (rs1_release.180301-2139) Microsoft Windows Search Filter Host 131795777651457218 0x7ff68a750000 225280 C:\Windows\System32\SearchFilterHost.exe 7.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation Microsoft Windows Search Filter Host 131795777652430059 0x7ffab7a00000 3424256 C:\Windows\System32\tquery.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Запросы Microsoft Tripoli 131795777653510417 0x7ffac2960000 143360 C:\Windows\System32\mssprxy.dll 7.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation Microsoft Search Proxy 131795777652527425 0x7ffacc6e0000 61440 C:\Windows\System32\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795777652473355 0x7ffacc770000 1572864 C:\Windows\System32\gdi32full.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation GDI Client DLL 131795777652337295 0x7ffacc8f0000 1003520 C:\Windows\System32\ucrtbase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795777652352101 0x7ffacc9f0000 434176 C:\Windows\System32\bcryptprimitives.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Cryptographic Primitives Library 131795777652470728 0x7ffacca60000 122880 C:\Windows\System32\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795777653516465 0x7ffaccae0000 692224 C:\Windows\System32\SHCore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795777652314737 0x7ffacd270000 2215936 C:\Windows\System32\KernelBase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795777652336608 0x7ffacd710000 638976 C:\Windows\System32\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795777652335832 0x7ffaced20000 782336 C:\Windows\System32\oleaut32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795777652348843 0x7ffacee50000 1183744 C:\Windows\System32\rpcrt4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795777652333560 0x7ffacef90000 647168 C:\Windows\System32\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795777653216837 0x7ffacf030000 651264 C:\Windows\System32\clbcatq.dll 2001.12.10941.16384 (rs1_release.160715-1616) Microsoft Corporation COM+ Configuration Catalog 131795777652313695 0x7ffacf0d0000 704512 C:\Windows\System32\kernel32.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795777652472487 0x7ffacf770000 212992 C:\Windows\System32\gdi32.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation GDI Client DLL 131795777652465968 0x7ffacf890000 188416 C:\Windows\System32\imm32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Multi-User Windows IMM32 API Client DLL 131795777652468742 0x7ffacf8c0000 1462272 C:\Windows\System32\user32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795777652346577 0x7ffacfb30000 2916352 C:\Windows\System32\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795777652353955 0x7ffacfe20000 663552 C:\Windows\System32\advapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795777652357088 0x7ffad0210000 364544 C:\Windows\System32\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795777651457501 0x7ffad0270000 1908736 C:\Windows\System32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 1 11372 10560 2 00000000:0031f1ab 131795770632346846 0 0 1 Обязательная метка\Высокий обязательный уровень WIN-0UOTFKKVN1S\User Procmon64.exe C:\Users\User\AppData\Local\Temp\Procmon64.exe "C:\Users\User\AppData\Local\Temp\Procmon64.exe" /originalpath "C:\Users\User\Downloads\ProcessMonitor\Procmon.exe" Sysinternals - www.sysinternals.com 3.50 Process Monitor 131795770645297135 0x7ff7ed960000 1224704 C:\Users\User\AppData\Local\Temp\Procmon64.exe 3.50 Sysinternals - www.sysinternals.com Process Monitor 131795770645297135 0x7ffac2b80000 40960 C:\Windows\SYSTEM32\VERSION.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Version Checking and File Installation Libraries 131795770645297135 0x7ffac3270000 40960 C:\Windows\SYSTEM32\FLTLIB.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека фильтров 131795770645297135 0x7ffac5630000 339968 C:\Windows\System32\thumbcache.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Кэш эскизов Майкрософт 131795770645297135 0x7ffac6c40000 2596864 C:\Windows\WinSxS\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.14393.953_none_42151e83c686086b\COMCTL32.dll 6.10 (rs1_release_inmarket.170303-1614) Microsoft Corporation Библиотека элементов управления взаимодействия с пользователем 131795770645297135 0x7ffac84f0000 299008 C:\Windows\system32\dataexchange.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation Data exchange 131795770645297135 0x7ffac88a0000 2842624 C:\Windows\system32\d3d11.dll 10.0.14393.953 (rs1_release_inmarket.170303-1614) Microsoft Corporation Direct3D 11 Runtime 131795770645297135 0x7ffac8df0000 1646592 C:\Windows\SYSTEM32\dbghelp.dll 10.0.14321.1024 (rs1_release.160715-1616) Microsoft Windows Image Helper 131795770645297135 0x7ffac9f50000 1736704 C:\Windows\SYSTEM32\WindowsCodecs.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Microsoft Windows Codecs Library 131795770645297135 0x7ffaca340000 1593344 C:\Windows\SYSTEM32\PROPSYS.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Система страниц свойств (Майкрософт) 131795770645297135 0x7ffaca5e0000 155648 C:\Windows\SYSTEM32\dwmapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Интерфейс API диспетчера окон рабочего стола (Майкрософт) 131795770645297135 0x7ffaca770000 1380352 C:\Windows\system32\dcomp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft DirectComposition Library 131795770645297135 0x7ffacadf0000 499712 C:\Windows\system32\apphelp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиентская библиотека совместимости приложений 131795770645297135 0x7ffacaf00000 610304 C:\Windows\SYSTEM32\uxtheme.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека тем UxTheme (Microsoft) 131795770645297135 0x7ffacb1e0000 1163264 C:\Windows\system32\twinapi.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation twinapi.appcore 131795770645297135 0x7ffacb780000 651264 C:\Windows\system32\dxgi.dll 10.0.14393.953 (rs1_release_inmarket.170303-1614) Microsoft Corporation DirectX Graphics Infrastructure 131795770645297135 0x7ffacc620000 176128 C:\Windows\system32\bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795770645297135 0x7ffacc6e0000 61440 C:\Windows\System32\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795770645297135 0x7ffacc6f0000 311296 C:\Windows\System32\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795770645297135 0x7ffacc740000 81920 C:\Windows\System32\profapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Profile Basic API 131795770645297135 0x7ffacc8f0000 1003520 C:\Windows\System32\ucrtbase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645297135 0x7ffacc9f0000 434176 C:\Windows\System32\bcryptPrimitives.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Cryptographic Primitives Library 131795770645297135 0x7ffacca60000 122880 C:\Windows\System32\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795770645297135 0x7ffaccae0000 692224 C:\Windows\System32\shcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795770645297135 0x7ffaccb90000 7180288 C:\Windows\System32\windows.storage.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API хранения Microsoft WinRT 131795770645297135 0x7ffacd270000 2215936 C:\Windows\System32\KERNELBASE.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645297135 0x7ffacd710000 638976 C:\Windows\System32\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645297135 0x7ffacd7b0000 270336 C:\Windows\System32\cfgmgr32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Configuration Manager DLL 131795770645297135 0x7ffacd810000 22056960 C:\Windows\System32\SHELL32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Общая библиотека оболочки Windows 131795770645297135 0x7ffaced20000 782336 C:\Windows\System32\OLEAUT32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795770645297135 0x7ffacee50000 1183744 C:\Windows\System32\RPCRT4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795770645297135 0x7ffacef90000 647168 C:\Windows\System32\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795770645297135 0x7ffacf030000 651264 C:\Windows\System32\clbcatq.dll 2001.12.10941.16384 (rs1_release.160715-1616) Microsoft Corporation COM+ Configuration Catalog 131795770645297135 0x7ffacf0d0000 704512 C:\Windows\System32\KERNEL32.DLL 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645297135 0x7ffacf1e0000 1417216 C:\Windows\System32\MSCTF.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Серверная библиотека MSCTF 131795770645297135 0x7ffacf770000 212992 C:\Windows\System32\GDI32.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation GDI Client DLL 131795770645297135 0x7ffacf820000 434176 C:\Windows\System32\WS2_32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation 32-разрядная библиотека Windows Socket 2.0 131795770645297135 0x7ffacf890000 188416 C:\Windows\System32\IMM32.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Multi-User Windows IMM32 API Client DLL 131795770645297135 0x7ffacf8c0000 1462272 C:\Windows\System32\USER32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795770645297135 0x7ffacfa30000 1024000 C:\Windows\System32\COMDLG32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека общих диалоговых окон 131795770645297135 0x7ffacfb30000 2916352 C:\Windows\System32\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795770645297135 0x7ffacfe20000 663552 C:\Windows\System32\advapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795770645297135 0x7ffad0070000 1277952 C:\Windows\System32\ole32.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft OLE для Windows 131795770645297135 0x7ffad01b0000 335872 C:\Windows\System32\SHLWAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека небольших программ оболочки 131795770645297135 0x7ffad0210000 364544 C:\Windows\System32\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795770645297135 0x7ffad0270000 1908736 C:\Windows\SYSTEM32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 2 10560 3108 11 00000000:0031f1ab 131795770594566098 0 0 0 Обязательная метка\Высокий обязательный уровень WIN-0UOTFKKVN1S\User Procmon.exe C:\Users\User\Downloads\ProcessMonitor\Procmon.exe "C:\Users\User\Downloads\ProcessMonitor\Procmon.exe" Sysinternals - www.sysinternals.com 3.50 Process Monitor 131795770645662037 0x1000000 2191360 C:\Users\User\Downloads\ProcessMonitor\Procmon.exe 3.50 Sysinternals - www.sysinternals.com Process Monitor 131795770645662037 0x5c020000 335872 C:\Windows\System32\wow64.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation Win32 Emulation on NT64 131795770645662037 0x5c080000 487424 C:\Windows\System32\wow64win.dll 10.0.14393.1884 (rs1_release.171101-1233) Microsoft Corporation Wow64 Console and Win32 API Logging 131795770645662037 0x5c100000 40960 C:\Windows\System32\wow64cpu.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation AMD64 Wow64 CPU 131795770645662037 0x60750000 1556480 C:\Program Files (x86)\360\Total Security\safemon\safemon.dll 8, 4, 0, 1420 Qihu 360 Software Co., Ltd. 360 Internet Security Internet Protection 131795770645662037 0x62530000 65536 C:\Windows\SysWOW64\DEVRTL.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Device Management Run Time Library 131795770645662037 0x627d0000 249856 C:\Windows\SysWOW64\edputil.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служебная программа EDP 131795770645662037 0x67690000 61440 C:\Windows\SysWOW64\sfc_os.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows File Protection 131795770645662037 0x676b0000 32768 C:\Windows\SysWOW64\FLTLIB.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека фильтров 131795770645662037 0x6dd70000 528384 C:\Windows\SysWOW64\RICHED20.dll 5.31.23.1231 Microsoft Corporation Rich Text Edit Control, v3.1 131795770645662037 0x6e710000 335872 C:\Windows\SysWOW64\Bcp47Langs.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation BCP47 Language Classes 131795770645662037 0x70a20000 94208 C:\Windows\SysWOW64\USP10.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Uniscribe Unicode script processor 131795770645662037 0x70ca0000 45056 C:\Windows\SysWOW64\NETUTILS.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API Helpers DLL 131795770645662037 0x70cb0000 65536 C:\Windows\SysWOW64\WKSCLI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Workstation Service Client DLL 131795770645662037 0x70cd0000 49152 C:\Windows\SysWOW64\pcacli.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Program Compatibility Assistant Client Module 131795770645662037 0x70ec0000 200704 C:\Windows\SysWOW64\msls31.dll 3.10.349.0 Microsoft Corporation Microsoft Line Services library file 131795770645662037 0x71140000 77824 C:\Windows\SysWOW64\NETAPI32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API DLL 131795770645662037 0x72520000 24576 C:\Windows\SysWOW64\Riched32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Wrapper Dll for Richedit 1.0 131795770645662037 0x725e0000 2273280 C:\Windows\SysWOW64\iertutil.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служебная программа времени выполнения для Internet Explorer 131795770645662037 0x728e0000 1372160 C:\Windows\SysWOW64\PROPSYS.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Система страниц свойств (Майкрософт) 131795770645662037 0x72b90000 126976 C:\Windows\SysWOW64\dwmapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Интерфейс API диспетчера окон рабочего стола (Майкрософт) 131795770645662037 0x72cc0000 1658880 C:\Windows\SysWOW64\urlmon.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширения OLE32 для Win32 131795770645662037 0x74110000 479232 C:\Windows\SysWOW64\uxtheme.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека тем UxTheme (Microsoft) 131795770645662037 0x74190000 110592 C:\Windows\SysWOW64\bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795770645662037 0x744d0000 2138112 C:\Windows\WinSxS\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.14393.953_none_89c2555adb023171\COMCTL32.dll 6.10 (rs1_release_inmarket.170303-1614) Microsoft Corporation Библиотека элементов управления взаимодействия с пользователем 131795770645662037 0x746e0000 32768 C:\Windows\SysWOW64\VERSION.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Version Checking and File Installation Libraries 131795770645662037 0x746f0000 106496 C:\Windows\SysWOW64\USERENV.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Userenv 131795770645662037 0x74710000 90112 C:\Windows\SysWOW64\MPR.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека маршрутизации для нескольких служб доступа 131795770645662037 0x74730000 598016 C:\Windows\SysWOW64\apphelp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиентская библиотека совместимости приложений 131795770645662037 0x747d0000 40960 C:\Windows\SysWOW64\CRYPTBASE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base cryptographic API DLL 131795770645662037 0x747e0000 126976 C:\Windows\SysWOW64\SspiCli.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Security Support Provider Interface 131795770645662037 0x74800000 151552 C:\Windows\SysWOW64\IMM32.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Multi-User Windows IMM32 API Client DLL 131795770645662037 0x74910000 2170880 C:\Windows\SysWOW64\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795770645662037 0x74b30000 53248 C:\Windows\SysWOW64\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795770645662037 0x74b60000 790528 C:\Windows\SysWOW64\RPCRT4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795770645662037 0x74c30000 1417216 C:\Windows\SysWOW64\gdi32full.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation GDI Client DLL 131795770645662037 0x74d90000 24576 C:\Windows\SysWOW64\PSAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Process Status Helper 131795770645662037 0x74da0000 778240 C:\Windows\SysWOW64\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795770645662037 0x74e60000 557056 C:\Windows\SysWOW64\shcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795770645662037 0x74ef0000 540672 C:\Windows\SysWOW64\clbcatq.dll 2001.12.10941.16384 (rs1_release.160715-1616) Microsoft Corporation COM+ Configuration Catalog 131795770645662037 0x74fd0000 405504 C:\Windows\SysWOW64\WS2_32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation 32-разрядная библиотека Windows Socket 2.0 131795770645662037 0x75040000 282624 C:\Windows\SysWOW64\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795770645662037 0x75090000 1265664 C:\Windows\SysWOW64\MSCTF.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Серверная библиотека MSCTF 131795770645662037 0x751e0000 1708032 C:\Windows\SysWOW64\KERNELBASE.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645662037 0x75390000 266240 C:\Windows\SysWOW64\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795770645662037 0x75560000 487424 C:\Windows\SysWOW64\advapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795770645662037 0x756c0000 5693440 C:\Windows\SysWOW64\windows.storage.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API хранения Microsoft WinRT 131795770645662037 0x75c90000 286720 C:\Windows\SysWOW64\SHLWAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека небольших программ оболочки 131795770645662037 0x75ce0000 20811776 C:\Windows\SysWOW64\SHELL32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Общая библиотека оболочки Windows 131795770645662037 0x770c0000 4239360 C:\Windows\SysWOW64\SETUPAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Setup API 131795770645662037 0x774d0000 86016 C:\Windows\SysWOW64\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795770645662037 0x774f0000 61440 C:\Windows\SysWOW64\profapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Profile Basic API 131795770645662037 0x77560000 1437696 C:\Windows\SysWOW64\USER32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795770645662037 0x776c0000 368640 C:\Windows\SysWOW64\bcryptPrimitives.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation Windows Cryptographic Primitives Library 131795770645662037 0x77780000 503808 C:\Windows\SysWOW64\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645662037 0x77800000 606208 C:\Windows\SysWOW64\OLEAUT32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795770645662037 0x77ac0000 966656 C:\Windows\SysWOW64\ole32.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft OLE для Windows 131795770645662037 0x77bb0000 176128 C:\Windows\SysWOW64\GDI32.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation GDI Client DLL 131795770645662037 0x77be0000 937984 C:\Windows\SysWOW64\COMDLG32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека общих диалоговых окон 131795770645662037 0x77cd0000 221184 C:\Windows\SysWOW64\cfgmgr32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Configuration Manager DLL 131795770645662037 0x77d20000 1585152 C:\Windows\SysWOW64\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 131795770645662037 0x7ffad0270000 1908736 C:\Windows\SYSTEM32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 3 4048 580 4 00000000:000003e7 131765778109600457 0 0 1 Обязательная метка\Обязательный уровень системы NT AUTHORITY\СИСТЕМА SearchIndexer.exe C:\Windows\system32\SearchIndexer.exe C:\Windows\system32\SearchIndexer.exe /Embedding Microsoft Corporation 7.0.14393.0 (rs1_release.160715-1616) Индексатор службы Microsoft Windows Search 131795770645302950 0x7ff63db40000 929792 C:\Windows\system32\SearchIndexer.exe 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Индексатор службы Microsoft Windows Search 131795770645302950 0x7ffab1fd0000 2277376 C:\Windows\System32\msxml3.dll 8.110.14393.1532 Microsoft Corporation MSXML 3.0 131795770645302950 0x7ffab4b90000 655360 C:\Windows\System32\StructuredQuery.dll 7.0.14393.2068 (rs1_release.180209-1727) Microsoft Corporation Structured Query 131795770645302950 0x7ffab7780000 2576384 C:\Windows\system32\MSSRCH.DLL 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Встроенный поиск (Майкрософт) 131795770645302950 0x7ffab7a00000 3424256 C:\Windows\system32\TQUERY.DLL 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Запросы Microsoft Tripoli 131795770645302950 0x7ffabd990000 720896 C:\Windows\system32\ElsLad.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ELS Language Detection 131795770645302950 0x7ffabe4d0000 286720 C:\Windows\System32\MSWB7.dll 10.0.14393.1737 (rs1_release_inmarket.170914-1249) Microsoft Corporation MSWB7 DLL 131795770645302950 0x7ffabf010000 98304 C:\Windows\SYSTEM32\elscore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL ядра платформы Els 131795770645302950 0x7ffac0bf0000 3559424 C:\Windows\System32\ActXPrxy.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation ActiveX Interface Marshaling Library 131795770645302950 0x7ffac2960000 143360 C:\Windows\system32\mssprxy.dll 7.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation Microsoft Search Proxy 131795770645302950 0x7ffac34c0000 81920 C:\Windows\system32\vss_ps.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation Microsoft® Volume Shadow Copy Service proxy/stub 131795770645302950 0x7ffac3840000 3088384 C:\Windows\system32\ESENT.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширяемая подсистема хранения данных ESE для Microsoft(R) Windows(R) 131795770645302950 0x7ffac4000000 274432 C:\Windows\SYSTEM32\policymanager.dll 10.0.14393.2035 (rs1_release_inmarket.180110-1910) Microsoft Corporation Policy Manager DLL 131795770645302950 0x7ffac4e70000 102400 C:\Windows\system32\samcli.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Security Accounts Manager Client DLL 131795770645302950 0x7ffac6410000 98304 C:\Windows\system32\VssTrace.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека трассировки службы теневого копирования тома Microsoft® 131795770645302950 0x7ffac6430000 1581056 C:\Windows\SYSTEM32\vssapi.dll 10.0.14393.953 (rs1_release_inmarket.170303-1614) Microsoft Corporation Microsoft® Volume Shadow Copy Requestor/Writer Services API DLL 131795770645302950 0x7ffac7e40000 28672 C:\Windows\system32\Msidle.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Idle Monitor 131795770645302950 0x7ffac9bb0000 479232 C:\Windows\System32\ES.DLL 2001.12.10941.16384 (rs1_release.160715-1616) Microsoft Corporation COM+ 131795770645302950 0x7ffaca340000 1593344 C:\Windows\system32\propsys.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Система страниц свойств (Майкрософт) 131795770645302950 0x7ffaca4e0000 77824 C:\Windows\SYSTEM32\wtsapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Remote Desktop Session Host Server SDK APIs 131795770645302950 0x7ffaca570000 421888 C:\Windows\system32\Bcp47Langs.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation BCP47 Language Classes 131795770645302950 0x7ffaca610000 143360 C:\Windows\system32\SAMLIB.dll 10.0.14393.82 (rs1_release.160805-1735) Microsoft Corporation SAM Library DLL 131795770645302950 0x7ffacb140000 593920 C:\Windows\system32\msvcp110_win.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Microsoft® STL110 C++ Runtime Library 131795770645302950 0x7ffacb3f0000 163840 C:\Windows\system32\DEVOBJ.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Device Information Set DLL 131795770645302950 0x7ffacb420000 204800 C:\Windows\SYSTEM32\ntmarta.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик Windows NT MARTA 131795770645302950 0x7ffacbe20000 53248 C:\Windows\system32\netutils.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API Helpers DLL 131795770645302950 0x7ffacbe40000 126976 C:\Windows\system32\USERENV.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Userenv 131795770645302950 0x7ffacc170000 45056 C:\Windows\system32\CRYPTBASE.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base cryptographic API DLL 131795770645302950 0x7ffacc350000 180224 C:\Windows\system32\sspicli.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Security Support Provider Interface 131795770645302950 0x7ffacc520000 622592 C:\Windows\SYSTEM32\sxs.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Fusion 2.5 131795770645302950 0x7ffacc5c0000 352256 C:\Windows\system32\WINSTA.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Winstation Library 131795770645302950 0x7ffacc620000 176128 C:\Windows\System32\bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795770645302950 0x7ffacc6e0000 61440 C:\Windows\System32\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795770645302950 0x7ffacc6f0000 311296 C:\Windows\System32\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795770645302950 0x7ffacc740000 81920 C:\Windows\System32\profapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Profile Basic API 131795770645302950 0x7ffacc8f0000 1003520 C:\Windows\System32\ucrtbase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645302950 0x7ffacc9f0000 434176 C:\Windows\System32\bcryptPrimitives.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Cryptographic Primitives Library 131795770645302950 0x7ffacca60000 122880 C:\Windows\System32\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795770645302950 0x7ffaccae0000 692224 C:\Windows\System32\shcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795770645302950 0x7ffaccb90000 7180288 C:\Windows\System32\Windows.Storage.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API хранения Microsoft WinRT 131795770645302950 0x7ffacd270000 2215936 C:\Windows\System32\KERNELBASE.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645302950 0x7ffacd710000 638976 C:\Windows\System32\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645302950 0x7ffacd7b0000 270336 C:\Windows\System32\cfgmgr32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Configuration Manager DLL 131795770645302950 0x7ffaced20000 782336 C:\Windows\System32\OLEAUT32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795770645302950 0x7ffacee50000 1183744 C:\Windows\System32\RPCRT4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795770645302950 0x7ffacef90000 647168 C:\Windows\System32\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795770645302950 0x7ffacf030000 651264 C:\Windows\System32\clbcatq.dll 2001.12.10941.16384 (rs1_release.160715-1616) Microsoft Corporation COM+ Configuration Catalog 131795770645302950 0x7ffacf0d0000 704512 C:\Windows\System32\KERNEL32.DLL 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645302950 0x7ffacf770000 212992 C:\Windows\System32\GDI32.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation GDI Client DLL 131795770645302950 0x7ffacf820000 434176 C:\Windows\System32\WS2_32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation 32-разрядная библиотека Windows Socket 2.0 131795770645302950 0x7ffacf8c0000 1462272 C:\Windows\System32\USER32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795770645302950 0x7ffacfb30000 2916352 C:\Windows\System32\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795770645302950 0x7ffacfe20000 663552 C:\Windows\System32\advapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795770645302950 0x7ffad0070000 1277952 C:\Windows\System32\ole32.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft OLE для Windows 131795770645302950 0x7ffad01b0000 335872 C:\Windows\System32\shlwapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека небольших программ оболочки 131795770645302950 0x7ffad0210000 364544 C:\Windows\System32\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795770645302950 0x7ffad0270000 1908736 C:\Windows\SYSTEM32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 4 580 484 17 00000000:000003e7 131765776275984299 0 0 1 Обязательная метка\Обязательный уровень системы NT AUTHORITY\СИСТЕМА services.exe C:\Windows\system32\services.exe C:\Windows\system32\services.exe Microsoft Corporation 10.0.14393.0 (rs1_release.160715-1616) Приложение служб и контроллеров 6 664 580 4 00000000:000003e7 131765776282506625 0 0 1 Обязательная метка\Обязательный уровень системы NT AUTHORITY\СИСТЕМА svchost.exe C:\Windows\system32\svchost.exe C:\Windows\system32\svchost.exe -k DcomLaunch Microsoft Corporation 10.0.14393.0 (rs1_release.160715-1616) Хост-процесс для служб Windows 131795770645375819 0x7ff718c20000 57344 C:\Windows\system32\svchost.exe 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Хост-процесс для служб Windows 131795770645375819 0x7ffabae40000 110592 C:\Windows\SYSTEM32\capauthz.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API авторизации возможностей 131795770645375819 0x7ffabc510000 90112 C:\Windows\system32\execmodelproxy.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ExecModelProxy 131795770645375819 0x7ffabc570000 94208 C:\Windows\SYSTEM32\licensemanagerapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation "LicenseManagerApi.DYNLINK" 131795770645375819 0x7ffabc6a0000 61440 C:\Windows\system32\SebBackgroundManagerPolicy.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation <d> SEB Background Manager Policy DLL 131795770645375819 0x7ffabc7e0000 73728 C:\Windows\system32\SmartCardBackgroundPolicy.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SmartCardBackgroundPolicy 131795770645375819 0x7ffabc8c0000 61440 C:\Windows\system32\CbtBackgroundManagerPolicy.dll 10.0.14393.479 (rs1_release.161110-2025) Microsoft Corporation <d> CBT Background Manager Policy DLL 131795770645375819 0x7ffabc8d0000 176128 C:\Windows\System32\ACPBackgroundManagerPolicy.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation <d> ACP Background Manager Policy DLL 131795770645375819 0x7ffabc900000 73728 C:\Windows\System32\BackgroundMediaPolicy.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation <d> Background Media Policy DLL 131795770645375819 0x7ffabc920000 270336 C:\Windows\SYSTEM32\execmodelclient.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation ExecModelClient 131795770645375819 0x7ffac0bf0000 3559424 C:\Windows\System32\ActXPrxy.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation ActiveX Interface Marshaling Library 131795770645375819 0x7ffac20d0000 110592 C:\Windows\system32\RmClient.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Resource Manager Client 131795770645375819 0x7ffac23c0000 331776 C:\Windows\System32\OneCoreCommonProxyStub.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation OneCore Common Proxy Stub 131795770645375819 0x7ffac42a0000 659456 C:\Windows\System32\StateRepository.Core.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation StateRepository Core 131795770645375819 0x7ffac4450000 86016 C:\Windows\SYSTEM32\usermgrcli.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation UserMgr API DLL 131795770645375819 0x7ffac46d0000 4161536 C:\Windows\System32\Windows.StateRepository.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Сервер Windows StateRepository API Server 131795770645375819 0x7ffac7720000 1601536 C:\Windows\System32\OneCoreUAPCommonProxyStub.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation OneCoreUAP Common Proxy Stub 131795770645375819 0x7ffaca250000 49152 C:\Windows\SYSTEM32\bi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Background Broker Infrastructure Client Library 131795770645375819 0x7ffaca4e0000 77824 C:\Windows\SYSTEM32\wtsapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Remote Desktop Session Host Server SDK APIs 131795770645375819 0x7ffaca640000 770048 c:\windows\system32\CoreMessaging.dll 10.0.14393.0 Microsoft Corporation Microsoft CoreMessaging Dll 131795770645375819 0x7ffaca740000 135168 c:\windows\system32\DAB.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL брокера активности компьютера 131795770645375819 0x7ffacabd0000 69632 C:\Windows\System32\OnDemandBrokerClient.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation OnDemandBrokerClient 131795770645375819 0x7ffacad70000 278528 c:\windows\system32\BrokerLib.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Broker Base Library 131795770645375819 0x7ffacadf0000 499712 C:\Windows\system32\apphelp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиентская библиотека совместимости приложений 131795770645375819 0x7ffacae70000 409600 c:\windows\system32\systemeventsbrokerserver.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Брокер системных событий 131795770645375819 0x7ffacafc0000 229376 C:\Windows\SYSTEM32\resourcepolicyserver.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Resource Policy RM Service Extension 131795770645375819 0x7ffacb000000 53248 c:\windows\system32\SYSNTFY.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Windows Notifications Dynamic Link Library 131795770645375819 0x7ffacb010000 348160 C:\Windows\SYSTEM32\psmserviceexthost.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Resource Manager PSM Service Extension 131795770645375819 0x7ffacb070000 69632 C:\Windows\SYSTEM32\embeddedmodesvcapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Embedded Mode Service Client DLL 131795770645375819 0x7ffacb140000 593920 c:\windows\system32\msvcp110_win.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Microsoft® STL110 C++ Runtime Library 131795770645375819 0x7ffacb1e0000 1163264 C:\Windows\SYSTEM32\twinapi.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation twinapi.appcore 131795770645375819 0x7ffacb300000 364544 c:\windows\system32\VEEventDispatcher.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Visual Element Event dispatcher 131795770645375819 0x7ffacb390000 225280 c:\windows\system32\psmsrv.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Process State Manager (PSM) Service 131795770645375819 0x7ffacb3d0000 110592 c:\windows\system32\ResourcePolicyClient.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Resource Policy Client 131795770645375819 0x7ffacb3f0000 163840 c:\windows\system32\DEVOBJ.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Device Information Set DLL 131795770645375819 0x7ffacb420000 204800 C:\Windows\SYSTEM32\ntmarta.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик Windows NT MARTA 131795770645375819 0x7ffacb4f0000 794624 c:\windows\system32\bisrv.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служба инфраструктуры фоновых задач 131795770645375819 0x7ffacb5c0000 913408 c:\windows\system32\rpcss.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Distributed COM Services 131795770645375819 0x7ffacb6e0000 49152 C:\Windows\SYSTEM32\HID.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека пользователя HID 131795770645375819 0x7ffacb6f0000 143360 C:\Windows\SYSTEM32\gpapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиентские функции API групповой политики 131795770645375819 0x7ffacb720000 344064 c:\windows\system32\mintdh.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Вспомогательная библиотека трассировки событий 131795770645375819 0x7ffacb780000 651264 c:\windows\system32\dxgi.dll 10.0.14393.953 (rs1_release_inmarket.170303-1614) Microsoft Corporation DirectX Graphics Infrastructure 131795770645375819 0x7ffacb820000 712704 C:\Windows\SYSTEM32\tdh.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Вспомогательная библиотека трассировки событий 131795770645375819 0x7ffacb8d0000 114688 C:\Windows\SYSTEM32\umpoext.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширения службы пользовательского режима питания 131795770645375819 0x7ffacb8f0000 147456 c:\windows\system32\umpo.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служба пользовательского режима питания 131795770645375819 0x7ffacb920000 81920 C:\Windows\SYSTEM32\WLDP.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Политика блокировки Windows 131795770645375819 0x7ffacb940000 131072 c:\windows\system32\umpnpmgr.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Пользовательский режим службы самонастройки (Plug-and-Play) 131795770645375819 0x7ffacbbb0000 208896 C:\Windows\system32\rsaenh.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Enhanced Cryptographic Provider 131795770645375819 0x7ffacbbf0000 40960 C:\Windows\SYSTEM32\DPAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Data Protection API 131795770645375819 0x7ffacbe40000 126976 C:\Windows\System32\Userenv.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Userenv 131795770645375819 0x7ffacc150000 94208 C:\Windows\SYSTEM32\CRYPTSP.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Cryptographic Service Provider API 131795770645375819 0x7ffacc170000 45056 C:\Windows\System32\CRYPTBASE.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base cryptographic API DLL 131795770645375819 0x7ffacc350000 180224 c:\windows\system32\SspiCli.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Security Support Provider Interface 131795770645375819 0x7ffacc500000 102400 c:\windows\system32\EventAggregation.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Event Aggregation User Mode Library 131795770645375819 0x7ffacc5c0000 352256 C:\Windows\SYSTEM32\WINSTA.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Winstation Library 131795770645375819 0x7ffacc620000 176128 c:\windows\system32\bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795770645375819 0x7ffacc6e0000 61440 C:\Windows\System32\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795770645375819 0x7ffacc6f0000 311296 C:\Windows\System32\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795770645375819 0x7ffacc740000 81920 C:\Windows\System32\profapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Profile Basic API 131795770645375819 0x7ffacc760000 65536 C:\Windows\System32\MSASN1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ASN.1 Runtime APIs 131795770645375819 0x7ffacc8f0000 1003520 C:\Windows\System32\ucrtbase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645375819 0x7ffacc9f0000 434176 C:\Windows\System32\bcryptPrimitives.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Cryptographic Primitives Library 131795770645375819 0x7ffacca60000 122880 C:\Windows\System32\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795770645375819 0x7ffacca80000 348160 C:\Windows\System32\WINTRUST.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation Microsoft Trust Verification APIs 131795770645375819 0x7ffaccae0000 692224 C:\Windows\System32\shcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795770645375819 0x7ffaccb90000 7180288 C:\Windows\System32\windows.storage.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API хранения Microsoft WinRT 131795770645375819 0x7ffacd270000 2215936 C:\Windows\System32\KERNELBASE.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645375819 0x7ffacd490000 1871872 C:\Windows\System32\CRYPT32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API32 криптографии 131795770645375819 0x7ffacd710000 638976 C:\Windows\System32\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645375819 0x7ffacd7b0000 270336 C:\Windows\System32\cfgmgr32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Configuration Manager DLL 131795770645375819 0x7ffaced20000 782336 C:\Windows\System32\OLEAUT32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795770645375819 0x7ffacede0000 450560 C:\Windows\System32\coml2.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft COM for Windows 131795770645375819 0x7ffacee50000 1183744 C:\Windows\System32\RPCRT4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795770645375819 0x7ffacef90000 647168 C:\Windows\System32\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795770645375819 0x7ffacf030000 651264 C:\Windows\System32\clbcatq.dll 2001.12.10941.16384 (rs1_release.160715-1616) Microsoft Corporation COM+ Configuration Catalog 131795770645375819 0x7ffacf0d0000 704512 C:\Windows\System32\KERNEL32.DLL 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645375819 0x7ffacf770000 212992 C:\Windows\System32\gdi32.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation GDI Client DLL 131795770645375819 0x7ffacf8c0000 1462272 C:\Windows\System32\USER32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795770645375819 0x7ffacfb30000 2916352 C:\Windows\System32\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795770645375819 0x7ffacfe20000 663552 C:\Windows\System32\advapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795770645375819 0x7ffad0070000 1277952 C:\Windows\System32\ole32.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft OLE для Windows 131795770645375819 0x7ffad01b0000 335872 C:\Windows\System32\shlwapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека небольших программ оболочки 131795770645375819 0x7ffad0210000 364544 C:\Windows\System32\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795770645375819 0x7ffad0270000 1908736 C:\Windows\SYSTEM32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 7 884 580 4 00000000:000003e5 131765776292813936 0 0 1 Обязательная метка\Обязательный уровень системы NT AUTHORITY\LOCAL SERVICE svchost.exe C:\Windows\System32\svchost.exe C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted Microsoft Corporation 10.0.14393.0 (rs1_release.160715-1616) Хост-процесс для служб Windows 131795770645326170 0x7ff718c20000 57344 C:\Windows\System32\svchost.exe 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Хост-процесс для служб Windows 131795770645326170 0x7ffab9230000 143360 C:\Windows\SYSTEM32\bluetoothapis.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Bluetooth Usermode Api host 131795770645326170 0x7ffab9580000 118784 C:\Windows\system32\BthRadioMedia.dll 10.0.14393.351 (rs1_release_inmarket.161014-1755) Microsoft Corporation Bluetooth Radio Media Provider 131795770645326170 0x7ffab95a0000 77824 C:\Windows\system32\WlanRadioManager.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Wlan Radio Manager 131795770645326170 0x7ffaba920000 155648 c:\windows\system32\rmapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Radio Manager API 131795770645326170 0x7ffabae80000 69632 C:\Windows\system32\NfcRadioMedia.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation NFC Radio Media Provider 131795770645326170 0x7ffabb8a0000 81920 C:\Windows\system32\XboxGipRadioManager.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Xbox GIP Radio Manager 131795770645326170 0x7ffabc0e0000 81920 C:\Windows\system32\WwanRadioManager.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Wwan Radio Manager 131795770645326170 0x7ffabc510000 90112 C:\Windows\system32\execmodelproxy.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ExecModelProxy 131795770645326170 0x7ffabe850000 155648 C:\Windows\System32\IDStore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Identity Store 131795770645326170 0x7ffac05f0000 94208 C:\Windows\SYSTEM32\wwapi.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation WWAN API 131795770645326170 0x7ffac0bf0000 3559424 C:\Windows\System32\ActXPrxy.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation ActiveX Interface Marshaling Library 131795770645326170 0x7ffac1fd0000 999424 C:\Windows\system32\wbem\fastprox.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation WMI Custom Marshaller 131795770645326170 0x7ffac21d0000 81920 C:\Windows\system32\wbem\wbemsvc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation WMI 131795770645326170 0x7ffac23c0000 331776 C:\Windows\System32\OneCoreCommonProxyStub.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation OneCore Common Proxy Stub 131795770645326170 0x7ffac41a0000 77824 C:\Windows\System32\fdproxy.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation Function Discovery Proxy Dll 131795770645326170 0x7ffac4220000 520192 C:\Windows\SYSTEM32\wbemcomn.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation WMI 131795770645326170 0x7ffac4450000 86016 C:\Windows\SYSTEM32\usermgrcli.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation UserMgr API DLL 131795770645326170 0x7ffac4470000 65536 C:\Windows\system32\wbem\wbemprox.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation WMI 131795770645326170 0x7ffac4df0000 462848 c:\windows\system32\provsvc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Домашняя группа Windows 131795770645326170 0x7ffac60e0000 221184 C:\Windows\System32\XmlLite.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft XmlLite Library 131795770645326170 0x7ffac6710000 172032 C:\Windows\System32\FunDisc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL обнаружения функции 131795770645326170 0x7ffac69c0000 839680 c:\windows\system32\WINHTTP.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Службы HTTP Windows 131795770645326170 0x7ffac78c0000 163840 C:\Windows\System32\shacct.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Shell Accounts Classes 131795770645326170 0x7ffac79c0000 57344 C:\Windows\System32\npmproxy.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Network List Manager Proxy 131795770645326170 0x7ffac7aa0000 401408 C:\Windows\system32\wlanapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows WLAN AutoConfig Client Side API DLL 131795770645326170 0x7ffac7f80000 208896 c:\windows\system32\wscsvc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служба центра обеспечения безопасности Windows 131795770645326170 0x7ffac83d0000 106496 C:\Windows\SYSTEM32\dhcpcsvc.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служба DHCP-клиента 131795770645326170 0x7ffac83f0000 90112 C:\Windows\SYSTEM32\dhcpcsvc6.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиент DHCPv6 131795770645326170 0x7ffac8490000 294912 C:\Windows\System32\dhcpcore6.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиент DHCPv6 131795770645326170 0x7ffac8810000 45056 C:\Windows\SYSTEM32\WINNSI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Network Store Information RPC interface 131795770645326170 0x7ffac8c90000 385024 c:\windows\system32\dhcpcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служба DHCP-клиента 131795770645326170 0x7ffac8df0000 1646592 c:\windows\system32\dbghelp.dll 10.0.14321.1024 (rs1_release.160715-1616) Microsoft Windows Image Helper 131795770645326170 0x7ffac9c30000 1732608 c:\windows\system32\wevtsvc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служба протоколирования событий 131795770645326170 0x7ffaca250000 49152 C:\Windows\SYSTEM32\bi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Background Broker Infrastructure Client Library 131795770645326170 0x7ffaca2a0000 192512 c:\windows\system32\timebrokerserver.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Брокер событий времени 131795770645326170 0x7ffaca330000 36864 c:\windows\system32\nrpsrv.DLL 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Name Resolution Proxy (NRP) RPC interface 131795770645326170 0x7ffaca340000 1593344 C:\Windows\system32\propsys.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Система страниц свойств (Майкрософт) 131795770645326170 0x7ffaca4d0000 53248 c:\windows\system32\lmhsvc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL служб транспорта TCPIP NetBios 131795770645326170 0x7ffaca4e0000 77824 C:\Windows\SYSTEM32\wtsapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Remote Desktop Session Host Server SDK APIs 131795770645326170 0x7ffaca610000 143360 C:\Windows\System32\SAMLIB.dll 10.0.14393.82 (rs1_release.160805-1735) Microsoft Corporation SAM Library DLL 131795770645326170 0x7ffacad70000 278528 c:\windows\system32\BrokerLib.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Broker Base Library 131795770645326170 0x7ffacb1e0000 1163264 C:\Windows\System32\twinapi.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation twinapi.appcore 131795770645326170 0x7ffacb360000 176128 C:\Windows\SYSTEM32\fwbase.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Firewall Base DLL 131795770645326170 0x7ffacb3f0000 163840 c:\windows\system32\DEVOBJ.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Device Information Set DLL 131795770645326170 0x7ffacb420000 204800 C:\Windows\SYSTEM32\ntmarta.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик Windows NT MARTA 131795770645326170 0x7ffacb460000 548864 C:\Windows\SYSTEM32\firewallapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API брандмауэра Windows 131795770645326170 0x7ffacb6e0000 49152 c:\windows\system32\HID.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека пользователя HID 131795770645326170 0x7ffacb6f0000 143360 C:\Windows\SYSTEM32\gpapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиентские функции API групповой политики 131795770645326170 0x7ffacb920000 81920 C:\Windows\SYSTEM32\WLDP.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Политика блокировки Windows 131795770645326170 0x7ffacbbb0000 208896 C:\Windows\system32\rsaenh.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Enhanced Cryptographic Provider 131795770645326170 0x7ffacbd30000 229376 C:\Windows\SYSTEM32\IPHLPAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API вспомогательного приложения IP 131795770645326170 0x7ffacbd70000 659456 C:\Windows\SYSTEM32\DNSAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Динамическая библиотека API DNS-клиента 131795770645326170 0x7ffacbe20000 53248 c:\windows\system32\netutils.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API Helpers DLL 131795770645326170 0x7ffacbe40000 126976 c:\windows\system32\USERENV.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Userenv 131795770645326170 0x7ffacbfb0000 376832 C:\Windows\system32\mswsock.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширение поставщика службы API Microsoft Windows Sockets 2.0 131795770645326170 0x7ffacc150000 94208 C:\Windows\SYSTEM32\CRYPTSP.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Cryptographic Service Provider API 131795770645326170 0x7ffacc170000 45056 C:\Windows\SYSTEM32\CRYPTBASE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base cryptographic API DLL 131795770645326170 0x7ffacc350000 180224 C:\Windows\System32\sspicli.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Security Support Provider Interface 131795770645326170 0x7ffacc5c0000 352256 C:\Windows\SYSTEM32\WINSTA.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Winstation Library 131795770645326170 0x7ffacc620000 176128 c:\windows\system32\bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795770645326170 0x7ffacc6e0000 61440 C:\Windows\System32\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795770645326170 0x7ffacc6f0000 311296 C:\Windows\System32\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795770645326170 0x7ffacc740000 81920 C:\Windows\System32\profapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Profile Basic API 131795770645326170 0x7ffacc760000 65536 C:\Windows\System32\MSASN1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ASN.1 Runtime APIs 131795770645326170 0x7ffacc8f0000 1003520 C:\Windows\System32\ucrtbase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645326170 0x7ffacc9f0000 434176 C:\Windows\System32\bcryptPrimitives.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Cryptographic Primitives Library 131795770645326170 0x7ffacca60000 122880 C:\Windows\System32\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795770645326170 0x7ffacca80000 348160 C:\Windows\System32\WINTRUST.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation Microsoft Trust Verification APIs 131795770645326170 0x7ffaccae0000 692224 C:\Windows\System32\shcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795770645326170 0x7ffacd270000 2215936 C:\Windows\System32\KERNELBASE.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645326170 0x7ffacd490000 1871872 C:\Windows\System32\CRYPT32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API32 криптографии 131795770645326170 0x7ffacd710000 638976 C:\Windows\System32\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645326170 0x7ffacd7b0000 270336 C:\Windows\System32\cfgmgr32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Configuration Manager DLL 131795770645326170 0x7ffaced20000 782336 C:\Windows\System32\OLEAUT32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795770645326170 0x7ffacede0000 450560 C:\Windows\System32\coml2.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft COM for Windows 131795770645326170 0x7ffacee50000 1183744 C:\Windows\System32\RPCRT4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795770645326170 0x7ffacef80000 32768 C:\Windows\System32\NSI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation NSI User-mode interface DLL 131795770645326170 0x7ffacef90000 647168 C:\Windows\System32\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795770645326170 0x7ffacf030000 651264 C:\Windows\System32\clbcatq.dll 2001.12.10941.16384 (rs1_release.160715-1616) Microsoft Corporation COM+ Configuration Catalog 131795770645326170 0x7ffacf0d0000 704512 C:\Windows\System32\KERNEL32.DLL 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645326170 0x7ffacf770000 212992 C:\Windows\System32\GDI32.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation GDI Client DLL 131795770645326170 0x7ffacf820000 434176 C:\Windows\System32\WS2_32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation 32-разрядная библиотека Windows Socket 2.0 131795770645326170 0x7ffacf8c0000 1462272 C:\Windows\System32\user32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795770645326170 0x7ffacfb30000 2916352 C:\Windows\System32\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795770645326170 0x7ffacfe00000 114688 C:\Windows\System32\imagehlp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT Image Helper 131795770645326170 0x7ffacfe20000 663552 C:\Windows\System32\ADVAPI32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795770645326170 0x7ffad0070000 1277952 C:\Windows\System32\ole32.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft OLE для Windows 131795770645326170 0x7ffad0210000 364544 C:\Windows\System32\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795770645326170 0x7ffad0270000 1908736 C:\Windows\SYSTEM32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 8 0 0 8 00000000:00000000 131765775874898587 0 4294967295 1 Idle Idle 131795770645349496 0x7ff7ed960000 1224704 C:\Users\User\AppData\Local\Temp\Procmon64.exe 3.50 Sysinternals - www.sysinternals.com Process Monitor 131795770645349496 0x7ffac1fd0000 999424 C:\Windows\system32\wbem\fastprox.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation WMI Custom Marshaller 131795770645349496 0x7ffac21d0000 81920 C:\Windows\system32\wbem\wbemsvc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation WMI 131795770645349496 0x7ffac2b80000 40960 C:\Windows\SYSTEM32\VERSION.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Version Checking and File Installation Libraries 131795770645349496 0x7ffac3270000 40960 C:\Windows\SYSTEM32\FLTLIB.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека фильтров 131795770645349496 0x7ffac4220000 520192 C:\Windows\SYSTEM32\wbemcomn.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation WMI 131795770645349496 0x7ffac4470000 65536 C:\Windows\system32\wbem\wbemprox.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation WMI 131795770645349496 0x7ffac5630000 339968 C:\Windows\System32\thumbcache.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Кэш эскизов Майкрософт 131795770645349496 0x7ffac6c40000 2596864 C:\Windows\WinSxS\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.14393.953_none_42151e83c686086b\COMCTL32.dll 6.10 (rs1_release_inmarket.170303-1614) Microsoft Corporation Библиотека элементов управления взаимодействия с пользователем 131795770645349496 0x7ffac84f0000 299008 C:\Windows\system32\dataexchange.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation Data exchange 131795770645349496 0x7ffac88a0000 2842624 C:\Windows\system32\d3d11.dll 10.0.14393.953 (rs1_release_inmarket.170303-1614) Microsoft Corporation Direct3D 11 Runtime 131795770645349496 0x7ffac8df0000 1646592 C:\Windows\SYSTEM32\dbghelp.dll 10.0.14321.1024 (rs1_release.160715-1616) Microsoft Windows Image Helper 131795770645349496 0x7ffac9f50000 1736704 C:\Windows\SYSTEM32\WindowsCodecs.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Microsoft Windows Codecs Library 131795770645349496 0x7ffaca340000 1593344 C:\Windows\SYSTEM32\PROPSYS.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Система страниц свойств (Майкрософт) 131795770645349496 0x7ffaca5e0000 155648 C:\Windows\SYSTEM32\dwmapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Интерфейс API диспетчера окон рабочего стола (Майкрософт) 131795770645349496 0x7ffaca770000 1380352 C:\Windows\system32\dcomp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft DirectComposition Library 131795770645349496 0x7ffacadf0000 499712 C:\Windows\system32\apphelp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиентская библиотека совместимости приложений 131795770645349496 0x7ffacaf00000 610304 C:\Windows\SYSTEM32\uxtheme.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека тем UxTheme (Microsoft) 131795770645349496 0x7ffacb1e0000 1163264 C:\Windows\system32\twinapi.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation twinapi.appcore 131795770645349496 0x7ffacb780000 651264 C:\Windows\system32\dxgi.dll 10.0.14393.953 (rs1_release_inmarket.170303-1614) Microsoft Corporation DirectX Graphics Infrastructure 131795770645349496 0x7ffacc620000 176128 C:\Windows\system32\bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795770645349496 0x7ffacc6e0000 61440 C:\Windows\System32\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795770645349496 0x7ffacc6f0000 311296 C:\Windows\System32\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795770645349496 0x7ffacc740000 81920 C:\Windows\System32\profapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Profile Basic API 131795770645349496 0x7ffacc8f0000 1003520 C:\Windows\System32\ucrtbase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645349496 0x7ffacc9f0000 434176 C:\Windows\System32\bcryptPrimitives.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Cryptographic Primitives Library 131795770645349496 0x7ffacca60000 122880 C:\Windows\System32\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795770645349496 0x7ffaccae0000 692224 C:\Windows\System32\shcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795770645349496 0x7ffaccb90000 7180288 C:\Windows\System32\windows.storage.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API хранения Microsoft WinRT 131795770645349496 0x7ffacd270000 2215936 C:\Windows\System32\KERNELBASE.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645349496 0x7ffacd710000 638976 C:\Windows\System32\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645349496 0x7ffacd7b0000 270336 C:\Windows\System32\cfgmgr32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Configuration Manager DLL 131795770645349496 0x7ffacd810000 22056960 C:\Windows\System32\SHELL32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Общая библиотека оболочки Windows 131795770645349496 0x7ffaced20000 782336 C:\Windows\System32\OLEAUT32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795770645349496 0x7ffacee50000 1183744 C:\Windows\System32\RPCRT4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795770645349496 0x7ffacef90000 647168 C:\Windows\System32\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795770645349496 0x7ffacf030000 651264 C:\Windows\System32\clbcatq.dll 2001.12.10941.16384 (rs1_release.160715-1616) Microsoft Corporation COM+ Configuration Catalog 131795770645349496 0x7ffacf0d0000 704512 C:\Windows\System32\KERNEL32.DLL 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645349496 0x7ffacf1e0000 1417216 C:\Windows\System32\MSCTF.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Серверная библиотека MSCTF 131795770645349496 0x7ffacf770000 212992 C:\Windows\System32\GDI32.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation GDI Client DLL 131795770645349496 0x7ffacf820000 434176 C:\Windows\System32\WS2_32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation 32-разрядная библиотека Windows Socket 2.0 131795770645349496 0x7ffacf890000 188416 C:\Windows\System32\IMM32.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Multi-User Windows IMM32 API Client DLL 131795770645349496 0x7ffacf8c0000 1462272 C:\Windows\System32\USER32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795770645349496 0x7ffacfa30000 1024000 C:\Windows\System32\COMDLG32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека общих диалоговых окон 131795770645349496 0x7ffacfb30000 2916352 C:\Windows\System32\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795770645349496 0x7ffacfe20000 663552 C:\Windows\System32\advapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795770645349496 0x7ffad0070000 1277952 C:\Windows\System32\ole32.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft OLE для Windows 131795770645349496 0x7ffad01b0000 335872 C:\Windows\System32\SHLWAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека небольших программ оболочки 131795770645349496 0x7ffad0210000 364544 C:\Windows\System32\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795770645349496 0x7ffad0270000 1908736 C:\Windows\SYSTEM32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 9 4 0 8 00000000:000003e7 131765775907178738 0 0 1 Обязательная метка\Обязательный уровень системы NT AUTHORITY\СИСТЕМА System System 131795770645349720 0xffffc709b6e00000 3698688 C:\Windows\System32\win32kfull.sys 10.0.14393.2189 (rs1_release.180329-1711) Microsoft Corporation Full/Desktop Win32k Kernel Driver 131795770645349720 0xffffc709b7190000 1576960 C:\Windows\System32\win32kbase.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Базовый драйвер ядра Win32k 131795770645349720 0xffffc709b7320000 40960 C:\Windows\System32\TSDDD.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Framebuffer Display Driver 131795770645349720 0xffffc709b7330000 258048 C:\Windows\System32\cdd.dll 10.0.14393.2189 (rs1_release.180329-1711) Microsoft Corporation Canonical Display Driver 131795770645349720 0xffffc709b74a0000 241664 C:\Windows\System32\win32k.sys 10.0.14393.594 (rs1_release_inmarket.161213-1754) Microsoft Corporation Full/Desktop Multi-User Win32 Driver 131795770645349720 0xfffff80278934000 45056 C:\Windows\system32\kd.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Local Kernel Debugger 131795770645349720 0xfffff80279678000 8527872 C:\Windows\system32\ntoskrnl.exe 10.0.14393.2189 (rs1_release.180329-1711) Microsoft Corporation NT Kernel & System 131795770645349720 0xfffff80d92e00000 163840 C:\Windows\System32\drivers\ksecdd.sys 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Kernel Security Support Provider Interface 131795770645349720 0xfffff80d92ee0000 53248 C:\Windows\System32\drivers\cmimcext.sys 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation Kernel Configuration Manager Initial Configuration Extension Host Export Driver 131795770645349720 0xfffff80d92ef0000 49152 C:\Windows\System32\drivers\ntosext.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation NTOS extension host driver 131795770645349720 0xfffff80d92fa0000 647168 C:\Windows\System32\drivers\cng.sys 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Kernel Cryptography, Next Generation 131795770645349720 0xfffff80d93040000 868352 C:\Windows\system32\drivers\Wdf01000.sys 1.19.14393.0 (rs1_release.160715-1616) Microsoft Corporation Среда выполнения платформы драйвера режима ядра 131795770645349720 0xfffff80d93120000 77824 C:\Windows\system32\drivers\WDFLDR.SYS 1.19.14393.0 (rs1_release.160715-1616) Microsoft Corporation Kernel Mode Driver Framework Loader 131795770645349720 0xfffff80d93140000 143360 C:\Windows\System32\Drivers\acpiex.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ACPIEx Driver 131795770645349720 0xfffff80d93170000 57344 C:\Windows\System32\Drivers\WppRecorder.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation WPP Trace Recorder 131795770645349720 0xfffff80d93180000 733184 C:\Windows\System32\drivers\ACPI.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ACPI драйвер для NT 131795770645349720 0xfffff80d93240000 49152 C:\Windows\System32\drivers\WMILIB.SYS 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation WMILIB WMI support library Dll 131795770645349720 0xfffff80d93260000 69632 C:\Windows\System32\drivers\intelpep.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Intel Power Engine Plugin 131795770645349720 0xfffff80d93280000 126976 C:\Windows\system32\drivers\WindowsTrustedRT.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Trusted Runtime Interface Driver 131795770645349720 0xfffff80d932a0000 45056 C:\Windows\System32\drivers\WindowsTrustedRTProxy.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Trusted Runtime Service Proxy Driver 131795770645349720 0xfffff80d932b0000 73728 C:\Windows\System32\drivers\pcw.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Performance Counters for Windows Driver 131795770645349720 0xfffff80d932d0000 45056 C:\Windows\System32\drivers\msisadrv.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ISA Driver 131795770645349720 0xfffff80d932e0000 45056 C:\Windows\System32\drivers\isapnp.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Драйвер шины PNP ISA 131795770645349720 0xfffff80d932f0000 356352 C:\Windows\System32\drivers\pci.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation NT Plug and Play PCI-перечислитель 131795770645349720 0xfffff80d93350000 73728 C:\Windows\System32\drivers\vdrvroot.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Virtual Drive Root Enumerator 131795770645349720 0xfffff80d93370000 135168 C:\Windows\system32\drivers\pdc.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Power Dependency Coordinator Driver 131795770645349720 0xfffff80d933a0000 102400 C:\Windows\system32\drivers\CEA.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Event Aggregation Kernel Mode Library 131795770645349720 0xfffff80d933c0000 147456 C:\Windows\System32\drivers\partmgr.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Partition driver 131795770645349720 0xfffff80d933f0000 163840 C:\Windows\System32\drivers\nvraid.sys 10.6.0.23 (PART_L3.131021-1012) NVIDIA Corporation NVIDIA® nForce(TM) RAID Driver 131795770645349720 0xfffff80d93420000 401408 C:\Windows\System32\drivers\CLASSPNP.SYS 10.0.14393.953 (rs1_release_inmarket.170303-1614) Microsoft Corporation SCSI Class System Dll 131795770645349720 0xfffff80d93490000 139264 C:\Windows\System32\drivers\vmbus.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Дочерний драйвер шины виртуальной машины Microsoft Hyper-V 131795770645349720 0xfffff80d934c0000 1212416 C:\Windows\System32\drivers\NDIS.SYS 10.0.14393.953 (rs1_release_inmarket.170303-1614) Microsoft Corporation NDIS (Network Driver Interface Specification) 131795770645349720 0xfffff80d935f0000 495616 C:\Windows\System32\drivers\NETIO.SYS 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Network I/O Subsystem 131795770645349720 0xfffff80d93670000 135168 C:\Windows\System32\drivers\hvsocket.sys 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Microsoft Hyper-V Socket Provider 131795770645349720 0xfffff80d936a0000 98304 C:\Windows\System32\drivers\vmbkmcl.sys 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Hyper-V VMBus KMCL 131795770645349720 0xfffff80d936c0000 57344 C:\Windows\System32\drivers\winhv.sys 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Windows Hypervisor Interface Driver 131795770645349720 0xfffff80d936d0000 40960 C:\Windows\System32\drivers\pciide.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Generic PCI IDE Bus Driver 131795770645349720 0xfffff80d936e0000 69632 C:\Windows\System32\drivers\PCIIDEX.SYS 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation PCI IDE Bus Driver Extension 131795770645349720 0xfffff80d93700000 593920 C:\Windows\System32\drivers\spaceport.sys 10.0.14393.1914 (rs1_release_inmarket.171117-1700) Microsoft Corporation Storage Spaces Driver 131795770645349720 0xfffff80d937a0000 40960 C:\Windows\System32\drivers\intelide.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Intel PCI IDE Driver 131795770645349720 0xfffff80d937b0000 98304 C:\Windows\System32\drivers\volmgr.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Драйвер диспетчера томов 131795770645349720 0xfffff80d937d0000 385024 C:\Windows\System32\drivers\volmgrx.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Драйвер расширения диспетчера томов 131795770645349720 0xfffff80d93830000 122880 C:\Windows\System32\drivers\mountmgr.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Диспетчер точек подключения 131795770645349720 0xfffff80d93850000 172032 C:\Windows\System32\drivers\nvstor.sys 10.6.0.23 (PART_L3.131021-1012) NVIDIA Corporation NVIDIA® nForce(TM) Sata Performance Driver 131795770645349720 0xfffff80d93880000 532480 C:\Windows\System32\drivers\storport.sys 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft Storage Port Driver 131795770645349720 0xfffff80d93910000 49152 C:\Windows\System32\drivers\atapi.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ATAPI IDE Miniport Driver 131795770645349720 0xfffff80d93920000 217088 C:\Windows\System32\drivers\ataport.SYS 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ATAPI Driver Extension 131795770645349720 0xfffff80d93960000 147456 C:\Windows\System32\drivers\storahci.sys 10.0.14393.2068 (rs1_release.180209-1727) Microsoft Corporation MS AHCI Storport Miniport Driver 131795770645349720 0xfffff80d93990000 102400 C:\Windows\System32\drivers\stornvme.sys 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation Microsoft NVM Express Storport Miniport Driver 131795770645349720 0xfffff80d939b0000 114688 C:\Windows\System32\drivers\EhStorClass.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Enhanced Storage Class driver for IEEE 1667 devices 131795770645349720 0xfffff80d939d0000 102400 C:\Windows\System32\drivers\fileinfo.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation FileInfo Filter Driver 131795770645349720 0xfffff80d939f0000 229376 C:\Windows\System32\Drivers\Wof.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Фильтр оверлея Windows 131795770645349720 0xfffff80d93a80000 2297856 C:\Windows\System32\Drivers\NTFS.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Драйвер файловой системы NT 131795770645349720 0xfffff80d93cc0000 57344 C:\Windows\System32\drivers\storvsc.sys 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Storage VSC Driver 131795770645349720 0xfffff80d93cd0000 53248 C:\Windows\System32\Drivers\Fs_Rec.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation File System Recognizer Driver 131795770645349720 0xfffff80d93d10000 483328 C:\Windows\System32\drivers\USBPORT.SYS 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Драйвер порта USB 1.1 и 2.0 131795770645349720 0xfffff80d93db0000 581632 C:\Windows\system32\mcupdate_GenuineIntel.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Intel Microcode Update Library 131795770645349720 0xfffff80d93e50000 405504 C:\Windows\System32\drivers\CLFS.SYS 10.0.14393.2068 (rs1_release.180209-1727) Microsoft Corporation Common Log File System Driver 131795770645349720 0xfffff80d93ec0000 151552 C:\Windows\System32\drivers\tm.sys 10.0.14393.2189 (rs1_release.180329-1711) Microsoft Corporation Kernel Transaction Manager Driver 131795770645349720 0xfffff80d93ef0000 94208 C:\Windows\system32\PSHED.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Драйвер аппаратных ошибок, специфичных для платформы 131795770645349720 0xfffff80d93f10000 49152 C:\Windows\system32\BOOTVID.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation VGA Boot Driver 131795770645349720 0xfffff80d93f20000 401408 C:\Windows\System32\drivers\FLTMGR.SYS 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Диспетчер фильтров файловых систем Майкрософт 131795770645349720 0xfffff80d93f90000 380928 C:\Windows\System32\drivers\msrpc.sys 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation Kernel Remote Procedure Call Provider 131795770645349720 0xfffff80d94000000 430080 C:\Windows\System32\drivers\fwpkclnt.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation FWP/IPsec Kernel-Mode API 131795770645349720 0xfffff80d94070000 172032 C:\Windows\System32\drivers\wfplwfs.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation WFP NDIS 6.30 Lightweight Filter Driver 131795770645349720 0xfffff80d940b0000 659456 C:\Windows\System32\DRIVERS\fvevol.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation BitLocker Drive Encryption Driver 131795770645349720 0xfffff80d94160000 45056 C:\Windows\System32\drivers\volume.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Volume driver 131795770645349720 0xfffff80d94170000 409600 C:\Windows\System32\drivers\volsnap.sys 10.0.14393.1794 (rs1_release.171008-1615) Microsoft Corporation Volume Shadow Copy driver 131795770645349720 0xfffff80d941e0000 106496 C:\Windows\System32\drivers\scmbus.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Storage Class Memory Bus Driver 131795770645349720 0xfffff80d94200000 294912 C:\Windows\System32\drivers\rdyboost.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ReadyBoost Driver 131795770645349720 0xfffff80d94250000 151552 C:\Windows\System32\Drivers\mup.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Драйвер поставщика множественных UNC 131795770645349720 0xfffff80d94280000 65536 C:\Windows\system32\drivers\iorate.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation I/O rate control Filter 131795770645349720 0xfffff80d942a0000 126976 C:\Windows\System32\drivers\disk.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation PnP Disk Driver 131795770645349720 0xfffff80d942e0000 102400 C:\Windows\System32\Drivers\crashdmp.sys 10.0.14393.351 (rs1_release_inmarket.161014-1755) Microsoft Corporation Crash Dump Driver 131795770645349720 0xfffff80d943c0000 200704 C:\Windows\System32\drivers\cdrom.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SCSI CD-ROM Driver 131795770645349720 0xfffff80d94400000 118784 C:\Windows\system32\drivers\filecrypt.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows sandboxing and encryption filter 131795770645349720 0xfffff80d94420000 57344 C:\Windows\system32\drivers\tbs.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Export driver for kernel mode TPM API 131795770645349720 0xfffff80d94430000 40960 C:\Windows\System32\Drivers\Null.SYS 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation NULL Driver 131795770645349720 0xfffff80d94440000 40960 C:\Windows\System32\Drivers\Beep.SYS 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation BEEP Driver 131795770645349720 0xfffff80d94450000 81920 C:\Windows\System32\drivers\BasicDisplay.sys 10.0.14393.1066 (rs1_release_sec.170327-1835) Microsoft Corporation Microsoft Basic Display Driver 131795770645349720 0xfffff80d94470000 81920 C:\Windows\System32\drivers\watchdog.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Watchdog Driver 131795770645349720 0xfffff80d94490000 2220032 C:\Windows\System32\drivers\dxgkrnl.sys 10.0.14393.2189 (rs1_release.180329-1711) Microsoft Corporation DirectX Graphics Kernel 131795770645349720 0xfffff80d946b0000 73728 C:\Windows\System32\drivers\BasicRender.sys 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation Microsoft Basic Render Driver 131795770645349720 0xfffff80d946d0000 102400 C:\Windows\System32\Drivers\Npfs.SYS 10.0.14393.1737 (rs1_release_inmarket.170914-1249) Microsoft Corporation NPFS Driver 131795770645349720 0xfffff80d94700000 143360 C:\Windows\system32\DRIVERS\tdx.sys 10.0.14393.1613 (rs1_release_d.170807-1806) Microsoft Corporation TDI Translation Driver 131795770645349720 0xfffff80d94740000 307200 C:\Windows\System32\DRIVERS\netbt.sys 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation MBT Transport driver 131795770645349720 0xfffff80d94790000 610304 C:\Windows\system32\drivers\afd.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Драйвер дополнительных функций для Winsock 131795770645349720 0xfffff80d94830000 102400 C:\Windows\System32\drivers\vwififlt.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Virtual WiFi Filter Driver 131795770645349720 0xfffff80d94850000 176128 C:\Windows\System32\drivers\pacer.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Планировщик пакетов QoS 131795770645349720 0xfffff80d94880000 73728 C:\Windows\system32\drivers\netbios.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation NetBIOS interface driver 131795770645349720 0xfffff80d948a0000 479232 C:\Windows\system32\DRIVERS\rdbss.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Драйвер подсистемы буферизации перенаправленного диска 131795770645349720 0xfffff80d94920000 581632 C:\Windows\system32\drivers\csc.sys 10.0.14393.953 (rs1_release_inmarket.170303-1614) Microsoft Corporation Windows Client Side Caching Driver 131795770645349720 0xfffff80d949b0000 106496 C:\Windows\system32\drivers\nsiproxy.sys 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation NSI Proxy 131795770645349720 0xfffff80d949d0000 53248 C:\Windows\System32\drivers\npsvctrig.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Named pipe service triggers 131795770645349720 0xfffff80d949f0000 40960 C:\Windows\System32\drivers\gpuenergydrv.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation GPU Energy Kernel Driver 131795770645349720 0xfffff80d94a00000 172032 C:\Windows\System32\Drivers\dfsc.sys 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation DFS Namespace Client Driver 131795770645349720 0xfffff80d94a50000 258048 C:\Windows\system32\DRIVERS\ahcache.sys 10.0.14393.351 (rs1_release_inmarket.161014-1755) Microsoft Corporation Application Compatibility Cache 131795770645349720 0xfffff80d94a90000 69632 C:\Windows\System32\DriverStore\FileRepository\compositebus.inf_amd64_a140581a8f8b58b7\CompositeBus.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Multi-Transport Composite Bus Enumerator 131795770645349720 0xfffff80d94ab0000 57344 C:\Windows\System32\drivers\kdnic.sys 6.01.00.0000 (rs1_release.160715-1616) Microsoft Corporation Microsoft Kernel Debugger Network Miniport 131795770645349720 0xfffff80d94ac0000 86016 C:\Windows\System32\drivers\umbus.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User-Mode Bus Enumerator 131795770645349720 0xfffff80d94ae0000 139264 C:\Windows\System32\drivers\i8042prt.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Драйвер порта i8042 131795770645349720 0xfffff80d94b10000 77824 C:\Windows\System32\drivers\kbdclass.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Драйвер класса клавиатуры 131795770645349720 0xfffff80d94b30000 73728 C:\Windows\System32\drivers\mouclass.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Драйвер класса мыши 131795770645349720 0xfffff80d94b80000 110592 C:\Windows\System32\drivers\HDAudBus.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation High Definition Audio Bus Driver 131795770645349720 0xfffff80d94ba0000 397312 C:\Windows\System32\drivers\portcls.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Port Class (Class Driver for Port/Miniport Devices) 131795770645349720 0xfffff80d94c10000 135168 C:\Windows\System32\drivers\drmk.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Trusted Audio Drivers 131795770645349720 0xfffff80d94c40000 425984 C:\Windows\System32\drivers\ks.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Kernel CSA Library 131795770645349720 0xfffff80d94cb0000 61440 C:\Windows\System32\drivers\usbohci.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation OHCI USB Miniport Driver 131795770645349720 0xfffff80d94cc0000 57344 C:\Windows\System32\drivers\CmBatt.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Control Method Battery Driver 131795770645349720 0xfffff80d94cd0000 57344 C:\Windows\System32\drivers\BATTC.SYS 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Battery Class Driver 131795770645349720 0xfffff80d94ce0000 176128 C:\Windows\System32\drivers\intelppm.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Processor Device Driver 131795770645349720 0xfffff80d94d10000 53248 C:\Windows\System32\drivers\NdisVirtualBus.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Перечислитель виртуальных сетевых адаптеров (Майкрософт) 131795770645349720 0xfffff80d94d20000 2588672 C:\Windows\System32\drivers\tcpip.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Драйвер TCP/IP 131795770645349720 0xfffff80d94fa0000 49152 C:\Windows\System32\drivers\swenum.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Plug and Play Software Device Enumerator 131795770645349720 0xfffff80d94fb0000 57344 C:\Windows\System32\drivers\rdpbus.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft RDP Bus Device driver 131795770645349720 0xfffff80d95200000 344064 C:\Windows\system32\DRIVERS\udfs.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation UDF File System Driver 131795770645349720 0xfffff80d95280000 61440 C:\Windows\System32\Drivers\dump_diskdump.sys 131795770645349720 0xfffff80d952c0000 147456 C:\Windows\System32\Drivers\dump_storahci.sys 131795770645349720 0xfffff80d95310000 118784 C:\Windows\System32\Drivers\dump_dumpfve.sys 131795770645349720 0xfffff80d95330000 1122304 C:\Windows\system32\drivers\HTTP.sys 10.0.14393.1532 (rs1_release_d.170711-1840) Microsoft Corporation Стек протокола HTTP 131795770645349720 0xfffff80d95450000 122880 C:\Windows\system32\drivers\WudfPf.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Driver Foundation - User-mode Driver Framework Platform Driver 131795770645349720 0xfffff80d95470000 139264 C:\Windows\system32\DRIVERS\bowser.sys 10.0.14393.447 (rs1_release_inmarket.161102-0100) Microsoft Corporation NT Lan Manager Datagram Receiver Driver 131795770645349720 0xfffff80d954a0000 479232 C:\Windows\system32\DRIVERS\mrxsmb.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT SMB Minirdr 131795770645349720 0xfffff80d95520000 102400 C:\Windows\System32\drivers\mpsdrv.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Protection Service Driver 131795770645349720 0xfffff80d95540000 241664 C:\Windows\system32\DRIVERS\mrxsmb20.sys 10.0.14393.2035 (rs1_release_inmarket.180110-1910) Microsoft Corporation Longhorn SMB 2.0 Redirector 131795770645349720 0xfffff80d95580000 278528 C:\Windows\System32\DRIVERS\srvnet.sys 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Server Network driver 131795770645349720 0xfffff80d955d0000 741376 C:\Windows\System32\DRIVERS\srv2.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Драйвер сервера SMB 2.0 131795770645349720 0xfffff80d95690000 315392 C:\Windows\system32\DRIVERS\mrxsmb10.sys 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Longhorn SMB Downlevel SubRdr 131795770645349720 0xfffff80d956e0000 573440 C:\Windows\System32\DRIVERS\srv.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Server driver 131795770645349720 0xfffff80d95770000 81920 C:\Windows\System32\drivers\tcpipreg.sys 10.0.14393.1480 (rs1_release.170706-2004) Microsoft Corporation TCP/IP Registry Compatibility Driver 131795770645349720 0xfffff80d95860000 684032 C:\Windows\System32\drivers\dxgmms2.sys 10.0.14393.2189 (rs1_release.180329-1711) Microsoft Corporation DirectX Graphics MMS 131795770645349720 0xfffff80d95910000 155648 C:\Windows\system32\drivers\luafv.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Драйвер фильтра виртуализации файлов LUA 131795770645349720 0xfffff80d95960000 102400 C:\Windows\system32\drivers\storqosflt.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Фильтр качества обслуживания хранилища 131795770645349720 0xfffff80d95980000 98304 C:\Windows\System32\drivers\registry.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Registry Containment Driver 131795770645349720 0xfffff80d959a0000 90112 C:\Windows\system32\drivers\lltdio.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Link-Layer Topology Mapper I/O Driver 131795770645349720 0xfffff80d959c0000 98304 C:\Windows\system32\drivers\mslldp.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Драйвер протокола Microsoft LLDP 131795770645349720 0xfffff80d959e0000 106496 C:\Windows\system32\drivers\rspndr.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Link-Layer Topology Responder Driver for NDIS 6 131795770645349720 0xfffff80d95ae0000 57344 C:\Windows\System32\drivers\USBD.SYS 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Universal Serial Bus Driver 131795770645349720 0xfffff80d95af0000 434176 C:\Windows\system32\DRIVERS\HdAudio.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation High Definition Audio Function Driver 131795770645349720 0xfffff80d95b60000 57344 C:\Windows\system32\drivers\ksthunk.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Kernel Streaming WOW Thunk Service 131795770645349720 0xfffff80d95bc0000 73728 C:\Windows\System32\drivers\HIDPARSE.SYS 10.0.14393.2068 (rs1_release.180209-1727) Microsoft Corporation Hid Parsing Library 131795770645349720 0xfffff80d97020000 208896 C:\Windows\System32\Drivers\360AntiHacker64.sys 1.0.0.1149 360.cn 360安全卫士 网络防黑模块 131795770645349720 0xfffff80d97060000 102400 C:\Windows\system32\DRIVERS\360AvFlt.sys 1.1.0.1056 360.cn 360杀毒 文件监控驱动 131795770645349720 0xfffff80d97080000 217088 C:\Windows\system32\DRIVERS\BAPIDRV64.sys 2.0.0.1221 360.cn BAPIDRV 131795770645349720 0xfffff80d970c0000 372736 C:\Windows\system32\drivers\360netmon.sys 2.1.11.5195 360.cn 360netmon 131795770645349720 0xfffff80d97120000 356352 C:\Windows\system32\DRIVERS\360Box64.sys 2.1.0.1253 360.cn 360Box64 131795770645349720 0xfffff80d97180000 811008 C:\Windows\system32\DRIVERS\360FsFlt.sys 6.9.1.1751 360.cn 360 Total Security 131795770645349720 0xfffff80d97330000 69632 C:\Windows\System32\drivers\hidusb.sys 10.0.14393.82 (rs1_release.160805-1735) Microsoft Corporation USB Miniport Driver for Input Devices 131795770645349720 0xfffff80d97350000 192512 C:\Windows\System32\drivers\HIDCLASS.SYS 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека классов HID 131795770645349720 0xfffff80d97380000 61440 C:\Windows\System32\drivers\mouhid.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Драйвер фильтра мыши HID 131795770645349720 0xfffff80d97390000 106496 C:\Windows\System32\drivers\rassstp.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation RAS SSTP Miniport Call Manager 131795770645349720 0xfffff80d973b0000 86016 C:\Windows\System32\DRIVERS\NDProxy.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation NDIS Proxy 131795770645349720 0xfffff80d973d0000 159744 C:\Windows\System32\drivers\AgileVpn.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Диспетчер вызовов минипорта RAS Agile VPN 131795770645349720 0xfffff80d97420000 131072 C:\Windows\System32\drivers\rasl2tp.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation RAS L2TP mini-port/call-manager driver 131795770645349720 0xfffff80d97460000 126976 C:\Windows\System32\drivers\raspptp.sys 10.0.14393.2035 (rs1_release_inmarket.180110-1910) Microsoft Corporation Peer-to-Peer Tunneling Protocol 131795770645349720 0xfffff80d974a0000 110592 C:\Windows\System32\drivers\raspppoe.sys 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation RAS PPPoE mini-port/call-manager driver 131795770645349720 0xfffff80d974c0000 57344 C:\Windows\System32\DRIVERS\ndistapi.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation NDIS 3.0 connection wrapper driver 131795770645349720 0xfffff80d974d0000 221184 C:\Windows\System32\drivers\ndiswan.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation MS PPP Framing Driver (Strong Encryption) 131795770645349720 0xfffff80d97510000 110592 C:\Windows\System32\DRIVERS\wanarp.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation MS Remote Access and Routing ARP Driver 131795770645349720 0xfffff80d97550000 151552 C:\Windows\System32\drivers\E1G6032E.sys 8.4.13.0 built by: WinDDK Intel Corporation Intel(R) PRO/1000 Adapter NDIS 6 deserialized driver 131795770645349720 0xfffff80d97580000 192512 C:\Windows\System32\drivers\tunnel.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Драйвер интерфейса туннеля (Майкрософт) 131795770645349720 0xfffff80d97600000 106496 C:\Windows\system32\Drivers\PROCMON24.SYS 3.10 Sysinternals - www.sysinternals.com Process Monitor Driver 131795770645349720 0xfffff80d97a60000 794624 C:\Windows\system32\drivers\peauth.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Protected Environment Authentication and Authorization Export Driver 131795770645349720 0xfffff80d97b30000 155648 C:\Windows\system32\drivers\Ndu.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Network Data Usage Monitoring Driver 131795770645349720 0xfffff80d97b60000 81920 C:\Windows\system32\drivers\mmcss.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation MMCSS Driver 131795770645349720 0xfffff80d97bb0000 73728 C:\Windows\System32\drivers\condrv.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Console Driver 10 320 4 9 00000000:000003e7 131765775908989732 0 0 1 Обязательная метка\Обязательный уровень системы NT AUTHORITY\СИСТЕМА smss.exe C:\Windows\System32\smss.exe \SystemRoot\System32\smss.exe Microsoft Corporation 10.0.14393.0 (rs1_release.160715-1616) Диспетчер сеанса Windows 11 3108 3092 12 00000000:0031f1da 131765777624392598 0 0 1 Обязательная метка\Средний обязательный уровень WIN-0UOTFKKVN1S\User Explorer.EXE C:\Windows\Explorer.EXE C:\Windows\Explorer.EXE Microsoft Corporation 10.0.14393.0 (rs1_release.160715-1616) Проводник 131795770645352881 0x31b0000 12288 C:\Windows\system32\sfc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows File Protection 131795770645352881 0x5db0000 397312 C:\Program Files\Uninstall Tool\utshellext.dll 1.1.0.15 CrystalIDEA Software Uninstall Tool Shell Extension 131795770645352881 0x81a0000 8937472 C:\Program Files\MICROS~1\Office16\1049\GrooveIntlResource.dll 16.0.4266.1001 Корпорация Майкрософт Модуль международных ресурсов для Microsoft OneDrive для бизнеса 131795770645352881 0x8cb0000 593920 C:\Windows\SYSTEM32\UIRibbonRes.dll 10.0.14393.2189 (rs1_release.180329-1711) Microsoft Corporation Windows Ribbon Framework Resources 131795770645352881 0x5bf70000 667648 C:\Windows\WinSxS\amd64_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.9247_none_08e394a1a83e212f\MSVCR90.dll 9.00.30729.9247 Microsoft Corporation Microsoft® C Runtime Library 131795770645352881 0x180000000 241664 C:\Program Files (x86)\Notepad++\NppShell_06.dll 0.1 ShellHandler for Notepad++ (64 bit) 131795770645352881 0x7ff6a5b30000 4665344 C:\Windows\Explorer.EXE 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Проводник 131795770645352881 0x7ff7808b0000 8527872 C:\Windows\system32\ntoskrnl.exe 10.0.14393.2189 (rs1_release.180329-1711) Microsoft Corporation NT Kernel & System 131795770645352881 0x7ffaa6c80000 2093056 C:\Windows\system32\wpdshext.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширение оболочки для переносных устройств 131795770645352881 0x7ffaab350000 1683456 C:\Windows\System32\comsvcs.dll 2001.12.10941.16384 (rs1_release_1.180305-1842) Microsoft Corporation COM+ Services 131795770645352881 0x7ffaab4f0000 1400832 C:\Windows\system32\connect.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Мастера подключений 131795770645352881 0x7ffaab650000 970752 C:\Windows\system32\rasgcw.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Страницы мастера RAS 131795770645352881 0x7ffaab880000 532480 C:\Windows\System32\MPRAPI.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation Windows NT MP Router Administration DLL 131795770645352881 0x7ffaab910000 905216 C:\Windows\System32\RASDLG.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API общих диалогов службы удаленного доступа 131795770645352881 0x7ffaac6e0000 13156352 C:\Windows\system32\ieframe.DLL 11.00.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Браузер 131795770645352881 0x7ffab0df0000 1626112 C:\Windows\SYSTEM32\d3d9.dll 10.0.14393.447 (rs1_release_inmarket.161102-0100) Microsoft Corporation Direct3D 9 Runtime 131795770645352881 0x7ffab0f80000 1777664 C:\Program Files\Windows Photo Viewer\PhotoViewer.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Просмотр фотографий Windows 131795770645352881 0x7ffab1d80000 262144 C:\Windows\system32\eappcfg.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Eap Peer Config 131795770645352881 0x7ffab2460000 2822144 C:\Windows\System32\netshell.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Оболочка сетевых подключений 131795770645352881 0x7ffab2720000 606208 C:\Windows\System32\DUser.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows DirectUser Engine 131795770645352881 0x7ffab27c0000 516096 C:\Windows\System32\imapi2.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation IMAPI версии 2 131795770645352881 0x7ffab2840000 253952 C:\Windows\System32\bthprops.cpl 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Приложение панели управления Bluetooth 131795770645352881 0x7ffab2880000 315392 C:\Windows\System32\cscobj.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Внутрипроцессный COM-объект используемый клиентами CSC API 131795770645352881 0x7ffab28d0000 802816 C:\Windows\System32\cscui.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Интерфейс кэширования на стороне клиента 131795770645352881 0x7ffab29a0000 1912832 C:\Windows\System32\pnidui.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Значок сетевой системы 131795770645352881 0x7ffab2b80000 212992 C:\Windows\system32\SettingMonitor.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Setting Synchronization Change Monitor 131795770645352881 0x7ffab2bc0000 204800 C:\Windows\System32\PortableDeviceTypes.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Portable Device (Parameter) Types Component 131795770645352881 0x7ffab33d0000 258048 C:\Windows\SYSTEM32\MLANG.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL многоязыковой поддержки 131795770645352881 0x7ffab34f0000 323584 C:\Windows\System32\Actioncenter.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Центр безопасности и обслуживания 131795770645352881 0x7ffab4af0000 606208 C:\Windows\SYSTEM32\AUDIOSES.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Сеанс обработки звука 131795770645352881 0x7ffab4b90000 655360 C:\Windows\System32\StructuredQuery.dll 7.0.14393.2068 (rs1_release.180209-1727) Microsoft Corporation Structured Query 131795770645352881 0x7ffab5120000 1691648 C:\Windows\system32\BatMeter.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Battery Meter Helper DLL 131795770645352881 0x7ffab5520000 3231744 C:\Windows\SYSTEM32\MsftEdit.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Элемент управления "Поле ввода форматированного текста", версия 8.5 131795770645352881 0x7ffab5b40000 2527232 C:\Windows\SYSTEM32\DWrite.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Службы Microsoft DirectX Typography 131795770645352881 0x7ffab7d80000 753664 C:\Windows\System32\RASAPI32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API удаленного доступа 131795770645352881 0x7ffab7e40000 3420160 C:\Windows\System32\SyncCenter.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Центр синхронизации Майкрософт 131795770645352881 0x7ffab8190000 9191424 C:\Windows\System32\TwinUI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation TWINUI 131795770645352881 0x7ffab8da0000 1675264 C:\Windows\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.14393.1715_none_aec701fbddd850fa\gdiplus.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Microsoft GDI+ 131795770645352881 0x7ffab92e0000 827392 C:\Windows\system32\Windows.Storage.Search.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows.Storage.Search 131795770645352881 0x7ffab93b0000 897024 C:\Windows\System32\TokenBroker.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Token Broker 131795770645352881 0x7ffab9490000 860160 C:\Windows\system32\ntshrui.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширения оболочки, обеспечивающие общий доступ 131795770645352881 0x7ffab95c0000 4091904 C:\Windows\system32\UIRibbon.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Платформа ленты Windows 131795770645352881 0x7ffab99b0000 499712 C:\Windows\system32\dxp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширение оболочки компонента Device Stage 131795770645352881 0x7ffab9ba0000 389120 C:\Windows\SYSTEM32\searchfolder.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SearchFolder 131795770645352881 0x7ffaba950000 188416 C:\Windows\System32\EthernetMediaManager.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Ethernet Media Manager DLL 131795770645352881 0x7ffabaa50000 339968 C:\Windows\System32\NetworkUXBroker.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation NetworkUXBroker DLL 131795770645352881 0x7ffabaab0000 94208 C:\Windows\SYSTEM32\profext.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation profext 131795770645352881 0x7ffabab30000 303104 C:\Windows\System32\NotificationObjFactory.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Notifications Object Factory 131795770645352881 0x7ffabac60000 151552 C:\Windows\System32\EhStorAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Enhanced Storage API 131795770645352881 0x7ffabacc0000 1380352 C:\Windows\System32\SharedStartModel.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Shared Start Model InProc Server 131795770645352881 0x7ffabae20000 40960 C:\Windows\SYSTEM32\msiltcfg.dll 5.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Installer Configuration API Stub 131795770645352881 0x7ffabae60000 77824 C:\Windows\System32\DEVRTL.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Device Management Run Time Library 131795770645352881 0x7ffabaea0000 266240 C:\Windows\system32\SHDOCVW.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека объектов документов и элементов управления оболочки 131795770645352881 0x7ffabaf70000 270336 C:\Windows\SYSTEM32\edputil.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служебная программа EDP 131795770645352881 0x7ffabafc0000 700416 C:\Windows\System32\wer.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека сообщений об ошибках Windows 131795770645352881 0x7ffabb2b0000 1089536 C:\Windows\SYSTEM32\settingsynccore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Setting Synchronization Core 131795770645352881 0x7ffabb430000 65536 C:\Windows\SYSTEM32\pcacli.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Program Compatibility Assistant Client Module 131795770645352881 0x7ffabb490000 512000 C:\Windows\SYSTEM32\TWINAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation twinapi 131795770645352881 0x7ffabba80000 995328 C:\Windows\System32\twinui.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation TWINUI.APPCORE 131795770645352881 0x7ffabbb80000 61440 C:\Windows\System32\dsclient.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Data Sharing Service Client DLL 131795770645352881 0x7ffabbb90000 581632 C:\Windows\System32\Windows.System.Launcher.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows.System.Launcher 131795770645352881 0x7ffabbc40000 643072 C:\Windows\SYSTEM32\MSVCP140.dll 14.10.24516.0 built by: VCTOOLSRELESC Microsoft Corporation Microsoft® C Runtime Library 131795770645352881 0x7ffabbce0000 90112 C:\Windows\SYSTEM32\VCRUNTIME140.dll 14.10.24516.0 built by: VCTOOLSRELESC Microsoft Corporation Microsoft® C Runtime Library 131795770645352881 0x7ffabbd00000 36864 C:\Windows\System32\WpPortingLibrary.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation <d> DLL 131795770645352881 0x7ffabbd20000 106496 C:\Windows\SYSTEM32\settingsyncpolicy.dll 10.0.14393.82 (rs1_release.160805-1735) Microsoft Corporation SettingSync Policy 131795770645352881 0x7ffabc0b0000 65536 C:\Windows\SYSTEM32\LINKINFO.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Volume Tracking 131795770645352881 0x7ffabc510000 90112 C:\Windows\system32\execmodelproxy.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ExecModelProxy 131795770645352881 0x7ffabc880000 73728 C:\Windows\SYSTEM32\cscapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Offline Files Win32 API 131795770645352881 0x7ffabcf30000 110592 C:\Windows\SYSTEM32\MPR.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека маршрутизации для нескольких служб доступа 131795770645352881 0x7ffabd3c0000 368640 C:\Windows\System32\InputSwitch.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Переключатель ввода Microsoft Windows 131795770645352881 0x7ffabd4a0000 1613824 C:\Windows\System32\Windows.Globalization.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Globalization 131795770645352881 0x7ffabd670000 315392 C:\Windows\System32\framedynos.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation WMI SDK Provider Framework 131795770645352881 0x7ffabd6c0000 1306624 C:\Windows\System32\werconcpl.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation PRS CPL 131795770645352881 0x7ffabd800000 876544 C:\Windows\System32\NPSMDesktopProvider.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation <d> Библиотека DLL локального поставщика рабочего стола NPSM 131795770645352881 0x7ffabda60000 1241088 C:\Windows\System32\wscui.cpl 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Центр безопасности и обслуживания 131795770645352881 0x7ffabdbb0000 1736704 C:\Windows\SYSTEM32\DUI70.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Подсистема DirectUI Windows 131795770645352881 0x7ffabdeb0000 86016 C:\Windows\system32\wpdshserviceobj.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Portable Device Shell Service Object 131795770645352881 0x7ffabded0000 413696 C:\Windows\system32\stobject.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Объект службы оболочки Systray 131795770645352881 0x7ffabe070000 610304 C:\Windows\SYSTEM32\efswrt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Storage Protection Windows Runtime DLL 131795770645352881 0x7ffabe470000 180224 C:\Windows\System32\wscinterop.dll 10.0.14393.479 (rs1_release.161110-2025) Microsoft Corporation Windows Health Center WSC Interop 131795770645352881 0x7ffabe4d0000 286720 C:\Windows\System32\MSWB7.dll 10.0.14393.1737 (rs1_release_inmarket.170914-1249) Microsoft Corporation MSWB7 DLL 131795770645352881 0x7ffabe580000 831488 C:\Program Files (x86)\360\Total Security\MenuEx64.dll 9, 6, 0, 1001 360 Total Security 131795770645352881 0x7ffabe650000 405504 C:\Windows\system32\zipfldr.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Сжатые ZIP-папки 131795770645352881 0x7ffabe850000 155648 C:\Windows\System32\IDStore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Identity Store 131795770645352881 0x7ffabe9a0000 94208 C:\Windows\system32\Syncreg.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Synchronization Framework Registration 131795770645352881 0x7ffabe9c0000 188416 C:\Windows\SYSTEM32\globinputhost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Globalization Extension API for Input 131795770645352881 0x7ffabebf0000 1208320 C:\Windows\system32\NetworkExplorer.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Сетевой проводник 131795770645352881 0x7ffabef80000 69632 C:\Windows\System32\sfc_os.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows File Protection 131795770645352881 0x7ffabf0b0000 176128 C:\Windows\System32\playtomenu.dll 12.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека меню функции "Передать на устройство" 131795770645352881 0x7ffabf0e0000 372736 C:\Windows\System32\hnetcfg.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Диспетчер конфигурации домашней сети 131795770645352881 0x7ffabf330000 2457600 C:\Windows\System32\msxml6.dll 6.30.14393.2156 Microsoft Corporation MSXML 6.0 131795770645352881 0x7ffabf590000 208896 C:\Windows\system32\syncui.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Портфель Windows 131795770645352881 0x7ffabf5d0000 2924544 C:\Windows\SYSTEM32\WININET.dll 11.00.14393.447 (rs1_release_inmarket.161102-0100) Microsoft Corporation Расширения Интернета для Win32 131795770645352881 0x7ffabf8c0000 802816 C:\Windows\system32\Windows.Internal.Shell.Broker.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation Windows Shell Broker 131795770645352881 0x7ffabfb00000 626688 C:\Windows\System32\ContentDeliveryManager.Utilities.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation ContentDeliveryManager.Utilities 131795770645352881 0x7ffabfba0000 212992 C:\Windows\System32\WSCAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API центра обеспечения безопасности Windows 131795770645352881 0x7ffabfdc0000 86016 C:\Windows\system32\keepaliveprovider.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Keep alive provider API 131795770645352881 0x7ffabfe50000 643072 C:\Windows\System32\wpnprv.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик подключения платформы push-уведомлений Windows 131795770645352881 0x7ffabff10000 155648 C:\Windows\system32\srvcli.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Server Service Client DLL 131795770645352881 0x7ffabff60000 135168 C:\Windows\system32\ncryptsslp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft SChannel Provider 131795770645352881 0x7ffac01e0000 397312 C:\Windows\System32\wincorlib.DLL 10.0.14393.576 (rs1_release_inmarket.161208-2252) Microsoft Corporation Microsoft Windows ® WinRT core library 131795770645352881 0x7ffac0250000 2179072 C:\Program Files\MICROS~1\Office16\GROOVEEX.DLL 16.0.4266.1001 Microsoft Corporation Microsoft OneDrive for Business Extensions 131795770645352881 0x7ffac0470000 1478656 C:\Windows\SYSTEM32\MFPlat.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Media Foundation Platform DLL 131795770645352881 0x7ffac05f0000 94208 C:\Windows\System32\wwapi.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation WWAN API 131795770645352881 0x7ffac0610000 3088384 C:\Windows\SYSTEM32\msi.dll 5.0.14393.2155 Microsoft Corporation Windows Installer 131795770645352881 0x7ffac0910000 724992 C:\Windows\System32\Windows.Networking.Connectivity.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Networking Connectivity Runtime DLL 131795770645352881 0x7ffac09d0000 884736 C:\Windows\System32\wpnapps.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Приложения для push-уведомлений Windows 131795770645352881 0x7ffac0ad0000 86016 C:\Windows\SYSTEM32\mskeyprotect.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик защиты ключей (Майкрософт) 131795770645352881 0x7ffac0af0000 114688 C:\Windows\System32\ATL.DLL 3.05.2284 Microsoft Corporation ATL Module for Windows XP (Unicode) 131795770645352881 0x7ffac0b40000 315392 C:\Windows\System32\dlnashext.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLNA Namespace DLL 131795770645352881 0x7ffac0b90000 380928 C:\Windows\System32\srchadmin.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Параметры индексирования 131795770645352881 0x7ffac0bf0000 3559424 C:\Windows\System32\ActXPrxy.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation ActiveX Interface Marshaling Library 131795770645352881 0x7ffac0f60000 151552 C:\Windows\SYSTEM32\CHARTV.dll 10.0.14393.351 (rs1_release_inmarket.161014-1755) Microsoft Corporation Chart View 131795770645352881 0x7ffac1b70000 122880 C:\Windows\System32\DevDispItemProvider.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Подсистема DeviceItem inproc devquery 131795770645352881 0x7ffac1cc0000 163840 C:\Windows\System32\Windows.Networking.Sockets.PushEnabledApplication.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows.Networking.Sockets.PushEnabledApplication DLL 131795770645352881 0x7ffac1d60000 589824 C:\Windows\System32\webio.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API протоколов передачи по Веб 131795770645352881 0x7ffac1e50000 188416 C:\Windows\SYSTEM32\RTWorkQ.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL для WorkQueue реального времени 131795770645352881 0x7ffac1fd0000 999424 C:\Windows\system32\wbem\fastprox.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation WMI Custom Marshaller 131795770645352881 0x7ffac20d0000 110592 C:\Windows\System32\RMCLIENT.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Resource Manager Client 131795770645352881 0x7ffac21d0000 81920 C:\Windows\system32\wbem\wbemsvc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation WMI 131795770645352881 0x7ffac2360000 57344 C:\Windows\System32\TimeBrokerClient.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Time Broker Client Library 131795770645352881 0x7ffac23c0000 331776 C:\Windows\System32\OneCoreCommonProxyStub.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation OneCore Common Proxy Stub 131795770645352881 0x7ffac2530000 270336 C:\Windows\system32\hnetcfgclient.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиент API конфигурации домашней сети 131795770645352881 0x7ffac2700000 98304 C:\Windows\system32\NETAPI32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API DLL 131795770645352881 0x7ffac27a0000 1642496 C:\Users\User\AppData\Local\Microsoft\OneDrive\18.111.0603.0006\amd64\FileSyncShell64.dll 18.111.0603.0006 Microsoft Corporation Microsoft OneDrive Shell Extension 131795770645352881 0x7ffac2960000 143360 C:\Windows\system32\mssprxy.dll 7.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation Microsoft Search Proxy 131795770645352881 0x7ffac2990000 385024 C:\Windows\SYSTEM32\NInput.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Pen and Touch Input Component 131795770645352881 0x7ffac29f0000 159744 C:\Windows\system32\NetSetupApi.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Network Configuration API 131795770645352881 0x7ffac2a20000 81920 C:\Windows\System32\rtutils.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Routing Utilities 131795770645352881 0x7ffac2b80000 40960 C:\Windows\SYSTEM32\VERSION.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Version Checking and File Installation Libraries 131795770645352881 0x7ffac2cb0000 778240 C:\Windows\System32\winsqlite3.dll 3.12.2 SQLite Development Team SQLite is a software library that implements a self-contained, serverless, zero-configuration, transactional SQL database engine. 131795770645352881 0x7ffac2d80000 5140480 C:\Windows\System32\cdp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API клиента Microsoft (R) CDP 131795770645352881 0x7ffac32e0000 180224 C:\Windows\system32\twext.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Свойства: Предыдущие версии 131795770645352881 0x7ffac3350000 36864 C:\Windows\SYSTEM32\OLEACCHOOKS.DLL 7.2.14393.0 (rs1_release.160715-1616) Microsoft Corporation Active Accessibility Event Hooks Library 131795770645352881 0x7ffac3360000 1396736 C:\Windows\System32\wpncore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Ядро извещающих уведомлений Windows 131795770645352881 0x7ffac34e0000 1843200 C:\Windows\SYSTEM32\urlmon.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширения OLE32 для Win32 131795770645352881 0x7ffac37d0000 258048 C:\Windows\SYSTEM32\wdmaud.drv 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Системный звуковой драйвер Winmm 131795770645352881 0x7ffac3cb0000 2772992 C:\Windows\SYSTEM32\iertutil.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служебная программа времени выполнения для Internet Explorer 131795770645352881 0x7ffac4000000 274432 C:\Windows\SYSTEM32\policymanager.dll 10.0.14393.2035 (rs1_release_inmarket.180110-1910) Microsoft Corporation Policy Manager DLL 131795770645352881 0x7ffac4070000 499712 C:\Windows\SYSTEM32\dsreg.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation AD/AAD User Device Registration 131795770645352881 0x7ffac4140000 114688 C:\Windows\SYSTEM32\MSACM32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Фильтр диспетчера аудиосжатия Microsoft 131795770645352881 0x7ffac4220000 520192 C:\Windows\SYSTEM32\wbemcomn.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation WMI 131795770645352881 0x7ffac42a0000 659456 C:\Windows\System32\StateRepository.Core.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation StateRepository Core 131795770645352881 0x7ffac4450000 86016 C:\Windows\SYSTEM32\usermgrcli.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation UserMgr API DLL 131795770645352881 0x7ffac4470000 65536 C:\Windows\system32\wbem\wbemprox.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation WMI 131795770645352881 0x7ffac46d0000 4161536 C:\Windows\System32\Windows.StateRepository.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Сервер Windows StateRepository API Server 131795770645352881 0x7ffac4df0000 462848 C:\Windows\System32\provsvc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Домашняя группа Windows 131795770645352881 0x7ffac4ea0000 36864 C:\Windows\SYSTEM32\atlthunk.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation atlthunk.dll 131795770645352881 0x7ffac4f60000 143360 C:\Windows\System32\wcmapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Connection Manager Client API 131795770645352881 0x7ffac4f90000 221184 C:\Windows\System32\EhStorShell.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL расширения оболочки Windows Enhanced Storage 131795770645352881 0x7ffac4fd0000 618496 C:\Windows\System32\wlidprov.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft® Account Provider 131795770645352881 0x7ffac5070000 798720 C:\Windows\System32\Windows.Web.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL веб-клиента 131795770645352881 0x7ffac5140000 307200 C:\Windows\System32\AboveLockAppHost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AboveLockAppHost 131795770645352881 0x7ffac5190000 659456 C:\Windows\System32\NotificationController.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation NotificationController 131795770645352881 0x7ffac5350000 1765376 C:\Windows\System32\Windows.UI.Immersive.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation WINDOWS.UI.IMMERSIVE 131795770645352881 0x7ffac5500000 438272 C:\Windows\SYSTEM32\PhotoMetadataHandler.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Photo Metadata Handler 131795770645352881 0x7ffac5570000 339968 C:\Windows\system32\twinui.pcshell.dll 10.0.14393.351 (rs1_release_inmarket.161014-1755) Microsoft Corporation Twinui.PCShell 131795770645352881 0x7ffac55d0000 376832 C:\Windows\System32\windows.immersiveshell.serviceprovider.dll 10.0.14393.1593 (rs1_release.170731-1934) Microsoft Corporation Windows.ImmersiveShell.ServiceProvider 131795770645352881 0x7ffac5630000 339968 C:\Windows\System32\thumbcache.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Кэш эскизов Майкрософт 131795770645352881 0x7ffac5690000 4734976 C:\Windows\system32\explorerframe.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ExplorerFrame 131795770645352881 0x7ffac5bb0000 622592 C:\Program Files\Common Files\microsoft shared\ink\tiptsf.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Инфраструктура текстовых служб сенсорной клавиатуры и панели рукописного ввода 131795770645352881 0x7ffac5c70000 65536 C:\Program Files\Windows Photo Viewer\PhotoBase.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Photo Base Library 131795770645352881 0x7ffac5ce0000 1744896 C:\Windows\SYSTEM32\UIAutomationCore.DLL 7.2.14393.0 (rs1_release.160715-1616) Microsoft Corporation Основные автоматические компоненты Microsoft UI 131795770645352881 0x7ffac60e0000 221184 C:\Windows\System32\XmlLite.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft XmlLite Library 131795770645352881 0x7ffac6610000 40960 C:\Windows\System32\rasadhlp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Remote Access AutoDial Helper 131795770645352881 0x7ffac6650000 176128 C:\Windows\System32\npsm.dll 10.0.14393.447 (rs1_release_inmarket.161102-0100) Microsoft Corporation NPSM 131795770645352881 0x7ffac69c0000 839680 C:\Windows\System32\WINHTTP.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Службы HTTP Windows 131795770645352881 0x7ffac6ac0000 835584 C:\Windows\System32\Windows.UI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Runtime UI Foundation DLL 131795770645352881 0x7ffac6ba0000 49152 C:\Windows\SYSTEM32\Secur32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Security Support Provider Interface 131795770645352881 0x7ffac6bd0000 413696 C:\Windows\SYSTEM32\OLEACC.dll 7.2.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Active Accessibility Core Component 131795770645352881 0x7ffac6c40000 2596864 C:\Windows\WinSxS\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.14393.953_none_42151e83c686086b\comctl32.dll 6.10 (rs1_release_inmarket.170303-1614) Microsoft Corporation Библиотека элементов управления взаимодействия с пользователем 131795770645352881 0x7ffac6ec0000 36864 C:\Windows\system32\IconCodecService.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Converts a PNG part of the icon to a legacy bmp icon 131795770645352881 0x7ffac6f50000 5632000 C:\Windows\System32\d2d1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека Microsoft D2D 131795770645352881 0x7ffac7580000 1077248 C:\Windows\SYSTEM32\MrmCoreR.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Windows MRM 131795770645352881 0x7ffac76a0000 159744 C:\Windows\SYSTEM32\sppc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Software Licensing Client DLL 131795770645352881 0x7ffac78f0000 647168 C:\Windows\System32\hgcpl.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Панель управления домашней группы 131795770645352881 0x7ffac7990000 155648 C:\Windows\SYSTEM32\SLC.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Software Licensing Client DLL 131795770645352881 0x7ffac79c0000 57344 C:\Windows\System32\npmproxy.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Network List Manager Proxy 131795770645352881 0x7ffac7aa0000 401408 C:\Windows\SYSTEM32\wlanapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows WLAN AutoConfig Client Side API DLL 131795770645352881 0x7ffac7d40000 131072 C:\Windows\system32\SYNCENG.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Briefcase Engine 131795770645352881 0x7ffac7d90000 454656 C:\Windows\SYSTEM32\SndVolSSO.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Громкость SCA 131795770645352881 0x7ffac7f50000 73728 C:\Windows\system32\acppage.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека расширений для вкладки "Совместимость" 131795770645352881 0x7ffac7fc0000 2674688 C:\Windows\SYSTEM32\d3d10warp.dll 10.0.14393.576 (rs1_release_inmarket.161208-2252) Microsoft Corporation Direct3D 10 Rasterizer 131795770645352881 0x7ffac83d0000 106496 C:\Windows\SYSTEM32\dhcpcsvc.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служба DHCP-клиента 131795770645352881 0x7ffac83f0000 90112 C:\Windows\SYSTEM32\dhcpcsvc6.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиент DHCPv6 131795770645352881 0x7ffac8420000 434176 C:\Windows\System32\fwpuclnt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API пользовательского режима FWP/IPsec 131795770645352881 0x7ffac84e0000 53248 C:\Windows\System32\NotificationControllerPS.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation NotificationController Proxy Stub 131795770645352881 0x7ffac84f0000 299008 C:\Windows\system32\dataexchange.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation Data exchange 131795770645352881 0x7ffac8810000 45056 C:\Windows\SYSTEM32\WINNSI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Network Store Information RPC interface 131795770645352881 0x7ffac8880000 69632 C:\Windows\system32\WMICLNT.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation WMI Client API 131795770645352881 0x7ffac88a0000 2842624 C:\Windows\system32\d3d11.dll 10.0.14393.953 (rs1_release_inmarket.170303-1614) Microsoft Corporation Direct3D 11 Runtime 131795770645352881 0x7ffac8f90000 45056 C:\Windows\SYSTEM32\AVRT.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Среда выполнения мультимедиа в реальном времени 131795770645352881 0x7ffac90b0000 90112 C:\Windows\SYSTEM32\wkscli.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Workstation Service Client DLL 131795770645352881 0x7ffac9220000 397312 C:\Windows\System32\wevtapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API настройки и использования событий 131795770645352881 0x7ffac9290000 40960 C:\Windows\system32\DSROLE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DS Setup Client DLL 131795770645352881 0x7ffac92e0000 1269760 C:\Windows\System32\WinTypes.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL основных типов Windows 131795770645352881 0x7ffac9480000 462848 C:\Windows\System32\MMDevApi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation MMDevice API 131795770645352881 0x7ffac9500000 2682880 C:\Windows\SYSTEM32\CoreUIComponents.dll 131795770645352881 0x7ffac9790000 98304 C:\Windows\System32\nlaapi.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Network Location Awareness 2 131795770645352881 0x7ffac97d0000 40960 C:\Windows\SYSTEM32\midimap.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft MIDI Mapper 131795778062352400 0x7ffac97e0000 73728 C:\Windows\System32\ploptin.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Prelaunch OptIn 131795770645352881 0x7ffac9bb0000 479232 C:\Windows\system32\es.dll 2001.12.10941.16384 (rs1_release.160715-1616) Microsoft Corporation COM+ 131795770645352881 0x7ffac9e00000 647168 C:\Windows\System32\PortableDeviceApi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Компоненты API для переносных устройств Windows 131795770645352881 0x7ffac9ea0000 81920 C:\Windows\System32\hcproviders.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщики компонента "Центр безопасности и обслуживания" 131795770645352881 0x7ffac9ec0000 294912 C:\Windows\System32\UIAnimation.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Animation Manager 131795770645352881 0x7ffac9f10000 221184 C:\Windows\System32\netprofm.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Network List Manager 131795770645352881 0x7ffac9f50000 1736704 C:\Windows\system32\windowscodecs.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Microsoft Windows Codecs Library 131795770645352881 0x7ffaca170000 45056 C:\Windows\SYSTEM32\ktmw32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows KTM Win32 Client DLL 131795770645352881 0x7ffaca180000 53248 C:\Windows\SYSTEM32\msacm32.drv 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Программа переназначения звуковых устройств 131795770645352881 0x7ffaca190000 241664 C:\Windows\System32\WorkFoldersShell.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширение оболочки рабочих папок (Майкрософт) 131795770645352881 0x7ffaca260000 45056 C:\Windows\System32\SystemEventsBrokerClient.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation system Events Broker Client Library 131795770645352881 0x7ffaca340000 1593344 C:\Windows\SYSTEM32\PROPSYS.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Система страниц свойств (Майкрософт) 131795770645352881 0x7ffaca4e0000 77824 C:\Windows\SYSTEM32\wtsapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Remote Desktop Session Host Server SDK APIs 131795770645352881 0x7ffaca550000 36864 C:\Windows\SYSTEM32\ksuser.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User CSA Library 131795770645352881 0x7ffaca570000 421888 C:\Windows\SYSTEM32\Bcp47Langs.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation BCP47 Language Classes 131795770645352881 0x7ffaca5e0000 155648 C:\Windows\SYSTEM32\dwmapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Интерфейс API диспетчера окон рабочего стола (Майкрософт) 131795770645352881 0x7ffaca610000 143360 C:\Windows\System32\SAMLIB.dll 10.0.14393.82 (rs1_release.160805-1735) Microsoft Corporation SAM Library DLL 131795770645352881 0x7ffaca640000 770048 C:\Windows\System32\CoreMessaging.dll 10.0.14393.0 Microsoft Corporation Microsoft CoreMessaging Dll 131795770645352881 0x7ffaca770000 1380352 C:\Windows\system32\dcomp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft DirectComposition Library 131795770645352881 0x7ffacab40000 176128 C:\Windows\SYSTEM32\WINMMBASE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base Multimedia Extension API DLL 131795770645352881 0x7ffacaba0000 143360 C:\Windows\SYSTEM32\WINMM.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation MCI API DLL 131795770645352881 0x7ffacac60000 69632 C:\Windows\system32\credui.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Credential Manager User Interface 131795770645352881 0x7ffacac80000 28672 C:\Windows\SYSTEM32\MSIMG32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation GDIEXT Client DLL 131795770645352881 0x7ffacadf0000 499712 C:\Windows\SYSTEM32\apphelp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиентская библиотека совместимости приложений 131795770645352881 0x7ffacaf00000 610304 C:\Windows\SYSTEM32\UxTheme.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека тем UxTheme (Microsoft) 131795770645352881 0x7ffacb140000 593920 C:\Windows\System32\msvcp110_win.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Microsoft® STL110 C++ Runtime Library 131795770645352881 0x7ffacb1e0000 1163264 C:\Windows\SYSTEM32\twinapi.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation twinapi.appcore 131795770645352881 0x7ffacb300000 364544 C:\Windows\System32\VEEventDispatcher.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Visual Element Event dispatcher 131795770645352881 0x7ffacb3d0000 110592 C:\Windows\SYSTEM32\resourcepolicyclient.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Resource Policy Client 131795770645352881 0x7ffacb3f0000 163840 C:\Windows\System32\DEVOBJ.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Device Information Set DLL 131795770645352881 0x7ffacb420000 204800 C:\Windows\SYSTEM32\ntmarta.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик Windows NT MARTA 131795770645352881 0x7ffacb6f0000 143360 C:\Windows\SYSTEM32\gpapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиентские функции API групповой политики 131795770645352881 0x7ffacb780000 651264 C:\Windows\system32\dxgi.dll 10.0.14393.953 (rs1_release_inmarket.170303-1614) Microsoft Corporation DirectX Graphics Infrastructure 131795770645352881 0x7ffacb920000 81920 C:\Windows\SYSTEM32\WLDP.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Политика блокировки Windows 131795770645352881 0x7ffacbaf0000 495616 C:\Windows\system32\schannel.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик безопасности TLS/SSL 131795770645352881 0x7ffacbbb0000 208896 C:\Windows\system32\rsaenh.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Enhanced Cryptographic Provider 131795770645352881 0x7ffacbbf0000 40960 C:\Windows\SYSTEM32\DPAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Data Protection API 131795770645352881 0x7ffacbd30000 229376 C:\Windows\System32\IPHLPAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API вспомогательного приложения IP 131795770645352881 0x7ffacbd70000 659456 C:\Windows\System32\DNSAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Динамическая библиотека API DNS-клиента 131795770645352881 0x7ffacbe20000 53248 C:\Windows\system32\netutils.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API Helpers DLL 131795770645352881 0x7ffacbe40000 126976 C:\Windows\SYSTEM32\USERENV.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Userenv 131795770645352881 0x7ffacbfb0000 376832 C:\Windows\system32\mswsock.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширение поставщика службы API Microsoft Windows Sockets 2.0 131795770645352881 0x7ffacc150000 94208 C:\Windows\SYSTEM32\cryptsp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Cryptographic Service Provider API 131795770645352881 0x7ffacc170000 45056 C:\Windows\System32\CRYPTBASE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base cryptographic API DLL 131795770645352881 0x7ffacc1f0000 241664 C:\Windows\System32\NTASN1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft ASN.1 API 131795770645352881 0x7ffacc230000 155648 C:\Windows\System32\ncrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Маршрутизатор Windows NCrypt 131795770645352881 0x7ffacc350000 180224 C:\Windows\SYSTEM32\SspiCli.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Security Support Provider Interface 131795770645352881 0x7ffacc500000 102400 C:\Windows\System32\EventAggregation.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Event Aggregation User Mode Library 131795770645352881 0x7ffacc520000 622592 C:\Windows\SYSTEM32\sxs.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Fusion 2.5 131795770645352881 0x7ffacc5c0000 352256 C:\Windows\SYSTEM32\WINSTA.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Winstation Library 131795770645352881 0x7ffacc620000 176128 C:\Windows\SYSTEM32\bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795770645352881 0x7ffacc6e0000 61440 C:\Windows\System32\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795770645352881 0x7ffacc6f0000 311296 C:\Windows\System32\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795770645352881 0x7ffacc740000 81920 C:\Windows\System32\profapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Profile Basic API 131795770645352881 0x7ffacc760000 65536 C:\Windows\System32\MSASN1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ASN.1 Runtime APIs 131795770645352881 0x7ffacc8f0000 1003520 C:\Windows\System32\ucrtbase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645352881 0x7ffacc9f0000 434176 C:\Windows\System32\bcryptPrimitives.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Cryptographic Primitives Library 131795770645352881 0x7ffacca60000 122880 C:\Windows\System32\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795770645352881 0x7ffacca80000 348160 C:\Windows\System32\WINTRUST.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation Microsoft Trust Verification APIs 131795770645352881 0x7ffaccae0000 692224 C:\Windows\System32\SHCORE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795770645352881 0x7ffaccb90000 7180288 C:\Windows\System32\windows.storage.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API хранения Microsoft WinRT 131795770645352881 0x7ffacd270000 2215936 C:\Windows\System32\KERNELBASE.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645352881 0x7ffacd490000 1871872 C:\Windows\System32\CRYPT32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API32 криптографии 131795770645352881 0x7ffacd710000 638976 C:\Windows\System32\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645352881 0x7ffacd7b0000 270336 C:\Windows\System32\cfgmgr32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Configuration Manager DLL 131795770645352881 0x7ffacd810000 22056960 C:\Windows\System32\SHELL32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Общая библиотека оболочки Windows 131795770645352881 0x7ffaced20000 782336 C:\Windows\System32\OLEAUT32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795770645352881 0x7ffacede0000 450560 C:\Windows\System32\coml2.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft COM for Windows 131795770645352881 0x7ffacee50000 1183744 C:\Windows\System32\RPCRT4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795770645352881 0x7ffacef80000 32768 C:\Windows\System32\NSI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation NSI User-mode interface DLL 131795770645352881 0x7ffacef90000 647168 C:\Windows\System32\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795770645352881 0x7ffacf030000 651264 C:\Windows\System32\clbcatq.dll 2001.12.10941.16384 (rs1_release.160715-1616) Microsoft Corporation COM+ Configuration Catalog 131795770645352881 0x7ffacf0d0000 704512 C:\Windows\System32\KERNEL32.DLL 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645352881 0x7ffacf1e0000 1417216 C:\Windows\System32\MSCTF.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Серверная библиотека MSCTF 131795770645352881 0x7ffacf340000 4362240 C:\Windows\System32\SETUPAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Setup API 131795770645352881 0x7ffacf770000 212992 C:\Windows\System32\GDI32.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation GDI Client DLL 131795770645352881 0x7ffacf820000 434176 C:\Windows\System32\WS2_32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation 32-разрядная библиотека Windows Socket 2.0 131795770645352881 0x7ffacf890000 188416 C:\Windows\System32\IMM32.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Multi-User Windows IMM32 API Client DLL 131795770645352881 0x7ffacf8c0000 1462272 C:\Windows\System32\USER32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795770645352881 0x7ffacfb30000 2916352 C:\Windows\System32\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795770645352881 0x7ffacfe00000 114688 C:\Windows\System32\imagehlp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT Image Helper 131795770645352881 0x7ffacfe20000 663552 C:\Windows\System32\advapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795770645352881 0x7ffad0070000 1277952 C:\Windows\System32\ole32.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft OLE для Windows 131795770645352881 0x7ffad01b0000 335872 C:\Windows\System32\SHLWAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека небольших программ оболочки 131795770645352881 0x7ffad0210000 364544 C:\Windows\System32\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795770645352881 0x7ffad0270000 1908736 C:\Windows\SYSTEM32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 13 404 396 14 00000000:000003e7 131765776186257169 0 0 1 Обязательная метка\Обязательный уровень системы NT AUTHORITY\СИСТЕМА csrss.exe C:\Windows\system32\csrss.exe %SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16 Microsoft Corporation 10.0.14393.0 (rs1_release.160715-1616) Процесс исполнения клиент-сервер 15 468 460 16 00000000:000003e7 131765776223665667 0 0 1 Обязательная метка\Обязательный уровень системы NT AUTHORITY\СИСТЕМА csrss.exe C:\Windows\system32\csrss.exe %SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16 Microsoft Corporation 10.0.14393.0 (rs1_release.160715-1616) Процесс исполнения клиент-сервер 17 484 396 14 00000000:000003e7 131765776226419105 0 0 1 Обязательная метка\Обязательный уровень системы NT AUTHORITY\СИСТЕМА wininit.exe C:\Windows\system32\wininit.exe wininit.exe Microsoft Corporation 10.0.14393.0 (rs1_release.160715-1616) Автозагрузка приложений Windows 18 520 460 16 00000000:000003e7 131765776226825613 0 0 1 Обязательная метка\Обязательный уровень системы NT AUTHORITY\СИСТЕМА winlogon.exe C:\Windows\system32\winlogon.exe winlogon.exe Microsoft Corporation 10.0.14393.0 (rs1_release.160715-1616) Программа входа в систему Windows 131795770645375500 0x7ff7b5570000 696320 C:\Windows\system32\winlogon.exe 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Программа входа в систему Windows 131795770645375500 0x7ffabaab0000 94208 C:\Windows\SYSTEM32\profext.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation profext 131795770645375500 0x7ffabcf30000 110592 C:\Windows\system32\MPR.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека маршрутизации для нескольких служб доступа 131795770645375500 0x7ffac4450000 86016 C:\Windows\SYSTEM32\usermgrcli.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation UserMgr API DLL 131795770645375500 0x7ffac90b0000 90112 C:\Windows\system32\wkscli.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Workstation Service Client DLL 131795770645375500 0x7ffaca4e0000 77824 C:\Windows\SYSTEM32\wtsapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Remote Desktop Session Host Server SDK APIs 131795770645375500 0x7ffacadf0000 499712 C:\Windows\system32\apphelp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиентская библиотека совместимости приложений 131795770645375500 0x7ffacaee0000 81920 C:\Windows\SYSTEM32\dwminit.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DWMInit 131795770645375500 0x7ffacaf00000 610304 C:\Windows\system32\UxTheme.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека тем UxTheme (Microsoft) 131795770645375500 0x7ffacafa0000 118784 C:\Windows\system32\UXINIT.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows User Experience Session Initialization Dll 131795770645375500 0x7ffacb360000 176128 C:\Windows\system32\fwbase.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Firewall Base DLL 131795770645375500 0x7ffacb420000 204800 C:\Windows\SYSTEM32\ntmarta.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик Windows NT MARTA 131795770645375500 0x7ffacb460000 548864 C:\Windows\SYSTEM32\firewallapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API брандмауэра Windows 131795770645375500 0x7ffacbbf0000 40960 C:\Windows\system32\DPAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Data Protection API 131795770645375500 0x7ffacbe20000 53248 C:\Windows\system32\netutils.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API Helpers DLL 131795770645375500 0x7ffacbe40000 126976 C:\Windows\system32\USERENV.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Userenv 131795770645375500 0x7ffacc170000 45056 C:\Windows\system32\CRYPTBASE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base cryptographic API DLL 131795770645375500 0x7ffacc350000 180224 C:\Windows\system32\SspiCli.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Security Support Provider Interface 131795770645375500 0x7ffacc5c0000 352256 C:\Windows\SYSTEM32\winsta.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Winstation Library 131795770645375500 0x7ffacc620000 176128 C:\Windows\system32\bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795770645375500 0x7ffacc6f0000 311296 C:\Windows\System32\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795770645375500 0x7ffacc740000 81920 C:\Windows\System32\profapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Profile Basic API 131795770645375500 0x7ffacc760000 65536 C:\Windows\System32\MSASN1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ASN.1 Runtime APIs 131795770645375500 0x7ffacc8f0000 1003520 C:\Windows\System32\ucrtbase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645375500 0x7ffacc9f0000 434176 C:\Windows\System32\bcryptPrimitives.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Cryptographic Primitives Library 131795770645375500 0x7ffacca60000 122880 C:\Windows\System32\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795770645375500 0x7ffaccae0000 692224 C:\Windows\System32\shcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795770645375500 0x7ffacd270000 2215936 C:\Windows\System32\KERNELBASE.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645375500 0x7ffacd490000 1871872 C:\Windows\System32\CRYPT32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API32 криптографии 131795770645375500 0x7ffacee50000 1183744 C:\Windows\System32\RPCRT4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795770645375500 0x7ffacef90000 647168 C:\Windows\System32\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795770645375500 0x7ffacf0d0000 704512 C:\Windows\System32\KERNEL32.DLL 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645375500 0x7ffacf770000 212992 C:\Windows\System32\GDI32.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation GDI Client DLL 131795770645375500 0x7ffacf890000 188416 C:\Windows\System32\IMM32.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Multi-User Windows IMM32 API Client DLL 131795770645375500 0x7ffacf8c0000 1462272 C:\Windows\System32\user32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795770645375500 0x7ffacfb30000 2916352 C:\Windows\System32\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795770645375500 0x7ffacfe20000 663552 C:\Windows\System32\advapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795770645375500 0x7ffad0210000 364544 C:\Windows\System32\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795770645375500 0x7ffad0270000 1908736 C:\Windows\SYSTEM32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 19 588 484 17 00000000:000003e7 131765776277547408 0 0 1 Обязательная метка\Обязательный уровень системы NT AUTHORITY\СИСТЕМА lsass.exe C:\Windows\system32\lsass.exe C:\Windows\system32\lsass.exe Microsoft Corporation 10.0.14393.1770 (rs1_release.170917-1700) Local Security Authority Process 131795770645375702 0x222e3610000 12288 C:\Windows\system32\msprivs.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Переводы привилегий Майкрософт 131795770645375702 0x7ff6b2d20000 69632 C:\Windows\system32\lsass.exe 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Local Security Authority Process 131795770645375702 0x7ffab9170000 380928 C:\Windows\System32\vaultsvc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служба диспетчера учетных данных 131795770645375702 0x7ffabf170000 77824 C:\Windows\system32\hmkd.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows HMAC Key Derivation API 131795770645375702 0x7ffabf190000 126976 C:\Windows\System32\ngcpopkeysrv.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Microsoft Passport Proof-of-possession Key Service 131795770645375702 0x7ffabf1b0000 114688 C:\Windows\system32\keyiso.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служба изоляции ключей CNG 131795770645375702 0x7ffabf1d0000 192512 C:\Windows\System32\cryptnet.dll 10.0.14393.2035 (rs1_release_inmarket.180110-1910) Microsoft Corporation Crypto Network Related API 131795770645375702 0x7ffabf200000 405504 C:\Windows\SYSTEM32\cryptngc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API службы Microsoft Passport 131795770645375702 0x7ffabf270000 143360 C:\Windows\System32\SecureTimeAggregator.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Secure Time Aggregator 131795770645375702 0x7ffabf2a0000 159744 C:\Windows\system32\dssenh.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Enhanced DSS and Diffie-Hellman Cryptographic Provider 131795770645375702 0x7ffabf2d0000 344064 C:\Windows\system32\ncryptprov.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft KSP 131795770645375702 0x7ffabff60000 135168 C:\Windows\system32\ncryptsslp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft SChannel Provider 131795770645375702 0x7ffac0ac0000 53248 C:\Windows\system32\tbs.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation TBS 131795770645375702 0x7ffac0ad0000 86016 C:\Windows\SYSTEM32\mskeyprotect.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик защиты ключей (Майкрософт) 131795770645375702 0x7ffac1d60000 589824 C:\Windows\system32\webio.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API протоколов передачи по Веб 131795770645375702 0x7ffac6610000 40960 C:\Windows\System32\rasadhlp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Remote Access AutoDial Helper 131795770645375702 0x7ffac69c0000 839680 C:\Windows\system32\WINHTTP.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Службы HTTP Windows 131795770645375702 0x7ffac6b90000 53248 C:\Windows\system32\DSPARSE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Active Directory Domain Services API 131795770645375702 0x7ffac6ba0000 49152 C:\Windows\SYSTEM32\secur32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Security Support Provider Interface 131795770645375702 0x7ffac83d0000 106496 C:\Windows\SYSTEM32\dhcpcsvc.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служба DHCP-клиента 131795770645375702 0x7ffac83f0000 90112 C:\Windows\SYSTEM32\dhcpcsvc6.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиент DHCPv6 131795770645375702 0x7ffac8420000 434176 C:\Windows\System32\fwpuclnt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API пользовательского режима FWP/IPsec 131795770645375702 0x7ffac8810000 45056 C:\Windows\SYSTEM32\WINNSI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Network Store Information RPC interface 131795770645375702 0x7ffac8fa0000 253952 C:\Windows\system32\logoncli.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Net Logon Client DLL 131795770645375702 0x7ffac9220000 397312 C:\Windows\SYSTEM32\wevtapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API настройки и использования событий 131795770645375702 0x7ffac9290000 40960 C:\Windows\system32\DSROLE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DS Setup Client DLL 131795770645375702 0x7ffacb6f0000 143360 C:\Windows\SYSTEM32\gpapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиентские функции API групповой политики 131795770645375702 0x7ffacb960000 303104 C:\Windows\system32\AUTHZ.dll 10.0.14393.1737 (rs1_release_inmarket.170914-1249) Microsoft Corporation Authorization Framework 131795770645375702 0x7ffacb9b0000 294912 C:\Windows\system32\scecli.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиент редактора конфигураций безопасности 131795770645375702 0x7ffacba80000 49152 C:\Windows\SYSTEM32\SspiSrv.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation LSA SSPI RPC interface DLL 131795770645375702 0x7ffacba90000 221184 C:\Windows\system32\dpapisrv.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DPAPI Server 131795770645375702 0x7ffacbad0000 102400 C:\Windows\system32\efslsaext.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation LSA extension for EFS 131795770645375702 0x7ffacbaf0000 495616 C:\Windows\system32\schannel.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик безопасности TLS/SSL 131795770645375702 0x7ffacbb70000 245760 C:\Windows\system32\wdigest.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Digest Access 131795770645375702 0x7ffacbbb0000 208896 C:\Windows\system32\rsaenh.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Enhanced Cryptographic Provider 131795770645375702 0x7ffacbbf0000 40960 C:\Windows\SYSTEM32\DPAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Data Protection API 131795770645375702 0x7ffacbc00000 290816 C:\Windows\SYSTEM32\MicrosoftAccountCloudAP.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation MicrosoftAccount Cloud AP Plugin 131795770645375702 0x7ffacbc50000 372736 C:\Windows\system32\cloudAP.DLL 10.0.14393.1358 (rs1_release.170602-2252) Microsoft Corporation Cloud AP Security Package 131795770645375702 0x7ffacbcb0000 278528 C:\Windows\system32\pku2u.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Pku2u Security Package 131795770645375702 0x7ffacbd00000 139264 C:\Windows\system32\tspkg.DLL 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation Web Service Security Package 131795770645375702 0x7ffacbd30000 229376 C:\Windows\SYSTEM32\IPHLPAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API вспомогательного приложения IP 131795770645375702 0x7ffacbd70000 659456 C:\Windows\system32\DNSAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Динамическая библиотека API DNS-клиента 131795770645375702 0x7ffacbe20000 53248 C:\Windows\system32\netutils.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API Helpers DLL 131795770645375702 0x7ffacbe30000 57344 C:\Windows\system32\gmsaclient.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation "gmsaclient.DYNLINK" 131795770645375702 0x7ffacbe40000 126976 C:\Windows\system32\USERENV.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Userenv 131795770645375702 0x7ffacbe60000 843776 C:\Windows\system32\netlogon.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Динамическая библиотека службы Net Logon 131795770645375702 0x7ffacbf30000 49152 C:\Windows\system32\NtlmShared.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation NTLM Shared Functionality 131795770645375702 0x7ffacbf40000 421888 C:\Windows\system32\msv1_0.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Authentication Package v1.0 131795770645375702 0x7ffacbfb0000 376832 C:\Windows\system32\mswsock.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширение поставщика службы API Microsoft Windows Sockets 2.0 131795770645375702 0x7ffacc010000 86016 C:\Windows\system32\cryptdll.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Cryptography Manager 131795770645375702 0x7ffacc030000 163840 C:\Windows\system32\KerbClientShared.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Kerberos Client Shared Functionality 131795770645375702 0x7ffacc150000 94208 C:\Windows\system32\CRYPTSP.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Cryptographic Service Provider API 131795770645375702 0x7ffacc170000 45056 C:\Windows\system32\CRYPTBASE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base cryptographic API DLL 131795770645375702 0x7ffacc180000 155648 C:\Windows\system32\negoexts.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation NegoExtender Security Package 131795770645375702 0x7ffacc1b0000 126976 C:\Windows\system32\JOINUTIL.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Join Utility DLL 131795770645375702 0x7ffacc1d0000 86016 C:\Windows\SYSTEM32\netprovfw.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Provisioning Service Framework DLL 131795770645375702 0x7ffacc1f0000 241664 C:\Windows\system32\NTASN1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft ASN.1 API 131795770645375702 0x7ffacc230000 155648 C:\Windows\system32\ncrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Маршрутизатор Windows NCrypt 131795770645375702 0x7ffacc260000 921600 C:\Windows\SYSTEM32\samsrv.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека сервера диспетчера учетных записей 131795770645375702 0x7ffacc350000 180224 C:\Windows\system32\SspiCli.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Security Support Provider Interface 131795770645375702 0x7ffacc380000 1527808 C:\Windows\system32\lsasrv.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation Библиотека DLL сервера LSA 131795770645375702 0x7ffacc5c0000 352256 C:\Windows\SYSTEM32\winsta.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Winstation Library 131795770645375702 0x7ffacc620000 176128 C:\Windows\system32\bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795770645375702 0x7ffacc6f0000 311296 C:\Windows\System32\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795770645375702 0x7ffacc740000 81920 C:\Windows\System32\profapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Profile Basic API 131795770645375702 0x7ffacc760000 65536 C:\Windows\System32\MSASN1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ASN.1 Runtime APIs 131795770645375702 0x7ffacc8f0000 1003520 C:\Windows\System32\ucrtbase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645375702 0x7ffacc9f0000 434176 C:\Windows\System32\bcryptprimitives.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Cryptographic Primitives Library 131795770645375702 0x7ffacd270000 2215936 C:\Windows\System32\KERNELBASE.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645375702 0x7ffacd490000 1871872 C:\Windows\System32\CRYPT32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API32 криптографии 131795770645375702 0x7ffacd710000 638976 C:\Windows\System32\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645375702 0x7ffaced20000 782336 C:\Windows\System32\OLEAUT32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795770645375702 0x7ffacee50000 1183744 C:\Windows\System32\RPCRT4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795770645375702 0x7ffacef80000 32768 C:\Windows\System32\NSI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation NSI User-mode interface DLL 131795770645375702 0x7ffacef90000 647168 C:\Windows\System32\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795770645375702 0x7ffacf0d0000 704512 C:\Windows\System32\KERNEL32.DLL 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645375702 0x7ffacf180000 376832 C:\Windows\System32\WLDAP32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Win32 LDAP API DLL 131795770645375702 0x7ffacf820000 434176 C:\Windows\System32\WS2_32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation 32-разрядная библиотека Windows Socket 2.0 131795770645375702 0x7ffacfb30000 2916352 C:\Windows\System32\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795770645375702 0x7ffacfe20000 663552 C:\Windows\System32\advapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795770645375702 0x7ffad0210000 364544 C:\Windows\System32\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795770645375702 0x7ffad0270000 1908736 C:\Windows\SYSTEM32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 20 704 580 4 00000000:000003e4 131765776284978539 0 0 1 Обязательная метка\Обязательный уровень системы NT AUTHORITY\NETWORK SERVICE svchost.exe C:\Windows\system32\svchost.exe C:\Windows\system32\svchost.exe -k RPCSS Microsoft Corporation 10.0.14393.0 (rs1_release.160715-1616) Хост-процесс для служб Windows 131795770645375918 0x7ff718c20000 57344 C:\Windows\system32\svchost.exe 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Хост-процесс для служб Windows 131795770645375918 0x7ffabae40000 110592 C:\Windows\SYSTEM32\capauthz.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API авторизации возможностей 131795770645375918 0x7ffac4450000 86016 C:\Windows\SYSTEM32\usermgrcli.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation UserMgr API DLL 131795770645375918 0x7ffac6610000 40960 C:\Windows\System32\rasadhlp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Remote Access AutoDial Helper 131795770645375918 0x7ffac8250000 28672 C:\Windows\system32\wshhyperv.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Hyper-V Winsock2 Helper DLL 131795770645375918 0x7ffac8420000 434176 C:\Windows\system32\fwpuclnt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API пользовательского режима FWP/IPsec 131795770645375918 0x7ffaca4e0000 77824 C:\Windows\SYSTEM32\wtsapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Remote Desktop Session Host Server SDK APIs 131795770645375918 0x7ffacb360000 176128 C:\Windows\system32\fwbase.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Firewall Base DLL 131795770645375918 0x7ffacb460000 548864 C:\Windows\system32\FirewallAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API брандмауэра Windows 131795770645375918 0x7ffacb5c0000 913408 c:\windows\system32\rpcss.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Distributed COM Services 131795770645375918 0x7ffacb6a0000 73728 C:\Windows\system32\RpcRtRemote.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Remote RPC Extension 131795770645375918 0x7ffacb6c0000 98304 c:\windows\system32\rpcepmap.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Сопоставитель конечных точек RPC 131795770645375918 0x7ffacb920000 81920 C:\Windows\SYSTEM32\WLDP.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Политика блокировки Windows 131795770645375918 0x7ffacbd30000 229376 C:\Windows\SYSTEM32\IPHLPAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API вспомогательного приложения IP 131795770645375918 0x7ffacbd70000 659456 C:\Windows\SYSTEM32\DNSAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Динамическая библиотека API DNS-клиента 131795770645375918 0x7ffacbf30000 49152 C:\Windows\system32\NtlmShared.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation NTLM Shared Functionality 131795770645375918 0x7ffacbf40000 421888 C:\Windows\system32\msv1_0.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Authentication Package v1.0 131795770645375918 0x7ffacbfb0000 376832 C:\Windows\system32\mswsock.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширение поставщика службы API Microsoft Windows Sockets 2.0 131795770645375918 0x7ffacc010000 86016 C:\Windows\system32\cryptdll.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Cryptography Manager 131795770645375918 0x7ffacc350000 180224 C:\Windows\system32\sspicli.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Security Support Provider Interface 131795770645375918 0x7ffacc5c0000 352256 C:\Windows\SYSTEM32\WINSTA.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Winstation Library 131795770645375918 0x7ffacc620000 176128 C:\Windows\system32\bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795770645375918 0x7ffacc6e0000 61440 C:\Windows\System32\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795770645375918 0x7ffacc6f0000 311296 C:\Windows\System32\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795770645375918 0x7ffacc760000 65536 C:\Windows\System32\MSASN1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ASN.1 Runtime APIs 131795770645375918 0x7ffacc8f0000 1003520 C:\Windows\System32\ucrtbase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645375918 0x7ffacc9f0000 434176 C:\Windows\System32\bcryptPrimitives.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Cryptographic Primitives Library 131795770645375918 0x7ffacca60000 122880 C:\Windows\System32\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795770645375918 0x7ffacca80000 348160 C:\Windows\System32\WINTRUST.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation Microsoft Trust Verification APIs 131795770645375918 0x7ffacd270000 2215936 C:\Windows\System32\KERNELBASE.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645375918 0x7ffacd490000 1871872 C:\Windows\System32\CRYPT32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API32 криптографии 131795770645375918 0x7ffacee50000 1183744 C:\Windows\System32\RPCRT4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795770645375918 0x7ffacef80000 32768 C:\Windows\System32\NSI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation NSI User-mode interface DLL 131795770645375918 0x7ffacef90000 647168 C:\Windows\System32\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795770645375918 0x7ffacf030000 651264 C:\Windows\System32\clbcatq.dll 2001.12.10941.16384 (rs1_release.160715-1616) Microsoft Corporation COM+ Configuration Catalog 131795770645375918 0x7ffacf0d0000 704512 C:\Windows\System32\KERNEL32.DLL 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645375918 0x7ffacf770000 212992 C:\Windows\System32\GDI32.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation GDI Client DLL 131795770645375918 0x7ffacf820000 434176 C:\Windows\System32\WS2_32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation 32-разрядная библиотека Windows Socket 2.0 131795770645375918 0x7ffacf8c0000 1462272 C:\Windows\System32\USER32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795770645375918 0x7ffacfb30000 2916352 C:\Windows\System32\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795770645375918 0x7ffacfe20000 663552 C:\Windows\System32\advapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795770645375918 0x7ffad0070000 1277952 C:\Windows\System32\ole32.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft OLE для Windows 131795770645375918 0x7ffad0210000 364544 C:\Windows\System32\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795770645375918 0x7ffad0270000 1908736 C:\Windows\SYSTEM32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 21 808 520 18 00000000:0000c8d4 131765776288401882 0 0 1 Обязательная метка\Обязательный уровень системы Window Manager\DWM-1 dwm.exe C:\Windows\system32\dwm.exe "dwm.exe" Microsoft Corporation 10.0.14393.0 (rs1_release.160715-1616) Диспетчер окон рабочего стола 131795770645376024 0x7ff683990000 77824 C:\Windows\system32\dwm.exe 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Диспетчер окон рабочего стола 131795770645376024 0x7ffac3810000 167936 C:\Windows\system32\Cabinet.dll 5.00 (rs1_release.160715-1616) Microsoft Corporation Microsoft® Cabinet File API 131795770645376024 0x7ffac60e0000 221184 C:\Windows\system32\XmlLite.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft XmlLite Library 131795770645376024 0x7ffac6f50000 5632000 C:\Windows\system32\d2d1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека Microsoft D2D 131795770645376024 0x7ffac7720000 1601536 C:\Windows\System32\OneCoreUAPCommonProxyStub.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation OneCoreUAP Common Proxy Stub 131795770645376024 0x7ffac7b70000 569344 C:\Windows\System32\Windows.Gaming.Input.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Gaming Input API 131795770645376024 0x7ffac7fc0000 2674688 C:\Windows\system32\d3d10warp.dll 10.0.14393.576 (rs1_release_inmarket.161208-2252) Microsoft Corporation Direct3D 10 Rasterizer 131795770645376024 0x7ffac88a0000 2842624 C:\Windows\system32\d3d11.dll 10.0.14393.953 (rs1_release_inmarket.170303-1614) Microsoft Corporation Direct3D 11 Runtime 131795770645376024 0x7ffac8f90000 45056 C:\Windows\system32\avrt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Среда выполнения мультимедиа в реальном времени 131795770645376024 0x7ffac92e0000 1269760 C:\Windows\SYSTEM32\wintypes.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL основных типов Windows 131795770645376024 0x7ffac9500000 2682880 C:\Windows\system32\CoreUIComponents.dll 131795770645376024 0x7ffac9a30000 249856 C:\Windows\SYSTEM32\ism32k.dll 131795770645376024 0x7ffac9ec0000 294912 C:\Windows\System32\UIAnimation.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Animation Manager 131795770645376024 0x7ffac9f50000 1736704 C:\Windows\system32\WindowsCodecs.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Microsoft Windows Codecs Library 131795770645376024 0x7ffaca110000 94208 C:\Windows\SYSTEM32\dwmghost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DWMGhost 131795770645376024 0x7ffaca5e0000 155648 C:\Windows\system32\dwmapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Интерфейс API диспетчера окон рабочего стола (Майкрософт) 131795770645376024 0x7ffaca640000 770048 C:\Windows\system32\CoreMessaging.dll 10.0.14393.0 Microsoft Corporation Microsoft CoreMessaging Dll 131795770645376024 0x7ffaca770000 1380352 C:\Windows\system32\dcomp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft DirectComposition Library 131795770645376024 0x7ffaca8d0000 2318336 C:\Windows\system32\dwmcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека ядра Microsoft DWM 131795770645376024 0x7ffacac90000 856064 C:\Windows\SYSTEM32\udwm.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Диспетчер окон рабочего стола Майкрософт 131795770645376024 0x7ffacadc0000 167936 C:\Windows\SYSTEM32\dwmredir.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Компонент перенаправления диспетчера окон рабочего стола Microsoft 131795770645376024 0x7ffacadf0000 499712 C:\Windows\system32\apphelp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиентская библиотека совместимости приложений 131795770645376024 0x7ffacaf00000 610304 C:\Windows\system32\uxtheme.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека тем UxTheme (Microsoft) 131795770645376024 0x7ffacb1e0000 1163264 C:\Windows\System32\twinapi.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation twinapi.appcore 131795770645376024 0x7ffacb780000 651264 C:\Windows\system32\dxgi.dll 10.0.14393.953 (rs1_release_inmarket.170303-1614) Microsoft Corporation DirectX Graphics Infrastructure 131795770645376024 0x7ffacc620000 176128 C:\Windows\System32\bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795770645376024 0x7ffacc6e0000 61440 C:\Windows\System32\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795770645376024 0x7ffacc760000 65536 C:\Windows\System32\MSASN1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ASN.1 Runtime APIs 131795770645376024 0x7ffacc8f0000 1003520 C:\Windows\System32\ucrtbase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645376024 0x7ffacc9f0000 434176 C:\Windows\System32\bcryptPrimitives.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Cryptographic Primitives Library 131795770645376024 0x7ffacca60000 122880 C:\Windows\System32\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795770645376024 0x7ffaccae0000 692224 C:\Windows\System32\shcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795770645376024 0x7ffacd270000 2215936 C:\Windows\System32\KERNELBASE.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645376024 0x7ffacd490000 1871872 C:\Windows\System32\CRYPT32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API32 криптографии 131795770645376024 0x7ffacd710000 638976 C:\Windows\System32\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645376024 0x7ffacd7b0000 270336 C:\Windows\System32\cfgmgr32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Configuration Manager DLL 131795770645376024 0x7ffaced20000 782336 C:\Windows\System32\OLEAUT32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795770645376024 0x7ffacee50000 1183744 C:\Windows\System32\RPCRT4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795770645376024 0x7ffacef90000 647168 C:\Windows\System32\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795770645376024 0x7ffacf030000 651264 C:\Windows\System32\clbcatq.dll 2001.12.10941.16384 (rs1_release.160715-1616) Microsoft Corporation COM+ Configuration Catalog 131795770645376024 0x7ffacf0d0000 704512 C:\Windows\System32\KERNEL32.DLL 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645376024 0x7ffacf770000 212992 C:\Windows\System32\gdi32.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation GDI Client DLL 131795770645376024 0x7ffacf890000 188416 C:\Windows\System32\IMM32.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Multi-User Windows IMM32 API Client DLL 131795770645376024 0x7ffacf8c0000 1462272 C:\Windows\System32\USER32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795770645376024 0x7ffacfb30000 2916352 C:\Windows\System32\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795770645376024 0x7ffacfe20000 663552 C:\Windows\System32\advapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795770645376024 0x7ffad0210000 364544 C:\Windows\System32\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795770645376024 0x7ffad0270000 1908736 C:\Windows\SYSTEM32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 22 904 580 4 00000000:000003e7 131765776293087855 0 0 1 Обязательная метка\Обязательный уровень системы NT AUTHORITY\СИСТЕМА svchost.exe C:\Windows\System32\svchost.exe C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted Microsoft Corporation 10.0.14393.0 (rs1_release.160715-1616) Хост-процесс для служб Windows 131795770645376243 0x259b0640000 12288 C:\Windows\system32\SFC.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows File Protection 131795770645376243 0x7ff718c20000 57344 C:\Windows\System32\svchost.exe 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Хост-процесс для служб Windows 131795770645376243 0x7ffaab830000 278528 c:\windows\system32\netman.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Диспетчер сетевых подключений 131795770645376243 0x7ffaab880000 532480 c:\windows\system32\MPRAPI.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation Windows NT MP Router Administration DLL 131795770645376243 0x7ffaab910000 905216 c:\windows\system32\RASDLG.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API общих диалогов службы удаленного доступа 131795770645376243 0x7ffab1260000 10350592 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\clr.dll 4.7.2117.0 built by: NET47REL1LAST Microsoft Corporation Microsoft .NET Runtime Common Language Runtime - WorkStation 131795770645376243 0x7ffab2460000 2822144 C:\Windows\System32\netshell.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Оболочка сетевых подключений 131795770645376243 0x7ffab7d80000 753664 c:\windows\system32\RASAPI32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API удаленного доступа 131795770645376243 0x7ffabae60000 77824 C:\Windows\System32\DEVRTL.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Device Management Run Time Library 131795770645376243 0x7ffabb430000 65536 C:\Windows\System32\pcacli.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Program Compatibility Assistant Client Module 131795778252487651 0x7ffabc160000 688128 C:\Windows\System32\aeinv.dll 10.0.17060.1029 (WinBuild.160101.0800) Microsoft Corporation Application Inventory Component 131795770645376243 0x7ffabc510000 90112 C:\Windows\system32\execmodelproxy.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ExecModelProxy 131795770645376243 0x7ffabcf30000 110592 C:\Windows\System32\MPR.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека маршрутизации для нескольких служб доступа 131795770645376243 0x7ffabcf50000 921600 C:\Windows\System32\drvstore.dll 10.0.14393.351 (rs1_release_inmarket.161014-1755) Microsoft Corporation Driver Store API 131795770645376243 0x7ffabdd60000 425984 C:\Windows\System32\AppXDeploymentClient.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL-библиотека клиента развертывания AppX 131795770645376243 0x7ffabef80000 69632 C:\Windows\System32\sfc_os.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows File Protection 131795778007496118 0x7ffabefd0000 258048 C:\Windows\System32\aepic.dll 10.0.17060.1029 (WinBuild.160101.0800) Microsoft Corporation Application Experience Program Cache 131795770645376243 0x7ffabfa00000 1011712 C:\Windows\SYSTEM32\MSVCR120_CLR0400.dll 12.00.52519.0 built by: VSWINSERVICING Microsoft Corporation Microsoft® C Runtime Library 131795770645376243 0x7ffac0610000 3088384 C:\Windows\System32\MSI.DLL 5.0.14393.2155 Microsoft Corporation Windows Installer 131795770645376243 0x7ffac0bf0000 3559424 C:\Windows\System32\ActXPrxy.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation ActiveX Interface Marshaling Library 131795770645376243 0x7ffac0fc0000 294912 C:\Windows\system32\spp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека общих точек защиты Microsoft® Windows 131795770645376243 0x7ffac1010000 417792 C:\Windows\system32\MSCOREE.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft .NET Runtime Execution Engine 131795770645376243 0x7ffac10f0000 421888 c:\windows\system32\storsvc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Службы хранения 131795770645376243 0x7ffac1240000 638976 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscoreei.dll 4.7.2623.0 built by: NET471REL1LAST_C Microsoft Corporation Microsoft .NET Runtime Execution Engine 131795770645376243 0x7ffac1e80000 507904 C:\Windows\System32\NetSetupShim.dll 10.0.14393.1532 (rs1_release_d.170711-1840) Microsoft Corporation Network Configuration API 131795770645376243 0x7ffac1fd0000 999424 C:\Windows\system32\wbem\fastprox.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation WMI Custom Marshaller 131795770645376243 0x7ffac20d0000 110592 c:\windows\system32\RMCLIENT.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Resource Manager Client 131795770645376243 0x7ffac21d0000 81920 C:\Windows\system32\wbem\wbemsvc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation WMI 131795770645376243 0x7ffac2360000 57344 c:\windows\system32\TimeBrokerClient.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Time Broker Client Library 131795770645376243 0x7ffac23c0000 331776 C:\Windows\System32\OneCoreCommonProxyStub.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation OneCore Common Proxy Stub 131795770645376243 0x7ffac2420000 466944 c:\windows\system32\das.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служба сопоставления устройств 131795770645376243 0x7ffac2530000 270336 C:\Windows\system32\hnetcfgclient.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиент API конфигурации домашней сети 131795770645376243 0x7ffac2750000 106496 c:\windows\system32\bcd.dll 10.0.14393.1794 (rs1_release.171008-1615) Microsoft Corporation BCD DLL 131795770645376243 0x7ffac29f0000 159744 C:\Windows\System32\NetSetupApi.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Network Configuration API 131795770645376243 0x7ffac2a20000 81920 c:\windows\system32\rtutils.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Routing Utilities 131795770645376243 0x7ffac2b80000 40960 C:\Windows\System32\VERSION.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Version Checking and File Installation Libraries 131795770645376243 0x7ffac3270000 40960 c:\windows\system32\FLTLIB.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека фильтров 131795770645376243 0x7ffac34c0000 81920 C:\Windows\system32\vss_ps.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation Microsoft® Volume Shadow Copy Service proxy/stub 131795770645376243 0x7ffac3840000 3088384 c:\windows\system32\ESENT.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширяемая подсистема хранения данных ESE для Microsoft(R) Windows(R) 131795778007645121 0x7ffac3cb0000 2772992 C:\Windows\System32\iertutil.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служебная программа времени выполнения для Internet Explorer 131795770645376243 0x7ffac4050000 118784 c:\windows\system32\wdi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Инфраструктура диагностики Windows 131795770645376243 0x7ffac41c0000 139264 c:\windows\system32\trkwks.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиент отслеживания изменившихся связей 131795770645376243 0x7ffac4220000 520192 C:\Windows\SYSTEM32\wbemcomn.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation WMI 131795770645376243 0x7ffac4450000 86016 C:\Windows\SYSTEM32\usermgrcli.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation UserMgr API DLL 131795770645376243 0x7ffac4470000 65536 C:\Windows\system32\wbem\wbemprox.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation WMI 131795770645376243 0x7ffac4650000 516096 c:\windows\system32\pcasvc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служба помощника по совместимости программ 131795770645376243 0x7ffac4f40000 122880 C:\Windows\system32\radardt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Программа обнаружения нехватки системных ресурсов Windows 131795770645376243 0x7ffac4fd0000 618496 C:\Windows\System32\wlidprov.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft® Account Provider 131795770645376243 0x7ffac5b30000 114688 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\fusion.dll 4.6.1586.0 built by: NETFXREL2 Microsoft Corporation Assembly manager 131795770645376243 0x7ffac5b50000 180224 c:\windows\system32\dssvc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL службы NT для службы совместного доступа к данным 131795770645376243 0x7ffac5c50000 131072 c:\windows\system32\rasman.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Remote Access Connection Manager 131795770645376243 0x7ffac60e0000 221184 C:\Windows\System32\XmlLite.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft XmlLite Library 131795770645376243 0x7ffac6120000 966656 c:\windows\system32\sysmain.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Хост службы Superfetch 131795770645376243 0x7ffac6410000 98304 C:\Windows\system32\VssTrace.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека трассировки службы теневого копирования тома Microsoft® 131795770645376243 0x7ffac6430000 1581056 C:\Windows\system32\VSSAPI.DLL 10.0.14393.953 (rs1_release_inmarket.170303-1614) Microsoft Corporation Microsoft® Volume Shadow Copy Requestor/Writer Services API DLL 131795770645376243 0x7ffac6c40000 2596864 C:\Windows\WinSxS\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.14393.953_none_42151e83c686086b\Comctl32.dll 6.10 (rs1_release_inmarket.170303-1614) Microsoft Corporation Библиотека элементов управления взаимодействия с пользователем 131795770645376243 0x7ffac79c0000 57344 C:\Windows\System32\npmproxy.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Network List Manager Proxy 131795770645376243 0x7ffac7b10000 217088 C:\Windows\SYSTEM32\WUDFPlatform.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Driver Foundation - библиотека платформ пользовательского режима 131795770645376243 0x7ffac7b50000 114688 c:\windows\system32\wudfsvc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Driver Foundation (WDF) - служба среды выполнения платформы драйвера режима пользователя 131795770645376243 0x7ffac8810000 45056 c:\windows\system32\WINNSI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Network Store Information RPC interface 131795770645376243 0x7ffac8880000 69632 c:\windows\system32\WMICLNT.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation WMI Client API 131795770645376243 0x7ffac8cf0000 815104 C:\Windows\System32\taskschd.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Task Scheduler COM API 131795770645376243 0x7ffac9290000 40960 c:\windows\system32\DSROLE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DS Setup Client DLL 131795770645376243 0x7ffac9480000 462848 c:\windows\system32\MMDevAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation MMDevice API 131795770645376243 0x7ffac9790000 98304 C:\Windows\System32\nlaapi.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Network Location Awareness 2 131795770645376243 0x7ffac9800000 376832 c:\windows\system32\audioendpointbuilder.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Средство построения конечных точек Windows Audio 131795770645376243 0x7ffac9de0000 94208 C:\Windows\System32\portabledeviceconnectapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Portable Device Connection API Components 131795770645376243 0x7ffac9e00000 647168 C:\Windows\SYSTEM32\PortableDeviceApi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Компоненты API для переносных устройств Windows 131795770645376243 0x7ffac9f10000 221184 C:\Windows\System32\netprofm.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Network List Manager 131795770645376243 0x7ffaca100000 36864 C:\Windows\SYSTEM32\httpprxc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Proxy Manager Provider RPC interface 131795770645376243 0x7ffaca130000 204800 C:\Windows\SYSTEM32\windows.devices.radios.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows.Devices.Radios DLL 131795770645376243 0x7ffaca1f0000 65536 C:\Windows\SYSTEM32\storageusage.dll 10.0.14393.82 (rs1_release.160805-1735) Microsoft Corporation Storage Usage 131795770645376243 0x7ffaca250000 49152 C:\Windows\SYSTEM32\bi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Background Broker Infrastructure Client Library 131795770645376243 0x7ffaca260000 45056 c:\windows\system32\SystemEventsBrokerClient.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation system Events Broker Client Library 131795770645376243 0x7ffaca2d0000 360448 c:\windows\system32\ncbservice.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Посредник подключений к сети 131795770645376243 0x7ffaca340000 1593344 c:\windows\system32\PROPSYS.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Система страниц свойств (Майкрософт) 131795770645376243 0x7ffaca4e0000 77824 c:\windows\system32\WTSAPI32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Remote Desktop Session Host Server SDK APIs 131795770645376243 0x7ffaca710000 65536 C:\Windows\system32\pcadm.dll 10.0.14393.2189 (rs1_release.180329-1711) Microsoft Corporation Program Compatibility Assistant Diagnostic Module 131795770645376243 0x7ffacad70000 278528 c:\windows\system32\BrokerLib.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Broker Base Library 131795770645376243 0x7ffacadf0000 499712 c:\windows\system32\apphelp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиентская библиотека совместимости приложений 131795770645376243 0x7ffacb1e0000 1163264 C:\Windows\SYSTEM32\twinapi.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation twinapi.appcore 131795770645376243 0x7ffacb3f0000 163840 C:\Windows\System32\DEVOBJ.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Device Information Set DLL 131795770645376243 0x7ffacb420000 204800 C:\Windows\SYSTEM32\ntmarta.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик Windows NT MARTA 131795770645376243 0x7ffacb920000 81920 C:\Windows\SYSTEM32\WLDP.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Политика блокировки Windows 131795770645376243 0x7ffacbbb0000 208896 C:\Windows\system32\rsaenh.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Enhanced Cryptographic Provider 131795770645376243 0x7ffacbbf0000 40960 c:\windows\system32\DPAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Data Protection API 131795770645376243 0x7ffacbd30000 229376 c:\windows\system32\IPHLPAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API вспомогательного приложения IP 131795770645376243 0x7ffacbe40000 126976 c:\windows\system32\USERENV.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Userenv 131795770645376243 0x7ffacbfb0000 376832 C:\Windows\system32\mswsock.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширение поставщика службы API Microsoft Windows Sockets 2.0 131795770645376243 0x7ffacc150000 94208 C:\Windows\System32\CRYPTSP.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Cryptographic Service Provider API 131795770645376243 0x7ffacc170000 45056 C:\Windows\System32\CRYPTBASE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base cryptographic API DLL 131795770645376243 0x7ffacc350000 180224 c:\windows\system32\SspiCli.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Security Support Provider Interface 131795770645376243 0x7ffacc500000 102400 c:\windows\system32\EventAggregation.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Event Aggregation User Mode Library 131795770645376243 0x7ffacc520000 622592 C:\Windows\system32\SXS.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Fusion 2.5 131795770645376243 0x7ffacc5c0000 352256 c:\windows\system32\WINSTA.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Winstation Library 131795770645376243 0x7ffacc620000 176128 c:\windows\system32\bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795770645376243 0x7ffacc6e0000 61440 C:\Windows\System32\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795770645376243 0x7ffacc6f0000 311296 C:\Windows\System32\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795770645376243 0x7ffacc740000 81920 C:\Windows\System32\profapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Profile Basic API 131795770645376243 0x7ffacc760000 65536 C:\Windows\System32\MSASN1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ASN.1 Runtime APIs 131795770645376243 0x7ffacc8f0000 1003520 C:\Windows\System32\ucrtbase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645376243 0x7ffacc9f0000 434176 C:\Windows\System32\bcryptPrimitives.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Cryptographic Primitives Library 131795770645376243 0x7ffacca60000 122880 C:\Windows\System32\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795770645376243 0x7ffacca80000 348160 C:\Windows\System32\WINTRUST.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation Microsoft Trust Verification APIs 131795770645376243 0x7ffaccae0000 692224 C:\Windows\System32\shcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795770645376243 0x7ffaccb90000 7180288 C:\Windows\System32\windows.storage.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API хранения Microsoft WinRT 131795770645376243 0x7ffacd270000 2215936 C:\Windows\System32\KERNELBASE.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645376243 0x7ffacd490000 1871872 C:\Windows\System32\CRYPT32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API32 криптографии 131795770645376243 0x7ffacd710000 638976 C:\Windows\System32\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645376243 0x7ffacd7b0000 270336 C:\Windows\System32\cfgmgr32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Configuration Manager DLL 131795770645376243 0x7ffacd810000 22056960 C:\Windows\System32\SHELL32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Общая библиотека оболочки Windows 131795770645376243 0x7ffaced20000 782336 C:\Windows\System32\OLEAUT32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795770645376243 0x7ffacede0000 450560 C:\Windows\System32\coml2.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft COM for Windows 131795770645376243 0x7ffacee50000 1183744 C:\Windows\System32\RPCRT4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795770645376243 0x7ffacef80000 32768 C:\Windows\System32\NSI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation NSI User-mode interface DLL 131795770645376243 0x7ffacef90000 647168 C:\Windows\System32\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795770645376243 0x7ffacf030000 651264 C:\Windows\System32\clbcatq.dll 2001.12.10941.16384 (rs1_release.160715-1616) Microsoft Corporation COM+ Configuration Catalog 131795770645376243 0x7ffacf0d0000 704512 C:\Windows\System32\KERNEL32.DLL 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645376243 0x7ffacf340000 4362240 C:\Windows\System32\SETUPAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Setup API 131795770645376243 0x7ffacf770000 212992 C:\Windows\System32\GDI32.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation GDI Client DLL 131795770645376243 0x7ffacf820000 434176 C:\Windows\System32\WS2_32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation 32-разрядная библиотека Windows Socket 2.0 131795770645376243 0x7ffacf8c0000 1462272 C:\Windows\System32\user32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795770645376243 0x7ffacfb30000 2916352 C:\Windows\System32\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795770645376243 0x7ffacfe20000 663552 C:\Windows\System32\ADVAPI32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795770645376243 0x7ffad0070000 1277952 C:\Windows\System32\ole32.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft OLE для Windows 131795770645376243 0x7ffad01b0000 335872 C:\Windows\System32\SHLWAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека небольших программ оболочки 131795770645376243 0x7ffad0210000 364544 C:\Windows\System32\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795770645376243 0x7ffad0270000 1908736 C:\Windows\SYSTEM32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 23 96 580 4 00000000:000003e5 131765776304995849 0 0 1 Обязательная метка\Обязательный уровень системы NT AUTHORITY\LOCAL SERVICE svchost.exe C:\Windows\system32\svchost.exe C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork Microsoft Corporation 10.0.14393.0 (rs1_release.160715-1616) Хост-процесс для служб Windows 131795770645376384 0x7ff718c20000 57344 C:\Windows\system32\svchost.exe 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Хост-процесс для служб Windows 131795770645376384 0x7ffac0bf0000 3559424 C:\Windows\System32\ActXPrxy.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation ActiveX Interface Marshaling Library 131795770645376384 0x7ffac1fd0000 999424 C:\Windows\system32\wbem\fastprox.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation WMI Custom Marshaller 131795770645376384 0x7ffac21b0000 77824 C:\Windows\System32\srumapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation System Resource Usage Monitor API 131795770645376384 0x7ffac21d0000 81920 C:\Windows\system32\wbem\wbemsvc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation WMI 131795770645376384 0x7ffac2510000 102400 C:\Windows\System32\energyprov.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Energy System Resource Usage Monitor (SRUM) provider 131795770645376384 0x7ffac2580000 49152 C:\Windows\System32\ncuprov.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Network Connectivity Statistics Provider for System Resource Usage Monitor Service 131795770645376384 0x7ffac2b90000 90112 C:\Windows\System32\nduprov.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик сетевой статистики для службы отслеживания использования ресурсов системы 131795770645376384 0x7ffac2bb0000 106496 C:\Windows\SYSTEM32\appsruprov.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Application System Resource Usage Monitor (SRUM) provider 131795770645376384 0x7ffac2bd0000 131072 C:\Windows\System32\eeprov.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Energy Estimator SRUM provider 131795770645376384 0x7ffac2c20000 45056 C:\Windows\system32\wfapigp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Firewall GPO Helper dll 131795770645376384 0x7ffac2d70000 57344 C:\Windows\System32\wpnsruprov.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SRUM provider for WPN 131795770645376384 0x7ffac3310000 225280 C:\Windows\System32\srumsvc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation System Resource Usage Monitor Service 131795770645376384 0x7ffac3730000 36864 C:\Windows\system32\pnpts.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation PlugPlay Troubleshooter 131795770645376384 0x7ffac3840000 3088384 C:\Windows\system32\ESENT.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширяемая подсистема хранения данных ESE для Microsoft(R) Windows(R) 131795770645376384 0x7ffac3bd0000 106496 c:\windows\system32\ncdautosetup.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL службы автоматической настройки сетевых устройств 131795770645376384 0x7ffac3cb0000 2772992 C:\Windows\SYSTEM32\iertutil.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служебная программа времени выполнения для Internet Explorer 131795770645376384 0x7ffac3f60000 225280 c:\windows\system32\FWPolicyIOMgr.dll 10.0.14393.2189 (rs1_release.180329-1711) Microsoft Corporation FwPolicyIoMgr DLL 131795770645376384 0x7ffac4000000 274432 C:\Windows\SYSTEM32\policymanager.dll 10.0.14393.2035 (rs1_release_inmarket.180110-1910) Microsoft Corporation Policy Manager DLL 131795770645376384 0x7ffac4050000 118784 c:\windows\system32\wdi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Инфраструктура диагностики Windows 131795770645376384 0x7ffac41f0000 40960 C:\Windows\system32\adhapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AD harvest sites and subnets API 131795770645376384 0x7ffac4220000 520192 C:\Windows\SYSTEM32\wbemcomn.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation WMI 131795770645376384 0x7ffac4470000 65536 C:\Windows\system32\wbem\wbemprox.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation WMI 131795770645376384 0x7ffac4500000 200704 c:\windows\system32\dps.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служба политики диагностики WDI 131795770645376384 0x7ffac4cd0000 933888 c:\windows\system32\mpssvc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служба защиты (Microsoft) 131795770645376384 0x7ffac4f40000 122880 C:\Windows\system32\radardt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Программа обнаружения нехватки системных ресурсов Windows 131795770645376384 0x7ffac66c0000 32768 C:\Windows\system32\wship6.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL помощника Winsock2 (TL/IPv6) 131795770645376384 0x7ffac66d0000 32768 C:\Windows\system32\wshtcpip.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL помощника службы Winsock2 (TL/IPv4) 131795770645376384 0x7ffac6700000 40960 C:\Windows\system32\wshqos.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL помощника службы QoS Winsock2 131795770645376384 0x7ffac6740000 53248 C:\Windows\system32\dtsh.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека API состояния общего доступа и обнаружения 131795770645376384 0x7ffac6990000 69632 c:\windows\system32\deviceassociation.dll 10.0.14393.82 (rs1_release.160805-1735) Microsoft Corporation Device Association Client DLL 131795770645376384 0x7ffac74b0000 827392 c:\windows\system32\bfe.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служба базовой фильтрации 131795770645376384 0x7ffac7580000 1077248 C:\Windows\SYSTEM32\mrmcorer.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Windows MRM 131795770645376384 0x7ffac79c0000 57344 C:\Windows\System32\npmproxy.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Network List Manager Proxy 131795770645376384 0x7ffac83d0000 106496 C:\Windows\SYSTEM32\dhcpcsvc.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служба DHCP-клиента 131795770645376384 0x7ffac83f0000 90112 C:\Windows\SYSTEM32\dhcpcsvc6.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиент DHCPv6 131795770645376384 0x7ffac8420000 434176 c:\windows\system32\fwpuclnt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API пользовательского режима FWP/IPsec 131795770645376384 0x7ffac8810000 45056 C:\Windows\SYSTEM32\WINNSI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Network Store Information RPC interface 131795770645376384 0x7ffac8cf0000 815104 C:\Windows\System32\taskschd.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Task Scheduler COM API 131795770645376384 0x7ffac90b0000 90112 c:\windows\system32\wkscli.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Workstation Service Client DLL 131795770645376384 0x7ffac9220000 397312 C:\Windows\SYSTEM32\wevtapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API настройки и использования событий 131795770645376384 0x7ffac9f10000 221184 C:\Windows\System32\netprofm.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Network List Manager 131795770645376384 0x7ffaca100000 36864 C:\Windows\SYSTEM32\httpprxc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Proxy Manager Provider RPC interface 131795770645376384 0x7ffaca170000 45056 c:\windows\system32\ktmw32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows KTM Win32 Client DLL 131795770645376384 0x7ffaca340000 1593344 C:\Windows\System32\PROPSYS.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Система страниц свойств (Майкрософт) 131795770645376384 0x7ffaca4e0000 77824 C:\Windows\system32\WTSAPI32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Remote Desktop Session Host Server SDK APIs 131795770645376384 0x7ffaca640000 770048 c:\windows\system32\coremessaging.dll 10.0.14393.0 Microsoft Corporation Microsoft CoreMessaging Dll 131795770645376384 0x7ffacb070000 69632 C:\Windows\SYSTEM32\embeddedmodesvcapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Embedded Mode Service Client DLL 131795770645376384 0x7ffacb140000 593920 c:\windows\system32\msvcp110_win.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Microsoft® STL110 C++ Runtime Library 131795770645376384 0x7ffacb360000 176128 C:\Windows\system32\fwbase.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Firewall Base DLL 131795770645376384 0x7ffacb3f0000 163840 C:\Windows\system32\DEVOBJ.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Device Information Set DLL 131795770645376384 0x7ffacb420000 204800 C:\Windows\system32\ntmarta.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик Windows NT MARTA 131795770645376384 0x7ffacb460000 548864 C:\Windows\system32\FirewallAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API брандмауэра Windows 131795770645376384 0x7ffacb6f0000 143360 C:\Windows\SYSTEM32\gpapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиентские функции API групповой политики 131795770645376384 0x7ffacb920000 81920 C:\Windows\SYSTEM32\WLDP.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Политика блокировки Windows 131795770645376384 0x7ffacb960000 303104 c:\windows\system32\AUTHZ.dll 10.0.14393.1737 (rs1_release_inmarket.170914-1249) Microsoft Corporation Authorization Framework 131795770645376384 0x7ffacbd30000 229376 c:\windows\system32\IPHLPAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API вспомогательного приложения IP 131795770645376384 0x7ffacbd70000 659456 c:\windows\system32\DNSAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Динамическая библиотека API DNS-клиента 131795770645376384 0x7ffacbe20000 53248 c:\windows\system32\netutils.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API Helpers DLL 131795770645376384 0x7ffacbfb0000 376832 C:\Windows\system32\mswsock.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширение поставщика службы API Microsoft Windows Sockets 2.0 131795770645376384 0x7ffacc170000 45056 C:\Windows\system32\CRYPTBASE.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base cryptographic API DLL 131795770645376384 0x7ffacc350000 180224 c:\windows\system32\SspiCli.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Security Support Provider Interface 131795770645376384 0x7ffacc5c0000 352256 C:\Windows\system32\WINSTA.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Winstation Library 131795770645376384 0x7ffacc620000 176128 c:\windows\system32\bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795770645376384 0x7ffacc6e0000 61440 C:\Windows\System32\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795770645376384 0x7ffacc6f0000 311296 C:\Windows\System32\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795770645376384 0x7ffacc740000 81920 C:\Windows\System32\profapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Profile Basic API 131795770645376384 0x7ffacc760000 65536 C:\Windows\System32\MSASN1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ASN.1 Runtime APIs 131795770645376384 0x7ffacc8f0000 1003520 C:\Windows\System32\ucrtbase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645376384 0x7ffacc9f0000 434176 C:\Windows\System32\bcryptPrimitives.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Cryptographic Primitives Library 131795770645376384 0x7ffacca60000 122880 C:\Windows\System32\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795770645376384 0x7ffacca80000 348160 C:\Windows\System32\WINTRUST.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation Microsoft Trust Verification APIs 131795770645376384 0x7ffaccae0000 692224 C:\Windows\System32\shcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795770645376384 0x7ffaccb90000 7180288 C:\Windows\System32\windows.storage.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API хранения Microsoft WinRT 131795770645376384 0x7ffacd270000 2215936 C:\Windows\System32\KERNELBASE.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645376384 0x7ffacd490000 1871872 C:\Windows\System32\CRYPT32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API32 криптографии 131795770645376384 0x7ffacd710000 638976 C:\Windows\System32\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645376384 0x7ffacd7b0000 270336 C:\Windows\System32\CFGMGR32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Configuration Manager DLL 131795770645376384 0x7ffacd810000 22056960 C:\Windows\System32\SHELL32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Общая библиотека оболочки Windows 131795770645376384 0x7ffaced20000 782336 C:\Windows\System32\OLEAUT32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795770645376384 0x7ffacee50000 1183744 C:\Windows\System32\RPCRT4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795770645376384 0x7ffacef80000 32768 C:\Windows\System32\NSI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation NSI User-mode interface DLL 131795770645376384 0x7ffacef90000 647168 C:\Windows\System32\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795770645376384 0x7ffacf030000 651264 C:\Windows\System32\clbcatq.dll 2001.12.10941.16384 (rs1_release.160715-1616) Microsoft Corporation COM+ Configuration Catalog 131795770645376384 0x7ffacf0d0000 704512 C:\Windows\System32\KERNEL32.DLL 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645376384 0x7ffacf770000 212992 C:\Windows\System32\GDI32.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation GDI Client DLL 131795770645376384 0x7ffacf820000 434176 C:\Windows\System32\WS2_32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation 32-разрядная библиотека Windows Socket 2.0 131795770645376384 0x7ffacf8c0000 1462272 C:\Windows\System32\user32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795770645376384 0x7ffacfb30000 2916352 C:\Windows\System32\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795770645376384 0x7ffacfe20000 663552 C:\Windows\System32\advapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795770645376384 0x7ffad0070000 1277952 C:\Windows\System32\ole32.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft OLE для Windows 131795770645376384 0x7ffad01b0000 335872 C:\Windows\System32\shlwapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека небольших программ оболочки 131795770645376384 0x7ffad0210000 364544 C:\Windows\System32\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795770645376384 0x7ffad0270000 1908736 C:\Windows\SYSTEM32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 24 348 580 4 00000000:000003e7 131765776305446235 0 0 1 Обязательная метка\Обязательный уровень системы NT AUTHORITY\СИСТЕМА svchost.exe C:\Windows\system32\svchost.exe C:\Windows\system32\svchost.exe -k netsvcs Microsoft Corporation 10.0.14393.0 (rs1_release.160715-1616) Хост-процесс для служб Windows 131795770645376622 0x7ff718c20000 57344 C:\Windows\system32\svchost.exe 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Хост-процесс для служб Windows 131795770645376622 0x7ffaa0aa0000 2138112 c:\windows\system32\wlidsvc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служба учетных записей Майкрософт 131795770645376622 0x7ffab0750000 368640 C:\Windows\system32\rascustom.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Модуль настраиваемых протоколов 131795770645376622 0x7ffab07b0000 606208 C:\Windows\system32\vpnike.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation VPNIKE Protocol Engine - Test dll 131795770645376622 0x7ffab09b0000 323584 C:\Windows\system32\rasppp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Remote Access PPP 131795770645376622 0x7ffab0a00000 270336 C:\Windows\system32\rastapi.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Remote Access TAPI Compliance Layer 131795770645376622 0x7ffab1d80000 262144 C:\Windows\system32\eappcfg.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Eap Peer Config 131795770645376622 0x7ffab3440000 696320 c:\windows\system32\rasmans.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Диспетчер подключений удаленного доступа 131795770645376622 0x7ffab4b90000 655360 C:\Windows\System32\StructuredQuery.dll 7.0.14393.2068 (rs1_release.180209-1727) Microsoft Corporation Structured Query 131795770645376622 0x7ffab4c50000 90112 c:\windows\system32\eappprxy.dll 10.0.14393.187 (rs1_release_inmarket.160906-1818) Microsoft Corporation Microsoft EAPHost Peer Client DLL 131795770645376622 0x7ffab7d80000 753664 C:\Windows\system32\RASAPI32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API удаленного доступа 131795770645376622 0x7ffab9a90000 479232 C:\Windows\system32\dmEnrollEngine.DLL 10.0.14393.479 (rs1_release.161110-2025) Microsoft Corporation Enroll Engine DLL 131795770645376622 0x7ffabae60000 77824 C:\Windows\system32\DEVRTL.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Device Management Run Time Library 131795770645376622 0x7ffabafc0000 700416 C:\Windows\SYSTEM32\wer.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека сообщений об ошибках Windows 131795770645376622 0x7ffabc210000 2355200 c:\windows\system32\wuaueng.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Агент Центра обновления Windows 131795770645376622 0x7ffabcf30000 110592 c:\windows\system32\MPR.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека маршрутизации для нескольких служб доступа 131795770645376622 0x7ffabcf50000 921600 C:\Windows\system32\drvstore.dll 10.0.14393.351 (rs1_release_inmarket.161014-1755) Microsoft Corporation Driver Store API 131795770645376622 0x7ffabd180000 548864 C:\Windows\SYSTEM32\WINSPOOL.DRV 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Драйвер диспетчера очереди Windows 131795770645376622 0x7ffabdf60000 159744 C:\Windows\System32\raschap.dll 10.0.14393.1480 (rs1_release.170706-2004) Microsoft Corporation Удаленные доступ через PPP CHAP 131795770645376622 0x7ffabe4a0000 147456 c:\windows\system32\appinfo.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служба сведений о приложении 131795770645376622 0x7ffabe4d0000 286720 C:\Windows\System32\MSWB7.dll 10.0.14393.1737 (rs1_release_inmarket.170914-1249) Microsoft Corporation MSWB7 DLL 131795770645376622 0x7ffabed80000 540672 C:\Windows\system32\wbem\wbemess.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation WMI 131795770645376622 0x7ffabee10000 90112 C:\Windows\SYSTEM32\NCObjAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation 131795770645376622 0x7ffabee30000 847872 C:\Windows\system32\wbem\wmiprvsd.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation WMI 131795770645376622 0x7ffabefd0000 258048 C:\Windows\SYSTEM32\AEPIC.dll 10.0.17060.1029 (WinBuild.160101.0800) Microsoft Corporation Application Experience Program Cache 131795770645376622 0x7ffabf010000 98304 C:\Windows\SYSTEM32\elscore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL ядра платформы Els 131795770645376622 0x7ffabf090000 98304 C:\Windows\System32\LocationFrameworkInternalPS.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Geolocation Framework Internal PS 131795770645376622 0x7ffabf0e0000 372736 C:\Windows\system32\hnetcfg.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Диспетчер конфигурации домашней сети 131795770645376622 0x7ffabf1d0000 192512 C:\Windows\System32\cryptnet.dll 10.0.14393.2035 (rs1_release_inmarket.180110-1910) Microsoft Corporation Crypto Network Related API 131795770645376622 0x7ffabf200000 405504 c:\windows\system32\cryptngc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API службы Microsoft Passport 131795770645376622 0x7ffabf2a0000 159744 C:\Windows\system32\dssenh.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Enhanced DSS and Diffie-Hellman Cryptographic Provider 131795770645376622 0x7ffabf330000 2457600 C:\Windows\System32\msxml6.dll 6.30.14393.2156 Microsoft Corporation MSXML 6.0 131795770645376622 0x7ffabfd60000 90112 C:\Windows\system32\napinsp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик оболочки совместимости для имен электронной почты 131795770645376622 0x7ffabfda0000 122880 C:\Windows\system32\wbem\ncprov.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Non-COM WMI Event Provision APIs 131795770645376622 0x7ffabfdc0000 86016 C:\Windows\system32\keepaliveprovider.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Keep alive provider API 131795770645376622 0x7ffabfe50000 643072 C:\Windows\System32\wpnprv.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик подключения платформы push-уведомлений Windows 131795770645376622 0x7ffabfef0000 106496 C:\Windows\system32\pnrpnsp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик пространства имен PNRP 131795770645376622 0x7ffabff60000 135168 C:\Windows\system32\ncryptsslp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft SChannel Provider 131795770645376622 0x7ffac0000000 401408 C:\Windows\system32\wbem\repdrvfs.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation WMI Repository Driver 131795770645376622 0x7ffac05f0000 94208 C:\Windows\System32\wwapi.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation WWAN API 131795770645376622 0x7ffac0610000 3088384 C:\Windows\SYSTEM32\msi.dll 5.0.14393.2155 Microsoft Corporation Windows Installer 131795770645376622 0x7ffac0910000 724992 C:\Windows\System32\Windows.Networking.Connectivity.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Networking Connectivity Runtime DLL 131795770645376622 0x7ffac0ab0000 57344 C:\Windows\System32\winrnr.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation LDAP RnR Provider DLL 131795770645376622 0x7ffac0ac0000 53248 c:\windows\system32\tbs.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation TBS 131795770645376622 0x7ffac0ad0000 86016 C:\Windows\SYSTEM32\mskeyprotect.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик защиты ключей (Майкрософт) 131795770645376622 0x7ffac0af0000 114688 C:\Windows\system32\ATL.DLL 3.05.2284 Microsoft Corporation ATL Module for Windows XP (Unicode) 131795770645376622 0x7ffac0bf0000 3559424 C:\Windows\System32\ActXPrxy.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation ActiveX Interface Marshaling Library 131795770645376622 0x7ffac1090000 94208 C:\Windows\System32\shacctprofile.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Shell Accounts Profile Classes 131795770645376622 0x7ffac1160000 892928 C:\Windows\System32\wuapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API клиента Центра обновления Windows 131795770645376622 0x7ffac1530000 528384 C:\Windows\SYSTEM32\dpx.dll 5.00 (rs1_release.160715-1616) Microsoft Corporation Microsoft(R) Delta Package Expander 131795770645376622 0x7ffac1900000 225280 c:\windows\system32\appxapplicabilityblob.dll 10.0.14393.953 (rs1_release_inmarket.170303-1614) Microsoft Corporation Appx Applicability Blob DLL 131795770645376622 0x7ffac1970000 1073152 c:\windows\system32\qmgr.dll 7.8.14393.0 (rs1_release.160715-1616) Microsoft Corporation Фоновая интеллектуальная служба передачи 131795770645376622 0x7ffac1b70000 122880 C:\Windows\System32\DevDispItemProvider.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Подсистема DeviceItem inproc devquery 131795770645376622 0x7ffac1c30000 49152 C:\Windows\system32\DMProcessXMLFiltered.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation dmprocessxmlfiltered 131795779661934902 0x7ffac1c90000 155648 C:\Windows\System32\browser.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL службы браузера компьютеров 131795770645376622 0x7ffac1cf0000 417792 C:\Windows\SYSTEM32\wuuhext.dll 10.0.14393.2189 (rs1_release.180329-1711) Microsoft Corporation Windows Update Agent plugin for Windows 131795770645376622 0x7ffac1df0000 61440 c:\windows\system32\NCI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation CoInstaller: NET 131795770645376622 0x7ffac1e20000 147456 C:\Windows\system32\wbem\wmiutils.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation WMI 131795770645376622 0x7ffac1e80000 507904 C:\Windows\System32\NetSetupShim.dll 10.0.14393.1532 (rs1_release_d.170711-1840) Microsoft Corporation Network Configuration API 131795770645376622 0x7ffac1f10000 126976 c:\windows\system32\DMCmnUtils.dll 10.0.14393.1737 (rs1_release_inmarket.170914-1249) Microsoft Corporation dmcmnutils 131795770645376622 0x7ffac1f30000 118784 C:\Windows\system32\SPINF.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows SPINF 131795770645376622 0x7ffac1f50000 471040 C:\Windows\system32\wbem\esscli.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation WMI 131795770645376622 0x7ffac1fd0000 999424 C:\Windows\system32\wbem\FastProx.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation WMI Custom Marshaller 131795770645376622 0x7ffac20d0000 110592 c:\windows\system32\RMCLIENT.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Resource Manager Client 131795770645376622 0x7ffac20f0000 753664 C:\Windows\system32\CLUSAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека API кластера 131795770645376622 0x7ffac21d0000 81920 C:\Windows\system32\wbem\wbemsvc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation WMI 131795770645376622 0x7ffac2210000 1351680 C:\Windows\system32\wbem\wbemcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Инструментарий управления Windows 131795770645376622 0x7ffac2360000 57344 c:\windows\system32\TimeBrokerClient.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Time Broker Client Library 131795770645376622 0x7ffac2370000 110592 C:\Windows\system32\adhsvc.dll 10.0.14393.2189 (rs1_release.180329-1711) Microsoft Corporation AD Harvest Sites and Subnets Service 131795770645376622 0x7ffac2390000 147456 C:\Windows\system32\httpprxm.dll 10.0.14393.2189 (rs1_release.180329-1711) Microsoft Corporation Proxy Manager 131795775850813653 0x7ffac23c0000 331776 C:\Windows\System32\OneCoreCommonProxyStub.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation OneCore Common Proxy Stub 131795770645376622 0x7ffac24a0000 397312 C:\Windows\system32\RESUTILS.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL служебной программы ресурсов кластера (Майкрософт) 131795770645376622 0x7ffac2530000 270336 C:\Windows\system32\hnetcfgclient.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиент API конфигурации домашней сети 131795775850596192 0x7ffac2590000 659456 C:\Windows\System32\FlightSettings.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Параметры цикла тестирования 131795770645376622 0x7ffac2640000 188416 C:\Windows\system32\wmidcom.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation WMI 131795770645376622 0x7ffac2670000 376832 C:\Windows\system32\miutils.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Инфраструктура управления 131795770645376622 0x7ffac26f0000 36864 C:\Windows\SYSTEM32\sscoreext.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Server Service Core DLL 131795770645376622 0x7ffac2720000 192512 C:\Windows\SYSTEM32\WPTaskScheduler.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation WP Task Scheduler DLL 131795775850744400 0x7ffac2750000 106496 C:\Windows\System32\bcd.dll 10.0.14393.1794 (rs1_release.171008-1615) Microsoft Corporation BCD DLL 131795770645376622 0x7ffac2770000 69632 C:\Windows\system32\SSCORE.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Основная DLL-библиотека службы сервера 131795770645376622 0x7ffac2940000 45056 c:\windows\system32\CSystemEventsBrokerClient.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Classic System Events Broker Client Library 131795770645376622 0x7ffac29f0000 159744 c:\windows\system32\NetSetupApi.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Network Configuration API 131795770645376622 0x7ffac2a20000 81920 c:\windows\system32\rtutils.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Routing Utilities 131795770645376622 0x7ffac2a40000 974848 c:\windows\system32\iphlpsvc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Эта служба предоставляет автоматическое подключение IPv6 в сети IPv4. 131795770645376622 0x7ffac2b30000 286720 C:\Windows\System32\usermgrproxy.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation UserMgrProxy 131795770645376622 0x7ffac2c30000 135168 c:\windows\system32\CLIPC.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиент платформы лицензирования клиента 131795770645376622 0x7ffac2c60000 278528 c:\windows\system32\WDSCORE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Panther Engine Module 131795770645376622 0x7ffac2cb0000 778240 C:\Windows\System32\winsqlite3.dll 3.12.2 SQLite Development Team SQLite is a software library that implements a self-contained, serverless, zero-configuration, transactional SQL database engine. 131795770645376622 0x7ffac2d80000 5140480 C:\Windows\System32\cdp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API клиента Microsoft (R) CDP 131795770645376622 0x7ffac3360000 1396736 C:\Windows\System32\wpncore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Ядро извещающих уведомлений Windows 131795770645376622 0x7ffac34c0000 81920 C:\Windows\system32\vss_ps.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation Microsoft® Volume Shadow Copy Service proxy/stub 131795770645376622 0x7ffac34e0000 1843200 C:\Windows\System32\urlmon.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширения OLE32 для Win32 131795770645376622 0x7ffac36b0000 524288 C:\Windows\system32\msdelta.dll 5.00 (rs1_release.160715-1616) Microsoft Corporation Microsoft Patch Engine 131795770645376622 0x7ffac3740000 413696 C:\Windows\system32\upnp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API контрольной точки UPnP 131795770645376622 0x7ffac3810000 167936 C:\Windows\SYSTEM32\Cabinet.dll 5.00 (rs1_release.160715-1616) Microsoft Corporation Microsoft® Cabinet File API 131795770645376622 0x7ffac3840000 3088384 c:\windows\system32\ESENT.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширяемая подсистема хранения данных ESE для Microsoft(R) Windows(R) 131795770645376622 0x7ffac3b40000 245760 c:\windows\system32\wbem\wmisvc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation WMI 131795770645376622 0x7ffac3cb0000 2772992 C:\Windows\System32\iertutil.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служебная программа времени выполнения для Internet Explorer 131795770645376622 0x7ffac3f60000 225280 C:\Windows\system32\FWPolicyIOMgr.dll 10.0.14393.2189 (rs1_release.180329-1711) Microsoft Corporation FwPolicyIoMgr DLL 131795770645376622 0x7ffac3fa0000 331776 c:\windows\system32\srvsvc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека (DLL) ресурсов для службы сервера 131795770645376622 0x7ffac4000000 274432 C:\Windows\SYSTEM32\policymanager.dll 10.0.14393.2035 (rs1_release_inmarket.180110-1910) Microsoft Corporation Policy Manager DLL 131795770645376622 0x7ffac4160000 253952 c:\windows\system32\wpnservice.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служба системы push-уведомлений Windows 131795770645376622 0x7ffac4220000 520192 C:\Windows\SYSTEM32\wbemcomn.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation WMI 131795770645376622 0x7ffac4450000 86016 C:\Windows\SYSTEM32\usermgrcli.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation UserMgr API DLL 131795770645376622 0x7ffac4480000 499712 C:\Windows\system32\taskcomp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Оснастка обратной совместимости диспетчера задач 131795770645376622 0x7ffac4540000 69632 C:\Windows\system32\ProximityServicePAL.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Proximity Service PAL 131795775380234927 0x7ffac4b60000 155648 C:\Windows\System32\browser.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL службы браузера компьютеров 131795770645376622 0x7ffac4cc0000 36864 C:\Windows\system32\ProximityCommonPal.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Proximity Common PAL 131795770645376622 0x7ffac4dc0000 176128 C:\Windows\system32\ProximityCommon.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Универсальная реализация близкого взаимодействия 131795770645376622 0x7ffac4e70000 102400 C:\Windows\SYSTEM32\samcli.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Security Accounts Manager Client DLL 131795770645376622 0x7ffac4ee0000 331776 C:\Windows\System32\ProximityService.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Proximity Service Implementation 131795770645376622 0x7ffac4f60000 143360 C:\Windows\SYSTEM32\wcmapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Connection Manager Client API 131795770645376622 0x7ffac5c50000 131072 C:\Windows\system32\rasman.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Remote Access Connection Manager 131795770645376622 0x7ffac5ef0000 868352 C:\Windows\System32\MbaeApiPublic.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Mobile Broadband Account API 131795770645376622 0x7ffac60e0000 221184 C:\Windows\System32\XmlLite.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft XmlLite Library 131795770645376622 0x7ffac6410000 98304 C:\Windows\SYSTEM32\VssTrace.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека трассировки службы теневого копирования тома Microsoft® 131795770645376622 0x7ffac6430000 1581056 C:\Windows\SYSTEM32\VSSAPI.DLL 10.0.14393.953 (rs1_release_inmarket.170303-1614) Microsoft Corporation Microsoft® Volume Shadow Copy Requestor/Writer Services API DLL 131795770645376622 0x7ffac6610000 40960 C:\Windows\System32\rasadhlp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Remote Access AutoDial Helper 131795770645376622 0x7ffac66a0000 86016 C:\Windows\SYSTEM32\ondemandconnroutehelper.dll 10.0.14393.351 (rs1_release_inmarket.161014-1755) Microsoft Corporation On Demand Connctiond Route Helper 131795770645376622 0x7ffac6750000 1380352 c:\windows\system32\webservices.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Среда выполнения веб-служб Windows 131795770645376622 0x7ffac69c0000 839680 C:\Windows\System32\WINHTTP.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Службы HTTP Windows 131795770645376622 0x7ffac6a90000 49152 C:\Windows\System32\LocationFrameworkPS.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Geolocation Framework PS 131795770645376622 0x7ffac6c40000 2596864 C:\Windows\WinSxS\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.14393.953_none_42151e83c686086b\Comctl32.dll 6.10 (rs1_release_inmarket.170303-1614) Microsoft Corporation Библиотека элементов управления взаимодействия с пользователем 131795770645376622 0x7ffac7580000 1077248 C:\Windows\SYSTEM32\mrmcorer.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Windows MRM 131795770645376622 0x7ffac7700000 65536 C:\Windows\system32\CredentialMigrationHandler.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Credential Migration Handler 131795770645376622 0x7ffac79c0000 57344 C:\Windows\System32\npmproxy.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Network List Manager Proxy 131795770645376622 0x7ffac79d0000 53248 C:\Windows\system32\sqmapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SQM Client 131795770645376622 0x7ffac7aa0000 401408 C:\Windows\SYSTEM32\wlanapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows WLAN AutoConfig Client Side API DLL 131795770645376622 0x7ffac7d20000 106496 C:\Windows\SYSTEM32\msauserext.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation MSA USER Extension DLL 131795770645376622 0x7ffac7d60000 114688 c:\windows\system32\UpdatePolicy.dll 10.0.14393.2189 (rs1_release.180329-1711) Microsoft Corporation Update Policy Reader 131795770645376622 0x7ffac7e50000 86016 C:\Windows\system32\SSDPAPI.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation SSDP Client API DLL 131795770645376622 0x7ffac7e90000 749568 c:\windows\system32\FVEAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows BitLocker Drive Encryption API 131795770645376622 0x7ffac82d0000 643072 c:\windows\system32\shsvcs.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL служб оболочки Windows 131795770645376622 0x7ffac83d0000 106496 C:\Windows\SYSTEM32\dhcpcsvc.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служба DHCP-клиента 131795770645376622 0x7ffac83f0000 90112 C:\Windows\SYSTEM32\dhcpcsvc6.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиент DHCPv6 131795770645376622 0x7ffac8420000 434176 c:\windows\system32\fwpuclnt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API пользовательского режима FWP/IPsec 131795770645376622 0x7ffac8590000 135168 C:\Windows\System32\LocationWinPalMisc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Location Platform Abstraction Layer 131795770645376622 0x7ffac85c0000 1810432 c:\windows\system32\LocationFramework.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Платформа географического положения Windows 131795770645376622 0x7ffac8780000 274432 c:\windows\system32\UBPM.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL единого диспетчера фоновых процессов 131795770645376622 0x7ffac8810000 45056 c:\windows\system32\WINNSI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Network Store Information RPC interface 131795770645376622 0x7ffac8880000 69632 c:\windows\system32\WMICLNT.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation WMI Client API 131795770645376622 0x7ffac8b60000 966656 c:\windows\system32\schedsvc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служба планировщика заданий 131795770645376622 0x7ffac8dc0000 167936 C:\Windows\system32\dbgcore.DLL 10.0.14321.1024 (debuggers(dbg).160715-1616) Microsoft Windows Core Debugging Helpers 131795770645376622 0x7ffac8df0000 1646592 C:\Windows\system32\dbghelp.dll 10.0.14321.1024 (rs1_release.160715-1616) Microsoft Windows Image Helper 131795770645376622 0x7ffac8fa0000 253952 c:\windows\system32\logoncli.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Net Logon Client DLL 131795770645376622 0x7ffac90b0000 90112 c:\windows\system32\wkscli.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Workstation Service Client DLL 131795770645376622 0x7ffac91c0000 167936 C:\Windows\SYSTEM32\profsvcext.dll 10.0.14393.1532 (rs1_release_d.170711-1840) Microsoft Corporation ProfSvcExt 131795770645376622 0x7ffac9220000 397312 C:\Windows\SYSTEM32\wevtapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API настройки и использования событий 131795770645376622 0x7ffac9290000 40960 c:\windows\system32\DSROLE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DS Setup Client DLL 131795770645376622 0x7ffac92a0000 90112 c:\windows\system32\sens.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служба уведомления о системных событиях (SENS) 131795770645376622 0x7ffac92c0000 98304 c:\windows\system32\themeservice.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL службы темы оболочки Windows 131795770645376622 0x7ffac92e0000 1269760 C:\Windows\SYSTEM32\wintypes.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL основных типов Windows 131795770645376622 0x7ffac9420000 380928 c:\windows\system32\profsvc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ProfSvc 131795770645376622 0x7ffac9790000 98304 c:\windows\system32\nlaapi.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Network Location Awareness 2 131795770645376622 0x7ffac9a70000 1257472 c:\windows\system32\gpsvc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиент групповой политики 131795770645376622 0x7ffac9bb0000 479232 C:\Windows\System32\ES.DLL 2001.12.10941.16384 (rs1_release.160715-1616) Microsoft Corporation COM+ 131795770645376622 0x7ffac9f10000 221184 C:\Windows\System32\netprofm.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Network List Manager 131795770645376622 0x7ffaca100000 36864 C:\Windows\SYSTEM32\httpprxc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Proxy Manager Provider RPC interface 131795770645376622 0x7ffaca1f0000 65536 C:\Windows\SYSTEM32\storageusage.dll 10.0.14393.82 (rs1_release.160805-1735) Microsoft Corporation Storage Usage 131795770645376622 0x7ffaca250000 49152 C:\Windows\SYSTEM32\bi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Background Broker Infrastructure Client Library 131795770645376622 0x7ffaca280000 73728 C:\Windows\System32\BitsProxy.dll 7.8.14393.0 (rs1_release.160715-1616) Microsoft Corporation Background Intelligent Transfer Service Proxy 131795770645376622 0x7ffaca340000 1593344 C:\Windows\System32\PROPSYS.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Система страниц свойств (Майкрософт) 131795770645376622 0x7ffaca4e0000 77824 C:\Windows\SYSTEM32\wtsapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Remote Desktop Session Host Server SDK APIs 131795770645376622 0x7ffaca500000 69632 C:\Windows\System32\wups.dll 10.0.14393.2122 (rs1_release.180217-2341) Microsoft Corporation Windows Update client proxy stub 131795770645376622 0x7ffaca570000 421888 C:\Windows\SYSTEM32\Bcp47Langs.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation BCP47 Language Classes 131795770645376622 0x7ffaca610000 143360 C:\Windows\SYSTEM32\SAMLIB.dll 10.0.14393.82 (rs1_release.160805-1735) Microsoft Corporation SAM Library DLL 131795770645376622 0x7ffaca700000 32768 c:\windows\system32\DABAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Desktop Activity Broker API 131795770645376622 0x7ffaca720000 77824 C:\Windows\system32\bitsigd.dll 7.8.14393.0 (rs1_release.160715-1616) Microsoft Corporation Background Intelligent Transfer Service IGD Support 131795770645376622 0x7ffacab70000 53248 c:\windows\system32\lfsvc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служба географического положения 131795770645376622 0x7ffacac40000 53248 c:\windows\system32\seclogon.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL службы вторичного входа 131795770645376622 0x7ffacac50000 45056 c:\windows\system32\bitsperf.dll 7.8.14393.0 (rs1_release.160715-1616) Microsoft Corporation Perfmon Counter Access 131795770645376622 0x7ffacad70000 278528 c:\windows\system32\BrokerLib.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Broker Base Library 131795770645376622 0x7ffacadf0000 499712 c:\windows\system32\apphelp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиентская библиотека совместимости приложений 131795770645376622 0x7ffacb000000 53248 c:\windows\system32\SYSNTFY.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Windows Notifications Dynamic Link Library 131795770645376622 0x7ffacb140000 593920 C:\Windows\System32\msvcp110_win.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Microsoft® STL110 C++ Runtime Library 131795770645376622 0x7ffacb1e0000 1163264 C:\Windows\SYSTEM32\twinapi.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation twinapi.appcore 131795770645376622 0x7ffacb300000 364544 C:\Windows\System32\VEEventDispatcher.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Visual Element Event dispatcher 131795770645376622 0x7ffacb360000 176128 C:\Windows\system32\fwbase.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Firewall Base DLL 131795770645376622 0x7ffacb3d0000 110592 C:\Windows\SYSTEM32\resourcepolicyclient.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Resource Policy Client 131795770645376622 0x7ffacb3f0000 163840 c:\windows\system32\DEVOBJ.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Device Information Set DLL 131795770645376622 0x7ffacb420000 204800 C:\Windows\SYSTEM32\ntmarta.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик Windows NT MARTA 131795770645376622 0x7ffacb460000 548864 C:\Windows\SYSTEM32\firewallapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API брандмауэра Windows 131795770645376622 0x7ffacb6e0000 49152 c:\windows\system32\HID.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека пользователя HID 131795770645376622 0x7ffacb6f0000 143360 C:\Windows\SYSTEM32\gpapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиентские функции API групповой политики 131795770645376622 0x7ffacb920000 81920 C:\Windows\SYSTEM32\WLDP.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Политика блокировки Windows 131795770645376622 0x7ffacb960000 303104 c:\windows\system32\AUTHZ.dll 10.0.14393.1737 (rs1_release_inmarket.170914-1249) Microsoft Corporation Authorization Framework 131795770645376622 0x7ffacbaf0000 495616 C:\Windows\system32\schannel.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик безопасности TLS/SSL 131795770645376622 0x7ffacbbb0000 208896 C:\Windows\system32\rsaenh.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Enhanced Cryptographic Provider 131795770645376622 0x7ffacbbf0000 40960 C:\Windows\system32\DPAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Data Protection API 131795770645376622 0x7ffacbd30000 229376 C:\Windows\system32\IPHLPAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API вспомогательного приложения IP 131795770645376622 0x7ffacbd70000 659456 C:\Windows\system32\DNSAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Динамическая библиотека API DNS-клиента 131795770645376622 0x7ffacbe20000 53248 c:\windows\system32\netutils.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API Helpers DLL 131795770645376622 0x7ffacbe40000 126976 c:\windows\system32\USERENV.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Userenv 131795770645376622 0x7ffacbfb0000 376832 C:\Windows\system32\MSWSOCK.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширение поставщика службы API Microsoft Windows Sockets 2.0 131795770645376622 0x7ffacc150000 94208 C:\Windows\SYSTEM32\cryptsp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Cryptographic Service Provider API 131795770645376622 0x7ffacc170000 45056 C:\Windows\System32\CRYPTBASE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base cryptographic API DLL 131795770645376622 0x7ffacc1f0000 241664 C:\Windows\System32\NTASN1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft ASN.1 API 131795770645376622 0x7ffacc230000 155648 C:\Windows\System32\ncrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Маршрутизатор Windows NCrypt 131795770645376622 0x7ffacc350000 180224 C:\Windows\System32\SspiCli.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Security Support Provider Interface 131795770645376622 0x7ffacc500000 102400 c:\windows\system32\EventAggregation.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Event Aggregation User Mode Library 131795770645376622 0x7ffacc520000 622592 C:\Windows\SYSTEM32\sxs.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Fusion 2.5 131795770645376622 0x7ffacc5c0000 352256 C:\Windows\SYSTEM32\winsta.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Winstation Library 131795770645376622 0x7ffacc620000 176128 c:\windows\system32\bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795770645376622 0x7ffacc6e0000 61440 C:\Windows\System32\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795770645376622 0x7ffacc6f0000 311296 C:\Windows\System32\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795770645376622 0x7ffacc740000 81920 C:\Windows\System32\profapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Profile Basic API 131795770645376622 0x7ffacc760000 65536 C:\Windows\System32\MSASN1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ASN.1 Runtime APIs 131795770645376622 0x7ffacc8f0000 1003520 C:\Windows\System32\ucrtbase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645376622 0x7ffacc9f0000 434176 C:\Windows\System32\bcryptPrimitives.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Cryptographic Primitives Library 131795770645376622 0x7ffacca60000 122880 C:\Windows\System32\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795770645376622 0x7ffacca80000 348160 C:\Windows\System32\WINTRUST.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation Microsoft Trust Verification APIs 131795770645376622 0x7ffaccae0000 692224 C:\Windows\System32\shcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795770645376622 0x7ffaccb90000 7180288 C:\Windows\System32\windows.storage.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API хранения Microsoft WinRT 131795770645376622 0x7ffacd270000 2215936 C:\Windows\System32\KERNELBASE.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645376622 0x7ffacd490000 1871872 C:\Windows\System32\CRYPT32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API32 криптографии 131795770645376622 0x7ffacd710000 638976 C:\Windows\System32\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645376622 0x7ffacd7b0000 270336 C:\Windows\System32\cfgmgr32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Configuration Manager DLL 131795770645376622 0x7ffacd810000 22056960 C:\Windows\System32\SHELL32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Общая библиотека оболочки Windows 131795770645376622 0x7ffaced20000 782336 C:\Windows\System32\OLEAUT32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795770645376622 0x7ffacede0000 450560 C:\Windows\System32\coml2.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft COM for Windows 131795770645376622 0x7ffacee50000 1183744 C:\Windows\System32\RPCRT4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795770645376622 0x7ffacef80000 32768 C:\Windows\System32\NSI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation NSI User-mode interface DLL 131795770645376622 0x7ffacef90000 647168 C:\Windows\System32\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795770645376622 0x7ffacf030000 651264 C:\Windows\System32\clbcatq.dll 2001.12.10941.16384 (rs1_release.160715-1616) Microsoft Corporation COM+ Configuration Catalog 131795770645376622 0x7ffacf0d0000 704512 C:\Windows\System32\KERNEL32.DLL 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645376622 0x7ffacf180000 376832 C:\Windows\System32\WLDAP32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Win32 LDAP API DLL 131795770645376622 0x7ffacf340000 4362240 C:\Windows\System32\setupapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Setup API 131795770645376622 0x7ffacf770000 212992 C:\Windows\System32\GDI32.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation GDI Client DLL 131795770645376622 0x7ffacf820000 434176 C:\Windows\System32\WS2_32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation 32-разрядная библиотека Windows Socket 2.0 131795770645376622 0x7ffacf8c0000 1462272 C:\Windows\System32\user32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795770645376622 0x7ffacfb30000 2916352 C:\Windows\System32\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795770645376622 0x7ffacfe00000 114688 C:\Windows\System32\imagehlp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT Image Helper 131795770645376622 0x7ffacfe20000 663552 C:\Windows\System32\advapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795770645376622 0x7ffad0070000 1277952 C:\Windows\System32\ole32.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft OLE для Windows 131795770645376622 0x7ffad01b0000 335872 C:\Windows\System32\shlwapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека небольших программ оболочки 131795770645376622 0x7ffad0210000 364544 C:\Windows\System32\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795770645376622 0x7ffad0270000 1908736 C:\Windows\SYSTEM32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 25 372 580 4 00000000:000003e5 131765776305463443 0 0 1 Обязательная метка\Обязательный уровень системы NT AUTHORITY\LOCAL SERVICE svchost.exe C:\Windows\system32\svchost.exe C:\Windows\system32\svchost.exe -k LocalService Microsoft Corporation 10.0.14393.0 (rs1_release.160715-1616) Хост-процесс для служб Windows 131795770645376755 0x7ff718c20000 57344 C:\Windows\system32\svchost.exe 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Хост-процесс для служб Windows 131795770645376755 0x7ffab1c40000 1302528 c:\windows\system32\LicenseManager.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation LicenseManager 131795770645376755 0x7ffab91f0000 233472 c:\windows\system32\sstpsvc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Обеспечивает возможность использования SSTP для подключения к удаленным компьютерам с помощью VPN. 131795770645376755 0x7ffab93b0000 897024 C:\Windows\System32\TokenBroker.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Token Broker 131795770645376755 0x7ffabaab0000 94208 C:\Windows\SYSTEM32\profext.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation profext 131795770645376755 0x7ffabbd10000 65536 C:\Windows\System32\TOKENBINDING.dll 10.0.14393.1593 (rs1_release.170731-1934) Microsoft Corporation Token Binding Protocol 131795770645376755 0x7ffabc610000 540672 c:\windows\system32\w32time.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служба времени Windows 131795770645376755 0x7ffabca50000 819200 C:\Windows\System32\Windows.Security.Authentication.Web.Core.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Token Broker WinRT API 131795770645376755 0x7ffabcb70000 262144 C:\Windows\System32\cdprt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft (R) CDP Client WinRT API 131795770645376755 0x7ffabef00000 499712 c:\windows\system32\cdpsvc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служба CDP Майкрософт (R) 131795770645376755 0x7ffabf2d0000 344064 C:\Windows\system32\ncryptprov.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft KSP 131795770645376755 0x7ffabf330000 2457600 C:\Windows\System32\msxml6.dll 6.30.14393.2156 Microsoft Corporation MSXML 6.0 131795770645376755 0x7ffabfbe0000 1011712 C:\Windows\System32\Windows.Security.Authentication.OnlineId.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation Windows Runtime OnlineId Authentication DLL 131795770645376755 0x7ffabff60000 135168 C:\Windows\system32\ncryptsslp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft SChannel Provider 131795770645376755 0x7ffac05e0000 40960 c:\windows\system32\sbservicetrigger.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Socket Broker Service Trigger 131795770645376755 0x7ffac05f0000 94208 C:\Windows\System32\wwapi.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation WWAN API 131795770645376755 0x7ffac0910000 724992 C:\Windows\System32\Windows.Networking.Connectivity.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Networking Connectivity Runtime DLL 131795770645376755 0x7ffac0ad0000 86016 C:\Windows\SYSTEM32\mskeyprotect.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик защиты ключей (Майкрософт) 131795770645376755 0x7ffac1160000 892928 C:\Windows\System32\wuapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API клиента Центра обновления Windows 131795770645376755 0x7ffac1d60000 589824 C:\Windows\System32\webio.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API протоколов передачи по Веб 131795770645376755 0x7ffac23c0000 331776 C:\Windows\System32\OneCoreCommonProxyStub.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation OneCore Common Proxy Stub 131795770645376755 0x7ffac2a20000 81920 c:\windows\system32\rtutils.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Routing Utilities 131795770645376755 0x7ffac2b30000 286720 C:\Windows\System32\usermgrproxy.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation UserMgrProxy 131795770645376755 0x7ffac2c30000 135168 c:\windows\system32\CLIPC.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиент платформы лицензирования клиента 131795770645376755 0x7ffac2d80000 5140480 c:\windows\system32\cdp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API клиента Microsoft (R) CDP 131795770645376755 0x7ffac3cb0000 2772992 C:\Windows\System32\iertutil.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служебная программа времени выполнения для Internet Explorer 131795770645376755 0x7ffac3f60000 225280 C:\Windows\System32\FWPolicyIOMgr.dll 10.0.14393.2189 (rs1_release.180329-1711) Microsoft Corporation FwPolicyIoMgr DLL 131795770645376755 0x7ffac4050000 118784 c:\windows\system32\wdi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Инфраструктура диагностики Windows 131795770645376755 0x7ffac4130000 40960 c:\windows\system32\fdphost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служба размещения поставщиков функций обнаружения 131795770645376755 0x7ffac41a0000 77824 C:\Windows\System32\fdproxy.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation Function Discovery Proxy Dll 131795770645376755 0x7ffac4200000 98304 C:\Windows\system32\perftrack.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Performance PerfTrack 131795770645376755 0x7ffac42a0000 659456 C:\Windows\System32\StateRepository.Core.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation StateRepository Core 131795770645376755 0x7ffac4450000 86016 C:\Windows\SYSTEM32\usermgrcli.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation UserMgr API DLL 131795770645376755 0x7ffac46d0000 4161536 C:\Windows\System32\Windows.StateRepository.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Сервер Windows StateRepository API Server 131795770645376755 0x7ffac5070000 798720 C:\Windows\System32\Windows.Web.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL веб-клиента 131795770645376755 0x7ffac5b80000 184320 C:\Windows\SYSTEM32\AuthBroker.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API WinRT для веб-проверки подлинности 131795770645376755 0x7ffac60e0000 221184 C:\Windows\System32\XmlLite.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft XmlLite Library 131795770645376755 0x7ffac6400000 53248 c:\windows\system32\HTTPAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation HTTP Protocol Stack API 131795770645376755 0x7ffac6610000 40960 C:\Windows\System32\rasadhlp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Remote Access AutoDial Helper 131795770645376755 0x7ffac66a0000 86016 C:\Windows\SYSTEM32\ondemandconnroutehelper.dll 10.0.14393.351 (rs1_release_inmarket.161014-1755) Microsoft Corporation On Demand Connctiond Route Helper 131795770645376755 0x7ffac66e0000 122880 C:\Windows\System32\fdssdp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Function Discovery SSDP Provider Dll 131795770645376755 0x7ffac6710000 172032 C:\Windows\System32\FunDisc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL обнаружения функции 131795770645376755 0x7ffac6750000 1380352 C:\Windows\System32\webservices.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Среда выполнения веб-служб Windows 131795770645376755 0x7ffac68b0000 696320 C:\Windows\System32\wsdapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Веб-службы для библиотек DLL API-интерфейсов устройств 131795770645376755 0x7ffac6960000 167936 C:\Windows\System32\fdwsd.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Function Discovery WS Discovery Provider Dll 131795770645376755 0x7ffac69c0000 839680 C:\Windows\System32\WINHTTP.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Службы HTTP Windows 131795770645376755 0x7ffac76d0000 65536 C:\Windows\System32\vmictimeprovider.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Virtual Machine Integration Component Time Sync Provider Library 131795770645376755 0x7ffac79c0000 57344 C:\Windows\System32\npmproxy.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Network List Manager Proxy 131795770645376755 0x7ffac7a10000 544768 c:\windows\system32\netprofmsvc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Диспетчер списка сетей 131795770645376755 0x7ffac7aa0000 401408 C:\Windows\SYSTEM32\wlanapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows WLAN AutoConfig Client Side API DLL 131795770645376755 0x7ffac7d20000 106496 C:\Windows\SYSTEM32\msauserext.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation MSA USER Extension DLL 131795770645376755 0x7ffac7e50000 86016 C:\Windows\System32\SSDPAPI.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation SSDP Client API DLL 131795770645376755 0x7ffac7f70000 49152 c:\windows\system32\licensemanagersvc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation LicenseManagerSvc 131795770645376755 0x7ffac83d0000 106496 C:\Windows\SYSTEM32\dhcpcsvc.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служба DHCP-клиента 131795770645376755 0x7ffac83f0000 90112 C:\Windows\SYSTEM32\dhcpcsvc6.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиент DHCPv6 131795770645376755 0x7ffac8420000 434176 C:\Windows\System32\fwpuclnt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API пользовательского режима FWP/IPsec 131795770645376755 0x7ffac8540000 286720 C:\Windows\System32\vaultcli.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиентская библиотека хранилища учетных данных 131795770645376755 0x7ffac8810000 45056 C:\Windows\SYSTEM32\WINNSI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Network Store Information RPC interface 131795770645376755 0x7ffac8fa0000 253952 c:\windows\system32\logoncli.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Net Logon Client DLL 131795770645376755 0x7ffac90a0000 53248 c:\windows\system32\nsisvc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation RPC-сервер интерфейса сохранения сети 131795770645376755 0x7ffac90b0000 90112 C:\Windows\SYSTEM32\wkscli.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Workstation Service Client DLL 131795770645376755 0x7ffac91f0000 172032 c:\windows\system32\FontProvider.dll 10.0.14393.1066 (rs1_release_sec.170327-1835) Microsoft Corporation Windows Font Provider Library 131795770645376755 0x7ffac9290000 40960 c:\windows\system32\DSROLE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DS Setup Client DLL 131795770645376755 0x7ffac92e0000 1269760 C:\Windows\System32\WinTypes.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL основных типов Windows 131795770645376755 0x7ffac9790000 98304 c:\windows\system32\nlaapi.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Network Location Awareness 2 131795770645376755 0x7ffac9860000 1896448 c:\windows\system32\fntcache.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служба кэша шрифтов Windows 131795770645376755 0x7ffac9bb0000 479232 c:\windows\system32\es.dll 2001.12.10941.16384 (rs1_release.160715-1616) Microsoft Corporation COM+ 131795770645376755 0x7ffaca130000 204800 C:\Windows\SYSTEM32\windows.devices.radios.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows.Devices.Radios DLL 131795770645376755 0x7ffaca280000 73728 C:\Windows\System32\BitsProxy.dll 7.8.14393.0 (rs1_release.160715-1616) Microsoft Corporation Background Intelligent Transfer Service Proxy 131795770645376755 0x7ffaca340000 1593344 C:\Windows\system32\propsys.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Система страниц свойств (Майкрософт) 131795770645376755 0x7ffaca500000 69632 C:\Windows\System32\wups.dll 10.0.14393.2122 (rs1_release.180217-2341) Microsoft Corporation Windows Update client proxy stub 131795770645376755 0x7ffacb140000 593920 c:\windows\system32\msvcp110_win.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Microsoft® STL110 C++ Runtime Library 131795770645376755 0x7ffacb1e0000 1163264 C:\Windows\System32\twinapi.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation twinapi.appcore 131795770645376755 0x7ffacb300000 364544 c:\windows\system32\VEEventDispatcher.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Visual Element Event dispatcher 131795770645376755 0x7ffacb360000 176128 C:\Windows\System32\fwbase.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Firewall Base DLL 131795770645376755 0x7ffacb420000 204800 C:\Windows\SYSTEM32\ntmarta.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик Windows NT MARTA 131795770645376755 0x7ffacb460000 548864 C:\Windows\System32\FirewallAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API брандмауэра Windows 131795770645376755 0x7ffacb6f0000 143360 C:\Windows\SYSTEM32\gpapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиентские функции API групповой политики 131795770645376755 0x7ffacb920000 81920 C:\Windows\SYSTEM32\WLDP.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Политика блокировки Windows 131795770645376755 0x7ffacbaf0000 495616 C:\Windows\system32\schannel.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик безопасности TLS/SSL 131795770645376755 0x7ffacbbb0000 208896 C:\Windows\system32\rsaenh.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Enhanced Cryptographic Provider 131795770645376755 0x7ffacbbf0000 40960 C:\Windows\SYSTEM32\DPAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Data Protection API 131795770645376755 0x7ffacbd30000 229376 c:\windows\system32\IPHLPAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API вспомогательного приложения IP 131795770645376755 0x7ffacbd70000 659456 C:\Windows\SYSTEM32\DNSAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Динамическая библиотека API DNS-клиента 131795770645376755 0x7ffacbe20000 53248 C:\Windows\SYSTEM32\netutils.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API Helpers DLL 131795770645376755 0x7ffacbe40000 126976 c:\windows\system32\USERENV.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Userenv 131795770645376755 0x7ffacbfb0000 376832 C:\Windows\system32\mswsock.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширение поставщика службы API Microsoft Windows Sockets 2.0 131795770645376755 0x7ffacc150000 94208 C:\Windows\System32\CRYPTSP.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Cryptographic Service Provider API 131795770645376755 0x7ffacc170000 45056 C:\Windows\system32\CRYPTBASE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base cryptographic API DLL 131795770645376755 0x7ffacc1f0000 241664 c:\windows\system32\NTASN1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft ASN.1 API 131795770645376755 0x7ffacc230000 155648 c:\windows\system32\ncrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Маршрутизатор Windows NCrypt 131795770645376755 0x7ffacc350000 180224 C:\Windows\System32\SspiCli.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Security Support Provider Interface 131795770645376755 0x7ffacc520000 622592 C:\Windows\SYSTEM32\sxs.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Fusion 2.5 131795770645376755 0x7ffacc620000 176128 C:\Windows\System32\bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795770645376755 0x7ffacc6e0000 61440 C:\Windows\System32\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795770645376755 0x7ffacc6f0000 311296 C:\Windows\System32\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795770645376755 0x7ffacc740000 81920 C:\Windows\System32\profapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Profile Basic API 131795770645376755 0x7ffacc760000 65536 C:\Windows\System32\MSASN1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ASN.1 Runtime APIs 131795770645376755 0x7ffacc8f0000 1003520 C:\Windows\System32\ucrtbase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645376755 0x7ffacc9f0000 434176 C:\Windows\System32\bcryptPrimitives.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Cryptographic Primitives Library 131795770645376755 0x7ffacca60000 122880 C:\Windows\System32\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795770645376755 0x7ffacca80000 348160 C:\Windows\System32\WINTRUST.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation Microsoft Trust Verification APIs 131795770645376755 0x7ffaccae0000 692224 C:\Windows\System32\shcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795770645376755 0x7ffacd270000 2215936 C:\Windows\System32\KERNELBASE.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645376755 0x7ffacd490000 1871872 C:\Windows\System32\CRYPT32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API32 криптографии 131795770645376755 0x7ffacd710000 638976 C:\Windows\System32\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645376755 0x7ffacd7b0000 270336 C:\Windows\System32\cfgmgr32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Configuration Manager DLL 131795770645376755 0x7ffaced20000 782336 C:\Windows\System32\OLEAUT32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795770645376755 0x7ffacede0000 450560 C:\Windows\System32\coml2.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft COM for Windows 131795770645376755 0x7ffacee50000 1183744 C:\Windows\System32\RPCRT4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795770645376755 0x7ffacef80000 32768 C:\Windows\System32\NSI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation NSI User-mode interface DLL 131795770645376755 0x7ffacef90000 647168 C:\Windows\System32\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795770645376755 0x7ffacf030000 651264 C:\Windows\System32\clbcatq.dll 2001.12.10941.16384 (rs1_release.160715-1616) Microsoft Corporation COM+ Configuration Catalog 131795770645376755 0x7ffacf0d0000 704512 C:\Windows\System32\KERNEL32.DLL 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645376755 0x7ffacf770000 212992 C:\Windows\System32\GDI32.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation GDI Client DLL 131795770645376755 0x7ffacf820000 434176 C:\Windows\System32\WS2_32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation 32-разрядная библиотека Windows Socket 2.0 131795770645376755 0x7ffacf8c0000 1462272 C:\Windows\System32\user32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795770645376755 0x7ffacfb30000 2916352 C:\Windows\System32\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795770645376755 0x7ffacfe20000 663552 C:\Windows\System32\advapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795770645376755 0x7ffad0070000 1277952 C:\Windows\System32\ole32.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft OLE для Windows 131795770645376755 0x7ffad0210000 364544 C:\Windows\System32\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795770645376755 0x7ffad0270000 1908736 C:\Windows\SYSTEM32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 26 360 580 4 00000000:000003e5 131765776311216195 0 0 1 Обязательная метка\Обязательный уровень системы NT AUTHORITY\LOCAL SERVICE svchost.exe C:\Windows\System32\svchost.exe C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted Microsoft Corporation 10.0.14393.0 (rs1_release.160715-1616) Хост-процесс для служб Windows 131795770645376855 0x7ff718c20000 57344 C:\Windows\System32\svchost.exe 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Хост-процесс для служб Windows 131795770645376855 0x7ffab4af0000 606208 C:\Windows\System32\audioses.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Сеанс обработки звука 131795770645376855 0x7ffabaad0000 352256 C:\Windows\System32\deviceaccess.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Device Broker And Policy COM Server 131795770645376855 0x7ffac7e70000 36864 C:\Windows\SYSTEM32\coreaudiopolicymanagerext.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation "coreaudiopolicymanagerext.DYNLINK" 131795770645376855 0x7ffac87d0000 237568 c:\windows\system32\AUDIOSRVPOLICYMANAGER.dll 10.0.14393.351 (rs1_release_inmarket.161014-1755) Microsoft Corporation Windows Audio Service Policy Manager 131795770645376855 0x7ffac90d0000 978944 c:\windows\system32\audiosrv.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служба Windows Audio 131795770645376855 0x7ffac92e0000 1269760 C:\Windows\SYSTEM32\wintypes.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL основных типов Windows 131795770645376855 0x7ffac9480000 462848 c:\windows\system32\MMDevAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation MMDevice API 131795770645376855 0x7ffaca340000 1593344 c:\windows\system32\PROPSYS.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Система страниц свойств (Майкрософт) 131795770645376855 0x7ffaca4e0000 77824 C:\Windows\SYSTEM32\wtsapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Remote Desktop Session Host Server SDK APIs 131795770645376855 0x7ffacb1e0000 1163264 C:\Windows\System32\twinapi.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation twinapi.appcore 131795770645376855 0x7ffacb3f0000 163840 c:\windows\system32\DEVOBJ.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Device Information Set DLL 131795770645376855 0x7ffacb920000 81920 C:\Windows\SYSTEM32\WLDP.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Политика блокировки Windows 131795770645376855 0x7ffacc5c0000 352256 C:\Windows\SYSTEM32\winsta.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Winstation Library 131795770645376855 0x7ffacc620000 176128 C:\Windows\System32\bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795770645376855 0x7ffacc6e0000 61440 C:\Windows\System32\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795770645376855 0x7ffacc6f0000 311296 C:\Windows\System32\POWRPROF.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795770645376855 0x7ffacc760000 65536 C:\Windows\System32\MSASN1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ASN.1 Runtime APIs 131795770645376855 0x7ffacc8f0000 1003520 C:\Windows\System32\ucrtbase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645376855 0x7ffacc9f0000 434176 C:\Windows\System32\bcryptPrimitives.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Cryptographic Primitives Library 131795770645376855 0x7ffacca60000 122880 C:\Windows\System32\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795770645376855 0x7ffacca80000 348160 C:\Windows\System32\WINTRUST.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation Microsoft Trust Verification APIs 131795770645376855 0x7ffaccae0000 692224 C:\Windows\System32\shcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795770645376855 0x7ffacd270000 2215936 C:\Windows\System32\KERNELBASE.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645376855 0x7ffacd490000 1871872 C:\Windows\System32\CRYPT32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API32 криптографии 131795770645376855 0x7ffacd710000 638976 C:\Windows\System32\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645376855 0x7ffacd7b0000 270336 C:\Windows\System32\cfgmgr32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Configuration Manager DLL 131795770645376855 0x7ffaced20000 782336 C:\Windows\System32\OLEAUT32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795770645376855 0x7ffacee50000 1183744 C:\Windows\System32\RPCRT4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795770645376855 0x7ffacef90000 647168 C:\Windows\System32\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795770645376855 0x7ffacf030000 651264 C:\Windows\System32\clbcatq.dll 2001.12.10941.16384 (rs1_release.160715-1616) Microsoft Corporation COM+ Configuration Catalog 131795770645376855 0x7ffacf0d0000 704512 C:\Windows\System32\KERNEL32.DLL 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645376855 0x7ffacf770000 212992 C:\Windows\System32\GDI32.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation GDI Client DLL 131795770645376855 0x7ffacf8c0000 1462272 C:\Windows\System32\user32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795770645376855 0x7ffacfb30000 2916352 C:\Windows\System32\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795770645376855 0x7ffad0210000 364544 C:\Windows\System32\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795770645376855 0x7ffad0270000 1908736 C:\Windows\SYSTEM32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 27 1040 580 4 00000000:000003e5 131765776311708649 0 0 1 Обязательная метка\Обязательный уровень системы NT AUTHORITY\LOCAL SERVICE svchost.exe C:\Windows\system32\svchost.exe C:\Windows\system32\svchost.exe -k LocalServiceNetworkRestricted Microsoft Corporation 10.0.14393.0 (rs1_release.160715-1616) Хост-процесс для служб Windows 131795770645376955 0x7ff718c20000 57344 C:\Windows\system32\svchost.exe 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Хост-процесс для служб Windows 131795770645376955 0x7ffac8820000 57344 C:\Windows\SYSTEM32\cmintegrator.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation cmintegrator.dll 131795770645376955 0x7ffac8880000 69632 C:\Windows\system32\WMICLNT.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation WMI Client API 131795770645376955 0x7ffac8c50000 245760 C:\Windows\system32\wcmcsp.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Windows Connection Service Provider DLL 131795770645376955 0x7ffac8fe0000 737280 c:\windows\system32\wcmsvc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL службы диспетчера подключений Windows 131795770645376955 0x7ffac9790000 98304 C:\Windows\SYSTEM32\nlaapi.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Network Location Awareness 2 131795770645376955 0x7ffaca4e0000 77824 C:\Windows\SYSTEM32\wtsapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Remote Desktop Session Host Server SDK APIs 131795770645376955 0x7ffacb6f0000 143360 C:\Windows\SYSTEM32\gpapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиентские функции API групповой политики 131795770645376955 0x7ffacb920000 81920 C:\Windows\SYSTEM32\WLDP.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Политика блокировки Windows 131795770645376955 0x7ffacbd30000 229376 c:\windows\system32\IPHLPAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API вспомогательного приложения IP 131795770645376955 0x7ffacc5c0000 352256 C:\Windows\SYSTEM32\WINSTA.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Winstation Library 131795770645376955 0x7ffacc6e0000 61440 C:\Windows\System32\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795770645376955 0x7ffacc6f0000 311296 C:\Windows\System32\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795770645376955 0x7ffacc760000 65536 C:\Windows\System32\MSASN1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ASN.1 Runtime APIs 131795770645376955 0x7ffacc8f0000 1003520 C:\Windows\System32\ucrtbase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645376955 0x7ffacc9f0000 434176 C:\Windows\System32\bcryptPrimitives.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Cryptographic Primitives Library 131795770645376955 0x7ffacca60000 122880 C:\Windows\System32\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795770645376955 0x7ffacca80000 348160 C:\Windows\System32\WINTRUST.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation Microsoft Trust Verification APIs 131795770645376955 0x7ffacd270000 2215936 C:\Windows\System32\KERNELBASE.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645376955 0x7ffacd490000 1871872 C:\Windows\System32\CRYPT32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API32 криптографии 131795770645376955 0x7ffacd710000 638976 C:\Windows\System32\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645376955 0x7ffacd7b0000 270336 C:\Windows\System32\cfgmgr32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Configuration Manager DLL 131795770645376955 0x7ffaced20000 782336 C:\Windows\System32\OLEAUT32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795770645376955 0x7ffacee50000 1183744 C:\Windows\System32\RPCRT4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795770645376955 0x7ffacef80000 32768 C:\Windows\System32\NSI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation NSI User-mode interface DLL 131795770645376955 0x7ffacef90000 647168 C:\Windows\System32\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795770645376955 0x7ffacf0d0000 704512 C:\Windows\System32\KERNEL32.DLL 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645376955 0x7ffacf770000 212992 C:\Windows\System32\GDI32.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation GDI Client DLL 131795770645376955 0x7ffacf820000 434176 C:\Windows\System32\WS2_32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation 32-разрядная библиотека Windows Socket 2.0 131795770645376955 0x7ffacf8c0000 1462272 C:\Windows\System32\user32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795770645376955 0x7ffacfb30000 2916352 C:\Windows\System32\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795770645376955 0x7ffacfe20000 663552 C:\Windows\System32\advapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795770645376955 0x7ffad0210000 364544 C:\Windows\System32\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795770645376955 0x7ffad0270000 1908736 C:\Windows\SYSTEM32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 28 1068 580 4 00000000:000003e4 131765776312395030 0 0 1 Обязательная метка\Обязательный уровень системы NT AUTHORITY\NETWORK SERVICE svchost.exe C:\Windows\system32\svchost.exe C:\Windows\system32\svchost.exe -k NetworkService Microsoft Corporation 10.0.14393.0 (rs1_release.160715-1616) Хост-процесс для служб Windows 131795770645377076 0x7ff718c20000 57344 C:\Windows\system32\svchost.exe 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Хост-процесс для служб Windows 131795770645377076 0x7ffab1fd0000 2277376 C:\Windows\System32\msxml3.dll 8.110.14393.1532 Microsoft Corporation MSXML 3.0 131795770645377076 0x7ffabcf50000 921600 C:\Windows\system32\drvstore.dll 10.0.14393.351 (rs1_release_inmarket.161014-1755) Microsoft Corporation Driver Store API 131795770645377076 0x7ffabf1d0000 192512 c:\windows\system32\CRYPTNET.dll 10.0.14393.2035 (rs1_release_inmarket.180110-1910) Microsoft Corporation Crypto Network Related API 131795770645377076 0x7ffac1d60000 589824 c:\windows\system32\webio.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API протоколов передачи по Веб 131795770645377076 0x7ffac34c0000 81920 C:\Windows\system32\vss_ps.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation Microsoft® Volume Shadow Copy Service proxy/stub 131795770645377076 0x7ffac3810000 167936 C:\Windows\SYSTEM32\Cabinet.dll 5.00 (rs1_release.160715-1616) Microsoft Corporation Microsoft® Cabinet File API 131795770645377076 0x7ffac3840000 3088384 C:\Windows\system32\ESENT.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширяемая подсистема хранения данных ESE для Microsoft(R) Windows(R) 131795770645377076 0x7ffac4e70000 102400 C:\Windows\system32\samcli.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Security Accounts Manager Client DLL 131795770645377076 0x7ffac6410000 98304 C:\Windows\system32\VssTrace.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека трассировки службы теневого копирования тома Microsoft® 131795770645377076 0x7ffac6430000 1581056 C:\Windows\system32\VSSAPI.DLL 10.0.14393.953 (rs1_release_inmarket.170303-1614) Microsoft Corporation Microsoft® Volume Shadow Copy Requestor/Writer Services API DLL 131795770645377076 0x7ffac65c0000 155648 C:\Windows\System32\cryptcatsvc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Cryptographic Catalog Services 131795770645377076 0x7ffac65f0000 77824 C:\Windows\System32\crypttpmeksvc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Cryptographic TPM Endorsement Key Services 131795770645377076 0x7ffac6610000 40960 C:\Windows\System32\rasadhlp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Remote Access AutoDial Helper 131795770645377076 0x7ffac6680000 102400 c:\windows\system32\cryptsvc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Службы криптографии 131795770645377076 0x7ffac69c0000 839680 c:\windows\system32\WINHTTP.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Службы HTTP Windows 131795770645377076 0x7ffac6b90000 53248 c:\windows\system32\DSPARSE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Active Directory Domain Services API 131795770645377076 0x7ffac6f00000 303104 c:\windows\system32\wkssvc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL службы рабочей станции 131795770645377076 0x7ffac79c0000 57344 C:\Windows\System32\npmproxy.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Network List Manager Proxy 131795770645377076 0x7ffac79e0000 184320 C:\Windows\SYSTEM32\netjoin.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL присоединения к домену 131795770645377076 0x7ffac7aa0000 401408 C:\Windows\system32\WlanApi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows WLAN AutoConfig Client Side API DLL 131795770645377076 0x7ffac7c00000 266240 C:\Windows\System32\mstask.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека интерфейса планировщика заданий 131795770645377076 0x7ffac7e50000 86016 C:\Windows\system32\ssdpapi.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation SSDP Client API DLL 131795770645377076 0x7ffac8260000 425984 c:\windows\system32\ncsi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Индикатор работоспособности сетевых подключений 131795770645377076 0x7ffac8370000 389120 c:\windows\system32\nlasvc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служба сведений о подключенных сетях 2 131795770645377076 0x7ffac83d0000 106496 C:\Windows\SYSTEM32\dhcpcsvc.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служба DHCP-клиента 131795770645377076 0x7ffac83f0000 90112 C:\Windows\SYSTEM32\dhcpcsvc6.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиент DHCPv6 131795770645377076 0x7ffac8410000 40960 C:\Windows\System32\dnsext.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DNS extension DLL 131795770645377076 0x7ffac8420000 434176 C:\Windows\SYSTEM32\Fwpuclnt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API пользовательского режима FWP/IPsec 131795770645377076 0x7ffac8810000 45056 C:\Windows\SYSTEM32\WINNSI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Network Store Information RPC interface 131795770645377076 0x7ffac8830000 290816 c:\windows\system32\dnsrslvr.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служба кэширующего сопоставителя DNS 131795770645377076 0x7ffac8880000 69632 c:\windows\system32\WMICLNT.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation WMI Client API 131795770645377076 0x7ffac8cf0000 815104 C:\Windows\System32\taskschd.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Task Scheduler COM API 131795770645377076 0x7ffac90b0000 90112 c:\windows\system32\wkscli.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Workstation Service Client DLL 131795770645377076 0x7ffac9220000 397312 C:\Windows\SYSTEM32\wevtapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API настройки и использования событий 131795770645377076 0x7ffac9bb0000 479232 C:\Windows\System32\ES.DLL 2001.12.10941.16384 (rs1_release.160715-1616) Microsoft Corporation COM+ 131795770645377076 0x7ffac9f10000 221184 C:\Windows\System32\netprofm.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Network List Manager 131795770645377076 0x7ffaca340000 1593344 C:\Windows\System32\PROPSYS.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Система страниц свойств (Майкрософт) 131795770645377076 0x7ffaca4e0000 77824 C:\Windows\SYSTEM32\wtsapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Remote Desktop Session Host Server SDK APIs 131795770645377076 0x7ffaca610000 143360 C:\Windows\system32\SAMLIB.dll 10.0.14393.82 (rs1_release.160805-1735) Microsoft Corporation SAM Library DLL 131795770645377076 0x7ffacb3f0000 163840 c:\windows\system32\DEVOBJ.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Device Information Set DLL 131795770645377076 0x7ffacb6f0000 143360 C:\Windows\SYSTEM32\gpapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиентские функции API групповой политики 131795770645377076 0x7ffacb920000 81920 C:\Windows\SYSTEM32\WLDP.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Политика блокировки Windows 131795770645377076 0x7ffacbbb0000 208896 C:\Windows\system32\rsaenh.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Enhanced Cryptographic Provider 131795770645377076 0x7ffacbd30000 229376 C:\Windows\SYSTEM32\IPHLPAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API вспомогательного приложения IP 131795770645377076 0x7ffacbd70000 659456 C:\Windows\SYSTEM32\DNSAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Динамическая библиотека API DNS-клиента 131795770645377076 0x7ffacbe20000 53248 C:\Windows\SYSTEM32\netutils.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API Helpers DLL 131795770645377076 0x7ffacbe40000 126976 C:\Windows\system32\USERENV.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Userenv 131795770645377076 0x7ffacbfb0000 376832 C:\Windows\system32\mswsock.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширение поставщика службы API Microsoft Windows Sockets 2.0 131795770645377076 0x7ffacc150000 94208 C:\Windows\SYSTEM32\CRYPTSP.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Cryptographic Service Provider API 131795770645377076 0x7ffacc170000 45056 C:\Windows\SYSTEM32\CRYPTBASE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base cryptographic API DLL 131795770645377076 0x7ffacc1b0000 126976 C:\Windows\SYSTEM32\JoinUtil.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Join Utility DLL 131795770645377076 0x7ffacc350000 180224 C:\Windows\system32\sspicli.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Security Support Provider Interface 131795770645377076 0x7ffacc520000 622592 C:\Windows\SYSTEM32\sxs.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Fusion 2.5 131795770645377076 0x7ffacc5c0000 352256 C:\Windows\SYSTEM32\WINSTA.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Winstation Library 131795770645377076 0x7ffacc620000 176128 C:\Windows\SYSTEM32\bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795770645377076 0x7ffacc6e0000 61440 C:\Windows\System32\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795770645377076 0x7ffacc6f0000 311296 C:\Windows\System32\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795770645377076 0x7ffacc740000 81920 C:\Windows\System32\profapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Profile Basic API 131795770645377076 0x7ffacc760000 65536 C:\Windows\System32\MSASN1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ASN.1 Runtime APIs 131795770645377076 0x7ffacc8f0000 1003520 C:\Windows\System32\ucrtbase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645377076 0x7ffacc9f0000 434176 C:\Windows\System32\bcryptPrimitives.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Cryptographic Primitives Library 131795770645377076 0x7ffacca60000 122880 C:\Windows\System32\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795770645377076 0x7ffacca80000 348160 C:\Windows\System32\WINTRUST.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation Microsoft Trust Verification APIs 131795770645377076 0x7ffaccae0000 692224 C:\Windows\System32\shcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795770645377076 0x7ffacd270000 2215936 C:\Windows\System32\KERNELBASE.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645377076 0x7ffacd490000 1871872 C:\Windows\System32\CRYPT32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API32 криптографии 131795770645377076 0x7ffacd710000 638976 C:\Windows\System32\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645377076 0x7ffacd7b0000 270336 C:\Windows\System32\cfgmgr32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Configuration Manager DLL 131795770645377076 0x7ffaced20000 782336 C:\Windows\System32\OLEAUT32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795770645377076 0x7ffacee50000 1183744 C:\Windows\System32\RPCRT4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795770645377076 0x7ffacef80000 32768 C:\Windows\System32\NSI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation NSI User-mode interface DLL 131795770645377076 0x7ffacef90000 647168 C:\Windows\System32\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795770645377076 0x7ffacf030000 651264 C:\Windows\System32\clbcatq.dll 2001.12.10941.16384 (rs1_release.160715-1616) Microsoft Corporation COM+ Configuration Catalog 131795770645377076 0x7ffacf0d0000 704512 C:\Windows\System32\KERNEL32.DLL 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645377076 0x7ffacf770000 212992 C:\Windows\System32\GDI32.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation GDI Client DLL 131795770645377076 0x7ffacf820000 434176 C:\Windows\System32\WS2_32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation 32-разрядная библиотека Windows Socket 2.0 131795770645377076 0x7ffacf8c0000 1462272 C:\Windows\System32\user32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795770645377076 0x7ffacfb30000 2916352 C:\Windows\System32\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795770645377076 0x7ffacfe20000 663552 C:\Windows\System32\ADVAPI32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795770645377076 0x7ffad0210000 364544 C:\Windows\System32\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795770645377076 0x7ffad0270000 1908736 C:\Windows\SYSTEM32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 29 1248 580 4 00000000:000003e7 131765776322176070 0 0 1 Обязательная метка\Обязательный уровень системы NT AUTHORITY\СИСТЕМА spoolsv.exe C:\Windows\System32\spoolsv.exe C:\Windows\System32\spoolsv.exe Microsoft Corporation 10.0.14393.0 (rs1_release.160715-1616) Диспетчер очереди печати 131795770645377182 0x7ff639680000 819200 C:\Windows\System32\spoolsv.exe 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Диспетчер очереди печати 131795770645377182 0x7ffab8a60000 3346432 C:\Windows\system32\spool\DRIVERS\x64\3\PrintConfig.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Пользовательский интерфейс PrintConfig 131795770645377182 0x7ffaba980000 815104 C:\Windows\System32\jscript.dll 5.812.10240.16384 Microsoft Corporation Microsoft ® JScript 131795770645377182 0x7ffabae60000 77824 C:\Windows\System32\DEVRTL.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Device Management Run Time Library 131795770645377182 0x7ffabb7d0000 851968 C:\Windows\System32\win32spl.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик печати с исполнением на стороне клиента 131795770645377182 0x7ffabbd40000 176128 C:\Windows\SYSTEM32\prntvpt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Print Ticket Services Module 131795770645377182 0x7ffabbd70000 3346432 C:\Windows\System32\DriverStore\FileRepository\prnms003.inf_amd64_53d78f68bc1697cc\Amd64\PrintConfig.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Пользовательский интерфейс PrintConfig 131795770645377182 0x7ffabc0c0000 118784 C:\Windows\System32\SPFILEQ.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows SPFILEQ 131795770645377182 0x7ffabc590000 118784 C:\Program Files\Windows Defender\MpOav.dll 4.10.14393.1794 (rs1_release.171008-1615) Microsoft Corporation IOfficeAntiVirus Module 131795770645377182 0x7ffabc5b0000 65536 C:\Windows\SYSTEM32\amsi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Anti-Malware Scan Interface 131795770645377182 0x7ffabc880000 73728 C:\Windows\System32\cscapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Offline Files Win32 API 131795770645377182 0x7ffabcf50000 921600 C:\Windows\System32\drvstore.dll 10.0.14393.351 (rs1_release_inmarket.161014-1755) Microsoft Corporation Driver Store API 131795770645377182 0x7ffabd040000 77824 C:\Windows\System32\fdPnp.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Pnp Provider Dll 131795770645377182 0x7ffabd060000 610304 C:\Windows\System32\WSDMon.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Диспетчер порта принтера WSD 131795770645377182 0x7ffabd100000 348160 C:\Windows\System32\usbmon.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Standard Dynamic Printing Port Monitor DLL 131795770645377182 0x7ffabd160000 86016 C:\Windows\System32\wsnmp32.dll 10.0.14393.2189 (rs1_release.180329-1711) Microsoft Corporation Microsoft WinSNMP v2.0 Manager API 131795770645377182 0x7ffabd180000 548864 C:\Windows\system32\winspool.drv 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Драйвер диспетчера очереди Windows 131795770645377182 0x7ffabd2a0000 1159168 C:\Windows\System32\localspl.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Библиотека локального диспетчера очереди 131795770645377182 0x7ffabde60000 237568 C:\Windows\System32\tcpmon.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека монитора портов TCP/IP 131795770645377182 0x7ffabe3f0000 65536 C:\Windows\system32\spool\PRTPROCS\x64\winprint.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Windows Print Processor DLL 131795770645377182 0x7ffabe6c0000 77824 C:\Windows\System32\PrintIsolationProxy.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Print Sandbox COM Proxy Stub 131795770645377182 0x7ffabe8a0000 49152 C:\Windows\System32\snmpapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SNMP Utility Library 131795770645377182 0x7ffabe980000 114688 C:\Windows\System32\SPOOLSS.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Spooler SubSystem DLL 131795770645377182 0x7ffabef80000 69632 C:\Windows\System32\sfc_os.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows File Protection 131795770645377182 0x7ffabf330000 2457600 C:\Windows\System32\msxml6.dll 6.30.14393.2156 Microsoft Corporation MSXML 6.0 131795770645377182 0x7ffabf5d0000 2924544 C:\Windows\SYSTEM32\wininet.dll 11.00.14393.447 (rs1_release_inmarket.161102-0100) Microsoft Corporation Расширения Интернета для Win32 131795770645377182 0x7ffabff10000 155648 C:\Windows\System32\srvcli.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Server Service Client DLL 131795770645377182 0x7ffac0af0000 114688 C:\Windows\System32\ATL.DLL 3.05.2284 Microsoft Corporation ATL Module for Windows XP (Unicode) 131795770645377182 0x7ffac1f00000 65536 C:\Windows\System32\FXSMON.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Fax Print Monitor 131795770645377182 0x7ffac1f30000 118784 C:\Windows\System32\SPINF.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows SPINF 131795770645377182 0x7ffac2b80000 40960 C:\Windows\SYSTEM32\VERSION.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Version Checking and File Installation Libraries 131795770645377182 0x7ffac34e0000 1843200 C:\Windows\SYSTEM32\urlmon.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширения OLE32 для Win32 131795770645377182 0x7ffac3810000 167936 C:\Windows\System32\cabinet.dll 5.00 (rs1_release.160715-1616) Microsoft Corporation Microsoft® Cabinet File API 131795770645377182 0x7ffac3cb0000 2772992 C:\Windows\SYSTEM32\iertutil.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служебная программа времени выполнения для Internet Explorer 131795770645377182 0x7ffac4e90000 32768 C:\Windows\System32\wshirda.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Sockets Helper DLL 131795770645377182 0x7ffac60e0000 221184 C:\Windows\System32\XmlLite.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft XmlLite Library 131795770645377182 0x7ffac6610000 40960 C:\Windows\System32\rasadhlp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Remote Access AutoDial Helper 131795770645377182 0x7ffac6710000 172032 C:\Windows\System32\FunDisc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL обнаружения функции 131795770645377182 0x7ffac6750000 1380352 C:\Windows\System32\webservices.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Среда выполнения веб-служб Windows 131795770645377182 0x7ffac68b0000 696320 C:\Windows\System32\wsdapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Веб-службы для библиотек DLL API-интерфейсов устройств 131795770645377182 0x7ffac6990000 69632 C:\Windows\System32\deviceassociation.dll 10.0.14393.82 (rs1_release.160805-1735) Microsoft Corporation Device Association Client DLL 131795770645377182 0x7ffac69c0000 839680 C:\Windows\System32\WINHTTP.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Службы HTTP Windows 131795770645377182 0x7ffac6ba0000 49152 C:\Windows\System32\Secur32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Security Support Provider Interface 131795770645377182 0x7ffac7e00000 196608 C:\Windows\System32\inetpp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL Internet Print Provider 131795770645377182 0x7ffac8420000 434176 C:\Windows\System32\fwpuclnt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API пользовательского режима FWP/IPsec 131795770645377182 0x7ffac8810000 45056 C:\Windows\SYSTEM32\WINNSI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Network Store Information RPC interface 131795770645377182 0x7ffac9290000 40960 C:\Windows\System32\DSROLE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DS Setup Client DLL 131795770645377182 0x7ffaca4e0000 77824 C:\Windows\System32\WTSAPI32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Remote Desktop Session Host Server SDK APIs 131795770645377182 0x7ffacadf0000 499712 C:\Windows\system32\apphelp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиентская библиотека совместимости приложений 131795770645377182 0x7ffacb360000 176128 C:\Windows\System32\fwbase.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Firewall Base DLL 131795770645377182 0x7ffacb3f0000 163840 C:\Windows\System32\DEVOBJ.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Device Information Set DLL 131795770645377182 0x7ffacb420000 204800 C:\Windows\SYSTEM32\ntmarta.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик Windows NT MARTA 131795770645377182 0x7ffacb460000 548864 C:\Windows\System32\FirewallAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API брандмауэра Windows 131795770645377182 0x7ffacb6f0000 143360 C:\Windows\SYSTEM32\gpapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиентские функции API групповой политики 131795770645377182 0x7ffacbbb0000 208896 C:\Windows\system32\rsaenh.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Enhanced Cryptographic Provider 131795770645377182 0x7ffacbd30000 229376 C:\Windows\SYSTEM32\IPHLPAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API вспомогательного приложения IP 131795770645377182 0x7ffacbd70000 659456 C:\Windows\System32\DNSAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Динамическая библиотека API DNS-клиента 131795770645377182 0x7ffacbe20000 53248 C:\Windows\System32\netutils.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API Helpers DLL 131795770645377182 0x7ffacbe40000 126976 C:\Windows\System32\USERENV.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Userenv 131795770645377182 0x7ffacbfb0000 376832 C:\Windows\system32\mswsock.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширение поставщика службы API Microsoft Windows Sockets 2.0 131795770645377182 0x7ffacc150000 94208 C:\Windows\System32\CRYPTSP.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Cryptographic Service Provider API 131795770645377182 0x7ffacc170000 45056 C:\Windows\System32\CRYPTBASE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base cryptographic API DLL 131795770645377182 0x7ffacc350000 180224 C:\Windows\System32\SspiCli.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Security Support Provider Interface 131795770645377182 0x7ffacc520000 622592 C:\Windows\SYSTEM32\sxs.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Fusion 2.5 131795770645377182 0x7ffacc5c0000 352256 C:\Windows\System32\WINSTA.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Winstation Library 131795770645377182 0x7ffacc620000 176128 C:\Windows\System32\bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795770645377182 0x7ffacc6e0000 61440 C:\Windows\System32\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795770645377182 0x7ffacc6f0000 311296 C:\Windows\System32\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795770645377182 0x7ffacc740000 81920 C:\Windows\System32\profapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Profile Basic API 131795770645377182 0x7ffacc760000 65536 C:\Windows\System32\MSASN1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ASN.1 Runtime APIs 131795770645377182 0x7ffacc8f0000 1003520 C:\Windows\System32\ucrtbase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645377182 0x7ffacc9f0000 434176 C:\Windows\System32\bcryptPrimitives.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Cryptographic Primitives Library 131795770645377182 0x7ffacca60000 122880 C:\Windows\System32\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795770645377182 0x7ffacca80000 348160 C:\Windows\System32\WINTRUST.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation Microsoft Trust Verification APIs 131795770645377182 0x7ffaccae0000 692224 C:\Windows\System32\shcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795770645377182 0x7ffaccb90000 7180288 C:\Windows\System32\windows.storage.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API хранения Microsoft WinRT 131795770645377182 0x7ffacd270000 2215936 C:\Windows\System32\KERNELBASE.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645377182 0x7ffacd490000 1871872 C:\Windows\System32\CRYPT32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API32 криптографии 131795770645377182 0x7ffacd710000 638976 C:\Windows\System32\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645377182 0x7ffacd7b0000 270336 C:\Windows\System32\cfgmgr32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Configuration Manager DLL 131795770645377182 0x7ffacd810000 22056960 C:\Windows\System32\SHELL32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Общая библиотека оболочки Windows 131795770645377182 0x7ffaced20000 782336 C:\Windows\System32\OLEAUT32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795770645377182 0x7ffacee50000 1183744 C:\Windows\System32\RPCRT4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795770645377182 0x7ffacef80000 32768 C:\Windows\System32\NSI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation NSI User-mode interface DLL 131795770645377182 0x7ffacef90000 647168 C:\Windows\System32\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795770645377182 0x7ffacf030000 651264 C:\Windows\System32\clbcatq.dll 2001.12.10941.16384 (rs1_release.160715-1616) Microsoft Corporation COM+ Configuration Catalog 131795770645377182 0x7ffacf0d0000 704512 C:\Windows\System32\KERNEL32.DLL 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645377182 0x7ffacf340000 4362240 C:\Windows\System32\SETUPAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Setup API 131795770645377182 0x7ffacf770000 212992 C:\Windows\System32\GDI32.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation GDI Client DLL 131795770645377182 0x7ffacf820000 434176 C:\Windows\System32\WS2_32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation 32-разрядная библиотека Windows Socket 2.0 131795770645377182 0x7ffacf8c0000 1462272 C:\Windows\System32\USER32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795770645377182 0x7ffacfb30000 2916352 C:\Windows\System32\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795770645377182 0x7ffacfe20000 663552 C:\Windows\System32\advapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795770645377182 0x7ffad0070000 1277952 C:\Windows\System32\ole32.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft OLE для Windows 131795770645377182 0x7ffad01b0000 335872 C:\Windows\System32\SHLWAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека небольших программ оболочки 131795770645377182 0x7ffad0210000 364544 C:\Windows\System32\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795770645377182 0x7ffad0270000 1908736 C:\Windows\SYSTEM32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 30 1512 580 4 00000000:000003e5 131765776336551242 0 0 1 Обязательная метка\Обязательный уровень системы NT AUTHORITY\LOCAL SERVICE svchost.exe C:\Windows\system32\svchost.exe C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation Microsoft Corporation 10.0.14393.0 (rs1_release.160715-1616) Хост-процесс для служб Windows 131795770645377290 0x7ff718c20000 57344 C:\Windows\system32\svchost.exe 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Хост-процесс для служб Windows 131795770645377290 0x7ffabe9f0000 258048 c:\windows\system32\ssdpsrv.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL службы SSDP 131795770645377290 0x7ffac3f60000 225280 c:\windows\system32\FWPolicyIOMgr.dll 10.0.14393.2189 (rs1_release.180329-1711) Microsoft Corporation FwPolicyIoMgr DLL 131795770645377290 0x7ffac60e0000 221184 C:\Windows\System32\XmlLite.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft XmlLite Library 131795770645377290 0x7ffac6400000 53248 c:\windows\system32\HTTPAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation HTTP Protocol Stack API 131795770645377290 0x7ffac66c0000 32768 C:\Windows\system32\wship6.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL помощника Winsock2 (TL/IPv6) 131795770645377290 0x7ffac66d0000 32768 C:\Windows\system32\wshtcpip.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL помощника службы Winsock2 (TL/IPv4) 131795770645377290 0x7ffac6700000 40960 C:\Windows\system32\wshqos.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL помощника службы QoS Winsock2 131795770645377290 0x7ffac6710000 172032 C:\Windows\System32\FunDisc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL обнаружения функции 131795770645377290 0x7ffac6750000 1380352 c:\windows\system32\webservices.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Среда выполнения веб-служб Windows 131795770645377290 0x7ffac68b0000 696320 c:\windows\system32\wsdapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Веб-службы для библиотек DLL API-интерфейсов устройств 131795770645377290 0x7ffac69b0000 57344 c:\windows\system32\fdrespub.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служба публикации ресурсов обнаружения функции 131795770645377290 0x7ffac69c0000 839680 c:\windows\system32\WINHTTP.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Службы HTTP Windows 131795770645377290 0x7ffac83d0000 106496 C:\Windows\SYSTEM32\dhcpcsvc.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служба DHCP-клиента 131795770645377290 0x7ffac83f0000 90112 C:\Windows\SYSTEM32\dhcpcsvc6.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиент DHCPv6 131795770645377290 0x7ffac8810000 45056 C:\Windows\SYSTEM32\WINNSI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Network Store Information RPC interface 131795770645377290 0x7ffac90b0000 90112 c:\windows\system32\wkscli.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Workstation Service Client DLL 131795770645377290 0x7ffacb360000 176128 c:\windows\system32\fwbase.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Firewall Base DLL 131795770645377290 0x7ffacb460000 548864 c:\windows\system32\FirewallAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API брандмауэра Windows 131795770645377290 0x7ffacb920000 81920 C:\Windows\SYSTEM32\WLDP.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Политика блокировки Windows 131795770645377290 0x7ffacbbb0000 208896 C:\Windows\system32\rsaenh.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Enhanced Cryptographic Provider 131795770645377290 0x7ffacbd30000 229376 c:\windows\system32\IPHLPAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API вспомогательного приложения IP 131795770645377290 0x7ffacbe20000 53248 c:\windows\system32\netutils.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API Helpers DLL 131795770645377290 0x7ffacbfb0000 376832 C:\Windows\system32\mswsock.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширение поставщика службы API Microsoft Windows Sockets 2.0 131795770645377290 0x7ffacc150000 94208 c:\windows\system32\CRYPTSP.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Cryptographic Service Provider API 131795770645377290 0x7ffacc170000 45056 C:\Windows\system32\CRYPTBASE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base cryptographic API DLL 131795770645377290 0x7ffacc350000 180224 C:\Windows\system32\sspicli.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Security Support Provider Interface 131795770645377290 0x7ffacc620000 176128 c:\windows\system32\bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795770645377290 0x7ffacc6e0000 61440 C:\Windows\System32\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795770645377290 0x7ffacc6f0000 311296 C:\Windows\System32\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795770645377290 0x7ffacc760000 65536 C:\Windows\System32\MSASN1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ASN.1 Runtime APIs 131795770645377290 0x7ffacc8f0000 1003520 C:\Windows\System32\ucrtbase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645377290 0x7ffacc9f0000 434176 C:\Windows\System32\bcryptPrimitives.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Cryptographic Primitives Library 131795770645377290 0x7ffacca60000 122880 C:\Windows\System32\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795770645377290 0x7ffacca80000 348160 C:\Windows\System32\WINTRUST.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation Microsoft Trust Verification APIs 131795770645377290 0x7ffacd270000 2215936 C:\Windows\System32\KERNELBASE.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645377290 0x7ffacd490000 1871872 C:\Windows\System32\CRYPT32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API32 криптографии 131795770645377290 0x7ffacee50000 1183744 C:\Windows\System32\RPCRT4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795770645377290 0x7ffacef80000 32768 C:\Windows\System32\NSI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation NSI User-mode interface DLL 131795770645377290 0x7ffacef90000 647168 C:\Windows\System32\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795770645377290 0x7ffacf030000 651264 C:\Windows\System32\clbcatq.dll 2001.12.10941.16384 (rs1_release.160715-1616) Microsoft Corporation COM+ Configuration Catalog 131795770645377290 0x7ffacf0d0000 704512 C:\Windows\System32\KERNEL32.DLL 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645377290 0x7ffacf770000 212992 C:\Windows\System32\GDI32.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation GDI Client DLL 131795770645377290 0x7ffacf820000 434176 C:\Windows\System32\WS2_32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation 32-разрядная библиотека Windows Socket 2.0 131795770645377290 0x7ffacf8c0000 1462272 C:\Windows\System32\user32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795770645377290 0x7ffacfb30000 2916352 C:\Windows\System32\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795770645377290 0x7ffad0210000 364544 C:\Windows\System32\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795770645377290 0x7ffad0270000 1908736 C:\Windows\SYSTEM32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 31 1556 580 4 00000000:000003e7 131765776339471770 0 0 1 Обязательная метка\Обязательный уровень системы NT AUTHORITY\СИСТЕМА svchost.exe C:\Windows\System32\svchost.exe C:\Windows\System32\svchost.exe -k utcsvc Microsoft Corporation 10.0.14393.0 (rs1_release.160715-1616) Хост-процесс для служб Windows 131795770645377395 0x272f9bf0000 12288 C:\Windows\SYSTEM32\sfc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows File Protection 131795770645377395 0x7ff718c20000 57344 C:\Windows\System32\svchost.exe 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Хост-процесс для служб Windows 131795770645377395 0x7ffab93b0000 897024 C:\Windows\System32\TokenBroker.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Token Broker 131795770645377395 0x7ffabaab0000 94208 C:\Windows\SYSTEM32\profext.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation profext 131795770645377395 0x7ffabae60000 77824 C:\Windows\SYSTEM32\DEVRTL.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Device Management Run Time Library 131795770645377395 0x7ffabbd10000 65536 C:\Windows\System32\TOKENBINDING.dll 10.0.14393.1593 (rs1_release.170731-1934) Microsoft Corporation Token Binding Protocol 131795770645377395 0x7ffabca50000 819200 C:\Windows\System32\Windows.Security.Authentication.Web.Core.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Token Broker WinRT API 131795770645377395 0x7ffabcf50000 921600 C:\Windows\System32\drvstore.dll 10.0.14393.351 (rs1_release_inmarket.161014-1755) Microsoft Corporation Driver Store API 131795770645377395 0x7ffabe850000 155648 C:\Windows\System32\IDStore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Identity Store 131795770645377395 0x7ffabef80000 69632 C:\Windows\SYSTEM32\sfc_os.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows File Protection 131795770645377395 0x7ffabefd0000 258048 C:\Windows\SYSTEM32\aepic.dll 10.0.17060.1029 (WinBuild.160101.0800) Microsoft Corporation Application Experience Program Cache 131795770645377395 0x7ffabf140000 176128 C:\Windows\System32\CourtesyEngine.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Feedback Courtesy Engine DLL Server 131795770645377395 0x7ffabf1d0000 192512 C:\Windows\System32\cryptnet.dll 10.0.14393.2035 (rs1_release_inmarket.180110-1910) Microsoft Corporation Crypto Network Related API 131795770645377395 0x7ffabfbe0000 1011712 C:\Windows\System32\Windows.Security.Authentication.OnlineId.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation Windows Runtime OnlineId Authentication DLL 131795770645377395 0x7ffabfde0000 143360 c:\windows\system32\CRYPTXML.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API-интерфейс XML DigSig 131795770645377395 0x7ffabff60000 135168 C:\Windows\system32\ncryptsslp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft SChannel Provider 131795770645377395 0x7ffac05f0000 94208 C:\Windows\System32\wwapi.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation WWAN API 131795770645377395 0x7ffac0910000 724992 C:\Windows\System32\Windows.Networking.Connectivity.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Networking Connectivity Runtime DLL 131795770645377395 0x7ffac09d0000 884736 C:\Windows\System32\wpnapps.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Приложения для push-уведомлений Windows 131795770645377395 0x7ffac0ad0000 86016 C:\Windows\SYSTEM32\mskeyprotect.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик защиты ключей (Майкрософт) 131795770645377395 0x7ffac0bf0000 3559424 C:\Windows\System32\ActXPrxy.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation ActiveX Interface Marshaling Library 131795770645377395 0x7ffac1d60000 589824 c:\windows\system32\webio.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API протоколов передачи по Веб 131795770645377395 0x7ffac20d0000 110592 C:\Windows\System32\RMCLIENT.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Resource Manager Client 131795770645377395 0x7ffac23c0000 331776 C:\Windows\System32\OneCoreCommonProxyStub.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation OneCore Common Proxy Stub 131795770645377395 0x7ffac2590000 659456 C:\Windows\System32\FlightSettings.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Параметры цикла тестирования 131795770645377395 0x7ffac2700000 98304 C:\Windows\SYSTEM32\Netapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API DLL 131795770645377395 0x7ffac2750000 106496 C:\Windows\System32\bcd.dll 10.0.14393.1794 (rs1_release.171008-1615) Microsoft Corporation BCD DLL 131795770645377395 0x7ffac2b30000 286720 C:\Windows\System32\usermgrproxy.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation UserMgrProxy 131795770645377395 0x7ffac3cb0000 2772992 C:\Windows\SYSTEM32\iertutil.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служебная программа времени выполнения для Internet Explorer 131795770645377395 0x7ffac4000000 274432 C:\Windows\SYSTEM32\policymanager.dll 10.0.14393.2035 (rs1_release_inmarket.180110-1910) Microsoft Corporation Policy Manager DLL 131795770645377395 0x7ffac4070000 499712 C:\Windows\SYSTEM32\DSREG.DLL 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation AD/AAD User Device Registration 131795770645377395 0x7ffac4450000 86016 C:\Windows\SYSTEM32\usermgrcli.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation UserMgr API DLL 131795770645377395 0x7ffac5fd0000 1056768 c:\windows\system32\WindowsPerformanceRecorderControl.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Windows Performance Recorder Control Library 131795770645377395 0x7ffac60e0000 221184 c:\windows\system32\XmlLite.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft XmlLite Library 131795770645377395 0x7ffac6210000 2007040 c:\windows\system32\diagtrack.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Диагностическое отслеживание Microsoft Windows 131795770645377395 0x7ffac6610000 40960 C:\Windows\System32\rasadhlp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Remote Access AutoDial Helper 131795775838362137 0x7ffac66a0000 86016 C:\Windows\System32\OnDemandConnRouteHelper.dll 10.0.14393.351 (rs1_release_inmarket.161014-1755) Microsoft Corporation On Demand Connctiond Route Helper 131795770645377395 0x7ffac6750000 1380352 c:\windows\system32\webservices.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Среда выполнения веб-служб Windows 131795770645377395 0x7ffac69c0000 839680 c:\windows\system32\WINHTTP.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Службы HTTP Windows 131795770645377395 0x7ffac79c0000 57344 C:\Windows\System32\npmproxy.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Network List Manager Proxy 131795770645377395 0x7ffac7aa0000 401408 C:\Windows\SYSTEM32\wlanapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows WLAN AutoConfig Client Side API DLL 131795770645377395 0x7ffac83d0000 106496 C:\Windows\SYSTEM32\dhcpcsvc.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служба DHCP-клиента 131795770645377395 0x7ffac83f0000 90112 C:\Windows\SYSTEM32\dhcpcsvc6.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиент DHCPv6 131795775839498740 0x7ffac8420000 434176 C:\Windows\System32\FWPUCLNT.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API пользовательского режима FWP/IPsec 131795770645377395 0x7ffac8540000 286720 C:\Windows\System32\vaultcli.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиентская библиотека хранилища учетных данных 131795770645377395 0x7ffac8810000 45056 C:\Windows\SYSTEM32\WINNSI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Network Store Information RPC interface 131795770645377395 0x7ffac8cf0000 815104 C:\Windows\System32\taskschd.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Task Scheduler COM API 131795770645377395 0x7ffac8dc0000 167936 C:\Windows\System32\dbgcore.DLL 10.0.14321.1024 (debuggers(dbg).160715-1616) Microsoft Windows Core Debugging Helpers 131795770645377395 0x7ffac8df0000 1646592 C:\Windows\system32\dbghelp.dll 10.0.14321.1024 (rs1_release.160715-1616) Microsoft Windows Image Helper 131795770645377395 0x7ffac90b0000 90112 C:\Windows\System32\wkscli.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Workstation Service Client DLL 131795770645377395 0x7ffac92e0000 1269760 C:\Windows\System32\WinTypes.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL основных типов Windows 131795770645377395 0x7ffaca4e0000 77824 C:\Windows\SYSTEM32\wtsapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Remote Desktop Session Host Server SDK APIs 131795770645377395 0x7ffaca610000 143360 C:\Windows\System32\SAMLIB.dll 10.0.14393.82 (rs1_release.160805-1735) Microsoft Corporation SAM Library DLL 131795770645377395 0x7ffacb140000 593920 c:\windows\system32\msvcp110_win.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Microsoft® STL110 C++ Runtime Library 131795770645377395 0x7ffacb1e0000 1163264 C:\Windows\System32\twinapi.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation twinapi.appcore 131795770645377395 0x7ffacb420000 204800 C:\Windows\SYSTEM32\ntmarta.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик Windows NT MARTA 131795770645377395 0x7ffacb6f0000 143360 C:\Windows\SYSTEM32\gpapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиентские функции API групповой политики 131795770645377395 0x7ffacb920000 81920 C:\Windows\SYSTEM32\WLDP.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Политика блокировки Windows 131795770645377395 0x7ffacbaf0000 495616 C:\Windows\system32\schannel.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик безопасности TLS/SSL 131795770645377395 0x7ffacbbb0000 208896 C:\Windows\system32\rsaenh.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Enhanced Cryptographic Provider 131795770645377395 0x7ffacbbf0000 40960 C:\Windows\System32\DPAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Data Protection API 131795770645377395 0x7ffacbd30000 229376 C:\Windows\System32\IPHLPAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API вспомогательного приложения IP 131795770645377395 0x7ffacbd70000 659456 c:\windows\system32\DNSAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Динамическая библиотека API DNS-клиента 131795770645377395 0x7ffacbe20000 53248 C:\Windows\System32\netutils.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API Helpers DLL 131795770645377395 0x7ffacbe40000 126976 c:\windows\system32\USERENV.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Userenv 131795770645377395 0x7ffacbfb0000 376832 C:\Windows\system32\mswsock.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширение поставщика службы API Microsoft Windows Sockets 2.0 131795770645377395 0x7ffacc150000 94208 C:\Windows\SYSTEM32\cryptsp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Cryptographic Service Provider API 131795770645377395 0x7ffacc170000 45056 C:\Windows\System32\CRYPTBASE.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base cryptographic API DLL 131795770645377395 0x7ffacc1f0000 241664 C:\Windows\SYSTEM32\NTASN1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft ASN.1 API 131795770645377395 0x7ffacc230000 155648 C:\Windows\SYSTEM32\ncrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Маршрутизатор Windows NCrypt 131795770645377395 0x7ffacc350000 180224 C:\Windows\SYSTEM32\SspiCli.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Security Support Provider Interface 131795770645377395 0x7ffacc5c0000 352256 C:\Windows\SYSTEM32\WINSTA.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Winstation Library 131795770645377395 0x7ffacc620000 176128 c:\windows\system32\bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795770645377395 0x7ffacc6e0000 61440 C:\Windows\System32\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795770645377395 0x7ffacc6f0000 311296 C:\Windows\System32\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795770645377395 0x7ffacc740000 81920 C:\Windows\System32\profapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Profile Basic API 131795770645377395 0x7ffacc760000 65536 C:\Windows\System32\MSASN1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ASN.1 Runtime APIs 131795770645377395 0x7ffacc8f0000 1003520 C:\Windows\System32\ucrtbase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645377395 0x7ffacc9f0000 434176 C:\Windows\System32\bcryptPrimitives.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Cryptographic Primitives Library 131795770645377395 0x7ffacca60000 122880 C:\Windows\System32\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795770645377395 0x7ffacca80000 348160 C:\Windows\System32\WINTRUST.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation Microsoft Trust Verification APIs 131795770645377395 0x7ffaccae0000 692224 C:\Windows\System32\shcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795770645377395 0x7ffaccb90000 7180288 C:\Windows\System32\windows.storage.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API хранения Microsoft WinRT 131795770645377395 0x7ffacd270000 2215936 C:\Windows\System32\KERNELBASE.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645377395 0x7ffacd490000 1871872 C:\Windows\System32\CRYPT32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API32 криптографии 131795770645377395 0x7ffacd710000 638976 C:\Windows\System32\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645377395 0x7ffacd7b0000 270336 C:\Windows\System32\cfgmgr32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Configuration Manager DLL 131795770645377395 0x7ffacd810000 22056960 C:\Windows\System32\SHELL32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Общая библиотека оболочки Windows 131795770645377395 0x7ffaced20000 782336 C:\Windows\System32\OLEAUT32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795770645377395 0x7ffacede0000 450560 C:\Windows\System32\coml2.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft COM for Windows 131795770645377395 0x7ffacee50000 1183744 C:\Windows\System32\RPCRT4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795770645377395 0x7ffacef80000 32768 C:\Windows\System32\NSI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation NSI User-mode interface DLL 131795770645377395 0x7ffacef90000 647168 C:\Windows\System32\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795770645377395 0x7ffacf030000 651264 C:\Windows\System32\clbcatq.dll 2001.12.10941.16384 (rs1_release.160715-1616) Microsoft Corporation COM+ Configuration Catalog 131795770645377395 0x7ffacf0d0000 704512 C:\Windows\System32\KERNEL32.DLL 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645377395 0x7ffacf340000 4362240 C:\Windows\System32\SETUPAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Setup API 131795770645377395 0x7ffacf770000 212992 C:\Windows\System32\GDI32.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation GDI Client DLL 131795770645377395 0x7ffacf820000 434176 C:\Windows\System32\WS2_32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation 32-разрядная библиотека Windows Socket 2.0 131795770645377395 0x7ffacf8c0000 1462272 C:\Windows\System32\user32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795770645377395 0x7ffacfb30000 2916352 C:\Windows\System32\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795770645377395 0x7ffacfe20000 663552 C:\Windows\System32\advapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795770645377395 0x7ffad0070000 1277952 C:\Windows\System32\OLE32.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft OLE для Windows 131795770645377395 0x7ffad01b0000 335872 C:\Windows\System32\SHLWAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека небольших программ оболочки 131795770645377395 0x7ffad0210000 364544 C:\Windows\System32\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795770645377395 0x7ffad0270000 1908736 C:\Windows\SYSTEM32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 32 1636 580 4 00000000:000003e7 131765776343009549 0 0 1 Обязательная метка\Обязательный уровень системы NT AUTHORITY\СИСТЕМА svchost.exe C:\Windows\system32\svchost.exe C:\Windows\system32\svchost.exe -k appmodel Microsoft Corporation 10.0.14393.0 (rs1_release.160715-1616) Хост-процесс для служб Windows 131795770645377489 0x7ff718c20000 57344 C:\Windows\system32\svchost.exe 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Хост-процесс для служб Windows 131795770645377489 0x7ffac0bf0000 3559424 C:\Windows\System32\ActXPrxy.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation ActiveX Interface Marshaling Library 131795770645377489 0x7ffac34e0000 1843200 c:\windows\system32\urlmon.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширения OLE32 для Win32 131795770645377489 0x7ffac3840000 3088384 c:\windows\system32\ESENT.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширяемая подсистема хранения данных ESE для Microsoft(R) Windows(R) 131795770645377489 0x7ffac3c10000 593920 c:\windows\system32\tileobjserver.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Сервер моделей данных плиток 131795770645377489 0x7ffac3cb0000 2772992 c:\windows\system32\iertutil.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служебная программа времени выполнения для Internet Explorer 131795770645377489 0x7ffac42a0000 659456 c:\windows\system32\StateRepository.Core.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation StateRepository Core 131795770645377489 0x7ffac46d0000 4161536 c:\windows\system32\windows.staterepository.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Сервер Windows StateRepository API Server 131795770645377489 0x7ffac6ac0000 835584 C:\Windows\System32\Windows.UI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Runtime UI Foundation DLL 131795770645377489 0x7ffac7580000 1077248 C:\Windows\System32\MrmCoreR.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Windows MRM 131795770645377489 0x7ffaca4e0000 77824 C:\Windows\SYSTEM32\wtsapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Remote Desktop Session Host Server SDK APIs 131795770645377489 0x7ffaca570000 421888 C:\Windows\System32\Bcp47Langs.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation BCP47 Language Classes 131795770645377489 0x7ffacb140000 593920 c:\windows\system32\msvcp110_win.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Microsoft® STL110 C++ Runtime Library 131795770645377489 0x7ffacb920000 81920 C:\Windows\SYSTEM32\WLDP.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Политика блокировки Windows 131795770645377489 0x7ffacbe40000 126976 C:\Windows\system32\USERENV.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Userenv 131795770645377489 0x7ffacc170000 45056 C:\Windows\system32\CRYPTBASE.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base cryptographic API DLL 131795770645377489 0x7ffacc350000 180224 C:\Windows\SYSTEM32\SspiCli.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Security Support Provider Interface 131795770645377489 0x7ffacc5c0000 352256 C:\Windows\SYSTEM32\WINSTA.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Winstation Library 131795770645377489 0x7ffacc620000 176128 C:\Windows\system32\Bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795770645377489 0x7ffacc6e0000 61440 C:\Windows\System32\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795770645377489 0x7ffacc6f0000 311296 C:\Windows\System32\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795770645377489 0x7ffacc740000 81920 C:\Windows\System32\profapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Profile Basic API 131795770645377489 0x7ffacc760000 65536 C:\Windows\System32\MSASN1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ASN.1 Runtime APIs 131795770645377489 0x7ffacc8f0000 1003520 C:\Windows\System32\ucrtbase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645377489 0x7ffacc9f0000 434176 C:\Windows\System32\bcryptPrimitives.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Cryptographic Primitives Library 131795770645377489 0x7ffacca60000 122880 C:\Windows\System32\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795770645377489 0x7ffacca80000 348160 C:\Windows\System32\WINTRUST.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation Microsoft Trust Verification APIs 131795770645377489 0x7ffaccae0000 692224 C:\Windows\System32\shcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795770645377489 0x7ffaccb90000 7180288 C:\Windows\System32\windows.storage.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API хранения Microsoft WinRT 131795770645377489 0x7ffacd270000 2215936 C:\Windows\System32\KERNELBASE.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645377489 0x7ffacd490000 1871872 C:\Windows\System32\CRYPT32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API32 криптографии 131795770645377489 0x7ffacd710000 638976 C:\Windows\System32\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645377489 0x7ffaced20000 782336 C:\Windows\System32\OLEAUT32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795770645377489 0x7ffacee50000 1183744 C:\Windows\System32\RPCRT4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795770645377489 0x7ffacef90000 647168 C:\Windows\System32\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795770645377489 0x7ffacf030000 651264 C:\Windows\System32\clbcatq.dll 2001.12.10941.16384 (rs1_release.160715-1616) Microsoft Corporation COM+ Configuration Catalog 131795770645377489 0x7ffacf0d0000 704512 C:\Windows\System32\KERNEL32.DLL 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645377489 0x7ffacf770000 212992 C:\Windows\System32\GDI32.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation GDI Client DLL 131795770645377489 0x7ffacf8c0000 1462272 C:\Windows\System32\user32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795770645377489 0x7ffacfb30000 2916352 C:\Windows\System32\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795770645377489 0x7ffacfe20000 663552 C:\Windows\System32\advapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795770645377489 0x7ffad01b0000 335872 C:\Windows\System32\shlwapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека небольших программ оболочки 131795770645377489 0x7ffad0210000 364544 C:\Windows\System32\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795770645377489 0x7ffad0270000 1908736 C:\Windows\SYSTEM32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 33 1744 4 9 00000000:000003e7 131765776348255325 0 0 1 Обязательная метка\Обязательный уровень системы NT AUTHORITY\СИСТЕМА MemCompression MemCompression 34 2100 580 4 00000000:000003e4 131765776438403561 0 0 1 Обязательная метка\Обязательный уровень системы NT AUTHORITY\NETWORK SERVICE svchost.exe C:\Windows\system32\svchost.exe C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted Microsoft Corporation 10.0.14393.0 (rs1_release.160715-1616) Хост-процесс для служб Windows 131795770645377758 0x7ff718c20000 57344 C:\Windows\system32\svchost.exe 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Хост-процесс для служб Windows 131795770645377758 0x7ffabff90000 409600 c:\windows\system32\ipsecsvc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows IPsec SPD Server DLL 131795770645377758 0x7ffac1e00000 114688 c:\windows\system32\FwRemoteSvr.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Firewall Remote APIs Server 131795770645377758 0x7ffac3f60000 225280 c:\windows\system32\FWPolicyIOMgr.dll 10.0.14393.2189 (rs1_release.180329-1711) Microsoft Corporation FwPolicyIoMgr DLL 131795770645377758 0x7ffac83d0000 106496 C:\Windows\SYSTEM32\dhcpcsvc.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служба DHCP-клиента 131795770645377758 0x7ffac83f0000 90112 C:\Windows\SYSTEM32\dhcpcsvc6.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиент DHCPv6 131795770645377758 0x7ffac8420000 434176 c:\windows\system32\fwpuclnt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API пользовательского режима FWP/IPsec 131795770645377758 0x7ffacb360000 176128 c:\windows\system32\fwbase.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Firewall Base DLL 131795770645377758 0x7ffacb460000 548864 c:\windows\system32\FirewallAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API брандмауэра Windows 131795770645377758 0x7ffacb920000 81920 C:\Windows\SYSTEM32\WLDP.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Политика блокировки Windows 131795770645377758 0x7ffacb960000 303104 c:\windows\system32\AUTHZ.dll 10.0.14393.1737 (rs1_release_inmarket.170914-1249) Microsoft Corporation Authorization Framework 131795770645377758 0x7ffacbd30000 229376 c:\windows\system32\IPHLPAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API вспомогательного приложения IP 131795770645377758 0x7ffacbfb0000 376832 C:\Windows\system32\mswsock.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширение поставщика службы API Microsoft Windows Sockets 2.0 131795770645377758 0x7ffacc350000 180224 C:\Windows\system32\sspicli.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Security Support Provider Interface 131795770645377758 0x7ffacc620000 176128 c:\windows\system32\bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795770645377758 0x7ffacc6e0000 61440 C:\Windows\System32\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795770645377758 0x7ffacc760000 65536 C:\Windows\System32\MSASN1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ASN.1 Runtime APIs 131795770645377758 0x7ffacc8f0000 1003520 C:\Windows\System32\ucrtbase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645377758 0x7ffacc9f0000 434176 C:\Windows\System32\bcryptPrimitives.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Cryptographic Primitives Library 131795770645377758 0x7ffacca80000 348160 C:\Windows\System32\WINTRUST.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation Microsoft Trust Verification APIs 131795770645377758 0x7ffacd270000 2215936 C:\Windows\System32\KERNELBASE.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645377758 0x7ffacd490000 1871872 C:\Windows\System32\CRYPT32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API32 криптографии 131795770645377758 0x7ffacd710000 638976 C:\Windows\System32\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645377758 0x7ffaced20000 782336 C:\Windows\System32\OLEAUT32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795770645377758 0x7ffacee50000 1183744 C:\Windows\System32\RPCRT4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795770645377758 0x7ffacef80000 32768 C:\Windows\System32\NSI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation NSI User-mode interface DLL 131795770645377758 0x7ffacef90000 647168 C:\Windows\System32\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795770645377758 0x7ffacf030000 651264 C:\Windows\System32\clbcatq.dll 2001.12.10941.16384 (rs1_release.160715-1616) Microsoft Corporation COM+ Configuration Catalog 131795770645377758 0x7ffacf0d0000 704512 C:\Windows\System32\KERNEL32.DLL 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645377758 0x7ffacf820000 434176 C:\Windows\System32\WS2_32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation 32-разрядная библиотека Windows Socket 2.0 131795770645377758 0x7ffacfb30000 2916352 C:\Windows\System32\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795770645377758 0x7ffad0210000 364544 C:\Windows\System32\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795770645377758 0x7ffad0270000 1908736 C:\Windows\SYSTEM32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 35 2648 348 24 00000000:0031f1da 131765777555980720 0 0 1 Обязательная метка\Средний обязательный уровень WIN-0UOTFKKVN1S\User sihost.exe C:\Windows\system32\sihost.exe sihost.exe Microsoft Corporation 10.0.14393.0 (rs1_release.160715-1616) Shell Infrastructure Host 131795770645377872 0x7ff7bbae0000 94208 C:\Windows\system32\sihost.exe 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Shell Infrastructure Host 131795770645377872 0x7ffab9490000 860160 C:\Windows\System32\ntshrui.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширения оболочки, обеспечивающие общий доступ 131795770645377872 0x7ffabae40000 110592 C:\Windows\SYSTEM32\capauthz.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API авторизации возможностей 131795770645377872 0x7ffabaf70000 270336 C:\Windows\System32\edputil.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служебная программа EDP 131795770645377872 0x7ffabb910000 344064 C:\Windows\System32\container.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Windows Containers 131795770645377872 0x7ffabb970000 487424 C:\Windows\System32\daxexec.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation daxexec 131795770645377872 0x7ffabba80000 995328 C:\Windows\System32\twinui.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation TWINUI.APPCORE 131795770645377872 0x7ffabbb80000 61440 C:\Windows\System32\dsclient.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Data Sharing Service Client DLL 131795770645377872 0x7ffabbb90000 581632 C:\Windows\System32\Windows.System.Launcher.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows.System.Launcher 131795770645377872 0x7ffabbd00000 36864 C:\Windows\system32\WpPortingLibrary.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation <d> DLL 131795770645377872 0x7ffabc0b0000 65536 C:\Windows\System32\LINKINFO.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Volume Tracking 131795770645377872 0x7ffabc450000 741376 C:\Windows\system32\ShareHost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ShareHost 131795770645377872 0x7ffabc510000 90112 C:\Windows\system32\execmodelproxy.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ExecModelProxy 131795770645377872 0x7ffabc570000 94208 C:\Windows\SYSTEM32\licensemanagerapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation "LicenseManagerApi.DYNLINK" 131795770645377872 0x7ffabc6b0000 1114112 C:\Windows\System32\AppContracts.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Сервер API Windows AppContracts 131795770645377872 0x7ffabc800000 266240 C:\Windows\System32\windowmanagement.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Window Management 131795770645377872 0x7ffabc850000 159744 C:\Windows\System32\AppointmentActivation.dll 10.0.14393.2189 (rs1_release.180329-1711) Microsoft Corporation DLL for AppointmentActivation 131795770645377872 0x7ffabc880000 73728 C:\Windows\system32\cscapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Offline Files Win32 API 131795770645377872 0x7ffabc8b0000 61440 C:\Windows\System32\NotificationPlatformComponent.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation NotificationPlatformComponent 131795770645377872 0x7ffabc920000 270336 C:\Windows\system32\ExecModelClient.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation ExecModelClient 131795770645377872 0x7ffabc9a0000 413696 C:\Windows\system32\activationmanager.dll 10.0.14393.479 (rs1_release.161110-2025) Microsoft Corporation Activation Manager 131795770645377872 0x7ffabca10000 221184 C:\Windows\System32\ClipboardServer.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Сервер API Modern Clipboard 131795770645377872 0x7ffabcde0000 983040 C:\Windows\System32\modernexecserver.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Сервер Modern Execution 131795770645377872 0x7ffabcef0000 102400 C:\Windows\System32\Windows.Shell.ServiceHostBuilder.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows.Shell.ServiceHostBuilder 131795770645377872 0x7ffabcf10000 122880 C:\Windows\system32\desktopshellext.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DesktopHost Extensions 131795770645377872 0x7ffabff10000 155648 C:\Windows\System32\srvcli.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Server Service Client DLL 131795770645377872 0x7ffac0bf0000 3559424 C:\Windows\System32\ActXPrxy.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation ActiveX Interface Marshaling Library 131795770645377872 0x7ffac20d0000 110592 C:\Windows\System32\RMCLIENT.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Resource Manager Client 131795770645377872 0x7ffac23c0000 331776 C:\Windows\System32\OneCoreCommonProxyStub.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation OneCore Common Proxy Stub 131795770645377872 0x7ffac2b30000 286720 C:\Windows\System32\usermgrproxy.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation UserMgrProxy 131795770645377872 0x7ffac3270000 40960 C:\Windows\System32\FLTLIB.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека фильтров 131795770645377872 0x7ffac34e0000 1843200 C:\Windows\System32\urlmon.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширения OLE32 для Win32 131795770645377872 0x7ffac3cb0000 2772992 C:\Windows\System32\iertutil.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служебная программа времени выполнения для Internet Explorer 131795770645377872 0x7ffac42a0000 659456 C:\Windows\System32\StateRepository.Core.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation StateRepository Core 131795770645377872 0x7ffac4450000 86016 C:\Windows\SYSTEM32\usermgrcli.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation UserMgr API DLL 131795770645377872 0x7ffac46d0000 4161536 C:\Windows\System32\Windows.StateRepository.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Сервер Windows StateRepository API Server 131795770645377872 0x7ffac5500000 438272 C:\Windows\system32\PhotoMetadataHandler.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Photo Metadata Handler 131795770645377872 0x7ffac7720000 1601536 C:\Windows\System32\OneCoreUAPCommonProxyStub.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation OneCoreUAP Common Proxy Stub 131795770645377872 0x7ffac92e0000 1269760 C:\Windows\SYSTEM32\wintypes.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL основных типов Windows 131795770645377872 0x7ffac9500000 2682880 C:\Windows\system32\CoreUIComponents.dll 131795770645377872 0x7ffac9f50000 1736704 C:\Windows\system32\WindowsCodecs.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Microsoft Windows Codecs Library 131795770645377872 0x7ffaca340000 1593344 C:\Windows\System32\PROPSYS.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Система страниц свойств (Майкрософт) 131795770645377872 0x7ffaca4e0000 77824 C:\Windows\SYSTEM32\wtsapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Remote Desktop Session Host Server SDK APIs 131795770645377872 0x7ffaca5e0000 155648 C:\Windows\System32\dwmapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Интерфейс API диспетчера окон рабочего стола (Майкрософт) 131795770645377872 0x7ffaca640000 770048 C:\Windows\system32\CoreMessaging.dll 10.0.14393.0 Microsoft Corporation Microsoft CoreMessaging Dll 131795770645377872 0x7ffacadf0000 499712 C:\Windows\System32\apphelp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиентская библиотека совместимости приложений 131795770645377872 0x7ffacaf00000 610304 C:\Windows\system32\uxtheme.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека тем UxTheme (Microsoft) 131795770645377872 0x7ffacb140000 593920 C:\Windows\System32\msvcp110_win.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Microsoft® STL110 C++ Runtime Library 131795770645377872 0x7ffacb1e0000 1163264 C:\Windows\SYSTEM32\twinapi.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation twinapi.appcore 131795770645377872 0x7ffacb300000 364544 C:\Windows\System32\VEEventDispatcher.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Visual Element Event dispatcher 131795770645377872 0x7ffacb3d0000 110592 C:\Windows\System32\ResourcePolicyClient.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Resource Policy Client 131795770645377872 0x7ffacb420000 204800 C:\Windows\SYSTEM32\ntmarta.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик Windows NT MARTA 131795770645377872 0x7ffacbd30000 229376 C:\Windows\System32\IPHLPAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API вспомогательного приложения IP 131795770645377872 0x7ffacc350000 180224 C:\Windows\System32\SspiCli.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Security Support Provider Interface 131795770645377872 0x7ffacc5c0000 352256 C:\Windows\SYSTEM32\WINSTA.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Winstation Library 131795770645377872 0x7ffacc620000 176128 C:\Windows\System32\bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795770645377872 0x7ffacc6e0000 61440 C:\Windows\System32\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795770645377872 0x7ffacc6f0000 311296 C:\Windows\System32\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795770645377872 0x7ffacc740000 81920 C:\Windows\System32\profapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Profile Basic API 131795770645377872 0x7ffacc8f0000 1003520 C:\Windows\System32\ucrtbase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645377872 0x7ffacc9f0000 434176 C:\Windows\System32\bcryptPrimitives.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Cryptographic Primitives Library 131795770645377872 0x7ffacca60000 122880 C:\Windows\System32\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795770645377872 0x7ffaccae0000 692224 C:\Windows\System32\shcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795770645377872 0x7ffaccb90000 7180288 C:\Windows\System32\Windows.Storage.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API хранения Microsoft WinRT 131795770645377872 0x7ffacd270000 2215936 C:\Windows\System32\KERNELBASE.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645377872 0x7ffacd710000 638976 C:\Windows\System32\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645377872 0x7ffacd7b0000 270336 C:\Windows\System32\cfgmgr32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Configuration Manager DLL 131795770645377872 0x7ffacd810000 22056960 C:\Windows\System32\shell32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Общая библиотека оболочки Windows 131795770645377872 0x7ffaced20000 782336 C:\Windows\System32\OLEAUT32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795770645377872 0x7ffacee50000 1183744 C:\Windows\System32\RPCRT4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795770645377872 0x7ffacef90000 647168 C:\Windows\System32\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795770645377872 0x7ffacf030000 651264 C:\Windows\System32\clbcatq.dll 2001.12.10941.16384 (rs1_release.160715-1616) Microsoft Corporation COM+ Configuration Catalog 131795770645377872 0x7ffacf0d0000 704512 C:\Windows\System32\KERNEL32.DLL 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645377872 0x7ffacf770000 212992 C:\Windows\System32\GDI32.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation GDI Client DLL 131795770645377872 0x7ffacf890000 188416 C:\Windows\System32\IMM32.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Multi-User Windows IMM32 API Client DLL 131795770645377872 0x7ffacf8c0000 1462272 C:\Windows\System32\user32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795770645377872 0x7ffacfb30000 2916352 C:\Windows\System32\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795770645377872 0x7ffacfe20000 663552 C:\Windows\System32\advapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795770645377872 0x7ffad0070000 1277952 C:\Windows\System32\ole32.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft OLE для Windows 131795770645377872 0x7ffad01b0000 335872 C:\Windows\System32\shlwapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека небольших программ оболочки 131795770645377872 0x7ffad0210000 364544 C:\Windows\System32\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795770645377872 0x7ffad0270000 1908736 C:\Windows\SYSTEM32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 36 840 580 4 00000000:0031f1da 131765777563791648 0 0 1 Обязательная метка\Средний обязательный уровень WIN-0UOTFKKVN1S\User svchost.exe C:\Windows\system32\svchost.exe C:\Windows\system32\svchost.exe -k UnistackSvcGroup Microsoft Corporation 10.0.14393.0 (rs1_release.160715-1616) Хост-процесс для служб Windows 131795770645377971 0x7ff718c20000 57344 C:\Windows\system32\svchost.exe 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Хост-процесс для служб Windows 131795770645377971 0x7ffaaf6a0000 331776 C:\Windows\System32\PhoneUtil.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Phone utilities 131795770645377971 0x7ffaaf700000 1421312 C:\Windows\System32\PIMSTORE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation POOM 131795770645377971 0x7ffab05d0000 339968 C:\Windows\System32\AccountAccessor.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Sync data model to access accounts 131795770645377971 0x7ffab0630000 618496 C:\Windows\System32\SyncController.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SyncController for managing sync of mail, contacts, calendar 131795770645377971 0x7ffab93b0000 897024 C:\Windows\System32\TokenBroker.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Token Broker 131795770645377971 0x7ffabaab0000 94208 C:\Windows\SYSTEM32\profext.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation profext 131795770645377971 0x7ffabbb80000 61440 C:\Windows\System32\dsclient.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Data Sharing Service Client DLL 131795770645377971 0x7ffabbd10000 65536 C:\Windows\System32\TOKENBINDING.dll 10.0.14393.1593 (rs1_release.170731-1934) Microsoft Corporation Token Binding Protocol 131795770645377971 0x7ffabca50000 819200 C:\Windows\System32\Windows.Security.Authentication.Web.Core.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Token Broker WinRT API 131795770645377971 0x7ffabcb20000 266240 C:\Windows\System32\CEMAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation CEMAPI 131795770645377971 0x7ffabcb70000 262144 C:\Windows\System32\cdprt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft (R) CDP Client WinRT API 131795770645377971 0x7ffabcd80000 360448 c:\windows\system32\cdpusersvc.dll 10.0.14393.479 (rs1_release.161110-2025) Microsoft Corporation Microsoft (R) CDP User Components 131795770645377971 0x7ffabd630000 200704 C:\Windows\System32\MCCSEngineShared.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Utilies shared among OneSync engines 131795770645377971 0x7ffabdde0000 462848 c:\windows\system32\SYNCUTIL.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Sync utilities for mail, contacts, calendar 131795770645377971 0x7ffabe850000 155648 C:\Windows\System32\IDStore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Identity Store 131795770645377971 0x7ffabed20000 389120 c:\windows\system32\aphostservice.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Accounts Host Service 131795770645377971 0x7ffabfbe0000 1011712 C:\Windows\System32\Windows.Security.Authentication.OnlineId.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation Windows Runtime OnlineId Authentication DLL 131795770645377971 0x7ffac05f0000 94208 C:\Windows\System32\wwapi.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation WWAN API 131795770645377971 0x7ffac0910000 724992 C:\Windows\System32\Windows.Networking.Connectivity.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Networking Connectivity Runtime DLL 131795770645377971 0x7ffac09d0000 884736 C:\Windows\System32\wpnapps.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Приложения для push-уведомлений Windows 131795770645377971 0x7ffac0bf0000 3559424 C:\Windows\System32\ActXPrxy.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation ActiveX Interface Marshaling Library 131795770645377971 0x7ffac20d0000 110592 C:\Windows\System32\RMCLIENT.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Resource Manager Client 131795770645377971 0x7ffac23c0000 331776 C:\Windows\System32\OneCoreCommonProxyStub.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation OneCore Common Proxy Stub 131795770645377971 0x7ffac2590000 659456 C:\Windows\System32\FlightSettings.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Параметры цикла тестирования 131795770645377971 0x7ffac2750000 106496 C:\Windows\System32\bcd.dll 10.0.14393.1794 (rs1_release.171008-1615) Microsoft Corporation BCD DLL 131795770645377971 0x7ffac2b30000 286720 C:\Windows\System32\usermgrproxy.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation UserMgrProxy 131795770645377971 0x7ffac2cb0000 778240 c:\windows\system32\winsqlite3.dll 3.12.2 SQLite Development Team SQLite is a software library that implements a self-contained, serverless, zero-configuration, transactional SQL database engine. 131795770645377971 0x7ffac2d80000 5140480 c:\windows\system32\cdp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API клиента Microsoft (R) CDP 131795770645377971 0x7ffac3cb0000 2772992 C:\Windows\System32\iertutil.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служебная программа времени выполнения для Internet Explorer 131795770645377971 0x7ffac4000000 274432 C:\Windows\SYSTEM32\policymanager.dll 10.0.14393.2035 (rs1_release_inmarket.180110-1910) Microsoft Corporation Policy Manager DLL 131795770645377971 0x7ffac4100000 151552 c:\windows\system32\NetworkHelper.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Network utilities for mail, contacts, calendar 131795770645377971 0x7ffac4450000 86016 C:\Windows\SYSTEM32\usermgrcli.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation UserMgr API DLL 131795770645377971 0x7ffac60e0000 221184 C:\Windows\System32\XmlLite.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft XmlLite Library 131795770645377971 0x7ffac66a0000 86016 C:\Windows\SYSTEM32\ondemandconnroutehelper.dll 10.0.14393.351 (rs1_release_inmarket.161014-1755) Microsoft Corporation On Demand Connctiond Route Helper 131795770645377971 0x7ffac69c0000 839680 c:\windows\system32\WINHTTP.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Службы HTTP Windows 131795770645377971 0x7ffac79c0000 57344 C:\Windows\System32\npmproxy.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Network List Manager Proxy 131795770645377971 0x7ffac7aa0000 401408 C:\Windows\SYSTEM32\wlanapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows WLAN AutoConfig Client Side API DLL 131795770645377971 0x7ffac83d0000 106496 C:\Windows\SYSTEM32\dhcpcsvc.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служба DHCP-клиента 131795770645377971 0x7ffac83f0000 90112 C:\Windows\SYSTEM32\dhcpcsvc6.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиент DHCPv6 131795770645377971 0x7ffac8540000 286720 C:\Windows\System32\vaultcli.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиентская библиотека хранилища учетных данных 131795770645377971 0x7ffac92e0000 1269760 C:\Windows\SYSTEM32\wintypes.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL основных типов Windows 131795770645377971 0x7ffac97b0000 81920 c:\windows\system32\InprocLogger.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation In-proc Private Event Trace Logger 131795770645377971 0x7ffaca1d0000 69632 C:\Windows\System32\UserDataTypeHelperUtil.dll 10.0.14393.2189 (rs1_release.180329-1711) Microsoft Corporation Type Utilities for data access 131795770645377971 0x7ffaca270000 65536 C:\Windows\System32\UserDataLanguageUtil.dll 10.0.14393.2189 (rs1_release.180329-1711) Microsoft Corporation Language-related helper functions for user data 131795770645377971 0x7ffaca4e0000 77824 C:\Windows\SYSTEM32\wtsapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Remote Desktop Session Host Server SDK APIs 131795770645377971 0x7ffaca520000 90112 C:\Windows\System32\APHostClient.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Accounts Host Service RPC Client 131795770645377971 0x7ffaca610000 143360 C:\Windows\System32\SAMLIB.dll 10.0.14393.82 (rs1_release.160805-1735) Microsoft Corporation SAM Library DLL 131795770645377971 0x7ffacabf0000 45056 c:\windows\system32\MCCSPal.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Platform abstraction layer dll for MCCS 131795770645377971 0x7ffacac20000 86016 c:\windows\system32\UserDataPlatformHelperUtil.dll 10.0.14393.2189 (rs1_release.180329-1711) Microsoft Corporation Platform Utilities for data access 131795770645377971 0x7ffacb140000 593920 c:\windows\system32\msvcp110_win.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Microsoft® STL110 C++ Runtime Library 131795770645377971 0x7ffacb1e0000 1163264 C:\Windows\System32\twinapi.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation twinapi.appcore 131795770645377971 0x7ffacb300000 364544 c:\windows\system32\VEEventDispatcher.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Visual Element Event dispatcher 131795770645377971 0x7ffacb420000 204800 C:\Windows\SYSTEM32\ntmarta.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик Windows NT MARTA 131795770645377971 0x7ffacb920000 81920 C:\Windows\SYSTEM32\WLDP.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Политика блокировки Windows 131795770645377971 0x7ffacbbf0000 40960 C:\Windows\System32\DPAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Data Protection API 131795770645377971 0x7ffacbd30000 229376 c:\windows\system32\IPHLPAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API вспомогательного приложения IP 131795770645377971 0x7ffacbe40000 126976 C:\Windows\System32\USERENV.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Userenv 131795770645377971 0x7ffacbf30000 49152 C:\Windows\system32\NtlmShared.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation NTLM Shared Functionality 131795770645377971 0x7ffacbf40000 421888 C:\Windows\system32\msv1_0.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Authentication Package v1.0 131795770645377971 0x7ffacc010000 86016 C:\Windows\system32\cryptdll.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Cryptography Manager 131795770645377971 0x7ffacc150000 94208 C:\Windows\SYSTEM32\cryptsp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Cryptographic Service Provider API 131795770645377971 0x7ffacc170000 45056 c:\windows\system32\CRYPTBASE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base cryptographic API DLL 131795770645377971 0x7ffacc1f0000 241664 c:\windows\system32\NTASN1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft ASN.1 API 131795770645377971 0x7ffacc230000 155648 c:\windows\system32\ncrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Маршрутизатор Windows NCrypt 131795770645377971 0x7ffacc350000 180224 c:\windows\system32\SspiCli.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Security Support Provider Interface 131795770645377971 0x7ffacc620000 176128 c:\windows\system32\bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795770645377971 0x7ffacc6e0000 61440 C:\Windows\System32\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795770645377971 0x7ffacc6f0000 311296 C:\Windows\System32\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795770645377971 0x7ffacc740000 81920 C:\Windows\System32\profapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Profile Basic API 131795770645377971 0x7ffacc760000 65536 C:\Windows\System32\MSASN1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ASN.1 Runtime APIs 131795770645377971 0x7ffacc8f0000 1003520 C:\Windows\System32\ucrtbase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645377971 0x7ffacc9f0000 434176 C:\Windows\System32\bcryptPrimitives.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Cryptographic Primitives Library 131795770645377971 0x7ffacca60000 122880 C:\Windows\System32\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795770645377971 0x7ffacca80000 348160 C:\Windows\System32\WINTRUST.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation Microsoft Trust Verification APIs 131795770645377971 0x7ffaccae0000 692224 C:\Windows\System32\shcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795770645377971 0x7ffaccb90000 7180288 C:\Windows\System32\windows.storage.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API хранения Microsoft WinRT 131795770645377971 0x7ffacd270000 2215936 C:\Windows\System32\KERNELBASE.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645377971 0x7ffacd490000 1871872 C:\Windows\System32\CRYPT32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API32 криптографии 131795770645377971 0x7ffacd710000 638976 C:\Windows\System32\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645377971 0x7ffacd7b0000 270336 C:\Windows\System32\cfgmgr32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Configuration Manager DLL 131795770645377971 0x7ffaced20000 782336 C:\Windows\System32\OLEAUT32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795770645377971 0x7ffacee50000 1183744 C:\Windows\System32\RPCRT4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795770645377971 0x7ffacef80000 32768 C:\Windows\System32\NSI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation NSI User-mode interface DLL 131795770645377971 0x7ffacef90000 647168 C:\Windows\System32\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795770645377971 0x7ffacf030000 651264 C:\Windows\System32\clbcatq.dll 2001.12.10941.16384 (rs1_release.160715-1616) Microsoft Corporation COM+ Configuration Catalog 131795770645377971 0x7ffacf0d0000 704512 C:\Windows\System32\KERNEL32.DLL 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645377971 0x7ffacf770000 212992 C:\Windows\System32\GDI32.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation GDI Client DLL 131795770645377971 0x7ffacf820000 434176 C:\Windows\System32\WS2_32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation 32-разрядная библиотека Windows Socket 2.0 131795770645377971 0x7ffacf890000 188416 C:\Windows\System32\IMM32.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Multi-User Windows IMM32 API Client DLL 131795770645377971 0x7ffacf8c0000 1462272 C:\Windows\System32\user32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795770645377971 0x7ffacfb30000 2916352 C:\Windows\System32\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795770645377971 0x7ffacfe20000 663552 C:\Windows\System32\advapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795770645377971 0x7ffad01b0000 335872 C:\Windows\System32\shlwapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека небольших программ оболочки 131795770645377971 0x7ffad0210000 364544 C:\Windows\System32\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795770645377971 0x7ffad0270000 1908736 C:\Windows\SYSTEM32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 37 528 348 24 00000000:0031f1da 131765777565618284 0 0 1 Обязательная метка\Средний обязательный уровень WIN-0UOTFKKVN1S\User taskhostw.exe C:\Windows\system32\taskhostw.exe taskhostw.exe {222A245B-E637-4AE9-A93F-A59CA119A75E} Microsoft Corporation 10.0.14393.0 (rs1_release.160715-1616) Хост-процесс для задач Windows 131795770645378085 0x7ff794e10000 102400 C:\Windows\system32\taskhostw.exe 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Хост-процесс для задач Windows 131795770645378085 0x7ffab4af0000 606208 C:\Windows\system32\AUDIOSES.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Сеанс обработки звука 131795770645378085 0x7ffabaab0000 94208 C:\Windows\SYSTEM32\profext.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation profext 131795770645378085 0x7ffabb3c0000 450560 C:\Windows\system32\TextInputFramework.dll 10.0.14393.2189 (rs1_release.180329-1711) Microsoft Corporation "TextInputFramework.DYNLINK" 131795770645378085 0x7ffabb440000 282624 C:\Windows\system32\MTFServer.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation "MTFServer.DYNLINK" 131795770645378085 0x7ffabb510000 2854912 C:\Windows\system32\InputService.dll 10.0.14393.2189 (rs1_release.180329-1711) Microsoft Corporation Microsoft Text InputService Dll 131795770645378085 0x7ffabb8c0000 131072 C:\Windows\system32\InputLocaleManager.dll 10.0.14393.576 (rs1_release_inmarket.161208-2252) Microsoft Corporation "InputLocaleManager.DYNLINK" 131795770645378085 0x7ffabb8f0000 98304 C:\Windows\system32\EditBufferTestHook.dll 10.0.14393.576 (rs1_release_inmarket.161208-2252) Microsoft Corporation "EditBufferTestHook.DYNLINK" 131795770645378085 0x7ffabb9f0000 483328 C:\Windows\system32\MSUTB.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека (DLL) сервера MSUTB 131795770645378085 0x7ffabba70000 53248 C:\Windows\system32\MsCtfMonitor.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation MsCtfMonitor DLL 131795770645378085 0x7ffabbc20000 106496 C:\Windows\System32\PlaySndSrv.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служба PlaySound 131795770645378085 0x7ffabf5d0000 2924544 C:\Windows\system32\wininet.dll 11.00.14393.447 (rs1_release_inmarket.161102-0100) Microsoft Corporation Расширения Интернета для Win32 131795770645378085 0x7ffac37d0000 258048 C:\Windows\system32\wdmaud.drv 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Системный звуковой драйвер Winmm 131795770645378085 0x7ffac3840000 3088384 C:\Windows\system32\ESENT.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширяемая подсистема хранения данных ESE для Microsoft(R) Windows(R) 131795770645378085 0x7ffac3cb0000 2772992 C:\Windows\system32\iertutil.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служебная программа времени выполнения для Internet Explorer 131795770645378085 0x7ffac4000000 274432 C:\Windows\SYSTEM32\policymanager.dll 10.0.14393.2035 (rs1_release_inmarket.180110-1910) Microsoft Corporation Policy Manager DLL 131795770645378085 0x7ffac4140000 114688 C:\Windows\system32\MSACM32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Фильтр диспетчера аудиосжатия Microsoft 131795770645378085 0x7ffac7d10000 32768 C:\Windows\system32\KBDUS.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation United States Keyboard Layout 131795770645378085 0x7ffac8f90000 45056 C:\Windows\system32\AVRT.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Среда выполнения мультимедиа в реальном времени 131795770645378085 0x7ffac92e0000 1269760 C:\Windows\SYSTEM32\wintypes.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL основных типов Windows 131795770645378085 0x7ffac9480000 462848 C:\Windows\System32\MMDevAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation MMDevice API 131795770645378085 0x7ffac9500000 2682880 C:\Windows\system32\CoreUIComponents.dll 131795770645378085 0x7ffac97d0000 40960 C:\Windows\system32\midimap.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft MIDI Mapper 131795770645378085 0x7ffaca180000 53248 C:\Windows\system32\msacm32.drv 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Программа переназначения звуковых устройств 131795770645378085 0x7ffaca340000 1593344 C:\Windows\System32\PROPSYS.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Система страниц свойств (Майкрософт) 131795770645378085 0x7ffaca550000 36864 C:\Windows\system32\ksuser.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User CSA Library 131795770645378085 0x7ffaca5e0000 155648 C:\Windows\system32\dwmapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Интерфейс API диспетчера окон рабочего стола (Майкрософт) 131795770645378085 0x7ffaca640000 770048 C:\Windows\system32\CoreMessaging.dll 10.0.14393.0 Microsoft Corporation Microsoft CoreMessaging Dll 131795770645378085 0x7ffacab10000 61440 C:\Windows\System32\WordBreakers.dll 10.0.14393.2189 (rs1_release.180329-1711) Microsoft Corporation "WordBreakers.DYNLINK" 131795770645378085 0x7ffacab40000 176128 C:\Windows\System32\WINMMBASE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base Multimedia Extension API DLL 131795770645378085 0x7ffacaba0000 143360 C:\Windows\System32\WINMM.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation MCI API DLL 131795770645378085 0x7ffacaf00000 610304 C:\Windows\system32\uxtheme.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека тем UxTheme (Microsoft) 131795770645378085 0x7ffacb140000 593920 C:\Windows\system32\msvcp110_win.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Microsoft® STL110 C++ Runtime Library 131795770645378085 0x7ffacb3f0000 163840 C:\Windows\System32\DEVOBJ.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Device Information Set DLL 131795770645378085 0x7ffacb420000 204800 C:\Windows\SYSTEM32\ntmarta.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик Windows NT MARTA 131795770645378085 0x7ffacbe40000 126976 C:\Windows\SYSTEM32\userenv.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Userenv 131795770645378085 0x7ffacc170000 45056 C:\Windows\system32\CRYPTBASE.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base cryptographic API DLL 131795770645378085 0x7ffacc5c0000 352256 C:\Windows\system32\WINSTA.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Winstation Library 131795770645378085 0x7ffacc6e0000 61440 C:\Windows\System32\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795770645378085 0x7ffacc6f0000 311296 C:\Windows\System32\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795770645378085 0x7ffacc740000 81920 C:\Windows\System32\profapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Profile Basic API 131795770645378085 0x7ffacc8f0000 1003520 C:\Windows\System32\ucrtbase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645378085 0x7ffacc9f0000 434176 C:\Windows\System32\bcryptPrimitives.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Cryptographic Primitives Library 131795770645378085 0x7ffacca60000 122880 C:\Windows\System32\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795770645378085 0x7ffaccae0000 692224 C:\Windows\System32\shcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795770645378085 0x7ffaccb90000 7180288 C:\Windows\System32\windows.storage.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API хранения Microsoft WinRT 131795770645378085 0x7ffacd270000 2215936 C:\Windows\System32\KERNELBASE.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645378085 0x7ffacd710000 638976 C:\Windows\System32\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645378085 0x7ffacd7b0000 270336 C:\Windows\System32\cfgmgr32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Configuration Manager DLL 131795770645378085 0x7ffaced20000 782336 C:\Windows\System32\OLEAUT32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795770645378085 0x7ffacee50000 1183744 C:\Windows\System32\RPCRT4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795770645378085 0x7ffacef90000 647168 C:\Windows\System32\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795770645378085 0x7ffacf030000 651264 C:\Windows\System32\clbcatq.dll 2001.12.10941.16384 (rs1_release.160715-1616) Microsoft Corporation COM+ Configuration Catalog 131795770645378085 0x7ffacf0d0000 704512 C:\Windows\System32\KERNEL32.DLL 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645378085 0x7ffacf1e0000 1417216 C:\Windows\System32\MSCTF.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Серверная библиотека MSCTF 131795770645378085 0x7ffacf770000 212992 C:\Windows\System32\GDI32.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation GDI Client DLL 131795770645378085 0x7ffacf890000 188416 C:\Windows\System32\imm32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Multi-User Windows IMM32 API Client DLL 131795770645378085 0x7ffacf8c0000 1462272 C:\Windows\System32\USER32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795770645378085 0x7ffacfb30000 2916352 C:\Windows\System32\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795770645378085 0x7ffacfe20000 663552 C:\Windows\System32\advapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795770645378085 0x7ffad0070000 1277952 C:\Windows\System32\ole32.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft OLE для Windows 131795770645378085 0x7ffad01b0000 335872 C:\Windows\System32\shlwapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека небольших программ оболочки 131795770645378085 0x7ffad0210000 364544 C:\Windows\System32\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795770645378085 0x7ffad0270000 1908736 C:\Windows\SYSTEM32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 38 3632 664 6 00000000:0031f1da 131765777941176116 0 0 1 Обязательная метка\Средний обязательный уровень WIN-0UOTFKKVN1S\User RuntimeBroker.exe C:\Windows\System32\RuntimeBroker.exe C:\Windows\System32\RuntimeBroker.exe -Embedding Microsoft Corporation 10.0.14393.0 (rs1_release.160715-1616) Runtime Broker 131795770645378207 0x7ff7808b0000 8527872 C:\Windows\system32\ntoskrnl.exe 10.0.14393.2189 (rs1_release.180329-1711) Microsoft Corporation NT Kernel & System 131795770645378207 0x7ff7a45f0000 49152 C:\Windows\System32\RuntimeBroker.exe 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Runtime Broker 131795770645378207 0x7ffaab750000 876544 C:\Windows\System32\Windows.Media.Import.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation Windows Photo Import API (WinRT/COM) 131795770645378207 0x7ffaac6e0000 13156352 C:\Windows\System32\ieframe.dll 11.00.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Браузер 131795770645378207 0x7ffab33d0000 258048 C:\Windows\System32\MLANG.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL многоязыковой поддержки 131795770645378207 0x7ffab4b90000 655360 C:\Windows\System32\StructuredQuery.dll 7.0.14393.2068 (rs1_release.180209-1727) Microsoft Corporation Structured Query 131795770645378207 0x7ffab7780000 2576384 C:\Windows\system32\mssrch.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Встроенный поиск (Майкрософт) 131795770645378207 0x7ffab7a00000 3424256 C:\Windows\system32\TQUERY.DLL 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Запросы Microsoft Tripoli 131795770645378207 0x7ffab7d80000 753664 C:\Windows\System32\RASAPI32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API удаленного доступа 131795770645378207 0x7ffab8190000 9191424 C:\Windows\system32\twinui.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation TWINUI 131795770645378207 0x7ffab92e0000 827392 C:\Windows\system32\Windows.Storage.Search.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows.Storage.Search 131795770645378207 0x7ffab9490000 860160 C:\Windows\System32\ntshrui.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширения оболочки, обеспечивающие общий доступ 131795770645378207 0x7ffab9a40000 299008 C:\Windows\System32\RasMediaManager.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Ras Media Manager DLL 131795770645378207 0x7ffaba950000 188416 C:\Windows\System32\EthernetMediaManager.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Ethernet Media Manager DLL 131795770645378207 0x7ffabaa50000 339968 C:\Windows\System32\NetworkUXBroker.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation NetworkUXBroker DLL 131795770645378207 0x7ffabaab0000 94208 C:\Windows\SYSTEM32\profext.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation profext 131795770645378207 0x7ffabae40000 110592 C:\Windows\SYSTEM32\capauthz.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API авторизации возможностей 131795770645378207 0x7ffabaf70000 270336 C:\Windows\System32\edputil.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служебная программа EDP 131795770645378207 0x7ffabb2b0000 1089536 C:\Windows\system32\SettingSyncCore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Setting Synchronization Core 131795770645378207 0x7ffabba80000 995328 C:\Windows\System32\twinui.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation TWINUI.APPCORE 131795770645378207 0x7ffabc0b0000 65536 C:\Windows\System32\LINKINFO.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Volume Tracking 131795770645378207 0x7ffabc510000 90112 C:\Windows\system32\execmodelproxy.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ExecModelProxy 131795770645378207 0x7ffabc530000 241664 C:\Windows\System32\Windows.Networking.HostName.dll 10.0.14393.953 (rs1_release_inmarket.170303-1614) Microsoft Corporation Windows.Networking.HostName DLL 131795770645378207 0x7ffabc880000 73728 C:\Windows\System32\cscapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Offline Files Win32 API 131795770645378207 0x7ffabcf30000 110592 C:\Windows\System32\MPR.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека маршрутизации для нескольких служб доступа 131795770645378207 0x7ffabdd60000 425984 C:\Windows\System32\AppXDeploymentClient.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL-библиотека клиента развертывания AppX 131795770645378207 0x7ffabe070000 610304 C:\Windows\System32\efswrt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Storage Protection Windows Runtime DLL 131795770645378207 0x7ffabe4d0000 286720 C:\Windows\System32\MSWB7.dll 10.0.14393.1737 (rs1_release_inmarket.170914-1249) Microsoft Corporation MSWB7 DLL 131795770645378207 0x7ffabe880000 94208 C:\Windows\System32\FeClient.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT File Encryption Client Interfaces 131795770645378207 0x7ffabe8c0000 454656 C:\Windows\system32\windows.cortana.Desktop.dll 10.0.14393.953 (rs1_release_inmarket.170303-1614) Microsoft Corporation Windows.Cortana.Desktop 131795770645378207 0x7ffabf330000 2457600 C:\Windows\System32\msxml6.dll 6.30.14393.2156 Microsoft Corporation MSXML 6.0 131795770645378207 0x7ffabf5d0000 2924544 C:\Windows\System32\WININET.dll 11.00.14393.447 (rs1_release_inmarket.161102-0100) Microsoft Corporation Расширения Интернета для Win32 131795771229682115 0x7ffabf8a0000 122880 C:\Windows\System32\Windows.Cortana.ProxyStub.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows.Cortana.ProxyStub 131795770645378207 0x7ffabf8c0000 802816 C:\Windows\system32\Windows.Internal.Shell.Broker.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation Windows Shell Broker 131795770645378207 0x7ffabf9c0000 200704 C:\Windows\system32\windows.cortana.onecore.dll 10.0.14393.953 (rs1_release_inmarket.170303-1614) Microsoft Corporation Windows.Cortana.OneCore 131795770645378207 0x7ffabfb00000 626688 C:\Windows\System32\ContentDeliveryManager.Utilities.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation ContentDeliveryManager.Utilities 131795770645378207 0x7ffabff10000 155648 C:\Windows\System32\srvcli.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Server Service Client DLL 131795770645378207 0x7ffac05f0000 94208 C:\Windows\System32\wwapi.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation WWAN API 131795770645378207 0x7ffac0910000 724992 C:\Windows\System32\Windows.Networking.Connectivity.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Networking Connectivity Runtime DLL 131795770645378207 0x7ffac09d0000 884736 C:\Windows\System32\wpnapps.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Приложения для push-уведомлений Windows 131795770645378207 0x7ffac0bf0000 3559424 C:\Windows\System32\ActXPrxy.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation ActiveX Interface Marshaling Library 131795779561161209 0x7ffac1470000 704512 C:\Windows\System32\ieproxy.dll 11.00.14393.2007 (rs1_release.171231-1800) Microsoft Corporation IE ActiveX Interface Marshaling Library 131795770645378207 0x7ffac1c40000 94208 C:\Windows\System32\SystemSettings.DataModel.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SystemSettings.Datamodel private API 131795770645378207 0x7ffac20d0000 110592 C:\Windows\System32\RMCLIENT.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Resource Manager Client 131795770645378207 0x7ffac23c0000 331776 C:\Windows\System32\OneCoreCommonProxyStub.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation OneCore Common Proxy Stub 131795770645378207 0x7ffac2700000 98304 C:\Windows\System32\NETAPI32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API DLL 131795770645378207 0x7ffac2960000 143360 C:\Windows\system32\mssprxy.dll 7.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation Microsoft Search Proxy 131795770645378207 0x7ffac2a20000 81920 C:\Windows\System32\rtutils.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Routing Utilities 131795770645378207 0x7ffac2b80000 40960 C:\Windows\System32\VERSION.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Version Checking and File Installation Libraries 131795770645378207 0x7ffac34e0000 1843200 C:\Windows\System32\urlmon.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширения OLE32 для Win32 131795770645378207 0x7ffac3840000 3088384 C:\Windows\system32\ESENT.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширяемая подсистема хранения данных ESE для Microsoft(R) Windows(R) 131795770645378207 0x7ffac3cb0000 2772992 C:\Windows\System32\iertutil.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служебная программа времени выполнения для Internet Explorer 131795770645378207 0x7ffac4000000 274432 C:\Windows\system32\policymanager.dll 10.0.14393.2035 (rs1_release_inmarket.180110-1910) Microsoft Corporation Policy Manager DLL 131795770645378207 0x7ffac42a0000 659456 C:\Windows\System32\StateRepository.Core.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation StateRepository Core 131795770645378207 0x7ffac4450000 86016 C:\Windows\SYSTEM32\usermgrcli.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation UserMgr API DLL 131795770645378207 0x7ffac46d0000 4161536 C:\Windows\System32\Windows.StateRepository.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Сервер Windows StateRepository API Server 131795771234179313 0x7ffac4b70000 106496 C:\Windows\System32\ShellCommonCommonProxyStub.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ShellCommon Common Proxy Stub 131795770645378207 0x7ffac4b90000 774144 C:\Windows\System32\StoreAgent.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation StoreAgent 131795770645378207 0x7ffac4f60000 143360 C:\Windows\System32\wcmapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Connection Manager Client API 131795770645378207 0x7ffac5630000 339968 C:\Windows\System32\thumbcache.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Кэш эскизов Майкрософт 131795770645378207 0x7ffac5c50000 131072 C:\Windows\System32\rasman.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Remote Access Connection Manager 131795770645378207 0x7ffac5ca0000 200704 C:\Windows\System32\AppExtension.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API AppExtension 131795770645378207 0x7ffac60e0000 221184 C:\Windows\System32\XmlLite.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft XmlLite Library 131795770645378207 0x7ffac69c0000 839680 C:\Windows\System32\WINHTTP.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Службы HTTP Windows 131795770645378207 0x7ffac6a90000 49152 C:\Windows\System32\LocationFrameworkPS.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Geolocation Framework PS 131795771242759756 0x7ffac6ac0000 835584 C:\Windows\System32\Windows.UI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Runtime UI Foundation DLL 131795770645378207 0x7ffac6ba0000 49152 C:\Windows\System32\Secur32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Security Support Provider Interface 131795770645378207 0x7ffac6c40000 2596864 C:\Windows\WinSxS\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.14393.953_none_42151e83c686086b\comctl32.dll 6.10 (rs1_release_inmarket.170303-1614) Microsoft Corporation Библиотека элементов управления взаимодействия с пользователем 131795770645378207 0x7ffac6ec0000 36864 C:\Windows\system32\IconCodecService.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Converts a PNG part of the icon to a legacy bmp icon 131795770645378207 0x7ffac7580000 1077248 C:\Windows\SYSTEM32\mrmcorer.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Windows MRM 131795770645378207 0x7ffac76a0000 159744 C:\Windows\System32\sppc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Software Licensing Client DLL 131795770645378207 0x7ffac7720000 1601536 C:\Windows\System32\OneCoreUAPCommonProxyStub.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation OneCoreUAP Common Proxy Stub 131795770645378207 0x7ffac7aa0000 401408 C:\Windows\SYSTEM32\wlanapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows WLAN AutoConfig Client Side API DLL 131795770645378207 0x7ffac7d00000 32768 C:\Windows\SYSTEM32\familysafetyext.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation FamilySafety ChildAccount Extensions 131795770645378207 0x7ffac90b0000 90112 C:\Windows\System32\wkscli.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Workstation Service Client DLL 131795770645378207 0x7ffac9290000 40960 C:\Windows\System32\DSROLE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DS Setup Client DLL 131795770645378207 0x7ffac92e0000 1269760 C:\Windows\System32\WinTypes.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL основных типов Windows 131795770645378207 0x7ffac9f50000 1736704 C:\Windows\system32\windowscodecs.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Microsoft Windows Codecs Library 131795770645378207 0x7ffaca340000 1593344 C:\Windows\system32\PROPSYS.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Система страниц свойств (Майкрософт) 131795770645378207 0x7ffaca4e0000 77824 C:\Windows\SYSTEM32\wtsapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Remote Desktop Session Host Server SDK APIs 131795770645378207 0x7ffaca570000 421888 C:\Windows\System32\Bcp47Langs.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation BCP47 Language Classes 131795770645378207 0x7ffaca5e0000 155648 C:\Windows\system32\dwmapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Интерфейс API диспетчера окон рабочего стола (Майкрософт) 131795770645378207 0x7ffacadf0000 499712 C:\Windows\System32\apphelp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиентская библиотека совместимости приложений 131795770645378207 0x7ffacaf00000 610304 C:\Windows\system32\uxtheme.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека тем UxTheme (Microsoft) 131795770645378207 0x7ffacb140000 593920 C:\Windows\system32\msvcp110_win.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Microsoft® STL110 C++ Runtime Library 131795770645378207 0x7ffacb1e0000 1163264 C:\Windows\System32\twinapi.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation twinapi.appcore 131795770645378207 0x7ffacb300000 364544 C:\Windows\system32\VEEventDispatcher.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Visual Element Event dispatcher 131795770645378207 0x7ffacb3f0000 163840 C:\Windows\System32\DEVOBJ.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Device Information Set DLL 131795770645378207 0x7ffacb420000 204800 C:\Windows\SYSTEM32\ntmarta.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик Windows NT MARTA 131795770645378207 0x7ffacbd30000 229376 C:\Windows\System32\IPHLPAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API вспомогательного приложения IP 131795770645378207 0x7ffacbe20000 53248 C:\Windows\System32\netutils.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API Helpers DLL 131795770645378207 0x7ffacbe40000 126976 C:\Windows\system32\USERENV.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Userenv 131795770645378207 0x7ffacc150000 94208 C:\Windows\System32\CRYPTSP.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Cryptographic Service Provider API 131795770645378207 0x7ffacc350000 180224 C:\Windows\System32\SspiCli.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Security Support Provider Interface 131795770645378207 0x7ffacc520000 622592 C:\Windows\SYSTEM32\sxs.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Fusion 2.5 131795770645378207 0x7ffacc5c0000 352256 C:\Windows\SYSTEM32\WINSTA.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Winstation Library 131795770645378207 0x7ffacc620000 176128 C:\Windows\System32\bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795770645378207 0x7ffacc6e0000 61440 C:\Windows\System32\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795770645378207 0x7ffacc6f0000 311296 C:\Windows\System32\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795770645378207 0x7ffacc740000 81920 C:\Windows\System32\profapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Profile Basic API 131795770645378207 0x7ffacc8f0000 1003520 C:\Windows\System32\ucrtbase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645378207 0x7ffacc9f0000 434176 C:\Windows\System32\bcryptPrimitives.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Cryptographic Primitives Library 131795770645378207 0x7ffacca60000 122880 C:\Windows\System32\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795770645378207 0x7ffaccae0000 692224 C:\Windows\System32\shcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795770645378207 0x7ffaccb90000 7180288 C:\Windows\System32\windows.storage.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API хранения Microsoft WinRT 131795770645378207 0x7ffacd270000 2215936 C:\Windows\System32\KERNELBASE.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645378207 0x7ffacd710000 638976 C:\Windows\System32\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645378207 0x7ffacd7b0000 270336 C:\Windows\System32\cfgmgr32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Configuration Manager DLL 131795770645378207 0x7ffacd810000 22056960 C:\Windows\System32\SHELL32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Общая библиотека оболочки Windows 131795770645378207 0x7ffaced20000 782336 C:\Windows\System32\OLEAUT32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795770645378207 0x7ffacede0000 450560 C:\Windows\System32\coml2.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft COM for Windows 131795770645378207 0x7ffacee50000 1183744 C:\Windows\System32\RPCRT4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795770645378207 0x7ffacef80000 32768 C:\Windows\System32\NSI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation NSI User-mode interface DLL 131795770645378207 0x7ffacef90000 647168 C:\Windows\System32\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795770645378207 0x7ffacf030000 651264 C:\Windows\System32\clbcatq.dll 2001.12.10941.16384 (rs1_release.160715-1616) Microsoft Corporation COM+ Configuration Catalog 131795770645378207 0x7ffacf0d0000 704512 C:\Windows\System32\KERNEL32.DLL 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645378207 0x7ffacf1e0000 1417216 C:\Windows\System32\MSCTF.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Серверная библиотека MSCTF 131795770645378207 0x7ffacf770000 212992 C:\Windows\System32\GDI32.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation GDI Client DLL 131795770645378207 0x7ffacf820000 434176 C:\Windows\System32\WS2_32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation 32-разрядная библиотека Windows Socket 2.0 131795770645378207 0x7ffacf890000 188416 C:\Windows\System32\IMM32.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Multi-User Windows IMM32 API Client DLL 131795770645378207 0x7ffacf8c0000 1462272 C:\Windows\System32\USER32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795770645378207 0x7ffacfb30000 2916352 C:\Windows\System32\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795770645378207 0x7ffacfe20000 663552 C:\Windows\System32\advapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795770645378207 0x7ffad0070000 1277952 C:\Windows\System32\ole32.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft OLE для Windows 131795770645378207 0x7ffad01b0000 335872 C:\Windows\System32\shlwapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека небольших программ оболочки 131795770645378207 0x7ffad0210000 364544 C:\Windows\System32\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795770645378207 0x7ffad0270000 1908736 C:\Windows\SYSTEM32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 39 3164 664 6 00000000:0031f1da 131765778119045372 0 0 1 Обязательная метка\Низкий обязательный уровень WIN-0UOTFKKVN1S\User ShellExperienceHost.exe C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\ShellExperienceHost.exe "C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\ShellExperienceHost.exe" -ServerName:App.AppXtk181tbxbce2qsex02s8tw7hfxa9xb3t.mca Microsoft Corporation 10.0.14393.2125 (rs1_release.180301-2139) Windows Shell Experience Host 131795770645379346 0x7ff697570000 1662976 C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\ShellExperienceHost.exe 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation Windows Shell Experience Host 131795770645379346 0x7ffa9f150000 6311936 C:\Windows\System32\Windows.Media.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Media Runtime DLL 131795770645379346 0x7ffa9f760000 3796992 C:\Windows\System32\MFMediaEngine.dll 10.0.14393.351 (rs1_release_inmarket.161014-1755) Microsoft Corporation Media Foundation Media Engine DLL 131795770645379346 0x7ffaabad0000 1871872 C:\Windows\System32\mfsrcsnk.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Media Foundation Source and Sink DLL 131795770645379346 0x7ffaafe70000 4239360 C:\Windows\System32\mfcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Media Foundation Core DLL 131795770645379346 0x7ffab0be0000 1421312 C:\Windows\ShellExperiences\NetworkUX.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Network Experience 131795770645379346 0x7ffab4af0000 606208 C:\Windows\SYSTEM32\AUDIOSES.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Сеанс обработки звука 131795770645379346 0x7ffab5b40000 2527232 C:\Windows\SYSTEM32\dwrite.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Службы Microsoft DirectX Typography 131795770645379346 0x7ffab6710000 17231872 C:\Windows\System32\Windows.UI.Xaml.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows.UI.Xaml dll 131795770645379346 0x7ffab9eb0000 2899968 C:\Windows\ShellExperiences\Windows.UI.ActionCenter.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation ActionCenter Experience 131795770645379346 0x7ffaba180000 7880704 C:\Windows\ShellExperiences\StartUI.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Start UI 131795770645379346 0x7ffabaa50000 339968 C:\Windows\System32\NetworkUXBroker.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation NetworkUXBroker DLL 131795770645379346 0x7ffabab30000 303104 C:\Windows\System32\NotificationObjFactory.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Notifications Object Factory 131795770645379346 0x7ffabacc0000 1380352 C:\Windows\System32\SharedStartModel.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Shared Start Model InProc Server 131795770645379346 0x7ffabaf70000 270336 C:\Windows\SYSTEM32\edputil.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служебная программа EDP 131795770645379346 0x7ffabb3c0000 450560 C:\Windows\SYSTEM32\TextInputFramework.dll 10.0.14393.2189 (rs1_release.180329-1711) Microsoft Corporation "TextInputFramework.DYNLINK" 131795770645379346 0x7ffabb490000 512000 C:\Windows\system32\twinapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation twinapi 131795770645379346 0x7ffabbb80000 61440 C:\Windows\SYSTEM32\dsclient.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Data Sharing Service Client DLL 131795770645379346 0x7ffabbb90000 581632 C:\Windows\System32\Windows.System.Launcher.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows.System.Launcher 131795770645379346 0x7ffabbd00000 36864 C:\Windows\SYSTEM32\WpPortingLibrary.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation <d> DLL 131795770645379346 0x7ffabc5c0000 319488 C:\Windows\SYSTEM32\MFSENSORGROUP.dll 10.0.14393.447 (rs1_release_inmarket.161102-0100) Microsoft Corporation Media Foundation Sensor Group DLL 131795770645379346 0x7ffabcef0000 102400 C:\Windows\System32\Windows.Shell.ServiceHostBuilder.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows.Shell.ServiceHostBuilder 131795770645379346 0x7ffabd420000 487424 C:\Windows\System32\RTMediaFrame.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Runtime MediaFrame DLL 131795770645379346 0x7ffabd4a0000 1613824 C:\Windows\System32\Windows.Globalization.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Globalization 131795770645379346 0x7ffabe410000 339968 C:\Windows\SYSTEM32\globcollationhost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation GlobCollationHost 131795770645379346 0x7ffabe6e0000 561152 C:\Windows\system32\directmanipulation.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Direct Manipulation Component 131795770645379346 0x7ffabeac0000 335872 C:\Windows\System32\Windows.Storage.ApplicationData.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Application Data API Server 131795770645379346 0x7ffabf330000 2457600 C:\Windows\System32\msxml6.dll 6.30.14393.2156 Microsoft Corporation MSXML 6.0 131795770645379346 0x7ffabfce0000 90112 C:\Windows\System32\Windows.Globalization.Fontgroups.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Fonts Mapping API 131795770645379346 0x7ffabfd00000 356352 C:\Windows\System32\Windows.Graphics.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation WinRT Windows Graphics DLL 131795770645379346 0x7ffabfd80000 86016 C:\Windows\System32\threadpoolwinrt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows WinRT Threadpool 131795770645379346 0x7ffac0080000 249856 C:\Windows\System32\resampledmo.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Media Resampler 131795770645379346 0x7ffac00c0000 282624 C:\Windows\SYSTEM32\windows.ui.core.textinput.dll 10.0.14393.2189 (rs1_release.180329-1711) Microsoft Corporation Windows.UI.Core.TextInput dll 131795770645379346 0x7ffac0110000 290816 C:\Windows\SYSTEM32\QuickActionsDataModel.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation QuickActionsDataModel 131795770645379346 0x7ffac0160000 491520 C:\Windows\ShellExperiences\QuickActions.dll 131795770645379346 0x7ffac01e0000 397312 C:\Windows\SYSTEM32\wincorlib.DLL 10.0.14393.576 (rs1_release_inmarket.161208-2252) Microsoft Corporation Microsoft Windows ® WinRT core library 131795770645379346 0x7ffac0470000 1478656 C:\Windows\SYSTEM32\MFPlat.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Media Foundation Platform DLL 131795770645379346 0x7ffac0bf0000 3559424 C:\Windows\System32\ActXPrxy.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation ActiveX Interface Marshaling Library 131795770645379346 0x7ffac1c40000 94208 C:\Windows\System32\SystemSettings.DataModel.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SystemSettings.Datamodel private API 131795770645379346 0x7ffac1e50000 188416 C:\Windows\SYSTEM32\RTWorkQ.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL для WorkQueue реального времени 131795770645379346 0x7ffac20d0000 110592 C:\Windows\System32\rmclient.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Resource Manager Client 131795770645379346 0x7ffac23c0000 331776 C:\Windows\System32\OneCoreCommonProxyStub.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation OneCore Common Proxy Stub 131795770645379346 0x7ffac2990000 385024 C:\Windows\SYSTEM32\NInput.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Pen and Touch Input Component 131795770645379346 0x7ffac34e0000 1843200 C:\Windows\SYSTEM32\urlmon.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширения OLE32 для Win32 131795770645379346 0x7ffac3cb0000 2772992 C:\Windows\SYSTEM32\iertutil.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служебная программа времени выполнения для Internet Explorer 131795770645379346 0x7ffac4000000 274432 C:\Windows\SYSTEM32\policymanager.dll 10.0.14393.2035 (rs1_release_inmarket.180110-1910) Microsoft Corporation Policy Manager DLL 131795770645379346 0x7ffac40f0000 40960 C:\Windows\SYSTEM32\msdmo.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DMO Runtime 131795770645379346 0x7ffac42a0000 659456 C:\Windows\SYSTEM32\StateRepository.Core.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation StateRepository Core 131795770645379346 0x7ffac46d0000 4161536 C:\Windows\System32\Windows.StateRepository.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Сервер Windows StateRepository API Server 131795770645379346 0x7ffac4eb0000 147456 C:\Windows\ShellExperiences\Windows.UI.Shell.SharedUtilities.dll 131795770645379346 0x7ffac5350000 1765376 C:\Windows\System32\Windows.UI.Immersive.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation WINDOWS.UI.IMMERSIVE 131795770645379346 0x7ffac5500000 438272 C:\Windows\SYSTEM32\PhotoMetadataHandler.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Photo Metadata Handler 131795770645379346 0x7ffac5b20000 49152 C:\Windows\SYSTEM32\CompPkgSup.DLL 10.0.14393.969 (rs1_release_inmarket.170315-1735) Microsoft Corporation Component Package Support DLL 131795770645379346 0x7ffac5ce0000 1744896 C:\Windows\SYSTEM32\uiautomationcore.dll 7.2.14393.0 (rs1_release.160715-1616) Microsoft Corporation Основные автоматические компоненты Microsoft UI 131795770645379346 0x7ffac5e90000 380928 C:\Windows\System32\Windows.Media.MediaControl.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL сервера MediaControl среды выполнения Windows 131795770645379346 0x7ffac60e0000 221184 C:\Windows\SYSTEM32\XmlLite.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft XmlLite Library 131795770645379346 0x7ffac6ac0000 835584 C:\Windows\System32\Windows.UI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Runtime UI Foundation DLL 131795770645379346 0x7ffac6bd0000 413696 C:\Windows\SYSTEM32\OLEACC.dll 7.2.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Active Accessibility Core Component 131795770645379346 0x7ffac6f50000 5632000 C:\Windows\SYSTEM32\d2d1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека Microsoft D2D 131795770645379346 0x7ffac7580000 1077248 C:\Windows\SYSTEM32\MrmCoreR.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Windows MRM 131795770645379346 0x7ffac76a0000 159744 C:\Windows\SYSTEM32\sppc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Software Licensing Client DLL 131795770645379346 0x7ffac7720000 1601536 C:\Windows\System32\OneCoreUAPCommonProxyStub.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation OneCoreUAP Common Proxy Stub 131795770645379346 0x7ffac7990000 155648 C:\Windows\SYSTEM32\SLC.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Software Licensing Client DLL 131795770645379346 0x7ffac7e30000 40960 C:\Windows\SYSTEM32\fontgroupsoverride.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation fontgroupsoverride.dll 131795770645379346 0x7ffac7fc0000 2674688 C:\Windows\SYSTEM32\d3d10warp.dll 10.0.14393.576 (rs1_release_inmarket.161208-2252) Microsoft Corporation Direct3D 10 Rasterizer 131795770645379346 0x7ffac84e0000 53248 C:\Windows\System32\NotificationControllerPS.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation NotificationController Proxy Stub 131795770645379346 0x7ffac84f0000 299008 C:\Windows\system32\DataExchange.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation Data exchange 131795770645379346 0x7ffac88a0000 2842624 C:\Windows\SYSTEM32\d3d11.dll 10.0.14393.953 (rs1_release_inmarket.170303-1614) Microsoft Corporation Direct3D 11 Runtime 131795770645379346 0x7ffac8f90000 45056 C:\Windows\SYSTEM32\AVRT.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Среда выполнения мультимедиа в реальном времени 131795770645379346 0x7ffac8fa0000 253952 C:\Windows\SYSTEM32\logoncli.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Net Logon Client DLL 131795770645379346 0x7ffac92e0000 1269760 C:\Windows\System32\WinTypes.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL основных типов Windows 131795770645379346 0x7ffac9480000 462848 C:\Windows\System32\MMDevApi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation MMDevice API 131795770645379346 0x7ffac9500000 2682880 C:\Windows\system32\CoreUIComponents.dll 131795770645379346 0x7ffac9f50000 1736704 C:\Windows\system32\windowscodecs.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Microsoft Windows Codecs Library 131795770645379346 0x7ffaca340000 1593344 C:\Windows\SYSTEM32\PROPSYS.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Система страниц свойств (Майкрософт) 131795770645379346 0x7ffaca550000 36864 C:\Windows\SYSTEM32\ksuser.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User CSA Library 131795770645379346 0x7ffaca570000 421888 C:\Windows\SYSTEM32\Bcp47Langs.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation BCP47 Language Classes 131795770645379346 0x7ffaca5e0000 155648 C:\Windows\SYSTEM32\dwmapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Интерфейс API диспетчера окон рабочего стола (Майкрософт) 131795770645379346 0x7ffaca640000 770048 C:\Windows\SYSTEM32\CoreMessaging.dll 10.0.14393.0 Microsoft Corporation Microsoft CoreMessaging Dll 131795770645379346 0x7ffaca770000 1380352 C:\Windows\SYSTEM32\dcomp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft DirectComposition Library 131795770645379346 0x7ffacab40000 176128 C:\Windows\SYSTEM32\winmmbase.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base Multimedia Extension API DLL 131795770645379346 0x7ffacaf00000 610304 C:\Windows\system32\uxtheme.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека тем UxTheme (Microsoft) 131795770645379346 0x7ffacb140000 593920 C:\Windows\SYSTEM32\msvcp110_win.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Microsoft® STL110 C++ Runtime Library 131795770645379346 0x7ffacb1e0000 1163264 C:\Windows\System32\twinapi.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation twinapi.appcore 131795770645379346 0x7ffacb300000 364544 C:\Windows\SYSTEM32\VEEventDispatcher.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Visual Element Event dispatcher 131795770645379346 0x7ffacb3f0000 163840 C:\Windows\SYSTEM32\DEVOBJ.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Device Information Set DLL 131795770645379346 0x7ffacb780000 651264 C:\Windows\SYSTEM32\dxgi.dll 10.0.14393.953 (rs1_release_inmarket.170303-1614) Microsoft Corporation DirectX Graphics Infrastructure 131795770645379346 0x7ffacbe40000 126976 C:\Windows\SYSTEM32\USERENV.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Userenv 131795770645379346 0x7ffacc170000 45056 C:\Windows\SYSTEM32\CRYPTBASE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base cryptographic API DLL 131795770645379346 0x7ffacc350000 180224 C:\Windows\SYSTEM32\SspiCli.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Security Support Provider Interface 131795770645379346 0x7ffacc5c0000 352256 C:\Windows\SYSTEM32\winsta.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Winstation Library 131795770645379346 0x7ffacc620000 176128 C:\Windows\SYSTEM32\bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795770645379346 0x7ffacc6e0000 61440 C:\Windows\System32\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795770645379346 0x7ffacc6f0000 311296 C:\Windows\System32\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795770645379346 0x7ffacc740000 81920 C:\Windows\System32\profapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Profile Basic API 131795770645379346 0x7ffacc760000 65536 C:\Windows\System32\MSASN1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ASN.1 Runtime APIs 131795770645379346 0x7ffacc8f0000 1003520 C:\Windows\System32\ucrtbase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645379346 0x7ffacc9f0000 434176 C:\Windows\System32\bcryptPrimitives.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Cryptographic Primitives Library 131795770645379346 0x7ffacca60000 122880 C:\Windows\System32\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795770645379346 0x7ffaccae0000 692224 C:\Windows\System32\shcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795770645379346 0x7ffaccb90000 7180288 C:\Windows\System32\windows.storage.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API хранения Microsoft WinRT 131795770645379346 0x7ffacd270000 2215936 C:\Windows\System32\KERNELBASE.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645379346 0x7ffacd490000 1871872 C:\Windows\System32\CRYPT32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API32 криптографии 131795770645379346 0x7ffacd710000 638976 C:\Windows\System32\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645379346 0x7ffacd7b0000 270336 C:\Windows\System32\cfgmgr32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Configuration Manager DLL 131795770645379346 0x7ffacd810000 22056960 C:\Windows\System32\SHELL32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Общая библиотека оболочки Windows 131795770645379346 0x7ffaced20000 782336 C:\Windows\System32\OLEAUT32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795770645379346 0x7ffacee50000 1183744 C:\Windows\System32\RPCRT4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795770645379346 0x7ffacef90000 647168 C:\Windows\System32\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795770645379346 0x7ffacf0d0000 704512 C:\Windows\System32\KERNEL32.DLL 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645379346 0x7ffacf1e0000 1417216 C:\Windows\System32\msctf.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Серверная библиотека MSCTF 131795770645379346 0x7ffacf770000 212992 C:\Windows\System32\GDI32.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation GDI Client DLL 131795770645379346 0x7ffacf890000 188416 C:\Windows\System32\IMM32.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Multi-User Windows IMM32 API Client DLL 131795770645379346 0x7ffacf8c0000 1462272 C:\Windows\System32\user32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795770645379346 0x7ffacfb30000 2916352 C:\Windows\System32\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795770645379346 0x7ffacfe20000 663552 C:\Windows\System32\advapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795770645379346 0x7ffad0070000 1277952 C:\Windows\System32\ole32.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft OLE для Windows 131795770645379346 0x7ffad01b0000 335872 C:\Windows\System32\SHLWAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека небольших программ оболочки 131795770645379346 0x7ffad0210000 364544 C:\Windows\System32\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795770645379346 0x7ffad0270000 1908736 C:\Windows\SYSTEM32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 40 4856 3108 11 00000000:0031f1da 131765778391112136 0 0 1 Обязательная метка\Средний обязательный уровень WIN-0UOTFKKVN1S\User MSASCuiL.exe C:\Program Files\Windows Defender\MSASCuiL.exe "C:\Program Files\Windows Defender\MSASCuiL.exe" Microsoft Corporation 4.10.14393.1198 (rs1_release_sec.170427-1353) Windows Defender notification icon 131795770645379462 0x23622c70000 733184 C:\Program Files\Windows Defender\EppManifest.dll 4.10.14393.0 (rs1_release.160715-1616) Microsoft Corporation Модуль ресурсов настройки пользовательского интерфейса 131795770645379462 0x7ff63bef0000 651264 C:\Program Files\Windows Defender\MSASCuiL.exe 4.10.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Windows Defender notification icon 131795770645379462 0x7ffab8da0000 1675264 C:\Windows\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.14393.1715_none_aec701fbddd850fa\gdiplus.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Microsoft GDI+ 131795770645379462 0x7ffabf330000 2457600 C:\Windows\System32\msxml6.dll 6.30.14393.2156 Microsoft Corporation MSXML 6.0 131795770645379462 0x7ffac4560000 950272 C:\Program Files\Windows Defender\mpclient.dll 4.10.14393.1794 (rs1_release.171008-1615) Microsoft Corporation Client Interface 131795770645379462 0x7ffac4ea0000 36864 C:\Windows\SYSTEM32\atlthunk.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation atlthunk.dll 131795770645379462 0x7ffac9f50000 1736704 C:\Windows\SYSTEM32\WindowsCodecs.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Microsoft Windows Codecs Library 131795770645379462 0x7ffaca4e0000 77824 C:\Windows\SYSTEM32\WTSAPI32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Remote Desktop Session Host Server SDK APIs 131795770645379462 0x7ffaca5e0000 155648 C:\Windows\system32\dwmapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Интерфейс API диспетчера окон рабочего стола (Майкрософт) 131795770645379462 0x7ffacaf00000 610304 C:\Windows\system32\uxtheme.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека тем UxTheme (Microsoft) 131795770645379462 0x7ffacb6f0000 143360 C:\Windows\SYSTEM32\gpapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиентские функции API групповой политики 131795770645379462 0x7ffacbbb0000 208896 C:\Windows\system32\rsaenh.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Enhanced Cryptographic Provider 131795770645379462 0x7ffacbe40000 126976 C:\Windows\SYSTEM32\USERENV.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Userenv 131795770645379462 0x7ffacc150000 94208 C:\Windows\SYSTEM32\CRYPTSP.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Cryptographic Service Provider API 131795770645379462 0x7ffacc170000 45056 C:\Windows\SYSTEM32\CRYPTBASE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base cryptographic API DLL 131795770645379462 0x7ffacc620000 176128 C:\Windows\SYSTEM32\bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795770645379462 0x7ffacc6e0000 61440 C:\Windows\System32\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795770645379462 0x7ffacc6f0000 311296 C:\Windows\System32\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795770645379462 0x7ffacc740000 81920 C:\Windows\System32\profapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Profile Basic API 131795770645379462 0x7ffacc760000 65536 C:\Windows\System32\MSASN1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ASN.1 Runtime APIs 131795770645379462 0x7ffacc8f0000 1003520 C:\Windows\System32\ucrtbase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645379462 0x7ffacc9f0000 434176 C:\Windows\System32\bcryptPrimitives.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Cryptographic Primitives Library 131795770645379462 0x7ffacca60000 122880 C:\Windows\System32\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795770645379462 0x7ffacca80000 348160 C:\Windows\System32\WINTRUST.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation Microsoft Trust Verification APIs 131795770645379462 0x7ffaccae0000 692224 C:\Windows\System32\shcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795770645379462 0x7ffaccb90000 7180288 C:\Windows\System32\windows.storage.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API хранения Microsoft WinRT 131795770645379462 0x7ffacd270000 2215936 C:\Windows\System32\KERNELBASE.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645379462 0x7ffacd490000 1871872 C:\Windows\System32\CRYPT32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API32 криптографии 131795770645379462 0x7ffacd710000 638976 C:\Windows\System32\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645379462 0x7ffacd7b0000 270336 C:\Windows\System32\cfgmgr32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Configuration Manager DLL 131795770645379462 0x7ffacd810000 22056960 C:\Windows\System32\SHELL32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Общая библиотека оболочки Windows 131795770645379462 0x7ffaced20000 782336 C:\Windows\System32\OLEAUT32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795770645379462 0x7ffacee50000 1183744 C:\Windows\System32\RPCRT4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795770645379462 0x7ffacef90000 647168 C:\Windows\System32\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795770645379462 0x7ffacf030000 651264 C:\Windows\System32\clbcatq.dll 2001.12.10941.16384 (rs1_release.160715-1616) Microsoft Corporation COM+ Configuration Catalog 131795770645379462 0x7ffacf0d0000 704512 C:\Windows\System32\KERNEL32.DLL 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645379462 0x7ffacf1e0000 1417216 C:\Windows\System32\MSCTF.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Серверная библиотека MSCTF 131795770645379462 0x7ffacf770000 212992 C:\Windows\System32\GDI32.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation GDI Client DLL 131795770645379462 0x7ffacf890000 188416 C:\Windows\System32\IMM32.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Multi-User Windows IMM32 API Client DLL 131795770645379462 0x7ffacf8c0000 1462272 C:\Windows\System32\USER32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795770645379462 0x7ffacfb30000 2916352 C:\Windows\System32\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795770645379462 0x7ffacfe00000 114688 C:\Windows\System32\imagehlp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT Image Helper 131795770645379462 0x7ffacfe20000 663552 C:\Windows\System32\ADVAPI32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795770645379462 0x7ffad0070000 1277952 C:\Windows\System32\ole32.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft OLE для Windows 131795770645379462 0x7ffad01b0000 335872 C:\Windows\System32\SHLWAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека небольших программ оболочки 131795770645379462 0x7ffad0210000 364544 C:\Windows\System32\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795770645379462 0x7ffad0270000 1908736 C:\Windows\SYSTEM32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 41 4928 3108 11 00000000:0031f1da 131765778406250112 0 0 0 Обязательная метка\Средний обязательный уровень WIN-0UOTFKKVN1S\User uTorrent.exe C:\Users\User\AppData\Roaming\uTorrent\uTorrent.exe "C:\Users\User\AppData\Roaming\uTorrent\uTorrent.exe" /MINIMIZED BitTorrent Inc. 3.5.4.44498 µTorrent 131795770645379614 0x400000 5406720 C:\Users\User\AppData\Roaming\uTorrent\uTorrent.exe 3.5.4.44498 BitTorrent Inc. µTorrent 131795770645379614 0x5c020000 335872 C:\Windows\System32\wow64.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation Win32 Emulation on NT64 131795770645379614 0x5c080000 487424 C:\Windows\System32\wow64win.dll 10.0.14393.1884 (rs1_release.171101-1233) Microsoft Corporation Wow64 Console and Win32 API Logging 131795770645379614 0x5c100000 40960 C:\Windows\System32\wow64cpu.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation AMD64 Wow64 CPU 131795770645379614 0x60750000 1556480 C:\Program Files (x86)\360\Total Security\safemon\safemon.dll 8, 4, 0, 1420 Qihu 360 Software Co., Ltd. 360 Internet Security Internet Protection 131795770645379614 0x6c5c0000 1384448 C:\Windows\SysWOW64\UIAutomationCore.DLL 7.2.14393.0 (rs1_release.160715-1616) Microsoft Corporation Основные автоматические компоненты Microsoft UI 131795770645379614 0x6cda0000 528384 C:\Windows\SysWOW64\sxs.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Fusion 2.5 131795770645379614 0x6e140000 348160 C:\Windows\SysWOW64\upnp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API контрольной точки UPnP 131795770645379614 0x6e1a0000 98304 C:\Windows\SysWOW64\ATL.DLL 3.05.2284 Microsoft Corporation ATL Module for Windows XP (Unicode) 131795770645379614 0x6e1c0000 307200 C:\Windows\SysWOW64\hnetcfg.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Диспетчер конфигурации домашней сети 131795770645379614 0x6ef20000 65536 C:\Windows\SysWOW64\SSDPAPI.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation SSDP Client API DLL 131795770645379614 0x6fc70000 385024 C:\Windows\SysWOW64\FirewallAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API брандмауэра Windows 131795770645379614 0x6fd30000 139264 C:\Windows\SysWOW64\DEVOBJ.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Device Information Set DLL 131795770645379614 0x703d0000 2056192 C:\Windows\SysWOW64\DWrite.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Службы Microsoft DirectX Typography 131795770645379614 0x705e0000 344064 C:\Windows\SysWOW64\OLEACC.dll 7.2.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Active Accessibility Core Component 131795770645379614 0x70640000 1499136 C:\Windows\SysWOW64\WindowsCodecs.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Microsoft Windows Codecs Library 131795770645379614 0x707b0000 110592 C:\Windows\SysWOW64\ncryptsslp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft SChannel Provider 131795770645379614 0x70a40000 81920 C:\Windows\SysWOW64\NLAapi.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Network Location Awareness 2 131795770645379614 0x70a60000 90112 C:\Windows\SysWOW64\pnrpnsp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик пространства имен PNRP 131795770645379614 0x70a80000 409600 C:\Windows\SysWOW64\schannel.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик безопасности TLS/SSL 131795770645379614 0x70af0000 36864 C:\Windows\SysWOW64\npmproxy.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Network List Manager Proxy 131795770645379614 0x70b40000 69632 C:\Windows\SysWOW64\mskeyprotect.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик защиты ключей (Майкрософт) 131795770645379614 0x70b70000 163840 C:\Windows\SysWOW64\ntmarta.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик Windows NT MARTA 131795770645379614 0x70ba0000 188416 C:\Windows\SysWOW64\FWPolicyIOMgr.dll 10.0.14393.2189 (rs1_release.180329-1711) Microsoft Corporation FwPolicyIoMgr DLL 131795770645379614 0x70bd0000 147456 C:\Windows\SysWOW64\fwbase.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Firewall Base DLL 131795770645379614 0x70c00000 49152 C:\Windows\SysWOW64\winrnr.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation LDAP RnR Provider DLL 131795770645379614 0x70c10000 73728 C:\Windows\SysWOW64\napinsp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик оболочки совместимости для имен электронной почты 131795770645379614 0x70ca0000 45056 C:\Windows\SysWOW64\NETUTILS.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API Helpers DLL 131795770645379614 0x70cc0000 65536 C:\Windows\SysWOW64\ondemandconnroutehelper.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation On Demand Connctiond Route Helper 131795770645379614 0x70e60000 176128 C:\Windows\SysWOW64\NTASN1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft ASN.1 API 131795770645379614 0x71140000 77824 C:\Windows\SysWOW64\NETAPI32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API DLL 131795770645379614 0x71610000 77824 C:\Windows\SysWOW64\dhcpcsvc6.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиент DHCPv6 131795770645379614 0x725e0000 2273280 C:\Windows\SysWOW64\iertutil.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служебная программа времени выполнения для Internet Explorer 131795770645379614 0x728e0000 1372160 C:\Windows\SysWOW64\PROPSYS.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Система страниц свойств (Майкрософт) 131795770645379614 0x72b90000 126976 C:\Windows\SysWOW64\dwmapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Интерфейс API диспетчера окон рабочего стола (Майкрософт) 131795770645379614 0x73a40000 32768 C:\Windows\SysWOW64\WINNSI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Network Store Information RPC interface 131795770645379614 0x73a50000 299008 C:\Windows\SysWOW64\fwpuclnt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API пользовательского режима FWP/IPsec 131795770645379614 0x73aa0000 32768 C:\Windows\SysWOW64\DPAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Data Protection API 131795770645379614 0x73ab0000 32768 C:\Windows\SysWOW64\rasadhlp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Remote Access AutoDial Helper 131795770645379614 0x73ac0000 81920 C:\Windows\SysWOW64\dhcpcsvc.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служба DHCP-клиента 131795770645379614 0x73ae0000 40960 C:\Windows\SysWOW64\Secur32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Security Support Provider Interface 131795770645379614 0x73c50000 1478656 C:\Windows\WinSxS\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.14393.1715_none_f67438d2f2547a00\gdiplus.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Microsoft GDI+ 131795770645379614 0x73ee0000 61440 C:\Windows\SysWOW64\WTSAPI32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Remote Desktop Session Host Server SDK APIs 131795770645379614 0x73ef0000 24576 C:\Windows\SysWOW64\MSIMG32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation GDIEXT Client DLL 131795770645379614 0x73f00000 192512 C:\Windows\SysWOW64\IPHLPAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API вспомогательного приложения IP 131795770645379614 0x73f30000 512000 C:\Windows\SysWOW64\DNSAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Динамическая библиотека API DNS-клиента 131795770645379614 0x73fc0000 28672 C:\Windows\SysWOW64\wship6.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL помощника Winsock2 (TL/IPv6) 131795770645379614 0x73fd0000 28672 C:\Windows\SysWOW64\wshtcpip.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL помощника службы Winsock2 (TL/IPv4) 131795770645379614 0x73fe0000 32768 C:\Windows\SysWOW64\wshqos.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL помощника службы QoS Winsock2 131795770645379614 0x73ff0000 319488 C:\Windows\SysWOW64\mswsock.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширение поставщика службы API Microsoft Windows Sockets 2.0 131795770645379614 0x74040000 126976 C:\Windows\SysWOW64\gpapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиентские функции API групповой политики 131795770645379614 0x74060000 192512 C:\Windows\SysWOW64\rsaenh.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Enhanced Cryptographic Provider 131795770645379614 0x74110000 479232 C:\Windows\SysWOW64\uxtheme.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека тем UxTheme (Microsoft) 131795770645379614 0x74190000 110592 C:\Windows\SysWOW64\bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795770645379614 0x741b0000 77824 C:\Windows\SysWOW64\CRYPTSP.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Cryptographic Service Provider API 131795770645379614 0x74260000 2514944 C:\Windows\SysWOW64\WININET.dll 11.00.14393.447 (rs1_release_inmarket.161102-0100) Microsoft Corporation Расширения Интернета для Win32 131795770645379614 0x744d0000 2138112 C:\Windows\WinSxS\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.14393.953_none_89c2555adb023171\COMCTL32.dll 6.10 (rs1_release_inmarket.170303-1614) Microsoft Corporation Библиотека элементов управления взаимодействия с пользователем 131795770645379614 0x746e0000 32768 C:\Windows\SysWOW64\VERSION.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Version Checking and File Installation Libraries 131795770645379614 0x746f0000 106496 C:\Windows\SysWOW64\USERENV.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Userenv 131795770645379614 0x747d0000 40960 C:\Windows\SysWOW64\CRYPTBASE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base cryptographic API DLL 131795770645379614 0x747e0000 126976 C:\Windows\SysWOW64\SspiCli.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Security Support Provider Interface 131795770645379614 0x74800000 151552 C:\Windows\SysWOW64\IMM32.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Multi-User Windows IMM32 API Client DLL 131795770645379614 0x74910000 2170880 C:\Windows\SysWOW64\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795770645379614 0x74b30000 53248 C:\Windows\SysWOW64\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795770645379614 0x74b40000 102400 C:\Windows\SysWOW64\imagehlp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT Image Helper 131795770645379614 0x74b60000 790528 C:\Windows\SysWOW64\RPCRT4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795770645379614 0x74c30000 1417216 C:\Windows\SysWOW64\gdi32full.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation GDI Client DLL 131795770645379614 0x74d90000 24576 C:\Windows\SysWOW64\PSAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Process Status Helper 131795770645379614 0x74da0000 778240 C:\Windows\SysWOW64\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795770645379614 0x74e60000 557056 C:\Windows\SysWOW64\shcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795770645379614 0x74ef0000 540672 C:\Windows\SysWOW64\clbcatq.dll 2001.12.10941.16384 (rs1_release.160715-1616) Microsoft Corporation COM+ Configuration Catalog 131795770645379614 0x74f80000 278528 C:\Windows\SysWOW64\wintrust.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation Microsoft Trust Verification APIs 131795770645379614 0x74fd0000 405504 C:\Windows\SysWOW64\WS2_32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation 32-разрядная библиотека Windows Socket 2.0 131795770645379614 0x75040000 282624 C:\Windows\SysWOW64\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795770645379614 0x75090000 1265664 C:\Windows\SysWOW64\MSCTF.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Серверная библиотека MSCTF 131795770645379614 0x751d0000 57344 C:\Windows\SysWOW64\MSASN1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ASN.1 Runtime APIs 131795770645379614 0x751e0000 1708032 C:\Windows\SysWOW64\KERNELBASE.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645379614 0x75390000 266240 C:\Windows\SysWOW64\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795770645379614 0x753e0000 1560576 C:\Windows\SysWOW64\CRYPT32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API32 криптографии 131795770645379614 0x75560000 487424 C:\Windows\SysWOW64\ADVAPI32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795770645379614 0x756c0000 5693440 C:\Windows\SysWOW64\windows.storage.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API хранения Microsoft WinRT 131795770645379614 0x75c90000 286720 C:\Windows\SysWOW64\SHLWAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека небольших программ оболочки 131795770645379614 0x75ce0000 20811776 C:\Windows\SysWOW64\SHELL32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Общая библиотека оболочки Windows 131795770645379614 0x770c0000 4239360 C:\Windows\SysWOW64\SETUPAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Setup API 131795770645379614 0x774d0000 86016 C:\Windows\SysWOW64\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795770645379614 0x774f0000 61440 C:\Windows\SysWOW64\profapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Profile Basic API 131795770645379614 0x77560000 1437696 C:\Windows\SysWOW64\USER32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795770645379614 0x776c0000 368640 C:\Windows\SysWOW64\bcryptPrimitives.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation Windows Cryptographic Primitives Library 131795770645379614 0x77780000 503808 C:\Windows\SysWOW64\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645379614 0x77800000 606208 C:\Windows\SysWOW64\OLEAUT32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795770645379614 0x77ac0000 966656 C:\Windows\SysWOW64\ole32.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft OLE для Windows 131795770645379614 0x77bb0000 176128 C:\Windows\SysWOW64\GDI32.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation GDI Client DLL 131795770645379614 0x77be0000 937984 C:\Windows\SysWOW64\COMDLG32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека общих диалоговых окон 131795770645379614 0x77cd0000 221184 C:\Windows\SysWOW64\cfgmgr32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Configuration Manager DLL 131795770645379614 0x77d10000 28672 C:\Windows\SysWOW64\NSI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation NSI User-mode interface DLL 131795770645379614 0x77d20000 1585152 C:\Windows\SysWOW64\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 131795770645379614 0x7ffad0270000 1908736 C:\Windows\SYSTEM32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 42 3608 664 6 00000000:0031f1da 131765778496229053 0 0 1 Обязательная метка\Средний обязательный уровень WIN-0UOTFKKVN1S\User ApplicationFrameHost.exe C:\Windows\system32\ApplicationFrameHost.exe C:\Windows\system32\ApplicationFrameHost.exe -Embedding Microsoft Corporation 10.0.14393.0 (rs1_release.160715-1616) Application Frame Host 131795770645379722 0x7ff6aa270000 61440 C:\Windows\system32\ApplicationFrameHost.exe 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Application Frame Host 131795770645379722 0x7ffabb490000 512000 C:\Windows\System32\TWINAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation twinapi 131795770645379722 0x7ffac0bf0000 3559424 C:\Windows\System32\ActXPrxy.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation ActiveX Interface Marshaling Library 131795770645379722 0x7ffac3cb0000 2772992 C:\Windows\SYSTEM32\iertutil.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служебная программа времени выполнения для Internet Explorer 131795770645379722 0x7ffac5240000 1114112 C:\Windows\System32\ApplicationFrame.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Фрейм приложения 131795770645379722 0x7ffac5ce0000 1744896 C:\Windows\system32\UIAutomationCore.DLL 7.2.14393.0 (rs1_release.160715-1616) Microsoft Corporation Основные автоматические компоненты Microsoft UI 131795770645379722 0x7ffac6bd0000 413696 C:\Windows\system32\OLEACC.dll 7.2.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Active Accessibility Core Component 131795770645379722 0x7ffac6f50000 5632000 C:\Windows\System32\d2d1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека Microsoft D2D 131795770645379722 0x7ffac7580000 1077248 C:\Windows\SYSTEM32\mrmcorer.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Windows MRM 131795770645379722 0x7ffac7fc0000 2674688 C:\Windows\system32\D3D10Warp.dll 10.0.14393.576 (rs1_release_inmarket.161208-2252) Microsoft Corporation Direct3D 10 Rasterizer 131795770645379722 0x7ffac88a0000 2842624 C:\Windows\System32\d3d11.dll 10.0.14393.953 (rs1_release_inmarket.170303-1614) Microsoft Corporation Direct3D 11 Runtime 131795770645379722 0x7ffac9ec0000 294912 C:\Windows\System32\UIAnimation.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Animation Manager 131795770645379722 0x7ffac9f50000 1736704 C:\Windows\system32\windowscodecs.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Microsoft Windows Codecs Library 131795770645379722 0x7ffaca340000 1593344 C:\Windows\System32\PROPSYS.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Система страниц свойств (Майкрософт) 131795770645379722 0x7ffaca570000 421888 C:\Windows\system32\Bcp47Langs.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation BCP47 Language Classes 131795770645379722 0x7ffaca5e0000 155648 C:\Windows\System32\dwmapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Интерфейс API диспетчера окон рабочего стола (Майкрософт) 131795770645379722 0x7ffaca770000 1380352 C:\Windows\System32\dcomp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft DirectComposition Library 131795770645379722 0x7ffacaf00000 610304 C:\Windows\System32\UxTheme.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека тем UxTheme (Microsoft) 131795770645379722 0x7ffacb1e0000 1163264 C:\Windows\System32\twinapi.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation twinapi.appcore 131795770645379722 0x7ffacb3f0000 163840 C:\Windows\System32\DEVOBJ.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Device Information Set DLL 131795770645379722 0x7ffacb780000 651264 C:\Windows\System32\dxgi.dll 10.0.14393.953 (rs1_release_inmarket.170303-1614) Microsoft Corporation DirectX Graphics Infrastructure 131795770645379722 0x7ffacbe40000 126976 C:\Windows\system32\USERENV.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Userenv 131795770645379722 0x7ffacc520000 622592 C:\Windows\SYSTEM32\sxs.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Fusion 2.5 131795770645379722 0x7ffacc620000 176128 C:\Windows\System32\bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795770645379722 0x7ffacc6e0000 61440 C:\Windows\System32\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795770645379722 0x7ffacc6f0000 311296 C:\Windows\System32\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795770645379722 0x7ffacc740000 81920 C:\Windows\System32\profapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Profile Basic API 131795770645379722 0x7ffacc760000 65536 C:\Windows\System32\MSASN1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ASN.1 Runtime APIs 131795770645379722 0x7ffacc8f0000 1003520 C:\Windows\System32\ucrtbase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645379722 0x7ffacc9f0000 434176 C:\Windows\System32\bcryptPrimitives.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Cryptographic Primitives Library 131795770645379722 0x7ffacca60000 122880 C:\Windows\System32\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795770645379722 0x7ffaccae0000 692224 C:\Windows\System32\SHCORE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795770645379722 0x7ffaccb90000 7180288 C:\Windows\System32\windows.storage.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API хранения Microsoft WinRT 131795770645379722 0x7ffacd270000 2215936 C:\Windows\System32\KERNELBASE.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645379722 0x7ffacd490000 1871872 C:\Windows\System32\CRYPT32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API32 криптографии 131795770645379722 0x7ffacd710000 638976 C:\Windows\System32\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645379722 0x7ffacd7b0000 270336 C:\Windows\System32\cfgmgr32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Configuration Manager DLL 131795770645379722 0x7ffacd810000 22056960 C:\Windows\System32\SHELL32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Общая библиотека оболочки Windows 131795770645379722 0x7ffaced20000 782336 C:\Windows\System32\OLEAUT32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795770645379722 0x7ffacee50000 1183744 C:\Windows\System32\RPCRT4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795770645379722 0x7ffacef90000 647168 C:\Windows\System32\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795770645379722 0x7ffacf030000 651264 C:\Windows\System32\clbcatq.dll 2001.12.10941.16384 (rs1_release.160715-1616) Microsoft Corporation COM+ Configuration Catalog 131795770645379722 0x7ffacf0d0000 704512 C:\Windows\System32\KERNEL32.DLL 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645379722 0x7ffacf1e0000 1417216 C:\Windows\System32\MSCTF.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Серверная библиотека MSCTF 131795770645379722 0x7ffacf770000 212992 C:\Windows\System32\GDI32.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation GDI Client DLL 131795770645379722 0x7ffacf890000 188416 C:\Windows\System32\IMM32.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Multi-User Windows IMM32 API Client DLL 131795770645379722 0x7ffacf8c0000 1462272 C:\Windows\System32\USER32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795770645379722 0x7ffacfb30000 2916352 C:\Windows\System32\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795770645379722 0x7ffacfe20000 663552 C:\Windows\System32\advapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795770645379722 0x7ffad01b0000 335872 C:\Windows\System32\SHLWAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека небольших программ оболочки 131795770645379722 0x7ffad0210000 364544 C:\Windows\System32\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795770645379722 0x7ffad0270000 1908736 C:\Windows\SYSTEM32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 43 5952 4928 41 00000000:0031f1da 131765778883326814 0 1 0 Обязательная метка\Низкий обязательный уровень WIN-0UOTFKKVN1S\User utorrentie.exe C:\Users\User\AppData\Roaming\uTorrent\updates\3.5.4_44498\utorrentie.exe "C:\Users\User\AppData\Roaming\uTorrent\updates\3.5.4_44498\utorrentie.exe" uTorrent_4928_02D54150_1240996307 µTorrent4823DF041B09 uTorrent BitTorrent Inc. 1.0.0 WebHelper 131795770645379833 0x1180000 417792 C:\Users\User\AppData\Roaming\uTorrent\updates\3.5.4_44498\utorrentie.exe 1.0.0 BitTorrent Inc. WebHelper 131795770645379833 0x5c020000 335872 C:\Windows\System32\wow64.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation Win32 Emulation on NT64 131795770645379833 0x5c080000 487424 C:\Windows\System32\wow64win.dll 10.0.14393.1884 (rs1_release.171101-1233) Microsoft Corporation Wow64 Console and Win32 API Logging 131795770645379833 0x5c100000 40960 C:\Windows\System32\wow64cpu.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation AMD64 Wow64 CPU 131795770645379833 0x63490000 221184 C:\Windows\SysWOW64\dinput8.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft DirectInput 131795770645379833 0x634d0000 561152 C:\Windows\SysWOW64\DSOUND.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DirectSound 131795770645379833 0x63560000 23334912 C:\Windows\SysWOW64\Macromed\Flash\Flash.ocx 29,0,0,140 Adobe Systems, Inc. Adobe Flash Player 29.0 r0 131795770645379833 0x64d00000 5079040 C:\Windows\SysWOW64\d2d1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека Microsoft D2D 131795770645379833 0x651e0000 20537344 C:\Windows\SysWOW64\mshtml.dll 11.00.14393.447 (rs1_release_inmarket.161102-0100) Microsoft Corporation Средство просмотра HTML Microsoft® 131795770645379833 0x66580000 12247040 C:\Windows\SysWOW64\ieframe.dll 11.00.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Браузер 131795770645379833 0x6b670000 212992 C:\Windows\SysWOW64\mlang.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL многоязыковой поддержки 131795770645379833 0x6b6b0000 36864 C:\Windows\SysWOW64\atlthunk.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation atlthunk.dll 131795770645379833 0x6c290000 987136 C:\Windows\SysWOW64\twinapi.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation twinapi.appcore 131795770645379833 0x6c390000 1126400 C:\Windows\SysWOW64\dcomp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft DirectComposition Library 131795770645379833 0x6c4b0000 278528 C:\Windows\SysWOW64\dataexchange.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation Data exchange 131795770645379833 0x6c540000 483328 C:\Windows\SysWOW64\webio.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API протоколов передачи по Веб 131795770645379833 0x6c5c0000 1384448 C:\Windows\SysWOW64\UIAutomationCore.DLL 7.2.14393.0 (rs1_release.160715-1616) Microsoft Corporation Основные автоматические компоненты Microsoft UI 131795770645379833 0x6c720000 2318336 C:\Windows\SysWOW64\d3d10warp.dll 10.0.14393.576 (rs1_release_inmarket.161208-2252) Microsoft Corporation Direct3D 10 Rasterizer 131795770645379833 0x6c960000 57344 C:\Windows\SysWOW64\msimtf.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Active IMM Server DLL 131795770645379833 0x6c970000 3698688 C:\Windows\SysWOW64\jscript9.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft ® JScript 131795770645379833 0x6cd00000 69632 C:\Windows\SysWOW64\WLDP.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Политика блокировки Windows 131795770645379833 0x6cd20000 135168 C:\Windows\SysWOW64\srpapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL программных интерфейсов (API) поставщика общих ресурсов 131795770645379833 0x6cda0000 528384 C:\Windows\SysWOW64\sxs.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Fusion 2.5 131795770645379833 0x6d080000 151552 C:\Windows\SysWOW64\cryptnet.dll 10.0.14393.2035 (rs1_release_inmarket.180110-1910) Microsoft Corporation Crypto Network Related API 131795770645379833 0x6d0b0000 847872 C:\Windows\SysWOW64\wintypes.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL основных типов Windows 131795770645379833 0x6fd30000 139264 C:\Windows\SysWOW64\DEVOBJ.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Device Information Set DLL 131795770645379833 0x6fd60000 360448 C:\Windows\SysWOW64\MMDevApi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation MMDevice API 131795770645379833 0x6fdc0000 507904 C:\Windows\SysWOW64\AUDIOSES.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Сеанс обработки звука 131795770645379833 0x6fe90000 544768 C:\Windows\SysWOW64\mscms.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL-библиотека системы сопоставления цветов Майкрософт 131795770645379833 0x70340000 536576 C:\Windows\SysWOW64\dxgi.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation DirectX Graphics Infrastructure 131795770645379833 0x703d0000 2056192 C:\Windows\SysWOW64\DWrite.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Службы Microsoft DirectX Typography 131795770645379833 0x70640000 1499136 C:\Windows\SysWOW64\windowscodecs.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Microsoft Windows Codecs Library 131795770645379833 0x707b0000 110592 C:\Windows\SysWOW64\ncryptsslp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft SChannel Provider 131795770645379833 0x707f0000 2293760 C:\Windows\SysWOW64\d3d11.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation Direct3D 11 Runtime 131795770645379833 0x70a80000 409600 C:\Windows\SysWOW64\schannel.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик безопасности TLS/SSL 131795770645379833 0x70b40000 69632 C:\Windows\SysWOW64\mskeyprotect.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик защиты ключей (Майкрософт) 131795770645379833 0x70ca0000 45056 C:\Windows\SysWOW64\NETUTILS.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API Helpers DLL 131795770645379833 0x70cc0000 65536 C:\Windows\SysWOW64\ondemandconnroutehelper.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation On Demand Connctiond Route Helper 131795770645379833 0x70e60000 176128 C:\Windows\SysWOW64\NTASN1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft ASN.1 API 131795770645379833 0x71140000 77824 C:\Windows\SysWOW64\NETAPI32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API DLL 131795770645379833 0x71610000 77824 C:\Windows\SysWOW64\dhcpcsvc6.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиент DHCPv6 131795770645379833 0x725e0000 2273280 C:\Windows\SysWOW64\iertutil.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служебная программа времени выполнения для Internet Explorer 131795770645379833 0x728e0000 1372160 C:\Windows\SysWOW64\PROPSYS.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Система страниц свойств (Майкрософт) 131795770645379833 0x72b90000 126976 C:\Windows\SysWOW64\dwmapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Интерфейс API диспетчера окон рабочего стола (Майкрософт) 131795770645379833 0x72cc0000 1658880 C:\Windows\SysWOW64\urlmon.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширения OLE32 для Win32 131795770645379833 0x73a40000 32768 C:\Windows\SysWOW64\WINNSI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Network Store Information RPC interface 131795770645379833 0x73a50000 299008 C:\Windows\SysWOW64\fwpuclnt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API пользовательского режима FWP/IPsec 131795770645379833 0x73aa0000 32768 C:\Windows\SysWOW64\DPAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Data Protection API 131795770645379833 0x73ab0000 32768 C:\Windows\SysWOW64\rasadhlp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Remote Access AutoDial Helper 131795770645379833 0x73ac0000 81920 C:\Windows\SysWOW64\dhcpcsvc.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служба DHCP-клиента 131795770645379833 0x73ae0000 40960 C:\Windows\SysWOW64\Secur32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Security Support Provider Interface 131795770645379833 0x73ef0000 24576 C:\Windows\SysWOW64\MSIMG32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation GDIEXT Client DLL 131795770645379833 0x73f00000 192512 C:\Windows\SysWOW64\IPHLPAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API вспомогательного приложения IP 131795770645379833 0x73f30000 512000 C:\Windows\SysWOW64\DNSAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Динамическая библиотека API DNS-клиента 131795770645379833 0x73ff0000 319488 C:\Windows\SysWOW64\mswsock.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширение поставщика службы API Microsoft Windows Sockets 2.0 131795770645379833 0x74060000 192512 C:\Windows\SysWOW64\rsaenh.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Enhanced Cryptographic Provider 131795770645379833 0x74110000 479232 C:\Windows\SysWOW64\uxtheme.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека тем UxTheme (Microsoft) 131795770645379833 0x74190000 110592 C:\Windows\SysWOW64\bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795770645379833 0x741b0000 77824 C:\Windows\SysWOW64\CRYPTSP.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Cryptographic Service Provider API 131795770645379833 0x741f0000 143360 C:\Windows\SysWOW64\WINMMBASE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base Multimedia Extension API DLL 131795770645379833 0x74230000 147456 C:\Windows\SysWOW64\WINMM.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation MCI API DLL 131795770645379833 0x74260000 2514944 C:\Windows\SysWOW64\WININET.dll 11.00.14393.447 (rs1_release_inmarket.161102-0100) Microsoft Corporation Расширения Интернета для Win32 131795770645379833 0x744d0000 2138112 C:\Windows\WinSxS\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.14393.953_none_89c2555adb023171\comctl32.dll 6.10 (rs1_release_inmarket.170303-1614) Microsoft Corporation Библиотека элементов управления взаимодействия с пользователем 131795770645379833 0x746e0000 32768 C:\Windows\SysWOW64\VERSION.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Version Checking and File Installation Libraries 131795770645379833 0x746f0000 106496 C:\Windows\SysWOW64\USERENV.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Userenv 131795770645379833 0x74730000 598016 C:\Windows\SysWOW64\apphelp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиентская библиотека совместимости приложений 131795770645379833 0x747d0000 40960 C:\Windows\SysWOW64\CRYPTBASE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base cryptographic API DLL 131795770645379833 0x747e0000 126976 C:\Windows\SysWOW64\SspiCli.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Security Support Provider Interface 131795770645379833 0x74800000 151552 C:\Windows\SysWOW64\IMM32.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Multi-User Windows IMM32 API Client DLL 131795770645379833 0x74910000 2170880 C:\Windows\SysWOW64\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795770645379833 0x74b30000 53248 C:\Windows\SysWOW64\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795770645379833 0x74b60000 790528 C:\Windows\SysWOW64\RPCRT4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795770645379833 0x74c30000 1417216 C:\Windows\SysWOW64\gdi32full.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation GDI Client DLL 131795770645379833 0x74da0000 778240 C:\Windows\SysWOW64\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795770645379833 0x74e60000 557056 C:\Windows\SysWOW64\shcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795770645379833 0x74ef0000 540672 C:\Windows\SysWOW64\clbcatq.dll 2001.12.10941.16384 (rs1_release.160715-1616) Microsoft Corporation COM+ Configuration Catalog 131795770645379833 0x74f80000 278528 C:\Windows\SysWOW64\WINTRUST.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation Microsoft Trust Verification APIs 131795770645379833 0x74fd0000 405504 C:\Windows\SysWOW64\WS2_32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation 32-разрядная библиотека Windows Socket 2.0 131795770645379833 0x75040000 282624 C:\Windows\SysWOW64\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795770645379833 0x75090000 1265664 C:\Windows\SysWOW64\MSCTF.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Серверная библиотека MSCTF 131795770645379833 0x751d0000 57344 C:\Windows\SysWOW64\MSASN1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ASN.1 Runtime APIs 131795770645379833 0x751e0000 1708032 C:\Windows\SysWOW64\KERNELBASE.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645379833 0x75390000 266240 C:\Windows\SysWOW64\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795770645379833 0x753e0000 1560576 C:\Windows\SysWOW64\CRYPT32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API32 криптографии 131795770645379833 0x75560000 487424 C:\Windows\SysWOW64\advapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795770645379833 0x756c0000 5693440 C:\Windows\SysWOW64\windows.storage.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API хранения Microsoft WinRT 131795770645379833 0x75c30000 372736 C:\Windows\SysWOW64\coml2.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft COM for Windows 131795770645379833 0x75c90000 286720 C:\Windows\SysWOW64\shlwapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека небольших программ оболочки 131795770645379833 0x75ce0000 20811776 C:\Windows\SysWOW64\SHELL32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Общая библиотека оболочки Windows 131795770645379833 0x774d0000 86016 C:\Windows\SysWOW64\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795770645379833 0x774f0000 61440 C:\Windows\SysWOW64\profapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Profile Basic API 131795770645379833 0x77560000 1437696 C:\Windows\SysWOW64\USER32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795770645379833 0x776c0000 368640 C:\Windows\SysWOW64\bcryptPrimitives.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation Windows Cryptographic Primitives Library 131795770645379833 0x77780000 503808 C:\Windows\SysWOW64\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645379833 0x77800000 606208 C:\Windows\SysWOW64\OLEAUT32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795770645379833 0x77ac0000 966656 C:\Windows\SysWOW64\ole32.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft OLE для Windows 131795770645379833 0x77bb0000 176128 C:\Windows\SysWOW64\GDI32.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation GDI Client DLL 131795770645379833 0x77cd0000 221184 C:\Windows\SysWOW64\cfgmgr32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Configuration Manager DLL 131795770645379833 0x77d10000 28672 C:\Windows\SysWOW64\NSI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation NSI User-mode interface DLL 131795770645379833 0x77d20000 1585152 C:\Windows\SysWOW64\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 131795770645379833 0x7ffad0270000 1908736 C:\Windows\SYSTEM32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 44 5800 664 6 00000000:0031f1da 131765779120650795 0 0 1 Обязательная метка\Средний обязательный уровень WIN-0UOTFKKVN1S\User DllHost.exe C:\Windows\system32\DllHost.exe C:\Windows\system32\DllHost.exe /Processid:{49F6E667-6658-4BD1-9DE9-6AF87F9FAF85} Microsoft Corporation 10.0.14393.0 (rs1_release.160715-1616) COM Surrogate 131795770645379938 0x7ff7a2280000 36864 C:\Windows\system32\DllHost.exe 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation COM Surrogate 131795770645379938 0x7ffac3840000 3088384 C:\Windows\SYSTEM32\esent.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширяемая подсистема хранения данных ESE для Microsoft(R) Windows(R) 131795770645379938 0x7ffac3b80000 286720 C:\Windows\system32\indexeddbserver.dll 10.0.14393.2189 (rs1_release.180329-1711) Microsoft Corporation IndexedDb host 131795770645379938 0x7ffac3cb0000 2772992 C:\Windows\system32\iertutil.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служебная программа времени выполнения для Internet Explorer 131795770645379938 0x7ffacaf00000 610304 C:\Windows\system32\uxtheme.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека тем UxTheme (Microsoft) 131795770645379938 0x7ffacc170000 45056 C:\Windows\system32\CRYPTBASE.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base cryptographic API DLL 131795770645379938 0x7ffacc6e0000 61440 C:\Windows\System32\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795770645379938 0x7ffacc6f0000 311296 C:\Windows\System32\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795770645379938 0x7ffacc740000 81920 C:\Windows\System32\profapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Profile Basic API 131795770645379938 0x7ffacc8f0000 1003520 C:\Windows\System32\ucrtbase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645379938 0x7ffacc9f0000 434176 C:\Windows\System32\bcryptPrimitives.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Cryptographic Primitives Library 131795770645379938 0x7ffacca60000 122880 C:\Windows\System32\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795770645379938 0x7ffaccae0000 692224 C:\Windows\System32\shcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795770645379938 0x7ffaccb90000 7180288 C:\Windows\System32\windows.storage.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API хранения Microsoft WinRT 131795770645379938 0x7ffacd270000 2215936 C:\Windows\System32\KERNELBASE.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645379938 0x7ffacd710000 638976 C:\Windows\System32\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645379938 0x7ffaced20000 782336 C:\Windows\System32\OLEAUT32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795770645379938 0x7ffacee50000 1183744 C:\Windows\System32\RPCRT4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795770645379938 0x7ffacef90000 647168 C:\Windows\System32\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795770645379938 0x7ffacf030000 651264 C:\Windows\System32\clbcatq.dll 2001.12.10941.16384 (rs1_release.160715-1616) Microsoft Corporation COM+ Configuration Catalog 131795770645379938 0x7ffacf0d0000 704512 C:\Windows\System32\KERNEL32.DLL 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645379938 0x7ffacf770000 212992 C:\Windows\System32\GDI32.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation GDI Client DLL 131795770645379938 0x7ffacf890000 188416 C:\Windows\System32\IMM32.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Multi-User Windows IMM32 API Client DLL 131795770645379938 0x7ffacf8c0000 1462272 C:\Windows\System32\user32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795770645379938 0x7ffacfb30000 2916352 C:\Windows\System32\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795770645379938 0x7ffacfe20000 663552 C:\Windows\System32\advapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795770645379938 0x7ffad01b0000 335872 C:\Windows\System32\shlwapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека небольших программ оболочки 131795770645379938 0x7ffad0210000 364544 C:\Windows\System32\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795770645379938 0x7ffad0270000 1908736 C:\Windows\SYSTEM32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 45 340 4928 41 00000000:0031f1da 131765800389528045 0 1 0 Обязательная метка\Низкий обязательный уровень WIN-0UOTFKKVN1S\User utorrentie.exe C:\Users\User\AppData\Roaming\uTorrent\updates\3.5.4_44498\utorrentie.exe "C:\Users\User\AppData\Roaming\uTorrent\updates\3.5.4_44498\utorrentie.exe" uTorrent_4928_02D54870_1839591030 µTorrent4823DF041B09 uTorrent BitTorrent Inc. 1.0.0 WebHelper 131795770645380038 0x1180000 417792 C:\Users\User\AppData\Roaming\uTorrent\updates\3.5.4_44498\utorrentie.exe 1.0.0 BitTorrent Inc. WebHelper 131795770645380038 0x5c020000 335872 C:\Windows\System32\wow64.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation Win32 Emulation on NT64 131795770645380038 0x5c080000 487424 C:\Windows\System32\wow64win.dll 10.0.14393.1884 (rs1_release.171101-1233) Microsoft Corporation Wow64 Console and Win32 API Logging 131795770645380038 0x5c100000 40960 C:\Windows\System32\wow64cpu.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation AMD64 Wow64 CPU 131795770645380038 0x60750000 1556480 C:\Program Files (x86)\360\Total Security\safemon\safemon.dll 8, 4, 0, 1420 Qihu 360 Software Co., Ltd. 360 Internet Security Internet Protection 131795770645380038 0x63490000 221184 C:\Windows\SysWOW64\dinput8.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft DirectInput 131795770645380038 0x634d0000 561152 C:\Windows\SysWOW64\DSOUND.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DirectSound 131795770645380038 0x63560000 23334912 C:\Windows\SysWOW64\Macromed\Flash\Flash.ocx 29,0,0,140 Adobe Systems, Inc. Adobe Flash Player 29.0 r0 131795770645380038 0x64d00000 5079040 C:\Windows\SysWOW64\d2d1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека Microsoft D2D 131795770645380038 0x651e0000 20537344 C:\Windows\SysWOW64\mshtml.dll 11.00.14393.447 (rs1_release_inmarket.161102-0100) Microsoft Corporation Средство просмотра HTML Microsoft® 131795770645380038 0x66580000 12247040 C:\Windows\SysWOW64\ieframe.dll 11.00.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Браузер 131795770645380038 0x6b670000 212992 C:\Windows\SysWOW64\mlang.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL многоязыковой поддержки 131795770645380038 0x6b6b0000 36864 C:\Windows\SysWOW64\atlthunk.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation atlthunk.dll 131795770645380038 0x6c290000 987136 C:\Windows\SysWOW64\twinapi.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation twinapi.appcore 131795770645380038 0x6c390000 1126400 C:\Windows\SysWOW64\dcomp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft DirectComposition Library 131795770645380038 0x6c4b0000 278528 C:\Windows\SysWOW64\dataexchange.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation Data exchange 131795770645380038 0x6c540000 483328 C:\Windows\SysWOW64\webio.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API протоколов передачи по Веб 131795770645380038 0x6c5c0000 1384448 C:\Windows\SysWOW64\UIAutomationCore.DLL 7.2.14393.0 (rs1_release.160715-1616) Microsoft Corporation Основные автоматические компоненты Microsoft UI 131795770645380038 0x6c720000 2318336 C:\Windows\SysWOW64\d3d10warp.dll 10.0.14393.576 (rs1_release_inmarket.161208-2252) Microsoft Corporation Direct3D 10 Rasterizer 131795770645380038 0x6c960000 57344 C:\Windows\SysWOW64\msimtf.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Active IMM Server DLL 131795770645380038 0x6c970000 3698688 C:\Windows\SysWOW64\jscript9.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft ® JScript 131795770645380038 0x6cd00000 69632 C:\Windows\SysWOW64\WLDP.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Политика блокировки Windows 131795770645380038 0x6cd20000 135168 C:\Windows\SysWOW64\srpapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL программных интерфейсов (API) поставщика общих ресурсов 131795770645380038 0x6cda0000 528384 C:\Windows\SysWOW64\sxs.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Fusion 2.5 131795770645380038 0x6d080000 151552 C:\Windows\SysWOW64\cryptnet.dll 10.0.14393.2035 (rs1_release_inmarket.180110-1910) Microsoft Corporation Crypto Network Related API 131795770645380038 0x6d0b0000 847872 C:\Windows\SysWOW64\wintypes.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL основных типов Windows 131795770645380038 0x6fd30000 139264 C:\Windows\SysWOW64\DEVOBJ.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Device Information Set DLL 131795770645380038 0x6fd60000 360448 C:\Windows\SysWOW64\MMDevApi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation MMDevice API 131795770645380038 0x6fdc0000 507904 C:\Windows\SysWOW64\AUDIOSES.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Сеанс обработки звука 131795770645380038 0x6fe90000 544768 C:\Windows\SysWOW64\mscms.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL-библиотека системы сопоставления цветов Майкрософт 131795770645380038 0x70340000 536576 C:\Windows\SysWOW64\dxgi.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation DirectX Graphics Infrastructure 131795770645380038 0x703d0000 2056192 C:\Windows\SysWOW64\DWrite.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Службы Microsoft DirectX Typography 131795770645380038 0x70640000 1499136 C:\Windows\SysWOW64\windowscodecs.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Microsoft Windows Codecs Library 131795770645380038 0x707b0000 110592 C:\Windows\SysWOW64\ncryptsslp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft SChannel Provider 131795770645380038 0x707f0000 2293760 C:\Windows\SysWOW64\d3d11.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation Direct3D 11 Runtime 131795770645380038 0x70a40000 81920 C:\Windows\SysWOW64\NLAapi.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Network Location Awareness 2 131795770645380038 0x70a60000 90112 C:\Windows\SysWOW64\pnrpnsp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик пространства имен PNRP 131795770645380038 0x70a80000 409600 C:\Windows\SysWOW64\schannel.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик безопасности TLS/SSL 131795770645380038 0x70b40000 69632 C:\Windows\SysWOW64\mskeyprotect.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик защиты ключей (Майкрософт) 131795770645380038 0x70c00000 49152 C:\Windows\SysWOW64\winrnr.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation LDAP RnR Provider DLL 131795770645380038 0x70c10000 73728 C:\Windows\SysWOW64\napinsp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик оболочки совместимости для имен электронной почты 131795770645380038 0x70c30000 114688 C:\Windows\SysWOW64\srvcli.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Server Service Client DLL 131795770645380038 0x70c50000 319488 C:\Windows\SysWOW64\Ninput.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Pen and Touch Input Component 131795770645380038 0x70ca0000 45056 C:\Windows\SysWOW64\NETUTILS.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API Helpers DLL 131795770645380038 0x70cc0000 65536 C:\Windows\SysWOW64\ondemandconnroutehelper.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation On Demand Connctiond Route Helper 131795770645380038 0x70e60000 176128 C:\Windows\SysWOW64\NTASN1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft ASN.1 API 131795770645380038 0x71140000 77824 C:\Windows\SysWOW64\NETAPI32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API DLL 131795770645380038 0x71610000 77824 C:\Windows\SysWOW64\dhcpcsvc6.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиент DHCPv6 131795770645380038 0x725e0000 2273280 C:\Windows\SysWOW64\iertutil.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служебная программа времени выполнения для Internet Explorer 131795770645380038 0x728e0000 1372160 C:\Windows\SysWOW64\PROPSYS.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Система страниц свойств (Майкрософт) 131795770645380038 0x72b90000 126976 C:\Windows\SysWOW64\dwmapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Интерфейс API диспетчера окон рабочего стола (Майкрософт) 131795770645380038 0x72cc0000 1658880 C:\Windows\SysWOW64\urlmon.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширения OLE32 для Win32 131795770645380038 0x73a40000 32768 C:\Windows\SysWOW64\WINNSI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Network Store Information RPC interface 131795770645380038 0x73a50000 299008 C:\Windows\SysWOW64\fwpuclnt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API пользовательского режима FWP/IPsec 131795770645380038 0x73aa0000 32768 C:\Windows\SysWOW64\DPAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Data Protection API 131795770645380038 0x73ab0000 32768 C:\Windows\SysWOW64\rasadhlp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Remote Access AutoDial Helper 131795770645380038 0x73ac0000 81920 C:\Windows\SysWOW64\dhcpcsvc.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служба DHCP-клиента 131795770645380038 0x73ae0000 40960 C:\Windows\SysWOW64\Secur32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Security Support Provider Interface 131795770645380038 0x73ef0000 24576 C:\Windows\SysWOW64\MSIMG32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation GDIEXT Client DLL 131795770645380038 0x73f00000 192512 C:\Windows\SysWOW64\IPHLPAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API вспомогательного приложения IP 131795770645380038 0x73f30000 512000 C:\Windows\SysWOW64\DNSAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Динамическая библиотека API DNS-клиента 131795770645380038 0x73ff0000 319488 C:\Windows\SysWOW64\mswsock.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширение поставщика службы API Microsoft Windows Sockets 2.0 131795770645380038 0x74060000 192512 C:\Windows\SysWOW64\rsaenh.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Enhanced Cryptographic Provider 131795770645380038 0x74110000 479232 C:\Windows\SysWOW64\uxtheme.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека тем UxTheme (Microsoft) 131795770645380038 0x74190000 110592 C:\Windows\SysWOW64\bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795770645380038 0x741b0000 77824 C:\Windows\SysWOW64\CRYPTSP.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Cryptographic Service Provider API 131795770645380038 0x741f0000 143360 C:\Windows\SysWOW64\WINMMBASE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base Multimedia Extension API DLL 131795770645380038 0x74230000 147456 C:\Windows\SysWOW64\WINMM.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation MCI API DLL 131795770645380038 0x74260000 2514944 C:\Windows\SysWOW64\WININET.dll 11.00.14393.447 (rs1_release_inmarket.161102-0100) Microsoft Corporation Расширения Интернета для Win32 131795770645380038 0x744d0000 2138112 C:\Windows\WinSxS\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.14393.953_none_89c2555adb023171\comctl32.dll 6.10 (rs1_release_inmarket.170303-1614) Microsoft Corporation Библиотека элементов управления взаимодействия с пользователем 131795770645380038 0x746e0000 32768 C:\Windows\SysWOW64\VERSION.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Version Checking and File Installation Libraries 131795770645380038 0x746f0000 106496 C:\Windows\SysWOW64\USERENV.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Userenv 131795770645380038 0x74730000 598016 C:\Windows\SysWOW64\apphelp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиентская библиотека совместимости приложений 131795770645380038 0x747d0000 40960 C:\Windows\SysWOW64\CRYPTBASE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base cryptographic API DLL 131795770645380038 0x747e0000 126976 C:\Windows\SysWOW64\SspiCli.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Security Support Provider Interface 131795770645380038 0x74800000 151552 C:\Windows\SysWOW64\IMM32.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Multi-User Windows IMM32 API Client DLL 131795770645380038 0x74910000 2170880 C:\Windows\SysWOW64\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795770645380038 0x74b30000 53248 C:\Windows\SysWOW64\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795770645380038 0x74b60000 790528 C:\Windows\SysWOW64\RPCRT4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795770645380038 0x74c30000 1417216 C:\Windows\SysWOW64\gdi32full.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation GDI Client DLL 131795770645380038 0x74d90000 24576 C:\Windows\SysWOW64\PSAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Process Status Helper 131795770645380038 0x74da0000 778240 C:\Windows\SysWOW64\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795770645380038 0x74e60000 557056 C:\Windows\SysWOW64\shcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795770645380038 0x74ef0000 540672 C:\Windows\SysWOW64\clbcatq.dll 2001.12.10941.16384 (rs1_release.160715-1616) Microsoft Corporation COM+ Configuration Catalog 131795770645380038 0x74f80000 278528 C:\Windows\SysWOW64\WINTRUST.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation Microsoft Trust Verification APIs 131795770645380038 0x74fd0000 405504 C:\Windows\SysWOW64\WS2_32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation 32-разрядная библиотека Windows Socket 2.0 131795770645380038 0x75040000 282624 C:\Windows\SysWOW64\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795770645380038 0x75090000 1265664 C:\Windows\SysWOW64\MSCTF.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Серверная библиотека MSCTF 131795770645380038 0x751d0000 57344 C:\Windows\SysWOW64\MSASN1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ASN.1 Runtime APIs 131795770645380038 0x751e0000 1708032 C:\Windows\SysWOW64\KERNELBASE.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645380038 0x75390000 266240 C:\Windows\SysWOW64\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795770645380038 0x753e0000 1560576 C:\Windows\SysWOW64\CRYPT32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API32 криптографии 131795770645380038 0x75560000 487424 C:\Windows\SysWOW64\advapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795770645380038 0x756c0000 5693440 C:\Windows\SysWOW64\windows.storage.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API хранения Microsoft WinRT 131795770645380038 0x75c30000 372736 C:\Windows\SysWOW64\coml2.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft COM for Windows 131795770645380038 0x75c90000 286720 C:\Windows\SysWOW64\shlwapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека небольших программ оболочки 131795770645380038 0x75ce0000 20811776 C:\Windows\SysWOW64\SHELL32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Общая библиотека оболочки Windows 131795770645380038 0x774d0000 86016 C:\Windows\SysWOW64\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795770645380038 0x774f0000 61440 C:\Windows\SysWOW64\profapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Profile Basic API 131795770645380038 0x77560000 1437696 C:\Windows\SysWOW64\USER32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795770645380038 0x776c0000 368640 C:\Windows\SysWOW64\bcryptPrimitives.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation Windows Cryptographic Primitives Library 131795770645380038 0x77780000 503808 C:\Windows\SysWOW64\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645380038 0x77800000 606208 C:\Windows\SysWOW64\OLEAUT32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795770645380038 0x77ac0000 966656 C:\Windows\SysWOW64\ole32.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft OLE для Windows 131795770645380038 0x77bb0000 176128 C:\Windows\SysWOW64\GDI32.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation GDI Client DLL 131795770645380038 0x77cd0000 221184 C:\Windows\SysWOW64\cfgmgr32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Configuration Manager DLL 131795770645380038 0x77d10000 28672 C:\Windows\SysWOW64\NSI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation NSI User-mode interface DLL 131795770645380038 0x77d20000 1585152 C:\Windows\SysWOW64\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 131795770645380038 0x7ffad0270000 1908736 C:\Windows\SYSTEM32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 46 2736 3976 47 00000000:0031f1ab 131765800903010156 0 0 1 Обязательная метка\Высокий обязательный уровень WIN-0UOTFKKVN1S\User Taskmgr.exe C:\Windows\System32\Taskmgr.exe "C:\Windows\System32\Taskmgr.exe" /2 Microsoft® Windows® Operating System 1, 0, 0, 1 Task Manager 131795770645380149 0x7ff7c2a70000 1286144 C:\Windows\System32\Taskmgr.exe 1, 0, 0, 1 Microsoft® Windows® Operating System Task Manager 131795770645380149 0x7ffab2720000 606208 C:\Windows\System32\DUser.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows DirectUser Engine 131795770645380149 0x7ffab8190000 9191424 C:\Windows\System32\TwinUI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation TWINUI 131795770645380149 0x7ffabdbb0000 1736704 C:\Windows\System32\DUI70.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Подсистема DirectUI Windows 131795770645380149 0x7ffabdfa0000 393216 C:\Windows\System32\faultrep.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека отчетов о сбоях в пользовательском режиме Windows 131795770645380149 0x7ffabeb20000 385024 C:\Windows\System32\Windows.ApplicationModel.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows ApplicationModel API Server 131795770645380149 0x7ffac0bf0000 3559424 C:\Windows\System32\ActXPrxy.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation ActiveX Interface Marshaling Library 131795770645380149 0x7ffac21b0000 77824 C:\Windows\System32\srumapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation System Resource Usage Monitor API 131795770645380149 0x7ffac3cb0000 2772992 C:\Windows\SYSTEM32\iertutil.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служебная программа времени выполнения для Internet Explorer 131795770645380149 0x7ffac4000000 274432 C:\Windows\SYSTEM32\policymanager.dll 10.0.14393.2035 (rs1_release_inmarket.180110-1910) Microsoft Corporation Policy Manager DLL 131795770645380149 0x7ffac42a0000 659456 C:\Windows\System32\StateRepository.Core.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation StateRepository Core 131795770645380149 0x7ffac46d0000 4161536 C:\Windows\System32\Windows.StateRepository.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Сервер Windows StateRepository API Server 131795770645380149 0x7ffac4e70000 102400 C:\Windows\System32\samcli.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Security Accounts Manager Client DLL 131795770645380149 0x7ffac4ea0000 36864 C:\Windows\SYSTEM32\atlthunk.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation atlthunk.dll 131795770645380149 0x7ffac5350000 1765376 C:\Windows\System32\Windows.UI.Immersive.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation WINDOWS.UI.IMMERSIVE 131795770645380149 0x7ffac5630000 339968 C:\Windows\System32\thumbcache.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Кэш эскизов Майкрософт 131795770645380149 0x7ffac60e0000 221184 C:\Windows\System32\XmlLite.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft XmlLite Library 131795770645380149 0x7ffac6ac0000 835584 C:\Windows\System32\Windows.UI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Runtime UI Foundation DLL 131795770645380149 0x7ffac6bd0000 413696 C:\Windows\System32\OLEACC.dll 7.2.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Active Accessibility Core Component 131795770645380149 0x7ffac6c40000 2596864 C:\Windows\WinSxS\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.14393.953_none_42151e83c686086b\COMCTL32.dll 6.10 (rs1_release_inmarket.170303-1614) Microsoft Corporation Библиотека элементов управления взаимодействия с пользователем 131795770645380149 0x7ffac7580000 1077248 C:\Windows\SYSTEM32\MrmCoreR.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Windows MRM 131795770645380149 0x7ffac83d0000 106496 C:\Windows\SYSTEM32\dhcpcsvc.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служба DHCP-клиента 131795770645380149 0x7ffac83f0000 90112 C:\Windows\SYSTEM32\dhcpcsvc6.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиент DHCPv6 131795770645380149 0x7ffac8810000 45056 C:\Windows\SYSTEM32\WINNSI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Network Store Information RPC interface 131795770645380149 0x7ffac8dc0000 167936 C:\Windows\System32\dbgcore.DLL 10.0.14321.1024 (debuggers(dbg).160715-1616) Microsoft Windows Core Debugging Helpers 131795770645380149 0x7ffac8df0000 1646592 C:\Windows\System32\dbghelp.dll 10.0.14321.1024 (rs1_release.160715-1616) Microsoft Windows Image Helper 131795770645380149 0x7ffac90b0000 90112 C:\Windows\System32\wkscli.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Workstation Service Client DLL 131795770645380149 0x7ffac92e0000 1269760 C:\Windows\SYSTEM32\wintypes.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL основных типов Windows 131795770645380149 0x7ffac9f50000 1736704 C:\Windows\System32\WindowsCodecs.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Microsoft Windows Codecs Library 131795770645380149 0x7ffaca340000 1593344 C:\Windows\system32\propsys.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Система страниц свойств (Майкрософт) 131795770645380149 0x7ffaca4e0000 77824 C:\Windows\System32\WTSAPI32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Remote Desktop Session Host Server SDK APIs 131795770645380149 0x7ffaca570000 421888 C:\Windows\System32\Bcp47Langs.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation BCP47 Language Classes 131795770645380149 0x7ffaca5e0000 155648 C:\Windows\System32\dwmapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Интерфейс API диспетчера окон рабочего стола (Майкрософт) 131795770645380149 0x7ffaca610000 143360 C:\Windows\System32\SAMLIB.dll 10.0.14393.82 (rs1_release.160805-1735) Microsoft Corporation SAM Library DLL 131795770645380149 0x7ffacac60000 69632 C:\Windows\System32\credui.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Credential Manager User Interface 131795770645380149 0x7ffacadf0000 499712 C:\Windows\System32\apphelp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиентская библиотека совместимости приложений 131795770645380149 0x7ffacaf00000 610304 C:\Windows\System32\UxTheme.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека тем UxTheme (Microsoft) 131795770645380149 0x7ffacb140000 593920 C:\Windows\SYSTEM32\msvcp110_win.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Microsoft® STL110 C++ Runtime Library 131795770645380149 0x7ffacb1e0000 1163264 C:\Windows\System32\twinapi.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation twinapi.appcore 131795770645380149 0x7ffacb300000 364544 C:\Windows\SYSTEM32\VEEventDispatcher.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Visual Element Event dispatcher 131795770645380149 0x7ffacbd30000 229376 C:\Windows\System32\IPHLPAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API вспомогательного приложения IP 131795770645380149 0x7ffacbe20000 53248 C:\Windows\System32\netutils.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API Helpers DLL 131795770645380149 0x7ffacbe40000 126976 C:\Windows\System32\USERENV.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Userenv 131795770645380149 0x7ffacc5c0000 352256 C:\Windows\System32\WINSTA.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Winstation Library 131795770645380149 0x7ffacc620000 176128 C:\Windows\System32\bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795770645380149 0x7ffacc6e0000 61440 C:\Windows\System32\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795770645380149 0x7ffacc6f0000 311296 C:\Windows\System32\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795770645380149 0x7ffacc740000 81920 C:\Windows\System32\profapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Profile Basic API 131795770645380149 0x7ffacc8f0000 1003520 C:\Windows\System32\ucrtbase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645380149 0x7ffacc9f0000 434176 C:\Windows\System32\bcryptPrimitives.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Cryptographic Primitives Library 131795770645380149 0x7ffacca60000 122880 C:\Windows\System32\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795770645380149 0x7ffaccae0000 692224 C:\Windows\System32\shcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795770645380149 0x7ffaccb90000 7180288 C:\Windows\System32\windows.storage.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API хранения Microsoft WinRT 131795770645380149 0x7ffacd270000 2215936 C:\Windows\System32\KERNELBASE.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645380149 0x7ffacd710000 638976 C:\Windows\System32\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645380149 0x7ffacd7b0000 270336 C:\Windows\System32\cfgmgr32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Configuration Manager DLL 131795770645380149 0x7ffacd810000 22056960 C:\Windows\System32\SHELL32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Общая библиотека оболочки Windows 131795770645380149 0x7ffaced20000 782336 C:\Windows\System32\OLEAUT32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795770645380149 0x7ffacee50000 1183744 C:\Windows\System32\RPCRT4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795770645380149 0x7ffacef80000 32768 C:\Windows\System32\NSI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation NSI User-mode interface DLL 131795770645380149 0x7ffacef90000 647168 C:\Windows\System32\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795770645380149 0x7ffacf030000 651264 C:\Windows\System32\clbcatq.dll 2001.12.10941.16384 (rs1_release.160715-1616) Microsoft Corporation COM+ Configuration Catalog 131795770645380149 0x7ffacf0d0000 704512 C:\Windows\System32\KERNEL32.DLL 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645380149 0x7ffacf1e0000 1417216 C:\Windows\System32\MSCTF.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Серверная библиотека MSCTF 131795770645380149 0x7ffacf770000 212992 C:\Windows\System32\GDI32.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation GDI Client DLL 131795770645380149 0x7ffacf820000 434176 C:\Windows\System32\WS2_32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation 32-разрядная библиотека Windows Socket 2.0 131795770645380149 0x7ffacf890000 188416 C:\Windows\System32\IMM32.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Multi-User Windows IMM32 API Client DLL 131795770645380149 0x7ffacf8c0000 1462272 C:\Windows\System32\USER32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795770645380149 0x7ffacfb30000 2916352 C:\Windows\System32\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795770645380149 0x7ffacfe20000 663552 C:\Windows\System32\advapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795770645380149 0x7ffad0070000 1277952 C:\Windows\System32\ole32.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft OLE для Windows 131795770645380149 0x7ffad01b0000 335872 C:\Windows\System32\SHLWAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека небольших программ оболочки 131795770645380149 0x7ffad0210000 364544 C:\Windows\System32\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795770645380149 0x7ffad0270000 1908736 C:\Windows\SYSTEM32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 49 6724 580 4 00000000:000003e7 131765803507001117 0 0 0 Обязательная метка\Обязательный уровень системы NT AUTHORITY\СИСТЕМА QHActiveDefense.exe C:\Program Files (x86)\360\Total Security\safemon\QHActiveDefense.exe "C:\Program Files (x86)\360\Total Security\safemon\QHActiveDefense.exe" Qihoo 360 Technology Co. Ltd. 10,0,0,1008 360 Total Security 131795778431738530 0x10000 413696 C:\ProgramData\Package Cache\{b8e12890-118d-4721-8e54-05d978086712}\VC_redist.x64.exe 14.0.24516.0 Microsoft Corporation Microsoft Visual C++ 2015 Redistributable (x64) - 14.0.24516 131795770645381706 0xd0000 983040 C:\Program Files (x86)\360\Total Security\safemon\QHActiveDefense.exe 10,0,0,1008 Qihoo 360 Technology Co. Ltd. 360 Total Security 131795778469924367 0x400000 278528 C:\Program Files\Wireshark\WinPcap_4_1_3.exe 4.1.0.2980 Riverbed Technology, Inc. WinPcap 4.1.3 installer 131795778203065490 0x840000 413696 C:\Program Files\Wireshark\vcredist_x64.exe 14.12.25810.0 Microsoft Corporation Microsoft Visual C++ 2017 Redistributable (x64) - 14.12.25810 131795778429155018 0x34c0000 69632 C:\Windows\System32\mfc140deu.dll 14.12.25810.0 built by: VCTOOLSREL Microsoft Corporation MFC Language Specific Resources 131795770645381706 0x3c80000 12288 C:\Windows\SysWOW64\sfc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows File Protection 131795778395516599 0x40e0000 389120 C:\Windows\System32\vccorlib140.dll 14.12.25810.0 built by: VCTOOLSREL Microsoft Corporation Microsoft ® VC WinRT core library 131795778389953959 0xa8e0000 696320 C:\Windows\System32\msvcp140.dll 14.12.25810.0 built by: VCTOOLSREL Microsoft Corporation Microsoft® C Runtime Library 131795778421734438 0xe830000 6127616 C:\Windows\System32\mfc140.dll 14.12.25810.0 built by: VCTOOLSREL Microsoft Corporation MFCDLL Shared Library - Retail Version 131795770645381706 0x5c020000 335872 C:\Windows\System32\wow64.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation Win32 Emulation on NT64 131795770645381706 0x5c080000 487424 C:\Windows\System32\wow64win.dll 10.0.14393.1884 (rs1_release.171101-1233) Microsoft Corporation Wow64 Console and Win32 API Logging 131795770645381706 0x5c100000 40960 C:\Windows\System32\wow64cpu.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation AMD64 Wow64 CPU 131795770645381706 0x5fb90000 2736128 C:\Program Files (x86)\360\Total Security\deepscan\deepscan.dll 3, 5, 1, 2130 Qihu 360 Software Co., Ltd. 360 Total Security Cloud Security 131795770645381706 0x5fec0000 794624 C:\Windows\SysWOW64\wbem\fastprox.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation WMI Custom Marshaller 131795770645381706 0x5ffa0000 421888 C:\Windows\SysWOW64\wbemcomn.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation WMI 131795770645381706 0x60010000 53248 C:\Windows\SysWOW64\wbem\wbemprox.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation WMI 131795770645381706 0x60190000 475136 C:\Program Files (x86)\360\Total Security\safemon\360SafeCamera.tpi 2, 0, 0, 1031 QIHU 360 SOFTWARE CO. LIMITED 360 Total Security Proactive Defense 131795770645381706 0x60210000 1269760 C:\Program Files (x86)\360\Total Security\deepscan\jcloudscan.dll 1, 0, 0, 1012 360.cn 360安全卫士 移动云查询模块 131795770645381706 0x604a0000 196608 C:\Program Files (x86)\360\Total Security\ipc\appdext.dll 1, 0, 0, 1483 360.cn 360安全卫士 木马防火墙模块 131795770645381706 0x604e0000 188416 C:\Program Files (x86)\360\Total Security\ipc\DrvUtility.dll 1, 0, 0, 1081 Qihu 360 Software Co., Ltd. 360 Internet Security 2013 Proactive Defense 131795770645381706 0x60510000 409600 C:\Program Files (x86)\360\Total Security\SafeScan.dll 1, 0, 0, 1074 Qihoo 360 Technology Co. Ltd. 360 Scan Util Module 131795770645381706 0x60580000 204800 C:\Program Files (x86)\360\Total Security\ScanStub.dll 1, 0, 0, 1014 Qihoo 360 Technology Co. Ltd. 360 Scan Util Module 131795770645381706 0x605c0000 249856 C:\Program Files (x86)\360\Total Security\netmon\360gameidentify.dll 1, 0, 1, 1050 360.cn 360流量防火墙 游戏识别模块 131795770645381706 0x60600000 200704 C:\Program Files (x86)\360\Total Security\safemon\WDRecord.dll 1, 0, 1, 1130 Qihu 360 Software Co., Ltd. 360 Internet Security Internet Protection 131795770645381706 0x60640000 430080 C:\Program Files (x86)\360\Total Security\netmon\Netgm.dll 9,0,0,1005 360.cn 360流量防火墙 游戏模式判断模块 131795770645381706 0x608d0000 159744 C:\Program Files (x86)\360\Total Security\safemon\safemonhlp.dll 1, 0, 0, 1265 Qihu 360 Software Co., Ltd. 360 Internet Security Internet Protection 131795770645381706 0x60a50000 479232 C:\Program Files (x86)\360\Total Security\deepscan\DsSysRepair.dll 1, 0, 0, 1062 QIHU360 SOFTWARE CO. LIMITED 360 Total Security System Repair Module 131795770645381706 0x60ad0000 352256 C:\Program Files (x86)\360\Total Security\360Common.dll 7, 3, 0, 3233 360.cn 360安全衛士 基礎模塊 131795770645381706 0x60b30000 1712128 C:\Program Files (x86)\360\Total Security\safemon\360safemonpro.tpi 3, 1, 1, 3140 Qihu 360 Software Co., Ltd. 360 Internet Security Internet Protection 131795770645381706 0x60ce0000 581632 C:\Program Files (x86)\360\Total Security\dynlenv.dll 1, 1, 0, 1016 360.cn dynlenv Dynamic Link Library 131795770645381706 0x61000000 184320 C:\Program Files (x86)\360\Total Security\ipc\qutmipc.dll 7, 3, 0, 1267 360.cn 360安全卫士 木马防火墙模块 131795770645381706 0x61030000 262144 C:\Program Files (x86)\360\Total Security\safemon\safehmpg.dll 3, 0, 0, 1160 Qihu 360 Software Co., Ltd. 360 Internet Security Browser HomePage Protection 131795770645381706 0x610d0000 1097728 C:\Program Files (x86)\360\Total Security\SoftMgr\SomAdvUtils.dll 3, 1, 1, 2020 360.cn 360 Safeguard PC Boost 131795770645381706 0x61380000 315392 C:\Program Files (x86)\360\Total Security\safemon\360bsmon.tpi 6, 8, 0, 1248 Qihu 360 Software Co., Ltd. 360 Total Security Active Protection 131795770645381706 0x61480000 2191360 C:\Program Files (x86)\360\Total Security\deepscan\qex\qex.dll 4.1.13.3366 Qihu 360 Software Co., Ltd. 360 Internet Security 2017 Antivirus 131795770645381706 0x616a0000 331776 C:\Program Files (x86)\360\Total Security\safemon\SelfProtectAPI2.dll 7, 1, 1, 1033 Qihu 360 Software Co., Ltd. 360 Total Security Proactive Defense 131795770645381706 0x61700000 483328 C:\Program Files (x86)\360\Total Security\safemon\360procmon.dll 7, 1, 1, 1221 Qihu 360 Software Co., Ltd. 360 Total Security Proactive Defense 131795770645381706 0x61780000 335872 C:\Program Files (x86)\360\Total Security\ipc\netdefender.dll 1, 0, 0, 1129 Qihu 360 Software Co., Ltd. 360 Internet Security Internet Protection 131795770645381706 0x617e0000 897024 C:\Program Files (x86)\360\Total Security\ipc\appd.dll 7, 3, 6, 3113 Qihu 360 Software Co., Ltd. 360 Total Security Proactive Defense 131795770645381706 0x61a30000 512000 C:\Program Files (x86)\360\Total Security\safemon\360HipsPopWnd.dll 7,3,2,1211 Qihoo 360 Technology Co. Ltd. 360 Internet Security Proactive Defense 131795770645381706 0x61ab0000 495616 C:\Program Files (x86)\360\Total Security\ipc\fileMgr.dll 7, 3, 0, 1963 Qihu 360 Software Co., Ltd. 360 Total Security Proactive Defense 131795770645381706 0x61b30000 3350528 C:\Program Files (x86)\360\Total Security\SoftMgr\somkernl.dll 2, 1, 0, 1130 360.cn 360软件管家 131795770645381706 0x61e70000 614400 C:\Program Files (x86)\360\Total Security\ipc\ipcservice.dll 7, 1, 2, 1643 Qihu 360 Software Co., Ltd. 360 Total Security Proactive Defense 131795770645381706 0x61f10000 1458176 C:\Program Files (x86)\360\Total Security\deepscan\cloudcom2.dll 3, 3, 10, 1288 Qihu 360 Software Co., Ltd. 360 Total Security 131795770645381706 0x621a0000 458752 C:\Program Files (x86)\360\Total Security\ipc\yhregd.dll 7, 2, 0, 1903 Qihu 360 Software Co., Ltd. 360 Total Security Proactive Defense 131795770645381706 0x62280000 454656 C:\Program Files (x86)\360\Total Security\SoftMgr\360SoftMgrS.dll 2, 1, 6, 1490 360.cn 360软件管家 服务模块 131795770645381706 0x622f0000 520192 C:\Program Files (x86)\360\Total Security\deepscan\heavygate.dll 3, 8, 11, 1 Qihu 360 Software Co., Ltd. 360 Total Security Cloud Security 131795770645381706 0x62370000 602112 C:\Program Files (x86)\360\Total Security\360util.dll 1.0.0.1485 360.cn 360安全卫士 公共模块 131795770645381706 0x62410000 352256 C:\Program Files (x86)\360\Total Security\CrashReport.dll 7, 0, 0, 1000 360.cn 360杀毒 异常捕获程序 131795770645381706 0x62470000 405504 C:\Program Files (x86)\360\Total Security\deepscan\qutmload.dll 7, 2, 1, 1279 360.cn 360安全卫士 木马防火墙模块 131795770645381706 0x624e0000 315392 C:\Program Files (x86)\360\Total Security\ipc\360box.dll 2, 0, 0, 1043 360.cn 360隔离沙箱模块 131795770645381706 0x62540000 278528 C:\Program Files (x86)\360\Total Security\360conf.dll 1, 0, 0, 1014 Qihu 360 Software Co., Ltd. 360 Internet Security Base Module 131795770645381706 0x62590000 987136 C:\Program Files (x86)\360\Total Security\360base.dll 1, 0, 0, 1165 360.cn 360安全卫士 基础模块 131795770645381706 0x62690000 266240 C:\Program Files (x86)\360\Total Security\deepscan\BAPI.dll 2.0.0.1191 360.cn BAPI 131795770645381706 0x627d0000 249856 C:\Windows\SysWOW64\edputil.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служебная программа EDP 131795770645381706 0x62980000 376832 C:\Program Files (x86)\360\Total Security\360NetBase.dll 7, 25, 0, 76 360.cn 360安全卫士 网络基础模块 131795770645381706 0x62b50000 106496 C:\Program Files (x86)\360\Total Security\i18n\ru\deepscan\DsRes.dll 1,0,0,1012 Qihu 360 Software Co., Ltd. 360 Total Security Cloud Security Resource 131795770645381706 0x62b70000 208896 C:\Program Files (x86)\360\Total Security\safemon\gamemode.tpi 9,0,0,1001 QIHU 360 SOFTWARE CO. LIMITED 360 Total Security Game Mode Control 131795770645381706 0x67130000 86016 C:\Windows\SysWOW64\devenum.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Перечисление устройств. 131795770645381706 0x67690000 61440 C:\Windows\SysWOW64\sfc_os.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows File Protection 131795770645381706 0x676a0000 61440 C:\Program Files (x86)\360\Total Security\ipc\x64for32lib.dll 6, 8, 0, 1059 360.cn 360安全卫士 木马防火墙模块 131795770645381706 0x676b0000 32768 C:\Windows\SysWOW64\fltlib.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека фильтров 131795770645381706 0x6b6c0000 36864 C:\Windows\SysWOW64\msdmo.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DMO Runtime 131795770645381706 0x6b6d0000 102400 C:\Program Files (x86)\360\Total Security\i18n.dll 1, 0, 0, 1016 Qihu 360 Software Co., Ltd. 360 Total Security 131795770645381706 0x6bf00000 3715072 C:\Windows\SysWOW64\msi.dll 5.0.14393.2155 Microsoft Corporation Windows Installer 131795770645381706 0x6cd50000 106496 C:\Windows\SysWOW64\SAMLIB.dll 10.0.14393.82 (rs1_release.160805-1735) Microsoft Corporation SAM Library DLL 131795770645381706 0x6cf60000 569344 C:\Windows\SysWOW64\taskschd.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Task Scheduler COM API 131795770645381706 0x6d080000 151552 C:\Windows\SysWOW64\cryptnet.dll 10.0.14393.2035 (rs1_release_inmarket.180110-1910) Microsoft Corporation Crypto Network Related API 131795770645381706 0x6ea80000 860160 C:\Program Files (x86)\360\Total Security\deepscan\QVM\360QVM.dll 5.0.2.1003 Qihu 360 Software Co., Ltd. 360 Internet Security QVM Engine 131795770645381706 0x6fcd0000 151552 C:\Windows\SysWOW64\dbgcore.DLL 10.0.14321.1024 (debuggers(dbg).160715-1616) Microsoft Windows Core Debugging Helpers 131795770645381706 0x6fd30000 139264 C:\Windows\SysWOW64\DEVOBJ.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Device Information Set DLL 131795770645381706 0x700d0000 434176 C:\Windows\SysWOW64\WINSPOOL.DRV 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Драйвер диспетчера очереди Windows 131795770645381706 0x70140000 274432 C:\Windows\SysWOW64\WINSTA.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Winstation Library 131795770645381706 0x70210000 966656 C:\Program Files (x86)\360\Total Security\deepscan\ave\AVEngine.dll 1, 0, 0, 2016 Qihu 360 Software Co., Ltd. 360 Internet Security 2013 AntiVirus Engine 131795770645381706 0x70300000 208896 C:\Program Files (x86)\360\Total Security\deepscan\ave\AVEI.dll 1, 0, 0, 2003 Qihu 360 Software Co., Ltd. 360 Internet Security 2013 AntiVirus Engine 131795770645381706 0x707d0000 86016 C:\Windows\SysWOW64\SAMCLI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Security Accounts Manager Client DLL 131795770645381706 0x70a40000 81920 C:\Windows\SysWOW64\NLAapi.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Network Location Awareness 2 131795770645381706 0x70a60000 90112 C:\Windows\SysWOW64\pnrpnsp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик пространства имен PNRP 131795770645381706 0x70b70000 163840 C:\Windows\SysWOW64\ntmarta.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик Windows NT MARTA 131795770645381706 0x70c00000 49152 C:\Windows\SysWOW64\winrnr.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation LDAP RnR Provider DLL 131795770645381706 0x70c10000 73728 C:\Windows\SysWOW64\napinsp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик оболочки совместимости для имен электронной почты 131795770645381706 0x70c30000 114688 C:\Windows\SysWOW64\srvcli.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Server Service Client DLL 131795770645381706 0x70ca0000 45056 C:\Windows\SysWOW64\NETUTILS.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API Helpers DLL 131795770645381706 0x70cb0000 65536 C:\Windows\SysWOW64\wkscli.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Workstation Service Client DLL 131795770645381706 0x70fd0000 1331200 C:\Windows\SysWOW64\dbghelp.dll 10.0.14321.1024 (rs1_release.160715-1616) Microsoft Windows Image Helper 131795770645381706 0x71140000 77824 C:\Windows\SysWOW64\NETAPI32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API DLL 131795770645381706 0x71610000 77824 C:\Windows\SysWOW64\dhcpcsvc6.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиент DHCPv6 131795770645381706 0x725e0000 2273280 C:\Windows\SysWOW64\iertutil.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служебная программа времени выполнения для Internet Explorer 131795770645381706 0x728e0000 1372160 C:\Windows\SysWOW64\propsys.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Система страниц свойств (Майкрософт) 131795770645381706 0x72a30000 188416 C:\Windows\SysWOW64\XmlLite.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft XmlLite Library 131795770645381706 0x72cc0000 1658880 C:\Windows\SysWOW64\urlmon.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширения OLE32 для Win32 131795770645381706 0x73a40000 32768 C:\Windows\SysWOW64\WINNSI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Network Store Information RPC interface 131795770645381706 0x73a50000 299008 C:\Windows\SysWOW64\fwpuclnt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API пользовательского режима FWP/IPsec 131795770645381706 0x73ab0000 32768 C:\Windows\SysWOW64\rasadhlp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Remote Access AutoDial Helper 131795770645381706 0x73ac0000 81920 C:\Windows\SysWOW64\dhcpcsvc.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служба DHCP-клиента 131795770645381706 0x73ae0000 40960 C:\Windows\SysWOW64\secur32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Security Support Provider Interface 131795770645381706 0x73c50000 1478656 C:\Windows\WinSxS\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.14393.1715_none_f67438d2f2547a00\gdiplus.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Microsoft GDI+ 131795770645381706 0x73ee0000 61440 C:\Windows\SysWOW64\WTSAPI32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Remote Desktop Session Host Server SDK APIs 131795770645381706 0x73ef0000 24576 C:\Windows\SysWOW64\MSIMG32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation GDIEXT Client DLL 131795770645381706 0x73f00000 192512 C:\Windows\SysWOW64\IPHLPAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API вспомогательного приложения IP 131795770645381706 0x73f30000 512000 C:\Windows\SysWOW64\dnsapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Динамическая библиотека API DNS-клиента 131795770645381706 0x73ff0000 319488 C:\Windows\SysWOW64\mswsock.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширение поставщика службы API Microsoft Windows Sockets 2.0 131795770645381706 0x74040000 126976 C:\Windows\SysWOW64\gpapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиентские функции API групповой политики 131795770645381706 0x74060000 192512 C:\Windows\SysWOW64\rsaenh.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Enhanced Cryptographic Provider 131795770645381706 0x74190000 110592 C:\Windows\SysWOW64\bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795770645381706 0x741b0000 77824 C:\Windows\SysWOW64\CRYPTSP.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Cryptographic Service Provider API 131795770645381706 0x741f0000 143360 C:\Windows\SysWOW64\WINMMBASE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base Multimedia Extension API DLL 131795770645381706 0x74230000 147456 C:\Windows\SysWOW64\WINMM.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation MCI API DLL 131795770645381706 0x74260000 2514944 C:\Windows\SysWOW64\WININET.dll 11.00.14393.447 (rs1_release_inmarket.161102-0100) Microsoft Corporation Расширения Интернета для Win32 131795770645381706 0x746e0000 32768 C:\Windows\SysWOW64\VERSION.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Version Checking and File Installation Libraries 131795770645381706 0x746f0000 106496 C:\Windows\SysWOW64\USERENV.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Userenv 131795770645381706 0x74710000 90112 C:\Windows\SysWOW64\MPR.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека маршрутизации для нескольких служб доступа 131795770645381706 0x74730000 598016 C:\Windows\SysWOW64\apphelp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиентская библиотека совместимости приложений 131795770645381706 0x747d0000 40960 C:\Windows\SysWOW64\CRYPTBASE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base cryptographic API DLL 131795770645381706 0x747e0000 126976 C:\Windows\SysWOW64\SspiCli.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Security Support Provider Interface 131795770645381706 0x74910000 2170880 C:\Windows\SysWOW64\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795770645381706 0x74b30000 53248 C:\Windows\SysWOW64\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795770645381706 0x74b40000 102400 C:\Windows\SysWOW64\imagehlp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT Image Helper 131795770645381706 0x74b60000 790528 C:\Windows\SysWOW64\RPCRT4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795770645381706 0x74c30000 1417216 C:\Windows\SysWOW64\gdi32full.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation GDI Client DLL 131795770645381706 0x74d90000 24576 C:\Windows\SysWOW64\PSAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Process Status Helper 131795770645381706 0x74da0000 778240 C:\Windows\SysWOW64\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795770645381706 0x74e60000 557056 C:\Windows\SysWOW64\shcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795770645381706 0x74ef0000 540672 C:\Windows\SysWOW64\clbcatq.dll 2001.12.10941.16384 (rs1_release.160715-1616) Microsoft Corporation COM+ Configuration Catalog 131795770645381706 0x74f80000 278528 C:\Windows\SysWOW64\WINTRUST.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation Microsoft Trust Verification APIs 131795770645381706 0x74fd0000 405504 C:\Windows\SysWOW64\WS2_32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation 32-разрядная библиотека Windows Socket 2.0 131795770645381706 0x75040000 282624 C:\Windows\SysWOW64\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795770645381706 0x751d0000 57344 C:\Windows\SysWOW64\MSASN1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ASN.1 Runtime APIs 131795770645381706 0x751e0000 1708032 C:\Windows\SysWOW64\KERNELBASE.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645381706 0x75390000 266240 C:\Windows\SysWOW64\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795770645381706 0x753e0000 1560576 C:\Windows\SysWOW64\CRYPT32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API32 криптографии 131795770645381706 0x75560000 487424 C:\Windows\SysWOW64\ADVAPI32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795770645381706 0x756c0000 5693440 C:\Windows\SysWOW64\windows.storage.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API хранения Microsoft WinRT 131795770645381706 0x75c30000 372736 C:\Windows\SysWOW64\coml2.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft COM for Windows 131795770645381706 0x75c90000 286720 C:\Windows\SysWOW64\shlwapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека небольших программ оболочки 131795770645381706 0x75ce0000 20811776 C:\Windows\SysWOW64\SHELL32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Общая библиотека оболочки Windows 131795770645381706 0x770c0000 4239360 C:\Windows\SysWOW64\SETUPAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Setup API 131795770645381706 0x774d0000 86016 C:\Windows\SysWOW64\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795770645381706 0x774f0000 61440 C:\Windows\SysWOW64\profapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Profile Basic API 131795770645381706 0x77560000 1437696 C:\Windows\SysWOW64\USER32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795770645381706 0x776c0000 368640 C:\Windows\SysWOW64\bcryptPrimitives.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation Windows Cryptographic Primitives Library 131795770645381706 0x77780000 503808 C:\Windows\SysWOW64\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645381706 0x77800000 606208 C:\Windows\SysWOW64\OLEAUT32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795770645381706 0x77ac0000 966656 C:\Windows\SysWOW64\ole32.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft OLE для Windows 131795770645381706 0x77bb0000 176128 C:\Windows\SysWOW64\GDI32.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation GDI Client DLL 131795770645381706 0x77cd0000 221184 C:\Windows\SysWOW64\cfgmgr32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Configuration Manager DLL 131795770645381706 0x77d10000 28672 C:\Windows\SysWOW64\NSI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation NSI User-mode interface DLL 131795770645381706 0x77d20000 1585152 C:\Windows\SysWOW64\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 131795770645381706 0x7ffad0270000 1908736 C:\Windows\SYSTEM32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 50 6340 6724 49 00000000:0031f1ab 131765803510844292 0 0 0 Обязательная метка\Высокий обязательный уровень WIN-0UOTFKKVN1S\User QHSafeTray.exe C:\Program Files (x86)\360\Total Security\safemon\QHSafeTray.exe /showtrayicon Qihoo 360 Technology Co. Ltd. 10,0,0,1024 360 Total Security 131795770645381850 0xec0000 2351104 C:\Program Files (x86)\360\Total Security\safemon\QHSafeTray.exe 10,0,0,1024 Qihoo 360 Technology Co. Ltd. 360 Total Security 131795770645381850 0x68f0000 12288 C:\Windows\SysWOW64\sfc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows File Protection 131795770645381850 0x5c020000 335872 C:\Windows\System32\wow64.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation Win32 Emulation on NT64 131795770645381850 0x5c080000 487424 C:\Windows\System32\wow64win.dll 10.0.14393.1884 (rs1_release.171101-1233) Microsoft Corporation Wow64 Console and Win32 API Logging 131795770645381850 0x5c100000 40960 C:\Windows\System32\wow64cpu.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation AMD64 Wow64 CPU 131795770645381850 0x5c480000 245760 C:\Program Files (x86)\360\Total Security\PDown.dll 1, 3, 0, 1420 Qihu 360 Software Co., Ltd. 360 Security Center Network Module 131795770645381850 0x5fe30000 581632 C:\Program Files (x86)\360\Total Security\safemon\wdui2.dll 9,6,0,1001 131795770645381850 0x60020000 413696 C:\Program Files (x86)\360\Total Security\netmon\360netctrl.dll 5, 3, 15, 2232 360.cn 360 Total Security NetwokrMonCtrl 131795770645381850 0x60090000 335872 C:\Program Files (x86)\360\Total Security\safemon\netmon.tpi 5, 1, 1, 3157 Qihoo 360 Technology Co. Ltd. 360安全卫士 流量防火墙模块 131795770645381850 0x60350000 1331200 C:\Program Files (x86)\360\Total Security\ToolBox.dll 1, 0, 0, 1094 Qihoo 360 Technology Co. Ltd. 360 Total Security 131795770645381850 0x60600000 200704 C:\Program Files (x86)\360\Total Security\safemon\WDRecord.dll 1, 0, 1, 1130 Qihu 360 Software Co., Ltd. 360 Internet Security Internet Protection 131795770645381850 0x606b0000 598016 C:\Program Files (x86)\360\Total Security\safemon\spsafe.dll 1, 0, 0, 1120 Qihu 360 Software Co., Ltd. 360 Internet Security Internet Protection 131795770645381850 0x60750000 1556480 C:\Program Files (x86)\360\Total Security\safemon\safemon.dll 8, 4, 0, 1420 Qihu 360 Software Co., Ltd. 360 Internet Security Internet Protection 131795770645381850 0x608d0000 159744 C:\Program Files (x86)\360\Total Security\safemon\safemonhlp.dll 1, 0, 0, 1265 Qihu 360 Software Co., Ltd. 360 Internet Security Internet Protection 131795770645381850 0x609b0000 241664 C:\Program Files (x86)\360\Total Security\safemon\360GuardBase.dll 3, 1, 0, 1060 360.cn 360保镖 131795770645381850 0x60ad0000 352256 C:\Program Files (x86)\360\Total Security\360Common.dll 7, 3, 0, 3233 360.cn 360安全衛士 基礎模塊 131795770645381850 0x60b30000 1712128 C:\Program Files (x86)\360\Total Security\safemon\360safemonpro.tpi 3, 1, 1, 3140 Qihu 360 Software Co., Ltd. 360 Internet Security Internet Protection 131795770645381850 0x60ce0000 581632 C:\Program Files (x86)\360\Total Security\dynlenv.dll 1, 1, 0, 1016 360.cn dynlenv Dynamic Link Library 131795770645381850 0x61070000 393216 C:\Program Files (x86)\360\Total Security\safemon\SomProxy.dll 1, 0, 0, 1900 Qihu 360 Software Co., Ltd. 360 Internet Security Internet Protection 131795770645381850 0x611e0000 1662976 C:\Program Files (x86)\360\Total Security\safemon\360connect.tpi 9,2,0,1030 QIHU 360 SOFTWARE CO. LIMITED 360 Connect 131795770645381850 0x61380000 315392 C:\Program Files (x86)\360\Total Security\safemon\360bsmon.tpi 6, 8, 0, 1248 Qihu 360 Software Co., Ltd. 360 Total Security Active Protection 131795770645381850 0x613d0000 667648 C:\Windows\WinSxS\x86_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.9247_none_5090cb78bcba4a35\MSVCR90.dll 9.00.30729.9247 Microsoft Corporation Microsoft® C Runtime Library 131795770645381850 0x618c0000 1478656 C:\Program Files (x86)\360\Total Security\sites.dll 11, 1, 0, 1212 360.cn 360安全卫士 131795770645381850 0x61a30000 512000 C:\Program Files (x86)\360\Total Security\safemon\360hipsPopWnd.dll 7,3,2,1211 Qihoo 360 Technology Co. Ltd. 360 Internet Security Proactive Defense 131795770645381850 0x61b30000 3350528 C:\Program Files (x86)\360\Total Security\softmgr\somkernl.dll 2, 1, 0, 1130 360.cn 360软件管家 131795770645381850 0x61e70000 614400 C:\Program Files (x86)\360\Total Security\ipc\ipcservice.dll 7, 1, 2, 1643 Qihu 360 Software Co., Ltd. 360 Total Security Proactive Defense 131795770645381850 0x61f10000 1458176 C:\Program Files (x86)\360\Total Security\deepscan\Cloudcom2.dll 3, 3, 10, 1288 Qihu 360 Software Co., Ltd. 360 Total Security 131795770645381850 0x62210000 446464 C:\Program Files (x86)\360\Total Security\360TSCommon.dll 9, 0, 0, 1016 QIHU 360 SOFTWARE CO. LIMITED 360 Total Security 131795770645381850 0x622f0000 520192 C:\Program Files (x86)\360\Total Security\deepscan\heavygate.dll 3, 8, 11, 1 Qihu 360 Software Co., Ltd. 360 Total Security Cloud Security 131795770645381850 0x62370000 602112 C:\Program Files (x86)\360\Total Security\360util.dll 1.0.0.1485 360.cn 360安全卫士 公共模块 131795770645381850 0x62410000 352256 C:\Program Files (x86)\360\Total Security\CrashReport.dll 7, 0, 0, 1000 360.cn 360杀毒 异常捕获程序 131795770645381850 0x62540000 278528 C:\Program Files (x86)\360\Total Security\360conf.dll 1, 0, 0, 1014 Qihu 360 Software Co., Ltd. 360 Internet Security Base Module 131795770645381850 0x62590000 987136 C:\Program Files (x86)\360\Total Security\360base.dll 1, 0, 0, 1165 360.cn 360安全卫士 基础模块 131795770645381850 0x62690000 266240 C:\Program Files (x86)\360\Total Security\deepscan\BAPI.dll 2.0.0.1191 360.cn BAPI 131795770645381850 0x627d0000 249856 C:\Windows\SysWOW64\edputil.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служебная программа EDP 131795770645381850 0x62960000 77824 C:\Program Files (x86)\360\Total Security\safemon\CleanPlusCache.tpi 1, 0, 0, 1004 QIHU 360 SOFTWARE CO. LIMITED CleanPlusCache 131795770645381850 0x62980000 376832 C:\Program Files (x86)\360\Total Security\360NetBase.dll 7, 25, 0, 76 360.cn 360安全卫士 网络基础模块 131795770645381850 0x67500000 1597440 C:\Windows\SysWOW64\ActXPrxy.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation ActiveX Interface Marshaling Library 131795770645381850 0x67690000 61440 C:\Windows\SysWOW64\sfc_os.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows File Protection 131795770645381850 0x676a0000 61440 C:\Program Files (x86)\360\Total Security\ipc\x64for32lib.dll 6, 8, 0, 1059 360.cn 360安全卫士 木马防火墙模块 131795771279916892 0x68850000 2764800 C:\Windows\SysWOW64\msftedit.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Элемент управления "Поле ввода форматированного текста", версия 8.5 131795770645381850 0x6b6d0000 102400 C:\Program Files (x86)\360\Total Security\i18n.dll 1, 0, 0, 1016 Qihu 360 Software Co., Ltd. 360 Total Security 131795770645381850 0x6bf00000 3715072 C:\Windows\SysWOW64\msi.dll 5.0.14393.2155 Microsoft Corporation Windows Installer 131795770645381850 0x6c290000 987136 C:\Windows\SysWOW64\twinapi.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation twinapi.appcore 131795770645381850 0x6c390000 1126400 C:\Windows\SysWOW64\dcomp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft DirectComposition Library 131795770645381850 0x6c4b0000 278528 C:\Windows\SysWOW64\dataexchange.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation Data exchange 131795770645381850 0x6e6e0000 151552 C:\Windows\SysWOW64\globinputhost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Globalization Extension API for Input 131795770645381850 0x6e710000 335872 C:\Windows\SysWOW64\Bcp47Langs.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation BCP47 Language Classes 131795770645381850 0x6e770000 1269760 C:\Windows\SysWOW64\Windows.Globalization.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Globalization 131795770645381850 0x6eed0000 274432 C:\Windows\SysWOW64\thumbcache.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Кэш эскизов Майкрософт 131795770645381850 0x6fc70000 385024 C:\Windows\SysWOW64\FirewallAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API брандмауэра Windows 131795770645381850 0x6fcd0000 151552 C:\Windows\SysWOW64\dbgcore.DLL 10.0.14321.1024 (debuggers(dbg).160715-1616) Microsoft Windows Core Debugging Helpers 131795770645381850 0x700d0000 434176 C:\Windows\SysWOW64\WINSPOOL.DRV 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Драйвер диспетчера очереди Windows 131795770645381850 0x70140000 274432 C:\Windows\SysWOW64\WINSTA.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Winstation Library 131795770645381850 0x70340000 536576 C:\Windows\SysWOW64\dxgi.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation DirectX Graphics Infrastructure 131795770645381850 0x703d0000 2056192 C:\Windows\SysWOW64\DWrite.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Службы Microsoft DirectX Typography 131795770645381850 0x705e0000 344064 C:\Windows\SysWOW64\OLEACC.dll 7.2.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Active Accessibility Core Component 131795770645381850 0x70640000 1499136 C:\Windows\SysWOW64\WindowsCodecs.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Microsoft Windows Codecs Library 131795770645381850 0x707b0000 110592 C:\Windows\SysWOW64\ncryptsslp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft SChannel Provider 131795770645381850 0x707f0000 2293760 C:\Windows\SysWOW64\d3d11.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation Direct3D 11 Runtime 131795770645381850 0x70a40000 81920 C:\Windows\SysWOW64\NLAapi.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Network Location Awareness 2 131795770645381850 0x70a60000 90112 C:\Windows\SysWOW64\pnrpnsp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик пространства имен PNRP 131795770645381850 0x70a80000 409600 C:\Windows\SysWOW64\schannel.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик безопасности TLS/SSL 131795770645381850 0x70b40000 69632 C:\Windows\SysWOW64\mskeyprotect.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик защиты ключей (Майкрософт) 131795770645381850 0x70b70000 163840 C:\Windows\SysWOW64\ntmarta.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик Windows NT MARTA 131795770645381850 0x70ba0000 188416 C:\Windows\SysWOW64\FWPolicyIOMgr.dll 10.0.14393.2189 (rs1_release.180329-1711) Microsoft Corporation FwPolicyIoMgr DLL 131795770645381850 0x70bd0000 147456 C:\Windows\SysWOW64\fwbase.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Firewall Base DLL 131795770645381850 0x70c00000 49152 C:\Windows\SysWOW64\winrnr.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation LDAP RnR Provider DLL 131795770645381850 0x70c10000 73728 C:\Windows\SysWOW64\napinsp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик оболочки совместимости для имен электронной почты 131795770645381850 0x70c30000 114688 C:\Windows\SysWOW64\SRVCLI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Server Service Client DLL 131795770645381850 0x70ca0000 45056 C:\Windows\SysWOW64\NETUTILS.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API Helpers DLL 131795770645381850 0x70cc0000 65536 C:\Windows\SysWOW64\ondemandconnroutehelper.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation On Demand Connctiond Route Helper 131795770645381850 0x70e60000 176128 C:\Windows\SysWOW64\NTASN1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft ASN.1 API 131795770645381850 0x70fd0000 1331200 C:\Windows\SysWOW64\dbghelp.dll 10.0.14321.1024 (rs1_release.160715-1616) Microsoft Windows Image Helper 131795770645381850 0x71140000 77824 C:\Windows\SysWOW64\NETAPI32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API DLL 131795770645381850 0x71170000 466944 C:\Program Files (x86)\360\Total Security\deepscan\CQhCltHttpW.dll 1, 4, 0, 1030 QIHU 360 SOFTWARE CO. LIMITED 360 Internet Security Base Module 131795770645381850 0x71610000 77824 C:\Windows\SysWOW64\dhcpcsvc6.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиент DHCPv6 131795770645381850 0x725e0000 2273280 C:\Windows\SysWOW64\iertutil.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служебная программа времени выполнения для Internet Explorer 131795770645381850 0x728e0000 1372160 C:\Windows\SysWOW64\PROPSYS.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Система страниц свойств (Майкрософт) 131795770645381850 0x72b90000 126976 C:\Windows\SysWOW64\dwmapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Интерфейс API диспетчера окон рабочего стола (Майкрософт) 131795770645381850 0x72cc0000 1658880 C:\Windows\SysWOW64\urlmon.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширения OLE32 для Win32 131795770645381850 0x73a40000 32768 C:\Windows\SysWOW64\WINNSI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Network Store Information RPC interface 131795770645381850 0x73a50000 299008 C:\Windows\SysWOW64\fwpuclnt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API пользовательского режима FWP/IPsec 131795770645381850 0x73ab0000 32768 C:\Windows\SysWOW64\rasadhlp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Remote Access AutoDial Helper 131795770645381850 0x73ac0000 81920 C:\Windows\SysWOW64\dhcpcsvc.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служба DHCP-клиента 131795770645381850 0x73ae0000 40960 C:\Windows\SysWOW64\Secur32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Security Support Provider Interface 131795770645381850 0x73c50000 1478656 C:\Windows\WinSxS\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.14393.1715_none_f67438d2f2547a00\gdiplus.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Microsoft GDI+ 131795770645381850 0x73ee0000 61440 C:\Windows\SysWOW64\WTSAPI32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Remote Desktop Session Host Server SDK APIs 131795770645381850 0x73ef0000 24576 C:\Windows\SysWOW64\MSIMG32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation GDIEXT Client DLL 131795770645381850 0x73f00000 192512 C:\Windows\SysWOW64\IPHLPAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API вспомогательного приложения IP 131795770645381850 0x73f30000 512000 C:\Windows\SysWOW64\DNSAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Динамическая библиотека API DNS-клиента 131795770645381850 0x73ff0000 319488 C:\Windows\SysWOW64\mswsock.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширение поставщика службы API Microsoft Windows Sockets 2.0 131795770645381850 0x74060000 192512 C:\Windows\SysWOW64\rsaenh.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Enhanced Cryptographic Provider 131795770645381850 0x74110000 479232 C:\Windows\SysWOW64\uxtheme.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека тем UxTheme (Microsoft) 131795770645381850 0x74190000 110592 C:\Windows\SysWOW64\bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795770645381850 0x741b0000 77824 C:\Windows\SysWOW64\CRYPTSP.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Cryptographic Service Provider API 131795770645381850 0x741f0000 143360 C:\Windows\SysWOW64\WINMMBASE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base Multimedia Extension API DLL 131795770645381850 0x74230000 147456 C:\Windows\SysWOW64\WINMM.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation MCI API DLL 131795770645381850 0x74260000 2514944 C:\Windows\SysWOW64\WININET.dll 11.00.14393.447 (rs1_release_inmarket.161102-0100) Microsoft Corporation Расширения Интернета для Win32 131795770645381850 0x744d0000 2138112 C:\Windows\WinSxS\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.14393.953_none_89c2555adb023171\COMCTL32.dll 6.10 (rs1_release_inmarket.170303-1614) Microsoft Corporation Библиотека элементов управления взаимодействия с пользователем 131795770645381850 0x746e0000 32768 C:\Windows\SysWOW64\VERSION.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Version Checking and File Installation Libraries 131795770645381850 0x746f0000 106496 C:\Windows\SysWOW64\USERENV.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Userenv 131795770645381850 0x74730000 598016 C:\Windows\SysWOW64\apphelp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиентская библиотека совместимости приложений 131795770645381850 0x747d0000 40960 C:\Windows\SysWOW64\CRYPTBASE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base cryptographic API DLL 131795770645381850 0x747e0000 126976 C:\Windows\SysWOW64\SspiCli.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Security Support Provider Interface 131795770645381850 0x74800000 151552 C:\Windows\SysWOW64\IMM32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Multi-User Windows IMM32 API Client DLL 131795770645381850 0x74910000 2170880 C:\Windows\SysWOW64\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795770645381850 0x74b30000 53248 C:\Windows\SysWOW64\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795770645381850 0x74b40000 102400 C:\Windows\SysWOW64\imagehlp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT Image Helper 131795770645381850 0x74b60000 790528 C:\Windows\SysWOW64\RPCRT4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795770645381850 0x74c30000 1417216 C:\Windows\SysWOW64\gdi32full.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation GDI Client DLL 131795770645381850 0x74d90000 24576 C:\Windows\SysWOW64\PSAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Process Status Helper 131795770645381850 0x74da0000 778240 C:\Windows\SysWOW64\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795770645381850 0x74e60000 557056 C:\Windows\SysWOW64\shcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795770645381850 0x74ef0000 540672 C:\Windows\SysWOW64\clbcatq.dll 2001.12.10941.16384 (rs1_release.160715-1616) Microsoft Corporation COM+ Configuration Catalog 131795770645381850 0x74f80000 278528 C:\Windows\SysWOW64\WINTRUST.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation Microsoft Trust Verification APIs 131795770645381850 0x74fd0000 405504 C:\Windows\SysWOW64\WS2_32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation 32-разрядная библиотека Windows Socket 2.0 131795770645381850 0x75040000 282624 C:\Windows\SysWOW64\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795770645381850 0x75090000 1265664 C:\Windows\SysWOW64\MSCTF.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Серверная библиотека MSCTF 131795770645381850 0x751d0000 57344 C:\Windows\SysWOW64\MSASN1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ASN.1 Runtime APIs 131795770645381850 0x751e0000 1708032 C:\Windows\SysWOW64\KERNELBASE.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645381850 0x75390000 266240 C:\Windows\SysWOW64\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795770645381850 0x753e0000 1560576 C:\Windows\SysWOW64\CRYPT32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API32 криптографии 131795770645381850 0x75560000 487424 C:\Windows\SysWOW64\ADVAPI32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795770645381850 0x756c0000 5693440 C:\Windows\SysWOW64\windows.storage.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API хранения Microsoft WinRT 131795770645381850 0x75c30000 372736 C:\Windows\SysWOW64\coml2.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft COM for Windows 131795770645381850 0x75c90000 286720 C:\Windows\SysWOW64\shlwapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека небольших программ оболочки 131795770645381850 0x75ce0000 20811776 C:\Windows\SysWOW64\SHELL32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Общая библиотека оболочки Windows 131795770645381850 0x770c0000 4239360 C:\Windows\SysWOW64\SETUPAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Setup API 131795770645381850 0x774d0000 86016 C:\Windows\SysWOW64\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795770645381850 0x774f0000 61440 C:\Windows\SysWOW64\profapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Profile Basic API 131795770645381850 0x77560000 1437696 C:\Windows\SysWOW64\USER32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795770645381850 0x776c0000 368640 C:\Windows\SysWOW64\bcryptPrimitives.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation Windows Cryptographic Primitives Library 131795770645381850 0x77780000 503808 C:\Windows\SysWOW64\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645381850 0x77800000 606208 C:\Windows\SysWOW64\OLEAUT32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795770645381850 0x77ac0000 966656 C:\Windows\SysWOW64\ole32.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft OLE для Windows 131795770645381850 0x77bb0000 176128 C:\Windows\SysWOW64\GDI32.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation GDI Client DLL 131795770645381850 0x77cd0000 221184 C:\Windows\SysWOW64\cfgmgr32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Configuration Manager DLL 131795770645381850 0x77d10000 28672 C:\Windows\SysWOW64\NSI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation NSI User-mode interface DLL 131795770645381850 0x77d20000 1585152 C:\Windows\SysWOW64\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 131795770645381850 0x7ffad0270000 1908736 C:\Windows\SYSTEM32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 51 6860 6724 49 00000000:000003e7 131765803555957830 0 0 0 Обязательная метка\Обязательный уровень системы NT AUTHORITY\СИСТЕМА QHWatchdog.exe C:\Program Files (x86)\360\Total Security\safemon\QHWatchdog.exe "C:\Program Files (x86)\360\Total Security\safemon\QHWatchdog.exe" /watch QIHU 360 SOFTWARE CO. LIMITED 8,2,0,1000 360 Total Security 131795770645381936 0xdf0000 139264 C:\Program Files (x86)\360\Total Security\safemon\QHWatchdog.exe 8,2,0,1000 QIHU 360 SOFTWARE CO. LIMITED 360 Total Security 131795770645381936 0x5c020000 335872 C:\Windows\System32\wow64.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation Win32 Emulation on NT64 131795770645381936 0x5c080000 487424 C:\Windows\System32\wow64win.dll 10.0.14393.1884 (rs1_release.171101-1233) Microsoft Corporation Wow64 Console and Win32 API Logging 131795770645381936 0x5c100000 40960 C:\Windows\System32\wow64cpu.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation AMD64 Wow64 CPU 131795770645381936 0x74730000 598016 C:\Windows\SysWOW64\apphelp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиентская библиотека совместимости приложений 131795770645381936 0x747d0000 40960 C:\Windows\SysWOW64\CRYPTBASE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base cryptographic API DLL 131795770645381936 0x747e0000 126976 C:\Windows\SysWOW64\SspiCli.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Security Support Provider Interface 131795770645381936 0x74910000 2170880 C:\Windows\SysWOW64\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795770645381936 0x74b60000 790528 C:\Windows\SysWOW64\RPCRT4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795770645381936 0x74c30000 1417216 C:\Windows\SysWOW64\gdi32full.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation GDI Client DLL 131795770645381936 0x74da0000 778240 C:\Windows\SysWOW64\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795770645381936 0x74e60000 557056 C:\Windows\SysWOW64\shcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795770645381936 0x751e0000 1708032 C:\Windows\SysWOW64\KERNELBASE.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645381936 0x75390000 266240 C:\Windows\SysWOW64\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795770645381936 0x75560000 487424 C:\Windows\SysWOW64\ADVAPI32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795770645381936 0x755e0000 917504 C:\Windows\SysWOW64\KERNEL32.DLL 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645381936 0x75c90000 286720 C:\Windows\SysWOW64\SHLWAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека небольших программ оболочки 131795770645381936 0x774d0000 86016 C:\Windows\SysWOW64\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795770645381936 0x77560000 1437696 C:\Windows\SysWOW64\USER32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795770645381936 0x776c0000 368640 C:\Windows\SysWOW64\bcryptPrimitives.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation Windows Cryptographic Primitives Library 131795770645381936 0x77bb0000 176128 C:\Windows\SysWOW64\GDI32.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation GDI Client DLL 131795770645381936 0x77d20000 1585152 C:\Windows\SysWOW64\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 131795770645381936 0x7ffad0270000 1908736 C:\Windows\SYSTEM32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 52 5924 664 6 00000000:000003e4 131765805232900810 0 0 0 Обязательная метка\Обязательный уровень системы NT AUTHORITY\NETWORK SERVICE wmiprvse.exe C:\Windows\sysWOW64\wbem\wmiprvse.exe C:\Windows\sysWOW64\wbem\wmiprvse.exe -Embedding Microsoft Corporation 10.0.14393.2155 (rs1_release_1.180305-1842) WMI Provider Host 131795770645382027 0x950000 434176 C:\Windows\sysWOW64\wbem\wmiprvse.exe 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation WMI Provider Host 131795770645382027 0x5c020000 335872 C:\Windows\System32\wow64.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation Win32 Emulation on NT64 131795770645382027 0x5c080000 487424 C:\Windows\System32\wow64win.dll 10.0.14393.1884 (rs1_release.171101-1233) Microsoft Corporation Wow64 Console and Win32 API Logging 131795770645382027 0x5c100000 40960 C:\Windows\System32\wow64cpu.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation AMD64 Wow64 CPU 131795770645382027 0x5fec0000 794624 C:\Windows\SysWOW64\wbem\FastProx.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation WMI Custom Marshaller 131795770645382027 0x5ffa0000 421888 C:\Windows\SysWOW64\wbemcomn.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation WMI 131795770645382027 0x60130000 36864 C:\Windows\SysWOW64\storagewmi_passthru.dll 10.0.14393.103 (rs1_release_inmarket.160819-1924) Microsoft Corporation WMI PassThru Provider for Storage Management 131795770645382027 0x60140000 114688 C:\Windows\SysWOW64\wbem\wmiutils.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation WMI 131795770645382027 0x60160000 73728 C:\Windows\SysWOW64\NCObjAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation 131795770645382027 0x604d0000 36864 C:\Windows\SysWOW64\delegatorprovider.dll 10.0.14393.103 (rs1_release_inmarket.160819-1924) Microsoft Corporation WMI PassThru Provider for Storage Management 131795770645382027 0x74190000 110592 C:\Windows\SysWOW64\bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795770645382027 0x747d0000 40960 C:\Windows\SysWOW64\CRYPTBASE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base cryptographic API DLL 131795770645382027 0x747e0000 126976 C:\Windows\SysWOW64\SspiCli.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Security Support Provider Interface 131795770645382027 0x74910000 2170880 C:\Windows\SysWOW64\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795770645382027 0x74b30000 53248 C:\Windows\SysWOW64\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795770645382027 0x74b60000 790528 C:\Windows\SysWOW64\RPCRT4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795770645382027 0x74c30000 1417216 C:\Windows\SysWOW64\gdi32full.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation GDI Client DLL 131795770645382027 0x74da0000 778240 C:\Windows\SysWOW64\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795770645382027 0x74ef0000 540672 C:\Windows\SysWOW64\clbcatq.dll 2001.12.10941.16384 (rs1_release.160715-1616) Microsoft Corporation COM+ Configuration Catalog 131795770645382027 0x74fd0000 405504 C:\Windows\SysWOW64\WS2_32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation 32-разрядная библиотека Windows Socket 2.0 131795770645382027 0x751e0000 1708032 C:\Windows\SysWOW64\KERNELBASE.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645382027 0x75390000 266240 C:\Windows\SysWOW64\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795770645382027 0x75560000 487424 C:\Windows\SysWOW64\advapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795770645382027 0x755e0000 917504 C:\Windows\SysWOW64\KERNEL32.DLL 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645382027 0x774d0000 86016 C:\Windows\SysWOW64\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795770645382027 0x77560000 1437696 C:\Windows\SysWOW64\user32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795770645382027 0x776c0000 368640 C:\Windows\SysWOW64\bcryptPrimitives.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation Windows Cryptographic Primitives Library 131795770645382027 0x77780000 503808 C:\Windows\SysWOW64\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645382027 0x77800000 606208 C:\Windows\SysWOW64\OLEAUT32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795770645382027 0x77bb0000 176128 C:\Windows\SysWOW64\GDI32.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation GDI Client DLL 131795770645382027 0x77d20000 1585152 C:\Windows\SysWOW64\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 131795770645382027 0x7ffad0270000 1908736 C:\Windows\SYSTEM32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 53 6180 664 6 00000000:0031f1da 131765807370364309 131795777990682736 0 1 Обязательная метка\Средний обязательный уровень WIN-0UOTFKKVN1S\User smartscreen.exe C:\Windows\System32\smartscreen.exe C:\Windows\System32\smartscreen.exe -Embedding Microsoft Corporation 10.0.14393.0 (rs1_release.160715-1616) SmartScreen 131795770645382127 0x7ff688690000 2416640 C:\Windows\System32\smartscreen.exe 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SmartScreen 131795770645382127 0x7ffaafa00000 2936832 C:\Windows\System32\certenroll.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиент регистрации служб сертификатов Active Directory Microsoft® 131795770645382127 0x7ffab2210000 798720 C:\Windows\System32\certca.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ЦС служб сертификации Microsoft® Active Directory 131795770645382127 0x7ffab2c00000 8179712 C:\Windows\System32\chakra.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft ® Chakra (Private) 131795770645382127 0x7ffab9c00000 1343488 C:\Windows\System32\Windows.Web.Http.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL Windows.Web.Http 131795770645382127 0x7ffabd4a0000 1613824 C:\Windows\SYSTEM32\windows.globalization.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Globalization 131795770645382127 0x7ffabe850000 155648 C:\Windows\System32\IDStore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Identity Store 131795770645382127 0x7ffabf1d0000 192512 C:\Windows\System32\cryptnet.dll 10.0.14393.2035 (rs1_release_inmarket.180110-1910) Microsoft Corporation Crypto Network Related API 131795770645382127 0x7ffabf5d0000 2924544 C:\Windows\System32\WININET.dll 11.00.14393.447 (rs1_release_inmarket.161102-0100) Microsoft Corporation Расширения Интернета для Win32 131795770645382127 0x7ffabfd80000 86016 C:\Windows\System32\threadpoolwinrt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows WinRT Threadpool 131795770645382127 0x7ffabff60000 135168 C:\Windows\system32\ncryptsslp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft SChannel Provider 131795770645382127 0x7ffac0ac0000 53248 C:\Windows\System32\tbs.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation TBS 131795770645382127 0x7ffac0ad0000 86016 C:\Windows\SYSTEM32\mskeyprotect.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик защиты ключей (Майкрософт) 131795770645382127 0x7ffac3290000 77824 C:\Windows\System32\smartscreenps.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SmartScreenPS 131795770645382127 0x7ffac34e0000 1843200 C:\Windows\System32\urlmon.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширения OLE32 для Win32 131795770645382127 0x7ffac36b0000 524288 C:\Windows\System32\msdelta.dll 5.00 (rs1_release.160715-1616) Microsoft Corporation Microsoft Patch Engine 131795770645382127 0x7ffac3cb0000 2772992 C:\Windows\System32\iertutil.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служебная программа времени выполнения для Internet Explorer 131795770645382127 0x7ffac6610000 40960 C:\Windows\System32\rasadhlp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Remote Access AutoDial Helper 131795770645382127 0x7ffac66a0000 86016 C:\Windows\SYSTEM32\ondemandconnroutehelper.dll 10.0.14393.351 (rs1_release_inmarket.161014-1755) Microsoft Corporation On Demand Connctiond Route Helper 131795770645382127 0x7ffac69c0000 839680 C:\Windows\SYSTEM32\winhttp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Службы HTTP Windows 131795770645382127 0x7ffac6b90000 53248 C:\Windows\System32\DSPARSE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Active Directory Domain Services API 131795770645382127 0x7ffac7720000 1601536 C:\Windows\System32\OneCoreUAPCommonProxyStub.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation OneCoreUAP Common Proxy Stub 131795770645382127 0x7ffac83d0000 106496 C:\Windows\SYSTEM32\dhcpcsvc.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служба DHCP-клиента 131795770645382127 0x7ffac83f0000 90112 C:\Windows\SYSTEM32\dhcpcsvc6.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиент DHCPv6 131795770645382127 0x7ffac8420000 434176 C:\Windows\System32\fwpuclnt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API пользовательского режима FWP/IPsec 131795770645382127 0x7ffac8810000 45056 C:\Windows\SYSTEM32\WINNSI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Network Store Information RPC interface 131795770645382127 0x7ffac90b0000 90112 C:\Windows\System32\wkscli.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Workstation Service Client DLL 131795770645382127 0x7ffac92e0000 1269760 C:\Windows\SYSTEM32\wintypes.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL основных типов Windows 131795770645382127 0x7ffaca570000 421888 C:\Windows\SYSTEM32\Bcp47Langs.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation BCP47 Language Classes 131795770645382127 0x7ffaca610000 143360 C:\Windows\System32\SAMLIB.dll 10.0.14393.82 (rs1_release.160805-1735) Microsoft Corporation SAM Library DLL 131795770645382127 0x7ffacb360000 176128 C:\Windows\SYSTEM32\fwbase.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Firewall Base DLL 131795770645382127 0x7ffacb460000 548864 C:\Windows\SYSTEM32\firewallapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API брандмауэра Windows 131795770645382127 0x7ffacb6f0000 143360 C:\Windows\SYSTEM32\gpapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиентские функции API групповой политики 131795770645382127 0x7ffacbaf0000 495616 C:\Windows\system32\schannel.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик безопасности TLS/SSL 131795770645382127 0x7ffacbbb0000 208896 C:\Windows\system32\rsaenh.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Enhanced Cryptographic Provider 131795770645382127 0x7ffacbbf0000 40960 C:\Windows\System32\DPAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Data Protection API 131795770645382127 0x7ffacbd30000 229376 C:\Windows\SYSTEM32\IPHLPAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API вспомогательного приложения IP 131795770645382127 0x7ffacbd70000 659456 C:\Windows\System32\DNSAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Динамическая библиотека API DNS-клиента 131795770645382127 0x7ffacbe20000 53248 C:\Windows\System32\netutils.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API Helpers DLL 131795770645382127 0x7ffacbfb0000 376832 C:\Windows\system32\mswsock.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширение поставщика службы API Microsoft Windows Sockets 2.0 131795770645382127 0x7ffacc150000 94208 C:\Windows\SYSTEM32\cryptsp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Cryptographic Service Provider API 131795770645382127 0x7ffacc170000 45056 C:\Windows\System32\CRYPTBASE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base cryptographic API DLL 131795770645382127 0x7ffacc1f0000 241664 C:\Windows\SYSTEM32\NTASN1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft ASN.1 API 131795770645382127 0x7ffacc230000 155648 C:\Windows\SYSTEM32\ncrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Маршрутизатор Windows NCrypt 131795770645382127 0x7ffacc350000 180224 C:\Windows\System32\SspiCli.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Security Support Provider Interface 131795770645382127 0x7ffacc620000 176128 C:\Windows\System32\bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795770645382127 0x7ffacc6e0000 61440 C:\Windows\System32\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795770645382127 0x7ffacc6f0000 311296 C:\Windows\System32\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795770645382127 0x7ffacc740000 81920 C:\Windows\System32\profapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Profile Basic API 131795770645382127 0x7ffacc760000 65536 C:\Windows\System32\MSASN1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ASN.1 Runtime APIs 131795770645382127 0x7ffacc8f0000 1003520 C:\Windows\System32\ucrtbase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645382127 0x7ffacc9f0000 434176 C:\Windows\System32\bcryptPrimitives.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Cryptographic Primitives Library 131795770645382127 0x7ffacca60000 122880 C:\Windows\System32\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795770645382127 0x7ffacca80000 348160 C:\Windows\System32\WINTRUST.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation Microsoft Trust Verification APIs 131795770645382127 0x7ffaccae0000 692224 C:\Windows\System32\shcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795770645382127 0x7ffaccb90000 7180288 C:\Windows\System32\windows.storage.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API хранения Microsoft WinRT 131795770645382127 0x7ffacd270000 2215936 C:\Windows\System32\KERNELBASE.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645382127 0x7ffacd490000 1871872 C:\Windows\System32\CRYPT32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API32 криптографии 131795770645382127 0x7ffacd710000 638976 C:\Windows\System32\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645382127 0x7ffacd7b0000 270336 C:\Windows\System32\CFGMGR32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Configuration Manager DLL 131795770645382127 0x7ffaced20000 782336 C:\Windows\System32\OLEAUT32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795770645382127 0x7ffacee50000 1183744 C:\Windows\System32\RPCRT4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795770645382127 0x7ffacef80000 32768 C:\Windows\System32\NSI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation NSI User-mode interface DLL 131795770645382127 0x7ffacef90000 647168 C:\Windows\System32\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795770645382127 0x7ffacf030000 651264 C:\Windows\System32\clbcatq.dll 2001.12.10941.16384 (rs1_release.160715-1616) Microsoft Corporation COM+ Configuration Catalog 131795770645382127 0x7ffacf0d0000 704512 C:\Windows\System32\KERNEL32.DLL 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645382127 0x7ffacf180000 376832 C:\Windows\System32\WLDAP32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Win32 LDAP API DLL 131795770645382127 0x7ffacf770000 212992 C:\Windows\System32\GDI32.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation GDI Client DLL 131795770645382127 0x7ffacf820000 434176 C:\Windows\System32\WS2_32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation 32-разрядная библиотека Windows Socket 2.0 131795770645382127 0x7ffacf890000 188416 C:\Windows\System32\IMM32.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Multi-User Windows IMM32 API Client DLL 131795770645382127 0x7ffacf8c0000 1462272 C:\Windows\System32\user32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795770645382127 0x7ffacfb30000 2916352 C:\Windows\System32\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795770645382127 0x7ffacfe20000 663552 C:\Windows\System32\advapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795770645382127 0x7ffad0070000 1277952 C:\Windows\System32\ole32.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft OLE для Windows 131795770645382127 0x7ffad01b0000 335872 C:\Windows\System32\shlwapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека небольших программ оболочки 131795770645382127 0x7ffad0210000 364544 C:\Windows\System32\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795770645382127 0x7ffad0270000 1908736 C:\Windows\SYSTEM32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 54 4408 348 24 00000000:0031f1ab 131765812380694767 0 0 1 Обязательная метка\Высокий обязательный уровень WIN-0UOTFKKVN1S\User taskhostw.exe C:\Windows\system32\taskhostw.exe taskhostw.exe Microsoft Corporation 10.0.14393.0 (rs1_release.160715-1616) Хост-процесс для задач Windows 131795770645382224 0x17826230000 12288 C:\Windows\SYSTEM32\sfc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows File Protection 131795770645382224 0x7ff794e10000 102400 C:\Windows\system32\taskhostw.exe 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Хост-процесс для задач Windows 131795770645382224 0x7ffab1140000 1134592 C:\Windows\System32\ReAgent.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL агента восстановления Microsoft Windows 131795770645382224 0x7ffab1c40000 1302528 C:\Windows\System32\LicenseManager.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation LicenseManager 131795770645382224 0x7ffab8da0000 1675264 C:\Windows\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.14393.1715_none_aec701fbddd850fa\gdiplus.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Microsoft GDI+ 131795770645382224 0x7ffab93b0000 897024 C:\Windows\System32\TokenBroker.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Token Broker 131795770645382224 0x7ffabafc0000 700416 C:\Windows\system32\wer.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека сообщений об ошибках Windows 131795770645382224 0x7ffabb2b0000 1089536 C:\Windows\system32\SettingSyncCore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Setting Synchronization Core 131795770645382224 0x7ffabbd20000 106496 C:\Windows\SYSTEM32\settingsyncpolicy.dll 10.0.14393.82 (rs1_release.160805-1735) Microsoft Corporation SettingSync Policy 131795770645382224 0x7ffabe000000 409600 C:\Windows\system32\WinSATAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows System Assessment Tool API 131795770645382224 0x7ffabe850000 155648 C:\Windows\System32\IDStore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Identity Store 131795770645382224 0x7ffabef80000 69632 C:\Windows\SYSTEM32\sfc_os.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows File Protection 131795770645382224 0x7ffabefd0000 258048 C:\Windows\system32\AEPIC.dll 10.0.17060.1029 (WinBuild.160101.0800) Microsoft Corporation Application Experience Program Cache 131795770645382224 0x7ffabf050000 225280 C:\Windows\System32\sdiageng.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Подсистема выполнения сценариев диагностики 131795770645382224 0x7ffabf1d0000 192512 C:\Windows\system32\cryptnet.dll 10.0.14393.2035 (rs1_release_inmarket.180110-1910) Microsoft Corporation Crypto Network Related API 131795770645382224 0x7ffabf330000 2457600 C:\Windows\System32\msxml6.dll 6.30.14393.2156 Microsoft Corporation MSXML 6.0 131795770645382224 0x7ffabfbe0000 1011712 C:\Windows\System32\Windows.Security.Authentication.OnlineId.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation Windows Runtime OnlineId Authentication DLL 131795770645382224 0x7ffabff60000 135168 C:\Windows\system32\ncryptsslp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft SChannel Provider 131795770645382224 0x7ffac0ad0000 86016 C:\Windows\SYSTEM32\mskeyprotect.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик защиты ключей (Майкрософт) 131795770645382224 0x7ffac0bf0000 3559424 C:\Windows\System32\ActXPrxy.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation ActiveX Interface Marshaling Library 131795770645382224 0x7ffac1d60000 589824 C:\Windows\system32\webio.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API протоколов передачи по Веб 131795770645382224 0x7ffac23c0000 331776 C:\Windows\System32\OneCoreCommonProxyStub.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation OneCore Common Proxy Stub 131795770645382224 0x7ffac2750000 106496 C:\Windows\System32\bcd.dll 10.0.14393.1794 (rs1_release.171008-1615) Microsoft Corporation BCD DLL 131795770645382224 0x7ffac2b80000 40960 C:\Windows\system32\VERSION.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Version Checking and File Installation Libraries 131795770645382224 0x7ffac2c30000 135168 C:\Windows\System32\CLIPC.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиент платформы лицензирования клиента 131795770645382224 0x7ffac3810000 167936 C:\Windows\System32\Cabinet.dll 5.00 (rs1_release.160715-1616) Microsoft Corporation Microsoft® Cabinet File API 131795770645382224 0x7ffac3cb0000 2772992 C:\Windows\SYSTEM32\iertutil.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служебная программа времени выполнения для Internet Explorer 131795770645382224 0x7ffac4000000 274432 C:\Windows\SYSTEM32\policymanager.dll 10.0.14393.2035 (rs1_release_inmarket.180110-1910) Microsoft Corporation Policy Manager DLL 131795770645382224 0x7ffac4050000 118784 C:\Windows\System32\wdi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Инфраструктура диагностики Windows 131795770645382224 0x7ffac4ae0000 69632 C:\Windows\System32\sdiagschd.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Запланированная задача сценариев проверки 131795770645382224 0x7ffac4b00000 45056 C:\Windows\System32\MemoryDiagnostic.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Обработчик задач средства проверки памяти Windows (Майкрософт) 131795770645382224 0x7ffac5c80000 90112 C:\Windows\System32\TempSignedLicenseExchangeTask.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation TempSignedLicenseExchangeTask Task 131795770645382224 0x7ffac60e0000 221184 C:\Windows\system32\XmlLite.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft XmlLite Library 131795770645382224 0x7ffac6610000 40960 C:\Windows\System32\rasadhlp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Remote Access AutoDial Helper 131795770645382224 0x7ffac69c0000 839680 C:\Windows\system32\WINHTTP.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Службы HTTP Windows 131795770645382224 0x7ffac6c40000 2596864 C:\Windows\WinSxS\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.14393.953_none_42151e83c686086b\COMCTL32.dll 6.10 (rs1_release_inmarket.170303-1614) Microsoft Corporation Библиотека элементов управления взаимодействия с пользователем 131795770645382224 0x7ffac79c0000 57344 C:\Windows\System32\npmproxy.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Network List Manager Proxy 131795770645382224 0x7ffac83d0000 106496 C:\Windows\SYSTEM32\dhcpcsvc.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служба DHCP-клиента 131795770645382224 0x7ffac83f0000 90112 C:\Windows\SYSTEM32\dhcpcsvc6.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиент DHCPv6 131795770645382224 0x7ffac8810000 45056 C:\Windows\SYSTEM32\WINNSI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Network Store Information RPC interface 131795770645382224 0x7ffac8cf0000 815104 C:\Windows\System32\taskschd.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Task Scheduler COM API 131795770645382224 0x7ffac8dc0000 167936 C:\Windows\system32\dbgcore.DLL 10.0.14321.1024 (debuggers(dbg).160715-1616) Microsoft Windows Core Debugging Helpers 131795770645382224 0x7ffac8df0000 1646592 C:\Windows\system32\dbghelp.dll 10.0.14321.1024 (rs1_release.160715-1616) Microsoft Windows Image Helper 131795770645382224 0x7ffac9220000 397312 C:\Windows\System32\wevtapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API настройки и использования событий 131795770645382224 0x7ffac92e0000 1269760 C:\Windows\System32\WinTypes.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL основных типов Windows 131795770645382224 0x7ffac9f10000 221184 C:\Windows\System32\netprofm.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Network List Manager 131795770645382224 0x7ffaca200000 32768 C:\Windows\System32\ReAgentTask.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Обработчик задач агента восстановления Microsoft Windows 131795770645382224 0x7ffaca210000 225280 C:\Windows\system32\RstrtMgr.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Диспетчер перезапуска 131795770645382224 0x7ffaca4e0000 77824 C:\Windows\SYSTEM32\wtsapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Remote Desktop Session Host Server SDK APIs 131795770645382224 0x7ffaca5e0000 155648 C:\Windows\system32\dwmapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Интерфейс API диспетчера окон рабочего стола (Майкрософт) 131795770645382224 0x7ffaca610000 143360 C:\Windows\System32\SAMLIB.dll 10.0.14393.82 (rs1_release.160805-1735) Microsoft Corporation SAM Library DLL 131795770645382224 0x7ffacac00000 94208 C:\Windows\system32\radarrs.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation программа устранения нехватки системных ресурсов Microsoft Windows 131795770645382224 0x7ffacaf00000 610304 C:\Windows\system32\uxtheme.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека тем UxTheme (Microsoft) 131795770645382224 0x7ffacb140000 593920 C:\Windows\SYSTEM32\msvcp110_win.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Microsoft® STL110 C++ Runtime Library 131795770645382224 0x7ffacb1e0000 1163264 C:\Windows\System32\twinapi.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation twinapi.appcore 131795770645382224 0x7ffacb420000 204800 C:\Windows\SYSTEM32\ntmarta.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик Windows NT MARTA 131795770645382224 0x7ffacb6f0000 143360 C:\Windows\SYSTEM32\gpapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиентские функции API групповой политики 131795770645382224 0x7ffacb780000 651264 C:\Windows\system32\dxgi.dll 10.0.14393.953 (rs1_release_inmarket.170303-1614) Microsoft Corporation DirectX Graphics Infrastructure 131795770645382224 0x7ffacbaf0000 495616 C:\Windows\system32\schannel.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик безопасности TLS/SSL 131795770645382224 0x7ffacbbb0000 208896 C:\Windows\system32\rsaenh.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Enhanced Cryptographic Provider 131795770645382224 0x7ffacbbf0000 40960 C:\Windows\System32\DPAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Data Protection API 131795770645382224 0x7ffacbd30000 229376 C:\Windows\SYSTEM32\IPHLPAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API вспомогательного приложения IP 131795770645382224 0x7ffacbd70000 659456 C:\Windows\system32\DNSAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Динамическая библиотека API DNS-клиента 131795770645382224 0x7ffacbe40000 126976 C:\Windows\system32\USERENV.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Userenv 131795770645382224 0x7ffacbfb0000 376832 C:\Windows\system32\mswsock.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширение поставщика службы API Microsoft Windows Sockets 2.0 131795770645382224 0x7ffacc150000 94208 C:\Windows\system32\CRYPTSP.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Cryptographic Service Provider API 131795770645382224 0x7ffacc170000 45056 C:\Windows\system32\CRYPTBASE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base cryptographic API DLL 131795770645382224 0x7ffacc1f0000 241664 C:\Windows\system32\NTASN1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft ASN.1 API 131795770645382224 0x7ffacc230000 155648 C:\Windows\system32\ncrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Маршрутизатор Windows NCrypt 131795770645382224 0x7ffacc350000 180224 C:\Windows\system32\SspiCli.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Security Support Provider Interface 131795770645382224 0x7ffacc520000 622592 C:\Windows\SYSTEM32\sxs.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Fusion 2.5 131795770645382224 0x7ffacc620000 176128 C:\Windows\system32\bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795770645382224 0x7ffacc6e0000 61440 C:\Windows\System32\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795770645382224 0x7ffacc6f0000 311296 C:\Windows\System32\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795770645382224 0x7ffacc740000 81920 C:\Windows\System32\profapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Profile Basic API 131795770645382224 0x7ffacc760000 65536 C:\Windows\System32\MSASN1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ASN.1 Runtime APIs 131795770645382224 0x7ffacc8f0000 1003520 C:\Windows\System32\ucrtbase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645382224 0x7ffacc9f0000 434176 C:\Windows\System32\bcryptPrimitives.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Cryptographic Primitives Library 131795770645382224 0x7ffacca60000 122880 C:\Windows\System32\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795770645382224 0x7ffacca80000 348160 C:\Windows\System32\WINTRUST.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation Microsoft Trust Verification APIs 131795770645382224 0x7ffaccae0000 692224 C:\Windows\System32\shcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795770645382224 0x7ffaccb90000 7180288 C:\Windows\System32\windows.storage.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API хранения Microsoft WinRT 131795770645382224 0x7ffacd270000 2215936 C:\Windows\System32\KERNELBASE.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645382224 0x7ffacd490000 1871872 C:\Windows\System32\CRYPT32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API32 криптографии 131795770645382224 0x7ffacd710000 638976 C:\Windows\System32\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645382224 0x7ffacd7b0000 270336 C:\Windows\System32\cfgmgr32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Configuration Manager DLL 131795770645382224 0x7ffacd810000 22056960 C:\Windows\System32\SHELL32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Общая библиотека оболочки Windows 131795770645382224 0x7ffaced20000 782336 C:\Windows\System32\OLEAUT32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795770645382224 0x7ffacee50000 1183744 C:\Windows\System32\RPCRT4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795770645382224 0x7ffacef80000 32768 C:\Windows\System32\NSI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation NSI User-mode interface DLL 131795770645382224 0x7ffacef90000 647168 C:\Windows\System32\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795770645382224 0x7ffacf030000 651264 C:\Windows\System32\clbcatq.dll 2001.12.10941.16384 (rs1_release.160715-1616) Microsoft Corporation COM+ Configuration Catalog 131795770645382224 0x7ffacf0d0000 704512 C:\Windows\System32\KERNEL32.DLL 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645382224 0x7ffacf1e0000 1417216 C:\Windows\System32\MSCTF.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Серверная библиотека MSCTF 131795770645382224 0x7ffacf340000 4362240 C:\Windows\System32\SETUPAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Setup API 131795770645382224 0x7ffacf770000 212992 C:\Windows\System32\GDI32.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation GDI Client DLL 131795770645382224 0x7ffacf820000 434176 C:\Windows\System32\WS2_32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation 32-разрядная библиотека Windows Socket 2.0 131795770645382224 0x7ffacf890000 188416 C:\Windows\System32\imm32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Multi-User Windows IMM32 API Client DLL 131795770645382224 0x7ffacf8c0000 1462272 C:\Windows\System32\USER32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795770645382224 0x7ffacfb30000 2916352 C:\Windows\System32\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795770645382224 0x7ffacfe00000 114688 C:\Windows\System32\imagehlp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT Image Helper 131795770645382224 0x7ffacfe20000 663552 C:\Windows\System32\ADVAPI32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795770645382224 0x7ffad0070000 1277952 C:\Windows\System32\ole32.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft OLE для Windows 131795770645382224 0x7ffad01b0000 335872 C:\Windows\System32\SHLWAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека небольших программ оболочки 131795770645382224 0x7ffad0210000 364544 C:\Windows\System32\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795770645382224 0x7ffad0270000 1908736 C:\Windows\SYSTEM32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 55 6944 664 6 00000000:0031f1da 131767576301455145 0 0 1 Обязательная метка\Низкий обязательный уровень WIN-0UOTFKKVN1S\User SkypeHost.exe C:\Program Files\WindowsApps\Microsoft.SkypeApp_12.1815.210.0_x64__kzf8qxf38zg5c\SkypeHost.exe "C:\Program Files\WindowsApps\Microsoft.SkypeApp_12.1815.210.0_x64__kzf8qxf38zg5c\SkypeHost.exe" -ServerName:SkypeHost.ServerServer Microsoft Corporation 12.1815.210.0 Microsoft Skype 131795770645382388 0x7ff7e8670000 102400 C:\Program Files\WindowsApps\Microsoft.SkypeApp_12.1815.210.0_x64__kzf8qxf38zg5c\SkypeHost.exe 12.1815.210.0 Microsoft Corporation Microsoft Skype 131795770645382388 0x7ffaae130000 22437888 C:\Program Files\WindowsApps\Microsoft.SkypeApp_12.1815.210.0_x64__kzf8qxf38zg5c\SkyWrap.dll 12.1815.210.0 Microsoft Corporation Microsoft Skype 131795770645382388 0x7ffabaab0000 94208 C:\Windows\SYSTEM32\profext.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation profext 131795770645382388 0x7ffabc530000 241664 C:\Windows\SYSTEM32\Windows.Networking.HostName.dll 10.0.14393.953 (rs1_release_inmarket.170303-1614) Microsoft Corporation Windows.Networking.HostName DLL 131795770645382388 0x7ffabca50000 819200 C:\Windows\System32\Windows.Security.Authentication.Web.Core.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Token Broker WinRT API 131795770645382388 0x7ffabe150000 2691072 C:\Program Files\WindowsApps\Microsoft.SkypeApp_12.1815.210.0_x64__kzf8qxf38zg5c\skypert.dll 2018.15.01.31 SkypeRT shared library 131795770645382388 0x7ffabea90000 135168 C:\Windows\System32\Windows.ApplicationModel.Background.SystemEventsBroker.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Background System Events Broker API Server 131795770645382388 0x7ffabeac0000 335872 C:\Windows\System32\Windows.Storage.ApplicationData.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Application Data API Server 131795770645382388 0x7ffac0470000 1478656 C:\Windows\SYSTEM32\MFPlat.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Media Foundation Platform DLL 131795770645382388 0x7ffac0910000 724992 C:\Windows\SYSTEM32\Windows.Networking.Connectivity.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Networking Connectivity Runtime DLL 131795770645382388 0x7ffac0bf0000 3559424 C:\Windows\System32\ActXPrxy.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation ActiveX Interface Marshaling Library 131795770645382388 0x7ffac1a80000 978944 C:\Windows\SYSTEM32\Windows.Networking.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows.Networking DLL 131795770645382388 0x7ffac1b90000 630784 C:\Program Files\WindowsApps\Microsoft.VCLibs.140.00_14.0.25426.0_x64__8wekyb3d8bbwe\MSVCP140_APP.dll 14.11.25426.0 built by: VCTOOLSREL Microsoft Corporation Microsoft® C Runtime Library 131795770645382388 0x7ffac1e50000 188416 C:\Windows\SYSTEM32\RTWorkQ.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL для WorkQueue реального времени 131795770645382388 0x7ffac23c0000 331776 C:\Windows\System32\OneCoreCommonProxyStub.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation OneCore Common Proxy Stub 131795770645382388 0x7ffac2b30000 286720 C:\Windows\System32\usermgrproxy.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation UserMgrProxy 131795770645382388 0x7ffac2c30000 135168 C:\Windows\SYSTEM32\clipc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиент платформы лицензирования клиента 131795770645382388 0x7ffac3cb0000 2772992 C:\Windows\System32\iertutil.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служебная программа времени выполнения для Internet Explorer 131795770645382388 0x7ffac4b10000 307200 C:\Program Files\WindowsApps\Microsoft.VCLibs.140.00_14.0.25426.0_x64__8wekyb3d8bbwe\CONCRT140_APP.dll 14.11.25426.0 built by: VCTOOLSREL Microsoft Corporation Microsoft® Concurrency Runtime Library 131795770645382388 0x7ffac4c60000 385024 C:\Program Files\WindowsApps\Microsoft.VCLibs.140.00_14.0.25426.0_x64__8wekyb3d8bbwe\vccorlib140_app.DLL 14.11.25426.0 built by: VCTOOLSREL Microsoft Corporation Microsoft ® VC WinRT core library 131795770645382388 0x7ffac5070000 798720 C:\Windows\System32\Windows.Web.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL веб-клиента 131795770645382388 0x7ffac6620000 192512 C:\Windows\System32\biwinrt.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation Windows Background Broker Infrastructure 131795770645382388 0x7ffac7580000 1077248 C:\Windows\SYSTEM32\mrmcorer.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Windows MRM 131795770645382388 0x7ffac7720000 1601536 C:\Windows\System32\OneCoreUAPCommonProxyStub.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation OneCoreUAP Common Proxy Stub 131795770645382388 0x7ffac7c80000 208896 C:\Program Files\WindowsApps\Microsoft.SkypeApp_12.1815.210.0_x64__kzf8qxf38zg5c\SkypeBackgroundTasks.dll 12.1815.210.0 Microsoft Corporation Microsoft Skype 131795770645382388 0x7ffac7d80000 49152 C:\Windows\System32\Windows.ApplicationModel.Background.TimeBroker.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Background Time Broker API Server 131795770645382388 0x7ffac8540000 286720 C:\Windows\System32\vaultcli.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиентская библиотека хранилища учетных данных 131795770645382388 0x7ffac92e0000 1269760 C:\Windows\System32\WinTypes.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL основных типов Windows 131795770645382388 0x7ffaca260000 45056 C:\Windows\SYSTEM32\SystemEventsBrokerClient.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation system Events Broker Client Library 131795770645382388 0x7ffaca340000 1593344 C:\Windows\SYSTEM32\PROPSYS.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Система страниц свойств (Майкрософт) 131795770645382388 0x7ffacab80000 90112 C:\Program Files\WindowsApps\Microsoft.VCLibs.140.00_14.0.25426.0_x64__8wekyb3d8bbwe\VCRUNTIME140_APP.dll 14.11.25426.0 built by: VCTOOLSREL Microsoft Corporation Microsoft® C Runtime Library 131795770645382388 0x7ffacb1e0000 1163264 C:\Windows\SYSTEM32\twinapi.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation twinapi.appcore 131795770645382388 0x7ffacb360000 176128 C:\Windows\SYSTEM32\fwbase.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Firewall Base DLL 131795770645382388 0x7ffacb420000 204800 C:\Windows\SYSTEM32\ntmarta.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик Windows NT MARTA 131795770645382388 0x7ffacb460000 548864 C:\Windows\SYSTEM32\FirewallAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API брандмауэра Windows 131795770645382388 0x7ffacbbf0000 40960 C:\Windows\SYSTEM32\DPAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Data Protection API 131795770645382388 0x7ffacbd30000 229376 C:\Windows\SYSTEM32\IPHLPAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API вспомогательного приложения IP 131795770645382388 0x7ffacbe40000 126976 C:\Windows\SYSTEM32\USERENV.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Userenv 131795770645382388 0x7ffacc170000 45056 C:\Windows\SYSTEM32\CRYPTBASE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base cryptographic API DLL 131795770645382388 0x7ffacc620000 176128 C:\Windows\SYSTEM32\bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795770645382388 0x7ffacc6e0000 61440 C:\Windows\System32\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795770645382388 0x7ffacc6f0000 311296 C:\Windows\System32\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795770645382388 0x7ffacc740000 81920 C:\Windows\System32\profapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Profile Basic API 131795770645382388 0x7ffacc760000 65536 C:\Windows\System32\MSASN1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ASN.1 Runtime APIs 131795770645382388 0x7ffacc8f0000 1003520 C:\Windows\System32\ucrtbase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645382388 0x7ffacc9f0000 434176 C:\Windows\System32\bcryptPrimitives.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Cryptographic Primitives Library 131795770645382388 0x7ffacca60000 122880 C:\Windows\System32\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795770645382388 0x7ffaccae0000 692224 C:\Windows\System32\shcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795770645382388 0x7ffaccb90000 7180288 C:\Windows\System32\windows.storage.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API хранения Microsoft WinRT 131795770645382388 0x7ffacd270000 2215936 C:\Windows\System32\KERNELBASE.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645382388 0x7ffacd490000 1871872 C:\Windows\System32\CRYPT32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API32 криптографии 131795770645382388 0x7ffacd710000 638976 C:\Windows\System32\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645382388 0x7ffacd7b0000 270336 C:\Windows\System32\cfgmgr32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Configuration Manager DLL 131795770645382388 0x7ffaced20000 782336 C:\Windows\System32\OLEAUT32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795770645382388 0x7ffacee50000 1183744 C:\Windows\System32\RPCRT4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795770645382388 0x7ffacef90000 647168 C:\Windows\System32\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795770645382388 0x7ffacf0d0000 704512 C:\Windows\System32\KERNEL32.DLL 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645382388 0x7ffacf770000 212992 C:\Windows\System32\GDI32.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation GDI Client DLL 131795770645382388 0x7ffacf820000 434176 C:\Windows\System32\WS2_32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation 32-разрядная библиотека Windows Socket 2.0 131795770645382388 0x7ffacf890000 188416 C:\Windows\System32\IMM32.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Multi-User Windows IMM32 API Client DLL 131795770645382388 0x7ffacf8c0000 1462272 C:\Windows\System32\USER32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795770645382388 0x7ffacfb30000 2916352 C:\Windows\System32\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795770645382388 0x7ffacfe20000 663552 C:\Windows\System32\advapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795770645382388 0x7ffad01b0000 335872 C:\Windows\System32\shlwapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека небольших программ оболочки 131795770645382388 0x7ffad0210000 364544 C:\Windows\System32\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795770645382388 0x7ffad0270000 1908736 C:\Windows\SYSTEM32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 56 1048 580 4 00000000:000003e7 131768729449405953 0 0 1 Обязательная метка\Обязательный уровень системы NT AUTHORITY\СИСТЕМА sedsvc.exe C:\Program Files\rempl\sedsvc.exe "C:\Program Files\rempl\sedsvc.exe" Microsoft Corporation 10.0.16299.10000 (WinBuild.160101.0800) sedsvc 131795770645382485 0x7ff751430000 307200 C:\Program Files\rempl\sedsvc.exe 10.0.16299.10000 (WinBuild.160101.0800) Microsoft Corporation sedsvc 131795770645382485 0x7ffabf5d0000 2924544 C:\Windows\SYSTEM32\WININET.dll 11.00.14393.447 (rs1_release_inmarket.161102-0100) Microsoft Corporation Расширения Интернета для Win32 131795770645382485 0x7ffac2b80000 40960 C:\Windows\SYSTEM32\VERSION.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Version Checking and File Installation Libraries 131795770645382485 0x7ffac69c0000 839680 C:\Windows\SYSTEM32\WINHTTP.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Службы HTTP Windows 131795770645382485 0x7ffac8cf0000 815104 C:\Windows\System32\taskschd.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Task Scheduler COM API 131795770645382485 0x7ffaca4e0000 77824 C:\Windows\SYSTEM32\WTSAPI32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Remote Desktop Session Host Server SDK APIs 131795770645382485 0x7ffacb6f0000 143360 C:\Windows\SYSTEM32\gpapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиентские функции API групповой политики 131795770645382485 0x7ffacbbb0000 208896 C:\Windows\system32\rsaenh.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Enhanced Cryptographic Provider 131795770645382485 0x7ffacc150000 94208 C:\Windows\SYSTEM32\CRYPTSP.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Cryptographic Service Provider API 131795770645382485 0x7ffacc170000 45056 C:\Windows\SYSTEM32\CRYPTBASE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base cryptographic API DLL 131795770645382485 0x7ffacc350000 180224 C:\Windows\System32\SspiCli.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Security Support Provider Interface 131795770645382485 0x7ffacc620000 176128 C:\Windows\SYSTEM32\bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795770645382485 0x7ffacc6e0000 61440 C:\Windows\System32\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795770645382485 0x7ffacc6f0000 311296 C:\Windows\System32\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795770645382485 0x7ffacc740000 81920 C:\Windows\System32\profapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Profile Basic API 131795770645382485 0x7ffacc760000 65536 C:\Windows\System32\MSASN1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ASN.1 Runtime APIs 131795770645382485 0x7ffacc8f0000 1003520 C:\Windows\System32\ucrtbase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645382485 0x7ffacc9f0000 434176 C:\Windows\System32\bcryptPrimitives.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Cryptographic Primitives Library 131795770645382485 0x7ffacca60000 122880 C:\Windows\System32\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795770645382485 0x7ffacca80000 348160 C:\Windows\System32\WINTRUST.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation Microsoft Trust Verification APIs 131795770645382485 0x7ffaccae0000 692224 C:\Windows\System32\shcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795770645382485 0x7ffaccb90000 7180288 C:\Windows\System32\windows.storage.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API хранения Microsoft WinRT 131795770645382485 0x7ffacd270000 2215936 C:\Windows\System32\KERNELBASE.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645382485 0x7ffacd490000 1871872 C:\Windows\System32\CRYPT32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API32 криптографии 131795770645382485 0x7ffacd710000 638976 C:\Windows\System32\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645382485 0x7ffacd7b0000 270336 C:\Windows\System32\cfgmgr32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Configuration Manager DLL 131795770645382485 0x7ffacd810000 22056960 C:\Windows\System32\SHELL32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Общая библиотека оболочки Windows 131795770645382485 0x7ffaced20000 782336 C:\Windows\System32\OLEAUT32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795770645382485 0x7ffacee50000 1183744 C:\Windows\System32\RPCRT4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795770645382485 0x7ffacef90000 647168 C:\Windows\System32\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795770645382485 0x7ffacf030000 651264 C:\Windows\System32\clbcatq.dll 2001.12.10941.16384 (rs1_release.160715-1616) Microsoft Corporation COM+ Configuration Catalog 131795770645382485 0x7ffacf0d0000 704512 C:\Windows\System32\KERNEL32.DLL 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645382485 0x7ffacf340000 4362240 C:\Windows\System32\setupapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Setup API 131795770645382485 0x7ffacf770000 212992 C:\Windows\System32\GDI32.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation GDI Client DLL 131795770645382485 0x7ffacf8c0000 1462272 C:\Windows\System32\USER32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795770645382485 0x7ffacfb30000 2916352 C:\Windows\System32\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795770645382485 0x7ffacfe00000 114688 C:\Windows\System32\imagehlp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT Image Helper 131795770645382485 0x7ffacfe20000 663552 C:\Windows\System32\advapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795770645382485 0x7ffad01b0000 335872 C:\Windows\System32\shlwapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека небольших программ оболочки 131795770645382485 0x7ffad0210000 364544 C:\Windows\System32\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795770645382485 0x7ffad0270000 1908736 C:\Windows\SYSTEM32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 57 7744 3108 11 00000000:0031f1da 131769081112364684 0 0 0 Обязательная метка\Средний обязательный уровень WIN-0UOTFKKVN1S\User browser.exe C:\Users\User\AppData\Local\Yandex\YandexBrowser\Application\browser.exe "C:\Users\User\AppData\Local\Yandex\YandexBrowser\Application\browser.exe" YANDEX LLC 18.6.1.770 Yandex 131795770645382623 0x10e0000 2519040 C:\Users\User\AppData\Local\Yandex\YandexBrowser\Application\browser.exe 18.6.1.770 YANDEX LLC Yandex 131795770645382623 0x11330000 172032 C:\Windows\SysWOW64\RTWorkQ.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL для WorkQueue реального времени 131795770645382623 0x5c020000 335872 C:\Windows\System32\wow64.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation Win32 Emulation on NT64 131795770645382623 0x5c080000 487424 C:\Windows\System32\wow64win.dll 10.0.14393.1884 (rs1_release.171101-1233) Microsoft Corporation Wow64 Console and Win32 API Logging 131795770645382623 0x5c100000 40960 C:\Windows\System32\wow64cpu.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation AMD64 Wow64 CPU 131795770645382623 0x5fec0000 794624 C:\Windows\SysWOW64\wbem\fastprox.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation WMI Custom Marshaller 131795770645382623 0x5ffa0000 421888 C:\Windows\SysWOW64\wbemcomn.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation WMI 131795770645382623 0x60010000 53248 C:\Windows\SysWOW64\wbem\wbemprox.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation WMI 131795770645382623 0x60750000 1556480 C:\Program Files (x86)\360\Total Security\safemon\safemon.dll 8, 4, 0, 1420 Qihu 360 Software Co., Ltd. 360 Internet Security Internet Protection 131795770645382623 0x60900000 720896 C:\Program Files (x86)\360\Total Security\safemon\urlproc.dll 2, 9, 5, 1260 Qihu 360 Software Co., Ltd. 360 Internet Security 2013 Internet Protection 131795770645382623 0x622f0000 520192 C:\Program Files (x86)\360\Total Security\deepscan\heavygate.dll 3, 8, 11, 1 Qihu 360 Software Co., Ltd. 360 Total Security Cloud Security 131795770645382623 0x62980000 376832 C:\Program Files (x86)\360\Total Security\360NetBase.dll 7, 25, 0, 76 360.cn 360安全卫士 网络基础模块 131795770645382623 0x68b00000 44998656 C:\Users\User\AppData\Local\Yandex\YandexBrowser\Application\18.6.1.770\browser.dll 18.6.1.770 YANDEX LLC Yandex 131795770645382623 0x6b6b0000 36864 C:\Windows\SysWOW64\atlthunk.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation atlthunk.dll 131795770645382623 0x6b6d0000 102400 C:\Program Files (x86)\360\Total Security\I18N.dll 1, 0, 0, 1016 Qihu 360 Software Co., Ltd. 360 Total Security 131795770645382623 0x6bf00000 3715072 C:\Windows\SysWOW64\msi.dll 5.0.14393.2155 Microsoft Corporation Windows Installer 131795770645382623 0x6c290000 987136 C:\Windows\SysWOW64\twinapi.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation twinapi.appcore 131795770645382623 0x6c390000 1126400 C:\Windows\SysWOW64\dcomp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft DirectComposition Library 131795770645382623 0x6c4b0000 278528 C:\Windows\SysWOW64\dataexchange.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation Data exchange 131795770645382623 0x6c540000 483328 C:\Windows\SysWOW64\webio.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API протоколов передачи по Веб 131795770645382623 0x6cd50000 106496 C:\Windows\SysWOW64\SAMLIB.dll 10.0.14393.82 (rs1_release.160805-1735) Microsoft Corporation SAM Library DLL 131795770645382623 0x6ce30000 421888 C:\Windows\SysWOW64\msvcp110_win.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Microsoft® STL110 C++ Runtime Library 131795770645382623 0x6cf60000 569344 C:\Windows\SysWOW64\taskschd.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Task Scheduler COM API 131795770645382623 0x6d080000 151552 C:\Windows\SysWOW64\cryptnet.dll 10.0.14393.2035 (rs1_release_inmarket.180110-1910) Microsoft Corporation Crypto Network Related API 131795770645382623 0x6d0b0000 847872 C:\Windows\SysWOW64\wintypes.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL основных типов Windows 131795770645382623 0x6dc80000 90112 C:\Program Files (x86)\Windows Defender\MpOav.dll 4.10.14393.1794 (rs1_release.171008-1615) Microsoft Corporation IOfficeAntiVirus Module 131795770645382623 0x6df70000 245760 C:\Windows\SysWOW64\shdocvw.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека объектов документов и элементов управления оболочки 131795770645382623 0x6e070000 98304 C:\Windows\SysWOW64\MSACM32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Фильтр диспетчера аудиосжатия Microsoft 131795770645382623 0x6e090000 233472 C:\Windows\SysWOW64\wdmaud.drv 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Системный звуковой драйвер Winmm 131795770645382623 0x6e110000 32768 C:\Windows\SysWOW64\midimap.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft MIDI Mapper 131795770645382623 0x6e120000 40960 C:\Windows\SysWOW64\msacm32.drv 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Программа переназначения звуковых устройств 131795770645382623 0x6e130000 36864 C:\Windows\SysWOW64\AVRT.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Multimedia Realtime Runtime 131795770645382623 0x6e2a0000 4440064 C:\Windows\SysWOW64\explorerframe.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ExplorerFrame 131795770645382623 0x6e8b0000 1859584 C:\Windows\SysWOW64\mfmp4srcsnk.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL источника и приемника MPEG4 Media Foundation 131795770645382623 0x6eb60000 28672 C:\Windows\SysWOW64\ksuser.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User CSA Library 131795770645382623 0x6eb70000 790528 C:\Windows\SysWOW64\ntshrui.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширения оболочки, обеспечивающие общий доступ 131795770645382623 0x6ec40000 442368 C:\Windows\SysWOW64\twinapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation twinapi 131795770645382623 0x6eed0000 274432 C:\Windows\SysWOW64\thumbcache.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Кэш эскизов Майкрософт 131795770645382623 0x6ef30000 647168 C:\Windows\SysWOW64\evr.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека DLL средства отображения видео 131795770645382623 0x6efd0000 458752 C:\Windows\SysWOW64\msauddecmft.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Media Foundation Audio Decoders 131795770645382623 0x6f790000 1085440 C:\Windows\SysWOW64\mfperfhelper.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation MFPerf DLL 131795770645382623 0x6f8a0000 2220032 C:\Windows\SysWOW64\msmpeg2vdec.dll 10.0.14393.953 (rs1_release_inmarket.170303-1614) Microsoft Corporation Microsoft DTV-DVD Video Decoder 131795770645382623 0x6fac0000 1130496 C:\Windows\SysWOW64\mfplat.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Media Foundation Platform DLL 131795770645382623 0x6fc70000 385024 C:\Windows\SysWOW64\FirewallAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API брандмауэра Windows 131795770645382623 0x6fd00000 73728 C:\Windows\SysWOW64\mssprxy.dll 7.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation Microsoft Search Proxy 131795770645382623 0x6fd20000 61440 C:\Windows\SysWOW64\cscapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Offline Files Win32 API 131795770645382623 0x6fd30000 139264 C:\Windows\SysWOW64\DEVOBJ.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Device Information Set DLL 131795770645382623 0x6fd60000 360448 C:\Windows\SysWOW64\MMDevAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation MMDevice API 131795770645382623 0x6fdc0000 507904 C:\Windows\SysWOW64\audioses.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Сеанс обработки звука 131795770645382623 0x6fe40000 57344 C:\Windows\SysWOW64\BitsProxy.dll 7.8.14393.0 (rs1_release.160715-1616) Microsoft Corporation Background Intelligent Transfer Service Proxy 131795770645382623 0x6fe50000 241664 C:\Windows\SysWOW64\mstask.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека интерфейса планировщика заданий 131795770645382623 0x6fe90000 544768 C:\Windows\SysWOW64\mscms.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL-библиотека системы сопоставления цветов Майкрософт 131795770645382623 0x6ff90000 323584 C:\Windows\SysWOW64\wlanapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows WLAN AutoConfig Client Side API DLL 131795770645382623 0x6ffe0000 303104 C:\Windows\SysWOW64\wevtapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API настройки и использования событий 131795770645382623 0x70030000 593920 C:\Users\User\AppData\Local\Yandex\YandexBrowser\Application\18.6.1.770\browser_elf.dll 18.6.1.770 YANDEX LLC Yandex 131795770645382623 0x70140000 274432 C:\Windows\SysWOW64\WINSTA.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Winstation Library 131795770645382623 0x70190000 53248 C:\Windows\SysWOW64\LINKINFO.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Volume Tracking 131795770645382623 0x701a0000 401408 C:\Users\User\AppData\Local\Yandex\YandexBrowser\Application\18.6.1.770\dllyupdate.dll 1.2.0.1831 Yandex LLC Yandex updater (CU) 131795770645382623 0x70340000 536576 C:\Windows\SysWOW64\dxgi.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation DirectX Graphics Infrastructure 131795770645382623 0x703d0000 2056192 C:\Windows\SysWOW64\DWrite.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Службы Microsoft DirectX Typography 131795770645382623 0x705e0000 344064 C:\Windows\SysWOW64\OLEACC.dll 7.2.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Active Accessibility Core Component 131795770645382623 0x70640000 1499136 C:\Windows\SysWOW64\WindowsCodecs.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Microsoft Windows Codecs Library 131795770645382623 0x707d0000 86016 C:\Windows\SysWOW64\SAMCLI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Security Accounts Manager Client DLL 131795770645382623 0x70a20000 94208 C:\Windows\SysWOW64\USP10.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Uniscribe Unicode script processor 131795770645382623 0x70a40000 81920 C:\Windows\SysWOW64\NLAapi.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Network Location Awareness 2 131795770645382623 0x70b00000 176128 C:\Windows\SysWOW64\wscapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API центра обеспечения безопасности Windows 131795770645382623 0x70b30000 36864 C:\Windows\SysWOW64\WINUSB.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows USB Driver User Library 131795770645382623 0x70b60000 40960 C:\Windows\SysWOW64\HID.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека пользователя HID 131795770645382623 0x70b70000 163840 C:\Windows\SysWOW64\ntmarta.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик Windows NT MARTA 131795770645382623 0x70ba0000 188416 C:\Windows\SysWOW64\FWPolicyIOMgr.dll 10.0.14393.2189 (rs1_release.180329-1711) Microsoft Corporation FwPolicyIoMgr DLL 131795770645382623 0x70bd0000 147456 C:\Windows\SysWOW64\fwbase.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Firewall Base DLL 131795770645382623 0x70c30000 114688 C:\Windows\SysWOW64\srvcli.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Server Service Client DLL 131795770645382623 0x70ca0000 45056 C:\Windows\SysWOW64\NETUTILS.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API Helpers DLL 131795770645382623 0x70cc0000 65536 C:\Windows\SysWOW64\ondemandconnroutehelper.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation On Demand Connctiond Route Helper 131795770645382623 0x70e60000 176128 C:\Windows\SysWOW64\NTASN1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft ASN.1 API 131795770645382623 0x70fd0000 1331200 C:\Windows\SysWOW64\dbghelp.dll 10.0.14321.1024 (rs1_release.160715-1616) Microsoft Windows Image Helper 131795770645382623 0x71140000 77824 C:\Windows\SysWOW64\NETAPI32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API DLL 131795770645382623 0x711f0000 32768 C:\Windows\SysWOW64\IconCodecService.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Converts a PNG part of the icon to a legacy bmp icon 131795770645382623 0x71610000 77824 C:\Windows\SysWOW64\dhcpcsvc6.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиент DHCPv6 131795770645382623 0x724f0000 57344 C:\Windows\SysWOW64\credui.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Credential Manager User Interface 131795770645382623 0x725e0000 2273280 C:\Windows\SysWOW64\iertutil.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служебная программа времени выполнения для Internet Explorer 131795770645382623 0x728e0000 1372160 C:\Windows\SysWOW64\PROPSYS.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Система страниц свойств (Майкрософт) 131795770645382623 0x72b90000 126976 C:\Windows\SysWOW64\dwmapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Интерфейс API диспетчера окон рабочего стола (Майкрософт) 131795770645382623 0x72cc0000 1658880 C:\Windows\SysWOW64\urlmon.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширения OLE32 для Win32 131795770645382623 0x73a40000 32768 C:\Windows\SysWOW64\WINNSI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Network Store Information RPC interface 131795770645382623 0x73a50000 299008 C:\Windows\SysWOW64\fwpuclnt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API пользовательского режима FWP/IPsec 131795770645382623 0x73aa0000 32768 C:\Windows\SysWOW64\DPAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Data Protection API 131795770645382623 0x73ab0000 32768 C:\Windows\SysWOW64\rasadhlp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Remote Access AutoDial Helper 131795770645382623 0x73ac0000 81920 C:\Windows\SysWOW64\dhcpcsvc.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служба DHCP-клиента 131795770645382623 0x73ae0000 40960 C:\Windows\SysWOW64\Secur32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Security Support Provider Interface 131795770645382623 0x73ee0000 61440 C:\Windows\SysWOW64\WTSAPI32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Remote Desktop Session Host Server SDK APIs 131795770645382623 0x73f00000 192512 C:\Windows\SysWOW64\IPHLPAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API вспомогательного приложения IP 131795770645382623 0x73f30000 512000 C:\Windows\SysWOW64\DNSAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Динамическая библиотека API DNS-клиента 131795770645382623 0x73ff0000 319488 C:\Windows\SysWOW64\mswsock.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширение поставщика службы API Microsoft Windows Sockets 2.0 131795770645382623 0x74040000 126976 C:\Windows\SysWOW64\gpapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиентские функции API групповой политики 131795770645382623 0x74060000 192512 C:\Windows\SysWOW64\rsaenh.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Enhanced Cryptographic Provider 131795770645382623 0x74110000 479232 C:\Windows\SysWOW64\uxtheme.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека тем UxTheme (Microsoft) 131795770645382623 0x74190000 110592 C:\Windows\SysWOW64\bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795770645382623 0x741b0000 77824 C:\Windows\SysWOW64\CRYPTSP.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Cryptographic Service Provider API 131795770645382623 0x741f0000 143360 C:\Windows\SysWOW64\WINMMBASE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base Multimedia Extension API DLL 131795770645382623 0x74230000 147456 C:\Windows\SysWOW64\WINMM.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation MCI API DLL 131795770645382623 0x74260000 2514944 C:\Windows\SysWOW64\WININET.dll 11.00.14393.447 (rs1_release_inmarket.161102-0100) Microsoft Corporation Расширения Интернета для Win32 131795770645382623 0x744d0000 2138112 C:\Windows\WinSxS\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.14393.953_none_89c2555adb023171\COMCTL32.dll 6.10 (rs1_release_inmarket.170303-1614) Microsoft Corporation Библиотека элементов управления взаимодействия с пользователем 131795770645382623 0x746e0000 32768 C:\Windows\SysWOW64\VERSION.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Version Checking and File Installation Libraries 131795770645382623 0x746f0000 106496 C:\Windows\SysWOW64\USERENV.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Userenv 131795770645382623 0x74730000 598016 C:\Windows\SysWOW64\apphelp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиентская библиотека совместимости приложений 131795770645382623 0x747d0000 40960 C:\Windows\SysWOW64\CRYPTBASE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base cryptographic API DLL 131795770645382623 0x747e0000 126976 C:\Windows\SysWOW64\SspiCli.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Security Support Provider Interface 131795770645382623 0x74800000 151552 C:\Windows\SysWOW64\IMM32.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Multi-User Windows IMM32 API Client DLL 131795770645382623 0x74910000 2170880 C:\Windows\SysWOW64\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795770645382623 0x74b30000 53248 C:\Windows\SysWOW64\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795770645382623 0x74b40000 102400 C:\Windows\SysWOW64\imagehlp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT Image Helper 131795770645382623 0x74b60000 790528 C:\Windows\SysWOW64\RPCRT4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795770645382623 0x74c30000 1417216 C:\Windows\SysWOW64\gdi32full.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation GDI Client DLL 131795770645382623 0x74d90000 24576 C:\Windows\SysWOW64\PSAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Process Status Helper 131795770645382623 0x74da0000 778240 C:\Windows\SysWOW64\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795770645382623 0x74e60000 557056 C:\Windows\SysWOW64\shcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795770645382623 0x74ef0000 540672 C:\Windows\SysWOW64\clbcatq.dll 2001.12.10941.16384 (rs1_release.160715-1616) Microsoft Corporation COM+ Configuration Catalog 131795770645382623 0x74f80000 278528 C:\Windows\SysWOW64\WINTRUST.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation Microsoft Trust Verification APIs 131795770645382623 0x74fd0000 405504 C:\Windows\SysWOW64\WS2_32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation 32-разрядная библиотека Windows Socket 2.0 131795770645382623 0x75040000 282624 C:\Windows\SysWOW64\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795770645382623 0x75090000 1265664 C:\Windows\SysWOW64\MSCTF.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Серверная библиотека MSCTF 131795770645382623 0x751d0000 57344 C:\Windows\SysWOW64\MSASN1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ASN.1 Runtime APIs 131795770645382623 0x751e0000 1708032 C:\Windows\SysWOW64\KERNELBASE.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645382623 0x75390000 266240 C:\Windows\SysWOW64\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795770645382623 0x753e0000 1560576 C:\Windows\SysWOW64\CRYPT32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API32 криптографии 131795770645382623 0x75560000 487424 C:\Windows\SysWOW64\ADVAPI32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795770645382623 0x756c0000 5693440 C:\Windows\SysWOW64\windows.storage.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API хранения Microsoft WinRT 131795770645382623 0x75c30000 372736 C:\Windows\SysWOW64\coml2.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft COM for Windows 131795770645382623 0x75c90000 286720 C:\Windows\SysWOW64\shlwapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека небольших программ оболочки 131795770645382623 0x75ce0000 20811776 C:\Windows\SysWOW64\SHELL32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Общая библиотека оболочки Windows 131795770645382623 0x774d0000 86016 C:\Windows\SysWOW64\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795770645382623 0x774f0000 61440 C:\Windows\SysWOW64\profapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Profile Basic API 131795770645382623 0x77560000 1437696 C:\Windows\SysWOW64\USER32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795770645382623 0x776c0000 368640 C:\Windows\SysWOW64\bcryptPrimitives.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation Windows Cryptographic Primitives Library 131795770645382623 0x77780000 503808 C:\Windows\SysWOW64\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645382623 0x77800000 606208 C:\Windows\SysWOW64\OLEAUT32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795770645382623 0x77ac0000 966656 C:\Windows\SysWOW64\ole32.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft OLE для Windows 131795770645382623 0x77bb0000 176128 C:\Windows\SysWOW64\GDI32.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation GDI Client DLL 131795770645382623 0x77cd0000 221184 C:\Windows\SysWOW64\cfgmgr32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Configuration Manager DLL 131795770645382623 0x77d10000 28672 C:\Windows\SysWOW64\NSI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation NSI User-mode interface DLL 131795770645382623 0x77d20000 1585152 C:\Windows\SysWOW64\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 131795770645382623 0x7ffad0270000 1908736 C:\Windows\SYSTEM32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 58 5696 7744 57 00000000:0031f1da 131769081114193232 0 0 0 Обязательная метка\Средний обязательный уровень WIN-0UOTFKKVN1S\User browser.exe C:\Users\User\AppData\Local\Yandex\YandexBrowser\Application\browser.exe C:\Users\User\AppData\Local\Yandex\YandexBrowser\Application\browser.exe --type=crashpad-handler "--user-data-dir=C:\Users\User\AppData\Local\Yandex\YandexBrowser\User Data" /prefetch:7 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Users\User\AppData\Local\Yandex\YandexBrowser\User Data\Crashpad" "--metrics-dir=C:\Users\User\AppData\Local\Yandex\YandexBrowser\User Data" --url=https://crash-reports.browser.yandex.net/submit --annotation=machine_id=c46245ef0fec9d5c44d2fa20241f2070 --annotation=main_process_pid=7744 --annotation=metrics_client_id=520f4dd3247d4cdfb744f32b1130b1bf --annotation=plat=Win32 --annotation=prod=Yandex --annotation=ver=18.6.1.770 --initial-client-data=0x1c4,0x1cc,0x1d0,0x1c0,0x1d4,0x700b800c,0x700b7ffc,0x700b7fe0,0x1c8 YANDEX LLC 18.6.1.770 Yandex 131795770645382726 0x10e0000 2519040 C:\Users\User\AppData\Local\Yandex\YandexBrowser\Application\browser.exe 18.6.1.770 YANDEX LLC Yandex 131795770645382726 0x5c020000 335872 C:\Windows\System32\wow64.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation Win32 Emulation on NT64 131795770645382726 0x5c080000 487424 C:\Windows\System32\wow64win.dll 10.0.14393.1884 (rs1_release.171101-1233) Microsoft Corporation Wow64 Console and Win32 API Logging 131795770645382726 0x5c100000 40960 C:\Windows\System32\wow64cpu.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation AMD64 Wow64 CPU 131795770645382726 0x60750000 1556480 C:\Program Files (x86)\360\Total Security\safemon\safemon.dll 8, 4, 0, 1420 Qihu 360 Software Co., Ltd. 360 Internet Security Internet Protection 131795770645382726 0x70030000 593920 C:\Users\User\AppData\Local\Yandex\YandexBrowser\Application\18.6.1.770\browser_elf.dll 18.6.1.770 YANDEX LLC Yandex 131795770645382726 0x70b70000 163840 C:\Windows\SysWOW64\ntmarta.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик Windows NT MARTA 131795770645382726 0x70ca0000 45056 C:\Windows\SysWOW64\NETUTILS.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API Helpers DLL 131795770645382726 0x70cb0000 65536 C:\Windows\SysWOW64\WKSCLI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Workstation Service Client DLL 131795770645382726 0x71140000 77824 C:\Windows\SysWOW64\NETAPI32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API DLL 131795770645382726 0x72b90000 126976 C:\Windows\SysWOW64\dwmapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Интерфейс API диспетчера окон рабочего стола (Майкрософт) 131795770645382726 0x74110000 479232 C:\Windows\SysWOW64\uxtheme.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека тем UxTheme (Microsoft) 131795770645382726 0x74190000 110592 C:\Windows\SysWOW64\bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795770645382726 0x741f0000 143360 C:\Windows\SysWOW64\WINMMBASE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base Multimedia Extension API DLL 131795770645382726 0x74230000 147456 C:\Windows\SysWOW64\WINMM.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation MCI API DLL 131795770645382726 0x746e0000 32768 C:\Windows\SysWOW64\VERSION.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Version Checking and File Installation Libraries 131795770645382726 0x746f0000 106496 C:\Windows\SysWOW64\USERENV.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Userenv 131795770645382726 0x747d0000 40960 C:\Windows\SysWOW64\CRYPTBASE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base cryptographic API DLL 131795770645382726 0x747e0000 126976 C:\Windows\SysWOW64\SspiCli.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Security Support Provider Interface 131795770645382726 0x74800000 151552 C:\Windows\SysWOW64\IMM32.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Multi-User Windows IMM32 API Client DLL 131795770645382726 0x74910000 2170880 C:\Windows\SysWOW64\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795770645382726 0x74b30000 53248 C:\Windows\SysWOW64\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795770645382726 0x74b60000 790528 C:\Windows\SysWOW64\RPCRT4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795770645382726 0x74c30000 1417216 C:\Windows\SysWOW64\gdi32full.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation GDI Client DLL 131795770645382726 0x74d90000 24576 C:\Windows\SysWOW64\PSAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Process Status Helper 131795770645382726 0x74da0000 778240 C:\Windows\SysWOW64\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795770645382726 0x74e60000 557056 C:\Windows\SysWOW64\shcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795770645382726 0x74fd0000 405504 C:\Windows\SysWOW64\WS2_32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation 32-разрядная библиотека Windows Socket 2.0 131795770645382726 0x75040000 282624 C:\Windows\SysWOW64\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795770645382726 0x75090000 1265664 C:\Windows\SysWOW64\MSCTF.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Серверная библиотека MSCTF 131795770645382726 0x751e0000 1708032 C:\Windows\SysWOW64\KERNELBASE.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645382726 0x75390000 266240 C:\Windows\SysWOW64\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795770645382726 0x75560000 487424 C:\Windows\SysWOW64\ADVAPI32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795770645382726 0x756c0000 5693440 C:\Windows\SysWOW64\windows.storage.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API хранения Microsoft WinRT 131795770645382726 0x75c90000 286720 C:\Windows\SysWOW64\shlwapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека небольших программ оболочки 131795770645382726 0x75ce0000 20811776 C:\Windows\SysWOW64\SHELL32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Общая библиотека оболочки Windows 131795770645382726 0x774d0000 86016 C:\Windows\SysWOW64\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795770645382726 0x774f0000 61440 C:\Windows\SysWOW64\profapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Profile Basic API 131795770645382726 0x77560000 1437696 C:\Windows\SysWOW64\USER32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795770645382726 0x776c0000 368640 C:\Windows\SysWOW64\bcryptPrimitives.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation Windows Cryptographic Primitives Library 131795770645382726 0x77780000 503808 C:\Windows\SysWOW64\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645382726 0x77800000 606208 C:\Windows\SysWOW64\OLEAUT32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795770645382726 0x77ac0000 966656 C:\Windows\SysWOW64\ole32.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft OLE для Windows 131795770645382726 0x77bb0000 176128 C:\Windows\SysWOW64\GDI32.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation GDI Client DLL 131795770645382726 0x77cd0000 221184 C:\Windows\SysWOW64\cfgmgr32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Configuration Manager DLL 131795770645382726 0x77d20000 1585152 C:\Windows\SysWOW64\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 131795770645382726 0x7ffad0270000 1908736 C:\Windows\SYSTEM32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 59 4664 7744 57 00000000:0031f1da 131769081123844756 0 0 0 Обязательная метка\Низкий обязательный уровень WIN-0UOTFKKVN1S\User browser.exe C:\Users\User\AppData\Local\Yandex\YandexBrowser\Application\browser.exe "C:\Users\User\AppData\Local\Yandex\YandexBrowser\Application\browser.exe" --type=gpu-process --field-trial-handle=1292,9555382311565764851,7120838982649204725,131072 --user-id=32B2E0A1-3039-4C67-86BE-75A88EF21B54 --brand-id=yandex --partner-id=7924 --gpu-preferences=KAAAAAAAAACAAwCAAQAAAAAAAAAAAGAAEAAAAAAAAAAAAAAAAAAAACgAAAAEAAAAIAAAAAAAAAAoAAAAAAAAADAAAAAAAAAAOAAAAAAAAAAQAAAAAAAAAAAAAAAKAAAAEAAAAAAAAAAAAAAACwAAABAAAAAAAAAAAQAAAAoAAAAQAAAAAAAAAAEAAAALAAAA --user-id=32B2E0A1-3039-4C67-86BE-75A88EF21B54 --brand-id=yandex --partner-id=7924 --service-request-channel-token=CC1AC8FA9C8EFF1EEBC2375FE4F704C6 --mojo-platform-channel-handle=1588 --ignored=" --type=renderer " /prefetch:2 YANDEX LLC 18.6.1.770 Yandex 131795770645382836 0x10e0000 2519040 C:\Users\User\AppData\Local\Yandex\YandexBrowser\Application\browser.exe 18.6.1.770 YANDEX LLC Yandex 131795770645382836 0x58720000 59748352 C:\Users\User\AppData\Local\Yandex\YandexBrowser\Application\18.6.1.770\browser_child.dll 18.6.1.770 YANDEX LLC Yandex 131795770645382836 0x5c020000 335872 C:\Windows\System32\wow64.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation Win32 Emulation on NT64 131795770645382836 0x5c080000 487424 C:\Windows\System32\wow64win.dll 10.0.14393.1884 (rs1_release.171101-1233) Microsoft Corporation Wow64 Console and Win32 API Logging 131795770645382836 0x5c100000 40960 C:\Windows\System32\wow64cpu.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation AMD64 Wow64 CPU 131795770645382836 0x6ecb0000 2228224 C:\Windows\SysWOW64\mfh264enc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Media Foundation H264 Encoder 131795770645382836 0x6f250000 970752 C:\Windows\SysWOW64\ddraw.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft DirectDraw 131795770645382836 0x6f340000 3784704 C:\Windows\SysWOW64\D3DCompiler_47.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Direct3D HLSL Compiler 131795770645382836 0x6f6e0000 688128 C:\Windows\SysWOW64\msvproc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Media Foundation Video Processor 131795770645382836 0x6f790000 1085440 C:\Windows\SysWOW64\mfperfhelper.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation MFPerf DLL 131795770645382836 0x6f8a0000 2220032 C:\Windows\SysWOW64\msmpeg2vdec.dll 10.0.14393.953 (rs1_release_inmarket.170303-1614) Microsoft Corporation Microsoft DTV-DVD Video Decoder 131795770645382836 0x6fac0000 1130496 C:\Windows\SysWOW64\MFPlat.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Media Foundation Platform DLL 131795770645382836 0x6fbe0000 540672 C:\Windows\SysWOW64\mf.dll 10.0.14393.953 (rs1_release_inmarket.170303-1614) Microsoft Corporation Библиотека DLL Media Foundation 131795770645382836 0x6fd30000 139264 C:\Windows\SysWOW64\DEVOBJ.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Device Information Set DLL 131795770645382836 0x6ff20000 118784 C:\Users\User\AppData\Local\Yandex\YandexBrowser\Application\18.6.1.770\swiftshader\libegl.dll 4.0.0.3 SwiftShader libEGL 32-bit Dynamic Link Library 131795770645382836 0x6ff40000 126976 C:\Windows\SysWOW64\dxva2.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DirectX Video Acceleration 2.0 DLL 131795770645382836 0x6ff60000 172032 C:\Windows\SysWOW64\RTWorkQ.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL для WorkQueue реального времени 131795770645382836 0x70030000 593920 C:\Users\User\AppData\Local\Yandex\YandexBrowser\Application\18.6.1.770\browser_elf.dll 18.6.1.770 YANDEX LLC Yandex 131795770645382836 0x700d0000 434176 C:\Windows\SysWOW64\WINSPOOL.DRV 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Драйвер диспетчера очереди Windows 131795770645382836 0x70340000 536576 C:\Windows\SysWOW64\dxgi.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation DirectX Graphics Infrastructure 131795770645382836 0x703d0000 2056192 C:\Windows\SysWOW64\DWrite.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Службы Microsoft DirectX Typography 131795770645382836 0x705d0000 28672 C:\Windows\SysWOW64\DCIMAN32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DCI Manager 131795770645382836 0x707d0000 86016 C:\Windows\SysWOW64\SAMCLI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Security Accounts Manager Client DLL 131795770645382836 0x70a20000 94208 C:\Windows\SysWOW64\USP10.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Uniscribe Unicode script processor 131795770645382836 0x70ca0000 45056 C:\Windows\SysWOW64\NETUTILS.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API Helpers DLL 131795770645382836 0x70fd0000 1331200 C:\Windows\SysWOW64\dbghelp.dll 10.0.14321.1024 (rs1_release.160715-1616) Microsoft Windows Image Helper 131795770645382836 0x71140000 77824 C:\Windows\SysWOW64\NETAPI32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API DLL 131795770645382836 0x725e0000 2273280 C:\Windows\SysWOW64\iertutil.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служебная программа времени выполнения для Internet Explorer 131795770645382836 0x728e0000 1372160 C:\Windows\SysWOW64\PROPSYS.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Система страниц свойств (Майкрософт) 131795770645382836 0x72b90000 126976 C:\Windows\SysWOW64\dwmapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Интерфейс API диспетчера окон рабочего стола (Майкрософт) 131795770645382836 0x72cc0000 1658880 C:\Windows\SysWOW64\urlmon.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширения OLE32 для Win32 131795770645382836 0x73ac0000 81920 C:\Windows\SysWOW64\dhcpcsvc.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служба DHCP-клиента 131795770645382836 0x73ae0000 40960 C:\Windows\SysWOW64\Secur32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Security Support Provider Interface 131795770645382836 0x73f00000 192512 C:\Windows\SysWOW64\IPHLPAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API вспомогательного приложения IP 131795770645382836 0x74190000 110592 C:\Windows\SysWOW64\bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795770645382836 0x741b0000 77824 C:\Windows\SysWOW64\cryptsp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Cryptographic Service Provider API 131795770645382836 0x741f0000 143360 C:\Windows\SysWOW64\WINMMBASE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base Multimedia Extension API DLL 131795770645382836 0x74230000 147456 C:\Windows\SysWOW64\WINMM.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation MCI API DLL 131795770645382836 0x744d0000 2138112 C:\Windows\WinSxS\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.14393.953_none_89c2555adb023171\COMCTL32.dll 6.10 (rs1_release_inmarket.170303-1614) Microsoft Corporation Библиотека элементов управления взаимодействия с пользователем 131795770645382836 0x746e0000 32768 C:\Windows\SysWOW64\VERSION.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Version Checking and File Installation Libraries 131795770645382836 0x746f0000 106496 C:\Windows\SysWOW64\USERENV.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Userenv 131795770645382836 0x747d0000 40960 C:\Windows\SysWOW64\CRYPTBASE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base cryptographic API DLL 131795770645382836 0x747e0000 126976 C:\Windows\SysWOW64\SspiCli.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Security Support Provider Interface 131795770645382836 0x74800000 151552 C:\Windows\SysWOW64\IMM32.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Multi-User Windows IMM32 API Client DLL 131795770645382836 0x74910000 2170880 C:\Windows\SysWOW64\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795770645382836 0x74b30000 53248 C:\Windows\SysWOW64\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795770645382836 0x74b60000 790528 C:\Windows\SysWOW64\RPCRT4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795770645382836 0x74c30000 1417216 C:\Windows\SysWOW64\gdi32full.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation GDI Client DLL 131795770645382836 0x74d90000 24576 C:\Windows\SysWOW64\PSAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Process Status Helper 131795770645382836 0x74da0000 778240 C:\Windows\SysWOW64\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795770645382836 0x74e60000 557056 C:\Windows\SysWOW64\shcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795770645382836 0x74ef0000 540672 C:\Windows\SysWOW64\clbcatq.dll 2001.12.10941.16384 (rs1_release.160715-1616) Microsoft Corporation COM+ Configuration Catalog 131795770645382836 0x74f80000 278528 C:\Windows\SysWOW64\WINTRUST.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation Microsoft Trust Verification APIs 131795770645382836 0x74fd0000 405504 C:\Windows\SysWOW64\WS2_32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation 32-разрядная библиотека Windows Socket 2.0 131795770645382836 0x75040000 282624 C:\Windows\SysWOW64\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795770645382836 0x751d0000 57344 C:\Windows\SysWOW64\MSASN1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ASN.1 Runtime APIs 131795770645382836 0x751e0000 1708032 C:\Windows\SysWOW64\KERNELBASE.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645382836 0x75390000 266240 C:\Windows\SysWOW64\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795770645382836 0x753e0000 1560576 C:\Windows\SysWOW64\CRYPT32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API32 криптографии 131795770645382836 0x75560000 487424 C:\Windows\SysWOW64\ADVAPI32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795770645382836 0x756c0000 5693440 C:\Windows\SysWOW64\windows.storage.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API хранения Microsoft WinRT 131795770645382836 0x75c90000 286720 C:\Windows\SysWOW64\shlwapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека небольших программ оболочки 131795770645382836 0x75ce0000 20811776 C:\Windows\SysWOW64\SHELL32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Общая библиотека оболочки Windows 131795770645382836 0x770c0000 4239360 C:\Windows\SysWOW64\SETUPAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Setup API 131795770645382836 0x774d0000 86016 C:\Windows\SysWOW64\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795770645382836 0x774f0000 61440 C:\Windows\SysWOW64\profapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Profile Basic API 131795770645382836 0x77560000 1437696 C:\Windows\SysWOW64\USER32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795770645382836 0x776c0000 368640 C:\Windows\SysWOW64\bcryptPrimitives.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation Windows Cryptographic Primitives Library 131795770645382836 0x77780000 503808 C:\Windows\SysWOW64\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645382836 0x77800000 606208 C:\Windows\SysWOW64\OLEAUT32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795770645382836 0x77ac0000 966656 C:\Windows\SysWOW64\ole32.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft OLE для Windows 131795770645382836 0x77bb0000 176128 C:\Windows\SysWOW64\GDI32.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation GDI Client DLL 131795770645382836 0x77be0000 937984 C:\Windows\SysWOW64\COMDLG32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека общих диалоговых окон 131795770645382836 0x77cd0000 221184 C:\Windows\SysWOW64\cfgmgr32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Configuration Manager DLL 131795770645382836 0x77d10000 28672 C:\Windows\SysWOW64\NSI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation NSI User-mode interface DLL 131795770645382836 0x77d20000 1585152 C:\Windows\SysWOW64\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 131795770645382836 0x7ffad0270000 1908736 C:\Windows\SYSTEM32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 60 8968 7744 57 00000000:0031f1da 131769081206363215 0 0 0 Обязательная метка\Ненадежный обязательный уровень WIN-0UOTFKKVN1S\User browser.exe C:\Users\User\AppData\Local\Yandex\YandexBrowser\Application\browser.exe "C:\Users\User\AppData\Local\Yandex\YandexBrowser\Application\browser.exe" --type=renderer --enable-in-process-wmf-demuxer --field-trial-handle=1292,9555382311565764851,7120838982649204725,131072 --enable-ignition --service-pipe-token=183F52B8A6577BFD721F95F3A9641348 --lang=ru --user-id=32B2E0A1-3039-4C67-86BE-75A88EF21B54 --brand-id=yandex --partner-id=7924 --help-url=https://api.browser.yandex.ru/redirect/help/ --user-agent-info --translate-security-origin=https://translate.yandex.net --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --enable-instaserp --device-scale-factor=1 --num-raster-threads=1 --enable-compositor-image-animations --service-request-channel-token=183F52B8A6577BFD721F95F3A9641348 --renderer-client-id=4 --mojo-platform-channel-handle=2640 /prefetch:1 YANDEX LLC 18.6.1.770 Yandex 131795770645382953 0x10e0000 2519040 C:\Users\User\AppData\Local\Yandex\YandexBrowser\Application\browser.exe 18.6.1.770 YANDEX LLC Yandex 131795770645382953 0x58720000 59748352 C:\Users\User\AppData\Local\Yandex\YandexBrowser\Application\18.6.1.770\browser_child.dll 18.6.1.770 YANDEX LLC Yandex 131795770645382953 0x5c020000 335872 C:\Windows\System32\wow64.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation Win32 Emulation on NT64 131795770645382953 0x5c080000 487424 C:\Windows\System32\wow64win.dll 10.0.14393.1884 (rs1_release.171101-1233) Microsoft Corporation Wow64 Console and Win32 API Logging 131795770645382953 0x5c100000 40960 C:\Windows\System32\wow64cpu.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation AMD64 Wow64 CPU 131795770645382953 0x6e8b0000 1859584 C:\Windows\SysWOW64\mfmp4srcsnk.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL источника и приемника MPEG4 Media Foundation 131795770645382953 0x6ef30000 647168 C:\Windows\SysWOW64\evr.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека DLL средства отображения видео 131795770645382953 0x6efd0000 458752 C:\Windows\SysWOW64\msauddecmft.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Media Foundation Audio Decoders 131795770645382953 0x6f790000 1085440 C:\Windows\SysWOW64\mfperfhelper.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation MFPerf DLL 131795770645382953 0x6f8a0000 2220032 C:\Windows\SysWOW64\msmpeg2vdec.dll 10.0.14393.953 (rs1_release_inmarket.170303-1614) Microsoft Corporation Microsoft DTV-DVD Video Decoder 131795770645382953 0x6fac0000 1130496 C:\Windows\SysWOW64\mfplat.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Media Foundation Platform DLL 131795770645382953 0x6ff60000 172032 C:\Windows\SysWOW64\RTWorkQ.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL для WorkQueue реального времени 131795770645382953 0x70030000 593920 C:\Users\User\AppData\Local\Yandex\YandexBrowser\Application\18.6.1.770\browser_elf.dll 18.6.1.770 YANDEX LLC Yandex 131795770645382953 0x700d0000 434176 C:\Windows\SysWOW64\WINSPOOL.DRV 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Драйвер диспетчера очереди Windows 131795770645382953 0x70340000 536576 C:\Windows\SysWOW64\dxgi.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation DirectX Graphics Infrastructure 131795770645382953 0x703d0000 2056192 C:\Windows\SysWOW64\DWrite.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Службы Microsoft DirectX Typography 131795770645382953 0x707d0000 86016 C:\Windows\SysWOW64\SAMCLI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Security Accounts Manager Client DLL 131795770645382953 0x70a20000 94208 C:\Windows\SysWOW64\USP10.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Uniscribe Unicode script processor 131795770645382953 0x70ca0000 45056 C:\Windows\SysWOW64\NETUTILS.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API Helpers DLL 131795770645382953 0x70fd0000 1331200 C:\Windows\SysWOW64\dbghelp.dll 10.0.14321.1024 (rs1_release.160715-1616) Microsoft Windows Image Helper 131795770645382953 0x71140000 77824 C:\Windows\SysWOW64\NETAPI32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API DLL 131795770645382953 0x725e0000 2273280 C:\Windows\SysWOW64\iertutil.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служебная программа времени выполнения для Internet Explorer 131795770645382953 0x728e0000 1372160 C:\Windows\SysWOW64\PROPSYS.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Система страниц свойств (Майкрософт) 131795770645382953 0x72af0000 655360 C:\Windows\SysWOW64\WINHTTP.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Службы HTTP Windows 131795770645382953 0x72cc0000 1658880 C:\Windows\SysWOW64\urlmon.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширения OLE32 для Win32 131795770645382953 0x73ac0000 81920 C:\Windows\SysWOW64\dhcpcsvc.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служба DHCP-клиента 131795770645382953 0x73ae0000 40960 C:\Windows\SysWOW64\Secur32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Security Support Provider Interface 131795770645382953 0x73f00000 192512 C:\Windows\SysWOW64\IPHLPAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API вспомогательного приложения IP 131795770645382953 0x74190000 110592 C:\Windows\SysWOW64\bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795770645382953 0x741b0000 77824 C:\Windows\SysWOW64\cryptsp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Cryptographic Service Provider API 131795770645382953 0x741f0000 143360 C:\Windows\SysWOW64\WINMMBASE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base Multimedia Extension API DLL 131795770645382953 0x74230000 147456 C:\Windows\SysWOW64\WINMM.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation MCI API DLL 131795770645382953 0x744d0000 2138112 C:\Windows\WinSxS\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.14393.953_none_89c2555adb023171\COMCTL32.dll 6.10 (rs1_release_inmarket.170303-1614) Microsoft Corporation Библиотека элементов управления взаимодействия с пользователем 131795770645382953 0x746e0000 32768 C:\Windows\SysWOW64\VERSION.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Version Checking and File Installation Libraries 131795770645382953 0x746f0000 106496 C:\Windows\SysWOW64\USERENV.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Userenv 131795770645382953 0x747d0000 40960 C:\Windows\SysWOW64\CRYPTBASE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base cryptographic API DLL 131795770645382953 0x747e0000 126976 C:\Windows\SysWOW64\SspiCli.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Security Support Provider Interface 131795770645382953 0x74800000 151552 C:\Windows\SysWOW64\IMM32.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Multi-User Windows IMM32 API Client DLL 131795770645382953 0x74910000 2170880 C:\Windows\SysWOW64\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795770645382953 0x74b30000 53248 C:\Windows\SysWOW64\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795770645382953 0x74b60000 790528 C:\Windows\SysWOW64\RPCRT4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795770645382953 0x74c30000 1417216 C:\Windows\SysWOW64\gdi32full.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation GDI Client DLL 131795770645382953 0x74d90000 24576 C:\Windows\SysWOW64\PSAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Process Status Helper 131795770645382953 0x74da0000 778240 C:\Windows\SysWOW64\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795770645382953 0x74e60000 557056 C:\Windows\SysWOW64\shcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795770645382953 0x74f80000 278528 C:\Windows\SysWOW64\WINTRUST.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation Microsoft Trust Verification APIs 131795770645382953 0x74fd0000 405504 C:\Windows\SysWOW64\WS2_32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation 32-разрядная библиотека Windows Socket 2.0 131795770645382953 0x75040000 282624 C:\Windows\SysWOW64\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795770645382953 0x751d0000 57344 C:\Windows\SysWOW64\MSASN1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ASN.1 Runtime APIs 131795770645382953 0x751e0000 1708032 C:\Windows\SysWOW64\KERNELBASE.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645382953 0x75390000 266240 C:\Windows\SysWOW64\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795770645382953 0x753e0000 1560576 C:\Windows\SysWOW64\CRYPT32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API32 криптографии 131795770645382953 0x75560000 487424 C:\Windows\SysWOW64\ADVAPI32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795770645382953 0x756c0000 5693440 C:\Windows\SysWOW64\windows.storage.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API хранения Microsoft WinRT 131795770645382953 0x75c90000 286720 C:\Windows\SysWOW64\shlwapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека небольших программ оболочки 131795770645382953 0x75ce0000 20811776 C:\Windows\SysWOW64\SHELL32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Общая библиотека оболочки Windows 131795770645382953 0x774d0000 86016 C:\Windows\SysWOW64\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795770645382953 0x774f0000 61440 C:\Windows\SysWOW64\profapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Profile Basic API 131795770645382953 0x77560000 1437696 C:\Windows\SysWOW64\USER32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795770645382953 0x776c0000 368640 C:\Windows\SysWOW64\bcryptPrimitives.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation Windows Cryptographic Primitives Library 131795770645382953 0x77780000 503808 C:\Windows\SysWOW64\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645382953 0x77800000 606208 C:\Windows\SysWOW64\OLEAUT32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795770645382953 0x77ac0000 966656 C:\Windows\SysWOW64\ole32.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft OLE для Windows 131795770645382953 0x77bb0000 176128 C:\Windows\SysWOW64\GDI32.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation GDI Client DLL 131795770645382953 0x77be0000 937984 C:\Windows\SysWOW64\COMDLG32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека общих диалоговых окон 131795770645382953 0x77cd0000 221184 C:\Windows\SysWOW64\cfgmgr32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Configuration Manager DLL 131795770645382953 0x77d10000 28672 C:\Windows\SysWOW64\NSI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation NSI User-mode interface DLL 131795770645382953 0x77d20000 1585152 C:\Windows\SysWOW64\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 131795770645382953 0x7ffad0270000 1908736 C:\Windows\SYSTEM32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 61 4992 7744 57 00000000:0031f1da 131769081244357280 0 0 0 Обязательная метка\Ненадежный обязательный уровень WIN-0UOTFKKVN1S\User browser.exe C:\Users\User\AppData\Local\Yandex\YandexBrowser\Application\browser.exe "C:\Users\User\AppData\Local\Yandex\YandexBrowser\Application\browser.exe" --type=renderer --enable-in-process-wmf-demuxer --field-trial-handle=1292,9555382311565764851,7120838982649204725,131072 --enable-ignition --service-pipe-token=7E8A8199C364F4B0114F2A163B757250 --lang=ru --user-id=32B2E0A1-3039-4C67-86BE-75A88EF21B54 --brand-id=yandex --partner-id=7924 --help-url=https://api.browser.yandex.ru/redirect/help/ --user-agent-info --translate-security-origin=https://translate.yandex.net --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --enable-instaserp --device-scale-factor=1 --num-raster-threads=1 --enable-compositor-image-animations --service-request-channel-token=7E8A8199C364F4B0114F2A163B757250 --renderer-client-id=10 --mojo-platform-channel-handle=3904 /prefetch:1 YANDEX LLC 18.6.1.770 Yandex 131795770645383069 0x10e0000 2519040 C:\Users\User\AppData\Local\Yandex\YandexBrowser\Application\browser.exe 18.6.1.770 YANDEX LLC Yandex 131795770645383069 0x58720000 59748352 C:\Users\User\AppData\Local\Yandex\YandexBrowser\Application\18.6.1.770\browser_child.dll 18.6.1.770 YANDEX LLC Yandex 131795770645383069 0x5c020000 335872 C:\Windows\System32\wow64.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation Win32 Emulation on NT64 131795770645383069 0x5c080000 487424 C:\Windows\System32\wow64win.dll 10.0.14393.1884 (rs1_release.171101-1233) Microsoft Corporation Wow64 Console and Win32 API Logging 131795770645383069 0x5c100000 40960 C:\Windows\System32\wow64cpu.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation AMD64 Wow64 CPU 131795770645383069 0x6e8b0000 1859584 C:\Windows\SysWOW64\mfmp4srcsnk.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL источника и приемника MPEG4 Media Foundation 131795770645383069 0x6ef30000 647168 C:\Windows\SysWOW64\evr.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека DLL средства отображения видео 131795770645383069 0x6efd0000 458752 C:\Windows\SysWOW64\msauddecmft.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Media Foundation Audio Decoders 131795770645383069 0x6f790000 1085440 C:\Windows\SysWOW64\mfperfhelper.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation MFPerf DLL 131795770645383069 0x6f8a0000 2220032 C:\Windows\SysWOW64\msmpeg2vdec.dll 10.0.14393.953 (rs1_release_inmarket.170303-1614) Microsoft Corporation Microsoft DTV-DVD Video Decoder 131795770645383069 0x6fac0000 1130496 C:\Windows\SysWOW64\mfplat.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Media Foundation Platform DLL 131795770645383069 0x6ff60000 172032 C:\Windows\SysWOW64\RTWorkQ.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL для WorkQueue реального времени 131795770645383069 0x70030000 593920 C:\Users\User\AppData\Local\Yandex\YandexBrowser\Application\18.6.1.770\browser_elf.dll 18.6.1.770 YANDEX LLC Yandex 131795770645383069 0x700d0000 434176 C:\Windows\SysWOW64\WINSPOOL.DRV 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Драйвер диспетчера очереди Windows 131795770645383069 0x70340000 536576 C:\Windows\SysWOW64\dxgi.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation DirectX Graphics Infrastructure 131795770645383069 0x703d0000 2056192 C:\Windows\SysWOW64\DWrite.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Службы Microsoft DirectX Typography 131795770645383069 0x707d0000 86016 C:\Windows\SysWOW64\SAMCLI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Security Accounts Manager Client DLL 131795770645383069 0x70a20000 94208 C:\Windows\SysWOW64\USP10.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Uniscribe Unicode script processor 131795770645383069 0x70ca0000 45056 C:\Windows\SysWOW64\NETUTILS.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API Helpers DLL 131795770645383069 0x70fd0000 1331200 C:\Windows\SysWOW64\dbghelp.dll 10.0.14321.1024 (rs1_release.160715-1616) Microsoft Windows Image Helper 131795770645383069 0x71140000 77824 C:\Windows\SysWOW64\NETAPI32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API DLL 131795770645383069 0x725e0000 2273280 C:\Windows\SysWOW64\iertutil.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служебная программа времени выполнения для Internet Explorer 131795770645383069 0x728e0000 1372160 C:\Windows\SysWOW64\PROPSYS.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Система страниц свойств (Майкрософт) 131795770645383069 0x72af0000 655360 C:\Windows\SysWOW64\WINHTTP.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Службы HTTP Windows 131795770645383069 0x72cc0000 1658880 C:\Windows\SysWOW64\urlmon.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширения OLE32 для Win32 131795770645383069 0x73ac0000 81920 C:\Windows\SysWOW64\dhcpcsvc.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служба DHCP-клиента 131795770645383069 0x73ae0000 40960 C:\Windows\SysWOW64\Secur32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Security Support Provider Interface 131795770645383069 0x73f00000 192512 C:\Windows\SysWOW64\IPHLPAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API вспомогательного приложения IP 131795770645383069 0x74190000 110592 C:\Windows\SysWOW64\bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795770645383069 0x741b0000 77824 C:\Windows\SysWOW64\cryptsp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Cryptographic Service Provider API 131795770645383069 0x741f0000 143360 C:\Windows\SysWOW64\WINMMBASE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base Multimedia Extension API DLL 131795770645383069 0x74230000 147456 C:\Windows\SysWOW64\WINMM.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation MCI API DLL 131795770645383069 0x744d0000 2138112 C:\Windows\WinSxS\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.14393.953_none_89c2555adb023171\COMCTL32.dll 6.10 (rs1_release_inmarket.170303-1614) Microsoft Corporation Библиотека элементов управления взаимодействия с пользователем 131795770645383069 0x746e0000 32768 C:\Windows\SysWOW64\VERSION.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Version Checking and File Installation Libraries 131795770645383069 0x746f0000 106496 C:\Windows\SysWOW64\USERENV.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Userenv 131795770645383069 0x747d0000 40960 C:\Windows\SysWOW64\CRYPTBASE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base cryptographic API DLL 131795770645383069 0x747e0000 126976 C:\Windows\SysWOW64\SspiCli.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Security Support Provider Interface 131795770645383069 0x74800000 151552 C:\Windows\SysWOW64\IMM32.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Multi-User Windows IMM32 API Client DLL 131795770645383069 0x74910000 2170880 C:\Windows\SysWOW64\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795770645383069 0x74b30000 53248 C:\Windows\SysWOW64\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795770645383069 0x74b60000 790528 C:\Windows\SysWOW64\RPCRT4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795770645383069 0x74c30000 1417216 C:\Windows\SysWOW64\gdi32full.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation GDI Client DLL 131795770645383069 0x74d90000 24576 C:\Windows\SysWOW64\PSAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Process Status Helper 131795770645383069 0x74da0000 778240 C:\Windows\SysWOW64\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795770645383069 0x74e60000 557056 C:\Windows\SysWOW64\shcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795770645383069 0x74f80000 278528 C:\Windows\SysWOW64\WINTRUST.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation Microsoft Trust Verification APIs 131795770645383069 0x74fd0000 405504 C:\Windows\SysWOW64\WS2_32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation 32-разрядная библиотека Windows Socket 2.0 131795770645383069 0x75040000 282624 C:\Windows\SysWOW64\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795770645383069 0x751d0000 57344 C:\Windows\SysWOW64\MSASN1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ASN.1 Runtime APIs 131795770645383069 0x751e0000 1708032 C:\Windows\SysWOW64\KERNELBASE.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645383069 0x75390000 266240 C:\Windows\SysWOW64\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795770645383069 0x753e0000 1560576 C:\Windows\SysWOW64\CRYPT32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API32 криптографии 131795770645383069 0x75560000 487424 C:\Windows\SysWOW64\ADVAPI32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795770645383069 0x756c0000 5693440 C:\Windows\SysWOW64\windows.storage.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API хранения Microsoft WinRT 131795770645383069 0x75c90000 286720 C:\Windows\SysWOW64\shlwapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека небольших программ оболочки 131795770645383069 0x75ce0000 20811776 C:\Windows\SysWOW64\SHELL32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Общая библиотека оболочки Windows 131795770645383069 0x774d0000 86016 C:\Windows\SysWOW64\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795770645383069 0x774f0000 61440 C:\Windows\SysWOW64\profapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Profile Basic API 131795770645383069 0x77560000 1437696 C:\Windows\SysWOW64\USER32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795770645383069 0x776c0000 368640 C:\Windows\SysWOW64\bcryptPrimitives.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation Windows Cryptographic Primitives Library 131795770645383069 0x77780000 503808 C:\Windows\SysWOW64\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645383069 0x77800000 606208 C:\Windows\SysWOW64\OLEAUT32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795770645383069 0x77ac0000 966656 C:\Windows\SysWOW64\ole32.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft OLE для Windows 131795770645383069 0x77bb0000 176128 C:\Windows\SysWOW64\GDI32.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation GDI Client DLL 131795770645383069 0x77be0000 937984 C:\Windows\SysWOW64\COMDLG32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека общих диалоговых окон 131795770645383069 0x77cd0000 221184 C:\Windows\SysWOW64\cfgmgr32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Configuration Manager DLL 131795770645383069 0x77d10000 28672 C:\Windows\SysWOW64\NSI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation NSI User-mode interface DLL 131795770645383069 0x77d20000 1585152 C:\Windows\SysWOW64\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 131795770645383069 0x7ffad0270000 1908736 C:\Windows\SYSTEM32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 63 9504 664 6 00000000:0031f1da 131794956266598229 0 0 1 Обязательная метка\Средний обязательный уровень WIN-0UOTFKKVN1S\User InstallAgent.exe C:\Windows\System32\InstallAgent.exe C:\Windows\System32\InstallAgent.exe -Embedding Microsoft Corporation 10.0.14393.0 (rs1_release.160715-1616) InstallAgent 131795770645383260 0x7ff63d380000 229376 C:\Windows\System32\InstallAgent.exe 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation InstallAgent 131795770645383260 0x7ffabea60000 180224 C:\Windows\System32\VEStoreEventHandlers.dll 10.0.14393.479 (rs1_release.161110-2025) Microsoft Corporation TDL Store Event Handlers 131795770645383260 0x7ffac0bf0000 3559424 C:\Windows\System32\ActXPrxy.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation ActiveX Interface Marshaling Library 131795770645383260 0x7ffac4000000 274432 C:\Windows\SYSTEM32\policymanager.dll 10.0.14393.2035 (rs1_release_inmarket.180110-1910) Microsoft Corporation Policy Manager DLL 131795770645383260 0x7ffac4450000 86016 C:\Windows\SYSTEM32\usermgrcli.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation UserMgr API DLL 131795770645383260 0x7ffac4ad0000 61440 C:\Windows\System32\EAMProgressHandler.dll 10.0.14393.479 (rs1_release.161110-2025) Microsoft Corporation EAMProgressHandler 131795770645383260 0x7ffac4b90000 774144 C:\Windows\System32\StoreAgent.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation StoreAgent 131795770645383260 0x7ffac76a0000 159744 C:\Windows\System32\sppc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Software Licensing Client DLL 131795770645383260 0x7ffac7990000 155648 C:\Windows\System32\SLC.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Software Licensing Client DLL 131795770645383260 0x7ffacb140000 593920 C:\Windows\System32\msvcp110_win.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Microsoft® STL110 C++ Runtime Library 131795770645383260 0x7ffacc150000 94208 C:\Windows\System32\CRYPTSP.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Cryptographic Service Provider API 131795770645383260 0x7ffacc520000 622592 C:\Windows\SYSTEM32\sxs.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Fusion 2.5 131795770645383260 0x7ffacc620000 176128 C:\Windows\System32\Bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795770645383260 0x7ffacc6e0000 61440 C:\Windows\System32\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795770645383260 0x7ffacc6f0000 311296 C:\Windows\System32\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795770645383260 0x7ffacc740000 81920 C:\Windows\System32\profapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Profile Basic API 131795770645383260 0x7ffacc8f0000 1003520 C:\Windows\System32\ucrtbase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645383260 0x7ffacc9f0000 434176 C:\Windows\System32\bcryptPrimitives.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Cryptographic Primitives Library 131795770645383260 0x7ffacca60000 122880 C:\Windows\System32\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795770645383260 0x7ffaccae0000 692224 C:\Windows\System32\shcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795770645383260 0x7ffaccb90000 7180288 C:\Windows\System32\windows.storage.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API хранения Microsoft WinRT 131795770645383260 0x7ffacd270000 2215936 C:\Windows\System32\KERNELBASE.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645383260 0x7ffacd710000 638976 C:\Windows\System32\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645383260 0x7ffaced20000 782336 C:\Windows\System32\OLEAUT32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795770645383260 0x7ffacee50000 1183744 C:\Windows\System32\RPCRT4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795770645383260 0x7ffacef90000 647168 C:\Windows\System32\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795770645383260 0x7ffacf030000 651264 C:\Windows\System32\clbcatq.dll 2001.12.10941.16384 (rs1_release.160715-1616) Microsoft Corporation COM+ Configuration Catalog 131795770645383260 0x7ffacf0d0000 704512 C:\Windows\System32\KERNEL32.DLL 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645383260 0x7ffacf770000 212992 C:\Windows\System32\GDI32.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation GDI Client DLL 131795770645383260 0x7ffacf890000 188416 C:\Windows\System32\IMM32.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Multi-User Windows IMM32 API Client DLL 131795770645383260 0x7ffacf8c0000 1462272 C:\Windows\System32\user32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795770645383260 0x7ffacfb30000 2916352 C:\Windows\System32\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795770645383260 0x7ffacfe20000 663552 C:\Windows\System32\advapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795770645383260 0x7ffad01b0000 335872 C:\Windows\System32\shlwapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека небольших программ оболочки 131795770645383260 0x7ffad0210000 364544 C:\Windows\System32\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795770645383260 0x7ffad0270000 1908736 C:\Windows\SYSTEM32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 64 8768 664 6 00000000:0031f1da 131794956321853179 0 0 1 Обязательная метка\Средний обязательный уровень WIN-0UOTFKKVN1S\User InstallAgentUserBroker.exe C:\Windows\System32\InstallAgentUserBroker.exe C:\Windows\System32\InstallAgentUserBroker.exe -Embedding Microsoft Corporation 10.0.14393.2156 (rs1_release_inmarket.180321-1733) InstallAgentUserBroker 131795770645383355 0x22530450000 12288 C:\Windows\SYSTEM32\sfc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows File Protection 131795770645383355 0x7ff74f890000 278528 C:\Windows\System32\InstallAgentUserBroker.exe 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation InstallAgentUserBroker 131795770645383355 0x7ffabafc0000 700416 C:\Windows\SYSTEM32\wer.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека сообщений об ошибках Windows 131795770645383355 0x7ffabd8e0000 704512 C:\Windows\WinSxS\amd64_microsoft.windows.common-controls_6595b64144ccf1df_5.82.14393.447_none_0d5aa7fbb6d35646\Comctl32.dll 6.10 (rs1_release_inmarket.170303-1614) Microsoft Corporation Библиотека элементов управления взаимодействия с пользователем 131795770645383355 0x7ffabef80000 69632 C:\Windows\SYSTEM32\sfc_os.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows File Protection 131795770645383355 0x7ffabefd0000 258048 C:\Windows\System32\AEPIC.dll 10.0.17060.1029 (WinBuild.160101.0800) Microsoft Corporation Application Experience Program Cache 131795770645383355 0x7ffabf1d0000 192512 C:\Windows\System32\cryptnet.dll 10.0.14393.2035 (rs1_release_inmarket.180110-1910) Microsoft Corporation Crypto Network Related API 131795770645383355 0x7ffabf5d0000 2924544 C:\Windows\System32\WININET.dll 11.00.14393.447 (rs1_release_inmarket.161102-0100) Microsoft Corporation Расширения Интернета для Win32 131795770645383355 0x7ffabff60000 135168 C:\Windows\system32\ncryptsslp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft SChannel Provider 131795770645383355 0x7ffac0ad0000 86016 C:\Windows\SYSTEM32\mskeyprotect.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик защиты ключей (Майкрософт) 131795770645383355 0x7ffac34e0000 1843200 C:\Windows\System32\urlmon.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширения OLE32 для Win32 131795770645383355 0x7ffac3cb0000 2772992 C:\Windows\System32\iertutil.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служебная программа времени выполнения для Internet Explorer 131795770645383355 0x7ffac4000000 274432 C:\Windows\SYSTEM32\policymanager.dll 10.0.14393.2035 (rs1_release_inmarket.180110-1910) Microsoft Corporation Policy Manager DLL 131795770645383355 0x7ffac4b90000 774144 C:\Windows\System32\StoreAgent.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation StoreAgent 131795770645383355 0x7ffac6610000 40960 C:\Windows\System32\rasadhlp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Remote Access AutoDial Helper 131795770645383355 0x7ffac66a0000 86016 C:\Windows\SYSTEM32\ondemandconnroutehelper.dll 10.0.14393.351 (rs1_release_inmarket.161014-1755) Microsoft Corporation On Demand Connctiond Route Helper 131795770645383355 0x7ffac69c0000 839680 C:\Windows\SYSTEM32\winhttp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Службы HTTP Windows 131795770645383355 0x7ffac76a0000 159744 C:\Windows\System32\sppc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Software Licensing Client DLL 131795770645383355 0x7ffac7990000 155648 C:\Windows\System32\SLC.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Software Licensing Client DLL 131795770645383355 0x7ffac83d0000 106496 C:\Windows\SYSTEM32\dhcpcsvc.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служба DHCP-клиента 131795770645383355 0x7ffac83f0000 90112 C:\Windows\SYSTEM32\dhcpcsvc6.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиент DHCPv6 131795770645383355 0x7ffac8420000 434176 C:\Windows\System32\fwpuclnt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API пользовательского режима FWP/IPsec 131795770645383355 0x7ffac8810000 45056 C:\Windows\SYSTEM32\WINNSI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Network Store Information RPC interface 131795770645383355 0x7ffacb140000 593920 C:\Windows\System32\msvcp110_win.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Microsoft® STL110 C++ Runtime Library 131795770645383355 0x7ffacb420000 204800 C:\Windows\SYSTEM32\ntmarta.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик Windows NT MARTA 131795770645383355 0x7ffacbaf0000 495616 C:\Windows\system32\schannel.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик безопасности TLS/SSL 131795770645383355 0x7ffacbbb0000 208896 C:\Windows\system32\rsaenh.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Enhanced Cryptographic Provider 131795770645383355 0x7ffacbbf0000 40960 C:\Windows\System32\DPAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Data Protection API 131795770645383355 0x7ffacbd30000 229376 C:\Windows\SYSTEM32\IPHLPAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API вспомогательного приложения IP 131795770645383355 0x7ffacbd70000 659456 C:\Windows\System32\DNSAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Динамическая библиотека API DNS-клиента 131795770645383355 0x7ffacbfb0000 376832 C:\Windows\system32\mswsock.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширение поставщика службы API Microsoft Windows Sockets 2.0 131795770645383355 0x7ffacc150000 94208 C:\Windows\System32\CRYPTSP.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Cryptographic Service Provider API 131795770645383355 0x7ffacc170000 45056 C:\Windows\System32\CRYPTBASE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base cryptographic API DLL 131795770645383355 0x7ffacc1f0000 241664 C:\Windows\SYSTEM32\NTASN1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft ASN.1 API 131795770645383355 0x7ffacc230000 155648 C:\Windows\SYSTEM32\ncrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Маршрутизатор Windows NCrypt 131795770645383355 0x7ffacc350000 180224 C:\Windows\System32\SspiCli.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Security Support Provider Interface 131795770645383355 0x7ffacc520000 622592 C:\Windows\SYSTEM32\sxs.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Fusion 2.5 131795770645383355 0x7ffacc620000 176128 C:\Windows\System32\bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795770645383355 0x7ffacc6e0000 61440 C:\Windows\System32\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795770645383355 0x7ffacc6f0000 311296 C:\Windows\System32\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795770645383355 0x7ffacc740000 81920 C:\Windows\System32\profapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Profile Basic API 131795770645383355 0x7ffacc760000 65536 C:\Windows\System32\MSASN1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ASN.1 Runtime APIs 131795770645383355 0x7ffacc8f0000 1003520 C:\Windows\System32\ucrtbase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645383355 0x7ffacc9f0000 434176 C:\Windows\System32\bcryptPrimitives.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Cryptographic Primitives Library 131795770645383355 0x7ffacca60000 122880 C:\Windows\System32\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795770645383355 0x7ffacca80000 348160 C:\Windows\System32\WINTRUST.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation Microsoft Trust Verification APIs 131795770645383355 0x7ffaccae0000 692224 C:\Windows\System32\shcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795770645383355 0x7ffaccb90000 7180288 C:\Windows\System32\windows.storage.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API хранения Microsoft WinRT 131795770645383355 0x7ffacd270000 2215936 C:\Windows\System32\KERNELBASE.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645383355 0x7ffacd490000 1871872 C:\Windows\System32\CRYPT32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API32 криптографии 131795770645383355 0x7ffacd710000 638976 C:\Windows\System32\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645383355 0x7ffacd7b0000 270336 C:\Windows\System32\cfgmgr32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Configuration Manager DLL 131795770645383355 0x7ffacd810000 22056960 C:\Windows\System32\SHELL32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Общая библиотека оболочки Windows 131795770645383355 0x7ffaced20000 782336 C:\Windows\System32\OLEAUT32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795770645383355 0x7ffacee50000 1183744 C:\Windows\System32\RPCRT4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795770645383355 0x7ffacef80000 32768 C:\Windows\System32\NSI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation NSI User-mode interface DLL 131795770645383355 0x7ffacef90000 647168 C:\Windows\System32\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795770645383355 0x7ffacf030000 651264 C:\Windows\System32\clbcatq.dll 2001.12.10941.16384 (rs1_release.160715-1616) Microsoft Corporation COM+ Configuration Catalog 131795770645383355 0x7ffacf0d0000 704512 C:\Windows\System32\KERNEL32.DLL 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645383355 0x7ffacf770000 212992 C:\Windows\System32\GDI32.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation GDI Client DLL 131795770645383355 0x7ffacf820000 434176 C:\Windows\System32\WS2_32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation 32-разрядная библиотека Windows Socket 2.0 131795770645383355 0x7ffacf890000 188416 C:\Windows\System32\IMM32.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Multi-User Windows IMM32 API Client DLL 131795770645383355 0x7ffacf8c0000 1462272 C:\Windows\System32\user32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795770645383355 0x7ffacfb30000 2916352 C:\Windows\System32\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795770645383355 0x7ffacfe20000 663552 C:\Windows\System32\advapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795770645383355 0x7ffad0070000 1277952 C:\Windows\System32\OLE32.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft OLE для Windows 131795770645383355 0x7ffad01b0000 335872 C:\Windows\System32\SHLWAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека небольших программ оболочки 131795770645383355 0x7ffad0210000 364544 C:\Windows\System32\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795770645383355 0x7ffad0270000 1908736 C:\Windows\SYSTEM32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 65 9636 664 6 00000000:0031f1da 131794956424585250 0 0 1 Обязательная метка\Средний обязательный уровень WIN-0UOTFKKVN1S\User SystemSettingsBroker.exe C:\Windows\System32\SystemSettingsBroker.exe C:\Windows\System32\SystemSettingsBroker.exe -Embedding Microsoft Corporation 10.0.14393.0 (rs1_release.160715-1616) System Settings Broker 131795770645383490 0x7ff6015f0000 196608 C:\Windows\System32\SystemSettingsBroker.exe 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation System Settings Broker 131795770645383490 0x7ffac1c40000 94208 C:\Windows\System32\SystemSettings.DataModel.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SystemSettings.Datamodel private API 131795770645383490 0x7ffacc6e0000 61440 C:\Windows\System32\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795770645383490 0x7ffacc8f0000 1003520 C:\Windows\System32\ucrtbase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645383490 0x7ffacc9f0000 434176 C:\Windows\System32\bcryptPrimitives.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Cryptographic Primitives Library 131795770645383490 0x7ffacd270000 2215936 C:\Windows\System32\KERNELBASE.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645383490 0x7ffacee50000 1183744 C:\Windows\System32\RPCRT4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795770645383490 0x7ffacef90000 647168 C:\Windows\System32\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795770645383490 0x7ffacf030000 651264 C:\Windows\System32\clbcatq.dll 2001.12.10941.16384 (rs1_release.160715-1616) Microsoft Corporation COM+ Configuration Catalog 131795770645383490 0x7ffacf0d0000 704512 C:\Windows\System32\KERNEL32.DLL 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645383490 0x7ffacfb30000 2916352 C:\Windows\System32\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795770645383490 0x7ffad0210000 364544 C:\Windows\System32\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795770645383490 0x7ffad0270000 1908736 C:\Windows\SYSTEM32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 66 10592 664 6 00000000:0031f1da 131794956519902643 0 0 1 Обязательная метка\Средний обязательный уровень WIN-0UOTFKKVN1S\User SystemSettings.exe C:\Windows\ImmersiveControlPanel\SystemSettings.exe "C:\Windows\ImmersiveControlPanel\SystemSettings.exe" -ServerName:microsoft.windows.immersivecontrolpanel Microsoft Corporation 10.0.14393.82 (rs1_release.160805-1735) Параметры 131795770645383654 0x18099ef0000 12288 C:\Windows\SYSTEM32\WMI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation WMI DC and DP functionality 131795770645383654 0x7ff7937a0000 98304 C:\Windows\ImmersiveControlPanel\SystemSettings.exe 10.0.14393.82 (rs1_release.160805-1735) Microsoft Corporation Параметры 131795770645383654 0x7ffaabce0000 2535424 C:\Windows\System32\NetworkMobileSettings.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation System settings network mobile handlers group 131795770645383654 0x7ffaac0c0000 1396736 C:\Windows\System32\Windows.UI.Xaml.Phone.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows UI XAML Phone API 131795770645383654 0x7ffaac220000 4952064 C:\Windows\ImmersiveControlPanel\SystemSettings.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation System Settings Application 131795770645383654 0x7ffaadd90000 258048 C:\Windows\System32\NetworkDesktopSettings.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Группа обработчиков системных параметров сетевого рабочего стола 131795770645383654 0x7ffaaf920000 905216 C:\Windows\ImmersiveControlPanel\SystemSettingsViewModel.Desktop.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation System Settings View Model Desktop 131795770645383654 0x7ffab0970000 262144 C:\Windows\system32\credprovhost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Хост инфраструктуры поставщика учетных данных 131795770645383654 0x7ffab0a70000 454656 C:\Windows\System32\fhcfg.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Диспетчер конфигураций истории файлов 131795770645383654 0x7ffab1d80000 262144 C:\Windows\SYSTEM32\eappcfg.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Eap Peer Config 131795770645383654 0x7ffab5520000 3231744 C:\Windows\SYSTEM32\msftedit.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Элемент управления "Поле ввода форматированного текста", версия 8.5 131795770645383654 0x7ffab5b40000 2527232 C:\Windows\SYSTEM32\dwrite.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Службы Microsoft DirectX Typography 131795770645383654 0x7ffab6710000 17231872 C:\Windows\System32\Windows.UI.Xaml.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows.UI.Xaml dll 131795770645383654 0x7ffab7d80000 753664 C:\Windows\SYSTEM32\RASAPI32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API удаленного доступа 131795770645383654 0x7ffab8190000 9191424 C:\Windows\system32\twinui.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation TWINUI 131795770645383654 0x7ffab91d0000 69632 C:\Windows\ImmersiveControlPanel\Telemetry.Desktop.dll 10.0.14393.953 (rs1_release_inmarket.170303-1614) Microsoft Corporation System Settings Telemetry Desktop 131795770645383654 0x7ffab9a40000 299008 C:\Windows\System32\RasMediaManager.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Ras Media Manager DLL 131795770645383654 0x7ffaba950000 188416 C:\Windows\System32\EthernetMediaManager.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Ethernet Media Manager DLL 131795770645383654 0x7ffabaa50000 339968 C:\Windows\System32\NetworkUXBroker.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation NetworkUXBroker DLL 131795770645383654 0x7ffabae40000 110592 C:\Windows\SYSTEM32\capauthz.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API авторизации возможностей 131795770645383654 0x7ffabaf70000 270336 C:\Windows\SYSTEM32\edputil.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служебная программа EDP 131795770645383654 0x7ffabb3c0000 450560 C:\Windows\SYSTEM32\TextInputFramework.dll 10.0.14393.2189 (rs1_release.180329-1711) Microsoft Corporation "TextInputFramework.DYNLINK" 131795770645383654 0x7ffabb430000 65536 C:\Windows\SYSTEM32\pcacli.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Program Compatibility Assistant Client Module 131795770645383654 0x7ffabb490000 512000 C:\Windows\system32\twinapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation twinapi 131795770645383654 0x7ffabcc60000 1122304 C:\Windows\System32\MiracastReceiver.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API приемника Miracast 131795770645383654 0x7ffabcf30000 110592 C:\Windows\SYSTEM32\MPR.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека маршрутизации для нескольких служб доступа 131795770645383654 0x7ffabd4a0000 1613824 C:\Windows\System32\Windows.Globalization.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Globalization 131795770645383654 0x7ffabe6e0000 561152 C:\Windows\system32\directmanipulation.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Direct Manipulation Component 131795770645383654 0x7ffabe9c0000 188416 C:\Windows\SYSTEM32\globinputhost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Globalization Extension API for Input 131795770645383654 0x7ffabeb20000 385024 C:\Windows\System32\Windows.ApplicationModel.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows ApplicationModel API Server 131795770645383654 0x7ffabfd80000 86016 C:\Windows\System32\threadpoolwinrt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows WinRT Threadpool 131795770645383654 0x7ffabff10000 155648 C:\Windows\SYSTEM32\SRVCLI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Server Service Client DLL 131795770645383654 0x7ffac00c0000 282624 C:\Windows\SYSTEM32\windows.ui.core.textinput.dll 10.0.14393.2189 (rs1_release.180329-1711) Microsoft Corporation Windows.UI.Core.TextInput dll 131795770645383654 0x7ffac01e0000 397312 C:\Windows\SYSTEM32\wincorlib.DLL 10.0.14393.576 (rs1_release_inmarket.161208-2252) Microsoft Corporation Microsoft Windows ® WinRT core library 131795770645383654 0x7ffac0470000 1478656 C:\Windows\SYSTEM32\MFPlat.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Media Foundation Platform DLL 131795770645383654 0x7ffac0bf0000 3559424 C:\Windows\System32\ActXPrxy.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation ActiveX Interface Marshaling Library 131795770645383654 0x7ffac1470000 704512 C:\Windows\System32\ieproxy.dll 11.00.14393.2007 (rs1_release.171231-1800) Microsoft Corporation IE ActiveX Interface Marshaling Library 131795770645383654 0x7ffac1e50000 188416 C:\Windows\SYSTEM32\RTWorkQ.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL для WorkQueue реального времени 131795770645383654 0x7ffac20d0000 110592 C:\Windows\System32\rmclient.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Resource Manager Client 131795770645383654 0x7ffac23c0000 331776 C:\Windows\System32\OneCoreCommonProxyStub.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation OneCore Common Proxy Stub 131795770645383654 0x7ffac2700000 98304 C:\Windows\SYSTEM32\NETAPI32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API DLL 131795770645383654 0x7ffac2990000 385024 C:\Windows\SYSTEM32\NInput.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Pen and Touch Input Component 131795770645383654 0x7ffac2a20000 81920 C:\Windows\SYSTEM32\rtutils.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Routing Utilities 131795770645383654 0x7ffac2bf0000 65536 C:\Windows\SYSTEM32\EFSUTIL.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation EFS Utility Library 131795770645383654 0x7ffac34e0000 1843200 C:\Windows\SYSTEM32\urlmon.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширения OLE32 для Win32 131795770645383654 0x7ffac3cb0000 2772992 C:\Windows\SYSTEM32\iertutil.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служебная программа времени выполнения для Internet Explorer 131795770645383654 0x7ffac4000000 274432 C:\Windows\SYSTEM32\policymanager.dll 10.0.14393.2035 (rs1_release_inmarket.180110-1910) Microsoft Corporation Policy Manager DLL 131795770645383654 0x7ffac42a0000 659456 C:\Windows\SYSTEM32\StateRepository.Core.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation StateRepository Core 131795770645383654 0x7ffac46d0000 4161536 C:\Windows\System32\Windows.StateRepository.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Сервер Windows StateRepository API Server 131795770645383654 0x7ffac4e70000 102400 C:\Windows\SYSTEM32\samcli.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Security Accounts Manager Client DLL 131795770645383654 0x7ffac5350000 1765376 C:\Windows\System32\Windows.UI.Immersive.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation WINDOWS.UI.IMMERSIVE 131795770645383654 0x7ffac5c50000 131072 C:\Windows\SYSTEM32\rasman.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Remote Access Connection Manager 131795770645383654 0x7ffac60e0000 221184 C:\Windows\SYSTEM32\XmlLite.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft XmlLite Library 131795770645383654 0x7ffac69c0000 839680 C:\Windows\SYSTEM32\WINHTTP.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Службы HTTP Windows 131795770645383654 0x7ffac6ac0000 835584 C:\Windows\System32\Windows.UI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Runtime UI Foundation DLL 131795770645383654 0x7ffac6c40000 2596864 C:\Windows\WinSxS\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.14393.953_none_42151e83c686086b\Comctl32.dll 6.10 (rs1_release_inmarket.170303-1614) Microsoft Corporation Библиотека элементов управления взаимодействия с пользователем 131795770645383654 0x7ffac6f50000 5632000 C:\Windows\SYSTEM32\d2d1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека Microsoft D2D 131795770645383654 0x7ffac7580000 1077248 C:\Windows\SYSTEM32\MrmCoreR.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Windows MRM 131795770645383654 0x7ffac76a0000 159744 C:\Windows\SYSTEM32\sppc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Software Licensing Client DLL 131795770645383654 0x7ffac7720000 1601536 C:\Windows\System32\OneCoreUAPCommonProxyStub.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation OneCoreUAP Common Proxy Stub 131795770645383654 0x7ffac7990000 155648 C:\Windows\SYSTEM32\SLC.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Software Licensing Client DLL 131795770645383654 0x7ffac7fc0000 2674688 C:\Windows\SYSTEM32\d3d10warp.dll 10.0.14393.576 (rs1_release_inmarket.161208-2252) Microsoft Corporation Direct3D 10 Rasterizer 131795770645383654 0x7ffac84f0000 299008 C:\Windows\system32\DataExchange.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation Data exchange 131795770645383654 0x7ffac8880000 69632 C:\Windows\SYSTEM32\wmiclnt.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation WMI Client API 131795770645383654 0x7ffac88a0000 2842624 C:\Windows\SYSTEM32\d3d11.dll 10.0.14393.953 (rs1_release_inmarket.170303-1614) Microsoft Corporation Direct3D 11 Runtime 131795770645383654 0x7ffac9220000 397312 C:\Windows\SYSTEM32\wevtapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API настройки и использования событий 131795770645383654 0x7ffac9290000 40960 C:\Windows\SYSTEM32\DSROLE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DS Setup Client DLL 131795770645383654 0x7ffac92e0000 1269760 C:\Windows\System32\WinTypes.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL основных типов Windows 131795770645383654 0x7ffac9500000 2682880 C:\Windows\system32\CoreUIComponents.dll 131795770645383654 0x7ffac9f50000 1736704 C:\Windows\system32\windowscodecs.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Microsoft Windows Codecs Library 131795770645383654 0x7ffaca340000 1593344 C:\Windows\SYSTEM32\PROPSYS.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Система страниц свойств (Майкрософт) 131795770645383654 0x7ffaca4e0000 77824 C:\Windows\SYSTEM32\WTSAPI32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Remote Desktop Session Host Server SDK APIs 131795770645383654 0x7ffaca560000 45056 C:\Windows\SYSTEM32\NcaApi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Network Connectivity Assistant API 131795770645383654 0x7ffaca570000 421888 C:\Windows\SYSTEM32\Bcp47Langs.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation BCP47 Language Classes 131795770645383654 0x7ffaca5e0000 155648 C:\Windows\SYSTEM32\dwmapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Интерфейс API диспетчера окон рабочего стола (Майкрософт) 131795770645383654 0x7ffaca640000 770048 C:\Windows\SYSTEM32\CoreMessaging.dll 10.0.14393.0 Microsoft Corporation Microsoft CoreMessaging Dll 131795770645383654 0x7ffaca770000 1380352 C:\Windows\SYSTEM32\dcomp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft DirectComposition Library 131795770645383654 0x7ffacaf00000 610304 C:\Windows\system32\uxtheme.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека тем UxTheme (Microsoft) 131795770645383654 0x7ffacb140000 593920 C:\Windows\SYSTEM32\msvcp110_win.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Microsoft® STL110 C++ Runtime Library 131795770645383654 0x7ffacb1e0000 1163264 C:\Windows\System32\twinapi.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation twinapi.appcore 131795770645383654 0x7ffacb300000 364544 C:\Windows\SYSTEM32\VEEventDispatcher.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Visual Element Event dispatcher 131795770645383654 0x7ffacb3f0000 163840 C:\Windows\SYSTEM32\DEVOBJ.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Device Information Set DLL 131795770645383654 0x7ffacb780000 651264 C:\Windows\SYSTEM32\dxgi.dll 10.0.14393.953 (rs1_release_inmarket.170303-1614) Microsoft Corporation DirectX Graphics Infrastructure 131795770645383654 0x7ffacbd30000 229376 C:\Windows\SYSTEM32\IPHLPAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API вспомогательного приложения IP 131795770645383654 0x7ffacbe20000 53248 C:\Windows\SYSTEM32\netutils.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API Helpers DLL 131795770645383654 0x7ffacbe40000 126976 C:\Windows\SYSTEM32\USERENV.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Userenv 131795770645383654 0x7ffacc150000 94208 C:\Windows\SYSTEM32\cryptsp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Cryptographic Service Provider API 131795770645383654 0x7ffacc170000 45056 C:\Windows\SYSTEM32\CRYPTBASE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base cryptographic API DLL 131795770645383654 0x7ffacc1f0000 241664 C:\Windows\SYSTEM32\NTASN1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft ASN.1 API 131795770645383654 0x7ffacc230000 155648 C:\Windows\SYSTEM32\ncrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Маршрутизатор Windows NCrypt 131795770645383654 0x7ffacc350000 180224 C:\Windows\SYSTEM32\SspiCli.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Security Support Provider Interface 131795770645383654 0x7ffacc5c0000 352256 C:\Windows\SYSTEM32\WINSTA.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Winstation Library 131795770645383654 0x7ffacc620000 176128 C:\Windows\SYSTEM32\bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795770645383654 0x7ffacc6e0000 61440 C:\Windows\System32\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795770645383654 0x7ffacc6f0000 311296 C:\Windows\System32\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795770645383654 0x7ffacc740000 81920 C:\Windows\System32\profapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Profile Basic API 131795770645383654 0x7ffacc760000 65536 C:\Windows\System32\MSASN1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ASN.1 Runtime APIs 131795770645383654 0x7ffacc8f0000 1003520 C:\Windows\System32\ucrtbase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645383654 0x7ffacc9f0000 434176 C:\Windows\System32\bcryptPrimitives.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Cryptographic Primitives Library 131795770645383654 0x7ffacca60000 122880 C:\Windows\System32\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795770645383654 0x7ffaccae0000 692224 C:\Windows\System32\shcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795770645383654 0x7ffaccb90000 7180288 C:\Windows\System32\windows.storage.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API хранения Microsoft WinRT 131795770645383654 0x7ffacd270000 2215936 C:\Windows\System32\KERNELBASE.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645383654 0x7ffacd490000 1871872 C:\Windows\System32\CRYPT32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API32 криптографии 131795770645383654 0x7ffacd710000 638976 C:\Windows\System32\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645383654 0x7ffacd7b0000 270336 C:\Windows\System32\cfgmgr32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Configuration Manager DLL 131795770645383654 0x7ffacd810000 22056960 C:\Windows\System32\SHELL32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Общая библиотека оболочки Windows 131795770645383654 0x7ffaced20000 782336 C:\Windows\System32\OLEAUT32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795770645383654 0x7ffacee50000 1183744 C:\Windows\System32\RPCRT4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795770645383654 0x7ffacef90000 647168 C:\Windows\System32\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795770645383654 0x7ffacf030000 651264 C:\Windows\System32\clbcatq.dll 2001.12.10941.16384 (rs1_release.160715-1616) Microsoft Corporation COM+ Configuration Catalog 131795770645383654 0x7ffacf0d0000 704512 C:\Windows\System32\KERNEL32.DLL 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645383654 0x7ffacf1e0000 1417216 C:\Windows\System32\msctf.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Серверная библиотека MSCTF 131795770645383654 0x7ffacf770000 212992 C:\Windows\System32\GDI32.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation GDI Client DLL 131795770645383654 0x7ffacf820000 434176 C:\Windows\System32\WS2_32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation 32-разрядная библиотека Windows Socket 2.0 131795770645383654 0x7ffacf890000 188416 C:\Windows\System32\IMM32.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Multi-User Windows IMM32 API Client DLL 131795770645383654 0x7ffacf8c0000 1462272 C:\Windows\System32\USER32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795770645383654 0x7ffacfb30000 2916352 C:\Windows\System32\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795770645383654 0x7ffacfe20000 663552 C:\Windows\System32\advapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795770645383654 0x7ffad0070000 1277952 C:\Windows\System32\ole32.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft OLE для Windows 131795770645383654 0x7ffad01b0000 335872 C:\Windows\System32\SHLWAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека небольших программ оболочки 131795770645383654 0x7ffad0210000 364544 C:\Windows\System32\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795770645383654 0x7ffad0270000 1908736 C:\Windows\SYSTEM32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 67 10964 664 6 00000000:0031f1ab 131794956837373387 0 0 1 Обязательная метка\Высокий обязательный уровень WIN-0UOTFKKVN1S\User DllHost.exe C:\Windows\system32\DllHost.exe C:\Windows\system32\DllHost.exe /Processid:{BA126F01-2166-11D1-B1D0-00805FC1270E} Microsoft Corporation 10.0.14393.0 (rs1_release.160715-1616) COM Surrogate 131795770645383742 0x7ff7a2280000 36864 C:\Windows\system32\DllHost.exe 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation COM Surrogate 131795770645383742 0x7ffab2460000 2822144 C:\Windows\system32\netshell.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Оболочка сетевых подключений 131795770645383742 0x7ffac9790000 98304 C:\Windows\system32\nlaapi.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Network Location Awareness 2 131795770645383742 0x7ffacaf00000 610304 C:\Windows\system32\uxtheme.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека тем UxTheme (Microsoft) 131795770645383742 0x7ffacbd30000 229376 C:\Windows\system32\IPHLPAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API вспомогательного приложения IP 131795770645383742 0x7ffacc6e0000 61440 C:\Windows\System32\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795770645383742 0x7ffacc6f0000 311296 C:\Windows\System32\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795770645383742 0x7ffacc740000 81920 C:\Windows\System32\profapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Profile Basic API 131795770645383742 0x7ffacc8f0000 1003520 C:\Windows\System32\ucrtbase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645383742 0x7ffacc9f0000 434176 C:\Windows\System32\bcryptPrimitives.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Cryptographic Primitives Library 131795770645383742 0x7ffacca60000 122880 C:\Windows\System32\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795770645383742 0x7ffaccae0000 692224 C:\Windows\System32\shcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795770645383742 0x7ffaccb90000 7180288 C:\Windows\System32\windows.storage.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API хранения Microsoft WinRT 131795770645383742 0x7ffacd270000 2215936 C:\Windows\System32\KERNELBASE.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645383742 0x7ffacd7b0000 270336 C:\Windows\System32\cfgmgr32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Configuration Manager DLL 131795770645383742 0x7ffacd810000 22056960 C:\Windows\System32\SHELL32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Общая библиотека оболочки Windows 131795770645383742 0x7ffacee50000 1183744 C:\Windows\System32\RPCRT4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795770645383742 0x7ffacef90000 647168 C:\Windows\System32\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795770645383742 0x7ffacf030000 651264 C:\Windows\System32\clbcatq.dll 2001.12.10941.16384 (rs1_release.160715-1616) Microsoft Corporation COM+ Configuration Catalog 131795770645383742 0x7ffacf0d0000 704512 C:\Windows\System32\KERNEL32.DLL 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645383742 0x7ffacf770000 212992 C:\Windows\System32\GDI32.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation GDI Client DLL 131795770645383742 0x7ffacf890000 188416 C:\Windows\System32\IMM32.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Multi-User Windows IMM32 API Client DLL 131795770645383742 0x7ffacf8c0000 1462272 C:\Windows\System32\user32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795770645383742 0x7ffacfb30000 2916352 C:\Windows\System32\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795770645383742 0x7ffacfe20000 663552 C:\Windows\System32\advapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795770645383742 0x7ffad0070000 1277952 C:\Windows\System32\ole32.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft OLE для Windows 131795770645383742 0x7ffad01b0000 335872 C:\Windows\System32\SHLWAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека небольших программ оболочки 131795770645383742 0x7ffad0210000 364544 C:\Windows\System32\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795770645383742 0x7ffad0270000 1908736 C:\Windows\SYSTEM32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 68 8940 2156 62 00000000:0031f1da 131794956984780982 0 0 1 Обязательная метка\Средний обязательный уровень WIN-0UOTFKKVN1S\User Photoshop.exe C:\Program Files\Adobe\Adobe Photoshop CC 2017\Photoshop.exe "C:\Program Files\Adobe\Adobe Photoshop CC 2017\Photoshop.exe" "C:\Users\User\Downloads\tlauncher_psd\tlauncher_psd.psd" Adobe Systems, Incorporated 18.0.1 (2017.0.1 20161130.r.29 2016/11/30:23:00:00 CL 1099099) Adobe Photoshop CC 2017 131795770645383911 0xb20000 9846784 C:\Program Files\Adobe\Adobe Photoshop CC 2017\cg.dll 3.0.00007 NVIDIA Corporation Cg Core Runtime Library 131795770645383911 0x1490000 3276800 C:\Program Files\Adobe\Adobe Photoshop CC 2017\libmmd.dll 12.0.12.2 Intel Corporation Math Library for Intel(r) Compilers (thread-safe) 131795770645383911 0x10000000 6070272 C:\Program Files\Adobe\Adobe Photoshop CC 2017\svml_dispmd.dll 12.0.12.2 Intel Corporation SVML Library for Intel(r) Compilers (thread-safe) 131795770645383911 0x4fad0000 70561792 C:\Program Files\Common Files\Adobe\Plug-Ins\CC\File Formats\Camera Raw.8bi 9.8 Adobe Systems Incorporated Photoshop Camera Raw Plug-in 131795770645383911 0x5b690000 4763648 C:\Program Files\Adobe\Adobe Photoshop CC 2017\SVGRE.dll 6, 0, 0, 37447 Adobe Systems Incorporated SVGRE 6.0 131795770645383911 0x5bcf0000 241664 C:\Program Files\Adobe\Adobe Photoshop CC 2017\AXE8SharedExpat.dll 3.8.0.34320 Adobe Systems Incorporated AXE Shared EXPAT (UTF-8 native) 131795770645383911 0x5bd30000 61440 C:\Program Files\Adobe\Adobe Photoshop CC 2017\dnssd.dll 3,0,0,2 Apple Inc. Bonjour Client Library 131795770645383911 0x5bd40000 974848 C:\Program Files\Adobe\Adobe Photoshop CC 2017\AXEDOMCore.dll 3.8.0.34320 Adobe Systems Incorporated Adobe XML Engine: DOM Core 131795770645383911 0x5be30000 1306624 C:\Program Files\Adobe\Adobe Photoshop CC 2017\icucnv40.dll 4, 0, 0, 1001 IBM Corporation and others IBM ICU Common DLL 131795770645383911 0x6a400000 479232 C:\Program Files\Adobe\Adobe Photoshop CC 2017\cgGL.dll 3.0.00007 NVIDIA Corporation Cg GL Runtime Library 131795770645383911 0x180000000 159744 C:\Program Files\Adobe\Adobe Photoshop CC 2017\Required\Plug-Ins\File Formats\PSDX.8bi 14.0 Adobe Systems Incorporated Photoshop Remix Plug-In 131795770645383911 0x1c2eee90000 13922304 C:\Program Files\Adobe\Adobe Photoshop CC 2017\icudt40.dll 4, 0, 0, 1001 IBM Corporation and others ICU Data DLL 131795770645383911 0x1c2f1470000 12288 C:\Program Files\Adobe\Adobe Photoshop CC 2017\PSArt.dll 18.0.1 (2017.0.1 20161130.r.29 2016/11/30:23:00:00 CL 1099099) Adobe Systems, Incorporated Photoshop Resource DLL 131795770645383911 0x1c2f3490000 1593344 C:\Program Files\Adobe\Adobe Photoshop CC 2017\Photoshop.dll 18.0.1 (2017.0.1 20161130.r.29 2016/11/30:23:00:00 CL 1099099) Adobe Systems, Incorporated Photoshop Resource DLL 131795770645383911 0x1c2f3620000 2699264 C:\Program Files\Adobe\Adobe Photoshop CC 2017\PSViews.dll 18.0.1 (2017.0.1 20161130.r.29 2016/11/30:23:00:00 CL 1099099) Adobe Systems, Incorporated Photoshop Resource DLL 131795770645383911 0x1c2f93a0000 1429504 C:\Program Files\Adobe\Adobe Photoshop CC 2017\WRServices.dll 12.0.0.1000 WinSoft S.A. WRServices Engine 131795770645383911 0x1c2f9540000 1085440 C:\Program Files\Adobe\Adobe Photoshop CC 2017\Required\Linguistics\Providers\Plugins2\WRLiloPlugin.bundle\WRLiloPlugin.dll 1.3.6rc1 WinSoft SA WR LILO Plugin 131795770645383911 0x7ff6c3030000 182624256 C:\Program Files\Adobe\Adobe Photoshop CC 2017\Photoshop.exe 18.0.1 (2017.0.1 20161130.r.29 2016/11/30:23:00:00 CL 1099099) Adobe Systems, Incorporated Adobe Photoshop CC 2017 131795770645383911 0x7ffaa0cb0000 1880064 C:\Program Files\Adobe\Adobe Photoshop CC 2017\aif.dll 131795770645383911 0x7ffaa0e80000 2637824 C:\Program Files\Adobe\Adobe Photoshop CC 2017\LogSession.dll 7.4.1.60.45263 Adobe Systems Incorporated LogSession 131795770645383911 0x7ffaa1110000 70823936 C:\Program Files\Adobe\Adobe Photoshop CC 2017\Required\Plug-Ins\Spaces\libcef.dll 3.2526.1347.gcf20046 Chromium Embedded Framework (CEF) Dynamic Link Library 131795770645383911 0x7ffaa54a0000 7950336 C:\Program Files\Adobe\Adobe Photoshop CC 2017\Required\Plug-Ins\Extensions\ScriptingSupport.8li 18.0.1 Adobe Systems, Incorporated ScriptingSupport 131795770645383911 0x7ffaa5c40000 2113536 C:\Program Files\Adobe\Adobe Photoshop CC 2017\Required\Linguistics\Providers\Plugins2\AdobeHunspellPlugin\AdobeHunspellPlugin.dll 11.0.0.22122 Adobe Systems Incorporated AdobeHunspellPlugin 131795770645383911 0x7ffaa5e50000 4493312 C:\Program Files\Adobe\Adobe Photoshop CC 2017\CoolType.dll 5.15.00.37447 Adobe Systems Incorporated CoolType Typography Engine 131795770645383911 0x7ffaa62a0000 5267456 C:\Program Files\Adobe\Adobe Photoshop CC 2017\AGM.dll 4.30.60.37447 Adobe Systems Incorporated Adobe Graphics Manager 131795770645383911 0x7ffaa67b0000 1839104 C:\Program Files\Adobe\Adobe Photoshop CC 2017\ACE.dll 2.20.02.37447 Adobe Systems Incorporated Adobe Color Engine 131795770645383911 0x7ffaa6980000 1302528 C:\Program Files\Adobe\Adobe Photoshop CC 2017\AdobeXMP.dll 5.6-c138 ( 64 bit ), 79.159824, 2016/09/14-01:09:01 Adobe Systems Incorporated Adobe XMP Core 5.6-c138 ( 64 bit ) 131795770645383911 0x7ffaa6ac0000 692224 C:\Program Files\Adobe\Adobe Photoshop CC 2017\Required\Plug-Ins\Extensions\MultiProcessor Support.8bx 18.0.1 (2017.0.1 x001 x003) Adobe Systems, Incorporated Adobe Photoshop CC 2017 131795770645383911 0x7ffaa6b70000 1077248 C:\Program Files\Adobe\Adobe Photoshop CC 2017\Required\Plug-Ins\Extensions\MMXCore.8bx 18.0.1 (2017.0.1 x001 x003) Adobe Systems, Incorporated Adobe Photoshop CC 2017 131795770645383911 0x7ffaa6c80000 2093056 C:\Windows\system32\wpdshext.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширение оболочки для переносных устройств 131795770645383911 0x7ffaa6fd0000 978944 C:\Windows\SYSTEM32\MSVCR120.dll 12.00.40660.0 built by: VSULDR Microsoft Corporation Microsoft® C Runtime Library 131795770645383911 0x7ffaa70c0000 679936 C:\Windows\SYSTEM32\MSVCP120.dll 12.00.40660.0 built by: VSULDR Microsoft Corporation Microsoft® C Runtime Library 131795770645383911 0x7ffaa7170000 2826240 C:\Program Files\Adobe\Adobe Photoshop CC 2017\opencv_imgproc249.dll 131795770645383911 0x7ffaa7430000 2564096 C:\Program Files\Adobe\Adobe Photoshop CC 2017\opencv_core249.dll 131795770645383911 0x7ffaa76b0000 1478656 C:\Program Files\Adobe\Adobe Photoshop CC 2017\AIDE.dll 1.5.0.36540 Adobe Systems Incorporated Adobe Image Decode Encode Library 131795770645383911 0x7ffaa7820000 278528 C:\Program Files\Adobe\Adobe Photoshop CC 2017\tbbmalloc.dll 4, 4, 2016, 0412 Intel Corporation Scalable Allocator library 131795770645383911 0x7ffaa7870000 1011712 C:\Windows\SYSTEM32\DDRAW.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft DirectDraw 131795770645383911 0x7ffaa7b20000 2613248 C:\Program Files\Adobe\Adobe Photoshop CC 2017\AdobeOwl.dll 5.2.11 Adobe Systems, Incorporated Adobe Owl(64 bit) 131795770645383911 0x7ffaa7da0000 749568 C:\Program Files\Adobe\Adobe Photoshop CC 2017\ScCore.dll 4.5.6.4 Adobe Systems Incorporated Scripting Components Core (64 bit) 131795770645383911 0x7ffaa7e60000 18792448 C:\Program Files\Adobe\Adobe Photoshop CC 2017\mona.dll 131795770645383911 0x7ffaa9050000 802816 C:\Program Files\Adobe\Adobe Photoshop CC 2017\ExtendScript.dll 4.5.6.4 Adobe Systems Incorporated Adobe ExtendScript scripting engine (64 bit) 131795770645383911 0x7ffaa9120000 5681152 C:\Program Files\Adobe\Adobe Photoshop CC 2017\PlugPlugOwl.dll 7.0.0.67 Adobe Systems Incorporated PlugPlugOwl Standard Dll (64 bit) 131795770645383911 0x7ffaa9690000 5595136 C:\Program Files\Adobe\Adobe Photoshop CC 2017\MPS.dll 5.8.1.37174 Adobe Systems Incorporated Modular Parsing System 131795770645383911 0x7ffaa9bf0000 335872 C:\Program Files\Adobe\Adobe Photoshop CC 2017\ahclient.dll 2.0.0.0 Adobe Systems Incorporated Adobe Help Client Library 131795770645383911 0x7ffaa9c50000 569344 C:\Program Files\Adobe\Adobe Photoshop CC 2017\manta.dll 131795770645383911 0x7ffaa9ce0000 278528 C:\Program Files\Adobe\Adobe Photoshop CC 2017\tbb.dll 4, 4, 2016, 0412 Intel Corporation Intel(R) Threading Building Blocks library 131795770645383911 0x7ffaa9d30000 499712 C:\Program Files\Adobe\Adobe Photoshop CC 2017\VulcanControl.dll __ Adobe Systems Incorporated Vulcan Application Control Library 131795770645383911 0x7ffaa9db0000 630784 C:\Program Files\Adobe\Adobe Photoshop CC 2017\VulcanMessage5.dll __ Adobe Systems Incorporated Vulcan Message Library 131795770645383911 0x7ffaa9e50000 1241088 C:\Program Files\Adobe\Adobe Photoshop CC 2017\AdbePM.dll 2.5.00 Adobe Systems Incorporated Adobe PatchMatch 131795770645383911 0x7ffaa9f80000 167936 C:\Program Files\Adobe\Adobe Photoshop CC 2017\CITThreading.dll 2.1.0.1 ( 32 bit Debug) Adobe Systems Incorporated CITTHREADING_NAME, 2.1.0.1 ( 32 bit Debug) 131795770645383911 0x7ffaa9fb0000 1101824 C:\Program Files\Adobe\Adobe Photoshop CC 2017\adobe_caps.dll 10,0,0,6 Adobe Systems Incorporated Adobe CAPS DLL 131795770645383911 0x7ffaaa190000 1191936 C:\Windows\SYSTEM32\OPENGL32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation OpenGL Client DLL 131795770645383911 0x7ffaaa2c0000 593920 C:\Windows\SYSTEM32\mscms.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL-библиотека системы сопоставления цветов Майкрософт 131795770645383911 0x7ffaaa5f0000 2056192 C:\Program Files\Adobe\Adobe Photoshop CC 2017\IMSLib.dll 10.0.0.1 Adobe Systems Incorporated IMSLib DLL 131795770645383911 0x7ffaaa9c0000 9007104 C:\Program Files\Adobe\Adobe Photoshop CC 2017\Required\Plug-Ins\File Formats\Dicom.8bi 18.0.1 Adobe Systems, Incorporated Adobe Dicom Plugin 131795770645383911 0x7ffaaba80000 184320 C:\Windows\SYSTEM32\GLU32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека подпрограмм OpenGL 131795770645383911 0x7ffaabca0000 233472 C:\Program Files\Adobe\Adobe Photoshop CC 2017\PLUGIN.dll 18.0.1 (2017.0.1 x001 x003) Adobe Systems, Incorporated Photoshop Plugin Utilities 131795770645383911 0x7ffaade70000 270336 C:\Windows\SYSTEM32\icm32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Color Management Module (CMM) 131795770645383911 0x7ffab06d0000 245760 C:\Windows\system32\c_g18030.dll 10.0.14393.103 (rs1_release_inmarket.160819-1924) Microsoft Corporation GB18030 DBCS-Unicode Conversion DLL 131795770645383911 0x7ffab0b60000 495616 C:\Program Files\Adobe\Adobe Photoshop CC 2017\AdobeSVGAGM.dll 1.0.0.37447 Adobe Systems Incorporated Adobe SVG AGM Library 131795770645383911 0x7ffab1e60000 1478656 C:\Program Files\Adobe\Adobe Photoshop CC 2017\AdobeXMPFiles.dll 5.7-f022 ( 64 bit ), 79.159824, 2016/09/14-01:09:01 Adobe Systems Incorporated Adobe XMP Files 5.7-f022 ( 64 bit ) 131795770645383911 0x7ffab22e0000 1544192 C:\Program Files\Adobe\Adobe Photoshop CC 2017\Required\Plug-Ins\Spaces\Spaces.8li 18.0.1 Adobe Systems, Incorporated Spaces 131795770645383911 0x7ffab3410000 167936 C:\Program Files\Adobe\Adobe Photoshop CC 2017\libglog.dll 131795770645383911 0x7ffab4af0000 606208 C:\Windows\system32\audioses.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Сеанс обработки звука 131795770645383911 0x7ffab5b40000 2527232 C:\Windows\SYSTEM32\DWrite.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Службы Microsoft DirectX Typography 131795770645383911 0x7ffab8da0000 1675264 C:\Windows\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.14393.1715_none_aec701fbddd850fa\gdiplus.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Microsoft GDI+ 131795770645383911 0x7ffabaf70000 270336 C:\Windows\SYSTEM32\edputil.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служебная программа EDP 131795770645383911 0x7ffabb070000 512000 C:\Program Files\Adobe\Adobe Photoshop CC 2017\AdobePIP.dll 7.4.1.60.45263 Adobe Systems, Incorporated Adobe Product Improvement Program 131795770645383911 0x7ffabb250000 380928 C:\Program Files\Adobe\Adobe Photoshop CC 2017\BIBUtils.dll 1.1.01.37447 Adobe Systems Incorporated Bravo Interface Binder Utilities 131795770645383911 0x7ffabbc40000 643072 C:\Windows\SYSTEM32\MSVCP140.dll 14.10.24516.0 built by: VCTOOLSRELESC Microsoft Corporation Microsoft® C Runtime Library 131795770645383911 0x7ffabbce0000 90112 C:\Windows\SYSTEM32\VCRUNTIME140.dll 14.10.24516.0 built by: VCTOOLSRELESC Microsoft Corporation Microsoft® C Runtime Library 131795770645383911 0x7ffabcc00000 339968 C:\Windows\SYSTEM32\STI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиентская библиотека устройств неподвижных изображений 131795770645383911 0x7ffabd180000 548864 C:\Windows\SYSTEM32\WINSPOOL.DRV 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Драйвер диспетчера очереди Windows 131795770645383911 0x7ffabf5d0000 2924544 C:\Windows\SYSTEM32\WININET.dll 11.00.14393.447 (rs1_release_inmarket.161102-0100) Microsoft Corporation Расширения Интернета для Win32 131795770645383911 0x7ffac0610000 3088384 C:\Windows\SYSTEM32\msi.dll 5.0.14393.2155 Microsoft Corporation Windows Installer 131795770645383911 0x7ffac0b40000 315392 C:\Windows\System32\dlnashext.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLNA Namespace DLL 131795770645383911 0x7ffac0bf0000 3559424 C:\Windows\System32\ActXPrxy.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation ActiveX Interface Marshaling Library 131795770645383911 0x7ffac1300000 598016 C:\Program Files\Adobe\Adobe Photoshop CC 2017\BIB.dll 1.2.03.37447 Adobe Systems Incorporated Bravo Interface Binder 131795770645383911 0x7ffac1b70000 122880 C:\Windows\System32\DevDispItemProvider.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Подсистема DeviceItem inproc devquery 131795770645383911 0x7ffac1d60000 589824 C:\Windows\SYSTEM32\webio.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API протоколов передачи по Веб 131795770645383911 0x7ffac1fd0000 999424 C:\Windows\system32\wbem\fastprox.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation WMI Custom Marshaller 131795770645383911 0x7ffac21d0000 81920 C:\Windows\system32\wbem\wbemsvc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation WMI 131795770645383911 0x7ffac2700000 98304 C:\Windows\SYSTEM32\NETAPI32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API DLL 131795770645383911 0x7ffac2b80000 40960 C:\Windows\SYSTEM32\VERSION.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Version Checking and File Installation Libraries 131795770645383911 0x7ffac32b0000 151552 C:\Program Files\Adobe\Adobe Photoshop CC 2017\AdobeXMPScript.dll 5.2-s002 ( 64 bit ), 79.159824, 2016/09/14-01:09:01 Adobe Systems Incorporated Adobe XMP Script 5.2-s002 ( 64 bit ) 131795770645383911 0x7ffac34e0000 1843200 C:\Windows\SYSTEM32\urlmon.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширения OLE32 для Win32 131795770645383911 0x7ffac3cb0000 2772992 C:\Windows\SYSTEM32\iertutil.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служебная программа времени выполнения для Internet Explorer 131795770645383911 0x7ffac4220000 520192 C:\Windows\SYSTEM32\wbemcomn.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation WMI 131795770645383911 0x7ffac4470000 65536 C:\Windows\system32\wbem\wbemprox.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation WMI 131795770645383911 0x7ffac4c50000 36864 C:\Windows\SYSTEM32\WSOCK32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Socket 32-Bit DLL 131795770645383911 0x7ffac6610000 40960 C:\Windows\System32\rasadhlp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Remote Access AutoDial Helper 131795770645383911 0x7ffac69c0000 839680 C:\Windows\SYSTEM32\WINHTTP.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Службы HTTP Windows 131795770645383911 0x7ffac6aa0000 94208 C:\Program Files\Adobe\Adobe Photoshop CC 2017\amtlib.dll 10.0.0.3 painter AMTEmu Licensing 131795770645383911 0x7ffac6ba0000 49152 C:\Windows\SYSTEM32\Secur32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Security Support Provider Interface 131795770645383911 0x7ffac6bd0000 413696 C:\Windows\SYSTEM32\OLEACC.dll 7.2.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Active Accessibility Core Component 131795770645383911 0x7ffac6c40000 2596864 C:\Windows\WinSxS\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.14393.953_none_42151e83c686086b\Comctl32.dll 6.10 (rs1_release_inmarket.170303-1614) Microsoft Corporation Библиотека элементов управления взаимодействия с пользователем 131795770645383911 0x7ffac6ec0000 36864 C:\Windows\system32\IconCodecService.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Converts a PNG part of the icon to a legacy bmp icon 131795770645383911 0x7ffac76e0000 118784 C:\Program Files\Adobe\Adobe Photoshop CC 2017\Required\Plug-Ins\Extensions\FastCore.8bx 18.0.1 (2017.0.1 x001 x003) Adobe Systems, Incorporated Adobe Photoshop CC 2017 131795770645383911 0x7ffac7710000 40960 C:\Windows\SYSTEM32\wiatrace.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation WIA Tracing 131795770645383911 0x7ffac83d0000 106496 C:\Windows\SYSTEM32\dhcpcsvc.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служба DHCP-клиента 131795770645383911 0x7ffac83f0000 90112 C:\Windows\SYSTEM32\dhcpcsvc6.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиент DHCPv6 131795770645383911 0x7ffac84f0000 299008 C:\Windows\system32\dataexchange.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation Data exchange 131795770645383911 0x7ffac8810000 45056 C:\Windows\SYSTEM32\WINNSI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Network Store Information RPC interface 131795770645383911 0x7ffac88a0000 2842624 C:\Windows\system32\d3d11.dll 10.0.14393.953 (rs1_release_inmarket.170303-1614) Microsoft Corporation Direct3D 11 Runtime 131795770645383911 0x7ffac92e0000 1269760 C:\Windows\SYSTEM32\wintypes.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL основных типов Windows 131795770645383911 0x7ffac9480000 462848 C:\Windows\System32\MMDevApi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation MMDevice API 131795770645383911 0x7ffac9790000 98304 C:\Windows\system32\NLAapi.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Network Location Awareness 2 131795770645383911 0x7ffac9f50000 1736704 C:\Windows\SYSTEM32\WindowsCodecs.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Microsoft Windows Codecs Library 131795770645383911 0x7ffaca340000 1593344 C:\Windows\SYSTEM32\PROPSYS.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Система страниц свойств (Майкрософт) 131795770645383911 0x7ffaca4e0000 77824 C:\Windows\SYSTEM32\WTSAPI32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Remote Desktop Session Host Server SDK APIs 131795770645383911 0x7ffaca540000 32768 C:\Windows\SYSTEM32\DCIMAN32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DCI Manager 131795770645383911 0x7ffaca5e0000 155648 C:\Windows\system32\dwmapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Интерфейс API диспетчера окон рабочего стола (Майкрософт) 131795770645383911 0x7ffaca770000 1380352 C:\Windows\system32\dcomp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft DirectComposition Library 131795770645383911 0x7ffacab20000 102400 C:\Windows\SYSTEM32\USP10.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Uniscribe Unicode script processor 131795770645383911 0x7ffacab40000 176128 C:\Windows\SYSTEM32\WINMMBASE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base Multimedia Extension API DLL 131795770645383911 0x7ffacaba0000 143360 C:\Windows\SYSTEM32\WINMM.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation MCI API DLL 131795770645383911 0x7ffacac80000 28672 C:\Windows\SYSTEM32\MSIMG32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation GDIEXT Client DLL 131795770645383911 0x7ffacadf0000 499712 C:\Windows\SYSTEM32\apphelp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиентская библиотека совместимости приложений 131795770645383911 0x7ffacaf00000 610304 C:\Windows\system32\uxtheme.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека тем UxTheme (Microsoft) 131795770645383911 0x7ffacb1e0000 1163264 C:\Windows\system32\twinapi.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation twinapi.appcore 131795770645383911 0x7ffacb3f0000 163840 C:\Windows\System32\DEVOBJ.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Device Information Set DLL 131795770645383911 0x7ffacb420000 204800 C:\Windows\SYSTEM32\ntmarta.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик Windows NT MARTA 131795770645383911 0x7ffacb780000 651264 C:\Windows\SYSTEM32\dxgi.dll 10.0.14393.953 (rs1_release_inmarket.170303-1614) Microsoft Corporation DirectX Graphics Infrastructure 131795770645383911 0x7ffacbbb0000 208896 C:\Windows\system32\rsaenh.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Enhanced Cryptographic Provider 131795770645383911 0x7ffacbd30000 229376 C:\Windows\SYSTEM32\IPHLPAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API вспомогательного приложения IP 131795770645383911 0x7ffacbd70000 659456 C:\Windows\SYSTEM32\DNSAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Динамическая библиотека API DNS-клиента 131795770645383911 0x7ffacbe40000 126976 C:\Windows\SYSTEM32\USERENV.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Userenv 131795770645383911 0x7ffacbfb0000 376832 C:\Windows\system32\mswsock.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширение поставщика службы API Microsoft Windows Sockets 2.0 131795770645383911 0x7ffacc150000 94208 C:\Windows\SYSTEM32\CRYPTSP.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Cryptographic Service Provider API 131795770645383911 0x7ffacc170000 45056 C:\Windows\SYSTEM32\CRYPTBASE.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base cryptographic API DLL 131795770645383911 0x7ffacc350000 180224 C:\Windows\SYSTEM32\SspiCli.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Security Support Provider Interface 131795770645383911 0x7ffacc520000 622592 C:\Windows\SYSTEM32\sxs.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Fusion 2.5 131795770645383911 0x7ffacc5c0000 352256 C:\Windows\SYSTEM32\WINSTA.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Winstation Library 131795770645383911 0x7ffacc620000 176128 C:\Windows\SYSTEM32\bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795770645383911 0x7ffacc6e0000 61440 C:\Windows\System32\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795770645383911 0x7ffacc6f0000 311296 C:\Windows\System32\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795770645383911 0x7ffacc740000 81920 C:\Windows\System32\profapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Profile Basic API 131795770645383911 0x7ffacc760000 65536 C:\Windows\System32\MSASN1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ASN.1 Runtime APIs 131795770645383911 0x7ffacc8f0000 1003520 C:\Windows\System32\ucrtbase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645383911 0x7ffacc9f0000 434176 C:\Windows\System32\bcryptPrimitives.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Cryptographic Primitives Library 131795770645383911 0x7ffacca60000 122880 C:\Windows\System32\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795770645383911 0x7ffacca80000 348160 C:\Windows\System32\WINTRUST.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation Microsoft Trust Verification APIs 131795770645383911 0x7ffaccae0000 692224 C:\Windows\System32\shcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795770645383911 0x7ffaccb90000 7180288 C:\Windows\System32\windows.storage.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API хранения Microsoft WinRT 131795770645383911 0x7ffacd270000 2215936 C:\Windows\System32\KERNELBASE.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645383911 0x7ffacd490000 1871872 C:\Windows\System32\CRYPT32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API32 криптографии 131795770645383911 0x7ffacd710000 638976 C:\Windows\System32\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645383911 0x7ffacd7b0000 270336 C:\Windows\System32\cfgmgr32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Configuration Manager DLL 131795770645383911 0x7ffacd800000 32768 C:\Windows\System32\PSAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Process Status Helper 131795770645383911 0x7ffacd810000 22056960 C:\Windows\System32\SHELL32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Общая библиотека оболочки Windows 131795770645383911 0x7ffaced20000 782336 C:\Windows\System32\OLEAUT32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795770645383911 0x7ffacee50000 1183744 C:\Windows\System32\RPCRT4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795770645383911 0x7ffacef80000 32768 C:\Windows\System32\NSI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation NSI User-mode interface DLL 131795770645383911 0x7ffacef90000 647168 C:\Windows\System32\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795770645383911 0x7ffacf030000 651264 C:\Windows\System32\clbcatq.dll 2001.12.10941.16384 (rs1_release.160715-1616) Microsoft Corporation COM+ Configuration Catalog 131795770645383911 0x7ffacf0d0000 704512 C:\Windows\System32\KERNEL32.DLL 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645383911 0x7ffacf1e0000 1417216 C:\Windows\System32\MSCTF.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Серверная библиотека MSCTF 131795770645383911 0x7ffacf340000 4362240 C:\Windows\System32\SETUPAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Setup API 131795770645383911 0x7ffacf770000 212992 C:\Windows\System32\GDI32.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation GDI Client DLL 131795770645383911 0x7ffacf820000 434176 C:\Windows\System32\WS2_32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation 32-разрядная библиотека Windows Socket 2.0 131795770645383911 0x7ffacf890000 188416 C:\Windows\System32\IMM32.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Multi-User Windows IMM32 API Client DLL 131795770645383911 0x7ffacf8c0000 1462272 C:\Windows\System32\USER32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795770645383911 0x7ffacfa30000 1024000 C:\Windows\System32\COMDLG32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека общих диалоговых окон 131795770645383911 0x7ffacfb30000 2916352 C:\Windows\System32\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795770645383911 0x7ffacfe20000 663552 C:\Windows\System32\ADVAPI32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795770645383911 0x7ffad0070000 1277952 C:\Windows\System32\ole32.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft OLE для Windows 131795770645383911 0x7ffad01b0000 335872 C:\Windows\System32\shlwapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека небольших программ оболочки 131795770645383911 0x7ffad0210000 364544 C:\Windows\System32\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795770645383911 0x7ffad0270000 1908736 C:\Windows\SYSTEM32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 69 10000 8940 68 00000000:0031f1da 131794957424930105 0 0 0 Обязательная метка\Средний обязательный уровень WIN-0UOTFKKVN1S\User AdobeIPCBroker.exe C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\IPC\AdobeIPCBroker.exe "C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\IPC\AdobeIPCBroker.exe" "-launchedbyvulcan" Adobe Systems Incorporated 5.0.0.76 Adobe IPC Broker 131795770645384008 0xbe0000 798720 C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\IPC\AdobeIPCBroker.exe 5.0.0.76 Adobe Systems Incorporated Adobe IPC Broker 131795770645384008 0x5c020000 335872 C:\Windows\System32\wow64.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation Win32 Emulation on NT64 131795770645384008 0x5c080000 487424 C:\Windows\System32\wow64win.dll 10.0.14393.1884 (rs1_release.171101-1233) Microsoft Corporation Wow64 Console and Win32 API Logging 131795770645384008 0x5c100000 40960 C:\Windows\System32\wow64cpu.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation AMD64 Wow64 CPU 131795770645384008 0x60750000 1556480 C:\Program Files (x86)\360\Total Security\safemon\safemon.dll 8, 4, 0, 1420 Qihu 360 Software Co., Ltd. 360 Internet Security Internet Protection 131795770645384008 0x70ca0000 45056 C:\Windows\SysWOW64\NETUTILS.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API Helpers DLL 131795770645384008 0x70cb0000 65536 C:\Windows\SysWOW64\WKSCLI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Workstation Service Client DLL 131795770645384008 0x71140000 77824 C:\Windows\SysWOW64\NETAPI32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API DLL 131795770645384008 0x72b90000 126976 C:\Windows\SysWOW64\dwmapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Интерфейс API диспетчера окон рабочего стола (Майкрософт) 131795770645384008 0x74110000 479232 C:\Windows\SysWOW64\uxtheme.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека тем UxTheme (Microsoft) 131795770645384008 0x74190000 110592 C:\Windows\SysWOW64\bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795770645384008 0x746e0000 32768 C:\Windows\SysWOW64\VERSION.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Version Checking and File Installation Libraries 131795770645384008 0x74730000 598016 C:\Windows\SysWOW64\apphelp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиентская библиотека совместимости приложений 131795770645384008 0x747d0000 40960 C:\Windows\SysWOW64\CRYPTBASE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base cryptographic API DLL 131795770645384008 0x747e0000 126976 C:\Windows\SysWOW64\SspiCli.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Security Support Provider Interface 131795770645384008 0x74800000 151552 C:\Windows\SysWOW64\IMM32.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Multi-User Windows IMM32 API Client DLL 131795770645384008 0x74910000 2170880 C:\Windows\SysWOW64\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795770645384008 0x74b30000 53248 C:\Windows\SysWOW64\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795770645384008 0x74b60000 790528 C:\Windows\SysWOW64\RPCRT4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795770645384008 0x74c30000 1417216 C:\Windows\SysWOW64\gdi32full.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation GDI Client DLL 131795770645384008 0x74d90000 24576 C:\Windows\SysWOW64\PSAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Process Status Helper 131795770645384008 0x74da0000 778240 C:\Windows\SysWOW64\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795770645384008 0x74e60000 557056 C:\Windows\SysWOW64\shcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795770645384008 0x74ef0000 540672 C:\Windows\SysWOW64\clbcatq.dll 2001.12.10941.16384 (rs1_release.160715-1616) Microsoft Corporation COM+ Configuration Catalog 131795770645384008 0x74fd0000 405504 C:\Windows\SysWOW64\WS2_32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation 32-разрядная библиотека Windows Socket 2.0 131795770645384008 0x75040000 282624 C:\Windows\SysWOW64\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795770645384008 0x751e0000 1708032 C:\Windows\SysWOW64\KERNELBASE.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645384008 0x75390000 266240 C:\Windows\SysWOW64\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795770645384008 0x75560000 487424 C:\Windows\SysWOW64\ADVAPI32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795770645384008 0x756c0000 5693440 C:\Windows\SysWOW64\windows.storage.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API хранения Microsoft WinRT 131795770645384008 0x75c90000 286720 C:\Windows\SysWOW64\shlwapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека небольших программ оболочки 131795770645384008 0x75ce0000 20811776 C:\Windows\SysWOW64\SHELL32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Общая библиотека оболочки Windows 131795770645384008 0x774d0000 86016 C:\Windows\SysWOW64\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795770645384008 0x774f0000 61440 C:\Windows\SysWOW64\profapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Profile Basic API 131795770645384008 0x77560000 1437696 C:\Windows\SysWOW64\USER32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795770645384008 0x776c0000 368640 C:\Windows\SysWOW64\bcryptPrimitives.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation Windows Cryptographic Primitives Library 131795770645384008 0x77780000 503808 C:\Windows\SysWOW64\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645384008 0x77800000 606208 C:\Windows\SysWOW64\OLEAUT32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795770645384008 0x77ac0000 966656 C:\Windows\SysWOW64\ole32.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft OLE для Windows 131795770645384008 0x77bb0000 176128 C:\Windows\SysWOW64\GDI32.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation GDI Client DLL 131795770645384008 0x77cd0000 221184 C:\Windows\SysWOW64\cfgmgr32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Configuration Manager DLL 131795770645384008 0x77d20000 1585152 C:\Windows\SysWOW64\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 131795770645384008 0x7ffad0270000 1908736 C:\Windows\SYSTEM32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 70 10064 8940 68 00000000:0031f1da 131794957636746019 0 0 1 Обязательная метка\Средний обязательный уровень WIN-0UOTFKKVN1S\User Adobe Spaces Helper.exe C:\Program Files\Adobe\Adobe Photoshop CC 2017\Required\Plug-Ins\Spaces\Adobe Spaces Helper.exe "C:\Program Files\Adobe\Adobe Photoshop CC 2017\Required\Plug-Ins\Spaces\Adobe Spaces Helper.exe" --type=renderer --no-sandbox --touch-events=disabled --lang=en-US --lang=ru --locales-dir-path="C:\Program Files\Adobe\Adobe Photoshop CC 2017\Required\Plug-Ins\Spaces\Resources\locales\\" --log-file="C:\Users\User\AppData\Roaming\Adobe\Adobe Photoshop CC 2017\Logs\debug.log" --resources-dir-path="C:\Program Files\Adobe\Adobe Photoshop CC 2017\Required\Plug-Ins\Spaces\Resources\\" --enable-pinch --device-scale-factor=1 --num-raster-threads=1 --content-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --video-image-texture-target=3553 --disable-accelerated-video-decode --disable-webrtc-hw-encoding --disable-gpu-compositing --channel="8940.0.1405287427\319210639" /prefetch:673131151 131795770645384116 0x7ff6c2ef0000 1196032 C:\Program Files\Adobe\Adobe Photoshop CC 2017\Required\Plug-Ins\Spaces\Adobe Spaces Helper.exe 131795770645384116 0x7ffaa1110000 70823936 C:\Program Files\Adobe\Adobe Photoshop CC 2017\Required\Plug-Ins\Spaces\libcef.dll 3.2526.1347.gcf20046 Chromium Embedded Framework (CEF) Dynamic Link Library 131795770645384116 0x7ffab5b40000 2527232 C:\Windows\SYSTEM32\dwrite.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Службы Microsoft DirectX Typography 131795770645384116 0x7ffabbc40000 643072 C:\Windows\SYSTEM32\MSVCP140.dll 14.10.24516.0 built by: VCTOOLSRELESC Microsoft Corporation Microsoft® C Runtime Library 131795770645384116 0x7ffabbce0000 90112 C:\Windows\SYSTEM32\VCRUNTIME140.dll 14.10.24516.0 built by: VCTOOLSRELESC Microsoft Corporation Microsoft® C Runtime Library 131795770645384116 0x7ffabd180000 548864 C:\Windows\SYSTEM32\WINSPOOL.DRV 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Драйвер диспетчера очереди Windows 131795770645384116 0x7ffac2b80000 40960 C:\Windows\SYSTEM32\VERSION.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Version Checking and File Installation Libraries 131795770645384116 0x7ffac34e0000 1843200 C:\Windows\SYSTEM32\urlmon.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширения OLE32 для Win32 131795770645384116 0x7ffac3cb0000 2772992 C:\Windows\SYSTEM32\iertutil.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служебная программа времени выполнения для Internet Explorer 131795770645384116 0x7ffac69c0000 839680 C:\Windows\SYSTEM32\WINHTTP.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Службы HTTP Windows 131795770645384116 0x7ffac6ba0000 49152 C:\Windows\SYSTEM32\Secur32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Security Support Provider Interface 131795770645384116 0x7ffac6bd0000 413696 C:\Windows\SYSTEM32\OLEACC.dll 7.2.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Active Accessibility Core Component 131795770645384116 0x7ffac6c40000 2596864 C:\Windows\WinSxS\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.14393.953_none_42151e83c686086b\COMCTL32.dll 6.10 (rs1_release_inmarket.170303-1614) Microsoft Corporation Библиотека элементов управления взаимодействия с пользователем 131795770645384116 0x7ffac83d0000 106496 C:\Windows\SYSTEM32\dhcpcsvc.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служба DHCP-клиента 131795770645384116 0x7ffac8df0000 1646592 C:\Windows\SYSTEM32\dbghelp.dll 10.0.14321.1024 (rs1_release.160715-1616) Microsoft Windows Image Helper 131795770645384116 0x7ffaca4e0000 77824 C:\Windows\SYSTEM32\WTSAPI32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Remote Desktop Session Host Server SDK APIs 131795770645384116 0x7ffacab20000 102400 C:\Windows\SYSTEM32\USP10.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Uniscribe Unicode script processor 131795770645384116 0x7ffacab40000 176128 C:\Windows\SYSTEM32\WINMMBASE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base Multimedia Extension API DLL 131795770645384116 0x7ffacaba0000 143360 C:\Windows\SYSTEM32\WINMM.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation MCI API DLL 131795770645384116 0x7ffacadf0000 499712 C:\Windows\system32\apphelp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиентская библиотека совместимости приложений 131795770645384116 0x7ffacaf00000 610304 C:\Windows\system32\uxtheme.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека тем UxTheme (Microsoft) 131795770645384116 0x7ffacbd30000 229376 C:\Windows\SYSTEM32\IPHLPAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API вспомогательного приложения IP 131795770645384116 0x7ffacbe40000 126976 C:\Windows\SYSTEM32\USERENV.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Userenv 131795770645384116 0x7ffacc170000 45056 C:\Windows\SYSTEM32\CRYPTBASE.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base cryptographic API DLL 131795770645384116 0x7ffacc350000 180224 C:\Windows\SYSTEM32\SSPICLI.DLL 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Security Support Provider Interface 131795770645384116 0x7ffacc620000 176128 C:\Windows\SYSTEM32\bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795770645384116 0x7ffacc6e0000 61440 C:\Windows\System32\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795770645384116 0x7ffacc6f0000 311296 C:\Windows\System32\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795770645384116 0x7ffacc740000 81920 C:\Windows\System32\profapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Profile Basic API 131795770645384116 0x7ffacc760000 65536 C:\Windows\System32\MSASN1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ASN.1 Runtime APIs 131795770645384116 0x7ffacc8f0000 1003520 C:\Windows\System32\ucrtbase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645384116 0x7ffacc9f0000 434176 C:\Windows\System32\bcryptPrimitives.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Cryptographic Primitives Library 131795770645384116 0x7ffacca60000 122880 C:\Windows\System32\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795770645384116 0x7ffaccae0000 692224 C:\Windows\System32\shcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795770645384116 0x7ffaccb90000 7180288 C:\Windows\System32\windows.storage.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API хранения Microsoft WinRT 131795770645384116 0x7ffacd270000 2215936 C:\Windows\System32\KERNELBASE.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645384116 0x7ffacd490000 1871872 C:\Windows\System32\CRYPT32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API32 криптографии 131795770645384116 0x7ffacd710000 638976 C:\Windows\System32\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645384116 0x7ffacd7b0000 270336 C:\Windows\System32\cfgmgr32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Configuration Manager DLL 131795770645384116 0x7ffacd800000 32768 C:\Windows\System32\PSAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Process Status Helper 131795770645384116 0x7ffacd810000 22056960 C:\Windows\System32\SHELL32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Общая библиотека оболочки Windows 131795770645384116 0x7ffaced20000 782336 C:\Windows\System32\OLEAUT32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795770645384116 0x7ffacee50000 1183744 C:\Windows\System32\RPCRT4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795770645384116 0x7ffacef80000 32768 C:\Windows\System32\NSI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation NSI User-mode interface DLL 131795770645384116 0x7ffacef90000 647168 C:\Windows\System32\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795770645384116 0x7ffacf0d0000 704512 C:\Windows\System32\KERNEL32.DLL 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645384116 0x7ffacf770000 212992 C:\Windows\System32\GDI32.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation GDI Client DLL 131795770645384116 0x7ffacf820000 434176 C:\Windows\System32\WS2_32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation 32-разрядная библиотека Windows Socket 2.0 131795770645384116 0x7ffacf890000 188416 C:\Windows\System32\IMM32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Multi-User Windows IMM32 API Client DLL 131795770645384116 0x7ffacf8c0000 1462272 C:\Windows\System32\USER32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795770645384116 0x7ffacfa30000 1024000 C:\Windows\System32\COMDLG32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека общих диалоговых окон 131795770645384116 0x7ffacfb30000 2916352 C:\Windows\System32\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795770645384116 0x7ffacfe20000 663552 C:\Windows\System32\ADVAPI32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795770645384116 0x7ffad0070000 1277952 C:\Windows\System32\ole32.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft OLE для Windows 131795770645384116 0x7ffad01b0000 335872 C:\Windows\System32\SHLWAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека небольших программ оболочки 131795770645384116 0x7ffad0210000 364544 C:\Windows\System32\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795770645384116 0x7ffad0270000 1908736 C:\Windows\SYSTEM32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 71 8596 8940 68 00000000:0031f1da 131794957641371503 0 0 1 Обязательная метка\Средний обязательный уровень WIN-0UOTFKKVN1S\User Adobe Spaces Helper.exe C:\Program Files\Adobe\Adobe Photoshop CC 2017\Required\Plug-Ins\Spaces\Adobe Spaces Helper.exe "C:\Program Files\Adobe\Adobe Photoshop CC 2017\Required\Plug-Ins\Spaces\Adobe Spaces Helper.exe" --type=renderer --no-sandbox --touch-events=disabled --lang=en-US --lang=ru --locales-dir-path="C:\Program Files\Adobe\Adobe Photoshop CC 2017\Required\Plug-Ins\Spaces\Resources\locales\\" --log-file="C:\Users\User\AppData\Roaming\Adobe\Adobe Photoshop CC 2017\Logs\debug.log" --resources-dir-path="C:\Program Files\Adobe\Adobe Photoshop CC 2017\Required\Plug-Ins\Spaces\Resources\\" --enable-pinch --device-scale-factor=1 --num-raster-threads=1 --content-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --video-image-texture-target=3553 --disable-accelerated-video-decode --disable-webrtc-hw-encoding --disable-gpu-compositing --channel="8940.1.1139889345\75461215" /prefetch:673131151 131795770645384222 0x7ff6c2ef0000 1196032 C:\Program Files\Adobe\Adobe Photoshop CC 2017\Required\Plug-Ins\Spaces\Adobe Spaces Helper.exe 131795770645384222 0x7ffaa1110000 70823936 C:\Program Files\Adobe\Adobe Photoshop CC 2017\Required\Plug-Ins\Spaces\libcef.dll 3.2526.1347.gcf20046 Chromium Embedded Framework (CEF) Dynamic Link Library 131795770645384222 0x7ffab5b40000 2527232 C:\Windows\SYSTEM32\dwrite.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Службы Microsoft DirectX Typography 131795770645384222 0x7ffabbc40000 643072 C:\Windows\SYSTEM32\MSVCP140.dll 14.10.24516.0 built by: VCTOOLSRELESC Microsoft Corporation Microsoft® C Runtime Library 131795770645384222 0x7ffabbce0000 90112 C:\Windows\SYSTEM32\VCRUNTIME140.dll 14.10.24516.0 built by: VCTOOLSRELESC Microsoft Corporation Microsoft® C Runtime Library 131795770645384222 0x7ffabd180000 548864 C:\Windows\SYSTEM32\WINSPOOL.DRV 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Драйвер диспетчера очереди Windows 131795770645384222 0x7ffac2b80000 40960 C:\Windows\SYSTEM32\VERSION.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Version Checking and File Installation Libraries 131795770645384222 0x7ffac34e0000 1843200 C:\Windows\SYSTEM32\urlmon.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширения OLE32 для Win32 131795770645384222 0x7ffac3cb0000 2772992 C:\Windows\SYSTEM32\iertutil.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служебная программа времени выполнения для Internet Explorer 131795770645384222 0x7ffac69c0000 839680 C:\Windows\SYSTEM32\WINHTTP.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Службы HTTP Windows 131795770645384222 0x7ffac6ba0000 49152 C:\Windows\SYSTEM32\Secur32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Security Support Provider Interface 131795770645384222 0x7ffac6bd0000 413696 C:\Windows\SYSTEM32\OLEACC.dll 7.2.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Active Accessibility Core Component 131795770645384222 0x7ffac6c40000 2596864 C:\Windows\WinSxS\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.14393.953_none_42151e83c686086b\COMCTL32.dll 6.10 (rs1_release_inmarket.170303-1614) Microsoft Corporation Библиотека элементов управления взаимодействия с пользователем 131795770645384222 0x7ffac83d0000 106496 C:\Windows\SYSTEM32\dhcpcsvc.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служба DHCP-клиента 131795770645384222 0x7ffac8df0000 1646592 C:\Windows\SYSTEM32\dbghelp.dll 10.0.14321.1024 (rs1_release.160715-1616) Microsoft Windows Image Helper 131795770645384222 0x7ffaca4e0000 77824 C:\Windows\SYSTEM32\WTSAPI32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Remote Desktop Session Host Server SDK APIs 131795770645384222 0x7ffacab20000 102400 C:\Windows\SYSTEM32\USP10.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Uniscribe Unicode script processor 131795770645384222 0x7ffacab40000 176128 C:\Windows\SYSTEM32\WINMMBASE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base Multimedia Extension API DLL 131795770645384222 0x7ffacaba0000 143360 C:\Windows\SYSTEM32\WINMM.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation MCI API DLL 131795770645384222 0x7ffacaf00000 610304 C:\Windows\system32\uxtheme.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека тем UxTheme (Microsoft) 131795770645384222 0x7ffacbd30000 229376 C:\Windows\SYSTEM32\IPHLPAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API вспомогательного приложения IP 131795770645384222 0x7ffacbe40000 126976 C:\Windows\SYSTEM32\USERENV.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Userenv 131795770645384222 0x7ffacc170000 45056 C:\Windows\SYSTEM32\CRYPTBASE.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base cryptographic API DLL 131795770645384222 0x7ffacc350000 180224 C:\Windows\SYSTEM32\SSPICLI.DLL 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Security Support Provider Interface 131795770645384222 0x7ffacc620000 176128 C:\Windows\SYSTEM32\bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795770645384222 0x7ffacc6e0000 61440 C:\Windows\System32\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795770645384222 0x7ffacc6f0000 311296 C:\Windows\System32\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795770645384222 0x7ffacc740000 81920 C:\Windows\System32\profapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Profile Basic API 131795770645384222 0x7ffacc760000 65536 C:\Windows\System32\MSASN1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ASN.1 Runtime APIs 131795770645384222 0x7ffacc8f0000 1003520 C:\Windows\System32\ucrtbase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645384222 0x7ffacc9f0000 434176 C:\Windows\System32\bcryptPrimitives.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Cryptographic Primitives Library 131795770645384222 0x7ffacca60000 122880 C:\Windows\System32\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795770645384222 0x7ffaccae0000 692224 C:\Windows\System32\shcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795770645384222 0x7ffaccb90000 7180288 C:\Windows\System32\windows.storage.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API хранения Microsoft WinRT 131795770645384222 0x7ffacd270000 2215936 C:\Windows\System32\KERNELBASE.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645384222 0x7ffacd490000 1871872 C:\Windows\System32\CRYPT32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API32 криптографии 131795770645384222 0x7ffacd710000 638976 C:\Windows\System32\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645384222 0x7ffacd7b0000 270336 C:\Windows\System32\cfgmgr32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Configuration Manager DLL 131795770645384222 0x7ffacd800000 32768 C:\Windows\System32\PSAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Process Status Helper 131795770645384222 0x7ffacd810000 22056960 C:\Windows\System32\SHELL32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Общая библиотека оболочки Windows 131795770645384222 0x7ffaced20000 782336 C:\Windows\System32\OLEAUT32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795770645384222 0x7ffacee50000 1183744 C:\Windows\System32\RPCRT4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795770645384222 0x7ffacef80000 32768 C:\Windows\System32\NSI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation NSI User-mode interface DLL 131795770645384222 0x7ffacef90000 647168 C:\Windows\System32\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795770645384222 0x7ffacf0d0000 704512 C:\Windows\System32\KERNEL32.DLL 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645384222 0x7ffacf770000 212992 C:\Windows\System32\GDI32.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation GDI Client DLL 131795770645384222 0x7ffacf820000 434176 C:\Windows\System32\WS2_32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation 32-разрядная библиотека Windows Socket 2.0 131795770645384222 0x7ffacf890000 188416 C:\Windows\System32\IMM32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Multi-User Windows IMM32 API Client DLL 131795770645384222 0x7ffacf8c0000 1462272 C:\Windows\System32\USER32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795770645384222 0x7ffacfa30000 1024000 C:\Windows\System32\COMDLG32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека общих диалоговых окон 131795770645384222 0x7ffacfb30000 2916352 C:\Windows\System32\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795770645384222 0x7ffacfe20000 663552 C:\Windows\System32\ADVAPI32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795770645384222 0x7ffad0070000 1277952 C:\Windows\System32\ole32.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft OLE для Windows 131795770645384222 0x7ffad01b0000 335872 C:\Windows\System32\SHLWAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека небольших программ оболочки 131795770645384222 0x7ffad0210000 364544 C:\Windows\System32\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795770645384222 0x7ffad0270000 1908736 C:\Windows\SYSTEM32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 72 11172 8940 68 00000000:0031f1da 131794957658059215 0 1 0 Обязательная метка\Средний обязательный уровень WIN-0UOTFKKVN1S\User CEPHtmlEngine.exe C:\Program Files\Adobe\Adobe Photoshop CC 2017\Required\CEP\CEPHtmlEngine\CEPHtmlEngine.exe "C:\Program Files\Adobe\Adobe Photoshop CC 2017\Required\CEP\CEPHtmlEngine\CEPHtmlEngine.exe" "C:\Program Files (x86)\Common Files\Adobe\CEP\extensions\com.adobe.previewHD\PSLoader\loader.html" 2ec98b7b-08f4-4716-915a-e20a700b24cb 8940 PHXS 18.0.1 com.adobe.preview.loader 1 "C:\Program Files (x86)\Common Files\Adobe\CEP\extensions\com.adobe.previewHD" "Photoshop" 16 WyItLWVuYWJsZS1ub2RlanMiXQ== ru_RU 4293980400 1 Adobe Systems Incorporated 7.0.0 Adobe CEP HTML Engine 131795770645384338 0x240000 4014080 C:\Program Files\Adobe\Adobe Photoshop CC 2017\Required\CEP\CEPHtmlEngine\CEPHtmlEngine.exe 7.0.0 Adobe Systems Incorporated Adobe CEP HTML Engine 131795770645384338 0x5c020000 335872 C:\Windows\System32\wow64.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation Win32 Emulation on NT64 131795770645384338 0x5c080000 487424 C:\Windows\System32\wow64win.dll 10.0.14393.1884 (rs1_release.171101-1233) Microsoft Corporation Wow64 Console and Win32 API Logging 131795770645384338 0x5c100000 40960 C:\Windows\System32\wow64cpu.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation AMD64 Wow64 CPU 131795770645384338 0x5d110000 44531712 C:\Program Files\Adobe\Adobe Photoshop CC 2017\Required\CEP\CEPHtmlEngine\libcef.dll 3.2272.67.g479a5bd Chromium Embedded Framework (CEF) Dynamic Link Library 131795770645384338 0x60750000 1556480 C:\Program Files (x86)\360\Total Security\safemon\safemon.dll 8, 4, 0, 1420 Qihu 360 Software Co., Ltd. 360 Internet Security Internet Protection 131795770645384338 0x6c290000 987136 C:\Windows\SysWOW64\twinapi.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation twinapi.appcore 131795770645384338 0x6c390000 1126400 C:\Windows\SysWOW64\dcomp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft DirectComposition Library 131795770645384338 0x6c4b0000 278528 C:\Windows\SysWOW64\dataexchange.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation Data exchange 131795770645384338 0x6d0b0000 847872 C:\Windows\SysWOW64\wintypes.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL основных типов Windows 131795770645384338 0x6e210000 81920 C:\Windows\SysWOW64\VCRUNTIME140.dll 14.10.24516.0 built by: VCTOOLSRELESC Microsoft Corporation Microsoft® C Runtime Library 131795770645384338 0x6e230000 446464 C:\Windows\SysWOW64\MSVCP140.dll 14.10.24516.0 built by: VCTOOLSRELESC Microsoft Corporation Microsoft® C Runtime Library 131795770645384338 0x6fd30000 139264 C:\Windows\SysWOW64\DEVOBJ.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Device Information Set DLL 131795770645384338 0x6fd60000 360448 C:\Windows\SysWOW64\MMDevAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation MMDevice API 131795770645384338 0x6fdc0000 507904 C:\Windows\SysWOW64\audioses.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Сеанс обработки звука 131795770645384338 0x700d0000 434176 C:\Windows\SysWOW64\WINSPOOL.DRV 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Драйвер диспетчера очереди Windows 131795770645384338 0x70140000 274432 C:\Windows\SysWOW64\WINSTA.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Winstation Library 131795770645384338 0x70340000 536576 C:\Windows\SysWOW64\dxgi.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation DirectX Graphics Infrastructure 131795770645384338 0x703d0000 2056192 C:\Windows\SysWOW64\dwrite.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Службы Microsoft DirectX Typography 131795770645384338 0x705e0000 344064 C:\Windows\SysWOW64\OLEACC.dll 7.2.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Active Accessibility Core Component 131795770645384338 0x70a20000 94208 C:\Windows\SysWOW64\USP10.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Uniscribe Unicode script processor 131795770645384338 0x70a40000 81920 C:\Windows\SysWOW64\NLAapi.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Network Location Awareness 2 131795770645384338 0x70ca0000 45056 C:\Windows\SysWOW64\NETUTILS.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API Helpers DLL 131795770645384338 0x70cb0000 65536 C:\Windows\SysWOW64\WKSCLI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Workstation Service Client DLL 131795770645384338 0x71140000 77824 C:\Windows\SysWOW64\NETAPI32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API DLL 131795770645384338 0x71610000 77824 C:\Windows\SysWOW64\dhcpcsvc6.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиент DHCPv6 131795770645384338 0x725e0000 2273280 C:\Windows\SysWOW64\iertutil.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служебная программа времени выполнения для Internet Explorer 131795770645384338 0x728e0000 1372160 C:\Windows\SysWOW64\PROPSYS.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Система страниц свойств (Майкрософт) 131795770645384338 0x72b90000 126976 C:\Windows\SysWOW64\dwmapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Интерфейс API диспетчера окон рабочего стола (Майкрософт) 131795770645384338 0x72cc0000 1658880 C:\Windows\SysWOW64\urlmon.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширения OLE32 для Win32 131795770645384338 0x73ab0000 32768 C:\Windows\SysWOW64\rasadhlp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Remote Access AutoDial Helper 131795770645384338 0x73ac0000 81920 C:\Windows\SysWOW64\dhcpcsvc.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служба DHCP-клиента 131795770645384338 0x73ae0000 40960 C:\Windows\SysWOW64\Secur32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Security Support Provider Interface 131795770645384338 0x73ee0000 61440 C:\Windows\SysWOW64\WTSAPI32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Remote Desktop Session Host Server SDK APIs 131795770645384338 0x73f00000 192512 C:\Windows\SysWOW64\IPHLPAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API вспомогательного приложения IP 131795770645384338 0x73f30000 512000 C:\Windows\SysWOW64\DNSAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Динамическая библиотека API DNS-клиента 131795770645384338 0x73ff0000 319488 C:\Windows\SysWOW64\mswsock.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширение поставщика службы API Microsoft Windows Sockets 2.0 131795770645384338 0x74040000 126976 C:\Windows\SysWOW64\gpapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиентские функции API групповой политики 131795770645384338 0x74060000 192512 C:\Windows\SysWOW64\rsaenh.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Enhanced Cryptographic Provider 131795770645384338 0x74110000 479232 C:\Windows\SysWOW64\uxtheme.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека тем UxTheme (Microsoft) 131795770645384338 0x74190000 110592 C:\Windows\SysWOW64\bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795770645384338 0x741b0000 77824 C:\Windows\SysWOW64\CRYPTSP.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Cryptographic Service Provider API 131795770645384338 0x741f0000 143360 C:\Windows\SysWOW64\WINMMBASE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base Multimedia Extension API DLL 131795770645384338 0x74230000 147456 C:\Windows\SysWOW64\WINMM.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation MCI API DLL 131795770645384338 0x744d0000 2138112 C:\Windows\WinSxS\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.14393.953_none_89c2555adb023171\COMCTL32.dll 6.10 (rs1_release_inmarket.170303-1614) Microsoft Corporation Библиотека элементов управления взаимодействия с пользователем 131795770645384338 0x746e0000 32768 C:\Windows\SysWOW64\VERSION.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Version Checking and File Installation Libraries 131795770645384338 0x746f0000 106496 C:\Windows\SysWOW64\USERENV.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Userenv 131795770645384338 0x747d0000 40960 C:\Windows\SysWOW64\CRYPTBASE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base cryptographic API DLL 131795770645384338 0x747e0000 126976 C:\Windows\SysWOW64\SspiCli.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Security Support Provider Interface 131795770645384338 0x74800000 151552 C:\Windows\SysWOW64\IMM32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Multi-User Windows IMM32 API Client DLL 131795770645384338 0x74910000 2170880 C:\Windows\SysWOW64\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795770645384338 0x74b30000 53248 C:\Windows\SysWOW64\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795770645384338 0x74b60000 790528 C:\Windows\SysWOW64\RPCRT4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795770645384338 0x74c30000 1417216 C:\Windows\SysWOW64\gdi32full.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation GDI Client DLL 131795770645384338 0x74d90000 24576 C:\Windows\SysWOW64\PSAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Process Status Helper 131795770645384338 0x74da0000 778240 C:\Windows\SysWOW64\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795770645384338 0x74e60000 557056 C:\Windows\SysWOW64\shcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795770645384338 0x74ef0000 540672 C:\Windows\SysWOW64\clbcatq.dll 2001.12.10941.16384 (rs1_release.160715-1616) Microsoft Corporation COM+ Configuration Catalog 131795770645384338 0x74f80000 278528 C:\Windows\SysWOW64\WINTRUST.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation Microsoft Trust Verification APIs 131795770645384338 0x74fd0000 405504 C:\Windows\SysWOW64\WS2_32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation 32-разрядная библиотека Windows Socket 2.0 131795770645384338 0x75040000 282624 C:\Windows\SysWOW64\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795770645384338 0x75090000 1265664 C:\Windows\SysWOW64\MSCTF.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Серверная библиотека MSCTF 131795770645384338 0x751d0000 57344 C:\Windows\SysWOW64\MSASN1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ASN.1 Runtime APIs 131795770645384338 0x751e0000 1708032 C:\Windows\SysWOW64\KERNELBASE.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645384338 0x75390000 266240 C:\Windows\SysWOW64\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795770645384338 0x753e0000 1560576 C:\Windows\SysWOW64\CRYPT32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API32 криптографии 131795770645384338 0x75560000 487424 C:\Windows\SysWOW64\advapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795770645384338 0x756c0000 5693440 C:\Windows\SysWOW64\windows.storage.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API хранения Microsoft WinRT 131795770645384338 0x75c90000 286720 C:\Windows\SysWOW64\SHLWAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека небольших программ оболочки 131795770645384338 0x75ce0000 20811776 C:\Windows\SysWOW64\SHELL32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Общая библиотека оболочки Windows 131795770645384338 0x770c0000 4239360 C:\Windows\SysWOW64\SETUPAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Setup API 131795770645384338 0x774d0000 86016 C:\Windows\SysWOW64\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795770645384338 0x774f0000 61440 C:\Windows\SysWOW64\profapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Profile Basic API 131795770645384338 0x77560000 1437696 C:\Windows\SysWOW64\USER32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795770645384338 0x776c0000 368640 C:\Windows\SysWOW64\bcryptPrimitives.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation Windows Cryptographic Primitives Library 131795770645384338 0x77780000 503808 C:\Windows\SysWOW64\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645384338 0x77800000 606208 C:\Windows\SysWOW64\OLEAUT32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795770645384338 0x77ac0000 966656 C:\Windows\SysWOW64\ole32.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft OLE для Windows 131795770645384338 0x77bb0000 176128 C:\Windows\SysWOW64\GDI32.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation GDI Client DLL 131795770645384338 0x77be0000 937984 C:\Windows\SysWOW64\COMDLG32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека общих диалоговых окон 131795770645384338 0x77cd0000 221184 C:\Windows\SysWOW64\cfgmgr32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Configuration Manager DLL 131795770645384338 0x77d10000 28672 C:\Windows\SysWOW64\NSI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation NSI User-mode interface DLL 131795770645384338 0x77d20000 1585152 C:\Windows\SysWOW64\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 131795770645384338 0x7ffad0270000 1908736 C:\Windows\SYSTEM32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 73 11216 11172 72 00000000:0031f1da 131794957800622174 0 1 0 Обязательная метка\Средний обязательный уровень WIN-0UOTFKKVN1S\User CEPHtmlEngine.exe C:\Program Files\Adobe\Adobe Photoshop CC 2017\Required\CEP\CEPHtmlEngine\CEPHtmlEngine.exe "C:\Program Files\Adobe\Adobe Photoshop CC 2017\Required\CEP\CEPHtmlEngine\CEPHtmlEngine.exe" --type=renderer --no-sandbox --enable-deferred-image-decoding --lang=en-US --lang=ru --log-file="C:\Users\User\AppData\Local\Temp\CEPHtmlEngine7-PHXS-18.0.1-com.adobe.preview.loader.log" --log-severity=error --params_ppid=PHXS --params_ppversion=18.0.1 --params_extensionid=com.adobe.preview.loader --params_loglevel=1 --params_serverid=8940 --params_extensionuuid=2ec98b7b-08f4-4716-915a-e20a700b24cb --params_windowid=70742 --params_commandline=WyItLWVuYWJsZS1ub2RlanMiXQ== --enable-pinch --device-scale-factor=1 --font-cache-shared-mem-suffix=11172 --enable-pinch-virtual-viewport --enable-delegated-renderer --num-raster-threads=1 --disable-accelerated-video-decode --disable-webrtc-hw-encoding --disable-gpu-compositing --channel="11172.0.296388529\1274093304" /prefetch:673131151 Adobe Systems Incorporated 7.0.0 Adobe CEP HTML Engine 131795770645384488 0x240000 4014080 C:\Program Files\Adobe\Adobe Photoshop CC 2017\Required\CEP\CEPHtmlEngine\CEPHtmlEngine.exe 7.0.0 Adobe Systems Incorporated Adobe CEP HTML Engine 131795770645384488 0x5c020000 335872 C:\Windows\System32\wow64.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation Win32 Emulation on NT64 131795770645384488 0x5c080000 487424 C:\Windows\System32\wow64win.dll 10.0.14393.1884 (rs1_release.171101-1233) Microsoft Corporation Wow64 Console and Win32 API Logging 131795770645384488 0x5c100000 40960 C:\Windows\System32\wow64cpu.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation AMD64 Wow64 CPU 131795770645384488 0x5d110000 44531712 C:\Program Files\Adobe\Adobe Photoshop CC 2017\Required\CEP\CEPHtmlEngine\libcef.dll 3.2272.67.g479a5bd Chromium Embedded Framework (CEF) Dynamic Link Library 131795770645384488 0x6d990000 3055616 C:\Program Files\Adobe\Adobe Photoshop CC 2017\Required\CEP\CEPHtmlEngine\ffmpegsumo.dll 41.0.2272.104 The Chromium Authors Chromium 131795770645384488 0x6e210000 81920 C:\Windows\SysWOW64\VCRUNTIME140.dll 14.10.24516.0 built by: VCTOOLSRELESC Microsoft Corporation Microsoft® C Runtime Library 131795770645384488 0x6e230000 446464 C:\Windows\SysWOW64\MSVCP140.dll 14.10.24516.0 built by: VCTOOLSRELESC Microsoft Corporation Microsoft® C Runtime Library 131795770645384488 0x700d0000 434176 C:\Windows\SysWOW64\WINSPOOL.DRV 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Драйвер диспетчера очереди Windows 131795770645384488 0x703d0000 2056192 C:\Windows\SysWOW64\dwrite.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Службы Microsoft DirectX Typography 131795770645384488 0x705e0000 344064 C:\Windows\SysWOW64\OLEACC.dll 7.2.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Active Accessibility Core Component 131795770645384488 0x70a20000 94208 C:\Windows\SysWOW64\USP10.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Uniscribe Unicode script processor 131795770645384488 0x70a40000 81920 C:\Windows\SysWOW64\NLAapi.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Network Location Awareness 2 131795770645384488 0x70a60000 90112 C:\Windows\SysWOW64\pnrpnsp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик пространства имен PNRP 131795770645384488 0x70c00000 49152 C:\Windows\SysWOW64\winrnr.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation LDAP RnR Provider DLL 131795770645384488 0x70c10000 73728 C:\Windows\SysWOW64\napinsp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик оболочки совместимости для имен электронной почты 131795770645384488 0x71610000 77824 C:\Windows\SysWOW64\dhcpcsvc6.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиент DHCPv6 131795770645384488 0x725e0000 2273280 C:\Windows\SysWOW64\iertutil.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служебная программа времени выполнения для Internet Explorer 131795770645384488 0x72af0000 655360 C:\Windows\SysWOW64\WINHTTP.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Службы HTTP Windows 131795770645384488 0x72cc0000 1658880 C:\Windows\SysWOW64\urlmon.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширения OLE32 для Win32 131795770645384488 0x73ac0000 81920 C:\Windows\SysWOW64\dhcpcsvc.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служба DHCP-клиента 131795770645384488 0x73ae0000 40960 C:\Windows\SysWOW64\Secur32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Security Support Provider Interface 131795770645384488 0x73ee0000 61440 C:\Windows\SysWOW64\WTSAPI32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Remote Desktop Session Host Server SDK APIs 131795770645384488 0x73f00000 192512 C:\Windows\SysWOW64\IPHLPAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API вспомогательного приложения IP 131795770645384488 0x73f30000 512000 C:\Windows\SysWOW64\DNSAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Динамическая библиотека API DNS-клиента 131795770645384488 0x73ff0000 319488 C:\Windows\SysWOW64\mswsock.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширение поставщика службы API Microsoft Windows Sockets 2.0 131795770645384488 0x74060000 192512 C:\Windows\SysWOW64\rsaenh.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Enhanced Cryptographic Provider 131795770645384488 0x74110000 479232 C:\Windows\SysWOW64\uxtheme.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека тем UxTheme (Microsoft) 131795770645384488 0x74190000 110592 C:\Windows\SysWOW64\bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795770645384488 0x741b0000 77824 C:\Windows\SysWOW64\CRYPTSP.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Cryptographic Service Provider API 131795770645384488 0x741f0000 143360 C:\Windows\SysWOW64\WINMMBASE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base Multimedia Extension API DLL 131795770645384488 0x74230000 147456 C:\Windows\SysWOW64\WINMM.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation MCI API DLL 131795770645384488 0x744d0000 2138112 C:\Windows\WinSxS\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.14393.953_none_89c2555adb023171\COMCTL32.dll 6.10 (rs1_release_inmarket.170303-1614) Microsoft Corporation Библиотека элементов управления взаимодействия с пользователем 131795770645384488 0x746e0000 32768 C:\Windows\SysWOW64\VERSION.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Version Checking and File Installation Libraries 131795770645384488 0x746f0000 106496 C:\Windows\SysWOW64\USERENV.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Userenv 131795770645384488 0x747d0000 40960 C:\Windows\SysWOW64\CRYPTBASE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base cryptographic API DLL 131795770645384488 0x747e0000 126976 C:\Windows\SysWOW64\SspiCli.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Security Support Provider Interface 131795770645384488 0x74800000 151552 C:\Windows\SysWOW64\IMM32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Multi-User Windows IMM32 API Client DLL 131795770645384488 0x74910000 2170880 C:\Windows\SysWOW64\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795770645384488 0x74b30000 53248 C:\Windows\SysWOW64\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795770645384488 0x74b60000 790528 C:\Windows\SysWOW64\RPCRT4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795770645384488 0x74c30000 1417216 C:\Windows\SysWOW64\gdi32full.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation GDI Client DLL 131795770645384488 0x74d90000 24576 C:\Windows\SysWOW64\PSAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Process Status Helper 131795770645384488 0x74da0000 778240 C:\Windows\SysWOW64\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795770645384488 0x74e60000 557056 C:\Windows\SysWOW64\shcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795770645384488 0x74fd0000 405504 C:\Windows\SysWOW64\WS2_32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation 32-разрядная библиотека Windows Socket 2.0 131795770645384488 0x75040000 282624 C:\Windows\SysWOW64\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795770645384488 0x751d0000 57344 C:\Windows\SysWOW64\MSASN1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ASN.1 Runtime APIs 131795770645384488 0x751e0000 1708032 C:\Windows\SysWOW64\KERNELBASE.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645384488 0x75390000 266240 C:\Windows\SysWOW64\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795770645384488 0x753e0000 1560576 C:\Windows\SysWOW64\CRYPT32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API32 криптографии 131795770645384488 0x75560000 487424 C:\Windows\SysWOW64\advapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795770645384488 0x756c0000 5693440 C:\Windows\SysWOW64\windows.storage.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API хранения Microsoft WinRT 131795770645384488 0x75c90000 286720 C:\Windows\SysWOW64\SHLWAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека небольших программ оболочки 131795770645384488 0x75ce0000 20811776 C:\Windows\SysWOW64\SHELL32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Общая библиотека оболочки Windows 131795770645384488 0x774d0000 86016 C:\Windows\SysWOW64\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795770645384488 0x774f0000 61440 C:\Windows\SysWOW64\profapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Profile Basic API 131795770645384488 0x77560000 1437696 C:\Windows\SysWOW64\USER32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795770645384488 0x776c0000 368640 C:\Windows\SysWOW64\bcryptPrimitives.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation Windows Cryptographic Primitives Library 131795770645384488 0x77780000 503808 C:\Windows\SysWOW64\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645384488 0x77800000 606208 C:\Windows\SysWOW64\OLEAUT32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795770645384488 0x77ac0000 966656 C:\Windows\SysWOW64\ole32.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft OLE для Windows 131795770645384488 0x77bb0000 176128 C:\Windows\SysWOW64\GDI32.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation GDI Client DLL 131795770645384488 0x77be0000 937984 C:\Windows\SysWOW64\COMDLG32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека общих диалоговых окон 131795770645384488 0x77cd0000 221184 C:\Windows\SysWOW64\cfgmgr32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Configuration Manager DLL 131795770645384488 0x77d10000 28672 C:\Windows\SysWOW64\NSI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation NSI User-mode interface DLL 131795770645384488 0x77d20000 1585152 C:\Windows\SysWOW64\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 131795770645384488 0x7ffad0270000 1908736 C:\Windows\SYSTEM32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 74 10844 8940 68 00000000:0031f1da 131794958201141405 0 1 0 Обязательная метка\Средний обязательный уровень WIN-0UOTFKKVN1S\User CEPHtmlEngine.exe C:\Program Files\Adobe\Adobe Photoshop CC 2017\Required\CEP\CEPHtmlEngine\CEPHtmlEngine.exe "C:\Program Files\Adobe\Adobe Photoshop CC 2017\Required\CEP\CEPHtmlEngine\CEPHtmlEngine.exe" "C:\Program Files\Adobe\Adobe Photoshop CC 2017\Required\CEP\extensions\com.adobe.experimentation.extension\index.html" e44c0384-b65f-4f05-a36a-c6092cb32d00 8940 PHXS 18.0.1 com.adobe.experimentation.extension 1 "C:\Program Files\Adobe\Adobe Photoshop CC 2017\Required\CEP\extensions\com.adobe.experimentation.extension" "Photoshop" 16 WyItLWVuYWJsZS1ub2RlanMiXQ== ru_RU 4293980400 1 Adobe Systems Incorporated 7.0.0 Adobe CEP HTML Engine 131795770645384610 0x240000 4014080 C:\Program Files\Adobe\Adobe Photoshop CC 2017\Required\CEP\CEPHtmlEngine\CEPHtmlEngine.exe 7.0.0 Adobe Systems Incorporated Adobe CEP HTML Engine 131795770645384610 0x5c020000 335872 C:\Windows\System32\wow64.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation Win32 Emulation on NT64 131795770645384610 0x5c080000 487424 C:\Windows\System32\wow64win.dll 10.0.14393.1884 (rs1_release.171101-1233) Microsoft Corporation Wow64 Console and Win32 API Logging 131795770645384610 0x5c100000 40960 C:\Windows\System32\wow64cpu.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation AMD64 Wow64 CPU 131795770645384610 0x5d110000 44531712 C:\Program Files\Adobe\Adobe Photoshop CC 2017\Required\CEP\CEPHtmlEngine\libcef.dll 3.2272.67.g479a5bd Chromium Embedded Framework (CEF) Dynamic Link Library 131795770645384610 0x60750000 1556480 C:\Program Files (x86)\360\Total Security\safemon\safemon.dll 8, 4, 0, 1420 Qihu 360 Software Co., Ltd. 360 Internet Security Internet Protection 131795770645384610 0x6c290000 987136 C:\Windows\SysWOW64\twinapi.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation twinapi.appcore 131795770645384610 0x6c390000 1126400 C:\Windows\SysWOW64\dcomp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft DirectComposition Library 131795770645384610 0x6c4b0000 278528 C:\Windows\SysWOW64\dataexchange.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation Data exchange 131795770645384610 0x6d0b0000 847872 C:\Windows\SysWOW64\wintypes.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL основных типов Windows 131795770645384610 0x6e210000 81920 C:\Windows\SysWOW64\VCRUNTIME140.dll 14.10.24516.0 built by: VCTOOLSRELESC Microsoft Corporation Microsoft® C Runtime Library 131795770645384610 0x6e230000 446464 C:\Windows\SysWOW64\MSVCP140.dll 14.10.24516.0 built by: VCTOOLSRELESC Microsoft Corporation Microsoft® C Runtime Library 131795770645384610 0x6fd30000 139264 C:\Windows\SysWOW64\DEVOBJ.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Device Information Set DLL 131795770645384610 0x6fd60000 360448 C:\Windows\SysWOW64\MMDevAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation MMDevice API 131795770645384610 0x6fdc0000 507904 C:\Windows\SysWOW64\audioses.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Сеанс обработки звука 131795770645384610 0x700d0000 434176 C:\Windows\SysWOW64\WINSPOOL.DRV 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Драйвер диспетчера очереди Windows 131795770645384610 0x70140000 274432 C:\Windows\SysWOW64\WINSTA.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Winstation Library 131795770645384610 0x70340000 536576 C:\Windows\SysWOW64\dxgi.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation DirectX Graphics Infrastructure 131795770645384610 0x703d0000 2056192 C:\Windows\SysWOW64\dwrite.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Службы Microsoft DirectX Typography 131795770645384610 0x705e0000 344064 C:\Windows\SysWOW64\OLEACC.dll 7.2.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Active Accessibility Core Component 131795770645384610 0x70a20000 94208 C:\Windows\SysWOW64\USP10.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Uniscribe Unicode script processor 131795770645384610 0x70a40000 81920 C:\Windows\SysWOW64\NLAapi.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Network Location Awareness 2 131795770645384610 0x70ca0000 45056 C:\Windows\SysWOW64\NETUTILS.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API Helpers DLL 131795770645384610 0x70cb0000 65536 C:\Windows\SysWOW64\WKSCLI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Workstation Service Client DLL 131795770645384610 0x71140000 77824 C:\Windows\SysWOW64\NETAPI32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API DLL 131795770645384610 0x71610000 77824 C:\Windows\SysWOW64\dhcpcsvc6.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиент DHCPv6 131795770645384610 0x725e0000 2273280 C:\Windows\SysWOW64\iertutil.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служебная программа времени выполнения для Internet Explorer 131795770645384610 0x728e0000 1372160 C:\Windows\SysWOW64\PROPSYS.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Система страниц свойств (Майкрософт) 131795770645384610 0x72b90000 126976 C:\Windows\SysWOW64\dwmapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Интерфейс API диспетчера окон рабочего стола (Майкрософт) 131795770645384610 0x72cc0000 1658880 C:\Windows\SysWOW64\urlmon.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширения OLE32 для Win32 131795770645384610 0x73ab0000 32768 C:\Windows\SysWOW64\rasadhlp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Remote Access AutoDial Helper 131795770645384610 0x73ac0000 81920 C:\Windows\SysWOW64\dhcpcsvc.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служба DHCP-клиента 131795770645384610 0x73ae0000 40960 C:\Windows\SysWOW64\Secur32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Security Support Provider Interface 131795770645384610 0x73ee0000 61440 C:\Windows\SysWOW64\WTSAPI32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Remote Desktop Session Host Server SDK APIs 131795770645384610 0x73f00000 192512 C:\Windows\SysWOW64\IPHLPAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API вспомогательного приложения IP 131795770645384610 0x73f30000 512000 C:\Windows\SysWOW64\DNSAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Динамическая библиотека API DNS-клиента 131795770645384610 0x73ff0000 319488 C:\Windows\SysWOW64\mswsock.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширение поставщика службы API Microsoft Windows Sockets 2.0 131795770645384610 0x74040000 126976 C:\Windows\SysWOW64\gpapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиентские функции API групповой политики 131795770645384610 0x74060000 192512 C:\Windows\SysWOW64\rsaenh.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Enhanced Cryptographic Provider 131795770645384610 0x74110000 479232 C:\Windows\SysWOW64\uxtheme.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека тем UxTheme (Microsoft) 131795770645384610 0x74190000 110592 C:\Windows\SysWOW64\bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795770645384610 0x741b0000 77824 C:\Windows\SysWOW64\CRYPTSP.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Cryptographic Service Provider API 131795770645384610 0x741f0000 143360 C:\Windows\SysWOW64\WINMMBASE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base Multimedia Extension API DLL 131795770645384610 0x74230000 147456 C:\Windows\SysWOW64\WINMM.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation MCI API DLL 131795770645384610 0x744d0000 2138112 C:\Windows\WinSxS\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.14393.953_none_89c2555adb023171\COMCTL32.dll 6.10 (rs1_release_inmarket.170303-1614) Microsoft Corporation Библиотека элементов управления взаимодействия с пользователем 131795770645384610 0x746e0000 32768 C:\Windows\SysWOW64\VERSION.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Version Checking and File Installation Libraries 131795770645384610 0x746f0000 106496 C:\Windows\SysWOW64\USERENV.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Userenv 131795770645384610 0x747d0000 40960 C:\Windows\SysWOW64\CRYPTBASE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base cryptographic API DLL 131795770645384610 0x747e0000 126976 C:\Windows\SysWOW64\SspiCli.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Security Support Provider Interface 131795770645384610 0x74800000 151552 C:\Windows\SysWOW64\IMM32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Multi-User Windows IMM32 API Client DLL 131795770645384610 0x74910000 2170880 C:\Windows\SysWOW64\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795770645384610 0x74b30000 53248 C:\Windows\SysWOW64\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795770645384610 0x74b60000 790528 C:\Windows\SysWOW64\RPCRT4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795770645384610 0x74c30000 1417216 C:\Windows\SysWOW64\gdi32full.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation GDI Client DLL 131795770645384610 0x74d90000 24576 C:\Windows\SysWOW64\PSAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Process Status Helper 131795770645384610 0x74da0000 778240 C:\Windows\SysWOW64\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795770645384610 0x74e60000 557056 C:\Windows\SysWOW64\shcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795770645384610 0x74ef0000 540672 C:\Windows\SysWOW64\clbcatq.dll 2001.12.10941.16384 (rs1_release.160715-1616) Microsoft Corporation COM+ Configuration Catalog 131795770645384610 0x74f80000 278528 C:\Windows\SysWOW64\WINTRUST.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation Microsoft Trust Verification APIs 131795770645384610 0x74fd0000 405504 C:\Windows\SysWOW64\WS2_32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation 32-разрядная библиотека Windows Socket 2.0 131795770645384610 0x75040000 282624 C:\Windows\SysWOW64\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795770645384610 0x75090000 1265664 C:\Windows\SysWOW64\MSCTF.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Серверная библиотека MSCTF 131795770645384610 0x751d0000 57344 C:\Windows\SysWOW64\MSASN1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ASN.1 Runtime APIs 131795770645384610 0x751e0000 1708032 C:\Windows\SysWOW64\KERNELBASE.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645384610 0x75390000 266240 C:\Windows\SysWOW64\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795770645384610 0x753e0000 1560576 C:\Windows\SysWOW64\CRYPT32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API32 криптографии 131795770645384610 0x75560000 487424 C:\Windows\SysWOW64\advapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795770645384610 0x756c0000 5693440 C:\Windows\SysWOW64\windows.storage.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API хранения Microsoft WinRT 131795770645384610 0x75c90000 286720 C:\Windows\SysWOW64\SHLWAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека небольших программ оболочки 131795770645384610 0x75ce0000 20811776 C:\Windows\SysWOW64\SHELL32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Общая библиотека оболочки Windows 131795770645384610 0x770c0000 4239360 C:\Windows\SysWOW64\SETUPAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Setup API 131795770645384610 0x774d0000 86016 C:\Windows\SysWOW64\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795770645384610 0x774f0000 61440 C:\Windows\SysWOW64\profapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Profile Basic API 131795770645384610 0x77560000 1437696 C:\Windows\SysWOW64\USER32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795770645384610 0x776c0000 368640 C:\Windows\SysWOW64\bcryptPrimitives.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation Windows Cryptographic Primitives Library 131795770645384610 0x77780000 503808 C:\Windows\SysWOW64\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645384610 0x77800000 606208 C:\Windows\SysWOW64\OLEAUT32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795770645384610 0x77ac0000 966656 C:\Windows\SysWOW64\ole32.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft OLE для Windows 131795770645384610 0x77bb0000 176128 C:\Windows\SysWOW64\GDI32.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation GDI Client DLL 131795770645384610 0x77be0000 937984 C:\Windows\SysWOW64\COMDLG32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека общих диалоговых окон 131795770645384610 0x77cd0000 221184 C:\Windows\SysWOW64\cfgmgr32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Configuration Manager DLL 131795770645384610 0x77d10000 28672 C:\Windows\SysWOW64\NSI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation NSI User-mode interface DLL 131795770645384610 0x77d20000 1585152 C:\Windows\SysWOW64\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 131795770645384610 0x7ffad0270000 1908736 C:\Windows\SYSTEM32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 75 9092 10844 74 00000000:0031f1da 131794958208470288 0 1 0 Обязательная метка\Средний обязательный уровень WIN-0UOTFKKVN1S\User CEPHtmlEngine.exe C:\Program Files\Adobe\Adobe Photoshop CC 2017\Required\CEP\CEPHtmlEngine\CEPHtmlEngine.exe "C:\Program Files\Adobe\Adobe Photoshop CC 2017\Required\CEP\CEPHtmlEngine\CEPHtmlEngine.exe" --type=renderer --no-sandbox --enable-deferred-image-decoding --lang=en-US --lang=ru --log-file="C:\Users\User\AppData\Local\Temp\CEPHtmlEngine7-PHXS-18.0.1-com.adobe.experimentation.extension.log" --log-severity=error --params_ppid=PHXS --params_ppversion=18.0.1 --params_extensionid=com.adobe.experimentation.extension --params_loglevel=1 --params_serverid=8940 --params_extensionuuid=e44c0384-b65f-4f05-a36a-c6092cb32d00 --params_windowid=198892 --params_commandline=WyItLWVuYWJsZS1ub2RlanMiXQ== --enable-pinch --device-scale-factor=1 --font-cache-shared-mem-suffix=10844 --enable-pinch-virtual-viewport --enable-delegated-renderer --num-raster-threads=1 --disable-accelerated-video-decode --disable-webrtc-hw-encoding --disable-gpu-compositing --channel="10844.0.379179099\270765323" /prefetch:673131151 Adobe Systems Incorporated 7.0.0 Adobe CEP HTML Engine 131795770645384720 0x240000 4014080 C:\Program Files\Adobe\Adobe Photoshop CC 2017\Required\CEP\CEPHtmlEngine\CEPHtmlEngine.exe 7.0.0 Adobe Systems Incorporated Adobe CEP HTML Engine 131795770645384720 0x5c020000 335872 C:\Windows\System32\wow64.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation Win32 Emulation on NT64 131795770645384720 0x5c080000 487424 C:\Windows\System32\wow64win.dll 10.0.14393.1884 (rs1_release.171101-1233) Microsoft Corporation Wow64 Console and Win32 API Logging 131795770645384720 0x5c100000 40960 C:\Windows\System32\wow64cpu.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation AMD64 Wow64 CPU 131795770645384720 0x5d110000 44531712 C:\Program Files\Adobe\Adobe Photoshop CC 2017\Required\CEP\CEPHtmlEngine\libcef.dll 3.2272.67.g479a5bd Chromium Embedded Framework (CEF) Dynamic Link Library 131795770645384720 0x6d990000 3055616 C:\Program Files\Adobe\Adobe Photoshop CC 2017\Required\CEP\CEPHtmlEngine\ffmpegsumo.dll 41.0.2272.104 The Chromium Authors Chromium 131795770645384720 0x6e210000 81920 C:\Windows\SysWOW64\VCRUNTIME140.dll 14.10.24516.0 built by: VCTOOLSRELESC Microsoft Corporation Microsoft® C Runtime Library 131795770645384720 0x6e230000 446464 C:\Windows\SysWOW64\MSVCP140.dll 14.10.24516.0 built by: VCTOOLSRELESC Microsoft Corporation Microsoft® C Runtime Library 131795770645384720 0x700d0000 434176 C:\Windows\SysWOW64\WINSPOOL.DRV 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Драйвер диспетчера очереди Windows 131795770645384720 0x703d0000 2056192 C:\Windows\SysWOW64\dwrite.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Службы Microsoft DirectX Typography 131795770645384720 0x705e0000 344064 C:\Windows\SysWOW64\OLEACC.dll 7.2.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Active Accessibility Core Component 131795770645384720 0x70a20000 94208 C:\Windows\SysWOW64\USP10.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Uniscribe Unicode script processor 131795770645384720 0x70a40000 81920 C:\Windows\SysWOW64\NLAapi.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Network Location Awareness 2 131795770645384720 0x70a60000 90112 C:\Windows\SysWOW64\pnrpnsp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик пространства имен PNRP 131795770645384720 0x70c00000 49152 C:\Windows\SysWOW64\winrnr.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation LDAP RnR Provider DLL 131795770645384720 0x70c10000 73728 C:\Windows\SysWOW64\napinsp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик оболочки совместимости для имен электронной почты 131795770645384720 0x71610000 77824 C:\Windows\SysWOW64\dhcpcsvc6.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиент DHCPv6 131795770645384720 0x725e0000 2273280 C:\Windows\SysWOW64\iertutil.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служебная программа времени выполнения для Internet Explorer 131795770645384720 0x72af0000 655360 C:\Windows\SysWOW64\WINHTTP.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Службы HTTP Windows 131795770645384720 0x72cc0000 1658880 C:\Windows\SysWOW64\urlmon.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширения OLE32 для Win32 131795770645384720 0x73ac0000 81920 C:\Windows\SysWOW64\dhcpcsvc.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служба DHCP-клиента 131795770645384720 0x73ae0000 40960 C:\Windows\SysWOW64\Secur32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Security Support Provider Interface 131795770645384720 0x73ee0000 61440 C:\Windows\SysWOW64\WTSAPI32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Remote Desktop Session Host Server SDK APIs 131795770645384720 0x73f00000 192512 C:\Windows\SysWOW64\IPHLPAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API вспомогательного приложения IP 131795770645384720 0x73f30000 512000 C:\Windows\SysWOW64\DNSAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Динамическая библиотека API DNS-клиента 131795770645384720 0x73ff0000 319488 C:\Windows\SysWOW64\mswsock.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширение поставщика службы API Microsoft Windows Sockets 2.0 131795770645384720 0x74060000 192512 C:\Windows\SysWOW64\rsaenh.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Enhanced Cryptographic Provider 131795770645384720 0x74110000 479232 C:\Windows\SysWOW64\uxtheme.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека тем UxTheme (Microsoft) 131795770645384720 0x74190000 110592 C:\Windows\SysWOW64\bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795770645384720 0x741b0000 77824 C:\Windows\SysWOW64\CRYPTSP.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Cryptographic Service Provider API 131795770645384720 0x741f0000 143360 C:\Windows\SysWOW64\WINMMBASE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base Multimedia Extension API DLL 131795770645384720 0x74230000 147456 C:\Windows\SysWOW64\WINMM.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation MCI API DLL 131795770645384720 0x744d0000 2138112 C:\Windows\WinSxS\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.14393.953_none_89c2555adb023171\COMCTL32.dll 6.10 (rs1_release_inmarket.170303-1614) Microsoft Corporation Библиотека элементов управления взаимодействия с пользователем 131795770645384720 0x746e0000 32768 C:\Windows\SysWOW64\VERSION.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Version Checking and File Installation Libraries 131795770645384720 0x746f0000 106496 C:\Windows\SysWOW64\USERENV.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Userenv 131795770645384720 0x747d0000 40960 C:\Windows\SysWOW64\CRYPTBASE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base cryptographic API DLL 131795770645384720 0x747e0000 126976 C:\Windows\SysWOW64\SspiCli.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Security Support Provider Interface 131795770645384720 0x74800000 151552 C:\Windows\SysWOW64\IMM32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Multi-User Windows IMM32 API Client DLL 131795770645384720 0x74910000 2170880 C:\Windows\SysWOW64\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795770645384720 0x74b30000 53248 C:\Windows\SysWOW64\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795770645384720 0x74b60000 790528 C:\Windows\SysWOW64\RPCRT4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795770645384720 0x74c30000 1417216 C:\Windows\SysWOW64\gdi32full.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation GDI Client DLL 131795770645384720 0x74d90000 24576 C:\Windows\SysWOW64\PSAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Process Status Helper 131795770645384720 0x74da0000 778240 C:\Windows\SysWOW64\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795770645384720 0x74e60000 557056 C:\Windows\SysWOW64\shcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795770645384720 0x74fd0000 405504 C:\Windows\SysWOW64\WS2_32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation 32-разрядная библиотека Windows Socket 2.0 131795770645384720 0x75040000 282624 C:\Windows\SysWOW64\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795770645384720 0x751d0000 57344 C:\Windows\SysWOW64\MSASN1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ASN.1 Runtime APIs 131795770645384720 0x751e0000 1708032 C:\Windows\SysWOW64\KERNELBASE.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645384720 0x75390000 266240 C:\Windows\SysWOW64\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795770645384720 0x753e0000 1560576 C:\Windows\SysWOW64\CRYPT32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API32 криптографии 131795770645384720 0x75560000 487424 C:\Windows\SysWOW64\advapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795770645384720 0x756c0000 5693440 C:\Windows\SysWOW64\windows.storage.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API хранения Microsoft WinRT 131795770645384720 0x75c90000 286720 C:\Windows\SysWOW64\SHLWAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека небольших программ оболочки 131795770645384720 0x75ce0000 20811776 C:\Windows\SysWOW64\SHELL32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Общая библиотека оболочки Windows 131795770645384720 0x774d0000 86016 C:\Windows\SysWOW64\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795770645384720 0x774f0000 61440 C:\Windows\SysWOW64\profapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Profile Basic API 131795770645384720 0x77560000 1437696 C:\Windows\SysWOW64\USER32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795770645384720 0x776c0000 368640 C:\Windows\SysWOW64\bcryptPrimitives.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation Windows Cryptographic Primitives Library 131795770645384720 0x77780000 503808 C:\Windows\SysWOW64\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645384720 0x77800000 606208 C:\Windows\SysWOW64\OLEAUT32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795770645384720 0x77ac0000 966656 C:\Windows\SysWOW64\ole32.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft OLE для Windows 131795770645384720 0x77bb0000 176128 C:\Windows\SysWOW64\GDI32.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation GDI Client DLL 131795770645384720 0x77be0000 937984 C:\Windows\SysWOW64\COMDLG32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека общих диалоговых окон 131795770645384720 0x77cd0000 221184 C:\Windows\SysWOW64\cfgmgr32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Configuration Manager DLL 131795770645384720 0x77d10000 28672 C:\Windows\SysWOW64\NSI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation NSI User-mode interface DLL 131795770645384720 0x77d20000 1585152 C:\Windows\SysWOW64\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 131795770645384720 0x7ffad0270000 1908736 C:\Windows\SYSTEM32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 76 11496 664 6 00000000:0031f1da 131794958406617238 0 0 1 Обязательная метка\Низкий обязательный уровень WIN-0UOTFKKVN1S\User SearchUI.exe C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\SearchUI.exe "C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\SearchUI.exe" -ServerName:CortanaUI.AppXa50dqqa5gqv4a428c9y1jjw7m3btvepj.mca Microsoft Corporation 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Search and Cortana application 131795770645385613 0x7ff79c3c0000 10706944 C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\SearchUI.exe 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Search and Cortana application 131795770645385613 0x7ffab2c00000 8179712 C:\Windows\SYSTEM32\chakra.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft ® Chakra (Private) 131795770645385613 0x7ffab33d0000 258048 C:\Windows\SYSTEM32\MLANG.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL многоязыковой поддержки 131795770645385613 0x7ffab3540000 22740992 C:\Windows\SYSTEM32\edgehtml.dll 11.00.14393.447 (rs1_release_inmarket.161102-0100) Microsoft Corporation Веб-платформа Microsoft Edge 131795770645385613 0x7ffab4b90000 655360 C:\Windows\System32\StructuredQuery.dll 7.0.14393.2068 (rs1_release.180209-1727) Microsoft Corporation Structured Query 131795770645385613 0x7ffab4c70000 4874240 C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\RemindersUI.dll 131795770645385613 0x7ffab52c0000 2445312 C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.BackgroundTask.dll 131795770645385613 0x7ffab5520000 3231744 C:\Windows\SYSTEM32\msftedit.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Элемент управления "Поле ввода форматированного текста", версия 8.5 131795770645385613 0x7ffab5840000 3108864 C:\Windows\System32\Speech_OneCore\Common\sapi_onecore.dll 5.3.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Speech API 131795770645385613 0x7ffab5b40000 2527232 C:\Windows\SYSTEM32\dwrite.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Службы Microsoft DirectX Typography 131795770645385613 0x7ffab5db0000 9781248 C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\CortanaApi.dll 131795770645385613 0x7ffab6710000 17231872 C:\Windows\System32\Windows.UI.Xaml.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows.UI.Xaml dll 131795770645385613 0x7ffab7a00000 3424256 C:\Windows\system32\tquery.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Запросы Microsoft Tripoli 131795770645385613 0x7ffab9c00000 1343488 C:\Windows\System32\Windows.Web.Http.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL Windows.Web.Http 131795770645385613 0x7ffab9d50000 1429504 C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Core.dll 131795770645385613 0x7ffabaab0000 94208 C:\Windows\SYSTEM32\profext.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation profext 131795770645385613 0x7ffabae40000 110592 C:\Windows\SYSTEM32\capauthz.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API авторизации возможностей 131795770645385613 0x7ffabaf70000 270336 C:\Windows\SYSTEM32\edputil.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служебная программа EDP 131795770645385613 0x7ffabb200000 294912 C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\CortanaApi.ProxyStub.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation "CortanaApi.ProxyStub.DYNLINK" 131795770645385613 0x7ffabb3c0000 450560 C:\Windows\SYSTEM32\TextInputFramework.dll 10.0.14393.2189 (rs1_release.180329-1711) Microsoft Corporation "TextInputFramework.DYNLINK" 131795770645385613 0x7ffabb490000 512000 C:\Windows\System32\twinapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation twinapi 131795770645385613 0x7ffabbd10000 65536 C:\Windows\SYSTEM32\tokenbinding.dll 10.0.14393.1593 (rs1_release.170731-1934) Microsoft Corporation Token Binding Protocol 131795770645385613 0x7ffabd4a0000 1613824 C:\Windows\System32\Windows.Globalization.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Globalization 131795770645385613 0x7ffabe4d0000 286720 C:\Windows\System32\MSWB7.dll 10.0.14393.1737 (rs1_release_inmarket.170914-1249) Microsoft Corporation MSWB7 DLL 131795770645385613 0x7ffabe6e0000 561152 C:\Windows\system32\directmanipulation.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Direct Manipulation Component 131795770645385613 0x7ffabe770000 774144 C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\CSGSuggestLib.dll 131795770645385613 0x7ffabe9c0000 188416 C:\Windows\SYSTEM32\globinputhost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Globalization Extension API for Input 131795770645385613 0x7ffabea90000 135168 C:\Windows\System32\Windows.ApplicationModel.Background.SystemEventsBroker.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Background System Events Broker API Server 131795770645385613 0x7ffabeac0000 335872 C:\Windows\System32\Windows.Storage.ApplicationData.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Application Data API Server 131795770645385613 0x7ffabeb20000 385024 C:\Windows\System32\Windows.ApplicationModel.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows ApplicationModel API Server 131795770645385613 0x7ffabefa0000 192512 C:\Windows\system32\Cortana.Persona.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Cortana.Persona 131795770645385613 0x7ffabf5d0000 2924544 C:\Windows\SYSTEM32\WININET.dll 11.00.14393.447 (rs1_release_inmarket.161102-0100) Microsoft Corporation Расширения Интернета для Win32 131795770645385613 0x7ffabf8a0000 122880 C:\Windows\System32\Windows.Cortana.ProxyStub.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows.Cortana.ProxyStub 131795770645385613 0x7ffabfce0000 90112 C:\Windows\System32\Windows.Globalization.Fontgroups.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Fonts Mapping API 131795770645385613 0x7ffabfd00000 356352 C:\Windows\System32\Windows.Graphics.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation WinRT Windows Graphics DLL 131795770645385613 0x7ffabfd80000 86016 C:\Windows\System32\threadpoolwinrt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows WinRT Threadpool 131795770645385613 0x7ffabfe10000 237568 C:\Windows\SYSTEM32\rometadata.dll 4.6.1586.0 built by: NETFXREL2 Microsoft Corporation Microsoft MetaData Library 131795770645385613 0x7ffac00c0000 282624 C:\Windows\SYSTEM32\windows.ui.core.textinput.dll 10.0.14393.2189 (rs1_release.180329-1711) Microsoft Corporation Windows.UI.Core.TextInput dll 131795770645385613 0x7ffac01e0000 397312 C:\Windows\SYSTEM32\wincorlib.DLL 10.0.14393.576 (rs1_release_inmarket.161208-2252) Microsoft Corporation Microsoft Windows ® WinRT core library 131795770645385613 0x7ffac0bf0000 3559424 C:\Windows\System32\ActXPrxy.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation ActiveX Interface Marshaling Library 131795770645385613 0x7ffac10b0000 217088 C:\Windows\system32\PersonaX.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation PersonaX 131795770645385613 0x7ffac1c40000 94208 C:\Windows\System32\SystemSettings.DataModel.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SystemSettings.Datamodel private API 131795770645385613 0x7ffac20d0000 110592 C:\Windows\System32\rmclient.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Resource Manager Client 131795770645385613 0x7ffac23c0000 331776 C:\Windows\System32\OneCoreCommonProxyStub.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation OneCore Common Proxy Stub 131795770645385613 0x7ffac2990000 385024 C:\Windows\SYSTEM32\NInput.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Pen and Touch Input Component 131795770645385613 0x7ffac2c30000 135168 C:\Windows\SYSTEM32\clipc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиент платформы лицензирования клиента 131795770645385613 0x7ffac2d80000 5140480 C:\Windows\SYSTEM32\cdp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API клиента Microsoft (R) CDP 131795770645385613 0x7ffac34e0000 1843200 C:\Windows\SYSTEM32\urlmon.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширения OLE32 для Win32 131795770645385613 0x7ffac3810000 167936 C:\Windows\SYSTEM32\Cabinet.dll 5.00 (rs1_release.160715-1616) Microsoft Corporation Microsoft® Cabinet File API 131795770645385613 0x7ffac3b80000 286720 C:\Windows\system32\indexeddbserver.dll 10.0.14393.2189 (rs1_release.180329-1711) Microsoft Corporation IndexedDb host 131795770645385613 0x7ffac3bf0000 94208 C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\ActionMgr.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Cortana Action Manager 131795770645385613 0x7ffac3cb0000 2772992 C:\Windows\SYSTEM32\iertutil.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служебная программа времени выполнения для Internet Explorer 131795770645385613 0x7ffac4000000 274432 C:\Windows\SYSTEM32\policymanager.dll 10.0.14393.2035 (rs1_release_inmarket.180110-1910) Microsoft Corporation Policy Manager DLL 131795770645385613 0x7ffac5070000 798720 C:\Windows\System32\Windows.Web.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL веб-клиента 131795770645385613 0x7ffac5350000 1765376 C:\Windows\System32\Windows.UI.Immersive.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation WINDOWS.UI.IMMERSIVE 131795770645385613 0x7ffac5ce0000 1744896 C:\Windows\SYSTEM32\UIAutomationCore.DLL 7.2.14393.0 (rs1_release.160715-1616) Microsoft Corporation Основные автоматические компоненты Microsoft UI 131795770645385613 0x7ffac60e0000 221184 C:\Windows\SYSTEM32\XmlLite.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft XmlLite Library 131795770645385613 0x7ffac6610000 40960 C:\Windows\System32\rasadhlp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Remote Access AutoDial Helper 131795770645385613 0x7ffac6620000 192512 C:\Windows\System32\biwinrt.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation Windows Background Broker Infrastructure 131795770645385613 0x7ffac66a0000 86016 C:\Windows\SYSTEM32\ondemandconnroutehelper.dll 10.0.14393.351 (rs1_release_inmarket.161014-1755) Microsoft Corporation On Demand Connctiond Route Helper 131795770645385613 0x7ffac69c0000 839680 C:\Windows\SYSTEM32\WINHTTP.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Службы HTTP Windows 131795770645385613 0x7ffac6ac0000 835584 C:\Windows\System32\Windows.UI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Runtime UI Foundation DLL 131795770645385613 0x7ffac6bb0000 118784 C:\Windows\system32\windows.cortana.pal.desktop.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows.Cortana.PAL.Desktop 131795770645385613 0x7ffac6bd0000 413696 C:\Windows\SYSTEM32\OLEACC.dll 7.2.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Active Accessibility Core Component 131795770645385613 0x7ffac6ed0000 155648 C:\Windows\SYSTEM32\srpapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL программных интерфейсов (API) поставщика общих ресурсов 131795770645385613 0x7ffac6f50000 5632000 C:\Windows\SYSTEM32\d2d1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека Microsoft D2D 131795770645385613 0x7ffac7580000 1077248 C:\Windows\System32\MrmCoreR.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Windows MRM 131795770645385613 0x7ffac7720000 1601536 C:\Windows\System32\OneCoreUAPCommonProxyStub.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation OneCoreUAP Common Proxy Stub 131795770645385613 0x7ffac78b0000 65536 C:\Windows\system32\msimtf.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Active IMM Server DLL 131795770645385613 0x7ffac7c50000 118784 C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\BingConfigurationClient.dll 10.0.14393.82 (rs1_release.160805-1735) Microsoft Corporation Bing Configuration Client DLL 131795770645385613 0x7ffac7d80000 49152 C:\Windows\System32\Windows.ApplicationModel.Background.TimeBroker.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Background Time Broker API Server 131795770645385613 0x7ffac7e30000 40960 C:\Windows\SYSTEM32\fontgroupsoverride.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation fontgroupsoverride.dll 131795770645385613 0x7ffac7fc0000 2674688 C:\Windows\SYSTEM32\d3d10warp.dll 10.0.14393.576 (rs1_release_inmarket.161208-2252) Microsoft Corporation Direct3D 10 Rasterizer 131795770645385613 0x7ffac83d0000 106496 C:\Windows\SYSTEM32\dhcpcsvc.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служба DHCP-клиента 131795770645385613 0x7ffac83f0000 90112 C:\Windows\SYSTEM32\dhcpcsvc6.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиент DHCPv6 131795770645385613 0x7ffac84f0000 299008 C:\Windows\system32\DataExchange.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation Data exchange 131795770645385613 0x7ffac8810000 45056 C:\Windows\SYSTEM32\WINNSI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Network Store Information RPC interface 131795770645385613 0x7ffac88a0000 2842624 C:\Windows\SYSTEM32\d3d11.dll 10.0.14393.953 (rs1_release_inmarket.170303-1614) Microsoft Corporation Direct3D 11 Runtime 131795770645385613 0x7ffac8fa0000 253952 C:\Windows\SYSTEM32\logoncli.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Net Logon Client DLL 131795770645385613 0x7ffac92e0000 1269760 C:\Windows\System32\WinTypes.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL основных типов Windows 131795770645385613 0x7ffac9480000 462848 C:\Windows\SYSTEM32\MMDevAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation MMDevice API 131795770645385613 0x7ffac9500000 2682880 C:\Windows\system32\CoreUIComponents.dll 131795770645385613 0x7ffac9f50000 1736704 C:\Windows\system32\windowscodecs.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Microsoft Windows Codecs Library 131795770645385613 0x7ffaca260000 45056 C:\Windows\SYSTEM32\SystemEventsBrokerClient.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation system Events Broker Client Library 131795770645385613 0x7ffaca340000 1593344 C:\Windows\SYSTEM32\PROPSYS.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Система страниц свойств (Майкрософт) 131795770645385613 0x7ffaca570000 421888 C:\Windows\SYSTEM32\Bcp47Langs.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation BCP47 Language Classes 131795770645385613 0x7ffaca5e0000 155648 C:\Windows\SYSTEM32\dwmapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Интерфейс API диспетчера окон рабочего стола (Майкрософт) 131795770645385613 0x7ffaca640000 770048 C:\Windows\SYSTEM32\CoreMessaging.dll 10.0.14393.0 Microsoft Corporation Microsoft CoreMessaging Dll 131795770645385613 0x7ffaca770000 1380352 C:\Windows\SYSTEM32\dcomp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft DirectComposition Library 131795770645385613 0x7ffacab40000 176128 C:\Windows\SYSTEM32\winmmbase.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base Multimedia Extension API DLL 131795770645385613 0x7ffacadf0000 499712 C:\Windows\system32\apphelp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиентская библиотека совместимости приложений 131795770645385613 0x7ffacaf00000 610304 C:\Windows\system32\uxtheme.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека тем UxTheme (Microsoft) 131795770645385613 0x7ffacb140000 593920 C:\Windows\SYSTEM32\msvcp110_win.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Microsoft® STL110 C++ Runtime Library 131795770645385613 0x7ffacb1e0000 1163264 C:\Windows\System32\twinapi.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation twinapi.appcore 131795770645385613 0x7ffacb300000 364544 C:\Windows\SYSTEM32\VEEventDispatcher.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Visual Element Event dispatcher 131795770645385613 0x7ffacb3f0000 163840 C:\Windows\SYSTEM32\DEVOBJ.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Device Information Set DLL 131795770645385613 0x7ffacb420000 204800 C:\Windows\SYSTEM32\ntmarta.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик Windows NT MARTA 131795770645385613 0x7ffacb780000 651264 C:\Windows\SYSTEM32\dxgi.dll 10.0.14393.953 (rs1_release_inmarket.170303-1614) Microsoft Corporation DirectX Graphics Infrastructure 131795770645385613 0x7ffacbd30000 229376 C:\Windows\SYSTEM32\IPHLPAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API вспомогательного приложения IP 131795770645385613 0x7ffacbd70000 659456 C:\Windows\SYSTEM32\DNSAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Динамическая библиотека API DNS-клиента 131795770645385613 0x7ffacbe40000 126976 C:\Windows\SYSTEM32\userenv.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Userenv 131795770645385613 0x7ffacbfb0000 376832 C:\Windows\system32\mswsock.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширение поставщика службы API Microsoft Windows Sockets 2.0 131795770645385613 0x7ffacc150000 94208 C:\Windows\SYSTEM32\cryptsp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Cryptographic Service Provider API 131795770645385613 0x7ffacc170000 45056 C:\Windows\SYSTEM32\CRYPTBASE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base cryptographic API DLL 131795770645385613 0x7ffacc1f0000 241664 C:\Windows\SYSTEM32\NTASN1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft ASN.1 API 131795770645385613 0x7ffacc230000 155648 C:\Windows\SYSTEM32\ncrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Маршрутизатор Windows NCrypt 131795770645385613 0x7ffacc350000 180224 C:\Windows\SYSTEM32\SspiCli.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Security Support Provider Interface 131795770645385613 0x7ffacc620000 176128 C:\Windows\SYSTEM32\bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795770645385613 0x7ffacc6e0000 61440 C:\Windows\System32\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795770645385613 0x7ffacc6f0000 311296 C:\Windows\System32\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795770645385613 0x7ffacc740000 81920 C:\Windows\System32\profapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Profile Basic API 131795770645385613 0x7ffacc760000 65536 C:\Windows\System32\MSASN1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ASN.1 Runtime APIs 131795770645385613 0x7ffacc8f0000 1003520 C:\Windows\System32\ucrtbase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645385613 0x7ffacc9f0000 434176 C:\Windows\System32\bcryptPrimitives.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Cryptographic Primitives Library 131795770645385613 0x7ffacca60000 122880 C:\Windows\System32\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795770645385613 0x7ffaccae0000 692224 C:\Windows\System32\shcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795770645385613 0x7ffaccb90000 7180288 C:\Windows\System32\windows.storage.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API хранения Microsoft WinRT 131795770645385613 0x7ffacd270000 2215936 C:\Windows\System32\KERNELBASE.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645385613 0x7ffacd490000 1871872 C:\Windows\System32\CRYPT32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API32 криптографии 131795770645385613 0x7ffacd710000 638976 C:\Windows\System32\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645385613 0x7ffacd7b0000 270336 C:\Windows\System32\cfgmgr32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Configuration Manager DLL 131795770645385613 0x7ffacd810000 22056960 C:\Windows\System32\shell32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Общая библиотека оболочки Windows 131795770645385613 0x7ffaced20000 782336 C:\Windows\System32\OLEAUT32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795770645385613 0x7ffacee50000 1183744 C:\Windows\System32\RPCRT4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795770645385613 0x7ffacef80000 32768 C:\Windows\System32\NSI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation NSI User-mode interface DLL 131795770645385613 0x7ffacef90000 647168 C:\Windows\System32\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795770645385613 0x7ffacf0d0000 704512 C:\Windows\System32\KERNEL32.DLL 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645385613 0x7ffacf1e0000 1417216 C:\Windows\System32\msctf.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Серверная библиотека MSCTF 131795770645385613 0x7ffacf770000 212992 C:\Windows\System32\GDI32.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation GDI Client DLL 131795770645385613 0x7ffacf820000 434176 C:\Windows\System32\WS2_32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation 32-разрядная библиотека Windows Socket 2.0 131795770645385613 0x7ffacf890000 188416 C:\Windows\System32\IMM32.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Multi-User Windows IMM32 API Client DLL 131795770645385613 0x7ffacf8c0000 1462272 C:\Windows\System32\user32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795770645385613 0x7ffacfb30000 2916352 C:\Windows\System32\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795770645385613 0x7ffacfe20000 663552 C:\Windows\System32\advapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795770645385613 0x7ffad0070000 1277952 C:\Windows\System32\ole32.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft OLE для Windows 131795770645385613 0x7ffad01b0000 335872 C:\Windows\System32\shlwapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека небольших программ оболочки 131795770645385613 0x7ffad0210000 364544 C:\Windows\System32\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795770645385613 0x7ffad0270000 1908736 C:\Windows\SYSTEM32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 77 11408 8940 68 00000000:0031f1da 131794962679173110 0 0 1 Обязательная метка\Средний обязательный уровень WIN-0UOTFKKVN1S\User node.exe C:\Program Files\Adobe\Adobe Photoshop CC 2017\node.exe "C:\Program Files\Adobe\Adobe Photoshop CC 2017\node.exe" "C:\Program Files\Adobe\Adobe Photoshop CC 2017\Required\Generator-builtin" --launchreason menu --menu crema-dummy-menu --photoshopVersion 18.0.1 -i \\.\pipe\36b615a8-a6c5-11e8-b291-8ffa7e69373b_i -o \\.\pipe\36b615a8-a6c5-11e8-b291-8ffa7e69373b_o -f "C:\Program Files\Adobe\Adobe Photoshop CC 2017\Required\Plug-Ins\Generator" -f "C:\Program Files\Common Files\Adobe\Plug-Ins\CC\Generator" Node.js 4.3.1 Node.js: Server-side JavaScript 131795770645385734 0x7ff6cbb20000 14237696 C:\Program Files\Adobe\Adobe Photoshop CC 2017\node.exe 4.3.1 Node.js Node.js: Server-side JavaScript 131795770645385734 0x7ffabfd60000 90112 C:\Windows\system32\napinsp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик оболочки совместимости для имен электронной почты 131795770645385734 0x7ffabfef0000 106496 C:\Windows\system32\pnrpnsp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик пространства имен PNRP 131795770645385734 0x7ffac0ab0000 57344 C:\Windows\System32\winrnr.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation LDAP RnR Provider DLL 131795770645385734 0x7ffac83d0000 106496 C:\Windows\SYSTEM32\dhcpcsvc.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служба DHCP-клиента 131795770645385734 0x7ffac83f0000 90112 C:\Windows\SYSTEM32\dhcpcsvc6.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиент DHCPv6 131795770645385734 0x7ffac9790000 98304 C:\Windows\system32\NLAapi.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Network Location Awareness 2 131795770645385734 0x7ffacab40000 176128 C:\Windows\SYSTEM32\WINMMBASE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base Multimedia Extension API DLL 131795770645385734 0x7ffacaba0000 143360 C:\Windows\SYSTEM32\WINMM.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation MCI API DLL 131795770645385734 0x7ffacadf0000 499712 C:\Windows\system32\apphelp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиентская библиотека совместимости приложений 131795770645385734 0x7ffacbbb0000 208896 C:\Windows\system32\rsaenh.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Enhanced Cryptographic Provider 131795770645385734 0x7ffacbd30000 229376 C:\Windows\SYSTEM32\IPHLPAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API вспомогательного приложения IP 131795770645385734 0x7ffacbd70000 659456 C:\Windows\SYSTEM32\DNSAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Динамическая библиотека API DNS-клиента 131795770645385734 0x7ffacbe40000 126976 C:\Windows\SYSTEM32\USERENV.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Userenv 131795770645385734 0x7ffacbfb0000 376832 C:\Windows\system32\mswsock.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширение поставщика службы API Microsoft Windows Sockets 2.0 131795770645385734 0x7ffacc150000 94208 C:\Windows\SYSTEM32\CRYPTSP.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Cryptographic Service Provider API 131795770645385734 0x7ffacc170000 45056 C:\Windows\SYSTEM32\CRYPTBASE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base cryptographic API DLL 131795770645385734 0x7ffacc620000 176128 C:\Windows\SYSTEM32\bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795770645385734 0x7ffacc740000 81920 C:\Windows\System32\profapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Profile Basic API 131795770645385734 0x7ffacc8f0000 1003520 C:\Windows\System32\ucrtbase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645385734 0x7ffacc9f0000 434176 C:\Windows\System32\bcryptPrimitives.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Cryptographic Primitives Library 131795770645385734 0x7ffacca60000 122880 C:\Windows\System32\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795770645385734 0x7ffacd270000 2215936 C:\Windows\System32\KERNELBASE.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645385734 0x7ffacd7b0000 270336 C:\Windows\System32\cfgmgr32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Configuration Manager DLL 131795770645385734 0x7ffacd800000 32768 C:\Windows\System32\PSAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Process Status Helper 131795770645385734 0x7ffacee50000 1183744 C:\Windows\System32\RPCRT4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795770645385734 0x7ffacef80000 32768 C:\Windows\System32\NSI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation NSI User-mode interface DLL 131795770645385734 0x7ffacef90000 647168 C:\Windows\System32\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795770645385734 0x7ffacf0d0000 704512 C:\Windows\System32\KERNEL32.DLL 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645385734 0x7ffacf770000 212992 C:\Windows\System32\GDI32.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation GDI Client DLL 131795770645385734 0x7ffacf820000 434176 C:\Windows\System32\WS2_32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation 32-разрядная библиотека Windows Socket 2.0 131795770645385734 0x7ffacf890000 188416 C:\Windows\System32\IMM32.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Multi-User Windows IMM32 API Client DLL 131795770645385734 0x7ffacf8c0000 1462272 C:\Windows\System32\USER32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795770645385734 0x7ffacfe20000 663552 C:\Windows\System32\ADVAPI32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795770645385734 0x7ffad0210000 364544 C:\Windows\System32\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795770645385734 0x7ffad0270000 1908736 C:\Windows\SYSTEM32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 78 12164 11408 77 00000000:0031f1da 131794962697229215 0 0 1 Обязательная метка\Средний обязательный уровень WIN-0UOTFKKVN1S\User conhost.exe C:\Windows\system32\conhost.exe \??\C:\Windows\system32\conhost.exe 0x4 Microsoft Corporation 10.0.14393.0 (rs1_release.160715-1616) Console Window Host 131795770645385831 0x7ff768b40000 69632 C:\Windows\system32\conhost.exe 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Console Window Host 131795770645385831 0x7ffabe520000 368640 C:\Windows\SYSTEM32\ConhostV2.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Хост окна консоли 131795770645385831 0x7ffac6c40000 2596864 C:\Windows\WinSxS\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.14393.953_none_42151e83c686086b\comctl32.DLL 6.10 (rs1_release_inmarket.170303-1614) Microsoft Corporation Библиотека элементов управления взаимодействия с пользователем 131795770645385831 0x7ffaca340000 1593344 C:\Windows\SYSTEM32\PROPSYS.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Система страниц свойств (Майкрософт) 131795770645385831 0x7ffaca5e0000 155648 C:\Windows\system32\dwmapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Интерфейс API диспетчера окон рабочего стола (Майкрософт) 131795770645385831 0x7ffacaf00000 610304 C:\Windows\system32\uxtheme.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека тем UxTheme (Microsoft) 131795770645385831 0x7ffacc6e0000 61440 C:\Windows\System32\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795770645385831 0x7ffacc6f0000 311296 C:\Windows\System32\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795770645385831 0x7ffacc740000 81920 C:\Windows\System32\profapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Profile Basic API 131795770645385831 0x7ffacc8f0000 1003520 C:\Windows\System32\ucrtbase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645385831 0x7ffacc9f0000 434176 C:\Windows\System32\bcryptPrimitives.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Cryptographic Primitives Library 131795770645385831 0x7ffacca60000 122880 C:\Windows\System32\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795770645385831 0x7ffaccae0000 692224 C:\Windows\System32\shcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795770645385831 0x7ffaccb90000 7180288 C:\Windows\System32\windows.storage.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API хранения Microsoft WinRT 131795770645385831 0x7ffacd270000 2215936 C:\Windows\System32\KERNELBASE.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645385831 0x7ffacd710000 638976 C:\Windows\System32\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645385831 0x7ffacd7b0000 270336 C:\Windows\System32\cfgmgr32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Configuration Manager DLL 131795770645385831 0x7ffacd810000 22056960 C:\Windows\System32\SHELL32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Общая библиотека оболочки Windows 131795770645385831 0x7ffaced20000 782336 C:\Windows\System32\OLEAUT32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795770645385831 0x7ffacee50000 1183744 C:\Windows\System32\RPCRT4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795770645385831 0x7ffacef90000 647168 C:\Windows\System32\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795770645385831 0x7ffacf0d0000 704512 C:\Windows\System32\KERNEL32.DLL 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645385831 0x7ffacf1e0000 1417216 C:\Windows\System32\MSCTF.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Серверная библиотека MSCTF 131795770645385831 0x7ffacf770000 212992 C:\Windows\System32\GDI32.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation GDI Client DLL 131795770645385831 0x7ffacf890000 188416 C:\Windows\System32\IMM32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Multi-User Windows IMM32 API Client DLL 131795770645385831 0x7ffacf8c0000 1462272 C:\Windows\System32\USER32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795770645385831 0x7ffacfb30000 2916352 C:\Windows\System32\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795770645385831 0x7ffacfe20000 663552 C:\Windows\System32\advapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795770645385831 0x7ffad01b0000 335872 C:\Windows\System32\shlwapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека небольших программ оболочки 131795770645385831 0x7ffad0210000 364544 C:\Windows\System32\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795770645385831 0x7ffad0270000 1908736 C:\Windows\SYSTEM32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 79 5612 904 22 00000000:000003e5 131794965205293998 0 0 1 Обязательная метка\Обязательный уровень системы NT AUTHORITY\LOCAL SERVICE dashost.exe C:\Windows\system32\dashost.exe dashost.exe {609e1ffd-7b4d-4dbc-a36f725917d81f2d} Microsoft Corporation 10.0.14393.82 (rs1_release.160805-1735) Device Association Framework Provider Host 131795770645385987 0x7ff6559c0000 110592 C:\Windows\system32\dashost.exe 10.0.14393.82 (rs1_release.160805-1735) Microsoft Corporation Device Association Framework Provider Host 131795770645385987 0x7ffabb1a0000 274432 C:\Windows\system32\DAFWSD.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DAF WSD Provider 131795770645385987 0x7ffabc970000 188416 C:\Windows\system32\dafupnp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DAF UPnP Provider 131795770645385987 0x7ffac1d60000 589824 C:\Windows\system32\webio.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API протоколов передачи по Веб 131795770645385987 0x7ffac3f60000 225280 C:\Windows\system32\FWPolicyIOMgr.dll 10.0.14393.2189 (rs1_release.180329-1711) Microsoft Corporation FwPolicyIoMgr DLL 131795770645385987 0x7ffac60e0000 221184 C:\Windows\system32\XmlLite.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft XmlLite Library 131795770645385987 0x7ffac66c0000 32768 C:\Windows\system32\wship6.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL помощника Winsock2 (TL/IPv6) 131795770645385987 0x7ffac66d0000 32768 C:\Windows\system32\wshtcpip.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL помощника службы Winsock2 (TL/IPv4) 131795770645385987 0x7ffac6700000 40960 C:\Windows\system32\wshqos.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL помощника службы QoS Winsock2 131795770645385987 0x7ffac6750000 1380352 C:\Windows\system32\webservices.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Среда выполнения веб-служб Windows 131795770645385987 0x7ffac68b0000 696320 C:\Windows\system32\wsdapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Веб-службы для библиотек DLL API-интерфейсов устройств 131795770645385987 0x7ffac6990000 69632 C:\Windows\system32\deviceassociation.dll 10.0.14393.82 (rs1_release.160805-1735) Microsoft Corporation Device Association Client DLL 131795770645385987 0x7ffac69c0000 839680 C:\Windows\system32\WINHTTP.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Службы HTTP Windows 131795770645385987 0x7ffac79c0000 57344 C:\Windows\System32\npmproxy.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Network List Manager Proxy 131795770645385987 0x7ffac7e50000 86016 C:\Windows\system32\SSDPAPI.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation SSDP Client API DLL 131795770645385987 0x7ffac83d0000 106496 C:\Windows\SYSTEM32\dhcpcsvc.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служба DHCP-клиента 131795770645385987 0x7ffac83f0000 90112 C:\Windows\SYSTEM32\dhcpcsvc6.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиент DHCPv6 131795770645385987 0x7ffac8810000 45056 C:\Windows\SYSTEM32\WINNSI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Network Store Information RPC interface 131795770645385987 0x7ffac9f10000 221184 C:\Windows\System32\netprofm.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Network List Manager 131795770645385987 0x7ffacb360000 176128 C:\Windows\system32\fwbase.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Firewall Base DLL 131795770645385987 0x7ffacb460000 548864 C:\Windows\system32\FirewallAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API брандмауэра Windows 131795770645385987 0x7ffacbbb0000 208896 C:\Windows\system32\rsaenh.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Enhanced Cryptographic Provider 131795770645385987 0x7ffacbd30000 229376 C:\Windows\system32\IPHLPAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API вспомогательного приложения IP 131795770645385987 0x7ffacbd70000 659456 C:\Windows\system32\DNSAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Динамическая библиотека API DNS-клиента 131795770645385987 0x7ffacbfb0000 376832 C:\Windows\system32\mswsock.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширение поставщика службы API Microsoft Windows Sockets 2.0 131795770645385987 0x7ffacc150000 94208 C:\Windows\system32\CRYPTSP.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Cryptographic Service Provider API 131795770645385987 0x7ffacc170000 45056 C:\Windows\system32\CRYPTBASE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base cryptographic API DLL 131795770645385987 0x7ffacc350000 180224 C:\Windows\system32\SspiCli.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Security Support Provider Interface 131795770645385987 0x7ffacc620000 176128 C:\Windows\system32\bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795770645385987 0x7ffacc6e0000 61440 C:\Windows\System32\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795770645385987 0x7ffacc6f0000 311296 C:\Windows\System32\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795770645385987 0x7ffacc760000 65536 C:\Windows\System32\MSASN1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ASN.1 Runtime APIs 131795770645385987 0x7ffacc8f0000 1003520 C:\Windows\System32\ucrtbase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645385987 0x7ffacc9f0000 434176 C:\Windows\System32\bcryptPrimitives.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Cryptographic Primitives Library 131795770645385987 0x7ffacca60000 122880 C:\Windows\System32\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795770645385987 0x7ffacd270000 2215936 C:\Windows\System32\KERNELBASE.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645385987 0x7ffacd490000 1871872 C:\Windows\System32\CRYPT32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API32 криптографии 131795770645385987 0x7ffacd710000 638976 C:\Windows\System32\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645385987 0x7ffacd7b0000 270336 C:\Windows\System32\cfgmgr32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Configuration Manager DLL 131795770645385987 0x7ffaced20000 782336 C:\Windows\System32\OLEAUT32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795770645385987 0x7ffacee50000 1183744 C:\Windows\System32\RPCRT4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795770645385987 0x7ffacef80000 32768 C:\Windows\System32\NSI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation NSI User-mode interface DLL 131795770645385987 0x7ffacef90000 647168 C:\Windows\System32\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795770645385987 0x7ffacf030000 651264 C:\Windows\System32\clbcatq.dll 2001.12.10941.16384 (rs1_release.160715-1616) Microsoft Corporation COM+ Configuration Catalog 131795770645385987 0x7ffacf0d0000 704512 C:\Windows\System32\KERNEL32.DLL 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645385987 0x7ffacf770000 212992 C:\Windows\System32\GDI32.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation GDI Client DLL 131795770645385987 0x7ffacf820000 434176 C:\Windows\System32\WS2_32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation 32-разрядная библиотека Windows Socket 2.0 131795770645385987 0x7ffacf8c0000 1462272 C:\Windows\System32\user32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795770645385987 0x7ffacfb30000 2916352 C:\Windows\System32\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795770645385987 0x7ffad0210000 364544 C:\Windows\System32\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795770645385987 0x7ffad0270000 1908736 C:\Windows\SYSTEM32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 80 9720 9180 81 00000000:0031f1ab 131794969418818027 0 0 0 Обязательная метка\Высокий обязательный уровень WIN-0UOTFKKVN1S\User Windows10UpgraderApp.exe C:\Windows10Upgrade\Windows10UpgraderApp.exe "C:\Windows10Upgrade\Windows10UpgraderApp.exe" /Install /ClientID Win10Upgrade:VNL:NHV18:{} /SkipEULA /PostEosUi Microsoft Corporation 1.4.9200.22452 Помощник по обновлению Windows 10 131795770645386103 0xb30000 1875968 C:\Windows10Upgrade\Windows10UpgraderApp.exe 1.4.9200.22452 Microsoft Corporation Помощник по обновлению Windows 10 131795770645386103 0x5c020000 335872 C:\Windows\System32\wow64.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation Win32 Emulation on NT64 131795770645386103 0x5c080000 487424 C:\Windows\System32\wow64win.dll 10.0.14393.1884 (rs1_release.171101-1233) Microsoft Corporation Wow64 Console and Win32 API Logging 131795770645386103 0x5c100000 40960 C:\Windows\System32\wow64cpu.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation AMD64 Wow64 CPU 131795770645386103 0x5fec0000 794624 C:\Windows\SysWOW64\wbem\fastprox.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation WMI Custom Marshaller 131795770645386103 0x5ffa0000 421888 C:\Windows\SysWOW64\wbemcomn.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation WMI 131795770645386103 0x60010000 53248 C:\Windows\SysWOW64\wbem\wbemprox.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation WMI 131795770645386103 0x60750000 1556480 C:\Program Files (x86)\360\Total Security\safemon\safemon.dll 8, 4, 0, 1420 Qihu 360 Software Co., Ltd. 360 Internet Security Internet Protection 131795770645386103 0x627d0000 249856 C:\Windows\SysWOW64\edputil.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служебная программа EDP 131795770645386103 0x64d00000 5079040 C:\Windows\SysWOW64\d2d1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека Microsoft D2D 131795770645386103 0x651e0000 20537344 C:\Windows\SysWOW64\mshtml.dll 11.00.14393.447 (rs1_release_inmarket.161102-0100) Microsoft Corporation Средство просмотра HTML Microsoft® 131795770645386103 0x66580000 12247040 C:\Windows\SysWOW64\ieframe.dll 11.00.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Браузер 131795770645386103 0x67200000 1978368 C:\Windows\SysWOW64\msxml6.dll 6.30.14393.2156 Microsoft Corporation MSXML 6.0 131795770645386103 0x67500000 1597440 C:\Windows\SysWOW64\ActXPrxy.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation ActiveX Interface Marshaling Library 131795770645386103 0x6b670000 212992 C:\Windows\SysWOW64\mlang.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL многоязыковой поддержки 131795770645386103 0x6c290000 987136 C:\Windows\SysWOW64\twinapi.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation twinapi.appcore 131795770645386103 0x6c390000 1126400 C:\Windows\SysWOW64\dcomp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft DirectComposition Library 131795770645386103 0x6c4b0000 278528 C:\Windows\SysWOW64\dataexchange.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation Data exchange 131795770645386103 0x6c540000 483328 C:\Windows\SysWOW64\webio.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API протоколов передачи по Веб 131795770645386103 0x6c720000 2318336 C:\Windows\SysWOW64\d3d10warp.dll 10.0.14393.576 (rs1_release_inmarket.161208-2252) Microsoft Corporation Direct3D 10 Rasterizer 131795770645386103 0x6c960000 57344 C:\Windows\SysWOW64\msimtf.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Active IMM Server DLL 131795770645386103 0x6c970000 3698688 C:\Windows\SysWOW64\jscript9.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft ® JScript 131795770645386103 0x6cd00000 69632 C:\Windows\SysWOW64\WLDP.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Политика блокировки Windows 131795770645386103 0x6cd20000 135168 C:\Windows\SysWOW64\srpapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL программных интерфейсов (API) поставщика общих ресурсов 131795770645386103 0x6cda0000 528384 C:\Windows\SysWOW64\sxs.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Fusion 2.5 131795770645386103 0x6d080000 151552 C:\Windows\SysWOW64\cryptnet.dll 10.0.14393.2035 (rs1_release_inmarket.180110-1910) Microsoft Corporation Crypto Network Related API 131795770645386103 0x6d0b0000 847872 C:\Windows\SysWOW64\WinTypes.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL основных типов Windows 131795770645386103 0x6d6e0000 634880 C:\Windows\SysWOW64\Windows.UI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Runtime UI Foundation DLL 131795770645386103 0x6d780000 876544 C:\Windows\SysWOW64\mrmcorer.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Windows MRM 131795770645386103 0x6d860000 1245184 C:\Windows\SysWOW64\MFC42u.dll 6.06.8063.0 Microsoft Corporation Общая библиотека MFCDLL - розничная версия 131795770645386103 0x6dcd0000 606208 C:\Windows\WinSxS\x86_microsoft.windows.common-controls_6595b64144ccf1df_5.82.14393.447_none_5507ded2cb4f7f4c\COMCTL32.dll 6.10 (rs1_release_inmarket.170303-1614) Microsoft Corporation Библиотека элементов управления взаимодействия с пользователем 131795770645386103 0x6ded0000 630784 C:\Windows\SysWOW64\ODBC32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ODBC Driver Manager 131795770645386103 0x6dfc0000 53248 C:\Windows\SysWOW64\execmodelproxy.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ExecModelProxy 131795770645386103 0x6dfd0000 253952 C:\Windows\SysWOW64\UIAnimation.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Animation Manager 131795770645386103 0x6e010000 208896 C:\Windows10Upgrade\Downloader.dll 1.4.9200.22452 (win8_ldr.180426-0600) Microsoft Corporation Downloader 131795770645386103 0x6e050000 81920 C:\Windows\SysWOW64\Windows.Shell.ServiceHostBuilder.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows.Shell.ServiceHostBuilder 131795770645386103 0x6e710000 335872 C:\Windows\SysWOW64\Bcp47Langs.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation BCP47 Language Classes 131795770645386103 0x70340000 536576 C:\Windows\SysWOW64\dxgi.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation DirectX Graphics Infrastructure 131795770645386103 0x703d0000 2056192 C:\Windows\SysWOW64\DWrite.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Службы Microsoft DirectX Typography 131795770645386103 0x705e0000 344064 C:\Windows\SysWOW64\OLEACC.DLL 7.2.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Active Accessibility Core Component 131795770645386103 0x70640000 1499136 C:\Windows\SysWOW64\windowscodecs.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Microsoft Windows Codecs Library 131795770645386103 0x707b0000 110592 C:\Windows\SysWOW64\ncryptsslp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft SChannel Provider 131795770645386103 0x707d0000 86016 C:\Windows\SysWOW64\SAMCLI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Security Accounts Manager Client DLL 131795770645386103 0x707f0000 2293760 C:\Windows\SysWOW64\d3d11.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation Direct3D 11 Runtime 131795770645386103 0x70a80000 409600 C:\Windows\SysWOW64\schannel.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик безопасности TLS/SSL 131795770645386103 0x70b40000 69632 C:\Windows\SysWOW64\mskeyprotect.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик защиты ключей (Майкрософт) 131795770645386103 0x70b70000 163840 C:\Windows\SysWOW64\ntmarta.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик Windows NT MARTA 131795770645386103 0x70ca0000 45056 C:\Windows\SysWOW64\NETUTILS.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API Helpers DLL 131795770645386103 0x70cc0000 65536 C:\Windows\SysWOW64\ondemandconnroutehelper.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation On Demand Connctiond Route Helper 131795770645386103 0x70e60000 176128 C:\Windows\SysWOW64\NTASN1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft ASN.1 API 131795770645386103 0x71140000 77824 C:\Windows\SysWOW64\NETAPI32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API DLL 131795770645386103 0x71610000 77824 C:\Windows\SysWOW64\dhcpcsvc6.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиент DHCPv6 131795770645386103 0x725e0000 2273280 C:\Windows\SysWOW64\iertutil.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служебная программа времени выполнения для Internet Explorer 131795770645386103 0x728e0000 1372160 C:\Windows\SysWOW64\PROPSYS.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Система страниц свойств (Майкрософт) 131795770645386103 0x72b90000 126976 C:\Windows\SysWOW64\dwmapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Интерфейс API диспетчера окон рабочего стола (Майкрософт) 131795770645386103 0x72cc0000 1658880 C:\Windows\SysWOW64\urlmon.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширения OLE32 для Win32 131795770645386103 0x73a40000 32768 C:\Windows\SysWOW64\WINNSI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Network Store Information RPC interface 131795770645386103 0x73a50000 299008 C:\Windows\SysWOW64\fwpuclnt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API пользовательского режима FWP/IPsec 131795770645386103 0x73aa0000 32768 C:\Windows\SysWOW64\DPAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Data Protection API 131795770645386103 0x73ab0000 32768 C:\Windows\SysWOW64\rasadhlp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Remote Access AutoDial Helper 131795770645386103 0x73ac0000 81920 C:\Windows\SysWOW64\dhcpcsvc.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служба DHCP-клиента 131795770645386103 0x73ae0000 40960 C:\Windows\SysWOW64\Secur32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Security Support Provider Interface 131795770645386103 0x73f00000 192512 C:\Windows\SysWOW64\IPHLPAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API вспомогательного приложения IP 131795770645386103 0x73f30000 512000 C:\Windows\SysWOW64\DNSAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Динамическая библиотека API DNS-клиента 131795770645386103 0x73ff0000 319488 C:\Windows\SysWOW64\mswsock.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширение поставщика службы API Microsoft Windows Sockets 2.0 131795770645386103 0x74060000 192512 C:\Windows\SysWOW64\rsaenh.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Enhanced Cryptographic Provider 131795770645386103 0x74110000 479232 C:\Windows\SysWOW64\uxtheme.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека тем UxTheme (Microsoft) 131795770645386103 0x74190000 110592 C:\Windows\SysWOW64\bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795770645386103 0x741b0000 77824 C:\Windows\SysWOW64\CRYPTSP.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Cryptographic Service Provider API 131795770645386103 0x74260000 2514944 C:\Windows\SysWOW64\WININET.dll 11.00.14393.447 (rs1_release_inmarket.161102-0100) Microsoft Corporation Расширения Интернета для Win32 131795770645386103 0x744d0000 2138112 C:\Windows\WinSxS\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.14393.953_none_89c2555adb023171\comctl32.dll 6.10 (rs1_release_inmarket.170303-1614) Microsoft Corporation Библиотека элементов управления взаимодействия с пользователем 131795770645386103 0x746e0000 32768 C:\Windows\SysWOW64\VERSION.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Version Checking and File Installation Libraries 131795770645386103 0x746f0000 106496 C:\Windows\SysWOW64\USERENV.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Userenv 131795770645386103 0x74730000 598016 C:\Windows\SysWOW64\apphelp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиентская библиотека совместимости приложений 131795770645386103 0x747d0000 40960 C:\Windows\SysWOW64\CRYPTBASE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base cryptographic API DLL 131795770645386103 0x747e0000 126976 C:\Windows\SysWOW64\SspiCli.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Security Support Provider Interface 131795770645386103 0x74800000 151552 C:\Windows\SysWOW64\IMM32.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Multi-User Windows IMM32 API Client DLL 131795770645386103 0x74910000 2170880 C:\Windows\SysWOW64\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795770645386103 0x74b30000 53248 C:\Windows\SysWOW64\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795770645386103 0x74b60000 790528 C:\Windows\SysWOW64\RPCRT4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795770645386103 0x74c30000 1417216 C:\Windows\SysWOW64\gdi32full.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation GDI Client DLL 131795770645386103 0x74d90000 24576 C:\Windows\SysWOW64\PSAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Process Status Helper 131795770645386103 0x74da0000 778240 C:\Windows\SysWOW64\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795770645386103 0x74e60000 557056 C:\Windows\SysWOW64\shcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795770645386103 0x74ef0000 540672 C:\Windows\SysWOW64\clbcatq.dll 2001.12.10941.16384 (rs1_release.160715-1616) Microsoft Corporation COM+ Configuration Catalog 131795770645386103 0x74f80000 278528 C:\Windows\SysWOW64\WINTRUST.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation Microsoft Trust Verification APIs 131795770645386103 0x74fd0000 405504 C:\Windows\SysWOW64\WS2_32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation 32-разрядная библиотека Windows Socket 2.0 131795770645386103 0x75040000 282624 C:\Windows\SysWOW64\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795770645386103 0x75090000 1265664 C:\Windows\SysWOW64\MSCTF.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Серверная библиотека MSCTF 131795770645386103 0x751d0000 57344 C:\Windows\SysWOW64\MSASN1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ASN.1 Runtime APIs 131795770645386103 0x751e0000 1708032 C:\Windows\SysWOW64\KERNELBASE.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645386103 0x75390000 266240 C:\Windows\SysWOW64\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795770645386103 0x753e0000 1560576 C:\Windows\SysWOW64\CRYPT32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API32 криптографии 131795770645386103 0x75560000 487424 C:\Windows\SysWOW64\ADVAPI32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795770645386103 0x756c0000 5693440 C:\Windows\SysWOW64\windows.storage.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API хранения Microsoft WinRT 131795770645386103 0x75c90000 286720 C:\Windows\SysWOW64\shlwapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека небольших программ оболочки 131795770645386103 0x75ce0000 20811776 C:\Windows\SysWOW64\SHELL32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Общая библиотека оболочки Windows 131795770645386103 0x774d0000 86016 C:\Windows\SysWOW64\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795770645386103 0x774f0000 61440 C:\Windows\SysWOW64\profapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Profile Basic API 131795770645386103 0x77560000 1437696 C:\Windows\SysWOW64\USER32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795770645386103 0x776c0000 368640 C:\Windows\SysWOW64\bcryptPrimitives.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation Windows Cryptographic Primitives Library 131795770645386103 0x77780000 503808 C:\Windows\SysWOW64\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645386103 0x77800000 606208 C:\Windows\SysWOW64\OLEAUT32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795770645386103 0x77ac0000 966656 C:\Windows\SysWOW64\ole32.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft OLE для Windows 131795770645386103 0x77bb0000 176128 C:\Windows\SysWOW64\GDI32.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation GDI Client DLL 131795770645386103 0x77cd0000 221184 C:\Windows\SysWOW64\cfgmgr32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Configuration Manager DLL 131795770645386103 0x77d10000 28672 C:\Windows\SysWOW64\NSI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation NSI User-mode interface DLL 131795770645386103 0x77d20000 1585152 C:\Windows\SysWOW64\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 131795770645386103 0x7ffad0270000 1908736 C:\Windows\SYSTEM32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 82 8944 520 18 00000000:0031f1da 131795005508439638 0 0 1 Обязательная метка\Низкий обязательный уровень WIN-0UOTFKKVN1S\User fontdrvhost.exe C:\Windows\system32\fontdrvhost.exe "fontdrvhost.exe" Microsoft Corporation 10.0.14393.2189 (rs1_release.180329-1711) Usermode Font Driver Host 131795770645386388 0x7ff654db0000 638976 C:\Windows\system32\fontdrvhost.exe 10.0.14393.2189 (rs1_release.180329-1711) Microsoft Corporation Usermode Font Driver Host 131795770645386388 0x7ffacc770000 1572864 C:\Windows\System32\gdi32full.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation GDI Client DLL 131795770645386388 0x7ffacca60000 122880 C:\Windows\System32\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795770645386388 0x7ffacd270000 2215936 C:\Windows\System32\KERNELBASE.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645386388 0x7ffacef90000 647168 C:\Windows\System32\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795770645386388 0x7ffacf0d0000 704512 C:\Windows\System32\KERNEL32.DLL 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645386388 0x7ffacf770000 212992 C:\Windows\System32\gdi32.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation GDI Client DLL 131795770645386388 0x7ffacf890000 188416 C:\Windows\System32\IMM32.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Multi-User Windows IMM32 API Client DLL 131795770645386388 0x7ffacf8c0000 1462272 C:\Windows\System32\USER32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795770645386388 0x7ffad0270000 1908736 C:\Windows\SYSTEM32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 83 6684 664 6 00000000:0031f1da 131795006053748558 0 0 1 Обязательная метка\Низкий обязательный уровень WIN-0UOTFKKVN1S\User Microsoft.Photos.exe C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2017.35063.44410.0_x64__8wekyb3d8bbwe\Microsoft.Photos.exe "C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2017.35063.44410.0_x64__8wekyb3d8bbwe\Microsoft.Photos.exe" -ServerName:App.AppXzst44mncqdg84v7sv6p7yznqwssy6f7f.mca 131795770645660438 0x7ff705e40000 36864 C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2017.35063.44410.0_x64__8wekyb3d8bbwe\Microsoft.Photos.exe 131795770645660438 0x7ffa9bb10000 1380352 C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2017.35063.44410.0_x64__8wekyb3d8bbwe\Microsoft.RichMedia.Ink.Controls.dll 131795770645660438 0x7ffa9bc70000 3158016 C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2017.35063.44410.0_x64__8wekyb3d8bbwe\Microsoft.UI.Xaml.dll 131795770645660438 0x7ffa9bf80000 2994176 C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2017.35063.44410.0_x64__8wekyb3d8bbwe\AppCore.Windows.dll 131795770645660438 0x7ffa9c260000 20144128 C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2017.35063.44410.0_x64__8wekyb3d8bbwe\PhotosApp.Windows.dll 131795770645660438 0x7ffa9d5a0000 29011968 C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2017.35063.44410.0_x64__8wekyb3d8bbwe\Microsoft.Photos.dll 131795770645660438 0x7ffa9f150000 6311936 C:\Windows\System32\Windows.Media.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Media Runtime DLL 131795770645660438 0x7ffa9fb20000 7950336 C:\Program Files\WindowsApps\Microsoft.NET.Native.Framework.1.3_1.3.24201.0_x64__8wekyb3d8bbwe\SharedLibrary.dll Microsoft Corporation Microsoft .NET Native Shared Framework 131795770645660438 0x7ffaa03f0000 4546560 C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2017.35063.44410.0_x64__8wekyb3d8bbwe\FaceSdkStoreWrapper.dll 16.425.0.0 Microsoft Corporation FaceSdkStoreWrapper 131795770645660438 0x7ffaa0850000 2371584 C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2017.35063.44410.0_x64__8wekyb3d8bbwe\MediaEngine.dll 131795770645660438 0x7ffaab270000 917504 C:\Windows\System32\Windows.AccountsControl.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Accounts Control 131795770645660438 0x7ffaab750000 876544 C:\Windows\System32\Windows.Media.Import.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation Windows Photo Import API (WinRT/COM) 131795770645660438 0x7ffaac0c0000 1396736 C:\Windows\System32\Windows.UI.Xaml.Phone.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows UI XAML Phone API 131795770645660438 0x7ffab5b40000 2527232 C:\Windows\SYSTEM32\dwrite.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Службы Microsoft DirectX Typography 131795770645660438 0x7ffab6710000 17231872 C:\Windows\System32\Windows.UI.Xaml.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows.UI.Xaml dll 131795770645660438 0x7ffab8f40000 94208 C:\Windows\System32\Windows.System.Diagnostics.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows System Diagnostics DLL 131795770645660438 0x7ffab8f60000 397312 C:\Windows\System32\CryptoWinRT.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Crypto WinRT Library 131795770645660438 0x7ffab9270000 454656 C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2017.35063.44410.0_x64__8wekyb3d8bbwe\Microsoft.Photos.AGM.Native.Windows.dll 131795770645660438 0x7ffab9b40000 389120 C:\Program Files\WindowsApps\Microsoft.NET.Native.Runtime.1.4_1.4.24201.0_x64__8wekyb3d8bbwe\mrt100_app.dll 1.4.24201.0 built by: PROJECTNREL Microsoft Corporation Microsoft .NET Native Runtime 131795770645660438 0x7ffabb3c0000 450560 C:\Windows\SYSTEM32\TextInputFramework.dll 10.0.14393.2189 (rs1_release.180329-1711) Microsoft Corporation "TextInputFramework.DYNLINK" 131795770645660438 0x7ffabc510000 90112 C:\Windows\system32\execmodelproxy.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ExecModelProxy 131795770645660438 0x7ffabc5c0000 319488 C:\Windows\SYSTEM32\MFSENSORGROUP.dll 10.0.14393.447 (rs1_release_inmarket.161102-0100) Microsoft Corporation Media Foundation Sensor Group DLL 131795770645660438 0x7ffabc920000 270336 C:\Windows\System32\execmodelclient.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation ExecModelClient 131795770645660438 0x7ffabcef0000 102400 C:\Windows\System32\Windows.Shell.ServiceHostBuilder.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows.Shell.ServiceHostBuilder 131795770645660438 0x7ffabd4a0000 1613824 C:\Windows\System32\Windows.Globalization.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Globalization 131795770645660438 0x7ffabd8e0000 704512 C:\Windows\WinSxS\amd64_microsoft.windows.common-controls_6595b64144ccf1df_5.82.14393.447_none_0d5aa7fbb6d35646\comctl32.dll 6.10 (rs1_release_inmarket.170303-1614) Microsoft Corporation Библиотека элементов управления взаимодействия с пользователем 131795770645660438 0x7ffabe6e0000 561152 C:\Windows\system32\directmanipulation.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Direct Manipulation Component 131795770645660438 0x7ffabea30000 192512 C:\Windows\System32\Windows.Energy.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Energy Runtime DLL 131795770645660438 0x7ffabeac0000 335872 C:\Windows\System32\Windows.Storage.ApplicationData.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Application Data API Server 131795770645660438 0x7ffabeb20000 385024 C:\Windows\System32\Windows.ApplicationModel.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows ApplicationModel API Server 131795770645660438 0x7ffabf330000 2457600 C:\Windows\System32\msxml6.dll 6.30.14393.2156 Microsoft Corporation MSXML 6.0 131795770645660438 0x7ffabfce0000 90112 C:\Windows\System32\Windows.Globalization.Fontgroups.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Fonts Mapping API 131795770645660438 0x7ffabfd00000 356352 C:\Windows\System32\Windows.Graphics.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation WinRT Windows Graphics DLL 131795770645660438 0x7ffabfd80000 86016 C:\Windows\System32\threadpoolwinrt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows WinRT Threadpool 131795770645660438 0x7ffabfe10000 237568 C:\Windows\SYSTEM32\rometadata.dll 4.6.1586.0 built by: NETFXREL2 Microsoft Corporation Microsoft MetaData Library 131795770645660438 0x7ffac00c0000 282624 C:\Windows\SYSTEM32\windows.ui.core.textinput.dll 10.0.14393.2189 (rs1_release.180329-1711) Microsoft Corporation Windows.UI.Core.TextInput dll 131795770645660438 0x7ffac0470000 1478656 C:\Windows\SYSTEM32\MFPlat.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Media Foundation Platform DLL 131795770645660438 0x7ffac0910000 724992 C:\Windows\System32\Windows.Networking.Connectivity.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Networking Connectivity Runtime DLL 131795770645660438 0x7ffac0bf0000 3559424 C:\Windows\System32\ActXPrxy.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation ActiveX Interface Marshaling Library 131795770645660438 0x7ffac0fa0000 77824 C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2017.35063.44410.0_x64__8wekyb3d8bbwe\Microsoft.Photos.Edit.Services.dll 131795770645660438 0x7ffac1b90000 630784 C:\Program Files\WindowsApps\Microsoft.VCLibs.140.00_14.0.25426.0_x64__8wekyb3d8bbwe\MSVCP140_APP.dll 14.11.25426.0 built by: VCTOOLSREL Microsoft Corporation Microsoft® C Runtime Library 131795770645660438 0x7ffac1c70000 69632 C:\Program Files\WindowsApps\Microsoft.VCLibs.140.00_14.0.25426.0_x64__8wekyb3d8bbwe\VCOMP140_app.DLL 14.11.25426.0 built by: VCTOOLSREL Microsoft Corporation Microsoft® C/C++ OpenMP Runtime 131795770645660438 0x7ffac1e50000 188416 C:\Windows\SYSTEM32\RTWorkQ.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL для WorkQueue реального времени 131795770645660438 0x7ffac20d0000 110592 C:\Windows\System32\rmclient.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Resource Manager Client 131795770645660438 0x7ffac2c00000 69632 C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2017.35063.44410.0_x64__8wekyb3d8bbwe\clrcompression.dll 1.0.23123.00 built by: PROJECTKREL Microsoft Corporation ClrCompression 131795770645660438 0x7ffac2cb0000 778240 C:\Windows\SYSTEM32\winsqlite3.dll 3.12.2 SQLite Development Team SQLite is a software library that implements a self-contained, serverless, zero-configuration, transactional SQL database engine. 131795770645660438 0x7ffac3280000 36864 C:\Windows\SYSTEM32\mrt100.dll 1.0.24120.0 built by: PROJECTNREL Microsoft Corporation Microsoft .NET Native Runtime 131795770645660438 0x7ffac34e0000 1843200 C:\Windows\SYSTEM32\urlmon.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширения OLE32 для Win32 131795770645660438 0x7ffac3cb0000 2772992 C:\Windows\SYSTEM32\iertutil.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служебная программа времени выполнения для Internet Explorer 131795770645660438 0x7ffac4b10000 307200 C:\Program Files\WindowsApps\Microsoft.VCLibs.140.00_14.0.25426.0_x64__8wekyb3d8bbwe\CONCRT140_APP.dll 14.11.25426.0 built by: VCTOOLSREL Microsoft Corporation Microsoft® Concurrency Runtime Library 131795770645660438 0x7ffac4c60000 385024 C:\Program Files\WindowsApps\Microsoft.VCLibs.140.00_14.0.25426.0_x64__8wekyb3d8bbwe\vccorlib140_app.DLL 14.11.25426.0 built by: VCTOOLSREL Microsoft Corporation Microsoft ® VC WinRT core library 131795770645660438 0x7ffac5350000 1765376 C:\Windows\System32\Windows.UI.Immersive.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation WINDOWS.UI.IMMERSIVE 131795770645660438 0x7ffac60e0000 221184 C:\Windows\SYSTEM32\XmlLite.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft XmlLite Library 131795770645660438 0x7ffac6620000 192512 C:\Windows\System32\biwinrt.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation Windows Background Broker Infrastructure 131795770645660438 0x7ffac6ac0000 835584 C:\Windows\System32\Windows.UI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Runtime UI Foundation DLL 131795770645660438 0x7ffac6f50000 5632000 C:\Windows\SYSTEM32\d2d1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека Microsoft D2D 131795770645660438 0x7ffac7580000 1077248 C:\Windows\System32\MrmCoreR.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Windows MRM 131795770645660438 0x7ffac7720000 1601536 C:\Windows\System32\OneCoreUAPCommonProxyStub.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation OneCoreUAP Common Proxy Stub 131795770645660438 0x7ffac7e30000 40960 C:\Windows\SYSTEM32\fontgroupsoverride.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation fontgroupsoverride.dll 131795770645660438 0x7ffac7fc0000 2674688 C:\Windows\SYSTEM32\d3d10warp.dll 10.0.14393.576 (rs1_release_inmarket.161208-2252) Microsoft Corporation Direct3D 10 Rasterizer 131795770645660438 0x7ffac84f0000 299008 C:\Windows\system32\DataExchange.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation Data exchange 131795770645660438 0x7ffac8540000 286720 C:\Windows\System32\vaultcli.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиентская библиотека хранилища учетных данных 131795770645660438 0x7ffac88a0000 2842624 C:\Windows\SYSTEM32\d3d11.dll 10.0.14393.953 (rs1_release_inmarket.170303-1614) Microsoft Corporation Direct3D 11 Runtime 131795770645660438 0x7ffac8fa0000 253952 C:\Windows\SYSTEM32\logoncli.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Net Logon Client DLL 131795770645660438 0x7ffac92e0000 1269760 C:\Windows\SYSTEM32\wintypes.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL основных типов Windows 131795770645660438 0x7ffac9500000 2682880 C:\Windows\system32\CoreUIComponents.dll 131795770645660438 0x7ffac9f50000 1736704 C:\Windows\system32\windowscodecs.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Microsoft Windows Codecs Library 131795770645660438 0x7ffaca340000 1593344 C:\Windows\SYSTEM32\PROPSYS.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Система страниц свойств (Майкрософт) 131795770645660438 0x7ffaca570000 421888 C:\Windows\SYSTEM32\Bcp47Langs.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation BCP47 Language Classes 131795770645660438 0x7ffaca5e0000 155648 C:\Windows\SYSTEM32\dwmapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Интерфейс API диспетчера окон рабочего стола (Майкрософт) 131795770645660438 0x7ffaca640000 770048 C:\Windows\SYSTEM32\CoreMessaging.dll 10.0.14393.0 Microsoft Corporation Microsoft CoreMessaging Dll 131795770645660438 0x7ffaca770000 1380352 C:\Windows\SYSTEM32\dcomp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft DirectComposition Library 131795770645660438 0x7ffacab80000 90112 C:\Program Files\WindowsApps\Microsoft.VCLibs.140.00_14.0.25426.0_x64__8wekyb3d8bbwe\VCRUNTIME140_APP.dll 14.11.25426.0 built by: VCTOOLSREL Microsoft Corporation Microsoft® C Runtime Library 131795770645660438 0x7ffacadf0000 499712 C:\Windows\system32\apphelp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиентская библиотека совместимости приложений 131795770645660438 0x7ffacaf00000 610304 C:\Windows\system32\uxtheme.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека тем UxTheme (Microsoft) 131795770645660438 0x7ffacb1e0000 1163264 C:\Windows\SYSTEM32\twinapi.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation twinapi.appcore 131795770645660438 0x7ffacb780000 651264 C:\Windows\SYSTEM32\dxgi.dll 10.0.14393.953 (rs1_release_inmarket.170303-1614) Microsoft Corporation DirectX Graphics Infrastructure 131795770645660438 0x7ffacbe40000 126976 C:\Windows\SYSTEM32\USERENV.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Userenv 131795770645660438 0x7ffacc170000 45056 C:\Windows\SYSTEM32\CRYPTBASE.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base cryptographic API DLL 131795770645660438 0x7ffacc350000 180224 C:\Windows\SYSTEM32\SspiCli.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Security Support Provider Interface 131795770645660438 0x7ffacc620000 176128 C:\Windows\SYSTEM32\bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795770645660438 0x7ffacc6e0000 61440 C:\Windows\System32\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795770645660438 0x7ffacc6f0000 311296 C:\Windows\System32\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795770645660438 0x7ffacc740000 81920 C:\Windows\System32\profapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Profile Basic API 131795770645660438 0x7ffacc760000 65536 C:\Windows\System32\MSASN1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ASN.1 Runtime APIs 131795770645660438 0x7ffacc8f0000 1003520 C:\Windows\System32\ucrtbase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645660438 0x7ffacc9f0000 434176 C:\Windows\System32\bcryptPrimitives.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Cryptographic Primitives Library 131795770645660438 0x7ffacca60000 122880 C:\Windows\System32\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795770645660438 0x7ffaccae0000 692224 C:\Windows\System32\shcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795770645660438 0x7ffaccb90000 7180288 C:\Windows\System32\windows.storage.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API хранения Microsoft WinRT 131795770645660438 0x7ffacd270000 2215936 C:\Windows\System32\KERNELBASE.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645660438 0x7ffacd490000 1871872 C:\Windows\System32\CRYPT32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API32 криптографии 131795770645660438 0x7ffacd710000 638976 C:\Windows\System32\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645660438 0x7ffacd7b0000 270336 C:\Windows\System32\cfgmgr32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Configuration Manager DLL 131795770645660438 0x7ffaced20000 782336 C:\Windows\System32\OleAut32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795770645660438 0x7ffacee50000 1183744 C:\Windows\System32\RPCRT4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795770645660438 0x7ffacef90000 647168 C:\Windows\System32\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795770645660438 0x7ffacf0d0000 704512 C:\Windows\System32\KERNEL32.DLL 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645660438 0x7ffacf1e0000 1417216 C:\Windows\System32\msctf.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Серверная библиотека MSCTF 131795770645660438 0x7ffacf770000 212992 C:\Windows\System32\GDI32.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation GDI Client DLL 131795770645660438 0x7ffacf890000 188416 C:\Windows\System32\IMM32.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Multi-User Windows IMM32 API Client DLL 131795770645660438 0x7ffacf8c0000 1462272 C:\Windows\System32\USER32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795770645660438 0x7ffacfb30000 2916352 C:\Windows\System32\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795770645660438 0x7ffacfe20000 663552 C:\Windows\System32\advapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795770645660438 0x7ffad01b0000 335872 C:\Windows\System32\shlwapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека небольших программ оболочки 131795770645660438 0x7ffad0210000 364544 C:\Windows\System32\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795770645660438 0x7ffad0270000 1908736 C:\Windows\SYSTEM32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 84 6208 12140 85 00000000:0031f1da 131795181740423780 0 0 0 Обязательная метка\Средний обязательный уровень WIN-0UOTFKKVN1S\User OneDrive.exe C:\Users\User\AppData\Local\Microsoft\OneDrive\OneDrive.exe /updateInstalled /background Microsoft Corporation 18.131.0701.0007 Microsoft OneDrive 131795770645660654 0x11f0000 1646592 C:\Users\User\AppData\Local\Microsoft\OneDrive\OneDrive.exe 18.131.0701.0007 Microsoft Corporation Microsoft OneDrive 131795770645660654 0x55a0000 1003520 C:\Users\User\AppData\Local\Microsoft\OneDrive\18.131.0701.0007\FileSync.Resources.dll 18.131.0701.0007 Microsoft Corporation Microsoft OneDrive 131795770645660654 0x5c020000 335872 C:\Windows\System32\wow64.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation Win32 Emulation on NT64 131795770645660654 0x5c080000 487424 C:\Windows\System32\wow64win.dll 10.0.14393.1884 (rs1_release.171101-1233) Microsoft Corporation Wow64 Console and Win32 API Logging 131795770645660654 0x5c100000 40960 C:\Windows\System32\wow64cpu.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation AMD64 Wow64 CPU 131795770645660654 0x60750000 1556480 C:\Program Files (x86)\360\Total Security\safemon\safemon.dll 8, 4, 0, 1420 Qihu 360 Software Co., Ltd. 360 Internet Security Internet Protection 131795770645660654 0x64d00000 5079040 C:\Windows\SysWOW64\d2d1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека Microsoft D2D 131795770645660654 0x651e0000 20537344 C:\Windows\SysWOW64\MSHTML.dll 11.00.14393.447 (rs1_release_inmarket.161102-0100) Microsoft Corporation Средство просмотра HTML Microsoft® 131795770645660654 0x66580000 12247040 C:\Windows\SysWOW64\ieframe.dll 11.00.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Браузер 131795770645660654 0x67200000 1978368 C:\Windows\SysWOW64\msxml6.dll 6.30.14393.2156 Microsoft Corporation MSXML 6.0 131795770645660654 0x67500000 1597440 C:\Windows\SysWOW64\ActXPrxy.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation ActiveX Interface Marshaling Library 131795770645660654 0x6b670000 212992 C:\Windows\SysWOW64\mlang.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL многоязыковой поддержки 131795770645660654 0x6b6b0000 36864 C:\Windows\SysWOW64\atlthunk.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation atlthunk.dll 131795770645660654 0x6bab0000 4472832 C:\Users\User\AppData\Local\Microsoft\OneDrive\18.131.0701.0007\Qt5Widgets.dll 5.9.1.0 The Qt Company Ltd C++ application development framework. 131795770645660654 0x6c290000 987136 C:\Windows\SysWOW64\twinapi.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation twinapi.appcore 131795770645660654 0x6c390000 1126400 C:\Windows\SysWOW64\dcomp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft DirectComposition Library 131795770645660654 0x6c4b0000 278528 C:\Windows\SysWOW64\dataexchange.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation Data exchange 131795770645660654 0x6c540000 483328 C:\Windows\SysWOW64\webio.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API протоколов передачи по Веб 131795770645660654 0x6c5c0000 1384448 C:\Windows\SysWOW64\uiautomationcore.dll 7.2.14393.0 (rs1_release.160715-1616) Microsoft Corporation Основные автоматические компоненты Microsoft UI 131795770645660654 0x6c960000 57344 C:\Windows\SysWOW64\msimtf.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Active IMM Server DLL 131795770645660654 0x6c970000 3698688 C:\Windows\SysWOW64\jscript9.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft ® JScript 131795770645660654 0x6cd20000 135168 C:\Windows\SysWOW64\srpapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL программных интерфейсов (API) поставщика общих ресурсов 131795770645660654 0x6cd50000 106496 C:\Windows\SysWOW64\SAMLIB.dll 10.0.14393.82 (rs1_release.160805-1735) Microsoft Corporation SAM Library DLL 131795770645660654 0x6cda0000 528384 C:\Windows\SysWOW64\sxs.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Fusion 2.5 131795770645660654 0x6cf60000 569344 C:\Windows\SysWOW64\taskschd.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Task Scheduler COM API 131795770645660654 0x6d080000 151552 C:\Windows\SysWOW64\cryptnet.dll 10.0.14393.2035 (rs1_release_inmarket.180110-1910) Microsoft Corporation Crypto Network Related API 131795770645660654 0x6d0b0000 847872 C:\Windows\SysWOW64\WinTypes.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL основных типов Windows 131795770645660654 0x6d210000 4993024 C:\Users\User\AppData\Local\Microsoft\OneDrive\18.131.0701.0007\Qt5Gui.dll 5.9.1.0 The Qt Company Ltd C++ application development framework. 131795770645660654 0x6fcd0000 151552 C:\Windows\SysWOW64\dbgcore.DLL 10.0.14321.1024 (debuggers(dbg).160715-1616) Microsoft Windows Core Debugging Helpers 131795770645660654 0x70340000 536576 C:\Windows\SysWOW64\dxgi.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation DirectX Graphics Infrastructure 131795770645660654 0x703d0000 2056192 C:\Windows\SysWOW64\DWrite.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Службы Microsoft DirectX Typography 131795770645660654 0x707b0000 110592 C:\Windows\SysWOW64\ncryptsslp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft SChannel Provider 131795770645660654 0x707f0000 2293760 C:\Windows\SysWOW64\d3d11.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation Direct3D 11 Runtime 131795770645660654 0x70a80000 409600 C:\Windows\SysWOW64\schannel.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик безопасности TLS/SSL 131795770645660654 0x70b00000 176128 C:\Windows\SysWOW64\Wscapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API центра обеспечения безопасности Windows 131795770645660654 0x70b40000 69632 C:\Windows\SysWOW64\mskeyprotect.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик защиты ключей (Майкрософт) 131795770645660654 0x70ca0000 45056 C:\Windows\SysWOW64\NETUTILS.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API Helpers DLL 131795770645660654 0x70cc0000 65536 C:\Windows\SysWOW64\ondemandconnroutehelper.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation On Demand Connctiond Route Helper 131795770645660654 0x70ce0000 1519616 C:\Windows\SysWOW64\wpc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека параметров родительского контроля 131795770645660654 0x70e60000 176128 C:\Windows\SysWOW64\NTASN1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft ASN.1 API 131795770645660654 0x70f00000 815104 C:\Windows\SysWOW64\OneCoreUAPCommonProxyStub.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation OneCoreUAP Common Proxy Stub 131795770645660654 0x70fd0000 1331200 C:\Windows\SysWOW64\dbghelp.dll 10.0.14321.1024 (rs1_release.160715-1616) Microsoft Windows Image Helper 131795770645660654 0x71140000 77824 C:\Windows\SysWOW64\NETAPI32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API DLL 131795770645660654 0x71200000 708608 C:\Windows\SysWOW64\TokenBroker.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Token Broker 131795770645660654 0x712b0000 602112 C:\Windows\SysWOW64\Windows.Security.Authentication.Web.Core.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Token Broker WinRT API 131795770645660654 0x71350000 2867200 C:\Users\User\AppData\Local\Microsoft\OneDrive\18.131.0701.0007\Qt5Quick.dll 5.9.1.0 The Qt Company Ltd C++ application development framework. 131795770645660654 0x71610000 77824 C:\Windows\SysWOW64\dhcpcsvc6.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиент DHCPv6 131795770645660654 0x71630000 487424 C:\Windows\SysWOW64\wlidprov.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft® Account Provider 131795770645660654 0x716b0000 1294336 C:\Users\User\AppData\Local\Microsoft\OneDrive\18.131.0701.0007\LIBEAY32.dll 1.0.2k The OpenSSL Project, http://www.openssl.org/ OpenSSL Shared Library 131795770645660654 0x717f0000 2637824 C:\Users\User\AppData\Local\Microsoft\OneDrive\18.131.0701.0007\Qt5Qml.dll 5.9.1.0 The Qt Company Ltd C++ application development framework. 131795770645660654 0x71a80000 4796416 C:\Users\User\AppData\Local\Microsoft\OneDrive\18.131.0701.0007\Qt5Core.dll 5.9.1.0 The Qt Company Ltd C++ application development framework. 131795770645660654 0x71f20000 6033408 C:\Users\User\AppData\Local\Microsoft\OneDrive\18.131.0701.0007\SyncEngine.DLL 18.131.0701.0007 Microsoft Corporation Microsoft OneDrive Sync Engine 131795770645660654 0x724f0000 57344 C:\Windows\SysWOW64\credui.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Credential Manager User Interface 131795770645660654 0x72530000 126976 C:\Windows\SysWOW64\IDStore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Identity Store 131795770645660654 0x72550000 561152 C:\Windows\SysWOW64\Windows.Networking.Connectivity.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Networking Connectivity Runtime DLL 131795770645660654 0x725e0000 2273280 C:\Windows\SysWOW64\iertutil.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служебная программа времени выполнения для Internet Explorer 131795770645660654 0x72810000 28672 C:\Windows\SysWOW64\familysafetyext.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation FamilySafety ChildAccount Extensions 131795770645660654 0x72820000 167936 C:\Windows\SysWOW64\MicrosoftAccountTokenProvider.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft® Account Token Provider 131795770645660654 0x72850000 331776 C:\Windows\SysWOW64\AppXDeploymentClient.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL-библиотека клиента развертывания AppX 131795770645660654 0x728b0000 135168 C:\Users\User\AppData\Local\Microsoft\OneDrive\18.131.0701.0007\FileSyncFAL.dll 18.131.0701.0007 Microsoft Corporation Microsoft OneDriveFile Sync FAL 131795770645660654 0x728e0000 1372160 C:\Windows\SysWOW64\PROPSYS.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Система страниц свойств (Майкрософт) 131795770645660654 0x72a30000 188416 C:\Windows\SysWOW64\XmlLite.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft XmlLite Library 131795770645660654 0x72a60000 589824 C:\Windows\SysWOW64\wer.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека сообщений об ошибках Windows 131795770645660654 0x72b90000 126976 C:\Windows\SysWOW64\dwmapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Интерфейс API диспетчера окон рабочего стола (Майкрософт) 131795770645660654 0x72bb0000 1105920 C:\Users\User\AppData\Local\Microsoft\OneDrive\18.131.0701.0007\platforms\qwindows.dll 5.9.1.0 The Qt Company Ltd C++ application development framework. 131795770645660654 0x72cc0000 1658880 C:\Windows\SysWOW64\urlmon.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширения OLE32 для Win32 131795770645660654 0x72e60000 172032 C:\Windows\SysWOW64\rometadata.dll 4.6.1586.0 built by: NETFXREL2 Microsoft Corporation Microsoft MetaData Library 131795770645660654 0x72e90000 299008 C:\Users\User\AppData\Local\Microsoft\OneDrive\18.131.0701.0007\SSLEAY32.dll 1.0.2k The OpenSSL Project, http://www.openssl.org/ OpenSSL Shared Library 131795770645660654 0x72ee0000 950272 C:\Users\User\AppData\Local\Microsoft\OneDrive\18.131.0701.0007\Qt5Network.dll 5.9.1.0 The Qt Company Ltd C++ application development framework. 131795770645660654 0x72fd0000 126976 C:\Windows\SysWOW64\loadperf.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Загрузка и выгрузка счетчиков производительности 131795770645660654 0x72ff0000 278528 C:\Windows\SysWOW64\pdh.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Модуль поддержки данных производительности Windows 131795770645660654 0x73040000 253952 C:\Users\User\AppData\Local\Microsoft\OneDrive\18.131.0701.0007\Qt5WinExtras.dll 5.9.1.0 The Qt Company Ltd C++ application development framework. 131795770645660654 0x73080000 880640 C:\Users\User\AppData\Local\Microsoft\OneDrive\18.131.0701.0007\ADAL.dll 1.0.2110.0526 Microsoft ADAL.Native 131795770645660654 0x73160000 32768 C:\Windows\SysWOW64\WSOCK32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Socket 32-Bit DLL 131795770645660654 0x73170000 352256 C:\Windows\SysWOW64\faultrep.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека отчетов о сбоях в пользовательском режиме Windows 131795770645660654 0x731d0000 413696 C:\Users\User\AppData\Local\Microsoft\OneDrive\18.131.0701.0007\WnsClientApi.dll 18.131.0701.0007 Microsoft Corporation OneDrive WNS Client Library 131795770645660654 0x73240000 520192 C:\Users\User\AppData\Local\Microsoft\OneDrive\18.131.0701.0007\LogUploader.dll 18.131.0701.0007 Microsoft Corporation OneDrive Sync LogUploader Library 131795770645660654 0x732c0000 1269760 C:\Users\User\AppData\Local\Microsoft\OneDrive\18.131.0701.0007\FileSyncViews.dll 18.131.0701.0007 Microsoft Corporation Microsoft OneDrive Qt Components 131795770645660654 0x73400000 159744 C:\Users\User\AppData\Local\Microsoft\OneDrive\18.131.0701.0007\UpdateRingSettings.dll 18.131.0701.0007 Microsoft Corporation Update Ring Settings 131795770645660654 0x73430000 1748992 C:\Users\User\AppData\Local\Microsoft\OneDrive\18.131.0701.0007\FileSyncSessions.dll 18.131.0701.0007 Microsoft Corporation P2P Session Library 131795770645660654 0x735e0000 671744 C:\Users\User\AppData\Local\Microsoft\OneDrive\18.131.0701.0007\RemoteAccess.dll 18.131.0701.0007 Microsoft Corporation Remote Access 131795770645660654 0x73690000 188416 C:\Users\User\AppData\Local\Microsoft\OneDrive\18.131.0701.0007\Telemetry.dll 18.131.0701.0007 Microsoft Corporation Telemetry Library 131795770645660654 0x736c0000 32768 C:\Users\User\AppData\Local\Microsoft\OneDrive\18.131.0701.0007\ETWLog.dll 18.131.0701.0007 Microsoft Corporation ETW Session Library 131795770645660654 0x736d0000 3600384 C:\Users\User\AppData\Local\Microsoft\OneDrive\18.131.0701.0007\FileSyncClient.dll 18.131.0701.0007 Microsoft Corporation Microsoft OneDrive Client 131795770645660654 0x73a40000 32768 C:\Windows\SysWOW64\WINNSI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Network Store Information RPC interface 131795770645660654 0x73a50000 299008 C:\Windows\SysWOW64\fwpuclnt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API пользовательского режима FWP/IPsec 131795770645660654 0x73aa0000 32768 C:\Windows\SysWOW64\DPAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Data Protection API 131795770645660654 0x73ab0000 32768 C:\Windows\SysWOW64\rasadhlp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Remote Access AutoDial Helper 131795770645660654 0x73ac0000 81920 C:\Windows\SysWOW64\dhcpcsvc.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служба DHCP-клиента 131795770645660654 0x73ae0000 40960 C:\Windows\SysWOW64\Secur32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Security Support Provider Interface 131795770645660654 0x73af0000 1417216 C:\Users\User\AppData\Local\Microsoft\OneDrive\18.131.0701.0007\LoggingPlatform.dll 18.131.0701.0007 Microsoft Corporation Logging Platform 131795770645660654 0x73c50000 1478656 C:\Windows\WinSxS\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.14393.1715_none_f67438d2f2547a00\gdiplus.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Microsoft GDI+ 131795770645660654 0x73dc0000 1171456 C:\Users\User\AppData\Local\Microsoft\OneDrive\18.131.0701.0007\ucrtbase.dll 10.0.17134.12 (WinBuild.160101.0800) Microsoft Corporation Microsoft® C Runtime Library 131795770645660654 0x73ee0000 61440 C:\Windows\SysWOW64\wtsapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Remote Desktop Session Host Server SDK APIs 131795770645660654 0x73f00000 192512 C:\Windows\SysWOW64\IPHLPAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API вспомогательного приложения IP 131795770645660654 0x73f30000 512000 C:\Windows\SysWOW64\DNSAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Динамическая библиотека API DNS-клиента 131795770645660654 0x73fb0000 36864 C:\Windows\SysWOW64\ktmw32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows KTM Win32 Client DLL 131795770645660654 0x73ff0000 319488 C:\Windows\SysWOW64\MSWSOCK.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширение поставщика службы API Microsoft Windows Sockets 2.0 131795770645660654 0x74060000 192512 C:\Windows\SysWOW64\rsaenh.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Enhanced Cryptographic Provider 131795770645660654 0x74090000 462848 C:\Users\User\AppData\Local\Microsoft\OneDrive\18.131.0701.0007\MSVCP140.dll 14.13.26020.0 built by: VCTOOLSREL Microsoft Corporation Microsoft® C Runtime Library 131795770645660654 0x74110000 479232 C:\Windows\SysWOW64\UxTheme.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека тем UxTheme (Microsoft) 131795770645660654 0x74190000 110592 C:\Windows\SysWOW64\bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795770645660654 0x741b0000 77824 C:\Windows\SysWOW64\CRYPTSP.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Cryptographic Service Provider API 131795770645660654 0x741d0000 86016 C:\Users\User\AppData\Local\Microsoft\OneDrive\18.131.0701.0007\VCRUNTIME140.dll 14.13.26020.0 built by: VCTOOLSREL Microsoft Corporation Microsoft® C Runtime Library 131795770645660654 0x741f0000 143360 C:\Windows\SysWOW64\WINMMBASE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base Multimedia Extension API DLL 131795770645660654 0x74220000 53248 C:\Windows\SysWOW64\TOKENBINDING.dll 10.0.14393.1593 (rs1_release.170731-1934) Microsoft Corporation Token Binding Protocol 131795770645660654 0x74230000 147456 C:\Windows\SysWOW64\WINMM.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation MCI API DLL 131795770645660654 0x74260000 2514944 C:\Windows\SysWOW64\WININET.dll 11.00.14393.447 (rs1_release_inmarket.161102-0100) Microsoft Corporation Расширения Интернета для Win32 131795770645660654 0x744d0000 2138112 C:\Windows\WinSxS\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.14393.953_none_89c2555adb023171\COMCTL32.dll 6.10 (rs1_release_inmarket.170303-1614) Microsoft Corporation Библиотека элементов управления взаимодействия с пользователем 131795770645660654 0x746e0000 32768 C:\Windows\SysWOW64\VERSION.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Version Checking and File Installation Libraries 131795770645660654 0x746f0000 106496 C:\Windows\SysWOW64\USERENV.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Userenv 131795770645660654 0x74710000 90112 C:\Windows\SysWOW64\MPR.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека маршрутизации для нескольких служб доступа 131795770645660654 0x74730000 598016 C:\Windows\SysWOW64\apphelp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиентская библиотека совместимости приложений 131795770645660654 0x747d0000 40960 C:\Windows\SysWOW64\CRYPTBASE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base cryptographic API DLL 131795770645660654 0x747e0000 126976 C:\Windows\SysWOW64\SspiCli.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Security Support Provider Interface 131795770645660654 0x74800000 151552 C:\Windows\SysWOW64\IMM32.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Multi-User Windows IMM32 API Client DLL 131795770645660654 0x74910000 2170880 C:\Windows\SysWOW64\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795770645660654 0x74b30000 53248 C:\Windows\SysWOW64\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795770645660654 0x74b60000 790528 C:\Windows\SysWOW64\RPCRT4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795770645660654 0x74c30000 1417216 C:\Windows\SysWOW64\gdi32full.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation GDI Client DLL 131795770645660654 0x74d90000 24576 C:\Windows\SysWOW64\PSAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Process Status Helper 131795770645660654 0x74da0000 778240 C:\Windows\SysWOW64\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795770645660654 0x74e60000 557056 C:\Windows\SysWOW64\shcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795770645660654 0x74ef0000 540672 C:\Windows\SysWOW64\clbcatq.dll 2001.12.10941.16384 (rs1_release.160715-1616) Microsoft Corporation COM+ Configuration Catalog 131795770645660654 0x74f80000 278528 C:\Windows\SysWOW64\WINTRUST.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation Microsoft Trust Verification APIs 131795770645660654 0x74fd0000 405504 C:\Windows\SysWOW64\WS2_32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation 32-разрядная библиотека Windows Socket 2.0 131795770645660654 0x75040000 282624 C:\Windows\SysWOW64\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795770645660654 0x75090000 1265664 C:\Windows\SysWOW64\MSCTF.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Серверная библиотека MSCTF 131795770645660654 0x751d0000 57344 C:\Windows\SysWOW64\MSASN1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ASN.1 Runtime APIs 131795770645660654 0x751e0000 1708032 C:\Windows\SysWOW64\KERNELBASE.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645660654 0x75390000 266240 C:\Windows\SysWOW64\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795770645660654 0x753e0000 1560576 C:\Windows\SysWOW64\CRYPT32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API32 криптографии 131795770645660654 0x75560000 487424 C:\Windows\SysWOW64\ADVAPI32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795770645660654 0x756c0000 5693440 C:\Windows\SysWOW64\windows.storage.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API хранения Microsoft WinRT 131795770645660654 0x75c90000 286720 C:\Windows\SysWOW64\shlwapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека небольших программ оболочки 131795770645660654 0x75ce0000 20811776 C:\Windows\SysWOW64\SHELL32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Общая библиотека оболочки Windows 131795770645660654 0x774d0000 86016 C:\Windows\SysWOW64\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795770645660654 0x774f0000 61440 C:\Windows\SysWOW64\profapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Profile Basic API 131795770645660654 0x77560000 1437696 C:\Windows\SysWOW64\USER32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795770645660654 0x776c0000 368640 C:\Windows\SysWOW64\bcryptPrimitives.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation Windows Cryptographic Primitives Library 131795770645660654 0x77780000 503808 C:\Windows\SysWOW64\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645660654 0x77800000 606208 C:\Windows\SysWOW64\OLEAUT32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795770645660654 0x77ac0000 966656 C:\Windows\SysWOW64\ole32.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft OLE для Windows 131795770645660654 0x77bb0000 176128 C:\Windows\SysWOW64\GDI32.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation GDI Client DLL 131795770645660654 0x77cd0000 221184 C:\Windows\SysWOW64\cfgmgr32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Configuration Manager DLL 131795770645660654 0x77d10000 28672 C:\Windows\SysWOW64\NSI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation NSI User-mode interface DLL 131795770645660654 0x77d20000 1585152 C:\Windows\SysWOW64\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 131795770645660654 0x7ffad0270000 1908736 C:\Windows\SYSTEM32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 86 6140 7744 57 00000000:0031f1da 131795747339404666 0 0 0 Обязательная метка\Ненадежный обязательный уровень WIN-0UOTFKKVN1S\User browser.exe C:\Users\User\AppData\Local\Yandex\YandexBrowser\Application\browser.exe "C:\Users\User\AppData\Local\Yandex\YandexBrowser\Application\browser.exe" --type=renderer --enable-in-process-wmf-demuxer --field-trial-handle=1292,9555382311565764851,7120838982649204725,131072 --enable-ignition --disable-gpu-compositing --service-pipe-token=764E64A4EA650A23B18EB059FF0B4B51 --lang=ru --user-id=32B2E0A1-3039-4C67-86BE-75A88EF21B54 --brand-id=yandex --partner-id=7924 --help-url=https://api.browser.yandex.ru/redirect/help/ --user-agent-info --translate-security-origin=https://translate.yandex.net --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --enable-instaserp --device-scale-factor=1 --num-raster-threads=1 --enable-compositor-image-animations --service-request-channel-token=764E64A4EA650A23B18EB059FF0B4B51 --renderer-client-id=106 --mojo-platform-channel-handle=6612 /prefetch:1 YANDEX LLC 18.6.1.770 Yandex 131795770645660799 0x10e0000 2519040 C:\Users\User\AppData\Local\Yandex\YandexBrowser\Application\browser.exe 18.6.1.770 YANDEX LLC Yandex 131795770645660799 0x58720000 59748352 C:\Users\User\AppData\Local\Yandex\YandexBrowser\Application\18.6.1.770\browser_child.dll 18.6.1.770 YANDEX LLC Yandex 131795770645660799 0x5c020000 335872 C:\Windows\System32\wow64.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation Win32 Emulation on NT64 131795770645660799 0x5c080000 487424 C:\Windows\System32\wow64win.dll 10.0.14393.1884 (rs1_release.171101-1233) Microsoft Corporation Wow64 Console and Win32 API Logging 131795770645660799 0x5c100000 40960 C:\Windows\System32\wow64cpu.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation AMD64 Wow64 CPU 131795770645660799 0x6e8b0000 1859584 C:\Windows\SysWOW64\mfmp4srcsnk.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL источника и приемника MPEG4 Media Foundation 131795770645660799 0x6ef30000 647168 C:\Windows\SysWOW64\evr.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека DLL средства отображения видео 131795770645660799 0x6efd0000 458752 C:\Windows\SysWOW64\msauddecmft.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Media Foundation Audio Decoders 131795770645660799 0x6f790000 1085440 C:\Windows\SysWOW64\mfperfhelper.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation MFPerf DLL 131795770645660799 0x6f8a0000 2220032 C:\Windows\SysWOW64\msmpeg2vdec.dll 10.0.14393.953 (rs1_release_inmarket.170303-1614) Microsoft Corporation Microsoft DTV-DVD Video Decoder 131795770645660799 0x6fac0000 1130496 C:\Windows\SysWOW64\mfplat.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Media Foundation Platform DLL 131795770645660799 0x6ff60000 172032 C:\Windows\SysWOW64\RTWorkQ.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL для WorkQueue реального времени 131795770645660799 0x70030000 593920 C:\Users\User\AppData\Local\Yandex\YandexBrowser\Application\18.6.1.770\browser_elf.dll 18.6.1.770 YANDEX LLC Yandex 131795770645660799 0x700d0000 434176 C:\Windows\SysWOW64\WINSPOOL.DRV 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Драйвер диспетчера очереди Windows 131795770645660799 0x70340000 536576 C:\Windows\SysWOW64\dxgi.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation DirectX Graphics Infrastructure 131795770645660799 0x703d0000 2056192 C:\Windows\SysWOW64\DWrite.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Службы Microsoft DirectX Typography 131795770645660799 0x707d0000 86016 C:\Windows\SysWOW64\SAMCLI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Security Accounts Manager Client DLL 131795770645660799 0x70a20000 94208 C:\Windows\SysWOW64\USP10.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Uniscribe Unicode script processor 131795770645660799 0x70ca0000 45056 C:\Windows\SysWOW64\NETUTILS.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API Helpers DLL 131795770645660799 0x70fd0000 1331200 C:\Windows\SysWOW64\dbghelp.dll 10.0.14321.1024 (rs1_release.160715-1616) Microsoft Windows Image Helper 131795770645660799 0x71140000 77824 C:\Windows\SysWOW64\NETAPI32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API DLL 131795770645660799 0x725e0000 2273280 C:\Windows\SysWOW64\iertutil.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служебная программа времени выполнения для Internet Explorer 131795770645660799 0x728e0000 1372160 C:\Windows\SysWOW64\PROPSYS.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Система страниц свойств (Майкрософт) 131795770645660799 0x72af0000 655360 C:\Windows\SysWOW64\WINHTTP.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Службы HTTP Windows 131795770645660799 0x72cc0000 1658880 C:\Windows\SysWOW64\urlmon.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширения OLE32 для Win32 131795770645660799 0x73ac0000 81920 C:\Windows\SysWOW64\dhcpcsvc.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служба DHCP-клиента 131795770645660799 0x73ae0000 40960 C:\Windows\SysWOW64\Secur32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Security Support Provider Interface 131795770645660799 0x73f00000 192512 C:\Windows\SysWOW64\IPHLPAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API вспомогательного приложения IP 131795770645660799 0x74190000 110592 C:\Windows\SysWOW64\bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795770645660799 0x741b0000 77824 C:\Windows\SysWOW64\cryptsp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Cryptographic Service Provider API 131795770645660799 0x741f0000 143360 C:\Windows\SysWOW64\WINMMBASE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base Multimedia Extension API DLL 131795770645660799 0x74230000 147456 C:\Windows\SysWOW64\WINMM.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation MCI API DLL 131795770645660799 0x744d0000 2138112 C:\Windows\WinSxS\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.14393.953_none_89c2555adb023171\COMCTL32.dll 6.10 (rs1_release_inmarket.170303-1614) Microsoft Corporation Библиотека элементов управления взаимодействия с пользователем 131795770645660799 0x746e0000 32768 C:\Windows\SysWOW64\VERSION.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Version Checking and File Installation Libraries 131795770645660799 0x746f0000 106496 C:\Windows\SysWOW64\USERENV.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Userenv 131795770645660799 0x747d0000 40960 C:\Windows\SysWOW64\CRYPTBASE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base cryptographic API DLL 131795770645660799 0x747e0000 126976 C:\Windows\SysWOW64\SspiCli.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Security Support Provider Interface 131795770645660799 0x74800000 151552 C:\Windows\SysWOW64\IMM32.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Multi-User Windows IMM32 API Client DLL 131795770645660799 0x74910000 2170880 C:\Windows\SysWOW64\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795770645660799 0x74b30000 53248 C:\Windows\SysWOW64\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795770645660799 0x74b60000 790528 C:\Windows\SysWOW64\RPCRT4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795770645660799 0x74c30000 1417216 C:\Windows\SysWOW64\gdi32full.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation GDI Client DLL 131795770645660799 0x74d90000 24576 C:\Windows\SysWOW64\PSAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Process Status Helper 131795770645660799 0x74da0000 778240 C:\Windows\SysWOW64\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795770645660799 0x74e60000 557056 C:\Windows\SysWOW64\shcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795770645660799 0x74f80000 278528 C:\Windows\SysWOW64\WINTRUST.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation Microsoft Trust Verification APIs 131795770645660799 0x74fd0000 405504 C:\Windows\SysWOW64\WS2_32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation 32-разрядная библиотека Windows Socket 2.0 131795770645660799 0x75040000 282624 C:\Windows\SysWOW64\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795770645660799 0x751d0000 57344 C:\Windows\SysWOW64\MSASN1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ASN.1 Runtime APIs 131795770645660799 0x751e0000 1708032 C:\Windows\SysWOW64\KERNELBASE.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645660799 0x75390000 266240 C:\Windows\SysWOW64\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795770645660799 0x753e0000 1560576 C:\Windows\SysWOW64\CRYPT32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API32 криптографии 131795770645660799 0x75560000 487424 C:\Windows\SysWOW64\ADVAPI32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795770645660799 0x756c0000 5693440 C:\Windows\SysWOW64\windows.storage.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API хранения Microsoft WinRT 131795770645660799 0x75c90000 286720 C:\Windows\SysWOW64\shlwapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека небольших программ оболочки 131795770645660799 0x75ce0000 20811776 C:\Windows\SysWOW64\SHELL32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Общая библиотека оболочки Windows 131795770645660799 0x774d0000 86016 C:\Windows\SysWOW64\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795770645660799 0x774f0000 61440 C:\Windows\SysWOW64\profapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Profile Basic API 131795770645660799 0x77560000 1437696 C:\Windows\SysWOW64\USER32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795770645660799 0x776c0000 368640 C:\Windows\SysWOW64\bcryptPrimitives.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation Windows Cryptographic Primitives Library 131795770645660799 0x77780000 503808 C:\Windows\SysWOW64\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645660799 0x77800000 606208 C:\Windows\SysWOW64\OLEAUT32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795770645660799 0x77ac0000 966656 C:\Windows\SysWOW64\ole32.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft OLE для Windows 131795770645660799 0x77bb0000 176128 C:\Windows\SysWOW64\GDI32.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation GDI Client DLL 131795770645660799 0x77be0000 937984 C:\Windows\SysWOW64\COMDLG32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека общих диалоговых окон 131795770645660799 0x77cd0000 221184 C:\Windows\SysWOW64\cfgmgr32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Configuration Manager DLL 131795770645660799 0x77d10000 28672 C:\Windows\SysWOW64\NSI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation NSI User-mode interface DLL 131795770645660799 0x77d20000 1585152 C:\Windows\SysWOW64\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 131795770645660799 0x7ffad0270000 1908736 C:\Windows\SYSTEM32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 87 11432 7744 57 00000000:0031f1da 131795755605761168 0 0 0 Обязательная метка\Ненадежный обязательный уровень WIN-0UOTFKKVN1S\User browser.exe C:\Users\User\AppData\Local\Yandex\YandexBrowser\Application\browser.exe "C:\Users\User\AppData\Local\Yandex\YandexBrowser\Application\browser.exe" --type=renderer --enable-in-process-wmf-demuxer --field-trial-handle=1292,9555382311565764851,7120838982649204725,131072 --enable-ignition --disable-gpu-compositing --service-pipe-token=9DD318D38190D474A9A0F5AFD262A449 --lang=ru --user-id=32B2E0A1-3039-4C67-86BE-75A88EF21B54 --brand-id=yandex --partner-id=7924 --help-url=https://api.browser.yandex.ru/redirect/help/ --user-agent-info --translate-security-origin=https://translate.yandex.net --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --enable-instaserp --device-scale-factor=1 --num-raster-threads=1 --enable-compositor-image-animations --service-request-channel-token=9DD318D38190D474A9A0F5AFD262A449 --renderer-client-id=109 --mojo-platform-channel-handle=4152 /prefetch:1 YANDEX LLC 18.6.1.770 Yandex 131795770645660929 0x10e0000 2519040 C:\Users\User\AppData\Local\Yandex\YandexBrowser\Application\browser.exe 18.6.1.770 YANDEX LLC Yandex 131795770645660929 0x58720000 59748352 C:\Users\User\AppData\Local\Yandex\YandexBrowser\Application\18.6.1.770\browser_child.dll 18.6.1.770 YANDEX LLC Yandex 131795770645660929 0x5c020000 335872 C:\Windows\System32\wow64.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation Win32 Emulation on NT64 131795770645660929 0x5c080000 487424 C:\Windows\System32\wow64win.dll 10.0.14393.1884 (rs1_release.171101-1233) Microsoft Corporation Wow64 Console and Win32 API Logging 131795770645660929 0x5c100000 40960 C:\Windows\System32\wow64cpu.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation AMD64 Wow64 CPU 131795770645660929 0x6e8b0000 1859584 C:\Windows\SysWOW64\mfmp4srcsnk.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL источника и приемника MPEG4 Media Foundation 131795770645660929 0x6ef30000 647168 C:\Windows\SysWOW64\evr.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека DLL средства отображения видео 131795770645660929 0x6efd0000 458752 C:\Windows\SysWOW64\msauddecmft.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Media Foundation Audio Decoders 131795770645660929 0x6f790000 1085440 C:\Windows\SysWOW64\mfperfhelper.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation MFPerf DLL 131795770645660929 0x6f8a0000 2220032 C:\Windows\SysWOW64\msmpeg2vdec.dll 10.0.14393.953 (rs1_release_inmarket.170303-1614) Microsoft Corporation Microsoft DTV-DVD Video Decoder 131795770645660929 0x6fac0000 1130496 C:\Windows\SysWOW64\mfplat.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Media Foundation Platform DLL 131795770645660929 0x6ff60000 172032 C:\Windows\SysWOW64\RTWorkQ.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL для WorkQueue реального времени 131795770645660929 0x70030000 593920 C:\Users\User\AppData\Local\Yandex\YandexBrowser\Application\18.6.1.770\browser_elf.dll 18.6.1.770 YANDEX LLC Yandex 131795770645660929 0x700d0000 434176 C:\Windows\SysWOW64\WINSPOOL.DRV 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Драйвер диспетчера очереди Windows 131795770645660929 0x70340000 536576 C:\Windows\SysWOW64\dxgi.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation DirectX Graphics Infrastructure 131795770645660929 0x703d0000 2056192 C:\Windows\SysWOW64\DWrite.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Службы Microsoft DirectX Typography 131795770645660929 0x707d0000 86016 C:\Windows\SysWOW64\SAMCLI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Security Accounts Manager Client DLL 131795770645660929 0x70a20000 94208 C:\Windows\SysWOW64\USP10.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Uniscribe Unicode script processor 131795770645660929 0x70ca0000 45056 C:\Windows\SysWOW64\NETUTILS.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API Helpers DLL 131795770645660929 0x70fd0000 1331200 C:\Windows\SysWOW64\dbghelp.dll 10.0.14321.1024 (rs1_release.160715-1616) Microsoft Windows Image Helper 131795770645660929 0x71140000 77824 C:\Windows\SysWOW64\NETAPI32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API DLL 131795770645660929 0x725e0000 2273280 C:\Windows\SysWOW64\iertutil.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служебная программа времени выполнения для Internet Explorer 131795770645660929 0x728e0000 1372160 C:\Windows\SysWOW64\PROPSYS.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Система страниц свойств (Майкрософт) 131795770645660929 0x72af0000 655360 C:\Windows\SysWOW64\WINHTTP.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Службы HTTP Windows 131795770645660929 0x72cc0000 1658880 C:\Windows\SysWOW64\urlmon.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширения OLE32 для Win32 131795770645660929 0x73ac0000 81920 C:\Windows\SysWOW64\dhcpcsvc.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служба DHCP-клиента 131795770645660929 0x73ae0000 40960 C:\Windows\SysWOW64\Secur32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Security Support Provider Interface 131795770645660929 0x73f00000 192512 C:\Windows\SysWOW64\IPHLPAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API вспомогательного приложения IP 131795770645660929 0x74190000 110592 C:\Windows\SysWOW64\bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795770645660929 0x741b0000 77824 C:\Windows\SysWOW64\cryptsp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Cryptographic Service Provider API 131795770645660929 0x741f0000 143360 C:\Windows\SysWOW64\WINMMBASE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base Multimedia Extension API DLL 131795770645660929 0x74230000 147456 C:\Windows\SysWOW64\WINMM.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation MCI API DLL 131795770645660929 0x744d0000 2138112 C:\Windows\WinSxS\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.14393.953_none_89c2555adb023171\COMCTL32.dll 6.10 (rs1_release_inmarket.170303-1614) Microsoft Corporation Библиотека элементов управления взаимодействия с пользователем 131795770645660929 0x746e0000 32768 C:\Windows\SysWOW64\VERSION.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Version Checking and File Installation Libraries 131795770645660929 0x746f0000 106496 C:\Windows\SysWOW64\USERENV.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Userenv 131795770645660929 0x747d0000 40960 C:\Windows\SysWOW64\CRYPTBASE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base cryptographic API DLL 131795770645660929 0x747e0000 126976 C:\Windows\SysWOW64\SspiCli.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Security Support Provider Interface 131795770645660929 0x74800000 151552 C:\Windows\SysWOW64\IMM32.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Multi-User Windows IMM32 API Client DLL 131795770645660929 0x74910000 2170880 C:\Windows\SysWOW64\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795770645660929 0x74b30000 53248 C:\Windows\SysWOW64\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795770645660929 0x74b60000 790528 C:\Windows\SysWOW64\RPCRT4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795770645660929 0x74c30000 1417216 C:\Windows\SysWOW64\gdi32full.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation GDI Client DLL 131795770645660929 0x74d90000 24576 C:\Windows\SysWOW64\PSAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Process Status Helper 131795770645660929 0x74da0000 778240 C:\Windows\SysWOW64\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795770645660929 0x74e60000 557056 C:\Windows\SysWOW64\shcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795770645660929 0x74f80000 278528 C:\Windows\SysWOW64\WINTRUST.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation Microsoft Trust Verification APIs 131795770645660929 0x74fd0000 405504 C:\Windows\SysWOW64\WS2_32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation 32-разрядная библиотека Windows Socket 2.0 131795770645660929 0x75040000 282624 C:\Windows\SysWOW64\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795770645660929 0x751d0000 57344 C:\Windows\SysWOW64\MSASN1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ASN.1 Runtime APIs 131795770645660929 0x751e0000 1708032 C:\Windows\SysWOW64\KERNELBASE.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645660929 0x75390000 266240 C:\Windows\SysWOW64\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795770645660929 0x753e0000 1560576 C:\Windows\SysWOW64\CRYPT32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API32 криптографии 131795770645660929 0x75560000 487424 C:\Windows\SysWOW64\ADVAPI32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795770645660929 0x756c0000 5693440 C:\Windows\SysWOW64\windows.storage.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API хранения Microsoft WinRT 131795770645660929 0x75c90000 286720 C:\Windows\SysWOW64\shlwapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека небольших программ оболочки 131795770645660929 0x75ce0000 20811776 C:\Windows\SysWOW64\SHELL32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Общая библиотека оболочки Windows 131795770645660929 0x774d0000 86016 C:\Windows\SysWOW64\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795770645660929 0x774f0000 61440 C:\Windows\SysWOW64\profapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Profile Basic API 131795770645660929 0x77560000 1437696 C:\Windows\SysWOW64\USER32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795770645660929 0x776c0000 368640 C:\Windows\SysWOW64\bcryptPrimitives.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation Windows Cryptographic Primitives Library 131795770645660929 0x77780000 503808 C:\Windows\SysWOW64\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645660929 0x77800000 606208 C:\Windows\SysWOW64\OLEAUT32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795770645660929 0x77ac0000 966656 C:\Windows\SysWOW64\ole32.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft OLE для Windows 131795770645660929 0x77bb0000 176128 C:\Windows\SysWOW64\GDI32.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation GDI Client DLL 131795770645660929 0x77be0000 937984 C:\Windows\SysWOW64\COMDLG32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека общих диалоговых окон 131795770645660929 0x77cd0000 221184 C:\Windows\SysWOW64\cfgmgr32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Configuration Manager DLL 131795770645660929 0x77d10000 28672 C:\Windows\SysWOW64\NSI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation NSI User-mode interface DLL 131795770645660929 0x77d20000 1585152 C:\Windows\SysWOW64\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 131795770645660929 0x7ffad0270000 1908736 C:\Windows\SYSTEM32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 88 10384 7744 57 00000000:0031f1da 131795755746873891 0 0 0 Обязательная метка\Ненадежный обязательный уровень WIN-0UOTFKKVN1S\User browser.exe C:\Users\User\AppData\Local\Yandex\YandexBrowser\Application\browser.exe "C:\Users\User\AppData\Local\Yandex\YandexBrowser\Application\browser.exe" --type=renderer --enable-in-process-wmf-demuxer --field-trial-handle=1292,9555382311565764851,7120838982649204725,131072 --enable-ignition --disable-gpu-compositing --service-pipe-token=7E669976FFDCEE94D9B90B02CADE1179 --lang=ru --user-id=32B2E0A1-3039-4C67-86BE-75A88EF21B54 --brand-id=yandex --partner-id=7924 --help-url=https://api.browser.yandex.ru/redirect/help/ --user-agent-info --translate-security-origin=https://translate.yandex.net --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --enable-instaserp --device-scale-factor=1 --num-raster-threads=1 --enable-compositor-image-animations --service-request-channel-token=7E669976FFDCEE94D9B90B02CADE1179 --renderer-client-id=112 --mojo-platform-channel-handle=5412 /prefetch:1 YANDEX LLC 18.6.1.770 Yandex 131795770645661053 0x10e0000 2519040 C:\Users\User\AppData\Local\Yandex\YandexBrowser\Application\browser.exe 18.6.1.770 YANDEX LLC Yandex 131795770645661053 0x58720000 59748352 C:\Users\User\AppData\Local\Yandex\YandexBrowser\Application\18.6.1.770\browser_child.dll 18.6.1.770 YANDEX LLC Yandex 131795770645661053 0x5c020000 335872 C:\Windows\System32\wow64.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation Win32 Emulation on NT64 131795770645661053 0x5c080000 487424 C:\Windows\System32\wow64win.dll 10.0.14393.1884 (rs1_release.171101-1233) Microsoft Corporation Wow64 Console and Win32 API Logging 131795770645661053 0x5c100000 40960 C:\Windows\System32\wow64cpu.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation AMD64 Wow64 CPU 131795770645661053 0x6e8b0000 1859584 C:\Windows\SysWOW64\mfmp4srcsnk.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL источника и приемника MPEG4 Media Foundation 131795770645661053 0x6ef30000 647168 C:\Windows\SysWOW64\evr.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека DLL средства отображения видео 131795770645661053 0x6efd0000 458752 C:\Windows\SysWOW64\msauddecmft.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Media Foundation Audio Decoders 131795770645661053 0x6f790000 1085440 C:\Windows\SysWOW64\mfperfhelper.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation MFPerf DLL 131795770645661053 0x6f8a0000 2220032 C:\Windows\SysWOW64\msmpeg2vdec.dll 10.0.14393.953 (rs1_release_inmarket.170303-1614) Microsoft Corporation Microsoft DTV-DVD Video Decoder 131795770645661053 0x6fac0000 1130496 C:\Windows\SysWOW64\mfplat.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Media Foundation Platform DLL 131795770645661053 0x6ff60000 172032 C:\Windows\SysWOW64\RTWorkQ.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL для WorkQueue реального времени 131795770645661053 0x70030000 593920 C:\Users\User\AppData\Local\Yandex\YandexBrowser\Application\18.6.1.770\browser_elf.dll 18.6.1.770 YANDEX LLC Yandex 131795770645661053 0x700d0000 434176 C:\Windows\SysWOW64\WINSPOOL.DRV 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Драйвер диспетчера очереди Windows 131795770645661053 0x70340000 536576 C:\Windows\SysWOW64\dxgi.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation DirectX Graphics Infrastructure 131795770645661053 0x703d0000 2056192 C:\Windows\SysWOW64\DWrite.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Службы Microsoft DirectX Typography 131795770645661053 0x707d0000 86016 C:\Windows\SysWOW64\SAMCLI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Security Accounts Manager Client DLL 131795770645661053 0x70a20000 94208 C:\Windows\SysWOW64\USP10.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Uniscribe Unicode script processor 131795770645661053 0x70ca0000 45056 C:\Windows\SysWOW64\NETUTILS.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API Helpers DLL 131795770645661053 0x70fd0000 1331200 C:\Windows\SysWOW64\dbghelp.dll 10.0.14321.1024 (rs1_release.160715-1616) Microsoft Windows Image Helper 131795770645661053 0x71140000 77824 C:\Windows\SysWOW64\NETAPI32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API DLL 131795770645661053 0x725e0000 2273280 C:\Windows\SysWOW64\iertutil.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служебная программа времени выполнения для Internet Explorer 131795770645661053 0x728e0000 1372160 C:\Windows\SysWOW64\PROPSYS.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Система страниц свойств (Майкрософт) 131795770645661053 0x72af0000 655360 C:\Windows\SysWOW64\WINHTTP.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Службы HTTP Windows 131795770645661053 0x72cc0000 1658880 C:\Windows\SysWOW64\urlmon.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширения OLE32 для Win32 131795770645661053 0x73ac0000 81920 C:\Windows\SysWOW64\dhcpcsvc.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служба DHCP-клиента 131795770645661053 0x73ae0000 40960 C:\Windows\SysWOW64\Secur32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Security Support Provider Interface 131795770645661053 0x73f00000 192512 C:\Windows\SysWOW64\IPHLPAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API вспомогательного приложения IP 131795770645661053 0x74190000 110592 C:\Windows\SysWOW64\bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795770645661053 0x741b0000 77824 C:\Windows\SysWOW64\cryptsp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Cryptographic Service Provider API 131795770645661053 0x741f0000 143360 C:\Windows\SysWOW64\WINMMBASE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base Multimedia Extension API DLL 131795770645661053 0x74230000 147456 C:\Windows\SysWOW64\WINMM.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation MCI API DLL 131795770645661053 0x744d0000 2138112 C:\Windows\WinSxS\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.14393.953_none_89c2555adb023171\COMCTL32.dll 6.10 (rs1_release_inmarket.170303-1614) Microsoft Corporation Библиотека элементов управления взаимодействия с пользователем 131795770645661053 0x746e0000 32768 C:\Windows\SysWOW64\VERSION.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Version Checking and File Installation Libraries 131795770645661053 0x746f0000 106496 C:\Windows\SysWOW64\USERENV.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Userenv 131795770645661053 0x747d0000 40960 C:\Windows\SysWOW64\CRYPTBASE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base cryptographic API DLL 131795770645661053 0x747e0000 126976 C:\Windows\SysWOW64\SspiCli.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Security Support Provider Interface 131795770645661053 0x74800000 151552 C:\Windows\SysWOW64\IMM32.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Multi-User Windows IMM32 API Client DLL 131795770645661053 0x74910000 2170880 C:\Windows\SysWOW64\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795770645661053 0x74b30000 53248 C:\Windows\SysWOW64\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795770645661053 0x74b60000 790528 C:\Windows\SysWOW64\RPCRT4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795770645661053 0x74c30000 1417216 C:\Windows\SysWOW64\gdi32full.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation GDI Client DLL 131795770645661053 0x74d90000 24576 C:\Windows\SysWOW64\PSAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Process Status Helper 131795770645661053 0x74da0000 778240 C:\Windows\SysWOW64\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795770645661053 0x74e60000 557056 C:\Windows\SysWOW64\shcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795770645661053 0x74f80000 278528 C:\Windows\SysWOW64\WINTRUST.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation Microsoft Trust Verification APIs 131795770645661053 0x74fd0000 405504 C:\Windows\SysWOW64\WS2_32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation 32-разрядная библиотека Windows Socket 2.0 131795770645661053 0x75040000 282624 C:\Windows\SysWOW64\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795770645661053 0x751d0000 57344 C:\Windows\SysWOW64\MSASN1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ASN.1 Runtime APIs 131795770645661053 0x751e0000 1708032 C:\Windows\SysWOW64\KERNELBASE.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645661053 0x75390000 266240 C:\Windows\SysWOW64\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795770645661053 0x753e0000 1560576 C:\Windows\SysWOW64\CRYPT32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API32 криптографии 131795770645661053 0x75560000 487424 C:\Windows\SysWOW64\ADVAPI32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795770645661053 0x756c0000 5693440 C:\Windows\SysWOW64\windows.storage.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API хранения Microsoft WinRT 131795770645661053 0x75c90000 286720 C:\Windows\SysWOW64\shlwapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека небольших программ оболочки 131795770645661053 0x75ce0000 20811776 C:\Windows\SysWOW64\SHELL32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Общая библиотека оболочки Windows 131795770645661053 0x774d0000 86016 C:\Windows\SysWOW64\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795770645661053 0x774f0000 61440 C:\Windows\SysWOW64\profapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Profile Basic API 131795770645661053 0x77560000 1437696 C:\Windows\SysWOW64\USER32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795770645661053 0x776c0000 368640 C:\Windows\SysWOW64\bcryptPrimitives.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation Windows Cryptographic Primitives Library 131795770645661053 0x77780000 503808 C:\Windows\SysWOW64\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645661053 0x77800000 606208 C:\Windows\SysWOW64\OLEAUT32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795770645661053 0x77ac0000 966656 C:\Windows\SysWOW64\ole32.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft OLE для Windows 131795770645661053 0x77bb0000 176128 C:\Windows\SysWOW64\GDI32.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation GDI Client DLL 131795770645661053 0x77be0000 937984 C:\Windows\SysWOW64\COMDLG32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека общих диалоговых окон 131795770645661053 0x77cd0000 221184 C:\Windows\SysWOW64\cfgmgr32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Configuration Manager DLL 131795770645661053 0x77d10000 28672 C:\Windows\SysWOW64\NSI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation NSI User-mode interface DLL 131795770645661053 0x77d20000 1585152 C:\Windows\SysWOW64\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 131795770645661053 0x7ffad0270000 1908736 C:\Windows\SYSTEM32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 90 6936 7744 57 00000000:0031f1da 131795756360200321 0 0 0 Обязательная метка\Ненадежный обязательный уровень WIN-0UOTFKKVN1S\User browser.exe C:\Users\User\AppData\Local\Yandex\YandexBrowser\Application\browser.exe "C:\Users\User\AppData\Local\Yandex\YandexBrowser\Application\browser.exe" --type=renderer --enable-in-process-wmf-demuxer --field-trial-handle=1292,9555382311565764851,7120838982649204725,131072 --enable-ignition --disable-gpu-compositing --service-pipe-token=73B8CB09F7D184AD1D3DDBFE4AFC07BA --lang=ru --user-id=32B2E0A1-3039-4C67-86BE-75A88EF21B54 --brand-id=yandex --partner-id=7924 --help-url=https://api.browser.yandex.ru/redirect/help/ --user-agent-info --translate-security-origin=https://translate.yandex.net --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --enable-instaserp --device-scale-factor=1 --num-raster-threads=1 --enable-compositor-image-animations --service-request-channel-token=73B8CB09F7D184AD1D3DDBFE4AFC07BA --renderer-client-id=116 --mojo-platform-channel-handle=4024 /prefetch:1 YANDEX LLC 18.6.1.770 Yandex 131795770645661289 0x10e0000 2519040 C:\Users\User\AppData\Local\Yandex\YandexBrowser\Application\browser.exe 18.6.1.770 YANDEX LLC Yandex 131795770645661289 0x58720000 59748352 C:\Users\User\AppData\Local\Yandex\YandexBrowser\Application\18.6.1.770\browser_child.dll 18.6.1.770 YANDEX LLC Yandex 131795770645661289 0x5c020000 335872 C:\Windows\System32\wow64.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation Win32 Emulation on NT64 131795770645661289 0x5c080000 487424 C:\Windows\System32\wow64win.dll 10.0.14393.1884 (rs1_release.171101-1233) Microsoft Corporation Wow64 Console and Win32 API Logging 131795770645661289 0x5c100000 40960 C:\Windows\System32\wow64cpu.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation AMD64 Wow64 CPU 131795770645661289 0x6e8b0000 1859584 C:\Windows\SysWOW64\mfmp4srcsnk.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL источника и приемника MPEG4 Media Foundation 131795770645661289 0x6ef30000 647168 C:\Windows\SysWOW64\evr.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека DLL средства отображения видео 131795770645661289 0x6efd0000 458752 C:\Windows\SysWOW64\msauddecmft.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Media Foundation Audio Decoders 131795770645661289 0x6f790000 1085440 C:\Windows\SysWOW64\mfperfhelper.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation MFPerf DLL 131795770645661289 0x6f8a0000 2220032 C:\Windows\SysWOW64\msmpeg2vdec.dll 10.0.14393.953 (rs1_release_inmarket.170303-1614) Microsoft Corporation Microsoft DTV-DVD Video Decoder 131795770645661289 0x6fac0000 1130496 C:\Windows\SysWOW64\mfplat.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Media Foundation Platform DLL 131795770645661289 0x6ff60000 172032 C:\Windows\SysWOW64\RTWorkQ.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL для WorkQueue реального времени 131795770645661289 0x70030000 593920 C:\Users\User\AppData\Local\Yandex\YandexBrowser\Application\18.6.1.770\browser_elf.dll 18.6.1.770 YANDEX LLC Yandex 131795770645661289 0x700d0000 434176 C:\Windows\SysWOW64\WINSPOOL.DRV 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Драйвер диспетчера очереди Windows 131795770645661289 0x70340000 536576 C:\Windows\SysWOW64\dxgi.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation DirectX Graphics Infrastructure 131795770645661289 0x703d0000 2056192 C:\Windows\SysWOW64\DWrite.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Службы Microsoft DirectX Typography 131795770645661289 0x707d0000 86016 C:\Windows\SysWOW64\SAMCLI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Security Accounts Manager Client DLL 131795770645661289 0x70a20000 94208 C:\Windows\SysWOW64\USP10.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Uniscribe Unicode script processor 131795770645661289 0x70ca0000 45056 C:\Windows\SysWOW64\NETUTILS.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API Helpers DLL 131795770645661289 0x70fd0000 1331200 C:\Windows\SysWOW64\dbghelp.dll 10.0.14321.1024 (rs1_release.160715-1616) Microsoft Windows Image Helper 131795770645661289 0x71140000 77824 C:\Windows\SysWOW64\NETAPI32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API DLL 131795770645661289 0x725e0000 2273280 C:\Windows\SysWOW64\iertutil.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служебная программа времени выполнения для Internet Explorer 131795770645661289 0x728e0000 1372160 C:\Windows\SysWOW64\PROPSYS.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Система страниц свойств (Майкрософт) 131795770645661289 0x72af0000 655360 C:\Windows\SysWOW64\WINHTTP.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Службы HTTP Windows 131795770645661289 0x72cc0000 1658880 C:\Windows\SysWOW64\urlmon.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширения OLE32 для Win32 131795770645661289 0x73ac0000 81920 C:\Windows\SysWOW64\dhcpcsvc.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служба DHCP-клиента 131795770645661289 0x73ae0000 40960 C:\Windows\SysWOW64\Secur32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Security Support Provider Interface 131795770645661289 0x73f00000 192512 C:\Windows\SysWOW64\IPHLPAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API вспомогательного приложения IP 131795770645661289 0x74190000 110592 C:\Windows\SysWOW64\bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795770645661289 0x741b0000 77824 C:\Windows\SysWOW64\cryptsp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Cryptographic Service Provider API 131795770645661289 0x741f0000 143360 C:\Windows\SysWOW64\WINMMBASE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base Multimedia Extension API DLL 131795770645661289 0x74230000 147456 C:\Windows\SysWOW64\WINMM.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation MCI API DLL 131795770645661289 0x744d0000 2138112 C:\Windows\WinSxS\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.14393.953_none_89c2555adb023171\COMCTL32.dll 6.10 (rs1_release_inmarket.170303-1614) Microsoft Corporation Библиотека элементов управления взаимодействия с пользователем 131795770645661289 0x746e0000 32768 C:\Windows\SysWOW64\VERSION.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Version Checking and File Installation Libraries 131795770645661289 0x746f0000 106496 C:\Windows\SysWOW64\USERENV.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Userenv 131795770645661289 0x747d0000 40960 C:\Windows\SysWOW64\CRYPTBASE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base cryptographic API DLL 131795770645661289 0x747e0000 126976 C:\Windows\SysWOW64\SspiCli.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Security Support Provider Interface 131795770645661289 0x74800000 151552 C:\Windows\SysWOW64\IMM32.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Multi-User Windows IMM32 API Client DLL 131795770645661289 0x74910000 2170880 C:\Windows\SysWOW64\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795770645661289 0x74b30000 53248 C:\Windows\SysWOW64\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795770645661289 0x74b60000 790528 C:\Windows\SysWOW64\RPCRT4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795770645661289 0x74c30000 1417216 C:\Windows\SysWOW64\gdi32full.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation GDI Client DLL 131795770645661289 0x74d90000 24576 C:\Windows\SysWOW64\PSAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Process Status Helper 131795770645661289 0x74da0000 778240 C:\Windows\SysWOW64\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795770645661289 0x74e60000 557056 C:\Windows\SysWOW64\shcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795770645661289 0x74f80000 278528 C:\Windows\SysWOW64\WINTRUST.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation Microsoft Trust Verification APIs 131795770645661289 0x74fd0000 405504 C:\Windows\SysWOW64\WS2_32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation 32-разрядная библиотека Windows Socket 2.0 131795770645661289 0x75040000 282624 C:\Windows\SysWOW64\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795770645661289 0x751d0000 57344 C:\Windows\SysWOW64\MSASN1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ASN.1 Runtime APIs 131795770645661289 0x751e0000 1708032 C:\Windows\SysWOW64\KERNELBASE.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645661289 0x75390000 266240 C:\Windows\SysWOW64\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795770645661289 0x753e0000 1560576 C:\Windows\SysWOW64\CRYPT32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API32 криптографии 131795770645661289 0x75560000 487424 C:\Windows\SysWOW64\ADVAPI32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795770645661289 0x756c0000 5693440 C:\Windows\SysWOW64\windows.storage.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API хранения Microsoft WinRT 131795770645661289 0x75c90000 286720 C:\Windows\SysWOW64\shlwapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека небольших программ оболочки 131795770645661289 0x75ce0000 20811776 C:\Windows\SysWOW64\SHELL32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Общая библиотека оболочки Windows 131795770645661289 0x774d0000 86016 C:\Windows\SysWOW64\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795770645661289 0x774f0000 61440 C:\Windows\SysWOW64\profapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Profile Basic API 131795770645661289 0x77560000 1437696 C:\Windows\SysWOW64\USER32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795770645661289 0x776c0000 368640 C:\Windows\SysWOW64\bcryptPrimitives.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation Windows Cryptographic Primitives Library 131795770645661289 0x77780000 503808 C:\Windows\SysWOW64\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645661289 0x77800000 606208 C:\Windows\SysWOW64\OLEAUT32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795770645661289 0x77ac0000 966656 C:\Windows\SysWOW64\ole32.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft OLE для Windows 131795770645661289 0x77bb0000 176128 C:\Windows\SysWOW64\GDI32.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation GDI Client DLL 131795770645661289 0x77be0000 937984 C:\Windows\SysWOW64\COMDLG32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека общих диалоговых окон 131795770645661289 0x77cd0000 221184 C:\Windows\SysWOW64\cfgmgr32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Configuration Manager DLL 131795770645661289 0x77d10000 28672 C:\Windows\SysWOW64\NSI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation NSI User-mode interface DLL 131795770645661289 0x77d20000 1585152 C:\Windows\SysWOW64\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 131795770645661289 0x7ffad0270000 1908736 C:\Windows\SYSTEM32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 98 6080 84 97 00000000:0031f1da 131795771125310655 0 0 0 Обязательная метка\Средний обязательный уровень WIN-0UOTFKKVN1S\User MCLauncher.exe C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe "C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe" 1.0 131795771127806606 0x400000 2830336 C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe 1.0 131795771129292604 0x750000 1462272 C:\Windows\System32\user32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795771335510731 0x11000000 1396736 C:\Users\User\AppData\Roaming\MCLauncher\libeay32.dll 1.0.2o The OpenSSL Project, http://www.openssl.org/ OpenSSL Shared Library 131795771334241016 0x12000000 360448 C:\Users\User\AppData\Roaming\MCLauncher\ssleay32.dll 1.0.2o The OpenSSL Project, http://www.openssl.org/ OpenSSL Shared Library 131795771129285523 0x5c020000 335872 C:\Windows\System32\wow64.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation Win32 Emulation on NT64 131795771129286235 0x5c080000 487424 C:\Windows\System32\wow64win.dll 10.0.14393.1884 (rs1_release.171101-1233) Microsoft Corporation Wow64 Console and Win32 API Logging 131795771129295328 0x5c100000 40960 C:\Windows\System32\wow64cpu.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation AMD64 Wow64 CPU 131795771135408057 0x60750000 1556480 C:\Program Files (x86)\360\Total Security\safemon\safemon.dll 8, 4, 0, 1420 Qihu 360 Software Co., Ltd. 360 Internet Security Internet Protection 131795771129575672 0x613d0000 667648 C:\Windows\WinSxS\x86_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.9247_none_5090cb78bcba4a35\msvcr90.dll 9.00.30729.9247 Microsoft Corporation Microsoft® C Runtime Library 131795771129398434 0x66680000 12288 C:\Windows\SysWOW64\sfc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows File Protection 131795771136825814 0x67500000 1597440 C:\Windows\SysWOW64\actxprxy.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation ActiveX Interface Marshaling Library 131795771129423112 0x67690000 61440 C:\Windows\SysWOW64\sfc_os.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows File Protection 131795771129349562 0x6b830000 2584576 C:\Windows\AppPatch\AcLayers.dll 10.0.14393.953 (rs1_release_inmarket.170303-1614) Microsoft Corporation Windows Compatibility DLL 131795771329638947 0x6c290000 987136 C:\Windows\SysWOW64\twinapi.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation twinapi.appcore 131795771329610149 0x6c390000 1126400 C:\Windows\SysWOW64\dcomp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft DirectComposition Library 131795771329592759 0x6c4b0000 278528 C:\Windows\SysWOW64\DataExchange.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation Data exchange 131795771136045859 0x6cda0000 528384 C:\Windows\SysWOW64\sxs.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Fusion 2.5 131795771131298623 0x6d180000 581632 C:\Windows\WinSxS\x86_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.9247_none_5090cb78bcba4a35\msvcp90.dll 9.00.30729.9247 Microsoft Corporation Microsoft® C++ Runtime Library 131795771136082794 0x6dca0000 176128 C:\Windows\SysWOW64\scrrun.dll 5.812.10240.16384 Microsoft Corporation Microsoft ® Script Runtime 131795771133718253 0x6dcd0000 606208 C:\Windows\WinSxS\x86_microsoft.windows.common-controls_6595b64144ccf1df_5.82.14393.447_none_5507ded2cb4f7f4c\comctl32.dll 6.10 (rs1_release_inmarket.170303-1614) Microsoft Corporation Библиотека элементов управления взаимодействия с пользователем 131795771129406131 0x700d0000 434176 C:\Windows\SysWOW64\winspool.drv 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Драйвер диспетчера очереди Windows 131795771329618480 0x70340000 536576 C:\Windows\SysWOW64\dxgi.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation DirectX Graphics Infrastructure 131795771329601483 0x707f0000 2293760 C:\Windows\SysWOW64\d3d11.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation Direct3D 11 Runtime 131795771336447829 0x70c30000 114688 C:\Windows\SysWOW64\srvcli.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Server Service Client DLL 131795771135435621 0x70ca0000 45056 C:\Windows\SysWOW64\netutils.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API Helpers DLL 131795771135446667 0x70cb0000 65536 C:\Windows\SysWOW64\wkscli.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Workstation Service Client DLL 131795771136073867 0x70e90000 147456 C:\Windows\SysWOW64\wshom.ocx 5.812.10240.16384 Microsoft Corporation Windows Script Host Runtime Library 131795771135423397 0x71140000 77824 C:\Windows\SysWOW64\netapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API DLL 131795771135552456 0x725e0000 2273280 C:\Windows\SysWOW64\iertutil.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служебная программа времени выполнения для Internet Explorer 131795771136181434 0x728e0000 1372160 C:\Windows\SysWOW64\propsys.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Система страниц свойств (Майкрософт) 131795771328759427 0x72b90000 126976 C:\Windows\SysWOW64\dwmapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Интерфейс API диспетчера окон рабочего стола (Майкрософт) 131795771135541570 0x72cc0000 1658880 C:\Windows\SysWOW64\urlmon.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширения OLE32 для Win32 131795771347140137 0x73a50000 299008 C:\Windows\SysWOW64\FWPUCLNT.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API пользовательского режима FWP/IPsec 131795771347110306 0x73ab0000 32768 C:\Windows\SysWOW64\rasadhlp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Remote Access AutoDial Helper 131795771135314174 0x73ae0000 40960 C:\Windows\SysWOW64\secur32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Security Support Provider Interface 131795771347090516 0x73f00000 192512 C:\Windows\SysWOW64\IPHLPAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API вспомогательного приложения IP 131795771347075776 0x73f30000 512000 C:\Windows\SysWOW64\dnsapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Динамическая библиотека API DNS-клиента 131795771328179609 0x73ff0000 319488 C:\Windows\SysWOW64\mswsock.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширение поставщика службы API Microsoft Windows Sockets 2.0 131795771130913562 0x74060000 192512 C:\Windows\SysWOW64\rsaenh.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Enhanced Cryptographic Provider 131795771135359123 0x74110000 479232 C:\Windows\SysWOW64\uxtheme.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека тем UxTheme (Microsoft) 131795771129415027 0x74190000 110592 C:\Windows\SysWOW64\bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795771130899582 0x741b0000 77824 C:\Windows\SysWOW64\cryptsp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Cryptographic Service Provider API 131795771133098293 0x741f0000 143360 C:\Windows\SysWOW64\winmmbase.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base Multimedia Extension API DLL 131795771132990161 0x74230000 147456 C:\Windows\SysWOW64\winmm.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation MCI API DLL 131795771131765102 0x746e0000 32768 C:\Windows\SysWOW64\version.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Version Checking and File Installation Libraries 131795771129389543 0x74710000 90112 C:\Windows\SysWOW64\mpr.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека маршрутизации для нескольких служб доступа 131795771129317462 0x74730000 598016 C:\Windows\SysWOW64\apphelp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиентская библиотека совместимости приложений 131795771129360685 0x747d0000 40960 C:\Windows\SysWOW64\cryptbase.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base cryptographic API DLL 131795771129360034 0x747e0000 126976 C:\Windows\SysWOW64\sspicli.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Security Support Provider Interface 131795771129496759 0x74800000 151552 C:\Windows\SysWOW64\imm32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Multi-User Windows IMM32 API Client DLL 131795771129358136 0x74830000 917504 C:\Windows\SysWOW64\ucrtbase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795771129357408 0x74910000 2170880 C:\Windows\SysWOW64\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795771129365891 0x74b30000 53248 C:\Windows\SysWOW64\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795771129359203 0x74b60000 790528 C:\Windows\SysWOW64\rpcrt4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795771129353720 0x74c30000 1417216 C:\Windows\SysWOW64\gdi32full.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation GDI Client DLL 131795771135412052 0x74d90000 24576 C:\Windows\SysWOW64\psapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Process Status Helper 131795771129350362 0x74da0000 778240 C:\Windows\SysWOW64\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795771129366695 0x74e60000 557056 C:\Windows\SysWOW64\SHCore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795771136054082 0x74ef0000 540672 C:\Windows\SysWOW64\clbcatq.dll 2001.12.10941.16384 (rs1_release.160715-1616) Microsoft Corporation COM+ Configuration Catalog 131795771131750596 0x74fd0000 405504 C:\Windows\SysWOW64\ws2_32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation 32-разрядная библиотека Windows Socket 2.0 131795771129363162 0x75040000 282624 C:\Windows\SysWOW64\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795771328737550 0x75090000 1265664 C:\Windows\SysWOW64\msctf.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Серверная библиотека MSCTF 131795771135228888 0x751d0000 57344 C:\Windows\SysWOW64\msasn1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ASN.1 Runtime APIs 131795771129301509 0x751e0000 1708032 C:\Windows\SysWOW64\KernelBase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795771129362062 0x75390000 266240 C:\Windows\SysWOW64\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795771135227735 0x753e0000 1560576 C:\Windows\SysWOW64\crypt32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API32 криптографии 131795771129363985 0x75560000 487424 C:\Windows\SysWOW64\advapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795771129356607 0x756c0000 5693440 C:\Windows\SysWOW64\windows.storage.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API хранения Microsoft WinRT 131795771129364960 0x75c90000 286720 C:\Windows\SysWOW64\shlwapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека небольших программ оболочки 131795771129354665 0x75ce0000 20811776 C:\Windows\SysWOW64\shell32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Общая библиотека оболочки Windows 131795771129370252 0x770c0000 4239360 C:\Windows\SysWOW64\setupapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Setup API 131795771129352041 0x774d0000 86016 C:\Windows\SysWOW64\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795771129367584 0x774f0000 61440 C:\Windows\SysWOW64\profapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Profile Basic API 131795771129351257 0x77560000 1437696 C:\Windows\SysWOW64\user32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795771129361361 0x776c0000 368640 C:\Windows\SysWOW64\bcryptprimitives.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation Windows Cryptographic Primitives Library 131795771129369244 0x77780000 503808 C:\Windows\SysWOW64\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795771129368545 0x77800000 606208 C:\Windows\SysWOW64\oleaut32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795771131168008 0x77ac0000 966656 C:\Windows\SysWOW64\ole32.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft OLE для Windows 131795771129352931 0x77bb0000 176128 C:\Windows\SysWOW64\gdi32.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation GDI Client DLL 131795771133704572 0x77be0000 937984 C:\Windows\SysWOW64\comdlg32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека общих диалоговых окон 131795771129355632 0x77cd0000 221184 C:\Windows\SysWOW64\cfgmgr32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Configuration Manager DLL 131795771347076821 0x77d10000 28672 C:\Windows\SysWOW64\nsi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation NSI User-mode interface DLL 131795771127807387 0x77d20000 1585152 C:\Windows\SysWOW64\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 131795771127807116 0x7ffad0270000 1908736 C:\Windows\System32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 104 12696 7744 57 00000000:0031f1da 131795777567759490 0 0 0 Обязательная метка\Низкий обязательный уровень WIN-0UOTFKKVN1S\User browser.exe C:\Users\User\AppData\Local\Yandex\YandexBrowser\Application\browser.exe "C:\Users\User\AppData\Local\Yandex\YandexBrowser\Application\browser.exe" --type=renderer --enable-in-process-wmf-demuxer --field-trial-handle=1292,9555382311565764851,7120838982649204725,131072 --enable-ignition --disable-gpu-compositing --service-pipe-token=E83DB721798C8A70C76CD26F6F4EE1BC --lang=ru --user-id=32B2E0A1-3039-4C67-86BE-75A88EF21B54 --brand-id=yandex --partner-id=7924 --help-url=https://api.browser.yandex.ru/redirect/help/ --user-agent-info --translate-security-origin=https://translate.yandex.net --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --enable-instaserp --device-scale-factor=1 --num-raster-threads=1 --enable-compositor-image-animations --service-request-channel-token=E83DB721798C8A70C76CD26F6F4EE1BC --renderer-client-id=119 --mojo-platform-channel-handle=7052 /prefetch:1 YANDEX LLC 18.6.1.770 Yandex 131795777567991690 0xc00000 1462272 C:\Windows\System32\user32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795777567961139 0x10e0000 2519040 C:\Users\User\AppData\Local\Yandex\YandexBrowser\Application\browser.exe 18.6.1.770 YANDEX LLC Yandex 131795777569452751 0x58720000 59748352 C:\Users\User\AppData\Local\Yandex\YandexBrowser\Application\18.6.1.770\browser_child.dll 18.6.1.770 YANDEX LLC Yandex 131795777567980184 0x5c020000 335872 C:\Windows\System32\wow64.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation Win32 Emulation on NT64 131795777567981270 0x5c080000 487424 C:\Windows\System32\wow64win.dll 10.0.14393.1884 (rs1_release.171101-1233) Microsoft Corporation Wow64 Console and Win32 API Logging 131795777567994943 0x5c100000 40960 C:\Windows\System32\wow64cpu.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation AMD64 Wow64 CPU 131795777570994535 0x6e8b0000 1859584 C:\Windows\SysWOW64\mfmp4srcsnk.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL источника и приемника MPEG4 Media Foundation 131795777570968696 0x6ef30000 647168 C:\Windows\SysWOW64\evr.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека DLL средства отображения видео 131795777570908362 0x6efd0000 458752 C:\Windows\SysWOW64\MSAudDecMFT.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Media Foundation Audio Decoders 131795777570920904 0x6f790000 1085440 C:\Windows\SysWOW64\mfperfhelper.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation MFPerf DLL 131795777570943637 0x6f8a0000 2220032 C:\Windows\SysWOW64\msmpeg2vdec.dll 10.0.14393.953 (rs1_release_inmarket.170303-1614) Microsoft Corporation Microsoft DTV-DVD Video Decoder 131795777570874151 0x6fac0000 1130496 C:\Windows\SysWOW64\mfplat.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Media Foundation Platform DLL 131795777570891841 0x6ff60000 172032 C:\Windows\SysWOW64\RTWorkQ.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL для WorkQueue реального времени 131795777568100773 0x70030000 593920 C:\Users\User\AppData\Local\Yandex\YandexBrowser\Application\18.6.1.770\browser_elf.dll 18.6.1.770 YANDEX LLC Yandex 131795777570569484 0x700d0000 434176 C:\Windows\SysWOW64\winspool.drv 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Драйвер диспетчера очереди Windows 131795777570619251 0x70340000 536576 C:\Windows\SysWOW64\dxgi.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation DirectX Graphics Infrastructure 131795777570607590 0x703d0000 2056192 C:\Windows\SysWOW64\DWrite.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Службы Microsoft DirectX Typography 131795777570676211 0x707d0000 86016 C:\Windows\SysWOW64\samcli.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Security Accounts Manager Client DLL 131795777570557202 0x70a20000 94208 C:\Windows\SysWOW64\usp10.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Uniscribe Unicode script processor 131795777570691164 0x70ca0000 45056 C:\Windows\SysWOW64\netutils.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API Helpers DLL 131795777570539079 0x70fd0000 1331200 C:\Windows\SysWOW64\dbghelp.dll 10.0.14321.1024 (rs1_release.160715-1616) Microsoft Windows Image Helper 131795777569494420 0x71140000 77824 C:\Windows\SysWOW64\netapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API DLL 131795777570658737 0x725e0000 2273280 C:\Windows\SysWOW64\iertutil.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служебная программа времени выполнения для Internet Explorer 131795777569526517 0x728e0000 1372160 C:\Windows\SysWOW64\propsys.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Система страниц свойств (Майкрософт) 131795777569154123 0x72af0000 655360 C:\Windows\SysWOW64\winhttp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Службы HTTP Windows 131795777570594964 0x72cc0000 1658880 C:\Windows\SysWOW64\urlmon.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширения OLE32 для Win32 131795777570630821 0x73ac0000 81920 C:\Windows\SysWOW64\dhcpcsvc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служба DHCP-клиента 131795777570523174 0x73ae0000 40960 C:\Windows\SysWOW64\secur32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Security Support Provider Interface 131795777570582120 0x73f00000 192512 C:\Windows\SysWOW64\IPHLPAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API вспомогательного приложения IP 131795777570646486 0x74190000 110592 C:\Windows\SysWOW64\bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795777570953652 0x741b0000 77824 C:\Windows\SysWOW64\cryptsp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Cryptographic Service Provider API 131795777569213807 0x741f0000 143360 C:\Windows\SysWOW64\winmmbase.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base Multimedia Extension API DLL 131795777568156054 0x74230000 147456 C:\Windows\SysWOW64\winmm.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation MCI API DLL 131795777569481011 0x744d0000 2138112 C:\Windows\WinSxS\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.14393.953_none_89c2555adb023171\comctl32.dll 6.10 (rs1_release_inmarket.170303-1614) Microsoft Corporation Библиотека элементов управления взаимодействия с пользователем 131795777568142933 0x746e0000 32768 C:\Windows\SysWOW64\version.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Version Checking and File Installation Libraries 131795777568179155 0x746f0000 106496 C:\Windows\SysWOW64\userenv.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Userenv 131795777568043561 0x747d0000 40960 C:\Windows\SysWOW64\cryptbase.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base cryptographic API DLL 131795777568042430 0x747e0000 126976 C:\Windows\SysWOW64\sspicli.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Security Support Provider Interface 131795777569239058 0x74800000 151552 C:\Windows\SysWOW64\imm32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Multi-User Windows IMM32 API Client DLL 131795777568075566 0x74830000 917504 C:\Windows\SysWOW64\ucrtbase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795777568073430 0x74910000 2170880 C:\Windows\SysWOW64\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795777568086784 0x74b30000 53248 C:\Windows\SysWOW64\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795777568041126 0x74b60000 790528 C:\Windows\SysWOW64\rpcrt4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795777568081914 0x74c30000 1417216 C:\Windows\SysWOW64\gdi32full.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation GDI Client DLL 131795777568046844 0x74d90000 24576 C:\Windows\SysWOW64\psapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Process Status Helper 131795777568038347 0x74da0000 778240 C:\Windows\SysWOW64\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795777568088134 0x74e60000 557056 C:\Windows\SysWOW64\SHCore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795777569468247 0x74f80000 278528 C:\Windows\SysWOW64\wintrust.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation Microsoft Trust Verification APIs 131795777569466798 0x74fd0000 405504 C:\Windows\SysWOW64\ws2_32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation 32-разрядная библиотека Windows Socket 2.0 131795777568077279 0x75040000 282624 C:\Windows\SysWOW64\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795777569469408 0x751d0000 57344 C:\Windows\SysWOW64\msasn1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ASN.1 Runtime APIs 131795777568024100 0x751e0000 1708032 C:\Windows\SysWOW64\KernelBase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795777568039823 0x75390000 266240 C:\Windows\SysWOW64\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795777569470854 0x753e0000 1560576 C:\Windows\SysWOW64\crypt32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API32 криптографии 131795777568036731 0x75560000 487424 C:\Windows\SysWOW64\advapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795777568054568 0x756c0000 5693440 C:\Windows\SysWOW64\windows.storage.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API хранения Microsoft WinRT 131795777568078714 0x75c90000 286720 C:\Windows\SysWOW64\shlwapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека небольших программ оболочки 131795777568050811 0x75ce0000 20811776 C:\Windows\SysWOW64\shell32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Общая библиотека оболочки Windows 131795777568084892 0x774d0000 86016 C:\Windows\SysWOW64\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795777568089486 0x774f0000 61440 C:\Windows\SysWOW64\profapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Profile Basic API 131795777568083413 0x77560000 1437696 C:\Windows\SysWOW64\user32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795777568044758 0x776c0000 368640 C:\Windows\SysWOW64\bcryptprimitives.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation Windows Cryptographic Primitives Library 131795777569464930 0x77780000 503808 C:\Windows\SysWOW64\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795777569463567 0x77800000 606208 C:\Windows\SysWOW64\oleaut32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795777568116745 0x77ac0000 966656 C:\Windows\SysWOW64\ole32.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft OLE для Windows 131795777568080182 0x77bb0000 176128 C:\Windows\SysWOW64\gdi32.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation GDI Client DLL 131795777569457550 0x77be0000 937984 C:\Windows\SysWOW64\comdlg32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека общих диалоговых окон 131795777568052363 0x77cd0000 221184 C:\Windows\SysWOW64\cfgmgr32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Configuration Manager DLL 131795777570632192 0x77d10000 28672 C:\Windows\SysWOW64\nsi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation NSI User-mode interface DLL 131795777567961904 0x77d20000 1585152 C:\Windows\SysWOW64\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 131795777567961630 0x7ffad0270000 1908736 C:\Windows\System32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 106 5556 7744 57 00000000:0031f1da 131795777595302537 0 0 0 Обязательная метка\Низкий обязательный уровень WIN-0UOTFKKVN1S\User browser.exe C:\Users\User\AppData\Local\Yandex\YandexBrowser\Application\browser.exe "C:\Users\User\AppData\Local\Yandex\YandexBrowser\Application\browser.exe" --type=renderer --enable-in-process-wmf-demuxer --field-trial-handle=1292,9555382311565764851,7120838982649204725,131072 --enable-ignition --disable-gpu-compositing --service-pipe-token=3ADFA2396247AD5E547F61590603D06D --lang=ru --user-id=32B2E0A1-3039-4C67-86BE-75A88EF21B54 --brand-id=yandex --partner-id=7924 --help-url=https://api.browser.yandex.ru/redirect/help/ --user-agent-info --translate-security-origin=https://translate.yandex.net --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --enable-instaserp --device-scale-factor=1 --num-raster-threads=1 --enable-compositor-image-animations --service-request-channel-token=3ADFA2396247AD5E547F61590603D06D --renderer-client-id=121 --mojo-platform-channel-handle=6636 /prefetch:1 YANDEX LLC 18.6.1.770 Yandex 131795777595490187 0x1020000 704512 C:\Windows\System32\kernel32.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795777595475498 0x10e0000 2519040 C:\Users\User\AppData\Local\Yandex\YandexBrowser\Application\browser.exe 18.6.1.770 YANDEX LLC Yandex 131795777595491301 0x5550000 1462272 C:\Windows\System32\user32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795777596381097 0x58720000 59748352 C:\Users\User\AppData\Local\Yandex\YandexBrowser\Application\18.6.1.770\browser_child.dll 18.6.1.770 YANDEX LLC Yandex 131795777595481485 0x5c020000 335872 C:\Windows\System32\wow64.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation Win32 Emulation on NT64 131795777595482474 0x5c080000 487424 C:\Windows\System32\wow64win.dll 10.0.14393.1884 (rs1_release.171101-1233) Microsoft Corporation Wow64 Console and Win32 API Logging 131795777595494304 0x5c100000 40960 C:\Windows\System32\wow64cpu.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation AMD64 Wow64 CPU 131795777597543015 0x6e8b0000 1859584 C:\Windows\SysWOW64\mfmp4srcsnk.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL источника и приемника MPEG4 Media Foundation 131795777597521210 0x6ef30000 647168 C:\Windows\SysWOW64\evr.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека DLL средства отображения видео 131795777597472595 0x6efd0000 458752 C:\Windows\SysWOW64\MSAudDecMFT.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Media Foundation Audio Decoders 131795777597484525 0x6f790000 1085440 C:\Windows\SysWOW64\mfperfhelper.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation MFPerf DLL 131795777597497517 0x6f8a0000 2220032 C:\Windows\SysWOW64\msmpeg2vdec.dll 10.0.14393.953 (rs1_release_inmarket.170303-1614) Microsoft Corporation Microsoft DTV-DVD Video Decoder 131795777597428793 0x6fac0000 1130496 C:\Windows\SysWOW64\mfplat.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Media Foundation Platform DLL 131795777597448444 0x6ff60000 172032 C:\Windows\SysWOW64\RTWorkQ.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL для WorkQueue реального времени 131795777595565558 0x70030000 593920 C:\Users\User\AppData\Local\Yandex\YandexBrowser\Application\18.6.1.770\browser_elf.dll 18.6.1.770 YANDEX LLC Yandex 131795777597103476 0x700d0000 434176 C:\Windows\SysWOW64\winspool.drv 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Драйвер диспетчера очереди Windows 131795777597165296 0x70340000 536576 C:\Windows\SysWOW64\dxgi.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation DirectX Graphics Infrastructure 131795777597153510 0x703d0000 2056192 C:\Windows\SysWOW64\DWrite.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Службы Microsoft DirectX Typography 131795777597221087 0x707d0000 86016 C:\Windows\SysWOW64\samcli.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Security Accounts Manager Client DLL 131795777597072535 0x70a20000 94208 C:\Windows\SysWOW64\usp10.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Uniscribe Unicode script processor 131795777597233493 0x70ca0000 45056 C:\Windows\SysWOW64\netutils.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API Helpers DLL 131795777597059294 0x70fd0000 1331200 C:\Windows\SysWOW64\dbghelp.dll 10.0.14321.1024 (rs1_release.160715-1616) Microsoft Windows Image Helper 131795777596424202 0x71140000 77824 C:\Windows\SysWOW64\netapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API DLL 131795777597205195 0x725e0000 2273280 C:\Windows\SysWOW64\iertutil.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служебная программа времени выполнения для Internet Explorer 131795777596436120 0x728e0000 1372160 C:\Windows\SysWOW64\propsys.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Система страниц свойств (Майкрософт) 131795777596128973 0x72af0000 655360 C:\Windows\SysWOW64\winhttp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Службы HTTP Windows 131795777597128037 0x72cc0000 1658880 C:\Windows\SysWOW64\urlmon.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширения OLE32 для Win32 131795777597177209 0x73ac0000 81920 C:\Windows\SysWOW64\dhcpcsvc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служба DHCP-клиента 131795777597044137 0x73ae0000 40960 C:\Windows\SysWOW64\secur32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Security Support Provider Interface 131795777597116160 0x73f00000 192512 C:\Windows\SysWOW64\IPHLPAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API вспомогательного приложения IP 131795777597192860 0x74190000 110592 C:\Windows\SysWOW64\bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795777597506812 0x741b0000 77824 C:\Windows\SysWOW64\cryptsp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Cryptographic Service Provider API 131795777596148547 0x741f0000 143360 C:\Windows\SysWOW64\winmmbase.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base Multimedia Extension API DLL 131795777595627397 0x74230000 147456 C:\Windows\SysWOW64\winmm.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation MCI API DLL 131795777596410831 0x744d0000 2138112 C:\Windows\WinSxS\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.14393.953_none_89c2555adb023171\comctl32.dll 6.10 (rs1_release_inmarket.170303-1614) Microsoft Corporation Библиотека элементов управления взаимодействия с пользователем 131795777595610560 0x746e0000 32768 C:\Windows\SysWOW64\version.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Version Checking and File Installation Libraries 131795777595638942 0x746f0000 106496 C:\Windows\SysWOW64\userenv.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Userenv 131795777595529014 0x747d0000 40960 C:\Windows\SysWOW64\cryptbase.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base cryptographic API DLL 131795777595527983 0x747e0000 126976 C:\Windows\SysWOW64\sspicli.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Security Support Provider Interface 131795777596182171 0x74800000 151552 C:\Windows\SysWOW64\imm32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Multi-User Windows IMM32 API Client DLL 131795777595541526 0x74830000 917504 C:\Windows\SysWOW64\ucrtbase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795777595540326 0x74910000 2170880 C:\Windows\SysWOW64\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795777595551866 0x74b30000 53248 C:\Windows\SysWOW64\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795777595526606 0x74b60000 790528 C:\Windows\SysWOW64\rpcrt4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795777595547732 0x74c30000 1417216 C:\Windows\SysWOW64\gdi32full.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation GDI Client DLL 131795777595531563 0x74d90000 24576 C:\Windows\SysWOW64\psapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Process Status Helper 131795777595524005 0x74da0000 778240 C:\Windows\SysWOW64\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795777595553384 0x74e60000 557056 C:\Windows\SysWOW64\SHCore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795777596396507 0x74f80000 278528 C:\Windows\SysWOW64\wintrust.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation Microsoft Trust Verification APIs 131795777596394953 0x74fd0000 405504 C:\Windows\SysWOW64\ws2_32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation 32-разрядная библиотека Windows Socket 2.0 131795777595543299 0x75040000 282624 C:\Windows\SysWOW64\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795777596397607 0x751d0000 57344 C:\Windows\SysWOW64\msasn1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ASN.1 Runtime APIs 131795777595508927 0x751e0000 1708032 C:\Windows\SysWOW64\KernelBase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795777595525398 0x75390000 266240 C:\Windows\SysWOW64\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795777596398892 0x753e0000 1560576 C:\Windows\SysWOW64\crypt32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API32 криптографии 131795777595522182 0x75560000 487424 C:\Windows\SysWOW64\advapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795777595538927 0x756c0000 5693440 C:\Windows\SysWOW64\windows.storage.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API хранения Microsoft WinRT 131795777595544568 0x75c90000 286720 C:\Windows\SysWOW64\shlwapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека небольших программ оболочки 131795777595535397 0x75ce0000 20811776 C:\Windows\SysWOW64\shell32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Общая библиотека оболочки Windows 131795777595550455 0x774d0000 86016 C:\Windows\SysWOW64\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795777595554628 0x774f0000 61440 C:\Windows\SysWOW64\profapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Profile Basic API 131795777595549128 0x77560000 1437696 C:\Windows\SysWOW64\user32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795777595530150 0x776c0000 368640 C:\Windows\SysWOW64\bcryptprimitives.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation Windows Cryptographic Primitives Library 131795777596393437 0x77780000 503808 C:\Windows\SysWOW64\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795777596392132 0x77800000 606208 C:\Windows\SysWOW64\oleaut32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795777595583766 0x77ac0000 966656 C:\Windows\SysWOW64\ole32.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft OLE для Windows 131795777595545878 0x77bb0000 176128 C:\Windows\SysWOW64\gdi32.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation GDI Client DLL 131795777596385979 0x77be0000 937984 C:\Windows\SysWOW64\comdlg32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека общих диалоговых окон 131795777595536930 0x77cd0000 221184 C:\Windows\SysWOW64\cfgmgr32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Configuration Manager DLL 131795777597178434 0x77d10000 28672 C:\Windows\SysWOW64\nsi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation NSI User-mode interface DLL 131795777595476066 0x77d20000 1585152 C:\Windows\SysWOW64\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 131795777595475814 0x7ffad0270000 1908736 C:\Windows\System32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 107 12560 7744 57 00000000:0031f1da 131795777638339022 131795778158128556 0 0 Обязательная метка\Низкий обязательный уровень WIN-0UOTFKKVN1S\User browser.exe C:\Users\User\AppData\Local\Yandex\YandexBrowser\Application\browser.exe "C:\Users\User\AppData\Local\Yandex\YandexBrowser\Application\browser.exe" --type=utility --field-trial-handle=1292,9555382311565764851,7120838982649204725,131072 --lang=ru --service-sandbox-type=utility --utility-allowed-dir="C:\Users\User\AppData\Local\Yandex\YandexBrowser\User Data\file_rating" --utility-enable-file-rating --user-id=32B2E0A1-3039-4C67-86BE-75A88EF21B54 --brand-id=yandex --partner-id=7924 --service-request-channel-token=641C5D89318E923EF94DCE862505059D --process-name="Антивирусная проверка загруженных файлов" --mojo-platform-channel-handle=6132 --ignored=" --type=renderer " /prefetch:8 YANDEX LLC 18.6.1.770 Yandex 131795777638514999 0x9a0000 1462272 C:\Windows\System32\user32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795777638499252 0x10e0000 2519040 C:\Users\User\AppData\Local\Yandex\YandexBrowser\Application\browser.exe 18.6.1.770 YANDEX LLC Yandex 131795777640777675 0x58720000 59748352 C:\Users\User\AppData\Local\Yandex\YandexBrowser\Application\18.6.1.770\browser_child.dll 18.6.1.770 YANDEX LLC Yandex 131795777638505336 0x5c020000 335872 C:\Windows\System32\wow64.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation Win32 Emulation on NT64 131795777638506616 0x5c080000 487424 C:\Windows\System32\wow64win.dll 10.0.14393.1884 (rs1_release.171101-1233) Microsoft Corporation Wow64 Console and Win32 API Logging 131795777638520771 0x5c100000 40960 C:\Windows\System32\wow64cpu.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation AMD64 Wow64 CPU 131795777643013198 0x68970000 1605632 C:\Users\User\AppData\Local\Yandex\YandexBrowser\Application\18.6.1.770\7z.dll 16.04 Igor Pavlov 7z Plugin 131795777644063584 0x6cea0000 741376 C:\Users\User\AppData\Local\Yandex\YandexBrowser\Application\18.6.1.770\unpacki.dll 131795777644499194 0x6d050000 188416 C:\Users\User\AppData\Local\Yandex\YandexBrowser\Application\18.6.1.770\ph.dll 1.0.0.3 Yandex LLC PH 131795777638678022 0x70030000 593920 C:\Users\User\AppData\Local\Yandex\YandexBrowser\Application\18.6.1.770\browser_elf.dll 18.6.1.770 YANDEX LLC Yandex 131795777641007171 0x700d0000 434176 C:\Windows\SysWOW64\winspool.drv 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Драйвер диспетчера очереди Windows 131795777641094369 0x70340000 536576 C:\Windows\SysWOW64\dxgi.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation DirectX Graphics Infrastructure 131795777641078940 0x703d0000 2056192 C:\Windows\SysWOW64\DWrite.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Службы Microsoft DirectX Typography 131795777641162760 0x707d0000 86016 C:\Windows\SysWOW64\samcli.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Security Accounts Manager Client DLL 131795777640993878 0x70a20000 94208 C:\Windows\SysWOW64\usp10.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Uniscribe Unicode script processor 131795777641193425 0x70ca0000 45056 C:\Windows\SysWOW64\netutils.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API Helpers DLL 131795777640980953 0x70fd0000 1331200 C:\Windows\SysWOW64\dbghelp.dll 10.0.14321.1024 (rs1_release.160715-1616) Microsoft Windows Image Helper 131795777640934358 0x71140000 77824 C:\Windows\SysWOW64\netapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API DLL 131795777641144289 0x725e0000 2273280 C:\Windows\SysWOW64\iertutil.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служебная программа времени выполнения для Internet Explorer 131795777640949510 0x728e0000 1372160 C:\Windows\SysWOW64\propsys.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Система страниц свойств (Майкрософт) 131795777638805651 0x72af0000 655360 C:\Windows\SysWOW64\winhttp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Службы HTTP Windows 131795777641060291 0x72cc0000 1658880 C:\Windows\SysWOW64\urlmon.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширения OLE32 для Win32 131795777641111375 0x73ac0000 81920 C:\Windows\SysWOW64\dhcpcsvc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служба DHCP-клиента 131795777640964374 0x73ae0000 40960 C:\Windows\SysWOW64\secur32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Security Support Provider Interface 131795777641045959 0x73f00000 192512 C:\Windows\SysWOW64\IPHLPAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API вспомогательного приложения IP 131795777641129849 0x74190000 110592 C:\Windows\SysWOW64\bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795777638824119 0x741f0000 143360 C:\Windows\SysWOW64\winmmbase.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base Multimedia Extension API DLL 131795777638777842 0x74230000 147456 C:\Windows\SysWOW64\winmm.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation MCI API DLL 131795777640905386 0x744d0000 2138112 C:\Windows\WinSxS\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.14393.953_none_89c2555adb023171\comctl32.dll 6.10 (rs1_release_inmarket.170303-1614) Microsoft Corporation Библиотека элементов управления взаимодействия с пользователем 131795777638757989 0x746e0000 32768 C:\Windows\SysWOW64\version.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Version Checking and File Installation Libraries 131795777638790654 0x746f0000 106496 C:\Windows\SysWOW64\userenv.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Userenv 131795777638640639 0x747d0000 40960 C:\Windows\SysWOW64\cryptbase.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base cryptographic API DLL 131795777638639616 0x747e0000 126976 C:\Windows\SysWOW64\sspicli.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Security Support Provider Interface 131795777638865082 0x74800000 151552 C:\Windows\SysWOW64\imm32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Multi-User Windows IMM32 API Client DLL 131795777638653602 0x74830000 917504 C:\Windows\SysWOW64\ucrtbase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795777638652361 0x74910000 2170880 C:\Windows\SysWOW64\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795777638664931 0x74b30000 53248 C:\Windows\SysWOW64\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795777638638334 0x74b60000 790528 C:\Windows\SysWOW64\rpcrt4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795777638660518 0x74c30000 1417216 C:\Windows\SysWOW64\gdi32full.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation GDI Client DLL 131795777638643504 0x74d90000 24576 C:\Windows\SysWOW64\psapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Process Status Helper 131795777638635699 0x74da0000 778240 C:\Windows\SysWOW64\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795777638666147 0x74e60000 557056 C:\Windows\SysWOW64\SHCore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795777640885499 0x74f80000 278528 C:\Windows\SysWOW64\wintrust.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation Microsoft Trust Verification APIs 131795777640884150 0x74fd0000 405504 C:\Windows\SysWOW64\ws2_32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation 32-разрядная библиотека Windows Socket 2.0 131795777638655024 0x75040000 282624 C:\Windows\SysWOW64\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795777640887705 0x751d0000 57344 C:\Windows\SysWOW64\msasn1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ASN.1 Runtime APIs 131795777638622442 0x751e0000 1708032 C:\Windows\SysWOW64\KernelBase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795777638636998 0x75390000 266240 C:\Windows\SysWOW64\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795777640890927 0x753e0000 1560576 C:\Windows\SysWOW64\crypt32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API32 криптографии 131795777638634183 0x75560000 487424 C:\Windows\SysWOW64\advapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795777638650757 0x756c0000 5693440 C:\Windows\SysWOW64\windows.storage.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API хранения Microsoft WinRT 131795777638657739 0x75c90000 286720 C:\Windows\SysWOW64\shlwapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека небольших программ оболочки 131795777638647299 0x75ce0000 20811776 C:\Windows\SysWOW64\shell32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Общая библиотека оболочки Windows 131795777638663396 0x774d0000 86016 C:\Windows\SysWOW64\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795777638667522 0x774f0000 61440 C:\Windows\SysWOW64\profapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Profile Basic API 131795777638661911 0x77560000 1437696 C:\Windows\SysWOW64\user32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795777638641764 0x776c0000 368640 C:\Windows\SysWOW64\bcryptprimitives.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation Windows Cryptographic Primitives Library 131795777640882612 0x77780000 503808 C:\Windows\SysWOW64\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795777640878814 0x77800000 606208 C:\Windows\SysWOW64\oleaut32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795777638718043 0x77ac0000 966656 C:\Windows\SysWOW64\ole32.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft OLE для Windows 131795777638659168 0x77bb0000 176128 C:\Windows\SysWOW64\gdi32.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation GDI Client DLL 131795777640867696 0x77be0000 937984 C:\Windows\SysWOW64\comdlg32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека общих диалоговых окон 131795777638648757 0x77cd0000 221184 C:\Windows\SysWOW64\cfgmgr32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Configuration Manager DLL 131795777641112838 0x77d10000 28672 C:\Windows\SysWOW64\nsi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation NSI User-mode interface DLL 131795777638499795 0x77d20000 1585152 C:\Windows\SysWOW64\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 131795777638499542 0x7ffad0270000 1908736 C:\Windows\System32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 108 2436 4048 3 00000000:000003e7 131795777644009218 131795779784342380 0 1 Обязательная метка\Обязательный уровень системы NT AUTHORITY\СИСТЕМА SearchProtocolHost.exe C:\Windows\system32\SearchProtocolHost.exe "C:\Windows\system32\SearchProtocolHost.exe" Global\UsGthrFltPipeMssGthrPipe286_ Global\UsGthrCtrlFltPipeMssGthrPipe286 1 -2147483646 "Software\Microsoft\Windows Search" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT; MS Search 4.0 Robot)" "C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc" "DownLevelDaemon" Microsoft Corporation 7.0.14393.2125 (rs1_release.180301-2139) Microsoft Windows Search Protocol Host 131795777645159014 0x7ff71ad80000 368640 C:\Windows\System32\SearchProtocolHost.exe 7.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation Microsoft Windows Search Protocol Host 131795777646253333 0x7ffab7a00000 3424256 C:\Windows\System32\tquery.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Запросы Microsoft Tripoli 131795777674143166 0x7ffabaf70000 270336 C:\Windows\System32\edputil.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служебная программа EDP 131795777653911361 0x7ffac2960000 143360 C:\Windows\System32\mssprxy.dll 7.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation Microsoft Search Proxy 131795777653958760 0x7ffac7cd0000 192512 C:\Windows\System32\mssph.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Обработчик протоколов поиска Microsoft 131795777646404209 0x7ffac7e40000 28672 C:\Windows\System32\msidle.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Idle Monitor 131795777672706217 0x7ffaca340000 1593344 C:\Windows\System32\propsys.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Система страниц свойств (Майкрософт) 131795777662406241 0x7ffacb420000 204800 C:\Windows\System32\ntmarta.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик Windows NT MARTA 131795777654238495 0x7ffacb960000 303104 C:\Windows\System32\authz.dll 10.0.14393.1737 (rs1_release_inmarket.170914-1249) Microsoft Corporation Authorization Framework 131795777646239073 0x7ffacc6e0000 61440 C:\Windows\System32\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795777646227946 0x7ffacc6f0000 311296 C:\Windows\System32\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795777646240001 0x7ffacc740000 81920 C:\Windows\System32\profapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Profile Basic API 131795777646230573 0x7ffacc770000 1572864 C:\Windows\System32\gdi32full.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation GDI Client DLL 131795777646209419 0x7ffacc8f0000 1003520 C:\Windows\System32\ucrtbase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795777646219266 0x7ffacc9f0000 434176 C:\Windows\System32\bcryptprimitives.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Cryptographic Primitives Library 131795777646236729 0x7ffacca60000 122880 C:\Windows\System32\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795777646225633 0x7ffaccae0000 692224 C:\Windows\System32\SHCore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795777646226951 0x7ffaccb90000 7180288 C:\Windows\System32\windows.storage.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API хранения Microsoft WinRT 131795777646182523 0x7ffacd270000 2215936 C:\Windows\System32\KernelBase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795777646208766 0x7ffacd710000 638976 C:\Windows\System32\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795777672880184 0x7ffacd7b0000 270336 C:\Windows\System32\cfgmgr32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Configuration Manager DLL 131795777672879070 0x7ffacd810000 22056960 C:\Windows\System32\shell32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Общая библиотека оболочки Windows 131795777646208012 0x7ffaced20000 782336 C:\Windows\System32\oleaut32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795777646218296 0x7ffacee50000 1183744 C:\Windows\System32\rpcrt4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795777646204698 0x7ffacef90000 647168 C:\Windows\System32\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795777648403085 0x7ffacf030000 651264 C:\Windows\System32\clbcatq.dll 2001.12.10941.16384 (rs1_release.160715-1616) Microsoft Corporation COM+ Configuration Catalog 131795777646181578 0x7ffacf0d0000 704512 C:\Windows\System32\kernel32.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795777646229758 0x7ffacf770000 212992 C:\Windows\System32\gdi32.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation GDI Client DLL 131795777646359182 0x7ffacf890000 188416 C:\Windows\System32\imm32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Multi-User Windows IMM32 API Client DLL 131795777646231420 0x7ffacf8c0000 1462272 C:\Windows\System32\user32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795777646217468 0x7ffacfb30000 2916352 C:\Windows\System32\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795777646223693 0x7ffacfe20000 663552 C:\Windows\System32\advapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795777651470786 0x7ffad0070000 1277952 C:\Windows\System32\ole32.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft OLE для Windows 131795777646228871 0x7ffad01b0000 335872 C:\Windows\System32\shlwapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека небольших программ оболочки 131795777646224544 0x7ffad0210000 364544 C:\Windows\System32\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795777645159316 0x7ffad0270000 1908736 C:\Windows\System32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 109 12008 4048 3 00000000:000003e7 131795777651421021 131795779784529714 0 1 Обязательная метка\Средний обязательный уровень NT AUTHORITY\СИСТЕМА SearchFilterHost.exe C:\Windows\system32\SearchFilterHost.exe "C:\Windows\system32\SearchFilterHost.exe" 0 708 712 720 8192 716 Microsoft Corporation 7.0.14393.2125 (rs1_release.180301-2139) Microsoft Windows Search Filter Host 131795777651457218 0x7ff68a750000 225280 C:\Windows\System32\SearchFilterHost.exe 7.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation Microsoft Windows Search Filter Host 131795777652430059 0x7ffab7a00000 3424256 C:\Windows\System32\tquery.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Запросы Microsoft Tripoli 131795777653510417 0x7ffac2960000 143360 C:\Windows\System32\mssprxy.dll 7.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation Microsoft Search Proxy 131795777652527425 0x7ffacc6e0000 61440 C:\Windows\System32\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795777652473355 0x7ffacc770000 1572864 C:\Windows\System32\gdi32full.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation GDI Client DLL 131795777652337295 0x7ffacc8f0000 1003520 C:\Windows\System32\ucrtbase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795777652352101 0x7ffacc9f0000 434176 C:\Windows\System32\bcryptprimitives.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Cryptographic Primitives Library 131795777652470728 0x7ffacca60000 122880 C:\Windows\System32\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795777653516465 0x7ffaccae0000 692224 C:\Windows\System32\SHCore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795777652314737 0x7ffacd270000 2215936 C:\Windows\System32\KernelBase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795777652336608 0x7ffacd710000 638976 C:\Windows\System32\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795777652335832 0x7ffaced20000 782336 C:\Windows\System32\oleaut32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795777652348843 0x7ffacee50000 1183744 C:\Windows\System32\rpcrt4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795777652333560 0x7ffacef90000 647168 C:\Windows\System32\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795777653216837 0x7ffacf030000 651264 C:\Windows\System32\clbcatq.dll 2001.12.10941.16384 (rs1_release.160715-1616) Microsoft Corporation COM+ Configuration Catalog 131795777652313695 0x7ffacf0d0000 704512 C:\Windows\System32\kernel32.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795777652472487 0x7ffacf770000 212992 C:\Windows\System32\gdi32.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation GDI Client DLL 131795777652465968 0x7ffacf890000 188416 C:\Windows\System32\imm32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Multi-User Windows IMM32 API Client DLL 131795777652468742 0x7ffacf8c0000 1462272 C:\Windows\System32\user32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795777652346577 0x7ffacfb30000 2916352 C:\Windows\System32\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795777652353955 0x7ffacfe20000 663552 C:\Windows\System32\advapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795777652357088 0x7ffad0210000 364544 C:\Windows\System32\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795777651457501 0x7ffad0270000 1908736 C:\Windows\System32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 110 8656 7744 57 00000000:0031f1da 131795777889654010 131795777905540714 0 0 Обязательная метка\Средний обязательный уровень WIN-0UOTFKKVN1S\User explorer.exe C:\Windows\SysWOW64\explorer.exe explorer.exe /select, "C:\Users\User\Downloads\Wireshark-win64-2.6.2.exe" Microsoft Corporation 10.0.14393.0 (rs1_release.160715-1616) Проводник 131795777892769117 0x1000000 704512 C:\Windows\System32\kernel32.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795777892770264 0x1110000 1462272 C:\Windows\System32\user32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795777889699586 0x13c0000 4296704 C:\Windows\SysWOW64\explorer.exe 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Проводник 131795777892761055 0x5c020000 335872 C:\Windows\System32\wow64.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation Win32 Emulation on NT64 131795777892761986 0x5c080000 487424 C:\Windows\System32\wow64win.dll 10.0.14393.1884 (rs1_release.171101-1233) Microsoft Corporation Wow64 Console and Win32 API Logging 131795777892773065 0x5c100000 40960 C:\Windows\System32\wow64cpu.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation AMD64 Wow64 CPU 131795777893847270 0x60750000 1556480 C:\Program Files (x86)\360\Total Security\safemon\safemon.dll 8, 4, 0, 1420 Qihu 360 Software Co., Ltd. 360 Internet Security Internet Protection 131795777894119896 0x61030000 262144 C:\Program Files (x86)\360\Total Security\safemon\safehmpg.dll 3, 0, 0, 1160 Qihu 360 Software Co., Ltd. 360 Internet Security Browser HomePage Protection 131795777905323145 0x67500000 1597440 C:\Windows\SysWOW64\actxprxy.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation ActiveX Interface Marshaling Library 131795777892910294 0x6b750000 880640 C:\Windows\SysWOW64\SettingSyncCore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Setting Synchronization Core 131795777892901054 0x6c290000 987136 C:\Windows\SysWOW64\twinapi.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation twinapi.appcore 131795777892863391 0x6d780000 876544 C:\Windows\SysWOW64\MrmCoreR.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Windows MRM 131795777894943365 0x6e2a0000 4440064 C:\Windows\SysWOW64\ExplorerFrame.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ExplorerFrame 131795777892892000 0x6ec40000 442368 C:\Windows\SysWOW64\twinapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation twinapi 131795777893892516 0x70ca0000 45056 C:\Windows\SysWOW64\netutils.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API Helpers DLL 131795777893903892 0x70cb0000 65536 C:\Windows\SysWOW64\wkscli.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Workstation Service Client DLL 131795777893877718 0x71140000 77824 C:\Windows\SysWOW64\netapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API DLL 131795777892854636 0x728e0000 1372160 C:\Windows\SysWOW64\propsys.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Система страниц свойств (Майкрософт) 131795777892881973 0x72b90000 126976 C:\Windows\SysWOW64\dwmapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Интерфейс API диспетчера окон рабочего стола (Майкрософт) 131795777892873122 0x74110000 479232 C:\Windows\SysWOW64\uxtheme.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека тем UxTheme (Microsoft) 131795777892973773 0x74190000 110592 C:\Windows\SysWOW64\bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795777893330943 0x741b0000 77824 C:\Windows\SysWOW64\cryptsp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Cryptographic Service Provider API 131795777894135029 0x74260000 2514944 C:\Windows\SysWOW64\wininet.dll 11.00.14393.447 (rs1_release_inmarket.161102-0100) Microsoft Corporation Расширения Интернета для Win32 131795777893876643 0x746e0000 32768 C:\Windows\SysWOW64\version.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Version Checking and File Installation Libraries 131795777892960580 0x746f0000 106496 C:\Windows\SysWOW64\userenv.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Userenv 131795777892800882 0x747d0000 40960 C:\Windows\SysWOW64\cryptbase.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base cryptographic API DLL 131795777892800131 0x747e0000 126976 C:\Windows\SysWOW64\sspicli.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Security Support Provider Interface 131795777893366650 0x74800000 151552 C:\Windows\SysWOW64\imm32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Multi-User Windows IMM32 API Client DLL 131795777892798092 0x74910000 2170880 C:\Windows\SysWOW64\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795777892819284 0x74b30000 53248 C:\Windows\SysWOW64\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795777892799164 0x74b60000 790528 C:\Windows\SysWOW64\rpcrt4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795777892807465 0x74c30000 1417216 C:\Windows\SysWOW64\gdi32full.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation GDI Client DLL 131795777893853501 0x74d90000 24576 C:\Windows\SysWOW64\psapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Process Status Helper 131795777892792387 0x74da0000 778240 C:\Windows\SysWOW64\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795777892808537 0x74e60000 557056 C:\Windows\SysWOW64\SHCore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795777894292333 0x74ef0000 540672 C:\Windows\SysWOW64\clbcatq.dll 2001.12.10941.16384 (rs1_release.160715-1616) Microsoft Corporation COM+ Configuration Catalog 131795777893864954 0x74fd0000 405504 C:\Windows\SysWOW64\ws2_32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation 32-разрядная библиотека Windows Socket 2.0 131795777892817162 0x75040000 282624 C:\Windows\SysWOW64\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795777892822584 0x751d0000 57344 C:\Windows\SysWOW64\msasn1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ASN.1 Runtime APIs 131795777892783261 0x751e0000 1708032 C:\Windows\SysWOW64\KernelBase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795777892802636 0x75390000 266240 C:\Windows\SysWOW64\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795777892821664 0x753e0000 1560576 C:\Windows\SysWOW64\crypt32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API32 криптографии 131795777892818154 0x75560000 487424 C:\Windows\SysWOW64\advapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795777892816184 0x756c0000 5693440 C:\Windows\SysWOW64\windows.storage.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API хранения Microsoft WinRT 131795777892809562 0x75c90000 286720 C:\Windows\SysWOW64\shlwapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека небольших программ оболочки 131795777892813119 0x75ce0000 20811776 C:\Windows\SysWOW64\shell32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Общая библиотека оболочки Windows 131795777892805257 0x774d0000 86016 C:\Windows\SysWOW64\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795777892820198 0x774f0000 61440 C:\Windows\SysWOW64\profapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Profile Basic API 131795777892804198 0x77560000 1437696 C:\Windows\SysWOW64\user32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795777892801730 0x776c0000 368640 C:\Windows\SysWOW64\bcryptprimitives.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation Windows Cryptographic Primitives Library 131795777892795864 0x77780000 503808 C:\Windows\SysWOW64\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795777892794715 0x77800000 606208 C:\Windows\SysWOW64\oleaut32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795777893851248 0x77ac0000 966656 C:\Windows\SysWOW64\ole32.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft OLE для Windows 131795777892806379 0x77bb0000 176128 C:\Windows\SysWOW64\gdi32.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation GDI Client DLL 131795777892814413 0x77cd0000 221184 C:\Windows\SysWOW64\cfgmgr32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Configuration Manager DLL 131795777889700112 0x77d20000 1585152 C:\Windows\SysWOW64\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 131795777889699874 0x7ffad0270000 1908736 C:\Windows\System32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 111 9032 664 6 00000000:0031f1da 131795777895284069 0 0 1 Обязательная метка\Средний обязательный уровень WIN-0UOTFKKVN1S\User explorer.exe C:\Windows\explorer.exe C:\Windows\explorer.exe /factory,{75dff2b7-6936-4c06-a8bb-676a7b00b24b} -Embedding Microsoft Corporation 10.0.14393.0 (rs1_release.160715-1616) Проводник 131795777911330291 0x4d80000 593920 C:\Windows\System32\UIRibbonRes.dll 10.0.14393.2189 (rs1_release.180329-1711) Microsoft Corporation Windows Ribbon Framework Resources 131795777920515787 0x6530000 8937472 C:\Program Files\Microsoft Office\Office16\1049\GrooveIntlResource.dll 16.0.4266.1001 Корпорация Майкрософт Модуль международных ресурсов для Microsoft OneDrive для бизнеса 131795777903881315 0x5bbd0000 1101824 C:\Program Files (x86)\360\Total Security\safemon\safemon64.dll 1, 0, 0, 1190 Qihu 360 Software Co., Ltd. 360 Internet Security Internet Protection 131795777903867506 0x5bce0000 28672 C:\Program Files (x86)\360\Total Security\safemon\SafeWrapper.dll 2, 0, 0, 1060 Qihu 360 Software Co., Ltd. 360 Internet Security Internet Protection 131795777895813346 0x7ff6a5b30000 4665344 C:\Windows\explorer.exe 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Проводник 131795777906005639 0x7ffab2720000 606208 C:\Windows\System32\duser.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows DirectUser Engine 131795777922060868 0x7ffab28d0000 802816 C:\Windows\System32\cscui.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Интерфейс кэширования на стороне клиента 131795777918507242 0x7ffab4b90000 655360 C:\Windows\System32\StructuredQuery.dll 7.0.14393.2068 (rs1_release.180209-1727) Microsoft Corporation Structured Query 131795777907532495 0x7ffab5520000 3231744 C:\Windows\System32\msftedit.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Элемент управления "Поле ввода форматированного текста", версия 8.5 131795777910997447 0x7ffab8da0000 1675264 C:\Windows\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.14393.1715_none_aec701fbddd850fa\GdiPlus.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Microsoft GDI+ 131795777915260331 0x7ffab9490000 860160 C:\Windows\System32\ntshrui.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширения оболочки, обеспечивающие общий доступ 131795777910978745 0x7ffab95c0000 4091904 C:\Windows\System32\UIRibbon.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Платформа ленты Windows 131795778008622616 0x7ffabacc0000 1380352 C:\Windows\System32\SharedStartModel.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Shared Start Model InProc Server 131795778007235790 0x7ffabae60000 77824 C:\Windows\System32\devrtl.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Device Management Run Time Library 131795777909146457 0x7ffabaf70000 270336 C:\Windows\System32\edputil.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служебная программа EDP 131795777902950088 0x7ffabb2b0000 1089536 C:\Windows\System32\SettingSyncCore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Setting Synchronization Core 131795778007048279 0x7ffabb430000 65536 C:\Windows\System32\pcacli.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Program Compatibility Assistant Client Module 131795777902932644 0x7ffabb490000 512000 C:\Windows\System32\twinapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation twinapi 131795777909802797 0x7ffabbc40000 643072 C:\Windows\System32\msvcp140.dll 14.10.24516.0 built by: VCTOOLSRELESC Microsoft Corporation Microsoft® C Runtime Library 131795777909791020 0x7ffabbce0000 90112 C:\Windows\System32\vcruntime140.dll 14.10.24516.0 built by: VCTOOLSRELESC Microsoft Corporation Microsoft® C Runtime Library 131795777917395017 0x7ffabc0b0000 65536 C:\Windows\System32\linkinfo.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Volume Tracking 131795777918158137 0x7ffabc880000 73728 C:\Windows\System32\cscapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Offline Files Win32 API 131795777966565943 0x7ffabcf30000 110592 C:\Windows\System32\mpr.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека маршрутизации для нескольких служб доступа 131795777908125051 0x7ffabd4a0000 1613824 C:\Windows\System32\Windows.Globalization.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Globalization 131795777905900322 0x7ffabdbb0000 1736704 C:\Windows\System32\dui70.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Подсистема DirectUI Windows 131795777908270107 0x7ffabe9c0000 188416 C:\Windows\System32\globinputhost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Globalization Extension API for Input 131795777922014669 0x7ffabebf0000 1208320 C:\Windows\System32\networkexplorer.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Сетевой проводник 131795778007216762 0x7ffabef80000 69632 C:\Windows\System32\sfc_os.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows File Protection 131795777919764442 0x7ffabf5d0000 2924544 C:\Windows\System32\wininet.dll 11.00.14393.447 (rs1_release_inmarket.161102-0100) Microsoft Corporation Расширения Интернета для Win32 131795777915281766 0x7ffabff10000 155648 C:\Windows\System32\srvcli.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Server Service Client DLL 131795777909775471 0x7ffac0250000 2179072 C:\Program Files\Microsoft Office\Office16\GROOVEEX.DLL 16.0.4266.1001 Microsoft Corporation Microsoft OneDrive for Business Extensions 131795777910387599 0x7ffac0610000 3088384 C:\Windows\System32\msi.dll 5.0.14393.2155 Microsoft Corporation Windows Installer 131795777905243222 0x7ffac0bf0000 3559424 C:\Windows\System32\actxprxy.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation ActiveX Interface Marshaling Library 131795777919412503 0x7ffac1710000 1642496 C:\Users\User\AppData\Local\Microsoft\OneDrive\18.131.0701.0007\amd64\FileSyncShell64.dll 18.131.0701.0007 Microsoft Corporation Microsoft OneDrive Shell Extension 131795777904716802 0x7ffac18b0000 270336 C:\Program Files (x86)\360\Total Security\safemon\safehmpg64.dll 1, 0, 0, 1140 Qihu 360 Software Co., Ltd. 360 Internet Security Browser HomePage Protection 131795777944562485 0x7ffac23c0000 331776 C:\Windows\System32\OneCoreCommonProxyStub.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation OneCore Common Proxy Stub 131795777903915791 0x7ffac2700000 98304 C:\Windows\System32\netapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API DLL 131795777922001525 0x7ffac2960000 143360 C:\Windows\System32\mssprxy.dll 7.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation Microsoft Search Proxy 131795777903903305 0x7ffac2b80000 40960 C:\Windows\System32\version.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Version Checking and File Installation Libraries 131795777909321798 0x7ffac34e0000 1843200 C:\Windows\System32\urlmon.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширения OLE32 для Win32 131795777909330655 0x7ffac3cb0000 2772992 C:\Windows\System32\iertutil.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служебная программа времени выполнения для Internet Explorer 131795777906462233 0x7ffac4000000 274432 C:\Windows\System32\policymanager.dll 10.0.14393.2035 (rs1_release_inmarket.180110-1910) Microsoft Corporation Policy Manager DLL 131795777910949757 0x7ffac4ea0000 36864 C:\Windows\System32\atlthunk.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation atlthunk.dll 131795777920555307 0x7ffac4f90000 221184 C:\Windows\System32\EhStorShell.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL расширения оболочки Windows Enhanced Storage 131795777906356495 0x7ffac5630000 339968 C:\Windows\System32\thumbcache.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Кэш эскизов Майкрософт 131795777905097743 0x7ffac5690000 4734976 C:\Windows\System32\ExplorerFrame.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ExplorerFrame 131795777908567233 0x7ffac5bb0000 622592 C:\Program Files\Common Files\microsoft shared\ink\tiptsf.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Инфраструктура текстовых служб сенсорной клавиатуры и панели рукописного ввода 131795777911007559 0x7ffac60e0000 221184 C:\Windows\System32\xmllite.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft XmlLite Library 131795777914831974 0x7ffac6bd0000 413696 C:\Windows\System32\oleacc.dll 7.2.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Active Accessibility Core Component 131795777905390625 0x7ffac6c40000 2596864 C:\Windows\WinSxS\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.14393.953_none_42151e83c686086b\comctl32.dll 6.10 (rs1_release_inmarket.170303-1614) Microsoft Corporation Библиотека элементов управления взаимодействия с пользователем 131795777902894862 0x7ffac7580000 1077248 C:\Windows\System32\MrmCoreR.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Windows MRM 131795777906986296 0x7ffac84f0000 299008 C:\Windows\System32\DataExchange.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation Data exchange 131795777906995835 0x7ffac88a0000 2842624 C:\Windows\System32\d3d11.dll 10.0.14393.953 (rs1_release_inmarket.170303-1614) Microsoft Corporation Direct3D 11 Runtime 131795777903975733 0x7ffac90b0000 90112 C:\Windows\System32\wkscli.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Workstation Service Client DLL 131795777906257948 0x7ffac9f50000 1736704 C:\Windows\System32\WindowsCodecs.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Microsoft Windows Codecs Library 131795777919424461 0x7ffaca170000 45056 C:\Windows\System32\ktmw32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows KTM Win32 Client DLL 131795777902880674 0x7ffaca340000 1593344 C:\Windows\System32\propsys.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Система страниц свойств (Майкрософт) 131795777908138610 0x7ffaca570000 421888 C:\Windows\System32\BCP47Langs.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation BCP47 Language Classes 131795777902921260 0x7ffaca5e0000 155648 C:\Windows\System32\dwmapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Интерфейс API диспетчера окон рабочего стола (Майкрософт) 131795778008641775 0x7ffaca640000 770048 C:\Windows\System32\CoreMessaging.dll 10.0.14393.0 Microsoft Corporation Microsoft CoreMessaging Dll 131795777907005063 0x7ffaca770000 1380352 C:\Windows\System32\dcomp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft DirectComposition Library 131795777918659102 0x7ffacab40000 176128 C:\Windows\System32\winmmbase.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base Multimedia Extension API DLL 131795777918649579 0x7ffacaba0000 143360 C:\Windows\System32\winmm.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation MCI API DLL 131795777909306748 0x7ffacadf0000 499712 C:\Windows\System32\apphelp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиентская библиотека совместимости приложений 131795777902905939 0x7ffacaf00000 610304 C:\Windows\System32\uxtheme.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека тем UxTheme (Microsoft) 131795777906474194 0x7ffacb140000 593920 C:\Windows\System32\msvcp110_win.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Microsoft® STL110 C++ Runtime Library 131795777902941219 0x7ffacb1e0000 1163264 C:\Windows\System32\twinapi.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation twinapi.appcore 131795778008632518 0x7ffacb300000 364544 C:\Windows\System32\VEEventDispatcher.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Visual Element Event dispatcher 131795777918171528 0x7ffacb420000 204800 C:\Windows\System32\ntmarta.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик Windows NT MARTA 131795777907014508 0x7ffacb780000 651264 C:\Windows\System32\dxgi.dll 10.0.14393.953 (rs1_release_inmarket.170303-1614) Microsoft Corporation DirectX Graphics Infrastructure 131795777903933947 0x7ffacbe20000 53248 C:\Windows\System32\netutils.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API Helpers DLL 131795777902985171 0x7ffacbe40000 126976 C:\Windows\System32\userenv.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Userenv 131795777903008375 0x7ffacc150000 94208 C:\Windows\System32\cryptsp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Cryptographic Service Provider API 131795777902974089 0x7ffacc350000 180224 C:\Windows\System32\sspicli.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Security Support Provider Interface 131795777905657867 0x7ffacc520000 622592 C:\Windows\System32\sxs.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Fusion 2.5 131795777902999880 0x7ffacc620000 176128 C:\Windows\System32\bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795777902852334 0x7ffacc6e0000 61440 C:\Windows\System32\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795777902849489 0x7ffacc6f0000 311296 C:\Windows\System32\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795777902853126 0x7ffacc740000 81920 C:\Windows\System32\profapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Profile Basic API 131795777902855116 0x7ffacc760000 65536 C:\Windows\System32\msasn1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ASN.1 Runtime APIs 131795777902843222 0x7ffacc770000 1572864 C:\Windows\System32\gdi32full.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation GDI Client DLL 131795777902836309 0x7ffacc8f0000 1003520 C:\Windows\System32\ucrtbase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795777902838974 0x7ffacc9f0000 434176 C:\Windows\System32\bcryptprimitives.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Cryptographic Primitives Library 131795777902841617 0x7ffacca60000 122880 C:\Windows\System32\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795777902844144 0x7ffaccae0000 692224 C:\Windows\System32\SHCore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795777902848566 0x7ffaccb90000 7180288 C:\Windows\System32\windows.storage.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API хранения Microsoft WinRT 131795777902824318 0x7ffacd270000 2215936 C:\Windows\System32\KernelBase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795777902854301 0x7ffacd490000 1871872 C:\Windows\System32\crypt32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API32 криптографии 131795777902835470 0x7ffacd710000 638976 C:\Windows\System32\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795777902847555 0x7ffacd7b0000 270336 C:\Windows\System32\cfgmgr32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Configuration Manager DLL 131795777902846521 0x7ffacd810000 22056960 C:\Windows\System32\shell32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Общая библиотека оболочки Windows 131795777902834719 0x7ffaced20000 782336 C:\Windows\System32\oleaut32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795777916996283 0x7ffacede0000 450560 C:\Windows\System32\coml2.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft COM for Windows 131795777902838016 0x7ffacee50000 1183744 C:\Windows\System32\rpcrt4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795777902833378 0x7ffacef90000 647168 C:\Windows\System32\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795777904879129 0x7ffacf030000 651264 C:\Windows\System32\clbcatq.dll 2001.12.10941.16384 (rs1_release.160715-1616) Microsoft Corporation COM+ Configuration Catalog 131795777902823359 0x7ffacf0d0000 704512 C:\Windows\System32\kernel32.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795777905449820 0x7ffacf1e0000 1417216 C:\Windows\System32\msctf.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Серверная библиотека MSCTF 131795777920556415 0x7ffacf340000 4362240 C:\Windows\System32\setupapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Setup API 131795777902842396 0x7ffacf770000 212992 C:\Windows\System32\gdi32.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation GDI Client DLL 131795777903888252 0x7ffacf820000 434176 C:\Windows\System32\ws2_32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation 32-разрядная библиотека Windows Socket 2.0 131795777903413262 0x7ffacf890000 188416 C:\Windows\System32\imm32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Multi-User Windows IMM32 API Client DLL 131795777902840664 0x7ffacf8c0000 1462272 C:\Windows\System32\user32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795777902837229 0x7ffacfb30000 2916352 C:\Windows\System32\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795777903887407 0x7ffacfe00000 114688 C:\Windows\System32\imagehlp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT Image Helper 131795777902850328 0x7ffacfe20000 663552 C:\Windows\System32\advapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795777903886124 0x7ffad0070000 1277952 C:\Windows\System32\ole32.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft OLE для Windows 131795777902845086 0x7ffad01b0000 335872 C:\Windows\System32\shlwapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека небольших программ оболочки 131795777902851375 0x7ffad0210000 364544 C:\Windows\System32\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795777895813598 0x7ffad0270000 1908736 C:\Windows\System32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 112 9260 664 6 00000000:0031f1da 131795777929610183 131795777984927725 0 1 Обязательная метка\Средний обязательный уровень WIN-0UOTFKKVN1S\User DllHost.exe C:\Windows\system32\DllHost.exe C:\Windows\system32\DllHost.exe /Processid:{AB8902B4-09CA-4BB6-B78D-A8F59079A8D5} Microsoft Corporation 10.0.14393.0 (rs1_release.160715-1616) COM Surrogate 131795777932875078 0x7ff7a2280000 36864 C:\Windows\System32\dllhost.exe 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation COM Surrogate 131795777933633940 0x7ffac5630000 339968 C:\Windows\System32\thumbcache.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Кэш эскизов Майкрософт 131795777933654996 0x7ffaca340000 1593344 C:\Windows\System32\propsys.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Система страниц свойств (Майкрософт) 131795777933511822 0x7ffacaf00000 610304 C:\Windows\System32\uxtheme.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека тем UxTheme (Microsoft) 131795777933236004 0x7ffacc6e0000 61440 C:\Windows\System32\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795777933379835 0x7ffacc770000 1572864 C:\Windows\System32\gdi32full.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation GDI Client DLL 131795777933204420 0x7ffacc8f0000 1003520 C:\Windows\System32\ucrtbase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795777933208459 0x7ffacc9f0000 434176 C:\Windows\System32\bcryptprimitives.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Cryptographic Primitives Library 131795777933378161 0x7ffacca60000 122880 C:\Windows\System32\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795777933634843 0x7ffaccae0000 692224 C:\Windows\System32\SHCore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795777933195335 0x7ffacd270000 2215936 C:\Windows\System32\KernelBase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795777933656824 0x7ffacd710000 638976 C:\Windows\System32\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795777933655979 0x7ffaced20000 782336 C:\Windows\System32\oleaut32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795777933207456 0x7ffacee50000 1183744 C:\Windows\System32\rpcrt4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795777933236938 0x7ffacef90000 647168 C:\Windows\System32\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795777933242803 0x7ffacf030000 651264 C:\Windows\System32\clbcatq.dll 2001.12.10941.16384 (rs1_release.160715-1616) Microsoft Corporation COM+ Configuration Catalog 131795777933194415 0x7ffacf0d0000 704512 C:\Windows\System32\kernel32.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795777933378995 0x7ffacf770000 212992 C:\Windows\System32\gdi32.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation GDI Client DLL 131795777933422499 0x7ffacf890000 188416 C:\Windows\System32\imm32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Multi-User Windows IMM32 API Client DLL 131795777933377233 0x7ffacf8c0000 1462272 C:\Windows\System32\user32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795777933206622 0x7ffacfb30000 2916352 C:\Windows\System32\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795777933352390 0x7ffad0210000 364544 C:\Windows\System32\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795777932875316 0x7ffad0270000 1908736 C:\Windows\System32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 113 8764 9032 111 00000000:0031f1da 131795777945289446 131795777966465865 0 0 Обязательная метка\Средний обязательный уровень WIN-0UOTFKKVN1S\User Wireshark-win64-2.6.2.exe C:\Users\User\Downloads\Wireshark-win64-2.6.2.exe "C:\Users\User\Downloads\Wireshark-win64-2.6.2.exe" Wireshark development team 2.6.2.0 Wireshark installer for 64-bit Windows 131795777966462721 0x400000 503808 C:\Users\User\Downloads\Wireshark-win64-2.6.2.exe 2.6.2.0 Wireshark development team Wireshark installer for 64-bit Windows 131795777966463314 0x77d20000 1585152 C:\Windows\SysWOW64\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 131795777966463036 0x7ffad0270000 1908736 C:\Windows\System32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 114 12552 348 24 00000000:000003e7 131795777968941574 131795777998950648 0 1 Обязательная метка\Обязательный уровень системы NT AUTHORITY\СИСТЕМА consent.exe C:\Windows\system32\consent.exe consent.exe 348 420 000001C3866F4780 Microsoft Corporation 10.0.14393.0 (rs1_release.160715-1616) Согласованный пользовательский интерфейс для административных приложений 131795777968980318 0x7ff7ac660000 167936 C:\Windows\System32\consent.exe 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Согласованный пользовательский интерфейс для административных приложений 131795777980498441 0x7ffab2720000 606208 C:\Windows\System32\duser.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows DirectUser Engine 131795777980145413 0x7ffab4af0000 606208 C:\Windows\System32\AudioSes.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Сеанс обработки звука 131795777980857301 0x7ffab5b40000 2527232 C:\Windows\System32\DWrite.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Службы Microsoft DirectX Typography 131795777981479003 0x7ffab6710000 17231872 C:\Windows\System32\Windows.UI.Xaml.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows.UI.Xaml dll 131795777980587991 0x7ffab9010000 1409024 C:\Windows\System32\Windows.UI.Cred.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation Credential Prompt User Experience 131795777974838275 0x7ffabb9f0000 483328 C:\Windows\System32\msutb.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека (DLL) сервера MSUTB 131795777974804260 0x7ffabba70000 53248 C:\Windows\System32\MsCtfMonitor.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation MsCtfMonitor DLL 131795777974793522 0x7ffabc5b0000 65536 C:\Windows\System32\amsi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Anti-Malware Scan Interface 131795777980110033 0x7ffabd3c0000 368640 C:\Windows\System32\InputSwitch.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Переключатель ввода Microsoft Windows 131795777985995216 0x7ffabd4a0000 1613824 C:\Windows\System32\Windows.Globalization.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Globalization 131795777980126729 0x7ffabdbb0000 1736704 C:\Windows\System32\dui70.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Подсистема DirectUI Windows 131795777986419231 0x7ffabe6e0000 561152 C:\Windows\System32\directmanipulation.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Direct Manipulation Component 131795777978273384 0x7ffabf1d0000 192512 C:\Windows\System32\cryptnet.dll 10.0.14393.2035 (rs1_release_inmarket.180110-1910) Microsoft Corporation Crypto Network Related API 131795777987476131 0x7ffabfd80000 86016 C:\Windows\System32\threadpoolwinrt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows WinRT Threadpool 131795777980595097 0x7ffac01e0000 397312 C:\Windows\System32\wincorlib.dll 10.0.14393.576 (rs1_release_inmarket.161208-2252) Microsoft Corporation Microsoft Windows ® WinRT core library 131795777986654116 0x7ffac1640000 225280 C:\Windows\System32\Windows.Internal.UI.Logon.ProxyStub.dll 10.0.14393.594 (rs1_release_inmarket.161213-1754) Microsoft Corporation Logon User Experience Proxy Stub 131795777980442082 0x7ffac1680000 278528 C:\Windows\System32\Windows.UI.CredDialogController.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Контроллер диалоговых окон для ввода учетных данных пользователя 131795777980426428 0x7ffac16d0000 204800 C:\Windows\System32\wincredui.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Внутренний интерфейс диспетчера учетных данных 131795777992554432 0x7ffac2990000 385024 C:\Windows\System32\ninput.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Pen and Touch Input Component 131795777979019901 0x7ffac34e0000 1843200 C:\Windows\System32\urlmon.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширения OLE32 для Win32 131795777986176635 0x7ffac37b0000 69632 C:\Windows\System32\FontGlyphAnimator.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Font Glyph Animator 131795777979026126 0x7ffac3cb0000 2772992 C:\Windows\System32\iertutil.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служебная программа времени выполнения для Internet Explorer 131795777980485018 0x7ffac4b60000 139264 C:\Windows\System32\Windows.UI.XamlHost.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation XAML Host 131795777981822655 0x7ffac5350000 1765376 C:\Windows\System32\Windows.UI.Immersive.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation WINDOWS.UI.IMMERSIVE 131795777996397360 0x7ffac5ce0000 1744896 C:\Windows\System32\UIAutomationCore.dll 7.2.14393.0 (rs1_release.160715-1616) Microsoft Corporation Основные автоматические компоненты Microsoft UI 131795777980669842 0x7ffac60e0000 221184 C:\Windows\System32\xmllite.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft XmlLite Library 131795777980658809 0x7ffac6ac0000 835584 C:\Windows\System32\Windows.UI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Runtime UI Foundation DLL 131795777974798730 0x7ffac6c40000 2596864 C:\Windows\WinSxS\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.14393.953_none_42151e83c686086b\comctl32.dll 6.10 (rs1_release_inmarket.170303-1614) Microsoft Corporation Библиотека элементов управления взаимодействия с пользователем 131795777983369008 0x7ffac6f50000 5632000 C:\Windows\System32\d2d1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека Microsoft D2D 131795777980648519 0x7ffac7580000 1077248 C:\Windows\System32\MrmCoreR.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Windows MRM 131795777982047525 0x7ffac7fc0000 2674688 C:\Windows\System32\d3d10warp.dll 10.0.14393.576 (rs1_release_inmarket.161208-2252) Microsoft Corporation Direct3D 10 Rasterizer 131795777982029674 0x7ffac88a0000 2842624 C:\Windows\System32\d3d11.dll 10.0.14393.953 (rs1_release_inmarket.170303-1614) Microsoft Corporation Direct3D 11 Runtime 131795777982066941 0x7ffac8f90000 45056 C:\Windows\System32\avrt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Среда выполнения мультимедиа в реальном времени 131795777980156063 0x7ffac92e0000 1269760 C:\Windows\System32\WinTypes.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL основных типов Windows 131795777980157388 0x7ffac9480000 462848 C:\Windows\System32\MMDevAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation MMDevice API 131795777974788100 0x7ffac97f0000 36864 C:\Windows\System32\wmsgapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation WinLogon IPC Client 131795777982013616 0x7ffac9ec0000 294912 C:\Windows\System32\UIAnimation.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Animation Manager 131795777980466258 0x7ffac9f50000 1736704 C:\Windows\System32\WindowsCodecs.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Microsoft Windows Codecs Library 131795777980168550 0x7ffaca340000 1593344 C:\Windows\System32\propsys.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Система страниц свойств (Майкрософт) 131795777974829262 0x7ffaca4e0000 77824 C:\Windows\System32\wtsapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Remote Desktop Session Host Server SDK APIs 131795777980115948 0x7ffaca570000 421888 C:\Windows\System32\BCP47Langs.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation BCP47 Language Classes 131795777979285013 0x7ffaca5e0000 155648 C:\Windows\System32\dwmapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Интерфейс API диспетчера окон рабочего стола (Майкрософт) 131795777981488304 0x7ffaca640000 770048 C:\Windows\System32\CoreMessaging.dll 10.0.14393.0 Microsoft Corporation Microsoft CoreMessaging Dll 131795777982499245 0x7ffaca770000 1380352 C:\Windows\System32\dcomp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft DirectComposition Library 131795777980416590 0x7ffacac60000 69632 C:\Windows\System32\credui.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Credential Manager User Interface 131795777974818257 0x7ffacac80000 28672 C:\Windows\System32\msimg32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation GDIEXT Client DLL 131795777975513676 0x7ffacaf00000 610304 C:\Windows\System32\uxtheme.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека тем UxTheme (Microsoft) 131795777982426324 0x7ffacb1e0000 1163264 C:\Windows\System32\twinapi.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation twinapi.appcore 131795777982054504 0x7ffacb3d0000 110592 C:\Windows\System32\ResourcePolicyClient.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Resource Policy Client 131795777980163186 0x7ffacb3f0000 163840 C:\Windows\System32\devobj.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Device Information Set DLL 131795777978121065 0x7ffacb6f0000 143360 C:\Windows\System32\gpapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиентские функции API групповой политики 131795777982035520 0x7ffacb780000 651264 C:\Windows\System32\dxgi.dll 10.0.14393.953 (rs1_release_inmarket.170303-1614) Microsoft Corporation DirectX Graphics Infrastructure 131795777975832479 0x7ffacbbb0000 208896 C:\Windows\System32\rsaenh.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Enhanced Cryptographic Provider 131795777974781428 0x7ffacbe40000 126976 C:\Windows\System32\userenv.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Userenv 131795777975824564 0x7ffacc150000 94208 C:\Windows\System32\cryptsp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Cryptographic Service Provider API 131795777975848401 0x7ffacc170000 45056 C:\Windows\System32\cryptbase.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base cryptographic API DLL 131795777974774870 0x7ffacc350000 180224 C:\Windows\System32\sspicli.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Security Support Provider Interface 131795777974823679 0x7ffacc5c0000 352256 C:\Windows\System32\winsta.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Winstation Library 131795777975838253 0x7ffacc620000 176128 C:\Windows\System32\bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795777975483352 0x7ffacc6e0000 61440 C:\Windows\System32\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795777975480402 0x7ffacc6f0000 311296 C:\Windows\System32\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795777974782340 0x7ffacc740000 81920 C:\Windows\System32\profapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Profile Basic API 131795777974759394 0x7ffacc760000 65536 C:\Windows\System32\msasn1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ASN.1 Runtime APIs 131795777974755227 0x7ffacc8f0000 1003520 C:\Windows\System32\ucrtbase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795777974757590 0x7ffacc9f0000 434176 C:\Windows\System32\bcryptprimitives.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Cryptographic Primitives Library 131795777974748323 0x7ffacca60000 122880 C:\Windows\System32\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795777975534791 0x7ffacca80000 348160 C:\Windows\System32\wintrust.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation Microsoft Trust Verification APIs 131795777975484109 0x7ffaccae0000 692224 C:\Windows\System32\SHCore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795777975479485 0x7ffaccb90000 7180288 C:\Windows\System32\windows.storage.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API хранения Microsoft WinRT 131795777974737313 0x7ffacd270000 2215936 C:\Windows\System32\KernelBase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795777974758607 0x7ffacd490000 1871872 C:\Windows\System32\crypt32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API32 криптографии 131795777974806532 0x7ffacd710000 638976 C:\Windows\System32\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795777975478407 0x7ffacd7b0000 270336 C:\Windows\System32\cfgmgr32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Configuration Manager DLL 131795777975477227 0x7ffacd810000 22056960 C:\Windows\System32\shell32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Общая библиотека оболочки Windows 131795777974805823 0x7ffaced20000 782336 C:\Windows\System32\oleaut32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795777974755958 0x7ffacee50000 1183744 C:\Windows\System32\rpcrt4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795777974753684 0x7ffacef90000 647168 C:\Windows\System32\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795777979008730 0x7ffacf030000 651264 C:\Windows\System32\clbcatq.dll 2001.12.10941.16384 (rs1_release.160715-1616) Microsoft Corporation COM+ Configuration Catalog 131795777974736415 0x7ffacf0d0000 704512 C:\Windows\System32\kernel32.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795777974804981 0x7ffacf1e0000 1417216 C:\Windows\System32\msctf.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Серверная библиотека MSCTF 131795777974745763 0x7ffacf770000 212992 C:\Windows\System32\gdi32.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation GDI Client DLL 131795777974812320 0x7ffacf890000 188416 C:\Windows\System32\imm32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Multi-User Windows IMM32 API Client DLL 131795777974747602 0x7ffacf8c0000 1462272 C:\Windows\System32\user32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795777974754501 0x7ffacfb30000 2916352 C:\Windows\System32\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795777976198066 0x7ffacfe00000 114688 C:\Windows\System32\imagehlp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT Image Helper 131795777975481532 0x7ffacfe20000 663552 C:\Windows\System32\advapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795777979405959 0x7ffad0070000 1277952 C:\Windows\System32\ole32.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft OLE для Windows 131795777975482469 0x7ffad01b0000 335872 C:\Windows\System32\shlwapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека небольших программ оболочки 131795777974760131 0x7ffad0210000 364544 C:\Windows\System32\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795777968980573 0x7ffad0270000 1908736 C:\Windows\System32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 115 13252 360 26 00000000:000003e5 131795777983764572 0 0 1 Обязательная метка\Обязательный уровень системы NT AUTHORITY\LOCAL SERVICE AUDIODG.EXE C:\Windows\system32\AUDIODG.EXE C:\Windows\system32\AUDIODG.EXE 0x3f4 Microsoft Corporation 10.0.14393.0 (rs1_release.160715-1616) Изоляция графов аудиоустройств Windows 131795777983831921 0x7ff644450000 389120 C:\Windows\System32\audiodg.exe 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Изоляция графов аудиоустройств Windows 131795777987657478 0x7ffab0410000 1802240 C:\Windows\System32\WMALFXGFXDSP.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SysFx DSP 131795777987006767 0x7ffab4af0000 606208 C:\Windows\System32\AudioSes.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Сеанс обработки звука 131795777987325185 0x7ffac13e0000 552960 C:\Windows\System32\AudioEng.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Audio Engine 131795777988064426 0x7ffac15d0000 438272 C:\Windows\System32\AUDIOKSE.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Audio Ks Endpoint 131795777987334885 0x7ffac8f90000 45056 C:\Windows\System32\avrt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Среда выполнения мультимедиа в реальном времени 131795777987120263 0x7ffac92e0000 1269760 C:\Windows\System32\WinTypes.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL основных типов Windows 131795777985530541 0x7ffac9480000 462848 C:\Windows\System32\MMDevAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation MMDevice API 131795777985553442 0x7ffaca340000 1593344 C:\Windows\System32\propsys.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Система страниц свойств (Майкрософт) 131795777985542529 0x7ffacb3f0000 163840 C:\Windows\System32\devobj.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Device Information Set DLL 131795777985878753 0x7ffacc6e0000 61440 C:\Windows\System32\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795777987008327 0x7ffacc6f0000 311296 C:\Windows\System32\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795777985919594 0x7ffacc770000 1572864 C:\Windows\System32\gdi32full.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation GDI Client DLL 131795777985543302 0x7ffacc8f0000 1003520 C:\Windows\System32\ucrtbase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795777985558083 0x7ffacc9f0000 434176 C:\Windows\System32\bcryptprimitives.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Cryptographic Primitives Library 131795777985917139 0x7ffacca60000 122880 C:\Windows\System32\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795777985559169 0x7ffaccae0000 692224 C:\Windows\System32\SHCore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795777985509811 0x7ffacd270000 2215936 C:\Windows\System32\KernelBase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795777985555822 0x7ffacd710000 638976 C:\Windows\System32\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795777985544141 0x7ffacd7b0000 270336 C:\Windows\System32\cfgmgr32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Configuration Manager DLL 131795777985554295 0x7ffaced20000 782336 C:\Windows\System32\oleaut32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795777985531383 0x7ffacee50000 1183744 C:\Windows\System32\rpcrt4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795777985518799 0x7ffacef90000 647168 C:\Windows\System32\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795777986012477 0x7ffacf030000 651264 C:\Windows\System32\clbcatq.dll 2001.12.10941.16384 (rs1_release.160715-1616) Microsoft Corporation COM+ Configuration Catalog 131795777985508789 0x7ffacf0d0000 704512 C:\Windows\System32\kernel32.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795777985918125 0x7ffacf770000 212992 C:\Windows\System32\gdi32.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation GDI Client DLL 131795777985916103 0x7ffacf8c0000 1462272 C:\Windows\System32\user32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795777985556758 0x7ffacfb30000 2916352 C:\Windows\System32\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795777985532267 0x7ffad0210000 364544 C:\Windows\System32\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795777983832182 0x7ffad0270000 1908736 C:\Windows\System32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 116 9824 664 6 00000000:000003e7 131795777997156680 131795778048250727 0 1 Обязательная метка\Обязательный уровень системы NT AUTHORITY\СИСТЕМА DllHost.exe C:\Windows\system32\DllHost.exe C:\Windows\system32\DllHost.exe /Processid:{E10F6C3A-F1AE-4ADC-AA9D-2FE65525666E} Microsoft Corporation 10.0.14393.0 (rs1_release.160715-1616) COM Surrogate 131795777997172483 0x7ff7a2280000 36864 C:\Windows\System32\dllhost.exe 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation COM Surrogate 131795777998106067 0x7ffabe850000 155648 C:\Windows\System32\IDStore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Identity Store 131795777998057630 0x7ffacaf00000 610304 C:\Windows\System32\uxtheme.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека тем UxTheme (Microsoft) 131795777998132709 0x7ffacbe40000 126976 C:\Windows\System32\userenv.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Userenv 131795777998117532 0x7ffacc620000 176128 C:\Windows\System32\bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795777997734588 0x7ffacc6e0000 61440 C:\Windows\System32\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795777998133585 0x7ffacc740000 81920 C:\Windows\System32\profapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Profile Basic API 131795777997749740 0x7ffacc770000 1572864 C:\Windows\System32\gdi32full.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation GDI Client DLL 131795777997707384 0x7ffacc8f0000 1003520 C:\Windows\System32\ucrtbase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795777997710268 0x7ffacc9f0000 434176 C:\Windows\System32\bcryptprimitives.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Cryptographic Primitives Library 131795777997748214 0x7ffacca60000 122880 C:\Windows\System32\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795777997698554 0x7ffacd270000 2215936 C:\Windows\System32\KernelBase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795777997709343 0x7ffacee50000 1183744 C:\Windows\System32\rpcrt4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795777997735391 0x7ffacef90000 647168 C:\Windows\System32\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795777997740844 0x7ffacf030000 651264 C:\Windows\System32\clbcatq.dll 2001.12.10941.16384 (rs1_release.160715-1616) Microsoft Corporation COM+ Configuration Catalog 131795777997697673 0x7ffacf0d0000 704512 C:\Windows\System32\kernel32.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795777997748967 0x7ffacf770000 212992 C:\Windows\System32\gdi32.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation GDI Client DLL 131795777997763823 0x7ffacf890000 188416 C:\Windows\System32\imm32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Multi-User Windows IMM32 API Client DLL 131795777997747380 0x7ffacf8c0000 1462272 C:\Windows\System32\user32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795777997708545 0x7ffacfb30000 2916352 C:\Windows\System32\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795777998029154 0x7ffad0210000 364544 C:\Windows\System32\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795777997172713 0x7ffad0270000 1908736 C:\Windows\System32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 117 10972 664 6 00000000:000003e7 131795777999627989 131795778050153645 0 1 Обязательная метка\Обязательный уровень системы NT AUTHORITY\СИСТЕМА DllHost.exe C:\Windows\system32\DllHost.exe C:\Windows\system32\DllHost.exe /Processid:{E10F6C3A-F1AE-4ADC-AA9D-2FE65525666E} Microsoft Corporation 10.0.14393.0 (rs1_release.160715-1616) COM Surrogate 131795777999648788 0x7ff7a2280000 36864 C:\Windows\System32\dllhost.exe 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation COM Surrogate 131795777999983613 0x7ffabe850000 155648 C:\Windows\System32\IDStore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Identity Store 131795778000008235 0x7ffacbe40000 126976 C:\Windows\System32\userenv.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Userenv 131795777999993479 0x7ffacc620000 176128 C:\Windows\System32\bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795777999688221 0x7ffacc6e0000 61440 C:\Windows\System32\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795778000009044 0x7ffacc740000 81920 C:\Windows\System32\profapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Profile Basic API 131795777999702312 0x7ffacc770000 1572864 C:\Windows\System32\gdi32full.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation GDI Client DLL 131795777999664533 0x7ffacc8f0000 1003520 C:\Windows\System32\ucrtbase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795777999667201 0x7ffacc9f0000 434176 C:\Windows\System32\bcryptprimitives.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Cryptographic Primitives Library 131795777999700799 0x7ffacca60000 122880 C:\Windows\System32\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795777999656659 0x7ffacd270000 2215936 C:\Windows\System32\KernelBase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795777999666347 0x7ffacee50000 1183744 C:\Windows\System32\rpcrt4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795777999688933 0x7ffacef90000 647168 C:\Windows\System32\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795777999693967 0x7ffacf030000 651264 C:\Windows\System32\clbcatq.dll 2001.12.10941.16384 (rs1_release.160715-1616) Microsoft Corporation COM+ Configuration Catalog 131795777999655839 0x7ffacf0d0000 704512 C:\Windows\System32\kernel32.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795777999701542 0x7ffacf770000 212992 C:\Windows\System32\gdi32.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation GDI Client DLL 131795777999699849 0x7ffacf8c0000 1462272 C:\Windows\System32\user32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795777999665630 0x7ffacfb30000 2916352 C:\Windows\System32\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795777999909223 0x7ffad0210000 364544 C:\Windows\System32\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795777999649020 0x7ffad0270000 1908736 C:\Windows\System32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 118 11456 9032 111 00000000:0031f1ab 131795778005314623 0 0 0 Обязательная метка\Высокий обязательный уровень WIN-0UOTFKKVN1S\User Wireshark-win64-2.6.2.exe C:\Users\User\Downloads\Wireshark-win64-2.6.2.exe "C:\Users\User\Downloads\Wireshark-win64-2.6.2.exe" Wireshark development team 2.6.2.0 Wireshark installer for 64-bit Windows 131795778009231982 0x400000 503808 C:\Users\User\Downloads\Wireshark-win64-2.6.2.exe 2.6.2.0 Wireshark development team Wireshark installer for 64-bit Windows 131795778009245222 0x480000 1462272 C:\Windows\System32\user32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795778015682938 0x2030000 36864 C:\Users\User\AppData\Local\Temp\nswB814.tmp\InstallOptions.dll 131795778014254891 0x10000000 24576 C:\Users\User\AppData\Local\Temp\nswB814.tmp\System.dll 131795778009238221 0x5c020000 335872 C:\Windows\System32\wow64.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation Win32 Emulation on NT64 131795778009238911 0x5c080000 487424 C:\Windows\System32\wow64win.dll 10.0.14393.1884 (rs1_release.171101-1233) Microsoft Corporation Wow64 Console and Win32 API Logging 131795778009248228 0x5c100000 40960 C:\Windows\System32\wow64cpu.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation AMD64 Wow64 CPU 131795778011325628 0x60750000 1556480 C:\Program Files (x86)\360\Total Security\safemon\safemon.dll 8, 4, 0, 1420 Qihu 360 Software Co., Ltd. 360 Internet Security Internet Protection 131795778089634780 0x6b7b0000 503808 C:\Program Files (x86)\Common Files\Microsoft Shared\Ink\tiptsf.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Инфраструктура текстовых служб сенсорной клавиатуры и панели рукописного ввода 131795778014814877 0x6dd70000 528384 C:\Windows\SysWOW64\riched20.dll 5.31.23.1231 Microsoft Corporation Rich Text Edit Control, v3.1 131795778010985816 0x705e0000 344064 C:\Windows\SysWOW64\oleacc.dll 7.2.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Active Accessibility Core Component 131795778014835906 0x70a20000 94208 C:\Windows\SysWOW64\usp10.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Uniscribe Unicode script processor 131795778011360794 0x70ca0000 45056 C:\Windows\SysWOW64\netutils.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API Helpers DLL 131795778011372913 0x70cb0000 65536 C:\Windows\SysWOW64\wkscli.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Workstation Service Client DLL 131795778014843868 0x70ec0000 200704 C:\Windows\SysWOW64\msls31.dll 3.10.349.0 Microsoft Corporation Microsoft Line Services library file 131795778011346828 0x71140000 77824 C:\Windows\SysWOW64\netapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API DLL 131795778011030934 0x72510000 24576 C:\Windows\SysWOW64\shfolder.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Shell Folder Service 131795778010950569 0x728e0000 1372160 C:\Windows\SysWOW64\propsys.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Система страниц свойств (Майкрософт) 131795778010974639 0x72b90000 126976 C:\Windows\SysWOW64\dwmapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Интерфейс API диспетчера окон рабочего стола (Майкрософт) 131795778010712877 0x74110000 479232 C:\Windows\SysWOW64\uxtheme.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека тем UxTheme (Microsoft) 131795778011384519 0x74190000 110592 C:\Windows\SysWOW64\bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795778009666389 0x744d0000 2138112 C:\Windows\WinSxS\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.14393.953_none_89c2555adb023171\comctl32.dll 6.10 (rs1_release_inmarket.170303-1614) Microsoft Corporation Библиотека элементов управления взаимодействия с пользователем 131795778011008939 0x746e0000 32768 C:\Windows\SysWOW64\version.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Version Checking and File Installation Libraries 131795778010727286 0x746f0000 106496 C:\Windows\SysWOW64\userenv.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Userenv 131795778009272418 0x74730000 598016 C:\Windows\SysWOW64\apphelp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиентская библиотека совместимости приложений 131795778009635084 0x747d0000 40960 C:\Windows\SysWOW64\cryptbase.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base cryptographic API DLL 131795778009634444 0x747e0000 126976 C:\Windows\SysWOW64\sspicli.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Security Support Provider Interface 131795778009721108 0x74800000 151552 C:\Windows\SysWOW64\imm32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Multi-User Windows IMM32 API Client DLL 131795778009632885 0x74830000 917504 C:\Windows\SysWOW64\ucrtbase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795778009632164 0x74910000 2170880 C:\Windows\SysWOW64\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795778009640473 0x74b30000 53248 C:\Windows\SysWOW64\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795778009633660 0x74b60000 790528 C:\Windows\SysWOW64\rpcrt4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795778009627476 0x74c30000 1417216 C:\Windows\SysWOW64\gdi32full.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation GDI Client DLL 131795778011330122 0x74d90000 24576 C:\Windows\SysWOW64\psapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Process Status Helper 131795778009629360 0x74da0000 778240 C:\Windows\SysWOW64\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795778009641448 0x74e60000 557056 C:\Windows\SysWOW64\SHCore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795778010997934 0x74ef0000 540672 C:\Windows\SysWOW64\clbcatq.dll 2001.12.10941.16384 (rs1_release.160715-1616) Microsoft Corporation COM+ Configuration Catalog 131795778011330953 0x74fd0000 405504 C:\Windows\SysWOW64\ws2_32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation 32-разрядная библиотека Windows Socket 2.0 131795778009637786 0x75040000 282624 C:\Windows\SysWOW64\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795778014972924 0x75090000 1265664 C:\Windows\SysWOW64\msctf.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Серверная библиотека MSCTF 131795778009254650 0x751e0000 1708032 C:\Windows\SysWOW64\KernelBase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795778009636664 0x75390000 266240 C:\Windows\SysWOW64\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795778009638589 0x75560000 487424 C:\Windows\SysWOW64\advapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795778009631391 0x756c0000 5693440 C:\Windows\SysWOW64\windows.storage.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API хранения Microsoft WinRT 131795778009639548 0x75c90000 286720 C:\Windows\SysWOW64\shlwapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека небольших программ оболочки 131795778009628515 0x75ce0000 20811776 C:\Windows\SysWOW64\shell32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Общая библиотека оболочки Windows 131795778010731370 0x770c0000 4239360 C:\Windows\SysWOW64\setupapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Setup API 131795778009625102 0x774d0000 86016 C:\Windows\SysWOW64\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795778009642327 0x774f0000 61440 C:\Windows\SysWOW64\profapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Profile Basic API 131795778009624246 0x77560000 1437696 C:\Windows\SysWOW64\user32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795778009635799 0x776c0000 368640 C:\Windows\SysWOW64\bcryptprimitives.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation Windows Cryptographic Primitives Library 131795778010952511 0x77780000 503808 C:\Windows\SysWOW64\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795778010951613 0x77800000 606208 C:\Windows\SysWOW64\oleaut32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795778009648281 0x77ac0000 966656 C:\Windows\SysWOW64\ole32.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft OLE для Windows 131795778009626440 0x77bb0000 176128 C:\Windows\SysWOW64\gdi32.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation GDI Client DLL 131795778015684351 0x77be0000 937984 C:\Windows\SysWOW64\comdlg32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека общих диалоговых окон 131795778009630333 0x77cd0000 221184 C:\Windows\SysWOW64\cfgmgr32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Configuration Manager DLL 131795778009232688 0x77d20000 1585152 C:\Windows\SysWOW64\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 131795778009232417 0x7ffad0270000 1908736 C:\Windows\System32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 119 2524 11456 118 00000000:0031f1ab 131795778205265711 131795778449907874 0 0 Обязательная метка\Высокий обязательный уровень WIN-0UOTFKKVN1S\User vcredist_x64.exe C:\Program Files\Wireshark\vcredist_x64.exe "C:\Program Files\Wireshark\vcredist_x64.exe" /install /quiet /norestart Microsoft Corporation 14.12.25810.0 Microsoft Visual C++ 2017 Redistributable (x64) - 14.12.25810 131795778210427775 0x840000 413696 C:\Program Files\Wireshark\vcredist_x64.exe 14.12.25810.0 Microsoft Corporation Microsoft Visual C++ 2017 Redistributable (x64) - 14.12.25810 131795778210442423 0x1100000 1462272 C:\Windows\System32\user32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795778210435297 0x5c020000 335872 C:\Windows\System32\wow64.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation Win32 Emulation on NT64 131795778210436286 0x5c080000 487424 C:\Windows\System32\wow64win.dll 10.0.14393.1884 (rs1_release.171101-1233) Microsoft Corporation Wow64 Console and Win32 API Logging 131795778210444947 0x5c100000 40960 C:\Windows\System32\wow64cpu.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation AMD64 Wow64 CPU 131795778218643939 0x60750000 1556480 C:\Program Files (x86)\360\Total Security\safemon\safemon.dll 8, 4, 0, 1420 Qihu 360 Software Co., Ltd. 360 Internet Security Internet Protection 131795778221366721 0x68850000 1150976 C:\Windows\SysWOW64\vssapi.dll 10.0.14393.953 (rs1_release_inmarket.170303-1614) Microsoft Corporation Microsoft® Volume Shadow Copy Requestor/Writer Services API DLL 131795778213387731 0x68970000 1613824 C:\Windows\SysWOW64\msxml3.dll 8.110.14393.1532 Microsoft Corporation MSXML 3.0 131795778211892360 0x6bf00000 3715072 C:\Windows\SysWOW64\msi.dll 5.0.14393.2155 Microsoft Corporation Windows Installer 131795778225123562 0x6ce30000 421888 C:\Windows\SysWOW64\msvcp110_win.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Microsoft® STL110 C++ Runtime Library 131795778282515800 0x6ceb0000 188416 C:\Windows\SysWOW64\RstrtMgr.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Диспетчер перезапуска 131795778224990309 0x6cee0000 69632 C:\Windows\SysWOW64\usoapi.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Update Session Orchestrator API 131795778222668117 0x6cf00000 69632 C:\Windows\SysWOW64\vsstrace.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека трассировки службы теневого копирования тома Microsoft® 131795778219986472 0x6cf20000 237568 C:\Windows\SysWOW64\spp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека общих точек защиты Microsoft® Windows 131795778219594249 0x6d000000 73728 C:\Windows\SysWOW64\srclient.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft® Windows System Restore Client Library 131795778211638576 0x6d050000 135168 C:\Windows\SysWOW64\cabinet.dll 5.00 (rs1_release.160715-1616) Microsoft Corporation Microsoft® Cabinet File API 131795778223770988 0x70b70000 163840 C:\Windows\SysWOW64\ntmarta.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик Windows NT MARTA 131795778218676426 0x70ca0000 45056 C:\Windows\SysWOW64\netutils.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API Helpers DLL 131795778218687666 0x70cb0000 65536 C:\Windows\SysWOW64\wkscli.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Workstation Service Client DLL 131795778282852553 0x70e60000 176128 C:\Windows\SysWOW64\ntasn1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft ASN.1 API 131795778282546520 0x71120000 131072 C:\Windows\SysWOW64\ncrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Маршрутизатор Windows NCrypt 131795778218664385 0x71140000 77824 C:\Windows\SysWOW64\netapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API DLL 131795778230626743 0x71160000 49152 C:\Windows\SysWOW64\sxproxy.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека прокси защиты системы Microsoft® Windows 131795778285675131 0x728e0000 1372160 C:\Windows\SysWOW64\propsys.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Система страниц свойств (Майкрософт) 131795778210585481 0x73c50000 1478656 C:\Windows\WinSxS\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.14393.1715_none_f67438d2f2547a00\GdiPlus.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Microsoft GDI+ 131795778249278981 0x74060000 192512 C:\Windows\SysWOW64\rsaenh.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Enhanced Cryptographic Provider 131795778218605838 0x74110000 479232 C:\Windows\SysWOW64\uxtheme.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека тем UxTheme (Microsoft) 131795778212112533 0x74190000 110592 C:\Windows\SysWOW64\bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795778249262768 0x741b0000 77824 C:\Windows\SysWOW64\cryptsp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Cryptographic Service Provider API 131795778211975568 0x74260000 2514944 C:\Windows\SysWOW64\wininet.dll 11.00.14393.447 (rs1_release_inmarket.161102-0100) Microsoft Corporation Расширения Интернета для Win32 131795778250977817 0x744d0000 2138112 C:\Windows\WinSxS\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.14393.953_none_89c2555adb023171\comctl32.dll 6.10 (rs1_release_inmarket.170303-1614) Microsoft Corporation Библиотека элементов управления взаимодействия с пользователем 131795778211987440 0x746e0000 32768 C:\Windows\SysWOW64\version.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Version Checking and File Installation Libraries 131795778210472101 0x74730000 598016 C:\Windows\SysWOW64\apphelp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиентская библиотека совместимости приложений 131795778210537015 0x747d0000 40960 C:\Windows\SysWOW64\cryptbase.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base cryptographic API DLL 131795778210536267 0x747e0000 126976 C:\Windows\SysWOW64\sspicli.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Security Support Provider Interface 131795778212420819 0x74800000 151552 C:\Windows\SysWOW64\imm32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Multi-User Windows IMM32 API Client DLL 131795778210544928 0x74910000 2170880 C:\Windows\SysWOW64\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795778210551034 0x74b30000 53248 C:\Windows\SysWOW64\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795778210535428 0x74b60000 790528 C:\Windows\SysWOW64\rpcrt4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795778210541828 0x74c30000 1417216 C:\Windows\SysWOW64\gdi32full.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation GDI Client DLL 131795778218651308 0x74d90000 24576 C:\Windows\SysWOW64\psapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Process Status Helper 131795778210533826 0x74da0000 778240 C:\Windows\SysWOW64\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795778210551838 0x74e60000 557056 C:\Windows\SysWOW64\SHCore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795778212772265 0x74ef0000 540672 C:\Windows\SysWOW64\clbcatq.dll 2001.12.10941.16384 (rs1_release.160715-1616) Microsoft Corporation COM+ Configuration Catalog 131795778210558338 0x74f80000 278528 C:\Windows\SysWOW64\wintrust.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation Microsoft Trust Verification APIs 131795778218652101 0x74fd0000 405504 C:\Windows\SysWOW64\ws2_32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation 32-разрядная библиотека Windows Socket 2.0 131795778210549234 0x75040000 282624 C:\Windows\SysWOW64\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795778218630163 0x75090000 1265664 C:\Windows\SysWOW64\msctf.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Серверная библиотека MSCTF 131795778210557390 0x751d0000 57344 C:\Windows\SysWOW64\msasn1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ASN.1 Runtime APIs 131795778210454863 0x751e0000 1708032 C:\Windows\SysWOW64\KernelBase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795778210534702 0x75390000 266240 C:\Windows\SysWOW64\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795778210556545 0x753e0000 1560576 C:\Windows\SysWOW64\crypt32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API32 криптографии 131795778210532926 0x75560000 487424 C:\Windows\SysWOW64\advapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795778210548380 0x756c0000 5693440 C:\Windows\SysWOW64\windows.storage.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API хранения Microsoft WinRT 131795778210550092 0x75c90000 286720 C:\Windows\SysWOW64\shlwapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека небольших программ оболочки 131795778210546009 0x75ce0000 20811776 C:\Windows\SysWOW64\shell32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Общая библиотека оболочки Windows 131795778210540152 0x774d0000 86016 C:\Windows\SysWOW64\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795778210552724 0x774f0000 61440 C:\Windows\SysWOW64\profapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Profile Basic API 131795778210539401 0x77560000 1437696 C:\Windows\SysWOW64\user32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795778210538137 0x776c0000 368640 C:\Windows\SysWOW64\bcryptprimitives.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation Windows Cryptographic Primitives Library 131795778210543407 0x77780000 503808 C:\Windows\SysWOW64\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795778210542750 0x77800000 606208 C:\Windows\SysWOW64\oleaut32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795778210553572 0x77ac0000 966656 C:\Windows\SysWOW64\ole32.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft OLE для Windows 131795778210541005 0x77bb0000 176128 C:\Windows\SysWOW64\gdi32.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation GDI Client DLL 131795778210547203 0x77cd0000 221184 C:\Windows\SysWOW64\cfgmgr32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Configuration Manager DLL 131795778210428509 0x77d20000 1585152 C:\Windows\SysWOW64\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 131795778210428218 0x7ffad0270000 1908736 C:\Windows\System32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 120 11036 2524 119 00000000:0031f1ab 131795778214395625 131795778452248646 0 0 Обязательная метка\Высокий обязательный уровень WIN-0UOTFKKVN1S\User vcredist_x64.exe C:\Program Files\Wireshark\vcredist_x64.exe "C:\Program Files\Wireshark\vcredist_x64.exe" /install /quiet /norestart -burn.unelevated BurnPipe.{697252BA-65F0-4FD5-BF12-B766A9953B8A} {50175F90-C657-4E57-8E6E-540E3BD2D5E7} 2524 Microsoft Corporation 14.12.25810.0 Microsoft Visual C++ 2017 Redistributable (x64) - 14.12.25810 131795778214451050 0x840000 413696 C:\Program Files\Wireshark\vcredist_x64.exe 14.12.25810.0 Microsoft Corporation Microsoft Visual C++ 2017 Redistributable (x64) - 14.12.25810 131795778214465354 0x1300000 704512 C:\Windows\System32\kernel32.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795778214465795 0x13d0000 1462272 C:\Windows\System32\user32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795778214458935 0x5c020000 335872 C:\Windows\System32\wow64.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation Win32 Emulation on NT64 131795778214459633 0x5c080000 487424 C:\Windows\System32\wow64win.dll 10.0.14393.1884 (rs1_release.171101-1233) Microsoft Corporation Wow64 Console and Win32 API Logging 131795778214468416 0x5c100000 40960 C:\Windows\System32\wow64cpu.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation AMD64 Wow64 CPU 131795778218835611 0x60750000 1556480 C:\Program Files (x86)\360\Total Security\safemon\safemon.dll 8, 4, 0, 1420 Qihu 360 Software Co., Ltd. 360 Internet Security Internet Protection 131795778216121811 0x68970000 1613824 C:\Windows\SysWOW64\msxml3.dll 8.110.14393.1532 Microsoft Corporation MSXML 3.0 131795778222012167 0x6b7b0000 503808 C:\Program Files (x86)\Common Files\Microsoft Shared\Ink\tiptsf.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Инфраструктура текстовых служб сенсорной клавиатуры и панели рукописного ввода 131795778214619583 0x6bf00000 3715072 C:\Windows\SysWOW64\msi.dll 5.0.14393.2155 Microsoft Corporation Windows Installer 131795778219458456 0x6d020000 143360 C:\Users\User\AppData\Local\Temp\{e2ee15e2-a480-4bc5-bfb7-e9803d1d9823}\.ba1\wixstdba.dll 3.7.3517.0 Microsoft Corporation WiX Standard Bootstrapper Application 131795778214607445 0x6d050000 135168 C:\Windows\SysWOW64\cabinet.dll 5.00 (rs1_release.160715-1616) Microsoft Corporation Microsoft® Cabinet File API 131795778221823716 0x6dd70000 528384 C:\Windows\SysWOW64\riched20.dll 5.31.23.1231 Microsoft Corporation Rich Text Edit Control, v3.1 131795778221778955 0x6e2a0000 4440064 C:\Windows\SysWOW64\ExplorerFrame.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ExplorerFrame 131795778219977174 0x70640000 1499136 C:\Windows\SysWOW64\WindowsCodecs.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Microsoft Windows Codecs Library 131795778221834790 0x70a20000 94208 C:\Windows\SysWOW64\usp10.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Uniscribe Unicode script processor 131795778218869440 0x70ca0000 45056 C:\Windows\SysWOW64\netutils.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API Helpers DLL 131795778218882415 0x70cb0000 65536 C:\Windows\SysWOW64\wkscli.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Workstation Service Client DLL 131795778221845989 0x70ec0000 200704 C:\Windows\SysWOW64\msls31.dll 3.10.349.0 Microsoft Corporation Microsoft Line Services library file 131795778218856726 0x71140000 77824 C:\Windows\SysWOW64\netapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API DLL 131795778216508862 0x72500000 65536 C:\Windows\SysWOW64\feclient.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT File Encryption Client Interfaces 131795778221803849 0x72b90000 126976 C:\Windows\SysWOW64\dwmapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Интерфейс API диспетчера окон рабочего стола (Майкрософт) 131795778214583688 0x73c50000 1478656 C:\Windows\WinSxS\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.14393.1715_none_f67438d2f2547a00\GdiPlus.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Microsoft GDI+ 131795778218620300 0x74110000 479232 C:\Windows\SysWOW64\uxtheme.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека тем UxTheme (Microsoft) 131795778214665990 0x74190000 110592 C:\Windows\SysWOW64\bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795778214634234 0x74260000 2514944 C:\Windows\SysWOW64\wininet.dll 11.00.14393.447 (rs1_release_inmarket.161102-0100) Microsoft Corporation Расширения Интернета для Win32 131795778219482612 0x744d0000 2138112 C:\Windows\WinSxS\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.14393.953_none_89c2555adb023171\comctl32.dll 6.10 (rs1_release_inmarket.170303-1614) Microsoft Corporation Библиотека элементов управления взаимодействия с пользователем 131795778214645516 0x746e0000 32768 C:\Windows\SysWOW64\version.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Version Checking and File Installation Libraries 131795778214502009 0x74730000 598016 C:\Windows\SysWOW64\apphelp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиентская библиотека совместимости приложений 131795778214556556 0x747d0000 40960 C:\Windows\SysWOW64\cryptbase.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base cryptographic API DLL 131795778214555835 0x747e0000 126976 C:\Windows\SysWOW64\sspicli.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Security Support Provider Interface 131795778215119921 0x74800000 151552 C:\Windows\SysWOW64\imm32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Multi-User Windows IMM32 API Client DLL 131795778214563862 0x74910000 2170880 C:\Windows\SysWOW64\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795778214569777 0x74b30000 53248 C:\Windows\SysWOW64\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795778214554622 0x74b60000 790528 C:\Windows\SysWOW64\rpcrt4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795778214560817 0x74c30000 1417216 C:\Windows\SysWOW64\gdi32full.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation GDI Client DLL 131795778218843499 0x74d90000 24576 C:\Windows\SysWOW64\psapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Process Status Helper 131795778214553045 0x74da0000 778240 C:\Windows\SysWOW64\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795778214570550 0x74e60000 557056 C:\Windows\SysWOW64\SHCore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795778215512524 0x74ef0000 540672 C:\Windows\SysWOW64\clbcatq.dll 2001.12.10941.16384 (rs1_release.160715-1616) Microsoft Corporation COM+ Configuration Catalog 131795778214575066 0x74f80000 278528 C:\Windows\SysWOW64\wintrust.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation Microsoft Trust Verification APIs 131795778218844544 0x74fd0000 405504 C:\Windows\SysWOW64\ws2_32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation 32-разрядная библиотека Windows Socket 2.0 131795778214567854 0x75040000 282624 C:\Windows\SysWOW64\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795778218823402 0x75090000 1265664 C:\Windows\SysWOW64\msctf.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Серверная библиотека MSCTF 131795778214574088 0x751d0000 57344 C:\Windows\SysWOW64\msasn1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ASN.1 Runtime APIs 131795778214474422 0x751e0000 1708032 C:\Windows\SysWOW64\KernelBase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795778214553904 0x75390000 266240 C:\Windows\SysWOW64\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795778214573295 0x753e0000 1560576 C:\Windows\SysWOW64\crypt32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API32 криптографии 131795778214552209 0x75560000 487424 C:\Windows\SysWOW64\advapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795778214567023 0x756c0000 5693440 C:\Windows\SysWOW64\windows.storage.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API хранения Microsoft WinRT 131795778214568693 0x75c90000 286720 C:\Windows\SysWOW64\shlwapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека небольших программ оболочки 131795778214565133 0x75ce0000 20811776 C:\Windows\SysWOW64\shell32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Общая библиотека оболочки Windows 131795778214559041 0x774d0000 86016 C:\Windows\SysWOW64\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795778214571434 0x774f0000 61440 C:\Windows\SysWOW64\profapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Profile Basic API 131795778214558315 0x77560000 1437696 C:\Windows\SysWOW64\user32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795778214557257 0x776c0000 368640 C:\Windows\SysWOW64\bcryptprimitives.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation Windows Cryptographic Primitives Library 131795778214562365 0x77780000 503808 C:\Windows\SysWOW64\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795778214561712 0x77800000 606208 C:\Windows\SysWOW64\oleaut32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795778214572267 0x77ac0000 966656 C:\Windows\SysWOW64\ole32.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft OLE для Windows 131795778214560019 0x77bb0000 176128 C:\Windows\SysWOW64\gdi32.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation GDI Client DLL 131795778219465897 0x77be0000 937984 C:\Windows\SysWOW64\comdlg32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека общих диалоговых окон 131795778214566092 0x77cd0000 221184 C:\Windows\SysWOW64\cfgmgr32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Configuration Manager DLL 131795778214451593 0x77d20000 1585152 C:\Windows\SysWOW64\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 131795778214451330 0x7ffad0270000 1908736 C:\Windows\System32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 121 9864 664 6 00000000:0031f1ab 131795778225540656 131795778290826195 0 1 Обязательная метка\Высокий обязательный уровень WIN-0UOTFKKVN1S\User DllHost.exe C:\Windows\system32\DllHost.exe C:\Windows\system32\DllHost.exe /Processid:{F32D97DF-E3E5-4CB9-9E3E-0EB5B4E49801} Microsoft Corporation 10.0.14393.0 (rs1_release.160715-1616) COM Surrogate 131795778225950821 0x7ff7a2280000 36864 C:\Windows\System32\dllhost.exe 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation COM Surrogate 131795778231606806 0x7ffab1fd0000 2277376 C:\Windows\System32\msxml3.dll 8.110.14393.1532 Microsoft Corporation MSXML 3.0 131795778229770036 0x7ffac0fc0000 294912 C:\Windows\System32\spp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека общих точек защиты Microsoft® Windows 131795778236117068 0x7ffac34c0000 81920 C:\Windows\System32\vss_ps.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation Microsoft® Volume Shadow Copy Service proxy/stub 131795778229793325 0x7ffac6410000 98304 C:\Windows\System32\vsstrace.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека трассировки службы теневого копирования тома Microsoft® 131795778229781683 0x7ffac6430000 1581056 C:\Windows\System32\vssapi.dll 10.0.14393.953 (rs1_release_inmarket.170303-1614) Microsoft Corporation Microsoft® Volume Shadow Copy Requestor/Writer Services API DLL 131795778231340578 0x7ffac9290000 40960 C:\Windows\System32\dsrole.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DS Setup Client DLL 131795778230151193 0x7ffac97e0000 98304 C:\Windows\System32\sxproxy.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека прокси защиты системы Microsoft® Windows 131795778229437945 0x7ffacadf0000 499712 C:\Windows\System32\apphelp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиентская библиотека совместимости приложений 131795778229733727 0x7ffacaf00000 610304 C:\Windows\System32\uxtheme.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека тем UxTheme (Microsoft) 131795778231662179 0x7ffacc620000 176128 C:\Windows\System32\bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795778229494714 0x7ffacc6e0000 61440 C:\Windows\System32\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795778229650868 0x7ffacc770000 1572864 C:\Windows\System32\gdi32full.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation GDI Client DLL 131795778229464135 0x7ffacc8f0000 1003520 C:\Windows\System32\ucrtbase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795778229467133 0x7ffacc9f0000 434176 C:\Windows\System32\bcryptprimitives.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Cryptographic Primitives Library 131795778229649239 0x7ffacca60000 122880 C:\Windows\System32\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795778229419740 0x7ffacd270000 2215936 C:\Windows\System32\KernelBase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795778231219679 0x7ffacd710000 638976 C:\Windows\System32\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795778231218532 0x7ffaced20000 782336 C:\Windows\System32\oleaut32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795778229466174 0x7ffacee50000 1183744 C:\Windows\System32\rpcrt4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795778229495509 0x7ffacef90000 647168 C:\Windows\System32\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795778229500491 0x7ffacf030000 651264 C:\Windows\System32\clbcatq.dll 2001.12.10941.16384 (rs1_release.160715-1616) Microsoft Corporation COM+ Configuration Catalog 131795778229418717 0x7ffacf0d0000 704512 C:\Windows\System32\kernel32.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795778229650079 0x7ffacf770000 212992 C:\Windows\System32\gdi32.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation GDI Client DLL 131795778229782683 0x7ffacf820000 434176 C:\Windows\System32\ws2_32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation 32-разрядная библиотека Windows Socket 2.0 131795778229664206 0x7ffacf890000 188416 C:\Windows\System32\imm32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Multi-User Windows IMM32 API Client DLL 131795778229648087 0x7ffacf8c0000 1462272 C:\Windows\System32\user32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795778229465385 0x7ffacfb30000 2916352 C:\Windows\System32\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795778229771169 0x7ffacfe20000 663552 C:\Windows\System32\advapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795778229600832 0x7ffad0210000 364544 C:\Windows\System32\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795778225951048 0x7ffad0270000 1908736 C:\Windows\System32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 122 9112 580 4 00000000:000003e7 131795778233163324 0 0 1 Обязательная метка\Обязательный уровень системы NT AUTHORITY\СИСТЕМА vssvc.exe C:\Windows\system32\vssvc.exe C:\Windows\system32\vssvc.exe Microsoft Corporation 10.0.14393.0 (rs1_release.160715-1616) Microsoft® Volume Shadow Copy Service 131795778233223054 0x7ff69d210000 1462272 C:\Windows\System32\VSSVC.exe 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft® Volume Shadow Copy Service 131795778236960155 0x7ffac1690000 516096 C:\Windows\System32\catsrvut.dll 2001.12.10941.16384 (rs1_release_1.180305-1842) Microsoft Corporation COM+ Configuration Catalog Server Utilities 131795778235339682 0x7ffac2750000 106496 C:\Windows\System32\bcd.dll 10.0.14393.1794 (rs1_release.171008-1615) Microsoft Corporation BCD DLL 131795778235353194 0x7ffac3270000 40960 C:\Windows\System32\fltLib.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека фильтров 131795778236101503 0x7ffac34c0000 81920 C:\Windows\System32\vss_ps.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation Microsoft® Volume Shadow Copy Service proxy/stub 131795778235330886 0x7ffac4b70000 73728 C:\Windows\System32\virtdisk.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Virtual Disk API DLL 131795778236181536 0x7ffac4e70000 102400 C:\Windows\System32\samcli.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Security Accounts Manager Client DLL 131795778235312630 0x7ffac6410000 98304 C:\Windows\System32\vsstrace.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека трассировки службы теневого копирования тома Microsoft® 131795778235292965 0x7ffac6430000 1581056 C:\Windows\System32\vssapi.dll 10.0.14393.953 (rs1_release_inmarket.170303-1614) Microsoft Corporation Microsoft® Volume Shadow Copy Requestor/Writer Services API DLL 131795778236970418 0x7ffac7e80000 57344 C:\Windows\System32\mfcsubs.dll 2001.12.10941.16384 (rs1_release.160715-1616) Microsoft Corporation COM+ 131795778235749019 0x7ffac9bb0000 479232 C:\Windows\System32\es.dll 2001.12.10941.16384 (rs1_release.160715-1616) Microsoft Corporation COM+ 131795778236589454 0x7ffaca340000 1593344 C:\Windows\System32\propsys.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Система страниц свойств (Майкрософт) 131795778236331302 0x7ffaca610000 143360 C:\Windows\System32\samlib.dll 10.0.14393.82 (rs1_release.160805-1735) Microsoft Corporation SAM Library DLL 131795778235302884 0x7ffacb3f0000 163840 C:\Windows\System32\devobj.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Device Information Set DLL 131795778235322056 0x7ffacb960000 303104 C:\Windows\System32\authz.dll 10.0.14393.1737 (rs1_release_inmarket.170914-1249) Microsoft Corporation Authorization Framework 131795778236321713 0x7ffacbe20000 53248 C:\Windows\System32\netutils.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API Helpers DLL 131795778235650165 0x7ffacc6e0000 61440 C:\Windows\System32\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795778235659934 0x7ffacc770000 1572864 C:\Windows\System32\gdi32full.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation GDI Client DLL 131795778235271662 0x7ffacc8f0000 1003520 C:\Windows\System32\ucrtbase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795778235274566 0x7ffacc9f0000 434176 C:\Windows\System32\bcryptprimitives.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Cryptographic Primitives Library 131795778235658261 0x7ffacca60000 122880 C:\Windows\System32\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795778236590535 0x7ffaccae0000 692224 C:\Windows\System32\SHCore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795778235260874 0x7ffacd270000 2215936 C:\Windows\System32\KernelBase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795778235271000 0x7ffacd710000 638976 C:\Windows\System32\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795778235303684 0x7ffacd7b0000 270336 C:\Windows\System32\cfgmgr32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Configuration Manager DLL 131795778235270235 0x7ffaced20000 782336 C:\Windows\System32\oleaut32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795778235273593 0x7ffacee50000 1183744 C:\Windows\System32\rpcrt4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795778235268950 0x7ffacef90000 647168 C:\Windows\System32\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795778235730902 0x7ffacf030000 651264 C:\Windows\System32\clbcatq.dll 2001.12.10941.16384 (rs1_release.160715-1616) Microsoft Corporation COM+ Configuration Catalog 131795778235259923 0x7ffacf0d0000 704512 C:\Windows\System32\kernel32.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795778235659139 0x7ffacf770000 212992 C:\Windows\System32\gdi32.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation GDI Client DLL 131795778235293960 0x7ffacf820000 434176 C:\Windows\System32\ws2_32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation 32-разрядная библиотека Windows Socket 2.0 131795778235657454 0x7ffacf8c0000 1462272 C:\Windows\System32\user32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795778235272840 0x7ffacfb30000 2916352 C:\Windows\System32\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795778235277370 0x7ffacfe20000 663552 C:\Windows\System32\advapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795778235275560 0x7ffad0210000 364544 C:\Windows\System32\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795778233223370 0x7ffad0270000 1908736 C:\Windows\System32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 123 284 580 4 00000000:000003e7 131795778236890994 0 0 1 Обязательная метка\Обязательный уровень системы NT AUTHORITY\СИСТЕМА svchost.exe C:\Windows\System32\svchost.exe C:\Windows\System32\svchost.exe -k swprv Microsoft Corporation 10.0.14393.0 (rs1_release.160715-1616) Хост-процесс для служб Windows 131795778236948261 0x7ff718c20000 57344 C:\Windows\System32\svchost.exe 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Хост-процесс для служб Windows 131795778237990704 0x7ffabd220000 483328 C:\Windows\System32\swprv.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик программного обеспечения Microsoft® Volume Shadow Copy Service 131795778238024341 0x7ffac3270000 40960 C:\Windows\System32\fltLib.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека фильтров 131795778238689559 0x7ffac34c0000 81920 C:\Windows\System32\vss_ps.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation Microsoft® Volume Shadow Copy Service proxy/stub 131795778238016772 0x7ffac4b70000 73728 C:\Windows\System32\virtdisk.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Virtual Disk API DLL 131795778238009807 0x7ffac6410000 98304 C:\Windows\System32\vsstrace.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека трассировки службы теневого копирования тома Microsoft® 131795778238797239 0x7ffac6430000 1581056 C:\Windows\System32\vssapi.dll 10.0.14393.953 (rs1_release_inmarket.170303-1614) Microsoft Corporation Microsoft® Volume Shadow Copy Requestor/Writer Services API DLL 131795778238379317 0x7ffac9bb0000 479232 C:\Windows\System32\es.dll 2001.12.10941.16384 (rs1_release.160715-1616) Microsoft Corporation COM+ 131795778238002742 0x7ffacb3f0000 163840 C:\Windows\System32\devobj.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Device Information Set DLL 131795778238084884 0x7ffacb920000 81920 C:\Windows\System32\wldp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Политика блокировки Windows 131795778238106525 0x7ffacc6e0000 61440 C:\Windows\System32\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795778238119208 0x7ffacc770000 1572864 C:\Windows\System32\gdi32full.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation GDI Client DLL 131795778237848893 0x7ffacc8f0000 1003520 C:\Windows\System32\ucrtbase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795778238069532 0x7ffacc9f0000 434176 C:\Windows\System32\bcryptprimitives.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Cryptographic Primitives Library 131795778238117518 0x7ffacca60000 122880 C:\Windows\System32\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795778238087879 0x7ffacca80000 348160 C:\Windows\System32\wintrust.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation Microsoft Trust Verification APIs 131795778237826515 0x7ffacd270000 2215936 C:\Windows\System32\KernelBase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795778238085768 0x7ffacd490000 1871872 C:\Windows\System32\crypt32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API32 криптографии 131795778238691232 0x7ffacd710000 638976 C:\Windows\System32\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795778238003645 0x7ffacd7b0000 270336 C:\Windows\System32\cfgmgr32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Configuration Manager DLL 131795778238690445 0x7ffaced20000 782336 C:\Windows\System32\oleaut32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795778237846089 0x7ffacee50000 1183744 C:\Windows\System32\rpcrt4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795778237991665 0x7ffacef90000 647168 C:\Windows\System32\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795778238360028 0x7ffacf030000 651264 C:\Windows\System32\clbcatq.dll 2001.12.10941.16384 (rs1_release.160715-1616) Microsoft Corporation COM+ Configuration Catalog 131795778237825108 0x7ffacf0d0000 704512 C:\Windows\System32\kernel32.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795778238118419 0x7ffacf770000 212992 C:\Windows\System32\gdi32.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation GDI Client DLL 131795778238798278 0x7ffacf820000 434176 C:\Windows\System32\ws2_32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation 32-разрядная библиотека Windows Socket 2.0 131795778238116693 0x7ffacf8c0000 1462272 C:\Windows\System32\user32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795778238067953 0x7ffacfb30000 2916352 C:\Windows\System32\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795778237992699 0x7ffacfe20000 663552 C:\Windows\System32\advapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795778237844499 0x7ffad0210000 364544 C:\Windows\System32\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795778236948497 0x7ffad0270000 1908736 C:\Windows\System32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 124 8572 580 4 00000000:000003e7 131795778253406568 0 0 1 Обязательная метка\Обязательный уровень системы NT AUTHORITY\СИСТЕМА msiexec.exe C:\Windows\system32\msiexec.exe C:\Windows\system32\msiexec.exe /V Microsoft Corporation 5.0.14393.0 (rs1_release.160715-1616) Установщик Windows® 131795778259596194 0x238870a0000 12288 C:\Windows\System32\sfc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows File Protection 131795778253563850 0x7ff766ba0000 90112 C:\Windows\System32\msiexec.exe 5.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Установщик Windows® 131795778259570059 0x7ffaad900000 4726784 C:\Windows\AppPatch\apppatch64\AcLayers.dll 10.0.14393.447 (rs1_release_inmarket.161102-0100) Microsoft Corporation Windows Compatibility DLL 131795778267501772 0x7ffab1260000 10350592 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\clr.dll 4.7.2117.0 built by: NET47REL1LAST Microsoft Corporation Microsoft .NET Runtime Common Language Runtime - WorkStation 131795778276928618 0x7ffabae60000 77824 C:\Windows\System32\devrtl.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Device Management Run Time Library 131795778275324308 0x7ffabb430000 65536 C:\Windows\System32\pcacli.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Program Compatibility Assistant Client Module 131795778275333446 0x7ffabcf30000 110592 C:\Windows\System32\mpr.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека маршрутизации для нескольких служб доступа 131795778259610277 0x7ffabd180000 548864 C:\Windows\System32\winspool.drv 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Драйвер диспетчера очереди Windows 131795778259661596 0x7ffabef80000 69632 C:\Windows\System32\sfc_os.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows File Protection 131795778265457583 0x7ffabf1d0000 192512 C:\Windows\System32\cryptnet.dll 10.0.14393.2035 (rs1_release_inmarket.180110-1910) Microsoft Corporation Crypto Network Related API 131795778267747643 0x7ffabfa00000 1011712 C:\Windows\System32\msvcr120_clr0400.dll 12.00.52519.0 built by: VSWINSERVICING Microsoft Corporation Microsoft® C Runtime Library 131795778260359664 0x7ffac0610000 3088384 C:\Windows\System32\msi.dll 5.0.14393.2155 Microsoft Corporation Windows Installer 131795778399983100 0x7ffac1010000 417792 C:\Windows\System32\mscoree.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft .NET Runtime Execution Engine 131795778400005719 0x7ffac1240000 638976 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscoreei.dll 4.7.2623.0 built by: NET471REL1LAST_C Microsoft Corporation Microsoft .NET Runtime Execution Engine 131795778262571338 0x7ffac2700000 98304 C:\Windows\System32\netapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API DLL 131795778267189195 0x7ffac2b80000 40960 C:\Windows\System32\version.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Version Checking and File Installation Libraries 131795778417041748 0x7ffac3810000 167936 C:\Windows\System32\cabinet.dll 5.00 (rs1_release.160715-1616) Microsoft Corporation Microsoft® Cabinet File API 131795778400053783 0x7ffac5b30000 114688 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\fusion.dll 4.6.1586.0 built by: NETFXREL2 Microsoft Corporation Assembly manager 131795778259951873 0x7ffac6c40000 2596864 C:\Windows\WinSxS\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.14393.953_none_42151e83c686086b\comctl32.dll 6.10 (rs1_release_inmarket.170303-1614) Microsoft Corporation Библиотека элементов управления взаимодействия с пользователем 131795778264680084 0x7ffac7cc0000 49152 C:\Windows\System32\msisip.dll 5.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation MSI Signature SIP Provider 131795778265630538 0x7ffac8810000 45056 C:\Windows\System32\winnsi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Network Store Information RPC interface 131795778262583238 0x7ffac90b0000 90112 C:\Windows\System32\wkscli.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Workstation Service Client DLL 131795778323770185 0x7ffac97f0000 61440 C:\Windows\System32\perfproc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека объектов производительности системных процессов Windows 131795778272914974 0x7ffaca210000 225280 C:\Windows\System32\RstrtMgr.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Диспетчер перезапуска 131795778281798291 0x7ffaca340000 1593344 C:\Windows\System32\propsys.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Система страниц свойств (Майкрософт) 131795778259533909 0x7ffacadf0000 499712 C:\Windows\System32\apphelp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиентская библиотека совместимости приложений 131795778265279256 0x7ffacb6f0000 143360 C:\Windows\System32\gpapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиентские функции API групповой политики 131795778264074461 0x7ffacb920000 81920 C:\Windows\System32\wldp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Политика блокировки Windows 131795778264625720 0x7ffacbbb0000 208896 C:\Windows\System32\rsaenh.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Enhanced Cryptographic Provider 131795778265470245 0x7ffacbd30000 229376 C:\Windows\System32\IPHLPAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API вспомогательного приложения IP 131795778262605488 0x7ffacbe20000 53248 C:\Windows\System32\netutils.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API Helpers DLL 131795778261744074 0x7ffacbe40000 126976 C:\Windows\System32\userenv.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Userenv 131795778264613136 0x7ffacc150000 94208 C:\Windows\System32\cryptsp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Cryptographic Service Provider API 131795778264639501 0x7ffacc170000 45056 C:\Windows\System32\cryptbase.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base cryptographic API DLL 131795778273070150 0x7ffacc1f0000 241664 C:\Windows\System32\ntasn1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft ASN.1 API 131795778272956330 0x7ffacc230000 155648 C:\Windows\System32\ncrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Маршрутизатор Windows NCrypt 131795778261891434 0x7ffacc350000 180224 C:\Windows\System32\sspicli.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Security Support Provider Interface 131795778259633594 0x7ffacc620000 176128 C:\Windows\System32\bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795778260278752 0x7ffacc6e0000 61440 C:\Windows\System32\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795778260602827 0x7ffacc6f0000 311296 C:\Windows\System32\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795778260604728 0x7ffacc740000 81920 C:\Windows\System32\profapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Profile Basic API 131795778264076719 0x7ffacc760000 65536 C:\Windows\System32\msasn1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ASN.1 Runtime APIs 131795778259576609 0x7ffacc8f0000 1003520 C:\Windows\System32\ucrtbase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795778259578595 0x7ffacc9f0000 434176 C:\Windows\System32\bcryptprimitives.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Cryptographic Primitives Library 131795778259572597 0x7ffacca60000 122880 C:\Windows\System32\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795778264077537 0x7ffacca80000 348160 C:\Windows\System32\wintrust.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation Microsoft Trust Verification APIs 131795778260603797 0x7ffaccae0000 692224 C:\Windows\System32\SHCore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795778260601744 0x7ffaccb90000 7180288 C:\Windows\System32\windows.storage.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API хранения Microsoft WinRT 131795778259515815 0x7ffacd270000 2215936 C:\Windows\System32\KernelBase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795778264075791 0x7ffacd490000 1871872 C:\Windows\System32\crypt32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API32 криптографии 131795778272946115 0x7ffacd710000 638976 C:\Windows\System32\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795778260600162 0x7ffacd7b0000 270336 C:\Windows\System32\cfgmgr32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Configuration Manager DLL 131795778260598868 0x7ffacd810000 22056960 C:\Windows\System32\shell32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Общая библиотека оболочки Windows 131795778272945223 0x7ffaced20000 782336 C:\Windows\System32\oleaut32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795778262622754 0x7ffacede0000 450560 C:\Windows\System32\coml2.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft COM for Windows 131795778259577351 0x7ffacee50000 1183744 C:\Windows\System32\rpcrt4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795778265716961 0x7ffacef80000 32768 C:\Windows\System32\nsi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation NSI User-mode interface DLL 131795778259571021 0x7ffacef90000 647168 C:\Windows\System32\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795778260302861 0x7ffacf030000 651264 C:\Windows\System32\clbcatq.dll 2001.12.10941.16384 (rs1_release.160715-1616) Microsoft Corporation COM+ Configuration Catalog 131795778259514798 0x7ffacf0d0000 704512 C:\Windows\System32\kernel32.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795778276914178 0x7ffacf340000 4362240 C:\Windows\System32\setupapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Setup API 131795778259573318 0x7ffacf770000 212992 C:\Windows\System32\gdi32.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation GDI Client DLL 131795778259571855 0x7ffacf8c0000 1462272 C:\Windows\System32\user32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795778259575900 0x7ffacfb30000 2916352 C:\Windows\System32\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795778259912248 0x7ffacfe20000 663552 C:\Windows\System32\advapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795778259914551 0x7ffad0070000 1277952 C:\Windows\System32\ole32.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft OLE для Windows 131795778259575080 0x7ffad01b0000 335872 C:\Windows\System32\shlwapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека небольших программ оболочки 131795778259913185 0x7ffad0210000 364544 C:\Windows\System32\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795778253564149 0x7ffad0270000 1908736 C:\Windows\System32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 125 8656 2524 119 00000000:0031f1ab 131795778434403526 131795778449509279 0 0 Обязательная метка\Высокий обязательный уровень WIN-0UOTFKKVN1S\User VC_redist.x64.exe C:\ProgramData\Package Cache\{b8e12890-118d-4721-8e54-05d978086712}\VC_redist.x64.exe "C:\ProgramData\Package Cache\{b8e12890-118d-4721-8e54-05d978086712}\VC_redist.x64.exe" -uninstall -quiet -burn.related.upgrade -burn.ancestors={e2ee15e2-a480-4bc5-bfb7-e9803d1d9823} -burn.embedded BurnPipe.{BE717A63-3124-43B0-8DF0-9BCCFE1C6C46} {7F991BFE-7F20-4BF3-80B9-32F4DBA651F1} 2524 Microsoft Corporation 14.0.24516.0 Microsoft Visual C++ 2015 Redistributable (x64) - 14.0.24516 131795778434634350 0x10000 413696 C:\ProgramData\Package Cache\{b8e12890-118d-4721-8e54-05d978086712}\VC_redist.x64.exe 14.0.24516.0 Microsoft Corporation Microsoft Visual C++ 2015 Redistributable (x64) - 14.0.24516 131795778434648128 0x1360000 704512 C:\Windows\System32\kernel32.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795778434648583 0x1480000 1462272 C:\Windows\System32\user32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795778434641410 0x5c020000 335872 C:\Windows\System32\wow64.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation Win32 Emulation on NT64 131795778434642130 0x5c080000 487424 C:\Windows\System32\wow64win.dll 10.0.14393.1884 (rs1_release.171101-1233) Microsoft Corporation Wow64 Console and Win32 API Logging 131795778434651378 0x5c100000 40960 C:\Windows\System32\wow64cpu.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation AMD64 Wow64 CPU 131795778441076729 0x60750000 1556480 C:\Program Files (x86)\360\Total Security\safemon\safemon.dll 8, 4, 0, 1420 Qihu 360 Software Co., Ltd. 360 Internet Security Internet Protection 131795778441270302 0x68850000 1150976 C:\Windows\SysWOW64\vssapi.dll 10.0.14393.953 (rs1_release_inmarket.170303-1614) Microsoft Corporation Microsoft® Volume Shadow Copy Requestor/Writer Services API DLL 131795778436130151 0x68970000 1613824 C:\Windows\SysWOW64\msxml3.dll 8.110.14393.1532 Microsoft Corporation MSXML 3.0 131795778434806108 0x6bf00000 3715072 C:\Windows\SysWOW64\msi.dll 5.0.14393.2155 Microsoft Corporation Windows Installer 131795778443637167 0x6ce30000 421888 C:\Windows\SysWOW64\msvcp110_win.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Microsoft® STL110 C++ Runtime Library 131795778443628036 0x6cee0000 69632 C:\Windows\SysWOW64\usoapi.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Update Session Orchestrator API 131795778441281584 0x6cf00000 69632 C:\Windows\SysWOW64\vsstrace.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека трассировки службы теневого копирования тома Microsoft® 131795778441259129 0x6cf20000 237568 C:\Windows\SysWOW64\spp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека общих точек защиты Microsoft® Windows 131795778441248268 0x6d000000 73728 C:\Windows\SysWOW64\srclient.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft® Windows System Restore Client Library 131795778434794184 0x6d050000 135168 C:\Windows\SysWOW64\cabinet.dll 5.00 (rs1_release.160715-1616) Microsoft Corporation Microsoft® Cabinet File API 131795778441301056 0x70b70000 163840 C:\Windows\SysWOW64\ntmarta.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик Windows NT MARTA 131795778441109685 0x70ca0000 45056 C:\Windows\SysWOW64\netutils.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API Helpers DLL 131795778441122291 0x70cb0000 65536 C:\Windows\SysWOW64\wkscli.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Workstation Service Client DLL 131795778441096915 0x71140000 77824 C:\Windows\SysWOW64\netapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API DLL 131795778445929094 0x71160000 49152 C:\Windows\SysWOW64\sxproxy.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека прокси защиты системы Microsoft® Windows 131795778434770598 0x73c50000 1478656 C:\Windows\WinSxS\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.14393.1715_none_f67438d2f2547a00\GdiPlus.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Microsoft GDI+ 131795778440930826 0x74110000 479232 C:\Windows\SysWOW64\uxtheme.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека тем UxTheme (Microsoft) 131795778434848736 0x74190000 110592 C:\Windows\SysWOW64\bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795778434820454 0x74260000 2514944 C:\Windows\SysWOW64\wininet.dll 11.00.14393.447 (rs1_release_inmarket.161102-0100) Microsoft Corporation Расширения Интернета для Win32 131795778434836911 0x746e0000 32768 C:\Windows\SysWOW64\version.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Version Checking and File Installation Libraries 131795778434685096 0x74730000 598016 C:\Windows\SysWOW64\apphelp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиентская библиотека совместимости приложений 131795778434742405 0x747d0000 40960 C:\Windows\SysWOW64\cryptbase.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base cryptographic API DLL 131795778434741657 0x747e0000 126976 C:\Windows\SysWOW64\sspicli.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Security Support Provider Interface 131795778435298794 0x74800000 151552 C:\Windows\SysWOW64\imm32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Multi-User Windows IMM32 API Client DLL 131795778434750487 0x74910000 2170880 C:\Windows\SysWOW64\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795778434756266 0x74b30000 53248 C:\Windows\SysWOW64\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795778434740842 0x74b60000 790528 C:\Windows\SysWOW64\rpcrt4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795778434747032 0x74c30000 1417216 C:\Windows\SysWOW64\gdi32full.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation GDI Client DLL 131795778441083445 0x74d90000 24576 C:\Windows\SysWOW64\psapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Process Status Helper 131795778434739183 0x74da0000 778240 C:\Windows\SysWOW64\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795778434757031 0x74e60000 557056 C:\Windows\SysWOW64\SHCore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795778436023989 0x74ef0000 540672 C:\Windows\SysWOW64\clbcatq.dll 2001.12.10941.16384 (rs1_release.160715-1616) Microsoft Corporation COM+ Configuration Catalog 131795778434761608 0x74f80000 278528 C:\Windows\SysWOW64\wintrust.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation Microsoft Trust Verification APIs 131795778441084251 0x74fd0000 405504 C:\Windows\SysWOW64\ws2_32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation 32-разрядная библиотека Windows Socket 2.0 131795778434754465 0x75040000 282624 C:\Windows\SysWOW64\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795778441062552 0x75090000 1265664 C:\Windows\SysWOW64\msctf.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Серверная библиотека MSCTF 131795778434760832 0x751d0000 57344 C:\Windows\SysWOW64\msasn1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ASN.1 Runtime APIs 131795778434657620 0x751e0000 1708032 C:\Windows\SysWOW64\KernelBase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795778434740050 0x75390000 266240 C:\Windows\SysWOW64\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795778434760017 0x753e0000 1560576 C:\Windows\SysWOW64\crypt32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API32 криптографии 131795778434738141 0x75560000 487424 C:\Windows\SysWOW64\advapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795778434753620 0x756c0000 5693440 C:\Windows\SysWOW64\windows.storage.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API хранения Microsoft WinRT 131795778434755332 0x75c90000 286720 C:\Windows\SysWOW64\shlwapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека небольших программ оболочки 131795778434751570 0x75ce0000 20811776 C:\Windows\SysWOW64\shell32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Общая библиотека оболочки Windows 131795778434745317 0x774d0000 86016 C:\Windows\SysWOW64\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795778434757914 0x774f0000 61440 C:\Windows\SysWOW64\profapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Profile Basic API 131795778434744552 0x77560000 1437696 C:\Windows\SysWOW64\user32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795778434743114 0x776c0000 368640 C:\Windows\SysWOW64\bcryptprimitives.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation Windows Cryptographic Primitives Library 131795778434748913 0x77780000 503808 C:\Windows\SysWOW64\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795778434747946 0x77800000 606208 C:\Windows\SysWOW64\oleaut32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795778434758962 0x77ac0000 966656 C:\Windows\SysWOW64\ole32.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft OLE для Windows 131795778434746209 0x77bb0000 176128 C:\Windows\SysWOW64\gdi32.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation GDI Client DLL 131795778434752540 0x77cd0000 221184 C:\Windows\SysWOW64\cfgmgr32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Configuration Manager DLL 131795778434634926 0x77d20000 1585152 C:\Windows\SysWOW64\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 131795778434634658 0x7ffad0270000 1908736 C:\Windows\System32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 126 6220 8656 125 00000000:0031f1ab 131795778436498602 131795778449487186 0 0 Обязательная метка\Высокий обязательный уровень WIN-0UOTFKKVN1S\User VC_redist.x64.exe C:\ProgramData\Package Cache\{b8e12890-118d-4721-8e54-05d978086712}\VC_redist.x64.exe "C:\ProgramData\Package Cache\{b8e12890-118d-4721-8e54-05d978086712}\VC_redist.x64.exe" -uninstall -quiet -burn.related.upgrade -burn.ancestors={e2ee15e2-a480-4bc5-bfb7-e9803d1d9823} -burn.embedded BurnPipe.{BE717A63-3124-43B0-8DF0-9BCCFE1C6C46} {7F991BFE-7F20-4BF3-80B9-32F4DBA651F1} 2524 -burn.unelevated BurnPipe.{48270A10-6862-4006-8B01-6C4F9472A44D} {5996361E-1B16-4470-AEAB-C73797FE6398} 8656 Microsoft Corporation 14.0.24516.0 Microsoft Visual C++ 2015 Redistributable (x64) - 14.0.24516 131795778436566065 0x10000 413696 C:\ProgramData\Package Cache\{b8e12890-118d-4721-8e54-05d978086712}\VC_redist.x64.exe 14.0.24516.0 Microsoft Corporation Microsoft Visual C++ 2015 Redistributable (x64) - 14.0.24516 131795778436579766 0x700000 1462272 C:\Windows\System32\user32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795778436572900 0x5c020000 335872 C:\Windows\System32\wow64.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation Win32 Emulation on NT64 131795778436573839 0x5c080000 487424 C:\Windows\System32\wow64win.dll 10.0.14393.1884 (rs1_release.171101-1233) Microsoft Corporation Wow64 Console and Win32 API Logging 131795778436582534 0x5c100000 40960 C:\Windows\System32\wow64cpu.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation AMD64 Wow64 CPU 131795778441327246 0x60750000 1556480 C:\Program Files (x86)\360\Total Security\safemon\safemon.dll 8, 4, 0, 1420 Qihu 360 Software Co., Ltd. 360 Internet Security Internet Protection 131795778438075641 0x68970000 1613824 C:\Windows\SysWOW64\msxml3.dll 8.110.14393.1532 Microsoft Corporation MSXML 3.0 131795778442687826 0x6b7b0000 503808 C:\Program Files (x86)\Common Files\Microsoft Shared\Ink\tiptsf.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Инфраструктура текстовых служб сенсорной клавиатуры и панели рукописного ввода 131795778436733415 0x6bf00000 3715072 C:\Windows\SysWOW64\msi.dll 5.0.14393.2155 Microsoft Corporation Windows Installer 131795778442256204 0x6cd70000 143360 C:\Users\User\AppData\Local\Temp\{b8e12890-118d-4721-8e54-05d978086712}\.ba1\wixstdba.dll 3.7.3517.0 Microsoft Corporation WiX Standard Bootstrapper Application 131795778436721283 0x6d050000 135168 C:\Windows\SysWOW64\cabinet.dll 5.00 (rs1_release.160715-1616) Microsoft Corporation Microsoft® Cabinet File API 131795778442576841 0x6dd70000 528384 C:\Windows\SysWOW64\riched20.dll 5.31.23.1231 Microsoft Corporation Rich Text Edit Control, v3.1 131795778442529522 0x6e2a0000 4440064 C:\Windows\SysWOW64\ExplorerFrame.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ExplorerFrame 131795778442502351 0x70640000 1499136 C:\Windows\SysWOW64\WindowsCodecs.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Microsoft Windows Codecs Library 131795778442588868 0x70a20000 94208 C:\Windows\SysWOW64\usp10.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Uniscribe Unicode script processor 131795778441361803 0x70ca0000 45056 C:\Windows\SysWOW64\netutils.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API Helpers DLL 131795778441378263 0x70cb0000 65536 C:\Windows\SysWOW64\wkscli.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Workstation Service Client DLL 131795778442600490 0x70ec0000 200704 C:\Windows\SysWOW64\msls31.dll 3.10.349.0 Microsoft Corporation Microsoft Line Services library file 131795778441349089 0x71140000 77824 C:\Windows\SysWOW64\netapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API DLL 131795778438212692 0x72500000 65536 C:\Windows\SysWOW64\feclient.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT File Encryption Client Interfaces 131795778442555873 0x72b90000 126976 C:\Windows\SysWOW64\dwmapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Интерфейс API диспетчера окон рабочего стола (Майкрософт) 131795778436695628 0x73c50000 1478656 C:\Windows\WinSxS\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.14393.1715_none_f67438d2f2547a00\GdiPlus.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Microsoft GDI+ 131795778440978535 0x74110000 479232 C:\Windows\SysWOW64\uxtheme.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека тем UxTheme (Microsoft) 131795778436773248 0x74190000 110592 C:\Windows\SysWOW64\bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795778436748111 0x74260000 2514944 C:\Windows\SysWOW64\wininet.dll 11.00.14393.447 (rs1_release_inmarket.161102-0100) Microsoft Corporation Расширения Интернета для Win32 131795778442277432 0x744d0000 2138112 C:\Windows\WinSxS\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.14393.953_none_89c2555adb023171\comctl32.dll 6.10 (rs1_release_inmarket.170303-1614) Microsoft Corporation Библиотека элементов управления взаимодействия с пользователем 131795778436761290 0x746e0000 32768 C:\Windows\SysWOW64\version.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Version Checking and File Installation Libraries 131795778436606302 0x74730000 598016 C:\Windows\SysWOW64\apphelp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиентская библиотека совместимости приложений 131795778436665517 0x747d0000 40960 C:\Windows\SysWOW64\cryptbase.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base cryptographic API DLL 131795778436664767 0x747e0000 126976 C:\Windows\SysWOW64\sspicli.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Security Support Provider Interface 131795778437154760 0x74800000 151552 C:\Windows\SysWOW64\imm32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Multi-User Windows IMM32 API Client DLL 131795778436673103 0x74910000 2170880 C:\Windows\SysWOW64\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795778436679196 0x74b30000 53248 C:\Windows\SysWOW64\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795778436663741 0x74b60000 790528 C:\Windows\SysWOW64\rpcrt4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795778436669975 0x74c30000 1417216 C:\Windows\SysWOW64\gdi32full.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation GDI Client DLL 131795778441334349 0x74d90000 24576 C:\Windows\SysWOW64\psapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Process Status Helper 131795778436662107 0x74da0000 778240 C:\Windows\SysWOW64\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795778436679960 0x74e60000 557056 C:\Windows\SysWOW64\SHCore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795778437936235 0x74ef0000 540672 C:\Windows\SysWOW64\clbcatq.dll 2001.12.10941.16384 (rs1_release.160715-1616) Microsoft Corporation COM+ Configuration Catalog 131795778436686695 0x74f80000 278528 C:\Windows\SysWOW64\wintrust.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation Microsoft Trust Verification APIs 131795778441335211 0x74fd0000 405504 C:\Windows\SysWOW64\ws2_32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation 32-разрядная библиотека Windows Socket 2.0 131795778436677145 0x75040000 282624 C:\Windows\SysWOW64\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795778441315064 0x75090000 1265664 C:\Windows\SysWOW64\msctf.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Серверная библиотека MSCTF 131795778436683797 0x751d0000 57344 C:\Windows\SysWOW64\msasn1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ASN.1 Runtime APIs 131795778436589014 0x751e0000 1708032 C:\Windows\SysWOW64\KernelBase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795778436662999 0x75390000 266240 C:\Windows\SysWOW64\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795778436682756 0x753e0000 1560576 C:\Windows\SysWOW64\crypt32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API32 криптографии 131795778436661242 0x75560000 487424 C:\Windows\SysWOW64\advapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795778436676309 0x756c0000 5693440 C:\Windows\SysWOW64\windows.storage.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API хранения Microsoft WinRT 131795778436678015 0x75c90000 286720 C:\Windows\SysWOW64\shlwapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека небольших программ оболочки 131795778436674386 0x75ce0000 20811776 C:\Windows\SysWOW64\shell32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Общая библиотека оболочки Windows 131795778436668188 0x774d0000 86016 C:\Windows\SysWOW64\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795778436680850 0x774f0000 61440 C:\Windows\SysWOW64\profapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Profile Basic API 131795778436667363 0x77560000 1437696 C:\Windows\SysWOW64\user32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795778436666274 0x776c0000 368640 C:\Windows\SysWOW64\bcryptprimitives.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation Windows Cryptographic Primitives Library 131795778436671588 0x77780000 503808 C:\Windows\SysWOW64\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795778436670931 0x77800000 606208 C:\Windows\SysWOW64\oleaut32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795778436681714 0x77ac0000 966656 C:\Windows\SysWOW64\ole32.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft OLE для Windows 131795778436669155 0x77bb0000 176128 C:\Windows\SysWOW64\gdi32.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation GDI Client DLL 131795778442264244 0x77be0000 937984 C:\Windows\SysWOW64\comdlg32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека общих диалоговых окон 131795778436675383 0x77cd0000 221184 C:\Windows\SysWOW64\cfgmgr32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Configuration Manager DLL 131795778436566644 0x77d20000 1585152 C:\Windows\SysWOW64\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 131795778436566376 0x7ffad0270000 1908736 C:\Windows\System32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 127 776 664 6 00000000:0031f1ab 131795778444410924 131795778496489041 0 1 Обязательная метка\Высокий обязательный уровень WIN-0UOTFKKVN1S\User DllHost.exe C:\Windows\system32\DllHost.exe C:\Windows\system32\DllHost.exe /Processid:{F32D97DF-E3E5-4CB9-9E3E-0EB5B4E49801} Microsoft Corporation 10.0.14393.0 (rs1_release.160715-1616) COM Surrogate 131795778444445952 0x7ff7a2280000 36864 C:\Windows\System32\dllhost.exe 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation COM Surrogate 131795778446219853 0x7ffab1fd0000 2277376 C:\Windows\System32\msxml3.dll 8.110.14393.1532 Microsoft Corporation MSXML 3.0 131795778445863520 0x7ffac0fc0000 294912 C:\Windows\System32\spp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека общих точек защиты Microsoft® Windows 131795778446358944 0x7ffac34c0000 81920 C:\Windows\System32\vss_ps.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation Microsoft® Volume Shadow Copy Service proxy/stub 131795778445911171 0x7ffac37b0000 98304 C:\Windows\System32\sxproxy.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека прокси защиты системы Microsoft® Windows 131795778445886505 0x7ffac6410000 98304 C:\Windows\System32\vsstrace.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека трассировки службы теневого копирования тома Microsoft® 131795778445874946 0x7ffac6430000 1581056 C:\Windows\System32\vssapi.dll 10.0.14393.953 (rs1_release_inmarket.170303-1614) Microsoft Corporation Microsoft® Volume Shadow Copy Requestor/Writer Services API DLL 131795778446189657 0x7ffac9290000 40960 C:\Windows\System32\dsrole.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DS Setup Client DLL 131795778445528349 0x7ffacadf0000 499712 C:\Windows\System32\apphelp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиентская библиотека совместимости приложений 131795778445822117 0x7ffacaf00000 610304 C:\Windows\System32\uxtheme.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека тем UxTheme (Microsoft) 131795778446229567 0x7ffacc620000 176128 C:\Windows\System32\bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795778445607136 0x7ffacc6e0000 61440 C:\Windows\System32\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795778445733287 0x7ffacc770000 1572864 C:\Windows\System32\gdi32full.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation GDI Client DLL 131795778445554437 0x7ffacc8f0000 1003520 C:\Windows\System32\ucrtbase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795778445557842 0x7ffacc9f0000 434176 C:\Windows\System32\bcryptprimitives.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Cryptographic Primitives Library 131795778445731331 0x7ffacca60000 122880 C:\Windows\System32\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795778445510504 0x7ffacd270000 2215936 C:\Windows\System32\KernelBase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795778446164492 0x7ffacd710000 638976 C:\Windows\System32\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795778446163608 0x7ffaced20000 782336 C:\Windows\System32\oleaut32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795778445556886 0x7ffacee50000 1183744 C:\Windows\System32\rpcrt4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795778445607992 0x7ffacef90000 647168 C:\Windows\System32\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795778445613339 0x7ffacf030000 651264 C:\Windows\System32\clbcatq.dll 2001.12.10941.16384 (rs1_release.160715-1616) Microsoft Corporation COM+ Configuration Catalog 131795778445509620 0x7ffacf0d0000 704512 C:\Windows\System32\kernel32.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795778445732492 0x7ffacf770000 212992 C:\Windows\System32\gdi32.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation GDI Client DLL 131795778445875933 0x7ffacf820000 434176 C:\Windows\System32\ws2_32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation 32-разрядная библиотека Windows Socket 2.0 131795778445746497 0x7ffacf890000 188416 C:\Windows\System32\imm32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Multi-User Windows IMM32 API Client DLL 131795778445730425 0x7ffacf8c0000 1462272 C:\Windows\System32\user32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795778445555609 0x7ffacfb30000 2916352 C:\Windows\System32\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795778445864695 0x7ffacfe20000 663552 C:\Windows\System32\advapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795778445702180 0x7ffad0210000 364544 C:\Windows\System32\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795778444446182 0x7ffad0270000 1908736 C:\Windows\System32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 128 12664 11456 118 00000000:0031f1ab 131795778472532085 0 0 0 Обязательная метка\Высокий обязательный уровень WIN-0UOTFKKVN1S\User WinPcap_4_1_3.exe C:\Program Files\Wireshark\WinPcap_4_1_3.exe "C:\Program Files\Wireshark\WinPcap_4_1_3.exe" Riverbed Technology, Inc. 4.1.0.2980 WinPcap 4.1.3 installer 131795778474370909 0x400000 278528 C:\Program Files\Wireshark\WinPcap_4_1_3.exe 4.1.0.2980 Riverbed Technology, Inc. WinPcap 4.1.3 installer 131795778474385662 0x450000 1462272 C:\Windows\System32\user32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795778481441454 0x10000000 36864 C:\Users\User\AppData\Local\Temp\nsy6E15.tmp\InstallOptions.dll 131795778474378741 0x5c020000 335872 C:\Windows\System32\wow64.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation Win32 Emulation on NT64 131795778474379428 0x5c080000 487424 C:\Windows\System32\wow64win.dll 10.0.14393.1884 (rs1_release.171101-1233) Microsoft Corporation Wow64 Console and Win32 API Logging 131795778474388380 0x5c100000 40960 C:\Windows\System32\wow64cpu.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation AMD64 Wow64 CPU 131795778478947902 0x60750000 1556480 C:\Program Files (x86)\360\Total Security\safemon\safemon.dll 8, 4, 0, 1420 Qihu 360 Software Co., Ltd. 360 Internet Security Internet Protection 131795778475429642 0x66680000 12288 C:\Windows\SysWOW64\sfc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows File Protection 131795778475455924 0x67690000 61440 C:\Windows\SysWOW64\sfc_os.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows File Protection 131795778476129447 0x68890000 2506752 C:\Windows\AppPatch\AcGenral.dll 10.0.14393.953 (rs1_release_inmarket.170303-1614) Microsoft Corporation Windows Compatibility DLL 131795778474677141 0x6b830000 2584576 C:\Windows\AppPatch\AcLayers.dll 10.0.14393.953 (rs1_release_inmarket.170303-1614) Microsoft Corporation Windows Compatibility DLL 131795778480464294 0x6dd70000 528384 C:\Windows\SysWOW64\riched20.dll 5.31.23.1231 Microsoft Corporation Rich Text Edit Control, v3.1 131795778477256204 0x6e070000 98304 C:\Windows\SysWOW64\msacm32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Фильтр диспетчера аудиосжатия Microsoft 131795778475437968 0x700d0000 434176 C:\Windows\SysWOW64\winspool.drv 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Драйвер диспетчера очереди Windows 131795778476670529 0x707d0000 86016 C:\Windows\SysWOW64\samcli.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Security Accounts Manager Client DLL 131795778480530862 0x70a20000 94208 C:\Windows\SysWOW64\usp10.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Uniscribe Unicode script processor 131795778478980362 0x70ca0000 45056 C:\Windows\SysWOW64\netutils.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API Helpers DLL 131795778478991569 0x70cb0000 65536 C:\Windows\SysWOW64\wkscli.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Workstation Service Client DLL 131795778480522492 0x70ec0000 200704 C:\Windows\SysWOW64\msls31.dll 3.10.349.0 Microsoft Corporation Microsoft Line Services library file 131795778478967471 0x71140000 77824 C:\Windows\SysWOW64\netapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API DLL 131795778479094944 0x72510000 24576 C:\Windows\SysWOW64\shfolder.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Shell Folder Service 131795778477334993 0x725e0000 2273280 C:\Windows\SysWOW64\iertutil.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служебная программа времени выполнения для Internet Explorer 131795778479412597 0x728e0000 1372160 C:\Windows\SysWOW64\propsys.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Система страниц свойств (Майкрософт) 131795778477303386 0x72b90000 126976 C:\Windows\SysWOW64\dwmapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Интерфейс API диспетчера окон рабочего стола (Майкрософт) 131795778477311770 0x72cc0000 1658880 C:\Windows\SysWOW64\urlmon.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширения OLE32 для Win32 131795778476643968 0x74110000 479232 C:\Windows\SysWOW64\uxtheme.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека тем UxTheme (Microsoft) 131795778475447551 0x74190000 110592 C:\Windows\SysWOW64\bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795778477321345 0x741f0000 143360 C:\Windows\SysWOW64\winmmbase.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base Multimedia Extension API DLL 131795778476661893 0x74230000 147456 C:\Windows\SysWOW64\winmm.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation MCI API DLL 131795778478915573 0x744d0000 2138112 C:\Windows\WinSxS\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.14393.953_none_89c2555adb023171\comctl32.dll 6.10 (rs1_release_inmarket.170303-1614) Microsoft Corporation Библиотека элементов управления взаимодействия с пользователем 131795778477286525 0x746e0000 32768 C:\Windows\SysWOW64\version.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Version Checking and File Installation Libraries 131795778477294825 0x746f0000 106496 C:\Windows\SysWOW64\userenv.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Userenv 131795778475176915 0x74710000 90112 C:\Windows\SysWOW64\mpr.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека маршрутизации для нескольких служб доступа 131795778474424278 0x74730000 598016 C:\Windows\SysWOW64\apphelp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиентская библиотека совместимости приложений 131795778475146383 0x747d0000 40960 C:\Windows\SysWOW64\cryptbase.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base cryptographic API DLL 131795778475145740 0x747e0000 126976 C:\Windows\SysWOW64\sspicli.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Security Support Provider Interface 131795778478799256 0x74800000 151552 C:\Windows\SysWOW64\imm32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Multi-User Windows IMM32 API Client DLL 131795778475144147 0x74830000 917504 C:\Windows\SysWOW64\ucrtbase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795778475143114 0x74910000 2170880 C:\Windows\SysWOW64\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795778475151896 0x74b30000 53248 C:\Windows\SysWOW64\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795778475144928 0x74b60000 790528 C:\Windows\SysWOW64\rpcrt4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795778475139437 0x74c30000 1417216 C:\Windows\SysWOW64\gdi32full.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation GDI Client DLL 131795778478951681 0x74d90000 24576 C:\Windows\SysWOW64\psapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Process Status Helper 131795778475135689 0x74da0000 778240 C:\Windows\SysWOW64\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795778475152658 0x74e60000 557056 C:\Windows\SysWOW64\SHCore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795778479395683 0x74ef0000 540672 C:\Windows\SysWOW64\clbcatq.dll 2001.12.10941.16384 (rs1_release.160715-1616) Microsoft Corporation COM+ Configuration Catalog 131795778478952460 0x74fd0000 405504 C:\Windows\SysWOW64\ws2_32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation 32-разрядная библиотека Windows Socket 2.0 131795778475149237 0x75040000 282624 C:\Windows\SysWOW64\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795778480549998 0x75090000 1265664 C:\Windows\SysWOW64\msctf.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Серверная библиотека MSCTF 131795778474394583 0x751e0000 1708032 C:\Windows\SysWOW64\KernelBase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795778475147716 0x75390000 266240 C:\Windows\SysWOW64\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795778475150048 0x75560000 487424 C:\Windows\SysWOW64\advapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795778475142341 0x756c0000 5693440 C:\Windows\SysWOW64\windows.storage.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API хранения Microsoft WinRT 131795778475150968 0x75c90000 286720 C:\Windows\SysWOW64\shlwapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека небольших программ оболочки 131795778475140388 0x75ce0000 20811776 C:\Windows\SysWOW64\shell32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Общая библиотека оболочки Windows 131795778475156318 0x770c0000 4239360 C:\Windows\SysWOW64\setupapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Setup API 131795778475137512 0x774d0000 86016 C:\Windows\SysWOW64\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795778475153528 0x774f0000 61440 C:\Windows\SysWOW64\profapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Profile Basic API 131795778475136714 0x77560000 1437696 C:\Windows\SysWOW64\user32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795778475147048 0x776c0000 368640 C:\Windows\SysWOW64\bcryptprimitives.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation Windows Cryptographic Primitives Library 131795778475155357 0x77780000 503808 C:\Windows\SysWOW64\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795778475154692 0x77800000 606208 C:\Windows\SysWOW64\oleaut32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795778476634451 0x77ac0000 966656 C:\Windows\SysWOW64\ole32.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft OLE для Windows 131795778475138620 0x77bb0000 176128 C:\Windows\SysWOW64\gdi32.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation GDI Client DLL 131795778481442448 0x77be0000 937984 C:\Windows\SysWOW64\comdlg32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека общих диалоговых окон 131795778475141404 0x77cd0000 221184 C:\Windows\SysWOW64\cfgmgr32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Configuration Manager DLL 131795778474371565 0x77d20000 1585152 C:\Windows\SysWOW64\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 131795778474371291 0x7ffad0270000 1908736 C:\Windows\System32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 129 4536 6724 49 00000000:000003e7 131795778749072780 131795779059347952 0 0 Обязательная метка\Обязательный уровень системы NT AUTHORITY\СИСТЕМА 360TsLiveUpd.exe C:\Program Files (x86)\360\Total Security\360TsLiveUpd.exe "C:\Program Files (x86)\360\Total Security\360TsLiveUpd.exe" /delay:30 Qihoo 360 Technology Co. Ltd. 9,6,0,1006 360 Update Module 131795778754806493 0x960000 704512 C:\Windows\System32\kernel32.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795778749089644 0xaf0000 1773568 C:\Program Files (x86)\360\Total Security\360TsLiveUpd.exe 9,6,0,1006 Qihoo 360 Technology Co. Ltd. 360 Update Module 131795778754806923 0xcb0000 1462272 C:\Windows\System32\user32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795778754799495 0x5c020000 335872 C:\Windows\System32\wow64.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation Win32 Emulation on NT64 131795778754800515 0x5c080000 487424 C:\Windows\System32\wow64win.dll 10.0.14393.1884 (rs1_release.171101-1233) Microsoft Corporation Wow64 Console and Win32 API Logging 131795778754814885 0x5c100000 40960 C:\Windows\System32\wow64cpu.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation AMD64 Wow64 CPU 131795778757370572 0x5c480000 245760 C:\Program Files (x86)\360\Total Security\PDown.dll 1, 3, 0, 1420 Qihu 360 Software Co., Ltd. 360 Security Center Network Module 131795778756606776 0x62210000 446464 C:\Program Files (x86)\360\Total Security\360TSCommon.dll 9, 0, 0, 1016 QIHU 360 SOFTWARE CO. LIMITED 360 Total Security 131795778756675674 0x62410000 352256 C:\Program Files (x86)\360\Total Security\CrashReport.dll 7, 0, 0, 1000 360.cn 360杀毒 异常捕获程序 131795778771269230 0x62530000 65536 C:\Windows\SysWOW64\devrtl.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Device Management Run Time Library 131795778756191261 0x62590000 987136 C:\Program Files (x86)\360\Total Security\360Base.dll 1, 0, 0, 1165 360.cn 360安全卫士 基础模块 131795778758783666 0x62980000 376832 C:\Program Files (x86)\360\Total Security\360NetBase.dll 7, 25, 0, 76 360.cn 360安全卫士 网络基础模块 131795778760284069 0x686c0000 1130496 C:\Program Files (x86)\360\Total Security\360P2SP.dll 1, 3, 0, 1490 Qihu 360 Software Co., Ltd. 360 Security Center Network Module 131795778759580194 0x687e0000 671744 C:\Windows\SysWOW64\rasapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API удаленного доступа 131795778756645104 0x6b6d0000 102400 C:\Program Files (x86)\360\Total Security\I18N.dll 1, 0, 0, 1016 Qihu 360 Software Co., Ltd. 360 Total Security 131795778759221046 0x6b740000 450560 C:\Program Files (x86)\360\Total Security\LiveUpd360.dll 1, 3, 0, 1420 Qihu 360 Software Co., Ltd. 360 Security Center Network Module 131795778771241478 0x6ceb0000 135168 C:\Windows\SysWOW64\cabinet.dll 5.00 (rs1_release.160715-1616) Microsoft Corporation Microsoft® Cabinet File API 131795778759558966 0x6cee0000 495616 C:\Program Files (x86)\360\Total Security\360net.dll 1, 2, 0, 1190 Qihu 360 Software Co., Ltd. 360 Security Center Network Module 131795778759591359 0x6d000000 102400 C:\Windows\SysWOW64\rasman.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Remote Access Connection Manager 131795778757259323 0x6d020000 393216 C:\Program Files (x86)\360\Total Security\Safelive.dll 3, 0, 0, 3090 Qihu 360 Software Co., Ltd. 360 Security Center Network Module 131795778754915374 0x6dcd0000 606208 C:\Windows\WinSxS\x86_microsoft.windows.common-controls_6595b64144ccf1df_5.82.14393.447_none_5507ded2cb4f7f4c\comctl32.dll 6.10 (rs1_release_inmarket.170303-1614) Microsoft Corporation Библиотека элементов управления взаимодействия с пользователем 131795778757076225 0x6fcd0000 151552 C:\Windows\SysWOW64\dbgcore.dll 10.0.14321.1024 (debuggers(dbg).160715-1616) Microsoft Windows Core Debugging Helpers 131795778757053689 0x700d0000 434176 C:\Windows\SysWOW64\winspool.drv 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Драйвер диспетчера очереди Windows 131795778760819219 0x70a40000 81920 C:\Windows\SysWOW64\nlaapi.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Network Location Awareness 2 131795778760808345 0x70a60000 90112 C:\Windows\SysWOW64\pnrpnsp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик пространства имен PNRP 131795778760831928 0x70c00000 49152 C:\Windows\SysWOW64\winrnr.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation LDAP RnR Provider DLL 131795778760719360 0x70c10000 73728 C:\Windows\SysWOW64\NapiNSP.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик оболочки совместимости для имен электронной почты 131795778757042532 0x70fd0000 1331200 C:\Windows\SysWOW64\dbghelp.dll 10.0.14321.1024 (rs1_release.160715-1616) Microsoft Windows Image Helper 131795778754954034 0x71140000 77824 C:\Windows\SysWOW64\netapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API DLL 131795778759176302 0x71610000 77824 C:\Windows\SysWOW64\dhcpcsvc6.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиент DHCPv6 131795778760037733 0x72500000 65536 C:\Windows\SysWOW64\rtutils.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Routing Utilities 131795778754965083 0x725e0000 2273280 C:\Windows\SysWOW64\iertutil.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служебная программа времени выполнения для Internet Explorer 131795778760703814 0x72b90000 126976 C:\Windows\SysWOW64\dwmapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Интерфейс API диспетчера окон рабочего стола (Майкрософт) 131795778754885272 0x72cc0000 1658880 C:\Windows\SysWOW64\urlmon.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширения OLE32 для Win32 131795778760157762 0x73a40000 32768 C:\Windows\SysWOW64\winnsi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Network Store Information RPC interface 131795778760844304 0x73a50000 299008 C:\Windows\SysWOW64\FWPUCLNT.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API пользовательского режима FWP/IPsec 131795778759033319 0x73ab0000 32768 C:\Windows\SysWOW64\rasadhlp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Remote Access AutoDial Helper 131795778759195405 0x73ac0000 81920 C:\Windows\SysWOW64\dhcpcsvc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служба DHCP-клиента 131795778758811901 0x73ae0000 40960 C:\Windows\SysWOW64\secur32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Security Support Provider Interface 131795778754896160 0x73ee0000 61440 C:\Windows\SysWOW64\wtsapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Remote Desktop Session Host Server SDK APIs 131795778756496605 0x73f00000 192512 C:\Windows\SysWOW64\IPHLPAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API вспомогательного приложения IP 131795778758800201 0x73f30000 512000 C:\Windows\SysWOW64\dnsapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Динамическая библиотека API DNS-клиента 131795778758995875 0x73ff0000 319488 C:\Windows\SysWOW64\mswsock.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширение поставщика службы API Microsoft Windows Sockets 2.0 131795778755444210 0x74110000 479232 C:\Windows\SysWOW64\uxtheme.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека тем UxTheme (Microsoft) 131795778757065417 0x74190000 110592 C:\Windows\SysWOW64\bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795778754936829 0x74260000 2514944 C:\Windows\SysWOW64\wininet.dll 11.00.14393.447 (rs1_release_inmarket.161102-0100) Microsoft Corporation Расширения Интернета для Win32 131795778754926035 0x746e0000 32768 C:\Windows\SysWOW64\version.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Version Checking and File Installation Libraries 131795778754906982 0x746f0000 106496 C:\Windows\SysWOW64\userenv.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Userenv 131795778754839724 0x747d0000 40960 C:\Windows\SysWOW64\cryptbase.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base cryptographic API DLL 131795778754839061 0x747e0000 126976 C:\Windows\SysWOW64\sspicli.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Security Support Provider Interface 131795778754984308 0x74800000 151552 C:\Windows\SysWOW64\imm32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Multi-User Windows IMM32 API Client DLL 131795778754844921 0x74830000 917504 C:\Windows\SysWOW64\ucrtbase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795778754844209 0x74910000 2170880 C:\Windows\SysWOW64\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795778754848553 0x74b30000 53248 C:\Windows\SysWOW64\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795778754838261 0x74b60000 790528 C:\Windows\SysWOW64\rpcrt4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795778754834307 0x74c30000 1417216 C:\Windows\SysWOW64\gdi32full.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation GDI Client DLL 131795778754836789 0x74da0000 778240 C:\Windows\SysWOW64\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795778754849287 0x74e60000 557056 C:\Windows\SysWOW64\SHCore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795778754858137 0x74f80000 278528 C:\Windows\SysWOW64\wintrust.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation Microsoft Trust Verification APIs 131795778757264416 0x74fd0000 405504 C:\Windows\SysWOW64\ws2_32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation 32-разрядная библиотека Windows Socket 2.0 131795778754845880 0x75040000 282624 C:\Windows\SysWOW64\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795778757525679 0x75090000 1265664 C:\Windows\SysWOW64\msctf.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Серверная библиотека MSCTF 131795778754858868 0x751d0000 57344 C:\Windows\SysWOW64\msasn1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ASN.1 Runtime APIs 131795778754821950 0x751e0000 1708032 C:\Windows\SysWOW64\KernelBase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795778754837590 0x75390000 266240 C:\Windows\SysWOW64\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795778754859660 0x753e0000 1560576 C:\Windows\SysWOW64\crypt32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API32 криптографии 131795778754836061 0x75560000 487424 C:\Windows\SysWOW64\advapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795778754843447 0x756c0000 5693440 C:\Windows\SysWOW64\windows.storage.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API хранения Microsoft WinRT 131795778754847622 0x75c90000 286720 C:\Windows\SysWOW64\shlwapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека небольших программ оболочки 131795778754841594 0x75ce0000 20811776 C:\Windows\SysWOW64\shell32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Общая библиотека оболочки Windows 131795778757263313 0x770c0000 4239360 C:\Windows\SysWOW64\setupapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Setup API 131795778754832290 0x774d0000 86016 C:\Windows\SysWOW64\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795778754850160 0x774f0000 61440 C:\Windows\SysWOW64\profapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Profile Basic API 131795778754830966 0x77560000 1437696 C:\Windows\SysWOW64\user32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795778754840388 0x776c0000 368640 C:\Windows\SysWOW64\bcryptprimitives.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation Windows Cryptographic Primitives Library 131795778754852723 0x77780000 503808 C:\Windows\SysWOW64\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795778754852075 0x77800000 606208 C:\Windows\SysWOW64\oleaut32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795778754851111 0x77ac0000 966656 C:\Windows\SysWOW64\ole32.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft OLE для Windows 131795778754833517 0x77bb0000 176128 C:\Windows\SysWOW64\gdi32.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation GDI Client DLL 131795778754842516 0x77cd0000 221184 C:\Windows\SysWOW64\cfgmgr32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Configuration Manager DLL 131795778758801140 0x77d10000 28672 C:\Windows\SysWOW64\nsi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation NSI User-mode interface DLL 131795778749090198 0x77d20000 1585152 C:\Windows\SysWOW64\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 131795778749089932 0x7ffad0270000 1908736 C:\Windows\System32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 130 576 904 22 00000000:000003e7 131795778801446311 131795778914376890 0 1 Обязательная метка\Обязательный уровень системы NT AUTHORITY\СИСТЕМА compattelrunner.exe C:\Windows\system32\compattelrunner.exe C:\Windows\system32\compattelrunner.exe -m:aeinv.dll -f:UpdateSoftwareInventoryW Microsoft Corporation 10.0.17060.1029 (WinBuild.160101.0800) Microsoft Compatibility Telemetry 131795778801697096 0x7ff70d700000 147456 C:\Windows\System32\CompatTelRunner.exe 10.0.17060.1029 (WinBuild.160101.0800) Microsoft Corporation Microsoft Compatibility Telemetry 131795778818066285 0x7ffaafa00000 2240512 C:\Windows\System32\OpcServices.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Native Code OPC Services Library 131795778817591965 0x7ffababa0000 1126400 C:\Windows\System32\AppxPackaging.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека пакетов машинного кода Appx 131795778804489710 0x7ffabc160000 688128 C:\Windows\System32\aeinv.dll 10.0.17060.1029 (WinBuild.160101.0800) Microsoft Corporation Application Inventory Component 131795778805836272 0x7ffabdd60000 425984 C:\Windows\System32\AppXDeploymentClient.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL-библиотека клиента развертывания AppX 131795778814205456 0x7ffabeb20000 385024 C:\Windows\System32\Windows.ApplicationModel.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows ApplicationModel API Server 131795778822547539 0x7ffabf330000 2457600 C:\Windows\System32\msxml6.dll 6.30.14393.2156 Microsoft Corporation MSXML 6.0 131795778804504849 0x7ffac0610000 3088384 C:\Windows\System32\msi.dll 5.0.14393.2155 Microsoft Corporation Windows Installer 131795778817977946 0x7ffac34e0000 1843200 C:\Windows\System32\urlmon.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширения OLE32 для Win32 131795778804546449 0x7ffac3cb0000 2772992 C:\Windows\System32\iertutil.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служебная программа времени выполнения для Internet Explorer 131795778804520752 0x7ffac60e0000 221184 C:\Windows\System32\xmllite.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft XmlLite Library 131795778832909471 0x7ffac6ac0000 835584 C:\Windows\System32\Windows.UI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Runtime UI Foundation DLL 131795778906843983 0x7ffac6c40000 2596864 C:\Windows\WinSxS\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.14393.953_none_42151e83c686086b\comctl32.dll 6.10 (rs1_release_inmarket.170303-1614) Microsoft Corporation Библиотека элементов управления взаимодействия с пользователем 131795778832655807 0x7ffac7580000 1077248 C:\Windows\System32\MrmCoreR.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Windows MRM 131795778804404344 0x7ffac9220000 397312 C:\Windows\System32\wevtapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API настройки и использования событий 131795778815078784 0x7ffaca340000 1593344 C:\Windows\System32\propsys.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Система страниц свойств (Майкрософт) 131795778828219669 0x7ffaca570000 421888 C:\Windows\System32\BCP47Langs.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation BCP47 Language Classes 131795778814441201 0x7ffacb1e0000 1163264 C:\Windows\System32\twinapi.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation twinapi.appcore 131795778804580321 0x7ffacb420000 204800 C:\Windows\System32\ntmarta.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик Windows NT MARTA 131795778907262709 0x7ffacbbb0000 208896 C:\Windows\System32\rsaenh.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Enhanced Cryptographic Provider 131795778907252028 0x7ffacc150000 94208 C:\Windows\System32\cryptsp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Cryptographic Service Provider API 131795778907278739 0x7ffacc170000 45056 C:\Windows\System32\cryptbase.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base cryptographic API DLL 131795778804414262 0x7ffacc620000 176128 C:\Windows\System32\bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795778804494514 0x7ffacc6e0000 61440 C:\Windows\System32\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795778804493744 0x7ffacc6f0000 311296 C:\Windows\System32\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795778804495988 0x7ffacc740000 81920 C:\Windows\System32\profapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Profile Basic API 131795778827105014 0x7ffacc760000 65536 C:\Windows\System32\msasn1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ASN.1 Runtime APIs 131795778804382980 0x7ffacc770000 1572864 C:\Windows\System32\gdi32full.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation GDI Client DLL 131795778804377788 0x7ffacc8f0000 1003520 C:\Windows\System32\ucrtbase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795778804379461 0x7ffacc9f0000 434176 C:\Windows\System32\bcryptprimitives.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Cryptographic Primitives Library 131795778804384595 0x7ffacca60000 122880 C:\Windows\System32\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795778804495204 0x7ffaccae0000 692224 C:\Windows\System32\SHCore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795778804492916 0x7ffaccb90000 7180288 C:\Windows\System32\windows.storage.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API хранения Microsoft WinRT 131795778801923662 0x7ffacd270000 2215936 C:\Windows\System32\KernelBase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795778827104008 0x7ffacd490000 1871872 C:\Windows\System32\crypt32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API32 криптографии 131795778804386163 0x7ffacd710000 638976 C:\Windows\System32\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795778804491943 0x7ffacd7b0000 270336 C:\Windows\System32\cfgmgr32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Configuration Manager DLL 131795778804490783 0x7ffacd810000 22056960 C:\Windows\System32\shell32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Общая библиотека оболочки Windows 131795778804385435 0x7ffaced20000 782336 C:\Windows\System32\oleaut32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795778906861800 0x7ffacede0000 450560 C:\Windows\System32\coml2.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft COM for Windows 131795778804378536 0x7ffacee50000 1183744 C:\Windows\System32\rpcrt4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795778804375031 0x7ffacef90000 647168 C:\Windows\System32\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795778805812639 0x7ffacf030000 651264 C:\Windows\System32\clbcatq.dll 2001.12.10941.16384 (rs1_release.160715-1616) Microsoft Corporation COM+ Configuration Catalog 131795778801922778 0x7ffacf0d0000 704512 C:\Windows\System32\kernel32.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795778804382152 0x7ffacf770000 212992 C:\Windows\System32\gdi32.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation GDI Client DLL 131795778804383814 0x7ffacf8c0000 1462272 C:\Windows\System32\user32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795778804377045 0x7ffacfb30000 2916352 C:\Windows\System32\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795778804387986 0x7ffacfe20000 663552 C:\Windows\System32\advapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795778804376248 0x7ffad0070000 1277952 C:\Windows\System32\ole32.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft OLE для Windows 131795778804387078 0x7ffad01b0000 335872 C:\Windows\System32\shlwapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека небольших программ оболочки 131795778804380589 0x7ffad0210000 364544 C:\Windows\System32\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795778801697420 0x7ffad0270000 1908736 C:\Windows\System32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 131 5796 576 130 00000000:000003e7 131795778802922396 131795778914424489 0 1 Обязательная метка\Обязательный уровень системы NT AUTHORITY\СИСТЕМА Conhost.exe C:\Windows\System32\Conhost.exe \??\C:\Windows\system32\conhost.exe 0xffffffff -ForceV1 Microsoft Corporation 10.0.14393.0 (rs1_release.160715-1616) Console Window Host 131795778802973283 0x7ff768b40000 69632 C:\Windows\System32\conhost.exe 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Console Window Host 131795778803854304 0x7ffabe520000 368640 C:\Windows\System32\ConhostV2.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Хост окна консоли 131795778803885132 0x7ffaca340000 1593344 C:\Windows\System32\propsys.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Система страниц свойств (Майкрософт) 131795778804265910 0x7ffacc6e0000 61440 C:\Windows\System32\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795778804263214 0x7ffacc6f0000 311296 C:\Windows\System32\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795778804266691 0x7ffacc740000 81920 C:\Windows\System32\profapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Profile Basic API 131795778803866949 0x7ffacc770000 1572864 C:\Windows\System32\gdi32full.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation GDI Client DLL 131795778803863023 0x7ffacc8f0000 1003520 C:\Windows\System32\ucrtbase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795778803864758 0x7ffacc9f0000 434176 C:\Windows\System32\bcryptprimitives.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Cryptographic Primitives Library 131795778803868855 0x7ffacca60000 122880 C:\Windows\System32\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795778803886850 0x7ffaccae0000 692224 C:\Windows\System32\SHCore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795778804262100 0x7ffaccb90000 7180288 C:\Windows\System32\windows.storage.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API хранения Microsoft WinRT 131795778803830045 0x7ffacd270000 2215936 C:\Windows\System32\KernelBase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795778803871230 0x7ffacd710000 638976 C:\Windows\System32\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795778804260987 0x7ffacd7b0000 270336 C:\Windows\System32\cfgmgr32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Configuration Manager DLL 131795778804259635 0x7ffacd810000 22056960 C:\Windows\System32\shell32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Общая библиотека оболочки Windows 131795778803870515 0x7ffaced20000 782336 C:\Windows\System32\oleaut32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795778803863810 0x7ffacee50000 1183744 C:\Windows\System32\rpcrt4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795778803838246 0x7ffacef90000 647168 C:\Windows\System32\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795778803829142 0x7ffacf0d0000 704512 C:\Windows\System32\kernel32.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795778803866104 0x7ffacf770000 212992 C:\Windows\System32\gdi32.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation GDI Client DLL 131795778803869659 0x7ffacf890000 188416 C:\Windows\System32\imm32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Multi-User Windows IMM32 API Client DLL 131795778803868080 0x7ffacf8c0000 1462272 C:\Windows\System32\user32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795778803862004 0x7ffacfb30000 2916352 C:\Windows\System32\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795778804264068 0x7ffacfe20000 663552 C:\Windows\System32\advapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795778804265029 0x7ffad01b0000 335872 C:\Windows\System32\shlwapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека небольших программ оболочки 131795778803886000 0x7ffad0210000 364544 C:\Windows\System32\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795778802973543 0x7ffad0270000 1908736 C:\Windows\System32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 132 5748 580 4 00000000:000003e7 131795778806993759 0 0 1 Обязательная метка\Обязательный уровень системы NT AUTHORITY\СИСТЕМА svchost.exe C:\Windows\system32\svchost.exe C:\Windows\system32\svchost.exe -k wsappx Microsoft Corporation 10.0.14393.0 (rs1_release.160715-1616) Хост-процесс для служб Windows 131795778807042136 0x7ff718c20000 57344 C:\Windows\System32\svchost.exe 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Хост-процесс для служб Windows 131795778809771371 0x7ffaafc30000 2297856 C:\Windows\System32\AppXDeploymentServer.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation Библиотека DLL сервера развертывания AppX 131795778810217417 0x7ffabafc0000 700416 C:\Windows\System32\wer.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека сообщений об ошибках Windows 131795778809793544 0x7ffac3270000 40960 C:\Windows\System32\fltLib.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека фильтров 131795778809909001 0x7ffac42a0000 659456 C:\Windows\System32\StateRepository.Core.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation StateRepository Core 131795778810725123 0x7ffac46d0000 4161536 C:\Windows\System32\Windows.StateRepository.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Сервер Windows StateRepository API Server 131795778810201985 0x7ffac9220000 397312 C:\Windows\System32\wevtapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API настройки и использования событий 131795778809816672 0x7ffacb420000 204800 C:\Windows\System32\ntmarta.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик Windows NT MARTA 131795778809822524 0x7ffacb720000 344064 C:\Windows\System32\mintdh.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Вспомогательная библиотека трассировки событий 131795778809799027 0x7ffacb820000 712704 C:\Windows\System32\tdh.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Вспомогательная библиотека трассировки событий 131795778810317823 0x7ffacb920000 81920 C:\Windows\System32\wldp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Политика блокировки Windows 131795778809809854 0x7ffacbe40000 126976 C:\Windows\System32\userenv.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Userenv 131795778810208064 0x7ffacc620000 176128 C:\Windows\System32\bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795778809594468 0x7ffacc6e0000 61440 C:\Windows\System32\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795778809776574 0x7ffacc740000 81920 C:\Windows\System32\profapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Profile Basic API 131795778809778372 0x7ffacc760000 65536 C:\Windows\System32\msasn1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ASN.1 Runtime APIs 131795778809607454 0x7ffacc770000 1572864 C:\Windows\System32\gdi32full.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation GDI Client DLL 131795778809572087 0x7ffacc8f0000 1003520 C:\Windows\System32\ucrtbase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795778809580973 0x7ffacc9f0000 434176 C:\Windows\System32\bcryptprimitives.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Cryptographic Primitives Library 131795778809605642 0x7ffacca60000 122880 C:\Windows\System32\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795778810318817 0x7ffacca80000 348160 C:\Windows\System32\wintrust.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation Microsoft Trust Verification APIs 131795778809772360 0x7ffaccae0000 692224 C:\Windows\System32\SHCore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795778809561432 0x7ffacd270000 2215936 C:\Windows\System32\KernelBase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795778809777533 0x7ffacd490000 1871872 C:\Windows\System32\crypt32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API32 криптографии 131795778809774521 0x7ffacd710000 638976 C:\Windows\System32\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795778809773756 0x7ffaced20000 782336 C:\Windows\System32\oleaut32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795778809570735 0x7ffacee50000 1183744 C:\Windows\System32\rpcrt4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795778809595255 0x7ffacef90000 647168 C:\Windows\System32\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795778810493271 0x7ffacf030000 651264 C:\Windows\System32\clbcatq.dll 2001.12.10941.16384 (rs1_release.160715-1616) Microsoft Corporation COM+ Configuration Catalog 131795778809560537 0x7ffacf0d0000 704512 C:\Windows\System32\kernel32.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795778809606459 0x7ffacf770000 212992 C:\Windows\System32\gdi32.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation GDI Client DLL 131795778809600563 0x7ffacf8c0000 1462272 C:\Windows\System32\user32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795778809580022 0x7ffacfb30000 2916352 C:\Windows\System32\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795778809775513 0x7ffacfe20000 663552 C:\Windows\System32\advapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795778809569904 0x7ffad0210000 364544 C:\Windows\System32\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795778807042435 0x7ffad0270000 1908736 C:\Windows\System32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 1 11372 10560 2 00000000:0031f1ab 131795770632346846 0 0 1 Обязательная метка\Высокий обязательный уровень WIN-0UOTFKKVN1S\User Procmon64.exe C:\Users\User\AppData\Local\Temp\Procmon64.exe "C:\Users\User\AppData\Local\Temp\Procmon64.exe" /originalpath "C:\Users\User\Downloads\ProcessMonitor\Procmon.exe" Sysinternals - www.sysinternals.com 3.50 Process Monitor 131795770645297135 0x7ff7ed960000 1224704 C:\Users\User\AppData\Local\Temp\Procmon64.exe 3.50 Sysinternals - www.sysinternals.com Process Monitor 131795770645297135 0x7ffac2b80000 40960 C:\Windows\SYSTEM32\VERSION.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Version Checking and File Installation Libraries 131795770645297135 0x7ffac3270000 40960 C:\Windows\SYSTEM32\FLTLIB.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека фильтров 131795770645297135 0x7ffac5630000 339968 C:\Windows\System32\thumbcache.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Кэш эскизов Майкрософт 131795770645297135 0x7ffac6c40000 2596864 C:\Windows\WinSxS\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.14393.953_none_42151e83c686086b\COMCTL32.dll 6.10 (rs1_release_inmarket.170303-1614) Microsoft Corporation Библиотека элементов управления взаимодействия с пользователем 131795770645297135 0x7ffac84f0000 299008 C:\Windows\system32\dataexchange.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation Data exchange 131795770645297135 0x7ffac88a0000 2842624 C:\Windows\system32\d3d11.dll 10.0.14393.953 (rs1_release_inmarket.170303-1614) Microsoft Corporation Direct3D 11 Runtime 131795770645297135 0x7ffac8df0000 1646592 C:\Windows\SYSTEM32\dbghelp.dll 10.0.14321.1024 (rs1_release.160715-1616) Microsoft Windows Image Helper 131795770645297135 0x7ffac9f50000 1736704 C:\Windows\SYSTEM32\WindowsCodecs.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Microsoft Windows Codecs Library 131795770645297135 0x7ffaca340000 1593344 C:\Windows\SYSTEM32\PROPSYS.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Система страниц свойств (Майкрософт) 131795770645297135 0x7ffaca5e0000 155648 C:\Windows\SYSTEM32\dwmapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Интерфейс API диспетчера окон рабочего стола (Майкрософт) 131795770645297135 0x7ffaca770000 1380352 C:\Windows\system32\dcomp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft DirectComposition Library 131795770645297135 0x7ffacadf0000 499712 C:\Windows\system32\apphelp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиентская библиотека совместимости приложений 131795770645297135 0x7ffacaf00000 610304 C:\Windows\SYSTEM32\uxtheme.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека тем UxTheme (Microsoft) 131795770645297135 0x7ffacb1e0000 1163264 C:\Windows\system32\twinapi.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation twinapi.appcore 131795770645297135 0x7ffacb780000 651264 C:\Windows\system32\dxgi.dll 10.0.14393.953 (rs1_release_inmarket.170303-1614) Microsoft Corporation DirectX Graphics Infrastructure 131795770645297135 0x7ffacc620000 176128 C:\Windows\system32\bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795770645297135 0x7ffacc6e0000 61440 C:\Windows\System32\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795770645297135 0x7ffacc6f0000 311296 C:\Windows\System32\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795770645297135 0x7ffacc740000 81920 C:\Windows\System32\profapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Profile Basic API 131795770645297135 0x7ffacc8f0000 1003520 C:\Windows\System32\ucrtbase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645297135 0x7ffacc9f0000 434176 C:\Windows\System32\bcryptPrimitives.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Cryptographic Primitives Library 131795770645297135 0x7ffacca60000 122880 C:\Windows\System32\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795770645297135 0x7ffaccae0000 692224 C:\Windows\System32\shcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795770645297135 0x7ffaccb90000 7180288 C:\Windows\System32\windows.storage.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API хранения Microsoft WinRT 131795770645297135 0x7ffacd270000 2215936 C:\Windows\System32\KERNELBASE.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645297135 0x7ffacd710000 638976 C:\Windows\System32\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645297135 0x7ffacd7b0000 270336 C:\Windows\System32\cfgmgr32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Configuration Manager DLL 131795770645297135 0x7ffacd810000 22056960 C:\Windows\System32\SHELL32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Общая библиотека оболочки Windows 131795770645297135 0x7ffaced20000 782336 C:\Windows\System32\OLEAUT32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795770645297135 0x7ffacee50000 1183744 C:\Windows\System32\RPCRT4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795770645297135 0x7ffacef90000 647168 C:\Windows\System32\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795770645297135 0x7ffacf030000 651264 C:\Windows\System32\clbcatq.dll 2001.12.10941.16384 (rs1_release.160715-1616) Microsoft Corporation COM+ Configuration Catalog 131795770645297135 0x7ffacf0d0000 704512 C:\Windows\System32\KERNEL32.DLL 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645297135 0x7ffacf1e0000 1417216 C:\Windows\System32\MSCTF.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Серверная библиотека MSCTF 131795770645297135 0x7ffacf770000 212992 C:\Windows\System32\GDI32.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation GDI Client DLL 131795770645297135 0x7ffacf820000 434176 C:\Windows\System32\WS2_32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation 32-разрядная библиотека Windows Socket 2.0 131795770645297135 0x7ffacf890000 188416 C:\Windows\System32\IMM32.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Multi-User Windows IMM32 API Client DLL 131795770645297135 0x7ffacf8c0000 1462272 C:\Windows\System32\USER32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795770645297135 0x7ffacfa30000 1024000 C:\Windows\System32\COMDLG32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека общих диалоговых окон 131795770645297135 0x7ffacfb30000 2916352 C:\Windows\System32\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795770645297135 0x7ffacfe20000 663552 C:\Windows\System32\advapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795770645297135 0x7ffad0070000 1277952 C:\Windows\System32\ole32.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft OLE для Windows 131795770645297135 0x7ffad01b0000 335872 C:\Windows\System32\SHLWAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека небольших программ оболочки 131795770645297135 0x7ffad0210000 364544 C:\Windows\System32\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795770645297135 0x7ffad0270000 1908736 C:\Windows\SYSTEM32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 2 10560 3108 11 00000000:0031f1ab 131795770594566098 0 0 0 Обязательная метка\Высокий обязательный уровень WIN-0UOTFKKVN1S\User Procmon.exe C:\Users\User\Downloads\ProcessMonitor\Procmon.exe "C:\Users\User\Downloads\ProcessMonitor\Procmon.exe" Sysinternals - www.sysinternals.com 3.50 Process Monitor 131795770645662037 0x1000000 2191360 C:\Users\User\Downloads\ProcessMonitor\Procmon.exe 3.50 Sysinternals - www.sysinternals.com Process Monitor 131795770645662037 0x5c020000 335872 C:\Windows\System32\wow64.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation Win32 Emulation on NT64 131795770645662037 0x5c080000 487424 C:\Windows\System32\wow64win.dll 10.0.14393.1884 (rs1_release.171101-1233) Microsoft Corporation Wow64 Console and Win32 API Logging 131795770645662037 0x5c100000 40960 C:\Windows\System32\wow64cpu.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation AMD64 Wow64 CPU 131795770645662037 0x60750000 1556480 C:\Program Files (x86)\360\Total Security\safemon\safemon.dll 8, 4, 0, 1420 Qihu 360 Software Co., Ltd. 360 Internet Security Internet Protection 131795770645662037 0x62530000 65536 C:\Windows\SysWOW64\DEVRTL.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Device Management Run Time Library 131795770645662037 0x627d0000 249856 C:\Windows\SysWOW64\edputil.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служебная программа EDP 131795770645662037 0x67690000 61440 C:\Windows\SysWOW64\sfc_os.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows File Protection 131795770645662037 0x676b0000 32768 C:\Windows\SysWOW64\FLTLIB.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека фильтров 131795770645662037 0x6dd70000 528384 C:\Windows\SysWOW64\RICHED20.dll 5.31.23.1231 Microsoft Corporation Rich Text Edit Control, v3.1 131795770645662037 0x6e710000 335872 C:\Windows\SysWOW64\Bcp47Langs.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation BCP47 Language Classes 131795770645662037 0x70a20000 94208 C:\Windows\SysWOW64\USP10.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Uniscribe Unicode script processor 131795770645662037 0x70ca0000 45056 C:\Windows\SysWOW64\NETUTILS.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API Helpers DLL 131795770645662037 0x70cb0000 65536 C:\Windows\SysWOW64\WKSCLI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Workstation Service Client DLL 131795770645662037 0x70cd0000 49152 C:\Windows\SysWOW64\pcacli.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Program Compatibility Assistant Client Module 131795770645662037 0x70ec0000 200704 C:\Windows\SysWOW64\msls31.dll 3.10.349.0 Microsoft Corporation Microsoft Line Services library file 131795770645662037 0x71140000 77824 C:\Windows\SysWOW64\NETAPI32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API DLL 131795770645662037 0x72520000 24576 C:\Windows\SysWOW64\Riched32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Wrapper Dll for Richedit 1.0 131795770645662037 0x725e0000 2273280 C:\Windows\SysWOW64\iertutil.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служебная программа времени выполнения для Internet Explorer 131795770645662037 0x728e0000 1372160 C:\Windows\SysWOW64\PROPSYS.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Система страниц свойств (Майкрософт) 131795770645662037 0x72b90000 126976 C:\Windows\SysWOW64\dwmapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Интерфейс API диспетчера окон рабочего стола (Майкрософт) 131795770645662037 0x72cc0000 1658880 C:\Windows\SysWOW64\urlmon.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширения OLE32 для Win32 131795770645662037 0x74110000 479232 C:\Windows\SysWOW64\uxtheme.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека тем UxTheme (Microsoft) 131795770645662037 0x74190000 110592 C:\Windows\SysWOW64\bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795770645662037 0x744d0000 2138112 C:\Windows\WinSxS\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.14393.953_none_89c2555adb023171\COMCTL32.dll 6.10 (rs1_release_inmarket.170303-1614) Microsoft Corporation Библиотека элементов управления взаимодействия с пользователем 131795770645662037 0x746e0000 32768 C:\Windows\SysWOW64\VERSION.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Version Checking and File Installation Libraries 131795770645662037 0x746f0000 106496 C:\Windows\SysWOW64\USERENV.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Userenv 131795770645662037 0x74710000 90112 C:\Windows\SysWOW64\MPR.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека маршрутизации для нескольких служб доступа 131795770645662037 0x74730000 598016 C:\Windows\SysWOW64\apphelp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиентская библиотека совместимости приложений 131795770645662037 0x747d0000 40960 C:\Windows\SysWOW64\CRYPTBASE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base cryptographic API DLL 131795770645662037 0x747e0000 126976 C:\Windows\SysWOW64\SspiCli.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Security Support Provider Interface 131795770645662037 0x74800000 151552 C:\Windows\SysWOW64\IMM32.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Multi-User Windows IMM32 API Client DLL 131795770645662037 0x74910000 2170880 C:\Windows\SysWOW64\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795770645662037 0x74b30000 53248 C:\Windows\SysWOW64\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795770645662037 0x74b60000 790528 C:\Windows\SysWOW64\RPCRT4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795770645662037 0x74c30000 1417216 C:\Windows\SysWOW64\gdi32full.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation GDI Client DLL 131795770645662037 0x74d90000 24576 C:\Windows\SysWOW64\PSAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Process Status Helper 131795770645662037 0x74da0000 778240 C:\Windows\SysWOW64\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795770645662037 0x74e60000 557056 C:\Windows\SysWOW64\shcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795770645662037 0x74ef0000 540672 C:\Windows\SysWOW64\clbcatq.dll 2001.12.10941.16384 (rs1_release.160715-1616) Microsoft Corporation COM+ Configuration Catalog 131795770645662037 0x74fd0000 405504 C:\Windows\SysWOW64\WS2_32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation 32-разрядная библиотека Windows Socket 2.0 131795770645662037 0x75040000 282624 C:\Windows\SysWOW64\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795770645662037 0x75090000 1265664 C:\Windows\SysWOW64\MSCTF.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Серверная библиотека MSCTF 131795770645662037 0x751e0000 1708032 C:\Windows\SysWOW64\KERNELBASE.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645662037 0x75390000 266240 C:\Windows\SysWOW64\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795770645662037 0x75560000 487424 C:\Windows\SysWOW64\advapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795770645662037 0x756c0000 5693440 C:\Windows\SysWOW64\windows.storage.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API хранения Microsoft WinRT 131795770645662037 0x75c90000 286720 C:\Windows\SysWOW64\SHLWAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека небольших программ оболочки 131795770645662037 0x75ce0000 20811776 C:\Windows\SysWOW64\SHELL32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Общая библиотека оболочки Windows 131795770645662037 0x770c0000 4239360 C:\Windows\SysWOW64\SETUPAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Setup API 131795770645662037 0x774d0000 86016 C:\Windows\SysWOW64\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795770645662037 0x774f0000 61440 C:\Windows\SysWOW64\profapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Profile Basic API 131795770645662037 0x77560000 1437696 C:\Windows\SysWOW64\USER32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795770645662037 0x776c0000 368640 C:\Windows\SysWOW64\bcryptPrimitives.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation Windows Cryptographic Primitives Library 131795770645662037 0x77780000 503808 C:\Windows\SysWOW64\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645662037 0x77800000 606208 C:\Windows\SysWOW64\OLEAUT32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795770645662037 0x77ac0000 966656 C:\Windows\SysWOW64\ole32.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft OLE для Windows 131795770645662037 0x77bb0000 176128 C:\Windows\SysWOW64\GDI32.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation GDI Client DLL 131795770645662037 0x77be0000 937984 C:\Windows\SysWOW64\COMDLG32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека общих диалоговых окон 131795770645662037 0x77cd0000 221184 C:\Windows\SysWOW64\cfgmgr32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Configuration Manager DLL 131795770645662037 0x77d20000 1585152 C:\Windows\SysWOW64\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 131795770645662037 0x7ffad0270000 1908736 C:\Windows\SYSTEM32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 3 4048 580 4 00000000:000003e7 131765778109600457 0 0 1 Обязательная метка\Обязательный уровень системы NT AUTHORITY\СИСТЕМА SearchIndexer.exe C:\Windows\system32\SearchIndexer.exe C:\Windows\system32\SearchIndexer.exe /Embedding Microsoft Corporation 7.0.14393.0 (rs1_release.160715-1616) Индексатор службы Microsoft Windows Search 131795770645302950 0x7ff63db40000 929792 C:\Windows\system32\SearchIndexer.exe 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Индексатор службы Microsoft Windows Search 131795770645302950 0x7ffab1fd0000 2277376 C:\Windows\System32\msxml3.dll 8.110.14393.1532 Microsoft Corporation MSXML 3.0 131795770645302950 0x7ffab4b90000 655360 C:\Windows\System32\StructuredQuery.dll 7.0.14393.2068 (rs1_release.180209-1727) Microsoft Corporation Structured Query 131795770645302950 0x7ffab7780000 2576384 C:\Windows\system32\MSSRCH.DLL 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Встроенный поиск (Майкрософт) 131795770645302950 0x7ffab7a00000 3424256 C:\Windows\system32\TQUERY.DLL 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Запросы Microsoft Tripoli 131795770645302950 0x7ffabd990000 720896 C:\Windows\system32\ElsLad.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ELS Language Detection 131795770645302950 0x7ffabe4d0000 286720 C:\Windows\System32\MSWB7.dll 10.0.14393.1737 (rs1_release_inmarket.170914-1249) Microsoft Corporation MSWB7 DLL 131795770645302950 0x7ffabf010000 98304 C:\Windows\SYSTEM32\elscore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL ядра платформы Els 131795770645302950 0x7ffac0bf0000 3559424 C:\Windows\System32\ActXPrxy.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation ActiveX Interface Marshaling Library 131795770645302950 0x7ffac2960000 143360 C:\Windows\system32\mssprxy.dll 7.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation Microsoft Search Proxy 131795770645302950 0x7ffac34c0000 81920 C:\Windows\system32\vss_ps.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation Microsoft® Volume Shadow Copy Service proxy/stub 131795770645302950 0x7ffac3840000 3088384 C:\Windows\system32\ESENT.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширяемая подсистема хранения данных ESE для Microsoft(R) Windows(R) 131795770645302950 0x7ffac4000000 274432 C:\Windows\SYSTEM32\policymanager.dll 10.0.14393.2035 (rs1_release_inmarket.180110-1910) Microsoft Corporation Policy Manager DLL 131795770645302950 0x7ffac4e70000 102400 C:\Windows\system32\samcli.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Security Accounts Manager Client DLL 131795770645302950 0x7ffac6410000 98304 C:\Windows\system32\VssTrace.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека трассировки службы теневого копирования тома Microsoft® 131795770645302950 0x7ffac6430000 1581056 C:\Windows\SYSTEM32\vssapi.dll 10.0.14393.953 (rs1_release_inmarket.170303-1614) Microsoft Corporation Microsoft® Volume Shadow Copy Requestor/Writer Services API DLL 131795770645302950 0x7ffac7e40000 28672 C:\Windows\system32\Msidle.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Idle Monitor 131795770645302950 0x7ffac9bb0000 479232 C:\Windows\System32\ES.DLL 2001.12.10941.16384 (rs1_release.160715-1616) Microsoft Corporation COM+ 131795770645302950 0x7ffaca340000 1593344 C:\Windows\system32\propsys.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Система страниц свойств (Майкрософт) 131795770645302950 0x7ffaca4e0000 77824 C:\Windows\SYSTEM32\wtsapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Remote Desktop Session Host Server SDK APIs 131795770645302950 0x7ffaca570000 421888 C:\Windows\system32\Bcp47Langs.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation BCP47 Language Classes 131795770645302950 0x7ffaca610000 143360 C:\Windows\system32\SAMLIB.dll 10.0.14393.82 (rs1_release.160805-1735) Microsoft Corporation SAM Library DLL 131795770645302950 0x7ffacb140000 593920 C:\Windows\system32\msvcp110_win.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Microsoft® STL110 C++ Runtime Library 131795770645302950 0x7ffacb3f0000 163840 C:\Windows\system32\DEVOBJ.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Device Information Set DLL 131795770645302950 0x7ffacb420000 204800 C:\Windows\SYSTEM32\ntmarta.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик Windows NT MARTA 131795770645302950 0x7ffacbe20000 53248 C:\Windows\system32\netutils.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API Helpers DLL 131795770645302950 0x7ffacbe40000 126976 C:\Windows\system32\USERENV.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Userenv 131795770645302950 0x7ffacc170000 45056 C:\Windows\system32\CRYPTBASE.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base cryptographic API DLL 131795770645302950 0x7ffacc350000 180224 C:\Windows\system32\sspicli.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Security Support Provider Interface 131795770645302950 0x7ffacc520000 622592 C:\Windows\SYSTEM32\sxs.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Fusion 2.5 131795770645302950 0x7ffacc5c0000 352256 C:\Windows\system32\WINSTA.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Winstation Library 131795770645302950 0x7ffacc620000 176128 C:\Windows\System32\bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795770645302950 0x7ffacc6e0000 61440 C:\Windows\System32\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795770645302950 0x7ffacc6f0000 311296 C:\Windows\System32\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795770645302950 0x7ffacc740000 81920 C:\Windows\System32\profapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Profile Basic API 131795770645302950 0x7ffacc8f0000 1003520 C:\Windows\System32\ucrtbase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645302950 0x7ffacc9f0000 434176 C:\Windows\System32\bcryptPrimitives.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Cryptographic Primitives Library 131795770645302950 0x7ffacca60000 122880 C:\Windows\System32\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795770645302950 0x7ffaccae0000 692224 C:\Windows\System32\shcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795770645302950 0x7ffaccb90000 7180288 C:\Windows\System32\Windows.Storage.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API хранения Microsoft WinRT 131795770645302950 0x7ffacd270000 2215936 C:\Windows\System32\KERNELBASE.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645302950 0x7ffacd710000 638976 C:\Windows\System32\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645302950 0x7ffacd7b0000 270336 C:\Windows\System32\cfgmgr32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Configuration Manager DLL 131795770645302950 0x7ffaced20000 782336 C:\Windows\System32\OLEAUT32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795770645302950 0x7ffacee50000 1183744 C:\Windows\System32\RPCRT4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795770645302950 0x7ffacef90000 647168 C:\Windows\System32\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795770645302950 0x7ffacf030000 651264 C:\Windows\System32\clbcatq.dll 2001.12.10941.16384 (rs1_release.160715-1616) Microsoft Corporation COM+ Configuration Catalog 131795770645302950 0x7ffacf0d0000 704512 C:\Windows\System32\KERNEL32.DLL 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645302950 0x7ffacf770000 212992 C:\Windows\System32\GDI32.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation GDI Client DLL 131795770645302950 0x7ffacf820000 434176 C:\Windows\System32\WS2_32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation 32-разрядная библиотека Windows Socket 2.0 131795770645302950 0x7ffacf8c0000 1462272 C:\Windows\System32\USER32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795770645302950 0x7ffacfb30000 2916352 C:\Windows\System32\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795770645302950 0x7ffacfe20000 663552 C:\Windows\System32\advapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795770645302950 0x7ffad0070000 1277952 C:\Windows\System32\ole32.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft OLE для Windows 131795770645302950 0x7ffad01b0000 335872 C:\Windows\System32\shlwapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека небольших программ оболочки 131795770645302950 0x7ffad0210000 364544 C:\Windows\System32\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795770645302950 0x7ffad0270000 1908736 C:\Windows\SYSTEM32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 4 580 484 17 00000000:000003e7 131765776275984299 0 0 1 Обязательная метка\Обязательный уровень системы NT AUTHORITY\СИСТЕМА services.exe C:\Windows\system32\services.exe C:\Windows\system32\services.exe Microsoft Corporation 10.0.14393.0 (rs1_release.160715-1616) Приложение служб и контроллеров 6 664 580 4 00000000:000003e7 131765776282506625 0 0 1 Обязательная метка\Обязательный уровень системы NT AUTHORITY\СИСТЕМА svchost.exe C:\Windows\system32\svchost.exe C:\Windows\system32\svchost.exe -k DcomLaunch Microsoft Corporation 10.0.14393.0 (rs1_release.160715-1616) Хост-процесс для служб Windows 131795770645375819 0x7ff718c20000 57344 C:\Windows\system32\svchost.exe 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Хост-процесс для служб Windows 131795770645375819 0x7ffabae40000 110592 C:\Windows\SYSTEM32\capauthz.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API авторизации возможностей 131795770645375819 0x7ffabc510000 90112 C:\Windows\system32\execmodelproxy.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ExecModelProxy 131795770645375819 0x7ffabc570000 94208 C:\Windows\SYSTEM32\licensemanagerapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation "LicenseManagerApi.DYNLINK" 131795770645375819 0x7ffabc6a0000 61440 C:\Windows\system32\SebBackgroundManagerPolicy.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation <d> SEB Background Manager Policy DLL 131795770645375819 0x7ffabc7e0000 73728 C:\Windows\system32\SmartCardBackgroundPolicy.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SmartCardBackgroundPolicy 131795770645375819 0x7ffabc8c0000 61440 C:\Windows\system32\CbtBackgroundManagerPolicy.dll 10.0.14393.479 (rs1_release.161110-2025) Microsoft Corporation <d> CBT Background Manager Policy DLL 131795770645375819 0x7ffabc8d0000 176128 C:\Windows\System32\ACPBackgroundManagerPolicy.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation <d> ACP Background Manager Policy DLL 131795770645375819 0x7ffabc900000 73728 C:\Windows\System32\BackgroundMediaPolicy.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation <d> Background Media Policy DLL 131795770645375819 0x7ffabc920000 270336 C:\Windows\SYSTEM32\execmodelclient.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation ExecModelClient 131795770645375819 0x7ffac0bf0000 3559424 C:\Windows\System32\ActXPrxy.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation ActiveX Interface Marshaling Library 131795770645375819 0x7ffac20d0000 110592 C:\Windows\system32\RmClient.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Resource Manager Client 131795770645375819 0x7ffac23c0000 331776 C:\Windows\System32\OneCoreCommonProxyStub.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation OneCore Common Proxy Stub 131795770645375819 0x7ffac42a0000 659456 C:\Windows\System32\StateRepository.Core.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation StateRepository Core 131795770645375819 0x7ffac4450000 86016 C:\Windows\SYSTEM32\usermgrcli.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation UserMgr API DLL 131795770645375819 0x7ffac46d0000 4161536 C:\Windows\System32\Windows.StateRepository.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Сервер Windows StateRepository API Server 131795770645375819 0x7ffac7720000 1601536 C:\Windows\System32\OneCoreUAPCommonProxyStub.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation OneCoreUAP Common Proxy Stub 131795770645375819 0x7ffaca250000 49152 C:\Windows\SYSTEM32\bi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Background Broker Infrastructure Client Library 131795770645375819 0x7ffaca4e0000 77824 C:\Windows\SYSTEM32\wtsapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Remote Desktop Session Host Server SDK APIs 131795770645375819 0x7ffaca640000 770048 c:\windows\system32\CoreMessaging.dll 10.0.14393.0 Microsoft Corporation Microsoft CoreMessaging Dll 131795770645375819 0x7ffaca740000 135168 c:\windows\system32\DAB.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL брокера активности компьютера 131795770645375819 0x7ffacabd0000 69632 C:\Windows\System32\OnDemandBrokerClient.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation OnDemandBrokerClient 131795770645375819 0x7ffacad70000 278528 c:\windows\system32\BrokerLib.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Broker Base Library 131795770645375819 0x7ffacadf0000 499712 C:\Windows\system32\apphelp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиентская библиотека совместимости приложений 131795770645375819 0x7ffacae70000 409600 c:\windows\system32\systemeventsbrokerserver.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Брокер системных событий 131795770645375819 0x7ffacafc0000 229376 C:\Windows\SYSTEM32\resourcepolicyserver.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Resource Policy RM Service Extension 131795770645375819 0x7ffacb000000 53248 c:\windows\system32\SYSNTFY.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Windows Notifications Dynamic Link Library 131795770645375819 0x7ffacb010000 348160 C:\Windows\SYSTEM32\psmserviceexthost.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Resource Manager PSM Service Extension 131795770645375819 0x7ffacb070000 69632 C:\Windows\SYSTEM32\embeddedmodesvcapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Embedded Mode Service Client DLL 131795770645375819 0x7ffacb140000 593920 c:\windows\system32\msvcp110_win.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Microsoft® STL110 C++ Runtime Library 131795770645375819 0x7ffacb1e0000 1163264 C:\Windows\SYSTEM32\twinapi.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation twinapi.appcore 131795770645375819 0x7ffacb300000 364544 c:\windows\system32\VEEventDispatcher.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Visual Element Event dispatcher 131795770645375819 0x7ffacb390000 225280 c:\windows\system32\psmsrv.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Process State Manager (PSM) Service 131795770645375819 0x7ffacb3d0000 110592 c:\windows\system32\ResourcePolicyClient.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Resource Policy Client 131795770645375819 0x7ffacb3f0000 163840 c:\windows\system32\DEVOBJ.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Device Information Set DLL 131795770645375819 0x7ffacb420000 204800 C:\Windows\SYSTEM32\ntmarta.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик Windows NT MARTA 131795770645375819 0x7ffacb4f0000 794624 c:\windows\system32\bisrv.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служба инфраструктуры фоновых задач 131795770645375819 0x7ffacb5c0000 913408 c:\windows\system32\rpcss.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Distributed COM Services 131795770645375819 0x7ffacb6e0000 49152 C:\Windows\SYSTEM32\HID.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека пользователя HID 131795770645375819 0x7ffacb6f0000 143360 C:\Windows\SYSTEM32\gpapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиентские функции API групповой политики 131795770645375819 0x7ffacb720000 344064 c:\windows\system32\mintdh.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Вспомогательная библиотека трассировки событий 131795770645375819 0x7ffacb780000 651264 c:\windows\system32\dxgi.dll 10.0.14393.953 (rs1_release_inmarket.170303-1614) Microsoft Corporation DirectX Graphics Infrastructure 131795770645375819 0x7ffacb820000 712704 C:\Windows\SYSTEM32\tdh.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Вспомогательная библиотека трассировки событий 131795770645375819 0x7ffacb8d0000 114688 C:\Windows\SYSTEM32\umpoext.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширения службы пользовательского режима питания 131795770645375819 0x7ffacb8f0000 147456 c:\windows\system32\umpo.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служба пользовательского режима питания 131795770645375819 0x7ffacb920000 81920 C:\Windows\SYSTEM32\WLDP.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Политика блокировки Windows 131795770645375819 0x7ffacb940000 131072 c:\windows\system32\umpnpmgr.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Пользовательский режим службы самонастройки (Plug-and-Play) 131795770645375819 0x7ffacbbb0000 208896 C:\Windows\system32\rsaenh.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Enhanced Cryptographic Provider 131795770645375819 0x7ffacbbf0000 40960 C:\Windows\SYSTEM32\DPAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Data Protection API 131795770645375819 0x7ffacbe40000 126976 C:\Windows\System32\Userenv.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Userenv 131795770645375819 0x7ffacc150000 94208 C:\Windows\SYSTEM32\CRYPTSP.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Cryptographic Service Provider API 131795770645375819 0x7ffacc170000 45056 C:\Windows\System32\CRYPTBASE.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base cryptographic API DLL 131795770645375819 0x7ffacc350000 180224 c:\windows\system32\SspiCli.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Security Support Provider Interface 131795770645375819 0x7ffacc500000 102400 c:\windows\system32\EventAggregation.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Event Aggregation User Mode Library 131795770645375819 0x7ffacc5c0000 352256 C:\Windows\SYSTEM32\WINSTA.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Winstation Library 131795770645375819 0x7ffacc620000 176128 c:\windows\system32\bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795770645375819 0x7ffacc6e0000 61440 C:\Windows\System32\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795770645375819 0x7ffacc6f0000 311296 C:\Windows\System32\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795770645375819 0x7ffacc740000 81920 C:\Windows\System32\profapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Profile Basic API 131795770645375819 0x7ffacc760000 65536 C:\Windows\System32\MSASN1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ASN.1 Runtime APIs 131795770645375819 0x7ffacc8f0000 1003520 C:\Windows\System32\ucrtbase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645375819 0x7ffacc9f0000 434176 C:\Windows\System32\bcryptPrimitives.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Cryptographic Primitives Library 131795770645375819 0x7ffacca60000 122880 C:\Windows\System32\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795770645375819 0x7ffacca80000 348160 C:\Windows\System32\WINTRUST.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation Microsoft Trust Verification APIs 131795770645375819 0x7ffaccae0000 692224 C:\Windows\System32\shcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795770645375819 0x7ffaccb90000 7180288 C:\Windows\System32\windows.storage.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API хранения Microsoft WinRT 131795770645375819 0x7ffacd270000 2215936 C:\Windows\System32\KERNELBASE.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645375819 0x7ffacd490000 1871872 C:\Windows\System32\CRYPT32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API32 криптографии 131795770645375819 0x7ffacd710000 638976 C:\Windows\System32\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645375819 0x7ffacd7b0000 270336 C:\Windows\System32\cfgmgr32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Configuration Manager DLL 131795770645375819 0x7ffaced20000 782336 C:\Windows\System32\OLEAUT32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795770645375819 0x7ffacede0000 450560 C:\Windows\System32\coml2.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft COM for Windows 131795770645375819 0x7ffacee50000 1183744 C:\Windows\System32\RPCRT4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795770645375819 0x7ffacef90000 647168 C:\Windows\System32\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795770645375819 0x7ffacf030000 651264 C:\Windows\System32\clbcatq.dll 2001.12.10941.16384 (rs1_release.160715-1616) Microsoft Corporation COM+ Configuration Catalog 131795770645375819 0x7ffacf0d0000 704512 C:\Windows\System32\KERNEL32.DLL 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645375819 0x7ffacf770000 212992 C:\Windows\System32\gdi32.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation GDI Client DLL 131795770645375819 0x7ffacf8c0000 1462272 C:\Windows\System32\USER32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795770645375819 0x7ffacfb30000 2916352 C:\Windows\System32\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795770645375819 0x7ffacfe20000 663552 C:\Windows\System32\advapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795770645375819 0x7ffad0070000 1277952 C:\Windows\System32\ole32.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft OLE для Windows 131795770645375819 0x7ffad01b0000 335872 C:\Windows\System32\shlwapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека небольших программ оболочки 131795770645375819 0x7ffad0210000 364544 C:\Windows\System32\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795770645375819 0x7ffad0270000 1908736 C:\Windows\SYSTEM32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 7 884 580 4 00000000:000003e5 131765776292813936 0 0 1 Обязательная метка\Обязательный уровень системы NT AUTHORITY\LOCAL SERVICE svchost.exe C:\Windows\System32\svchost.exe C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted Microsoft Corporation 10.0.14393.0 (rs1_release.160715-1616) Хост-процесс для служб Windows 131795770645326170 0x7ff718c20000 57344 C:\Windows\System32\svchost.exe 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Хост-процесс для служб Windows 131795770645326170 0x7ffab9230000 143360 C:\Windows\SYSTEM32\bluetoothapis.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Bluetooth Usermode Api host 131795770645326170 0x7ffab9580000 118784 C:\Windows\system32\BthRadioMedia.dll 10.0.14393.351 (rs1_release_inmarket.161014-1755) Microsoft Corporation Bluetooth Radio Media Provider 131795770645326170 0x7ffab95a0000 77824 C:\Windows\system32\WlanRadioManager.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Wlan Radio Manager 131795770645326170 0x7ffaba920000 155648 c:\windows\system32\rmapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Radio Manager API 131795770645326170 0x7ffabae80000 69632 C:\Windows\system32\NfcRadioMedia.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation NFC Radio Media Provider 131795770645326170 0x7ffabb8a0000 81920 C:\Windows\system32\XboxGipRadioManager.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Xbox GIP Radio Manager 131795770645326170 0x7ffabc0e0000 81920 C:\Windows\system32\WwanRadioManager.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Wwan Radio Manager 131795770645326170 0x7ffabc510000 90112 C:\Windows\system32\execmodelproxy.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ExecModelProxy 131795770645326170 0x7ffabe850000 155648 C:\Windows\System32\IDStore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Identity Store 131795770645326170 0x7ffac05f0000 94208 C:\Windows\SYSTEM32\wwapi.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation WWAN API 131795770645326170 0x7ffac0bf0000 3559424 C:\Windows\System32\ActXPrxy.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation ActiveX Interface Marshaling Library 131795770645326170 0x7ffac1fd0000 999424 C:\Windows\system32\wbem\fastprox.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation WMI Custom Marshaller 131795770645326170 0x7ffac21d0000 81920 C:\Windows\system32\wbem\wbemsvc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation WMI 131795770645326170 0x7ffac23c0000 331776 C:\Windows\System32\OneCoreCommonProxyStub.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation OneCore Common Proxy Stub 131795770645326170 0x7ffac41a0000 77824 C:\Windows\System32\fdproxy.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation Function Discovery Proxy Dll 131795770645326170 0x7ffac4220000 520192 C:\Windows\SYSTEM32\wbemcomn.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation WMI 131795770645326170 0x7ffac4450000 86016 C:\Windows\SYSTEM32\usermgrcli.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation UserMgr API DLL 131795770645326170 0x7ffac4470000 65536 C:\Windows\system32\wbem\wbemprox.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation WMI 131795770645326170 0x7ffac4df0000 462848 c:\windows\system32\provsvc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Домашняя группа Windows 131795770645326170 0x7ffac60e0000 221184 C:\Windows\System32\XmlLite.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft XmlLite Library 131795770645326170 0x7ffac6710000 172032 C:\Windows\System32\FunDisc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL обнаружения функции 131795770645326170 0x7ffac69c0000 839680 c:\windows\system32\WINHTTP.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Службы HTTP Windows 131795770645326170 0x7ffac78c0000 163840 C:\Windows\System32\shacct.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Shell Accounts Classes 131795770645326170 0x7ffac79c0000 57344 C:\Windows\System32\npmproxy.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Network List Manager Proxy 131795770645326170 0x7ffac7aa0000 401408 C:\Windows\system32\wlanapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows WLAN AutoConfig Client Side API DLL 131795770645326170 0x7ffac7f80000 208896 c:\windows\system32\wscsvc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служба центра обеспечения безопасности Windows 131795770645326170 0x7ffac83d0000 106496 C:\Windows\SYSTEM32\dhcpcsvc.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служба DHCP-клиента 131795770645326170 0x7ffac83f0000 90112 C:\Windows\SYSTEM32\dhcpcsvc6.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиент DHCPv6 131795770645326170 0x7ffac8490000 294912 C:\Windows\System32\dhcpcore6.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиент DHCPv6 131795770645326170 0x7ffac8810000 45056 C:\Windows\SYSTEM32\WINNSI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Network Store Information RPC interface 131795770645326170 0x7ffac8c90000 385024 c:\windows\system32\dhcpcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служба DHCP-клиента 131795770645326170 0x7ffac8df0000 1646592 c:\windows\system32\dbghelp.dll 10.0.14321.1024 (rs1_release.160715-1616) Microsoft Windows Image Helper 131795770645326170 0x7ffac9c30000 1732608 c:\windows\system32\wevtsvc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служба протоколирования событий 131795770645326170 0x7ffaca250000 49152 C:\Windows\SYSTEM32\bi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Background Broker Infrastructure Client Library 131795770645326170 0x7ffaca2a0000 192512 c:\windows\system32\timebrokerserver.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Брокер событий времени 131795770645326170 0x7ffaca330000 36864 c:\windows\system32\nrpsrv.DLL 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Name Resolution Proxy (NRP) RPC interface 131795770645326170 0x7ffaca340000 1593344 C:\Windows\system32\propsys.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Система страниц свойств (Майкрософт) 131795770645326170 0x7ffaca4d0000 53248 c:\windows\system32\lmhsvc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL служб транспорта TCPIP NetBios 131795770645326170 0x7ffaca4e0000 77824 C:\Windows\SYSTEM32\wtsapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Remote Desktop Session Host Server SDK APIs 131795770645326170 0x7ffaca610000 143360 C:\Windows\System32\SAMLIB.dll 10.0.14393.82 (rs1_release.160805-1735) Microsoft Corporation SAM Library DLL 131795770645326170 0x7ffacad70000 278528 c:\windows\system32\BrokerLib.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Broker Base Library 131795770645326170 0x7ffacb1e0000 1163264 C:\Windows\System32\twinapi.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation twinapi.appcore 131795770645326170 0x7ffacb360000 176128 C:\Windows\SYSTEM32\fwbase.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Firewall Base DLL 131795770645326170 0x7ffacb3f0000 163840 c:\windows\system32\DEVOBJ.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Device Information Set DLL 131795770645326170 0x7ffacb420000 204800 C:\Windows\SYSTEM32\ntmarta.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик Windows NT MARTA 131795770645326170 0x7ffacb460000 548864 C:\Windows\SYSTEM32\firewallapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API брандмауэра Windows 131795770645326170 0x7ffacb6e0000 49152 c:\windows\system32\HID.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека пользователя HID 131795770645326170 0x7ffacb6f0000 143360 C:\Windows\SYSTEM32\gpapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиентские функции API групповой политики 131795770645326170 0x7ffacb920000 81920 C:\Windows\SYSTEM32\WLDP.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Политика блокировки Windows 131795770645326170 0x7ffacbbb0000 208896 C:\Windows\system32\rsaenh.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Enhanced Cryptographic Provider 131795770645326170 0x7ffacbd30000 229376 C:\Windows\SYSTEM32\IPHLPAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API вспомогательного приложения IP 131795770645326170 0x7ffacbd70000 659456 C:\Windows\SYSTEM32\DNSAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Динамическая библиотека API DNS-клиента 131795770645326170 0x7ffacbe20000 53248 c:\windows\system32\netutils.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API Helpers DLL 131795770645326170 0x7ffacbe40000 126976 c:\windows\system32\USERENV.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Userenv 131795770645326170 0x7ffacbfb0000 376832 C:\Windows\system32\mswsock.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширение поставщика службы API Microsoft Windows Sockets 2.0 131795770645326170 0x7ffacc150000 94208 C:\Windows\SYSTEM32\CRYPTSP.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Cryptographic Service Provider API 131795770645326170 0x7ffacc170000 45056 C:\Windows\SYSTEM32\CRYPTBASE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base cryptographic API DLL 131795770645326170 0x7ffacc350000 180224 C:\Windows\System32\sspicli.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Security Support Provider Interface 131795770645326170 0x7ffacc5c0000 352256 C:\Windows\SYSTEM32\WINSTA.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Winstation Library 131795770645326170 0x7ffacc620000 176128 c:\windows\system32\bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795770645326170 0x7ffacc6e0000 61440 C:\Windows\System32\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795770645326170 0x7ffacc6f0000 311296 C:\Windows\System32\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795770645326170 0x7ffacc740000 81920 C:\Windows\System32\profapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Profile Basic API 131795770645326170 0x7ffacc760000 65536 C:\Windows\System32\MSASN1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ASN.1 Runtime APIs 131795770645326170 0x7ffacc8f0000 1003520 C:\Windows\System32\ucrtbase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645326170 0x7ffacc9f0000 434176 C:\Windows\System32\bcryptPrimitives.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Cryptographic Primitives Library 131795770645326170 0x7ffacca60000 122880 C:\Windows\System32\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795770645326170 0x7ffacca80000 348160 C:\Windows\System32\WINTRUST.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation Microsoft Trust Verification APIs 131795770645326170 0x7ffaccae0000 692224 C:\Windows\System32\shcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795770645326170 0x7ffacd270000 2215936 C:\Windows\System32\KERNELBASE.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645326170 0x7ffacd490000 1871872 C:\Windows\System32\CRYPT32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API32 криптографии 131795770645326170 0x7ffacd710000 638976 C:\Windows\System32\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645326170 0x7ffacd7b0000 270336 C:\Windows\System32\cfgmgr32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Configuration Manager DLL 131795770645326170 0x7ffaced20000 782336 C:\Windows\System32\OLEAUT32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795770645326170 0x7ffacede0000 450560 C:\Windows\System32\coml2.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft COM for Windows 131795770645326170 0x7ffacee50000 1183744 C:\Windows\System32\RPCRT4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795770645326170 0x7ffacef80000 32768 C:\Windows\System32\NSI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation NSI User-mode interface DLL 131795770645326170 0x7ffacef90000 647168 C:\Windows\System32\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795770645326170 0x7ffacf030000 651264 C:\Windows\System32\clbcatq.dll 2001.12.10941.16384 (rs1_release.160715-1616) Microsoft Corporation COM+ Configuration Catalog 131795770645326170 0x7ffacf0d0000 704512 C:\Windows\System32\KERNEL32.DLL 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645326170 0x7ffacf770000 212992 C:\Windows\System32\GDI32.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation GDI Client DLL 131795770645326170 0x7ffacf820000 434176 C:\Windows\System32\WS2_32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation 32-разрядная библиотека Windows Socket 2.0 131795770645326170 0x7ffacf8c0000 1462272 C:\Windows\System32\user32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795770645326170 0x7ffacfb30000 2916352 C:\Windows\System32\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795770645326170 0x7ffacfe00000 114688 C:\Windows\System32\imagehlp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT Image Helper 131795770645326170 0x7ffacfe20000 663552 C:\Windows\System32\ADVAPI32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795770645326170 0x7ffad0070000 1277952 C:\Windows\System32\ole32.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft OLE для Windows 131795770645326170 0x7ffad0210000 364544 C:\Windows\System32\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795770645326170 0x7ffad0270000 1908736 C:\Windows\SYSTEM32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 8 0 0 8 00000000:00000000 131765775874898587 0 4294967295 1 Idle Idle 131795770645349496 0x7ff7ed960000 1224704 C:\Users\User\AppData\Local\Temp\Procmon64.exe 3.50 Sysinternals - www.sysinternals.com Process Monitor 131795770645349496 0x7ffac1fd0000 999424 C:\Windows\system32\wbem\fastprox.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation WMI Custom Marshaller 131795770645349496 0x7ffac21d0000 81920 C:\Windows\system32\wbem\wbemsvc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation WMI 131795770645349496 0x7ffac2b80000 40960 C:\Windows\SYSTEM32\VERSION.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Version Checking and File Installation Libraries 131795770645349496 0x7ffac3270000 40960 C:\Windows\SYSTEM32\FLTLIB.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека фильтров 131795770645349496 0x7ffac4220000 520192 C:\Windows\SYSTEM32\wbemcomn.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation WMI 131795770645349496 0x7ffac4470000 65536 C:\Windows\system32\wbem\wbemprox.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation WMI 131795770645349496 0x7ffac5630000 339968 C:\Windows\System32\thumbcache.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Кэш эскизов Майкрософт 131795770645349496 0x7ffac6c40000 2596864 C:\Windows\WinSxS\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.14393.953_none_42151e83c686086b\COMCTL32.dll 6.10 (rs1_release_inmarket.170303-1614) Microsoft Corporation Библиотека элементов управления взаимодействия с пользователем 131795770645349496 0x7ffac84f0000 299008 C:\Windows\system32\dataexchange.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation Data exchange 131795770645349496 0x7ffac88a0000 2842624 C:\Windows\system32\d3d11.dll 10.0.14393.953 (rs1_release_inmarket.170303-1614) Microsoft Corporation Direct3D 11 Runtime 131795770645349496 0x7ffac8df0000 1646592 C:\Windows\SYSTEM32\dbghelp.dll 10.0.14321.1024 (rs1_release.160715-1616) Microsoft Windows Image Helper 131795770645349496 0x7ffac9f50000 1736704 C:\Windows\SYSTEM32\WindowsCodecs.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Microsoft Windows Codecs Library 131795770645349496 0x7ffaca340000 1593344 C:\Windows\SYSTEM32\PROPSYS.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Система страниц свойств (Майкрософт) 131795770645349496 0x7ffaca5e0000 155648 C:\Windows\SYSTEM32\dwmapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Интерфейс API диспетчера окон рабочего стола (Майкрософт) 131795770645349496 0x7ffaca770000 1380352 C:\Windows\system32\dcomp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft DirectComposition Library 131795770645349496 0x7ffacadf0000 499712 C:\Windows\system32\apphelp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиентская библиотека совместимости приложений 131795770645349496 0x7ffacaf00000 610304 C:\Windows\SYSTEM32\uxtheme.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека тем UxTheme (Microsoft) 131795770645349496 0x7ffacb1e0000 1163264 C:\Windows\system32\twinapi.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation twinapi.appcore 131795770645349496 0x7ffacb780000 651264 C:\Windows\system32\dxgi.dll 10.0.14393.953 (rs1_release_inmarket.170303-1614) Microsoft Corporation DirectX Graphics Infrastructure 131795770645349496 0x7ffacc620000 176128 C:\Windows\system32\bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795770645349496 0x7ffacc6e0000 61440 C:\Windows\System32\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795770645349496 0x7ffacc6f0000 311296 C:\Windows\System32\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795770645349496 0x7ffacc740000 81920 C:\Windows\System32\profapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Profile Basic API 131795770645349496 0x7ffacc8f0000 1003520 C:\Windows\System32\ucrtbase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645349496 0x7ffacc9f0000 434176 C:\Windows\System32\bcryptPrimitives.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Cryptographic Primitives Library 131795770645349496 0x7ffacca60000 122880 C:\Windows\System32\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795770645349496 0x7ffaccae0000 692224 C:\Windows\System32\shcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795770645349496 0x7ffaccb90000 7180288 C:\Windows\System32\windows.storage.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API хранения Microsoft WinRT 131795770645349496 0x7ffacd270000 2215936 C:\Windows\System32\KERNELBASE.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645349496 0x7ffacd710000 638976 C:\Windows\System32\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645349496 0x7ffacd7b0000 270336 C:\Windows\System32\cfgmgr32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Configuration Manager DLL 131795770645349496 0x7ffacd810000 22056960 C:\Windows\System32\SHELL32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Общая библиотека оболочки Windows 131795770645349496 0x7ffaced20000 782336 C:\Windows\System32\OLEAUT32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795770645349496 0x7ffacee50000 1183744 C:\Windows\System32\RPCRT4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795770645349496 0x7ffacef90000 647168 C:\Windows\System32\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795770645349496 0x7ffacf030000 651264 C:\Windows\System32\clbcatq.dll 2001.12.10941.16384 (rs1_release.160715-1616) Microsoft Corporation COM+ Configuration Catalog 131795770645349496 0x7ffacf0d0000 704512 C:\Windows\System32\KERNEL32.DLL 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645349496 0x7ffacf1e0000 1417216 C:\Windows\System32\MSCTF.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Серверная библиотека MSCTF 131795770645349496 0x7ffacf770000 212992 C:\Windows\System32\GDI32.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation GDI Client DLL 131795770645349496 0x7ffacf820000 434176 C:\Windows\System32\WS2_32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation 32-разрядная библиотека Windows Socket 2.0 131795770645349496 0x7ffacf890000 188416 C:\Windows\System32\IMM32.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Multi-User Windows IMM32 API Client DLL 131795770645349496 0x7ffacf8c0000 1462272 C:\Windows\System32\USER32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795770645349496 0x7ffacfa30000 1024000 C:\Windows\System32\COMDLG32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека общих диалоговых окон 131795770645349496 0x7ffacfb30000 2916352 C:\Windows\System32\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795770645349496 0x7ffacfe20000 663552 C:\Windows\System32\advapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795770645349496 0x7ffad0070000 1277952 C:\Windows\System32\ole32.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft OLE для Windows 131795770645349496 0x7ffad01b0000 335872 C:\Windows\System32\SHLWAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека небольших программ оболочки 131795770645349496 0x7ffad0210000 364544 C:\Windows\System32\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795770645349496 0x7ffad0270000 1908736 C:\Windows\SYSTEM32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 9 4 0 8 00000000:000003e7 131765775907178738 0 0 1 Обязательная метка\Обязательный уровень системы NT AUTHORITY\СИСТЕМА System System 131795770645349720 0xffffc709b6e00000 3698688 C:\Windows\System32\win32kfull.sys 10.0.14393.2189 (rs1_release.180329-1711) Microsoft Corporation Full/Desktop Win32k Kernel Driver 131795770645349720 0xffffc709b7190000 1576960 C:\Windows\System32\win32kbase.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Базовый драйвер ядра Win32k 131795770645349720 0xffffc709b7320000 40960 C:\Windows\System32\TSDDD.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Framebuffer Display Driver 131795770645349720 0xffffc709b7330000 258048 C:\Windows\System32\cdd.dll 10.0.14393.2189 (rs1_release.180329-1711) Microsoft Corporation Canonical Display Driver 131795770645349720 0xffffc709b74a0000 241664 C:\Windows\System32\win32k.sys 10.0.14393.594 (rs1_release_inmarket.161213-1754) Microsoft Corporation Full/Desktop Multi-User Win32 Driver 131795770645349720 0xfffff80278934000 45056 C:\Windows\system32\kd.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Local Kernel Debugger 131795770645349720 0xfffff80279678000 8527872 C:\Windows\system32\ntoskrnl.exe 10.0.14393.2189 (rs1_release.180329-1711) Microsoft Corporation NT Kernel & System 131795770645349720 0xfffff80d92e00000 163840 C:\Windows\System32\drivers\ksecdd.sys 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Kernel Security Support Provider Interface 131795770645349720 0xfffff80d92ee0000 53248 C:\Windows\System32\drivers\cmimcext.sys 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation Kernel Configuration Manager Initial Configuration Extension Host Export Driver 131795770645349720 0xfffff80d92ef0000 49152 C:\Windows\System32\drivers\ntosext.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation NTOS extension host driver 131795770645349720 0xfffff80d92fa0000 647168 C:\Windows\System32\drivers\cng.sys 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Kernel Cryptography, Next Generation 131795770645349720 0xfffff80d93040000 868352 C:\Windows\system32\drivers\Wdf01000.sys 1.19.14393.0 (rs1_release.160715-1616) Microsoft Corporation Среда выполнения платформы драйвера режима ядра 131795770645349720 0xfffff80d93120000 77824 C:\Windows\system32\drivers\WDFLDR.SYS 1.19.14393.0 (rs1_release.160715-1616) Microsoft Corporation Kernel Mode Driver Framework Loader 131795770645349720 0xfffff80d93140000 143360 C:\Windows\System32\Drivers\acpiex.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ACPIEx Driver 131795770645349720 0xfffff80d93170000 57344 C:\Windows\System32\Drivers\WppRecorder.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation WPP Trace Recorder 131795770645349720 0xfffff80d93180000 733184 C:\Windows\System32\drivers\ACPI.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ACPI драйвер для NT 131795770645349720 0xfffff80d93240000 49152 C:\Windows\System32\drivers\WMILIB.SYS 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation WMILIB WMI support library Dll 131795770645349720 0xfffff80d93260000 69632 C:\Windows\System32\drivers\intelpep.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Intel Power Engine Plugin 131795770645349720 0xfffff80d93280000 126976 C:\Windows\system32\drivers\WindowsTrustedRT.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Trusted Runtime Interface Driver 131795770645349720 0xfffff80d932a0000 45056 C:\Windows\System32\drivers\WindowsTrustedRTProxy.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Trusted Runtime Service Proxy Driver 131795770645349720 0xfffff80d932b0000 73728 C:\Windows\System32\drivers\pcw.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Performance Counters for Windows Driver 131795770645349720 0xfffff80d932d0000 45056 C:\Windows\System32\drivers\msisadrv.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ISA Driver 131795770645349720 0xfffff80d932e0000 45056 C:\Windows\System32\drivers\isapnp.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Драйвер шины PNP ISA 131795770645349720 0xfffff80d932f0000 356352 C:\Windows\System32\drivers\pci.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation NT Plug and Play PCI-перечислитель 131795770645349720 0xfffff80d93350000 73728 C:\Windows\System32\drivers\vdrvroot.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Virtual Drive Root Enumerator 131795770645349720 0xfffff80d93370000 135168 C:\Windows\system32\drivers\pdc.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Power Dependency Coordinator Driver 131795770645349720 0xfffff80d933a0000 102400 C:\Windows\system32\drivers\CEA.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Event Aggregation Kernel Mode Library 131795770645349720 0xfffff80d933c0000 147456 C:\Windows\System32\drivers\partmgr.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Partition driver 131795770645349720 0xfffff80d933f0000 163840 C:\Windows\System32\drivers\nvraid.sys 10.6.0.23 (PART_L3.131021-1012) NVIDIA Corporation NVIDIA® nForce(TM) RAID Driver 131795770645349720 0xfffff80d93420000 401408 C:\Windows\System32\drivers\CLASSPNP.SYS 10.0.14393.953 (rs1_release_inmarket.170303-1614) Microsoft Corporation SCSI Class System Dll 131795770645349720 0xfffff80d93490000 139264 C:\Windows\System32\drivers\vmbus.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Дочерний драйвер шины виртуальной машины Microsoft Hyper-V 131795770645349720 0xfffff80d934c0000 1212416 C:\Windows\System32\drivers\NDIS.SYS 10.0.14393.953 (rs1_release_inmarket.170303-1614) Microsoft Corporation NDIS (Network Driver Interface Specification) 131795770645349720 0xfffff80d935f0000 495616 C:\Windows\System32\drivers\NETIO.SYS 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Network I/O Subsystem 131795770645349720 0xfffff80d93670000 135168 C:\Windows\System32\drivers\hvsocket.sys 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Microsoft Hyper-V Socket Provider 131795770645349720 0xfffff80d936a0000 98304 C:\Windows\System32\drivers\vmbkmcl.sys 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Hyper-V VMBus KMCL 131795770645349720 0xfffff80d936c0000 57344 C:\Windows\System32\drivers\winhv.sys 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Windows Hypervisor Interface Driver 131795770645349720 0xfffff80d936d0000 40960 C:\Windows\System32\drivers\pciide.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Generic PCI IDE Bus Driver 131795770645349720 0xfffff80d936e0000 69632 C:\Windows\System32\drivers\PCIIDEX.SYS 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation PCI IDE Bus Driver Extension 131795770645349720 0xfffff80d93700000 593920 C:\Windows\System32\drivers\spaceport.sys 10.0.14393.1914 (rs1_release_inmarket.171117-1700) Microsoft Corporation Storage Spaces Driver 131795770645349720 0xfffff80d937a0000 40960 C:\Windows\System32\drivers\intelide.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Intel PCI IDE Driver 131795770645349720 0xfffff80d937b0000 98304 C:\Windows\System32\drivers\volmgr.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Драйвер диспетчера томов 131795770645349720 0xfffff80d937d0000 385024 C:\Windows\System32\drivers\volmgrx.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Драйвер расширения диспетчера томов 131795770645349720 0xfffff80d93830000 122880 C:\Windows\System32\drivers\mountmgr.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Диспетчер точек подключения 131795770645349720 0xfffff80d93850000 172032 C:\Windows\System32\drivers\nvstor.sys 10.6.0.23 (PART_L3.131021-1012) NVIDIA Corporation NVIDIA® nForce(TM) Sata Performance Driver 131795770645349720 0xfffff80d93880000 532480 C:\Windows\System32\drivers\storport.sys 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft Storage Port Driver 131795770645349720 0xfffff80d93910000 49152 C:\Windows\System32\drivers\atapi.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ATAPI IDE Miniport Driver 131795770645349720 0xfffff80d93920000 217088 C:\Windows\System32\drivers\ataport.SYS 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ATAPI Driver Extension 131795770645349720 0xfffff80d93960000 147456 C:\Windows\System32\drivers\storahci.sys 10.0.14393.2068 (rs1_release.180209-1727) Microsoft Corporation MS AHCI Storport Miniport Driver 131795770645349720 0xfffff80d93990000 102400 C:\Windows\System32\drivers\stornvme.sys 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation Microsoft NVM Express Storport Miniport Driver 131795770645349720 0xfffff80d939b0000 114688 C:\Windows\System32\drivers\EhStorClass.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Enhanced Storage Class driver for IEEE 1667 devices 131795770645349720 0xfffff80d939d0000 102400 C:\Windows\System32\drivers\fileinfo.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation FileInfo Filter Driver 131795770645349720 0xfffff80d939f0000 229376 C:\Windows\System32\Drivers\Wof.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Фильтр оверлея Windows 131795770645349720 0xfffff80d93a80000 2297856 C:\Windows\System32\Drivers\NTFS.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Драйвер файловой системы NT 131795770645349720 0xfffff80d93cc0000 57344 C:\Windows\System32\drivers\storvsc.sys 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Storage VSC Driver 131795770645349720 0xfffff80d93cd0000 53248 C:\Windows\System32\Drivers\Fs_Rec.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation File System Recognizer Driver 131795770645349720 0xfffff80d93d10000 483328 C:\Windows\System32\drivers\USBPORT.SYS 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Драйвер порта USB 1.1 и 2.0 131795770645349720 0xfffff80d93db0000 581632 C:\Windows\system32\mcupdate_GenuineIntel.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Intel Microcode Update Library 131795770645349720 0xfffff80d93e50000 405504 C:\Windows\System32\drivers\CLFS.SYS 10.0.14393.2068 (rs1_release.180209-1727) Microsoft Corporation Common Log File System Driver 131795770645349720 0xfffff80d93ec0000 151552 C:\Windows\System32\drivers\tm.sys 10.0.14393.2189 (rs1_release.180329-1711) Microsoft Corporation Kernel Transaction Manager Driver 131795770645349720 0xfffff80d93ef0000 94208 C:\Windows\system32\PSHED.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Драйвер аппаратных ошибок, специфичных для платформы 131795770645349720 0xfffff80d93f10000 49152 C:\Windows\system32\BOOTVID.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation VGA Boot Driver 131795770645349720 0xfffff80d93f20000 401408 C:\Windows\System32\drivers\FLTMGR.SYS 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Диспетчер фильтров файловых систем Майкрософт 131795770645349720 0xfffff80d93f90000 380928 C:\Windows\System32\drivers\msrpc.sys 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation Kernel Remote Procedure Call Provider 131795770645349720 0xfffff80d94000000 430080 C:\Windows\System32\drivers\fwpkclnt.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation FWP/IPsec Kernel-Mode API 131795770645349720 0xfffff80d94070000 172032 C:\Windows\System32\drivers\wfplwfs.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation WFP NDIS 6.30 Lightweight Filter Driver 131795770645349720 0xfffff80d940b0000 659456 C:\Windows\System32\DRIVERS\fvevol.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation BitLocker Drive Encryption Driver 131795770645349720 0xfffff80d94160000 45056 C:\Windows\System32\drivers\volume.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Volume driver 131795770645349720 0xfffff80d94170000 409600 C:\Windows\System32\drivers\volsnap.sys 10.0.14393.1794 (rs1_release.171008-1615) Microsoft Corporation Volume Shadow Copy driver 131795770645349720 0xfffff80d941e0000 106496 C:\Windows\System32\drivers\scmbus.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Storage Class Memory Bus Driver 131795770645349720 0xfffff80d94200000 294912 C:\Windows\System32\drivers\rdyboost.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ReadyBoost Driver 131795770645349720 0xfffff80d94250000 151552 C:\Windows\System32\Drivers\mup.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Драйвер поставщика множественных UNC 131795770645349720 0xfffff80d94280000 65536 C:\Windows\system32\drivers\iorate.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation I/O rate control Filter 131795770645349720 0xfffff80d942a0000 126976 C:\Windows\System32\drivers\disk.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation PnP Disk Driver 131795770645349720 0xfffff80d942e0000 102400 C:\Windows\System32\Drivers\crashdmp.sys 10.0.14393.351 (rs1_release_inmarket.161014-1755) Microsoft Corporation Crash Dump Driver 131795770645349720 0xfffff80d943c0000 200704 C:\Windows\System32\drivers\cdrom.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SCSI CD-ROM Driver 131795770645349720 0xfffff80d94400000 118784 C:\Windows\system32\drivers\filecrypt.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows sandboxing and encryption filter 131795770645349720 0xfffff80d94420000 57344 C:\Windows\system32\drivers\tbs.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Export driver for kernel mode TPM API 131795770645349720 0xfffff80d94430000 40960 C:\Windows\System32\Drivers\Null.SYS 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation NULL Driver 131795770645349720 0xfffff80d94440000 40960 C:\Windows\System32\Drivers\Beep.SYS 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation BEEP Driver 131795770645349720 0xfffff80d94450000 81920 C:\Windows\System32\drivers\BasicDisplay.sys 10.0.14393.1066 (rs1_release_sec.170327-1835) Microsoft Corporation Microsoft Basic Display Driver 131795770645349720 0xfffff80d94470000 81920 C:\Windows\System32\drivers\watchdog.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Watchdog Driver 131795770645349720 0xfffff80d94490000 2220032 C:\Windows\System32\drivers\dxgkrnl.sys 10.0.14393.2189 (rs1_release.180329-1711) Microsoft Corporation DirectX Graphics Kernel 131795770645349720 0xfffff80d946b0000 73728 C:\Windows\System32\drivers\BasicRender.sys 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation Microsoft Basic Render Driver 131795770645349720 0xfffff80d946d0000 102400 C:\Windows\System32\Drivers\Npfs.SYS 10.0.14393.1737 (rs1_release_inmarket.170914-1249) Microsoft Corporation NPFS Driver 131795770645349720 0xfffff80d94700000 143360 C:\Windows\system32\DRIVERS\tdx.sys 10.0.14393.1613 (rs1_release_d.170807-1806) Microsoft Corporation TDI Translation Driver 131795770645349720 0xfffff80d94740000 307200 C:\Windows\System32\DRIVERS\netbt.sys 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation MBT Transport driver 131795770645349720 0xfffff80d94790000 610304 C:\Windows\system32\drivers\afd.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Драйвер дополнительных функций для Winsock 131795770645349720 0xfffff80d94830000 102400 C:\Windows\System32\drivers\vwififlt.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Virtual WiFi Filter Driver 131795770645349720 0xfffff80d94850000 176128 C:\Windows\System32\drivers\pacer.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Планировщик пакетов QoS 131795770645349720 0xfffff80d94880000 73728 C:\Windows\system32\drivers\netbios.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation NetBIOS interface driver 131795770645349720 0xfffff80d948a0000 479232 C:\Windows\system32\DRIVERS\rdbss.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Драйвер подсистемы буферизации перенаправленного диска 131795770645349720 0xfffff80d94920000 581632 C:\Windows\system32\drivers\csc.sys 10.0.14393.953 (rs1_release_inmarket.170303-1614) Microsoft Corporation Windows Client Side Caching Driver 131795770645349720 0xfffff80d949b0000 106496 C:\Windows\system32\drivers\nsiproxy.sys 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation NSI Proxy 131795770645349720 0xfffff80d949d0000 53248 C:\Windows\System32\drivers\npsvctrig.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Named pipe service triggers 131795770645349720 0xfffff80d949f0000 40960 C:\Windows\System32\drivers\gpuenergydrv.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation GPU Energy Kernel Driver 131795770645349720 0xfffff80d94a00000 172032 C:\Windows\System32\Drivers\dfsc.sys 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation DFS Namespace Client Driver 131795770645349720 0xfffff80d94a50000 258048 C:\Windows\system32\DRIVERS\ahcache.sys 10.0.14393.351 (rs1_release_inmarket.161014-1755) Microsoft Corporation Application Compatibility Cache 131795770645349720 0xfffff80d94a90000 69632 C:\Windows\System32\DriverStore\FileRepository\compositebus.inf_amd64_a140581a8f8b58b7\CompositeBus.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Multi-Transport Composite Bus Enumerator 131795770645349720 0xfffff80d94ab0000 57344 C:\Windows\System32\drivers\kdnic.sys 6.01.00.0000 (rs1_release.160715-1616) Microsoft Corporation Microsoft Kernel Debugger Network Miniport 131795770645349720 0xfffff80d94ac0000 86016 C:\Windows\System32\drivers\umbus.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User-Mode Bus Enumerator 131795770645349720 0xfffff80d94ae0000 139264 C:\Windows\System32\drivers\i8042prt.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Драйвер порта i8042 131795770645349720 0xfffff80d94b10000 77824 C:\Windows\System32\drivers\kbdclass.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Драйвер класса клавиатуры 131795770645349720 0xfffff80d94b30000 73728 C:\Windows\System32\drivers\mouclass.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Драйвер класса мыши 131795770645349720 0xfffff80d94b80000 110592 C:\Windows\System32\drivers\HDAudBus.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation High Definition Audio Bus Driver 131795770645349720 0xfffff80d94ba0000 397312 C:\Windows\System32\drivers\portcls.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Port Class (Class Driver for Port/Miniport Devices) 131795770645349720 0xfffff80d94c10000 135168 C:\Windows\System32\drivers\drmk.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Trusted Audio Drivers 131795770645349720 0xfffff80d94c40000 425984 C:\Windows\System32\drivers\ks.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Kernel CSA Library 131795770645349720 0xfffff80d94cb0000 61440 C:\Windows\System32\drivers\usbohci.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation OHCI USB Miniport Driver 131795770645349720 0xfffff80d94cc0000 57344 C:\Windows\System32\drivers\CmBatt.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Control Method Battery Driver 131795770645349720 0xfffff80d94cd0000 57344 C:\Windows\System32\drivers\BATTC.SYS 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Battery Class Driver 131795770645349720 0xfffff80d94ce0000 176128 C:\Windows\System32\drivers\intelppm.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Processor Device Driver 131795770645349720 0xfffff80d94d10000 53248 C:\Windows\System32\drivers\NdisVirtualBus.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Перечислитель виртуальных сетевых адаптеров (Майкрософт) 131795770645349720 0xfffff80d94d20000 2588672 C:\Windows\System32\drivers\tcpip.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Драйвер TCP/IP 131795770645349720 0xfffff80d94fa0000 49152 C:\Windows\System32\drivers\swenum.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Plug and Play Software Device Enumerator 131795770645349720 0xfffff80d94fb0000 57344 C:\Windows\System32\drivers\rdpbus.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft RDP Bus Device driver 131795770645349720 0xfffff80d95200000 344064 C:\Windows\system32\DRIVERS\udfs.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation UDF File System Driver 131795770645349720 0xfffff80d95280000 61440 C:\Windows\System32\Drivers\dump_diskdump.sys 131795770645349720 0xfffff80d952c0000 147456 C:\Windows\System32\Drivers\dump_storahci.sys 131795770645349720 0xfffff80d95310000 118784 C:\Windows\System32\Drivers\dump_dumpfve.sys 131795770645349720 0xfffff80d95330000 1122304 C:\Windows\system32\drivers\HTTP.sys 10.0.14393.1532 (rs1_release_d.170711-1840) Microsoft Corporation Стек протокола HTTP 131795770645349720 0xfffff80d95450000 122880 C:\Windows\system32\drivers\WudfPf.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Driver Foundation - User-mode Driver Framework Platform Driver 131795770645349720 0xfffff80d95470000 139264 C:\Windows\system32\DRIVERS\bowser.sys 10.0.14393.447 (rs1_release_inmarket.161102-0100) Microsoft Corporation NT Lan Manager Datagram Receiver Driver 131795770645349720 0xfffff80d954a0000 479232 C:\Windows\system32\DRIVERS\mrxsmb.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT SMB Minirdr 131795770645349720 0xfffff80d95520000 102400 C:\Windows\System32\drivers\mpsdrv.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Protection Service Driver 131795770645349720 0xfffff80d95540000 241664 C:\Windows\system32\DRIVERS\mrxsmb20.sys 10.0.14393.2035 (rs1_release_inmarket.180110-1910) Microsoft Corporation Longhorn SMB 2.0 Redirector 131795770645349720 0xfffff80d95580000 278528 C:\Windows\System32\DRIVERS\srvnet.sys 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Server Network driver 131795770645349720 0xfffff80d955d0000 741376 C:\Windows\System32\DRIVERS\srv2.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Драйвер сервера SMB 2.0 131795770645349720 0xfffff80d95690000 315392 C:\Windows\system32\DRIVERS\mrxsmb10.sys 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Longhorn SMB Downlevel SubRdr 131795770645349720 0xfffff80d956e0000 573440 C:\Windows\System32\DRIVERS\srv.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Server driver 131795770645349720 0xfffff80d95770000 81920 C:\Windows\System32\drivers\tcpipreg.sys 10.0.14393.1480 (rs1_release.170706-2004) Microsoft Corporation TCP/IP Registry Compatibility Driver 131795770645349720 0xfffff80d95860000 684032 C:\Windows\System32\drivers\dxgmms2.sys 10.0.14393.2189 (rs1_release.180329-1711) Microsoft Corporation DirectX Graphics MMS 131795770645349720 0xfffff80d95910000 155648 C:\Windows\system32\drivers\luafv.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Драйвер фильтра виртуализации файлов LUA 131795770645349720 0xfffff80d95960000 102400 C:\Windows\system32\drivers\storqosflt.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Фильтр качества обслуживания хранилища 131795770645349720 0xfffff80d95980000 98304 C:\Windows\System32\drivers\registry.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Registry Containment Driver 131795770645349720 0xfffff80d959a0000 90112 C:\Windows\system32\drivers\lltdio.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Link-Layer Topology Mapper I/O Driver 131795770645349720 0xfffff80d959c0000 98304 C:\Windows\system32\drivers\mslldp.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Драйвер протокола Microsoft LLDP 131795770645349720 0xfffff80d959e0000 106496 C:\Windows\system32\drivers\rspndr.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Link-Layer Topology Responder Driver for NDIS 6 131795770645349720 0xfffff80d95ae0000 57344 C:\Windows\System32\drivers\USBD.SYS 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Universal Serial Bus Driver 131795770645349720 0xfffff80d95af0000 434176 C:\Windows\system32\DRIVERS\HdAudio.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation High Definition Audio Function Driver 131795770645349720 0xfffff80d95b60000 57344 C:\Windows\system32\drivers\ksthunk.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Kernel Streaming WOW Thunk Service 131795770645349720 0xfffff80d95bc0000 73728 C:\Windows\System32\drivers\HIDPARSE.SYS 10.0.14393.2068 (rs1_release.180209-1727) Microsoft Corporation Hid Parsing Library 131795770645349720 0xfffff80d97020000 208896 C:\Windows\System32\Drivers\360AntiHacker64.sys 1.0.0.1149 360.cn 360安全卫士 网络防黑模块 131795770645349720 0xfffff80d97060000 102400 C:\Windows\system32\DRIVERS\360AvFlt.sys 1.1.0.1056 360.cn 360杀毒 文件监控驱动 131795770645349720 0xfffff80d97080000 217088 C:\Windows\system32\DRIVERS\BAPIDRV64.sys 2.0.0.1221 360.cn BAPIDRV 131795770645349720 0xfffff80d970c0000 372736 C:\Windows\system32\drivers\360netmon.sys 2.1.11.5195 360.cn 360netmon 131795770645349720 0xfffff80d97120000 356352 C:\Windows\system32\DRIVERS\360Box64.sys 2.1.0.1253 360.cn 360Box64 131795770645349720 0xfffff80d97180000 811008 C:\Windows\system32\DRIVERS\360FsFlt.sys 6.9.1.1751 360.cn 360 Total Security 131795770645349720 0xfffff80d97330000 69632 C:\Windows\System32\drivers\hidusb.sys 10.0.14393.82 (rs1_release.160805-1735) Microsoft Corporation USB Miniport Driver for Input Devices 131795770645349720 0xfffff80d97350000 192512 C:\Windows\System32\drivers\HIDCLASS.SYS 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека классов HID 131795770645349720 0xfffff80d97380000 61440 C:\Windows\System32\drivers\mouhid.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Драйвер фильтра мыши HID 131795770645349720 0xfffff80d97390000 106496 C:\Windows\System32\drivers\rassstp.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation RAS SSTP Miniport Call Manager 131795770645349720 0xfffff80d973b0000 86016 C:\Windows\System32\DRIVERS\NDProxy.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation NDIS Proxy 131795770645349720 0xfffff80d973d0000 159744 C:\Windows\System32\drivers\AgileVpn.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Диспетчер вызовов минипорта RAS Agile VPN 131795770645349720 0xfffff80d97420000 131072 C:\Windows\System32\drivers\rasl2tp.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation RAS L2TP mini-port/call-manager driver 131795770645349720 0xfffff80d97460000 126976 C:\Windows\System32\drivers\raspptp.sys 10.0.14393.2035 (rs1_release_inmarket.180110-1910) Microsoft Corporation Peer-to-Peer Tunneling Protocol 131795770645349720 0xfffff80d974a0000 110592 C:\Windows\System32\drivers\raspppoe.sys 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation RAS PPPoE mini-port/call-manager driver 131795770645349720 0xfffff80d974c0000 57344 C:\Windows\System32\DRIVERS\ndistapi.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation NDIS 3.0 connection wrapper driver 131795770645349720 0xfffff80d974d0000 221184 C:\Windows\System32\drivers\ndiswan.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation MS PPP Framing Driver (Strong Encryption) 131795770645349720 0xfffff80d97510000 110592 C:\Windows\System32\DRIVERS\wanarp.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation MS Remote Access and Routing ARP Driver 131795770645349720 0xfffff80d97550000 151552 C:\Windows\System32\drivers\E1G6032E.sys 8.4.13.0 built by: WinDDK Intel Corporation Intel(R) PRO/1000 Adapter NDIS 6 deserialized driver 131795770645349720 0xfffff80d97580000 192512 C:\Windows\System32\drivers\tunnel.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Драйвер интерфейса туннеля (Майкрософт) 131795770645349720 0xfffff80d97600000 106496 C:\Windows\system32\Drivers\PROCMON24.SYS 3.10 Sysinternals - www.sysinternals.com Process Monitor Driver 131795780236159256 0xfffff80d97620000 49152 C:\Windows\System32\drivers\npf.sys 4.1.0.2980 Riverbed Technology, Inc. npf.sys (NT5/6 AMD64) Kernel Driver 131795770645349720 0xfffff80d97a60000 794624 C:\Windows\system32\drivers\peauth.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Protected Environment Authentication and Authorization Export Driver 131795770645349720 0xfffff80d97b30000 155648 C:\Windows\system32\drivers\Ndu.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Network Data Usage Monitoring Driver 131795770645349720 0xfffff80d97b60000 81920 C:\Windows\system32\drivers\mmcss.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation MMCSS Driver 131795770645349720 0xfffff80d97bb0000 73728 C:\Windows\System32\drivers\condrv.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Console Driver 10 320 4 9 00000000:000003e7 131765775908989732 0 0 1 Обязательная метка\Обязательный уровень системы NT AUTHORITY\СИСТЕМА smss.exe C:\Windows\System32\smss.exe \SystemRoot\System32\smss.exe Microsoft Corporation 10.0.14393.0 (rs1_release.160715-1616) Диспетчер сеанса Windows 11 3108 3092 12 00000000:0031f1da 131765777624392598 0 0 1 Обязательная метка\Средний обязательный уровень WIN-0UOTFKKVN1S\User Explorer.EXE C:\Windows\Explorer.EXE C:\Windows\Explorer.EXE Microsoft Corporation 10.0.14393.0 (rs1_release.160715-1616) Проводник 131795770645352881 0x31b0000 12288 C:\Windows\system32\sfc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows File Protection 131795770645352881 0x5db0000 397312 C:\Program Files\Uninstall Tool\utshellext.dll 1.1.0.15 CrystalIDEA Software Uninstall Tool Shell Extension 131795770645352881 0x81a0000 8937472 C:\Program Files\MICROS~1\Office16\1049\GrooveIntlResource.dll 16.0.4266.1001 Корпорация Майкрософт Модуль международных ресурсов для Microsoft OneDrive для бизнеса 131795770645352881 0x8cb0000 593920 C:\Windows\SYSTEM32\UIRibbonRes.dll 10.0.14393.2189 (rs1_release.180329-1711) Microsoft Corporation Windows Ribbon Framework Resources 131795770645352881 0x5bf70000 667648 C:\Windows\WinSxS\amd64_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.9247_none_08e394a1a83e212f\MSVCR90.dll 9.00.30729.9247 Microsoft Corporation Microsoft® C Runtime Library 131795770645352881 0x180000000 241664 C:\Program Files (x86)\Notepad++\NppShell_06.dll 0.1 ShellHandler for Notepad++ (64 bit) 131795770645352881 0x7ff6a5b30000 4665344 C:\Windows\Explorer.EXE 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Проводник 131795770645352881 0x7ff7808b0000 8527872 C:\Windows\system32\ntoskrnl.exe 10.0.14393.2189 (rs1_release.180329-1711) Microsoft Corporation NT Kernel & System 131795770645352881 0x7ffaa6c80000 2093056 C:\Windows\system32\wpdshext.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширение оболочки для переносных устройств 131795770645352881 0x7ffaab350000 1683456 C:\Windows\System32\comsvcs.dll 2001.12.10941.16384 (rs1_release_1.180305-1842) Microsoft Corporation COM+ Services 131795770645352881 0x7ffaab4f0000 1400832 C:\Windows\system32\connect.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Мастера подключений 131795770645352881 0x7ffaab650000 970752 C:\Windows\system32\rasgcw.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Страницы мастера RAS 131795770645352881 0x7ffaab880000 532480 C:\Windows\System32\MPRAPI.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation Windows NT MP Router Administration DLL 131795770645352881 0x7ffaab910000 905216 C:\Windows\System32\RASDLG.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API общих диалогов службы удаленного доступа 131795770645352881 0x7ffaac6e0000 13156352 C:\Windows\system32\ieframe.DLL 11.00.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Браузер 131795770645352881 0x7ffab0df0000 1626112 C:\Windows\SYSTEM32\d3d9.dll 10.0.14393.447 (rs1_release_inmarket.161102-0100) Microsoft Corporation Direct3D 9 Runtime 131795770645352881 0x7ffab0f80000 1777664 C:\Program Files\Windows Photo Viewer\PhotoViewer.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Просмотр фотографий Windows 131795770645352881 0x7ffab1d80000 262144 C:\Windows\system32\eappcfg.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Eap Peer Config 131795770645352881 0x7ffab2460000 2822144 C:\Windows\System32\netshell.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Оболочка сетевых подключений 131795770645352881 0x7ffab2720000 606208 C:\Windows\System32\DUser.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows DirectUser Engine 131795770645352881 0x7ffab27c0000 516096 C:\Windows\System32\imapi2.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation IMAPI версии 2 131795770645352881 0x7ffab2840000 253952 C:\Windows\System32\bthprops.cpl 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Приложение панели управления Bluetooth 131795770645352881 0x7ffab2880000 315392 C:\Windows\System32\cscobj.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Внутрипроцессный COM-объект используемый клиентами CSC API 131795770645352881 0x7ffab28d0000 802816 C:\Windows\System32\cscui.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Интерфейс кэширования на стороне клиента 131795770645352881 0x7ffab29a0000 1912832 C:\Windows\System32\pnidui.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Значок сетевой системы 131795770645352881 0x7ffab2b80000 212992 C:\Windows\system32\SettingMonitor.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Setting Synchronization Change Monitor 131795770645352881 0x7ffab2bc0000 204800 C:\Windows\System32\PortableDeviceTypes.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Portable Device (Parameter) Types Component 131795770645352881 0x7ffab33d0000 258048 C:\Windows\SYSTEM32\MLANG.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL многоязыковой поддержки 131795770645352881 0x7ffab34f0000 323584 C:\Windows\System32\Actioncenter.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Центр безопасности и обслуживания 131795770645352881 0x7ffab4af0000 606208 C:\Windows\SYSTEM32\AUDIOSES.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Сеанс обработки звука 131795770645352881 0x7ffab4b90000 655360 C:\Windows\System32\StructuredQuery.dll 7.0.14393.2068 (rs1_release.180209-1727) Microsoft Corporation Structured Query 131795770645352881 0x7ffab5120000 1691648 C:\Windows\system32\BatMeter.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Battery Meter Helper DLL 131795770645352881 0x7ffab5520000 3231744 C:\Windows\SYSTEM32\MsftEdit.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Элемент управления "Поле ввода форматированного текста", версия 8.5 131795770645352881 0x7ffab5b40000 2527232 C:\Windows\SYSTEM32\DWrite.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Службы Microsoft DirectX Typography 131795770645352881 0x7ffab7d80000 753664 C:\Windows\System32\RASAPI32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API удаленного доступа 131795770645352881 0x7ffab7e40000 3420160 C:\Windows\System32\SyncCenter.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Центр синхронизации Майкрософт 131795770645352881 0x7ffab8190000 9191424 C:\Windows\System32\TwinUI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation TWINUI 131795770645352881 0x7ffab8da0000 1675264 C:\Windows\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.14393.1715_none_aec701fbddd850fa\gdiplus.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Microsoft GDI+ 131795770645352881 0x7ffab92e0000 827392 C:\Windows\system32\Windows.Storage.Search.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows.Storage.Search 131795770645352881 0x7ffab93b0000 897024 C:\Windows\System32\TokenBroker.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Token Broker 131795770645352881 0x7ffab9490000 860160 C:\Windows\system32\ntshrui.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширения оболочки, обеспечивающие общий доступ 131795770645352881 0x7ffab95c0000 4091904 C:\Windows\system32\UIRibbon.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Платформа ленты Windows 131795770645352881 0x7ffab99b0000 499712 C:\Windows\system32\dxp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширение оболочки компонента Device Stage 131795770645352881 0x7ffab9ba0000 389120 C:\Windows\SYSTEM32\searchfolder.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SearchFolder 131795770645352881 0x7ffaba950000 188416 C:\Windows\System32\EthernetMediaManager.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Ethernet Media Manager DLL 131795770645352881 0x7ffabaa50000 339968 C:\Windows\System32\NetworkUXBroker.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation NetworkUXBroker DLL 131795770645352881 0x7ffabaab0000 94208 C:\Windows\SYSTEM32\profext.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation profext 131795770645352881 0x7ffabab30000 303104 C:\Windows\System32\NotificationObjFactory.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Notifications Object Factory 131795770645352881 0x7ffabac60000 151552 C:\Windows\System32\EhStorAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Enhanced Storage API 131795770645352881 0x7ffabacc0000 1380352 C:\Windows\System32\SharedStartModel.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Shared Start Model InProc Server 131795770645352881 0x7ffabae20000 40960 C:\Windows\SYSTEM32\msiltcfg.dll 5.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Installer Configuration API Stub 131795770645352881 0x7ffabae60000 77824 C:\Windows\System32\DEVRTL.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Device Management Run Time Library 131795770645352881 0x7ffabaea0000 266240 C:\Windows\system32\SHDOCVW.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека объектов документов и элементов управления оболочки 131795770645352881 0x7ffabaf70000 270336 C:\Windows\SYSTEM32\edputil.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служебная программа EDP 131795770645352881 0x7ffabafc0000 700416 C:\Windows\System32\wer.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека сообщений об ошибках Windows 131795770645352881 0x7ffabb2b0000 1089536 C:\Windows\SYSTEM32\settingsynccore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Setting Synchronization Core 131795770645352881 0x7ffabb430000 65536 C:\Windows\SYSTEM32\pcacli.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Program Compatibility Assistant Client Module 131795770645352881 0x7ffabb490000 512000 C:\Windows\SYSTEM32\TWINAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation twinapi 131795770645352881 0x7ffabba80000 995328 C:\Windows\System32\twinui.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation TWINUI.APPCORE 131795770645352881 0x7ffabbb80000 61440 C:\Windows\System32\dsclient.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Data Sharing Service Client DLL 131795770645352881 0x7ffabbb90000 581632 C:\Windows\System32\Windows.System.Launcher.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows.System.Launcher 131795770645352881 0x7ffabbc40000 643072 C:\Windows\SYSTEM32\MSVCP140.dll 14.10.24516.0 built by: VCTOOLSRELESC Microsoft Corporation Microsoft® C Runtime Library 131795770645352881 0x7ffabbce0000 90112 C:\Windows\SYSTEM32\VCRUNTIME140.dll 14.10.24516.0 built by: VCTOOLSRELESC Microsoft Corporation Microsoft® C Runtime Library 131795770645352881 0x7ffabbd00000 36864 C:\Windows\System32\WpPortingLibrary.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation <d> DLL 131795770645352881 0x7ffabbd20000 106496 C:\Windows\SYSTEM32\settingsyncpolicy.dll 10.0.14393.82 (rs1_release.160805-1735) Microsoft Corporation SettingSync Policy 131795770645352881 0x7ffabc0b0000 65536 C:\Windows\SYSTEM32\LINKINFO.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Volume Tracking 131795770645352881 0x7ffabc510000 90112 C:\Windows\system32\execmodelproxy.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ExecModelProxy 131795770645352881 0x7ffabc880000 73728 C:\Windows\SYSTEM32\cscapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Offline Files Win32 API 131795770645352881 0x7ffabcf30000 110592 C:\Windows\SYSTEM32\MPR.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека маршрутизации для нескольких служб доступа 131795770645352881 0x7ffabd3c0000 368640 C:\Windows\System32\InputSwitch.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Переключатель ввода Microsoft Windows 131795770645352881 0x7ffabd4a0000 1613824 C:\Windows\System32\Windows.Globalization.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Globalization 131795770645352881 0x7ffabd670000 315392 C:\Windows\System32\framedynos.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation WMI SDK Provider Framework 131795770645352881 0x7ffabd6c0000 1306624 C:\Windows\System32\werconcpl.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation PRS CPL 131795770645352881 0x7ffabd800000 876544 C:\Windows\System32\NPSMDesktopProvider.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation <d> Библиотека DLL локального поставщика рабочего стола NPSM 131795770645352881 0x7ffabda60000 1241088 C:\Windows\System32\wscui.cpl 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Центр безопасности и обслуживания 131795770645352881 0x7ffabdbb0000 1736704 C:\Windows\SYSTEM32\DUI70.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Подсистема DirectUI Windows 131795770645352881 0x7ffabdeb0000 86016 C:\Windows\system32\wpdshserviceobj.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Portable Device Shell Service Object 131795770645352881 0x7ffabded0000 413696 C:\Windows\system32\stobject.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Объект службы оболочки Systray 131795770645352881 0x7ffabe070000 610304 C:\Windows\SYSTEM32\efswrt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Storage Protection Windows Runtime DLL 131795770645352881 0x7ffabe470000 180224 C:\Windows\System32\wscinterop.dll 10.0.14393.479 (rs1_release.161110-2025) Microsoft Corporation Windows Health Center WSC Interop 131795770645352881 0x7ffabe4d0000 286720 C:\Windows\System32\MSWB7.dll 10.0.14393.1737 (rs1_release_inmarket.170914-1249) Microsoft Corporation MSWB7 DLL 131795770645352881 0x7ffabe580000 831488 C:\Program Files (x86)\360\Total Security\MenuEx64.dll 9, 6, 0, 1001 360 Total Security 131795770645352881 0x7ffabe650000 405504 C:\Windows\system32\zipfldr.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Сжатые ZIP-папки 131795770645352881 0x7ffabe850000 155648 C:\Windows\System32\IDStore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Identity Store 131795770645352881 0x7ffabe9a0000 94208 C:\Windows\system32\Syncreg.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Synchronization Framework Registration 131795770645352881 0x7ffabe9c0000 188416 C:\Windows\SYSTEM32\globinputhost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Globalization Extension API for Input 131795770645352881 0x7ffabebf0000 1208320 C:\Windows\system32\NetworkExplorer.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Сетевой проводник 131795770645352881 0x7ffabef80000 69632 C:\Windows\System32\sfc_os.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows File Protection 131795770645352881 0x7ffabf0b0000 176128 C:\Windows\System32\playtomenu.dll 12.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека меню функции "Передать на устройство" 131795770645352881 0x7ffabf0e0000 372736 C:\Windows\System32\hnetcfg.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Диспетчер конфигурации домашней сети 131795770645352881 0x7ffabf330000 2457600 C:\Windows\System32\msxml6.dll 6.30.14393.2156 Microsoft Corporation MSXML 6.0 131795770645352881 0x7ffabf590000 208896 C:\Windows\system32\syncui.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Портфель Windows 131795770645352881 0x7ffabf5d0000 2924544 C:\Windows\SYSTEM32\WININET.dll 11.00.14393.447 (rs1_release_inmarket.161102-0100) Microsoft Corporation Расширения Интернета для Win32 131795770645352881 0x7ffabf8c0000 802816 C:\Windows\system32\Windows.Internal.Shell.Broker.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation Windows Shell Broker 131795770645352881 0x7ffabfb00000 626688 C:\Windows\System32\ContentDeliveryManager.Utilities.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation ContentDeliveryManager.Utilities 131795770645352881 0x7ffabfba0000 212992 C:\Windows\System32\WSCAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API центра обеспечения безопасности Windows 131795770645352881 0x7ffabfdc0000 86016 C:\Windows\system32\keepaliveprovider.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Keep alive provider API 131795770645352881 0x7ffabfe50000 643072 C:\Windows\System32\wpnprv.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик подключения платформы push-уведомлений Windows 131795770645352881 0x7ffabff10000 155648 C:\Windows\system32\srvcli.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Server Service Client DLL 131795770645352881 0x7ffabff60000 135168 C:\Windows\system32\ncryptsslp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft SChannel Provider 131795770645352881 0x7ffac01e0000 397312 C:\Windows\System32\wincorlib.DLL 10.0.14393.576 (rs1_release_inmarket.161208-2252) Microsoft Corporation Microsoft Windows ® WinRT core library 131795770645352881 0x7ffac0250000 2179072 C:\Program Files\MICROS~1\Office16\GROOVEEX.DLL 16.0.4266.1001 Microsoft Corporation Microsoft OneDrive for Business Extensions 131795770645352881 0x7ffac0470000 1478656 C:\Windows\SYSTEM32\MFPlat.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Media Foundation Platform DLL 131795770645352881 0x7ffac05f0000 94208 C:\Windows\System32\wwapi.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation WWAN API 131795770645352881 0x7ffac0610000 3088384 C:\Windows\SYSTEM32\msi.dll 5.0.14393.2155 Microsoft Corporation Windows Installer 131795770645352881 0x7ffac0910000 724992 C:\Windows\System32\Windows.Networking.Connectivity.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Networking Connectivity Runtime DLL 131795770645352881 0x7ffac09d0000 884736 C:\Windows\System32\wpnapps.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Приложения для push-уведомлений Windows 131795770645352881 0x7ffac0ad0000 86016 C:\Windows\SYSTEM32\mskeyprotect.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик защиты ключей (Майкрософт) 131795770645352881 0x7ffac0af0000 114688 C:\Windows\System32\ATL.DLL 3.05.2284 Microsoft Corporation ATL Module for Windows XP (Unicode) 131795770645352881 0x7ffac0b40000 315392 C:\Windows\System32\dlnashext.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLNA Namespace DLL 131795770645352881 0x7ffac0b90000 380928 C:\Windows\System32\srchadmin.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Параметры индексирования 131795770645352881 0x7ffac0bf0000 3559424 C:\Windows\System32\ActXPrxy.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation ActiveX Interface Marshaling Library 131795770645352881 0x7ffac0f60000 151552 C:\Windows\SYSTEM32\CHARTV.dll 10.0.14393.351 (rs1_release_inmarket.161014-1755) Microsoft Corporation Chart View 131795770645352881 0x7ffac1b70000 122880 C:\Windows\System32\DevDispItemProvider.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Подсистема DeviceItem inproc devquery 131795770645352881 0x7ffac1cc0000 163840 C:\Windows\System32\Windows.Networking.Sockets.PushEnabledApplication.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows.Networking.Sockets.PushEnabledApplication DLL 131795770645352881 0x7ffac1d60000 589824 C:\Windows\System32\webio.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API протоколов передачи по Веб 131795770645352881 0x7ffac1e50000 188416 C:\Windows\SYSTEM32\RTWorkQ.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL для WorkQueue реального времени 131795770645352881 0x7ffac1fd0000 999424 C:\Windows\system32\wbem\fastprox.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation WMI Custom Marshaller 131795770645352881 0x7ffac20d0000 110592 C:\Windows\System32\RMCLIENT.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Resource Manager Client 131795770645352881 0x7ffac21d0000 81920 C:\Windows\system32\wbem\wbemsvc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation WMI 131795770645352881 0x7ffac2360000 57344 C:\Windows\System32\TimeBrokerClient.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Time Broker Client Library 131795770645352881 0x7ffac23c0000 331776 C:\Windows\System32\OneCoreCommonProxyStub.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation OneCore Common Proxy Stub 131795770645352881 0x7ffac2530000 270336 C:\Windows\system32\hnetcfgclient.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиент API конфигурации домашней сети 131795770645352881 0x7ffac2700000 98304 C:\Windows\system32\NETAPI32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API DLL 131795770645352881 0x7ffac27a0000 1642496 C:\Users\User\AppData\Local\Microsoft\OneDrive\18.111.0603.0006\amd64\FileSyncShell64.dll 18.111.0603.0006 Microsoft Corporation Microsoft OneDrive Shell Extension 131795770645352881 0x7ffac2960000 143360 C:\Windows\system32\mssprxy.dll 7.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation Microsoft Search Proxy 131795770645352881 0x7ffac2990000 385024 C:\Windows\SYSTEM32\NInput.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Pen and Touch Input Component 131795770645352881 0x7ffac29f0000 159744 C:\Windows\system32\NetSetupApi.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Network Configuration API 131795770645352881 0x7ffac2a20000 81920 C:\Windows\System32\rtutils.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Routing Utilities 131795770645352881 0x7ffac2b80000 40960 C:\Windows\SYSTEM32\VERSION.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Version Checking and File Installation Libraries 131795770645352881 0x7ffac2cb0000 778240 C:\Windows\System32\winsqlite3.dll 3.12.2 SQLite Development Team SQLite is a software library that implements a self-contained, serverless, zero-configuration, transactional SQL database engine. 131795770645352881 0x7ffac2d80000 5140480 C:\Windows\System32\cdp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API клиента Microsoft (R) CDP 131795770645352881 0x7ffac32e0000 180224 C:\Windows\system32\twext.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Свойства: Предыдущие версии 131795770645352881 0x7ffac3350000 36864 C:\Windows\SYSTEM32\OLEACCHOOKS.DLL 7.2.14393.0 (rs1_release.160715-1616) Microsoft Corporation Active Accessibility Event Hooks Library 131795770645352881 0x7ffac3360000 1396736 C:\Windows\System32\wpncore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Ядро извещающих уведомлений Windows 131795770645352881 0x7ffac34e0000 1843200 C:\Windows\SYSTEM32\urlmon.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширения OLE32 для Win32 131795770645352881 0x7ffac37d0000 258048 C:\Windows\SYSTEM32\wdmaud.drv 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Системный звуковой драйвер Winmm 131795770645352881 0x7ffac3cb0000 2772992 C:\Windows\SYSTEM32\iertutil.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служебная программа времени выполнения для Internet Explorer 131795770645352881 0x7ffac4000000 274432 C:\Windows\SYSTEM32\policymanager.dll 10.0.14393.2035 (rs1_release_inmarket.180110-1910) Microsoft Corporation Policy Manager DLL 131795770645352881 0x7ffac4070000 499712 C:\Windows\SYSTEM32\dsreg.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation AD/AAD User Device Registration 131795770645352881 0x7ffac4140000 114688 C:\Windows\SYSTEM32\MSACM32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Фильтр диспетчера аудиосжатия Microsoft 131795770645352881 0x7ffac4220000 520192 C:\Windows\SYSTEM32\wbemcomn.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation WMI 131795770645352881 0x7ffac42a0000 659456 C:\Windows\System32\StateRepository.Core.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation StateRepository Core 131795770645352881 0x7ffac4450000 86016 C:\Windows\SYSTEM32\usermgrcli.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation UserMgr API DLL 131795770645352881 0x7ffac4470000 65536 C:\Windows\system32\wbem\wbemprox.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation WMI 131795770645352881 0x7ffac46d0000 4161536 C:\Windows\System32\Windows.StateRepository.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Сервер Windows StateRepository API Server 131795770645352881 0x7ffac4df0000 462848 C:\Windows\System32\provsvc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Домашняя группа Windows 131795770645352881 0x7ffac4ea0000 36864 C:\Windows\SYSTEM32\atlthunk.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation atlthunk.dll 131795770645352881 0x7ffac4f60000 143360 C:\Windows\System32\wcmapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Connection Manager Client API 131795770645352881 0x7ffac4f90000 221184 C:\Windows\System32\EhStorShell.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL расширения оболочки Windows Enhanced Storage 131795770645352881 0x7ffac4fd0000 618496 C:\Windows\System32\wlidprov.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft® Account Provider 131795770645352881 0x7ffac5070000 798720 C:\Windows\System32\Windows.Web.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL веб-клиента 131795770645352881 0x7ffac5140000 307200 C:\Windows\System32\AboveLockAppHost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AboveLockAppHost 131795770645352881 0x7ffac5190000 659456 C:\Windows\System32\NotificationController.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation NotificationController 131795770645352881 0x7ffac5350000 1765376 C:\Windows\System32\Windows.UI.Immersive.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation WINDOWS.UI.IMMERSIVE 131795770645352881 0x7ffac5500000 438272 C:\Windows\SYSTEM32\PhotoMetadataHandler.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Photo Metadata Handler 131795770645352881 0x7ffac5570000 339968 C:\Windows\system32\twinui.pcshell.dll 10.0.14393.351 (rs1_release_inmarket.161014-1755) Microsoft Corporation Twinui.PCShell 131795770645352881 0x7ffac55d0000 376832 C:\Windows\System32\windows.immersiveshell.serviceprovider.dll 10.0.14393.1593 (rs1_release.170731-1934) Microsoft Corporation Windows.ImmersiveShell.ServiceProvider 131795770645352881 0x7ffac5630000 339968 C:\Windows\System32\thumbcache.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Кэш эскизов Майкрософт 131795770645352881 0x7ffac5690000 4734976 C:\Windows\system32\explorerframe.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ExplorerFrame 131795770645352881 0x7ffac5bb0000 622592 C:\Program Files\Common Files\microsoft shared\ink\tiptsf.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Инфраструктура текстовых служб сенсорной клавиатуры и панели рукописного ввода 131795770645352881 0x7ffac5c70000 65536 C:\Program Files\Windows Photo Viewer\PhotoBase.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Photo Base Library 131795770645352881 0x7ffac5ce0000 1744896 C:\Windows\SYSTEM32\UIAutomationCore.DLL 7.2.14393.0 (rs1_release.160715-1616) Microsoft Corporation Основные автоматические компоненты Microsoft UI 131795770645352881 0x7ffac60e0000 221184 C:\Windows\System32\XmlLite.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft XmlLite Library 131795770645352881 0x7ffac6610000 40960 C:\Windows\System32\rasadhlp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Remote Access AutoDial Helper 131795770645352881 0x7ffac6650000 176128 C:\Windows\System32\npsm.dll 10.0.14393.447 (rs1_release_inmarket.161102-0100) Microsoft Corporation NPSM 131795780903771340 0x7ffac66a0000 86016 C:\Windows\System32\OnDemandConnRouteHelper.dll 10.0.14393.351 (rs1_release_inmarket.161014-1755) Microsoft Corporation On Demand Connctiond Route Helper 131795770645352881 0x7ffac69c0000 839680 C:\Windows\System32\WINHTTP.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Службы HTTP Windows 131795770645352881 0x7ffac6ac0000 835584 C:\Windows\System32\Windows.UI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Runtime UI Foundation DLL 131795770645352881 0x7ffac6ba0000 49152 C:\Windows\SYSTEM32\Secur32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Security Support Provider Interface 131795770645352881 0x7ffac6bd0000 413696 C:\Windows\SYSTEM32\OLEACC.dll 7.2.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Active Accessibility Core Component 131795770645352881 0x7ffac6c40000 2596864 C:\Windows\WinSxS\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.14393.953_none_42151e83c686086b\comctl32.dll 6.10 (rs1_release_inmarket.170303-1614) Microsoft Corporation Библиотека элементов управления взаимодействия с пользователем 131795770645352881 0x7ffac6ec0000 36864 C:\Windows\system32\IconCodecService.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Converts a PNG part of the icon to a legacy bmp icon 131795770645352881 0x7ffac6f50000 5632000 C:\Windows\System32\d2d1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека Microsoft D2D 131795770645352881 0x7ffac7580000 1077248 C:\Windows\SYSTEM32\MrmCoreR.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Windows MRM 131795770645352881 0x7ffac76a0000 159744 C:\Windows\SYSTEM32\sppc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Software Licensing Client DLL 131795770645352881 0x7ffac78f0000 647168 C:\Windows\System32\hgcpl.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Панель управления домашней группы 131795770645352881 0x7ffac7990000 155648 C:\Windows\SYSTEM32\SLC.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Software Licensing Client DLL 131795770645352881 0x7ffac79c0000 57344 C:\Windows\System32\npmproxy.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Network List Manager Proxy 131795770645352881 0x7ffac7aa0000 401408 C:\Windows\SYSTEM32\wlanapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows WLAN AutoConfig Client Side API DLL 131795770645352881 0x7ffac7d40000 131072 C:\Windows\system32\SYNCENG.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Briefcase Engine 131795770645352881 0x7ffac7d90000 454656 C:\Windows\SYSTEM32\SndVolSSO.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Громкость SCA 131795770645352881 0x7ffac7f50000 73728 C:\Windows\system32\acppage.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека расширений для вкладки "Совместимость" 131795770645352881 0x7ffac7fc0000 2674688 C:\Windows\SYSTEM32\d3d10warp.dll 10.0.14393.576 (rs1_release_inmarket.161208-2252) Microsoft Corporation Direct3D 10 Rasterizer 131795770645352881 0x7ffac83d0000 106496 C:\Windows\SYSTEM32\dhcpcsvc.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служба DHCP-клиента 131795770645352881 0x7ffac83f0000 90112 C:\Windows\SYSTEM32\dhcpcsvc6.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиент DHCPv6 131795770645352881 0x7ffac8420000 434176 C:\Windows\System32\fwpuclnt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API пользовательского режима FWP/IPsec 131795770645352881 0x7ffac84e0000 53248 C:\Windows\System32\NotificationControllerPS.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation NotificationController Proxy Stub 131795770645352881 0x7ffac84f0000 299008 C:\Windows\system32\dataexchange.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation Data exchange 131795770645352881 0x7ffac8810000 45056 C:\Windows\SYSTEM32\WINNSI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Network Store Information RPC interface 131795770645352881 0x7ffac8880000 69632 C:\Windows\system32\WMICLNT.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation WMI Client API 131795770645352881 0x7ffac88a0000 2842624 C:\Windows\system32\d3d11.dll 10.0.14393.953 (rs1_release_inmarket.170303-1614) Microsoft Corporation Direct3D 11 Runtime 131795770645352881 0x7ffac8f90000 45056 C:\Windows\SYSTEM32\AVRT.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Среда выполнения мультимедиа в реальном времени 131795770645352881 0x7ffac90b0000 90112 C:\Windows\SYSTEM32\wkscli.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Workstation Service Client DLL 131795770645352881 0x7ffac9220000 397312 C:\Windows\System32\wevtapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API настройки и использования событий 131795770645352881 0x7ffac9290000 40960 C:\Windows\system32\DSROLE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DS Setup Client DLL 131795770645352881 0x7ffac92e0000 1269760 C:\Windows\System32\WinTypes.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL основных типов Windows 131795770645352881 0x7ffac9480000 462848 C:\Windows\System32\MMDevApi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation MMDevice API 131795770645352881 0x7ffac9500000 2682880 C:\Windows\SYSTEM32\CoreUIComponents.dll 131795770645352881 0x7ffac9790000 98304 C:\Windows\System32\nlaapi.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Network Location Awareness 2 131795770645352881 0x7ffac97d0000 40960 C:\Windows\SYSTEM32\midimap.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft MIDI Mapper 131795778062352400 0x7ffac97e0000 73728 C:\Windows\System32\ploptin.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Prelaunch OptIn 131795770645352881 0x7ffac9bb0000 479232 C:\Windows\system32\es.dll 2001.12.10941.16384 (rs1_release.160715-1616) Microsoft Corporation COM+ 131795770645352881 0x7ffac9e00000 647168 C:\Windows\System32\PortableDeviceApi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Компоненты API для переносных устройств Windows 131795770645352881 0x7ffac9ea0000 81920 C:\Windows\System32\hcproviders.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщики компонента "Центр безопасности и обслуживания" 131795770645352881 0x7ffac9ec0000 294912 C:\Windows\System32\UIAnimation.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Animation Manager 131795770645352881 0x7ffac9f10000 221184 C:\Windows\System32\netprofm.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Network List Manager 131795770645352881 0x7ffac9f50000 1736704 C:\Windows\system32\windowscodecs.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Microsoft Windows Codecs Library 131795770645352881 0x7ffaca170000 45056 C:\Windows\SYSTEM32\ktmw32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows KTM Win32 Client DLL 131795770645352881 0x7ffaca180000 53248 C:\Windows\SYSTEM32\msacm32.drv 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Программа переназначения звуковых устройств 131795770645352881 0x7ffaca190000 241664 C:\Windows\System32\WorkFoldersShell.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширение оболочки рабочих папок (Майкрософт) 131795770645352881 0x7ffaca260000 45056 C:\Windows\System32\SystemEventsBrokerClient.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation system Events Broker Client Library 131795780604813666 0x7ffaca280000 73728 C:\Windows\System32\BitsProxy.dll 7.8.14393.0 (rs1_release.160715-1616) Microsoft Corporation Background Intelligent Transfer Service Proxy 131795770645352881 0x7ffaca340000 1593344 C:\Windows\SYSTEM32\PROPSYS.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Система страниц свойств (Майкрософт) 131795770645352881 0x7ffaca4e0000 77824 C:\Windows\SYSTEM32\wtsapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Remote Desktop Session Host Server SDK APIs 131795770645352881 0x7ffaca550000 36864 C:\Windows\SYSTEM32\ksuser.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User CSA Library 131795770645352881 0x7ffaca570000 421888 C:\Windows\SYSTEM32\Bcp47Langs.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation BCP47 Language Classes 131795770645352881 0x7ffaca5e0000 155648 C:\Windows\SYSTEM32\dwmapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Интерфейс API диспетчера окон рабочего стола (Майкрософт) 131795770645352881 0x7ffaca610000 143360 C:\Windows\System32\SAMLIB.dll 10.0.14393.82 (rs1_release.160805-1735) Microsoft Corporation SAM Library DLL 131795770645352881 0x7ffaca640000 770048 C:\Windows\System32\CoreMessaging.dll 10.0.14393.0 Microsoft Corporation Microsoft CoreMessaging Dll 131795770645352881 0x7ffaca770000 1380352 C:\Windows\system32\dcomp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft DirectComposition Library 131795770645352881 0x7ffacab40000 176128 C:\Windows\SYSTEM32\WINMMBASE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base Multimedia Extension API DLL 131795770645352881 0x7ffacaba0000 143360 C:\Windows\SYSTEM32\WINMM.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation MCI API DLL 131795770645352881 0x7ffacac60000 69632 C:\Windows\system32\credui.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Credential Manager User Interface 131795770645352881 0x7ffacac80000 28672 C:\Windows\SYSTEM32\MSIMG32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation GDIEXT Client DLL 131795770645352881 0x7ffacadf0000 499712 C:\Windows\SYSTEM32\apphelp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиентская библиотека совместимости приложений 131795770645352881 0x7ffacaf00000 610304 C:\Windows\SYSTEM32\UxTheme.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека тем UxTheme (Microsoft) 131795770645352881 0x7ffacb140000 593920 C:\Windows\System32\msvcp110_win.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Microsoft® STL110 C++ Runtime Library 131795770645352881 0x7ffacb1e0000 1163264 C:\Windows\SYSTEM32\twinapi.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation twinapi.appcore 131795770645352881 0x7ffacb300000 364544 C:\Windows\System32\VEEventDispatcher.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Visual Element Event dispatcher 131795770645352881 0x7ffacb3d0000 110592 C:\Windows\SYSTEM32\resourcepolicyclient.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Resource Policy Client 131795770645352881 0x7ffacb3f0000 163840 C:\Windows\System32\DEVOBJ.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Device Information Set DLL 131795770645352881 0x7ffacb420000 204800 C:\Windows\SYSTEM32\ntmarta.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик Windows NT MARTA 131795770645352881 0x7ffacb6f0000 143360 C:\Windows\SYSTEM32\gpapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиентские функции API групповой политики 131795770645352881 0x7ffacb780000 651264 C:\Windows\system32\dxgi.dll 10.0.14393.953 (rs1_release_inmarket.170303-1614) Microsoft Corporation DirectX Graphics Infrastructure 131795770645352881 0x7ffacb920000 81920 C:\Windows\SYSTEM32\WLDP.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Политика блокировки Windows 131795770645352881 0x7ffacbaf0000 495616 C:\Windows\system32\schannel.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик безопасности TLS/SSL 131795770645352881 0x7ffacbbb0000 208896 C:\Windows\system32\rsaenh.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Enhanced Cryptographic Provider 131795770645352881 0x7ffacbbf0000 40960 C:\Windows\SYSTEM32\DPAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Data Protection API 131795770645352881 0x7ffacbd30000 229376 C:\Windows\System32\IPHLPAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API вспомогательного приложения IP 131795770645352881 0x7ffacbd70000 659456 C:\Windows\System32\DNSAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Динамическая библиотека API DNS-клиента 131795770645352881 0x7ffacbe20000 53248 C:\Windows\system32\netutils.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API Helpers DLL 131795770645352881 0x7ffacbe40000 126976 C:\Windows\SYSTEM32\USERENV.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Userenv 131795770645352881 0x7ffacbfb0000 376832 C:\Windows\system32\mswsock.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширение поставщика службы API Microsoft Windows Sockets 2.0 131795770645352881 0x7ffacc150000 94208 C:\Windows\SYSTEM32\cryptsp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Cryptographic Service Provider API 131795770645352881 0x7ffacc170000 45056 C:\Windows\System32\CRYPTBASE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base cryptographic API DLL 131795770645352881 0x7ffacc1f0000 241664 C:\Windows\System32\NTASN1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft ASN.1 API 131795770645352881 0x7ffacc230000 155648 C:\Windows\System32\ncrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Маршрутизатор Windows NCrypt 131795770645352881 0x7ffacc350000 180224 C:\Windows\SYSTEM32\SspiCli.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Security Support Provider Interface 131795770645352881 0x7ffacc500000 102400 C:\Windows\System32\EventAggregation.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Event Aggregation User Mode Library 131795770645352881 0x7ffacc520000 622592 C:\Windows\SYSTEM32\sxs.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Fusion 2.5 131795770645352881 0x7ffacc5c0000 352256 C:\Windows\SYSTEM32\WINSTA.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Winstation Library 131795770645352881 0x7ffacc620000 176128 C:\Windows\SYSTEM32\bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795770645352881 0x7ffacc6e0000 61440 C:\Windows\System32\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795770645352881 0x7ffacc6f0000 311296 C:\Windows\System32\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795770645352881 0x7ffacc740000 81920 C:\Windows\System32\profapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Profile Basic API 131795770645352881 0x7ffacc760000 65536 C:\Windows\System32\MSASN1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ASN.1 Runtime APIs 131795770645352881 0x7ffacc8f0000 1003520 C:\Windows\System32\ucrtbase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645352881 0x7ffacc9f0000 434176 C:\Windows\System32\bcryptPrimitives.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Cryptographic Primitives Library 131795770645352881 0x7ffacca60000 122880 C:\Windows\System32\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795770645352881 0x7ffacca80000 348160 C:\Windows\System32\WINTRUST.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation Microsoft Trust Verification APIs 131795770645352881 0x7ffaccae0000 692224 C:\Windows\System32\SHCORE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795770645352881 0x7ffaccb90000 7180288 C:\Windows\System32\windows.storage.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API хранения Microsoft WinRT 131795770645352881 0x7ffacd270000 2215936 C:\Windows\System32\KERNELBASE.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645352881 0x7ffacd490000 1871872 C:\Windows\System32\CRYPT32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API32 криптографии 131795770645352881 0x7ffacd710000 638976 C:\Windows\System32\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645352881 0x7ffacd7b0000 270336 C:\Windows\System32\cfgmgr32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Configuration Manager DLL 131795770645352881 0x7ffacd810000 22056960 C:\Windows\System32\SHELL32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Общая библиотека оболочки Windows 131795770645352881 0x7ffaced20000 782336 C:\Windows\System32\OLEAUT32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795770645352881 0x7ffacede0000 450560 C:\Windows\System32\coml2.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft COM for Windows 131795770645352881 0x7ffacee50000 1183744 C:\Windows\System32\RPCRT4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795770645352881 0x7ffacef80000 32768 C:\Windows\System32\NSI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation NSI User-mode interface DLL 131795770645352881 0x7ffacef90000 647168 C:\Windows\System32\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795770645352881 0x7ffacf030000 651264 C:\Windows\System32\clbcatq.dll 2001.12.10941.16384 (rs1_release.160715-1616) Microsoft Corporation COM+ Configuration Catalog 131795770645352881 0x7ffacf0d0000 704512 C:\Windows\System32\KERNEL32.DLL 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645352881 0x7ffacf1e0000 1417216 C:\Windows\System32\MSCTF.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Серверная библиотека MSCTF 131795770645352881 0x7ffacf340000 4362240 C:\Windows\System32\SETUPAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Setup API 131795770645352881 0x7ffacf770000 212992 C:\Windows\System32\GDI32.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation GDI Client DLL 131795770645352881 0x7ffacf820000 434176 C:\Windows\System32\WS2_32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation 32-разрядная библиотека Windows Socket 2.0 131795770645352881 0x7ffacf890000 188416 C:\Windows\System32\IMM32.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Multi-User Windows IMM32 API Client DLL 131795770645352881 0x7ffacf8c0000 1462272 C:\Windows\System32\USER32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795770645352881 0x7ffacfb30000 2916352 C:\Windows\System32\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795770645352881 0x7ffacfe00000 114688 C:\Windows\System32\imagehlp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT Image Helper 131795770645352881 0x7ffacfe20000 663552 C:\Windows\System32\advapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795770645352881 0x7ffad0070000 1277952 C:\Windows\System32\ole32.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft OLE для Windows 131795770645352881 0x7ffad01b0000 335872 C:\Windows\System32\SHLWAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека небольших программ оболочки 131795770645352881 0x7ffad0210000 364544 C:\Windows\System32\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795770645352881 0x7ffad0270000 1908736 C:\Windows\SYSTEM32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 13 404 396 14 00000000:000003e7 131765776186257169 0 0 1 Обязательная метка\Обязательный уровень системы NT AUTHORITY\СИСТЕМА csrss.exe C:\Windows\system32\csrss.exe %SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16 Microsoft Corporation 10.0.14393.0 (rs1_release.160715-1616) Процесс исполнения клиент-сервер 15 468 460 16 00000000:000003e7 131765776223665667 0 0 1 Обязательная метка\Обязательный уровень системы NT AUTHORITY\СИСТЕМА csrss.exe C:\Windows\system32\csrss.exe %SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16 Microsoft Corporation 10.0.14393.0 (rs1_release.160715-1616) Процесс исполнения клиент-сервер 17 484 396 14 00000000:000003e7 131765776226419105 0 0 1 Обязательная метка\Обязательный уровень системы NT AUTHORITY\СИСТЕМА wininit.exe C:\Windows\system32\wininit.exe wininit.exe Microsoft Corporation 10.0.14393.0 (rs1_release.160715-1616) Автозагрузка приложений Windows 18 520 460 16 00000000:000003e7 131765776226825613 0 0 1 Обязательная метка\Обязательный уровень системы NT AUTHORITY\СИСТЕМА winlogon.exe C:\Windows\system32\winlogon.exe winlogon.exe Microsoft Corporation 10.0.14393.0 (rs1_release.160715-1616) Программа входа в систему Windows 131795770645375500 0x7ff7b5570000 696320 C:\Windows\system32\winlogon.exe 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Программа входа в систему Windows 131795770645375500 0x7ffabaab0000 94208 C:\Windows\SYSTEM32\profext.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation profext 131795770645375500 0x7ffabcf30000 110592 C:\Windows\system32\MPR.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека маршрутизации для нескольких служб доступа 131795770645375500 0x7ffac4450000 86016 C:\Windows\SYSTEM32\usermgrcli.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation UserMgr API DLL 131795770645375500 0x7ffac90b0000 90112 C:\Windows\system32\wkscli.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Workstation Service Client DLL 131795770645375500 0x7ffaca4e0000 77824 C:\Windows\SYSTEM32\wtsapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Remote Desktop Session Host Server SDK APIs 131795770645375500 0x7ffacadf0000 499712 C:\Windows\system32\apphelp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиентская библиотека совместимости приложений 131795770645375500 0x7ffacaee0000 81920 C:\Windows\SYSTEM32\dwminit.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DWMInit 131795770645375500 0x7ffacaf00000 610304 C:\Windows\system32\UxTheme.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека тем UxTheme (Microsoft) 131795770645375500 0x7ffacafa0000 118784 C:\Windows\system32\UXINIT.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows User Experience Session Initialization Dll 131795770645375500 0x7ffacb360000 176128 C:\Windows\system32\fwbase.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Firewall Base DLL 131795770645375500 0x7ffacb420000 204800 C:\Windows\SYSTEM32\ntmarta.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик Windows NT MARTA 131795770645375500 0x7ffacb460000 548864 C:\Windows\SYSTEM32\firewallapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API брандмауэра Windows 131795770645375500 0x7ffacbbf0000 40960 C:\Windows\system32\DPAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Data Protection API 131795770645375500 0x7ffacbe20000 53248 C:\Windows\system32\netutils.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API Helpers DLL 131795770645375500 0x7ffacbe40000 126976 C:\Windows\system32\USERENV.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Userenv 131795770645375500 0x7ffacc170000 45056 C:\Windows\system32\CRYPTBASE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base cryptographic API DLL 131795770645375500 0x7ffacc350000 180224 C:\Windows\system32\SspiCli.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Security Support Provider Interface 131795770645375500 0x7ffacc5c0000 352256 C:\Windows\SYSTEM32\winsta.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Winstation Library 131795770645375500 0x7ffacc620000 176128 C:\Windows\system32\bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795770645375500 0x7ffacc6f0000 311296 C:\Windows\System32\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795770645375500 0x7ffacc740000 81920 C:\Windows\System32\profapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Profile Basic API 131795770645375500 0x7ffacc760000 65536 C:\Windows\System32\MSASN1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ASN.1 Runtime APIs 131795770645375500 0x7ffacc8f0000 1003520 C:\Windows\System32\ucrtbase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645375500 0x7ffacc9f0000 434176 C:\Windows\System32\bcryptPrimitives.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Cryptographic Primitives Library 131795770645375500 0x7ffacca60000 122880 C:\Windows\System32\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795770645375500 0x7ffaccae0000 692224 C:\Windows\System32\shcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795770645375500 0x7ffacd270000 2215936 C:\Windows\System32\KERNELBASE.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645375500 0x7ffacd490000 1871872 C:\Windows\System32\CRYPT32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API32 криптографии 131795770645375500 0x7ffacee50000 1183744 C:\Windows\System32\RPCRT4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795770645375500 0x7ffacef90000 647168 C:\Windows\System32\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795770645375500 0x7ffacf0d0000 704512 C:\Windows\System32\KERNEL32.DLL 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645375500 0x7ffacf770000 212992 C:\Windows\System32\GDI32.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation GDI Client DLL 131795770645375500 0x7ffacf890000 188416 C:\Windows\System32\IMM32.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Multi-User Windows IMM32 API Client DLL 131795770645375500 0x7ffacf8c0000 1462272 C:\Windows\System32\user32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795770645375500 0x7ffacfb30000 2916352 C:\Windows\System32\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795770645375500 0x7ffacfe20000 663552 C:\Windows\System32\advapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795770645375500 0x7ffad0210000 364544 C:\Windows\System32\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795770645375500 0x7ffad0270000 1908736 C:\Windows\SYSTEM32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 19 588 484 17 00000000:000003e7 131765776277547408 0 0 1 Обязательная метка\Обязательный уровень системы NT AUTHORITY\СИСТЕМА lsass.exe C:\Windows\system32\lsass.exe C:\Windows\system32\lsass.exe Microsoft Corporation 10.0.14393.1770 (rs1_release.170917-1700) Local Security Authority Process 131795770645375702 0x222e3610000 12288 C:\Windows\system32\msprivs.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Переводы привилегий Майкрософт 131795770645375702 0x7ff6b2d20000 69632 C:\Windows\system32\lsass.exe 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Local Security Authority Process 131795770645375702 0x7ffab9170000 380928 C:\Windows\System32\vaultsvc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служба диспетчера учетных данных 131795770645375702 0x7ffabf170000 77824 C:\Windows\system32\hmkd.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows HMAC Key Derivation API 131795770645375702 0x7ffabf190000 126976 C:\Windows\System32\ngcpopkeysrv.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Microsoft Passport Proof-of-possession Key Service 131795770645375702 0x7ffabf1b0000 114688 C:\Windows\system32\keyiso.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служба изоляции ключей CNG 131795770645375702 0x7ffabf1d0000 192512 C:\Windows\System32\cryptnet.dll 10.0.14393.2035 (rs1_release_inmarket.180110-1910) Microsoft Corporation Crypto Network Related API 131795770645375702 0x7ffabf200000 405504 C:\Windows\SYSTEM32\cryptngc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API службы Microsoft Passport 131795770645375702 0x7ffabf270000 143360 C:\Windows\System32\SecureTimeAggregator.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Secure Time Aggregator 131795770645375702 0x7ffabf2a0000 159744 C:\Windows\system32\dssenh.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Enhanced DSS and Diffie-Hellman Cryptographic Provider 131795770645375702 0x7ffabf2d0000 344064 C:\Windows\system32\ncryptprov.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft KSP 131795770645375702 0x7ffabff60000 135168 C:\Windows\system32\ncryptsslp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft SChannel Provider 131795770645375702 0x7ffac0ac0000 53248 C:\Windows\system32\tbs.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation TBS 131795770645375702 0x7ffac0ad0000 86016 C:\Windows\SYSTEM32\mskeyprotect.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик защиты ключей (Майкрософт) 131795770645375702 0x7ffac1d60000 589824 C:\Windows\system32\webio.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API протоколов передачи по Веб 131795770645375702 0x7ffac6610000 40960 C:\Windows\System32\rasadhlp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Remote Access AutoDial Helper 131795770645375702 0x7ffac69c0000 839680 C:\Windows\system32\WINHTTP.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Службы HTTP Windows 131795770645375702 0x7ffac6b90000 53248 C:\Windows\system32\DSPARSE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Active Directory Domain Services API 131795770645375702 0x7ffac6ba0000 49152 C:\Windows\SYSTEM32\secur32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Security Support Provider Interface 131795770645375702 0x7ffac83d0000 106496 C:\Windows\SYSTEM32\dhcpcsvc.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служба DHCP-клиента 131795770645375702 0x7ffac83f0000 90112 C:\Windows\SYSTEM32\dhcpcsvc6.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиент DHCPv6 131795770645375702 0x7ffac8420000 434176 C:\Windows\System32\fwpuclnt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API пользовательского режима FWP/IPsec 131795770645375702 0x7ffac8810000 45056 C:\Windows\SYSTEM32\WINNSI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Network Store Information RPC interface 131795770645375702 0x7ffac8fa0000 253952 C:\Windows\system32\logoncli.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Net Logon Client DLL 131795770645375702 0x7ffac9220000 397312 C:\Windows\SYSTEM32\wevtapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API настройки и использования событий 131795770645375702 0x7ffac9290000 40960 C:\Windows\system32\DSROLE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DS Setup Client DLL 131795770645375702 0x7ffacb6f0000 143360 C:\Windows\SYSTEM32\gpapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиентские функции API групповой политики 131795770645375702 0x7ffacb960000 303104 C:\Windows\system32\AUTHZ.dll 10.0.14393.1737 (rs1_release_inmarket.170914-1249) Microsoft Corporation Authorization Framework 131795770645375702 0x7ffacb9b0000 294912 C:\Windows\system32\scecli.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиент редактора конфигураций безопасности 131795770645375702 0x7ffacba80000 49152 C:\Windows\SYSTEM32\SspiSrv.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation LSA SSPI RPC interface DLL 131795770645375702 0x7ffacba90000 221184 C:\Windows\system32\dpapisrv.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DPAPI Server 131795770645375702 0x7ffacbad0000 102400 C:\Windows\system32\efslsaext.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation LSA extension for EFS 131795770645375702 0x7ffacbaf0000 495616 C:\Windows\system32\schannel.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик безопасности TLS/SSL 131795770645375702 0x7ffacbb70000 245760 C:\Windows\system32\wdigest.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Digest Access 131795770645375702 0x7ffacbbb0000 208896 C:\Windows\system32\rsaenh.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Enhanced Cryptographic Provider 131795770645375702 0x7ffacbbf0000 40960 C:\Windows\SYSTEM32\DPAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Data Protection API 131795770645375702 0x7ffacbc00000 290816 C:\Windows\SYSTEM32\MicrosoftAccountCloudAP.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation MicrosoftAccount Cloud AP Plugin 131795770645375702 0x7ffacbc50000 372736 C:\Windows\system32\cloudAP.DLL 10.0.14393.1358 (rs1_release.170602-2252) Microsoft Corporation Cloud AP Security Package 131795770645375702 0x7ffacbcb0000 278528 C:\Windows\system32\pku2u.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Pku2u Security Package 131795770645375702 0x7ffacbd00000 139264 C:\Windows\system32\tspkg.DLL 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation Web Service Security Package 131795770645375702 0x7ffacbd30000 229376 C:\Windows\SYSTEM32\IPHLPAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API вспомогательного приложения IP 131795770645375702 0x7ffacbd70000 659456 C:\Windows\system32\DNSAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Динамическая библиотека API DNS-клиента 131795770645375702 0x7ffacbe20000 53248 C:\Windows\system32\netutils.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API Helpers DLL 131795770645375702 0x7ffacbe30000 57344 C:\Windows\system32\gmsaclient.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation "gmsaclient.DYNLINK" 131795770645375702 0x7ffacbe40000 126976 C:\Windows\system32\USERENV.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Userenv 131795770645375702 0x7ffacbe60000 843776 C:\Windows\system32\netlogon.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Динамическая библиотека службы Net Logon 131795770645375702 0x7ffacbf30000 49152 C:\Windows\system32\NtlmShared.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation NTLM Shared Functionality 131795770645375702 0x7ffacbf40000 421888 C:\Windows\system32\msv1_0.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Authentication Package v1.0 131795770645375702 0x7ffacbfb0000 376832 C:\Windows\system32\mswsock.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширение поставщика службы API Microsoft Windows Sockets 2.0 131795770645375702 0x7ffacc010000 86016 C:\Windows\system32\cryptdll.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Cryptography Manager 131795770645375702 0x7ffacc030000 163840 C:\Windows\system32\KerbClientShared.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Kerberos Client Shared Functionality 131795770645375702 0x7ffacc150000 94208 C:\Windows\system32\CRYPTSP.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Cryptographic Service Provider API 131795770645375702 0x7ffacc170000 45056 C:\Windows\system32\CRYPTBASE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base cryptographic API DLL 131795770645375702 0x7ffacc180000 155648 C:\Windows\system32\negoexts.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation NegoExtender Security Package 131795770645375702 0x7ffacc1b0000 126976 C:\Windows\system32\JOINUTIL.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Join Utility DLL 131795770645375702 0x7ffacc1d0000 86016 C:\Windows\SYSTEM32\netprovfw.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Provisioning Service Framework DLL 131795770645375702 0x7ffacc1f0000 241664 C:\Windows\system32\NTASN1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft ASN.1 API 131795770645375702 0x7ffacc230000 155648 C:\Windows\system32\ncrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Маршрутизатор Windows NCrypt 131795770645375702 0x7ffacc260000 921600 C:\Windows\SYSTEM32\samsrv.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека сервера диспетчера учетных записей 131795770645375702 0x7ffacc350000 180224 C:\Windows\system32\SspiCli.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Security Support Provider Interface 131795770645375702 0x7ffacc380000 1527808 C:\Windows\system32\lsasrv.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation Библиотека DLL сервера LSA 131795770645375702 0x7ffacc5c0000 352256 C:\Windows\SYSTEM32\winsta.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Winstation Library 131795770645375702 0x7ffacc620000 176128 C:\Windows\system32\bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795770645375702 0x7ffacc6f0000 311296 C:\Windows\System32\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795770645375702 0x7ffacc740000 81920 C:\Windows\System32\profapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Profile Basic API 131795770645375702 0x7ffacc760000 65536 C:\Windows\System32\MSASN1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ASN.1 Runtime APIs 131795770645375702 0x7ffacc8f0000 1003520 C:\Windows\System32\ucrtbase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645375702 0x7ffacc9f0000 434176 C:\Windows\System32\bcryptprimitives.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Cryptographic Primitives Library 131795770645375702 0x7ffacd270000 2215936 C:\Windows\System32\KERNELBASE.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645375702 0x7ffacd490000 1871872 C:\Windows\System32\CRYPT32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API32 криптографии 131795770645375702 0x7ffacd710000 638976 C:\Windows\System32\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645375702 0x7ffaced20000 782336 C:\Windows\System32\OLEAUT32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795770645375702 0x7ffacee50000 1183744 C:\Windows\System32\RPCRT4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795770645375702 0x7ffacef80000 32768 C:\Windows\System32\NSI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation NSI User-mode interface DLL 131795770645375702 0x7ffacef90000 647168 C:\Windows\System32\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795770645375702 0x7ffacf0d0000 704512 C:\Windows\System32\KERNEL32.DLL 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645375702 0x7ffacf180000 376832 C:\Windows\System32\WLDAP32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Win32 LDAP API DLL 131795770645375702 0x7ffacf820000 434176 C:\Windows\System32\WS2_32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation 32-разрядная библиотека Windows Socket 2.0 131795770645375702 0x7ffacfb30000 2916352 C:\Windows\System32\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795770645375702 0x7ffacfe20000 663552 C:\Windows\System32\advapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795770645375702 0x7ffad0210000 364544 C:\Windows\System32\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795770645375702 0x7ffad0270000 1908736 C:\Windows\SYSTEM32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 20 704 580 4 00000000:000003e4 131765776284978539 0 0 1 Обязательная метка\Обязательный уровень системы NT AUTHORITY\NETWORK SERVICE svchost.exe C:\Windows\system32\svchost.exe C:\Windows\system32\svchost.exe -k RPCSS Microsoft Corporation 10.0.14393.0 (rs1_release.160715-1616) Хост-процесс для служб Windows 131795770645375918 0x7ff718c20000 57344 C:\Windows\system32\svchost.exe 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Хост-процесс для служб Windows 131795770645375918 0x7ffabae40000 110592 C:\Windows\SYSTEM32\capauthz.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API авторизации возможностей 131795770645375918 0x7ffac4450000 86016 C:\Windows\SYSTEM32\usermgrcli.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation UserMgr API DLL 131795770645375918 0x7ffac6610000 40960 C:\Windows\System32\rasadhlp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Remote Access AutoDial Helper 131795770645375918 0x7ffac8250000 28672 C:\Windows\system32\wshhyperv.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Hyper-V Winsock2 Helper DLL 131795770645375918 0x7ffac8420000 434176 C:\Windows\system32\fwpuclnt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API пользовательского режима FWP/IPsec 131795770645375918 0x7ffaca4e0000 77824 C:\Windows\SYSTEM32\wtsapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Remote Desktop Session Host Server SDK APIs 131795770645375918 0x7ffacb360000 176128 C:\Windows\system32\fwbase.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Firewall Base DLL 131795770645375918 0x7ffacb460000 548864 C:\Windows\system32\FirewallAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API брандмауэра Windows 131795770645375918 0x7ffacb5c0000 913408 c:\windows\system32\rpcss.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Distributed COM Services 131795770645375918 0x7ffacb6a0000 73728 C:\Windows\system32\RpcRtRemote.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Remote RPC Extension 131795770645375918 0x7ffacb6c0000 98304 c:\windows\system32\rpcepmap.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Сопоставитель конечных точек RPC 131795770645375918 0x7ffacb920000 81920 C:\Windows\SYSTEM32\WLDP.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Политика блокировки Windows 131795770645375918 0x7ffacbd30000 229376 C:\Windows\SYSTEM32\IPHLPAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API вспомогательного приложения IP 131795770645375918 0x7ffacbd70000 659456 C:\Windows\SYSTEM32\DNSAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Динамическая библиотека API DNS-клиента 131795770645375918 0x7ffacbf30000 49152 C:\Windows\system32\NtlmShared.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation NTLM Shared Functionality 131795770645375918 0x7ffacbf40000 421888 C:\Windows\system32\msv1_0.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Authentication Package v1.0 131795770645375918 0x7ffacbfb0000 376832 C:\Windows\system32\mswsock.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширение поставщика службы API Microsoft Windows Sockets 2.0 131795770645375918 0x7ffacc010000 86016 C:\Windows\system32\cryptdll.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Cryptography Manager 131795770645375918 0x7ffacc350000 180224 C:\Windows\system32\sspicli.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Security Support Provider Interface 131795770645375918 0x7ffacc5c0000 352256 C:\Windows\SYSTEM32\WINSTA.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Winstation Library 131795770645375918 0x7ffacc620000 176128 C:\Windows\system32\bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795770645375918 0x7ffacc6e0000 61440 C:\Windows\System32\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795770645375918 0x7ffacc6f0000 311296 C:\Windows\System32\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795770645375918 0x7ffacc760000 65536 C:\Windows\System32\MSASN1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ASN.1 Runtime APIs 131795770645375918 0x7ffacc8f0000 1003520 C:\Windows\System32\ucrtbase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645375918 0x7ffacc9f0000 434176 C:\Windows\System32\bcryptPrimitives.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Cryptographic Primitives Library 131795770645375918 0x7ffacca60000 122880 C:\Windows\System32\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795770645375918 0x7ffacca80000 348160 C:\Windows\System32\WINTRUST.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation Microsoft Trust Verification APIs 131795770645375918 0x7ffacd270000 2215936 C:\Windows\System32\KERNELBASE.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645375918 0x7ffacd490000 1871872 C:\Windows\System32\CRYPT32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API32 криптографии 131795770645375918 0x7ffacee50000 1183744 C:\Windows\System32\RPCRT4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795770645375918 0x7ffacef80000 32768 C:\Windows\System32\NSI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation NSI User-mode interface DLL 131795770645375918 0x7ffacef90000 647168 C:\Windows\System32\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795770645375918 0x7ffacf030000 651264 C:\Windows\System32\clbcatq.dll 2001.12.10941.16384 (rs1_release.160715-1616) Microsoft Corporation COM+ Configuration Catalog 131795770645375918 0x7ffacf0d0000 704512 C:\Windows\System32\KERNEL32.DLL 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645375918 0x7ffacf770000 212992 C:\Windows\System32\GDI32.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation GDI Client DLL 131795770645375918 0x7ffacf820000 434176 C:\Windows\System32\WS2_32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation 32-разрядная библиотека Windows Socket 2.0 131795770645375918 0x7ffacf8c0000 1462272 C:\Windows\System32\USER32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795770645375918 0x7ffacfb30000 2916352 C:\Windows\System32\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795770645375918 0x7ffacfe20000 663552 C:\Windows\System32\advapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795770645375918 0x7ffad0070000 1277952 C:\Windows\System32\ole32.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft OLE для Windows 131795770645375918 0x7ffad0210000 364544 C:\Windows\System32\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795770645375918 0x7ffad0270000 1908736 C:\Windows\SYSTEM32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 21 808 520 18 00000000:0000c8d4 131765776288401882 0 0 1 Обязательная метка\Обязательный уровень системы Window Manager\DWM-1 dwm.exe C:\Windows\system32\dwm.exe "dwm.exe" Microsoft Corporation 10.0.14393.0 (rs1_release.160715-1616) Диспетчер окон рабочего стола 131795770645376024 0x7ff683990000 77824 C:\Windows\system32\dwm.exe 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Диспетчер окон рабочего стола 131795770645376024 0x7ffac3810000 167936 C:\Windows\system32\Cabinet.dll 5.00 (rs1_release.160715-1616) Microsoft Corporation Microsoft® Cabinet File API 131795770645376024 0x7ffac60e0000 221184 C:\Windows\system32\XmlLite.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft XmlLite Library 131795770645376024 0x7ffac6f50000 5632000 C:\Windows\system32\d2d1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека Microsoft D2D 131795770645376024 0x7ffac7720000 1601536 C:\Windows\System32\OneCoreUAPCommonProxyStub.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation OneCoreUAP Common Proxy Stub 131795770645376024 0x7ffac7b70000 569344 C:\Windows\System32\Windows.Gaming.Input.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Gaming Input API 131795770645376024 0x7ffac7fc0000 2674688 C:\Windows\system32\d3d10warp.dll 10.0.14393.576 (rs1_release_inmarket.161208-2252) Microsoft Corporation Direct3D 10 Rasterizer 131795770645376024 0x7ffac88a0000 2842624 C:\Windows\system32\d3d11.dll 10.0.14393.953 (rs1_release_inmarket.170303-1614) Microsoft Corporation Direct3D 11 Runtime 131795770645376024 0x7ffac8f90000 45056 C:\Windows\system32\avrt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Среда выполнения мультимедиа в реальном времени 131795770645376024 0x7ffac92e0000 1269760 C:\Windows\SYSTEM32\wintypes.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL основных типов Windows 131795770645376024 0x7ffac9500000 2682880 C:\Windows\system32\CoreUIComponents.dll 131795770645376024 0x7ffac9a30000 249856 C:\Windows\SYSTEM32\ism32k.dll 131795770645376024 0x7ffac9ec0000 294912 C:\Windows\System32\UIAnimation.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Animation Manager 131795770645376024 0x7ffac9f50000 1736704 C:\Windows\system32\WindowsCodecs.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Microsoft Windows Codecs Library 131795770645376024 0x7ffaca110000 94208 C:\Windows\SYSTEM32\dwmghost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DWMGhost 131795770645376024 0x7ffaca5e0000 155648 C:\Windows\system32\dwmapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Интерфейс API диспетчера окон рабочего стола (Майкрософт) 131795770645376024 0x7ffaca640000 770048 C:\Windows\system32\CoreMessaging.dll 10.0.14393.0 Microsoft Corporation Microsoft CoreMessaging Dll 131795770645376024 0x7ffaca770000 1380352 C:\Windows\system32\dcomp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft DirectComposition Library 131795770645376024 0x7ffaca8d0000 2318336 C:\Windows\system32\dwmcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека ядра Microsoft DWM 131795770645376024 0x7ffacac90000 856064 C:\Windows\SYSTEM32\udwm.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Диспетчер окон рабочего стола Майкрософт 131795770645376024 0x7ffacadc0000 167936 C:\Windows\SYSTEM32\dwmredir.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Компонент перенаправления диспетчера окон рабочего стола Microsoft 131795770645376024 0x7ffacadf0000 499712 C:\Windows\system32\apphelp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиентская библиотека совместимости приложений 131795770645376024 0x7ffacaf00000 610304 C:\Windows\system32\uxtheme.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека тем UxTheme (Microsoft) 131795770645376024 0x7ffacb1e0000 1163264 C:\Windows\System32\twinapi.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation twinapi.appcore 131795770645376024 0x7ffacb780000 651264 C:\Windows\system32\dxgi.dll 10.0.14393.953 (rs1_release_inmarket.170303-1614) Microsoft Corporation DirectX Graphics Infrastructure 131795770645376024 0x7ffacc620000 176128 C:\Windows\System32\bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795770645376024 0x7ffacc6e0000 61440 C:\Windows\System32\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795770645376024 0x7ffacc760000 65536 C:\Windows\System32\MSASN1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ASN.1 Runtime APIs 131795770645376024 0x7ffacc8f0000 1003520 C:\Windows\System32\ucrtbase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645376024 0x7ffacc9f0000 434176 C:\Windows\System32\bcryptPrimitives.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Cryptographic Primitives Library 131795770645376024 0x7ffacca60000 122880 C:\Windows\System32\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795770645376024 0x7ffaccae0000 692224 C:\Windows\System32\shcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795770645376024 0x7ffacd270000 2215936 C:\Windows\System32\KERNELBASE.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645376024 0x7ffacd490000 1871872 C:\Windows\System32\CRYPT32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API32 криптографии 131795770645376024 0x7ffacd710000 638976 C:\Windows\System32\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645376024 0x7ffacd7b0000 270336 C:\Windows\System32\cfgmgr32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Configuration Manager DLL 131795770645376024 0x7ffaced20000 782336 C:\Windows\System32\OLEAUT32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795770645376024 0x7ffacee50000 1183744 C:\Windows\System32\RPCRT4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795770645376024 0x7ffacef90000 647168 C:\Windows\System32\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795770645376024 0x7ffacf030000 651264 C:\Windows\System32\clbcatq.dll 2001.12.10941.16384 (rs1_release.160715-1616) Microsoft Corporation COM+ Configuration Catalog 131795770645376024 0x7ffacf0d0000 704512 C:\Windows\System32\KERNEL32.DLL 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645376024 0x7ffacf770000 212992 C:\Windows\System32\gdi32.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation GDI Client DLL 131795770645376024 0x7ffacf890000 188416 C:\Windows\System32\IMM32.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Multi-User Windows IMM32 API Client DLL 131795770645376024 0x7ffacf8c0000 1462272 C:\Windows\System32\USER32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795770645376024 0x7ffacfb30000 2916352 C:\Windows\System32\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795770645376024 0x7ffacfe20000 663552 C:\Windows\System32\advapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795770645376024 0x7ffad0210000 364544 C:\Windows\System32\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795770645376024 0x7ffad0270000 1908736 C:\Windows\SYSTEM32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 22 904 580 4 00000000:000003e7 131765776293087855 0 0 1 Обязательная метка\Обязательный уровень системы NT AUTHORITY\СИСТЕМА svchost.exe C:\Windows\System32\svchost.exe C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted Microsoft Corporation 10.0.14393.0 (rs1_release.160715-1616) Хост-процесс для служб Windows 131795770645376243 0x259b0640000 12288 C:\Windows\system32\SFC.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows File Protection 131795770645376243 0x7ff718c20000 57344 C:\Windows\System32\svchost.exe 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Хост-процесс для служб Windows 131795770645376243 0x7ffaab830000 278528 c:\windows\system32\netman.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Диспетчер сетевых подключений 131795770645376243 0x7ffaab880000 532480 c:\windows\system32\MPRAPI.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation Windows NT MP Router Administration DLL 131795770645376243 0x7ffaab910000 905216 c:\windows\system32\RASDLG.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API общих диалогов службы удаленного доступа 131795770645376243 0x7ffab1260000 10350592 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\clr.dll 4.7.2117.0 built by: NET47REL1LAST Microsoft Corporation Microsoft .NET Runtime Common Language Runtime - WorkStation 131795770645376243 0x7ffab2460000 2822144 C:\Windows\System32\netshell.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Оболочка сетевых подключений 131795770645376243 0x7ffab7d80000 753664 c:\windows\system32\RASAPI32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API удаленного доступа 131795770645376243 0x7ffabae60000 77824 C:\Windows\System32\DEVRTL.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Device Management Run Time Library 131795770645376243 0x7ffabb430000 65536 C:\Windows\System32\pcacli.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Program Compatibility Assistant Client Module 131795778252487651 0x7ffabc160000 688128 C:\Windows\System32\aeinv.dll 10.0.17060.1029 (WinBuild.160101.0800) Microsoft Corporation Application Inventory Component 131795770645376243 0x7ffabc510000 90112 C:\Windows\system32\execmodelproxy.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ExecModelProxy 131795770645376243 0x7ffabcf30000 110592 C:\Windows\System32\MPR.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека маршрутизации для нескольких служб доступа 131795770645376243 0x7ffabcf50000 921600 C:\Windows\System32\drvstore.dll 10.0.14393.351 (rs1_release_inmarket.161014-1755) Microsoft Corporation Driver Store API 131795770645376243 0x7ffabdd60000 425984 C:\Windows\System32\AppXDeploymentClient.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL-библиотека клиента развертывания AppX 131795770645376243 0x7ffabef80000 69632 C:\Windows\System32\sfc_os.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows File Protection 131795778007496118 0x7ffabefd0000 258048 C:\Windows\System32\aepic.dll 10.0.17060.1029 (WinBuild.160101.0800) Microsoft Corporation Application Experience Program Cache 131795770645376243 0x7ffabfa00000 1011712 C:\Windows\SYSTEM32\MSVCR120_CLR0400.dll 12.00.52519.0 built by: VSWINSERVICING Microsoft Corporation Microsoft® C Runtime Library 131795770645376243 0x7ffac0610000 3088384 C:\Windows\System32\MSI.DLL 5.0.14393.2155 Microsoft Corporation Windows Installer 131795770645376243 0x7ffac0bf0000 3559424 C:\Windows\System32\ActXPrxy.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation ActiveX Interface Marshaling Library 131795770645376243 0x7ffac0fc0000 294912 C:\Windows\system32\spp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека общих точек защиты Microsoft® Windows 131795770645376243 0x7ffac1010000 417792 C:\Windows\system32\MSCOREE.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft .NET Runtime Execution Engine 131795770645376243 0x7ffac10f0000 421888 c:\windows\system32\storsvc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Службы хранения 131795770645376243 0x7ffac1240000 638976 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscoreei.dll 4.7.2623.0 built by: NET471REL1LAST_C Microsoft Corporation Microsoft .NET Runtime Execution Engine 131795770645376243 0x7ffac1e80000 507904 C:\Windows\System32\NetSetupShim.dll 10.0.14393.1532 (rs1_release_d.170711-1840) Microsoft Corporation Network Configuration API 131795770645376243 0x7ffac1fd0000 999424 C:\Windows\system32\wbem\fastprox.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation WMI Custom Marshaller 131795770645376243 0x7ffac20d0000 110592 c:\windows\system32\RMCLIENT.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Resource Manager Client 131795770645376243 0x7ffac21d0000 81920 C:\Windows\system32\wbem\wbemsvc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation WMI 131795770645376243 0x7ffac2360000 57344 c:\windows\system32\TimeBrokerClient.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Time Broker Client Library 131795770645376243 0x7ffac23c0000 331776 C:\Windows\System32\OneCoreCommonProxyStub.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation OneCore Common Proxy Stub 131795770645376243 0x7ffac2420000 466944 c:\windows\system32\das.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служба сопоставления устройств 131795770645376243 0x7ffac2530000 270336 C:\Windows\system32\hnetcfgclient.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиент API конфигурации домашней сети 131795770645376243 0x7ffac2750000 106496 c:\windows\system32\bcd.dll 10.0.14393.1794 (rs1_release.171008-1615) Microsoft Corporation BCD DLL 131795770645376243 0x7ffac29f0000 159744 C:\Windows\System32\NetSetupApi.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Network Configuration API 131795770645376243 0x7ffac2a20000 81920 c:\windows\system32\rtutils.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Routing Utilities 131795770645376243 0x7ffac2b80000 40960 C:\Windows\System32\VERSION.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Version Checking and File Installation Libraries 131795770645376243 0x7ffac3270000 40960 c:\windows\system32\FLTLIB.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека фильтров 131795770645376243 0x7ffac34c0000 81920 C:\Windows\system32\vss_ps.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation Microsoft® Volume Shadow Copy Service proxy/stub 131795770645376243 0x7ffac3840000 3088384 c:\windows\system32\ESENT.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширяемая подсистема хранения данных ESE для Microsoft(R) Windows(R) 131795778007645121 0x7ffac3cb0000 2772992 C:\Windows\System32\iertutil.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служебная программа времени выполнения для Internet Explorer 131795770645376243 0x7ffac4050000 118784 c:\windows\system32\wdi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Инфраструктура диагностики Windows 131795770645376243 0x7ffac41c0000 139264 c:\windows\system32\trkwks.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиент отслеживания изменившихся связей 131795770645376243 0x7ffac4220000 520192 C:\Windows\SYSTEM32\wbemcomn.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation WMI 131795770645376243 0x7ffac4450000 86016 C:\Windows\SYSTEM32\usermgrcli.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation UserMgr API DLL 131795770645376243 0x7ffac4470000 65536 C:\Windows\system32\wbem\wbemprox.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation WMI 131795770645376243 0x7ffac4650000 516096 c:\windows\system32\pcasvc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служба помощника по совместимости программ 131795770645376243 0x7ffac4f40000 122880 C:\Windows\system32\radardt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Программа обнаружения нехватки системных ресурсов Windows 131795770645376243 0x7ffac4fd0000 618496 C:\Windows\System32\wlidprov.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft® Account Provider 131795770645376243 0x7ffac5b30000 114688 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\fusion.dll 4.6.1586.0 built by: NETFXREL2 Microsoft Corporation Assembly manager 131795770645376243 0x7ffac5b50000 180224 c:\windows\system32\dssvc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL службы NT для службы совместного доступа к данным 131795770645376243 0x7ffac5c50000 131072 c:\windows\system32\rasman.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Remote Access Connection Manager 131795770645376243 0x7ffac60e0000 221184 C:\Windows\System32\XmlLite.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft XmlLite Library 131795770645376243 0x7ffac6120000 966656 c:\windows\system32\sysmain.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Хост службы Superfetch 131795770645376243 0x7ffac6410000 98304 C:\Windows\system32\VssTrace.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека трассировки службы теневого копирования тома Microsoft® 131795770645376243 0x7ffac6430000 1581056 C:\Windows\system32\VSSAPI.DLL 10.0.14393.953 (rs1_release_inmarket.170303-1614) Microsoft Corporation Microsoft® Volume Shadow Copy Requestor/Writer Services API DLL 131795770645376243 0x7ffac6c40000 2596864 C:\Windows\WinSxS\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.14393.953_none_42151e83c686086b\Comctl32.dll 6.10 (rs1_release_inmarket.170303-1614) Microsoft Corporation Библиотека элементов управления взаимодействия с пользователем 131795770645376243 0x7ffac79c0000 57344 C:\Windows\System32\npmproxy.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Network List Manager Proxy 131795770645376243 0x7ffac7b10000 217088 C:\Windows\SYSTEM32\WUDFPlatform.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Driver Foundation - библиотека платформ пользовательского режима 131795770645376243 0x7ffac7b50000 114688 c:\windows\system32\wudfsvc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Driver Foundation (WDF) - служба среды выполнения платформы драйвера режима пользователя 131795770645376243 0x7ffac8810000 45056 c:\windows\system32\WINNSI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Network Store Information RPC interface 131795770645376243 0x7ffac8880000 69632 c:\windows\system32\WMICLNT.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation WMI Client API 131795770645376243 0x7ffac8cf0000 815104 C:\Windows\System32\taskschd.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Task Scheduler COM API 131795770645376243 0x7ffac9290000 40960 c:\windows\system32\DSROLE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DS Setup Client DLL 131795770645376243 0x7ffac9480000 462848 c:\windows\system32\MMDevAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation MMDevice API 131795770645376243 0x7ffac9790000 98304 C:\Windows\System32\nlaapi.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Network Location Awareness 2 131795770645376243 0x7ffac9800000 376832 c:\windows\system32\audioendpointbuilder.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Средство построения конечных точек Windows Audio 131795770645376243 0x7ffac9de0000 94208 C:\Windows\System32\portabledeviceconnectapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Portable Device Connection API Components 131795770645376243 0x7ffac9e00000 647168 C:\Windows\SYSTEM32\PortableDeviceApi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Компоненты API для переносных устройств Windows 131795770645376243 0x7ffac9f10000 221184 C:\Windows\System32\netprofm.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Network List Manager 131795770645376243 0x7ffaca100000 36864 C:\Windows\SYSTEM32\httpprxc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Proxy Manager Provider RPC interface 131795770645376243 0x7ffaca130000 204800 C:\Windows\SYSTEM32\windows.devices.radios.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows.Devices.Radios DLL 131795770645376243 0x7ffaca1f0000 65536 C:\Windows\SYSTEM32\storageusage.dll 10.0.14393.82 (rs1_release.160805-1735) Microsoft Corporation Storage Usage 131795770645376243 0x7ffaca250000 49152 C:\Windows\SYSTEM32\bi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Background Broker Infrastructure Client Library 131795770645376243 0x7ffaca260000 45056 c:\windows\system32\SystemEventsBrokerClient.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation system Events Broker Client Library 131795770645376243 0x7ffaca2d0000 360448 c:\windows\system32\ncbservice.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Посредник подключений к сети 131795770645376243 0x7ffaca340000 1593344 c:\windows\system32\PROPSYS.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Система страниц свойств (Майкрософт) 131795770645376243 0x7ffaca4e0000 77824 c:\windows\system32\WTSAPI32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Remote Desktop Session Host Server SDK APIs 131795770645376243 0x7ffaca710000 65536 C:\Windows\system32\pcadm.dll 10.0.14393.2189 (rs1_release.180329-1711) Microsoft Corporation Program Compatibility Assistant Diagnostic Module 131795770645376243 0x7ffacad70000 278528 c:\windows\system32\BrokerLib.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Broker Base Library 131795770645376243 0x7ffacadf0000 499712 c:\windows\system32\apphelp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиентская библиотека совместимости приложений 131795770645376243 0x7ffacb1e0000 1163264 C:\Windows\SYSTEM32\twinapi.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation twinapi.appcore 131795770645376243 0x7ffacb3f0000 163840 C:\Windows\System32\DEVOBJ.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Device Information Set DLL 131795770645376243 0x7ffacb420000 204800 C:\Windows\SYSTEM32\ntmarta.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик Windows NT MARTA 131795770645376243 0x7ffacb920000 81920 C:\Windows\SYSTEM32\WLDP.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Политика блокировки Windows 131795770645376243 0x7ffacbbb0000 208896 C:\Windows\system32\rsaenh.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Enhanced Cryptographic Provider 131795770645376243 0x7ffacbbf0000 40960 c:\windows\system32\DPAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Data Protection API 131795770645376243 0x7ffacbd30000 229376 c:\windows\system32\IPHLPAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API вспомогательного приложения IP 131795770645376243 0x7ffacbe40000 126976 c:\windows\system32\USERENV.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Userenv 131795770645376243 0x7ffacbfb0000 376832 C:\Windows\system32\mswsock.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширение поставщика службы API Microsoft Windows Sockets 2.0 131795770645376243 0x7ffacc150000 94208 C:\Windows\System32\CRYPTSP.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Cryptographic Service Provider API 131795770645376243 0x7ffacc170000 45056 C:\Windows\System32\CRYPTBASE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base cryptographic API DLL 131795770645376243 0x7ffacc350000 180224 c:\windows\system32\SspiCli.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Security Support Provider Interface 131795770645376243 0x7ffacc500000 102400 c:\windows\system32\EventAggregation.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Event Aggregation User Mode Library 131795770645376243 0x7ffacc520000 622592 C:\Windows\system32\SXS.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Fusion 2.5 131795770645376243 0x7ffacc5c0000 352256 c:\windows\system32\WINSTA.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Winstation Library 131795770645376243 0x7ffacc620000 176128 c:\windows\system32\bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795770645376243 0x7ffacc6e0000 61440 C:\Windows\System32\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795770645376243 0x7ffacc6f0000 311296 C:\Windows\System32\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795770645376243 0x7ffacc740000 81920 C:\Windows\System32\profapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Profile Basic API 131795770645376243 0x7ffacc760000 65536 C:\Windows\System32\MSASN1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ASN.1 Runtime APIs 131795770645376243 0x7ffacc8f0000 1003520 C:\Windows\System32\ucrtbase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645376243 0x7ffacc9f0000 434176 C:\Windows\System32\bcryptPrimitives.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Cryptographic Primitives Library 131795770645376243 0x7ffacca60000 122880 C:\Windows\System32\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795770645376243 0x7ffacca80000 348160 C:\Windows\System32\WINTRUST.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation Microsoft Trust Verification APIs 131795770645376243 0x7ffaccae0000 692224 C:\Windows\System32\shcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795770645376243 0x7ffaccb90000 7180288 C:\Windows\System32\windows.storage.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API хранения Microsoft WinRT 131795770645376243 0x7ffacd270000 2215936 C:\Windows\System32\KERNELBASE.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645376243 0x7ffacd490000 1871872 C:\Windows\System32\CRYPT32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API32 криптографии 131795770645376243 0x7ffacd710000 638976 C:\Windows\System32\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645376243 0x7ffacd7b0000 270336 C:\Windows\System32\cfgmgr32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Configuration Manager DLL 131795770645376243 0x7ffacd810000 22056960 C:\Windows\System32\SHELL32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Общая библиотека оболочки Windows 131795770645376243 0x7ffaced20000 782336 C:\Windows\System32\OLEAUT32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795770645376243 0x7ffacede0000 450560 C:\Windows\System32\coml2.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft COM for Windows 131795770645376243 0x7ffacee50000 1183744 C:\Windows\System32\RPCRT4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795770645376243 0x7ffacef80000 32768 C:\Windows\System32\NSI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation NSI User-mode interface DLL 131795770645376243 0x7ffacef90000 647168 C:\Windows\System32\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795770645376243 0x7ffacf030000 651264 C:\Windows\System32\clbcatq.dll 2001.12.10941.16384 (rs1_release.160715-1616) Microsoft Corporation COM+ Configuration Catalog 131795770645376243 0x7ffacf0d0000 704512 C:\Windows\System32\KERNEL32.DLL 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645376243 0x7ffacf340000 4362240 C:\Windows\System32\SETUPAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Setup API 131795770645376243 0x7ffacf770000 212992 C:\Windows\System32\GDI32.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation GDI Client DLL 131795770645376243 0x7ffacf820000 434176 C:\Windows\System32\WS2_32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation 32-разрядная библиотека Windows Socket 2.0 131795770645376243 0x7ffacf8c0000 1462272 C:\Windows\System32\user32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795770645376243 0x7ffacfb30000 2916352 C:\Windows\System32\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795770645376243 0x7ffacfe20000 663552 C:\Windows\System32\ADVAPI32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795770645376243 0x7ffad0070000 1277952 C:\Windows\System32\ole32.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft OLE для Windows 131795770645376243 0x7ffad01b0000 335872 C:\Windows\System32\SHLWAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека небольших программ оболочки 131795770645376243 0x7ffad0210000 364544 C:\Windows\System32\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795770645376243 0x7ffad0270000 1908736 C:\Windows\SYSTEM32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 23 96 580 4 00000000:000003e5 131765776304995849 0 0 1 Обязательная метка\Обязательный уровень системы NT AUTHORITY\LOCAL SERVICE svchost.exe C:\Windows\system32\svchost.exe C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork Microsoft Corporation 10.0.14393.0 (rs1_release.160715-1616) Хост-процесс для служб Windows 131795770645376384 0x7ff718c20000 57344 C:\Windows\system32\svchost.exe 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Хост-процесс для служб Windows 131795770645376384 0x7ffac0bf0000 3559424 C:\Windows\System32\ActXPrxy.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation ActiveX Interface Marshaling Library 131795770645376384 0x7ffac1fd0000 999424 C:\Windows\system32\wbem\fastprox.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation WMI Custom Marshaller 131795770645376384 0x7ffac21b0000 77824 C:\Windows\System32\srumapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation System Resource Usage Monitor API 131795770645376384 0x7ffac21d0000 81920 C:\Windows\system32\wbem\wbemsvc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation WMI 131795770645376384 0x7ffac2510000 102400 C:\Windows\System32\energyprov.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Energy System Resource Usage Monitor (SRUM) provider 131795770645376384 0x7ffac2580000 49152 C:\Windows\System32\ncuprov.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Network Connectivity Statistics Provider for System Resource Usage Monitor Service 131795770645376384 0x7ffac2b90000 90112 C:\Windows\System32\nduprov.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик сетевой статистики для службы отслеживания использования ресурсов системы 131795770645376384 0x7ffac2bb0000 106496 C:\Windows\SYSTEM32\appsruprov.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Application System Resource Usage Monitor (SRUM) provider 131795770645376384 0x7ffac2bd0000 131072 C:\Windows\System32\eeprov.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Energy Estimator SRUM provider 131795770645376384 0x7ffac2c20000 45056 C:\Windows\system32\wfapigp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Firewall GPO Helper dll 131795770645376384 0x7ffac2d70000 57344 C:\Windows\System32\wpnsruprov.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SRUM provider for WPN 131795770645376384 0x7ffac3310000 225280 C:\Windows\System32\srumsvc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation System Resource Usage Monitor Service 131795770645376384 0x7ffac3730000 36864 C:\Windows\system32\pnpts.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation PlugPlay Troubleshooter 131795770645376384 0x7ffac3840000 3088384 C:\Windows\system32\ESENT.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширяемая подсистема хранения данных ESE для Microsoft(R) Windows(R) 131795770645376384 0x7ffac3bd0000 106496 c:\windows\system32\ncdautosetup.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL службы автоматической настройки сетевых устройств 131795770645376384 0x7ffac3cb0000 2772992 C:\Windows\SYSTEM32\iertutil.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служебная программа времени выполнения для Internet Explorer 131795770645376384 0x7ffac3f60000 225280 c:\windows\system32\FWPolicyIOMgr.dll 10.0.14393.2189 (rs1_release.180329-1711) Microsoft Corporation FwPolicyIoMgr DLL 131795770645376384 0x7ffac4000000 274432 C:\Windows\SYSTEM32\policymanager.dll 10.0.14393.2035 (rs1_release_inmarket.180110-1910) Microsoft Corporation Policy Manager DLL 131795770645376384 0x7ffac4050000 118784 c:\windows\system32\wdi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Инфраструктура диагностики Windows 131795770645376384 0x7ffac41f0000 40960 C:\Windows\system32\adhapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AD harvest sites and subnets API 131795770645376384 0x7ffac4220000 520192 C:\Windows\SYSTEM32\wbemcomn.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation WMI 131795770645376384 0x7ffac4470000 65536 C:\Windows\system32\wbem\wbemprox.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation WMI 131795770645376384 0x7ffac4500000 200704 c:\windows\system32\dps.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служба политики диагностики WDI 131795770645376384 0x7ffac4cd0000 933888 c:\windows\system32\mpssvc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служба защиты (Microsoft) 131795770645376384 0x7ffac4f40000 122880 C:\Windows\system32\radardt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Программа обнаружения нехватки системных ресурсов Windows 131795770645376384 0x7ffac66c0000 32768 C:\Windows\system32\wship6.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL помощника Winsock2 (TL/IPv6) 131795770645376384 0x7ffac66d0000 32768 C:\Windows\system32\wshtcpip.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL помощника службы Winsock2 (TL/IPv4) 131795770645376384 0x7ffac6700000 40960 C:\Windows\system32\wshqos.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL помощника службы QoS Winsock2 131795770645376384 0x7ffac6740000 53248 C:\Windows\system32\dtsh.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека API состояния общего доступа и обнаружения 131795770645376384 0x7ffac6990000 69632 c:\windows\system32\deviceassociation.dll 10.0.14393.82 (rs1_release.160805-1735) Microsoft Corporation Device Association Client DLL 131795770645376384 0x7ffac74b0000 827392 c:\windows\system32\bfe.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служба базовой фильтрации 131795770645376384 0x7ffac7580000 1077248 C:\Windows\SYSTEM32\mrmcorer.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Windows MRM 131795770645376384 0x7ffac79c0000 57344 C:\Windows\System32\npmproxy.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Network List Manager Proxy 131795770645376384 0x7ffac83d0000 106496 C:\Windows\SYSTEM32\dhcpcsvc.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служба DHCP-клиента 131795770645376384 0x7ffac83f0000 90112 C:\Windows\SYSTEM32\dhcpcsvc6.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиент DHCPv6 131795770645376384 0x7ffac8420000 434176 c:\windows\system32\fwpuclnt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API пользовательского режима FWP/IPsec 131795770645376384 0x7ffac8810000 45056 C:\Windows\SYSTEM32\WINNSI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Network Store Information RPC interface 131795770645376384 0x7ffac8cf0000 815104 C:\Windows\System32\taskschd.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Task Scheduler COM API 131795770645376384 0x7ffac90b0000 90112 c:\windows\system32\wkscli.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Workstation Service Client DLL 131795770645376384 0x7ffac9220000 397312 C:\Windows\SYSTEM32\wevtapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API настройки и использования событий 131795770645376384 0x7ffac9f10000 221184 C:\Windows\System32\netprofm.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Network List Manager 131795770645376384 0x7ffaca100000 36864 C:\Windows\SYSTEM32\httpprxc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Proxy Manager Provider RPC interface 131795770645376384 0x7ffaca170000 45056 c:\windows\system32\ktmw32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows KTM Win32 Client DLL 131795770645376384 0x7ffaca340000 1593344 C:\Windows\System32\PROPSYS.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Система страниц свойств (Майкрософт) 131795770645376384 0x7ffaca4e0000 77824 C:\Windows\system32\WTSAPI32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Remote Desktop Session Host Server SDK APIs 131795770645376384 0x7ffaca640000 770048 c:\windows\system32\coremessaging.dll 10.0.14393.0 Microsoft Corporation Microsoft CoreMessaging Dll 131795770645376384 0x7ffacb070000 69632 C:\Windows\SYSTEM32\embeddedmodesvcapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Embedded Mode Service Client DLL 131795770645376384 0x7ffacb140000 593920 c:\windows\system32\msvcp110_win.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Microsoft® STL110 C++ Runtime Library 131795770645376384 0x7ffacb360000 176128 C:\Windows\system32\fwbase.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Firewall Base DLL 131795770645376384 0x7ffacb3f0000 163840 C:\Windows\system32\DEVOBJ.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Device Information Set DLL 131795770645376384 0x7ffacb420000 204800 C:\Windows\system32\ntmarta.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик Windows NT MARTA 131795770645376384 0x7ffacb460000 548864 C:\Windows\system32\FirewallAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API брандмауэра Windows 131795770645376384 0x7ffacb6f0000 143360 C:\Windows\SYSTEM32\gpapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиентские функции API групповой политики 131795770645376384 0x7ffacb920000 81920 C:\Windows\SYSTEM32\WLDP.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Политика блокировки Windows 131795770645376384 0x7ffacb960000 303104 c:\windows\system32\AUTHZ.dll 10.0.14393.1737 (rs1_release_inmarket.170914-1249) Microsoft Corporation Authorization Framework 131795770645376384 0x7ffacbd30000 229376 c:\windows\system32\IPHLPAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API вспомогательного приложения IP 131795770645376384 0x7ffacbd70000 659456 c:\windows\system32\DNSAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Динамическая библиотека API DNS-клиента 131795770645376384 0x7ffacbe20000 53248 c:\windows\system32\netutils.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API Helpers DLL 131795770645376384 0x7ffacbfb0000 376832 C:\Windows\system32\mswsock.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширение поставщика службы API Microsoft Windows Sockets 2.0 131795770645376384 0x7ffacc170000 45056 C:\Windows\system32\CRYPTBASE.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base cryptographic API DLL 131795770645376384 0x7ffacc350000 180224 c:\windows\system32\SspiCli.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Security Support Provider Interface 131795770645376384 0x7ffacc5c0000 352256 C:\Windows\system32\WINSTA.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Winstation Library 131795770645376384 0x7ffacc620000 176128 c:\windows\system32\bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795770645376384 0x7ffacc6e0000 61440 C:\Windows\System32\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795770645376384 0x7ffacc6f0000 311296 C:\Windows\System32\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795770645376384 0x7ffacc740000 81920 C:\Windows\System32\profapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Profile Basic API 131795770645376384 0x7ffacc760000 65536 C:\Windows\System32\MSASN1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ASN.1 Runtime APIs 131795770645376384 0x7ffacc8f0000 1003520 C:\Windows\System32\ucrtbase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645376384 0x7ffacc9f0000 434176 C:\Windows\System32\bcryptPrimitives.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Cryptographic Primitives Library 131795770645376384 0x7ffacca60000 122880 C:\Windows\System32\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795770645376384 0x7ffacca80000 348160 C:\Windows\System32\WINTRUST.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation Microsoft Trust Verification APIs 131795770645376384 0x7ffaccae0000 692224 C:\Windows\System32\shcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795770645376384 0x7ffaccb90000 7180288 C:\Windows\System32\windows.storage.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API хранения Microsoft WinRT 131795770645376384 0x7ffacd270000 2215936 C:\Windows\System32\KERNELBASE.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645376384 0x7ffacd490000 1871872 C:\Windows\System32\CRYPT32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API32 криптографии 131795770645376384 0x7ffacd710000 638976 C:\Windows\System32\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645376384 0x7ffacd7b0000 270336 C:\Windows\System32\CFGMGR32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Configuration Manager DLL 131795770645376384 0x7ffacd810000 22056960 C:\Windows\System32\SHELL32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Общая библиотека оболочки Windows 131795770645376384 0x7ffaced20000 782336 C:\Windows\System32\OLEAUT32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795770645376384 0x7ffacee50000 1183744 C:\Windows\System32\RPCRT4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795770645376384 0x7ffacef80000 32768 C:\Windows\System32\NSI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation NSI User-mode interface DLL 131795770645376384 0x7ffacef90000 647168 C:\Windows\System32\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795770645376384 0x7ffacf030000 651264 C:\Windows\System32\clbcatq.dll 2001.12.10941.16384 (rs1_release.160715-1616) Microsoft Corporation COM+ Configuration Catalog 131795770645376384 0x7ffacf0d0000 704512 C:\Windows\System32\KERNEL32.DLL 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645376384 0x7ffacf770000 212992 C:\Windows\System32\GDI32.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation GDI Client DLL 131795770645376384 0x7ffacf820000 434176 C:\Windows\System32\WS2_32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation 32-разрядная библиотека Windows Socket 2.0 131795770645376384 0x7ffacf8c0000 1462272 C:\Windows\System32\user32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795770645376384 0x7ffacfb30000 2916352 C:\Windows\System32\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795770645376384 0x7ffacfe20000 663552 C:\Windows\System32\advapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795770645376384 0x7ffad0070000 1277952 C:\Windows\System32\ole32.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft OLE для Windows 131795770645376384 0x7ffad01b0000 335872 C:\Windows\System32\shlwapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека небольших программ оболочки 131795770645376384 0x7ffad0210000 364544 C:\Windows\System32\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795770645376384 0x7ffad0270000 1908736 C:\Windows\SYSTEM32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 24 348 580 4 00000000:000003e7 131765776305446235 0 0 1 Обязательная метка\Обязательный уровень системы NT AUTHORITY\СИСТЕМА svchost.exe C:\Windows\system32\svchost.exe C:\Windows\system32\svchost.exe -k netsvcs Microsoft Corporation 10.0.14393.0 (rs1_release.160715-1616) Хост-процесс для служб Windows 131795770645376622 0x7ff718c20000 57344 C:\Windows\system32\svchost.exe 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Хост-процесс для служб Windows 131795770645376622 0x7ffaa0aa0000 2138112 c:\windows\system32\wlidsvc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служба учетных записей Майкрософт 131795770645376622 0x7ffab0750000 368640 C:\Windows\system32\rascustom.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Модуль настраиваемых протоколов 131795770645376622 0x7ffab07b0000 606208 C:\Windows\system32\vpnike.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation VPNIKE Protocol Engine - Test dll 131795770645376622 0x7ffab09b0000 323584 C:\Windows\system32\rasppp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Remote Access PPP 131795770645376622 0x7ffab0a00000 270336 C:\Windows\system32\rastapi.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Remote Access TAPI Compliance Layer 131795770645376622 0x7ffab1d80000 262144 C:\Windows\system32\eappcfg.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Eap Peer Config 131795770645376622 0x7ffab3440000 696320 c:\windows\system32\rasmans.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Диспетчер подключений удаленного доступа 131795770645376622 0x7ffab4b90000 655360 C:\Windows\System32\StructuredQuery.dll 7.0.14393.2068 (rs1_release.180209-1727) Microsoft Corporation Structured Query 131795770645376622 0x7ffab4c50000 90112 c:\windows\system32\eappprxy.dll 10.0.14393.187 (rs1_release_inmarket.160906-1818) Microsoft Corporation Microsoft EAPHost Peer Client DLL 131795770645376622 0x7ffab7d80000 753664 C:\Windows\system32\RASAPI32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API удаленного доступа 131795770645376622 0x7ffab9a90000 479232 C:\Windows\system32\dmEnrollEngine.DLL 10.0.14393.479 (rs1_release.161110-2025) Microsoft Corporation Enroll Engine DLL 131795770645376622 0x7ffabae60000 77824 C:\Windows\system32\DEVRTL.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Device Management Run Time Library 131795770645376622 0x7ffabafc0000 700416 C:\Windows\SYSTEM32\wer.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека сообщений об ошибках Windows 131795770645376622 0x7ffabc210000 2355200 c:\windows\system32\wuaueng.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Агент Центра обновления Windows 131795770645376622 0x7ffabcf30000 110592 c:\windows\system32\MPR.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека маршрутизации для нескольких служб доступа 131795770645376622 0x7ffabcf50000 921600 C:\Windows\system32\drvstore.dll 10.0.14393.351 (rs1_release_inmarket.161014-1755) Microsoft Corporation Driver Store API 131795770645376622 0x7ffabd180000 548864 C:\Windows\SYSTEM32\WINSPOOL.DRV 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Драйвер диспетчера очереди Windows 131795770645376622 0x7ffabdf60000 159744 C:\Windows\System32\raschap.dll 10.0.14393.1480 (rs1_release.170706-2004) Microsoft Corporation Удаленные доступ через PPP CHAP 131795770645376622 0x7ffabe4a0000 147456 c:\windows\system32\appinfo.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служба сведений о приложении 131795770645376622 0x7ffabe4d0000 286720 C:\Windows\System32\MSWB7.dll 10.0.14393.1737 (rs1_release_inmarket.170914-1249) Microsoft Corporation MSWB7 DLL 131795770645376622 0x7ffabed80000 540672 C:\Windows\system32\wbem\wbemess.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation WMI 131795770645376622 0x7ffabee10000 90112 C:\Windows\SYSTEM32\NCObjAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation 131795770645376622 0x7ffabee30000 847872 C:\Windows\system32\wbem\wmiprvsd.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation WMI 131795770645376622 0x7ffabefd0000 258048 C:\Windows\SYSTEM32\AEPIC.dll 10.0.17060.1029 (WinBuild.160101.0800) Microsoft Corporation Application Experience Program Cache 131795770645376622 0x7ffabf010000 98304 C:\Windows\SYSTEM32\elscore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL ядра платформы Els 131795770645376622 0x7ffabf090000 98304 C:\Windows\System32\LocationFrameworkInternalPS.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Geolocation Framework Internal PS 131795770645376622 0x7ffabf0e0000 372736 C:\Windows\system32\hnetcfg.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Диспетчер конфигурации домашней сети 131795770645376622 0x7ffabf1d0000 192512 C:\Windows\System32\cryptnet.dll 10.0.14393.2035 (rs1_release_inmarket.180110-1910) Microsoft Corporation Crypto Network Related API 131795770645376622 0x7ffabf200000 405504 c:\windows\system32\cryptngc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API службы Microsoft Passport 131795770645376622 0x7ffabf2a0000 159744 C:\Windows\system32\dssenh.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Enhanced DSS and Diffie-Hellman Cryptographic Provider 131795770645376622 0x7ffabf330000 2457600 C:\Windows\System32\msxml6.dll 6.30.14393.2156 Microsoft Corporation MSXML 6.0 131795770645376622 0x7ffabfd60000 90112 C:\Windows\system32\napinsp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик оболочки совместимости для имен электронной почты 131795770645376622 0x7ffabfda0000 122880 C:\Windows\system32\wbem\ncprov.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Non-COM WMI Event Provision APIs 131795770645376622 0x7ffabfdc0000 86016 C:\Windows\system32\keepaliveprovider.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Keep alive provider API 131795770645376622 0x7ffabfe50000 643072 C:\Windows\System32\wpnprv.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик подключения платформы push-уведомлений Windows 131795770645376622 0x7ffabfef0000 106496 C:\Windows\system32\pnrpnsp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик пространства имен PNRP 131795770645376622 0x7ffabff60000 135168 C:\Windows\system32\ncryptsslp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft SChannel Provider 131795770645376622 0x7ffac0000000 401408 C:\Windows\system32\wbem\repdrvfs.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation WMI Repository Driver 131795770645376622 0x7ffac05f0000 94208 C:\Windows\System32\wwapi.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation WWAN API 131795770645376622 0x7ffac0610000 3088384 C:\Windows\SYSTEM32\msi.dll 5.0.14393.2155 Microsoft Corporation Windows Installer 131795770645376622 0x7ffac0910000 724992 C:\Windows\System32\Windows.Networking.Connectivity.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Networking Connectivity Runtime DLL 131795770645376622 0x7ffac0ab0000 57344 C:\Windows\System32\winrnr.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation LDAP RnR Provider DLL 131795770645376622 0x7ffac0ac0000 53248 c:\windows\system32\tbs.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation TBS 131795770645376622 0x7ffac0ad0000 86016 C:\Windows\SYSTEM32\mskeyprotect.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик защиты ключей (Майкрософт) 131795770645376622 0x7ffac0af0000 114688 C:\Windows\system32\ATL.DLL 3.05.2284 Microsoft Corporation ATL Module for Windows XP (Unicode) 131795770645376622 0x7ffac0bf0000 3559424 C:\Windows\System32\ActXPrxy.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation ActiveX Interface Marshaling Library 131795770645376622 0x7ffac1090000 94208 C:\Windows\System32\shacctprofile.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Shell Accounts Profile Classes 131795770645376622 0x7ffac1160000 892928 C:\Windows\System32\wuapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API клиента Центра обновления Windows 131795770645376622 0x7ffac1530000 528384 C:\Windows\SYSTEM32\dpx.dll 5.00 (rs1_release.160715-1616) Microsoft Corporation Microsoft(R) Delta Package Expander 131795770645376622 0x7ffac1900000 225280 c:\windows\system32\appxapplicabilityblob.dll 10.0.14393.953 (rs1_release_inmarket.170303-1614) Microsoft Corporation Appx Applicability Blob DLL 131795770645376622 0x7ffac1970000 1073152 c:\windows\system32\qmgr.dll 7.8.14393.0 (rs1_release.160715-1616) Microsoft Corporation Фоновая интеллектуальная служба передачи 131795770645376622 0x7ffac1b70000 122880 C:\Windows\System32\DevDispItemProvider.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Подсистема DeviceItem inproc devquery 131795770645376622 0x7ffac1c30000 49152 C:\Windows\system32\DMProcessXMLFiltered.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation dmprocessxmlfiltered 131795779661934902 0x7ffac1c90000 155648 C:\Windows\System32\browser.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL службы браузера компьютеров 131795770645376622 0x7ffac1cf0000 417792 C:\Windows\SYSTEM32\wuuhext.dll 10.0.14393.2189 (rs1_release.180329-1711) Microsoft Corporation Windows Update Agent plugin for Windows 131795770645376622 0x7ffac1df0000 61440 c:\windows\system32\NCI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation CoInstaller: NET 131795770645376622 0x7ffac1e20000 147456 C:\Windows\system32\wbem\wmiutils.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation WMI 131795770645376622 0x7ffac1e80000 507904 C:\Windows\System32\NetSetupShim.dll 10.0.14393.1532 (rs1_release_d.170711-1840) Microsoft Corporation Network Configuration API 131795770645376622 0x7ffac1f10000 126976 c:\windows\system32\DMCmnUtils.dll 10.0.14393.1737 (rs1_release_inmarket.170914-1249) Microsoft Corporation dmcmnutils 131795770645376622 0x7ffac1f30000 118784 C:\Windows\system32\SPINF.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows SPINF 131795770645376622 0x7ffac1f50000 471040 C:\Windows\system32\wbem\esscli.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation WMI 131795770645376622 0x7ffac1fd0000 999424 C:\Windows\system32\wbem\FastProx.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation WMI Custom Marshaller 131795770645376622 0x7ffac20d0000 110592 c:\windows\system32\RMCLIENT.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Resource Manager Client 131795770645376622 0x7ffac20f0000 753664 C:\Windows\system32\CLUSAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека API кластера 131795770645376622 0x7ffac21d0000 81920 C:\Windows\system32\wbem\wbemsvc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation WMI 131795770645376622 0x7ffac2210000 1351680 C:\Windows\system32\wbem\wbemcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Инструментарий управления Windows 131795770645376622 0x7ffac2360000 57344 c:\windows\system32\TimeBrokerClient.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Time Broker Client Library 131795770645376622 0x7ffac2370000 110592 C:\Windows\system32\adhsvc.dll 10.0.14393.2189 (rs1_release.180329-1711) Microsoft Corporation AD Harvest Sites and Subnets Service 131795770645376622 0x7ffac2390000 147456 C:\Windows\system32\httpprxm.dll 10.0.14393.2189 (rs1_release.180329-1711) Microsoft Corporation Proxy Manager 131795775850813653 0x7ffac23c0000 331776 C:\Windows\System32\OneCoreCommonProxyStub.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation OneCore Common Proxy Stub 131795770645376622 0x7ffac24a0000 397312 C:\Windows\system32\RESUTILS.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL служебной программы ресурсов кластера (Майкрософт) 131795770645376622 0x7ffac2530000 270336 C:\Windows\system32\hnetcfgclient.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиент API конфигурации домашней сети 131795780837071260 0x7ffac2590000 659456 C:\Windows\System32\FlightSettings.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Параметры цикла тестирования 131795770645376622 0x7ffac2640000 188416 C:\Windows\system32\wmidcom.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation WMI 131795770645376622 0x7ffac2670000 376832 C:\Windows\system32\miutils.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Инфраструктура управления 131795770645376622 0x7ffac26f0000 36864 C:\Windows\SYSTEM32\sscoreext.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Server Service Core DLL 131795770645376622 0x7ffac2720000 192512 C:\Windows\SYSTEM32\WPTaskScheduler.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation WP Task Scheduler DLL 131795780838238287 0x7ffac2750000 106496 C:\Windows\System32\bcd.dll 10.0.14393.1794 (rs1_release.171008-1615) Microsoft Corporation BCD DLL 131795770645376622 0x7ffac2770000 69632 C:\Windows\system32\SSCORE.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Основная DLL-библиотека службы сервера 131795770645376622 0x7ffac2940000 45056 c:\windows\system32\CSystemEventsBrokerClient.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Classic System Events Broker Client Library 131795770645376622 0x7ffac29f0000 159744 c:\windows\system32\NetSetupApi.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Network Configuration API 131795770645376622 0x7ffac2a20000 81920 c:\windows\system32\rtutils.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Routing Utilities 131795770645376622 0x7ffac2a40000 974848 c:\windows\system32\iphlpsvc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Эта служба предоставляет автоматическое подключение IPv6 в сети IPv4. 131795770645376622 0x7ffac2b30000 286720 C:\Windows\System32\usermgrproxy.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation UserMgrProxy 131795770645376622 0x7ffac2c30000 135168 c:\windows\system32\CLIPC.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиент платформы лицензирования клиента 131795770645376622 0x7ffac2c60000 278528 c:\windows\system32\WDSCORE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Panther Engine Module 131795770645376622 0x7ffac2cb0000 778240 C:\Windows\System32\winsqlite3.dll 3.12.2 SQLite Development Team SQLite is a software library that implements a self-contained, serverless, zero-configuration, transactional SQL database engine. 131795770645376622 0x7ffac2d80000 5140480 C:\Windows\System32\cdp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API клиента Microsoft (R) CDP 131795770645376622 0x7ffac3360000 1396736 C:\Windows\System32\wpncore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Ядро извещающих уведомлений Windows 131795770645376622 0x7ffac34c0000 81920 C:\Windows\system32\vss_ps.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation Microsoft® Volume Shadow Copy Service proxy/stub 131795770645376622 0x7ffac34e0000 1843200 C:\Windows\System32\urlmon.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширения OLE32 для Win32 131795770645376622 0x7ffac36b0000 524288 C:\Windows\system32\msdelta.dll 5.00 (rs1_release.160715-1616) Microsoft Corporation Microsoft Patch Engine 131795770645376622 0x7ffac3740000 413696 C:\Windows\system32\upnp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API контрольной точки UPnP 131795770645376622 0x7ffac3810000 167936 C:\Windows\SYSTEM32\Cabinet.dll 5.00 (rs1_release.160715-1616) Microsoft Corporation Microsoft® Cabinet File API 131795770645376622 0x7ffac3840000 3088384 c:\windows\system32\ESENT.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширяемая подсистема хранения данных ESE для Microsoft(R) Windows(R) 131795770645376622 0x7ffac3b40000 245760 c:\windows\system32\wbem\wmisvc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation WMI 131795770645376622 0x7ffac3cb0000 2772992 C:\Windows\System32\iertutil.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служебная программа времени выполнения для Internet Explorer 131795770645376622 0x7ffac3f60000 225280 C:\Windows\system32\FWPolicyIOMgr.dll 10.0.14393.2189 (rs1_release.180329-1711) Microsoft Corporation FwPolicyIoMgr DLL 131795770645376622 0x7ffac3fa0000 331776 c:\windows\system32\srvsvc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека (DLL) ресурсов для службы сервера 131795770645376622 0x7ffac4000000 274432 C:\Windows\SYSTEM32\policymanager.dll 10.0.14393.2035 (rs1_release_inmarket.180110-1910) Microsoft Corporation Policy Manager DLL 131795770645376622 0x7ffac4160000 253952 c:\windows\system32\wpnservice.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служба системы push-уведомлений Windows 131795770645376622 0x7ffac4220000 520192 C:\Windows\SYSTEM32\wbemcomn.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation WMI 131795770645376622 0x7ffac4450000 86016 C:\Windows\SYSTEM32\usermgrcli.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation UserMgr API DLL 131795770645376622 0x7ffac4480000 499712 C:\Windows\system32\taskcomp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Оснастка обратной совместимости диспетчера задач 131795770645376622 0x7ffac4540000 69632 C:\Windows\system32\ProximityServicePAL.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Proximity Service PAL 131795775380234927 0x7ffac4b60000 155648 C:\Windows\System32\browser.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL службы браузера компьютеров 131795770645376622 0x7ffac4cc0000 36864 C:\Windows\system32\ProximityCommonPal.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Proximity Common PAL 131795770645376622 0x7ffac4dc0000 176128 C:\Windows\system32\ProximityCommon.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Универсальная реализация близкого взаимодействия 131795770645376622 0x7ffac4e70000 102400 C:\Windows\SYSTEM32\samcli.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Security Accounts Manager Client DLL 131795770645376622 0x7ffac4ee0000 331776 C:\Windows\System32\ProximityService.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Proximity Service Implementation 131795770645376622 0x7ffac4f60000 143360 C:\Windows\SYSTEM32\wcmapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Connection Manager Client API 131795770645376622 0x7ffac5c50000 131072 C:\Windows\system32\rasman.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Remote Access Connection Manager 131795770645376622 0x7ffac5ef0000 868352 C:\Windows\System32\MbaeApiPublic.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Mobile Broadband Account API 131795770645376622 0x7ffac60e0000 221184 C:\Windows\System32\XmlLite.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft XmlLite Library 131795770645376622 0x7ffac6410000 98304 C:\Windows\SYSTEM32\VssTrace.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека трассировки службы теневого копирования тома Microsoft® 131795770645376622 0x7ffac6430000 1581056 C:\Windows\SYSTEM32\VSSAPI.DLL 10.0.14393.953 (rs1_release_inmarket.170303-1614) Microsoft Corporation Microsoft® Volume Shadow Copy Requestor/Writer Services API DLL 131795770645376622 0x7ffac6610000 40960 C:\Windows\System32\rasadhlp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Remote Access AutoDial Helper 131795770645376622 0x7ffac66a0000 86016 C:\Windows\SYSTEM32\ondemandconnroutehelper.dll 10.0.14393.351 (rs1_release_inmarket.161014-1755) Microsoft Corporation On Demand Connctiond Route Helper 131795770645376622 0x7ffac6750000 1380352 c:\windows\system32\webservices.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Среда выполнения веб-служб Windows 131795770645376622 0x7ffac69c0000 839680 C:\Windows\System32\WINHTTP.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Службы HTTP Windows 131795770645376622 0x7ffac6a90000 49152 C:\Windows\System32\LocationFrameworkPS.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Geolocation Framework PS 131795770645376622 0x7ffac6c40000 2596864 C:\Windows\WinSxS\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.14393.953_none_42151e83c686086b\Comctl32.dll 6.10 (rs1_release_inmarket.170303-1614) Microsoft Corporation Библиотека элементов управления взаимодействия с пользователем 131795770645376622 0x7ffac7580000 1077248 C:\Windows\SYSTEM32\mrmcorer.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Windows MRM 131795770645376622 0x7ffac7700000 65536 C:\Windows\system32\CredentialMigrationHandler.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Credential Migration Handler 131795770645376622 0x7ffac79c0000 57344 C:\Windows\System32\npmproxy.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Network List Manager Proxy 131795770645376622 0x7ffac79d0000 53248 C:\Windows\system32\sqmapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SQM Client 131795770645376622 0x7ffac7aa0000 401408 C:\Windows\SYSTEM32\wlanapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows WLAN AutoConfig Client Side API DLL 131795770645376622 0x7ffac7d20000 106496 C:\Windows\SYSTEM32\msauserext.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation MSA USER Extension DLL 131795770645376622 0x7ffac7d60000 114688 c:\windows\system32\UpdatePolicy.dll 10.0.14393.2189 (rs1_release.180329-1711) Microsoft Corporation Update Policy Reader 131795770645376622 0x7ffac7e50000 86016 C:\Windows\system32\SSDPAPI.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation SSDP Client API DLL 131795770645376622 0x7ffac7e90000 749568 c:\windows\system32\FVEAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows BitLocker Drive Encryption API 131795770645376622 0x7ffac82d0000 643072 c:\windows\system32\shsvcs.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL служб оболочки Windows 131795770645376622 0x7ffac83d0000 106496 C:\Windows\SYSTEM32\dhcpcsvc.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служба DHCP-клиента 131795770645376622 0x7ffac83f0000 90112 C:\Windows\SYSTEM32\dhcpcsvc6.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиент DHCPv6 131795770645376622 0x7ffac8420000 434176 c:\windows\system32\fwpuclnt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API пользовательского режима FWP/IPsec 131795770645376622 0x7ffac8590000 135168 C:\Windows\System32\LocationWinPalMisc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Location Platform Abstraction Layer 131795770645376622 0x7ffac85c0000 1810432 c:\windows\system32\LocationFramework.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Платформа географического положения Windows 131795770645376622 0x7ffac8780000 274432 c:\windows\system32\UBPM.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL единого диспетчера фоновых процессов 131795770645376622 0x7ffac8810000 45056 c:\windows\system32\WINNSI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Network Store Information RPC interface 131795770645376622 0x7ffac8880000 69632 c:\windows\system32\WMICLNT.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation WMI Client API 131795770645376622 0x7ffac8b60000 966656 c:\windows\system32\schedsvc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служба планировщика заданий 131795770645376622 0x7ffac8dc0000 167936 C:\Windows\system32\dbgcore.DLL 10.0.14321.1024 (debuggers(dbg).160715-1616) Microsoft Windows Core Debugging Helpers 131795770645376622 0x7ffac8df0000 1646592 C:\Windows\system32\dbghelp.dll 10.0.14321.1024 (rs1_release.160715-1616) Microsoft Windows Image Helper 131795770645376622 0x7ffac8fa0000 253952 c:\windows\system32\logoncli.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Net Logon Client DLL 131795770645376622 0x7ffac90b0000 90112 c:\windows\system32\wkscli.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Workstation Service Client DLL 131795770645376622 0x7ffac91c0000 167936 C:\Windows\SYSTEM32\profsvcext.dll 10.0.14393.1532 (rs1_release_d.170711-1840) Microsoft Corporation ProfSvcExt 131795770645376622 0x7ffac9220000 397312 C:\Windows\SYSTEM32\wevtapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API настройки и использования событий 131795770645376622 0x7ffac9290000 40960 c:\windows\system32\DSROLE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DS Setup Client DLL 131795770645376622 0x7ffac92a0000 90112 c:\windows\system32\sens.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служба уведомления о системных событиях (SENS) 131795770645376622 0x7ffac92c0000 98304 c:\windows\system32\themeservice.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL службы темы оболочки Windows 131795770645376622 0x7ffac92e0000 1269760 C:\Windows\SYSTEM32\wintypes.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL основных типов Windows 131795770645376622 0x7ffac9420000 380928 c:\windows\system32\profsvc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ProfSvc 131795770645376622 0x7ffac9790000 98304 c:\windows\system32\nlaapi.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Network Location Awareness 2 131795770645376622 0x7ffac9a70000 1257472 c:\windows\system32\gpsvc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиент групповой политики 131795770645376622 0x7ffac9bb0000 479232 C:\Windows\System32\ES.DLL 2001.12.10941.16384 (rs1_release.160715-1616) Microsoft Corporation COM+ 131795770645376622 0x7ffac9f10000 221184 C:\Windows\System32\netprofm.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Network List Manager 131795770645376622 0x7ffaca100000 36864 C:\Windows\SYSTEM32\httpprxc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Proxy Manager Provider RPC interface 131795770645376622 0x7ffaca1f0000 65536 C:\Windows\SYSTEM32\storageusage.dll 10.0.14393.82 (rs1_release.160805-1735) Microsoft Corporation Storage Usage 131795770645376622 0x7ffaca250000 49152 C:\Windows\SYSTEM32\bi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Background Broker Infrastructure Client Library 131795770645376622 0x7ffaca280000 73728 C:\Windows\System32\BitsProxy.dll 7.8.14393.0 (rs1_release.160715-1616) Microsoft Corporation Background Intelligent Transfer Service Proxy 131795770645376622 0x7ffaca340000 1593344 C:\Windows\System32\PROPSYS.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Система страниц свойств (Майкрософт) 131795770645376622 0x7ffaca4e0000 77824 C:\Windows\SYSTEM32\wtsapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Remote Desktop Session Host Server SDK APIs 131795770645376622 0x7ffaca500000 69632 C:\Windows\System32\wups.dll 10.0.14393.2122 (rs1_release.180217-2341) Microsoft Corporation Windows Update client proxy stub 131795770645376622 0x7ffaca570000 421888 C:\Windows\SYSTEM32\Bcp47Langs.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation BCP47 Language Classes 131795770645376622 0x7ffaca610000 143360 C:\Windows\SYSTEM32\SAMLIB.dll 10.0.14393.82 (rs1_release.160805-1735) Microsoft Corporation SAM Library DLL 131795770645376622 0x7ffaca700000 32768 c:\windows\system32\DABAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Desktop Activity Broker API 131795770645376622 0x7ffaca720000 77824 C:\Windows\system32\bitsigd.dll 7.8.14393.0 (rs1_release.160715-1616) Microsoft Corporation Background Intelligent Transfer Service IGD Support 131795770645376622 0x7ffacab70000 53248 c:\windows\system32\lfsvc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служба географического положения 131795770645376622 0x7ffacac40000 53248 c:\windows\system32\seclogon.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL службы вторичного входа 131795770645376622 0x7ffacac50000 45056 c:\windows\system32\bitsperf.dll 7.8.14393.0 (rs1_release.160715-1616) Microsoft Corporation Perfmon Counter Access 131795770645376622 0x7ffacad70000 278528 c:\windows\system32\BrokerLib.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Broker Base Library 131795770645376622 0x7ffacadf0000 499712 c:\windows\system32\apphelp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиентская библиотека совместимости приложений 131795770645376622 0x7ffacb000000 53248 c:\windows\system32\SYSNTFY.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Windows Notifications Dynamic Link Library 131795770645376622 0x7ffacb140000 593920 C:\Windows\System32\msvcp110_win.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Microsoft® STL110 C++ Runtime Library 131795770645376622 0x7ffacb1e0000 1163264 C:\Windows\SYSTEM32\twinapi.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation twinapi.appcore 131795770645376622 0x7ffacb300000 364544 C:\Windows\System32\VEEventDispatcher.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Visual Element Event dispatcher 131795770645376622 0x7ffacb360000 176128 C:\Windows\system32\fwbase.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Firewall Base DLL 131795770645376622 0x7ffacb3d0000 110592 C:\Windows\SYSTEM32\resourcepolicyclient.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Resource Policy Client 131795770645376622 0x7ffacb3f0000 163840 c:\windows\system32\DEVOBJ.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Device Information Set DLL 131795770645376622 0x7ffacb420000 204800 C:\Windows\SYSTEM32\ntmarta.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик Windows NT MARTA 131795770645376622 0x7ffacb460000 548864 C:\Windows\SYSTEM32\firewallapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API брандмауэра Windows 131795770645376622 0x7ffacb6e0000 49152 c:\windows\system32\HID.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека пользователя HID 131795770645376622 0x7ffacb6f0000 143360 C:\Windows\SYSTEM32\gpapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиентские функции API групповой политики 131795770645376622 0x7ffacb920000 81920 C:\Windows\SYSTEM32\WLDP.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Политика блокировки Windows 131795770645376622 0x7ffacb960000 303104 c:\windows\system32\AUTHZ.dll 10.0.14393.1737 (rs1_release_inmarket.170914-1249) Microsoft Corporation Authorization Framework 131795770645376622 0x7ffacbaf0000 495616 C:\Windows\system32\schannel.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик безопасности TLS/SSL 131795770645376622 0x7ffacbbb0000 208896 C:\Windows\system32\rsaenh.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Enhanced Cryptographic Provider 131795770645376622 0x7ffacbbf0000 40960 C:\Windows\system32\DPAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Data Protection API 131795770645376622 0x7ffacbd30000 229376 C:\Windows\system32\IPHLPAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API вспомогательного приложения IP 131795770645376622 0x7ffacbd70000 659456 C:\Windows\system32\DNSAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Динамическая библиотека API DNS-клиента 131795770645376622 0x7ffacbe20000 53248 c:\windows\system32\netutils.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API Helpers DLL 131795770645376622 0x7ffacbe40000 126976 c:\windows\system32\USERENV.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Userenv 131795770645376622 0x7ffacbfb0000 376832 C:\Windows\system32\MSWSOCK.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширение поставщика службы API Microsoft Windows Sockets 2.0 131795770645376622 0x7ffacc150000 94208 C:\Windows\SYSTEM32\cryptsp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Cryptographic Service Provider API 131795770645376622 0x7ffacc170000 45056 C:\Windows\System32\CRYPTBASE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base cryptographic API DLL 131795770645376622 0x7ffacc1f0000 241664 C:\Windows\System32\NTASN1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft ASN.1 API 131795770645376622 0x7ffacc230000 155648 C:\Windows\System32\ncrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Маршрутизатор Windows NCrypt 131795770645376622 0x7ffacc350000 180224 C:\Windows\System32\SspiCli.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Security Support Provider Interface 131795770645376622 0x7ffacc500000 102400 c:\windows\system32\EventAggregation.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Event Aggregation User Mode Library 131795770645376622 0x7ffacc520000 622592 C:\Windows\SYSTEM32\sxs.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Fusion 2.5 131795770645376622 0x7ffacc5c0000 352256 C:\Windows\SYSTEM32\winsta.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Winstation Library 131795770645376622 0x7ffacc620000 176128 c:\windows\system32\bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795770645376622 0x7ffacc6e0000 61440 C:\Windows\System32\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795770645376622 0x7ffacc6f0000 311296 C:\Windows\System32\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795770645376622 0x7ffacc740000 81920 C:\Windows\System32\profapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Profile Basic API 131795770645376622 0x7ffacc760000 65536 C:\Windows\System32\MSASN1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ASN.1 Runtime APIs 131795770645376622 0x7ffacc8f0000 1003520 C:\Windows\System32\ucrtbase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645376622 0x7ffacc9f0000 434176 C:\Windows\System32\bcryptPrimitives.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Cryptographic Primitives Library 131795770645376622 0x7ffacca60000 122880 C:\Windows\System32\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795770645376622 0x7ffacca80000 348160 C:\Windows\System32\WINTRUST.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation Microsoft Trust Verification APIs 131795770645376622 0x7ffaccae0000 692224 C:\Windows\System32\shcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795770645376622 0x7ffaccb90000 7180288 C:\Windows\System32\windows.storage.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API хранения Microsoft WinRT 131795770645376622 0x7ffacd270000 2215936 C:\Windows\System32\KERNELBASE.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645376622 0x7ffacd490000 1871872 C:\Windows\System32\CRYPT32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API32 криптографии 131795770645376622 0x7ffacd710000 638976 C:\Windows\System32\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645376622 0x7ffacd7b0000 270336 C:\Windows\System32\cfgmgr32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Configuration Manager DLL 131795770645376622 0x7ffacd810000 22056960 C:\Windows\System32\SHELL32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Общая библиотека оболочки Windows 131795770645376622 0x7ffaced20000 782336 C:\Windows\System32\OLEAUT32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795770645376622 0x7ffacede0000 450560 C:\Windows\System32\coml2.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft COM for Windows 131795770645376622 0x7ffacee50000 1183744 C:\Windows\System32\RPCRT4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795770645376622 0x7ffacef80000 32768 C:\Windows\System32\NSI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation NSI User-mode interface DLL 131795770645376622 0x7ffacef90000 647168 C:\Windows\System32\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795770645376622 0x7ffacf030000 651264 C:\Windows\System32\clbcatq.dll 2001.12.10941.16384 (rs1_release.160715-1616) Microsoft Corporation COM+ Configuration Catalog 131795770645376622 0x7ffacf0d0000 704512 C:\Windows\System32\KERNEL32.DLL 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645376622 0x7ffacf180000 376832 C:\Windows\System32\WLDAP32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Win32 LDAP API DLL 131795770645376622 0x7ffacf340000 4362240 C:\Windows\System32\setupapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Setup API 131795770645376622 0x7ffacf770000 212992 C:\Windows\System32\GDI32.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation GDI Client DLL 131795770645376622 0x7ffacf820000 434176 C:\Windows\System32\WS2_32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation 32-разрядная библиотека Windows Socket 2.0 131795770645376622 0x7ffacf8c0000 1462272 C:\Windows\System32\user32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795770645376622 0x7ffacfb30000 2916352 C:\Windows\System32\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795770645376622 0x7ffacfe00000 114688 C:\Windows\System32\imagehlp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT Image Helper 131795770645376622 0x7ffacfe20000 663552 C:\Windows\System32\advapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795770645376622 0x7ffad0070000 1277952 C:\Windows\System32\ole32.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft OLE для Windows 131795770645376622 0x7ffad01b0000 335872 C:\Windows\System32\shlwapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека небольших программ оболочки 131795770645376622 0x7ffad0210000 364544 C:\Windows\System32\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795770645376622 0x7ffad0270000 1908736 C:\Windows\SYSTEM32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 25 372 580 4 00000000:000003e5 131765776305463443 0 0 1 Обязательная метка\Обязательный уровень системы NT AUTHORITY\LOCAL SERVICE svchost.exe C:\Windows\system32\svchost.exe C:\Windows\system32\svchost.exe -k LocalService Microsoft Corporation 10.0.14393.0 (rs1_release.160715-1616) Хост-процесс для служб Windows 131795770645376755 0x7ff718c20000 57344 C:\Windows\system32\svchost.exe 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Хост-процесс для служб Windows 131795770645376755 0x7ffab1c40000 1302528 c:\windows\system32\LicenseManager.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation LicenseManager 131795770645376755 0x7ffab91f0000 233472 c:\windows\system32\sstpsvc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Обеспечивает возможность использования SSTP для подключения к удаленным компьютерам с помощью VPN. 131795770645376755 0x7ffab93b0000 897024 C:\Windows\System32\TokenBroker.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Token Broker 131795770645376755 0x7ffabaab0000 94208 C:\Windows\SYSTEM32\profext.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation profext 131795780812578370 0x7ffabafc0000 700416 C:\Windows\System32\wer.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека сообщений об ошибках Windows 131795770645376755 0x7ffabbd10000 65536 C:\Windows\System32\TOKENBINDING.dll 10.0.14393.1593 (rs1_release.170731-1934) Microsoft Corporation Token Binding Protocol 131795770645376755 0x7ffabc610000 540672 c:\windows\system32\w32time.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служба времени Windows 131795770645376755 0x7ffabca50000 819200 C:\Windows\System32\Windows.Security.Authentication.Web.Core.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Token Broker WinRT API 131795770645376755 0x7ffabcb70000 262144 C:\Windows\System32\cdprt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft (R) CDP Client WinRT API 131795770645376755 0x7ffabef00000 499712 c:\windows\system32\cdpsvc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служба CDP Майкрософт (R) 131795770645376755 0x7ffabf2d0000 344064 C:\Windows\system32\ncryptprov.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft KSP 131795770645376755 0x7ffabf330000 2457600 C:\Windows\System32\msxml6.dll 6.30.14393.2156 Microsoft Corporation MSXML 6.0 131795770645376755 0x7ffabfbe0000 1011712 C:\Windows\System32\Windows.Security.Authentication.OnlineId.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation Windows Runtime OnlineId Authentication DLL 131795770645376755 0x7ffabff60000 135168 C:\Windows\system32\ncryptsslp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft SChannel Provider 131795770645376755 0x7ffac05e0000 40960 c:\windows\system32\sbservicetrigger.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Socket Broker Service Trigger 131795770645376755 0x7ffac05f0000 94208 C:\Windows\System32\wwapi.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation WWAN API 131795770645376755 0x7ffac0910000 724992 C:\Windows\System32\Windows.Networking.Connectivity.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Networking Connectivity Runtime DLL 131795770645376755 0x7ffac0ad0000 86016 C:\Windows\SYSTEM32\mskeyprotect.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик защиты ключей (Майкрософт) 131795770645376755 0x7ffac1160000 892928 C:\Windows\System32\wuapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API клиента Центра обновления Windows 131795770645376755 0x7ffac1d60000 589824 C:\Windows\System32\webio.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API протоколов передачи по Веб 131795770645376755 0x7ffac23c0000 331776 C:\Windows\System32\OneCoreCommonProxyStub.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation OneCore Common Proxy Stub 131795770645376755 0x7ffac2a20000 81920 c:\windows\system32\rtutils.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Routing Utilities 131795770645376755 0x7ffac2b30000 286720 C:\Windows\System32\usermgrproxy.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation UserMgrProxy 131795770645376755 0x7ffac2c30000 135168 c:\windows\system32\CLIPC.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиент платформы лицензирования клиента 131795770645376755 0x7ffac2d80000 5140480 c:\windows\system32\cdp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API клиента Microsoft (R) CDP 131795780812550384 0x7ffac3290000 86016 C:\Windows\System32\fthsvc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Модуль диагностики отказоустойчивой кучи Microsoft Windows 131795770645376755 0x7ffac3cb0000 2772992 C:\Windows\System32\iertutil.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служебная программа времени выполнения для Internet Explorer 131795770645376755 0x7ffac3f60000 225280 C:\Windows\System32\FWPolicyIOMgr.dll 10.0.14393.2189 (rs1_release.180329-1711) Microsoft Corporation FwPolicyIoMgr DLL 131795770645376755 0x7ffac4050000 118784 c:\windows\system32\wdi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Инфраструктура диагностики Windows 131795770645376755 0x7ffac4130000 40960 c:\windows\system32\fdphost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служба размещения поставщиков функций обнаружения 131795770645376755 0x7ffac41a0000 77824 C:\Windows\System32\fdproxy.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation Function Discovery Proxy Dll 131795770645376755 0x7ffac4200000 98304 C:\Windows\system32\perftrack.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Performance PerfTrack 131795770645376755 0x7ffac42a0000 659456 C:\Windows\System32\StateRepository.Core.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation StateRepository Core 131795770645376755 0x7ffac4450000 86016 C:\Windows\SYSTEM32\usermgrcli.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation UserMgr API DLL 131795770645376755 0x7ffac46d0000 4161536 C:\Windows\System32\Windows.StateRepository.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Сервер Windows StateRepository API Server 131795770645376755 0x7ffac5070000 798720 C:\Windows\System32\Windows.Web.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL веб-клиента 131795770645376755 0x7ffac5b80000 184320 C:\Windows\SYSTEM32\AuthBroker.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API WinRT для веб-проверки подлинности 131795770645376755 0x7ffac60e0000 221184 C:\Windows\System32\XmlLite.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft XmlLite Library 131795770645376755 0x7ffac6400000 53248 c:\windows\system32\HTTPAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation HTTP Protocol Stack API 131795770645376755 0x7ffac6610000 40960 C:\Windows\System32\rasadhlp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Remote Access AutoDial Helper 131795770645376755 0x7ffac66a0000 86016 C:\Windows\SYSTEM32\ondemandconnroutehelper.dll 10.0.14393.351 (rs1_release_inmarket.161014-1755) Microsoft Corporation On Demand Connctiond Route Helper 131795770645376755 0x7ffac66e0000 122880 C:\Windows\System32\fdssdp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Function Discovery SSDP Provider Dll 131795770645376755 0x7ffac6710000 172032 C:\Windows\System32\FunDisc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL обнаружения функции 131795770645376755 0x7ffac6750000 1380352 C:\Windows\System32\webservices.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Среда выполнения веб-служб Windows 131795770645376755 0x7ffac68b0000 696320 C:\Windows\System32\wsdapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Веб-службы для библиотек DLL API-интерфейсов устройств 131795770645376755 0x7ffac6960000 167936 C:\Windows\System32\fdwsd.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Function Discovery WS Discovery Provider Dll 131795770645376755 0x7ffac69c0000 839680 C:\Windows\System32\WINHTTP.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Службы HTTP Windows 131795770645376755 0x7ffac76d0000 65536 C:\Windows\System32\vmictimeprovider.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Virtual Machine Integration Component Time Sync Provider Library 131795770645376755 0x7ffac79c0000 57344 C:\Windows\System32\npmproxy.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Network List Manager Proxy 131795770645376755 0x7ffac7a10000 544768 c:\windows\system32\netprofmsvc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Диспетчер списка сетей 131795770645376755 0x7ffac7aa0000 401408 C:\Windows\SYSTEM32\wlanapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows WLAN AutoConfig Client Side API DLL 131795770645376755 0x7ffac7d20000 106496 C:\Windows\SYSTEM32\msauserext.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation MSA USER Extension DLL 131795770645376755 0x7ffac7e50000 86016 C:\Windows\System32\SSDPAPI.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation SSDP Client API DLL 131795770645376755 0x7ffac7f70000 49152 c:\windows\system32\licensemanagersvc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation LicenseManagerSvc 131795770645376755 0x7ffac83d0000 106496 C:\Windows\SYSTEM32\dhcpcsvc.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служба DHCP-клиента 131795770645376755 0x7ffac83f0000 90112 C:\Windows\SYSTEM32\dhcpcsvc6.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиент DHCPv6 131795770645376755 0x7ffac8420000 434176 C:\Windows\System32\fwpuclnt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API пользовательского режима FWP/IPsec 131795770645376755 0x7ffac8540000 286720 C:\Windows\System32\vaultcli.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиентская библиотека хранилища учетных данных 131795770645376755 0x7ffac8810000 45056 C:\Windows\SYSTEM32\WINNSI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Network Store Information RPC interface 131795770645376755 0x7ffac8fa0000 253952 c:\windows\system32\logoncli.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Net Logon Client DLL 131795770645376755 0x7ffac90a0000 53248 c:\windows\system32\nsisvc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation RPC-сервер интерфейса сохранения сети 131795770645376755 0x7ffac90b0000 90112 C:\Windows\SYSTEM32\wkscli.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Workstation Service Client DLL 131795770645376755 0x7ffac91f0000 172032 c:\windows\system32\FontProvider.dll 10.0.14393.1066 (rs1_release_sec.170327-1835) Microsoft Corporation Windows Font Provider Library 131795780812573070 0x7ffac9220000 397312 C:\Windows\System32\wevtapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API настройки и использования событий 131795770645376755 0x7ffac9290000 40960 c:\windows\system32\DSROLE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DS Setup Client DLL 131795770645376755 0x7ffac92e0000 1269760 C:\Windows\System32\WinTypes.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL основных типов Windows 131795770645376755 0x7ffac9790000 98304 c:\windows\system32\nlaapi.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Network Location Awareness 2 131795770645376755 0x7ffac9860000 1896448 c:\windows\system32\fntcache.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служба кэша шрифтов Windows 131795770645376755 0x7ffac9bb0000 479232 c:\windows\system32\es.dll 2001.12.10941.16384 (rs1_release.160715-1616) Microsoft Corporation COM+ 131795770645376755 0x7ffaca130000 204800 C:\Windows\SYSTEM32\windows.devices.radios.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows.Devices.Radios DLL 131795770645376755 0x7ffaca280000 73728 C:\Windows\System32\BitsProxy.dll 7.8.14393.0 (rs1_release.160715-1616) Microsoft Corporation Background Intelligent Transfer Service Proxy 131795770645376755 0x7ffaca340000 1593344 C:\Windows\system32\propsys.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Система страниц свойств (Майкрософт) 131795770645376755 0x7ffaca500000 69632 C:\Windows\System32\wups.dll 10.0.14393.2122 (rs1_release.180217-2341) Microsoft Corporation Windows Update client proxy stub 131795780812567382 0x7ffacadf0000 499712 C:\Windows\System32\apphelp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиентская библиотека совместимости приложений 131795770645376755 0x7ffacb140000 593920 c:\windows\system32\msvcp110_win.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Microsoft® STL110 C++ Runtime Library 131795770645376755 0x7ffacb1e0000 1163264 C:\Windows\System32\twinapi.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation twinapi.appcore 131795770645376755 0x7ffacb300000 364544 c:\windows\system32\VEEventDispatcher.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Visual Element Event dispatcher 131795770645376755 0x7ffacb360000 176128 C:\Windows\System32\fwbase.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Firewall Base DLL 131795770645376755 0x7ffacb420000 204800 C:\Windows\SYSTEM32\ntmarta.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик Windows NT MARTA 131795770645376755 0x7ffacb460000 548864 C:\Windows\System32\FirewallAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API брандмауэра Windows 131795770645376755 0x7ffacb6f0000 143360 C:\Windows\SYSTEM32\gpapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиентские функции API групповой политики 131795770645376755 0x7ffacb920000 81920 C:\Windows\SYSTEM32\WLDP.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Политика блокировки Windows 131795770645376755 0x7ffacbaf0000 495616 C:\Windows\system32\schannel.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик безопасности TLS/SSL 131795770645376755 0x7ffacbbb0000 208896 C:\Windows\system32\rsaenh.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Enhanced Cryptographic Provider 131795770645376755 0x7ffacbbf0000 40960 C:\Windows\SYSTEM32\DPAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Data Protection API 131795770645376755 0x7ffacbd30000 229376 c:\windows\system32\IPHLPAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API вспомогательного приложения IP 131795770645376755 0x7ffacbd70000 659456 C:\Windows\SYSTEM32\DNSAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Динамическая библиотека API DNS-клиента 131795770645376755 0x7ffacbe20000 53248 C:\Windows\SYSTEM32\netutils.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API Helpers DLL 131795770645376755 0x7ffacbe40000 126976 c:\windows\system32\USERENV.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Userenv 131795770645376755 0x7ffacbfb0000 376832 C:\Windows\system32\mswsock.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширение поставщика службы API Microsoft Windows Sockets 2.0 131795770645376755 0x7ffacc150000 94208 C:\Windows\System32\CRYPTSP.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Cryptographic Service Provider API 131795770645376755 0x7ffacc170000 45056 C:\Windows\system32\CRYPTBASE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base cryptographic API DLL 131795770645376755 0x7ffacc1f0000 241664 c:\windows\system32\NTASN1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft ASN.1 API 131795770645376755 0x7ffacc230000 155648 c:\windows\system32\ncrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Маршрутизатор Windows NCrypt 131795770645376755 0x7ffacc350000 180224 C:\Windows\System32\SspiCli.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Security Support Provider Interface 131795770645376755 0x7ffacc520000 622592 C:\Windows\SYSTEM32\sxs.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Fusion 2.5 131795770645376755 0x7ffacc620000 176128 C:\Windows\System32\bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795770645376755 0x7ffacc6e0000 61440 C:\Windows\System32\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795770645376755 0x7ffacc6f0000 311296 C:\Windows\System32\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795770645376755 0x7ffacc740000 81920 C:\Windows\System32\profapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Profile Basic API 131795770645376755 0x7ffacc760000 65536 C:\Windows\System32\MSASN1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ASN.1 Runtime APIs 131795770645376755 0x7ffacc8f0000 1003520 C:\Windows\System32\ucrtbase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645376755 0x7ffacc9f0000 434176 C:\Windows\System32\bcryptPrimitives.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Cryptographic Primitives Library 131795770645376755 0x7ffacca60000 122880 C:\Windows\System32\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795770645376755 0x7ffacca80000 348160 C:\Windows\System32\WINTRUST.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation Microsoft Trust Verification APIs 131795770645376755 0x7ffaccae0000 692224 C:\Windows\System32\shcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795770645376755 0x7ffacd270000 2215936 C:\Windows\System32\KERNELBASE.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645376755 0x7ffacd490000 1871872 C:\Windows\System32\CRYPT32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API32 криптографии 131795770645376755 0x7ffacd710000 638976 C:\Windows\System32\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645376755 0x7ffacd7b0000 270336 C:\Windows\System32\cfgmgr32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Configuration Manager DLL 131795770645376755 0x7ffaced20000 782336 C:\Windows\System32\OLEAUT32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795770645376755 0x7ffacede0000 450560 C:\Windows\System32\coml2.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft COM for Windows 131795770645376755 0x7ffacee50000 1183744 C:\Windows\System32\RPCRT4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795770645376755 0x7ffacef80000 32768 C:\Windows\System32\NSI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation NSI User-mode interface DLL 131795770645376755 0x7ffacef90000 647168 C:\Windows\System32\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795770645376755 0x7ffacf030000 651264 C:\Windows\System32\clbcatq.dll 2001.12.10941.16384 (rs1_release.160715-1616) Microsoft Corporation COM+ Configuration Catalog 131795770645376755 0x7ffacf0d0000 704512 C:\Windows\System32\KERNEL32.DLL 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645376755 0x7ffacf770000 212992 C:\Windows\System32\GDI32.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation GDI Client DLL 131795770645376755 0x7ffacf820000 434176 C:\Windows\System32\WS2_32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation 32-разрядная библиотека Windows Socket 2.0 131795770645376755 0x7ffacf8c0000 1462272 C:\Windows\System32\user32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795770645376755 0x7ffacfb30000 2916352 C:\Windows\System32\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795770645376755 0x7ffacfe20000 663552 C:\Windows\System32\advapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795770645376755 0x7ffad0070000 1277952 C:\Windows\System32\ole32.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft OLE для Windows 131795770645376755 0x7ffad0210000 364544 C:\Windows\System32\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795770645376755 0x7ffad0270000 1908736 C:\Windows\SYSTEM32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 26 360 580 4 00000000:000003e5 131765776311216195 0 0 1 Обязательная метка\Обязательный уровень системы NT AUTHORITY\LOCAL SERVICE svchost.exe C:\Windows\System32\svchost.exe C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted Microsoft Corporation 10.0.14393.0 (rs1_release.160715-1616) Хост-процесс для служб Windows 131795770645376855 0x7ff718c20000 57344 C:\Windows\System32\svchost.exe 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Хост-процесс для служб Windows 131795770645376855 0x7ffab4af0000 606208 C:\Windows\System32\audioses.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Сеанс обработки звука 131795770645376855 0x7ffabaad0000 352256 C:\Windows\System32\deviceaccess.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Device Broker And Policy COM Server 131795770645376855 0x7ffac7e70000 36864 C:\Windows\SYSTEM32\coreaudiopolicymanagerext.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation "coreaudiopolicymanagerext.DYNLINK" 131795770645376855 0x7ffac87d0000 237568 c:\windows\system32\AUDIOSRVPOLICYMANAGER.dll 10.0.14393.351 (rs1_release_inmarket.161014-1755) Microsoft Corporation Windows Audio Service Policy Manager 131795770645376855 0x7ffac90d0000 978944 c:\windows\system32\audiosrv.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служба Windows Audio 131795770645376855 0x7ffac92e0000 1269760 C:\Windows\SYSTEM32\wintypes.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL основных типов Windows 131795770645376855 0x7ffac9480000 462848 c:\windows\system32\MMDevAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation MMDevice API 131795770645376855 0x7ffaca340000 1593344 c:\windows\system32\PROPSYS.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Система страниц свойств (Майкрософт) 131795770645376855 0x7ffaca4e0000 77824 C:\Windows\SYSTEM32\wtsapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Remote Desktop Session Host Server SDK APIs 131795770645376855 0x7ffacb1e0000 1163264 C:\Windows\System32\twinapi.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation twinapi.appcore 131795770645376855 0x7ffacb3f0000 163840 c:\windows\system32\DEVOBJ.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Device Information Set DLL 131795770645376855 0x7ffacb920000 81920 C:\Windows\SYSTEM32\WLDP.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Политика блокировки Windows 131795770645376855 0x7ffacc5c0000 352256 C:\Windows\SYSTEM32\winsta.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Winstation Library 131795770645376855 0x7ffacc620000 176128 C:\Windows\System32\bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795770645376855 0x7ffacc6e0000 61440 C:\Windows\System32\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795770645376855 0x7ffacc6f0000 311296 C:\Windows\System32\POWRPROF.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795770645376855 0x7ffacc760000 65536 C:\Windows\System32\MSASN1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ASN.1 Runtime APIs 131795770645376855 0x7ffacc8f0000 1003520 C:\Windows\System32\ucrtbase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645376855 0x7ffacc9f0000 434176 C:\Windows\System32\bcryptPrimitives.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Cryptographic Primitives Library 131795770645376855 0x7ffacca60000 122880 C:\Windows\System32\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795770645376855 0x7ffacca80000 348160 C:\Windows\System32\WINTRUST.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation Microsoft Trust Verification APIs 131795770645376855 0x7ffaccae0000 692224 C:\Windows\System32\shcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795770645376855 0x7ffacd270000 2215936 C:\Windows\System32\KERNELBASE.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645376855 0x7ffacd490000 1871872 C:\Windows\System32\CRYPT32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API32 криптографии 131795770645376855 0x7ffacd710000 638976 C:\Windows\System32\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645376855 0x7ffacd7b0000 270336 C:\Windows\System32\cfgmgr32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Configuration Manager DLL 131795770645376855 0x7ffaced20000 782336 C:\Windows\System32\OLEAUT32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795770645376855 0x7ffacee50000 1183744 C:\Windows\System32\RPCRT4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795770645376855 0x7ffacef90000 647168 C:\Windows\System32\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795770645376855 0x7ffacf030000 651264 C:\Windows\System32\clbcatq.dll 2001.12.10941.16384 (rs1_release.160715-1616) Microsoft Corporation COM+ Configuration Catalog 131795770645376855 0x7ffacf0d0000 704512 C:\Windows\System32\KERNEL32.DLL 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645376855 0x7ffacf770000 212992 C:\Windows\System32\GDI32.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation GDI Client DLL 131795770645376855 0x7ffacf8c0000 1462272 C:\Windows\System32\user32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795770645376855 0x7ffacfb30000 2916352 C:\Windows\System32\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795770645376855 0x7ffad0210000 364544 C:\Windows\System32\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795770645376855 0x7ffad0270000 1908736 C:\Windows\SYSTEM32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 27 1040 580 4 00000000:000003e5 131765776311708649 0 0 1 Обязательная метка\Обязательный уровень системы NT AUTHORITY\LOCAL SERVICE svchost.exe C:\Windows\system32\svchost.exe C:\Windows\system32\svchost.exe -k LocalServiceNetworkRestricted Microsoft Corporation 10.0.14393.0 (rs1_release.160715-1616) Хост-процесс для служб Windows 131795770645376955 0x7ff718c20000 57344 C:\Windows\system32\svchost.exe 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Хост-процесс для служб Windows 131795770645376955 0x7ffac8820000 57344 C:\Windows\SYSTEM32\cmintegrator.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation cmintegrator.dll 131795770645376955 0x7ffac8880000 69632 C:\Windows\system32\WMICLNT.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation WMI Client API 131795770645376955 0x7ffac8c50000 245760 C:\Windows\system32\wcmcsp.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Windows Connection Service Provider DLL 131795770645376955 0x7ffac8fe0000 737280 c:\windows\system32\wcmsvc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL службы диспетчера подключений Windows 131795770645376955 0x7ffac9790000 98304 C:\Windows\SYSTEM32\nlaapi.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Network Location Awareness 2 131795770645376955 0x7ffaca4e0000 77824 C:\Windows\SYSTEM32\wtsapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Remote Desktop Session Host Server SDK APIs 131795770645376955 0x7ffacb6f0000 143360 C:\Windows\SYSTEM32\gpapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиентские функции API групповой политики 131795770645376955 0x7ffacb920000 81920 C:\Windows\SYSTEM32\WLDP.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Политика блокировки Windows 131795770645376955 0x7ffacbd30000 229376 c:\windows\system32\IPHLPAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API вспомогательного приложения IP 131795770645376955 0x7ffacc5c0000 352256 C:\Windows\SYSTEM32\WINSTA.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Winstation Library 131795770645376955 0x7ffacc6e0000 61440 C:\Windows\System32\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795770645376955 0x7ffacc6f0000 311296 C:\Windows\System32\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795770645376955 0x7ffacc760000 65536 C:\Windows\System32\MSASN1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ASN.1 Runtime APIs 131795770645376955 0x7ffacc8f0000 1003520 C:\Windows\System32\ucrtbase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645376955 0x7ffacc9f0000 434176 C:\Windows\System32\bcryptPrimitives.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Cryptographic Primitives Library 131795770645376955 0x7ffacca60000 122880 C:\Windows\System32\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795770645376955 0x7ffacca80000 348160 C:\Windows\System32\WINTRUST.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation Microsoft Trust Verification APIs 131795770645376955 0x7ffacd270000 2215936 C:\Windows\System32\KERNELBASE.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645376955 0x7ffacd490000 1871872 C:\Windows\System32\CRYPT32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API32 криптографии 131795770645376955 0x7ffacd710000 638976 C:\Windows\System32\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645376955 0x7ffacd7b0000 270336 C:\Windows\System32\cfgmgr32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Configuration Manager DLL 131795770645376955 0x7ffaced20000 782336 C:\Windows\System32\OLEAUT32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795770645376955 0x7ffacee50000 1183744 C:\Windows\System32\RPCRT4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795770645376955 0x7ffacef80000 32768 C:\Windows\System32\NSI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation NSI User-mode interface DLL 131795770645376955 0x7ffacef90000 647168 C:\Windows\System32\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795770645376955 0x7ffacf0d0000 704512 C:\Windows\System32\KERNEL32.DLL 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645376955 0x7ffacf770000 212992 C:\Windows\System32\GDI32.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation GDI Client DLL 131795770645376955 0x7ffacf820000 434176 C:\Windows\System32\WS2_32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation 32-разрядная библиотека Windows Socket 2.0 131795770645376955 0x7ffacf8c0000 1462272 C:\Windows\System32\user32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795770645376955 0x7ffacfb30000 2916352 C:\Windows\System32\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795770645376955 0x7ffacfe20000 663552 C:\Windows\System32\advapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795770645376955 0x7ffad0210000 364544 C:\Windows\System32\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795770645376955 0x7ffad0270000 1908736 C:\Windows\SYSTEM32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 28 1068 580 4 00000000:000003e4 131765776312395030 0 0 1 Обязательная метка\Обязательный уровень системы NT AUTHORITY\NETWORK SERVICE svchost.exe C:\Windows\system32\svchost.exe C:\Windows\system32\svchost.exe -k NetworkService Microsoft Corporation 10.0.14393.0 (rs1_release.160715-1616) Хост-процесс для служб Windows 131795770645377076 0x7ff718c20000 57344 C:\Windows\system32\svchost.exe 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Хост-процесс для служб Windows 131795770645377076 0x7ffab1fd0000 2277376 C:\Windows\System32\msxml3.dll 8.110.14393.1532 Microsoft Corporation MSXML 3.0 131795770645377076 0x7ffabcf50000 921600 C:\Windows\system32\drvstore.dll 10.0.14393.351 (rs1_release_inmarket.161014-1755) Microsoft Corporation Driver Store API 131795770645377076 0x7ffabf1d0000 192512 c:\windows\system32\CRYPTNET.dll 10.0.14393.2035 (rs1_release_inmarket.180110-1910) Microsoft Corporation Crypto Network Related API 131795770645377076 0x7ffac1d60000 589824 c:\windows\system32\webio.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API протоколов передачи по Веб 131795770645377076 0x7ffac34c0000 81920 C:\Windows\system32\vss_ps.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation Microsoft® Volume Shadow Copy Service proxy/stub 131795770645377076 0x7ffac3810000 167936 C:\Windows\SYSTEM32\Cabinet.dll 5.00 (rs1_release.160715-1616) Microsoft Corporation Microsoft® Cabinet File API 131795770645377076 0x7ffac3840000 3088384 C:\Windows\system32\ESENT.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширяемая подсистема хранения данных ESE для Microsoft(R) Windows(R) 131795770645377076 0x7ffac4e70000 102400 C:\Windows\system32\samcli.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Security Accounts Manager Client DLL 131795770645377076 0x7ffac6410000 98304 C:\Windows\system32\VssTrace.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека трассировки службы теневого копирования тома Microsoft® 131795770645377076 0x7ffac6430000 1581056 C:\Windows\system32\VSSAPI.DLL 10.0.14393.953 (rs1_release_inmarket.170303-1614) Microsoft Corporation Microsoft® Volume Shadow Copy Requestor/Writer Services API DLL 131795770645377076 0x7ffac65c0000 155648 C:\Windows\System32\cryptcatsvc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Cryptographic Catalog Services 131795770645377076 0x7ffac65f0000 77824 C:\Windows\System32\crypttpmeksvc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Cryptographic TPM Endorsement Key Services 131795770645377076 0x7ffac6610000 40960 C:\Windows\System32\rasadhlp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Remote Access AutoDial Helper 131795770645377076 0x7ffac6680000 102400 c:\windows\system32\cryptsvc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Службы криптографии 131795770645377076 0x7ffac69c0000 839680 c:\windows\system32\WINHTTP.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Службы HTTP Windows 131795770645377076 0x7ffac6b90000 53248 c:\windows\system32\DSPARSE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Active Directory Domain Services API 131795770645377076 0x7ffac6f00000 303104 c:\windows\system32\wkssvc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL службы рабочей станции 131795770645377076 0x7ffac79c0000 57344 C:\Windows\System32\npmproxy.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Network List Manager Proxy 131795770645377076 0x7ffac79e0000 184320 C:\Windows\SYSTEM32\netjoin.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL присоединения к домену 131795770645377076 0x7ffac7aa0000 401408 C:\Windows\system32\WlanApi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows WLAN AutoConfig Client Side API DLL 131795770645377076 0x7ffac7c00000 266240 C:\Windows\System32\mstask.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека интерфейса планировщика заданий 131795770645377076 0x7ffac7e50000 86016 C:\Windows\system32\ssdpapi.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation SSDP Client API DLL 131795770645377076 0x7ffac8260000 425984 c:\windows\system32\ncsi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Индикатор работоспособности сетевых подключений 131795770645377076 0x7ffac8370000 389120 c:\windows\system32\nlasvc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служба сведений о подключенных сетях 2 131795770645377076 0x7ffac83d0000 106496 C:\Windows\SYSTEM32\dhcpcsvc.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служба DHCP-клиента 131795770645377076 0x7ffac83f0000 90112 C:\Windows\SYSTEM32\dhcpcsvc6.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиент DHCPv6 131795770645377076 0x7ffac8410000 40960 C:\Windows\System32\dnsext.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DNS extension DLL 131795770645377076 0x7ffac8420000 434176 C:\Windows\SYSTEM32\Fwpuclnt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API пользовательского режима FWP/IPsec 131795770645377076 0x7ffac8810000 45056 C:\Windows\SYSTEM32\WINNSI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Network Store Information RPC interface 131795770645377076 0x7ffac8830000 290816 c:\windows\system32\dnsrslvr.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служба кэширующего сопоставителя DNS 131795770645377076 0x7ffac8880000 69632 c:\windows\system32\WMICLNT.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation WMI Client API 131795770645377076 0x7ffac8cf0000 815104 C:\Windows\System32\taskschd.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Task Scheduler COM API 131795770645377076 0x7ffac90b0000 90112 c:\windows\system32\wkscli.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Workstation Service Client DLL 131795770645377076 0x7ffac9220000 397312 C:\Windows\SYSTEM32\wevtapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API настройки и использования событий 131795770645377076 0x7ffac9bb0000 479232 C:\Windows\System32\ES.DLL 2001.12.10941.16384 (rs1_release.160715-1616) Microsoft Corporation COM+ 131795770645377076 0x7ffac9f10000 221184 C:\Windows\System32\netprofm.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Network List Manager 131795770645377076 0x7ffaca340000 1593344 C:\Windows\System32\PROPSYS.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Система страниц свойств (Майкрософт) 131795770645377076 0x7ffaca4e0000 77824 C:\Windows\SYSTEM32\wtsapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Remote Desktop Session Host Server SDK APIs 131795770645377076 0x7ffaca610000 143360 C:\Windows\system32\SAMLIB.dll 10.0.14393.82 (rs1_release.160805-1735) Microsoft Corporation SAM Library DLL 131795770645377076 0x7ffacb3f0000 163840 c:\windows\system32\DEVOBJ.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Device Information Set DLL 131795770645377076 0x7ffacb6f0000 143360 C:\Windows\SYSTEM32\gpapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиентские функции API групповой политики 131795770645377076 0x7ffacb920000 81920 C:\Windows\SYSTEM32\WLDP.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Политика блокировки Windows 131795770645377076 0x7ffacbbb0000 208896 C:\Windows\system32\rsaenh.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Enhanced Cryptographic Provider 131795770645377076 0x7ffacbd30000 229376 C:\Windows\SYSTEM32\IPHLPAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API вспомогательного приложения IP 131795770645377076 0x7ffacbd70000 659456 C:\Windows\SYSTEM32\DNSAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Динамическая библиотека API DNS-клиента 131795770645377076 0x7ffacbe20000 53248 C:\Windows\SYSTEM32\netutils.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API Helpers DLL 131795770645377076 0x7ffacbe40000 126976 C:\Windows\system32\USERENV.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Userenv 131795770645377076 0x7ffacbfb0000 376832 C:\Windows\system32\mswsock.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширение поставщика службы API Microsoft Windows Sockets 2.0 131795770645377076 0x7ffacc150000 94208 C:\Windows\SYSTEM32\CRYPTSP.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Cryptographic Service Provider API 131795770645377076 0x7ffacc170000 45056 C:\Windows\SYSTEM32\CRYPTBASE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base cryptographic API DLL 131795770645377076 0x7ffacc1b0000 126976 C:\Windows\SYSTEM32\JoinUtil.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Join Utility DLL 131795770645377076 0x7ffacc350000 180224 C:\Windows\system32\sspicli.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Security Support Provider Interface 131795770645377076 0x7ffacc520000 622592 C:\Windows\SYSTEM32\sxs.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Fusion 2.5 131795770645377076 0x7ffacc5c0000 352256 C:\Windows\SYSTEM32\WINSTA.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Winstation Library 131795770645377076 0x7ffacc620000 176128 C:\Windows\SYSTEM32\bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795770645377076 0x7ffacc6e0000 61440 C:\Windows\System32\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795770645377076 0x7ffacc6f0000 311296 C:\Windows\System32\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795770645377076 0x7ffacc740000 81920 C:\Windows\System32\profapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Profile Basic API 131795770645377076 0x7ffacc760000 65536 C:\Windows\System32\MSASN1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ASN.1 Runtime APIs 131795770645377076 0x7ffacc8f0000 1003520 C:\Windows\System32\ucrtbase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645377076 0x7ffacc9f0000 434176 C:\Windows\System32\bcryptPrimitives.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Cryptographic Primitives Library 131795770645377076 0x7ffacca60000 122880 C:\Windows\System32\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795770645377076 0x7ffacca80000 348160 C:\Windows\System32\WINTRUST.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation Microsoft Trust Verification APIs 131795770645377076 0x7ffaccae0000 692224 C:\Windows\System32\shcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795770645377076 0x7ffacd270000 2215936 C:\Windows\System32\KERNELBASE.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645377076 0x7ffacd490000 1871872 C:\Windows\System32\CRYPT32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API32 криптографии 131795770645377076 0x7ffacd710000 638976 C:\Windows\System32\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645377076 0x7ffacd7b0000 270336 C:\Windows\System32\cfgmgr32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Configuration Manager DLL 131795770645377076 0x7ffaced20000 782336 C:\Windows\System32\OLEAUT32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795770645377076 0x7ffacee50000 1183744 C:\Windows\System32\RPCRT4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795770645377076 0x7ffacef80000 32768 C:\Windows\System32\NSI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation NSI User-mode interface DLL 131795770645377076 0x7ffacef90000 647168 C:\Windows\System32\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795770645377076 0x7ffacf030000 651264 C:\Windows\System32\clbcatq.dll 2001.12.10941.16384 (rs1_release.160715-1616) Microsoft Corporation COM+ Configuration Catalog 131795770645377076 0x7ffacf0d0000 704512 C:\Windows\System32\KERNEL32.DLL 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645377076 0x7ffacf770000 212992 C:\Windows\System32\GDI32.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation GDI Client DLL 131795770645377076 0x7ffacf820000 434176 C:\Windows\System32\WS2_32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation 32-разрядная библиотека Windows Socket 2.0 131795770645377076 0x7ffacf8c0000 1462272 C:\Windows\System32\user32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795770645377076 0x7ffacfb30000 2916352 C:\Windows\System32\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795770645377076 0x7ffacfe20000 663552 C:\Windows\System32\ADVAPI32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795770645377076 0x7ffad0210000 364544 C:\Windows\System32\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795770645377076 0x7ffad0270000 1908736 C:\Windows\SYSTEM32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 29 1248 580 4 00000000:000003e7 131765776322176070 0 0 1 Обязательная метка\Обязательный уровень системы NT AUTHORITY\СИСТЕМА spoolsv.exe C:\Windows\System32\spoolsv.exe C:\Windows\System32\spoolsv.exe Microsoft Corporation 10.0.14393.0 (rs1_release.160715-1616) Диспетчер очереди печати 131795770645377182 0x7ff639680000 819200 C:\Windows\System32\spoolsv.exe 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Диспетчер очереди печати 131795770645377182 0x7ffab8a60000 3346432 C:\Windows\system32\spool\DRIVERS\x64\3\PrintConfig.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Пользовательский интерфейс PrintConfig 131795770645377182 0x7ffaba980000 815104 C:\Windows\System32\jscript.dll 5.812.10240.16384 Microsoft Corporation Microsoft ® JScript 131795770645377182 0x7ffabae60000 77824 C:\Windows\System32\DEVRTL.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Device Management Run Time Library 131795770645377182 0x7ffabb7d0000 851968 C:\Windows\System32\win32spl.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик печати с исполнением на стороне клиента 131795770645377182 0x7ffabbd40000 176128 C:\Windows\SYSTEM32\prntvpt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Print Ticket Services Module 131795770645377182 0x7ffabbd70000 3346432 C:\Windows\System32\DriverStore\FileRepository\prnms003.inf_amd64_53d78f68bc1697cc\Amd64\PrintConfig.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Пользовательский интерфейс PrintConfig 131795770645377182 0x7ffabc0c0000 118784 C:\Windows\System32\SPFILEQ.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows SPFILEQ 131795770645377182 0x7ffabc590000 118784 C:\Program Files\Windows Defender\MpOav.dll 4.10.14393.1794 (rs1_release.171008-1615) Microsoft Corporation IOfficeAntiVirus Module 131795770645377182 0x7ffabc5b0000 65536 C:\Windows\SYSTEM32\amsi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Anti-Malware Scan Interface 131795770645377182 0x7ffabc880000 73728 C:\Windows\System32\cscapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Offline Files Win32 API 131795770645377182 0x7ffabcf50000 921600 C:\Windows\System32\drvstore.dll 10.0.14393.351 (rs1_release_inmarket.161014-1755) Microsoft Corporation Driver Store API 131795770645377182 0x7ffabd040000 77824 C:\Windows\System32\fdPnp.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Pnp Provider Dll 131795770645377182 0x7ffabd060000 610304 C:\Windows\System32\WSDMon.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Диспетчер порта принтера WSD 131795770645377182 0x7ffabd100000 348160 C:\Windows\System32\usbmon.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Standard Dynamic Printing Port Monitor DLL 131795770645377182 0x7ffabd160000 86016 C:\Windows\System32\wsnmp32.dll 10.0.14393.2189 (rs1_release.180329-1711) Microsoft Corporation Microsoft WinSNMP v2.0 Manager API 131795770645377182 0x7ffabd180000 548864 C:\Windows\system32\winspool.drv 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Драйвер диспетчера очереди Windows 131795770645377182 0x7ffabd2a0000 1159168 C:\Windows\System32\localspl.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Библиотека локального диспетчера очереди 131795770645377182 0x7ffabde60000 237568 C:\Windows\System32\tcpmon.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека монитора портов TCP/IP 131795770645377182 0x7ffabe3f0000 65536 C:\Windows\system32\spool\PRTPROCS\x64\winprint.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Windows Print Processor DLL 131795770645377182 0x7ffabe6c0000 77824 C:\Windows\System32\PrintIsolationProxy.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Print Sandbox COM Proxy Stub 131795770645377182 0x7ffabe8a0000 49152 C:\Windows\System32\snmpapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SNMP Utility Library 131795770645377182 0x7ffabe980000 114688 C:\Windows\System32\SPOOLSS.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Spooler SubSystem DLL 131795770645377182 0x7ffabef80000 69632 C:\Windows\System32\sfc_os.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows File Protection 131795770645377182 0x7ffabf330000 2457600 C:\Windows\System32\msxml6.dll 6.30.14393.2156 Microsoft Corporation MSXML 6.0 131795770645377182 0x7ffabf5d0000 2924544 C:\Windows\SYSTEM32\wininet.dll 11.00.14393.447 (rs1_release_inmarket.161102-0100) Microsoft Corporation Расширения Интернета для Win32 131795770645377182 0x7ffabff10000 155648 C:\Windows\System32\srvcli.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Server Service Client DLL 131795770645377182 0x7ffac0af0000 114688 C:\Windows\System32\ATL.DLL 3.05.2284 Microsoft Corporation ATL Module for Windows XP (Unicode) 131795770645377182 0x7ffac1f00000 65536 C:\Windows\System32\FXSMON.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Fax Print Monitor 131795770645377182 0x7ffac1f30000 118784 C:\Windows\System32\SPINF.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows SPINF 131795770645377182 0x7ffac2b80000 40960 C:\Windows\SYSTEM32\VERSION.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Version Checking and File Installation Libraries 131795770645377182 0x7ffac34e0000 1843200 C:\Windows\SYSTEM32\urlmon.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширения OLE32 для Win32 131795770645377182 0x7ffac3810000 167936 C:\Windows\System32\cabinet.dll 5.00 (rs1_release.160715-1616) Microsoft Corporation Microsoft® Cabinet File API 131795770645377182 0x7ffac3cb0000 2772992 C:\Windows\SYSTEM32\iertutil.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служебная программа времени выполнения для Internet Explorer 131795770645377182 0x7ffac4e90000 32768 C:\Windows\System32\wshirda.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Sockets Helper DLL 131795770645377182 0x7ffac60e0000 221184 C:\Windows\System32\XmlLite.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft XmlLite Library 131795770645377182 0x7ffac6610000 40960 C:\Windows\System32\rasadhlp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Remote Access AutoDial Helper 131795770645377182 0x7ffac6710000 172032 C:\Windows\System32\FunDisc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL обнаружения функции 131795770645377182 0x7ffac6750000 1380352 C:\Windows\System32\webservices.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Среда выполнения веб-служб Windows 131795770645377182 0x7ffac68b0000 696320 C:\Windows\System32\wsdapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Веб-службы для библиотек DLL API-интерфейсов устройств 131795770645377182 0x7ffac6990000 69632 C:\Windows\System32\deviceassociation.dll 10.0.14393.82 (rs1_release.160805-1735) Microsoft Corporation Device Association Client DLL 131795770645377182 0x7ffac69c0000 839680 C:\Windows\System32\WINHTTP.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Службы HTTP Windows 131795770645377182 0x7ffac6ba0000 49152 C:\Windows\System32\Secur32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Security Support Provider Interface 131795770645377182 0x7ffac7e00000 196608 C:\Windows\System32\inetpp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL Internet Print Provider 131795770645377182 0x7ffac8420000 434176 C:\Windows\System32\fwpuclnt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API пользовательского режима FWP/IPsec 131795770645377182 0x7ffac8810000 45056 C:\Windows\SYSTEM32\WINNSI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Network Store Information RPC interface 131795770645377182 0x7ffac9290000 40960 C:\Windows\System32\DSROLE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DS Setup Client DLL 131795770645377182 0x7ffaca4e0000 77824 C:\Windows\System32\WTSAPI32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Remote Desktop Session Host Server SDK APIs 131795770645377182 0x7ffacadf0000 499712 C:\Windows\system32\apphelp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиентская библиотека совместимости приложений 131795770645377182 0x7ffacb360000 176128 C:\Windows\System32\fwbase.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Firewall Base DLL 131795770645377182 0x7ffacb3f0000 163840 C:\Windows\System32\DEVOBJ.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Device Information Set DLL 131795770645377182 0x7ffacb420000 204800 C:\Windows\SYSTEM32\ntmarta.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик Windows NT MARTA 131795770645377182 0x7ffacb460000 548864 C:\Windows\System32\FirewallAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API брандмауэра Windows 131795770645377182 0x7ffacb6f0000 143360 C:\Windows\SYSTEM32\gpapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиентские функции API групповой политики 131795770645377182 0x7ffacbbb0000 208896 C:\Windows\system32\rsaenh.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Enhanced Cryptographic Provider 131795770645377182 0x7ffacbd30000 229376 C:\Windows\SYSTEM32\IPHLPAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API вспомогательного приложения IP 131795770645377182 0x7ffacbd70000 659456 C:\Windows\System32\DNSAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Динамическая библиотека API DNS-клиента 131795770645377182 0x7ffacbe20000 53248 C:\Windows\System32\netutils.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API Helpers DLL 131795770645377182 0x7ffacbe40000 126976 C:\Windows\System32\USERENV.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Userenv 131795770645377182 0x7ffacbfb0000 376832 C:\Windows\system32\mswsock.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширение поставщика службы API Microsoft Windows Sockets 2.0 131795770645377182 0x7ffacc150000 94208 C:\Windows\System32\CRYPTSP.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Cryptographic Service Provider API 131795770645377182 0x7ffacc170000 45056 C:\Windows\System32\CRYPTBASE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base cryptographic API DLL 131795770645377182 0x7ffacc350000 180224 C:\Windows\System32\SspiCli.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Security Support Provider Interface 131795770645377182 0x7ffacc520000 622592 C:\Windows\SYSTEM32\sxs.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Fusion 2.5 131795770645377182 0x7ffacc5c0000 352256 C:\Windows\System32\WINSTA.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Winstation Library 131795770645377182 0x7ffacc620000 176128 C:\Windows\System32\bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795770645377182 0x7ffacc6e0000 61440 C:\Windows\System32\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795770645377182 0x7ffacc6f0000 311296 C:\Windows\System32\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795770645377182 0x7ffacc740000 81920 C:\Windows\System32\profapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Profile Basic API 131795770645377182 0x7ffacc760000 65536 C:\Windows\System32\MSASN1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ASN.1 Runtime APIs 131795770645377182 0x7ffacc8f0000 1003520 C:\Windows\System32\ucrtbase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645377182 0x7ffacc9f0000 434176 C:\Windows\System32\bcryptPrimitives.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Cryptographic Primitives Library 131795770645377182 0x7ffacca60000 122880 C:\Windows\System32\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795770645377182 0x7ffacca80000 348160 C:\Windows\System32\WINTRUST.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation Microsoft Trust Verification APIs 131795770645377182 0x7ffaccae0000 692224 C:\Windows\System32\shcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795770645377182 0x7ffaccb90000 7180288 C:\Windows\System32\windows.storage.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API хранения Microsoft WinRT 131795770645377182 0x7ffacd270000 2215936 C:\Windows\System32\KERNELBASE.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645377182 0x7ffacd490000 1871872 C:\Windows\System32\CRYPT32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API32 криптографии 131795770645377182 0x7ffacd710000 638976 C:\Windows\System32\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645377182 0x7ffacd7b0000 270336 C:\Windows\System32\cfgmgr32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Configuration Manager DLL 131795770645377182 0x7ffacd810000 22056960 C:\Windows\System32\SHELL32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Общая библиотека оболочки Windows 131795770645377182 0x7ffaced20000 782336 C:\Windows\System32\OLEAUT32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795770645377182 0x7ffacee50000 1183744 C:\Windows\System32\RPCRT4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795770645377182 0x7ffacef80000 32768 C:\Windows\System32\NSI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation NSI User-mode interface DLL 131795770645377182 0x7ffacef90000 647168 C:\Windows\System32\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795770645377182 0x7ffacf030000 651264 C:\Windows\System32\clbcatq.dll 2001.12.10941.16384 (rs1_release.160715-1616) Microsoft Corporation COM+ Configuration Catalog 131795770645377182 0x7ffacf0d0000 704512 C:\Windows\System32\KERNEL32.DLL 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645377182 0x7ffacf340000 4362240 C:\Windows\System32\SETUPAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Setup API 131795770645377182 0x7ffacf770000 212992 C:\Windows\System32\GDI32.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation GDI Client DLL 131795770645377182 0x7ffacf820000 434176 C:\Windows\System32\WS2_32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation 32-разрядная библиотека Windows Socket 2.0 131795770645377182 0x7ffacf8c0000 1462272 C:\Windows\System32\USER32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795770645377182 0x7ffacfb30000 2916352 C:\Windows\System32\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795770645377182 0x7ffacfe20000 663552 C:\Windows\System32\advapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795770645377182 0x7ffad0070000 1277952 C:\Windows\System32\ole32.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft OLE для Windows 131795770645377182 0x7ffad01b0000 335872 C:\Windows\System32\SHLWAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека небольших программ оболочки 131795770645377182 0x7ffad0210000 364544 C:\Windows\System32\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795770645377182 0x7ffad0270000 1908736 C:\Windows\SYSTEM32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 30 1512 580 4 00000000:000003e5 131765776336551242 0 0 1 Обязательная метка\Обязательный уровень системы NT AUTHORITY\LOCAL SERVICE svchost.exe C:\Windows\system32\svchost.exe C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation Microsoft Corporation 10.0.14393.0 (rs1_release.160715-1616) Хост-процесс для служб Windows 131795770645377290 0x7ff718c20000 57344 C:\Windows\system32\svchost.exe 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Хост-процесс для служб Windows 131795770645377290 0x7ffabe9f0000 258048 c:\windows\system32\ssdpsrv.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL службы SSDP 131795770645377290 0x7ffac3f60000 225280 c:\windows\system32\FWPolicyIOMgr.dll 10.0.14393.2189 (rs1_release.180329-1711) Microsoft Corporation FwPolicyIoMgr DLL 131795770645377290 0x7ffac60e0000 221184 C:\Windows\System32\XmlLite.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft XmlLite Library 131795770645377290 0x7ffac6400000 53248 c:\windows\system32\HTTPAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation HTTP Protocol Stack API 131795770645377290 0x7ffac66c0000 32768 C:\Windows\system32\wship6.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL помощника Winsock2 (TL/IPv6) 131795770645377290 0x7ffac66d0000 32768 C:\Windows\system32\wshtcpip.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL помощника службы Winsock2 (TL/IPv4) 131795770645377290 0x7ffac6700000 40960 C:\Windows\system32\wshqos.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL помощника службы QoS Winsock2 131795770645377290 0x7ffac6710000 172032 C:\Windows\System32\FunDisc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL обнаружения функции 131795770645377290 0x7ffac6750000 1380352 c:\windows\system32\webservices.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Среда выполнения веб-служб Windows 131795770645377290 0x7ffac68b0000 696320 c:\windows\system32\wsdapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Веб-службы для библиотек DLL API-интерфейсов устройств 131795770645377290 0x7ffac69b0000 57344 c:\windows\system32\fdrespub.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служба публикации ресурсов обнаружения функции 131795770645377290 0x7ffac69c0000 839680 c:\windows\system32\WINHTTP.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Службы HTTP Windows 131795770645377290 0x7ffac83d0000 106496 C:\Windows\SYSTEM32\dhcpcsvc.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служба DHCP-клиента 131795770645377290 0x7ffac83f0000 90112 C:\Windows\SYSTEM32\dhcpcsvc6.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиент DHCPv6 131795770645377290 0x7ffac8810000 45056 C:\Windows\SYSTEM32\WINNSI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Network Store Information RPC interface 131795770645377290 0x7ffac90b0000 90112 c:\windows\system32\wkscli.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Workstation Service Client DLL 131795770645377290 0x7ffacb360000 176128 c:\windows\system32\fwbase.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Firewall Base DLL 131795770645377290 0x7ffacb460000 548864 c:\windows\system32\FirewallAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API брандмауэра Windows 131795770645377290 0x7ffacb920000 81920 C:\Windows\SYSTEM32\WLDP.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Политика блокировки Windows 131795770645377290 0x7ffacbbb0000 208896 C:\Windows\system32\rsaenh.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Enhanced Cryptographic Provider 131795770645377290 0x7ffacbd30000 229376 c:\windows\system32\IPHLPAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API вспомогательного приложения IP 131795770645377290 0x7ffacbe20000 53248 c:\windows\system32\netutils.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API Helpers DLL 131795770645377290 0x7ffacbfb0000 376832 C:\Windows\system32\mswsock.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширение поставщика службы API Microsoft Windows Sockets 2.0 131795770645377290 0x7ffacc150000 94208 c:\windows\system32\CRYPTSP.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Cryptographic Service Provider API 131795770645377290 0x7ffacc170000 45056 C:\Windows\system32\CRYPTBASE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base cryptographic API DLL 131795770645377290 0x7ffacc350000 180224 C:\Windows\system32\sspicli.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Security Support Provider Interface 131795770645377290 0x7ffacc620000 176128 c:\windows\system32\bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795770645377290 0x7ffacc6e0000 61440 C:\Windows\System32\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795770645377290 0x7ffacc6f0000 311296 C:\Windows\System32\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795770645377290 0x7ffacc760000 65536 C:\Windows\System32\MSASN1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ASN.1 Runtime APIs 131795770645377290 0x7ffacc8f0000 1003520 C:\Windows\System32\ucrtbase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645377290 0x7ffacc9f0000 434176 C:\Windows\System32\bcryptPrimitives.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Cryptographic Primitives Library 131795770645377290 0x7ffacca60000 122880 C:\Windows\System32\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795770645377290 0x7ffacca80000 348160 C:\Windows\System32\WINTRUST.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation Microsoft Trust Verification APIs 131795770645377290 0x7ffacd270000 2215936 C:\Windows\System32\KERNELBASE.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645377290 0x7ffacd490000 1871872 C:\Windows\System32\CRYPT32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API32 криптографии 131795770645377290 0x7ffacee50000 1183744 C:\Windows\System32\RPCRT4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795770645377290 0x7ffacef80000 32768 C:\Windows\System32\NSI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation NSI User-mode interface DLL 131795770645377290 0x7ffacef90000 647168 C:\Windows\System32\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795770645377290 0x7ffacf030000 651264 C:\Windows\System32\clbcatq.dll 2001.12.10941.16384 (rs1_release.160715-1616) Microsoft Corporation COM+ Configuration Catalog 131795770645377290 0x7ffacf0d0000 704512 C:\Windows\System32\KERNEL32.DLL 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645377290 0x7ffacf770000 212992 C:\Windows\System32\GDI32.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation GDI Client DLL 131795770645377290 0x7ffacf820000 434176 C:\Windows\System32\WS2_32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation 32-разрядная библиотека Windows Socket 2.0 131795770645377290 0x7ffacf8c0000 1462272 C:\Windows\System32\user32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795770645377290 0x7ffacfb30000 2916352 C:\Windows\System32\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795770645377290 0x7ffad0210000 364544 C:\Windows\System32\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795770645377290 0x7ffad0270000 1908736 C:\Windows\SYSTEM32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 31 1556 580 4 00000000:000003e7 131765776339471770 0 0 1 Обязательная метка\Обязательный уровень системы NT AUTHORITY\СИСТЕМА svchost.exe C:\Windows\System32\svchost.exe C:\Windows\System32\svchost.exe -k utcsvc Microsoft Corporation 10.0.14393.0 (rs1_release.160715-1616) Хост-процесс для служб Windows 131795770645377395 0x272f9bf0000 12288 C:\Windows\SYSTEM32\sfc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows File Protection 131795770645377395 0x7ff718c20000 57344 C:\Windows\System32\svchost.exe 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Хост-процесс для служб Windows 131795770645377395 0x7ffab93b0000 897024 C:\Windows\System32\TokenBroker.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Token Broker 131795770645377395 0x7ffabaab0000 94208 C:\Windows\SYSTEM32\profext.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation profext 131795770645377395 0x7ffabae60000 77824 C:\Windows\SYSTEM32\DEVRTL.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Device Management Run Time Library 131795770645377395 0x7ffabbd10000 65536 C:\Windows\System32\TOKENBINDING.dll 10.0.14393.1593 (rs1_release.170731-1934) Microsoft Corporation Token Binding Protocol 131795770645377395 0x7ffabca50000 819200 C:\Windows\System32\Windows.Security.Authentication.Web.Core.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Token Broker WinRT API 131795770645377395 0x7ffabcf50000 921600 C:\Windows\System32\drvstore.dll 10.0.14393.351 (rs1_release_inmarket.161014-1755) Microsoft Corporation Driver Store API 131795770645377395 0x7ffabe850000 155648 C:\Windows\System32\IDStore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Identity Store 131795770645377395 0x7ffabef80000 69632 C:\Windows\SYSTEM32\sfc_os.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows File Protection 131795770645377395 0x7ffabefd0000 258048 C:\Windows\SYSTEM32\aepic.dll 10.0.17060.1029 (WinBuild.160101.0800) Microsoft Corporation Application Experience Program Cache 131795770645377395 0x7ffabf140000 176128 C:\Windows\System32\CourtesyEngine.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Feedback Courtesy Engine DLL Server 131795770645377395 0x7ffabf1d0000 192512 C:\Windows\System32\cryptnet.dll 10.0.14393.2035 (rs1_release_inmarket.180110-1910) Microsoft Corporation Crypto Network Related API 131795770645377395 0x7ffabfbe0000 1011712 C:\Windows\System32\Windows.Security.Authentication.OnlineId.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation Windows Runtime OnlineId Authentication DLL 131795770645377395 0x7ffabfde0000 143360 c:\windows\system32\CRYPTXML.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API-интерфейс XML DigSig 131795770645377395 0x7ffabff60000 135168 C:\Windows\system32\ncryptsslp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft SChannel Provider 131795770645377395 0x7ffac05f0000 94208 C:\Windows\System32\wwapi.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation WWAN API 131795770645377395 0x7ffac0910000 724992 C:\Windows\System32\Windows.Networking.Connectivity.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Networking Connectivity Runtime DLL 131795770645377395 0x7ffac09d0000 884736 C:\Windows\System32\wpnapps.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Приложения для push-уведомлений Windows 131795770645377395 0x7ffac0ad0000 86016 C:\Windows\SYSTEM32\mskeyprotect.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик защиты ключей (Майкрософт) 131795770645377395 0x7ffac0bf0000 3559424 C:\Windows\System32\ActXPrxy.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation ActiveX Interface Marshaling Library 131795770645377395 0x7ffac1d60000 589824 c:\windows\system32\webio.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API протоколов передачи по Веб 131795770645377395 0x7ffac20d0000 110592 C:\Windows\System32\RMCLIENT.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Resource Manager Client 131795770645377395 0x7ffac23c0000 331776 C:\Windows\System32\OneCoreCommonProxyStub.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation OneCore Common Proxy Stub 131795770645377395 0x7ffac2590000 659456 C:\Windows\System32\FlightSettings.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Параметры цикла тестирования 131795770645377395 0x7ffac2700000 98304 C:\Windows\SYSTEM32\Netapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API DLL 131795770645377395 0x7ffac2750000 106496 C:\Windows\System32\bcd.dll 10.0.14393.1794 (rs1_release.171008-1615) Microsoft Corporation BCD DLL 131795770645377395 0x7ffac2b30000 286720 C:\Windows\System32\usermgrproxy.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation UserMgrProxy 131795770645377395 0x7ffac3cb0000 2772992 C:\Windows\SYSTEM32\iertutil.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служебная программа времени выполнения для Internet Explorer 131795770645377395 0x7ffac4000000 274432 C:\Windows\SYSTEM32\policymanager.dll 10.0.14393.2035 (rs1_release_inmarket.180110-1910) Microsoft Corporation Policy Manager DLL 131795770645377395 0x7ffac4070000 499712 C:\Windows\SYSTEM32\DSREG.DLL 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation AD/AAD User Device Registration 131795770645377395 0x7ffac4450000 86016 C:\Windows\SYSTEM32\usermgrcli.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation UserMgr API DLL 131795770645377395 0x7ffac5fd0000 1056768 c:\windows\system32\WindowsPerformanceRecorderControl.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Windows Performance Recorder Control Library 131795770645377395 0x7ffac60e0000 221184 c:\windows\system32\XmlLite.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft XmlLite Library 131795770645377395 0x7ffac6210000 2007040 c:\windows\system32\diagtrack.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Диагностическое отслеживание Microsoft Windows 131795770645377395 0x7ffac6610000 40960 C:\Windows\System32\rasadhlp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Remote Access AutoDial Helper 131795775838362137 0x7ffac66a0000 86016 C:\Windows\System32\OnDemandConnRouteHelper.dll 10.0.14393.351 (rs1_release_inmarket.161014-1755) Microsoft Corporation On Demand Connctiond Route Helper 131795770645377395 0x7ffac6750000 1380352 c:\windows\system32\webservices.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Среда выполнения веб-служб Windows 131795770645377395 0x7ffac69c0000 839680 c:\windows\system32\WINHTTP.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Службы HTTP Windows 131795770645377395 0x7ffac79c0000 57344 C:\Windows\System32\npmproxy.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Network List Manager Proxy 131795770645377395 0x7ffac7aa0000 401408 C:\Windows\SYSTEM32\wlanapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows WLAN AutoConfig Client Side API DLL 131795770645377395 0x7ffac83d0000 106496 C:\Windows\SYSTEM32\dhcpcsvc.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служба DHCP-клиента 131795770645377395 0x7ffac83f0000 90112 C:\Windows\SYSTEM32\dhcpcsvc6.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиент DHCPv6 131795775839498740 0x7ffac8420000 434176 C:\Windows\System32\FWPUCLNT.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API пользовательского режима FWP/IPsec 131795770645377395 0x7ffac8540000 286720 C:\Windows\System32\vaultcli.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиентская библиотека хранилища учетных данных 131795770645377395 0x7ffac8810000 45056 C:\Windows\SYSTEM32\WINNSI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Network Store Information RPC interface 131795770645377395 0x7ffac8cf0000 815104 C:\Windows\System32\taskschd.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Task Scheduler COM API 131795770645377395 0x7ffac8dc0000 167936 C:\Windows\System32\dbgcore.DLL 10.0.14321.1024 (debuggers(dbg).160715-1616) Microsoft Windows Core Debugging Helpers 131795770645377395 0x7ffac8df0000 1646592 C:\Windows\system32\dbghelp.dll 10.0.14321.1024 (rs1_release.160715-1616) Microsoft Windows Image Helper 131795770645377395 0x7ffac90b0000 90112 C:\Windows\System32\wkscli.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Workstation Service Client DLL 131795770645377395 0x7ffac92e0000 1269760 C:\Windows\System32\WinTypes.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL основных типов Windows 131795770645377395 0x7ffaca4e0000 77824 C:\Windows\SYSTEM32\wtsapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Remote Desktop Session Host Server SDK APIs 131795770645377395 0x7ffaca610000 143360 C:\Windows\System32\SAMLIB.dll 10.0.14393.82 (rs1_release.160805-1735) Microsoft Corporation SAM Library DLL 131795770645377395 0x7ffacb140000 593920 c:\windows\system32\msvcp110_win.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Microsoft® STL110 C++ Runtime Library 131795770645377395 0x7ffacb1e0000 1163264 C:\Windows\System32\twinapi.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation twinapi.appcore 131795770645377395 0x7ffacb420000 204800 C:\Windows\SYSTEM32\ntmarta.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик Windows NT MARTA 131795770645377395 0x7ffacb6f0000 143360 C:\Windows\SYSTEM32\gpapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиентские функции API групповой политики 131795770645377395 0x7ffacb920000 81920 C:\Windows\SYSTEM32\WLDP.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Политика блокировки Windows 131795770645377395 0x7ffacbaf0000 495616 C:\Windows\system32\schannel.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик безопасности TLS/SSL 131795770645377395 0x7ffacbbb0000 208896 C:\Windows\system32\rsaenh.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Enhanced Cryptographic Provider 131795770645377395 0x7ffacbbf0000 40960 C:\Windows\System32\DPAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Data Protection API 131795770645377395 0x7ffacbd30000 229376 C:\Windows\System32\IPHLPAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API вспомогательного приложения IP 131795770645377395 0x7ffacbd70000 659456 c:\windows\system32\DNSAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Динамическая библиотека API DNS-клиента 131795770645377395 0x7ffacbe20000 53248 C:\Windows\System32\netutils.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API Helpers DLL 131795770645377395 0x7ffacbe40000 126976 c:\windows\system32\USERENV.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Userenv 131795770645377395 0x7ffacbfb0000 376832 C:\Windows\system32\mswsock.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширение поставщика службы API Microsoft Windows Sockets 2.0 131795770645377395 0x7ffacc150000 94208 C:\Windows\SYSTEM32\cryptsp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Cryptographic Service Provider API 131795770645377395 0x7ffacc170000 45056 C:\Windows\System32\CRYPTBASE.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base cryptographic API DLL 131795770645377395 0x7ffacc1f0000 241664 C:\Windows\SYSTEM32\NTASN1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft ASN.1 API 131795770645377395 0x7ffacc230000 155648 C:\Windows\SYSTEM32\ncrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Маршрутизатор Windows NCrypt 131795770645377395 0x7ffacc350000 180224 C:\Windows\SYSTEM32\SspiCli.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Security Support Provider Interface 131795770645377395 0x7ffacc5c0000 352256 C:\Windows\SYSTEM32\WINSTA.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Winstation Library 131795770645377395 0x7ffacc620000 176128 c:\windows\system32\bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795770645377395 0x7ffacc6e0000 61440 C:\Windows\System32\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795770645377395 0x7ffacc6f0000 311296 C:\Windows\System32\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795770645377395 0x7ffacc740000 81920 C:\Windows\System32\profapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Profile Basic API 131795770645377395 0x7ffacc760000 65536 C:\Windows\System32\MSASN1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ASN.1 Runtime APIs 131795770645377395 0x7ffacc8f0000 1003520 C:\Windows\System32\ucrtbase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645377395 0x7ffacc9f0000 434176 C:\Windows\System32\bcryptPrimitives.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Cryptographic Primitives Library 131795770645377395 0x7ffacca60000 122880 C:\Windows\System32\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795770645377395 0x7ffacca80000 348160 C:\Windows\System32\WINTRUST.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation Microsoft Trust Verification APIs 131795770645377395 0x7ffaccae0000 692224 C:\Windows\System32\shcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795770645377395 0x7ffaccb90000 7180288 C:\Windows\System32\windows.storage.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API хранения Microsoft WinRT 131795770645377395 0x7ffacd270000 2215936 C:\Windows\System32\KERNELBASE.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645377395 0x7ffacd490000 1871872 C:\Windows\System32\CRYPT32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API32 криптографии 131795770645377395 0x7ffacd710000 638976 C:\Windows\System32\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645377395 0x7ffacd7b0000 270336 C:\Windows\System32\cfgmgr32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Configuration Manager DLL 131795770645377395 0x7ffacd810000 22056960 C:\Windows\System32\SHELL32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Общая библиотека оболочки Windows 131795770645377395 0x7ffaced20000 782336 C:\Windows\System32\OLEAUT32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795770645377395 0x7ffacede0000 450560 C:\Windows\System32\coml2.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft COM for Windows 131795770645377395 0x7ffacee50000 1183744 C:\Windows\System32\RPCRT4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795770645377395 0x7ffacef80000 32768 C:\Windows\System32\NSI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation NSI User-mode interface DLL 131795770645377395 0x7ffacef90000 647168 C:\Windows\System32\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795770645377395 0x7ffacf030000 651264 C:\Windows\System32\clbcatq.dll 2001.12.10941.16384 (rs1_release.160715-1616) Microsoft Corporation COM+ Configuration Catalog 131795770645377395 0x7ffacf0d0000 704512 C:\Windows\System32\KERNEL32.DLL 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645377395 0x7ffacf340000 4362240 C:\Windows\System32\SETUPAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Setup API 131795770645377395 0x7ffacf770000 212992 C:\Windows\System32\GDI32.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation GDI Client DLL 131795770645377395 0x7ffacf820000 434176 C:\Windows\System32\WS2_32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation 32-разрядная библиотека Windows Socket 2.0 131795770645377395 0x7ffacf8c0000 1462272 C:\Windows\System32\user32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795770645377395 0x7ffacfb30000 2916352 C:\Windows\System32\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795770645377395 0x7ffacfe20000 663552 C:\Windows\System32\advapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795770645377395 0x7ffad0070000 1277952 C:\Windows\System32\OLE32.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft OLE для Windows 131795770645377395 0x7ffad01b0000 335872 C:\Windows\System32\SHLWAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека небольших программ оболочки 131795770645377395 0x7ffad0210000 364544 C:\Windows\System32\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795770645377395 0x7ffad0270000 1908736 C:\Windows\SYSTEM32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 32 1636 580 4 00000000:000003e7 131765776343009549 0 0 1 Обязательная метка\Обязательный уровень системы NT AUTHORITY\СИСТЕМА svchost.exe C:\Windows\system32\svchost.exe C:\Windows\system32\svchost.exe -k appmodel Microsoft Corporation 10.0.14393.0 (rs1_release.160715-1616) Хост-процесс для служб Windows 131795770645377489 0x7ff718c20000 57344 C:\Windows\system32\svchost.exe 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Хост-процесс для служб Windows 131795770645377489 0x7ffac0bf0000 3559424 C:\Windows\System32\ActXPrxy.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation ActiveX Interface Marshaling Library 131795770645377489 0x7ffac34e0000 1843200 c:\windows\system32\urlmon.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширения OLE32 для Win32 131795770645377489 0x7ffac3840000 3088384 c:\windows\system32\ESENT.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширяемая подсистема хранения данных ESE для Microsoft(R) Windows(R) 131795770645377489 0x7ffac3c10000 593920 c:\windows\system32\tileobjserver.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Сервер моделей данных плиток 131795770645377489 0x7ffac3cb0000 2772992 c:\windows\system32\iertutil.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служебная программа времени выполнения для Internet Explorer 131795770645377489 0x7ffac42a0000 659456 c:\windows\system32\StateRepository.Core.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation StateRepository Core 131795770645377489 0x7ffac46d0000 4161536 c:\windows\system32\windows.staterepository.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Сервер Windows StateRepository API Server 131795770645377489 0x7ffac6ac0000 835584 C:\Windows\System32\Windows.UI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Runtime UI Foundation DLL 131795780599947775 0x7ffac7580000 1077248 C:\Windows\System32\MrmCoreR.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Windows MRM 131795770645377489 0x7ffaca4e0000 77824 C:\Windows\SYSTEM32\wtsapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Remote Desktop Session Host Server SDK APIs 131795780600943570 0x7ffaca570000 421888 C:\Windows\System32\BCP47Langs.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation BCP47 Language Classes 131795770645377489 0x7ffacb140000 593920 c:\windows\system32\msvcp110_win.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Microsoft® STL110 C++ Runtime Library 131795770645377489 0x7ffacb920000 81920 C:\Windows\SYSTEM32\WLDP.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Политика блокировки Windows 131795770645377489 0x7ffacbe40000 126976 C:\Windows\system32\USERENV.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Userenv 131795770645377489 0x7ffacc170000 45056 C:\Windows\system32\CRYPTBASE.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base cryptographic API DLL 131795770645377489 0x7ffacc350000 180224 C:\Windows\SYSTEM32\SspiCli.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Security Support Provider Interface 131795770645377489 0x7ffacc5c0000 352256 C:\Windows\SYSTEM32\WINSTA.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Winstation Library 131795770645377489 0x7ffacc620000 176128 C:\Windows\system32\Bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795770645377489 0x7ffacc6e0000 61440 C:\Windows\System32\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795770645377489 0x7ffacc6f0000 311296 C:\Windows\System32\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795770645377489 0x7ffacc740000 81920 C:\Windows\System32\profapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Profile Basic API 131795770645377489 0x7ffacc760000 65536 C:\Windows\System32\MSASN1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ASN.1 Runtime APIs 131795770645377489 0x7ffacc8f0000 1003520 C:\Windows\System32\ucrtbase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645377489 0x7ffacc9f0000 434176 C:\Windows\System32\bcryptPrimitives.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Cryptographic Primitives Library 131795770645377489 0x7ffacca60000 122880 C:\Windows\System32\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795770645377489 0x7ffacca80000 348160 C:\Windows\System32\WINTRUST.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation Microsoft Trust Verification APIs 131795770645377489 0x7ffaccae0000 692224 C:\Windows\System32\shcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795770645377489 0x7ffaccb90000 7180288 C:\Windows\System32\windows.storage.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API хранения Microsoft WinRT 131795770645377489 0x7ffacd270000 2215936 C:\Windows\System32\KERNELBASE.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645377489 0x7ffacd490000 1871872 C:\Windows\System32\CRYPT32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API32 криптографии 131795770645377489 0x7ffacd710000 638976 C:\Windows\System32\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645377489 0x7ffaced20000 782336 C:\Windows\System32\OLEAUT32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795770645377489 0x7ffacee50000 1183744 C:\Windows\System32\RPCRT4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795770645377489 0x7ffacef90000 647168 C:\Windows\System32\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795770645377489 0x7ffacf030000 651264 C:\Windows\System32\clbcatq.dll 2001.12.10941.16384 (rs1_release.160715-1616) Microsoft Corporation COM+ Configuration Catalog 131795770645377489 0x7ffacf0d0000 704512 C:\Windows\System32\KERNEL32.DLL 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645377489 0x7ffacf770000 212992 C:\Windows\System32\GDI32.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation GDI Client DLL 131795770645377489 0x7ffacf8c0000 1462272 C:\Windows\System32\user32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795770645377489 0x7ffacfb30000 2916352 C:\Windows\System32\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795770645377489 0x7ffacfe20000 663552 C:\Windows\System32\advapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795770645377489 0x7ffad01b0000 335872 C:\Windows\System32\shlwapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека небольших программ оболочки 131795770645377489 0x7ffad0210000 364544 C:\Windows\System32\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795770645377489 0x7ffad0270000 1908736 C:\Windows\SYSTEM32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 33 1744 4 9 00000000:000003e7 131765776348255325 0 0 1 Обязательная метка\Обязательный уровень системы NT AUTHORITY\СИСТЕМА MemCompression MemCompression 34 2100 580 4 00000000:000003e4 131765776438403561 0 0 1 Обязательная метка\Обязательный уровень системы NT AUTHORITY\NETWORK SERVICE svchost.exe C:\Windows\system32\svchost.exe C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted Microsoft Corporation 10.0.14393.0 (rs1_release.160715-1616) Хост-процесс для служб Windows 131795770645377758 0x7ff718c20000 57344 C:\Windows\system32\svchost.exe 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Хост-процесс для служб Windows 131795770645377758 0x7ffabff90000 409600 c:\windows\system32\ipsecsvc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows IPsec SPD Server DLL 131795770645377758 0x7ffac1e00000 114688 c:\windows\system32\FwRemoteSvr.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Firewall Remote APIs Server 131795770645377758 0x7ffac3f60000 225280 c:\windows\system32\FWPolicyIOMgr.dll 10.0.14393.2189 (rs1_release.180329-1711) Microsoft Corporation FwPolicyIoMgr DLL 131795770645377758 0x7ffac83d0000 106496 C:\Windows\SYSTEM32\dhcpcsvc.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служба DHCP-клиента 131795770645377758 0x7ffac83f0000 90112 C:\Windows\SYSTEM32\dhcpcsvc6.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиент DHCPv6 131795770645377758 0x7ffac8420000 434176 c:\windows\system32\fwpuclnt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API пользовательского режима FWP/IPsec 131795770645377758 0x7ffacb360000 176128 c:\windows\system32\fwbase.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Firewall Base DLL 131795770645377758 0x7ffacb460000 548864 c:\windows\system32\FirewallAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API брандмауэра Windows 131795770645377758 0x7ffacb920000 81920 C:\Windows\SYSTEM32\WLDP.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Политика блокировки Windows 131795770645377758 0x7ffacb960000 303104 c:\windows\system32\AUTHZ.dll 10.0.14393.1737 (rs1_release_inmarket.170914-1249) Microsoft Corporation Authorization Framework 131795770645377758 0x7ffacbd30000 229376 c:\windows\system32\IPHLPAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API вспомогательного приложения IP 131795770645377758 0x7ffacbfb0000 376832 C:\Windows\system32\mswsock.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширение поставщика службы API Microsoft Windows Sockets 2.0 131795770645377758 0x7ffacc350000 180224 C:\Windows\system32\sspicli.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Security Support Provider Interface 131795770645377758 0x7ffacc620000 176128 c:\windows\system32\bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795770645377758 0x7ffacc6e0000 61440 C:\Windows\System32\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795770645377758 0x7ffacc760000 65536 C:\Windows\System32\MSASN1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ASN.1 Runtime APIs 131795770645377758 0x7ffacc8f0000 1003520 C:\Windows\System32\ucrtbase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645377758 0x7ffacc9f0000 434176 C:\Windows\System32\bcryptPrimitives.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Cryptographic Primitives Library 131795770645377758 0x7ffacca80000 348160 C:\Windows\System32\WINTRUST.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation Microsoft Trust Verification APIs 131795770645377758 0x7ffacd270000 2215936 C:\Windows\System32\KERNELBASE.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645377758 0x7ffacd490000 1871872 C:\Windows\System32\CRYPT32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API32 криптографии 131795770645377758 0x7ffacd710000 638976 C:\Windows\System32\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645377758 0x7ffaced20000 782336 C:\Windows\System32\OLEAUT32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795770645377758 0x7ffacee50000 1183744 C:\Windows\System32\RPCRT4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795770645377758 0x7ffacef80000 32768 C:\Windows\System32\NSI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation NSI User-mode interface DLL 131795770645377758 0x7ffacef90000 647168 C:\Windows\System32\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795770645377758 0x7ffacf030000 651264 C:\Windows\System32\clbcatq.dll 2001.12.10941.16384 (rs1_release.160715-1616) Microsoft Corporation COM+ Configuration Catalog 131795770645377758 0x7ffacf0d0000 704512 C:\Windows\System32\KERNEL32.DLL 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645377758 0x7ffacf820000 434176 C:\Windows\System32\WS2_32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation 32-разрядная библиотека Windows Socket 2.0 131795770645377758 0x7ffacfb30000 2916352 C:\Windows\System32\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795770645377758 0x7ffad0210000 364544 C:\Windows\System32\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795770645377758 0x7ffad0270000 1908736 C:\Windows\SYSTEM32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 35 2648 348 24 00000000:0031f1da 131765777555980720 0 0 1 Обязательная метка\Средний обязательный уровень WIN-0UOTFKKVN1S\User sihost.exe C:\Windows\system32\sihost.exe sihost.exe Microsoft Corporation 10.0.14393.0 (rs1_release.160715-1616) Shell Infrastructure Host 131795770645377872 0x7ff7bbae0000 94208 C:\Windows\system32\sihost.exe 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Shell Infrastructure Host 131795770645377872 0x7ffab9490000 860160 C:\Windows\System32\ntshrui.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширения оболочки, обеспечивающие общий доступ 131795770645377872 0x7ffabae40000 110592 C:\Windows\SYSTEM32\capauthz.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API авторизации возможностей 131795770645377872 0x7ffabaf70000 270336 C:\Windows\System32\edputil.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служебная программа EDP 131795770645377872 0x7ffabb910000 344064 C:\Windows\System32\container.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Windows Containers 131795770645377872 0x7ffabb970000 487424 C:\Windows\System32\daxexec.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation daxexec 131795770645377872 0x7ffabba80000 995328 C:\Windows\System32\twinui.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation TWINUI.APPCORE 131795770645377872 0x7ffabbb80000 61440 C:\Windows\System32\dsclient.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Data Sharing Service Client DLL 131795770645377872 0x7ffabbb90000 581632 C:\Windows\System32\Windows.System.Launcher.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows.System.Launcher 131795770645377872 0x7ffabbd00000 36864 C:\Windows\system32\WpPortingLibrary.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation <d> DLL 131795770645377872 0x7ffabc0b0000 65536 C:\Windows\System32\LINKINFO.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Volume Tracking 131795770645377872 0x7ffabc450000 741376 C:\Windows\system32\ShareHost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ShareHost 131795770645377872 0x7ffabc510000 90112 C:\Windows\system32\execmodelproxy.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ExecModelProxy 131795770645377872 0x7ffabc570000 94208 C:\Windows\SYSTEM32\licensemanagerapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation "LicenseManagerApi.DYNLINK" 131795770645377872 0x7ffabc6b0000 1114112 C:\Windows\System32\AppContracts.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Сервер API Windows AppContracts 131795770645377872 0x7ffabc800000 266240 C:\Windows\System32\windowmanagement.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Window Management 131795770645377872 0x7ffabc850000 159744 C:\Windows\System32\AppointmentActivation.dll 10.0.14393.2189 (rs1_release.180329-1711) Microsoft Corporation DLL for AppointmentActivation 131795770645377872 0x7ffabc880000 73728 C:\Windows\system32\cscapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Offline Files Win32 API 131795770645377872 0x7ffabc8b0000 61440 C:\Windows\System32\NotificationPlatformComponent.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation NotificationPlatformComponent 131795770645377872 0x7ffabc920000 270336 C:\Windows\system32\ExecModelClient.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation ExecModelClient 131795770645377872 0x7ffabc9a0000 413696 C:\Windows\system32\activationmanager.dll 10.0.14393.479 (rs1_release.161110-2025) Microsoft Corporation Activation Manager 131795770645377872 0x7ffabca10000 221184 C:\Windows\System32\ClipboardServer.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Сервер API Modern Clipboard 131795770645377872 0x7ffabcde0000 983040 C:\Windows\System32\modernexecserver.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Сервер Modern Execution 131795770645377872 0x7ffabcef0000 102400 C:\Windows\System32\Windows.Shell.ServiceHostBuilder.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows.Shell.ServiceHostBuilder 131795770645377872 0x7ffabcf10000 122880 C:\Windows\system32\desktopshellext.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DesktopHost Extensions 131795770645377872 0x7ffabff10000 155648 C:\Windows\System32\srvcli.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Server Service Client DLL 131795770645377872 0x7ffac0bf0000 3559424 C:\Windows\System32\ActXPrxy.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation ActiveX Interface Marshaling Library 131795770645377872 0x7ffac20d0000 110592 C:\Windows\System32\RMCLIENT.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Resource Manager Client 131795770645377872 0x7ffac23c0000 331776 C:\Windows\System32\OneCoreCommonProxyStub.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation OneCore Common Proxy Stub 131795770645377872 0x7ffac2b30000 286720 C:\Windows\System32\usermgrproxy.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation UserMgrProxy 131795770645377872 0x7ffac3270000 40960 C:\Windows\System32\FLTLIB.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека фильтров 131795770645377872 0x7ffac34e0000 1843200 C:\Windows\System32\urlmon.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширения OLE32 для Win32 131795770645377872 0x7ffac3cb0000 2772992 C:\Windows\System32\iertutil.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служебная программа времени выполнения для Internet Explorer 131795770645377872 0x7ffac42a0000 659456 C:\Windows\System32\StateRepository.Core.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation StateRepository Core 131795770645377872 0x7ffac4450000 86016 C:\Windows\SYSTEM32\usermgrcli.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation UserMgr API DLL 131795770645377872 0x7ffac46d0000 4161536 C:\Windows\System32\Windows.StateRepository.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Сервер Windows StateRepository API Server 131795770645377872 0x7ffac5500000 438272 C:\Windows\system32\PhotoMetadataHandler.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Photo Metadata Handler 131795770645377872 0x7ffac7720000 1601536 C:\Windows\System32\OneCoreUAPCommonProxyStub.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation OneCoreUAP Common Proxy Stub 131795770645377872 0x7ffac92e0000 1269760 C:\Windows\SYSTEM32\wintypes.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL основных типов Windows 131795770645377872 0x7ffac9500000 2682880 C:\Windows\system32\CoreUIComponents.dll 131795770645377872 0x7ffac9f50000 1736704 C:\Windows\system32\WindowsCodecs.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Microsoft Windows Codecs Library 131795770645377872 0x7ffaca340000 1593344 C:\Windows\System32\PROPSYS.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Система страниц свойств (Майкрософт) 131795770645377872 0x7ffaca4e0000 77824 C:\Windows\SYSTEM32\wtsapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Remote Desktop Session Host Server SDK APIs 131795770645377872 0x7ffaca5e0000 155648 C:\Windows\System32\dwmapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Интерфейс API диспетчера окон рабочего стола (Майкрософт) 131795770645377872 0x7ffaca640000 770048 C:\Windows\system32\CoreMessaging.dll 10.0.14393.0 Microsoft Corporation Microsoft CoreMessaging Dll 131795770645377872 0x7ffacadf0000 499712 C:\Windows\System32\apphelp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиентская библиотека совместимости приложений 131795770645377872 0x7ffacaf00000 610304 C:\Windows\system32\uxtheme.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека тем UxTheme (Microsoft) 131795770645377872 0x7ffacb140000 593920 C:\Windows\System32\msvcp110_win.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Microsoft® STL110 C++ Runtime Library 131795770645377872 0x7ffacb1e0000 1163264 C:\Windows\SYSTEM32\twinapi.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation twinapi.appcore 131795770645377872 0x7ffacb300000 364544 C:\Windows\System32\VEEventDispatcher.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Visual Element Event dispatcher 131795770645377872 0x7ffacb3d0000 110592 C:\Windows\System32\ResourcePolicyClient.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Resource Policy Client 131795770645377872 0x7ffacb420000 204800 C:\Windows\SYSTEM32\ntmarta.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик Windows NT MARTA 131795770645377872 0x7ffacbd30000 229376 C:\Windows\System32\IPHLPAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API вспомогательного приложения IP 131795770645377872 0x7ffacc350000 180224 C:\Windows\System32\SspiCli.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Security Support Provider Interface 131795770645377872 0x7ffacc5c0000 352256 C:\Windows\SYSTEM32\WINSTA.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Winstation Library 131795770645377872 0x7ffacc620000 176128 C:\Windows\System32\bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795770645377872 0x7ffacc6e0000 61440 C:\Windows\System32\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795770645377872 0x7ffacc6f0000 311296 C:\Windows\System32\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795770645377872 0x7ffacc740000 81920 C:\Windows\System32\profapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Profile Basic API 131795770645377872 0x7ffacc8f0000 1003520 C:\Windows\System32\ucrtbase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645377872 0x7ffacc9f0000 434176 C:\Windows\System32\bcryptPrimitives.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Cryptographic Primitives Library 131795770645377872 0x7ffacca60000 122880 C:\Windows\System32\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795770645377872 0x7ffaccae0000 692224 C:\Windows\System32\shcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795770645377872 0x7ffaccb90000 7180288 C:\Windows\System32\Windows.Storage.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API хранения Microsoft WinRT 131795770645377872 0x7ffacd270000 2215936 C:\Windows\System32\KERNELBASE.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645377872 0x7ffacd710000 638976 C:\Windows\System32\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645377872 0x7ffacd7b0000 270336 C:\Windows\System32\cfgmgr32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Configuration Manager DLL 131795770645377872 0x7ffacd810000 22056960 C:\Windows\System32\shell32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Общая библиотека оболочки Windows 131795770645377872 0x7ffaced20000 782336 C:\Windows\System32\OLEAUT32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795770645377872 0x7ffacee50000 1183744 C:\Windows\System32\RPCRT4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795770645377872 0x7ffacef90000 647168 C:\Windows\System32\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795770645377872 0x7ffacf030000 651264 C:\Windows\System32\clbcatq.dll 2001.12.10941.16384 (rs1_release.160715-1616) Microsoft Corporation COM+ Configuration Catalog 131795770645377872 0x7ffacf0d0000 704512 C:\Windows\System32\KERNEL32.DLL 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645377872 0x7ffacf770000 212992 C:\Windows\System32\GDI32.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation GDI Client DLL 131795770645377872 0x7ffacf890000 188416 C:\Windows\System32\IMM32.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Multi-User Windows IMM32 API Client DLL 131795770645377872 0x7ffacf8c0000 1462272 C:\Windows\System32\user32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795770645377872 0x7ffacfb30000 2916352 C:\Windows\System32\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795770645377872 0x7ffacfe20000 663552 C:\Windows\System32\advapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795770645377872 0x7ffad0070000 1277952 C:\Windows\System32\ole32.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft OLE для Windows 131795770645377872 0x7ffad01b0000 335872 C:\Windows\System32\shlwapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека небольших программ оболочки 131795770645377872 0x7ffad0210000 364544 C:\Windows\System32\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795770645377872 0x7ffad0270000 1908736 C:\Windows\SYSTEM32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 36 840 580 4 00000000:0031f1da 131765777563791648 0 0 1 Обязательная метка\Средний обязательный уровень WIN-0UOTFKKVN1S\User svchost.exe C:\Windows\system32\svchost.exe C:\Windows\system32\svchost.exe -k UnistackSvcGroup Microsoft Corporation 10.0.14393.0 (rs1_release.160715-1616) Хост-процесс для служб Windows 131795770645377971 0x7ff718c20000 57344 C:\Windows\system32\svchost.exe 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Хост-процесс для служб Windows 131795770645377971 0x7ffaaf6a0000 331776 C:\Windows\System32\PhoneUtil.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Phone utilities 131795770645377971 0x7ffaaf700000 1421312 C:\Windows\System32\PIMSTORE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation POOM 131795770645377971 0x7ffab05d0000 339968 C:\Windows\System32\AccountAccessor.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Sync data model to access accounts 131795770645377971 0x7ffab0630000 618496 C:\Windows\System32\SyncController.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SyncController for managing sync of mail, contacts, calendar 131795770645377971 0x7ffab93b0000 897024 C:\Windows\System32\TokenBroker.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Token Broker 131795770645377971 0x7ffabaab0000 94208 C:\Windows\SYSTEM32\profext.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation profext 131795770645377971 0x7ffabbb80000 61440 C:\Windows\System32\dsclient.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Data Sharing Service Client DLL 131795770645377971 0x7ffabbd10000 65536 C:\Windows\System32\TOKENBINDING.dll 10.0.14393.1593 (rs1_release.170731-1934) Microsoft Corporation Token Binding Protocol 131795770645377971 0x7ffabca50000 819200 C:\Windows\System32\Windows.Security.Authentication.Web.Core.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Token Broker WinRT API 131795770645377971 0x7ffabcb20000 266240 C:\Windows\System32\CEMAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation CEMAPI 131795770645377971 0x7ffabcb70000 262144 C:\Windows\System32\cdprt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft (R) CDP Client WinRT API 131795770645377971 0x7ffabcd80000 360448 c:\windows\system32\cdpusersvc.dll 10.0.14393.479 (rs1_release.161110-2025) Microsoft Corporation Microsoft (R) CDP User Components 131795770645377971 0x7ffabd630000 200704 C:\Windows\System32\MCCSEngineShared.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Utilies shared among OneSync engines 131795770645377971 0x7ffabdde0000 462848 c:\windows\system32\SYNCUTIL.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Sync utilities for mail, contacts, calendar 131795770645377971 0x7ffabe850000 155648 C:\Windows\System32\IDStore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Identity Store 131795770645377971 0x7ffabed20000 389120 c:\windows\system32\aphostservice.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Accounts Host Service 131795770645377971 0x7ffabfbe0000 1011712 C:\Windows\System32\Windows.Security.Authentication.OnlineId.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation Windows Runtime OnlineId Authentication DLL 131795770645377971 0x7ffac05f0000 94208 C:\Windows\System32\wwapi.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation WWAN API 131795770645377971 0x7ffac0910000 724992 C:\Windows\System32\Windows.Networking.Connectivity.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Networking Connectivity Runtime DLL 131795770645377971 0x7ffac09d0000 884736 C:\Windows\System32\wpnapps.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Приложения для push-уведомлений Windows 131795770645377971 0x7ffac0bf0000 3559424 C:\Windows\System32\ActXPrxy.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation ActiveX Interface Marshaling Library 131795770645377971 0x7ffac20d0000 110592 C:\Windows\System32\RMCLIENT.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Resource Manager Client 131795770645377971 0x7ffac23c0000 331776 C:\Windows\System32\OneCoreCommonProxyStub.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation OneCore Common Proxy Stub 131795770645377971 0x7ffac2590000 659456 C:\Windows\System32\FlightSettings.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Параметры цикла тестирования 131795770645377971 0x7ffac2750000 106496 C:\Windows\System32\bcd.dll 10.0.14393.1794 (rs1_release.171008-1615) Microsoft Corporation BCD DLL 131795770645377971 0x7ffac2b30000 286720 C:\Windows\System32\usermgrproxy.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation UserMgrProxy 131795770645377971 0x7ffac2cb0000 778240 c:\windows\system32\winsqlite3.dll 3.12.2 SQLite Development Team SQLite is a software library that implements a self-contained, serverless, zero-configuration, transactional SQL database engine. 131795770645377971 0x7ffac2d80000 5140480 c:\windows\system32\cdp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API клиента Microsoft (R) CDP 131795770645377971 0x7ffac3cb0000 2772992 C:\Windows\System32\iertutil.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служебная программа времени выполнения для Internet Explorer 131795770645377971 0x7ffac4000000 274432 C:\Windows\SYSTEM32\policymanager.dll 10.0.14393.2035 (rs1_release_inmarket.180110-1910) Microsoft Corporation Policy Manager DLL 131795770645377971 0x7ffac4100000 151552 c:\windows\system32\NetworkHelper.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Network utilities for mail, contacts, calendar 131795770645377971 0x7ffac4450000 86016 C:\Windows\SYSTEM32\usermgrcli.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation UserMgr API DLL 131795770645377971 0x7ffac60e0000 221184 C:\Windows\System32\XmlLite.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft XmlLite Library 131795770645377971 0x7ffac66a0000 86016 C:\Windows\SYSTEM32\ondemandconnroutehelper.dll 10.0.14393.351 (rs1_release_inmarket.161014-1755) Microsoft Corporation On Demand Connctiond Route Helper 131795770645377971 0x7ffac69c0000 839680 c:\windows\system32\WINHTTP.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Службы HTTP Windows 131795770645377971 0x7ffac79c0000 57344 C:\Windows\System32\npmproxy.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Network List Manager Proxy 131795770645377971 0x7ffac7aa0000 401408 C:\Windows\SYSTEM32\wlanapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows WLAN AutoConfig Client Side API DLL 131795770645377971 0x7ffac83d0000 106496 C:\Windows\SYSTEM32\dhcpcsvc.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служба DHCP-клиента 131795770645377971 0x7ffac83f0000 90112 C:\Windows\SYSTEM32\dhcpcsvc6.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиент DHCPv6 131795770645377971 0x7ffac8540000 286720 C:\Windows\System32\vaultcli.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиентская библиотека хранилища учетных данных 131795770645377971 0x7ffac92e0000 1269760 C:\Windows\SYSTEM32\wintypes.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL основных типов Windows 131795770645377971 0x7ffac97b0000 81920 c:\windows\system32\InprocLogger.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation In-proc Private Event Trace Logger 131795770645377971 0x7ffaca1d0000 69632 C:\Windows\System32\UserDataTypeHelperUtil.dll 10.0.14393.2189 (rs1_release.180329-1711) Microsoft Corporation Type Utilities for data access 131795770645377971 0x7ffaca270000 65536 C:\Windows\System32\UserDataLanguageUtil.dll 10.0.14393.2189 (rs1_release.180329-1711) Microsoft Corporation Language-related helper functions for user data 131795770645377971 0x7ffaca4e0000 77824 C:\Windows\SYSTEM32\wtsapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Remote Desktop Session Host Server SDK APIs 131795770645377971 0x7ffaca520000 90112 C:\Windows\System32\APHostClient.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Accounts Host Service RPC Client 131795770645377971 0x7ffaca610000 143360 C:\Windows\System32\SAMLIB.dll 10.0.14393.82 (rs1_release.160805-1735) Microsoft Corporation SAM Library DLL 131795770645377971 0x7ffacabf0000 45056 c:\windows\system32\MCCSPal.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Platform abstraction layer dll for MCCS 131795770645377971 0x7ffacac20000 86016 c:\windows\system32\UserDataPlatformHelperUtil.dll 10.0.14393.2189 (rs1_release.180329-1711) Microsoft Corporation Platform Utilities for data access 131795770645377971 0x7ffacb140000 593920 c:\windows\system32\msvcp110_win.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Microsoft® STL110 C++ Runtime Library 131795770645377971 0x7ffacb1e0000 1163264 C:\Windows\System32\twinapi.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation twinapi.appcore 131795770645377971 0x7ffacb300000 364544 c:\windows\system32\VEEventDispatcher.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Visual Element Event dispatcher 131795770645377971 0x7ffacb420000 204800 C:\Windows\SYSTEM32\ntmarta.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик Windows NT MARTA 131795770645377971 0x7ffacb920000 81920 C:\Windows\SYSTEM32\WLDP.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Политика блокировки Windows 131795770645377971 0x7ffacbbf0000 40960 C:\Windows\System32\DPAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Data Protection API 131795770645377971 0x7ffacbd30000 229376 c:\windows\system32\IPHLPAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API вспомогательного приложения IP 131795770645377971 0x7ffacbe40000 126976 C:\Windows\System32\USERENV.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Userenv 131795770645377971 0x7ffacbf30000 49152 C:\Windows\system32\NtlmShared.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation NTLM Shared Functionality 131795770645377971 0x7ffacbf40000 421888 C:\Windows\system32\msv1_0.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Authentication Package v1.0 131795770645377971 0x7ffacc010000 86016 C:\Windows\system32\cryptdll.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Cryptography Manager 131795770645377971 0x7ffacc150000 94208 C:\Windows\SYSTEM32\cryptsp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Cryptographic Service Provider API 131795770645377971 0x7ffacc170000 45056 c:\windows\system32\CRYPTBASE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base cryptographic API DLL 131795770645377971 0x7ffacc1f0000 241664 c:\windows\system32\NTASN1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft ASN.1 API 131795770645377971 0x7ffacc230000 155648 c:\windows\system32\ncrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Маршрутизатор Windows NCrypt 131795770645377971 0x7ffacc350000 180224 c:\windows\system32\SspiCli.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Security Support Provider Interface 131795770645377971 0x7ffacc620000 176128 c:\windows\system32\bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795770645377971 0x7ffacc6e0000 61440 C:\Windows\System32\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795770645377971 0x7ffacc6f0000 311296 C:\Windows\System32\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795770645377971 0x7ffacc740000 81920 C:\Windows\System32\profapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Profile Basic API 131795770645377971 0x7ffacc760000 65536 C:\Windows\System32\MSASN1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ASN.1 Runtime APIs 131795770645377971 0x7ffacc8f0000 1003520 C:\Windows\System32\ucrtbase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645377971 0x7ffacc9f0000 434176 C:\Windows\System32\bcryptPrimitives.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Cryptographic Primitives Library 131795770645377971 0x7ffacca60000 122880 C:\Windows\System32\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795770645377971 0x7ffacca80000 348160 C:\Windows\System32\WINTRUST.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation Microsoft Trust Verification APIs 131795770645377971 0x7ffaccae0000 692224 C:\Windows\System32\shcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795770645377971 0x7ffaccb90000 7180288 C:\Windows\System32\windows.storage.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API хранения Microsoft WinRT 131795770645377971 0x7ffacd270000 2215936 C:\Windows\System32\KERNELBASE.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645377971 0x7ffacd490000 1871872 C:\Windows\System32\CRYPT32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API32 криптографии 131795770645377971 0x7ffacd710000 638976 C:\Windows\System32\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645377971 0x7ffacd7b0000 270336 C:\Windows\System32\cfgmgr32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Configuration Manager DLL 131795770645377971 0x7ffaced20000 782336 C:\Windows\System32\OLEAUT32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795770645377971 0x7ffacee50000 1183744 C:\Windows\System32\RPCRT4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795770645377971 0x7ffacef80000 32768 C:\Windows\System32\NSI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation NSI User-mode interface DLL 131795770645377971 0x7ffacef90000 647168 C:\Windows\System32\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795770645377971 0x7ffacf030000 651264 C:\Windows\System32\clbcatq.dll 2001.12.10941.16384 (rs1_release.160715-1616) Microsoft Corporation COM+ Configuration Catalog 131795770645377971 0x7ffacf0d0000 704512 C:\Windows\System32\KERNEL32.DLL 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645377971 0x7ffacf770000 212992 C:\Windows\System32\GDI32.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation GDI Client DLL 131795770645377971 0x7ffacf820000 434176 C:\Windows\System32\WS2_32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation 32-разрядная библиотека Windows Socket 2.0 131795770645377971 0x7ffacf890000 188416 C:\Windows\System32\IMM32.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Multi-User Windows IMM32 API Client DLL 131795770645377971 0x7ffacf8c0000 1462272 C:\Windows\System32\user32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795770645377971 0x7ffacfb30000 2916352 C:\Windows\System32\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795770645377971 0x7ffacfe20000 663552 C:\Windows\System32\advapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795770645377971 0x7ffad01b0000 335872 C:\Windows\System32\shlwapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека небольших программ оболочки 131795770645377971 0x7ffad0210000 364544 C:\Windows\System32\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795770645377971 0x7ffad0270000 1908736 C:\Windows\SYSTEM32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 37 528 348 24 00000000:0031f1da 131765777565618284 0 0 1 Обязательная метка\Средний обязательный уровень WIN-0UOTFKKVN1S\User taskhostw.exe C:\Windows\system32\taskhostw.exe taskhostw.exe {222A245B-E637-4AE9-A93F-A59CA119A75E} Microsoft Corporation 10.0.14393.0 (rs1_release.160715-1616) Хост-процесс для задач Windows 131795770645378085 0x7ff794e10000 102400 C:\Windows\system32\taskhostw.exe 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Хост-процесс для задач Windows 131795770645378085 0x7ffab4af0000 606208 C:\Windows\system32\AUDIOSES.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Сеанс обработки звука 131795770645378085 0x7ffabaab0000 94208 C:\Windows\SYSTEM32\profext.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation profext 131795770645378085 0x7ffabb3c0000 450560 C:\Windows\system32\TextInputFramework.dll 10.0.14393.2189 (rs1_release.180329-1711) Microsoft Corporation "TextInputFramework.DYNLINK" 131795770645378085 0x7ffabb440000 282624 C:\Windows\system32\MTFServer.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation "MTFServer.DYNLINK" 131795770645378085 0x7ffabb510000 2854912 C:\Windows\system32\InputService.dll 10.0.14393.2189 (rs1_release.180329-1711) Microsoft Corporation Microsoft Text InputService Dll 131795770645378085 0x7ffabb8c0000 131072 C:\Windows\system32\InputLocaleManager.dll 10.0.14393.576 (rs1_release_inmarket.161208-2252) Microsoft Corporation "InputLocaleManager.DYNLINK" 131795770645378085 0x7ffabb8f0000 98304 C:\Windows\system32\EditBufferTestHook.dll 10.0.14393.576 (rs1_release_inmarket.161208-2252) Microsoft Corporation "EditBufferTestHook.DYNLINK" 131795770645378085 0x7ffabb9f0000 483328 C:\Windows\system32\MSUTB.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека (DLL) сервера MSUTB 131795770645378085 0x7ffabba70000 53248 C:\Windows\system32\MsCtfMonitor.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation MsCtfMonitor DLL 131795770645378085 0x7ffabbc20000 106496 C:\Windows\System32\PlaySndSrv.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служба PlaySound 131795770645378085 0x7ffabf5d0000 2924544 C:\Windows\system32\wininet.dll 11.00.14393.447 (rs1_release_inmarket.161102-0100) Microsoft Corporation Расширения Интернета для Win32 131795770645378085 0x7ffac37d0000 258048 C:\Windows\system32\wdmaud.drv 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Системный звуковой драйвер Winmm 131795770645378085 0x7ffac3840000 3088384 C:\Windows\system32\ESENT.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширяемая подсистема хранения данных ESE для Microsoft(R) Windows(R) 131795770645378085 0x7ffac3cb0000 2772992 C:\Windows\system32\iertutil.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служебная программа времени выполнения для Internet Explorer 131795770645378085 0x7ffac4000000 274432 C:\Windows\SYSTEM32\policymanager.dll 10.0.14393.2035 (rs1_release_inmarket.180110-1910) Microsoft Corporation Policy Manager DLL 131795770645378085 0x7ffac4140000 114688 C:\Windows\system32\MSACM32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Фильтр диспетчера аудиосжатия Microsoft 131795770645378085 0x7ffac7d10000 32768 C:\Windows\system32\KBDUS.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation United States Keyboard Layout 131795770645378085 0x7ffac8f90000 45056 C:\Windows\system32\AVRT.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Среда выполнения мультимедиа в реальном времени 131795770645378085 0x7ffac92e0000 1269760 C:\Windows\SYSTEM32\wintypes.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL основных типов Windows 131795770645378085 0x7ffac9480000 462848 C:\Windows\System32\MMDevAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation MMDevice API 131795770645378085 0x7ffac9500000 2682880 C:\Windows\system32\CoreUIComponents.dll 131795770645378085 0x7ffac97d0000 40960 C:\Windows\system32\midimap.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft MIDI Mapper 131795770645378085 0x7ffaca180000 53248 C:\Windows\system32\msacm32.drv 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Программа переназначения звуковых устройств 131795770645378085 0x7ffaca340000 1593344 C:\Windows\System32\PROPSYS.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Система страниц свойств (Майкрософт) 131795770645378085 0x7ffaca550000 36864 C:\Windows\system32\ksuser.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User CSA Library 131795770645378085 0x7ffaca5e0000 155648 C:\Windows\system32\dwmapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Интерфейс API диспетчера окон рабочего стола (Майкрософт) 131795770645378085 0x7ffaca640000 770048 C:\Windows\system32\CoreMessaging.dll 10.0.14393.0 Microsoft Corporation Microsoft CoreMessaging Dll 131795770645378085 0x7ffacab10000 61440 C:\Windows\System32\WordBreakers.dll 10.0.14393.2189 (rs1_release.180329-1711) Microsoft Corporation "WordBreakers.DYNLINK" 131795770645378085 0x7ffacab40000 176128 C:\Windows\System32\WINMMBASE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base Multimedia Extension API DLL 131795770645378085 0x7ffacaba0000 143360 C:\Windows\System32\WINMM.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation MCI API DLL 131795770645378085 0x7ffacaf00000 610304 C:\Windows\system32\uxtheme.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека тем UxTheme (Microsoft) 131795770645378085 0x7ffacb140000 593920 C:\Windows\system32\msvcp110_win.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Microsoft® STL110 C++ Runtime Library 131795770645378085 0x7ffacb3f0000 163840 C:\Windows\System32\DEVOBJ.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Device Information Set DLL 131795770645378085 0x7ffacb420000 204800 C:\Windows\SYSTEM32\ntmarta.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик Windows NT MARTA 131795770645378085 0x7ffacbe40000 126976 C:\Windows\SYSTEM32\userenv.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Userenv 131795770645378085 0x7ffacc170000 45056 C:\Windows\system32\CRYPTBASE.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base cryptographic API DLL 131795770645378085 0x7ffacc5c0000 352256 C:\Windows\system32\WINSTA.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Winstation Library 131795770645378085 0x7ffacc6e0000 61440 C:\Windows\System32\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795770645378085 0x7ffacc6f0000 311296 C:\Windows\System32\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795770645378085 0x7ffacc740000 81920 C:\Windows\System32\profapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Profile Basic API 131795770645378085 0x7ffacc8f0000 1003520 C:\Windows\System32\ucrtbase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645378085 0x7ffacc9f0000 434176 C:\Windows\System32\bcryptPrimitives.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Cryptographic Primitives Library 131795770645378085 0x7ffacca60000 122880 C:\Windows\System32\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795770645378085 0x7ffaccae0000 692224 C:\Windows\System32\shcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795770645378085 0x7ffaccb90000 7180288 C:\Windows\System32\windows.storage.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API хранения Microsoft WinRT 131795770645378085 0x7ffacd270000 2215936 C:\Windows\System32\KERNELBASE.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645378085 0x7ffacd710000 638976 C:\Windows\System32\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645378085 0x7ffacd7b0000 270336 C:\Windows\System32\cfgmgr32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Configuration Manager DLL 131795770645378085 0x7ffaced20000 782336 C:\Windows\System32\OLEAUT32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795770645378085 0x7ffacee50000 1183744 C:\Windows\System32\RPCRT4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795770645378085 0x7ffacef90000 647168 C:\Windows\System32\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795770645378085 0x7ffacf030000 651264 C:\Windows\System32\clbcatq.dll 2001.12.10941.16384 (rs1_release.160715-1616) Microsoft Corporation COM+ Configuration Catalog 131795770645378085 0x7ffacf0d0000 704512 C:\Windows\System32\KERNEL32.DLL 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645378085 0x7ffacf1e0000 1417216 C:\Windows\System32\MSCTF.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Серверная библиотека MSCTF 131795770645378085 0x7ffacf770000 212992 C:\Windows\System32\GDI32.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation GDI Client DLL 131795770645378085 0x7ffacf890000 188416 C:\Windows\System32\imm32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Multi-User Windows IMM32 API Client DLL 131795770645378085 0x7ffacf8c0000 1462272 C:\Windows\System32\USER32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795770645378085 0x7ffacfb30000 2916352 C:\Windows\System32\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795770645378085 0x7ffacfe20000 663552 C:\Windows\System32\advapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795770645378085 0x7ffad0070000 1277952 C:\Windows\System32\ole32.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft OLE для Windows 131795770645378085 0x7ffad01b0000 335872 C:\Windows\System32\shlwapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека небольших программ оболочки 131795770645378085 0x7ffad0210000 364544 C:\Windows\System32\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795770645378085 0x7ffad0270000 1908736 C:\Windows\SYSTEM32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 38 3632 664 6 00000000:0031f1da 131765777941176116 0 0 1 Обязательная метка\Средний обязательный уровень WIN-0UOTFKKVN1S\User RuntimeBroker.exe C:\Windows\System32\RuntimeBroker.exe C:\Windows\System32\RuntimeBroker.exe -Embedding Microsoft Corporation 10.0.14393.0 (rs1_release.160715-1616) Runtime Broker 131795770645378207 0x7ff7808b0000 8527872 C:\Windows\system32\ntoskrnl.exe 10.0.14393.2189 (rs1_release.180329-1711) Microsoft Corporation NT Kernel & System 131795770645378207 0x7ff7a45f0000 49152 C:\Windows\System32\RuntimeBroker.exe 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Runtime Broker 131795770645378207 0x7ffaab750000 876544 C:\Windows\System32\Windows.Media.Import.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation Windows Photo Import API (WinRT/COM) 131795770645378207 0x7ffaac6e0000 13156352 C:\Windows\System32\ieframe.dll 11.00.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Браузер 131795780843802542 0x7ffaad3f0000 1826816 C:\Windows\System32\Wpc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека параметров родительского контроля 131795770645378207 0x7ffab33d0000 258048 C:\Windows\System32\MLANG.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL многоязыковой поддержки 131795770645378207 0x7ffab4b90000 655360 C:\Windows\System32\StructuredQuery.dll 7.0.14393.2068 (rs1_release.180209-1727) Microsoft Corporation Structured Query 131795770645378207 0x7ffab7780000 2576384 C:\Windows\system32\mssrch.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Встроенный поиск (Майкрософт) 131795770645378207 0x7ffab7a00000 3424256 C:\Windows\system32\TQUERY.DLL 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Запросы Microsoft Tripoli 131795770645378207 0x7ffab7d80000 753664 C:\Windows\System32\RASAPI32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API удаленного доступа 131795770645378207 0x7ffab8190000 9191424 C:\Windows\system32\twinui.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation TWINUI 131795780489291214 0x7ffab8da0000 1675264 C:\Windows\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.14393.1715_none_aec701fbddd850fa\GdiPlus.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Microsoft GDI+ 131795770645378207 0x7ffab92e0000 827392 C:\Windows\system32\Windows.Storage.Search.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows.Storage.Search 131795780917042363 0x7ffab93b0000 897024 C:\Windows\System32\TokenBroker.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Token Broker 131795770645378207 0x7ffab9490000 860160 C:\Windows\System32\ntshrui.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширения оболочки, обеспечивающие общий доступ 131795770645378207 0x7ffab9a40000 299008 C:\Windows\System32\RasMediaManager.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Ras Media Manager DLL 131795770645378207 0x7ffaba950000 188416 C:\Windows\System32\EthernetMediaManager.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Ethernet Media Manager DLL 131795770645378207 0x7ffabaa50000 339968 C:\Windows\System32\NetworkUXBroker.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation NetworkUXBroker DLL 131795770645378207 0x7ffabaab0000 94208 C:\Windows\SYSTEM32\profext.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation profext 131795770645378207 0x7ffabae40000 110592 C:\Windows\SYSTEM32\capauthz.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API авторизации возможностей 131795770645378207 0x7ffabaf70000 270336 C:\Windows\System32\edputil.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служебная программа EDP 131795770645378207 0x7ffabb2b0000 1089536 C:\Windows\system32\SettingSyncCore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Setting Synchronization Core 131795770645378207 0x7ffabba80000 995328 C:\Windows\System32\twinui.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation TWINUI.APPCORE 131795780917592192 0x7ffabbd10000 65536 C:\Windows\System32\tokenbinding.dll 10.0.14393.1593 (rs1_release.170731-1934) Microsoft Corporation Token Binding Protocol 131795770645378207 0x7ffabc0b0000 65536 C:\Windows\System32\LINKINFO.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Volume Tracking 131795780613006289 0x7ffabc510000 90112 C:\Windows\System32\execmodelproxy.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ExecModelProxy 131795770645378207 0x7ffabc530000 241664 C:\Windows\System32\Windows.Networking.HostName.dll 10.0.14393.953 (rs1_release_inmarket.170303-1614) Microsoft Corporation Windows.Networking.HostName DLL 131795780733496994 0x7ffabc6b0000 1114112 C:\Windows\System32\AppContracts.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Сервер API Windows AppContracts 131795770645378207 0x7ffabc880000 73728 C:\Windows\System32\cscapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Offline Files Win32 API 131795780611542837 0x7ffabc920000 270336 C:\Windows\System32\ExecModelClient.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation ExecModelClient 131795770645378207 0x7ffabcf30000 110592 C:\Windows\System32\MPR.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека маршрутизации для нескольких служб доступа 131795770645378207 0x7ffabdd60000 425984 C:\Windows\System32\AppXDeploymentClient.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL-библиотека клиента развертывания AppX 131795770645378207 0x7ffabe070000 610304 C:\Windows\System32\efswrt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Storage Protection Windows Runtime DLL 131795770645378207 0x7ffabe4d0000 286720 C:\Windows\System32\MSWB7.dll 10.0.14393.1737 (rs1_release_inmarket.170914-1249) Microsoft Corporation MSWB7 DLL 131795780918057976 0x7ffabe850000 155648 C:\Windows\System32\IDStore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Identity Store 131795770645378207 0x7ffabe880000 94208 C:\Windows\System32\FeClient.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT File Encryption Client Interfaces 131795770645378207 0x7ffabe8c0000 454656 C:\Windows\system32\windows.cortana.Desktop.dll 10.0.14393.953 (rs1_release_inmarket.170303-1614) Microsoft Corporation Windows.Cortana.Desktop 131795770645378207 0x7ffabf330000 2457600 C:\Windows\System32\msxml6.dll 6.30.14393.2156 Microsoft Corporation MSXML 6.0 131795770645378207 0x7ffabf5d0000 2924544 C:\Windows\System32\WININET.dll 11.00.14393.447 (rs1_release_inmarket.161102-0100) Microsoft Corporation Расширения Интернета для Win32 131795780443980999 0x7ffabf8a0000 122880 C:\Windows\System32\Windows.Cortana.ProxyStub.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows.Cortana.ProxyStub 131795770645378207 0x7ffabf8c0000 802816 C:\Windows\system32\Windows.Internal.Shell.Broker.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation Windows Shell Broker 131795770645378207 0x7ffabf9c0000 200704 C:\Windows\system32\windows.cortana.onecore.dll 10.0.14393.953 (rs1_release_inmarket.170303-1614) Microsoft Corporation Windows.Cortana.OneCore 131795770645378207 0x7ffabfb00000 626688 C:\Windows\System32\ContentDeliveryManager.Utilities.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation ContentDeliveryManager.Utilities 131795780634363506 0x7ffabfbe0000 1011712 C:\Windows\System32\Windows.Security.Authentication.OnlineId.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation Windows Runtime OnlineId Authentication DLL 131795770645378207 0x7ffabff10000 155648 C:\Windows\System32\srvcli.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Server Service Client DLL 131795770645378207 0x7ffac05f0000 94208 C:\Windows\System32\wwapi.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation WWAN API 131795770645378207 0x7ffac0910000 724992 C:\Windows\System32\Windows.Networking.Connectivity.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Networking Connectivity Runtime DLL 131795770645378207 0x7ffac09d0000 884736 C:\Windows\System32\wpnapps.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Приложения для push-уведомлений Windows 131795770645378207 0x7ffac0bf0000 3559424 C:\Windows\System32\ActXPrxy.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation ActiveX Interface Marshaling Library 131795779561161209 0x7ffac1470000 704512 C:\Windows\System32\ieproxy.dll 11.00.14393.2007 (rs1_release.171231-1800) Microsoft Corporation IE ActiveX Interface Marshaling Library 131795770645378207 0x7ffac1c40000 94208 C:\Windows\System32\SystemSettings.DataModel.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SystemSettings.Datamodel private API 131795770645378207 0x7ffac20d0000 110592 C:\Windows\System32\RMCLIENT.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Resource Manager Client 131795770645378207 0x7ffac23c0000 331776 C:\Windows\System32\OneCoreCommonProxyStub.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation OneCore Common Proxy Stub 131795770645378207 0x7ffac2700000 98304 C:\Windows\System32\NETAPI32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API DLL 131795770645378207 0x7ffac2960000 143360 C:\Windows\system32\mssprxy.dll 7.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation Microsoft Search Proxy 131795770645378207 0x7ffac2a20000 81920 C:\Windows\System32\rtutils.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Routing Utilities 131795770645378207 0x7ffac2b80000 40960 C:\Windows\System32\VERSION.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Version Checking and File Installation Libraries 131795770645378207 0x7ffac34e0000 1843200 C:\Windows\System32\urlmon.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширения OLE32 для Win32 131795780447369522 0x7ffac37b0000 106496 C:\Windows\System32\ShellCommonCommonProxyStub.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ShellCommon Common Proxy Stub 131795770645378207 0x7ffac3840000 3088384 C:\Windows\system32\ESENT.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширяемая подсистема хранения данных ESE для Microsoft(R) Windows(R) 131795770645378207 0x7ffac3cb0000 2772992 C:\Windows\System32\iertutil.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служебная программа времени выполнения для Internet Explorer 131795770645378207 0x7ffac4000000 274432 C:\Windows\system32\policymanager.dll 10.0.14393.2035 (rs1_release_inmarket.180110-1910) Microsoft Corporation Policy Manager DLL 131795770645378207 0x7ffac42a0000 659456 C:\Windows\System32\StateRepository.Core.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation StateRepository Core 131795770645378207 0x7ffac4450000 86016 C:\Windows\SYSTEM32\usermgrcli.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation UserMgr API DLL 131795770645378207 0x7ffac46d0000 4161536 C:\Windows\System32\Windows.StateRepository.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Сервер Windows StateRepository API Server 131795771234179313 0x7ffac4b70000 106496 C:\Windows\System32\ShellCommonCommonProxyStub.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ShellCommon Common Proxy Stub 131795770645378207 0x7ffac4b90000 774144 C:\Windows\System32\StoreAgent.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation StoreAgent 131795780489961900 0x7ffac4df0000 462848 C:\Windows\System32\provsvc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Домашняя группа Windows 131795770645378207 0x7ffac4f60000 143360 C:\Windows\System32\wcmapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Connection Manager Client API 131795780846908833 0x7ffac4fd0000 618496 C:\Windows\System32\wlidprov.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft® Account Provider 131795770645378207 0x7ffac5630000 339968 C:\Windows\System32\thumbcache.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Кэш эскизов Майкрософт 131795770645378207 0x7ffac5c50000 131072 C:\Windows\System32\rasman.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Remote Access Connection Manager 131795770645378207 0x7ffac5ca0000 200704 C:\Windows\System32\AppExtension.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API AppExtension 131795770645378207 0x7ffac60e0000 221184 C:\Windows\System32\XmlLite.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft XmlLite Library 131795770645378207 0x7ffac69c0000 839680 C:\Windows\System32\WINHTTP.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Службы HTTP Windows 131795770645378207 0x7ffac6a90000 49152 C:\Windows\System32\LocationFrameworkPS.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Geolocation Framework PS 131795780451650645 0x7ffac6ac0000 835584 C:\Windows\System32\Windows.UI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Runtime UI Foundation DLL 131795770645378207 0x7ffac6ba0000 49152 C:\Windows\System32\Secur32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Security Support Provider Interface 131795770645378207 0x7ffac6c40000 2596864 C:\Windows\WinSxS\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.14393.953_none_42151e83c686086b\comctl32.dll 6.10 (rs1_release_inmarket.170303-1614) Microsoft Corporation Библиотека элементов управления взаимодействия с пользователем 131795770645378207 0x7ffac6ec0000 36864 C:\Windows\system32\IconCodecService.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Converts a PNG part of the icon to a legacy bmp icon 131795770645378207 0x7ffac7580000 1077248 C:\Windows\SYSTEM32\mrmcorer.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Windows MRM 131795770645378207 0x7ffac76a0000 159744 C:\Windows\System32\sppc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Software Licensing Client DLL 131795770645378207 0x7ffac7720000 1601536 C:\Windows\System32\OneCoreUAPCommonProxyStub.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation OneCoreUAP Common Proxy Stub 131795780641878393 0x7ffac79c0000 57344 C:\Windows\System32\npmproxy.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Network List Manager Proxy 131795770645378207 0x7ffac7aa0000 401408 C:\Windows\SYSTEM32\wlanapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows WLAN AutoConfig Client Side API DLL 131795770645378207 0x7ffac7d00000 32768 C:\Windows\SYSTEM32\familysafetyext.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation FamilySafety ChildAccount Extensions 131795770645378207 0x7ffac90b0000 90112 C:\Windows\System32\wkscli.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Workstation Service Client DLL 131795770645378207 0x7ffac9290000 40960 C:\Windows\System32\DSROLE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DS Setup Client DLL 131795770645378207 0x7ffac92e0000 1269760 C:\Windows\System32\WinTypes.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL основных типов Windows 131795780849625720 0x7ffac9f10000 221184 C:\Windows\System32\netprofm.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Network List Manager 131795770645378207 0x7ffac9f50000 1736704 C:\Windows\system32\windowscodecs.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Microsoft Windows Codecs Library 131795770645378207 0x7ffaca340000 1593344 C:\Windows\system32\PROPSYS.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Система страниц свойств (Майкрософт) 131795770645378207 0x7ffaca4e0000 77824 C:\Windows\SYSTEM32\wtsapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Remote Desktop Session Host Server SDK APIs 131795770645378207 0x7ffaca570000 421888 C:\Windows\System32\Bcp47Langs.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation BCP47 Language Classes 131795770645378207 0x7ffaca5e0000 155648 C:\Windows\system32\dwmapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Интерфейс API диспетчера окон рабочего стола (Майкрософт) 131795780918548230 0x7ffaca610000 143360 C:\Windows\System32\samlib.dll 10.0.14393.82 (rs1_release.160805-1735) Microsoft Corporation SAM Library DLL 131795780611842861 0x7ffaca640000 770048 C:\Windows\System32\CoreMessaging.dll 10.0.14393.0 Microsoft Corporation Microsoft CoreMessaging Dll 131795770645378207 0x7ffacadf0000 499712 C:\Windows\System32\apphelp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиентская библиотека совместимости приложений 131795770645378207 0x7ffacaf00000 610304 C:\Windows\system32\uxtheme.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека тем UxTheme (Microsoft) 131795770645378207 0x7ffacb140000 593920 C:\Windows\system32\msvcp110_win.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Microsoft® STL110 C++ Runtime Library 131795770645378207 0x7ffacb1e0000 1163264 C:\Windows\System32\twinapi.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation twinapi.appcore 131795770645378207 0x7ffacb300000 364544 C:\Windows\system32\VEEventDispatcher.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Visual Element Event dispatcher 131795770645378207 0x7ffacb3f0000 163840 C:\Windows\System32\DEVOBJ.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Device Information Set DLL 131795770645378207 0x7ffacb420000 204800 C:\Windows\SYSTEM32\ntmarta.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик Windows NT MARTA 131795770645378207 0x7ffacbd30000 229376 C:\Windows\System32\IPHLPAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API вспомогательного приложения IP 131795770645378207 0x7ffacbe20000 53248 C:\Windows\System32\netutils.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API Helpers DLL 131795770645378207 0x7ffacbe40000 126976 C:\Windows\system32\USERENV.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Userenv 131795770645378207 0x7ffacc150000 94208 C:\Windows\System32\CRYPTSP.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Cryptographic Service Provider API 131795770645378207 0x7ffacc350000 180224 C:\Windows\System32\SspiCli.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Security Support Provider Interface 131795770645378207 0x7ffacc520000 622592 C:\Windows\SYSTEM32\sxs.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Fusion 2.5 131795770645378207 0x7ffacc5c0000 352256 C:\Windows\SYSTEM32\WINSTA.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Winstation Library 131795770645378207 0x7ffacc620000 176128 C:\Windows\System32\bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795770645378207 0x7ffacc6e0000 61440 C:\Windows\System32\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795770645378207 0x7ffacc6f0000 311296 C:\Windows\System32\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795770645378207 0x7ffacc740000 81920 C:\Windows\System32\profapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Profile Basic API 131795770645378207 0x7ffacc8f0000 1003520 C:\Windows\System32\ucrtbase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645378207 0x7ffacc9f0000 434176 C:\Windows\System32\bcryptPrimitives.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Cryptographic Primitives Library 131795770645378207 0x7ffacca60000 122880 C:\Windows\System32\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795770645378207 0x7ffaccae0000 692224 C:\Windows\System32\shcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795770645378207 0x7ffaccb90000 7180288 C:\Windows\System32\windows.storage.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API хранения Microsoft WinRT 131795770645378207 0x7ffacd270000 2215936 C:\Windows\System32\KERNELBASE.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645378207 0x7ffacd710000 638976 C:\Windows\System32\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645378207 0x7ffacd7b0000 270336 C:\Windows\System32\cfgmgr32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Configuration Manager DLL 131795770645378207 0x7ffacd810000 22056960 C:\Windows\System32\SHELL32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Общая библиотека оболочки Windows 131795770645378207 0x7ffaced20000 782336 C:\Windows\System32\OLEAUT32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795770645378207 0x7ffacede0000 450560 C:\Windows\System32\coml2.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft COM for Windows 131795770645378207 0x7ffacee50000 1183744 C:\Windows\System32\RPCRT4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795770645378207 0x7ffacef80000 32768 C:\Windows\System32\NSI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation NSI User-mode interface DLL 131795770645378207 0x7ffacef90000 647168 C:\Windows\System32\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795770645378207 0x7ffacf030000 651264 C:\Windows\System32\clbcatq.dll 2001.12.10941.16384 (rs1_release.160715-1616) Microsoft Corporation COM+ Configuration Catalog 131795770645378207 0x7ffacf0d0000 704512 C:\Windows\System32\KERNEL32.DLL 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645378207 0x7ffacf1e0000 1417216 C:\Windows\System32\MSCTF.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Серверная библиотека MSCTF 131795770645378207 0x7ffacf770000 212992 C:\Windows\System32\GDI32.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation GDI Client DLL 131795770645378207 0x7ffacf820000 434176 C:\Windows\System32\WS2_32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation 32-разрядная библиотека Windows Socket 2.0 131795770645378207 0x7ffacf890000 188416 C:\Windows\System32\IMM32.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Multi-User Windows IMM32 API Client DLL 131795770645378207 0x7ffacf8c0000 1462272 C:\Windows\System32\USER32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795770645378207 0x7ffacfb30000 2916352 C:\Windows\System32\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795770645378207 0x7ffacfe20000 663552 C:\Windows\System32\advapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795770645378207 0x7ffad0070000 1277952 C:\Windows\System32\ole32.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft OLE для Windows 131795770645378207 0x7ffad01b0000 335872 C:\Windows\System32\shlwapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека небольших программ оболочки 131795770645378207 0x7ffad0210000 364544 C:\Windows\System32\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795770645378207 0x7ffad0270000 1908736 C:\Windows\SYSTEM32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 39 3164 664 6 00000000:0031f1da 131765778119045372 0 0 1 Обязательная метка\Низкий обязательный уровень WIN-0UOTFKKVN1S\User ShellExperienceHost.exe C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\ShellExperienceHost.exe "C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\ShellExperienceHost.exe" -ServerName:App.AppXtk181tbxbce2qsex02s8tw7hfxa9xb3t.mca Microsoft Corporation 10.0.14393.2125 (rs1_release.180301-2139) Windows Shell Experience Host 131795770645379346 0x7ff697570000 1662976 C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\ShellExperienceHost.exe 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation Windows Shell Experience Host 131795770645379346 0x7ffa9f150000 6311936 C:\Windows\System32\Windows.Media.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Media Runtime DLL 131795770645379346 0x7ffa9f760000 3796992 C:\Windows\System32\MFMediaEngine.dll 10.0.14393.351 (rs1_release_inmarket.161014-1755) Microsoft Corporation Media Foundation Media Engine DLL 131795770645379346 0x7ffaabad0000 1871872 C:\Windows\System32\mfsrcsnk.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Media Foundation Source and Sink DLL 131795770645379346 0x7ffaafe70000 4239360 C:\Windows\System32\mfcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Media Foundation Core DLL 131795770645379346 0x7ffab0be0000 1421312 C:\Windows\ShellExperiences\NetworkUX.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Network Experience 131795770645379346 0x7ffab4af0000 606208 C:\Windows\SYSTEM32\AUDIOSES.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Сеанс обработки звука 131795770645379346 0x7ffab5b40000 2527232 C:\Windows\SYSTEM32\dwrite.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Службы Microsoft DirectX Typography 131795770645379346 0x7ffab6710000 17231872 C:\Windows\System32\Windows.UI.Xaml.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows.UI.Xaml dll 131795770645379346 0x7ffab9eb0000 2899968 C:\Windows\ShellExperiences\Windows.UI.ActionCenter.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation ActionCenter Experience 131795770645379346 0x7ffaba180000 7880704 C:\Windows\ShellExperiences\StartUI.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Start UI 131795770645379346 0x7ffabaa50000 339968 C:\Windows\System32\NetworkUXBroker.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation NetworkUXBroker DLL 131795770645379346 0x7ffabab30000 303104 C:\Windows\System32\NotificationObjFactory.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Notifications Object Factory 131795770645379346 0x7ffabacc0000 1380352 C:\Windows\System32\SharedStartModel.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Shared Start Model InProc Server 131795770645379346 0x7ffabaf70000 270336 C:\Windows\SYSTEM32\edputil.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служебная программа EDP 131795770645379346 0x7ffabb3c0000 450560 C:\Windows\SYSTEM32\TextInputFramework.dll 10.0.14393.2189 (rs1_release.180329-1711) Microsoft Corporation "TextInputFramework.DYNLINK" 131795770645379346 0x7ffabb490000 512000 C:\Windows\system32\twinapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation twinapi 131795770645379346 0x7ffabbb80000 61440 C:\Windows\SYSTEM32\dsclient.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Data Sharing Service Client DLL 131795770645379346 0x7ffabbb90000 581632 C:\Windows\System32\Windows.System.Launcher.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows.System.Launcher 131795770645379346 0x7ffabbd00000 36864 C:\Windows\SYSTEM32\WpPortingLibrary.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation <d> DLL 131795770645379346 0x7ffabc5c0000 319488 C:\Windows\SYSTEM32\MFSENSORGROUP.dll 10.0.14393.447 (rs1_release_inmarket.161102-0100) Microsoft Corporation Media Foundation Sensor Group DLL 131795770645379346 0x7ffabcef0000 102400 C:\Windows\System32\Windows.Shell.ServiceHostBuilder.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows.Shell.ServiceHostBuilder 131795770645379346 0x7ffabd420000 487424 C:\Windows\System32\RTMediaFrame.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Runtime MediaFrame DLL 131795770645379346 0x7ffabd4a0000 1613824 C:\Windows\System32\Windows.Globalization.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Globalization 131795770645379346 0x7ffabe410000 339968 C:\Windows\SYSTEM32\globcollationhost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation GlobCollationHost 131795770645379346 0x7ffabe6e0000 561152 C:\Windows\system32\directmanipulation.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Direct Manipulation Component 131795770645379346 0x7ffabeac0000 335872 C:\Windows\System32\Windows.Storage.ApplicationData.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Application Data API Server 131795770645379346 0x7ffabf330000 2457600 C:\Windows\System32\msxml6.dll 6.30.14393.2156 Microsoft Corporation MSXML 6.0 131795780594734370 0x7ffabfb00000 626688 C:\Windows\System32\ContentDeliveryManager.Utilities.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation ContentDeliveryManager.Utilities 131795770645379346 0x7ffabfce0000 90112 C:\Windows\System32\Windows.Globalization.Fontgroups.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Fonts Mapping API 131795770645379346 0x7ffabfd00000 356352 C:\Windows\System32\Windows.Graphics.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation WinRT Windows Graphics DLL 131795770645379346 0x7ffabfd80000 86016 C:\Windows\System32\threadpoolwinrt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows WinRT Threadpool 131795770645379346 0x7ffac0080000 249856 C:\Windows\System32\resampledmo.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Media Resampler 131795770645379346 0x7ffac00c0000 282624 C:\Windows\SYSTEM32\windows.ui.core.textinput.dll 10.0.14393.2189 (rs1_release.180329-1711) Microsoft Corporation Windows.UI.Core.TextInput dll 131795770645379346 0x7ffac0110000 290816 C:\Windows\SYSTEM32\QuickActionsDataModel.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation QuickActionsDataModel 131795770645379346 0x7ffac0160000 491520 C:\Windows\ShellExperiences\QuickActions.dll 131795770645379346 0x7ffac01e0000 397312 C:\Windows\SYSTEM32\wincorlib.DLL 10.0.14393.576 (rs1_release_inmarket.161208-2252) Microsoft Corporation Microsoft Windows ® WinRT core library 131795770645379346 0x7ffac0470000 1478656 C:\Windows\SYSTEM32\MFPlat.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Media Foundation Platform DLL 131795770645379346 0x7ffac0bf0000 3559424 C:\Windows\System32\ActXPrxy.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation ActiveX Interface Marshaling Library 131795770645379346 0x7ffac1c40000 94208 C:\Windows\System32\SystemSettings.DataModel.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SystemSettings.Datamodel private API 131795770645379346 0x7ffac1e50000 188416 C:\Windows\SYSTEM32\RTWorkQ.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL для WorkQueue реального времени 131795770645379346 0x7ffac20d0000 110592 C:\Windows\System32\rmclient.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Resource Manager Client 131795770645379346 0x7ffac23c0000 331776 C:\Windows\System32\OneCoreCommonProxyStub.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation OneCore Common Proxy Stub 131795770645379346 0x7ffac2990000 385024 C:\Windows\SYSTEM32\NInput.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Pen and Touch Input Component 131795770645379346 0x7ffac34e0000 1843200 C:\Windows\SYSTEM32\urlmon.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширения OLE32 для Win32 131795770645379346 0x7ffac3cb0000 2772992 C:\Windows\SYSTEM32\iertutil.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служебная программа времени выполнения для Internet Explorer 131795770645379346 0x7ffac4000000 274432 C:\Windows\SYSTEM32\policymanager.dll 10.0.14393.2035 (rs1_release_inmarket.180110-1910) Microsoft Corporation Policy Manager DLL 131795770645379346 0x7ffac40f0000 40960 C:\Windows\SYSTEM32\msdmo.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DMO Runtime 131795770645379346 0x7ffac42a0000 659456 C:\Windows\SYSTEM32\StateRepository.Core.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation StateRepository Core 131795770645379346 0x7ffac46d0000 4161536 C:\Windows\System32\Windows.StateRepository.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Сервер Windows StateRepository API Server 131795770645379346 0x7ffac4eb0000 147456 C:\Windows\ShellExperiences\Windows.UI.Shell.SharedUtilities.dll 131795770645379346 0x7ffac5350000 1765376 C:\Windows\System32\Windows.UI.Immersive.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation WINDOWS.UI.IMMERSIVE 131795770645379346 0x7ffac5500000 438272 C:\Windows\SYSTEM32\PhotoMetadataHandler.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Photo Metadata Handler 131795770645379346 0x7ffac5b20000 49152 C:\Windows\SYSTEM32\CompPkgSup.DLL 10.0.14393.969 (rs1_release_inmarket.170315-1735) Microsoft Corporation Component Package Support DLL 131795770645379346 0x7ffac5ce0000 1744896 C:\Windows\SYSTEM32\uiautomationcore.dll 7.2.14393.0 (rs1_release.160715-1616) Microsoft Corporation Основные автоматические компоненты Microsoft UI 131795770645379346 0x7ffac5e90000 380928 C:\Windows\System32\Windows.Media.MediaControl.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL сервера MediaControl среды выполнения Windows 131795770645379346 0x7ffac60e0000 221184 C:\Windows\SYSTEM32\XmlLite.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft XmlLite Library 131795770645379346 0x7ffac6ac0000 835584 C:\Windows\System32\Windows.UI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Runtime UI Foundation DLL 131795770645379346 0x7ffac6bd0000 413696 C:\Windows\SYSTEM32\OLEACC.dll 7.2.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Active Accessibility Core Component 131795770645379346 0x7ffac6f50000 5632000 C:\Windows\SYSTEM32\d2d1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека Microsoft D2D 131795770645379346 0x7ffac7580000 1077248 C:\Windows\SYSTEM32\MrmCoreR.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Windows MRM 131795770645379346 0x7ffac76a0000 159744 C:\Windows\SYSTEM32\sppc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Software Licensing Client DLL 131795770645379346 0x7ffac7720000 1601536 C:\Windows\System32\OneCoreUAPCommonProxyStub.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation OneCoreUAP Common Proxy Stub 131795770645379346 0x7ffac7990000 155648 C:\Windows\SYSTEM32\SLC.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Software Licensing Client DLL 131795770645379346 0x7ffac7e30000 40960 C:\Windows\SYSTEM32\fontgroupsoverride.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation fontgroupsoverride.dll 131795770645379346 0x7ffac7fc0000 2674688 C:\Windows\SYSTEM32\d3d10warp.dll 10.0.14393.576 (rs1_release_inmarket.161208-2252) Microsoft Corporation Direct3D 10 Rasterizer 131795770645379346 0x7ffac84e0000 53248 C:\Windows\System32\NotificationControllerPS.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation NotificationController Proxy Stub 131795770645379346 0x7ffac84f0000 299008 C:\Windows\system32\DataExchange.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation Data exchange 131795770645379346 0x7ffac88a0000 2842624 C:\Windows\SYSTEM32\d3d11.dll 10.0.14393.953 (rs1_release_inmarket.170303-1614) Microsoft Corporation Direct3D 11 Runtime 131795770645379346 0x7ffac8f90000 45056 C:\Windows\SYSTEM32\AVRT.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Среда выполнения мультимедиа в реальном времени 131795770645379346 0x7ffac8fa0000 253952 C:\Windows\SYSTEM32\logoncli.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Net Logon Client DLL 131795770645379346 0x7ffac92e0000 1269760 C:\Windows\System32\WinTypes.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL основных типов Windows 131795770645379346 0x7ffac9480000 462848 C:\Windows\System32\MMDevApi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation MMDevice API 131795770645379346 0x7ffac9500000 2682880 C:\Windows\system32\CoreUIComponents.dll 131795770645379346 0x7ffac9f50000 1736704 C:\Windows\system32\windowscodecs.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Microsoft Windows Codecs Library 131795770645379346 0x7ffaca340000 1593344 C:\Windows\SYSTEM32\PROPSYS.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Система страниц свойств (Майкрософт) 131795770645379346 0x7ffaca550000 36864 C:\Windows\SYSTEM32\ksuser.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User CSA Library 131795770645379346 0x7ffaca570000 421888 C:\Windows\SYSTEM32\Bcp47Langs.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation BCP47 Language Classes 131795770645379346 0x7ffaca5e0000 155648 C:\Windows\SYSTEM32\dwmapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Интерфейс API диспетчера окон рабочего стола (Майкрософт) 131795770645379346 0x7ffaca640000 770048 C:\Windows\SYSTEM32\CoreMessaging.dll 10.0.14393.0 Microsoft Corporation Microsoft CoreMessaging Dll 131795770645379346 0x7ffaca770000 1380352 C:\Windows\SYSTEM32\dcomp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft DirectComposition Library 131795770645379346 0x7ffacab40000 176128 C:\Windows\SYSTEM32\winmmbase.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base Multimedia Extension API DLL 131795770645379346 0x7ffacaf00000 610304 C:\Windows\system32\uxtheme.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека тем UxTheme (Microsoft) 131795770645379346 0x7ffacb140000 593920 C:\Windows\SYSTEM32\msvcp110_win.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Microsoft® STL110 C++ Runtime Library 131795770645379346 0x7ffacb1e0000 1163264 C:\Windows\System32\twinapi.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation twinapi.appcore 131795770645379346 0x7ffacb300000 364544 C:\Windows\SYSTEM32\VEEventDispatcher.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Visual Element Event dispatcher 131795770645379346 0x7ffacb3f0000 163840 C:\Windows\SYSTEM32\DEVOBJ.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Device Information Set DLL 131795770645379346 0x7ffacb780000 651264 C:\Windows\SYSTEM32\dxgi.dll 10.0.14393.953 (rs1_release_inmarket.170303-1614) Microsoft Corporation DirectX Graphics Infrastructure 131795770645379346 0x7ffacbe40000 126976 C:\Windows\SYSTEM32\USERENV.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Userenv 131795770645379346 0x7ffacc170000 45056 C:\Windows\SYSTEM32\CRYPTBASE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base cryptographic API DLL 131795770645379346 0x7ffacc350000 180224 C:\Windows\SYSTEM32\SspiCli.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Security Support Provider Interface 131795770645379346 0x7ffacc5c0000 352256 C:\Windows\SYSTEM32\winsta.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Winstation Library 131795770645379346 0x7ffacc620000 176128 C:\Windows\SYSTEM32\bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795770645379346 0x7ffacc6e0000 61440 C:\Windows\System32\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795770645379346 0x7ffacc6f0000 311296 C:\Windows\System32\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795770645379346 0x7ffacc740000 81920 C:\Windows\System32\profapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Profile Basic API 131795770645379346 0x7ffacc760000 65536 C:\Windows\System32\MSASN1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ASN.1 Runtime APIs 131795770645379346 0x7ffacc8f0000 1003520 C:\Windows\System32\ucrtbase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645379346 0x7ffacc9f0000 434176 C:\Windows\System32\bcryptPrimitives.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Cryptographic Primitives Library 131795770645379346 0x7ffacca60000 122880 C:\Windows\System32\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795770645379346 0x7ffaccae0000 692224 C:\Windows\System32\shcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795770645379346 0x7ffaccb90000 7180288 C:\Windows\System32\windows.storage.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API хранения Microsoft WinRT 131795770645379346 0x7ffacd270000 2215936 C:\Windows\System32\KERNELBASE.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645379346 0x7ffacd490000 1871872 C:\Windows\System32\CRYPT32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API32 криптографии 131795770645379346 0x7ffacd710000 638976 C:\Windows\System32\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645379346 0x7ffacd7b0000 270336 C:\Windows\System32\cfgmgr32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Configuration Manager DLL 131795770645379346 0x7ffacd810000 22056960 C:\Windows\System32\SHELL32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Общая библиотека оболочки Windows 131795770645379346 0x7ffaced20000 782336 C:\Windows\System32\OLEAUT32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795770645379346 0x7ffacee50000 1183744 C:\Windows\System32\RPCRT4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795770645379346 0x7ffacef90000 647168 C:\Windows\System32\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795770645379346 0x7ffacf0d0000 704512 C:\Windows\System32\KERNEL32.DLL 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645379346 0x7ffacf1e0000 1417216 C:\Windows\System32\msctf.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Серверная библиотека MSCTF 131795770645379346 0x7ffacf770000 212992 C:\Windows\System32\GDI32.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation GDI Client DLL 131795770645379346 0x7ffacf890000 188416 C:\Windows\System32\IMM32.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Multi-User Windows IMM32 API Client DLL 131795770645379346 0x7ffacf8c0000 1462272 C:\Windows\System32\user32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795770645379346 0x7ffacfb30000 2916352 C:\Windows\System32\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795770645379346 0x7ffacfe20000 663552 C:\Windows\System32\advapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795770645379346 0x7ffad0070000 1277952 C:\Windows\System32\ole32.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft OLE для Windows 131795770645379346 0x7ffad01b0000 335872 C:\Windows\System32\SHLWAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека небольших программ оболочки 131795770645379346 0x7ffad0210000 364544 C:\Windows\System32\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795770645379346 0x7ffad0270000 1908736 C:\Windows\SYSTEM32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 40 4856 3108 11 00000000:0031f1da 131765778391112136 0 0 1 Обязательная метка\Средний обязательный уровень WIN-0UOTFKKVN1S\User MSASCuiL.exe C:\Program Files\Windows Defender\MSASCuiL.exe "C:\Program Files\Windows Defender\MSASCuiL.exe" Microsoft Corporation 4.10.14393.1198 (rs1_release_sec.170427-1353) Windows Defender notification icon 131795770645379462 0x23622c70000 733184 C:\Program Files\Windows Defender\EppManifest.dll 4.10.14393.0 (rs1_release.160715-1616) Microsoft Corporation Модуль ресурсов настройки пользовательского интерфейса 131795770645379462 0x7ff63bef0000 651264 C:\Program Files\Windows Defender\MSASCuiL.exe 4.10.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Windows Defender notification icon 131795770645379462 0x7ffab8da0000 1675264 C:\Windows\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.14393.1715_none_aec701fbddd850fa\gdiplus.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Microsoft GDI+ 131795770645379462 0x7ffabf330000 2457600 C:\Windows\System32\msxml6.dll 6.30.14393.2156 Microsoft Corporation MSXML 6.0 131795770645379462 0x7ffac4560000 950272 C:\Program Files\Windows Defender\mpclient.dll 4.10.14393.1794 (rs1_release.171008-1615) Microsoft Corporation Client Interface 131795770645379462 0x7ffac4ea0000 36864 C:\Windows\SYSTEM32\atlthunk.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation atlthunk.dll 131795770645379462 0x7ffac9f50000 1736704 C:\Windows\SYSTEM32\WindowsCodecs.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Microsoft Windows Codecs Library 131795770645379462 0x7ffaca4e0000 77824 C:\Windows\SYSTEM32\WTSAPI32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Remote Desktop Session Host Server SDK APIs 131795770645379462 0x7ffaca5e0000 155648 C:\Windows\system32\dwmapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Интерфейс API диспетчера окон рабочего стола (Майкрософт) 131795770645379462 0x7ffacaf00000 610304 C:\Windows\system32\uxtheme.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека тем UxTheme (Microsoft) 131795770645379462 0x7ffacb6f0000 143360 C:\Windows\SYSTEM32\gpapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиентские функции API групповой политики 131795770645379462 0x7ffacbbb0000 208896 C:\Windows\system32\rsaenh.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Enhanced Cryptographic Provider 131795770645379462 0x7ffacbe40000 126976 C:\Windows\SYSTEM32\USERENV.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Userenv 131795770645379462 0x7ffacc150000 94208 C:\Windows\SYSTEM32\CRYPTSP.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Cryptographic Service Provider API 131795770645379462 0x7ffacc170000 45056 C:\Windows\SYSTEM32\CRYPTBASE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base cryptographic API DLL 131795770645379462 0x7ffacc620000 176128 C:\Windows\SYSTEM32\bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795770645379462 0x7ffacc6e0000 61440 C:\Windows\System32\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795770645379462 0x7ffacc6f0000 311296 C:\Windows\System32\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795770645379462 0x7ffacc740000 81920 C:\Windows\System32\profapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Profile Basic API 131795770645379462 0x7ffacc760000 65536 C:\Windows\System32\MSASN1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ASN.1 Runtime APIs 131795770645379462 0x7ffacc8f0000 1003520 C:\Windows\System32\ucrtbase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645379462 0x7ffacc9f0000 434176 C:\Windows\System32\bcryptPrimitives.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Cryptographic Primitives Library 131795770645379462 0x7ffacca60000 122880 C:\Windows\System32\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795770645379462 0x7ffacca80000 348160 C:\Windows\System32\WINTRUST.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation Microsoft Trust Verification APIs 131795770645379462 0x7ffaccae0000 692224 C:\Windows\System32\shcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795770645379462 0x7ffaccb90000 7180288 C:\Windows\System32\windows.storage.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API хранения Microsoft WinRT 131795770645379462 0x7ffacd270000 2215936 C:\Windows\System32\KERNELBASE.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645379462 0x7ffacd490000 1871872 C:\Windows\System32\CRYPT32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API32 криптографии 131795770645379462 0x7ffacd710000 638976 C:\Windows\System32\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645379462 0x7ffacd7b0000 270336 C:\Windows\System32\cfgmgr32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Configuration Manager DLL 131795770645379462 0x7ffacd810000 22056960 C:\Windows\System32\SHELL32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Общая библиотека оболочки Windows 131795770645379462 0x7ffaced20000 782336 C:\Windows\System32\OLEAUT32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795770645379462 0x7ffacee50000 1183744 C:\Windows\System32\RPCRT4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795770645379462 0x7ffacef90000 647168 C:\Windows\System32\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795770645379462 0x7ffacf030000 651264 C:\Windows\System32\clbcatq.dll 2001.12.10941.16384 (rs1_release.160715-1616) Microsoft Corporation COM+ Configuration Catalog 131795770645379462 0x7ffacf0d0000 704512 C:\Windows\System32\KERNEL32.DLL 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645379462 0x7ffacf1e0000 1417216 C:\Windows\System32\MSCTF.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Серверная библиотека MSCTF 131795770645379462 0x7ffacf770000 212992 C:\Windows\System32\GDI32.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation GDI Client DLL 131795770645379462 0x7ffacf890000 188416 C:\Windows\System32\IMM32.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Multi-User Windows IMM32 API Client DLL 131795770645379462 0x7ffacf8c0000 1462272 C:\Windows\System32\USER32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795770645379462 0x7ffacfb30000 2916352 C:\Windows\System32\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795770645379462 0x7ffacfe00000 114688 C:\Windows\System32\imagehlp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT Image Helper 131795770645379462 0x7ffacfe20000 663552 C:\Windows\System32\ADVAPI32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795770645379462 0x7ffad0070000 1277952 C:\Windows\System32\ole32.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft OLE для Windows 131795770645379462 0x7ffad01b0000 335872 C:\Windows\System32\SHLWAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека небольших программ оболочки 131795770645379462 0x7ffad0210000 364544 C:\Windows\System32\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795770645379462 0x7ffad0270000 1908736 C:\Windows\SYSTEM32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 41 4928 3108 11 00000000:0031f1da 131765778406250112 0 0 0 Обязательная метка\Средний обязательный уровень WIN-0UOTFKKVN1S\User uTorrent.exe C:\Users\User\AppData\Roaming\uTorrent\uTorrent.exe "C:\Users\User\AppData\Roaming\uTorrent\uTorrent.exe" /MINIMIZED BitTorrent Inc. 3.5.4.44498 µTorrent 131795770645379614 0x400000 5406720 C:\Users\User\AppData\Roaming\uTorrent\uTorrent.exe 3.5.4.44498 BitTorrent Inc. µTorrent 131795770645379614 0x5c020000 335872 C:\Windows\System32\wow64.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation Win32 Emulation on NT64 131795770645379614 0x5c080000 487424 C:\Windows\System32\wow64win.dll 10.0.14393.1884 (rs1_release.171101-1233) Microsoft Corporation Wow64 Console and Win32 API Logging 131795770645379614 0x5c100000 40960 C:\Windows\System32\wow64cpu.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation AMD64 Wow64 CPU 131795770645379614 0x60750000 1556480 C:\Program Files (x86)\360\Total Security\safemon\safemon.dll 8, 4, 0, 1420 Qihu 360 Software Co., Ltd. 360 Internet Security Internet Protection 131795770645379614 0x6c5c0000 1384448 C:\Windows\SysWOW64\UIAutomationCore.DLL 7.2.14393.0 (rs1_release.160715-1616) Microsoft Corporation Основные автоматические компоненты Microsoft UI 131795770645379614 0x6cda0000 528384 C:\Windows\SysWOW64\sxs.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Fusion 2.5 131795770645379614 0x6e140000 348160 C:\Windows\SysWOW64\upnp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API контрольной точки UPnP 131795770645379614 0x6e1a0000 98304 C:\Windows\SysWOW64\ATL.DLL 3.05.2284 Microsoft Corporation ATL Module for Windows XP (Unicode) 131795770645379614 0x6e1c0000 307200 C:\Windows\SysWOW64\hnetcfg.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Диспетчер конфигурации домашней сети 131795770645379614 0x6ef20000 65536 C:\Windows\SysWOW64\SSDPAPI.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation SSDP Client API DLL 131795770645379614 0x6fc70000 385024 C:\Windows\SysWOW64\FirewallAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API брандмауэра Windows 131795770645379614 0x6fd30000 139264 C:\Windows\SysWOW64\DEVOBJ.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Device Information Set DLL 131795770645379614 0x703d0000 2056192 C:\Windows\SysWOW64\DWrite.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Службы Microsoft DirectX Typography 131795770645379614 0x705e0000 344064 C:\Windows\SysWOW64\OLEACC.dll 7.2.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Active Accessibility Core Component 131795770645379614 0x70640000 1499136 C:\Windows\SysWOW64\WindowsCodecs.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Microsoft Windows Codecs Library 131795770645379614 0x707b0000 110592 C:\Windows\SysWOW64\ncryptsslp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft SChannel Provider 131795770645379614 0x70a40000 81920 C:\Windows\SysWOW64\NLAapi.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Network Location Awareness 2 131795770645379614 0x70a60000 90112 C:\Windows\SysWOW64\pnrpnsp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик пространства имен PNRP 131795770645379614 0x70a80000 409600 C:\Windows\SysWOW64\schannel.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик безопасности TLS/SSL 131795770645379614 0x70af0000 36864 C:\Windows\SysWOW64\npmproxy.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Network List Manager Proxy 131795770645379614 0x70b40000 69632 C:\Windows\SysWOW64\mskeyprotect.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик защиты ключей (Майкрософт) 131795770645379614 0x70b70000 163840 C:\Windows\SysWOW64\ntmarta.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик Windows NT MARTA 131795770645379614 0x70ba0000 188416 C:\Windows\SysWOW64\FWPolicyIOMgr.dll 10.0.14393.2189 (rs1_release.180329-1711) Microsoft Corporation FwPolicyIoMgr DLL 131795770645379614 0x70bd0000 147456 C:\Windows\SysWOW64\fwbase.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Firewall Base DLL 131795770645379614 0x70c00000 49152 C:\Windows\SysWOW64\winrnr.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation LDAP RnR Provider DLL 131795770645379614 0x70c10000 73728 C:\Windows\SysWOW64\napinsp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик оболочки совместимости для имен электронной почты 131795770645379614 0x70ca0000 45056 C:\Windows\SysWOW64\NETUTILS.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API Helpers DLL 131795770645379614 0x70cc0000 65536 C:\Windows\SysWOW64\ondemandconnroutehelper.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation On Demand Connctiond Route Helper 131795770645379614 0x70e60000 176128 C:\Windows\SysWOW64\NTASN1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft ASN.1 API 131795770645379614 0x71140000 77824 C:\Windows\SysWOW64\NETAPI32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API DLL 131795770645379614 0x71610000 77824 C:\Windows\SysWOW64\dhcpcsvc6.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиент DHCPv6 131795770645379614 0x725e0000 2273280 C:\Windows\SysWOW64\iertutil.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служебная программа времени выполнения для Internet Explorer 131795770645379614 0x728e0000 1372160 C:\Windows\SysWOW64\PROPSYS.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Система страниц свойств (Майкрософт) 131795770645379614 0x72b90000 126976 C:\Windows\SysWOW64\dwmapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Интерфейс API диспетчера окон рабочего стола (Майкрософт) 131795770645379614 0x73a40000 32768 C:\Windows\SysWOW64\WINNSI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Network Store Information RPC interface 131795770645379614 0x73a50000 299008 C:\Windows\SysWOW64\fwpuclnt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API пользовательского режима FWP/IPsec 131795770645379614 0x73aa0000 32768 C:\Windows\SysWOW64\DPAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Data Protection API 131795770645379614 0x73ab0000 32768 C:\Windows\SysWOW64\rasadhlp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Remote Access AutoDial Helper 131795770645379614 0x73ac0000 81920 C:\Windows\SysWOW64\dhcpcsvc.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служба DHCP-клиента 131795770645379614 0x73ae0000 40960 C:\Windows\SysWOW64\Secur32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Security Support Provider Interface 131795770645379614 0x73c50000 1478656 C:\Windows\WinSxS\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.14393.1715_none_f67438d2f2547a00\gdiplus.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Microsoft GDI+ 131795770645379614 0x73ee0000 61440 C:\Windows\SysWOW64\WTSAPI32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Remote Desktop Session Host Server SDK APIs 131795770645379614 0x73ef0000 24576 C:\Windows\SysWOW64\MSIMG32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation GDIEXT Client DLL 131795770645379614 0x73f00000 192512 C:\Windows\SysWOW64\IPHLPAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API вспомогательного приложения IP 131795770645379614 0x73f30000 512000 C:\Windows\SysWOW64\DNSAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Динамическая библиотека API DNS-клиента 131795770645379614 0x73fc0000 28672 C:\Windows\SysWOW64\wship6.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL помощника Winsock2 (TL/IPv6) 131795770645379614 0x73fd0000 28672 C:\Windows\SysWOW64\wshtcpip.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL помощника службы Winsock2 (TL/IPv4) 131795770645379614 0x73fe0000 32768 C:\Windows\SysWOW64\wshqos.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL помощника службы QoS Winsock2 131795770645379614 0x73ff0000 319488 C:\Windows\SysWOW64\mswsock.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширение поставщика службы API Microsoft Windows Sockets 2.0 131795770645379614 0x74040000 126976 C:\Windows\SysWOW64\gpapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиентские функции API групповой политики 131795770645379614 0x74060000 192512 C:\Windows\SysWOW64\rsaenh.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Enhanced Cryptographic Provider 131795770645379614 0x74110000 479232 C:\Windows\SysWOW64\uxtheme.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека тем UxTheme (Microsoft) 131795770645379614 0x74190000 110592 C:\Windows\SysWOW64\bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795770645379614 0x741b0000 77824 C:\Windows\SysWOW64\CRYPTSP.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Cryptographic Service Provider API 131795770645379614 0x74260000 2514944 C:\Windows\SysWOW64\WININET.dll 11.00.14393.447 (rs1_release_inmarket.161102-0100) Microsoft Corporation Расширения Интернета для Win32 131795770645379614 0x744d0000 2138112 C:\Windows\WinSxS\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.14393.953_none_89c2555adb023171\COMCTL32.dll 6.10 (rs1_release_inmarket.170303-1614) Microsoft Corporation Библиотека элементов управления взаимодействия с пользователем 131795770645379614 0x746e0000 32768 C:\Windows\SysWOW64\VERSION.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Version Checking and File Installation Libraries 131795770645379614 0x746f0000 106496 C:\Windows\SysWOW64\USERENV.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Userenv 131795770645379614 0x747d0000 40960 C:\Windows\SysWOW64\CRYPTBASE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base cryptographic API DLL 131795770645379614 0x747e0000 126976 C:\Windows\SysWOW64\SspiCli.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Security Support Provider Interface 131795770645379614 0x74800000 151552 C:\Windows\SysWOW64\IMM32.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Multi-User Windows IMM32 API Client DLL 131795770645379614 0x74910000 2170880 C:\Windows\SysWOW64\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795770645379614 0x74b30000 53248 C:\Windows\SysWOW64\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795770645379614 0x74b40000 102400 C:\Windows\SysWOW64\imagehlp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT Image Helper 131795770645379614 0x74b60000 790528 C:\Windows\SysWOW64\RPCRT4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795770645379614 0x74c30000 1417216 C:\Windows\SysWOW64\gdi32full.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation GDI Client DLL 131795770645379614 0x74d90000 24576 C:\Windows\SysWOW64\PSAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Process Status Helper 131795770645379614 0x74da0000 778240 C:\Windows\SysWOW64\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795770645379614 0x74e60000 557056 C:\Windows\SysWOW64\shcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795770645379614 0x74ef0000 540672 C:\Windows\SysWOW64\clbcatq.dll 2001.12.10941.16384 (rs1_release.160715-1616) Microsoft Corporation COM+ Configuration Catalog 131795770645379614 0x74f80000 278528 C:\Windows\SysWOW64\wintrust.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation Microsoft Trust Verification APIs 131795770645379614 0x74fd0000 405504 C:\Windows\SysWOW64\WS2_32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation 32-разрядная библиотека Windows Socket 2.0 131795770645379614 0x75040000 282624 C:\Windows\SysWOW64\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795770645379614 0x75090000 1265664 C:\Windows\SysWOW64\MSCTF.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Серверная библиотека MSCTF 131795770645379614 0x751d0000 57344 C:\Windows\SysWOW64\MSASN1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ASN.1 Runtime APIs 131795770645379614 0x751e0000 1708032 C:\Windows\SysWOW64\KERNELBASE.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645379614 0x75390000 266240 C:\Windows\SysWOW64\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795770645379614 0x753e0000 1560576 C:\Windows\SysWOW64\CRYPT32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API32 криптографии 131795770645379614 0x75560000 487424 C:\Windows\SysWOW64\ADVAPI32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795770645379614 0x756c0000 5693440 C:\Windows\SysWOW64\windows.storage.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API хранения Microsoft WinRT 131795770645379614 0x75c90000 286720 C:\Windows\SysWOW64\SHLWAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека небольших программ оболочки 131795770645379614 0x75ce0000 20811776 C:\Windows\SysWOW64\SHELL32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Общая библиотека оболочки Windows 131795770645379614 0x770c0000 4239360 C:\Windows\SysWOW64\SETUPAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Setup API 131795770645379614 0x774d0000 86016 C:\Windows\SysWOW64\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795770645379614 0x774f0000 61440 C:\Windows\SysWOW64\profapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Profile Basic API 131795770645379614 0x77560000 1437696 C:\Windows\SysWOW64\USER32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795770645379614 0x776c0000 368640 C:\Windows\SysWOW64\bcryptPrimitives.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation Windows Cryptographic Primitives Library 131795770645379614 0x77780000 503808 C:\Windows\SysWOW64\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645379614 0x77800000 606208 C:\Windows\SysWOW64\OLEAUT32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795770645379614 0x77ac0000 966656 C:\Windows\SysWOW64\ole32.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft OLE для Windows 131795770645379614 0x77bb0000 176128 C:\Windows\SysWOW64\GDI32.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation GDI Client DLL 131795770645379614 0x77be0000 937984 C:\Windows\SysWOW64\COMDLG32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека общих диалоговых окон 131795770645379614 0x77cd0000 221184 C:\Windows\SysWOW64\cfgmgr32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Configuration Manager DLL 131795770645379614 0x77d10000 28672 C:\Windows\SysWOW64\NSI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation NSI User-mode interface DLL 131795770645379614 0x77d20000 1585152 C:\Windows\SysWOW64\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 131795770645379614 0x7ffad0270000 1908736 C:\Windows\SYSTEM32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 42 3608 664 6 00000000:0031f1da 131765778496229053 0 0 1 Обязательная метка\Средний обязательный уровень WIN-0UOTFKKVN1S\User ApplicationFrameHost.exe C:\Windows\system32\ApplicationFrameHost.exe C:\Windows\system32\ApplicationFrameHost.exe -Embedding Microsoft Corporation 10.0.14393.0 (rs1_release.160715-1616) Application Frame Host 131795770645379722 0x7ff6aa270000 61440 C:\Windows\system32\ApplicationFrameHost.exe 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Application Frame Host 131795770645379722 0x7ffabb490000 512000 C:\Windows\System32\TWINAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation twinapi 131795770645379722 0x7ffac0bf0000 3559424 C:\Windows\System32\ActXPrxy.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation ActiveX Interface Marshaling Library 131795770645379722 0x7ffac3cb0000 2772992 C:\Windows\SYSTEM32\iertutil.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служебная программа времени выполнения для Internet Explorer 131795770645379722 0x7ffac5240000 1114112 C:\Windows\System32\ApplicationFrame.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Фрейм приложения 131795770645379722 0x7ffac5ce0000 1744896 C:\Windows\system32\UIAutomationCore.DLL 7.2.14393.0 (rs1_release.160715-1616) Microsoft Corporation Основные автоматические компоненты Microsoft UI 131795770645379722 0x7ffac6bd0000 413696 C:\Windows\system32\OLEACC.dll 7.2.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Active Accessibility Core Component 131795770645379722 0x7ffac6f50000 5632000 C:\Windows\System32\d2d1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека Microsoft D2D 131795770645379722 0x7ffac7580000 1077248 C:\Windows\SYSTEM32\mrmcorer.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Windows MRM 131795770645379722 0x7ffac7fc0000 2674688 C:\Windows\system32\D3D10Warp.dll 10.0.14393.576 (rs1_release_inmarket.161208-2252) Microsoft Corporation Direct3D 10 Rasterizer 131795770645379722 0x7ffac88a0000 2842624 C:\Windows\System32\d3d11.dll 10.0.14393.953 (rs1_release_inmarket.170303-1614) Microsoft Corporation Direct3D 11 Runtime 131795770645379722 0x7ffac9ec0000 294912 C:\Windows\System32\UIAnimation.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Animation Manager 131795770645379722 0x7ffac9f50000 1736704 C:\Windows\system32\windowscodecs.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Microsoft Windows Codecs Library 131795770645379722 0x7ffaca340000 1593344 C:\Windows\System32\PROPSYS.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Система страниц свойств (Майкрософт) 131795770645379722 0x7ffaca570000 421888 C:\Windows\system32\Bcp47Langs.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation BCP47 Language Classes 131795770645379722 0x7ffaca5e0000 155648 C:\Windows\System32\dwmapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Интерфейс API диспетчера окон рабочего стола (Майкрософт) 131795770645379722 0x7ffaca770000 1380352 C:\Windows\System32\dcomp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft DirectComposition Library 131795770645379722 0x7ffacaf00000 610304 C:\Windows\System32\UxTheme.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека тем UxTheme (Microsoft) 131795770645379722 0x7ffacb1e0000 1163264 C:\Windows\System32\twinapi.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation twinapi.appcore 131795770645379722 0x7ffacb3f0000 163840 C:\Windows\System32\DEVOBJ.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Device Information Set DLL 131795770645379722 0x7ffacb780000 651264 C:\Windows\System32\dxgi.dll 10.0.14393.953 (rs1_release_inmarket.170303-1614) Microsoft Corporation DirectX Graphics Infrastructure 131795770645379722 0x7ffacbe40000 126976 C:\Windows\system32\USERENV.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Userenv 131795770645379722 0x7ffacc520000 622592 C:\Windows\SYSTEM32\sxs.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Fusion 2.5 131795770645379722 0x7ffacc620000 176128 C:\Windows\System32\bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795770645379722 0x7ffacc6e0000 61440 C:\Windows\System32\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795770645379722 0x7ffacc6f0000 311296 C:\Windows\System32\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795770645379722 0x7ffacc740000 81920 C:\Windows\System32\profapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Profile Basic API 131795770645379722 0x7ffacc760000 65536 C:\Windows\System32\MSASN1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ASN.1 Runtime APIs 131795770645379722 0x7ffacc8f0000 1003520 C:\Windows\System32\ucrtbase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645379722 0x7ffacc9f0000 434176 C:\Windows\System32\bcryptPrimitives.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Cryptographic Primitives Library 131795770645379722 0x7ffacca60000 122880 C:\Windows\System32\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795770645379722 0x7ffaccae0000 692224 C:\Windows\System32\SHCORE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795770645379722 0x7ffaccb90000 7180288 C:\Windows\System32\windows.storage.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API хранения Microsoft WinRT 131795770645379722 0x7ffacd270000 2215936 C:\Windows\System32\KERNELBASE.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645379722 0x7ffacd490000 1871872 C:\Windows\System32\CRYPT32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API32 криптографии 131795770645379722 0x7ffacd710000 638976 C:\Windows\System32\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645379722 0x7ffacd7b0000 270336 C:\Windows\System32\cfgmgr32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Configuration Manager DLL 131795770645379722 0x7ffacd810000 22056960 C:\Windows\System32\SHELL32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Общая библиотека оболочки Windows 131795770645379722 0x7ffaced20000 782336 C:\Windows\System32\OLEAUT32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795770645379722 0x7ffacee50000 1183744 C:\Windows\System32\RPCRT4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795770645379722 0x7ffacef90000 647168 C:\Windows\System32\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795770645379722 0x7ffacf030000 651264 C:\Windows\System32\clbcatq.dll 2001.12.10941.16384 (rs1_release.160715-1616) Microsoft Corporation COM+ Configuration Catalog 131795770645379722 0x7ffacf0d0000 704512 C:\Windows\System32\KERNEL32.DLL 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645379722 0x7ffacf1e0000 1417216 C:\Windows\System32\MSCTF.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Серверная библиотека MSCTF 131795770645379722 0x7ffacf770000 212992 C:\Windows\System32\GDI32.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation GDI Client DLL 131795770645379722 0x7ffacf890000 188416 C:\Windows\System32\IMM32.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Multi-User Windows IMM32 API Client DLL 131795770645379722 0x7ffacf8c0000 1462272 C:\Windows\System32\USER32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795770645379722 0x7ffacfb30000 2916352 C:\Windows\System32\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795770645379722 0x7ffacfe20000 663552 C:\Windows\System32\advapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795770645379722 0x7ffad01b0000 335872 C:\Windows\System32\SHLWAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека небольших программ оболочки 131795770645379722 0x7ffad0210000 364544 C:\Windows\System32\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795770645379722 0x7ffad0270000 1908736 C:\Windows\SYSTEM32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 43 5952 4928 41 00000000:0031f1da 131765778883326814 0 1 0 Обязательная метка\Низкий обязательный уровень WIN-0UOTFKKVN1S\User utorrentie.exe C:\Users\User\AppData\Roaming\uTorrent\updates\3.5.4_44498\utorrentie.exe "C:\Users\User\AppData\Roaming\uTorrent\updates\3.5.4_44498\utorrentie.exe" uTorrent_4928_02D54150_1240996307 µTorrent4823DF041B09 uTorrent BitTorrent Inc. 1.0.0 WebHelper 131795770645379833 0x1180000 417792 C:\Users\User\AppData\Roaming\uTorrent\updates\3.5.4_44498\utorrentie.exe 1.0.0 BitTorrent Inc. WebHelper 131795770645379833 0x5c020000 335872 C:\Windows\System32\wow64.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation Win32 Emulation on NT64 131795770645379833 0x5c080000 487424 C:\Windows\System32\wow64win.dll 10.0.14393.1884 (rs1_release.171101-1233) Microsoft Corporation Wow64 Console and Win32 API Logging 131795770645379833 0x5c100000 40960 C:\Windows\System32\wow64cpu.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation AMD64 Wow64 CPU 131795770645379833 0x63490000 221184 C:\Windows\SysWOW64\dinput8.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft DirectInput 131795770645379833 0x634d0000 561152 C:\Windows\SysWOW64\DSOUND.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DirectSound 131795770645379833 0x63560000 23334912 C:\Windows\SysWOW64\Macromed\Flash\Flash.ocx 29,0,0,140 Adobe Systems, Inc. Adobe Flash Player 29.0 r0 131795770645379833 0x64d00000 5079040 C:\Windows\SysWOW64\d2d1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека Microsoft D2D 131795770645379833 0x651e0000 20537344 C:\Windows\SysWOW64\mshtml.dll 11.00.14393.447 (rs1_release_inmarket.161102-0100) Microsoft Corporation Средство просмотра HTML Microsoft® 131795770645379833 0x66580000 12247040 C:\Windows\SysWOW64\ieframe.dll 11.00.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Браузер 131795770645379833 0x6b670000 212992 C:\Windows\SysWOW64\mlang.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL многоязыковой поддержки 131795770645379833 0x6b6b0000 36864 C:\Windows\SysWOW64\atlthunk.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation atlthunk.dll 131795770645379833 0x6c290000 987136 C:\Windows\SysWOW64\twinapi.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation twinapi.appcore 131795770645379833 0x6c390000 1126400 C:\Windows\SysWOW64\dcomp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft DirectComposition Library 131795770645379833 0x6c4b0000 278528 C:\Windows\SysWOW64\dataexchange.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation Data exchange 131795770645379833 0x6c540000 483328 C:\Windows\SysWOW64\webio.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API протоколов передачи по Веб 131795770645379833 0x6c5c0000 1384448 C:\Windows\SysWOW64\UIAutomationCore.DLL 7.2.14393.0 (rs1_release.160715-1616) Microsoft Corporation Основные автоматические компоненты Microsoft UI 131795770645379833 0x6c720000 2318336 C:\Windows\SysWOW64\d3d10warp.dll 10.0.14393.576 (rs1_release_inmarket.161208-2252) Microsoft Corporation Direct3D 10 Rasterizer 131795770645379833 0x6c960000 57344 C:\Windows\SysWOW64\msimtf.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Active IMM Server DLL 131795770645379833 0x6c970000 3698688 C:\Windows\SysWOW64\jscript9.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft ® JScript 131795770645379833 0x6cd00000 69632 C:\Windows\SysWOW64\WLDP.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Политика блокировки Windows 131795770645379833 0x6cd20000 135168 C:\Windows\SysWOW64\srpapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL программных интерфейсов (API) поставщика общих ресурсов 131795770645379833 0x6cda0000 528384 C:\Windows\SysWOW64\sxs.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Fusion 2.5 131795770645379833 0x6d080000 151552 C:\Windows\SysWOW64\cryptnet.dll 10.0.14393.2035 (rs1_release_inmarket.180110-1910) Microsoft Corporation Crypto Network Related API 131795770645379833 0x6d0b0000 847872 C:\Windows\SysWOW64\wintypes.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL основных типов Windows 131795770645379833 0x6fd30000 139264 C:\Windows\SysWOW64\DEVOBJ.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Device Information Set DLL 131795770645379833 0x6fd60000 360448 C:\Windows\SysWOW64\MMDevApi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation MMDevice API 131795770645379833 0x6fdc0000 507904 C:\Windows\SysWOW64\AUDIOSES.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Сеанс обработки звука 131795770645379833 0x6fe90000 544768 C:\Windows\SysWOW64\mscms.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL-библиотека системы сопоставления цветов Майкрософт 131795770645379833 0x70340000 536576 C:\Windows\SysWOW64\dxgi.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation DirectX Graphics Infrastructure 131795770645379833 0x703d0000 2056192 C:\Windows\SysWOW64\DWrite.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Службы Microsoft DirectX Typography 131795770645379833 0x70640000 1499136 C:\Windows\SysWOW64\windowscodecs.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Microsoft Windows Codecs Library 131795770645379833 0x707b0000 110592 C:\Windows\SysWOW64\ncryptsslp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft SChannel Provider 131795770645379833 0x707f0000 2293760 C:\Windows\SysWOW64\d3d11.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation Direct3D 11 Runtime 131795770645379833 0x70a80000 409600 C:\Windows\SysWOW64\schannel.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик безопасности TLS/SSL 131795770645379833 0x70b40000 69632 C:\Windows\SysWOW64\mskeyprotect.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик защиты ключей (Майкрософт) 131795770645379833 0x70ca0000 45056 C:\Windows\SysWOW64\NETUTILS.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API Helpers DLL 131795770645379833 0x70cc0000 65536 C:\Windows\SysWOW64\ondemandconnroutehelper.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation On Demand Connctiond Route Helper 131795770645379833 0x70e60000 176128 C:\Windows\SysWOW64\NTASN1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft ASN.1 API 131795770645379833 0x71140000 77824 C:\Windows\SysWOW64\NETAPI32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API DLL 131795770645379833 0x71610000 77824 C:\Windows\SysWOW64\dhcpcsvc6.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиент DHCPv6 131795770645379833 0x725e0000 2273280 C:\Windows\SysWOW64\iertutil.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служебная программа времени выполнения для Internet Explorer 131795770645379833 0x728e0000 1372160 C:\Windows\SysWOW64\PROPSYS.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Система страниц свойств (Майкрософт) 131795770645379833 0x72b90000 126976 C:\Windows\SysWOW64\dwmapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Интерфейс API диспетчера окон рабочего стола (Майкрософт) 131795770645379833 0x72cc0000 1658880 C:\Windows\SysWOW64\urlmon.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширения OLE32 для Win32 131795770645379833 0x73a40000 32768 C:\Windows\SysWOW64\WINNSI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Network Store Information RPC interface 131795770645379833 0x73a50000 299008 C:\Windows\SysWOW64\fwpuclnt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API пользовательского режима FWP/IPsec 131795770645379833 0x73aa0000 32768 C:\Windows\SysWOW64\DPAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Data Protection API 131795770645379833 0x73ab0000 32768 C:\Windows\SysWOW64\rasadhlp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Remote Access AutoDial Helper 131795770645379833 0x73ac0000 81920 C:\Windows\SysWOW64\dhcpcsvc.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служба DHCP-клиента 131795770645379833 0x73ae0000 40960 C:\Windows\SysWOW64\Secur32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Security Support Provider Interface 131795770645379833 0x73ef0000 24576 C:\Windows\SysWOW64\MSIMG32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation GDIEXT Client DLL 131795770645379833 0x73f00000 192512 C:\Windows\SysWOW64\IPHLPAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API вспомогательного приложения IP 131795770645379833 0x73f30000 512000 C:\Windows\SysWOW64\DNSAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Динамическая библиотека API DNS-клиента 131795770645379833 0x73ff0000 319488 C:\Windows\SysWOW64\mswsock.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширение поставщика службы API Microsoft Windows Sockets 2.0 131795770645379833 0x74060000 192512 C:\Windows\SysWOW64\rsaenh.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Enhanced Cryptographic Provider 131795770645379833 0x74110000 479232 C:\Windows\SysWOW64\uxtheme.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека тем UxTheme (Microsoft) 131795770645379833 0x74190000 110592 C:\Windows\SysWOW64\bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795770645379833 0x741b0000 77824 C:\Windows\SysWOW64\CRYPTSP.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Cryptographic Service Provider API 131795770645379833 0x741f0000 143360 C:\Windows\SysWOW64\WINMMBASE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base Multimedia Extension API DLL 131795770645379833 0x74230000 147456 C:\Windows\SysWOW64\WINMM.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation MCI API DLL 131795770645379833 0x74260000 2514944 C:\Windows\SysWOW64\WININET.dll 11.00.14393.447 (rs1_release_inmarket.161102-0100) Microsoft Corporation Расширения Интернета для Win32 131795770645379833 0x744d0000 2138112 C:\Windows\WinSxS\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.14393.953_none_89c2555adb023171\comctl32.dll 6.10 (rs1_release_inmarket.170303-1614) Microsoft Corporation Библиотека элементов управления взаимодействия с пользователем 131795770645379833 0x746e0000 32768 C:\Windows\SysWOW64\VERSION.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Version Checking and File Installation Libraries 131795770645379833 0x746f0000 106496 C:\Windows\SysWOW64\USERENV.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Userenv 131795770645379833 0x74730000 598016 C:\Windows\SysWOW64\apphelp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиентская библиотека совместимости приложений 131795770645379833 0x747d0000 40960 C:\Windows\SysWOW64\CRYPTBASE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base cryptographic API DLL 131795770645379833 0x747e0000 126976 C:\Windows\SysWOW64\SspiCli.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Security Support Provider Interface 131795770645379833 0x74800000 151552 C:\Windows\SysWOW64\IMM32.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Multi-User Windows IMM32 API Client DLL 131795770645379833 0x74910000 2170880 C:\Windows\SysWOW64\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795770645379833 0x74b30000 53248 C:\Windows\SysWOW64\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795770645379833 0x74b60000 790528 C:\Windows\SysWOW64\RPCRT4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795770645379833 0x74c30000 1417216 C:\Windows\SysWOW64\gdi32full.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation GDI Client DLL 131795770645379833 0x74da0000 778240 C:\Windows\SysWOW64\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795770645379833 0x74e60000 557056 C:\Windows\SysWOW64\shcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795770645379833 0x74ef0000 540672 C:\Windows\SysWOW64\clbcatq.dll 2001.12.10941.16384 (rs1_release.160715-1616) Microsoft Corporation COM+ Configuration Catalog 131795770645379833 0x74f80000 278528 C:\Windows\SysWOW64\WINTRUST.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation Microsoft Trust Verification APIs 131795770645379833 0x74fd0000 405504 C:\Windows\SysWOW64\WS2_32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation 32-разрядная библиотека Windows Socket 2.0 131795770645379833 0x75040000 282624 C:\Windows\SysWOW64\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795770645379833 0x75090000 1265664 C:\Windows\SysWOW64\MSCTF.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Серверная библиотека MSCTF 131795770645379833 0x751d0000 57344 C:\Windows\SysWOW64\MSASN1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ASN.1 Runtime APIs 131795770645379833 0x751e0000 1708032 C:\Windows\SysWOW64\KERNELBASE.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645379833 0x75390000 266240 C:\Windows\SysWOW64\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795770645379833 0x753e0000 1560576 C:\Windows\SysWOW64\CRYPT32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API32 криптографии 131795770645379833 0x75560000 487424 C:\Windows\SysWOW64\advapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795770645379833 0x756c0000 5693440 C:\Windows\SysWOW64\windows.storage.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API хранения Microsoft WinRT 131795770645379833 0x75c30000 372736 C:\Windows\SysWOW64\coml2.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft COM for Windows 131795770645379833 0x75c90000 286720 C:\Windows\SysWOW64\shlwapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека небольших программ оболочки 131795770645379833 0x75ce0000 20811776 C:\Windows\SysWOW64\SHELL32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Общая библиотека оболочки Windows 131795770645379833 0x774d0000 86016 C:\Windows\SysWOW64\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795770645379833 0x774f0000 61440 C:\Windows\SysWOW64\profapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Profile Basic API 131795770645379833 0x77560000 1437696 C:\Windows\SysWOW64\USER32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795770645379833 0x776c0000 368640 C:\Windows\SysWOW64\bcryptPrimitives.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation Windows Cryptographic Primitives Library 131795770645379833 0x77780000 503808 C:\Windows\SysWOW64\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645379833 0x77800000 606208 C:\Windows\SysWOW64\OLEAUT32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795770645379833 0x77ac0000 966656 C:\Windows\SysWOW64\ole32.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft OLE для Windows 131795770645379833 0x77bb0000 176128 C:\Windows\SysWOW64\GDI32.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation GDI Client DLL 131795770645379833 0x77cd0000 221184 C:\Windows\SysWOW64\cfgmgr32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Configuration Manager DLL 131795770645379833 0x77d10000 28672 C:\Windows\SysWOW64\NSI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation NSI User-mode interface DLL 131795770645379833 0x77d20000 1585152 C:\Windows\SysWOW64\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 131795770645379833 0x7ffad0270000 1908736 C:\Windows\SYSTEM32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 44 5800 664 6 00000000:0031f1da 131765779120650795 0 0 1 Обязательная метка\Средний обязательный уровень WIN-0UOTFKKVN1S\User DllHost.exe C:\Windows\system32\DllHost.exe C:\Windows\system32\DllHost.exe /Processid:{49F6E667-6658-4BD1-9DE9-6AF87F9FAF85} Microsoft Corporation 10.0.14393.0 (rs1_release.160715-1616) COM Surrogate 131795770645379938 0x7ff7a2280000 36864 C:\Windows\system32\DllHost.exe 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation COM Surrogate 131795770645379938 0x7ffac3840000 3088384 C:\Windows\SYSTEM32\esent.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширяемая подсистема хранения данных ESE для Microsoft(R) Windows(R) 131795770645379938 0x7ffac3b80000 286720 C:\Windows\system32\indexeddbserver.dll 10.0.14393.2189 (rs1_release.180329-1711) Microsoft Corporation IndexedDb host 131795770645379938 0x7ffac3cb0000 2772992 C:\Windows\system32\iertutil.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служебная программа времени выполнения для Internet Explorer 131795770645379938 0x7ffacaf00000 610304 C:\Windows\system32\uxtheme.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека тем UxTheme (Microsoft) 131795770645379938 0x7ffacc170000 45056 C:\Windows\system32\CRYPTBASE.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base cryptographic API DLL 131795770645379938 0x7ffacc6e0000 61440 C:\Windows\System32\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795770645379938 0x7ffacc6f0000 311296 C:\Windows\System32\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795770645379938 0x7ffacc740000 81920 C:\Windows\System32\profapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Profile Basic API 131795770645379938 0x7ffacc8f0000 1003520 C:\Windows\System32\ucrtbase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645379938 0x7ffacc9f0000 434176 C:\Windows\System32\bcryptPrimitives.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Cryptographic Primitives Library 131795770645379938 0x7ffacca60000 122880 C:\Windows\System32\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795770645379938 0x7ffaccae0000 692224 C:\Windows\System32\shcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795770645379938 0x7ffaccb90000 7180288 C:\Windows\System32\windows.storage.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API хранения Microsoft WinRT 131795770645379938 0x7ffacd270000 2215936 C:\Windows\System32\KERNELBASE.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645379938 0x7ffacd710000 638976 C:\Windows\System32\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645379938 0x7ffaced20000 782336 C:\Windows\System32\OLEAUT32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795770645379938 0x7ffacee50000 1183744 C:\Windows\System32\RPCRT4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795770645379938 0x7ffacef90000 647168 C:\Windows\System32\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795770645379938 0x7ffacf030000 651264 C:\Windows\System32\clbcatq.dll 2001.12.10941.16384 (rs1_release.160715-1616) Microsoft Corporation COM+ Configuration Catalog 131795770645379938 0x7ffacf0d0000 704512 C:\Windows\System32\KERNEL32.DLL 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645379938 0x7ffacf770000 212992 C:\Windows\System32\GDI32.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation GDI Client DLL 131795770645379938 0x7ffacf890000 188416 C:\Windows\System32\IMM32.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Multi-User Windows IMM32 API Client DLL 131795770645379938 0x7ffacf8c0000 1462272 C:\Windows\System32\user32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795770645379938 0x7ffacfb30000 2916352 C:\Windows\System32\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795770645379938 0x7ffacfe20000 663552 C:\Windows\System32\advapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795770645379938 0x7ffad01b0000 335872 C:\Windows\System32\shlwapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека небольших программ оболочки 131795770645379938 0x7ffad0210000 364544 C:\Windows\System32\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795770645379938 0x7ffad0270000 1908736 C:\Windows\SYSTEM32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 45 340 4928 41 00000000:0031f1da 131765800389528045 0 1 0 Обязательная метка\Низкий обязательный уровень WIN-0UOTFKKVN1S\User utorrentie.exe C:\Users\User\AppData\Roaming\uTorrent\updates\3.5.4_44498\utorrentie.exe "C:\Users\User\AppData\Roaming\uTorrent\updates\3.5.4_44498\utorrentie.exe" uTorrent_4928_02D54870_1839591030 µTorrent4823DF041B09 uTorrent BitTorrent Inc. 1.0.0 WebHelper 131795770645380038 0x1180000 417792 C:\Users\User\AppData\Roaming\uTorrent\updates\3.5.4_44498\utorrentie.exe 1.0.0 BitTorrent Inc. WebHelper 131795770645380038 0x5c020000 335872 C:\Windows\System32\wow64.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation Win32 Emulation on NT64 131795770645380038 0x5c080000 487424 C:\Windows\System32\wow64win.dll 10.0.14393.1884 (rs1_release.171101-1233) Microsoft Corporation Wow64 Console and Win32 API Logging 131795770645380038 0x5c100000 40960 C:\Windows\System32\wow64cpu.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation AMD64 Wow64 CPU 131795770645380038 0x60750000 1556480 C:\Program Files (x86)\360\Total Security\safemon\safemon.dll 8, 4, 0, 1420 Qihu 360 Software Co., Ltd. 360 Internet Security Internet Protection 131795770645380038 0x63490000 221184 C:\Windows\SysWOW64\dinput8.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft DirectInput 131795770645380038 0x634d0000 561152 C:\Windows\SysWOW64\DSOUND.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DirectSound 131795770645380038 0x63560000 23334912 C:\Windows\SysWOW64\Macromed\Flash\Flash.ocx 29,0,0,140 Adobe Systems, Inc. Adobe Flash Player 29.0 r0 131795770645380038 0x64d00000 5079040 C:\Windows\SysWOW64\d2d1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека Microsoft D2D 131795770645380038 0x651e0000 20537344 C:\Windows\SysWOW64\mshtml.dll 11.00.14393.447 (rs1_release_inmarket.161102-0100) Microsoft Corporation Средство просмотра HTML Microsoft® 131795770645380038 0x66580000 12247040 C:\Windows\SysWOW64\ieframe.dll 11.00.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Браузер 131795770645380038 0x6b670000 212992 C:\Windows\SysWOW64\mlang.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL многоязыковой поддержки 131795770645380038 0x6b6b0000 36864 C:\Windows\SysWOW64\atlthunk.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation atlthunk.dll 131795770645380038 0x6c290000 987136 C:\Windows\SysWOW64\twinapi.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation twinapi.appcore 131795770645380038 0x6c390000 1126400 C:\Windows\SysWOW64\dcomp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft DirectComposition Library 131795770645380038 0x6c4b0000 278528 C:\Windows\SysWOW64\dataexchange.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation Data exchange 131795770645380038 0x6c540000 483328 C:\Windows\SysWOW64\webio.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API протоколов передачи по Веб 131795770645380038 0x6c5c0000 1384448 C:\Windows\SysWOW64\UIAutomationCore.DLL 7.2.14393.0 (rs1_release.160715-1616) Microsoft Corporation Основные автоматические компоненты Microsoft UI 131795770645380038 0x6c720000 2318336 C:\Windows\SysWOW64\d3d10warp.dll 10.0.14393.576 (rs1_release_inmarket.161208-2252) Microsoft Corporation Direct3D 10 Rasterizer 131795770645380038 0x6c960000 57344 C:\Windows\SysWOW64\msimtf.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Active IMM Server DLL 131795770645380038 0x6c970000 3698688 C:\Windows\SysWOW64\jscript9.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft ® JScript 131795770645380038 0x6cd00000 69632 C:\Windows\SysWOW64\WLDP.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Политика блокировки Windows 131795770645380038 0x6cd20000 135168 C:\Windows\SysWOW64\srpapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL программных интерфейсов (API) поставщика общих ресурсов 131795770645380038 0x6cda0000 528384 C:\Windows\SysWOW64\sxs.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Fusion 2.5 131795770645380038 0x6d080000 151552 C:\Windows\SysWOW64\cryptnet.dll 10.0.14393.2035 (rs1_release_inmarket.180110-1910) Microsoft Corporation Crypto Network Related API 131795770645380038 0x6d0b0000 847872 C:\Windows\SysWOW64\wintypes.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL основных типов Windows 131795770645380038 0x6fd30000 139264 C:\Windows\SysWOW64\DEVOBJ.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Device Information Set DLL 131795770645380038 0x6fd60000 360448 C:\Windows\SysWOW64\MMDevApi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation MMDevice API 131795770645380038 0x6fdc0000 507904 C:\Windows\SysWOW64\AUDIOSES.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Сеанс обработки звука 131795770645380038 0x6fe90000 544768 C:\Windows\SysWOW64\mscms.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL-библиотека системы сопоставления цветов Майкрософт 131795770645380038 0x70340000 536576 C:\Windows\SysWOW64\dxgi.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation DirectX Graphics Infrastructure 131795770645380038 0x703d0000 2056192 C:\Windows\SysWOW64\DWrite.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Службы Microsoft DirectX Typography 131795770645380038 0x70640000 1499136 C:\Windows\SysWOW64\windowscodecs.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Microsoft Windows Codecs Library 131795770645380038 0x707b0000 110592 C:\Windows\SysWOW64\ncryptsslp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft SChannel Provider 131795770645380038 0x707f0000 2293760 C:\Windows\SysWOW64\d3d11.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation Direct3D 11 Runtime 131795770645380038 0x70a40000 81920 C:\Windows\SysWOW64\NLAapi.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Network Location Awareness 2 131795770645380038 0x70a60000 90112 C:\Windows\SysWOW64\pnrpnsp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик пространства имен PNRP 131795770645380038 0x70a80000 409600 C:\Windows\SysWOW64\schannel.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик безопасности TLS/SSL 131795770645380038 0x70b40000 69632 C:\Windows\SysWOW64\mskeyprotect.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик защиты ключей (Майкрософт) 131795770645380038 0x70c00000 49152 C:\Windows\SysWOW64\winrnr.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation LDAP RnR Provider DLL 131795770645380038 0x70c10000 73728 C:\Windows\SysWOW64\napinsp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик оболочки совместимости для имен электронной почты 131795770645380038 0x70c30000 114688 C:\Windows\SysWOW64\srvcli.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Server Service Client DLL 131795770645380038 0x70c50000 319488 C:\Windows\SysWOW64\Ninput.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Pen and Touch Input Component 131795770645380038 0x70ca0000 45056 C:\Windows\SysWOW64\NETUTILS.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API Helpers DLL 131795770645380038 0x70cc0000 65536 C:\Windows\SysWOW64\ondemandconnroutehelper.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation On Demand Connctiond Route Helper 131795770645380038 0x70e60000 176128 C:\Windows\SysWOW64\NTASN1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft ASN.1 API 131795770645380038 0x71140000 77824 C:\Windows\SysWOW64\NETAPI32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API DLL 131795770645380038 0x71610000 77824 C:\Windows\SysWOW64\dhcpcsvc6.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиент DHCPv6 131795770645380038 0x725e0000 2273280 C:\Windows\SysWOW64\iertutil.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служебная программа времени выполнения для Internet Explorer 131795770645380038 0x728e0000 1372160 C:\Windows\SysWOW64\PROPSYS.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Система страниц свойств (Майкрософт) 131795770645380038 0x72b90000 126976 C:\Windows\SysWOW64\dwmapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Интерфейс API диспетчера окон рабочего стола (Майкрософт) 131795770645380038 0x72cc0000 1658880 C:\Windows\SysWOW64\urlmon.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширения OLE32 для Win32 131795770645380038 0x73a40000 32768 C:\Windows\SysWOW64\WINNSI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Network Store Information RPC interface 131795770645380038 0x73a50000 299008 C:\Windows\SysWOW64\fwpuclnt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API пользовательского режима FWP/IPsec 131795770645380038 0x73aa0000 32768 C:\Windows\SysWOW64\DPAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Data Protection API 131795770645380038 0x73ab0000 32768 C:\Windows\SysWOW64\rasadhlp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Remote Access AutoDial Helper 131795770645380038 0x73ac0000 81920 C:\Windows\SysWOW64\dhcpcsvc.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служба DHCP-клиента 131795770645380038 0x73ae0000 40960 C:\Windows\SysWOW64\Secur32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Security Support Provider Interface 131795770645380038 0x73ef0000 24576 C:\Windows\SysWOW64\MSIMG32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation GDIEXT Client DLL 131795770645380038 0x73f00000 192512 C:\Windows\SysWOW64\IPHLPAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API вспомогательного приложения IP 131795770645380038 0x73f30000 512000 C:\Windows\SysWOW64\DNSAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Динамическая библиотека API DNS-клиента 131795770645380038 0x73ff0000 319488 C:\Windows\SysWOW64\mswsock.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширение поставщика службы API Microsoft Windows Sockets 2.0 131795770645380038 0x74060000 192512 C:\Windows\SysWOW64\rsaenh.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Enhanced Cryptographic Provider 131795770645380038 0x74110000 479232 C:\Windows\SysWOW64\uxtheme.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека тем UxTheme (Microsoft) 131795770645380038 0x74190000 110592 C:\Windows\SysWOW64\bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795770645380038 0x741b0000 77824 C:\Windows\SysWOW64\CRYPTSP.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Cryptographic Service Provider API 131795770645380038 0x741f0000 143360 C:\Windows\SysWOW64\WINMMBASE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base Multimedia Extension API DLL 131795770645380038 0x74230000 147456 C:\Windows\SysWOW64\WINMM.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation MCI API DLL 131795770645380038 0x74260000 2514944 C:\Windows\SysWOW64\WININET.dll 11.00.14393.447 (rs1_release_inmarket.161102-0100) Microsoft Corporation Расширения Интернета для Win32 131795770645380038 0x744d0000 2138112 C:\Windows\WinSxS\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.14393.953_none_89c2555adb023171\comctl32.dll 6.10 (rs1_release_inmarket.170303-1614) Microsoft Corporation Библиотека элементов управления взаимодействия с пользователем 131795770645380038 0x746e0000 32768 C:\Windows\SysWOW64\VERSION.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Version Checking and File Installation Libraries 131795770645380038 0x746f0000 106496 C:\Windows\SysWOW64\USERENV.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Userenv 131795770645380038 0x74730000 598016 C:\Windows\SysWOW64\apphelp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиентская библиотека совместимости приложений 131795770645380038 0x747d0000 40960 C:\Windows\SysWOW64\CRYPTBASE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base cryptographic API DLL 131795770645380038 0x747e0000 126976 C:\Windows\SysWOW64\SspiCli.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Security Support Provider Interface 131795770645380038 0x74800000 151552 C:\Windows\SysWOW64\IMM32.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Multi-User Windows IMM32 API Client DLL 131795770645380038 0x74910000 2170880 C:\Windows\SysWOW64\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795770645380038 0x74b30000 53248 C:\Windows\SysWOW64\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795770645380038 0x74b60000 790528 C:\Windows\SysWOW64\RPCRT4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795770645380038 0x74c30000 1417216 C:\Windows\SysWOW64\gdi32full.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation GDI Client DLL 131795770645380038 0x74d90000 24576 C:\Windows\SysWOW64\PSAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Process Status Helper 131795770645380038 0x74da0000 778240 C:\Windows\SysWOW64\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795770645380038 0x74e60000 557056 C:\Windows\SysWOW64\shcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795770645380038 0x74ef0000 540672 C:\Windows\SysWOW64\clbcatq.dll 2001.12.10941.16384 (rs1_release.160715-1616) Microsoft Corporation COM+ Configuration Catalog 131795770645380038 0x74f80000 278528 C:\Windows\SysWOW64\WINTRUST.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation Microsoft Trust Verification APIs 131795770645380038 0x74fd0000 405504 C:\Windows\SysWOW64\WS2_32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation 32-разрядная библиотека Windows Socket 2.0 131795770645380038 0x75040000 282624 C:\Windows\SysWOW64\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795770645380038 0x75090000 1265664 C:\Windows\SysWOW64\MSCTF.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Серверная библиотека MSCTF 131795770645380038 0x751d0000 57344 C:\Windows\SysWOW64\MSASN1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ASN.1 Runtime APIs 131795770645380038 0x751e0000 1708032 C:\Windows\SysWOW64\KERNELBASE.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645380038 0x75390000 266240 C:\Windows\SysWOW64\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795770645380038 0x753e0000 1560576 C:\Windows\SysWOW64\CRYPT32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API32 криптографии 131795770645380038 0x75560000 487424 C:\Windows\SysWOW64\advapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795770645380038 0x756c0000 5693440 C:\Windows\SysWOW64\windows.storage.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API хранения Microsoft WinRT 131795770645380038 0x75c30000 372736 C:\Windows\SysWOW64\coml2.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft COM for Windows 131795770645380038 0x75c90000 286720 C:\Windows\SysWOW64\shlwapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека небольших программ оболочки 131795770645380038 0x75ce0000 20811776 C:\Windows\SysWOW64\SHELL32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Общая библиотека оболочки Windows 131795770645380038 0x774d0000 86016 C:\Windows\SysWOW64\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795770645380038 0x774f0000 61440 C:\Windows\SysWOW64\profapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Profile Basic API 131795770645380038 0x77560000 1437696 C:\Windows\SysWOW64\USER32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795770645380038 0x776c0000 368640 C:\Windows\SysWOW64\bcryptPrimitives.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation Windows Cryptographic Primitives Library 131795770645380038 0x77780000 503808 C:\Windows\SysWOW64\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645380038 0x77800000 606208 C:\Windows\SysWOW64\OLEAUT32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795770645380038 0x77ac0000 966656 C:\Windows\SysWOW64\ole32.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft OLE для Windows 131795770645380038 0x77bb0000 176128 C:\Windows\SysWOW64\GDI32.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation GDI Client DLL 131795770645380038 0x77cd0000 221184 C:\Windows\SysWOW64\cfgmgr32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Configuration Manager DLL 131795770645380038 0x77d10000 28672 C:\Windows\SysWOW64\NSI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation NSI User-mode interface DLL 131795770645380038 0x77d20000 1585152 C:\Windows\SysWOW64\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 131795770645380038 0x7ffad0270000 1908736 C:\Windows\SYSTEM32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 46 2736 3976 47 00000000:0031f1ab 131765800903010156 0 0 1 Обязательная метка\Высокий обязательный уровень WIN-0UOTFKKVN1S\User Taskmgr.exe C:\Windows\System32\Taskmgr.exe "C:\Windows\System32\Taskmgr.exe" /2 Microsoft® Windows® Operating System 1, 0, 0, 1 Task Manager 131795770645380149 0x7ff7c2a70000 1286144 C:\Windows\System32\Taskmgr.exe 1, 0, 0, 1 Microsoft® Windows® Operating System Task Manager 131795770645380149 0x7ffab2720000 606208 C:\Windows\System32\DUser.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows DirectUser Engine 131795770645380149 0x7ffab8190000 9191424 C:\Windows\System32\TwinUI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation TWINUI 131795770645380149 0x7ffabdbb0000 1736704 C:\Windows\System32\DUI70.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Подсистема DirectUI Windows 131795770645380149 0x7ffabdfa0000 393216 C:\Windows\System32\faultrep.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека отчетов о сбоях в пользовательском режиме Windows 131795770645380149 0x7ffabeb20000 385024 C:\Windows\System32\Windows.ApplicationModel.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows ApplicationModel API Server 131795770645380149 0x7ffac0bf0000 3559424 C:\Windows\System32\ActXPrxy.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation ActiveX Interface Marshaling Library 131795770645380149 0x7ffac21b0000 77824 C:\Windows\System32\srumapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation System Resource Usage Monitor API 131795770645380149 0x7ffac3cb0000 2772992 C:\Windows\SYSTEM32\iertutil.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служебная программа времени выполнения для Internet Explorer 131795770645380149 0x7ffac4000000 274432 C:\Windows\SYSTEM32\policymanager.dll 10.0.14393.2035 (rs1_release_inmarket.180110-1910) Microsoft Corporation Policy Manager DLL 131795770645380149 0x7ffac42a0000 659456 C:\Windows\System32\StateRepository.Core.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation StateRepository Core 131795770645380149 0x7ffac46d0000 4161536 C:\Windows\System32\Windows.StateRepository.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Сервер Windows StateRepository API Server 131795770645380149 0x7ffac4e70000 102400 C:\Windows\System32\samcli.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Security Accounts Manager Client DLL 131795770645380149 0x7ffac4ea0000 36864 C:\Windows\SYSTEM32\atlthunk.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation atlthunk.dll 131795770645380149 0x7ffac5350000 1765376 C:\Windows\System32\Windows.UI.Immersive.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation WINDOWS.UI.IMMERSIVE 131795770645380149 0x7ffac5630000 339968 C:\Windows\System32\thumbcache.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Кэш эскизов Майкрософт 131795770645380149 0x7ffac60e0000 221184 C:\Windows\System32\XmlLite.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft XmlLite Library 131795770645380149 0x7ffac6ac0000 835584 C:\Windows\System32\Windows.UI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Runtime UI Foundation DLL 131795770645380149 0x7ffac6bd0000 413696 C:\Windows\System32\OLEACC.dll 7.2.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Active Accessibility Core Component 131795770645380149 0x7ffac6c40000 2596864 C:\Windows\WinSxS\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.14393.953_none_42151e83c686086b\COMCTL32.dll 6.10 (rs1_release_inmarket.170303-1614) Microsoft Corporation Библиотека элементов управления взаимодействия с пользователем 131795770645380149 0x7ffac7580000 1077248 C:\Windows\SYSTEM32\MrmCoreR.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Windows MRM 131795770645380149 0x7ffac83d0000 106496 C:\Windows\SYSTEM32\dhcpcsvc.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служба DHCP-клиента 131795770645380149 0x7ffac83f0000 90112 C:\Windows\SYSTEM32\dhcpcsvc6.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиент DHCPv6 131795770645380149 0x7ffac8810000 45056 C:\Windows\SYSTEM32\WINNSI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Network Store Information RPC interface 131795770645380149 0x7ffac8dc0000 167936 C:\Windows\System32\dbgcore.DLL 10.0.14321.1024 (debuggers(dbg).160715-1616) Microsoft Windows Core Debugging Helpers 131795770645380149 0x7ffac8df0000 1646592 C:\Windows\System32\dbghelp.dll 10.0.14321.1024 (rs1_release.160715-1616) Microsoft Windows Image Helper 131795770645380149 0x7ffac90b0000 90112 C:\Windows\System32\wkscli.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Workstation Service Client DLL 131795770645380149 0x7ffac92e0000 1269760 C:\Windows\SYSTEM32\wintypes.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL основных типов Windows 131795770645380149 0x7ffac9f50000 1736704 C:\Windows\System32\WindowsCodecs.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Microsoft Windows Codecs Library 131795770645380149 0x7ffaca340000 1593344 C:\Windows\system32\propsys.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Система страниц свойств (Майкрософт) 131795770645380149 0x7ffaca4e0000 77824 C:\Windows\System32\WTSAPI32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Remote Desktop Session Host Server SDK APIs 131795770645380149 0x7ffaca570000 421888 C:\Windows\System32\Bcp47Langs.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation BCP47 Language Classes 131795770645380149 0x7ffaca5e0000 155648 C:\Windows\System32\dwmapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Интерфейс API диспетчера окон рабочего стола (Майкрософт) 131795770645380149 0x7ffaca610000 143360 C:\Windows\System32\SAMLIB.dll 10.0.14393.82 (rs1_release.160805-1735) Microsoft Corporation SAM Library DLL 131795770645380149 0x7ffacac60000 69632 C:\Windows\System32\credui.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Credential Manager User Interface 131795770645380149 0x7ffacadf0000 499712 C:\Windows\System32\apphelp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиентская библиотека совместимости приложений 131795770645380149 0x7ffacaf00000 610304 C:\Windows\System32\UxTheme.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека тем UxTheme (Microsoft) 131795770645380149 0x7ffacb140000 593920 C:\Windows\SYSTEM32\msvcp110_win.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Microsoft® STL110 C++ Runtime Library 131795770645380149 0x7ffacb1e0000 1163264 C:\Windows\System32\twinapi.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation twinapi.appcore 131795770645380149 0x7ffacb300000 364544 C:\Windows\SYSTEM32\VEEventDispatcher.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Visual Element Event dispatcher 131795770645380149 0x7ffacbd30000 229376 C:\Windows\System32\IPHLPAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API вспомогательного приложения IP 131795770645380149 0x7ffacbe20000 53248 C:\Windows\System32\netutils.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API Helpers DLL 131795770645380149 0x7ffacbe40000 126976 C:\Windows\System32\USERENV.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Userenv 131795770645380149 0x7ffacc5c0000 352256 C:\Windows\System32\WINSTA.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Winstation Library 131795770645380149 0x7ffacc620000 176128 C:\Windows\System32\bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795770645380149 0x7ffacc6e0000 61440 C:\Windows\System32\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795770645380149 0x7ffacc6f0000 311296 C:\Windows\System32\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795770645380149 0x7ffacc740000 81920 C:\Windows\System32\profapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Profile Basic API 131795770645380149 0x7ffacc8f0000 1003520 C:\Windows\System32\ucrtbase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645380149 0x7ffacc9f0000 434176 C:\Windows\System32\bcryptPrimitives.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Cryptographic Primitives Library 131795770645380149 0x7ffacca60000 122880 C:\Windows\System32\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795770645380149 0x7ffaccae0000 692224 C:\Windows\System32\shcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795770645380149 0x7ffaccb90000 7180288 C:\Windows\System32\windows.storage.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API хранения Microsoft WinRT 131795770645380149 0x7ffacd270000 2215936 C:\Windows\System32\KERNELBASE.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645380149 0x7ffacd710000 638976 C:\Windows\System32\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645380149 0x7ffacd7b0000 270336 C:\Windows\System32\cfgmgr32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Configuration Manager DLL 131795770645380149 0x7ffacd810000 22056960 C:\Windows\System32\SHELL32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Общая библиотека оболочки Windows 131795770645380149 0x7ffaced20000 782336 C:\Windows\System32\OLEAUT32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795770645380149 0x7ffacee50000 1183744 C:\Windows\System32\RPCRT4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795770645380149 0x7ffacef80000 32768 C:\Windows\System32\NSI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation NSI User-mode interface DLL 131795770645380149 0x7ffacef90000 647168 C:\Windows\System32\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795770645380149 0x7ffacf030000 651264 C:\Windows\System32\clbcatq.dll 2001.12.10941.16384 (rs1_release.160715-1616) Microsoft Corporation COM+ Configuration Catalog 131795770645380149 0x7ffacf0d0000 704512 C:\Windows\System32\KERNEL32.DLL 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645380149 0x7ffacf1e0000 1417216 C:\Windows\System32\MSCTF.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Серверная библиотека MSCTF 131795770645380149 0x7ffacf770000 212992 C:\Windows\System32\GDI32.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation GDI Client DLL 131795770645380149 0x7ffacf820000 434176 C:\Windows\System32\WS2_32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation 32-разрядная библиотека Windows Socket 2.0 131795770645380149 0x7ffacf890000 188416 C:\Windows\System32\IMM32.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Multi-User Windows IMM32 API Client DLL 131795770645380149 0x7ffacf8c0000 1462272 C:\Windows\System32\USER32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795770645380149 0x7ffacfb30000 2916352 C:\Windows\System32\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795770645380149 0x7ffacfe20000 663552 C:\Windows\System32\advapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795770645380149 0x7ffad0070000 1277952 C:\Windows\System32\ole32.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft OLE для Windows 131795770645380149 0x7ffad01b0000 335872 C:\Windows\System32\SHLWAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека небольших программ оболочки 131795770645380149 0x7ffad0210000 364544 C:\Windows\System32\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795770645380149 0x7ffad0270000 1908736 C:\Windows\SYSTEM32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 49 6724 580 4 00000000:000003e7 131765803507001117 0 0 0 Обязательная метка\Обязательный уровень системы NT AUTHORITY\СИСТЕМА QHActiveDefense.exe C:\Program Files (x86)\360\Total Security\safemon\QHActiveDefense.exe "C:\Program Files (x86)\360\Total Security\safemon\QHActiveDefense.exe" Qihoo 360 Technology Co. Ltd. 10,0,0,1008 360 Total Security 131795778431738530 0x10000 413696 C:\ProgramData\Package Cache\{b8e12890-118d-4721-8e54-05d978086712}\VC_redist.x64.exe 14.0.24516.0 Microsoft Corporation Microsoft Visual C++ 2015 Redistributable (x64) - 14.0.24516 131795770645381706 0xd0000 983040 C:\Program Files (x86)\360\Total Security\safemon\QHActiveDefense.exe 10,0,0,1008 Qihoo 360 Technology Co. Ltd. 360 Total Security 131795778469924367 0x400000 278528 C:\Program Files\Wireshark\WinPcap_4_1_3.exe 4.1.0.2980 Riverbed Technology, Inc. WinPcap 4.1.3 installer 131795778203065490 0x840000 413696 C:\Program Files\Wireshark\vcredist_x64.exe 14.12.25810.0 Microsoft Corporation Microsoft Visual C++ 2017 Redistributable (x64) - 14.12.25810 131795780232774368 0x34c0000 126976 C:\Windows\System32\Packet.dll 4.1.0.2980 Riverbed Technology, Inc. packet.dll (Vista) Dynamic Link Library 131795770645381706 0x3c80000 12288 C:\Windows\SysWOW64\sfc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows File Protection 131795780944214585 0x40a0000 438272 C:\Program Files\Wireshark\dumpcap.exe 2.6.2 The Wireshark developer community Dumpcap 131795780231568066 0x4630000 204800 C:\Windows\SysWOW64\net1.exe 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Command 131795778389953959 0xa8e0000 696320 C:\Windows\System32\msvcp140.dll 14.12.25810.0 built by: VCTOOLSREL Microsoft Corporation Microsoft® C Runtime Library 131795778421734438 0xe830000 6127616 C:\Windows\System32\mfc140.dll 14.12.25810.0 built by: VCTOOLSREL Microsoft Corporation MFCDLL Shared Library - Retail Version 131795780691287613 0xf730000 8298496 C:\Program Files\Wireshark\Wireshark.exe 2.6.2 The Wireshark developer community, http://www.wireshark.org/ Wireshark 131795780222197886 0x10000000 98304 C:\Windows\SysWOW64\Packet.dll 4.1.0.2980 Riverbed Technology, Inc. packet.dll (Vista) Dynamic Link Library 131795770645381706 0x5c020000 335872 C:\Windows\System32\wow64.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation Win32 Emulation on NT64 131795770645381706 0x5c080000 487424 C:\Windows\System32\wow64win.dll 10.0.14393.1884 (rs1_release.171101-1233) Microsoft Corporation Wow64 Console and Win32 API Logging 131795770645381706 0x5c100000 40960 C:\Windows\System32\wow64cpu.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation AMD64 Wow64 CPU 131795770645381706 0x5fb90000 2736128 C:\Program Files (x86)\360\Total Security\deepscan\deepscan.dll 3, 5, 1, 2130 Qihu 360 Software Co., Ltd. 360 Total Security Cloud Security 131795770645381706 0x5fec0000 794624 C:\Windows\SysWOW64\wbem\fastprox.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation WMI Custom Marshaller 131795770645381706 0x5ffa0000 421888 C:\Windows\SysWOW64\wbemcomn.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation WMI 131795770645381706 0x60010000 53248 C:\Windows\SysWOW64\wbem\wbemprox.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation WMI 131795770645381706 0x60190000 475136 C:\Program Files (x86)\360\Total Security\safemon\360SafeCamera.tpi 2, 0, 0, 1031 QIHU 360 SOFTWARE CO. LIMITED 360 Total Security Proactive Defense 131795770645381706 0x60210000 1269760 C:\Program Files (x86)\360\Total Security\deepscan\jcloudscan.dll 1, 0, 0, 1012 360.cn 360安全卫士 移动云查询模块 131795770645381706 0x604a0000 196608 C:\Program Files (x86)\360\Total Security\ipc\appdext.dll 1, 0, 0, 1483 360.cn 360安全卫士 木马防火墙模块 131795770645381706 0x604e0000 188416 C:\Program Files (x86)\360\Total Security\ipc\DrvUtility.dll 1, 0, 0, 1081 Qihu 360 Software Co., Ltd. 360 Internet Security 2013 Proactive Defense 131795770645381706 0x60510000 409600 C:\Program Files (x86)\360\Total Security\SafeScan.dll 1, 0, 0, 1074 Qihoo 360 Technology Co. Ltd. 360 Scan Util Module 131795770645381706 0x60580000 204800 C:\Program Files (x86)\360\Total Security\ScanStub.dll 1, 0, 0, 1014 Qihoo 360 Technology Co. Ltd. 360 Scan Util Module 131795770645381706 0x605c0000 249856 C:\Program Files (x86)\360\Total Security\netmon\360gameidentify.dll 1, 0, 1, 1050 360.cn 360流量防火墙 游戏识别模块 131795770645381706 0x60600000 200704 C:\Program Files (x86)\360\Total Security\safemon\WDRecord.dll 1, 0, 1, 1130 Qihu 360 Software Co., Ltd. 360 Internet Security Internet Protection 131795770645381706 0x60640000 430080 C:\Program Files (x86)\360\Total Security\netmon\Netgm.dll 9,0,0,1005 360.cn 360流量防火墙 游戏模式判断模块 131795770645381706 0x608d0000 159744 C:\Program Files (x86)\360\Total Security\safemon\safemonhlp.dll 1, 0, 0, 1265 Qihu 360 Software Co., Ltd. 360 Internet Security Internet Protection 131795770645381706 0x60a50000 479232 C:\Program Files (x86)\360\Total Security\deepscan\DsSysRepair.dll 1, 0, 0, 1062 QIHU360 SOFTWARE CO. LIMITED 360 Total Security System Repair Module 131795770645381706 0x60ad0000 352256 C:\Program Files (x86)\360\Total Security\360Common.dll 7, 3, 0, 3233 360.cn 360安全衛士 基礎模塊 131795770645381706 0x60b30000 1712128 C:\Program Files (x86)\360\Total Security\safemon\360safemonpro.tpi 3, 1, 1, 3140 Qihu 360 Software Co., Ltd. 360 Internet Security Internet Protection 131795770645381706 0x60ce0000 581632 C:\Program Files (x86)\360\Total Security\dynlenv.dll 1, 1, 0, 1016 360.cn dynlenv Dynamic Link Library 131795770645381706 0x61000000 184320 C:\Program Files (x86)\360\Total Security\ipc\qutmipc.dll 7, 3, 0, 1267 360.cn 360安全卫士 木马防火墙模块 131795770645381706 0x61030000 262144 C:\Program Files (x86)\360\Total Security\safemon\safehmpg.dll 3, 0, 0, 1160 Qihu 360 Software Co., Ltd. 360 Internet Security Browser HomePage Protection 131795770645381706 0x610d0000 1097728 C:\Program Files (x86)\360\Total Security\SoftMgr\SomAdvUtils.dll 3, 1, 1, 2020 360.cn 360 Safeguard PC Boost 131795770645381706 0x61380000 315392 C:\Program Files (x86)\360\Total Security\safemon\360bsmon.tpi 6, 8, 0, 1248 Qihu 360 Software Co., Ltd. 360 Total Security Active Protection 131795770645381706 0x61480000 2191360 C:\Program Files (x86)\360\Total Security\deepscan\qex\qex.dll 4.1.13.3366 Qihu 360 Software Co., Ltd. 360 Internet Security 2017 Antivirus 131795770645381706 0x616a0000 331776 C:\Program Files (x86)\360\Total Security\safemon\SelfProtectAPI2.dll 7, 1, 1, 1033 Qihu 360 Software Co., Ltd. 360 Total Security Proactive Defense 131795770645381706 0x61700000 483328 C:\Program Files (x86)\360\Total Security\safemon\360procmon.dll 7, 1, 1, 1221 Qihu 360 Software Co., Ltd. 360 Total Security Proactive Defense 131795770645381706 0x61780000 335872 C:\Program Files (x86)\360\Total Security\ipc\netdefender.dll 1, 0, 0, 1129 Qihu 360 Software Co., Ltd. 360 Internet Security Internet Protection 131795770645381706 0x617e0000 897024 C:\Program Files (x86)\360\Total Security\ipc\appd.dll 7, 3, 6, 3113 Qihu 360 Software Co., Ltd. 360 Total Security Proactive Defense 131795770645381706 0x61a30000 512000 C:\Program Files (x86)\360\Total Security\safemon\360HipsPopWnd.dll 7,3,2,1211 Qihoo 360 Technology Co. Ltd. 360 Internet Security Proactive Defense 131795770645381706 0x61ab0000 495616 C:\Program Files (x86)\360\Total Security\ipc\fileMgr.dll 7, 3, 0, 1963 Qihu 360 Software Co., Ltd. 360 Total Security Proactive Defense 131795770645381706 0x61b30000 3350528 C:\Program Files (x86)\360\Total Security\SoftMgr\somkernl.dll 2, 1, 0, 1130 360.cn 360软件管家 131795770645381706 0x61e70000 614400 C:\Program Files (x86)\360\Total Security\ipc\ipcservice.dll 7, 1, 2, 1643 Qihu 360 Software Co., Ltd. 360 Total Security Proactive Defense 131795770645381706 0x61f10000 1458176 C:\Program Files (x86)\360\Total Security\deepscan\cloudcom2.dll 3, 3, 10, 1288 Qihu 360 Software Co., Ltd. 360 Total Security 131795770645381706 0x621a0000 458752 C:\Program Files (x86)\360\Total Security\ipc\yhregd.dll 7, 2, 0, 1903 Qihu 360 Software Co., Ltd. 360 Total Security Proactive Defense 131795770645381706 0x62280000 454656 C:\Program Files (x86)\360\Total Security\SoftMgr\360SoftMgrS.dll 2, 1, 6, 1490 360.cn 360软件管家 服务模块 131795770645381706 0x622f0000 520192 C:\Program Files (x86)\360\Total Security\deepscan\heavygate.dll 3, 8, 11, 1 Qihu 360 Software Co., Ltd. 360 Total Security Cloud Security 131795770645381706 0x62370000 602112 C:\Program Files (x86)\360\Total Security\360util.dll 1.0.0.1485 360.cn 360安全卫士 公共模块 131795770645381706 0x62410000 352256 C:\Program Files (x86)\360\Total Security\CrashReport.dll 7, 0, 0, 1000 360.cn 360杀毒 异常捕获程序 131795770645381706 0x62470000 405504 C:\Program Files (x86)\360\Total Security\deepscan\qutmload.dll 7, 2, 1, 1279 360.cn 360安全卫士 木马防火墙模块 131795770645381706 0x624e0000 315392 C:\Program Files (x86)\360\Total Security\ipc\360box.dll 2, 0, 0, 1043 360.cn 360隔离沙箱模块 131795770645381706 0x62540000 278528 C:\Program Files (x86)\360\Total Security\360conf.dll 1, 0, 0, 1014 Qihu 360 Software Co., Ltd. 360 Internet Security Base Module 131795770645381706 0x62590000 987136 C:\Program Files (x86)\360\Total Security\360base.dll 1, 0, 0, 1165 360.cn 360安全卫士 基础模块 131795770645381706 0x62690000 266240 C:\Program Files (x86)\360\Total Security\deepscan\BAPI.dll 2.0.0.1191 360.cn BAPI 131795770645381706 0x627d0000 249856 C:\Windows\SysWOW64\edputil.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служебная программа EDP 131795770645381706 0x62980000 376832 C:\Program Files (x86)\360\Total Security\360NetBase.dll 7, 25, 0, 76 360.cn 360安全卫士 网络基础模块 131795770645381706 0x62b50000 106496 C:\Program Files (x86)\360\Total Security\i18n\ru\deepscan\DsRes.dll 1,0,0,1012 Qihu 360 Software Co., Ltd. 360 Total Security Cloud Security Resource 131795770645381706 0x62b70000 208896 C:\Program Files (x86)\360\Total Security\safemon\gamemode.tpi 9,0,0,1001 QIHU 360 SOFTWARE CO. LIMITED 360 Total Security Game Mode Control 131795770645381706 0x67130000 86016 C:\Windows\SysWOW64\devenum.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Перечисление устройств. 131795770645381706 0x67690000 61440 C:\Windows\SysWOW64\sfc_os.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows File Protection 131795770645381706 0x676a0000 61440 C:\Program Files (x86)\360\Total Security\ipc\x64for32lib.dll 6, 8, 0, 1059 360.cn 360安全卫士 木马防火墙模块 131795770645381706 0x676b0000 32768 C:\Windows\SysWOW64\fltlib.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека фильтров 131795770645381706 0x6b6c0000 36864 C:\Windows\SysWOW64\msdmo.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DMO Runtime 131795770645381706 0x6b6d0000 102400 C:\Program Files (x86)\360\Total Security\i18n.dll 1, 0, 0, 1016 Qihu 360 Software Co., Ltd. 360 Total Security 131795770645381706 0x6bf00000 3715072 C:\Windows\SysWOW64\msi.dll 5.0.14393.2155 Microsoft Corporation Windows Installer 131795770645381706 0x6cd50000 106496 C:\Windows\SysWOW64\SAMLIB.dll 10.0.14393.82 (rs1_release.160805-1735) Microsoft Corporation SAM Library DLL 131795770645381706 0x6cf60000 569344 C:\Windows\SysWOW64\taskschd.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Task Scheduler COM API 131795770645381706 0x6d080000 151552 C:\Windows\SysWOW64\cryptnet.dll 10.0.14393.2035 (rs1_release_inmarket.180110-1910) Microsoft Corporation Crypto Network Related API 131795770645381706 0x6ea80000 860160 C:\Program Files (x86)\360\Total Security\deepscan\QVM\360QVM.dll 5.0.2.1003 Qihu 360 Software Co., Ltd. 360 Internet Security QVM Engine 131795770645381706 0x6fcd0000 151552 C:\Windows\SysWOW64\dbgcore.DLL 10.0.14321.1024 (debuggers(dbg).160715-1616) Microsoft Windows Core Debugging Helpers 131795770645381706 0x6fd30000 139264 C:\Windows\SysWOW64\DEVOBJ.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Device Information Set DLL 131795770645381706 0x700d0000 434176 C:\Windows\SysWOW64\WINSPOOL.DRV 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Драйвер диспетчера очереди Windows 131795770645381706 0x70140000 274432 C:\Windows\SysWOW64\WINSTA.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Winstation Library 131795770645381706 0x70210000 966656 C:\Program Files (x86)\360\Total Security\deepscan\ave\AVEngine.dll 1, 0, 0, 2016 Qihu 360 Software Co., Ltd. 360 Internet Security 2013 AntiVirus Engine 131795770645381706 0x70300000 208896 C:\Program Files (x86)\360\Total Security\deepscan\ave\AVEI.dll 1, 0, 0, 2003 Qihu 360 Software Co., Ltd. 360 Internet Security 2013 AntiVirus Engine 131795770645381706 0x707d0000 86016 C:\Windows\SysWOW64\SAMCLI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Security Accounts Manager Client DLL 131795770645381706 0x70a40000 81920 C:\Windows\SysWOW64\NLAapi.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Network Location Awareness 2 131795770645381706 0x70a60000 90112 C:\Windows\SysWOW64\pnrpnsp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик пространства имен PNRP 131795770645381706 0x70b70000 163840 C:\Windows\SysWOW64\ntmarta.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик Windows NT MARTA 131795770645381706 0x70c00000 49152 C:\Windows\SysWOW64\winrnr.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation LDAP RnR Provider DLL 131795770645381706 0x70c10000 73728 C:\Windows\SysWOW64\napinsp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик оболочки совместимости для имен электронной почты 131795770645381706 0x70c30000 114688 C:\Windows\SysWOW64\srvcli.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Server Service Client DLL 131795770645381706 0x70ca0000 45056 C:\Windows\SysWOW64\NETUTILS.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API Helpers DLL 131795770645381706 0x70cb0000 65536 C:\Windows\SysWOW64\wkscli.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Workstation Service Client DLL 131795770645381706 0x70fd0000 1331200 C:\Windows\SysWOW64\dbghelp.dll 10.0.14321.1024 (rs1_release.160715-1616) Microsoft Windows Image Helper 131795770645381706 0x71140000 77824 C:\Windows\SysWOW64\NETAPI32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API DLL 131795770645381706 0x71610000 77824 C:\Windows\SysWOW64\dhcpcsvc6.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиент DHCPv6 131795770645381706 0x725e0000 2273280 C:\Windows\SysWOW64\iertutil.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служебная программа времени выполнения для Internet Explorer 131795770645381706 0x728e0000 1372160 C:\Windows\SysWOW64\propsys.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Система страниц свойств (Майкрософт) 131795770645381706 0x72a30000 188416 C:\Windows\SysWOW64\XmlLite.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft XmlLite Library 131795770645381706 0x72cc0000 1658880 C:\Windows\SysWOW64\urlmon.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширения OLE32 для Win32 131795770645381706 0x73a40000 32768 C:\Windows\SysWOW64\WINNSI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Network Store Information RPC interface 131795770645381706 0x73a50000 299008 C:\Windows\SysWOW64\fwpuclnt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API пользовательского режима FWP/IPsec 131795770645381706 0x73ab0000 32768 C:\Windows\SysWOW64\rasadhlp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Remote Access AutoDial Helper 131795770645381706 0x73ac0000 81920 C:\Windows\SysWOW64\dhcpcsvc.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служба DHCP-клиента 131795770645381706 0x73ae0000 40960 C:\Windows\SysWOW64\secur32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Security Support Provider Interface 131795770645381706 0x73c50000 1478656 C:\Windows\WinSxS\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.14393.1715_none_f67438d2f2547a00\gdiplus.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Microsoft GDI+ 131795770645381706 0x73ee0000 61440 C:\Windows\SysWOW64\WTSAPI32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Remote Desktop Session Host Server SDK APIs 131795770645381706 0x73ef0000 24576 C:\Windows\SysWOW64\MSIMG32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation GDIEXT Client DLL 131795770645381706 0x73f00000 192512 C:\Windows\SysWOW64\IPHLPAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API вспомогательного приложения IP 131795770645381706 0x73f30000 512000 C:\Windows\SysWOW64\dnsapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Динамическая библиотека API DNS-клиента 131795770645381706 0x73ff0000 319488 C:\Windows\SysWOW64\mswsock.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширение поставщика службы API Microsoft Windows Sockets 2.0 131795770645381706 0x74040000 126976 C:\Windows\SysWOW64\gpapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиентские функции API групповой политики 131795770645381706 0x74060000 192512 C:\Windows\SysWOW64\rsaenh.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Enhanced Cryptographic Provider 131795770645381706 0x74190000 110592 C:\Windows\SysWOW64\bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795770645381706 0x741b0000 77824 C:\Windows\SysWOW64\CRYPTSP.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Cryptographic Service Provider API 131795770645381706 0x741f0000 143360 C:\Windows\SysWOW64\WINMMBASE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base Multimedia Extension API DLL 131795770645381706 0x74230000 147456 C:\Windows\SysWOW64\WINMM.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation MCI API DLL 131795770645381706 0x74260000 2514944 C:\Windows\SysWOW64\WININET.dll 11.00.14393.447 (rs1_release_inmarket.161102-0100) Microsoft Corporation Расширения Интернета для Win32 131795770645381706 0x746e0000 32768 C:\Windows\SysWOW64\VERSION.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Version Checking and File Installation Libraries 131795770645381706 0x746f0000 106496 C:\Windows\SysWOW64\USERENV.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Userenv 131795770645381706 0x74710000 90112 C:\Windows\SysWOW64\MPR.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека маршрутизации для нескольких служб доступа 131795770645381706 0x74730000 598016 C:\Windows\SysWOW64\apphelp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиентская библиотека совместимости приложений 131795770645381706 0x747d0000 40960 C:\Windows\SysWOW64\CRYPTBASE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base cryptographic API DLL 131795770645381706 0x747e0000 126976 C:\Windows\SysWOW64\SspiCli.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Security Support Provider Interface 131795770645381706 0x74910000 2170880 C:\Windows\SysWOW64\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795770645381706 0x74b30000 53248 C:\Windows\SysWOW64\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795770645381706 0x74b40000 102400 C:\Windows\SysWOW64\imagehlp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT Image Helper 131795770645381706 0x74b60000 790528 C:\Windows\SysWOW64\RPCRT4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795770645381706 0x74c30000 1417216 C:\Windows\SysWOW64\gdi32full.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation GDI Client DLL 131795770645381706 0x74d90000 24576 C:\Windows\SysWOW64\PSAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Process Status Helper 131795770645381706 0x74da0000 778240 C:\Windows\SysWOW64\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795770645381706 0x74e60000 557056 C:\Windows\SysWOW64\shcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795770645381706 0x74ef0000 540672 C:\Windows\SysWOW64\clbcatq.dll 2001.12.10941.16384 (rs1_release.160715-1616) Microsoft Corporation COM+ Configuration Catalog 131795770645381706 0x74f80000 278528 C:\Windows\SysWOW64\WINTRUST.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation Microsoft Trust Verification APIs 131795770645381706 0x74fd0000 405504 C:\Windows\SysWOW64\WS2_32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation 32-разрядная библиотека Windows Socket 2.0 131795770645381706 0x75040000 282624 C:\Windows\SysWOW64\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795770645381706 0x751d0000 57344 C:\Windows\SysWOW64\MSASN1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ASN.1 Runtime APIs 131795770645381706 0x751e0000 1708032 C:\Windows\SysWOW64\KERNELBASE.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645381706 0x75390000 266240 C:\Windows\SysWOW64\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795770645381706 0x753e0000 1560576 C:\Windows\SysWOW64\CRYPT32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API32 криптографии 131795770645381706 0x75560000 487424 C:\Windows\SysWOW64\ADVAPI32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795770645381706 0x756c0000 5693440 C:\Windows\SysWOW64\windows.storage.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API хранения Microsoft WinRT 131795770645381706 0x75c30000 372736 C:\Windows\SysWOW64\coml2.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft COM for Windows 131795770645381706 0x75c90000 286720 C:\Windows\SysWOW64\shlwapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека небольших программ оболочки 131795770645381706 0x75ce0000 20811776 C:\Windows\SysWOW64\SHELL32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Общая библиотека оболочки Windows 131795770645381706 0x770c0000 4239360 C:\Windows\SysWOW64\SETUPAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Setup API 131795770645381706 0x774d0000 86016 C:\Windows\SysWOW64\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795770645381706 0x774f0000 61440 C:\Windows\SysWOW64\profapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Profile Basic API 131795770645381706 0x77560000 1437696 C:\Windows\SysWOW64\USER32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795770645381706 0x776c0000 368640 C:\Windows\SysWOW64\bcryptPrimitives.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation Windows Cryptographic Primitives Library 131795770645381706 0x77780000 503808 C:\Windows\SysWOW64\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645381706 0x77800000 606208 C:\Windows\SysWOW64\OLEAUT32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795770645381706 0x77ac0000 966656 C:\Windows\SysWOW64\ole32.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft OLE для Windows 131795770645381706 0x77bb0000 176128 C:\Windows\SysWOW64\GDI32.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation GDI Client DLL 131795770645381706 0x77cd0000 221184 C:\Windows\SysWOW64\cfgmgr32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Configuration Manager DLL 131795770645381706 0x77d10000 28672 C:\Windows\SysWOW64\NSI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation NSI User-mode interface DLL 131795770645381706 0x77d20000 1585152 C:\Windows\SysWOW64\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 131795770645381706 0x7ffad0270000 1908736 C:\Windows\SYSTEM32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 50 6340 6724 49 00000000:0031f1ab 131765803510844292 0 0 0 Обязательная метка\Высокий обязательный уровень WIN-0UOTFKKVN1S\User QHSafeTray.exe C:\Program Files (x86)\360\Total Security\safemon\QHSafeTray.exe /showtrayicon Qihoo 360 Technology Co. Ltd. 10,0,0,1024 360 Total Security 131795770645381850 0xec0000 2351104 C:\Program Files (x86)\360\Total Security\safemon\QHSafeTray.exe 10,0,0,1024 Qihoo 360 Technology Co. Ltd. 360 Total Security 131795770645381850 0x68f0000 12288 C:\Windows\SysWOW64\sfc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows File Protection 131795770645381850 0x5c020000 335872 C:\Windows\System32\wow64.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation Win32 Emulation on NT64 131795770645381850 0x5c080000 487424 C:\Windows\System32\wow64win.dll 10.0.14393.1884 (rs1_release.171101-1233) Microsoft Corporation Wow64 Console and Win32 API Logging 131795770645381850 0x5c100000 40960 C:\Windows\System32\wow64cpu.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation AMD64 Wow64 CPU 131795770645381850 0x5c480000 245760 C:\Program Files (x86)\360\Total Security\PDown.dll 1, 3, 0, 1420 Qihu 360 Software Co., Ltd. 360 Security Center Network Module 131795770645381850 0x5fe30000 581632 C:\Program Files (x86)\360\Total Security\safemon\wdui2.dll 9,6,0,1001 131795770645381850 0x60020000 413696 C:\Program Files (x86)\360\Total Security\netmon\360netctrl.dll 5, 3, 15, 2232 360.cn 360 Total Security NetwokrMonCtrl 131795770645381850 0x60090000 335872 C:\Program Files (x86)\360\Total Security\safemon\netmon.tpi 5, 1, 1, 3157 Qihoo 360 Technology Co. Ltd. 360安全卫士 流量防火墙模块 131795770645381850 0x60350000 1331200 C:\Program Files (x86)\360\Total Security\ToolBox.dll 1, 0, 0, 1094 Qihoo 360 Technology Co. Ltd. 360 Total Security 131795770645381850 0x60600000 200704 C:\Program Files (x86)\360\Total Security\safemon\WDRecord.dll 1, 0, 1, 1130 Qihu 360 Software Co., Ltd. 360 Internet Security Internet Protection 131795770645381850 0x606b0000 598016 C:\Program Files (x86)\360\Total Security\safemon\spsafe.dll 1, 0, 0, 1120 Qihu 360 Software Co., Ltd. 360 Internet Security Internet Protection 131795770645381850 0x60750000 1556480 C:\Program Files (x86)\360\Total Security\safemon\safemon.dll 8, 4, 0, 1420 Qihu 360 Software Co., Ltd. 360 Internet Security Internet Protection 131795770645381850 0x608d0000 159744 C:\Program Files (x86)\360\Total Security\safemon\safemonhlp.dll 1, 0, 0, 1265 Qihu 360 Software Co., Ltd. 360 Internet Security Internet Protection 131795770645381850 0x609b0000 241664 C:\Program Files (x86)\360\Total Security\safemon\360GuardBase.dll 3, 1, 0, 1060 360.cn 360保镖 131795770645381850 0x60ad0000 352256 C:\Program Files (x86)\360\Total Security\360Common.dll 7, 3, 0, 3233 360.cn 360安全衛士 基礎模塊 131795770645381850 0x60b30000 1712128 C:\Program Files (x86)\360\Total Security\safemon\360safemonpro.tpi 3, 1, 1, 3140 Qihu 360 Software Co., Ltd. 360 Internet Security Internet Protection 131795770645381850 0x60ce0000 581632 C:\Program Files (x86)\360\Total Security\dynlenv.dll 1, 1, 0, 1016 360.cn dynlenv Dynamic Link Library 131795770645381850 0x61070000 393216 C:\Program Files (x86)\360\Total Security\safemon\SomProxy.dll 1, 0, 0, 1900 Qihu 360 Software Co., Ltd. 360 Internet Security Internet Protection 131795770645381850 0x611e0000 1662976 C:\Program Files (x86)\360\Total Security\safemon\360connect.tpi 9,2,0,1030 QIHU 360 SOFTWARE CO. LIMITED 360 Connect 131795770645381850 0x61380000 315392 C:\Program Files (x86)\360\Total Security\safemon\360bsmon.tpi 6, 8, 0, 1248 Qihu 360 Software Co., Ltd. 360 Total Security Active Protection 131795770645381850 0x613d0000 667648 C:\Windows\WinSxS\x86_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.9247_none_5090cb78bcba4a35\MSVCR90.dll 9.00.30729.9247 Microsoft Corporation Microsoft® C Runtime Library 131795770645381850 0x618c0000 1478656 C:\Program Files (x86)\360\Total Security\sites.dll 11, 1, 0, 1212 360.cn 360安全卫士 131795770645381850 0x61a30000 512000 C:\Program Files (x86)\360\Total Security\safemon\360hipsPopWnd.dll 7,3,2,1211 Qihoo 360 Technology Co. Ltd. 360 Internet Security Proactive Defense 131795770645381850 0x61b30000 3350528 C:\Program Files (x86)\360\Total Security\softmgr\somkernl.dll 2, 1, 0, 1130 360.cn 360软件管家 131795770645381850 0x61e70000 614400 C:\Program Files (x86)\360\Total Security\ipc\ipcservice.dll 7, 1, 2, 1643 Qihu 360 Software Co., Ltd. 360 Total Security Proactive Defense 131795770645381850 0x61f10000 1458176 C:\Program Files (x86)\360\Total Security\deepscan\Cloudcom2.dll 3, 3, 10, 1288 Qihu 360 Software Co., Ltd. 360 Total Security 131795770645381850 0x62210000 446464 C:\Program Files (x86)\360\Total Security\360TSCommon.dll 9, 0, 0, 1016 QIHU 360 SOFTWARE CO. LIMITED 360 Total Security 131795770645381850 0x622f0000 520192 C:\Program Files (x86)\360\Total Security\deepscan\heavygate.dll 3, 8, 11, 1 Qihu 360 Software Co., Ltd. 360 Total Security Cloud Security 131795770645381850 0x62370000 602112 C:\Program Files (x86)\360\Total Security\360util.dll 1.0.0.1485 360.cn 360安全卫士 公共模块 131795770645381850 0x62410000 352256 C:\Program Files (x86)\360\Total Security\CrashReport.dll 7, 0, 0, 1000 360.cn 360杀毒 异常捕获程序 131795770645381850 0x62540000 278528 C:\Program Files (x86)\360\Total Security\360conf.dll 1, 0, 0, 1014 Qihu 360 Software Co., Ltd. 360 Internet Security Base Module 131795770645381850 0x62590000 987136 C:\Program Files (x86)\360\Total Security\360base.dll 1, 0, 0, 1165 360.cn 360安全卫士 基础模块 131795770645381850 0x62690000 266240 C:\Program Files (x86)\360\Total Security\deepscan\BAPI.dll 2.0.0.1191 360.cn BAPI 131795770645381850 0x627d0000 249856 C:\Windows\SysWOW64\edputil.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служебная программа EDP 131795770645381850 0x62960000 77824 C:\Program Files (x86)\360\Total Security\safemon\CleanPlusCache.tpi 1, 0, 0, 1004 QIHU 360 SOFTWARE CO. LIMITED CleanPlusCache 131795770645381850 0x62980000 376832 C:\Program Files (x86)\360\Total Security\360NetBase.dll 7, 25, 0, 76 360.cn 360安全卫士 网络基础模块 131795770645381850 0x67500000 1597440 C:\Windows\SysWOW64\ActXPrxy.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation ActiveX Interface Marshaling Library 131795770645381850 0x67690000 61440 C:\Windows\SysWOW64\sfc_os.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows File Protection 131795770645381850 0x676a0000 61440 C:\Program Files (x86)\360\Total Security\ipc\x64for32lib.dll 6, 8, 0, 1059 360.cn 360安全卫士 木马防火墙模块 131795771279916892 0x68850000 2764800 C:\Windows\SysWOW64\msftedit.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Элемент управления "Поле ввода форматированного текста", версия 8.5 131795770645381850 0x6b6d0000 102400 C:\Program Files (x86)\360\Total Security\i18n.dll 1, 0, 0, 1016 Qihu 360 Software Co., Ltd. 360 Total Security 131795770645381850 0x6bf00000 3715072 C:\Windows\SysWOW64\msi.dll 5.0.14393.2155 Microsoft Corporation Windows Installer 131795770645381850 0x6c290000 987136 C:\Windows\SysWOW64\twinapi.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation twinapi.appcore 131795770645381850 0x6c390000 1126400 C:\Windows\SysWOW64\dcomp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft DirectComposition Library 131795770645381850 0x6c4b0000 278528 C:\Windows\SysWOW64\dataexchange.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation Data exchange 131795770645381850 0x6e6e0000 151552 C:\Windows\SysWOW64\globinputhost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Globalization Extension API for Input 131795770645381850 0x6e710000 335872 C:\Windows\SysWOW64\Bcp47Langs.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation BCP47 Language Classes 131795770645381850 0x6e770000 1269760 C:\Windows\SysWOW64\Windows.Globalization.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Globalization 131795770645381850 0x6eed0000 274432 C:\Windows\SysWOW64\thumbcache.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Кэш эскизов Майкрософт 131795770645381850 0x6fc70000 385024 C:\Windows\SysWOW64\FirewallAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API брандмауэра Windows 131795770645381850 0x6fcd0000 151552 C:\Windows\SysWOW64\dbgcore.DLL 10.0.14321.1024 (debuggers(dbg).160715-1616) Microsoft Windows Core Debugging Helpers 131795770645381850 0x700d0000 434176 C:\Windows\SysWOW64\WINSPOOL.DRV 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Драйвер диспетчера очереди Windows 131795770645381850 0x70140000 274432 C:\Windows\SysWOW64\WINSTA.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Winstation Library 131795770645381850 0x70340000 536576 C:\Windows\SysWOW64\dxgi.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation DirectX Graphics Infrastructure 131795770645381850 0x703d0000 2056192 C:\Windows\SysWOW64\DWrite.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Службы Microsoft DirectX Typography 131795770645381850 0x705e0000 344064 C:\Windows\SysWOW64\OLEACC.dll 7.2.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Active Accessibility Core Component 131795770645381850 0x70640000 1499136 C:\Windows\SysWOW64\WindowsCodecs.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Microsoft Windows Codecs Library 131795770645381850 0x707b0000 110592 C:\Windows\SysWOW64\ncryptsslp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft SChannel Provider 131795770645381850 0x707f0000 2293760 C:\Windows\SysWOW64\d3d11.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation Direct3D 11 Runtime 131795770645381850 0x70a40000 81920 C:\Windows\SysWOW64\NLAapi.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Network Location Awareness 2 131795770645381850 0x70a60000 90112 C:\Windows\SysWOW64\pnrpnsp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик пространства имен PNRP 131795770645381850 0x70a80000 409600 C:\Windows\SysWOW64\schannel.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик безопасности TLS/SSL 131795770645381850 0x70b40000 69632 C:\Windows\SysWOW64\mskeyprotect.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик защиты ключей (Майкрософт) 131795770645381850 0x70b70000 163840 C:\Windows\SysWOW64\ntmarta.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик Windows NT MARTA 131795770645381850 0x70ba0000 188416 C:\Windows\SysWOW64\FWPolicyIOMgr.dll 10.0.14393.2189 (rs1_release.180329-1711) Microsoft Corporation FwPolicyIoMgr DLL 131795770645381850 0x70bd0000 147456 C:\Windows\SysWOW64\fwbase.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Firewall Base DLL 131795770645381850 0x70c00000 49152 C:\Windows\SysWOW64\winrnr.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation LDAP RnR Provider DLL 131795770645381850 0x70c10000 73728 C:\Windows\SysWOW64\napinsp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик оболочки совместимости для имен электронной почты 131795770645381850 0x70c30000 114688 C:\Windows\SysWOW64\SRVCLI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Server Service Client DLL 131795770645381850 0x70ca0000 45056 C:\Windows\SysWOW64\NETUTILS.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API Helpers DLL 131795770645381850 0x70cc0000 65536 C:\Windows\SysWOW64\ondemandconnroutehelper.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation On Demand Connctiond Route Helper 131795770645381850 0x70e60000 176128 C:\Windows\SysWOW64\NTASN1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft ASN.1 API 131795770645381850 0x70fd0000 1331200 C:\Windows\SysWOW64\dbghelp.dll 10.0.14321.1024 (rs1_release.160715-1616) Microsoft Windows Image Helper 131795770645381850 0x71140000 77824 C:\Windows\SysWOW64\NETAPI32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API DLL 131795770645381850 0x71170000 466944 C:\Program Files (x86)\360\Total Security\deepscan\CQhCltHttpW.dll 1, 4, 0, 1030 QIHU 360 SOFTWARE CO. LIMITED 360 Internet Security Base Module 131795770645381850 0x71610000 77824 C:\Windows\SysWOW64\dhcpcsvc6.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиент DHCPv6 131795770645381850 0x725e0000 2273280 C:\Windows\SysWOW64\iertutil.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служебная программа времени выполнения для Internet Explorer 131795770645381850 0x728e0000 1372160 C:\Windows\SysWOW64\PROPSYS.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Система страниц свойств (Майкрософт) 131795770645381850 0x72b90000 126976 C:\Windows\SysWOW64\dwmapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Интерфейс API диспетчера окон рабочего стола (Майкрософт) 131795770645381850 0x72cc0000 1658880 C:\Windows\SysWOW64\urlmon.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширения OLE32 для Win32 131795770645381850 0x73a40000 32768 C:\Windows\SysWOW64\WINNSI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Network Store Information RPC interface 131795770645381850 0x73a50000 299008 C:\Windows\SysWOW64\fwpuclnt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API пользовательского режима FWP/IPsec 131795770645381850 0x73ab0000 32768 C:\Windows\SysWOW64\rasadhlp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Remote Access AutoDial Helper 131795770645381850 0x73ac0000 81920 C:\Windows\SysWOW64\dhcpcsvc.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служба DHCP-клиента 131795770645381850 0x73ae0000 40960 C:\Windows\SysWOW64\Secur32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Security Support Provider Interface 131795770645381850 0x73c50000 1478656 C:\Windows\WinSxS\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.14393.1715_none_f67438d2f2547a00\gdiplus.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Microsoft GDI+ 131795770645381850 0x73ee0000 61440 C:\Windows\SysWOW64\WTSAPI32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Remote Desktop Session Host Server SDK APIs 131795770645381850 0x73ef0000 24576 C:\Windows\SysWOW64\MSIMG32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation GDIEXT Client DLL 131795770645381850 0x73f00000 192512 C:\Windows\SysWOW64\IPHLPAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API вспомогательного приложения IP 131795770645381850 0x73f30000 512000 C:\Windows\SysWOW64\DNSAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Динамическая библиотека API DNS-клиента 131795770645381850 0x73ff0000 319488 C:\Windows\SysWOW64\mswsock.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширение поставщика службы API Microsoft Windows Sockets 2.0 131795770645381850 0x74060000 192512 C:\Windows\SysWOW64\rsaenh.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Enhanced Cryptographic Provider 131795770645381850 0x74110000 479232 C:\Windows\SysWOW64\uxtheme.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека тем UxTheme (Microsoft) 131795770645381850 0x74190000 110592 C:\Windows\SysWOW64\bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795770645381850 0x741b0000 77824 C:\Windows\SysWOW64\CRYPTSP.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Cryptographic Service Provider API 131795770645381850 0x741f0000 143360 C:\Windows\SysWOW64\WINMMBASE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base Multimedia Extension API DLL 131795770645381850 0x74230000 147456 C:\Windows\SysWOW64\WINMM.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation MCI API DLL 131795770645381850 0x74260000 2514944 C:\Windows\SysWOW64\WININET.dll 11.00.14393.447 (rs1_release_inmarket.161102-0100) Microsoft Corporation Расширения Интернета для Win32 131795770645381850 0x744d0000 2138112 C:\Windows\WinSxS\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.14393.953_none_89c2555adb023171\COMCTL32.dll 6.10 (rs1_release_inmarket.170303-1614) Microsoft Corporation Библиотека элементов управления взаимодействия с пользователем 131795770645381850 0x746e0000 32768 C:\Windows\SysWOW64\VERSION.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Version Checking and File Installation Libraries 131795770645381850 0x746f0000 106496 C:\Windows\SysWOW64\USERENV.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Userenv 131795770645381850 0x74730000 598016 C:\Windows\SysWOW64\apphelp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиентская библиотека совместимости приложений 131795770645381850 0x747d0000 40960 C:\Windows\SysWOW64\CRYPTBASE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base cryptographic API DLL 131795770645381850 0x747e0000 126976 C:\Windows\SysWOW64\SspiCli.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Security Support Provider Interface 131795770645381850 0x74800000 151552 C:\Windows\SysWOW64\IMM32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Multi-User Windows IMM32 API Client DLL 131795770645381850 0x74910000 2170880 C:\Windows\SysWOW64\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795770645381850 0x74b30000 53248 C:\Windows\SysWOW64\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795770645381850 0x74b40000 102400 C:\Windows\SysWOW64\imagehlp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT Image Helper 131795770645381850 0x74b60000 790528 C:\Windows\SysWOW64\RPCRT4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795770645381850 0x74c30000 1417216 C:\Windows\SysWOW64\gdi32full.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation GDI Client DLL 131795770645381850 0x74d90000 24576 C:\Windows\SysWOW64\PSAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Process Status Helper 131795770645381850 0x74da0000 778240 C:\Windows\SysWOW64\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795770645381850 0x74e60000 557056 C:\Windows\SysWOW64\shcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795770645381850 0x74ef0000 540672 C:\Windows\SysWOW64\clbcatq.dll 2001.12.10941.16384 (rs1_release.160715-1616) Microsoft Corporation COM+ Configuration Catalog 131795770645381850 0x74f80000 278528 C:\Windows\SysWOW64\WINTRUST.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation Microsoft Trust Verification APIs 131795770645381850 0x74fd0000 405504 C:\Windows\SysWOW64\WS2_32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation 32-разрядная библиотека Windows Socket 2.0 131795770645381850 0x75040000 282624 C:\Windows\SysWOW64\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795770645381850 0x75090000 1265664 C:\Windows\SysWOW64\MSCTF.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Серверная библиотека MSCTF 131795770645381850 0x751d0000 57344 C:\Windows\SysWOW64\MSASN1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ASN.1 Runtime APIs 131795770645381850 0x751e0000 1708032 C:\Windows\SysWOW64\KERNELBASE.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645381850 0x75390000 266240 C:\Windows\SysWOW64\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795770645381850 0x753e0000 1560576 C:\Windows\SysWOW64\CRYPT32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API32 криптографии 131795770645381850 0x75560000 487424 C:\Windows\SysWOW64\ADVAPI32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795770645381850 0x756c0000 5693440 C:\Windows\SysWOW64\windows.storage.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API хранения Microsoft WinRT 131795770645381850 0x75c30000 372736 C:\Windows\SysWOW64\coml2.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft COM for Windows 131795770645381850 0x75c90000 286720 C:\Windows\SysWOW64\shlwapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека небольших программ оболочки 131795770645381850 0x75ce0000 20811776 C:\Windows\SysWOW64\SHELL32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Общая библиотека оболочки Windows 131795770645381850 0x770c0000 4239360 C:\Windows\SysWOW64\SETUPAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Setup API 131795770645381850 0x774d0000 86016 C:\Windows\SysWOW64\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795770645381850 0x774f0000 61440 C:\Windows\SysWOW64\profapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Profile Basic API 131795770645381850 0x77560000 1437696 C:\Windows\SysWOW64\USER32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795770645381850 0x776c0000 368640 C:\Windows\SysWOW64\bcryptPrimitives.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation Windows Cryptographic Primitives Library 131795770645381850 0x77780000 503808 C:\Windows\SysWOW64\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645381850 0x77800000 606208 C:\Windows\SysWOW64\OLEAUT32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795770645381850 0x77ac0000 966656 C:\Windows\SysWOW64\ole32.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft OLE для Windows 131795770645381850 0x77bb0000 176128 C:\Windows\SysWOW64\GDI32.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation GDI Client DLL 131795770645381850 0x77cd0000 221184 C:\Windows\SysWOW64\cfgmgr32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Configuration Manager DLL 131795770645381850 0x77d10000 28672 C:\Windows\SysWOW64\NSI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation NSI User-mode interface DLL 131795770645381850 0x77d20000 1585152 C:\Windows\SysWOW64\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 131795770645381850 0x7ffad0270000 1908736 C:\Windows\SYSTEM32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 51 6860 6724 49 00000000:000003e7 131765803555957830 0 0 0 Обязательная метка\Обязательный уровень системы NT AUTHORITY\СИСТЕМА QHWatchdog.exe C:\Program Files (x86)\360\Total Security\safemon\QHWatchdog.exe "C:\Program Files (x86)\360\Total Security\safemon\QHWatchdog.exe" /watch QIHU 360 SOFTWARE CO. LIMITED 8,2,0,1000 360 Total Security 131795770645381936 0xdf0000 139264 C:\Program Files (x86)\360\Total Security\safemon\QHWatchdog.exe 8,2,0,1000 QIHU 360 SOFTWARE CO. LIMITED 360 Total Security 131795770645381936 0x5c020000 335872 C:\Windows\System32\wow64.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation Win32 Emulation on NT64 131795770645381936 0x5c080000 487424 C:\Windows\System32\wow64win.dll 10.0.14393.1884 (rs1_release.171101-1233) Microsoft Corporation Wow64 Console and Win32 API Logging 131795770645381936 0x5c100000 40960 C:\Windows\System32\wow64cpu.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation AMD64 Wow64 CPU 131795770645381936 0x74730000 598016 C:\Windows\SysWOW64\apphelp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиентская библиотека совместимости приложений 131795770645381936 0x747d0000 40960 C:\Windows\SysWOW64\CRYPTBASE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base cryptographic API DLL 131795770645381936 0x747e0000 126976 C:\Windows\SysWOW64\SspiCli.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Security Support Provider Interface 131795770645381936 0x74910000 2170880 C:\Windows\SysWOW64\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795770645381936 0x74b60000 790528 C:\Windows\SysWOW64\RPCRT4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795770645381936 0x74c30000 1417216 C:\Windows\SysWOW64\gdi32full.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation GDI Client DLL 131795770645381936 0x74da0000 778240 C:\Windows\SysWOW64\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795770645381936 0x74e60000 557056 C:\Windows\SysWOW64\shcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795770645381936 0x751e0000 1708032 C:\Windows\SysWOW64\KERNELBASE.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645381936 0x75390000 266240 C:\Windows\SysWOW64\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795770645381936 0x75560000 487424 C:\Windows\SysWOW64\ADVAPI32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795770645381936 0x755e0000 917504 C:\Windows\SysWOW64\KERNEL32.DLL 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645381936 0x75c90000 286720 C:\Windows\SysWOW64\SHLWAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека небольших программ оболочки 131795770645381936 0x774d0000 86016 C:\Windows\SysWOW64\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795770645381936 0x77560000 1437696 C:\Windows\SysWOW64\USER32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795770645381936 0x776c0000 368640 C:\Windows\SysWOW64\bcryptPrimitives.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation Windows Cryptographic Primitives Library 131795770645381936 0x77bb0000 176128 C:\Windows\SysWOW64\GDI32.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation GDI Client DLL 131795770645381936 0x77d20000 1585152 C:\Windows\SysWOW64\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 131795770645381936 0x7ffad0270000 1908736 C:\Windows\SYSTEM32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 52 5924 664 6 00000000:000003e4 131765805232900810 0 0 0 Обязательная метка\Обязательный уровень системы NT AUTHORITY\NETWORK SERVICE wmiprvse.exe C:\Windows\sysWOW64\wbem\wmiprvse.exe C:\Windows\sysWOW64\wbem\wmiprvse.exe -Embedding Microsoft Corporation 10.0.14393.2155 (rs1_release_1.180305-1842) WMI Provider Host 131795770645382027 0x950000 434176 C:\Windows\sysWOW64\wbem\wmiprvse.exe 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation WMI Provider Host 131795770645382027 0x5c020000 335872 C:\Windows\System32\wow64.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation Win32 Emulation on NT64 131795770645382027 0x5c080000 487424 C:\Windows\System32\wow64win.dll 10.0.14393.1884 (rs1_release.171101-1233) Microsoft Corporation Wow64 Console and Win32 API Logging 131795770645382027 0x5c100000 40960 C:\Windows\System32\wow64cpu.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation AMD64 Wow64 CPU 131795770645382027 0x5fec0000 794624 C:\Windows\SysWOW64\wbem\FastProx.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation WMI Custom Marshaller 131795770645382027 0x5ffa0000 421888 C:\Windows\SysWOW64\wbemcomn.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation WMI 131795770645382027 0x60130000 36864 C:\Windows\SysWOW64\storagewmi_passthru.dll 10.0.14393.103 (rs1_release_inmarket.160819-1924) Microsoft Corporation WMI PassThru Provider for Storage Management 131795770645382027 0x60140000 114688 C:\Windows\SysWOW64\wbem\wmiutils.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation WMI 131795770645382027 0x60160000 73728 C:\Windows\SysWOW64\NCObjAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation 131795770645382027 0x604d0000 36864 C:\Windows\SysWOW64\delegatorprovider.dll 10.0.14393.103 (rs1_release_inmarket.160819-1924) Microsoft Corporation WMI PassThru Provider for Storage Management 131795770645382027 0x74190000 110592 C:\Windows\SysWOW64\bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795770645382027 0x747d0000 40960 C:\Windows\SysWOW64\CRYPTBASE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base cryptographic API DLL 131795770645382027 0x747e0000 126976 C:\Windows\SysWOW64\SspiCli.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Security Support Provider Interface 131795770645382027 0x74910000 2170880 C:\Windows\SysWOW64\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795770645382027 0x74b30000 53248 C:\Windows\SysWOW64\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795770645382027 0x74b60000 790528 C:\Windows\SysWOW64\RPCRT4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795770645382027 0x74c30000 1417216 C:\Windows\SysWOW64\gdi32full.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation GDI Client DLL 131795770645382027 0x74da0000 778240 C:\Windows\SysWOW64\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795770645382027 0x74ef0000 540672 C:\Windows\SysWOW64\clbcatq.dll 2001.12.10941.16384 (rs1_release.160715-1616) Microsoft Corporation COM+ Configuration Catalog 131795770645382027 0x74fd0000 405504 C:\Windows\SysWOW64\WS2_32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation 32-разрядная библиотека Windows Socket 2.0 131795770645382027 0x751e0000 1708032 C:\Windows\SysWOW64\KERNELBASE.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645382027 0x75390000 266240 C:\Windows\SysWOW64\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795770645382027 0x75560000 487424 C:\Windows\SysWOW64\advapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795770645382027 0x755e0000 917504 C:\Windows\SysWOW64\KERNEL32.DLL 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645382027 0x774d0000 86016 C:\Windows\SysWOW64\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795770645382027 0x77560000 1437696 C:\Windows\SysWOW64\user32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795770645382027 0x776c0000 368640 C:\Windows\SysWOW64\bcryptPrimitives.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation Windows Cryptographic Primitives Library 131795770645382027 0x77780000 503808 C:\Windows\SysWOW64\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645382027 0x77800000 606208 C:\Windows\SysWOW64\OLEAUT32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795770645382027 0x77bb0000 176128 C:\Windows\SysWOW64\GDI32.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation GDI Client DLL 131795770645382027 0x77d20000 1585152 C:\Windows\SysWOW64\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 131795770645382027 0x7ffad0270000 1908736 C:\Windows\SYSTEM32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 54 4408 348 24 00000000:0031f1ab 131765812380694767 0 0 1 Обязательная метка\Высокий обязательный уровень WIN-0UOTFKKVN1S\User taskhostw.exe C:\Windows\system32\taskhostw.exe taskhostw.exe Microsoft Corporation 10.0.14393.0 (rs1_release.160715-1616) Хост-процесс для задач Windows 131795770645382224 0x17826230000 12288 C:\Windows\SYSTEM32\sfc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows File Protection 131795770645382224 0x7ff794e10000 102400 C:\Windows\system32\taskhostw.exe 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Хост-процесс для задач Windows 131795770645382224 0x7ffab1140000 1134592 C:\Windows\System32\ReAgent.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL агента восстановления Microsoft Windows 131795770645382224 0x7ffab1c40000 1302528 C:\Windows\System32\LicenseManager.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation LicenseManager 131795770645382224 0x7ffab8da0000 1675264 C:\Windows\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.14393.1715_none_aec701fbddd850fa\gdiplus.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Microsoft GDI+ 131795770645382224 0x7ffab93b0000 897024 C:\Windows\System32\TokenBroker.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Token Broker 131795770645382224 0x7ffabafc0000 700416 C:\Windows\system32\wer.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека сообщений об ошибках Windows 131795770645382224 0x7ffabb2b0000 1089536 C:\Windows\system32\SettingSyncCore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Setting Synchronization Core 131795770645382224 0x7ffabbd20000 106496 C:\Windows\SYSTEM32\settingsyncpolicy.dll 10.0.14393.82 (rs1_release.160805-1735) Microsoft Corporation SettingSync Policy 131795770645382224 0x7ffabe000000 409600 C:\Windows\system32\WinSATAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows System Assessment Tool API 131795770645382224 0x7ffabe850000 155648 C:\Windows\System32\IDStore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Identity Store 131795770645382224 0x7ffabef80000 69632 C:\Windows\SYSTEM32\sfc_os.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows File Protection 131795770645382224 0x7ffabefd0000 258048 C:\Windows\system32\AEPIC.dll 10.0.17060.1029 (WinBuild.160101.0800) Microsoft Corporation Application Experience Program Cache 131795770645382224 0x7ffabf050000 225280 C:\Windows\System32\sdiageng.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Подсистема выполнения сценариев диагностики 131795770645382224 0x7ffabf1d0000 192512 C:\Windows\system32\cryptnet.dll 10.0.14393.2035 (rs1_release_inmarket.180110-1910) Microsoft Corporation Crypto Network Related API 131795770645382224 0x7ffabf330000 2457600 C:\Windows\System32\msxml6.dll 6.30.14393.2156 Microsoft Corporation MSXML 6.0 131795770645382224 0x7ffabfbe0000 1011712 C:\Windows\System32\Windows.Security.Authentication.OnlineId.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation Windows Runtime OnlineId Authentication DLL 131795770645382224 0x7ffabff60000 135168 C:\Windows\system32\ncryptsslp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft SChannel Provider 131795770645382224 0x7ffac0ad0000 86016 C:\Windows\SYSTEM32\mskeyprotect.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик защиты ключей (Майкрософт) 131795770645382224 0x7ffac0bf0000 3559424 C:\Windows\System32\ActXPrxy.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation ActiveX Interface Marshaling Library 131795770645382224 0x7ffac1d60000 589824 C:\Windows\system32\webio.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API протоколов передачи по Веб 131795770645382224 0x7ffac23c0000 331776 C:\Windows\System32\OneCoreCommonProxyStub.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation OneCore Common Proxy Stub 131795770645382224 0x7ffac2750000 106496 C:\Windows\System32\bcd.dll 10.0.14393.1794 (rs1_release.171008-1615) Microsoft Corporation BCD DLL 131795770645382224 0x7ffac2b80000 40960 C:\Windows\system32\VERSION.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Version Checking and File Installation Libraries 131795770645382224 0x7ffac2c30000 135168 C:\Windows\System32\CLIPC.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиент платформы лицензирования клиента 131795770645382224 0x7ffac3810000 167936 C:\Windows\System32\Cabinet.dll 5.00 (rs1_release.160715-1616) Microsoft Corporation Microsoft® Cabinet File API 131795770645382224 0x7ffac3cb0000 2772992 C:\Windows\SYSTEM32\iertutil.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служебная программа времени выполнения для Internet Explorer 131795770645382224 0x7ffac4000000 274432 C:\Windows\SYSTEM32\policymanager.dll 10.0.14393.2035 (rs1_release_inmarket.180110-1910) Microsoft Corporation Policy Manager DLL 131795770645382224 0x7ffac4050000 118784 C:\Windows\System32\wdi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Инфраструктура диагностики Windows 131795770645382224 0x7ffac4ae0000 69632 C:\Windows\System32\sdiagschd.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Запланированная задача сценариев проверки 131795770645382224 0x7ffac4b00000 45056 C:\Windows\System32\MemoryDiagnostic.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Обработчик задач средства проверки памяти Windows (Майкрософт) 131795770645382224 0x7ffac5c80000 90112 C:\Windows\System32\TempSignedLicenseExchangeTask.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation TempSignedLicenseExchangeTask Task 131795770645382224 0x7ffac60e0000 221184 C:\Windows\system32\XmlLite.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft XmlLite Library 131795770645382224 0x7ffac6610000 40960 C:\Windows\System32\rasadhlp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Remote Access AutoDial Helper 131795770645382224 0x7ffac69c0000 839680 C:\Windows\system32\WINHTTP.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Службы HTTP Windows 131795770645382224 0x7ffac6c40000 2596864 C:\Windows\WinSxS\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.14393.953_none_42151e83c686086b\COMCTL32.dll 6.10 (rs1_release_inmarket.170303-1614) Microsoft Corporation Библиотека элементов управления взаимодействия с пользователем 131795770645382224 0x7ffac79c0000 57344 C:\Windows\System32\npmproxy.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Network List Manager Proxy 131795770645382224 0x7ffac83d0000 106496 C:\Windows\SYSTEM32\dhcpcsvc.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служба DHCP-клиента 131795770645382224 0x7ffac83f0000 90112 C:\Windows\SYSTEM32\dhcpcsvc6.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиент DHCPv6 131795770645382224 0x7ffac8810000 45056 C:\Windows\SYSTEM32\WINNSI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Network Store Information RPC interface 131795770645382224 0x7ffac8cf0000 815104 C:\Windows\System32\taskschd.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Task Scheduler COM API 131795770645382224 0x7ffac8dc0000 167936 C:\Windows\system32\dbgcore.DLL 10.0.14321.1024 (debuggers(dbg).160715-1616) Microsoft Windows Core Debugging Helpers 131795770645382224 0x7ffac8df0000 1646592 C:\Windows\system32\dbghelp.dll 10.0.14321.1024 (rs1_release.160715-1616) Microsoft Windows Image Helper 131795770645382224 0x7ffac9220000 397312 C:\Windows\System32\wevtapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API настройки и использования событий 131795770645382224 0x7ffac92e0000 1269760 C:\Windows\System32\WinTypes.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL основных типов Windows 131795770645382224 0x7ffac9f10000 221184 C:\Windows\System32\netprofm.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Network List Manager 131795770645382224 0x7ffaca200000 32768 C:\Windows\System32\ReAgentTask.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Обработчик задач агента восстановления Microsoft Windows 131795770645382224 0x7ffaca210000 225280 C:\Windows\system32\RstrtMgr.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Диспетчер перезапуска 131795770645382224 0x7ffaca4e0000 77824 C:\Windows\SYSTEM32\wtsapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Remote Desktop Session Host Server SDK APIs 131795770645382224 0x7ffaca5e0000 155648 C:\Windows\system32\dwmapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Интерфейс API диспетчера окон рабочего стола (Майкрософт) 131795770645382224 0x7ffaca610000 143360 C:\Windows\System32\SAMLIB.dll 10.0.14393.82 (rs1_release.160805-1735) Microsoft Corporation SAM Library DLL 131795770645382224 0x7ffacac00000 94208 C:\Windows\system32\radarrs.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation программа устранения нехватки системных ресурсов Microsoft Windows 131795770645382224 0x7ffacaf00000 610304 C:\Windows\system32\uxtheme.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека тем UxTheme (Microsoft) 131795770645382224 0x7ffacb140000 593920 C:\Windows\SYSTEM32\msvcp110_win.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Microsoft® STL110 C++ Runtime Library 131795770645382224 0x7ffacb1e0000 1163264 C:\Windows\System32\twinapi.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation twinapi.appcore 131795770645382224 0x7ffacb420000 204800 C:\Windows\SYSTEM32\ntmarta.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик Windows NT MARTA 131795770645382224 0x7ffacb6f0000 143360 C:\Windows\SYSTEM32\gpapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиентские функции API групповой политики 131795770645382224 0x7ffacb780000 651264 C:\Windows\system32\dxgi.dll 10.0.14393.953 (rs1_release_inmarket.170303-1614) Microsoft Corporation DirectX Graphics Infrastructure 131795770645382224 0x7ffacbaf0000 495616 C:\Windows\system32\schannel.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик безопасности TLS/SSL 131795770645382224 0x7ffacbbb0000 208896 C:\Windows\system32\rsaenh.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Enhanced Cryptographic Provider 131795770645382224 0x7ffacbbf0000 40960 C:\Windows\System32\DPAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Data Protection API 131795770645382224 0x7ffacbd30000 229376 C:\Windows\SYSTEM32\IPHLPAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API вспомогательного приложения IP 131795770645382224 0x7ffacbd70000 659456 C:\Windows\system32\DNSAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Динамическая библиотека API DNS-клиента 131795770645382224 0x7ffacbe40000 126976 C:\Windows\system32\USERENV.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Userenv 131795770645382224 0x7ffacbfb0000 376832 C:\Windows\system32\mswsock.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширение поставщика службы API Microsoft Windows Sockets 2.0 131795770645382224 0x7ffacc150000 94208 C:\Windows\system32\CRYPTSP.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Cryptographic Service Provider API 131795770645382224 0x7ffacc170000 45056 C:\Windows\system32\CRYPTBASE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base cryptographic API DLL 131795770645382224 0x7ffacc1f0000 241664 C:\Windows\system32\NTASN1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft ASN.1 API 131795770645382224 0x7ffacc230000 155648 C:\Windows\system32\ncrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Маршрутизатор Windows NCrypt 131795770645382224 0x7ffacc350000 180224 C:\Windows\system32\SspiCli.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Security Support Provider Interface 131795770645382224 0x7ffacc520000 622592 C:\Windows\SYSTEM32\sxs.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Fusion 2.5 131795770645382224 0x7ffacc620000 176128 C:\Windows\system32\bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795770645382224 0x7ffacc6e0000 61440 C:\Windows\System32\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795770645382224 0x7ffacc6f0000 311296 C:\Windows\System32\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795770645382224 0x7ffacc740000 81920 C:\Windows\System32\profapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Profile Basic API 131795770645382224 0x7ffacc760000 65536 C:\Windows\System32\MSASN1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ASN.1 Runtime APIs 131795770645382224 0x7ffacc8f0000 1003520 C:\Windows\System32\ucrtbase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645382224 0x7ffacc9f0000 434176 C:\Windows\System32\bcryptPrimitives.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Cryptographic Primitives Library 131795770645382224 0x7ffacca60000 122880 C:\Windows\System32\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795770645382224 0x7ffacca80000 348160 C:\Windows\System32\WINTRUST.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation Microsoft Trust Verification APIs 131795770645382224 0x7ffaccae0000 692224 C:\Windows\System32\shcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795770645382224 0x7ffaccb90000 7180288 C:\Windows\System32\windows.storage.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API хранения Microsoft WinRT 131795770645382224 0x7ffacd270000 2215936 C:\Windows\System32\KERNELBASE.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645382224 0x7ffacd490000 1871872 C:\Windows\System32\CRYPT32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API32 криптографии 131795770645382224 0x7ffacd710000 638976 C:\Windows\System32\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645382224 0x7ffacd7b0000 270336 C:\Windows\System32\cfgmgr32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Configuration Manager DLL 131795770645382224 0x7ffacd810000 22056960 C:\Windows\System32\SHELL32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Общая библиотека оболочки Windows 131795770645382224 0x7ffaced20000 782336 C:\Windows\System32\OLEAUT32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795770645382224 0x7ffacee50000 1183744 C:\Windows\System32\RPCRT4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795770645382224 0x7ffacef80000 32768 C:\Windows\System32\NSI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation NSI User-mode interface DLL 131795770645382224 0x7ffacef90000 647168 C:\Windows\System32\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795770645382224 0x7ffacf030000 651264 C:\Windows\System32\clbcatq.dll 2001.12.10941.16384 (rs1_release.160715-1616) Microsoft Corporation COM+ Configuration Catalog 131795770645382224 0x7ffacf0d0000 704512 C:\Windows\System32\KERNEL32.DLL 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645382224 0x7ffacf1e0000 1417216 C:\Windows\System32\MSCTF.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Серверная библиотека MSCTF 131795770645382224 0x7ffacf340000 4362240 C:\Windows\System32\SETUPAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Setup API 131795770645382224 0x7ffacf770000 212992 C:\Windows\System32\GDI32.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation GDI Client DLL 131795770645382224 0x7ffacf820000 434176 C:\Windows\System32\WS2_32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation 32-разрядная библиотека Windows Socket 2.0 131795770645382224 0x7ffacf890000 188416 C:\Windows\System32\imm32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Multi-User Windows IMM32 API Client DLL 131795770645382224 0x7ffacf8c0000 1462272 C:\Windows\System32\USER32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795770645382224 0x7ffacfb30000 2916352 C:\Windows\System32\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795770645382224 0x7ffacfe00000 114688 C:\Windows\System32\imagehlp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT Image Helper 131795770645382224 0x7ffacfe20000 663552 C:\Windows\System32\ADVAPI32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795770645382224 0x7ffad0070000 1277952 C:\Windows\System32\ole32.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft OLE для Windows 131795770645382224 0x7ffad01b0000 335872 C:\Windows\System32\SHLWAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека небольших программ оболочки 131795770645382224 0x7ffad0210000 364544 C:\Windows\System32\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795770645382224 0x7ffad0270000 1908736 C:\Windows\SYSTEM32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 55 6944 664 6 00000000:0031f1da 131767576301455145 0 0 1 Обязательная метка\Низкий обязательный уровень WIN-0UOTFKKVN1S\User SkypeHost.exe C:\Program Files\WindowsApps\Microsoft.SkypeApp_12.1815.210.0_x64__kzf8qxf38zg5c\SkypeHost.exe "C:\Program Files\WindowsApps\Microsoft.SkypeApp_12.1815.210.0_x64__kzf8qxf38zg5c\SkypeHost.exe" -ServerName:SkypeHost.ServerServer Microsoft Corporation 12.1815.210.0 Microsoft Skype 131795770645382388 0x7ff7e8670000 102400 C:\Program Files\WindowsApps\Microsoft.SkypeApp_12.1815.210.0_x64__kzf8qxf38zg5c\SkypeHost.exe 12.1815.210.0 Microsoft Corporation Microsoft Skype 131795770645382388 0x7ffaae130000 22437888 C:\Program Files\WindowsApps\Microsoft.SkypeApp_12.1815.210.0_x64__kzf8qxf38zg5c\SkyWrap.dll 12.1815.210.0 Microsoft Corporation Microsoft Skype 131795770645382388 0x7ffabaab0000 94208 C:\Windows\SYSTEM32\profext.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation profext 131795770645382388 0x7ffabc530000 241664 C:\Windows\SYSTEM32\Windows.Networking.HostName.dll 10.0.14393.953 (rs1_release_inmarket.170303-1614) Microsoft Corporation Windows.Networking.HostName DLL 131795770645382388 0x7ffabca50000 819200 C:\Windows\System32\Windows.Security.Authentication.Web.Core.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Token Broker WinRT API 131795770645382388 0x7ffabe150000 2691072 C:\Program Files\WindowsApps\Microsoft.SkypeApp_12.1815.210.0_x64__kzf8qxf38zg5c\skypert.dll 2018.15.01.31 SkypeRT shared library 131795770645382388 0x7ffabea90000 135168 C:\Windows\System32\Windows.ApplicationModel.Background.SystemEventsBroker.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Background System Events Broker API Server 131795770645382388 0x7ffabeac0000 335872 C:\Windows\System32\Windows.Storage.ApplicationData.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Application Data API Server 131795770645382388 0x7ffac0470000 1478656 C:\Windows\SYSTEM32\MFPlat.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Media Foundation Platform DLL 131795770645382388 0x7ffac0910000 724992 C:\Windows\SYSTEM32\Windows.Networking.Connectivity.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Networking Connectivity Runtime DLL 131795770645382388 0x7ffac0bf0000 3559424 C:\Windows\System32\ActXPrxy.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation ActiveX Interface Marshaling Library 131795770645382388 0x7ffac1a80000 978944 C:\Windows\SYSTEM32\Windows.Networking.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows.Networking DLL 131795770645382388 0x7ffac1b90000 630784 C:\Program Files\WindowsApps\Microsoft.VCLibs.140.00_14.0.25426.0_x64__8wekyb3d8bbwe\MSVCP140_APP.dll 14.11.25426.0 built by: VCTOOLSREL Microsoft Corporation Microsoft® C Runtime Library 131795770645382388 0x7ffac1e50000 188416 C:\Windows\SYSTEM32\RTWorkQ.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL для WorkQueue реального времени 131795770645382388 0x7ffac23c0000 331776 C:\Windows\System32\OneCoreCommonProxyStub.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation OneCore Common Proxy Stub 131795770645382388 0x7ffac2b30000 286720 C:\Windows\System32\usermgrproxy.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation UserMgrProxy 131795770645382388 0x7ffac2c30000 135168 C:\Windows\SYSTEM32\clipc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиент платформы лицензирования клиента 131795770645382388 0x7ffac3cb0000 2772992 C:\Windows\System32\iertutil.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служебная программа времени выполнения для Internet Explorer 131795770645382388 0x7ffac4b10000 307200 C:\Program Files\WindowsApps\Microsoft.VCLibs.140.00_14.0.25426.0_x64__8wekyb3d8bbwe\CONCRT140_APP.dll 14.11.25426.0 built by: VCTOOLSREL Microsoft Corporation Microsoft® Concurrency Runtime Library 131795770645382388 0x7ffac4c60000 385024 C:\Program Files\WindowsApps\Microsoft.VCLibs.140.00_14.0.25426.0_x64__8wekyb3d8bbwe\vccorlib140_app.DLL 14.11.25426.0 built by: VCTOOLSREL Microsoft Corporation Microsoft ® VC WinRT core library 131795770645382388 0x7ffac5070000 798720 C:\Windows\System32\Windows.Web.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL веб-клиента 131795770645382388 0x7ffac6620000 192512 C:\Windows\System32\biwinrt.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation Windows Background Broker Infrastructure 131795770645382388 0x7ffac7580000 1077248 C:\Windows\SYSTEM32\mrmcorer.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Windows MRM 131795770645382388 0x7ffac7720000 1601536 C:\Windows\System32\OneCoreUAPCommonProxyStub.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation OneCoreUAP Common Proxy Stub 131795770645382388 0x7ffac7c80000 208896 C:\Program Files\WindowsApps\Microsoft.SkypeApp_12.1815.210.0_x64__kzf8qxf38zg5c\SkypeBackgroundTasks.dll 12.1815.210.0 Microsoft Corporation Microsoft Skype 131795770645382388 0x7ffac7d80000 49152 C:\Windows\System32\Windows.ApplicationModel.Background.TimeBroker.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Background Time Broker API Server 131795770645382388 0x7ffac8540000 286720 C:\Windows\System32\vaultcli.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиентская библиотека хранилища учетных данных 131795770645382388 0x7ffac92e0000 1269760 C:\Windows\System32\WinTypes.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL основных типов Windows 131795770645382388 0x7ffaca260000 45056 C:\Windows\SYSTEM32\SystemEventsBrokerClient.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation system Events Broker Client Library 131795770645382388 0x7ffaca340000 1593344 C:\Windows\SYSTEM32\PROPSYS.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Система страниц свойств (Майкрософт) 131795770645382388 0x7ffacab80000 90112 C:\Program Files\WindowsApps\Microsoft.VCLibs.140.00_14.0.25426.0_x64__8wekyb3d8bbwe\VCRUNTIME140_APP.dll 14.11.25426.0 built by: VCTOOLSREL Microsoft Corporation Microsoft® C Runtime Library 131795770645382388 0x7ffacb1e0000 1163264 C:\Windows\SYSTEM32\twinapi.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation twinapi.appcore 131795770645382388 0x7ffacb360000 176128 C:\Windows\SYSTEM32\fwbase.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Firewall Base DLL 131795770645382388 0x7ffacb420000 204800 C:\Windows\SYSTEM32\ntmarta.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик Windows NT MARTA 131795770645382388 0x7ffacb460000 548864 C:\Windows\SYSTEM32\FirewallAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API брандмауэра Windows 131795770645382388 0x7ffacbbf0000 40960 C:\Windows\SYSTEM32\DPAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Data Protection API 131795770645382388 0x7ffacbd30000 229376 C:\Windows\SYSTEM32\IPHLPAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API вспомогательного приложения IP 131795770645382388 0x7ffacbe40000 126976 C:\Windows\SYSTEM32\USERENV.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Userenv 131795770645382388 0x7ffacc170000 45056 C:\Windows\SYSTEM32\CRYPTBASE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base cryptographic API DLL 131795770645382388 0x7ffacc620000 176128 C:\Windows\SYSTEM32\bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795770645382388 0x7ffacc6e0000 61440 C:\Windows\System32\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795770645382388 0x7ffacc6f0000 311296 C:\Windows\System32\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795770645382388 0x7ffacc740000 81920 C:\Windows\System32\profapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Profile Basic API 131795770645382388 0x7ffacc760000 65536 C:\Windows\System32\MSASN1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ASN.1 Runtime APIs 131795770645382388 0x7ffacc8f0000 1003520 C:\Windows\System32\ucrtbase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645382388 0x7ffacc9f0000 434176 C:\Windows\System32\bcryptPrimitives.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Cryptographic Primitives Library 131795770645382388 0x7ffacca60000 122880 C:\Windows\System32\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795770645382388 0x7ffaccae0000 692224 C:\Windows\System32\shcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795770645382388 0x7ffaccb90000 7180288 C:\Windows\System32\windows.storage.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API хранения Microsoft WinRT 131795770645382388 0x7ffacd270000 2215936 C:\Windows\System32\KERNELBASE.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645382388 0x7ffacd490000 1871872 C:\Windows\System32\CRYPT32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API32 криптографии 131795770645382388 0x7ffacd710000 638976 C:\Windows\System32\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645382388 0x7ffacd7b0000 270336 C:\Windows\System32\cfgmgr32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Configuration Manager DLL 131795770645382388 0x7ffaced20000 782336 C:\Windows\System32\OLEAUT32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795770645382388 0x7ffacee50000 1183744 C:\Windows\System32\RPCRT4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795770645382388 0x7ffacef90000 647168 C:\Windows\System32\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795770645382388 0x7ffacf0d0000 704512 C:\Windows\System32\KERNEL32.DLL 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645382388 0x7ffacf770000 212992 C:\Windows\System32\GDI32.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation GDI Client DLL 131795770645382388 0x7ffacf820000 434176 C:\Windows\System32\WS2_32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation 32-разрядная библиотека Windows Socket 2.0 131795770645382388 0x7ffacf890000 188416 C:\Windows\System32\IMM32.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Multi-User Windows IMM32 API Client DLL 131795770645382388 0x7ffacf8c0000 1462272 C:\Windows\System32\USER32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795770645382388 0x7ffacfb30000 2916352 C:\Windows\System32\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795770645382388 0x7ffacfe20000 663552 C:\Windows\System32\advapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795770645382388 0x7ffad01b0000 335872 C:\Windows\System32\shlwapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека небольших программ оболочки 131795770645382388 0x7ffad0210000 364544 C:\Windows\System32\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795770645382388 0x7ffad0270000 1908736 C:\Windows\SYSTEM32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 56 1048 580 4 00000000:000003e7 131768729449405953 0 0 1 Обязательная метка\Обязательный уровень системы NT AUTHORITY\СИСТЕМА sedsvc.exe C:\Program Files\rempl\sedsvc.exe "C:\Program Files\rempl\sedsvc.exe" Microsoft Corporation 10.0.16299.10000 (WinBuild.160101.0800) sedsvc 131795770645382485 0x7ff751430000 307200 C:\Program Files\rempl\sedsvc.exe 10.0.16299.10000 (WinBuild.160101.0800) Microsoft Corporation sedsvc 131795770645382485 0x7ffabf5d0000 2924544 C:\Windows\SYSTEM32\WININET.dll 11.00.14393.447 (rs1_release_inmarket.161102-0100) Microsoft Corporation Расширения Интернета для Win32 131795770645382485 0x7ffac2b80000 40960 C:\Windows\SYSTEM32\VERSION.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Version Checking and File Installation Libraries 131795770645382485 0x7ffac69c0000 839680 C:\Windows\SYSTEM32\WINHTTP.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Службы HTTP Windows 131795770645382485 0x7ffac8cf0000 815104 C:\Windows\System32\taskschd.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Task Scheduler COM API 131795770645382485 0x7ffaca4e0000 77824 C:\Windows\SYSTEM32\WTSAPI32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Remote Desktop Session Host Server SDK APIs 131795770645382485 0x7ffacb6f0000 143360 C:\Windows\SYSTEM32\gpapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиентские функции API групповой политики 131795770645382485 0x7ffacbbb0000 208896 C:\Windows\system32\rsaenh.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Enhanced Cryptographic Provider 131795770645382485 0x7ffacc150000 94208 C:\Windows\SYSTEM32\CRYPTSP.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Cryptographic Service Provider API 131795770645382485 0x7ffacc170000 45056 C:\Windows\SYSTEM32\CRYPTBASE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base cryptographic API DLL 131795770645382485 0x7ffacc350000 180224 C:\Windows\System32\SspiCli.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Security Support Provider Interface 131795770645382485 0x7ffacc620000 176128 C:\Windows\SYSTEM32\bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795770645382485 0x7ffacc6e0000 61440 C:\Windows\System32\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795770645382485 0x7ffacc6f0000 311296 C:\Windows\System32\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795770645382485 0x7ffacc740000 81920 C:\Windows\System32\profapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Profile Basic API 131795770645382485 0x7ffacc760000 65536 C:\Windows\System32\MSASN1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ASN.1 Runtime APIs 131795770645382485 0x7ffacc8f0000 1003520 C:\Windows\System32\ucrtbase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645382485 0x7ffacc9f0000 434176 C:\Windows\System32\bcryptPrimitives.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Cryptographic Primitives Library 131795770645382485 0x7ffacca60000 122880 C:\Windows\System32\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795770645382485 0x7ffacca80000 348160 C:\Windows\System32\WINTRUST.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation Microsoft Trust Verification APIs 131795770645382485 0x7ffaccae0000 692224 C:\Windows\System32\shcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795770645382485 0x7ffaccb90000 7180288 C:\Windows\System32\windows.storage.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API хранения Microsoft WinRT 131795770645382485 0x7ffacd270000 2215936 C:\Windows\System32\KERNELBASE.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645382485 0x7ffacd490000 1871872 C:\Windows\System32\CRYPT32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API32 криптографии 131795770645382485 0x7ffacd710000 638976 C:\Windows\System32\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645382485 0x7ffacd7b0000 270336 C:\Windows\System32\cfgmgr32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Configuration Manager DLL 131795770645382485 0x7ffacd810000 22056960 C:\Windows\System32\SHELL32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Общая библиотека оболочки Windows 131795770645382485 0x7ffaced20000 782336 C:\Windows\System32\OLEAUT32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795770645382485 0x7ffacee50000 1183744 C:\Windows\System32\RPCRT4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795770645382485 0x7ffacef90000 647168 C:\Windows\System32\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795770645382485 0x7ffacf030000 651264 C:\Windows\System32\clbcatq.dll 2001.12.10941.16384 (rs1_release.160715-1616) Microsoft Corporation COM+ Configuration Catalog 131795770645382485 0x7ffacf0d0000 704512 C:\Windows\System32\KERNEL32.DLL 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645382485 0x7ffacf340000 4362240 C:\Windows\System32\setupapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Setup API 131795770645382485 0x7ffacf770000 212992 C:\Windows\System32\GDI32.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation GDI Client DLL 131795770645382485 0x7ffacf8c0000 1462272 C:\Windows\System32\USER32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795770645382485 0x7ffacfb30000 2916352 C:\Windows\System32\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795770645382485 0x7ffacfe00000 114688 C:\Windows\System32\imagehlp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT Image Helper 131795770645382485 0x7ffacfe20000 663552 C:\Windows\System32\advapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795770645382485 0x7ffad01b0000 335872 C:\Windows\System32\shlwapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека небольших программ оболочки 131795770645382485 0x7ffad0210000 364544 C:\Windows\System32\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795770645382485 0x7ffad0270000 1908736 C:\Windows\SYSTEM32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 57 7744 3108 11 00000000:0031f1da 131769081112364684 0 0 0 Обязательная метка\Средний обязательный уровень WIN-0UOTFKKVN1S\User browser.exe C:\Users\User\AppData\Local\Yandex\YandexBrowser\Application\browser.exe "C:\Users\User\AppData\Local\Yandex\YandexBrowser\Application\browser.exe" YANDEX LLC 18.6.1.770 Yandex 131795770645382623 0x10e0000 2519040 C:\Users\User\AppData\Local\Yandex\YandexBrowser\Application\browser.exe 18.6.1.770 YANDEX LLC Yandex 131795770645382623 0x11330000 172032 C:\Windows\SysWOW64\RTWorkQ.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL для WorkQueue реального времени 131795770645382623 0x5c020000 335872 C:\Windows\System32\wow64.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation Win32 Emulation on NT64 131795770645382623 0x5c080000 487424 C:\Windows\System32\wow64win.dll 10.0.14393.1884 (rs1_release.171101-1233) Microsoft Corporation Wow64 Console and Win32 API Logging 131795770645382623 0x5c100000 40960 C:\Windows\System32\wow64cpu.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation AMD64 Wow64 CPU 131795770645382623 0x5fec0000 794624 C:\Windows\SysWOW64\wbem\fastprox.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation WMI Custom Marshaller 131795770645382623 0x5ffa0000 421888 C:\Windows\SysWOW64\wbemcomn.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation WMI 131795770645382623 0x60010000 53248 C:\Windows\SysWOW64\wbem\wbemprox.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation WMI 131795770645382623 0x60750000 1556480 C:\Program Files (x86)\360\Total Security\safemon\safemon.dll 8, 4, 0, 1420 Qihu 360 Software Co., Ltd. 360 Internet Security Internet Protection 131795770645382623 0x60900000 720896 C:\Program Files (x86)\360\Total Security\safemon\urlproc.dll 2, 9, 5, 1260 Qihu 360 Software Co., Ltd. 360 Internet Security 2013 Internet Protection 131795770645382623 0x622f0000 520192 C:\Program Files (x86)\360\Total Security\deepscan\heavygate.dll 3, 8, 11, 1 Qihu 360 Software Co., Ltd. 360 Total Security Cloud Security 131795770645382623 0x62980000 376832 C:\Program Files (x86)\360\Total Security\360NetBase.dll 7, 25, 0, 76 360.cn 360安全卫士 网络基础模块 131795770645382623 0x68b00000 44998656 C:\Users\User\AppData\Local\Yandex\YandexBrowser\Application\18.6.1.770\browser.dll 18.6.1.770 YANDEX LLC Yandex 131795770645382623 0x6b6b0000 36864 C:\Windows\SysWOW64\atlthunk.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation atlthunk.dll 131795770645382623 0x6b6d0000 102400 C:\Program Files (x86)\360\Total Security\I18N.dll 1, 0, 0, 1016 Qihu 360 Software Co., Ltd. 360 Total Security 131795770645382623 0x6bf00000 3715072 C:\Windows\SysWOW64\msi.dll 5.0.14393.2155 Microsoft Corporation Windows Installer 131795770645382623 0x6c290000 987136 C:\Windows\SysWOW64\twinapi.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation twinapi.appcore 131795770645382623 0x6c390000 1126400 C:\Windows\SysWOW64\dcomp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft DirectComposition Library 131795770645382623 0x6c4b0000 278528 C:\Windows\SysWOW64\dataexchange.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation Data exchange 131795770645382623 0x6c540000 483328 C:\Windows\SysWOW64\webio.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API протоколов передачи по Веб 131795770645382623 0x6cd50000 106496 C:\Windows\SysWOW64\SAMLIB.dll 10.0.14393.82 (rs1_release.160805-1735) Microsoft Corporation SAM Library DLL 131795770645382623 0x6ce30000 421888 C:\Windows\SysWOW64\msvcp110_win.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Microsoft® STL110 C++ Runtime Library 131795770645382623 0x6cf60000 569344 C:\Windows\SysWOW64\taskschd.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Task Scheduler COM API 131795770645382623 0x6d080000 151552 C:\Windows\SysWOW64\cryptnet.dll 10.0.14393.2035 (rs1_release_inmarket.180110-1910) Microsoft Corporation Crypto Network Related API 131795770645382623 0x6d0b0000 847872 C:\Windows\SysWOW64\wintypes.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL основных типов Windows 131795770645382623 0x6dc80000 90112 C:\Program Files (x86)\Windows Defender\MpOav.dll 4.10.14393.1794 (rs1_release.171008-1615) Microsoft Corporation IOfficeAntiVirus Module 131795770645382623 0x6df70000 245760 C:\Windows\SysWOW64\shdocvw.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека объектов документов и элементов управления оболочки 131795770645382623 0x6e070000 98304 C:\Windows\SysWOW64\MSACM32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Фильтр диспетчера аудиосжатия Microsoft 131795770645382623 0x6e090000 233472 C:\Windows\SysWOW64\wdmaud.drv 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Системный звуковой драйвер Winmm 131795770645382623 0x6e110000 32768 C:\Windows\SysWOW64\midimap.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft MIDI Mapper 131795770645382623 0x6e120000 40960 C:\Windows\SysWOW64\msacm32.drv 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Программа переназначения звуковых устройств 131795770645382623 0x6e130000 36864 C:\Windows\SysWOW64\AVRT.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Multimedia Realtime Runtime 131795770645382623 0x6e2a0000 4440064 C:\Windows\SysWOW64\explorerframe.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ExplorerFrame 131795770645382623 0x6e8b0000 1859584 C:\Windows\SysWOW64\mfmp4srcsnk.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL источника и приемника MPEG4 Media Foundation 131795770645382623 0x6eb60000 28672 C:\Windows\SysWOW64\ksuser.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User CSA Library 131795770645382623 0x6eb70000 790528 C:\Windows\SysWOW64\ntshrui.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширения оболочки, обеспечивающие общий доступ 131795770645382623 0x6ec40000 442368 C:\Windows\SysWOW64\twinapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation twinapi 131795770645382623 0x6eed0000 274432 C:\Windows\SysWOW64\thumbcache.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Кэш эскизов Майкрософт 131795770645382623 0x6ef30000 647168 C:\Windows\SysWOW64\evr.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека DLL средства отображения видео 131795770645382623 0x6efd0000 458752 C:\Windows\SysWOW64\msauddecmft.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Media Foundation Audio Decoders 131795770645382623 0x6f790000 1085440 C:\Windows\SysWOW64\mfperfhelper.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation MFPerf DLL 131795770645382623 0x6f8a0000 2220032 C:\Windows\SysWOW64\msmpeg2vdec.dll 10.0.14393.953 (rs1_release_inmarket.170303-1614) Microsoft Corporation Microsoft DTV-DVD Video Decoder 131795770645382623 0x6fac0000 1130496 C:\Windows\SysWOW64\mfplat.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Media Foundation Platform DLL 131795770645382623 0x6fc70000 385024 C:\Windows\SysWOW64\FirewallAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API брандмауэра Windows 131795770645382623 0x6fd00000 73728 C:\Windows\SysWOW64\mssprxy.dll 7.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation Microsoft Search Proxy 131795770645382623 0x6fd20000 61440 C:\Windows\SysWOW64\cscapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Offline Files Win32 API 131795770645382623 0x6fd30000 139264 C:\Windows\SysWOW64\DEVOBJ.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Device Information Set DLL 131795770645382623 0x6fd60000 360448 C:\Windows\SysWOW64\MMDevAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation MMDevice API 131795770645382623 0x6fdc0000 507904 C:\Windows\SysWOW64\audioses.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Сеанс обработки звука 131795770645382623 0x6fe40000 57344 C:\Windows\SysWOW64\BitsProxy.dll 7.8.14393.0 (rs1_release.160715-1616) Microsoft Corporation Background Intelligent Transfer Service Proxy 131795770645382623 0x6fe50000 241664 C:\Windows\SysWOW64\mstask.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека интерфейса планировщика заданий 131795770645382623 0x6fe90000 544768 C:\Windows\SysWOW64\mscms.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL-библиотека системы сопоставления цветов Майкрософт 131795770645382623 0x6ff90000 323584 C:\Windows\SysWOW64\wlanapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows WLAN AutoConfig Client Side API DLL 131795770645382623 0x6ffe0000 303104 C:\Windows\SysWOW64\wevtapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API настройки и использования событий 131795770645382623 0x70030000 593920 C:\Users\User\AppData\Local\Yandex\YandexBrowser\Application\18.6.1.770\browser_elf.dll 18.6.1.770 YANDEX LLC Yandex 131795770645382623 0x70140000 274432 C:\Windows\SysWOW64\WINSTA.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Winstation Library 131795770645382623 0x70190000 53248 C:\Windows\SysWOW64\LINKINFO.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Volume Tracking 131795770645382623 0x701a0000 401408 C:\Users\User\AppData\Local\Yandex\YandexBrowser\Application\18.6.1.770\dllyupdate.dll 1.2.0.1831 Yandex LLC Yandex updater (CU) 131795770645382623 0x70340000 536576 C:\Windows\SysWOW64\dxgi.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation DirectX Graphics Infrastructure 131795770645382623 0x703d0000 2056192 C:\Windows\SysWOW64\DWrite.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Службы Microsoft DirectX Typography 131795770645382623 0x705e0000 344064 C:\Windows\SysWOW64\OLEACC.dll 7.2.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Active Accessibility Core Component 131795770645382623 0x70640000 1499136 C:\Windows\SysWOW64\WindowsCodecs.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Microsoft Windows Codecs Library 131795770645382623 0x707d0000 86016 C:\Windows\SysWOW64\SAMCLI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Security Accounts Manager Client DLL 131795770645382623 0x70a20000 94208 C:\Windows\SysWOW64\USP10.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Uniscribe Unicode script processor 131795770645382623 0x70a40000 81920 C:\Windows\SysWOW64\NLAapi.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Network Location Awareness 2 131795770645382623 0x70b00000 176128 C:\Windows\SysWOW64\wscapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API центра обеспечения безопасности Windows 131795770645382623 0x70b30000 36864 C:\Windows\SysWOW64\WINUSB.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows USB Driver User Library 131795770645382623 0x70b60000 40960 C:\Windows\SysWOW64\HID.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека пользователя HID 131795770645382623 0x70b70000 163840 C:\Windows\SysWOW64\ntmarta.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик Windows NT MARTA 131795770645382623 0x70ba0000 188416 C:\Windows\SysWOW64\FWPolicyIOMgr.dll 10.0.14393.2189 (rs1_release.180329-1711) Microsoft Corporation FwPolicyIoMgr DLL 131795770645382623 0x70bd0000 147456 C:\Windows\SysWOW64\fwbase.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Firewall Base DLL 131795770645382623 0x70c30000 114688 C:\Windows\SysWOW64\srvcli.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Server Service Client DLL 131795770645382623 0x70ca0000 45056 C:\Windows\SysWOW64\NETUTILS.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API Helpers DLL 131795770645382623 0x70cc0000 65536 C:\Windows\SysWOW64\ondemandconnroutehelper.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation On Demand Connctiond Route Helper 131795770645382623 0x70e60000 176128 C:\Windows\SysWOW64\NTASN1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft ASN.1 API 131795770645382623 0x70fd0000 1331200 C:\Windows\SysWOW64\dbghelp.dll 10.0.14321.1024 (rs1_release.160715-1616) Microsoft Windows Image Helper 131795770645382623 0x71140000 77824 C:\Windows\SysWOW64\NETAPI32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API DLL 131795770645382623 0x711f0000 32768 C:\Windows\SysWOW64\IconCodecService.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Converts a PNG part of the icon to a legacy bmp icon 131795770645382623 0x71610000 77824 C:\Windows\SysWOW64\dhcpcsvc6.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиент DHCPv6 131795770645382623 0x724f0000 57344 C:\Windows\SysWOW64\credui.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Credential Manager User Interface 131795770645382623 0x725e0000 2273280 C:\Windows\SysWOW64\iertutil.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служебная программа времени выполнения для Internet Explorer 131795770645382623 0x728e0000 1372160 C:\Windows\SysWOW64\PROPSYS.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Система страниц свойств (Майкрософт) 131795770645382623 0x72b90000 126976 C:\Windows\SysWOW64\dwmapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Интерфейс API диспетчера окон рабочего стола (Майкрософт) 131795770645382623 0x72cc0000 1658880 C:\Windows\SysWOW64\urlmon.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширения OLE32 для Win32 131795770645382623 0x73a40000 32768 C:\Windows\SysWOW64\WINNSI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Network Store Information RPC interface 131795770645382623 0x73a50000 299008 C:\Windows\SysWOW64\fwpuclnt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API пользовательского режима FWP/IPsec 131795770645382623 0x73aa0000 32768 C:\Windows\SysWOW64\DPAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Data Protection API 131795770645382623 0x73ab0000 32768 C:\Windows\SysWOW64\rasadhlp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Remote Access AutoDial Helper 131795770645382623 0x73ac0000 81920 C:\Windows\SysWOW64\dhcpcsvc.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служба DHCP-клиента 131795770645382623 0x73ae0000 40960 C:\Windows\SysWOW64\Secur32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Security Support Provider Interface 131795770645382623 0x73ee0000 61440 C:\Windows\SysWOW64\WTSAPI32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Remote Desktop Session Host Server SDK APIs 131795770645382623 0x73f00000 192512 C:\Windows\SysWOW64\IPHLPAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API вспомогательного приложения IP 131795770645382623 0x73f30000 512000 C:\Windows\SysWOW64\DNSAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Динамическая библиотека API DNS-клиента 131795770645382623 0x73ff0000 319488 C:\Windows\SysWOW64\mswsock.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширение поставщика службы API Microsoft Windows Sockets 2.0 131795770645382623 0x74040000 126976 C:\Windows\SysWOW64\gpapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиентские функции API групповой политики 131795770645382623 0x74060000 192512 C:\Windows\SysWOW64\rsaenh.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Enhanced Cryptographic Provider 131795770645382623 0x74110000 479232 C:\Windows\SysWOW64\uxtheme.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека тем UxTheme (Microsoft) 131795770645382623 0x74190000 110592 C:\Windows\SysWOW64\bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795770645382623 0x741b0000 77824 C:\Windows\SysWOW64\CRYPTSP.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Cryptographic Service Provider API 131795770645382623 0x741f0000 143360 C:\Windows\SysWOW64\WINMMBASE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base Multimedia Extension API DLL 131795770645382623 0x74230000 147456 C:\Windows\SysWOW64\WINMM.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation MCI API DLL 131795770645382623 0x74260000 2514944 C:\Windows\SysWOW64\WININET.dll 11.00.14393.447 (rs1_release_inmarket.161102-0100) Microsoft Corporation Расширения Интернета для Win32 131795770645382623 0x744d0000 2138112 C:\Windows\WinSxS\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.14393.953_none_89c2555adb023171\COMCTL32.dll 6.10 (rs1_release_inmarket.170303-1614) Microsoft Corporation Библиотека элементов управления взаимодействия с пользователем 131795770645382623 0x746e0000 32768 C:\Windows\SysWOW64\VERSION.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Version Checking and File Installation Libraries 131795770645382623 0x746f0000 106496 C:\Windows\SysWOW64\USERENV.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Userenv 131795770645382623 0x74730000 598016 C:\Windows\SysWOW64\apphelp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиентская библиотека совместимости приложений 131795770645382623 0x747d0000 40960 C:\Windows\SysWOW64\CRYPTBASE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base cryptographic API DLL 131795770645382623 0x747e0000 126976 C:\Windows\SysWOW64\SspiCli.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Security Support Provider Interface 131795770645382623 0x74800000 151552 C:\Windows\SysWOW64\IMM32.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Multi-User Windows IMM32 API Client DLL 131795770645382623 0x74910000 2170880 C:\Windows\SysWOW64\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795770645382623 0x74b30000 53248 C:\Windows\SysWOW64\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795770645382623 0x74b40000 102400 C:\Windows\SysWOW64\imagehlp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT Image Helper 131795770645382623 0x74b60000 790528 C:\Windows\SysWOW64\RPCRT4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795770645382623 0x74c30000 1417216 C:\Windows\SysWOW64\gdi32full.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation GDI Client DLL 131795770645382623 0x74d90000 24576 C:\Windows\SysWOW64\PSAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Process Status Helper 131795770645382623 0x74da0000 778240 C:\Windows\SysWOW64\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795770645382623 0x74e60000 557056 C:\Windows\SysWOW64\shcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795770645382623 0x74ef0000 540672 C:\Windows\SysWOW64\clbcatq.dll 2001.12.10941.16384 (rs1_release.160715-1616) Microsoft Corporation COM+ Configuration Catalog 131795770645382623 0x74f80000 278528 C:\Windows\SysWOW64\WINTRUST.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation Microsoft Trust Verification APIs 131795770645382623 0x74fd0000 405504 C:\Windows\SysWOW64\WS2_32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation 32-разрядная библиотека Windows Socket 2.0 131795770645382623 0x75040000 282624 C:\Windows\SysWOW64\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795770645382623 0x75090000 1265664 C:\Windows\SysWOW64\MSCTF.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Серверная библиотека MSCTF 131795770645382623 0x751d0000 57344 C:\Windows\SysWOW64\MSASN1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ASN.1 Runtime APIs 131795770645382623 0x751e0000 1708032 C:\Windows\SysWOW64\KERNELBASE.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645382623 0x75390000 266240 C:\Windows\SysWOW64\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795770645382623 0x753e0000 1560576 C:\Windows\SysWOW64\CRYPT32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API32 криптографии 131795770645382623 0x75560000 487424 C:\Windows\SysWOW64\ADVAPI32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795770645382623 0x756c0000 5693440 C:\Windows\SysWOW64\windows.storage.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API хранения Microsoft WinRT 131795770645382623 0x75c30000 372736 C:\Windows\SysWOW64\coml2.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft COM for Windows 131795770645382623 0x75c90000 286720 C:\Windows\SysWOW64\shlwapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека небольших программ оболочки 131795770645382623 0x75ce0000 20811776 C:\Windows\SysWOW64\SHELL32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Общая библиотека оболочки Windows 131795770645382623 0x774d0000 86016 C:\Windows\SysWOW64\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795770645382623 0x774f0000 61440 C:\Windows\SysWOW64\profapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Profile Basic API 131795770645382623 0x77560000 1437696 C:\Windows\SysWOW64\USER32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795770645382623 0x776c0000 368640 C:\Windows\SysWOW64\bcryptPrimitives.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation Windows Cryptographic Primitives Library 131795770645382623 0x77780000 503808 C:\Windows\SysWOW64\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645382623 0x77800000 606208 C:\Windows\SysWOW64\OLEAUT32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795770645382623 0x77ac0000 966656 C:\Windows\SysWOW64\ole32.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft OLE для Windows 131795770645382623 0x77bb0000 176128 C:\Windows\SysWOW64\GDI32.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation GDI Client DLL 131795770645382623 0x77cd0000 221184 C:\Windows\SysWOW64\cfgmgr32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Configuration Manager DLL 131795770645382623 0x77d10000 28672 C:\Windows\SysWOW64\NSI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation NSI User-mode interface DLL 131795770645382623 0x77d20000 1585152 C:\Windows\SysWOW64\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 131795770645382623 0x7ffad0270000 1908736 C:\Windows\SYSTEM32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 58 5696 7744 57 00000000:0031f1da 131769081114193232 0 0 0 Обязательная метка\Средний обязательный уровень WIN-0UOTFKKVN1S\User browser.exe C:\Users\User\AppData\Local\Yandex\YandexBrowser\Application\browser.exe C:\Users\User\AppData\Local\Yandex\YandexBrowser\Application\browser.exe --type=crashpad-handler "--user-data-dir=C:\Users\User\AppData\Local\Yandex\YandexBrowser\User Data" /prefetch:7 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Users\User\AppData\Local\Yandex\YandexBrowser\User Data\Crashpad" "--metrics-dir=C:\Users\User\AppData\Local\Yandex\YandexBrowser\User Data" --url=https://crash-reports.browser.yandex.net/submit --annotation=machine_id=c46245ef0fec9d5c44d2fa20241f2070 --annotation=main_process_pid=7744 --annotation=metrics_client_id=520f4dd3247d4cdfb744f32b1130b1bf --annotation=plat=Win32 --annotation=prod=Yandex --annotation=ver=18.6.1.770 --initial-client-data=0x1c4,0x1cc,0x1d0,0x1c0,0x1d4,0x700b800c,0x700b7ffc,0x700b7fe0,0x1c8 YANDEX LLC 18.6.1.770 Yandex 131795770645382726 0x10e0000 2519040 C:\Users\User\AppData\Local\Yandex\YandexBrowser\Application\browser.exe 18.6.1.770 YANDEX LLC Yandex 131795770645382726 0x5c020000 335872 C:\Windows\System32\wow64.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation Win32 Emulation on NT64 131795770645382726 0x5c080000 487424 C:\Windows\System32\wow64win.dll 10.0.14393.1884 (rs1_release.171101-1233) Microsoft Corporation Wow64 Console and Win32 API Logging 131795770645382726 0x5c100000 40960 C:\Windows\System32\wow64cpu.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation AMD64 Wow64 CPU 131795770645382726 0x60750000 1556480 C:\Program Files (x86)\360\Total Security\safemon\safemon.dll 8, 4, 0, 1420 Qihu 360 Software Co., Ltd. 360 Internet Security Internet Protection 131795770645382726 0x70030000 593920 C:\Users\User\AppData\Local\Yandex\YandexBrowser\Application\18.6.1.770\browser_elf.dll 18.6.1.770 YANDEX LLC Yandex 131795770645382726 0x70b70000 163840 C:\Windows\SysWOW64\ntmarta.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик Windows NT MARTA 131795770645382726 0x70ca0000 45056 C:\Windows\SysWOW64\NETUTILS.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API Helpers DLL 131795770645382726 0x70cb0000 65536 C:\Windows\SysWOW64\WKSCLI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Workstation Service Client DLL 131795770645382726 0x71140000 77824 C:\Windows\SysWOW64\NETAPI32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API DLL 131795770645382726 0x72b90000 126976 C:\Windows\SysWOW64\dwmapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Интерфейс API диспетчера окон рабочего стола (Майкрософт) 131795770645382726 0x74110000 479232 C:\Windows\SysWOW64\uxtheme.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека тем UxTheme (Microsoft) 131795770645382726 0x74190000 110592 C:\Windows\SysWOW64\bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795770645382726 0x741f0000 143360 C:\Windows\SysWOW64\WINMMBASE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base Multimedia Extension API DLL 131795770645382726 0x74230000 147456 C:\Windows\SysWOW64\WINMM.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation MCI API DLL 131795770645382726 0x746e0000 32768 C:\Windows\SysWOW64\VERSION.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Version Checking and File Installation Libraries 131795770645382726 0x746f0000 106496 C:\Windows\SysWOW64\USERENV.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Userenv 131795770645382726 0x747d0000 40960 C:\Windows\SysWOW64\CRYPTBASE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base cryptographic API DLL 131795770645382726 0x747e0000 126976 C:\Windows\SysWOW64\SspiCli.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Security Support Provider Interface 131795770645382726 0x74800000 151552 C:\Windows\SysWOW64\IMM32.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Multi-User Windows IMM32 API Client DLL 131795770645382726 0x74910000 2170880 C:\Windows\SysWOW64\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795770645382726 0x74b30000 53248 C:\Windows\SysWOW64\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795770645382726 0x74b60000 790528 C:\Windows\SysWOW64\RPCRT4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795770645382726 0x74c30000 1417216 C:\Windows\SysWOW64\gdi32full.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation GDI Client DLL 131795770645382726 0x74d90000 24576 C:\Windows\SysWOW64\PSAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Process Status Helper 131795770645382726 0x74da0000 778240 C:\Windows\SysWOW64\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795770645382726 0x74e60000 557056 C:\Windows\SysWOW64\shcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795770645382726 0x74fd0000 405504 C:\Windows\SysWOW64\WS2_32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation 32-разрядная библиотека Windows Socket 2.0 131795770645382726 0x75040000 282624 C:\Windows\SysWOW64\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795770645382726 0x75090000 1265664 C:\Windows\SysWOW64\MSCTF.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Серверная библиотека MSCTF 131795770645382726 0x751e0000 1708032 C:\Windows\SysWOW64\KERNELBASE.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645382726 0x75390000 266240 C:\Windows\SysWOW64\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795770645382726 0x75560000 487424 C:\Windows\SysWOW64\ADVAPI32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795770645382726 0x756c0000 5693440 C:\Windows\SysWOW64\windows.storage.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API хранения Microsoft WinRT 131795770645382726 0x75c90000 286720 C:\Windows\SysWOW64\shlwapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека небольших программ оболочки 131795770645382726 0x75ce0000 20811776 C:\Windows\SysWOW64\SHELL32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Общая библиотека оболочки Windows 131795770645382726 0x774d0000 86016 C:\Windows\SysWOW64\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795770645382726 0x774f0000 61440 C:\Windows\SysWOW64\profapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Profile Basic API 131795770645382726 0x77560000 1437696 C:\Windows\SysWOW64\USER32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795770645382726 0x776c0000 368640 C:\Windows\SysWOW64\bcryptPrimitives.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation Windows Cryptographic Primitives Library 131795770645382726 0x77780000 503808 C:\Windows\SysWOW64\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645382726 0x77800000 606208 C:\Windows\SysWOW64\OLEAUT32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795770645382726 0x77ac0000 966656 C:\Windows\SysWOW64\ole32.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft OLE для Windows 131795770645382726 0x77bb0000 176128 C:\Windows\SysWOW64\GDI32.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation GDI Client DLL 131795770645382726 0x77cd0000 221184 C:\Windows\SysWOW64\cfgmgr32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Configuration Manager DLL 131795770645382726 0x77d20000 1585152 C:\Windows\SysWOW64\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 131795770645382726 0x7ffad0270000 1908736 C:\Windows\SYSTEM32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 59 4664 7744 57 00000000:0031f1da 131769081123844756 0 0 0 Обязательная метка\Низкий обязательный уровень WIN-0UOTFKKVN1S\User browser.exe C:\Users\User\AppData\Local\Yandex\YandexBrowser\Application\browser.exe "C:\Users\User\AppData\Local\Yandex\YandexBrowser\Application\browser.exe" --type=gpu-process --field-trial-handle=1292,9555382311565764851,7120838982649204725,131072 --user-id=32B2E0A1-3039-4C67-86BE-75A88EF21B54 --brand-id=yandex --partner-id=7924 --gpu-preferences=KAAAAAAAAACAAwCAAQAAAAAAAAAAAGAAEAAAAAAAAAAAAAAAAAAAACgAAAAEAAAAIAAAAAAAAAAoAAAAAAAAADAAAAAAAAAAOAAAAAAAAAAQAAAAAAAAAAAAAAAKAAAAEAAAAAAAAAAAAAAACwAAABAAAAAAAAAAAQAAAAoAAAAQAAAAAAAAAAEAAAALAAAA --user-id=32B2E0A1-3039-4C67-86BE-75A88EF21B54 --brand-id=yandex --partner-id=7924 --service-request-channel-token=CC1AC8FA9C8EFF1EEBC2375FE4F704C6 --mojo-platform-channel-handle=1588 --ignored=" --type=renderer " /prefetch:2 YANDEX LLC 18.6.1.770 Yandex 131795770645382836 0x10e0000 2519040 C:\Users\User\AppData\Local\Yandex\YandexBrowser\Application\browser.exe 18.6.1.770 YANDEX LLC Yandex 131795770645382836 0x58720000 59748352 C:\Users\User\AppData\Local\Yandex\YandexBrowser\Application\18.6.1.770\browser_child.dll 18.6.1.770 YANDEX LLC Yandex 131795770645382836 0x5c020000 335872 C:\Windows\System32\wow64.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation Win32 Emulation on NT64 131795770645382836 0x5c080000 487424 C:\Windows\System32\wow64win.dll 10.0.14393.1884 (rs1_release.171101-1233) Microsoft Corporation Wow64 Console and Win32 API Logging 131795770645382836 0x5c100000 40960 C:\Windows\System32\wow64cpu.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation AMD64 Wow64 CPU 131795770645382836 0x6ecb0000 2228224 C:\Windows\SysWOW64\mfh264enc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Media Foundation H264 Encoder 131795770645382836 0x6f250000 970752 C:\Windows\SysWOW64\ddraw.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft DirectDraw 131795770645382836 0x6f340000 3784704 C:\Windows\SysWOW64\D3DCompiler_47.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Direct3D HLSL Compiler 131795770645382836 0x6f6e0000 688128 C:\Windows\SysWOW64\msvproc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Media Foundation Video Processor 131795770645382836 0x6f790000 1085440 C:\Windows\SysWOW64\mfperfhelper.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation MFPerf DLL 131795770645382836 0x6f8a0000 2220032 C:\Windows\SysWOW64\msmpeg2vdec.dll 10.0.14393.953 (rs1_release_inmarket.170303-1614) Microsoft Corporation Microsoft DTV-DVD Video Decoder 131795770645382836 0x6fac0000 1130496 C:\Windows\SysWOW64\MFPlat.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Media Foundation Platform DLL 131795770645382836 0x6fbe0000 540672 C:\Windows\SysWOW64\mf.dll 10.0.14393.953 (rs1_release_inmarket.170303-1614) Microsoft Corporation Библиотека DLL Media Foundation 131795770645382836 0x6fd30000 139264 C:\Windows\SysWOW64\DEVOBJ.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Device Information Set DLL 131795770645382836 0x6ff20000 118784 C:\Users\User\AppData\Local\Yandex\YandexBrowser\Application\18.6.1.770\swiftshader\libegl.dll 4.0.0.3 SwiftShader libEGL 32-bit Dynamic Link Library 131795770645382836 0x6ff40000 126976 C:\Windows\SysWOW64\dxva2.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DirectX Video Acceleration 2.0 DLL 131795770645382836 0x6ff60000 172032 C:\Windows\SysWOW64\RTWorkQ.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL для WorkQueue реального времени 131795770645382836 0x70030000 593920 C:\Users\User\AppData\Local\Yandex\YandexBrowser\Application\18.6.1.770\browser_elf.dll 18.6.1.770 YANDEX LLC Yandex 131795770645382836 0x700d0000 434176 C:\Windows\SysWOW64\WINSPOOL.DRV 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Драйвер диспетчера очереди Windows 131795770645382836 0x70340000 536576 C:\Windows\SysWOW64\dxgi.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation DirectX Graphics Infrastructure 131795770645382836 0x703d0000 2056192 C:\Windows\SysWOW64\DWrite.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Службы Microsoft DirectX Typography 131795770645382836 0x705d0000 28672 C:\Windows\SysWOW64\DCIMAN32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DCI Manager 131795770645382836 0x707d0000 86016 C:\Windows\SysWOW64\SAMCLI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Security Accounts Manager Client DLL 131795770645382836 0x70a20000 94208 C:\Windows\SysWOW64\USP10.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Uniscribe Unicode script processor 131795770645382836 0x70ca0000 45056 C:\Windows\SysWOW64\NETUTILS.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API Helpers DLL 131795770645382836 0x70fd0000 1331200 C:\Windows\SysWOW64\dbghelp.dll 10.0.14321.1024 (rs1_release.160715-1616) Microsoft Windows Image Helper 131795770645382836 0x71140000 77824 C:\Windows\SysWOW64\NETAPI32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API DLL 131795770645382836 0x725e0000 2273280 C:\Windows\SysWOW64\iertutil.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служебная программа времени выполнения для Internet Explorer 131795770645382836 0x728e0000 1372160 C:\Windows\SysWOW64\PROPSYS.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Система страниц свойств (Майкрософт) 131795770645382836 0x72b90000 126976 C:\Windows\SysWOW64\dwmapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Интерфейс API диспетчера окон рабочего стола (Майкрософт) 131795770645382836 0x72cc0000 1658880 C:\Windows\SysWOW64\urlmon.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширения OLE32 для Win32 131795770645382836 0x73ac0000 81920 C:\Windows\SysWOW64\dhcpcsvc.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служба DHCP-клиента 131795770645382836 0x73ae0000 40960 C:\Windows\SysWOW64\Secur32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Security Support Provider Interface 131795770645382836 0x73f00000 192512 C:\Windows\SysWOW64\IPHLPAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API вспомогательного приложения IP 131795770645382836 0x74190000 110592 C:\Windows\SysWOW64\bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795770645382836 0x741b0000 77824 C:\Windows\SysWOW64\cryptsp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Cryptographic Service Provider API 131795770645382836 0x741f0000 143360 C:\Windows\SysWOW64\WINMMBASE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base Multimedia Extension API DLL 131795770645382836 0x74230000 147456 C:\Windows\SysWOW64\WINMM.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation MCI API DLL 131795770645382836 0x744d0000 2138112 C:\Windows\WinSxS\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.14393.953_none_89c2555adb023171\COMCTL32.dll 6.10 (rs1_release_inmarket.170303-1614) Microsoft Corporation Библиотека элементов управления взаимодействия с пользователем 131795770645382836 0x746e0000 32768 C:\Windows\SysWOW64\VERSION.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Version Checking and File Installation Libraries 131795770645382836 0x746f0000 106496 C:\Windows\SysWOW64\USERENV.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Userenv 131795770645382836 0x747d0000 40960 C:\Windows\SysWOW64\CRYPTBASE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base cryptographic API DLL 131795770645382836 0x747e0000 126976 C:\Windows\SysWOW64\SspiCli.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Security Support Provider Interface 131795770645382836 0x74800000 151552 C:\Windows\SysWOW64\IMM32.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Multi-User Windows IMM32 API Client DLL 131795770645382836 0x74910000 2170880 C:\Windows\SysWOW64\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795770645382836 0x74b30000 53248 C:\Windows\SysWOW64\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795770645382836 0x74b60000 790528 C:\Windows\SysWOW64\RPCRT4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795770645382836 0x74c30000 1417216 C:\Windows\SysWOW64\gdi32full.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation GDI Client DLL 131795770645382836 0x74d90000 24576 C:\Windows\SysWOW64\PSAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Process Status Helper 131795770645382836 0x74da0000 778240 C:\Windows\SysWOW64\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795770645382836 0x74e60000 557056 C:\Windows\SysWOW64\shcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795770645382836 0x74ef0000 540672 C:\Windows\SysWOW64\clbcatq.dll 2001.12.10941.16384 (rs1_release.160715-1616) Microsoft Corporation COM+ Configuration Catalog 131795770645382836 0x74f80000 278528 C:\Windows\SysWOW64\WINTRUST.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation Microsoft Trust Verification APIs 131795770645382836 0x74fd0000 405504 C:\Windows\SysWOW64\WS2_32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation 32-разрядная библиотека Windows Socket 2.0 131795770645382836 0x75040000 282624 C:\Windows\SysWOW64\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795770645382836 0x751d0000 57344 C:\Windows\SysWOW64\MSASN1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ASN.1 Runtime APIs 131795770645382836 0x751e0000 1708032 C:\Windows\SysWOW64\KERNELBASE.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645382836 0x75390000 266240 C:\Windows\SysWOW64\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795770645382836 0x753e0000 1560576 C:\Windows\SysWOW64\CRYPT32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API32 криптографии 131795770645382836 0x75560000 487424 C:\Windows\SysWOW64\ADVAPI32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795770645382836 0x756c0000 5693440 C:\Windows\SysWOW64\windows.storage.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API хранения Microsoft WinRT 131795770645382836 0x75c90000 286720 C:\Windows\SysWOW64\shlwapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека небольших программ оболочки 131795770645382836 0x75ce0000 20811776 C:\Windows\SysWOW64\SHELL32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Общая библиотека оболочки Windows 131795770645382836 0x770c0000 4239360 C:\Windows\SysWOW64\SETUPAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Setup API 131795770645382836 0x774d0000 86016 C:\Windows\SysWOW64\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795770645382836 0x774f0000 61440 C:\Windows\SysWOW64\profapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Profile Basic API 131795770645382836 0x77560000 1437696 C:\Windows\SysWOW64\USER32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795770645382836 0x776c0000 368640 C:\Windows\SysWOW64\bcryptPrimitives.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation Windows Cryptographic Primitives Library 131795770645382836 0x77780000 503808 C:\Windows\SysWOW64\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645382836 0x77800000 606208 C:\Windows\SysWOW64\OLEAUT32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795770645382836 0x77ac0000 966656 C:\Windows\SysWOW64\ole32.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft OLE для Windows 131795770645382836 0x77bb0000 176128 C:\Windows\SysWOW64\GDI32.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation GDI Client DLL 131795770645382836 0x77be0000 937984 C:\Windows\SysWOW64\COMDLG32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека общих диалоговых окон 131795770645382836 0x77cd0000 221184 C:\Windows\SysWOW64\cfgmgr32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Configuration Manager DLL 131795770645382836 0x77d10000 28672 C:\Windows\SysWOW64\NSI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation NSI User-mode interface DLL 131795770645382836 0x77d20000 1585152 C:\Windows\SysWOW64\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 131795770645382836 0x7ffad0270000 1908736 C:\Windows\SYSTEM32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 60 8968 7744 57 00000000:0031f1da 131769081206363215 0 0 0 Обязательная метка\Ненадежный обязательный уровень WIN-0UOTFKKVN1S\User browser.exe C:\Users\User\AppData\Local\Yandex\YandexBrowser\Application\browser.exe "C:\Users\User\AppData\Local\Yandex\YandexBrowser\Application\browser.exe" --type=renderer --enable-in-process-wmf-demuxer --field-trial-handle=1292,9555382311565764851,7120838982649204725,131072 --enable-ignition --service-pipe-token=183F52B8A6577BFD721F95F3A9641348 --lang=ru --user-id=32B2E0A1-3039-4C67-86BE-75A88EF21B54 --brand-id=yandex --partner-id=7924 --help-url=https://api.browser.yandex.ru/redirect/help/ --user-agent-info --translate-security-origin=https://translate.yandex.net --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --enable-instaserp --device-scale-factor=1 --num-raster-threads=1 --enable-compositor-image-animations --service-request-channel-token=183F52B8A6577BFD721F95F3A9641348 --renderer-client-id=4 --mojo-platform-channel-handle=2640 /prefetch:1 YANDEX LLC 18.6.1.770 Yandex 131795770645382953 0x10e0000 2519040 C:\Users\User\AppData\Local\Yandex\YandexBrowser\Application\browser.exe 18.6.1.770 YANDEX LLC Yandex 131795770645382953 0x58720000 59748352 C:\Users\User\AppData\Local\Yandex\YandexBrowser\Application\18.6.1.770\browser_child.dll 18.6.1.770 YANDEX LLC Yandex 131795770645382953 0x5c020000 335872 C:\Windows\System32\wow64.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation Win32 Emulation on NT64 131795770645382953 0x5c080000 487424 C:\Windows\System32\wow64win.dll 10.0.14393.1884 (rs1_release.171101-1233) Microsoft Corporation Wow64 Console and Win32 API Logging 131795770645382953 0x5c100000 40960 C:\Windows\System32\wow64cpu.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation AMD64 Wow64 CPU 131795770645382953 0x6e8b0000 1859584 C:\Windows\SysWOW64\mfmp4srcsnk.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL источника и приемника MPEG4 Media Foundation 131795770645382953 0x6ef30000 647168 C:\Windows\SysWOW64\evr.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека DLL средства отображения видео 131795770645382953 0x6efd0000 458752 C:\Windows\SysWOW64\msauddecmft.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Media Foundation Audio Decoders 131795770645382953 0x6f790000 1085440 C:\Windows\SysWOW64\mfperfhelper.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation MFPerf DLL 131795770645382953 0x6f8a0000 2220032 C:\Windows\SysWOW64\msmpeg2vdec.dll 10.0.14393.953 (rs1_release_inmarket.170303-1614) Microsoft Corporation Microsoft DTV-DVD Video Decoder 131795770645382953 0x6fac0000 1130496 C:\Windows\SysWOW64\mfplat.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Media Foundation Platform DLL 131795770645382953 0x6ff60000 172032 C:\Windows\SysWOW64\RTWorkQ.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL для WorkQueue реального времени 131795770645382953 0x70030000 593920 C:\Users\User\AppData\Local\Yandex\YandexBrowser\Application\18.6.1.770\browser_elf.dll 18.6.1.770 YANDEX LLC Yandex 131795770645382953 0x700d0000 434176 C:\Windows\SysWOW64\WINSPOOL.DRV 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Драйвер диспетчера очереди Windows 131795770645382953 0x70340000 536576 C:\Windows\SysWOW64\dxgi.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation DirectX Graphics Infrastructure 131795770645382953 0x703d0000 2056192 C:\Windows\SysWOW64\DWrite.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Службы Microsoft DirectX Typography 131795770645382953 0x707d0000 86016 C:\Windows\SysWOW64\SAMCLI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Security Accounts Manager Client DLL 131795770645382953 0x70a20000 94208 C:\Windows\SysWOW64\USP10.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Uniscribe Unicode script processor 131795770645382953 0x70ca0000 45056 C:\Windows\SysWOW64\NETUTILS.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API Helpers DLL 131795770645382953 0x70fd0000 1331200 C:\Windows\SysWOW64\dbghelp.dll 10.0.14321.1024 (rs1_release.160715-1616) Microsoft Windows Image Helper 131795770645382953 0x71140000 77824 C:\Windows\SysWOW64\NETAPI32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API DLL 131795770645382953 0x725e0000 2273280 C:\Windows\SysWOW64\iertutil.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служебная программа времени выполнения для Internet Explorer 131795770645382953 0x728e0000 1372160 C:\Windows\SysWOW64\PROPSYS.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Система страниц свойств (Майкрософт) 131795770645382953 0x72af0000 655360 C:\Windows\SysWOW64\WINHTTP.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Службы HTTP Windows 131795770645382953 0x72cc0000 1658880 C:\Windows\SysWOW64\urlmon.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширения OLE32 для Win32 131795770645382953 0x73ac0000 81920 C:\Windows\SysWOW64\dhcpcsvc.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служба DHCP-клиента 131795770645382953 0x73ae0000 40960 C:\Windows\SysWOW64\Secur32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Security Support Provider Interface 131795770645382953 0x73f00000 192512 C:\Windows\SysWOW64\IPHLPAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API вспомогательного приложения IP 131795770645382953 0x74190000 110592 C:\Windows\SysWOW64\bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795770645382953 0x741b0000 77824 C:\Windows\SysWOW64\cryptsp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Cryptographic Service Provider API 131795770645382953 0x741f0000 143360 C:\Windows\SysWOW64\WINMMBASE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base Multimedia Extension API DLL 131795770645382953 0x74230000 147456 C:\Windows\SysWOW64\WINMM.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation MCI API DLL 131795770645382953 0x744d0000 2138112 C:\Windows\WinSxS\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.14393.953_none_89c2555adb023171\COMCTL32.dll 6.10 (rs1_release_inmarket.170303-1614) Microsoft Corporation Библиотека элементов управления взаимодействия с пользователем 131795770645382953 0x746e0000 32768 C:\Windows\SysWOW64\VERSION.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Version Checking and File Installation Libraries 131795770645382953 0x746f0000 106496 C:\Windows\SysWOW64\USERENV.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Userenv 131795770645382953 0x747d0000 40960 C:\Windows\SysWOW64\CRYPTBASE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base cryptographic API DLL 131795770645382953 0x747e0000 126976 C:\Windows\SysWOW64\SspiCli.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Security Support Provider Interface 131795770645382953 0x74800000 151552 C:\Windows\SysWOW64\IMM32.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Multi-User Windows IMM32 API Client DLL 131795770645382953 0x74910000 2170880 C:\Windows\SysWOW64\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795770645382953 0x74b30000 53248 C:\Windows\SysWOW64\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795770645382953 0x74b60000 790528 C:\Windows\SysWOW64\RPCRT4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795770645382953 0x74c30000 1417216 C:\Windows\SysWOW64\gdi32full.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation GDI Client DLL 131795770645382953 0x74d90000 24576 C:\Windows\SysWOW64\PSAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Process Status Helper 131795770645382953 0x74da0000 778240 C:\Windows\SysWOW64\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795770645382953 0x74e60000 557056 C:\Windows\SysWOW64\shcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795770645382953 0x74f80000 278528 C:\Windows\SysWOW64\WINTRUST.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation Microsoft Trust Verification APIs 131795770645382953 0x74fd0000 405504 C:\Windows\SysWOW64\WS2_32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation 32-разрядная библиотека Windows Socket 2.0 131795770645382953 0x75040000 282624 C:\Windows\SysWOW64\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795770645382953 0x751d0000 57344 C:\Windows\SysWOW64\MSASN1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ASN.1 Runtime APIs 131795770645382953 0x751e0000 1708032 C:\Windows\SysWOW64\KERNELBASE.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645382953 0x75390000 266240 C:\Windows\SysWOW64\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795770645382953 0x753e0000 1560576 C:\Windows\SysWOW64\CRYPT32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API32 криптографии 131795770645382953 0x75560000 487424 C:\Windows\SysWOW64\ADVAPI32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795770645382953 0x756c0000 5693440 C:\Windows\SysWOW64\windows.storage.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API хранения Microsoft WinRT 131795770645382953 0x75c90000 286720 C:\Windows\SysWOW64\shlwapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека небольших программ оболочки 131795770645382953 0x75ce0000 20811776 C:\Windows\SysWOW64\SHELL32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Общая библиотека оболочки Windows 131795770645382953 0x774d0000 86016 C:\Windows\SysWOW64\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795770645382953 0x774f0000 61440 C:\Windows\SysWOW64\profapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Profile Basic API 131795770645382953 0x77560000 1437696 C:\Windows\SysWOW64\USER32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795770645382953 0x776c0000 368640 C:\Windows\SysWOW64\bcryptPrimitives.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation Windows Cryptographic Primitives Library 131795770645382953 0x77780000 503808 C:\Windows\SysWOW64\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645382953 0x77800000 606208 C:\Windows\SysWOW64\OLEAUT32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795770645382953 0x77ac0000 966656 C:\Windows\SysWOW64\ole32.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft OLE для Windows 131795770645382953 0x77bb0000 176128 C:\Windows\SysWOW64\GDI32.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation GDI Client DLL 131795770645382953 0x77be0000 937984 C:\Windows\SysWOW64\COMDLG32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека общих диалоговых окон 131795770645382953 0x77cd0000 221184 C:\Windows\SysWOW64\cfgmgr32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Configuration Manager DLL 131795770645382953 0x77d10000 28672 C:\Windows\SysWOW64\NSI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation NSI User-mode interface DLL 131795770645382953 0x77d20000 1585152 C:\Windows\SysWOW64\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 131795770645382953 0x7ffad0270000 1908736 C:\Windows\SYSTEM32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 61 4992 7744 57 00000000:0031f1da 131769081244357280 0 0 0 Обязательная метка\Ненадежный обязательный уровень WIN-0UOTFKKVN1S\User browser.exe C:\Users\User\AppData\Local\Yandex\YandexBrowser\Application\browser.exe "C:\Users\User\AppData\Local\Yandex\YandexBrowser\Application\browser.exe" --type=renderer --enable-in-process-wmf-demuxer --field-trial-handle=1292,9555382311565764851,7120838982649204725,131072 --enable-ignition --service-pipe-token=7E8A8199C364F4B0114F2A163B757250 --lang=ru --user-id=32B2E0A1-3039-4C67-86BE-75A88EF21B54 --brand-id=yandex --partner-id=7924 --help-url=https://api.browser.yandex.ru/redirect/help/ --user-agent-info --translate-security-origin=https://translate.yandex.net --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --enable-instaserp --device-scale-factor=1 --num-raster-threads=1 --enable-compositor-image-animations --service-request-channel-token=7E8A8199C364F4B0114F2A163B757250 --renderer-client-id=10 --mojo-platform-channel-handle=3904 /prefetch:1 YANDEX LLC 18.6.1.770 Yandex 131795770645383069 0x10e0000 2519040 C:\Users\User\AppData\Local\Yandex\YandexBrowser\Application\browser.exe 18.6.1.770 YANDEX LLC Yandex 131795770645383069 0x58720000 59748352 C:\Users\User\AppData\Local\Yandex\YandexBrowser\Application\18.6.1.770\browser_child.dll 18.6.1.770 YANDEX LLC Yandex 131795770645383069 0x5c020000 335872 C:\Windows\System32\wow64.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation Win32 Emulation on NT64 131795770645383069 0x5c080000 487424 C:\Windows\System32\wow64win.dll 10.0.14393.1884 (rs1_release.171101-1233) Microsoft Corporation Wow64 Console and Win32 API Logging 131795770645383069 0x5c100000 40960 C:\Windows\System32\wow64cpu.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation AMD64 Wow64 CPU 131795770645383069 0x6e8b0000 1859584 C:\Windows\SysWOW64\mfmp4srcsnk.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL источника и приемника MPEG4 Media Foundation 131795770645383069 0x6ef30000 647168 C:\Windows\SysWOW64\evr.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека DLL средства отображения видео 131795770645383069 0x6efd0000 458752 C:\Windows\SysWOW64\msauddecmft.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Media Foundation Audio Decoders 131795770645383069 0x6f790000 1085440 C:\Windows\SysWOW64\mfperfhelper.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation MFPerf DLL 131795770645383069 0x6f8a0000 2220032 C:\Windows\SysWOW64\msmpeg2vdec.dll 10.0.14393.953 (rs1_release_inmarket.170303-1614) Microsoft Corporation Microsoft DTV-DVD Video Decoder 131795770645383069 0x6fac0000 1130496 C:\Windows\SysWOW64\mfplat.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Media Foundation Platform DLL 131795770645383069 0x6ff60000 172032 C:\Windows\SysWOW64\RTWorkQ.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL для WorkQueue реального времени 131795770645383069 0x70030000 593920 C:\Users\User\AppData\Local\Yandex\YandexBrowser\Application\18.6.1.770\browser_elf.dll 18.6.1.770 YANDEX LLC Yandex 131795770645383069 0x700d0000 434176 C:\Windows\SysWOW64\WINSPOOL.DRV 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Драйвер диспетчера очереди Windows 131795770645383069 0x70340000 536576 C:\Windows\SysWOW64\dxgi.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation DirectX Graphics Infrastructure 131795770645383069 0x703d0000 2056192 C:\Windows\SysWOW64\DWrite.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Службы Microsoft DirectX Typography 131795770645383069 0x707d0000 86016 C:\Windows\SysWOW64\SAMCLI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Security Accounts Manager Client DLL 131795770645383069 0x70a20000 94208 C:\Windows\SysWOW64\USP10.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Uniscribe Unicode script processor 131795770645383069 0x70ca0000 45056 C:\Windows\SysWOW64\NETUTILS.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API Helpers DLL 131795770645383069 0x70fd0000 1331200 C:\Windows\SysWOW64\dbghelp.dll 10.0.14321.1024 (rs1_release.160715-1616) Microsoft Windows Image Helper 131795770645383069 0x71140000 77824 C:\Windows\SysWOW64\NETAPI32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API DLL 131795770645383069 0x725e0000 2273280 C:\Windows\SysWOW64\iertutil.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служебная программа времени выполнения для Internet Explorer 131795770645383069 0x728e0000 1372160 C:\Windows\SysWOW64\PROPSYS.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Система страниц свойств (Майкрософт) 131795770645383069 0x72af0000 655360 C:\Windows\SysWOW64\WINHTTP.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Службы HTTP Windows 131795770645383069 0x72cc0000 1658880 C:\Windows\SysWOW64\urlmon.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширения OLE32 для Win32 131795770645383069 0x73ac0000 81920 C:\Windows\SysWOW64\dhcpcsvc.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служба DHCP-клиента 131795770645383069 0x73ae0000 40960 C:\Windows\SysWOW64\Secur32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Security Support Provider Interface 131795770645383069 0x73f00000 192512 C:\Windows\SysWOW64\IPHLPAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API вспомогательного приложения IP 131795770645383069 0x74190000 110592 C:\Windows\SysWOW64\bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795770645383069 0x741b0000 77824 C:\Windows\SysWOW64\cryptsp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Cryptographic Service Provider API 131795770645383069 0x741f0000 143360 C:\Windows\SysWOW64\WINMMBASE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base Multimedia Extension API DLL 131795770645383069 0x74230000 147456 C:\Windows\SysWOW64\WINMM.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation MCI API DLL 131795770645383069 0x744d0000 2138112 C:\Windows\WinSxS\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.14393.953_none_89c2555adb023171\COMCTL32.dll 6.10 (rs1_release_inmarket.170303-1614) Microsoft Corporation Библиотека элементов управления взаимодействия с пользователем 131795770645383069 0x746e0000 32768 C:\Windows\SysWOW64\VERSION.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Version Checking and File Installation Libraries 131795770645383069 0x746f0000 106496 C:\Windows\SysWOW64\USERENV.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Userenv 131795770645383069 0x747d0000 40960 C:\Windows\SysWOW64\CRYPTBASE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base cryptographic API DLL 131795770645383069 0x747e0000 126976 C:\Windows\SysWOW64\SspiCli.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Security Support Provider Interface 131795770645383069 0x74800000 151552 C:\Windows\SysWOW64\IMM32.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Multi-User Windows IMM32 API Client DLL 131795770645383069 0x74910000 2170880 C:\Windows\SysWOW64\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795770645383069 0x74b30000 53248 C:\Windows\SysWOW64\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795770645383069 0x74b60000 790528 C:\Windows\SysWOW64\RPCRT4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795770645383069 0x74c30000 1417216 C:\Windows\SysWOW64\gdi32full.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation GDI Client DLL 131795770645383069 0x74d90000 24576 C:\Windows\SysWOW64\PSAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Process Status Helper 131795770645383069 0x74da0000 778240 C:\Windows\SysWOW64\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795770645383069 0x74e60000 557056 C:\Windows\SysWOW64\shcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795770645383069 0x74f80000 278528 C:\Windows\SysWOW64\WINTRUST.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation Microsoft Trust Verification APIs 131795770645383069 0x74fd0000 405504 C:\Windows\SysWOW64\WS2_32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation 32-разрядная библиотека Windows Socket 2.0 131795770645383069 0x75040000 282624 C:\Windows\SysWOW64\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795770645383069 0x751d0000 57344 C:\Windows\SysWOW64\MSASN1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ASN.1 Runtime APIs 131795770645383069 0x751e0000 1708032 C:\Windows\SysWOW64\KERNELBASE.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645383069 0x75390000 266240 C:\Windows\SysWOW64\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795770645383069 0x753e0000 1560576 C:\Windows\SysWOW64\CRYPT32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API32 криптографии 131795770645383069 0x75560000 487424 C:\Windows\SysWOW64\ADVAPI32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795770645383069 0x756c0000 5693440 C:\Windows\SysWOW64\windows.storage.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API хранения Microsoft WinRT 131795770645383069 0x75c90000 286720 C:\Windows\SysWOW64\shlwapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека небольших программ оболочки 131795770645383069 0x75ce0000 20811776 C:\Windows\SysWOW64\SHELL32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Общая библиотека оболочки Windows 131795770645383069 0x774d0000 86016 C:\Windows\SysWOW64\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795770645383069 0x774f0000 61440 C:\Windows\SysWOW64\profapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Profile Basic API 131795770645383069 0x77560000 1437696 C:\Windows\SysWOW64\USER32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795770645383069 0x776c0000 368640 C:\Windows\SysWOW64\bcryptPrimitives.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation Windows Cryptographic Primitives Library 131795770645383069 0x77780000 503808 C:\Windows\SysWOW64\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645383069 0x77800000 606208 C:\Windows\SysWOW64\OLEAUT32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795770645383069 0x77ac0000 966656 C:\Windows\SysWOW64\ole32.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft OLE для Windows 131795770645383069 0x77bb0000 176128 C:\Windows\SysWOW64\GDI32.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation GDI Client DLL 131795770645383069 0x77be0000 937984 C:\Windows\SysWOW64\COMDLG32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека общих диалоговых окон 131795770645383069 0x77cd0000 221184 C:\Windows\SysWOW64\cfgmgr32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Configuration Manager DLL 131795770645383069 0x77d10000 28672 C:\Windows\SysWOW64\NSI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation NSI User-mode interface DLL 131795770645383069 0x77d20000 1585152 C:\Windows\SysWOW64\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 131795770645383069 0x7ffad0270000 1908736 C:\Windows\SYSTEM32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 63 9504 664 6 00000000:0031f1da 131794956266598229 0 0 1 Обязательная метка\Средний обязательный уровень WIN-0UOTFKKVN1S\User InstallAgent.exe C:\Windows\System32\InstallAgent.exe C:\Windows\System32\InstallAgent.exe -Embedding Microsoft Corporation 10.0.14393.0 (rs1_release.160715-1616) InstallAgent 131795770645383260 0x7ff63d380000 229376 C:\Windows\System32\InstallAgent.exe 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation InstallAgent 131795770645383260 0x7ffabea60000 180224 C:\Windows\System32\VEStoreEventHandlers.dll 10.0.14393.479 (rs1_release.161110-2025) Microsoft Corporation TDL Store Event Handlers 131795770645383260 0x7ffac0bf0000 3559424 C:\Windows\System32\ActXPrxy.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation ActiveX Interface Marshaling Library 131795770645383260 0x7ffac4000000 274432 C:\Windows\SYSTEM32\policymanager.dll 10.0.14393.2035 (rs1_release_inmarket.180110-1910) Microsoft Corporation Policy Manager DLL 131795770645383260 0x7ffac4450000 86016 C:\Windows\SYSTEM32\usermgrcli.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation UserMgr API DLL 131795770645383260 0x7ffac4ad0000 61440 C:\Windows\System32\EAMProgressHandler.dll 10.0.14393.479 (rs1_release.161110-2025) Microsoft Corporation EAMProgressHandler 131795770645383260 0x7ffac4b90000 774144 C:\Windows\System32\StoreAgent.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation StoreAgent 131795770645383260 0x7ffac76a0000 159744 C:\Windows\System32\sppc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Software Licensing Client DLL 131795770645383260 0x7ffac7990000 155648 C:\Windows\System32\SLC.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Software Licensing Client DLL 131795770645383260 0x7ffacb140000 593920 C:\Windows\System32\msvcp110_win.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Microsoft® STL110 C++ Runtime Library 131795770645383260 0x7ffacc150000 94208 C:\Windows\System32\CRYPTSP.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Cryptographic Service Provider API 131795770645383260 0x7ffacc520000 622592 C:\Windows\SYSTEM32\sxs.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Fusion 2.5 131795770645383260 0x7ffacc620000 176128 C:\Windows\System32\Bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795770645383260 0x7ffacc6e0000 61440 C:\Windows\System32\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795770645383260 0x7ffacc6f0000 311296 C:\Windows\System32\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795770645383260 0x7ffacc740000 81920 C:\Windows\System32\profapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Profile Basic API 131795770645383260 0x7ffacc8f0000 1003520 C:\Windows\System32\ucrtbase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645383260 0x7ffacc9f0000 434176 C:\Windows\System32\bcryptPrimitives.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Cryptographic Primitives Library 131795770645383260 0x7ffacca60000 122880 C:\Windows\System32\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795770645383260 0x7ffaccae0000 692224 C:\Windows\System32\shcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795770645383260 0x7ffaccb90000 7180288 C:\Windows\System32\windows.storage.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API хранения Microsoft WinRT 131795770645383260 0x7ffacd270000 2215936 C:\Windows\System32\KERNELBASE.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645383260 0x7ffacd710000 638976 C:\Windows\System32\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645383260 0x7ffaced20000 782336 C:\Windows\System32\OLEAUT32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795770645383260 0x7ffacee50000 1183744 C:\Windows\System32\RPCRT4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795770645383260 0x7ffacef90000 647168 C:\Windows\System32\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795770645383260 0x7ffacf030000 651264 C:\Windows\System32\clbcatq.dll 2001.12.10941.16384 (rs1_release.160715-1616) Microsoft Corporation COM+ Configuration Catalog 131795770645383260 0x7ffacf0d0000 704512 C:\Windows\System32\KERNEL32.DLL 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645383260 0x7ffacf770000 212992 C:\Windows\System32\GDI32.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation GDI Client DLL 131795770645383260 0x7ffacf890000 188416 C:\Windows\System32\IMM32.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Multi-User Windows IMM32 API Client DLL 131795770645383260 0x7ffacf8c0000 1462272 C:\Windows\System32\user32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795770645383260 0x7ffacfb30000 2916352 C:\Windows\System32\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795770645383260 0x7ffacfe20000 663552 C:\Windows\System32\advapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795770645383260 0x7ffad01b0000 335872 C:\Windows\System32\shlwapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека небольших программ оболочки 131795770645383260 0x7ffad0210000 364544 C:\Windows\System32\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795770645383260 0x7ffad0270000 1908736 C:\Windows\SYSTEM32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 64 8768 664 6 00000000:0031f1da 131794956321853179 0 0 1 Обязательная метка\Средний обязательный уровень WIN-0UOTFKKVN1S\User InstallAgentUserBroker.exe C:\Windows\System32\InstallAgentUserBroker.exe C:\Windows\System32\InstallAgentUserBroker.exe -Embedding Microsoft Corporation 10.0.14393.2156 (rs1_release_inmarket.180321-1733) InstallAgentUserBroker 131795770645383355 0x22530450000 12288 C:\Windows\SYSTEM32\sfc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows File Protection 131795770645383355 0x7ff74f890000 278528 C:\Windows\System32\InstallAgentUserBroker.exe 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation InstallAgentUserBroker 131795770645383355 0x7ffabafc0000 700416 C:\Windows\SYSTEM32\wer.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека сообщений об ошибках Windows 131795770645383355 0x7ffabd8e0000 704512 C:\Windows\WinSxS\amd64_microsoft.windows.common-controls_6595b64144ccf1df_5.82.14393.447_none_0d5aa7fbb6d35646\Comctl32.dll 6.10 (rs1_release_inmarket.170303-1614) Microsoft Corporation Библиотека элементов управления взаимодействия с пользователем 131795770645383355 0x7ffabef80000 69632 C:\Windows\SYSTEM32\sfc_os.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows File Protection 131795770645383355 0x7ffabefd0000 258048 C:\Windows\System32\AEPIC.dll 10.0.17060.1029 (WinBuild.160101.0800) Microsoft Corporation Application Experience Program Cache 131795770645383355 0x7ffabf1d0000 192512 C:\Windows\System32\cryptnet.dll 10.0.14393.2035 (rs1_release_inmarket.180110-1910) Microsoft Corporation Crypto Network Related API 131795770645383355 0x7ffabf5d0000 2924544 C:\Windows\System32\WININET.dll 11.00.14393.447 (rs1_release_inmarket.161102-0100) Microsoft Corporation Расширения Интернета для Win32 131795770645383355 0x7ffabff60000 135168 C:\Windows\system32\ncryptsslp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft SChannel Provider 131795770645383355 0x7ffac0ad0000 86016 C:\Windows\SYSTEM32\mskeyprotect.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик защиты ключей (Майкрософт) 131795770645383355 0x7ffac34e0000 1843200 C:\Windows\System32\urlmon.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширения OLE32 для Win32 131795770645383355 0x7ffac3cb0000 2772992 C:\Windows\System32\iertutil.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служебная программа времени выполнения для Internet Explorer 131795770645383355 0x7ffac4000000 274432 C:\Windows\SYSTEM32\policymanager.dll 10.0.14393.2035 (rs1_release_inmarket.180110-1910) Microsoft Corporation Policy Manager DLL 131795770645383355 0x7ffac4b90000 774144 C:\Windows\System32\StoreAgent.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation StoreAgent 131795770645383355 0x7ffac6610000 40960 C:\Windows\System32\rasadhlp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Remote Access AutoDial Helper 131795770645383355 0x7ffac66a0000 86016 C:\Windows\SYSTEM32\ondemandconnroutehelper.dll 10.0.14393.351 (rs1_release_inmarket.161014-1755) Microsoft Corporation On Demand Connctiond Route Helper 131795770645383355 0x7ffac69c0000 839680 C:\Windows\SYSTEM32\winhttp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Службы HTTP Windows 131795770645383355 0x7ffac76a0000 159744 C:\Windows\System32\sppc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Software Licensing Client DLL 131795770645383355 0x7ffac7990000 155648 C:\Windows\System32\SLC.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Software Licensing Client DLL 131795770645383355 0x7ffac83d0000 106496 C:\Windows\SYSTEM32\dhcpcsvc.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служба DHCP-клиента 131795770645383355 0x7ffac83f0000 90112 C:\Windows\SYSTEM32\dhcpcsvc6.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиент DHCPv6 131795770645383355 0x7ffac8420000 434176 C:\Windows\System32\fwpuclnt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API пользовательского режима FWP/IPsec 131795770645383355 0x7ffac8810000 45056 C:\Windows\SYSTEM32\WINNSI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Network Store Information RPC interface 131795770645383355 0x7ffacb140000 593920 C:\Windows\System32\msvcp110_win.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Microsoft® STL110 C++ Runtime Library 131795770645383355 0x7ffacb420000 204800 C:\Windows\SYSTEM32\ntmarta.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик Windows NT MARTA 131795770645383355 0x7ffacbaf0000 495616 C:\Windows\system32\schannel.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик безопасности TLS/SSL 131795770645383355 0x7ffacbbb0000 208896 C:\Windows\system32\rsaenh.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Enhanced Cryptographic Provider 131795770645383355 0x7ffacbbf0000 40960 C:\Windows\System32\DPAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Data Protection API 131795770645383355 0x7ffacbd30000 229376 C:\Windows\SYSTEM32\IPHLPAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API вспомогательного приложения IP 131795770645383355 0x7ffacbd70000 659456 C:\Windows\System32\DNSAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Динамическая библиотека API DNS-клиента 131795770645383355 0x7ffacbfb0000 376832 C:\Windows\system32\mswsock.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширение поставщика службы API Microsoft Windows Sockets 2.0 131795770645383355 0x7ffacc150000 94208 C:\Windows\System32\CRYPTSP.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Cryptographic Service Provider API 131795770645383355 0x7ffacc170000 45056 C:\Windows\System32\CRYPTBASE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base cryptographic API DLL 131795770645383355 0x7ffacc1f0000 241664 C:\Windows\SYSTEM32\NTASN1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft ASN.1 API 131795770645383355 0x7ffacc230000 155648 C:\Windows\SYSTEM32\ncrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Маршрутизатор Windows NCrypt 131795770645383355 0x7ffacc350000 180224 C:\Windows\System32\SspiCli.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Security Support Provider Interface 131795770645383355 0x7ffacc520000 622592 C:\Windows\SYSTEM32\sxs.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Fusion 2.5 131795770645383355 0x7ffacc620000 176128 C:\Windows\System32\bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795770645383355 0x7ffacc6e0000 61440 C:\Windows\System32\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795770645383355 0x7ffacc6f0000 311296 C:\Windows\System32\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795770645383355 0x7ffacc740000 81920 C:\Windows\System32\profapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Profile Basic API 131795770645383355 0x7ffacc760000 65536 C:\Windows\System32\MSASN1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ASN.1 Runtime APIs 131795770645383355 0x7ffacc8f0000 1003520 C:\Windows\System32\ucrtbase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645383355 0x7ffacc9f0000 434176 C:\Windows\System32\bcryptPrimitives.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Cryptographic Primitives Library 131795770645383355 0x7ffacca60000 122880 C:\Windows\System32\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795770645383355 0x7ffacca80000 348160 C:\Windows\System32\WINTRUST.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation Microsoft Trust Verification APIs 131795770645383355 0x7ffaccae0000 692224 C:\Windows\System32\shcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795770645383355 0x7ffaccb90000 7180288 C:\Windows\System32\windows.storage.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API хранения Microsoft WinRT 131795770645383355 0x7ffacd270000 2215936 C:\Windows\System32\KERNELBASE.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645383355 0x7ffacd490000 1871872 C:\Windows\System32\CRYPT32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API32 криптографии 131795770645383355 0x7ffacd710000 638976 C:\Windows\System32\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645383355 0x7ffacd7b0000 270336 C:\Windows\System32\cfgmgr32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Configuration Manager DLL 131795770645383355 0x7ffacd810000 22056960 C:\Windows\System32\SHELL32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Общая библиотека оболочки Windows 131795770645383355 0x7ffaced20000 782336 C:\Windows\System32\OLEAUT32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795770645383355 0x7ffacee50000 1183744 C:\Windows\System32\RPCRT4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795770645383355 0x7ffacef80000 32768 C:\Windows\System32\NSI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation NSI User-mode interface DLL 131795770645383355 0x7ffacef90000 647168 C:\Windows\System32\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795770645383355 0x7ffacf030000 651264 C:\Windows\System32\clbcatq.dll 2001.12.10941.16384 (rs1_release.160715-1616) Microsoft Corporation COM+ Configuration Catalog 131795770645383355 0x7ffacf0d0000 704512 C:\Windows\System32\KERNEL32.DLL 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645383355 0x7ffacf770000 212992 C:\Windows\System32\GDI32.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation GDI Client DLL 131795770645383355 0x7ffacf820000 434176 C:\Windows\System32\WS2_32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation 32-разрядная библиотека Windows Socket 2.0 131795770645383355 0x7ffacf890000 188416 C:\Windows\System32\IMM32.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Multi-User Windows IMM32 API Client DLL 131795770645383355 0x7ffacf8c0000 1462272 C:\Windows\System32\user32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795770645383355 0x7ffacfb30000 2916352 C:\Windows\System32\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795770645383355 0x7ffacfe20000 663552 C:\Windows\System32\advapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795770645383355 0x7ffad0070000 1277952 C:\Windows\System32\OLE32.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft OLE для Windows 131795770645383355 0x7ffad01b0000 335872 C:\Windows\System32\SHLWAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека небольших программ оболочки 131795770645383355 0x7ffad0210000 364544 C:\Windows\System32\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795770645383355 0x7ffad0270000 1908736 C:\Windows\SYSTEM32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 65 9636 664 6 00000000:0031f1da 131794956424585250 0 0 1 Обязательная метка\Средний обязательный уровень WIN-0UOTFKKVN1S\User SystemSettingsBroker.exe C:\Windows\System32\SystemSettingsBroker.exe C:\Windows\System32\SystemSettingsBroker.exe -Embedding Microsoft Corporation 10.0.14393.0 (rs1_release.160715-1616) System Settings Broker 131795770645383490 0x7ff6015f0000 196608 C:\Windows\System32\SystemSettingsBroker.exe 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation System Settings Broker 131795770645383490 0x7ffac1c40000 94208 C:\Windows\System32\SystemSettings.DataModel.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SystemSettings.Datamodel private API 131795770645383490 0x7ffacc6e0000 61440 C:\Windows\System32\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795770645383490 0x7ffacc8f0000 1003520 C:\Windows\System32\ucrtbase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645383490 0x7ffacc9f0000 434176 C:\Windows\System32\bcryptPrimitives.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Cryptographic Primitives Library 131795770645383490 0x7ffacd270000 2215936 C:\Windows\System32\KERNELBASE.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645383490 0x7ffacee50000 1183744 C:\Windows\System32\RPCRT4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795770645383490 0x7ffacef90000 647168 C:\Windows\System32\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795770645383490 0x7ffacf030000 651264 C:\Windows\System32\clbcatq.dll 2001.12.10941.16384 (rs1_release.160715-1616) Microsoft Corporation COM+ Configuration Catalog 131795770645383490 0x7ffacf0d0000 704512 C:\Windows\System32\KERNEL32.DLL 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645383490 0x7ffacfb30000 2916352 C:\Windows\System32\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795770645383490 0x7ffad0210000 364544 C:\Windows\System32\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795770645383490 0x7ffad0270000 1908736 C:\Windows\SYSTEM32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 66 10592 664 6 00000000:0031f1da 131794956519902643 0 0 1 Обязательная метка\Средний обязательный уровень WIN-0UOTFKKVN1S\User SystemSettings.exe C:\Windows\ImmersiveControlPanel\SystemSettings.exe "C:\Windows\ImmersiveControlPanel\SystemSettings.exe" -ServerName:microsoft.windows.immersivecontrolpanel Microsoft Corporation 10.0.14393.82 (rs1_release.160805-1735) Параметры 131795770645383654 0x18099ef0000 12288 C:\Windows\SYSTEM32\WMI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation WMI DC and DP functionality 131795770645383654 0x7ff7937a0000 98304 C:\Windows\ImmersiveControlPanel\SystemSettings.exe 10.0.14393.82 (rs1_release.160805-1735) Microsoft Corporation Параметры 131795770645383654 0x7ffaabce0000 2535424 C:\Windows\System32\NetworkMobileSettings.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation System settings network mobile handlers group 131795770645383654 0x7ffaac0c0000 1396736 C:\Windows\System32\Windows.UI.Xaml.Phone.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows UI XAML Phone API 131795770645383654 0x7ffaac220000 4952064 C:\Windows\ImmersiveControlPanel\SystemSettings.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation System Settings Application 131795770645383654 0x7ffaadd90000 258048 C:\Windows\System32\NetworkDesktopSettings.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Группа обработчиков системных параметров сетевого рабочего стола 131795770645383654 0x7ffaaf920000 905216 C:\Windows\ImmersiveControlPanel\SystemSettingsViewModel.Desktop.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation System Settings View Model Desktop 131795770645383654 0x7ffab0970000 262144 C:\Windows\system32\credprovhost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Хост инфраструктуры поставщика учетных данных 131795770645383654 0x7ffab0a70000 454656 C:\Windows\System32\fhcfg.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Диспетчер конфигураций истории файлов 131795770645383654 0x7ffab1d80000 262144 C:\Windows\SYSTEM32\eappcfg.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Eap Peer Config 131795770645383654 0x7ffab5520000 3231744 C:\Windows\SYSTEM32\msftedit.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Элемент управления "Поле ввода форматированного текста", версия 8.5 131795770645383654 0x7ffab5b40000 2527232 C:\Windows\SYSTEM32\dwrite.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Службы Microsoft DirectX Typography 131795770645383654 0x7ffab6710000 17231872 C:\Windows\System32\Windows.UI.Xaml.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows.UI.Xaml dll 131795770645383654 0x7ffab7d80000 753664 C:\Windows\SYSTEM32\RASAPI32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API удаленного доступа 131795770645383654 0x7ffab8190000 9191424 C:\Windows\system32\twinui.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation TWINUI 131795770645383654 0x7ffab91d0000 69632 C:\Windows\ImmersiveControlPanel\Telemetry.Desktop.dll 10.0.14393.953 (rs1_release_inmarket.170303-1614) Microsoft Corporation System Settings Telemetry Desktop 131795770645383654 0x7ffab9a40000 299008 C:\Windows\System32\RasMediaManager.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Ras Media Manager DLL 131795770645383654 0x7ffaba950000 188416 C:\Windows\System32\EthernetMediaManager.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Ethernet Media Manager DLL 131795770645383654 0x7ffabaa50000 339968 C:\Windows\System32\NetworkUXBroker.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation NetworkUXBroker DLL 131795770645383654 0x7ffabae40000 110592 C:\Windows\SYSTEM32\capauthz.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API авторизации возможностей 131795770645383654 0x7ffabaf70000 270336 C:\Windows\SYSTEM32\edputil.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служебная программа EDP 131795770645383654 0x7ffabb3c0000 450560 C:\Windows\SYSTEM32\TextInputFramework.dll 10.0.14393.2189 (rs1_release.180329-1711) Microsoft Corporation "TextInputFramework.DYNLINK" 131795770645383654 0x7ffabb430000 65536 C:\Windows\SYSTEM32\pcacli.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Program Compatibility Assistant Client Module 131795770645383654 0x7ffabb490000 512000 C:\Windows\system32\twinapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation twinapi 131795770645383654 0x7ffabcc60000 1122304 C:\Windows\System32\MiracastReceiver.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API приемника Miracast 131795770645383654 0x7ffabcf30000 110592 C:\Windows\SYSTEM32\MPR.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека маршрутизации для нескольких служб доступа 131795770645383654 0x7ffabd4a0000 1613824 C:\Windows\System32\Windows.Globalization.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Globalization 131795770645383654 0x7ffabe6e0000 561152 C:\Windows\system32\directmanipulation.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Direct Manipulation Component 131795770645383654 0x7ffabe9c0000 188416 C:\Windows\SYSTEM32\globinputhost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Globalization Extension API for Input 131795770645383654 0x7ffabeb20000 385024 C:\Windows\System32\Windows.ApplicationModel.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows ApplicationModel API Server 131795770645383654 0x7ffabfd80000 86016 C:\Windows\System32\threadpoolwinrt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows WinRT Threadpool 131795770645383654 0x7ffabff10000 155648 C:\Windows\SYSTEM32\SRVCLI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Server Service Client DLL 131795770645383654 0x7ffac00c0000 282624 C:\Windows\SYSTEM32\windows.ui.core.textinput.dll 10.0.14393.2189 (rs1_release.180329-1711) Microsoft Corporation Windows.UI.Core.TextInput dll 131795770645383654 0x7ffac01e0000 397312 C:\Windows\SYSTEM32\wincorlib.DLL 10.0.14393.576 (rs1_release_inmarket.161208-2252) Microsoft Corporation Microsoft Windows ® WinRT core library 131795770645383654 0x7ffac0470000 1478656 C:\Windows\SYSTEM32\MFPlat.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Media Foundation Platform DLL 131795770645383654 0x7ffac0bf0000 3559424 C:\Windows\System32\ActXPrxy.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation ActiveX Interface Marshaling Library 131795770645383654 0x7ffac1470000 704512 C:\Windows\System32\ieproxy.dll 11.00.14393.2007 (rs1_release.171231-1800) Microsoft Corporation IE ActiveX Interface Marshaling Library 131795770645383654 0x7ffac1e50000 188416 C:\Windows\SYSTEM32\RTWorkQ.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL для WorkQueue реального времени 131795770645383654 0x7ffac20d0000 110592 C:\Windows\System32\rmclient.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Resource Manager Client 131795770645383654 0x7ffac23c0000 331776 C:\Windows\System32\OneCoreCommonProxyStub.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation OneCore Common Proxy Stub 131795770645383654 0x7ffac2700000 98304 C:\Windows\SYSTEM32\NETAPI32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API DLL 131795770645383654 0x7ffac2990000 385024 C:\Windows\SYSTEM32\NInput.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Pen and Touch Input Component 131795770645383654 0x7ffac2a20000 81920 C:\Windows\SYSTEM32\rtutils.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Routing Utilities 131795770645383654 0x7ffac2bf0000 65536 C:\Windows\SYSTEM32\EFSUTIL.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation EFS Utility Library 131795770645383654 0x7ffac34e0000 1843200 C:\Windows\SYSTEM32\urlmon.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширения OLE32 для Win32 131795770645383654 0x7ffac3cb0000 2772992 C:\Windows\SYSTEM32\iertutil.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служебная программа времени выполнения для Internet Explorer 131795770645383654 0x7ffac4000000 274432 C:\Windows\SYSTEM32\policymanager.dll 10.0.14393.2035 (rs1_release_inmarket.180110-1910) Microsoft Corporation Policy Manager DLL 131795770645383654 0x7ffac42a0000 659456 C:\Windows\SYSTEM32\StateRepository.Core.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation StateRepository Core 131795770645383654 0x7ffac46d0000 4161536 C:\Windows\System32\Windows.StateRepository.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Сервер Windows StateRepository API Server 131795770645383654 0x7ffac4e70000 102400 C:\Windows\SYSTEM32\samcli.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Security Accounts Manager Client DLL 131795770645383654 0x7ffac5350000 1765376 C:\Windows\System32\Windows.UI.Immersive.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation WINDOWS.UI.IMMERSIVE 131795770645383654 0x7ffac5c50000 131072 C:\Windows\SYSTEM32\rasman.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Remote Access Connection Manager 131795770645383654 0x7ffac60e0000 221184 C:\Windows\SYSTEM32\XmlLite.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft XmlLite Library 131795770645383654 0x7ffac69c0000 839680 C:\Windows\SYSTEM32\WINHTTP.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Службы HTTP Windows 131795770645383654 0x7ffac6ac0000 835584 C:\Windows\System32\Windows.UI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Runtime UI Foundation DLL 131795770645383654 0x7ffac6c40000 2596864 C:\Windows\WinSxS\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.14393.953_none_42151e83c686086b\Comctl32.dll 6.10 (rs1_release_inmarket.170303-1614) Microsoft Corporation Библиотека элементов управления взаимодействия с пользователем 131795770645383654 0x7ffac6f50000 5632000 C:\Windows\SYSTEM32\d2d1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека Microsoft D2D 131795770645383654 0x7ffac7580000 1077248 C:\Windows\SYSTEM32\MrmCoreR.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Windows MRM 131795770645383654 0x7ffac76a0000 159744 C:\Windows\SYSTEM32\sppc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Software Licensing Client DLL 131795770645383654 0x7ffac7720000 1601536 C:\Windows\System32\OneCoreUAPCommonProxyStub.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation OneCoreUAP Common Proxy Stub 131795770645383654 0x7ffac7990000 155648 C:\Windows\SYSTEM32\SLC.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Software Licensing Client DLL 131795770645383654 0x7ffac7fc0000 2674688 C:\Windows\SYSTEM32\d3d10warp.dll 10.0.14393.576 (rs1_release_inmarket.161208-2252) Microsoft Corporation Direct3D 10 Rasterizer 131795770645383654 0x7ffac84f0000 299008 C:\Windows\system32\DataExchange.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation Data exchange 131795770645383654 0x7ffac8880000 69632 C:\Windows\SYSTEM32\wmiclnt.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation WMI Client API 131795770645383654 0x7ffac88a0000 2842624 C:\Windows\SYSTEM32\d3d11.dll 10.0.14393.953 (rs1_release_inmarket.170303-1614) Microsoft Corporation Direct3D 11 Runtime 131795770645383654 0x7ffac9220000 397312 C:\Windows\SYSTEM32\wevtapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API настройки и использования событий 131795770645383654 0x7ffac9290000 40960 C:\Windows\SYSTEM32\DSROLE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DS Setup Client DLL 131795770645383654 0x7ffac92e0000 1269760 C:\Windows\System32\WinTypes.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL основных типов Windows 131795770645383654 0x7ffac9500000 2682880 C:\Windows\system32\CoreUIComponents.dll 131795770645383654 0x7ffac9f50000 1736704 C:\Windows\system32\windowscodecs.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Microsoft Windows Codecs Library 131795770645383654 0x7ffaca340000 1593344 C:\Windows\SYSTEM32\PROPSYS.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Система страниц свойств (Майкрософт) 131795770645383654 0x7ffaca4e0000 77824 C:\Windows\SYSTEM32\WTSAPI32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Remote Desktop Session Host Server SDK APIs 131795770645383654 0x7ffaca560000 45056 C:\Windows\SYSTEM32\NcaApi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Network Connectivity Assistant API 131795770645383654 0x7ffaca570000 421888 C:\Windows\SYSTEM32\Bcp47Langs.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation BCP47 Language Classes 131795770645383654 0x7ffaca5e0000 155648 C:\Windows\SYSTEM32\dwmapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Интерфейс API диспетчера окон рабочего стола (Майкрософт) 131795770645383654 0x7ffaca640000 770048 C:\Windows\SYSTEM32\CoreMessaging.dll 10.0.14393.0 Microsoft Corporation Microsoft CoreMessaging Dll 131795770645383654 0x7ffaca770000 1380352 C:\Windows\SYSTEM32\dcomp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft DirectComposition Library 131795770645383654 0x7ffacaf00000 610304 C:\Windows\system32\uxtheme.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека тем UxTheme (Microsoft) 131795770645383654 0x7ffacb140000 593920 C:\Windows\SYSTEM32\msvcp110_win.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Microsoft® STL110 C++ Runtime Library 131795770645383654 0x7ffacb1e0000 1163264 C:\Windows\System32\twinapi.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation twinapi.appcore 131795770645383654 0x7ffacb300000 364544 C:\Windows\SYSTEM32\VEEventDispatcher.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Visual Element Event dispatcher 131795770645383654 0x7ffacb3f0000 163840 C:\Windows\SYSTEM32\DEVOBJ.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Device Information Set DLL 131795770645383654 0x7ffacb780000 651264 C:\Windows\SYSTEM32\dxgi.dll 10.0.14393.953 (rs1_release_inmarket.170303-1614) Microsoft Corporation DirectX Graphics Infrastructure 131795770645383654 0x7ffacbd30000 229376 C:\Windows\SYSTEM32\IPHLPAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API вспомогательного приложения IP 131795770645383654 0x7ffacbe20000 53248 C:\Windows\SYSTEM32\netutils.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API Helpers DLL 131795770645383654 0x7ffacbe40000 126976 C:\Windows\SYSTEM32\USERENV.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Userenv 131795770645383654 0x7ffacc150000 94208 C:\Windows\SYSTEM32\cryptsp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Cryptographic Service Provider API 131795770645383654 0x7ffacc170000 45056 C:\Windows\SYSTEM32\CRYPTBASE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base cryptographic API DLL 131795770645383654 0x7ffacc1f0000 241664 C:\Windows\SYSTEM32\NTASN1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft ASN.1 API 131795770645383654 0x7ffacc230000 155648 C:\Windows\SYSTEM32\ncrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Маршрутизатор Windows NCrypt 131795770645383654 0x7ffacc350000 180224 C:\Windows\SYSTEM32\SspiCli.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Security Support Provider Interface 131795770645383654 0x7ffacc5c0000 352256 C:\Windows\SYSTEM32\WINSTA.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Winstation Library 131795770645383654 0x7ffacc620000 176128 C:\Windows\SYSTEM32\bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795770645383654 0x7ffacc6e0000 61440 C:\Windows\System32\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795770645383654 0x7ffacc6f0000 311296 C:\Windows\System32\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795770645383654 0x7ffacc740000 81920 C:\Windows\System32\profapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Profile Basic API 131795770645383654 0x7ffacc760000 65536 C:\Windows\System32\MSASN1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ASN.1 Runtime APIs 131795770645383654 0x7ffacc8f0000 1003520 C:\Windows\System32\ucrtbase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645383654 0x7ffacc9f0000 434176 C:\Windows\System32\bcryptPrimitives.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Cryptographic Primitives Library 131795770645383654 0x7ffacca60000 122880 C:\Windows\System32\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795770645383654 0x7ffaccae0000 692224 C:\Windows\System32\shcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795770645383654 0x7ffaccb90000 7180288 C:\Windows\System32\windows.storage.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API хранения Microsoft WinRT 131795770645383654 0x7ffacd270000 2215936 C:\Windows\System32\KERNELBASE.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645383654 0x7ffacd490000 1871872 C:\Windows\System32\CRYPT32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API32 криптографии 131795770645383654 0x7ffacd710000 638976 C:\Windows\System32\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645383654 0x7ffacd7b0000 270336 C:\Windows\System32\cfgmgr32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Configuration Manager DLL 131795770645383654 0x7ffacd810000 22056960 C:\Windows\System32\SHELL32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Общая библиотека оболочки Windows 131795770645383654 0x7ffaced20000 782336 C:\Windows\System32\OLEAUT32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795770645383654 0x7ffacee50000 1183744 C:\Windows\System32\RPCRT4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795770645383654 0x7ffacef90000 647168 C:\Windows\System32\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795770645383654 0x7ffacf030000 651264 C:\Windows\System32\clbcatq.dll 2001.12.10941.16384 (rs1_release.160715-1616) Microsoft Corporation COM+ Configuration Catalog 131795770645383654 0x7ffacf0d0000 704512 C:\Windows\System32\KERNEL32.DLL 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645383654 0x7ffacf1e0000 1417216 C:\Windows\System32\msctf.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Серверная библиотека MSCTF 131795770645383654 0x7ffacf770000 212992 C:\Windows\System32\GDI32.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation GDI Client DLL 131795770645383654 0x7ffacf820000 434176 C:\Windows\System32\WS2_32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation 32-разрядная библиотека Windows Socket 2.0 131795770645383654 0x7ffacf890000 188416 C:\Windows\System32\IMM32.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Multi-User Windows IMM32 API Client DLL 131795770645383654 0x7ffacf8c0000 1462272 C:\Windows\System32\USER32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795770645383654 0x7ffacfb30000 2916352 C:\Windows\System32\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795770645383654 0x7ffacfe20000 663552 C:\Windows\System32\advapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795770645383654 0x7ffad0070000 1277952 C:\Windows\System32\ole32.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft OLE для Windows 131795770645383654 0x7ffad01b0000 335872 C:\Windows\System32\SHLWAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека небольших программ оболочки 131795770645383654 0x7ffad0210000 364544 C:\Windows\System32\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795770645383654 0x7ffad0270000 1908736 C:\Windows\SYSTEM32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 67 10964 664 6 00000000:0031f1ab 131794956837373387 0 0 1 Обязательная метка\Высокий обязательный уровень WIN-0UOTFKKVN1S\User DllHost.exe C:\Windows\system32\DllHost.exe C:\Windows\system32\DllHost.exe /Processid:{BA126F01-2166-11D1-B1D0-00805FC1270E} Microsoft Corporation 10.0.14393.0 (rs1_release.160715-1616) COM Surrogate 131795770645383742 0x7ff7a2280000 36864 C:\Windows\system32\DllHost.exe 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation COM Surrogate 131795770645383742 0x7ffab2460000 2822144 C:\Windows\system32\netshell.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Оболочка сетевых подключений 131795770645383742 0x7ffac9790000 98304 C:\Windows\system32\nlaapi.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Network Location Awareness 2 131795770645383742 0x7ffacaf00000 610304 C:\Windows\system32\uxtheme.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека тем UxTheme (Microsoft) 131795770645383742 0x7ffacbd30000 229376 C:\Windows\system32\IPHLPAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API вспомогательного приложения IP 131795770645383742 0x7ffacc6e0000 61440 C:\Windows\System32\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795770645383742 0x7ffacc6f0000 311296 C:\Windows\System32\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795770645383742 0x7ffacc740000 81920 C:\Windows\System32\profapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Profile Basic API 131795770645383742 0x7ffacc8f0000 1003520 C:\Windows\System32\ucrtbase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645383742 0x7ffacc9f0000 434176 C:\Windows\System32\bcryptPrimitives.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Cryptographic Primitives Library 131795770645383742 0x7ffacca60000 122880 C:\Windows\System32\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795770645383742 0x7ffaccae0000 692224 C:\Windows\System32\shcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795770645383742 0x7ffaccb90000 7180288 C:\Windows\System32\windows.storage.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API хранения Microsoft WinRT 131795770645383742 0x7ffacd270000 2215936 C:\Windows\System32\KERNELBASE.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645383742 0x7ffacd7b0000 270336 C:\Windows\System32\cfgmgr32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Configuration Manager DLL 131795770645383742 0x7ffacd810000 22056960 C:\Windows\System32\SHELL32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Общая библиотека оболочки Windows 131795770645383742 0x7ffacee50000 1183744 C:\Windows\System32\RPCRT4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795770645383742 0x7ffacef90000 647168 C:\Windows\System32\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795770645383742 0x7ffacf030000 651264 C:\Windows\System32\clbcatq.dll 2001.12.10941.16384 (rs1_release.160715-1616) Microsoft Corporation COM+ Configuration Catalog 131795770645383742 0x7ffacf0d0000 704512 C:\Windows\System32\KERNEL32.DLL 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645383742 0x7ffacf770000 212992 C:\Windows\System32\GDI32.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation GDI Client DLL 131795770645383742 0x7ffacf890000 188416 C:\Windows\System32\IMM32.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Multi-User Windows IMM32 API Client DLL 131795770645383742 0x7ffacf8c0000 1462272 C:\Windows\System32\user32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795770645383742 0x7ffacfb30000 2916352 C:\Windows\System32\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795770645383742 0x7ffacfe20000 663552 C:\Windows\System32\advapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795770645383742 0x7ffad0070000 1277952 C:\Windows\System32\ole32.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft OLE для Windows 131795770645383742 0x7ffad01b0000 335872 C:\Windows\System32\SHLWAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека небольших программ оболочки 131795770645383742 0x7ffad0210000 364544 C:\Windows\System32\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795770645383742 0x7ffad0270000 1908736 C:\Windows\SYSTEM32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 68 8940 2156 62 00000000:0031f1da 131794956984780982 131795780667428563 0 1 Обязательная метка\Средний обязательный уровень WIN-0UOTFKKVN1S\User Photoshop.exe C:\Program Files\Adobe\Adobe Photoshop CC 2017\Photoshop.exe "C:\Program Files\Adobe\Adobe Photoshop CC 2017\Photoshop.exe" "C:\Users\User\Downloads\tlauncher_psd\tlauncher_psd.psd" Adobe Systems, Incorporated 18.0.1 (2017.0.1 20161130.r.29 2016/11/30:23:00:00 CL 1099099) Adobe Photoshop CC 2017 131795770645383911 0xb20000 9846784 C:\Program Files\Adobe\Adobe Photoshop CC 2017\cg.dll 3.0.00007 NVIDIA Corporation Cg Core Runtime Library 131795770645383911 0x1490000 3276800 C:\Program Files\Adobe\Adobe Photoshop CC 2017\libmmd.dll 12.0.12.2 Intel Corporation Math Library for Intel(r) Compilers (thread-safe) 131795770645383911 0x10000000 6070272 C:\Program Files\Adobe\Adobe Photoshop CC 2017\svml_dispmd.dll 12.0.12.2 Intel Corporation SVML Library for Intel(r) Compilers (thread-safe) 131795770645383911 0x4fad0000 70561792 C:\Program Files\Common Files\Adobe\Plug-Ins\CC\File Formats\Camera Raw.8bi 9.8 Adobe Systems Incorporated Photoshop Camera Raw Plug-in 131795770645383911 0x5b690000 4763648 C:\Program Files\Adobe\Adobe Photoshop CC 2017\SVGRE.dll 6, 0, 0, 37447 Adobe Systems Incorporated SVGRE 6.0 131795770645383911 0x5bcf0000 241664 C:\Program Files\Adobe\Adobe Photoshop CC 2017\AXE8SharedExpat.dll 3.8.0.34320 Adobe Systems Incorporated AXE Shared EXPAT (UTF-8 native) 131795770645383911 0x5bd30000 61440 C:\Program Files\Adobe\Adobe Photoshop CC 2017\dnssd.dll 3,0,0,2 Apple Inc. Bonjour Client Library 131795770645383911 0x5bd40000 974848 C:\Program Files\Adobe\Adobe Photoshop CC 2017\AXEDOMCore.dll 3.8.0.34320 Adobe Systems Incorporated Adobe XML Engine: DOM Core 131795770645383911 0x5be30000 1306624 C:\Program Files\Adobe\Adobe Photoshop CC 2017\icucnv40.dll 4, 0, 0, 1001 IBM Corporation and others IBM ICU Common DLL 131795770645383911 0x6a400000 479232 C:\Program Files\Adobe\Adobe Photoshop CC 2017\cgGL.dll 3.0.00007 NVIDIA Corporation Cg GL Runtime Library 131795770645383911 0x180000000 159744 C:\Program Files\Adobe\Adobe Photoshop CC 2017\Required\Plug-Ins\File Formats\PSDX.8bi 14.0 Adobe Systems Incorporated Photoshop Remix Plug-In 131795770645383911 0x1c2eee90000 13922304 C:\Program Files\Adobe\Adobe Photoshop CC 2017\icudt40.dll 4, 0, 0, 1001 IBM Corporation and others ICU Data DLL 131795770645383911 0x1c2f1470000 12288 C:\Program Files\Adobe\Adobe Photoshop CC 2017\PSArt.dll 18.0.1 (2017.0.1 20161130.r.29 2016/11/30:23:00:00 CL 1099099) Adobe Systems, Incorporated Photoshop Resource DLL 131795770645383911 0x1c2f3490000 1593344 C:\Program Files\Adobe\Adobe Photoshop CC 2017\Photoshop.dll 18.0.1 (2017.0.1 20161130.r.29 2016/11/30:23:00:00 CL 1099099) Adobe Systems, Incorporated Photoshop Resource DLL 131795770645383911 0x1c2f3620000 2699264 C:\Program Files\Adobe\Adobe Photoshop CC 2017\PSViews.dll 18.0.1 (2017.0.1 20161130.r.29 2016/11/30:23:00:00 CL 1099099) Adobe Systems, Incorporated Photoshop Resource DLL 131795770645383911 0x1c2f93a0000 1429504 C:\Program Files\Adobe\Adobe Photoshop CC 2017\WRServices.dll 12.0.0.1000 WinSoft S.A. WRServices Engine 131795770645383911 0x1c2f9540000 1085440 C:\Program Files\Adobe\Adobe Photoshop CC 2017\Required\Linguistics\Providers\Plugins2\WRLiloPlugin.bundle\WRLiloPlugin.dll 1.3.6rc1 WinSoft SA WR LILO Plugin 131795770645383911 0x7ff6c3030000 182624256 C:\Program Files\Adobe\Adobe Photoshop CC 2017\Photoshop.exe 18.0.1 (2017.0.1 20161130.r.29 2016/11/30:23:00:00 CL 1099099) Adobe Systems, Incorporated Adobe Photoshop CC 2017 131795770645383911 0x7ffaa0cb0000 1880064 C:\Program Files\Adobe\Adobe Photoshop CC 2017\aif.dll 131795770645383911 0x7ffaa0e80000 2637824 C:\Program Files\Adobe\Adobe Photoshop CC 2017\LogSession.dll 7.4.1.60.45263 Adobe Systems Incorporated LogSession 131795770645383911 0x7ffaa1110000 70823936 C:\Program Files\Adobe\Adobe Photoshop CC 2017\Required\Plug-Ins\Spaces\libcef.dll 3.2526.1347.gcf20046 Chromium Embedded Framework (CEF) Dynamic Link Library 131795770645383911 0x7ffaa54a0000 7950336 C:\Program Files\Adobe\Adobe Photoshop CC 2017\Required\Plug-Ins\Extensions\ScriptingSupport.8li 18.0.1 Adobe Systems, Incorporated ScriptingSupport 131795770645383911 0x7ffaa5c40000 2113536 C:\Program Files\Adobe\Adobe Photoshop CC 2017\Required\Linguistics\Providers\Plugins2\AdobeHunspellPlugin\AdobeHunspellPlugin.dll 11.0.0.22122 Adobe Systems Incorporated AdobeHunspellPlugin 131795770645383911 0x7ffaa5e50000 4493312 C:\Program Files\Adobe\Adobe Photoshop CC 2017\CoolType.dll 5.15.00.37447 Adobe Systems Incorporated CoolType Typography Engine 131795770645383911 0x7ffaa62a0000 5267456 C:\Program Files\Adobe\Adobe Photoshop CC 2017\AGM.dll 4.30.60.37447 Adobe Systems Incorporated Adobe Graphics Manager 131795770645383911 0x7ffaa67b0000 1839104 C:\Program Files\Adobe\Adobe Photoshop CC 2017\ACE.dll 2.20.02.37447 Adobe Systems Incorporated Adobe Color Engine 131795770645383911 0x7ffaa6980000 1302528 C:\Program Files\Adobe\Adobe Photoshop CC 2017\AdobeXMP.dll 5.6-c138 ( 64 bit ), 79.159824, 2016/09/14-01:09:01 Adobe Systems Incorporated Adobe XMP Core 5.6-c138 ( 64 bit ) 131795770645383911 0x7ffaa6ac0000 692224 C:\Program Files\Adobe\Adobe Photoshop CC 2017\Required\Plug-Ins\Extensions\MultiProcessor Support.8bx 18.0.1 (2017.0.1 x001 x003) Adobe Systems, Incorporated Adobe Photoshop CC 2017 131795770645383911 0x7ffaa6b70000 1077248 C:\Program Files\Adobe\Adobe Photoshop CC 2017\Required\Plug-Ins\Extensions\MMXCore.8bx 18.0.1 (2017.0.1 x001 x003) Adobe Systems, Incorporated Adobe Photoshop CC 2017 131795770645383911 0x7ffaa6c80000 2093056 C:\Windows\system32\wpdshext.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширение оболочки для переносных устройств 131795770645383911 0x7ffaa6fd0000 978944 C:\Windows\SYSTEM32\MSVCR120.dll 12.00.40660.0 built by: VSULDR Microsoft Corporation Microsoft® C Runtime Library 131795770645383911 0x7ffaa70c0000 679936 C:\Windows\SYSTEM32\MSVCP120.dll 12.00.40660.0 built by: VSULDR Microsoft Corporation Microsoft® C Runtime Library 131795770645383911 0x7ffaa7170000 2826240 C:\Program Files\Adobe\Adobe Photoshop CC 2017\opencv_imgproc249.dll 131795770645383911 0x7ffaa7430000 2564096 C:\Program Files\Adobe\Adobe Photoshop CC 2017\opencv_core249.dll 131795770645383911 0x7ffaa76b0000 1478656 C:\Program Files\Adobe\Adobe Photoshop CC 2017\AIDE.dll 1.5.0.36540 Adobe Systems Incorporated Adobe Image Decode Encode Library 131795770645383911 0x7ffaa7820000 278528 C:\Program Files\Adobe\Adobe Photoshop CC 2017\tbbmalloc.dll 4, 4, 2016, 0412 Intel Corporation Scalable Allocator library 131795770645383911 0x7ffaa7870000 1011712 C:\Windows\SYSTEM32\DDRAW.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft DirectDraw 131795770645383911 0x7ffaa7b20000 2613248 C:\Program Files\Adobe\Adobe Photoshop CC 2017\AdobeOwl.dll 5.2.11 Adobe Systems, Incorporated Adobe Owl(64 bit) 131795770645383911 0x7ffaa7da0000 749568 C:\Program Files\Adobe\Adobe Photoshop CC 2017\ScCore.dll 4.5.6.4 Adobe Systems Incorporated Scripting Components Core (64 bit) 131795770645383911 0x7ffaa7e60000 18792448 C:\Program Files\Adobe\Adobe Photoshop CC 2017\mona.dll 131795770645383911 0x7ffaa9050000 802816 C:\Program Files\Adobe\Adobe Photoshop CC 2017\ExtendScript.dll 4.5.6.4 Adobe Systems Incorporated Adobe ExtendScript scripting engine (64 bit) 131795770645383911 0x7ffaa9120000 5681152 C:\Program Files\Adobe\Adobe Photoshop CC 2017\PlugPlugOwl.dll 7.0.0.67 Adobe Systems Incorporated PlugPlugOwl Standard Dll (64 bit) 131795770645383911 0x7ffaa9690000 5595136 C:\Program Files\Adobe\Adobe Photoshop CC 2017\MPS.dll 5.8.1.37174 Adobe Systems Incorporated Modular Parsing System 131795770645383911 0x7ffaa9bf0000 335872 C:\Program Files\Adobe\Adobe Photoshop CC 2017\ahclient.dll 2.0.0.0 Adobe Systems Incorporated Adobe Help Client Library 131795770645383911 0x7ffaa9c50000 569344 C:\Program Files\Adobe\Adobe Photoshop CC 2017\manta.dll 131795770645383911 0x7ffaa9ce0000 278528 C:\Program Files\Adobe\Adobe Photoshop CC 2017\tbb.dll 4, 4, 2016, 0412 Intel Corporation Intel(R) Threading Building Blocks library 131795770645383911 0x7ffaa9d30000 499712 C:\Program Files\Adobe\Adobe Photoshop CC 2017\VulcanControl.dll __ Adobe Systems Incorporated Vulcan Application Control Library 131795770645383911 0x7ffaa9db0000 630784 C:\Program Files\Adobe\Adobe Photoshop CC 2017\VulcanMessage5.dll __ Adobe Systems Incorporated Vulcan Message Library 131795770645383911 0x7ffaa9e50000 1241088 C:\Program Files\Adobe\Adobe Photoshop CC 2017\AdbePM.dll 2.5.00 Adobe Systems Incorporated Adobe PatchMatch 131795770645383911 0x7ffaa9f80000 167936 C:\Program Files\Adobe\Adobe Photoshop CC 2017\CITThreading.dll 2.1.0.1 ( 32 bit Debug) Adobe Systems Incorporated CITTHREADING_NAME, 2.1.0.1 ( 32 bit Debug) 131795770645383911 0x7ffaa9fb0000 1101824 C:\Program Files\Adobe\Adobe Photoshop CC 2017\adobe_caps.dll 10,0,0,6 Adobe Systems Incorporated Adobe CAPS DLL 131795770645383911 0x7ffaaa190000 1191936 C:\Windows\SYSTEM32\OPENGL32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation OpenGL Client DLL 131795770645383911 0x7ffaaa2c0000 593920 C:\Windows\SYSTEM32\mscms.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL-библиотека системы сопоставления цветов Майкрософт 131795770645383911 0x7ffaaa5f0000 2056192 C:\Program Files\Adobe\Adobe Photoshop CC 2017\IMSLib.dll 10.0.0.1 Adobe Systems Incorporated IMSLib DLL 131795770645383911 0x7ffaaa9c0000 9007104 C:\Program Files\Adobe\Adobe Photoshop CC 2017\Required\Plug-Ins\File Formats\Dicom.8bi 18.0.1 Adobe Systems, Incorporated Adobe Dicom Plugin 131795770645383911 0x7ffaaba80000 184320 C:\Windows\SYSTEM32\GLU32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека подпрограмм OpenGL 131795770645383911 0x7ffaabca0000 233472 C:\Program Files\Adobe\Adobe Photoshop CC 2017\PLUGIN.dll 18.0.1 (2017.0.1 x001 x003) Adobe Systems, Incorporated Photoshop Plugin Utilities 131795770645383911 0x7ffaade70000 270336 C:\Windows\SYSTEM32\icm32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Color Management Module (CMM) 131795770645383911 0x7ffab06d0000 245760 C:\Windows\system32\c_g18030.dll 10.0.14393.103 (rs1_release_inmarket.160819-1924) Microsoft Corporation GB18030 DBCS-Unicode Conversion DLL 131795770645383911 0x7ffab0b60000 495616 C:\Program Files\Adobe\Adobe Photoshop CC 2017\AdobeSVGAGM.dll 1.0.0.37447 Adobe Systems Incorporated Adobe SVG AGM Library 131795770645383911 0x7ffab1e60000 1478656 C:\Program Files\Adobe\Adobe Photoshop CC 2017\AdobeXMPFiles.dll 5.7-f022 ( 64 bit ), 79.159824, 2016/09/14-01:09:01 Adobe Systems Incorporated Adobe XMP Files 5.7-f022 ( 64 bit ) 131795770645383911 0x7ffab22e0000 1544192 C:\Program Files\Adobe\Adobe Photoshop CC 2017\Required\Plug-Ins\Spaces\Spaces.8li 18.0.1 Adobe Systems, Incorporated Spaces 131795770645383911 0x7ffab3410000 167936 C:\Program Files\Adobe\Adobe Photoshop CC 2017\libglog.dll 131795770645383911 0x7ffab4af0000 606208 C:\Windows\system32\audioses.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Сеанс обработки звука 131795770645383911 0x7ffab5b40000 2527232 C:\Windows\SYSTEM32\DWrite.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Службы Microsoft DirectX Typography 131795770645383911 0x7ffab8da0000 1675264 C:\Windows\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.14393.1715_none_aec701fbddd850fa\gdiplus.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Microsoft GDI+ 131795770645383911 0x7ffabaf70000 270336 C:\Windows\SYSTEM32\edputil.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служебная программа EDP 131795770645383911 0x7ffabb070000 512000 C:\Program Files\Adobe\Adobe Photoshop CC 2017\AdobePIP.dll 7.4.1.60.45263 Adobe Systems, Incorporated Adobe Product Improvement Program 131795770645383911 0x7ffabb250000 380928 C:\Program Files\Adobe\Adobe Photoshop CC 2017\BIBUtils.dll 1.1.01.37447 Adobe Systems Incorporated Bravo Interface Binder Utilities 131795770645383911 0x7ffabbc40000 643072 C:\Windows\SYSTEM32\MSVCP140.dll 14.10.24516.0 built by: VCTOOLSRELESC Microsoft Corporation Microsoft® C Runtime Library 131795770645383911 0x7ffabbce0000 90112 C:\Windows\SYSTEM32\VCRUNTIME140.dll 14.10.24516.0 built by: VCTOOLSRELESC Microsoft Corporation Microsoft® C Runtime Library 131795770645383911 0x7ffabcc00000 339968 C:\Windows\SYSTEM32\STI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиентская библиотека устройств неподвижных изображений 131795770645383911 0x7ffabd180000 548864 C:\Windows\SYSTEM32\WINSPOOL.DRV 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Драйвер диспетчера очереди Windows 131795770645383911 0x7ffabf5d0000 2924544 C:\Windows\SYSTEM32\WININET.dll 11.00.14393.447 (rs1_release_inmarket.161102-0100) Microsoft Corporation Расширения Интернета для Win32 131795770645383911 0x7ffac0610000 3088384 C:\Windows\SYSTEM32\msi.dll 5.0.14393.2155 Microsoft Corporation Windows Installer 131795770645383911 0x7ffac0b40000 315392 C:\Windows\System32\dlnashext.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLNA Namespace DLL 131795770645383911 0x7ffac0bf0000 3559424 C:\Windows\System32\ActXPrxy.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation ActiveX Interface Marshaling Library 131795770645383911 0x7ffac1300000 598016 C:\Program Files\Adobe\Adobe Photoshop CC 2017\BIB.dll 1.2.03.37447 Adobe Systems Incorporated Bravo Interface Binder 131795770645383911 0x7ffac1b70000 122880 C:\Windows\System32\DevDispItemProvider.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Подсистема DeviceItem inproc devquery 131795770645383911 0x7ffac1d60000 589824 C:\Windows\SYSTEM32\webio.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API протоколов передачи по Веб 131795770645383911 0x7ffac1fd0000 999424 C:\Windows\system32\wbem\fastprox.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation WMI Custom Marshaller 131795770645383911 0x7ffac21d0000 81920 C:\Windows\system32\wbem\wbemsvc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation WMI 131795770645383911 0x7ffac2700000 98304 C:\Windows\SYSTEM32\NETAPI32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API DLL 131795770645383911 0x7ffac2b80000 40960 C:\Windows\SYSTEM32\VERSION.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Version Checking and File Installation Libraries 131795770645383911 0x7ffac32b0000 151552 C:\Program Files\Adobe\Adobe Photoshop CC 2017\AdobeXMPScript.dll 5.2-s002 ( 64 bit ), 79.159824, 2016/09/14-01:09:01 Adobe Systems Incorporated Adobe XMP Script 5.2-s002 ( 64 bit ) 131795770645383911 0x7ffac34e0000 1843200 C:\Windows\SYSTEM32\urlmon.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширения OLE32 для Win32 131795770645383911 0x7ffac3cb0000 2772992 C:\Windows\SYSTEM32\iertutil.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служебная программа времени выполнения для Internet Explorer 131795770645383911 0x7ffac4220000 520192 C:\Windows\SYSTEM32\wbemcomn.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation WMI 131795770645383911 0x7ffac4470000 65536 C:\Windows\system32\wbem\wbemprox.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation WMI 131795770645383911 0x7ffac4c50000 36864 C:\Windows\SYSTEM32\WSOCK32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Socket 32-Bit DLL 131795770645383911 0x7ffac6610000 40960 C:\Windows\System32\rasadhlp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Remote Access AutoDial Helper 131795770645383911 0x7ffac69c0000 839680 C:\Windows\SYSTEM32\WINHTTP.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Службы HTTP Windows 131795770645383911 0x7ffac6aa0000 94208 C:\Program Files\Adobe\Adobe Photoshop CC 2017\amtlib.dll 10.0.0.3 painter AMTEmu Licensing 131795770645383911 0x7ffac6ba0000 49152 C:\Windows\SYSTEM32\Secur32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Security Support Provider Interface 131795770645383911 0x7ffac6bd0000 413696 C:\Windows\SYSTEM32\OLEACC.dll 7.2.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Active Accessibility Core Component 131795770645383911 0x7ffac6c40000 2596864 C:\Windows\WinSxS\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.14393.953_none_42151e83c686086b\Comctl32.dll 6.10 (rs1_release_inmarket.170303-1614) Microsoft Corporation Библиотека элементов управления взаимодействия с пользователем 131795770645383911 0x7ffac6ec0000 36864 C:\Windows\system32\IconCodecService.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Converts a PNG part of the icon to a legacy bmp icon 131795770645383911 0x7ffac76e0000 118784 C:\Program Files\Adobe\Adobe Photoshop CC 2017\Required\Plug-Ins\Extensions\FastCore.8bx 18.0.1 (2017.0.1 x001 x003) Adobe Systems, Incorporated Adobe Photoshop CC 2017 131795770645383911 0x7ffac7710000 40960 C:\Windows\SYSTEM32\wiatrace.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation WIA Tracing 131795770645383911 0x7ffac83d0000 106496 C:\Windows\SYSTEM32\dhcpcsvc.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служба DHCP-клиента 131795770645383911 0x7ffac83f0000 90112 C:\Windows\SYSTEM32\dhcpcsvc6.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиент DHCPv6 131795770645383911 0x7ffac84f0000 299008 C:\Windows\system32\dataexchange.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation Data exchange 131795770645383911 0x7ffac8810000 45056 C:\Windows\SYSTEM32\WINNSI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Network Store Information RPC interface 131795770645383911 0x7ffac88a0000 2842624 C:\Windows\system32\d3d11.dll 10.0.14393.953 (rs1_release_inmarket.170303-1614) Microsoft Corporation Direct3D 11 Runtime 131795770645383911 0x7ffac92e0000 1269760 C:\Windows\SYSTEM32\wintypes.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL основных типов Windows 131795770645383911 0x7ffac9480000 462848 C:\Windows\System32\MMDevApi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation MMDevice API 131795770645383911 0x7ffac9790000 98304 C:\Windows\system32\NLAapi.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Network Location Awareness 2 131795770645383911 0x7ffac9f50000 1736704 C:\Windows\SYSTEM32\WindowsCodecs.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Microsoft Windows Codecs Library 131795770645383911 0x7ffaca340000 1593344 C:\Windows\SYSTEM32\PROPSYS.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Система страниц свойств (Майкрософт) 131795770645383911 0x7ffaca4e0000 77824 C:\Windows\SYSTEM32\WTSAPI32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Remote Desktop Session Host Server SDK APIs 131795770645383911 0x7ffaca540000 32768 C:\Windows\SYSTEM32\DCIMAN32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DCI Manager 131795770645383911 0x7ffaca5e0000 155648 C:\Windows\system32\dwmapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Интерфейс API диспетчера окон рабочего стола (Майкрософт) 131795770645383911 0x7ffaca770000 1380352 C:\Windows\system32\dcomp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft DirectComposition Library 131795770645383911 0x7ffacab20000 102400 C:\Windows\SYSTEM32\USP10.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Uniscribe Unicode script processor 131795770645383911 0x7ffacab40000 176128 C:\Windows\SYSTEM32\WINMMBASE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base Multimedia Extension API DLL 131795770645383911 0x7ffacaba0000 143360 C:\Windows\SYSTEM32\WINMM.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation MCI API DLL 131795770645383911 0x7ffacac80000 28672 C:\Windows\SYSTEM32\MSIMG32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation GDIEXT Client DLL 131795770645383911 0x7ffacadf0000 499712 C:\Windows\SYSTEM32\apphelp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиентская библиотека совместимости приложений 131795770645383911 0x7ffacaf00000 610304 C:\Windows\system32\uxtheme.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека тем UxTheme (Microsoft) 131795770645383911 0x7ffacb1e0000 1163264 C:\Windows\system32\twinapi.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation twinapi.appcore 131795770645383911 0x7ffacb3f0000 163840 C:\Windows\System32\DEVOBJ.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Device Information Set DLL 131795770645383911 0x7ffacb420000 204800 C:\Windows\SYSTEM32\ntmarta.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик Windows NT MARTA 131795770645383911 0x7ffacb780000 651264 C:\Windows\SYSTEM32\dxgi.dll 10.0.14393.953 (rs1_release_inmarket.170303-1614) Microsoft Corporation DirectX Graphics Infrastructure 131795770645383911 0x7ffacbbb0000 208896 C:\Windows\system32\rsaenh.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Enhanced Cryptographic Provider 131795770645383911 0x7ffacbd30000 229376 C:\Windows\SYSTEM32\IPHLPAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API вспомогательного приложения IP 131795770645383911 0x7ffacbd70000 659456 C:\Windows\SYSTEM32\DNSAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Динамическая библиотека API DNS-клиента 131795770645383911 0x7ffacbe40000 126976 C:\Windows\SYSTEM32\USERENV.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Userenv 131795770645383911 0x7ffacbfb0000 376832 C:\Windows\system32\mswsock.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширение поставщика службы API Microsoft Windows Sockets 2.0 131795770645383911 0x7ffacc150000 94208 C:\Windows\SYSTEM32\CRYPTSP.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Cryptographic Service Provider API 131795770645383911 0x7ffacc170000 45056 C:\Windows\SYSTEM32\CRYPTBASE.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base cryptographic API DLL 131795770645383911 0x7ffacc350000 180224 C:\Windows\SYSTEM32\SspiCli.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Security Support Provider Interface 131795770645383911 0x7ffacc520000 622592 C:\Windows\SYSTEM32\sxs.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Fusion 2.5 131795770645383911 0x7ffacc5c0000 352256 C:\Windows\SYSTEM32\WINSTA.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Winstation Library 131795770645383911 0x7ffacc620000 176128 C:\Windows\SYSTEM32\bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795770645383911 0x7ffacc6e0000 61440 C:\Windows\System32\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795770645383911 0x7ffacc6f0000 311296 C:\Windows\System32\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795770645383911 0x7ffacc740000 81920 C:\Windows\System32\profapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Profile Basic API 131795770645383911 0x7ffacc760000 65536 C:\Windows\System32\MSASN1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ASN.1 Runtime APIs 131795770645383911 0x7ffacc8f0000 1003520 C:\Windows\System32\ucrtbase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645383911 0x7ffacc9f0000 434176 C:\Windows\System32\bcryptPrimitives.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Cryptographic Primitives Library 131795770645383911 0x7ffacca60000 122880 C:\Windows\System32\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795770645383911 0x7ffacca80000 348160 C:\Windows\System32\WINTRUST.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation Microsoft Trust Verification APIs 131795770645383911 0x7ffaccae0000 692224 C:\Windows\System32\shcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795770645383911 0x7ffaccb90000 7180288 C:\Windows\System32\windows.storage.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API хранения Microsoft WinRT 131795770645383911 0x7ffacd270000 2215936 C:\Windows\System32\KERNELBASE.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645383911 0x7ffacd490000 1871872 C:\Windows\System32\CRYPT32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API32 криптографии 131795770645383911 0x7ffacd710000 638976 C:\Windows\System32\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645383911 0x7ffacd7b0000 270336 C:\Windows\System32\cfgmgr32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Configuration Manager DLL 131795770645383911 0x7ffacd800000 32768 C:\Windows\System32\PSAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Process Status Helper 131795770645383911 0x7ffacd810000 22056960 C:\Windows\System32\SHELL32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Общая библиотека оболочки Windows 131795770645383911 0x7ffaced20000 782336 C:\Windows\System32\OLEAUT32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795770645383911 0x7ffacee50000 1183744 C:\Windows\System32\RPCRT4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795770645383911 0x7ffacef80000 32768 C:\Windows\System32\NSI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation NSI User-mode interface DLL 131795770645383911 0x7ffacef90000 647168 C:\Windows\System32\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795770645383911 0x7ffacf030000 651264 C:\Windows\System32\clbcatq.dll 2001.12.10941.16384 (rs1_release.160715-1616) Microsoft Corporation COM+ Configuration Catalog 131795770645383911 0x7ffacf0d0000 704512 C:\Windows\System32\KERNEL32.DLL 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645383911 0x7ffacf1e0000 1417216 C:\Windows\System32\MSCTF.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Серверная библиотека MSCTF 131795770645383911 0x7ffacf340000 4362240 C:\Windows\System32\SETUPAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Setup API 131795770645383911 0x7ffacf770000 212992 C:\Windows\System32\GDI32.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation GDI Client DLL 131795770645383911 0x7ffacf820000 434176 C:\Windows\System32\WS2_32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation 32-разрядная библиотека Windows Socket 2.0 131795770645383911 0x7ffacf890000 188416 C:\Windows\System32\IMM32.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Multi-User Windows IMM32 API Client DLL 131795770645383911 0x7ffacf8c0000 1462272 C:\Windows\System32\USER32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795770645383911 0x7ffacfa30000 1024000 C:\Windows\System32\COMDLG32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека общих диалоговых окон 131795770645383911 0x7ffacfb30000 2916352 C:\Windows\System32\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795770645383911 0x7ffacfe20000 663552 C:\Windows\System32\ADVAPI32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795770645383911 0x7ffad0070000 1277952 C:\Windows\System32\ole32.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft OLE для Windows 131795770645383911 0x7ffad01b0000 335872 C:\Windows\System32\shlwapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека небольших программ оболочки 131795770645383911 0x7ffad0210000 364544 C:\Windows\System32\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795770645383911 0x7ffad0270000 1908736 C:\Windows\SYSTEM32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 69 10000 8940 68 00000000:0031f1da 131794957424930105 0 0 0 Обязательная метка\Средний обязательный уровень WIN-0UOTFKKVN1S\User AdobeIPCBroker.exe C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\IPC\AdobeIPCBroker.exe "C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\IPC\AdobeIPCBroker.exe" "-launchedbyvulcan" Adobe Systems Incorporated 5.0.0.76 Adobe IPC Broker 131795770645384008 0xbe0000 798720 C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\IPC\AdobeIPCBroker.exe 5.0.0.76 Adobe Systems Incorporated Adobe IPC Broker 131795770645384008 0x5c020000 335872 C:\Windows\System32\wow64.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation Win32 Emulation on NT64 131795770645384008 0x5c080000 487424 C:\Windows\System32\wow64win.dll 10.0.14393.1884 (rs1_release.171101-1233) Microsoft Corporation Wow64 Console and Win32 API Logging 131795770645384008 0x5c100000 40960 C:\Windows\System32\wow64cpu.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation AMD64 Wow64 CPU 131795770645384008 0x60750000 1556480 C:\Program Files (x86)\360\Total Security\safemon\safemon.dll 8, 4, 0, 1420 Qihu 360 Software Co., Ltd. 360 Internet Security Internet Protection 131795770645384008 0x70ca0000 45056 C:\Windows\SysWOW64\NETUTILS.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API Helpers DLL 131795770645384008 0x70cb0000 65536 C:\Windows\SysWOW64\WKSCLI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Workstation Service Client DLL 131795770645384008 0x71140000 77824 C:\Windows\SysWOW64\NETAPI32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API DLL 131795770645384008 0x72b90000 126976 C:\Windows\SysWOW64\dwmapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Интерфейс API диспетчера окон рабочего стола (Майкрософт) 131795770645384008 0x74110000 479232 C:\Windows\SysWOW64\uxtheme.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека тем UxTheme (Microsoft) 131795770645384008 0x74190000 110592 C:\Windows\SysWOW64\bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795770645384008 0x746e0000 32768 C:\Windows\SysWOW64\VERSION.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Version Checking and File Installation Libraries 131795770645384008 0x74730000 598016 C:\Windows\SysWOW64\apphelp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиентская библиотека совместимости приложений 131795770645384008 0x747d0000 40960 C:\Windows\SysWOW64\CRYPTBASE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base cryptographic API DLL 131795770645384008 0x747e0000 126976 C:\Windows\SysWOW64\SspiCli.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Security Support Provider Interface 131795770645384008 0x74800000 151552 C:\Windows\SysWOW64\IMM32.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Multi-User Windows IMM32 API Client DLL 131795770645384008 0x74910000 2170880 C:\Windows\SysWOW64\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795770645384008 0x74b30000 53248 C:\Windows\SysWOW64\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795770645384008 0x74b60000 790528 C:\Windows\SysWOW64\RPCRT4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795770645384008 0x74c30000 1417216 C:\Windows\SysWOW64\gdi32full.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation GDI Client DLL 131795770645384008 0x74d90000 24576 C:\Windows\SysWOW64\PSAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Process Status Helper 131795770645384008 0x74da0000 778240 C:\Windows\SysWOW64\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795770645384008 0x74e60000 557056 C:\Windows\SysWOW64\shcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795770645384008 0x74ef0000 540672 C:\Windows\SysWOW64\clbcatq.dll 2001.12.10941.16384 (rs1_release.160715-1616) Microsoft Corporation COM+ Configuration Catalog 131795770645384008 0x74fd0000 405504 C:\Windows\SysWOW64\WS2_32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation 32-разрядная библиотека Windows Socket 2.0 131795770645384008 0x75040000 282624 C:\Windows\SysWOW64\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795770645384008 0x751e0000 1708032 C:\Windows\SysWOW64\KERNELBASE.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645384008 0x75390000 266240 C:\Windows\SysWOW64\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795770645384008 0x75560000 487424 C:\Windows\SysWOW64\ADVAPI32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795770645384008 0x756c0000 5693440 C:\Windows\SysWOW64\windows.storage.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API хранения Microsoft WinRT 131795770645384008 0x75c90000 286720 C:\Windows\SysWOW64\shlwapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека небольших программ оболочки 131795770645384008 0x75ce0000 20811776 C:\Windows\SysWOW64\SHELL32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Общая библиотека оболочки Windows 131795770645384008 0x774d0000 86016 C:\Windows\SysWOW64\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795770645384008 0x774f0000 61440 C:\Windows\SysWOW64\profapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Profile Basic API 131795770645384008 0x77560000 1437696 C:\Windows\SysWOW64\USER32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795770645384008 0x776c0000 368640 C:\Windows\SysWOW64\bcryptPrimitives.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation Windows Cryptographic Primitives Library 131795770645384008 0x77780000 503808 C:\Windows\SysWOW64\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645384008 0x77800000 606208 C:\Windows\SysWOW64\OLEAUT32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795770645384008 0x77ac0000 966656 C:\Windows\SysWOW64\ole32.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft OLE для Windows 131795770645384008 0x77bb0000 176128 C:\Windows\SysWOW64\GDI32.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation GDI Client DLL 131795770645384008 0x77cd0000 221184 C:\Windows\SysWOW64\cfgmgr32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Configuration Manager DLL 131795770645384008 0x77d20000 1585152 C:\Windows\SysWOW64\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 131795770645384008 0x7ffad0270000 1908736 C:\Windows\SYSTEM32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 70 10064 8940 68 00000000:0031f1da 131794957636746019 131795780871972781 0 1 Обязательная метка\Средний обязательный уровень WIN-0UOTFKKVN1S\User Adobe Spaces Helper.exe C:\Program Files\Adobe\Adobe Photoshop CC 2017\Required\Plug-Ins\Spaces\Adobe Spaces Helper.exe "C:\Program Files\Adobe\Adobe Photoshop CC 2017\Required\Plug-Ins\Spaces\Adobe Spaces Helper.exe" --type=renderer --no-sandbox --touch-events=disabled --lang=en-US --lang=ru --locales-dir-path="C:\Program Files\Adobe\Adobe Photoshop CC 2017\Required\Plug-Ins\Spaces\Resources\locales\\" --log-file="C:\Users\User\AppData\Roaming\Adobe\Adobe Photoshop CC 2017\Logs\debug.log" --resources-dir-path="C:\Program Files\Adobe\Adobe Photoshop CC 2017\Required\Plug-Ins\Spaces\Resources\\" --enable-pinch --device-scale-factor=1 --num-raster-threads=1 --content-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --video-image-texture-target=3553 --disable-accelerated-video-decode --disable-webrtc-hw-encoding --disable-gpu-compositing --channel="8940.0.1405287427\319210639" /prefetch:673131151 131795770645384116 0x7ff6c2ef0000 1196032 C:\Program Files\Adobe\Adobe Photoshop CC 2017\Required\Plug-Ins\Spaces\Adobe Spaces Helper.exe 131795770645384116 0x7ffaa1110000 70823936 C:\Program Files\Adobe\Adobe Photoshop CC 2017\Required\Plug-Ins\Spaces\libcef.dll 3.2526.1347.gcf20046 Chromium Embedded Framework (CEF) Dynamic Link Library 131795770645384116 0x7ffab5b40000 2527232 C:\Windows\SYSTEM32\dwrite.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Службы Microsoft DirectX Typography 131795770645384116 0x7ffabbc40000 643072 C:\Windows\SYSTEM32\MSVCP140.dll 14.10.24516.0 built by: VCTOOLSRELESC Microsoft Corporation Microsoft® C Runtime Library 131795770645384116 0x7ffabbce0000 90112 C:\Windows\SYSTEM32\VCRUNTIME140.dll 14.10.24516.0 built by: VCTOOLSRELESC Microsoft Corporation Microsoft® C Runtime Library 131795770645384116 0x7ffabd180000 548864 C:\Windows\SYSTEM32\WINSPOOL.DRV 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Драйвер диспетчера очереди Windows 131795770645384116 0x7ffac2b80000 40960 C:\Windows\SYSTEM32\VERSION.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Version Checking and File Installation Libraries 131795770645384116 0x7ffac34e0000 1843200 C:\Windows\SYSTEM32\urlmon.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширения OLE32 для Win32 131795770645384116 0x7ffac3cb0000 2772992 C:\Windows\SYSTEM32\iertutil.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служебная программа времени выполнения для Internet Explorer 131795770645384116 0x7ffac69c0000 839680 C:\Windows\SYSTEM32\WINHTTP.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Службы HTTP Windows 131795770645384116 0x7ffac6ba0000 49152 C:\Windows\SYSTEM32\Secur32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Security Support Provider Interface 131795770645384116 0x7ffac6bd0000 413696 C:\Windows\SYSTEM32\OLEACC.dll 7.2.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Active Accessibility Core Component 131795770645384116 0x7ffac6c40000 2596864 C:\Windows\WinSxS\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.14393.953_none_42151e83c686086b\COMCTL32.dll 6.10 (rs1_release_inmarket.170303-1614) Microsoft Corporation Библиотека элементов управления взаимодействия с пользователем 131795770645384116 0x7ffac83d0000 106496 C:\Windows\SYSTEM32\dhcpcsvc.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служба DHCP-клиента 131795770645384116 0x7ffac8df0000 1646592 C:\Windows\SYSTEM32\dbghelp.dll 10.0.14321.1024 (rs1_release.160715-1616) Microsoft Windows Image Helper 131795770645384116 0x7ffaca4e0000 77824 C:\Windows\SYSTEM32\WTSAPI32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Remote Desktop Session Host Server SDK APIs 131795770645384116 0x7ffacab20000 102400 C:\Windows\SYSTEM32\USP10.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Uniscribe Unicode script processor 131795770645384116 0x7ffacab40000 176128 C:\Windows\SYSTEM32\WINMMBASE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base Multimedia Extension API DLL 131795770645384116 0x7ffacaba0000 143360 C:\Windows\SYSTEM32\WINMM.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation MCI API DLL 131795770645384116 0x7ffacadf0000 499712 C:\Windows\system32\apphelp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиентская библиотека совместимости приложений 131795770645384116 0x7ffacaf00000 610304 C:\Windows\system32\uxtheme.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека тем UxTheme (Microsoft) 131795770645384116 0x7ffacbd30000 229376 C:\Windows\SYSTEM32\IPHLPAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API вспомогательного приложения IP 131795770645384116 0x7ffacbe40000 126976 C:\Windows\SYSTEM32\USERENV.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Userenv 131795770645384116 0x7ffacc170000 45056 C:\Windows\SYSTEM32\CRYPTBASE.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base cryptographic API DLL 131795770645384116 0x7ffacc350000 180224 C:\Windows\SYSTEM32\SSPICLI.DLL 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Security Support Provider Interface 131795770645384116 0x7ffacc620000 176128 C:\Windows\SYSTEM32\bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795770645384116 0x7ffacc6e0000 61440 C:\Windows\System32\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795770645384116 0x7ffacc6f0000 311296 C:\Windows\System32\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795770645384116 0x7ffacc740000 81920 C:\Windows\System32\profapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Profile Basic API 131795770645384116 0x7ffacc760000 65536 C:\Windows\System32\MSASN1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ASN.1 Runtime APIs 131795770645384116 0x7ffacc8f0000 1003520 C:\Windows\System32\ucrtbase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645384116 0x7ffacc9f0000 434176 C:\Windows\System32\bcryptPrimitives.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Cryptographic Primitives Library 131795770645384116 0x7ffacca60000 122880 C:\Windows\System32\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795770645384116 0x7ffaccae0000 692224 C:\Windows\System32\shcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795770645384116 0x7ffaccb90000 7180288 C:\Windows\System32\windows.storage.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API хранения Microsoft WinRT 131795770645384116 0x7ffacd270000 2215936 C:\Windows\System32\KERNELBASE.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645384116 0x7ffacd490000 1871872 C:\Windows\System32\CRYPT32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API32 криптографии 131795770645384116 0x7ffacd710000 638976 C:\Windows\System32\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645384116 0x7ffacd7b0000 270336 C:\Windows\System32\cfgmgr32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Configuration Manager DLL 131795770645384116 0x7ffacd800000 32768 C:\Windows\System32\PSAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Process Status Helper 131795770645384116 0x7ffacd810000 22056960 C:\Windows\System32\SHELL32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Общая библиотека оболочки Windows 131795770645384116 0x7ffaced20000 782336 C:\Windows\System32\OLEAUT32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795770645384116 0x7ffacee50000 1183744 C:\Windows\System32\RPCRT4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795770645384116 0x7ffacef80000 32768 C:\Windows\System32\NSI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation NSI User-mode interface DLL 131795770645384116 0x7ffacef90000 647168 C:\Windows\System32\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795770645384116 0x7ffacf0d0000 704512 C:\Windows\System32\KERNEL32.DLL 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645384116 0x7ffacf770000 212992 C:\Windows\System32\GDI32.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation GDI Client DLL 131795770645384116 0x7ffacf820000 434176 C:\Windows\System32\WS2_32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation 32-разрядная библиотека Windows Socket 2.0 131795770645384116 0x7ffacf890000 188416 C:\Windows\System32\IMM32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Multi-User Windows IMM32 API Client DLL 131795770645384116 0x7ffacf8c0000 1462272 C:\Windows\System32\USER32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795770645384116 0x7ffacfa30000 1024000 C:\Windows\System32\COMDLG32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека общих диалоговых окон 131795770645384116 0x7ffacfb30000 2916352 C:\Windows\System32\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795770645384116 0x7ffacfe20000 663552 C:\Windows\System32\ADVAPI32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795770645384116 0x7ffad0070000 1277952 C:\Windows\System32\ole32.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft OLE для Windows 131795770645384116 0x7ffad01b0000 335872 C:\Windows\System32\SHLWAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека небольших программ оболочки 131795770645384116 0x7ffad0210000 364544 C:\Windows\System32\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795770645384116 0x7ffad0270000 1908736 C:\Windows\SYSTEM32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 71 8596 8940 68 00000000:0031f1da 131794957641371503 131795780871854772 0 1 Обязательная метка\Средний обязательный уровень WIN-0UOTFKKVN1S\User Adobe Spaces Helper.exe C:\Program Files\Adobe\Adobe Photoshop CC 2017\Required\Plug-Ins\Spaces\Adobe Spaces Helper.exe "C:\Program Files\Adobe\Adobe Photoshop CC 2017\Required\Plug-Ins\Spaces\Adobe Spaces Helper.exe" --type=renderer --no-sandbox --touch-events=disabled --lang=en-US --lang=ru --locales-dir-path="C:\Program Files\Adobe\Adobe Photoshop CC 2017\Required\Plug-Ins\Spaces\Resources\locales\\" --log-file="C:\Users\User\AppData\Roaming\Adobe\Adobe Photoshop CC 2017\Logs\debug.log" --resources-dir-path="C:\Program Files\Adobe\Adobe Photoshop CC 2017\Required\Plug-Ins\Spaces\Resources\\" --enable-pinch --device-scale-factor=1 --num-raster-threads=1 --content-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --video-image-texture-target=3553 --disable-accelerated-video-decode --disable-webrtc-hw-encoding --disable-gpu-compositing --channel="8940.1.1139889345\75461215" /prefetch:673131151 131795770645384222 0x7ff6c2ef0000 1196032 C:\Program Files\Adobe\Adobe Photoshop CC 2017\Required\Plug-Ins\Spaces\Adobe Spaces Helper.exe 131795770645384222 0x7ffaa1110000 70823936 C:\Program Files\Adobe\Adobe Photoshop CC 2017\Required\Plug-Ins\Spaces\libcef.dll 3.2526.1347.gcf20046 Chromium Embedded Framework (CEF) Dynamic Link Library 131795770645384222 0x7ffab5b40000 2527232 C:\Windows\SYSTEM32\dwrite.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Службы Microsoft DirectX Typography 131795770645384222 0x7ffabbc40000 643072 C:\Windows\SYSTEM32\MSVCP140.dll 14.10.24516.0 built by: VCTOOLSRELESC Microsoft Corporation Microsoft® C Runtime Library 131795770645384222 0x7ffabbce0000 90112 C:\Windows\SYSTEM32\VCRUNTIME140.dll 14.10.24516.0 built by: VCTOOLSRELESC Microsoft Corporation Microsoft® C Runtime Library 131795770645384222 0x7ffabd180000 548864 C:\Windows\SYSTEM32\WINSPOOL.DRV 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Драйвер диспетчера очереди Windows 131795770645384222 0x7ffac2b80000 40960 C:\Windows\SYSTEM32\VERSION.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Version Checking and File Installation Libraries 131795770645384222 0x7ffac34e0000 1843200 C:\Windows\SYSTEM32\urlmon.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширения OLE32 для Win32 131795770645384222 0x7ffac3cb0000 2772992 C:\Windows\SYSTEM32\iertutil.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служебная программа времени выполнения для Internet Explorer 131795770645384222 0x7ffac69c0000 839680 C:\Windows\SYSTEM32\WINHTTP.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Службы HTTP Windows 131795770645384222 0x7ffac6ba0000 49152 C:\Windows\SYSTEM32\Secur32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Security Support Provider Interface 131795770645384222 0x7ffac6bd0000 413696 C:\Windows\SYSTEM32\OLEACC.dll 7.2.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Active Accessibility Core Component 131795770645384222 0x7ffac6c40000 2596864 C:\Windows\WinSxS\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.14393.953_none_42151e83c686086b\COMCTL32.dll 6.10 (rs1_release_inmarket.170303-1614) Microsoft Corporation Библиотека элементов управления взаимодействия с пользователем 131795770645384222 0x7ffac83d0000 106496 C:\Windows\SYSTEM32\dhcpcsvc.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служба DHCP-клиента 131795770645384222 0x7ffac8df0000 1646592 C:\Windows\SYSTEM32\dbghelp.dll 10.0.14321.1024 (rs1_release.160715-1616) Microsoft Windows Image Helper 131795770645384222 0x7ffaca4e0000 77824 C:\Windows\SYSTEM32\WTSAPI32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Remote Desktop Session Host Server SDK APIs 131795770645384222 0x7ffacab20000 102400 C:\Windows\SYSTEM32\USP10.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Uniscribe Unicode script processor 131795770645384222 0x7ffacab40000 176128 C:\Windows\SYSTEM32\WINMMBASE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base Multimedia Extension API DLL 131795770645384222 0x7ffacaba0000 143360 C:\Windows\SYSTEM32\WINMM.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation MCI API DLL 131795770645384222 0x7ffacaf00000 610304 C:\Windows\system32\uxtheme.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека тем UxTheme (Microsoft) 131795770645384222 0x7ffacbd30000 229376 C:\Windows\SYSTEM32\IPHLPAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API вспомогательного приложения IP 131795770645384222 0x7ffacbe40000 126976 C:\Windows\SYSTEM32\USERENV.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Userenv 131795770645384222 0x7ffacc170000 45056 C:\Windows\SYSTEM32\CRYPTBASE.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base cryptographic API DLL 131795770645384222 0x7ffacc350000 180224 C:\Windows\SYSTEM32\SSPICLI.DLL 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Security Support Provider Interface 131795770645384222 0x7ffacc620000 176128 C:\Windows\SYSTEM32\bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795770645384222 0x7ffacc6e0000 61440 C:\Windows\System32\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795770645384222 0x7ffacc6f0000 311296 C:\Windows\System32\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795770645384222 0x7ffacc740000 81920 C:\Windows\System32\profapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Profile Basic API 131795770645384222 0x7ffacc760000 65536 C:\Windows\System32\MSASN1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ASN.1 Runtime APIs 131795770645384222 0x7ffacc8f0000 1003520 C:\Windows\System32\ucrtbase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645384222 0x7ffacc9f0000 434176 C:\Windows\System32\bcryptPrimitives.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Cryptographic Primitives Library 131795770645384222 0x7ffacca60000 122880 C:\Windows\System32\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795770645384222 0x7ffaccae0000 692224 C:\Windows\System32\shcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795770645384222 0x7ffaccb90000 7180288 C:\Windows\System32\windows.storage.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API хранения Microsoft WinRT 131795770645384222 0x7ffacd270000 2215936 C:\Windows\System32\KERNELBASE.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645384222 0x7ffacd490000 1871872 C:\Windows\System32\CRYPT32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API32 криптографии 131795770645384222 0x7ffacd710000 638976 C:\Windows\System32\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645384222 0x7ffacd7b0000 270336 C:\Windows\System32\cfgmgr32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Configuration Manager DLL 131795770645384222 0x7ffacd800000 32768 C:\Windows\System32\PSAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Process Status Helper 131795770645384222 0x7ffacd810000 22056960 C:\Windows\System32\SHELL32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Общая библиотека оболочки Windows 131795770645384222 0x7ffaced20000 782336 C:\Windows\System32\OLEAUT32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795770645384222 0x7ffacee50000 1183744 C:\Windows\System32\RPCRT4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795770645384222 0x7ffacef80000 32768 C:\Windows\System32\NSI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation NSI User-mode interface DLL 131795770645384222 0x7ffacef90000 647168 C:\Windows\System32\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795770645384222 0x7ffacf0d0000 704512 C:\Windows\System32\KERNEL32.DLL 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645384222 0x7ffacf770000 212992 C:\Windows\System32\GDI32.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation GDI Client DLL 131795770645384222 0x7ffacf820000 434176 C:\Windows\System32\WS2_32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation 32-разрядная библиотека Windows Socket 2.0 131795770645384222 0x7ffacf890000 188416 C:\Windows\System32\IMM32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Multi-User Windows IMM32 API Client DLL 131795770645384222 0x7ffacf8c0000 1462272 C:\Windows\System32\USER32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795770645384222 0x7ffacfa30000 1024000 C:\Windows\System32\COMDLG32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека общих диалоговых окон 131795770645384222 0x7ffacfb30000 2916352 C:\Windows\System32\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795770645384222 0x7ffacfe20000 663552 C:\Windows\System32\ADVAPI32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795770645384222 0x7ffad0070000 1277952 C:\Windows\System32\ole32.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft OLE для Windows 131795770645384222 0x7ffad01b0000 335872 C:\Windows\System32\SHLWAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека небольших программ оболочки 131795770645384222 0x7ffad0210000 364544 C:\Windows\System32\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795770645384222 0x7ffad0270000 1908736 C:\Windows\SYSTEM32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 72 11172 8940 68 00000000:0031f1da 131794957658059215 131795780685488658 1 0 Обязательная метка\Средний обязательный уровень WIN-0UOTFKKVN1S\User CEPHtmlEngine.exe C:\Program Files\Adobe\Adobe Photoshop CC 2017\Required\CEP\CEPHtmlEngine\CEPHtmlEngine.exe "C:\Program Files\Adobe\Adobe Photoshop CC 2017\Required\CEP\CEPHtmlEngine\CEPHtmlEngine.exe" "C:\Program Files (x86)\Common Files\Adobe\CEP\extensions\com.adobe.previewHD\PSLoader\loader.html" 2ec98b7b-08f4-4716-915a-e20a700b24cb 8940 PHXS 18.0.1 com.adobe.preview.loader 1 "C:\Program Files (x86)\Common Files\Adobe\CEP\extensions\com.adobe.previewHD" "Photoshop" 16 WyItLWVuYWJsZS1ub2RlanMiXQ== ru_RU 4293980400 1 Adobe Systems Incorporated 7.0.0 Adobe CEP HTML Engine 131795770645384338 0x240000 4014080 C:\Program Files\Adobe\Adobe Photoshop CC 2017\Required\CEP\CEPHtmlEngine\CEPHtmlEngine.exe 7.0.0 Adobe Systems Incorporated Adobe CEP HTML Engine 131795770645384338 0x5c020000 335872 C:\Windows\System32\wow64.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation Win32 Emulation on NT64 131795770645384338 0x5c080000 487424 C:\Windows\System32\wow64win.dll 10.0.14393.1884 (rs1_release.171101-1233) Microsoft Corporation Wow64 Console and Win32 API Logging 131795770645384338 0x5c100000 40960 C:\Windows\System32\wow64cpu.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation AMD64 Wow64 CPU 131795770645384338 0x5d110000 44531712 C:\Program Files\Adobe\Adobe Photoshop CC 2017\Required\CEP\CEPHtmlEngine\libcef.dll 3.2272.67.g479a5bd Chromium Embedded Framework (CEF) Dynamic Link Library 131795770645384338 0x60750000 1556480 C:\Program Files (x86)\360\Total Security\safemon\safemon.dll 8, 4, 0, 1420 Qihu 360 Software Co., Ltd. 360 Internet Security Internet Protection 131795770645384338 0x6c290000 987136 C:\Windows\SysWOW64\twinapi.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation twinapi.appcore 131795770645384338 0x6c390000 1126400 C:\Windows\SysWOW64\dcomp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft DirectComposition Library 131795770645384338 0x6c4b0000 278528 C:\Windows\SysWOW64\dataexchange.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation Data exchange 131795770645384338 0x6d0b0000 847872 C:\Windows\SysWOW64\wintypes.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL основных типов Windows 131795770645384338 0x6e210000 81920 C:\Windows\SysWOW64\VCRUNTIME140.dll 14.10.24516.0 built by: VCTOOLSRELESC Microsoft Corporation Microsoft® C Runtime Library 131795770645384338 0x6e230000 446464 C:\Windows\SysWOW64\MSVCP140.dll 14.10.24516.0 built by: VCTOOLSRELESC Microsoft Corporation Microsoft® C Runtime Library 131795770645384338 0x6fd30000 139264 C:\Windows\SysWOW64\DEVOBJ.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Device Information Set DLL 131795770645384338 0x6fd60000 360448 C:\Windows\SysWOW64\MMDevAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation MMDevice API 131795770645384338 0x6fdc0000 507904 C:\Windows\SysWOW64\audioses.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Сеанс обработки звука 131795770645384338 0x700d0000 434176 C:\Windows\SysWOW64\WINSPOOL.DRV 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Драйвер диспетчера очереди Windows 131795770645384338 0x70140000 274432 C:\Windows\SysWOW64\WINSTA.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Winstation Library 131795770645384338 0x70340000 536576 C:\Windows\SysWOW64\dxgi.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation DirectX Graphics Infrastructure 131795770645384338 0x703d0000 2056192 C:\Windows\SysWOW64\dwrite.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Службы Microsoft DirectX Typography 131795770645384338 0x705e0000 344064 C:\Windows\SysWOW64\OLEACC.dll 7.2.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Active Accessibility Core Component 131795770645384338 0x70a20000 94208 C:\Windows\SysWOW64\USP10.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Uniscribe Unicode script processor 131795770645384338 0x70a40000 81920 C:\Windows\SysWOW64\NLAapi.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Network Location Awareness 2 131795770645384338 0x70ca0000 45056 C:\Windows\SysWOW64\NETUTILS.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API Helpers DLL 131795770645384338 0x70cb0000 65536 C:\Windows\SysWOW64\WKSCLI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Workstation Service Client DLL 131795770645384338 0x71140000 77824 C:\Windows\SysWOW64\NETAPI32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API DLL 131795770645384338 0x71610000 77824 C:\Windows\SysWOW64\dhcpcsvc6.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиент DHCPv6 131795770645384338 0x725e0000 2273280 C:\Windows\SysWOW64\iertutil.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служебная программа времени выполнения для Internet Explorer 131795770645384338 0x728e0000 1372160 C:\Windows\SysWOW64\PROPSYS.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Система страниц свойств (Майкрософт) 131795770645384338 0x72b90000 126976 C:\Windows\SysWOW64\dwmapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Интерфейс API диспетчера окон рабочего стола (Майкрософт) 131795770645384338 0x72cc0000 1658880 C:\Windows\SysWOW64\urlmon.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширения OLE32 для Win32 131795770645384338 0x73ab0000 32768 C:\Windows\SysWOW64\rasadhlp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Remote Access AutoDial Helper 131795770645384338 0x73ac0000 81920 C:\Windows\SysWOW64\dhcpcsvc.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служба DHCP-клиента 131795770645384338 0x73ae0000 40960 C:\Windows\SysWOW64\Secur32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Security Support Provider Interface 131795770645384338 0x73ee0000 61440 C:\Windows\SysWOW64\WTSAPI32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Remote Desktop Session Host Server SDK APIs 131795770645384338 0x73f00000 192512 C:\Windows\SysWOW64\IPHLPAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API вспомогательного приложения IP 131795770645384338 0x73f30000 512000 C:\Windows\SysWOW64\DNSAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Динамическая библиотека API DNS-клиента 131795770645384338 0x73ff0000 319488 C:\Windows\SysWOW64\mswsock.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширение поставщика службы API Microsoft Windows Sockets 2.0 131795770645384338 0x74040000 126976 C:\Windows\SysWOW64\gpapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиентские функции API групповой политики 131795770645384338 0x74060000 192512 C:\Windows\SysWOW64\rsaenh.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Enhanced Cryptographic Provider 131795770645384338 0x74110000 479232 C:\Windows\SysWOW64\uxtheme.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека тем UxTheme (Microsoft) 131795770645384338 0x74190000 110592 C:\Windows\SysWOW64\bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795770645384338 0x741b0000 77824 C:\Windows\SysWOW64\CRYPTSP.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Cryptographic Service Provider API 131795770645384338 0x741f0000 143360 C:\Windows\SysWOW64\WINMMBASE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base Multimedia Extension API DLL 131795770645384338 0x74230000 147456 C:\Windows\SysWOW64\WINMM.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation MCI API DLL 131795770645384338 0x744d0000 2138112 C:\Windows\WinSxS\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.14393.953_none_89c2555adb023171\COMCTL32.dll 6.10 (rs1_release_inmarket.170303-1614) Microsoft Corporation Библиотека элементов управления взаимодействия с пользователем 131795770645384338 0x746e0000 32768 C:\Windows\SysWOW64\VERSION.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Version Checking and File Installation Libraries 131795770645384338 0x746f0000 106496 C:\Windows\SysWOW64\USERENV.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Userenv 131795770645384338 0x747d0000 40960 C:\Windows\SysWOW64\CRYPTBASE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base cryptographic API DLL 131795770645384338 0x747e0000 126976 C:\Windows\SysWOW64\SspiCli.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Security Support Provider Interface 131795770645384338 0x74800000 151552 C:\Windows\SysWOW64\IMM32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Multi-User Windows IMM32 API Client DLL 131795770645384338 0x74910000 2170880 C:\Windows\SysWOW64\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795770645384338 0x74b30000 53248 C:\Windows\SysWOW64\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795770645384338 0x74b60000 790528 C:\Windows\SysWOW64\RPCRT4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795770645384338 0x74c30000 1417216 C:\Windows\SysWOW64\gdi32full.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation GDI Client DLL 131795770645384338 0x74d90000 24576 C:\Windows\SysWOW64\PSAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Process Status Helper 131795770645384338 0x74da0000 778240 C:\Windows\SysWOW64\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795770645384338 0x74e60000 557056 C:\Windows\SysWOW64\shcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795770645384338 0x74ef0000 540672 C:\Windows\SysWOW64\clbcatq.dll 2001.12.10941.16384 (rs1_release.160715-1616) Microsoft Corporation COM+ Configuration Catalog 131795770645384338 0x74f80000 278528 C:\Windows\SysWOW64\WINTRUST.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation Microsoft Trust Verification APIs 131795770645384338 0x74fd0000 405504 C:\Windows\SysWOW64\WS2_32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation 32-разрядная библиотека Windows Socket 2.0 131795770645384338 0x75040000 282624 C:\Windows\SysWOW64\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795770645384338 0x75090000 1265664 C:\Windows\SysWOW64\MSCTF.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Серверная библиотека MSCTF 131795770645384338 0x751d0000 57344 C:\Windows\SysWOW64\MSASN1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ASN.1 Runtime APIs 131795770645384338 0x751e0000 1708032 C:\Windows\SysWOW64\KERNELBASE.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645384338 0x75390000 266240 C:\Windows\SysWOW64\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795770645384338 0x753e0000 1560576 C:\Windows\SysWOW64\CRYPT32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API32 криптографии 131795770645384338 0x75560000 487424 C:\Windows\SysWOW64\advapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795770645384338 0x756c0000 5693440 C:\Windows\SysWOW64\windows.storage.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API хранения Microsoft WinRT 131795770645384338 0x75c90000 286720 C:\Windows\SysWOW64\SHLWAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека небольших программ оболочки 131795770645384338 0x75ce0000 20811776 C:\Windows\SysWOW64\SHELL32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Общая библиотека оболочки Windows 131795770645384338 0x770c0000 4239360 C:\Windows\SysWOW64\SETUPAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Setup API 131795770645384338 0x774d0000 86016 C:\Windows\SysWOW64\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795770645384338 0x774f0000 61440 C:\Windows\SysWOW64\profapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Profile Basic API 131795770645384338 0x77560000 1437696 C:\Windows\SysWOW64\USER32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795770645384338 0x776c0000 368640 C:\Windows\SysWOW64\bcryptPrimitives.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation Windows Cryptographic Primitives Library 131795770645384338 0x77780000 503808 C:\Windows\SysWOW64\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645384338 0x77800000 606208 C:\Windows\SysWOW64\OLEAUT32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795770645384338 0x77ac0000 966656 C:\Windows\SysWOW64\ole32.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft OLE для Windows 131795770645384338 0x77bb0000 176128 C:\Windows\SysWOW64\GDI32.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation GDI Client DLL 131795770645384338 0x77be0000 937984 C:\Windows\SysWOW64\COMDLG32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека общих диалоговых окон 131795770645384338 0x77cd0000 221184 C:\Windows\SysWOW64\cfgmgr32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Configuration Manager DLL 131795770645384338 0x77d10000 28672 C:\Windows\SysWOW64\NSI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation NSI User-mode interface DLL 131795770645384338 0x77d20000 1585152 C:\Windows\SysWOW64\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 131795770645384338 0x7ffad0270000 1908736 C:\Windows\SYSTEM32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 73 11216 11172 72 00000000:0031f1da 131794957800622174 131795780687170604 1 0 Обязательная метка\Средний обязательный уровень WIN-0UOTFKKVN1S\User CEPHtmlEngine.exe C:\Program Files\Adobe\Adobe Photoshop CC 2017\Required\CEP\CEPHtmlEngine\CEPHtmlEngine.exe "C:\Program Files\Adobe\Adobe Photoshop CC 2017\Required\CEP\CEPHtmlEngine\CEPHtmlEngine.exe" --type=renderer --no-sandbox --enable-deferred-image-decoding --lang=en-US --lang=ru --log-file="C:\Users\User\AppData\Local\Temp\CEPHtmlEngine7-PHXS-18.0.1-com.adobe.preview.loader.log" --log-severity=error --params_ppid=PHXS --params_ppversion=18.0.1 --params_extensionid=com.adobe.preview.loader --params_loglevel=1 --params_serverid=8940 --params_extensionuuid=2ec98b7b-08f4-4716-915a-e20a700b24cb --params_windowid=70742 --params_commandline=WyItLWVuYWJsZS1ub2RlanMiXQ== --enable-pinch --device-scale-factor=1 --font-cache-shared-mem-suffix=11172 --enable-pinch-virtual-viewport --enable-delegated-renderer --num-raster-threads=1 --disable-accelerated-video-decode --disable-webrtc-hw-encoding --disable-gpu-compositing --channel="11172.0.296388529\1274093304" /prefetch:673131151 Adobe Systems Incorporated 7.0.0 Adobe CEP HTML Engine 131795770645384488 0x240000 4014080 C:\Program Files\Adobe\Adobe Photoshop CC 2017\Required\CEP\CEPHtmlEngine\CEPHtmlEngine.exe 7.0.0 Adobe Systems Incorporated Adobe CEP HTML Engine 131795770645384488 0x5c020000 335872 C:\Windows\System32\wow64.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation Win32 Emulation on NT64 131795770645384488 0x5c080000 487424 C:\Windows\System32\wow64win.dll 10.0.14393.1884 (rs1_release.171101-1233) Microsoft Corporation Wow64 Console and Win32 API Logging 131795770645384488 0x5c100000 40960 C:\Windows\System32\wow64cpu.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation AMD64 Wow64 CPU 131795770645384488 0x5d110000 44531712 C:\Program Files\Adobe\Adobe Photoshop CC 2017\Required\CEP\CEPHtmlEngine\libcef.dll 3.2272.67.g479a5bd Chromium Embedded Framework (CEF) Dynamic Link Library 131795770645384488 0x6d990000 3055616 C:\Program Files\Adobe\Adobe Photoshop CC 2017\Required\CEP\CEPHtmlEngine\ffmpegsumo.dll 41.0.2272.104 The Chromium Authors Chromium 131795770645384488 0x6e210000 81920 C:\Windows\SysWOW64\VCRUNTIME140.dll 14.10.24516.0 built by: VCTOOLSRELESC Microsoft Corporation Microsoft® C Runtime Library 131795770645384488 0x6e230000 446464 C:\Windows\SysWOW64\MSVCP140.dll 14.10.24516.0 built by: VCTOOLSRELESC Microsoft Corporation Microsoft® C Runtime Library 131795770645384488 0x700d0000 434176 C:\Windows\SysWOW64\WINSPOOL.DRV 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Драйвер диспетчера очереди Windows 131795770645384488 0x703d0000 2056192 C:\Windows\SysWOW64\dwrite.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Службы Microsoft DirectX Typography 131795770645384488 0x705e0000 344064 C:\Windows\SysWOW64\OLEACC.dll 7.2.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Active Accessibility Core Component 131795770645384488 0x70a20000 94208 C:\Windows\SysWOW64\USP10.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Uniscribe Unicode script processor 131795770645384488 0x70a40000 81920 C:\Windows\SysWOW64\NLAapi.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Network Location Awareness 2 131795770645384488 0x70a60000 90112 C:\Windows\SysWOW64\pnrpnsp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик пространства имен PNRP 131795770645384488 0x70c00000 49152 C:\Windows\SysWOW64\winrnr.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation LDAP RnR Provider DLL 131795770645384488 0x70c10000 73728 C:\Windows\SysWOW64\napinsp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик оболочки совместимости для имен электронной почты 131795770645384488 0x71610000 77824 C:\Windows\SysWOW64\dhcpcsvc6.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиент DHCPv6 131795770645384488 0x725e0000 2273280 C:\Windows\SysWOW64\iertutil.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служебная программа времени выполнения для Internet Explorer 131795770645384488 0x72af0000 655360 C:\Windows\SysWOW64\WINHTTP.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Службы HTTP Windows 131795770645384488 0x72cc0000 1658880 C:\Windows\SysWOW64\urlmon.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширения OLE32 для Win32 131795770645384488 0x73ac0000 81920 C:\Windows\SysWOW64\dhcpcsvc.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служба DHCP-клиента 131795770645384488 0x73ae0000 40960 C:\Windows\SysWOW64\Secur32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Security Support Provider Interface 131795770645384488 0x73ee0000 61440 C:\Windows\SysWOW64\WTSAPI32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Remote Desktop Session Host Server SDK APIs 131795770645384488 0x73f00000 192512 C:\Windows\SysWOW64\IPHLPAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API вспомогательного приложения IP 131795770645384488 0x73f30000 512000 C:\Windows\SysWOW64\DNSAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Динамическая библиотека API DNS-клиента 131795770645384488 0x73ff0000 319488 C:\Windows\SysWOW64\mswsock.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширение поставщика службы API Microsoft Windows Sockets 2.0 131795770645384488 0x74060000 192512 C:\Windows\SysWOW64\rsaenh.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Enhanced Cryptographic Provider 131795770645384488 0x74110000 479232 C:\Windows\SysWOW64\uxtheme.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека тем UxTheme (Microsoft) 131795770645384488 0x74190000 110592 C:\Windows\SysWOW64\bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795770645384488 0x741b0000 77824 C:\Windows\SysWOW64\CRYPTSP.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Cryptographic Service Provider API 131795770645384488 0x741f0000 143360 C:\Windows\SysWOW64\WINMMBASE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base Multimedia Extension API DLL 131795770645384488 0x74230000 147456 C:\Windows\SysWOW64\WINMM.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation MCI API DLL 131795770645384488 0x744d0000 2138112 C:\Windows\WinSxS\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.14393.953_none_89c2555adb023171\COMCTL32.dll 6.10 (rs1_release_inmarket.170303-1614) Microsoft Corporation Библиотека элементов управления взаимодействия с пользователем 131795770645384488 0x746e0000 32768 C:\Windows\SysWOW64\VERSION.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Version Checking and File Installation Libraries 131795770645384488 0x746f0000 106496 C:\Windows\SysWOW64\USERENV.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Userenv 131795770645384488 0x747d0000 40960 C:\Windows\SysWOW64\CRYPTBASE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base cryptographic API DLL 131795770645384488 0x747e0000 126976 C:\Windows\SysWOW64\SspiCli.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Security Support Provider Interface 131795770645384488 0x74800000 151552 C:\Windows\SysWOW64\IMM32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Multi-User Windows IMM32 API Client DLL 131795770645384488 0x74910000 2170880 C:\Windows\SysWOW64\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795770645384488 0x74b30000 53248 C:\Windows\SysWOW64\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795770645384488 0x74b60000 790528 C:\Windows\SysWOW64\RPCRT4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795770645384488 0x74c30000 1417216 C:\Windows\SysWOW64\gdi32full.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation GDI Client DLL 131795770645384488 0x74d90000 24576 C:\Windows\SysWOW64\PSAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Process Status Helper 131795770645384488 0x74da0000 778240 C:\Windows\SysWOW64\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795770645384488 0x74e60000 557056 C:\Windows\SysWOW64\shcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795770645384488 0x74fd0000 405504 C:\Windows\SysWOW64\WS2_32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation 32-разрядная библиотека Windows Socket 2.0 131795770645384488 0x75040000 282624 C:\Windows\SysWOW64\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795770645384488 0x751d0000 57344 C:\Windows\SysWOW64\MSASN1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ASN.1 Runtime APIs 131795770645384488 0x751e0000 1708032 C:\Windows\SysWOW64\KERNELBASE.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645384488 0x75390000 266240 C:\Windows\SysWOW64\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795770645384488 0x753e0000 1560576 C:\Windows\SysWOW64\CRYPT32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API32 криптографии 131795770645384488 0x75560000 487424 C:\Windows\SysWOW64\advapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795770645384488 0x756c0000 5693440 C:\Windows\SysWOW64\windows.storage.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API хранения Microsoft WinRT 131795770645384488 0x75c90000 286720 C:\Windows\SysWOW64\SHLWAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека небольших программ оболочки 131795770645384488 0x75ce0000 20811776 C:\Windows\SysWOW64\SHELL32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Общая библиотека оболочки Windows 131795770645384488 0x774d0000 86016 C:\Windows\SysWOW64\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795770645384488 0x774f0000 61440 C:\Windows\SysWOW64\profapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Profile Basic API 131795770645384488 0x77560000 1437696 C:\Windows\SysWOW64\USER32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795770645384488 0x776c0000 368640 C:\Windows\SysWOW64\bcryptPrimitives.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation Windows Cryptographic Primitives Library 131795770645384488 0x77780000 503808 C:\Windows\SysWOW64\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645384488 0x77800000 606208 C:\Windows\SysWOW64\OLEAUT32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795770645384488 0x77ac0000 966656 C:\Windows\SysWOW64\ole32.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft OLE для Windows 131795770645384488 0x77bb0000 176128 C:\Windows\SysWOW64\GDI32.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation GDI Client DLL 131795770645384488 0x77be0000 937984 C:\Windows\SysWOW64\COMDLG32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека общих диалоговых окон 131795770645384488 0x77cd0000 221184 C:\Windows\SysWOW64\cfgmgr32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Configuration Manager DLL 131795770645384488 0x77d10000 28672 C:\Windows\SysWOW64\NSI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation NSI User-mode interface DLL 131795770645384488 0x77d20000 1585152 C:\Windows\SysWOW64\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 131795770645384488 0x7ffad0270000 1908736 C:\Windows\SYSTEM32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 74 10844 8940 68 00000000:0031f1da 131794958201141405 131795780685576568 1 0 Обязательная метка\Средний обязательный уровень WIN-0UOTFKKVN1S\User CEPHtmlEngine.exe C:\Program Files\Adobe\Adobe Photoshop CC 2017\Required\CEP\CEPHtmlEngine\CEPHtmlEngine.exe "C:\Program Files\Adobe\Adobe Photoshop CC 2017\Required\CEP\CEPHtmlEngine\CEPHtmlEngine.exe" "C:\Program Files\Adobe\Adobe Photoshop CC 2017\Required\CEP\extensions\com.adobe.experimentation.extension\index.html" e44c0384-b65f-4f05-a36a-c6092cb32d00 8940 PHXS 18.0.1 com.adobe.experimentation.extension 1 "C:\Program Files\Adobe\Adobe Photoshop CC 2017\Required\CEP\extensions\com.adobe.experimentation.extension" "Photoshop" 16 WyItLWVuYWJsZS1ub2RlanMiXQ== ru_RU 4293980400 1 Adobe Systems Incorporated 7.0.0 Adobe CEP HTML Engine 131795770645384610 0x240000 4014080 C:\Program Files\Adobe\Adobe Photoshop CC 2017\Required\CEP\CEPHtmlEngine\CEPHtmlEngine.exe 7.0.0 Adobe Systems Incorporated Adobe CEP HTML Engine 131795770645384610 0x5c020000 335872 C:\Windows\System32\wow64.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation Win32 Emulation on NT64 131795770645384610 0x5c080000 487424 C:\Windows\System32\wow64win.dll 10.0.14393.1884 (rs1_release.171101-1233) Microsoft Corporation Wow64 Console and Win32 API Logging 131795770645384610 0x5c100000 40960 C:\Windows\System32\wow64cpu.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation AMD64 Wow64 CPU 131795770645384610 0x5d110000 44531712 C:\Program Files\Adobe\Adobe Photoshop CC 2017\Required\CEP\CEPHtmlEngine\libcef.dll 3.2272.67.g479a5bd Chromium Embedded Framework (CEF) Dynamic Link Library 131795770645384610 0x60750000 1556480 C:\Program Files (x86)\360\Total Security\safemon\safemon.dll 8, 4, 0, 1420 Qihu 360 Software Co., Ltd. 360 Internet Security Internet Protection 131795770645384610 0x6c290000 987136 C:\Windows\SysWOW64\twinapi.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation twinapi.appcore 131795770645384610 0x6c390000 1126400 C:\Windows\SysWOW64\dcomp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft DirectComposition Library 131795770645384610 0x6c4b0000 278528 C:\Windows\SysWOW64\dataexchange.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation Data exchange 131795770645384610 0x6d0b0000 847872 C:\Windows\SysWOW64\wintypes.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL основных типов Windows 131795770645384610 0x6e210000 81920 C:\Windows\SysWOW64\VCRUNTIME140.dll 14.10.24516.0 built by: VCTOOLSRELESC Microsoft Corporation Microsoft® C Runtime Library 131795770645384610 0x6e230000 446464 C:\Windows\SysWOW64\MSVCP140.dll 14.10.24516.0 built by: VCTOOLSRELESC Microsoft Corporation Microsoft® C Runtime Library 131795770645384610 0x6fd30000 139264 C:\Windows\SysWOW64\DEVOBJ.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Device Information Set DLL 131795770645384610 0x6fd60000 360448 C:\Windows\SysWOW64\MMDevAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation MMDevice API 131795770645384610 0x6fdc0000 507904 C:\Windows\SysWOW64\audioses.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Сеанс обработки звука 131795770645384610 0x700d0000 434176 C:\Windows\SysWOW64\WINSPOOL.DRV 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Драйвер диспетчера очереди Windows 131795770645384610 0x70140000 274432 C:\Windows\SysWOW64\WINSTA.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Winstation Library 131795770645384610 0x70340000 536576 C:\Windows\SysWOW64\dxgi.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation DirectX Graphics Infrastructure 131795770645384610 0x703d0000 2056192 C:\Windows\SysWOW64\dwrite.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Службы Microsoft DirectX Typography 131795770645384610 0x705e0000 344064 C:\Windows\SysWOW64\OLEACC.dll 7.2.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Active Accessibility Core Component 131795770645384610 0x70a20000 94208 C:\Windows\SysWOW64\USP10.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Uniscribe Unicode script processor 131795770645384610 0x70a40000 81920 C:\Windows\SysWOW64\NLAapi.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Network Location Awareness 2 131795770645384610 0x70ca0000 45056 C:\Windows\SysWOW64\NETUTILS.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API Helpers DLL 131795770645384610 0x70cb0000 65536 C:\Windows\SysWOW64\WKSCLI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Workstation Service Client DLL 131795770645384610 0x71140000 77824 C:\Windows\SysWOW64\NETAPI32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API DLL 131795770645384610 0x71610000 77824 C:\Windows\SysWOW64\dhcpcsvc6.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиент DHCPv6 131795770645384610 0x725e0000 2273280 C:\Windows\SysWOW64\iertutil.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служебная программа времени выполнения для Internet Explorer 131795770645384610 0x728e0000 1372160 C:\Windows\SysWOW64\PROPSYS.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Система страниц свойств (Майкрософт) 131795770645384610 0x72b90000 126976 C:\Windows\SysWOW64\dwmapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Интерфейс API диспетчера окон рабочего стола (Майкрософт) 131795770645384610 0x72cc0000 1658880 C:\Windows\SysWOW64\urlmon.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширения OLE32 для Win32 131795770645384610 0x73ab0000 32768 C:\Windows\SysWOW64\rasadhlp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Remote Access AutoDial Helper 131795770645384610 0x73ac0000 81920 C:\Windows\SysWOW64\dhcpcsvc.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служба DHCP-клиента 131795770645384610 0x73ae0000 40960 C:\Windows\SysWOW64\Secur32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Security Support Provider Interface 131795770645384610 0x73ee0000 61440 C:\Windows\SysWOW64\WTSAPI32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Remote Desktop Session Host Server SDK APIs 131795770645384610 0x73f00000 192512 C:\Windows\SysWOW64\IPHLPAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API вспомогательного приложения IP 131795770645384610 0x73f30000 512000 C:\Windows\SysWOW64\DNSAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Динамическая библиотека API DNS-клиента 131795770645384610 0x73ff0000 319488 C:\Windows\SysWOW64\mswsock.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширение поставщика службы API Microsoft Windows Sockets 2.0 131795770645384610 0x74040000 126976 C:\Windows\SysWOW64\gpapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиентские функции API групповой политики 131795770645384610 0x74060000 192512 C:\Windows\SysWOW64\rsaenh.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Enhanced Cryptographic Provider 131795770645384610 0x74110000 479232 C:\Windows\SysWOW64\uxtheme.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека тем UxTheme (Microsoft) 131795770645384610 0x74190000 110592 C:\Windows\SysWOW64\bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795770645384610 0x741b0000 77824 C:\Windows\SysWOW64\CRYPTSP.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Cryptographic Service Provider API 131795770645384610 0x741f0000 143360 C:\Windows\SysWOW64\WINMMBASE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base Multimedia Extension API DLL 131795770645384610 0x74230000 147456 C:\Windows\SysWOW64\WINMM.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation MCI API DLL 131795770645384610 0x744d0000 2138112 C:\Windows\WinSxS\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.14393.953_none_89c2555adb023171\COMCTL32.dll 6.10 (rs1_release_inmarket.170303-1614) Microsoft Corporation Библиотека элементов управления взаимодействия с пользователем 131795770645384610 0x746e0000 32768 C:\Windows\SysWOW64\VERSION.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Version Checking and File Installation Libraries 131795770645384610 0x746f0000 106496 C:\Windows\SysWOW64\USERENV.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Userenv 131795770645384610 0x747d0000 40960 C:\Windows\SysWOW64\CRYPTBASE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base cryptographic API DLL 131795770645384610 0x747e0000 126976 C:\Windows\SysWOW64\SspiCli.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Security Support Provider Interface 131795770645384610 0x74800000 151552 C:\Windows\SysWOW64\IMM32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Multi-User Windows IMM32 API Client DLL 131795770645384610 0x74910000 2170880 C:\Windows\SysWOW64\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795770645384610 0x74b30000 53248 C:\Windows\SysWOW64\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795770645384610 0x74b60000 790528 C:\Windows\SysWOW64\RPCRT4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795770645384610 0x74c30000 1417216 C:\Windows\SysWOW64\gdi32full.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation GDI Client DLL 131795770645384610 0x74d90000 24576 C:\Windows\SysWOW64\PSAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Process Status Helper 131795770645384610 0x74da0000 778240 C:\Windows\SysWOW64\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795770645384610 0x74e60000 557056 C:\Windows\SysWOW64\shcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795770645384610 0x74ef0000 540672 C:\Windows\SysWOW64\clbcatq.dll 2001.12.10941.16384 (rs1_release.160715-1616) Microsoft Corporation COM+ Configuration Catalog 131795770645384610 0x74f80000 278528 C:\Windows\SysWOW64\WINTRUST.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation Microsoft Trust Verification APIs 131795770645384610 0x74fd0000 405504 C:\Windows\SysWOW64\WS2_32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation 32-разрядная библиотека Windows Socket 2.0 131795770645384610 0x75040000 282624 C:\Windows\SysWOW64\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795770645384610 0x75090000 1265664 C:\Windows\SysWOW64\MSCTF.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Серверная библиотека MSCTF 131795770645384610 0x751d0000 57344 C:\Windows\SysWOW64\MSASN1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ASN.1 Runtime APIs 131795770645384610 0x751e0000 1708032 C:\Windows\SysWOW64\KERNELBASE.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645384610 0x75390000 266240 C:\Windows\SysWOW64\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795770645384610 0x753e0000 1560576 C:\Windows\SysWOW64\CRYPT32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API32 криптографии 131795770645384610 0x75560000 487424 C:\Windows\SysWOW64\advapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795770645384610 0x756c0000 5693440 C:\Windows\SysWOW64\windows.storage.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API хранения Microsoft WinRT 131795770645384610 0x75c90000 286720 C:\Windows\SysWOW64\SHLWAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека небольших программ оболочки 131795770645384610 0x75ce0000 20811776 C:\Windows\SysWOW64\SHELL32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Общая библиотека оболочки Windows 131795770645384610 0x770c0000 4239360 C:\Windows\SysWOW64\SETUPAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Setup API 131795770645384610 0x774d0000 86016 C:\Windows\SysWOW64\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795770645384610 0x774f0000 61440 C:\Windows\SysWOW64\profapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Profile Basic API 131795770645384610 0x77560000 1437696 C:\Windows\SysWOW64\USER32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795770645384610 0x776c0000 368640 C:\Windows\SysWOW64\bcryptPrimitives.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation Windows Cryptographic Primitives Library 131795770645384610 0x77780000 503808 C:\Windows\SysWOW64\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645384610 0x77800000 606208 C:\Windows\SysWOW64\OLEAUT32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795770645384610 0x77ac0000 966656 C:\Windows\SysWOW64\ole32.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft OLE для Windows 131795770645384610 0x77bb0000 176128 C:\Windows\SysWOW64\GDI32.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation GDI Client DLL 131795770645384610 0x77be0000 937984 C:\Windows\SysWOW64\COMDLG32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека общих диалоговых окон 131795770645384610 0x77cd0000 221184 C:\Windows\SysWOW64\cfgmgr32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Configuration Manager DLL 131795770645384610 0x77d10000 28672 C:\Windows\SysWOW64\NSI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation NSI User-mode interface DLL 131795770645384610 0x77d20000 1585152 C:\Windows\SysWOW64\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 131795770645384610 0x7ffad0270000 1908736 C:\Windows\SYSTEM32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 75 9092 10844 74 00000000:0031f1da 131794958208470288 131795780687158805 1 0 Обязательная метка\Средний обязательный уровень WIN-0UOTFKKVN1S\User CEPHtmlEngine.exe C:\Program Files\Adobe\Adobe Photoshop CC 2017\Required\CEP\CEPHtmlEngine\CEPHtmlEngine.exe "C:\Program Files\Adobe\Adobe Photoshop CC 2017\Required\CEP\CEPHtmlEngine\CEPHtmlEngine.exe" --type=renderer --no-sandbox --enable-deferred-image-decoding --lang=en-US --lang=ru --log-file="C:\Users\User\AppData\Local\Temp\CEPHtmlEngine7-PHXS-18.0.1-com.adobe.experimentation.extension.log" --log-severity=error --params_ppid=PHXS --params_ppversion=18.0.1 --params_extensionid=com.adobe.experimentation.extension --params_loglevel=1 --params_serverid=8940 --params_extensionuuid=e44c0384-b65f-4f05-a36a-c6092cb32d00 --params_windowid=198892 --params_commandline=WyItLWVuYWJsZS1ub2RlanMiXQ== --enable-pinch --device-scale-factor=1 --font-cache-shared-mem-suffix=10844 --enable-pinch-virtual-viewport --enable-delegated-renderer --num-raster-threads=1 --disable-accelerated-video-decode --disable-webrtc-hw-encoding --disable-gpu-compositing --channel="10844.0.379179099\270765323" /prefetch:673131151 Adobe Systems Incorporated 7.0.0 Adobe CEP HTML Engine 131795770645384720 0x240000 4014080 C:\Program Files\Adobe\Adobe Photoshop CC 2017\Required\CEP\CEPHtmlEngine\CEPHtmlEngine.exe 7.0.0 Adobe Systems Incorporated Adobe CEP HTML Engine 131795770645384720 0x5c020000 335872 C:\Windows\System32\wow64.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation Win32 Emulation on NT64 131795770645384720 0x5c080000 487424 C:\Windows\System32\wow64win.dll 10.0.14393.1884 (rs1_release.171101-1233) Microsoft Corporation Wow64 Console and Win32 API Logging 131795770645384720 0x5c100000 40960 C:\Windows\System32\wow64cpu.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation AMD64 Wow64 CPU 131795770645384720 0x5d110000 44531712 C:\Program Files\Adobe\Adobe Photoshop CC 2017\Required\CEP\CEPHtmlEngine\libcef.dll 3.2272.67.g479a5bd Chromium Embedded Framework (CEF) Dynamic Link Library 131795770645384720 0x6d990000 3055616 C:\Program Files\Adobe\Adobe Photoshop CC 2017\Required\CEP\CEPHtmlEngine\ffmpegsumo.dll 41.0.2272.104 The Chromium Authors Chromium 131795770645384720 0x6e210000 81920 C:\Windows\SysWOW64\VCRUNTIME140.dll 14.10.24516.0 built by: VCTOOLSRELESC Microsoft Corporation Microsoft® C Runtime Library 131795770645384720 0x6e230000 446464 C:\Windows\SysWOW64\MSVCP140.dll 14.10.24516.0 built by: VCTOOLSRELESC Microsoft Corporation Microsoft® C Runtime Library 131795770645384720 0x700d0000 434176 C:\Windows\SysWOW64\WINSPOOL.DRV 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Драйвер диспетчера очереди Windows 131795770645384720 0x703d0000 2056192 C:\Windows\SysWOW64\dwrite.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Службы Microsoft DirectX Typography 131795770645384720 0x705e0000 344064 C:\Windows\SysWOW64\OLEACC.dll 7.2.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Active Accessibility Core Component 131795770645384720 0x70a20000 94208 C:\Windows\SysWOW64\USP10.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Uniscribe Unicode script processor 131795770645384720 0x70a40000 81920 C:\Windows\SysWOW64\NLAapi.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Network Location Awareness 2 131795770645384720 0x70a60000 90112 C:\Windows\SysWOW64\pnrpnsp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик пространства имен PNRP 131795770645384720 0x70c00000 49152 C:\Windows\SysWOW64\winrnr.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation LDAP RnR Provider DLL 131795770645384720 0x70c10000 73728 C:\Windows\SysWOW64\napinsp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик оболочки совместимости для имен электронной почты 131795770645384720 0x71610000 77824 C:\Windows\SysWOW64\dhcpcsvc6.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиент DHCPv6 131795770645384720 0x725e0000 2273280 C:\Windows\SysWOW64\iertutil.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служебная программа времени выполнения для Internet Explorer 131795770645384720 0x72af0000 655360 C:\Windows\SysWOW64\WINHTTP.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Службы HTTP Windows 131795770645384720 0x72cc0000 1658880 C:\Windows\SysWOW64\urlmon.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширения OLE32 для Win32 131795770645384720 0x73ac0000 81920 C:\Windows\SysWOW64\dhcpcsvc.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служба DHCP-клиента 131795770645384720 0x73ae0000 40960 C:\Windows\SysWOW64\Secur32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Security Support Provider Interface 131795770645384720 0x73ee0000 61440 C:\Windows\SysWOW64\WTSAPI32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Remote Desktop Session Host Server SDK APIs 131795770645384720 0x73f00000 192512 C:\Windows\SysWOW64\IPHLPAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API вспомогательного приложения IP 131795770645384720 0x73f30000 512000 C:\Windows\SysWOW64\DNSAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Динамическая библиотека API DNS-клиента 131795770645384720 0x73ff0000 319488 C:\Windows\SysWOW64\mswsock.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширение поставщика службы API Microsoft Windows Sockets 2.0 131795770645384720 0x74060000 192512 C:\Windows\SysWOW64\rsaenh.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Enhanced Cryptographic Provider 131795770645384720 0x74110000 479232 C:\Windows\SysWOW64\uxtheme.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека тем UxTheme (Microsoft) 131795770645384720 0x74190000 110592 C:\Windows\SysWOW64\bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795770645384720 0x741b0000 77824 C:\Windows\SysWOW64\CRYPTSP.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Cryptographic Service Provider API 131795770645384720 0x741f0000 143360 C:\Windows\SysWOW64\WINMMBASE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base Multimedia Extension API DLL 131795770645384720 0x74230000 147456 C:\Windows\SysWOW64\WINMM.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation MCI API DLL 131795770645384720 0x744d0000 2138112 C:\Windows\WinSxS\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.14393.953_none_89c2555adb023171\COMCTL32.dll 6.10 (rs1_release_inmarket.170303-1614) Microsoft Corporation Библиотека элементов управления взаимодействия с пользователем 131795770645384720 0x746e0000 32768 C:\Windows\SysWOW64\VERSION.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Version Checking and File Installation Libraries 131795770645384720 0x746f0000 106496 C:\Windows\SysWOW64\USERENV.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Userenv 131795770645384720 0x747d0000 40960 C:\Windows\SysWOW64\CRYPTBASE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base cryptographic API DLL 131795770645384720 0x747e0000 126976 C:\Windows\SysWOW64\SspiCli.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Security Support Provider Interface 131795770645384720 0x74800000 151552 C:\Windows\SysWOW64\IMM32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Multi-User Windows IMM32 API Client DLL 131795770645384720 0x74910000 2170880 C:\Windows\SysWOW64\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795770645384720 0x74b30000 53248 C:\Windows\SysWOW64\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795770645384720 0x74b60000 790528 C:\Windows\SysWOW64\RPCRT4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795770645384720 0x74c30000 1417216 C:\Windows\SysWOW64\gdi32full.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation GDI Client DLL 131795770645384720 0x74d90000 24576 C:\Windows\SysWOW64\PSAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Process Status Helper 131795770645384720 0x74da0000 778240 C:\Windows\SysWOW64\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795770645384720 0x74e60000 557056 C:\Windows\SysWOW64\shcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795770645384720 0x74fd0000 405504 C:\Windows\SysWOW64\WS2_32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation 32-разрядная библиотека Windows Socket 2.0 131795770645384720 0x75040000 282624 C:\Windows\SysWOW64\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795770645384720 0x751d0000 57344 C:\Windows\SysWOW64\MSASN1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ASN.1 Runtime APIs 131795770645384720 0x751e0000 1708032 C:\Windows\SysWOW64\KERNELBASE.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645384720 0x75390000 266240 C:\Windows\SysWOW64\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795770645384720 0x753e0000 1560576 C:\Windows\SysWOW64\CRYPT32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API32 криптографии 131795770645384720 0x75560000 487424 C:\Windows\SysWOW64\advapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795770645384720 0x756c0000 5693440 C:\Windows\SysWOW64\windows.storage.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API хранения Microsoft WinRT 131795770645384720 0x75c90000 286720 C:\Windows\SysWOW64\SHLWAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека небольших программ оболочки 131795770645384720 0x75ce0000 20811776 C:\Windows\SysWOW64\SHELL32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Общая библиотека оболочки Windows 131795770645384720 0x774d0000 86016 C:\Windows\SysWOW64\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795770645384720 0x774f0000 61440 C:\Windows\SysWOW64\profapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Profile Basic API 131795770645384720 0x77560000 1437696 C:\Windows\SysWOW64\USER32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795770645384720 0x776c0000 368640 C:\Windows\SysWOW64\bcryptPrimitives.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation Windows Cryptographic Primitives Library 131795770645384720 0x77780000 503808 C:\Windows\SysWOW64\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645384720 0x77800000 606208 C:\Windows\SysWOW64\OLEAUT32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795770645384720 0x77ac0000 966656 C:\Windows\SysWOW64\ole32.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft OLE для Windows 131795770645384720 0x77bb0000 176128 C:\Windows\SysWOW64\GDI32.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation GDI Client DLL 131795770645384720 0x77be0000 937984 C:\Windows\SysWOW64\COMDLG32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека общих диалоговых окон 131795770645384720 0x77cd0000 221184 C:\Windows\SysWOW64\cfgmgr32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Configuration Manager DLL 131795770645384720 0x77d10000 28672 C:\Windows\SysWOW64\NSI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation NSI User-mode interface DLL 131795770645384720 0x77d20000 1585152 C:\Windows\SysWOW64\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 131795770645384720 0x7ffad0270000 1908736 C:\Windows\SYSTEM32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 76 11496 664 6 00000000:0031f1da 131794958406617238 0 0 1 Обязательная метка\Низкий обязательный уровень WIN-0UOTFKKVN1S\User SearchUI.exe C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\SearchUI.exe "C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\SearchUI.exe" -ServerName:CortanaUI.AppXa50dqqa5gqv4a428c9y1jjw7m3btvepj.mca Microsoft Corporation 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Search and Cortana application 131795770645385613 0x7ff79c3c0000 10706944 C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\SearchUI.exe 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Search and Cortana application 131795770645385613 0x7ffab2c00000 8179712 C:\Windows\SYSTEM32\chakra.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft ® Chakra (Private) 131795770645385613 0x7ffab33d0000 258048 C:\Windows\SYSTEM32\MLANG.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL многоязыковой поддержки 131795770645385613 0x7ffab3540000 22740992 C:\Windows\SYSTEM32\edgehtml.dll 11.00.14393.447 (rs1_release_inmarket.161102-0100) Microsoft Corporation Веб-платформа Microsoft Edge 131795770645385613 0x7ffab4b90000 655360 C:\Windows\System32\StructuredQuery.dll 7.0.14393.2068 (rs1_release.180209-1727) Microsoft Corporation Structured Query 131795770645385613 0x7ffab4c70000 4874240 C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\RemindersUI.dll 131795770645385613 0x7ffab52c0000 2445312 C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.BackgroundTask.dll 131795770645385613 0x7ffab5520000 3231744 C:\Windows\SYSTEM32\msftedit.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Элемент управления "Поле ввода форматированного текста", версия 8.5 131795770645385613 0x7ffab5840000 3108864 C:\Windows\System32\Speech_OneCore\Common\sapi_onecore.dll 5.3.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Speech API 131795770645385613 0x7ffab5b40000 2527232 C:\Windows\SYSTEM32\dwrite.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Службы Microsoft DirectX Typography 131795770645385613 0x7ffab5db0000 9781248 C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\CortanaApi.dll 131795770645385613 0x7ffab6710000 17231872 C:\Windows\System32\Windows.UI.Xaml.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows.UI.Xaml dll 131795770645385613 0x7ffab7a00000 3424256 C:\Windows\system32\tquery.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Запросы Microsoft Tripoli 131795770645385613 0x7ffab9c00000 1343488 C:\Windows\System32\Windows.Web.Http.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL Windows.Web.Http 131795770645385613 0x7ffab9d50000 1429504 C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Core.dll 131795770645385613 0x7ffabaab0000 94208 C:\Windows\SYSTEM32\profext.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation profext 131795770645385613 0x7ffabae40000 110592 C:\Windows\SYSTEM32\capauthz.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API авторизации возможностей 131795770645385613 0x7ffabaf70000 270336 C:\Windows\SYSTEM32\edputil.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служебная программа EDP 131795770645385613 0x7ffabb200000 294912 C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\CortanaApi.ProxyStub.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation "CortanaApi.ProxyStub.DYNLINK" 131795770645385613 0x7ffabb3c0000 450560 C:\Windows\SYSTEM32\TextInputFramework.dll 10.0.14393.2189 (rs1_release.180329-1711) Microsoft Corporation "TextInputFramework.DYNLINK" 131795770645385613 0x7ffabb490000 512000 C:\Windows\System32\twinapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation twinapi 131795770645385613 0x7ffabbd10000 65536 C:\Windows\SYSTEM32\tokenbinding.dll 10.0.14393.1593 (rs1_release.170731-1934) Microsoft Corporation Token Binding Protocol 131795770645385613 0x7ffabd4a0000 1613824 C:\Windows\System32\Windows.Globalization.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Globalization 131795770645385613 0x7ffabe4d0000 286720 C:\Windows\System32\MSWB7.dll 10.0.14393.1737 (rs1_release_inmarket.170914-1249) Microsoft Corporation MSWB7 DLL 131795770645385613 0x7ffabe6e0000 561152 C:\Windows\system32\directmanipulation.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Direct Manipulation Component 131795770645385613 0x7ffabe770000 774144 C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\CSGSuggestLib.dll 131795770645385613 0x7ffabe9c0000 188416 C:\Windows\SYSTEM32\globinputhost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Globalization Extension API for Input 131795770645385613 0x7ffabea90000 135168 C:\Windows\System32\Windows.ApplicationModel.Background.SystemEventsBroker.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Background System Events Broker API Server 131795770645385613 0x7ffabeac0000 335872 C:\Windows\System32\Windows.Storage.ApplicationData.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Application Data API Server 131795770645385613 0x7ffabeb20000 385024 C:\Windows\System32\Windows.ApplicationModel.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows ApplicationModel API Server 131795770645385613 0x7ffabefa0000 192512 C:\Windows\system32\Cortana.Persona.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Cortana.Persona 131795770645385613 0x7ffabf5d0000 2924544 C:\Windows\SYSTEM32\WININET.dll 11.00.14393.447 (rs1_release_inmarket.161102-0100) Microsoft Corporation Расширения Интернета для Win32 131795770645385613 0x7ffabf8a0000 122880 C:\Windows\System32\Windows.Cortana.ProxyStub.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows.Cortana.ProxyStub 131795770645385613 0x7ffabfce0000 90112 C:\Windows\System32\Windows.Globalization.Fontgroups.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Fonts Mapping API 131795770645385613 0x7ffabfd00000 356352 C:\Windows\System32\Windows.Graphics.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation WinRT Windows Graphics DLL 131795770645385613 0x7ffabfd80000 86016 C:\Windows\System32\threadpoolwinrt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows WinRT Threadpool 131795770645385613 0x7ffabfe10000 237568 C:\Windows\SYSTEM32\rometadata.dll 4.6.1586.0 built by: NETFXREL2 Microsoft Corporation Microsoft MetaData Library 131795770645385613 0x7ffac00c0000 282624 C:\Windows\SYSTEM32\windows.ui.core.textinput.dll 10.0.14393.2189 (rs1_release.180329-1711) Microsoft Corporation Windows.UI.Core.TextInput dll 131795770645385613 0x7ffac01e0000 397312 C:\Windows\SYSTEM32\wincorlib.DLL 10.0.14393.576 (rs1_release_inmarket.161208-2252) Microsoft Corporation Microsoft Windows ® WinRT core library 131795770645385613 0x7ffac0bf0000 3559424 C:\Windows\System32\ActXPrxy.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation ActiveX Interface Marshaling Library 131795770645385613 0x7ffac10b0000 217088 C:\Windows\system32\PersonaX.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation PersonaX 131795770645385613 0x7ffac1c40000 94208 C:\Windows\System32\SystemSettings.DataModel.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SystemSettings.Datamodel private API 131795770645385613 0x7ffac20d0000 110592 C:\Windows\System32\rmclient.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Resource Manager Client 131795770645385613 0x7ffac23c0000 331776 C:\Windows\System32\OneCoreCommonProxyStub.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation OneCore Common Proxy Stub 131795770645385613 0x7ffac2990000 385024 C:\Windows\SYSTEM32\NInput.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Pen and Touch Input Component 131795770645385613 0x7ffac2c30000 135168 C:\Windows\SYSTEM32\clipc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиент платформы лицензирования клиента 131795770645385613 0x7ffac2d80000 5140480 C:\Windows\SYSTEM32\cdp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API клиента Microsoft (R) CDP 131795770645385613 0x7ffac34e0000 1843200 C:\Windows\SYSTEM32\urlmon.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширения OLE32 для Win32 131795770645385613 0x7ffac3810000 167936 C:\Windows\SYSTEM32\Cabinet.dll 5.00 (rs1_release.160715-1616) Microsoft Corporation Microsoft® Cabinet File API 131795770645385613 0x7ffac3b80000 286720 C:\Windows\system32\indexeddbserver.dll 10.0.14393.2189 (rs1_release.180329-1711) Microsoft Corporation IndexedDb host 131795770645385613 0x7ffac3bf0000 94208 C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\ActionMgr.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Cortana Action Manager 131795770645385613 0x7ffac3cb0000 2772992 C:\Windows\SYSTEM32\iertutil.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служебная программа времени выполнения для Internet Explorer 131795770645385613 0x7ffac4000000 274432 C:\Windows\SYSTEM32\policymanager.dll 10.0.14393.2035 (rs1_release_inmarket.180110-1910) Microsoft Corporation Policy Manager DLL 131795770645385613 0x7ffac5070000 798720 C:\Windows\System32\Windows.Web.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL веб-клиента 131795770645385613 0x7ffac5350000 1765376 C:\Windows\System32\Windows.UI.Immersive.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation WINDOWS.UI.IMMERSIVE 131795770645385613 0x7ffac5ce0000 1744896 C:\Windows\SYSTEM32\UIAutomationCore.DLL 7.2.14393.0 (rs1_release.160715-1616) Microsoft Corporation Основные автоматические компоненты Microsoft UI 131795770645385613 0x7ffac60e0000 221184 C:\Windows\SYSTEM32\XmlLite.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft XmlLite Library 131795770645385613 0x7ffac6610000 40960 C:\Windows\System32\rasadhlp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Remote Access AutoDial Helper 131795770645385613 0x7ffac6620000 192512 C:\Windows\System32\biwinrt.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation Windows Background Broker Infrastructure 131795770645385613 0x7ffac66a0000 86016 C:\Windows\SYSTEM32\ondemandconnroutehelper.dll 10.0.14393.351 (rs1_release_inmarket.161014-1755) Microsoft Corporation On Demand Connctiond Route Helper 131795770645385613 0x7ffac69c0000 839680 C:\Windows\SYSTEM32\WINHTTP.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Службы HTTP Windows 131795770645385613 0x7ffac6ac0000 835584 C:\Windows\System32\Windows.UI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Runtime UI Foundation DLL 131795770645385613 0x7ffac6bb0000 118784 C:\Windows\system32\windows.cortana.pal.desktop.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows.Cortana.PAL.Desktop 131795770645385613 0x7ffac6bd0000 413696 C:\Windows\SYSTEM32\OLEACC.dll 7.2.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Active Accessibility Core Component 131795770645385613 0x7ffac6ed0000 155648 C:\Windows\SYSTEM32\srpapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL программных интерфейсов (API) поставщика общих ресурсов 131795770645385613 0x7ffac6f50000 5632000 C:\Windows\SYSTEM32\d2d1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека Microsoft D2D 131795770645385613 0x7ffac7580000 1077248 C:\Windows\System32\MrmCoreR.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Windows MRM 131795770645385613 0x7ffac7720000 1601536 C:\Windows\System32\OneCoreUAPCommonProxyStub.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation OneCoreUAP Common Proxy Stub 131795770645385613 0x7ffac78b0000 65536 C:\Windows\system32\msimtf.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Active IMM Server DLL 131795770645385613 0x7ffac7c50000 118784 C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\BingConfigurationClient.dll 10.0.14393.82 (rs1_release.160805-1735) Microsoft Corporation Bing Configuration Client DLL 131795770645385613 0x7ffac7d80000 49152 C:\Windows\System32\Windows.ApplicationModel.Background.TimeBroker.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Background Time Broker API Server 131795770645385613 0x7ffac7e30000 40960 C:\Windows\SYSTEM32\fontgroupsoverride.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation fontgroupsoverride.dll 131795770645385613 0x7ffac7fc0000 2674688 C:\Windows\SYSTEM32\d3d10warp.dll 10.0.14393.576 (rs1_release_inmarket.161208-2252) Microsoft Corporation Direct3D 10 Rasterizer 131795770645385613 0x7ffac83d0000 106496 C:\Windows\SYSTEM32\dhcpcsvc.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служба DHCP-клиента 131795770645385613 0x7ffac83f0000 90112 C:\Windows\SYSTEM32\dhcpcsvc6.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиент DHCPv6 131795770645385613 0x7ffac84f0000 299008 C:\Windows\system32\DataExchange.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation Data exchange 131795770645385613 0x7ffac8810000 45056 C:\Windows\SYSTEM32\WINNSI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Network Store Information RPC interface 131795770645385613 0x7ffac88a0000 2842624 C:\Windows\SYSTEM32\d3d11.dll 10.0.14393.953 (rs1_release_inmarket.170303-1614) Microsoft Corporation Direct3D 11 Runtime 131795770645385613 0x7ffac8fa0000 253952 C:\Windows\SYSTEM32\logoncli.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Net Logon Client DLL 131795770645385613 0x7ffac92e0000 1269760 C:\Windows\System32\WinTypes.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL основных типов Windows 131795770645385613 0x7ffac9480000 462848 C:\Windows\SYSTEM32\MMDevAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation MMDevice API 131795770645385613 0x7ffac9500000 2682880 C:\Windows\system32\CoreUIComponents.dll 131795770645385613 0x7ffac9f50000 1736704 C:\Windows\system32\windowscodecs.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Microsoft Windows Codecs Library 131795770645385613 0x7ffaca260000 45056 C:\Windows\SYSTEM32\SystemEventsBrokerClient.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation system Events Broker Client Library 131795770645385613 0x7ffaca340000 1593344 C:\Windows\SYSTEM32\PROPSYS.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Система страниц свойств (Майкрософт) 131795770645385613 0x7ffaca570000 421888 C:\Windows\SYSTEM32\Bcp47Langs.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation BCP47 Language Classes 131795770645385613 0x7ffaca5e0000 155648 C:\Windows\SYSTEM32\dwmapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Интерфейс API диспетчера окон рабочего стола (Майкрософт) 131795770645385613 0x7ffaca640000 770048 C:\Windows\SYSTEM32\CoreMessaging.dll 10.0.14393.0 Microsoft Corporation Microsoft CoreMessaging Dll 131795770645385613 0x7ffaca770000 1380352 C:\Windows\SYSTEM32\dcomp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft DirectComposition Library 131795770645385613 0x7ffacab40000 176128 C:\Windows\SYSTEM32\winmmbase.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base Multimedia Extension API DLL 131795770645385613 0x7ffacadf0000 499712 C:\Windows\system32\apphelp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиентская библиотека совместимости приложений 131795770645385613 0x7ffacaf00000 610304 C:\Windows\system32\uxtheme.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека тем UxTheme (Microsoft) 131795770645385613 0x7ffacb140000 593920 C:\Windows\SYSTEM32\msvcp110_win.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Microsoft® STL110 C++ Runtime Library 131795770645385613 0x7ffacb1e0000 1163264 C:\Windows\System32\twinapi.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation twinapi.appcore 131795770645385613 0x7ffacb300000 364544 C:\Windows\SYSTEM32\VEEventDispatcher.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Visual Element Event dispatcher 131795770645385613 0x7ffacb3f0000 163840 C:\Windows\SYSTEM32\DEVOBJ.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Device Information Set DLL 131795770645385613 0x7ffacb420000 204800 C:\Windows\SYSTEM32\ntmarta.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик Windows NT MARTA 131795770645385613 0x7ffacb780000 651264 C:\Windows\SYSTEM32\dxgi.dll 10.0.14393.953 (rs1_release_inmarket.170303-1614) Microsoft Corporation DirectX Graphics Infrastructure 131795770645385613 0x7ffacbd30000 229376 C:\Windows\SYSTEM32\IPHLPAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API вспомогательного приложения IP 131795770645385613 0x7ffacbd70000 659456 C:\Windows\SYSTEM32\DNSAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Динамическая библиотека API DNS-клиента 131795770645385613 0x7ffacbe40000 126976 C:\Windows\SYSTEM32\userenv.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Userenv 131795770645385613 0x7ffacbfb0000 376832 C:\Windows\system32\mswsock.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширение поставщика службы API Microsoft Windows Sockets 2.0 131795770645385613 0x7ffacc150000 94208 C:\Windows\SYSTEM32\cryptsp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Cryptographic Service Provider API 131795770645385613 0x7ffacc170000 45056 C:\Windows\SYSTEM32\CRYPTBASE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base cryptographic API DLL 131795770645385613 0x7ffacc1f0000 241664 C:\Windows\SYSTEM32\NTASN1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft ASN.1 API 131795770645385613 0x7ffacc230000 155648 C:\Windows\SYSTEM32\ncrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Маршрутизатор Windows NCrypt 131795770645385613 0x7ffacc350000 180224 C:\Windows\SYSTEM32\SspiCli.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Security Support Provider Interface 131795780654647361 0x7ffacc520000 622592 C:\Windows\System32\sxs.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Fusion 2.5 131795770645385613 0x7ffacc620000 176128 C:\Windows\SYSTEM32\bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795770645385613 0x7ffacc6e0000 61440 C:\Windows\System32\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795770645385613 0x7ffacc6f0000 311296 C:\Windows\System32\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795770645385613 0x7ffacc740000 81920 C:\Windows\System32\profapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Profile Basic API 131795770645385613 0x7ffacc760000 65536 C:\Windows\System32\MSASN1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ASN.1 Runtime APIs 131795770645385613 0x7ffacc8f0000 1003520 C:\Windows\System32\ucrtbase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645385613 0x7ffacc9f0000 434176 C:\Windows\System32\bcryptPrimitives.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Cryptographic Primitives Library 131795770645385613 0x7ffacca60000 122880 C:\Windows\System32\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795770645385613 0x7ffaccae0000 692224 C:\Windows\System32\shcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795770645385613 0x7ffaccb90000 7180288 C:\Windows\System32\windows.storage.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API хранения Microsoft WinRT 131795770645385613 0x7ffacd270000 2215936 C:\Windows\System32\KERNELBASE.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645385613 0x7ffacd490000 1871872 C:\Windows\System32\CRYPT32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API32 криптографии 131795770645385613 0x7ffacd710000 638976 C:\Windows\System32\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645385613 0x7ffacd7b0000 270336 C:\Windows\System32\cfgmgr32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Configuration Manager DLL 131795770645385613 0x7ffacd810000 22056960 C:\Windows\System32\shell32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Общая библиотека оболочки Windows 131795770645385613 0x7ffaced20000 782336 C:\Windows\System32\OLEAUT32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795770645385613 0x7ffacee50000 1183744 C:\Windows\System32\RPCRT4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795770645385613 0x7ffacef80000 32768 C:\Windows\System32\NSI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation NSI User-mode interface DLL 131795770645385613 0x7ffacef90000 647168 C:\Windows\System32\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795770645385613 0x7ffacf0d0000 704512 C:\Windows\System32\KERNEL32.DLL 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645385613 0x7ffacf1e0000 1417216 C:\Windows\System32\msctf.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Серверная библиотека MSCTF 131795770645385613 0x7ffacf770000 212992 C:\Windows\System32\GDI32.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation GDI Client DLL 131795770645385613 0x7ffacf820000 434176 C:\Windows\System32\WS2_32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation 32-разрядная библиотека Windows Socket 2.0 131795770645385613 0x7ffacf890000 188416 C:\Windows\System32\IMM32.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Multi-User Windows IMM32 API Client DLL 131795770645385613 0x7ffacf8c0000 1462272 C:\Windows\System32\user32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795770645385613 0x7ffacfb30000 2916352 C:\Windows\System32\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795770645385613 0x7ffacfe20000 663552 C:\Windows\System32\advapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795770645385613 0x7ffad0070000 1277952 C:\Windows\System32\ole32.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft OLE для Windows 131795770645385613 0x7ffad01b0000 335872 C:\Windows\System32\shlwapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека небольших программ оболочки 131795770645385613 0x7ffad0210000 364544 C:\Windows\System32\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795770645385613 0x7ffad0270000 1908736 C:\Windows\SYSTEM32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 77 11408 8940 68 00000000:0031f1da 131794962679173110 131795780748861608 0 1 Обязательная метка\Средний обязательный уровень WIN-0UOTFKKVN1S\User node.exe C:\Program Files\Adobe\Adobe Photoshop CC 2017\node.exe "C:\Program Files\Adobe\Adobe Photoshop CC 2017\node.exe" "C:\Program Files\Adobe\Adobe Photoshop CC 2017\Required\Generator-builtin" --launchreason menu --menu crema-dummy-menu --photoshopVersion 18.0.1 -i \\.\pipe\36b615a8-a6c5-11e8-b291-8ffa7e69373b_i -o \\.\pipe\36b615a8-a6c5-11e8-b291-8ffa7e69373b_o -f "C:\Program Files\Adobe\Adobe Photoshop CC 2017\Required\Plug-Ins\Generator" -f "C:\Program Files\Common Files\Adobe\Plug-Ins\CC\Generator" Node.js 4.3.1 Node.js: Server-side JavaScript 131795770645385734 0x7ff6cbb20000 14237696 C:\Program Files\Adobe\Adobe Photoshop CC 2017\node.exe 4.3.1 Node.js Node.js: Server-side JavaScript 131795770645385734 0x7ffabfd60000 90112 C:\Windows\system32\napinsp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик оболочки совместимости для имен электронной почты 131795770645385734 0x7ffabfef0000 106496 C:\Windows\system32\pnrpnsp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик пространства имен PNRP 131795770645385734 0x7ffac0ab0000 57344 C:\Windows\System32\winrnr.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation LDAP RnR Provider DLL 131795770645385734 0x7ffac83d0000 106496 C:\Windows\SYSTEM32\dhcpcsvc.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служба DHCP-клиента 131795770645385734 0x7ffac83f0000 90112 C:\Windows\SYSTEM32\dhcpcsvc6.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиент DHCPv6 131795770645385734 0x7ffac9790000 98304 C:\Windows\system32\NLAapi.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Network Location Awareness 2 131795770645385734 0x7ffacab40000 176128 C:\Windows\SYSTEM32\WINMMBASE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base Multimedia Extension API DLL 131795770645385734 0x7ffacaba0000 143360 C:\Windows\SYSTEM32\WINMM.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation MCI API DLL 131795770645385734 0x7ffacadf0000 499712 C:\Windows\system32\apphelp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиентская библиотека совместимости приложений 131795770645385734 0x7ffacbbb0000 208896 C:\Windows\system32\rsaenh.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Enhanced Cryptographic Provider 131795770645385734 0x7ffacbd30000 229376 C:\Windows\SYSTEM32\IPHLPAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API вспомогательного приложения IP 131795770645385734 0x7ffacbd70000 659456 C:\Windows\SYSTEM32\DNSAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Динамическая библиотека API DNS-клиента 131795770645385734 0x7ffacbe40000 126976 C:\Windows\SYSTEM32\USERENV.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Userenv 131795770645385734 0x7ffacbfb0000 376832 C:\Windows\system32\mswsock.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширение поставщика службы API Microsoft Windows Sockets 2.0 131795770645385734 0x7ffacc150000 94208 C:\Windows\SYSTEM32\CRYPTSP.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Cryptographic Service Provider API 131795770645385734 0x7ffacc170000 45056 C:\Windows\SYSTEM32\CRYPTBASE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base cryptographic API DLL 131795770645385734 0x7ffacc620000 176128 C:\Windows\SYSTEM32\bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795770645385734 0x7ffacc740000 81920 C:\Windows\System32\profapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Profile Basic API 131795770645385734 0x7ffacc8f0000 1003520 C:\Windows\System32\ucrtbase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645385734 0x7ffacc9f0000 434176 C:\Windows\System32\bcryptPrimitives.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Cryptographic Primitives Library 131795770645385734 0x7ffacca60000 122880 C:\Windows\System32\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795770645385734 0x7ffacd270000 2215936 C:\Windows\System32\KERNELBASE.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645385734 0x7ffacd7b0000 270336 C:\Windows\System32\cfgmgr32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Configuration Manager DLL 131795770645385734 0x7ffacd800000 32768 C:\Windows\System32\PSAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Process Status Helper 131795770645385734 0x7ffacee50000 1183744 C:\Windows\System32\RPCRT4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795770645385734 0x7ffacef80000 32768 C:\Windows\System32\NSI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation NSI User-mode interface DLL 131795770645385734 0x7ffacef90000 647168 C:\Windows\System32\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795770645385734 0x7ffacf0d0000 704512 C:\Windows\System32\KERNEL32.DLL 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645385734 0x7ffacf770000 212992 C:\Windows\System32\GDI32.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation GDI Client DLL 131795770645385734 0x7ffacf820000 434176 C:\Windows\System32\WS2_32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation 32-разрядная библиотека Windows Socket 2.0 131795770645385734 0x7ffacf890000 188416 C:\Windows\System32\IMM32.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Multi-User Windows IMM32 API Client DLL 131795770645385734 0x7ffacf8c0000 1462272 C:\Windows\System32\USER32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795770645385734 0x7ffacfe20000 663552 C:\Windows\System32\ADVAPI32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795770645385734 0x7ffad0210000 364544 C:\Windows\System32\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795770645385734 0x7ffad0270000 1908736 C:\Windows\SYSTEM32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 78 12164 11408 77 00000000:0031f1da 131794962697229215 131795780751857016 0 1 Обязательная метка\Средний обязательный уровень WIN-0UOTFKKVN1S\User conhost.exe C:\Windows\system32\conhost.exe \??\C:\Windows\system32\conhost.exe 0x4 Microsoft Corporation 10.0.14393.0 (rs1_release.160715-1616) Console Window Host 131795770645385831 0x7ff768b40000 69632 C:\Windows\system32\conhost.exe 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Console Window Host 131795770645385831 0x7ffabe520000 368640 C:\Windows\SYSTEM32\ConhostV2.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Хост окна консоли 131795770645385831 0x7ffac6c40000 2596864 C:\Windows\WinSxS\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.14393.953_none_42151e83c686086b\comctl32.DLL 6.10 (rs1_release_inmarket.170303-1614) Microsoft Corporation Библиотека элементов управления взаимодействия с пользователем 131795770645385831 0x7ffaca340000 1593344 C:\Windows\SYSTEM32\PROPSYS.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Система страниц свойств (Майкрософт) 131795770645385831 0x7ffaca5e0000 155648 C:\Windows\system32\dwmapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Интерфейс API диспетчера окон рабочего стола (Майкрософт) 131795770645385831 0x7ffacaf00000 610304 C:\Windows\system32\uxtheme.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека тем UxTheme (Microsoft) 131795770645385831 0x7ffacc6e0000 61440 C:\Windows\System32\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795770645385831 0x7ffacc6f0000 311296 C:\Windows\System32\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795770645385831 0x7ffacc740000 81920 C:\Windows\System32\profapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Profile Basic API 131795770645385831 0x7ffacc8f0000 1003520 C:\Windows\System32\ucrtbase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645385831 0x7ffacc9f0000 434176 C:\Windows\System32\bcryptPrimitives.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Cryptographic Primitives Library 131795770645385831 0x7ffacca60000 122880 C:\Windows\System32\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795770645385831 0x7ffaccae0000 692224 C:\Windows\System32\shcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795770645385831 0x7ffaccb90000 7180288 C:\Windows\System32\windows.storage.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API хранения Microsoft WinRT 131795770645385831 0x7ffacd270000 2215936 C:\Windows\System32\KERNELBASE.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645385831 0x7ffacd710000 638976 C:\Windows\System32\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645385831 0x7ffacd7b0000 270336 C:\Windows\System32\cfgmgr32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Configuration Manager DLL 131795770645385831 0x7ffacd810000 22056960 C:\Windows\System32\SHELL32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Общая библиотека оболочки Windows 131795770645385831 0x7ffaced20000 782336 C:\Windows\System32\OLEAUT32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795770645385831 0x7ffacee50000 1183744 C:\Windows\System32\RPCRT4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795770645385831 0x7ffacef90000 647168 C:\Windows\System32\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795770645385831 0x7ffacf0d0000 704512 C:\Windows\System32\KERNEL32.DLL 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645385831 0x7ffacf1e0000 1417216 C:\Windows\System32\MSCTF.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Серверная библиотека MSCTF 131795770645385831 0x7ffacf770000 212992 C:\Windows\System32\GDI32.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation GDI Client DLL 131795770645385831 0x7ffacf890000 188416 C:\Windows\System32\IMM32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Multi-User Windows IMM32 API Client DLL 131795770645385831 0x7ffacf8c0000 1462272 C:\Windows\System32\USER32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795770645385831 0x7ffacfb30000 2916352 C:\Windows\System32\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795770645385831 0x7ffacfe20000 663552 C:\Windows\System32\advapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795770645385831 0x7ffad01b0000 335872 C:\Windows\System32\shlwapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека небольших программ оболочки 131795770645385831 0x7ffad0210000 364544 C:\Windows\System32\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795770645385831 0x7ffad0270000 1908736 C:\Windows\SYSTEM32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 79 5612 904 22 00000000:000003e5 131794965205293998 0 0 1 Обязательная метка\Обязательный уровень системы NT AUTHORITY\LOCAL SERVICE dashost.exe C:\Windows\system32\dashost.exe dashost.exe {609e1ffd-7b4d-4dbc-a36f725917d81f2d} Microsoft Corporation 10.0.14393.82 (rs1_release.160805-1735) Device Association Framework Provider Host 131795770645385987 0x7ff6559c0000 110592 C:\Windows\system32\dashost.exe 10.0.14393.82 (rs1_release.160805-1735) Microsoft Corporation Device Association Framework Provider Host 131795770645385987 0x7ffabb1a0000 274432 C:\Windows\system32\DAFWSD.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DAF WSD Provider 131795770645385987 0x7ffabc970000 188416 C:\Windows\system32\dafupnp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DAF UPnP Provider 131795770645385987 0x7ffac1d60000 589824 C:\Windows\system32\webio.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API протоколов передачи по Веб 131795770645385987 0x7ffac3f60000 225280 C:\Windows\system32\FWPolicyIOMgr.dll 10.0.14393.2189 (rs1_release.180329-1711) Microsoft Corporation FwPolicyIoMgr DLL 131795770645385987 0x7ffac60e0000 221184 C:\Windows\system32\XmlLite.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft XmlLite Library 131795770645385987 0x7ffac66c0000 32768 C:\Windows\system32\wship6.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL помощника Winsock2 (TL/IPv6) 131795770645385987 0x7ffac66d0000 32768 C:\Windows\system32\wshtcpip.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL помощника службы Winsock2 (TL/IPv4) 131795770645385987 0x7ffac6700000 40960 C:\Windows\system32\wshqos.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL помощника службы QoS Winsock2 131795770645385987 0x7ffac6750000 1380352 C:\Windows\system32\webservices.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Среда выполнения веб-служб Windows 131795770645385987 0x7ffac68b0000 696320 C:\Windows\system32\wsdapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Веб-службы для библиотек DLL API-интерфейсов устройств 131795770645385987 0x7ffac6990000 69632 C:\Windows\system32\deviceassociation.dll 10.0.14393.82 (rs1_release.160805-1735) Microsoft Corporation Device Association Client DLL 131795770645385987 0x7ffac69c0000 839680 C:\Windows\system32\WINHTTP.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Службы HTTP Windows 131795770645385987 0x7ffac79c0000 57344 C:\Windows\System32\npmproxy.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Network List Manager Proxy 131795770645385987 0x7ffac7e50000 86016 C:\Windows\system32\SSDPAPI.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation SSDP Client API DLL 131795770645385987 0x7ffac83d0000 106496 C:\Windows\SYSTEM32\dhcpcsvc.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служба DHCP-клиента 131795770645385987 0x7ffac83f0000 90112 C:\Windows\SYSTEM32\dhcpcsvc6.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиент DHCPv6 131795770645385987 0x7ffac8810000 45056 C:\Windows\SYSTEM32\WINNSI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Network Store Information RPC interface 131795770645385987 0x7ffac9f10000 221184 C:\Windows\System32\netprofm.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Network List Manager 131795770645385987 0x7ffacb360000 176128 C:\Windows\system32\fwbase.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Firewall Base DLL 131795770645385987 0x7ffacb460000 548864 C:\Windows\system32\FirewallAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API брандмауэра Windows 131795770645385987 0x7ffacbbb0000 208896 C:\Windows\system32\rsaenh.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Enhanced Cryptographic Provider 131795770645385987 0x7ffacbd30000 229376 C:\Windows\system32\IPHLPAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API вспомогательного приложения IP 131795770645385987 0x7ffacbd70000 659456 C:\Windows\system32\DNSAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Динамическая библиотека API DNS-клиента 131795770645385987 0x7ffacbfb0000 376832 C:\Windows\system32\mswsock.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширение поставщика службы API Microsoft Windows Sockets 2.0 131795770645385987 0x7ffacc150000 94208 C:\Windows\system32\CRYPTSP.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Cryptographic Service Provider API 131795770645385987 0x7ffacc170000 45056 C:\Windows\system32\CRYPTBASE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base cryptographic API DLL 131795770645385987 0x7ffacc350000 180224 C:\Windows\system32\SspiCli.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Security Support Provider Interface 131795770645385987 0x7ffacc620000 176128 C:\Windows\system32\bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795770645385987 0x7ffacc6e0000 61440 C:\Windows\System32\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795770645385987 0x7ffacc6f0000 311296 C:\Windows\System32\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795770645385987 0x7ffacc760000 65536 C:\Windows\System32\MSASN1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ASN.1 Runtime APIs 131795770645385987 0x7ffacc8f0000 1003520 C:\Windows\System32\ucrtbase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645385987 0x7ffacc9f0000 434176 C:\Windows\System32\bcryptPrimitives.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Cryptographic Primitives Library 131795770645385987 0x7ffacca60000 122880 C:\Windows\System32\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795770645385987 0x7ffacd270000 2215936 C:\Windows\System32\KERNELBASE.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645385987 0x7ffacd490000 1871872 C:\Windows\System32\CRYPT32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API32 криптографии 131795770645385987 0x7ffacd710000 638976 C:\Windows\System32\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645385987 0x7ffacd7b0000 270336 C:\Windows\System32\cfgmgr32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Configuration Manager DLL 131795770645385987 0x7ffaced20000 782336 C:\Windows\System32\OLEAUT32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795770645385987 0x7ffacee50000 1183744 C:\Windows\System32\RPCRT4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795770645385987 0x7ffacef80000 32768 C:\Windows\System32\NSI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation NSI User-mode interface DLL 131795770645385987 0x7ffacef90000 647168 C:\Windows\System32\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795770645385987 0x7ffacf030000 651264 C:\Windows\System32\clbcatq.dll 2001.12.10941.16384 (rs1_release.160715-1616) Microsoft Corporation COM+ Configuration Catalog 131795770645385987 0x7ffacf0d0000 704512 C:\Windows\System32\KERNEL32.DLL 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645385987 0x7ffacf770000 212992 C:\Windows\System32\GDI32.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation GDI Client DLL 131795770645385987 0x7ffacf820000 434176 C:\Windows\System32\WS2_32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation 32-разрядная библиотека Windows Socket 2.0 131795770645385987 0x7ffacf8c0000 1462272 C:\Windows\System32\user32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795770645385987 0x7ffacfb30000 2916352 C:\Windows\System32\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795770645385987 0x7ffad0210000 364544 C:\Windows\System32\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795770645385987 0x7ffad0270000 1908736 C:\Windows\SYSTEM32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 80 9720 9180 81 00000000:0031f1ab 131794969418818027 0 0 0 Обязательная метка\Высокий обязательный уровень WIN-0UOTFKKVN1S\User Windows10UpgraderApp.exe C:\Windows10Upgrade\Windows10UpgraderApp.exe "C:\Windows10Upgrade\Windows10UpgraderApp.exe" /Install /ClientID Win10Upgrade:VNL:NHV18:{} /SkipEULA /PostEosUi Microsoft Corporation 1.4.9200.22452 Помощник по обновлению Windows 10 131795770645386103 0xb30000 1875968 C:\Windows10Upgrade\Windows10UpgraderApp.exe 1.4.9200.22452 Microsoft Corporation Помощник по обновлению Windows 10 131795770645386103 0x5c020000 335872 C:\Windows\System32\wow64.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation Win32 Emulation on NT64 131795770645386103 0x5c080000 487424 C:\Windows\System32\wow64win.dll 10.0.14393.1884 (rs1_release.171101-1233) Microsoft Corporation Wow64 Console and Win32 API Logging 131795770645386103 0x5c100000 40960 C:\Windows\System32\wow64cpu.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation AMD64 Wow64 CPU 131795770645386103 0x5fec0000 794624 C:\Windows\SysWOW64\wbem\fastprox.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation WMI Custom Marshaller 131795770645386103 0x5ffa0000 421888 C:\Windows\SysWOW64\wbemcomn.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation WMI 131795770645386103 0x60010000 53248 C:\Windows\SysWOW64\wbem\wbemprox.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation WMI 131795770645386103 0x60750000 1556480 C:\Program Files (x86)\360\Total Security\safemon\safemon.dll 8, 4, 0, 1420 Qihu 360 Software Co., Ltd. 360 Internet Security Internet Protection 131795770645386103 0x627d0000 249856 C:\Windows\SysWOW64\edputil.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служебная программа EDP 131795770645386103 0x64d00000 5079040 C:\Windows\SysWOW64\d2d1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека Microsoft D2D 131795770645386103 0x651e0000 20537344 C:\Windows\SysWOW64\mshtml.dll 11.00.14393.447 (rs1_release_inmarket.161102-0100) Microsoft Corporation Средство просмотра HTML Microsoft® 131795770645386103 0x66580000 12247040 C:\Windows\SysWOW64\ieframe.dll 11.00.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Браузер 131795770645386103 0x67200000 1978368 C:\Windows\SysWOW64\msxml6.dll 6.30.14393.2156 Microsoft Corporation MSXML 6.0 131795770645386103 0x67500000 1597440 C:\Windows\SysWOW64\ActXPrxy.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation ActiveX Interface Marshaling Library 131795770645386103 0x6b670000 212992 C:\Windows\SysWOW64\mlang.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL многоязыковой поддержки 131795770645386103 0x6c290000 987136 C:\Windows\SysWOW64\twinapi.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation twinapi.appcore 131795770645386103 0x6c390000 1126400 C:\Windows\SysWOW64\dcomp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft DirectComposition Library 131795770645386103 0x6c4b0000 278528 C:\Windows\SysWOW64\dataexchange.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation Data exchange 131795770645386103 0x6c540000 483328 C:\Windows\SysWOW64\webio.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API протоколов передачи по Веб 131795770645386103 0x6c720000 2318336 C:\Windows\SysWOW64\d3d10warp.dll 10.0.14393.576 (rs1_release_inmarket.161208-2252) Microsoft Corporation Direct3D 10 Rasterizer 131795770645386103 0x6c960000 57344 C:\Windows\SysWOW64\msimtf.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Active IMM Server DLL 131795770645386103 0x6c970000 3698688 C:\Windows\SysWOW64\jscript9.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft ® JScript 131795770645386103 0x6cd00000 69632 C:\Windows\SysWOW64\WLDP.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Политика блокировки Windows 131795770645386103 0x6cd20000 135168 C:\Windows\SysWOW64\srpapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL программных интерфейсов (API) поставщика общих ресурсов 131795770645386103 0x6cda0000 528384 C:\Windows\SysWOW64\sxs.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Fusion 2.5 131795770645386103 0x6d080000 151552 C:\Windows\SysWOW64\cryptnet.dll 10.0.14393.2035 (rs1_release_inmarket.180110-1910) Microsoft Corporation Crypto Network Related API 131795770645386103 0x6d0b0000 847872 C:\Windows\SysWOW64\WinTypes.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL основных типов Windows 131795770645386103 0x6d6e0000 634880 C:\Windows\SysWOW64\Windows.UI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Runtime UI Foundation DLL 131795770645386103 0x6d780000 876544 C:\Windows\SysWOW64\mrmcorer.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Windows MRM 131795770645386103 0x6d860000 1245184 C:\Windows\SysWOW64\MFC42u.dll 6.06.8063.0 Microsoft Corporation Общая библиотека MFCDLL - розничная версия 131795770645386103 0x6dcd0000 606208 C:\Windows\WinSxS\x86_microsoft.windows.common-controls_6595b64144ccf1df_5.82.14393.447_none_5507ded2cb4f7f4c\COMCTL32.dll 6.10 (rs1_release_inmarket.170303-1614) Microsoft Corporation Библиотека элементов управления взаимодействия с пользователем 131795770645386103 0x6ded0000 630784 C:\Windows\SysWOW64\ODBC32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ODBC Driver Manager 131795770645386103 0x6dfc0000 53248 C:\Windows\SysWOW64\execmodelproxy.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ExecModelProxy 131795770645386103 0x6dfd0000 253952 C:\Windows\SysWOW64\UIAnimation.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Animation Manager 131795770645386103 0x6e010000 208896 C:\Windows10Upgrade\Downloader.dll 1.4.9200.22452 (win8_ldr.180426-0600) Microsoft Corporation Downloader 131795770645386103 0x6e050000 81920 C:\Windows\SysWOW64\Windows.Shell.ServiceHostBuilder.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows.Shell.ServiceHostBuilder 131795770645386103 0x6e710000 335872 C:\Windows\SysWOW64\Bcp47Langs.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation BCP47 Language Classes 131795770645386103 0x70340000 536576 C:\Windows\SysWOW64\dxgi.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation DirectX Graphics Infrastructure 131795770645386103 0x703d0000 2056192 C:\Windows\SysWOW64\DWrite.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Службы Microsoft DirectX Typography 131795770645386103 0x705e0000 344064 C:\Windows\SysWOW64\OLEACC.DLL 7.2.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Active Accessibility Core Component 131795770645386103 0x70640000 1499136 C:\Windows\SysWOW64\windowscodecs.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Microsoft Windows Codecs Library 131795770645386103 0x707b0000 110592 C:\Windows\SysWOW64\ncryptsslp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft SChannel Provider 131795770645386103 0x707d0000 86016 C:\Windows\SysWOW64\SAMCLI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Security Accounts Manager Client DLL 131795770645386103 0x707f0000 2293760 C:\Windows\SysWOW64\d3d11.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation Direct3D 11 Runtime 131795770645386103 0x70a80000 409600 C:\Windows\SysWOW64\schannel.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик безопасности TLS/SSL 131795770645386103 0x70b40000 69632 C:\Windows\SysWOW64\mskeyprotect.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик защиты ключей (Майкрософт) 131795770645386103 0x70b70000 163840 C:\Windows\SysWOW64\ntmarta.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик Windows NT MARTA 131795770645386103 0x70ca0000 45056 C:\Windows\SysWOW64\NETUTILS.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API Helpers DLL 131795770645386103 0x70cc0000 65536 C:\Windows\SysWOW64\ondemandconnroutehelper.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation On Demand Connctiond Route Helper 131795770645386103 0x70e60000 176128 C:\Windows\SysWOW64\NTASN1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft ASN.1 API 131795770645386103 0x71140000 77824 C:\Windows\SysWOW64\NETAPI32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API DLL 131795770645386103 0x71610000 77824 C:\Windows\SysWOW64\dhcpcsvc6.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиент DHCPv6 131795770645386103 0x725e0000 2273280 C:\Windows\SysWOW64\iertutil.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служебная программа времени выполнения для Internet Explorer 131795770645386103 0x728e0000 1372160 C:\Windows\SysWOW64\PROPSYS.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Система страниц свойств (Майкрософт) 131795770645386103 0x72b90000 126976 C:\Windows\SysWOW64\dwmapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Интерфейс API диспетчера окон рабочего стола (Майкрософт) 131795770645386103 0x72cc0000 1658880 C:\Windows\SysWOW64\urlmon.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширения OLE32 для Win32 131795770645386103 0x73a40000 32768 C:\Windows\SysWOW64\WINNSI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Network Store Information RPC interface 131795770645386103 0x73a50000 299008 C:\Windows\SysWOW64\fwpuclnt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API пользовательского режима FWP/IPsec 131795770645386103 0x73aa0000 32768 C:\Windows\SysWOW64\DPAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Data Protection API 131795770645386103 0x73ab0000 32768 C:\Windows\SysWOW64\rasadhlp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Remote Access AutoDial Helper 131795770645386103 0x73ac0000 81920 C:\Windows\SysWOW64\dhcpcsvc.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служба DHCP-клиента 131795770645386103 0x73ae0000 40960 C:\Windows\SysWOW64\Secur32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Security Support Provider Interface 131795770645386103 0x73f00000 192512 C:\Windows\SysWOW64\IPHLPAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API вспомогательного приложения IP 131795770645386103 0x73f30000 512000 C:\Windows\SysWOW64\DNSAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Динамическая библиотека API DNS-клиента 131795770645386103 0x73ff0000 319488 C:\Windows\SysWOW64\mswsock.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширение поставщика службы API Microsoft Windows Sockets 2.0 131795770645386103 0x74060000 192512 C:\Windows\SysWOW64\rsaenh.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Enhanced Cryptographic Provider 131795770645386103 0x74110000 479232 C:\Windows\SysWOW64\uxtheme.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека тем UxTheme (Microsoft) 131795770645386103 0x74190000 110592 C:\Windows\SysWOW64\bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795770645386103 0x741b0000 77824 C:\Windows\SysWOW64\CRYPTSP.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Cryptographic Service Provider API 131795770645386103 0x74260000 2514944 C:\Windows\SysWOW64\WININET.dll 11.00.14393.447 (rs1_release_inmarket.161102-0100) Microsoft Corporation Расширения Интернета для Win32 131795770645386103 0x744d0000 2138112 C:\Windows\WinSxS\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.14393.953_none_89c2555adb023171\comctl32.dll 6.10 (rs1_release_inmarket.170303-1614) Microsoft Corporation Библиотека элементов управления взаимодействия с пользователем 131795770645386103 0x746e0000 32768 C:\Windows\SysWOW64\VERSION.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Version Checking and File Installation Libraries 131795770645386103 0x746f0000 106496 C:\Windows\SysWOW64\USERENV.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Userenv 131795770645386103 0x74730000 598016 C:\Windows\SysWOW64\apphelp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиентская библиотека совместимости приложений 131795770645386103 0x747d0000 40960 C:\Windows\SysWOW64\CRYPTBASE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base cryptographic API DLL 131795770645386103 0x747e0000 126976 C:\Windows\SysWOW64\SspiCli.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Security Support Provider Interface 131795770645386103 0x74800000 151552 C:\Windows\SysWOW64\IMM32.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Multi-User Windows IMM32 API Client DLL 131795770645386103 0x74910000 2170880 C:\Windows\SysWOW64\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795770645386103 0x74b30000 53248 C:\Windows\SysWOW64\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795770645386103 0x74b60000 790528 C:\Windows\SysWOW64\RPCRT4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795770645386103 0x74c30000 1417216 C:\Windows\SysWOW64\gdi32full.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation GDI Client DLL 131795770645386103 0x74d90000 24576 C:\Windows\SysWOW64\PSAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Process Status Helper 131795770645386103 0x74da0000 778240 C:\Windows\SysWOW64\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795770645386103 0x74e60000 557056 C:\Windows\SysWOW64\shcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795770645386103 0x74ef0000 540672 C:\Windows\SysWOW64\clbcatq.dll 2001.12.10941.16384 (rs1_release.160715-1616) Microsoft Corporation COM+ Configuration Catalog 131795770645386103 0x74f80000 278528 C:\Windows\SysWOW64\WINTRUST.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation Microsoft Trust Verification APIs 131795770645386103 0x74fd0000 405504 C:\Windows\SysWOW64\WS2_32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation 32-разрядная библиотека Windows Socket 2.0 131795770645386103 0x75040000 282624 C:\Windows\SysWOW64\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795770645386103 0x75090000 1265664 C:\Windows\SysWOW64\MSCTF.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Серверная библиотека MSCTF 131795770645386103 0x751d0000 57344 C:\Windows\SysWOW64\MSASN1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ASN.1 Runtime APIs 131795770645386103 0x751e0000 1708032 C:\Windows\SysWOW64\KERNELBASE.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645386103 0x75390000 266240 C:\Windows\SysWOW64\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795770645386103 0x753e0000 1560576 C:\Windows\SysWOW64\CRYPT32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API32 криптографии 131795770645386103 0x75560000 487424 C:\Windows\SysWOW64\ADVAPI32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795770645386103 0x756c0000 5693440 C:\Windows\SysWOW64\windows.storage.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API хранения Microsoft WinRT 131795770645386103 0x75c90000 286720 C:\Windows\SysWOW64\shlwapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека небольших программ оболочки 131795770645386103 0x75ce0000 20811776 C:\Windows\SysWOW64\SHELL32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Общая библиотека оболочки Windows 131795770645386103 0x774d0000 86016 C:\Windows\SysWOW64\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795770645386103 0x774f0000 61440 C:\Windows\SysWOW64\profapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Profile Basic API 131795770645386103 0x77560000 1437696 C:\Windows\SysWOW64\USER32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795770645386103 0x776c0000 368640 C:\Windows\SysWOW64\bcryptPrimitives.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation Windows Cryptographic Primitives Library 131795770645386103 0x77780000 503808 C:\Windows\SysWOW64\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645386103 0x77800000 606208 C:\Windows\SysWOW64\OLEAUT32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795770645386103 0x77ac0000 966656 C:\Windows\SysWOW64\ole32.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft OLE для Windows 131795770645386103 0x77bb0000 176128 C:\Windows\SysWOW64\GDI32.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation GDI Client DLL 131795770645386103 0x77cd0000 221184 C:\Windows\SysWOW64\cfgmgr32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Configuration Manager DLL 131795770645386103 0x77d10000 28672 C:\Windows\SysWOW64\NSI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation NSI User-mode interface DLL 131795770645386103 0x77d20000 1585152 C:\Windows\SysWOW64\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 131795770645386103 0x7ffad0270000 1908736 C:\Windows\SYSTEM32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 82 8944 520 18 00000000:0031f1da 131795005508439638 0 0 1 Обязательная метка\Низкий обязательный уровень WIN-0UOTFKKVN1S\User fontdrvhost.exe C:\Windows\system32\fontdrvhost.exe "fontdrvhost.exe" Microsoft Corporation 10.0.14393.2189 (rs1_release.180329-1711) Usermode Font Driver Host 131795770645386388 0x7ff654db0000 638976 C:\Windows\system32\fontdrvhost.exe 10.0.14393.2189 (rs1_release.180329-1711) Microsoft Corporation Usermode Font Driver Host 131795770645386388 0x7ffacc770000 1572864 C:\Windows\System32\gdi32full.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation GDI Client DLL 131795770645386388 0x7ffacca60000 122880 C:\Windows\System32\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795770645386388 0x7ffacd270000 2215936 C:\Windows\System32\KERNELBASE.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645386388 0x7ffacef90000 647168 C:\Windows\System32\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795770645386388 0x7ffacf0d0000 704512 C:\Windows\System32\KERNEL32.DLL 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645386388 0x7ffacf770000 212992 C:\Windows\System32\gdi32.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation GDI Client DLL 131795770645386388 0x7ffacf890000 188416 C:\Windows\System32\IMM32.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Multi-User Windows IMM32 API Client DLL 131795770645386388 0x7ffacf8c0000 1462272 C:\Windows\System32\USER32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795770645386388 0x7ffad0270000 1908736 C:\Windows\SYSTEM32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 83 6684 664 6 00000000:0031f1da 131795006053748558 0 0 1 Обязательная метка\Низкий обязательный уровень WIN-0UOTFKKVN1S\User Microsoft.Photos.exe C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2017.35063.44410.0_x64__8wekyb3d8bbwe\Microsoft.Photos.exe "C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2017.35063.44410.0_x64__8wekyb3d8bbwe\Microsoft.Photos.exe" -ServerName:App.AppXzst44mncqdg84v7sv6p7yznqwssy6f7f.mca 131795770645660438 0x7ff705e40000 36864 C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2017.35063.44410.0_x64__8wekyb3d8bbwe\Microsoft.Photos.exe 131795770645660438 0x7ffa9bb10000 1380352 C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2017.35063.44410.0_x64__8wekyb3d8bbwe\Microsoft.RichMedia.Ink.Controls.dll 131795770645660438 0x7ffa9bc70000 3158016 C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2017.35063.44410.0_x64__8wekyb3d8bbwe\Microsoft.UI.Xaml.dll 131795770645660438 0x7ffa9bf80000 2994176 C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2017.35063.44410.0_x64__8wekyb3d8bbwe\AppCore.Windows.dll 131795770645660438 0x7ffa9c260000 20144128 C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2017.35063.44410.0_x64__8wekyb3d8bbwe\PhotosApp.Windows.dll 131795770645660438 0x7ffa9d5a0000 29011968 C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2017.35063.44410.0_x64__8wekyb3d8bbwe\Microsoft.Photos.dll 131795770645660438 0x7ffa9f150000 6311936 C:\Windows\System32\Windows.Media.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Media Runtime DLL 131795770645660438 0x7ffa9fb20000 7950336 C:\Program Files\WindowsApps\Microsoft.NET.Native.Framework.1.3_1.3.24201.0_x64__8wekyb3d8bbwe\SharedLibrary.dll Microsoft Corporation Microsoft .NET Native Shared Framework 131795770645660438 0x7ffaa03f0000 4546560 C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2017.35063.44410.0_x64__8wekyb3d8bbwe\FaceSdkStoreWrapper.dll 16.425.0.0 Microsoft Corporation FaceSdkStoreWrapper 131795770645660438 0x7ffaa0850000 2371584 C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2017.35063.44410.0_x64__8wekyb3d8bbwe\MediaEngine.dll 131795770645660438 0x7ffaab270000 917504 C:\Windows\System32\Windows.AccountsControl.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Accounts Control 131795770645660438 0x7ffaab750000 876544 C:\Windows\System32\Windows.Media.Import.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation Windows Photo Import API (WinRT/COM) 131795770645660438 0x7ffaac0c0000 1396736 C:\Windows\System32\Windows.UI.Xaml.Phone.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows UI XAML Phone API 131795770645660438 0x7ffab5b40000 2527232 C:\Windows\SYSTEM32\dwrite.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Службы Microsoft DirectX Typography 131795770645660438 0x7ffab6710000 17231872 C:\Windows\System32\Windows.UI.Xaml.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows.UI.Xaml dll 131795770645660438 0x7ffab8f40000 94208 C:\Windows\System32\Windows.System.Diagnostics.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows System Diagnostics DLL 131795770645660438 0x7ffab8f60000 397312 C:\Windows\System32\CryptoWinRT.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Crypto WinRT Library 131795770645660438 0x7ffab9270000 454656 C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2017.35063.44410.0_x64__8wekyb3d8bbwe\Microsoft.Photos.AGM.Native.Windows.dll 131795770645660438 0x7ffab9b40000 389120 C:\Program Files\WindowsApps\Microsoft.NET.Native.Runtime.1.4_1.4.24201.0_x64__8wekyb3d8bbwe\mrt100_app.dll 1.4.24201.0 built by: PROJECTNREL Microsoft Corporation Microsoft .NET Native Runtime 131795770645660438 0x7ffabb3c0000 450560 C:\Windows\SYSTEM32\TextInputFramework.dll 10.0.14393.2189 (rs1_release.180329-1711) Microsoft Corporation "TextInputFramework.DYNLINK" 131795770645660438 0x7ffabc510000 90112 C:\Windows\system32\execmodelproxy.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ExecModelProxy 131795770645660438 0x7ffabc5c0000 319488 C:\Windows\SYSTEM32\MFSENSORGROUP.dll 10.0.14393.447 (rs1_release_inmarket.161102-0100) Microsoft Corporation Media Foundation Sensor Group DLL 131795770645660438 0x7ffabc920000 270336 C:\Windows\System32\execmodelclient.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation ExecModelClient 131795770645660438 0x7ffabcef0000 102400 C:\Windows\System32\Windows.Shell.ServiceHostBuilder.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows.Shell.ServiceHostBuilder 131795770645660438 0x7ffabd4a0000 1613824 C:\Windows\System32\Windows.Globalization.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Globalization 131795770645660438 0x7ffabd8e0000 704512 C:\Windows\WinSxS\amd64_microsoft.windows.common-controls_6595b64144ccf1df_5.82.14393.447_none_0d5aa7fbb6d35646\comctl32.dll 6.10 (rs1_release_inmarket.170303-1614) Microsoft Corporation Библиотека элементов управления взаимодействия с пользователем 131795770645660438 0x7ffabe6e0000 561152 C:\Windows\system32\directmanipulation.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Direct Manipulation Component 131795770645660438 0x7ffabea30000 192512 C:\Windows\System32\Windows.Energy.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Energy Runtime DLL 131795770645660438 0x7ffabeac0000 335872 C:\Windows\System32\Windows.Storage.ApplicationData.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Application Data API Server 131795770645660438 0x7ffabeb20000 385024 C:\Windows\System32\Windows.ApplicationModel.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows ApplicationModel API Server 131795770645660438 0x7ffabf330000 2457600 C:\Windows\System32\msxml6.dll 6.30.14393.2156 Microsoft Corporation MSXML 6.0 131795770645660438 0x7ffabfce0000 90112 C:\Windows\System32\Windows.Globalization.Fontgroups.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Fonts Mapping API 131795770645660438 0x7ffabfd00000 356352 C:\Windows\System32\Windows.Graphics.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation WinRT Windows Graphics DLL 131795770645660438 0x7ffabfd80000 86016 C:\Windows\System32\threadpoolwinrt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows WinRT Threadpool 131795770645660438 0x7ffabfe10000 237568 C:\Windows\SYSTEM32\rometadata.dll 4.6.1586.0 built by: NETFXREL2 Microsoft Corporation Microsoft MetaData Library 131795770645660438 0x7ffac00c0000 282624 C:\Windows\SYSTEM32\windows.ui.core.textinput.dll 10.0.14393.2189 (rs1_release.180329-1711) Microsoft Corporation Windows.UI.Core.TextInput dll 131795770645660438 0x7ffac0470000 1478656 C:\Windows\SYSTEM32\MFPlat.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Media Foundation Platform DLL 131795770645660438 0x7ffac0910000 724992 C:\Windows\System32\Windows.Networking.Connectivity.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Networking Connectivity Runtime DLL 131795770645660438 0x7ffac0bf0000 3559424 C:\Windows\System32\ActXPrxy.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation ActiveX Interface Marshaling Library 131795770645660438 0x7ffac0fa0000 77824 C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2017.35063.44410.0_x64__8wekyb3d8bbwe\Microsoft.Photos.Edit.Services.dll 131795770645660438 0x7ffac1b90000 630784 C:\Program Files\WindowsApps\Microsoft.VCLibs.140.00_14.0.25426.0_x64__8wekyb3d8bbwe\MSVCP140_APP.dll 14.11.25426.0 built by: VCTOOLSREL Microsoft Corporation Microsoft® C Runtime Library 131795770645660438 0x7ffac1c70000 69632 C:\Program Files\WindowsApps\Microsoft.VCLibs.140.00_14.0.25426.0_x64__8wekyb3d8bbwe\VCOMP140_app.DLL 14.11.25426.0 built by: VCTOOLSREL Microsoft Corporation Microsoft® C/C++ OpenMP Runtime 131795770645660438 0x7ffac1e50000 188416 C:\Windows\SYSTEM32\RTWorkQ.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL для WorkQueue реального времени 131795770645660438 0x7ffac20d0000 110592 C:\Windows\System32\rmclient.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Resource Manager Client 131795770645660438 0x7ffac2c00000 69632 C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2017.35063.44410.0_x64__8wekyb3d8bbwe\clrcompression.dll 1.0.23123.00 built by: PROJECTKREL Microsoft Corporation ClrCompression 131795770645660438 0x7ffac2cb0000 778240 C:\Windows\SYSTEM32\winsqlite3.dll 3.12.2 SQLite Development Team SQLite is a software library that implements a self-contained, serverless, zero-configuration, transactional SQL database engine. 131795770645660438 0x7ffac3280000 36864 C:\Windows\SYSTEM32\mrt100.dll 1.0.24120.0 built by: PROJECTNREL Microsoft Corporation Microsoft .NET Native Runtime 131795770645660438 0x7ffac34e0000 1843200 C:\Windows\SYSTEM32\urlmon.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширения OLE32 для Win32 131795770645660438 0x7ffac3cb0000 2772992 C:\Windows\SYSTEM32\iertutil.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служебная программа времени выполнения для Internet Explorer 131795770645660438 0x7ffac4b10000 307200 C:\Program Files\WindowsApps\Microsoft.VCLibs.140.00_14.0.25426.0_x64__8wekyb3d8bbwe\CONCRT140_APP.dll 14.11.25426.0 built by: VCTOOLSREL Microsoft Corporation Microsoft® Concurrency Runtime Library 131795770645660438 0x7ffac4c60000 385024 C:\Program Files\WindowsApps\Microsoft.VCLibs.140.00_14.0.25426.0_x64__8wekyb3d8bbwe\vccorlib140_app.DLL 14.11.25426.0 built by: VCTOOLSREL Microsoft Corporation Microsoft ® VC WinRT core library 131795770645660438 0x7ffac5350000 1765376 C:\Windows\System32\Windows.UI.Immersive.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation WINDOWS.UI.IMMERSIVE 131795770645660438 0x7ffac60e0000 221184 C:\Windows\SYSTEM32\XmlLite.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft XmlLite Library 131795770645660438 0x7ffac6620000 192512 C:\Windows\System32\biwinrt.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation Windows Background Broker Infrastructure 131795770645660438 0x7ffac6ac0000 835584 C:\Windows\System32\Windows.UI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Runtime UI Foundation DLL 131795770645660438 0x7ffac6f50000 5632000 C:\Windows\SYSTEM32\d2d1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека Microsoft D2D 131795770645660438 0x7ffac7580000 1077248 C:\Windows\System32\MrmCoreR.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Windows MRM 131795770645660438 0x7ffac7720000 1601536 C:\Windows\System32\OneCoreUAPCommonProxyStub.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation OneCoreUAP Common Proxy Stub 131795770645660438 0x7ffac7e30000 40960 C:\Windows\SYSTEM32\fontgroupsoverride.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation fontgroupsoverride.dll 131795770645660438 0x7ffac7fc0000 2674688 C:\Windows\SYSTEM32\d3d10warp.dll 10.0.14393.576 (rs1_release_inmarket.161208-2252) Microsoft Corporation Direct3D 10 Rasterizer 131795770645660438 0x7ffac84f0000 299008 C:\Windows\system32\DataExchange.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation Data exchange 131795770645660438 0x7ffac8540000 286720 C:\Windows\System32\vaultcli.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиентская библиотека хранилища учетных данных 131795770645660438 0x7ffac88a0000 2842624 C:\Windows\SYSTEM32\d3d11.dll 10.0.14393.953 (rs1_release_inmarket.170303-1614) Microsoft Corporation Direct3D 11 Runtime 131795770645660438 0x7ffac8fa0000 253952 C:\Windows\SYSTEM32\logoncli.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Net Logon Client DLL 131795770645660438 0x7ffac92e0000 1269760 C:\Windows\SYSTEM32\wintypes.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL основных типов Windows 131795770645660438 0x7ffac9500000 2682880 C:\Windows\system32\CoreUIComponents.dll 131795770645660438 0x7ffac9f50000 1736704 C:\Windows\system32\windowscodecs.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Microsoft Windows Codecs Library 131795770645660438 0x7ffaca340000 1593344 C:\Windows\SYSTEM32\PROPSYS.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Система страниц свойств (Майкрософт) 131795770645660438 0x7ffaca570000 421888 C:\Windows\SYSTEM32\Bcp47Langs.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation BCP47 Language Classes 131795770645660438 0x7ffaca5e0000 155648 C:\Windows\SYSTEM32\dwmapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Интерфейс API диспетчера окон рабочего стола (Майкрософт) 131795770645660438 0x7ffaca640000 770048 C:\Windows\SYSTEM32\CoreMessaging.dll 10.0.14393.0 Microsoft Corporation Microsoft CoreMessaging Dll 131795770645660438 0x7ffaca770000 1380352 C:\Windows\SYSTEM32\dcomp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft DirectComposition Library 131795770645660438 0x7ffacab80000 90112 C:\Program Files\WindowsApps\Microsoft.VCLibs.140.00_14.0.25426.0_x64__8wekyb3d8bbwe\VCRUNTIME140_APP.dll 14.11.25426.0 built by: VCTOOLSREL Microsoft Corporation Microsoft® C Runtime Library 131795770645660438 0x7ffacadf0000 499712 C:\Windows\system32\apphelp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиентская библиотека совместимости приложений 131795770645660438 0x7ffacaf00000 610304 C:\Windows\system32\uxtheme.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека тем UxTheme (Microsoft) 131795770645660438 0x7ffacb1e0000 1163264 C:\Windows\SYSTEM32\twinapi.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation twinapi.appcore 131795770645660438 0x7ffacb780000 651264 C:\Windows\SYSTEM32\dxgi.dll 10.0.14393.953 (rs1_release_inmarket.170303-1614) Microsoft Corporation DirectX Graphics Infrastructure 131795770645660438 0x7ffacbe40000 126976 C:\Windows\SYSTEM32\USERENV.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Userenv 131795770645660438 0x7ffacc170000 45056 C:\Windows\SYSTEM32\CRYPTBASE.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base cryptographic API DLL 131795770645660438 0x7ffacc350000 180224 C:\Windows\SYSTEM32\SspiCli.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Security Support Provider Interface 131795770645660438 0x7ffacc620000 176128 C:\Windows\SYSTEM32\bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795770645660438 0x7ffacc6e0000 61440 C:\Windows\System32\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795770645660438 0x7ffacc6f0000 311296 C:\Windows\System32\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795770645660438 0x7ffacc740000 81920 C:\Windows\System32\profapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Profile Basic API 131795770645660438 0x7ffacc760000 65536 C:\Windows\System32\MSASN1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ASN.1 Runtime APIs 131795770645660438 0x7ffacc8f0000 1003520 C:\Windows\System32\ucrtbase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645660438 0x7ffacc9f0000 434176 C:\Windows\System32\bcryptPrimitives.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Cryptographic Primitives Library 131795770645660438 0x7ffacca60000 122880 C:\Windows\System32\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795770645660438 0x7ffaccae0000 692224 C:\Windows\System32\shcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795770645660438 0x7ffaccb90000 7180288 C:\Windows\System32\windows.storage.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API хранения Microsoft WinRT 131795770645660438 0x7ffacd270000 2215936 C:\Windows\System32\KERNELBASE.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645660438 0x7ffacd490000 1871872 C:\Windows\System32\CRYPT32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API32 криптографии 131795770645660438 0x7ffacd710000 638976 C:\Windows\System32\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645660438 0x7ffacd7b0000 270336 C:\Windows\System32\cfgmgr32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Configuration Manager DLL 131795770645660438 0x7ffaced20000 782336 C:\Windows\System32\OleAut32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795770645660438 0x7ffacee50000 1183744 C:\Windows\System32\RPCRT4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795770645660438 0x7ffacef90000 647168 C:\Windows\System32\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795770645660438 0x7ffacf0d0000 704512 C:\Windows\System32\KERNEL32.DLL 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645660438 0x7ffacf1e0000 1417216 C:\Windows\System32\msctf.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Серверная библиотека MSCTF 131795770645660438 0x7ffacf770000 212992 C:\Windows\System32\GDI32.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation GDI Client DLL 131795770645660438 0x7ffacf890000 188416 C:\Windows\System32\IMM32.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Multi-User Windows IMM32 API Client DLL 131795770645660438 0x7ffacf8c0000 1462272 C:\Windows\System32\USER32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795770645660438 0x7ffacfb30000 2916352 C:\Windows\System32\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795770645660438 0x7ffacfe20000 663552 C:\Windows\System32\advapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795770645660438 0x7ffad01b0000 335872 C:\Windows\System32\shlwapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека небольших программ оболочки 131795770645660438 0x7ffad0210000 364544 C:\Windows\System32\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795770645660438 0x7ffad0270000 1908736 C:\Windows\SYSTEM32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 84 6208 12140 85 00000000:0031f1da 131795181740423780 0 0 0 Обязательная метка\Средний обязательный уровень WIN-0UOTFKKVN1S\User OneDrive.exe C:\Users\User\AppData\Local\Microsoft\OneDrive\OneDrive.exe /updateInstalled /background Microsoft Corporation 18.131.0701.0007 Microsoft OneDrive 131795770645660654 0x11f0000 1646592 C:\Users\User\AppData\Local\Microsoft\OneDrive\OneDrive.exe 18.131.0701.0007 Microsoft Corporation Microsoft OneDrive 131795770645660654 0x55a0000 1003520 C:\Users\User\AppData\Local\Microsoft\OneDrive\18.131.0701.0007\FileSync.Resources.dll 18.131.0701.0007 Microsoft Corporation Microsoft OneDrive 131795770645660654 0x5c020000 335872 C:\Windows\System32\wow64.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation Win32 Emulation on NT64 131795770645660654 0x5c080000 487424 C:\Windows\System32\wow64win.dll 10.0.14393.1884 (rs1_release.171101-1233) Microsoft Corporation Wow64 Console and Win32 API Logging 131795770645660654 0x5c100000 40960 C:\Windows\System32\wow64cpu.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation AMD64 Wow64 CPU 131795770645660654 0x60750000 1556480 C:\Program Files (x86)\360\Total Security\safemon\safemon.dll 8, 4, 0, 1420 Qihu 360 Software Co., Ltd. 360 Internet Security Internet Protection 131795770645660654 0x64d00000 5079040 C:\Windows\SysWOW64\d2d1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека Microsoft D2D 131795770645660654 0x651e0000 20537344 C:\Windows\SysWOW64\MSHTML.dll 11.00.14393.447 (rs1_release_inmarket.161102-0100) Microsoft Corporation Средство просмотра HTML Microsoft® 131795770645660654 0x66580000 12247040 C:\Windows\SysWOW64\ieframe.dll 11.00.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Браузер 131795770645660654 0x67200000 1978368 C:\Windows\SysWOW64\msxml6.dll 6.30.14393.2156 Microsoft Corporation MSXML 6.0 131795770645660654 0x67500000 1597440 C:\Windows\SysWOW64\ActXPrxy.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation ActiveX Interface Marshaling Library 131795770645660654 0x6b670000 212992 C:\Windows\SysWOW64\mlang.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL многоязыковой поддержки 131795770645660654 0x6b6b0000 36864 C:\Windows\SysWOW64\atlthunk.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation atlthunk.dll 131795770645660654 0x6bab0000 4472832 C:\Users\User\AppData\Local\Microsoft\OneDrive\18.131.0701.0007\Qt5Widgets.dll 5.9.1.0 The Qt Company Ltd C++ application development framework. 131795770645660654 0x6c290000 987136 C:\Windows\SysWOW64\twinapi.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation twinapi.appcore 131795770645660654 0x6c390000 1126400 C:\Windows\SysWOW64\dcomp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft DirectComposition Library 131795770645660654 0x6c4b0000 278528 C:\Windows\SysWOW64\dataexchange.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation Data exchange 131795770645660654 0x6c540000 483328 C:\Windows\SysWOW64\webio.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API протоколов передачи по Веб 131795770645660654 0x6c5c0000 1384448 C:\Windows\SysWOW64\uiautomationcore.dll 7.2.14393.0 (rs1_release.160715-1616) Microsoft Corporation Основные автоматические компоненты Microsoft UI 131795770645660654 0x6c960000 57344 C:\Windows\SysWOW64\msimtf.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Active IMM Server DLL 131795770645660654 0x6c970000 3698688 C:\Windows\SysWOW64\jscript9.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft ® JScript 131795770645660654 0x6cd20000 135168 C:\Windows\SysWOW64\srpapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL программных интерфейсов (API) поставщика общих ресурсов 131795770645660654 0x6cd50000 106496 C:\Windows\SysWOW64\SAMLIB.dll 10.0.14393.82 (rs1_release.160805-1735) Microsoft Corporation SAM Library DLL 131795770645660654 0x6cda0000 528384 C:\Windows\SysWOW64\sxs.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Fusion 2.5 131795770645660654 0x6cf60000 569344 C:\Windows\SysWOW64\taskschd.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Task Scheduler COM API 131795770645660654 0x6d080000 151552 C:\Windows\SysWOW64\cryptnet.dll 10.0.14393.2035 (rs1_release_inmarket.180110-1910) Microsoft Corporation Crypto Network Related API 131795770645660654 0x6d0b0000 847872 C:\Windows\SysWOW64\WinTypes.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL основных типов Windows 131795770645660654 0x6d210000 4993024 C:\Users\User\AppData\Local\Microsoft\OneDrive\18.131.0701.0007\Qt5Gui.dll 5.9.1.0 The Qt Company Ltd C++ application development framework. 131795770645660654 0x6fcd0000 151552 C:\Windows\SysWOW64\dbgcore.DLL 10.0.14321.1024 (debuggers(dbg).160715-1616) Microsoft Windows Core Debugging Helpers 131795770645660654 0x70340000 536576 C:\Windows\SysWOW64\dxgi.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation DirectX Graphics Infrastructure 131795770645660654 0x703d0000 2056192 C:\Windows\SysWOW64\DWrite.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Службы Microsoft DirectX Typography 131795770645660654 0x707b0000 110592 C:\Windows\SysWOW64\ncryptsslp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft SChannel Provider 131795770645660654 0x707f0000 2293760 C:\Windows\SysWOW64\d3d11.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation Direct3D 11 Runtime 131795770645660654 0x70a80000 409600 C:\Windows\SysWOW64\schannel.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик безопасности TLS/SSL 131795770645660654 0x70b00000 176128 C:\Windows\SysWOW64\Wscapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API центра обеспечения безопасности Windows 131795770645660654 0x70b40000 69632 C:\Windows\SysWOW64\mskeyprotect.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик защиты ключей (Майкрософт) 131795770645660654 0x70ca0000 45056 C:\Windows\SysWOW64\NETUTILS.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API Helpers DLL 131795770645660654 0x70cc0000 65536 C:\Windows\SysWOW64\ondemandconnroutehelper.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation On Demand Connctiond Route Helper 131795770645660654 0x70ce0000 1519616 C:\Windows\SysWOW64\wpc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека параметров родительского контроля 131795770645660654 0x70e60000 176128 C:\Windows\SysWOW64\NTASN1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft ASN.1 API 131795770645660654 0x70f00000 815104 C:\Windows\SysWOW64\OneCoreUAPCommonProxyStub.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation OneCoreUAP Common Proxy Stub 131795770645660654 0x70fd0000 1331200 C:\Windows\SysWOW64\dbghelp.dll 10.0.14321.1024 (rs1_release.160715-1616) Microsoft Windows Image Helper 131795770645660654 0x71140000 77824 C:\Windows\SysWOW64\NETAPI32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API DLL 131795770645660654 0x71200000 708608 C:\Windows\SysWOW64\TokenBroker.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Token Broker 131795770645660654 0x712b0000 602112 C:\Windows\SysWOW64\Windows.Security.Authentication.Web.Core.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Token Broker WinRT API 131795770645660654 0x71350000 2867200 C:\Users\User\AppData\Local\Microsoft\OneDrive\18.131.0701.0007\Qt5Quick.dll 5.9.1.0 The Qt Company Ltd C++ application development framework. 131795770645660654 0x71610000 77824 C:\Windows\SysWOW64\dhcpcsvc6.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиент DHCPv6 131795770645660654 0x71630000 487424 C:\Windows\SysWOW64\wlidprov.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft® Account Provider 131795770645660654 0x716b0000 1294336 C:\Users\User\AppData\Local\Microsoft\OneDrive\18.131.0701.0007\LIBEAY32.dll 1.0.2k The OpenSSL Project, http://www.openssl.org/ OpenSSL Shared Library 131795770645660654 0x717f0000 2637824 C:\Users\User\AppData\Local\Microsoft\OneDrive\18.131.0701.0007\Qt5Qml.dll 5.9.1.0 The Qt Company Ltd C++ application development framework. 131795770645660654 0x71a80000 4796416 C:\Users\User\AppData\Local\Microsoft\OneDrive\18.131.0701.0007\Qt5Core.dll 5.9.1.0 The Qt Company Ltd C++ application development framework. 131795770645660654 0x71f20000 6033408 C:\Users\User\AppData\Local\Microsoft\OneDrive\18.131.0701.0007\SyncEngine.DLL 18.131.0701.0007 Microsoft Corporation Microsoft OneDrive Sync Engine 131795770645660654 0x724f0000 57344 C:\Windows\SysWOW64\credui.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Credential Manager User Interface 131795770645660654 0x72530000 126976 C:\Windows\SysWOW64\IDStore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Identity Store 131795770645660654 0x72550000 561152 C:\Windows\SysWOW64\Windows.Networking.Connectivity.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Networking Connectivity Runtime DLL 131795770645660654 0x725e0000 2273280 C:\Windows\SysWOW64\iertutil.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служебная программа времени выполнения для Internet Explorer 131795770645660654 0x72810000 28672 C:\Windows\SysWOW64\familysafetyext.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation FamilySafety ChildAccount Extensions 131795770645660654 0x72820000 167936 C:\Windows\SysWOW64\MicrosoftAccountTokenProvider.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft® Account Token Provider 131795770645660654 0x72850000 331776 C:\Windows\SysWOW64\AppXDeploymentClient.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL-библиотека клиента развертывания AppX 131795770645660654 0x728b0000 135168 C:\Users\User\AppData\Local\Microsoft\OneDrive\18.131.0701.0007\FileSyncFAL.dll 18.131.0701.0007 Microsoft Corporation Microsoft OneDriveFile Sync FAL 131795770645660654 0x728e0000 1372160 C:\Windows\SysWOW64\PROPSYS.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Система страниц свойств (Майкрософт) 131795770645660654 0x72a30000 188416 C:\Windows\SysWOW64\XmlLite.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft XmlLite Library 131795770645660654 0x72a60000 589824 C:\Windows\SysWOW64\wer.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека сообщений об ошибках Windows 131795770645660654 0x72b90000 126976 C:\Windows\SysWOW64\dwmapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Интерфейс API диспетчера окон рабочего стола (Майкрософт) 131795770645660654 0x72bb0000 1105920 C:\Users\User\AppData\Local\Microsoft\OneDrive\18.131.0701.0007\platforms\qwindows.dll 5.9.1.0 The Qt Company Ltd C++ application development framework. 131795770645660654 0x72cc0000 1658880 C:\Windows\SysWOW64\urlmon.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширения OLE32 для Win32 131795770645660654 0x72e60000 172032 C:\Windows\SysWOW64\rometadata.dll 4.6.1586.0 built by: NETFXREL2 Microsoft Corporation Microsoft MetaData Library 131795770645660654 0x72e90000 299008 C:\Users\User\AppData\Local\Microsoft\OneDrive\18.131.0701.0007\SSLEAY32.dll 1.0.2k The OpenSSL Project, http://www.openssl.org/ OpenSSL Shared Library 131795770645660654 0x72ee0000 950272 C:\Users\User\AppData\Local\Microsoft\OneDrive\18.131.0701.0007\Qt5Network.dll 5.9.1.0 The Qt Company Ltd C++ application development framework. 131795770645660654 0x72fd0000 126976 C:\Windows\SysWOW64\loadperf.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Загрузка и выгрузка счетчиков производительности 131795770645660654 0x72ff0000 278528 C:\Windows\SysWOW64\pdh.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Модуль поддержки данных производительности Windows 131795770645660654 0x73040000 253952 C:\Users\User\AppData\Local\Microsoft\OneDrive\18.131.0701.0007\Qt5WinExtras.dll 5.9.1.0 The Qt Company Ltd C++ application development framework. 131795770645660654 0x73080000 880640 C:\Users\User\AppData\Local\Microsoft\OneDrive\18.131.0701.0007\ADAL.dll 1.0.2110.0526 Microsoft ADAL.Native 131795770645660654 0x73160000 32768 C:\Windows\SysWOW64\WSOCK32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Socket 32-Bit DLL 131795770645660654 0x73170000 352256 C:\Windows\SysWOW64\faultrep.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека отчетов о сбоях в пользовательском режиме Windows 131795770645660654 0x731d0000 413696 C:\Users\User\AppData\Local\Microsoft\OneDrive\18.131.0701.0007\WnsClientApi.dll 18.131.0701.0007 Microsoft Corporation OneDrive WNS Client Library 131795770645660654 0x73240000 520192 C:\Users\User\AppData\Local\Microsoft\OneDrive\18.131.0701.0007\LogUploader.dll 18.131.0701.0007 Microsoft Corporation OneDrive Sync LogUploader Library 131795770645660654 0x732c0000 1269760 C:\Users\User\AppData\Local\Microsoft\OneDrive\18.131.0701.0007\FileSyncViews.dll 18.131.0701.0007 Microsoft Corporation Microsoft OneDrive Qt Components 131795770645660654 0x73400000 159744 C:\Users\User\AppData\Local\Microsoft\OneDrive\18.131.0701.0007\UpdateRingSettings.dll 18.131.0701.0007 Microsoft Corporation Update Ring Settings 131795770645660654 0x73430000 1748992 C:\Users\User\AppData\Local\Microsoft\OneDrive\18.131.0701.0007\FileSyncSessions.dll 18.131.0701.0007 Microsoft Corporation P2P Session Library 131795770645660654 0x735e0000 671744 C:\Users\User\AppData\Local\Microsoft\OneDrive\18.131.0701.0007\RemoteAccess.dll 18.131.0701.0007 Microsoft Corporation Remote Access 131795770645660654 0x73690000 188416 C:\Users\User\AppData\Local\Microsoft\OneDrive\18.131.0701.0007\Telemetry.dll 18.131.0701.0007 Microsoft Corporation Telemetry Library 131795770645660654 0x736c0000 32768 C:\Users\User\AppData\Local\Microsoft\OneDrive\18.131.0701.0007\ETWLog.dll 18.131.0701.0007 Microsoft Corporation ETW Session Library 131795770645660654 0x736d0000 3600384 C:\Users\User\AppData\Local\Microsoft\OneDrive\18.131.0701.0007\FileSyncClient.dll 18.131.0701.0007 Microsoft Corporation Microsoft OneDrive Client 131795770645660654 0x73a40000 32768 C:\Windows\SysWOW64\WINNSI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Network Store Information RPC interface 131795770645660654 0x73a50000 299008 C:\Windows\SysWOW64\fwpuclnt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API пользовательского режима FWP/IPsec 131795770645660654 0x73aa0000 32768 C:\Windows\SysWOW64\DPAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Data Protection API 131795770645660654 0x73ab0000 32768 C:\Windows\SysWOW64\rasadhlp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Remote Access AutoDial Helper 131795770645660654 0x73ac0000 81920 C:\Windows\SysWOW64\dhcpcsvc.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служба DHCP-клиента 131795770645660654 0x73ae0000 40960 C:\Windows\SysWOW64\Secur32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Security Support Provider Interface 131795770645660654 0x73af0000 1417216 C:\Users\User\AppData\Local\Microsoft\OneDrive\18.131.0701.0007\LoggingPlatform.dll 18.131.0701.0007 Microsoft Corporation Logging Platform 131795770645660654 0x73c50000 1478656 C:\Windows\WinSxS\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.14393.1715_none_f67438d2f2547a00\gdiplus.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Microsoft GDI+ 131795770645660654 0x73dc0000 1171456 C:\Users\User\AppData\Local\Microsoft\OneDrive\18.131.0701.0007\ucrtbase.dll 10.0.17134.12 (WinBuild.160101.0800) Microsoft Corporation Microsoft® C Runtime Library 131795770645660654 0x73ee0000 61440 C:\Windows\SysWOW64\wtsapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Remote Desktop Session Host Server SDK APIs 131795770645660654 0x73f00000 192512 C:\Windows\SysWOW64\IPHLPAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API вспомогательного приложения IP 131795770645660654 0x73f30000 512000 C:\Windows\SysWOW64\DNSAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Динамическая библиотека API DNS-клиента 131795770645660654 0x73fb0000 36864 C:\Windows\SysWOW64\ktmw32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows KTM Win32 Client DLL 131795770645660654 0x73ff0000 319488 C:\Windows\SysWOW64\MSWSOCK.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширение поставщика службы API Microsoft Windows Sockets 2.0 131795770645660654 0x74060000 192512 C:\Windows\SysWOW64\rsaenh.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Enhanced Cryptographic Provider 131795770645660654 0x74090000 462848 C:\Users\User\AppData\Local\Microsoft\OneDrive\18.131.0701.0007\MSVCP140.dll 14.13.26020.0 built by: VCTOOLSREL Microsoft Corporation Microsoft® C Runtime Library 131795770645660654 0x74110000 479232 C:\Windows\SysWOW64\UxTheme.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека тем UxTheme (Microsoft) 131795770645660654 0x74190000 110592 C:\Windows\SysWOW64\bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795770645660654 0x741b0000 77824 C:\Windows\SysWOW64\CRYPTSP.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Cryptographic Service Provider API 131795770645660654 0x741d0000 86016 C:\Users\User\AppData\Local\Microsoft\OneDrive\18.131.0701.0007\VCRUNTIME140.dll 14.13.26020.0 built by: VCTOOLSREL Microsoft Corporation Microsoft® C Runtime Library 131795770645660654 0x741f0000 143360 C:\Windows\SysWOW64\WINMMBASE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base Multimedia Extension API DLL 131795770645660654 0x74220000 53248 C:\Windows\SysWOW64\TOKENBINDING.dll 10.0.14393.1593 (rs1_release.170731-1934) Microsoft Corporation Token Binding Protocol 131795770645660654 0x74230000 147456 C:\Windows\SysWOW64\WINMM.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation MCI API DLL 131795770645660654 0x74260000 2514944 C:\Windows\SysWOW64\WININET.dll 11.00.14393.447 (rs1_release_inmarket.161102-0100) Microsoft Corporation Расширения Интернета для Win32 131795770645660654 0x744d0000 2138112 C:\Windows\WinSxS\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.14393.953_none_89c2555adb023171\COMCTL32.dll 6.10 (rs1_release_inmarket.170303-1614) Microsoft Corporation Библиотека элементов управления взаимодействия с пользователем 131795770645660654 0x746e0000 32768 C:\Windows\SysWOW64\VERSION.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Version Checking and File Installation Libraries 131795770645660654 0x746f0000 106496 C:\Windows\SysWOW64\USERENV.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Userenv 131795770645660654 0x74710000 90112 C:\Windows\SysWOW64\MPR.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека маршрутизации для нескольких служб доступа 131795770645660654 0x74730000 598016 C:\Windows\SysWOW64\apphelp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиентская библиотека совместимости приложений 131795770645660654 0x747d0000 40960 C:\Windows\SysWOW64\CRYPTBASE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base cryptographic API DLL 131795770645660654 0x747e0000 126976 C:\Windows\SysWOW64\SspiCli.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Security Support Provider Interface 131795770645660654 0x74800000 151552 C:\Windows\SysWOW64\IMM32.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Multi-User Windows IMM32 API Client DLL 131795770645660654 0x74910000 2170880 C:\Windows\SysWOW64\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795770645660654 0x74b30000 53248 C:\Windows\SysWOW64\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795770645660654 0x74b60000 790528 C:\Windows\SysWOW64\RPCRT4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795770645660654 0x74c30000 1417216 C:\Windows\SysWOW64\gdi32full.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation GDI Client DLL 131795770645660654 0x74d90000 24576 C:\Windows\SysWOW64\PSAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Process Status Helper 131795770645660654 0x74da0000 778240 C:\Windows\SysWOW64\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795770645660654 0x74e60000 557056 C:\Windows\SysWOW64\shcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795770645660654 0x74ef0000 540672 C:\Windows\SysWOW64\clbcatq.dll 2001.12.10941.16384 (rs1_release.160715-1616) Microsoft Corporation COM+ Configuration Catalog 131795770645660654 0x74f80000 278528 C:\Windows\SysWOW64\WINTRUST.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation Microsoft Trust Verification APIs 131795770645660654 0x74fd0000 405504 C:\Windows\SysWOW64\WS2_32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation 32-разрядная библиотека Windows Socket 2.0 131795770645660654 0x75040000 282624 C:\Windows\SysWOW64\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795770645660654 0x75090000 1265664 C:\Windows\SysWOW64\MSCTF.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Серверная библиотека MSCTF 131795770645660654 0x751d0000 57344 C:\Windows\SysWOW64\MSASN1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ASN.1 Runtime APIs 131795770645660654 0x751e0000 1708032 C:\Windows\SysWOW64\KERNELBASE.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645660654 0x75390000 266240 C:\Windows\SysWOW64\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795770645660654 0x753e0000 1560576 C:\Windows\SysWOW64\CRYPT32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API32 криптографии 131795770645660654 0x75560000 487424 C:\Windows\SysWOW64\ADVAPI32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795770645660654 0x756c0000 5693440 C:\Windows\SysWOW64\windows.storage.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API хранения Microsoft WinRT 131795770645660654 0x75c90000 286720 C:\Windows\SysWOW64\shlwapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека небольших программ оболочки 131795770645660654 0x75ce0000 20811776 C:\Windows\SysWOW64\SHELL32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Общая библиотека оболочки Windows 131795770645660654 0x774d0000 86016 C:\Windows\SysWOW64\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795770645660654 0x774f0000 61440 C:\Windows\SysWOW64\profapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Profile Basic API 131795770645660654 0x77560000 1437696 C:\Windows\SysWOW64\USER32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795770645660654 0x776c0000 368640 C:\Windows\SysWOW64\bcryptPrimitives.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation Windows Cryptographic Primitives Library 131795770645660654 0x77780000 503808 C:\Windows\SysWOW64\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645660654 0x77800000 606208 C:\Windows\SysWOW64\OLEAUT32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795770645660654 0x77ac0000 966656 C:\Windows\SysWOW64\ole32.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft OLE для Windows 131795770645660654 0x77bb0000 176128 C:\Windows\SysWOW64\GDI32.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation GDI Client DLL 131795770645660654 0x77cd0000 221184 C:\Windows\SysWOW64\cfgmgr32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Configuration Manager DLL 131795770645660654 0x77d10000 28672 C:\Windows\SysWOW64\NSI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation NSI User-mode interface DLL 131795770645660654 0x77d20000 1585152 C:\Windows\SysWOW64\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 131795770645660654 0x7ffad0270000 1908736 C:\Windows\SYSTEM32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 86 6140 7744 57 00000000:0031f1da 131795747339404666 0 0 0 Обязательная метка\Ненадежный обязательный уровень WIN-0UOTFKKVN1S\User browser.exe C:\Users\User\AppData\Local\Yandex\YandexBrowser\Application\browser.exe "C:\Users\User\AppData\Local\Yandex\YandexBrowser\Application\browser.exe" --type=renderer --enable-in-process-wmf-demuxer --field-trial-handle=1292,9555382311565764851,7120838982649204725,131072 --enable-ignition --disable-gpu-compositing --service-pipe-token=764E64A4EA650A23B18EB059FF0B4B51 --lang=ru --user-id=32B2E0A1-3039-4C67-86BE-75A88EF21B54 --brand-id=yandex --partner-id=7924 --help-url=https://api.browser.yandex.ru/redirect/help/ --user-agent-info --translate-security-origin=https://translate.yandex.net --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --enable-instaserp --device-scale-factor=1 --num-raster-threads=1 --enable-compositor-image-animations --service-request-channel-token=764E64A4EA650A23B18EB059FF0B4B51 --renderer-client-id=106 --mojo-platform-channel-handle=6612 /prefetch:1 YANDEX LLC 18.6.1.770 Yandex 131795770645660799 0x10e0000 2519040 C:\Users\User\AppData\Local\Yandex\YandexBrowser\Application\browser.exe 18.6.1.770 YANDEX LLC Yandex 131795770645660799 0x58720000 59748352 C:\Users\User\AppData\Local\Yandex\YandexBrowser\Application\18.6.1.770\browser_child.dll 18.6.1.770 YANDEX LLC Yandex 131795770645660799 0x5c020000 335872 C:\Windows\System32\wow64.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation Win32 Emulation on NT64 131795770645660799 0x5c080000 487424 C:\Windows\System32\wow64win.dll 10.0.14393.1884 (rs1_release.171101-1233) Microsoft Corporation Wow64 Console and Win32 API Logging 131795770645660799 0x5c100000 40960 C:\Windows\System32\wow64cpu.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation AMD64 Wow64 CPU 131795770645660799 0x6e8b0000 1859584 C:\Windows\SysWOW64\mfmp4srcsnk.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL источника и приемника MPEG4 Media Foundation 131795770645660799 0x6ef30000 647168 C:\Windows\SysWOW64\evr.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека DLL средства отображения видео 131795770645660799 0x6efd0000 458752 C:\Windows\SysWOW64\msauddecmft.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Media Foundation Audio Decoders 131795770645660799 0x6f790000 1085440 C:\Windows\SysWOW64\mfperfhelper.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation MFPerf DLL 131795770645660799 0x6f8a0000 2220032 C:\Windows\SysWOW64\msmpeg2vdec.dll 10.0.14393.953 (rs1_release_inmarket.170303-1614) Microsoft Corporation Microsoft DTV-DVD Video Decoder 131795770645660799 0x6fac0000 1130496 C:\Windows\SysWOW64\mfplat.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Media Foundation Platform DLL 131795770645660799 0x6ff60000 172032 C:\Windows\SysWOW64\RTWorkQ.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL для WorkQueue реального времени 131795770645660799 0x70030000 593920 C:\Users\User\AppData\Local\Yandex\YandexBrowser\Application\18.6.1.770\browser_elf.dll 18.6.1.770 YANDEX LLC Yandex 131795770645660799 0x700d0000 434176 C:\Windows\SysWOW64\WINSPOOL.DRV 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Драйвер диспетчера очереди Windows 131795770645660799 0x70340000 536576 C:\Windows\SysWOW64\dxgi.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation DirectX Graphics Infrastructure 131795770645660799 0x703d0000 2056192 C:\Windows\SysWOW64\DWrite.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Службы Microsoft DirectX Typography 131795770645660799 0x707d0000 86016 C:\Windows\SysWOW64\SAMCLI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Security Accounts Manager Client DLL 131795770645660799 0x70a20000 94208 C:\Windows\SysWOW64\USP10.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Uniscribe Unicode script processor 131795770645660799 0x70ca0000 45056 C:\Windows\SysWOW64\NETUTILS.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API Helpers DLL 131795770645660799 0x70fd0000 1331200 C:\Windows\SysWOW64\dbghelp.dll 10.0.14321.1024 (rs1_release.160715-1616) Microsoft Windows Image Helper 131795770645660799 0x71140000 77824 C:\Windows\SysWOW64\NETAPI32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API DLL 131795770645660799 0x725e0000 2273280 C:\Windows\SysWOW64\iertutil.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служебная программа времени выполнения для Internet Explorer 131795770645660799 0x728e0000 1372160 C:\Windows\SysWOW64\PROPSYS.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Система страниц свойств (Майкрософт) 131795770645660799 0x72af0000 655360 C:\Windows\SysWOW64\WINHTTP.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Службы HTTP Windows 131795770645660799 0x72cc0000 1658880 C:\Windows\SysWOW64\urlmon.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширения OLE32 для Win32 131795770645660799 0x73ac0000 81920 C:\Windows\SysWOW64\dhcpcsvc.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служба DHCP-клиента 131795770645660799 0x73ae0000 40960 C:\Windows\SysWOW64\Secur32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Security Support Provider Interface 131795770645660799 0x73f00000 192512 C:\Windows\SysWOW64\IPHLPAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API вспомогательного приложения IP 131795770645660799 0x74190000 110592 C:\Windows\SysWOW64\bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795770645660799 0x741b0000 77824 C:\Windows\SysWOW64\cryptsp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Cryptographic Service Provider API 131795770645660799 0x741f0000 143360 C:\Windows\SysWOW64\WINMMBASE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base Multimedia Extension API DLL 131795770645660799 0x74230000 147456 C:\Windows\SysWOW64\WINMM.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation MCI API DLL 131795770645660799 0x744d0000 2138112 C:\Windows\WinSxS\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.14393.953_none_89c2555adb023171\COMCTL32.dll 6.10 (rs1_release_inmarket.170303-1614) Microsoft Corporation Библиотека элементов управления взаимодействия с пользователем 131795770645660799 0x746e0000 32768 C:\Windows\SysWOW64\VERSION.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Version Checking and File Installation Libraries 131795770645660799 0x746f0000 106496 C:\Windows\SysWOW64\USERENV.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Userenv 131795770645660799 0x747d0000 40960 C:\Windows\SysWOW64\CRYPTBASE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base cryptographic API DLL 131795770645660799 0x747e0000 126976 C:\Windows\SysWOW64\SspiCli.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Security Support Provider Interface 131795770645660799 0x74800000 151552 C:\Windows\SysWOW64\IMM32.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Multi-User Windows IMM32 API Client DLL 131795770645660799 0x74910000 2170880 C:\Windows\SysWOW64\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795770645660799 0x74b30000 53248 C:\Windows\SysWOW64\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795770645660799 0x74b60000 790528 C:\Windows\SysWOW64\RPCRT4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795770645660799 0x74c30000 1417216 C:\Windows\SysWOW64\gdi32full.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation GDI Client DLL 131795770645660799 0x74d90000 24576 C:\Windows\SysWOW64\PSAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Process Status Helper 131795770645660799 0x74da0000 778240 C:\Windows\SysWOW64\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795770645660799 0x74e60000 557056 C:\Windows\SysWOW64\shcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795770645660799 0x74f80000 278528 C:\Windows\SysWOW64\WINTRUST.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation Microsoft Trust Verification APIs 131795770645660799 0x74fd0000 405504 C:\Windows\SysWOW64\WS2_32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation 32-разрядная библиотека Windows Socket 2.0 131795770645660799 0x75040000 282624 C:\Windows\SysWOW64\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795770645660799 0x751d0000 57344 C:\Windows\SysWOW64\MSASN1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ASN.1 Runtime APIs 131795770645660799 0x751e0000 1708032 C:\Windows\SysWOW64\KERNELBASE.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645660799 0x75390000 266240 C:\Windows\SysWOW64\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795770645660799 0x753e0000 1560576 C:\Windows\SysWOW64\CRYPT32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API32 криптографии 131795770645660799 0x75560000 487424 C:\Windows\SysWOW64\ADVAPI32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795770645660799 0x756c0000 5693440 C:\Windows\SysWOW64\windows.storage.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API хранения Microsoft WinRT 131795770645660799 0x75c90000 286720 C:\Windows\SysWOW64\shlwapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека небольших программ оболочки 131795770645660799 0x75ce0000 20811776 C:\Windows\SysWOW64\SHELL32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Общая библиотека оболочки Windows 131795770645660799 0x774d0000 86016 C:\Windows\SysWOW64\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795770645660799 0x774f0000 61440 C:\Windows\SysWOW64\profapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Profile Basic API 131795770645660799 0x77560000 1437696 C:\Windows\SysWOW64\USER32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795770645660799 0x776c0000 368640 C:\Windows\SysWOW64\bcryptPrimitives.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation Windows Cryptographic Primitives Library 131795770645660799 0x77780000 503808 C:\Windows\SysWOW64\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645660799 0x77800000 606208 C:\Windows\SysWOW64\OLEAUT32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795770645660799 0x77ac0000 966656 C:\Windows\SysWOW64\ole32.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft OLE для Windows 131795770645660799 0x77bb0000 176128 C:\Windows\SysWOW64\GDI32.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation GDI Client DLL 131795770645660799 0x77be0000 937984 C:\Windows\SysWOW64\COMDLG32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека общих диалоговых окон 131795770645660799 0x77cd0000 221184 C:\Windows\SysWOW64\cfgmgr32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Configuration Manager DLL 131795770645660799 0x77d10000 28672 C:\Windows\SysWOW64\NSI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation NSI User-mode interface DLL 131795770645660799 0x77d20000 1585152 C:\Windows\SysWOW64\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 131795770645660799 0x7ffad0270000 1908736 C:\Windows\SYSTEM32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 87 11432 7744 57 00000000:0031f1da 131795755605761168 0 0 0 Обязательная метка\Ненадежный обязательный уровень WIN-0UOTFKKVN1S\User browser.exe C:\Users\User\AppData\Local\Yandex\YandexBrowser\Application\browser.exe "C:\Users\User\AppData\Local\Yandex\YandexBrowser\Application\browser.exe" --type=renderer --enable-in-process-wmf-demuxer --field-trial-handle=1292,9555382311565764851,7120838982649204725,131072 --enable-ignition --disable-gpu-compositing --service-pipe-token=9DD318D38190D474A9A0F5AFD262A449 --lang=ru --user-id=32B2E0A1-3039-4C67-86BE-75A88EF21B54 --brand-id=yandex --partner-id=7924 --help-url=https://api.browser.yandex.ru/redirect/help/ --user-agent-info --translate-security-origin=https://translate.yandex.net --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --enable-instaserp --device-scale-factor=1 --num-raster-threads=1 --enable-compositor-image-animations --service-request-channel-token=9DD318D38190D474A9A0F5AFD262A449 --renderer-client-id=109 --mojo-platform-channel-handle=4152 /prefetch:1 YANDEX LLC 18.6.1.770 Yandex 131795770645660929 0x10e0000 2519040 C:\Users\User\AppData\Local\Yandex\YandexBrowser\Application\browser.exe 18.6.1.770 YANDEX LLC Yandex 131795770645660929 0x58720000 59748352 C:\Users\User\AppData\Local\Yandex\YandexBrowser\Application\18.6.1.770\browser_child.dll 18.6.1.770 YANDEX LLC Yandex 131795770645660929 0x5c020000 335872 C:\Windows\System32\wow64.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation Win32 Emulation on NT64 131795770645660929 0x5c080000 487424 C:\Windows\System32\wow64win.dll 10.0.14393.1884 (rs1_release.171101-1233) Microsoft Corporation Wow64 Console and Win32 API Logging 131795770645660929 0x5c100000 40960 C:\Windows\System32\wow64cpu.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation AMD64 Wow64 CPU 131795770645660929 0x6e8b0000 1859584 C:\Windows\SysWOW64\mfmp4srcsnk.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL источника и приемника MPEG4 Media Foundation 131795770645660929 0x6ef30000 647168 C:\Windows\SysWOW64\evr.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека DLL средства отображения видео 131795770645660929 0x6efd0000 458752 C:\Windows\SysWOW64\msauddecmft.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Media Foundation Audio Decoders 131795770645660929 0x6f790000 1085440 C:\Windows\SysWOW64\mfperfhelper.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation MFPerf DLL 131795770645660929 0x6f8a0000 2220032 C:\Windows\SysWOW64\msmpeg2vdec.dll 10.0.14393.953 (rs1_release_inmarket.170303-1614) Microsoft Corporation Microsoft DTV-DVD Video Decoder 131795770645660929 0x6fac0000 1130496 C:\Windows\SysWOW64\mfplat.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Media Foundation Platform DLL 131795770645660929 0x6ff60000 172032 C:\Windows\SysWOW64\RTWorkQ.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL для WorkQueue реального времени 131795770645660929 0x70030000 593920 C:\Users\User\AppData\Local\Yandex\YandexBrowser\Application\18.6.1.770\browser_elf.dll 18.6.1.770 YANDEX LLC Yandex 131795770645660929 0x700d0000 434176 C:\Windows\SysWOW64\WINSPOOL.DRV 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Драйвер диспетчера очереди Windows 131795770645660929 0x70340000 536576 C:\Windows\SysWOW64\dxgi.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation DirectX Graphics Infrastructure 131795770645660929 0x703d0000 2056192 C:\Windows\SysWOW64\DWrite.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Службы Microsoft DirectX Typography 131795770645660929 0x707d0000 86016 C:\Windows\SysWOW64\SAMCLI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Security Accounts Manager Client DLL 131795770645660929 0x70a20000 94208 C:\Windows\SysWOW64\USP10.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Uniscribe Unicode script processor 131795770645660929 0x70ca0000 45056 C:\Windows\SysWOW64\NETUTILS.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API Helpers DLL 131795770645660929 0x70fd0000 1331200 C:\Windows\SysWOW64\dbghelp.dll 10.0.14321.1024 (rs1_release.160715-1616) Microsoft Windows Image Helper 131795770645660929 0x71140000 77824 C:\Windows\SysWOW64\NETAPI32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API DLL 131795770645660929 0x725e0000 2273280 C:\Windows\SysWOW64\iertutil.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служебная программа времени выполнения для Internet Explorer 131795770645660929 0x728e0000 1372160 C:\Windows\SysWOW64\PROPSYS.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Система страниц свойств (Майкрософт) 131795770645660929 0x72af0000 655360 C:\Windows\SysWOW64\WINHTTP.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Службы HTTP Windows 131795770645660929 0x72cc0000 1658880 C:\Windows\SysWOW64\urlmon.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширения OLE32 для Win32 131795770645660929 0x73ac0000 81920 C:\Windows\SysWOW64\dhcpcsvc.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служба DHCP-клиента 131795770645660929 0x73ae0000 40960 C:\Windows\SysWOW64\Secur32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Security Support Provider Interface 131795770645660929 0x73f00000 192512 C:\Windows\SysWOW64\IPHLPAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API вспомогательного приложения IP 131795770645660929 0x74190000 110592 C:\Windows\SysWOW64\bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795770645660929 0x741b0000 77824 C:\Windows\SysWOW64\cryptsp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Cryptographic Service Provider API 131795770645660929 0x741f0000 143360 C:\Windows\SysWOW64\WINMMBASE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base Multimedia Extension API DLL 131795770645660929 0x74230000 147456 C:\Windows\SysWOW64\WINMM.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation MCI API DLL 131795770645660929 0x744d0000 2138112 C:\Windows\WinSxS\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.14393.953_none_89c2555adb023171\COMCTL32.dll 6.10 (rs1_release_inmarket.170303-1614) Microsoft Corporation Библиотека элементов управления взаимодействия с пользователем 131795770645660929 0x746e0000 32768 C:\Windows\SysWOW64\VERSION.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Version Checking and File Installation Libraries 131795770645660929 0x746f0000 106496 C:\Windows\SysWOW64\USERENV.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Userenv 131795770645660929 0x747d0000 40960 C:\Windows\SysWOW64\CRYPTBASE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base cryptographic API DLL 131795770645660929 0x747e0000 126976 C:\Windows\SysWOW64\SspiCli.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Security Support Provider Interface 131795770645660929 0x74800000 151552 C:\Windows\SysWOW64\IMM32.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Multi-User Windows IMM32 API Client DLL 131795770645660929 0x74910000 2170880 C:\Windows\SysWOW64\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795770645660929 0x74b30000 53248 C:\Windows\SysWOW64\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795770645660929 0x74b60000 790528 C:\Windows\SysWOW64\RPCRT4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795770645660929 0x74c30000 1417216 C:\Windows\SysWOW64\gdi32full.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation GDI Client DLL 131795770645660929 0x74d90000 24576 C:\Windows\SysWOW64\PSAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Process Status Helper 131795770645660929 0x74da0000 778240 C:\Windows\SysWOW64\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795770645660929 0x74e60000 557056 C:\Windows\SysWOW64\shcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795770645660929 0x74f80000 278528 C:\Windows\SysWOW64\WINTRUST.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation Microsoft Trust Verification APIs 131795770645660929 0x74fd0000 405504 C:\Windows\SysWOW64\WS2_32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation 32-разрядная библиотека Windows Socket 2.0 131795770645660929 0x75040000 282624 C:\Windows\SysWOW64\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795770645660929 0x751d0000 57344 C:\Windows\SysWOW64\MSASN1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ASN.1 Runtime APIs 131795770645660929 0x751e0000 1708032 C:\Windows\SysWOW64\KERNELBASE.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645660929 0x75390000 266240 C:\Windows\SysWOW64\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795770645660929 0x753e0000 1560576 C:\Windows\SysWOW64\CRYPT32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API32 криптографии 131795770645660929 0x75560000 487424 C:\Windows\SysWOW64\ADVAPI32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795770645660929 0x756c0000 5693440 C:\Windows\SysWOW64\windows.storage.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API хранения Microsoft WinRT 131795770645660929 0x75c90000 286720 C:\Windows\SysWOW64\shlwapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека небольших программ оболочки 131795770645660929 0x75ce0000 20811776 C:\Windows\SysWOW64\SHELL32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Общая библиотека оболочки Windows 131795770645660929 0x774d0000 86016 C:\Windows\SysWOW64\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795770645660929 0x774f0000 61440 C:\Windows\SysWOW64\profapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Profile Basic API 131795770645660929 0x77560000 1437696 C:\Windows\SysWOW64\USER32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795770645660929 0x776c0000 368640 C:\Windows\SysWOW64\bcryptPrimitives.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation Windows Cryptographic Primitives Library 131795770645660929 0x77780000 503808 C:\Windows\SysWOW64\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645660929 0x77800000 606208 C:\Windows\SysWOW64\OLEAUT32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795770645660929 0x77ac0000 966656 C:\Windows\SysWOW64\ole32.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft OLE для Windows 131795770645660929 0x77bb0000 176128 C:\Windows\SysWOW64\GDI32.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation GDI Client DLL 131795770645660929 0x77be0000 937984 C:\Windows\SysWOW64\COMDLG32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека общих диалоговых окон 131795770645660929 0x77cd0000 221184 C:\Windows\SysWOW64\cfgmgr32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Configuration Manager DLL 131795770645660929 0x77d10000 28672 C:\Windows\SysWOW64\NSI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation NSI User-mode interface DLL 131795770645660929 0x77d20000 1585152 C:\Windows\SysWOW64\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 131795770645660929 0x7ffad0270000 1908736 C:\Windows\SYSTEM32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 88 10384 7744 57 00000000:0031f1da 131795755746873891 0 0 0 Обязательная метка\Ненадежный обязательный уровень WIN-0UOTFKKVN1S\User browser.exe C:\Users\User\AppData\Local\Yandex\YandexBrowser\Application\browser.exe "C:\Users\User\AppData\Local\Yandex\YandexBrowser\Application\browser.exe" --type=renderer --enable-in-process-wmf-demuxer --field-trial-handle=1292,9555382311565764851,7120838982649204725,131072 --enable-ignition --disable-gpu-compositing --service-pipe-token=7E669976FFDCEE94D9B90B02CADE1179 --lang=ru --user-id=32B2E0A1-3039-4C67-86BE-75A88EF21B54 --brand-id=yandex --partner-id=7924 --help-url=https://api.browser.yandex.ru/redirect/help/ --user-agent-info --translate-security-origin=https://translate.yandex.net --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --enable-instaserp --device-scale-factor=1 --num-raster-threads=1 --enable-compositor-image-animations --service-request-channel-token=7E669976FFDCEE94D9B90B02CADE1179 --renderer-client-id=112 --mojo-platform-channel-handle=5412 /prefetch:1 YANDEX LLC 18.6.1.770 Yandex 131795770645661053 0x10e0000 2519040 C:\Users\User\AppData\Local\Yandex\YandexBrowser\Application\browser.exe 18.6.1.770 YANDEX LLC Yandex 131795770645661053 0x58720000 59748352 C:\Users\User\AppData\Local\Yandex\YandexBrowser\Application\18.6.1.770\browser_child.dll 18.6.1.770 YANDEX LLC Yandex 131795770645661053 0x5c020000 335872 C:\Windows\System32\wow64.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation Win32 Emulation on NT64 131795770645661053 0x5c080000 487424 C:\Windows\System32\wow64win.dll 10.0.14393.1884 (rs1_release.171101-1233) Microsoft Corporation Wow64 Console and Win32 API Logging 131795770645661053 0x5c100000 40960 C:\Windows\System32\wow64cpu.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation AMD64 Wow64 CPU 131795770645661053 0x6e8b0000 1859584 C:\Windows\SysWOW64\mfmp4srcsnk.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL источника и приемника MPEG4 Media Foundation 131795770645661053 0x6ef30000 647168 C:\Windows\SysWOW64\evr.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека DLL средства отображения видео 131795770645661053 0x6efd0000 458752 C:\Windows\SysWOW64\msauddecmft.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Media Foundation Audio Decoders 131795770645661053 0x6f790000 1085440 C:\Windows\SysWOW64\mfperfhelper.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation MFPerf DLL 131795770645661053 0x6f8a0000 2220032 C:\Windows\SysWOW64\msmpeg2vdec.dll 10.0.14393.953 (rs1_release_inmarket.170303-1614) Microsoft Corporation Microsoft DTV-DVD Video Decoder 131795770645661053 0x6fac0000 1130496 C:\Windows\SysWOW64\mfplat.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Media Foundation Platform DLL 131795770645661053 0x6ff60000 172032 C:\Windows\SysWOW64\RTWorkQ.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL для WorkQueue реального времени 131795770645661053 0x70030000 593920 C:\Users\User\AppData\Local\Yandex\YandexBrowser\Application\18.6.1.770\browser_elf.dll 18.6.1.770 YANDEX LLC Yandex 131795770645661053 0x700d0000 434176 C:\Windows\SysWOW64\WINSPOOL.DRV 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Драйвер диспетчера очереди Windows 131795770645661053 0x70340000 536576 C:\Windows\SysWOW64\dxgi.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation DirectX Graphics Infrastructure 131795770645661053 0x703d0000 2056192 C:\Windows\SysWOW64\DWrite.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Службы Microsoft DirectX Typography 131795770645661053 0x707d0000 86016 C:\Windows\SysWOW64\SAMCLI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Security Accounts Manager Client DLL 131795770645661053 0x70a20000 94208 C:\Windows\SysWOW64\USP10.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Uniscribe Unicode script processor 131795770645661053 0x70ca0000 45056 C:\Windows\SysWOW64\NETUTILS.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API Helpers DLL 131795770645661053 0x70fd0000 1331200 C:\Windows\SysWOW64\dbghelp.dll 10.0.14321.1024 (rs1_release.160715-1616) Microsoft Windows Image Helper 131795770645661053 0x71140000 77824 C:\Windows\SysWOW64\NETAPI32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API DLL 131795770645661053 0x725e0000 2273280 C:\Windows\SysWOW64\iertutil.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служебная программа времени выполнения для Internet Explorer 131795770645661053 0x728e0000 1372160 C:\Windows\SysWOW64\PROPSYS.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Система страниц свойств (Майкрософт) 131795770645661053 0x72af0000 655360 C:\Windows\SysWOW64\WINHTTP.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Службы HTTP Windows 131795770645661053 0x72cc0000 1658880 C:\Windows\SysWOW64\urlmon.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширения OLE32 для Win32 131795770645661053 0x73ac0000 81920 C:\Windows\SysWOW64\dhcpcsvc.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служба DHCP-клиента 131795770645661053 0x73ae0000 40960 C:\Windows\SysWOW64\Secur32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Security Support Provider Interface 131795770645661053 0x73f00000 192512 C:\Windows\SysWOW64\IPHLPAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API вспомогательного приложения IP 131795770645661053 0x74190000 110592 C:\Windows\SysWOW64\bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795770645661053 0x741b0000 77824 C:\Windows\SysWOW64\cryptsp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Cryptographic Service Provider API 131795770645661053 0x741f0000 143360 C:\Windows\SysWOW64\WINMMBASE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base Multimedia Extension API DLL 131795770645661053 0x74230000 147456 C:\Windows\SysWOW64\WINMM.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation MCI API DLL 131795770645661053 0x744d0000 2138112 C:\Windows\WinSxS\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.14393.953_none_89c2555adb023171\COMCTL32.dll 6.10 (rs1_release_inmarket.170303-1614) Microsoft Corporation Библиотека элементов управления взаимодействия с пользователем 131795770645661053 0x746e0000 32768 C:\Windows\SysWOW64\VERSION.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Version Checking and File Installation Libraries 131795770645661053 0x746f0000 106496 C:\Windows\SysWOW64\USERENV.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Userenv 131795770645661053 0x747d0000 40960 C:\Windows\SysWOW64\CRYPTBASE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base cryptographic API DLL 131795770645661053 0x747e0000 126976 C:\Windows\SysWOW64\SspiCli.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Security Support Provider Interface 131795770645661053 0x74800000 151552 C:\Windows\SysWOW64\IMM32.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Multi-User Windows IMM32 API Client DLL 131795770645661053 0x74910000 2170880 C:\Windows\SysWOW64\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795770645661053 0x74b30000 53248 C:\Windows\SysWOW64\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795770645661053 0x74b60000 790528 C:\Windows\SysWOW64\RPCRT4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795770645661053 0x74c30000 1417216 C:\Windows\SysWOW64\gdi32full.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation GDI Client DLL 131795770645661053 0x74d90000 24576 C:\Windows\SysWOW64\PSAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Process Status Helper 131795770645661053 0x74da0000 778240 C:\Windows\SysWOW64\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795770645661053 0x74e60000 557056 C:\Windows\SysWOW64\shcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795770645661053 0x74f80000 278528 C:\Windows\SysWOW64\WINTRUST.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation Microsoft Trust Verification APIs 131795770645661053 0x74fd0000 405504 C:\Windows\SysWOW64\WS2_32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation 32-разрядная библиотека Windows Socket 2.0 131795770645661053 0x75040000 282624 C:\Windows\SysWOW64\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795770645661053 0x751d0000 57344 C:\Windows\SysWOW64\MSASN1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ASN.1 Runtime APIs 131795770645661053 0x751e0000 1708032 C:\Windows\SysWOW64\KERNELBASE.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645661053 0x75390000 266240 C:\Windows\SysWOW64\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795770645661053 0x753e0000 1560576 C:\Windows\SysWOW64\CRYPT32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API32 криптографии 131795770645661053 0x75560000 487424 C:\Windows\SysWOW64\ADVAPI32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795770645661053 0x756c0000 5693440 C:\Windows\SysWOW64\windows.storage.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API хранения Microsoft WinRT 131795770645661053 0x75c90000 286720 C:\Windows\SysWOW64\shlwapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека небольших программ оболочки 131795770645661053 0x75ce0000 20811776 C:\Windows\SysWOW64\SHELL32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Общая библиотека оболочки Windows 131795770645661053 0x774d0000 86016 C:\Windows\SysWOW64\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795770645661053 0x774f0000 61440 C:\Windows\SysWOW64\profapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Profile Basic API 131795770645661053 0x77560000 1437696 C:\Windows\SysWOW64\USER32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795770645661053 0x776c0000 368640 C:\Windows\SysWOW64\bcryptPrimitives.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation Windows Cryptographic Primitives Library 131795770645661053 0x77780000 503808 C:\Windows\SysWOW64\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645661053 0x77800000 606208 C:\Windows\SysWOW64\OLEAUT32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795770645661053 0x77ac0000 966656 C:\Windows\SysWOW64\ole32.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft OLE для Windows 131795770645661053 0x77bb0000 176128 C:\Windows\SysWOW64\GDI32.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation GDI Client DLL 131795770645661053 0x77be0000 937984 C:\Windows\SysWOW64\COMDLG32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека общих диалоговых окон 131795770645661053 0x77cd0000 221184 C:\Windows\SysWOW64\cfgmgr32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Configuration Manager DLL 131795770645661053 0x77d10000 28672 C:\Windows\SysWOW64\NSI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation NSI User-mode interface DLL 131795770645661053 0x77d20000 1585152 C:\Windows\SysWOW64\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 131795770645661053 0x7ffad0270000 1908736 C:\Windows\SYSTEM32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 90 6936 7744 57 00000000:0031f1da 131795756360200321 0 0 0 Обязательная метка\Ненадежный обязательный уровень WIN-0UOTFKKVN1S\User browser.exe C:\Users\User\AppData\Local\Yandex\YandexBrowser\Application\browser.exe "C:\Users\User\AppData\Local\Yandex\YandexBrowser\Application\browser.exe" --type=renderer --enable-in-process-wmf-demuxer --field-trial-handle=1292,9555382311565764851,7120838982649204725,131072 --enable-ignition --disable-gpu-compositing --service-pipe-token=73B8CB09F7D184AD1D3DDBFE4AFC07BA --lang=ru --user-id=32B2E0A1-3039-4C67-86BE-75A88EF21B54 --brand-id=yandex --partner-id=7924 --help-url=https://api.browser.yandex.ru/redirect/help/ --user-agent-info --translate-security-origin=https://translate.yandex.net --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --enable-instaserp --device-scale-factor=1 --num-raster-threads=1 --enable-compositor-image-animations --service-request-channel-token=73B8CB09F7D184AD1D3DDBFE4AFC07BA --renderer-client-id=116 --mojo-platform-channel-handle=4024 /prefetch:1 YANDEX LLC 18.6.1.770 Yandex 131795770645661289 0x10e0000 2519040 C:\Users\User\AppData\Local\Yandex\YandexBrowser\Application\browser.exe 18.6.1.770 YANDEX LLC Yandex 131795770645661289 0x58720000 59748352 C:\Users\User\AppData\Local\Yandex\YandexBrowser\Application\18.6.1.770\browser_child.dll 18.6.1.770 YANDEX LLC Yandex 131795770645661289 0x5c020000 335872 C:\Windows\System32\wow64.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation Win32 Emulation on NT64 131795770645661289 0x5c080000 487424 C:\Windows\System32\wow64win.dll 10.0.14393.1884 (rs1_release.171101-1233) Microsoft Corporation Wow64 Console and Win32 API Logging 131795770645661289 0x5c100000 40960 C:\Windows\System32\wow64cpu.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation AMD64 Wow64 CPU 131795770645661289 0x6e8b0000 1859584 C:\Windows\SysWOW64\mfmp4srcsnk.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL источника и приемника MPEG4 Media Foundation 131795770645661289 0x6ef30000 647168 C:\Windows\SysWOW64\evr.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека DLL средства отображения видео 131795770645661289 0x6efd0000 458752 C:\Windows\SysWOW64\msauddecmft.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Media Foundation Audio Decoders 131795770645661289 0x6f790000 1085440 C:\Windows\SysWOW64\mfperfhelper.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation MFPerf DLL 131795770645661289 0x6f8a0000 2220032 C:\Windows\SysWOW64\msmpeg2vdec.dll 10.0.14393.953 (rs1_release_inmarket.170303-1614) Microsoft Corporation Microsoft DTV-DVD Video Decoder 131795770645661289 0x6fac0000 1130496 C:\Windows\SysWOW64\mfplat.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Media Foundation Platform DLL 131795770645661289 0x6ff60000 172032 C:\Windows\SysWOW64\RTWorkQ.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL для WorkQueue реального времени 131795770645661289 0x70030000 593920 C:\Users\User\AppData\Local\Yandex\YandexBrowser\Application\18.6.1.770\browser_elf.dll 18.6.1.770 YANDEX LLC Yandex 131795770645661289 0x700d0000 434176 C:\Windows\SysWOW64\WINSPOOL.DRV 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Драйвер диспетчера очереди Windows 131795770645661289 0x70340000 536576 C:\Windows\SysWOW64\dxgi.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation DirectX Graphics Infrastructure 131795770645661289 0x703d0000 2056192 C:\Windows\SysWOW64\DWrite.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Службы Microsoft DirectX Typography 131795770645661289 0x707d0000 86016 C:\Windows\SysWOW64\SAMCLI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Security Accounts Manager Client DLL 131795770645661289 0x70a20000 94208 C:\Windows\SysWOW64\USP10.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Uniscribe Unicode script processor 131795770645661289 0x70ca0000 45056 C:\Windows\SysWOW64\NETUTILS.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API Helpers DLL 131795770645661289 0x70fd0000 1331200 C:\Windows\SysWOW64\dbghelp.dll 10.0.14321.1024 (rs1_release.160715-1616) Microsoft Windows Image Helper 131795770645661289 0x71140000 77824 C:\Windows\SysWOW64\NETAPI32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API DLL 131795770645661289 0x725e0000 2273280 C:\Windows\SysWOW64\iertutil.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служебная программа времени выполнения для Internet Explorer 131795770645661289 0x728e0000 1372160 C:\Windows\SysWOW64\PROPSYS.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Система страниц свойств (Майкрософт) 131795770645661289 0x72af0000 655360 C:\Windows\SysWOW64\WINHTTP.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Службы HTTP Windows 131795770645661289 0x72cc0000 1658880 C:\Windows\SysWOW64\urlmon.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширения OLE32 для Win32 131795770645661289 0x73ac0000 81920 C:\Windows\SysWOW64\dhcpcsvc.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служба DHCP-клиента 131795770645661289 0x73ae0000 40960 C:\Windows\SysWOW64\Secur32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Security Support Provider Interface 131795770645661289 0x73f00000 192512 C:\Windows\SysWOW64\IPHLPAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API вспомогательного приложения IP 131795770645661289 0x74190000 110592 C:\Windows\SysWOW64\bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795770645661289 0x741b0000 77824 C:\Windows\SysWOW64\cryptsp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Cryptographic Service Provider API 131795770645661289 0x741f0000 143360 C:\Windows\SysWOW64\WINMMBASE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base Multimedia Extension API DLL 131795770645661289 0x74230000 147456 C:\Windows\SysWOW64\WINMM.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation MCI API DLL 131795770645661289 0x744d0000 2138112 C:\Windows\WinSxS\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.14393.953_none_89c2555adb023171\COMCTL32.dll 6.10 (rs1_release_inmarket.170303-1614) Microsoft Corporation Библиотека элементов управления взаимодействия с пользователем 131795770645661289 0x746e0000 32768 C:\Windows\SysWOW64\VERSION.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Version Checking and File Installation Libraries 131795770645661289 0x746f0000 106496 C:\Windows\SysWOW64\USERENV.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Userenv 131795770645661289 0x747d0000 40960 C:\Windows\SysWOW64\CRYPTBASE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base cryptographic API DLL 131795770645661289 0x747e0000 126976 C:\Windows\SysWOW64\SspiCli.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Security Support Provider Interface 131795770645661289 0x74800000 151552 C:\Windows\SysWOW64\IMM32.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Multi-User Windows IMM32 API Client DLL 131795770645661289 0x74910000 2170880 C:\Windows\SysWOW64\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795770645661289 0x74b30000 53248 C:\Windows\SysWOW64\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795770645661289 0x74b60000 790528 C:\Windows\SysWOW64\RPCRT4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795770645661289 0x74c30000 1417216 C:\Windows\SysWOW64\gdi32full.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation GDI Client DLL 131795770645661289 0x74d90000 24576 C:\Windows\SysWOW64\PSAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Process Status Helper 131795770645661289 0x74da0000 778240 C:\Windows\SysWOW64\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795770645661289 0x74e60000 557056 C:\Windows\SysWOW64\shcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795770645661289 0x74f80000 278528 C:\Windows\SysWOW64\WINTRUST.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation Microsoft Trust Verification APIs 131795770645661289 0x74fd0000 405504 C:\Windows\SysWOW64\WS2_32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation 32-разрядная библиотека Windows Socket 2.0 131795770645661289 0x75040000 282624 C:\Windows\SysWOW64\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795770645661289 0x751d0000 57344 C:\Windows\SysWOW64\MSASN1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ASN.1 Runtime APIs 131795770645661289 0x751e0000 1708032 C:\Windows\SysWOW64\KERNELBASE.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645661289 0x75390000 266240 C:\Windows\SysWOW64\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795770645661289 0x753e0000 1560576 C:\Windows\SysWOW64\CRYPT32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API32 криптографии 131795770645661289 0x75560000 487424 C:\Windows\SysWOW64\ADVAPI32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795770645661289 0x756c0000 5693440 C:\Windows\SysWOW64\windows.storage.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API хранения Microsoft WinRT 131795770645661289 0x75c90000 286720 C:\Windows\SysWOW64\shlwapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека небольших программ оболочки 131795770645661289 0x75ce0000 20811776 C:\Windows\SysWOW64\SHELL32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Общая библиотека оболочки Windows 131795770645661289 0x774d0000 86016 C:\Windows\SysWOW64\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795770645661289 0x774f0000 61440 C:\Windows\SysWOW64\profapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Profile Basic API 131795770645661289 0x77560000 1437696 C:\Windows\SysWOW64\USER32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795770645661289 0x776c0000 368640 C:\Windows\SysWOW64\bcryptPrimitives.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation Windows Cryptographic Primitives Library 131795770645661289 0x77780000 503808 C:\Windows\SysWOW64\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645661289 0x77800000 606208 C:\Windows\SysWOW64\OLEAUT32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795770645661289 0x77ac0000 966656 C:\Windows\SysWOW64\ole32.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft OLE для Windows 131795770645661289 0x77bb0000 176128 C:\Windows\SysWOW64\GDI32.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation GDI Client DLL 131795770645661289 0x77be0000 937984 C:\Windows\SysWOW64\COMDLG32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека общих диалоговых окон 131795770645661289 0x77cd0000 221184 C:\Windows\SysWOW64\cfgmgr32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Configuration Manager DLL 131795770645661289 0x77d10000 28672 C:\Windows\SysWOW64\NSI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation NSI User-mode interface DLL 131795770645661289 0x77d20000 1585152 C:\Windows\SysWOW64\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 131795770645661289 0x7ffad0270000 1908736 C:\Windows\SYSTEM32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 98 6080 84 97 00000000:0031f1da 131795771125310655 0 0 0 Обязательная метка\Средний обязательный уровень WIN-0UOTFKKVN1S\User MCLauncher.exe C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe "C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe" 1.0 131795771127806606 0x400000 2830336 C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe 1.0 131795771129292604 0x750000 1462272 C:\Windows\System32\user32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795771335510731 0x11000000 1396736 C:\Users\User\AppData\Roaming\MCLauncher\libeay32.dll 1.0.2o The OpenSSL Project, http://www.openssl.org/ OpenSSL Shared Library 131795771334241016 0x12000000 360448 C:\Users\User\AppData\Roaming\MCLauncher\ssleay32.dll 1.0.2o The OpenSSL Project, http://www.openssl.org/ OpenSSL Shared Library 131795771129285523 0x5c020000 335872 C:\Windows\System32\wow64.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation Win32 Emulation on NT64 131795771129286235 0x5c080000 487424 C:\Windows\System32\wow64win.dll 10.0.14393.1884 (rs1_release.171101-1233) Microsoft Corporation Wow64 Console and Win32 API Logging 131795771129295328 0x5c100000 40960 C:\Windows\System32\wow64cpu.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation AMD64 Wow64 CPU 131795771135408057 0x60750000 1556480 C:\Program Files (x86)\360\Total Security\safemon\safemon.dll 8, 4, 0, 1420 Qihu 360 Software Co., Ltd. 360 Internet Security Internet Protection 131795771129575672 0x613d0000 667648 C:\Windows\WinSxS\x86_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.9247_none_5090cb78bcba4a35\msvcr90.dll 9.00.30729.9247 Microsoft Corporation Microsoft® C Runtime Library 131795771129398434 0x66680000 12288 C:\Windows\SysWOW64\sfc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows File Protection 131795771136825814 0x67500000 1597440 C:\Windows\SysWOW64\actxprxy.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation ActiveX Interface Marshaling Library 131795771129423112 0x67690000 61440 C:\Windows\SysWOW64\sfc_os.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows File Protection 131795771129349562 0x6b830000 2584576 C:\Windows\AppPatch\AcLayers.dll 10.0.14393.953 (rs1_release_inmarket.170303-1614) Microsoft Corporation Windows Compatibility DLL 131795771329638947 0x6c290000 987136 C:\Windows\SysWOW64\twinapi.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation twinapi.appcore 131795771329610149 0x6c390000 1126400 C:\Windows\SysWOW64\dcomp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft DirectComposition Library 131795771329592759 0x6c4b0000 278528 C:\Windows\SysWOW64\DataExchange.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation Data exchange 131795771136045859 0x6cda0000 528384 C:\Windows\SysWOW64\sxs.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Fusion 2.5 131795771131298623 0x6d180000 581632 C:\Windows\WinSxS\x86_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.9247_none_5090cb78bcba4a35\msvcp90.dll 9.00.30729.9247 Microsoft Corporation Microsoft® C++ Runtime Library 131795771136082794 0x6dca0000 176128 C:\Windows\SysWOW64\scrrun.dll 5.812.10240.16384 Microsoft Corporation Microsoft ® Script Runtime 131795771133718253 0x6dcd0000 606208 C:\Windows\WinSxS\x86_microsoft.windows.common-controls_6595b64144ccf1df_5.82.14393.447_none_5507ded2cb4f7f4c\comctl32.dll 6.10 (rs1_release_inmarket.170303-1614) Microsoft Corporation Библиотека элементов управления взаимодействия с пользователем 131795771129406131 0x700d0000 434176 C:\Windows\SysWOW64\winspool.drv 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Драйвер диспетчера очереди Windows 131795771329618480 0x70340000 536576 C:\Windows\SysWOW64\dxgi.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation DirectX Graphics Infrastructure 131795771329601483 0x707f0000 2293760 C:\Windows\SysWOW64\d3d11.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation Direct3D 11 Runtime 131795771336447829 0x70c30000 114688 C:\Windows\SysWOW64\srvcli.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Server Service Client DLL 131795771135435621 0x70ca0000 45056 C:\Windows\SysWOW64\netutils.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API Helpers DLL 131795771135446667 0x70cb0000 65536 C:\Windows\SysWOW64\wkscli.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Workstation Service Client DLL 131795771136073867 0x70e90000 147456 C:\Windows\SysWOW64\wshom.ocx 5.812.10240.16384 Microsoft Corporation Windows Script Host Runtime Library 131795771135423397 0x71140000 77824 C:\Windows\SysWOW64\netapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API DLL 131795771135552456 0x725e0000 2273280 C:\Windows\SysWOW64\iertutil.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служебная программа времени выполнения для Internet Explorer 131795771136181434 0x728e0000 1372160 C:\Windows\SysWOW64\propsys.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Система страниц свойств (Майкрософт) 131795771328759427 0x72b90000 126976 C:\Windows\SysWOW64\dwmapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Интерфейс API диспетчера окон рабочего стола (Майкрософт) 131795771135541570 0x72cc0000 1658880 C:\Windows\SysWOW64\urlmon.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширения OLE32 для Win32 131795771347140137 0x73a50000 299008 C:\Windows\SysWOW64\FWPUCLNT.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API пользовательского режима FWP/IPsec 131795771347110306 0x73ab0000 32768 C:\Windows\SysWOW64\rasadhlp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Remote Access AutoDial Helper 131795771135314174 0x73ae0000 40960 C:\Windows\SysWOW64\secur32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Security Support Provider Interface 131795771347090516 0x73f00000 192512 C:\Windows\SysWOW64\IPHLPAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API вспомогательного приложения IP 131795771347075776 0x73f30000 512000 C:\Windows\SysWOW64\dnsapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Динамическая библиотека API DNS-клиента 131795771328179609 0x73ff0000 319488 C:\Windows\SysWOW64\mswsock.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширение поставщика службы API Microsoft Windows Sockets 2.0 131795771130913562 0x74060000 192512 C:\Windows\SysWOW64\rsaenh.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Enhanced Cryptographic Provider 131795771135359123 0x74110000 479232 C:\Windows\SysWOW64\uxtheme.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека тем UxTheme (Microsoft) 131795771129415027 0x74190000 110592 C:\Windows\SysWOW64\bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795771130899582 0x741b0000 77824 C:\Windows\SysWOW64\cryptsp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Cryptographic Service Provider API 131795771133098293 0x741f0000 143360 C:\Windows\SysWOW64\winmmbase.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base Multimedia Extension API DLL 131795771132990161 0x74230000 147456 C:\Windows\SysWOW64\winmm.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation MCI API DLL 131795771131765102 0x746e0000 32768 C:\Windows\SysWOW64\version.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Version Checking and File Installation Libraries 131795771129389543 0x74710000 90112 C:\Windows\SysWOW64\mpr.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека маршрутизации для нескольких служб доступа 131795771129317462 0x74730000 598016 C:\Windows\SysWOW64\apphelp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиентская библиотека совместимости приложений 131795771129360685 0x747d0000 40960 C:\Windows\SysWOW64\cryptbase.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base cryptographic API DLL 131795771129360034 0x747e0000 126976 C:\Windows\SysWOW64\sspicli.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Security Support Provider Interface 131795771129496759 0x74800000 151552 C:\Windows\SysWOW64\imm32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Multi-User Windows IMM32 API Client DLL 131795771129358136 0x74830000 917504 C:\Windows\SysWOW64\ucrtbase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795771129357408 0x74910000 2170880 C:\Windows\SysWOW64\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795771129365891 0x74b30000 53248 C:\Windows\SysWOW64\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795771129359203 0x74b60000 790528 C:\Windows\SysWOW64\rpcrt4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795771129353720 0x74c30000 1417216 C:\Windows\SysWOW64\gdi32full.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation GDI Client DLL 131795771135412052 0x74d90000 24576 C:\Windows\SysWOW64\psapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Process Status Helper 131795771129350362 0x74da0000 778240 C:\Windows\SysWOW64\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795771129366695 0x74e60000 557056 C:\Windows\SysWOW64\SHCore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795771136054082 0x74ef0000 540672 C:\Windows\SysWOW64\clbcatq.dll 2001.12.10941.16384 (rs1_release.160715-1616) Microsoft Corporation COM+ Configuration Catalog 131795771131750596 0x74fd0000 405504 C:\Windows\SysWOW64\ws2_32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation 32-разрядная библиотека Windows Socket 2.0 131795771129363162 0x75040000 282624 C:\Windows\SysWOW64\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795771328737550 0x75090000 1265664 C:\Windows\SysWOW64\msctf.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Серверная библиотека MSCTF 131795771135228888 0x751d0000 57344 C:\Windows\SysWOW64\msasn1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ASN.1 Runtime APIs 131795771129301509 0x751e0000 1708032 C:\Windows\SysWOW64\KernelBase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795771129362062 0x75390000 266240 C:\Windows\SysWOW64\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795771135227735 0x753e0000 1560576 C:\Windows\SysWOW64\crypt32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API32 криптографии 131795771129363985 0x75560000 487424 C:\Windows\SysWOW64\advapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795771129356607 0x756c0000 5693440 C:\Windows\SysWOW64\windows.storage.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API хранения Microsoft WinRT 131795771129364960 0x75c90000 286720 C:\Windows\SysWOW64\shlwapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека небольших программ оболочки 131795771129354665 0x75ce0000 20811776 C:\Windows\SysWOW64\shell32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Общая библиотека оболочки Windows 131795771129370252 0x770c0000 4239360 C:\Windows\SysWOW64\setupapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Setup API 131795771129352041 0x774d0000 86016 C:\Windows\SysWOW64\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795771129367584 0x774f0000 61440 C:\Windows\SysWOW64\profapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Profile Basic API 131795771129351257 0x77560000 1437696 C:\Windows\SysWOW64\user32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795771129361361 0x776c0000 368640 C:\Windows\SysWOW64\bcryptprimitives.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation Windows Cryptographic Primitives Library 131795771129369244 0x77780000 503808 C:\Windows\SysWOW64\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795771129368545 0x77800000 606208 C:\Windows\SysWOW64\oleaut32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795771131168008 0x77ac0000 966656 C:\Windows\SysWOW64\ole32.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft OLE для Windows 131795771129352931 0x77bb0000 176128 C:\Windows\SysWOW64\gdi32.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation GDI Client DLL 131795771133704572 0x77be0000 937984 C:\Windows\SysWOW64\comdlg32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека общих диалоговых окон 131795771129355632 0x77cd0000 221184 C:\Windows\SysWOW64\cfgmgr32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Configuration Manager DLL 131795771347076821 0x77d10000 28672 C:\Windows\SysWOW64\nsi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation NSI User-mode interface DLL 131795771127807387 0x77d20000 1585152 C:\Windows\SysWOW64\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 131795771127807116 0x7ffad0270000 1908736 C:\Windows\System32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 104 12696 7744 57 00000000:0031f1da 131795777567759490 0 0 0 Обязательная метка\Низкий обязательный уровень WIN-0UOTFKKVN1S\User browser.exe C:\Users\User\AppData\Local\Yandex\YandexBrowser\Application\browser.exe "C:\Users\User\AppData\Local\Yandex\YandexBrowser\Application\browser.exe" --type=renderer --enable-in-process-wmf-demuxer --field-trial-handle=1292,9555382311565764851,7120838982649204725,131072 --enable-ignition --disable-gpu-compositing --service-pipe-token=E83DB721798C8A70C76CD26F6F4EE1BC --lang=ru --user-id=32B2E0A1-3039-4C67-86BE-75A88EF21B54 --brand-id=yandex --partner-id=7924 --help-url=https://api.browser.yandex.ru/redirect/help/ --user-agent-info --translate-security-origin=https://translate.yandex.net --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --enable-instaserp --device-scale-factor=1 --num-raster-threads=1 --enable-compositor-image-animations --service-request-channel-token=E83DB721798C8A70C76CD26F6F4EE1BC --renderer-client-id=119 --mojo-platform-channel-handle=7052 /prefetch:1 YANDEX LLC 18.6.1.770 Yandex 131795777567991690 0xc00000 1462272 C:\Windows\System32\user32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795777567961139 0x10e0000 2519040 C:\Users\User\AppData\Local\Yandex\YandexBrowser\Application\browser.exe 18.6.1.770 YANDEX LLC Yandex 131795777569452751 0x58720000 59748352 C:\Users\User\AppData\Local\Yandex\YandexBrowser\Application\18.6.1.770\browser_child.dll 18.6.1.770 YANDEX LLC Yandex 131795777567980184 0x5c020000 335872 C:\Windows\System32\wow64.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation Win32 Emulation on NT64 131795777567981270 0x5c080000 487424 C:\Windows\System32\wow64win.dll 10.0.14393.1884 (rs1_release.171101-1233) Microsoft Corporation Wow64 Console and Win32 API Logging 131795777567994943 0x5c100000 40960 C:\Windows\System32\wow64cpu.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation AMD64 Wow64 CPU 131795777570994535 0x6e8b0000 1859584 C:\Windows\SysWOW64\mfmp4srcsnk.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL источника и приемника MPEG4 Media Foundation 131795777570968696 0x6ef30000 647168 C:\Windows\SysWOW64\evr.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека DLL средства отображения видео 131795777570908362 0x6efd0000 458752 C:\Windows\SysWOW64\MSAudDecMFT.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Media Foundation Audio Decoders 131795777570920904 0x6f790000 1085440 C:\Windows\SysWOW64\mfperfhelper.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation MFPerf DLL 131795777570943637 0x6f8a0000 2220032 C:\Windows\SysWOW64\msmpeg2vdec.dll 10.0.14393.953 (rs1_release_inmarket.170303-1614) Microsoft Corporation Microsoft DTV-DVD Video Decoder 131795777570874151 0x6fac0000 1130496 C:\Windows\SysWOW64\mfplat.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Media Foundation Platform DLL 131795777570891841 0x6ff60000 172032 C:\Windows\SysWOW64\RTWorkQ.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL для WorkQueue реального времени 131795777568100773 0x70030000 593920 C:\Users\User\AppData\Local\Yandex\YandexBrowser\Application\18.6.1.770\browser_elf.dll 18.6.1.770 YANDEX LLC Yandex 131795777570569484 0x700d0000 434176 C:\Windows\SysWOW64\winspool.drv 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Драйвер диспетчера очереди Windows 131795777570619251 0x70340000 536576 C:\Windows\SysWOW64\dxgi.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation DirectX Graphics Infrastructure 131795777570607590 0x703d0000 2056192 C:\Windows\SysWOW64\DWrite.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Службы Microsoft DirectX Typography 131795777570676211 0x707d0000 86016 C:\Windows\SysWOW64\samcli.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Security Accounts Manager Client DLL 131795777570557202 0x70a20000 94208 C:\Windows\SysWOW64\usp10.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Uniscribe Unicode script processor 131795777570691164 0x70ca0000 45056 C:\Windows\SysWOW64\netutils.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API Helpers DLL 131795777570539079 0x70fd0000 1331200 C:\Windows\SysWOW64\dbghelp.dll 10.0.14321.1024 (rs1_release.160715-1616) Microsoft Windows Image Helper 131795777569494420 0x71140000 77824 C:\Windows\SysWOW64\netapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API DLL 131795777570658737 0x725e0000 2273280 C:\Windows\SysWOW64\iertutil.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служебная программа времени выполнения для Internet Explorer 131795777569526517 0x728e0000 1372160 C:\Windows\SysWOW64\propsys.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Система страниц свойств (Майкрософт) 131795777569154123 0x72af0000 655360 C:\Windows\SysWOW64\winhttp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Службы HTTP Windows 131795777570594964 0x72cc0000 1658880 C:\Windows\SysWOW64\urlmon.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширения OLE32 для Win32 131795777570630821 0x73ac0000 81920 C:\Windows\SysWOW64\dhcpcsvc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служба DHCP-клиента 131795777570523174 0x73ae0000 40960 C:\Windows\SysWOW64\secur32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Security Support Provider Interface 131795777570582120 0x73f00000 192512 C:\Windows\SysWOW64\IPHLPAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API вспомогательного приложения IP 131795777570646486 0x74190000 110592 C:\Windows\SysWOW64\bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795777570953652 0x741b0000 77824 C:\Windows\SysWOW64\cryptsp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Cryptographic Service Provider API 131795777569213807 0x741f0000 143360 C:\Windows\SysWOW64\winmmbase.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base Multimedia Extension API DLL 131795777568156054 0x74230000 147456 C:\Windows\SysWOW64\winmm.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation MCI API DLL 131795777569481011 0x744d0000 2138112 C:\Windows\WinSxS\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.14393.953_none_89c2555adb023171\comctl32.dll 6.10 (rs1_release_inmarket.170303-1614) Microsoft Corporation Библиотека элементов управления взаимодействия с пользователем 131795777568142933 0x746e0000 32768 C:\Windows\SysWOW64\version.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Version Checking and File Installation Libraries 131795777568179155 0x746f0000 106496 C:\Windows\SysWOW64\userenv.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Userenv 131795777568043561 0x747d0000 40960 C:\Windows\SysWOW64\cryptbase.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base cryptographic API DLL 131795777568042430 0x747e0000 126976 C:\Windows\SysWOW64\sspicli.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Security Support Provider Interface 131795777569239058 0x74800000 151552 C:\Windows\SysWOW64\imm32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Multi-User Windows IMM32 API Client DLL 131795777568075566 0x74830000 917504 C:\Windows\SysWOW64\ucrtbase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795777568073430 0x74910000 2170880 C:\Windows\SysWOW64\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795777568086784 0x74b30000 53248 C:\Windows\SysWOW64\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795777568041126 0x74b60000 790528 C:\Windows\SysWOW64\rpcrt4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795777568081914 0x74c30000 1417216 C:\Windows\SysWOW64\gdi32full.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation GDI Client DLL 131795777568046844 0x74d90000 24576 C:\Windows\SysWOW64\psapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Process Status Helper 131795777568038347 0x74da0000 778240 C:\Windows\SysWOW64\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795777568088134 0x74e60000 557056 C:\Windows\SysWOW64\SHCore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795777569468247 0x74f80000 278528 C:\Windows\SysWOW64\wintrust.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation Microsoft Trust Verification APIs 131795777569466798 0x74fd0000 405504 C:\Windows\SysWOW64\ws2_32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation 32-разрядная библиотека Windows Socket 2.0 131795777568077279 0x75040000 282624 C:\Windows\SysWOW64\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795777569469408 0x751d0000 57344 C:\Windows\SysWOW64\msasn1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ASN.1 Runtime APIs 131795777568024100 0x751e0000 1708032 C:\Windows\SysWOW64\KernelBase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795777568039823 0x75390000 266240 C:\Windows\SysWOW64\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795777569470854 0x753e0000 1560576 C:\Windows\SysWOW64\crypt32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API32 криптографии 131795777568036731 0x75560000 487424 C:\Windows\SysWOW64\advapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795777568054568 0x756c0000 5693440 C:\Windows\SysWOW64\windows.storage.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API хранения Microsoft WinRT 131795777568078714 0x75c90000 286720 C:\Windows\SysWOW64\shlwapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека небольших программ оболочки 131795777568050811 0x75ce0000 20811776 C:\Windows\SysWOW64\shell32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Общая библиотека оболочки Windows 131795777568084892 0x774d0000 86016 C:\Windows\SysWOW64\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795777568089486 0x774f0000 61440 C:\Windows\SysWOW64\profapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Profile Basic API 131795777568083413 0x77560000 1437696 C:\Windows\SysWOW64\user32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795777568044758 0x776c0000 368640 C:\Windows\SysWOW64\bcryptprimitives.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation Windows Cryptographic Primitives Library 131795777569464930 0x77780000 503808 C:\Windows\SysWOW64\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795777569463567 0x77800000 606208 C:\Windows\SysWOW64\oleaut32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795777568116745 0x77ac0000 966656 C:\Windows\SysWOW64\ole32.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft OLE для Windows 131795777568080182 0x77bb0000 176128 C:\Windows\SysWOW64\gdi32.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation GDI Client DLL 131795777569457550 0x77be0000 937984 C:\Windows\SysWOW64\comdlg32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека общих диалоговых окон 131795777568052363 0x77cd0000 221184 C:\Windows\SysWOW64\cfgmgr32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Configuration Manager DLL 131795777570632192 0x77d10000 28672 C:\Windows\SysWOW64\nsi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation NSI User-mode interface DLL 131795777567961904 0x77d20000 1585152 C:\Windows\SysWOW64\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 131795777567961630 0x7ffad0270000 1908736 C:\Windows\System32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 106 5556 7744 57 00000000:0031f1da 131795777595302537 0 0 0 Обязательная метка\Низкий обязательный уровень WIN-0UOTFKKVN1S\User browser.exe C:\Users\User\AppData\Local\Yandex\YandexBrowser\Application\browser.exe "C:\Users\User\AppData\Local\Yandex\YandexBrowser\Application\browser.exe" --type=renderer --enable-in-process-wmf-demuxer --field-trial-handle=1292,9555382311565764851,7120838982649204725,131072 --enable-ignition --disable-gpu-compositing --service-pipe-token=3ADFA2396247AD5E547F61590603D06D --lang=ru --user-id=32B2E0A1-3039-4C67-86BE-75A88EF21B54 --brand-id=yandex --partner-id=7924 --help-url=https://api.browser.yandex.ru/redirect/help/ --user-agent-info --translate-security-origin=https://translate.yandex.net --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --enable-instaserp --device-scale-factor=1 --num-raster-threads=1 --enable-compositor-image-animations --service-request-channel-token=3ADFA2396247AD5E547F61590603D06D --renderer-client-id=121 --mojo-platform-channel-handle=6636 /prefetch:1 YANDEX LLC 18.6.1.770 Yandex 131795777595490187 0x1020000 704512 C:\Windows\System32\kernel32.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795777595475498 0x10e0000 2519040 C:\Users\User\AppData\Local\Yandex\YandexBrowser\Application\browser.exe 18.6.1.770 YANDEX LLC Yandex 131795777595491301 0x5550000 1462272 C:\Windows\System32\user32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795777596381097 0x58720000 59748352 C:\Users\User\AppData\Local\Yandex\YandexBrowser\Application\18.6.1.770\browser_child.dll 18.6.1.770 YANDEX LLC Yandex 131795777595481485 0x5c020000 335872 C:\Windows\System32\wow64.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation Win32 Emulation on NT64 131795777595482474 0x5c080000 487424 C:\Windows\System32\wow64win.dll 10.0.14393.1884 (rs1_release.171101-1233) Microsoft Corporation Wow64 Console and Win32 API Logging 131795777595494304 0x5c100000 40960 C:\Windows\System32\wow64cpu.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation AMD64 Wow64 CPU 131795777597543015 0x6e8b0000 1859584 C:\Windows\SysWOW64\mfmp4srcsnk.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL источника и приемника MPEG4 Media Foundation 131795777597521210 0x6ef30000 647168 C:\Windows\SysWOW64\evr.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека DLL средства отображения видео 131795777597472595 0x6efd0000 458752 C:\Windows\SysWOW64\MSAudDecMFT.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Media Foundation Audio Decoders 131795777597484525 0x6f790000 1085440 C:\Windows\SysWOW64\mfperfhelper.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation MFPerf DLL 131795777597497517 0x6f8a0000 2220032 C:\Windows\SysWOW64\msmpeg2vdec.dll 10.0.14393.953 (rs1_release_inmarket.170303-1614) Microsoft Corporation Microsoft DTV-DVD Video Decoder 131795777597428793 0x6fac0000 1130496 C:\Windows\SysWOW64\mfplat.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Media Foundation Platform DLL 131795777597448444 0x6ff60000 172032 C:\Windows\SysWOW64\RTWorkQ.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL для WorkQueue реального времени 131795777595565558 0x70030000 593920 C:\Users\User\AppData\Local\Yandex\YandexBrowser\Application\18.6.1.770\browser_elf.dll 18.6.1.770 YANDEX LLC Yandex 131795777597103476 0x700d0000 434176 C:\Windows\SysWOW64\winspool.drv 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Драйвер диспетчера очереди Windows 131795777597165296 0x70340000 536576 C:\Windows\SysWOW64\dxgi.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation DirectX Graphics Infrastructure 131795777597153510 0x703d0000 2056192 C:\Windows\SysWOW64\DWrite.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Службы Microsoft DirectX Typography 131795777597221087 0x707d0000 86016 C:\Windows\SysWOW64\samcli.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Security Accounts Manager Client DLL 131795777597072535 0x70a20000 94208 C:\Windows\SysWOW64\usp10.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Uniscribe Unicode script processor 131795777597233493 0x70ca0000 45056 C:\Windows\SysWOW64\netutils.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API Helpers DLL 131795777597059294 0x70fd0000 1331200 C:\Windows\SysWOW64\dbghelp.dll 10.0.14321.1024 (rs1_release.160715-1616) Microsoft Windows Image Helper 131795777596424202 0x71140000 77824 C:\Windows\SysWOW64\netapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API DLL 131795777597205195 0x725e0000 2273280 C:\Windows\SysWOW64\iertutil.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служебная программа времени выполнения для Internet Explorer 131795777596436120 0x728e0000 1372160 C:\Windows\SysWOW64\propsys.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Система страниц свойств (Майкрософт) 131795777596128973 0x72af0000 655360 C:\Windows\SysWOW64\winhttp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Службы HTTP Windows 131795777597128037 0x72cc0000 1658880 C:\Windows\SysWOW64\urlmon.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширения OLE32 для Win32 131795777597177209 0x73ac0000 81920 C:\Windows\SysWOW64\dhcpcsvc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служба DHCP-клиента 131795777597044137 0x73ae0000 40960 C:\Windows\SysWOW64\secur32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Security Support Provider Interface 131795777597116160 0x73f00000 192512 C:\Windows\SysWOW64\IPHLPAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API вспомогательного приложения IP 131795777597192860 0x74190000 110592 C:\Windows\SysWOW64\bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795777597506812 0x741b0000 77824 C:\Windows\SysWOW64\cryptsp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Cryptographic Service Provider API 131795777596148547 0x741f0000 143360 C:\Windows\SysWOW64\winmmbase.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base Multimedia Extension API DLL 131795777595627397 0x74230000 147456 C:\Windows\SysWOW64\winmm.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation MCI API DLL 131795777596410831 0x744d0000 2138112 C:\Windows\WinSxS\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.14393.953_none_89c2555adb023171\comctl32.dll 6.10 (rs1_release_inmarket.170303-1614) Microsoft Corporation Библиотека элементов управления взаимодействия с пользователем 131795777595610560 0x746e0000 32768 C:\Windows\SysWOW64\version.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Version Checking and File Installation Libraries 131795777595638942 0x746f0000 106496 C:\Windows\SysWOW64\userenv.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Userenv 131795777595529014 0x747d0000 40960 C:\Windows\SysWOW64\cryptbase.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base cryptographic API DLL 131795777595527983 0x747e0000 126976 C:\Windows\SysWOW64\sspicli.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Security Support Provider Interface 131795777596182171 0x74800000 151552 C:\Windows\SysWOW64\imm32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Multi-User Windows IMM32 API Client DLL 131795777595541526 0x74830000 917504 C:\Windows\SysWOW64\ucrtbase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795777595540326 0x74910000 2170880 C:\Windows\SysWOW64\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795777595551866 0x74b30000 53248 C:\Windows\SysWOW64\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795777595526606 0x74b60000 790528 C:\Windows\SysWOW64\rpcrt4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795777595547732 0x74c30000 1417216 C:\Windows\SysWOW64\gdi32full.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation GDI Client DLL 131795777595531563 0x74d90000 24576 C:\Windows\SysWOW64\psapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Process Status Helper 131795777595524005 0x74da0000 778240 C:\Windows\SysWOW64\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795777595553384 0x74e60000 557056 C:\Windows\SysWOW64\SHCore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795777596396507 0x74f80000 278528 C:\Windows\SysWOW64\wintrust.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation Microsoft Trust Verification APIs 131795777596394953 0x74fd0000 405504 C:\Windows\SysWOW64\ws2_32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation 32-разрядная библиотека Windows Socket 2.0 131795777595543299 0x75040000 282624 C:\Windows\SysWOW64\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795777596397607 0x751d0000 57344 C:\Windows\SysWOW64\msasn1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ASN.1 Runtime APIs 131795777595508927 0x751e0000 1708032 C:\Windows\SysWOW64\KernelBase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795777595525398 0x75390000 266240 C:\Windows\SysWOW64\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795777596398892 0x753e0000 1560576 C:\Windows\SysWOW64\crypt32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API32 криптографии 131795777595522182 0x75560000 487424 C:\Windows\SysWOW64\advapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795777595538927 0x756c0000 5693440 C:\Windows\SysWOW64\windows.storage.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API хранения Microsoft WinRT 131795777595544568 0x75c90000 286720 C:\Windows\SysWOW64\shlwapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека небольших программ оболочки 131795777595535397 0x75ce0000 20811776 C:\Windows\SysWOW64\shell32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Общая библиотека оболочки Windows 131795777595550455 0x774d0000 86016 C:\Windows\SysWOW64\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795777595554628 0x774f0000 61440 C:\Windows\SysWOW64\profapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Profile Basic API 131795777595549128 0x77560000 1437696 C:\Windows\SysWOW64\user32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795777595530150 0x776c0000 368640 C:\Windows\SysWOW64\bcryptprimitives.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation Windows Cryptographic Primitives Library 131795777596393437 0x77780000 503808 C:\Windows\SysWOW64\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795777596392132 0x77800000 606208 C:\Windows\SysWOW64\oleaut32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795777595583766 0x77ac0000 966656 C:\Windows\SysWOW64\ole32.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft OLE для Windows 131795777595545878 0x77bb0000 176128 C:\Windows\SysWOW64\gdi32.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation GDI Client DLL 131795777596385979 0x77be0000 937984 C:\Windows\SysWOW64\comdlg32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека общих диалоговых окон 131795777595536930 0x77cd0000 221184 C:\Windows\SysWOW64\cfgmgr32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Configuration Manager DLL 131795777597178434 0x77d10000 28672 C:\Windows\SysWOW64\nsi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation NSI User-mode interface DLL 131795777595476066 0x77d20000 1585152 C:\Windows\SysWOW64\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 131795777595475814 0x7ffad0270000 1908736 C:\Windows\System32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 111 9032 664 6 00000000:0031f1da 131795777895284069 0 0 1 Обязательная метка\Средний обязательный уровень WIN-0UOTFKKVN1S\User explorer.exe C:\Windows\explorer.exe C:\Windows\explorer.exe /factory,{75dff2b7-6936-4c06-a8bb-676a7b00b24b} -Embedding Microsoft Corporation 10.0.14393.0 (rs1_release.160715-1616) Проводник 131795777911330291 0x4d80000 593920 C:\Windows\System32\UIRibbonRes.dll 10.0.14393.2189 (rs1_release.180329-1711) Microsoft Corporation Windows Ribbon Framework Resources 131795777920515787 0x6530000 8937472 C:\Program Files\Microsoft Office\Office16\1049\GrooveIntlResource.dll 16.0.4266.1001 Корпорация Майкрософт Модуль международных ресурсов для Microsoft OneDrive для бизнеса 131795777903881315 0x5bbd0000 1101824 C:\Program Files (x86)\360\Total Security\safemon\safemon64.dll 1, 0, 0, 1190 Qihu 360 Software Co., Ltd. 360 Internet Security Internet Protection 131795777903867506 0x5bce0000 28672 C:\Program Files (x86)\360\Total Security\safemon\SafeWrapper.dll 2, 0, 0, 1060 Qihu 360 Software Co., Ltd. 360 Internet Security Internet Protection 131795777895813346 0x7ff6a5b30000 4665344 C:\Windows\explorer.exe 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Проводник 131795777906005639 0x7ffab2720000 606208 C:\Windows\System32\duser.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows DirectUser Engine 131795777922060868 0x7ffab28d0000 802816 C:\Windows\System32\cscui.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Интерфейс кэширования на стороне клиента 131795777918507242 0x7ffab4b90000 655360 C:\Windows\System32\StructuredQuery.dll 7.0.14393.2068 (rs1_release.180209-1727) Microsoft Corporation Structured Query 131795777907532495 0x7ffab5520000 3231744 C:\Windows\System32\msftedit.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Элемент управления "Поле ввода форматированного текста", версия 8.5 131795777910997447 0x7ffab8da0000 1675264 C:\Windows\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.14393.1715_none_aec701fbddd850fa\GdiPlus.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Microsoft GDI+ 131795777915260331 0x7ffab9490000 860160 C:\Windows\System32\ntshrui.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширения оболочки, обеспечивающие общий доступ 131795777910978745 0x7ffab95c0000 4091904 C:\Windows\System32\UIRibbon.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Платформа ленты Windows 131795778008622616 0x7ffabacc0000 1380352 C:\Windows\System32\SharedStartModel.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Shared Start Model InProc Server 131795778007235790 0x7ffabae60000 77824 C:\Windows\System32\devrtl.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Device Management Run Time Library 131795777909146457 0x7ffabaf70000 270336 C:\Windows\System32\edputil.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служебная программа EDP 131795777902950088 0x7ffabb2b0000 1089536 C:\Windows\System32\SettingSyncCore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Setting Synchronization Core 131795778007048279 0x7ffabb430000 65536 C:\Windows\System32\pcacli.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Program Compatibility Assistant Client Module 131795777902932644 0x7ffabb490000 512000 C:\Windows\System32\twinapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation twinapi 131795777909802797 0x7ffabbc40000 643072 C:\Windows\System32\msvcp140.dll 14.10.24516.0 built by: VCTOOLSRELESC Microsoft Corporation Microsoft® C Runtime Library 131795777909791020 0x7ffabbce0000 90112 C:\Windows\System32\vcruntime140.dll 14.10.24516.0 built by: VCTOOLSRELESC Microsoft Corporation Microsoft® C Runtime Library 131795777917395017 0x7ffabc0b0000 65536 C:\Windows\System32\linkinfo.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Volume Tracking 131795777918158137 0x7ffabc880000 73728 C:\Windows\System32\cscapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Offline Files Win32 API 131795777966565943 0x7ffabcf30000 110592 C:\Windows\System32\mpr.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека маршрутизации для нескольких служб доступа 131795777908125051 0x7ffabd4a0000 1613824 C:\Windows\System32\Windows.Globalization.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Globalization 131795777905900322 0x7ffabdbb0000 1736704 C:\Windows\System32\dui70.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Подсистема DirectUI Windows 131795777908270107 0x7ffabe9c0000 188416 C:\Windows\System32\globinputhost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Globalization Extension API for Input 131795777922014669 0x7ffabebf0000 1208320 C:\Windows\System32\networkexplorer.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Сетевой проводник 131795778007216762 0x7ffabef80000 69632 C:\Windows\System32\sfc_os.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows File Protection 131795777919764442 0x7ffabf5d0000 2924544 C:\Windows\System32\wininet.dll 11.00.14393.447 (rs1_release_inmarket.161102-0100) Microsoft Corporation Расширения Интернета для Win32 131795777915281766 0x7ffabff10000 155648 C:\Windows\System32\srvcli.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Server Service Client DLL 131795777909775471 0x7ffac0250000 2179072 C:\Program Files\Microsoft Office\Office16\GROOVEEX.DLL 16.0.4266.1001 Microsoft Corporation Microsoft OneDrive for Business Extensions 131795777910387599 0x7ffac0610000 3088384 C:\Windows\System32\msi.dll 5.0.14393.2155 Microsoft Corporation Windows Installer 131795777905243222 0x7ffac0bf0000 3559424 C:\Windows\System32\actxprxy.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation ActiveX Interface Marshaling Library 131795777919412503 0x7ffac1710000 1642496 C:\Users\User\AppData\Local\Microsoft\OneDrive\18.131.0701.0007\amd64\FileSyncShell64.dll 18.131.0701.0007 Microsoft Corporation Microsoft OneDrive Shell Extension 131795777904716802 0x7ffac18b0000 270336 C:\Program Files (x86)\360\Total Security\safemon\safehmpg64.dll 1, 0, 0, 1140 Qihu 360 Software Co., Ltd. 360 Internet Security Browser HomePage Protection 131795777944562485 0x7ffac23c0000 331776 C:\Windows\System32\OneCoreCommonProxyStub.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation OneCore Common Proxy Stub 131795777903915791 0x7ffac2700000 98304 C:\Windows\System32\netapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API DLL 131795777922001525 0x7ffac2960000 143360 C:\Windows\System32\mssprxy.dll 7.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation Microsoft Search Proxy 131795777903903305 0x7ffac2b80000 40960 C:\Windows\System32\version.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Version Checking and File Installation Libraries 131795777909321798 0x7ffac34e0000 1843200 C:\Windows\System32\urlmon.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширения OLE32 для Win32 131795777909330655 0x7ffac3cb0000 2772992 C:\Windows\System32\iertutil.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служебная программа времени выполнения для Internet Explorer 131795777906462233 0x7ffac4000000 274432 C:\Windows\System32\policymanager.dll 10.0.14393.2035 (rs1_release_inmarket.180110-1910) Microsoft Corporation Policy Manager DLL 131795777910949757 0x7ffac4ea0000 36864 C:\Windows\System32\atlthunk.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation atlthunk.dll 131795777920555307 0x7ffac4f90000 221184 C:\Windows\System32\EhStorShell.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL расширения оболочки Windows Enhanced Storage 131795777906356495 0x7ffac5630000 339968 C:\Windows\System32\thumbcache.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Кэш эскизов Майкрософт 131795777905097743 0x7ffac5690000 4734976 C:\Windows\System32\ExplorerFrame.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ExplorerFrame 131795777908567233 0x7ffac5bb0000 622592 C:\Program Files\Common Files\microsoft shared\ink\tiptsf.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Инфраструктура текстовых служб сенсорной клавиатуры и панели рукописного ввода 131795777911007559 0x7ffac60e0000 221184 C:\Windows\System32\xmllite.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft XmlLite Library 131795777914831974 0x7ffac6bd0000 413696 C:\Windows\System32\oleacc.dll 7.2.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Active Accessibility Core Component 131795777905390625 0x7ffac6c40000 2596864 C:\Windows\WinSxS\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.14393.953_none_42151e83c686086b\comctl32.dll 6.10 (rs1_release_inmarket.170303-1614) Microsoft Corporation Библиотека элементов управления взаимодействия с пользователем 131795777902894862 0x7ffac7580000 1077248 C:\Windows\System32\MrmCoreR.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Windows MRM 131795777906986296 0x7ffac84f0000 299008 C:\Windows\System32\DataExchange.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation Data exchange 131795777906995835 0x7ffac88a0000 2842624 C:\Windows\System32\d3d11.dll 10.0.14393.953 (rs1_release_inmarket.170303-1614) Microsoft Corporation Direct3D 11 Runtime 131795777903975733 0x7ffac90b0000 90112 C:\Windows\System32\wkscli.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Workstation Service Client DLL 131795777906257948 0x7ffac9f50000 1736704 C:\Windows\System32\WindowsCodecs.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Microsoft Windows Codecs Library 131795777919424461 0x7ffaca170000 45056 C:\Windows\System32\ktmw32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows KTM Win32 Client DLL 131795777902880674 0x7ffaca340000 1593344 C:\Windows\System32\propsys.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Система страниц свойств (Майкрософт) 131795777908138610 0x7ffaca570000 421888 C:\Windows\System32\BCP47Langs.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation BCP47 Language Classes 131795777902921260 0x7ffaca5e0000 155648 C:\Windows\System32\dwmapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Интерфейс API диспетчера окон рабочего стола (Майкрософт) 131795778008641775 0x7ffaca640000 770048 C:\Windows\System32\CoreMessaging.dll 10.0.14393.0 Microsoft Corporation Microsoft CoreMessaging Dll 131795777907005063 0x7ffaca770000 1380352 C:\Windows\System32\dcomp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft DirectComposition Library 131795777918659102 0x7ffacab40000 176128 C:\Windows\System32\winmmbase.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base Multimedia Extension API DLL 131795777918649579 0x7ffacaba0000 143360 C:\Windows\System32\winmm.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation MCI API DLL 131795777909306748 0x7ffacadf0000 499712 C:\Windows\System32\apphelp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиентская библиотека совместимости приложений 131795777902905939 0x7ffacaf00000 610304 C:\Windows\System32\uxtheme.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека тем UxTheme (Microsoft) 131795777906474194 0x7ffacb140000 593920 C:\Windows\System32\msvcp110_win.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Microsoft® STL110 C++ Runtime Library 131795777902941219 0x7ffacb1e0000 1163264 C:\Windows\System32\twinapi.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation twinapi.appcore 131795778008632518 0x7ffacb300000 364544 C:\Windows\System32\VEEventDispatcher.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Visual Element Event dispatcher 131795777918171528 0x7ffacb420000 204800 C:\Windows\System32\ntmarta.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик Windows NT MARTA 131795777907014508 0x7ffacb780000 651264 C:\Windows\System32\dxgi.dll 10.0.14393.953 (rs1_release_inmarket.170303-1614) Microsoft Corporation DirectX Graphics Infrastructure 131795777903933947 0x7ffacbe20000 53248 C:\Windows\System32\netutils.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API Helpers DLL 131795777902985171 0x7ffacbe40000 126976 C:\Windows\System32\userenv.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Userenv 131795777903008375 0x7ffacc150000 94208 C:\Windows\System32\cryptsp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Cryptographic Service Provider API 131795777902974089 0x7ffacc350000 180224 C:\Windows\System32\sspicli.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Security Support Provider Interface 131795777905657867 0x7ffacc520000 622592 C:\Windows\System32\sxs.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Fusion 2.5 131795777902999880 0x7ffacc620000 176128 C:\Windows\System32\bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795777902852334 0x7ffacc6e0000 61440 C:\Windows\System32\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795777902849489 0x7ffacc6f0000 311296 C:\Windows\System32\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795777902853126 0x7ffacc740000 81920 C:\Windows\System32\profapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Profile Basic API 131795777902855116 0x7ffacc760000 65536 C:\Windows\System32\msasn1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ASN.1 Runtime APIs 131795777902843222 0x7ffacc770000 1572864 C:\Windows\System32\gdi32full.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation GDI Client DLL 131795777902836309 0x7ffacc8f0000 1003520 C:\Windows\System32\ucrtbase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795777902838974 0x7ffacc9f0000 434176 C:\Windows\System32\bcryptprimitives.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Cryptographic Primitives Library 131795777902841617 0x7ffacca60000 122880 C:\Windows\System32\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795777902844144 0x7ffaccae0000 692224 C:\Windows\System32\SHCore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795777902848566 0x7ffaccb90000 7180288 C:\Windows\System32\windows.storage.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API хранения Microsoft WinRT 131795777902824318 0x7ffacd270000 2215936 C:\Windows\System32\KernelBase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795777902854301 0x7ffacd490000 1871872 C:\Windows\System32\crypt32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API32 криптографии 131795777902835470 0x7ffacd710000 638976 C:\Windows\System32\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795777902847555 0x7ffacd7b0000 270336 C:\Windows\System32\cfgmgr32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Configuration Manager DLL 131795777902846521 0x7ffacd810000 22056960 C:\Windows\System32\shell32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Общая библиотека оболочки Windows 131795777902834719 0x7ffaced20000 782336 C:\Windows\System32\oleaut32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795777916996283 0x7ffacede0000 450560 C:\Windows\System32\coml2.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft COM for Windows 131795777902838016 0x7ffacee50000 1183744 C:\Windows\System32\rpcrt4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795777902833378 0x7ffacef90000 647168 C:\Windows\System32\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795777904879129 0x7ffacf030000 651264 C:\Windows\System32\clbcatq.dll 2001.12.10941.16384 (rs1_release.160715-1616) Microsoft Corporation COM+ Configuration Catalog 131795777902823359 0x7ffacf0d0000 704512 C:\Windows\System32\kernel32.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795777905449820 0x7ffacf1e0000 1417216 C:\Windows\System32\msctf.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Серверная библиотека MSCTF 131795777920556415 0x7ffacf340000 4362240 C:\Windows\System32\setupapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Setup API 131795777902842396 0x7ffacf770000 212992 C:\Windows\System32\gdi32.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation GDI Client DLL 131795777903888252 0x7ffacf820000 434176 C:\Windows\System32\ws2_32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation 32-разрядная библиотека Windows Socket 2.0 131795777903413262 0x7ffacf890000 188416 C:\Windows\System32\imm32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Multi-User Windows IMM32 API Client DLL 131795777902840664 0x7ffacf8c0000 1462272 C:\Windows\System32\user32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795777902837229 0x7ffacfb30000 2916352 C:\Windows\System32\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795777903887407 0x7ffacfe00000 114688 C:\Windows\System32\imagehlp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT Image Helper 131795777902850328 0x7ffacfe20000 663552 C:\Windows\System32\advapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795777903886124 0x7ffad0070000 1277952 C:\Windows\System32\ole32.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft OLE для Windows 131795777902845086 0x7ffad01b0000 335872 C:\Windows\System32\shlwapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека небольших программ оболочки 131795777902851375 0x7ffad0210000 364544 C:\Windows\System32\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795777895813598 0x7ffad0270000 1908736 C:\Windows\System32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 115 13252 360 26 00000000:000003e5 131795777983764572 131795781000857179 0 1 Обязательная метка\Обязательный уровень системы NT AUTHORITY\LOCAL SERVICE AUDIODG.EXE C:\Windows\system32\AUDIODG.EXE C:\Windows\system32\AUDIODG.EXE 0x3f4 Microsoft Corporation 10.0.14393.0 (rs1_release.160715-1616) Изоляция графов аудиоустройств Windows 131795777983831921 0x7ff644450000 389120 C:\Windows\System32\audiodg.exe 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Изоляция графов аудиоустройств Windows 131795777987657478 0x7ffab0410000 1802240 C:\Windows\System32\WMALFXGFXDSP.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SysFx DSP 131795777987006767 0x7ffab4af0000 606208 C:\Windows\System32\AudioSes.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Сеанс обработки звука 131795777987325185 0x7ffac13e0000 552960 C:\Windows\System32\AudioEng.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Audio Engine 131795777988064426 0x7ffac15d0000 438272 C:\Windows\System32\AUDIOKSE.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Audio Ks Endpoint 131795777987334885 0x7ffac8f90000 45056 C:\Windows\System32\avrt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Среда выполнения мультимедиа в реальном времени 131795777987120263 0x7ffac92e0000 1269760 C:\Windows\System32\WinTypes.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL основных типов Windows 131795777985530541 0x7ffac9480000 462848 C:\Windows\System32\MMDevAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation MMDevice API 131795777985553442 0x7ffaca340000 1593344 C:\Windows\System32\propsys.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Система страниц свойств (Майкрософт) 131795777985542529 0x7ffacb3f0000 163840 C:\Windows\System32\devobj.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Device Information Set DLL 131795777985878753 0x7ffacc6e0000 61440 C:\Windows\System32\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795777987008327 0x7ffacc6f0000 311296 C:\Windows\System32\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795777985919594 0x7ffacc770000 1572864 C:\Windows\System32\gdi32full.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation GDI Client DLL 131795777985543302 0x7ffacc8f0000 1003520 C:\Windows\System32\ucrtbase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795777985558083 0x7ffacc9f0000 434176 C:\Windows\System32\bcryptprimitives.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Cryptographic Primitives Library 131795777985917139 0x7ffacca60000 122880 C:\Windows\System32\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795777985559169 0x7ffaccae0000 692224 C:\Windows\System32\SHCore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795777985509811 0x7ffacd270000 2215936 C:\Windows\System32\KernelBase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795777985555822 0x7ffacd710000 638976 C:\Windows\System32\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795777985544141 0x7ffacd7b0000 270336 C:\Windows\System32\cfgmgr32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Configuration Manager DLL 131795777985554295 0x7ffaced20000 782336 C:\Windows\System32\oleaut32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795777985531383 0x7ffacee50000 1183744 C:\Windows\System32\rpcrt4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795777985518799 0x7ffacef90000 647168 C:\Windows\System32\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795777986012477 0x7ffacf030000 651264 C:\Windows\System32\clbcatq.dll 2001.12.10941.16384 (rs1_release.160715-1616) Microsoft Corporation COM+ Configuration Catalog 131795777985508789 0x7ffacf0d0000 704512 C:\Windows\System32\kernel32.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795777985918125 0x7ffacf770000 212992 C:\Windows\System32\gdi32.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation GDI Client DLL 131795777985916103 0x7ffacf8c0000 1462272 C:\Windows\System32\user32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795777985556758 0x7ffacfb30000 2916352 C:\Windows\System32\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795777985532267 0x7ffad0210000 364544 C:\Windows\System32\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795777983832182 0x7ffad0270000 1908736 C:\Windows\System32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 118 11456 9032 111 00000000:0031f1ab 131795778005314623 131795780493060245 0 0 Обязательная метка\Высокий обязательный уровень WIN-0UOTFKKVN1S\User Wireshark-win64-2.6.2.exe C:\Users\User\Downloads\Wireshark-win64-2.6.2.exe "C:\Users\User\Downloads\Wireshark-win64-2.6.2.exe" Wireshark development team 2.6.2.0 Wireshark installer for 64-bit Windows 131795778009231982 0x400000 503808 C:\Users\User\Downloads\Wireshark-win64-2.6.2.exe 2.6.2.0 Wireshark development team Wireshark installer for 64-bit Windows 131795778009245222 0x480000 1462272 C:\Windows\System32\user32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795778015682938 0x2030000 36864 C:\Users\User\AppData\Local\Temp\nswB814.tmp\InstallOptions.dll 131795778014254891 0x10000000 24576 C:\Users\User\AppData\Local\Temp\nswB814.tmp\System.dll 131795778009238221 0x5c020000 335872 C:\Windows\System32\wow64.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation Win32 Emulation on NT64 131795778009238911 0x5c080000 487424 C:\Windows\System32\wow64win.dll 10.0.14393.1884 (rs1_release.171101-1233) Microsoft Corporation Wow64 Console and Win32 API Logging 131795778009248228 0x5c100000 40960 C:\Windows\System32\wow64cpu.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation AMD64 Wow64 CPU 131795778011325628 0x60750000 1556480 C:\Program Files (x86)\360\Total Security\safemon\safemon.dll 8, 4, 0, 1420 Qihu 360 Software Co., Ltd. 360 Internet Security Internet Protection 131795778089634780 0x6b7b0000 503808 C:\Program Files (x86)\Common Files\Microsoft Shared\Ink\tiptsf.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Инфраструктура текстовых служб сенсорной клавиатуры и панели рукописного ввода 131795778014814877 0x6dd70000 528384 C:\Windows\SysWOW64\riched20.dll 5.31.23.1231 Microsoft Corporation Rich Text Edit Control, v3.1 131795780324262128 0x6eb70000 790528 C:\Windows\SysWOW64\ntshrui.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширения оболочки, обеспечивающие общий доступ 131795780325637135 0x6fd20000 61440 C:\Windows\SysWOW64\cscapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Offline Files Win32 API 131795780321590840 0x70190000 53248 C:\Windows\SysWOW64\linkinfo.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Volume Tracking 131795778010985816 0x705e0000 344064 C:\Windows\SysWOW64\oleacc.dll 7.2.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Active Accessibility Core Component 131795778014835906 0x70a20000 94208 C:\Windows\SysWOW64\usp10.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Uniscribe Unicode script processor 131795780324994498 0x70c30000 114688 C:\Windows\SysWOW64\srvcli.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Server Service Client DLL 131795778011360794 0x70ca0000 45056 C:\Windows\SysWOW64\netutils.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API Helpers DLL 131795778011372913 0x70cb0000 65536 C:\Windows\SysWOW64\wkscli.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Workstation Service Client DLL 131795778014843868 0x70ec0000 200704 C:\Windows\SysWOW64\msls31.dll 3.10.349.0 Microsoft Corporation Microsoft Line Services library file 131795778011346828 0x71140000 77824 C:\Windows\SysWOW64\netapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API DLL 131795778011030934 0x72510000 24576 C:\Windows\SysWOW64\shfolder.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Shell Folder Service 131795778010950569 0x728e0000 1372160 C:\Windows\SysWOW64\propsys.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Система страниц свойств (Майкрософт) 131795778010974639 0x72b90000 126976 C:\Windows\SysWOW64\dwmapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Интерфейс API диспетчера окон рабочего стола (Майкрософт) 131795778010712877 0x74110000 479232 C:\Windows\SysWOW64\uxtheme.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека тем UxTheme (Microsoft) 131795778011384519 0x74190000 110592 C:\Windows\SysWOW64\bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795778009666389 0x744d0000 2138112 C:\Windows\WinSxS\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.14393.953_none_89c2555adb023171\comctl32.dll 6.10 (rs1_release_inmarket.170303-1614) Microsoft Corporation Библиотека элементов управления взаимодействия с пользователем 131795778011008939 0x746e0000 32768 C:\Windows\SysWOW64\version.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Version Checking and File Installation Libraries 131795778010727286 0x746f0000 106496 C:\Windows\SysWOW64\userenv.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Userenv 131795778009272418 0x74730000 598016 C:\Windows\SysWOW64\apphelp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиентская библиотека совместимости приложений 131795778009635084 0x747d0000 40960 C:\Windows\SysWOW64\cryptbase.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base cryptographic API DLL 131795778009634444 0x747e0000 126976 C:\Windows\SysWOW64\sspicli.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Security Support Provider Interface 131795778009721108 0x74800000 151552 C:\Windows\SysWOW64\imm32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Multi-User Windows IMM32 API Client DLL 131795778009632885 0x74830000 917504 C:\Windows\SysWOW64\ucrtbase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795778009632164 0x74910000 2170880 C:\Windows\SysWOW64\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795778009640473 0x74b30000 53248 C:\Windows\SysWOW64\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795778009633660 0x74b60000 790528 C:\Windows\SysWOW64\rpcrt4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795778009627476 0x74c30000 1417216 C:\Windows\SysWOW64\gdi32full.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation GDI Client DLL 131795778011330122 0x74d90000 24576 C:\Windows\SysWOW64\psapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Process Status Helper 131795778009629360 0x74da0000 778240 C:\Windows\SysWOW64\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795778009641448 0x74e60000 557056 C:\Windows\SysWOW64\SHCore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795778010997934 0x74ef0000 540672 C:\Windows\SysWOW64\clbcatq.dll 2001.12.10941.16384 (rs1_release.160715-1616) Microsoft Corporation COM+ Configuration Catalog 131795778011330953 0x74fd0000 405504 C:\Windows\SysWOW64\ws2_32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation 32-разрядная библиотека Windows Socket 2.0 131795778009637786 0x75040000 282624 C:\Windows\SysWOW64\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795778014972924 0x75090000 1265664 C:\Windows\SysWOW64\msctf.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Серверная библиотека MSCTF 131795778009254650 0x751e0000 1708032 C:\Windows\SysWOW64\KernelBase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795778009636664 0x75390000 266240 C:\Windows\SysWOW64\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795778009638589 0x75560000 487424 C:\Windows\SysWOW64\advapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795778009631391 0x756c0000 5693440 C:\Windows\SysWOW64\windows.storage.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API хранения Microsoft WinRT 131795778009639548 0x75c90000 286720 C:\Windows\SysWOW64\shlwapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека небольших программ оболочки 131795778009628515 0x75ce0000 20811776 C:\Windows\SysWOW64\shell32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Общая библиотека оболочки Windows 131795778010731370 0x770c0000 4239360 C:\Windows\SysWOW64\setupapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Setup API 131795778009625102 0x774d0000 86016 C:\Windows\SysWOW64\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795778009642327 0x774f0000 61440 C:\Windows\SysWOW64\profapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Profile Basic API 131795778009624246 0x77560000 1437696 C:\Windows\SysWOW64\user32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795778009635799 0x776c0000 368640 C:\Windows\SysWOW64\bcryptprimitives.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation Windows Cryptographic Primitives Library 131795778010952511 0x77780000 503808 C:\Windows\SysWOW64\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795778010951613 0x77800000 606208 C:\Windows\SysWOW64\oleaut32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795778009648281 0x77ac0000 966656 C:\Windows\SysWOW64\ole32.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft OLE для Windows 131795778009626440 0x77bb0000 176128 C:\Windows\SysWOW64\gdi32.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation GDI Client DLL 131795778015684351 0x77be0000 937984 C:\Windows\SysWOW64\comdlg32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека общих диалоговых окон 131795778009630333 0x77cd0000 221184 C:\Windows\SysWOW64\cfgmgr32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Configuration Manager DLL 131795778009232688 0x77d20000 1585152 C:\Windows\SysWOW64\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 131795778009232417 0x7ffad0270000 1908736 C:\Windows\System32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 122 9112 580 4 00000000:000003e7 131795778233163324 131795780247575416 0 1 Обязательная метка\Обязательный уровень системы NT AUTHORITY\СИСТЕМА vssvc.exe C:\Windows\system32\vssvc.exe C:\Windows\system32\vssvc.exe Microsoft Corporation 10.0.14393.0 (rs1_release.160715-1616) Microsoft® Volume Shadow Copy Service 131795778233223054 0x7ff69d210000 1462272 C:\Windows\System32\VSSVC.exe 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft® Volume Shadow Copy Service 131795778236960155 0x7ffac1690000 516096 C:\Windows\System32\catsrvut.dll 2001.12.10941.16384 (rs1_release_1.180305-1842) Microsoft Corporation COM+ Configuration Catalog Server Utilities 131795778235339682 0x7ffac2750000 106496 C:\Windows\System32\bcd.dll 10.0.14393.1794 (rs1_release.171008-1615) Microsoft Corporation BCD DLL 131795778235353194 0x7ffac3270000 40960 C:\Windows\System32\fltLib.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека фильтров 131795778236101503 0x7ffac34c0000 81920 C:\Windows\System32\vss_ps.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation Microsoft® Volume Shadow Copy Service proxy/stub 131795778235330886 0x7ffac4b70000 73728 C:\Windows\System32\virtdisk.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Virtual Disk API DLL 131795778236181536 0x7ffac4e70000 102400 C:\Windows\System32\samcli.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Security Accounts Manager Client DLL 131795778235312630 0x7ffac6410000 98304 C:\Windows\System32\vsstrace.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека трассировки службы теневого копирования тома Microsoft® 131795778235292965 0x7ffac6430000 1581056 C:\Windows\System32\vssapi.dll 10.0.14393.953 (rs1_release_inmarket.170303-1614) Microsoft Corporation Microsoft® Volume Shadow Copy Requestor/Writer Services API DLL 131795778236970418 0x7ffac7e80000 57344 C:\Windows\System32\mfcsubs.dll 2001.12.10941.16384 (rs1_release.160715-1616) Microsoft Corporation COM+ 131795778235749019 0x7ffac9bb0000 479232 C:\Windows\System32\es.dll 2001.12.10941.16384 (rs1_release.160715-1616) Microsoft Corporation COM+ 131795778236589454 0x7ffaca340000 1593344 C:\Windows\System32\propsys.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Система страниц свойств (Майкрософт) 131795778236331302 0x7ffaca610000 143360 C:\Windows\System32\samlib.dll 10.0.14393.82 (rs1_release.160805-1735) Microsoft Corporation SAM Library DLL 131795778235302884 0x7ffacb3f0000 163840 C:\Windows\System32\devobj.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Device Information Set DLL 131795778235322056 0x7ffacb960000 303104 C:\Windows\System32\authz.dll 10.0.14393.1737 (rs1_release_inmarket.170914-1249) Microsoft Corporation Authorization Framework 131795778236321713 0x7ffacbe20000 53248 C:\Windows\System32\netutils.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API Helpers DLL 131795778235650165 0x7ffacc6e0000 61440 C:\Windows\System32\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795778235659934 0x7ffacc770000 1572864 C:\Windows\System32\gdi32full.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation GDI Client DLL 131795778235271662 0x7ffacc8f0000 1003520 C:\Windows\System32\ucrtbase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795778235274566 0x7ffacc9f0000 434176 C:\Windows\System32\bcryptprimitives.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Cryptographic Primitives Library 131795778235658261 0x7ffacca60000 122880 C:\Windows\System32\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795778236590535 0x7ffaccae0000 692224 C:\Windows\System32\SHCore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795778235260874 0x7ffacd270000 2215936 C:\Windows\System32\KernelBase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795778235271000 0x7ffacd710000 638976 C:\Windows\System32\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795778235303684 0x7ffacd7b0000 270336 C:\Windows\System32\cfgmgr32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Configuration Manager DLL 131795778235270235 0x7ffaced20000 782336 C:\Windows\System32\oleaut32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795778235273593 0x7ffacee50000 1183744 C:\Windows\System32\rpcrt4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795778235268950 0x7ffacef90000 647168 C:\Windows\System32\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795778235730902 0x7ffacf030000 651264 C:\Windows\System32\clbcatq.dll 2001.12.10941.16384 (rs1_release.160715-1616) Microsoft Corporation COM+ Configuration Catalog 131795778235259923 0x7ffacf0d0000 704512 C:\Windows\System32\kernel32.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795778235659139 0x7ffacf770000 212992 C:\Windows\System32\gdi32.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation GDI Client DLL 131795778235293960 0x7ffacf820000 434176 C:\Windows\System32\ws2_32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation 32-разрядная библиотека Windows Socket 2.0 131795778235657454 0x7ffacf8c0000 1462272 C:\Windows\System32\user32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795778235272840 0x7ffacfb30000 2916352 C:\Windows\System32\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795778235277370 0x7ffacfe20000 663552 C:\Windows\System32\advapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795778235275560 0x7ffad0210000 364544 C:\Windows\System32\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795778233223370 0x7ffad0270000 1908736 C:\Windows\System32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 123 284 580 4 00000000:000003e7 131795778236890994 0 0 1 Обязательная метка\Обязательный уровень системы NT AUTHORITY\СИСТЕМА svchost.exe C:\Windows\System32\svchost.exe C:\Windows\System32\svchost.exe -k swprv Microsoft Corporation 10.0.14393.0 (rs1_release.160715-1616) Хост-процесс для служб Windows 131795778236948261 0x7ff718c20000 57344 C:\Windows\System32\svchost.exe 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Хост-процесс для служб Windows 131795778237990704 0x7ffabd220000 483328 C:\Windows\System32\swprv.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик программного обеспечения Microsoft® Volume Shadow Copy Service 131795778238024341 0x7ffac3270000 40960 C:\Windows\System32\fltLib.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека фильтров 131795778238689559 0x7ffac34c0000 81920 C:\Windows\System32\vss_ps.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation Microsoft® Volume Shadow Copy Service proxy/stub 131795778238016772 0x7ffac4b70000 73728 C:\Windows\System32\virtdisk.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Virtual Disk API DLL 131795778238009807 0x7ffac6410000 98304 C:\Windows\System32\vsstrace.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека трассировки службы теневого копирования тома Microsoft® 131795778238797239 0x7ffac6430000 1581056 C:\Windows\System32\vssapi.dll 10.0.14393.953 (rs1_release_inmarket.170303-1614) Microsoft Corporation Microsoft® Volume Shadow Copy Requestor/Writer Services API DLL 131795778238379317 0x7ffac9bb0000 479232 C:\Windows\System32\es.dll 2001.12.10941.16384 (rs1_release.160715-1616) Microsoft Corporation COM+ 131795778238002742 0x7ffacb3f0000 163840 C:\Windows\System32\devobj.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Device Information Set DLL 131795778238084884 0x7ffacb920000 81920 C:\Windows\System32\wldp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Политика блокировки Windows 131795778238106525 0x7ffacc6e0000 61440 C:\Windows\System32\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795778238119208 0x7ffacc770000 1572864 C:\Windows\System32\gdi32full.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation GDI Client DLL 131795778237848893 0x7ffacc8f0000 1003520 C:\Windows\System32\ucrtbase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795778238069532 0x7ffacc9f0000 434176 C:\Windows\System32\bcryptprimitives.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Cryptographic Primitives Library 131795778238117518 0x7ffacca60000 122880 C:\Windows\System32\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795778238087879 0x7ffacca80000 348160 C:\Windows\System32\wintrust.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation Microsoft Trust Verification APIs 131795778237826515 0x7ffacd270000 2215936 C:\Windows\System32\KernelBase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795778238085768 0x7ffacd490000 1871872 C:\Windows\System32\crypt32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API32 криптографии 131795778238691232 0x7ffacd710000 638976 C:\Windows\System32\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795778238003645 0x7ffacd7b0000 270336 C:\Windows\System32\cfgmgr32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Configuration Manager DLL 131795778238690445 0x7ffaced20000 782336 C:\Windows\System32\oleaut32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795778237846089 0x7ffacee50000 1183744 C:\Windows\System32\rpcrt4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795778237991665 0x7ffacef90000 647168 C:\Windows\System32\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795778238360028 0x7ffacf030000 651264 C:\Windows\System32\clbcatq.dll 2001.12.10941.16384 (rs1_release.160715-1616) Microsoft Corporation COM+ Configuration Catalog 131795778237825108 0x7ffacf0d0000 704512 C:\Windows\System32\kernel32.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795778238118419 0x7ffacf770000 212992 C:\Windows\System32\gdi32.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation GDI Client DLL 131795778238798278 0x7ffacf820000 434176 C:\Windows\System32\ws2_32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation 32-разрядная библиотека Windows Socket 2.0 131795778238116693 0x7ffacf8c0000 1462272 C:\Windows\System32\user32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795778238067953 0x7ffacfb30000 2916352 C:\Windows\System32\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795778237992699 0x7ffacfe20000 663552 C:\Windows\System32\advapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795778237844499 0x7ffad0210000 364544 C:\Windows\System32\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795778236948497 0x7ffad0270000 1908736 C:\Windows\System32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 124 8572 580 4 00000000:000003e7 131795778253406568 0 0 1 Обязательная метка\Обязательный уровень системы NT AUTHORITY\СИСТЕМА msiexec.exe C:\Windows\system32\msiexec.exe C:\Windows\system32\msiexec.exe /V Microsoft Corporation 5.0.14393.0 (rs1_release.160715-1616) Установщик Windows® 131795778259596194 0x238870a0000 12288 C:\Windows\System32\sfc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows File Protection 131795778253563850 0x7ff766ba0000 90112 C:\Windows\System32\msiexec.exe 5.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Установщик Windows® 131795778259570059 0x7ffaad900000 4726784 C:\Windows\AppPatch\apppatch64\AcLayers.dll 10.0.14393.447 (rs1_release_inmarket.161102-0100) Microsoft Corporation Windows Compatibility DLL 131795778267501772 0x7ffab1260000 10350592 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\clr.dll 4.7.2117.0 built by: NET47REL1LAST Microsoft Corporation Microsoft .NET Runtime Common Language Runtime - WorkStation 131795778276928618 0x7ffabae60000 77824 C:\Windows\System32\devrtl.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Device Management Run Time Library 131795778275324308 0x7ffabb430000 65536 C:\Windows\System32\pcacli.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Program Compatibility Assistant Client Module 131795778275333446 0x7ffabcf30000 110592 C:\Windows\System32\mpr.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека маршрутизации для нескольких служб доступа 131795778259610277 0x7ffabd180000 548864 C:\Windows\System32\winspool.drv 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Драйвер диспетчера очереди Windows 131795778259661596 0x7ffabef80000 69632 C:\Windows\System32\sfc_os.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows File Protection 131795778265457583 0x7ffabf1d0000 192512 C:\Windows\System32\cryptnet.dll 10.0.14393.2035 (rs1_release_inmarket.180110-1910) Microsoft Corporation Crypto Network Related API 131795778267747643 0x7ffabfa00000 1011712 C:\Windows\System32\msvcr120_clr0400.dll 12.00.52519.0 built by: VSWINSERVICING Microsoft Corporation Microsoft® C Runtime Library 131795778260359664 0x7ffac0610000 3088384 C:\Windows\System32\msi.dll 5.0.14393.2155 Microsoft Corporation Windows Installer 131795778399983100 0x7ffac1010000 417792 C:\Windows\System32\mscoree.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft .NET Runtime Execution Engine 131795778400005719 0x7ffac1240000 638976 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscoreei.dll 4.7.2623.0 built by: NET471REL1LAST_C Microsoft Corporation Microsoft .NET Runtime Execution Engine 131795778262571338 0x7ffac2700000 98304 C:\Windows\System32\netapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API DLL 131795778267189195 0x7ffac2b80000 40960 C:\Windows\System32\version.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Version Checking and File Installation Libraries 131795778417041748 0x7ffac3810000 167936 C:\Windows\System32\cabinet.dll 5.00 (rs1_release.160715-1616) Microsoft Corporation Microsoft® Cabinet File API 131795778400053783 0x7ffac5b30000 114688 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\fusion.dll 4.6.1586.0 built by: NETFXREL2 Microsoft Corporation Assembly manager 131795778259951873 0x7ffac6c40000 2596864 C:\Windows\WinSxS\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.14393.953_none_42151e83c686086b\comctl32.dll 6.10 (rs1_release_inmarket.170303-1614) Microsoft Corporation Библиотека элементов управления взаимодействия с пользователем 131795778264680084 0x7ffac7cc0000 49152 C:\Windows\System32\msisip.dll 5.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation MSI Signature SIP Provider 131795778265630538 0x7ffac8810000 45056 C:\Windows\System32\winnsi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Network Store Information RPC interface 131795778262583238 0x7ffac90b0000 90112 C:\Windows\System32\wkscli.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Workstation Service Client DLL 131795778323770185 0x7ffac97f0000 61440 C:\Windows\System32\perfproc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека объектов производительности системных процессов Windows 131795778272914974 0x7ffaca210000 225280 C:\Windows\System32\RstrtMgr.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Диспетчер перезапуска 131795778281798291 0x7ffaca340000 1593344 C:\Windows\System32\propsys.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Система страниц свойств (Майкрософт) 131795778259533909 0x7ffacadf0000 499712 C:\Windows\System32\apphelp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиентская библиотека совместимости приложений 131795778265279256 0x7ffacb6f0000 143360 C:\Windows\System32\gpapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиентские функции API групповой политики 131795778264074461 0x7ffacb920000 81920 C:\Windows\System32\wldp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Политика блокировки Windows 131795778264625720 0x7ffacbbb0000 208896 C:\Windows\System32\rsaenh.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Enhanced Cryptographic Provider 131795778265470245 0x7ffacbd30000 229376 C:\Windows\System32\IPHLPAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API вспомогательного приложения IP 131795778262605488 0x7ffacbe20000 53248 C:\Windows\System32\netutils.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API Helpers DLL 131795778261744074 0x7ffacbe40000 126976 C:\Windows\System32\userenv.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Userenv 131795778264613136 0x7ffacc150000 94208 C:\Windows\System32\cryptsp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Cryptographic Service Provider API 131795778264639501 0x7ffacc170000 45056 C:\Windows\System32\cryptbase.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base cryptographic API DLL 131795778273070150 0x7ffacc1f0000 241664 C:\Windows\System32\ntasn1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft ASN.1 API 131795778272956330 0x7ffacc230000 155648 C:\Windows\System32\ncrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Маршрутизатор Windows NCrypt 131795778261891434 0x7ffacc350000 180224 C:\Windows\System32\sspicli.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Security Support Provider Interface 131795778259633594 0x7ffacc620000 176128 C:\Windows\System32\bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795778260278752 0x7ffacc6e0000 61440 C:\Windows\System32\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795778260602827 0x7ffacc6f0000 311296 C:\Windows\System32\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795778260604728 0x7ffacc740000 81920 C:\Windows\System32\profapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Profile Basic API 131795778264076719 0x7ffacc760000 65536 C:\Windows\System32\msasn1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ASN.1 Runtime APIs 131795778259576609 0x7ffacc8f0000 1003520 C:\Windows\System32\ucrtbase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795778259578595 0x7ffacc9f0000 434176 C:\Windows\System32\bcryptprimitives.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Cryptographic Primitives Library 131795778259572597 0x7ffacca60000 122880 C:\Windows\System32\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795778264077537 0x7ffacca80000 348160 C:\Windows\System32\wintrust.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation Microsoft Trust Verification APIs 131795778260603797 0x7ffaccae0000 692224 C:\Windows\System32\SHCore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795778260601744 0x7ffaccb90000 7180288 C:\Windows\System32\windows.storage.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API хранения Microsoft WinRT 131795778259515815 0x7ffacd270000 2215936 C:\Windows\System32\KernelBase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795778264075791 0x7ffacd490000 1871872 C:\Windows\System32\crypt32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API32 криптографии 131795778272946115 0x7ffacd710000 638976 C:\Windows\System32\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795778260600162 0x7ffacd7b0000 270336 C:\Windows\System32\cfgmgr32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Configuration Manager DLL 131795778260598868 0x7ffacd810000 22056960 C:\Windows\System32\shell32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Общая библиотека оболочки Windows 131795778272945223 0x7ffaced20000 782336 C:\Windows\System32\oleaut32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795778262622754 0x7ffacede0000 450560 C:\Windows\System32\coml2.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft COM for Windows 131795778259577351 0x7ffacee50000 1183744 C:\Windows\System32\rpcrt4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795778265716961 0x7ffacef80000 32768 C:\Windows\System32\nsi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation NSI User-mode interface DLL 131795778259571021 0x7ffacef90000 647168 C:\Windows\System32\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795778260302861 0x7ffacf030000 651264 C:\Windows\System32\clbcatq.dll 2001.12.10941.16384 (rs1_release.160715-1616) Microsoft Corporation COM+ Configuration Catalog 131795778259514798 0x7ffacf0d0000 704512 C:\Windows\System32\kernel32.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795778276914178 0x7ffacf340000 4362240 C:\Windows\System32\setupapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Setup API 131795778259573318 0x7ffacf770000 212992 C:\Windows\System32\gdi32.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation GDI Client DLL 131795778259571855 0x7ffacf8c0000 1462272 C:\Windows\System32\user32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795778259575900 0x7ffacfb30000 2916352 C:\Windows\System32\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795778259912248 0x7ffacfe20000 663552 C:\Windows\System32\advapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795778259914551 0x7ffad0070000 1277952 C:\Windows\System32\ole32.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft OLE для Windows 131795778259575080 0x7ffad01b0000 335872 C:\Windows\System32\shlwapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека небольших программ оболочки 131795778259913185 0x7ffad0210000 364544 C:\Windows\System32\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795778253564149 0x7ffad0270000 1908736 C:\Windows\System32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 128 12664 11456 118 00000000:0031f1ab 131795778472532085 131795780252629767 0 0 Обязательная метка\Высокий обязательный уровень WIN-0UOTFKKVN1S\User WinPcap_4_1_3.exe C:\Program Files\Wireshark\WinPcap_4_1_3.exe "C:\Program Files\Wireshark\WinPcap_4_1_3.exe" Riverbed Technology, Inc. 4.1.0.2980 WinPcap 4.1.3 installer 131795778474370909 0x400000 278528 C:\Program Files\Wireshark\WinPcap_4_1_3.exe 4.1.0.2980 Riverbed Technology, Inc. WinPcap 4.1.3 installer 131795780215605526 0x480000 24576 C:\Users\User\AppData\Local\Temp\nsy6E15.tmp\System.dll 131795780223446317 0x700000 20480 C:\Users\User\AppData\Local\Temp\nsy6E15.tmp\ExecDos.dll 131795778481441454 0x10000000 36864 C:\Users\User\AppData\Local\Temp\nsy6E15.tmp\InstallOptions.dll 131795778474378741 0x5c020000 335872 C:\Windows\System32\wow64.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation Win32 Emulation on NT64 131795778474379428 0x5c080000 487424 C:\Windows\System32\wow64win.dll 10.0.14393.1884 (rs1_release.171101-1233) Microsoft Corporation Wow64 Console and Win32 API Logging 131795778474388380 0x5c100000 40960 C:\Windows\System32\wow64cpu.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation AMD64 Wow64 CPU 131795778478947902 0x60750000 1556480 C:\Program Files (x86)\360\Total Security\safemon\safemon.dll 8, 4, 0, 1420 Qihu 360 Software Co., Ltd. 360 Internet Security Internet Protection 131795778475429642 0x66680000 12288 C:\Windows\SysWOW64\sfc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows File Protection 131795778475455924 0x67690000 61440 C:\Windows\SysWOW64\sfc_os.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows File Protection 131795778476129447 0x68890000 2506752 C:\Windows\AppPatch\AcGenral.dll 10.0.14393.953 (rs1_release_inmarket.170303-1614) Microsoft Corporation Windows Compatibility DLL 131795778474677141 0x6b830000 2584576 C:\Windows\AppPatch\AcLayers.dll 10.0.14393.953 (rs1_release_inmarket.170303-1614) Microsoft Corporation Windows Compatibility DLL 131795778480464294 0x6dd70000 528384 C:\Windows\SysWOW64\riched20.dll 5.31.23.1231 Microsoft Corporation Rich Text Edit Control, v3.1 131795778477256204 0x6e070000 98304 C:\Windows\SysWOW64\msacm32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Фильтр диспетчера аудиосжатия Microsoft 131795778475437968 0x700d0000 434176 C:\Windows\SysWOW64\winspool.drv 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Драйвер диспетчера очереди Windows 131795778476670529 0x707d0000 86016 C:\Windows\SysWOW64\samcli.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Security Accounts Manager Client DLL 131795778480530862 0x70a20000 94208 C:\Windows\SysWOW64\usp10.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Uniscribe Unicode script processor 131795778478980362 0x70ca0000 45056 C:\Windows\SysWOW64\netutils.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API Helpers DLL 131795778478991569 0x70cb0000 65536 C:\Windows\SysWOW64\wkscli.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Workstation Service Client DLL 131795778480522492 0x70ec0000 200704 C:\Windows\SysWOW64\msls31.dll 3.10.349.0 Microsoft Corporation Microsoft Line Services library file 131795778478967471 0x71140000 77824 C:\Windows\SysWOW64\netapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API DLL 131795778479094944 0x72510000 24576 C:\Windows\SysWOW64\shfolder.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Shell Folder Service 131795778477334993 0x725e0000 2273280 C:\Windows\SysWOW64\iertutil.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служебная программа времени выполнения для Internet Explorer 131795778479412597 0x728e0000 1372160 C:\Windows\SysWOW64\propsys.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Система страниц свойств (Майкрософт) 131795778477303386 0x72b90000 126976 C:\Windows\SysWOW64\dwmapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Интерфейс API диспетчера окон рабочего стола (Майкрософт) 131795778477311770 0x72cc0000 1658880 C:\Windows\SysWOW64\urlmon.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширения OLE32 для Win32 131795778476643968 0x74110000 479232 C:\Windows\SysWOW64\uxtheme.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека тем UxTheme (Microsoft) 131795778475447551 0x74190000 110592 C:\Windows\SysWOW64\bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795778477321345 0x741f0000 143360 C:\Windows\SysWOW64\winmmbase.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base Multimedia Extension API DLL 131795778476661893 0x74230000 147456 C:\Windows\SysWOW64\winmm.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation MCI API DLL 131795778478915573 0x744d0000 2138112 C:\Windows\WinSxS\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.14393.953_none_89c2555adb023171\comctl32.dll 6.10 (rs1_release_inmarket.170303-1614) Microsoft Corporation Библиотека элементов управления взаимодействия с пользователем 131795778477286525 0x746e0000 32768 C:\Windows\SysWOW64\version.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Version Checking and File Installation Libraries 131795778477294825 0x746f0000 106496 C:\Windows\SysWOW64\userenv.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Userenv 131795778475176915 0x74710000 90112 C:\Windows\SysWOW64\mpr.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека маршрутизации для нескольких служб доступа 131795778474424278 0x74730000 598016 C:\Windows\SysWOW64\apphelp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиентская библиотека совместимости приложений 131795778475146383 0x747d0000 40960 C:\Windows\SysWOW64\cryptbase.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base cryptographic API DLL 131795778475145740 0x747e0000 126976 C:\Windows\SysWOW64\sspicli.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Security Support Provider Interface 131795778478799256 0x74800000 151552 C:\Windows\SysWOW64\imm32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Multi-User Windows IMM32 API Client DLL 131795778475144147 0x74830000 917504 C:\Windows\SysWOW64\ucrtbase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795778475143114 0x74910000 2170880 C:\Windows\SysWOW64\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795778475151896 0x74b30000 53248 C:\Windows\SysWOW64\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795778475144928 0x74b60000 790528 C:\Windows\SysWOW64\rpcrt4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795778475139437 0x74c30000 1417216 C:\Windows\SysWOW64\gdi32full.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation GDI Client DLL 131795778478951681 0x74d90000 24576 C:\Windows\SysWOW64\psapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Process Status Helper 131795778475135689 0x74da0000 778240 C:\Windows\SysWOW64\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795778475152658 0x74e60000 557056 C:\Windows\SysWOW64\SHCore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795778479395683 0x74ef0000 540672 C:\Windows\SysWOW64\clbcatq.dll 2001.12.10941.16384 (rs1_release.160715-1616) Microsoft Corporation COM+ Configuration Catalog 131795778478952460 0x74fd0000 405504 C:\Windows\SysWOW64\ws2_32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation 32-разрядная библиотека Windows Socket 2.0 131795778475149237 0x75040000 282624 C:\Windows\SysWOW64\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795778480549998 0x75090000 1265664 C:\Windows\SysWOW64\msctf.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Серверная библиотека MSCTF 131795778474394583 0x751e0000 1708032 C:\Windows\SysWOW64\KernelBase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795778475147716 0x75390000 266240 C:\Windows\SysWOW64\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795778475150048 0x75560000 487424 C:\Windows\SysWOW64\advapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795778475142341 0x756c0000 5693440 C:\Windows\SysWOW64\windows.storage.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API хранения Microsoft WinRT 131795778475150968 0x75c90000 286720 C:\Windows\SysWOW64\shlwapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека небольших программ оболочки 131795778475140388 0x75ce0000 20811776 C:\Windows\SysWOW64\shell32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Общая библиотека оболочки Windows 131795778475156318 0x770c0000 4239360 C:\Windows\SysWOW64\setupapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Setup API 131795778475137512 0x774d0000 86016 C:\Windows\SysWOW64\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795778475153528 0x774f0000 61440 C:\Windows\SysWOW64\profapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Profile Basic API 131795778475136714 0x77560000 1437696 C:\Windows\SysWOW64\user32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795778475147048 0x776c0000 368640 C:\Windows\SysWOW64\bcryptprimitives.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation Windows Cryptographic Primitives Library 131795778475155357 0x77780000 503808 C:\Windows\SysWOW64\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795778475154692 0x77800000 606208 C:\Windows\SysWOW64\oleaut32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795778476634451 0x77ac0000 966656 C:\Windows\SysWOW64\ole32.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft OLE для Windows 131795778475138620 0x77bb0000 176128 C:\Windows\SysWOW64\gdi32.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation GDI Client DLL 131795778481442448 0x77be0000 937984 C:\Windows\SysWOW64\comdlg32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека общих диалоговых окон 131795778475141404 0x77cd0000 221184 C:\Windows\SysWOW64\cfgmgr32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Configuration Manager DLL 131795778474371565 0x77d20000 1585152 C:\Windows\SysWOW64\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 131795778474371291 0x7ffad0270000 1908736 C:\Windows\System32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 132 5748 580 4 00000000:000003e7 131795778806993759 0 0 1 Обязательная метка\Обязательный уровень системы NT AUTHORITY\СИСТЕМА svchost.exe C:\Windows\system32\svchost.exe C:\Windows\system32\svchost.exe -k wsappx Microsoft Corporation 10.0.14393.0 (rs1_release.160715-1616) Хост-процесс для служб Windows 131795778807042136 0x7ff718c20000 57344 C:\Windows\System32\svchost.exe 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Хост-процесс для служб Windows 131795778809771371 0x7ffaafc30000 2297856 C:\Windows\System32\AppXDeploymentServer.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation Библиотека DLL сервера развертывания AppX 131795778810217417 0x7ffabafc0000 700416 C:\Windows\System32\wer.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека сообщений об ошибках Windows 131795778809793544 0x7ffac3270000 40960 C:\Windows\System32\fltLib.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека фильтров 131795778809909001 0x7ffac42a0000 659456 C:\Windows\System32\StateRepository.Core.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation StateRepository Core 131795778810725123 0x7ffac46d0000 4161536 C:\Windows\System32\Windows.StateRepository.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Сервер Windows StateRepository API Server 131795778810201985 0x7ffac9220000 397312 C:\Windows\System32\wevtapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API настройки и использования событий 131795778809816672 0x7ffacb420000 204800 C:\Windows\System32\ntmarta.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик Windows NT MARTA 131795778809822524 0x7ffacb720000 344064 C:\Windows\System32\mintdh.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Вспомогательная библиотека трассировки событий 131795778809799027 0x7ffacb820000 712704 C:\Windows\System32\tdh.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Вспомогательная библиотека трассировки событий 131795778810317823 0x7ffacb920000 81920 C:\Windows\System32\wldp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Политика блокировки Windows 131795778809809854 0x7ffacbe40000 126976 C:\Windows\System32\userenv.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Userenv 131795778810208064 0x7ffacc620000 176128 C:\Windows\System32\bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795778809594468 0x7ffacc6e0000 61440 C:\Windows\System32\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795778809776574 0x7ffacc740000 81920 C:\Windows\System32\profapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Profile Basic API 131795778809778372 0x7ffacc760000 65536 C:\Windows\System32\msasn1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ASN.1 Runtime APIs 131795778809607454 0x7ffacc770000 1572864 C:\Windows\System32\gdi32full.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation GDI Client DLL 131795778809572087 0x7ffacc8f0000 1003520 C:\Windows\System32\ucrtbase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795778809580973 0x7ffacc9f0000 434176 C:\Windows\System32\bcryptprimitives.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Cryptographic Primitives Library 131795778809605642 0x7ffacca60000 122880 C:\Windows\System32\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795778810318817 0x7ffacca80000 348160 C:\Windows\System32\wintrust.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation Microsoft Trust Verification APIs 131795778809772360 0x7ffaccae0000 692224 C:\Windows\System32\SHCore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795778809561432 0x7ffacd270000 2215936 C:\Windows\System32\KernelBase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795778809777533 0x7ffacd490000 1871872 C:\Windows\System32\crypt32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API32 криптографии 131795778809774521 0x7ffacd710000 638976 C:\Windows\System32\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795778809773756 0x7ffaced20000 782336 C:\Windows\System32\oleaut32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795778809570735 0x7ffacee50000 1183744 C:\Windows\System32\rpcrt4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795778809595255 0x7ffacef90000 647168 C:\Windows\System32\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795778810493271 0x7ffacf030000 651264 C:\Windows\System32\clbcatq.dll 2001.12.10941.16384 (rs1_release.160715-1616) Microsoft Corporation COM+ Configuration Catalog 131795778809560537 0x7ffacf0d0000 704512 C:\Windows\System32\kernel32.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795778809606459 0x7ffacf770000 212992 C:\Windows\System32\gdi32.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation GDI Client DLL 131795778809600563 0x7ffacf8c0000 1462272 C:\Windows\System32\user32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795778809580022 0x7ffacfb30000 2916352 C:\Windows\System32\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795778809775513 0x7ffacfe20000 663552 C:\Windows\System32\advapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795778809569904 0x7ffad0210000 364544 C:\Windows\System32\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795778807042435 0x7ffad0270000 1908736 C:\Windows\System32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 133 3432 12664 128 00000000:0031f1ab 131795780225629048 131795780237553222 0 0 Обязательная метка\Высокий обязательный уровень WIN-0UOTFKKVN1S\User net.exe C:\Windows\SysWOW64\net.exe net start npf Microsoft Corporation 10.0.14393.0 (rs1_release.160715-1616) Net Command 131795780226910532 0x170000 106496 C:\Windows\SysWOW64\net.exe 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Command 131795780226926637 0x32a0000 1462272 C:\Windows\System32\user32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795780226917769 0x5c020000 335872 C:\Windows\System32\wow64.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation Win32 Emulation on NT64 131795780226918627 0x5c080000 487424 C:\Windows\System32\wow64win.dll 10.0.14393.1884 (rs1_release.171101-1233) Microsoft Corporation Wow64 Console and Win32 API Logging 131795780226929419 0x5c100000 40960 C:\Windows\System32\wow64cpu.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation AMD64 Wow64 CPU 131795780230647131 0x707d0000 86016 C:\Windows\SysWOW64\samcli.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Security Accounts Manager Client DLL 131795780230656119 0x70c30000 114688 C:\Windows\SysWOW64\srvcli.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Server Service Client DLL 131795780230633877 0x70ca0000 45056 C:\Windows\SysWOW64\netutils.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API Helpers DLL 131795780230624296 0x70cb0000 65536 C:\Windows\SysWOW64\wkscli.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Workstation Service Client DLL 131795780230698730 0x73f00000 192512 C:\Windows\SysWOW64\IPHLPAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API вспомогательного приложения IP 131795780230710430 0x74190000 110592 C:\Windows\SysWOW64\bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795780230615508 0x74710000 90112 C:\Windows\SysWOW64\mpr.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека маршрутизации для нескольких служб доступа 131795780230571969 0x74730000 598016 C:\Windows\SysWOW64\apphelp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиентская библиотека совместимости приложений 131795780230604972 0x747d0000 40960 C:\Windows\SysWOW64\cryptbase.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base cryptographic API DLL 131795780230604257 0x747e0000 126976 C:\Windows\SysWOW64\sspicli.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Security Support Provider Interface 131795780230625308 0x74830000 917504 C:\Windows\SysWOW64\ucrtbase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795780230603279 0x74b60000 790528 C:\Windows\SysWOW64\rpcrt4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795780230599638 0x74da0000 778240 C:\Windows\SysWOW64\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795780226936362 0x751e0000 1708032 C:\Windows\SysWOW64\KernelBase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795780230602268 0x75390000 266240 C:\Windows\SysWOW64\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795780230601348 0x75560000 487424 C:\Windows\SysWOW64\advapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795780226935132 0x755e0000 917504 C:\Windows\SysWOW64\kernel32.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795780230605861 0x776c0000 368640 C:\Windows\SysWOW64\bcryptprimitives.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation Windows Cryptographic Primitives Library 131795780226911103 0x77d20000 1585152 C:\Windows\SysWOW64\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 131795780226910839 0x7ffad0270000 1908736 C:\Windows\System32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 134 628 3432 133 00000000:0031f1ab 131795780228710407 131795780238003474 0 1 Обязательная метка\Высокий обязательный уровень WIN-0UOTFKKVN1S\User Conhost.exe C:\Windows\System32\Conhost.exe \??\C:\Windows\system32\conhost.exe 0xffffffff -ForceV1 Microsoft Corporation 10.0.14393.0 (rs1_release.160715-1616) Console Window Host 131795780228712258 0x7ff768b40000 69632 C:\Windows\System32\conhost.exe 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Console Window Host 131795780229733719 0x7ffabe520000 368640 C:\Windows\System32\ConhostV2.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Хост окна консоли 131795780230451316 0x7ffac6c40000 2596864 C:\Windows\WinSxS\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.14393.953_none_42151e83c686086b\comctl32.dll 6.10 (rs1_release_inmarket.170303-1614) Microsoft Corporation Библиотека элементов управления взаимодействия с пользователем 131795780229763613 0x7ffaca340000 1593344 C:\Windows\System32\propsys.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Система страниц свойств (Майкрософт) 131795780230409173 0x7ffaca5e0000 155648 C:\Windows\System32\dwmapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Интерфейс API диспетчера окон рабочего стола (Майкрософт) 131795780230230071 0x7ffacaf00000 610304 C:\Windows\System32\uxtheme.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека тем UxTheme (Microsoft) 131795780230209305 0x7ffacc6e0000 61440 C:\Windows\System32\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795780230206332 0x7ffacc6f0000 311296 C:\Windows\System32\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795780230210092 0x7ffacc740000 81920 C:\Windows\System32\profapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Profile Basic API 131795780229746494 0x7ffacc770000 1572864 C:\Windows\System32\gdi32full.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation GDI Client DLL 131795780229742189 0x7ffacc8f0000 1003520 C:\Windows\System32\ucrtbase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795780229744103 0x7ffacc9f0000 434176 C:\Windows\System32\bcryptprimitives.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Cryptographic Primitives Library 131795780229748137 0x7ffacca60000 122880 C:\Windows\System32\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795780229765511 0x7ffaccae0000 692224 C:\Windows\System32\SHCore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795780230205374 0x7ffaccb90000 7180288 C:\Windows\System32\windows.storage.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API хранения Microsoft WinRT 131795780229710233 0x7ffacd270000 2215936 C:\Windows\System32\KernelBase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795780229750423 0x7ffacd710000 638976 C:\Windows\System32\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795780230204254 0x7ffacd7b0000 270336 C:\Windows\System32\cfgmgr32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Configuration Manager DLL 131795780230202886 0x7ffacd810000 22056960 C:\Windows\System32\shell32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Общая библиотека оболочки Windows 131795780229749730 0x7ffaced20000 782336 C:\Windows\System32\oleaut32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795780229742956 0x7ffacee50000 1183744 C:\Windows\System32\rpcrt4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795780229718534 0x7ffacef90000 647168 C:\Windows\System32\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795780229709333 0x7ffacf0d0000 704512 C:\Windows\System32\kernel32.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795780230388633 0x7ffacf1e0000 1417216 C:\Windows\System32\msctf.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Серверная библиотека MSCTF 131795780229745098 0x7ffacf770000 212992 C:\Windows\System32\gdi32.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation GDI Client DLL 131795780229748941 0x7ffacf890000 188416 C:\Windows\System32\imm32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Multi-User Windows IMM32 API Client DLL 131795780229747436 0x7ffacf8c0000 1462272 C:\Windows\System32\user32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795780229741377 0x7ffacfb30000 2916352 C:\Windows\System32\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795780230207188 0x7ffacfe20000 663552 C:\Windows\System32\advapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795780230208410 0x7ffad01b0000 335872 C:\Windows\System32\shlwapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека небольших программ оболочки 131795780229764675 0x7ffad0210000 364544 C:\Windows\System32\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795780228712496 0x7ffad0270000 1908736 C:\Windows\System32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 135 10452 3432 133 00000000:0031f1ab 131795780234304124 131795780237516174 0 0 Обязательная метка\Высокий обязательный уровень WIN-0UOTFKKVN1S\User net1.exe C:\Windows\SysWOW64\net1.exe C:\Windows\system32\net1 start npf Microsoft Corporation 10.0.14393.0 (rs1_release.160715-1616) Net Command 131795780234380464 0xe80000 204800 C:\Windows\SysWOW64\net1.exe 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Command 131795780234400728 0x3200000 704512 C:\Windows\System32\kernel32.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795780234401906 0x3330000 1462272 C:\Windows\System32\user32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795780234392134 0x5c020000 335872 C:\Windows\System32\wow64.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation Win32 Emulation on NT64 131795780234393004 0x5c080000 487424 C:\Windows\System32\wow64win.dll 10.0.14393.1884 (rs1_release.171101-1233) Microsoft Corporation Wow64 Console and Win32 API Logging 131795780234404560 0x5c100000 40960 C:\Windows\System32\wow64cpu.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation AMD64 Wow64 CPU 131795780235692217 0x6d050000 192512 C:\Windows\SysWOW64\logoncli.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Net Logon Client DLL 131795780235114117 0x707d0000 86016 C:\Windows\SysWOW64\samcli.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Security Accounts Manager Client DLL 131795780235142260 0x70c30000 114688 C:\Windows\SysWOW64\srvcli.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Server Service Client DLL 131795780235123634 0x70ca0000 45056 C:\Windows\SysWOW64\netutils.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API Helpers DLL 131795780235150799 0x70cb0000 65536 C:\Windows\SysWOW64\wkscli.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Workstation Service Client DLL 131795780235241635 0x72500000 36864 C:\Windows\SysWOW64\dsrole.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DS Setup Client DLL 131795780235505669 0x74190000 110592 C:\Windows\SysWOW64\bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795780235097962 0x747d0000 40960 C:\Windows\SysWOW64\cryptbase.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base cryptographic API DLL 131795780235101860 0x747e0000 126976 C:\Windows\SysWOW64\sspicli.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Security Support Provider Interface 131795780235115114 0x74830000 917504 C:\Windows\SysWOW64\ucrtbase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795780235100915 0x74b60000 790528 C:\Windows\SysWOW64\rpcrt4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795780235095380 0x74da0000 778240 C:\Windows\SysWOW64\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795780234411941 0x751e0000 1708032 C:\Windows\SysWOW64\KernelBase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795780235099987 0x75390000 266240 C:\Windows\SysWOW64\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795780234410569 0x755e0000 917504 C:\Windows\SysWOW64\kernel32.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795780235099056 0x776c0000 368640 C:\Windows\SysWOW64\bcryptprimitives.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation Windows Cryptographic Primitives Library 131795780234381135 0x77d20000 1585152 C:\Windows\SysWOW64\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 131795780234380880 0x7ffad0270000 1908736 C:\Windows\System32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 136 9796 4048 3 00000000:000003e7 131795780239620520 0 0 1 Обязательная метка\Обязательный уровень системы NT AUTHORITY\СИСТЕМА SearchProtocolHost.exe C:\Windows\system32\SearchProtocolHost.exe "C:\Windows\system32\SearchProtocolHost.exe" Global\UsGthrFltPipeMssGthrPipe287_ Global\UsGthrCtrlFltPipeMssGthrPipe287 1 -2147483646 "Software\Microsoft\Windows Search" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT; MS Search 4.0 Robot)" "C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc" "DownLevelDaemon" Microsoft Corporation 7.0.14393.2125 (rs1_release.180301-2139) Microsoft Windows Search Protocol Host 131795780239737964 0x7ff71ad80000 368640 C:\Windows\System32\SearchProtocolHost.exe 7.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation Microsoft Windows Search Protocol Host 131795780369815326 0x7ffaac6e0000 13156352 C:\Windows\System32\ieframe.dll 11.00.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Браузер 131795780418459536 0x7ffab33d0000 258048 C:\Windows\System32\mlang.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL многоязыковой поддержки 131795780240300022 0x7ffab7a00000 3424256 C:\Windows\System32\tquery.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Запросы Microsoft Tripoli 131795780243315314 0x7ffab9490000 860160 C:\Windows\System32\ntshrui.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширения оболочки, обеспечивающие общий доступ 131795780243903335 0x7ffabaf70000 270336 C:\Windows\System32\edputil.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служебная программа EDP 131795780441683903 0x7ffabc0b0000 65536 C:\Windows\System32\linkinfo.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Volume Tracking 131795780243600064 0x7ffabc880000 73728 C:\Windows\System32\cscapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Offline Files Win32 API 131795780427898780 0x7ffabf5d0000 2924544 C:\Windows\System32\wininet.dll 11.00.14393.447 (rs1_release_inmarket.161102-0100) Microsoft Corporation Расширения Интернета для Win32 131795780243436640 0x7ffabff10000 155648 C:\Windows\System32\srvcli.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Server Service Client DLL 131795780430442742 0x7ffac0bf0000 3559424 C:\Windows\System32\actxprxy.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation ActiveX Interface Marshaling Library 131795780410780027 0x7ffac2700000 98304 C:\Windows\System32\netapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API DLL 131795780241991790 0x7ffac2960000 143360 C:\Windows\System32\mssprxy.dll 7.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation Microsoft Search Proxy 131795780410796187 0x7ffac2b80000 40960 C:\Windows\System32\version.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Version Checking and File Installation Libraries 131795780431995807 0x7ffac34e0000 1843200 C:\Windows\System32\urlmon.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширения OLE32 для Win32 131795780410763398 0x7ffac3cb0000 2772992 C:\Windows\System32\iertutil.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служебная программа времени выполнения для Internet Explorer 131795780417487601 0x7ffac6ba0000 49152 C:\Windows\System32\secur32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Security Support Provider Interface 131795780413476937 0x7ffac6c40000 2596864 C:\Windows\WinSxS\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.14393.953_none_42151e83c686086b\comctl32.dll 6.10 (rs1_release_inmarket.170303-1614) Microsoft Corporation Библиотека элементов управления взаимодействия с пользователем 131795780242057291 0x7ffac7cd0000 192512 C:\Windows\System32\mssph.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Обработчик протоколов поиска Microsoft 131795780240397027 0x7ffac7e40000 28672 C:\Windows\System32\msidle.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Idle Monitor 131795780412021532 0x7ffac90b0000 90112 C:\Windows\System32\wkscli.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Workstation Service Client DLL 131795780242909541 0x7ffaca340000 1593344 C:\Windows\System32\propsys.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Система страниц свойств (Майкрософт) 131795780369785371 0x7ffacadf0000 499712 C:\Windows\System32\apphelp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиентская библиотека совместимости приложений 131795780242712385 0x7ffacb420000 204800 C:\Windows\System32\ntmarta.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик Windows NT MARTA 131795780242660417 0x7ffacb960000 303104 C:\Windows\System32\authz.dll 10.0.14393.1737 (rs1_release_inmarket.170914-1249) Microsoft Corporation Authorization Framework 131795780412012220 0x7ffacbe20000 53248 C:\Windows\System32\netutils.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API Helpers DLL 131795780243425796 0x7ffacc350000 180224 C:\Windows\System32\sspicli.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Security Support Provider Interface 131795780412832818 0x7ffacc620000 176128 C:\Windows\System32\bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795780240244868 0x7ffacc6e0000 61440 C:\Windows\System32\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795780240240128 0x7ffacc6f0000 311296 C:\Windows\System32\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795780240251850 0x7ffacc740000 81920 C:\Windows\System32\profapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Profile Basic API 131795780240242580 0x7ffacc770000 1572864 C:\Windows\System32\gdi32full.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation GDI Client DLL 131795780240232121 0x7ffacc8f0000 1003520 C:\Windows\System32\ucrtbase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795780240234675 0x7ffacc9f0000 434176 C:\Windows\System32\bcryptprimitives.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Cryptographic Primitives Library 131795780240244079 0x7ffacca60000 122880 C:\Windows\System32\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795780240238319 0x7ffaccae0000 692224 C:\Windows\System32\SHCore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795780240239247 0x7ffaccb90000 7180288 C:\Windows\System32\windows.storage.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API хранения Microsoft WinRT 131795780240221401 0x7ffacd270000 2215936 C:\Windows\System32\KernelBase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795780240231486 0x7ffacd710000 638976 C:\Windows\System32\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795780243144631 0x7ffacd7b0000 270336 C:\Windows\System32\cfgmgr32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Configuration Manager DLL 131795780243143464 0x7ffacd810000 22056960 C:\Windows\System32\shell32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Общая библиотека оболочки Windows 131795780240230763 0x7ffaced20000 782336 C:\Windows\System32\oleaut32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795780240233764 0x7ffacee50000 1183744 C:\Windows\System32\rpcrt4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795780240229489 0x7ffacef90000 647168 C:\Windows\System32\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795780240634076 0x7ffacf030000 651264 C:\Windows\System32\clbcatq.dll 2001.12.10941.16384 (rs1_release.160715-1616) Microsoft Corporation COM+ Configuration Catalog 131795780240220498 0x7ffacf0d0000 704512 C:\Windows\System32\kernel32.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795780240241837 0x7ffacf770000 212992 C:\Windows\System32\gdi32.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation GDI Client DLL 131795780240368757 0x7ffacf890000 188416 C:\Windows\System32\imm32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Multi-User Windows IMM32 API Client DLL 131795780240243394 0x7ffacf8c0000 1462272 C:\Windows\System32\user32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795780240233035 0x7ffacfb30000 2916352 C:\Windows\System32\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795780240236451 0x7ffacfe20000 663552 C:\Windows\System32\advapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795780241097467 0x7ffad0070000 1277952 C:\Windows\System32\ole32.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft OLE для Windows 131795780240240989 0x7ffad01b0000 335872 C:\Windows\System32\shlwapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека небольших программ оболочки 131795780240237313 0x7ffad0210000 364544 C:\Windows\System32\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795780239738429 0x7ffad0270000 1908736 C:\Windows\System32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 137 12508 4048 3 00000000:000003e7 131795780241037362 0 0 1 Обязательная метка\Средний обязательный уровень NT AUTHORITY\СИСТЕМА SearchFilterHost.exe C:\Windows\system32\SearchFilterHost.exe "C:\Windows\system32\SearchFilterHost.exe" 0 708 712 720 8192 716 Microsoft Corporation 7.0.14393.2125 (rs1_release.180301-2139) Microsoft Windows Search Filter Host 131795780241063145 0x7ff68a750000 225280 C:\Windows\System32\SearchFilterHost.exe 7.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation Microsoft Windows Search Filter Host 131795780247134349 0x7ffaac6e0000 13156352 C:\Windows\System32\ieframe.dll 11.00.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Браузер 131795780241521132 0x7ffab7a00000 3424256 C:\Windows\System32\tquery.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Запросы Microsoft Tripoli 131795780248688938 0x7ffac2700000 98304 C:\Windows\System32\netapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API DLL 131795780241889503 0x7ffac2960000 143360 C:\Windows\System32\mssprxy.dll 7.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation Microsoft Search Proxy 131795780248698505 0x7ffac2b80000 40960 C:\Windows\System32\version.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Version Checking and File Installation Libraries 131795780248678892 0x7ffac3cb0000 2772992 C:\Windows\System32\iertutil.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служебная программа времени выполнения для Internet Explorer 131795780336696287 0x7ffac6c40000 2596864 C:\Windows\WinSxS\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.14393.953_none_42151e83c686086b\comctl32.dll 6.10 (rs1_release_inmarket.170303-1614) Microsoft Corporation Библиотека элементов управления взаимодействия с пользователем 131795780248844250 0x7ffac90b0000 90112 C:\Windows\System32\wkscli.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Workstation Service Client DLL 131795780369734185 0x7ffaca340000 1593344 C:\Windows\System32\propsys.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Система страниц свойств (Майкрософт) 131795780248709490 0x7ffacbe20000 53248 C:\Windows\System32\netutils.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API Helpers DLL 131795780245297442 0x7ffacc520000 622592 C:\Windows\System32\sxs.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Fusion 2.5 131795780248857657 0x7ffacc620000 176128 C:\Windows\System32\bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795780241586648 0x7ffacc6e0000 61440 C:\Windows\System32\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795780248634862 0x7ffacc6f0000 311296 C:\Windows\System32\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795780248647646 0x7ffacc740000 81920 C:\Windows\System32\profapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Profile Basic API 131795780241557344 0x7ffacc770000 1572864 C:\Windows\System32\gdi32full.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation GDI Client DLL 131795780241423082 0x7ffacc8f0000 1003520 C:\Windows\System32\ucrtbase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795780241426099 0x7ffacc9f0000 434176 C:\Windows\System32\bcryptprimitives.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Cryptographic Primitives Library 131795780241555681 0x7ffacca60000 122880 C:\Windows\System32\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795780241892382 0x7ffaccae0000 692224 C:\Windows\System32\SHCore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795780248633959 0x7ffaccb90000 7180288 C:\Windows\System32\windows.storage.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API хранения Microsoft WinRT 131795780241412105 0x7ffacd270000 2215936 C:\Windows\System32\KernelBase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795780241422398 0x7ffacd710000 638976 C:\Windows\System32\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795780248632826 0x7ffacd7b0000 270336 C:\Windows\System32\cfgmgr32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Configuration Manager DLL 131795780248631779 0x7ffacd810000 22056960 C:\Windows\System32\shell32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Общая библиотека оболочки Windows 131795780241421633 0x7ffaced20000 782336 C:\Windows\System32\oleaut32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795780241424805 0x7ffacee50000 1183744 C:\Windows\System32\rpcrt4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795780241420314 0x7ffacef90000 647168 C:\Windows\System32\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795780241785125 0x7ffacf030000 651264 C:\Windows\System32\clbcatq.dll 2001.12.10941.16384 (rs1_release.160715-1616) Microsoft Corporation COM+ Configuration Catalog 131795780241411149 0x7ffacf0d0000 704512 C:\Windows\System32\kernel32.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795780241556540 0x7ffacf770000 212992 C:\Windows\System32\gdi32.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation GDI Client DLL 131795780241553299 0x7ffacf890000 188416 C:\Windows\System32\imm32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Multi-User Windows IMM32 API Client DLL 131795780241554210 0x7ffacf8c0000 1462272 C:\Windows\System32\user32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795780241423999 0x7ffacfb30000 2916352 C:\Windows\System32\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795780241427039 0x7ffacfe20000 663552 C:\Windows\System32\advapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795780248630299 0x7ffad0070000 1277952 C:\Windows\System32\ole32.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft OLE для Windows 131795780248623921 0x7ffad01b0000 335872 C:\Windows\System32\shlwapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека небольших программ оболочки 131795780241505282 0x7ffad0210000 364544 C:\Windows\System32\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795780241063419 0x7ffad0270000 1908736 C:\Windows\System32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 138 12816 664 6 00000000:0031f1da 131795780328696510 0 0 1 Обязательная метка\Низкий обязательный уровень WIN-0UOTFKKVN1S\User backgroundTaskHost.exe C:\Windows\system32\backgroundTaskHost.exe "C:\Windows\system32\backgroundTaskHost.exe" -ServerName:CortanaUI.AppXy7vb4pc2dr3kc93kfc509b1d0arkfb2x.mca Microsoft Corporation 10.0.14393.0 (rs1_release.160715-1616) Background Task Host 131795780329749381 0x7ff6c9470000 28672 C:\Windows\System32\backgroundTaskHost.exe 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Background Task Host 131795780412645902 0x7ffab52c0000 2445312 C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.BackgroundTask.dll 131795780458670386 0x7ffab5db0000 9781248 C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\CortanaApi.dll 131795780430264262 0x7ffab9d50000 1429504 C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Core.dll 131795780415005192 0x7ffabae40000 110592 C:\Windows\System32\capauthz.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API авторизации возможностей 131795780669717689 0x7ffabc6b0000 1114112 C:\Windows\System32\AppContracts.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Сервер API Windows AppContracts 131795780455059889 0x7ffabd4a0000 1613824 C:\Windows\System32\Windows.Globalization.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Globalization 131795780464027032 0x7ffabe4d0000 286720 C:\Windows\System32\MSWB7.dll 10.0.14393.1737 (rs1_release_inmarket.170914-1249) Microsoft Corporation MSWB7 DLL 131795780460179577 0x7ffabe770000 774144 C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\CSGSuggestLib.dll 131795780426479724 0x7ffabea90000 135168 C:\Windows\System32\Windows.ApplicationModel.Background.SystemEventsBroker.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Background System Events Broker API Server 131795780434238517 0x7ffabeac0000 335872 C:\Windows\System32\Windows.Storage.ApplicationData.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Application Data API Server 131795780444160476 0x7ffabf8a0000 122880 C:\Windows\System32\Windows.Cortana.ProxyStub.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows.Cortana.ProxyStub 131795780435161488 0x7ffabfd80000 86016 C:\Windows\System32\threadpoolwinrt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows WinRT Threadpool 131795780414048080 0x7ffac01e0000 397312 C:\Windows\System32\wincorlib.dll 10.0.14393.576 (rs1_release_inmarket.161208-2252) Microsoft Corporation Microsoft Windows ® WinRT core library 131795780336747714 0x7ffac0bf0000 3559424 C:\Windows\System32\actxprxy.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation ActiveX Interface Marshaling Library 131795780431439143 0x7ffac2c30000 135168 C:\Windows\System32\Clipc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиент платформы лицензирования клиента 131795780415109582 0x7ffac2d80000 5140480 C:\Windows\System32\cdp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API клиента Microsoft (R) CDP 131795780447463685 0x7ffac37b0000 106496 C:\Windows\System32\ShellCommonCommonProxyStub.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ShellCommon Common Proxy Stub 131795780458880946 0x7ffac3810000 167936 C:\Windows\System32\cabinet.dll 5.00 (rs1_release.160715-1616) Microsoft Corporation Microsoft® Cabinet File API 131795780431346631 0x7ffac3bf0000 94208 C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\ActionMgr.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Cortana Action Manager 131795780454034058 0x7ffac3cb0000 2772992 C:\Windows\System32\iertutil.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служебная программа времени выполнения для Internet Explorer 131795780439433205 0x7ffac42a0000 659456 C:\Windows\System32\StateRepository.Core.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation StateRepository Core 131795780439202248 0x7ffac46d0000 4161536 C:\Windows\System32\Windows.StateRepository.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Сервер Windows StateRepository API Server 131795780453275113 0x7ffac5070000 798720 C:\Windows\System32\Windows.Web.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL веб-клиента 131795780414060032 0x7ffac60e0000 221184 C:\Windows\System32\xmllite.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft XmlLite Library 131795780412035947 0x7ffac6620000 192512 C:\Windows\System32\biwinrt.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation Windows Background Broker Infrastructure 131795780417041804 0x7ffac69c0000 839680 C:\Windows\System32\winhttp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Службы HTTP Windows 131795780335537874 0x7ffac6ac0000 835584 C:\Windows\System32\Windows.UI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Runtime UI Foundation DLL 131795780440780442 0x7ffac6bb0000 118784 C:\Windows\System32\Windows.Cortana.PAL.Desktop.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows.Cortana.PAL.Desktop 131795780334206479 0x7ffac7580000 1077248 C:\Windows\System32\MrmCoreR.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Windows MRM 131795780412505075 0x7ffac7720000 1601536 C:\Windows\System32\OneCoreUAPCommonProxyStub.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation OneCoreUAP Common Proxy Stub 131795780431250324 0x7ffac7c50000 118784 C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\BingConfigurationClient.dll 10.0.14393.82 (rs1_release.160805-1735) Microsoft Corporation Bing Configuration Client DLL 131795780734626399 0x7ffac7d80000 49152 C:\Windows\System32\Windows.ApplicationModel.Background.TimeBroker.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Background Time Broker API Server 131795780460761885 0x7ffac8fa0000 253952 C:\Windows\System32\logoncli.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Net Logon Client DLL 131795780330302623 0x7ffac92e0000 1269760 C:\Windows\System32\WinTypes.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL основных типов Windows 131795780735708696 0x7ffaca260000 45056 C:\Windows\System32\SystemEventsBrokerClient.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation system Events Broker Client Library 131795780456573704 0x7ffaca340000 1593344 C:\Windows\System32\propsys.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Система страниц свойств (Майкрософт) 131795780353237616 0x7ffaca570000 421888 C:\Windows\System32\BCP47Langs.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation BCP47 Language Classes 131795780329775228 0x7ffacadf0000 499712 C:\Windows\System32\apphelp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиентская библиотека совместимости приложений 131795780354090093 0x7ffacaf00000 610304 C:\Windows\System32\uxtheme.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека тем UxTheme (Microsoft) 131795780414037017 0x7ffacb140000 593920 C:\Windows\System32\msvcp110_win.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Microsoft® STL110 C++ Runtime Library 131795780329952250 0x7ffacb1e0000 1163264 C:\Windows\System32\twinapi.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation twinapi.appcore 131795780416468722 0x7ffacb300000 364544 C:\Windows\System32\VEEventDispatcher.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Visual Element Event dispatcher 131795780458075843 0x7ffacb420000 204800 C:\Windows\System32\ntmarta.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик Windows NT MARTA 131795780416610948 0x7ffacbd30000 229376 C:\Windows\System32\IPHLPAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API вспомогательного приложения IP 131795780417362058 0x7ffacc1f0000 241664 C:\Windows\System32\ntasn1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft ASN.1 API 131795780416587207 0x7ffacc230000 155648 C:\Windows\System32\ncrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Маршрутизатор Windows NCrypt 131795780416598309 0x7ffacc350000 180224 C:\Windows\System32\sspicli.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Security Support Provider Interface 131795780329987780 0x7ffacc620000 176128 C:\Windows\System32\bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795780329937663 0x7ffacc6e0000 61440 C:\Windows\System32\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795780440064693 0x7ffacc6f0000 311296 C:\Windows\System32\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795780334214070 0x7ffacc740000 81920 C:\Windows\System32\profapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Profile Basic API 131795780416574039 0x7ffacc760000 65536 C:\Windows\System32\msasn1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ASN.1 Runtime APIs 131795780332551041 0x7ffacc770000 1572864 C:\Windows\System32\gdi32full.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation GDI Client DLL 131795780329815850 0x7ffacc8f0000 1003520 C:\Windows\System32\ucrtbase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795780329817545 0x7ffacc9f0000 434176 C:\Windows\System32\bcryptprimitives.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Cryptographic Primitives Library 131795780332549409 0x7ffacca60000 122880 C:\Windows\System32\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795780330307702 0x7ffaccae0000 692224 C:\Windows\System32\SHCore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795780440061460 0x7ffaccb90000 7180288 C:\Windows\System32\windows.storage.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API хранения Microsoft WinRT 131795780329756590 0x7ffacd270000 2215936 C:\Windows\System32\KernelBase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795780416541236 0x7ffacd490000 1871872 C:\Windows\System32\crypt32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API32 криптографии 131795780415545554 0x7ffacd710000 638976 C:\Windows\System32\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795780415544634 0x7ffaced20000 782336 C:\Windows\System32\oleaut32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795780329816609 0x7ffacee50000 1183744 C:\Windows\System32\rpcrt4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795780329812830 0x7ffacef90000 647168 C:\Windows\System32\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795780329755673 0x7ffacf0d0000 704512 C:\Windows\System32\kernel32.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795780332550210 0x7ffacf770000 212992 C:\Windows\System32\gdi32.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation GDI Client DLL 131795780416575003 0x7ffacf820000 434176 C:\Windows\System32\ws2_32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation 32-разрядная библиотека Windows Socket 2.0 131795780332564758 0x7ffacf890000 188416 C:\Windows\System32\imm32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Multi-User Windows IMM32 API Client DLL 131795780332548246 0x7ffacf8c0000 1462272 C:\Windows\System32\user32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795780329814985 0x7ffacfb30000 2916352 C:\Windows\System32\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795780414009539 0x7ffacfe20000 663552 C:\Windows\System32\advapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795780461878432 0x7ffad0070000 1277952 C:\Windows\System32\ole32.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft OLE для Windows 131795780440069381 0x7ffad01b0000 335872 C:\Windows\System32\shlwapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека небольших программ оболочки 131795780329975442 0x7ffad0210000 364544 C:\Windows\System32\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795780329749700 0x7ffad0270000 1908736 C:\Windows\System32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 139 9096 664 6 00000000:0031f1da 131795780345290303 131795780401278955 0 1 Обязательная метка\Средний обязательный уровень WIN-0UOTFKKVN1S\User DllHost.exe C:\Windows\system32\DllHost.exe C:\Windows\system32\DllHost.exe /Processid:{AB8902B4-09CA-4BB6-B78D-A8F59079A8D5} Microsoft Corporation 10.0.14393.0 (rs1_release.160715-1616) COM Surrogate 131795780345573177 0x7ff7a2280000 36864 C:\Windows\System32\dllhost.exe 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation COM Surrogate 131795780348240345 0x7ffac5630000 339968 C:\Windows\System32\thumbcache.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Кэш эскизов Майкрософт 131795780348272478 0x7ffaca340000 1593344 C:\Windows\System32\propsys.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Система страниц свойств (Майкрософт) 131795780348029043 0x7ffacaf00000 610304 C:\Windows\System32\uxtheme.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека тем UxTheme (Microsoft) 131795780346945095 0x7ffacc6e0000 61440 C:\Windows\System32\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795780347808033 0x7ffacc770000 1572864 C:\Windows\System32\gdi32full.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation GDI Client DLL 131795780346919647 0x7ffacc8f0000 1003520 C:\Windows\System32\ucrtbase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795780346922645 0x7ffacc9f0000 434176 C:\Windows\System32\bcryptprimitives.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Cryptographic Primitives Library 131795780347731424 0x7ffacca60000 122880 C:\Windows\System32\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795780348251926 0x7ffaccae0000 692224 C:\Windows\System32\SHCore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795780346910446 0x7ffacd270000 2215936 C:\Windows\System32\KernelBase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795780348274285 0x7ffacd710000 638976 C:\Windows\System32\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795780348273434 0x7ffaced20000 782336 C:\Windows\System32\oleaut32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795780346921678 0x7ffacee50000 1183744 C:\Windows\System32\rpcrt4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795780346945926 0x7ffacef90000 647168 C:\Windows\System32\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795780346951259 0x7ffacf030000 651264 C:\Windows\System32\clbcatq.dll 2001.12.10941.16384 (rs1_release.160715-1616) Microsoft Corporation COM+ Configuration Catalog 131795780346909501 0x7ffacf0d0000 704512 C:\Windows\System32\kernel32.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795780347732333 0x7ffacf770000 212992 C:\Windows\System32\gdi32.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation GDI Client DLL 131795780347843368 0x7ffacf890000 188416 C:\Windows\System32\imm32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Multi-User Windows IMM32 API Client DLL 131795780347725833 0x7ffacf8c0000 1462272 C:\Windows\System32\user32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795780346920866 0x7ffacfb30000 2916352 C:\Windows\System32\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795780347218701 0x7ffad0210000 364544 C:\Windows\System32\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795780345573504 0x7ffad0270000 1908736 C:\Windows\System32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 140 10548 664 6 00000000:0031f1da 131795780480985741 131795780542565974 0 1 Обязательная метка\Средний обязательный уровень WIN-0UOTFKKVN1S\User DllHost.exe C:\Windows\system32\DllHost.exe C:\Windows\system32\DllHost.exe /Processid:{AB8902B4-09CA-4BB6-B78D-A8F59079A8D5} Microsoft Corporation 10.0.14393.0 (rs1_release.160715-1616) COM Surrogate 131795780481001553 0x7ff7a2280000 36864 C:\Windows\System32\dllhost.exe 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation COM Surrogate 131795780490611931 0x7ffac0bf0000 3559424 C:\Windows\System32\actxprxy.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation ActiveX Interface Marshaling Library 131795780490332304 0x7ffac5500000 438272 C:\Windows\System32\PhotoMetadataHandler.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Photo Metadata Handler 131795780481418375 0x7ffac5630000 339968 C:\Windows\System32\thumbcache.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Кэш эскизов Майкрософт 131795780490519093 0x7ffac9f50000 1736704 C:\Windows\System32\WindowsCodecs.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Microsoft Windows Codecs Library 131795780481441631 0x7ffaca340000 1593344 C:\Windows\System32\propsys.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Система страниц свойств (Майкрософт) 131795780481360002 0x7ffacaf00000 610304 C:\Windows\System32\uxtheme.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека тем UxTheme (Microsoft) 131795780481044679 0x7ffacc6e0000 61440 C:\Windows\System32\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795780481254937 0x7ffacc770000 1572864 C:\Windows\System32\gdi32full.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation GDI Client DLL 131795780481018489 0x7ffacc8f0000 1003520 C:\Windows\System32\ucrtbase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795780481021276 0x7ffacc9f0000 434176 C:\Windows\System32\bcryptprimitives.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Cryptographic Primitives Library 131795780481253383 0x7ffacca60000 122880 C:\Windows\System32\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795780481419248 0x7ffaccae0000 692224 C:\Windows\System32\SHCore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795780481009961 0x7ffacd270000 2215936 C:\Windows\System32\KernelBase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795780481443418 0x7ffacd710000 638976 C:\Windows\System32\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795780481442584 0x7ffaced20000 782336 C:\Windows\System32\oleaut32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795780481020378 0x7ffacee50000 1183744 C:\Windows\System32\rpcrt4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795780481045463 0x7ffacef90000 647168 C:\Windows\System32\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795780481050544 0x7ffacf030000 651264 C:\Windows\System32\clbcatq.dll 2001.12.10941.16384 (rs1_release.160715-1616) Microsoft Corporation COM+ Configuration Catalog 131795780481009080 0x7ffacf0d0000 704512 C:\Windows\System32\kernel32.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795780481254203 0x7ffacf770000 212992 C:\Windows\System32\gdi32.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation GDI Client DLL 131795780481272184 0x7ffacf890000 188416 C:\Windows\System32\imm32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Multi-User Windows IMM32 API Client DLL 131795780481252571 0x7ffacf8c0000 1462272 C:\Windows\System32\user32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795780481019630 0x7ffacfb30000 2916352 C:\Windows\System32\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795780481215653 0x7ffad0210000 364544 C:\Windows\System32\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795780481001785 0x7ffad0270000 1908736 C:\Windows\System32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 141 4416 904 22 00000000:000003e7 131795780514347741 131795781004090841 0 1 Обязательная метка\Обязательный уровень системы NT AUTHORITY\СИСТЕМА compattelrunner.exe C:\Windows\system32\compattelrunner.exe C:\Windows\system32\compattelrunner.exe -m:aeinv.dll -f:UpdateSoftwareInventoryW Microsoft Corporation 10.0.17060.1029 (WinBuild.160101.0800) Microsoft Compatibility Telemetry 131795780514361835 0x7ff70d700000 147456 C:\Windows\System32\CompatTelRunner.exe 10.0.17060.1029 (WinBuild.160101.0800) Microsoft Corporation Microsoft Compatibility Telemetry 131795780522700638 0x7ffaafa00000 2240512 C:\Windows\System32\OpcServices.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Native Code OPC Services Library 131795780522152025 0x7ffababa0000 1126400 C:\Windows\System32\AppxPackaging.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека пакетов машинного кода Appx 131795780518192285 0x7ffabdd60000 425984 C:\Windows\System32\AppXDeploymentClient.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL-библиотека клиента развертывания AppX 131795780519285351 0x7ffabeb20000 385024 C:\Windows\System32\Windows.ApplicationModel.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows ApplicationModel API Server 131795780526644057 0x7ffabf330000 2457600 C:\Windows\System32\msxml6.dll 6.30.14393.2156 Microsoft Corporation MSXML 6.0 131795780517476435 0x7ffac0610000 3088384 C:\Windows\System32\msi.dll 5.0.14393.2155 Microsoft Corporation Windows Installer 131795780517083301 0x7ffac1660000 688128 C:\Windows\System32\aeinv.dll 10.0.17060.1029 (WinBuild.160101.0800) Microsoft Corporation Application Inventory Component 131795780522718984 0x7ffac34e0000 1843200 C:\Windows\System32\urlmon.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширения OLE32 для Win32 131795780517734774 0x7ffac3cb0000 2772992 C:\Windows\System32\iertutil.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служебная программа времени выполнения для Internet Explorer 131795780517488909 0x7ffac60e0000 221184 C:\Windows\System32\xmllite.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft XmlLite Library 131795780537308307 0x7ffac6ac0000 835584 C:\Windows\System32\Windows.UI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Runtime UI Foundation DLL 131795780537245894 0x7ffac7580000 1077248 C:\Windows\System32\MrmCoreR.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Windows MRM 131795780516975529 0x7ffac9220000 397312 C:\Windows\System32\wevtapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API настройки и использования событий 131795780519923937 0x7ffaca340000 1593344 C:\Windows\System32\propsys.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Система страниц свойств (Майкрософт) 131795780534738440 0x7ffaca570000 421888 C:\Windows\System32\BCP47Langs.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation BCP47 Language Classes 131795780519489095 0x7ffacb1e0000 1163264 C:\Windows\System32\twinapi.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation twinapi.appcore 131795780517766654 0x7ffacb420000 204800 C:\Windows\System32\ntmarta.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик Windows NT MARTA 131795780516985179 0x7ffacc620000 176128 C:\Windows\System32\bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795780517465971 0x7ffacc6e0000 61440 C:\Windows\System32\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795780517465170 0x7ffacc6f0000 311296 C:\Windows\System32\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795780517467459 0x7ffacc740000 81920 C:\Windows\System32\profapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Profile Basic API 131795780534262934 0x7ffacc760000 65536 C:\Windows\System32\msasn1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ASN.1 Runtime APIs 131795780516955127 0x7ffacc770000 1572864 C:\Windows\System32\gdi32full.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation GDI Client DLL 131795780516950237 0x7ffacc8f0000 1003520 C:\Windows\System32\ucrtbase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795780516951894 0x7ffacc9f0000 434176 C:\Windows\System32\bcryptprimitives.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Cryptographic Primitives Library 131795780516956687 0x7ffacca60000 122880 C:\Windows\System32\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795780517466672 0x7ffaccae0000 692224 C:\Windows\System32\SHCore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795780517464292 0x7ffaccb90000 7180288 C:\Windows\System32\windows.storage.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API хранения Microsoft WinRT 131795780515134971 0x7ffacd270000 2215936 C:\Windows\System32\KernelBase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795780534261862 0x7ffacd490000 1871872 C:\Windows\System32\crypt32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API32 криптографии 131795780516958252 0x7ffacd710000 638976 C:\Windows\System32\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795780517463322 0x7ffacd7b0000 270336 C:\Windows\System32\cfgmgr32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Configuration Manager DLL 131795780517462206 0x7ffacd810000 22056960 C:\Windows\System32\shell32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Общая библиотека оболочки Windows 131795780516957529 0x7ffaced20000 782336 C:\Windows\System32\oleaut32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795780516950982 0x7ffacee50000 1183744 C:\Windows\System32\rpcrt4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795780516947569 0x7ffacef90000 647168 C:\Windows\System32\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795780518177038 0x7ffacf030000 651264 C:\Windows\System32\clbcatq.dll 2001.12.10941.16384 (rs1_release.160715-1616) Microsoft Corporation COM+ Configuration Catalog 131795780515134073 0x7ffacf0d0000 704512 C:\Windows\System32\kernel32.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795780516954224 0x7ffacf770000 212992 C:\Windows\System32\gdi32.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation GDI Client DLL 131795780516955947 0x7ffacf8c0000 1462272 C:\Windows\System32\user32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795780516949497 0x7ffacfb30000 2916352 C:\Windows\System32\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795780516960050 0x7ffacfe20000 663552 C:\Windows\System32\advapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795780516948721 0x7ffad0070000 1277952 C:\Windows\System32\ole32.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft OLE для Windows 131795780516959141 0x7ffad01b0000 335872 C:\Windows\System32\shlwapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека небольших программ оболочки 131795780516952719 0x7ffad0210000 364544 C:\Windows\System32\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795780514362068 0x7ffad0270000 1908736 C:\Windows\System32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 142 12684 4416 141 00000000:000003e7 131795780515368679 131795781004122026 0 1 Обязательная метка\Обязательный уровень системы NT AUTHORITY\СИСТЕМА Conhost.exe C:\Windows\System32\Conhost.exe \??\C:\Windows\system32\conhost.exe 0xffffffff -ForceV1 Microsoft Corporation 10.0.14393.0 (rs1_release.160715-1616) Console Window Host 131795780515888821 0x7ff768b40000 69632 C:\Windows\System32\conhost.exe 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Console Window Host 131795780515919012 0x7ffabe520000 368640 C:\Windows\System32\ConhostV2.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Хост окна консоли 131795780516232908 0x7ffaca340000 1593344 C:\Windows\System32\propsys.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Система страниц свойств (Майкрософт) 131795780516652172 0x7ffacc6e0000 61440 C:\Windows\System32\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795780516649553 0x7ffacc6f0000 311296 C:\Windows\System32\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795780516657375 0x7ffacc740000 81920 C:\Windows\System32\profapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Profile Basic API 131795780516215409 0x7ffacc770000 1572864 C:\Windows\System32\gdi32full.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation GDI Client DLL 131795780516211528 0x7ffacc8f0000 1003520 C:\Windows\System32\ucrtbase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795780516213284 0x7ffacc9f0000 434176 C:\Windows\System32\bcryptprimitives.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Cryptographic Primitives Library 131795780516216875 0x7ffacca60000 122880 C:\Windows\System32\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795780516234504 0x7ffaccae0000 692224 C:\Windows\System32\SHCore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795780516648714 0x7ffaccb90000 7180288 C:\Windows\System32\windows.storage.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API хранения Microsoft WinRT 131795780515894958 0x7ffacd270000 2215936 C:\Windows\System32\KernelBase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795780516218956 0x7ffacd710000 638976 C:\Windows\System32\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795780516647725 0x7ffacd7b0000 270336 C:\Windows\System32\cfgmgr32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Configuration Manager DLL 131795780516646589 0x7ffacd810000 22056960 C:\Windows\System32\shell32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Общая библиотека оболочки Windows 131795780516218299 0x7ffaced20000 782336 C:\Windows\System32\oleaut32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795780516212262 0x7ffacee50000 1183744 C:\Windows\System32\rpcrt4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795780515904489 0x7ffacef90000 647168 C:\Windows\System32\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795780515894121 0x7ffacf0d0000 704512 C:\Windows\System32\kernel32.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795780516214650 0x7ffacf770000 212992 C:\Windows\System32\gdi32.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation GDI Client DLL 131795780516217581 0x7ffacf890000 188416 C:\Windows\System32\imm32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Multi-User Windows IMM32 API Client DLL 131795780516216177 0x7ffacf8c0000 1462272 C:\Windows\System32\user32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795780516210780 0x7ffacfb30000 2916352 C:\Windows\System32\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795780516650349 0x7ffacfe20000 663552 C:\Windows\System32\advapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795780516651202 0x7ffad01b0000 335872 C:\Windows\System32\shlwapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека небольших программ оболочки 131795780516233739 0x7ffad0210000 364544 C:\Windows\System32\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795780515889062 0x7ffad0270000 1908736 C:\Windows\System32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 143 10640 664 6 00000000:0031f1da 131795780604526348 0 0 1 Обязательная метка\Низкий обязательный уровень WIN-0UOTFKKVN1S\User backgroundTaskHost.exe C:\Windows\system32\backgroundTaskHost.exe "C:\Windows\system32\backgroundTaskHost.exe" -ServerName:App.AppXmtcan0h2tfbfy7k9kn8hbxb6dmzz1zh0.mca Microsoft Corporation 10.0.14393.0 (rs1_release.160715-1616) Background Task Host 131795780604942096 0x7ff6c9470000 28672 C:\Windows\System32\backgroundTaskHost.exe 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Background Task Host 131795780982599698 0x7ffaa6c80000 2936832 C:\Windows\System32\CertEnroll.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиент регистрации служб сертификатов Active Directory Microsoft® 131795780624085064 0x7ffaad5b0000 3424256 C:\Windows\SystemApps\Microsoft.Windows.ContentDeliveryManager_cw5n1h2txyewy\ContentDeliveryManager.Background.dll 131795780633868268 0x7ffaadf00000 2260992 C:\Windows\SystemApps\Microsoft.Windows.ContentDeliveryManager_cw5n1h2txyewy\ContentManagementSDK.dll 131795780984186979 0x7ffab1dc0000 798720 C:\Windows\System32\certca.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ЦС служб сертификации Microsoft® Active Directory 131795780989018507 0x7ffab33d0000 258048 C:\Windows\System32\mlang.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL многоязыковой поддержки 131795780638521291 0x7ffab8f60000 397312 C:\Windows\System32\CryptoWinRT.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Crypto WinRT Library 131795780656495804 0x7ffab9c00000 1343488 C:\Windows\System32\Windows.Web.Http.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL Windows.Web.Http 131795780968504887 0x7ffabaab0000 94208 C:\Windows\System32\profext.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation profext 131795780965909656 0x7ffabbd10000 65536 C:\Windows\System32\tokenbinding.dll 10.0.14393.1593 (rs1_release.170731-1934) Microsoft Corporation Token Binding Protocol 131795780850515848 0x7ffabc530000 241664 C:\Windows\System32\Windows.Networking.HostName.dll 10.0.14393.953 (rs1_release_inmarket.170303-1614) Microsoft Corporation Windows.Networking.HostName DLL 131795780881658829 0x7ffabca50000 819200 C:\Windows\System32\Windows.Security.Authentication.Web.Core.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Token Broker WinRT API 131795780632764734 0x7ffabd4a0000 1613824 C:\Windows\System32\Windows.Globalization.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Globalization 131795780627995893 0x7ffabea90000 135168 C:\Windows\System32\Windows.ApplicationModel.Background.SystemEventsBroker.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Background System Events Broker API Server 131795780626074133 0x7ffabeac0000 335872 C:\Windows\System32\Windows.Storage.ApplicationData.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Application Data API Server 131795780637000038 0x7ffabeb20000 385024 C:\Windows\System32\Windows.ApplicationModel.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows ApplicationModel API Server 131795780979874979 0x7ffabf1d0000 192512 C:\Windows\System32\cryptnet.dll 10.0.14393.2035 (rs1_release_inmarket.180110-1910) Microsoft Corporation Crypto Network Related API 131795780639367373 0x7ffabf2d0000 344064 C:\Windows\System32\ncryptprov.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft KSP 131795780949324967 0x7ffabf5d0000 2924544 C:\Windows\System32\wininet.dll 11.00.14393.447 (rs1_release_inmarket.161102-0100) Microsoft Corporation Расширения Интернета для Win32 131795780638058893 0x7ffabfd80000 86016 C:\Windows\System32\threadpoolwinrt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows WinRT Threadpool 131795780979208878 0x7ffabff60000 135168 C:\Windows\System32\ncryptsslp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft SChannel Provider 131795780624149045 0x7ffac01e0000 397312 C:\Windows\System32\wincorlib.dll 10.0.14393.576 (rs1_release_inmarket.161208-2252) Microsoft Corporation Microsoft Windows ® WinRT core library 131795780641809268 0x7ffac0910000 724992 C:\Windows\System32\Windows.Networking.Connectivity.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Networking Connectivity Runtime DLL 131795780979197823 0x7ffac0ad0000 86016 C:\Windows\System32\mskeyprotect.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик защиты ключей (Майкрософт) 131795780606360545 0x7ffac0bf0000 3559424 C:\Windows\System32\actxprxy.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation ActiveX Interface Marshaling Library 131795780918011378 0x7ffac23c0000 331776 C:\Windows\System32\OneCoreCommonProxyStub.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation OneCore Common Proxy Stub 131795780971614143 0x7ffac34e0000 1843200 C:\Windows\System32\urlmon.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширения OLE32 для Win32 131795780631634537 0x7ffac3cb0000 2772992 C:\Windows\System32\iertutil.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служебная программа времени выполнения для Internet Explorer 131795780624161030 0x7ffac4000000 274432 C:\Windows\System32\policymanager.dll 10.0.14393.2035 (rs1_release_inmarket.180110-1910) Microsoft Corporation Policy Manager DLL 131795780642339398 0x7ffac42a0000 659456 C:\Windows\System32\StateRepository.Core.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation StateRepository Core 131795780642310850 0x7ffac46d0000 4161536 C:\Windows\System32\Windows.StateRepository.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Сервер Windows StateRepository API Server 131795780631607870 0x7ffac5070000 798720 C:\Windows\System32\Windows.Web.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL веб-клиента 131795780972492970 0x7ffac6610000 40960 C:\Windows\System32\rasadhlp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Remote Access AutoDial Helper 131795780622245977 0x7ffac6620000 192512 C:\Windows\System32\biwinrt.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation Windows Background Broker Infrastructure 131795780965988464 0x7ffac66a0000 86016 C:\Windows\System32\OnDemandConnRouteHelper.dll 10.0.14393.351 (rs1_release_inmarket.161014-1755) Microsoft Corporation On Demand Connctiond Route Helper 131795780966015364 0x7ffac69c0000 839680 C:\Windows\System32\winhttp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Службы HTTP Windows 131795780606285280 0x7ffac6ac0000 835584 C:\Windows\System32\Windows.UI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Runtime UI Foundation DLL 131795780983258989 0x7ffac6b90000 53248 C:\Windows\System32\dsparse.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Active Directory Domain Services API 131795780605748575 0x7ffac7580000 1077248 C:\Windows\System32\MrmCoreR.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Windows MRM 131795780624526113 0x7ffac76a0000 159744 C:\Windows\System32\sppc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Software Licensing Client DLL 131795780622740074 0x7ffac7720000 1601536 C:\Windows\System32\OneCoreUAPCommonProxyStub.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation OneCoreUAP Common Proxy Stub 131795780624112925 0x7ffac7990000 155648 C:\Windows\System32\slc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Software Licensing Client DLL 131795780626644547 0x7ffac7d80000 49152 C:\Windows\System32\Windows.ApplicationModel.Background.TimeBroker.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Background Time Broker API Server 131795780975579967 0x7ffac8420000 434176 C:\Windows\System32\FWPUCLNT.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API пользовательского режима FWP/IPsec 131795780968868492 0x7ffac8810000 45056 C:\Windows\System32\winnsi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Network Store Information RPC interface 131795780626601326 0x7ffac8fa0000 253952 C:\Windows\System32\logoncli.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Net Logon Client DLL 131795780605036791 0x7ffac92e0000 1269760 C:\Windows\System32\WinTypes.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL основных типов Windows 131795780630151168 0x7ffaca260000 45056 C:\Windows\System32\SystemEventsBrokerClient.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation system Events Broker Client Library 131795780634233098 0x7ffaca340000 1593344 C:\Windows\System32\propsys.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Система страниц свойств (Майкрософт) 131795780621646470 0x7ffaca570000 421888 C:\Windows\System32\BCP47Langs.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation BCP47 Language Classes 131795780621784723 0x7ffacaf00000 610304 C:\Windows\System32\uxtheme.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека тем UxTheme (Microsoft) 131795780624171938 0x7ffacb140000 593920 C:\Windows\System32\msvcp110_win.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Microsoft® STL110 C++ Runtime Library 131795780605004500 0x7ffacb1e0000 1163264 C:\Windows\System32\twinapi.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation twinapi.appcore 131795780624123309 0x7ffacb300000 364544 C:\Windows\System32\VEEventDispatcher.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Visual Element Event dispatcher 131795780967018140 0x7ffacb360000 176128 C:\Windows\System32\fwbase.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Firewall Base DLL 131795780644959783 0x7ffacb420000 204800 C:\Windows\System32\ntmarta.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик Windows NT MARTA 131795780966160644 0x7ffacb460000 548864 C:\Windows\System32\FirewallAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API брандмауэра Windows 131795780977616543 0x7ffacbaf0000 495616 C:\Windows\System32\schannel.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик безопасности TLS/SSL 131795780979753360 0x7ffacbbb0000 208896 C:\Windows\System32\rsaenh.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Enhanced Cryptographic Provider 131795780979288601 0x7ffacbbf0000 40960 C:\Windows\System32\dpapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Data Protection API 131795780966000176 0x7ffacbd30000 229376 C:\Windows\System32\IPHLPAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API вспомогательного приложения IP 131795780971557025 0x7ffacbd70000 659456 C:\Windows\System32\dnsapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Динамическая библиотека API DNS-клиента 131795780967499686 0x7ffacbe40000 126976 C:\Windows\System32\userenv.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Userenv 131795780968849434 0x7ffacbfb0000 376832 C:\Windows\System32\mswsock.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширение поставщика службы API Microsoft Windows Sockets 2.0 131795780979741934 0x7ffacc150000 94208 C:\Windows\System32\cryptsp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Cryptographic Service Provider API 131795780640855968 0x7ffacc170000 45056 C:\Windows\System32\cryptbase.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base cryptographic API DLL 131795780639253750 0x7ffacc1f0000 241664 C:\Windows\System32\ntasn1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft ASN.1 API 131795780639155938 0x7ffacc230000 155648 C:\Windows\System32\ncrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Маршрутизатор Windows NCrypt 131795780624100929 0x7ffacc350000 180224 C:\Windows\System32\sspicli.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Security Support Provider Interface 131795780605016566 0x7ffacc620000 176128 C:\Windows\System32\bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795780604988979 0x7ffacc6e0000 61440 C:\Windows\System32\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795780634211474 0x7ffacc6f0000 311296 C:\Windows\System32\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795780606271616 0x7ffacc740000 81920 C:\Windows\System32\profapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Profile Basic API 131795780882167263 0x7ffacc760000 65536 C:\Windows\System32\msasn1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ASN.1 Runtime APIs 131795780605130292 0x7ffacc770000 1572864 C:\Windows\System32\gdi32full.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation GDI Client DLL 131795780604960936 0x7ffacc8f0000 1003520 C:\Windows\System32\ucrtbase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795780604962598 0x7ffacc9f0000 434176 C:\Windows\System32\bcryptprimitives.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Cryptographic Primitives Library 131795780605128610 0x7ffacca60000 122880 C:\Windows\System32\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795780979290330 0x7ffacca80000 348160 C:\Windows\System32\wintrust.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation Microsoft Trust Verification APIs 131795780605041481 0x7ffaccae0000 692224 C:\Windows\System32\SHCore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795780634210377 0x7ffaccb90000 7180288 C:\Windows\System32\windows.storage.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API хранения Microsoft WinRT 131795780604949997 0x7ffacd270000 2215936 C:\Windows\System32\KernelBase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795780882158799 0x7ffacd490000 1871872 C:\Windows\System32\crypt32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API32 криптографии 131795780624152029 0x7ffacd710000 638976 C:\Windows\System32\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795780624151198 0x7ffaced20000 782336 C:\Windows\System32\oleaut32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795780604961659 0x7ffacee50000 1183744 C:\Windows\System32\rpcrt4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795780968869207 0x7ffacef80000 32768 C:\Windows\System32\nsi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation NSI User-mode interface DLL 131795780604958974 0x7ffacef90000 647168 C:\Windows\System32\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795780604949078 0x7ffacf0d0000 704512 C:\Windows\System32\kernel32.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795780985065294 0x7ffacf180000 376832 C:\Windows\System32\Wldap32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Win32 LDAP API DLL 131795780605129419 0x7ffacf770000 212992 C:\Windows\System32\gdi32.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation GDI Client DLL 131795780965914856 0x7ffacf820000 434176 C:\Windows\System32\ws2_32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation 32-разрядная библиотека Windows Socket 2.0 131795780605144205 0x7ffacf890000 188416 C:\Windows\System32\imm32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Multi-User Windows IMM32 API Client DLL 131795780605127632 0x7ffacf8c0000 1462272 C:\Windows\System32\user32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795780604960157 0x7ffacfb30000 2916352 C:\Windows\System32\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795780624086344 0x7ffacfe20000 663552 C:\Windows\System32\advapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795780634212438 0x7ffad01b0000 335872 C:\Windows\System32\shlwapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека небольших программ оболочки 131795780605005539 0x7ffad0210000 364544 C:\Windows\System32\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795780604942528 0x7ffad0270000 1908736 C:\Windows\System32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 144 12892 3108 11 00000000:0031f1da 131795780695167004 0 0 1 Обязательная метка\Средний обязательный уровень WIN-0UOTFKKVN1S\User Wireshark.exe C:\Program Files\Wireshark\Wireshark.exe "C:\Program Files\Wireshark\Wireshark.exe" The Wireshark developer community, http://www.wireshark.org/ 2.6.2 Wireshark 131795780706141890 0xbd0000 90112 C:\Program Files\Wireshark\libwinpthread-1.dll 1, 0, 0, 0 MingW-W64 Project. All rights reserved. POSIX WinThreads for Windows 131795780721765742 0xbf0000 53248 C:\Program Files\Wireshark\k5sprt64.dll 1.6-kfw-3.2.2 Massachusetts Institute of Technology. Kerberos v5 support - internal support code for MIT Kerberos v5 /GSS distribution 131795780722106261 0xc00000 45056 C:\Program Files\Wireshark\comerr64.dll 1.6-kfw-3.2.2 Massachusetts Institute of Technology. COM_ERR - Common Error Handler for MIT Kerberos v5 / GSS distribution 131795780719731475 0x1c000000 1089536 C:\Program Files\Wireshark\krb5_64.dll 1.6-kfw-3.2.2 Massachusetts Institute of Technology. Kerberos v5 - MIT GSS / Kerberos v5 distribution 131795780773060331 0x5af30000 348160 C:\Program Files\Wireshark\Qt5Svg.dll 5.9.5.0 The Qt Company Ltd. C++ Application Development Framework 131795780721210805 0x5af90000 1286144 C:\Program Files\Wireshark\libxml2-2.dll 131795780696840198 0x5b0d0000 5865472 C:\Program Files\Wireshark\Qt5Core.dll 5.9.5.0 The Qt Company Ltd. C++ Application Development Framework 131795780696801039 0x5b670000 5619712 C:\Program Files\Wireshark\Qt5Widgets.dll 5.9.5.0 The Qt Company Ltd. C++ Application Development Framework 131795780721068755 0x5bcf0000 733184 C:\Program Files\Wireshark\libsmi-2.dll 131795780720701584 0x5bdb0000 204800 C:\Program Files\Wireshark\liblz4.dll 131795780720048995 0x5bdf0000 110592 C:\Program Files\Wireshark\libcares-2.dll 131795780701085625 0x5be10000 122880 C:\Program Files\Wireshark\libbcg729.dll 131795780700086118 0x5be30000 1261568 C:\Program Files\Wireshark\Qt5Network.dll 5.9.5.0 The Qt Company Ltd. C++ Application Development Framework 131795780701499544 0x61cc0000 151552 C:\Program Files\Wireshark\libintl-8.dll 0.18.1 Free Software Foundation LGPLed libintl for Windows NT/2000/XP/Vista/7 and Windows 95/98/ME 131795780704834900 0x646c0000 155648 C:\Program Files\Wireshark\libgpg-error6-0.dll 131795780703191110 0x64840000 1220608 C:\Program Files\Wireshark\libgnutls-30.dll 131795780720700188 0x64a00000 253952 C:\Program Files\Wireshark\lua52.dll 131795780702785552 0x653c0000 1089536 C:\Program Files\Wireshark\libgcrypt-20.dll 131795780706408972 0x65f00000 114688 C:\Program Files\Wireshark\libtasn1-6.dll 131795780705520711 0x66f00000 233472 C:\Program Files\Wireshark\libhogweed-4-2.dll 131795780696518462 0x685c0000 1265664 C:\Program Files\Wireshark\libglib-2.0-0.dll 2.42.0.0 The GLib developer community GLib 131795780706610973 0x68ec0000 389120 C:\Program Files\Wireshark\libp11-kit-0.dll 131795780720967901 0x69340000 815104 C:\Program Files\Wireshark\libsnappy-1.dll 131795780705423287 0x69c80000 253952 C:\Program Files\Wireshark\libnettle-6-2.dll 131795780700701891 0x6a680000 122880 C:\Program Files\Wireshark\libsbc-1.dll 131795780705248323 0x6acc0000 483328 C:\Program Files\Wireshark\libgmp-10.dll 131795780707311684 0x6b740000 73728 C:\Program Files\Wireshark\libffi-6.dll 131795780700957949 0x6d7c0000 495616 C:\Program Files\Wireshark\libspandsp-2.dll 131795780720746780 0x6dc80000 167936 C:\Program Files\Wireshark\libnghttp2-14.dll 131795780698864675 0x6dd00000 69632 C:\Program Files\Wireshark\libgmodule-2.0-0.dll 2.42.0.0 The GLib developer community GModule 131795780759720376 0x180000000 413696 C:\Windows\System32\wpcap.dll 4.1.0.2980 Riverbed Technology, Inc. wpcap.dll Dynamic Link Library - based on libpcap 1.0rel0b branch (20091008) 131795780760417804 0x190ac770000 126976 C:\Windows\System32\Packet.dll 4.1.0.2980 Riverbed Technology, Inc. packet.dll (Vista) Dynamic Link Library 131795780695991379 0x7ff7f1130000 8298496 C:\Program Files\Wireshark\Wireshark.exe 2.6.2 The Wireshark developer community, http://www.wireshark.org/ Wireshark 131795780718751145 0x7ffaa6f50000 64282624 C:\Program Files\Wireshark\libwireshark.dll 2.6.2 The Wireshark developer community, http://www.wireshark.org/ Wireshark dissector library 131795780697272337 0x7ffaaaca0000 6094848 C:\Program Files\Wireshark\Qt5Gui.dll 5.9.5.0 The Qt Company Ltd. C++ Application Development Framework 131795780896758694 0x7ffab1e90000 593920 C:\Program Files\Wireshark\plugins\2.6\epan\wimax.dll 1.2.0.0 The Wireshark developer community, http://www.wireshark.org/ wimax dissector 131795780766458881 0x7ffab1f30000 614400 C:\Windows\System32\riched20.dll 5.31.23.1231 Microsoft Corporation Rich Text Edit Control, v3.1 131795780699399720 0x7ffab2280000 1916928 C:\Program Files\Wireshark\WinSparkle.dll 0.5.7 winsparkle.org WinSparkle updater 131795780771263589 0x7ffab5b40000 2527232 C:\Windows\System32\DWrite.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Службы Microsoft DirectX Typography 131795780765326722 0x7ffab9010000 1388544 C:\Program Files\Wireshark\platforms\qwindows.dll 5.9.5.0 The Qt Company Ltd. C++ Application Development Framework 131795780896746168 0x7ffab9b10000 135168 C:\Program Files\Wireshark\plugins\2.6\epan\unistim.dll 0.0.2.0 The Wireshark developer community, http://www.wireshark.org/ unistim dissector 131795780896708383 0x7ffabaef0000 462848 C:\Program Files\Wireshark\plugins\2.6\epan\profinet.dll 0.2.4.0 The Wireshark developer community, http://www.wireshark.org/ profinet dissector 131795780773615377 0x7ffabb070000 512000 C:\Program Files\Wireshark\imageformats\qwebp.dll 5.9.5.0 The Qt Company Ltd. C++ Application Development Framework 131795780702318544 0x7ffabb0f0000 696320 C:\Windows\System32\msvcp140.dll 14.12.25810.0 built by: VCTOOLSREL Microsoft Corporation Microsoft® C Runtime Library 131795780773096445 0x7ffabb250000 393216 C:\Program Files\Wireshark\imageformats\qtiff.dll 5.9.5.0 The Qt Company Ltd. C++ Application Development Framework 131795780896696149 0x7ffabc110000 237568 C:\Program Files\Wireshark\plugins\2.6\epan\opcua.dll 1.0.0.0 The Wireshark developer community, http://www.wireshark.org/ opcua dissector 131795780696290907 0x7ffabc150000 729088 C:\Program Files\Wireshark\Qt5Multimedia.dll 5.9.5.0 The Qt Company Ltd. C++ Application Development Framework 131795780699299849 0x7ffabcbb0000 704512 C:\Program Files\Wireshark\libwiretap.dll 2.6.2 The Wireshark developer community, http://www.wireshark.org/ Wireshark capture file library 131795780702235327 0x7ffabcf30000 110592 C:\Windows\System32\mpr.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека маршрутизации для нескольких служб доступа 131795780699512168 0x7ffabd180000 548864 C:\Windows\System32\winspool.drv 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Драйвер диспетчера очереди Windows 131795780773039075 0x7ffabe940000 253952 C:\Program Files\Wireshark\imageformats\qjpeg.dll 5.9.5.0 The Qt Company Ltd. C++ Application Development Framework 131795780896684027 0x7ffabeb80000 163840 C:\Program Files\Wireshark\plugins\2.6\epan\mate.dll 1.0.1.0 The Wireshark developer community, http://www.wireshark.org/ mate dissector 131795780767100288 0x7ffabebb0000 233472 C:\Windows\System32\msls31.dll 3.10.349.0 Microsoft Corporation Microsoft Line Services library file 131795780967804060 0x7ffabf1d0000 192512 C:\Windows\System32\cryptnet.dll 10.0.14393.2035 (rs1_release_inmarket.180110-1910) Microsoft Corporation Crypto Network Related API 131795780703722010 0x7ffabf5d0000 2924544 C:\Windows\System32\wininet.dll 11.00.14393.447 (rs1_release_inmarket.161102-0100) Microsoft Corporation Расширения Интернета для Win32 131795780896660120 0x7ffabf990000 135168 C:\Program Files\Wireshark\plugins\2.6\epan\gryphon.dll 0.0.4.0 The Wireshark developer community, http://www.wireshark.org/ gryphon dissector 131795780896781202 0x7ffabff40000 90112 C:\Program Files\Wireshark\plugins\2.6\epan\wimaxmacphy.dll 0.0.1.0 The Wireshark developer community, http://www.wireshark.org/ wimaxmacphy dissector 131795780975772674 0x7ffabff60000 135168 C:\Windows\System32\ncryptsslp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft SChannel Provider 131795780967709675 0x7ffac0ad0000 86016 C:\Windows\System32\mskeyprotect.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик защиты ключей (Майкрософт) 131795780896602379 0x7ffac0b10000 180224 C:\Program Files\Wireshark\plugins\2.6\epan\ethercat.dll 0.1.0.0 The Wireshark developer community, http://www.wireshark.org/ ethercat dissector 131795780696305369 0x7ffac12f0000 585728 C:\Program Files\Wireshark\Qt5WinExtras.dll 5.9.5.0 The Qt Company Ltd. C++ Application Development Framework 131795780696268510 0x7ffac1380000 335872 C:\Program Files\Wireshark\Qt5PrintSupport.dll 5.9.5.0 The Qt Company Ltd. C++ Application Development Framework 131795780896769846 0x7ffac1640000 81920 C:\Program Files\Wireshark\plugins\2.6\epan\wimaxasncp.dll 0.0.1.0 The Wireshark developer community, http://www.wireshark.org/ wimaxasncp dissector 131795780703633136 0x7ffac1c90000 155648 C:\Program Files\Wireshark\zlib1.dll 1.2.11 zlib data compression library 131795780968289847 0x7ffac1d60000 589824 C:\Windows\System32\webio.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API протоколов передачи по Веб 131795780896672499 0x7ffac21f0000 73728 C:\Program Files\Wireshark\plugins\2.6\epan\irda.dll 0.0.6.0 The Wireshark developer community, http://www.wireshark.org/ irda dissector 131795780943468609 0x7ffac2950000 32768 C:\Program Files\Wireshark\plugins\2.6\codecs\l16mono.dll 0.1.0.0 The Wireshark developer community, http://www.wireshark.org/ l16mono dissector 131795780696778265 0x7ffac2b80000 40960 C:\Windows\System32\version.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Version Checking and File Installation Libraries 131795780698025500 0x7ffac32b0000 155648 C:\Program Files\Wireshark\libwsutil.dll 2.6.2 The Wireshark developer community, http://www.wireshark.org/ Wireshark utility library 131795780964290332 0x7ffac34e0000 1843200 C:\Windows\System32\urlmon.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширения OLE32 для Win32 131795780896734845 0x7ffac3730000 49152 C:\Program Files\Wireshark\plugins\2.6\epan\transum.dll 2.0.4.0 The Wireshark developer community, http://www.wireshark.org/ transum dissector 131795780962958391 0x7ffac3cb0000 2772992 C:\Windows\System32\iertutil.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служебная программа времени выполнения для Internet Explorer 131795780891504201 0x7ffac4000000 274432 C:\Windows\System32\policymanager.dll 10.0.14393.2035 (rs1_release_inmarket.180110-1910) Microsoft Corporation Policy Manager DLL 131795780896719593 0x7ffac4b60000 36864 C:\Program Files\Wireshark\plugins\2.6\epan\stats_tree.dll 0.0.1.0 The Wireshark developer community, http://www.wireshark.org/ stats_tree dissector 131795780893701095 0x7ffac4c50000 36864 C:\Program Files\Wireshark\plugins\2.6\wiretap\usbdump.dll 0.0.1.0 The Wireshark developer community, http://www.wireshark.org/ usbdump dissector 131795780891269455 0x7ffac5630000 339968 C:\Windows\System32\thumbcache.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Кэш эскизов Майкрософт 131795780965552062 0x7ffac6610000 40960 C:\Windows\System32\rasadhlp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Remote Access AutoDial Helper 131795780963571749 0x7ffac66a0000 86016 C:\Windows\System32\OnDemandConnRouteHelper.dll 10.0.14393.351 (rs1_release_inmarket.161014-1755) Microsoft Corporation On Demand Connctiond Route Helper 131795780963646684 0x7ffac69c0000 839680 C:\Windows\System32\winhttp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Службы HTTP Windows 131795780773109195 0x7ffac6aa0000 49152 C:\Program Files\Wireshark\imageformats\qwbmp.dll 5.9.5.0 The Qt Company Ltd. C++ Application Development Framework 131795780773083338 0x7ffac6ab0000 49152 C:\Program Files\Wireshark\imageformats\qtga.dll 5.9.5.0 The Qt Company Ltd. C++ Application Development Framework 131795780700311672 0x7ffac6c40000 2596864 C:\Windows\WinSxS\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.14393.953_none_42151e83c686086b\comctl32.dll 6.10 (rs1_release_inmarket.170303-1614) Microsoft Corporation Библиотека элементов управления взаимодействия с пользователем 131795780700270884 0x7ffac76e0000 90112 C:\Windows\System32\vcruntime140.dll 14.12.25810.0 built by: VCTOOLSREL Microsoft Corporation Microsoft® C Runtime Library 131795780773051219 0x7ffac7710000 49152 C:\Program Files\Wireshark\imageformats\qsvg.dll 5.9.5.0 The Qt Company Ltd. C++ Application Development Framework 131795780773027062 0x7ffac7c70000 53248 C:\Program Files\Wireshark\imageformats\qico.dll 5.9.5.0 The Qt Company Ltd. C++ Application Development Framework 131795780773014999 0x7ffac7cc0000 61440 C:\Program Files\Wireshark\imageformats\qicns.dll 5.9.5.0 The Qt Company Ltd. C++ Application Development Framework 131795780773002354 0x7ffac7e80000 53248 C:\Program Files\Wireshark\imageformats\qgif.dll 5.9.5.0 The Qt Company Ltd. C++ Application Development Framework 131795780968266724 0x7ffac83d0000 106496 C:\Windows\System32\dhcpcsvc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служба DHCP-клиента 131795780968255503 0x7ffac83f0000 90112 C:\Windows\System32\dhcpcsvc6.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиент DHCPv6 131795780966275544 0x7ffac8420000 434176 C:\Windows\System32\FWPUCLNT.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API пользовательского режима FWP/IPsec 131795780892525330 0x7ffac84f0000 299008 C:\Windows\System32\DataExchange.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation Data exchange 131795780963686201 0x7ffac8810000 45056 C:\Windows\System32\winnsi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Network Store Information RPC interface 131795780892534590 0x7ffac88a0000 2842624 C:\Windows\System32\d3d11.dll 10.0.14393.953 (rs1_release_inmarket.170303-1614) Microsoft Corporation Direct3D 11 Runtime 131795780698877286 0x7ffac97e0000 36864 C:\Windows\System32\wsock32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Socket 32-Bit DLL 131795780891204535 0x7ffac9f50000 1736704 C:\Windows\System32\WindowsCodecs.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Microsoft Windows Codecs Library 131795780696645603 0x7ffaca540000 53248 C:\Program Files\Wireshark\libwscodecs.dll 2.6.2 The Wireshark developer community, http://www.wireshark.org/ Wireshark codecs library 131795780700298298 0x7ffaca5e0000 155648 C:\Windows\System32\dwmapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Интерфейс API диспетчера окон рабочего стола (Майкрософт) 131795780892543743 0x7ffaca770000 1380352 C:\Windows\System32\dcomp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft DirectComposition Library 131795780766486586 0x7ffacab20000 102400 C:\Windows\System32\usp10.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Uniscribe Unicode script processor 131795780704258643 0x7ffacab40000 176128 C:\Windows\System32\winmmbase.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base Multimedia Extension API DLL 131795780702045466 0x7ffacaba0000 143360 C:\Windows\System32\winmm.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation MCI API DLL 131795780946467813 0x7ffacadf0000 499712 C:\Windows\System32\apphelp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиентская библиотека совместимости приложений 131795780696789076 0x7ffacaf00000 610304 C:\Windows\System32\uxtheme.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека тем UxTheme (Microsoft) 131795780891516231 0x7ffacb140000 593920 C:\Windows\System32\msvcp110_win.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Microsoft® STL110 C++ Runtime Library 131795780892568770 0x7ffacb1e0000 1163264 C:\Windows\System32\twinapi.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation twinapi.appcore 131795780892552823 0x7ffacb780000 651264 C:\Windows\System32\dxgi.dll 10.0.14393.953 (rs1_release_inmarket.170303-1614) Microsoft Corporation DirectX Graphics Infrastructure 131795780966945740 0x7ffacbaf0000 495616 C:\Windows\System32\schannel.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик безопасности TLS/SSL 131795780735395573 0x7ffacbbb0000 208896 C:\Windows\System32\rsaenh.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Enhanced Cryptographic Provider 131795780967734879 0x7ffacbbf0000 40960 C:\Windows\System32\dpapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Data Protection API 131795780699490686 0x7ffacbd30000 229376 C:\Windows\System32\IPHLPAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API вспомогательного приложения IP 131795780703368899 0x7ffacbd70000 659456 C:\Windows\System32\dnsapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Динамическая библиотека API DNS-клиента 131795780963669913 0x7ffacbfb0000 376832 C:\Windows\System32\mswsock.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширение поставщика службы API Microsoft Windows Sockets 2.0 131795780735383654 0x7ffacc150000 94208 C:\Windows\System32\cryptsp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Cryptographic Service Provider API 131795780725077080 0x7ffacc170000 45056 C:\Windows\System32\cryptbase.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base cryptographic API DLL 131795780735352973 0x7ffacc1f0000 241664 C:\Windows\System32\ntasn1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft ASN.1 API 131795780735341669 0x7ffacc230000 155648 C:\Windows\System32\ncrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Маршрутизатор Windows NCrypt 131795780963187802 0x7ffacc350000 180224 C:\Windows\System32\sspicli.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Security Support Provider Interface 131795780703358385 0x7ffacc620000 176128 C:\Windows\System32\bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795780696324267 0x7ffacc6e0000 61440 C:\Windows\System32\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795780696320774 0x7ffacc6f0000 311296 C:\Windows\System32\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795780696326027 0x7ffacc740000 81920 C:\Windows\System32\profapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Profile Basic API 131795780700094061 0x7ffacc760000 65536 C:\Windows\System32\msasn1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ASN.1 Runtime APIs 131795780696281753 0x7ffacc8f0000 1003520 C:\Windows\System32\ucrtbase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795780696314418 0x7ffacc9f0000 434176 C:\Windows\System32\bcryptprimitives.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Cryptographic Primitives Library 131795780696011047 0x7ffacca60000 122880 C:\Windows\System32\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795780967736295 0x7ffacca80000 348160 C:\Windows\System32\wintrust.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation Microsoft Trust Verification APIs 131795780696325096 0x7ffaccae0000 692224 C:\Windows\System32\SHCore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795780696319762 0x7ffaccb90000 7180288 C:\Windows\System32\windows.storage.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API хранения Microsoft WinRT 131795780696000095 0x7ffacd270000 2215936 C:\Windows\System32\KernelBase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795780700093105 0x7ffacd490000 1871872 C:\Windows\System32\crypt32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API32 криптографии 131795780700405929 0x7ffacd710000 638976 C:\Windows\System32\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795780696318427 0x7ffacd7b0000 270336 C:\Windows\System32\cfgmgr32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Configuration Manager DLL 131795780719380090 0x7ffacd800000 32768 C:\Windows\System32\psapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Process Status Helper 131795780696316518 0x7ffacd810000 22056960 C:\Windows\System32\shell32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Общая библиотека оболочки Windows 131795780700405056 0x7ffaced20000 782336 C:\Windows\System32\oleaut32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795780696313332 0x7ffacee50000 1183744 C:\Windows\System32\rpcrt4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795780703813608 0x7ffacef80000 32768 C:\Windows\System32\nsi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation NSI User-mode interface DLL 131795780696317482 0x7ffacef90000 647168 C:\Windows\System32\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795780891250440 0x7ffacf030000 651264 C:\Windows\System32\clbcatq.dll 2001.12.10941.16384 (rs1_release.160715-1616) Microsoft Corporation COM+ Configuration Catalog 131795780695999112 0x7ffacf0d0000 704512 C:\Windows\System32\kernel32.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795780892432004 0x7ffacf1e0000 1417216 C:\Windows\System32\msctf.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Серверная библиотека MSCTF 131795780696011842 0x7ffacf770000 212992 C:\Windows\System32\gdi32.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation GDI Client DLL 131795780696829366 0x7ffacf820000 434176 C:\Windows\System32\ws2_32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation 32-разрядная библиотека Windows Socket 2.0 131795780722304611 0x7ffacf890000 188416 C:\Windows\System32\imm32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Multi-User Windows IMM32 API Client DLL 131795780696010125 0x7ffacf8c0000 1462272 C:\Windows\System32\user32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795780696013618 0x7ffacfa30000 1024000 C:\Windows\System32\comdlg32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека общих диалоговых окон 131795780696312465 0x7ffacfb30000 2916352 C:\Windows\System32\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795780696321680 0x7ffacfe20000 663552 C:\Windows\System32\advapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795780696311589 0x7ffad0070000 1277952 C:\Windows\System32\ole32.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft OLE для Windows 131795780696323259 0x7ffad01b0000 335872 C:\Windows\System32\shlwapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека небольших программ оболочки 131795780696315318 0x7ffad0210000 364544 C:\Windows\System32\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795780695991736 0x7ffad0270000 1908736 C:\Windows\System32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 145 6448 580 4 00000000:000003e7 131795780773898509 0 0 1 Обязательная метка\Обязательный уровень системы NT AUTHORITY\СИСТЕМА svchost.exe C:\Windows\System32\svchost.exe C:\Windows\System32\svchost.exe -k WerSvcGroup Microsoft Corporation 10.0.14393.0 (rs1_release.160715-1616) Хост-процесс для служб Windows 131795780773932265 0x7ff718c20000 57344 C:\Windows\System32\svchost.exe 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Хост-процесс для служб Windows 131795780777692104 0x7ffabafc0000 700416 C:\Windows\System32\wer.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека сообщений об ошибках Windows 131795780777685690 0x7ffabdfa0000 393216 C:\Windows\System32\Faultrep.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека отчетов о сбоях в пользовательском режиме Windows 131795780777697839 0x7ffabe110000 241664 C:\Windows\System32\weretw.dll 10.0.14393.447 (rs1_release_inmarket.161102-0100) Microsoft Corporation WERETW.DLL 131795780777657500 0x7ffac1940000 180224 C:\Windows\System32\wersvc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служба регистрации ошибок Windows 131795780777719777 0x7ffac8dc0000 167936 C:\Windows\System32\dbgcore.dll 10.0.14321.1024 (debuggers(dbg).160715-1616) Microsoft Windows Core Debugging Helpers 131795780777705622 0x7ffac8df0000 1646592 C:\Windows\System32\dbghelp.dll 10.0.14321.1024 (rs1_release.160715-1616) Microsoft Windows Image Helper 131795780777679409 0x7ffacb420000 204800 C:\Windows\System32\ntmarta.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик Windows NT MARTA 131795780778138106 0x7ffacb920000 81920 C:\Windows\System32\wldp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Политика блокировки Windows 131795780781946447 0x7ffacbe40000 126976 C:\Windows\System32\userenv.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Userenv 131795780777672965 0x7ffacc150000 94208 C:\Windows\System32\cryptsp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Cryptographic Service Provider API 131795780781977480 0x7ffacc350000 180224 C:\Windows\System32\sspicli.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Security Support Provider Interface 131795780777713476 0x7ffacc620000 176128 C:\Windows\System32\bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795780777659234 0x7ffacc740000 81920 C:\Windows\System32\profapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Profile Basic API 131795780778139963 0x7ffacc760000 65536 C:\Windows\System32\msasn1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ASN.1 Runtime APIs 131795780777601321 0x7ffacc8f0000 1003520 C:\Windows\System32\ucrtbase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795780777665390 0x7ffacc9f0000 434176 C:\Windows\System32\bcryptprimitives.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Cryptographic Primitives Library 131795780778140821 0x7ffacca80000 348160 C:\Windows\System32\wintrust.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation Microsoft Trust Verification APIs 131795780777686685 0x7ffaccae0000 692224 C:\Windows\System32\SHCore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795780777591206 0x7ffacd270000 2215936 C:\Windows\System32\KernelBase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795780778139073 0x7ffacd490000 1871872 C:\Windows\System32\crypt32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API32 криптографии 131795780777699394 0x7ffacd710000 638976 C:\Windows\System32\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795780777698612 0x7ffaced20000 782336 C:\Windows\System32\oleaut32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795780777599983 0x7ffacee50000 1183744 C:\Windows\System32\rpcrt4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795780777658345 0x7ffacef90000 647168 C:\Windows\System32\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795780777590325 0x7ffacf0d0000 704512 C:\Windows\System32\kernel32.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795780777664133 0x7ffacfb30000 2916352 C:\Windows\System32\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795780777666249 0x7ffacfe20000 663552 C:\Windows\System32\advapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795780777599157 0x7ffad0210000 364544 C:\Windows\System32\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795780773932520 0x7ffad0270000 1908736 C:\Windows\System32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 146 12128 8596 71 00000000:0031f1da 131795780785349726 131795780870658388 0 1 Обязательная метка\Средний обязательный уровень WIN-0UOTFKKVN1S\User WerFault.exe C:\Windows\system32\WerFault.exe C:\Windows\system32\WerFault.exe -u -p 8596 -s 736 Microsoft Corporation 10.0.14393.0 (rs1_release.160715-1616) Отчет об ошибках Windows 131795780797694531 0x22623790000 12288 C:\Windows\System32\sfc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows File Protection 131795780789154686 0x7ff651260000 319488 C:\Windows\System32\WerFault.exe 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Отчет об ошибках Windows 131795780800678915 0x7ffaa69e0000 5648384 C:\Windows\System32\dbgeng.dll 10.0.14321.1024 (rs1_release.170706-2004) Microsoft Windows Symbolic Debugger Engine 131795780800689959 0x7ffab1e80000 675840 C:\Windows\System32\DbgModel.dll 10.0.14321.1024 (debuggers(dbg).160906-1818) Microsoft Windows Debugger Data Model 131795780826043748 0x7ffab2720000 606208 C:\Windows\System32\duser.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows DirectUser Engine 131795780797724403 0x7ffabae60000 77824 C:\Windows\System32\devrtl.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Device Management Run Time Library 131795780820120198 0x7ffabaef0000 475136 C:\Windows\System32\werui.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL сообщений об ошибках пользовательского интерфейса Windows 131795780797090228 0x7ffabafc0000 700416 C:\Windows\System32\wer.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека сообщений об ошибках Windows 131795780820971057 0x7ffabdbb0000 1736704 C:\Windows\System32\dui70.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Подсистема DirectUI Windows 131795780797130226 0x7ffabdfa0000 393216 C:\Windows\System32\Faultrep.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека отчетов о сбоях в пользовательском режиме Windows 131795780797703303 0x7ffabef80000 69632 C:\Windows\System32\sfc_os.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows File Protection 131795780797619779 0x7ffabefd0000 258048 C:\Windows\System32\aepic.dll 10.0.17060.1029 (WinBuild.160101.0800) Microsoft Corporation Application Experience Program Cache 131795780853599499 0x7ffabf1d0000 192512 C:\Windows\System32\cryptnet.dll 10.0.14393.2035 (rs1_release_inmarket.180110-1910) Microsoft Corporation Crypto Network Related API 131795780835537425 0x7ffabfbe0000 1011712 C:\Windows\System32\Windows.Security.Authentication.OnlineId.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation Windows Runtime OnlineId Authentication DLL 131795780851368314 0x7ffabff60000 135168 C:\Windows\System32\ncryptsslp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft SChannel Provider 131795780850799498 0x7ffac0ad0000 86016 C:\Windows\System32\mskeyprotect.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик защиты ключей (Майкрософт) 131795780836692566 0x7ffac0bf0000 3559424 C:\Windows\System32\actxprxy.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation ActiveX Interface Marshaling Library 131795780840687512 0x7ffac1d60000 589824 C:\Windows\System32\webio.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API протоколов передачи по Веб 131795780839235315 0x7ffac23c0000 331776 C:\Windows\System32\OneCoreCommonProxyStub.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation OneCore Common Proxy Stub 131795780803359241 0x7ffac2b80000 40960 C:\Windows\System32\version.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Version Checking and File Installation Libraries 131795780797664969 0x7ffac3cb0000 2772992 C:\Windows\System32\iertutil.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служебная программа времени выполнения для Internet Explorer 131795780827887916 0x7ffac4ea0000 36864 C:\Windows\System32\atlthunk.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation atlthunk.dll 131795780836720812 0x7ffac60e0000 221184 C:\Windows\System32\xmllite.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft XmlLite Library 131795780842923571 0x7ffac6610000 40960 C:\Windows\System32\rasadhlp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Remote Access AutoDial Helper 131795780839651561 0x7ffac66a0000 86016 C:\Windows\System32\OnDemandConnRouteHelper.dll 10.0.14393.351 (rs1_release_inmarket.161014-1755) Microsoft Corporation On Demand Connctiond Route Helper 131795780839612817 0x7ffac69c0000 839680 C:\Windows\System32\winhttp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Службы HTTP Windows 131795780803340052 0x7ffac6ba0000 49152 C:\Windows\System32\secur32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Security Support Provider Interface 131795780820960717 0x7ffac6c40000 2596864 C:\Windows\WinSxS\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.14393.953_none_42151e83c686086b\comctl32.dll 6.10 (rs1_release_inmarket.170303-1614) Microsoft Corporation Библиотека элементов управления взаимодействия с пользователем 131795780834768107 0x7ffac79c0000 57344 C:\Windows\System32\npmproxy.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Network List Manager Proxy 131795780840406821 0x7ffac83d0000 106496 C:\Windows\System32\dhcpcsvc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служба DHCP-клиента 131795780840233129 0x7ffac83f0000 90112 C:\Windows\System32\dhcpcsvc6.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиент DHCPv6 131795780843955643 0x7ffac8420000 434176 C:\Windows\System32\FWPUCLNT.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API пользовательского режима FWP/IPsec 131795780841524886 0x7ffac8810000 45056 C:\Windows\System32\winnsi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Network Store Information RPC interface 131795780797141735 0x7ffac8dc0000 167936 C:\Windows\System32\dbgcore.dll 10.0.14321.1024 (debuggers(dbg).160715-1616) Microsoft Windows Core Debugging Helpers 131795780797102141 0x7ffac8df0000 1646592 C:\Windows\System32\dbghelp.dll 10.0.14321.1024 (rs1_release.160715-1616) Microsoft Windows Image Helper 131795780834620822 0x7ffac9f10000 221184 C:\Windows\System32\netprofm.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Network List Manager 131795780826365521 0x7ffaca5e0000 155648 C:\Windows\System32\dwmapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Интерфейс API диспетчера окон рабочего стола (Майкрософт) 131795780797487817 0x7ffacaf00000 610304 C:\Windows\System32\uxtheme.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека тем UxTheme (Microsoft) 131795780821036686 0x7ffacb420000 204800 C:\Windows\System32\ntmarta.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик Windows NT MARTA 131795780846664054 0x7ffacbaf0000 495616 C:\Windows\System32\schannel.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик безопасности TLS/SSL 131795780797736070 0x7ffacbbb0000 208896 C:\Windows\System32\rsaenh.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Enhanced Cryptographic Provider 131795780836290719 0x7ffacbbf0000 40960 C:\Windows\System32\dpapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Data Protection API 131795780840155235 0x7ffacbd30000 229376 C:\Windows\System32\IPHLPAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API вспомогательного приложения IP 131795780842875465 0x7ffacbd70000 659456 C:\Windows\System32\dnsapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Динамическая библиотека API DNS-клиента 131795780841118589 0x7ffacbfb0000 376832 C:\Windows\System32\mswsock.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширение поставщика службы API Microsoft Windows Sockets 2.0 131795780797112021 0x7ffacc150000 94208 C:\Windows\System32\cryptsp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Cryptographic Service Provider API 131795780797747981 0x7ffacc170000 45056 C:\Windows\System32\cryptbase.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base cryptographic API DLL 131795780851045887 0x7ffacc1f0000 241664 C:\Windows\System32\ntasn1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft ASN.1 API 131795780851036248 0x7ffacc230000 155648 C:\Windows\System32\ncrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Маршрутизатор Windows NCrypt 131795780803349032 0x7ffacc350000 180224 C:\Windows\System32\sspicli.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Security Support Provider Interface 131795780797120809 0x7ffacc620000 176128 C:\Windows\System32\bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795780797528752 0x7ffacc6e0000 61440 C:\Windows\System32\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795780797626439 0x7ffacc6f0000 311296 C:\Windows\System32\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795780797627398 0x7ffacc740000 81920 C:\Windows\System32\profapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Profile Basic API 131795780797168080 0x7ffacc770000 1572864 C:\Windows\System32\gdi32full.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation GDI Client DLL 131795780797072094 0x7ffacc8f0000 1003520 C:\Windows\System32\ucrtbase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795780797073881 0x7ffacc9f0000 434176 C:\Windows\System32\bcryptprimitives.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Cryptographic Primitives Library 131795780797166446 0x7ffacca60000 122880 C:\Windows\System32\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795780797075566 0x7ffacca80000 348160 C:\Windows\System32\wintrust.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation Microsoft Trust Verification APIs 131795780797070496 0x7ffaccae0000 692224 C:\Windows\System32\SHCore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795780797625461 0x7ffaccb90000 7180288 C:\Windows\System32\windows.storage.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API хранения Microsoft WinRT 131795780797060912 0x7ffacd270000 2215936 C:\Windows\System32\KernelBase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795780797077134 0x7ffacd490000 1871872 C:\Windows\System32\crypt32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API32 криптографии 131795780820945554 0x7ffacd710000 638976 C:\Windows\System32\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795780797624342 0x7ffacd7b0000 270336 C:\Windows\System32\cfgmgr32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Configuration Manager DLL 131795780797623228 0x7ffacd810000 22056960 C:\Windows\System32\shell32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Общая библиотека оболочки Windows 131795780820944748 0x7ffaced20000 782336 C:\Windows\System32\oleaut32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795780797072870 0x7ffacee50000 1183744 C:\Windows\System32\rpcrt4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795780840217972 0x7ffacef80000 32768 C:\Windows\System32\nsi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation NSI User-mode interface DLL 131795780797069138 0x7ffacef90000 647168 C:\Windows\System32\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795780823242362 0x7ffacf030000 651264 C:\Windows\System32\clbcatq.dll 2001.12.10941.16384 (rs1_release.160715-1616) Microsoft Corporation COM+ Configuration Catalog 131795780797059912 0x7ffacf0d0000 704512 C:\Windows\System32\kernel32.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795780797713490 0x7ffacf340000 4362240 C:\Windows\System32\setupapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Setup API 131795780797167269 0x7ffacf770000 212992 C:\Windows\System32\gdi32.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation GDI Client DLL 131795780839618242 0x7ffacf820000 434176 C:\Windows\System32\ws2_32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation 32-разрядная библиотека Windows Socket 2.0 131795780797180908 0x7ffacf890000 188416 C:\Windows\System32\imm32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Multi-User Windows IMM32 API Client DLL 131795780797165562 0x7ffacf8c0000 1462272 C:\Windows\System32\user32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795780797071332 0x7ffacfb30000 2916352 C:\Windows\System32\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795780797079076 0x7ffacfe20000 663552 C:\Windows\System32\advapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795780797620737 0x7ffad0070000 1277952 C:\Windows\System32\ole32.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft OLE для Windows 131795780797621973 0x7ffad01b0000 335872 C:\Windows\System32\shlwapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека небольших программ оболочки 131795780797078140 0x7ffad0210000 364544 C:\Windows\System32\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795780789154946 0x7ffad0270000 1908736 C:\Windows\System32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 147 5240 10064 70 00000000:0031f1da 131795780785349889 131795780870681625 0 1 Обязательная метка\Средний обязательный уровень WIN-0UOTFKKVN1S\User WerFault.exe C:\Windows\system32\WerFault.exe C:\Windows\system32\WerFault.exe -u -p 10064 -s 760 Microsoft Corporation 10.0.14393.0 (rs1_release.160715-1616) Отчет об ошибках Windows 131795780793641029 0x224f3dc0000 12288 C:\Windows\System32\sfc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows File Protection 131795780789330514 0x7ff651260000 319488 C:\Windows\System32\WerFault.exe 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Отчет об ошибках Windows 131795780800173116 0x7ffaa69e0000 5648384 C:\Windows\System32\dbgeng.dll 10.0.14321.1024 (rs1_release.170706-2004) Microsoft Windows Symbolic Debugger Engine 131795780800722033 0x7ffab1e80000 675840 C:\Windows\System32\DbgModel.dll 10.0.14321.1024 (debuggers(dbg).160906-1818) Microsoft Windows Debugger Data Model 131795780826139640 0x7ffab2720000 606208 C:\Windows\System32\duser.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows DirectUser Engine 131795780796229719 0x7ffabae60000 77824 C:\Windows\System32\devrtl.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Device Management Run Time Library 131795780820342275 0x7ffabaef0000 475136 C:\Windows\System32\werui.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL сообщений об ошибках пользовательского интерфейса Windows 131795780789369213 0x7ffabafc0000 700416 C:\Windows\System32\wer.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека сообщений об ошибках Windows 131795780821401114 0x7ffabdbb0000 1736704 C:\Windows\System32\dui70.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Подсистема DirectUI Windows 131795780789429318 0x7ffabdfa0000 393216 C:\Windows\System32\Faultrep.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека отчетов о сбоях в пользовательском режиме Windows 131795780793649629 0x7ffabef80000 69632 C:\Windows\System32\sfc_os.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows File Protection 131795780791100819 0x7ffabefd0000 258048 C:\Windows\System32\aepic.dll 10.0.17060.1029 (WinBuild.160101.0800) Microsoft Corporation Application Experience Program Cache 131795780853824585 0x7ffabf1d0000 192512 C:\Windows\System32\cryptnet.dll 10.0.14393.2035 (rs1_release_inmarket.180110-1910) Microsoft Corporation Crypto Network Related API 131795780836214124 0x7ffabfbe0000 1011712 C:\Windows\System32\Windows.Security.Authentication.OnlineId.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation Windows Runtime OnlineId Authentication DLL 131795780851901999 0x7ffabff60000 135168 C:\Windows\System32\ncryptsslp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft SChannel Provider 131795780851224646 0x7ffac0ad0000 86016 C:\Windows\System32\mskeyprotect.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик защиты ключей (Майкрософт) 131795780836276988 0x7ffac0bf0000 3559424 C:\Windows\System32\actxprxy.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation ActiveX Interface Marshaling Library 131795780840913695 0x7ffac1d60000 589824 C:\Windows\System32\webio.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API протоколов передачи по Веб 131795780839414365 0x7ffac23c0000 331776 C:\Windows\System32\OneCoreCommonProxyStub.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation OneCore Common Proxy Stub 131795780803329574 0x7ffac2b80000 40960 C:\Windows\System32\version.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Version Checking and File Installation Libraries 131795780793200884 0x7ffac3cb0000 2772992 C:\Windows\System32\iertutil.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служебная программа времени выполнения для Internet Explorer 131795780827490732 0x7ffac4ea0000 36864 C:\Windows\System32\atlthunk.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation atlthunk.dll 131795780836982137 0x7ffac60e0000 221184 C:\Windows\System32\xmllite.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft XmlLite Library 131795780843225434 0x7ffac6610000 40960 C:\Windows\System32\rasadhlp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Remote Access AutoDial Helper 131795780840323239 0x7ffac66a0000 86016 C:\Windows\System32\OnDemandConnRouteHelper.dll 10.0.14393.351 (rs1_release_inmarket.161014-1755) Microsoft Corporation On Demand Connctiond Route Helper 131795780839723529 0x7ffac69c0000 839680 C:\Windows\System32\winhttp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Службы HTTP Windows 131795780803310446 0x7ffac6ba0000 49152 C:\Windows\System32\secur32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Security Support Provider Interface 131795780821009690 0x7ffac6c40000 2596864 C:\Windows\WinSxS\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.14393.953_none_42151e83c686086b\comctl32.dll 6.10 (rs1_release_inmarket.170303-1614) Microsoft Corporation Библиотека элементов управления взаимодействия с пользователем 131795780834882063 0x7ffac79c0000 57344 C:\Windows\System32\npmproxy.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Network List Manager Proxy 131795780840650639 0x7ffac83d0000 106496 C:\Windows\System32\dhcpcsvc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служба DHCP-клиента 131795780840413465 0x7ffac83f0000 90112 C:\Windows\System32\dhcpcsvc6.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиент DHCPv6 131795780844377849 0x7ffac8420000 434176 C:\Windows\System32\FWPUCLNT.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API пользовательского режима FWP/IPsec 131795780841650817 0x7ffac8810000 45056 C:\Windows\System32\winnsi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Network Store Information RPC interface 131795780789440206 0x7ffac8dc0000 167936 C:\Windows\System32\dbgcore.dll 10.0.14321.1024 (debuggers(dbg).160715-1616) Microsoft Windows Core Debugging Helpers 131795780789401523 0x7ffac8df0000 1646592 C:\Windows\System32\dbghelp.dll 10.0.14321.1024 (rs1_release.160715-1616) Microsoft Windows Image Helper 131795780834684833 0x7ffac9f10000 221184 C:\Windows\System32\netprofm.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Network List Manager 131795780826383059 0x7ffaca5e0000 155648 C:\Windows\System32\dwmapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Интерфейс API диспетчера окон рабочего стола (Майкрософт) 131795780789895395 0x7ffacaf00000 610304 C:\Windows\System32\uxtheme.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека тем UxTheme (Microsoft) 131795780821047369 0x7ffacb420000 204800 C:\Windows\System32\ntmarta.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик Windows NT MARTA 131795780847404046 0x7ffacbaf0000 495616 C:\Windows\System32\schannel.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик безопасности TLS/SSL 131795780796367435 0x7ffacbbb0000 208896 C:\Windows\System32\rsaenh.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Enhanced Cryptographic Provider 131795780836823553 0x7ffacbbf0000 40960 C:\Windows\System32\dpapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Data Protection API 131795780840333296 0x7ffacbd30000 229376 C:\Windows\System32\IPHLPAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API вспомогательного приложения IP 131795780842937617 0x7ffacbd70000 659456 C:\Windows\System32\dnsapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Динамическая библиотека API DNS-клиента 131795780841531425 0x7ffacbfb0000 376832 C:\Windows\System32\mswsock.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширение поставщика службы API Microsoft Windows Sockets 2.0 131795780789411475 0x7ffacc150000 94208 C:\Windows\System32\cryptsp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Cryptographic Service Provider API 131795780796382111 0x7ffacc170000 45056 C:\Windows\System32\cryptbase.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base cryptographic API DLL 131795780851252180 0x7ffacc1f0000 241664 C:\Windows\System32\ntasn1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft ASN.1 API 131795780851234116 0x7ffacc230000 155648 C:\Windows\System32\ncrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Маршрутизатор Windows NCrypt 131795780803319492 0x7ffacc350000 180224 C:\Windows\System32\sspicli.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Security Support Provider Interface 131795780789420219 0x7ffacc620000 176128 C:\Windows\System32\bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795780790265941 0x7ffacc6e0000 61440 C:\Windows\System32\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795780791608884 0x7ffacc6f0000 311296 C:\Windows\System32\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795780791609851 0x7ffacc740000 81920 C:\Windows\System32\profapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Profile Basic API 131795780789466526 0x7ffacc770000 1572864 C:\Windows\System32\gdi32full.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation GDI Client DLL 131795780789351143 0x7ffacc8f0000 1003520 C:\Windows\System32\ucrtbase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795780789352969 0x7ffacc9f0000 434176 C:\Windows\System32\bcryptprimitives.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Cryptographic Primitives Library 131795780789464872 0x7ffacca60000 122880 C:\Windows\System32\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795780789354573 0x7ffacca80000 348160 C:\Windows\System32\wintrust.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation Microsoft Trust Verification APIs 131795780789349298 0x7ffaccae0000 692224 C:\Windows\System32\SHCore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795780791607923 0x7ffaccb90000 7180288 C:\Windows\System32\windows.storage.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API хранения Microsoft WinRT 131795780789338341 0x7ffacd270000 2215936 C:\Windows\System32\KernelBase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795780789356125 0x7ffacd490000 1871872 C:\Windows\System32\crypt32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API32 криптографии 131795780821000516 0x7ffacd710000 638976 C:\Windows\System32\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795780791606798 0x7ffacd7b0000 270336 C:\Windows\System32\cfgmgr32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Configuration Manager DLL 131795780791605648 0x7ffacd810000 22056960 C:\Windows\System32\shell32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Общая библиотека оболочки Windows 131795780820999738 0x7ffaced20000 782336 C:\Windows\System32\oleaut32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795780789351977 0x7ffacee50000 1183744 C:\Windows\System32\rpcrt4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795780840338688 0x7ffacef80000 32768 C:\Windows\System32\nsi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation NSI User-mode interface DLL 131795780789347919 0x7ffacef90000 647168 C:\Windows\System32\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795780823303223 0x7ffacf030000 651264 C:\Windows\System32\clbcatq.dll 2001.12.10941.16384 (rs1_release.160715-1616) Microsoft Corporation COM+ Configuration Catalog 131795780789337377 0x7ffacf0d0000 704512 C:\Windows\System32\kernel32.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795780795208748 0x7ffacf340000 4362240 C:\Windows\System32\setupapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Setup API 131795780789465703 0x7ffacf770000 212992 C:\Windows\System32\gdi32.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation GDI Client DLL 131795780839729597 0x7ffacf820000 434176 C:\Windows\System32\ws2_32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation 32-разрядная библиотека Windows Socket 2.0 131795780789479041 0x7ffacf890000 188416 C:\Windows\System32\imm32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Multi-User Windows IMM32 API Client DLL 131795780789464008 0x7ffacf8c0000 1462272 C:\Windows\System32\user32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795780789350127 0x7ffacfb30000 2916352 C:\Windows\System32\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795780789358075 0x7ffacfe20000 663552 C:\Windows\System32\advapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795780791602914 0x7ffad0070000 1277952 C:\Windows\System32\ole32.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft OLE для Windows 131795780791604216 0x7ffad01b0000 335872 C:\Windows\System32\shlwapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека небольших программ оболочки 131795780789357131 0x7ffad0210000 364544 C:\Windows\System32\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795780789330769 0x7ffad0270000 1908736 C:\Windows\System32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 148 7304 12892 144 00000000:0031f1da 131795780945343791 131795780951257505 0 1 Обязательная метка\Средний обязательный уровень WIN-0UOTFKKVN1S\User dumpcap.exe C:\Program Files\Wireshark\dumpcap.exe "C:\Program Files\Wireshark\dumpcap.exe" -D -Z none The Wireshark developer community 2.6.2 Dumpcap 131795780948130002 0xec0000 90112 C:\Program Files\Wireshark\libwinpthread-1.dll 1, 0, 0, 0 MingW-W64 Project. All rights reserved. POSIX WinThreads for Windows 131795780948069856 0x61cc0000 151552 C:\Program Files\Wireshark\libintl-8.dll 0.18.1 Free Software Foundation LGPLed libintl for Windows NT/2000/XP/Vista/7 and Windows 95/98/ME 131795780948090461 0x646c0000 155648 C:\Program Files\Wireshark\libgpg-error6-0.dll 131795780948036169 0x64840000 1220608 C:\Program Files\Wireshark\libgnutls-30.dll 131795780948026056 0x653c0000 1089536 C:\Program Files\Wireshark\libgcrypt-20.dll 131795780948139719 0x65f00000 114688 C:\Program Files\Wireshark\libtasn1-6.dll 131795780948105979 0x66f00000 233472 C:\Program Files\Wireshark\libhogweed-4-2.dll 131795780947960028 0x685c0000 1265664 C:\Program Files\Wireshark\libglib-2.0-0.dll 2.42.0.0 The GLib developer community GLib 131795780948122838 0x68ec0000 389120 C:\Program Files\Wireshark\libp11-kit-0.dll 131795780948115634 0x69c80000 253952 C:\Program Files\Wireshark\libnettle-6-2.dll 131795780948098698 0x6acc0000 483328 C:\Program Files\Wireshark\libgmp-10.dll 131795780948176154 0x6b740000 73728 C:\Program Files\Wireshark\libffi-6.dll 131795780947969085 0x6dd00000 69632 C:\Program Files\Wireshark\libgmodule-2.0-0.dll 2.42.0.0 The GLib developer community GModule 131795780948355961 0x180000000 413696 C:\Windows\System32\wpcap.dll 4.1.0.2980 Riverbed Technology, Inc. wpcap.dll Dynamic Link Library - based on libpcap 1.0rel0b branch (20091008) 131795780948368872 0x1cbcd090000 126976 C:\Windows\System32\Packet.dll 4.1.0.2980 Riverbed Technology, Inc. packet.dll (Vista) Dynamic Link Library 131795780946481497 0x7ff79b530000 438272 C:\Program Files\Wireshark\dumpcap.exe 2.6.2 The Wireshark developer community Dumpcap 131795780948146756 0x7ffac1c90000 155648 C:\Program Files\Wireshark\zlib1.dll 1.2.11 zlib data compression library 131795780948382450 0x7ffac2b80000 40960 C:\Windows\System32\version.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Version Checking and File Installation Libraries 131795780947926084 0x7ffac32b0000 155648 C:\Program Files\Wireshark\libwsutil.dll 2.6.2 The Wireshark developer community, http://www.wireshark.org/ Wireshark utility library 131795780948008200 0x7ffac76e0000 90112 C:\Windows\System32\vcruntime140.dll 14.12.25810.0 built by: VCTOOLSREL Microsoft Corporation Microsoft® C Runtime Library 131795780948842845 0x7ffac83d0000 106496 C:\Windows\System32\dhcpcsvc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служба DHCP-клиента 131795780948829519 0x7ffac83f0000 90112 C:\Windows\System32\dhcpcsvc6.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиент DHCPv6 131795780947982517 0x7ffac97e0000 36864 C:\Windows\System32\wsock32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Socket 32-Bit DLL 131795780948165222 0x7ffacab40000 176128 C:\Windows\System32\winmmbase.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base Multimedia Extension API DLL 131795780948081260 0x7ffacaba0000 143360 C:\Windows\System32\winmm.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation MCI API DLL 131795780948296657 0x7ffacbbb0000 208896 C:\Windows\System32\rsaenh.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Enhanced Cryptographic Provider 131795780947994727 0x7ffacbd30000 229376 C:\Windows\System32\IPHLPAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API вспомогательного приложения IP 131795780948283007 0x7ffacc150000 94208 C:\Windows\System32\cryptsp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Cryptographic Service Provider API 131795780948316771 0x7ffacc170000 45056 C:\Windows\System32\cryptbase.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base cryptographic API DLL 131795780948267644 0x7ffacc1f0000 241664 C:\Windows\System32\ntasn1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft ASN.1 API 131795780948244692 0x7ffacc230000 155648 C:\Windows\System32\ncrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Маршрутизатор Windows NCrypt 131795780948256628 0x7ffacc620000 176128 C:\Windows\System32\bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795780947948822 0x7ffacc6e0000 61440 C:\Windows\System32\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795780947940826 0x7ffacc6f0000 311296 C:\Windows\System32\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795780947951118 0x7ffacc740000 81920 C:\Windows\System32\profapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Profile Basic API 131795780948038349 0x7ffacc760000 65536 C:\Windows\System32\msasn1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ASN.1 Runtime APIs 131795780947944901 0x7ffacc770000 1572864 C:\Windows\System32\gdi32full.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation GDI Client DLL 131795780947911693 0x7ffacc8f0000 1003520 C:\Windows\System32\ucrtbase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795780947939271 0x7ffacc9f0000 434176 C:\Windows\System32\bcryptprimitives.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Cryptographic Primitives Library 131795780947947522 0x7ffacca60000 122880 C:\Windows\System32\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795780947950138 0x7ffaccae0000 692224 C:\Windows\System32\SHCore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795780947936368 0x7ffaccb90000 7180288 C:\Windows\System32\windows.storage.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API хранения Microsoft WinRT 131795780946489462 0x7ffacd270000 2215936 C:\Windows\System32\KernelBase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795780948037036 0x7ffacd490000 1871872 C:\Windows\System32\crypt32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API32 криптографии 131795780947934653 0x7ffacd7b0000 270336 C:\Windows\System32\cfgmgr32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Configuration Manager DLL 131795780947929635 0x7ffacd810000 22056960 C:\Windows\System32\shell32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Общая библиотека оболочки Windows 131795780947908330 0x7ffacee50000 1183744 C:\Windows\System32\rpcrt4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795780948818886 0x7ffacef80000 32768 C:\Windows\System32\nsi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation NSI User-mode interface DLL 131795780947905975 0x7ffacef90000 647168 C:\Windows\System32\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795780946488154 0x7ffacf0d0000 704512 C:\Windows\System32\kernel32.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795780947943704 0x7ffacf770000 212992 C:\Windows\System32\gdi32.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation GDI Client DLL 131795780947927787 0x7ffacf820000 434176 C:\Windows\System32\ws2_32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation 32-разрядная библиотека Windows Socket 2.0 131795780948198006 0x7ffacf890000 188416 C:\Windows\System32\imm32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Multi-User Windows IMM32 API Client DLL 131795780947946386 0x7ffacf8c0000 1462272 C:\Windows\System32\user32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795780947937745 0x7ffacfb30000 2916352 C:\Windows\System32\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795780947904418 0x7ffacfe20000 663552 C:\Windows\System32\advapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795780947960896 0x7ffad0070000 1277952 C:\Windows\System32\ole32.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft OLE для Windows 131795780947942289 0x7ffad01b0000 335872 C:\Windows\System32\shlwapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека небольших программ оболочки 131795780947907233 0x7ffad0210000 364544 C:\Windows\System32\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795780946481757 0x7ffad0270000 1908736 C:\Windows\System32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 149 12220 7304 148 00000000:0031f1da 131795780947067298 131795780951467436 0 1 Обязательная метка\Средний обязательный уровень WIN-0UOTFKKVN1S\User Conhost.exe C:\Windows\System32\Conhost.exe \??\C:\Windows\system32\conhost.exe 0xffffffff -ForceV1 Microsoft Corporation 10.0.14393.0 (rs1_release.160715-1616) Console Window Host 131795780947068844 0x7ff768b40000 69632 C:\Windows\System32\conhost.exe 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Console Window Host 131795780947102997 0x7ffabe520000 368640 C:\Windows\System32\ConhostV2.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Хост окна консоли 131795780947700363 0x7ffac6c40000 2596864 C:\Windows\WinSxS\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.14393.953_none_42151e83c686086b\comctl32.dll 6.10 (rs1_release_inmarket.170303-1614) Microsoft Corporation Библиотека элементов управления взаимодействия с пользователем 131795780947131664 0x7ffaca340000 1593344 C:\Windows\System32\propsys.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Система страниц свойств (Майкрософт) 131795780947658758 0x7ffaca5e0000 155648 C:\Windows\System32\dwmapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Интерфейс API диспетчера окон рабочего стола (Майкрософт) 131795780947418816 0x7ffacaf00000 610304 C:\Windows\System32\uxtheme.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека тем UxTheme (Microsoft) 131795780947399225 0x7ffacc6e0000 61440 C:\Windows\System32\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795780947396574 0x7ffacc6f0000 311296 C:\Windows\System32\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795780947399960 0x7ffacc740000 81920 C:\Windows\System32\profapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Profile Basic API 131795780947115068 0x7ffacc770000 1572864 C:\Windows\System32\gdi32full.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation GDI Client DLL 131795780947111284 0x7ffacc8f0000 1003520 C:\Windows\System32\ucrtbase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795780947112905 0x7ffacc9f0000 434176 C:\Windows\System32\bcryptprimitives.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Cryptographic Primitives Library 131795780947116614 0x7ffacca60000 122880 C:\Windows\System32\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795780947133509 0x7ffaccae0000 692224 C:\Windows\System32\SHCore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795780947395676 0x7ffaccb90000 7180288 C:\Windows\System32\windows.storage.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API хранения Microsoft WinRT 131795780947075231 0x7ffacd270000 2215936 C:\Windows\System32\KernelBase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795780947118809 0x7ffacd710000 638976 C:\Windows\System32\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795780947394632 0x7ffacd7b0000 270336 C:\Windows\System32\cfgmgr32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Configuration Manager DLL 131795780947393515 0x7ffacd810000 22056960 C:\Windows\System32\shell32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Общая библиотека оболочки Windows 131795780947118138 0x7ffaced20000 782336 C:\Windows\System32\oleaut32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795780947112013 0x7ffacee50000 1183744 C:\Windows\System32\rpcrt4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795780947084537 0x7ffacef90000 647168 C:\Windows\System32\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795780947074050 0x7ffacf0d0000 704512 C:\Windows\System32\kernel32.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795780947641029 0x7ffacf1e0000 1417216 C:\Windows\System32\msctf.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Серверная библиотека MSCTF 131795780947113711 0x7ffacf770000 212992 C:\Windows\System32\gdi32.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation GDI Client DLL 131795780947117382 0x7ffacf890000 188416 C:\Windows\System32\imm32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Multi-User Windows IMM32 API Client DLL 131795780947115947 0x7ffacf8c0000 1462272 C:\Windows\System32\user32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795780947110516 0x7ffacfb30000 2916352 C:\Windows\System32\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795780947397369 0x7ffacfe20000 663552 C:\Windows\System32\advapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795780947398358 0x7ffad01b0000 335872 C:\Windows\System32\shlwapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека небольших программ оболочки 131795780947132498 0x7ffad0210000 364544 C:\Windows\System32\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795780947069085 0x7ffad0270000 1908736 C:\Windows\System32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 150 6220 12892 144 00000000:0031f1da 131795780951607574 131795780955087550 0 1 Обязательная метка\Средний обязательный уровень WIN-0UOTFKKVN1S\User dumpcap.exe C:\Program Files\Wireshark\dumpcap.exe "C:\Program Files\Wireshark\dumpcap.exe" -i \Device\NPF_{8742EB38-E176-4D94-AB83-DB4440CD90E6} -L --list-time-stamp-types -Z none The Wireshark developer community 2.6.2 Dumpcap 131795780952840337 0xd80000 90112 C:\Program Files\Wireshark\libwinpthread-1.dll 1, 0, 0, 0 MingW-W64 Project. All rights reserved. POSIX WinThreads for Windows 131795780952771331 0x61cc0000 151552 C:\Program Files\Wireshark\libintl-8.dll 0.18.1 Free Software Foundation LGPLed libintl for Windows NT/2000/XP/Vista/7 and Windows 95/98/ME 131795780952792246 0x646c0000 155648 C:\Program Files\Wireshark\libgpg-error6-0.dll 131795780952742645 0x64840000 1220608 C:\Program Files\Wireshark\libgnutls-30.dll 131795780952735203 0x653c0000 1089536 C:\Program Files\Wireshark\libgcrypt-20.dll 131795780952848333 0x65f00000 114688 C:\Program Files\Wireshark\libtasn1-6.dll 131795780952807545 0x66f00000 233472 C:\Program Files\Wireshark\libhogweed-4-2.dll 131795780952678853 0x685c0000 1265664 C:\Program Files\Wireshark\libglib-2.0-0.dll 2.42.0.0 The GLib developer community GLib 131795780952832876 0x68ec0000 389120 C:\Program Files\Wireshark\libp11-kit-0.dll 131795780952817641 0x69c80000 253952 C:\Program Files\Wireshark\libnettle-6-2.dll 131795780952800264 0x6acc0000 483328 C:\Program Files\Wireshark\libgmp-10.dll 131795780952886243 0x6b740000 73728 C:\Program Files\Wireshark\libffi-6.dll 131795780952687771 0x6dd00000 69632 C:\Program Files\Wireshark\libgmodule-2.0-0.dll 2.42.0.0 The GLib developer community GModule 131795780953068332 0x180000000 413696 C:\Windows\System32\wpcap.dll 4.1.0.2980 Riverbed Technology, Inc. wpcap.dll Dynamic Link Library - based on libpcap 1.0rel0b branch (20091008) 131795780953081659 0x1a795fc0000 126976 C:\Windows\System32\Packet.dll 4.1.0.2980 Riverbed Technology, Inc. packet.dll (Vista) Dynamic Link Library 131795780951635609 0x7ff79b530000 438272 C:\Program Files\Wireshark\dumpcap.exe 2.6.2 The Wireshark developer community Dumpcap 131795780952855661 0x7ffac1c90000 155648 C:\Program Files\Wireshark\zlib1.dll 1.2.11 zlib data compression library 131795780953095719 0x7ffac2b80000 40960 C:\Windows\System32\version.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Version Checking and File Installation Libraries 131795780952648415 0x7ffac32b0000 155648 C:\Program Files\Wireshark\libwsutil.dll 2.6.2 The Wireshark developer community, http://www.wireshark.org/ Wireshark utility library 131795780952721985 0x7ffac76e0000 90112 C:\Windows\System32\vcruntime140.dll 14.12.25810.0 built by: VCTOOLSREL Microsoft Corporation Microsoft® C Runtime Library 131795780953190431 0x7ffac83d0000 106496 C:\Windows\System32\dhcpcsvc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служба DHCP-клиента 131795780953177315 0x7ffac83f0000 90112 C:\Windows\System32\dhcpcsvc6.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиент DHCPv6 131795780952698529 0x7ffac97e0000 36864 C:\Windows\System32\wsock32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Socket 32-Bit DLL 131795780952874931 0x7ffacab40000 176128 C:\Windows\System32\winmmbase.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base Multimedia Extension API DLL 131795780952783062 0x7ffacaba0000 143360 C:\Windows\System32\winmm.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation MCI API DLL 131795780953005216 0x7ffacbbb0000 208896 C:\Windows\System32\rsaenh.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Enhanced Cryptographic Provider 131795780952709279 0x7ffacbd30000 229376 C:\Windows\System32\IPHLPAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API вспомогательного приложения IP 131795780952993691 0x7ffacc150000 94208 C:\Windows\System32\cryptsp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Cryptographic Service Provider API 131795780953026059 0x7ffacc170000 45056 C:\Windows\System32\cryptbase.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base cryptographic API DLL 131795780952977935 0x7ffacc1f0000 241664 C:\Windows\System32\ntasn1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft ASN.1 API 131795780952952911 0x7ffacc230000 155648 C:\Windows\System32\ncrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Маршрутизатор Windows NCrypt 131795780952963927 0x7ffacc620000 176128 C:\Windows\System32\bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795780952661251 0x7ffacc6e0000 61440 C:\Windows\System32\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795780952655669 0x7ffacc6f0000 311296 C:\Windows\System32\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795780952669895 0x7ffacc740000 81920 C:\Windows\System32\profapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Profile Basic API 131795780952744376 0x7ffacc760000 65536 C:\Windows\System32\msasn1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ASN.1 Runtime APIs 131795780952658597 0x7ffacc770000 1572864 C:\Windows\System32\gdi32full.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation GDI Client DLL 131795780952640128 0x7ffacc8f0000 1003520 C:\Windows\System32\ucrtbase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795780952654682 0x7ffacc9f0000 434176 C:\Windows\System32\bcryptprimitives.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Cryptographic Primitives Library 131795780952660403 0x7ffacca60000 122880 C:\Windows\System32\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795780952668491 0x7ffaccae0000 692224 C:\Windows\System32\SHCore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795780952652784 0x7ffaccb90000 7180288 C:\Windows\System32\windows.storage.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API хранения Microsoft WinRT 131795780951643827 0x7ffacd270000 2215936 C:\Windows\System32\KernelBase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795780952743445 0x7ffacd490000 1871872 C:\Windows\System32\crypt32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API32 криптографии 131795780952651715 0x7ffacd7b0000 270336 C:\Windows\System32\cfgmgr32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Configuration Manager DLL 131795780952650540 0x7ffacd810000 22056960 C:\Windows\System32\shell32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Общая библиотека оболочки Windows 131795780952638217 0x7ffacee50000 1183744 C:\Windows\System32\rpcrt4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795780953166371 0x7ffacef80000 32768 C:\Windows\System32\nsi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation NSI User-mode interface DLL 131795780952636651 0x7ffacef90000 647168 C:\Windows\System32\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795780951642857 0x7ffacf0d0000 704512 C:\Windows\System32\kernel32.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795780952657749 0x7ffacf770000 212992 C:\Windows\System32\gdi32.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation GDI Client DLL 131795780952649357 0x7ffacf820000 434176 C:\Windows\System32\ws2_32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation 32-разрядная библиотека Windows Socket 2.0 131795780952908565 0x7ffacf890000 188416 C:\Windows\System32\imm32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Multi-User Windows IMM32 API Client DLL 131795780952659581 0x7ffacf8c0000 1462272 C:\Windows\System32\user32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795780952653740 0x7ffacfb30000 2916352 C:\Windows\System32\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795780952635482 0x7ffacfe20000 663552 C:\Windows\System32\advapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795780952679642 0x7ffad0070000 1277952 C:\Windows\System32\ole32.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft OLE для Windows 131795780952656777 0x7ffad01b0000 335872 C:\Windows\System32\shlwapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека небольших программ оболочки 131795780952637483 0x7ffad0210000 364544 C:\Windows\System32\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795780951635942 0x7ffad0270000 1908736 C:\Windows\System32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 151 11628 6220 150 00000000:0031f1da 131795780951985999 131795780955157039 0 1 Обязательная метка\Средний обязательный уровень WIN-0UOTFKKVN1S\User Conhost.exe C:\Windows\System32\Conhost.exe \??\C:\Windows\system32\conhost.exe 0xffffffff -ForceV1 Microsoft Corporation 10.0.14393.0 (rs1_release.160715-1616) Console Window Host 131795780951987681 0x7ff768b40000 69632 C:\Windows\System32\conhost.exe 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Console Window Host 131795780952017415 0x7ffabe520000 368640 C:\Windows\System32\ConhostV2.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Хост окна консоли 131795780952546766 0x7ffac6c40000 2596864 C:\Windows\WinSxS\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.14393.953_none_42151e83c686086b\comctl32.dll 6.10 (rs1_release_inmarket.170303-1614) Microsoft Corporation Библиотека элементов управления взаимодействия с пользователем 131795780952049412 0x7ffaca340000 1593344 C:\Windows\System32\propsys.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Система страниц свойств (Майкрософт) 131795780952506623 0x7ffaca5e0000 155648 C:\Windows\System32\dwmapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Интерфейс API диспетчера окон рабочего стола (Майкрософт) 131795780952362867 0x7ffacaf00000 610304 C:\Windows\System32\uxtheme.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека тем UxTheme (Microsoft) 131795780952336669 0x7ffacc6e0000 61440 C:\Windows\System32\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795780952334073 0x7ffacc6f0000 311296 C:\Windows\System32\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795780952337420 0x7ffacc740000 81920 C:\Windows\System32\profapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Profile Basic API 131795780952029220 0x7ffacc770000 1572864 C:\Windows\System32\gdi32full.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation GDI Client DLL 131795780952025532 0x7ffacc8f0000 1003520 C:\Windows\System32\ucrtbase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795780952027164 0x7ffacc9f0000 434176 C:\Windows\System32\bcryptprimitives.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Cryptographic Primitives Library 131795780952030746 0x7ffacca60000 122880 C:\Windows\System32\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795780952051251 0x7ffaccae0000 692224 C:\Windows\System32\SHCore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795780952333031 0x7ffaccb90000 7180288 C:\Windows\System32\windows.storage.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API хранения Microsoft WinRT 131795780951994053 0x7ffacd270000 2215936 C:\Windows\System32\KernelBase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795780952033101 0x7ffacd710000 638976 C:\Windows\System32\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795780952331962 0x7ffacd7b0000 270336 C:\Windows\System32\cfgmgr32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Configuration Manager DLL 131795780952330768 0x7ffacd810000 22056960 C:\Windows\System32\shell32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Общая библиотека оболочки Windows 131795780952032437 0x7ffaced20000 782336 C:\Windows\System32\oleaut32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795780952026269 0x7ffacee50000 1183744 C:\Windows\System32\rpcrt4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795780952002562 0x7ffacef90000 647168 C:\Windows\System32\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795780951993200 0x7ffacf0d0000 704512 C:\Windows\System32\kernel32.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795780952485739 0x7ffacf1e0000 1417216 C:\Windows\System32\msctf.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Серверная библиотека MSCTF 131795780952027904 0x7ffacf770000 212992 C:\Windows\System32\gdi32.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation GDI Client DLL 131795780952031680 0x7ffacf890000 188416 C:\Windows\System32\imm32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Multi-User Windows IMM32 API Client DLL 131795780952030087 0x7ffacf8c0000 1462272 C:\Windows\System32\user32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795780952024765 0x7ffacfb30000 2916352 C:\Windows\System32\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795780952334885 0x7ffacfe20000 663552 C:\Windows\System32\advapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795780952335807 0x7ffad01b0000 335872 C:\Windows\System32\shlwapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека небольших программ оболочки 131795780952050246 0x7ffad0210000 364544 C:\Windows\System32\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795780951987916 0x7ffad0270000 1908736 C:\Windows\System32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 152 2432 12892 144 00000000:0031f1da 131795780956883979 0 0 1 Обязательная метка\Средний обязательный уровень WIN-0UOTFKKVN1S\User dumpcap.exe C:\Program Files\Wireshark\dumpcap.exe "C:\Program Files\Wireshark\dumpcap.exe" -S -Z 12892.dummy The Wireshark developer community 2.6.2 Dumpcap 131795780958439058 0xa80000 90112 C:\Program Files\Wireshark\libwinpthread-1.dll 1, 0, 0, 0 MingW-W64 Project. All rights reserved. POSIX WinThreads for Windows 131795780958377059 0x61cc0000 151552 C:\Program Files\Wireshark\libintl-8.dll 0.18.1 Free Software Foundation LGPLed libintl for Windows NT/2000/XP/Vista/7 and Windows 95/98/ME 131795780958399096 0x646c0000 155648 C:\Program Files\Wireshark\libgpg-error6-0.dll 131795780958347475 0x64840000 1220608 C:\Program Files\Wireshark\libgnutls-30.dll 131795780958339828 0x653c0000 1089536 C:\Program Files\Wireshark\libgcrypt-20.dll 131795780958446503 0x65f00000 114688 C:\Program Files\Wireshark\libtasn1-6.dll 131795780958414603 0x66f00000 233472 C:\Program Files\Wireshark\libhogweed-4-2.dll 131795780958277889 0x685c0000 1265664 C:\Program Files\Wireshark\libglib-2.0-0.dll 2.42.0.0 The GLib developer community GLib 131795780958431545 0x68ec0000 389120 C:\Program Files\Wireshark\libp11-kit-0.dll 131795780958424372 0x69c80000 253952 C:\Program Files\Wireshark\libnettle-6-2.dll 131795780958407305 0x6acc0000 483328 C:\Program Files\Wireshark\libgmp-10.dll 131795780958485579 0x6b740000 73728 C:\Program Files\Wireshark\libffi-6.dll 131795780958289420 0x6dd00000 69632 C:\Program Files\Wireshark\libgmodule-2.0-0.dll 2.42.0.0 The GLib developer community GModule 131795780958713554 0x180000000 413696 C:\Windows\System32\wpcap.dll 4.1.0.2980 Riverbed Technology, Inc. wpcap.dll Dynamic Link Library - based on libpcap 1.0rel0b branch (20091008) 131795780958729518 0x2a56ecc0000 126976 C:\Windows\System32\Packet.dll 4.1.0.2980 Riverbed Technology, Inc. packet.dll (Vista) Dynamic Link Library 131795780956897031 0x7ff79b530000 438272 C:\Program Files\Wireshark\dumpcap.exe 2.6.2 The Wireshark developer community Dumpcap 131795780958453942 0x7ffac1c90000 155648 C:\Program Files\Wireshark\zlib1.dll 1.2.11 zlib data compression library 131795780958743457 0x7ffac2b80000 40960 C:\Windows\System32\version.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Version Checking and File Installation Libraries 131795780958247042 0x7ffac32b0000 155648 C:\Program Files\Wireshark\libwsutil.dll 2.6.2 The Wireshark developer community, http://www.wireshark.org/ Wireshark utility library 131795780958327006 0x7ffac76e0000 90112 C:\Windows\System32\vcruntime140.dll 14.12.25810.0 built by: VCTOOLSREL Microsoft Corporation Microsoft® C Runtime Library 131795780959264331 0x7ffac83d0000 106496 C:\Windows\System32\dhcpcsvc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служба DHCP-клиента 131795780958822800 0x7ffac83f0000 90112 C:\Windows\System32\dhcpcsvc6.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиент DHCPv6 131795780958303451 0x7ffac97e0000 36864 C:\Windows\System32\wsock32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Socket 32-Bit DLL 131795780958474513 0x7ffacab40000 176128 C:\Windows\System32\winmmbase.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base Multimedia Extension API DLL 131795780958389609 0x7ffacaba0000 143360 C:\Windows\System32\winmm.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation MCI API DLL 131795780958646709 0x7ffacbbb0000 208896 C:\Windows\System32\rsaenh.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Enhanced Cryptographic Provider 131795780958314117 0x7ffacbd30000 229376 C:\Windows\System32\IPHLPAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API вспомогательного приложения IP 131795780958635383 0x7ffacc150000 94208 C:\Windows\System32\cryptsp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Cryptographic Service Provider API 131795780958674359 0x7ffacc170000 45056 C:\Windows\System32\cryptbase.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base cryptographic API DLL 131795780958618023 0x7ffacc1f0000 241664 C:\Windows\System32\ntasn1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft ASN.1 API 131795780958596049 0x7ffacc230000 155648 C:\Windows\System32\ncrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Маршрутизатор Windows NCrypt 131795780958607187 0x7ffacc620000 176128 C:\Windows\System32\bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795780958263131 0x7ffacc6e0000 61440 C:\Windows\System32\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795780958255689 0x7ffacc6f0000 311296 C:\Windows\System32\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795780958265389 0x7ffacc740000 81920 C:\Windows\System32\profapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Profile Basic API 131795780958349084 0x7ffacc760000 65536 C:\Windows\System32\msasn1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ASN.1 Runtime APIs 131795780958259529 0x7ffacc770000 1572864 C:\Windows\System32\gdi32full.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation GDI Client DLL 131795780958230643 0x7ffacc8f0000 1003520 C:\Windows\System32\ucrtbase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795780958254658 0x7ffacc9f0000 434176 C:\Windows\System32\bcryptprimitives.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Cryptographic Primitives Library 131795780958262008 0x7ffacca60000 122880 C:\Windows\System32\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795780958264244 0x7ffaccae0000 692224 C:\Windows\System32\SHCore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795780958252245 0x7ffaccb90000 7180288 C:\Windows\System32\windows.storage.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API хранения Microsoft WinRT 131795780956903750 0x7ffacd270000 2215936 C:\Windows\System32\KernelBase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795780958348162 0x7ffacd490000 1871872 C:\Windows\System32\crypt32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API32 криптографии 131795780958250835 0x7ffacd7b0000 270336 C:\Windows\System32\cfgmgr32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Configuration Manager DLL 131795780958249546 0x7ffacd810000 22056960 C:\Windows\System32\shell32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Общая библиотека оболочки Windows 131795780958228230 0x7ffacee50000 1183744 C:\Windows\System32\rpcrt4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795780958812040 0x7ffacef80000 32768 C:\Windows\System32\nsi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation NSI User-mode interface DLL 131795780958226523 0x7ffacef90000 647168 C:\Windows\System32\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795780956902794 0x7ffacf0d0000 704512 C:\Windows\System32\kernel32.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795780958258379 0x7ffacf770000 212992 C:\Windows\System32\gdi32.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation GDI Client DLL 131795780958248189 0x7ffacf820000 434176 C:\Windows\System32\ws2_32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation 32-разрядная библиотека Windows Socket 2.0 131795780958549690 0x7ffacf890000 188416 C:\Windows\System32\imm32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Multi-User Windows IMM32 API Client DLL 131795780958260931 0x7ffacf8c0000 1462272 C:\Windows\System32\user32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795780958253539 0x7ffacfb30000 2916352 C:\Windows\System32\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795780958224678 0x7ffacfe20000 663552 C:\Windows\System32\advapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795780958278826 0x7ffad0070000 1277952 C:\Windows\System32\ole32.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft OLE для Windows 131795780958257207 0x7ffad01b0000 335872 C:\Windows\System32\shlwapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека небольших программ оболочки 131795780958227462 0x7ffad0210000 364544 C:\Windows\System32\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795780956897313 0x7ffad0270000 1908736 C:\Windows\System32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 153 4460 2432 152 00000000:0031f1da 131795780957221117 0 0 1 Обязательная метка\Средний обязательный уровень WIN-0UOTFKKVN1S\User Conhost.exe C:\Windows\System32\Conhost.exe \??\C:\Windows\system32\conhost.exe 0xffffffff -ForceV1 Microsoft Corporation 10.0.14393.0 (rs1_release.160715-1616) Console Window Host 131795780957224666 0x7ff768b40000 69632 C:\Windows\System32\conhost.exe 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Console Window Host 131795780957254960 0x7ffabe520000 368640 C:\Windows\System32\ConhostV2.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Хост окна консоли 131795780958156057 0x7ffac6c40000 2596864 C:\Windows\WinSxS\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.14393.953_none_42151e83c686086b\comctl32.dll 6.10 (rs1_release_inmarket.170303-1614) Microsoft Corporation Библиотека элементов управления взаимодействия с пользователем 131795780957284286 0x7ffaca340000 1593344 C:\Windows\System32\propsys.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Система страниц свойств (Майкрософт) 131795780958109132 0x7ffaca5e0000 155648 C:\Windows\System32\dwmapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Интерфейс API диспетчера окон рабочего стола (Майкрософт) 131795780957764987 0x7ffacaf00000 610304 C:\Windows\System32\uxtheme.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека тем UxTheme (Microsoft) 131795780957662947 0x7ffacc6e0000 61440 C:\Windows\System32\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795780957660016 0x7ffacc6f0000 311296 C:\Windows\System32\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795780957663767 0x7ffacc740000 81920 C:\Windows\System32\profapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Profile Basic API 131795780957266937 0x7ffacc770000 1572864 C:\Windows\System32\gdi32full.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation GDI Client DLL 131795780957263269 0x7ffacc8f0000 1003520 C:\Windows\System32\ucrtbase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795780957264898 0x7ffacc9f0000 434176 C:\Windows\System32\bcryptprimitives.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Cryptographic Primitives Library 131795780957268718 0x7ffacca60000 122880 C:\Windows\System32\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795780957285965 0x7ffaccae0000 692224 C:\Windows\System32\SHCore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795780957659076 0x7ffaccb90000 7180288 C:\Windows\System32\windows.storage.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API хранения Microsoft WinRT 131795780957231155 0x7ffacd270000 2215936 C:\Windows\System32\KernelBase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795780957270871 0x7ffacd710000 638976 C:\Windows\System32\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795780957656755 0x7ffacd7b0000 270336 C:\Windows\System32\cfgmgr32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Configuration Manager DLL 131795780957655580 0x7ffacd810000 22056960 C:\Windows\System32\shell32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Общая библиотека оболочки Windows 131795780957270220 0x7ffaced20000 782336 C:\Windows\System32\oleaut32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795780957263997 0x7ffacee50000 1183744 C:\Windows\System32\rpcrt4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795780957239575 0x7ffacef90000 647168 C:\Windows\System32\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795780957230291 0x7ffacf0d0000 704512 C:\Windows\System32\kernel32.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795780958089236 0x7ffacf1e0000 1417216 C:\Windows\System32\msctf.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Серверная библиотека MSCTF 131795780957265615 0x7ffacf770000 212992 C:\Windows\System32\gdi32.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation GDI Client DLL 131795780957269477 0x7ffacf890000 188416 C:\Windows\System32\imm32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Multi-User Windows IMM32 API Client DLL 131795780957268031 0x7ffacf8c0000 1462272 C:\Windows\System32\user32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795780957262479 0x7ffacfb30000 2916352 C:\Windows\System32\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795780957660847 0x7ffacfe20000 663552 C:\Windows\System32\advapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795780957661778 0x7ffad01b0000 335872 C:\Windows\System32\shlwapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека небольших программ оболочки 131795780957285128 0x7ffad0210000 364544 C:\Windows\System32\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795780957224946 0x7ffad0270000 1908736 C:\Windows\System32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 1 11372 10560 2 00000000:0031f1ab 131795770632346846 0 0 1 Обязательная метка\Высокий обязательный уровень WIN-0UOTFKKVN1S\User Procmon64.exe C:\Users\User\AppData\Local\Temp\Procmon64.exe "C:\Users\User\AppData\Local\Temp\Procmon64.exe" /originalpath "C:\Users\User\Downloads\ProcessMonitor\Procmon.exe" Sysinternals - www.sysinternals.com 3.50 Process Monitor 131795770645297135 0x7ff7ed960000 1224704 C:\Users\User\AppData\Local\Temp\Procmon64.exe 3.50 Sysinternals - www.sysinternals.com Process Monitor 131795770645297135 0x7ffac2b80000 40960 C:\Windows\SYSTEM32\VERSION.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Version Checking and File Installation Libraries 131795770645297135 0x7ffac3270000 40960 C:\Windows\SYSTEM32\FLTLIB.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека фильтров 131795770645297135 0x7ffac5630000 339968 C:\Windows\System32\thumbcache.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Кэш эскизов Майкрософт 131795770645297135 0x7ffac6c40000 2596864 C:\Windows\WinSxS\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.14393.953_none_42151e83c686086b\COMCTL32.dll 6.10 (rs1_release_inmarket.170303-1614) Microsoft Corporation Библиотека элементов управления взаимодействия с пользователем 131795770645297135 0x7ffac84f0000 299008 C:\Windows\system32\dataexchange.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation Data exchange 131795770645297135 0x7ffac88a0000 2842624 C:\Windows\system32\d3d11.dll 10.0.14393.953 (rs1_release_inmarket.170303-1614) Microsoft Corporation Direct3D 11 Runtime 131795770645297135 0x7ffac8df0000 1646592 C:\Windows\SYSTEM32\dbghelp.dll 10.0.14321.1024 (rs1_release.160715-1616) Microsoft Windows Image Helper 131795770645297135 0x7ffac9f50000 1736704 C:\Windows\SYSTEM32\WindowsCodecs.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Microsoft Windows Codecs Library 131795770645297135 0x7ffaca340000 1593344 C:\Windows\SYSTEM32\PROPSYS.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Система страниц свойств (Майкрософт) 131795770645297135 0x7ffaca5e0000 155648 C:\Windows\SYSTEM32\dwmapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Интерфейс API диспетчера окон рабочего стола (Майкрософт) 131795770645297135 0x7ffaca770000 1380352 C:\Windows\system32\dcomp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft DirectComposition Library 131795770645297135 0x7ffacadf0000 499712 C:\Windows\system32\apphelp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиентская библиотека совместимости приложений 131795770645297135 0x7ffacaf00000 610304 C:\Windows\SYSTEM32\uxtheme.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека тем UxTheme (Microsoft) 131795770645297135 0x7ffacb1e0000 1163264 C:\Windows\system32\twinapi.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation twinapi.appcore 131795770645297135 0x7ffacb780000 651264 C:\Windows\system32\dxgi.dll 10.0.14393.953 (rs1_release_inmarket.170303-1614) Microsoft Corporation DirectX Graphics Infrastructure 131795770645297135 0x7ffacc620000 176128 C:\Windows\system32\bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795770645297135 0x7ffacc6e0000 61440 C:\Windows\System32\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795770645297135 0x7ffacc6f0000 311296 C:\Windows\System32\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795770645297135 0x7ffacc740000 81920 C:\Windows\System32\profapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Profile Basic API 131795770645297135 0x7ffacc8f0000 1003520 C:\Windows\System32\ucrtbase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645297135 0x7ffacc9f0000 434176 C:\Windows\System32\bcryptPrimitives.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Cryptographic Primitives Library 131795770645297135 0x7ffacca60000 122880 C:\Windows\System32\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795770645297135 0x7ffaccae0000 692224 C:\Windows\System32\shcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795770645297135 0x7ffaccb90000 7180288 C:\Windows\System32\windows.storage.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API хранения Microsoft WinRT 131795770645297135 0x7ffacd270000 2215936 C:\Windows\System32\KERNELBASE.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645297135 0x7ffacd710000 638976 C:\Windows\System32\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645297135 0x7ffacd7b0000 270336 C:\Windows\System32\cfgmgr32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Configuration Manager DLL 131795770645297135 0x7ffacd810000 22056960 C:\Windows\System32\SHELL32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Общая библиотека оболочки Windows 131795770645297135 0x7ffaced20000 782336 C:\Windows\System32\OLEAUT32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795770645297135 0x7ffacee50000 1183744 C:\Windows\System32\RPCRT4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795770645297135 0x7ffacef90000 647168 C:\Windows\System32\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795770645297135 0x7ffacf030000 651264 C:\Windows\System32\clbcatq.dll 2001.12.10941.16384 (rs1_release.160715-1616) Microsoft Corporation COM+ Configuration Catalog 131795770645297135 0x7ffacf0d0000 704512 C:\Windows\System32\KERNEL32.DLL 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645297135 0x7ffacf1e0000 1417216 C:\Windows\System32\MSCTF.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Серверная библиотека MSCTF 131795770645297135 0x7ffacf770000 212992 C:\Windows\System32\GDI32.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation GDI Client DLL 131795770645297135 0x7ffacf820000 434176 C:\Windows\System32\WS2_32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation 32-разрядная библиотека Windows Socket 2.0 131795770645297135 0x7ffacf890000 188416 C:\Windows\System32\IMM32.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Multi-User Windows IMM32 API Client DLL 131795770645297135 0x7ffacf8c0000 1462272 C:\Windows\System32\USER32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795770645297135 0x7ffacfa30000 1024000 C:\Windows\System32\COMDLG32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека общих диалоговых окон 131795770645297135 0x7ffacfb30000 2916352 C:\Windows\System32\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795770645297135 0x7ffacfe20000 663552 C:\Windows\System32\advapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795770645297135 0x7ffad0070000 1277952 C:\Windows\System32\ole32.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft OLE для Windows 131795770645297135 0x7ffad01b0000 335872 C:\Windows\System32\SHLWAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека небольших программ оболочки 131795770645297135 0x7ffad0210000 364544 C:\Windows\System32\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795770645297135 0x7ffad0270000 1908736 C:\Windows\SYSTEM32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 2 10560 3108 11 00000000:0031f1ab 131795770594566098 0 0 0 Обязательная метка\Высокий обязательный уровень WIN-0UOTFKKVN1S\User Procmon.exe C:\Users\User\Downloads\ProcessMonitor\Procmon.exe "C:\Users\User\Downloads\ProcessMonitor\Procmon.exe" Sysinternals - www.sysinternals.com 3.50 Process Monitor 131795770645662037 0x1000000 2191360 C:\Users\User\Downloads\ProcessMonitor\Procmon.exe 3.50 Sysinternals - www.sysinternals.com Process Monitor 131795770645662037 0x5c020000 335872 C:\Windows\System32\wow64.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation Win32 Emulation on NT64 131795770645662037 0x5c080000 487424 C:\Windows\System32\wow64win.dll 10.0.14393.1884 (rs1_release.171101-1233) Microsoft Corporation Wow64 Console and Win32 API Logging 131795770645662037 0x5c100000 40960 C:\Windows\System32\wow64cpu.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation AMD64 Wow64 CPU 131795770645662037 0x60750000 1556480 C:\Program Files (x86)\360\Total Security\safemon\safemon.dll 8, 4, 0, 1420 Qihu 360 Software Co., Ltd. 360 Internet Security Internet Protection 131795770645662037 0x62530000 65536 C:\Windows\SysWOW64\DEVRTL.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Device Management Run Time Library 131795770645662037 0x627d0000 249856 C:\Windows\SysWOW64\edputil.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служебная программа EDP 131795770645662037 0x67690000 61440 C:\Windows\SysWOW64\sfc_os.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows File Protection 131795770645662037 0x676b0000 32768 C:\Windows\SysWOW64\FLTLIB.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека фильтров 131795770645662037 0x6dd70000 528384 C:\Windows\SysWOW64\RICHED20.dll 5.31.23.1231 Microsoft Corporation Rich Text Edit Control, v3.1 131795770645662037 0x6e710000 335872 C:\Windows\SysWOW64\Bcp47Langs.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation BCP47 Language Classes 131795770645662037 0x70a20000 94208 C:\Windows\SysWOW64\USP10.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Uniscribe Unicode script processor 131795770645662037 0x70ca0000 45056 C:\Windows\SysWOW64\NETUTILS.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API Helpers DLL 131795770645662037 0x70cb0000 65536 C:\Windows\SysWOW64\WKSCLI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Workstation Service Client DLL 131795770645662037 0x70cd0000 49152 C:\Windows\SysWOW64\pcacli.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Program Compatibility Assistant Client Module 131795770645662037 0x70ec0000 200704 C:\Windows\SysWOW64\msls31.dll 3.10.349.0 Microsoft Corporation Microsoft Line Services library file 131795770645662037 0x71140000 77824 C:\Windows\SysWOW64\NETAPI32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API DLL 131795770645662037 0x72520000 24576 C:\Windows\SysWOW64\Riched32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Wrapper Dll for Richedit 1.0 131795770645662037 0x725e0000 2273280 C:\Windows\SysWOW64\iertutil.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служебная программа времени выполнения для Internet Explorer 131795770645662037 0x728e0000 1372160 C:\Windows\SysWOW64\PROPSYS.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Система страниц свойств (Майкрософт) 131795770645662037 0x72b90000 126976 C:\Windows\SysWOW64\dwmapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Интерфейс API диспетчера окон рабочего стола (Майкрософт) 131795770645662037 0x72cc0000 1658880 C:\Windows\SysWOW64\urlmon.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширения OLE32 для Win32 131795770645662037 0x74110000 479232 C:\Windows\SysWOW64\uxtheme.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека тем UxTheme (Microsoft) 131795770645662037 0x74190000 110592 C:\Windows\SysWOW64\bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795770645662037 0x744d0000 2138112 C:\Windows\WinSxS\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.14393.953_none_89c2555adb023171\COMCTL32.dll 6.10 (rs1_release_inmarket.170303-1614) Microsoft Corporation Библиотека элементов управления взаимодействия с пользователем 131795770645662037 0x746e0000 32768 C:\Windows\SysWOW64\VERSION.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Version Checking and File Installation Libraries 131795770645662037 0x746f0000 106496 C:\Windows\SysWOW64\USERENV.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Userenv 131795770645662037 0x74710000 90112 C:\Windows\SysWOW64\MPR.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека маршрутизации для нескольких служб доступа 131795770645662037 0x74730000 598016 C:\Windows\SysWOW64\apphelp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиентская библиотека совместимости приложений 131795770645662037 0x747d0000 40960 C:\Windows\SysWOW64\CRYPTBASE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base cryptographic API DLL 131795770645662037 0x747e0000 126976 C:\Windows\SysWOW64\SspiCli.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Security Support Provider Interface 131795770645662037 0x74800000 151552 C:\Windows\SysWOW64\IMM32.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Multi-User Windows IMM32 API Client DLL 131795770645662037 0x74910000 2170880 C:\Windows\SysWOW64\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795770645662037 0x74b30000 53248 C:\Windows\SysWOW64\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795770645662037 0x74b60000 790528 C:\Windows\SysWOW64\RPCRT4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795770645662037 0x74c30000 1417216 C:\Windows\SysWOW64\gdi32full.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation GDI Client DLL 131795770645662037 0x74d90000 24576 C:\Windows\SysWOW64\PSAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Process Status Helper 131795770645662037 0x74da0000 778240 C:\Windows\SysWOW64\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795770645662037 0x74e60000 557056 C:\Windows\SysWOW64\shcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795770645662037 0x74ef0000 540672 C:\Windows\SysWOW64\clbcatq.dll 2001.12.10941.16384 (rs1_release.160715-1616) Microsoft Corporation COM+ Configuration Catalog 131795770645662037 0x74fd0000 405504 C:\Windows\SysWOW64\WS2_32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation 32-разрядная библиотека Windows Socket 2.0 131795770645662037 0x75040000 282624 C:\Windows\SysWOW64\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795770645662037 0x75090000 1265664 C:\Windows\SysWOW64\MSCTF.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Серверная библиотека MSCTF 131795770645662037 0x751e0000 1708032 C:\Windows\SysWOW64\KERNELBASE.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645662037 0x75390000 266240 C:\Windows\SysWOW64\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795770645662037 0x75560000 487424 C:\Windows\SysWOW64\advapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795770645662037 0x756c0000 5693440 C:\Windows\SysWOW64\windows.storage.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API хранения Microsoft WinRT 131795770645662037 0x75c90000 286720 C:\Windows\SysWOW64\SHLWAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека небольших программ оболочки 131795770645662037 0x75ce0000 20811776 C:\Windows\SysWOW64\SHELL32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Общая библиотека оболочки Windows 131795770645662037 0x770c0000 4239360 C:\Windows\SysWOW64\SETUPAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Setup API 131795770645662037 0x774d0000 86016 C:\Windows\SysWOW64\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795770645662037 0x774f0000 61440 C:\Windows\SysWOW64\profapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Profile Basic API 131795770645662037 0x77560000 1437696 C:\Windows\SysWOW64\USER32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795770645662037 0x776c0000 368640 C:\Windows\SysWOW64\bcryptPrimitives.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation Windows Cryptographic Primitives Library 131795770645662037 0x77780000 503808 C:\Windows\SysWOW64\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645662037 0x77800000 606208 C:\Windows\SysWOW64\OLEAUT32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795770645662037 0x77ac0000 966656 C:\Windows\SysWOW64\ole32.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft OLE для Windows 131795770645662037 0x77bb0000 176128 C:\Windows\SysWOW64\GDI32.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation GDI Client DLL 131795770645662037 0x77be0000 937984 C:\Windows\SysWOW64\COMDLG32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека общих диалоговых окон 131795770645662037 0x77cd0000 221184 C:\Windows\SysWOW64\cfgmgr32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Configuration Manager DLL 131795770645662037 0x77d20000 1585152 C:\Windows\SysWOW64\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 131795770645662037 0x7ffad0270000 1908736 C:\Windows\SYSTEM32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 3 4048 580 4 00000000:000003e7 131765778109600457 0 0 1 Обязательная метка\Обязательный уровень системы NT AUTHORITY\СИСТЕМА SearchIndexer.exe C:\Windows\system32\SearchIndexer.exe C:\Windows\system32\SearchIndexer.exe /Embedding Microsoft Corporation 7.0.14393.0 (rs1_release.160715-1616) Индексатор службы Microsoft Windows Search 131795770645302950 0x7ff63db40000 929792 C:\Windows\system32\SearchIndexer.exe 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Индексатор службы Microsoft Windows Search 131795770645302950 0x7ffab1fd0000 2277376 C:\Windows\System32\msxml3.dll 8.110.14393.1532 Microsoft Corporation MSXML 3.0 131795770645302950 0x7ffab4b90000 655360 C:\Windows\System32\StructuredQuery.dll 7.0.14393.2068 (rs1_release.180209-1727) Microsoft Corporation Structured Query 131795770645302950 0x7ffab7780000 2576384 C:\Windows\system32\MSSRCH.DLL 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Встроенный поиск (Майкрософт) 131795770645302950 0x7ffab7a00000 3424256 C:\Windows\system32\TQUERY.DLL 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Запросы Microsoft Tripoli 131795770645302950 0x7ffabd990000 720896 C:\Windows\system32\ElsLad.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ELS Language Detection 131795770645302950 0x7ffabe4d0000 286720 C:\Windows\System32\MSWB7.dll 10.0.14393.1737 (rs1_release_inmarket.170914-1249) Microsoft Corporation MSWB7 DLL 131795770645302950 0x7ffabf010000 98304 C:\Windows\SYSTEM32\elscore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL ядра платформы Els 131795770645302950 0x7ffac0bf0000 3559424 C:\Windows\System32\ActXPrxy.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation ActiveX Interface Marshaling Library 131795770645302950 0x7ffac2960000 143360 C:\Windows\system32\mssprxy.dll 7.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation Microsoft Search Proxy 131795770645302950 0x7ffac34c0000 81920 C:\Windows\system32\vss_ps.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation Microsoft® Volume Shadow Copy Service proxy/stub 131795770645302950 0x7ffac3840000 3088384 C:\Windows\system32\ESENT.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширяемая подсистема хранения данных ESE для Microsoft(R) Windows(R) 131795770645302950 0x7ffac4000000 274432 C:\Windows\SYSTEM32\policymanager.dll 10.0.14393.2035 (rs1_release_inmarket.180110-1910) Microsoft Corporation Policy Manager DLL 131795770645302950 0x7ffac4e70000 102400 C:\Windows\system32\samcli.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Security Accounts Manager Client DLL 131795770645302950 0x7ffac6410000 98304 C:\Windows\system32\VssTrace.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека трассировки службы теневого копирования тома Microsoft® 131795770645302950 0x7ffac6430000 1581056 C:\Windows\SYSTEM32\vssapi.dll 10.0.14393.953 (rs1_release_inmarket.170303-1614) Microsoft Corporation Microsoft® Volume Shadow Copy Requestor/Writer Services API DLL 131795770645302950 0x7ffac7e40000 28672 C:\Windows\system32\Msidle.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Idle Monitor 131795770645302950 0x7ffac9bb0000 479232 C:\Windows\System32\ES.DLL 2001.12.10941.16384 (rs1_release.160715-1616) Microsoft Corporation COM+ 131795770645302950 0x7ffaca340000 1593344 C:\Windows\system32\propsys.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Система страниц свойств (Майкрософт) 131795770645302950 0x7ffaca4e0000 77824 C:\Windows\SYSTEM32\wtsapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Remote Desktop Session Host Server SDK APIs 131795770645302950 0x7ffaca570000 421888 C:\Windows\system32\Bcp47Langs.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation BCP47 Language Classes 131795770645302950 0x7ffaca610000 143360 C:\Windows\system32\SAMLIB.dll 10.0.14393.82 (rs1_release.160805-1735) Microsoft Corporation SAM Library DLL 131795770645302950 0x7ffacb140000 593920 C:\Windows\system32\msvcp110_win.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Microsoft® STL110 C++ Runtime Library 131795770645302950 0x7ffacb3f0000 163840 C:\Windows\system32\DEVOBJ.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Device Information Set DLL 131795770645302950 0x7ffacb420000 204800 C:\Windows\SYSTEM32\ntmarta.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик Windows NT MARTA 131795770645302950 0x7ffacbe20000 53248 C:\Windows\system32\netutils.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API Helpers DLL 131795770645302950 0x7ffacbe40000 126976 C:\Windows\system32\USERENV.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Userenv 131795770645302950 0x7ffacc170000 45056 C:\Windows\system32\CRYPTBASE.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base cryptographic API DLL 131795770645302950 0x7ffacc350000 180224 C:\Windows\system32\sspicli.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Security Support Provider Interface 131795770645302950 0x7ffacc520000 622592 C:\Windows\SYSTEM32\sxs.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Fusion 2.5 131795770645302950 0x7ffacc5c0000 352256 C:\Windows\system32\WINSTA.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Winstation Library 131795770645302950 0x7ffacc620000 176128 C:\Windows\System32\bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795770645302950 0x7ffacc6e0000 61440 C:\Windows\System32\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795770645302950 0x7ffacc6f0000 311296 C:\Windows\System32\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795770645302950 0x7ffacc740000 81920 C:\Windows\System32\profapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Profile Basic API 131795770645302950 0x7ffacc8f0000 1003520 C:\Windows\System32\ucrtbase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645302950 0x7ffacc9f0000 434176 C:\Windows\System32\bcryptPrimitives.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Cryptographic Primitives Library 131795770645302950 0x7ffacca60000 122880 C:\Windows\System32\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795770645302950 0x7ffaccae0000 692224 C:\Windows\System32\shcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795770645302950 0x7ffaccb90000 7180288 C:\Windows\System32\Windows.Storage.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API хранения Microsoft WinRT 131795770645302950 0x7ffacd270000 2215936 C:\Windows\System32\KERNELBASE.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645302950 0x7ffacd710000 638976 C:\Windows\System32\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645302950 0x7ffacd7b0000 270336 C:\Windows\System32\cfgmgr32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Configuration Manager DLL 131795770645302950 0x7ffaced20000 782336 C:\Windows\System32\OLEAUT32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795770645302950 0x7ffacee50000 1183744 C:\Windows\System32\RPCRT4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795770645302950 0x7ffacef90000 647168 C:\Windows\System32\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795770645302950 0x7ffacf030000 651264 C:\Windows\System32\clbcatq.dll 2001.12.10941.16384 (rs1_release.160715-1616) Microsoft Corporation COM+ Configuration Catalog 131795770645302950 0x7ffacf0d0000 704512 C:\Windows\System32\KERNEL32.DLL 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645302950 0x7ffacf770000 212992 C:\Windows\System32\GDI32.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation GDI Client DLL 131795770645302950 0x7ffacf820000 434176 C:\Windows\System32\WS2_32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation 32-разрядная библиотека Windows Socket 2.0 131795770645302950 0x7ffacf8c0000 1462272 C:\Windows\System32\USER32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795770645302950 0x7ffacfb30000 2916352 C:\Windows\System32\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795770645302950 0x7ffacfe20000 663552 C:\Windows\System32\advapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795770645302950 0x7ffad0070000 1277952 C:\Windows\System32\ole32.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft OLE для Windows 131795770645302950 0x7ffad01b0000 335872 C:\Windows\System32\shlwapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека небольших программ оболочки 131795770645302950 0x7ffad0210000 364544 C:\Windows\System32\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795770645302950 0x7ffad0270000 1908736 C:\Windows\SYSTEM32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 4 580 484 17 00000000:000003e7 131765776275984299 0 0 1 Обязательная метка\Обязательный уровень системы NT AUTHORITY\СИСТЕМА services.exe C:\Windows\system32\services.exe C:\Windows\system32\services.exe Microsoft Corporation 10.0.14393.0 (rs1_release.160715-1616) Приложение служб и контроллеров 6 664 580 4 00000000:000003e7 131765776282506625 0 0 1 Обязательная метка\Обязательный уровень системы NT AUTHORITY\СИСТЕМА svchost.exe C:\Windows\system32\svchost.exe C:\Windows\system32\svchost.exe -k DcomLaunch Microsoft Corporation 10.0.14393.0 (rs1_release.160715-1616) Хост-процесс для служб Windows 131795770645375819 0x7ff718c20000 57344 C:\Windows\system32\svchost.exe 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Хост-процесс для служб Windows 131795770645375819 0x7ffabae40000 110592 C:\Windows\SYSTEM32\capauthz.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API авторизации возможностей 131795770645375819 0x7ffabc510000 90112 C:\Windows\system32\execmodelproxy.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ExecModelProxy 131795770645375819 0x7ffabc570000 94208 C:\Windows\SYSTEM32\licensemanagerapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation "LicenseManagerApi.DYNLINK" 131795770645375819 0x7ffabc6a0000 61440 C:\Windows\system32\SebBackgroundManagerPolicy.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation <d> SEB Background Manager Policy DLL 131795770645375819 0x7ffabc7e0000 73728 C:\Windows\system32\SmartCardBackgroundPolicy.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SmartCardBackgroundPolicy 131795770645375819 0x7ffabc8c0000 61440 C:\Windows\system32\CbtBackgroundManagerPolicy.dll 10.0.14393.479 (rs1_release.161110-2025) Microsoft Corporation <d> CBT Background Manager Policy DLL 131795770645375819 0x7ffabc8d0000 176128 C:\Windows\System32\ACPBackgroundManagerPolicy.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation <d> ACP Background Manager Policy DLL 131795770645375819 0x7ffabc900000 73728 C:\Windows\System32\BackgroundMediaPolicy.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation <d> Background Media Policy DLL 131795770645375819 0x7ffabc920000 270336 C:\Windows\SYSTEM32\execmodelclient.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation ExecModelClient 131795770645375819 0x7ffac0bf0000 3559424 C:\Windows\System32\ActXPrxy.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation ActiveX Interface Marshaling Library 131795770645375819 0x7ffac20d0000 110592 C:\Windows\system32\RmClient.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Resource Manager Client 131795770645375819 0x7ffac23c0000 331776 C:\Windows\System32\OneCoreCommonProxyStub.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation OneCore Common Proxy Stub 131795770645375819 0x7ffac42a0000 659456 C:\Windows\System32\StateRepository.Core.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation StateRepository Core 131795770645375819 0x7ffac4450000 86016 C:\Windows\SYSTEM32\usermgrcli.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation UserMgr API DLL 131795770645375819 0x7ffac46d0000 4161536 C:\Windows\System32\Windows.StateRepository.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Сервер Windows StateRepository API Server 131795770645375819 0x7ffac7720000 1601536 C:\Windows\System32\OneCoreUAPCommonProxyStub.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation OneCoreUAP Common Proxy Stub 131795770645375819 0x7ffaca250000 49152 C:\Windows\SYSTEM32\bi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Background Broker Infrastructure Client Library 131795770645375819 0x7ffaca4e0000 77824 C:\Windows\SYSTEM32\wtsapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Remote Desktop Session Host Server SDK APIs 131795770645375819 0x7ffaca640000 770048 c:\windows\system32\CoreMessaging.dll 10.0.14393.0 Microsoft Corporation Microsoft CoreMessaging Dll 131795770645375819 0x7ffaca740000 135168 c:\windows\system32\DAB.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL брокера активности компьютера 131795770645375819 0x7ffacabd0000 69632 C:\Windows\System32\OnDemandBrokerClient.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation OnDemandBrokerClient 131795770645375819 0x7ffacad70000 278528 c:\windows\system32\BrokerLib.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Broker Base Library 131795770645375819 0x7ffacadf0000 499712 C:\Windows\system32\apphelp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиентская библиотека совместимости приложений 131795770645375819 0x7ffacae70000 409600 c:\windows\system32\systemeventsbrokerserver.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Брокер системных событий 131795770645375819 0x7ffacafc0000 229376 C:\Windows\SYSTEM32\resourcepolicyserver.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Resource Policy RM Service Extension 131795770645375819 0x7ffacb000000 53248 c:\windows\system32\SYSNTFY.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Windows Notifications Dynamic Link Library 131795770645375819 0x7ffacb010000 348160 C:\Windows\SYSTEM32\psmserviceexthost.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Resource Manager PSM Service Extension 131795770645375819 0x7ffacb070000 69632 C:\Windows\SYSTEM32\embeddedmodesvcapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Embedded Mode Service Client DLL 131795770645375819 0x7ffacb140000 593920 c:\windows\system32\msvcp110_win.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Microsoft® STL110 C++ Runtime Library 131795770645375819 0x7ffacb1e0000 1163264 C:\Windows\SYSTEM32\twinapi.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation twinapi.appcore 131795770645375819 0x7ffacb300000 364544 c:\windows\system32\VEEventDispatcher.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Visual Element Event dispatcher 131795770645375819 0x7ffacb390000 225280 c:\windows\system32\psmsrv.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Process State Manager (PSM) Service 131795770645375819 0x7ffacb3d0000 110592 c:\windows\system32\ResourcePolicyClient.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Resource Policy Client 131795770645375819 0x7ffacb3f0000 163840 c:\windows\system32\DEVOBJ.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Device Information Set DLL 131795770645375819 0x7ffacb420000 204800 C:\Windows\SYSTEM32\ntmarta.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик Windows NT MARTA 131795770645375819 0x7ffacb4f0000 794624 c:\windows\system32\bisrv.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служба инфраструктуры фоновых задач 131795770645375819 0x7ffacb5c0000 913408 c:\windows\system32\rpcss.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Distributed COM Services 131795770645375819 0x7ffacb6e0000 49152 C:\Windows\SYSTEM32\HID.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека пользователя HID 131795770645375819 0x7ffacb6f0000 143360 C:\Windows\SYSTEM32\gpapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиентские функции API групповой политики 131795770645375819 0x7ffacb720000 344064 c:\windows\system32\mintdh.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Вспомогательная библиотека трассировки событий 131795770645375819 0x7ffacb780000 651264 c:\windows\system32\dxgi.dll 10.0.14393.953 (rs1_release_inmarket.170303-1614) Microsoft Corporation DirectX Graphics Infrastructure 131795770645375819 0x7ffacb820000 712704 C:\Windows\SYSTEM32\tdh.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Вспомогательная библиотека трассировки событий 131795770645375819 0x7ffacb8d0000 114688 C:\Windows\SYSTEM32\umpoext.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширения службы пользовательского режима питания 131795770645375819 0x7ffacb8f0000 147456 c:\windows\system32\umpo.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служба пользовательского режима питания 131795770645375819 0x7ffacb920000 81920 C:\Windows\SYSTEM32\WLDP.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Политика блокировки Windows 131795770645375819 0x7ffacb940000 131072 c:\windows\system32\umpnpmgr.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Пользовательский режим службы самонастройки (Plug-and-Play) 131795770645375819 0x7ffacbbb0000 208896 C:\Windows\system32\rsaenh.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Enhanced Cryptographic Provider 131795770645375819 0x7ffacbbf0000 40960 C:\Windows\SYSTEM32\DPAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Data Protection API 131795770645375819 0x7ffacbe40000 126976 C:\Windows\System32\Userenv.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Userenv 131795770645375819 0x7ffacc150000 94208 C:\Windows\SYSTEM32\CRYPTSP.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Cryptographic Service Provider API 131795770645375819 0x7ffacc170000 45056 C:\Windows\System32\CRYPTBASE.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base cryptographic API DLL 131795770645375819 0x7ffacc350000 180224 c:\windows\system32\SspiCli.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Security Support Provider Interface 131795770645375819 0x7ffacc500000 102400 c:\windows\system32\EventAggregation.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Event Aggregation User Mode Library 131795770645375819 0x7ffacc5c0000 352256 C:\Windows\SYSTEM32\WINSTA.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Winstation Library 131795770645375819 0x7ffacc620000 176128 c:\windows\system32\bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795770645375819 0x7ffacc6e0000 61440 C:\Windows\System32\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795770645375819 0x7ffacc6f0000 311296 C:\Windows\System32\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795770645375819 0x7ffacc740000 81920 C:\Windows\System32\profapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Profile Basic API 131795770645375819 0x7ffacc760000 65536 C:\Windows\System32\MSASN1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ASN.1 Runtime APIs 131795770645375819 0x7ffacc8f0000 1003520 C:\Windows\System32\ucrtbase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645375819 0x7ffacc9f0000 434176 C:\Windows\System32\bcryptPrimitives.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Cryptographic Primitives Library 131795770645375819 0x7ffacca60000 122880 C:\Windows\System32\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795770645375819 0x7ffacca80000 348160 C:\Windows\System32\WINTRUST.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation Microsoft Trust Verification APIs 131795770645375819 0x7ffaccae0000 692224 C:\Windows\System32\shcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795770645375819 0x7ffaccb90000 7180288 C:\Windows\System32\windows.storage.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API хранения Microsoft WinRT 131795770645375819 0x7ffacd270000 2215936 C:\Windows\System32\KERNELBASE.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645375819 0x7ffacd490000 1871872 C:\Windows\System32\CRYPT32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API32 криптографии 131795770645375819 0x7ffacd710000 638976 C:\Windows\System32\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645375819 0x7ffacd7b0000 270336 C:\Windows\System32\cfgmgr32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Configuration Manager DLL 131795770645375819 0x7ffaced20000 782336 C:\Windows\System32\OLEAUT32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795770645375819 0x7ffacede0000 450560 C:\Windows\System32\coml2.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft COM for Windows 131795770645375819 0x7ffacee50000 1183744 C:\Windows\System32\RPCRT4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795770645375819 0x7ffacef90000 647168 C:\Windows\System32\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795770645375819 0x7ffacf030000 651264 C:\Windows\System32\clbcatq.dll 2001.12.10941.16384 (rs1_release.160715-1616) Microsoft Corporation COM+ Configuration Catalog 131795770645375819 0x7ffacf0d0000 704512 C:\Windows\System32\KERNEL32.DLL 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645375819 0x7ffacf770000 212992 C:\Windows\System32\gdi32.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation GDI Client DLL 131795770645375819 0x7ffacf8c0000 1462272 C:\Windows\System32\USER32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795770645375819 0x7ffacfb30000 2916352 C:\Windows\System32\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795770645375819 0x7ffacfe20000 663552 C:\Windows\System32\advapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795770645375819 0x7ffad0070000 1277952 C:\Windows\System32\ole32.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft OLE для Windows 131795770645375819 0x7ffad01b0000 335872 C:\Windows\System32\shlwapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека небольших программ оболочки 131795770645375819 0x7ffad0210000 364544 C:\Windows\System32\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795770645375819 0x7ffad0270000 1908736 C:\Windows\SYSTEM32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 7 884 580 4 00000000:000003e5 131765776292813936 0 0 1 Обязательная метка\Обязательный уровень системы NT AUTHORITY\LOCAL SERVICE svchost.exe C:\Windows\System32\svchost.exe C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted Microsoft Corporation 10.0.14393.0 (rs1_release.160715-1616) Хост-процесс для служб Windows 131795770645326170 0x7ff718c20000 57344 C:\Windows\System32\svchost.exe 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Хост-процесс для служб Windows 131795770645326170 0x7ffab9230000 143360 C:\Windows\SYSTEM32\bluetoothapis.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Bluetooth Usermode Api host 131795770645326170 0x7ffab9580000 118784 C:\Windows\system32\BthRadioMedia.dll 10.0.14393.351 (rs1_release_inmarket.161014-1755) Microsoft Corporation Bluetooth Radio Media Provider 131795770645326170 0x7ffab95a0000 77824 C:\Windows\system32\WlanRadioManager.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Wlan Radio Manager 131795770645326170 0x7ffaba920000 155648 c:\windows\system32\rmapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Radio Manager API 131795770645326170 0x7ffabae80000 69632 C:\Windows\system32\NfcRadioMedia.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation NFC Radio Media Provider 131795770645326170 0x7ffabb8a0000 81920 C:\Windows\system32\XboxGipRadioManager.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Xbox GIP Radio Manager 131795770645326170 0x7ffabc0e0000 81920 C:\Windows\system32\WwanRadioManager.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Wwan Radio Manager 131795770645326170 0x7ffabc510000 90112 C:\Windows\system32\execmodelproxy.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ExecModelProxy 131795770645326170 0x7ffabe850000 155648 C:\Windows\System32\IDStore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Identity Store 131795770645326170 0x7ffac05f0000 94208 C:\Windows\SYSTEM32\wwapi.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation WWAN API 131795770645326170 0x7ffac0bf0000 3559424 C:\Windows\System32\ActXPrxy.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation ActiveX Interface Marshaling Library 131795770645326170 0x7ffac1fd0000 999424 C:\Windows\system32\wbem\fastprox.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation WMI Custom Marshaller 131795770645326170 0x7ffac21d0000 81920 C:\Windows\system32\wbem\wbemsvc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation WMI 131795770645326170 0x7ffac23c0000 331776 C:\Windows\System32\OneCoreCommonProxyStub.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation OneCore Common Proxy Stub 131795770645326170 0x7ffac41a0000 77824 C:\Windows\System32\fdproxy.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation Function Discovery Proxy Dll 131795770645326170 0x7ffac4220000 520192 C:\Windows\SYSTEM32\wbemcomn.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation WMI 131795770645326170 0x7ffac4450000 86016 C:\Windows\SYSTEM32\usermgrcli.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation UserMgr API DLL 131795770645326170 0x7ffac4470000 65536 C:\Windows\system32\wbem\wbemprox.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation WMI 131795770645326170 0x7ffac4df0000 462848 c:\windows\system32\provsvc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Домашняя группа Windows 131795770645326170 0x7ffac60e0000 221184 C:\Windows\System32\XmlLite.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft XmlLite Library 131795770645326170 0x7ffac6710000 172032 C:\Windows\System32\FunDisc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL обнаружения функции 131795770645326170 0x7ffac69c0000 839680 c:\windows\system32\WINHTTP.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Службы HTTP Windows 131795770645326170 0x7ffac78c0000 163840 C:\Windows\System32\shacct.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Shell Accounts Classes 131795770645326170 0x7ffac79c0000 57344 C:\Windows\System32\npmproxy.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Network List Manager Proxy 131795770645326170 0x7ffac7aa0000 401408 C:\Windows\system32\wlanapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows WLAN AutoConfig Client Side API DLL 131795770645326170 0x7ffac7f80000 208896 c:\windows\system32\wscsvc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служба центра обеспечения безопасности Windows 131795770645326170 0x7ffac83d0000 106496 C:\Windows\SYSTEM32\dhcpcsvc.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служба DHCP-клиента 131795770645326170 0x7ffac83f0000 90112 C:\Windows\SYSTEM32\dhcpcsvc6.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиент DHCPv6 131795770645326170 0x7ffac8490000 294912 C:\Windows\System32\dhcpcore6.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиент DHCPv6 131795770645326170 0x7ffac8810000 45056 C:\Windows\SYSTEM32\WINNSI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Network Store Information RPC interface 131795770645326170 0x7ffac8c90000 385024 c:\windows\system32\dhcpcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служба DHCP-клиента 131795770645326170 0x7ffac8df0000 1646592 c:\windows\system32\dbghelp.dll 10.0.14321.1024 (rs1_release.160715-1616) Microsoft Windows Image Helper 131795770645326170 0x7ffac9c30000 1732608 c:\windows\system32\wevtsvc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служба протоколирования событий 131795770645326170 0x7ffaca250000 49152 C:\Windows\SYSTEM32\bi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Background Broker Infrastructure Client Library 131795770645326170 0x7ffaca2a0000 192512 c:\windows\system32\timebrokerserver.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Брокер событий времени 131795770645326170 0x7ffaca330000 36864 c:\windows\system32\nrpsrv.DLL 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Name Resolution Proxy (NRP) RPC interface 131795770645326170 0x7ffaca340000 1593344 C:\Windows\system32\propsys.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Система страниц свойств (Майкрософт) 131795770645326170 0x7ffaca4d0000 53248 c:\windows\system32\lmhsvc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL служб транспорта TCPIP NetBios 131795770645326170 0x7ffaca4e0000 77824 C:\Windows\SYSTEM32\wtsapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Remote Desktop Session Host Server SDK APIs 131795770645326170 0x7ffaca610000 143360 C:\Windows\System32\SAMLIB.dll 10.0.14393.82 (rs1_release.160805-1735) Microsoft Corporation SAM Library DLL 131795770645326170 0x7ffacad70000 278528 c:\windows\system32\BrokerLib.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Broker Base Library 131795770645326170 0x7ffacb1e0000 1163264 C:\Windows\System32\twinapi.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation twinapi.appcore 131795770645326170 0x7ffacb360000 176128 C:\Windows\SYSTEM32\fwbase.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Firewall Base DLL 131795770645326170 0x7ffacb3f0000 163840 c:\windows\system32\DEVOBJ.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Device Information Set DLL 131795770645326170 0x7ffacb420000 204800 C:\Windows\SYSTEM32\ntmarta.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик Windows NT MARTA 131795770645326170 0x7ffacb460000 548864 C:\Windows\SYSTEM32\firewallapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API брандмауэра Windows 131795770645326170 0x7ffacb6e0000 49152 c:\windows\system32\HID.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека пользователя HID 131795770645326170 0x7ffacb6f0000 143360 C:\Windows\SYSTEM32\gpapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиентские функции API групповой политики 131795770645326170 0x7ffacb920000 81920 C:\Windows\SYSTEM32\WLDP.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Политика блокировки Windows 131795770645326170 0x7ffacbbb0000 208896 C:\Windows\system32\rsaenh.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Enhanced Cryptographic Provider 131795770645326170 0x7ffacbd30000 229376 C:\Windows\SYSTEM32\IPHLPAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API вспомогательного приложения IP 131795770645326170 0x7ffacbd70000 659456 C:\Windows\SYSTEM32\DNSAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Динамическая библиотека API DNS-клиента 131795770645326170 0x7ffacbe20000 53248 c:\windows\system32\netutils.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API Helpers DLL 131795770645326170 0x7ffacbe40000 126976 c:\windows\system32\USERENV.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Userenv 131795770645326170 0x7ffacbfb0000 376832 C:\Windows\system32\mswsock.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширение поставщика службы API Microsoft Windows Sockets 2.0 131795770645326170 0x7ffacc150000 94208 C:\Windows\SYSTEM32\CRYPTSP.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Cryptographic Service Provider API 131795770645326170 0x7ffacc170000 45056 C:\Windows\SYSTEM32\CRYPTBASE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base cryptographic API DLL 131795770645326170 0x7ffacc350000 180224 C:\Windows\System32\sspicli.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Security Support Provider Interface 131795770645326170 0x7ffacc5c0000 352256 C:\Windows\SYSTEM32\WINSTA.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Winstation Library 131795770645326170 0x7ffacc620000 176128 c:\windows\system32\bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795770645326170 0x7ffacc6e0000 61440 C:\Windows\System32\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795770645326170 0x7ffacc6f0000 311296 C:\Windows\System32\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795770645326170 0x7ffacc740000 81920 C:\Windows\System32\profapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Profile Basic API 131795770645326170 0x7ffacc760000 65536 C:\Windows\System32\MSASN1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ASN.1 Runtime APIs 131795770645326170 0x7ffacc8f0000 1003520 C:\Windows\System32\ucrtbase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645326170 0x7ffacc9f0000 434176 C:\Windows\System32\bcryptPrimitives.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Cryptographic Primitives Library 131795770645326170 0x7ffacca60000 122880 C:\Windows\System32\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795770645326170 0x7ffacca80000 348160 C:\Windows\System32\WINTRUST.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation Microsoft Trust Verification APIs 131795770645326170 0x7ffaccae0000 692224 C:\Windows\System32\shcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795770645326170 0x7ffacd270000 2215936 C:\Windows\System32\KERNELBASE.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645326170 0x7ffacd490000 1871872 C:\Windows\System32\CRYPT32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API32 криптографии 131795770645326170 0x7ffacd710000 638976 C:\Windows\System32\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645326170 0x7ffacd7b0000 270336 C:\Windows\System32\cfgmgr32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Configuration Manager DLL 131795770645326170 0x7ffaced20000 782336 C:\Windows\System32\OLEAUT32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795770645326170 0x7ffacede0000 450560 C:\Windows\System32\coml2.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft COM for Windows 131795770645326170 0x7ffacee50000 1183744 C:\Windows\System32\RPCRT4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795770645326170 0x7ffacef80000 32768 C:\Windows\System32\NSI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation NSI User-mode interface DLL 131795770645326170 0x7ffacef90000 647168 C:\Windows\System32\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795770645326170 0x7ffacf030000 651264 C:\Windows\System32\clbcatq.dll 2001.12.10941.16384 (rs1_release.160715-1616) Microsoft Corporation COM+ Configuration Catalog 131795770645326170 0x7ffacf0d0000 704512 C:\Windows\System32\KERNEL32.DLL 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645326170 0x7ffacf770000 212992 C:\Windows\System32\GDI32.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation GDI Client DLL 131795770645326170 0x7ffacf820000 434176 C:\Windows\System32\WS2_32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation 32-разрядная библиотека Windows Socket 2.0 131795770645326170 0x7ffacf8c0000 1462272 C:\Windows\System32\user32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795770645326170 0x7ffacfb30000 2916352 C:\Windows\System32\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795770645326170 0x7ffacfe00000 114688 C:\Windows\System32\imagehlp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT Image Helper 131795770645326170 0x7ffacfe20000 663552 C:\Windows\System32\ADVAPI32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795770645326170 0x7ffad0070000 1277952 C:\Windows\System32\ole32.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft OLE для Windows 131795770645326170 0x7ffad0210000 364544 C:\Windows\System32\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795770645326170 0x7ffad0270000 1908736 C:\Windows\SYSTEM32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 8 0 0 8 00000000:00000000 131765775874898587 0 4294967295 1 Idle Idle 131795770645349496 0x7ff7ed960000 1224704 C:\Users\User\AppData\Local\Temp\Procmon64.exe 3.50 Sysinternals - www.sysinternals.com Process Monitor 131795770645349496 0x7ffac1fd0000 999424 C:\Windows\system32\wbem\fastprox.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation WMI Custom Marshaller 131795770645349496 0x7ffac21d0000 81920 C:\Windows\system32\wbem\wbemsvc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation WMI 131795770645349496 0x7ffac2b80000 40960 C:\Windows\SYSTEM32\VERSION.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Version Checking and File Installation Libraries 131795770645349496 0x7ffac3270000 40960 C:\Windows\SYSTEM32\FLTLIB.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека фильтров 131795770645349496 0x7ffac4220000 520192 C:\Windows\SYSTEM32\wbemcomn.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation WMI 131795770645349496 0x7ffac4470000 65536 C:\Windows\system32\wbem\wbemprox.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation WMI 131795770645349496 0x7ffac5630000 339968 C:\Windows\System32\thumbcache.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Кэш эскизов Майкрософт 131795770645349496 0x7ffac6c40000 2596864 C:\Windows\WinSxS\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.14393.953_none_42151e83c686086b\COMCTL32.dll 6.10 (rs1_release_inmarket.170303-1614) Microsoft Corporation Библиотека элементов управления взаимодействия с пользователем 131795770645349496 0x7ffac84f0000 299008 C:\Windows\system32\dataexchange.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation Data exchange 131795770645349496 0x7ffac88a0000 2842624 C:\Windows\system32\d3d11.dll 10.0.14393.953 (rs1_release_inmarket.170303-1614) Microsoft Corporation Direct3D 11 Runtime 131795770645349496 0x7ffac8df0000 1646592 C:\Windows\SYSTEM32\dbghelp.dll 10.0.14321.1024 (rs1_release.160715-1616) Microsoft Windows Image Helper 131795770645349496 0x7ffac9f50000 1736704 C:\Windows\SYSTEM32\WindowsCodecs.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Microsoft Windows Codecs Library 131795770645349496 0x7ffaca340000 1593344 C:\Windows\SYSTEM32\PROPSYS.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Система страниц свойств (Майкрософт) 131795770645349496 0x7ffaca5e0000 155648 C:\Windows\SYSTEM32\dwmapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Интерфейс API диспетчера окон рабочего стола (Майкрософт) 131795770645349496 0x7ffaca770000 1380352 C:\Windows\system32\dcomp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft DirectComposition Library 131795770645349496 0x7ffacadf0000 499712 C:\Windows\system32\apphelp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиентская библиотека совместимости приложений 131795770645349496 0x7ffacaf00000 610304 C:\Windows\SYSTEM32\uxtheme.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека тем UxTheme (Microsoft) 131795770645349496 0x7ffacb1e0000 1163264 C:\Windows\system32\twinapi.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation twinapi.appcore 131795770645349496 0x7ffacb780000 651264 C:\Windows\system32\dxgi.dll 10.0.14393.953 (rs1_release_inmarket.170303-1614) Microsoft Corporation DirectX Graphics Infrastructure 131795770645349496 0x7ffacc620000 176128 C:\Windows\system32\bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795770645349496 0x7ffacc6e0000 61440 C:\Windows\System32\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795770645349496 0x7ffacc6f0000 311296 C:\Windows\System32\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795770645349496 0x7ffacc740000 81920 C:\Windows\System32\profapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Profile Basic API 131795770645349496 0x7ffacc8f0000 1003520 C:\Windows\System32\ucrtbase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645349496 0x7ffacc9f0000 434176 C:\Windows\System32\bcryptPrimitives.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Cryptographic Primitives Library 131795770645349496 0x7ffacca60000 122880 C:\Windows\System32\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795770645349496 0x7ffaccae0000 692224 C:\Windows\System32\shcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795770645349496 0x7ffaccb90000 7180288 C:\Windows\System32\windows.storage.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API хранения Microsoft WinRT 131795770645349496 0x7ffacd270000 2215936 C:\Windows\System32\KERNELBASE.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645349496 0x7ffacd710000 638976 C:\Windows\System32\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645349496 0x7ffacd7b0000 270336 C:\Windows\System32\cfgmgr32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Configuration Manager DLL 131795770645349496 0x7ffacd810000 22056960 C:\Windows\System32\SHELL32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Общая библиотека оболочки Windows 131795770645349496 0x7ffaced20000 782336 C:\Windows\System32\OLEAUT32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795770645349496 0x7ffacee50000 1183744 C:\Windows\System32\RPCRT4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795770645349496 0x7ffacef90000 647168 C:\Windows\System32\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795770645349496 0x7ffacf030000 651264 C:\Windows\System32\clbcatq.dll 2001.12.10941.16384 (rs1_release.160715-1616) Microsoft Corporation COM+ Configuration Catalog 131795770645349496 0x7ffacf0d0000 704512 C:\Windows\System32\KERNEL32.DLL 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645349496 0x7ffacf1e0000 1417216 C:\Windows\System32\MSCTF.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Серверная библиотека MSCTF 131795770645349496 0x7ffacf770000 212992 C:\Windows\System32\GDI32.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation GDI Client DLL 131795770645349496 0x7ffacf820000 434176 C:\Windows\System32\WS2_32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation 32-разрядная библиотека Windows Socket 2.0 131795770645349496 0x7ffacf890000 188416 C:\Windows\System32\IMM32.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Multi-User Windows IMM32 API Client DLL 131795770645349496 0x7ffacf8c0000 1462272 C:\Windows\System32\USER32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795770645349496 0x7ffacfa30000 1024000 C:\Windows\System32\COMDLG32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека общих диалоговых окон 131795770645349496 0x7ffacfb30000 2916352 C:\Windows\System32\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795770645349496 0x7ffacfe20000 663552 C:\Windows\System32\advapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795770645349496 0x7ffad0070000 1277952 C:\Windows\System32\ole32.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft OLE для Windows 131795770645349496 0x7ffad01b0000 335872 C:\Windows\System32\SHLWAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека небольших программ оболочки 131795770645349496 0x7ffad0210000 364544 C:\Windows\System32\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795770645349496 0x7ffad0270000 1908736 C:\Windows\SYSTEM32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 9 4 0 8 00000000:000003e7 131765775907178738 0 0 1 Обязательная метка\Обязательный уровень системы NT AUTHORITY\СИСТЕМА System System 131795770645349720 0xffffc709b6e00000 3698688 C:\Windows\System32\win32kfull.sys 10.0.14393.2189 (rs1_release.180329-1711) Microsoft Corporation Full/Desktop Win32k Kernel Driver 131795770645349720 0xffffc709b7190000 1576960 C:\Windows\System32\win32kbase.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Базовый драйвер ядра Win32k 131795770645349720 0xffffc709b7320000 40960 C:\Windows\System32\TSDDD.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Framebuffer Display Driver 131795770645349720 0xffffc709b7330000 258048 C:\Windows\System32\cdd.dll 10.0.14393.2189 (rs1_release.180329-1711) Microsoft Corporation Canonical Display Driver 131795770645349720 0xffffc709b74a0000 241664 C:\Windows\System32\win32k.sys 10.0.14393.594 (rs1_release_inmarket.161213-1754) Microsoft Corporation Full/Desktop Multi-User Win32 Driver 131795770645349720 0xfffff80278934000 45056 C:\Windows\system32\kd.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Local Kernel Debugger 131795770645349720 0xfffff80279678000 8527872 C:\Windows\system32\ntoskrnl.exe 10.0.14393.2189 (rs1_release.180329-1711) Microsoft Corporation NT Kernel & System 131795770645349720 0xfffff80d92e00000 163840 C:\Windows\System32\drivers\ksecdd.sys 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Kernel Security Support Provider Interface 131795770645349720 0xfffff80d92ee0000 53248 C:\Windows\System32\drivers\cmimcext.sys 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation Kernel Configuration Manager Initial Configuration Extension Host Export Driver 131795770645349720 0xfffff80d92ef0000 49152 C:\Windows\System32\drivers\ntosext.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation NTOS extension host driver 131795770645349720 0xfffff80d92fa0000 647168 C:\Windows\System32\drivers\cng.sys 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Kernel Cryptography, Next Generation 131795770645349720 0xfffff80d93040000 868352 C:\Windows\system32\drivers\Wdf01000.sys 1.19.14393.0 (rs1_release.160715-1616) Microsoft Corporation Среда выполнения платформы драйвера режима ядра 131795770645349720 0xfffff80d93120000 77824 C:\Windows\system32\drivers\WDFLDR.SYS 1.19.14393.0 (rs1_release.160715-1616) Microsoft Corporation Kernel Mode Driver Framework Loader 131795770645349720 0xfffff80d93140000 143360 C:\Windows\System32\Drivers\acpiex.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ACPIEx Driver 131795770645349720 0xfffff80d93170000 57344 C:\Windows\System32\Drivers\WppRecorder.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation WPP Trace Recorder 131795770645349720 0xfffff80d93180000 733184 C:\Windows\System32\drivers\ACPI.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ACPI драйвер для NT 131795770645349720 0xfffff80d93240000 49152 C:\Windows\System32\drivers\WMILIB.SYS 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation WMILIB WMI support library Dll 131795770645349720 0xfffff80d93260000 69632 C:\Windows\System32\drivers\intelpep.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Intel Power Engine Plugin 131795770645349720 0xfffff80d93280000 126976 C:\Windows\system32\drivers\WindowsTrustedRT.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Trusted Runtime Interface Driver 131795770645349720 0xfffff80d932a0000 45056 C:\Windows\System32\drivers\WindowsTrustedRTProxy.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Trusted Runtime Service Proxy Driver 131795770645349720 0xfffff80d932b0000 73728 C:\Windows\System32\drivers\pcw.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Performance Counters for Windows Driver 131795770645349720 0xfffff80d932d0000 45056 C:\Windows\System32\drivers\msisadrv.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ISA Driver 131795770645349720 0xfffff80d932e0000 45056 C:\Windows\System32\drivers\isapnp.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Драйвер шины PNP ISA 131795770645349720 0xfffff80d932f0000 356352 C:\Windows\System32\drivers\pci.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation NT Plug and Play PCI-перечислитель 131795770645349720 0xfffff80d93350000 73728 C:\Windows\System32\drivers\vdrvroot.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Virtual Drive Root Enumerator 131795770645349720 0xfffff80d93370000 135168 C:\Windows\system32\drivers\pdc.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Power Dependency Coordinator Driver 131795770645349720 0xfffff80d933a0000 102400 C:\Windows\system32\drivers\CEA.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Event Aggregation Kernel Mode Library 131795770645349720 0xfffff80d933c0000 147456 C:\Windows\System32\drivers\partmgr.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Partition driver 131795770645349720 0xfffff80d933f0000 163840 C:\Windows\System32\drivers\nvraid.sys 10.6.0.23 (PART_L3.131021-1012) NVIDIA Corporation NVIDIA® nForce(TM) RAID Driver 131795770645349720 0xfffff80d93420000 401408 C:\Windows\System32\drivers\CLASSPNP.SYS 10.0.14393.953 (rs1_release_inmarket.170303-1614) Microsoft Corporation SCSI Class System Dll 131795770645349720 0xfffff80d93490000 139264 C:\Windows\System32\drivers\vmbus.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Дочерний драйвер шины виртуальной машины Microsoft Hyper-V 131795770645349720 0xfffff80d934c0000 1212416 C:\Windows\System32\drivers\NDIS.SYS 10.0.14393.953 (rs1_release_inmarket.170303-1614) Microsoft Corporation NDIS (Network Driver Interface Specification) 131795770645349720 0xfffff80d935f0000 495616 C:\Windows\System32\drivers\NETIO.SYS 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Network I/O Subsystem 131795770645349720 0xfffff80d93670000 135168 C:\Windows\System32\drivers\hvsocket.sys 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Microsoft Hyper-V Socket Provider 131795770645349720 0xfffff80d936a0000 98304 C:\Windows\System32\drivers\vmbkmcl.sys 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Hyper-V VMBus KMCL 131795770645349720 0xfffff80d936c0000 57344 C:\Windows\System32\drivers\winhv.sys 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Windows Hypervisor Interface Driver 131795770645349720 0xfffff80d936d0000 40960 C:\Windows\System32\drivers\pciide.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Generic PCI IDE Bus Driver 131795770645349720 0xfffff80d936e0000 69632 C:\Windows\System32\drivers\PCIIDEX.SYS 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation PCI IDE Bus Driver Extension 131795770645349720 0xfffff80d93700000 593920 C:\Windows\System32\drivers\spaceport.sys 10.0.14393.1914 (rs1_release_inmarket.171117-1700) Microsoft Corporation Storage Spaces Driver 131795770645349720 0xfffff80d937a0000 40960 C:\Windows\System32\drivers\intelide.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Intel PCI IDE Driver 131795770645349720 0xfffff80d937b0000 98304 C:\Windows\System32\drivers\volmgr.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Драйвер диспетчера томов 131795770645349720 0xfffff80d937d0000 385024 C:\Windows\System32\drivers\volmgrx.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Драйвер расширения диспетчера томов 131795770645349720 0xfffff80d93830000 122880 C:\Windows\System32\drivers\mountmgr.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Диспетчер точек подключения 131795770645349720 0xfffff80d93850000 172032 C:\Windows\System32\drivers\nvstor.sys 10.6.0.23 (PART_L3.131021-1012) NVIDIA Corporation NVIDIA® nForce(TM) Sata Performance Driver 131795770645349720 0xfffff80d93880000 532480 C:\Windows\System32\drivers\storport.sys 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft Storage Port Driver 131795770645349720 0xfffff80d93910000 49152 C:\Windows\System32\drivers\atapi.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ATAPI IDE Miniport Driver 131795770645349720 0xfffff80d93920000 217088 C:\Windows\System32\drivers\ataport.SYS 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ATAPI Driver Extension 131795770645349720 0xfffff80d93960000 147456 C:\Windows\System32\drivers\storahci.sys 10.0.14393.2068 (rs1_release.180209-1727) Microsoft Corporation MS AHCI Storport Miniport Driver 131795770645349720 0xfffff80d93990000 102400 C:\Windows\System32\drivers\stornvme.sys 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation Microsoft NVM Express Storport Miniport Driver 131795770645349720 0xfffff80d939b0000 114688 C:\Windows\System32\drivers\EhStorClass.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Enhanced Storage Class driver for IEEE 1667 devices 131795770645349720 0xfffff80d939d0000 102400 C:\Windows\System32\drivers\fileinfo.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation FileInfo Filter Driver 131795770645349720 0xfffff80d939f0000 229376 C:\Windows\System32\Drivers\Wof.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Фильтр оверлея Windows 131795770645349720 0xfffff80d93a80000 2297856 C:\Windows\System32\Drivers\NTFS.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Драйвер файловой системы NT 131795770645349720 0xfffff80d93cc0000 57344 C:\Windows\System32\drivers\storvsc.sys 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Storage VSC Driver 131795770645349720 0xfffff80d93cd0000 53248 C:\Windows\System32\Drivers\Fs_Rec.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation File System Recognizer Driver 131795770645349720 0xfffff80d93d10000 483328 C:\Windows\System32\drivers\USBPORT.SYS 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Драйвер порта USB 1.1 и 2.0 131795770645349720 0xfffff80d93db0000 581632 C:\Windows\system32\mcupdate_GenuineIntel.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Intel Microcode Update Library 131795770645349720 0xfffff80d93e50000 405504 C:\Windows\System32\drivers\CLFS.SYS 10.0.14393.2068 (rs1_release.180209-1727) Microsoft Corporation Common Log File System Driver 131795770645349720 0xfffff80d93ec0000 151552 C:\Windows\System32\drivers\tm.sys 10.0.14393.2189 (rs1_release.180329-1711) Microsoft Corporation Kernel Transaction Manager Driver 131795770645349720 0xfffff80d93ef0000 94208 C:\Windows\system32\PSHED.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Драйвер аппаратных ошибок, специфичных для платформы 131795770645349720 0xfffff80d93f10000 49152 C:\Windows\system32\BOOTVID.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation VGA Boot Driver 131795770645349720 0xfffff80d93f20000 401408 C:\Windows\System32\drivers\FLTMGR.SYS 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Диспетчер фильтров файловых систем Майкрософт 131795770645349720 0xfffff80d93f90000 380928 C:\Windows\System32\drivers\msrpc.sys 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation Kernel Remote Procedure Call Provider 131795770645349720 0xfffff80d94000000 430080 C:\Windows\System32\drivers\fwpkclnt.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation FWP/IPsec Kernel-Mode API 131795770645349720 0xfffff80d94070000 172032 C:\Windows\System32\drivers\wfplwfs.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation WFP NDIS 6.30 Lightweight Filter Driver 131795770645349720 0xfffff80d940b0000 659456 C:\Windows\System32\DRIVERS\fvevol.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation BitLocker Drive Encryption Driver 131795770645349720 0xfffff80d94160000 45056 C:\Windows\System32\drivers\volume.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Volume driver 131795770645349720 0xfffff80d94170000 409600 C:\Windows\System32\drivers\volsnap.sys 10.0.14393.1794 (rs1_release.171008-1615) Microsoft Corporation Volume Shadow Copy driver 131795770645349720 0xfffff80d941e0000 106496 C:\Windows\System32\drivers\scmbus.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Storage Class Memory Bus Driver 131795770645349720 0xfffff80d94200000 294912 C:\Windows\System32\drivers\rdyboost.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ReadyBoost Driver 131795770645349720 0xfffff80d94250000 151552 C:\Windows\System32\Drivers\mup.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Драйвер поставщика множественных UNC 131795770645349720 0xfffff80d94280000 65536 C:\Windows\system32\drivers\iorate.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation I/O rate control Filter 131795770645349720 0xfffff80d942a0000 126976 C:\Windows\System32\drivers\disk.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation PnP Disk Driver 131795770645349720 0xfffff80d942e0000 102400 C:\Windows\System32\Drivers\crashdmp.sys 10.0.14393.351 (rs1_release_inmarket.161014-1755) Microsoft Corporation Crash Dump Driver 131795770645349720 0xfffff80d943c0000 200704 C:\Windows\System32\drivers\cdrom.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SCSI CD-ROM Driver 131795770645349720 0xfffff80d94400000 118784 C:\Windows\system32\drivers\filecrypt.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows sandboxing and encryption filter 131795770645349720 0xfffff80d94420000 57344 C:\Windows\system32\drivers\tbs.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Export driver for kernel mode TPM API 131795770645349720 0xfffff80d94430000 40960 C:\Windows\System32\Drivers\Null.SYS 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation NULL Driver 131795770645349720 0xfffff80d94440000 40960 C:\Windows\System32\Drivers\Beep.SYS 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation BEEP Driver 131795770645349720 0xfffff80d94450000 81920 C:\Windows\System32\drivers\BasicDisplay.sys 10.0.14393.1066 (rs1_release_sec.170327-1835) Microsoft Corporation Microsoft Basic Display Driver 131795770645349720 0xfffff80d94470000 81920 C:\Windows\System32\drivers\watchdog.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Watchdog Driver 131795770645349720 0xfffff80d94490000 2220032 C:\Windows\System32\drivers\dxgkrnl.sys 10.0.14393.2189 (rs1_release.180329-1711) Microsoft Corporation DirectX Graphics Kernel 131795770645349720 0xfffff80d946b0000 73728 C:\Windows\System32\drivers\BasicRender.sys 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation Microsoft Basic Render Driver 131795770645349720 0xfffff80d946d0000 102400 C:\Windows\System32\Drivers\Npfs.SYS 10.0.14393.1737 (rs1_release_inmarket.170914-1249) Microsoft Corporation NPFS Driver 131795770645349720 0xfffff80d94700000 143360 C:\Windows\system32\DRIVERS\tdx.sys 10.0.14393.1613 (rs1_release_d.170807-1806) Microsoft Corporation TDI Translation Driver 131795770645349720 0xfffff80d94740000 307200 C:\Windows\System32\DRIVERS\netbt.sys 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation MBT Transport driver 131795770645349720 0xfffff80d94790000 610304 C:\Windows\system32\drivers\afd.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Драйвер дополнительных функций для Winsock 131795770645349720 0xfffff80d94830000 102400 C:\Windows\System32\drivers\vwififlt.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Virtual WiFi Filter Driver 131795770645349720 0xfffff80d94850000 176128 C:\Windows\System32\drivers\pacer.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Планировщик пакетов QoS 131795770645349720 0xfffff80d94880000 73728 C:\Windows\system32\drivers\netbios.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation NetBIOS interface driver 131795770645349720 0xfffff80d948a0000 479232 C:\Windows\system32\DRIVERS\rdbss.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Драйвер подсистемы буферизации перенаправленного диска 131795770645349720 0xfffff80d94920000 581632 C:\Windows\system32\drivers\csc.sys 10.0.14393.953 (rs1_release_inmarket.170303-1614) Microsoft Corporation Windows Client Side Caching Driver 131795770645349720 0xfffff80d949b0000 106496 C:\Windows\system32\drivers\nsiproxy.sys 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation NSI Proxy 131795770645349720 0xfffff80d949d0000 53248 C:\Windows\System32\drivers\npsvctrig.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Named pipe service triggers 131795770645349720 0xfffff80d949f0000 40960 C:\Windows\System32\drivers\gpuenergydrv.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation GPU Energy Kernel Driver 131795770645349720 0xfffff80d94a00000 172032 C:\Windows\System32\Drivers\dfsc.sys 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation DFS Namespace Client Driver 131795770645349720 0xfffff80d94a50000 258048 C:\Windows\system32\DRIVERS\ahcache.sys 10.0.14393.351 (rs1_release_inmarket.161014-1755) Microsoft Corporation Application Compatibility Cache 131795770645349720 0xfffff80d94a90000 69632 C:\Windows\System32\DriverStore\FileRepository\compositebus.inf_amd64_a140581a8f8b58b7\CompositeBus.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Multi-Transport Composite Bus Enumerator 131795770645349720 0xfffff80d94ab0000 57344 C:\Windows\System32\drivers\kdnic.sys 6.01.00.0000 (rs1_release.160715-1616) Microsoft Corporation Microsoft Kernel Debugger Network Miniport 131795770645349720 0xfffff80d94ac0000 86016 C:\Windows\System32\drivers\umbus.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User-Mode Bus Enumerator 131795770645349720 0xfffff80d94ae0000 139264 C:\Windows\System32\drivers\i8042prt.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Драйвер порта i8042 131795770645349720 0xfffff80d94b10000 77824 C:\Windows\System32\drivers\kbdclass.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Драйвер класса клавиатуры 131795770645349720 0xfffff80d94b30000 73728 C:\Windows\System32\drivers\mouclass.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Драйвер класса мыши 131795770645349720 0xfffff80d94b80000 110592 C:\Windows\System32\drivers\HDAudBus.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation High Definition Audio Bus Driver 131795770645349720 0xfffff80d94ba0000 397312 C:\Windows\System32\drivers\portcls.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Port Class (Class Driver for Port/Miniport Devices) 131795770645349720 0xfffff80d94c10000 135168 C:\Windows\System32\drivers\drmk.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Trusted Audio Drivers 131795770645349720 0xfffff80d94c40000 425984 C:\Windows\System32\drivers\ks.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Kernel CSA Library 131795770645349720 0xfffff80d94cb0000 61440 C:\Windows\System32\drivers\usbohci.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation OHCI USB Miniport Driver 131795770645349720 0xfffff80d94cc0000 57344 C:\Windows\System32\drivers\CmBatt.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Control Method Battery Driver 131795770645349720 0xfffff80d94cd0000 57344 C:\Windows\System32\drivers\BATTC.SYS 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Battery Class Driver 131795770645349720 0xfffff80d94ce0000 176128 C:\Windows\System32\drivers\intelppm.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Processor Device Driver 131795770645349720 0xfffff80d94d10000 53248 C:\Windows\System32\drivers\NdisVirtualBus.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Перечислитель виртуальных сетевых адаптеров (Майкрософт) 131795770645349720 0xfffff80d94d20000 2588672 C:\Windows\System32\drivers\tcpip.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Драйвер TCP/IP 131795770645349720 0xfffff80d94fa0000 49152 C:\Windows\System32\drivers\swenum.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Plug and Play Software Device Enumerator 131795770645349720 0xfffff80d94fb0000 57344 C:\Windows\System32\drivers\rdpbus.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft RDP Bus Device driver 131795770645349720 0xfffff80d95200000 344064 C:\Windows\system32\DRIVERS\udfs.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation UDF File System Driver 131795770645349720 0xfffff80d95280000 61440 C:\Windows\System32\Drivers\dump_diskdump.sys 131795770645349720 0xfffff80d952c0000 147456 C:\Windows\System32\Drivers\dump_storahci.sys 131795770645349720 0xfffff80d95310000 118784 C:\Windows\System32\Drivers\dump_dumpfve.sys 131795770645349720 0xfffff80d95330000 1122304 C:\Windows\system32\drivers\HTTP.sys 10.0.14393.1532 (rs1_release_d.170711-1840) Microsoft Corporation Стек протокола HTTP 131795770645349720 0xfffff80d95450000 122880 C:\Windows\system32\drivers\WudfPf.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Driver Foundation - User-mode Driver Framework Platform Driver 131795770645349720 0xfffff80d95470000 139264 C:\Windows\system32\DRIVERS\bowser.sys 10.0.14393.447 (rs1_release_inmarket.161102-0100) Microsoft Corporation NT Lan Manager Datagram Receiver Driver 131795770645349720 0xfffff80d954a0000 479232 C:\Windows\system32\DRIVERS\mrxsmb.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT SMB Minirdr 131795770645349720 0xfffff80d95520000 102400 C:\Windows\System32\drivers\mpsdrv.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Protection Service Driver 131795770645349720 0xfffff80d95540000 241664 C:\Windows\system32\DRIVERS\mrxsmb20.sys 10.0.14393.2035 (rs1_release_inmarket.180110-1910) Microsoft Corporation Longhorn SMB 2.0 Redirector 131795770645349720 0xfffff80d95580000 278528 C:\Windows\System32\DRIVERS\srvnet.sys 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Server Network driver 131795770645349720 0xfffff80d955d0000 741376 C:\Windows\System32\DRIVERS\srv2.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Драйвер сервера SMB 2.0 131795770645349720 0xfffff80d95690000 315392 C:\Windows\system32\DRIVERS\mrxsmb10.sys 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Longhorn SMB Downlevel SubRdr 131795770645349720 0xfffff80d956e0000 573440 C:\Windows\System32\DRIVERS\srv.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Server driver 131795770645349720 0xfffff80d95770000 81920 C:\Windows\System32\drivers\tcpipreg.sys 10.0.14393.1480 (rs1_release.170706-2004) Microsoft Corporation TCP/IP Registry Compatibility Driver 131795770645349720 0xfffff80d95860000 684032 C:\Windows\System32\drivers\dxgmms2.sys 10.0.14393.2189 (rs1_release.180329-1711) Microsoft Corporation DirectX Graphics MMS 131795770645349720 0xfffff80d95910000 155648 C:\Windows\system32\drivers\luafv.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Драйвер фильтра виртуализации файлов LUA 131795770645349720 0xfffff80d95960000 102400 C:\Windows\system32\drivers\storqosflt.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Фильтр качества обслуживания хранилища 131795770645349720 0xfffff80d95980000 98304 C:\Windows\System32\drivers\registry.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Registry Containment Driver 131795770645349720 0xfffff80d959a0000 90112 C:\Windows\system32\drivers\lltdio.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Link-Layer Topology Mapper I/O Driver 131795770645349720 0xfffff80d959c0000 98304 C:\Windows\system32\drivers\mslldp.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Драйвер протокола Microsoft LLDP 131795770645349720 0xfffff80d959e0000 106496 C:\Windows\system32\drivers\rspndr.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Link-Layer Topology Responder Driver for NDIS 6 131795770645349720 0xfffff80d95ae0000 57344 C:\Windows\System32\drivers\USBD.SYS 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Universal Serial Bus Driver 131795770645349720 0xfffff80d95af0000 434176 C:\Windows\system32\DRIVERS\HdAudio.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation High Definition Audio Function Driver 131795770645349720 0xfffff80d95b60000 57344 C:\Windows\system32\drivers\ksthunk.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Kernel Streaming WOW Thunk Service 131795770645349720 0xfffff80d95bc0000 73728 C:\Windows\System32\drivers\HIDPARSE.SYS 10.0.14393.2068 (rs1_release.180209-1727) Microsoft Corporation Hid Parsing Library 131795770645349720 0xfffff80d97020000 208896 C:\Windows\System32\Drivers\360AntiHacker64.sys 1.0.0.1149 360.cn 360安全卫士 网络防黑模块 131795770645349720 0xfffff80d97060000 102400 C:\Windows\system32\DRIVERS\360AvFlt.sys 1.1.0.1056 360.cn 360杀毒 文件监控驱动 131795770645349720 0xfffff80d97080000 217088 C:\Windows\system32\DRIVERS\BAPIDRV64.sys 2.0.0.1221 360.cn BAPIDRV 131795770645349720 0xfffff80d970c0000 372736 C:\Windows\system32\drivers\360netmon.sys 2.1.11.5195 360.cn 360netmon 131795770645349720 0xfffff80d97120000 356352 C:\Windows\system32\DRIVERS\360Box64.sys 2.1.0.1253 360.cn 360Box64 131795770645349720 0xfffff80d97180000 811008 C:\Windows\system32\DRIVERS\360FsFlt.sys 6.9.1.1751 360.cn 360 Total Security 131795770645349720 0xfffff80d97330000 69632 C:\Windows\System32\drivers\hidusb.sys 10.0.14393.82 (rs1_release.160805-1735) Microsoft Corporation USB Miniport Driver for Input Devices 131795770645349720 0xfffff80d97350000 192512 C:\Windows\System32\drivers\HIDCLASS.SYS 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека классов HID 131795770645349720 0xfffff80d97380000 61440 C:\Windows\System32\drivers\mouhid.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Драйвер фильтра мыши HID 131795770645349720 0xfffff80d97390000 106496 C:\Windows\System32\drivers\rassstp.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation RAS SSTP Miniport Call Manager 131795770645349720 0xfffff80d973b0000 86016 C:\Windows\System32\DRIVERS\NDProxy.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation NDIS Proxy 131795770645349720 0xfffff80d973d0000 159744 C:\Windows\System32\drivers\AgileVpn.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Диспетчер вызовов минипорта RAS Agile VPN 131795770645349720 0xfffff80d97420000 131072 C:\Windows\System32\drivers\rasl2tp.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation RAS L2TP mini-port/call-manager driver 131795770645349720 0xfffff80d97460000 126976 C:\Windows\System32\drivers\raspptp.sys 10.0.14393.2035 (rs1_release_inmarket.180110-1910) Microsoft Corporation Peer-to-Peer Tunneling Protocol 131795770645349720 0xfffff80d974a0000 110592 C:\Windows\System32\drivers\raspppoe.sys 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation RAS PPPoE mini-port/call-manager driver 131795770645349720 0xfffff80d974c0000 57344 C:\Windows\System32\DRIVERS\ndistapi.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation NDIS 3.0 connection wrapper driver 131795770645349720 0xfffff80d974d0000 221184 C:\Windows\System32\drivers\ndiswan.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation MS PPP Framing Driver (Strong Encryption) 131795770645349720 0xfffff80d97510000 110592 C:\Windows\System32\DRIVERS\wanarp.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation MS Remote Access and Routing ARP Driver 131795770645349720 0xfffff80d97550000 151552 C:\Windows\System32\drivers\E1G6032E.sys 8.4.13.0 built by: WinDDK Intel Corporation Intel(R) PRO/1000 Adapter NDIS 6 deserialized driver 131795770645349720 0xfffff80d97580000 192512 C:\Windows\System32\drivers\tunnel.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Драйвер интерфейса туннеля (Майкрософт) 131795770645349720 0xfffff80d97600000 106496 C:\Windows\system32\Drivers\PROCMON24.SYS 3.10 Sysinternals - www.sysinternals.com Process Monitor Driver 131795780236159256 0xfffff80d97620000 49152 C:\Windows\System32\drivers\npf.sys 4.1.0.2980 Riverbed Technology, Inc. npf.sys (NT5/6 AMD64) Kernel Driver 131795770645349720 0xfffff80d97a60000 794624 C:\Windows\system32\drivers\peauth.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Protected Environment Authentication and Authorization Export Driver 131795770645349720 0xfffff80d97b30000 155648 C:\Windows\system32\drivers\Ndu.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Network Data Usage Monitoring Driver 131795770645349720 0xfffff80d97b60000 81920 C:\Windows\system32\drivers\mmcss.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation MMCSS Driver 131795770645349720 0xfffff80d97bb0000 73728 C:\Windows\System32\drivers\condrv.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Console Driver 10 320 4 9 00000000:000003e7 131765775908989732 0 0 1 Обязательная метка\Обязательный уровень системы NT AUTHORITY\СИСТЕМА smss.exe C:\Windows\System32\smss.exe \SystemRoot\System32\smss.exe Microsoft Corporation 10.0.14393.0 (rs1_release.160715-1616) Диспетчер сеанса Windows 11 3108 3092 12 00000000:0031f1da 131765777624392598 0 0 1 Обязательная метка\Средний обязательный уровень WIN-0UOTFKKVN1S\User Explorer.EXE C:\Windows\Explorer.EXE C:\Windows\Explorer.EXE Microsoft Corporation 10.0.14393.0 (rs1_release.160715-1616) Проводник 131795770645352881 0x31b0000 12288 C:\Windows\system32\sfc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows File Protection 131795770645352881 0x5db0000 397312 C:\Program Files\Uninstall Tool\utshellext.dll 1.1.0.15 CrystalIDEA Software Uninstall Tool Shell Extension 131795770645352881 0x81a0000 8937472 C:\Program Files\MICROS~1\Office16\1049\GrooveIntlResource.dll 16.0.4266.1001 Корпорация Майкрософт Модуль международных ресурсов для Microsoft OneDrive для бизнеса 131795770645352881 0x8cb0000 593920 C:\Windows\SYSTEM32\UIRibbonRes.dll 10.0.14393.2189 (rs1_release.180329-1711) Microsoft Corporation Windows Ribbon Framework Resources 131795770645352881 0x5bf70000 667648 C:\Windows\WinSxS\amd64_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.9247_none_08e394a1a83e212f\MSVCR90.dll 9.00.30729.9247 Microsoft Corporation Microsoft® C Runtime Library 131795770645352881 0x180000000 241664 C:\Program Files (x86)\Notepad++\NppShell_06.dll 0.1 ShellHandler for Notepad++ (64 bit) 131795770645352881 0x7ff6a5b30000 4665344 C:\Windows\Explorer.EXE 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Проводник 131795770645352881 0x7ff7808b0000 8527872 C:\Windows\system32\ntoskrnl.exe 10.0.14393.2189 (rs1_release.180329-1711) Microsoft Corporation NT Kernel & System 131795770645352881 0x7ffaa6c80000 2093056 C:\Windows\system32\wpdshext.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширение оболочки для переносных устройств 131795770645352881 0x7ffaab350000 1683456 C:\Windows\System32\comsvcs.dll 2001.12.10941.16384 (rs1_release_1.180305-1842) Microsoft Corporation COM+ Services 131795770645352881 0x7ffaab4f0000 1400832 C:\Windows\system32\connect.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Мастера подключений 131795770645352881 0x7ffaab650000 970752 C:\Windows\system32\rasgcw.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Страницы мастера RAS 131795770645352881 0x7ffaab880000 532480 C:\Windows\System32\MPRAPI.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation Windows NT MP Router Administration DLL 131795770645352881 0x7ffaab910000 905216 C:\Windows\System32\RASDLG.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API общих диалогов службы удаленного доступа 131795770645352881 0x7ffaac6e0000 13156352 C:\Windows\system32\ieframe.DLL 11.00.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Браузер 131795770645352881 0x7ffab0df0000 1626112 C:\Windows\SYSTEM32\d3d9.dll 10.0.14393.447 (rs1_release_inmarket.161102-0100) Microsoft Corporation Direct3D 9 Runtime 131795770645352881 0x7ffab0f80000 1777664 C:\Program Files\Windows Photo Viewer\PhotoViewer.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Просмотр фотографий Windows 131795770645352881 0x7ffab1d80000 262144 C:\Windows\system32\eappcfg.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Eap Peer Config 131795770645352881 0x7ffab2460000 2822144 C:\Windows\System32\netshell.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Оболочка сетевых подключений 131795770645352881 0x7ffab2720000 606208 C:\Windows\System32\DUser.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows DirectUser Engine 131795770645352881 0x7ffab27c0000 516096 C:\Windows\System32\imapi2.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation IMAPI версии 2 131795770645352881 0x7ffab2840000 253952 C:\Windows\System32\bthprops.cpl 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Приложение панели управления Bluetooth 131795770645352881 0x7ffab2880000 315392 C:\Windows\System32\cscobj.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Внутрипроцессный COM-объект используемый клиентами CSC API 131795770645352881 0x7ffab28d0000 802816 C:\Windows\System32\cscui.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Интерфейс кэширования на стороне клиента 131795770645352881 0x7ffab29a0000 1912832 C:\Windows\System32\pnidui.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Значок сетевой системы 131795770645352881 0x7ffab2b80000 212992 C:\Windows\system32\SettingMonitor.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Setting Synchronization Change Monitor 131795770645352881 0x7ffab2bc0000 204800 C:\Windows\System32\PortableDeviceTypes.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Portable Device (Parameter) Types Component 131795770645352881 0x7ffab33d0000 258048 C:\Windows\SYSTEM32\MLANG.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL многоязыковой поддержки 131795770645352881 0x7ffab34f0000 323584 C:\Windows\System32\Actioncenter.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Центр безопасности и обслуживания 131795770645352881 0x7ffab4af0000 606208 C:\Windows\SYSTEM32\AUDIOSES.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Сеанс обработки звука 131795770645352881 0x7ffab4b90000 655360 C:\Windows\System32\StructuredQuery.dll 7.0.14393.2068 (rs1_release.180209-1727) Microsoft Corporation Structured Query 131795770645352881 0x7ffab5120000 1691648 C:\Windows\system32\BatMeter.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Battery Meter Helper DLL 131795770645352881 0x7ffab5520000 3231744 C:\Windows\SYSTEM32\MsftEdit.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Элемент управления "Поле ввода форматированного текста", версия 8.5 131795770645352881 0x7ffab5b40000 2527232 C:\Windows\SYSTEM32\DWrite.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Службы Microsoft DirectX Typography 131795770645352881 0x7ffab7d80000 753664 C:\Windows\System32\RASAPI32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API удаленного доступа 131795770645352881 0x7ffab7e40000 3420160 C:\Windows\System32\SyncCenter.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Центр синхронизации Майкрософт 131795770645352881 0x7ffab8190000 9191424 C:\Windows\System32\TwinUI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation TWINUI 131795770645352881 0x7ffab8da0000 1675264 C:\Windows\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.14393.1715_none_aec701fbddd850fa\gdiplus.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Microsoft GDI+ 131795770645352881 0x7ffab92e0000 827392 C:\Windows\system32\Windows.Storage.Search.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows.Storage.Search 131795770645352881 0x7ffab93b0000 897024 C:\Windows\System32\TokenBroker.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Token Broker 131795770645352881 0x7ffab9490000 860160 C:\Windows\system32\ntshrui.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширения оболочки, обеспечивающие общий доступ 131795770645352881 0x7ffab95c0000 4091904 C:\Windows\system32\UIRibbon.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Платформа ленты Windows 131795770645352881 0x7ffab99b0000 499712 C:\Windows\system32\dxp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширение оболочки компонента Device Stage 131795770645352881 0x7ffab9ba0000 389120 C:\Windows\SYSTEM32\searchfolder.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SearchFolder 131795770645352881 0x7ffaba950000 188416 C:\Windows\System32\EthernetMediaManager.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Ethernet Media Manager DLL 131795770645352881 0x7ffabaa50000 339968 C:\Windows\System32\NetworkUXBroker.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation NetworkUXBroker DLL 131795770645352881 0x7ffabaab0000 94208 C:\Windows\SYSTEM32\profext.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation profext 131795770645352881 0x7ffabab30000 303104 C:\Windows\System32\NotificationObjFactory.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Notifications Object Factory 131795770645352881 0x7ffabac60000 151552 C:\Windows\System32\EhStorAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Enhanced Storage API 131795770645352881 0x7ffabacc0000 1380352 C:\Windows\System32\SharedStartModel.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Shared Start Model InProc Server 131795770645352881 0x7ffabae20000 40960 C:\Windows\SYSTEM32\msiltcfg.dll 5.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Installer Configuration API Stub 131795770645352881 0x7ffabae60000 77824 C:\Windows\System32\DEVRTL.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Device Management Run Time Library 131795770645352881 0x7ffabaea0000 266240 C:\Windows\system32\SHDOCVW.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека объектов документов и элементов управления оболочки 131795770645352881 0x7ffabaf70000 270336 C:\Windows\SYSTEM32\edputil.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служебная программа EDP 131795770645352881 0x7ffabafc0000 700416 C:\Windows\System32\wer.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека сообщений об ошибках Windows 131795770645352881 0x7ffabb2b0000 1089536 C:\Windows\SYSTEM32\settingsynccore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Setting Synchronization Core 131795770645352881 0x7ffabb430000 65536 C:\Windows\SYSTEM32\pcacli.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Program Compatibility Assistant Client Module 131795770645352881 0x7ffabb490000 512000 C:\Windows\SYSTEM32\TWINAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation twinapi 131795770645352881 0x7ffabba80000 995328 C:\Windows\System32\twinui.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation TWINUI.APPCORE 131795770645352881 0x7ffabbb80000 61440 C:\Windows\System32\dsclient.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Data Sharing Service Client DLL 131795770645352881 0x7ffabbb90000 581632 C:\Windows\System32\Windows.System.Launcher.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows.System.Launcher 131795770645352881 0x7ffabbc40000 643072 C:\Windows\SYSTEM32\MSVCP140.dll 14.10.24516.0 built by: VCTOOLSRELESC Microsoft Corporation Microsoft® C Runtime Library 131795770645352881 0x7ffabbce0000 90112 C:\Windows\SYSTEM32\VCRUNTIME140.dll 14.10.24516.0 built by: VCTOOLSRELESC Microsoft Corporation Microsoft® C Runtime Library 131795770645352881 0x7ffabbd00000 36864 C:\Windows\System32\WpPortingLibrary.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation <d> DLL 131795770645352881 0x7ffabbd20000 106496 C:\Windows\SYSTEM32\settingsyncpolicy.dll 10.0.14393.82 (rs1_release.160805-1735) Microsoft Corporation SettingSync Policy 131795770645352881 0x7ffabc0b0000 65536 C:\Windows\SYSTEM32\LINKINFO.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Volume Tracking 131795770645352881 0x7ffabc510000 90112 C:\Windows\system32\execmodelproxy.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ExecModelProxy 131795770645352881 0x7ffabc880000 73728 C:\Windows\SYSTEM32\cscapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Offline Files Win32 API 131795770645352881 0x7ffabcf30000 110592 C:\Windows\SYSTEM32\MPR.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека маршрутизации для нескольких служб доступа 131795770645352881 0x7ffabd3c0000 368640 C:\Windows\System32\InputSwitch.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Переключатель ввода Microsoft Windows 131795770645352881 0x7ffabd4a0000 1613824 C:\Windows\System32\Windows.Globalization.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Globalization 131795770645352881 0x7ffabd670000 315392 C:\Windows\System32\framedynos.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation WMI SDK Provider Framework 131795770645352881 0x7ffabd6c0000 1306624 C:\Windows\System32\werconcpl.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation PRS CPL 131795770645352881 0x7ffabd800000 876544 C:\Windows\System32\NPSMDesktopProvider.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation <d> Библиотека DLL локального поставщика рабочего стола NPSM 131795770645352881 0x7ffabda60000 1241088 C:\Windows\System32\wscui.cpl 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Центр безопасности и обслуживания 131795770645352881 0x7ffabdbb0000 1736704 C:\Windows\SYSTEM32\DUI70.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Подсистема DirectUI Windows 131795770645352881 0x7ffabdeb0000 86016 C:\Windows\system32\wpdshserviceobj.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Portable Device Shell Service Object 131795770645352881 0x7ffabded0000 413696 C:\Windows\system32\stobject.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Объект службы оболочки Systray 131795770645352881 0x7ffabe070000 610304 C:\Windows\SYSTEM32\efswrt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Storage Protection Windows Runtime DLL 131795770645352881 0x7ffabe470000 180224 C:\Windows\System32\wscinterop.dll 10.0.14393.479 (rs1_release.161110-2025) Microsoft Corporation Windows Health Center WSC Interop 131795770645352881 0x7ffabe4d0000 286720 C:\Windows\System32\MSWB7.dll 10.0.14393.1737 (rs1_release_inmarket.170914-1249) Microsoft Corporation MSWB7 DLL 131795770645352881 0x7ffabe580000 831488 C:\Program Files (x86)\360\Total Security\MenuEx64.dll 9, 6, 0, 1001 360 Total Security 131795770645352881 0x7ffabe650000 405504 C:\Windows\system32\zipfldr.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Сжатые ZIP-папки 131795770645352881 0x7ffabe850000 155648 C:\Windows\System32\IDStore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Identity Store 131795770645352881 0x7ffabe9a0000 94208 C:\Windows\system32\Syncreg.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Synchronization Framework Registration 131795770645352881 0x7ffabe9c0000 188416 C:\Windows\SYSTEM32\globinputhost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Globalization Extension API for Input 131795770645352881 0x7ffabebf0000 1208320 C:\Windows\system32\NetworkExplorer.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Сетевой проводник 131795770645352881 0x7ffabef80000 69632 C:\Windows\System32\sfc_os.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows File Protection 131795770645352881 0x7ffabf0b0000 176128 C:\Windows\System32\playtomenu.dll 12.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека меню функции "Передать на устройство" 131795770645352881 0x7ffabf0e0000 372736 C:\Windows\System32\hnetcfg.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Диспетчер конфигурации домашней сети 131795770645352881 0x7ffabf330000 2457600 C:\Windows\System32\msxml6.dll 6.30.14393.2156 Microsoft Corporation MSXML 6.0 131795770645352881 0x7ffabf590000 208896 C:\Windows\system32\syncui.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Портфель Windows 131795770645352881 0x7ffabf5d0000 2924544 C:\Windows\SYSTEM32\WININET.dll 11.00.14393.447 (rs1_release_inmarket.161102-0100) Microsoft Corporation Расширения Интернета для Win32 131795770645352881 0x7ffabf8c0000 802816 C:\Windows\system32\Windows.Internal.Shell.Broker.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation Windows Shell Broker 131795770645352881 0x7ffabfb00000 626688 C:\Windows\System32\ContentDeliveryManager.Utilities.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation ContentDeliveryManager.Utilities 131795770645352881 0x7ffabfba0000 212992 C:\Windows\System32\WSCAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API центра обеспечения безопасности Windows 131795770645352881 0x7ffabfdc0000 86016 C:\Windows\system32\keepaliveprovider.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Keep alive provider API 131795770645352881 0x7ffabfe50000 643072 C:\Windows\System32\wpnprv.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик подключения платформы push-уведомлений Windows 131795770645352881 0x7ffabff10000 155648 C:\Windows\system32\srvcli.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Server Service Client DLL 131795770645352881 0x7ffabff60000 135168 C:\Windows\system32\ncryptsslp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft SChannel Provider 131795770645352881 0x7ffac01e0000 397312 C:\Windows\System32\wincorlib.DLL 10.0.14393.576 (rs1_release_inmarket.161208-2252) Microsoft Corporation Microsoft Windows ® WinRT core library 131795770645352881 0x7ffac0250000 2179072 C:\Program Files\MICROS~1\Office16\GROOVEEX.DLL 16.0.4266.1001 Microsoft Corporation Microsoft OneDrive for Business Extensions 131795770645352881 0x7ffac0470000 1478656 C:\Windows\SYSTEM32\MFPlat.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Media Foundation Platform DLL 131795770645352881 0x7ffac05f0000 94208 C:\Windows\System32\wwapi.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation WWAN API 131795770645352881 0x7ffac0610000 3088384 C:\Windows\SYSTEM32\msi.dll 5.0.14393.2155 Microsoft Corporation Windows Installer 131795770645352881 0x7ffac0910000 724992 C:\Windows\System32\Windows.Networking.Connectivity.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Networking Connectivity Runtime DLL 131795770645352881 0x7ffac09d0000 884736 C:\Windows\System32\wpnapps.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Приложения для push-уведомлений Windows 131795770645352881 0x7ffac0ad0000 86016 C:\Windows\SYSTEM32\mskeyprotect.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик защиты ключей (Майкрософт) 131795770645352881 0x7ffac0af0000 114688 C:\Windows\System32\ATL.DLL 3.05.2284 Microsoft Corporation ATL Module for Windows XP (Unicode) 131795770645352881 0x7ffac0b40000 315392 C:\Windows\System32\dlnashext.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLNA Namespace DLL 131795770645352881 0x7ffac0b90000 380928 C:\Windows\System32\srchadmin.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Параметры индексирования 131795770645352881 0x7ffac0bf0000 3559424 C:\Windows\System32\ActXPrxy.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation ActiveX Interface Marshaling Library 131795770645352881 0x7ffac0f60000 151552 C:\Windows\SYSTEM32\CHARTV.dll 10.0.14393.351 (rs1_release_inmarket.161014-1755) Microsoft Corporation Chart View 131795770645352881 0x7ffac1b70000 122880 C:\Windows\System32\DevDispItemProvider.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Подсистема DeviceItem inproc devquery 131795770645352881 0x7ffac1cc0000 163840 C:\Windows\System32\Windows.Networking.Sockets.PushEnabledApplication.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows.Networking.Sockets.PushEnabledApplication DLL 131795770645352881 0x7ffac1d60000 589824 C:\Windows\System32\webio.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API протоколов передачи по Веб 131795770645352881 0x7ffac1e50000 188416 C:\Windows\SYSTEM32\RTWorkQ.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL для WorkQueue реального времени 131795770645352881 0x7ffac1fd0000 999424 C:\Windows\system32\wbem\fastprox.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation WMI Custom Marshaller 131795770645352881 0x7ffac20d0000 110592 C:\Windows\System32\RMCLIENT.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Resource Manager Client 131795770645352881 0x7ffac21d0000 81920 C:\Windows\system32\wbem\wbemsvc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation WMI 131795770645352881 0x7ffac2360000 57344 C:\Windows\System32\TimeBrokerClient.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Time Broker Client Library 131795770645352881 0x7ffac23c0000 331776 C:\Windows\System32\OneCoreCommonProxyStub.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation OneCore Common Proxy Stub 131795770645352881 0x7ffac2530000 270336 C:\Windows\system32\hnetcfgclient.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиент API конфигурации домашней сети 131795770645352881 0x7ffac2700000 98304 C:\Windows\system32\NETAPI32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API DLL 131795770645352881 0x7ffac27a0000 1642496 C:\Users\User\AppData\Local\Microsoft\OneDrive\18.111.0603.0006\amd64\FileSyncShell64.dll 18.111.0603.0006 Microsoft Corporation Microsoft OneDrive Shell Extension 131795770645352881 0x7ffac2960000 143360 C:\Windows\system32\mssprxy.dll 7.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation Microsoft Search Proxy 131795770645352881 0x7ffac2990000 385024 C:\Windows\SYSTEM32\NInput.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Pen and Touch Input Component 131795770645352881 0x7ffac29f0000 159744 C:\Windows\system32\NetSetupApi.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Network Configuration API 131795770645352881 0x7ffac2a20000 81920 C:\Windows\System32\rtutils.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Routing Utilities 131795770645352881 0x7ffac2b80000 40960 C:\Windows\SYSTEM32\VERSION.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Version Checking and File Installation Libraries 131795770645352881 0x7ffac2cb0000 778240 C:\Windows\System32\winsqlite3.dll 3.12.2 SQLite Development Team SQLite is a software library that implements a self-contained, serverless, zero-configuration, transactional SQL database engine. 131795770645352881 0x7ffac2d80000 5140480 C:\Windows\System32\cdp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API клиента Microsoft (R) CDP 131795770645352881 0x7ffac32e0000 180224 C:\Windows\system32\twext.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Свойства: Предыдущие версии 131795770645352881 0x7ffac3350000 36864 C:\Windows\SYSTEM32\OLEACCHOOKS.DLL 7.2.14393.0 (rs1_release.160715-1616) Microsoft Corporation Active Accessibility Event Hooks Library 131795770645352881 0x7ffac3360000 1396736 C:\Windows\System32\wpncore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Ядро извещающих уведомлений Windows 131795770645352881 0x7ffac34e0000 1843200 C:\Windows\SYSTEM32\urlmon.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширения OLE32 для Win32 131795770645352881 0x7ffac37d0000 258048 C:\Windows\SYSTEM32\wdmaud.drv 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Системный звуковой драйвер Winmm 131795770645352881 0x7ffac3cb0000 2772992 C:\Windows\SYSTEM32\iertutil.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служебная программа времени выполнения для Internet Explorer 131795770645352881 0x7ffac4000000 274432 C:\Windows\SYSTEM32\policymanager.dll 10.0.14393.2035 (rs1_release_inmarket.180110-1910) Microsoft Corporation Policy Manager DLL 131795770645352881 0x7ffac4070000 499712 C:\Windows\SYSTEM32\dsreg.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation AD/AAD User Device Registration 131795770645352881 0x7ffac4140000 114688 C:\Windows\SYSTEM32\MSACM32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Фильтр диспетчера аудиосжатия Microsoft 131795770645352881 0x7ffac4220000 520192 C:\Windows\SYSTEM32\wbemcomn.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation WMI 131795770645352881 0x7ffac42a0000 659456 C:\Windows\System32\StateRepository.Core.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation StateRepository Core 131795770645352881 0x7ffac4450000 86016 C:\Windows\SYSTEM32\usermgrcli.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation UserMgr API DLL 131795770645352881 0x7ffac4470000 65536 C:\Windows\system32\wbem\wbemprox.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation WMI 131795770645352881 0x7ffac46d0000 4161536 C:\Windows\System32\Windows.StateRepository.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Сервер Windows StateRepository API Server 131795770645352881 0x7ffac4df0000 462848 C:\Windows\System32\provsvc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Домашняя группа Windows 131795770645352881 0x7ffac4ea0000 36864 C:\Windows\SYSTEM32\atlthunk.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation atlthunk.dll 131795770645352881 0x7ffac4f60000 143360 C:\Windows\System32\wcmapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Connection Manager Client API 131795770645352881 0x7ffac4f90000 221184 C:\Windows\System32\EhStorShell.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL расширения оболочки Windows Enhanced Storage 131795770645352881 0x7ffac4fd0000 618496 C:\Windows\System32\wlidprov.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft® Account Provider 131795770645352881 0x7ffac5070000 798720 C:\Windows\System32\Windows.Web.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL веб-клиента 131795770645352881 0x7ffac5140000 307200 C:\Windows\System32\AboveLockAppHost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AboveLockAppHost 131795770645352881 0x7ffac5190000 659456 C:\Windows\System32\NotificationController.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation NotificationController 131795770645352881 0x7ffac5350000 1765376 C:\Windows\System32\Windows.UI.Immersive.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation WINDOWS.UI.IMMERSIVE 131795770645352881 0x7ffac5500000 438272 C:\Windows\SYSTEM32\PhotoMetadataHandler.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Photo Metadata Handler 131795770645352881 0x7ffac5570000 339968 C:\Windows\system32\twinui.pcshell.dll 10.0.14393.351 (rs1_release_inmarket.161014-1755) Microsoft Corporation Twinui.PCShell 131795770645352881 0x7ffac55d0000 376832 C:\Windows\System32\windows.immersiveshell.serviceprovider.dll 10.0.14393.1593 (rs1_release.170731-1934) Microsoft Corporation Windows.ImmersiveShell.ServiceProvider 131795770645352881 0x7ffac5630000 339968 C:\Windows\System32\thumbcache.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Кэш эскизов Майкрософт 131795770645352881 0x7ffac5690000 4734976 C:\Windows\system32\explorerframe.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ExplorerFrame 131795770645352881 0x7ffac5bb0000 622592 C:\Program Files\Common Files\microsoft shared\ink\tiptsf.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Инфраструктура текстовых служб сенсорной клавиатуры и панели рукописного ввода 131795770645352881 0x7ffac5c70000 65536 C:\Program Files\Windows Photo Viewer\PhotoBase.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Photo Base Library 131795770645352881 0x7ffac5ce0000 1744896 C:\Windows\SYSTEM32\UIAutomationCore.DLL 7.2.14393.0 (rs1_release.160715-1616) Microsoft Corporation Основные автоматические компоненты Microsoft UI 131795770645352881 0x7ffac60e0000 221184 C:\Windows\System32\XmlLite.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft XmlLite Library 131795770645352881 0x7ffac6610000 40960 C:\Windows\System32\rasadhlp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Remote Access AutoDial Helper 131795770645352881 0x7ffac6650000 176128 C:\Windows\System32\npsm.dll 10.0.14393.447 (rs1_release_inmarket.161102-0100) Microsoft Corporation NPSM 131795780903771340 0x7ffac66a0000 86016 C:\Windows\System32\OnDemandConnRouteHelper.dll 10.0.14393.351 (rs1_release_inmarket.161014-1755) Microsoft Corporation On Demand Connctiond Route Helper 131795770645352881 0x7ffac69c0000 839680 C:\Windows\System32\WINHTTP.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Службы HTTP Windows 131795770645352881 0x7ffac6ac0000 835584 C:\Windows\System32\Windows.UI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Runtime UI Foundation DLL 131795770645352881 0x7ffac6ba0000 49152 C:\Windows\SYSTEM32\Secur32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Security Support Provider Interface 131795770645352881 0x7ffac6bd0000 413696 C:\Windows\SYSTEM32\OLEACC.dll 7.2.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Active Accessibility Core Component 131795770645352881 0x7ffac6c40000 2596864 C:\Windows\WinSxS\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.14393.953_none_42151e83c686086b\comctl32.dll 6.10 (rs1_release_inmarket.170303-1614) Microsoft Corporation Библиотека элементов управления взаимодействия с пользователем 131795770645352881 0x7ffac6ec0000 36864 C:\Windows\system32\IconCodecService.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Converts a PNG part of the icon to a legacy bmp icon 131795770645352881 0x7ffac6f50000 5632000 C:\Windows\System32\d2d1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека Microsoft D2D 131795770645352881 0x7ffac7580000 1077248 C:\Windows\SYSTEM32\MrmCoreR.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Windows MRM 131795770645352881 0x7ffac76a0000 159744 C:\Windows\SYSTEM32\sppc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Software Licensing Client DLL 131795770645352881 0x7ffac78f0000 647168 C:\Windows\System32\hgcpl.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Панель управления домашней группы 131795770645352881 0x7ffac7990000 155648 C:\Windows\SYSTEM32\SLC.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Software Licensing Client DLL 131795770645352881 0x7ffac79c0000 57344 C:\Windows\System32\npmproxy.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Network List Manager Proxy 131795770645352881 0x7ffac7aa0000 401408 C:\Windows\SYSTEM32\wlanapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows WLAN AutoConfig Client Side API DLL 131795782572474169 0x7ffac7ce0000 73728 C:\Windows\System32\ploptin.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Prelaunch OptIn 131795770645352881 0x7ffac7d40000 131072 C:\Windows\system32\SYNCENG.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Briefcase Engine 131795770645352881 0x7ffac7d90000 454656 C:\Windows\SYSTEM32\SndVolSSO.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Громкость SCA 131795770645352881 0x7ffac7f50000 73728 C:\Windows\system32\acppage.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека расширений для вкладки "Совместимость" 131795770645352881 0x7ffac7fc0000 2674688 C:\Windows\SYSTEM32\d3d10warp.dll 10.0.14393.576 (rs1_release_inmarket.161208-2252) Microsoft Corporation Direct3D 10 Rasterizer 131795770645352881 0x7ffac83d0000 106496 C:\Windows\SYSTEM32\dhcpcsvc.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служба DHCP-клиента 131795770645352881 0x7ffac83f0000 90112 C:\Windows\SYSTEM32\dhcpcsvc6.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиент DHCPv6 131795770645352881 0x7ffac8420000 434176 C:\Windows\System32\fwpuclnt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API пользовательского режима FWP/IPsec 131795770645352881 0x7ffac84e0000 53248 C:\Windows\System32\NotificationControllerPS.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation NotificationController Proxy Stub 131795770645352881 0x7ffac84f0000 299008 C:\Windows\system32\dataexchange.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation Data exchange 131795770645352881 0x7ffac8810000 45056 C:\Windows\SYSTEM32\WINNSI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Network Store Information RPC interface 131795770645352881 0x7ffac8880000 69632 C:\Windows\system32\WMICLNT.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation WMI Client API 131795770645352881 0x7ffac88a0000 2842624 C:\Windows\system32\d3d11.dll 10.0.14393.953 (rs1_release_inmarket.170303-1614) Microsoft Corporation Direct3D 11 Runtime 131795770645352881 0x7ffac8f90000 45056 C:\Windows\SYSTEM32\AVRT.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Среда выполнения мультимедиа в реальном времени 131795770645352881 0x7ffac90b0000 90112 C:\Windows\SYSTEM32\wkscli.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Workstation Service Client DLL 131795770645352881 0x7ffac9220000 397312 C:\Windows\System32\wevtapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API настройки и использования событий 131795770645352881 0x7ffac9290000 40960 C:\Windows\system32\DSROLE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DS Setup Client DLL 131795770645352881 0x7ffac92e0000 1269760 C:\Windows\System32\WinTypes.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL основных типов Windows 131795770645352881 0x7ffac9480000 462848 C:\Windows\System32\MMDevApi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation MMDevice API 131795770645352881 0x7ffac9500000 2682880 C:\Windows\SYSTEM32\CoreUIComponents.dll 131795770645352881 0x7ffac9790000 98304 C:\Windows\System32\nlaapi.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Network Location Awareness 2 131795770645352881 0x7ffac97d0000 40960 C:\Windows\SYSTEM32\midimap.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft MIDI Mapper 131795778062352400 0x7ffac97e0000 73728 C:\Windows\System32\ploptin.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Prelaunch OptIn 131795770645352881 0x7ffac9bb0000 479232 C:\Windows\system32\es.dll 2001.12.10941.16384 (rs1_release.160715-1616) Microsoft Corporation COM+ 131795770645352881 0x7ffac9e00000 647168 C:\Windows\System32\PortableDeviceApi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Компоненты API для переносных устройств Windows 131795770645352881 0x7ffac9ea0000 81920 C:\Windows\System32\hcproviders.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщики компонента "Центр безопасности и обслуживания" 131795770645352881 0x7ffac9ec0000 294912 C:\Windows\System32\UIAnimation.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Animation Manager 131795770645352881 0x7ffac9f10000 221184 C:\Windows\System32\netprofm.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Network List Manager 131795770645352881 0x7ffac9f50000 1736704 C:\Windows\system32\windowscodecs.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Microsoft Windows Codecs Library 131795770645352881 0x7ffaca170000 45056 C:\Windows\SYSTEM32\ktmw32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows KTM Win32 Client DLL 131795770645352881 0x7ffaca180000 53248 C:\Windows\SYSTEM32\msacm32.drv 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Программа переназначения звуковых устройств 131795770645352881 0x7ffaca190000 241664 C:\Windows\System32\WorkFoldersShell.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширение оболочки рабочих папок (Майкрософт) 131795770645352881 0x7ffaca260000 45056 C:\Windows\System32\SystemEventsBrokerClient.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation system Events Broker Client Library 131795780604813666 0x7ffaca280000 73728 C:\Windows\System32\BitsProxy.dll 7.8.14393.0 (rs1_release.160715-1616) Microsoft Corporation Background Intelligent Transfer Service Proxy 131795770645352881 0x7ffaca340000 1593344 C:\Windows\SYSTEM32\PROPSYS.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Система страниц свойств (Майкрософт) 131795770645352881 0x7ffaca4e0000 77824 C:\Windows\SYSTEM32\wtsapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Remote Desktop Session Host Server SDK APIs 131795770645352881 0x7ffaca550000 36864 C:\Windows\SYSTEM32\ksuser.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User CSA Library 131795770645352881 0x7ffaca570000 421888 C:\Windows\SYSTEM32\Bcp47Langs.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation BCP47 Language Classes 131795770645352881 0x7ffaca5e0000 155648 C:\Windows\SYSTEM32\dwmapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Интерфейс API диспетчера окон рабочего стола (Майкрософт) 131795770645352881 0x7ffaca610000 143360 C:\Windows\System32\SAMLIB.dll 10.0.14393.82 (rs1_release.160805-1735) Microsoft Corporation SAM Library DLL 131795770645352881 0x7ffaca640000 770048 C:\Windows\System32\CoreMessaging.dll 10.0.14393.0 Microsoft Corporation Microsoft CoreMessaging Dll 131795770645352881 0x7ffaca770000 1380352 C:\Windows\system32\dcomp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft DirectComposition Library 131795770645352881 0x7ffacab40000 176128 C:\Windows\SYSTEM32\WINMMBASE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base Multimedia Extension API DLL 131795770645352881 0x7ffacaba0000 143360 C:\Windows\SYSTEM32\WINMM.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation MCI API DLL 131795770645352881 0x7ffacac60000 69632 C:\Windows\system32\credui.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Credential Manager User Interface 131795770645352881 0x7ffacac80000 28672 C:\Windows\SYSTEM32\MSIMG32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation GDIEXT Client DLL 131795770645352881 0x7ffacadf0000 499712 C:\Windows\SYSTEM32\apphelp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиентская библиотека совместимости приложений 131795770645352881 0x7ffacaf00000 610304 C:\Windows\SYSTEM32\UxTheme.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека тем UxTheme (Microsoft) 131795770645352881 0x7ffacb140000 593920 C:\Windows\System32\msvcp110_win.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Microsoft® STL110 C++ Runtime Library 131795770645352881 0x7ffacb1e0000 1163264 C:\Windows\SYSTEM32\twinapi.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation twinapi.appcore 131795770645352881 0x7ffacb300000 364544 C:\Windows\System32\VEEventDispatcher.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Visual Element Event dispatcher 131795770645352881 0x7ffacb3d0000 110592 C:\Windows\SYSTEM32\resourcepolicyclient.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Resource Policy Client 131795770645352881 0x7ffacb3f0000 163840 C:\Windows\System32\DEVOBJ.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Device Information Set DLL 131795770645352881 0x7ffacb420000 204800 C:\Windows\SYSTEM32\ntmarta.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик Windows NT MARTA 131795770645352881 0x7ffacb6f0000 143360 C:\Windows\SYSTEM32\gpapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиентские функции API групповой политики 131795770645352881 0x7ffacb780000 651264 C:\Windows\system32\dxgi.dll 10.0.14393.953 (rs1_release_inmarket.170303-1614) Microsoft Corporation DirectX Graphics Infrastructure 131795770645352881 0x7ffacb920000 81920 C:\Windows\SYSTEM32\WLDP.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Политика блокировки Windows 131795770645352881 0x7ffacbaf0000 495616 C:\Windows\system32\schannel.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик безопасности TLS/SSL 131795770645352881 0x7ffacbbb0000 208896 C:\Windows\system32\rsaenh.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Enhanced Cryptographic Provider 131795770645352881 0x7ffacbbf0000 40960 C:\Windows\SYSTEM32\DPAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Data Protection API 131795770645352881 0x7ffacbd30000 229376 C:\Windows\System32\IPHLPAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API вспомогательного приложения IP 131795770645352881 0x7ffacbd70000 659456 C:\Windows\System32\DNSAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Динамическая библиотека API DNS-клиента 131795770645352881 0x7ffacbe20000 53248 C:\Windows\system32\netutils.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API Helpers DLL 131795770645352881 0x7ffacbe40000 126976 C:\Windows\SYSTEM32\USERENV.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Userenv 131795770645352881 0x7ffacbfb0000 376832 C:\Windows\system32\mswsock.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширение поставщика службы API Microsoft Windows Sockets 2.0 131795770645352881 0x7ffacc150000 94208 C:\Windows\SYSTEM32\cryptsp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Cryptographic Service Provider API 131795770645352881 0x7ffacc170000 45056 C:\Windows\System32\CRYPTBASE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base cryptographic API DLL 131795770645352881 0x7ffacc1f0000 241664 C:\Windows\System32\NTASN1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft ASN.1 API 131795770645352881 0x7ffacc230000 155648 C:\Windows\System32\ncrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Маршрутизатор Windows NCrypt 131795770645352881 0x7ffacc350000 180224 C:\Windows\SYSTEM32\SspiCli.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Security Support Provider Interface 131795770645352881 0x7ffacc500000 102400 C:\Windows\System32\EventAggregation.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Event Aggregation User Mode Library 131795770645352881 0x7ffacc520000 622592 C:\Windows\SYSTEM32\sxs.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Fusion 2.5 131795770645352881 0x7ffacc5c0000 352256 C:\Windows\SYSTEM32\WINSTA.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Winstation Library 131795770645352881 0x7ffacc620000 176128 C:\Windows\SYSTEM32\bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795770645352881 0x7ffacc6e0000 61440 C:\Windows\System32\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795770645352881 0x7ffacc6f0000 311296 C:\Windows\System32\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795770645352881 0x7ffacc740000 81920 C:\Windows\System32\profapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Profile Basic API 131795770645352881 0x7ffacc760000 65536 C:\Windows\System32\MSASN1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ASN.1 Runtime APIs 131795770645352881 0x7ffacc8f0000 1003520 C:\Windows\System32\ucrtbase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645352881 0x7ffacc9f0000 434176 C:\Windows\System32\bcryptPrimitives.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Cryptographic Primitives Library 131795770645352881 0x7ffacca60000 122880 C:\Windows\System32\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795770645352881 0x7ffacca80000 348160 C:\Windows\System32\WINTRUST.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation Microsoft Trust Verification APIs 131795770645352881 0x7ffaccae0000 692224 C:\Windows\System32\SHCORE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795770645352881 0x7ffaccb90000 7180288 C:\Windows\System32\windows.storage.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API хранения Microsoft WinRT 131795770645352881 0x7ffacd270000 2215936 C:\Windows\System32\KERNELBASE.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645352881 0x7ffacd490000 1871872 C:\Windows\System32\CRYPT32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API32 криптографии 131795770645352881 0x7ffacd710000 638976 C:\Windows\System32\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645352881 0x7ffacd7b0000 270336 C:\Windows\System32\cfgmgr32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Configuration Manager DLL 131795770645352881 0x7ffacd810000 22056960 C:\Windows\System32\SHELL32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Общая библиотека оболочки Windows 131795770645352881 0x7ffaced20000 782336 C:\Windows\System32\OLEAUT32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795770645352881 0x7ffacede0000 450560 C:\Windows\System32\coml2.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft COM for Windows 131795770645352881 0x7ffacee50000 1183744 C:\Windows\System32\RPCRT4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795770645352881 0x7ffacef80000 32768 C:\Windows\System32\NSI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation NSI User-mode interface DLL 131795770645352881 0x7ffacef90000 647168 C:\Windows\System32\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795770645352881 0x7ffacf030000 651264 C:\Windows\System32\clbcatq.dll 2001.12.10941.16384 (rs1_release.160715-1616) Microsoft Corporation COM+ Configuration Catalog 131795770645352881 0x7ffacf0d0000 704512 C:\Windows\System32\KERNEL32.DLL 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645352881 0x7ffacf1e0000 1417216 C:\Windows\System32\MSCTF.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Серверная библиотека MSCTF 131795770645352881 0x7ffacf340000 4362240 C:\Windows\System32\SETUPAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Setup API 131795770645352881 0x7ffacf770000 212992 C:\Windows\System32\GDI32.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation GDI Client DLL 131795770645352881 0x7ffacf820000 434176 C:\Windows\System32\WS2_32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation 32-разрядная библиотека Windows Socket 2.0 131795770645352881 0x7ffacf890000 188416 C:\Windows\System32\IMM32.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Multi-User Windows IMM32 API Client DLL 131795770645352881 0x7ffacf8c0000 1462272 C:\Windows\System32\USER32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795770645352881 0x7ffacfb30000 2916352 C:\Windows\System32\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795770645352881 0x7ffacfe00000 114688 C:\Windows\System32\imagehlp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT Image Helper 131795770645352881 0x7ffacfe20000 663552 C:\Windows\System32\advapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795770645352881 0x7ffad0070000 1277952 C:\Windows\System32\ole32.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft OLE для Windows 131795770645352881 0x7ffad01b0000 335872 C:\Windows\System32\SHLWAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека небольших программ оболочки 131795770645352881 0x7ffad0210000 364544 C:\Windows\System32\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795770645352881 0x7ffad0270000 1908736 C:\Windows\SYSTEM32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 13 404 396 14 00000000:000003e7 131765776186257169 0 0 1 Обязательная метка\Обязательный уровень системы NT AUTHORITY\СИСТЕМА csrss.exe C:\Windows\system32\csrss.exe %SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16 Microsoft Corporation 10.0.14393.0 (rs1_release.160715-1616) Процесс исполнения клиент-сервер 15 468 460 16 00000000:000003e7 131765776223665667 0 0 1 Обязательная метка\Обязательный уровень системы NT AUTHORITY\СИСТЕМА csrss.exe C:\Windows\system32\csrss.exe %SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16 Microsoft Corporation 10.0.14393.0 (rs1_release.160715-1616) Процесс исполнения клиент-сервер 17 484 396 14 00000000:000003e7 131765776226419105 0 0 1 Обязательная метка\Обязательный уровень системы NT AUTHORITY\СИСТЕМА wininit.exe C:\Windows\system32\wininit.exe wininit.exe Microsoft Corporation 10.0.14393.0 (rs1_release.160715-1616) Автозагрузка приложений Windows 18 520 460 16 00000000:000003e7 131765776226825613 0 0 1 Обязательная метка\Обязательный уровень системы NT AUTHORITY\СИСТЕМА winlogon.exe C:\Windows\system32\winlogon.exe winlogon.exe Microsoft Corporation 10.0.14393.0 (rs1_release.160715-1616) Программа входа в систему Windows 131795770645375500 0x7ff7b5570000 696320 C:\Windows\system32\winlogon.exe 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Программа входа в систему Windows 131795770645375500 0x7ffabaab0000 94208 C:\Windows\SYSTEM32\profext.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation profext 131795770645375500 0x7ffabcf30000 110592 C:\Windows\system32\MPR.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека маршрутизации для нескольких служб доступа 131795770645375500 0x7ffac4450000 86016 C:\Windows\SYSTEM32\usermgrcli.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation UserMgr API DLL 131795770645375500 0x7ffac90b0000 90112 C:\Windows\system32\wkscli.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Workstation Service Client DLL 131795770645375500 0x7ffaca4e0000 77824 C:\Windows\SYSTEM32\wtsapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Remote Desktop Session Host Server SDK APIs 131795770645375500 0x7ffacadf0000 499712 C:\Windows\system32\apphelp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиентская библиотека совместимости приложений 131795770645375500 0x7ffacaee0000 81920 C:\Windows\SYSTEM32\dwminit.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DWMInit 131795770645375500 0x7ffacaf00000 610304 C:\Windows\system32\UxTheme.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека тем UxTheme (Microsoft) 131795770645375500 0x7ffacafa0000 118784 C:\Windows\system32\UXINIT.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows User Experience Session Initialization Dll 131795770645375500 0x7ffacb360000 176128 C:\Windows\system32\fwbase.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Firewall Base DLL 131795770645375500 0x7ffacb420000 204800 C:\Windows\SYSTEM32\ntmarta.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик Windows NT MARTA 131795770645375500 0x7ffacb460000 548864 C:\Windows\SYSTEM32\firewallapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API брандмауэра Windows 131795770645375500 0x7ffacbbf0000 40960 C:\Windows\system32\DPAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Data Protection API 131795770645375500 0x7ffacbe20000 53248 C:\Windows\system32\netutils.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API Helpers DLL 131795770645375500 0x7ffacbe40000 126976 C:\Windows\system32\USERENV.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Userenv 131795770645375500 0x7ffacc170000 45056 C:\Windows\system32\CRYPTBASE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base cryptographic API DLL 131795770645375500 0x7ffacc350000 180224 C:\Windows\system32\SspiCli.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Security Support Provider Interface 131795770645375500 0x7ffacc5c0000 352256 C:\Windows\SYSTEM32\winsta.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Winstation Library 131795770645375500 0x7ffacc620000 176128 C:\Windows\system32\bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795770645375500 0x7ffacc6f0000 311296 C:\Windows\System32\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795770645375500 0x7ffacc740000 81920 C:\Windows\System32\profapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Profile Basic API 131795770645375500 0x7ffacc760000 65536 C:\Windows\System32\MSASN1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ASN.1 Runtime APIs 131795770645375500 0x7ffacc8f0000 1003520 C:\Windows\System32\ucrtbase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645375500 0x7ffacc9f0000 434176 C:\Windows\System32\bcryptPrimitives.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Cryptographic Primitives Library 131795770645375500 0x7ffacca60000 122880 C:\Windows\System32\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795770645375500 0x7ffaccae0000 692224 C:\Windows\System32\shcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795770645375500 0x7ffacd270000 2215936 C:\Windows\System32\KERNELBASE.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645375500 0x7ffacd490000 1871872 C:\Windows\System32\CRYPT32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API32 криптографии 131795770645375500 0x7ffacee50000 1183744 C:\Windows\System32\RPCRT4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795770645375500 0x7ffacef90000 647168 C:\Windows\System32\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795770645375500 0x7ffacf0d0000 704512 C:\Windows\System32\KERNEL32.DLL 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645375500 0x7ffacf770000 212992 C:\Windows\System32\GDI32.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation GDI Client DLL 131795770645375500 0x7ffacf890000 188416 C:\Windows\System32\IMM32.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Multi-User Windows IMM32 API Client DLL 131795770645375500 0x7ffacf8c0000 1462272 C:\Windows\System32\user32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795770645375500 0x7ffacfb30000 2916352 C:\Windows\System32\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795770645375500 0x7ffacfe20000 663552 C:\Windows\System32\advapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795770645375500 0x7ffad0210000 364544 C:\Windows\System32\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795770645375500 0x7ffad0270000 1908736 C:\Windows\SYSTEM32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 19 588 484 17 00000000:000003e7 131765776277547408 0 0 1 Обязательная метка\Обязательный уровень системы NT AUTHORITY\СИСТЕМА lsass.exe C:\Windows\system32\lsass.exe C:\Windows\system32\lsass.exe Microsoft Corporation 10.0.14393.1770 (rs1_release.170917-1700) Local Security Authority Process 131795770645375702 0x222e3610000 12288 C:\Windows\system32\msprivs.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Переводы привилегий Майкрософт 131795770645375702 0x7ff6b2d20000 69632 C:\Windows\system32\lsass.exe 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Local Security Authority Process 131795770645375702 0x7ffab9170000 380928 C:\Windows\System32\vaultsvc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служба диспетчера учетных данных 131795770645375702 0x7ffabf170000 77824 C:\Windows\system32\hmkd.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows HMAC Key Derivation API 131795770645375702 0x7ffabf190000 126976 C:\Windows\System32\ngcpopkeysrv.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Microsoft Passport Proof-of-possession Key Service 131795770645375702 0x7ffabf1b0000 114688 C:\Windows\system32\keyiso.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служба изоляции ключей CNG 131795770645375702 0x7ffabf1d0000 192512 C:\Windows\System32\cryptnet.dll 10.0.14393.2035 (rs1_release_inmarket.180110-1910) Microsoft Corporation Crypto Network Related API 131795770645375702 0x7ffabf200000 405504 C:\Windows\SYSTEM32\cryptngc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API службы Microsoft Passport 131795770645375702 0x7ffabf270000 143360 C:\Windows\System32\SecureTimeAggregator.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Secure Time Aggregator 131795770645375702 0x7ffabf2a0000 159744 C:\Windows\system32\dssenh.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Enhanced DSS and Diffie-Hellman Cryptographic Provider 131795770645375702 0x7ffabf2d0000 344064 C:\Windows\system32\ncryptprov.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft KSP 131795770645375702 0x7ffabff60000 135168 C:\Windows\system32\ncryptsslp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft SChannel Provider 131795770645375702 0x7ffac0ac0000 53248 C:\Windows\system32\tbs.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation TBS 131795770645375702 0x7ffac0ad0000 86016 C:\Windows\SYSTEM32\mskeyprotect.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик защиты ключей (Майкрософт) 131795770645375702 0x7ffac1d60000 589824 C:\Windows\system32\webio.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API протоколов передачи по Веб 131795770645375702 0x7ffac6610000 40960 C:\Windows\System32\rasadhlp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Remote Access AutoDial Helper 131795770645375702 0x7ffac69c0000 839680 C:\Windows\system32\WINHTTP.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Службы HTTP Windows 131795770645375702 0x7ffac6b90000 53248 C:\Windows\system32\DSPARSE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Active Directory Domain Services API 131795770645375702 0x7ffac6ba0000 49152 C:\Windows\SYSTEM32\secur32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Security Support Provider Interface 131795770645375702 0x7ffac83d0000 106496 C:\Windows\SYSTEM32\dhcpcsvc.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служба DHCP-клиента 131795770645375702 0x7ffac83f0000 90112 C:\Windows\SYSTEM32\dhcpcsvc6.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиент DHCPv6 131795770645375702 0x7ffac8420000 434176 C:\Windows\System32\fwpuclnt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API пользовательского режима FWP/IPsec 131795770645375702 0x7ffac8810000 45056 C:\Windows\SYSTEM32\WINNSI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Network Store Information RPC interface 131795770645375702 0x7ffac8fa0000 253952 C:\Windows\system32\logoncli.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Net Logon Client DLL 131795770645375702 0x7ffac9220000 397312 C:\Windows\SYSTEM32\wevtapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API настройки и использования событий 131795770645375702 0x7ffac9290000 40960 C:\Windows\system32\DSROLE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DS Setup Client DLL 131795770645375702 0x7ffacb6f0000 143360 C:\Windows\SYSTEM32\gpapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиентские функции API групповой политики 131795770645375702 0x7ffacb960000 303104 C:\Windows\system32\AUTHZ.dll 10.0.14393.1737 (rs1_release_inmarket.170914-1249) Microsoft Corporation Authorization Framework 131795770645375702 0x7ffacb9b0000 294912 C:\Windows\system32\scecli.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиент редактора конфигураций безопасности 131795770645375702 0x7ffacba80000 49152 C:\Windows\SYSTEM32\SspiSrv.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation LSA SSPI RPC interface DLL 131795770645375702 0x7ffacba90000 221184 C:\Windows\system32\dpapisrv.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DPAPI Server 131795770645375702 0x7ffacbad0000 102400 C:\Windows\system32\efslsaext.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation LSA extension for EFS 131795770645375702 0x7ffacbaf0000 495616 C:\Windows\system32\schannel.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик безопасности TLS/SSL 131795770645375702 0x7ffacbb70000 245760 C:\Windows\system32\wdigest.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Digest Access 131795770645375702 0x7ffacbbb0000 208896 C:\Windows\system32\rsaenh.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Enhanced Cryptographic Provider 131795770645375702 0x7ffacbbf0000 40960 C:\Windows\SYSTEM32\DPAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Data Protection API 131795770645375702 0x7ffacbc00000 290816 C:\Windows\SYSTEM32\MicrosoftAccountCloudAP.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation MicrosoftAccount Cloud AP Plugin 131795770645375702 0x7ffacbc50000 372736 C:\Windows\system32\cloudAP.DLL 10.0.14393.1358 (rs1_release.170602-2252) Microsoft Corporation Cloud AP Security Package 131795770645375702 0x7ffacbcb0000 278528 C:\Windows\system32\pku2u.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Pku2u Security Package 131795770645375702 0x7ffacbd00000 139264 C:\Windows\system32\tspkg.DLL 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation Web Service Security Package 131795770645375702 0x7ffacbd30000 229376 C:\Windows\SYSTEM32\IPHLPAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API вспомогательного приложения IP 131795770645375702 0x7ffacbd70000 659456 C:\Windows\system32\DNSAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Динамическая библиотека API DNS-клиента 131795770645375702 0x7ffacbe20000 53248 C:\Windows\system32\netutils.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API Helpers DLL 131795770645375702 0x7ffacbe30000 57344 C:\Windows\system32\gmsaclient.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation "gmsaclient.DYNLINK" 131795770645375702 0x7ffacbe40000 126976 C:\Windows\system32\USERENV.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Userenv 131795770645375702 0x7ffacbe60000 843776 C:\Windows\system32\netlogon.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Динамическая библиотека службы Net Logon 131795770645375702 0x7ffacbf30000 49152 C:\Windows\system32\NtlmShared.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation NTLM Shared Functionality 131795770645375702 0x7ffacbf40000 421888 C:\Windows\system32\msv1_0.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Authentication Package v1.0 131795770645375702 0x7ffacbfb0000 376832 C:\Windows\system32\mswsock.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширение поставщика службы API Microsoft Windows Sockets 2.0 131795770645375702 0x7ffacc010000 86016 C:\Windows\system32\cryptdll.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Cryptography Manager 131795770645375702 0x7ffacc030000 163840 C:\Windows\system32\KerbClientShared.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Kerberos Client Shared Functionality 131795770645375702 0x7ffacc150000 94208 C:\Windows\system32\CRYPTSP.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Cryptographic Service Provider API 131795770645375702 0x7ffacc170000 45056 C:\Windows\system32\CRYPTBASE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base cryptographic API DLL 131795770645375702 0x7ffacc180000 155648 C:\Windows\system32\negoexts.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation NegoExtender Security Package 131795770645375702 0x7ffacc1b0000 126976 C:\Windows\system32\JOINUTIL.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Join Utility DLL 131795770645375702 0x7ffacc1d0000 86016 C:\Windows\SYSTEM32\netprovfw.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Provisioning Service Framework DLL 131795770645375702 0x7ffacc1f0000 241664 C:\Windows\system32\NTASN1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft ASN.1 API 131795770645375702 0x7ffacc230000 155648 C:\Windows\system32\ncrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Маршрутизатор Windows NCrypt 131795770645375702 0x7ffacc260000 921600 C:\Windows\SYSTEM32\samsrv.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека сервера диспетчера учетных записей 131795770645375702 0x7ffacc350000 180224 C:\Windows\system32\SspiCli.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Security Support Provider Interface 131795770645375702 0x7ffacc380000 1527808 C:\Windows\system32\lsasrv.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation Библиотека DLL сервера LSA 131795770645375702 0x7ffacc5c0000 352256 C:\Windows\SYSTEM32\winsta.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Winstation Library 131795770645375702 0x7ffacc620000 176128 C:\Windows\system32\bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795770645375702 0x7ffacc6f0000 311296 C:\Windows\System32\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795770645375702 0x7ffacc740000 81920 C:\Windows\System32\profapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Profile Basic API 131795770645375702 0x7ffacc760000 65536 C:\Windows\System32\MSASN1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ASN.1 Runtime APIs 131795770645375702 0x7ffacc8f0000 1003520 C:\Windows\System32\ucrtbase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645375702 0x7ffacc9f0000 434176 C:\Windows\System32\bcryptprimitives.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Cryptographic Primitives Library 131795770645375702 0x7ffacd270000 2215936 C:\Windows\System32\KERNELBASE.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645375702 0x7ffacd490000 1871872 C:\Windows\System32\CRYPT32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API32 криптографии 131795770645375702 0x7ffacd710000 638976 C:\Windows\System32\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645375702 0x7ffaced20000 782336 C:\Windows\System32\OLEAUT32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795770645375702 0x7ffacee50000 1183744 C:\Windows\System32\RPCRT4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795770645375702 0x7ffacef80000 32768 C:\Windows\System32\NSI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation NSI User-mode interface DLL 131795770645375702 0x7ffacef90000 647168 C:\Windows\System32\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795770645375702 0x7ffacf0d0000 704512 C:\Windows\System32\KERNEL32.DLL 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645375702 0x7ffacf180000 376832 C:\Windows\System32\WLDAP32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Win32 LDAP API DLL 131795770645375702 0x7ffacf820000 434176 C:\Windows\System32\WS2_32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation 32-разрядная библиотека Windows Socket 2.0 131795770645375702 0x7ffacfb30000 2916352 C:\Windows\System32\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795770645375702 0x7ffacfe20000 663552 C:\Windows\System32\advapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795770645375702 0x7ffad0210000 364544 C:\Windows\System32\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795770645375702 0x7ffad0270000 1908736 C:\Windows\SYSTEM32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 20 704 580 4 00000000:000003e4 131765776284978539 0 0 1 Обязательная метка\Обязательный уровень системы NT AUTHORITY\NETWORK SERVICE svchost.exe C:\Windows\system32\svchost.exe C:\Windows\system32\svchost.exe -k RPCSS Microsoft Corporation 10.0.14393.0 (rs1_release.160715-1616) Хост-процесс для служб Windows 131795770645375918 0x7ff718c20000 57344 C:\Windows\system32\svchost.exe 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Хост-процесс для служб Windows 131795770645375918 0x7ffabae40000 110592 C:\Windows\SYSTEM32\capauthz.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API авторизации возможностей 131795770645375918 0x7ffac4450000 86016 C:\Windows\SYSTEM32\usermgrcli.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation UserMgr API DLL 131795770645375918 0x7ffac6610000 40960 C:\Windows\System32\rasadhlp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Remote Access AutoDial Helper 131795770645375918 0x7ffac8250000 28672 C:\Windows\system32\wshhyperv.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Hyper-V Winsock2 Helper DLL 131795770645375918 0x7ffac8420000 434176 C:\Windows\system32\fwpuclnt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API пользовательского режима FWP/IPsec 131795770645375918 0x7ffaca4e0000 77824 C:\Windows\SYSTEM32\wtsapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Remote Desktop Session Host Server SDK APIs 131795770645375918 0x7ffacb360000 176128 C:\Windows\system32\fwbase.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Firewall Base DLL 131795770645375918 0x7ffacb460000 548864 C:\Windows\system32\FirewallAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API брандмауэра Windows 131795770645375918 0x7ffacb5c0000 913408 c:\windows\system32\rpcss.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Distributed COM Services 131795770645375918 0x7ffacb6a0000 73728 C:\Windows\system32\RpcRtRemote.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Remote RPC Extension 131795770645375918 0x7ffacb6c0000 98304 c:\windows\system32\rpcepmap.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Сопоставитель конечных точек RPC 131795770645375918 0x7ffacb920000 81920 C:\Windows\SYSTEM32\WLDP.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Политика блокировки Windows 131795770645375918 0x7ffacbd30000 229376 C:\Windows\SYSTEM32\IPHLPAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API вспомогательного приложения IP 131795770645375918 0x7ffacbd70000 659456 C:\Windows\SYSTEM32\DNSAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Динамическая библиотека API DNS-клиента 131795770645375918 0x7ffacbf30000 49152 C:\Windows\system32\NtlmShared.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation NTLM Shared Functionality 131795770645375918 0x7ffacbf40000 421888 C:\Windows\system32\msv1_0.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Authentication Package v1.0 131795770645375918 0x7ffacbfb0000 376832 C:\Windows\system32\mswsock.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширение поставщика службы API Microsoft Windows Sockets 2.0 131795770645375918 0x7ffacc010000 86016 C:\Windows\system32\cryptdll.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Cryptography Manager 131795770645375918 0x7ffacc350000 180224 C:\Windows\system32\sspicli.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Security Support Provider Interface 131795770645375918 0x7ffacc5c0000 352256 C:\Windows\SYSTEM32\WINSTA.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Winstation Library 131795770645375918 0x7ffacc620000 176128 C:\Windows\system32\bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795770645375918 0x7ffacc6e0000 61440 C:\Windows\System32\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795770645375918 0x7ffacc6f0000 311296 C:\Windows\System32\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795770645375918 0x7ffacc760000 65536 C:\Windows\System32\MSASN1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ASN.1 Runtime APIs 131795770645375918 0x7ffacc8f0000 1003520 C:\Windows\System32\ucrtbase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645375918 0x7ffacc9f0000 434176 C:\Windows\System32\bcryptPrimitives.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Cryptographic Primitives Library 131795770645375918 0x7ffacca60000 122880 C:\Windows\System32\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795770645375918 0x7ffacca80000 348160 C:\Windows\System32\WINTRUST.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation Microsoft Trust Verification APIs 131795770645375918 0x7ffacd270000 2215936 C:\Windows\System32\KERNELBASE.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645375918 0x7ffacd490000 1871872 C:\Windows\System32\CRYPT32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API32 криптографии 131795770645375918 0x7ffacee50000 1183744 C:\Windows\System32\RPCRT4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795770645375918 0x7ffacef80000 32768 C:\Windows\System32\NSI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation NSI User-mode interface DLL 131795770645375918 0x7ffacef90000 647168 C:\Windows\System32\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795770645375918 0x7ffacf030000 651264 C:\Windows\System32\clbcatq.dll 2001.12.10941.16384 (rs1_release.160715-1616) Microsoft Corporation COM+ Configuration Catalog 131795770645375918 0x7ffacf0d0000 704512 C:\Windows\System32\KERNEL32.DLL 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645375918 0x7ffacf770000 212992 C:\Windows\System32\GDI32.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation GDI Client DLL 131795770645375918 0x7ffacf820000 434176 C:\Windows\System32\WS2_32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation 32-разрядная библиотека Windows Socket 2.0 131795770645375918 0x7ffacf8c0000 1462272 C:\Windows\System32\USER32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795770645375918 0x7ffacfb30000 2916352 C:\Windows\System32\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795770645375918 0x7ffacfe20000 663552 C:\Windows\System32\advapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795770645375918 0x7ffad0070000 1277952 C:\Windows\System32\ole32.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft OLE для Windows 131795770645375918 0x7ffad0210000 364544 C:\Windows\System32\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795770645375918 0x7ffad0270000 1908736 C:\Windows\SYSTEM32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 21 808 520 18 00000000:0000c8d4 131765776288401882 0 0 1 Обязательная метка\Обязательный уровень системы Window Manager\DWM-1 dwm.exe C:\Windows\system32\dwm.exe "dwm.exe" Microsoft Corporation 10.0.14393.0 (rs1_release.160715-1616) Диспетчер окон рабочего стола 131795770645376024 0x7ff683990000 77824 C:\Windows\system32\dwm.exe 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Диспетчер окон рабочего стола 131795770645376024 0x7ffac3810000 167936 C:\Windows\system32\Cabinet.dll 5.00 (rs1_release.160715-1616) Microsoft Corporation Microsoft® Cabinet File API 131795770645376024 0x7ffac60e0000 221184 C:\Windows\system32\XmlLite.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft XmlLite Library 131795770645376024 0x7ffac6f50000 5632000 C:\Windows\system32\d2d1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека Microsoft D2D 131795770645376024 0x7ffac7720000 1601536 C:\Windows\System32\OneCoreUAPCommonProxyStub.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation OneCoreUAP Common Proxy Stub 131795770645376024 0x7ffac7b70000 569344 C:\Windows\System32\Windows.Gaming.Input.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Gaming Input API 131795770645376024 0x7ffac7fc0000 2674688 C:\Windows\system32\d3d10warp.dll 10.0.14393.576 (rs1_release_inmarket.161208-2252) Microsoft Corporation Direct3D 10 Rasterizer 131795770645376024 0x7ffac88a0000 2842624 C:\Windows\system32\d3d11.dll 10.0.14393.953 (rs1_release_inmarket.170303-1614) Microsoft Corporation Direct3D 11 Runtime 131795770645376024 0x7ffac8f90000 45056 C:\Windows\system32\avrt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Среда выполнения мультимедиа в реальном времени 131795770645376024 0x7ffac92e0000 1269760 C:\Windows\SYSTEM32\wintypes.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL основных типов Windows 131795770645376024 0x7ffac9500000 2682880 C:\Windows\system32\CoreUIComponents.dll 131795770645376024 0x7ffac9a30000 249856 C:\Windows\SYSTEM32\ism32k.dll 131795770645376024 0x7ffac9ec0000 294912 C:\Windows\System32\UIAnimation.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Animation Manager 131795770645376024 0x7ffac9f50000 1736704 C:\Windows\system32\WindowsCodecs.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Microsoft Windows Codecs Library 131795770645376024 0x7ffaca110000 94208 C:\Windows\SYSTEM32\dwmghost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DWMGhost 131795770645376024 0x7ffaca5e0000 155648 C:\Windows\system32\dwmapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Интерфейс API диспетчера окон рабочего стола (Майкрософт) 131795770645376024 0x7ffaca640000 770048 C:\Windows\system32\CoreMessaging.dll 10.0.14393.0 Microsoft Corporation Microsoft CoreMessaging Dll 131795770645376024 0x7ffaca770000 1380352 C:\Windows\system32\dcomp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft DirectComposition Library 131795770645376024 0x7ffaca8d0000 2318336 C:\Windows\system32\dwmcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека ядра Microsoft DWM 131795770645376024 0x7ffacac90000 856064 C:\Windows\SYSTEM32\udwm.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Диспетчер окон рабочего стола Майкрософт 131795770645376024 0x7ffacadc0000 167936 C:\Windows\SYSTEM32\dwmredir.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Компонент перенаправления диспетчера окон рабочего стола Microsoft 131795770645376024 0x7ffacadf0000 499712 C:\Windows\system32\apphelp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиентская библиотека совместимости приложений 131795770645376024 0x7ffacaf00000 610304 C:\Windows\system32\uxtheme.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека тем UxTheme (Microsoft) 131795770645376024 0x7ffacb1e0000 1163264 C:\Windows\System32\twinapi.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation twinapi.appcore 131795770645376024 0x7ffacb780000 651264 C:\Windows\system32\dxgi.dll 10.0.14393.953 (rs1_release_inmarket.170303-1614) Microsoft Corporation DirectX Graphics Infrastructure 131795770645376024 0x7ffacc620000 176128 C:\Windows\System32\bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795770645376024 0x7ffacc6e0000 61440 C:\Windows\System32\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795770645376024 0x7ffacc760000 65536 C:\Windows\System32\MSASN1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ASN.1 Runtime APIs 131795770645376024 0x7ffacc8f0000 1003520 C:\Windows\System32\ucrtbase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645376024 0x7ffacc9f0000 434176 C:\Windows\System32\bcryptPrimitives.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Cryptographic Primitives Library 131795770645376024 0x7ffacca60000 122880 C:\Windows\System32\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795770645376024 0x7ffaccae0000 692224 C:\Windows\System32\shcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795770645376024 0x7ffacd270000 2215936 C:\Windows\System32\KERNELBASE.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645376024 0x7ffacd490000 1871872 C:\Windows\System32\CRYPT32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API32 криптографии 131795770645376024 0x7ffacd710000 638976 C:\Windows\System32\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645376024 0x7ffacd7b0000 270336 C:\Windows\System32\cfgmgr32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Configuration Manager DLL 131795770645376024 0x7ffaced20000 782336 C:\Windows\System32\OLEAUT32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795770645376024 0x7ffacee50000 1183744 C:\Windows\System32\RPCRT4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795770645376024 0x7ffacef90000 647168 C:\Windows\System32\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795770645376024 0x7ffacf030000 651264 C:\Windows\System32\clbcatq.dll 2001.12.10941.16384 (rs1_release.160715-1616) Microsoft Corporation COM+ Configuration Catalog 131795770645376024 0x7ffacf0d0000 704512 C:\Windows\System32\KERNEL32.DLL 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645376024 0x7ffacf770000 212992 C:\Windows\System32\gdi32.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation GDI Client DLL 131795770645376024 0x7ffacf890000 188416 C:\Windows\System32\IMM32.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Multi-User Windows IMM32 API Client DLL 131795770645376024 0x7ffacf8c0000 1462272 C:\Windows\System32\USER32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795770645376024 0x7ffacfb30000 2916352 C:\Windows\System32\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795770645376024 0x7ffacfe20000 663552 C:\Windows\System32\advapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795770645376024 0x7ffad0210000 364544 C:\Windows\System32\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795770645376024 0x7ffad0270000 1908736 C:\Windows\SYSTEM32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 22 904 580 4 00000000:000003e7 131765776293087855 0 0 1 Обязательная метка\Обязательный уровень системы NT AUTHORITY\СИСТЕМА svchost.exe C:\Windows\System32\svchost.exe C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted Microsoft Corporation 10.0.14393.0 (rs1_release.160715-1616) Хост-процесс для служб Windows 131795770645376243 0x259b0640000 12288 C:\Windows\system32\SFC.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows File Protection 131795770645376243 0x7ff718c20000 57344 C:\Windows\System32\svchost.exe 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Хост-процесс для служб Windows 131795770645376243 0x7ffaab830000 278528 c:\windows\system32\netman.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Диспетчер сетевых подключений 131795770645376243 0x7ffaab880000 532480 c:\windows\system32\MPRAPI.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation Windows NT MP Router Administration DLL 131795770645376243 0x7ffaab910000 905216 c:\windows\system32\RASDLG.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API общих диалогов службы удаленного доступа 131795770645376243 0x7ffab1260000 10350592 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\clr.dll 4.7.2117.0 built by: NET47REL1LAST Microsoft Corporation Microsoft .NET Runtime Common Language Runtime - WorkStation 131795770645376243 0x7ffab2460000 2822144 C:\Windows\System32\netshell.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Оболочка сетевых подключений 131795770645376243 0x7ffab7d80000 753664 c:\windows\system32\RASAPI32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API удаленного доступа 131795770645376243 0x7ffabae60000 77824 C:\Windows\System32\DEVRTL.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Device Management Run Time Library 131795770645376243 0x7ffabb430000 65536 C:\Windows\System32\pcacli.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Program Compatibility Assistant Client Module 131795778252487651 0x7ffabc160000 688128 C:\Windows\System32\aeinv.dll 10.0.17060.1029 (WinBuild.160101.0800) Microsoft Corporation Application Inventory Component 131795770645376243 0x7ffabc510000 90112 C:\Windows\system32\execmodelproxy.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ExecModelProxy 131795770645376243 0x7ffabcf30000 110592 C:\Windows\System32\MPR.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека маршрутизации для нескольких служб доступа 131795770645376243 0x7ffabcf50000 921600 C:\Windows\System32\drvstore.dll 10.0.14393.351 (rs1_release_inmarket.161014-1755) Microsoft Corporation Driver Store API 131795770645376243 0x7ffabdd60000 425984 C:\Windows\System32\AppXDeploymentClient.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL-библиотека клиента развертывания AppX 131795770645376243 0x7ffabef80000 69632 C:\Windows\System32\sfc_os.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows File Protection 131795778007496118 0x7ffabefd0000 258048 C:\Windows\System32\aepic.dll 10.0.17060.1029 (WinBuild.160101.0800) Microsoft Corporation Application Experience Program Cache 131795770645376243 0x7ffabfa00000 1011712 C:\Windows\SYSTEM32\MSVCR120_CLR0400.dll 12.00.52519.0 built by: VSWINSERVICING Microsoft Corporation Microsoft® C Runtime Library 131795770645376243 0x7ffac0610000 3088384 C:\Windows\System32\MSI.DLL 5.0.14393.2155 Microsoft Corporation Windows Installer 131795770645376243 0x7ffac0bf0000 3559424 C:\Windows\System32\ActXPrxy.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation ActiveX Interface Marshaling Library 131795770645376243 0x7ffac0fc0000 294912 C:\Windows\system32\spp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека общих точек защиты Microsoft® Windows 131795770645376243 0x7ffac1010000 417792 C:\Windows\system32\MSCOREE.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft .NET Runtime Execution Engine 131795770645376243 0x7ffac10f0000 421888 c:\windows\system32\storsvc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Службы хранения 131795770645376243 0x7ffac1240000 638976 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscoreei.dll 4.7.2623.0 built by: NET471REL1LAST_C Microsoft Corporation Microsoft .NET Runtime Execution Engine 131795781037721051 0x7ffac1660000 688128 C:\Windows\System32\aeinv.dll 10.0.17060.1029 (WinBuild.160101.0800) Microsoft Corporation Application Inventory Component 131795770645376243 0x7ffac1e80000 507904 C:\Windows\System32\NetSetupShim.dll 10.0.14393.1532 (rs1_release_d.170711-1840) Microsoft Corporation Network Configuration API 131795770645376243 0x7ffac1fd0000 999424 C:\Windows\system32\wbem\fastprox.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation WMI Custom Marshaller 131795770645376243 0x7ffac20d0000 110592 c:\windows\system32\RMCLIENT.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Resource Manager Client 131795770645376243 0x7ffac21d0000 81920 C:\Windows\system32\wbem\wbemsvc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation WMI 131795770645376243 0x7ffac2360000 57344 c:\windows\system32\TimeBrokerClient.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Time Broker Client Library 131795770645376243 0x7ffac23c0000 331776 C:\Windows\System32\OneCoreCommonProxyStub.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation OneCore Common Proxy Stub 131795770645376243 0x7ffac2420000 466944 c:\windows\system32\das.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служба сопоставления устройств 131795770645376243 0x7ffac2530000 270336 C:\Windows\system32\hnetcfgclient.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиент API конфигурации домашней сети 131795770645376243 0x7ffac2750000 106496 c:\windows\system32\bcd.dll 10.0.14393.1794 (rs1_release.171008-1615) Microsoft Corporation BCD DLL 131795770645376243 0x7ffac29f0000 159744 C:\Windows\System32\NetSetupApi.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Network Configuration API 131795770645376243 0x7ffac2a20000 81920 c:\windows\system32\rtutils.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Routing Utilities 131795770645376243 0x7ffac2b80000 40960 C:\Windows\System32\VERSION.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Version Checking and File Installation Libraries 131795770645376243 0x7ffac3270000 40960 c:\windows\system32\FLTLIB.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека фильтров 131795770645376243 0x7ffac34c0000 81920 C:\Windows\system32\vss_ps.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation Microsoft® Volume Shadow Copy Service proxy/stub 131795770645376243 0x7ffac3840000 3088384 c:\windows\system32\ESENT.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширяемая подсистема хранения данных ESE для Microsoft(R) Windows(R) 131795778007645121 0x7ffac3cb0000 2772992 C:\Windows\System32\iertutil.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служебная программа времени выполнения для Internet Explorer 131795770645376243 0x7ffac4050000 118784 c:\windows\system32\wdi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Инфраструктура диагностики Windows 131795770645376243 0x7ffac41c0000 139264 c:\windows\system32\trkwks.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиент отслеживания изменившихся связей 131795770645376243 0x7ffac4220000 520192 C:\Windows\SYSTEM32\wbemcomn.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation WMI 131795770645376243 0x7ffac4450000 86016 C:\Windows\SYSTEM32\usermgrcli.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation UserMgr API DLL 131795770645376243 0x7ffac4470000 65536 C:\Windows\system32\wbem\wbemprox.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation WMI 131795770645376243 0x7ffac4650000 516096 c:\windows\system32\pcasvc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служба помощника по совместимости программ 131795770645376243 0x7ffac4f40000 122880 C:\Windows\system32\radardt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Программа обнаружения нехватки системных ресурсов Windows 131795770645376243 0x7ffac4fd0000 618496 C:\Windows\System32\wlidprov.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft® Account Provider 131795770645376243 0x7ffac5b30000 114688 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\fusion.dll 4.6.1586.0 built by: NETFXREL2 Microsoft Corporation Assembly manager 131795770645376243 0x7ffac5b50000 180224 c:\windows\system32\dssvc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL службы NT для службы совместного доступа к данным 131795770645376243 0x7ffac5c50000 131072 c:\windows\system32\rasman.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Remote Access Connection Manager 131795770645376243 0x7ffac60e0000 221184 C:\Windows\System32\XmlLite.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft XmlLite Library 131795770645376243 0x7ffac6120000 966656 c:\windows\system32\sysmain.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Хост службы Superfetch 131795770645376243 0x7ffac6410000 98304 C:\Windows\system32\VssTrace.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека трассировки службы теневого копирования тома Microsoft® 131795770645376243 0x7ffac6430000 1581056 C:\Windows\system32\VSSAPI.DLL 10.0.14393.953 (rs1_release_inmarket.170303-1614) Microsoft Corporation Microsoft® Volume Shadow Copy Requestor/Writer Services API DLL 131795770645376243 0x7ffac6c40000 2596864 C:\Windows\WinSxS\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.14393.953_none_42151e83c686086b\Comctl32.dll 6.10 (rs1_release_inmarket.170303-1614) Microsoft Corporation Библиотека элементов управления взаимодействия с пользователем 131795770645376243 0x7ffac79c0000 57344 C:\Windows\System32\npmproxy.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Network List Manager Proxy 131795770645376243 0x7ffac7b10000 217088 C:\Windows\SYSTEM32\WUDFPlatform.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Driver Foundation - библиотека платформ пользовательского режима 131795770645376243 0x7ffac7b50000 114688 c:\windows\system32\wudfsvc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Driver Foundation (WDF) - служба среды выполнения платформы драйвера режима пользователя 131795770645376243 0x7ffac8810000 45056 c:\windows\system32\WINNSI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Network Store Information RPC interface 131795770645376243 0x7ffac8880000 69632 c:\windows\system32\WMICLNT.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation WMI Client API 131795770645376243 0x7ffac8cf0000 815104 C:\Windows\System32\taskschd.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Task Scheduler COM API 131795770645376243 0x7ffac9290000 40960 c:\windows\system32\DSROLE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DS Setup Client DLL 131795770645376243 0x7ffac9480000 462848 c:\windows\system32\MMDevAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation MMDevice API 131795770645376243 0x7ffac9790000 98304 C:\Windows\System32\nlaapi.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Network Location Awareness 2 131795770645376243 0x7ffac9800000 376832 c:\windows\system32\audioendpointbuilder.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Средство построения конечных точек Windows Audio 131795770645376243 0x7ffac9de0000 94208 C:\Windows\System32\portabledeviceconnectapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Portable Device Connection API Components 131795770645376243 0x7ffac9e00000 647168 C:\Windows\SYSTEM32\PortableDeviceApi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Компоненты API для переносных устройств Windows 131795770645376243 0x7ffac9f10000 221184 C:\Windows\System32\netprofm.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Network List Manager 131795770645376243 0x7ffaca100000 36864 C:\Windows\SYSTEM32\httpprxc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Proxy Manager Provider RPC interface 131795770645376243 0x7ffaca130000 204800 C:\Windows\SYSTEM32\windows.devices.radios.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows.Devices.Radios DLL 131795770645376243 0x7ffaca1f0000 65536 C:\Windows\SYSTEM32\storageusage.dll 10.0.14393.82 (rs1_release.160805-1735) Microsoft Corporation Storage Usage 131795770645376243 0x7ffaca250000 49152 C:\Windows\SYSTEM32\bi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Background Broker Infrastructure Client Library 131795770645376243 0x7ffaca260000 45056 c:\windows\system32\SystemEventsBrokerClient.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation system Events Broker Client Library 131795770645376243 0x7ffaca2d0000 360448 c:\windows\system32\ncbservice.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Посредник подключений к сети 131795770645376243 0x7ffaca340000 1593344 c:\windows\system32\PROPSYS.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Система страниц свойств (Майкрософт) 131795770645376243 0x7ffaca4e0000 77824 c:\windows\system32\WTSAPI32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Remote Desktop Session Host Server SDK APIs 131795770645376243 0x7ffaca710000 65536 C:\Windows\system32\pcadm.dll 10.0.14393.2189 (rs1_release.180329-1711) Microsoft Corporation Program Compatibility Assistant Diagnostic Module 131795770645376243 0x7ffacad70000 278528 c:\windows\system32\BrokerLib.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Broker Base Library 131795770645376243 0x7ffacadf0000 499712 c:\windows\system32\apphelp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиентская библиотека совместимости приложений 131795770645376243 0x7ffacb1e0000 1163264 C:\Windows\SYSTEM32\twinapi.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation twinapi.appcore 131795770645376243 0x7ffacb3f0000 163840 C:\Windows\System32\DEVOBJ.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Device Information Set DLL 131795770645376243 0x7ffacb420000 204800 C:\Windows\SYSTEM32\ntmarta.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик Windows NT MARTA 131795770645376243 0x7ffacb920000 81920 C:\Windows\SYSTEM32\WLDP.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Политика блокировки Windows 131795770645376243 0x7ffacbbb0000 208896 C:\Windows\system32\rsaenh.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Enhanced Cryptographic Provider 131795770645376243 0x7ffacbbf0000 40960 c:\windows\system32\DPAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Data Protection API 131795770645376243 0x7ffacbd30000 229376 c:\windows\system32\IPHLPAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API вспомогательного приложения IP 131795770645376243 0x7ffacbe40000 126976 c:\windows\system32\USERENV.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Userenv 131795770645376243 0x7ffacbfb0000 376832 C:\Windows\system32\mswsock.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширение поставщика службы API Microsoft Windows Sockets 2.0 131795770645376243 0x7ffacc150000 94208 C:\Windows\System32\CRYPTSP.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Cryptographic Service Provider API 131795770645376243 0x7ffacc170000 45056 C:\Windows\System32\CRYPTBASE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base cryptographic API DLL 131795770645376243 0x7ffacc350000 180224 c:\windows\system32\SspiCli.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Security Support Provider Interface 131795770645376243 0x7ffacc500000 102400 c:\windows\system32\EventAggregation.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Event Aggregation User Mode Library 131795770645376243 0x7ffacc520000 622592 C:\Windows\system32\SXS.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Fusion 2.5 131795770645376243 0x7ffacc5c0000 352256 c:\windows\system32\WINSTA.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Winstation Library 131795770645376243 0x7ffacc620000 176128 c:\windows\system32\bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795770645376243 0x7ffacc6e0000 61440 C:\Windows\System32\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795770645376243 0x7ffacc6f0000 311296 C:\Windows\System32\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795770645376243 0x7ffacc740000 81920 C:\Windows\System32\profapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Profile Basic API 131795770645376243 0x7ffacc760000 65536 C:\Windows\System32\MSASN1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ASN.1 Runtime APIs 131795770645376243 0x7ffacc8f0000 1003520 C:\Windows\System32\ucrtbase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645376243 0x7ffacc9f0000 434176 C:\Windows\System32\bcryptPrimitives.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Cryptographic Primitives Library 131795770645376243 0x7ffacca60000 122880 C:\Windows\System32\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795770645376243 0x7ffacca80000 348160 C:\Windows\System32\WINTRUST.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation Microsoft Trust Verification APIs 131795770645376243 0x7ffaccae0000 692224 C:\Windows\System32\shcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795770645376243 0x7ffaccb90000 7180288 C:\Windows\System32\windows.storage.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API хранения Microsoft WinRT 131795770645376243 0x7ffacd270000 2215936 C:\Windows\System32\KERNELBASE.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645376243 0x7ffacd490000 1871872 C:\Windows\System32\CRYPT32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API32 криптографии 131795770645376243 0x7ffacd710000 638976 C:\Windows\System32\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645376243 0x7ffacd7b0000 270336 C:\Windows\System32\cfgmgr32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Configuration Manager DLL 131795770645376243 0x7ffacd810000 22056960 C:\Windows\System32\SHELL32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Общая библиотека оболочки Windows 131795770645376243 0x7ffaced20000 782336 C:\Windows\System32\OLEAUT32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795770645376243 0x7ffacede0000 450560 C:\Windows\System32\coml2.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft COM for Windows 131795770645376243 0x7ffacee50000 1183744 C:\Windows\System32\RPCRT4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795770645376243 0x7ffacef80000 32768 C:\Windows\System32\NSI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation NSI User-mode interface DLL 131795770645376243 0x7ffacef90000 647168 C:\Windows\System32\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795770645376243 0x7ffacf030000 651264 C:\Windows\System32\clbcatq.dll 2001.12.10941.16384 (rs1_release.160715-1616) Microsoft Corporation COM+ Configuration Catalog 131795770645376243 0x7ffacf0d0000 704512 C:\Windows\System32\KERNEL32.DLL 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645376243 0x7ffacf340000 4362240 C:\Windows\System32\SETUPAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Setup API 131795770645376243 0x7ffacf770000 212992 C:\Windows\System32\GDI32.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation GDI Client DLL 131795770645376243 0x7ffacf820000 434176 C:\Windows\System32\WS2_32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation 32-разрядная библиотека Windows Socket 2.0 131795770645376243 0x7ffacf8c0000 1462272 C:\Windows\System32\user32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795770645376243 0x7ffacfb30000 2916352 C:\Windows\System32\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795770645376243 0x7ffacfe20000 663552 C:\Windows\System32\ADVAPI32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795770645376243 0x7ffad0070000 1277952 C:\Windows\System32\ole32.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft OLE для Windows 131795770645376243 0x7ffad01b0000 335872 C:\Windows\System32\SHLWAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека небольших программ оболочки 131795770645376243 0x7ffad0210000 364544 C:\Windows\System32\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795770645376243 0x7ffad0270000 1908736 C:\Windows\SYSTEM32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 23 96 580 4 00000000:000003e5 131765776304995849 0 0 1 Обязательная метка\Обязательный уровень системы NT AUTHORITY\LOCAL SERVICE svchost.exe C:\Windows\system32\svchost.exe C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork Microsoft Corporation 10.0.14393.0 (rs1_release.160715-1616) Хост-процесс для служб Windows 131795770645376384 0x7ff718c20000 57344 C:\Windows\system32\svchost.exe 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Хост-процесс для служб Windows 131795770645376384 0x7ffac0bf0000 3559424 C:\Windows\System32\ActXPrxy.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation ActiveX Interface Marshaling Library 131795770645376384 0x7ffac1fd0000 999424 C:\Windows\system32\wbem\fastprox.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation WMI Custom Marshaller 131795770645376384 0x7ffac21b0000 77824 C:\Windows\System32\srumapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation System Resource Usage Monitor API 131795770645376384 0x7ffac21d0000 81920 C:\Windows\system32\wbem\wbemsvc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation WMI 131795770645376384 0x7ffac2510000 102400 C:\Windows\System32\energyprov.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Energy System Resource Usage Monitor (SRUM) provider 131795770645376384 0x7ffac2580000 49152 C:\Windows\System32\ncuprov.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Network Connectivity Statistics Provider for System Resource Usage Monitor Service 131795770645376384 0x7ffac2b90000 90112 C:\Windows\System32\nduprov.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик сетевой статистики для службы отслеживания использования ресурсов системы 131795770645376384 0x7ffac2bb0000 106496 C:\Windows\SYSTEM32\appsruprov.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Application System Resource Usage Monitor (SRUM) provider 131795770645376384 0x7ffac2bd0000 131072 C:\Windows\System32\eeprov.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Energy Estimator SRUM provider 131795770645376384 0x7ffac2c20000 45056 C:\Windows\system32\wfapigp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Firewall GPO Helper dll 131795770645376384 0x7ffac2d70000 57344 C:\Windows\System32\wpnsruprov.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SRUM provider for WPN 131795770645376384 0x7ffac3310000 225280 C:\Windows\System32\srumsvc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation System Resource Usage Monitor Service 131795770645376384 0x7ffac3730000 36864 C:\Windows\system32\pnpts.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation PlugPlay Troubleshooter 131795770645376384 0x7ffac3840000 3088384 C:\Windows\system32\ESENT.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширяемая подсистема хранения данных ESE для Microsoft(R) Windows(R) 131795770645376384 0x7ffac3bd0000 106496 c:\windows\system32\ncdautosetup.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL службы автоматической настройки сетевых устройств 131795770645376384 0x7ffac3cb0000 2772992 C:\Windows\SYSTEM32\iertutil.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служебная программа времени выполнения для Internet Explorer 131795770645376384 0x7ffac3f60000 225280 c:\windows\system32\FWPolicyIOMgr.dll 10.0.14393.2189 (rs1_release.180329-1711) Microsoft Corporation FwPolicyIoMgr DLL 131795770645376384 0x7ffac4000000 274432 C:\Windows\SYSTEM32\policymanager.dll 10.0.14393.2035 (rs1_release_inmarket.180110-1910) Microsoft Corporation Policy Manager DLL 131795770645376384 0x7ffac4050000 118784 c:\windows\system32\wdi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Инфраструктура диагностики Windows 131795770645376384 0x7ffac41f0000 40960 C:\Windows\system32\adhapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AD harvest sites and subnets API 131795770645376384 0x7ffac4220000 520192 C:\Windows\SYSTEM32\wbemcomn.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation WMI 131795770645376384 0x7ffac4470000 65536 C:\Windows\system32\wbem\wbemprox.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation WMI 131795770645376384 0x7ffac4500000 200704 c:\windows\system32\dps.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служба политики диагностики WDI 131795770645376384 0x7ffac4cd0000 933888 c:\windows\system32\mpssvc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служба защиты (Microsoft) 131795770645376384 0x7ffac4f40000 122880 C:\Windows\system32\radardt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Программа обнаружения нехватки системных ресурсов Windows 131795770645376384 0x7ffac66c0000 32768 C:\Windows\system32\wship6.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL помощника Winsock2 (TL/IPv6) 131795770645376384 0x7ffac66d0000 32768 C:\Windows\system32\wshtcpip.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL помощника службы Winsock2 (TL/IPv4) 131795770645376384 0x7ffac6700000 40960 C:\Windows\system32\wshqos.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL помощника службы QoS Winsock2 131795770645376384 0x7ffac6740000 53248 C:\Windows\system32\dtsh.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека API состояния общего доступа и обнаружения 131795770645376384 0x7ffac6990000 69632 c:\windows\system32\deviceassociation.dll 10.0.14393.82 (rs1_release.160805-1735) Microsoft Corporation Device Association Client DLL 131795770645376384 0x7ffac74b0000 827392 c:\windows\system32\bfe.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служба базовой фильтрации 131795770645376384 0x7ffac7580000 1077248 C:\Windows\SYSTEM32\mrmcorer.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Windows MRM 131795770645376384 0x7ffac79c0000 57344 C:\Windows\System32\npmproxy.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Network List Manager Proxy 131795770645376384 0x7ffac83d0000 106496 C:\Windows\SYSTEM32\dhcpcsvc.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служба DHCP-клиента 131795770645376384 0x7ffac83f0000 90112 C:\Windows\SYSTEM32\dhcpcsvc6.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиент DHCPv6 131795770645376384 0x7ffac8420000 434176 c:\windows\system32\fwpuclnt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API пользовательского режима FWP/IPsec 131795770645376384 0x7ffac8810000 45056 C:\Windows\SYSTEM32\WINNSI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Network Store Information RPC interface 131795770645376384 0x7ffac8cf0000 815104 C:\Windows\System32\taskschd.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Task Scheduler COM API 131795770645376384 0x7ffac90b0000 90112 c:\windows\system32\wkscli.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Workstation Service Client DLL 131795770645376384 0x7ffac9220000 397312 C:\Windows\SYSTEM32\wevtapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API настройки и использования событий 131795770645376384 0x7ffac9f10000 221184 C:\Windows\System32\netprofm.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Network List Manager 131795770645376384 0x7ffaca100000 36864 C:\Windows\SYSTEM32\httpprxc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Proxy Manager Provider RPC interface 131795770645376384 0x7ffaca170000 45056 c:\windows\system32\ktmw32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows KTM Win32 Client DLL 131795770645376384 0x7ffaca340000 1593344 C:\Windows\System32\PROPSYS.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Система страниц свойств (Майкрософт) 131795770645376384 0x7ffaca4e0000 77824 C:\Windows\system32\WTSAPI32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Remote Desktop Session Host Server SDK APIs 131795770645376384 0x7ffaca640000 770048 c:\windows\system32\coremessaging.dll 10.0.14393.0 Microsoft Corporation Microsoft CoreMessaging Dll 131795770645376384 0x7ffacb070000 69632 C:\Windows\SYSTEM32\embeddedmodesvcapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Embedded Mode Service Client DLL 131795770645376384 0x7ffacb140000 593920 c:\windows\system32\msvcp110_win.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Microsoft® STL110 C++ Runtime Library 131795770645376384 0x7ffacb360000 176128 C:\Windows\system32\fwbase.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Firewall Base DLL 131795770645376384 0x7ffacb3f0000 163840 C:\Windows\system32\DEVOBJ.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Device Information Set DLL 131795770645376384 0x7ffacb420000 204800 C:\Windows\system32\ntmarta.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик Windows NT MARTA 131795770645376384 0x7ffacb460000 548864 C:\Windows\system32\FirewallAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API брандмауэра Windows 131795770645376384 0x7ffacb6f0000 143360 C:\Windows\SYSTEM32\gpapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиентские функции API групповой политики 131795770645376384 0x7ffacb920000 81920 C:\Windows\SYSTEM32\WLDP.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Политика блокировки Windows 131795770645376384 0x7ffacb960000 303104 c:\windows\system32\AUTHZ.dll 10.0.14393.1737 (rs1_release_inmarket.170914-1249) Microsoft Corporation Authorization Framework 131795770645376384 0x7ffacbd30000 229376 c:\windows\system32\IPHLPAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API вспомогательного приложения IP 131795770645376384 0x7ffacbd70000 659456 c:\windows\system32\DNSAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Динамическая библиотека API DNS-клиента 131795770645376384 0x7ffacbe20000 53248 c:\windows\system32\netutils.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API Helpers DLL 131795770645376384 0x7ffacbfb0000 376832 C:\Windows\system32\mswsock.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширение поставщика службы API Microsoft Windows Sockets 2.0 131795770645376384 0x7ffacc170000 45056 C:\Windows\system32\CRYPTBASE.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base cryptographic API DLL 131795770645376384 0x7ffacc350000 180224 c:\windows\system32\SspiCli.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Security Support Provider Interface 131795770645376384 0x7ffacc5c0000 352256 C:\Windows\system32\WINSTA.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Winstation Library 131795770645376384 0x7ffacc620000 176128 c:\windows\system32\bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795770645376384 0x7ffacc6e0000 61440 C:\Windows\System32\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795770645376384 0x7ffacc6f0000 311296 C:\Windows\System32\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795770645376384 0x7ffacc740000 81920 C:\Windows\System32\profapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Profile Basic API 131795770645376384 0x7ffacc760000 65536 C:\Windows\System32\MSASN1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ASN.1 Runtime APIs 131795770645376384 0x7ffacc8f0000 1003520 C:\Windows\System32\ucrtbase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645376384 0x7ffacc9f0000 434176 C:\Windows\System32\bcryptPrimitives.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Cryptographic Primitives Library 131795770645376384 0x7ffacca60000 122880 C:\Windows\System32\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795770645376384 0x7ffacca80000 348160 C:\Windows\System32\WINTRUST.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation Microsoft Trust Verification APIs 131795770645376384 0x7ffaccae0000 692224 C:\Windows\System32\shcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795770645376384 0x7ffaccb90000 7180288 C:\Windows\System32\windows.storage.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API хранения Microsoft WinRT 131795770645376384 0x7ffacd270000 2215936 C:\Windows\System32\KERNELBASE.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645376384 0x7ffacd490000 1871872 C:\Windows\System32\CRYPT32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API32 криптографии 131795770645376384 0x7ffacd710000 638976 C:\Windows\System32\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645376384 0x7ffacd7b0000 270336 C:\Windows\System32\CFGMGR32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Configuration Manager DLL 131795770645376384 0x7ffacd810000 22056960 C:\Windows\System32\SHELL32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Общая библиотека оболочки Windows 131795770645376384 0x7ffaced20000 782336 C:\Windows\System32\OLEAUT32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795770645376384 0x7ffacee50000 1183744 C:\Windows\System32\RPCRT4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795770645376384 0x7ffacef80000 32768 C:\Windows\System32\NSI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation NSI User-mode interface DLL 131795770645376384 0x7ffacef90000 647168 C:\Windows\System32\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795770645376384 0x7ffacf030000 651264 C:\Windows\System32\clbcatq.dll 2001.12.10941.16384 (rs1_release.160715-1616) Microsoft Corporation COM+ Configuration Catalog 131795770645376384 0x7ffacf0d0000 704512 C:\Windows\System32\KERNEL32.DLL 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645376384 0x7ffacf770000 212992 C:\Windows\System32\GDI32.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation GDI Client DLL 131795770645376384 0x7ffacf820000 434176 C:\Windows\System32\WS2_32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation 32-разрядная библиотека Windows Socket 2.0 131795770645376384 0x7ffacf8c0000 1462272 C:\Windows\System32\user32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795770645376384 0x7ffacfb30000 2916352 C:\Windows\System32\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795770645376384 0x7ffacfe20000 663552 C:\Windows\System32\advapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795770645376384 0x7ffad0070000 1277952 C:\Windows\System32\ole32.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft OLE для Windows 131795770645376384 0x7ffad01b0000 335872 C:\Windows\System32\shlwapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека небольших программ оболочки 131795770645376384 0x7ffad0210000 364544 C:\Windows\System32\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795770645376384 0x7ffad0270000 1908736 C:\Windows\SYSTEM32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 24 348 580 4 00000000:000003e7 131765776305446235 0 0 1 Обязательная метка\Обязательный уровень системы NT AUTHORITY\СИСТЕМА svchost.exe C:\Windows\system32\svchost.exe C:\Windows\system32\svchost.exe -k netsvcs Microsoft Corporation 10.0.14393.0 (rs1_release.160715-1616) Хост-процесс для служб Windows 131795770645376622 0x7ff718c20000 57344 C:\Windows\system32\svchost.exe 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Хост-процесс для служб Windows 131795770645376622 0x7ffaa0aa0000 2138112 c:\windows\system32\wlidsvc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служба учетных записей Майкрософт 131795770645376622 0x7ffab0750000 368640 C:\Windows\system32\rascustom.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Модуль настраиваемых протоколов 131795770645376622 0x7ffab07b0000 606208 C:\Windows\system32\vpnike.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation VPNIKE Protocol Engine - Test dll 131795770645376622 0x7ffab09b0000 323584 C:\Windows\system32\rasppp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Remote Access PPP 131795770645376622 0x7ffab0a00000 270336 C:\Windows\system32\rastapi.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Remote Access TAPI Compliance Layer 131795770645376622 0x7ffab1d80000 262144 C:\Windows\system32\eappcfg.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Eap Peer Config 131795770645376622 0x7ffab3440000 696320 c:\windows\system32\rasmans.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Диспетчер подключений удаленного доступа 131795770645376622 0x7ffab4b90000 655360 C:\Windows\System32\StructuredQuery.dll 7.0.14393.2068 (rs1_release.180209-1727) Microsoft Corporation Structured Query 131795770645376622 0x7ffab4c50000 90112 c:\windows\system32\eappprxy.dll 10.0.14393.187 (rs1_release_inmarket.160906-1818) Microsoft Corporation Microsoft EAPHost Peer Client DLL 131795770645376622 0x7ffab7d80000 753664 C:\Windows\system32\RASAPI32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API удаленного доступа 131795770645376622 0x7ffab9a90000 479232 C:\Windows\system32\dmEnrollEngine.DLL 10.0.14393.479 (rs1_release.161110-2025) Microsoft Corporation Enroll Engine DLL 131795770645376622 0x7ffabae60000 77824 C:\Windows\system32\DEVRTL.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Device Management Run Time Library 131795770645376622 0x7ffabafc0000 700416 C:\Windows\SYSTEM32\wer.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека сообщений об ошибках Windows 131795770645376622 0x7ffabc210000 2355200 c:\windows\system32\wuaueng.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Агент Центра обновления Windows 131795770645376622 0x7ffabcf30000 110592 c:\windows\system32\MPR.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека маршрутизации для нескольких служб доступа 131795770645376622 0x7ffabcf50000 921600 C:\Windows\system32\drvstore.dll 10.0.14393.351 (rs1_release_inmarket.161014-1755) Microsoft Corporation Driver Store API 131795770645376622 0x7ffabd180000 548864 C:\Windows\SYSTEM32\WINSPOOL.DRV 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Драйвер диспетчера очереди Windows 131795770645376622 0x7ffabdf60000 159744 C:\Windows\System32\raschap.dll 10.0.14393.1480 (rs1_release.170706-2004) Microsoft Corporation Удаленные доступ через PPP CHAP 131795770645376622 0x7ffabe4a0000 147456 c:\windows\system32\appinfo.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служба сведений о приложении 131795770645376622 0x7ffabe4d0000 286720 C:\Windows\System32\MSWB7.dll 10.0.14393.1737 (rs1_release_inmarket.170914-1249) Microsoft Corporation MSWB7 DLL 131795770645376622 0x7ffabed80000 540672 C:\Windows\system32\wbem\wbemess.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation WMI 131795770645376622 0x7ffabee10000 90112 C:\Windows\SYSTEM32\NCObjAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation 131795770645376622 0x7ffabee30000 847872 C:\Windows\system32\wbem\wmiprvsd.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation WMI 131795770645376622 0x7ffabefd0000 258048 C:\Windows\SYSTEM32\AEPIC.dll 10.0.17060.1029 (WinBuild.160101.0800) Microsoft Corporation Application Experience Program Cache 131795770645376622 0x7ffabf010000 98304 C:\Windows\SYSTEM32\elscore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL ядра платформы Els 131795770645376622 0x7ffabf090000 98304 C:\Windows\System32\LocationFrameworkInternalPS.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Geolocation Framework Internal PS 131795770645376622 0x7ffabf0e0000 372736 C:\Windows\system32\hnetcfg.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Диспетчер конфигурации домашней сети 131795770645376622 0x7ffabf1d0000 192512 C:\Windows\System32\cryptnet.dll 10.0.14393.2035 (rs1_release_inmarket.180110-1910) Microsoft Corporation Crypto Network Related API 131795770645376622 0x7ffabf200000 405504 c:\windows\system32\cryptngc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API службы Microsoft Passport 131795770645376622 0x7ffabf2a0000 159744 C:\Windows\system32\dssenh.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Enhanced DSS and Diffie-Hellman Cryptographic Provider 131795770645376622 0x7ffabf330000 2457600 C:\Windows\System32\msxml6.dll 6.30.14393.2156 Microsoft Corporation MSXML 6.0 131795770645376622 0x7ffabfd60000 90112 C:\Windows\system32\napinsp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик оболочки совместимости для имен электронной почты 131795770645376622 0x7ffabfda0000 122880 C:\Windows\system32\wbem\ncprov.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Non-COM WMI Event Provision APIs 131795770645376622 0x7ffabfdc0000 86016 C:\Windows\system32\keepaliveprovider.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Keep alive provider API 131795770645376622 0x7ffabfe50000 643072 C:\Windows\System32\wpnprv.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик подключения платформы push-уведомлений Windows 131795770645376622 0x7ffabfef0000 106496 C:\Windows\system32\pnrpnsp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик пространства имен PNRP 131795770645376622 0x7ffabff60000 135168 C:\Windows\system32\ncryptsslp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft SChannel Provider 131795770645376622 0x7ffac0000000 401408 C:\Windows\system32\wbem\repdrvfs.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation WMI Repository Driver 131795770645376622 0x7ffac05f0000 94208 C:\Windows\System32\wwapi.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation WWAN API 131795770645376622 0x7ffac0610000 3088384 C:\Windows\SYSTEM32\msi.dll 5.0.14393.2155 Microsoft Corporation Windows Installer 131795770645376622 0x7ffac0910000 724992 C:\Windows\System32\Windows.Networking.Connectivity.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Networking Connectivity Runtime DLL 131795770645376622 0x7ffac0ab0000 57344 C:\Windows\System32\winrnr.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation LDAP RnR Provider DLL 131795770645376622 0x7ffac0ac0000 53248 c:\windows\system32\tbs.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation TBS 131795770645376622 0x7ffac0ad0000 86016 C:\Windows\SYSTEM32\mskeyprotect.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик защиты ключей (Майкрософт) 131795770645376622 0x7ffac0af0000 114688 C:\Windows\system32\ATL.DLL 3.05.2284 Microsoft Corporation ATL Module for Windows XP (Unicode) 131795770645376622 0x7ffac0bf0000 3559424 C:\Windows\System32\ActXPrxy.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation ActiveX Interface Marshaling Library 131795770645376622 0x7ffac1090000 94208 C:\Windows\System32\shacctprofile.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Shell Accounts Profile Classes 131795770645376622 0x7ffac1160000 892928 C:\Windows\System32\wuapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API клиента Центра обновления Windows 131795783766785197 0x7ffac13e0000 581632 C:\Windows\System32\usocore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Обновление ядра оркестратора сеанса 131795770645376622 0x7ffac1530000 528384 C:\Windows\SYSTEM32\dpx.dll 5.00 (rs1_release.160715-1616) Microsoft Corporation Microsoft(R) Delta Package Expander 131795783773591339 0x7ffac1660000 323584 C:\Windows\System32\updatehandlers.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation Update Session Orchestrator Update Handlers 131795770645376622 0x7ffac1900000 225280 c:\windows\system32\appxapplicabilityblob.dll 10.0.14393.953 (rs1_release_inmarket.170303-1614) Microsoft Corporation Appx Applicability Blob DLL 131795783942703101 0x7ffac1940000 155648 C:\Windows\System32\browser.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL службы браузера компьютеров 131795770645376622 0x7ffac1970000 1073152 c:\windows\system32\qmgr.dll 7.8.14393.0 (rs1_release.160715-1616) Microsoft Corporation Фоновая интеллектуальная служба передачи 131795770645376622 0x7ffac1b70000 122880 C:\Windows\System32\DevDispItemProvider.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Подсистема DeviceItem inproc devquery 131795770645376622 0x7ffac1c30000 49152 C:\Windows\system32\DMProcessXMLFiltered.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation dmprocessxmlfiltered 131795779661934902 0x7ffac1c90000 155648 C:\Windows\System32\browser.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL службы браузера компьютеров 131795770645376622 0x7ffac1cf0000 417792 C:\Windows\SYSTEM32\wuuhext.dll 10.0.14393.2189 (rs1_release.180329-1711) Microsoft Corporation Windows Update Agent plugin for Windows 131795770645376622 0x7ffac1df0000 61440 c:\windows\system32\NCI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation CoInstaller: NET 131795770645376622 0x7ffac1e20000 147456 C:\Windows\system32\wbem\wmiutils.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation WMI 131795770645376622 0x7ffac1e80000 507904 C:\Windows\System32\NetSetupShim.dll 10.0.14393.1532 (rs1_release_d.170711-1840) Microsoft Corporation Network Configuration API 131795770645376622 0x7ffac1f10000 126976 c:\windows\system32\DMCmnUtils.dll 10.0.14393.1737 (rs1_release_inmarket.170914-1249) Microsoft Corporation dmcmnutils 131795770645376622 0x7ffac1f30000 118784 C:\Windows\system32\SPINF.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows SPINF 131795770645376622 0x7ffac1f50000 471040 C:\Windows\system32\wbem\esscli.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation WMI 131795770645376622 0x7ffac1fd0000 999424 C:\Windows\system32\wbem\FastProx.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation WMI Custom Marshaller 131795770645376622 0x7ffac20d0000 110592 c:\windows\system32\RMCLIENT.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Resource Manager Client 131795770645376622 0x7ffac20f0000 753664 C:\Windows\system32\CLUSAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека API кластера 131795770645376622 0x7ffac21d0000 81920 C:\Windows\system32\wbem\wbemsvc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation WMI 131795770645376622 0x7ffac2210000 1351680 C:\Windows\system32\wbem\wbemcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Инструментарий управления Windows 131795770645376622 0x7ffac2360000 57344 c:\windows\system32\TimeBrokerClient.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Time Broker Client Library 131795770645376622 0x7ffac2370000 110592 C:\Windows\system32\adhsvc.dll 10.0.14393.2189 (rs1_release.180329-1711) Microsoft Corporation AD Harvest Sites and Subnets Service 131795770645376622 0x7ffac2390000 147456 C:\Windows\system32\httpprxm.dll 10.0.14393.2189 (rs1_release.180329-1711) Microsoft Corporation Proxy Manager 131795775850813653 0x7ffac23c0000 331776 C:\Windows\System32\OneCoreCommonProxyStub.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation OneCore Common Proxy Stub 131795770645376622 0x7ffac24a0000 397312 C:\Windows\system32\RESUTILS.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL служебной программы ресурсов кластера (Майкрософт) 131795770645376622 0x7ffac2530000 270336 C:\Windows\system32\hnetcfgclient.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиент API конфигурации домашней сети 131795784861928280 0x7ffac2590000 659456 C:\Windows\System32\FlightSettings.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Параметры цикла тестирования 131795770645376622 0x7ffac2640000 188416 C:\Windows\system32\wmidcom.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation WMI 131795770645376622 0x7ffac2670000 376832 C:\Windows\system32\miutils.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Инфраструктура управления 131795770645376622 0x7ffac26f0000 36864 C:\Windows\SYSTEM32\sscoreext.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Server Service Core DLL 131795770645376622 0x7ffac2720000 192512 C:\Windows\SYSTEM32\WPTaskScheduler.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation WP Task Scheduler DLL 131795784861934949 0x7ffac2750000 106496 C:\Windows\System32\bcd.dll 10.0.14393.1794 (rs1_release.171008-1615) Microsoft Corporation BCD DLL 131795770645376622 0x7ffac2770000 69632 C:\Windows\system32\SSCORE.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Основная DLL-библиотека службы сервера 131795770645376622 0x7ffac2940000 45056 c:\windows\system32\CSystemEventsBrokerClient.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Classic System Events Broker Client Library 131795770645376622 0x7ffac29f0000 159744 c:\windows\system32\NetSetupApi.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Network Configuration API 131795770645376622 0x7ffac2a20000 81920 c:\windows\system32\rtutils.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Routing Utilities 131795770645376622 0x7ffac2a40000 974848 c:\windows\system32\iphlpsvc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Эта служба предоставляет автоматическое подключение IPv6 в сети IPv4. 131795770645376622 0x7ffac2b30000 286720 C:\Windows\System32\usermgrproxy.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation UserMgrProxy 131795770645376622 0x7ffac2c30000 135168 c:\windows\system32\CLIPC.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиент платформы лицензирования клиента 131795770645376622 0x7ffac2c60000 278528 c:\windows\system32\WDSCORE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Panther Engine Module 131795770645376622 0x7ffac2cb0000 778240 C:\Windows\System32\winsqlite3.dll 3.12.2 SQLite Development Team SQLite is a software library that implements a self-contained, serverless, zero-configuration, transactional SQL database engine. 131795770645376622 0x7ffac2d80000 5140480 C:\Windows\System32\cdp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API клиента Microsoft (R) CDP 131795770645376622 0x7ffac3360000 1396736 C:\Windows\System32\wpncore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Ядро извещающих уведомлений Windows 131795770645376622 0x7ffac34c0000 81920 C:\Windows\system32\vss_ps.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation Microsoft® Volume Shadow Copy Service proxy/stub 131795770645376622 0x7ffac34e0000 1843200 C:\Windows\System32\urlmon.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширения OLE32 для Win32 131795770645376622 0x7ffac36b0000 524288 C:\Windows\system32\msdelta.dll 5.00 (rs1_release.160715-1616) Microsoft Corporation Microsoft Patch Engine 131795770645376622 0x7ffac3740000 413696 C:\Windows\system32\upnp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API контрольной точки UPnP 131795770645376622 0x7ffac3810000 167936 C:\Windows\SYSTEM32\Cabinet.dll 5.00 (rs1_release.160715-1616) Microsoft Corporation Microsoft® Cabinet File API 131795770645376622 0x7ffac3840000 3088384 c:\windows\system32\ESENT.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширяемая подсистема хранения данных ESE для Microsoft(R) Windows(R) 131795770645376622 0x7ffac3b40000 245760 c:\windows\system32\wbem\wmisvc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation WMI 131795770645376622 0x7ffac3cb0000 2772992 C:\Windows\System32\iertutil.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служебная программа времени выполнения для Internet Explorer 131795770645376622 0x7ffac3f60000 225280 C:\Windows\system32\FWPolicyIOMgr.dll 10.0.14393.2189 (rs1_release.180329-1711) Microsoft Corporation FwPolicyIoMgr DLL 131795770645376622 0x7ffac3fa0000 331776 c:\windows\system32\srvsvc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека (DLL) ресурсов для службы сервера 131795770645376622 0x7ffac4000000 274432 C:\Windows\SYSTEM32\policymanager.dll 10.0.14393.2035 (rs1_release_inmarket.180110-1910) Microsoft Corporation Policy Manager DLL 131795770645376622 0x7ffac4160000 253952 c:\windows\system32\wpnservice.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служба системы push-уведомлений Windows 131795770645376622 0x7ffac4220000 520192 C:\Windows\SYSTEM32\wbemcomn.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation WMI 131795770645376622 0x7ffac4450000 86016 C:\Windows\SYSTEM32\usermgrcli.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation UserMgr API DLL 131795770645376622 0x7ffac4480000 499712 C:\Windows\system32\taskcomp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Оснастка обратной совместимости диспетчера задач 131795770645376622 0x7ffac4540000 69632 C:\Windows\system32\ProximityServicePAL.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Proximity Service PAL 131795775380234927 0x7ffac4b60000 155648 C:\Windows\System32\browser.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL службы браузера компьютеров 131795770645376622 0x7ffac4cc0000 36864 C:\Windows\system32\ProximityCommonPal.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Proximity Common PAL 131795770645376622 0x7ffac4dc0000 176128 C:\Windows\system32\ProximityCommon.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Универсальная реализация близкого взаимодействия 131795770645376622 0x7ffac4e70000 102400 C:\Windows\SYSTEM32\samcli.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Security Accounts Manager Client DLL 131795770645376622 0x7ffac4ee0000 331776 C:\Windows\System32\ProximityService.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Proximity Service Implementation 131795770645376622 0x7ffac4f60000 143360 C:\Windows\SYSTEM32\wcmapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Connection Manager Client API 131795770645376622 0x7ffac5c50000 131072 C:\Windows\system32\rasman.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Remote Access Connection Manager 131795770645376622 0x7ffac5ef0000 868352 C:\Windows\System32\MbaeApiPublic.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Mobile Broadband Account API 131795770645376622 0x7ffac60e0000 221184 C:\Windows\System32\XmlLite.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft XmlLite Library 131795770645376622 0x7ffac6410000 98304 C:\Windows\SYSTEM32\VssTrace.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека трассировки службы теневого копирования тома Microsoft® 131795770645376622 0x7ffac6430000 1581056 C:\Windows\SYSTEM32\VSSAPI.DLL 10.0.14393.953 (rs1_release_inmarket.170303-1614) Microsoft Corporation Microsoft® Volume Shadow Copy Requestor/Writer Services API DLL 131795770645376622 0x7ffac6610000 40960 C:\Windows\System32\rasadhlp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Remote Access AutoDial Helper 131795770645376622 0x7ffac66a0000 86016 C:\Windows\SYSTEM32\ondemandconnroutehelper.dll 10.0.14393.351 (rs1_release_inmarket.161014-1755) Microsoft Corporation On Demand Connctiond Route Helper 131795770645376622 0x7ffac6750000 1380352 c:\windows\system32\webservices.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Среда выполнения веб-служб Windows 131795770645376622 0x7ffac69c0000 839680 C:\Windows\System32\WINHTTP.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Службы HTTP Windows 131795770645376622 0x7ffac6a90000 49152 C:\Windows\System32\LocationFrameworkPS.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Geolocation Framework PS 131795770645376622 0x7ffac6c40000 2596864 C:\Windows\WinSxS\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.14393.953_none_42151e83c686086b\Comctl32.dll 6.10 (rs1_release_inmarket.170303-1614) Microsoft Corporation Библиотека элементов управления взаимодействия с пользователем 131795770645376622 0x7ffac7580000 1077248 C:\Windows\SYSTEM32\mrmcorer.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Windows MRM 131795770645376622 0x7ffac7700000 65536 C:\Windows\system32\CredentialMigrationHandler.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Credential Migration Handler 131795770645376622 0x7ffac79c0000 57344 C:\Windows\System32\npmproxy.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Network List Manager Proxy 131795770645376622 0x7ffac79d0000 53248 C:\Windows\system32\sqmapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SQM Client 131795770645376622 0x7ffac7aa0000 401408 C:\Windows\SYSTEM32\wlanapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows WLAN AutoConfig Client Side API DLL 131795783776936389 0x7ffac7ce0000 94208 C:\Windows\System32\usoapi.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Update Session Orchestrator API 131795770645376622 0x7ffac7d20000 106496 C:\Windows\SYSTEM32\msauserext.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation MSA USER Extension DLL 131795770645376622 0x7ffac7d60000 114688 c:\windows\system32\UpdatePolicy.dll 10.0.14393.2189 (rs1_release.180329-1711) Microsoft Corporation Update Policy Reader 131795770645376622 0x7ffac7e50000 86016 C:\Windows\system32\SSDPAPI.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation SSDP Client API DLL 131795770645376622 0x7ffac7e90000 749568 c:\windows\system32\FVEAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows BitLocker Drive Encryption API 131795770645376622 0x7ffac82d0000 643072 c:\windows\system32\shsvcs.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL служб оболочки Windows 131795770645376622 0x7ffac83d0000 106496 C:\Windows\SYSTEM32\dhcpcsvc.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служба DHCP-клиента 131795770645376622 0x7ffac83f0000 90112 C:\Windows\SYSTEM32\dhcpcsvc6.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиент DHCPv6 131795770645376622 0x7ffac8420000 434176 c:\windows\system32\fwpuclnt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API пользовательского режима FWP/IPsec 131795770645376622 0x7ffac8590000 135168 C:\Windows\System32\LocationWinPalMisc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Location Platform Abstraction Layer 131795770645376622 0x7ffac85c0000 1810432 c:\windows\system32\LocationFramework.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Платформа географического положения Windows 131795770645376622 0x7ffac8780000 274432 c:\windows\system32\UBPM.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL единого диспетчера фоновых процессов 131795770645376622 0x7ffac8810000 45056 c:\windows\system32\WINNSI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Network Store Information RPC interface 131795770645376622 0x7ffac8880000 69632 c:\windows\system32\WMICLNT.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation WMI Client API 131795770645376622 0x7ffac8b60000 966656 c:\windows\system32\schedsvc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служба планировщика заданий 131795783774133461 0x7ffac8cf0000 815104 C:\Windows\System32\taskschd.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Task Scheduler COM API 131795770645376622 0x7ffac8dc0000 167936 C:\Windows\system32\dbgcore.DLL 10.0.14321.1024 (debuggers(dbg).160715-1616) Microsoft Windows Core Debugging Helpers 131795770645376622 0x7ffac8df0000 1646592 C:\Windows\system32\dbghelp.dll 10.0.14321.1024 (rs1_release.160715-1616) Microsoft Windows Image Helper 131795770645376622 0x7ffac8fa0000 253952 c:\windows\system32\logoncli.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Net Logon Client DLL 131795770645376622 0x7ffac90b0000 90112 c:\windows\system32\wkscli.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Workstation Service Client DLL 131795770645376622 0x7ffac91c0000 167936 C:\Windows\SYSTEM32\profsvcext.dll 10.0.14393.1532 (rs1_release_d.170711-1840) Microsoft Corporation ProfSvcExt 131795770645376622 0x7ffac9220000 397312 C:\Windows\SYSTEM32\wevtapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API настройки и использования событий 131795770645376622 0x7ffac9290000 40960 c:\windows\system32\DSROLE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DS Setup Client DLL 131795770645376622 0x7ffac92a0000 90112 c:\windows\system32\sens.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служба уведомления о системных событиях (SENS) 131795770645376622 0x7ffac92c0000 98304 c:\windows\system32\themeservice.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL службы темы оболочки Windows 131795770645376622 0x7ffac92e0000 1269760 C:\Windows\SYSTEM32\wintypes.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL основных типов Windows 131795770645376622 0x7ffac9420000 380928 c:\windows\system32\profsvc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ProfSvc 131795770645376622 0x7ffac9790000 98304 c:\windows\system32\nlaapi.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Network Location Awareness 2 131795770645376622 0x7ffac9a70000 1257472 c:\windows\system32\gpsvc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиент групповой политики 131795770645376622 0x7ffac9bb0000 479232 C:\Windows\System32\ES.DLL 2001.12.10941.16384 (rs1_release.160715-1616) Microsoft Corporation COM+ 131795770645376622 0x7ffac9f10000 221184 C:\Windows\System32\netprofm.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Network List Manager 131795770645376622 0x7ffaca100000 36864 C:\Windows\SYSTEM32\httpprxc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Proxy Manager Provider RPC interface 131795770645376622 0x7ffaca1f0000 65536 C:\Windows\SYSTEM32\storageusage.dll 10.0.14393.82 (rs1_release.160805-1735) Microsoft Corporation Storage Usage 131795770645376622 0x7ffaca250000 49152 C:\Windows\SYSTEM32\bi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Background Broker Infrastructure Client Library 131795770645376622 0x7ffaca280000 73728 C:\Windows\System32\BitsProxy.dll 7.8.14393.0 (rs1_release.160715-1616) Microsoft Corporation Background Intelligent Transfer Service Proxy 131795770645376622 0x7ffaca340000 1593344 C:\Windows\System32\PROPSYS.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Система страниц свойств (Майкрософт) 131795770645376622 0x7ffaca4e0000 77824 C:\Windows\SYSTEM32\wtsapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Remote Desktop Session Host Server SDK APIs 131795770645376622 0x7ffaca500000 69632 C:\Windows\System32\wups.dll 10.0.14393.2122 (rs1_release.180217-2341) Microsoft Corporation Windows Update client proxy stub 131795770645376622 0x7ffaca570000 421888 C:\Windows\SYSTEM32\Bcp47Langs.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation BCP47 Language Classes 131795770645376622 0x7ffaca610000 143360 C:\Windows\SYSTEM32\SAMLIB.dll 10.0.14393.82 (rs1_release.160805-1735) Microsoft Corporation SAM Library DLL 131795770645376622 0x7ffaca700000 32768 c:\windows\system32\DABAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Desktop Activity Broker API 131795770645376622 0x7ffaca720000 77824 C:\Windows\system32\bitsigd.dll 7.8.14393.0 (rs1_release.160715-1616) Microsoft Corporation Background Intelligent Transfer Service IGD Support 131795770645376622 0x7ffacab70000 53248 c:\windows\system32\lfsvc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служба географического положения 131795770645376622 0x7ffacac40000 53248 c:\windows\system32\seclogon.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL службы вторичного входа 131795770645376622 0x7ffacac50000 45056 c:\windows\system32\bitsperf.dll 7.8.14393.0 (rs1_release.160715-1616) Microsoft Corporation Perfmon Counter Access 131795770645376622 0x7ffacad70000 278528 c:\windows\system32\BrokerLib.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Broker Base Library 131795770645376622 0x7ffacadf0000 499712 c:\windows\system32\apphelp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиентская библиотека совместимости приложений 131795770645376622 0x7ffacb000000 53248 c:\windows\system32\SYSNTFY.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Windows Notifications Dynamic Link Library 131795770645376622 0x7ffacb140000 593920 C:\Windows\System32\msvcp110_win.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Microsoft® STL110 C++ Runtime Library 131795770645376622 0x7ffacb1e0000 1163264 C:\Windows\SYSTEM32\twinapi.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation twinapi.appcore 131795770645376622 0x7ffacb300000 364544 C:\Windows\System32\VEEventDispatcher.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Visual Element Event dispatcher 131795770645376622 0x7ffacb360000 176128 C:\Windows\system32\fwbase.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Firewall Base DLL 131795770645376622 0x7ffacb3d0000 110592 C:\Windows\SYSTEM32\resourcepolicyclient.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Resource Policy Client 131795770645376622 0x7ffacb3f0000 163840 c:\windows\system32\DEVOBJ.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Device Information Set DLL 131795770645376622 0x7ffacb420000 204800 C:\Windows\SYSTEM32\ntmarta.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик Windows NT MARTA 131795770645376622 0x7ffacb460000 548864 C:\Windows\SYSTEM32\firewallapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API брандмауэра Windows 131795770645376622 0x7ffacb6e0000 49152 c:\windows\system32\HID.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека пользователя HID 131795770645376622 0x7ffacb6f0000 143360 C:\Windows\SYSTEM32\gpapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиентские функции API групповой политики 131795770645376622 0x7ffacb920000 81920 C:\Windows\SYSTEM32\WLDP.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Политика блокировки Windows 131795770645376622 0x7ffacb960000 303104 c:\windows\system32\AUTHZ.dll 10.0.14393.1737 (rs1_release_inmarket.170914-1249) Microsoft Corporation Authorization Framework 131795770645376622 0x7ffacbaf0000 495616 C:\Windows\system32\schannel.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик безопасности TLS/SSL 131795770645376622 0x7ffacbbb0000 208896 C:\Windows\system32\rsaenh.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Enhanced Cryptographic Provider 131795770645376622 0x7ffacbbf0000 40960 C:\Windows\system32\DPAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Data Protection API 131795770645376622 0x7ffacbd30000 229376 C:\Windows\system32\IPHLPAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API вспомогательного приложения IP 131795770645376622 0x7ffacbd70000 659456 C:\Windows\system32\DNSAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Динамическая библиотека API DNS-клиента 131795770645376622 0x7ffacbe20000 53248 c:\windows\system32\netutils.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API Helpers DLL 131795770645376622 0x7ffacbe40000 126976 c:\windows\system32\USERENV.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Userenv 131795770645376622 0x7ffacbfb0000 376832 C:\Windows\system32\MSWSOCK.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширение поставщика службы API Microsoft Windows Sockets 2.0 131795770645376622 0x7ffacc150000 94208 C:\Windows\SYSTEM32\cryptsp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Cryptographic Service Provider API 131795770645376622 0x7ffacc170000 45056 C:\Windows\System32\CRYPTBASE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base cryptographic API DLL 131795770645376622 0x7ffacc1f0000 241664 C:\Windows\System32\NTASN1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft ASN.1 API 131795770645376622 0x7ffacc230000 155648 C:\Windows\System32\ncrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Маршрутизатор Windows NCrypt 131795770645376622 0x7ffacc350000 180224 C:\Windows\System32\SspiCli.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Security Support Provider Interface 131795770645376622 0x7ffacc500000 102400 c:\windows\system32\EventAggregation.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Event Aggregation User Mode Library 131795770645376622 0x7ffacc520000 622592 C:\Windows\SYSTEM32\sxs.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Fusion 2.5 131795770645376622 0x7ffacc5c0000 352256 C:\Windows\SYSTEM32\winsta.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Winstation Library 131795770645376622 0x7ffacc620000 176128 c:\windows\system32\bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795770645376622 0x7ffacc6e0000 61440 C:\Windows\System32\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795770645376622 0x7ffacc6f0000 311296 C:\Windows\System32\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795770645376622 0x7ffacc740000 81920 C:\Windows\System32\profapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Profile Basic API 131795770645376622 0x7ffacc760000 65536 C:\Windows\System32\MSASN1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ASN.1 Runtime APIs 131795770645376622 0x7ffacc8f0000 1003520 C:\Windows\System32\ucrtbase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645376622 0x7ffacc9f0000 434176 C:\Windows\System32\bcryptPrimitives.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Cryptographic Primitives Library 131795770645376622 0x7ffacca60000 122880 C:\Windows\System32\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795770645376622 0x7ffacca80000 348160 C:\Windows\System32\WINTRUST.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation Microsoft Trust Verification APIs 131795770645376622 0x7ffaccae0000 692224 C:\Windows\System32\shcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795770645376622 0x7ffaccb90000 7180288 C:\Windows\System32\windows.storage.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API хранения Microsoft WinRT 131795770645376622 0x7ffacd270000 2215936 C:\Windows\System32\KERNELBASE.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645376622 0x7ffacd490000 1871872 C:\Windows\System32\CRYPT32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API32 криптографии 131795770645376622 0x7ffacd710000 638976 C:\Windows\System32\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645376622 0x7ffacd7b0000 270336 C:\Windows\System32\cfgmgr32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Configuration Manager DLL 131795770645376622 0x7ffacd810000 22056960 C:\Windows\System32\SHELL32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Общая библиотека оболочки Windows 131795770645376622 0x7ffaced20000 782336 C:\Windows\System32\OLEAUT32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795770645376622 0x7ffacede0000 450560 C:\Windows\System32\coml2.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft COM for Windows 131795770645376622 0x7ffacee50000 1183744 C:\Windows\System32\RPCRT4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795770645376622 0x7ffacef80000 32768 C:\Windows\System32\NSI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation NSI User-mode interface DLL 131795770645376622 0x7ffacef90000 647168 C:\Windows\System32\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795770645376622 0x7ffacf030000 651264 C:\Windows\System32\clbcatq.dll 2001.12.10941.16384 (rs1_release.160715-1616) Microsoft Corporation COM+ Configuration Catalog 131795770645376622 0x7ffacf0d0000 704512 C:\Windows\System32\KERNEL32.DLL 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645376622 0x7ffacf180000 376832 C:\Windows\System32\WLDAP32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Win32 LDAP API DLL 131795770645376622 0x7ffacf340000 4362240 C:\Windows\System32\setupapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Setup API 131795770645376622 0x7ffacf770000 212992 C:\Windows\System32\GDI32.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation GDI Client DLL 131795770645376622 0x7ffacf820000 434176 C:\Windows\System32\WS2_32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation 32-разрядная библиотека Windows Socket 2.0 131795770645376622 0x7ffacf8c0000 1462272 C:\Windows\System32\user32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795770645376622 0x7ffacfb30000 2916352 C:\Windows\System32\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795770645376622 0x7ffacfe00000 114688 C:\Windows\System32\imagehlp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT Image Helper 131795770645376622 0x7ffacfe20000 663552 C:\Windows\System32\advapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795770645376622 0x7ffad0070000 1277952 C:\Windows\System32\ole32.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft OLE для Windows 131795770645376622 0x7ffad01b0000 335872 C:\Windows\System32\shlwapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека небольших программ оболочки 131795770645376622 0x7ffad0210000 364544 C:\Windows\System32\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795770645376622 0x7ffad0270000 1908736 C:\Windows\SYSTEM32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 25 372 580 4 00000000:000003e5 131765776305463443 0 0 1 Обязательная метка\Обязательный уровень системы NT AUTHORITY\LOCAL SERVICE svchost.exe C:\Windows\system32\svchost.exe C:\Windows\system32\svchost.exe -k LocalService Microsoft Corporation 10.0.14393.0 (rs1_release.160715-1616) Хост-процесс для служб Windows 131795770645376755 0x7ff718c20000 57344 C:\Windows\system32\svchost.exe 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Хост-процесс для служб Windows 131795770645376755 0x7ffab1c40000 1302528 c:\windows\system32\LicenseManager.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation LicenseManager 131795770645376755 0x7ffab91f0000 233472 c:\windows\system32\sstpsvc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Обеспечивает возможность использования SSTP для подключения к удаленным компьютерам с помощью VPN. 131795770645376755 0x7ffab93b0000 897024 C:\Windows\System32\TokenBroker.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Token Broker 131795770645376755 0x7ffabaab0000 94208 C:\Windows\SYSTEM32\profext.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation profext 131795780812578370 0x7ffabafc0000 700416 C:\Windows\System32\wer.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека сообщений об ошибках Windows 131795770645376755 0x7ffabbd10000 65536 C:\Windows\System32\TOKENBINDING.dll 10.0.14393.1593 (rs1_release.170731-1934) Microsoft Corporation Token Binding Protocol 131795770645376755 0x7ffabc610000 540672 c:\windows\system32\w32time.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служба времени Windows 131795770645376755 0x7ffabca50000 819200 C:\Windows\System32\Windows.Security.Authentication.Web.Core.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Token Broker WinRT API 131795770645376755 0x7ffabcb70000 262144 C:\Windows\System32\cdprt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft (R) CDP Client WinRT API 131795770645376755 0x7ffabef00000 499712 c:\windows\system32\cdpsvc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служба CDP Майкрософт (R) 131795770645376755 0x7ffabf2d0000 344064 C:\Windows\system32\ncryptprov.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft KSP 131795770645376755 0x7ffabf330000 2457600 C:\Windows\System32\msxml6.dll 6.30.14393.2156 Microsoft Corporation MSXML 6.0 131795770645376755 0x7ffabfbe0000 1011712 C:\Windows\System32\Windows.Security.Authentication.OnlineId.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation Windows Runtime OnlineId Authentication DLL 131795770645376755 0x7ffabff60000 135168 C:\Windows\system32\ncryptsslp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft SChannel Provider 131795770645376755 0x7ffac05e0000 40960 c:\windows\system32\sbservicetrigger.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Socket Broker Service Trigger 131795770645376755 0x7ffac05f0000 94208 C:\Windows\System32\wwapi.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation WWAN API 131795770645376755 0x7ffac0910000 724992 C:\Windows\System32\Windows.Networking.Connectivity.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Networking Connectivity Runtime DLL 131795770645376755 0x7ffac0ad0000 86016 C:\Windows\SYSTEM32\mskeyprotect.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик защиты ключей (Майкрософт) 131795770645376755 0x7ffac1160000 892928 C:\Windows\System32\wuapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API клиента Центра обновления Windows 131795770645376755 0x7ffac1d60000 589824 C:\Windows\System32\webio.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API протоколов передачи по Веб 131795770645376755 0x7ffac23c0000 331776 C:\Windows\System32\OneCoreCommonProxyStub.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation OneCore Common Proxy Stub 131795770645376755 0x7ffac2a20000 81920 c:\windows\system32\rtutils.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Routing Utilities 131795770645376755 0x7ffac2b30000 286720 C:\Windows\System32\usermgrproxy.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation UserMgrProxy 131795770645376755 0x7ffac2c30000 135168 c:\windows\system32\CLIPC.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиент платформы лицензирования клиента 131795770645376755 0x7ffac2d80000 5140480 c:\windows\system32\cdp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API клиента Microsoft (R) CDP 131795780812550384 0x7ffac3290000 86016 C:\Windows\System32\fthsvc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Модуль диагностики отказоустойчивой кучи Microsoft Windows 131795770645376755 0x7ffac3cb0000 2772992 C:\Windows\System32\iertutil.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служебная программа времени выполнения для Internet Explorer 131795770645376755 0x7ffac3f60000 225280 C:\Windows\System32\FWPolicyIOMgr.dll 10.0.14393.2189 (rs1_release.180329-1711) Microsoft Corporation FwPolicyIoMgr DLL 131795770645376755 0x7ffac4050000 118784 c:\windows\system32\wdi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Инфраструктура диагностики Windows 131795770645376755 0x7ffac4130000 40960 c:\windows\system32\fdphost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служба размещения поставщиков функций обнаружения 131795770645376755 0x7ffac41a0000 77824 C:\Windows\System32\fdproxy.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation Function Discovery Proxy Dll 131795770645376755 0x7ffac4200000 98304 C:\Windows\system32\perftrack.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Performance PerfTrack 131795770645376755 0x7ffac42a0000 659456 C:\Windows\System32\StateRepository.Core.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation StateRepository Core 131795770645376755 0x7ffac4450000 86016 C:\Windows\SYSTEM32\usermgrcli.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation UserMgr API DLL 131795770645376755 0x7ffac46d0000 4161536 C:\Windows\System32\Windows.StateRepository.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Сервер Windows StateRepository API Server 131795770645376755 0x7ffac5070000 798720 C:\Windows\System32\Windows.Web.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL веб-клиента 131795770645376755 0x7ffac5b80000 184320 C:\Windows\SYSTEM32\AuthBroker.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API WinRT для веб-проверки подлинности 131795770645376755 0x7ffac60e0000 221184 C:\Windows\System32\XmlLite.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft XmlLite Library 131795770645376755 0x7ffac6400000 53248 c:\windows\system32\HTTPAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation HTTP Protocol Stack API 131795770645376755 0x7ffac6610000 40960 C:\Windows\System32\rasadhlp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Remote Access AutoDial Helper 131795770645376755 0x7ffac66a0000 86016 C:\Windows\SYSTEM32\ondemandconnroutehelper.dll 10.0.14393.351 (rs1_release_inmarket.161014-1755) Microsoft Corporation On Demand Connctiond Route Helper 131795770645376755 0x7ffac66e0000 122880 C:\Windows\System32\fdssdp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Function Discovery SSDP Provider Dll 131795770645376755 0x7ffac6710000 172032 C:\Windows\System32\FunDisc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL обнаружения функции 131795770645376755 0x7ffac6750000 1380352 C:\Windows\System32\webservices.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Среда выполнения веб-служб Windows 131795770645376755 0x7ffac68b0000 696320 C:\Windows\System32\wsdapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Веб-службы для библиотек DLL API-интерфейсов устройств 131795770645376755 0x7ffac6960000 167936 C:\Windows\System32\fdwsd.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Function Discovery WS Discovery Provider Dll 131795770645376755 0x7ffac69c0000 839680 C:\Windows\System32\WINHTTP.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Службы HTTP Windows 131795770645376755 0x7ffac76d0000 65536 C:\Windows\System32\vmictimeprovider.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Virtual Machine Integration Component Time Sync Provider Library 131795770645376755 0x7ffac79c0000 57344 C:\Windows\System32\npmproxy.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Network List Manager Proxy 131795770645376755 0x7ffac7a10000 544768 c:\windows\system32\netprofmsvc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Диспетчер списка сетей 131795770645376755 0x7ffac7aa0000 401408 C:\Windows\SYSTEM32\wlanapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows WLAN AutoConfig Client Side API DLL 131795770645376755 0x7ffac7d20000 106496 C:\Windows\SYSTEM32\msauserext.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation MSA USER Extension DLL 131795770645376755 0x7ffac7e50000 86016 C:\Windows\System32\SSDPAPI.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation SSDP Client API DLL 131795770645376755 0x7ffac7f70000 49152 c:\windows\system32\licensemanagersvc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation LicenseManagerSvc 131795770645376755 0x7ffac83d0000 106496 C:\Windows\SYSTEM32\dhcpcsvc.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служба DHCP-клиента 131795770645376755 0x7ffac83f0000 90112 C:\Windows\SYSTEM32\dhcpcsvc6.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиент DHCPv6 131795770645376755 0x7ffac8420000 434176 C:\Windows\System32\fwpuclnt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API пользовательского режима FWP/IPsec 131795770645376755 0x7ffac8540000 286720 C:\Windows\System32\vaultcli.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиентская библиотека хранилища учетных данных 131795770645376755 0x7ffac8810000 45056 C:\Windows\SYSTEM32\WINNSI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Network Store Information RPC interface 131795770645376755 0x7ffac8fa0000 253952 c:\windows\system32\logoncli.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Net Logon Client DLL 131795770645376755 0x7ffac90a0000 53248 c:\windows\system32\nsisvc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation RPC-сервер интерфейса сохранения сети 131795770645376755 0x7ffac90b0000 90112 C:\Windows\SYSTEM32\wkscli.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Workstation Service Client DLL 131795770645376755 0x7ffac91f0000 172032 c:\windows\system32\FontProvider.dll 10.0.14393.1066 (rs1_release_sec.170327-1835) Microsoft Corporation Windows Font Provider Library 131795780812573070 0x7ffac9220000 397312 C:\Windows\System32\wevtapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API настройки и использования событий 131795770645376755 0x7ffac9290000 40960 c:\windows\system32\DSROLE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DS Setup Client DLL 131795770645376755 0x7ffac92e0000 1269760 C:\Windows\System32\WinTypes.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL основных типов Windows 131795770645376755 0x7ffac9790000 98304 c:\windows\system32\nlaapi.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Network Location Awareness 2 131795770645376755 0x7ffac9860000 1896448 c:\windows\system32\fntcache.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служба кэша шрифтов Windows 131795770645376755 0x7ffac9bb0000 479232 c:\windows\system32\es.dll 2001.12.10941.16384 (rs1_release.160715-1616) Microsoft Corporation COM+ 131795770645376755 0x7ffaca130000 204800 C:\Windows\SYSTEM32\windows.devices.radios.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows.Devices.Radios DLL 131795770645376755 0x7ffaca280000 73728 C:\Windows\System32\BitsProxy.dll 7.8.14393.0 (rs1_release.160715-1616) Microsoft Corporation Background Intelligent Transfer Service Proxy 131795770645376755 0x7ffaca340000 1593344 C:\Windows\system32\propsys.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Система страниц свойств (Майкрософт) 131795770645376755 0x7ffaca500000 69632 C:\Windows\System32\wups.dll 10.0.14393.2122 (rs1_release.180217-2341) Microsoft Corporation Windows Update client proxy stub 131795780812567382 0x7ffacadf0000 499712 C:\Windows\System32\apphelp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиентская библиотека совместимости приложений 131795770645376755 0x7ffacb140000 593920 c:\windows\system32\msvcp110_win.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Microsoft® STL110 C++ Runtime Library 131795770645376755 0x7ffacb1e0000 1163264 C:\Windows\System32\twinapi.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation twinapi.appcore 131795770645376755 0x7ffacb300000 364544 c:\windows\system32\VEEventDispatcher.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Visual Element Event dispatcher 131795770645376755 0x7ffacb360000 176128 C:\Windows\System32\fwbase.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Firewall Base DLL 131795770645376755 0x7ffacb420000 204800 C:\Windows\SYSTEM32\ntmarta.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик Windows NT MARTA 131795770645376755 0x7ffacb460000 548864 C:\Windows\System32\FirewallAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API брандмауэра Windows 131795770645376755 0x7ffacb6f0000 143360 C:\Windows\SYSTEM32\gpapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиентские функции API групповой политики 131795770645376755 0x7ffacb920000 81920 C:\Windows\SYSTEM32\WLDP.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Политика блокировки Windows 131795770645376755 0x7ffacbaf0000 495616 C:\Windows\system32\schannel.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик безопасности TLS/SSL 131795770645376755 0x7ffacbbb0000 208896 C:\Windows\system32\rsaenh.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Enhanced Cryptographic Provider 131795770645376755 0x7ffacbbf0000 40960 C:\Windows\SYSTEM32\DPAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Data Protection API 131795770645376755 0x7ffacbd30000 229376 c:\windows\system32\IPHLPAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API вспомогательного приложения IP 131795770645376755 0x7ffacbd70000 659456 C:\Windows\SYSTEM32\DNSAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Динамическая библиотека API DNS-клиента 131795770645376755 0x7ffacbe20000 53248 C:\Windows\SYSTEM32\netutils.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API Helpers DLL 131795770645376755 0x7ffacbe40000 126976 c:\windows\system32\USERENV.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Userenv 131795770645376755 0x7ffacbfb0000 376832 C:\Windows\system32\mswsock.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширение поставщика службы API Microsoft Windows Sockets 2.0 131795770645376755 0x7ffacc150000 94208 C:\Windows\System32\CRYPTSP.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Cryptographic Service Provider API 131795770645376755 0x7ffacc170000 45056 C:\Windows\system32\CRYPTBASE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base cryptographic API DLL 131795770645376755 0x7ffacc1f0000 241664 c:\windows\system32\NTASN1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft ASN.1 API 131795770645376755 0x7ffacc230000 155648 c:\windows\system32\ncrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Маршрутизатор Windows NCrypt 131795770645376755 0x7ffacc350000 180224 C:\Windows\System32\SspiCli.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Security Support Provider Interface 131795770645376755 0x7ffacc520000 622592 C:\Windows\SYSTEM32\sxs.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Fusion 2.5 131795770645376755 0x7ffacc620000 176128 C:\Windows\System32\bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795770645376755 0x7ffacc6e0000 61440 C:\Windows\System32\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795770645376755 0x7ffacc6f0000 311296 C:\Windows\System32\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795770645376755 0x7ffacc740000 81920 C:\Windows\System32\profapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Profile Basic API 131795770645376755 0x7ffacc760000 65536 C:\Windows\System32\MSASN1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ASN.1 Runtime APIs 131795770645376755 0x7ffacc8f0000 1003520 C:\Windows\System32\ucrtbase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645376755 0x7ffacc9f0000 434176 C:\Windows\System32\bcryptPrimitives.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Cryptographic Primitives Library 131795770645376755 0x7ffacca60000 122880 C:\Windows\System32\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795770645376755 0x7ffacca80000 348160 C:\Windows\System32\WINTRUST.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation Microsoft Trust Verification APIs 131795770645376755 0x7ffaccae0000 692224 C:\Windows\System32\shcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795770645376755 0x7ffacd270000 2215936 C:\Windows\System32\KERNELBASE.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645376755 0x7ffacd490000 1871872 C:\Windows\System32\CRYPT32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API32 криптографии 131795770645376755 0x7ffacd710000 638976 C:\Windows\System32\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645376755 0x7ffacd7b0000 270336 C:\Windows\System32\cfgmgr32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Configuration Manager DLL 131795770645376755 0x7ffaced20000 782336 C:\Windows\System32\OLEAUT32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795770645376755 0x7ffacede0000 450560 C:\Windows\System32\coml2.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft COM for Windows 131795770645376755 0x7ffacee50000 1183744 C:\Windows\System32\RPCRT4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795770645376755 0x7ffacef80000 32768 C:\Windows\System32\NSI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation NSI User-mode interface DLL 131795770645376755 0x7ffacef90000 647168 C:\Windows\System32\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795770645376755 0x7ffacf030000 651264 C:\Windows\System32\clbcatq.dll 2001.12.10941.16384 (rs1_release.160715-1616) Microsoft Corporation COM+ Configuration Catalog 131795770645376755 0x7ffacf0d0000 704512 C:\Windows\System32\KERNEL32.DLL 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645376755 0x7ffacf770000 212992 C:\Windows\System32\GDI32.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation GDI Client DLL 131795770645376755 0x7ffacf820000 434176 C:\Windows\System32\WS2_32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation 32-разрядная библиотека Windows Socket 2.0 131795770645376755 0x7ffacf8c0000 1462272 C:\Windows\System32\user32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795770645376755 0x7ffacfb30000 2916352 C:\Windows\System32\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795770645376755 0x7ffacfe20000 663552 C:\Windows\System32\advapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795770645376755 0x7ffad0070000 1277952 C:\Windows\System32\ole32.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft OLE для Windows 131795770645376755 0x7ffad0210000 364544 C:\Windows\System32\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795770645376755 0x7ffad0270000 1908736 C:\Windows\SYSTEM32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 26 360 580 4 00000000:000003e5 131765776311216195 0 0 1 Обязательная метка\Обязательный уровень системы NT AUTHORITY\LOCAL SERVICE svchost.exe C:\Windows\System32\svchost.exe C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted Microsoft Corporation 10.0.14393.0 (rs1_release.160715-1616) Хост-процесс для служб Windows 131795770645376855 0x7ff718c20000 57344 C:\Windows\System32\svchost.exe 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Хост-процесс для служб Windows 131795770645376855 0x7ffab4af0000 606208 C:\Windows\System32\audioses.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Сеанс обработки звука 131795770645376855 0x7ffabaad0000 352256 C:\Windows\System32\deviceaccess.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Device Broker And Policy COM Server 131795770645376855 0x7ffac7e70000 36864 C:\Windows\SYSTEM32\coreaudiopolicymanagerext.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation "coreaudiopolicymanagerext.DYNLINK" 131795770645376855 0x7ffac87d0000 237568 c:\windows\system32\AUDIOSRVPOLICYMANAGER.dll 10.0.14393.351 (rs1_release_inmarket.161014-1755) Microsoft Corporation Windows Audio Service Policy Manager 131795770645376855 0x7ffac90d0000 978944 c:\windows\system32\audiosrv.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служба Windows Audio 131795770645376855 0x7ffac92e0000 1269760 C:\Windows\SYSTEM32\wintypes.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL основных типов Windows 131795770645376855 0x7ffac9480000 462848 c:\windows\system32\MMDevAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation MMDevice API 131795770645376855 0x7ffaca340000 1593344 c:\windows\system32\PROPSYS.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Система страниц свойств (Майкрософт) 131795770645376855 0x7ffaca4e0000 77824 C:\Windows\SYSTEM32\wtsapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Remote Desktop Session Host Server SDK APIs 131795770645376855 0x7ffacb1e0000 1163264 C:\Windows\System32\twinapi.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation twinapi.appcore 131795770645376855 0x7ffacb3f0000 163840 c:\windows\system32\DEVOBJ.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Device Information Set DLL 131795770645376855 0x7ffacb920000 81920 C:\Windows\SYSTEM32\WLDP.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Политика блокировки Windows 131795770645376855 0x7ffacc5c0000 352256 C:\Windows\SYSTEM32\winsta.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Winstation Library 131795770645376855 0x7ffacc620000 176128 C:\Windows\System32\bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795770645376855 0x7ffacc6e0000 61440 C:\Windows\System32\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795770645376855 0x7ffacc6f0000 311296 C:\Windows\System32\POWRPROF.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795770645376855 0x7ffacc760000 65536 C:\Windows\System32\MSASN1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ASN.1 Runtime APIs 131795770645376855 0x7ffacc8f0000 1003520 C:\Windows\System32\ucrtbase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645376855 0x7ffacc9f0000 434176 C:\Windows\System32\bcryptPrimitives.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Cryptographic Primitives Library 131795770645376855 0x7ffacca60000 122880 C:\Windows\System32\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795770645376855 0x7ffacca80000 348160 C:\Windows\System32\WINTRUST.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation Microsoft Trust Verification APIs 131795770645376855 0x7ffaccae0000 692224 C:\Windows\System32\shcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795770645376855 0x7ffacd270000 2215936 C:\Windows\System32\KERNELBASE.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645376855 0x7ffacd490000 1871872 C:\Windows\System32\CRYPT32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API32 криптографии 131795770645376855 0x7ffacd710000 638976 C:\Windows\System32\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645376855 0x7ffacd7b0000 270336 C:\Windows\System32\cfgmgr32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Configuration Manager DLL 131795770645376855 0x7ffaced20000 782336 C:\Windows\System32\OLEAUT32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795770645376855 0x7ffacee50000 1183744 C:\Windows\System32\RPCRT4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795770645376855 0x7ffacef90000 647168 C:\Windows\System32\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795770645376855 0x7ffacf030000 651264 C:\Windows\System32\clbcatq.dll 2001.12.10941.16384 (rs1_release.160715-1616) Microsoft Corporation COM+ Configuration Catalog 131795770645376855 0x7ffacf0d0000 704512 C:\Windows\System32\KERNEL32.DLL 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645376855 0x7ffacf770000 212992 C:\Windows\System32\GDI32.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation GDI Client DLL 131795770645376855 0x7ffacf8c0000 1462272 C:\Windows\System32\user32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795770645376855 0x7ffacfb30000 2916352 C:\Windows\System32\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795770645376855 0x7ffad0210000 364544 C:\Windows\System32\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795770645376855 0x7ffad0270000 1908736 C:\Windows\SYSTEM32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 27 1040 580 4 00000000:000003e5 131765776311708649 0 0 1 Обязательная метка\Обязательный уровень системы NT AUTHORITY\LOCAL SERVICE svchost.exe C:\Windows\system32\svchost.exe C:\Windows\system32\svchost.exe -k LocalServiceNetworkRestricted Microsoft Corporation 10.0.14393.0 (rs1_release.160715-1616) Хост-процесс для служб Windows 131795770645376955 0x7ff718c20000 57344 C:\Windows\system32\svchost.exe 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Хост-процесс для служб Windows 131795770645376955 0x7ffac8820000 57344 C:\Windows\SYSTEM32\cmintegrator.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation cmintegrator.dll 131795770645376955 0x7ffac8880000 69632 C:\Windows\system32\WMICLNT.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation WMI Client API 131795770645376955 0x7ffac8c50000 245760 C:\Windows\system32\wcmcsp.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Windows Connection Service Provider DLL 131795770645376955 0x7ffac8fe0000 737280 c:\windows\system32\wcmsvc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL службы диспетчера подключений Windows 131795770645376955 0x7ffac9790000 98304 C:\Windows\SYSTEM32\nlaapi.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Network Location Awareness 2 131795770645376955 0x7ffaca4e0000 77824 C:\Windows\SYSTEM32\wtsapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Remote Desktop Session Host Server SDK APIs 131795770645376955 0x7ffacb6f0000 143360 C:\Windows\SYSTEM32\gpapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиентские функции API групповой политики 131795770645376955 0x7ffacb920000 81920 C:\Windows\SYSTEM32\WLDP.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Политика блокировки Windows 131795770645376955 0x7ffacbd30000 229376 c:\windows\system32\IPHLPAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API вспомогательного приложения IP 131795770645376955 0x7ffacc5c0000 352256 C:\Windows\SYSTEM32\WINSTA.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Winstation Library 131795770645376955 0x7ffacc6e0000 61440 C:\Windows\System32\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795770645376955 0x7ffacc6f0000 311296 C:\Windows\System32\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795770645376955 0x7ffacc760000 65536 C:\Windows\System32\MSASN1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ASN.1 Runtime APIs 131795770645376955 0x7ffacc8f0000 1003520 C:\Windows\System32\ucrtbase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645376955 0x7ffacc9f0000 434176 C:\Windows\System32\bcryptPrimitives.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Cryptographic Primitives Library 131795770645376955 0x7ffacca60000 122880 C:\Windows\System32\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795770645376955 0x7ffacca80000 348160 C:\Windows\System32\WINTRUST.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation Microsoft Trust Verification APIs 131795770645376955 0x7ffacd270000 2215936 C:\Windows\System32\KERNELBASE.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645376955 0x7ffacd490000 1871872 C:\Windows\System32\CRYPT32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API32 криптографии 131795770645376955 0x7ffacd710000 638976 C:\Windows\System32\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645376955 0x7ffacd7b0000 270336 C:\Windows\System32\cfgmgr32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Configuration Manager DLL 131795770645376955 0x7ffaced20000 782336 C:\Windows\System32\OLEAUT32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795770645376955 0x7ffacee50000 1183744 C:\Windows\System32\RPCRT4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795770645376955 0x7ffacef80000 32768 C:\Windows\System32\NSI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation NSI User-mode interface DLL 131795770645376955 0x7ffacef90000 647168 C:\Windows\System32\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795770645376955 0x7ffacf0d0000 704512 C:\Windows\System32\KERNEL32.DLL 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645376955 0x7ffacf770000 212992 C:\Windows\System32\GDI32.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation GDI Client DLL 131795770645376955 0x7ffacf820000 434176 C:\Windows\System32\WS2_32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation 32-разрядная библиотека Windows Socket 2.0 131795770645376955 0x7ffacf8c0000 1462272 C:\Windows\System32\user32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795770645376955 0x7ffacfb30000 2916352 C:\Windows\System32\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795770645376955 0x7ffacfe20000 663552 C:\Windows\System32\advapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795770645376955 0x7ffad0210000 364544 C:\Windows\System32\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795770645376955 0x7ffad0270000 1908736 C:\Windows\SYSTEM32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 28 1068 580 4 00000000:000003e4 131765776312395030 0 0 1 Обязательная метка\Обязательный уровень системы NT AUTHORITY\NETWORK SERVICE svchost.exe C:\Windows\system32\svchost.exe C:\Windows\system32\svchost.exe -k NetworkService Microsoft Corporation 10.0.14393.0 (rs1_release.160715-1616) Хост-процесс для служб Windows 131795770645377076 0x7ff718c20000 57344 C:\Windows\system32\svchost.exe 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Хост-процесс для служб Windows 131795770645377076 0x7ffab1fd0000 2277376 C:\Windows\System32\msxml3.dll 8.110.14393.1532 Microsoft Corporation MSXML 3.0 131795770645377076 0x7ffabcf50000 921600 C:\Windows\system32\drvstore.dll 10.0.14393.351 (rs1_release_inmarket.161014-1755) Microsoft Corporation Driver Store API 131795770645377076 0x7ffabf1d0000 192512 c:\windows\system32\CRYPTNET.dll 10.0.14393.2035 (rs1_release_inmarket.180110-1910) Microsoft Corporation Crypto Network Related API 131795770645377076 0x7ffac1d60000 589824 c:\windows\system32\webio.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API протоколов передачи по Веб 131795770645377076 0x7ffac34c0000 81920 C:\Windows\system32\vss_ps.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation Microsoft® Volume Shadow Copy Service proxy/stub 131795770645377076 0x7ffac3810000 167936 C:\Windows\SYSTEM32\Cabinet.dll 5.00 (rs1_release.160715-1616) Microsoft Corporation Microsoft® Cabinet File API 131795770645377076 0x7ffac3840000 3088384 C:\Windows\system32\ESENT.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширяемая подсистема хранения данных ESE для Microsoft(R) Windows(R) 131795770645377076 0x7ffac4e70000 102400 C:\Windows\system32\samcli.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Security Accounts Manager Client DLL 131795770645377076 0x7ffac6410000 98304 C:\Windows\system32\VssTrace.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека трассировки службы теневого копирования тома Microsoft® 131795770645377076 0x7ffac6430000 1581056 C:\Windows\system32\VSSAPI.DLL 10.0.14393.953 (rs1_release_inmarket.170303-1614) Microsoft Corporation Microsoft® Volume Shadow Copy Requestor/Writer Services API DLL 131795770645377076 0x7ffac65c0000 155648 C:\Windows\System32\cryptcatsvc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Cryptographic Catalog Services 131795770645377076 0x7ffac65f0000 77824 C:\Windows\System32\crypttpmeksvc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Cryptographic TPM Endorsement Key Services 131795770645377076 0x7ffac6610000 40960 C:\Windows\System32\rasadhlp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Remote Access AutoDial Helper 131795770645377076 0x7ffac6680000 102400 c:\windows\system32\cryptsvc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Службы криптографии 131795770645377076 0x7ffac69c0000 839680 c:\windows\system32\WINHTTP.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Службы HTTP Windows 131795770645377076 0x7ffac6b90000 53248 c:\windows\system32\DSPARSE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Active Directory Domain Services API 131795770645377076 0x7ffac6f00000 303104 c:\windows\system32\wkssvc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL службы рабочей станции 131795770645377076 0x7ffac79c0000 57344 C:\Windows\System32\npmproxy.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Network List Manager Proxy 131795770645377076 0x7ffac79e0000 184320 C:\Windows\SYSTEM32\netjoin.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL присоединения к домену 131795770645377076 0x7ffac7aa0000 401408 C:\Windows\system32\WlanApi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows WLAN AutoConfig Client Side API DLL 131795770645377076 0x7ffac7c00000 266240 C:\Windows\System32\mstask.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека интерфейса планировщика заданий 131795770645377076 0x7ffac7e50000 86016 C:\Windows\system32\ssdpapi.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation SSDP Client API DLL 131795770645377076 0x7ffac8260000 425984 c:\windows\system32\ncsi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Индикатор работоспособности сетевых подключений 131795770645377076 0x7ffac8370000 389120 c:\windows\system32\nlasvc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служба сведений о подключенных сетях 2 131795770645377076 0x7ffac83d0000 106496 C:\Windows\SYSTEM32\dhcpcsvc.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служба DHCP-клиента 131795770645377076 0x7ffac83f0000 90112 C:\Windows\SYSTEM32\dhcpcsvc6.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиент DHCPv6 131795770645377076 0x7ffac8410000 40960 C:\Windows\System32\dnsext.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DNS extension DLL 131795770645377076 0x7ffac8420000 434176 C:\Windows\SYSTEM32\Fwpuclnt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API пользовательского режима FWP/IPsec 131795770645377076 0x7ffac8810000 45056 C:\Windows\SYSTEM32\WINNSI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Network Store Information RPC interface 131795770645377076 0x7ffac8830000 290816 c:\windows\system32\dnsrslvr.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служба кэширующего сопоставителя DNS 131795770645377076 0x7ffac8880000 69632 c:\windows\system32\WMICLNT.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation WMI Client API 131795770645377076 0x7ffac8cf0000 815104 C:\Windows\System32\taskschd.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Task Scheduler COM API 131795770645377076 0x7ffac90b0000 90112 c:\windows\system32\wkscli.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Workstation Service Client DLL 131795770645377076 0x7ffac9220000 397312 C:\Windows\SYSTEM32\wevtapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API настройки и использования событий 131795770645377076 0x7ffac9bb0000 479232 C:\Windows\System32\ES.DLL 2001.12.10941.16384 (rs1_release.160715-1616) Microsoft Corporation COM+ 131795770645377076 0x7ffac9f10000 221184 C:\Windows\System32\netprofm.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Network List Manager 131795770645377076 0x7ffaca340000 1593344 C:\Windows\System32\PROPSYS.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Система страниц свойств (Майкрософт) 131795770645377076 0x7ffaca4e0000 77824 C:\Windows\SYSTEM32\wtsapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Remote Desktop Session Host Server SDK APIs 131795770645377076 0x7ffaca610000 143360 C:\Windows\system32\SAMLIB.dll 10.0.14393.82 (rs1_release.160805-1735) Microsoft Corporation SAM Library DLL 131795770645377076 0x7ffacb3f0000 163840 c:\windows\system32\DEVOBJ.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Device Information Set DLL 131795770645377076 0x7ffacb6f0000 143360 C:\Windows\SYSTEM32\gpapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиентские функции API групповой политики 131795770645377076 0x7ffacb920000 81920 C:\Windows\SYSTEM32\WLDP.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Политика блокировки Windows 131795770645377076 0x7ffacbbb0000 208896 C:\Windows\system32\rsaenh.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Enhanced Cryptographic Provider 131795770645377076 0x7ffacbd30000 229376 C:\Windows\SYSTEM32\IPHLPAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API вспомогательного приложения IP 131795770645377076 0x7ffacbd70000 659456 C:\Windows\SYSTEM32\DNSAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Динамическая библиотека API DNS-клиента 131795770645377076 0x7ffacbe20000 53248 C:\Windows\SYSTEM32\netutils.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API Helpers DLL 131795770645377076 0x7ffacbe40000 126976 C:\Windows\system32\USERENV.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Userenv 131795770645377076 0x7ffacbfb0000 376832 C:\Windows\system32\mswsock.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширение поставщика службы API Microsoft Windows Sockets 2.0 131795770645377076 0x7ffacc150000 94208 C:\Windows\SYSTEM32\CRYPTSP.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Cryptographic Service Provider API 131795770645377076 0x7ffacc170000 45056 C:\Windows\SYSTEM32\CRYPTBASE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base cryptographic API DLL 131795770645377076 0x7ffacc1b0000 126976 C:\Windows\SYSTEM32\JoinUtil.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Join Utility DLL 131795770645377076 0x7ffacc350000 180224 C:\Windows\system32\sspicli.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Security Support Provider Interface 131795770645377076 0x7ffacc520000 622592 C:\Windows\SYSTEM32\sxs.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Fusion 2.5 131795770645377076 0x7ffacc5c0000 352256 C:\Windows\SYSTEM32\WINSTA.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Winstation Library 131795770645377076 0x7ffacc620000 176128 C:\Windows\SYSTEM32\bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795770645377076 0x7ffacc6e0000 61440 C:\Windows\System32\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795770645377076 0x7ffacc6f0000 311296 C:\Windows\System32\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795770645377076 0x7ffacc740000 81920 C:\Windows\System32\profapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Profile Basic API 131795770645377076 0x7ffacc760000 65536 C:\Windows\System32\MSASN1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ASN.1 Runtime APIs 131795770645377076 0x7ffacc8f0000 1003520 C:\Windows\System32\ucrtbase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645377076 0x7ffacc9f0000 434176 C:\Windows\System32\bcryptPrimitives.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Cryptographic Primitives Library 131795770645377076 0x7ffacca60000 122880 C:\Windows\System32\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795770645377076 0x7ffacca80000 348160 C:\Windows\System32\WINTRUST.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation Microsoft Trust Verification APIs 131795770645377076 0x7ffaccae0000 692224 C:\Windows\System32\shcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795770645377076 0x7ffacd270000 2215936 C:\Windows\System32\KERNELBASE.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645377076 0x7ffacd490000 1871872 C:\Windows\System32\CRYPT32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API32 криптографии 131795770645377076 0x7ffacd710000 638976 C:\Windows\System32\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645377076 0x7ffacd7b0000 270336 C:\Windows\System32\cfgmgr32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Configuration Manager DLL 131795770645377076 0x7ffaced20000 782336 C:\Windows\System32\OLEAUT32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795770645377076 0x7ffacee50000 1183744 C:\Windows\System32\RPCRT4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795770645377076 0x7ffacef80000 32768 C:\Windows\System32\NSI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation NSI User-mode interface DLL 131795770645377076 0x7ffacef90000 647168 C:\Windows\System32\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795770645377076 0x7ffacf030000 651264 C:\Windows\System32\clbcatq.dll 2001.12.10941.16384 (rs1_release.160715-1616) Microsoft Corporation COM+ Configuration Catalog 131795770645377076 0x7ffacf0d0000 704512 C:\Windows\System32\KERNEL32.DLL 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645377076 0x7ffacf770000 212992 C:\Windows\System32\GDI32.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation GDI Client DLL 131795770645377076 0x7ffacf820000 434176 C:\Windows\System32\WS2_32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation 32-разрядная библиотека Windows Socket 2.0 131795770645377076 0x7ffacf8c0000 1462272 C:\Windows\System32\user32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795770645377076 0x7ffacfb30000 2916352 C:\Windows\System32\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795770645377076 0x7ffacfe20000 663552 C:\Windows\System32\ADVAPI32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795770645377076 0x7ffad0210000 364544 C:\Windows\System32\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795770645377076 0x7ffad0270000 1908736 C:\Windows\SYSTEM32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 29 1248 580 4 00000000:000003e7 131765776322176070 0 0 1 Обязательная метка\Обязательный уровень системы NT AUTHORITY\СИСТЕМА spoolsv.exe C:\Windows\System32\spoolsv.exe C:\Windows\System32\spoolsv.exe Microsoft Corporation 10.0.14393.0 (rs1_release.160715-1616) Диспетчер очереди печати 131795770645377182 0x7ff639680000 819200 C:\Windows\System32\spoolsv.exe 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Диспетчер очереди печати 131795770645377182 0x7ffab8a60000 3346432 C:\Windows\system32\spool\DRIVERS\x64\3\PrintConfig.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Пользовательский интерфейс PrintConfig 131795770645377182 0x7ffaba980000 815104 C:\Windows\System32\jscript.dll 5.812.10240.16384 Microsoft Corporation Microsoft ® JScript 131795770645377182 0x7ffabae60000 77824 C:\Windows\System32\DEVRTL.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Device Management Run Time Library 131795770645377182 0x7ffabb7d0000 851968 C:\Windows\System32\win32spl.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик печати с исполнением на стороне клиента 131795770645377182 0x7ffabbd40000 176128 C:\Windows\SYSTEM32\prntvpt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Print Ticket Services Module 131795770645377182 0x7ffabbd70000 3346432 C:\Windows\System32\DriverStore\FileRepository\prnms003.inf_amd64_53d78f68bc1697cc\Amd64\PrintConfig.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Пользовательский интерфейс PrintConfig 131795770645377182 0x7ffabc0c0000 118784 C:\Windows\System32\SPFILEQ.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows SPFILEQ 131795770645377182 0x7ffabc590000 118784 C:\Program Files\Windows Defender\MpOav.dll 4.10.14393.1794 (rs1_release.171008-1615) Microsoft Corporation IOfficeAntiVirus Module 131795770645377182 0x7ffabc5b0000 65536 C:\Windows\SYSTEM32\amsi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Anti-Malware Scan Interface 131795770645377182 0x7ffabc880000 73728 C:\Windows\System32\cscapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Offline Files Win32 API 131795770645377182 0x7ffabcf50000 921600 C:\Windows\System32\drvstore.dll 10.0.14393.351 (rs1_release_inmarket.161014-1755) Microsoft Corporation Driver Store API 131795770645377182 0x7ffabd040000 77824 C:\Windows\System32\fdPnp.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Pnp Provider Dll 131795770645377182 0x7ffabd060000 610304 C:\Windows\System32\WSDMon.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Диспетчер порта принтера WSD 131795770645377182 0x7ffabd100000 348160 C:\Windows\System32\usbmon.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Standard Dynamic Printing Port Monitor DLL 131795770645377182 0x7ffabd160000 86016 C:\Windows\System32\wsnmp32.dll 10.0.14393.2189 (rs1_release.180329-1711) Microsoft Corporation Microsoft WinSNMP v2.0 Manager API 131795770645377182 0x7ffabd180000 548864 C:\Windows\system32\winspool.drv 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Драйвер диспетчера очереди Windows 131795770645377182 0x7ffabd2a0000 1159168 C:\Windows\System32\localspl.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Библиотека локального диспетчера очереди 131795770645377182 0x7ffabde60000 237568 C:\Windows\System32\tcpmon.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека монитора портов TCP/IP 131795770645377182 0x7ffabe3f0000 65536 C:\Windows\system32\spool\PRTPROCS\x64\winprint.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Windows Print Processor DLL 131795770645377182 0x7ffabe6c0000 77824 C:\Windows\System32\PrintIsolationProxy.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Print Sandbox COM Proxy Stub 131795770645377182 0x7ffabe8a0000 49152 C:\Windows\System32\snmpapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SNMP Utility Library 131795770645377182 0x7ffabe980000 114688 C:\Windows\System32\SPOOLSS.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Spooler SubSystem DLL 131795770645377182 0x7ffabef80000 69632 C:\Windows\System32\sfc_os.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows File Protection 131795770645377182 0x7ffabf330000 2457600 C:\Windows\System32\msxml6.dll 6.30.14393.2156 Microsoft Corporation MSXML 6.0 131795770645377182 0x7ffabf5d0000 2924544 C:\Windows\SYSTEM32\wininet.dll 11.00.14393.447 (rs1_release_inmarket.161102-0100) Microsoft Corporation Расширения Интернета для Win32 131795770645377182 0x7ffabff10000 155648 C:\Windows\System32\srvcli.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Server Service Client DLL 131795770645377182 0x7ffac0af0000 114688 C:\Windows\System32\ATL.DLL 3.05.2284 Microsoft Corporation ATL Module for Windows XP (Unicode) 131795770645377182 0x7ffac1f00000 65536 C:\Windows\System32\FXSMON.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Fax Print Monitor 131795770645377182 0x7ffac1f30000 118784 C:\Windows\System32\SPINF.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows SPINF 131795770645377182 0x7ffac2b80000 40960 C:\Windows\SYSTEM32\VERSION.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Version Checking and File Installation Libraries 131795770645377182 0x7ffac34e0000 1843200 C:\Windows\SYSTEM32\urlmon.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширения OLE32 для Win32 131795770645377182 0x7ffac3810000 167936 C:\Windows\System32\cabinet.dll 5.00 (rs1_release.160715-1616) Microsoft Corporation Microsoft® Cabinet File API 131795770645377182 0x7ffac3cb0000 2772992 C:\Windows\SYSTEM32\iertutil.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служебная программа времени выполнения для Internet Explorer 131795770645377182 0x7ffac4e90000 32768 C:\Windows\System32\wshirda.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Sockets Helper DLL 131795770645377182 0x7ffac60e0000 221184 C:\Windows\System32\XmlLite.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft XmlLite Library 131795770645377182 0x7ffac6610000 40960 C:\Windows\System32\rasadhlp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Remote Access AutoDial Helper 131795770645377182 0x7ffac6710000 172032 C:\Windows\System32\FunDisc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL обнаружения функции 131795770645377182 0x7ffac6750000 1380352 C:\Windows\System32\webservices.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Среда выполнения веб-служб Windows 131795770645377182 0x7ffac68b0000 696320 C:\Windows\System32\wsdapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Веб-службы для библиотек DLL API-интерфейсов устройств 131795770645377182 0x7ffac6990000 69632 C:\Windows\System32\deviceassociation.dll 10.0.14393.82 (rs1_release.160805-1735) Microsoft Corporation Device Association Client DLL 131795770645377182 0x7ffac69c0000 839680 C:\Windows\System32\WINHTTP.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Службы HTTP Windows 131795770645377182 0x7ffac6ba0000 49152 C:\Windows\System32\Secur32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Security Support Provider Interface 131795770645377182 0x7ffac7e00000 196608 C:\Windows\System32\inetpp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL Internet Print Provider 131795770645377182 0x7ffac8420000 434176 C:\Windows\System32\fwpuclnt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API пользовательского режима FWP/IPsec 131795770645377182 0x7ffac8810000 45056 C:\Windows\SYSTEM32\WINNSI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Network Store Information RPC interface 131795770645377182 0x7ffac9290000 40960 C:\Windows\System32\DSROLE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DS Setup Client DLL 131795770645377182 0x7ffaca4e0000 77824 C:\Windows\System32\WTSAPI32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Remote Desktop Session Host Server SDK APIs 131795770645377182 0x7ffacadf0000 499712 C:\Windows\system32\apphelp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиентская библиотека совместимости приложений 131795770645377182 0x7ffacb360000 176128 C:\Windows\System32\fwbase.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Firewall Base DLL 131795770645377182 0x7ffacb3f0000 163840 C:\Windows\System32\DEVOBJ.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Device Information Set DLL 131795770645377182 0x7ffacb420000 204800 C:\Windows\SYSTEM32\ntmarta.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик Windows NT MARTA 131795770645377182 0x7ffacb460000 548864 C:\Windows\System32\FirewallAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API брандмауэра Windows 131795770645377182 0x7ffacb6f0000 143360 C:\Windows\SYSTEM32\gpapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиентские функции API групповой политики 131795770645377182 0x7ffacbbb0000 208896 C:\Windows\system32\rsaenh.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Enhanced Cryptographic Provider 131795770645377182 0x7ffacbd30000 229376 C:\Windows\SYSTEM32\IPHLPAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API вспомогательного приложения IP 131795770645377182 0x7ffacbd70000 659456 C:\Windows\System32\DNSAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Динамическая библиотека API DNS-клиента 131795770645377182 0x7ffacbe20000 53248 C:\Windows\System32\netutils.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API Helpers DLL 131795770645377182 0x7ffacbe40000 126976 C:\Windows\System32\USERENV.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Userenv 131795770645377182 0x7ffacbfb0000 376832 C:\Windows\system32\mswsock.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширение поставщика службы API Microsoft Windows Sockets 2.0 131795770645377182 0x7ffacc150000 94208 C:\Windows\System32\CRYPTSP.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Cryptographic Service Provider API 131795770645377182 0x7ffacc170000 45056 C:\Windows\System32\CRYPTBASE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base cryptographic API DLL 131795770645377182 0x7ffacc350000 180224 C:\Windows\System32\SspiCli.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Security Support Provider Interface 131795770645377182 0x7ffacc520000 622592 C:\Windows\SYSTEM32\sxs.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Fusion 2.5 131795770645377182 0x7ffacc5c0000 352256 C:\Windows\System32\WINSTA.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Winstation Library 131795770645377182 0x7ffacc620000 176128 C:\Windows\System32\bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795770645377182 0x7ffacc6e0000 61440 C:\Windows\System32\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795770645377182 0x7ffacc6f0000 311296 C:\Windows\System32\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795770645377182 0x7ffacc740000 81920 C:\Windows\System32\profapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Profile Basic API 131795770645377182 0x7ffacc760000 65536 C:\Windows\System32\MSASN1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ASN.1 Runtime APIs 131795770645377182 0x7ffacc8f0000 1003520 C:\Windows\System32\ucrtbase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645377182 0x7ffacc9f0000 434176 C:\Windows\System32\bcryptPrimitives.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Cryptographic Primitives Library 131795770645377182 0x7ffacca60000 122880 C:\Windows\System32\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795770645377182 0x7ffacca80000 348160 C:\Windows\System32\WINTRUST.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation Microsoft Trust Verification APIs 131795770645377182 0x7ffaccae0000 692224 C:\Windows\System32\shcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795770645377182 0x7ffaccb90000 7180288 C:\Windows\System32\windows.storage.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API хранения Microsoft WinRT 131795770645377182 0x7ffacd270000 2215936 C:\Windows\System32\KERNELBASE.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645377182 0x7ffacd490000 1871872 C:\Windows\System32\CRYPT32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API32 криптографии 131795770645377182 0x7ffacd710000 638976 C:\Windows\System32\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645377182 0x7ffacd7b0000 270336 C:\Windows\System32\cfgmgr32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Configuration Manager DLL 131795770645377182 0x7ffacd810000 22056960 C:\Windows\System32\SHELL32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Общая библиотека оболочки Windows 131795770645377182 0x7ffaced20000 782336 C:\Windows\System32\OLEAUT32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795770645377182 0x7ffacee50000 1183744 C:\Windows\System32\RPCRT4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795770645377182 0x7ffacef80000 32768 C:\Windows\System32\NSI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation NSI User-mode interface DLL 131795770645377182 0x7ffacef90000 647168 C:\Windows\System32\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795770645377182 0x7ffacf030000 651264 C:\Windows\System32\clbcatq.dll 2001.12.10941.16384 (rs1_release.160715-1616) Microsoft Corporation COM+ Configuration Catalog 131795770645377182 0x7ffacf0d0000 704512 C:\Windows\System32\KERNEL32.DLL 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645377182 0x7ffacf340000 4362240 C:\Windows\System32\SETUPAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Setup API 131795770645377182 0x7ffacf770000 212992 C:\Windows\System32\GDI32.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation GDI Client DLL 131795770645377182 0x7ffacf820000 434176 C:\Windows\System32\WS2_32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation 32-разрядная библиотека Windows Socket 2.0 131795770645377182 0x7ffacf8c0000 1462272 C:\Windows\System32\USER32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795770645377182 0x7ffacfb30000 2916352 C:\Windows\System32\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795770645377182 0x7ffacfe20000 663552 C:\Windows\System32\advapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795770645377182 0x7ffad0070000 1277952 C:\Windows\System32\ole32.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft OLE для Windows 131795770645377182 0x7ffad01b0000 335872 C:\Windows\System32\SHLWAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека небольших программ оболочки 131795770645377182 0x7ffad0210000 364544 C:\Windows\System32\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795770645377182 0x7ffad0270000 1908736 C:\Windows\SYSTEM32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 30 1512 580 4 00000000:000003e5 131765776336551242 0 0 1 Обязательная метка\Обязательный уровень системы NT AUTHORITY\LOCAL SERVICE svchost.exe C:\Windows\system32\svchost.exe C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation Microsoft Corporation 10.0.14393.0 (rs1_release.160715-1616) Хост-процесс для служб Windows 131795770645377290 0x7ff718c20000 57344 C:\Windows\system32\svchost.exe 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Хост-процесс для служб Windows 131795770645377290 0x7ffabe9f0000 258048 c:\windows\system32\ssdpsrv.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL службы SSDP 131795770645377290 0x7ffac3f60000 225280 c:\windows\system32\FWPolicyIOMgr.dll 10.0.14393.2189 (rs1_release.180329-1711) Microsoft Corporation FwPolicyIoMgr DLL 131795770645377290 0x7ffac60e0000 221184 C:\Windows\System32\XmlLite.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft XmlLite Library 131795770645377290 0x7ffac6400000 53248 c:\windows\system32\HTTPAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation HTTP Protocol Stack API 131795770645377290 0x7ffac66c0000 32768 C:\Windows\system32\wship6.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL помощника Winsock2 (TL/IPv6) 131795770645377290 0x7ffac66d0000 32768 C:\Windows\system32\wshtcpip.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL помощника службы Winsock2 (TL/IPv4) 131795770645377290 0x7ffac6700000 40960 C:\Windows\system32\wshqos.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL помощника службы QoS Winsock2 131795770645377290 0x7ffac6710000 172032 C:\Windows\System32\FunDisc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL обнаружения функции 131795770645377290 0x7ffac6750000 1380352 c:\windows\system32\webservices.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Среда выполнения веб-служб Windows 131795770645377290 0x7ffac68b0000 696320 c:\windows\system32\wsdapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Веб-службы для библиотек DLL API-интерфейсов устройств 131795770645377290 0x7ffac69b0000 57344 c:\windows\system32\fdrespub.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служба публикации ресурсов обнаружения функции 131795770645377290 0x7ffac69c0000 839680 c:\windows\system32\WINHTTP.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Службы HTTP Windows 131795770645377290 0x7ffac83d0000 106496 C:\Windows\SYSTEM32\dhcpcsvc.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служба DHCP-клиента 131795770645377290 0x7ffac83f0000 90112 C:\Windows\SYSTEM32\dhcpcsvc6.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиент DHCPv6 131795770645377290 0x7ffac8810000 45056 C:\Windows\SYSTEM32\WINNSI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Network Store Information RPC interface 131795770645377290 0x7ffac90b0000 90112 c:\windows\system32\wkscli.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Workstation Service Client DLL 131795770645377290 0x7ffacb360000 176128 c:\windows\system32\fwbase.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Firewall Base DLL 131795770645377290 0x7ffacb460000 548864 c:\windows\system32\FirewallAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API брандмауэра Windows 131795770645377290 0x7ffacb920000 81920 C:\Windows\SYSTEM32\WLDP.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Политика блокировки Windows 131795770645377290 0x7ffacbbb0000 208896 C:\Windows\system32\rsaenh.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Enhanced Cryptographic Provider 131795770645377290 0x7ffacbd30000 229376 c:\windows\system32\IPHLPAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API вспомогательного приложения IP 131795770645377290 0x7ffacbe20000 53248 c:\windows\system32\netutils.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API Helpers DLL 131795770645377290 0x7ffacbfb0000 376832 C:\Windows\system32\mswsock.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширение поставщика службы API Microsoft Windows Sockets 2.0 131795770645377290 0x7ffacc150000 94208 c:\windows\system32\CRYPTSP.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Cryptographic Service Provider API 131795770645377290 0x7ffacc170000 45056 C:\Windows\system32\CRYPTBASE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base cryptographic API DLL 131795770645377290 0x7ffacc350000 180224 C:\Windows\system32\sspicli.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Security Support Provider Interface 131795770645377290 0x7ffacc620000 176128 c:\windows\system32\bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795770645377290 0x7ffacc6e0000 61440 C:\Windows\System32\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795770645377290 0x7ffacc6f0000 311296 C:\Windows\System32\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795770645377290 0x7ffacc760000 65536 C:\Windows\System32\MSASN1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ASN.1 Runtime APIs 131795770645377290 0x7ffacc8f0000 1003520 C:\Windows\System32\ucrtbase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645377290 0x7ffacc9f0000 434176 C:\Windows\System32\bcryptPrimitives.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Cryptographic Primitives Library 131795770645377290 0x7ffacca60000 122880 C:\Windows\System32\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795770645377290 0x7ffacca80000 348160 C:\Windows\System32\WINTRUST.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation Microsoft Trust Verification APIs 131795770645377290 0x7ffacd270000 2215936 C:\Windows\System32\KERNELBASE.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645377290 0x7ffacd490000 1871872 C:\Windows\System32\CRYPT32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API32 криптографии 131795770645377290 0x7ffacee50000 1183744 C:\Windows\System32\RPCRT4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795770645377290 0x7ffacef80000 32768 C:\Windows\System32\NSI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation NSI User-mode interface DLL 131795770645377290 0x7ffacef90000 647168 C:\Windows\System32\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795770645377290 0x7ffacf030000 651264 C:\Windows\System32\clbcatq.dll 2001.12.10941.16384 (rs1_release.160715-1616) Microsoft Corporation COM+ Configuration Catalog 131795770645377290 0x7ffacf0d0000 704512 C:\Windows\System32\KERNEL32.DLL 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645377290 0x7ffacf770000 212992 C:\Windows\System32\GDI32.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation GDI Client DLL 131795770645377290 0x7ffacf820000 434176 C:\Windows\System32\WS2_32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation 32-разрядная библиотека Windows Socket 2.0 131795770645377290 0x7ffacf8c0000 1462272 C:\Windows\System32\user32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795770645377290 0x7ffacfb30000 2916352 C:\Windows\System32\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795770645377290 0x7ffad0210000 364544 C:\Windows\System32\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795770645377290 0x7ffad0270000 1908736 C:\Windows\SYSTEM32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 31 1556 580 4 00000000:000003e7 131765776339471770 0 0 1 Обязательная метка\Обязательный уровень системы NT AUTHORITY\СИСТЕМА svchost.exe C:\Windows\System32\svchost.exe C:\Windows\System32\svchost.exe -k utcsvc Microsoft Corporation 10.0.14393.0 (rs1_release.160715-1616) Хост-процесс для служб Windows 131795770645377395 0x272f9bf0000 12288 C:\Windows\SYSTEM32\sfc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows File Protection 131795770645377395 0x7ff718c20000 57344 C:\Windows\System32\svchost.exe 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Хост-процесс для служб Windows 131795770645377395 0x7ffab93b0000 897024 C:\Windows\System32\TokenBroker.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Token Broker 131795770645377395 0x7ffabaab0000 94208 C:\Windows\SYSTEM32\profext.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation profext 131795770645377395 0x7ffabae60000 77824 C:\Windows\SYSTEM32\DEVRTL.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Device Management Run Time Library 131795770645377395 0x7ffabbd10000 65536 C:\Windows\System32\TOKENBINDING.dll 10.0.14393.1593 (rs1_release.170731-1934) Microsoft Corporation Token Binding Protocol 131795770645377395 0x7ffabca50000 819200 C:\Windows\System32\Windows.Security.Authentication.Web.Core.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Token Broker WinRT API 131795770645377395 0x7ffabcf50000 921600 C:\Windows\System32\drvstore.dll 10.0.14393.351 (rs1_release_inmarket.161014-1755) Microsoft Corporation Driver Store API 131795770645377395 0x7ffabe850000 155648 C:\Windows\System32\IDStore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Identity Store 131795770645377395 0x7ffabef80000 69632 C:\Windows\SYSTEM32\sfc_os.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows File Protection 131795770645377395 0x7ffabefd0000 258048 C:\Windows\SYSTEM32\aepic.dll 10.0.17060.1029 (WinBuild.160101.0800) Microsoft Corporation Application Experience Program Cache 131795770645377395 0x7ffabf140000 176128 C:\Windows\System32\CourtesyEngine.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Feedback Courtesy Engine DLL Server 131795770645377395 0x7ffabf1d0000 192512 C:\Windows\System32\cryptnet.dll 10.0.14393.2035 (rs1_release_inmarket.180110-1910) Microsoft Corporation Crypto Network Related API 131795770645377395 0x7ffabfbe0000 1011712 C:\Windows\System32\Windows.Security.Authentication.OnlineId.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation Windows Runtime OnlineId Authentication DLL 131795770645377395 0x7ffabfde0000 143360 c:\windows\system32\CRYPTXML.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API-интерфейс XML DigSig 131795770645377395 0x7ffabff60000 135168 C:\Windows\system32\ncryptsslp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft SChannel Provider 131795770645377395 0x7ffac05f0000 94208 C:\Windows\System32\wwapi.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation WWAN API 131795770645377395 0x7ffac0910000 724992 C:\Windows\System32\Windows.Networking.Connectivity.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Networking Connectivity Runtime DLL 131795770645377395 0x7ffac09d0000 884736 C:\Windows\System32\wpnapps.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Приложения для push-уведомлений Windows 131795770645377395 0x7ffac0ad0000 86016 C:\Windows\SYSTEM32\mskeyprotect.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик защиты ключей (Майкрософт) 131795770645377395 0x7ffac0bf0000 3559424 C:\Windows\System32\ActXPrxy.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation ActiveX Interface Marshaling Library 131795770645377395 0x7ffac1d60000 589824 c:\windows\system32\webio.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API протоколов передачи по Веб 131795770645377395 0x7ffac20d0000 110592 C:\Windows\System32\RMCLIENT.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Resource Manager Client 131795770645377395 0x7ffac23c0000 331776 C:\Windows\System32\OneCoreCommonProxyStub.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation OneCore Common Proxy Stub 131795770645377395 0x7ffac2590000 659456 C:\Windows\System32\FlightSettings.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Параметры цикла тестирования 131795770645377395 0x7ffac2700000 98304 C:\Windows\SYSTEM32\Netapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API DLL 131795770645377395 0x7ffac2750000 106496 C:\Windows\System32\bcd.dll 10.0.14393.1794 (rs1_release.171008-1615) Microsoft Corporation BCD DLL 131795770645377395 0x7ffac2b30000 286720 C:\Windows\System32\usermgrproxy.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation UserMgrProxy 131795770645377395 0x7ffac3cb0000 2772992 C:\Windows\SYSTEM32\iertutil.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служебная программа времени выполнения для Internet Explorer 131795770645377395 0x7ffac4000000 274432 C:\Windows\SYSTEM32\policymanager.dll 10.0.14393.2035 (rs1_release_inmarket.180110-1910) Microsoft Corporation Policy Manager DLL 131795770645377395 0x7ffac4070000 499712 C:\Windows\SYSTEM32\DSREG.DLL 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation AD/AAD User Device Registration 131795770645377395 0x7ffac4450000 86016 C:\Windows\SYSTEM32\usermgrcli.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation UserMgr API DLL 131795770645377395 0x7ffac5fd0000 1056768 c:\windows\system32\WindowsPerformanceRecorderControl.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Windows Performance Recorder Control Library 131795770645377395 0x7ffac60e0000 221184 c:\windows\system32\XmlLite.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft XmlLite Library 131795770645377395 0x7ffac6210000 2007040 c:\windows\system32\diagtrack.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Диагностическое отслеживание Microsoft Windows 131795770645377395 0x7ffac6610000 40960 C:\Windows\System32\rasadhlp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Remote Access AutoDial Helper 131795784851898943 0x7ffac66a0000 86016 C:\Windows\System32\OnDemandConnRouteHelper.dll 10.0.14393.351 (rs1_release_inmarket.161014-1755) Microsoft Corporation On Demand Connctiond Route Helper 131795770645377395 0x7ffac6750000 1380352 c:\windows\system32\webservices.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Среда выполнения веб-служб Windows 131795770645377395 0x7ffac69c0000 839680 c:\windows\system32\WINHTTP.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Службы HTTP Windows 131795770645377395 0x7ffac79c0000 57344 C:\Windows\System32\npmproxy.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Network List Manager Proxy 131795770645377395 0x7ffac7aa0000 401408 C:\Windows\SYSTEM32\wlanapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows WLAN AutoConfig Client Side API DLL 131795770645377395 0x7ffac83d0000 106496 C:\Windows\SYSTEM32\dhcpcsvc.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служба DHCP-клиента 131795770645377395 0x7ffac83f0000 90112 C:\Windows\SYSTEM32\dhcpcsvc6.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиент DHCPv6 131795784853041383 0x7ffac8420000 434176 C:\Windows\System32\FWPUCLNT.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API пользовательского режима FWP/IPsec 131795770645377395 0x7ffac8540000 286720 C:\Windows\System32\vaultcli.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиентская библиотека хранилища учетных данных 131795770645377395 0x7ffac8810000 45056 C:\Windows\SYSTEM32\WINNSI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Network Store Information RPC interface 131795770645377395 0x7ffac8cf0000 815104 C:\Windows\System32\taskschd.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Task Scheduler COM API 131795770645377395 0x7ffac8dc0000 167936 C:\Windows\System32\dbgcore.DLL 10.0.14321.1024 (debuggers(dbg).160715-1616) Microsoft Windows Core Debugging Helpers 131795770645377395 0x7ffac8df0000 1646592 C:\Windows\system32\dbghelp.dll 10.0.14321.1024 (rs1_release.160715-1616) Microsoft Windows Image Helper 131795770645377395 0x7ffac90b0000 90112 C:\Windows\System32\wkscli.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Workstation Service Client DLL 131795770645377395 0x7ffac92e0000 1269760 C:\Windows\System32\WinTypes.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL основных типов Windows 131795770645377395 0x7ffaca4e0000 77824 C:\Windows\SYSTEM32\wtsapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Remote Desktop Session Host Server SDK APIs 131795770645377395 0x7ffaca610000 143360 C:\Windows\System32\SAMLIB.dll 10.0.14393.82 (rs1_release.160805-1735) Microsoft Corporation SAM Library DLL 131795770645377395 0x7ffacb140000 593920 c:\windows\system32\msvcp110_win.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Microsoft® STL110 C++ Runtime Library 131795770645377395 0x7ffacb1e0000 1163264 C:\Windows\System32\twinapi.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation twinapi.appcore 131795770645377395 0x7ffacb420000 204800 C:\Windows\SYSTEM32\ntmarta.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик Windows NT MARTA 131795770645377395 0x7ffacb6f0000 143360 C:\Windows\SYSTEM32\gpapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиентские функции API групповой политики 131795770645377395 0x7ffacb920000 81920 C:\Windows\SYSTEM32\WLDP.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Политика блокировки Windows 131795770645377395 0x7ffacbaf0000 495616 C:\Windows\system32\schannel.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик безопасности TLS/SSL 131795770645377395 0x7ffacbbb0000 208896 C:\Windows\system32\rsaenh.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Enhanced Cryptographic Provider 131795770645377395 0x7ffacbbf0000 40960 C:\Windows\System32\DPAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Data Protection API 131795770645377395 0x7ffacbd30000 229376 C:\Windows\System32\IPHLPAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API вспомогательного приложения IP 131795770645377395 0x7ffacbd70000 659456 c:\windows\system32\DNSAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Динамическая библиотека API DNS-клиента 131795770645377395 0x7ffacbe20000 53248 C:\Windows\System32\netutils.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API Helpers DLL 131795770645377395 0x7ffacbe40000 126976 c:\windows\system32\USERENV.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Userenv 131795770645377395 0x7ffacbfb0000 376832 C:\Windows\system32\mswsock.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширение поставщика службы API Microsoft Windows Sockets 2.0 131795770645377395 0x7ffacc150000 94208 C:\Windows\SYSTEM32\cryptsp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Cryptographic Service Provider API 131795770645377395 0x7ffacc170000 45056 C:\Windows\System32\CRYPTBASE.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base cryptographic API DLL 131795770645377395 0x7ffacc1f0000 241664 C:\Windows\SYSTEM32\NTASN1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft ASN.1 API 131795770645377395 0x7ffacc230000 155648 C:\Windows\SYSTEM32\ncrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Маршрутизатор Windows NCrypt 131795770645377395 0x7ffacc350000 180224 C:\Windows\SYSTEM32\SspiCli.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Security Support Provider Interface 131795770645377395 0x7ffacc5c0000 352256 C:\Windows\SYSTEM32\WINSTA.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Winstation Library 131795770645377395 0x7ffacc620000 176128 c:\windows\system32\bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795770645377395 0x7ffacc6e0000 61440 C:\Windows\System32\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795770645377395 0x7ffacc6f0000 311296 C:\Windows\System32\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795770645377395 0x7ffacc740000 81920 C:\Windows\System32\profapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Profile Basic API 131795770645377395 0x7ffacc760000 65536 C:\Windows\System32\MSASN1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ASN.1 Runtime APIs 131795770645377395 0x7ffacc8f0000 1003520 C:\Windows\System32\ucrtbase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645377395 0x7ffacc9f0000 434176 C:\Windows\System32\bcryptPrimitives.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Cryptographic Primitives Library 131795770645377395 0x7ffacca60000 122880 C:\Windows\System32\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795770645377395 0x7ffacca80000 348160 C:\Windows\System32\WINTRUST.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation Microsoft Trust Verification APIs 131795770645377395 0x7ffaccae0000 692224 C:\Windows\System32\shcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795770645377395 0x7ffaccb90000 7180288 C:\Windows\System32\windows.storage.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API хранения Microsoft WinRT 131795770645377395 0x7ffacd270000 2215936 C:\Windows\System32\KERNELBASE.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645377395 0x7ffacd490000 1871872 C:\Windows\System32\CRYPT32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API32 криптографии 131795770645377395 0x7ffacd710000 638976 C:\Windows\System32\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645377395 0x7ffacd7b0000 270336 C:\Windows\System32\cfgmgr32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Configuration Manager DLL 131795770645377395 0x7ffacd810000 22056960 C:\Windows\System32\SHELL32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Общая библиотека оболочки Windows 131795770645377395 0x7ffaced20000 782336 C:\Windows\System32\OLEAUT32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795770645377395 0x7ffacede0000 450560 C:\Windows\System32\coml2.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft COM for Windows 131795770645377395 0x7ffacee50000 1183744 C:\Windows\System32\RPCRT4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795770645377395 0x7ffacef80000 32768 C:\Windows\System32\NSI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation NSI User-mode interface DLL 131795770645377395 0x7ffacef90000 647168 C:\Windows\System32\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795770645377395 0x7ffacf030000 651264 C:\Windows\System32\clbcatq.dll 2001.12.10941.16384 (rs1_release.160715-1616) Microsoft Corporation COM+ Configuration Catalog 131795770645377395 0x7ffacf0d0000 704512 C:\Windows\System32\KERNEL32.DLL 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645377395 0x7ffacf340000 4362240 C:\Windows\System32\SETUPAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Setup API 131795770645377395 0x7ffacf770000 212992 C:\Windows\System32\GDI32.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation GDI Client DLL 131795770645377395 0x7ffacf820000 434176 C:\Windows\System32\WS2_32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation 32-разрядная библиотека Windows Socket 2.0 131795770645377395 0x7ffacf8c0000 1462272 C:\Windows\System32\user32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795770645377395 0x7ffacfb30000 2916352 C:\Windows\System32\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795770645377395 0x7ffacfe20000 663552 C:\Windows\System32\advapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795770645377395 0x7ffad0070000 1277952 C:\Windows\System32\OLE32.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft OLE для Windows 131795770645377395 0x7ffad01b0000 335872 C:\Windows\System32\SHLWAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека небольших программ оболочки 131795770645377395 0x7ffad0210000 364544 C:\Windows\System32\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795770645377395 0x7ffad0270000 1908736 C:\Windows\SYSTEM32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 32 1636 580 4 00000000:000003e7 131765776343009549 0 0 1 Обязательная метка\Обязательный уровень системы NT AUTHORITY\СИСТЕМА svchost.exe C:\Windows\system32\svchost.exe C:\Windows\system32\svchost.exe -k appmodel Microsoft Corporation 10.0.14393.0 (rs1_release.160715-1616) Хост-процесс для служб Windows 131795770645377489 0x7ff718c20000 57344 C:\Windows\system32\svchost.exe 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Хост-процесс для служб Windows 131795770645377489 0x7ffac0bf0000 3559424 C:\Windows\System32\ActXPrxy.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation ActiveX Interface Marshaling Library 131795770645377489 0x7ffac34e0000 1843200 c:\windows\system32\urlmon.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширения OLE32 для Win32 131795770645377489 0x7ffac3840000 3088384 c:\windows\system32\ESENT.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширяемая подсистема хранения данных ESE для Microsoft(R) Windows(R) 131795770645377489 0x7ffac3c10000 593920 c:\windows\system32\tileobjserver.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Сервер моделей данных плиток 131795770645377489 0x7ffac3cb0000 2772992 c:\windows\system32\iertutil.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служебная программа времени выполнения для Internet Explorer 131795770645377489 0x7ffac42a0000 659456 c:\windows\system32\StateRepository.Core.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation StateRepository Core 131795770645377489 0x7ffac46d0000 4161536 c:\windows\system32\windows.staterepository.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Сервер Windows StateRepository API Server 131795770645377489 0x7ffac6ac0000 835584 C:\Windows\System32\Windows.UI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Runtime UI Foundation DLL 131795780599947775 0x7ffac7580000 1077248 C:\Windows\System32\MrmCoreR.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Windows MRM 131795770645377489 0x7ffaca4e0000 77824 C:\Windows\SYSTEM32\wtsapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Remote Desktop Session Host Server SDK APIs 131795780600943570 0x7ffaca570000 421888 C:\Windows\System32\BCP47Langs.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation BCP47 Language Classes 131795770645377489 0x7ffacb140000 593920 c:\windows\system32\msvcp110_win.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Microsoft® STL110 C++ Runtime Library 131795770645377489 0x7ffacb920000 81920 C:\Windows\SYSTEM32\WLDP.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Политика блокировки Windows 131795770645377489 0x7ffacbe40000 126976 C:\Windows\system32\USERENV.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Userenv 131795770645377489 0x7ffacc170000 45056 C:\Windows\system32\CRYPTBASE.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base cryptographic API DLL 131795770645377489 0x7ffacc350000 180224 C:\Windows\SYSTEM32\SspiCli.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Security Support Provider Interface 131795770645377489 0x7ffacc5c0000 352256 C:\Windows\SYSTEM32\WINSTA.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Winstation Library 131795770645377489 0x7ffacc620000 176128 C:\Windows\system32\Bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795770645377489 0x7ffacc6e0000 61440 C:\Windows\System32\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795770645377489 0x7ffacc6f0000 311296 C:\Windows\System32\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795770645377489 0x7ffacc740000 81920 C:\Windows\System32\profapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Profile Basic API 131795770645377489 0x7ffacc760000 65536 C:\Windows\System32\MSASN1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ASN.1 Runtime APIs 131795770645377489 0x7ffacc8f0000 1003520 C:\Windows\System32\ucrtbase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645377489 0x7ffacc9f0000 434176 C:\Windows\System32\bcryptPrimitives.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Cryptographic Primitives Library 131795770645377489 0x7ffacca60000 122880 C:\Windows\System32\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795770645377489 0x7ffacca80000 348160 C:\Windows\System32\WINTRUST.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation Microsoft Trust Verification APIs 131795770645377489 0x7ffaccae0000 692224 C:\Windows\System32\shcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795770645377489 0x7ffaccb90000 7180288 C:\Windows\System32\windows.storage.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API хранения Microsoft WinRT 131795770645377489 0x7ffacd270000 2215936 C:\Windows\System32\KERNELBASE.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645377489 0x7ffacd490000 1871872 C:\Windows\System32\CRYPT32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API32 криптографии 131795770645377489 0x7ffacd710000 638976 C:\Windows\System32\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645377489 0x7ffaced20000 782336 C:\Windows\System32\OLEAUT32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795770645377489 0x7ffacee50000 1183744 C:\Windows\System32\RPCRT4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795770645377489 0x7ffacef90000 647168 C:\Windows\System32\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795770645377489 0x7ffacf030000 651264 C:\Windows\System32\clbcatq.dll 2001.12.10941.16384 (rs1_release.160715-1616) Microsoft Corporation COM+ Configuration Catalog 131795770645377489 0x7ffacf0d0000 704512 C:\Windows\System32\KERNEL32.DLL 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645377489 0x7ffacf770000 212992 C:\Windows\System32\GDI32.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation GDI Client DLL 131795770645377489 0x7ffacf8c0000 1462272 C:\Windows\System32\user32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795770645377489 0x7ffacfb30000 2916352 C:\Windows\System32\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795770645377489 0x7ffacfe20000 663552 C:\Windows\System32\advapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795770645377489 0x7ffad01b0000 335872 C:\Windows\System32\shlwapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека небольших программ оболочки 131795770645377489 0x7ffad0210000 364544 C:\Windows\System32\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795770645377489 0x7ffad0270000 1908736 C:\Windows\SYSTEM32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 33 1744 4 9 00000000:000003e7 131765776348255325 0 0 1 Обязательная метка\Обязательный уровень системы NT AUTHORITY\СИСТЕМА MemCompression MemCompression 34 2100 580 4 00000000:000003e4 131765776438403561 0 0 1 Обязательная метка\Обязательный уровень системы NT AUTHORITY\NETWORK SERVICE svchost.exe C:\Windows\system32\svchost.exe C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted Microsoft Corporation 10.0.14393.0 (rs1_release.160715-1616) Хост-процесс для служб Windows 131795770645377758 0x7ff718c20000 57344 C:\Windows\system32\svchost.exe 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Хост-процесс для служб Windows 131795770645377758 0x7ffabff90000 409600 c:\windows\system32\ipsecsvc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows IPsec SPD Server DLL 131795770645377758 0x7ffac1e00000 114688 c:\windows\system32\FwRemoteSvr.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Firewall Remote APIs Server 131795770645377758 0x7ffac3f60000 225280 c:\windows\system32\FWPolicyIOMgr.dll 10.0.14393.2189 (rs1_release.180329-1711) Microsoft Corporation FwPolicyIoMgr DLL 131795770645377758 0x7ffac83d0000 106496 C:\Windows\SYSTEM32\dhcpcsvc.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служба DHCP-клиента 131795770645377758 0x7ffac83f0000 90112 C:\Windows\SYSTEM32\dhcpcsvc6.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиент DHCPv6 131795770645377758 0x7ffac8420000 434176 c:\windows\system32\fwpuclnt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API пользовательского режима FWP/IPsec 131795770645377758 0x7ffacb360000 176128 c:\windows\system32\fwbase.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Firewall Base DLL 131795770645377758 0x7ffacb460000 548864 c:\windows\system32\FirewallAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API брандмауэра Windows 131795770645377758 0x7ffacb920000 81920 C:\Windows\SYSTEM32\WLDP.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Политика блокировки Windows 131795770645377758 0x7ffacb960000 303104 c:\windows\system32\AUTHZ.dll 10.0.14393.1737 (rs1_release_inmarket.170914-1249) Microsoft Corporation Authorization Framework 131795770645377758 0x7ffacbd30000 229376 c:\windows\system32\IPHLPAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API вспомогательного приложения IP 131795770645377758 0x7ffacbfb0000 376832 C:\Windows\system32\mswsock.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширение поставщика службы API Microsoft Windows Sockets 2.0 131795770645377758 0x7ffacc350000 180224 C:\Windows\system32\sspicli.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Security Support Provider Interface 131795770645377758 0x7ffacc620000 176128 c:\windows\system32\bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795770645377758 0x7ffacc6e0000 61440 C:\Windows\System32\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795770645377758 0x7ffacc760000 65536 C:\Windows\System32\MSASN1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ASN.1 Runtime APIs 131795770645377758 0x7ffacc8f0000 1003520 C:\Windows\System32\ucrtbase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645377758 0x7ffacc9f0000 434176 C:\Windows\System32\bcryptPrimitives.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Cryptographic Primitives Library 131795770645377758 0x7ffacca80000 348160 C:\Windows\System32\WINTRUST.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation Microsoft Trust Verification APIs 131795770645377758 0x7ffacd270000 2215936 C:\Windows\System32\KERNELBASE.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645377758 0x7ffacd490000 1871872 C:\Windows\System32\CRYPT32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API32 криптографии 131795770645377758 0x7ffacd710000 638976 C:\Windows\System32\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645377758 0x7ffaced20000 782336 C:\Windows\System32\OLEAUT32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795770645377758 0x7ffacee50000 1183744 C:\Windows\System32\RPCRT4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795770645377758 0x7ffacef80000 32768 C:\Windows\System32\NSI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation NSI User-mode interface DLL 131795770645377758 0x7ffacef90000 647168 C:\Windows\System32\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795770645377758 0x7ffacf030000 651264 C:\Windows\System32\clbcatq.dll 2001.12.10941.16384 (rs1_release.160715-1616) Microsoft Corporation COM+ Configuration Catalog 131795770645377758 0x7ffacf0d0000 704512 C:\Windows\System32\KERNEL32.DLL 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645377758 0x7ffacf820000 434176 C:\Windows\System32\WS2_32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation 32-разрядная библиотека Windows Socket 2.0 131795770645377758 0x7ffacfb30000 2916352 C:\Windows\System32\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795770645377758 0x7ffad0210000 364544 C:\Windows\System32\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795770645377758 0x7ffad0270000 1908736 C:\Windows\SYSTEM32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 35 2648 348 24 00000000:0031f1da 131765777555980720 0 0 1 Обязательная метка\Средний обязательный уровень WIN-0UOTFKKVN1S\User sihost.exe C:\Windows\system32\sihost.exe sihost.exe Microsoft Corporation 10.0.14393.0 (rs1_release.160715-1616) Shell Infrastructure Host 131795770645377872 0x7ff7bbae0000 94208 C:\Windows\system32\sihost.exe 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Shell Infrastructure Host 131795770645377872 0x7ffab9490000 860160 C:\Windows\System32\ntshrui.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширения оболочки, обеспечивающие общий доступ 131795770645377872 0x7ffabae40000 110592 C:\Windows\SYSTEM32\capauthz.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API авторизации возможностей 131795770645377872 0x7ffabaf70000 270336 C:\Windows\System32\edputil.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служебная программа EDP 131795770645377872 0x7ffabb910000 344064 C:\Windows\System32\container.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Windows Containers 131795770645377872 0x7ffabb970000 487424 C:\Windows\System32\daxexec.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation daxexec 131795770645377872 0x7ffabba80000 995328 C:\Windows\System32\twinui.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation TWINUI.APPCORE 131795770645377872 0x7ffabbb80000 61440 C:\Windows\System32\dsclient.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Data Sharing Service Client DLL 131795770645377872 0x7ffabbb90000 581632 C:\Windows\System32\Windows.System.Launcher.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows.System.Launcher 131795770645377872 0x7ffabbd00000 36864 C:\Windows\system32\WpPortingLibrary.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation <d> DLL 131795770645377872 0x7ffabc0b0000 65536 C:\Windows\System32\LINKINFO.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Volume Tracking 131795770645377872 0x7ffabc450000 741376 C:\Windows\system32\ShareHost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ShareHost 131795770645377872 0x7ffabc510000 90112 C:\Windows\system32\execmodelproxy.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ExecModelProxy 131795770645377872 0x7ffabc570000 94208 C:\Windows\SYSTEM32\licensemanagerapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation "LicenseManagerApi.DYNLINK" 131795770645377872 0x7ffabc6b0000 1114112 C:\Windows\System32\AppContracts.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Сервер API Windows AppContracts 131795770645377872 0x7ffabc800000 266240 C:\Windows\System32\windowmanagement.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Window Management 131795770645377872 0x7ffabc850000 159744 C:\Windows\System32\AppointmentActivation.dll 10.0.14393.2189 (rs1_release.180329-1711) Microsoft Corporation DLL for AppointmentActivation 131795770645377872 0x7ffabc880000 73728 C:\Windows\system32\cscapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Offline Files Win32 API 131795770645377872 0x7ffabc8b0000 61440 C:\Windows\System32\NotificationPlatformComponent.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation NotificationPlatformComponent 131795770645377872 0x7ffabc920000 270336 C:\Windows\system32\ExecModelClient.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation ExecModelClient 131795770645377872 0x7ffabc9a0000 413696 C:\Windows\system32\activationmanager.dll 10.0.14393.479 (rs1_release.161110-2025) Microsoft Corporation Activation Manager 131795770645377872 0x7ffabca10000 221184 C:\Windows\System32\ClipboardServer.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Сервер API Modern Clipboard 131795770645377872 0x7ffabcde0000 983040 C:\Windows\System32\modernexecserver.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Сервер Modern Execution 131795770645377872 0x7ffabcef0000 102400 C:\Windows\System32\Windows.Shell.ServiceHostBuilder.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows.Shell.ServiceHostBuilder 131795770645377872 0x7ffabcf10000 122880 C:\Windows\system32\desktopshellext.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DesktopHost Extensions 131795770645377872 0x7ffabff10000 155648 C:\Windows\System32\srvcli.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Server Service Client DLL 131795770645377872 0x7ffac0bf0000 3559424 C:\Windows\System32\ActXPrxy.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation ActiveX Interface Marshaling Library 131795770645377872 0x7ffac20d0000 110592 C:\Windows\System32\RMCLIENT.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Resource Manager Client 131795770645377872 0x7ffac23c0000 331776 C:\Windows\System32\OneCoreCommonProxyStub.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation OneCore Common Proxy Stub 131795770645377872 0x7ffac2b30000 286720 C:\Windows\System32\usermgrproxy.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation UserMgrProxy 131795770645377872 0x7ffac3270000 40960 C:\Windows\System32\FLTLIB.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека фильтров 131795770645377872 0x7ffac34e0000 1843200 C:\Windows\System32\urlmon.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширения OLE32 для Win32 131795770645377872 0x7ffac3cb0000 2772992 C:\Windows\System32\iertutil.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служебная программа времени выполнения для Internet Explorer 131795770645377872 0x7ffac42a0000 659456 C:\Windows\System32\StateRepository.Core.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation StateRepository Core 131795770645377872 0x7ffac4450000 86016 C:\Windows\SYSTEM32\usermgrcli.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation UserMgr API DLL 131795770645377872 0x7ffac46d0000 4161536 C:\Windows\System32\Windows.StateRepository.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Сервер Windows StateRepository API Server 131795770645377872 0x7ffac5500000 438272 C:\Windows\system32\PhotoMetadataHandler.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Photo Metadata Handler 131795770645377872 0x7ffac7720000 1601536 C:\Windows\System32\OneCoreUAPCommonProxyStub.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation OneCoreUAP Common Proxy Stub 131795770645377872 0x7ffac92e0000 1269760 C:\Windows\SYSTEM32\wintypes.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL основных типов Windows 131795770645377872 0x7ffac9500000 2682880 C:\Windows\system32\CoreUIComponents.dll 131795770645377872 0x7ffac9f50000 1736704 C:\Windows\system32\WindowsCodecs.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Microsoft Windows Codecs Library 131795770645377872 0x7ffaca340000 1593344 C:\Windows\System32\PROPSYS.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Система страниц свойств (Майкрософт) 131795770645377872 0x7ffaca4e0000 77824 C:\Windows\SYSTEM32\wtsapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Remote Desktop Session Host Server SDK APIs 131795770645377872 0x7ffaca5e0000 155648 C:\Windows\System32\dwmapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Интерфейс API диспетчера окон рабочего стола (Майкрософт) 131795770645377872 0x7ffaca640000 770048 C:\Windows\system32\CoreMessaging.dll 10.0.14393.0 Microsoft Corporation Microsoft CoreMessaging Dll 131795770645377872 0x7ffacadf0000 499712 C:\Windows\System32\apphelp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиентская библиотека совместимости приложений 131795770645377872 0x7ffacaf00000 610304 C:\Windows\system32\uxtheme.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека тем UxTheme (Microsoft) 131795770645377872 0x7ffacb140000 593920 C:\Windows\System32\msvcp110_win.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Microsoft® STL110 C++ Runtime Library 131795770645377872 0x7ffacb1e0000 1163264 C:\Windows\SYSTEM32\twinapi.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation twinapi.appcore 131795770645377872 0x7ffacb300000 364544 C:\Windows\System32\VEEventDispatcher.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Visual Element Event dispatcher 131795770645377872 0x7ffacb3d0000 110592 C:\Windows\System32\ResourcePolicyClient.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Resource Policy Client 131795770645377872 0x7ffacb420000 204800 C:\Windows\SYSTEM32\ntmarta.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик Windows NT MARTA 131795770645377872 0x7ffacbd30000 229376 C:\Windows\System32\IPHLPAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API вспомогательного приложения IP 131795770645377872 0x7ffacc350000 180224 C:\Windows\System32\SspiCli.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Security Support Provider Interface 131795770645377872 0x7ffacc5c0000 352256 C:\Windows\SYSTEM32\WINSTA.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Winstation Library 131795770645377872 0x7ffacc620000 176128 C:\Windows\System32\bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795770645377872 0x7ffacc6e0000 61440 C:\Windows\System32\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795770645377872 0x7ffacc6f0000 311296 C:\Windows\System32\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795770645377872 0x7ffacc740000 81920 C:\Windows\System32\profapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Profile Basic API 131795770645377872 0x7ffacc8f0000 1003520 C:\Windows\System32\ucrtbase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645377872 0x7ffacc9f0000 434176 C:\Windows\System32\bcryptPrimitives.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Cryptographic Primitives Library 131795770645377872 0x7ffacca60000 122880 C:\Windows\System32\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795770645377872 0x7ffaccae0000 692224 C:\Windows\System32\shcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795770645377872 0x7ffaccb90000 7180288 C:\Windows\System32\Windows.Storage.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API хранения Microsoft WinRT 131795770645377872 0x7ffacd270000 2215936 C:\Windows\System32\KERNELBASE.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645377872 0x7ffacd710000 638976 C:\Windows\System32\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645377872 0x7ffacd7b0000 270336 C:\Windows\System32\cfgmgr32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Configuration Manager DLL 131795770645377872 0x7ffacd810000 22056960 C:\Windows\System32\shell32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Общая библиотека оболочки Windows 131795770645377872 0x7ffaced20000 782336 C:\Windows\System32\OLEAUT32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795770645377872 0x7ffacee50000 1183744 C:\Windows\System32\RPCRT4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795770645377872 0x7ffacef90000 647168 C:\Windows\System32\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795770645377872 0x7ffacf030000 651264 C:\Windows\System32\clbcatq.dll 2001.12.10941.16384 (rs1_release.160715-1616) Microsoft Corporation COM+ Configuration Catalog 131795770645377872 0x7ffacf0d0000 704512 C:\Windows\System32\KERNEL32.DLL 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645377872 0x7ffacf770000 212992 C:\Windows\System32\GDI32.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation GDI Client DLL 131795770645377872 0x7ffacf890000 188416 C:\Windows\System32\IMM32.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Multi-User Windows IMM32 API Client DLL 131795770645377872 0x7ffacf8c0000 1462272 C:\Windows\System32\user32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795770645377872 0x7ffacfb30000 2916352 C:\Windows\System32\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795770645377872 0x7ffacfe20000 663552 C:\Windows\System32\advapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795770645377872 0x7ffad0070000 1277952 C:\Windows\System32\ole32.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft OLE для Windows 131795770645377872 0x7ffad01b0000 335872 C:\Windows\System32\shlwapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека небольших программ оболочки 131795770645377872 0x7ffad0210000 364544 C:\Windows\System32\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795770645377872 0x7ffad0270000 1908736 C:\Windows\SYSTEM32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 36 840 580 4 00000000:0031f1da 131765777563791648 0 0 1 Обязательная метка\Средний обязательный уровень WIN-0UOTFKKVN1S\User svchost.exe C:\Windows\system32\svchost.exe C:\Windows\system32\svchost.exe -k UnistackSvcGroup Microsoft Corporation 10.0.14393.0 (rs1_release.160715-1616) Хост-процесс для служб Windows 131795770645377971 0x7ff718c20000 57344 C:\Windows\system32\svchost.exe 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Хост-процесс для служб Windows 131795770645377971 0x7ffaaf6a0000 331776 C:\Windows\System32\PhoneUtil.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Phone utilities 131795770645377971 0x7ffaaf700000 1421312 C:\Windows\System32\PIMSTORE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation POOM 131795770645377971 0x7ffab05d0000 339968 C:\Windows\System32\AccountAccessor.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Sync data model to access accounts 131795770645377971 0x7ffab0630000 618496 C:\Windows\System32\SyncController.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SyncController for managing sync of mail, contacts, calendar 131795770645377971 0x7ffab93b0000 897024 C:\Windows\System32\TokenBroker.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Token Broker 131795770645377971 0x7ffabaab0000 94208 C:\Windows\SYSTEM32\profext.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation profext 131795770645377971 0x7ffabbb80000 61440 C:\Windows\System32\dsclient.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Data Sharing Service Client DLL 131795770645377971 0x7ffabbd10000 65536 C:\Windows\System32\TOKENBINDING.dll 10.0.14393.1593 (rs1_release.170731-1934) Microsoft Corporation Token Binding Protocol 131795770645377971 0x7ffabca50000 819200 C:\Windows\System32\Windows.Security.Authentication.Web.Core.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Token Broker WinRT API 131795770645377971 0x7ffabcb20000 266240 C:\Windows\System32\CEMAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation CEMAPI 131795770645377971 0x7ffabcb70000 262144 C:\Windows\System32\cdprt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft (R) CDP Client WinRT API 131795770645377971 0x7ffabcd80000 360448 c:\windows\system32\cdpusersvc.dll 10.0.14393.479 (rs1_release.161110-2025) Microsoft Corporation Microsoft (R) CDP User Components 131795770645377971 0x7ffabd630000 200704 C:\Windows\System32\MCCSEngineShared.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Utilies shared among OneSync engines 131795770645377971 0x7ffabdde0000 462848 c:\windows\system32\SYNCUTIL.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Sync utilities for mail, contacts, calendar 131795770645377971 0x7ffabe850000 155648 C:\Windows\System32\IDStore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Identity Store 131795770645377971 0x7ffabed20000 389120 c:\windows\system32\aphostservice.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Accounts Host Service 131795770645377971 0x7ffabfbe0000 1011712 C:\Windows\System32\Windows.Security.Authentication.OnlineId.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation Windows Runtime OnlineId Authentication DLL 131795770645377971 0x7ffac05f0000 94208 C:\Windows\System32\wwapi.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation WWAN API 131795770645377971 0x7ffac0910000 724992 C:\Windows\System32\Windows.Networking.Connectivity.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Networking Connectivity Runtime DLL 131795770645377971 0x7ffac09d0000 884736 C:\Windows\System32\wpnapps.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Приложения для push-уведомлений Windows 131795770645377971 0x7ffac0bf0000 3559424 C:\Windows\System32\ActXPrxy.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation ActiveX Interface Marshaling Library 131795770645377971 0x7ffac20d0000 110592 C:\Windows\System32\RMCLIENT.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Resource Manager Client 131795770645377971 0x7ffac23c0000 331776 C:\Windows\System32\OneCoreCommonProxyStub.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation OneCore Common Proxy Stub 131795770645377971 0x7ffac2590000 659456 C:\Windows\System32\FlightSettings.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Параметры цикла тестирования 131795770645377971 0x7ffac2750000 106496 C:\Windows\System32\bcd.dll 10.0.14393.1794 (rs1_release.171008-1615) Microsoft Corporation BCD DLL 131795770645377971 0x7ffac2b30000 286720 C:\Windows\System32\usermgrproxy.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation UserMgrProxy 131795770645377971 0x7ffac2cb0000 778240 c:\windows\system32\winsqlite3.dll 3.12.2 SQLite Development Team SQLite is a software library that implements a self-contained, serverless, zero-configuration, transactional SQL database engine. 131795770645377971 0x7ffac2d80000 5140480 c:\windows\system32\cdp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API клиента Microsoft (R) CDP 131795770645377971 0x7ffac3cb0000 2772992 C:\Windows\System32\iertutil.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служебная программа времени выполнения для Internet Explorer 131795770645377971 0x7ffac4000000 274432 C:\Windows\SYSTEM32\policymanager.dll 10.0.14393.2035 (rs1_release_inmarket.180110-1910) Microsoft Corporation Policy Manager DLL 131795770645377971 0x7ffac4100000 151552 c:\windows\system32\NetworkHelper.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Network utilities for mail, contacts, calendar 131795770645377971 0x7ffac4450000 86016 C:\Windows\SYSTEM32\usermgrcli.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation UserMgr API DLL 131795770645377971 0x7ffac60e0000 221184 C:\Windows\System32\XmlLite.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft XmlLite Library 131795770645377971 0x7ffac66a0000 86016 C:\Windows\SYSTEM32\ondemandconnroutehelper.dll 10.0.14393.351 (rs1_release_inmarket.161014-1755) Microsoft Corporation On Demand Connctiond Route Helper 131795770645377971 0x7ffac69c0000 839680 c:\windows\system32\WINHTTP.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Службы HTTP Windows 131795770645377971 0x7ffac79c0000 57344 C:\Windows\System32\npmproxy.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Network List Manager Proxy 131795770645377971 0x7ffac7aa0000 401408 C:\Windows\SYSTEM32\wlanapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows WLAN AutoConfig Client Side API DLL 131795770645377971 0x7ffac83d0000 106496 C:\Windows\SYSTEM32\dhcpcsvc.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служба DHCP-клиента 131795770645377971 0x7ffac83f0000 90112 C:\Windows\SYSTEM32\dhcpcsvc6.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиент DHCPv6 131795770645377971 0x7ffac8540000 286720 C:\Windows\System32\vaultcli.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиентская библиотека хранилища учетных данных 131795770645377971 0x7ffac92e0000 1269760 C:\Windows\SYSTEM32\wintypes.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL основных типов Windows 131795770645377971 0x7ffac97b0000 81920 c:\windows\system32\InprocLogger.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation In-proc Private Event Trace Logger 131795770645377971 0x7ffaca1d0000 69632 C:\Windows\System32\UserDataTypeHelperUtil.dll 10.0.14393.2189 (rs1_release.180329-1711) Microsoft Corporation Type Utilities for data access 131795770645377971 0x7ffaca270000 65536 C:\Windows\System32\UserDataLanguageUtil.dll 10.0.14393.2189 (rs1_release.180329-1711) Microsoft Corporation Language-related helper functions for user data 131795770645377971 0x7ffaca4e0000 77824 C:\Windows\SYSTEM32\wtsapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Remote Desktop Session Host Server SDK APIs 131795770645377971 0x7ffaca520000 90112 C:\Windows\System32\APHostClient.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Accounts Host Service RPC Client 131795770645377971 0x7ffaca610000 143360 C:\Windows\System32\SAMLIB.dll 10.0.14393.82 (rs1_release.160805-1735) Microsoft Corporation SAM Library DLL 131795770645377971 0x7ffacabf0000 45056 c:\windows\system32\MCCSPal.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Platform abstraction layer dll for MCCS 131795770645377971 0x7ffacac20000 86016 c:\windows\system32\UserDataPlatformHelperUtil.dll 10.0.14393.2189 (rs1_release.180329-1711) Microsoft Corporation Platform Utilities for data access 131795770645377971 0x7ffacb140000 593920 c:\windows\system32\msvcp110_win.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Microsoft® STL110 C++ Runtime Library 131795770645377971 0x7ffacb1e0000 1163264 C:\Windows\System32\twinapi.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation twinapi.appcore 131795770645377971 0x7ffacb300000 364544 c:\windows\system32\VEEventDispatcher.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Visual Element Event dispatcher 131795770645377971 0x7ffacb420000 204800 C:\Windows\SYSTEM32\ntmarta.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик Windows NT MARTA 131795770645377971 0x7ffacb920000 81920 C:\Windows\SYSTEM32\WLDP.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Политика блокировки Windows 131795770645377971 0x7ffacbbf0000 40960 C:\Windows\System32\DPAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Data Protection API 131795770645377971 0x7ffacbd30000 229376 c:\windows\system32\IPHLPAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API вспомогательного приложения IP 131795770645377971 0x7ffacbe40000 126976 C:\Windows\System32\USERENV.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Userenv 131795770645377971 0x7ffacbf30000 49152 C:\Windows\system32\NtlmShared.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation NTLM Shared Functionality 131795770645377971 0x7ffacbf40000 421888 C:\Windows\system32\msv1_0.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Authentication Package v1.0 131795770645377971 0x7ffacc010000 86016 C:\Windows\system32\cryptdll.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Cryptography Manager 131795770645377971 0x7ffacc150000 94208 C:\Windows\SYSTEM32\cryptsp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Cryptographic Service Provider API 131795770645377971 0x7ffacc170000 45056 c:\windows\system32\CRYPTBASE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base cryptographic API DLL 131795770645377971 0x7ffacc1f0000 241664 c:\windows\system32\NTASN1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft ASN.1 API 131795770645377971 0x7ffacc230000 155648 c:\windows\system32\ncrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Маршрутизатор Windows NCrypt 131795770645377971 0x7ffacc350000 180224 c:\windows\system32\SspiCli.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Security Support Provider Interface 131795770645377971 0x7ffacc620000 176128 c:\windows\system32\bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795770645377971 0x7ffacc6e0000 61440 C:\Windows\System32\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795770645377971 0x7ffacc6f0000 311296 C:\Windows\System32\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795770645377971 0x7ffacc740000 81920 C:\Windows\System32\profapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Profile Basic API 131795770645377971 0x7ffacc760000 65536 C:\Windows\System32\MSASN1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ASN.1 Runtime APIs 131795770645377971 0x7ffacc8f0000 1003520 C:\Windows\System32\ucrtbase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645377971 0x7ffacc9f0000 434176 C:\Windows\System32\bcryptPrimitives.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Cryptographic Primitives Library 131795770645377971 0x7ffacca60000 122880 C:\Windows\System32\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795770645377971 0x7ffacca80000 348160 C:\Windows\System32\WINTRUST.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation Microsoft Trust Verification APIs 131795770645377971 0x7ffaccae0000 692224 C:\Windows\System32\shcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795770645377971 0x7ffaccb90000 7180288 C:\Windows\System32\windows.storage.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API хранения Microsoft WinRT 131795770645377971 0x7ffacd270000 2215936 C:\Windows\System32\KERNELBASE.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645377971 0x7ffacd490000 1871872 C:\Windows\System32\CRYPT32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API32 криптографии 131795770645377971 0x7ffacd710000 638976 C:\Windows\System32\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645377971 0x7ffacd7b0000 270336 C:\Windows\System32\cfgmgr32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Configuration Manager DLL 131795770645377971 0x7ffaced20000 782336 C:\Windows\System32\OLEAUT32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795770645377971 0x7ffacee50000 1183744 C:\Windows\System32\RPCRT4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795770645377971 0x7ffacef80000 32768 C:\Windows\System32\NSI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation NSI User-mode interface DLL 131795770645377971 0x7ffacef90000 647168 C:\Windows\System32\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795770645377971 0x7ffacf030000 651264 C:\Windows\System32\clbcatq.dll 2001.12.10941.16384 (rs1_release.160715-1616) Microsoft Corporation COM+ Configuration Catalog 131795770645377971 0x7ffacf0d0000 704512 C:\Windows\System32\KERNEL32.DLL 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645377971 0x7ffacf770000 212992 C:\Windows\System32\GDI32.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation GDI Client DLL 131795770645377971 0x7ffacf820000 434176 C:\Windows\System32\WS2_32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation 32-разрядная библиотека Windows Socket 2.0 131795770645377971 0x7ffacf890000 188416 C:\Windows\System32\IMM32.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Multi-User Windows IMM32 API Client DLL 131795770645377971 0x7ffacf8c0000 1462272 C:\Windows\System32\user32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795770645377971 0x7ffacfb30000 2916352 C:\Windows\System32\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795770645377971 0x7ffacfe20000 663552 C:\Windows\System32\advapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795770645377971 0x7ffad01b0000 335872 C:\Windows\System32\shlwapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека небольших программ оболочки 131795770645377971 0x7ffad0210000 364544 C:\Windows\System32\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795770645377971 0x7ffad0270000 1908736 C:\Windows\SYSTEM32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 37 528 348 24 00000000:0031f1da 131765777565618284 0 0 1 Обязательная метка\Средний обязательный уровень WIN-0UOTFKKVN1S\User taskhostw.exe C:\Windows\system32\taskhostw.exe taskhostw.exe {222A245B-E637-4AE9-A93F-A59CA119A75E} Microsoft Corporation 10.0.14393.0 (rs1_release.160715-1616) Хост-процесс для задач Windows 131795770645378085 0x7ff794e10000 102400 C:\Windows\system32\taskhostw.exe 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Хост-процесс для задач Windows 131795770645378085 0x7ffab4af0000 606208 C:\Windows\system32\AUDIOSES.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Сеанс обработки звука 131795770645378085 0x7ffabaab0000 94208 C:\Windows\SYSTEM32\profext.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation profext 131795770645378085 0x7ffabb3c0000 450560 C:\Windows\system32\TextInputFramework.dll 10.0.14393.2189 (rs1_release.180329-1711) Microsoft Corporation "TextInputFramework.DYNLINK" 131795770645378085 0x7ffabb440000 282624 C:\Windows\system32\MTFServer.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation "MTFServer.DYNLINK" 131795770645378085 0x7ffabb510000 2854912 C:\Windows\system32\InputService.dll 10.0.14393.2189 (rs1_release.180329-1711) Microsoft Corporation Microsoft Text InputService Dll 131795770645378085 0x7ffabb8c0000 131072 C:\Windows\system32\InputLocaleManager.dll 10.0.14393.576 (rs1_release_inmarket.161208-2252) Microsoft Corporation "InputLocaleManager.DYNLINK" 131795770645378085 0x7ffabb8f0000 98304 C:\Windows\system32\EditBufferTestHook.dll 10.0.14393.576 (rs1_release_inmarket.161208-2252) Microsoft Corporation "EditBufferTestHook.DYNLINK" 131795770645378085 0x7ffabb9f0000 483328 C:\Windows\system32\MSUTB.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека (DLL) сервера MSUTB 131795770645378085 0x7ffabba70000 53248 C:\Windows\system32\MsCtfMonitor.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation MsCtfMonitor DLL 131795770645378085 0x7ffabbc20000 106496 C:\Windows\System32\PlaySndSrv.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служба PlaySound 131795770645378085 0x7ffabf5d0000 2924544 C:\Windows\system32\wininet.dll 11.00.14393.447 (rs1_release_inmarket.161102-0100) Microsoft Corporation Расширения Интернета для Win32 131795770645378085 0x7ffac37d0000 258048 C:\Windows\system32\wdmaud.drv 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Системный звуковой драйвер Winmm 131795770645378085 0x7ffac3840000 3088384 C:\Windows\system32\ESENT.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширяемая подсистема хранения данных ESE для Microsoft(R) Windows(R) 131795770645378085 0x7ffac3cb0000 2772992 C:\Windows\system32\iertutil.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служебная программа времени выполнения для Internet Explorer 131795770645378085 0x7ffac4000000 274432 C:\Windows\SYSTEM32\policymanager.dll 10.0.14393.2035 (rs1_release_inmarket.180110-1910) Microsoft Corporation Policy Manager DLL 131795770645378085 0x7ffac4140000 114688 C:\Windows\system32\MSACM32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Фильтр диспетчера аудиосжатия Microsoft 131795770645378085 0x7ffac7d10000 32768 C:\Windows\system32\KBDUS.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation United States Keyboard Layout 131795770645378085 0x7ffac8f90000 45056 C:\Windows\system32\AVRT.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Среда выполнения мультимедиа в реальном времени 131795770645378085 0x7ffac92e0000 1269760 C:\Windows\SYSTEM32\wintypes.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL основных типов Windows 131795770645378085 0x7ffac9480000 462848 C:\Windows\System32\MMDevAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation MMDevice API 131795770645378085 0x7ffac9500000 2682880 C:\Windows\system32\CoreUIComponents.dll 131795770645378085 0x7ffac97d0000 40960 C:\Windows\system32\midimap.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft MIDI Mapper 131795770645378085 0x7ffaca180000 53248 C:\Windows\system32\msacm32.drv 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Программа переназначения звуковых устройств 131795770645378085 0x7ffaca340000 1593344 C:\Windows\System32\PROPSYS.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Система страниц свойств (Майкрософт) 131795770645378085 0x7ffaca550000 36864 C:\Windows\system32\ksuser.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User CSA Library 131795770645378085 0x7ffaca5e0000 155648 C:\Windows\system32\dwmapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Интерфейс API диспетчера окон рабочего стола (Майкрософт) 131795770645378085 0x7ffaca640000 770048 C:\Windows\system32\CoreMessaging.dll 10.0.14393.0 Microsoft Corporation Microsoft CoreMessaging Dll 131795770645378085 0x7ffacab10000 61440 C:\Windows\System32\WordBreakers.dll 10.0.14393.2189 (rs1_release.180329-1711) Microsoft Corporation "WordBreakers.DYNLINK" 131795770645378085 0x7ffacab40000 176128 C:\Windows\System32\WINMMBASE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base Multimedia Extension API DLL 131795770645378085 0x7ffacaba0000 143360 C:\Windows\System32\WINMM.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation MCI API DLL 131795770645378085 0x7ffacaf00000 610304 C:\Windows\system32\uxtheme.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека тем UxTheme (Microsoft) 131795770645378085 0x7ffacb140000 593920 C:\Windows\system32\msvcp110_win.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Microsoft® STL110 C++ Runtime Library 131795770645378085 0x7ffacb3f0000 163840 C:\Windows\System32\DEVOBJ.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Device Information Set DLL 131795770645378085 0x7ffacb420000 204800 C:\Windows\SYSTEM32\ntmarta.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик Windows NT MARTA 131795770645378085 0x7ffacbe40000 126976 C:\Windows\SYSTEM32\userenv.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Userenv 131795770645378085 0x7ffacc170000 45056 C:\Windows\system32\CRYPTBASE.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base cryptographic API DLL 131795770645378085 0x7ffacc5c0000 352256 C:\Windows\system32\WINSTA.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Winstation Library 131795770645378085 0x7ffacc6e0000 61440 C:\Windows\System32\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795770645378085 0x7ffacc6f0000 311296 C:\Windows\System32\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795770645378085 0x7ffacc740000 81920 C:\Windows\System32\profapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Profile Basic API 131795770645378085 0x7ffacc8f0000 1003520 C:\Windows\System32\ucrtbase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645378085 0x7ffacc9f0000 434176 C:\Windows\System32\bcryptPrimitives.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Cryptographic Primitives Library 131795770645378085 0x7ffacca60000 122880 C:\Windows\System32\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795770645378085 0x7ffaccae0000 692224 C:\Windows\System32\shcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795770645378085 0x7ffaccb90000 7180288 C:\Windows\System32\windows.storage.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API хранения Microsoft WinRT 131795770645378085 0x7ffacd270000 2215936 C:\Windows\System32\KERNELBASE.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645378085 0x7ffacd710000 638976 C:\Windows\System32\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645378085 0x7ffacd7b0000 270336 C:\Windows\System32\cfgmgr32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Configuration Manager DLL 131795770645378085 0x7ffaced20000 782336 C:\Windows\System32\OLEAUT32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795770645378085 0x7ffacee50000 1183744 C:\Windows\System32\RPCRT4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795770645378085 0x7ffacef90000 647168 C:\Windows\System32\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795770645378085 0x7ffacf030000 651264 C:\Windows\System32\clbcatq.dll 2001.12.10941.16384 (rs1_release.160715-1616) Microsoft Corporation COM+ Configuration Catalog 131795770645378085 0x7ffacf0d0000 704512 C:\Windows\System32\KERNEL32.DLL 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645378085 0x7ffacf1e0000 1417216 C:\Windows\System32\MSCTF.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Серверная библиотека MSCTF 131795770645378085 0x7ffacf770000 212992 C:\Windows\System32\GDI32.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation GDI Client DLL 131795770645378085 0x7ffacf890000 188416 C:\Windows\System32\imm32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Multi-User Windows IMM32 API Client DLL 131795770645378085 0x7ffacf8c0000 1462272 C:\Windows\System32\USER32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795770645378085 0x7ffacfb30000 2916352 C:\Windows\System32\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795770645378085 0x7ffacfe20000 663552 C:\Windows\System32\advapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795770645378085 0x7ffad0070000 1277952 C:\Windows\System32\ole32.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft OLE для Windows 131795770645378085 0x7ffad01b0000 335872 C:\Windows\System32\shlwapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека небольших программ оболочки 131795770645378085 0x7ffad0210000 364544 C:\Windows\System32\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795770645378085 0x7ffad0270000 1908736 C:\Windows\SYSTEM32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 38 3632 664 6 00000000:0031f1da 131765777941176116 0 0 1 Обязательная метка\Средний обязательный уровень WIN-0UOTFKKVN1S\User RuntimeBroker.exe C:\Windows\System32\RuntimeBroker.exe C:\Windows\System32\RuntimeBroker.exe -Embedding Microsoft Corporation 10.0.14393.0 (rs1_release.160715-1616) Runtime Broker 131795770645378207 0x7ff7808b0000 8527872 C:\Windows\system32\ntoskrnl.exe 10.0.14393.2189 (rs1_release.180329-1711) Microsoft Corporation NT Kernel & System 131795770645378207 0x7ff7a45f0000 49152 C:\Windows\System32\RuntimeBroker.exe 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Runtime Broker 131795770645378207 0x7ffaab750000 876544 C:\Windows\System32\Windows.Media.Import.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation Windows Photo Import API (WinRT/COM) 131795770645378207 0x7ffaac6e0000 13156352 C:\Windows\System32\ieframe.dll 11.00.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Браузер 131795780843802542 0x7ffaad3f0000 1826816 C:\Windows\System32\Wpc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека параметров родительского контроля 131795770645378207 0x7ffab33d0000 258048 C:\Windows\System32\MLANG.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL многоязыковой поддержки 131795770645378207 0x7ffab4b90000 655360 C:\Windows\System32\StructuredQuery.dll 7.0.14393.2068 (rs1_release.180209-1727) Microsoft Corporation Structured Query 131795770645378207 0x7ffab7780000 2576384 C:\Windows\system32\mssrch.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Встроенный поиск (Майкрософт) 131795770645378207 0x7ffab7a00000 3424256 C:\Windows\system32\TQUERY.DLL 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Запросы Microsoft Tripoli 131795770645378207 0x7ffab7d80000 753664 C:\Windows\System32\RASAPI32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API удаленного доступа 131795770645378207 0x7ffab8190000 9191424 C:\Windows\system32\twinui.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation TWINUI 131795780489291214 0x7ffab8da0000 1675264 C:\Windows\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.14393.1715_none_aec701fbddd850fa\GdiPlus.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Microsoft GDI+ 131795770645378207 0x7ffab92e0000 827392 C:\Windows\system32\Windows.Storage.Search.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows.Storage.Search 131795780917042363 0x7ffab93b0000 897024 C:\Windows\System32\TokenBroker.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Token Broker 131795770645378207 0x7ffab9490000 860160 C:\Windows\System32\ntshrui.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширения оболочки, обеспечивающие общий доступ 131795770645378207 0x7ffab9a40000 299008 C:\Windows\System32\RasMediaManager.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Ras Media Manager DLL 131795770645378207 0x7ffaba950000 188416 C:\Windows\System32\EthernetMediaManager.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Ethernet Media Manager DLL 131795770645378207 0x7ffabaa50000 339968 C:\Windows\System32\NetworkUXBroker.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation NetworkUXBroker DLL 131795770645378207 0x7ffabaab0000 94208 C:\Windows\SYSTEM32\profext.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation profext 131795770645378207 0x7ffabae40000 110592 C:\Windows\SYSTEM32\capauthz.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API авторизации возможностей 131795770645378207 0x7ffabaf70000 270336 C:\Windows\System32\edputil.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служебная программа EDP 131795770645378207 0x7ffabb2b0000 1089536 C:\Windows\system32\SettingSyncCore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Setting Synchronization Core 131795770645378207 0x7ffabba80000 995328 C:\Windows\System32\twinui.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation TWINUI.APPCORE 131795780917592192 0x7ffabbd10000 65536 C:\Windows\System32\tokenbinding.dll 10.0.14393.1593 (rs1_release.170731-1934) Microsoft Corporation Token Binding Protocol 131795770645378207 0x7ffabc0b0000 65536 C:\Windows\System32\LINKINFO.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Volume Tracking 131795780613006289 0x7ffabc510000 90112 C:\Windows\System32\execmodelproxy.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ExecModelProxy 131795770645378207 0x7ffabc530000 241664 C:\Windows\System32\Windows.Networking.HostName.dll 10.0.14393.953 (rs1_release_inmarket.170303-1614) Microsoft Corporation Windows.Networking.HostName DLL 131795780733496994 0x7ffabc6b0000 1114112 C:\Windows\System32\AppContracts.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Сервер API Windows AppContracts 131795770645378207 0x7ffabc880000 73728 C:\Windows\System32\cscapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Offline Files Win32 API 131795780611542837 0x7ffabc920000 270336 C:\Windows\System32\ExecModelClient.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation ExecModelClient 131795770645378207 0x7ffabcf30000 110592 C:\Windows\System32\MPR.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека маршрутизации для нескольких служб доступа 131795770645378207 0x7ffabdd60000 425984 C:\Windows\System32\AppXDeploymentClient.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL-библиотека клиента развертывания AppX 131795770645378207 0x7ffabe070000 610304 C:\Windows\System32\efswrt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Storage Protection Windows Runtime DLL 131795770645378207 0x7ffabe4d0000 286720 C:\Windows\System32\MSWB7.dll 10.0.14393.1737 (rs1_release_inmarket.170914-1249) Microsoft Corporation MSWB7 DLL 131795780918057976 0x7ffabe850000 155648 C:\Windows\System32\IDStore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Identity Store 131795770645378207 0x7ffabe880000 94208 C:\Windows\System32\FeClient.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT File Encryption Client Interfaces 131795770645378207 0x7ffabe8c0000 454656 C:\Windows\system32\windows.cortana.Desktop.dll 10.0.14393.953 (rs1_release_inmarket.170303-1614) Microsoft Corporation Windows.Cortana.Desktop 131795770645378207 0x7ffabf330000 2457600 C:\Windows\System32\msxml6.dll 6.30.14393.2156 Microsoft Corporation MSXML 6.0 131795770645378207 0x7ffabf5d0000 2924544 C:\Windows\System32\WININET.dll 11.00.14393.447 (rs1_release_inmarket.161102-0100) Microsoft Corporation Расширения Интернета для Win32 131795780443980999 0x7ffabf8a0000 122880 C:\Windows\System32\Windows.Cortana.ProxyStub.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows.Cortana.ProxyStub 131795770645378207 0x7ffabf8c0000 802816 C:\Windows\system32\Windows.Internal.Shell.Broker.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation Windows Shell Broker 131795770645378207 0x7ffabf9c0000 200704 C:\Windows\system32\windows.cortana.onecore.dll 10.0.14393.953 (rs1_release_inmarket.170303-1614) Microsoft Corporation Windows.Cortana.OneCore 131795770645378207 0x7ffabfb00000 626688 C:\Windows\System32\ContentDeliveryManager.Utilities.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation ContentDeliveryManager.Utilities 131795780634363506 0x7ffabfbe0000 1011712 C:\Windows\System32\Windows.Security.Authentication.OnlineId.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation Windows Runtime OnlineId Authentication DLL 131795770645378207 0x7ffabff10000 155648 C:\Windows\System32\srvcli.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Server Service Client DLL 131795770645378207 0x7ffac05f0000 94208 C:\Windows\System32\wwapi.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation WWAN API 131795770645378207 0x7ffac0910000 724992 C:\Windows\System32\Windows.Networking.Connectivity.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Networking Connectivity Runtime DLL 131795770645378207 0x7ffac09d0000 884736 C:\Windows\System32\wpnapps.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Приложения для push-уведомлений Windows 131795770645378207 0x7ffac0bf0000 3559424 C:\Windows\System32\ActXPrxy.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation ActiveX Interface Marshaling Library 131795779561161209 0x7ffac1470000 704512 C:\Windows\System32\ieproxy.dll 11.00.14393.2007 (rs1_release.171231-1800) Microsoft Corporation IE ActiveX Interface Marshaling Library 131795770645378207 0x7ffac1c40000 94208 C:\Windows\System32\SystemSettings.DataModel.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SystemSettings.Datamodel private API 131795770645378207 0x7ffac20d0000 110592 C:\Windows\System32\RMCLIENT.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Resource Manager Client 131795770645378207 0x7ffac23c0000 331776 C:\Windows\System32\OneCoreCommonProxyStub.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation OneCore Common Proxy Stub 131795770645378207 0x7ffac2700000 98304 C:\Windows\System32\NETAPI32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API DLL 131795770645378207 0x7ffac2960000 143360 C:\Windows\system32\mssprxy.dll 7.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation Microsoft Search Proxy 131795770645378207 0x7ffac2a20000 81920 C:\Windows\System32\rtutils.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Routing Utilities 131795770645378207 0x7ffac2b80000 40960 C:\Windows\System32\VERSION.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Version Checking and File Installation Libraries 131795770645378207 0x7ffac34e0000 1843200 C:\Windows\System32\urlmon.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширения OLE32 для Win32 131795780447369522 0x7ffac37b0000 106496 C:\Windows\System32\ShellCommonCommonProxyStub.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ShellCommon Common Proxy Stub 131795770645378207 0x7ffac3840000 3088384 C:\Windows\system32\ESENT.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширяемая подсистема хранения данных ESE для Microsoft(R) Windows(R) 131795770645378207 0x7ffac3cb0000 2772992 C:\Windows\System32\iertutil.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служебная программа времени выполнения для Internet Explorer 131795770645378207 0x7ffac4000000 274432 C:\Windows\system32\policymanager.dll 10.0.14393.2035 (rs1_release_inmarket.180110-1910) Microsoft Corporation Policy Manager DLL 131795770645378207 0x7ffac42a0000 659456 C:\Windows\System32\StateRepository.Core.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation StateRepository Core 131795770645378207 0x7ffac4450000 86016 C:\Windows\SYSTEM32\usermgrcli.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation UserMgr API DLL 131795770645378207 0x7ffac46d0000 4161536 C:\Windows\System32\Windows.StateRepository.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Сервер Windows StateRepository API Server 131795771234179313 0x7ffac4b70000 106496 C:\Windows\System32\ShellCommonCommonProxyStub.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ShellCommon Common Proxy Stub 131795770645378207 0x7ffac4b90000 774144 C:\Windows\System32\StoreAgent.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation StoreAgent 131795780489961900 0x7ffac4df0000 462848 C:\Windows\System32\provsvc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Домашняя группа Windows 131795770645378207 0x7ffac4f60000 143360 C:\Windows\System32\wcmapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Connection Manager Client API 131795780846908833 0x7ffac4fd0000 618496 C:\Windows\System32\wlidprov.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft® Account Provider 131795770645378207 0x7ffac5630000 339968 C:\Windows\System32\thumbcache.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Кэш эскизов Майкрософт 131795770645378207 0x7ffac5c50000 131072 C:\Windows\System32\rasman.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Remote Access Connection Manager 131795770645378207 0x7ffac5ca0000 200704 C:\Windows\System32\AppExtension.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API AppExtension 131795770645378207 0x7ffac60e0000 221184 C:\Windows\System32\XmlLite.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft XmlLite Library 131795770645378207 0x7ffac69c0000 839680 C:\Windows\System32\WINHTTP.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Службы HTTP Windows 131795770645378207 0x7ffac6a90000 49152 C:\Windows\System32\LocationFrameworkPS.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Geolocation Framework PS 131795780451650645 0x7ffac6ac0000 835584 C:\Windows\System32\Windows.UI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Runtime UI Foundation DLL 131795770645378207 0x7ffac6ba0000 49152 C:\Windows\System32\Secur32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Security Support Provider Interface 131795770645378207 0x7ffac6c40000 2596864 C:\Windows\WinSxS\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.14393.953_none_42151e83c686086b\comctl32.dll 6.10 (rs1_release_inmarket.170303-1614) Microsoft Corporation Библиотека элементов управления взаимодействия с пользователем 131795770645378207 0x7ffac6ec0000 36864 C:\Windows\system32\IconCodecService.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Converts a PNG part of the icon to a legacy bmp icon 131795770645378207 0x7ffac7580000 1077248 C:\Windows\SYSTEM32\mrmcorer.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Windows MRM 131795770645378207 0x7ffac76a0000 159744 C:\Windows\System32\sppc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Software Licensing Client DLL 131795770645378207 0x7ffac7720000 1601536 C:\Windows\System32\OneCoreUAPCommonProxyStub.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation OneCoreUAP Common Proxy Stub 131795780641878393 0x7ffac79c0000 57344 C:\Windows\System32\npmproxy.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Network List Manager Proxy 131795770645378207 0x7ffac7aa0000 401408 C:\Windows\SYSTEM32\wlanapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows WLAN AutoConfig Client Side API DLL 131795770645378207 0x7ffac7d00000 32768 C:\Windows\SYSTEM32\familysafetyext.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation FamilySafety ChildAccount Extensions 131795770645378207 0x7ffac90b0000 90112 C:\Windows\System32\wkscli.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Workstation Service Client DLL 131795770645378207 0x7ffac9290000 40960 C:\Windows\System32\DSROLE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DS Setup Client DLL 131795770645378207 0x7ffac92e0000 1269760 C:\Windows\System32\WinTypes.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL основных типов Windows 131795780849625720 0x7ffac9f10000 221184 C:\Windows\System32\netprofm.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Network List Manager 131795770645378207 0x7ffac9f50000 1736704 C:\Windows\system32\windowscodecs.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Microsoft Windows Codecs Library 131795770645378207 0x7ffaca340000 1593344 C:\Windows\system32\PROPSYS.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Система страниц свойств (Майкрософт) 131795770645378207 0x7ffaca4e0000 77824 C:\Windows\SYSTEM32\wtsapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Remote Desktop Session Host Server SDK APIs 131795770645378207 0x7ffaca570000 421888 C:\Windows\System32\Bcp47Langs.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation BCP47 Language Classes 131795770645378207 0x7ffaca5e0000 155648 C:\Windows\system32\dwmapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Интерфейс API диспетчера окон рабочего стола (Майкрософт) 131795780918548230 0x7ffaca610000 143360 C:\Windows\System32\samlib.dll 10.0.14393.82 (rs1_release.160805-1735) Microsoft Corporation SAM Library DLL 131795780611842861 0x7ffaca640000 770048 C:\Windows\System32\CoreMessaging.dll 10.0.14393.0 Microsoft Corporation Microsoft CoreMessaging Dll 131795770645378207 0x7ffacadf0000 499712 C:\Windows\System32\apphelp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиентская библиотека совместимости приложений 131795770645378207 0x7ffacaf00000 610304 C:\Windows\system32\uxtheme.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека тем UxTheme (Microsoft) 131795770645378207 0x7ffacb140000 593920 C:\Windows\system32\msvcp110_win.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Microsoft® STL110 C++ Runtime Library 131795770645378207 0x7ffacb1e0000 1163264 C:\Windows\System32\twinapi.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation twinapi.appcore 131795770645378207 0x7ffacb300000 364544 C:\Windows\system32\VEEventDispatcher.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Visual Element Event dispatcher 131795770645378207 0x7ffacb3f0000 163840 C:\Windows\System32\DEVOBJ.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Device Information Set DLL 131795770645378207 0x7ffacb420000 204800 C:\Windows\SYSTEM32\ntmarta.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик Windows NT MARTA 131795770645378207 0x7ffacbd30000 229376 C:\Windows\System32\IPHLPAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API вспомогательного приложения IP 131795770645378207 0x7ffacbe20000 53248 C:\Windows\System32\netutils.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API Helpers DLL 131795770645378207 0x7ffacbe40000 126976 C:\Windows\system32\USERENV.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Userenv 131795770645378207 0x7ffacc150000 94208 C:\Windows\System32\CRYPTSP.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Cryptographic Service Provider API 131795770645378207 0x7ffacc350000 180224 C:\Windows\System32\SspiCli.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Security Support Provider Interface 131795770645378207 0x7ffacc520000 622592 C:\Windows\SYSTEM32\sxs.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Fusion 2.5 131795770645378207 0x7ffacc5c0000 352256 C:\Windows\SYSTEM32\WINSTA.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Winstation Library 131795770645378207 0x7ffacc620000 176128 C:\Windows\System32\bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795770645378207 0x7ffacc6e0000 61440 C:\Windows\System32\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795770645378207 0x7ffacc6f0000 311296 C:\Windows\System32\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795770645378207 0x7ffacc740000 81920 C:\Windows\System32\profapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Profile Basic API 131795770645378207 0x7ffacc8f0000 1003520 C:\Windows\System32\ucrtbase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645378207 0x7ffacc9f0000 434176 C:\Windows\System32\bcryptPrimitives.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Cryptographic Primitives Library 131795770645378207 0x7ffacca60000 122880 C:\Windows\System32\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795770645378207 0x7ffaccae0000 692224 C:\Windows\System32\shcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795770645378207 0x7ffaccb90000 7180288 C:\Windows\System32\windows.storage.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API хранения Microsoft WinRT 131795770645378207 0x7ffacd270000 2215936 C:\Windows\System32\KERNELBASE.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645378207 0x7ffacd710000 638976 C:\Windows\System32\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645378207 0x7ffacd7b0000 270336 C:\Windows\System32\cfgmgr32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Configuration Manager DLL 131795770645378207 0x7ffacd810000 22056960 C:\Windows\System32\SHELL32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Общая библиотека оболочки Windows 131795770645378207 0x7ffaced20000 782336 C:\Windows\System32\OLEAUT32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795770645378207 0x7ffacede0000 450560 C:\Windows\System32\coml2.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft COM for Windows 131795770645378207 0x7ffacee50000 1183744 C:\Windows\System32\RPCRT4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795770645378207 0x7ffacef80000 32768 C:\Windows\System32\NSI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation NSI User-mode interface DLL 131795770645378207 0x7ffacef90000 647168 C:\Windows\System32\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795770645378207 0x7ffacf030000 651264 C:\Windows\System32\clbcatq.dll 2001.12.10941.16384 (rs1_release.160715-1616) Microsoft Corporation COM+ Configuration Catalog 131795770645378207 0x7ffacf0d0000 704512 C:\Windows\System32\KERNEL32.DLL 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645378207 0x7ffacf1e0000 1417216 C:\Windows\System32\MSCTF.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Серверная библиотека MSCTF 131795770645378207 0x7ffacf770000 212992 C:\Windows\System32\GDI32.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation GDI Client DLL 131795770645378207 0x7ffacf820000 434176 C:\Windows\System32\WS2_32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation 32-разрядная библиотека Windows Socket 2.0 131795770645378207 0x7ffacf890000 188416 C:\Windows\System32\IMM32.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Multi-User Windows IMM32 API Client DLL 131795770645378207 0x7ffacf8c0000 1462272 C:\Windows\System32\USER32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795770645378207 0x7ffacfb30000 2916352 C:\Windows\System32\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795770645378207 0x7ffacfe20000 663552 C:\Windows\System32\advapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795770645378207 0x7ffad0070000 1277952 C:\Windows\System32\ole32.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft OLE для Windows 131795770645378207 0x7ffad01b0000 335872 C:\Windows\System32\shlwapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека небольших программ оболочки 131795770645378207 0x7ffad0210000 364544 C:\Windows\System32\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795770645378207 0x7ffad0270000 1908736 C:\Windows\SYSTEM32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 39 3164 664 6 00000000:0031f1da 131765778119045372 0 0 1 Обязательная метка\Низкий обязательный уровень WIN-0UOTFKKVN1S\User ShellExperienceHost.exe C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\ShellExperienceHost.exe "C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\ShellExperienceHost.exe" -ServerName:App.AppXtk181tbxbce2qsex02s8tw7hfxa9xb3t.mca Microsoft Corporation 10.0.14393.2125 (rs1_release.180301-2139) Windows Shell Experience Host 131795770645379346 0x7ff697570000 1662976 C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\ShellExperienceHost.exe 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation Windows Shell Experience Host 131795770645379346 0x7ffa9f150000 6311936 C:\Windows\System32\Windows.Media.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Media Runtime DLL 131795770645379346 0x7ffa9f760000 3796992 C:\Windows\System32\MFMediaEngine.dll 10.0.14393.351 (rs1_release_inmarket.161014-1755) Microsoft Corporation Media Foundation Media Engine DLL 131795770645379346 0x7ffaabad0000 1871872 C:\Windows\System32\mfsrcsnk.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Media Foundation Source and Sink DLL 131795770645379346 0x7ffaafe70000 4239360 C:\Windows\System32\mfcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Media Foundation Core DLL 131795770645379346 0x7ffab0be0000 1421312 C:\Windows\ShellExperiences\NetworkUX.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Network Experience 131795770645379346 0x7ffab4af0000 606208 C:\Windows\SYSTEM32\AUDIOSES.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Сеанс обработки звука 131795770645379346 0x7ffab5b40000 2527232 C:\Windows\SYSTEM32\dwrite.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Службы Microsoft DirectX Typography 131795770645379346 0x7ffab6710000 17231872 C:\Windows\System32\Windows.UI.Xaml.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows.UI.Xaml dll 131795770645379346 0x7ffab9eb0000 2899968 C:\Windows\ShellExperiences\Windows.UI.ActionCenter.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation ActionCenter Experience 131795770645379346 0x7ffaba180000 7880704 C:\Windows\ShellExperiences\StartUI.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Start UI 131795770645379346 0x7ffabaa50000 339968 C:\Windows\System32\NetworkUXBroker.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation NetworkUXBroker DLL 131795770645379346 0x7ffabab30000 303104 C:\Windows\System32\NotificationObjFactory.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Notifications Object Factory 131795770645379346 0x7ffabacc0000 1380352 C:\Windows\System32\SharedStartModel.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Shared Start Model InProc Server 131795770645379346 0x7ffabaf70000 270336 C:\Windows\SYSTEM32\edputil.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служебная программа EDP 131795770645379346 0x7ffabb3c0000 450560 C:\Windows\SYSTEM32\TextInputFramework.dll 10.0.14393.2189 (rs1_release.180329-1711) Microsoft Corporation "TextInputFramework.DYNLINK" 131795770645379346 0x7ffabb490000 512000 C:\Windows\system32\twinapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation twinapi 131795770645379346 0x7ffabbb80000 61440 C:\Windows\SYSTEM32\dsclient.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Data Sharing Service Client DLL 131795770645379346 0x7ffabbb90000 581632 C:\Windows\System32\Windows.System.Launcher.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows.System.Launcher 131795770645379346 0x7ffabbd00000 36864 C:\Windows\SYSTEM32\WpPortingLibrary.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation <d> DLL 131795770645379346 0x7ffabc5c0000 319488 C:\Windows\SYSTEM32\MFSENSORGROUP.dll 10.0.14393.447 (rs1_release_inmarket.161102-0100) Microsoft Corporation Media Foundation Sensor Group DLL 131795770645379346 0x7ffabcef0000 102400 C:\Windows\System32\Windows.Shell.ServiceHostBuilder.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows.Shell.ServiceHostBuilder 131795770645379346 0x7ffabd420000 487424 C:\Windows\System32\RTMediaFrame.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Runtime MediaFrame DLL 131795770645379346 0x7ffabd4a0000 1613824 C:\Windows\System32\Windows.Globalization.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Globalization 131795770645379346 0x7ffabe410000 339968 C:\Windows\SYSTEM32\globcollationhost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation GlobCollationHost 131795770645379346 0x7ffabe6e0000 561152 C:\Windows\system32\directmanipulation.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Direct Manipulation Component 131795770645379346 0x7ffabeac0000 335872 C:\Windows\System32\Windows.Storage.ApplicationData.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Application Data API Server 131795770645379346 0x7ffabf330000 2457600 C:\Windows\System32\msxml6.dll 6.30.14393.2156 Microsoft Corporation MSXML 6.0 131795780594734370 0x7ffabfb00000 626688 C:\Windows\System32\ContentDeliveryManager.Utilities.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation ContentDeliveryManager.Utilities 131795770645379346 0x7ffabfce0000 90112 C:\Windows\System32\Windows.Globalization.Fontgroups.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Fonts Mapping API 131795770645379346 0x7ffabfd00000 356352 C:\Windows\System32\Windows.Graphics.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation WinRT Windows Graphics DLL 131795770645379346 0x7ffabfd80000 86016 C:\Windows\System32\threadpoolwinrt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows WinRT Threadpool 131795770645379346 0x7ffac0080000 249856 C:\Windows\System32\resampledmo.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Media Resampler 131795770645379346 0x7ffac00c0000 282624 C:\Windows\SYSTEM32\windows.ui.core.textinput.dll 10.0.14393.2189 (rs1_release.180329-1711) Microsoft Corporation Windows.UI.Core.TextInput dll 131795770645379346 0x7ffac0110000 290816 C:\Windows\SYSTEM32\QuickActionsDataModel.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation QuickActionsDataModel 131795770645379346 0x7ffac0160000 491520 C:\Windows\ShellExperiences\QuickActions.dll 131795770645379346 0x7ffac01e0000 397312 C:\Windows\SYSTEM32\wincorlib.DLL 10.0.14393.576 (rs1_release_inmarket.161208-2252) Microsoft Corporation Microsoft Windows ® WinRT core library 131795770645379346 0x7ffac0470000 1478656 C:\Windows\SYSTEM32\MFPlat.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Media Foundation Platform DLL 131795770645379346 0x7ffac0bf0000 3559424 C:\Windows\System32\ActXPrxy.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation ActiveX Interface Marshaling Library 131795770645379346 0x7ffac1c40000 94208 C:\Windows\System32\SystemSettings.DataModel.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SystemSettings.Datamodel private API 131795770645379346 0x7ffac1e50000 188416 C:\Windows\SYSTEM32\RTWorkQ.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL для WorkQueue реального времени 131795770645379346 0x7ffac20d0000 110592 C:\Windows\System32\rmclient.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Resource Manager Client 131795770645379346 0x7ffac23c0000 331776 C:\Windows\System32\OneCoreCommonProxyStub.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation OneCore Common Proxy Stub 131795770645379346 0x7ffac2990000 385024 C:\Windows\SYSTEM32\NInput.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Pen and Touch Input Component 131795770645379346 0x7ffac34e0000 1843200 C:\Windows\SYSTEM32\urlmon.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширения OLE32 для Win32 131795770645379346 0x7ffac3cb0000 2772992 C:\Windows\SYSTEM32\iertutil.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служебная программа времени выполнения для Internet Explorer 131795770645379346 0x7ffac4000000 274432 C:\Windows\SYSTEM32\policymanager.dll 10.0.14393.2035 (rs1_release_inmarket.180110-1910) Microsoft Corporation Policy Manager DLL 131795770645379346 0x7ffac40f0000 40960 C:\Windows\SYSTEM32\msdmo.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DMO Runtime 131795770645379346 0x7ffac42a0000 659456 C:\Windows\SYSTEM32\StateRepository.Core.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation StateRepository Core 131795770645379346 0x7ffac46d0000 4161536 C:\Windows\System32\Windows.StateRepository.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Сервер Windows StateRepository API Server 131795770645379346 0x7ffac4eb0000 147456 C:\Windows\ShellExperiences\Windows.UI.Shell.SharedUtilities.dll 131795770645379346 0x7ffac5350000 1765376 C:\Windows\System32\Windows.UI.Immersive.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation WINDOWS.UI.IMMERSIVE 131795770645379346 0x7ffac5500000 438272 C:\Windows\SYSTEM32\PhotoMetadataHandler.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Photo Metadata Handler 131795770645379346 0x7ffac5b20000 49152 C:\Windows\SYSTEM32\CompPkgSup.DLL 10.0.14393.969 (rs1_release_inmarket.170315-1735) Microsoft Corporation Component Package Support DLL 131795770645379346 0x7ffac5ce0000 1744896 C:\Windows\SYSTEM32\uiautomationcore.dll 7.2.14393.0 (rs1_release.160715-1616) Microsoft Corporation Основные автоматические компоненты Microsoft UI 131795770645379346 0x7ffac5e90000 380928 C:\Windows\System32\Windows.Media.MediaControl.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL сервера MediaControl среды выполнения Windows 131795770645379346 0x7ffac60e0000 221184 C:\Windows\SYSTEM32\XmlLite.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft XmlLite Library 131795770645379346 0x7ffac6ac0000 835584 C:\Windows\System32\Windows.UI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Runtime UI Foundation DLL 131795770645379346 0x7ffac6bd0000 413696 C:\Windows\SYSTEM32\OLEACC.dll 7.2.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Active Accessibility Core Component 131795770645379346 0x7ffac6f50000 5632000 C:\Windows\SYSTEM32\d2d1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека Microsoft D2D 131795770645379346 0x7ffac7580000 1077248 C:\Windows\SYSTEM32\MrmCoreR.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Windows MRM 131795770645379346 0x7ffac76a0000 159744 C:\Windows\SYSTEM32\sppc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Software Licensing Client DLL 131795770645379346 0x7ffac7720000 1601536 C:\Windows\System32\OneCoreUAPCommonProxyStub.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation OneCoreUAP Common Proxy Stub 131795770645379346 0x7ffac7990000 155648 C:\Windows\SYSTEM32\SLC.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Software Licensing Client DLL 131795770645379346 0x7ffac7e30000 40960 C:\Windows\SYSTEM32\fontgroupsoverride.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation fontgroupsoverride.dll 131795770645379346 0x7ffac7fc0000 2674688 C:\Windows\SYSTEM32\d3d10warp.dll 10.0.14393.576 (rs1_release_inmarket.161208-2252) Microsoft Corporation Direct3D 10 Rasterizer 131795770645379346 0x7ffac84e0000 53248 C:\Windows\System32\NotificationControllerPS.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation NotificationController Proxy Stub 131795770645379346 0x7ffac84f0000 299008 C:\Windows\system32\DataExchange.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation Data exchange 131795770645379346 0x7ffac88a0000 2842624 C:\Windows\SYSTEM32\d3d11.dll 10.0.14393.953 (rs1_release_inmarket.170303-1614) Microsoft Corporation Direct3D 11 Runtime 131795770645379346 0x7ffac8f90000 45056 C:\Windows\SYSTEM32\AVRT.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Среда выполнения мультимедиа в реальном времени 131795770645379346 0x7ffac8fa0000 253952 C:\Windows\SYSTEM32\logoncli.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Net Logon Client DLL 131795770645379346 0x7ffac92e0000 1269760 C:\Windows\System32\WinTypes.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL основных типов Windows 131795770645379346 0x7ffac9480000 462848 C:\Windows\System32\MMDevApi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation MMDevice API 131795770645379346 0x7ffac9500000 2682880 C:\Windows\system32\CoreUIComponents.dll 131795770645379346 0x7ffac9f50000 1736704 C:\Windows\system32\windowscodecs.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Microsoft Windows Codecs Library 131795770645379346 0x7ffaca340000 1593344 C:\Windows\SYSTEM32\PROPSYS.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Система страниц свойств (Майкрософт) 131795770645379346 0x7ffaca550000 36864 C:\Windows\SYSTEM32\ksuser.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User CSA Library 131795770645379346 0x7ffaca570000 421888 C:\Windows\SYSTEM32\Bcp47Langs.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation BCP47 Language Classes 131795770645379346 0x7ffaca5e0000 155648 C:\Windows\SYSTEM32\dwmapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Интерфейс API диспетчера окон рабочего стола (Майкрософт) 131795770645379346 0x7ffaca640000 770048 C:\Windows\SYSTEM32\CoreMessaging.dll 10.0.14393.0 Microsoft Corporation Microsoft CoreMessaging Dll 131795770645379346 0x7ffaca770000 1380352 C:\Windows\SYSTEM32\dcomp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft DirectComposition Library 131795770645379346 0x7ffacab40000 176128 C:\Windows\SYSTEM32\winmmbase.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base Multimedia Extension API DLL 131795770645379346 0x7ffacaf00000 610304 C:\Windows\system32\uxtheme.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека тем UxTheme (Microsoft) 131795770645379346 0x7ffacb140000 593920 C:\Windows\SYSTEM32\msvcp110_win.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Microsoft® STL110 C++ Runtime Library 131795770645379346 0x7ffacb1e0000 1163264 C:\Windows\System32\twinapi.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation twinapi.appcore 131795770645379346 0x7ffacb300000 364544 C:\Windows\SYSTEM32\VEEventDispatcher.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Visual Element Event dispatcher 131795770645379346 0x7ffacb3f0000 163840 C:\Windows\SYSTEM32\DEVOBJ.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Device Information Set DLL 131795770645379346 0x7ffacb780000 651264 C:\Windows\SYSTEM32\dxgi.dll 10.0.14393.953 (rs1_release_inmarket.170303-1614) Microsoft Corporation DirectX Graphics Infrastructure 131795770645379346 0x7ffacbe40000 126976 C:\Windows\SYSTEM32\USERENV.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Userenv 131795770645379346 0x7ffacc170000 45056 C:\Windows\SYSTEM32\CRYPTBASE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base cryptographic API DLL 131795770645379346 0x7ffacc350000 180224 C:\Windows\SYSTEM32\SspiCli.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Security Support Provider Interface 131795770645379346 0x7ffacc5c0000 352256 C:\Windows\SYSTEM32\winsta.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Winstation Library 131795770645379346 0x7ffacc620000 176128 C:\Windows\SYSTEM32\bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795770645379346 0x7ffacc6e0000 61440 C:\Windows\System32\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795770645379346 0x7ffacc6f0000 311296 C:\Windows\System32\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795770645379346 0x7ffacc740000 81920 C:\Windows\System32\profapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Profile Basic API 131795770645379346 0x7ffacc760000 65536 C:\Windows\System32\MSASN1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ASN.1 Runtime APIs 131795770645379346 0x7ffacc8f0000 1003520 C:\Windows\System32\ucrtbase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645379346 0x7ffacc9f0000 434176 C:\Windows\System32\bcryptPrimitives.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Cryptographic Primitives Library 131795770645379346 0x7ffacca60000 122880 C:\Windows\System32\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795770645379346 0x7ffaccae0000 692224 C:\Windows\System32\shcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795770645379346 0x7ffaccb90000 7180288 C:\Windows\System32\windows.storage.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API хранения Microsoft WinRT 131795770645379346 0x7ffacd270000 2215936 C:\Windows\System32\KERNELBASE.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645379346 0x7ffacd490000 1871872 C:\Windows\System32\CRYPT32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API32 криптографии 131795770645379346 0x7ffacd710000 638976 C:\Windows\System32\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645379346 0x7ffacd7b0000 270336 C:\Windows\System32\cfgmgr32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Configuration Manager DLL 131795770645379346 0x7ffacd810000 22056960 C:\Windows\System32\SHELL32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Общая библиотека оболочки Windows 131795770645379346 0x7ffaced20000 782336 C:\Windows\System32\OLEAUT32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795770645379346 0x7ffacee50000 1183744 C:\Windows\System32\RPCRT4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795770645379346 0x7ffacef90000 647168 C:\Windows\System32\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795770645379346 0x7ffacf0d0000 704512 C:\Windows\System32\KERNEL32.DLL 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645379346 0x7ffacf1e0000 1417216 C:\Windows\System32\msctf.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Серверная библиотека MSCTF 131795770645379346 0x7ffacf770000 212992 C:\Windows\System32\GDI32.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation GDI Client DLL 131795770645379346 0x7ffacf890000 188416 C:\Windows\System32\IMM32.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Multi-User Windows IMM32 API Client DLL 131795770645379346 0x7ffacf8c0000 1462272 C:\Windows\System32\user32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795770645379346 0x7ffacfb30000 2916352 C:\Windows\System32\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795770645379346 0x7ffacfe20000 663552 C:\Windows\System32\advapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795770645379346 0x7ffad0070000 1277952 C:\Windows\System32\ole32.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft OLE для Windows 131795770645379346 0x7ffad01b0000 335872 C:\Windows\System32\SHLWAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека небольших программ оболочки 131795770645379346 0x7ffad0210000 364544 C:\Windows\System32\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795770645379346 0x7ffad0270000 1908736 C:\Windows\SYSTEM32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 40 4856 3108 11 00000000:0031f1da 131765778391112136 0 0 1 Обязательная метка\Средний обязательный уровень WIN-0UOTFKKVN1S\User MSASCuiL.exe C:\Program Files\Windows Defender\MSASCuiL.exe "C:\Program Files\Windows Defender\MSASCuiL.exe" Microsoft Corporation 4.10.14393.1198 (rs1_release_sec.170427-1353) Windows Defender notification icon 131795770645379462 0x23622c70000 733184 C:\Program Files\Windows Defender\EppManifest.dll 4.10.14393.0 (rs1_release.160715-1616) Microsoft Corporation Модуль ресурсов настройки пользовательского интерфейса 131795770645379462 0x7ff63bef0000 651264 C:\Program Files\Windows Defender\MSASCuiL.exe 4.10.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Windows Defender notification icon 131795770645379462 0x7ffab8da0000 1675264 C:\Windows\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.14393.1715_none_aec701fbddd850fa\gdiplus.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Microsoft GDI+ 131795770645379462 0x7ffabf330000 2457600 C:\Windows\System32\msxml6.dll 6.30.14393.2156 Microsoft Corporation MSXML 6.0 131795770645379462 0x7ffac4560000 950272 C:\Program Files\Windows Defender\mpclient.dll 4.10.14393.1794 (rs1_release.171008-1615) Microsoft Corporation Client Interface 131795770645379462 0x7ffac4ea0000 36864 C:\Windows\SYSTEM32\atlthunk.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation atlthunk.dll 131795770645379462 0x7ffac9f50000 1736704 C:\Windows\SYSTEM32\WindowsCodecs.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Microsoft Windows Codecs Library 131795770645379462 0x7ffaca4e0000 77824 C:\Windows\SYSTEM32\WTSAPI32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Remote Desktop Session Host Server SDK APIs 131795770645379462 0x7ffaca5e0000 155648 C:\Windows\system32\dwmapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Интерфейс API диспетчера окон рабочего стола (Майкрософт) 131795770645379462 0x7ffacaf00000 610304 C:\Windows\system32\uxtheme.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека тем UxTheme (Microsoft) 131795770645379462 0x7ffacb6f0000 143360 C:\Windows\SYSTEM32\gpapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиентские функции API групповой политики 131795770645379462 0x7ffacbbb0000 208896 C:\Windows\system32\rsaenh.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Enhanced Cryptographic Provider 131795770645379462 0x7ffacbe40000 126976 C:\Windows\SYSTEM32\USERENV.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Userenv 131795770645379462 0x7ffacc150000 94208 C:\Windows\SYSTEM32\CRYPTSP.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Cryptographic Service Provider API 131795770645379462 0x7ffacc170000 45056 C:\Windows\SYSTEM32\CRYPTBASE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base cryptographic API DLL 131795770645379462 0x7ffacc620000 176128 C:\Windows\SYSTEM32\bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795770645379462 0x7ffacc6e0000 61440 C:\Windows\System32\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795770645379462 0x7ffacc6f0000 311296 C:\Windows\System32\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795770645379462 0x7ffacc740000 81920 C:\Windows\System32\profapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Profile Basic API 131795770645379462 0x7ffacc760000 65536 C:\Windows\System32\MSASN1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ASN.1 Runtime APIs 131795770645379462 0x7ffacc8f0000 1003520 C:\Windows\System32\ucrtbase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645379462 0x7ffacc9f0000 434176 C:\Windows\System32\bcryptPrimitives.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Cryptographic Primitives Library 131795770645379462 0x7ffacca60000 122880 C:\Windows\System32\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795770645379462 0x7ffacca80000 348160 C:\Windows\System32\WINTRUST.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation Microsoft Trust Verification APIs 131795770645379462 0x7ffaccae0000 692224 C:\Windows\System32\shcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795770645379462 0x7ffaccb90000 7180288 C:\Windows\System32\windows.storage.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API хранения Microsoft WinRT 131795770645379462 0x7ffacd270000 2215936 C:\Windows\System32\KERNELBASE.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645379462 0x7ffacd490000 1871872 C:\Windows\System32\CRYPT32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API32 криптографии 131795770645379462 0x7ffacd710000 638976 C:\Windows\System32\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645379462 0x7ffacd7b0000 270336 C:\Windows\System32\cfgmgr32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Configuration Manager DLL 131795770645379462 0x7ffacd810000 22056960 C:\Windows\System32\SHELL32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Общая библиотека оболочки Windows 131795770645379462 0x7ffaced20000 782336 C:\Windows\System32\OLEAUT32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795770645379462 0x7ffacee50000 1183744 C:\Windows\System32\RPCRT4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795770645379462 0x7ffacef90000 647168 C:\Windows\System32\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795770645379462 0x7ffacf030000 651264 C:\Windows\System32\clbcatq.dll 2001.12.10941.16384 (rs1_release.160715-1616) Microsoft Corporation COM+ Configuration Catalog 131795770645379462 0x7ffacf0d0000 704512 C:\Windows\System32\KERNEL32.DLL 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645379462 0x7ffacf1e0000 1417216 C:\Windows\System32\MSCTF.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Серверная библиотека MSCTF 131795770645379462 0x7ffacf770000 212992 C:\Windows\System32\GDI32.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation GDI Client DLL 131795770645379462 0x7ffacf890000 188416 C:\Windows\System32\IMM32.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Multi-User Windows IMM32 API Client DLL 131795770645379462 0x7ffacf8c0000 1462272 C:\Windows\System32\USER32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795770645379462 0x7ffacfb30000 2916352 C:\Windows\System32\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795770645379462 0x7ffacfe00000 114688 C:\Windows\System32\imagehlp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT Image Helper 131795770645379462 0x7ffacfe20000 663552 C:\Windows\System32\ADVAPI32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795770645379462 0x7ffad0070000 1277952 C:\Windows\System32\ole32.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft OLE для Windows 131795770645379462 0x7ffad01b0000 335872 C:\Windows\System32\SHLWAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека небольших программ оболочки 131795770645379462 0x7ffad0210000 364544 C:\Windows\System32\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795770645379462 0x7ffad0270000 1908736 C:\Windows\SYSTEM32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 41 4928 3108 11 00000000:0031f1da 131765778406250112 0 0 0 Обязательная метка\Средний обязательный уровень WIN-0UOTFKKVN1S\User uTorrent.exe C:\Users\User\AppData\Roaming\uTorrent\uTorrent.exe "C:\Users\User\AppData\Roaming\uTorrent\uTorrent.exe" /MINIMIZED BitTorrent Inc. 3.5.4.44498 µTorrent 131795770645379614 0x400000 5406720 C:\Users\User\AppData\Roaming\uTorrent\uTorrent.exe 3.5.4.44498 BitTorrent Inc. µTorrent 131795770645379614 0x5c020000 335872 C:\Windows\System32\wow64.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation Win32 Emulation on NT64 131795770645379614 0x5c080000 487424 C:\Windows\System32\wow64win.dll 10.0.14393.1884 (rs1_release.171101-1233) Microsoft Corporation Wow64 Console and Win32 API Logging 131795770645379614 0x5c100000 40960 C:\Windows\System32\wow64cpu.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation AMD64 Wow64 CPU 131795770645379614 0x60750000 1556480 C:\Program Files (x86)\360\Total Security\safemon\safemon.dll 8, 4, 0, 1420 Qihu 360 Software Co., Ltd. 360 Internet Security Internet Protection 131795770645379614 0x6c5c0000 1384448 C:\Windows\SysWOW64\UIAutomationCore.DLL 7.2.14393.0 (rs1_release.160715-1616) Microsoft Corporation Основные автоматические компоненты Microsoft UI 131795770645379614 0x6cda0000 528384 C:\Windows\SysWOW64\sxs.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Fusion 2.5 131795770645379614 0x6e140000 348160 C:\Windows\SysWOW64\upnp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API контрольной точки UPnP 131795770645379614 0x6e1a0000 98304 C:\Windows\SysWOW64\ATL.DLL 3.05.2284 Microsoft Corporation ATL Module for Windows XP (Unicode) 131795770645379614 0x6e1c0000 307200 C:\Windows\SysWOW64\hnetcfg.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Диспетчер конфигурации домашней сети 131795770645379614 0x6ef20000 65536 C:\Windows\SysWOW64\SSDPAPI.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation SSDP Client API DLL 131795770645379614 0x6fc70000 385024 C:\Windows\SysWOW64\FirewallAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API брандмауэра Windows 131795770645379614 0x6fd30000 139264 C:\Windows\SysWOW64\DEVOBJ.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Device Information Set DLL 131795770645379614 0x703d0000 2056192 C:\Windows\SysWOW64\DWrite.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Службы Microsoft DirectX Typography 131795770645379614 0x705e0000 344064 C:\Windows\SysWOW64\OLEACC.dll 7.2.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Active Accessibility Core Component 131795770645379614 0x70640000 1499136 C:\Windows\SysWOW64\WindowsCodecs.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Microsoft Windows Codecs Library 131795770645379614 0x707b0000 110592 C:\Windows\SysWOW64\ncryptsslp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft SChannel Provider 131795770645379614 0x70a40000 81920 C:\Windows\SysWOW64\NLAapi.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Network Location Awareness 2 131795770645379614 0x70a60000 90112 C:\Windows\SysWOW64\pnrpnsp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик пространства имен PNRP 131795770645379614 0x70a80000 409600 C:\Windows\SysWOW64\schannel.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик безопасности TLS/SSL 131795770645379614 0x70af0000 36864 C:\Windows\SysWOW64\npmproxy.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Network List Manager Proxy 131795770645379614 0x70b40000 69632 C:\Windows\SysWOW64\mskeyprotect.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик защиты ключей (Майкрософт) 131795770645379614 0x70b70000 163840 C:\Windows\SysWOW64\ntmarta.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик Windows NT MARTA 131795770645379614 0x70ba0000 188416 C:\Windows\SysWOW64\FWPolicyIOMgr.dll 10.0.14393.2189 (rs1_release.180329-1711) Microsoft Corporation FwPolicyIoMgr DLL 131795770645379614 0x70bd0000 147456 C:\Windows\SysWOW64\fwbase.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Firewall Base DLL 131795770645379614 0x70c00000 49152 C:\Windows\SysWOW64\winrnr.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation LDAP RnR Provider DLL 131795770645379614 0x70c10000 73728 C:\Windows\SysWOW64\napinsp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик оболочки совместимости для имен электронной почты 131795770645379614 0x70ca0000 45056 C:\Windows\SysWOW64\NETUTILS.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API Helpers DLL 131795770645379614 0x70cc0000 65536 C:\Windows\SysWOW64\ondemandconnroutehelper.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation On Demand Connctiond Route Helper 131795770645379614 0x70e60000 176128 C:\Windows\SysWOW64\NTASN1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft ASN.1 API 131795770645379614 0x71140000 77824 C:\Windows\SysWOW64\NETAPI32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API DLL 131795770645379614 0x71610000 77824 C:\Windows\SysWOW64\dhcpcsvc6.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиент DHCPv6 131795770645379614 0x725e0000 2273280 C:\Windows\SysWOW64\iertutil.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служебная программа времени выполнения для Internet Explorer 131795770645379614 0x728e0000 1372160 C:\Windows\SysWOW64\PROPSYS.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Система страниц свойств (Майкрософт) 131795770645379614 0x72b90000 126976 C:\Windows\SysWOW64\dwmapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Интерфейс API диспетчера окон рабочего стола (Майкрософт) 131795770645379614 0x73a40000 32768 C:\Windows\SysWOW64\WINNSI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Network Store Information RPC interface 131795770645379614 0x73a50000 299008 C:\Windows\SysWOW64\fwpuclnt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API пользовательского режима FWP/IPsec 131795770645379614 0x73aa0000 32768 C:\Windows\SysWOW64\DPAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Data Protection API 131795770645379614 0x73ab0000 32768 C:\Windows\SysWOW64\rasadhlp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Remote Access AutoDial Helper 131795770645379614 0x73ac0000 81920 C:\Windows\SysWOW64\dhcpcsvc.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служба DHCP-клиента 131795770645379614 0x73ae0000 40960 C:\Windows\SysWOW64\Secur32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Security Support Provider Interface 131795770645379614 0x73c50000 1478656 C:\Windows\WinSxS\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.14393.1715_none_f67438d2f2547a00\gdiplus.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Microsoft GDI+ 131795770645379614 0x73ee0000 61440 C:\Windows\SysWOW64\WTSAPI32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Remote Desktop Session Host Server SDK APIs 131795770645379614 0x73ef0000 24576 C:\Windows\SysWOW64\MSIMG32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation GDIEXT Client DLL 131795770645379614 0x73f00000 192512 C:\Windows\SysWOW64\IPHLPAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API вспомогательного приложения IP 131795770645379614 0x73f30000 512000 C:\Windows\SysWOW64\DNSAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Динамическая библиотека API DNS-клиента 131795770645379614 0x73fc0000 28672 C:\Windows\SysWOW64\wship6.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL помощника Winsock2 (TL/IPv6) 131795770645379614 0x73fd0000 28672 C:\Windows\SysWOW64\wshtcpip.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL помощника службы Winsock2 (TL/IPv4) 131795770645379614 0x73fe0000 32768 C:\Windows\SysWOW64\wshqos.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL помощника службы QoS Winsock2 131795770645379614 0x73ff0000 319488 C:\Windows\SysWOW64\mswsock.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширение поставщика службы API Microsoft Windows Sockets 2.0 131795770645379614 0x74040000 126976 C:\Windows\SysWOW64\gpapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиентские функции API групповой политики 131795770645379614 0x74060000 192512 C:\Windows\SysWOW64\rsaenh.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Enhanced Cryptographic Provider 131795770645379614 0x74110000 479232 C:\Windows\SysWOW64\uxtheme.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека тем UxTheme (Microsoft) 131795770645379614 0x74190000 110592 C:\Windows\SysWOW64\bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795770645379614 0x741b0000 77824 C:\Windows\SysWOW64\CRYPTSP.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Cryptographic Service Provider API 131795770645379614 0x74260000 2514944 C:\Windows\SysWOW64\WININET.dll 11.00.14393.447 (rs1_release_inmarket.161102-0100) Microsoft Corporation Расширения Интернета для Win32 131795770645379614 0x744d0000 2138112 C:\Windows\WinSxS\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.14393.953_none_89c2555adb023171\COMCTL32.dll 6.10 (rs1_release_inmarket.170303-1614) Microsoft Corporation Библиотека элементов управления взаимодействия с пользователем 131795770645379614 0x746e0000 32768 C:\Windows\SysWOW64\VERSION.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Version Checking and File Installation Libraries 131795770645379614 0x746f0000 106496 C:\Windows\SysWOW64\USERENV.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Userenv 131795770645379614 0x747d0000 40960 C:\Windows\SysWOW64\CRYPTBASE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base cryptographic API DLL 131795770645379614 0x747e0000 126976 C:\Windows\SysWOW64\SspiCli.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Security Support Provider Interface 131795770645379614 0x74800000 151552 C:\Windows\SysWOW64\IMM32.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Multi-User Windows IMM32 API Client DLL 131795770645379614 0x74910000 2170880 C:\Windows\SysWOW64\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795770645379614 0x74b30000 53248 C:\Windows\SysWOW64\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795770645379614 0x74b40000 102400 C:\Windows\SysWOW64\imagehlp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT Image Helper 131795770645379614 0x74b60000 790528 C:\Windows\SysWOW64\RPCRT4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795770645379614 0x74c30000 1417216 C:\Windows\SysWOW64\gdi32full.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation GDI Client DLL 131795770645379614 0x74d90000 24576 C:\Windows\SysWOW64\PSAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Process Status Helper 131795770645379614 0x74da0000 778240 C:\Windows\SysWOW64\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795770645379614 0x74e60000 557056 C:\Windows\SysWOW64\shcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795770645379614 0x74ef0000 540672 C:\Windows\SysWOW64\clbcatq.dll 2001.12.10941.16384 (rs1_release.160715-1616) Microsoft Corporation COM+ Configuration Catalog 131795770645379614 0x74f80000 278528 C:\Windows\SysWOW64\wintrust.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation Microsoft Trust Verification APIs 131795770645379614 0x74fd0000 405504 C:\Windows\SysWOW64\WS2_32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation 32-разрядная библиотека Windows Socket 2.0 131795770645379614 0x75040000 282624 C:\Windows\SysWOW64\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795770645379614 0x75090000 1265664 C:\Windows\SysWOW64\MSCTF.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Серверная библиотека MSCTF 131795770645379614 0x751d0000 57344 C:\Windows\SysWOW64\MSASN1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ASN.1 Runtime APIs 131795770645379614 0x751e0000 1708032 C:\Windows\SysWOW64\KERNELBASE.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645379614 0x75390000 266240 C:\Windows\SysWOW64\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795770645379614 0x753e0000 1560576 C:\Windows\SysWOW64\CRYPT32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API32 криптографии 131795770645379614 0x75560000 487424 C:\Windows\SysWOW64\ADVAPI32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795770645379614 0x756c0000 5693440 C:\Windows\SysWOW64\windows.storage.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API хранения Microsoft WinRT 131795770645379614 0x75c90000 286720 C:\Windows\SysWOW64\SHLWAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека небольших программ оболочки 131795770645379614 0x75ce0000 20811776 C:\Windows\SysWOW64\SHELL32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Общая библиотека оболочки Windows 131795770645379614 0x770c0000 4239360 C:\Windows\SysWOW64\SETUPAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Setup API 131795770645379614 0x774d0000 86016 C:\Windows\SysWOW64\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795770645379614 0x774f0000 61440 C:\Windows\SysWOW64\profapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Profile Basic API 131795770645379614 0x77560000 1437696 C:\Windows\SysWOW64\USER32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795770645379614 0x776c0000 368640 C:\Windows\SysWOW64\bcryptPrimitives.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation Windows Cryptographic Primitives Library 131795770645379614 0x77780000 503808 C:\Windows\SysWOW64\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645379614 0x77800000 606208 C:\Windows\SysWOW64\OLEAUT32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795770645379614 0x77ac0000 966656 C:\Windows\SysWOW64\ole32.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft OLE для Windows 131795770645379614 0x77bb0000 176128 C:\Windows\SysWOW64\GDI32.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation GDI Client DLL 131795770645379614 0x77be0000 937984 C:\Windows\SysWOW64\COMDLG32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека общих диалоговых окон 131795770645379614 0x77cd0000 221184 C:\Windows\SysWOW64\cfgmgr32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Configuration Manager DLL 131795770645379614 0x77d10000 28672 C:\Windows\SysWOW64\NSI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation NSI User-mode interface DLL 131795770645379614 0x77d20000 1585152 C:\Windows\SysWOW64\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 131795770645379614 0x7ffad0270000 1908736 C:\Windows\SYSTEM32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 42 3608 664 6 00000000:0031f1da 131765778496229053 0 0 1 Обязательная метка\Средний обязательный уровень WIN-0UOTFKKVN1S\User ApplicationFrameHost.exe C:\Windows\system32\ApplicationFrameHost.exe C:\Windows\system32\ApplicationFrameHost.exe -Embedding Microsoft Corporation 10.0.14393.0 (rs1_release.160715-1616) Application Frame Host 131795770645379722 0x7ff6aa270000 61440 C:\Windows\system32\ApplicationFrameHost.exe 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Application Frame Host 131795770645379722 0x7ffabb490000 512000 C:\Windows\System32\TWINAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation twinapi 131795770645379722 0x7ffac0bf0000 3559424 C:\Windows\System32\ActXPrxy.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation ActiveX Interface Marshaling Library 131795770645379722 0x7ffac3cb0000 2772992 C:\Windows\SYSTEM32\iertutil.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служебная программа времени выполнения для Internet Explorer 131795770645379722 0x7ffac5240000 1114112 C:\Windows\System32\ApplicationFrame.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Фрейм приложения 131795770645379722 0x7ffac5ce0000 1744896 C:\Windows\system32\UIAutomationCore.DLL 7.2.14393.0 (rs1_release.160715-1616) Microsoft Corporation Основные автоматические компоненты Microsoft UI 131795770645379722 0x7ffac6bd0000 413696 C:\Windows\system32\OLEACC.dll 7.2.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Active Accessibility Core Component 131795770645379722 0x7ffac6f50000 5632000 C:\Windows\System32\d2d1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека Microsoft D2D 131795770645379722 0x7ffac7580000 1077248 C:\Windows\SYSTEM32\mrmcorer.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Windows MRM 131795770645379722 0x7ffac7fc0000 2674688 C:\Windows\system32\D3D10Warp.dll 10.0.14393.576 (rs1_release_inmarket.161208-2252) Microsoft Corporation Direct3D 10 Rasterizer 131795770645379722 0x7ffac88a0000 2842624 C:\Windows\System32\d3d11.dll 10.0.14393.953 (rs1_release_inmarket.170303-1614) Microsoft Corporation Direct3D 11 Runtime 131795770645379722 0x7ffac9ec0000 294912 C:\Windows\System32\UIAnimation.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Animation Manager 131795770645379722 0x7ffac9f50000 1736704 C:\Windows\system32\windowscodecs.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Microsoft Windows Codecs Library 131795770645379722 0x7ffaca340000 1593344 C:\Windows\System32\PROPSYS.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Система страниц свойств (Майкрософт) 131795770645379722 0x7ffaca570000 421888 C:\Windows\system32\Bcp47Langs.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation BCP47 Language Classes 131795770645379722 0x7ffaca5e0000 155648 C:\Windows\System32\dwmapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Интерфейс API диспетчера окон рабочего стола (Майкрософт) 131795770645379722 0x7ffaca770000 1380352 C:\Windows\System32\dcomp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft DirectComposition Library 131795770645379722 0x7ffacaf00000 610304 C:\Windows\System32\UxTheme.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека тем UxTheme (Microsoft) 131795770645379722 0x7ffacb1e0000 1163264 C:\Windows\System32\twinapi.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation twinapi.appcore 131795770645379722 0x7ffacb3f0000 163840 C:\Windows\System32\DEVOBJ.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Device Information Set DLL 131795770645379722 0x7ffacb780000 651264 C:\Windows\System32\dxgi.dll 10.0.14393.953 (rs1_release_inmarket.170303-1614) Microsoft Corporation DirectX Graphics Infrastructure 131795770645379722 0x7ffacbe40000 126976 C:\Windows\system32\USERENV.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Userenv 131795770645379722 0x7ffacc520000 622592 C:\Windows\SYSTEM32\sxs.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Fusion 2.5 131795770645379722 0x7ffacc620000 176128 C:\Windows\System32\bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795770645379722 0x7ffacc6e0000 61440 C:\Windows\System32\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795770645379722 0x7ffacc6f0000 311296 C:\Windows\System32\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795770645379722 0x7ffacc740000 81920 C:\Windows\System32\profapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Profile Basic API 131795770645379722 0x7ffacc760000 65536 C:\Windows\System32\MSASN1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ASN.1 Runtime APIs 131795770645379722 0x7ffacc8f0000 1003520 C:\Windows\System32\ucrtbase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645379722 0x7ffacc9f0000 434176 C:\Windows\System32\bcryptPrimitives.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Cryptographic Primitives Library 131795770645379722 0x7ffacca60000 122880 C:\Windows\System32\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795770645379722 0x7ffaccae0000 692224 C:\Windows\System32\SHCORE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795770645379722 0x7ffaccb90000 7180288 C:\Windows\System32\windows.storage.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API хранения Microsoft WinRT 131795770645379722 0x7ffacd270000 2215936 C:\Windows\System32\KERNELBASE.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645379722 0x7ffacd490000 1871872 C:\Windows\System32\CRYPT32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API32 криптографии 131795770645379722 0x7ffacd710000 638976 C:\Windows\System32\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645379722 0x7ffacd7b0000 270336 C:\Windows\System32\cfgmgr32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Configuration Manager DLL 131795770645379722 0x7ffacd810000 22056960 C:\Windows\System32\SHELL32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Общая библиотека оболочки Windows 131795770645379722 0x7ffaced20000 782336 C:\Windows\System32\OLEAUT32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795770645379722 0x7ffacee50000 1183744 C:\Windows\System32\RPCRT4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795770645379722 0x7ffacef90000 647168 C:\Windows\System32\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795770645379722 0x7ffacf030000 651264 C:\Windows\System32\clbcatq.dll 2001.12.10941.16384 (rs1_release.160715-1616) Microsoft Corporation COM+ Configuration Catalog 131795770645379722 0x7ffacf0d0000 704512 C:\Windows\System32\KERNEL32.DLL 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645379722 0x7ffacf1e0000 1417216 C:\Windows\System32\MSCTF.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Серверная библиотека MSCTF 131795770645379722 0x7ffacf770000 212992 C:\Windows\System32\GDI32.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation GDI Client DLL 131795770645379722 0x7ffacf890000 188416 C:\Windows\System32\IMM32.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Multi-User Windows IMM32 API Client DLL 131795770645379722 0x7ffacf8c0000 1462272 C:\Windows\System32\USER32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795770645379722 0x7ffacfb30000 2916352 C:\Windows\System32\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795770645379722 0x7ffacfe20000 663552 C:\Windows\System32\advapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795770645379722 0x7ffad01b0000 335872 C:\Windows\System32\SHLWAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека небольших программ оболочки 131795770645379722 0x7ffad0210000 364544 C:\Windows\System32\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795770645379722 0x7ffad0270000 1908736 C:\Windows\SYSTEM32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 43 5952 4928 41 00000000:0031f1da 131765778883326814 0 1 0 Обязательная метка\Низкий обязательный уровень WIN-0UOTFKKVN1S\User utorrentie.exe C:\Users\User\AppData\Roaming\uTorrent\updates\3.5.4_44498\utorrentie.exe "C:\Users\User\AppData\Roaming\uTorrent\updates\3.5.4_44498\utorrentie.exe" uTorrent_4928_02D54150_1240996307 µTorrent4823DF041B09 uTorrent BitTorrent Inc. 1.0.0 WebHelper 131795770645379833 0x1180000 417792 C:\Users\User\AppData\Roaming\uTorrent\updates\3.5.4_44498\utorrentie.exe 1.0.0 BitTorrent Inc. WebHelper 131795770645379833 0x5c020000 335872 C:\Windows\System32\wow64.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation Win32 Emulation on NT64 131795770645379833 0x5c080000 487424 C:\Windows\System32\wow64win.dll 10.0.14393.1884 (rs1_release.171101-1233) Microsoft Corporation Wow64 Console and Win32 API Logging 131795770645379833 0x5c100000 40960 C:\Windows\System32\wow64cpu.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation AMD64 Wow64 CPU 131795770645379833 0x63490000 221184 C:\Windows\SysWOW64\dinput8.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft DirectInput 131795770645379833 0x634d0000 561152 C:\Windows\SysWOW64\DSOUND.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DirectSound 131795770645379833 0x63560000 23334912 C:\Windows\SysWOW64\Macromed\Flash\Flash.ocx 29,0,0,140 Adobe Systems, Inc. Adobe Flash Player 29.0 r0 131795770645379833 0x64d00000 5079040 C:\Windows\SysWOW64\d2d1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека Microsoft D2D 131795770645379833 0x651e0000 20537344 C:\Windows\SysWOW64\mshtml.dll 11.00.14393.447 (rs1_release_inmarket.161102-0100) Microsoft Corporation Средство просмотра HTML Microsoft® 131795770645379833 0x66580000 12247040 C:\Windows\SysWOW64\ieframe.dll 11.00.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Браузер 131795770645379833 0x6b670000 212992 C:\Windows\SysWOW64\mlang.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL многоязыковой поддержки 131795770645379833 0x6b6b0000 36864 C:\Windows\SysWOW64\atlthunk.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation atlthunk.dll 131795770645379833 0x6c290000 987136 C:\Windows\SysWOW64\twinapi.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation twinapi.appcore 131795770645379833 0x6c390000 1126400 C:\Windows\SysWOW64\dcomp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft DirectComposition Library 131795770645379833 0x6c4b0000 278528 C:\Windows\SysWOW64\dataexchange.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation Data exchange 131795770645379833 0x6c540000 483328 C:\Windows\SysWOW64\webio.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API протоколов передачи по Веб 131795770645379833 0x6c5c0000 1384448 C:\Windows\SysWOW64\UIAutomationCore.DLL 7.2.14393.0 (rs1_release.160715-1616) Microsoft Corporation Основные автоматические компоненты Microsoft UI 131795770645379833 0x6c720000 2318336 C:\Windows\SysWOW64\d3d10warp.dll 10.0.14393.576 (rs1_release_inmarket.161208-2252) Microsoft Corporation Direct3D 10 Rasterizer 131795770645379833 0x6c960000 57344 C:\Windows\SysWOW64\msimtf.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Active IMM Server DLL 131795770645379833 0x6c970000 3698688 C:\Windows\SysWOW64\jscript9.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft ® JScript 131795770645379833 0x6cd00000 69632 C:\Windows\SysWOW64\WLDP.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Политика блокировки Windows 131795770645379833 0x6cd20000 135168 C:\Windows\SysWOW64\srpapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL программных интерфейсов (API) поставщика общих ресурсов 131795770645379833 0x6cda0000 528384 C:\Windows\SysWOW64\sxs.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Fusion 2.5 131795770645379833 0x6d080000 151552 C:\Windows\SysWOW64\cryptnet.dll 10.0.14393.2035 (rs1_release_inmarket.180110-1910) Microsoft Corporation Crypto Network Related API 131795770645379833 0x6d0b0000 847872 C:\Windows\SysWOW64\wintypes.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL основных типов Windows 131795770645379833 0x6fd30000 139264 C:\Windows\SysWOW64\DEVOBJ.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Device Information Set DLL 131795770645379833 0x6fd60000 360448 C:\Windows\SysWOW64\MMDevApi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation MMDevice API 131795770645379833 0x6fdc0000 507904 C:\Windows\SysWOW64\AUDIOSES.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Сеанс обработки звука 131795770645379833 0x6fe90000 544768 C:\Windows\SysWOW64\mscms.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL-библиотека системы сопоставления цветов Майкрософт 131795770645379833 0x70340000 536576 C:\Windows\SysWOW64\dxgi.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation DirectX Graphics Infrastructure 131795770645379833 0x703d0000 2056192 C:\Windows\SysWOW64\DWrite.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Службы Microsoft DirectX Typography 131795770645379833 0x70640000 1499136 C:\Windows\SysWOW64\windowscodecs.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Microsoft Windows Codecs Library 131795770645379833 0x707b0000 110592 C:\Windows\SysWOW64\ncryptsslp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft SChannel Provider 131795770645379833 0x707f0000 2293760 C:\Windows\SysWOW64\d3d11.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation Direct3D 11 Runtime 131795770645379833 0x70a80000 409600 C:\Windows\SysWOW64\schannel.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик безопасности TLS/SSL 131795770645379833 0x70b40000 69632 C:\Windows\SysWOW64\mskeyprotect.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик защиты ключей (Майкрософт) 131795770645379833 0x70ca0000 45056 C:\Windows\SysWOW64\NETUTILS.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API Helpers DLL 131795770645379833 0x70cc0000 65536 C:\Windows\SysWOW64\ondemandconnroutehelper.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation On Demand Connctiond Route Helper 131795770645379833 0x70e60000 176128 C:\Windows\SysWOW64\NTASN1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft ASN.1 API 131795770645379833 0x71140000 77824 C:\Windows\SysWOW64\NETAPI32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API DLL 131795770645379833 0x71610000 77824 C:\Windows\SysWOW64\dhcpcsvc6.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиент DHCPv6 131795770645379833 0x725e0000 2273280 C:\Windows\SysWOW64\iertutil.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служебная программа времени выполнения для Internet Explorer 131795770645379833 0x728e0000 1372160 C:\Windows\SysWOW64\PROPSYS.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Система страниц свойств (Майкрософт) 131795770645379833 0x72b90000 126976 C:\Windows\SysWOW64\dwmapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Интерфейс API диспетчера окон рабочего стола (Майкрософт) 131795770645379833 0x72cc0000 1658880 C:\Windows\SysWOW64\urlmon.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширения OLE32 для Win32 131795770645379833 0x73a40000 32768 C:\Windows\SysWOW64\WINNSI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Network Store Information RPC interface 131795770645379833 0x73a50000 299008 C:\Windows\SysWOW64\fwpuclnt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API пользовательского режима FWP/IPsec 131795770645379833 0x73aa0000 32768 C:\Windows\SysWOW64\DPAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Data Protection API 131795770645379833 0x73ab0000 32768 C:\Windows\SysWOW64\rasadhlp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Remote Access AutoDial Helper 131795770645379833 0x73ac0000 81920 C:\Windows\SysWOW64\dhcpcsvc.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служба DHCP-клиента 131795770645379833 0x73ae0000 40960 C:\Windows\SysWOW64\Secur32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Security Support Provider Interface 131795770645379833 0x73ef0000 24576 C:\Windows\SysWOW64\MSIMG32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation GDIEXT Client DLL 131795770645379833 0x73f00000 192512 C:\Windows\SysWOW64\IPHLPAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API вспомогательного приложения IP 131795770645379833 0x73f30000 512000 C:\Windows\SysWOW64\DNSAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Динамическая библиотека API DNS-клиента 131795770645379833 0x73ff0000 319488 C:\Windows\SysWOW64\mswsock.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширение поставщика службы API Microsoft Windows Sockets 2.0 131795770645379833 0x74060000 192512 C:\Windows\SysWOW64\rsaenh.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Enhanced Cryptographic Provider 131795770645379833 0x74110000 479232 C:\Windows\SysWOW64\uxtheme.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека тем UxTheme (Microsoft) 131795770645379833 0x74190000 110592 C:\Windows\SysWOW64\bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795770645379833 0x741b0000 77824 C:\Windows\SysWOW64\CRYPTSP.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Cryptographic Service Provider API 131795770645379833 0x741f0000 143360 C:\Windows\SysWOW64\WINMMBASE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base Multimedia Extension API DLL 131795770645379833 0x74230000 147456 C:\Windows\SysWOW64\WINMM.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation MCI API DLL 131795770645379833 0x74260000 2514944 C:\Windows\SysWOW64\WININET.dll 11.00.14393.447 (rs1_release_inmarket.161102-0100) Microsoft Corporation Расширения Интернета для Win32 131795770645379833 0x744d0000 2138112 C:\Windows\WinSxS\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.14393.953_none_89c2555adb023171\comctl32.dll 6.10 (rs1_release_inmarket.170303-1614) Microsoft Corporation Библиотека элементов управления взаимодействия с пользователем 131795770645379833 0x746e0000 32768 C:\Windows\SysWOW64\VERSION.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Version Checking and File Installation Libraries 131795770645379833 0x746f0000 106496 C:\Windows\SysWOW64\USERENV.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Userenv 131795770645379833 0x74730000 598016 C:\Windows\SysWOW64\apphelp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиентская библиотека совместимости приложений 131795770645379833 0x747d0000 40960 C:\Windows\SysWOW64\CRYPTBASE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base cryptographic API DLL 131795770645379833 0x747e0000 126976 C:\Windows\SysWOW64\SspiCli.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Security Support Provider Interface 131795770645379833 0x74800000 151552 C:\Windows\SysWOW64\IMM32.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Multi-User Windows IMM32 API Client DLL 131795770645379833 0x74910000 2170880 C:\Windows\SysWOW64\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795770645379833 0x74b30000 53248 C:\Windows\SysWOW64\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795770645379833 0x74b60000 790528 C:\Windows\SysWOW64\RPCRT4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795770645379833 0x74c30000 1417216 C:\Windows\SysWOW64\gdi32full.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation GDI Client DLL 131795770645379833 0x74da0000 778240 C:\Windows\SysWOW64\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795770645379833 0x74e60000 557056 C:\Windows\SysWOW64\shcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795770645379833 0x74ef0000 540672 C:\Windows\SysWOW64\clbcatq.dll 2001.12.10941.16384 (rs1_release.160715-1616) Microsoft Corporation COM+ Configuration Catalog 131795770645379833 0x74f80000 278528 C:\Windows\SysWOW64\WINTRUST.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation Microsoft Trust Verification APIs 131795770645379833 0x74fd0000 405504 C:\Windows\SysWOW64\WS2_32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation 32-разрядная библиотека Windows Socket 2.0 131795770645379833 0x75040000 282624 C:\Windows\SysWOW64\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795770645379833 0x75090000 1265664 C:\Windows\SysWOW64\MSCTF.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Серверная библиотека MSCTF 131795770645379833 0x751d0000 57344 C:\Windows\SysWOW64\MSASN1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ASN.1 Runtime APIs 131795770645379833 0x751e0000 1708032 C:\Windows\SysWOW64\KERNELBASE.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645379833 0x75390000 266240 C:\Windows\SysWOW64\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795770645379833 0x753e0000 1560576 C:\Windows\SysWOW64\CRYPT32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API32 криптографии 131795770645379833 0x75560000 487424 C:\Windows\SysWOW64\advapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795770645379833 0x756c0000 5693440 C:\Windows\SysWOW64\windows.storage.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API хранения Microsoft WinRT 131795770645379833 0x75c30000 372736 C:\Windows\SysWOW64\coml2.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft COM for Windows 131795770645379833 0x75c90000 286720 C:\Windows\SysWOW64\shlwapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека небольших программ оболочки 131795770645379833 0x75ce0000 20811776 C:\Windows\SysWOW64\SHELL32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Общая библиотека оболочки Windows 131795770645379833 0x774d0000 86016 C:\Windows\SysWOW64\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795770645379833 0x774f0000 61440 C:\Windows\SysWOW64\profapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Profile Basic API 131795770645379833 0x77560000 1437696 C:\Windows\SysWOW64\USER32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795770645379833 0x776c0000 368640 C:\Windows\SysWOW64\bcryptPrimitives.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation Windows Cryptographic Primitives Library 131795770645379833 0x77780000 503808 C:\Windows\SysWOW64\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645379833 0x77800000 606208 C:\Windows\SysWOW64\OLEAUT32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795770645379833 0x77ac0000 966656 C:\Windows\SysWOW64\ole32.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft OLE для Windows 131795770645379833 0x77bb0000 176128 C:\Windows\SysWOW64\GDI32.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation GDI Client DLL 131795770645379833 0x77cd0000 221184 C:\Windows\SysWOW64\cfgmgr32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Configuration Manager DLL 131795770645379833 0x77d10000 28672 C:\Windows\SysWOW64\NSI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation NSI User-mode interface DLL 131795770645379833 0x77d20000 1585152 C:\Windows\SysWOW64\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 131795770645379833 0x7ffad0270000 1908736 C:\Windows\SYSTEM32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 44 5800 664 6 00000000:0031f1da 131765779120650795 0 0 1 Обязательная метка\Средний обязательный уровень WIN-0UOTFKKVN1S\User DllHost.exe C:\Windows\system32\DllHost.exe C:\Windows\system32\DllHost.exe /Processid:{49F6E667-6658-4BD1-9DE9-6AF87F9FAF85} Microsoft Corporation 10.0.14393.0 (rs1_release.160715-1616) COM Surrogate 131795770645379938 0x7ff7a2280000 36864 C:\Windows\system32\DllHost.exe 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation COM Surrogate 131795770645379938 0x7ffac3840000 3088384 C:\Windows\SYSTEM32\esent.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширяемая подсистема хранения данных ESE для Microsoft(R) Windows(R) 131795770645379938 0x7ffac3b80000 286720 C:\Windows\system32\indexeddbserver.dll 10.0.14393.2189 (rs1_release.180329-1711) Microsoft Corporation IndexedDb host 131795770645379938 0x7ffac3cb0000 2772992 C:\Windows\system32\iertutil.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служебная программа времени выполнения для Internet Explorer 131795770645379938 0x7ffacaf00000 610304 C:\Windows\system32\uxtheme.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека тем UxTheme (Microsoft) 131795770645379938 0x7ffacc170000 45056 C:\Windows\system32\CRYPTBASE.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base cryptographic API DLL 131795770645379938 0x7ffacc6e0000 61440 C:\Windows\System32\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795770645379938 0x7ffacc6f0000 311296 C:\Windows\System32\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795770645379938 0x7ffacc740000 81920 C:\Windows\System32\profapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Profile Basic API 131795770645379938 0x7ffacc8f0000 1003520 C:\Windows\System32\ucrtbase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645379938 0x7ffacc9f0000 434176 C:\Windows\System32\bcryptPrimitives.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Cryptographic Primitives Library 131795770645379938 0x7ffacca60000 122880 C:\Windows\System32\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795770645379938 0x7ffaccae0000 692224 C:\Windows\System32\shcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795770645379938 0x7ffaccb90000 7180288 C:\Windows\System32\windows.storage.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API хранения Microsoft WinRT 131795770645379938 0x7ffacd270000 2215936 C:\Windows\System32\KERNELBASE.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645379938 0x7ffacd710000 638976 C:\Windows\System32\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645379938 0x7ffaced20000 782336 C:\Windows\System32\OLEAUT32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795770645379938 0x7ffacee50000 1183744 C:\Windows\System32\RPCRT4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795770645379938 0x7ffacef90000 647168 C:\Windows\System32\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795770645379938 0x7ffacf030000 651264 C:\Windows\System32\clbcatq.dll 2001.12.10941.16384 (rs1_release.160715-1616) Microsoft Corporation COM+ Configuration Catalog 131795770645379938 0x7ffacf0d0000 704512 C:\Windows\System32\KERNEL32.DLL 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645379938 0x7ffacf770000 212992 C:\Windows\System32\GDI32.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation GDI Client DLL 131795770645379938 0x7ffacf890000 188416 C:\Windows\System32\IMM32.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Multi-User Windows IMM32 API Client DLL 131795770645379938 0x7ffacf8c0000 1462272 C:\Windows\System32\user32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795770645379938 0x7ffacfb30000 2916352 C:\Windows\System32\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795770645379938 0x7ffacfe20000 663552 C:\Windows\System32\advapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795770645379938 0x7ffad01b0000 335872 C:\Windows\System32\shlwapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека небольших программ оболочки 131795770645379938 0x7ffad0210000 364544 C:\Windows\System32\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795770645379938 0x7ffad0270000 1908736 C:\Windows\SYSTEM32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 45 340 4928 41 00000000:0031f1da 131765800389528045 0 1 0 Обязательная метка\Низкий обязательный уровень WIN-0UOTFKKVN1S\User utorrentie.exe C:\Users\User\AppData\Roaming\uTorrent\updates\3.5.4_44498\utorrentie.exe "C:\Users\User\AppData\Roaming\uTorrent\updates\3.5.4_44498\utorrentie.exe" uTorrent_4928_02D54870_1839591030 µTorrent4823DF041B09 uTorrent BitTorrent Inc. 1.0.0 WebHelper 131795770645380038 0x1180000 417792 C:\Users\User\AppData\Roaming\uTorrent\updates\3.5.4_44498\utorrentie.exe 1.0.0 BitTorrent Inc. WebHelper 131795770645380038 0x5c020000 335872 C:\Windows\System32\wow64.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation Win32 Emulation on NT64 131795770645380038 0x5c080000 487424 C:\Windows\System32\wow64win.dll 10.0.14393.1884 (rs1_release.171101-1233) Microsoft Corporation Wow64 Console and Win32 API Logging 131795770645380038 0x5c100000 40960 C:\Windows\System32\wow64cpu.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation AMD64 Wow64 CPU 131795770645380038 0x60750000 1556480 C:\Program Files (x86)\360\Total Security\safemon\safemon.dll 8, 4, 0, 1420 Qihu 360 Software Co., Ltd. 360 Internet Security Internet Protection 131795770645380038 0x63490000 221184 C:\Windows\SysWOW64\dinput8.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft DirectInput 131795770645380038 0x634d0000 561152 C:\Windows\SysWOW64\DSOUND.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DirectSound 131795770645380038 0x63560000 23334912 C:\Windows\SysWOW64\Macromed\Flash\Flash.ocx 29,0,0,140 Adobe Systems, Inc. Adobe Flash Player 29.0 r0 131795770645380038 0x64d00000 5079040 C:\Windows\SysWOW64\d2d1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека Microsoft D2D 131795770645380038 0x651e0000 20537344 C:\Windows\SysWOW64\mshtml.dll 11.00.14393.447 (rs1_release_inmarket.161102-0100) Microsoft Corporation Средство просмотра HTML Microsoft® 131795770645380038 0x66580000 12247040 C:\Windows\SysWOW64\ieframe.dll 11.00.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Браузер 131795770645380038 0x6b670000 212992 C:\Windows\SysWOW64\mlang.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL многоязыковой поддержки 131795770645380038 0x6b6b0000 36864 C:\Windows\SysWOW64\atlthunk.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation atlthunk.dll 131795770645380038 0x6c290000 987136 C:\Windows\SysWOW64\twinapi.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation twinapi.appcore 131795770645380038 0x6c390000 1126400 C:\Windows\SysWOW64\dcomp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft DirectComposition Library 131795770645380038 0x6c4b0000 278528 C:\Windows\SysWOW64\dataexchange.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation Data exchange 131795770645380038 0x6c540000 483328 C:\Windows\SysWOW64\webio.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API протоколов передачи по Веб 131795770645380038 0x6c5c0000 1384448 C:\Windows\SysWOW64\UIAutomationCore.DLL 7.2.14393.0 (rs1_release.160715-1616) Microsoft Corporation Основные автоматические компоненты Microsoft UI 131795770645380038 0x6c720000 2318336 C:\Windows\SysWOW64\d3d10warp.dll 10.0.14393.576 (rs1_release_inmarket.161208-2252) Microsoft Corporation Direct3D 10 Rasterizer 131795770645380038 0x6c960000 57344 C:\Windows\SysWOW64\msimtf.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Active IMM Server DLL 131795770645380038 0x6c970000 3698688 C:\Windows\SysWOW64\jscript9.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft ® JScript 131795770645380038 0x6cd00000 69632 C:\Windows\SysWOW64\WLDP.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Политика блокировки Windows 131795770645380038 0x6cd20000 135168 C:\Windows\SysWOW64\srpapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL программных интерфейсов (API) поставщика общих ресурсов 131795770645380038 0x6cda0000 528384 C:\Windows\SysWOW64\sxs.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Fusion 2.5 131795770645380038 0x6d080000 151552 C:\Windows\SysWOW64\cryptnet.dll 10.0.14393.2035 (rs1_release_inmarket.180110-1910) Microsoft Corporation Crypto Network Related API 131795770645380038 0x6d0b0000 847872 C:\Windows\SysWOW64\wintypes.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL основных типов Windows 131795770645380038 0x6fd30000 139264 C:\Windows\SysWOW64\DEVOBJ.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Device Information Set DLL 131795770645380038 0x6fd60000 360448 C:\Windows\SysWOW64\MMDevApi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation MMDevice API 131795770645380038 0x6fdc0000 507904 C:\Windows\SysWOW64\AUDIOSES.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Сеанс обработки звука 131795770645380038 0x6fe90000 544768 C:\Windows\SysWOW64\mscms.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL-библиотека системы сопоставления цветов Майкрософт 131795770645380038 0x70340000 536576 C:\Windows\SysWOW64\dxgi.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation DirectX Graphics Infrastructure 131795770645380038 0x703d0000 2056192 C:\Windows\SysWOW64\DWrite.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Службы Microsoft DirectX Typography 131795770645380038 0x70640000 1499136 C:\Windows\SysWOW64\windowscodecs.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Microsoft Windows Codecs Library 131795770645380038 0x707b0000 110592 C:\Windows\SysWOW64\ncryptsslp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft SChannel Provider 131795770645380038 0x707f0000 2293760 C:\Windows\SysWOW64\d3d11.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation Direct3D 11 Runtime 131795770645380038 0x70a40000 81920 C:\Windows\SysWOW64\NLAapi.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Network Location Awareness 2 131795770645380038 0x70a60000 90112 C:\Windows\SysWOW64\pnrpnsp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик пространства имен PNRP 131795770645380038 0x70a80000 409600 C:\Windows\SysWOW64\schannel.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик безопасности TLS/SSL 131795770645380038 0x70b40000 69632 C:\Windows\SysWOW64\mskeyprotect.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик защиты ключей (Майкрософт) 131795770645380038 0x70c00000 49152 C:\Windows\SysWOW64\winrnr.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation LDAP RnR Provider DLL 131795770645380038 0x70c10000 73728 C:\Windows\SysWOW64\napinsp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик оболочки совместимости для имен электронной почты 131795770645380038 0x70c30000 114688 C:\Windows\SysWOW64\srvcli.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Server Service Client DLL 131795770645380038 0x70c50000 319488 C:\Windows\SysWOW64\Ninput.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Pen and Touch Input Component 131795770645380038 0x70ca0000 45056 C:\Windows\SysWOW64\NETUTILS.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API Helpers DLL 131795770645380038 0x70cc0000 65536 C:\Windows\SysWOW64\ondemandconnroutehelper.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation On Demand Connctiond Route Helper 131795770645380038 0x70e60000 176128 C:\Windows\SysWOW64\NTASN1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft ASN.1 API 131795770645380038 0x71140000 77824 C:\Windows\SysWOW64\NETAPI32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API DLL 131795770645380038 0x71610000 77824 C:\Windows\SysWOW64\dhcpcsvc6.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиент DHCPv6 131795770645380038 0x725e0000 2273280 C:\Windows\SysWOW64\iertutil.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служебная программа времени выполнения для Internet Explorer 131795770645380038 0x728e0000 1372160 C:\Windows\SysWOW64\PROPSYS.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Система страниц свойств (Майкрософт) 131795770645380038 0x72b90000 126976 C:\Windows\SysWOW64\dwmapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Интерфейс API диспетчера окон рабочего стола (Майкрософт) 131795770645380038 0x72cc0000 1658880 C:\Windows\SysWOW64\urlmon.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширения OLE32 для Win32 131795770645380038 0x73a40000 32768 C:\Windows\SysWOW64\WINNSI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Network Store Information RPC interface 131795770645380038 0x73a50000 299008 C:\Windows\SysWOW64\fwpuclnt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API пользовательского режима FWP/IPsec 131795770645380038 0x73aa0000 32768 C:\Windows\SysWOW64\DPAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Data Protection API 131795770645380038 0x73ab0000 32768 C:\Windows\SysWOW64\rasadhlp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Remote Access AutoDial Helper 131795770645380038 0x73ac0000 81920 C:\Windows\SysWOW64\dhcpcsvc.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служба DHCP-клиента 131795770645380038 0x73ae0000 40960 C:\Windows\SysWOW64\Secur32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Security Support Provider Interface 131795770645380038 0x73ef0000 24576 C:\Windows\SysWOW64\MSIMG32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation GDIEXT Client DLL 131795770645380038 0x73f00000 192512 C:\Windows\SysWOW64\IPHLPAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API вспомогательного приложения IP 131795770645380038 0x73f30000 512000 C:\Windows\SysWOW64\DNSAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Динамическая библиотека API DNS-клиента 131795770645380038 0x73ff0000 319488 C:\Windows\SysWOW64\mswsock.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширение поставщика службы API Microsoft Windows Sockets 2.0 131795770645380038 0x74060000 192512 C:\Windows\SysWOW64\rsaenh.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Enhanced Cryptographic Provider 131795770645380038 0x74110000 479232 C:\Windows\SysWOW64\uxtheme.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека тем UxTheme (Microsoft) 131795770645380038 0x74190000 110592 C:\Windows\SysWOW64\bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795770645380038 0x741b0000 77824 C:\Windows\SysWOW64\CRYPTSP.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Cryptographic Service Provider API 131795770645380038 0x741f0000 143360 C:\Windows\SysWOW64\WINMMBASE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base Multimedia Extension API DLL 131795770645380038 0x74230000 147456 C:\Windows\SysWOW64\WINMM.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation MCI API DLL 131795770645380038 0x74260000 2514944 C:\Windows\SysWOW64\WININET.dll 11.00.14393.447 (rs1_release_inmarket.161102-0100) Microsoft Corporation Расширения Интернета для Win32 131795770645380038 0x744d0000 2138112 C:\Windows\WinSxS\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.14393.953_none_89c2555adb023171\comctl32.dll 6.10 (rs1_release_inmarket.170303-1614) Microsoft Corporation Библиотека элементов управления взаимодействия с пользователем 131795770645380038 0x746e0000 32768 C:\Windows\SysWOW64\VERSION.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Version Checking and File Installation Libraries 131795770645380038 0x746f0000 106496 C:\Windows\SysWOW64\USERENV.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Userenv 131795770645380038 0x74730000 598016 C:\Windows\SysWOW64\apphelp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиентская библиотека совместимости приложений 131795770645380038 0x747d0000 40960 C:\Windows\SysWOW64\CRYPTBASE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base cryptographic API DLL 131795770645380038 0x747e0000 126976 C:\Windows\SysWOW64\SspiCli.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Security Support Provider Interface 131795770645380038 0x74800000 151552 C:\Windows\SysWOW64\IMM32.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Multi-User Windows IMM32 API Client DLL 131795770645380038 0x74910000 2170880 C:\Windows\SysWOW64\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795770645380038 0x74b30000 53248 C:\Windows\SysWOW64\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795770645380038 0x74b60000 790528 C:\Windows\SysWOW64\RPCRT4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795770645380038 0x74c30000 1417216 C:\Windows\SysWOW64\gdi32full.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation GDI Client DLL 131795770645380038 0x74d90000 24576 C:\Windows\SysWOW64\PSAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Process Status Helper 131795770645380038 0x74da0000 778240 C:\Windows\SysWOW64\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795770645380038 0x74e60000 557056 C:\Windows\SysWOW64\shcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795770645380038 0x74ef0000 540672 C:\Windows\SysWOW64\clbcatq.dll 2001.12.10941.16384 (rs1_release.160715-1616) Microsoft Corporation COM+ Configuration Catalog 131795770645380038 0x74f80000 278528 C:\Windows\SysWOW64\WINTRUST.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation Microsoft Trust Verification APIs 131795770645380038 0x74fd0000 405504 C:\Windows\SysWOW64\WS2_32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation 32-разрядная библиотека Windows Socket 2.0 131795770645380038 0x75040000 282624 C:\Windows\SysWOW64\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795770645380038 0x75090000 1265664 C:\Windows\SysWOW64\MSCTF.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Серверная библиотека MSCTF 131795770645380038 0x751d0000 57344 C:\Windows\SysWOW64\MSASN1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ASN.1 Runtime APIs 131795770645380038 0x751e0000 1708032 C:\Windows\SysWOW64\KERNELBASE.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645380038 0x75390000 266240 C:\Windows\SysWOW64\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795770645380038 0x753e0000 1560576 C:\Windows\SysWOW64\CRYPT32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API32 криптографии 131795770645380038 0x75560000 487424 C:\Windows\SysWOW64\advapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795770645380038 0x756c0000 5693440 C:\Windows\SysWOW64\windows.storage.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API хранения Microsoft WinRT 131795770645380038 0x75c30000 372736 C:\Windows\SysWOW64\coml2.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft COM for Windows 131795770645380038 0x75c90000 286720 C:\Windows\SysWOW64\shlwapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека небольших программ оболочки 131795770645380038 0x75ce0000 20811776 C:\Windows\SysWOW64\SHELL32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Общая библиотека оболочки Windows 131795770645380038 0x774d0000 86016 C:\Windows\SysWOW64\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795770645380038 0x774f0000 61440 C:\Windows\SysWOW64\profapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Profile Basic API 131795770645380038 0x77560000 1437696 C:\Windows\SysWOW64\USER32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795770645380038 0x776c0000 368640 C:\Windows\SysWOW64\bcryptPrimitives.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation Windows Cryptographic Primitives Library 131795770645380038 0x77780000 503808 C:\Windows\SysWOW64\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645380038 0x77800000 606208 C:\Windows\SysWOW64\OLEAUT32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795770645380038 0x77ac0000 966656 C:\Windows\SysWOW64\ole32.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft OLE для Windows 131795770645380038 0x77bb0000 176128 C:\Windows\SysWOW64\GDI32.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation GDI Client DLL 131795770645380038 0x77cd0000 221184 C:\Windows\SysWOW64\cfgmgr32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Configuration Manager DLL 131795770645380038 0x77d10000 28672 C:\Windows\SysWOW64\NSI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation NSI User-mode interface DLL 131795770645380038 0x77d20000 1585152 C:\Windows\SysWOW64\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 131795770645380038 0x7ffad0270000 1908736 C:\Windows\SYSTEM32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 46 2736 3976 47 00000000:0031f1ab 131765800903010156 0 0 1 Обязательная метка\Высокий обязательный уровень WIN-0UOTFKKVN1S\User Taskmgr.exe C:\Windows\System32\Taskmgr.exe "C:\Windows\System32\Taskmgr.exe" /2 Microsoft® Windows® Operating System 1, 0, 0, 1 Task Manager 131795770645380149 0x7ff7c2a70000 1286144 C:\Windows\System32\Taskmgr.exe 1, 0, 0, 1 Microsoft® Windows® Operating System Task Manager 131795770645380149 0x7ffab2720000 606208 C:\Windows\System32\DUser.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows DirectUser Engine 131795770645380149 0x7ffab8190000 9191424 C:\Windows\System32\TwinUI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation TWINUI 131795770645380149 0x7ffabdbb0000 1736704 C:\Windows\System32\DUI70.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Подсистема DirectUI Windows 131795770645380149 0x7ffabdfa0000 393216 C:\Windows\System32\faultrep.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека отчетов о сбоях в пользовательском режиме Windows 131795770645380149 0x7ffabeb20000 385024 C:\Windows\System32\Windows.ApplicationModel.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows ApplicationModel API Server 131795770645380149 0x7ffac0bf0000 3559424 C:\Windows\System32\ActXPrxy.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation ActiveX Interface Marshaling Library 131795770645380149 0x7ffac21b0000 77824 C:\Windows\System32\srumapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation System Resource Usage Monitor API 131795770645380149 0x7ffac3cb0000 2772992 C:\Windows\SYSTEM32\iertutil.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служебная программа времени выполнения для Internet Explorer 131795770645380149 0x7ffac4000000 274432 C:\Windows\SYSTEM32\policymanager.dll 10.0.14393.2035 (rs1_release_inmarket.180110-1910) Microsoft Corporation Policy Manager DLL 131795770645380149 0x7ffac42a0000 659456 C:\Windows\System32\StateRepository.Core.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation StateRepository Core 131795770645380149 0x7ffac46d0000 4161536 C:\Windows\System32\Windows.StateRepository.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Сервер Windows StateRepository API Server 131795770645380149 0x7ffac4e70000 102400 C:\Windows\System32\samcli.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Security Accounts Manager Client DLL 131795770645380149 0x7ffac4ea0000 36864 C:\Windows\SYSTEM32\atlthunk.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation atlthunk.dll 131795770645380149 0x7ffac5350000 1765376 C:\Windows\System32\Windows.UI.Immersive.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation WINDOWS.UI.IMMERSIVE 131795770645380149 0x7ffac5630000 339968 C:\Windows\System32\thumbcache.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Кэш эскизов Майкрософт 131795770645380149 0x7ffac60e0000 221184 C:\Windows\System32\XmlLite.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft XmlLite Library 131795770645380149 0x7ffac6ac0000 835584 C:\Windows\System32\Windows.UI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Runtime UI Foundation DLL 131795770645380149 0x7ffac6bd0000 413696 C:\Windows\System32\OLEACC.dll 7.2.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Active Accessibility Core Component 131795770645380149 0x7ffac6c40000 2596864 C:\Windows\WinSxS\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.14393.953_none_42151e83c686086b\COMCTL32.dll 6.10 (rs1_release_inmarket.170303-1614) Microsoft Corporation Библиотека элементов управления взаимодействия с пользователем 131795770645380149 0x7ffac7580000 1077248 C:\Windows\SYSTEM32\MrmCoreR.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Windows MRM 131795770645380149 0x7ffac83d0000 106496 C:\Windows\SYSTEM32\dhcpcsvc.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служба DHCP-клиента 131795770645380149 0x7ffac83f0000 90112 C:\Windows\SYSTEM32\dhcpcsvc6.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиент DHCPv6 131795770645380149 0x7ffac8810000 45056 C:\Windows\SYSTEM32\WINNSI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Network Store Information RPC interface 131795770645380149 0x7ffac8dc0000 167936 C:\Windows\System32\dbgcore.DLL 10.0.14321.1024 (debuggers(dbg).160715-1616) Microsoft Windows Core Debugging Helpers 131795770645380149 0x7ffac8df0000 1646592 C:\Windows\System32\dbghelp.dll 10.0.14321.1024 (rs1_release.160715-1616) Microsoft Windows Image Helper 131795770645380149 0x7ffac90b0000 90112 C:\Windows\System32\wkscli.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Workstation Service Client DLL 131795770645380149 0x7ffac92e0000 1269760 C:\Windows\SYSTEM32\wintypes.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL основных типов Windows 131795770645380149 0x7ffac9f50000 1736704 C:\Windows\System32\WindowsCodecs.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Microsoft Windows Codecs Library 131795770645380149 0x7ffaca340000 1593344 C:\Windows\system32\propsys.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Система страниц свойств (Майкрософт) 131795770645380149 0x7ffaca4e0000 77824 C:\Windows\System32\WTSAPI32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Remote Desktop Session Host Server SDK APIs 131795770645380149 0x7ffaca570000 421888 C:\Windows\System32\Bcp47Langs.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation BCP47 Language Classes 131795770645380149 0x7ffaca5e0000 155648 C:\Windows\System32\dwmapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Интерфейс API диспетчера окон рабочего стола (Майкрософт) 131795770645380149 0x7ffaca610000 143360 C:\Windows\System32\SAMLIB.dll 10.0.14393.82 (rs1_release.160805-1735) Microsoft Corporation SAM Library DLL 131795770645380149 0x7ffacac60000 69632 C:\Windows\System32\credui.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Credential Manager User Interface 131795770645380149 0x7ffacadf0000 499712 C:\Windows\System32\apphelp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиентская библиотека совместимости приложений 131795770645380149 0x7ffacaf00000 610304 C:\Windows\System32\UxTheme.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека тем UxTheme (Microsoft) 131795770645380149 0x7ffacb140000 593920 C:\Windows\SYSTEM32\msvcp110_win.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Microsoft® STL110 C++ Runtime Library 131795770645380149 0x7ffacb1e0000 1163264 C:\Windows\System32\twinapi.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation twinapi.appcore 131795770645380149 0x7ffacb300000 364544 C:\Windows\SYSTEM32\VEEventDispatcher.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Visual Element Event dispatcher 131795770645380149 0x7ffacbd30000 229376 C:\Windows\System32\IPHLPAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API вспомогательного приложения IP 131795770645380149 0x7ffacbe20000 53248 C:\Windows\System32\netutils.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API Helpers DLL 131795770645380149 0x7ffacbe40000 126976 C:\Windows\System32\USERENV.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Userenv 131795770645380149 0x7ffacc5c0000 352256 C:\Windows\System32\WINSTA.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Winstation Library 131795770645380149 0x7ffacc620000 176128 C:\Windows\System32\bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795770645380149 0x7ffacc6e0000 61440 C:\Windows\System32\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795770645380149 0x7ffacc6f0000 311296 C:\Windows\System32\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795770645380149 0x7ffacc740000 81920 C:\Windows\System32\profapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Profile Basic API 131795770645380149 0x7ffacc8f0000 1003520 C:\Windows\System32\ucrtbase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645380149 0x7ffacc9f0000 434176 C:\Windows\System32\bcryptPrimitives.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Cryptographic Primitives Library 131795770645380149 0x7ffacca60000 122880 C:\Windows\System32\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795770645380149 0x7ffaccae0000 692224 C:\Windows\System32\shcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795770645380149 0x7ffaccb90000 7180288 C:\Windows\System32\windows.storage.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API хранения Microsoft WinRT 131795770645380149 0x7ffacd270000 2215936 C:\Windows\System32\KERNELBASE.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645380149 0x7ffacd710000 638976 C:\Windows\System32\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645380149 0x7ffacd7b0000 270336 C:\Windows\System32\cfgmgr32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Configuration Manager DLL 131795770645380149 0x7ffacd810000 22056960 C:\Windows\System32\SHELL32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Общая библиотека оболочки Windows 131795770645380149 0x7ffaced20000 782336 C:\Windows\System32\OLEAUT32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795770645380149 0x7ffacee50000 1183744 C:\Windows\System32\RPCRT4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795770645380149 0x7ffacef80000 32768 C:\Windows\System32\NSI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation NSI User-mode interface DLL 131795770645380149 0x7ffacef90000 647168 C:\Windows\System32\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795770645380149 0x7ffacf030000 651264 C:\Windows\System32\clbcatq.dll 2001.12.10941.16384 (rs1_release.160715-1616) Microsoft Corporation COM+ Configuration Catalog 131795770645380149 0x7ffacf0d0000 704512 C:\Windows\System32\KERNEL32.DLL 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645380149 0x7ffacf1e0000 1417216 C:\Windows\System32\MSCTF.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Серверная библиотека MSCTF 131795770645380149 0x7ffacf770000 212992 C:\Windows\System32\GDI32.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation GDI Client DLL 131795770645380149 0x7ffacf820000 434176 C:\Windows\System32\WS2_32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation 32-разрядная библиотека Windows Socket 2.0 131795770645380149 0x7ffacf890000 188416 C:\Windows\System32\IMM32.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Multi-User Windows IMM32 API Client DLL 131795770645380149 0x7ffacf8c0000 1462272 C:\Windows\System32\USER32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795770645380149 0x7ffacfb30000 2916352 C:\Windows\System32\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795770645380149 0x7ffacfe20000 663552 C:\Windows\System32\advapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795770645380149 0x7ffad0070000 1277952 C:\Windows\System32\ole32.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft OLE для Windows 131795770645380149 0x7ffad01b0000 335872 C:\Windows\System32\SHLWAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека небольших программ оболочки 131795770645380149 0x7ffad0210000 364544 C:\Windows\System32\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795770645380149 0x7ffad0270000 1908736 C:\Windows\SYSTEM32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 49 6724 580 4 00000000:000003e7 131765803507001117 0 0 0 Обязательная метка\Обязательный уровень системы NT AUTHORITY\СИСТЕМА QHActiveDefense.exe C:\Program Files (x86)\360\Total Security\safemon\QHActiveDefense.exe "C:\Program Files (x86)\360\Total Security\safemon\QHActiveDefense.exe" Qihoo 360 Technology Co. Ltd. 10,0,0,1008 360 Total Security 131795778431738530 0x10000 413696 C:\ProgramData\Package Cache\{b8e12890-118d-4721-8e54-05d978086712}\VC_redist.x64.exe 14.0.24516.0 Microsoft Corporation Microsoft Visual C++ 2015 Redistributable (x64) - 14.0.24516 131795770645381706 0xd0000 983040 C:\Program Files (x86)\360\Total Security\safemon\QHActiveDefense.exe 10,0,0,1008 Qihoo 360 Technology Co. Ltd. 360 Total Security 131795778469924367 0x400000 278528 C:\Program Files\Wireshark\WinPcap_4_1_3.exe 4.1.0.2980 Riverbed Technology, Inc. WinPcap 4.1.3 installer 131795778203065490 0x840000 413696 C:\Program Files\Wireshark\vcredist_x64.exe 14.12.25810.0 Microsoft Corporation Microsoft Visual C++ 2017 Redistributable (x64) - 14.12.25810 131795780232774368 0x34c0000 126976 C:\Windows\System32\Packet.dll 4.1.0.2980 Riverbed Technology, Inc. packet.dll (Vista) Dynamic Link Library 131795770645381706 0x3c80000 12288 C:\Windows\SysWOW64\sfc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows File Protection 131795780944214585 0x40a0000 438272 C:\Program Files\Wireshark\dumpcap.exe 2.6.2 The Wireshark developer community Dumpcap 131795780231568066 0x4630000 204800 C:\Windows\SysWOW64\net1.exe 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Command 131795778389953959 0xa8e0000 696320 C:\Windows\System32\msvcp140.dll 14.12.25810.0 built by: VCTOOLSREL Microsoft Corporation Microsoft® C Runtime Library 131795778421734438 0xe830000 6127616 C:\Windows\System32\mfc140.dll 14.12.25810.0 built by: VCTOOLSREL Microsoft Corporation MFCDLL Shared Library - Retail Version 131795780691287613 0xf730000 8298496 C:\Program Files\Wireshark\Wireshark.exe 2.6.2 The Wireshark developer community, http://www.wireshark.org/ Wireshark 131795780222197886 0x10000000 98304 C:\Windows\SysWOW64\Packet.dll 4.1.0.2980 Riverbed Technology, Inc. packet.dll (Vista) Dynamic Link Library 131795770645381706 0x5c020000 335872 C:\Windows\System32\wow64.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation Win32 Emulation on NT64 131795770645381706 0x5c080000 487424 C:\Windows\System32\wow64win.dll 10.0.14393.1884 (rs1_release.171101-1233) Microsoft Corporation Wow64 Console and Win32 API Logging 131795770645381706 0x5c100000 40960 C:\Windows\System32\wow64cpu.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation AMD64 Wow64 CPU 131795770645381706 0x5fb90000 2736128 C:\Program Files (x86)\360\Total Security\deepscan\deepscan.dll 3, 5, 1, 2130 Qihu 360 Software Co., Ltd. 360 Total Security Cloud Security 131795770645381706 0x5fec0000 794624 C:\Windows\SysWOW64\wbem\fastprox.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation WMI Custom Marshaller 131795770645381706 0x5ffa0000 421888 C:\Windows\SysWOW64\wbemcomn.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation WMI 131795770645381706 0x60010000 53248 C:\Windows\SysWOW64\wbem\wbemprox.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation WMI 131795770645381706 0x60190000 475136 C:\Program Files (x86)\360\Total Security\safemon\360SafeCamera.tpi 2, 0, 0, 1031 QIHU 360 SOFTWARE CO. LIMITED 360 Total Security Proactive Defense 131795770645381706 0x60210000 1269760 C:\Program Files (x86)\360\Total Security\deepscan\jcloudscan.dll 1, 0, 0, 1012 360.cn 360安全卫士 移动云查询模块 131795770645381706 0x604a0000 196608 C:\Program Files (x86)\360\Total Security\ipc\appdext.dll 1, 0, 0, 1483 360.cn 360安全卫士 木马防火墙模块 131795770645381706 0x604e0000 188416 C:\Program Files (x86)\360\Total Security\ipc\DrvUtility.dll 1, 0, 0, 1081 Qihu 360 Software Co., Ltd. 360 Internet Security 2013 Proactive Defense 131795770645381706 0x60510000 409600 C:\Program Files (x86)\360\Total Security\SafeScan.dll 1, 0, 0, 1074 Qihoo 360 Technology Co. Ltd. 360 Scan Util Module 131795770645381706 0x60580000 204800 C:\Program Files (x86)\360\Total Security\ScanStub.dll 1, 0, 0, 1014 Qihoo 360 Technology Co. Ltd. 360 Scan Util Module 131795770645381706 0x605c0000 249856 C:\Program Files (x86)\360\Total Security\netmon\360gameidentify.dll 1, 0, 1, 1050 360.cn 360流量防火墙 游戏识别模块 131795770645381706 0x60600000 200704 C:\Program Files (x86)\360\Total Security\safemon\WDRecord.dll 1, 0, 1, 1130 Qihu 360 Software Co., Ltd. 360 Internet Security Internet Protection 131795770645381706 0x60640000 430080 C:\Program Files (x86)\360\Total Security\netmon\Netgm.dll 9,0,0,1005 360.cn 360流量防火墙 游戏模式判断模块 131795770645381706 0x608d0000 159744 C:\Program Files (x86)\360\Total Security\safemon\safemonhlp.dll 1, 0, 0, 1265 Qihu 360 Software Co., Ltd. 360 Internet Security Internet Protection 131795770645381706 0x60a50000 479232 C:\Program Files (x86)\360\Total Security\deepscan\DsSysRepair.dll 1, 0, 0, 1062 QIHU360 SOFTWARE CO. LIMITED 360 Total Security System Repair Module 131795770645381706 0x60ad0000 352256 C:\Program Files (x86)\360\Total Security\360Common.dll 7, 3, 0, 3233 360.cn 360安全衛士 基礎模塊 131795770645381706 0x60b30000 1712128 C:\Program Files (x86)\360\Total Security\safemon\360safemonpro.tpi 3, 1, 1, 3140 Qihu 360 Software Co., Ltd. 360 Internet Security Internet Protection 131795770645381706 0x60ce0000 581632 C:\Program Files (x86)\360\Total Security\dynlenv.dll 1, 1, 0, 1016 360.cn dynlenv Dynamic Link Library 131795770645381706 0x61000000 184320 C:\Program Files (x86)\360\Total Security\ipc\qutmipc.dll 7, 3, 0, 1267 360.cn 360安全卫士 木马防火墙模块 131795770645381706 0x61030000 262144 C:\Program Files (x86)\360\Total Security\safemon\safehmpg.dll 3, 0, 0, 1160 Qihu 360 Software Co., Ltd. 360 Internet Security Browser HomePage Protection 131795770645381706 0x610d0000 1097728 C:\Program Files (x86)\360\Total Security\SoftMgr\SomAdvUtils.dll 3, 1, 1, 2020 360.cn 360 Safeguard PC Boost 131795770645381706 0x61380000 315392 C:\Program Files (x86)\360\Total Security\safemon\360bsmon.tpi 6, 8, 0, 1248 Qihu 360 Software Co., Ltd. 360 Total Security Active Protection 131795770645381706 0x61480000 2191360 C:\Program Files (x86)\360\Total Security\deepscan\qex\qex.dll 4.1.13.3366 Qihu 360 Software Co., Ltd. 360 Internet Security 2017 Antivirus 131795770645381706 0x616a0000 331776 C:\Program Files (x86)\360\Total Security\safemon\SelfProtectAPI2.dll 7, 1, 1, 1033 Qihu 360 Software Co., Ltd. 360 Total Security Proactive Defense 131795770645381706 0x61700000 483328 C:\Program Files (x86)\360\Total Security\safemon\360procmon.dll 7, 1, 1, 1221 Qihu 360 Software Co., Ltd. 360 Total Security Proactive Defense 131795770645381706 0x61780000 335872 C:\Program Files (x86)\360\Total Security\ipc\netdefender.dll 1, 0, 0, 1129 Qihu 360 Software Co., Ltd. 360 Internet Security Internet Protection 131795770645381706 0x617e0000 897024 C:\Program Files (x86)\360\Total Security\ipc\appd.dll 7, 3, 6, 3113 Qihu 360 Software Co., Ltd. 360 Total Security Proactive Defense 131795770645381706 0x61a30000 512000 C:\Program Files (x86)\360\Total Security\safemon\360HipsPopWnd.dll 7,3,2,1211 Qihoo 360 Technology Co. Ltd. 360 Internet Security Proactive Defense 131795770645381706 0x61ab0000 495616 C:\Program Files (x86)\360\Total Security\ipc\fileMgr.dll 7, 3, 0, 1963 Qihu 360 Software Co., Ltd. 360 Total Security Proactive Defense 131795770645381706 0x61b30000 3350528 C:\Program Files (x86)\360\Total Security\SoftMgr\somkernl.dll 2, 1, 0, 1130 360.cn 360软件管家 131795770645381706 0x61e70000 614400 C:\Program Files (x86)\360\Total Security\ipc\ipcservice.dll 7, 1, 2, 1643 Qihu 360 Software Co., Ltd. 360 Total Security Proactive Defense 131795770645381706 0x61f10000 1458176 C:\Program Files (x86)\360\Total Security\deepscan\cloudcom2.dll 3, 3, 10, 1288 Qihu 360 Software Co., Ltd. 360 Total Security 131795770645381706 0x621a0000 458752 C:\Program Files (x86)\360\Total Security\ipc\yhregd.dll 7, 2, 0, 1903 Qihu 360 Software Co., Ltd. 360 Total Security Proactive Defense 131795770645381706 0x62280000 454656 C:\Program Files (x86)\360\Total Security\SoftMgr\360SoftMgrS.dll 2, 1, 6, 1490 360.cn 360软件管家 服务模块 131795770645381706 0x622f0000 520192 C:\Program Files (x86)\360\Total Security\deepscan\heavygate.dll 3, 8, 11, 1 Qihu 360 Software Co., Ltd. 360 Total Security Cloud Security 131795770645381706 0x62370000 602112 C:\Program Files (x86)\360\Total Security\360util.dll 1.0.0.1485 360.cn 360安全卫士 公共模块 131795770645381706 0x62410000 352256 C:\Program Files (x86)\360\Total Security\CrashReport.dll 7, 0, 0, 1000 360.cn 360杀毒 异常捕获程序 131795770645381706 0x62470000 405504 C:\Program Files (x86)\360\Total Security\deepscan\qutmload.dll 7, 2, 1, 1279 360.cn 360安全卫士 木马防火墙模块 131795770645381706 0x624e0000 315392 C:\Program Files (x86)\360\Total Security\ipc\360box.dll 2, 0, 0, 1043 360.cn 360隔离沙箱模块 131795770645381706 0x62540000 278528 C:\Program Files (x86)\360\Total Security\360conf.dll 1, 0, 0, 1014 Qihu 360 Software Co., Ltd. 360 Internet Security Base Module 131795770645381706 0x62590000 987136 C:\Program Files (x86)\360\Total Security\360base.dll 1, 0, 0, 1165 360.cn 360安全卫士 基础模块 131795770645381706 0x62690000 266240 C:\Program Files (x86)\360\Total Security\deepscan\BAPI.dll 2.0.0.1191 360.cn BAPI 131795770645381706 0x627d0000 249856 C:\Windows\SysWOW64\edputil.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служебная программа EDP 131795770645381706 0x62980000 376832 C:\Program Files (x86)\360\Total Security\360NetBase.dll 7, 25, 0, 76 360.cn 360安全卫士 网络基础模块 131795770645381706 0x62b50000 106496 C:\Program Files (x86)\360\Total Security\i18n\ru\deepscan\DsRes.dll 1,0,0,1012 Qihu 360 Software Co., Ltd. 360 Total Security Cloud Security Resource 131795770645381706 0x62b70000 208896 C:\Program Files (x86)\360\Total Security\safemon\gamemode.tpi 9,0,0,1001 QIHU 360 SOFTWARE CO. LIMITED 360 Total Security Game Mode Control 131795770645381706 0x67130000 86016 C:\Windows\SysWOW64\devenum.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Перечисление устройств. 131795770645381706 0x67690000 61440 C:\Windows\SysWOW64\sfc_os.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows File Protection 131795770645381706 0x676a0000 61440 C:\Program Files (x86)\360\Total Security\ipc\x64for32lib.dll 6, 8, 0, 1059 360.cn 360安全卫士 木马防火墙模块 131795770645381706 0x676b0000 32768 C:\Windows\SysWOW64\fltlib.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека фильтров 131795770645381706 0x6b6c0000 36864 C:\Windows\SysWOW64\msdmo.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DMO Runtime 131795770645381706 0x6b6d0000 102400 C:\Program Files (x86)\360\Total Security\i18n.dll 1, 0, 0, 1016 Qihu 360 Software Co., Ltd. 360 Total Security 131795770645381706 0x6bf00000 3715072 C:\Windows\SysWOW64\msi.dll 5.0.14393.2155 Microsoft Corporation Windows Installer 131795770645381706 0x6cd50000 106496 C:\Windows\SysWOW64\SAMLIB.dll 10.0.14393.82 (rs1_release.160805-1735) Microsoft Corporation SAM Library DLL 131795770645381706 0x6cf60000 569344 C:\Windows\SysWOW64\taskschd.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Task Scheduler COM API 131795770645381706 0x6d080000 151552 C:\Windows\SysWOW64\cryptnet.dll 10.0.14393.2035 (rs1_release_inmarket.180110-1910) Microsoft Corporation Crypto Network Related API 131795770645381706 0x6ea80000 860160 C:\Program Files (x86)\360\Total Security\deepscan\QVM\360QVM.dll 5.0.2.1003 Qihu 360 Software Co., Ltd. 360 Internet Security QVM Engine 131795770645381706 0x6fcd0000 151552 C:\Windows\SysWOW64\dbgcore.DLL 10.0.14321.1024 (debuggers(dbg).160715-1616) Microsoft Windows Core Debugging Helpers 131795770645381706 0x6fd30000 139264 C:\Windows\SysWOW64\DEVOBJ.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Device Information Set DLL 131795770645381706 0x700d0000 434176 C:\Windows\SysWOW64\WINSPOOL.DRV 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Драйвер диспетчера очереди Windows 131795770645381706 0x70140000 274432 C:\Windows\SysWOW64\WINSTA.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Winstation Library 131795770645381706 0x70210000 966656 C:\Program Files (x86)\360\Total Security\deepscan\ave\AVEngine.dll 1, 0, 0, 2016 Qihu 360 Software Co., Ltd. 360 Internet Security 2013 AntiVirus Engine 131795770645381706 0x70300000 208896 C:\Program Files (x86)\360\Total Security\deepscan\ave\AVEI.dll 1, 0, 0, 2003 Qihu 360 Software Co., Ltd. 360 Internet Security 2013 AntiVirus Engine 131795770645381706 0x707d0000 86016 C:\Windows\SysWOW64\SAMCLI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Security Accounts Manager Client DLL 131795770645381706 0x70a40000 81920 C:\Windows\SysWOW64\NLAapi.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Network Location Awareness 2 131795770645381706 0x70a60000 90112 C:\Windows\SysWOW64\pnrpnsp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик пространства имен PNRP 131795770645381706 0x70b70000 163840 C:\Windows\SysWOW64\ntmarta.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик Windows NT MARTA 131795770645381706 0x70c00000 49152 C:\Windows\SysWOW64\winrnr.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation LDAP RnR Provider DLL 131795770645381706 0x70c10000 73728 C:\Windows\SysWOW64\napinsp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик оболочки совместимости для имен электронной почты 131795770645381706 0x70c30000 114688 C:\Windows\SysWOW64\srvcli.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Server Service Client DLL 131795770645381706 0x70ca0000 45056 C:\Windows\SysWOW64\NETUTILS.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API Helpers DLL 131795770645381706 0x70cb0000 65536 C:\Windows\SysWOW64\wkscli.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Workstation Service Client DLL 131795770645381706 0x70fd0000 1331200 C:\Windows\SysWOW64\dbghelp.dll 10.0.14321.1024 (rs1_release.160715-1616) Microsoft Windows Image Helper 131795770645381706 0x71140000 77824 C:\Windows\SysWOW64\NETAPI32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API DLL 131795770645381706 0x71610000 77824 C:\Windows\SysWOW64\dhcpcsvc6.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиент DHCPv6 131795770645381706 0x725e0000 2273280 C:\Windows\SysWOW64\iertutil.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служебная программа времени выполнения для Internet Explorer 131795770645381706 0x728e0000 1372160 C:\Windows\SysWOW64\propsys.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Система страниц свойств (Майкрософт) 131795770645381706 0x72a30000 188416 C:\Windows\SysWOW64\XmlLite.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft XmlLite Library 131795770645381706 0x72cc0000 1658880 C:\Windows\SysWOW64\urlmon.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширения OLE32 для Win32 131795770645381706 0x73a40000 32768 C:\Windows\SysWOW64\WINNSI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Network Store Information RPC interface 131795770645381706 0x73a50000 299008 C:\Windows\SysWOW64\fwpuclnt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API пользовательского режима FWP/IPsec 131795770645381706 0x73ab0000 32768 C:\Windows\SysWOW64\rasadhlp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Remote Access AutoDial Helper 131795770645381706 0x73ac0000 81920 C:\Windows\SysWOW64\dhcpcsvc.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служба DHCP-клиента 131795770645381706 0x73ae0000 40960 C:\Windows\SysWOW64\secur32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Security Support Provider Interface 131795770645381706 0x73c50000 1478656 C:\Windows\WinSxS\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.14393.1715_none_f67438d2f2547a00\gdiplus.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Microsoft GDI+ 131795770645381706 0x73ee0000 61440 C:\Windows\SysWOW64\WTSAPI32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Remote Desktop Session Host Server SDK APIs 131795770645381706 0x73ef0000 24576 C:\Windows\SysWOW64\MSIMG32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation GDIEXT Client DLL 131795770645381706 0x73f00000 192512 C:\Windows\SysWOW64\IPHLPAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API вспомогательного приложения IP 131795770645381706 0x73f30000 512000 C:\Windows\SysWOW64\dnsapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Динамическая библиотека API DNS-клиента 131795770645381706 0x73ff0000 319488 C:\Windows\SysWOW64\mswsock.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширение поставщика службы API Microsoft Windows Sockets 2.0 131795770645381706 0x74040000 126976 C:\Windows\SysWOW64\gpapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиентские функции API групповой политики 131795770645381706 0x74060000 192512 C:\Windows\SysWOW64\rsaenh.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Enhanced Cryptographic Provider 131795770645381706 0x74190000 110592 C:\Windows\SysWOW64\bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795770645381706 0x741b0000 77824 C:\Windows\SysWOW64\CRYPTSP.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Cryptographic Service Provider API 131795770645381706 0x741f0000 143360 C:\Windows\SysWOW64\WINMMBASE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base Multimedia Extension API DLL 131795770645381706 0x74230000 147456 C:\Windows\SysWOW64\WINMM.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation MCI API DLL 131795770645381706 0x74260000 2514944 C:\Windows\SysWOW64\WININET.dll 11.00.14393.447 (rs1_release_inmarket.161102-0100) Microsoft Corporation Расширения Интернета для Win32 131795770645381706 0x746e0000 32768 C:\Windows\SysWOW64\VERSION.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Version Checking and File Installation Libraries 131795770645381706 0x746f0000 106496 C:\Windows\SysWOW64\USERENV.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Userenv 131795770645381706 0x74710000 90112 C:\Windows\SysWOW64\MPR.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека маршрутизации для нескольких служб доступа 131795770645381706 0x74730000 598016 C:\Windows\SysWOW64\apphelp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиентская библиотека совместимости приложений 131795770645381706 0x747d0000 40960 C:\Windows\SysWOW64\CRYPTBASE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base cryptographic API DLL 131795770645381706 0x747e0000 126976 C:\Windows\SysWOW64\SspiCli.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Security Support Provider Interface 131795770645381706 0x74910000 2170880 C:\Windows\SysWOW64\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795770645381706 0x74b30000 53248 C:\Windows\SysWOW64\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795770645381706 0x74b40000 102400 C:\Windows\SysWOW64\imagehlp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT Image Helper 131795770645381706 0x74b60000 790528 C:\Windows\SysWOW64\RPCRT4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795770645381706 0x74c30000 1417216 C:\Windows\SysWOW64\gdi32full.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation GDI Client DLL 131795770645381706 0x74d90000 24576 C:\Windows\SysWOW64\PSAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Process Status Helper 131795770645381706 0x74da0000 778240 C:\Windows\SysWOW64\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795770645381706 0x74e60000 557056 C:\Windows\SysWOW64\shcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795770645381706 0x74ef0000 540672 C:\Windows\SysWOW64\clbcatq.dll 2001.12.10941.16384 (rs1_release.160715-1616) Microsoft Corporation COM+ Configuration Catalog 131795770645381706 0x74f80000 278528 C:\Windows\SysWOW64\WINTRUST.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation Microsoft Trust Verification APIs 131795770645381706 0x74fd0000 405504 C:\Windows\SysWOW64\WS2_32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation 32-разрядная библиотека Windows Socket 2.0 131795770645381706 0x75040000 282624 C:\Windows\SysWOW64\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795770645381706 0x751d0000 57344 C:\Windows\SysWOW64\MSASN1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ASN.1 Runtime APIs 131795770645381706 0x751e0000 1708032 C:\Windows\SysWOW64\KERNELBASE.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645381706 0x75390000 266240 C:\Windows\SysWOW64\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795770645381706 0x753e0000 1560576 C:\Windows\SysWOW64\CRYPT32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API32 криптографии 131795770645381706 0x75560000 487424 C:\Windows\SysWOW64\ADVAPI32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795770645381706 0x756c0000 5693440 C:\Windows\SysWOW64\windows.storage.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API хранения Microsoft WinRT 131795770645381706 0x75c30000 372736 C:\Windows\SysWOW64\coml2.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft COM for Windows 131795770645381706 0x75c90000 286720 C:\Windows\SysWOW64\shlwapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека небольших программ оболочки 131795770645381706 0x75ce0000 20811776 C:\Windows\SysWOW64\SHELL32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Общая библиотека оболочки Windows 131795770645381706 0x770c0000 4239360 C:\Windows\SysWOW64\SETUPAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Setup API 131795770645381706 0x774d0000 86016 C:\Windows\SysWOW64\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795770645381706 0x774f0000 61440 C:\Windows\SysWOW64\profapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Profile Basic API 131795770645381706 0x77560000 1437696 C:\Windows\SysWOW64\USER32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795770645381706 0x776c0000 368640 C:\Windows\SysWOW64\bcryptPrimitives.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation Windows Cryptographic Primitives Library 131795770645381706 0x77780000 503808 C:\Windows\SysWOW64\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645381706 0x77800000 606208 C:\Windows\SysWOW64\OLEAUT32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795770645381706 0x77ac0000 966656 C:\Windows\SysWOW64\ole32.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft OLE для Windows 131795770645381706 0x77bb0000 176128 C:\Windows\SysWOW64\GDI32.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation GDI Client DLL 131795770645381706 0x77cd0000 221184 C:\Windows\SysWOW64\cfgmgr32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Configuration Manager DLL 131795770645381706 0x77d10000 28672 C:\Windows\SysWOW64\NSI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation NSI User-mode interface DLL 131795770645381706 0x77d20000 1585152 C:\Windows\SysWOW64\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 131795770645381706 0x7ffad0270000 1908736 C:\Windows\SYSTEM32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 50 6340 6724 49 00000000:0031f1ab 131765803510844292 0 0 0 Обязательная метка\Высокий обязательный уровень WIN-0UOTFKKVN1S\User QHSafeTray.exe C:\Program Files (x86)\360\Total Security\safemon\QHSafeTray.exe /showtrayicon Qihoo 360 Technology Co. Ltd. 10,0,0,1024 360 Total Security 131795770645381850 0xec0000 2351104 C:\Program Files (x86)\360\Total Security\safemon\QHSafeTray.exe 10,0,0,1024 Qihoo 360 Technology Co. Ltd. 360 Total Security 131795770645381850 0x68f0000 12288 C:\Windows\SysWOW64\sfc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows File Protection 131795770645381850 0x5c020000 335872 C:\Windows\System32\wow64.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation Win32 Emulation on NT64 131795770645381850 0x5c080000 487424 C:\Windows\System32\wow64win.dll 10.0.14393.1884 (rs1_release.171101-1233) Microsoft Corporation Wow64 Console and Win32 API Logging 131795770645381850 0x5c100000 40960 C:\Windows\System32\wow64cpu.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation AMD64 Wow64 CPU 131795770645381850 0x5c480000 245760 C:\Program Files (x86)\360\Total Security\PDown.dll 1, 3, 0, 1420 Qihu 360 Software Co., Ltd. 360 Security Center Network Module 131795770645381850 0x5fe30000 581632 C:\Program Files (x86)\360\Total Security\safemon\wdui2.dll 9,6,0,1001 131795770645381850 0x60020000 413696 C:\Program Files (x86)\360\Total Security\netmon\360netctrl.dll 5, 3, 15, 2232 360.cn 360 Total Security NetwokrMonCtrl 131795770645381850 0x60090000 335872 C:\Program Files (x86)\360\Total Security\safemon\netmon.tpi 5, 1, 1, 3157 Qihoo 360 Technology Co. Ltd. 360安全卫士 流量防火墙模块 131795770645381850 0x60350000 1331200 C:\Program Files (x86)\360\Total Security\ToolBox.dll 1, 0, 0, 1094 Qihoo 360 Technology Co. Ltd. 360 Total Security 131795770645381850 0x60600000 200704 C:\Program Files (x86)\360\Total Security\safemon\WDRecord.dll 1, 0, 1, 1130 Qihu 360 Software Co., Ltd. 360 Internet Security Internet Protection 131795770645381850 0x606b0000 598016 C:\Program Files (x86)\360\Total Security\safemon\spsafe.dll 1, 0, 0, 1120 Qihu 360 Software Co., Ltd. 360 Internet Security Internet Protection 131795770645381850 0x60750000 1556480 C:\Program Files (x86)\360\Total Security\safemon\safemon.dll 8, 4, 0, 1420 Qihu 360 Software Co., Ltd. 360 Internet Security Internet Protection 131795770645381850 0x608d0000 159744 C:\Program Files (x86)\360\Total Security\safemon\safemonhlp.dll 1, 0, 0, 1265 Qihu 360 Software Co., Ltd. 360 Internet Security Internet Protection 131795770645381850 0x609b0000 241664 C:\Program Files (x86)\360\Total Security\safemon\360GuardBase.dll 3, 1, 0, 1060 360.cn 360保镖 131795770645381850 0x60ad0000 352256 C:\Program Files (x86)\360\Total Security\360Common.dll 7, 3, 0, 3233 360.cn 360安全衛士 基礎模塊 131795770645381850 0x60b30000 1712128 C:\Program Files (x86)\360\Total Security\safemon\360safemonpro.tpi 3, 1, 1, 3140 Qihu 360 Software Co., Ltd. 360 Internet Security Internet Protection 131795770645381850 0x60ce0000 581632 C:\Program Files (x86)\360\Total Security\dynlenv.dll 1, 1, 0, 1016 360.cn dynlenv Dynamic Link Library 131795770645381850 0x61070000 393216 C:\Program Files (x86)\360\Total Security\safemon\SomProxy.dll 1, 0, 0, 1900 Qihu 360 Software Co., Ltd. 360 Internet Security Internet Protection 131795770645381850 0x611e0000 1662976 C:\Program Files (x86)\360\Total Security\safemon\360connect.tpi 9,2,0,1030 QIHU 360 SOFTWARE CO. LIMITED 360 Connect 131795770645381850 0x61380000 315392 C:\Program Files (x86)\360\Total Security\safemon\360bsmon.tpi 6, 8, 0, 1248 Qihu 360 Software Co., Ltd. 360 Total Security Active Protection 131795770645381850 0x613d0000 667648 C:\Windows\WinSxS\x86_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.9247_none_5090cb78bcba4a35\MSVCR90.dll 9.00.30729.9247 Microsoft Corporation Microsoft® C Runtime Library 131795770645381850 0x618c0000 1478656 C:\Program Files (x86)\360\Total Security\sites.dll 11, 1, 0, 1212 360.cn 360安全卫士 131795770645381850 0x61a30000 512000 C:\Program Files (x86)\360\Total Security\safemon\360hipsPopWnd.dll 7,3,2,1211 Qihoo 360 Technology Co. Ltd. 360 Internet Security Proactive Defense 131795770645381850 0x61b30000 3350528 C:\Program Files (x86)\360\Total Security\softmgr\somkernl.dll 2, 1, 0, 1130 360.cn 360软件管家 131795770645381850 0x61e70000 614400 C:\Program Files (x86)\360\Total Security\ipc\ipcservice.dll 7, 1, 2, 1643 Qihu 360 Software Co., Ltd. 360 Total Security Proactive Defense 131795770645381850 0x61f10000 1458176 C:\Program Files (x86)\360\Total Security\deepscan\Cloudcom2.dll 3, 3, 10, 1288 Qihu 360 Software Co., Ltd. 360 Total Security 131795770645381850 0x62210000 446464 C:\Program Files (x86)\360\Total Security\360TSCommon.dll 9, 0, 0, 1016 QIHU 360 SOFTWARE CO. LIMITED 360 Total Security 131795770645381850 0x622f0000 520192 C:\Program Files (x86)\360\Total Security\deepscan\heavygate.dll 3, 8, 11, 1 Qihu 360 Software Co., Ltd. 360 Total Security Cloud Security 131795770645381850 0x62370000 602112 C:\Program Files (x86)\360\Total Security\360util.dll 1.0.0.1485 360.cn 360安全卫士 公共模块 131795770645381850 0x62410000 352256 C:\Program Files (x86)\360\Total Security\CrashReport.dll 7, 0, 0, 1000 360.cn 360杀毒 异常捕获程序 131795770645381850 0x62540000 278528 C:\Program Files (x86)\360\Total Security\360conf.dll 1, 0, 0, 1014 Qihu 360 Software Co., Ltd. 360 Internet Security Base Module 131795770645381850 0x62590000 987136 C:\Program Files (x86)\360\Total Security\360base.dll 1, 0, 0, 1165 360.cn 360安全卫士 基础模块 131795770645381850 0x62690000 266240 C:\Program Files (x86)\360\Total Security\deepscan\BAPI.dll 2.0.0.1191 360.cn BAPI 131795770645381850 0x627d0000 249856 C:\Windows\SysWOW64\edputil.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служебная программа EDP 131795770645381850 0x62960000 77824 C:\Program Files (x86)\360\Total Security\safemon\CleanPlusCache.tpi 1, 0, 0, 1004 QIHU 360 SOFTWARE CO. LIMITED CleanPlusCache 131795770645381850 0x62980000 376832 C:\Program Files (x86)\360\Total Security\360NetBase.dll 7, 25, 0, 76 360.cn 360安全卫士 网络基础模块 131795770645381850 0x67500000 1597440 C:\Windows\SysWOW64\ActXPrxy.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation ActiveX Interface Marshaling Library 131795770645381850 0x67690000 61440 C:\Windows\SysWOW64\sfc_os.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows File Protection 131795770645381850 0x676a0000 61440 C:\Program Files (x86)\360\Total Security\ipc\x64for32lib.dll 6, 8, 0, 1059 360.cn 360安全卫士 木马防火墙模块 131795771279916892 0x68850000 2764800 C:\Windows\SysWOW64\msftedit.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Элемент управления "Поле ввода форматированного текста", версия 8.5 131795770645381850 0x6b6d0000 102400 C:\Program Files (x86)\360\Total Security\i18n.dll 1, 0, 0, 1016 Qihu 360 Software Co., Ltd. 360 Total Security 131795770645381850 0x6bf00000 3715072 C:\Windows\SysWOW64\msi.dll 5.0.14393.2155 Microsoft Corporation Windows Installer 131795770645381850 0x6c290000 987136 C:\Windows\SysWOW64\twinapi.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation twinapi.appcore 131795770645381850 0x6c390000 1126400 C:\Windows\SysWOW64\dcomp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft DirectComposition Library 131795770645381850 0x6c4b0000 278528 C:\Windows\SysWOW64\dataexchange.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation Data exchange 131795770645381850 0x6e6e0000 151552 C:\Windows\SysWOW64\globinputhost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Globalization Extension API for Input 131795770645381850 0x6e710000 335872 C:\Windows\SysWOW64\Bcp47Langs.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation BCP47 Language Classes 131795770645381850 0x6e770000 1269760 C:\Windows\SysWOW64\Windows.Globalization.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Globalization 131795770645381850 0x6eed0000 274432 C:\Windows\SysWOW64\thumbcache.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Кэш эскизов Майкрософт 131795770645381850 0x6fc70000 385024 C:\Windows\SysWOW64\FirewallAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API брандмауэра Windows 131795770645381850 0x6fcd0000 151552 C:\Windows\SysWOW64\dbgcore.DLL 10.0.14321.1024 (debuggers(dbg).160715-1616) Microsoft Windows Core Debugging Helpers 131795770645381850 0x700d0000 434176 C:\Windows\SysWOW64\WINSPOOL.DRV 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Драйвер диспетчера очереди Windows 131795770645381850 0x70140000 274432 C:\Windows\SysWOW64\WINSTA.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Winstation Library 131795770645381850 0x70340000 536576 C:\Windows\SysWOW64\dxgi.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation DirectX Graphics Infrastructure 131795770645381850 0x703d0000 2056192 C:\Windows\SysWOW64\DWrite.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Службы Microsoft DirectX Typography 131795770645381850 0x705e0000 344064 C:\Windows\SysWOW64\OLEACC.dll 7.2.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Active Accessibility Core Component 131795770645381850 0x70640000 1499136 C:\Windows\SysWOW64\WindowsCodecs.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Microsoft Windows Codecs Library 131795770645381850 0x707b0000 110592 C:\Windows\SysWOW64\ncryptsslp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft SChannel Provider 131795770645381850 0x707f0000 2293760 C:\Windows\SysWOW64\d3d11.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation Direct3D 11 Runtime 131795770645381850 0x70a40000 81920 C:\Windows\SysWOW64\NLAapi.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Network Location Awareness 2 131795770645381850 0x70a60000 90112 C:\Windows\SysWOW64\pnrpnsp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик пространства имен PNRP 131795770645381850 0x70a80000 409600 C:\Windows\SysWOW64\schannel.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик безопасности TLS/SSL 131795770645381850 0x70b40000 69632 C:\Windows\SysWOW64\mskeyprotect.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик защиты ключей (Майкрософт) 131795770645381850 0x70b70000 163840 C:\Windows\SysWOW64\ntmarta.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик Windows NT MARTA 131795770645381850 0x70ba0000 188416 C:\Windows\SysWOW64\FWPolicyIOMgr.dll 10.0.14393.2189 (rs1_release.180329-1711) Microsoft Corporation FwPolicyIoMgr DLL 131795770645381850 0x70bd0000 147456 C:\Windows\SysWOW64\fwbase.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Firewall Base DLL 131795770645381850 0x70c00000 49152 C:\Windows\SysWOW64\winrnr.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation LDAP RnR Provider DLL 131795770645381850 0x70c10000 73728 C:\Windows\SysWOW64\napinsp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик оболочки совместимости для имен электронной почты 131795770645381850 0x70c30000 114688 C:\Windows\SysWOW64\SRVCLI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Server Service Client DLL 131795770645381850 0x70ca0000 45056 C:\Windows\SysWOW64\NETUTILS.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API Helpers DLL 131795770645381850 0x70cc0000 65536 C:\Windows\SysWOW64\ondemandconnroutehelper.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation On Demand Connctiond Route Helper 131795770645381850 0x70e60000 176128 C:\Windows\SysWOW64\NTASN1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft ASN.1 API 131795770645381850 0x70fd0000 1331200 C:\Windows\SysWOW64\dbghelp.dll 10.0.14321.1024 (rs1_release.160715-1616) Microsoft Windows Image Helper 131795770645381850 0x71140000 77824 C:\Windows\SysWOW64\NETAPI32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API DLL 131795770645381850 0x71170000 466944 C:\Program Files (x86)\360\Total Security\deepscan\CQhCltHttpW.dll 1, 4, 0, 1030 QIHU 360 SOFTWARE CO. LIMITED 360 Internet Security Base Module 131795770645381850 0x71610000 77824 C:\Windows\SysWOW64\dhcpcsvc6.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиент DHCPv6 131795770645381850 0x725e0000 2273280 C:\Windows\SysWOW64\iertutil.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служебная программа времени выполнения для Internet Explorer 131795770645381850 0x728e0000 1372160 C:\Windows\SysWOW64\PROPSYS.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Система страниц свойств (Майкрософт) 131795770645381850 0x72b90000 126976 C:\Windows\SysWOW64\dwmapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Интерфейс API диспетчера окон рабочего стола (Майкрософт) 131795770645381850 0x72cc0000 1658880 C:\Windows\SysWOW64\urlmon.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширения OLE32 для Win32 131795770645381850 0x73a40000 32768 C:\Windows\SysWOW64\WINNSI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Network Store Information RPC interface 131795770645381850 0x73a50000 299008 C:\Windows\SysWOW64\fwpuclnt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API пользовательского режима FWP/IPsec 131795770645381850 0x73ab0000 32768 C:\Windows\SysWOW64\rasadhlp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Remote Access AutoDial Helper 131795770645381850 0x73ac0000 81920 C:\Windows\SysWOW64\dhcpcsvc.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служба DHCP-клиента 131795770645381850 0x73ae0000 40960 C:\Windows\SysWOW64\Secur32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Security Support Provider Interface 131795770645381850 0x73c50000 1478656 C:\Windows\WinSxS\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.14393.1715_none_f67438d2f2547a00\gdiplus.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Microsoft GDI+ 131795770645381850 0x73ee0000 61440 C:\Windows\SysWOW64\WTSAPI32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Remote Desktop Session Host Server SDK APIs 131795770645381850 0x73ef0000 24576 C:\Windows\SysWOW64\MSIMG32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation GDIEXT Client DLL 131795770645381850 0x73f00000 192512 C:\Windows\SysWOW64\IPHLPAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API вспомогательного приложения IP 131795770645381850 0x73f30000 512000 C:\Windows\SysWOW64\DNSAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Динамическая библиотека API DNS-клиента 131795770645381850 0x73ff0000 319488 C:\Windows\SysWOW64\mswsock.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширение поставщика службы API Microsoft Windows Sockets 2.0 131795770645381850 0x74060000 192512 C:\Windows\SysWOW64\rsaenh.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Enhanced Cryptographic Provider 131795770645381850 0x74110000 479232 C:\Windows\SysWOW64\uxtheme.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека тем UxTheme (Microsoft) 131795770645381850 0x74190000 110592 C:\Windows\SysWOW64\bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795770645381850 0x741b0000 77824 C:\Windows\SysWOW64\CRYPTSP.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Cryptographic Service Provider API 131795770645381850 0x741f0000 143360 C:\Windows\SysWOW64\WINMMBASE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base Multimedia Extension API DLL 131795770645381850 0x74230000 147456 C:\Windows\SysWOW64\WINMM.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation MCI API DLL 131795770645381850 0x74260000 2514944 C:\Windows\SysWOW64\WININET.dll 11.00.14393.447 (rs1_release_inmarket.161102-0100) Microsoft Corporation Расширения Интернета для Win32 131795770645381850 0x744d0000 2138112 C:\Windows\WinSxS\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.14393.953_none_89c2555adb023171\COMCTL32.dll 6.10 (rs1_release_inmarket.170303-1614) Microsoft Corporation Библиотека элементов управления взаимодействия с пользователем 131795770645381850 0x746e0000 32768 C:\Windows\SysWOW64\VERSION.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Version Checking and File Installation Libraries 131795770645381850 0x746f0000 106496 C:\Windows\SysWOW64\USERENV.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Userenv 131795770645381850 0x74730000 598016 C:\Windows\SysWOW64\apphelp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиентская библиотека совместимости приложений 131795770645381850 0x747d0000 40960 C:\Windows\SysWOW64\CRYPTBASE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base cryptographic API DLL 131795770645381850 0x747e0000 126976 C:\Windows\SysWOW64\SspiCli.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Security Support Provider Interface 131795770645381850 0x74800000 151552 C:\Windows\SysWOW64\IMM32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Multi-User Windows IMM32 API Client DLL 131795770645381850 0x74910000 2170880 C:\Windows\SysWOW64\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795770645381850 0x74b30000 53248 C:\Windows\SysWOW64\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795770645381850 0x74b40000 102400 C:\Windows\SysWOW64\imagehlp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT Image Helper 131795770645381850 0x74b60000 790528 C:\Windows\SysWOW64\RPCRT4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795770645381850 0x74c30000 1417216 C:\Windows\SysWOW64\gdi32full.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation GDI Client DLL 131795770645381850 0x74d90000 24576 C:\Windows\SysWOW64\PSAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Process Status Helper 131795770645381850 0x74da0000 778240 C:\Windows\SysWOW64\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795770645381850 0x74e60000 557056 C:\Windows\SysWOW64\shcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795770645381850 0x74ef0000 540672 C:\Windows\SysWOW64\clbcatq.dll 2001.12.10941.16384 (rs1_release.160715-1616) Microsoft Corporation COM+ Configuration Catalog 131795770645381850 0x74f80000 278528 C:\Windows\SysWOW64\WINTRUST.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation Microsoft Trust Verification APIs 131795770645381850 0x74fd0000 405504 C:\Windows\SysWOW64\WS2_32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation 32-разрядная библиотека Windows Socket 2.0 131795770645381850 0x75040000 282624 C:\Windows\SysWOW64\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795770645381850 0x75090000 1265664 C:\Windows\SysWOW64\MSCTF.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Серверная библиотека MSCTF 131795770645381850 0x751d0000 57344 C:\Windows\SysWOW64\MSASN1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ASN.1 Runtime APIs 131795770645381850 0x751e0000 1708032 C:\Windows\SysWOW64\KERNELBASE.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645381850 0x75390000 266240 C:\Windows\SysWOW64\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795770645381850 0x753e0000 1560576 C:\Windows\SysWOW64\CRYPT32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API32 криптографии 131795770645381850 0x75560000 487424 C:\Windows\SysWOW64\ADVAPI32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795770645381850 0x756c0000 5693440 C:\Windows\SysWOW64\windows.storage.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API хранения Microsoft WinRT 131795770645381850 0x75c30000 372736 C:\Windows\SysWOW64\coml2.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft COM for Windows 131795770645381850 0x75c90000 286720 C:\Windows\SysWOW64\shlwapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека небольших программ оболочки 131795770645381850 0x75ce0000 20811776 C:\Windows\SysWOW64\SHELL32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Общая библиотека оболочки Windows 131795770645381850 0x770c0000 4239360 C:\Windows\SysWOW64\SETUPAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Setup API 131795770645381850 0x774d0000 86016 C:\Windows\SysWOW64\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795770645381850 0x774f0000 61440 C:\Windows\SysWOW64\profapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Profile Basic API 131795770645381850 0x77560000 1437696 C:\Windows\SysWOW64\USER32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795770645381850 0x776c0000 368640 C:\Windows\SysWOW64\bcryptPrimitives.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation Windows Cryptographic Primitives Library 131795770645381850 0x77780000 503808 C:\Windows\SysWOW64\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645381850 0x77800000 606208 C:\Windows\SysWOW64\OLEAUT32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795770645381850 0x77ac0000 966656 C:\Windows\SysWOW64\ole32.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft OLE для Windows 131795770645381850 0x77bb0000 176128 C:\Windows\SysWOW64\GDI32.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation GDI Client DLL 131795770645381850 0x77cd0000 221184 C:\Windows\SysWOW64\cfgmgr32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Configuration Manager DLL 131795770645381850 0x77d10000 28672 C:\Windows\SysWOW64\NSI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation NSI User-mode interface DLL 131795770645381850 0x77d20000 1585152 C:\Windows\SysWOW64\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 131795770645381850 0x7ffad0270000 1908736 C:\Windows\SYSTEM32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 51 6860 6724 49 00000000:000003e7 131765803555957830 0 0 0 Обязательная метка\Обязательный уровень системы NT AUTHORITY\СИСТЕМА QHWatchdog.exe C:\Program Files (x86)\360\Total Security\safemon\QHWatchdog.exe "C:\Program Files (x86)\360\Total Security\safemon\QHWatchdog.exe" /watch QIHU 360 SOFTWARE CO. LIMITED 8,2,0,1000 360 Total Security 131795770645381936 0xdf0000 139264 C:\Program Files (x86)\360\Total Security\safemon\QHWatchdog.exe 8,2,0,1000 QIHU 360 SOFTWARE CO. LIMITED 360 Total Security 131795770645381936 0x5c020000 335872 C:\Windows\System32\wow64.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation Win32 Emulation on NT64 131795770645381936 0x5c080000 487424 C:\Windows\System32\wow64win.dll 10.0.14393.1884 (rs1_release.171101-1233) Microsoft Corporation Wow64 Console and Win32 API Logging 131795770645381936 0x5c100000 40960 C:\Windows\System32\wow64cpu.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation AMD64 Wow64 CPU 131795770645381936 0x74730000 598016 C:\Windows\SysWOW64\apphelp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиентская библиотека совместимости приложений 131795770645381936 0x747d0000 40960 C:\Windows\SysWOW64\CRYPTBASE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base cryptographic API DLL 131795770645381936 0x747e0000 126976 C:\Windows\SysWOW64\SspiCli.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Security Support Provider Interface 131795770645381936 0x74910000 2170880 C:\Windows\SysWOW64\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795770645381936 0x74b60000 790528 C:\Windows\SysWOW64\RPCRT4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795770645381936 0x74c30000 1417216 C:\Windows\SysWOW64\gdi32full.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation GDI Client DLL 131795770645381936 0x74da0000 778240 C:\Windows\SysWOW64\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795770645381936 0x74e60000 557056 C:\Windows\SysWOW64\shcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795770645381936 0x751e0000 1708032 C:\Windows\SysWOW64\KERNELBASE.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645381936 0x75390000 266240 C:\Windows\SysWOW64\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795770645381936 0x75560000 487424 C:\Windows\SysWOW64\ADVAPI32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795770645381936 0x755e0000 917504 C:\Windows\SysWOW64\KERNEL32.DLL 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645381936 0x75c90000 286720 C:\Windows\SysWOW64\SHLWAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека небольших программ оболочки 131795770645381936 0x774d0000 86016 C:\Windows\SysWOW64\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795770645381936 0x77560000 1437696 C:\Windows\SysWOW64\USER32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795770645381936 0x776c0000 368640 C:\Windows\SysWOW64\bcryptPrimitives.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation Windows Cryptographic Primitives Library 131795770645381936 0x77bb0000 176128 C:\Windows\SysWOW64\GDI32.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation GDI Client DLL 131795770645381936 0x77d20000 1585152 C:\Windows\SysWOW64\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 131795770645381936 0x7ffad0270000 1908736 C:\Windows\SYSTEM32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 52 5924 664 6 00000000:000003e4 131765805232900810 0 0 0 Обязательная метка\Обязательный уровень системы NT AUTHORITY\NETWORK SERVICE wmiprvse.exe C:\Windows\sysWOW64\wbem\wmiprvse.exe C:\Windows\sysWOW64\wbem\wmiprvse.exe -Embedding Microsoft Corporation 10.0.14393.2155 (rs1_release_1.180305-1842) WMI Provider Host 131795770645382027 0x950000 434176 C:\Windows\sysWOW64\wbem\wmiprvse.exe 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation WMI Provider Host 131795770645382027 0x5c020000 335872 C:\Windows\System32\wow64.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation Win32 Emulation on NT64 131795770645382027 0x5c080000 487424 C:\Windows\System32\wow64win.dll 10.0.14393.1884 (rs1_release.171101-1233) Microsoft Corporation Wow64 Console and Win32 API Logging 131795770645382027 0x5c100000 40960 C:\Windows\System32\wow64cpu.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation AMD64 Wow64 CPU 131795770645382027 0x5fec0000 794624 C:\Windows\SysWOW64\wbem\FastProx.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation WMI Custom Marshaller 131795770645382027 0x5ffa0000 421888 C:\Windows\SysWOW64\wbemcomn.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation WMI 131795770645382027 0x60130000 36864 C:\Windows\SysWOW64\storagewmi_passthru.dll 10.0.14393.103 (rs1_release_inmarket.160819-1924) Microsoft Corporation WMI PassThru Provider for Storage Management 131795770645382027 0x60140000 114688 C:\Windows\SysWOW64\wbem\wmiutils.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation WMI 131795770645382027 0x60160000 73728 C:\Windows\SysWOW64\NCObjAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation 131795770645382027 0x604d0000 36864 C:\Windows\SysWOW64\delegatorprovider.dll 10.0.14393.103 (rs1_release_inmarket.160819-1924) Microsoft Corporation WMI PassThru Provider for Storage Management 131795770645382027 0x74190000 110592 C:\Windows\SysWOW64\bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795770645382027 0x747d0000 40960 C:\Windows\SysWOW64\CRYPTBASE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base cryptographic API DLL 131795770645382027 0x747e0000 126976 C:\Windows\SysWOW64\SspiCli.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Security Support Provider Interface 131795770645382027 0x74910000 2170880 C:\Windows\SysWOW64\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795770645382027 0x74b30000 53248 C:\Windows\SysWOW64\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795770645382027 0x74b60000 790528 C:\Windows\SysWOW64\RPCRT4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795770645382027 0x74c30000 1417216 C:\Windows\SysWOW64\gdi32full.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation GDI Client DLL 131795770645382027 0x74da0000 778240 C:\Windows\SysWOW64\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795770645382027 0x74ef0000 540672 C:\Windows\SysWOW64\clbcatq.dll 2001.12.10941.16384 (rs1_release.160715-1616) Microsoft Corporation COM+ Configuration Catalog 131795770645382027 0x74fd0000 405504 C:\Windows\SysWOW64\WS2_32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation 32-разрядная библиотека Windows Socket 2.0 131795770645382027 0x751e0000 1708032 C:\Windows\SysWOW64\KERNELBASE.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645382027 0x75390000 266240 C:\Windows\SysWOW64\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795770645382027 0x75560000 487424 C:\Windows\SysWOW64\advapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795770645382027 0x755e0000 917504 C:\Windows\SysWOW64\KERNEL32.DLL 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645382027 0x774d0000 86016 C:\Windows\SysWOW64\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795770645382027 0x77560000 1437696 C:\Windows\SysWOW64\user32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795770645382027 0x776c0000 368640 C:\Windows\SysWOW64\bcryptPrimitives.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation Windows Cryptographic Primitives Library 131795770645382027 0x77780000 503808 C:\Windows\SysWOW64\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645382027 0x77800000 606208 C:\Windows\SysWOW64\OLEAUT32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795770645382027 0x77bb0000 176128 C:\Windows\SysWOW64\GDI32.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation GDI Client DLL 131795770645382027 0x77d20000 1585152 C:\Windows\SysWOW64\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 131795770645382027 0x7ffad0270000 1908736 C:\Windows\SYSTEM32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 54 4408 348 24 00000000:0031f1ab 131765812380694767 0 0 1 Обязательная метка\Высокий обязательный уровень WIN-0UOTFKKVN1S\User taskhostw.exe C:\Windows\system32\taskhostw.exe taskhostw.exe Microsoft Corporation 10.0.14393.0 (rs1_release.160715-1616) Хост-процесс для задач Windows 131795770645382224 0x17826230000 12288 C:\Windows\SYSTEM32\sfc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows File Protection 131795770645382224 0x7ff794e10000 102400 C:\Windows\system32\taskhostw.exe 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Хост-процесс для задач Windows 131795770645382224 0x7ffab1140000 1134592 C:\Windows\System32\ReAgent.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL агента восстановления Microsoft Windows 131795770645382224 0x7ffab1c40000 1302528 C:\Windows\System32\LicenseManager.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation LicenseManager 131795770645382224 0x7ffab8da0000 1675264 C:\Windows\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.14393.1715_none_aec701fbddd850fa\gdiplus.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Microsoft GDI+ 131795770645382224 0x7ffab93b0000 897024 C:\Windows\System32\TokenBroker.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Token Broker 131795770645382224 0x7ffabafc0000 700416 C:\Windows\system32\wer.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека сообщений об ошибках Windows 131795770645382224 0x7ffabb2b0000 1089536 C:\Windows\system32\SettingSyncCore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Setting Synchronization Core 131795770645382224 0x7ffabbd20000 106496 C:\Windows\SYSTEM32\settingsyncpolicy.dll 10.0.14393.82 (rs1_release.160805-1735) Microsoft Corporation SettingSync Policy 131795770645382224 0x7ffabe000000 409600 C:\Windows\system32\WinSATAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows System Assessment Tool API 131795770645382224 0x7ffabe850000 155648 C:\Windows\System32\IDStore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Identity Store 131795770645382224 0x7ffabef80000 69632 C:\Windows\SYSTEM32\sfc_os.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows File Protection 131795770645382224 0x7ffabefd0000 258048 C:\Windows\system32\AEPIC.dll 10.0.17060.1029 (WinBuild.160101.0800) Microsoft Corporation Application Experience Program Cache 131795770645382224 0x7ffabf050000 225280 C:\Windows\System32\sdiageng.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Подсистема выполнения сценариев диагностики 131795770645382224 0x7ffabf1d0000 192512 C:\Windows\system32\cryptnet.dll 10.0.14393.2035 (rs1_release_inmarket.180110-1910) Microsoft Corporation Crypto Network Related API 131795770645382224 0x7ffabf330000 2457600 C:\Windows\System32\msxml6.dll 6.30.14393.2156 Microsoft Corporation MSXML 6.0 131795770645382224 0x7ffabfbe0000 1011712 C:\Windows\System32\Windows.Security.Authentication.OnlineId.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation Windows Runtime OnlineId Authentication DLL 131795770645382224 0x7ffabff60000 135168 C:\Windows\system32\ncryptsslp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft SChannel Provider 131795770645382224 0x7ffac0ad0000 86016 C:\Windows\SYSTEM32\mskeyprotect.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик защиты ключей (Майкрософт) 131795770645382224 0x7ffac0bf0000 3559424 C:\Windows\System32\ActXPrxy.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation ActiveX Interface Marshaling Library 131795770645382224 0x7ffac1d60000 589824 C:\Windows\system32\webio.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API протоколов передачи по Веб 131795770645382224 0x7ffac23c0000 331776 C:\Windows\System32\OneCoreCommonProxyStub.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation OneCore Common Proxy Stub 131795770645382224 0x7ffac2750000 106496 C:\Windows\System32\bcd.dll 10.0.14393.1794 (rs1_release.171008-1615) Microsoft Corporation BCD DLL 131795770645382224 0x7ffac2b80000 40960 C:\Windows\system32\VERSION.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Version Checking and File Installation Libraries 131795770645382224 0x7ffac2c30000 135168 C:\Windows\System32\CLIPC.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиент платформы лицензирования клиента 131795770645382224 0x7ffac3810000 167936 C:\Windows\System32\Cabinet.dll 5.00 (rs1_release.160715-1616) Microsoft Corporation Microsoft® Cabinet File API 131795770645382224 0x7ffac3cb0000 2772992 C:\Windows\SYSTEM32\iertutil.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служебная программа времени выполнения для Internet Explorer 131795770645382224 0x7ffac4000000 274432 C:\Windows\SYSTEM32\policymanager.dll 10.0.14393.2035 (rs1_release_inmarket.180110-1910) Microsoft Corporation Policy Manager DLL 131795770645382224 0x7ffac4050000 118784 C:\Windows\System32\wdi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Инфраструктура диагностики Windows 131795770645382224 0x7ffac4ae0000 69632 C:\Windows\System32\sdiagschd.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Запланированная задача сценариев проверки 131795770645382224 0x7ffac4b00000 45056 C:\Windows\System32\MemoryDiagnostic.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Обработчик задач средства проверки памяти Windows (Майкрософт) 131795770645382224 0x7ffac5c80000 90112 C:\Windows\System32\TempSignedLicenseExchangeTask.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation TempSignedLicenseExchangeTask Task 131795770645382224 0x7ffac60e0000 221184 C:\Windows\system32\XmlLite.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft XmlLite Library 131795770645382224 0x7ffac6610000 40960 C:\Windows\System32\rasadhlp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Remote Access AutoDial Helper 131795770645382224 0x7ffac69c0000 839680 C:\Windows\system32\WINHTTP.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Службы HTTP Windows 131795770645382224 0x7ffac6c40000 2596864 C:\Windows\WinSxS\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.14393.953_none_42151e83c686086b\COMCTL32.dll 6.10 (rs1_release_inmarket.170303-1614) Microsoft Corporation Библиотека элементов управления взаимодействия с пользователем 131795770645382224 0x7ffac79c0000 57344 C:\Windows\System32\npmproxy.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Network List Manager Proxy 131795770645382224 0x7ffac83d0000 106496 C:\Windows\SYSTEM32\dhcpcsvc.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служба DHCP-клиента 131795770645382224 0x7ffac83f0000 90112 C:\Windows\SYSTEM32\dhcpcsvc6.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиент DHCPv6 131795770645382224 0x7ffac8810000 45056 C:\Windows\SYSTEM32\WINNSI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Network Store Information RPC interface 131795770645382224 0x7ffac8cf0000 815104 C:\Windows\System32\taskschd.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Task Scheduler COM API 131795770645382224 0x7ffac8dc0000 167936 C:\Windows\system32\dbgcore.DLL 10.0.14321.1024 (debuggers(dbg).160715-1616) Microsoft Windows Core Debugging Helpers 131795770645382224 0x7ffac8df0000 1646592 C:\Windows\system32\dbghelp.dll 10.0.14321.1024 (rs1_release.160715-1616) Microsoft Windows Image Helper 131795770645382224 0x7ffac9220000 397312 C:\Windows\System32\wevtapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API настройки и использования событий 131795770645382224 0x7ffac92e0000 1269760 C:\Windows\System32\WinTypes.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL основных типов Windows 131795770645382224 0x7ffac9f10000 221184 C:\Windows\System32\netprofm.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Network List Manager 131795770645382224 0x7ffaca200000 32768 C:\Windows\System32\ReAgentTask.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Обработчик задач агента восстановления Microsoft Windows 131795770645382224 0x7ffaca210000 225280 C:\Windows\system32\RstrtMgr.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Диспетчер перезапуска 131795770645382224 0x7ffaca4e0000 77824 C:\Windows\SYSTEM32\wtsapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Remote Desktop Session Host Server SDK APIs 131795770645382224 0x7ffaca5e0000 155648 C:\Windows\system32\dwmapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Интерфейс API диспетчера окон рабочего стола (Майкрософт) 131795770645382224 0x7ffaca610000 143360 C:\Windows\System32\SAMLIB.dll 10.0.14393.82 (rs1_release.160805-1735) Microsoft Corporation SAM Library DLL 131795770645382224 0x7ffacac00000 94208 C:\Windows\system32\radarrs.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation программа устранения нехватки системных ресурсов Microsoft Windows 131795770645382224 0x7ffacaf00000 610304 C:\Windows\system32\uxtheme.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека тем UxTheme (Microsoft) 131795770645382224 0x7ffacb140000 593920 C:\Windows\SYSTEM32\msvcp110_win.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Microsoft® STL110 C++ Runtime Library 131795770645382224 0x7ffacb1e0000 1163264 C:\Windows\System32\twinapi.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation twinapi.appcore 131795770645382224 0x7ffacb420000 204800 C:\Windows\SYSTEM32\ntmarta.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик Windows NT MARTA 131795770645382224 0x7ffacb6f0000 143360 C:\Windows\SYSTEM32\gpapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиентские функции API групповой политики 131795770645382224 0x7ffacb780000 651264 C:\Windows\system32\dxgi.dll 10.0.14393.953 (rs1_release_inmarket.170303-1614) Microsoft Corporation DirectX Graphics Infrastructure 131795770645382224 0x7ffacbaf0000 495616 C:\Windows\system32\schannel.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик безопасности TLS/SSL 131795770645382224 0x7ffacbbb0000 208896 C:\Windows\system32\rsaenh.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Enhanced Cryptographic Provider 131795770645382224 0x7ffacbbf0000 40960 C:\Windows\System32\DPAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Data Protection API 131795770645382224 0x7ffacbd30000 229376 C:\Windows\SYSTEM32\IPHLPAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API вспомогательного приложения IP 131795770645382224 0x7ffacbd70000 659456 C:\Windows\system32\DNSAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Динамическая библиотека API DNS-клиента 131795770645382224 0x7ffacbe40000 126976 C:\Windows\system32\USERENV.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Userenv 131795770645382224 0x7ffacbfb0000 376832 C:\Windows\system32\mswsock.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширение поставщика службы API Microsoft Windows Sockets 2.0 131795770645382224 0x7ffacc150000 94208 C:\Windows\system32\CRYPTSP.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Cryptographic Service Provider API 131795770645382224 0x7ffacc170000 45056 C:\Windows\system32\CRYPTBASE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base cryptographic API DLL 131795770645382224 0x7ffacc1f0000 241664 C:\Windows\system32\NTASN1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft ASN.1 API 131795770645382224 0x7ffacc230000 155648 C:\Windows\system32\ncrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Маршрутизатор Windows NCrypt 131795770645382224 0x7ffacc350000 180224 C:\Windows\system32\SspiCli.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Security Support Provider Interface 131795770645382224 0x7ffacc520000 622592 C:\Windows\SYSTEM32\sxs.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Fusion 2.5 131795770645382224 0x7ffacc620000 176128 C:\Windows\system32\bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795770645382224 0x7ffacc6e0000 61440 C:\Windows\System32\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795770645382224 0x7ffacc6f0000 311296 C:\Windows\System32\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795770645382224 0x7ffacc740000 81920 C:\Windows\System32\profapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Profile Basic API 131795770645382224 0x7ffacc760000 65536 C:\Windows\System32\MSASN1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ASN.1 Runtime APIs 131795770645382224 0x7ffacc8f0000 1003520 C:\Windows\System32\ucrtbase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645382224 0x7ffacc9f0000 434176 C:\Windows\System32\bcryptPrimitives.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Cryptographic Primitives Library 131795770645382224 0x7ffacca60000 122880 C:\Windows\System32\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795770645382224 0x7ffacca80000 348160 C:\Windows\System32\WINTRUST.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation Microsoft Trust Verification APIs 131795770645382224 0x7ffaccae0000 692224 C:\Windows\System32\shcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795770645382224 0x7ffaccb90000 7180288 C:\Windows\System32\windows.storage.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API хранения Microsoft WinRT 131795770645382224 0x7ffacd270000 2215936 C:\Windows\System32\KERNELBASE.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645382224 0x7ffacd490000 1871872 C:\Windows\System32\CRYPT32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API32 криптографии 131795770645382224 0x7ffacd710000 638976 C:\Windows\System32\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645382224 0x7ffacd7b0000 270336 C:\Windows\System32\cfgmgr32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Configuration Manager DLL 131795770645382224 0x7ffacd810000 22056960 C:\Windows\System32\SHELL32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Общая библиотека оболочки Windows 131795770645382224 0x7ffaced20000 782336 C:\Windows\System32\OLEAUT32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795770645382224 0x7ffacee50000 1183744 C:\Windows\System32\RPCRT4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795770645382224 0x7ffacef80000 32768 C:\Windows\System32\NSI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation NSI User-mode interface DLL 131795770645382224 0x7ffacef90000 647168 C:\Windows\System32\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795770645382224 0x7ffacf030000 651264 C:\Windows\System32\clbcatq.dll 2001.12.10941.16384 (rs1_release.160715-1616) Microsoft Corporation COM+ Configuration Catalog 131795770645382224 0x7ffacf0d0000 704512 C:\Windows\System32\KERNEL32.DLL 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645382224 0x7ffacf1e0000 1417216 C:\Windows\System32\MSCTF.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Серверная библиотека MSCTF 131795770645382224 0x7ffacf340000 4362240 C:\Windows\System32\SETUPAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Setup API 131795770645382224 0x7ffacf770000 212992 C:\Windows\System32\GDI32.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation GDI Client DLL 131795770645382224 0x7ffacf820000 434176 C:\Windows\System32\WS2_32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation 32-разрядная библиотека Windows Socket 2.0 131795770645382224 0x7ffacf890000 188416 C:\Windows\System32\imm32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Multi-User Windows IMM32 API Client DLL 131795770645382224 0x7ffacf8c0000 1462272 C:\Windows\System32\USER32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795770645382224 0x7ffacfb30000 2916352 C:\Windows\System32\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795770645382224 0x7ffacfe00000 114688 C:\Windows\System32\imagehlp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT Image Helper 131795770645382224 0x7ffacfe20000 663552 C:\Windows\System32\ADVAPI32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795770645382224 0x7ffad0070000 1277952 C:\Windows\System32\ole32.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft OLE для Windows 131795770645382224 0x7ffad01b0000 335872 C:\Windows\System32\SHLWAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека небольших программ оболочки 131795770645382224 0x7ffad0210000 364544 C:\Windows\System32\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795770645382224 0x7ffad0270000 1908736 C:\Windows\SYSTEM32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 55 6944 664 6 00000000:0031f1da 131767576301455145 0 0 1 Обязательная метка\Низкий обязательный уровень WIN-0UOTFKKVN1S\User SkypeHost.exe C:\Program Files\WindowsApps\Microsoft.SkypeApp_12.1815.210.0_x64__kzf8qxf38zg5c\SkypeHost.exe "C:\Program Files\WindowsApps\Microsoft.SkypeApp_12.1815.210.0_x64__kzf8qxf38zg5c\SkypeHost.exe" -ServerName:SkypeHost.ServerServer Microsoft Corporation 12.1815.210.0 Microsoft Skype 131795770645382388 0x7ff7e8670000 102400 C:\Program Files\WindowsApps\Microsoft.SkypeApp_12.1815.210.0_x64__kzf8qxf38zg5c\SkypeHost.exe 12.1815.210.0 Microsoft Corporation Microsoft Skype 131795770645382388 0x7ffaae130000 22437888 C:\Program Files\WindowsApps\Microsoft.SkypeApp_12.1815.210.0_x64__kzf8qxf38zg5c\SkyWrap.dll 12.1815.210.0 Microsoft Corporation Microsoft Skype 131795770645382388 0x7ffabaab0000 94208 C:\Windows\SYSTEM32\profext.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation profext 131795770645382388 0x7ffabc530000 241664 C:\Windows\SYSTEM32\Windows.Networking.HostName.dll 10.0.14393.953 (rs1_release_inmarket.170303-1614) Microsoft Corporation Windows.Networking.HostName DLL 131795770645382388 0x7ffabca50000 819200 C:\Windows\System32\Windows.Security.Authentication.Web.Core.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Token Broker WinRT API 131795770645382388 0x7ffabe150000 2691072 C:\Program Files\WindowsApps\Microsoft.SkypeApp_12.1815.210.0_x64__kzf8qxf38zg5c\skypert.dll 2018.15.01.31 SkypeRT shared library 131795770645382388 0x7ffabea90000 135168 C:\Windows\System32\Windows.ApplicationModel.Background.SystemEventsBroker.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Background System Events Broker API Server 131795770645382388 0x7ffabeac0000 335872 C:\Windows\System32\Windows.Storage.ApplicationData.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Application Data API Server 131795770645382388 0x7ffac0470000 1478656 C:\Windows\SYSTEM32\MFPlat.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Media Foundation Platform DLL 131795770645382388 0x7ffac0910000 724992 C:\Windows\SYSTEM32\Windows.Networking.Connectivity.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Networking Connectivity Runtime DLL 131795770645382388 0x7ffac0bf0000 3559424 C:\Windows\System32\ActXPrxy.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation ActiveX Interface Marshaling Library 131795770645382388 0x7ffac1a80000 978944 C:\Windows\SYSTEM32\Windows.Networking.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows.Networking DLL 131795770645382388 0x7ffac1b90000 630784 C:\Program Files\WindowsApps\Microsoft.VCLibs.140.00_14.0.25426.0_x64__8wekyb3d8bbwe\MSVCP140_APP.dll 14.11.25426.0 built by: VCTOOLSREL Microsoft Corporation Microsoft® C Runtime Library 131795770645382388 0x7ffac1e50000 188416 C:\Windows\SYSTEM32\RTWorkQ.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL для WorkQueue реального времени 131795770645382388 0x7ffac23c0000 331776 C:\Windows\System32\OneCoreCommonProxyStub.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation OneCore Common Proxy Stub 131795770645382388 0x7ffac2b30000 286720 C:\Windows\System32\usermgrproxy.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation UserMgrProxy 131795770645382388 0x7ffac2c30000 135168 C:\Windows\SYSTEM32\clipc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиент платформы лицензирования клиента 131795770645382388 0x7ffac3cb0000 2772992 C:\Windows\System32\iertutil.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служебная программа времени выполнения для Internet Explorer 131795770645382388 0x7ffac4b10000 307200 C:\Program Files\WindowsApps\Microsoft.VCLibs.140.00_14.0.25426.0_x64__8wekyb3d8bbwe\CONCRT140_APP.dll 14.11.25426.0 built by: VCTOOLSREL Microsoft Corporation Microsoft® Concurrency Runtime Library 131795770645382388 0x7ffac4c60000 385024 C:\Program Files\WindowsApps\Microsoft.VCLibs.140.00_14.0.25426.0_x64__8wekyb3d8bbwe\vccorlib140_app.DLL 14.11.25426.0 built by: VCTOOLSREL Microsoft Corporation Microsoft ® VC WinRT core library 131795770645382388 0x7ffac5070000 798720 C:\Windows\System32\Windows.Web.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL веб-клиента 131795770645382388 0x7ffac6620000 192512 C:\Windows\System32\biwinrt.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation Windows Background Broker Infrastructure 131795770645382388 0x7ffac7580000 1077248 C:\Windows\SYSTEM32\mrmcorer.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Windows MRM 131795770645382388 0x7ffac7720000 1601536 C:\Windows\System32\OneCoreUAPCommonProxyStub.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation OneCoreUAP Common Proxy Stub 131795770645382388 0x7ffac7c80000 208896 C:\Program Files\WindowsApps\Microsoft.SkypeApp_12.1815.210.0_x64__kzf8qxf38zg5c\SkypeBackgroundTasks.dll 12.1815.210.0 Microsoft Corporation Microsoft Skype 131795770645382388 0x7ffac7d80000 49152 C:\Windows\System32\Windows.ApplicationModel.Background.TimeBroker.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Background Time Broker API Server 131795770645382388 0x7ffac8540000 286720 C:\Windows\System32\vaultcli.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиентская библиотека хранилища учетных данных 131795770645382388 0x7ffac92e0000 1269760 C:\Windows\System32\WinTypes.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL основных типов Windows 131795770645382388 0x7ffaca260000 45056 C:\Windows\SYSTEM32\SystemEventsBrokerClient.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation system Events Broker Client Library 131795770645382388 0x7ffaca340000 1593344 C:\Windows\SYSTEM32\PROPSYS.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Система страниц свойств (Майкрософт) 131795770645382388 0x7ffacab80000 90112 C:\Program Files\WindowsApps\Microsoft.VCLibs.140.00_14.0.25426.0_x64__8wekyb3d8bbwe\VCRUNTIME140_APP.dll 14.11.25426.0 built by: VCTOOLSREL Microsoft Corporation Microsoft® C Runtime Library 131795770645382388 0x7ffacb1e0000 1163264 C:\Windows\SYSTEM32\twinapi.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation twinapi.appcore 131795770645382388 0x7ffacb360000 176128 C:\Windows\SYSTEM32\fwbase.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Firewall Base DLL 131795770645382388 0x7ffacb420000 204800 C:\Windows\SYSTEM32\ntmarta.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик Windows NT MARTA 131795770645382388 0x7ffacb460000 548864 C:\Windows\SYSTEM32\FirewallAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API брандмауэра Windows 131795770645382388 0x7ffacbbf0000 40960 C:\Windows\SYSTEM32\DPAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Data Protection API 131795770645382388 0x7ffacbd30000 229376 C:\Windows\SYSTEM32\IPHLPAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API вспомогательного приложения IP 131795770645382388 0x7ffacbe40000 126976 C:\Windows\SYSTEM32\USERENV.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Userenv 131795770645382388 0x7ffacc170000 45056 C:\Windows\SYSTEM32\CRYPTBASE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base cryptographic API DLL 131795770645382388 0x7ffacc620000 176128 C:\Windows\SYSTEM32\bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795770645382388 0x7ffacc6e0000 61440 C:\Windows\System32\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795770645382388 0x7ffacc6f0000 311296 C:\Windows\System32\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795770645382388 0x7ffacc740000 81920 C:\Windows\System32\profapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Profile Basic API 131795770645382388 0x7ffacc760000 65536 C:\Windows\System32\MSASN1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ASN.1 Runtime APIs 131795770645382388 0x7ffacc8f0000 1003520 C:\Windows\System32\ucrtbase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645382388 0x7ffacc9f0000 434176 C:\Windows\System32\bcryptPrimitives.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Cryptographic Primitives Library 131795770645382388 0x7ffacca60000 122880 C:\Windows\System32\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795770645382388 0x7ffaccae0000 692224 C:\Windows\System32\shcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795770645382388 0x7ffaccb90000 7180288 C:\Windows\System32\windows.storage.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API хранения Microsoft WinRT 131795770645382388 0x7ffacd270000 2215936 C:\Windows\System32\KERNELBASE.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645382388 0x7ffacd490000 1871872 C:\Windows\System32\CRYPT32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API32 криптографии 131795770645382388 0x7ffacd710000 638976 C:\Windows\System32\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645382388 0x7ffacd7b0000 270336 C:\Windows\System32\cfgmgr32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Configuration Manager DLL 131795770645382388 0x7ffaced20000 782336 C:\Windows\System32\OLEAUT32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795770645382388 0x7ffacee50000 1183744 C:\Windows\System32\RPCRT4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795770645382388 0x7ffacef90000 647168 C:\Windows\System32\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795770645382388 0x7ffacf0d0000 704512 C:\Windows\System32\KERNEL32.DLL 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645382388 0x7ffacf770000 212992 C:\Windows\System32\GDI32.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation GDI Client DLL 131795770645382388 0x7ffacf820000 434176 C:\Windows\System32\WS2_32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation 32-разрядная библиотека Windows Socket 2.0 131795770645382388 0x7ffacf890000 188416 C:\Windows\System32\IMM32.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Multi-User Windows IMM32 API Client DLL 131795770645382388 0x7ffacf8c0000 1462272 C:\Windows\System32\USER32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795770645382388 0x7ffacfb30000 2916352 C:\Windows\System32\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795770645382388 0x7ffacfe20000 663552 C:\Windows\System32\advapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795770645382388 0x7ffad01b0000 335872 C:\Windows\System32\shlwapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека небольших программ оболочки 131795770645382388 0x7ffad0210000 364544 C:\Windows\System32\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795770645382388 0x7ffad0270000 1908736 C:\Windows\SYSTEM32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 56 1048 580 4 00000000:000003e7 131768729449405953 0 0 1 Обязательная метка\Обязательный уровень системы NT AUTHORITY\СИСТЕМА sedsvc.exe C:\Program Files\rempl\sedsvc.exe "C:\Program Files\rempl\sedsvc.exe" Microsoft Corporation 10.0.16299.10000 (WinBuild.160101.0800) sedsvc 131795770645382485 0x7ff751430000 307200 C:\Program Files\rempl\sedsvc.exe 10.0.16299.10000 (WinBuild.160101.0800) Microsoft Corporation sedsvc 131795770645382485 0x7ffabf5d0000 2924544 C:\Windows\SYSTEM32\WININET.dll 11.00.14393.447 (rs1_release_inmarket.161102-0100) Microsoft Corporation Расширения Интернета для Win32 131795770645382485 0x7ffac2b80000 40960 C:\Windows\SYSTEM32\VERSION.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Version Checking and File Installation Libraries 131795770645382485 0x7ffac69c0000 839680 C:\Windows\SYSTEM32\WINHTTP.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Службы HTTP Windows 131795770645382485 0x7ffac8cf0000 815104 C:\Windows\System32\taskschd.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Task Scheduler COM API 131795770645382485 0x7ffaca4e0000 77824 C:\Windows\SYSTEM32\WTSAPI32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Remote Desktop Session Host Server SDK APIs 131795770645382485 0x7ffacb6f0000 143360 C:\Windows\SYSTEM32\gpapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиентские функции API групповой политики 131795770645382485 0x7ffacbbb0000 208896 C:\Windows\system32\rsaenh.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Enhanced Cryptographic Provider 131795770645382485 0x7ffacc150000 94208 C:\Windows\SYSTEM32\CRYPTSP.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Cryptographic Service Provider API 131795770645382485 0x7ffacc170000 45056 C:\Windows\SYSTEM32\CRYPTBASE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base cryptographic API DLL 131795770645382485 0x7ffacc350000 180224 C:\Windows\System32\SspiCli.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Security Support Provider Interface 131795770645382485 0x7ffacc620000 176128 C:\Windows\SYSTEM32\bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795770645382485 0x7ffacc6e0000 61440 C:\Windows\System32\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795770645382485 0x7ffacc6f0000 311296 C:\Windows\System32\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795770645382485 0x7ffacc740000 81920 C:\Windows\System32\profapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Profile Basic API 131795770645382485 0x7ffacc760000 65536 C:\Windows\System32\MSASN1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ASN.1 Runtime APIs 131795770645382485 0x7ffacc8f0000 1003520 C:\Windows\System32\ucrtbase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645382485 0x7ffacc9f0000 434176 C:\Windows\System32\bcryptPrimitives.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Cryptographic Primitives Library 131795770645382485 0x7ffacca60000 122880 C:\Windows\System32\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795770645382485 0x7ffacca80000 348160 C:\Windows\System32\WINTRUST.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation Microsoft Trust Verification APIs 131795770645382485 0x7ffaccae0000 692224 C:\Windows\System32\shcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795770645382485 0x7ffaccb90000 7180288 C:\Windows\System32\windows.storage.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API хранения Microsoft WinRT 131795770645382485 0x7ffacd270000 2215936 C:\Windows\System32\KERNELBASE.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645382485 0x7ffacd490000 1871872 C:\Windows\System32\CRYPT32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API32 криптографии 131795770645382485 0x7ffacd710000 638976 C:\Windows\System32\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645382485 0x7ffacd7b0000 270336 C:\Windows\System32\cfgmgr32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Configuration Manager DLL 131795770645382485 0x7ffacd810000 22056960 C:\Windows\System32\SHELL32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Общая библиотека оболочки Windows 131795770645382485 0x7ffaced20000 782336 C:\Windows\System32\OLEAUT32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795770645382485 0x7ffacee50000 1183744 C:\Windows\System32\RPCRT4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795770645382485 0x7ffacef90000 647168 C:\Windows\System32\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795770645382485 0x7ffacf030000 651264 C:\Windows\System32\clbcatq.dll 2001.12.10941.16384 (rs1_release.160715-1616) Microsoft Corporation COM+ Configuration Catalog 131795770645382485 0x7ffacf0d0000 704512 C:\Windows\System32\KERNEL32.DLL 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645382485 0x7ffacf340000 4362240 C:\Windows\System32\setupapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Setup API 131795770645382485 0x7ffacf770000 212992 C:\Windows\System32\GDI32.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation GDI Client DLL 131795770645382485 0x7ffacf8c0000 1462272 C:\Windows\System32\USER32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795770645382485 0x7ffacfb30000 2916352 C:\Windows\System32\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795770645382485 0x7ffacfe00000 114688 C:\Windows\System32\imagehlp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT Image Helper 131795770645382485 0x7ffacfe20000 663552 C:\Windows\System32\advapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795770645382485 0x7ffad01b0000 335872 C:\Windows\System32\shlwapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека небольших программ оболочки 131795770645382485 0x7ffad0210000 364544 C:\Windows\System32\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795770645382485 0x7ffad0270000 1908736 C:\Windows\SYSTEM32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 57 7744 3108 11 00000000:0031f1da 131769081112364684 0 0 0 Обязательная метка\Средний обязательный уровень WIN-0UOTFKKVN1S\User browser.exe C:\Users\User\AppData\Local\Yandex\YandexBrowser\Application\browser.exe "C:\Users\User\AppData\Local\Yandex\YandexBrowser\Application\browser.exe" YANDEX LLC 18.6.1.770 Yandex 131795770645382623 0x10e0000 2519040 C:\Users\User\AppData\Local\Yandex\YandexBrowser\Application\browser.exe 18.6.1.770 YANDEX LLC Yandex 131795770645382623 0x11330000 172032 C:\Windows\SysWOW64\RTWorkQ.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL для WorkQueue реального времени 131795770645382623 0x5c020000 335872 C:\Windows\System32\wow64.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation Win32 Emulation on NT64 131795770645382623 0x5c080000 487424 C:\Windows\System32\wow64win.dll 10.0.14393.1884 (rs1_release.171101-1233) Microsoft Corporation Wow64 Console and Win32 API Logging 131795770645382623 0x5c100000 40960 C:\Windows\System32\wow64cpu.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation AMD64 Wow64 CPU 131795770645382623 0x5fec0000 794624 C:\Windows\SysWOW64\wbem\fastprox.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation WMI Custom Marshaller 131795770645382623 0x5ffa0000 421888 C:\Windows\SysWOW64\wbemcomn.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation WMI 131795770645382623 0x60010000 53248 C:\Windows\SysWOW64\wbem\wbemprox.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation WMI 131795770645382623 0x60750000 1556480 C:\Program Files (x86)\360\Total Security\safemon\safemon.dll 8, 4, 0, 1420 Qihu 360 Software Co., Ltd. 360 Internet Security Internet Protection 131795770645382623 0x60900000 720896 C:\Program Files (x86)\360\Total Security\safemon\urlproc.dll 2, 9, 5, 1260 Qihu 360 Software Co., Ltd. 360 Internet Security 2013 Internet Protection 131795770645382623 0x622f0000 520192 C:\Program Files (x86)\360\Total Security\deepscan\heavygate.dll 3, 8, 11, 1 Qihu 360 Software Co., Ltd. 360 Total Security Cloud Security 131795770645382623 0x62980000 376832 C:\Program Files (x86)\360\Total Security\360NetBase.dll 7, 25, 0, 76 360.cn 360安全卫士 网络基础模块 131795770645382623 0x68b00000 44998656 C:\Users\User\AppData\Local\Yandex\YandexBrowser\Application\18.6.1.770\browser.dll 18.6.1.770 YANDEX LLC Yandex 131795770645382623 0x6b6b0000 36864 C:\Windows\SysWOW64\atlthunk.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation atlthunk.dll 131795770645382623 0x6b6d0000 102400 C:\Program Files (x86)\360\Total Security\I18N.dll 1, 0, 0, 1016 Qihu 360 Software Co., Ltd. 360 Total Security 131795770645382623 0x6bf00000 3715072 C:\Windows\SysWOW64\msi.dll 5.0.14393.2155 Microsoft Corporation Windows Installer 131795770645382623 0x6c290000 987136 C:\Windows\SysWOW64\twinapi.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation twinapi.appcore 131795770645382623 0x6c390000 1126400 C:\Windows\SysWOW64\dcomp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft DirectComposition Library 131795770645382623 0x6c4b0000 278528 C:\Windows\SysWOW64\dataexchange.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation Data exchange 131795770645382623 0x6c540000 483328 C:\Windows\SysWOW64\webio.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API протоколов передачи по Веб 131795770645382623 0x6cd50000 106496 C:\Windows\SysWOW64\SAMLIB.dll 10.0.14393.82 (rs1_release.160805-1735) Microsoft Corporation SAM Library DLL 131795770645382623 0x6ce30000 421888 C:\Windows\SysWOW64\msvcp110_win.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Microsoft® STL110 C++ Runtime Library 131795770645382623 0x6cf60000 569344 C:\Windows\SysWOW64\taskschd.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Task Scheduler COM API 131795770645382623 0x6d080000 151552 C:\Windows\SysWOW64\cryptnet.dll 10.0.14393.2035 (rs1_release_inmarket.180110-1910) Microsoft Corporation Crypto Network Related API 131795770645382623 0x6d0b0000 847872 C:\Windows\SysWOW64\wintypes.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL основных типов Windows 131795770645382623 0x6dc80000 90112 C:\Program Files (x86)\Windows Defender\MpOav.dll 4.10.14393.1794 (rs1_release.171008-1615) Microsoft Corporation IOfficeAntiVirus Module 131795770645382623 0x6df70000 245760 C:\Windows\SysWOW64\shdocvw.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека объектов документов и элементов управления оболочки 131795770645382623 0x6e070000 98304 C:\Windows\SysWOW64\MSACM32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Фильтр диспетчера аудиосжатия Microsoft 131795770645382623 0x6e090000 233472 C:\Windows\SysWOW64\wdmaud.drv 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Системный звуковой драйвер Winmm 131795770645382623 0x6e110000 32768 C:\Windows\SysWOW64\midimap.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft MIDI Mapper 131795770645382623 0x6e120000 40960 C:\Windows\SysWOW64\msacm32.drv 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Программа переназначения звуковых устройств 131795770645382623 0x6e130000 36864 C:\Windows\SysWOW64\AVRT.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Multimedia Realtime Runtime 131795770645382623 0x6e2a0000 4440064 C:\Windows\SysWOW64\explorerframe.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ExplorerFrame 131795770645382623 0x6e8b0000 1859584 C:\Windows\SysWOW64\mfmp4srcsnk.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL источника и приемника MPEG4 Media Foundation 131795770645382623 0x6eb60000 28672 C:\Windows\SysWOW64\ksuser.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User CSA Library 131795770645382623 0x6eb70000 790528 C:\Windows\SysWOW64\ntshrui.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширения оболочки, обеспечивающие общий доступ 131795770645382623 0x6ec40000 442368 C:\Windows\SysWOW64\twinapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation twinapi 131795770645382623 0x6eed0000 274432 C:\Windows\SysWOW64\thumbcache.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Кэш эскизов Майкрософт 131795770645382623 0x6ef30000 647168 C:\Windows\SysWOW64\evr.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека DLL средства отображения видео 131795770645382623 0x6efd0000 458752 C:\Windows\SysWOW64\msauddecmft.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Media Foundation Audio Decoders 131795770645382623 0x6f790000 1085440 C:\Windows\SysWOW64\mfperfhelper.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation MFPerf DLL 131795770645382623 0x6f8a0000 2220032 C:\Windows\SysWOW64\msmpeg2vdec.dll 10.0.14393.953 (rs1_release_inmarket.170303-1614) Microsoft Corporation Microsoft DTV-DVD Video Decoder 131795770645382623 0x6fac0000 1130496 C:\Windows\SysWOW64\mfplat.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Media Foundation Platform DLL 131795770645382623 0x6fc70000 385024 C:\Windows\SysWOW64\FirewallAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API брандмауэра Windows 131795770645382623 0x6fd00000 73728 C:\Windows\SysWOW64\mssprxy.dll 7.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation Microsoft Search Proxy 131795770645382623 0x6fd20000 61440 C:\Windows\SysWOW64\cscapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Offline Files Win32 API 131795770645382623 0x6fd30000 139264 C:\Windows\SysWOW64\DEVOBJ.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Device Information Set DLL 131795770645382623 0x6fd60000 360448 C:\Windows\SysWOW64\MMDevAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation MMDevice API 131795770645382623 0x6fdc0000 507904 C:\Windows\SysWOW64\audioses.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Сеанс обработки звука 131795770645382623 0x6fe40000 57344 C:\Windows\SysWOW64\BitsProxy.dll 7.8.14393.0 (rs1_release.160715-1616) Microsoft Corporation Background Intelligent Transfer Service Proxy 131795770645382623 0x6fe50000 241664 C:\Windows\SysWOW64\mstask.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека интерфейса планировщика заданий 131795770645382623 0x6fe90000 544768 C:\Windows\SysWOW64\mscms.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL-библиотека системы сопоставления цветов Майкрософт 131795770645382623 0x6ff90000 323584 C:\Windows\SysWOW64\wlanapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows WLAN AutoConfig Client Side API DLL 131795770645382623 0x6ffe0000 303104 C:\Windows\SysWOW64\wevtapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API настройки и использования событий 131795770645382623 0x70030000 593920 C:\Users\User\AppData\Local\Yandex\YandexBrowser\Application\18.6.1.770\browser_elf.dll 18.6.1.770 YANDEX LLC Yandex 131795770645382623 0x70140000 274432 C:\Windows\SysWOW64\WINSTA.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Winstation Library 131795770645382623 0x70190000 53248 C:\Windows\SysWOW64\LINKINFO.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Volume Tracking 131795770645382623 0x701a0000 401408 C:\Users\User\AppData\Local\Yandex\YandexBrowser\Application\18.6.1.770\dllyupdate.dll 1.2.0.1831 Yandex LLC Yandex updater (CU) 131795770645382623 0x70340000 536576 C:\Windows\SysWOW64\dxgi.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation DirectX Graphics Infrastructure 131795770645382623 0x703d0000 2056192 C:\Windows\SysWOW64\DWrite.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Службы Microsoft DirectX Typography 131795770645382623 0x705e0000 344064 C:\Windows\SysWOW64\OLEACC.dll 7.2.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Active Accessibility Core Component 131795770645382623 0x70640000 1499136 C:\Windows\SysWOW64\WindowsCodecs.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Microsoft Windows Codecs Library 131795770645382623 0x707d0000 86016 C:\Windows\SysWOW64\SAMCLI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Security Accounts Manager Client DLL 131795770645382623 0x70a20000 94208 C:\Windows\SysWOW64\USP10.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Uniscribe Unicode script processor 131795770645382623 0x70a40000 81920 C:\Windows\SysWOW64\NLAapi.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Network Location Awareness 2 131795770645382623 0x70b00000 176128 C:\Windows\SysWOW64\wscapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API центра обеспечения безопасности Windows 131795770645382623 0x70b30000 36864 C:\Windows\SysWOW64\WINUSB.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows USB Driver User Library 131795770645382623 0x70b60000 40960 C:\Windows\SysWOW64\HID.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека пользователя HID 131795770645382623 0x70b70000 163840 C:\Windows\SysWOW64\ntmarta.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик Windows NT MARTA 131795770645382623 0x70ba0000 188416 C:\Windows\SysWOW64\FWPolicyIOMgr.dll 10.0.14393.2189 (rs1_release.180329-1711) Microsoft Corporation FwPolicyIoMgr DLL 131795770645382623 0x70bd0000 147456 C:\Windows\SysWOW64\fwbase.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Firewall Base DLL 131795770645382623 0x70c30000 114688 C:\Windows\SysWOW64\srvcli.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Server Service Client DLL 131795770645382623 0x70ca0000 45056 C:\Windows\SysWOW64\NETUTILS.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API Helpers DLL 131795770645382623 0x70cc0000 65536 C:\Windows\SysWOW64\ondemandconnroutehelper.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation On Demand Connctiond Route Helper 131795770645382623 0x70e60000 176128 C:\Windows\SysWOW64\NTASN1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft ASN.1 API 131795770645382623 0x70fd0000 1331200 C:\Windows\SysWOW64\dbghelp.dll 10.0.14321.1024 (rs1_release.160715-1616) Microsoft Windows Image Helper 131795770645382623 0x71140000 77824 C:\Windows\SysWOW64\NETAPI32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API DLL 131795770645382623 0x711f0000 32768 C:\Windows\SysWOW64\IconCodecService.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Converts a PNG part of the icon to a legacy bmp icon 131795770645382623 0x71610000 77824 C:\Windows\SysWOW64\dhcpcsvc6.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиент DHCPv6 131795770645382623 0x724f0000 57344 C:\Windows\SysWOW64\credui.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Credential Manager User Interface 131795770645382623 0x725e0000 2273280 C:\Windows\SysWOW64\iertutil.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служебная программа времени выполнения для Internet Explorer 131795770645382623 0x728e0000 1372160 C:\Windows\SysWOW64\PROPSYS.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Система страниц свойств (Майкрософт) 131795770645382623 0x72b90000 126976 C:\Windows\SysWOW64\dwmapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Интерфейс API диспетчера окон рабочего стола (Майкрософт) 131795770645382623 0x72cc0000 1658880 C:\Windows\SysWOW64\urlmon.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширения OLE32 для Win32 131795770645382623 0x73a40000 32768 C:\Windows\SysWOW64\WINNSI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Network Store Information RPC interface 131795770645382623 0x73a50000 299008 C:\Windows\SysWOW64\fwpuclnt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API пользовательского режима FWP/IPsec 131795770645382623 0x73aa0000 32768 C:\Windows\SysWOW64\DPAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Data Protection API 131795770645382623 0x73ab0000 32768 C:\Windows\SysWOW64\rasadhlp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Remote Access AutoDial Helper 131795770645382623 0x73ac0000 81920 C:\Windows\SysWOW64\dhcpcsvc.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служба DHCP-клиента 131795770645382623 0x73ae0000 40960 C:\Windows\SysWOW64\Secur32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Security Support Provider Interface 131795770645382623 0x73ee0000 61440 C:\Windows\SysWOW64\WTSAPI32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Remote Desktop Session Host Server SDK APIs 131795770645382623 0x73f00000 192512 C:\Windows\SysWOW64\IPHLPAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API вспомогательного приложения IP 131795770645382623 0x73f30000 512000 C:\Windows\SysWOW64\DNSAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Динамическая библиотека API DNS-клиента 131795770645382623 0x73ff0000 319488 C:\Windows\SysWOW64\mswsock.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширение поставщика службы API Microsoft Windows Sockets 2.0 131795770645382623 0x74040000 126976 C:\Windows\SysWOW64\gpapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиентские функции API групповой политики 131795770645382623 0x74060000 192512 C:\Windows\SysWOW64\rsaenh.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Enhanced Cryptographic Provider 131795770645382623 0x74110000 479232 C:\Windows\SysWOW64\uxtheme.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека тем UxTheme (Microsoft) 131795770645382623 0x74190000 110592 C:\Windows\SysWOW64\bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795770645382623 0x741b0000 77824 C:\Windows\SysWOW64\CRYPTSP.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Cryptographic Service Provider API 131795770645382623 0x741f0000 143360 C:\Windows\SysWOW64\WINMMBASE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base Multimedia Extension API DLL 131795770645382623 0x74230000 147456 C:\Windows\SysWOW64\WINMM.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation MCI API DLL 131795770645382623 0x74260000 2514944 C:\Windows\SysWOW64\WININET.dll 11.00.14393.447 (rs1_release_inmarket.161102-0100) Microsoft Corporation Расширения Интернета для Win32 131795770645382623 0x744d0000 2138112 C:\Windows\WinSxS\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.14393.953_none_89c2555adb023171\COMCTL32.dll 6.10 (rs1_release_inmarket.170303-1614) Microsoft Corporation Библиотека элементов управления взаимодействия с пользователем 131795770645382623 0x746e0000 32768 C:\Windows\SysWOW64\VERSION.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Version Checking and File Installation Libraries 131795770645382623 0x746f0000 106496 C:\Windows\SysWOW64\USERENV.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Userenv 131795770645382623 0x74730000 598016 C:\Windows\SysWOW64\apphelp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиентская библиотека совместимости приложений 131795770645382623 0x747d0000 40960 C:\Windows\SysWOW64\CRYPTBASE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base cryptographic API DLL 131795770645382623 0x747e0000 126976 C:\Windows\SysWOW64\SspiCli.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Security Support Provider Interface 131795770645382623 0x74800000 151552 C:\Windows\SysWOW64\IMM32.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Multi-User Windows IMM32 API Client DLL 131795770645382623 0x74910000 2170880 C:\Windows\SysWOW64\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795770645382623 0x74b30000 53248 C:\Windows\SysWOW64\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795770645382623 0x74b40000 102400 C:\Windows\SysWOW64\imagehlp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT Image Helper 131795770645382623 0x74b60000 790528 C:\Windows\SysWOW64\RPCRT4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795770645382623 0x74c30000 1417216 C:\Windows\SysWOW64\gdi32full.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation GDI Client DLL 131795770645382623 0x74d90000 24576 C:\Windows\SysWOW64\PSAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Process Status Helper 131795770645382623 0x74da0000 778240 C:\Windows\SysWOW64\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795770645382623 0x74e60000 557056 C:\Windows\SysWOW64\shcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795770645382623 0x74ef0000 540672 C:\Windows\SysWOW64\clbcatq.dll 2001.12.10941.16384 (rs1_release.160715-1616) Microsoft Corporation COM+ Configuration Catalog 131795770645382623 0x74f80000 278528 C:\Windows\SysWOW64\WINTRUST.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation Microsoft Trust Verification APIs 131795770645382623 0x74fd0000 405504 C:\Windows\SysWOW64\WS2_32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation 32-разрядная библиотека Windows Socket 2.0 131795770645382623 0x75040000 282624 C:\Windows\SysWOW64\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795770645382623 0x75090000 1265664 C:\Windows\SysWOW64\MSCTF.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Серверная библиотека MSCTF 131795770645382623 0x751d0000 57344 C:\Windows\SysWOW64\MSASN1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ASN.1 Runtime APIs 131795770645382623 0x751e0000 1708032 C:\Windows\SysWOW64\KERNELBASE.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645382623 0x75390000 266240 C:\Windows\SysWOW64\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795770645382623 0x753e0000 1560576 C:\Windows\SysWOW64\CRYPT32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API32 криптографии 131795770645382623 0x75560000 487424 C:\Windows\SysWOW64\ADVAPI32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795770645382623 0x756c0000 5693440 C:\Windows\SysWOW64\windows.storage.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API хранения Microsoft WinRT 131795770645382623 0x75c30000 372736 C:\Windows\SysWOW64\coml2.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft COM for Windows 131795770645382623 0x75c90000 286720 C:\Windows\SysWOW64\shlwapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека небольших программ оболочки 131795770645382623 0x75ce0000 20811776 C:\Windows\SysWOW64\SHELL32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Общая библиотека оболочки Windows 131795770645382623 0x774d0000 86016 C:\Windows\SysWOW64\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795770645382623 0x774f0000 61440 C:\Windows\SysWOW64\profapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Profile Basic API 131795770645382623 0x77560000 1437696 C:\Windows\SysWOW64\USER32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795770645382623 0x776c0000 368640 C:\Windows\SysWOW64\bcryptPrimitives.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation Windows Cryptographic Primitives Library 131795770645382623 0x77780000 503808 C:\Windows\SysWOW64\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645382623 0x77800000 606208 C:\Windows\SysWOW64\OLEAUT32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795770645382623 0x77ac0000 966656 C:\Windows\SysWOW64\ole32.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft OLE для Windows 131795770645382623 0x77bb0000 176128 C:\Windows\SysWOW64\GDI32.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation GDI Client DLL 131795770645382623 0x77cd0000 221184 C:\Windows\SysWOW64\cfgmgr32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Configuration Manager DLL 131795770645382623 0x77d10000 28672 C:\Windows\SysWOW64\NSI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation NSI User-mode interface DLL 131795770645382623 0x77d20000 1585152 C:\Windows\SysWOW64\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 131795770645382623 0x7ffad0270000 1908736 C:\Windows\SYSTEM32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 58 5696 7744 57 00000000:0031f1da 131769081114193232 0 0 0 Обязательная метка\Средний обязательный уровень WIN-0UOTFKKVN1S\User browser.exe C:\Users\User\AppData\Local\Yandex\YandexBrowser\Application\browser.exe C:\Users\User\AppData\Local\Yandex\YandexBrowser\Application\browser.exe --type=crashpad-handler "--user-data-dir=C:\Users\User\AppData\Local\Yandex\YandexBrowser\User Data" /prefetch:7 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Users\User\AppData\Local\Yandex\YandexBrowser\User Data\Crashpad" "--metrics-dir=C:\Users\User\AppData\Local\Yandex\YandexBrowser\User Data" --url=https://crash-reports.browser.yandex.net/submit --annotation=machine_id=c46245ef0fec9d5c44d2fa20241f2070 --annotation=main_process_pid=7744 --annotation=metrics_client_id=520f4dd3247d4cdfb744f32b1130b1bf --annotation=plat=Win32 --annotation=prod=Yandex --annotation=ver=18.6.1.770 --initial-client-data=0x1c4,0x1cc,0x1d0,0x1c0,0x1d4,0x700b800c,0x700b7ffc,0x700b7fe0,0x1c8 YANDEX LLC 18.6.1.770 Yandex 131795770645382726 0x10e0000 2519040 C:\Users\User\AppData\Local\Yandex\YandexBrowser\Application\browser.exe 18.6.1.770 YANDEX LLC Yandex 131795770645382726 0x5c020000 335872 C:\Windows\System32\wow64.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation Win32 Emulation on NT64 131795770645382726 0x5c080000 487424 C:\Windows\System32\wow64win.dll 10.0.14393.1884 (rs1_release.171101-1233) Microsoft Corporation Wow64 Console and Win32 API Logging 131795770645382726 0x5c100000 40960 C:\Windows\System32\wow64cpu.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation AMD64 Wow64 CPU 131795770645382726 0x60750000 1556480 C:\Program Files (x86)\360\Total Security\safemon\safemon.dll 8, 4, 0, 1420 Qihu 360 Software Co., Ltd. 360 Internet Security Internet Protection 131795770645382726 0x70030000 593920 C:\Users\User\AppData\Local\Yandex\YandexBrowser\Application\18.6.1.770\browser_elf.dll 18.6.1.770 YANDEX LLC Yandex 131795770645382726 0x70b70000 163840 C:\Windows\SysWOW64\ntmarta.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик Windows NT MARTA 131795770645382726 0x70ca0000 45056 C:\Windows\SysWOW64\NETUTILS.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API Helpers DLL 131795770645382726 0x70cb0000 65536 C:\Windows\SysWOW64\WKSCLI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Workstation Service Client DLL 131795770645382726 0x71140000 77824 C:\Windows\SysWOW64\NETAPI32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API DLL 131795770645382726 0x72b90000 126976 C:\Windows\SysWOW64\dwmapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Интерфейс API диспетчера окон рабочего стола (Майкрософт) 131795770645382726 0x74110000 479232 C:\Windows\SysWOW64\uxtheme.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека тем UxTheme (Microsoft) 131795770645382726 0x74190000 110592 C:\Windows\SysWOW64\bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795770645382726 0x741f0000 143360 C:\Windows\SysWOW64\WINMMBASE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base Multimedia Extension API DLL 131795770645382726 0x74230000 147456 C:\Windows\SysWOW64\WINMM.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation MCI API DLL 131795770645382726 0x746e0000 32768 C:\Windows\SysWOW64\VERSION.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Version Checking and File Installation Libraries 131795770645382726 0x746f0000 106496 C:\Windows\SysWOW64\USERENV.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Userenv 131795770645382726 0x747d0000 40960 C:\Windows\SysWOW64\CRYPTBASE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base cryptographic API DLL 131795770645382726 0x747e0000 126976 C:\Windows\SysWOW64\SspiCli.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Security Support Provider Interface 131795770645382726 0x74800000 151552 C:\Windows\SysWOW64\IMM32.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Multi-User Windows IMM32 API Client DLL 131795770645382726 0x74910000 2170880 C:\Windows\SysWOW64\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795770645382726 0x74b30000 53248 C:\Windows\SysWOW64\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795770645382726 0x74b60000 790528 C:\Windows\SysWOW64\RPCRT4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795770645382726 0x74c30000 1417216 C:\Windows\SysWOW64\gdi32full.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation GDI Client DLL 131795770645382726 0x74d90000 24576 C:\Windows\SysWOW64\PSAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Process Status Helper 131795770645382726 0x74da0000 778240 C:\Windows\SysWOW64\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795770645382726 0x74e60000 557056 C:\Windows\SysWOW64\shcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795770645382726 0x74fd0000 405504 C:\Windows\SysWOW64\WS2_32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation 32-разрядная библиотека Windows Socket 2.0 131795770645382726 0x75040000 282624 C:\Windows\SysWOW64\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795770645382726 0x75090000 1265664 C:\Windows\SysWOW64\MSCTF.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Серверная библиотека MSCTF 131795770645382726 0x751e0000 1708032 C:\Windows\SysWOW64\KERNELBASE.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645382726 0x75390000 266240 C:\Windows\SysWOW64\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795770645382726 0x75560000 487424 C:\Windows\SysWOW64\ADVAPI32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795770645382726 0x756c0000 5693440 C:\Windows\SysWOW64\windows.storage.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API хранения Microsoft WinRT 131795770645382726 0x75c90000 286720 C:\Windows\SysWOW64\shlwapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека небольших программ оболочки 131795770645382726 0x75ce0000 20811776 C:\Windows\SysWOW64\SHELL32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Общая библиотека оболочки Windows 131795770645382726 0x774d0000 86016 C:\Windows\SysWOW64\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795770645382726 0x774f0000 61440 C:\Windows\SysWOW64\profapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Profile Basic API 131795770645382726 0x77560000 1437696 C:\Windows\SysWOW64\USER32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795770645382726 0x776c0000 368640 C:\Windows\SysWOW64\bcryptPrimitives.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation Windows Cryptographic Primitives Library 131795770645382726 0x77780000 503808 C:\Windows\SysWOW64\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645382726 0x77800000 606208 C:\Windows\SysWOW64\OLEAUT32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795770645382726 0x77ac0000 966656 C:\Windows\SysWOW64\ole32.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft OLE для Windows 131795770645382726 0x77bb0000 176128 C:\Windows\SysWOW64\GDI32.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation GDI Client DLL 131795770645382726 0x77cd0000 221184 C:\Windows\SysWOW64\cfgmgr32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Configuration Manager DLL 131795770645382726 0x77d20000 1585152 C:\Windows\SysWOW64\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 131795770645382726 0x7ffad0270000 1908736 C:\Windows\SYSTEM32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 59 4664 7744 57 00000000:0031f1da 131769081123844756 0 0 0 Обязательная метка\Низкий обязательный уровень WIN-0UOTFKKVN1S\User browser.exe C:\Users\User\AppData\Local\Yandex\YandexBrowser\Application\browser.exe "C:\Users\User\AppData\Local\Yandex\YandexBrowser\Application\browser.exe" --type=gpu-process --field-trial-handle=1292,9555382311565764851,7120838982649204725,131072 --user-id=32B2E0A1-3039-4C67-86BE-75A88EF21B54 --brand-id=yandex --partner-id=7924 --gpu-preferences=KAAAAAAAAACAAwCAAQAAAAAAAAAAAGAAEAAAAAAAAAAAAAAAAAAAACgAAAAEAAAAIAAAAAAAAAAoAAAAAAAAADAAAAAAAAAAOAAAAAAAAAAQAAAAAAAAAAAAAAAKAAAAEAAAAAAAAAAAAAAACwAAABAAAAAAAAAAAQAAAAoAAAAQAAAAAAAAAAEAAAALAAAA --user-id=32B2E0A1-3039-4C67-86BE-75A88EF21B54 --brand-id=yandex --partner-id=7924 --service-request-channel-token=CC1AC8FA9C8EFF1EEBC2375FE4F704C6 --mojo-platform-channel-handle=1588 --ignored=" --type=renderer " /prefetch:2 YANDEX LLC 18.6.1.770 Yandex 131795770645382836 0x10e0000 2519040 C:\Users\User\AppData\Local\Yandex\YandexBrowser\Application\browser.exe 18.6.1.770 YANDEX LLC Yandex 131795770645382836 0x58720000 59748352 C:\Users\User\AppData\Local\Yandex\YandexBrowser\Application\18.6.1.770\browser_child.dll 18.6.1.770 YANDEX LLC Yandex 131795770645382836 0x5c020000 335872 C:\Windows\System32\wow64.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation Win32 Emulation on NT64 131795770645382836 0x5c080000 487424 C:\Windows\System32\wow64win.dll 10.0.14393.1884 (rs1_release.171101-1233) Microsoft Corporation Wow64 Console and Win32 API Logging 131795770645382836 0x5c100000 40960 C:\Windows\System32\wow64cpu.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation AMD64 Wow64 CPU 131795770645382836 0x6ecb0000 2228224 C:\Windows\SysWOW64\mfh264enc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Media Foundation H264 Encoder 131795770645382836 0x6f250000 970752 C:\Windows\SysWOW64\ddraw.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft DirectDraw 131795770645382836 0x6f340000 3784704 C:\Windows\SysWOW64\D3DCompiler_47.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Direct3D HLSL Compiler 131795770645382836 0x6f6e0000 688128 C:\Windows\SysWOW64\msvproc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Media Foundation Video Processor 131795770645382836 0x6f790000 1085440 C:\Windows\SysWOW64\mfperfhelper.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation MFPerf DLL 131795770645382836 0x6f8a0000 2220032 C:\Windows\SysWOW64\msmpeg2vdec.dll 10.0.14393.953 (rs1_release_inmarket.170303-1614) Microsoft Corporation Microsoft DTV-DVD Video Decoder 131795770645382836 0x6fac0000 1130496 C:\Windows\SysWOW64\MFPlat.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Media Foundation Platform DLL 131795770645382836 0x6fbe0000 540672 C:\Windows\SysWOW64\mf.dll 10.0.14393.953 (rs1_release_inmarket.170303-1614) Microsoft Corporation Библиотека DLL Media Foundation 131795770645382836 0x6fd30000 139264 C:\Windows\SysWOW64\DEVOBJ.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Device Information Set DLL 131795770645382836 0x6ff20000 118784 C:\Users\User\AppData\Local\Yandex\YandexBrowser\Application\18.6.1.770\swiftshader\libegl.dll 4.0.0.3 SwiftShader libEGL 32-bit Dynamic Link Library 131795770645382836 0x6ff40000 126976 C:\Windows\SysWOW64\dxva2.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DirectX Video Acceleration 2.0 DLL 131795770645382836 0x6ff60000 172032 C:\Windows\SysWOW64\RTWorkQ.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL для WorkQueue реального времени 131795770645382836 0x70030000 593920 C:\Users\User\AppData\Local\Yandex\YandexBrowser\Application\18.6.1.770\browser_elf.dll 18.6.1.770 YANDEX LLC Yandex 131795770645382836 0x700d0000 434176 C:\Windows\SysWOW64\WINSPOOL.DRV 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Драйвер диспетчера очереди Windows 131795770645382836 0x70340000 536576 C:\Windows\SysWOW64\dxgi.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation DirectX Graphics Infrastructure 131795770645382836 0x703d0000 2056192 C:\Windows\SysWOW64\DWrite.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Службы Microsoft DirectX Typography 131795770645382836 0x705d0000 28672 C:\Windows\SysWOW64\DCIMAN32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DCI Manager 131795770645382836 0x707d0000 86016 C:\Windows\SysWOW64\SAMCLI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Security Accounts Manager Client DLL 131795770645382836 0x70a20000 94208 C:\Windows\SysWOW64\USP10.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Uniscribe Unicode script processor 131795770645382836 0x70ca0000 45056 C:\Windows\SysWOW64\NETUTILS.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API Helpers DLL 131795770645382836 0x70fd0000 1331200 C:\Windows\SysWOW64\dbghelp.dll 10.0.14321.1024 (rs1_release.160715-1616) Microsoft Windows Image Helper 131795770645382836 0x71140000 77824 C:\Windows\SysWOW64\NETAPI32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API DLL 131795770645382836 0x725e0000 2273280 C:\Windows\SysWOW64\iertutil.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служебная программа времени выполнения для Internet Explorer 131795770645382836 0x728e0000 1372160 C:\Windows\SysWOW64\PROPSYS.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Система страниц свойств (Майкрософт) 131795770645382836 0x72b90000 126976 C:\Windows\SysWOW64\dwmapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Интерфейс API диспетчера окон рабочего стола (Майкрософт) 131795770645382836 0x72cc0000 1658880 C:\Windows\SysWOW64\urlmon.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширения OLE32 для Win32 131795770645382836 0x73ac0000 81920 C:\Windows\SysWOW64\dhcpcsvc.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служба DHCP-клиента 131795770645382836 0x73ae0000 40960 C:\Windows\SysWOW64\Secur32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Security Support Provider Interface 131795770645382836 0x73f00000 192512 C:\Windows\SysWOW64\IPHLPAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API вспомогательного приложения IP 131795770645382836 0x74190000 110592 C:\Windows\SysWOW64\bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795770645382836 0x741b0000 77824 C:\Windows\SysWOW64\cryptsp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Cryptographic Service Provider API 131795770645382836 0x741f0000 143360 C:\Windows\SysWOW64\WINMMBASE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base Multimedia Extension API DLL 131795770645382836 0x74230000 147456 C:\Windows\SysWOW64\WINMM.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation MCI API DLL 131795770645382836 0x744d0000 2138112 C:\Windows\WinSxS\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.14393.953_none_89c2555adb023171\COMCTL32.dll 6.10 (rs1_release_inmarket.170303-1614) Microsoft Corporation Библиотека элементов управления взаимодействия с пользователем 131795770645382836 0x746e0000 32768 C:\Windows\SysWOW64\VERSION.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Version Checking and File Installation Libraries 131795770645382836 0x746f0000 106496 C:\Windows\SysWOW64\USERENV.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Userenv 131795770645382836 0x747d0000 40960 C:\Windows\SysWOW64\CRYPTBASE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base cryptographic API DLL 131795770645382836 0x747e0000 126976 C:\Windows\SysWOW64\SspiCli.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Security Support Provider Interface 131795770645382836 0x74800000 151552 C:\Windows\SysWOW64\IMM32.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Multi-User Windows IMM32 API Client DLL 131795770645382836 0x74910000 2170880 C:\Windows\SysWOW64\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795770645382836 0x74b30000 53248 C:\Windows\SysWOW64\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795770645382836 0x74b60000 790528 C:\Windows\SysWOW64\RPCRT4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795770645382836 0x74c30000 1417216 C:\Windows\SysWOW64\gdi32full.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation GDI Client DLL 131795770645382836 0x74d90000 24576 C:\Windows\SysWOW64\PSAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Process Status Helper 131795770645382836 0x74da0000 778240 C:\Windows\SysWOW64\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795770645382836 0x74e60000 557056 C:\Windows\SysWOW64\shcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795770645382836 0x74ef0000 540672 C:\Windows\SysWOW64\clbcatq.dll 2001.12.10941.16384 (rs1_release.160715-1616) Microsoft Corporation COM+ Configuration Catalog 131795770645382836 0x74f80000 278528 C:\Windows\SysWOW64\WINTRUST.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation Microsoft Trust Verification APIs 131795770645382836 0x74fd0000 405504 C:\Windows\SysWOW64\WS2_32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation 32-разрядная библиотека Windows Socket 2.0 131795770645382836 0x75040000 282624 C:\Windows\SysWOW64\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795770645382836 0x751d0000 57344 C:\Windows\SysWOW64\MSASN1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ASN.1 Runtime APIs 131795770645382836 0x751e0000 1708032 C:\Windows\SysWOW64\KERNELBASE.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645382836 0x75390000 266240 C:\Windows\SysWOW64\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795770645382836 0x753e0000 1560576 C:\Windows\SysWOW64\CRYPT32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API32 криптографии 131795770645382836 0x75560000 487424 C:\Windows\SysWOW64\ADVAPI32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795770645382836 0x756c0000 5693440 C:\Windows\SysWOW64\windows.storage.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API хранения Microsoft WinRT 131795770645382836 0x75c90000 286720 C:\Windows\SysWOW64\shlwapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека небольших программ оболочки 131795770645382836 0x75ce0000 20811776 C:\Windows\SysWOW64\SHELL32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Общая библиотека оболочки Windows 131795770645382836 0x770c0000 4239360 C:\Windows\SysWOW64\SETUPAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Setup API 131795770645382836 0x774d0000 86016 C:\Windows\SysWOW64\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795770645382836 0x774f0000 61440 C:\Windows\SysWOW64\profapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Profile Basic API 131795770645382836 0x77560000 1437696 C:\Windows\SysWOW64\USER32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795770645382836 0x776c0000 368640 C:\Windows\SysWOW64\bcryptPrimitives.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation Windows Cryptographic Primitives Library 131795770645382836 0x77780000 503808 C:\Windows\SysWOW64\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645382836 0x77800000 606208 C:\Windows\SysWOW64\OLEAUT32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795770645382836 0x77ac0000 966656 C:\Windows\SysWOW64\ole32.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft OLE для Windows 131795770645382836 0x77bb0000 176128 C:\Windows\SysWOW64\GDI32.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation GDI Client DLL 131795770645382836 0x77be0000 937984 C:\Windows\SysWOW64\COMDLG32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека общих диалоговых окон 131795770645382836 0x77cd0000 221184 C:\Windows\SysWOW64\cfgmgr32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Configuration Manager DLL 131795770645382836 0x77d10000 28672 C:\Windows\SysWOW64\NSI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation NSI User-mode interface DLL 131795770645382836 0x77d20000 1585152 C:\Windows\SysWOW64\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 131795770645382836 0x7ffad0270000 1908736 C:\Windows\SYSTEM32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 60 8968 7744 57 00000000:0031f1da 131769081206363215 0 0 0 Обязательная метка\Ненадежный обязательный уровень WIN-0UOTFKKVN1S\User browser.exe C:\Users\User\AppData\Local\Yandex\YandexBrowser\Application\browser.exe "C:\Users\User\AppData\Local\Yandex\YandexBrowser\Application\browser.exe" --type=renderer --enable-in-process-wmf-demuxer --field-trial-handle=1292,9555382311565764851,7120838982649204725,131072 --enable-ignition --service-pipe-token=183F52B8A6577BFD721F95F3A9641348 --lang=ru --user-id=32B2E0A1-3039-4C67-86BE-75A88EF21B54 --brand-id=yandex --partner-id=7924 --help-url=https://api.browser.yandex.ru/redirect/help/ --user-agent-info --translate-security-origin=https://translate.yandex.net --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --enable-instaserp --device-scale-factor=1 --num-raster-threads=1 --enable-compositor-image-animations --service-request-channel-token=183F52B8A6577BFD721F95F3A9641348 --renderer-client-id=4 --mojo-platform-channel-handle=2640 /prefetch:1 YANDEX LLC 18.6.1.770 Yandex 131795770645382953 0x10e0000 2519040 C:\Users\User\AppData\Local\Yandex\YandexBrowser\Application\browser.exe 18.6.1.770 YANDEX LLC Yandex 131795770645382953 0x58720000 59748352 C:\Users\User\AppData\Local\Yandex\YandexBrowser\Application\18.6.1.770\browser_child.dll 18.6.1.770 YANDEX LLC Yandex 131795770645382953 0x5c020000 335872 C:\Windows\System32\wow64.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation Win32 Emulation on NT64 131795770645382953 0x5c080000 487424 C:\Windows\System32\wow64win.dll 10.0.14393.1884 (rs1_release.171101-1233) Microsoft Corporation Wow64 Console and Win32 API Logging 131795770645382953 0x5c100000 40960 C:\Windows\System32\wow64cpu.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation AMD64 Wow64 CPU 131795770645382953 0x6e8b0000 1859584 C:\Windows\SysWOW64\mfmp4srcsnk.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL источника и приемника MPEG4 Media Foundation 131795770645382953 0x6ef30000 647168 C:\Windows\SysWOW64\evr.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека DLL средства отображения видео 131795770645382953 0x6efd0000 458752 C:\Windows\SysWOW64\msauddecmft.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Media Foundation Audio Decoders 131795770645382953 0x6f790000 1085440 C:\Windows\SysWOW64\mfperfhelper.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation MFPerf DLL 131795770645382953 0x6f8a0000 2220032 C:\Windows\SysWOW64\msmpeg2vdec.dll 10.0.14393.953 (rs1_release_inmarket.170303-1614) Microsoft Corporation Microsoft DTV-DVD Video Decoder 131795770645382953 0x6fac0000 1130496 C:\Windows\SysWOW64\mfplat.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Media Foundation Platform DLL 131795770645382953 0x6ff60000 172032 C:\Windows\SysWOW64\RTWorkQ.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL для WorkQueue реального времени 131795770645382953 0x70030000 593920 C:\Users\User\AppData\Local\Yandex\YandexBrowser\Application\18.6.1.770\browser_elf.dll 18.6.1.770 YANDEX LLC Yandex 131795770645382953 0x700d0000 434176 C:\Windows\SysWOW64\WINSPOOL.DRV 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Драйвер диспетчера очереди Windows 131795770645382953 0x70340000 536576 C:\Windows\SysWOW64\dxgi.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation DirectX Graphics Infrastructure 131795770645382953 0x703d0000 2056192 C:\Windows\SysWOW64\DWrite.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Службы Microsoft DirectX Typography 131795770645382953 0x707d0000 86016 C:\Windows\SysWOW64\SAMCLI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Security Accounts Manager Client DLL 131795770645382953 0x70a20000 94208 C:\Windows\SysWOW64\USP10.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Uniscribe Unicode script processor 131795770645382953 0x70ca0000 45056 C:\Windows\SysWOW64\NETUTILS.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API Helpers DLL 131795770645382953 0x70fd0000 1331200 C:\Windows\SysWOW64\dbghelp.dll 10.0.14321.1024 (rs1_release.160715-1616) Microsoft Windows Image Helper 131795770645382953 0x71140000 77824 C:\Windows\SysWOW64\NETAPI32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API DLL 131795770645382953 0x725e0000 2273280 C:\Windows\SysWOW64\iertutil.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служебная программа времени выполнения для Internet Explorer 131795770645382953 0x728e0000 1372160 C:\Windows\SysWOW64\PROPSYS.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Система страниц свойств (Майкрософт) 131795770645382953 0x72af0000 655360 C:\Windows\SysWOW64\WINHTTP.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Службы HTTP Windows 131795770645382953 0x72cc0000 1658880 C:\Windows\SysWOW64\urlmon.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширения OLE32 для Win32 131795770645382953 0x73ac0000 81920 C:\Windows\SysWOW64\dhcpcsvc.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служба DHCP-клиента 131795770645382953 0x73ae0000 40960 C:\Windows\SysWOW64\Secur32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Security Support Provider Interface 131795770645382953 0x73f00000 192512 C:\Windows\SysWOW64\IPHLPAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API вспомогательного приложения IP 131795770645382953 0x74190000 110592 C:\Windows\SysWOW64\bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795770645382953 0x741b0000 77824 C:\Windows\SysWOW64\cryptsp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Cryptographic Service Provider API 131795770645382953 0x741f0000 143360 C:\Windows\SysWOW64\WINMMBASE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base Multimedia Extension API DLL 131795770645382953 0x74230000 147456 C:\Windows\SysWOW64\WINMM.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation MCI API DLL 131795770645382953 0x744d0000 2138112 C:\Windows\WinSxS\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.14393.953_none_89c2555adb023171\COMCTL32.dll 6.10 (rs1_release_inmarket.170303-1614) Microsoft Corporation Библиотека элементов управления взаимодействия с пользователем 131795770645382953 0x746e0000 32768 C:\Windows\SysWOW64\VERSION.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Version Checking and File Installation Libraries 131795770645382953 0x746f0000 106496 C:\Windows\SysWOW64\USERENV.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Userenv 131795770645382953 0x747d0000 40960 C:\Windows\SysWOW64\CRYPTBASE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base cryptographic API DLL 131795770645382953 0x747e0000 126976 C:\Windows\SysWOW64\SspiCli.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Security Support Provider Interface 131795770645382953 0x74800000 151552 C:\Windows\SysWOW64\IMM32.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Multi-User Windows IMM32 API Client DLL 131795770645382953 0x74910000 2170880 C:\Windows\SysWOW64\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795770645382953 0x74b30000 53248 C:\Windows\SysWOW64\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795770645382953 0x74b60000 790528 C:\Windows\SysWOW64\RPCRT4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795770645382953 0x74c30000 1417216 C:\Windows\SysWOW64\gdi32full.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation GDI Client DLL 131795770645382953 0x74d90000 24576 C:\Windows\SysWOW64\PSAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Process Status Helper 131795770645382953 0x74da0000 778240 C:\Windows\SysWOW64\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795770645382953 0x74e60000 557056 C:\Windows\SysWOW64\shcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795770645382953 0x74f80000 278528 C:\Windows\SysWOW64\WINTRUST.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation Microsoft Trust Verification APIs 131795770645382953 0x74fd0000 405504 C:\Windows\SysWOW64\WS2_32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation 32-разрядная библиотека Windows Socket 2.0 131795770645382953 0x75040000 282624 C:\Windows\SysWOW64\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795770645382953 0x751d0000 57344 C:\Windows\SysWOW64\MSASN1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ASN.1 Runtime APIs 131795770645382953 0x751e0000 1708032 C:\Windows\SysWOW64\KERNELBASE.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645382953 0x75390000 266240 C:\Windows\SysWOW64\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795770645382953 0x753e0000 1560576 C:\Windows\SysWOW64\CRYPT32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API32 криптографии 131795770645382953 0x75560000 487424 C:\Windows\SysWOW64\ADVAPI32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795770645382953 0x756c0000 5693440 C:\Windows\SysWOW64\windows.storage.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API хранения Microsoft WinRT 131795770645382953 0x75c90000 286720 C:\Windows\SysWOW64\shlwapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека небольших программ оболочки 131795770645382953 0x75ce0000 20811776 C:\Windows\SysWOW64\SHELL32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Общая библиотека оболочки Windows 131795770645382953 0x774d0000 86016 C:\Windows\SysWOW64\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795770645382953 0x774f0000 61440 C:\Windows\SysWOW64\profapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Profile Basic API 131795770645382953 0x77560000 1437696 C:\Windows\SysWOW64\USER32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795770645382953 0x776c0000 368640 C:\Windows\SysWOW64\bcryptPrimitives.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation Windows Cryptographic Primitives Library 131795770645382953 0x77780000 503808 C:\Windows\SysWOW64\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645382953 0x77800000 606208 C:\Windows\SysWOW64\OLEAUT32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795770645382953 0x77ac0000 966656 C:\Windows\SysWOW64\ole32.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft OLE для Windows 131795770645382953 0x77bb0000 176128 C:\Windows\SysWOW64\GDI32.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation GDI Client DLL 131795770645382953 0x77be0000 937984 C:\Windows\SysWOW64\COMDLG32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека общих диалоговых окон 131795770645382953 0x77cd0000 221184 C:\Windows\SysWOW64\cfgmgr32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Configuration Manager DLL 131795770645382953 0x77d10000 28672 C:\Windows\SysWOW64\NSI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation NSI User-mode interface DLL 131795770645382953 0x77d20000 1585152 C:\Windows\SysWOW64\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 131795770645382953 0x7ffad0270000 1908736 C:\Windows\SYSTEM32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 61 4992 7744 57 00000000:0031f1da 131769081244357280 0 0 0 Обязательная метка\Ненадежный обязательный уровень WIN-0UOTFKKVN1S\User browser.exe C:\Users\User\AppData\Local\Yandex\YandexBrowser\Application\browser.exe "C:\Users\User\AppData\Local\Yandex\YandexBrowser\Application\browser.exe" --type=renderer --enable-in-process-wmf-demuxer --field-trial-handle=1292,9555382311565764851,7120838982649204725,131072 --enable-ignition --service-pipe-token=7E8A8199C364F4B0114F2A163B757250 --lang=ru --user-id=32B2E0A1-3039-4C67-86BE-75A88EF21B54 --brand-id=yandex --partner-id=7924 --help-url=https://api.browser.yandex.ru/redirect/help/ --user-agent-info --translate-security-origin=https://translate.yandex.net --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --enable-instaserp --device-scale-factor=1 --num-raster-threads=1 --enable-compositor-image-animations --service-request-channel-token=7E8A8199C364F4B0114F2A163B757250 --renderer-client-id=10 --mojo-platform-channel-handle=3904 /prefetch:1 YANDEX LLC 18.6.1.770 Yandex 131795770645383069 0x10e0000 2519040 C:\Users\User\AppData\Local\Yandex\YandexBrowser\Application\browser.exe 18.6.1.770 YANDEX LLC Yandex 131795770645383069 0x58720000 59748352 C:\Users\User\AppData\Local\Yandex\YandexBrowser\Application\18.6.1.770\browser_child.dll 18.6.1.770 YANDEX LLC Yandex 131795770645383069 0x5c020000 335872 C:\Windows\System32\wow64.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation Win32 Emulation on NT64 131795770645383069 0x5c080000 487424 C:\Windows\System32\wow64win.dll 10.0.14393.1884 (rs1_release.171101-1233) Microsoft Corporation Wow64 Console and Win32 API Logging 131795770645383069 0x5c100000 40960 C:\Windows\System32\wow64cpu.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation AMD64 Wow64 CPU 131795770645383069 0x6e8b0000 1859584 C:\Windows\SysWOW64\mfmp4srcsnk.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL источника и приемника MPEG4 Media Foundation 131795770645383069 0x6ef30000 647168 C:\Windows\SysWOW64\evr.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека DLL средства отображения видео 131795770645383069 0x6efd0000 458752 C:\Windows\SysWOW64\msauddecmft.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Media Foundation Audio Decoders 131795770645383069 0x6f790000 1085440 C:\Windows\SysWOW64\mfperfhelper.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation MFPerf DLL 131795770645383069 0x6f8a0000 2220032 C:\Windows\SysWOW64\msmpeg2vdec.dll 10.0.14393.953 (rs1_release_inmarket.170303-1614) Microsoft Corporation Microsoft DTV-DVD Video Decoder 131795770645383069 0x6fac0000 1130496 C:\Windows\SysWOW64\mfplat.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Media Foundation Platform DLL 131795770645383069 0x6ff60000 172032 C:\Windows\SysWOW64\RTWorkQ.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL для WorkQueue реального времени 131795770645383069 0x70030000 593920 C:\Users\User\AppData\Local\Yandex\YandexBrowser\Application\18.6.1.770\browser_elf.dll 18.6.1.770 YANDEX LLC Yandex 131795770645383069 0x700d0000 434176 C:\Windows\SysWOW64\WINSPOOL.DRV 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Драйвер диспетчера очереди Windows 131795770645383069 0x70340000 536576 C:\Windows\SysWOW64\dxgi.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation DirectX Graphics Infrastructure 131795770645383069 0x703d0000 2056192 C:\Windows\SysWOW64\DWrite.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Службы Microsoft DirectX Typography 131795770645383069 0x707d0000 86016 C:\Windows\SysWOW64\SAMCLI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Security Accounts Manager Client DLL 131795770645383069 0x70a20000 94208 C:\Windows\SysWOW64\USP10.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Uniscribe Unicode script processor 131795770645383069 0x70ca0000 45056 C:\Windows\SysWOW64\NETUTILS.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API Helpers DLL 131795770645383069 0x70fd0000 1331200 C:\Windows\SysWOW64\dbghelp.dll 10.0.14321.1024 (rs1_release.160715-1616) Microsoft Windows Image Helper 131795770645383069 0x71140000 77824 C:\Windows\SysWOW64\NETAPI32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API DLL 131795770645383069 0x725e0000 2273280 C:\Windows\SysWOW64\iertutil.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служебная программа времени выполнения для Internet Explorer 131795770645383069 0x728e0000 1372160 C:\Windows\SysWOW64\PROPSYS.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Система страниц свойств (Майкрософт) 131795770645383069 0x72af0000 655360 C:\Windows\SysWOW64\WINHTTP.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Службы HTTP Windows 131795770645383069 0x72cc0000 1658880 C:\Windows\SysWOW64\urlmon.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширения OLE32 для Win32 131795770645383069 0x73ac0000 81920 C:\Windows\SysWOW64\dhcpcsvc.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служба DHCP-клиента 131795770645383069 0x73ae0000 40960 C:\Windows\SysWOW64\Secur32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Security Support Provider Interface 131795770645383069 0x73f00000 192512 C:\Windows\SysWOW64\IPHLPAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API вспомогательного приложения IP 131795770645383069 0x74190000 110592 C:\Windows\SysWOW64\bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795770645383069 0x741b0000 77824 C:\Windows\SysWOW64\cryptsp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Cryptographic Service Provider API 131795770645383069 0x741f0000 143360 C:\Windows\SysWOW64\WINMMBASE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base Multimedia Extension API DLL 131795770645383069 0x74230000 147456 C:\Windows\SysWOW64\WINMM.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation MCI API DLL 131795770645383069 0x744d0000 2138112 C:\Windows\WinSxS\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.14393.953_none_89c2555adb023171\COMCTL32.dll 6.10 (rs1_release_inmarket.170303-1614) Microsoft Corporation Библиотека элементов управления взаимодействия с пользователем 131795770645383069 0x746e0000 32768 C:\Windows\SysWOW64\VERSION.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Version Checking and File Installation Libraries 131795770645383069 0x746f0000 106496 C:\Windows\SysWOW64\USERENV.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Userenv 131795770645383069 0x747d0000 40960 C:\Windows\SysWOW64\CRYPTBASE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base cryptographic API DLL 131795770645383069 0x747e0000 126976 C:\Windows\SysWOW64\SspiCli.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Security Support Provider Interface 131795770645383069 0x74800000 151552 C:\Windows\SysWOW64\IMM32.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Multi-User Windows IMM32 API Client DLL 131795770645383069 0x74910000 2170880 C:\Windows\SysWOW64\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795770645383069 0x74b30000 53248 C:\Windows\SysWOW64\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795770645383069 0x74b60000 790528 C:\Windows\SysWOW64\RPCRT4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795770645383069 0x74c30000 1417216 C:\Windows\SysWOW64\gdi32full.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation GDI Client DLL 131795770645383069 0x74d90000 24576 C:\Windows\SysWOW64\PSAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Process Status Helper 131795770645383069 0x74da0000 778240 C:\Windows\SysWOW64\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795770645383069 0x74e60000 557056 C:\Windows\SysWOW64\shcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795770645383069 0x74f80000 278528 C:\Windows\SysWOW64\WINTRUST.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation Microsoft Trust Verification APIs 131795770645383069 0x74fd0000 405504 C:\Windows\SysWOW64\WS2_32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation 32-разрядная библиотека Windows Socket 2.0 131795770645383069 0x75040000 282624 C:\Windows\SysWOW64\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795770645383069 0x751d0000 57344 C:\Windows\SysWOW64\MSASN1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ASN.1 Runtime APIs 131795770645383069 0x751e0000 1708032 C:\Windows\SysWOW64\KERNELBASE.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645383069 0x75390000 266240 C:\Windows\SysWOW64\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795770645383069 0x753e0000 1560576 C:\Windows\SysWOW64\CRYPT32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API32 криптографии 131795770645383069 0x75560000 487424 C:\Windows\SysWOW64\ADVAPI32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795770645383069 0x756c0000 5693440 C:\Windows\SysWOW64\windows.storage.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API хранения Microsoft WinRT 131795770645383069 0x75c90000 286720 C:\Windows\SysWOW64\shlwapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека небольших программ оболочки 131795770645383069 0x75ce0000 20811776 C:\Windows\SysWOW64\SHELL32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Общая библиотека оболочки Windows 131795770645383069 0x774d0000 86016 C:\Windows\SysWOW64\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795770645383069 0x774f0000 61440 C:\Windows\SysWOW64\profapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Profile Basic API 131795770645383069 0x77560000 1437696 C:\Windows\SysWOW64\USER32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795770645383069 0x776c0000 368640 C:\Windows\SysWOW64\bcryptPrimitives.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation Windows Cryptographic Primitives Library 131795770645383069 0x77780000 503808 C:\Windows\SysWOW64\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645383069 0x77800000 606208 C:\Windows\SysWOW64\OLEAUT32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795770645383069 0x77ac0000 966656 C:\Windows\SysWOW64\ole32.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft OLE для Windows 131795770645383069 0x77bb0000 176128 C:\Windows\SysWOW64\GDI32.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation GDI Client DLL 131795770645383069 0x77be0000 937984 C:\Windows\SysWOW64\COMDLG32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека общих диалоговых окон 131795770645383069 0x77cd0000 221184 C:\Windows\SysWOW64\cfgmgr32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Configuration Manager DLL 131795770645383069 0x77d10000 28672 C:\Windows\SysWOW64\NSI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation NSI User-mode interface DLL 131795770645383069 0x77d20000 1585152 C:\Windows\SysWOW64\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 131795770645383069 0x7ffad0270000 1908736 C:\Windows\SYSTEM32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 63 9504 664 6 00000000:0031f1da 131794956266598229 0 0 1 Обязательная метка\Средний обязательный уровень WIN-0UOTFKKVN1S\User InstallAgent.exe C:\Windows\System32\InstallAgent.exe C:\Windows\System32\InstallAgent.exe -Embedding Microsoft Corporation 10.0.14393.0 (rs1_release.160715-1616) InstallAgent 131795770645383260 0x7ff63d380000 229376 C:\Windows\System32\InstallAgent.exe 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation InstallAgent 131795770645383260 0x7ffabea60000 180224 C:\Windows\System32\VEStoreEventHandlers.dll 10.0.14393.479 (rs1_release.161110-2025) Microsoft Corporation TDL Store Event Handlers 131795770645383260 0x7ffac0bf0000 3559424 C:\Windows\System32\ActXPrxy.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation ActiveX Interface Marshaling Library 131795770645383260 0x7ffac4000000 274432 C:\Windows\SYSTEM32\policymanager.dll 10.0.14393.2035 (rs1_release_inmarket.180110-1910) Microsoft Corporation Policy Manager DLL 131795770645383260 0x7ffac4450000 86016 C:\Windows\SYSTEM32\usermgrcli.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation UserMgr API DLL 131795770645383260 0x7ffac4ad0000 61440 C:\Windows\System32\EAMProgressHandler.dll 10.0.14393.479 (rs1_release.161110-2025) Microsoft Corporation EAMProgressHandler 131795770645383260 0x7ffac4b90000 774144 C:\Windows\System32\StoreAgent.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation StoreAgent 131795770645383260 0x7ffac76a0000 159744 C:\Windows\System32\sppc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Software Licensing Client DLL 131795770645383260 0x7ffac7990000 155648 C:\Windows\System32\SLC.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Software Licensing Client DLL 131795770645383260 0x7ffacb140000 593920 C:\Windows\System32\msvcp110_win.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Microsoft® STL110 C++ Runtime Library 131795770645383260 0x7ffacc150000 94208 C:\Windows\System32\CRYPTSP.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Cryptographic Service Provider API 131795770645383260 0x7ffacc520000 622592 C:\Windows\SYSTEM32\sxs.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Fusion 2.5 131795770645383260 0x7ffacc620000 176128 C:\Windows\System32\Bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795770645383260 0x7ffacc6e0000 61440 C:\Windows\System32\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795770645383260 0x7ffacc6f0000 311296 C:\Windows\System32\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795770645383260 0x7ffacc740000 81920 C:\Windows\System32\profapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Profile Basic API 131795770645383260 0x7ffacc8f0000 1003520 C:\Windows\System32\ucrtbase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645383260 0x7ffacc9f0000 434176 C:\Windows\System32\bcryptPrimitives.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Cryptographic Primitives Library 131795770645383260 0x7ffacca60000 122880 C:\Windows\System32\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795770645383260 0x7ffaccae0000 692224 C:\Windows\System32\shcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795770645383260 0x7ffaccb90000 7180288 C:\Windows\System32\windows.storage.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API хранения Microsoft WinRT 131795770645383260 0x7ffacd270000 2215936 C:\Windows\System32\KERNELBASE.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645383260 0x7ffacd710000 638976 C:\Windows\System32\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645383260 0x7ffaced20000 782336 C:\Windows\System32\OLEAUT32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795770645383260 0x7ffacee50000 1183744 C:\Windows\System32\RPCRT4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795770645383260 0x7ffacef90000 647168 C:\Windows\System32\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795770645383260 0x7ffacf030000 651264 C:\Windows\System32\clbcatq.dll 2001.12.10941.16384 (rs1_release.160715-1616) Microsoft Corporation COM+ Configuration Catalog 131795770645383260 0x7ffacf0d0000 704512 C:\Windows\System32\KERNEL32.DLL 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645383260 0x7ffacf770000 212992 C:\Windows\System32\GDI32.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation GDI Client DLL 131795770645383260 0x7ffacf890000 188416 C:\Windows\System32\IMM32.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Multi-User Windows IMM32 API Client DLL 131795770645383260 0x7ffacf8c0000 1462272 C:\Windows\System32\user32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795770645383260 0x7ffacfb30000 2916352 C:\Windows\System32\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795770645383260 0x7ffacfe20000 663552 C:\Windows\System32\advapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795770645383260 0x7ffad01b0000 335872 C:\Windows\System32\shlwapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека небольших программ оболочки 131795770645383260 0x7ffad0210000 364544 C:\Windows\System32\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795770645383260 0x7ffad0270000 1908736 C:\Windows\SYSTEM32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 64 8768 664 6 00000000:0031f1da 131794956321853179 0 0 1 Обязательная метка\Средний обязательный уровень WIN-0UOTFKKVN1S\User InstallAgentUserBroker.exe C:\Windows\System32\InstallAgentUserBroker.exe C:\Windows\System32\InstallAgentUserBroker.exe -Embedding Microsoft Corporation 10.0.14393.2156 (rs1_release_inmarket.180321-1733) InstallAgentUserBroker 131795770645383355 0x22530450000 12288 C:\Windows\SYSTEM32\sfc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows File Protection 131795770645383355 0x7ff74f890000 278528 C:\Windows\System32\InstallAgentUserBroker.exe 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation InstallAgentUserBroker 131795770645383355 0x7ffabafc0000 700416 C:\Windows\SYSTEM32\wer.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека сообщений об ошибках Windows 131795770645383355 0x7ffabd8e0000 704512 C:\Windows\WinSxS\amd64_microsoft.windows.common-controls_6595b64144ccf1df_5.82.14393.447_none_0d5aa7fbb6d35646\Comctl32.dll 6.10 (rs1_release_inmarket.170303-1614) Microsoft Corporation Библиотека элементов управления взаимодействия с пользователем 131795770645383355 0x7ffabef80000 69632 C:\Windows\SYSTEM32\sfc_os.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows File Protection 131795770645383355 0x7ffabefd0000 258048 C:\Windows\System32\AEPIC.dll 10.0.17060.1029 (WinBuild.160101.0800) Microsoft Corporation Application Experience Program Cache 131795770645383355 0x7ffabf1d0000 192512 C:\Windows\System32\cryptnet.dll 10.0.14393.2035 (rs1_release_inmarket.180110-1910) Microsoft Corporation Crypto Network Related API 131795770645383355 0x7ffabf5d0000 2924544 C:\Windows\System32\WININET.dll 11.00.14393.447 (rs1_release_inmarket.161102-0100) Microsoft Corporation Расширения Интернета для Win32 131795770645383355 0x7ffabff60000 135168 C:\Windows\system32\ncryptsslp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft SChannel Provider 131795770645383355 0x7ffac0ad0000 86016 C:\Windows\SYSTEM32\mskeyprotect.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик защиты ключей (Майкрософт) 131795770645383355 0x7ffac34e0000 1843200 C:\Windows\System32\urlmon.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширения OLE32 для Win32 131795770645383355 0x7ffac3cb0000 2772992 C:\Windows\System32\iertutil.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служебная программа времени выполнения для Internet Explorer 131795770645383355 0x7ffac4000000 274432 C:\Windows\SYSTEM32\policymanager.dll 10.0.14393.2035 (rs1_release_inmarket.180110-1910) Microsoft Corporation Policy Manager DLL 131795770645383355 0x7ffac4b90000 774144 C:\Windows\System32\StoreAgent.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation StoreAgent 131795770645383355 0x7ffac6610000 40960 C:\Windows\System32\rasadhlp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Remote Access AutoDial Helper 131795770645383355 0x7ffac66a0000 86016 C:\Windows\SYSTEM32\ondemandconnroutehelper.dll 10.0.14393.351 (rs1_release_inmarket.161014-1755) Microsoft Corporation On Demand Connctiond Route Helper 131795770645383355 0x7ffac69c0000 839680 C:\Windows\SYSTEM32\winhttp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Службы HTTP Windows 131795770645383355 0x7ffac76a0000 159744 C:\Windows\System32\sppc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Software Licensing Client DLL 131795770645383355 0x7ffac7990000 155648 C:\Windows\System32\SLC.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Software Licensing Client DLL 131795770645383355 0x7ffac83d0000 106496 C:\Windows\SYSTEM32\dhcpcsvc.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служба DHCP-клиента 131795770645383355 0x7ffac83f0000 90112 C:\Windows\SYSTEM32\dhcpcsvc6.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиент DHCPv6 131795770645383355 0x7ffac8420000 434176 C:\Windows\System32\fwpuclnt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API пользовательского режима FWP/IPsec 131795770645383355 0x7ffac8810000 45056 C:\Windows\SYSTEM32\WINNSI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Network Store Information RPC interface 131795770645383355 0x7ffacb140000 593920 C:\Windows\System32\msvcp110_win.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Microsoft® STL110 C++ Runtime Library 131795770645383355 0x7ffacb420000 204800 C:\Windows\SYSTEM32\ntmarta.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик Windows NT MARTA 131795770645383355 0x7ffacbaf0000 495616 C:\Windows\system32\schannel.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик безопасности TLS/SSL 131795770645383355 0x7ffacbbb0000 208896 C:\Windows\system32\rsaenh.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Enhanced Cryptographic Provider 131795770645383355 0x7ffacbbf0000 40960 C:\Windows\System32\DPAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Data Protection API 131795770645383355 0x7ffacbd30000 229376 C:\Windows\SYSTEM32\IPHLPAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API вспомогательного приложения IP 131795770645383355 0x7ffacbd70000 659456 C:\Windows\System32\DNSAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Динамическая библиотека API DNS-клиента 131795770645383355 0x7ffacbfb0000 376832 C:\Windows\system32\mswsock.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширение поставщика службы API Microsoft Windows Sockets 2.0 131795770645383355 0x7ffacc150000 94208 C:\Windows\System32\CRYPTSP.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Cryptographic Service Provider API 131795770645383355 0x7ffacc170000 45056 C:\Windows\System32\CRYPTBASE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base cryptographic API DLL 131795770645383355 0x7ffacc1f0000 241664 C:\Windows\SYSTEM32\NTASN1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft ASN.1 API 131795770645383355 0x7ffacc230000 155648 C:\Windows\SYSTEM32\ncrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Маршрутизатор Windows NCrypt 131795770645383355 0x7ffacc350000 180224 C:\Windows\System32\SspiCli.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Security Support Provider Interface 131795770645383355 0x7ffacc520000 622592 C:\Windows\SYSTEM32\sxs.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Fusion 2.5 131795770645383355 0x7ffacc620000 176128 C:\Windows\System32\bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795770645383355 0x7ffacc6e0000 61440 C:\Windows\System32\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795770645383355 0x7ffacc6f0000 311296 C:\Windows\System32\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795770645383355 0x7ffacc740000 81920 C:\Windows\System32\profapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Profile Basic API 131795770645383355 0x7ffacc760000 65536 C:\Windows\System32\MSASN1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ASN.1 Runtime APIs 131795770645383355 0x7ffacc8f0000 1003520 C:\Windows\System32\ucrtbase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645383355 0x7ffacc9f0000 434176 C:\Windows\System32\bcryptPrimitives.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Cryptographic Primitives Library 131795770645383355 0x7ffacca60000 122880 C:\Windows\System32\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795770645383355 0x7ffacca80000 348160 C:\Windows\System32\WINTRUST.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation Microsoft Trust Verification APIs 131795770645383355 0x7ffaccae0000 692224 C:\Windows\System32\shcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795770645383355 0x7ffaccb90000 7180288 C:\Windows\System32\windows.storage.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API хранения Microsoft WinRT 131795770645383355 0x7ffacd270000 2215936 C:\Windows\System32\KERNELBASE.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645383355 0x7ffacd490000 1871872 C:\Windows\System32\CRYPT32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API32 криптографии 131795770645383355 0x7ffacd710000 638976 C:\Windows\System32\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645383355 0x7ffacd7b0000 270336 C:\Windows\System32\cfgmgr32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Configuration Manager DLL 131795770645383355 0x7ffacd810000 22056960 C:\Windows\System32\SHELL32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Общая библиотека оболочки Windows 131795770645383355 0x7ffaced20000 782336 C:\Windows\System32\OLEAUT32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795770645383355 0x7ffacee50000 1183744 C:\Windows\System32\RPCRT4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795770645383355 0x7ffacef80000 32768 C:\Windows\System32\NSI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation NSI User-mode interface DLL 131795770645383355 0x7ffacef90000 647168 C:\Windows\System32\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795770645383355 0x7ffacf030000 651264 C:\Windows\System32\clbcatq.dll 2001.12.10941.16384 (rs1_release.160715-1616) Microsoft Corporation COM+ Configuration Catalog 131795770645383355 0x7ffacf0d0000 704512 C:\Windows\System32\KERNEL32.DLL 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645383355 0x7ffacf770000 212992 C:\Windows\System32\GDI32.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation GDI Client DLL 131795770645383355 0x7ffacf820000 434176 C:\Windows\System32\WS2_32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation 32-разрядная библиотека Windows Socket 2.0 131795770645383355 0x7ffacf890000 188416 C:\Windows\System32\IMM32.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Multi-User Windows IMM32 API Client DLL 131795770645383355 0x7ffacf8c0000 1462272 C:\Windows\System32\user32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795770645383355 0x7ffacfb30000 2916352 C:\Windows\System32\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795770645383355 0x7ffacfe20000 663552 C:\Windows\System32\advapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795770645383355 0x7ffad0070000 1277952 C:\Windows\System32\OLE32.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft OLE для Windows 131795770645383355 0x7ffad01b0000 335872 C:\Windows\System32\SHLWAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека небольших программ оболочки 131795770645383355 0x7ffad0210000 364544 C:\Windows\System32\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795770645383355 0x7ffad0270000 1908736 C:\Windows\SYSTEM32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 65 9636 664 6 00000000:0031f1da 131794956424585250 0 0 1 Обязательная метка\Средний обязательный уровень WIN-0UOTFKKVN1S\User SystemSettingsBroker.exe C:\Windows\System32\SystemSettingsBroker.exe C:\Windows\System32\SystemSettingsBroker.exe -Embedding Microsoft Corporation 10.0.14393.0 (rs1_release.160715-1616) System Settings Broker 131795770645383490 0x7ff6015f0000 196608 C:\Windows\System32\SystemSettingsBroker.exe 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation System Settings Broker 131795770645383490 0x7ffac1c40000 94208 C:\Windows\System32\SystemSettings.DataModel.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SystemSettings.Datamodel private API 131795770645383490 0x7ffacc6e0000 61440 C:\Windows\System32\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795770645383490 0x7ffacc8f0000 1003520 C:\Windows\System32\ucrtbase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645383490 0x7ffacc9f0000 434176 C:\Windows\System32\bcryptPrimitives.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Cryptographic Primitives Library 131795770645383490 0x7ffacd270000 2215936 C:\Windows\System32\KERNELBASE.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645383490 0x7ffacee50000 1183744 C:\Windows\System32\RPCRT4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795770645383490 0x7ffacef90000 647168 C:\Windows\System32\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795770645383490 0x7ffacf030000 651264 C:\Windows\System32\clbcatq.dll 2001.12.10941.16384 (rs1_release.160715-1616) Microsoft Corporation COM+ Configuration Catalog 131795770645383490 0x7ffacf0d0000 704512 C:\Windows\System32\KERNEL32.DLL 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645383490 0x7ffacfb30000 2916352 C:\Windows\System32\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795770645383490 0x7ffad0210000 364544 C:\Windows\System32\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795770645383490 0x7ffad0270000 1908736 C:\Windows\SYSTEM32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 66 10592 664 6 00000000:0031f1da 131794956519902643 0 0 1 Обязательная метка\Средний обязательный уровень WIN-0UOTFKKVN1S\User SystemSettings.exe C:\Windows\ImmersiveControlPanel\SystemSettings.exe "C:\Windows\ImmersiveControlPanel\SystemSettings.exe" -ServerName:microsoft.windows.immersivecontrolpanel Microsoft Corporation 10.0.14393.82 (rs1_release.160805-1735) Параметры 131795770645383654 0x18099ef0000 12288 C:\Windows\SYSTEM32\WMI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation WMI DC and DP functionality 131795770645383654 0x7ff7937a0000 98304 C:\Windows\ImmersiveControlPanel\SystemSettings.exe 10.0.14393.82 (rs1_release.160805-1735) Microsoft Corporation Параметры 131795770645383654 0x7ffaabce0000 2535424 C:\Windows\System32\NetworkMobileSettings.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation System settings network mobile handlers group 131795770645383654 0x7ffaac0c0000 1396736 C:\Windows\System32\Windows.UI.Xaml.Phone.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows UI XAML Phone API 131795770645383654 0x7ffaac220000 4952064 C:\Windows\ImmersiveControlPanel\SystemSettings.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation System Settings Application 131795770645383654 0x7ffaadd90000 258048 C:\Windows\System32\NetworkDesktopSettings.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Группа обработчиков системных параметров сетевого рабочего стола 131795770645383654 0x7ffaaf920000 905216 C:\Windows\ImmersiveControlPanel\SystemSettingsViewModel.Desktop.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation System Settings View Model Desktop 131795770645383654 0x7ffab0970000 262144 C:\Windows\system32\credprovhost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Хост инфраструктуры поставщика учетных данных 131795770645383654 0x7ffab0a70000 454656 C:\Windows\System32\fhcfg.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Диспетчер конфигураций истории файлов 131795770645383654 0x7ffab1d80000 262144 C:\Windows\SYSTEM32\eappcfg.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Eap Peer Config 131795770645383654 0x7ffab5520000 3231744 C:\Windows\SYSTEM32\msftedit.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Элемент управления "Поле ввода форматированного текста", версия 8.5 131795770645383654 0x7ffab5b40000 2527232 C:\Windows\SYSTEM32\dwrite.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Службы Microsoft DirectX Typography 131795770645383654 0x7ffab6710000 17231872 C:\Windows\System32\Windows.UI.Xaml.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows.UI.Xaml dll 131795770645383654 0x7ffab7d80000 753664 C:\Windows\SYSTEM32\RASAPI32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API удаленного доступа 131795770645383654 0x7ffab8190000 9191424 C:\Windows\system32\twinui.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation TWINUI 131795770645383654 0x7ffab91d0000 69632 C:\Windows\ImmersiveControlPanel\Telemetry.Desktop.dll 10.0.14393.953 (rs1_release_inmarket.170303-1614) Microsoft Corporation System Settings Telemetry Desktop 131795770645383654 0x7ffab9a40000 299008 C:\Windows\System32\RasMediaManager.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Ras Media Manager DLL 131795770645383654 0x7ffaba950000 188416 C:\Windows\System32\EthernetMediaManager.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Ethernet Media Manager DLL 131795770645383654 0x7ffabaa50000 339968 C:\Windows\System32\NetworkUXBroker.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation NetworkUXBroker DLL 131795770645383654 0x7ffabae40000 110592 C:\Windows\SYSTEM32\capauthz.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API авторизации возможностей 131795770645383654 0x7ffabaf70000 270336 C:\Windows\SYSTEM32\edputil.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служебная программа EDP 131795770645383654 0x7ffabb3c0000 450560 C:\Windows\SYSTEM32\TextInputFramework.dll 10.0.14393.2189 (rs1_release.180329-1711) Microsoft Corporation "TextInputFramework.DYNLINK" 131795770645383654 0x7ffabb430000 65536 C:\Windows\SYSTEM32\pcacli.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Program Compatibility Assistant Client Module 131795770645383654 0x7ffabb490000 512000 C:\Windows\system32\twinapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation twinapi 131795770645383654 0x7ffabcc60000 1122304 C:\Windows\System32\MiracastReceiver.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API приемника Miracast 131795770645383654 0x7ffabcf30000 110592 C:\Windows\SYSTEM32\MPR.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека маршрутизации для нескольких служб доступа 131795770645383654 0x7ffabd4a0000 1613824 C:\Windows\System32\Windows.Globalization.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Globalization 131795770645383654 0x7ffabe6e0000 561152 C:\Windows\system32\directmanipulation.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Direct Manipulation Component 131795770645383654 0x7ffabe9c0000 188416 C:\Windows\SYSTEM32\globinputhost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Globalization Extension API for Input 131795770645383654 0x7ffabeb20000 385024 C:\Windows\System32\Windows.ApplicationModel.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows ApplicationModel API Server 131795770645383654 0x7ffabfd80000 86016 C:\Windows\System32\threadpoolwinrt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows WinRT Threadpool 131795770645383654 0x7ffabff10000 155648 C:\Windows\SYSTEM32\SRVCLI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Server Service Client DLL 131795770645383654 0x7ffac00c0000 282624 C:\Windows\SYSTEM32\windows.ui.core.textinput.dll 10.0.14393.2189 (rs1_release.180329-1711) Microsoft Corporation Windows.UI.Core.TextInput dll 131795770645383654 0x7ffac01e0000 397312 C:\Windows\SYSTEM32\wincorlib.DLL 10.0.14393.576 (rs1_release_inmarket.161208-2252) Microsoft Corporation Microsoft Windows ® WinRT core library 131795770645383654 0x7ffac0470000 1478656 C:\Windows\SYSTEM32\MFPlat.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Media Foundation Platform DLL 131795770645383654 0x7ffac0bf0000 3559424 C:\Windows\System32\ActXPrxy.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation ActiveX Interface Marshaling Library 131795770645383654 0x7ffac1470000 704512 C:\Windows\System32\ieproxy.dll 11.00.14393.2007 (rs1_release.171231-1800) Microsoft Corporation IE ActiveX Interface Marshaling Library 131795770645383654 0x7ffac1e50000 188416 C:\Windows\SYSTEM32\RTWorkQ.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL для WorkQueue реального времени 131795770645383654 0x7ffac20d0000 110592 C:\Windows\System32\rmclient.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Resource Manager Client 131795770645383654 0x7ffac23c0000 331776 C:\Windows\System32\OneCoreCommonProxyStub.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation OneCore Common Proxy Stub 131795770645383654 0x7ffac2700000 98304 C:\Windows\SYSTEM32\NETAPI32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API DLL 131795770645383654 0x7ffac2990000 385024 C:\Windows\SYSTEM32\NInput.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Pen and Touch Input Component 131795770645383654 0x7ffac2a20000 81920 C:\Windows\SYSTEM32\rtutils.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Routing Utilities 131795770645383654 0x7ffac2bf0000 65536 C:\Windows\SYSTEM32\EFSUTIL.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation EFS Utility Library 131795770645383654 0x7ffac34e0000 1843200 C:\Windows\SYSTEM32\urlmon.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширения OLE32 для Win32 131795770645383654 0x7ffac3cb0000 2772992 C:\Windows\SYSTEM32\iertutil.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служебная программа времени выполнения для Internet Explorer 131795770645383654 0x7ffac4000000 274432 C:\Windows\SYSTEM32\policymanager.dll 10.0.14393.2035 (rs1_release_inmarket.180110-1910) Microsoft Corporation Policy Manager DLL 131795770645383654 0x7ffac42a0000 659456 C:\Windows\SYSTEM32\StateRepository.Core.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation StateRepository Core 131795770645383654 0x7ffac46d0000 4161536 C:\Windows\System32\Windows.StateRepository.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Сервер Windows StateRepository API Server 131795770645383654 0x7ffac4e70000 102400 C:\Windows\SYSTEM32\samcli.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Security Accounts Manager Client DLL 131795770645383654 0x7ffac5350000 1765376 C:\Windows\System32\Windows.UI.Immersive.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation WINDOWS.UI.IMMERSIVE 131795770645383654 0x7ffac5c50000 131072 C:\Windows\SYSTEM32\rasman.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Remote Access Connection Manager 131795770645383654 0x7ffac60e0000 221184 C:\Windows\SYSTEM32\XmlLite.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft XmlLite Library 131795770645383654 0x7ffac69c0000 839680 C:\Windows\SYSTEM32\WINHTTP.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Службы HTTP Windows 131795770645383654 0x7ffac6ac0000 835584 C:\Windows\System32\Windows.UI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Runtime UI Foundation DLL 131795770645383654 0x7ffac6c40000 2596864 C:\Windows\WinSxS\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.14393.953_none_42151e83c686086b\Comctl32.dll 6.10 (rs1_release_inmarket.170303-1614) Microsoft Corporation Библиотека элементов управления взаимодействия с пользователем 131795770645383654 0x7ffac6f50000 5632000 C:\Windows\SYSTEM32\d2d1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека Microsoft D2D 131795770645383654 0x7ffac7580000 1077248 C:\Windows\SYSTEM32\MrmCoreR.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Windows MRM 131795770645383654 0x7ffac76a0000 159744 C:\Windows\SYSTEM32\sppc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Software Licensing Client DLL 131795770645383654 0x7ffac7720000 1601536 C:\Windows\System32\OneCoreUAPCommonProxyStub.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation OneCoreUAP Common Proxy Stub 131795770645383654 0x7ffac7990000 155648 C:\Windows\SYSTEM32\SLC.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Software Licensing Client DLL 131795770645383654 0x7ffac7fc0000 2674688 C:\Windows\SYSTEM32\d3d10warp.dll 10.0.14393.576 (rs1_release_inmarket.161208-2252) Microsoft Corporation Direct3D 10 Rasterizer 131795770645383654 0x7ffac84f0000 299008 C:\Windows\system32\DataExchange.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation Data exchange 131795770645383654 0x7ffac8880000 69632 C:\Windows\SYSTEM32\wmiclnt.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation WMI Client API 131795770645383654 0x7ffac88a0000 2842624 C:\Windows\SYSTEM32\d3d11.dll 10.0.14393.953 (rs1_release_inmarket.170303-1614) Microsoft Corporation Direct3D 11 Runtime 131795770645383654 0x7ffac9220000 397312 C:\Windows\SYSTEM32\wevtapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API настройки и использования событий 131795770645383654 0x7ffac9290000 40960 C:\Windows\SYSTEM32\DSROLE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DS Setup Client DLL 131795770645383654 0x7ffac92e0000 1269760 C:\Windows\System32\WinTypes.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL основных типов Windows 131795770645383654 0x7ffac9500000 2682880 C:\Windows\system32\CoreUIComponents.dll 131795770645383654 0x7ffac9f50000 1736704 C:\Windows\system32\windowscodecs.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Microsoft Windows Codecs Library 131795770645383654 0x7ffaca340000 1593344 C:\Windows\SYSTEM32\PROPSYS.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Система страниц свойств (Майкрософт) 131795770645383654 0x7ffaca4e0000 77824 C:\Windows\SYSTEM32\WTSAPI32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Remote Desktop Session Host Server SDK APIs 131795770645383654 0x7ffaca560000 45056 C:\Windows\SYSTEM32\NcaApi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Network Connectivity Assistant API 131795770645383654 0x7ffaca570000 421888 C:\Windows\SYSTEM32\Bcp47Langs.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation BCP47 Language Classes 131795770645383654 0x7ffaca5e0000 155648 C:\Windows\SYSTEM32\dwmapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Интерфейс API диспетчера окон рабочего стола (Майкрософт) 131795770645383654 0x7ffaca640000 770048 C:\Windows\SYSTEM32\CoreMessaging.dll 10.0.14393.0 Microsoft Corporation Microsoft CoreMessaging Dll 131795770645383654 0x7ffaca770000 1380352 C:\Windows\SYSTEM32\dcomp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft DirectComposition Library 131795770645383654 0x7ffacaf00000 610304 C:\Windows\system32\uxtheme.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека тем UxTheme (Microsoft) 131795770645383654 0x7ffacb140000 593920 C:\Windows\SYSTEM32\msvcp110_win.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Microsoft® STL110 C++ Runtime Library 131795770645383654 0x7ffacb1e0000 1163264 C:\Windows\System32\twinapi.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation twinapi.appcore 131795770645383654 0x7ffacb300000 364544 C:\Windows\SYSTEM32\VEEventDispatcher.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Visual Element Event dispatcher 131795770645383654 0x7ffacb3f0000 163840 C:\Windows\SYSTEM32\DEVOBJ.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Device Information Set DLL 131795770645383654 0x7ffacb780000 651264 C:\Windows\SYSTEM32\dxgi.dll 10.0.14393.953 (rs1_release_inmarket.170303-1614) Microsoft Corporation DirectX Graphics Infrastructure 131795770645383654 0x7ffacbd30000 229376 C:\Windows\SYSTEM32\IPHLPAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API вспомогательного приложения IP 131795770645383654 0x7ffacbe20000 53248 C:\Windows\SYSTEM32\netutils.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API Helpers DLL 131795770645383654 0x7ffacbe40000 126976 C:\Windows\SYSTEM32\USERENV.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Userenv 131795770645383654 0x7ffacc150000 94208 C:\Windows\SYSTEM32\cryptsp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Cryptographic Service Provider API 131795770645383654 0x7ffacc170000 45056 C:\Windows\SYSTEM32\CRYPTBASE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base cryptographic API DLL 131795770645383654 0x7ffacc1f0000 241664 C:\Windows\SYSTEM32\NTASN1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft ASN.1 API 131795770645383654 0x7ffacc230000 155648 C:\Windows\SYSTEM32\ncrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Маршрутизатор Windows NCrypt 131795770645383654 0x7ffacc350000 180224 C:\Windows\SYSTEM32\SspiCli.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Security Support Provider Interface 131795770645383654 0x7ffacc5c0000 352256 C:\Windows\SYSTEM32\WINSTA.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Winstation Library 131795770645383654 0x7ffacc620000 176128 C:\Windows\SYSTEM32\bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795770645383654 0x7ffacc6e0000 61440 C:\Windows\System32\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795770645383654 0x7ffacc6f0000 311296 C:\Windows\System32\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795770645383654 0x7ffacc740000 81920 C:\Windows\System32\profapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Profile Basic API 131795770645383654 0x7ffacc760000 65536 C:\Windows\System32\MSASN1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ASN.1 Runtime APIs 131795770645383654 0x7ffacc8f0000 1003520 C:\Windows\System32\ucrtbase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645383654 0x7ffacc9f0000 434176 C:\Windows\System32\bcryptPrimitives.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Cryptographic Primitives Library 131795770645383654 0x7ffacca60000 122880 C:\Windows\System32\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795770645383654 0x7ffaccae0000 692224 C:\Windows\System32\shcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795770645383654 0x7ffaccb90000 7180288 C:\Windows\System32\windows.storage.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API хранения Microsoft WinRT 131795770645383654 0x7ffacd270000 2215936 C:\Windows\System32\KERNELBASE.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645383654 0x7ffacd490000 1871872 C:\Windows\System32\CRYPT32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API32 криптографии 131795770645383654 0x7ffacd710000 638976 C:\Windows\System32\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645383654 0x7ffacd7b0000 270336 C:\Windows\System32\cfgmgr32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Configuration Manager DLL 131795770645383654 0x7ffacd810000 22056960 C:\Windows\System32\SHELL32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Общая библиотека оболочки Windows 131795770645383654 0x7ffaced20000 782336 C:\Windows\System32\OLEAUT32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795770645383654 0x7ffacee50000 1183744 C:\Windows\System32\RPCRT4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795770645383654 0x7ffacef90000 647168 C:\Windows\System32\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795770645383654 0x7ffacf030000 651264 C:\Windows\System32\clbcatq.dll 2001.12.10941.16384 (rs1_release.160715-1616) Microsoft Corporation COM+ Configuration Catalog 131795770645383654 0x7ffacf0d0000 704512 C:\Windows\System32\KERNEL32.DLL 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645383654 0x7ffacf1e0000 1417216 C:\Windows\System32\msctf.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Серверная библиотека MSCTF 131795770645383654 0x7ffacf770000 212992 C:\Windows\System32\GDI32.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation GDI Client DLL 131795770645383654 0x7ffacf820000 434176 C:\Windows\System32\WS2_32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation 32-разрядная библиотека Windows Socket 2.0 131795770645383654 0x7ffacf890000 188416 C:\Windows\System32\IMM32.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Multi-User Windows IMM32 API Client DLL 131795770645383654 0x7ffacf8c0000 1462272 C:\Windows\System32\USER32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795770645383654 0x7ffacfb30000 2916352 C:\Windows\System32\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795770645383654 0x7ffacfe20000 663552 C:\Windows\System32\advapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795770645383654 0x7ffad0070000 1277952 C:\Windows\System32\ole32.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft OLE для Windows 131795770645383654 0x7ffad01b0000 335872 C:\Windows\System32\SHLWAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека небольших программ оболочки 131795770645383654 0x7ffad0210000 364544 C:\Windows\System32\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795770645383654 0x7ffad0270000 1908736 C:\Windows\SYSTEM32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 67 10964 664 6 00000000:0031f1ab 131794956837373387 0 0 1 Обязательная метка\Высокий обязательный уровень WIN-0UOTFKKVN1S\User DllHost.exe C:\Windows\system32\DllHost.exe C:\Windows\system32\DllHost.exe /Processid:{BA126F01-2166-11D1-B1D0-00805FC1270E} Microsoft Corporation 10.0.14393.0 (rs1_release.160715-1616) COM Surrogate 131795770645383742 0x7ff7a2280000 36864 C:\Windows\system32\DllHost.exe 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation COM Surrogate 131795770645383742 0x7ffab2460000 2822144 C:\Windows\system32\netshell.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Оболочка сетевых подключений 131795770645383742 0x7ffac9790000 98304 C:\Windows\system32\nlaapi.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Network Location Awareness 2 131795770645383742 0x7ffacaf00000 610304 C:\Windows\system32\uxtheme.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека тем UxTheme (Microsoft) 131795770645383742 0x7ffacbd30000 229376 C:\Windows\system32\IPHLPAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API вспомогательного приложения IP 131795770645383742 0x7ffacc6e0000 61440 C:\Windows\System32\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795770645383742 0x7ffacc6f0000 311296 C:\Windows\System32\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795770645383742 0x7ffacc740000 81920 C:\Windows\System32\profapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Profile Basic API 131795770645383742 0x7ffacc8f0000 1003520 C:\Windows\System32\ucrtbase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645383742 0x7ffacc9f0000 434176 C:\Windows\System32\bcryptPrimitives.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Cryptographic Primitives Library 131795770645383742 0x7ffacca60000 122880 C:\Windows\System32\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795770645383742 0x7ffaccae0000 692224 C:\Windows\System32\shcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795770645383742 0x7ffaccb90000 7180288 C:\Windows\System32\windows.storage.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API хранения Microsoft WinRT 131795770645383742 0x7ffacd270000 2215936 C:\Windows\System32\KERNELBASE.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645383742 0x7ffacd7b0000 270336 C:\Windows\System32\cfgmgr32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Configuration Manager DLL 131795770645383742 0x7ffacd810000 22056960 C:\Windows\System32\SHELL32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Общая библиотека оболочки Windows 131795770645383742 0x7ffacee50000 1183744 C:\Windows\System32\RPCRT4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795770645383742 0x7ffacef90000 647168 C:\Windows\System32\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795770645383742 0x7ffacf030000 651264 C:\Windows\System32\clbcatq.dll 2001.12.10941.16384 (rs1_release.160715-1616) Microsoft Corporation COM+ Configuration Catalog 131795770645383742 0x7ffacf0d0000 704512 C:\Windows\System32\KERNEL32.DLL 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645383742 0x7ffacf770000 212992 C:\Windows\System32\GDI32.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation GDI Client DLL 131795770645383742 0x7ffacf890000 188416 C:\Windows\System32\IMM32.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Multi-User Windows IMM32 API Client DLL 131795770645383742 0x7ffacf8c0000 1462272 C:\Windows\System32\user32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795770645383742 0x7ffacfb30000 2916352 C:\Windows\System32\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795770645383742 0x7ffacfe20000 663552 C:\Windows\System32\advapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795770645383742 0x7ffad0070000 1277952 C:\Windows\System32\ole32.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft OLE для Windows 131795770645383742 0x7ffad01b0000 335872 C:\Windows\System32\SHLWAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека небольших программ оболочки 131795770645383742 0x7ffad0210000 364544 C:\Windows\System32\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795770645383742 0x7ffad0270000 1908736 C:\Windows\SYSTEM32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 69 10000 8940 68 00000000:0031f1da 131794957424930105 131795782451673064 0 0 Обязательная метка\Средний обязательный уровень WIN-0UOTFKKVN1S\User AdobeIPCBroker.exe C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\IPC\AdobeIPCBroker.exe "C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\IPC\AdobeIPCBroker.exe" "-launchedbyvulcan" Adobe Systems Incorporated 5.0.0.76 Adobe IPC Broker 131795770645384008 0xbe0000 798720 C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\IPC\AdobeIPCBroker.exe 5.0.0.76 Adobe Systems Incorporated Adobe IPC Broker 131795770645384008 0x5c020000 335872 C:\Windows\System32\wow64.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation Win32 Emulation on NT64 131795770645384008 0x5c080000 487424 C:\Windows\System32\wow64win.dll 10.0.14393.1884 (rs1_release.171101-1233) Microsoft Corporation Wow64 Console and Win32 API Logging 131795770645384008 0x5c100000 40960 C:\Windows\System32\wow64cpu.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation AMD64 Wow64 CPU 131795770645384008 0x60750000 1556480 C:\Program Files (x86)\360\Total Security\safemon\safemon.dll 8, 4, 0, 1420 Qihu 360 Software Co., Ltd. 360 Internet Security Internet Protection 131795770645384008 0x70ca0000 45056 C:\Windows\SysWOW64\NETUTILS.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API Helpers DLL 131795770645384008 0x70cb0000 65536 C:\Windows\SysWOW64\WKSCLI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Workstation Service Client DLL 131795770645384008 0x71140000 77824 C:\Windows\SysWOW64\NETAPI32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API DLL 131795770645384008 0x72b90000 126976 C:\Windows\SysWOW64\dwmapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Интерфейс API диспетчера окон рабочего стола (Майкрософт) 131795770645384008 0x74110000 479232 C:\Windows\SysWOW64\uxtheme.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека тем UxTheme (Microsoft) 131795770645384008 0x74190000 110592 C:\Windows\SysWOW64\bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795770645384008 0x746e0000 32768 C:\Windows\SysWOW64\VERSION.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Version Checking and File Installation Libraries 131795770645384008 0x74730000 598016 C:\Windows\SysWOW64\apphelp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиентская библиотека совместимости приложений 131795770645384008 0x747d0000 40960 C:\Windows\SysWOW64\CRYPTBASE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base cryptographic API DLL 131795770645384008 0x747e0000 126976 C:\Windows\SysWOW64\SspiCli.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Security Support Provider Interface 131795770645384008 0x74800000 151552 C:\Windows\SysWOW64\IMM32.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Multi-User Windows IMM32 API Client DLL 131795770645384008 0x74910000 2170880 C:\Windows\SysWOW64\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795770645384008 0x74b30000 53248 C:\Windows\SysWOW64\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795770645384008 0x74b60000 790528 C:\Windows\SysWOW64\RPCRT4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795770645384008 0x74c30000 1417216 C:\Windows\SysWOW64\gdi32full.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation GDI Client DLL 131795770645384008 0x74d90000 24576 C:\Windows\SysWOW64\PSAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Process Status Helper 131795770645384008 0x74da0000 778240 C:\Windows\SysWOW64\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795770645384008 0x74e60000 557056 C:\Windows\SysWOW64\shcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795770645384008 0x74ef0000 540672 C:\Windows\SysWOW64\clbcatq.dll 2001.12.10941.16384 (rs1_release.160715-1616) Microsoft Corporation COM+ Configuration Catalog 131795770645384008 0x74fd0000 405504 C:\Windows\SysWOW64\WS2_32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation 32-разрядная библиотека Windows Socket 2.0 131795770645384008 0x75040000 282624 C:\Windows\SysWOW64\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795770645384008 0x751e0000 1708032 C:\Windows\SysWOW64\KERNELBASE.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645384008 0x75390000 266240 C:\Windows\SysWOW64\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795770645384008 0x75560000 487424 C:\Windows\SysWOW64\ADVAPI32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795770645384008 0x756c0000 5693440 C:\Windows\SysWOW64\windows.storage.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API хранения Microsoft WinRT 131795770645384008 0x75c90000 286720 C:\Windows\SysWOW64\shlwapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека небольших программ оболочки 131795770645384008 0x75ce0000 20811776 C:\Windows\SysWOW64\SHELL32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Общая библиотека оболочки Windows 131795770645384008 0x774d0000 86016 C:\Windows\SysWOW64\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795770645384008 0x774f0000 61440 C:\Windows\SysWOW64\profapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Profile Basic API 131795770645384008 0x77560000 1437696 C:\Windows\SysWOW64\USER32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795770645384008 0x776c0000 368640 C:\Windows\SysWOW64\bcryptPrimitives.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation Windows Cryptographic Primitives Library 131795770645384008 0x77780000 503808 C:\Windows\SysWOW64\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645384008 0x77800000 606208 C:\Windows\SysWOW64\OLEAUT32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795770645384008 0x77ac0000 966656 C:\Windows\SysWOW64\ole32.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft OLE для Windows 131795770645384008 0x77bb0000 176128 C:\Windows\SysWOW64\GDI32.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation GDI Client DLL 131795770645384008 0x77cd0000 221184 C:\Windows\SysWOW64\cfgmgr32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Configuration Manager DLL 131795770645384008 0x77d20000 1585152 C:\Windows\SysWOW64\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 131795770645384008 0x7ffad0270000 1908736 C:\Windows\SYSTEM32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 76 11496 664 6 00000000:0031f1da 131794958406617238 0 0 1 Обязательная метка\Низкий обязательный уровень WIN-0UOTFKKVN1S\User SearchUI.exe C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\SearchUI.exe "C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\SearchUI.exe" -ServerName:CortanaUI.AppXa50dqqa5gqv4a428c9y1jjw7m3btvepj.mca Microsoft Corporation 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Search and Cortana application 131795770645385613 0x7ff79c3c0000 10706944 C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\SearchUI.exe 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Search and Cortana application 131795770645385613 0x7ffab2c00000 8179712 C:\Windows\SYSTEM32\chakra.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft ® Chakra (Private) 131795770645385613 0x7ffab33d0000 258048 C:\Windows\SYSTEM32\MLANG.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL многоязыковой поддержки 131795770645385613 0x7ffab3540000 22740992 C:\Windows\SYSTEM32\edgehtml.dll 11.00.14393.447 (rs1_release_inmarket.161102-0100) Microsoft Corporation Веб-платформа Microsoft Edge 131795770645385613 0x7ffab4b90000 655360 C:\Windows\System32\StructuredQuery.dll 7.0.14393.2068 (rs1_release.180209-1727) Microsoft Corporation Structured Query 131795770645385613 0x7ffab4c70000 4874240 C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\RemindersUI.dll 131795770645385613 0x7ffab52c0000 2445312 C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.BackgroundTask.dll 131795770645385613 0x7ffab5520000 3231744 C:\Windows\SYSTEM32\msftedit.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Элемент управления "Поле ввода форматированного текста", версия 8.5 131795770645385613 0x7ffab5840000 3108864 C:\Windows\System32\Speech_OneCore\Common\sapi_onecore.dll 5.3.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Speech API 131795770645385613 0x7ffab5b40000 2527232 C:\Windows\SYSTEM32\dwrite.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Службы Microsoft DirectX Typography 131795770645385613 0x7ffab5db0000 9781248 C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\CortanaApi.dll 131795770645385613 0x7ffab6710000 17231872 C:\Windows\System32\Windows.UI.Xaml.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows.UI.Xaml dll 131795770645385613 0x7ffab7a00000 3424256 C:\Windows\system32\tquery.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Запросы Microsoft Tripoli 131795770645385613 0x7ffab9c00000 1343488 C:\Windows\System32\Windows.Web.Http.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL Windows.Web.Http 131795770645385613 0x7ffab9d50000 1429504 C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Core.dll 131795770645385613 0x7ffabaab0000 94208 C:\Windows\SYSTEM32\profext.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation profext 131795770645385613 0x7ffabae40000 110592 C:\Windows\SYSTEM32\capauthz.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API авторизации возможностей 131795770645385613 0x7ffabaf70000 270336 C:\Windows\SYSTEM32\edputil.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служебная программа EDP 131795770645385613 0x7ffabb200000 294912 C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\CortanaApi.ProxyStub.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation "CortanaApi.ProxyStub.DYNLINK" 131795770645385613 0x7ffabb3c0000 450560 C:\Windows\SYSTEM32\TextInputFramework.dll 10.0.14393.2189 (rs1_release.180329-1711) Microsoft Corporation "TextInputFramework.DYNLINK" 131795770645385613 0x7ffabb490000 512000 C:\Windows\System32\twinapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation twinapi 131795770645385613 0x7ffabbd10000 65536 C:\Windows\SYSTEM32\tokenbinding.dll 10.0.14393.1593 (rs1_release.170731-1934) Microsoft Corporation Token Binding Protocol 131795770645385613 0x7ffabd4a0000 1613824 C:\Windows\System32\Windows.Globalization.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Globalization 131795770645385613 0x7ffabe4d0000 286720 C:\Windows\System32\MSWB7.dll 10.0.14393.1737 (rs1_release_inmarket.170914-1249) Microsoft Corporation MSWB7 DLL 131795770645385613 0x7ffabe6e0000 561152 C:\Windows\system32\directmanipulation.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Direct Manipulation Component 131795770645385613 0x7ffabe770000 774144 C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\CSGSuggestLib.dll 131795770645385613 0x7ffabe9c0000 188416 C:\Windows\SYSTEM32\globinputhost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Globalization Extension API for Input 131795770645385613 0x7ffabea90000 135168 C:\Windows\System32\Windows.ApplicationModel.Background.SystemEventsBroker.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Background System Events Broker API Server 131795770645385613 0x7ffabeac0000 335872 C:\Windows\System32\Windows.Storage.ApplicationData.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Application Data API Server 131795770645385613 0x7ffabeb20000 385024 C:\Windows\System32\Windows.ApplicationModel.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows ApplicationModel API Server 131795770645385613 0x7ffabefa0000 192512 C:\Windows\system32\Cortana.Persona.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Cortana.Persona 131795770645385613 0x7ffabf5d0000 2924544 C:\Windows\SYSTEM32\WININET.dll 11.00.14393.447 (rs1_release_inmarket.161102-0100) Microsoft Corporation Расширения Интернета для Win32 131795770645385613 0x7ffabf8a0000 122880 C:\Windows\System32\Windows.Cortana.ProxyStub.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows.Cortana.ProxyStub 131795770645385613 0x7ffabfce0000 90112 C:\Windows\System32\Windows.Globalization.Fontgroups.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Fonts Mapping API 131795770645385613 0x7ffabfd00000 356352 C:\Windows\System32\Windows.Graphics.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation WinRT Windows Graphics DLL 131795770645385613 0x7ffabfd80000 86016 C:\Windows\System32\threadpoolwinrt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows WinRT Threadpool 131795770645385613 0x7ffabfe10000 237568 C:\Windows\SYSTEM32\rometadata.dll 4.6.1586.0 built by: NETFXREL2 Microsoft Corporation Microsoft MetaData Library 131795770645385613 0x7ffac00c0000 282624 C:\Windows\SYSTEM32\windows.ui.core.textinput.dll 10.0.14393.2189 (rs1_release.180329-1711) Microsoft Corporation Windows.UI.Core.TextInput dll 131795770645385613 0x7ffac01e0000 397312 C:\Windows\SYSTEM32\wincorlib.DLL 10.0.14393.576 (rs1_release_inmarket.161208-2252) Microsoft Corporation Microsoft Windows ® WinRT core library 131795770645385613 0x7ffac0bf0000 3559424 C:\Windows\System32\ActXPrxy.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation ActiveX Interface Marshaling Library 131795770645385613 0x7ffac10b0000 217088 C:\Windows\system32\PersonaX.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation PersonaX 131795770645385613 0x7ffac1c40000 94208 C:\Windows\System32\SystemSettings.DataModel.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SystemSettings.Datamodel private API 131795770645385613 0x7ffac20d0000 110592 C:\Windows\System32\rmclient.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Resource Manager Client 131795770645385613 0x7ffac23c0000 331776 C:\Windows\System32\OneCoreCommonProxyStub.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation OneCore Common Proxy Stub 131795770645385613 0x7ffac2990000 385024 C:\Windows\SYSTEM32\NInput.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Pen and Touch Input Component 131795770645385613 0x7ffac2c30000 135168 C:\Windows\SYSTEM32\clipc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиент платформы лицензирования клиента 131795770645385613 0x7ffac2d80000 5140480 C:\Windows\SYSTEM32\cdp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API клиента Microsoft (R) CDP 131795770645385613 0x7ffac34e0000 1843200 C:\Windows\SYSTEM32\urlmon.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширения OLE32 для Win32 131795770645385613 0x7ffac3810000 167936 C:\Windows\SYSTEM32\Cabinet.dll 5.00 (rs1_release.160715-1616) Microsoft Corporation Microsoft® Cabinet File API 131795770645385613 0x7ffac3b80000 286720 C:\Windows\system32\indexeddbserver.dll 10.0.14393.2189 (rs1_release.180329-1711) Microsoft Corporation IndexedDb host 131795770645385613 0x7ffac3bf0000 94208 C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\ActionMgr.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Cortana Action Manager 131795770645385613 0x7ffac3cb0000 2772992 C:\Windows\SYSTEM32\iertutil.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служебная программа времени выполнения для Internet Explorer 131795770645385613 0x7ffac4000000 274432 C:\Windows\SYSTEM32\policymanager.dll 10.0.14393.2035 (rs1_release_inmarket.180110-1910) Microsoft Corporation Policy Manager DLL 131795770645385613 0x7ffac5070000 798720 C:\Windows\System32\Windows.Web.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL веб-клиента 131795770645385613 0x7ffac5350000 1765376 C:\Windows\System32\Windows.UI.Immersive.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation WINDOWS.UI.IMMERSIVE 131795770645385613 0x7ffac5ce0000 1744896 C:\Windows\SYSTEM32\UIAutomationCore.DLL 7.2.14393.0 (rs1_release.160715-1616) Microsoft Corporation Основные автоматические компоненты Microsoft UI 131795770645385613 0x7ffac60e0000 221184 C:\Windows\SYSTEM32\XmlLite.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft XmlLite Library 131795770645385613 0x7ffac6610000 40960 C:\Windows\System32\rasadhlp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Remote Access AutoDial Helper 131795770645385613 0x7ffac6620000 192512 C:\Windows\System32\biwinrt.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation Windows Background Broker Infrastructure 131795770645385613 0x7ffac66a0000 86016 C:\Windows\SYSTEM32\ondemandconnroutehelper.dll 10.0.14393.351 (rs1_release_inmarket.161014-1755) Microsoft Corporation On Demand Connctiond Route Helper 131795770645385613 0x7ffac69c0000 839680 C:\Windows\SYSTEM32\WINHTTP.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Службы HTTP Windows 131795770645385613 0x7ffac6ac0000 835584 C:\Windows\System32\Windows.UI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Runtime UI Foundation DLL 131795770645385613 0x7ffac6bb0000 118784 C:\Windows\system32\windows.cortana.pal.desktop.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows.Cortana.PAL.Desktop 131795770645385613 0x7ffac6bd0000 413696 C:\Windows\SYSTEM32\OLEACC.dll 7.2.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Active Accessibility Core Component 131795770645385613 0x7ffac6ed0000 155648 C:\Windows\SYSTEM32\srpapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL программных интерфейсов (API) поставщика общих ресурсов 131795770645385613 0x7ffac6f50000 5632000 C:\Windows\SYSTEM32\d2d1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека Microsoft D2D 131795770645385613 0x7ffac7580000 1077248 C:\Windows\System32\MrmCoreR.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Windows MRM 131795770645385613 0x7ffac7720000 1601536 C:\Windows\System32\OneCoreUAPCommonProxyStub.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation OneCoreUAP Common Proxy Stub 131795770645385613 0x7ffac78b0000 65536 C:\Windows\system32\msimtf.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Active IMM Server DLL 131795770645385613 0x7ffac7c50000 118784 C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\BingConfigurationClient.dll 10.0.14393.82 (rs1_release.160805-1735) Microsoft Corporation Bing Configuration Client DLL 131795770645385613 0x7ffac7d80000 49152 C:\Windows\System32\Windows.ApplicationModel.Background.TimeBroker.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Background Time Broker API Server 131795770645385613 0x7ffac7e30000 40960 C:\Windows\SYSTEM32\fontgroupsoverride.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation fontgroupsoverride.dll 131795770645385613 0x7ffac7fc0000 2674688 C:\Windows\SYSTEM32\d3d10warp.dll 10.0.14393.576 (rs1_release_inmarket.161208-2252) Microsoft Corporation Direct3D 10 Rasterizer 131795770645385613 0x7ffac83d0000 106496 C:\Windows\SYSTEM32\dhcpcsvc.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служба DHCP-клиента 131795770645385613 0x7ffac83f0000 90112 C:\Windows\SYSTEM32\dhcpcsvc6.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиент DHCPv6 131795770645385613 0x7ffac84f0000 299008 C:\Windows\system32\DataExchange.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation Data exchange 131795770645385613 0x7ffac8810000 45056 C:\Windows\SYSTEM32\WINNSI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Network Store Information RPC interface 131795770645385613 0x7ffac88a0000 2842624 C:\Windows\SYSTEM32\d3d11.dll 10.0.14393.953 (rs1_release_inmarket.170303-1614) Microsoft Corporation Direct3D 11 Runtime 131795770645385613 0x7ffac8fa0000 253952 C:\Windows\SYSTEM32\logoncli.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Net Logon Client DLL 131795770645385613 0x7ffac92e0000 1269760 C:\Windows\System32\WinTypes.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL основных типов Windows 131795770645385613 0x7ffac9480000 462848 C:\Windows\SYSTEM32\MMDevAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation MMDevice API 131795770645385613 0x7ffac9500000 2682880 C:\Windows\system32\CoreUIComponents.dll 131795770645385613 0x7ffac9f50000 1736704 C:\Windows\system32\windowscodecs.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Microsoft Windows Codecs Library 131795770645385613 0x7ffaca260000 45056 C:\Windows\SYSTEM32\SystemEventsBrokerClient.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation system Events Broker Client Library 131795770645385613 0x7ffaca340000 1593344 C:\Windows\SYSTEM32\PROPSYS.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Система страниц свойств (Майкрософт) 131795770645385613 0x7ffaca570000 421888 C:\Windows\SYSTEM32\Bcp47Langs.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation BCP47 Language Classes 131795770645385613 0x7ffaca5e0000 155648 C:\Windows\SYSTEM32\dwmapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Интерфейс API диспетчера окон рабочего стола (Майкрософт) 131795770645385613 0x7ffaca640000 770048 C:\Windows\SYSTEM32\CoreMessaging.dll 10.0.14393.0 Microsoft Corporation Microsoft CoreMessaging Dll 131795770645385613 0x7ffaca770000 1380352 C:\Windows\SYSTEM32\dcomp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft DirectComposition Library 131795770645385613 0x7ffacab40000 176128 C:\Windows\SYSTEM32\winmmbase.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base Multimedia Extension API DLL 131795770645385613 0x7ffacadf0000 499712 C:\Windows\system32\apphelp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиентская библиотека совместимости приложений 131795770645385613 0x7ffacaf00000 610304 C:\Windows\system32\uxtheme.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека тем UxTheme (Microsoft) 131795770645385613 0x7ffacb140000 593920 C:\Windows\SYSTEM32\msvcp110_win.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Microsoft® STL110 C++ Runtime Library 131795770645385613 0x7ffacb1e0000 1163264 C:\Windows\System32\twinapi.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation twinapi.appcore 131795770645385613 0x7ffacb300000 364544 C:\Windows\SYSTEM32\VEEventDispatcher.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Visual Element Event dispatcher 131795770645385613 0x7ffacb3f0000 163840 C:\Windows\SYSTEM32\DEVOBJ.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Device Information Set DLL 131795770645385613 0x7ffacb420000 204800 C:\Windows\SYSTEM32\ntmarta.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик Windows NT MARTA 131795770645385613 0x7ffacb780000 651264 C:\Windows\SYSTEM32\dxgi.dll 10.0.14393.953 (rs1_release_inmarket.170303-1614) Microsoft Corporation DirectX Graphics Infrastructure 131795770645385613 0x7ffacbd30000 229376 C:\Windows\SYSTEM32\IPHLPAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API вспомогательного приложения IP 131795770645385613 0x7ffacbd70000 659456 C:\Windows\SYSTEM32\DNSAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Динамическая библиотека API DNS-клиента 131795770645385613 0x7ffacbe40000 126976 C:\Windows\SYSTEM32\userenv.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Userenv 131795770645385613 0x7ffacbfb0000 376832 C:\Windows\system32\mswsock.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширение поставщика службы API Microsoft Windows Sockets 2.0 131795770645385613 0x7ffacc150000 94208 C:\Windows\SYSTEM32\cryptsp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Cryptographic Service Provider API 131795770645385613 0x7ffacc170000 45056 C:\Windows\SYSTEM32\CRYPTBASE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base cryptographic API DLL 131795770645385613 0x7ffacc1f0000 241664 C:\Windows\SYSTEM32\NTASN1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft ASN.1 API 131795770645385613 0x7ffacc230000 155648 C:\Windows\SYSTEM32\ncrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Маршрутизатор Windows NCrypt 131795770645385613 0x7ffacc350000 180224 C:\Windows\SYSTEM32\SspiCli.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Security Support Provider Interface 131795780654647361 0x7ffacc520000 622592 C:\Windows\System32\sxs.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Fusion 2.5 131795770645385613 0x7ffacc620000 176128 C:\Windows\SYSTEM32\bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795770645385613 0x7ffacc6e0000 61440 C:\Windows\System32\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795770645385613 0x7ffacc6f0000 311296 C:\Windows\System32\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795770645385613 0x7ffacc740000 81920 C:\Windows\System32\profapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Profile Basic API 131795770645385613 0x7ffacc760000 65536 C:\Windows\System32\MSASN1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ASN.1 Runtime APIs 131795770645385613 0x7ffacc8f0000 1003520 C:\Windows\System32\ucrtbase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645385613 0x7ffacc9f0000 434176 C:\Windows\System32\bcryptPrimitives.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Cryptographic Primitives Library 131795770645385613 0x7ffacca60000 122880 C:\Windows\System32\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795770645385613 0x7ffaccae0000 692224 C:\Windows\System32\shcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795770645385613 0x7ffaccb90000 7180288 C:\Windows\System32\windows.storage.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API хранения Microsoft WinRT 131795770645385613 0x7ffacd270000 2215936 C:\Windows\System32\KERNELBASE.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645385613 0x7ffacd490000 1871872 C:\Windows\System32\CRYPT32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API32 криптографии 131795770645385613 0x7ffacd710000 638976 C:\Windows\System32\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645385613 0x7ffacd7b0000 270336 C:\Windows\System32\cfgmgr32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Configuration Manager DLL 131795770645385613 0x7ffacd810000 22056960 C:\Windows\System32\shell32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Общая библиотека оболочки Windows 131795770645385613 0x7ffaced20000 782336 C:\Windows\System32\OLEAUT32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795770645385613 0x7ffacee50000 1183744 C:\Windows\System32\RPCRT4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795770645385613 0x7ffacef80000 32768 C:\Windows\System32\NSI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation NSI User-mode interface DLL 131795770645385613 0x7ffacef90000 647168 C:\Windows\System32\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795770645385613 0x7ffacf0d0000 704512 C:\Windows\System32\KERNEL32.DLL 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645385613 0x7ffacf1e0000 1417216 C:\Windows\System32\msctf.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Серверная библиотека MSCTF 131795770645385613 0x7ffacf770000 212992 C:\Windows\System32\GDI32.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation GDI Client DLL 131795770645385613 0x7ffacf820000 434176 C:\Windows\System32\WS2_32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation 32-разрядная библиотека Windows Socket 2.0 131795770645385613 0x7ffacf890000 188416 C:\Windows\System32\IMM32.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Multi-User Windows IMM32 API Client DLL 131795770645385613 0x7ffacf8c0000 1462272 C:\Windows\System32\user32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795770645385613 0x7ffacfb30000 2916352 C:\Windows\System32\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795770645385613 0x7ffacfe20000 663552 C:\Windows\System32\advapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795770645385613 0x7ffad0070000 1277952 C:\Windows\System32\ole32.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft OLE для Windows 131795770645385613 0x7ffad01b0000 335872 C:\Windows\System32\shlwapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека небольших программ оболочки 131795770645385613 0x7ffad0210000 364544 C:\Windows\System32\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795770645385613 0x7ffad0270000 1908736 C:\Windows\SYSTEM32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 79 5612 904 22 00000000:000003e5 131794965205293998 0 0 1 Обязательная метка\Обязательный уровень системы NT AUTHORITY\LOCAL SERVICE dashost.exe C:\Windows\system32\dashost.exe dashost.exe {609e1ffd-7b4d-4dbc-a36f725917d81f2d} Microsoft Corporation 10.0.14393.82 (rs1_release.160805-1735) Device Association Framework Provider Host 131795770645385987 0x7ff6559c0000 110592 C:\Windows\system32\dashost.exe 10.0.14393.82 (rs1_release.160805-1735) Microsoft Corporation Device Association Framework Provider Host 131795770645385987 0x7ffabb1a0000 274432 C:\Windows\system32\DAFWSD.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DAF WSD Provider 131795770645385987 0x7ffabc970000 188416 C:\Windows\system32\dafupnp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DAF UPnP Provider 131795770645385987 0x7ffac1d60000 589824 C:\Windows\system32\webio.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API протоколов передачи по Веб 131795770645385987 0x7ffac3f60000 225280 C:\Windows\system32\FWPolicyIOMgr.dll 10.0.14393.2189 (rs1_release.180329-1711) Microsoft Corporation FwPolicyIoMgr DLL 131795770645385987 0x7ffac60e0000 221184 C:\Windows\system32\XmlLite.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft XmlLite Library 131795770645385987 0x7ffac66c0000 32768 C:\Windows\system32\wship6.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL помощника Winsock2 (TL/IPv6) 131795770645385987 0x7ffac66d0000 32768 C:\Windows\system32\wshtcpip.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL помощника службы Winsock2 (TL/IPv4) 131795770645385987 0x7ffac6700000 40960 C:\Windows\system32\wshqos.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL помощника службы QoS Winsock2 131795770645385987 0x7ffac6750000 1380352 C:\Windows\system32\webservices.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Среда выполнения веб-служб Windows 131795770645385987 0x7ffac68b0000 696320 C:\Windows\system32\wsdapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Веб-службы для библиотек DLL API-интерфейсов устройств 131795770645385987 0x7ffac6990000 69632 C:\Windows\system32\deviceassociation.dll 10.0.14393.82 (rs1_release.160805-1735) Microsoft Corporation Device Association Client DLL 131795770645385987 0x7ffac69c0000 839680 C:\Windows\system32\WINHTTP.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Службы HTTP Windows 131795770645385987 0x7ffac79c0000 57344 C:\Windows\System32\npmproxy.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Network List Manager Proxy 131795770645385987 0x7ffac7e50000 86016 C:\Windows\system32\SSDPAPI.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation SSDP Client API DLL 131795770645385987 0x7ffac83d0000 106496 C:\Windows\SYSTEM32\dhcpcsvc.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служба DHCP-клиента 131795770645385987 0x7ffac83f0000 90112 C:\Windows\SYSTEM32\dhcpcsvc6.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиент DHCPv6 131795770645385987 0x7ffac8810000 45056 C:\Windows\SYSTEM32\WINNSI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Network Store Information RPC interface 131795770645385987 0x7ffac9f10000 221184 C:\Windows\System32\netprofm.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Network List Manager 131795770645385987 0x7ffacb360000 176128 C:\Windows\system32\fwbase.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Firewall Base DLL 131795770645385987 0x7ffacb460000 548864 C:\Windows\system32\FirewallAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API брандмауэра Windows 131795770645385987 0x7ffacbbb0000 208896 C:\Windows\system32\rsaenh.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Enhanced Cryptographic Provider 131795770645385987 0x7ffacbd30000 229376 C:\Windows\system32\IPHLPAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API вспомогательного приложения IP 131795770645385987 0x7ffacbd70000 659456 C:\Windows\system32\DNSAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Динамическая библиотека API DNS-клиента 131795770645385987 0x7ffacbfb0000 376832 C:\Windows\system32\mswsock.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширение поставщика службы API Microsoft Windows Sockets 2.0 131795770645385987 0x7ffacc150000 94208 C:\Windows\system32\CRYPTSP.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Cryptographic Service Provider API 131795770645385987 0x7ffacc170000 45056 C:\Windows\system32\CRYPTBASE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base cryptographic API DLL 131795770645385987 0x7ffacc350000 180224 C:\Windows\system32\SspiCli.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Security Support Provider Interface 131795770645385987 0x7ffacc620000 176128 C:\Windows\system32\bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795770645385987 0x7ffacc6e0000 61440 C:\Windows\System32\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795770645385987 0x7ffacc6f0000 311296 C:\Windows\System32\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795770645385987 0x7ffacc760000 65536 C:\Windows\System32\MSASN1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ASN.1 Runtime APIs 131795770645385987 0x7ffacc8f0000 1003520 C:\Windows\System32\ucrtbase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645385987 0x7ffacc9f0000 434176 C:\Windows\System32\bcryptPrimitives.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Cryptographic Primitives Library 131795770645385987 0x7ffacca60000 122880 C:\Windows\System32\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795770645385987 0x7ffacd270000 2215936 C:\Windows\System32\KERNELBASE.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645385987 0x7ffacd490000 1871872 C:\Windows\System32\CRYPT32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API32 криптографии 131795770645385987 0x7ffacd710000 638976 C:\Windows\System32\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645385987 0x7ffacd7b0000 270336 C:\Windows\System32\cfgmgr32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Configuration Manager DLL 131795770645385987 0x7ffaced20000 782336 C:\Windows\System32\OLEAUT32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795770645385987 0x7ffacee50000 1183744 C:\Windows\System32\RPCRT4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795770645385987 0x7ffacef80000 32768 C:\Windows\System32\NSI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation NSI User-mode interface DLL 131795770645385987 0x7ffacef90000 647168 C:\Windows\System32\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795770645385987 0x7ffacf030000 651264 C:\Windows\System32\clbcatq.dll 2001.12.10941.16384 (rs1_release.160715-1616) Microsoft Corporation COM+ Configuration Catalog 131795770645385987 0x7ffacf0d0000 704512 C:\Windows\System32\KERNEL32.DLL 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645385987 0x7ffacf770000 212992 C:\Windows\System32\GDI32.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation GDI Client DLL 131795770645385987 0x7ffacf820000 434176 C:\Windows\System32\WS2_32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation 32-разрядная библиотека Windows Socket 2.0 131795770645385987 0x7ffacf8c0000 1462272 C:\Windows\System32\user32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795770645385987 0x7ffacfb30000 2916352 C:\Windows\System32\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795770645385987 0x7ffad0210000 364544 C:\Windows\System32\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795770645385987 0x7ffad0270000 1908736 C:\Windows\SYSTEM32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 80 9720 9180 81 00000000:0031f1ab 131794969418818027 0 0 0 Обязательная метка\Высокий обязательный уровень WIN-0UOTFKKVN1S\User Windows10UpgraderApp.exe C:\Windows10Upgrade\Windows10UpgraderApp.exe "C:\Windows10Upgrade\Windows10UpgraderApp.exe" /Install /ClientID Win10Upgrade:VNL:NHV18:{} /SkipEULA /PostEosUi Microsoft Corporation 1.4.9200.22452 Помощник по обновлению Windows 10 131795770645386103 0xb30000 1875968 C:\Windows10Upgrade\Windows10UpgraderApp.exe 1.4.9200.22452 Microsoft Corporation Помощник по обновлению Windows 10 131795770645386103 0x5c020000 335872 C:\Windows\System32\wow64.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation Win32 Emulation on NT64 131795770645386103 0x5c080000 487424 C:\Windows\System32\wow64win.dll 10.0.14393.1884 (rs1_release.171101-1233) Microsoft Corporation Wow64 Console and Win32 API Logging 131795770645386103 0x5c100000 40960 C:\Windows\System32\wow64cpu.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation AMD64 Wow64 CPU 131795770645386103 0x5fec0000 794624 C:\Windows\SysWOW64\wbem\fastprox.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation WMI Custom Marshaller 131795770645386103 0x5ffa0000 421888 C:\Windows\SysWOW64\wbemcomn.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation WMI 131795770645386103 0x60010000 53248 C:\Windows\SysWOW64\wbem\wbemprox.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation WMI 131795770645386103 0x60750000 1556480 C:\Program Files (x86)\360\Total Security\safemon\safemon.dll 8, 4, 0, 1420 Qihu 360 Software Co., Ltd. 360 Internet Security Internet Protection 131795770645386103 0x627d0000 249856 C:\Windows\SysWOW64\edputil.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служебная программа EDP 131795770645386103 0x64d00000 5079040 C:\Windows\SysWOW64\d2d1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека Microsoft D2D 131795770645386103 0x651e0000 20537344 C:\Windows\SysWOW64\mshtml.dll 11.00.14393.447 (rs1_release_inmarket.161102-0100) Microsoft Corporation Средство просмотра HTML Microsoft® 131795770645386103 0x66580000 12247040 C:\Windows\SysWOW64\ieframe.dll 11.00.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Браузер 131795770645386103 0x67200000 1978368 C:\Windows\SysWOW64\msxml6.dll 6.30.14393.2156 Microsoft Corporation MSXML 6.0 131795770645386103 0x67500000 1597440 C:\Windows\SysWOW64\ActXPrxy.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation ActiveX Interface Marshaling Library 131795770645386103 0x6b670000 212992 C:\Windows\SysWOW64\mlang.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL многоязыковой поддержки 131795770645386103 0x6c290000 987136 C:\Windows\SysWOW64\twinapi.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation twinapi.appcore 131795770645386103 0x6c390000 1126400 C:\Windows\SysWOW64\dcomp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft DirectComposition Library 131795770645386103 0x6c4b0000 278528 C:\Windows\SysWOW64\dataexchange.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation Data exchange 131795770645386103 0x6c540000 483328 C:\Windows\SysWOW64\webio.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API протоколов передачи по Веб 131795770645386103 0x6c720000 2318336 C:\Windows\SysWOW64\d3d10warp.dll 10.0.14393.576 (rs1_release_inmarket.161208-2252) Microsoft Corporation Direct3D 10 Rasterizer 131795770645386103 0x6c960000 57344 C:\Windows\SysWOW64\msimtf.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Active IMM Server DLL 131795770645386103 0x6c970000 3698688 C:\Windows\SysWOW64\jscript9.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft ® JScript 131795770645386103 0x6cd00000 69632 C:\Windows\SysWOW64\WLDP.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Политика блокировки Windows 131795770645386103 0x6cd20000 135168 C:\Windows\SysWOW64\srpapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL программных интерфейсов (API) поставщика общих ресурсов 131795770645386103 0x6cda0000 528384 C:\Windows\SysWOW64\sxs.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Fusion 2.5 131795770645386103 0x6d080000 151552 C:\Windows\SysWOW64\cryptnet.dll 10.0.14393.2035 (rs1_release_inmarket.180110-1910) Microsoft Corporation Crypto Network Related API 131795770645386103 0x6d0b0000 847872 C:\Windows\SysWOW64\WinTypes.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL основных типов Windows 131795770645386103 0x6d6e0000 634880 C:\Windows\SysWOW64\Windows.UI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Runtime UI Foundation DLL 131795770645386103 0x6d780000 876544 C:\Windows\SysWOW64\mrmcorer.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Windows MRM 131795770645386103 0x6d860000 1245184 C:\Windows\SysWOW64\MFC42u.dll 6.06.8063.0 Microsoft Corporation Общая библиотека MFCDLL - розничная версия 131795770645386103 0x6dcd0000 606208 C:\Windows\WinSxS\x86_microsoft.windows.common-controls_6595b64144ccf1df_5.82.14393.447_none_5507ded2cb4f7f4c\COMCTL32.dll 6.10 (rs1_release_inmarket.170303-1614) Microsoft Corporation Библиотека элементов управления взаимодействия с пользователем 131795770645386103 0x6ded0000 630784 C:\Windows\SysWOW64\ODBC32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ODBC Driver Manager 131795770645386103 0x6dfc0000 53248 C:\Windows\SysWOW64\execmodelproxy.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ExecModelProxy 131795770645386103 0x6dfd0000 253952 C:\Windows\SysWOW64\UIAnimation.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Animation Manager 131795770645386103 0x6e010000 208896 C:\Windows10Upgrade\Downloader.dll 1.4.9200.22452 (win8_ldr.180426-0600) Microsoft Corporation Downloader 131795770645386103 0x6e050000 81920 C:\Windows\SysWOW64\Windows.Shell.ServiceHostBuilder.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows.Shell.ServiceHostBuilder 131795770645386103 0x6e710000 335872 C:\Windows\SysWOW64\Bcp47Langs.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation BCP47 Language Classes 131795770645386103 0x70340000 536576 C:\Windows\SysWOW64\dxgi.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation DirectX Graphics Infrastructure 131795770645386103 0x703d0000 2056192 C:\Windows\SysWOW64\DWrite.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Службы Microsoft DirectX Typography 131795770645386103 0x705e0000 344064 C:\Windows\SysWOW64\OLEACC.DLL 7.2.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Active Accessibility Core Component 131795770645386103 0x70640000 1499136 C:\Windows\SysWOW64\windowscodecs.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Microsoft Windows Codecs Library 131795770645386103 0x707b0000 110592 C:\Windows\SysWOW64\ncryptsslp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft SChannel Provider 131795770645386103 0x707d0000 86016 C:\Windows\SysWOW64\SAMCLI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Security Accounts Manager Client DLL 131795770645386103 0x707f0000 2293760 C:\Windows\SysWOW64\d3d11.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation Direct3D 11 Runtime 131795770645386103 0x70a80000 409600 C:\Windows\SysWOW64\schannel.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик безопасности TLS/SSL 131795770645386103 0x70b40000 69632 C:\Windows\SysWOW64\mskeyprotect.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик защиты ключей (Майкрософт) 131795770645386103 0x70b70000 163840 C:\Windows\SysWOW64\ntmarta.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик Windows NT MARTA 131795770645386103 0x70ca0000 45056 C:\Windows\SysWOW64\NETUTILS.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API Helpers DLL 131795770645386103 0x70cc0000 65536 C:\Windows\SysWOW64\ondemandconnroutehelper.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation On Demand Connctiond Route Helper 131795770645386103 0x70e60000 176128 C:\Windows\SysWOW64\NTASN1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft ASN.1 API 131795770645386103 0x71140000 77824 C:\Windows\SysWOW64\NETAPI32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API DLL 131795770645386103 0x71610000 77824 C:\Windows\SysWOW64\dhcpcsvc6.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиент DHCPv6 131795770645386103 0x725e0000 2273280 C:\Windows\SysWOW64\iertutil.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служебная программа времени выполнения для Internet Explorer 131795770645386103 0x728e0000 1372160 C:\Windows\SysWOW64\PROPSYS.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Система страниц свойств (Майкрософт) 131795770645386103 0x72b90000 126976 C:\Windows\SysWOW64\dwmapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Интерфейс API диспетчера окон рабочего стола (Майкрософт) 131795770645386103 0x72cc0000 1658880 C:\Windows\SysWOW64\urlmon.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширения OLE32 для Win32 131795770645386103 0x73a40000 32768 C:\Windows\SysWOW64\WINNSI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Network Store Information RPC interface 131795770645386103 0x73a50000 299008 C:\Windows\SysWOW64\fwpuclnt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API пользовательского режима FWP/IPsec 131795770645386103 0x73aa0000 32768 C:\Windows\SysWOW64\DPAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Data Protection API 131795770645386103 0x73ab0000 32768 C:\Windows\SysWOW64\rasadhlp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Remote Access AutoDial Helper 131795770645386103 0x73ac0000 81920 C:\Windows\SysWOW64\dhcpcsvc.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служба DHCP-клиента 131795770645386103 0x73ae0000 40960 C:\Windows\SysWOW64\Secur32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Security Support Provider Interface 131795770645386103 0x73f00000 192512 C:\Windows\SysWOW64\IPHLPAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API вспомогательного приложения IP 131795770645386103 0x73f30000 512000 C:\Windows\SysWOW64\DNSAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Динамическая библиотека API DNS-клиента 131795770645386103 0x73ff0000 319488 C:\Windows\SysWOW64\mswsock.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширение поставщика службы API Microsoft Windows Sockets 2.0 131795770645386103 0x74060000 192512 C:\Windows\SysWOW64\rsaenh.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Enhanced Cryptographic Provider 131795770645386103 0x74110000 479232 C:\Windows\SysWOW64\uxtheme.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека тем UxTheme (Microsoft) 131795770645386103 0x74190000 110592 C:\Windows\SysWOW64\bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795770645386103 0x741b0000 77824 C:\Windows\SysWOW64\CRYPTSP.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Cryptographic Service Provider API 131795770645386103 0x74260000 2514944 C:\Windows\SysWOW64\WININET.dll 11.00.14393.447 (rs1_release_inmarket.161102-0100) Microsoft Corporation Расширения Интернета для Win32 131795770645386103 0x744d0000 2138112 C:\Windows\WinSxS\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.14393.953_none_89c2555adb023171\comctl32.dll 6.10 (rs1_release_inmarket.170303-1614) Microsoft Corporation Библиотека элементов управления взаимодействия с пользователем 131795770645386103 0x746e0000 32768 C:\Windows\SysWOW64\VERSION.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Version Checking and File Installation Libraries 131795770645386103 0x746f0000 106496 C:\Windows\SysWOW64\USERENV.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Userenv 131795770645386103 0x74730000 598016 C:\Windows\SysWOW64\apphelp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиентская библиотека совместимости приложений 131795770645386103 0x747d0000 40960 C:\Windows\SysWOW64\CRYPTBASE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base cryptographic API DLL 131795770645386103 0x747e0000 126976 C:\Windows\SysWOW64\SspiCli.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Security Support Provider Interface 131795770645386103 0x74800000 151552 C:\Windows\SysWOW64\IMM32.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Multi-User Windows IMM32 API Client DLL 131795770645386103 0x74910000 2170880 C:\Windows\SysWOW64\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795770645386103 0x74b30000 53248 C:\Windows\SysWOW64\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795770645386103 0x74b60000 790528 C:\Windows\SysWOW64\RPCRT4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795770645386103 0x74c30000 1417216 C:\Windows\SysWOW64\gdi32full.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation GDI Client DLL 131795770645386103 0x74d90000 24576 C:\Windows\SysWOW64\PSAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Process Status Helper 131795770645386103 0x74da0000 778240 C:\Windows\SysWOW64\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795770645386103 0x74e60000 557056 C:\Windows\SysWOW64\shcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795770645386103 0x74ef0000 540672 C:\Windows\SysWOW64\clbcatq.dll 2001.12.10941.16384 (rs1_release.160715-1616) Microsoft Corporation COM+ Configuration Catalog 131795770645386103 0x74f80000 278528 C:\Windows\SysWOW64\WINTRUST.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation Microsoft Trust Verification APIs 131795770645386103 0x74fd0000 405504 C:\Windows\SysWOW64\WS2_32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation 32-разрядная библиотека Windows Socket 2.0 131795770645386103 0x75040000 282624 C:\Windows\SysWOW64\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795770645386103 0x75090000 1265664 C:\Windows\SysWOW64\MSCTF.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Серверная библиотека MSCTF 131795770645386103 0x751d0000 57344 C:\Windows\SysWOW64\MSASN1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ASN.1 Runtime APIs 131795770645386103 0x751e0000 1708032 C:\Windows\SysWOW64\KERNELBASE.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645386103 0x75390000 266240 C:\Windows\SysWOW64\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795770645386103 0x753e0000 1560576 C:\Windows\SysWOW64\CRYPT32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API32 криптографии 131795770645386103 0x75560000 487424 C:\Windows\SysWOW64\ADVAPI32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795770645386103 0x756c0000 5693440 C:\Windows\SysWOW64\windows.storage.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API хранения Microsoft WinRT 131795770645386103 0x75c90000 286720 C:\Windows\SysWOW64\shlwapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека небольших программ оболочки 131795770645386103 0x75ce0000 20811776 C:\Windows\SysWOW64\SHELL32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Общая библиотека оболочки Windows 131795770645386103 0x774d0000 86016 C:\Windows\SysWOW64\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795770645386103 0x774f0000 61440 C:\Windows\SysWOW64\profapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Profile Basic API 131795770645386103 0x77560000 1437696 C:\Windows\SysWOW64\USER32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795770645386103 0x776c0000 368640 C:\Windows\SysWOW64\bcryptPrimitives.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation Windows Cryptographic Primitives Library 131795770645386103 0x77780000 503808 C:\Windows\SysWOW64\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645386103 0x77800000 606208 C:\Windows\SysWOW64\OLEAUT32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795770645386103 0x77ac0000 966656 C:\Windows\SysWOW64\ole32.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft OLE для Windows 131795770645386103 0x77bb0000 176128 C:\Windows\SysWOW64\GDI32.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation GDI Client DLL 131795770645386103 0x77cd0000 221184 C:\Windows\SysWOW64\cfgmgr32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Configuration Manager DLL 131795770645386103 0x77d10000 28672 C:\Windows\SysWOW64\NSI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation NSI User-mode interface DLL 131795770645386103 0x77d20000 1585152 C:\Windows\SysWOW64\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 131795770645386103 0x7ffad0270000 1908736 C:\Windows\SYSTEM32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 82 8944 520 18 00000000:0031f1da 131795005508439638 0 0 1 Обязательная метка\Низкий обязательный уровень WIN-0UOTFKKVN1S\User fontdrvhost.exe C:\Windows\system32\fontdrvhost.exe "fontdrvhost.exe" Microsoft Corporation 10.0.14393.2189 (rs1_release.180329-1711) Usermode Font Driver Host 131795770645386388 0x7ff654db0000 638976 C:\Windows\system32\fontdrvhost.exe 10.0.14393.2189 (rs1_release.180329-1711) Microsoft Corporation Usermode Font Driver Host 131795770645386388 0x7ffacc770000 1572864 C:\Windows\System32\gdi32full.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation GDI Client DLL 131795770645386388 0x7ffacca60000 122880 C:\Windows\System32\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795770645386388 0x7ffacd270000 2215936 C:\Windows\System32\KERNELBASE.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645386388 0x7ffacef90000 647168 C:\Windows\System32\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795770645386388 0x7ffacf0d0000 704512 C:\Windows\System32\KERNEL32.DLL 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645386388 0x7ffacf770000 212992 C:\Windows\System32\gdi32.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation GDI Client DLL 131795770645386388 0x7ffacf890000 188416 C:\Windows\System32\IMM32.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Multi-User Windows IMM32 API Client DLL 131795770645386388 0x7ffacf8c0000 1462272 C:\Windows\System32\USER32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795770645386388 0x7ffad0270000 1908736 C:\Windows\SYSTEM32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 83 6684 664 6 00000000:0031f1da 131795006053748558 0 0 1 Обязательная метка\Низкий обязательный уровень WIN-0UOTFKKVN1S\User Microsoft.Photos.exe C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2017.35063.44410.0_x64__8wekyb3d8bbwe\Microsoft.Photos.exe "C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2017.35063.44410.0_x64__8wekyb3d8bbwe\Microsoft.Photos.exe" -ServerName:App.AppXzst44mncqdg84v7sv6p7yznqwssy6f7f.mca 131795770645660438 0x7ff705e40000 36864 C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2017.35063.44410.0_x64__8wekyb3d8bbwe\Microsoft.Photos.exe 131795770645660438 0x7ffa9bb10000 1380352 C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2017.35063.44410.0_x64__8wekyb3d8bbwe\Microsoft.RichMedia.Ink.Controls.dll 131795770645660438 0x7ffa9bc70000 3158016 C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2017.35063.44410.0_x64__8wekyb3d8bbwe\Microsoft.UI.Xaml.dll 131795770645660438 0x7ffa9bf80000 2994176 C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2017.35063.44410.0_x64__8wekyb3d8bbwe\AppCore.Windows.dll 131795770645660438 0x7ffa9c260000 20144128 C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2017.35063.44410.0_x64__8wekyb3d8bbwe\PhotosApp.Windows.dll 131795770645660438 0x7ffa9d5a0000 29011968 C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2017.35063.44410.0_x64__8wekyb3d8bbwe\Microsoft.Photos.dll 131795770645660438 0x7ffa9f150000 6311936 C:\Windows\System32\Windows.Media.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Media Runtime DLL 131795770645660438 0x7ffa9fb20000 7950336 C:\Program Files\WindowsApps\Microsoft.NET.Native.Framework.1.3_1.3.24201.0_x64__8wekyb3d8bbwe\SharedLibrary.dll Microsoft Corporation Microsoft .NET Native Shared Framework 131795770645660438 0x7ffaa03f0000 4546560 C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2017.35063.44410.0_x64__8wekyb3d8bbwe\FaceSdkStoreWrapper.dll 16.425.0.0 Microsoft Corporation FaceSdkStoreWrapper 131795770645660438 0x7ffaa0850000 2371584 C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2017.35063.44410.0_x64__8wekyb3d8bbwe\MediaEngine.dll 131795770645660438 0x7ffaab270000 917504 C:\Windows\System32\Windows.AccountsControl.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Accounts Control 131795770645660438 0x7ffaab750000 876544 C:\Windows\System32\Windows.Media.Import.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation Windows Photo Import API (WinRT/COM) 131795770645660438 0x7ffaac0c0000 1396736 C:\Windows\System32\Windows.UI.Xaml.Phone.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows UI XAML Phone API 131795770645660438 0x7ffab5b40000 2527232 C:\Windows\SYSTEM32\dwrite.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Службы Microsoft DirectX Typography 131795770645660438 0x7ffab6710000 17231872 C:\Windows\System32\Windows.UI.Xaml.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows.UI.Xaml dll 131795770645660438 0x7ffab8f40000 94208 C:\Windows\System32\Windows.System.Diagnostics.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows System Diagnostics DLL 131795770645660438 0x7ffab8f60000 397312 C:\Windows\System32\CryptoWinRT.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Crypto WinRT Library 131795770645660438 0x7ffab9270000 454656 C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2017.35063.44410.0_x64__8wekyb3d8bbwe\Microsoft.Photos.AGM.Native.Windows.dll 131795770645660438 0x7ffab9b40000 389120 C:\Program Files\WindowsApps\Microsoft.NET.Native.Runtime.1.4_1.4.24201.0_x64__8wekyb3d8bbwe\mrt100_app.dll 1.4.24201.0 built by: PROJECTNREL Microsoft Corporation Microsoft .NET Native Runtime 131795770645660438 0x7ffabb3c0000 450560 C:\Windows\SYSTEM32\TextInputFramework.dll 10.0.14393.2189 (rs1_release.180329-1711) Microsoft Corporation "TextInputFramework.DYNLINK" 131795770645660438 0x7ffabc510000 90112 C:\Windows\system32\execmodelproxy.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ExecModelProxy 131795770645660438 0x7ffabc5c0000 319488 C:\Windows\SYSTEM32\MFSENSORGROUP.dll 10.0.14393.447 (rs1_release_inmarket.161102-0100) Microsoft Corporation Media Foundation Sensor Group DLL 131795770645660438 0x7ffabc920000 270336 C:\Windows\System32\execmodelclient.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation ExecModelClient 131795770645660438 0x7ffabcef0000 102400 C:\Windows\System32\Windows.Shell.ServiceHostBuilder.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows.Shell.ServiceHostBuilder 131795770645660438 0x7ffabd4a0000 1613824 C:\Windows\System32\Windows.Globalization.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Globalization 131795770645660438 0x7ffabd8e0000 704512 C:\Windows\WinSxS\amd64_microsoft.windows.common-controls_6595b64144ccf1df_5.82.14393.447_none_0d5aa7fbb6d35646\comctl32.dll 6.10 (rs1_release_inmarket.170303-1614) Microsoft Corporation Библиотека элементов управления взаимодействия с пользователем 131795770645660438 0x7ffabe6e0000 561152 C:\Windows\system32\directmanipulation.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Direct Manipulation Component 131795770645660438 0x7ffabea30000 192512 C:\Windows\System32\Windows.Energy.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Energy Runtime DLL 131795770645660438 0x7ffabeac0000 335872 C:\Windows\System32\Windows.Storage.ApplicationData.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Application Data API Server 131795770645660438 0x7ffabeb20000 385024 C:\Windows\System32\Windows.ApplicationModel.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows ApplicationModel API Server 131795770645660438 0x7ffabf330000 2457600 C:\Windows\System32\msxml6.dll 6.30.14393.2156 Microsoft Corporation MSXML 6.0 131795770645660438 0x7ffabfce0000 90112 C:\Windows\System32\Windows.Globalization.Fontgroups.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Fonts Mapping API 131795770645660438 0x7ffabfd00000 356352 C:\Windows\System32\Windows.Graphics.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation WinRT Windows Graphics DLL 131795770645660438 0x7ffabfd80000 86016 C:\Windows\System32\threadpoolwinrt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows WinRT Threadpool 131795770645660438 0x7ffabfe10000 237568 C:\Windows\SYSTEM32\rometadata.dll 4.6.1586.0 built by: NETFXREL2 Microsoft Corporation Microsoft MetaData Library 131795770645660438 0x7ffac00c0000 282624 C:\Windows\SYSTEM32\windows.ui.core.textinput.dll 10.0.14393.2189 (rs1_release.180329-1711) Microsoft Corporation Windows.UI.Core.TextInput dll 131795770645660438 0x7ffac0470000 1478656 C:\Windows\SYSTEM32\MFPlat.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Media Foundation Platform DLL 131795770645660438 0x7ffac0910000 724992 C:\Windows\System32\Windows.Networking.Connectivity.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Networking Connectivity Runtime DLL 131795770645660438 0x7ffac0bf0000 3559424 C:\Windows\System32\ActXPrxy.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation ActiveX Interface Marshaling Library 131795770645660438 0x7ffac0fa0000 77824 C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2017.35063.44410.0_x64__8wekyb3d8bbwe\Microsoft.Photos.Edit.Services.dll 131795770645660438 0x7ffac1b90000 630784 C:\Program Files\WindowsApps\Microsoft.VCLibs.140.00_14.0.25426.0_x64__8wekyb3d8bbwe\MSVCP140_APP.dll 14.11.25426.0 built by: VCTOOLSREL Microsoft Corporation Microsoft® C Runtime Library 131795770645660438 0x7ffac1c70000 69632 C:\Program Files\WindowsApps\Microsoft.VCLibs.140.00_14.0.25426.0_x64__8wekyb3d8bbwe\VCOMP140_app.DLL 14.11.25426.0 built by: VCTOOLSREL Microsoft Corporation Microsoft® C/C++ OpenMP Runtime 131795770645660438 0x7ffac1e50000 188416 C:\Windows\SYSTEM32\RTWorkQ.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL для WorkQueue реального времени 131795770645660438 0x7ffac20d0000 110592 C:\Windows\System32\rmclient.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Resource Manager Client 131795770645660438 0x7ffac2c00000 69632 C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2017.35063.44410.0_x64__8wekyb3d8bbwe\clrcompression.dll 1.0.23123.00 built by: PROJECTKREL Microsoft Corporation ClrCompression 131795770645660438 0x7ffac2cb0000 778240 C:\Windows\SYSTEM32\winsqlite3.dll 3.12.2 SQLite Development Team SQLite is a software library that implements a self-contained, serverless, zero-configuration, transactional SQL database engine. 131795770645660438 0x7ffac3280000 36864 C:\Windows\SYSTEM32\mrt100.dll 1.0.24120.0 built by: PROJECTNREL Microsoft Corporation Microsoft .NET Native Runtime 131795770645660438 0x7ffac34e0000 1843200 C:\Windows\SYSTEM32\urlmon.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширения OLE32 для Win32 131795770645660438 0x7ffac3cb0000 2772992 C:\Windows\SYSTEM32\iertutil.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служебная программа времени выполнения для Internet Explorer 131795770645660438 0x7ffac4b10000 307200 C:\Program Files\WindowsApps\Microsoft.VCLibs.140.00_14.0.25426.0_x64__8wekyb3d8bbwe\CONCRT140_APP.dll 14.11.25426.0 built by: VCTOOLSREL Microsoft Corporation Microsoft® Concurrency Runtime Library 131795770645660438 0x7ffac4c60000 385024 C:\Program Files\WindowsApps\Microsoft.VCLibs.140.00_14.0.25426.0_x64__8wekyb3d8bbwe\vccorlib140_app.DLL 14.11.25426.0 built by: VCTOOLSREL Microsoft Corporation Microsoft ® VC WinRT core library 131795770645660438 0x7ffac5350000 1765376 C:\Windows\System32\Windows.UI.Immersive.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation WINDOWS.UI.IMMERSIVE 131795770645660438 0x7ffac60e0000 221184 C:\Windows\SYSTEM32\XmlLite.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft XmlLite Library 131795770645660438 0x7ffac6620000 192512 C:\Windows\System32\biwinrt.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation Windows Background Broker Infrastructure 131795770645660438 0x7ffac6ac0000 835584 C:\Windows\System32\Windows.UI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Runtime UI Foundation DLL 131795770645660438 0x7ffac6f50000 5632000 C:\Windows\SYSTEM32\d2d1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека Microsoft D2D 131795770645660438 0x7ffac7580000 1077248 C:\Windows\System32\MrmCoreR.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Windows MRM 131795770645660438 0x7ffac7720000 1601536 C:\Windows\System32\OneCoreUAPCommonProxyStub.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation OneCoreUAP Common Proxy Stub 131795770645660438 0x7ffac7e30000 40960 C:\Windows\SYSTEM32\fontgroupsoverride.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation fontgroupsoverride.dll 131795770645660438 0x7ffac7fc0000 2674688 C:\Windows\SYSTEM32\d3d10warp.dll 10.0.14393.576 (rs1_release_inmarket.161208-2252) Microsoft Corporation Direct3D 10 Rasterizer 131795770645660438 0x7ffac84f0000 299008 C:\Windows\system32\DataExchange.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation Data exchange 131795770645660438 0x7ffac8540000 286720 C:\Windows\System32\vaultcli.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиентская библиотека хранилища учетных данных 131795770645660438 0x7ffac88a0000 2842624 C:\Windows\SYSTEM32\d3d11.dll 10.0.14393.953 (rs1_release_inmarket.170303-1614) Microsoft Corporation Direct3D 11 Runtime 131795770645660438 0x7ffac8fa0000 253952 C:\Windows\SYSTEM32\logoncli.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Net Logon Client DLL 131795770645660438 0x7ffac92e0000 1269760 C:\Windows\SYSTEM32\wintypes.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL основных типов Windows 131795770645660438 0x7ffac9500000 2682880 C:\Windows\system32\CoreUIComponents.dll 131795770645660438 0x7ffac9f50000 1736704 C:\Windows\system32\windowscodecs.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Microsoft Windows Codecs Library 131795770645660438 0x7ffaca340000 1593344 C:\Windows\SYSTEM32\PROPSYS.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Система страниц свойств (Майкрософт) 131795770645660438 0x7ffaca570000 421888 C:\Windows\SYSTEM32\Bcp47Langs.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation BCP47 Language Classes 131795770645660438 0x7ffaca5e0000 155648 C:\Windows\SYSTEM32\dwmapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Интерфейс API диспетчера окон рабочего стола (Майкрософт) 131795770645660438 0x7ffaca640000 770048 C:\Windows\SYSTEM32\CoreMessaging.dll 10.0.14393.0 Microsoft Corporation Microsoft CoreMessaging Dll 131795770645660438 0x7ffaca770000 1380352 C:\Windows\SYSTEM32\dcomp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft DirectComposition Library 131795770645660438 0x7ffacab80000 90112 C:\Program Files\WindowsApps\Microsoft.VCLibs.140.00_14.0.25426.0_x64__8wekyb3d8bbwe\VCRUNTIME140_APP.dll 14.11.25426.0 built by: VCTOOLSREL Microsoft Corporation Microsoft® C Runtime Library 131795770645660438 0x7ffacadf0000 499712 C:\Windows\system32\apphelp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиентская библиотека совместимости приложений 131795770645660438 0x7ffacaf00000 610304 C:\Windows\system32\uxtheme.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека тем UxTheme (Microsoft) 131795770645660438 0x7ffacb1e0000 1163264 C:\Windows\SYSTEM32\twinapi.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation twinapi.appcore 131795770645660438 0x7ffacb780000 651264 C:\Windows\SYSTEM32\dxgi.dll 10.0.14393.953 (rs1_release_inmarket.170303-1614) Microsoft Corporation DirectX Graphics Infrastructure 131795770645660438 0x7ffacbe40000 126976 C:\Windows\SYSTEM32\USERENV.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Userenv 131795770645660438 0x7ffacc170000 45056 C:\Windows\SYSTEM32\CRYPTBASE.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base cryptographic API DLL 131795770645660438 0x7ffacc350000 180224 C:\Windows\SYSTEM32\SspiCli.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Security Support Provider Interface 131795770645660438 0x7ffacc620000 176128 C:\Windows\SYSTEM32\bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795770645660438 0x7ffacc6e0000 61440 C:\Windows\System32\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795770645660438 0x7ffacc6f0000 311296 C:\Windows\System32\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795770645660438 0x7ffacc740000 81920 C:\Windows\System32\profapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Profile Basic API 131795770645660438 0x7ffacc760000 65536 C:\Windows\System32\MSASN1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ASN.1 Runtime APIs 131795770645660438 0x7ffacc8f0000 1003520 C:\Windows\System32\ucrtbase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645660438 0x7ffacc9f0000 434176 C:\Windows\System32\bcryptPrimitives.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Cryptographic Primitives Library 131795770645660438 0x7ffacca60000 122880 C:\Windows\System32\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795770645660438 0x7ffaccae0000 692224 C:\Windows\System32\shcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795770645660438 0x7ffaccb90000 7180288 C:\Windows\System32\windows.storage.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API хранения Microsoft WinRT 131795770645660438 0x7ffacd270000 2215936 C:\Windows\System32\KERNELBASE.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645660438 0x7ffacd490000 1871872 C:\Windows\System32\CRYPT32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API32 криптографии 131795770645660438 0x7ffacd710000 638976 C:\Windows\System32\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645660438 0x7ffacd7b0000 270336 C:\Windows\System32\cfgmgr32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Configuration Manager DLL 131795770645660438 0x7ffaced20000 782336 C:\Windows\System32\OleAut32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795770645660438 0x7ffacee50000 1183744 C:\Windows\System32\RPCRT4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795770645660438 0x7ffacef90000 647168 C:\Windows\System32\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795770645660438 0x7ffacf0d0000 704512 C:\Windows\System32\KERNEL32.DLL 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645660438 0x7ffacf1e0000 1417216 C:\Windows\System32\msctf.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Серверная библиотека MSCTF 131795770645660438 0x7ffacf770000 212992 C:\Windows\System32\GDI32.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation GDI Client DLL 131795770645660438 0x7ffacf890000 188416 C:\Windows\System32\IMM32.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Multi-User Windows IMM32 API Client DLL 131795770645660438 0x7ffacf8c0000 1462272 C:\Windows\System32\USER32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795770645660438 0x7ffacfb30000 2916352 C:\Windows\System32\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795770645660438 0x7ffacfe20000 663552 C:\Windows\System32\advapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795770645660438 0x7ffad01b0000 335872 C:\Windows\System32\shlwapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека небольших программ оболочки 131795770645660438 0x7ffad0210000 364544 C:\Windows\System32\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795770645660438 0x7ffad0270000 1908736 C:\Windows\SYSTEM32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 84 6208 12140 85 00000000:0031f1da 131795181740423780 0 0 0 Обязательная метка\Средний обязательный уровень WIN-0UOTFKKVN1S\User OneDrive.exe C:\Users\User\AppData\Local\Microsoft\OneDrive\OneDrive.exe /updateInstalled /background Microsoft Corporation 18.131.0701.0007 Microsoft OneDrive 131795770645660654 0x11f0000 1646592 C:\Users\User\AppData\Local\Microsoft\OneDrive\OneDrive.exe 18.131.0701.0007 Microsoft Corporation Microsoft OneDrive 131795770645660654 0x55a0000 1003520 C:\Users\User\AppData\Local\Microsoft\OneDrive\18.131.0701.0007\FileSync.Resources.dll 18.131.0701.0007 Microsoft Corporation Microsoft OneDrive 131795770645660654 0x5c020000 335872 C:\Windows\System32\wow64.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation Win32 Emulation on NT64 131795770645660654 0x5c080000 487424 C:\Windows\System32\wow64win.dll 10.0.14393.1884 (rs1_release.171101-1233) Microsoft Corporation Wow64 Console and Win32 API Logging 131795770645660654 0x5c100000 40960 C:\Windows\System32\wow64cpu.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation AMD64 Wow64 CPU 131795770645660654 0x60750000 1556480 C:\Program Files (x86)\360\Total Security\safemon\safemon.dll 8, 4, 0, 1420 Qihu 360 Software Co., Ltd. 360 Internet Security Internet Protection 131795770645660654 0x64d00000 5079040 C:\Windows\SysWOW64\d2d1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека Microsoft D2D 131795770645660654 0x651e0000 20537344 C:\Windows\SysWOW64\MSHTML.dll 11.00.14393.447 (rs1_release_inmarket.161102-0100) Microsoft Corporation Средство просмотра HTML Microsoft® 131795770645660654 0x66580000 12247040 C:\Windows\SysWOW64\ieframe.dll 11.00.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Браузер 131795770645660654 0x67200000 1978368 C:\Windows\SysWOW64\msxml6.dll 6.30.14393.2156 Microsoft Corporation MSXML 6.0 131795770645660654 0x67500000 1597440 C:\Windows\SysWOW64\ActXPrxy.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation ActiveX Interface Marshaling Library 131795770645660654 0x6b670000 212992 C:\Windows\SysWOW64\mlang.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL многоязыковой поддержки 131795770645660654 0x6b6b0000 36864 C:\Windows\SysWOW64\atlthunk.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation atlthunk.dll 131795770645660654 0x6bab0000 4472832 C:\Users\User\AppData\Local\Microsoft\OneDrive\18.131.0701.0007\Qt5Widgets.dll 5.9.1.0 The Qt Company Ltd C++ application development framework. 131795770645660654 0x6c290000 987136 C:\Windows\SysWOW64\twinapi.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation twinapi.appcore 131795770645660654 0x6c390000 1126400 C:\Windows\SysWOW64\dcomp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft DirectComposition Library 131795770645660654 0x6c4b0000 278528 C:\Windows\SysWOW64\dataexchange.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation Data exchange 131795770645660654 0x6c540000 483328 C:\Windows\SysWOW64\webio.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API протоколов передачи по Веб 131795770645660654 0x6c5c0000 1384448 C:\Windows\SysWOW64\uiautomationcore.dll 7.2.14393.0 (rs1_release.160715-1616) Microsoft Corporation Основные автоматические компоненты Microsoft UI 131795770645660654 0x6c960000 57344 C:\Windows\SysWOW64\msimtf.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Active IMM Server DLL 131795770645660654 0x6c970000 3698688 C:\Windows\SysWOW64\jscript9.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft ® JScript 131795770645660654 0x6cd20000 135168 C:\Windows\SysWOW64\srpapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL программных интерфейсов (API) поставщика общих ресурсов 131795770645660654 0x6cd50000 106496 C:\Windows\SysWOW64\SAMLIB.dll 10.0.14393.82 (rs1_release.160805-1735) Microsoft Corporation SAM Library DLL 131795770645660654 0x6cda0000 528384 C:\Windows\SysWOW64\sxs.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Fusion 2.5 131795770645660654 0x6cf60000 569344 C:\Windows\SysWOW64\taskschd.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Task Scheduler COM API 131795770645660654 0x6d080000 151552 C:\Windows\SysWOW64\cryptnet.dll 10.0.14393.2035 (rs1_release_inmarket.180110-1910) Microsoft Corporation Crypto Network Related API 131795770645660654 0x6d0b0000 847872 C:\Windows\SysWOW64\WinTypes.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL основных типов Windows 131795770645660654 0x6d210000 4993024 C:\Users\User\AppData\Local\Microsoft\OneDrive\18.131.0701.0007\Qt5Gui.dll 5.9.1.0 The Qt Company Ltd C++ application development framework. 131795770645660654 0x6fcd0000 151552 C:\Windows\SysWOW64\dbgcore.DLL 10.0.14321.1024 (debuggers(dbg).160715-1616) Microsoft Windows Core Debugging Helpers 131795770645660654 0x70340000 536576 C:\Windows\SysWOW64\dxgi.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation DirectX Graphics Infrastructure 131795770645660654 0x703d0000 2056192 C:\Windows\SysWOW64\DWrite.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Службы Microsoft DirectX Typography 131795770645660654 0x707b0000 110592 C:\Windows\SysWOW64\ncryptsslp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft SChannel Provider 131795770645660654 0x707f0000 2293760 C:\Windows\SysWOW64\d3d11.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation Direct3D 11 Runtime 131795770645660654 0x70a80000 409600 C:\Windows\SysWOW64\schannel.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик безопасности TLS/SSL 131795770645660654 0x70b00000 176128 C:\Windows\SysWOW64\Wscapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API центра обеспечения безопасности Windows 131795770645660654 0x70b40000 69632 C:\Windows\SysWOW64\mskeyprotect.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик защиты ключей (Майкрософт) 131795770645660654 0x70ca0000 45056 C:\Windows\SysWOW64\NETUTILS.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API Helpers DLL 131795770645660654 0x70cc0000 65536 C:\Windows\SysWOW64\ondemandconnroutehelper.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation On Demand Connctiond Route Helper 131795770645660654 0x70ce0000 1519616 C:\Windows\SysWOW64\wpc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека параметров родительского контроля 131795770645660654 0x70e60000 176128 C:\Windows\SysWOW64\NTASN1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft ASN.1 API 131795770645660654 0x70f00000 815104 C:\Windows\SysWOW64\OneCoreUAPCommonProxyStub.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation OneCoreUAP Common Proxy Stub 131795770645660654 0x70fd0000 1331200 C:\Windows\SysWOW64\dbghelp.dll 10.0.14321.1024 (rs1_release.160715-1616) Microsoft Windows Image Helper 131795770645660654 0x71140000 77824 C:\Windows\SysWOW64\NETAPI32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API DLL 131795770645660654 0x71200000 708608 C:\Windows\SysWOW64\TokenBroker.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Token Broker 131795770645660654 0x712b0000 602112 C:\Windows\SysWOW64\Windows.Security.Authentication.Web.Core.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Token Broker WinRT API 131795770645660654 0x71350000 2867200 C:\Users\User\AppData\Local\Microsoft\OneDrive\18.131.0701.0007\Qt5Quick.dll 5.9.1.0 The Qt Company Ltd C++ application development framework. 131795770645660654 0x71610000 77824 C:\Windows\SysWOW64\dhcpcsvc6.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиент DHCPv6 131795770645660654 0x71630000 487424 C:\Windows\SysWOW64\wlidprov.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft® Account Provider 131795770645660654 0x716b0000 1294336 C:\Users\User\AppData\Local\Microsoft\OneDrive\18.131.0701.0007\LIBEAY32.dll 1.0.2k The OpenSSL Project, http://www.openssl.org/ OpenSSL Shared Library 131795770645660654 0x717f0000 2637824 C:\Users\User\AppData\Local\Microsoft\OneDrive\18.131.0701.0007\Qt5Qml.dll 5.9.1.0 The Qt Company Ltd C++ application development framework. 131795770645660654 0x71a80000 4796416 C:\Users\User\AppData\Local\Microsoft\OneDrive\18.131.0701.0007\Qt5Core.dll 5.9.1.0 The Qt Company Ltd C++ application development framework. 131795770645660654 0x71f20000 6033408 C:\Users\User\AppData\Local\Microsoft\OneDrive\18.131.0701.0007\SyncEngine.DLL 18.131.0701.0007 Microsoft Corporation Microsoft OneDrive Sync Engine 131795770645660654 0x724f0000 57344 C:\Windows\SysWOW64\credui.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Credential Manager User Interface 131795770645660654 0x72530000 126976 C:\Windows\SysWOW64\IDStore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Identity Store 131795770645660654 0x72550000 561152 C:\Windows\SysWOW64\Windows.Networking.Connectivity.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Networking Connectivity Runtime DLL 131795770645660654 0x725e0000 2273280 C:\Windows\SysWOW64\iertutil.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служебная программа времени выполнения для Internet Explorer 131795770645660654 0x72810000 28672 C:\Windows\SysWOW64\familysafetyext.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation FamilySafety ChildAccount Extensions 131795770645660654 0x72820000 167936 C:\Windows\SysWOW64\MicrosoftAccountTokenProvider.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft® Account Token Provider 131795770645660654 0x72850000 331776 C:\Windows\SysWOW64\AppXDeploymentClient.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL-библиотека клиента развертывания AppX 131795770645660654 0x728b0000 135168 C:\Users\User\AppData\Local\Microsoft\OneDrive\18.131.0701.0007\FileSyncFAL.dll 18.131.0701.0007 Microsoft Corporation Microsoft OneDriveFile Sync FAL 131795770645660654 0x728e0000 1372160 C:\Windows\SysWOW64\PROPSYS.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Система страниц свойств (Майкрософт) 131795770645660654 0x72a30000 188416 C:\Windows\SysWOW64\XmlLite.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft XmlLite Library 131795770645660654 0x72a60000 589824 C:\Windows\SysWOW64\wer.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека сообщений об ошибках Windows 131795770645660654 0x72b90000 126976 C:\Windows\SysWOW64\dwmapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Интерфейс API диспетчера окон рабочего стола (Майкрософт) 131795770645660654 0x72bb0000 1105920 C:\Users\User\AppData\Local\Microsoft\OneDrive\18.131.0701.0007\platforms\qwindows.dll 5.9.1.0 The Qt Company Ltd C++ application development framework. 131795770645660654 0x72cc0000 1658880 C:\Windows\SysWOW64\urlmon.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширения OLE32 для Win32 131795770645660654 0x72e60000 172032 C:\Windows\SysWOW64\rometadata.dll 4.6.1586.0 built by: NETFXREL2 Microsoft Corporation Microsoft MetaData Library 131795770645660654 0x72e90000 299008 C:\Users\User\AppData\Local\Microsoft\OneDrive\18.131.0701.0007\SSLEAY32.dll 1.0.2k The OpenSSL Project, http://www.openssl.org/ OpenSSL Shared Library 131795770645660654 0x72ee0000 950272 C:\Users\User\AppData\Local\Microsoft\OneDrive\18.131.0701.0007\Qt5Network.dll 5.9.1.0 The Qt Company Ltd C++ application development framework. 131795770645660654 0x72fd0000 126976 C:\Windows\SysWOW64\loadperf.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Загрузка и выгрузка счетчиков производительности 131795770645660654 0x72ff0000 278528 C:\Windows\SysWOW64\pdh.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Модуль поддержки данных производительности Windows 131795770645660654 0x73040000 253952 C:\Users\User\AppData\Local\Microsoft\OneDrive\18.131.0701.0007\Qt5WinExtras.dll 5.9.1.0 The Qt Company Ltd C++ application development framework. 131795770645660654 0x73080000 880640 C:\Users\User\AppData\Local\Microsoft\OneDrive\18.131.0701.0007\ADAL.dll 1.0.2110.0526 Microsoft ADAL.Native 131795770645660654 0x73160000 32768 C:\Windows\SysWOW64\WSOCK32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Socket 32-Bit DLL 131795770645660654 0x73170000 352256 C:\Windows\SysWOW64\faultrep.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека отчетов о сбоях в пользовательском режиме Windows 131795770645660654 0x731d0000 413696 C:\Users\User\AppData\Local\Microsoft\OneDrive\18.131.0701.0007\WnsClientApi.dll 18.131.0701.0007 Microsoft Corporation OneDrive WNS Client Library 131795770645660654 0x73240000 520192 C:\Users\User\AppData\Local\Microsoft\OneDrive\18.131.0701.0007\LogUploader.dll 18.131.0701.0007 Microsoft Corporation OneDrive Sync LogUploader Library 131795770645660654 0x732c0000 1269760 C:\Users\User\AppData\Local\Microsoft\OneDrive\18.131.0701.0007\FileSyncViews.dll 18.131.0701.0007 Microsoft Corporation Microsoft OneDrive Qt Components 131795770645660654 0x73400000 159744 C:\Users\User\AppData\Local\Microsoft\OneDrive\18.131.0701.0007\UpdateRingSettings.dll 18.131.0701.0007 Microsoft Corporation Update Ring Settings 131795770645660654 0x73430000 1748992 C:\Users\User\AppData\Local\Microsoft\OneDrive\18.131.0701.0007\FileSyncSessions.dll 18.131.0701.0007 Microsoft Corporation P2P Session Library 131795770645660654 0x735e0000 671744 C:\Users\User\AppData\Local\Microsoft\OneDrive\18.131.0701.0007\RemoteAccess.dll 18.131.0701.0007 Microsoft Corporation Remote Access 131795770645660654 0x73690000 188416 C:\Users\User\AppData\Local\Microsoft\OneDrive\18.131.0701.0007\Telemetry.dll 18.131.0701.0007 Microsoft Corporation Telemetry Library 131795770645660654 0x736c0000 32768 C:\Users\User\AppData\Local\Microsoft\OneDrive\18.131.0701.0007\ETWLog.dll 18.131.0701.0007 Microsoft Corporation ETW Session Library 131795770645660654 0x736d0000 3600384 C:\Users\User\AppData\Local\Microsoft\OneDrive\18.131.0701.0007\FileSyncClient.dll 18.131.0701.0007 Microsoft Corporation Microsoft OneDrive Client 131795770645660654 0x73a40000 32768 C:\Windows\SysWOW64\WINNSI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Network Store Information RPC interface 131795770645660654 0x73a50000 299008 C:\Windows\SysWOW64\fwpuclnt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API пользовательского режима FWP/IPsec 131795770645660654 0x73aa0000 32768 C:\Windows\SysWOW64\DPAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Data Protection API 131795770645660654 0x73ab0000 32768 C:\Windows\SysWOW64\rasadhlp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Remote Access AutoDial Helper 131795770645660654 0x73ac0000 81920 C:\Windows\SysWOW64\dhcpcsvc.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служба DHCP-клиента 131795770645660654 0x73ae0000 40960 C:\Windows\SysWOW64\Secur32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Security Support Provider Interface 131795770645660654 0x73af0000 1417216 C:\Users\User\AppData\Local\Microsoft\OneDrive\18.131.0701.0007\LoggingPlatform.dll 18.131.0701.0007 Microsoft Corporation Logging Platform 131795770645660654 0x73c50000 1478656 C:\Windows\WinSxS\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.14393.1715_none_f67438d2f2547a00\gdiplus.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Microsoft GDI+ 131795770645660654 0x73dc0000 1171456 C:\Users\User\AppData\Local\Microsoft\OneDrive\18.131.0701.0007\ucrtbase.dll 10.0.17134.12 (WinBuild.160101.0800) Microsoft Corporation Microsoft® C Runtime Library 131795770645660654 0x73ee0000 61440 C:\Windows\SysWOW64\wtsapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Remote Desktop Session Host Server SDK APIs 131795770645660654 0x73f00000 192512 C:\Windows\SysWOW64\IPHLPAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API вспомогательного приложения IP 131795770645660654 0x73f30000 512000 C:\Windows\SysWOW64\DNSAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Динамическая библиотека API DNS-клиента 131795770645660654 0x73fb0000 36864 C:\Windows\SysWOW64\ktmw32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows KTM Win32 Client DLL 131795770645660654 0x73ff0000 319488 C:\Windows\SysWOW64\MSWSOCK.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширение поставщика службы API Microsoft Windows Sockets 2.0 131795770645660654 0x74060000 192512 C:\Windows\SysWOW64\rsaenh.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Enhanced Cryptographic Provider 131795770645660654 0x74090000 462848 C:\Users\User\AppData\Local\Microsoft\OneDrive\18.131.0701.0007\MSVCP140.dll 14.13.26020.0 built by: VCTOOLSREL Microsoft Corporation Microsoft® C Runtime Library 131795770645660654 0x74110000 479232 C:\Windows\SysWOW64\UxTheme.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека тем UxTheme (Microsoft) 131795770645660654 0x74190000 110592 C:\Windows\SysWOW64\bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795770645660654 0x741b0000 77824 C:\Windows\SysWOW64\CRYPTSP.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Cryptographic Service Provider API 131795770645660654 0x741d0000 86016 C:\Users\User\AppData\Local\Microsoft\OneDrive\18.131.0701.0007\VCRUNTIME140.dll 14.13.26020.0 built by: VCTOOLSREL Microsoft Corporation Microsoft® C Runtime Library 131795770645660654 0x741f0000 143360 C:\Windows\SysWOW64\WINMMBASE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base Multimedia Extension API DLL 131795770645660654 0x74220000 53248 C:\Windows\SysWOW64\TOKENBINDING.dll 10.0.14393.1593 (rs1_release.170731-1934) Microsoft Corporation Token Binding Protocol 131795770645660654 0x74230000 147456 C:\Windows\SysWOW64\WINMM.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation MCI API DLL 131795770645660654 0x74260000 2514944 C:\Windows\SysWOW64\WININET.dll 11.00.14393.447 (rs1_release_inmarket.161102-0100) Microsoft Corporation Расширения Интернета для Win32 131795770645660654 0x744d0000 2138112 C:\Windows\WinSxS\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.14393.953_none_89c2555adb023171\COMCTL32.dll 6.10 (rs1_release_inmarket.170303-1614) Microsoft Corporation Библиотека элементов управления взаимодействия с пользователем 131795770645660654 0x746e0000 32768 C:\Windows\SysWOW64\VERSION.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Version Checking and File Installation Libraries 131795770645660654 0x746f0000 106496 C:\Windows\SysWOW64\USERENV.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Userenv 131795770645660654 0x74710000 90112 C:\Windows\SysWOW64\MPR.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека маршрутизации для нескольких служб доступа 131795770645660654 0x74730000 598016 C:\Windows\SysWOW64\apphelp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиентская библиотека совместимости приложений 131795770645660654 0x747d0000 40960 C:\Windows\SysWOW64\CRYPTBASE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base cryptographic API DLL 131795770645660654 0x747e0000 126976 C:\Windows\SysWOW64\SspiCli.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Security Support Provider Interface 131795770645660654 0x74800000 151552 C:\Windows\SysWOW64\IMM32.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Multi-User Windows IMM32 API Client DLL 131795770645660654 0x74910000 2170880 C:\Windows\SysWOW64\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795770645660654 0x74b30000 53248 C:\Windows\SysWOW64\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795770645660654 0x74b60000 790528 C:\Windows\SysWOW64\RPCRT4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795770645660654 0x74c30000 1417216 C:\Windows\SysWOW64\gdi32full.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation GDI Client DLL 131795770645660654 0x74d90000 24576 C:\Windows\SysWOW64\PSAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Process Status Helper 131795770645660654 0x74da0000 778240 C:\Windows\SysWOW64\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795770645660654 0x74e60000 557056 C:\Windows\SysWOW64\shcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795770645660654 0x74ef0000 540672 C:\Windows\SysWOW64\clbcatq.dll 2001.12.10941.16384 (rs1_release.160715-1616) Microsoft Corporation COM+ Configuration Catalog 131795770645660654 0x74f80000 278528 C:\Windows\SysWOW64\WINTRUST.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation Microsoft Trust Verification APIs 131795770645660654 0x74fd0000 405504 C:\Windows\SysWOW64\WS2_32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation 32-разрядная библиотека Windows Socket 2.0 131795770645660654 0x75040000 282624 C:\Windows\SysWOW64\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795770645660654 0x75090000 1265664 C:\Windows\SysWOW64\MSCTF.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Серверная библиотека MSCTF 131795770645660654 0x751d0000 57344 C:\Windows\SysWOW64\MSASN1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ASN.1 Runtime APIs 131795770645660654 0x751e0000 1708032 C:\Windows\SysWOW64\KERNELBASE.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645660654 0x75390000 266240 C:\Windows\SysWOW64\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795770645660654 0x753e0000 1560576 C:\Windows\SysWOW64\CRYPT32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API32 криптографии 131795770645660654 0x75560000 487424 C:\Windows\SysWOW64\ADVAPI32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795770645660654 0x756c0000 5693440 C:\Windows\SysWOW64\windows.storage.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API хранения Microsoft WinRT 131795770645660654 0x75c90000 286720 C:\Windows\SysWOW64\shlwapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека небольших программ оболочки 131795770645660654 0x75ce0000 20811776 C:\Windows\SysWOW64\SHELL32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Общая библиотека оболочки Windows 131795770645660654 0x774d0000 86016 C:\Windows\SysWOW64\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795770645660654 0x774f0000 61440 C:\Windows\SysWOW64\profapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Profile Basic API 131795770645660654 0x77560000 1437696 C:\Windows\SysWOW64\USER32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795770645660654 0x776c0000 368640 C:\Windows\SysWOW64\bcryptPrimitives.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation Windows Cryptographic Primitives Library 131795770645660654 0x77780000 503808 C:\Windows\SysWOW64\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645660654 0x77800000 606208 C:\Windows\SysWOW64\OLEAUT32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795770645660654 0x77ac0000 966656 C:\Windows\SysWOW64\ole32.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft OLE для Windows 131795770645660654 0x77bb0000 176128 C:\Windows\SysWOW64\GDI32.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation GDI Client DLL 131795770645660654 0x77cd0000 221184 C:\Windows\SysWOW64\cfgmgr32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Configuration Manager DLL 131795770645660654 0x77d10000 28672 C:\Windows\SysWOW64\NSI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation NSI User-mode interface DLL 131795770645660654 0x77d20000 1585152 C:\Windows\SysWOW64\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 131795770645660654 0x7ffad0270000 1908736 C:\Windows\SYSTEM32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 86 6140 7744 57 00000000:0031f1da 131795747339404666 0 0 0 Обязательная метка\Ненадежный обязательный уровень WIN-0UOTFKKVN1S\User browser.exe C:\Users\User\AppData\Local\Yandex\YandexBrowser\Application\browser.exe "C:\Users\User\AppData\Local\Yandex\YandexBrowser\Application\browser.exe" --type=renderer --enable-in-process-wmf-demuxer --field-trial-handle=1292,9555382311565764851,7120838982649204725,131072 --enable-ignition --disable-gpu-compositing --service-pipe-token=764E64A4EA650A23B18EB059FF0B4B51 --lang=ru --user-id=32B2E0A1-3039-4C67-86BE-75A88EF21B54 --brand-id=yandex --partner-id=7924 --help-url=https://api.browser.yandex.ru/redirect/help/ --user-agent-info --translate-security-origin=https://translate.yandex.net --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --enable-instaserp --device-scale-factor=1 --num-raster-threads=1 --enable-compositor-image-animations --service-request-channel-token=764E64A4EA650A23B18EB059FF0B4B51 --renderer-client-id=106 --mojo-platform-channel-handle=6612 /prefetch:1 YANDEX LLC 18.6.1.770 Yandex 131795770645660799 0x10e0000 2519040 C:\Users\User\AppData\Local\Yandex\YandexBrowser\Application\browser.exe 18.6.1.770 YANDEX LLC Yandex 131795770645660799 0x58720000 59748352 C:\Users\User\AppData\Local\Yandex\YandexBrowser\Application\18.6.1.770\browser_child.dll 18.6.1.770 YANDEX LLC Yandex 131795770645660799 0x5c020000 335872 C:\Windows\System32\wow64.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation Win32 Emulation on NT64 131795770645660799 0x5c080000 487424 C:\Windows\System32\wow64win.dll 10.0.14393.1884 (rs1_release.171101-1233) Microsoft Corporation Wow64 Console and Win32 API Logging 131795770645660799 0x5c100000 40960 C:\Windows\System32\wow64cpu.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation AMD64 Wow64 CPU 131795770645660799 0x6e8b0000 1859584 C:\Windows\SysWOW64\mfmp4srcsnk.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL источника и приемника MPEG4 Media Foundation 131795770645660799 0x6ef30000 647168 C:\Windows\SysWOW64\evr.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека DLL средства отображения видео 131795770645660799 0x6efd0000 458752 C:\Windows\SysWOW64\msauddecmft.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Media Foundation Audio Decoders 131795770645660799 0x6f790000 1085440 C:\Windows\SysWOW64\mfperfhelper.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation MFPerf DLL 131795770645660799 0x6f8a0000 2220032 C:\Windows\SysWOW64\msmpeg2vdec.dll 10.0.14393.953 (rs1_release_inmarket.170303-1614) Microsoft Corporation Microsoft DTV-DVD Video Decoder 131795770645660799 0x6fac0000 1130496 C:\Windows\SysWOW64\mfplat.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Media Foundation Platform DLL 131795770645660799 0x6ff60000 172032 C:\Windows\SysWOW64\RTWorkQ.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL для WorkQueue реального времени 131795770645660799 0x70030000 593920 C:\Users\User\AppData\Local\Yandex\YandexBrowser\Application\18.6.1.770\browser_elf.dll 18.6.1.770 YANDEX LLC Yandex 131795770645660799 0x700d0000 434176 C:\Windows\SysWOW64\WINSPOOL.DRV 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Драйвер диспетчера очереди Windows 131795770645660799 0x70340000 536576 C:\Windows\SysWOW64\dxgi.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation DirectX Graphics Infrastructure 131795770645660799 0x703d0000 2056192 C:\Windows\SysWOW64\DWrite.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Службы Microsoft DirectX Typography 131795770645660799 0x707d0000 86016 C:\Windows\SysWOW64\SAMCLI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Security Accounts Manager Client DLL 131795770645660799 0x70a20000 94208 C:\Windows\SysWOW64\USP10.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Uniscribe Unicode script processor 131795770645660799 0x70ca0000 45056 C:\Windows\SysWOW64\NETUTILS.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API Helpers DLL 131795770645660799 0x70fd0000 1331200 C:\Windows\SysWOW64\dbghelp.dll 10.0.14321.1024 (rs1_release.160715-1616) Microsoft Windows Image Helper 131795770645660799 0x71140000 77824 C:\Windows\SysWOW64\NETAPI32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API DLL 131795770645660799 0x725e0000 2273280 C:\Windows\SysWOW64\iertutil.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служебная программа времени выполнения для Internet Explorer 131795770645660799 0x728e0000 1372160 C:\Windows\SysWOW64\PROPSYS.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Система страниц свойств (Майкрософт) 131795770645660799 0x72af0000 655360 C:\Windows\SysWOW64\WINHTTP.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Службы HTTP Windows 131795770645660799 0x72cc0000 1658880 C:\Windows\SysWOW64\urlmon.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширения OLE32 для Win32 131795770645660799 0x73ac0000 81920 C:\Windows\SysWOW64\dhcpcsvc.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служба DHCP-клиента 131795770645660799 0x73ae0000 40960 C:\Windows\SysWOW64\Secur32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Security Support Provider Interface 131795770645660799 0x73f00000 192512 C:\Windows\SysWOW64\IPHLPAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API вспомогательного приложения IP 131795770645660799 0x74190000 110592 C:\Windows\SysWOW64\bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795770645660799 0x741b0000 77824 C:\Windows\SysWOW64\cryptsp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Cryptographic Service Provider API 131795770645660799 0x741f0000 143360 C:\Windows\SysWOW64\WINMMBASE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base Multimedia Extension API DLL 131795770645660799 0x74230000 147456 C:\Windows\SysWOW64\WINMM.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation MCI API DLL 131795770645660799 0x744d0000 2138112 C:\Windows\WinSxS\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.14393.953_none_89c2555adb023171\COMCTL32.dll 6.10 (rs1_release_inmarket.170303-1614) Microsoft Corporation Библиотека элементов управления взаимодействия с пользователем 131795770645660799 0x746e0000 32768 C:\Windows\SysWOW64\VERSION.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Version Checking and File Installation Libraries 131795770645660799 0x746f0000 106496 C:\Windows\SysWOW64\USERENV.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Userenv 131795770645660799 0x747d0000 40960 C:\Windows\SysWOW64\CRYPTBASE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base cryptographic API DLL 131795770645660799 0x747e0000 126976 C:\Windows\SysWOW64\SspiCli.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Security Support Provider Interface 131795770645660799 0x74800000 151552 C:\Windows\SysWOW64\IMM32.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Multi-User Windows IMM32 API Client DLL 131795770645660799 0x74910000 2170880 C:\Windows\SysWOW64\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795770645660799 0x74b30000 53248 C:\Windows\SysWOW64\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795770645660799 0x74b60000 790528 C:\Windows\SysWOW64\RPCRT4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795770645660799 0x74c30000 1417216 C:\Windows\SysWOW64\gdi32full.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation GDI Client DLL 131795770645660799 0x74d90000 24576 C:\Windows\SysWOW64\PSAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Process Status Helper 131795770645660799 0x74da0000 778240 C:\Windows\SysWOW64\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795770645660799 0x74e60000 557056 C:\Windows\SysWOW64\shcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795770645660799 0x74f80000 278528 C:\Windows\SysWOW64\WINTRUST.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation Microsoft Trust Verification APIs 131795770645660799 0x74fd0000 405504 C:\Windows\SysWOW64\WS2_32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation 32-разрядная библиотека Windows Socket 2.0 131795770645660799 0x75040000 282624 C:\Windows\SysWOW64\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795770645660799 0x751d0000 57344 C:\Windows\SysWOW64\MSASN1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ASN.1 Runtime APIs 131795770645660799 0x751e0000 1708032 C:\Windows\SysWOW64\KERNELBASE.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645660799 0x75390000 266240 C:\Windows\SysWOW64\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795770645660799 0x753e0000 1560576 C:\Windows\SysWOW64\CRYPT32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API32 криптографии 131795770645660799 0x75560000 487424 C:\Windows\SysWOW64\ADVAPI32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795770645660799 0x756c0000 5693440 C:\Windows\SysWOW64\windows.storage.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API хранения Microsoft WinRT 131795770645660799 0x75c90000 286720 C:\Windows\SysWOW64\shlwapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека небольших программ оболочки 131795770645660799 0x75ce0000 20811776 C:\Windows\SysWOW64\SHELL32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Общая библиотека оболочки Windows 131795770645660799 0x774d0000 86016 C:\Windows\SysWOW64\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795770645660799 0x774f0000 61440 C:\Windows\SysWOW64\profapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Profile Basic API 131795770645660799 0x77560000 1437696 C:\Windows\SysWOW64\USER32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795770645660799 0x776c0000 368640 C:\Windows\SysWOW64\bcryptPrimitives.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation Windows Cryptographic Primitives Library 131795770645660799 0x77780000 503808 C:\Windows\SysWOW64\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645660799 0x77800000 606208 C:\Windows\SysWOW64\OLEAUT32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795770645660799 0x77ac0000 966656 C:\Windows\SysWOW64\ole32.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft OLE для Windows 131795770645660799 0x77bb0000 176128 C:\Windows\SysWOW64\GDI32.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation GDI Client DLL 131795770645660799 0x77be0000 937984 C:\Windows\SysWOW64\COMDLG32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека общих диалоговых окон 131795770645660799 0x77cd0000 221184 C:\Windows\SysWOW64\cfgmgr32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Configuration Manager DLL 131795770645660799 0x77d10000 28672 C:\Windows\SysWOW64\NSI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation NSI User-mode interface DLL 131795770645660799 0x77d20000 1585152 C:\Windows\SysWOW64\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 131795770645660799 0x7ffad0270000 1908736 C:\Windows\SYSTEM32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 87 11432 7744 57 00000000:0031f1da 131795755605761168 0 0 0 Обязательная метка\Ненадежный обязательный уровень WIN-0UOTFKKVN1S\User browser.exe C:\Users\User\AppData\Local\Yandex\YandexBrowser\Application\browser.exe "C:\Users\User\AppData\Local\Yandex\YandexBrowser\Application\browser.exe" --type=renderer --enable-in-process-wmf-demuxer --field-trial-handle=1292,9555382311565764851,7120838982649204725,131072 --enable-ignition --disable-gpu-compositing --service-pipe-token=9DD318D38190D474A9A0F5AFD262A449 --lang=ru --user-id=32B2E0A1-3039-4C67-86BE-75A88EF21B54 --brand-id=yandex --partner-id=7924 --help-url=https://api.browser.yandex.ru/redirect/help/ --user-agent-info --translate-security-origin=https://translate.yandex.net --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --enable-instaserp --device-scale-factor=1 --num-raster-threads=1 --enable-compositor-image-animations --service-request-channel-token=9DD318D38190D474A9A0F5AFD262A449 --renderer-client-id=109 --mojo-platform-channel-handle=4152 /prefetch:1 YANDEX LLC 18.6.1.770 Yandex 131795770645660929 0x10e0000 2519040 C:\Users\User\AppData\Local\Yandex\YandexBrowser\Application\browser.exe 18.6.1.770 YANDEX LLC Yandex 131795770645660929 0x58720000 59748352 C:\Users\User\AppData\Local\Yandex\YandexBrowser\Application\18.6.1.770\browser_child.dll 18.6.1.770 YANDEX LLC Yandex 131795770645660929 0x5c020000 335872 C:\Windows\System32\wow64.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation Win32 Emulation on NT64 131795770645660929 0x5c080000 487424 C:\Windows\System32\wow64win.dll 10.0.14393.1884 (rs1_release.171101-1233) Microsoft Corporation Wow64 Console and Win32 API Logging 131795770645660929 0x5c100000 40960 C:\Windows\System32\wow64cpu.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation AMD64 Wow64 CPU 131795770645660929 0x6e8b0000 1859584 C:\Windows\SysWOW64\mfmp4srcsnk.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL источника и приемника MPEG4 Media Foundation 131795770645660929 0x6ef30000 647168 C:\Windows\SysWOW64\evr.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека DLL средства отображения видео 131795770645660929 0x6efd0000 458752 C:\Windows\SysWOW64\msauddecmft.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Media Foundation Audio Decoders 131795770645660929 0x6f790000 1085440 C:\Windows\SysWOW64\mfperfhelper.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation MFPerf DLL 131795770645660929 0x6f8a0000 2220032 C:\Windows\SysWOW64\msmpeg2vdec.dll 10.0.14393.953 (rs1_release_inmarket.170303-1614) Microsoft Corporation Microsoft DTV-DVD Video Decoder 131795770645660929 0x6fac0000 1130496 C:\Windows\SysWOW64\mfplat.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Media Foundation Platform DLL 131795770645660929 0x6ff60000 172032 C:\Windows\SysWOW64\RTWorkQ.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL для WorkQueue реального времени 131795770645660929 0x70030000 593920 C:\Users\User\AppData\Local\Yandex\YandexBrowser\Application\18.6.1.770\browser_elf.dll 18.6.1.770 YANDEX LLC Yandex 131795770645660929 0x700d0000 434176 C:\Windows\SysWOW64\WINSPOOL.DRV 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Драйвер диспетчера очереди Windows 131795770645660929 0x70340000 536576 C:\Windows\SysWOW64\dxgi.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation DirectX Graphics Infrastructure 131795770645660929 0x703d0000 2056192 C:\Windows\SysWOW64\DWrite.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Службы Microsoft DirectX Typography 131795770645660929 0x707d0000 86016 C:\Windows\SysWOW64\SAMCLI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Security Accounts Manager Client DLL 131795770645660929 0x70a20000 94208 C:\Windows\SysWOW64\USP10.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Uniscribe Unicode script processor 131795770645660929 0x70ca0000 45056 C:\Windows\SysWOW64\NETUTILS.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API Helpers DLL 131795770645660929 0x70fd0000 1331200 C:\Windows\SysWOW64\dbghelp.dll 10.0.14321.1024 (rs1_release.160715-1616) Microsoft Windows Image Helper 131795770645660929 0x71140000 77824 C:\Windows\SysWOW64\NETAPI32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API DLL 131795770645660929 0x725e0000 2273280 C:\Windows\SysWOW64\iertutil.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служебная программа времени выполнения для Internet Explorer 131795770645660929 0x728e0000 1372160 C:\Windows\SysWOW64\PROPSYS.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Система страниц свойств (Майкрософт) 131795770645660929 0x72af0000 655360 C:\Windows\SysWOW64\WINHTTP.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Службы HTTP Windows 131795770645660929 0x72cc0000 1658880 C:\Windows\SysWOW64\urlmon.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширения OLE32 для Win32 131795770645660929 0x73ac0000 81920 C:\Windows\SysWOW64\dhcpcsvc.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служба DHCP-клиента 131795770645660929 0x73ae0000 40960 C:\Windows\SysWOW64\Secur32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Security Support Provider Interface 131795770645660929 0x73f00000 192512 C:\Windows\SysWOW64\IPHLPAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API вспомогательного приложения IP 131795770645660929 0x74190000 110592 C:\Windows\SysWOW64\bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795770645660929 0x741b0000 77824 C:\Windows\SysWOW64\cryptsp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Cryptographic Service Provider API 131795770645660929 0x741f0000 143360 C:\Windows\SysWOW64\WINMMBASE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base Multimedia Extension API DLL 131795770645660929 0x74230000 147456 C:\Windows\SysWOW64\WINMM.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation MCI API DLL 131795770645660929 0x744d0000 2138112 C:\Windows\WinSxS\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.14393.953_none_89c2555adb023171\COMCTL32.dll 6.10 (rs1_release_inmarket.170303-1614) Microsoft Corporation Библиотека элементов управления взаимодействия с пользователем 131795770645660929 0x746e0000 32768 C:\Windows\SysWOW64\VERSION.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Version Checking and File Installation Libraries 131795770645660929 0x746f0000 106496 C:\Windows\SysWOW64\USERENV.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Userenv 131795770645660929 0x747d0000 40960 C:\Windows\SysWOW64\CRYPTBASE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base cryptographic API DLL 131795770645660929 0x747e0000 126976 C:\Windows\SysWOW64\SspiCli.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Security Support Provider Interface 131795770645660929 0x74800000 151552 C:\Windows\SysWOW64\IMM32.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Multi-User Windows IMM32 API Client DLL 131795770645660929 0x74910000 2170880 C:\Windows\SysWOW64\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795770645660929 0x74b30000 53248 C:\Windows\SysWOW64\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795770645660929 0x74b60000 790528 C:\Windows\SysWOW64\RPCRT4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795770645660929 0x74c30000 1417216 C:\Windows\SysWOW64\gdi32full.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation GDI Client DLL 131795770645660929 0x74d90000 24576 C:\Windows\SysWOW64\PSAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Process Status Helper 131795770645660929 0x74da0000 778240 C:\Windows\SysWOW64\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795770645660929 0x74e60000 557056 C:\Windows\SysWOW64\shcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795770645660929 0x74f80000 278528 C:\Windows\SysWOW64\WINTRUST.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation Microsoft Trust Verification APIs 131795770645660929 0x74fd0000 405504 C:\Windows\SysWOW64\WS2_32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation 32-разрядная библиотека Windows Socket 2.0 131795770645660929 0x75040000 282624 C:\Windows\SysWOW64\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795770645660929 0x751d0000 57344 C:\Windows\SysWOW64\MSASN1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ASN.1 Runtime APIs 131795770645660929 0x751e0000 1708032 C:\Windows\SysWOW64\KERNELBASE.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645660929 0x75390000 266240 C:\Windows\SysWOW64\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795770645660929 0x753e0000 1560576 C:\Windows\SysWOW64\CRYPT32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API32 криптографии 131795770645660929 0x75560000 487424 C:\Windows\SysWOW64\ADVAPI32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795770645660929 0x756c0000 5693440 C:\Windows\SysWOW64\windows.storage.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API хранения Microsoft WinRT 131795770645660929 0x75c90000 286720 C:\Windows\SysWOW64\shlwapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека небольших программ оболочки 131795770645660929 0x75ce0000 20811776 C:\Windows\SysWOW64\SHELL32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Общая библиотека оболочки Windows 131795770645660929 0x774d0000 86016 C:\Windows\SysWOW64\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795770645660929 0x774f0000 61440 C:\Windows\SysWOW64\profapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Profile Basic API 131795770645660929 0x77560000 1437696 C:\Windows\SysWOW64\USER32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795770645660929 0x776c0000 368640 C:\Windows\SysWOW64\bcryptPrimitives.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation Windows Cryptographic Primitives Library 131795770645660929 0x77780000 503808 C:\Windows\SysWOW64\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645660929 0x77800000 606208 C:\Windows\SysWOW64\OLEAUT32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795770645660929 0x77ac0000 966656 C:\Windows\SysWOW64\ole32.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft OLE для Windows 131795770645660929 0x77bb0000 176128 C:\Windows\SysWOW64\GDI32.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation GDI Client DLL 131795770645660929 0x77be0000 937984 C:\Windows\SysWOW64\COMDLG32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека общих диалоговых окон 131795770645660929 0x77cd0000 221184 C:\Windows\SysWOW64\cfgmgr32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Configuration Manager DLL 131795770645660929 0x77d10000 28672 C:\Windows\SysWOW64\NSI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation NSI User-mode interface DLL 131795770645660929 0x77d20000 1585152 C:\Windows\SysWOW64\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 131795770645660929 0x7ffad0270000 1908736 C:\Windows\SYSTEM32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 88 10384 7744 57 00000000:0031f1da 131795755746873891 0 0 0 Обязательная метка\Ненадежный обязательный уровень WIN-0UOTFKKVN1S\User browser.exe C:\Users\User\AppData\Local\Yandex\YandexBrowser\Application\browser.exe "C:\Users\User\AppData\Local\Yandex\YandexBrowser\Application\browser.exe" --type=renderer --enable-in-process-wmf-demuxer --field-trial-handle=1292,9555382311565764851,7120838982649204725,131072 --enable-ignition --disable-gpu-compositing --service-pipe-token=7E669976FFDCEE94D9B90B02CADE1179 --lang=ru --user-id=32B2E0A1-3039-4C67-86BE-75A88EF21B54 --brand-id=yandex --partner-id=7924 --help-url=https://api.browser.yandex.ru/redirect/help/ --user-agent-info --translate-security-origin=https://translate.yandex.net --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --enable-instaserp --device-scale-factor=1 --num-raster-threads=1 --enable-compositor-image-animations --service-request-channel-token=7E669976FFDCEE94D9B90B02CADE1179 --renderer-client-id=112 --mojo-platform-channel-handle=5412 /prefetch:1 YANDEX LLC 18.6.1.770 Yandex 131795770645661053 0x10e0000 2519040 C:\Users\User\AppData\Local\Yandex\YandexBrowser\Application\browser.exe 18.6.1.770 YANDEX LLC Yandex 131795770645661053 0x58720000 59748352 C:\Users\User\AppData\Local\Yandex\YandexBrowser\Application\18.6.1.770\browser_child.dll 18.6.1.770 YANDEX LLC Yandex 131795770645661053 0x5c020000 335872 C:\Windows\System32\wow64.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation Win32 Emulation on NT64 131795770645661053 0x5c080000 487424 C:\Windows\System32\wow64win.dll 10.0.14393.1884 (rs1_release.171101-1233) Microsoft Corporation Wow64 Console and Win32 API Logging 131795770645661053 0x5c100000 40960 C:\Windows\System32\wow64cpu.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation AMD64 Wow64 CPU 131795770645661053 0x6e8b0000 1859584 C:\Windows\SysWOW64\mfmp4srcsnk.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL источника и приемника MPEG4 Media Foundation 131795770645661053 0x6ef30000 647168 C:\Windows\SysWOW64\evr.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека DLL средства отображения видео 131795770645661053 0x6efd0000 458752 C:\Windows\SysWOW64\msauddecmft.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Media Foundation Audio Decoders 131795770645661053 0x6f790000 1085440 C:\Windows\SysWOW64\mfperfhelper.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation MFPerf DLL 131795770645661053 0x6f8a0000 2220032 C:\Windows\SysWOW64\msmpeg2vdec.dll 10.0.14393.953 (rs1_release_inmarket.170303-1614) Microsoft Corporation Microsoft DTV-DVD Video Decoder 131795770645661053 0x6fac0000 1130496 C:\Windows\SysWOW64\mfplat.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Media Foundation Platform DLL 131795770645661053 0x6ff60000 172032 C:\Windows\SysWOW64\RTWorkQ.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL для WorkQueue реального времени 131795770645661053 0x70030000 593920 C:\Users\User\AppData\Local\Yandex\YandexBrowser\Application\18.6.1.770\browser_elf.dll 18.6.1.770 YANDEX LLC Yandex 131795770645661053 0x700d0000 434176 C:\Windows\SysWOW64\WINSPOOL.DRV 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Драйвер диспетчера очереди Windows 131795770645661053 0x70340000 536576 C:\Windows\SysWOW64\dxgi.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation DirectX Graphics Infrastructure 131795770645661053 0x703d0000 2056192 C:\Windows\SysWOW64\DWrite.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Службы Microsoft DirectX Typography 131795770645661053 0x707d0000 86016 C:\Windows\SysWOW64\SAMCLI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Security Accounts Manager Client DLL 131795770645661053 0x70a20000 94208 C:\Windows\SysWOW64\USP10.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Uniscribe Unicode script processor 131795770645661053 0x70ca0000 45056 C:\Windows\SysWOW64\NETUTILS.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API Helpers DLL 131795770645661053 0x70fd0000 1331200 C:\Windows\SysWOW64\dbghelp.dll 10.0.14321.1024 (rs1_release.160715-1616) Microsoft Windows Image Helper 131795770645661053 0x71140000 77824 C:\Windows\SysWOW64\NETAPI32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API DLL 131795770645661053 0x725e0000 2273280 C:\Windows\SysWOW64\iertutil.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служебная программа времени выполнения для Internet Explorer 131795770645661053 0x728e0000 1372160 C:\Windows\SysWOW64\PROPSYS.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Система страниц свойств (Майкрософт) 131795770645661053 0x72af0000 655360 C:\Windows\SysWOW64\WINHTTP.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Службы HTTP Windows 131795770645661053 0x72cc0000 1658880 C:\Windows\SysWOW64\urlmon.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширения OLE32 для Win32 131795770645661053 0x73ac0000 81920 C:\Windows\SysWOW64\dhcpcsvc.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служба DHCP-клиента 131795770645661053 0x73ae0000 40960 C:\Windows\SysWOW64\Secur32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Security Support Provider Interface 131795770645661053 0x73f00000 192512 C:\Windows\SysWOW64\IPHLPAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API вспомогательного приложения IP 131795770645661053 0x74190000 110592 C:\Windows\SysWOW64\bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795770645661053 0x741b0000 77824 C:\Windows\SysWOW64\cryptsp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Cryptographic Service Provider API 131795770645661053 0x741f0000 143360 C:\Windows\SysWOW64\WINMMBASE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base Multimedia Extension API DLL 131795770645661053 0x74230000 147456 C:\Windows\SysWOW64\WINMM.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation MCI API DLL 131795770645661053 0x744d0000 2138112 C:\Windows\WinSxS\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.14393.953_none_89c2555adb023171\COMCTL32.dll 6.10 (rs1_release_inmarket.170303-1614) Microsoft Corporation Библиотека элементов управления взаимодействия с пользователем 131795770645661053 0x746e0000 32768 C:\Windows\SysWOW64\VERSION.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Version Checking and File Installation Libraries 131795770645661053 0x746f0000 106496 C:\Windows\SysWOW64\USERENV.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Userenv 131795770645661053 0x747d0000 40960 C:\Windows\SysWOW64\CRYPTBASE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base cryptographic API DLL 131795770645661053 0x747e0000 126976 C:\Windows\SysWOW64\SspiCli.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Security Support Provider Interface 131795770645661053 0x74800000 151552 C:\Windows\SysWOW64\IMM32.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Multi-User Windows IMM32 API Client DLL 131795770645661053 0x74910000 2170880 C:\Windows\SysWOW64\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795770645661053 0x74b30000 53248 C:\Windows\SysWOW64\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795770645661053 0x74b60000 790528 C:\Windows\SysWOW64\RPCRT4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795770645661053 0x74c30000 1417216 C:\Windows\SysWOW64\gdi32full.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation GDI Client DLL 131795770645661053 0x74d90000 24576 C:\Windows\SysWOW64\PSAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Process Status Helper 131795770645661053 0x74da0000 778240 C:\Windows\SysWOW64\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795770645661053 0x74e60000 557056 C:\Windows\SysWOW64\shcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795770645661053 0x74f80000 278528 C:\Windows\SysWOW64\WINTRUST.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation Microsoft Trust Verification APIs 131795770645661053 0x74fd0000 405504 C:\Windows\SysWOW64\WS2_32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation 32-разрядная библиотека Windows Socket 2.0 131795770645661053 0x75040000 282624 C:\Windows\SysWOW64\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795770645661053 0x751d0000 57344 C:\Windows\SysWOW64\MSASN1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ASN.1 Runtime APIs 131795770645661053 0x751e0000 1708032 C:\Windows\SysWOW64\KERNELBASE.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645661053 0x75390000 266240 C:\Windows\SysWOW64\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795770645661053 0x753e0000 1560576 C:\Windows\SysWOW64\CRYPT32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API32 криптографии 131795770645661053 0x75560000 487424 C:\Windows\SysWOW64\ADVAPI32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795770645661053 0x756c0000 5693440 C:\Windows\SysWOW64\windows.storage.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API хранения Microsoft WinRT 131795770645661053 0x75c90000 286720 C:\Windows\SysWOW64\shlwapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека небольших программ оболочки 131795770645661053 0x75ce0000 20811776 C:\Windows\SysWOW64\SHELL32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Общая библиотека оболочки Windows 131795770645661053 0x774d0000 86016 C:\Windows\SysWOW64\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795770645661053 0x774f0000 61440 C:\Windows\SysWOW64\profapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Profile Basic API 131795770645661053 0x77560000 1437696 C:\Windows\SysWOW64\USER32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795770645661053 0x776c0000 368640 C:\Windows\SysWOW64\bcryptPrimitives.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation Windows Cryptographic Primitives Library 131795770645661053 0x77780000 503808 C:\Windows\SysWOW64\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645661053 0x77800000 606208 C:\Windows\SysWOW64\OLEAUT32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795770645661053 0x77ac0000 966656 C:\Windows\SysWOW64\ole32.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft OLE для Windows 131795770645661053 0x77bb0000 176128 C:\Windows\SysWOW64\GDI32.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation GDI Client DLL 131795770645661053 0x77be0000 937984 C:\Windows\SysWOW64\COMDLG32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека общих диалоговых окон 131795770645661053 0x77cd0000 221184 C:\Windows\SysWOW64\cfgmgr32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Configuration Manager DLL 131795770645661053 0x77d10000 28672 C:\Windows\SysWOW64\NSI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation NSI User-mode interface DLL 131795770645661053 0x77d20000 1585152 C:\Windows\SysWOW64\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 131795770645661053 0x7ffad0270000 1908736 C:\Windows\SYSTEM32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 90 6936 7744 57 00000000:0031f1da 131795756360200321 0 0 0 Обязательная метка\Ненадежный обязательный уровень WIN-0UOTFKKVN1S\User browser.exe C:\Users\User\AppData\Local\Yandex\YandexBrowser\Application\browser.exe "C:\Users\User\AppData\Local\Yandex\YandexBrowser\Application\browser.exe" --type=renderer --enable-in-process-wmf-demuxer --field-trial-handle=1292,9555382311565764851,7120838982649204725,131072 --enable-ignition --disable-gpu-compositing --service-pipe-token=73B8CB09F7D184AD1D3DDBFE4AFC07BA --lang=ru --user-id=32B2E0A1-3039-4C67-86BE-75A88EF21B54 --brand-id=yandex --partner-id=7924 --help-url=https://api.browser.yandex.ru/redirect/help/ --user-agent-info --translate-security-origin=https://translate.yandex.net --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --enable-instaserp --device-scale-factor=1 --num-raster-threads=1 --enable-compositor-image-animations --service-request-channel-token=73B8CB09F7D184AD1D3DDBFE4AFC07BA --renderer-client-id=116 --mojo-platform-channel-handle=4024 /prefetch:1 YANDEX LLC 18.6.1.770 Yandex 131795770645661289 0x10e0000 2519040 C:\Users\User\AppData\Local\Yandex\YandexBrowser\Application\browser.exe 18.6.1.770 YANDEX LLC Yandex 131795770645661289 0x58720000 59748352 C:\Users\User\AppData\Local\Yandex\YandexBrowser\Application\18.6.1.770\browser_child.dll 18.6.1.770 YANDEX LLC Yandex 131795770645661289 0x5c020000 335872 C:\Windows\System32\wow64.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation Win32 Emulation on NT64 131795770645661289 0x5c080000 487424 C:\Windows\System32\wow64win.dll 10.0.14393.1884 (rs1_release.171101-1233) Microsoft Corporation Wow64 Console and Win32 API Logging 131795770645661289 0x5c100000 40960 C:\Windows\System32\wow64cpu.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation AMD64 Wow64 CPU 131795770645661289 0x6e8b0000 1859584 C:\Windows\SysWOW64\mfmp4srcsnk.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL источника и приемника MPEG4 Media Foundation 131795770645661289 0x6ef30000 647168 C:\Windows\SysWOW64\evr.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека DLL средства отображения видео 131795770645661289 0x6efd0000 458752 C:\Windows\SysWOW64\msauddecmft.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Media Foundation Audio Decoders 131795770645661289 0x6f790000 1085440 C:\Windows\SysWOW64\mfperfhelper.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation MFPerf DLL 131795770645661289 0x6f8a0000 2220032 C:\Windows\SysWOW64\msmpeg2vdec.dll 10.0.14393.953 (rs1_release_inmarket.170303-1614) Microsoft Corporation Microsoft DTV-DVD Video Decoder 131795770645661289 0x6fac0000 1130496 C:\Windows\SysWOW64\mfplat.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Media Foundation Platform DLL 131795770645661289 0x6ff60000 172032 C:\Windows\SysWOW64\RTWorkQ.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL для WorkQueue реального времени 131795770645661289 0x70030000 593920 C:\Users\User\AppData\Local\Yandex\YandexBrowser\Application\18.6.1.770\browser_elf.dll 18.6.1.770 YANDEX LLC Yandex 131795770645661289 0x700d0000 434176 C:\Windows\SysWOW64\WINSPOOL.DRV 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Драйвер диспетчера очереди Windows 131795770645661289 0x70340000 536576 C:\Windows\SysWOW64\dxgi.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation DirectX Graphics Infrastructure 131795770645661289 0x703d0000 2056192 C:\Windows\SysWOW64\DWrite.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Службы Microsoft DirectX Typography 131795770645661289 0x707d0000 86016 C:\Windows\SysWOW64\SAMCLI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Security Accounts Manager Client DLL 131795770645661289 0x70a20000 94208 C:\Windows\SysWOW64\USP10.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Uniscribe Unicode script processor 131795770645661289 0x70ca0000 45056 C:\Windows\SysWOW64\NETUTILS.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API Helpers DLL 131795770645661289 0x70fd0000 1331200 C:\Windows\SysWOW64\dbghelp.dll 10.0.14321.1024 (rs1_release.160715-1616) Microsoft Windows Image Helper 131795770645661289 0x71140000 77824 C:\Windows\SysWOW64\NETAPI32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API DLL 131795770645661289 0x725e0000 2273280 C:\Windows\SysWOW64\iertutil.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служебная программа времени выполнения для Internet Explorer 131795770645661289 0x728e0000 1372160 C:\Windows\SysWOW64\PROPSYS.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Система страниц свойств (Майкрософт) 131795770645661289 0x72af0000 655360 C:\Windows\SysWOW64\WINHTTP.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Службы HTTP Windows 131795770645661289 0x72cc0000 1658880 C:\Windows\SysWOW64\urlmon.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширения OLE32 для Win32 131795770645661289 0x73ac0000 81920 C:\Windows\SysWOW64\dhcpcsvc.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служба DHCP-клиента 131795770645661289 0x73ae0000 40960 C:\Windows\SysWOW64\Secur32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Security Support Provider Interface 131795770645661289 0x73f00000 192512 C:\Windows\SysWOW64\IPHLPAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API вспомогательного приложения IP 131795770645661289 0x74190000 110592 C:\Windows\SysWOW64\bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795770645661289 0x741b0000 77824 C:\Windows\SysWOW64\cryptsp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Cryptographic Service Provider API 131795770645661289 0x741f0000 143360 C:\Windows\SysWOW64\WINMMBASE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base Multimedia Extension API DLL 131795770645661289 0x74230000 147456 C:\Windows\SysWOW64\WINMM.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation MCI API DLL 131795770645661289 0x744d0000 2138112 C:\Windows\WinSxS\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.14393.953_none_89c2555adb023171\COMCTL32.dll 6.10 (rs1_release_inmarket.170303-1614) Microsoft Corporation Библиотека элементов управления взаимодействия с пользователем 131795770645661289 0x746e0000 32768 C:\Windows\SysWOW64\VERSION.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Version Checking and File Installation Libraries 131795770645661289 0x746f0000 106496 C:\Windows\SysWOW64\USERENV.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Userenv 131795770645661289 0x747d0000 40960 C:\Windows\SysWOW64\CRYPTBASE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base cryptographic API DLL 131795770645661289 0x747e0000 126976 C:\Windows\SysWOW64\SspiCli.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Security Support Provider Interface 131795770645661289 0x74800000 151552 C:\Windows\SysWOW64\IMM32.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Multi-User Windows IMM32 API Client DLL 131795770645661289 0x74910000 2170880 C:\Windows\SysWOW64\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795770645661289 0x74b30000 53248 C:\Windows\SysWOW64\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795770645661289 0x74b60000 790528 C:\Windows\SysWOW64\RPCRT4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795770645661289 0x74c30000 1417216 C:\Windows\SysWOW64\gdi32full.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation GDI Client DLL 131795770645661289 0x74d90000 24576 C:\Windows\SysWOW64\PSAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Process Status Helper 131795770645661289 0x74da0000 778240 C:\Windows\SysWOW64\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795770645661289 0x74e60000 557056 C:\Windows\SysWOW64\shcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795770645661289 0x74f80000 278528 C:\Windows\SysWOW64\WINTRUST.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation Microsoft Trust Verification APIs 131795770645661289 0x74fd0000 405504 C:\Windows\SysWOW64\WS2_32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation 32-разрядная библиотека Windows Socket 2.0 131795770645661289 0x75040000 282624 C:\Windows\SysWOW64\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795770645661289 0x751d0000 57344 C:\Windows\SysWOW64\MSASN1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ASN.1 Runtime APIs 131795770645661289 0x751e0000 1708032 C:\Windows\SysWOW64\KERNELBASE.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645661289 0x75390000 266240 C:\Windows\SysWOW64\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795770645661289 0x753e0000 1560576 C:\Windows\SysWOW64\CRYPT32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API32 криптографии 131795770645661289 0x75560000 487424 C:\Windows\SysWOW64\ADVAPI32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795770645661289 0x756c0000 5693440 C:\Windows\SysWOW64\windows.storage.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API хранения Microsoft WinRT 131795770645661289 0x75c90000 286720 C:\Windows\SysWOW64\shlwapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека небольших программ оболочки 131795770645661289 0x75ce0000 20811776 C:\Windows\SysWOW64\SHELL32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Общая библиотека оболочки Windows 131795770645661289 0x774d0000 86016 C:\Windows\SysWOW64\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795770645661289 0x774f0000 61440 C:\Windows\SysWOW64\profapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Profile Basic API 131795770645661289 0x77560000 1437696 C:\Windows\SysWOW64\USER32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795770645661289 0x776c0000 368640 C:\Windows\SysWOW64\bcryptPrimitives.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation Windows Cryptographic Primitives Library 131795770645661289 0x77780000 503808 C:\Windows\SysWOW64\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645661289 0x77800000 606208 C:\Windows\SysWOW64\OLEAUT32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795770645661289 0x77ac0000 966656 C:\Windows\SysWOW64\ole32.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft OLE для Windows 131795770645661289 0x77bb0000 176128 C:\Windows\SysWOW64\GDI32.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation GDI Client DLL 131795770645661289 0x77be0000 937984 C:\Windows\SysWOW64\COMDLG32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека общих диалоговых окон 131795770645661289 0x77cd0000 221184 C:\Windows\SysWOW64\cfgmgr32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Configuration Manager DLL 131795770645661289 0x77d10000 28672 C:\Windows\SysWOW64\NSI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation NSI User-mode interface DLL 131795770645661289 0x77d20000 1585152 C:\Windows\SysWOW64\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 131795770645661289 0x7ffad0270000 1908736 C:\Windows\SYSTEM32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 98 6080 84 97 00000000:0031f1da 131795771125310655 0 0 0 Обязательная метка\Средний обязательный уровень WIN-0UOTFKKVN1S\User MCLauncher.exe C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe "C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe" 1.0 131795771127806606 0x400000 2830336 C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe 1.0 131795771129292604 0x750000 1462272 C:\Windows\System32\user32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795771335510731 0x11000000 1396736 C:\Users\User\AppData\Roaming\MCLauncher\libeay32.dll 1.0.2o The OpenSSL Project, http://www.openssl.org/ OpenSSL Shared Library 131795771334241016 0x12000000 360448 C:\Users\User\AppData\Roaming\MCLauncher\ssleay32.dll 1.0.2o The OpenSSL Project, http://www.openssl.org/ OpenSSL Shared Library 131795771129285523 0x5c020000 335872 C:\Windows\System32\wow64.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation Win32 Emulation on NT64 131795771129286235 0x5c080000 487424 C:\Windows\System32\wow64win.dll 10.0.14393.1884 (rs1_release.171101-1233) Microsoft Corporation Wow64 Console and Win32 API Logging 131795771129295328 0x5c100000 40960 C:\Windows\System32\wow64cpu.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation AMD64 Wow64 CPU 131795771135408057 0x60750000 1556480 C:\Program Files (x86)\360\Total Security\safemon\safemon.dll 8, 4, 0, 1420 Qihu 360 Software Co., Ltd. 360 Internet Security Internet Protection 131795771129575672 0x613d0000 667648 C:\Windows\WinSxS\x86_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.9247_none_5090cb78bcba4a35\msvcr90.dll 9.00.30729.9247 Microsoft Corporation Microsoft® C Runtime Library 131795771129398434 0x66680000 12288 C:\Windows\SysWOW64\sfc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows File Protection 131795771136825814 0x67500000 1597440 C:\Windows\SysWOW64\actxprxy.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation ActiveX Interface Marshaling Library 131795771129423112 0x67690000 61440 C:\Windows\SysWOW64\sfc_os.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows File Protection 131795771129349562 0x6b830000 2584576 C:\Windows\AppPatch\AcLayers.dll 10.0.14393.953 (rs1_release_inmarket.170303-1614) Microsoft Corporation Windows Compatibility DLL 131795771329638947 0x6c290000 987136 C:\Windows\SysWOW64\twinapi.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation twinapi.appcore 131795771329610149 0x6c390000 1126400 C:\Windows\SysWOW64\dcomp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft DirectComposition Library 131795771329592759 0x6c4b0000 278528 C:\Windows\SysWOW64\DataExchange.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation Data exchange 131795771136045859 0x6cda0000 528384 C:\Windows\SysWOW64\sxs.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Fusion 2.5 131795771131298623 0x6d180000 581632 C:\Windows\WinSxS\x86_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.9247_none_5090cb78bcba4a35\msvcp90.dll 9.00.30729.9247 Microsoft Corporation Microsoft® C++ Runtime Library 131795771136082794 0x6dca0000 176128 C:\Windows\SysWOW64\scrrun.dll 5.812.10240.16384 Microsoft Corporation Microsoft ® Script Runtime 131795771133718253 0x6dcd0000 606208 C:\Windows\WinSxS\x86_microsoft.windows.common-controls_6595b64144ccf1df_5.82.14393.447_none_5507ded2cb4f7f4c\comctl32.dll 6.10 (rs1_release_inmarket.170303-1614) Microsoft Corporation Библиотека элементов управления взаимодействия с пользователем 131795771129406131 0x700d0000 434176 C:\Windows\SysWOW64\winspool.drv 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Драйвер диспетчера очереди Windows 131795771329618480 0x70340000 536576 C:\Windows\SysWOW64\dxgi.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation DirectX Graphics Infrastructure 131795771329601483 0x707f0000 2293760 C:\Windows\SysWOW64\d3d11.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation Direct3D 11 Runtime 131795771336447829 0x70c30000 114688 C:\Windows\SysWOW64\srvcli.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Server Service Client DLL 131795771135435621 0x70ca0000 45056 C:\Windows\SysWOW64\netutils.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API Helpers DLL 131795771135446667 0x70cb0000 65536 C:\Windows\SysWOW64\wkscli.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Workstation Service Client DLL 131795771136073867 0x70e90000 147456 C:\Windows\SysWOW64\wshom.ocx 5.812.10240.16384 Microsoft Corporation Windows Script Host Runtime Library 131795771135423397 0x71140000 77824 C:\Windows\SysWOW64\netapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API DLL 131795771135552456 0x725e0000 2273280 C:\Windows\SysWOW64\iertutil.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служебная программа времени выполнения для Internet Explorer 131795771136181434 0x728e0000 1372160 C:\Windows\SysWOW64\propsys.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Система страниц свойств (Майкрософт) 131795771328759427 0x72b90000 126976 C:\Windows\SysWOW64\dwmapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Интерфейс API диспетчера окон рабочего стола (Майкрософт) 131795771135541570 0x72cc0000 1658880 C:\Windows\SysWOW64\urlmon.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширения OLE32 для Win32 131795771347140137 0x73a50000 299008 C:\Windows\SysWOW64\FWPUCLNT.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API пользовательского режима FWP/IPsec 131795771347110306 0x73ab0000 32768 C:\Windows\SysWOW64\rasadhlp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Remote Access AutoDial Helper 131795771135314174 0x73ae0000 40960 C:\Windows\SysWOW64\secur32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Security Support Provider Interface 131795771347090516 0x73f00000 192512 C:\Windows\SysWOW64\IPHLPAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API вспомогательного приложения IP 131795771347075776 0x73f30000 512000 C:\Windows\SysWOW64\dnsapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Динамическая библиотека API DNS-клиента 131795771328179609 0x73ff0000 319488 C:\Windows\SysWOW64\mswsock.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширение поставщика службы API Microsoft Windows Sockets 2.0 131795771130913562 0x74060000 192512 C:\Windows\SysWOW64\rsaenh.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Enhanced Cryptographic Provider 131795771135359123 0x74110000 479232 C:\Windows\SysWOW64\uxtheme.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека тем UxTheme (Microsoft) 131795771129415027 0x74190000 110592 C:\Windows\SysWOW64\bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795771130899582 0x741b0000 77824 C:\Windows\SysWOW64\cryptsp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Cryptographic Service Provider API 131795771133098293 0x741f0000 143360 C:\Windows\SysWOW64\winmmbase.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base Multimedia Extension API DLL 131795771132990161 0x74230000 147456 C:\Windows\SysWOW64\winmm.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation MCI API DLL 131795771131765102 0x746e0000 32768 C:\Windows\SysWOW64\version.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Version Checking and File Installation Libraries 131795771129389543 0x74710000 90112 C:\Windows\SysWOW64\mpr.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека маршрутизации для нескольких служб доступа 131795771129317462 0x74730000 598016 C:\Windows\SysWOW64\apphelp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиентская библиотека совместимости приложений 131795771129360685 0x747d0000 40960 C:\Windows\SysWOW64\cryptbase.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base cryptographic API DLL 131795771129360034 0x747e0000 126976 C:\Windows\SysWOW64\sspicli.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Security Support Provider Interface 131795771129496759 0x74800000 151552 C:\Windows\SysWOW64\imm32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Multi-User Windows IMM32 API Client DLL 131795771129358136 0x74830000 917504 C:\Windows\SysWOW64\ucrtbase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795771129357408 0x74910000 2170880 C:\Windows\SysWOW64\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795771129365891 0x74b30000 53248 C:\Windows\SysWOW64\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795771129359203 0x74b60000 790528 C:\Windows\SysWOW64\rpcrt4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795771129353720 0x74c30000 1417216 C:\Windows\SysWOW64\gdi32full.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation GDI Client DLL 131795771135412052 0x74d90000 24576 C:\Windows\SysWOW64\psapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Process Status Helper 131795771129350362 0x74da0000 778240 C:\Windows\SysWOW64\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795771129366695 0x74e60000 557056 C:\Windows\SysWOW64\SHCore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795771136054082 0x74ef0000 540672 C:\Windows\SysWOW64\clbcatq.dll 2001.12.10941.16384 (rs1_release.160715-1616) Microsoft Corporation COM+ Configuration Catalog 131795771131750596 0x74fd0000 405504 C:\Windows\SysWOW64\ws2_32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation 32-разрядная библиотека Windows Socket 2.0 131795771129363162 0x75040000 282624 C:\Windows\SysWOW64\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795771328737550 0x75090000 1265664 C:\Windows\SysWOW64\msctf.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Серверная библиотека MSCTF 131795771135228888 0x751d0000 57344 C:\Windows\SysWOW64\msasn1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ASN.1 Runtime APIs 131795771129301509 0x751e0000 1708032 C:\Windows\SysWOW64\KernelBase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795771129362062 0x75390000 266240 C:\Windows\SysWOW64\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795771135227735 0x753e0000 1560576 C:\Windows\SysWOW64\crypt32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API32 криптографии 131795771129363985 0x75560000 487424 C:\Windows\SysWOW64\advapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795771129356607 0x756c0000 5693440 C:\Windows\SysWOW64\windows.storage.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API хранения Microsoft WinRT 131795771129364960 0x75c90000 286720 C:\Windows\SysWOW64\shlwapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека небольших программ оболочки 131795771129354665 0x75ce0000 20811776 C:\Windows\SysWOW64\shell32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Общая библиотека оболочки Windows 131795771129370252 0x770c0000 4239360 C:\Windows\SysWOW64\setupapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Setup API 131795771129352041 0x774d0000 86016 C:\Windows\SysWOW64\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795771129367584 0x774f0000 61440 C:\Windows\SysWOW64\profapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Profile Basic API 131795771129351257 0x77560000 1437696 C:\Windows\SysWOW64\user32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795771129361361 0x776c0000 368640 C:\Windows\SysWOW64\bcryptprimitives.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation Windows Cryptographic Primitives Library 131795771129369244 0x77780000 503808 C:\Windows\SysWOW64\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795771129368545 0x77800000 606208 C:\Windows\SysWOW64\oleaut32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795771131168008 0x77ac0000 966656 C:\Windows\SysWOW64\ole32.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft OLE для Windows 131795771129352931 0x77bb0000 176128 C:\Windows\SysWOW64\gdi32.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation GDI Client DLL 131795771133704572 0x77be0000 937984 C:\Windows\SysWOW64\comdlg32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека общих диалоговых окон 131795771129355632 0x77cd0000 221184 C:\Windows\SysWOW64\cfgmgr32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Configuration Manager DLL 131795771347076821 0x77d10000 28672 C:\Windows\SysWOW64\nsi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation NSI User-mode interface DLL 131795771127807387 0x77d20000 1585152 C:\Windows\SysWOW64\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 131795771127807116 0x7ffad0270000 1908736 C:\Windows\System32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 104 12696 7744 57 00000000:0031f1da 131795777567759490 0 0 0 Обязательная метка\Низкий обязательный уровень WIN-0UOTFKKVN1S\User browser.exe C:\Users\User\AppData\Local\Yandex\YandexBrowser\Application\browser.exe "C:\Users\User\AppData\Local\Yandex\YandexBrowser\Application\browser.exe" --type=renderer --enable-in-process-wmf-demuxer --field-trial-handle=1292,9555382311565764851,7120838982649204725,131072 --enable-ignition --disable-gpu-compositing --service-pipe-token=E83DB721798C8A70C76CD26F6F4EE1BC --lang=ru --user-id=32B2E0A1-3039-4C67-86BE-75A88EF21B54 --brand-id=yandex --partner-id=7924 --help-url=https://api.browser.yandex.ru/redirect/help/ --user-agent-info --translate-security-origin=https://translate.yandex.net --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --enable-instaserp --device-scale-factor=1 --num-raster-threads=1 --enable-compositor-image-animations --service-request-channel-token=E83DB721798C8A70C76CD26F6F4EE1BC --renderer-client-id=119 --mojo-platform-channel-handle=7052 /prefetch:1 YANDEX LLC 18.6.1.770 Yandex 131795777567991690 0xc00000 1462272 C:\Windows\System32\user32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795777567961139 0x10e0000 2519040 C:\Users\User\AppData\Local\Yandex\YandexBrowser\Application\browser.exe 18.6.1.770 YANDEX LLC Yandex 131795777569452751 0x58720000 59748352 C:\Users\User\AppData\Local\Yandex\YandexBrowser\Application\18.6.1.770\browser_child.dll 18.6.1.770 YANDEX LLC Yandex 131795777567980184 0x5c020000 335872 C:\Windows\System32\wow64.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation Win32 Emulation on NT64 131795777567981270 0x5c080000 487424 C:\Windows\System32\wow64win.dll 10.0.14393.1884 (rs1_release.171101-1233) Microsoft Corporation Wow64 Console and Win32 API Logging 131795777567994943 0x5c100000 40960 C:\Windows\System32\wow64cpu.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation AMD64 Wow64 CPU 131795777570994535 0x6e8b0000 1859584 C:\Windows\SysWOW64\mfmp4srcsnk.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL источника и приемника MPEG4 Media Foundation 131795777570968696 0x6ef30000 647168 C:\Windows\SysWOW64\evr.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека DLL средства отображения видео 131795777570908362 0x6efd0000 458752 C:\Windows\SysWOW64\MSAudDecMFT.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Media Foundation Audio Decoders 131795777570920904 0x6f790000 1085440 C:\Windows\SysWOW64\mfperfhelper.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation MFPerf DLL 131795777570943637 0x6f8a0000 2220032 C:\Windows\SysWOW64\msmpeg2vdec.dll 10.0.14393.953 (rs1_release_inmarket.170303-1614) Microsoft Corporation Microsoft DTV-DVD Video Decoder 131795777570874151 0x6fac0000 1130496 C:\Windows\SysWOW64\mfplat.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Media Foundation Platform DLL 131795777570891841 0x6ff60000 172032 C:\Windows\SysWOW64\RTWorkQ.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL для WorkQueue реального времени 131795777568100773 0x70030000 593920 C:\Users\User\AppData\Local\Yandex\YandexBrowser\Application\18.6.1.770\browser_elf.dll 18.6.1.770 YANDEX LLC Yandex 131795777570569484 0x700d0000 434176 C:\Windows\SysWOW64\winspool.drv 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Драйвер диспетчера очереди Windows 131795777570619251 0x70340000 536576 C:\Windows\SysWOW64\dxgi.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation DirectX Graphics Infrastructure 131795777570607590 0x703d0000 2056192 C:\Windows\SysWOW64\DWrite.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Службы Microsoft DirectX Typography 131795777570676211 0x707d0000 86016 C:\Windows\SysWOW64\samcli.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Security Accounts Manager Client DLL 131795777570557202 0x70a20000 94208 C:\Windows\SysWOW64\usp10.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Uniscribe Unicode script processor 131795777570691164 0x70ca0000 45056 C:\Windows\SysWOW64\netutils.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API Helpers DLL 131795777570539079 0x70fd0000 1331200 C:\Windows\SysWOW64\dbghelp.dll 10.0.14321.1024 (rs1_release.160715-1616) Microsoft Windows Image Helper 131795777569494420 0x71140000 77824 C:\Windows\SysWOW64\netapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API DLL 131795777570658737 0x725e0000 2273280 C:\Windows\SysWOW64\iertutil.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служебная программа времени выполнения для Internet Explorer 131795777569526517 0x728e0000 1372160 C:\Windows\SysWOW64\propsys.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Система страниц свойств (Майкрософт) 131795777569154123 0x72af0000 655360 C:\Windows\SysWOW64\winhttp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Службы HTTP Windows 131795777570594964 0x72cc0000 1658880 C:\Windows\SysWOW64\urlmon.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширения OLE32 для Win32 131795777570630821 0x73ac0000 81920 C:\Windows\SysWOW64\dhcpcsvc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служба DHCP-клиента 131795777570523174 0x73ae0000 40960 C:\Windows\SysWOW64\secur32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Security Support Provider Interface 131795777570582120 0x73f00000 192512 C:\Windows\SysWOW64\IPHLPAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API вспомогательного приложения IP 131795777570646486 0x74190000 110592 C:\Windows\SysWOW64\bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795777570953652 0x741b0000 77824 C:\Windows\SysWOW64\cryptsp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Cryptographic Service Provider API 131795777569213807 0x741f0000 143360 C:\Windows\SysWOW64\winmmbase.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base Multimedia Extension API DLL 131795777568156054 0x74230000 147456 C:\Windows\SysWOW64\winmm.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation MCI API DLL 131795777569481011 0x744d0000 2138112 C:\Windows\WinSxS\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.14393.953_none_89c2555adb023171\comctl32.dll 6.10 (rs1_release_inmarket.170303-1614) Microsoft Corporation Библиотека элементов управления взаимодействия с пользователем 131795777568142933 0x746e0000 32768 C:\Windows\SysWOW64\version.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Version Checking and File Installation Libraries 131795777568179155 0x746f0000 106496 C:\Windows\SysWOW64\userenv.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Userenv 131795777568043561 0x747d0000 40960 C:\Windows\SysWOW64\cryptbase.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base cryptographic API DLL 131795777568042430 0x747e0000 126976 C:\Windows\SysWOW64\sspicli.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Security Support Provider Interface 131795777569239058 0x74800000 151552 C:\Windows\SysWOW64\imm32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Multi-User Windows IMM32 API Client DLL 131795777568075566 0x74830000 917504 C:\Windows\SysWOW64\ucrtbase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795777568073430 0x74910000 2170880 C:\Windows\SysWOW64\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795777568086784 0x74b30000 53248 C:\Windows\SysWOW64\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795777568041126 0x74b60000 790528 C:\Windows\SysWOW64\rpcrt4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795777568081914 0x74c30000 1417216 C:\Windows\SysWOW64\gdi32full.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation GDI Client DLL 131795777568046844 0x74d90000 24576 C:\Windows\SysWOW64\psapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Process Status Helper 131795777568038347 0x74da0000 778240 C:\Windows\SysWOW64\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795777568088134 0x74e60000 557056 C:\Windows\SysWOW64\SHCore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795777569468247 0x74f80000 278528 C:\Windows\SysWOW64\wintrust.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation Microsoft Trust Verification APIs 131795777569466798 0x74fd0000 405504 C:\Windows\SysWOW64\ws2_32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation 32-разрядная библиотека Windows Socket 2.0 131795777568077279 0x75040000 282624 C:\Windows\SysWOW64\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795777569469408 0x751d0000 57344 C:\Windows\SysWOW64\msasn1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ASN.1 Runtime APIs 131795777568024100 0x751e0000 1708032 C:\Windows\SysWOW64\KernelBase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795777568039823 0x75390000 266240 C:\Windows\SysWOW64\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795777569470854 0x753e0000 1560576 C:\Windows\SysWOW64\crypt32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API32 криптографии 131795777568036731 0x75560000 487424 C:\Windows\SysWOW64\advapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795777568054568 0x756c0000 5693440 C:\Windows\SysWOW64\windows.storage.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API хранения Microsoft WinRT 131795777568078714 0x75c90000 286720 C:\Windows\SysWOW64\shlwapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека небольших программ оболочки 131795777568050811 0x75ce0000 20811776 C:\Windows\SysWOW64\shell32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Общая библиотека оболочки Windows 131795777568084892 0x774d0000 86016 C:\Windows\SysWOW64\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795777568089486 0x774f0000 61440 C:\Windows\SysWOW64\profapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Profile Basic API 131795777568083413 0x77560000 1437696 C:\Windows\SysWOW64\user32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795777568044758 0x776c0000 368640 C:\Windows\SysWOW64\bcryptprimitives.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation Windows Cryptographic Primitives Library 131795777569464930 0x77780000 503808 C:\Windows\SysWOW64\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795777569463567 0x77800000 606208 C:\Windows\SysWOW64\oleaut32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795777568116745 0x77ac0000 966656 C:\Windows\SysWOW64\ole32.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft OLE для Windows 131795777568080182 0x77bb0000 176128 C:\Windows\SysWOW64\gdi32.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation GDI Client DLL 131795777569457550 0x77be0000 937984 C:\Windows\SysWOW64\comdlg32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека общих диалоговых окон 131795777568052363 0x77cd0000 221184 C:\Windows\SysWOW64\cfgmgr32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Configuration Manager DLL 131795777570632192 0x77d10000 28672 C:\Windows\SysWOW64\nsi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation NSI User-mode interface DLL 131795777567961904 0x77d20000 1585152 C:\Windows\SysWOW64\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 131795777567961630 0x7ffad0270000 1908736 C:\Windows\System32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 106 5556 7744 57 00000000:0031f1da 131795777595302537 0 0 0 Обязательная метка\Низкий обязательный уровень WIN-0UOTFKKVN1S\User browser.exe C:\Users\User\AppData\Local\Yandex\YandexBrowser\Application\browser.exe "C:\Users\User\AppData\Local\Yandex\YandexBrowser\Application\browser.exe" --type=renderer --enable-in-process-wmf-demuxer --field-trial-handle=1292,9555382311565764851,7120838982649204725,131072 --enable-ignition --disable-gpu-compositing --service-pipe-token=3ADFA2396247AD5E547F61590603D06D --lang=ru --user-id=32B2E0A1-3039-4C67-86BE-75A88EF21B54 --brand-id=yandex --partner-id=7924 --help-url=https://api.browser.yandex.ru/redirect/help/ --user-agent-info --translate-security-origin=https://translate.yandex.net --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --enable-instaserp --device-scale-factor=1 --num-raster-threads=1 --enable-compositor-image-animations --service-request-channel-token=3ADFA2396247AD5E547F61590603D06D --renderer-client-id=121 --mojo-platform-channel-handle=6636 /prefetch:1 YANDEX LLC 18.6.1.770 Yandex 131795777595490187 0x1020000 704512 C:\Windows\System32\kernel32.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795777595475498 0x10e0000 2519040 C:\Users\User\AppData\Local\Yandex\YandexBrowser\Application\browser.exe 18.6.1.770 YANDEX LLC Yandex 131795777595491301 0x5550000 1462272 C:\Windows\System32\user32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795777596381097 0x58720000 59748352 C:\Users\User\AppData\Local\Yandex\YandexBrowser\Application\18.6.1.770\browser_child.dll 18.6.1.770 YANDEX LLC Yandex 131795777595481485 0x5c020000 335872 C:\Windows\System32\wow64.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation Win32 Emulation on NT64 131795777595482474 0x5c080000 487424 C:\Windows\System32\wow64win.dll 10.0.14393.1884 (rs1_release.171101-1233) Microsoft Corporation Wow64 Console and Win32 API Logging 131795777595494304 0x5c100000 40960 C:\Windows\System32\wow64cpu.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation AMD64 Wow64 CPU 131795777597543015 0x6e8b0000 1859584 C:\Windows\SysWOW64\mfmp4srcsnk.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL источника и приемника MPEG4 Media Foundation 131795777597521210 0x6ef30000 647168 C:\Windows\SysWOW64\evr.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека DLL средства отображения видео 131795777597472595 0x6efd0000 458752 C:\Windows\SysWOW64\MSAudDecMFT.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Media Foundation Audio Decoders 131795777597484525 0x6f790000 1085440 C:\Windows\SysWOW64\mfperfhelper.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation MFPerf DLL 131795777597497517 0x6f8a0000 2220032 C:\Windows\SysWOW64\msmpeg2vdec.dll 10.0.14393.953 (rs1_release_inmarket.170303-1614) Microsoft Corporation Microsoft DTV-DVD Video Decoder 131795777597428793 0x6fac0000 1130496 C:\Windows\SysWOW64\mfplat.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Media Foundation Platform DLL 131795777597448444 0x6ff60000 172032 C:\Windows\SysWOW64\RTWorkQ.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL для WorkQueue реального времени 131795777595565558 0x70030000 593920 C:\Users\User\AppData\Local\Yandex\YandexBrowser\Application\18.6.1.770\browser_elf.dll 18.6.1.770 YANDEX LLC Yandex 131795777597103476 0x700d0000 434176 C:\Windows\SysWOW64\winspool.drv 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Драйвер диспетчера очереди Windows 131795777597165296 0x70340000 536576 C:\Windows\SysWOW64\dxgi.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation DirectX Graphics Infrastructure 131795777597153510 0x703d0000 2056192 C:\Windows\SysWOW64\DWrite.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Службы Microsoft DirectX Typography 131795777597221087 0x707d0000 86016 C:\Windows\SysWOW64\samcli.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Security Accounts Manager Client DLL 131795777597072535 0x70a20000 94208 C:\Windows\SysWOW64\usp10.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Uniscribe Unicode script processor 131795777597233493 0x70ca0000 45056 C:\Windows\SysWOW64\netutils.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API Helpers DLL 131795777597059294 0x70fd0000 1331200 C:\Windows\SysWOW64\dbghelp.dll 10.0.14321.1024 (rs1_release.160715-1616) Microsoft Windows Image Helper 131795777596424202 0x71140000 77824 C:\Windows\SysWOW64\netapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API DLL 131795777597205195 0x725e0000 2273280 C:\Windows\SysWOW64\iertutil.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служебная программа времени выполнения для Internet Explorer 131795777596436120 0x728e0000 1372160 C:\Windows\SysWOW64\propsys.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Система страниц свойств (Майкрософт) 131795777596128973 0x72af0000 655360 C:\Windows\SysWOW64\winhttp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Службы HTTP Windows 131795777597128037 0x72cc0000 1658880 C:\Windows\SysWOW64\urlmon.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширения OLE32 для Win32 131795777597177209 0x73ac0000 81920 C:\Windows\SysWOW64\dhcpcsvc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служба DHCP-клиента 131795777597044137 0x73ae0000 40960 C:\Windows\SysWOW64\secur32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Security Support Provider Interface 131795777597116160 0x73f00000 192512 C:\Windows\SysWOW64\IPHLPAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API вспомогательного приложения IP 131795777597192860 0x74190000 110592 C:\Windows\SysWOW64\bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795777597506812 0x741b0000 77824 C:\Windows\SysWOW64\cryptsp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Cryptographic Service Provider API 131795777596148547 0x741f0000 143360 C:\Windows\SysWOW64\winmmbase.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base Multimedia Extension API DLL 131795777595627397 0x74230000 147456 C:\Windows\SysWOW64\winmm.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation MCI API DLL 131795777596410831 0x744d0000 2138112 C:\Windows\WinSxS\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.14393.953_none_89c2555adb023171\comctl32.dll 6.10 (rs1_release_inmarket.170303-1614) Microsoft Corporation Библиотека элементов управления взаимодействия с пользователем 131795777595610560 0x746e0000 32768 C:\Windows\SysWOW64\version.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Version Checking and File Installation Libraries 131795777595638942 0x746f0000 106496 C:\Windows\SysWOW64\userenv.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Userenv 131795777595529014 0x747d0000 40960 C:\Windows\SysWOW64\cryptbase.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base cryptographic API DLL 131795777595527983 0x747e0000 126976 C:\Windows\SysWOW64\sspicli.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Security Support Provider Interface 131795777596182171 0x74800000 151552 C:\Windows\SysWOW64\imm32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Multi-User Windows IMM32 API Client DLL 131795777595541526 0x74830000 917504 C:\Windows\SysWOW64\ucrtbase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795777595540326 0x74910000 2170880 C:\Windows\SysWOW64\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795777595551866 0x74b30000 53248 C:\Windows\SysWOW64\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795777595526606 0x74b60000 790528 C:\Windows\SysWOW64\rpcrt4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795777595547732 0x74c30000 1417216 C:\Windows\SysWOW64\gdi32full.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation GDI Client DLL 131795777595531563 0x74d90000 24576 C:\Windows\SysWOW64\psapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Process Status Helper 131795777595524005 0x74da0000 778240 C:\Windows\SysWOW64\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795777595553384 0x74e60000 557056 C:\Windows\SysWOW64\SHCore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795777596396507 0x74f80000 278528 C:\Windows\SysWOW64\wintrust.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation Microsoft Trust Verification APIs 131795777596394953 0x74fd0000 405504 C:\Windows\SysWOW64\ws2_32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation 32-разрядная библиотека Windows Socket 2.0 131795777595543299 0x75040000 282624 C:\Windows\SysWOW64\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795777596397607 0x751d0000 57344 C:\Windows\SysWOW64\msasn1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ASN.1 Runtime APIs 131795777595508927 0x751e0000 1708032 C:\Windows\SysWOW64\KernelBase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795777595525398 0x75390000 266240 C:\Windows\SysWOW64\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795777596398892 0x753e0000 1560576 C:\Windows\SysWOW64\crypt32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API32 криптографии 131795777595522182 0x75560000 487424 C:\Windows\SysWOW64\advapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795777595538927 0x756c0000 5693440 C:\Windows\SysWOW64\windows.storage.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API хранения Microsoft WinRT 131795777595544568 0x75c90000 286720 C:\Windows\SysWOW64\shlwapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека небольших программ оболочки 131795777595535397 0x75ce0000 20811776 C:\Windows\SysWOW64\shell32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Общая библиотека оболочки Windows 131795777595550455 0x774d0000 86016 C:\Windows\SysWOW64\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795777595554628 0x774f0000 61440 C:\Windows\SysWOW64\profapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Profile Basic API 131795777595549128 0x77560000 1437696 C:\Windows\SysWOW64\user32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795777595530150 0x776c0000 368640 C:\Windows\SysWOW64\bcryptprimitives.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation Windows Cryptographic Primitives Library 131795777596393437 0x77780000 503808 C:\Windows\SysWOW64\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795777596392132 0x77800000 606208 C:\Windows\SysWOW64\oleaut32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795777595583766 0x77ac0000 966656 C:\Windows\SysWOW64\ole32.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft OLE для Windows 131795777595545878 0x77bb0000 176128 C:\Windows\SysWOW64\gdi32.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation GDI Client DLL 131795777596385979 0x77be0000 937984 C:\Windows\SysWOW64\comdlg32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека общих диалоговых окон 131795777595536930 0x77cd0000 221184 C:\Windows\SysWOW64\cfgmgr32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Configuration Manager DLL 131795777597178434 0x77d10000 28672 C:\Windows\SysWOW64\nsi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation NSI User-mode interface DLL 131795777595476066 0x77d20000 1585152 C:\Windows\SysWOW64\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 131795777595475814 0x7ffad0270000 1908736 C:\Windows\System32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 111 9032 664 6 00000000:0031f1da 131795777895284069 0 0 1 Обязательная метка\Средний обязательный уровень WIN-0UOTFKKVN1S\User explorer.exe C:\Windows\explorer.exe C:\Windows\explorer.exe /factory,{75dff2b7-6936-4c06-a8bb-676a7b00b24b} -Embedding Microsoft Corporation 10.0.14393.0 (rs1_release.160715-1616) Проводник 131795777911330291 0x4d80000 593920 C:\Windows\System32\UIRibbonRes.dll 10.0.14393.2189 (rs1_release.180329-1711) Microsoft Corporation Windows Ribbon Framework Resources 131795777920515787 0x6530000 8937472 C:\Program Files\Microsoft Office\Office16\1049\GrooveIntlResource.dll 16.0.4266.1001 Корпорация Майкрософт Модуль международных ресурсов для Microsoft OneDrive для бизнеса 131795777903881315 0x5bbd0000 1101824 C:\Program Files (x86)\360\Total Security\safemon\safemon64.dll 1, 0, 0, 1190 Qihu 360 Software Co., Ltd. 360 Internet Security Internet Protection 131795777903867506 0x5bce0000 28672 C:\Program Files (x86)\360\Total Security\safemon\SafeWrapper.dll 2, 0, 0, 1060 Qihu 360 Software Co., Ltd. 360 Internet Security Internet Protection 131795777895813346 0x7ff6a5b30000 4665344 C:\Windows\explorer.exe 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Проводник 131795777906005639 0x7ffab2720000 606208 C:\Windows\System32\duser.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows DirectUser Engine 131795777922060868 0x7ffab28d0000 802816 C:\Windows\System32\cscui.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Интерфейс кэширования на стороне клиента 131795777918507242 0x7ffab4b90000 655360 C:\Windows\System32\StructuredQuery.dll 7.0.14393.2068 (rs1_release.180209-1727) Microsoft Corporation Structured Query 131795777907532495 0x7ffab5520000 3231744 C:\Windows\System32\msftedit.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Элемент управления "Поле ввода форматированного текста", версия 8.5 131795777910997447 0x7ffab8da0000 1675264 C:\Windows\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.14393.1715_none_aec701fbddd850fa\GdiPlus.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Microsoft GDI+ 131795777915260331 0x7ffab9490000 860160 C:\Windows\System32\ntshrui.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширения оболочки, обеспечивающие общий доступ 131795777910978745 0x7ffab95c0000 4091904 C:\Windows\System32\UIRibbon.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Платформа ленты Windows 131795778008622616 0x7ffabacc0000 1380352 C:\Windows\System32\SharedStartModel.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Shared Start Model InProc Server 131795778007235790 0x7ffabae60000 77824 C:\Windows\System32\devrtl.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Device Management Run Time Library 131795777909146457 0x7ffabaf70000 270336 C:\Windows\System32\edputil.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служебная программа EDP 131795777902950088 0x7ffabb2b0000 1089536 C:\Windows\System32\SettingSyncCore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Setting Synchronization Core 131795778007048279 0x7ffabb430000 65536 C:\Windows\System32\pcacli.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Program Compatibility Assistant Client Module 131795777902932644 0x7ffabb490000 512000 C:\Windows\System32\twinapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation twinapi 131795777909802797 0x7ffabbc40000 643072 C:\Windows\System32\msvcp140.dll 14.10.24516.0 built by: VCTOOLSRELESC Microsoft Corporation Microsoft® C Runtime Library 131795777909791020 0x7ffabbce0000 90112 C:\Windows\System32\vcruntime140.dll 14.10.24516.0 built by: VCTOOLSRELESC Microsoft Corporation Microsoft® C Runtime Library 131795777917395017 0x7ffabc0b0000 65536 C:\Windows\System32\linkinfo.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Volume Tracking 131795777918158137 0x7ffabc880000 73728 C:\Windows\System32\cscapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Offline Files Win32 API 131795777966565943 0x7ffabcf30000 110592 C:\Windows\System32\mpr.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека маршрутизации для нескольких служб доступа 131795777908125051 0x7ffabd4a0000 1613824 C:\Windows\System32\Windows.Globalization.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Globalization 131795777905900322 0x7ffabdbb0000 1736704 C:\Windows\System32\dui70.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Подсистема DirectUI Windows 131795777908270107 0x7ffabe9c0000 188416 C:\Windows\System32\globinputhost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Globalization Extension API for Input 131795777922014669 0x7ffabebf0000 1208320 C:\Windows\System32\networkexplorer.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Сетевой проводник 131795778007216762 0x7ffabef80000 69632 C:\Windows\System32\sfc_os.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows File Protection 131795777919764442 0x7ffabf5d0000 2924544 C:\Windows\System32\wininet.dll 11.00.14393.447 (rs1_release_inmarket.161102-0100) Microsoft Corporation Расширения Интернета для Win32 131795777915281766 0x7ffabff10000 155648 C:\Windows\System32\srvcli.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Server Service Client DLL 131795777909775471 0x7ffac0250000 2179072 C:\Program Files\Microsoft Office\Office16\GROOVEEX.DLL 16.0.4266.1001 Microsoft Corporation Microsoft OneDrive for Business Extensions 131795777910387599 0x7ffac0610000 3088384 C:\Windows\System32\msi.dll 5.0.14393.2155 Microsoft Corporation Windows Installer 131795777905243222 0x7ffac0bf0000 3559424 C:\Windows\System32\actxprxy.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation ActiveX Interface Marshaling Library 131795777919412503 0x7ffac1710000 1642496 C:\Users\User\AppData\Local\Microsoft\OneDrive\18.131.0701.0007\amd64\FileSyncShell64.dll 18.131.0701.0007 Microsoft Corporation Microsoft OneDrive Shell Extension 131795777904716802 0x7ffac18b0000 270336 C:\Program Files (x86)\360\Total Security\safemon\safehmpg64.dll 1, 0, 0, 1140 Qihu 360 Software Co., Ltd. 360 Internet Security Browser HomePage Protection 131795777944562485 0x7ffac23c0000 331776 C:\Windows\System32\OneCoreCommonProxyStub.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation OneCore Common Proxy Stub 131795777903915791 0x7ffac2700000 98304 C:\Windows\System32\netapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API DLL 131795777922001525 0x7ffac2960000 143360 C:\Windows\System32\mssprxy.dll 7.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation Microsoft Search Proxy 131795777903903305 0x7ffac2b80000 40960 C:\Windows\System32\version.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Version Checking and File Installation Libraries 131795777909321798 0x7ffac34e0000 1843200 C:\Windows\System32\urlmon.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширения OLE32 для Win32 131795777909330655 0x7ffac3cb0000 2772992 C:\Windows\System32\iertutil.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служебная программа времени выполнения для Internet Explorer 131795777906462233 0x7ffac4000000 274432 C:\Windows\System32\policymanager.dll 10.0.14393.2035 (rs1_release_inmarket.180110-1910) Microsoft Corporation Policy Manager DLL 131795777910949757 0x7ffac4ea0000 36864 C:\Windows\System32\atlthunk.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation atlthunk.dll 131795777920555307 0x7ffac4f90000 221184 C:\Windows\System32\EhStorShell.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL расширения оболочки Windows Enhanced Storage 131795777906356495 0x7ffac5630000 339968 C:\Windows\System32\thumbcache.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Кэш эскизов Майкрософт 131795777905097743 0x7ffac5690000 4734976 C:\Windows\System32\ExplorerFrame.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ExplorerFrame 131795777908567233 0x7ffac5bb0000 622592 C:\Program Files\Common Files\microsoft shared\ink\tiptsf.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Инфраструктура текстовых служб сенсорной клавиатуры и панели рукописного ввода 131795777911007559 0x7ffac60e0000 221184 C:\Windows\System32\xmllite.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft XmlLite Library 131795777914831974 0x7ffac6bd0000 413696 C:\Windows\System32\oleacc.dll 7.2.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Active Accessibility Core Component 131795777905390625 0x7ffac6c40000 2596864 C:\Windows\WinSxS\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.14393.953_none_42151e83c686086b\comctl32.dll 6.10 (rs1_release_inmarket.170303-1614) Microsoft Corporation Библиотека элементов управления взаимодействия с пользователем 131795777902894862 0x7ffac7580000 1077248 C:\Windows\System32\MrmCoreR.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Windows MRM 131795777906986296 0x7ffac84f0000 299008 C:\Windows\System32\DataExchange.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation Data exchange 131795777906995835 0x7ffac88a0000 2842624 C:\Windows\System32\d3d11.dll 10.0.14393.953 (rs1_release_inmarket.170303-1614) Microsoft Corporation Direct3D 11 Runtime 131795777903975733 0x7ffac90b0000 90112 C:\Windows\System32\wkscli.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Workstation Service Client DLL 131795777906257948 0x7ffac9f50000 1736704 C:\Windows\System32\WindowsCodecs.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Microsoft Windows Codecs Library 131795777919424461 0x7ffaca170000 45056 C:\Windows\System32\ktmw32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows KTM Win32 Client DLL 131795777902880674 0x7ffaca340000 1593344 C:\Windows\System32\propsys.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Система страниц свойств (Майкрософт) 131795777908138610 0x7ffaca570000 421888 C:\Windows\System32\BCP47Langs.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation BCP47 Language Classes 131795777902921260 0x7ffaca5e0000 155648 C:\Windows\System32\dwmapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Интерфейс API диспетчера окон рабочего стола (Майкрософт) 131795778008641775 0x7ffaca640000 770048 C:\Windows\System32\CoreMessaging.dll 10.0.14393.0 Microsoft Corporation Microsoft CoreMessaging Dll 131795777907005063 0x7ffaca770000 1380352 C:\Windows\System32\dcomp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft DirectComposition Library 131795777918659102 0x7ffacab40000 176128 C:\Windows\System32\winmmbase.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base Multimedia Extension API DLL 131795777918649579 0x7ffacaba0000 143360 C:\Windows\System32\winmm.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation MCI API DLL 131795777909306748 0x7ffacadf0000 499712 C:\Windows\System32\apphelp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиентская библиотека совместимости приложений 131795777902905939 0x7ffacaf00000 610304 C:\Windows\System32\uxtheme.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека тем UxTheme (Microsoft) 131795777906474194 0x7ffacb140000 593920 C:\Windows\System32\msvcp110_win.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Microsoft® STL110 C++ Runtime Library 131795777902941219 0x7ffacb1e0000 1163264 C:\Windows\System32\twinapi.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation twinapi.appcore 131795778008632518 0x7ffacb300000 364544 C:\Windows\System32\VEEventDispatcher.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Visual Element Event dispatcher 131795777918171528 0x7ffacb420000 204800 C:\Windows\System32\ntmarta.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик Windows NT MARTA 131795777907014508 0x7ffacb780000 651264 C:\Windows\System32\dxgi.dll 10.0.14393.953 (rs1_release_inmarket.170303-1614) Microsoft Corporation DirectX Graphics Infrastructure 131795777903933947 0x7ffacbe20000 53248 C:\Windows\System32\netutils.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API Helpers DLL 131795777902985171 0x7ffacbe40000 126976 C:\Windows\System32\userenv.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Userenv 131795777903008375 0x7ffacc150000 94208 C:\Windows\System32\cryptsp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Cryptographic Service Provider API 131795777902974089 0x7ffacc350000 180224 C:\Windows\System32\sspicli.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Security Support Provider Interface 131795777905657867 0x7ffacc520000 622592 C:\Windows\System32\sxs.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Fusion 2.5 131795777902999880 0x7ffacc620000 176128 C:\Windows\System32\bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795777902852334 0x7ffacc6e0000 61440 C:\Windows\System32\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795777902849489 0x7ffacc6f0000 311296 C:\Windows\System32\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795777902853126 0x7ffacc740000 81920 C:\Windows\System32\profapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Profile Basic API 131795777902855116 0x7ffacc760000 65536 C:\Windows\System32\msasn1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ASN.1 Runtime APIs 131795777902843222 0x7ffacc770000 1572864 C:\Windows\System32\gdi32full.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation GDI Client DLL 131795777902836309 0x7ffacc8f0000 1003520 C:\Windows\System32\ucrtbase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795777902838974 0x7ffacc9f0000 434176 C:\Windows\System32\bcryptprimitives.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Cryptographic Primitives Library 131795777902841617 0x7ffacca60000 122880 C:\Windows\System32\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795777902844144 0x7ffaccae0000 692224 C:\Windows\System32\SHCore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795777902848566 0x7ffaccb90000 7180288 C:\Windows\System32\windows.storage.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API хранения Microsoft WinRT 131795777902824318 0x7ffacd270000 2215936 C:\Windows\System32\KernelBase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795777902854301 0x7ffacd490000 1871872 C:\Windows\System32\crypt32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API32 криптографии 131795777902835470 0x7ffacd710000 638976 C:\Windows\System32\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795777902847555 0x7ffacd7b0000 270336 C:\Windows\System32\cfgmgr32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Configuration Manager DLL 131795777902846521 0x7ffacd810000 22056960 C:\Windows\System32\shell32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Общая библиотека оболочки Windows 131795777902834719 0x7ffaced20000 782336 C:\Windows\System32\oleaut32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795777916996283 0x7ffacede0000 450560 C:\Windows\System32\coml2.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft COM for Windows 131795777902838016 0x7ffacee50000 1183744 C:\Windows\System32\rpcrt4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795777902833378 0x7ffacef90000 647168 C:\Windows\System32\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795777904879129 0x7ffacf030000 651264 C:\Windows\System32\clbcatq.dll 2001.12.10941.16384 (rs1_release.160715-1616) Microsoft Corporation COM+ Configuration Catalog 131795777902823359 0x7ffacf0d0000 704512 C:\Windows\System32\kernel32.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795777905449820 0x7ffacf1e0000 1417216 C:\Windows\System32\msctf.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Серверная библиотека MSCTF 131795777920556415 0x7ffacf340000 4362240 C:\Windows\System32\setupapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Setup API 131795777902842396 0x7ffacf770000 212992 C:\Windows\System32\gdi32.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation GDI Client DLL 131795777903888252 0x7ffacf820000 434176 C:\Windows\System32\ws2_32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation 32-разрядная библиотека Windows Socket 2.0 131795777903413262 0x7ffacf890000 188416 C:\Windows\System32\imm32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Multi-User Windows IMM32 API Client DLL 131795777902840664 0x7ffacf8c0000 1462272 C:\Windows\System32\user32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795777902837229 0x7ffacfb30000 2916352 C:\Windows\System32\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795777903887407 0x7ffacfe00000 114688 C:\Windows\System32\imagehlp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT Image Helper 131795777902850328 0x7ffacfe20000 663552 C:\Windows\System32\advapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795777903886124 0x7ffad0070000 1277952 C:\Windows\System32\ole32.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft OLE для Windows 131795777902845086 0x7ffad01b0000 335872 C:\Windows\System32\shlwapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека небольших программ оболочки 131795777902851375 0x7ffad0210000 364544 C:\Windows\System32\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795777895813598 0x7ffad0270000 1908736 C:\Windows\System32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 123 284 580 4 00000000:000003e7 131795778236890994 131795782047703513 0 1 Обязательная метка\Обязательный уровень системы NT AUTHORITY\СИСТЕМА svchost.exe C:\Windows\System32\svchost.exe C:\Windows\System32\svchost.exe -k swprv Microsoft Corporation 10.0.14393.0 (rs1_release.160715-1616) Хост-процесс для служб Windows 131795778236948261 0x7ff718c20000 57344 C:\Windows\System32\svchost.exe 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Хост-процесс для служб Windows 131795778237990704 0x7ffabd220000 483328 C:\Windows\System32\swprv.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик программного обеспечения Microsoft® Volume Shadow Copy Service 131795778238024341 0x7ffac3270000 40960 C:\Windows\System32\fltLib.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека фильтров 131795778238689559 0x7ffac34c0000 81920 C:\Windows\System32\vss_ps.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation Microsoft® Volume Shadow Copy Service proxy/stub 131795778238016772 0x7ffac4b70000 73728 C:\Windows\System32\virtdisk.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Virtual Disk API DLL 131795778238009807 0x7ffac6410000 98304 C:\Windows\System32\vsstrace.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека трассировки службы теневого копирования тома Microsoft® 131795778238797239 0x7ffac6430000 1581056 C:\Windows\System32\vssapi.dll 10.0.14393.953 (rs1_release_inmarket.170303-1614) Microsoft Corporation Microsoft® Volume Shadow Copy Requestor/Writer Services API DLL 131795778238379317 0x7ffac9bb0000 479232 C:\Windows\System32\es.dll 2001.12.10941.16384 (rs1_release.160715-1616) Microsoft Corporation COM+ 131795778238002742 0x7ffacb3f0000 163840 C:\Windows\System32\devobj.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Device Information Set DLL 131795778238084884 0x7ffacb920000 81920 C:\Windows\System32\wldp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Политика блокировки Windows 131795778238106525 0x7ffacc6e0000 61440 C:\Windows\System32\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795778238119208 0x7ffacc770000 1572864 C:\Windows\System32\gdi32full.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation GDI Client DLL 131795778237848893 0x7ffacc8f0000 1003520 C:\Windows\System32\ucrtbase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795778238069532 0x7ffacc9f0000 434176 C:\Windows\System32\bcryptprimitives.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Cryptographic Primitives Library 131795778238117518 0x7ffacca60000 122880 C:\Windows\System32\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795778238087879 0x7ffacca80000 348160 C:\Windows\System32\wintrust.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation Microsoft Trust Verification APIs 131795778237826515 0x7ffacd270000 2215936 C:\Windows\System32\KernelBase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795778238085768 0x7ffacd490000 1871872 C:\Windows\System32\crypt32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API32 криптографии 131795778238691232 0x7ffacd710000 638976 C:\Windows\System32\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795778238003645 0x7ffacd7b0000 270336 C:\Windows\System32\cfgmgr32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Configuration Manager DLL 131795778238690445 0x7ffaced20000 782336 C:\Windows\System32\oleaut32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795778237846089 0x7ffacee50000 1183744 C:\Windows\System32\rpcrt4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795778237991665 0x7ffacef90000 647168 C:\Windows\System32\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795778238360028 0x7ffacf030000 651264 C:\Windows\System32\clbcatq.dll 2001.12.10941.16384 (rs1_release.160715-1616) Microsoft Corporation COM+ Configuration Catalog 131795778237825108 0x7ffacf0d0000 704512 C:\Windows\System32\kernel32.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795778238118419 0x7ffacf770000 212992 C:\Windows\System32\gdi32.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation GDI Client DLL 131795778238798278 0x7ffacf820000 434176 C:\Windows\System32\ws2_32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation 32-разрядная библиотека Windows Socket 2.0 131795778238116693 0x7ffacf8c0000 1462272 C:\Windows\System32\user32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795778238067953 0x7ffacfb30000 2916352 C:\Windows\System32\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795778237992699 0x7ffacfe20000 663552 C:\Windows\System32\advapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795778237844499 0x7ffad0210000 364544 C:\Windows\System32\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795778236948497 0x7ffad0270000 1908736 C:\Windows\System32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 124 8572 580 4 00000000:000003e7 131795778253406568 131795781433108472 0 1 Обязательная метка\Обязательный уровень системы NT AUTHORITY\СИСТЕМА msiexec.exe C:\Windows\system32\msiexec.exe C:\Windows\system32\msiexec.exe /V Microsoft Corporation 5.0.14393.0 (rs1_release.160715-1616) Установщик Windows® 131795778259596194 0x238870a0000 12288 C:\Windows\System32\sfc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows File Protection 131795778253563850 0x7ff766ba0000 90112 C:\Windows\System32\msiexec.exe 5.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Установщик Windows® 131795778259570059 0x7ffaad900000 4726784 C:\Windows\AppPatch\apppatch64\AcLayers.dll 10.0.14393.447 (rs1_release_inmarket.161102-0100) Microsoft Corporation Windows Compatibility DLL 131795778267501772 0x7ffab1260000 10350592 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\clr.dll 4.7.2117.0 built by: NET47REL1LAST Microsoft Corporation Microsoft .NET Runtime Common Language Runtime - WorkStation 131795778276928618 0x7ffabae60000 77824 C:\Windows\System32\devrtl.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Device Management Run Time Library 131795778275324308 0x7ffabb430000 65536 C:\Windows\System32\pcacli.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Program Compatibility Assistant Client Module 131795778275333446 0x7ffabcf30000 110592 C:\Windows\System32\mpr.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека маршрутизации для нескольких служб доступа 131795778259610277 0x7ffabd180000 548864 C:\Windows\System32\winspool.drv 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Драйвер диспетчера очереди Windows 131795778259661596 0x7ffabef80000 69632 C:\Windows\System32\sfc_os.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows File Protection 131795778265457583 0x7ffabf1d0000 192512 C:\Windows\System32\cryptnet.dll 10.0.14393.2035 (rs1_release_inmarket.180110-1910) Microsoft Corporation Crypto Network Related API 131795778267747643 0x7ffabfa00000 1011712 C:\Windows\System32\msvcr120_clr0400.dll 12.00.52519.0 built by: VSWINSERVICING Microsoft Corporation Microsoft® C Runtime Library 131795778260359664 0x7ffac0610000 3088384 C:\Windows\System32\msi.dll 5.0.14393.2155 Microsoft Corporation Windows Installer 131795778399983100 0x7ffac1010000 417792 C:\Windows\System32\mscoree.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft .NET Runtime Execution Engine 131795778400005719 0x7ffac1240000 638976 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscoreei.dll 4.7.2623.0 built by: NET471REL1LAST_C Microsoft Corporation Microsoft .NET Runtime Execution Engine 131795778262571338 0x7ffac2700000 98304 C:\Windows\System32\netapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API DLL 131795778267189195 0x7ffac2b80000 40960 C:\Windows\System32\version.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Version Checking and File Installation Libraries 131795778417041748 0x7ffac3810000 167936 C:\Windows\System32\cabinet.dll 5.00 (rs1_release.160715-1616) Microsoft Corporation Microsoft® Cabinet File API 131795778400053783 0x7ffac5b30000 114688 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\fusion.dll 4.6.1586.0 built by: NETFXREL2 Microsoft Corporation Assembly manager 131795778259951873 0x7ffac6c40000 2596864 C:\Windows\WinSxS\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.14393.953_none_42151e83c686086b\comctl32.dll 6.10 (rs1_release_inmarket.170303-1614) Microsoft Corporation Библиотека элементов управления взаимодействия с пользователем 131795778264680084 0x7ffac7cc0000 49152 C:\Windows\System32\msisip.dll 5.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation MSI Signature SIP Provider 131795778265630538 0x7ffac8810000 45056 C:\Windows\System32\winnsi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Network Store Information RPC interface 131795778262583238 0x7ffac90b0000 90112 C:\Windows\System32\wkscli.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Workstation Service Client DLL 131795778323770185 0x7ffac97f0000 61440 C:\Windows\System32\perfproc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека объектов производительности системных процессов Windows 131795778272914974 0x7ffaca210000 225280 C:\Windows\System32\RstrtMgr.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Диспетчер перезапуска 131795778281798291 0x7ffaca340000 1593344 C:\Windows\System32\propsys.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Система страниц свойств (Майкрософт) 131795778259533909 0x7ffacadf0000 499712 C:\Windows\System32\apphelp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиентская библиотека совместимости приложений 131795778265279256 0x7ffacb6f0000 143360 C:\Windows\System32\gpapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиентские функции API групповой политики 131795778264074461 0x7ffacb920000 81920 C:\Windows\System32\wldp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Политика блокировки Windows 131795778264625720 0x7ffacbbb0000 208896 C:\Windows\System32\rsaenh.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Enhanced Cryptographic Provider 131795778265470245 0x7ffacbd30000 229376 C:\Windows\System32\IPHLPAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API вспомогательного приложения IP 131795778262605488 0x7ffacbe20000 53248 C:\Windows\System32\netutils.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API Helpers DLL 131795778261744074 0x7ffacbe40000 126976 C:\Windows\System32\userenv.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Userenv 131795778264613136 0x7ffacc150000 94208 C:\Windows\System32\cryptsp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Cryptographic Service Provider API 131795778264639501 0x7ffacc170000 45056 C:\Windows\System32\cryptbase.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base cryptographic API DLL 131795778273070150 0x7ffacc1f0000 241664 C:\Windows\System32\ntasn1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft ASN.1 API 131795778272956330 0x7ffacc230000 155648 C:\Windows\System32\ncrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Маршрутизатор Windows NCrypt 131795778261891434 0x7ffacc350000 180224 C:\Windows\System32\sspicli.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Security Support Provider Interface 131795778259633594 0x7ffacc620000 176128 C:\Windows\System32\bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795778260278752 0x7ffacc6e0000 61440 C:\Windows\System32\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795778260602827 0x7ffacc6f0000 311296 C:\Windows\System32\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795778260604728 0x7ffacc740000 81920 C:\Windows\System32\profapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Profile Basic API 131795778264076719 0x7ffacc760000 65536 C:\Windows\System32\msasn1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ASN.1 Runtime APIs 131795778259576609 0x7ffacc8f0000 1003520 C:\Windows\System32\ucrtbase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795778259578595 0x7ffacc9f0000 434176 C:\Windows\System32\bcryptprimitives.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Cryptographic Primitives Library 131795778259572597 0x7ffacca60000 122880 C:\Windows\System32\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795778264077537 0x7ffacca80000 348160 C:\Windows\System32\wintrust.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation Microsoft Trust Verification APIs 131795778260603797 0x7ffaccae0000 692224 C:\Windows\System32\SHCore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795778260601744 0x7ffaccb90000 7180288 C:\Windows\System32\windows.storage.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API хранения Microsoft WinRT 131795778259515815 0x7ffacd270000 2215936 C:\Windows\System32\KernelBase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795778264075791 0x7ffacd490000 1871872 C:\Windows\System32\crypt32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API32 криптографии 131795778272946115 0x7ffacd710000 638976 C:\Windows\System32\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795778260600162 0x7ffacd7b0000 270336 C:\Windows\System32\cfgmgr32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Configuration Manager DLL 131795778260598868 0x7ffacd810000 22056960 C:\Windows\System32\shell32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Общая библиотека оболочки Windows 131795778272945223 0x7ffaced20000 782336 C:\Windows\System32\oleaut32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795778262622754 0x7ffacede0000 450560 C:\Windows\System32\coml2.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft COM for Windows 131795778259577351 0x7ffacee50000 1183744 C:\Windows\System32\rpcrt4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795778265716961 0x7ffacef80000 32768 C:\Windows\System32\nsi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation NSI User-mode interface DLL 131795778259571021 0x7ffacef90000 647168 C:\Windows\System32\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795778260302861 0x7ffacf030000 651264 C:\Windows\System32\clbcatq.dll 2001.12.10941.16384 (rs1_release.160715-1616) Microsoft Corporation COM+ Configuration Catalog 131795778259514798 0x7ffacf0d0000 704512 C:\Windows\System32\kernel32.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795778276914178 0x7ffacf340000 4362240 C:\Windows\System32\setupapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Setup API 131795778259573318 0x7ffacf770000 212992 C:\Windows\System32\gdi32.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation GDI Client DLL 131795778259571855 0x7ffacf8c0000 1462272 C:\Windows\System32\user32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795778259575900 0x7ffacfb30000 2916352 C:\Windows\System32\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795778259912248 0x7ffacfe20000 663552 C:\Windows\System32\advapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795778259914551 0x7ffad0070000 1277952 C:\Windows\System32\ole32.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft OLE для Windows 131795778259575080 0x7ffad01b0000 335872 C:\Windows\System32\shlwapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека небольших программ оболочки 131795778259913185 0x7ffad0210000 364544 C:\Windows\System32\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795778253564149 0x7ffad0270000 1908736 C:\Windows\System32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 132 5748 580 4 00000000:000003e7 131795778806993759 131795783985261040 0 1 Обязательная метка\Обязательный уровень системы NT AUTHORITY\СИСТЕМА svchost.exe C:\Windows\system32\svchost.exe C:\Windows\system32\svchost.exe -k wsappx Microsoft Corporation 10.0.14393.0 (rs1_release.160715-1616) Хост-процесс для служб Windows 131795778807042136 0x7ff718c20000 57344 C:\Windows\System32\svchost.exe 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Хост-процесс для служб Windows 131795778809771371 0x7ffaafc30000 2297856 C:\Windows\System32\AppXDeploymentServer.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation Библиотека DLL сервера развертывания AppX 131795778810217417 0x7ffabafc0000 700416 C:\Windows\System32\wer.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека сообщений об ошибках Windows 131795778809793544 0x7ffac3270000 40960 C:\Windows\System32\fltLib.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека фильтров 131795778809909001 0x7ffac42a0000 659456 C:\Windows\System32\StateRepository.Core.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation StateRepository Core 131795778810725123 0x7ffac46d0000 4161536 C:\Windows\System32\Windows.StateRepository.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Сервер Windows StateRepository API Server 131795778810201985 0x7ffac9220000 397312 C:\Windows\System32\wevtapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API настройки и использования событий 131795778809816672 0x7ffacb420000 204800 C:\Windows\System32\ntmarta.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик Windows NT MARTA 131795778809822524 0x7ffacb720000 344064 C:\Windows\System32\mintdh.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Вспомогательная библиотека трассировки событий 131795778809799027 0x7ffacb820000 712704 C:\Windows\System32\tdh.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Вспомогательная библиотека трассировки событий 131795778810317823 0x7ffacb920000 81920 C:\Windows\System32\wldp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Политика блокировки Windows 131795778809809854 0x7ffacbe40000 126976 C:\Windows\System32\userenv.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Userenv 131795778810208064 0x7ffacc620000 176128 C:\Windows\System32\bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795778809594468 0x7ffacc6e0000 61440 C:\Windows\System32\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795778809776574 0x7ffacc740000 81920 C:\Windows\System32\profapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Profile Basic API 131795778809778372 0x7ffacc760000 65536 C:\Windows\System32\msasn1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ASN.1 Runtime APIs 131795778809607454 0x7ffacc770000 1572864 C:\Windows\System32\gdi32full.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation GDI Client DLL 131795778809572087 0x7ffacc8f0000 1003520 C:\Windows\System32\ucrtbase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795778809580973 0x7ffacc9f0000 434176 C:\Windows\System32\bcryptprimitives.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Cryptographic Primitives Library 131795778809605642 0x7ffacca60000 122880 C:\Windows\System32\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795778810318817 0x7ffacca80000 348160 C:\Windows\System32\wintrust.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation Microsoft Trust Verification APIs 131795778809772360 0x7ffaccae0000 692224 C:\Windows\System32\SHCore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795778809561432 0x7ffacd270000 2215936 C:\Windows\System32\KernelBase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795778809777533 0x7ffacd490000 1871872 C:\Windows\System32\crypt32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API32 криптографии 131795778809774521 0x7ffacd710000 638976 C:\Windows\System32\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795778809773756 0x7ffaced20000 782336 C:\Windows\System32\oleaut32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795778809570735 0x7ffacee50000 1183744 C:\Windows\System32\rpcrt4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795778809595255 0x7ffacef90000 647168 C:\Windows\System32\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795778810493271 0x7ffacf030000 651264 C:\Windows\System32\clbcatq.dll 2001.12.10941.16384 (rs1_release.160715-1616) Microsoft Corporation COM+ Configuration Catalog 131795778809560537 0x7ffacf0d0000 704512 C:\Windows\System32\kernel32.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795778809606459 0x7ffacf770000 212992 C:\Windows\System32\gdi32.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation GDI Client DLL 131795778809600563 0x7ffacf8c0000 1462272 C:\Windows\System32\user32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795778809580022 0x7ffacfb30000 2916352 C:\Windows\System32\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795778809775513 0x7ffacfe20000 663552 C:\Windows\System32\advapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795778809569904 0x7ffad0210000 364544 C:\Windows\System32\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795778807042435 0x7ffad0270000 1908736 C:\Windows\System32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 136 9796 4048 3 00000000:000003e7 131795780239620520 131795782184799043 0 1 Обязательная метка\Обязательный уровень системы NT AUTHORITY\СИСТЕМА SearchProtocolHost.exe C:\Windows\system32\SearchProtocolHost.exe "C:\Windows\system32\SearchProtocolHost.exe" Global\UsGthrFltPipeMssGthrPipe287_ Global\UsGthrCtrlFltPipeMssGthrPipe287 1 -2147483646 "Software\Microsoft\Windows Search" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT; MS Search 4.0 Robot)" "C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc" "DownLevelDaemon" Microsoft Corporation 7.0.14393.2125 (rs1_release.180301-2139) Microsoft Windows Search Protocol Host 131795780239737964 0x7ff71ad80000 368640 C:\Windows\System32\SearchProtocolHost.exe 7.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation Microsoft Windows Search Protocol Host 131795780369815326 0x7ffaac6e0000 13156352 C:\Windows\System32\ieframe.dll 11.00.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Браузер 131795780418459536 0x7ffab33d0000 258048 C:\Windows\System32\mlang.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL многоязыковой поддержки 131795780240300022 0x7ffab7a00000 3424256 C:\Windows\System32\tquery.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Запросы Microsoft Tripoli 131795780243315314 0x7ffab9490000 860160 C:\Windows\System32\ntshrui.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширения оболочки, обеспечивающие общий доступ 131795780243903335 0x7ffabaf70000 270336 C:\Windows\System32\edputil.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служебная программа EDP 131795780441683903 0x7ffabc0b0000 65536 C:\Windows\System32\linkinfo.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Volume Tracking 131795780243600064 0x7ffabc880000 73728 C:\Windows\System32\cscapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Offline Files Win32 API 131795780427898780 0x7ffabf5d0000 2924544 C:\Windows\System32\wininet.dll 11.00.14393.447 (rs1_release_inmarket.161102-0100) Microsoft Corporation Расширения Интернета для Win32 131795780243436640 0x7ffabff10000 155648 C:\Windows\System32\srvcli.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Server Service Client DLL 131795780430442742 0x7ffac0bf0000 3559424 C:\Windows\System32\actxprxy.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation ActiveX Interface Marshaling Library 131795780410780027 0x7ffac2700000 98304 C:\Windows\System32\netapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API DLL 131795780241991790 0x7ffac2960000 143360 C:\Windows\System32\mssprxy.dll 7.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation Microsoft Search Proxy 131795780410796187 0x7ffac2b80000 40960 C:\Windows\System32\version.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Version Checking and File Installation Libraries 131795780431995807 0x7ffac34e0000 1843200 C:\Windows\System32\urlmon.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширения OLE32 для Win32 131795780410763398 0x7ffac3cb0000 2772992 C:\Windows\System32\iertutil.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служебная программа времени выполнения для Internet Explorer 131795780417487601 0x7ffac6ba0000 49152 C:\Windows\System32\secur32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Security Support Provider Interface 131795780413476937 0x7ffac6c40000 2596864 C:\Windows\WinSxS\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.14393.953_none_42151e83c686086b\comctl32.dll 6.10 (rs1_release_inmarket.170303-1614) Microsoft Corporation Библиотека элементов управления взаимодействия с пользователем 131795780242057291 0x7ffac7cd0000 192512 C:\Windows\System32\mssph.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Обработчик протоколов поиска Microsoft 131795780240397027 0x7ffac7e40000 28672 C:\Windows\System32\msidle.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Idle Monitor 131795780412021532 0x7ffac90b0000 90112 C:\Windows\System32\wkscli.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Workstation Service Client DLL 131795780242909541 0x7ffaca340000 1593344 C:\Windows\System32\propsys.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Система страниц свойств (Майкрософт) 131795780369785371 0x7ffacadf0000 499712 C:\Windows\System32\apphelp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиентская библиотека совместимости приложений 131795780242712385 0x7ffacb420000 204800 C:\Windows\System32\ntmarta.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик Windows NT MARTA 131795780242660417 0x7ffacb960000 303104 C:\Windows\System32\authz.dll 10.0.14393.1737 (rs1_release_inmarket.170914-1249) Microsoft Corporation Authorization Framework 131795782184673221 0x7ffacbe20000 53248 C:\Windows\System32\netutils.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API Helpers DLL 131795780243425796 0x7ffacc350000 180224 C:\Windows\System32\sspicli.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Security Support Provider Interface 131795780412832818 0x7ffacc620000 176128 C:\Windows\System32\bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795780240244868 0x7ffacc6e0000 61440 C:\Windows\System32\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795780240240128 0x7ffacc6f0000 311296 C:\Windows\System32\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795780240251850 0x7ffacc740000 81920 C:\Windows\System32\profapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Profile Basic API 131795780240242580 0x7ffacc770000 1572864 C:\Windows\System32\gdi32full.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation GDI Client DLL 131795780240232121 0x7ffacc8f0000 1003520 C:\Windows\System32\ucrtbase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795780240234675 0x7ffacc9f0000 434176 C:\Windows\System32\bcryptprimitives.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Cryptographic Primitives Library 131795780240244079 0x7ffacca60000 122880 C:\Windows\System32\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795780240238319 0x7ffaccae0000 692224 C:\Windows\System32\SHCore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795780240239247 0x7ffaccb90000 7180288 C:\Windows\System32\windows.storage.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API хранения Microsoft WinRT 131795780240221401 0x7ffacd270000 2215936 C:\Windows\System32\KernelBase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795780240231486 0x7ffacd710000 638976 C:\Windows\System32\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795780243144631 0x7ffacd7b0000 270336 C:\Windows\System32\cfgmgr32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Configuration Manager DLL 131795780243143464 0x7ffacd810000 22056960 C:\Windows\System32\shell32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Общая библиотека оболочки Windows 131795780240230763 0x7ffaced20000 782336 C:\Windows\System32\oleaut32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795780240233764 0x7ffacee50000 1183744 C:\Windows\System32\rpcrt4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795780240229489 0x7ffacef90000 647168 C:\Windows\System32\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795780240634076 0x7ffacf030000 651264 C:\Windows\System32\clbcatq.dll 2001.12.10941.16384 (rs1_release.160715-1616) Microsoft Corporation COM+ Configuration Catalog 131795780240220498 0x7ffacf0d0000 704512 C:\Windows\System32\kernel32.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795780240241837 0x7ffacf770000 212992 C:\Windows\System32\gdi32.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation GDI Client DLL 131795780240368757 0x7ffacf890000 188416 C:\Windows\System32\imm32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Multi-User Windows IMM32 API Client DLL 131795780240243394 0x7ffacf8c0000 1462272 C:\Windows\System32\user32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795780240233035 0x7ffacfb30000 2916352 C:\Windows\System32\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795780240236451 0x7ffacfe20000 663552 C:\Windows\System32\advapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795780241097467 0x7ffad0070000 1277952 C:\Windows\System32\ole32.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft OLE для Windows 131795780240240989 0x7ffad01b0000 335872 C:\Windows\System32\shlwapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека небольших программ оболочки 131795780240237313 0x7ffad0210000 364544 C:\Windows\System32\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795780239738429 0x7ffad0270000 1908736 C:\Windows\System32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 137 12508 4048 3 00000000:000003e7 131795780241037362 131795782185153365 0 1 Обязательная метка\Средний обязательный уровень NT AUTHORITY\СИСТЕМА SearchFilterHost.exe C:\Windows\system32\SearchFilterHost.exe "C:\Windows\system32\SearchFilterHost.exe" 0 708 712 720 8192 716 Microsoft Corporation 7.0.14393.2125 (rs1_release.180301-2139) Microsoft Windows Search Filter Host 131795780241063145 0x7ff68a750000 225280 C:\Windows\System32\SearchFilterHost.exe 7.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation Microsoft Windows Search Filter Host 131795780247134349 0x7ffaac6e0000 13156352 C:\Windows\System32\ieframe.dll 11.00.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Браузер 131795780241521132 0x7ffab7a00000 3424256 C:\Windows\System32\tquery.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Запросы Microsoft Tripoli 131795780248688938 0x7ffac2700000 98304 C:\Windows\System32\netapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API DLL 131795780241889503 0x7ffac2960000 143360 C:\Windows\System32\mssprxy.dll 7.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation Microsoft Search Proxy 131795780248698505 0x7ffac2b80000 40960 C:\Windows\System32\version.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Version Checking and File Installation Libraries 131795780248678892 0x7ffac3cb0000 2772992 C:\Windows\System32\iertutil.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служебная программа времени выполнения для Internet Explorer 131795780336696287 0x7ffac6c40000 2596864 C:\Windows\WinSxS\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.14393.953_none_42151e83c686086b\comctl32.dll 6.10 (rs1_release_inmarket.170303-1614) Microsoft Corporation Библиотека элементов управления взаимодействия с пользователем 131795780248844250 0x7ffac90b0000 90112 C:\Windows\System32\wkscli.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Workstation Service Client DLL 131795780369734185 0x7ffaca340000 1593344 C:\Windows\System32\propsys.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Система страниц свойств (Майкрософт) 131795780248709490 0x7ffacbe20000 53248 C:\Windows\System32\netutils.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API Helpers DLL 131795780245297442 0x7ffacc520000 622592 C:\Windows\System32\sxs.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Fusion 2.5 131795780248857657 0x7ffacc620000 176128 C:\Windows\System32\bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795780241586648 0x7ffacc6e0000 61440 C:\Windows\System32\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795780248634862 0x7ffacc6f0000 311296 C:\Windows\System32\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795780248647646 0x7ffacc740000 81920 C:\Windows\System32\profapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Profile Basic API 131795780241557344 0x7ffacc770000 1572864 C:\Windows\System32\gdi32full.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation GDI Client DLL 131795780241423082 0x7ffacc8f0000 1003520 C:\Windows\System32\ucrtbase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795780241426099 0x7ffacc9f0000 434176 C:\Windows\System32\bcryptprimitives.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Cryptographic Primitives Library 131795780241555681 0x7ffacca60000 122880 C:\Windows\System32\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795780241892382 0x7ffaccae0000 692224 C:\Windows\System32\SHCore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795780248633959 0x7ffaccb90000 7180288 C:\Windows\System32\windows.storage.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API хранения Microsoft WinRT 131795780241412105 0x7ffacd270000 2215936 C:\Windows\System32\KernelBase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795780241422398 0x7ffacd710000 638976 C:\Windows\System32\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795780248632826 0x7ffacd7b0000 270336 C:\Windows\System32\cfgmgr32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Configuration Manager DLL 131795780248631779 0x7ffacd810000 22056960 C:\Windows\System32\shell32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Общая библиотека оболочки Windows 131795780241421633 0x7ffaced20000 782336 C:\Windows\System32\oleaut32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795780241424805 0x7ffacee50000 1183744 C:\Windows\System32\rpcrt4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795780241420314 0x7ffacef90000 647168 C:\Windows\System32\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795780241785125 0x7ffacf030000 651264 C:\Windows\System32\clbcatq.dll 2001.12.10941.16384 (rs1_release.160715-1616) Microsoft Corporation COM+ Configuration Catalog 131795780241411149 0x7ffacf0d0000 704512 C:\Windows\System32\kernel32.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795780241556540 0x7ffacf770000 212992 C:\Windows\System32\gdi32.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation GDI Client DLL 131795780241553299 0x7ffacf890000 188416 C:\Windows\System32\imm32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Multi-User Windows IMM32 API Client DLL 131795780241554210 0x7ffacf8c0000 1462272 C:\Windows\System32\user32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795780241423999 0x7ffacfb30000 2916352 C:\Windows\System32\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795780241427039 0x7ffacfe20000 663552 C:\Windows\System32\advapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795780248630299 0x7ffad0070000 1277952 C:\Windows\System32\ole32.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft OLE для Windows 131795780248623921 0x7ffad01b0000 335872 C:\Windows\System32\shlwapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека небольших программ оболочки 131795780241505282 0x7ffad0210000 364544 C:\Windows\System32\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795780241063419 0x7ffad0270000 1908736 C:\Windows\System32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 138 12816 664 6 00000000:0031f1da 131795780328696510 131795781526202116 0 1 Обязательная метка\Низкий обязательный уровень WIN-0UOTFKKVN1S\User backgroundTaskHost.exe C:\Windows\system32\backgroundTaskHost.exe "C:\Windows\system32\backgroundTaskHost.exe" -ServerName:CortanaUI.AppXy7vb4pc2dr3kc93kfc509b1d0arkfb2x.mca Microsoft Corporation 10.0.14393.0 (rs1_release.160715-1616) Background Task Host 131795780329749381 0x7ff6c9470000 28672 C:\Windows\System32\backgroundTaskHost.exe 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Background Task Host 131795780412645902 0x7ffab52c0000 2445312 C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.BackgroundTask.dll 131795780458670386 0x7ffab5db0000 9781248 C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\CortanaApi.dll 131795780430264262 0x7ffab9d50000 1429504 C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Core.dll 131795780415005192 0x7ffabae40000 110592 C:\Windows\System32\capauthz.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API авторизации возможностей 131795780669717689 0x7ffabc6b0000 1114112 C:\Windows\System32\AppContracts.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Сервер API Windows AppContracts 131795780455059889 0x7ffabd4a0000 1613824 C:\Windows\System32\Windows.Globalization.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Globalization 131795780464027032 0x7ffabe4d0000 286720 C:\Windows\System32\MSWB7.dll 10.0.14393.1737 (rs1_release_inmarket.170914-1249) Microsoft Corporation MSWB7 DLL 131795780460179577 0x7ffabe770000 774144 C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\CSGSuggestLib.dll 131795780426479724 0x7ffabea90000 135168 C:\Windows\System32\Windows.ApplicationModel.Background.SystemEventsBroker.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Background System Events Broker API Server 131795780434238517 0x7ffabeac0000 335872 C:\Windows\System32\Windows.Storage.ApplicationData.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Application Data API Server 131795780444160476 0x7ffabf8a0000 122880 C:\Windows\System32\Windows.Cortana.ProxyStub.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows.Cortana.ProxyStub 131795780435161488 0x7ffabfd80000 86016 C:\Windows\System32\threadpoolwinrt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows WinRT Threadpool 131795780414048080 0x7ffac01e0000 397312 C:\Windows\System32\wincorlib.dll 10.0.14393.576 (rs1_release_inmarket.161208-2252) Microsoft Corporation Microsoft Windows ® WinRT core library 131795780336747714 0x7ffac0bf0000 3559424 C:\Windows\System32\actxprxy.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation ActiveX Interface Marshaling Library 131795780431439143 0x7ffac2c30000 135168 C:\Windows\System32\Clipc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиент платформы лицензирования клиента 131795780415109582 0x7ffac2d80000 5140480 C:\Windows\System32\cdp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API клиента Microsoft (R) CDP 131795780447463685 0x7ffac37b0000 106496 C:\Windows\System32\ShellCommonCommonProxyStub.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ShellCommon Common Proxy Stub 131795780458880946 0x7ffac3810000 167936 C:\Windows\System32\cabinet.dll 5.00 (rs1_release.160715-1616) Microsoft Corporation Microsoft® Cabinet File API 131795780431346631 0x7ffac3bf0000 94208 C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\ActionMgr.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Cortana Action Manager 131795780454034058 0x7ffac3cb0000 2772992 C:\Windows\System32\iertutil.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служебная программа времени выполнения для Internet Explorer 131795780439433205 0x7ffac42a0000 659456 C:\Windows\System32\StateRepository.Core.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation StateRepository Core 131795780439202248 0x7ffac46d0000 4161536 C:\Windows\System32\Windows.StateRepository.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Сервер Windows StateRepository API Server 131795780453275113 0x7ffac5070000 798720 C:\Windows\System32\Windows.Web.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL веб-клиента 131795780414060032 0x7ffac60e0000 221184 C:\Windows\System32\xmllite.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft XmlLite Library 131795780412035947 0x7ffac6620000 192512 C:\Windows\System32\biwinrt.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation Windows Background Broker Infrastructure 131795780417041804 0x7ffac69c0000 839680 C:\Windows\System32\winhttp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Службы HTTP Windows 131795780335537874 0x7ffac6ac0000 835584 C:\Windows\System32\Windows.UI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Runtime UI Foundation DLL 131795780440780442 0x7ffac6bb0000 118784 C:\Windows\System32\Windows.Cortana.PAL.Desktop.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows.Cortana.PAL.Desktop 131795780334206479 0x7ffac7580000 1077248 C:\Windows\System32\MrmCoreR.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Windows MRM 131795780412505075 0x7ffac7720000 1601536 C:\Windows\System32\OneCoreUAPCommonProxyStub.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation OneCoreUAP Common Proxy Stub 131795780431250324 0x7ffac7c50000 118784 C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\BingConfigurationClient.dll 10.0.14393.82 (rs1_release.160805-1735) Microsoft Corporation Bing Configuration Client DLL 131795780734626399 0x7ffac7d80000 49152 C:\Windows\System32\Windows.ApplicationModel.Background.TimeBroker.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Background Time Broker API Server 131795780460761885 0x7ffac8fa0000 253952 C:\Windows\System32\logoncli.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Net Logon Client DLL 131795780330302623 0x7ffac92e0000 1269760 C:\Windows\System32\WinTypes.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL основных типов Windows 131795780735708696 0x7ffaca260000 45056 C:\Windows\System32\SystemEventsBrokerClient.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation system Events Broker Client Library 131795780456573704 0x7ffaca340000 1593344 C:\Windows\System32\propsys.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Система страниц свойств (Майкрософт) 131795780353237616 0x7ffaca570000 421888 C:\Windows\System32\BCP47Langs.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation BCP47 Language Classes 131795780329775228 0x7ffacadf0000 499712 C:\Windows\System32\apphelp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиентская библиотека совместимости приложений 131795780354090093 0x7ffacaf00000 610304 C:\Windows\System32\uxtheme.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека тем UxTheme (Microsoft) 131795780414037017 0x7ffacb140000 593920 C:\Windows\System32\msvcp110_win.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Microsoft® STL110 C++ Runtime Library 131795780329952250 0x7ffacb1e0000 1163264 C:\Windows\System32\twinapi.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation twinapi.appcore 131795780416468722 0x7ffacb300000 364544 C:\Windows\System32\VEEventDispatcher.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Visual Element Event dispatcher 131795780458075843 0x7ffacb420000 204800 C:\Windows\System32\ntmarta.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик Windows NT MARTA 131795780416610948 0x7ffacbd30000 229376 C:\Windows\System32\IPHLPAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API вспомогательного приложения IP 131795780417362058 0x7ffacc1f0000 241664 C:\Windows\System32\ntasn1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft ASN.1 API 131795780416587207 0x7ffacc230000 155648 C:\Windows\System32\ncrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Маршрутизатор Windows NCrypt 131795780416598309 0x7ffacc350000 180224 C:\Windows\System32\sspicli.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Security Support Provider Interface 131795780329987780 0x7ffacc620000 176128 C:\Windows\System32\bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795780329937663 0x7ffacc6e0000 61440 C:\Windows\System32\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795780440064693 0x7ffacc6f0000 311296 C:\Windows\System32\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795780334214070 0x7ffacc740000 81920 C:\Windows\System32\profapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Profile Basic API 131795780416574039 0x7ffacc760000 65536 C:\Windows\System32\msasn1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ASN.1 Runtime APIs 131795780332551041 0x7ffacc770000 1572864 C:\Windows\System32\gdi32full.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation GDI Client DLL 131795780329815850 0x7ffacc8f0000 1003520 C:\Windows\System32\ucrtbase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795780329817545 0x7ffacc9f0000 434176 C:\Windows\System32\bcryptprimitives.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Cryptographic Primitives Library 131795780332549409 0x7ffacca60000 122880 C:\Windows\System32\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795780330307702 0x7ffaccae0000 692224 C:\Windows\System32\SHCore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795780440061460 0x7ffaccb90000 7180288 C:\Windows\System32\windows.storage.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API хранения Microsoft WinRT 131795780329756590 0x7ffacd270000 2215936 C:\Windows\System32\KernelBase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795780416541236 0x7ffacd490000 1871872 C:\Windows\System32\crypt32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API32 криптографии 131795780415545554 0x7ffacd710000 638976 C:\Windows\System32\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795780415544634 0x7ffaced20000 782336 C:\Windows\System32\oleaut32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795780329816609 0x7ffacee50000 1183744 C:\Windows\System32\rpcrt4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795780329812830 0x7ffacef90000 647168 C:\Windows\System32\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795780329755673 0x7ffacf0d0000 704512 C:\Windows\System32\kernel32.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795780332550210 0x7ffacf770000 212992 C:\Windows\System32\gdi32.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation GDI Client DLL 131795780416575003 0x7ffacf820000 434176 C:\Windows\System32\ws2_32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation 32-разрядная библиотека Windows Socket 2.0 131795780332564758 0x7ffacf890000 188416 C:\Windows\System32\imm32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Multi-User Windows IMM32 API Client DLL 131795780332548246 0x7ffacf8c0000 1462272 C:\Windows\System32\user32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795780329814985 0x7ffacfb30000 2916352 C:\Windows\System32\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795780414009539 0x7ffacfe20000 663552 C:\Windows\System32\advapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795780461878432 0x7ffad0070000 1277952 C:\Windows\System32\ole32.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft OLE для Windows 131795780440069381 0x7ffad01b0000 335872 C:\Windows\System32\shlwapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека небольших программ оболочки 131795780329975442 0x7ffad0210000 364544 C:\Windows\System32\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795780329749700 0x7ffad0270000 1908736 C:\Windows\System32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 143 10640 664 6 00000000:0031f1da 131795780604526348 131795781058423316 0 1 Обязательная метка\Низкий обязательный уровень WIN-0UOTFKKVN1S\User backgroundTaskHost.exe C:\Windows\system32\backgroundTaskHost.exe "C:\Windows\system32\backgroundTaskHost.exe" -ServerName:App.AppXmtcan0h2tfbfy7k9kn8hbxb6dmzz1zh0.mca Microsoft Corporation 10.0.14393.0 (rs1_release.160715-1616) Background Task Host 131795780604942096 0x7ff6c9470000 28672 C:\Windows\System32\backgroundTaskHost.exe 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Background Task Host 131795780982599698 0x7ffaa6c80000 2936832 C:\Windows\System32\CertEnroll.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиент регистрации служб сертификатов Active Directory Microsoft® 131795780624085064 0x7ffaad5b0000 3424256 C:\Windows\SystemApps\Microsoft.Windows.ContentDeliveryManager_cw5n1h2txyewy\ContentDeliveryManager.Background.dll 131795780633868268 0x7ffaadf00000 2260992 C:\Windows\SystemApps\Microsoft.Windows.ContentDeliveryManager_cw5n1h2txyewy\ContentManagementSDK.dll 131795780984186979 0x7ffab1dc0000 798720 C:\Windows\System32\certca.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ЦС служб сертификации Microsoft® Active Directory 131795780989018507 0x7ffab33d0000 258048 C:\Windows\System32\mlang.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL многоязыковой поддержки 131795780638521291 0x7ffab8f60000 397312 C:\Windows\System32\CryptoWinRT.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Crypto WinRT Library 131795780656495804 0x7ffab9c00000 1343488 C:\Windows\System32\Windows.Web.Http.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL Windows.Web.Http 131795780968504887 0x7ffabaab0000 94208 C:\Windows\System32\profext.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation profext 131795780965909656 0x7ffabbd10000 65536 C:\Windows\System32\tokenbinding.dll 10.0.14393.1593 (rs1_release.170731-1934) Microsoft Corporation Token Binding Protocol 131795780850515848 0x7ffabc530000 241664 C:\Windows\System32\Windows.Networking.HostName.dll 10.0.14393.953 (rs1_release_inmarket.170303-1614) Microsoft Corporation Windows.Networking.HostName DLL 131795780881658829 0x7ffabca50000 819200 C:\Windows\System32\Windows.Security.Authentication.Web.Core.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Token Broker WinRT API 131795780632764734 0x7ffabd4a0000 1613824 C:\Windows\System32\Windows.Globalization.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Globalization 131795780627995893 0x7ffabea90000 135168 C:\Windows\System32\Windows.ApplicationModel.Background.SystemEventsBroker.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Background System Events Broker API Server 131795780626074133 0x7ffabeac0000 335872 C:\Windows\System32\Windows.Storage.ApplicationData.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Application Data API Server 131795780637000038 0x7ffabeb20000 385024 C:\Windows\System32\Windows.ApplicationModel.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows ApplicationModel API Server 131795780979874979 0x7ffabf1d0000 192512 C:\Windows\System32\cryptnet.dll 10.0.14393.2035 (rs1_release_inmarket.180110-1910) Microsoft Corporation Crypto Network Related API 131795780639367373 0x7ffabf2d0000 344064 C:\Windows\System32\ncryptprov.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft KSP 131795780949324967 0x7ffabf5d0000 2924544 C:\Windows\System32\wininet.dll 11.00.14393.447 (rs1_release_inmarket.161102-0100) Microsoft Corporation Расширения Интернета для Win32 131795780638058893 0x7ffabfd80000 86016 C:\Windows\System32\threadpoolwinrt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows WinRT Threadpool 131795780979208878 0x7ffabff60000 135168 C:\Windows\System32\ncryptsslp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft SChannel Provider 131795780624149045 0x7ffac01e0000 397312 C:\Windows\System32\wincorlib.dll 10.0.14393.576 (rs1_release_inmarket.161208-2252) Microsoft Corporation Microsoft Windows ® WinRT core library 131795780641809268 0x7ffac0910000 724992 C:\Windows\System32\Windows.Networking.Connectivity.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Networking Connectivity Runtime DLL 131795780979197823 0x7ffac0ad0000 86016 C:\Windows\System32\mskeyprotect.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик защиты ключей (Майкрософт) 131795780606360545 0x7ffac0bf0000 3559424 C:\Windows\System32\actxprxy.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation ActiveX Interface Marshaling Library 131795780918011378 0x7ffac23c0000 331776 C:\Windows\System32\OneCoreCommonProxyStub.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation OneCore Common Proxy Stub 131795780971614143 0x7ffac34e0000 1843200 C:\Windows\System32\urlmon.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширения OLE32 для Win32 131795780631634537 0x7ffac3cb0000 2772992 C:\Windows\System32\iertutil.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служебная программа времени выполнения для Internet Explorer 131795780624161030 0x7ffac4000000 274432 C:\Windows\System32\policymanager.dll 10.0.14393.2035 (rs1_release_inmarket.180110-1910) Microsoft Corporation Policy Manager DLL 131795780642339398 0x7ffac42a0000 659456 C:\Windows\System32\StateRepository.Core.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation StateRepository Core 131795780642310850 0x7ffac46d0000 4161536 C:\Windows\System32\Windows.StateRepository.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Сервер Windows StateRepository API Server 131795780631607870 0x7ffac5070000 798720 C:\Windows\System32\Windows.Web.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL веб-клиента 131795780972492970 0x7ffac6610000 40960 C:\Windows\System32\rasadhlp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Remote Access AutoDial Helper 131795780622245977 0x7ffac6620000 192512 C:\Windows\System32\biwinrt.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation Windows Background Broker Infrastructure 131795780965988464 0x7ffac66a0000 86016 C:\Windows\System32\OnDemandConnRouteHelper.dll 10.0.14393.351 (rs1_release_inmarket.161014-1755) Microsoft Corporation On Demand Connctiond Route Helper 131795780966015364 0x7ffac69c0000 839680 C:\Windows\System32\winhttp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Службы HTTP Windows 131795780606285280 0x7ffac6ac0000 835584 C:\Windows\System32\Windows.UI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Runtime UI Foundation DLL 131795780983258989 0x7ffac6b90000 53248 C:\Windows\System32\dsparse.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Active Directory Domain Services API 131795780605748575 0x7ffac7580000 1077248 C:\Windows\System32\MrmCoreR.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Windows MRM 131795780624526113 0x7ffac76a0000 159744 C:\Windows\System32\sppc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Software Licensing Client DLL 131795780622740074 0x7ffac7720000 1601536 C:\Windows\System32\OneCoreUAPCommonProxyStub.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation OneCoreUAP Common Proxy Stub 131795780624112925 0x7ffac7990000 155648 C:\Windows\System32\slc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Software Licensing Client DLL 131795780626644547 0x7ffac7d80000 49152 C:\Windows\System32\Windows.ApplicationModel.Background.TimeBroker.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Background Time Broker API Server 131795780975579967 0x7ffac8420000 434176 C:\Windows\System32\FWPUCLNT.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API пользовательского режима FWP/IPsec 131795780968868492 0x7ffac8810000 45056 C:\Windows\System32\winnsi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Network Store Information RPC interface 131795780626601326 0x7ffac8fa0000 253952 C:\Windows\System32\logoncli.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Net Logon Client DLL 131795780605036791 0x7ffac92e0000 1269760 C:\Windows\System32\WinTypes.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL основных типов Windows 131795780630151168 0x7ffaca260000 45056 C:\Windows\System32\SystemEventsBrokerClient.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation system Events Broker Client Library 131795780634233098 0x7ffaca340000 1593344 C:\Windows\System32\propsys.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Система страниц свойств (Майкрософт) 131795780621646470 0x7ffaca570000 421888 C:\Windows\System32\BCP47Langs.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation BCP47 Language Classes 131795780621784723 0x7ffacaf00000 610304 C:\Windows\System32\uxtheme.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека тем UxTheme (Microsoft) 131795780624171938 0x7ffacb140000 593920 C:\Windows\System32\msvcp110_win.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Microsoft® STL110 C++ Runtime Library 131795780605004500 0x7ffacb1e0000 1163264 C:\Windows\System32\twinapi.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation twinapi.appcore 131795780624123309 0x7ffacb300000 364544 C:\Windows\System32\VEEventDispatcher.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Visual Element Event dispatcher 131795780967018140 0x7ffacb360000 176128 C:\Windows\System32\fwbase.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Firewall Base DLL 131795780644959783 0x7ffacb420000 204800 C:\Windows\System32\ntmarta.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик Windows NT MARTA 131795780966160644 0x7ffacb460000 548864 C:\Windows\System32\FirewallAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API брандмауэра Windows 131795780977616543 0x7ffacbaf0000 495616 C:\Windows\System32\schannel.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик безопасности TLS/SSL 131795780979753360 0x7ffacbbb0000 208896 C:\Windows\System32\rsaenh.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Enhanced Cryptographic Provider 131795780979288601 0x7ffacbbf0000 40960 C:\Windows\System32\dpapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Data Protection API 131795780966000176 0x7ffacbd30000 229376 C:\Windows\System32\IPHLPAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API вспомогательного приложения IP 131795780971557025 0x7ffacbd70000 659456 C:\Windows\System32\dnsapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Динамическая библиотека API DNS-клиента 131795780967499686 0x7ffacbe40000 126976 C:\Windows\System32\userenv.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Userenv 131795780968849434 0x7ffacbfb0000 376832 C:\Windows\System32\mswsock.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширение поставщика службы API Microsoft Windows Sockets 2.0 131795780979741934 0x7ffacc150000 94208 C:\Windows\System32\cryptsp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Cryptographic Service Provider API 131795780640855968 0x7ffacc170000 45056 C:\Windows\System32\cryptbase.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base cryptographic API DLL 131795780639253750 0x7ffacc1f0000 241664 C:\Windows\System32\ntasn1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft ASN.1 API 131795780639155938 0x7ffacc230000 155648 C:\Windows\System32\ncrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Маршрутизатор Windows NCrypt 131795780624100929 0x7ffacc350000 180224 C:\Windows\System32\sspicli.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Security Support Provider Interface 131795780605016566 0x7ffacc620000 176128 C:\Windows\System32\bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795780604988979 0x7ffacc6e0000 61440 C:\Windows\System32\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795780634211474 0x7ffacc6f0000 311296 C:\Windows\System32\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795780606271616 0x7ffacc740000 81920 C:\Windows\System32\profapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Profile Basic API 131795780882167263 0x7ffacc760000 65536 C:\Windows\System32\msasn1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ASN.1 Runtime APIs 131795780605130292 0x7ffacc770000 1572864 C:\Windows\System32\gdi32full.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation GDI Client DLL 131795780604960936 0x7ffacc8f0000 1003520 C:\Windows\System32\ucrtbase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795780604962598 0x7ffacc9f0000 434176 C:\Windows\System32\bcryptprimitives.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Cryptographic Primitives Library 131795780605128610 0x7ffacca60000 122880 C:\Windows\System32\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795780979290330 0x7ffacca80000 348160 C:\Windows\System32\wintrust.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation Microsoft Trust Verification APIs 131795780605041481 0x7ffaccae0000 692224 C:\Windows\System32\SHCore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795780634210377 0x7ffaccb90000 7180288 C:\Windows\System32\windows.storage.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API хранения Microsoft WinRT 131795780604949997 0x7ffacd270000 2215936 C:\Windows\System32\KernelBase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795780882158799 0x7ffacd490000 1871872 C:\Windows\System32\crypt32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API32 криптографии 131795780624152029 0x7ffacd710000 638976 C:\Windows\System32\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795780624151198 0x7ffaced20000 782336 C:\Windows\System32\oleaut32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795780604961659 0x7ffacee50000 1183744 C:\Windows\System32\rpcrt4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795780968869207 0x7ffacef80000 32768 C:\Windows\System32\nsi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation NSI User-mode interface DLL 131795780604958974 0x7ffacef90000 647168 C:\Windows\System32\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795780604949078 0x7ffacf0d0000 704512 C:\Windows\System32\kernel32.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795780985065294 0x7ffacf180000 376832 C:\Windows\System32\Wldap32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Win32 LDAP API DLL 131795780605129419 0x7ffacf770000 212992 C:\Windows\System32\gdi32.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation GDI Client DLL 131795780965914856 0x7ffacf820000 434176 C:\Windows\System32\ws2_32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation 32-разрядная библиотека Windows Socket 2.0 131795780605144205 0x7ffacf890000 188416 C:\Windows\System32\imm32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Multi-User Windows IMM32 API Client DLL 131795780605127632 0x7ffacf8c0000 1462272 C:\Windows\System32\user32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795780604960157 0x7ffacfb30000 2916352 C:\Windows\System32\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795780624086344 0x7ffacfe20000 663552 C:\Windows\System32\advapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795780634212438 0x7ffad01b0000 335872 C:\Windows\System32\shlwapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека небольших программ оболочки 131795780605005539 0x7ffad0210000 364544 C:\Windows\System32\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795780604942528 0x7ffad0270000 1908736 C:\Windows\System32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 144 12892 3108 11 00000000:0031f1da 131795780695167004 0 0 1 Обязательная метка\Средний обязательный уровень WIN-0UOTFKKVN1S\User Wireshark.exe C:\Program Files\Wireshark\Wireshark.exe "C:\Program Files\Wireshark\Wireshark.exe" The Wireshark developer community, http://www.wireshark.org/ 2.6.2 Wireshark 131795780706141890 0xbd0000 90112 C:\Program Files\Wireshark\libwinpthread-1.dll 1, 0, 0, 0 MingW-W64 Project. All rights reserved. POSIX WinThreads for Windows 131795780721765742 0xbf0000 53248 C:\Program Files\Wireshark\k5sprt64.dll 1.6-kfw-3.2.2 Massachusetts Institute of Technology. Kerberos v5 support - internal support code for MIT Kerberos v5 /GSS distribution 131795780722106261 0xc00000 45056 C:\Program Files\Wireshark\comerr64.dll 1.6-kfw-3.2.2 Massachusetts Institute of Technology. COM_ERR - Common Error Handler for MIT Kerberos v5 / GSS distribution 131795780719731475 0x1c000000 1089536 C:\Program Files\Wireshark\krb5_64.dll 1.6-kfw-3.2.2 Massachusetts Institute of Technology. Kerberos v5 - MIT GSS / Kerberos v5 distribution 131795780773060331 0x5af30000 348160 C:\Program Files\Wireshark\Qt5Svg.dll 5.9.5.0 The Qt Company Ltd. C++ Application Development Framework 131795780721210805 0x5af90000 1286144 C:\Program Files\Wireshark\libxml2-2.dll 131795780696840198 0x5b0d0000 5865472 C:\Program Files\Wireshark\Qt5Core.dll 5.9.5.0 The Qt Company Ltd. C++ Application Development Framework 131795780696801039 0x5b670000 5619712 C:\Program Files\Wireshark\Qt5Widgets.dll 5.9.5.0 The Qt Company Ltd. C++ Application Development Framework 131795780721068755 0x5bcf0000 733184 C:\Program Files\Wireshark\libsmi-2.dll 131795780720701584 0x5bdb0000 204800 C:\Program Files\Wireshark\liblz4.dll 131795780720048995 0x5bdf0000 110592 C:\Program Files\Wireshark\libcares-2.dll 131795780701085625 0x5be10000 122880 C:\Program Files\Wireshark\libbcg729.dll 131795780700086118 0x5be30000 1261568 C:\Program Files\Wireshark\Qt5Network.dll 5.9.5.0 The Qt Company Ltd. C++ Application Development Framework 131795780701499544 0x61cc0000 151552 C:\Program Files\Wireshark\libintl-8.dll 0.18.1 Free Software Foundation LGPLed libintl for Windows NT/2000/XP/Vista/7 and Windows 95/98/ME 131795780704834900 0x646c0000 155648 C:\Program Files\Wireshark\libgpg-error6-0.dll 131795780703191110 0x64840000 1220608 C:\Program Files\Wireshark\libgnutls-30.dll 131795780720700188 0x64a00000 253952 C:\Program Files\Wireshark\lua52.dll 131795780702785552 0x653c0000 1089536 C:\Program Files\Wireshark\libgcrypt-20.dll 131795780706408972 0x65f00000 114688 C:\Program Files\Wireshark\libtasn1-6.dll 131795780705520711 0x66f00000 233472 C:\Program Files\Wireshark\libhogweed-4-2.dll 131795780696518462 0x685c0000 1265664 C:\Program Files\Wireshark\libglib-2.0-0.dll 2.42.0.0 The GLib developer community GLib 131795780706610973 0x68ec0000 389120 C:\Program Files\Wireshark\libp11-kit-0.dll 131795780720967901 0x69340000 815104 C:\Program Files\Wireshark\libsnappy-1.dll 131795780705423287 0x69c80000 253952 C:\Program Files\Wireshark\libnettle-6-2.dll 131795780700701891 0x6a680000 122880 C:\Program Files\Wireshark\libsbc-1.dll 131795780705248323 0x6acc0000 483328 C:\Program Files\Wireshark\libgmp-10.dll 131795780707311684 0x6b740000 73728 C:\Program Files\Wireshark\libffi-6.dll 131795780700957949 0x6d7c0000 495616 C:\Program Files\Wireshark\libspandsp-2.dll 131795780720746780 0x6dc80000 167936 C:\Program Files\Wireshark\libnghttp2-14.dll 131795780698864675 0x6dd00000 69632 C:\Program Files\Wireshark\libgmodule-2.0-0.dll 2.42.0.0 The GLib developer community GModule 131795780759720376 0x180000000 413696 C:\Windows\System32\wpcap.dll 4.1.0.2980 Riverbed Technology, Inc. wpcap.dll Dynamic Link Library - based on libpcap 1.0rel0b branch (20091008) 131795780760417804 0x190ac770000 126976 C:\Windows\System32\Packet.dll 4.1.0.2980 Riverbed Technology, Inc. packet.dll (Vista) Dynamic Link Library 131795780695991379 0x7ff7f1130000 8298496 C:\Program Files\Wireshark\Wireshark.exe 2.6.2 The Wireshark developer community, http://www.wireshark.org/ Wireshark 131795780718751145 0x7ffaa6f50000 64282624 C:\Program Files\Wireshark\libwireshark.dll 2.6.2 The Wireshark developer community, http://www.wireshark.org/ Wireshark dissector library 131795780697272337 0x7ffaaaca0000 6094848 C:\Program Files\Wireshark\Qt5Gui.dll 5.9.5.0 The Qt Company Ltd. C++ Application Development Framework 131795780896758694 0x7ffab1e90000 593920 C:\Program Files\Wireshark\plugins\2.6\epan\wimax.dll 1.2.0.0 The Wireshark developer community, http://www.wireshark.org/ wimax dissector 131795780766458881 0x7ffab1f30000 614400 C:\Windows\System32\riched20.dll 5.31.23.1231 Microsoft Corporation Rich Text Edit Control, v3.1 131795780699399720 0x7ffab2280000 1916928 C:\Program Files\Wireshark\WinSparkle.dll 0.5.7 winsparkle.org WinSparkle updater 131795780771263589 0x7ffab5b40000 2527232 C:\Windows\System32\DWrite.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Службы Microsoft DirectX Typography 131795780765326722 0x7ffab9010000 1388544 C:\Program Files\Wireshark\platforms\qwindows.dll 5.9.5.0 The Qt Company Ltd. C++ Application Development Framework 131795780896746168 0x7ffab9b10000 135168 C:\Program Files\Wireshark\plugins\2.6\epan\unistim.dll 0.0.2.0 The Wireshark developer community, http://www.wireshark.org/ unistim dissector 131795780896708383 0x7ffabaef0000 462848 C:\Program Files\Wireshark\plugins\2.6\epan\profinet.dll 0.2.4.0 The Wireshark developer community, http://www.wireshark.org/ profinet dissector 131795780773615377 0x7ffabb070000 512000 C:\Program Files\Wireshark\imageformats\qwebp.dll 5.9.5.0 The Qt Company Ltd. C++ Application Development Framework 131795780702318544 0x7ffabb0f0000 696320 C:\Windows\System32\msvcp140.dll 14.12.25810.0 built by: VCTOOLSREL Microsoft Corporation Microsoft® C Runtime Library 131795780773096445 0x7ffabb250000 393216 C:\Program Files\Wireshark\imageformats\qtiff.dll 5.9.5.0 The Qt Company Ltd. C++ Application Development Framework 131795780896696149 0x7ffabc110000 237568 C:\Program Files\Wireshark\plugins\2.6\epan\opcua.dll 1.0.0.0 The Wireshark developer community, http://www.wireshark.org/ opcua dissector 131795780696290907 0x7ffabc150000 729088 C:\Program Files\Wireshark\Qt5Multimedia.dll 5.9.5.0 The Qt Company Ltd. C++ Application Development Framework 131795780699299849 0x7ffabcbb0000 704512 C:\Program Files\Wireshark\libwiretap.dll 2.6.2 The Wireshark developer community, http://www.wireshark.org/ Wireshark capture file library 131795780702235327 0x7ffabcf30000 110592 C:\Windows\System32\mpr.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека маршрутизации для нескольких служб доступа 131795780699512168 0x7ffabd180000 548864 C:\Windows\System32\winspool.drv 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Драйвер диспетчера очереди Windows 131795780773039075 0x7ffabe940000 253952 C:\Program Files\Wireshark\imageformats\qjpeg.dll 5.9.5.0 The Qt Company Ltd. C++ Application Development Framework 131795780896684027 0x7ffabeb80000 163840 C:\Program Files\Wireshark\plugins\2.6\epan\mate.dll 1.0.1.0 The Wireshark developer community, http://www.wireshark.org/ mate dissector 131795780767100288 0x7ffabebb0000 233472 C:\Windows\System32\msls31.dll 3.10.349.0 Microsoft Corporation Microsoft Line Services library file 131795780967804060 0x7ffabf1d0000 192512 C:\Windows\System32\cryptnet.dll 10.0.14393.2035 (rs1_release_inmarket.180110-1910) Microsoft Corporation Crypto Network Related API 131795780703722010 0x7ffabf5d0000 2924544 C:\Windows\System32\wininet.dll 11.00.14393.447 (rs1_release_inmarket.161102-0100) Microsoft Corporation Расширения Интернета для Win32 131795780896660120 0x7ffabf990000 135168 C:\Program Files\Wireshark\plugins\2.6\epan\gryphon.dll 0.0.4.0 The Wireshark developer community, http://www.wireshark.org/ gryphon dissector 131795781117544658 0x7ffabfd60000 90112 C:\Windows\System32\NapiNSP.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик оболочки совместимости для имен электронной почты 131795781117680972 0x7ffabfef0000 106496 C:\Windows\System32\pnrpnsp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик пространства имен PNRP 131795780896781202 0x7ffabff40000 90112 C:\Program Files\Wireshark\plugins\2.6\epan\wimaxmacphy.dll 0.0.1.0 The Wireshark developer community, http://www.wireshark.org/ wimaxmacphy dissector 131795780975772674 0x7ffabff60000 135168 C:\Windows\System32\ncryptsslp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft SChannel Provider 131795781117813782 0x7ffac0ab0000 57344 C:\Windows\System32\winrnr.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation LDAP RnR Provider DLL 131795780967709675 0x7ffac0ad0000 86016 C:\Windows\System32\mskeyprotect.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик защиты ключей (Майкрософт) 131795780896602379 0x7ffac0b10000 180224 C:\Program Files\Wireshark\plugins\2.6\epan\ethercat.dll 0.1.0.0 The Wireshark developer community, http://www.wireshark.org/ ethercat dissector 131795780696305369 0x7ffac12f0000 585728 C:\Program Files\Wireshark\Qt5WinExtras.dll 5.9.5.0 The Qt Company Ltd. C++ Application Development Framework 131795780696268510 0x7ffac1380000 335872 C:\Program Files\Wireshark\Qt5PrintSupport.dll 5.9.5.0 The Qt Company Ltd. C++ Application Development Framework 131795780896769846 0x7ffac1640000 81920 C:\Program Files\Wireshark\plugins\2.6\epan\wimaxasncp.dll 0.0.1.0 The Wireshark developer community, http://www.wireshark.org/ wimaxasncp dissector 131795780703633136 0x7ffac1c90000 155648 C:\Program Files\Wireshark\zlib1.dll 1.2.11 zlib data compression library 131795780968289847 0x7ffac1d60000 589824 C:\Windows\System32\webio.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API протоколов передачи по Веб 131795780896672499 0x7ffac21f0000 73728 C:\Program Files\Wireshark\plugins\2.6\epan\irda.dll 0.0.6.0 The Wireshark developer community, http://www.wireshark.org/ irda dissector 131795780943468609 0x7ffac2950000 32768 C:\Program Files\Wireshark\plugins\2.6\codecs\l16mono.dll 0.1.0.0 The Wireshark developer community, http://www.wireshark.org/ l16mono dissector 131795780696778265 0x7ffac2b80000 40960 C:\Windows\System32\version.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Version Checking and File Installation Libraries 131795780698025500 0x7ffac32b0000 155648 C:\Program Files\Wireshark\libwsutil.dll 2.6.2 The Wireshark developer community, http://www.wireshark.org/ Wireshark utility library 131795780964290332 0x7ffac34e0000 1843200 C:\Windows\System32\urlmon.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширения OLE32 для Win32 131795780896734845 0x7ffac3730000 49152 C:\Program Files\Wireshark\plugins\2.6\epan\transum.dll 2.0.4.0 The Wireshark developer community, http://www.wireshark.org/ transum dissector 131795780962958391 0x7ffac3cb0000 2772992 C:\Windows\System32\iertutil.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служебная программа времени выполнения для Internet Explorer 131795780891504201 0x7ffac4000000 274432 C:\Windows\System32\policymanager.dll 10.0.14393.2035 (rs1_release_inmarket.180110-1910) Microsoft Corporation Policy Manager DLL 131795780896719593 0x7ffac4b60000 36864 C:\Program Files\Wireshark\plugins\2.6\epan\stats_tree.dll 0.0.1.0 The Wireshark developer community, http://www.wireshark.org/ stats_tree dissector 131795780893701095 0x7ffac4c50000 36864 C:\Program Files\Wireshark\plugins\2.6\wiretap\usbdump.dll 0.0.1.0 The Wireshark developer community, http://www.wireshark.org/ usbdump dissector 131795780891269455 0x7ffac5630000 339968 C:\Windows\System32\thumbcache.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Кэш эскизов Майкрософт 131795780965552062 0x7ffac6610000 40960 C:\Windows\System32\rasadhlp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Remote Access AutoDial Helper 131795780963571749 0x7ffac66a0000 86016 C:\Windows\System32\OnDemandConnRouteHelper.dll 10.0.14393.351 (rs1_release_inmarket.161014-1755) Microsoft Corporation On Demand Connctiond Route Helper 131795780963646684 0x7ffac69c0000 839680 C:\Windows\System32\winhttp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Службы HTTP Windows 131795780773109195 0x7ffac6aa0000 49152 C:\Program Files\Wireshark\imageformats\qwbmp.dll 5.9.5.0 The Qt Company Ltd. C++ Application Development Framework 131795780773083338 0x7ffac6ab0000 49152 C:\Program Files\Wireshark\imageformats\qtga.dll 5.9.5.0 The Qt Company Ltd. C++ Application Development Framework 131795780700311672 0x7ffac6c40000 2596864 C:\Windows\WinSxS\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.14393.953_none_42151e83c686086b\comctl32.dll 6.10 (rs1_release_inmarket.170303-1614) Microsoft Corporation Библиотека элементов управления взаимодействия с пользователем 131795780700270884 0x7ffac76e0000 90112 C:\Windows\System32\vcruntime140.dll 14.12.25810.0 built by: VCTOOLSREL Microsoft Corporation Microsoft® C Runtime Library 131795780773051219 0x7ffac7710000 49152 C:\Program Files\Wireshark\imageformats\qsvg.dll 5.9.5.0 The Qt Company Ltd. C++ Application Development Framework 131795780773027062 0x7ffac7c70000 53248 C:\Program Files\Wireshark\imageformats\qico.dll 5.9.5.0 The Qt Company Ltd. C++ Application Development Framework 131795780773014999 0x7ffac7cc0000 61440 C:\Program Files\Wireshark\imageformats\qicns.dll 5.9.5.0 The Qt Company Ltd. C++ Application Development Framework 131795780773002354 0x7ffac7e80000 53248 C:\Program Files\Wireshark\imageformats\qgif.dll 5.9.5.0 The Qt Company Ltd. C++ Application Development Framework 131795780968266724 0x7ffac83d0000 106496 C:\Windows\System32\dhcpcsvc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служба DHCP-клиента 131795780968255503 0x7ffac83f0000 90112 C:\Windows\System32\dhcpcsvc6.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиент DHCPv6 131795780966275544 0x7ffac8420000 434176 C:\Windows\System32\FWPUCLNT.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API пользовательского режима FWP/IPsec 131795780892525330 0x7ffac84f0000 299008 C:\Windows\System32\DataExchange.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation Data exchange 131795780963686201 0x7ffac8810000 45056 C:\Windows\System32\winnsi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Network Store Information RPC interface 131795780892534590 0x7ffac88a0000 2842624 C:\Windows\System32\d3d11.dll 10.0.14393.953 (rs1_release_inmarket.170303-1614) Microsoft Corporation Direct3D 11 Runtime 131795781117718740 0x7ffac9790000 98304 C:\Windows\System32\nlaapi.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Network Location Awareness 2 131795780698877286 0x7ffac97e0000 36864 C:\Windows\System32\wsock32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Socket 32-Bit DLL 131795780891204535 0x7ffac9f50000 1736704 C:\Windows\System32\WindowsCodecs.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Microsoft Windows Codecs Library 131795780696645603 0x7ffaca540000 53248 C:\Program Files\Wireshark\libwscodecs.dll 2.6.2 The Wireshark developer community, http://www.wireshark.org/ Wireshark codecs library 131795780700298298 0x7ffaca5e0000 155648 C:\Windows\System32\dwmapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Интерфейс API диспетчера окон рабочего стола (Майкрософт) 131795780892543743 0x7ffaca770000 1380352 C:\Windows\System32\dcomp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft DirectComposition Library 131795780766486586 0x7ffacab20000 102400 C:\Windows\System32\usp10.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Uniscribe Unicode script processor 131795780704258643 0x7ffacab40000 176128 C:\Windows\System32\winmmbase.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base Multimedia Extension API DLL 131795780702045466 0x7ffacaba0000 143360 C:\Windows\System32\winmm.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation MCI API DLL 131795780946467813 0x7ffacadf0000 499712 C:\Windows\System32\apphelp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиентская библиотека совместимости приложений 131795780696789076 0x7ffacaf00000 610304 C:\Windows\System32\uxtheme.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека тем UxTheme (Microsoft) 131795780891516231 0x7ffacb140000 593920 C:\Windows\System32\msvcp110_win.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Microsoft® STL110 C++ Runtime Library 131795780892568770 0x7ffacb1e0000 1163264 C:\Windows\System32\twinapi.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation twinapi.appcore 131795780892552823 0x7ffacb780000 651264 C:\Windows\System32\dxgi.dll 10.0.14393.953 (rs1_release_inmarket.170303-1614) Microsoft Corporation DirectX Graphics Infrastructure 131795780966945740 0x7ffacbaf0000 495616 C:\Windows\System32\schannel.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик безопасности TLS/SSL 131795780735395573 0x7ffacbbb0000 208896 C:\Windows\System32\rsaenh.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Enhanced Cryptographic Provider 131795780967734879 0x7ffacbbf0000 40960 C:\Windows\System32\dpapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Data Protection API 131795780699490686 0x7ffacbd30000 229376 C:\Windows\System32\IPHLPAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API вспомогательного приложения IP 131795780703368899 0x7ffacbd70000 659456 C:\Windows\System32\dnsapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Динамическая библиотека API DNS-клиента 131795780963669913 0x7ffacbfb0000 376832 C:\Windows\System32\mswsock.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширение поставщика службы API Microsoft Windows Sockets 2.0 131795780735383654 0x7ffacc150000 94208 C:\Windows\System32\cryptsp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Cryptographic Service Provider API 131795780725077080 0x7ffacc170000 45056 C:\Windows\System32\cryptbase.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base cryptographic API DLL 131795780735352973 0x7ffacc1f0000 241664 C:\Windows\System32\ntasn1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft ASN.1 API 131795780735341669 0x7ffacc230000 155648 C:\Windows\System32\ncrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Маршрутизатор Windows NCrypt 131795780963187802 0x7ffacc350000 180224 C:\Windows\System32\sspicli.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Security Support Provider Interface 131795780703358385 0x7ffacc620000 176128 C:\Windows\System32\bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795780696324267 0x7ffacc6e0000 61440 C:\Windows\System32\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795780696320774 0x7ffacc6f0000 311296 C:\Windows\System32\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795780696326027 0x7ffacc740000 81920 C:\Windows\System32\profapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Profile Basic API 131795780700094061 0x7ffacc760000 65536 C:\Windows\System32\msasn1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ASN.1 Runtime APIs 131795780696281753 0x7ffacc8f0000 1003520 C:\Windows\System32\ucrtbase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795780696314418 0x7ffacc9f0000 434176 C:\Windows\System32\bcryptprimitives.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Cryptographic Primitives Library 131795780696011047 0x7ffacca60000 122880 C:\Windows\System32\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795780967736295 0x7ffacca80000 348160 C:\Windows\System32\wintrust.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation Microsoft Trust Verification APIs 131795780696325096 0x7ffaccae0000 692224 C:\Windows\System32\SHCore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795780696319762 0x7ffaccb90000 7180288 C:\Windows\System32\windows.storage.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API хранения Microsoft WinRT 131795780696000095 0x7ffacd270000 2215936 C:\Windows\System32\KernelBase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795780700093105 0x7ffacd490000 1871872 C:\Windows\System32\crypt32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API32 криптографии 131795780700405929 0x7ffacd710000 638976 C:\Windows\System32\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795780696318427 0x7ffacd7b0000 270336 C:\Windows\System32\cfgmgr32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Configuration Manager DLL 131795780719380090 0x7ffacd800000 32768 C:\Windows\System32\psapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Process Status Helper 131795780696316518 0x7ffacd810000 22056960 C:\Windows\System32\shell32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Общая библиотека оболочки Windows 131795780700405056 0x7ffaced20000 782336 C:\Windows\System32\oleaut32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795780696313332 0x7ffacee50000 1183744 C:\Windows\System32\rpcrt4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795780703813608 0x7ffacef80000 32768 C:\Windows\System32\nsi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation NSI User-mode interface DLL 131795780696317482 0x7ffacef90000 647168 C:\Windows\System32\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795780891250440 0x7ffacf030000 651264 C:\Windows\System32\clbcatq.dll 2001.12.10941.16384 (rs1_release.160715-1616) Microsoft Corporation COM+ Configuration Catalog 131795780695999112 0x7ffacf0d0000 704512 C:\Windows\System32\kernel32.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795780892432004 0x7ffacf1e0000 1417216 C:\Windows\System32\msctf.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Серверная библиотека MSCTF 131795780696011842 0x7ffacf770000 212992 C:\Windows\System32\gdi32.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation GDI Client DLL 131795780696829366 0x7ffacf820000 434176 C:\Windows\System32\ws2_32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation 32-разрядная библиотека Windows Socket 2.0 131795780722304611 0x7ffacf890000 188416 C:\Windows\System32\imm32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Multi-User Windows IMM32 API Client DLL 131795780696010125 0x7ffacf8c0000 1462272 C:\Windows\System32\user32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795780696013618 0x7ffacfa30000 1024000 C:\Windows\System32\comdlg32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека общих диалоговых окон 131795780696312465 0x7ffacfb30000 2916352 C:\Windows\System32\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795780696321680 0x7ffacfe20000 663552 C:\Windows\System32\advapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795780696311589 0x7ffad0070000 1277952 C:\Windows\System32\ole32.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft OLE для Windows 131795780696323259 0x7ffad01b0000 335872 C:\Windows\System32\shlwapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека небольших программ оболочки 131795780696315318 0x7ffad0210000 364544 C:\Windows\System32\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795780695991736 0x7ffad0270000 1908736 C:\Windows\System32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 145 6448 580 4 00000000:000003e7 131795780773898509 131795782061618939 0 1 Обязательная метка\Обязательный уровень системы NT AUTHORITY\СИСТЕМА svchost.exe C:\Windows\System32\svchost.exe C:\Windows\System32\svchost.exe -k WerSvcGroup Microsoft Corporation 10.0.14393.0 (rs1_release.160715-1616) Хост-процесс для служб Windows 131795780773932265 0x7ff718c20000 57344 C:\Windows\System32\svchost.exe 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Хост-процесс для служб Windows 131795780777692104 0x7ffabafc0000 700416 C:\Windows\System32\wer.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека сообщений об ошибках Windows 131795780777685690 0x7ffabdfa0000 393216 C:\Windows\System32\Faultrep.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека отчетов о сбоях в пользовательском режиме Windows 131795780777697839 0x7ffabe110000 241664 C:\Windows\System32\weretw.dll 10.0.14393.447 (rs1_release_inmarket.161102-0100) Microsoft Corporation WERETW.DLL 131795780777657500 0x7ffac1940000 180224 C:\Windows\System32\wersvc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служба регистрации ошибок Windows 131795780777719777 0x7ffac8dc0000 167936 C:\Windows\System32\dbgcore.dll 10.0.14321.1024 (debuggers(dbg).160715-1616) Microsoft Windows Core Debugging Helpers 131795780777705622 0x7ffac8df0000 1646592 C:\Windows\System32\dbghelp.dll 10.0.14321.1024 (rs1_release.160715-1616) Microsoft Windows Image Helper 131795780777679409 0x7ffacb420000 204800 C:\Windows\System32\ntmarta.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик Windows NT MARTA 131795780778138106 0x7ffacb920000 81920 C:\Windows\System32\wldp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Политика блокировки Windows 131795780781946447 0x7ffacbe40000 126976 C:\Windows\System32\userenv.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Userenv 131795780777672965 0x7ffacc150000 94208 C:\Windows\System32\cryptsp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Cryptographic Service Provider API 131795780781977480 0x7ffacc350000 180224 C:\Windows\System32\sspicli.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Security Support Provider Interface 131795780777713476 0x7ffacc620000 176128 C:\Windows\System32\bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795780777659234 0x7ffacc740000 81920 C:\Windows\System32\profapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Profile Basic API 131795780778139963 0x7ffacc760000 65536 C:\Windows\System32\msasn1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ASN.1 Runtime APIs 131795780777601321 0x7ffacc8f0000 1003520 C:\Windows\System32\ucrtbase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795780777665390 0x7ffacc9f0000 434176 C:\Windows\System32\bcryptprimitives.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Cryptographic Primitives Library 131795780778140821 0x7ffacca80000 348160 C:\Windows\System32\wintrust.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation Microsoft Trust Verification APIs 131795780777686685 0x7ffaccae0000 692224 C:\Windows\System32\SHCore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795780777591206 0x7ffacd270000 2215936 C:\Windows\System32\KernelBase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795780778139073 0x7ffacd490000 1871872 C:\Windows\System32\crypt32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API32 криптографии 131795780777699394 0x7ffacd710000 638976 C:\Windows\System32\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795780777698612 0x7ffaced20000 782336 C:\Windows\System32\oleaut32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795780777599983 0x7ffacee50000 1183744 C:\Windows\System32\rpcrt4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795780777658345 0x7ffacef90000 647168 C:\Windows\System32\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795780777590325 0x7ffacf0d0000 704512 C:\Windows\System32\kernel32.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795780777664133 0x7ffacfb30000 2916352 C:\Windows\System32\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795780777666249 0x7ffacfe20000 663552 C:\Windows\System32\advapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795780777599157 0x7ffad0210000 364544 C:\Windows\System32\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795780773932520 0x7ffad0270000 1908736 C:\Windows\System32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 152 2432 12892 144 00000000:0031f1da 131795780956883979 131795781110076440 0 1 Обязательная метка\Средний обязательный уровень WIN-0UOTFKKVN1S\User dumpcap.exe C:\Program Files\Wireshark\dumpcap.exe "C:\Program Files\Wireshark\dumpcap.exe" -S -Z 12892.dummy The Wireshark developer community 2.6.2 Dumpcap 131795780958439058 0xa80000 90112 C:\Program Files\Wireshark\libwinpthread-1.dll 1, 0, 0, 0 MingW-W64 Project. All rights reserved. POSIX WinThreads for Windows 131795780958377059 0x61cc0000 151552 C:\Program Files\Wireshark\libintl-8.dll 0.18.1 Free Software Foundation LGPLed libintl for Windows NT/2000/XP/Vista/7 and Windows 95/98/ME 131795780958399096 0x646c0000 155648 C:\Program Files\Wireshark\libgpg-error6-0.dll 131795780958347475 0x64840000 1220608 C:\Program Files\Wireshark\libgnutls-30.dll 131795780958339828 0x653c0000 1089536 C:\Program Files\Wireshark\libgcrypt-20.dll 131795780958446503 0x65f00000 114688 C:\Program Files\Wireshark\libtasn1-6.dll 131795780958414603 0x66f00000 233472 C:\Program Files\Wireshark\libhogweed-4-2.dll 131795780958277889 0x685c0000 1265664 C:\Program Files\Wireshark\libglib-2.0-0.dll 2.42.0.0 The GLib developer community GLib 131795780958431545 0x68ec0000 389120 C:\Program Files\Wireshark\libp11-kit-0.dll 131795780958424372 0x69c80000 253952 C:\Program Files\Wireshark\libnettle-6-2.dll 131795780958407305 0x6acc0000 483328 C:\Program Files\Wireshark\libgmp-10.dll 131795780958485579 0x6b740000 73728 C:\Program Files\Wireshark\libffi-6.dll 131795780958289420 0x6dd00000 69632 C:\Program Files\Wireshark\libgmodule-2.0-0.dll 2.42.0.0 The GLib developer community GModule 131795780958713554 0x180000000 413696 C:\Windows\System32\wpcap.dll 4.1.0.2980 Riverbed Technology, Inc. wpcap.dll Dynamic Link Library - based on libpcap 1.0rel0b branch (20091008) 131795780958729518 0x2a56ecc0000 126976 C:\Windows\System32\Packet.dll 4.1.0.2980 Riverbed Technology, Inc. packet.dll (Vista) Dynamic Link Library 131795780956897031 0x7ff79b530000 438272 C:\Program Files\Wireshark\dumpcap.exe 2.6.2 The Wireshark developer community Dumpcap 131795780958453942 0x7ffac1c90000 155648 C:\Program Files\Wireshark\zlib1.dll 1.2.11 zlib data compression library 131795780958743457 0x7ffac2b80000 40960 C:\Windows\System32\version.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Version Checking and File Installation Libraries 131795780958247042 0x7ffac32b0000 155648 C:\Program Files\Wireshark\libwsutil.dll 2.6.2 The Wireshark developer community, http://www.wireshark.org/ Wireshark utility library 131795780958327006 0x7ffac76e0000 90112 C:\Windows\System32\vcruntime140.dll 14.12.25810.0 built by: VCTOOLSREL Microsoft Corporation Microsoft® C Runtime Library 131795780959264331 0x7ffac83d0000 106496 C:\Windows\System32\dhcpcsvc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служба DHCP-клиента 131795780958822800 0x7ffac83f0000 90112 C:\Windows\System32\dhcpcsvc6.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиент DHCPv6 131795780958303451 0x7ffac97e0000 36864 C:\Windows\System32\wsock32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Socket 32-Bit DLL 131795780958474513 0x7ffacab40000 176128 C:\Windows\System32\winmmbase.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base Multimedia Extension API DLL 131795780958389609 0x7ffacaba0000 143360 C:\Windows\System32\winmm.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation MCI API DLL 131795780958646709 0x7ffacbbb0000 208896 C:\Windows\System32\rsaenh.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Enhanced Cryptographic Provider 131795780958314117 0x7ffacbd30000 229376 C:\Windows\System32\IPHLPAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API вспомогательного приложения IP 131795780958635383 0x7ffacc150000 94208 C:\Windows\System32\cryptsp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Cryptographic Service Provider API 131795780958674359 0x7ffacc170000 45056 C:\Windows\System32\cryptbase.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base cryptographic API DLL 131795780958618023 0x7ffacc1f0000 241664 C:\Windows\System32\ntasn1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft ASN.1 API 131795780958596049 0x7ffacc230000 155648 C:\Windows\System32\ncrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Маршрутизатор Windows NCrypt 131795780958607187 0x7ffacc620000 176128 C:\Windows\System32\bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795780958263131 0x7ffacc6e0000 61440 C:\Windows\System32\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795780958255689 0x7ffacc6f0000 311296 C:\Windows\System32\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795780958265389 0x7ffacc740000 81920 C:\Windows\System32\profapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Profile Basic API 131795780958349084 0x7ffacc760000 65536 C:\Windows\System32\msasn1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ASN.1 Runtime APIs 131795780958259529 0x7ffacc770000 1572864 C:\Windows\System32\gdi32full.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation GDI Client DLL 131795780958230643 0x7ffacc8f0000 1003520 C:\Windows\System32\ucrtbase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795780958254658 0x7ffacc9f0000 434176 C:\Windows\System32\bcryptprimitives.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Cryptographic Primitives Library 131795780958262008 0x7ffacca60000 122880 C:\Windows\System32\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795780958264244 0x7ffaccae0000 692224 C:\Windows\System32\SHCore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795780958252245 0x7ffaccb90000 7180288 C:\Windows\System32\windows.storage.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API хранения Microsoft WinRT 131795780956903750 0x7ffacd270000 2215936 C:\Windows\System32\KernelBase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795780958348162 0x7ffacd490000 1871872 C:\Windows\System32\crypt32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API32 криптографии 131795780958250835 0x7ffacd7b0000 270336 C:\Windows\System32\cfgmgr32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Configuration Manager DLL 131795780958249546 0x7ffacd810000 22056960 C:\Windows\System32\shell32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Общая библиотека оболочки Windows 131795780958228230 0x7ffacee50000 1183744 C:\Windows\System32\rpcrt4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795780958812040 0x7ffacef80000 32768 C:\Windows\System32\nsi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation NSI User-mode interface DLL 131795780958226523 0x7ffacef90000 647168 C:\Windows\System32\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795780956902794 0x7ffacf0d0000 704512 C:\Windows\System32\kernel32.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795780958258379 0x7ffacf770000 212992 C:\Windows\System32\gdi32.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation GDI Client DLL 131795780958248189 0x7ffacf820000 434176 C:\Windows\System32\ws2_32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation 32-разрядная библиотека Windows Socket 2.0 131795780958549690 0x7ffacf890000 188416 C:\Windows\System32\imm32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Multi-User Windows IMM32 API Client DLL 131795780958260931 0x7ffacf8c0000 1462272 C:\Windows\System32\user32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795780958253539 0x7ffacfb30000 2916352 C:\Windows\System32\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795780958224678 0x7ffacfe20000 663552 C:\Windows\System32\advapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795780958278826 0x7ffad0070000 1277952 C:\Windows\System32\ole32.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft OLE для Windows 131795780958257207 0x7ffad01b0000 335872 C:\Windows\System32\shlwapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека небольших программ оболочки 131795780958227462 0x7ffad0210000 364544 C:\Windows\System32\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795780956897313 0x7ffad0270000 1908736 C:\Windows\System32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 153 4460 2432 152 00000000:0031f1da 131795780957221117 131795781110129729 0 1 Обязательная метка\Средний обязательный уровень WIN-0UOTFKKVN1S\User Conhost.exe C:\Windows\System32\Conhost.exe \??\C:\Windows\system32\conhost.exe 0xffffffff -ForceV1 Microsoft Corporation 10.0.14393.0 (rs1_release.160715-1616) Console Window Host 131795780957224666 0x7ff768b40000 69632 C:\Windows\System32\conhost.exe 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Console Window Host 131795780957254960 0x7ffabe520000 368640 C:\Windows\System32\ConhostV2.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Хост окна консоли 131795780958156057 0x7ffac6c40000 2596864 C:\Windows\WinSxS\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.14393.953_none_42151e83c686086b\comctl32.dll 6.10 (rs1_release_inmarket.170303-1614) Microsoft Corporation Библиотека элементов управления взаимодействия с пользователем 131795780957284286 0x7ffaca340000 1593344 C:\Windows\System32\propsys.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Система страниц свойств (Майкрософт) 131795780958109132 0x7ffaca5e0000 155648 C:\Windows\System32\dwmapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Интерфейс API диспетчера окон рабочего стола (Майкрософт) 131795780957764987 0x7ffacaf00000 610304 C:\Windows\System32\uxtheme.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека тем UxTheme (Microsoft) 131795780957662947 0x7ffacc6e0000 61440 C:\Windows\System32\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795780957660016 0x7ffacc6f0000 311296 C:\Windows\System32\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795780957663767 0x7ffacc740000 81920 C:\Windows\System32\profapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Profile Basic API 131795780957266937 0x7ffacc770000 1572864 C:\Windows\System32\gdi32full.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation GDI Client DLL 131795780957263269 0x7ffacc8f0000 1003520 C:\Windows\System32\ucrtbase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795780957264898 0x7ffacc9f0000 434176 C:\Windows\System32\bcryptprimitives.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Cryptographic Primitives Library 131795780957268718 0x7ffacca60000 122880 C:\Windows\System32\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795780957285965 0x7ffaccae0000 692224 C:\Windows\System32\SHCore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795780957659076 0x7ffaccb90000 7180288 C:\Windows\System32\windows.storage.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API хранения Microsoft WinRT 131795780957231155 0x7ffacd270000 2215936 C:\Windows\System32\KernelBase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795780957270871 0x7ffacd710000 638976 C:\Windows\System32\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795780957656755 0x7ffacd7b0000 270336 C:\Windows\System32\cfgmgr32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Configuration Manager DLL 131795780957655580 0x7ffacd810000 22056960 C:\Windows\System32\shell32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Общая библиотека оболочки Windows 131795780957270220 0x7ffaced20000 782336 C:\Windows\System32\oleaut32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795780957263997 0x7ffacee50000 1183744 C:\Windows\System32\rpcrt4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795780957239575 0x7ffacef90000 647168 C:\Windows\System32\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795780957230291 0x7ffacf0d0000 704512 C:\Windows\System32\kernel32.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795780958089236 0x7ffacf1e0000 1417216 C:\Windows\System32\msctf.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Серверная библиотека MSCTF 131795780957265615 0x7ffacf770000 212992 C:\Windows\System32\gdi32.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation GDI Client DLL 131795780957269477 0x7ffacf890000 188416 C:\Windows\System32\imm32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Multi-User Windows IMM32 API Client DLL 131795780957268031 0x7ffacf8c0000 1462272 C:\Windows\System32\user32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795780957262479 0x7ffacfb30000 2916352 C:\Windows\System32\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795780957660847 0x7ffacfe20000 663552 C:\Windows\System32\advapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795780957661778 0x7ffad01b0000 335872 C:\Windows\System32\shlwapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека небольших программ оболочки 131795780957285128 0x7ffad0210000 364544 C:\Windows\System32\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795780957224946 0x7ffad0270000 1908736 C:\Windows\System32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 154 10368 12892 144 00000000:0031f1da 131795781110701520 0 0 1 Обязательная метка\Средний обязательный уровень WIN-0UOTFKKVN1S\User dumpcap.exe C:\Program Files\Wireshark\dumpcap.exe "C:\Program Files\Wireshark\dumpcap.exe" -n -i \Device\NPF_{8742EB38-E176-4D94-AB83-DB4440CD90E6} -y EN10MB -Z 12892 The Wireshark developer community 2.6.2 Dumpcap 131795781112729961 0xe30000 90112 C:\Program Files\Wireshark\libwinpthread-1.dll 1, 0, 0, 0 MingW-W64 Project. All rights reserved. POSIX WinThreads for Windows 131795781112668516 0x61cc0000 151552 C:\Program Files\Wireshark\libintl-8.dll 0.18.1 Free Software Foundation LGPLed libintl for Windows NT/2000/XP/Vista/7 and Windows 95/98/ME 131795781112689838 0x646c0000 155648 C:\Program Files\Wireshark\libgpg-error6-0.dll 131795781112636826 0x64840000 1220608 C:\Program Files\Wireshark\libgnutls-30.dll 131795781112629190 0x653c0000 1089536 C:\Program Files\Wireshark\libgcrypt-20.dll 131795781112737406 0x65f00000 114688 C:\Program Files\Wireshark\libtasn1-6.dll 131795781112705672 0x66f00000 233472 C:\Program Files\Wireshark\libhogweed-4-2.dll 131795781112573973 0x685c0000 1265664 C:\Program Files\Wireshark\libglib-2.0-0.dll 2.42.0.0 The GLib developer community GLib 131795781112722622 0x68ec0000 389120 C:\Program Files\Wireshark\libp11-kit-0.dll 131795781112715396 0x69c80000 253952 C:\Program Files\Wireshark\libnettle-6-2.dll 131795781112698255 0x6acc0000 483328 C:\Program Files\Wireshark\libgmp-10.dll 131795781112775160 0x6b740000 73728 C:\Program Files\Wireshark\libffi-6.dll 131795781112582576 0x6dd00000 69632 C:\Program Files\Wireshark\libgmodule-2.0-0.dll 2.42.0.0 The GLib developer community GModule 131795781112962306 0x180000000 413696 C:\Windows\System32\wpcap.dll 4.1.0.2980 Riverbed Technology, Inc. wpcap.dll Dynamic Link Library - based on libpcap 1.0rel0b branch (20091008) 131795781112975613 0x2203d070000 126976 C:\Windows\System32\Packet.dll 4.1.0.2980 Riverbed Technology, Inc. packet.dll (Vista) Dynamic Link Library 131795781110777700 0x7ff79b530000 438272 C:\Program Files\Wireshark\dumpcap.exe 2.6.2 The Wireshark developer community Dumpcap 131795781112745027 0x7ffac1c90000 155648 C:\Program Files\Wireshark\zlib1.dll 1.2.11 zlib data compression library 131795781112991873 0x7ffac2b80000 40960 C:\Windows\System32\version.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Version Checking and File Installation Libraries 131795781112551689 0x7ffac32b0000 155648 C:\Program Files\Wireshark\libwsutil.dll 2.6.2 The Wireshark developer community, http://www.wireshark.org/ Wireshark utility library 131795781112616429 0x7ffac76e0000 90112 C:\Windows\System32\vcruntime140.dll 14.12.25810.0 built by: VCTOOLSREL Microsoft Corporation Microsoft® C Runtime Library 131795781113081556 0x7ffac83d0000 106496 C:\Windows\System32\dhcpcsvc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служба DHCP-клиента 131795781113068402 0x7ffac83f0000 90112 C:\Windows\System32\dhcpcsvc6.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиент DHCPv6 131795781112593287 0x7ffac97e0000 36864 C:\Windows\System32\wsock32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Socket 32-Bit DLL 131795781112764136 0x7ffacab40000 176128 C:\Windows\System32\winmmbase.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base Multimedia Extension API DLL 131795781112680590 0x7ffacaba0000 143360 C:\Windows\System32\winmm.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation MCI API DLL 131795781112901553 0x7ffacbbb0000 208896 C:\Windows\System32\rsaenh.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Enhanced Cryptographic Provider 131795781112603842 0x7ffacbd30000 229376 C:\Windows\System32\IPHLPAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API вспомогательного приложения IP 131795781112889933 0x7ffacc150000 94208 C:\Windows\System32\cryptsp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Cryptographic Service Provider API 131795781112922216 0x7ffacc170000 45056 C:\Windows\System32\cryptbase.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base cryptographic API DLL 131795781112873689 0x7ffacc1f0000 241664 C:\Windows\System32\ntasn1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft ASN.1 API 131795781112851456 0x7ffacc230000 155648 C:\Windows\System32\ncrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Маршрутизатор Windows NCrypt 131795781112862535 0x7ffacc620000 176128 C:\Windows\System32\bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795781112564185 0x7ffacc6e0000 61440 C:\Windows\System32\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795781112558680 0x7ffacc6f0000 311296 C:\Windows\System32\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795781112565891 0x7ffacc740000 81920 C:\Windows\System32\profapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Profile Basic API 131795781112638400 0x7ffacc760000 65536 C:\Windows\System32\msasn1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ASN.1 Runtime APIs 131795781112561378 0x7ffacc770000 1572864 C:\Windows\System32\gdi32full.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation GDI Client DLL 131795781112543433 0x7ffacc8f0000 1003520 C:\Windows\System32\ucrtbase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795781112557787 0x7ffacc9f0000 434176 C:\Windows\System32\bcryptprimitives.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Cryptographic Primitives Library 131795781112563121 0x7ffacca60000 122880 C:\Windows\System32\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795781112564994 0x7ffaccae0000 692224 C:\Windows\System32\SHCore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795781112555945 0x7ffaccb90000 7180288 C:\Windows\System32\windows.storage.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API хранения Microsoft WinRT 131795781111306780 0x7ffacd270000 2215936 C:\Windows\System32\KernelBase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795781112637496 0x7ffacd490000 1871872 C:\Windows\System32\crypt32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API32 криптографии 131795781112554892 0x7ffacd7b0000 270336 C:\Windows\System32\cfgmgr32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Configuration Manager DLL 131795781112553795 0x7ffacd810000 22056960 C:\Windows\System32\shell32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Общая библиотека оболочки Windows 131795781112541505 0x7ffacee50000 1183744 C:\Windows\System32\rpcrt4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795781113056743 0x7ffacef80000 32768 C:\Windows\System32\nsi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation NSI User-mode interface DLL 131795781112539956 0x7ffacef90000 647168 C:\Windows\System32\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795781111305815 0x7ffacf0d0000 704512 C:\Windows\System32\kernel32.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795781112560555 0x7ffacf770000 212992 C:\Windows\System32\gdi32.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation GDI Client DLL 131795781112552568 0x7ffacf820000 434176 C:\Windows\System32\ws2_32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation 32-разрядная библиотека Windows Socket 2.0 131795781112797169 0x7ffacf890000 188416 C:\Windows\System32\imm32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Multi-User Windows IMM32 API Client DLL 131795781112562317 0x7ffacf8c0000 1462272 C:\Windows\System32\user32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795781112556862 0x7ffacfb30000 2916352 C:\Windows\System32\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795781112538759 0x7ffacfe20000 663552 C:\Windows\System32\advapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795781112574716 0x7ffad0070000 1277952 C:\Windows\System32\ole32.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft OLE для Windows 131795781112559630 0x7ffad01b0000 335872 C:\Windows\System32\shlwapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека небольших программ оболочки 131795781112540782 0x7ffad0210000 364544 C:\Windows\System32\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795781110778043 0x7ffad0270000 1908736 C:\Windows\System32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 155 10656 10368 154 00000000:0031f1da 131795781111864203 0 0 1 Обязательная метка\Средний обязательный уровень WIN-0UOTFKKVN1S\User Conhost.exe C:\Windows\System32\Conhost.exe \??\C:\Windows\system32\conhost.exe 0xffffffff -ForceV1 Microsoft Corporation 10.0.14393.0 (rs1_release.160715-1616) Console Window Host 131795781111913743 0x7ff768b40000 69632 C:\Windows\System32\conhost.exe 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Console Window Host 131795781111943590 0x7ffac16b0000 368640 C:\Windows\System32\ConhostV2.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Хост окна консоли 131795781112487631 0x7ffac6c40000 2596864 C:\Windows\WinSxS\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.14393.953_none_42151e83c686086b\comctl32.dll 6.10 (rs1_release_inmarket.170303-1614) Microsoft Corporation Библиотека элементов управления взаимодействия с пользователем 131795781111973094 0x7ffaca340000 1593344 C:\Windows\System32\propsys.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Система страниц свойств (Майкрософт) 131795781112447250 0x7ffaca5e0000 155648 C:\Windows\System32\dwmapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Интерфейс API диспетчера окон рабочего стола (Майкрософт) 131795781112288506 0x7ffacaf00000 610304 C:\Windows\System32\uxtheme.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека тем UxTheme (Microsoft) 131795781112268292 0x7ffacc6e0000 61440 C:\Windows\System32\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795781112265698 0x7ffacc6f0000 311296 C:\Windows\System32\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795781112269042 0x7ffacc740000 81920 C:\Windows\System32\profapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Profile Basic API 131795781111955891 0x7ffacc770000 1572864 C:\Windows\System32\gdi32full.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation GDI Client DLL 131795781111952093 0x7ffacc8f0000 1003520 C:\Windows\System32\ucrtbase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795781111953761 0x7ffacc9f0000 434176 C:\Windows\System32\bcryptprimitives.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Cryptographic Primitives Library 131795781111957462 0x7ffacca60000 122880 C:\Windows\System32\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795781111974737 0x7ffaccae0000 692224 C:\Windows\System32\SHCore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795781112264787 0x7ffaccb90000 7180288 C:\Windows\System32\windows.storage.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API хранения Microsoft WinRT 131795781111919763 0x7ffacd270000 2215936 C:\Windows\System32\KernelBase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795781111959779 0x7ffacd710000 638976 C:\Windows\System32\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795781112263740 0x7ffacd7b0000 270336 C:\Windows\System32\cfgmgr32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Configuration Manager DLL 131795781112262565 0x7ffacd810000 22056960 C:\Windows\System32\shell32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Общая библиотека оболочки Windows 131795781111959111 0x7ffaced20000 782336 C:\Windows\System32\oleaut32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795781111952833 0x7ffacee50000 1183744 C:\Windows\System32\rpcrt4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795781111927637 0x7ffacef90000 647168 C:\Windows\System32\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795781111918688 0x7ffacf0d0000 704512 C:\Windows\System32\kernel32.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795781112429009 0x7ffacf1e0000 1417216 C:\Windows\System32\msctf.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Серверная библиотека MSCTF 131795781111954501 0x7ffacf770000 212992 C:\Windows\System32\gdi32.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation GDI Client DLL 131795781111958338 0x7ffacf890000 188416 C:\Windows\System32\imm32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Multi-User Windows IMM32 API Client DLL 131795781111956778 0x7ffacf8c0000 1462272 C:\Windows\System32\user32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795781111951234 0x7ffacfb30000 2916352 C:\Windows\System32\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795781112266518 0x7ffacfe20000 663552 C:\Windows\System32\advapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795781112267424 0x7ffad01b0000 335872 C:\Windows\System32\shlwapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека небольших программ оболочки 131795781111973936 0x7ffad0210000 364544 C:\Windows\System32\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795781111913976 0x7ffad0270000 1908736 C:\Windows\System32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 156 6544 664 6 00000000:0031f1da 131795781375514663 131795781448145922 0 1 Обязательная метка\Низкий обязательный уровень WIN-0UOTFKKVN1S\User backgroundTaskHost.exe C:\Windows\system32\backgroundTaskHost.exe "C:\Windows\system32\backgroundTaskHost.exe" -ServerName:App.AppXmtcan0h2tfbfy7k9kn8hbxb6dmzz1zh0.mca Microsoft Corporation 10.0.14393.0 (rs1_release.160715-1616) Background Task Host 131795781375956049 0x7ff6c9470000 28672 C:\Windows\System32\backgroundTaskHost.exe 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Background Task Host 131795781420231974 0x7ffaade60000 2936832 C:\Windows\System32\CertEnroll.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиент регистрации служб сертификатов Active Directory Microsoft® 131795781391802474 0x7ffaafa00000 2260992 C:\Windows\SystemApps\Microsoft.Windows.ContentDeliveryManager_cw5n1h2txyewy\ContentManagementSDK.dll 131795781378586098 0x7ffab0280000 3424256 C:\Windows\SystemApps\Microsoft.Windows.ContentDeliveryManager_cw5n1h2txyewy\ContentDeliveryManager.Background.dll 131795781424848611 0x7ffab33d0000 258048 C:\Windows\System32\mlang.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL многоязыковой поддержки 131795781409116652 0x7ffab8f60000 397312 C:\Windows\System32\CryptoWinRT.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Crypto WinRT Library 131795781404777029 0x7ffab9c00000 1343488 C:\Windows\System32\Windows.Web.Http.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL Windows.Web.Http 131795781414822130 0x7ffabaab0000 94208 C:\Windows\System32\profext.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation profext 131795781421244159 0x7ffababf0000 798720 C:\Windows\System32\certca.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ЦС служб сертификации Microsoft® Active Directory 131795781413672423 0x7ffabbd10000 65536 C:\Windows\System32\tokenbinding.dll 10.0.14393.1593 (rs1_release.170731-1934) Microsoft Corporation Token Binding Protocol 131795781408056391 0x7ffabc530000 241664 C:\Windows\System32\Windows.Networking.HostName.dll 10.0.14393.953 (rs1_release_inmarket.170303-1614) Microsoft Corporation Windows.Networking.HostName DLL 131795781411322544 0x7ffabca50000 819200 C:\Windows\System32\Windows.Security.Authentication.Web.Core.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Token Broker WinRT API 131795781391285668 0x7ffabd4a0000 1613824 C:\Windows\System32\Windows.Globalization.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Globalization 131795781380106961 0x7ffabea90000 135168 C:\Windows\System32\Windows.ApplicationModel.Background.SystemEventsBroker.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Background System Events Broker API Server 131795781379627609 0x7ffabeac0000 335872 C:\Windows\System32\Windows.Storage.ApplicationData.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Application Data API Server 131795781404355812 0x7ffabeb20000 385024 C:\Windows\System32\Windows.ApplicationModel.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows ApplicationModel API Server 131795781419249846 0x7ffabf1d0000 192512 C:\Windows\System32\cryptnet.dll 10.0.14393.2035 (rs1_release_inmarket.180110-1910) Microsoft Corporation Crypto Network Related API 131795781409496119 0x7ffabf2d0000 344064 C:\Windows\System32\ncryptprov.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft KSP 131795781413547947 0x7ffabf5d0000 2924544 C:\Windows\System32\wininet.dll 11.00.14393.447 (rs1_release_inmarket.161102-0100) Microsoft Corporation Расширения Интернета для Win32 131795781402547126 0x7ffabfd80000 86016 C:\Windows\System32\threadpoolwinrt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows WinRT Threadpool 131795781418873067 0x7ffabff60000 135168 C:\Windows\System32\ncryptsslp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft SChannel Provider 131795781378876674 0x7ffac01e0000 397312 C:\Windows\System32\wincorlib.dll 10.0.14393.576 (rs1_release_inmarket.161208-2252) Microsoft Corporation Microsoft Windows ® WinRT core library 131795781407871528 0x7ffac0910000 724992 C:\Windows\System32\Windows.Networking.Connectivity.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Networking Connectivity Runtime DLL 131795781418862170 0x7ffac0ad0000 86016 C:\Windows\System32\mskeyprotect.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик защиты ключей (Майкрософт) 131795781376949774 0x7ffac0bf0000 3559424 C:\Windows\System32\actxprxy.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation ActiveX Interface Marshaling Library 131795781412867320 0x7ffac23c0000 331776 C:\Windows\System32\OneCoreCommonProxyStub.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation OneCore Common Proxy Stub 131795781415411030 0x7ffac34e0000 1843200 C:\Windows\System32\urlmon.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширения OLE32 для Win32 131795781389967180 0x7ffac3cb0000 2772992 C:\Windows\System32\iertutil.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служебная программа времени выполнения для Internet Explorer 131795781379015368 0x7ffac4000000 274432 C:\Windows\System32\policymanager.dll 10.0.14393.2035 (rs1_release_inmarket.180110-1910) Microsoft Corporation Policy Manager DLL 131795781389477287 0x7ffac5070000 798720 C:\Windows\System32\Windows.Web.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL веб-клиента 131795781415721817 0x7ffac6610000 40960 C:\Windows\System32\rasadhlp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Remote Access AutoDial Helper 131795781377895075 0x7ffac6620000 192512 C:\Windows\System32\biwinrt.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation Windows Background Broker Infrastructure 131795781414207784 0x7ffac66a0000 86016 C:\Windows\System32\OnDemandConnRouteHelper.dll 10.0.14393.351 (rs1_release_inmarket.161014-1755) Microsoft Corporation On Demand Connctiond Route Helper 131795781414325447 0x7ffac69c0000 839680 C:\Windows\System32\winhttp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Службы HTTP Windows 131795781376698975 0x7ffac6ac0000 835584 C:\Windows\System32\Windows.UI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Runtime UI Foundation DLL 131795781421254868 0x7ffac6b90000 53248 C:\Windows\System32\dsparse.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Active Directory Domain Services API 131795781376636667 0x7ffac7580000 1077248 C:\Windows\System32\MrmCoreR.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Windows MRM 131795781379055882 0x7ffac76a0000 159744 C:\Windows\System32\sppc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Software Licensing Client DLL 131795781378177060 0x7ffac7720000 1601536 C:\Windows\System32\OneCoreUAPCommonProxyStub.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation OneCoreUAP Common Proxy Stub 131795781378820936 0x7ffac7990000 155648 C:\Windows\System32\slc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Software Licensing Client DLL 131795781379867493 0x7ffac7d80000 49152 C:\Windows\System32\Windows.ApplicationModel.Background.TimeBroker.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Background Time Broker API Server 131795781415710619 0x7ffac8420000 434176 C:\Windows\System32\FWPUCLNT.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API пользовательского режима FWP/IPsec 131795781415160649 0x7ffac8810000 45056 C:\Windows\System32\winnsi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Network Store Information RPC interface 131795781379785667 0x7ffac8fa0000 253952 C:\Windows\System32\logoncli.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Net Logon Client DLL 131795781376161721 0x7ffac92e0000 1269760 C:\Windows\System32\WinTypes.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL основных типов Windows 131795781381497463 0x7ffaca260000 45056 C:\Windows\System32\SystemEventsBrokerClient.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation system Events Broker Client Library 131795781400360112 0x7ffaca340000 1593344 C:\Windows\System32\propsys.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Система страниц свойств (Майкрософт) 131795781377417467 0x7ffaca570000 421888 C:\Windows\System32\BCP47Langs.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation BCP47 Language Classes 131795781377574222 0x7ffacaf00000 610304 C:\Windows\System32\uxtheme.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека тем UxTheme (Microsoft) 131795781379044936 0x7ffacb140000 593920 C:\Windows\System32\msvcp110_win.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Microsoft® STL110 C++ Runtime Library 131795781376090036 0x7ffacb1e0000 1163264 C:\Windows\System32\twinapi.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation twinapi.appcore 131795781378865985 0x7ffacb300000 364544 C:\Windows\System32\VEEventDispatcher.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Visual Element Event dispatcher 131795781414518147 0x7ffacb360000 176128 C:\Windows\System32\fwbase.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Firewall Base DLL 131795781414918402 0x7ffacb420000 204800 C:\Windows\System32\ntmarta.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик Windows NT MARTA 131795781414341341 0x7ffacb460000 548864 C:\Windows\System32\FirewallAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API брандмауэра Windows 131795781417360246 0x7ffacbaf0000 495616 C:\Windows\System32\schannel.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик безопасности TLS/SSL 131795781418995689 0x7ffacbbb0000 208896 C:\Windows\System32\rsaenh.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Enhanced Cryptographic Provider 131795781418966047 0x7ffacbbf0000 40960 C:\Windows\System32\dpapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Data Protection API 131795781414219564 0x7ffacbd30000 229376 C:\Windows\System32\IPHLPAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API вспомогательного приложения IP 131795781415370787 0x7ffacbd70000 659456 C:\Windows\System32\dnsapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Динамическая библиотека API DNS-клиента 131795781414781184 0x7ffacbe40000 126976 C:\Windows\System32\userenv.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Userenv 131795781415128865 0x7ffacbfb0000 376832 C:\Windows\System32\mswsock.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширение поставщика службы API Microsoft Windows Sockets 2.0 131795781418985585 0x7ffacc150000 94208 C:\Windows\System32\cryptsp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Cryptographic Service Provider API 131795781410039902 0x7ffacc170000 45056 C:\Windows\System32\cryptbase.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base cryptographic API DLL 131795781409485316 0x7ffacc1f0000 241664 C:\Windows\System32\ntasn1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft ASN.1 API 131795781409428276 0x7ffacc230000 155648 C:\Windows\System32\ncrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Маршрутизатор Windows NCrypt 131795781378809349 0x7ffacc350000 180224 C:\Windows\System32\sspicli.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Security Support Provider Interface 131795781376142422 0x7ffacc620000 176128 C:\Windows\System32\bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795781376066481 0x7ffacc6e0000 61440 C:\Windows\System32\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795781400337277 0x7ffacc6f0000 311296 C:\Windows\System32\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795781376677325 0x7ffacc740000 81920 C:\Windows\System32\profapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Profile Basic API 131795781411377418 0x7ffacc760000 65536 C:\Windows\System32\msasn1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ASN.1 Runtime APIs 131795781376323409 0x7ffacc770000 1572864 C:\Windows\System32\gdi32full.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation GDI Client DLL 131795781375973357 0x7ffacc8f0000 1003520 C:\Windows\System32\ucrtbase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795781375975249 0x7ffacc9f0000 434176 C:\Windows\System32\bcryptprimitives.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Cryptographic Primitives Library 131795781376321707 0x7ffacca60000 122880 C:\Windows\System32\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795781418968465 0x7ffacca80000 348160 C:\Windows\System32\wintrust.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation Microsoft Trust Verification APIs 131795781376165705 0x7ffaccae0000 692224 C:\Windows\System32\SHCore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795781400336014 0x7ffaccb90000 7180288 C:\Windows\System32\windows.storage.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API хранения Microsoft WinRT 131795781375963238 0x7ffacd270000 2215936 C:\Windows\System32\KernelBase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795781411376468 0x7ffacd490000 1871872 C:\Windows\System32\crypt32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API32 криптографии 131795781379140199 0x7ffacd710000 638976 C:\Windows\System32\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795781379139376 0x7ffaced20000 782336 C:\Windows\System32\oleaut32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795781375974304 0x7ffacee50000 1183744 C:\Windows\System32\rpcrt4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795781415167464 0x7ffacef80000 32768 C:\Windows\System32\nsi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation NSI User-mode interface DLL 131795781375971439 0x7ffacef90000 647168 C:\Windows\System32\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795781375962346 0x7ffacf0d0000 704512 C:\Windows\System32\kernel32.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795781421399809 0x7ffacf180000 376832 C:\Windows\System32\Wldap32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Win32 LDAP API DLL 131795781376322544 0x7ffacf770000 212992 C:\Windows\System32\gdi32.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation GDI Client DLL 131795781414140404 0x7ffacf820000 434176 C:\Windows\System32\ws2_32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation 32-разрядная библиотека Windows Socket 2.0 131795781376336876 0x7ffacf890000 188416 C:\Windows\System32\imm32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Multi-User Windows IMM32 API Client DLL 131795781376320735 0x7ffacf8c0000 1462272 C:\Windows\System32\user32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795781375972581 0x7ffacfb30000 2916352 C:\Windows\System32\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795781378796627 0x7ffacfe20000 663552 C:\Windows\System32\advapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795781400338549 0x7ffad01b0000 335872 C:\Windows\System32\shlwapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека небольших программ оболочки 131795781376091355 0x7ffad0210000 364544 C:\Windows\System32\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795781375956384 0x7ffad0270000 1908736 C:\Windows\System32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 157 9472 348 24 00000000:0031f1ab 131795783695799872 131795783788685275 0 1 Обязательная метка\Высокий обязательный уровень WIN-0UOTFKKVN1S\User UpdateAssistant.exe C:\Windows\UpdateAssistant\UpdateAssistant.exe C:\Windows\UpdateAssistant\UpdateAssistant.exe /ClientID Win10Upgrade:VNL:NHV18:{} Microsoft Corporation 10.0.14393.10057 (rs1_release_d_bugfix(cxesa).180619-1208) UpdateAssistant 131795783701823215 0x7ff744b10000 401408 C:\Windows\UpdateAssistant\UpdateAssistant.exe 10.0.14393.10057 (rs1_release_d_bugfix(cxesa).180619-1208) Microsoft Corporation UpdateAssistant 131795783720310913 0x7ffac0af0000 114688 C:\Windows\System32\atl.dll 3.05.2284 Microsoft Corporation ATL Module for Windows XP (Unicode) 131795783720359248 0x7ffac1f10000 126976 C:\Windows\System32\dmcmnutils.dll 10.0.14393.1737 (rs1_release_inmarket.170914-1249) Microsoft Corporation dmcmnutils 131795783760269052 0x7ffac2590000 659456 C:\Windows\System32\FlightSettings.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Параметры цикла тестирования 131795783760342879 0x7ffac2750000 106496 C:\Windows\System32\bcd.dll 10.0.14393.1794 (rs1_release.171008-1615) Microsoft Corporation BCD DLL 131795783760357383 0x7ffac4000000 274432 C:\Windows\System32\policymanager.dll 10.0.14393.2035 (rs1_release_inmarket.180110-1910) Microsoft Corporation Policy Manager DLL 131795783720338663 0x7ffac60e0000 221184 C:\Windows\System32\xmllite.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft XmlLite Library 131795783761961676 0x7ffac6610000 40960 C:\Windows\System32\rasadhlp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Remote Access AutoDial Helper 131795783720030471 0x7ffac69c0000 839680 C:\Windows\System32\winhttp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Службы HTTP Windows 131795783761784250 0x7ffac79c0000 57344 C:\Windows\System32\npmproxy.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Network List Manager Proxy 131795783777273664 0x7ffac7ce0000 94208 C:\Windows\System32\usoapi.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Update Session Orchestrator API 131795783761383926 0x7ffac7d60000 114688 C:\Windows\System32\updatepolicy.dll 10.0.14393.2189 (rs1_release.180329-1711) Microsoft Corporation Update Policy Reader 131795783763101028 0x7ffac8420000 434176 C:\Windows\System32\FWPUCLNT.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API пользовательского режима FWP/IPsec 131795783763248350 0x7ffac8810000 45056 C:\Windows\System32\winnsi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Network Store Information RPC interface 131795783761671518 0x7ffac9f10000 221184 C:\Windows\System32\netprofm.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Network List Manager 131795783737786694 0x7ffacb140000 593920 C:\Windows\System32\msvcp110_win.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Microsoft® STL110 C++ Runtime Library 131795783766477330 0x7ffacb420000 204800 C:\Windows\System32\ntmarta.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик Windows NT MARTA 131795783720042775 0x7ffacbd30000 229376 C:\Windows\System32\IPHLPAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API вспомогательного приложения IP 131795783761869001 0x7ffacbd70000 659456 C:\Windows\System32\dnsapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Динамическая библиотека API DNS-клиента 131795783761841221 0x7ffacbfb0000 376832 C:\Windows\System32\mswsock.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширение поставщика службы API Microsoft Windows Sockets 2.0 131795783760278190 0x7ffacc150000 94208 C:\Windows\System32\cryptsp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Cryptographic Service Provider API 131795783720349343 0x7ffacc620000 176128 C:\Windows\System32\bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795783720009570 0x7ffacc6e0000 61440 C:\Windows\System32\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795783720008778 0x7ffacc6f0000 311296 C:\Windows\System32\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795783720011055 0x7ffacc740000 81920 C:\Windows\System32\profapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Profile Basic API 131795783720003516 0x7ffacc760000 65536 C:\Windows\System32\msasn1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ASN.1 Runtime APIs 131795783719999191 0x7ffacc770000 1572864 C:\Windows\System32\gdi32full.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation GDI Client DLL 131795783719994518 0x7ffacc8f0000 1003520 C:\Windows\System32\ucrtbase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795783719996692 0x7ffacc9f0000 434176 C:\Windows\System32\bcryptprimitives.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Cryptographic Primitives Library 131795783720000610 0x7ffacca60000 122880 C:\Windows\System32\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795783720010268 0x7ffaccae0000 692224 C:\Windows\System32\SHCore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795783720007866 0x7ffaccb90000 7180288 C:\Windows\System32\windows.storage.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API хранения Microsoft WinRT 131795783712541416 0x7ffacd270000 2215936 C:\Windows\System32\KernelBase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795783720002840 0x7ffacd490000 1871872 C:\Windows\System32\crypt32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API32 криптографии 131795783720002028 0x7ffacd710000 638976 C:\Windows\System32\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795783720006957 0x7ffacd7b0000 270336 C:\Windows\System32\cfgmgr32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Configuration Manager DLL 131795783720006098 0x7ffacd810000 22056960 C:\Windows\System32\shell32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Общая библиотека оболочки Windows 131795783720001386 0x7ffaced20000 782336 C:\Windows\System32\oleaut32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795783719993581 0x7ffacee50000 1183744 C:\Windows\System32\rpcrt4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795783761869802 0x7ffacef80000 32768 C:\Windows\System32\nsi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation NSI User-mode interface DLL 131795783719991841 0x7ffacef90000 647168 C:\Windows\System32\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795783760254773 0x7ffacf030000 651264 C:\Windows\System32\clbcatq.dll 2001.12.10941.16384 (rs1_release.160715-1616) Microsoft Corporation COM+ Configuration Catalog 131795783712540499 0x7ffacf0d0000 704512 C:\Windows\System32\kernel32.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795783719998327 0x7ffacf770000 212992 C:\Windows\System32\gdi32.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation GDI Client DLL 131795783720005143 0x7ffacf820000 434176 C:\Windows\System32\ws2_32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation 32-разрядная библиотека Windows Socket 2.0 131795783737806683 0x7ffacf890000 188416 C:\Windows\System32\imm32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Multi-User Windows IMM32 API Client DLL 131795783719999962 0x7ffacf8c0000 1462272 C:\Windows\System32\user32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795783719995892 0x7ffacfb30000 2916352 C:\Windows\System32\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795783719990891 0x7ffacfe20000 663552 C:\Windows\System32\advapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795783719995202 0x7ffad0070000 1277952 C:\Windows\System32\ole32.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft OLE для Windows 131795783720004300 0x7ffad01b0000 335872 C:\Windows\System32\shlwapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека небольших программ оболочки 131795783719992966 0x7ffad0210000 364544 C:\Windows\System32\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795783701823597 0x7ffad0270000 1908736 C:\Windows\System32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 158 4400 348 24 00000000:0031f1da 131795783695800058 131795783701748183 0 1 Обязательная метка\Средний обязательный уровень WIN-0UOTFKKVN1S\User UpdateAssistant.exe C:\Windows\UpdateAssistant\UpdateAssistant.exe C:\Windows\UpdateAssistant\UpdateAssistant.exe /ClientID Win10Upgrade:VNL:NHV18:{} /AllUsersRun Microsoft Corporation 10.0.14393.10057 (rs1_release_d_bugfix(cxesa).180619-1208) UpdateAssistant 131795783701546865 0x7ff744b10000 401408 C:\Windows\UpdateAssistant\UpdateAssistant.exe 10.0.14393.10057 (rs1_release_d_bugfix(cxesa).180619-1208) Microsoft Corporation UpdateAssistant 131795783701547131 0x7ffad0270000 1908736 C:\Windows\System32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 159 2452 348 24 00000000:000003e7 131795783701691029 131795783717790135 0 1 Обязательная метка\Обязательный уровень системы NT AUTHORITY\СИСТЕМА XblGameSaveTask.exe C:\Windows\System32\XblGameSaveTask.exe C:\Windows\System32\XblGameSaveTask.exe standby Microsoft Corporation 10.0.14393.0 (rs1_release.160715-1616) XblGameSave Standby Task 131795783701826465 0x7ff6747e0000 53248 C:\Windows\System32\XblGameSaveTask.exe 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation XblGameSave Standby Task 131795783701832150 0x7ffacd270000 2215936 C:\Windows\System32\KernelBase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795783717422437 0x7ffacee50000 1183744 C:\Windows\System32\rpcrt4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795783717421060 0x7ffacef90000 647168 C:\Windows\System32\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795783701831338 0x7ffacf0d0000 704512 C:\Windows\System32\kernel32.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795783701826697 0x7ffad0270000 1908736 C:\Windows\System32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 160 10668 2452 159 00000000:000003e7 131795783705682467 131795783717901381 0 1 Обязательная метка\Обязательный уровень системы NT AUTHORITY\СИСТЕМА Conhost.exe C:\Windows\System32\Conhost.exe \??\C:\Windows\system32\conhost.exe 0xffffffff -ForceV1 Microsoft Corporation 10.0.14393.0 (rs1_release.160715-1616) Console Window Host 131795783706097259 0x7ff768b40000 69632 C:\Windows\System32\conhost.exe 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Console Window Host 131795783706222546 0x7ffac16b0000 368640 C:\Windows\System32\ConhostV2.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Хост окна консоли 131795783706357733 0x7ffaca340000 1593344 C:\Windows\System32\propsys.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Система страниц свойств (Майкрософт) 131795783706615060 0x7ffacc6e0000 61440 C:\Windows\System32\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795783706546680 0x7ffacc6f0000 311296 C:\Windows\System32\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795783706615836 0x7ffacc740000 81920 C:\Windows\System32\profapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Profile Basic API 131795783706267565 0x7ffacc770000 1572864 C:\Windows\System32\gdi32full.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation GDI Client DLL 131795783706263617 0x7ffacc8f0000 1003520 C:\Windows\System32\ucrtbase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795783706265432 0x7ffacc9f0000 434176 C:\Windows\System32\bcryptprimitives.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Cryptographic Primitives Library 131795783706269166 0x7ffacca60000 122880 C:\Windows\System32\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795783706373982 0x7ffaccae0000 692224 C:\Windows\System32\SHCore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795783706545807 0x7ffaccb90000 7180288 C:\Windows\System32\windows.storage.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API хранения Microsoft WinRT 131795783706108909 0x7ffacd270000 2215936 C:\Windows\System32\KernelBase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795783706271225 0x7ffacd710000 638976 C:\Windows\System32\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795783706544765 0x7ffacd7b0000 270336 C:\Windows\System32\cfgmgr32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Configuration Manager DLL 131795783706543671 0x7ffacd810000 22056960 C:\Windows\System32\shell32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Общая библиотека оболочки Windows 131795783706270591 0x7ffaced20000 782336 C:\Windows\System32\oleaut32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795783706264354 0x7ffacee50000 1183744 C:\Windows\System32\rpcrt4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795783706116930 0x7ffacef90000 647168 C:\Windows\System32\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795783706108105 0x7ffacf0d0000 704512 C:\Windows\System32\kernel32.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795783706266792 0x7ffacf770000 212992 C:\Windows\System32\gdi32.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation GDI Client DLL 131795783706269879 0x7ffacf890000 188416 C:\Windows\System32\imm32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Multi-User Windows IMM32 API Client DLL 131795783706268466 0x7ffacf8c0000 1462272 C:\Windows\System32\user32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795783706262861 0x7ffacfb30000 2916352 C:\Windows\System32\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795783706547450 0x7ffacfe20000 663552 C:\Windows\System32\advapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795783706548303 0x7ffad01b0000 335872 C:\Windows\System32\shlwapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека небольших программ оболочки 131795783706358550 0x7ffad0210000 364544 C:\Windows\System32\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795783706097494 0x7ffad0270000 1908736 C:\Windows\System32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 161 12760 348 24 00000000:000003e7 131795784261891634 131795784271656909 0 1 Обязательная метка\Обязательный уровень системы NT AUTHORITY\СИСТЕМА sedlauncher.exe C:\Program Files\rempl\sedlauncher.exe "C:\Program Files\rempl\sedlauncher.exe" Microsoft Corporation 10.0.16299.10000 (WinBuild.160101.0800) sedlauncher 131795784261910410 0x7ff783d60000 258048 C:\Program Files\rempl\sedlauncher.exe 10.0.16299.10000 (WinBuild.160101.0800) Microsoft Corporation sedlauncher 131795784266568695 0x7ffababf0000 798720 C:\Program Files\rempl\sedplugins.dll 10.0.16299.10000 (WinBuild.160101.0800) Microsoft Corporation sedplugins 131795784263491741 0x7ffabf5d0000 2924544 C:\Windows\System32\wininet.dll 11.00.14393.447 (rs1_release_inmarket.161102-0100) Microsoft Corporation Расширения Интернета для Win32 131795784267124264 0x7ffac0af0000 114688 C:\Windows\System32\atl.dll 3.05.2284 Microsoft Corporation ATL Module for Windows XP (Unicode) 131795784266591025 0x7ffac1f10000 126976 C:\Windows\System32\dmcmnutils.dll 10.0.14393.1737 (rs1_release_inmarket.170914-1249) Microsoft Corporation dmcmnutils 131795784263208636 0x7ffac2b80000 40960 C:\Windows\System32\version.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Version Checking and File Installation Libraries 131795784271303424 0x7ffac4000000 274432 C:\Windows\System32\policymanager.dll 10.0.14393.2035 (rs1_release_inmarket.180110-1910) Microsoft Corporation Policy Manager DLL 131795784266880876 0x7ffac4e70000 102400 C:\Windows\System32\samcli.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Security Accounts Manager Client DLL 131795784267082706 0x7ffac60e0000 221184 C:\Windows\System32\xmllite.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft XmlLite Library 131795784263187575 0x7ffac69c0000 839680 C:\Windows\System32\winhttp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Службы HTTP Windows 131795784271119858 0x7ffac7d60000 114688 C:\Windows\System32\updatepolicy.dll 10.0.14393.2189 (rs1_release.180329-1711) Microsoft Corporation Update Policy Reader 131795784266910659 0x7ffac90b0000 90112 C:\Windows\System32\wkscli.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Workstation Service Client DLL 131795784266580949 0x7ffaca1f0000 65536 C:\Windows\System32\StorageUsage.dll 10.0.14393.82 (rs1_release.160805-1735) Microsoft Corporation Storage Usage 131795784267114052 0x7ffaca4e0000 77824 C:\Windows\System32\wtsapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Remote Desktop Session Host Server SDK APIs 131795784267210331 0x7ffacb140000 593920 C:\Windows\System32\msvcp110_win.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Microsoft® STL110 C++ Runtime Library 131795784266900084 0x7ffacb420000 204800 C:\Windows\System32\ntmarta.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик Windows NT MARTA 131795784266394986 0x7ffacb6f0000 143360 C:\Windows\System32\gpapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиентские функции API групповой политики 131795784265589698 0x7ffacbbb0000 208896 C:\Windows\System32\rsaenh.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Enhanced Cryptographic Provider 131795784267071668 0x7ffacbd30000 229376 C:\Windows\System32\IPHLPAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API вспомогательного приложения IP 131795784266870398 0x7ffacbe20000 53248 C:\Windows\System32\netutils.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API Helpers DLL 131795784263198294 0x7ffacc150000 94208 C:\Windows\System32\cryptsp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Cryptographic Service Provider API 131795784265655565 0x7ffacc170000 45056 C:\Windows\System32\cryptbase.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base cryptographic API DLL 131795784265600251 0x7ffacc620000 176128 C:\Windows\System32\bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795784263160864 0x7ffacc6e0000 61440 C:\Windows\System32\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795784263156364 0x7ffacc6f0000 311296 C:\Windows\System32\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795784263162254 0x7ffacc740000 81920 C:\Windows\System32\profapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Profile Basic API 131795784263158628 0x7ffacc770000 1572864 C:\Windows\System32\gdi32full.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation GDI Client DLL 131795784263145141 0x7ffacc8f0000 1003520 C:\Windows\System32\ucrtbase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795784263148820 0x7ffacc9f0000 434176 C:\Windows\System32\bcryptprimitives.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Cryptographic Primitives Library 131795784263160132 0x7ffacca60000 122880 C:\Windows\System32\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795784263162953 0x7ffacca80000 348160 C:\Windows\System32\wintrust.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation Microsoft Trust Verification APIs 131795784263161512 0x7ffaccae0000 692224 C:\Windows\System32\SHCore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795784263155580 0x7ffaccb90000 7180288 C:\Windows\System32\windows.storage.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API хранения Microsoft WinRT 131795784262871886 0x7ffacd270000 2215936 C:\Windows\System32\KernelBase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795784263151247 0x7ffacd490000 1871872 C:\Windows\System32\crypt32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API32 криптографии 131795784266570310 0x7ffacd710000 638976 C:\Windows\System32\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795784263154696 0x7ffacd7b0000 270336 C:\Windows\System32\cfgmgr32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Configuration Manager DLL 131795784263153793 0x7ffacd810000 22056960 C:\Windows\System32\shell32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Общая библиотека оболочки Windows 131795784266569642 0x7ffaced20000 782336 C:\Windows\System32\oleaut32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795784263147124 0x7ffacee50000 1183744 C:\Windows\System32\rpcrt4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795784263150360 0x7ffacef90000 647168 C:\Windows\System32\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795784262869977 0x7ffacf0d0000 704512 C:\Windows\System32\kernel32.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795784263163848 0x7ffacf340000 4362240 C:\Windows\System32\setupapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Setup API 131795784263157946 0x7ffacf770000 212992 C:\Windows\System32\gdi32.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation GDI Client DLL 131795784266571388 0x7ffacf820000 434176 C:\Windows\System32\ws2_32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation 32-разрядная библиотека Windows Socket 2.0 131795784263159487 0x7ffacf8c0000 1462272 C:\Windows\System32\user32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795784263148014 0x7ffacfb30000 2916352 C:\Windows\System32\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795784265715387 0x7ffacfe00000 114688 C:\Windows\System32\imagehlp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT Image Helper 131795784263149679 0x7ffacfe20000 663552 C:\Windows\System32\advapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795784263157165 0x7ffad01b0000 335872 C:\Windows\System32\shlwapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека небольших программ оболочки 131795784263146448 0x7ffad0210000 364544 C:\Windows\System32\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795784261910701 0x7ffad0270000 1908736 C:\Windows\System32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 1 11372 10560 2 00000000:0031f1ab 131795770632346846 0 0 1 Обязательная метка\Высокий обязательный уровень WIN-0UOTFKKVN1S\User Procmon64.exe C:\Users\User\AppData\Local\Temp\Procmon64.exe "C:\Users\User\AppData\Local\Temp\Procmon64.exe" /originalpath "C:\Users\User\Downloads\ProcessMonitor\Procmon.exe" Sysinternals - www.sysinternals.com 3.50 Process Monitor 131795770645297135 0x7ff7ed960000 1224704 C:\Users\User\AppData\Local\Temp\Procmon64.exe 3.50 Sysinternals - www.sysinternals.com Process Monitor 131795770645297135 0x7ffac2b80000 40960 C:\Windows\SYSTEM32\VERSION.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Version Checking and File Installation Libraries 131795770645297135 0x7ffac3270000 40960 C:\Windows\SYSTEM32\FLTLIB.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека фильтров 131795770645297135 0x7ffac5630000 339968 C:\Windows\System32\thumbcache.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Кэш эскизов Майкрософт 131795770645297135 0x7ffac6c40000 2596864 C:\Windows\WinSxS\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.14393.953_none_42151e83c686086b\COMCTL32.dll 6.10 (rs1_release_inmarket.170303-1614) Microsoft Corporation Библиотека элементов управления взаимодействия с пользователем 131795770645297135 0x7ffac84f0000 299008 C:\Windows\system32\dataexchange.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation Data exchange 131795770645297135 0x7ffac88a0000 2842624 C:\Windows\system32\d3d11.dll 10.0.14393.953 (rs1_release_inmarket.170303-1614) Microsoft Corporation Direct3D 11 Runtime 131795770645297135 0x7ffac8df0000 1646592 C:\Windows\SYSTEM32\dbghelp.dll 10.0.14321.1024 (rs1_release.160715-1616) Microsoft Windows Image Helper 131795770645297135 0x7ffac9f50000 1736704 C:\Windows\SYSTEM32\WindowsCodecs.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Microsoft Windows Codecs Library 131795770645297135 0x7ffaca340000 1593344 C:\Windows\SYSTEM32\PROPSYS.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Система страниц свойств (Майкрософт) 131795770645297135 0x7ffaca5e0000 155648 C:\Windows\SYSTEM32\dwmapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Интерфейс API диспетчера окон рабочего стола (Майкрософт) 131795770645297135 0x7ffaca770000 1380352 C:\Windows\system32\dcomp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft DirectComposition Library 131795770645297135 0x7ffacadf0000 499712 C:\Windows\system32\apphelp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиентская библиотека совместимости приложений 131795770645297135 0x7ffacaf00000 610304 C:\Windows\SYSTEM32\uxtheme.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека тем UxTheme (Microsoft) 131795770645297135 0x7ffacb1e0000 1163264 C:\Windows\system32\twinapi.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation twinapi.appcore 131795770645297135 0x7ffacb780000 651264 C:\Windows\system32\dxgi.dll 10.0.14393.953 (rs1_release_inmarket.170303-1614) Microsoft Corporation DirectX Graphics Infrastructure 131795770645297135 0x7ffacc620000 176128 C:\Windows\system32\bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795770645297135 0x7ffacc6e0000 61440 C:\Windows\System32\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795770645297135 0x7ffacc6f0000 311296 C:\Windows\System32\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795770645297135 0x7ffacc740000 81920 C:\Windows\System32\profapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Profile Basic API 131795770645297135 0x7ffacc8f0000 1003520 C:\Windows\System32\ucrtbase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645297135 0x7ffacc9f0000 434176 C:\Windows\System32\bcryptPrimitives.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Cryptographic Primitives Library 131795770645297135 0x7ffacca60000 122880 C:\Windows\System32\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795770645297135 0x7ffaccae0000 692224 C:\Windows\System32\shcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795770645297135 0x7ffaccb90000 7180288 C:\Windows\System32\windows.storage.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API хранения Microsoft WinRT 131795770645297135 0x7ffacd270000 2215936 C:\Windows\System32\KERNELBASE.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645297135 0x7ffacd710000 638976 C:\Windows\System32\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645297135 0x7ffacd7b0000 270336 C:\Windows\System32\cfgmgr32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Configuration Manager DLL 131795770645297135 0x7ffacd810000 22056960 C:\Windows\System32\SHELL32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Общая библиотека оболочки Windows 131795770645297135 0x7ffaced20000 782336 C:\Windows\System32\OLEAUT32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795770645297135 0x7ffacee50000 1183744 C:\Windows\System32\RPCRT4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795770645297135 0x7ffacef90000 647168 C:\Windows\System32\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795770645297135 0x7ffacf030000 651264 C:\Windows\System32\clbcatq.dll 2001.12.10941.16384 (rs1_release.160715-1616) Microsoft Corporation COM+ Configuration Catalog 131795770645297135 0x7ffacf0d0000 704512 C:\Windows\System32\KERNEL32.DLL 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645297135 0x7ffacf1e0000 1417216 C:\Windows\System32\MSCTF.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Серверная библиотека MSCTF 131795770645297135 0x7ffacf770000 212992 C:\Windows\System32\GDI32.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation GDI Client DLL 131795770645297135 0x7ffacf820000 434176 C:\Windows\System32\WS2_32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation 32-разрядная библиотека Windows Socket 2.0 131795770645297135 0x7ffacf890000 188416 C:\Windows\System32\IMM32.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Multi-User Windows IMM32 API Client DLL 131795770645297135 0x7ffacf8c0000 1462272 C:\Windows\System32\USER32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795770645297135 0x7ffacfa30000 1024000 C:\Windows\System32\COMDLG32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека общих диалоговых окон 131795770645297135 0x7ffacfb30000 2916352 C:\Windows\System32\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795770645297135 0x7ffacfe20000 663552 C:\Windows\System32\advapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795770645297135 0x7ffad0070000 1277952 C:\Windows\System32\ole32.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft OLE для Windows 131795770645297135 0x7ffad01b0000 335872 C:\Windows\System32\SHLWAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека небольших программ оболочки 131795770645297135 0x7ffad0210000 364544 C:\Windows\System32\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795770645297135 0x7ffad0270000 1908736 C:\Windows\SYSTEM32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 2 10560 3108 11 00000000:0031f1ab 131795770594566098 0 0 0 Обязательная метка\Высокий обязательный уровень WIN-0UOTFKKVN1S\User Procmon.exe C:\Users\User\Downloads\ProcessMonitor\Procmon.exe "C:\Users\User\Downloads\ProcessMonitor\Procmon.exe" Sysinternals - www.sysinternals.com 3.50 Process Monitor 131795770645662037 0x1000000 2191360 C:\Users\User\Downloads\ProcessMonitor\Procmon.exe 3.50 Sysinternals - www.sysinternals.com Process Monitor 131795770645662037 0x5c020000 335872 C:\Windows\System32\wow64.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation Win32 Emulation on NT64 131795770645662037 0x5c080000 487424 C:\Windows\System32\wow64win.dll 10.0.14393.1884 (rs1_release.171101-1233) Microsoft Corporation Wow64 Console and Win32 API Logging 131795770645662037 0x5c100000 40960 C:\Windows\System32\wow64cpu.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation AMD64 Wow64 CPU 131795770645662037 0x60750000 1556480 C:\Program Files (x86)\360\Total Security\safemon\safemon.dll 8, 4, 0, 1420 Qihu 360 Software Co., Ltd. 360 Internet Security Internet Protection 131795770645662037 0x62530000 65536 C:\Windows\SysWOW64\DEVRTL.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Device Management Run Time Library 131795770645662037 0x627d0000 249856 C:\Windows\SysWOW64\edputil.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служебная программа EDP 131795770645662037 0x67690000 61440 C:\Windows\SysWOW64\sfc_os.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows File Protection 131795770645662037 0x676b0000 32768 C:\Windows\SysWOW64\FLTLIB.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека фильтров 131795770645662037 0x6dd70000 528384 C:\Windows\SysWOW64\RICHED20.dll 5.31.23.1231 Microsoft Corporation Rich Text Edit Control, v3.1 131795770645662037 0x6e710000 335872 C:\Windows\SysWOW64\Bcp47Langs.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation BCP47 Language Classes 131795770645662037 0x70a20000 94208 C:\Windows\SysWOW64\USP10.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Uniscribe Unicode script processor 131795770645662037 0x70ca0000 45056 C:\Windows\SysWOW64\NETUTILS.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API Helpers DLL 131795770645662037 0x70cb0000 65536 C:\Windows\SysWOW64\WKSCLI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Workstation Service Client DLL 131795770645662037 0x70cd0000 49152 C:\Windows\SysWOW64\pcacli.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Program Compatibility Assistant Client Module 131795770645662037 0x70ec0000 200704 C:\Windows\SysWOW64\msls31.dll 3.10.349.0 Microsoft Corporation Microsoft Line Services library file 131795770645662037 0x71140000 77824 C:\Windows\SysWOW64\NETAPI32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API DLL 131795770645662037 0x72520000 24576 C:\Windows\SysWOW64\Riched32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Wrapper Dll for Richedit 1.0 131795770645662037 0x725e0000 2273280 C:\Windows\SysWOW64\iertutil.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служебная программа времени выполнения для Internet Explorer 131795770645662037 0x728e0000 1372160 C:\Windows\SysWOW64\PROPSYS.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Система страниц свойств (Майкрософт) 131795770645662037 0x72b90000 126976 C:\Windows\SysWOW64\dwmapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Интерфейс API диспетчера окон рабочего стола (Майкрософт) 131795770645662037 0x72cc0000 1658880 C:\Windows\SysWOW64\urlmon.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширения OLE32 для Win32 131795770645662037 0x74110000 479232 C:\Windows\SysWOW64\uxtheme.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека тем UxTheme (Microsoft) 131795770645662037 0x74190000 110592 C:\Windows\SysWOW64\bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795770645662037 0x744d0000 2138112 C:\Windows\WinSxS\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.14393.953_none_89c2555adb023171\COMCTL32.dll 6.10 (rs1_release_inmarket.170303-1614) Microsoft Corporation Библиотека элементов управления взаимодействия с пользователем 131795770645662037 0x746e0000 32768 C:\Windows\SysWOW64\VERSION.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Version Checking and File Installation Libraries 131795770645662037 0x746f0000 106496 C:\Windows\SysWOW64\USERENV.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Userenv 131795770645662037 0x74710000 90112 C:\Windows\SysWOW64\MPR.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека маршрутизации для нескольких служб доступа 131795770645662037 0x74730000 598016 C:\Windows\SysWOW64\apphelp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиентская библиотека совместимости приложений 131795770645662037 0x747d0000 40960 C:\Windows\SysWOW64\CRYPTBASE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base cryptographic API DLL 131795770645662037 0x747e0000 126976 C:\Windows\SysWOW64\SspiCli.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Security Support Provider Interface 131795770645662037 0x74800000 151552 C:\Windows\SysWOW64\IMM32.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Multi-User Windows IMM32 API Client DLL 131795770645662037 0x74910000 2170880 C:\Windows\SysWOW64\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795770645662037 0x74b30000 53248 C:\Windows\SysWOW64\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795770645662037 0x74b60000 790528 C:\Windows\SysWOW64\RPCRT4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795770645662037 0x74c30000 1417216 C:\Windows\SysWOW64\gdi32full.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation GDI Client DLL 131795770645662037 0x74d90000 24576 C:\Windows\SysWOW64\PSAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Process Status Helper 131795770645662037 0x74da0000 778240 C:\Windows\SysWOW64\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795770645662037 0x74e60000 557056 C:\Windows\SysWOW64\shcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795770645662037 0x74ef0000 540672 C:\Windows\SysWOW64\clbcatq.dll 2001.12.10941.16384 (rs1_release.160715-1616) Microsoft Corporation COM+ Configuration Catalog 131795770645662037 0x74fd0000 405504 C:\Windows\SysWOW64\WS2_32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation 32-разрядная библиотека Windows Socket 2.0 131795770645662037 0x75040000 282624 C:\Windows\SysWOW64\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795770645662037 0x75090000 1265664 C:\Windows\SysWOW64\MSCTF.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Серверная библиотека MSCTF 131795770645662037 0x751e0000 1708032 C:\Windows\SysWOW64\KERNELBASE.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645662037 0x75390000 266240 C:\Windows\SysWOW64\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795770645662037 0x75560000 487424 C:\Windows\SysWOW64\advapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795770645662037 0x756c0000 5693440 C:\Windows\SysWOW64\windows.storage.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API хранения Microsoft WinRT 131795770645662037 0x75c90000 286720 C:\Windows\SysWOW64\SHLWAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека небольших программ оболочки 131795770645662037 0x75ce0000 20811776 C:\Windows\SysWOW64\SHELL32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Общая библиотека оболочки Windows 131795770645662037 0x770c0000 4239360 C:\Windows\SysWOW64\SETUPAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Setup API 131795770645662037 0x774d0000 86016 C:\Windows\SysWOW64\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795770645662037 0x774f0000 61440 C:\Windows\SysWOW64\profapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Profile Basic API 131795770645662037 0x77560000 1437696 C:\Windows\SysWOW64\USER32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795770645662037 0x776c0000 368640 C:\Windows\SysWOW64\bcryptPrimitives.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation Windows Cryptographic Primitives Library 131795770645662037 0x77780000 503808 C:\Windows\SysWOW64\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645662037 0x77800000 606208 C:\Windows\SysWOW64\OLEAUT32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795770645662037 0x77ac0000 966656 C:\Windows\SysWOW64\ole32.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft OLE для Windows 131795770645662037 0x77bb0000 176128 C:\Windows\SysWOW64\GDI32.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation GDI Client DLL 131795770645662037 0x77be0000 937984 C:\Windows\SysWOW64\COMDLG32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека общих диалоговых окон 131795770645662037 0x77cd0000 221184 C:\Windows\SysWOW64\cfgmgr32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Configuration Manager DLL 131795770645662037 0x77d20000 1585152 C:\Windows\SysWOW64\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 131795770645662037 0x7ffad0270000 1908736 C:\Windows\SYSTEM32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 3 4048 580 4 00000000:000003e7 131765778109600457 0 0 1 Обязательная метка\Обязательный уровень системы NT AUTHORITY\СИСТЕМА SearchIndexer.exe C:\Windows\system32\SearchIndexer.exe C:\Windows\system32\SearchIndexer.exe /Embedding Microsoft Corporation 7.0.14393.0 (rs1_release.160715-1616) Индексатор службы Microsoft Windows Search 131795770645302950 0x7ff63db40000 929792 C:\Windows\system32\SearchIndexer.exe 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Индексатор службы Microsoft Windows Search 131795770645302950 0x7ffab1fd0000 2277376 C:\Windows\System32\msxml3.dll 8.110.14393.1532 Microsoft Corporation MSXML 3.0 131795770645302950 0x7ffab4b90000 655360 C:\Windows\System32\StructuredQuery.dll 7.0.14393.2068 (rs1_release.180209-1727) Microsoft Corporation Structured Query 131795770645302950 0x7ffab7780000 2576384 C:\Windows\system32\MSSRCH.DLL 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Встроенный поиск (Майкрософт) 131795770645302950 0x7ffab7a00000 3424256 C:\Windows\system32\TQUERY.DLL 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Запросы Microsoft Tripoli 131795770645302950 0x7ffabd990000 720896 C:\Windows\system32\ElsLad.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ELS Language Detection 131795770645302950 0x7ffabe4d0000 286720 C:\Windows\System32\MSWB7.dll 10.0.14393.1737 (rs1_release_inmarket.170914-1249) Microsoft Corporation MSWB7 DLL 131795770645302950 0x7ffabf010000 98304 C:\Windows\SYSTEM32\elscore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL ядра платформы Els 131795770645302950 0x7ffac0bf0000 3559424 C:\Windows\System32\ActXPrxy.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation ActiveX Interface Marshaling Library 131795770645302950 0x7ffac2960000 143360 C:\Windows\system32\mssprxy.dll 7.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation Microsoft Search Proxy 131795770645302950 0x7ffac34c0000 81920 C:\Windows\system32\vss_ps.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation Microsoft® Volume Shadow Copy Service proxy/stub 131795770645302950 0x7ffac3840000 3088384 C:\Windows\system32\ESENT.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширяемая подсистема хранения данных ESE для Microsoft(R) Windows(R) 131795770645302950 0x7ffac4000000 274432 C:\Windows\SYSTEM32\policymanager.dll 10.0.14393.2035 (rs1_release_inmarket.180110-1910) Microsoft Corporation Policy Manager DLL 131795770645302950 0x7ffac4e70000 102400 C:\Windows\system32\samcli.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Security Accounts Manager Client DLL 131795770645302950 0x7ffac6410000 98304 C:\Windows\system32\VssTrace.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека трассировки службы теневого копирования тома Microsoft® 131795770645302950 0x7ffac6430000 1581056 C:\Windows\SYSTEM32\vssapi.dll 10.0.14393.953 (rs1_release_inmarket.170303-1614) Microsoft Corporation Microsoft® Volume Shadow Copy Requestor/Writer Services API DLL 131795770645302950 0x7ffac7e40000 28672 C:\Windows\system32\Msidle.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Idle Monitor 131795770645302950 0x7ffac9bb0000 479232 C:\Windows\System32\ES.DLL 2001.12.10941.16384 (rs1_release.160715-1616) Microsoft Corporation COM+ 131795770645302950 0x7ffaca340000 1593344 C:\Windows\system32\propsys.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Система страниц свойств (Майкрософт) 131795770645302950 0x7ffaca4e0000 77824 C:\Windows\SYSTEM32\wtsapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Remote Desktop Session Host Server SDK APIs 131795770645302950 0x7ffaca570000 421888 C:\Windows\system32\Bcp47Langs.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation BCP47 Language Classes 131795770645302950 0x7ffaca610000 143360 C:\Windows\system32\SAMLIB.dll 10.0.14393.82 (rs1_release.160805-1735) Microsoft Corporation SAM Library DLL 131795770645302950 0x7ffacb140000 593920 C:\Windows\system32\msvcp110_win.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Microsoft® STL110 C++ Runtime Library 131795770645302950 0x7ffacb3f0000 163840 C:\Windows\system32\DEVOBJ.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Device Information Set DLL 131795770645302950 0x7ffacb420000 204800 C:\Windows\SYSTEM32\ntmarta.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик Windows NT MARTA 131795770645302950 0x7ffacbe20000 53248 C:\Windows\system32\netutils.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API Helpers DLL 131795770645302950 0x7ffacbe40000 126976 C:\Windows\system32\USERENV.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Userenv 131795770645302950 0x7ffacc170000 45056 C:\Windows\system32\CRYPTBASE.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base cryptographic API DLL 131795770645302950 0x7ffacc350000 180224 C:\Windows\system32\sspicli.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Security Support Provider Interface 131795770645302950 0x7ffacc520000 622592 C:\Windows\SYSTEM32\sxs.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Fusion 2.5 131795770645302950 0x7ffacc5c0000 352256 C:\Windows\system32\WINSTA.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Winstation Library 131795770645302950 0x7ffacc620000 176128 C:\Windows\System32\bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795770645302950 0x7ffacc6e0000 61440 C:\Windows\System32\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795770645302950 0x7ffacc6f0000 311296 C:\Windows\System32\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795770645302950 0x7ffacc740000 81920 C:\Windows\System32\profapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Profile Basic API 131795770645302950 0x7ffacc8f0000 1003520 C:\Windows\System32\ucrtbase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645302950 0x7ffacc9f0000 434176 C:\Windows\System32\bcryptPrimitives.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Cryptographic Primitives Library 131795770645302950 0x7ffacca60000 122880 C:\Windows\System32\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795770645302950 0x7ffaccae0000 692224 C:\Windows\System32\shcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795770645302950 0x7ffaccb90000 7180288 C:\Windows\System32\Windows.Storage.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API хранения Microsoft WinRT 131795770645302950 0x7ffacd270000 2215936 C:\Windows\System32\KERNELBASE.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645302950 0x7ffacd710000 638976 C:\Windows\System32\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645302950 0x7ffacd7b0000 270336 C:\Windows\System32\cfgmgr32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Configuration Manager DLL 131795770645302950 0x7ffaced20000 782336 C:\Windows\System32\OLEAUT32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795770645302950 0x7ffacee50000 1183744 C:\Windows\System32\RPCRT4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795770645302950 0x7ffacef90000 647168 C:\Windows\System32\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795770645302950 0x7ffacf030000 651264 C:\Windows\System32\clbcatq.dll 2001.12.10941.16384 (rs1_release.160715-1616) Microsoft Corporation COM+ Configuration Catalog 131795770645302950 0x7ffacf0d0000 704512 C:\Windows\System32\KERNEL32.DLL 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645302950 0x7ffacf770000 212992 C:\Windows\System32\GDI32.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation GDI Client DLL 131795770645302950 0x7ffacf820000 434176 C:\Windows\System32\WS2_32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation 32-разрядная библиотека Windows Socket 2.0 131795770645302950 0x7ffacf8c0000 1462272 C:\Windows\System32\USER32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795770645302950 0x7ffacfb30000 2916352 C:\Windows\System32\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795770645302950 0x7ffacfe20000 663552 C:\Windows\System32\advapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795770645302950 0x7ffad0070000 1277952 C:\Windows\System32\ole32.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft OLE для Windows 131795770645302950 0x7ffad01b0000 335872 C:\Windows\System32\shlwapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека небольших программ оболочки 131795770645302950 0x7ffad0210000 364544 C:\Windows\System32\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795770645302950 0x7ffad0270000 1908736 C:\Windows\SYSTEM32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 4 580 484 17 00000000:000003e7 131765776275984299 0 0 1 Обязательная метка\Обязательный уровень системы NT AUTHORITY\СИСТЕМА services.exe C:\Windows\system32\services.exe C:\Windows\system32\services.exe Microsoft Corporation 10.0.14393.0 (rs1_release.160715-1616) Приложение служб и контроллеров 6 664 580 4 00000000:000003e7 131765776282506625 0 0 1 Обязательная метка\Обязательный уровень системы NT AUTHORITY\СИСТЕМА svchost.exe C:\Windows\system32\svchost.exe C:\Windows\system32\svchost.exe -k DcomLaunch Microsoft Corporation 10.0.14393.0 (rs1_release.160715-1616) Хост-процесс для служб Windows 131795770645375819 0x7ff718c20000 57344 C:\Windows\system32\svchost.exe 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Хост-процесс для служб Windows 131795770645375819 0x7ffabae40000 110592 C:\Windows\SYSTEM32\capauthz.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API авторизации возможностей 131795770645375819 0x7ffabc510000 90112 C:\Windows\system32\execmodelproxy.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ExecModelProxy 131795770645375819 0x7ffabc570000 94208 C:\Windows\SYSTEM32\licensemanagerapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation "LicenseManagerApi.DYNLINK" 131795770645375819 0x7ffabc6a0000 61440 C:\Windows\system32\SebBackgroundManagerPolicy.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation <d> SEB Background Manager Policy DLL 131795770645375819 0x7ffabc7e0000 73728 C:\Windows\system32\SmartCardBackgroundPolicy.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SmartCardBackgroundPolicy 131795770645375819 0x7ffabc8c0000 61440 C:\Windows\system32\CbtBackgroundManagerPolicy.dll 10.0.14393.479 (rs1_release.161110-2025) Microsoft Corporation <d> CBT Background Manager Policy DLL 131795770645375819 0x7ffabc8d0000 176128 C:\Windows\System32\ACPBackgroundManagerPolicy.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation <d> ACP Background Manager Policy DLL 131795770645375819 0x7ffabc900000 73728 C:\Windows\System32\BackgroundMediaPolicy.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation <d> Background Media Policy DLL 131795770645375819 0x7ffabc920000 270336 C:\Windows\SYSTEM32\execmodelclient.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation ExecModelClient 131795770645375819 0x7ffac0bf0000 3559424 C:\Windows\System32\ActXPrxy.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation ActiveX Interface Marshaling Library 131795770645375819 0x7ffac20d0000 110592 C:\Windows\system32\RmClient.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Resource Manager Client 131795770645375819 0x7ffac23c0000 331776 C:\Windows\System32\OneCoreCommonProxyStub.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation OneCore Common Proxy Stub 131795770645375819 0x7ffac42a0000 659456 C:\Windows\System32\StateRepository.Core.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation StateRepository Core 131795770645375819 0x7ffac4450000 86016 C:\Windows\SYSTEM32\usermgrcli.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation UserMgr API DLL 131795770645375819 0x7ffac46d0000 4161536 C:\Windows\System32\Windows.StateRepository.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Сервер Windows StateRepository API Server 131795770645375819 0x7ffac7720000 1601536 C:\Windows\System32\OneCoreUAPCommonProxyStub.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation OneCoreUAP Common Proxy Stub 131795770645375819 0x7ffaca250000 49152 C:\Windows\SYSTEM32\bi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Background Broker Infrastructure Client Library 131795770645375819 0x7ffaca4e0000 77824 C:\Windows\SYSTEM32\wtsapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Remote Desktop Session Host Server SDK APIs 131795770645375819 0x7ffaca640000 770048 c:\windows\system32\CoreMessaging.dll 10.0.14393.0 Microsoft Corporation Microsoft CoreMessaging Dll 131795770645375819 0x7ffaca740000 135168 c:\windows\system32\DAB.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL брокера активности компьютера 131795770645375819 0x7ffacabd0000 69632 C:\Windows\System32\OnDemandBrokerClient.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation OnDemandBrokerClient 131795770645375819 0x7ffacad70000 278528 c:\windows\system32\BrokerLib.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Broker Base Library 131795770645375819 0x7ffacadf0000 499712 C:\Windows\system32\apphelp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиентская библиотека совместимости приложений 131795770645375819 0x7ffacae70000 409600 c:\windows\system32\systemeventsbrokerserver.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Брокер системных событий 131795770645375819 0x7ffacafc0000 229376 C:\Windows\SYSTEM32\resourcepolicyserver.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Resource Policy RM Service Extension 131795770645375819 0x7ffacb000000 53248 c:\windows\system32\SYSNTFY.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Windows Notifications Dynamic Link Library 131795770645375819 0x7ffacb010000 348160 C:\Windows\SYSTEM32\psmserviceexthost.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Resource Manager PSM Service Extension 131795770645375819 0x7ffacb070000 69632 C:\Windows\SYSTEM32\embeddedmodesvcapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Embedded Mode Service Client DLL 131795770645375819 0x7ffacb140000 593920 c:\windows\system32\msvcp110_win.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Microsoft® STL110 C++ Runtime Library 131795770645375819 0x7ffacb1e0000 1163264 C:\Windows\SYSTEM32\twinapi.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation twinapi.appcore 131795770645375819 0x7ffacb300000 364544 c:\windows\system32\VEEventDispatcher.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Visual Element Event dispatcher 131795770645375819 0x7ffacb390000 225280 c:\windows\system32\psmsrv.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Process State Manager (PSM) Service 131795770645375819 0x7ffacb3d0000 110592 c:\windows\system32\ResourcePolicyClient.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Resource Policy Client 131795770645375819 0x7ffacb3f0000 163840 c:\windows\system32\DEVOBJ.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Device Information Set DLL 131795770645375819 0x7ffacb420000 204800 C:\Windows\SYSTEM32\ntmarta.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик Windows NT MARTA 131795770645375819 0x7ffacb4f0000 794624 c:\windows\system32\bisrv.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служба инфраструктуры фоновых задач 131795770645375819 0x7ffacb5c0000 913408 c:\windows\system32\rpcss.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Distributed COM Services 131795770645375819 0x7ffacb6e0000 49152 C:\Windows\SYSTEM32\HID.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека пользователя HID 131795770645375819 0x7ffacb6f0000 143360 C:\Windows\SYSTEM32\gpapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиентские функции API групповой политики 131795770645375819 0x7ffacb720000 344064 c:\windows\system32\mintdh.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Вспомогательная библиотека трассировки событий 131795770645375819 0x7ffacb780000 651264 c:\windows\system32\dxgi.dll 10.0.14393.953 (rs1_release_inmarket.170303-1614) Microsoft Corporation DirectX Graphics Infrastructure 131795770645375819 0x7ffacb820000 712704 C:\Windows\SYSTEM32\tdh.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Вспомогательная библиотека трассировки событий 131795770645375819 0x7ffacb8d0000 114688 C:\Windows\SYSTEM32\umpoext.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширения службы пользовательского режима питания 131795770645375819 0x7ffacb8f0000 147456 c:\windows\system32\umpo.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служба пользовательского режима питания 131795770645375819 0x7ffacb920000 81920 C:\Windows\SYSTEM32\WLDP.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Политика блокировки Windows 131795770645375819 0x7ffacb940000 131072 c:\windows\system32\umpnpmgr.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Пользовательский режим службы самонастройки (Plug-and-Play) 131795770645375819 0x7ffacbbb0000 208896 C:\Windows\system32\rsaenh.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Enhanced Cryptographic Provider 131795770645375819 0x7ffacbbf0000 40960 C:\Windows\SYSTEM32\DPAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Data Protection API 131795770645375819 0x7ffacbe40000 126976 C:\Windows\System32\Userenv.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Userenv 131795770645375819 0x7ffacc150000 94208 C:\Windows\SYSTEM32\CRYPTSP.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Cryptographic Service Provider API 131795770645375819 0x7ffacc170000 45056 C:\Windows\System32\CRYPTBASE.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base cryptographic API DLL 131795770645375819 0x7ffacc350000 180224 c:\windows\system32\SspiCli.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Security Support Provider Interface 131795770645375819 0x7ffacc500000 102400 c:\windows\system32\EventAggregation.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Event Aggregation User Mode Library 131795770645375819 0x7ffacc5c0000 352256 C:\Windows\SYSTEM32\WINSTA.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Winstation Library 131795770645375819 0x7ffacc620000 176128 c:\windows\system32\bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795770645375819 0x7ffacc6e0000 61440 C:\Windows\System32\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795770645375819 0x7ffacc6f0000 311296 C:\Windows\System32\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795770645375819 0x7ffacc740000 81920 C:\Windows\System32\profapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Profile Basic API 131795770645375819 0x7ffacc760000 65536 C:\Windows\System32\MSASN1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ASN.1 Runtime APIs 131795770645375819 0x7ffacc8f0000 1003520 C:\Windows\System32\ucrtbase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645375819 0x7ffacc9f0000 434176 C:\Windows\System32\bcryptPrimitives.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Cryptographic Primitives Library 131795770645375819 0x7ffacca60000 122880 C:\Windows\System32\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795770645375819 0x7ffacca80000 348160 C:\Windows\System32\WINTRUST.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation Microsoft Trust Verification APIs 131795770645375819 0x7ffaccae0000 692224 C:\Windows\System32\shcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795770645375819 0x7ffaccb90000 7180288 C:\Windows\System32\windows.storage.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API хранения Microsoft WinRT 131795770645375819 0x7ffacd270000 2215936 C:\Windows\System32\KERNELBASE.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645375819 0x7ffacd490000 1871872 C:\Windows\System32\CRYPT32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API32 криптографии 131795770645375819 0x7ffacd710000 638976 C:\Windows\System32\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645375819 0x7ffacd7b0000 270336 C:\Windows\System32\cfgmgr32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Configuration Manager DLL 131795770645375819 0x7ffaced20000 782336 C:\Windows\System32\OLEAUT32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795770645375819 0x7ffacede0000 450560 C:\Windows\System32\coml2.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft COM for Windows 131795770645375819 0x7ffacee50000 1183744 C:\Windows\System32\RPCRT4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795770645375819 0x7ffacef90000 647168 C:\Windows\System32\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795770645375819 0x7ffacf030000 651264 C:\Windows\System32\clbcatq.dll 2001.12.10941.16384 (rs1_release.160715-1616) Microsoft Corporation COM+ Configuration Catalog 131795770645375819 0x7ffacf0d0000 704512 C:\Windows\System32\KERNEL32.DLL 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645375819 0x7ffacf770000 212992 C:\Windows\System32\gdi32.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation GDI Client DLL 131795770645375819 0x7ffacf8c0000 1462272 C:\Windows\System32\USER32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795770645375819 0x7ffacfb30000 2916352 C:\Windows\System32\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795770645375819 0x7ffacfe20000 663552 C:\Windows\System32\advapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795770645375819 0x7ffad0070000 1277952 C:\Windows\System32\ole32.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft OLE для Windows 131795770645375819 0x7ffad01b0000 335872 C:\Windows\System32\shlwapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека небольших программ оболочки 131795770645375819 0x7ffad0210000 364544 C:\Windows\System32\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795770645375819 0x7ffad0270000 1908736 C:\Windows\SYSTEM32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 7 884 580 4 00000000:000003e5 131765776292813936 0 0 1 Обязательная метка\Обязательный уровень системы NT AUTHORITY\LOCAL SERVICE svchost.exe C:\Windows\System32\svchost.exe C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted Microsoft Corporation 10.0.14393.0 (rs1_release.160715-1616) Хост-процесс для служб Windows 131795770645326170 0x7ff718c20000 57344 C:\Windows\System32\svchost.exe 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Хост-процесс для служб Windows 131795770645326170 0x7ffab9230000 143360 C:\Windows\SYSTEM32\bluetoothapis.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Bluetooth Usermode Api host 131795770645326170 0x7ffab9580000 118784 C:\Windows\system32\BthRadioMedia.dll 10.0.14393.351 (rs1_release_inmarket.161014-1755) Microsoft Corporation Bluetooth Radio Media Provider 131795770645326170 0x7ffab95a0000 77824 C:\Windows\system32\WlanRadioManager.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Wlan Radio Manager 131795770645326170 0x7ffaba920000 155648 c:\windows\system32\rmapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Radio Manager API 131795770645326170 0x7ffabae80000 69632 C:\Windows\system32\NfcRadioMedia.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation NFC Radio Media Provider 131795770645326170 0x7ffabb8a0000 81920 C:\Windows\system32\XboxGipRadioManager.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Xbox GIP Radio Manager 131795770645326170 0x7ffabc0e0000 81920 C:\Windows\system32\WwanRadioManager.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Wwan Radio Manager 131795770645326170 0x7ffabc510000 90112 C:\Windows\system32\execmodelproxy.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ExecModelProxy 131795770645326170 0x7ffabe850000 155648 C:\Windows\System32\IDStore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Identity Store 131795770645326170 0x7ffac05f0000 94208 C:\Windows\SYSTEM32\wwapi.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation WWAN API 131795770645326170 0x7ffac0bf0000 3559424 C:\Windows\System32\ActXPrxy.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation ActiveX Interface Marshaling Library 131795770645326170 0x7ffac1fd0000 999424 C:\Windows\system32\wbem\fastprox.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation WMI Custom Marshaller 131795770645326170 0x7ffac21d0000 81920 C:\Windows\system32\wbem\wbemsvc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation WMI 131795770645326170 0x7ffac23c0000 331776 C:\Windows\System32\OneCoreCommonProxyStub.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation OneCore Common Proxy Stub 131795770645326170 0x7ffac41a0000 77824 C:\Windows\System32\fdproxy.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation Function Discovery Proxy Dll 131795770645326170 0x7ffac4220000 520192 C:\Windows\SYSTEM32\wbemcomn.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation WMI 131795770645326170 0x7ffac4450000 86016 C:\Windows\SYSTEM32\usermgrcli.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation UserMgr API DLL 131795770645326170 0x7ffac4470000 65536 C:\Windows\system32\wbem\wbemprox.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation WMI 131795770645326170 0x7ffac4df0000 462848 c:\windows\system32\provsvc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Домашняя группа Windows 131795770645326170 0x7ffac60e0000 221184 C:\Windows\System32\XmlLite.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft XmlLite Library 131795770645326170 0x7ffac6710000 172032 C:\Windows\System32\FunDisc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL обнаружения функции 131795770645326170 0x7ffac69c0000 839680 c:\windows\system32\WINHTTP.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Службы HTTP Windows 131795770645326170 0x7ffac78c0000 163840 C:\Windows\System32\shacct.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Shell Accounts Classes 131795770645326170 0x7ffac79c0000 57344 C:\Windows\System32\npmproxy.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Network List Manager Proxy 131795770645326170 0x7ffac7aa0000 401408 C:\Windows\system32\wlanapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows WLAN AutoConfig Client Side API DLL 131795770645326170 0x7ffac7f80000 208896 c:\windows\system32\wscsvc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служба центра обеспечения безопасности Windows 131795770645326170 0x7ffac83d0000 106496 C:\Windows\SYSTEM32\dhcpcsvc.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служба DHCP-клиента 131795770645326170 0x7ffac83f0000 90112 C:\Windows\SYSTEM32\dhcpcsvc6.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиент DHCPv6 131795770645326170 0x7ffac8490000 294912 C:\Windows\System32\dhcpcore6.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиент DHCPv6 131795770645326170 0x7ffac8810000 45056 C:\Windows\SYSTEM32\WINNSI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Network Store Information RPC interface 131795770645326170 0x7ffac8c90000 385024 c:\windows\system32\dhcpcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служба DHCP-клиента 131795770645326170 0x7ffac8df0000 1646592 c:\windows\system32\dbghelp.dll 10.0.14321.1024 (rs1_release.160715-1616) Microsoft Windows Image Helper 131795770645326170 0x7ffac9c30000 1732608 c:\windows\system32\wevtsvc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служба протоколирования событий 131795770645326170 0x7ffaca250000 49152 C:\Windows\SYSTEM32\bi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Background Broker Infrastructure Client Library 131795770645326170 0x7ffaca2a0000 192512 c:\windows\system32\timebrokerserver.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Брокер событий времени 131795770645326170 0x7ffaca330000 36864 c:\windows\system32\nrpsrv.DLL 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Name Resolution Proxy (NRP) RPC interface 131795770645326170 0x7ffaca340000 1593344 C:\Windows\system32\propsys.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Система страниц свойств (Майкрософт) 131795770645326170 0x7ffaca4d0000 53248 c:\windows\system32\lmhsvc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL служб транспорта TCPIP NetBios 131795770645326170 0x7ffaca4e0000 77824 C:\Windows\SYSTEM32\wtsapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Remote Desktop Session Host Server SDK APIs 131795770645326170 0x7ffaca610000 143360 C:\Windows\System32\SAMLIB.dll 10.0.14393.82 (rs1_release.160805-1735) Microsoft Corporation SAM Library DLL 131795770645326170 0x7ffacad70000 278528 c:\windows\system32\BrokerLib.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Broker Base Library 131795770645326170 0x7ffacb1e0000 1163264 C:\Windows\System32\twinapi.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation twinapi.appcore 131795770645326170 0x7ffacb360000 176128 C:\Windows\SYSTEM32\fwbase.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Firewall Base DLL 131795770645326170 0x7ffacb3f0000 163840 c:\windows\system32\DEVOBJ.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Device Information Set DLL 131795770645326170 0x7ffacb420000 204800 C:\Windows\SYSTEM32\ntmarta.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик Windows NT MARTA 131795770645326170 0x7ffacb460000 548864 C:\Windows\SYSTEM32\firewallapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API брандмауэра Windows 131795770645326170 0x7ffacb6e0000 49152 c:\windows\system32\HID.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека пользователя HID 131795770645326170 0x7ffacb6f0000 143360 C:\Windows\SYSTEM32\gpapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиентские функции API групповой политики 131795770645326170 0x7ffacb920000 81920 C:\Windows\SYSTEM32\WLDP.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Политика блокировки Windows 131795770645326170 0x7ffacbbb0000 208896 C:\Windows\system32\rsaenh.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Enhanced Cryptographic Provider 131795770645326170 0x7ffacbd30000 229376 C:\Windows\SYSTEM32\IPHLPAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API вспомогательного приложения IP 131795770645326170 0x7ffacbd70000 659456 C:\Windows\SYSTEM32\DNSAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Динамическая библиотека API DNS-клиента 131795770645326170 0x7ffacbe20000 53248 c:\windows\system32\netutils.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API Helpers DLL 131795770645326170 0x7ffacbe40000 126976 c:\windows\system32\USERENV.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Userenv 131795770645326170 0x7ffacbfb0000 376832 C:\Windows\system32\mswsock.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширение поставщика службы API Microsoft Windows Sockets 2.0 131795770645326170 0x7ffacc150000 94208 C:\Windows\SYSTEM32\CRYPTSP.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Cryptographic Service Provider API 131795770645326170 0x7ffacc170000 45056 C:\Windows\SYSTEM32\CRYPTBASE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base cryptographic API DLL 131795770645326170 0x7ffacc350000 180224 C:\Windows\System32\sspicli.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Security Support Provider Interface 131795770645326170 0x7ffacc5c0000 352256 C:\Windows\SYSTEM32\WINSTA.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Winstation Library 131795770645326170 0x7ffacc620000 176128 c:\windows\system32\bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795770645326170 0x7ffacc6e0000 61440 C:\Windows\System32\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795770645326170 0x7ffacc6f0000 311296 C:\Windows\System32\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795770645326170 0x7ffacc740000 81920 C:\Windows\System32\profapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Profile Basic API 131795770645326170 0x7ffacc760000 65536 C:\Windows\System32\MSASN1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ASN.1 Runtime APIs 131795770645326170 0x7ffacc8f0000 1003520 C:\Windows\System32\ucrtbase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645326170 0x7ffacc9f0000 434176 C:\Windows\System32\bcryptPrimitives.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Cryptographic Primitives Library 131795770645326170 0x7ffacca60000 122880 C:\Windows\System32\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795770645326170 0x7ffacca80000 348160 C:\Windows\System32\WINTRUST.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation Microsoft Trust Verification APIs 131795770645326170 0x7ffaccae0000 692224 C:\Windows\System32\shcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795770645326170 0x7ffacd270000 2215936 C:\Windows\System32\KERNELBASE.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645326170 0x7ffacd490000 1871872 C:\Windows\System32\CRYPT32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API32 криптографии 131795770645326170 0x7ffacd710000 638976 C:\Windows\System32\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645326170 0x7ffacd7b0000 270336 C:\Windows\System32\cfgmgr32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Configuration Manager DLL 131795770645326170 0x7ffaced20000 782336 C:\Windows\System32\OLEAUT32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795770645326170 0x7ffacede0000 450560 C:\Windows\System32\coml2.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft COM for Windows 131795770645326170 0x7ffacee50000 1183744 C:\Windows\System32\RPCRT4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795770645326170 0x7ffacef80000 32768 C:\Windows\System32\NSI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation NSI User-mode interface DLL 131795770645326170 0x7ffacef90000 647168 C:\Windows\System32\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795770645326170 0x7ffacf030000 651264 C:\Windows\System32\clbcatq.dll 2001.12.10941.16384 (rs1_release.160715-1616) Microsoft Corporation COM+ Configuration Catalog 131795770645326170 0x7ffacf0d0000 704512 C:\Windows\System32\KERNEL32.DLL 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645326170 0x7ffacf770000 212992 C:\Windows\System32\GDI32.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation GDI Client DLL 131795770645326170 0x7ffacf820000 434176 C:\Windows\System32\WS2_32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation 32-разрядная библиотека Windows Socket 2.0 131795770645326170 0x7ffacf8c0000 1462272 C:\Windows\System32\user32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795770645326170 0x7ffacfb30000 2916352 C:\Windows\System32\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795770645326170 0x7ffacfe00000 114688 C:\Windows\System32\imagehlp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT Image Helper 131795770645326170 0x7ffacfe20000 663552 C:\Windows\System32\ADVAPI32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795770645326170 0x7ffad0070000 1277952 C:\Windows\System32\ole32.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft OLE для Windows 131795770645326170 0x7ffad0210000 364544 C:\Windows\System32\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795770645326170 0x7ffad0270000 1908736 C:\Windows\SYSTEM32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 8 0 0 8 00000000:00000000 131765775874898587 0 4294967295 1 Idle Idle 131795770645349496 0x7ff7ed960000 1224704 C:\Users\User\AppData\Local\Temp\Procmon64.exe 3.50 Sysinternals - www.sysinternals.com Process Monitor 131795770645349496 0x7ffac1fd0000 999424 C:\Windows\system32\wbem\fastprox.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation WMI Custom Marshaller 131795770645349496 0x7ffac21d0000 81920 C:\Windows\system32\wbem\wbemsvc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation WMI 131795770645349496 0x7ffac2b80000 40960 C:\Windows\SYSTEM32\VERSION.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Version Checking and File Installation Libraries 131795770645349496 0x7ffac3270000 40960 C:\Windows\SYSTEM32\FLTLIB.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека фильтров 131795770645349496 0x7ffac4220000 520192 C:\Windows\SYSTEM32\wbemcomn.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation WMI 131795770645349496 0x7ffac4470000 65536 C:\Windows\system32\wbem\wbemprox.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation WMI 131795770645349496 0x7ffac5630000 339968 C:\Windows\System32\thumbcache.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Кэш эскизов Майкрософт 131795770645349496 0x7ffac6c40000 2596864 C:\Windows\WinSxS\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.14393.953_none_42151e83c686086b\COMCTL32.dll 6.10 (rs1_release_inmarket.170303-1614) Microsoft Corporation Библиотека элементов управления взаимодействия с пользователем 131795770645349496 0x7ffac84f0000 299008 C:\Windows\system32\dataexchange.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation Data exchange 131795770645349496 0x7ffac88a0000 2842624 C:\Windows\system32\d3d11.dll 10.0.14393.953 (rs1_release_inmarket.170303-1614) Microsoft Corporation Direct3D 11 Runtime 131795770645349496 0x7ffac8df0000 1646592 C:\Windows\SYSTEM32\dbghelp.dll 10.0.14321.1024 (rs1_release.160715-1616) Microsoft Windows Image Helper 131795770645349496 0x7ffac9f50000 1736704 C:\Windows\SYSTEM32\WindowsCodecs.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Microsoft Windows Codecs Library 131795770645349496 0x7ffaca340000 1593344 C:\Windows\SYSTEM32\PROPSYS.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Система страниц свойств (Майкрософт) 131795770645349496 0x7ffaca5e0000 155648 C:\Windows\SYSTEM32\dwmapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Интерфейс API диспетчера окон рабочего стола (Майкрософт) 131795770645349496 0x7ffaca770000 1380352 C:\Windows\system32\dcomp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft DirectComposition Library 131795770645349496 0x7ffacadf0000 499712 C:\Windows\system32\apphelp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиентская библиотека совместимости приложений 131795770645349496 0x7ffacaf00000 610304 C:\Windows\SYSTEM32\uxtheme.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека тем UxTheme (Microsoft) 131795770645349496 0x7ffacb1e0000 1163264 C:\Windows\system32\twinapi.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation twinapi.appcore 131795770645349496 0x7ffacb780000 651264 C:\Windows\system32\dxgi.dll 10.0.14393.953 (rs1_release_inmarket.170303-1614) Microsoft Corporation DirectX Graphics Infrastructure 131795770645349496 0x7ffacc620000 176128 C:\Windows\system32\bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795770645349496 0x7ffacc6e0000 61440 C:\Windows\System32\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795770645349496 0x7ffacc6f0000 311296 C:\Windows\System32\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795770645349496 0x7ffacc740000 81920 C:\Windows\System32\profapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Profile Basic API 131795770645349496 0x7ffacc8f0000 1003520 C:\Windows\System32\ucrtbase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645349496 0x7ffacc9f0000 434176 C:\Windows\System32\bcryptPrimitives.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Cryptographic Primitives Library 131795770645349496 0x7ffacca60000 122880 C:\Windows\System32\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795770645349496 0x7ffaccae0000 692224 C:\Windows\System32\shcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795770645349496 0x7ffaccb90000 7180288 C:\Windows\System32\windows.storage.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API хранения Microsoft WinRT 131795770645349496 0x7ffacd270000 2215936 C:\Windows\System32\KERNELBASE.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645349496 0x7ffacd710000 638976 C:\Windows\System32\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645349496 0x7ffacd7b0000 270336 C:\Windows\System32\cfgmgr32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Configuration Manager DLL 131795770645349496 0x7ffacd810000 22056960 C:\Windows\System32\SHELL32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Общая библиотека оболочки Windows 131795770645349496 0x7ffaced20000 782336 C:\Windows\System32\OLEAUT32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795770645349496 0x7ffacee50000 1183744 C:\Windows\System32\RPCRT4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795770645349496 0x7ffacef90000 647168 C:\Windows\System32\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795770645349496 0x7ffacf030000 651264 C:\Windows\System32\clbcatq.dll 2001.12.10941.16384 (rs1_release.160715-1616) Microsoft Corporation COM+ Configuration Catalog 131795770645349496 0x7ffacf0d0000 704512 C:\Windows\System32\KERNEL32.DLL 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645349496 0x7ffacf1e0000 1417216 C:\Windows\System32\MSCTF.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Серверная библиотека MSCTF 131795770645349496 0x7ffacf770000 212992 C:\Windows\System32\GDI32.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation GDI Client DLL 131795770645349496 0x7ffacf820000 434176 C:\Windows\System32\WS2_32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation 32-разрядная библиотека Windows Socket 2.0 131795770645349496 0x7ffacf890000 188416 C:\Windows\System32\IMM32.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Multi-User Windows IMM32 API Client DLL 131795770645349496 0x7ffacf8c0000 1462272 C:\Windows\System32\USER32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795770645349496 0x7ffacfa30000 1024000 C:\Windows\System32\COMDLG32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека общих диалоговых окон 131795770645349496 0x7ffacfb30000 2916352 C:\Windows\System32\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795770645349496 0x7ffacfe20000 663552 C:\Windows\System32\advapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795770645349496 0x7ffad0070000 1277952 C:\Windows\System32\ole32.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft OLE для Windows 131795770645349496 0x7ffad01b0000 335872 C:\Windows\System32\SHLWAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека небольших программ оболочки 131795770645349496 0x7ffad0210000 364544 C:\Windows\System32\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795770645349496 0x7ffad0270000 1908736 C:\Windows\SYSTEM32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 9 4 0 8 00000000:000003e7 131765775907178738 0 0 1 Обязательная метка\Обязательный уровень системы NT AUTHORITY\СИСТЕМА System System 131795770645349720 0xffffc709b6e00000 3698688 C:\Windows\System32\win32kfull.sys 10.0.14393.2189 (rs1_release.180329-1711) Microsoft Corporation Full/Desktop Win32k Kernel Driver 131795770645349720 0xffffc709b7190000 1576960 C:\Windows\System32\win32kbase.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Базовый драйвер ядра Win32k 131795770645349720 0xffffc709b7320000 40960 C:\Windows\System32\TSDDD.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Framebuffer Display Driver 131795770645349720 0xffffc709b7330000 258048 C:\Windows\System32\cdd.dll 10.0.14393.2189 (rs1_release.180329-1711) Microsoft Corporation Canonical Display Driver 131795770645349720 0xffffc709b74a0000 241664 C:\Windows\System32\win32k.sys 10.0.14393.594 (rs1_release_inmarket.161213-1754) Microsoft Corporation Full/Desktop Multi-User Win32 Driver 131795770645349720 0xfffff80278934000 45056 C:\Windows\system32\kd.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Local Kernel Debugger 131795770645349720 0xfffff80279678000 8527872 C:\Windows\system32\ntoskrnl.exe 10.0.14393.2189 (rs1_release.180329-1711) Microsoft Corporation NT Kernel & System 131795770645349720 0xfffff80d92e00000 163840 C:\Windows\System32\drivers\ksecdd.sys 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Kernel Security Support Provider Interface 131795770645349720 0xfffff80d92ee0000 53248 C:\Windows\System32\drivers\cmimcext.sys 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation Kernel Configuration Manager Initial Configuration Extension Host Export Driver 131795770645349720 0xfffff80d92ef0000 49152 C:\Windows\System32\drivers\ntosext.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation NTOS extension host driver 131795770645349720 0xfffff80d92fa0000 647168 C:\Windows\System32\drivers\cng.sys 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Kernel Cryptography, Next Generation 131795770645349720 0xfffff80d93040000 868352 C:\Windows\system32\drivers\Wdf01000.sys 1.19.14393.0 (rs1_release.160715-1616) Microsoft Corporation Среда выполнения платформы драйвера режима ядра 131795770645349720 0xfffff80d93120000 77824 C:\Windows\system32\drivers\WDFLDR.SYS 1.19.14393.0 (rs1_release.160715-1616) Microsoft Corporation Kernel Mode Driver Framework Loader 131795770645349720 0xfffff80d93140000 143360 C:\Windows\System32\Drivers\acpiex.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ACPIEx Driver 131795770645349720 0xfffff80d93170000 57344 C:\Windows\System32\Drivers\WppRecorder.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation WPP Trace Recorder 131795770645349720 0xfffff80d93180000 733184 C:\Windows\System32\drivers\ACPI.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ACPI драйвер для NT 131795770645349720 0xfffff80d93240000 49152 C:\Windows\System32\drivers\WMILIB.SYS 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation WMILIB WMI support library Dll 131795770645349720 0xfffff80d93260000 69632 C:\Windows\System32\drivers\intelpep.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Intel Power Engine Plugin 131795770645349720 0xfffff80d93280000 126976 C:\Windows\system32\drivers\WindowsTrustedRT.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Trusted Runtime Interface Driver 131795770645349720 0xfffff80d932a0000 45056 C:\Windows\System32\drivers\WindowsTrustedRTProxy.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Trusted Runtime Service Proxy Driver 131795770645349720 0xfffff80d932b0000 73728 C:\Windows\System32\drivers\pcw.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Performance Counters for Windows Driver 131795770645349720 0xfffff80d932d0000 45056 C:\Windows\System32\drivers\msisadrv.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ISA Driver 131795770645349720 0xfffff80d932e0000 45056 C:\Windows\System32\drivers\isapnp.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Драйвер шины PNP ISA 131795770645349720 0xfffff80d932f0000 356352 C:\Windows\System32\drivers\pci.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation NT Plug and Play PCI-перечислитель 131795770645349720 0xfffff80d93350000 73728 C:\Windows\System32\drivers\vdrvroot.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Virtual Drive Root Enumerator 131795770645349720 0xfffff80d93370000 135168 C:\Windows\system32\drivers\pdc.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Power Dependency Coordinator Driver 131795770645349720 0xfffff80d933a0000 102400 C:\Windows\system32\drivers\CEA.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Event Aggregation Kernel Mode Library 131795770645349720 0xfffff80d933c0000 147456 C:\Windows\System32\drivers\partmgr.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Partition driver 131795770645349720 0xfffff80d933f0000 163840 C:\Windows\System32\drivers\nvraid.sys 10.6.0.23 (PART_L3.131021-1012) NVIDIA Corporation NVIDIA® nForce(TM) RAID Driver 131795770645349720 0xfffff80d93420000 401408 C:\Windows\System32\drivers\CLASSPNP.SYS 10.0.14393.953 (rs1_release_inmarket.170303-1614) Microsoft Corporation SCSI Class System Dll 131795770645349720 0xfffff80d93490000 139264 C:\Windows\System32\drivers\vmbus.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Дочерний драйвер шины виртуальной машины Microsoft Hyper-V 131795770645349720 0xfffff80d934c0000 1212416 C:\Windows\System32\drivers\NDIS.SYS 10.0.14393.953 (rs1_release_inmarket.170303-1614) Microsoft Corporation NDIS (Network Driver Interface Specification) 131795770645349720 0xfffff80d935f0000 495616 C:\Windows\System32\drivers\NETIO.SYS 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Network I/O Subsystem 131795770645349720 0xfffff80d93670000 135168 C:\Windows\System32\drivers\hvsocket.sys 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Microsoft Hyper-V Socket Provider 131795770645349720 0xfffff80d936a0000 98304 C:\Windows\System32\drivers\vmbkmcl.sys 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Hyper-V VMBus KMCL 131795770645349720 0xfffff80d936c0000 57344 C:\Windows\System32\drivers\winhv.sys 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Windows Hypervisor Interface Driver 131795770645349720 0xfffff80d936d0000 40960 C:\Windows\System32\drivers\pciide.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Generic PCI IDE Bus Driver 131795770645349720 0xfffff80d936e0000 69632 C:\Windows\System32\drivers\PCIIDEX.SYS 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation PCI IDE Bus Driver Extension 131795770645349720 0xfffff80d93700000 593920 C:\Windows\System32\drivers\spaceport.sys 10.0.14393.1914 (rs1_release_inmarket.171117-1700) Microsoft Corporation Storage Spaces Driver 131795770645349720 0xfffff80d937a0000 40960 C:\Windows\System32\drivers\intelide.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Intel PCI IDE Driver 131795770645349720 0xfffff80d937b0000 98304 C:\Windows\System32\drivers\volmgr.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Драйвер диспетчера томов 131795770645349720 0xfffff80d937d0000 385024 C:\Windows\System32\drivers\volmgrx.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Драйвер расширения диспетчера томов 131795770645349720 0xfffff80d93830000 122880 C:\Windows\System32\drivers\mountmgr.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Диспетчер точек подключения 131795770645349720 0xfffff80d93850000 172032 C:\Windows\System32\drivers\nvstor.sys 10.6.0.23 (PART_L3.131021-1012) NVIDIA Corporation NVIDIA® nForce(TM) Sata Performance Driver 131795770645349720 0xfffff80d93880000 532480 C:\Windows\System32\drivers\storport.sys 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft Storage Port Driver 131795770645349720 0xfffff80d93910000 49152 C:\Windows\System32\drivers\atapi.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ATAPI IDE Miniport Driver 131795770645349720 0xfffff80d93920000 217088 C:\Windows\System32\drivers\ataport.SYS 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ATAPI Driver Extension 131795770645349720 0xfffff80d93960000 147456 C:\Windows\System32\drivers\storahci.sys 10.0.14393.2068 (rs1_release.180209-1727) Microsoft Corporation MS AHCI Storport Miniport Driver 131795770645349720 0xfffff80d93990000 102400 C:\Windows\System32\drivers\stornvme.sys 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation Microsoft NVM Express Storport Miniport Driver 131795770645349720 0xfffff80d939b0000 114688 C:\Windows\System32\drivers\EhStorClass.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Enhanced Storage Class driver for IEEE 1667 devices 131795770645349720 0xfffff80d939d0000 102400 C:\Windows\System32\drivers\fileinfo.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation FileInfo Filter Driver 131795770645349720 0xfffff80d939f0000 229376 C:\Windows\System32\Drivers\Wof.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Фильтр оверлея Windows 131795770645349720 0xfffff80d93a80000 2297856 C:\Windows\System32\Drivers\NTFS.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Драйвер файловой системы NT 131795770645349720 0xfffff80d93cc0000 57344 C:\Windows\System32\drivers\storvsc.sys 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Storage VSC Driver 131795770645349720 0xfffff80d93cd0000 53248 C:\Windows\System32\Drivers\Fs_Rec.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation File System Recognizer Driver 131795770645349720 0xfffff80d93d10000 483328 C:\Windows\System32\drivers\USBPORT.SYS 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Драйвер порта USB 1.1 и 2.0 131795770645349720 0xfffff80d93db0000 581632 C:\Windows\system32\mcupdate_GenuineIntel.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Intel Microcode Update Library 131795770645349720 0xfffff80d93e50000 405504 C:\Windows\System32\drivers\CLFS.SYS 10.0.14393.2068 (rs1_release.180209-1727) Microsoft Corporation Common Log File System Driver 131795770645349720 0xfffff80d93ec0000 151552 C:\Windows\System32\drivers\tm.sys 10.0.14393.2189 (rs1_release.180329-1711) Microsoft Corporation Kernel Transaction Manager Driver 131795770645349720 0xfffff80d93ef0000 94208 C:\Windows\system32\PSHED.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Драйвер аппаратных ошибок, специфичных для платформы 131795770645349720 0xfffff80d93f10000 49152 C:\Windows\system32\BOOTVID.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation VGA Boot Driver 131795770645349720 0xfffff80d93f20000 401408 C:\Windows\System32\drivers\FLTMGR.SYS 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Диспетчер фильтров файловых систем Майкрософт 131795770645349720 0xfffff80d93f90000 380928 C:\Windows\System32\drivers\msrpc.sys 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation Kernel Remote Procedure Call Provider 131795770645349720 0xfffff80d94000000 430080 C:\Windows\System32\drivers\fwpkclnt.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation FWP/IPsec Kernel-Mode API 131795770645349720 0xfffff80d94070000 172032 C:\Windows\System32\drivers\wfplwfs.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation WFP NDIS 6.30 Lightweight Filter Driver 131795770645349720 0xfffff80d940b0000 659456 C:\Windows\System32\DRIVERS\fvevol.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation BitLocker Drive Encryption Driver 131795770645349720 0xfffff80d94160000 45056 C:\Windows\System32\drivers\volume.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Volume driver 131795770645349720 0xfffff80d94170000 409600 C:\Windows\System32\drivers\volsnap.sys 10.0.14393.1794 (rs1_release.171008-1615) Microsoft Corporation Volume Shadow Copy driver 131795770645349720 0xfffff80d941e0000 106496 C:\Windows\System32\drivers\scmbus.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Storage Class Memory Bus Driver 131795770645349720 0xfffff80d94200000 294912 C:\Windows\System32\drivers\rdyboost.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ReadyBoost Driver 131795770645349720 0xfffff80d94250000 151552 C:\Windows\System32\Drivers\mup.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Драйвер поставщика множественных UNC 131795770645349720 0xfffff80d94280000 65536 C:\Windows\system32\drivers\iorate.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation I/O rate control Filter 131795770645349720 0xfffff80d942a0000 126976 C:\Windows\System32\drivers\disk.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation PnP Disk Driver 131795770645349720 0xfffff80d942e0000 102400 C:\Windows\System32\Drivers\crashdmp.sys 10.0.14393.351 (rs1_release_inmarket.161014-1755) Microsoft Corporation Crash Dump Driver 131795770645349720 0xfffff80d943c0000 200704 C:\Windows\System32\drivers\cdrom.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SCSI CD-ROM Driver 131795770645349720 0xfffff80d94400000 118784 C:\Windows\system32\drivers\filecrypt.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows sandboxing and encryption filter 131795770645349720 0xfffff80d94420000 57344 C:\Windows\system32\drivers\tbs.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Export driver for kernel mode TPM API 131795770645349720 0xfffff80d94430000 40960 C:\Windows\System32\Drivers\Null.SYS 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation NULL Driver 131795770645349720 0xfffff80d94440000 40960 C:\Windows\System32\Drivers\Beep.SYS 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation BEEP Driver 131795770645349720 0xfffff80d94450000 81920 C:\Windows\System32\drivers\BasicDisplay.sys 10.0.14393.1066 (rs1_release_sec.170327-1835) Microsoft Corporation Microsoft Basic Display Driver 131795770645349720 0xfffff80d94470000 81920 C:\Windows\System32\drivers\watchdog.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Watchdog Driver 131795770645349720 0xfffff80d94490000 2220032 C:\Windows\System32\drivers\dxgkrnl.sys 10.0.14393.2189 (rs1_release.180329-1711) Microsoft Corporation DirectX Graphics Kernel 131795770645349720 0xfffff80d946b0000 73728 C:\Windows\System32\drivers\BasicRender.sys 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation Microsoft Basic Render Driver 131795770645349720 0xfffff80d946d0000 102400 C:\Windows\System32\Drivers\Npfs.SYS 10.0.14393.1737 (rs1_release_inmarket.170914-1249) Microsoft Corporation NPFS Driver 131795770645349720 0xfffff80d94700000 143360 C:\Windows\system32\DRIVERS\tdx.sys 10.0.14393.1613 (rs1_release_d.170807-1806) Microsoft Corporation TDI Translation Driver 131795770645349720 0xfffff80d94740000 307200 C:\Windows\System32\DRIVERS\netbt.sys 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation MBT Transport driver 131795770645349720 0xfffff80d94790000 610304 C:\Windows\system32\drivers\afd.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Драйвер дополнительных функций для Winsock 131795770645349720 0xfffff80d94830000 102400 C:\Windows\System32\drivers\vwififlt.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Virtual WiFi Filter Driver 131795770645349720 0xfffff80d94850000 176128 C:\Windows\System32\drivers\pacer.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Планировщик пакетов QoS 131795770645349720 0xfffff80d94880000 73728 C:\Windows\system32\drivers\netbios.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation NetBIOS interface driver 131795770645349720 0xfffff80d948a0000 479232 C:\Windows\system32\DRIVERS\rdbss.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Драйвер подсистемы буферизации перенаправленного диска 131795770645349720 0xfffff80d94920000 581632 C:\Windows\system32\drivers\csc.sys 10.0.14393.953 (rs1_release_inmarket.170303-1614) Microsoft Corporation Windows Client Side Caching Driver 131795770645349720 0xfffff80d949b0000 106496 C:\Windows\system32\drivers\nsiproxy.sys 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation NSI Proxy 131795770645349720 0xfffff80d949d0000 53248 C:\Windows\System32\drivers\npsvctrig.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Named pipe service triggers 131795770645349720 0xfffff80d949f0000 40960 C:\Windows\System32\drivers\gpuenergydrv.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation GPU Energy Kernel Driver 131795770645349720 0xfffff80d94a00000 172032 C:\Windows\System32\Drivers\dfsc.sys 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation DFS Namespace Client Driver 131795770645349720 0xfffff80d94a50000 258048 C:\Windows\system32\DRIVERS\ahcache.sys 10.0.14393.351 (rs1_release_inmarket.161014-1755) Microsoft Corporation Application Compatibility Cache 131795770645349720 0xfffff80d94a90000 69632 C:\Windows\System32\DriverStore\FileRepository\compositebus.inf_amd64_a140581a8f8b58b7\CompositeBus.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Multi-Transport Composite Bus Enumerator 131795770645349720 0xfffff80d94ab0000 57344 C:\Windows\System32\drivers\kdnic.sys 6.01.00.0000 (rs1_release.160715-1616) Microsoft Corporation Microsoft Kernel Debugger Network Miniport 131795770645349720 0xfffff80d94ac0000 86016 C:\Windows\System32\drivers\umbus.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User-Mode Bus Enumerator 131795770645349720 0xfffff80d94ae0000 139264 C:\Windows\System32\drivers\i8042prt.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Драйвер порта i8042 131795770645349720 0xfffff80d94b10000 77824 C:\Windows\System32\drivers\kbdclass.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Драйвер класса клавиатуры 131795770645349720 0xfffff80d94b30000 73728 C:\Windows\System32\drivers\mouclass.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Драйвер класса мыши 131795770645349720 0xfffff80d94b80000 110592 C:\Windows\System32\drivers\HDAudBus.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation High Definition Audio Bus Driver 131795770645349720 0xfffff80d94ba0000 397312 C:\Windows\System32\drivers\portcls.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Port Class (Class Driver for Port/Miniport Devices) 131795770645349720 0xfffff80d94c10000 135168 C:\Windows\System32\drivers\drmk.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Trusted Audio Drivers 131795770645349720 0xfffff80d94c40000 425984 C:\Windows\System32\drivers\ks.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Kernel CSA Library 131795770645349720 0xfffff80d94cb0000 61440 C:\Windows\System32\drivers\usbohci.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation OHCI USB Miniport Driver 131795770645349720 0xfffff80d94cc0000 57344 C:\Windows\System32\drivers\CmBatt.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Control Method Battery Driver 131795770645349720 0xfffff80d94cd0000 57344 C:\Windows\System32\drivers\BATTC.SYS 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Battery Class Driver 131795770645349720 0xfffff80d94ce0000 176128 C:\Windows\System32\drivers\intelppm.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Processor Device Driver 131795770645349720 0xfffff80d94d10000 53248 C:\Windows\System32\drivers\NdisVirtualBus.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Перечислитель виртуальных сетевых адаптеров (Майкрософт) 131795770645349720 0xfffff80d94d20000 2588672 C:\Windows\System32\drivers\tcpip.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Драйвер TCP/IP 131795770645349720 0xfffff80d94fa0000 49152 C:\Windows\System32\drivers\swenum.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Plug and Play Software Device Enumerator 131795770645349720 0xfffff80d94fb0000 57344 C:\Windows\System32\drivers\rdpbus.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft RDP Bus Device driver 131795770645349720 0xfffff80d95200000 344064 C:\Windows\system32\DRIVERS\udfs.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation UDF File System Driver 131795770645349720 0xfffff80d95280000 61440 C:\Windows\System32\Drivers\dump_diskdump.sys 131795770645349720 0xfffff80d952c0000 147456 C:\Windows\System32\Drivers\dump_storahci.sys 131795770645349720 0xfffff80d95310000 118784 C:\Windows\System32\Drivers\dump_dumpfve.sys 131795770645349720 0xfffff80d95330000 1122304 C:\Windows\system32\drivers\HTTP.sys 10.0.14393.1532 (rs1_release_d.170711-1840) Microsoft Corporation Стек протокола HTTP 131795770645349720 0xfffff80d95450000 122880 C:\Windows\system32\drivers\WudfPf.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Driver Foundation - User-mode Driver Framework Platform Driver 131795770645349720 0xfffff80d95470000 139264 C:\Windows\system32\DRIVERS\bowser.sys 10.0.14393.447 (rs1_release_inmarket.161102-0100) Microsoft Corporation NT Lan Manager Datagram Receiver Driver 131795770645349720 0xfffff80d954a0000 479232 C:\Windows\system32\DRIVERS\mrxsmb.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT SMB Minirdr 131795770645349720 0xfffff80d95520000 102400 C:\Windows\System32\drivers\mpsdrv.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Protection Service Driver 131795770645349720 0xfffff80d95540000 241664 C:\Windows\system32\DRIVERS\mrxsmb20.sys 10.0.14393.2035 (rs1_release_inmarket.180110-1910) Microsoft Corporation Longhorn SMB 2.0 Redirector 131795770645349720 0xfffff80d95580000 278528 C:\Windows\System32\DRIVERS\srvnet.sys 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Server Network driver 131795770645349720 0xfffff80d955d0000 741376 C:\Windows\System32\DRIVERS\srv2.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Драйвер сервера SMB 2.0 131795770645349720 0xfffff80d95690000 315392 C:\Windows\system32\DRIVERS\mrxsmb10.sys 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Longhorn SMB Downlevel SubRdr 131795770645349720 0xfffff80d956e0000 573440 C:\Windows\System32\DRIVERS\srv.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Server driver 131795770645349720 0xfffff80d95770000 81920 C:\Windows\System32\drivers\tcpipreg.sys 10.0.14393.1480 (rs1_release.170706-2004) Microsoft Corporation TCP/IP Registry Compatibility Driver 131795770645349720 0xfffff80d95860000 684032 C:\Windows\System32\drivers\dxgmms2.sys 10.0.14393.2189 (rs1_release.180329-1711) Microsoft Corporation DirectX Graphics MMS 131795770645349720 0xfffff80d95910000 155648 C:\Windows\system32\drivers\luafv.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Драйвер фильтра виртуализации файлов LUA 131795770645349720 0xfffff80d95960000 102400 C:\Windows\system32\drivers\storqosflt.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Фильтр качества обслуживания хранилища 131795770645349720 0xfffff80d95980000 98304 C:\Windows\System32\drivers\registry.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Registry Containment Driver 131795770645349720 0xfffff80d959a0000 90112 C:\Windows\system32\drivers\lltdio.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Link-Layer Topology Mapper I/O Driver 131795770645349720 0xfffff80d959c0000 98304 C:\Windows\system32\drivers\mslldp.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Драйвер протокола Microsoft LLDP 131795770645349720 0xfffff80d959e0000 106496 C:\Windows\system32\drivers\rspndr.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Link-Layer Topology Responder Driver for NDIS 6 131795770645349720 0xfffff80d95ae0000 57344 C:\Windows\System32\drivers\USBD.SYS 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Universal Serial Bus Driver 131795770645349720 0xfffff80d95af0000 434176 C:\Windows\system32\DRIVERS\HdAudio.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation High Definition Audio Function Driver 131795770645349720 0xfffff80d95b60000 57344 C:\Windows\system32\drivers\ksthunk.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Kernel Streaming WOW Thunk Service 131795770645349720 0xfffff80d95bc0000 73728 C:\Windows\System32\drivers\HIDPARSE.SYS 10.0.14393.2068 (rs1_release.180209-1727) Microsoft Corporation Hid Parsing Library 131795770645349720 0xfffff80d97020000 208896 C:\Windows\System32\Drivers\360AntiHacker64.sys 1.0.0.1149 360.cn 360安全卫士 网络防黑模块 131795770645349720 0xfffff80d97060000 102400 C:\Windows\system32\DRIVERS\360AvFlt.sys 1.1.0.1056 360.cn 360杀毒 文件监控驱动 131795770645349720 0xfffff80d97080000 217088 C:\Windows\system32\DRIVERS\BAPIDRV64.sys 2.0.0.1221 360.cn BAPIDRV 131795770645349720 0xfffff80d970c0000 372736 C:\Windows\system32\drivers\360netmon.sys 2.1.11.5195 360.cn 360netmon 131795770645349720 0xfffff80d97120000 356352 C:\Windows\system32\DRIVERS\360Box64.sys 2.1.0.1253 360.cn 360Box64 131795770645349720 0xfffff80d97180000 811008 C:\Windows\system32\DRIVERS\360FsFlt.sys 6.9.1.1751 360.cn 360 Total Security 131795770645349720 0xfffff80d97330000 69632 C:\Windows\System32\drivers\hidusb.sys 10.0.14393.82 (rs1_release.160805-1735) Microsoft Corporation USB Miniport Driver for Input Devices 131795770645349720 0xfffff80d97350000 192512 C:\Windows\System32\drivers\HIDCLASS.SYS 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека классов HID 131795770645349720 0xfffff80d97380000 61440 C:\Windows\System32\drivers\mouhid.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Драйвер фильтра мыши HID 131795770645349720 0xfffff80d97390000 106496 C:\Windows\System32\drivers\rassstp.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation RAS SSTP Miniport Call Manager 131795770645349720 0xfffff80d973b0000 86016 C:\Windows\System32\DRIVERS\NDProxy.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation NDIS Proxy 131795770645349720 0xfffff80d973d0000 159744 C:\Windows\System32\drivers\AgileVpn.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Диспетчер вызовов минипорта RAS Agile VPN 131795770645349720 0xfffff80d97420000 131072 C:\Windows\System32\drivers\rasl2tp.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation RAS L2TP mini-port/call-manager driver 131795770645349720 0xfffff80d97460000 126976 C:\Windows\System32\drivers\raspptp.sys 10.0.14393.2035 (rs1_release_inmarket.180110-1910) Microsoft Corporation Peer-to-Peer Tunneling Protocol 131795770645349720 0xfffff80d974a0000 110592 C:\Windows\System32\drivers\raspppoe.sys 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation RAS PPPoE mini-port/call-manager driver 131795770645349720 0xfffff80d974c0000 57344 C:\Windows\System32\DRIVERS\ndistapi.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation NDIS 3.0 connection wrapper driver 131795770645349720 0xfffff80d974d0000 221184 C:\Windows\System32\drivers\ndiswan.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation MS PPP Framing Driver (Strong Encryption) 131795770645349720 0xfffff80d97510000 110592 C:\Windows\System32\DRIVERS\wanarp.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation MS Remote Access and Routing ARP Driver 131795770645349720 0xfffff80d97550000 151552 C:\Windows\System32\drivers\E1G6032E.sys 8.4.13.0 built by: WinDDK Intel Corporation Intel(R) PRO/1000 Adapter NDIS 6 deserialized driver 131795770645349720 0xfffff80d97580000 192512 C:\Windows\System32\drivers\tunnel.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Драйвер интерфейса туннеля (Майкрософт) 131795770645349720 0xfffff80d97600000 106496 C:\Windows\system32\Drivers\PROCMON24.SYS 3.10 Sysinternals - www.sysinternals.com Process Monitor Driver 131795780236159256 0xfffff80d97620000 49152 C:\Windows\System32\drivers\npf.sys 4.1.0.2980 Riverbed Technology, Inc. npf.sys (NT5/6 AMD64) Kernel Driver 131795770645349720 0xfffff80d97a60000 794624 C:\Windows\system32\drivers\peauth.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Protected Environment Authentication and Authorization Export Driver 131795770645349720 0xfffff80d97b30000 155648 C:\Windows\system32\drivers\Ndu.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Network Data Usage Monitoring Driver 131795770645349720 0xfffff80d97b60000 81920 C:\Windows\system32\drivers\mmcss.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation MMCSS Driver 131795770645349720 0xfffff80d97bb0000 73728 C:\Windows\System32\drivers\condrv.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Console Driver 10 320 4 9 00000000:000003e7 131765775908989732 0 0 1 Обязательная метка\Обязательный уровень системы NT AUTHORITY\СИСТЕМА smss.exe C:\Windows\System32\smss.exe \SystemRoot\System32\smss.exe Microsoft Corporation 10.0.14393.0 (rs1_release.160715-1616) Диспетчер сеанса Windows 11 3108 3092 12 00000000:0031f1da 131765777624392598 0 0 1 Обязательная метка\Средний обязательный уровень WIN-0UOTFKKVN1S\User Explorer.EXE C:\Windows\Explorer.EXE C:\Windows\Explorer.EXE Microsoft Corporation 10.0.14393.0 (rs1_release.160715-1616) Проводник 131795770645352881 0x31b0000 12288 C:\Windows\system32\sfc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows File Protection 131795770645352881 0x5db0000 397312 C:\Program Files\Uninstall Tool\utshellext.dll 1.1.0.15 CrystalIDEA Software Uninstall Tool Shell Extension 131795770645352881 0x81a0000 8937472 C:\Program Files\MICROS~1\Office16\1049\GrooveIntlResource.dll 16.0.4266.1001 Корпорация Майкрософт Модуль международных ресурсов для Microsoft OneDrive для бизнеса 131795770645352881 0x8cb0000 593920 C:\Windows\SYSTEM32\UIRibbonRes.dll 10.0.14393.2189 (rs1_release.180329-1711) Microsoft Corporation Windows Ribbon Framework Resources 131795770645352881 0x5bf70000 667648 C:\Windows\WinSxS\amd64_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.9247_none_08e394a1a83e212f\MSVCR90.dll 9.00.30729.9247 Microsoft Corporation Microsoft® C Runtime Library 131795770645352881 0x180000000 241664 C:\Program Files (x86)\Notepad++\NppShell_06.dll 0.1 ShellHandler for Notepad++ (64 bit) 131795770645352881 0x7ff6a5b30000 4665344 C:\Windows\Explorer.EXE 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Проводник 131795770645352881 0x7ff7808b0000 8527872 C:\Windows\system32\ntoskrnl.exe 10.0.14393.2189 (rs1_release.180329-1711) Microsoft Corporation NT Kernel & System 131795770645352881 0x7ffaa6c80000 2093056 C:\Windows\system32\wpdshext.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширение оболочки для переносных устройств 131795770645352881 0x7ffaab350000 1683456 C:\Windows\System32\comsvcs.dll 2001.12.10941.16384 (rs1_release_1.180305-1842) Microsoft Corporation COM+ Services 131795770645352881 0x7ffaab4f0000 1400832 C:\Windows\system32\connect.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Мастера подключений 131795770645352881 0x7ffaab650000 970752 C:\Windows\system32\rasgcw.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Страницы мастера RAS 131795770645352881 0x7ffaab880000 532480 C:\Windows\System32\MPRAPI.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation Windows NT MP Router Administration DLL 131795770645352881 0x7ffaab910000 905216 C:\Windows\System32\RASDLG.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API общих диалогов службы удаленного доступа 131795770645352881 0x7ffaac6e0000 13156352 C:\Windows\system32\ieframe.DLL 11.00.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Браузер 131795770645352881 0x7ffab0df0000 1626112 C:\Windows\SYSTEM32\d3d9.dll 10.0.14393.447 (rs1_release_inmarket.161102-0100) Microsoft Corporation Direct3D 9 Runtime 131795770645352881 0x7ffab0f80000 1777664 C:\Program Files\Windows Photo Viewer\PhotoViewer.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Просмотр фотографий Windows 131795770645352881 0x7ffab1d80000 262144 C:\Windows\system32\eappcfg.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Eap Peer Config 131795770645352881 0x7ffab2460000 2822144 C:\Windows\System32\netshell.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Оболочка сетевых подключений 131795770645352881 0x7ffab2720000 606208 C:\Windows\System32\DUser.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows DirectUser Engine 131795770645352881 0x7ffab27c0000 516096 C:\Windows\System32\imapi2.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation IMAPI версии 2 131795770645352881 0x7ffab2840000 253952 C:\Windows\System32\bthprops.cpl 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Приложение панели управления Bluetooth 131795770645352881 0x7ffab2880000 315392 C:\Windows\System32\cscobj.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Внутрипроцессный COM-объект используемый клиентами CSC API 131795770645352881 0x7ffab28d0000 802816 C:\Windows\System32\cscui.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Интерфейс кэширования на стороне клиента 131795770645352881 0x7ffab29a0000 1912832 C:\Windows\System32\pnidui.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Значок сетевой системы 131795770645352881 0x7ffab2b80000 212992 C:\Windows\system32\SettingMonitor.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Setting Synchronization Change Monitor 131795770645352881 0x7ffab2bc0000 204800 C:\Windows\System32\PortableDeviceTypes.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Portable Device (Parameter) Types Component 131795770645352881 0x7ffab33d0000 258048 C:\Windows\SYSTEM32\MLANG.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL многоязыковой поддержки 131795770645352881 0x7ffab34f0000 323584 C:\Windows\System32\Actioncenter.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Центр безопасности и обслуживания 131795770645352881 0x7ffab4af0000 606208 C:\Windows\SYSTEM32\AUDIOSES.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Сеанс обработки звука 131795770645352881 0x7ffab4b90000 655360 C:\Windows\System32\StructuredQuery.dll 7.0.14393.2068 (rs1_release.180209-1727) Microsoft Corporation Structured Query 131795770645352881 0x7ffab5120000 1691648 C:\Windows\system32\BatMeter.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Battery Meter Helper DLL 131795770645352881 0x7ffab5520000 3231744 C:\Windows\SYSTEM32\MsftEdit.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Элемент управления "Поле ввода форматированного текста", версия 8.5 131795770645352881 0x7ffab5b40000 2527232 C:\Windows\SYSTEM32\DWrite.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Службы Microsoft DirectX Typography 131795770645352881 0x7ffab7d80000 753664 C:\Windows\System32\RASAPI32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API удаленного доступа 131795770645352881 0x7ffab7e40000 3420160 C:\Windows\System32\SyncCenter.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Центр синхронизации Майкрософт 131795770645352881 0x7ffab8190000 9191424 C:\Windows\System32\TwinUI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation TWINUI 131795770645352881 0x7ffab8da0000 1675264 C:\Windows\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.14393.1715_none_aec701fbddd850fa\gdiplus.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Microsoft GDI+ 131795770645352881 0x7ffab92e0000 827392 C:\Windows\system32\Windows.Storage.Search.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows.Storage.Search 131795770645352881 0x7ffab93b0000 897024 C:\Windows\System32\TokenBroker.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Token Broker 131795770645352881 0x7ffab9490000 860160 C:\Windows\system32\ntshrui.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширения оболочки, обеспечивающие общий доступ 131795770645352881 0x7ffab95c0000 4091904 C:\Windows\system32\UIRibbon.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Платформа ленты Windows 131795770645352881 0x7ffab99b0000 499712 C:\Windows\system32\dxp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширение оболочки компонента Device Stage 131795770645352881 0x7ffab9ba0000 389120 C:\Windows\SYSTEM32\searchfolder.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SearchFolder 131795770645352881 0x7ffaba950000 188416 C:\Windows\System32\EthernetMediaManager.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Ethernet Media Manager DLL 131795770645352881 0x7ffabaa50000 339968 C:\Windows\System32\NetworkUXBroker.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation NetworkUXBroker DLL 131795770645352881 0x7ffabaab0000 94208 C:\Windows\SYSTEM32\profext.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation profext 131795770645352881 0x7ffabab30000 303104 C:\Windows\System32\NotificationObjFactory.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Notifications Object Factory 131795770645352881 0x7ffabac60000 151552 C:\Windows\System32\EhStorAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Enhanced Storage API 131795770645352881 0x7ffabacc0000 1380352 C:\Windows\System32\SharedStartModel.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Shared Start Model InProc Server 131795770645352881 0x7ffabae20000 40960 C:\Windows\SYSTEM32\msiltcfg.dll 5.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Installer Configuration API Stub 131795770645352881 0x7ffabae60000 77824 C:\Windows\System32\DEVRTL.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Device Management Run Time Library 131795770645352881 0x7ffabaea0000 266240 C:\Windows\system32\SHDOCVW.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека объектов документов и элементов управления оболочки 131795770645352881 0x7ffabaf70000 270336 C:\Windows\SYSTEM32\edputil.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служебная программа EDP 131795770645352881 0x7ffabafc0000 700416 C:\Windows\System32\wer.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека сообщений об ошибках Windows 131795770645352881 0x7ffabb2b0000 1089536 C:\Windows\SYSTEM32\settingsynccore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Setting Synchronization Core 131795770645352881 0x7ffabb430000 65536 C:\Windows\SYSTEM32\pcacli.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Program Compatibility Assistant Client Module 131795770645352881 0x7ffabb490000 512000 C:\Windows\SYSTEM32\TWINAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation twinapi 131795786030517308 0x7ffabb910000 344064 C:\Windows\System32\container.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Windows Containers 131795786030225106 0x7ffabb970000 487424 C:\Windows\System32\daxexec.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation daxexec 131795770645352881 0x7ffabba80000 995328 C:\Windows\System32\twinui.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation TWINUI.APPCORE 131795786377372706 0x7ffabbb80000 61440 C:\Windows\System32\dsclient.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Data Sharing Service Client DLL 131795786377355113 0x7ffabbb90000 581632 C:\Windows\System32\Windows.System.Launcher.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows.System.Launcher 131795770645352881 0x7ffabbc40000 643072 C:\Windows\SYSTEM32\MSVCP140.dll 14.10.24516.0 built by: VCTOOLSRELESC Microsoft Corporation Microsoft® C Runtime Library 131795770645352881 0x7ffabbce0000 90112 C:\Windows\SYSTEM32\VCRUNTIME140.dll 14.10.24516.0 built by: VCTOOLSRELESC Microsoft Corporation Microsoft® C Runtime Library 131795786377364261 0x7ffabbd00000 36864 C:\Windows\System32\WpPortingLibrary.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation <d> DLL 131795770645352881 0x7ffabbd20000 106496 C:\Windows\SYSTEM32\settingsyncpolicy.dll 10.0.14393.82 (rs1_release.160805-1735) Microsoft Corporation SettingSync Policy 131795770645352881 0x7ffabc0b0000 65536 C:\Windows\SYSTEM32\LINKINFO.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Volume Tracking 131795770645352881 0x7ffabc510000 90112 C:\Windows\system32\execmodelproxy.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ExecModelProxy 131795770645352881 0x7ffabc880000 73728 C:\Windows\SYSTEM32\cscapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Offline Files Win32 API 131795786376748307 0x7ffabcef0000 102400 C:\Windows\System32\Windows.Shell.ServiceHostBuilder.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows.Shell.ServiceHostBuilder 131795770645352881 0x7ffabcf30000 110592 C:\Windows\SYSTEM32\MPR.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека маршрутизации для нескольких служб доступа 131795770645352881 0x7ffabd3c0000 368640 C:\Windows\System32\InputSwitch.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Переключатель ввода Microsoft Windows 131795770645352881 0x7ffabd4a0000 1613824 C:\Windows\System32\Windows.Globalization.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Globalization 131795770645352881 0x7ffabd670000 315392 C:\Windows\System32\framedynos.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation WMI SDK Provider Framework 131795770645352881 0x7ffabd6c0000 1306624 C:\Windows\System32\werconcpl.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation PRS CPL 131795770645352881 0x7ffabd800000 876544 C:\Windows\System32\NPSMDesktopProvider.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation <d> Библиотека DLL локального поставщика рабочего стола NPSM 131795770645352881 0x7ffabda60000 1241088 C:\Windows\System32\wscui.cpl 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Центр безопасности и обслуживания 131795770645352881 0x7ffabdbb0000 1736704 C:\Windows\SYSTEM32\DUI70.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Подсистема DirectUI Windows 131795770645352881 0x7ffabdeb0000 86016 C:\Windows\system32\wpdshserviceobj.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Portable Device Shell Service Object 131795770645352881 0x7ffabded0000 413696 C:\Windows\system32\stobject.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Объект службы оболочки Systray 131795770645352881 0x7ffabe070000 610304 C:\Windows\SYSTEM32\efswrt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Storage Protection Windows Runtime DLL 131795770645352881 0x7ffabe470000 180224 C:\Windows\System32\wscinterop.dll 10.0.14393.479 (rs1_release.161110-2025) Microsoft Corporation Windows Health Center WSC Interop 131795770645352881 0x7ffabe4d0000 286720 C:\Windows\System32\MSWB7.dll 10.0.14393.1737 (rs1_release_inmarket.170914-1249) Microsoft Corporation MSWB7 DLL 131795770645352881 0x7ffabe580000 831488 C:\Program Files (x86)\360\Total Security\MenuEx64.dll 9, 6, 0, 1001 360 Total Security 131795770645352881 0x7ffabe650000 405504 C:\Windows\system32\zipfldr.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Сжатые ZIP-папки 131795770645352881 0x7ffabe850000 155648 C:\Windows\System32\IDStore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Identity Store 131795770645352881 0x7ffabe9a0000 94208 C:\Windows\system32\Syncreg.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Synchronization Framework Registration 131795770645352881 0x7ffabe9c0000 188416 C:\Windows\SYSTEM32\globinputhost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Globalization Extension API for Input 131795770645352881 0x7ffabebf0000 1208320 C:\Windows\system32\NetworkExplorer.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Сетевой проводник 131795770645352881 0x7ffabef80000 69632 C:\Windows\System32\sfc_os.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows File Protection 131795770645352881 0x7ffabf0b0000 176128 C:\Windows\System32\playtomenu.dll 12.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека меню функции "Передать на устройство" 131795770645352881 0x7ffabf0e0000 372736 C:\Windows\System32\hnetcfg.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Диспетчер конфигурации домашней сети 131795770645352881 0x7ffabf330000 2457600 C:\Windows\System32\msxml6.dll 6.30.14393.2156 Microsoft Corporation MSXML 6.0 131795770645352881 0x7ffabf590000 208896 C:\Windows\system32\syncui.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Портфель Windows 131795770645352881 0x7ffabf5d0000 2924544 C:\Windows\SYSTEM32\WININET.dll 11.00.14393.447 (rs1_release_inmarket.161102-0100) Microsoft Corporation Расширения Интернета для Win32 131795770645352881 0x7ffabf8c0000 802816 C:\Windows\system32\Windows.Internal.Shell.Broker.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation Windows Shell Broker 131795786456426767 0x7ffabfb00000 626688 C:\Windows\System32\ContentDeliveryManager.Utilities.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation ContentDeliveryManager.Utilities 131795770645352881 0x7ffabfba0000 212992 C:\Windows\System32\WSCAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API центра обеспечения безопасности Windows 131795770645352881 0x7ffabfdc0000 86016 C:\Windows\system32\keepaliveprovider.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Keep alive provider API 131795770645352881 0x7ffabfe50000 643072 C:\Windows\System32\wpnprv.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик подключения платформы push-уведомлений Windows 131795770645352881 0x7ffabff10000 155648 C:\Windows\system32\srvcli.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Server Service Client DLL 131795770645352881 0x7ffabff60000 135168 C:\Windows\system32\ncryptsslp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft SChannel Provider 131795770645352881 0x7ffac01e0000 397312 C:\Windows\System32\wincorlib.DLL 10.0.14393.576 (rs1_release_inmarket.161208-2252) Microsoft Corporation Microsoft Windows ® WinRT core library 131795770645352881 0x7ffac0250000 2179072 C:\Program Files\MICROS~1\Office16\GROOVEEX.DLL 16.0.4266.1001 Microsoft Corporation Microsoft OneDrive for Business Extensions 131795770645352881 0x7ffac0470000 1478656 C:\Windows\SYSTEM32\MFPlat.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Media Foundation Platform DLL 131795770645352881 0x7ffac05f0000 94208 C:\Windows\System32\wwapi.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation WWAN API 131795770645352881 0x7ffac0610000 3088384 C:\Windows\SYSTEM32\msi.dll 5.0.14393.2155 Microsoft Corporation Windows Installer 131795770645352881 0x7ffac0910000 724992 C:\Windows\System32\Windows.Networking.Connectivity.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Networking Connectivity Runtime DLL 131795770645352881 0x7ffac09d0000 884736 C:\Windows\System32\wpnapps.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Приложения для push-уведомлений Windows 131795770645352881 0x7ffac0ad0000 86016 C:\Windows\SYSTEM32\mskeyprotect.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик защиты ключей (Майкрософт) 131795770645352881 0x7ffac0af0000 114688 C:\Windows\System32\ATL.DLL 3.05.2284 Microsoft Corporation ATL Module for Windows XP (Unicode) 131795770645352881 0x7ffac0b40000 315392 C:\Windows\System32\dlnashext.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLNA Namespace DLL 131795770645352881 0x7ffac0b90000 380928 C:\Windows\System32\srchadmin.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Параметры индексирования 131795770645352881 0x7ffac0bf0000 3559424 C:\Windows\System32\ActXPrxy.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation ActiveX Interface Marshaling Library 131795770645352881 0x7ffac0f60000 151552 C:\Windows\SYSTEM32\CHARTV.dll 10.0.14393.351 (rs1_release_inmarket.161014-1755) Microsoft Corporation Chart View 131795770645352881 0x7ffac1b70000 122880 C:\Windows\System32\DevDispItemProvider.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Подсистема DeviceItem inproc devquery 131795770645352881 0x7ffac1cc0000 163840 C:\Windows\System32\Windows.Networking.Sockets.PushEnabledApplication.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows.Networking.Sockets.PushEnabledApplication DLL 131795770645352881 0x7ffac1d60000 589824 C:\Windows\System32\webio.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API протоколов передачи по Веб 131795770645352881 0x7ffac1e50000 188416 C:\Windows\SYSTEM32\RTWorkQ.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL для WorkQueue реального времени 131795770645352881 0x7ffac1fd0000 999424 C:\Windows\system32\wbem\fastprox.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation WMI Custom Marshaller 131795770645352881 0x7ffac20d0000 110592 C:\Windows\System32\RMCLIENT.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Resource Manager Client 131795770645352881 0x7ffac21d0000 81920 C:\Windows\system32\wbem\wbemsvc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation WMI 131795770645352881 0x7ffac2360000 57344 C:\Windows\System32\TimeBrokerClient.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Time Broker Client Library 131795770645352881 0x7ffac23c0000 331776 C:\Windows\System32\OneCoreCommonProxyStub.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation OneCore Common Proxy Stub 131795770645352881 0x7ffac2530000 270336 C:\Windows\system32\hnetcfgclient.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиент API конфигурации домашней сети 131795770645352881 0x7ffac2700000 98304 C:\Windows\system32\NETAPI32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API DLL 131795770645352881 0x7ffac27a0000 1642496 C:\Users\User\AppData\Local\Microsoft\OneDrive\18.111.0603.0006\amd64\FileSyncShell64.dll 18.111.0603.0006 Microsoft Corporation Microsoft OneDrive Shell Extension 131795770645352881 0x7ffac2960000 143360 C:\Windows\system32\mssprxy.dll 7.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation Microsoft Search Proxy 131795770645352881 0x7ffac2990000 385024 C:\Windows\SYSTEM32\NInput.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Pen and Touch Input Component 131795770645352881 0x7ffac29f0000 159744 C:\Windows\system32\NetSetupApi.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Network Configuration API 131795770645352881 0x7ffac2a20000 81920 C:\Windows\System32\rtutils.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Routing Utilities 131795770645352881 0x7ffac2b80000 40960 C:\Windows\SYSTEM32\VERSION.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Version Checking and File Installation Libraries 131795770645352881 0x7ffac2cb0000 778240 C:\Windows\System32\winsqlite3.dll 3.12.2 SQLite Development Team SQLite is a software library that implements a self-contained, serverless, zero-configuration, transactional SQL database engine. 131795770645352881 0x7ffac2d80000 5140480 C:\Windows\System32\cdp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API клиента Microsoft (R) CDP 131795786030406949 0x7ffac3270000 40960 C:\Windows\System32\fltLib.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека фильтров 131795770645352881 0x7ffac32e0000 180224 C:\Windows\system32\twext.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Свойства: Предыдущие версии 131795770645352881 0x7ffac3350000 36864 C:\Windows\SYSTEM32\OLEACCHOOKS.DLL 7.2.14393.0 (rs1_release.160715-1616) Microsoft Corporation Active Accessibility Event Hooks Library 131795770645352881 0x7ffac3360000 1396736 C:\Windows\System32\wpncore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Ядро извещающих уведомлений Windows 131795770645352881 0x7ffac34e0000 1843200 C:\Windows\SYSTEM32\urlmon.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширения OLE32 для Win32 131795770645352881 0x7ffac37d0000 258048 C:\Windows\SYSTEM32\wdmaud.drv 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Системный звуковой драйвер Winmm 131795770645352881 0x7ffac3cb0000 2772992 C:\Windows\SYSTEM32\iertutil.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служебная программа времени выполнения для Internet Explorer 131795770645352881 0x7ffac4000000 274432 C:\Windows\SYSTEM32\policymanager.dll 10.0.14393.2035 (rs1_release_inmarket.180110-1910) Microsoft Corporation Policy Manager DLL 131795770645352881 0x7ffac4070000 499712 C:\Windows\SYSTEM32\dsreg.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation AD/AAD User Device Registration 131795770645352881 0x7ffac4140000 114688 C:\Windows\SYSTEM32\MSACM32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Фильтр диспетчера аудиосжатия Microsoft 131795770645352881 0x7ffac4220000 520192 C:\Windows\SYSTEM32\wbemcomn.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation WMI 131795770645352881 0x7ffac42a0000 659456 C:\Windows\System32\StateRepository.Core.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation StateRepository Core 131795770645352881 0x7ffac4450000 86016 C:\Windows\SYSTEM32\usermgrcli.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation UserMgr API DLL 131795770645352881 0x7ffac4470000 65536 C:\Windows\system32\wbem\wbemprox.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation WMI 131795770645352881 0x7ffac46d0000 4161536 C:\Windows\System32\Windows.StateRepository.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Сервер Windows StateRepository API Server 131795770645352881 0x7ffac4df0000 462848 C:\Windows\System32\provsvc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Домашняя группа Windows 131795770645352881 0x7ffac4ea0000 36864 C:\Windows\SYSTEM32\atlthunk.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation atlthunk.dll 131795770645352881 0x7ffac4f60000 143360 C:\Windows\System32\wcmapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Connection Manager Client API 131795770645352881 0x7ffac4f90000 221184 C:\Windows\System32\EhStorShell.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL расширения оболочки Windows Enhanced Storage 131795770645352881 0x7ffac4fd0000 618496 C:\Windows\System32\wlidprov.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft® Account Provider 131795770645352881 0x7ffac5070000 798720 C:\Windows\System32\Windows.Web.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL веб-клиента 131795770645352881 0x7ffac5140000 307200 C:\Windows\System32\AboveLockAppHost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AboveLockAppHost 131795770645352881 0x7ffac5190000 659456 C:\Windows\System32\NotificationController.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation NotificationController 131795770645352881 0x7ffac5350000 1765376 C:\Windows\System32\Windows.UI.Immersive.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation WINDOWS.UI.IMMERSIVE 131795770645352881 0x7ffac5500000 438272 C:\Windows\SYSTEM32\PhotoMetadataHandler.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Photo Metadata Handler 131795770645352881 0x7ffac5570000 339968 C:\Windows\system32\twinui.pcshell.dll 10.0.14393.351 (rs1_release_inmarket.161014-1755) Microsoft Corporation Twinui.PCShell 131795770645352881 0x7ffac55d0000 376832 C:\Windows\System32\windows.immersiveshell.serviceprovider.dll 10.0.14393.1593 (rs1_release.170731-1934) Microsoft Corporation Windows.ImmersiveShell.ServiceProvider 131795770645352881 0x7ffac5630000 339968 C:\Windows\System32\thumbcache.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Кэш эскизов Майкрософт 131795770645352881 0x7ffac5690000 4734976 C:\Windows\system32\explorerframe.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ExplorerFrame 131795770645352881 0x7ffac5bb0000 622592 C:\Program Files\Common Files\microsoft shared\ink\tiptsf.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Инфраструктура текстовых служб сенсорной клавиатуры и панели рукописного ввода 131795770645352881 0x7ffac5c70000 65536 C:\Program Files\Windows Photo Viewer\PhotoBase.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Photo Base Library 131795770645352881 0x7ffac5ce0000 1744896 C:\Windows\SYSTEM32\UIAutomationCore.DLL 7.2.14393.0 (rs1_release.160715-1616) Microsoft Corporation Основные автоматические компоненты Microsoft UI 131795770645352881 0x7ffac60e0000 221184 C:\Windows\System32\XmlLite.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft XmlLite Library 131795770645352881 0x7ffac6610000 40960 C:\Windows\System32\rasadhlp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Remote Access AutoDial Helper 131795770645352881 0x7ffac6650000 176128 C:\Windows\System32\npsm.dll 10.0.14393.447 (rs1_release_inmarket.161102-0100) Microsoft Corporation NPSM 131795780903771340 0x7ffac66a0000 86016 C:\Windows\System32\OnDemandConnRouteHelper.dll 10.0.14393.351 (rs1_release_inmarket.161014-1755) Microsoft Corporation On Demand Connctiond Route Helper 131795770645352881 0x7ffac69c0000 839680 C:\Windows\System32\WINHTTP.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Службы HTTP Windows 131795770645352881 0x7ffac6ac0000 835584 C:\Windows\System32\Windows.UI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Runtime UI Foundation DLL 131795770645352881 0x7ffac6ba0000 49152 C:\Windows\SYSTEM32\Secur32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Security Support Provider Interface 131795770645352881 0x7ffac6bd0000 413696 C:\Windows\SYSTEM32\OLEACC.dll 7.2.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Active Accessibility Core Component 131795770645352881 0x7ffac6c40000 2596864 C:\Windows\WinSxS\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.14393.953_none_42151e83c686086b\comctl32.dll 6.10 (rs1_release_inmarket.170303-1614) Microsoft Corporation Библиотека элементов управления взаимодействия с пользователем 131795770645352881 0x7ffac6ec0000 36864 C:\Windows\system32\IconCodecService.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Converts a PNG part of the icon to a legacy bmp icon 131795770645352881 0x7ffac6f50000 5632000 C:\Windows\System32\d2d1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека Microsoft D2D 131795770645352881 0x7ffac7580000 1077248 C:\Windows\SYSTEM32\MrmCoreR.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Windows MRM 131795770645352881 0x7ffac76a0000 159744 C:\Windows\SYSTEM32\sppc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Software Licensing Client DLL 131795770645352881 0x7ffac78f0000 647168 C:\Windows\System32\hgcpl.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Панель управления домашней группы 131795770645352881 0x7ffac7990000 155648 C:\Windows\SYSTEM32\SLC.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Software Licensing Client DLL 131795770645352881 0x7ffac79c0000 57344 C:\Windows\System32\npmproxy.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Network List Manager Proxy 131795770645352881 0x7ffac7aa0000 401408 C:\Windows\SYSTEM32\wlanapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows WLAN AutoConfig Client Side API DLL 131795782572474169 0x7ffac7ce0000 73728 C:\Windows\System32\ploptin.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Prelaunch OptIn 131795770645352881 0x7ffac7d40000 131072 C:\Windows\system32\SYNCENG.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Briefcase Engine 131795770645352881 0x7ffac7d90000 454656 C:\Windows\SYSTEM32\SndVolSSO.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Громкость SCA 131795770645352881 0x7ffac7f50000 73728 C:\Windows\system32\acppage.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека расширений для вкладки "Совместимость" 131795770645352881 0x7ffac7fc0000 2674688 C:\Windows\SYSTEM32\d3d10warp.dll 10.0.14393.576 (rs1_release_inmarket.161208-2252) Microsoft Corporation Direct3D 10 Rasterizer 131795770645352881 0x7ffac83d0000 106496 C:\Windows\SYSTEM32\dhcpcsvc.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служба DHCP-клиента 131795770645352881 0x7ffac83f0000 90112 C:\Windows\SYSTEM32\dhcpcsvc6.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиент DHCPv6 131795770645352881 0x7ffac8420000 434176 C:\Windows\System32\fwpuclnt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API пользовательского режима FWP/IPsec 131795770645352881 0x7ffac84e0000 53248 C:\Windows\System32\NotificationControllerPS.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation NotificationController Proxy Stub 131795770645352881 0x7ffac84f0000 299008 C:\Windows\system32\dataexchange.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation Data exchange 131795770645352881 0x7ffac8810000 45056 C:\Windows\SYSTEM32\WINNSI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Network Store Information RPC interface 131795770645352881 0x7ffac8880000 69632 C:\Windows\system32\WMICLNT.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation WMI Client API 131795770645352881 0x7ffac88a0000 2842624 C:\Windows\system32\d3d11.dll 10.0.14393.953 (rs1_release_inmarket.170303-1614) Microsoft Corporation Direct3D 11 Runtime 131795770645352881 0x7ffac8f90000 45056 C:\Windows\SYSTEM32\AVRT.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Среда выполнения мультимедиа в реальном времени 131795770645352881 0x7ffac90b0000 90112 C:\Windows\SYSTEM32\wkscli.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Workstation Service Client DLL 131795770645352881 0x7ffac9220000 397312 C:\Windows\System32\wevtapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API настройки и использования событий 131795770645352881 0x7ffac9290000 40960 C:\Windows\system32\DSROLE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DS Setup Client DLL 131795770645352881 0x7ffac92e0000 1269760 C:\Windows\System32\WinTypes.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL основных типов Windows 131795770645352881 0x7ffac9480000 462848 C:\Windows\System32\MMDevApi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation MMDevice API 131795770645352881 0x7ffac9500000 2682880 C:\Windows\SYSTEM32\CoreUIComponents.dll 131795770645352881 0x7ffac9790000 98304 C:\Windows\System32\nlaapi.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Network Location Awareness 2 131795770645352881 0x7ffac97d0000 40960 C:\Windows\SYSTEM32\midimap.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft MIDI Mapper 131795778062352400 0x7ffac97e0000 73728 C:\Windows\System32\ploptin.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Prelaunch OptIn 131795770645352881 0x7ffac9bb0000 479232 C:\Windows\system32\es.dll 2001.12.10941.16384 (rs1_release.160715-1616) Microsoft Corporation COM+ 131795770645352881 0x7ffac9e00000 647168 C:\Windows\System32\PortableDeviceApi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Компоненты API для переносных устройств Windows 131795770645352881 0x7ffac9ea0000 81920 C:\Windows\System32\hcproviders.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщики компонента "Центр безопасности и обслуживания" 131795770645352881 0x7ffac9ec0000 294912 C:\Windows\System32\UIAnimation.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Animation Manager 131795770645352881 0x7ffac9f10000 221184 C:\Windows\System32\netprofm.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Network List Manager 131795770645352881 0x7ffac9f50000 1736704 C:\Windows\system32\windowscodecs.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Microsoft Windows Codecs Library 131795770645352881 0x7ffaca170000 45056 C:\Windows\SYSTEM32\ktmw32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows KTM Win32 Client DLL 131795770645352881 0x7ffaca180000 53248 C:\Windows\SYSTEM32\msacm32.drv 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Программа переназначения звуковых устройств 131795770645352881 0x7ffaca190000 241664 C:\Windows\System32\WorkFoldersShell.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширение оболочки рабочих папок (Майкрософт) 131795770645352881 0x7ffaca260000 45056 C:\Windows\System32\SystemEventsBrokerClient.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation system Events Broker Client Library 131795780604813666 0x7ffaca280000 73728 C:\Windows\System32\BitsProxy.dll 7.8.14393.0 (rs1_release.160715-1616) Microsoft Corporation Background Intelligent Transfer Service Proxy 131795770645352881 0x7ffaca340000 1593344 C:\Windows\SYSTEM32\PROPSYS.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Система страниц свойств (Майкрософт) 131795770645352881 0x7ffaca4e0000 77824 C:\Windows\SYSTEM32\wtsapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Remote Desktop Session Host Server SDK APIs 131795770645352881 0x7ffaca550000 36864 C:\Windows\SYSTEM32\ksuser.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User CSA Library 131795770645352881 0x7ffaca570000 421888 C:\Windows\SYSTEM32\Bcp47Langs.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation BCP47 Language Classes 131795770645352881 0x7ffaca5e0000 155648 C:\Windows\SYSTEM32\dwmapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Интерфейс API диспетчера окон рабочего стола (Майкрософт) 131795770645352881 0x7ffaca610000 143360 C:\Windows\System32\SAMLIB.dll 10.0.14393.82 (rs1_release.160805-1735) Microsoft Corporation SAM Library DLL 131795770645352881 0x7ffaca640000 770048 C:\Windows\System32\CoreMessaging.dll 10.0.14393.0 Microsoft Corporation Microsoft CoreMessaging Dll 131795770645352881 0x7ffaca770000 1380352 C:\Windows\system32\dcomp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft DirectComposition Library 131795770645352881 0x7ffacab40000 176128 C:\Windows\SYSTEM32\WINMMBASE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base Multimedia Extension API DLL 131795770645352881 0x7ffacaba0000 143360 C:\Windows\SYSTEM32\WINMM.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation MCI API DLL 131795770645352881 0x7ffacac60000 69632 C:\Windows\system32\credui.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Credential Manager User Interface 131795770645352881 0x7ffacac80000 28672 C:\Windows\SYSTEM32\MSIMG32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation GDIEXT Client DLL 131795770645352881 0x7ffacadf0000 499712 C:\Windows\SYSTEM32\apphelp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиентская библиотека совместимости приложений 131795770645352881 0x7ffacaf00000 610304 C:\Windows\SYSTEM32\UxTheme.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека тем UxTheme (Microsoft) 131795770645352881 0x7ffacb140000 593920 C:\Windows\System32\msvcp110_win.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Microsoft® STL110 C++ Runtime Library 131795770645352881 0x7ffacb1e0000 1163264 C:\Windows\SYSTEM32\twinapi.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation twinapi.appcore 131795770645352881 0x7ffacb300000 364544 C:\Windows\System32\VEEventDispatcher.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Visual Element Event dispatcher 131795770645352881 0x7ffacb3d0000 110592 C:\Windows\SYSTEM32\resourcepolicyclient.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Resource Policy Client 131795770645352881 0x7ffacb3f0000 163840 C:\Windows\System32\DEVOBJ.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Device Information Set DLL 131795770645352881 0x7ffacb420000 204800 C:\Windows\SYSTEM32\ntmarta.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик Windows NT MARTA 131795770645352881 0x7ffacb6f0000 143360 C:\Windows\SYSTEM32\gpapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиентские функции API групповой политики 131795770645352881 0x7ffacb780000 651264 C:\Windows\system32\dxgi.dll 10.0.14393.953 (rs1_release_inmarket.170303-1614) Microsoft Corporation DirectX Graphics Infrastructure 131795770645352881 0x7ffacb920000 81920 C:\Windows\SYSTEM32\WLDP.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Политика блокировки Windows 131795770645352881 0x7ffacbaf0000 495616 C:\Windows\system32\schannel.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик безопасности TLS/SSL 131795770645352881 0x7ffacbbb0000 208896 C:\Windows\system32\rsaenh.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Enhanced Cryptographic Provider 131795770645352881 0x7ffacbbf0000 40960 C:\Windows\SYSTEM32\DPAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Data Protection API 131795770645352881 0x7ffacbd30000 229376 C:\Windows\System32\IPHLPAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API вспомогательного приложения IP 131795770645352881 0x7ffacbd70000 659456 C:\Windows\System32\DNSAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Динамическая библиотека API DNS-клиента 131795770645352881 0x7ffacbe20000 53248 C:\Windows\system32\netutils.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API Helpers DLL 131795770645352881 0x7ffacbe40000 126976 C:\Windows\SYSTEM32\USERENV.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Userenv 131795770645352881 0x7ffacbfb0000 376832 C:\Windows\system32\mswsock.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширение поставщика службы API Microsoft Windows Sockets 2.0 131795770645352881 0x7ffacc150000 94208 C:\Windows\SYSTEM32\cryptsp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Cryptographic Service Provider API 131795770645352881 0x7ffacc170000 45056 C:\Windows\System32\CRYPTBASE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base cryptographic API DLL 131795770645352881 0x7ffacc1f0000 241664 C:\Windows\System32\NTASN1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft ASN.1 API 131795770645352881 0x7ffacc230000 155648 C:\Windows\System32\ncrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Маршрутизатор Windows NCrypt 131795770645352881 0x7ffacc350000 180224 C:\Windows\SYSTEM32\SspiCli.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Security Support Provider Interface 131795770645352881 0x7ffacc500000 102400 C:\Windows\System32\EventAggregation.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Event Aggregation User Mode Library 131795770645352881 0x7ffacc520000 622592 C:\Windows\SYSTEM32\sxs.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Fusion 2.5 131795770645352881 0x7ffacc5c0000 352256 C:\Windows\SYSTEM32\WINSTA.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Winstation Library 131795770645352881 0x7ffacc620000 176128 C:\Windows\SYSTEM32\bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795770645352881 0x7ffacc6e0000 61440 C:\Windows\System32\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795770645352881 0x7ffacc6f0000 311296 C:\Windows\System32\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795770645352881 0x7ffacc740000 81920 C:\Windows\System32\profapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Profile Basic API 131795770645352881 0x7ffacc760000 65536 C:\Windows\System32\MSASN1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ASN.1 Runtime APIs 131795770645352881 0x7ffacc8f0000 1003520 C:\Windows\System32\ucrtbase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645352881 0x7ffacc9f0000 434176 C:\Windows\System32\bcryptPrimitives.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Cryptographic Primitives Library 131795770645352881 0x7ffacca60000 122880 C:\Windows\System32\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795770645352881 0x7ffacca80000 348160 C:\Windows\System32\WINTRUST.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation Microsoft Trust Verification APIs 131795770645352881 0x7ffaccae0000 692224 C:\Windows\System32\SHCORE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795770645352881 0x7ffaccb90000 7180288 C:\Windows\System32\windows.storage.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API хранения Microsoft WinRT 131795770645352881 0x7ffacd270000 2215936 C:\Windows\System32\KERNELBASE.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645352881 0x7ffacd490000 1871872 C:\Windows\System32\CRYPT32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API32 криптографии 131795770645352881 0x7ffacd710000 638976 C:\Windows\System32\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645352881 0x7ffacd7b0000 270336 C:\Windows\System32\cfgmgr32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Configuration Manager DLL 131795770645352881 0x7ffacd810000 22056960 C:\Windows\System32\SHELL32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Общая библиотека оболочки Windows 131795770645352881 0x7ffaced20000 782336 C:\Windows\System32\OLEAUT32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795770645352881 0x7ffacede0000 450560 C:\Windows\System32\coml2.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft COM for Windows 131795770645352881 0x7ffacee50000 1183744 C:\Windows\System32\RPCRT4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795770645352881 0x7ffacef80000 32768 C:\Windows\System32\NSI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation NSI User-mode interface DLL 131795770645352881 0x7ffacef90000 647168 C:\Windows\System32\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795770645352881 0x7ffacf030000 651264 C:\Windows\System32\clbcatq.dll 2001.12.10941.16384 (rs1_release.160715-1616) Microsoft Corporation COM+ Configuration Catalog 131795770645352881 0x7ffacf0d0000 704512 C:\Windows\System32\KERNEL32.DLL 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645352881 0x7ffacf1e0000 1417216 C:\Windows\System32\MSCTF.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Серверная библиотека MSCTF 131795770645352881 0x7ffacf340000 4362240 C:\Windows\System32\SETUPAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Setup API 131795770645352881 0x7ffacf770000 212992 C:\Windows\System32\GDI32.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation GDI Client DLL 131795770645352881 0x7ffacf820000 434176 C:\Windows\System32\WS2_32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation 32-разрядная библиотека Windows Socket 2.0 131795770645352881 0x7ffacf890000 188416 C:\Windows\System32\IMM32.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Multi-User Windows IMM32 API Client DLL 131795770645352881 0x7ffacf8c0000 1462272 C:\Windows\System32\USER32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795770645352881 0x7ffacfb30000 2916352 C:\Windows\System32\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795770645352881 0x7ffacfe00000 114688 C:\Windows\System32\imagehlp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT Image Helper 131795770645352881 0x7ffacfe20000 663552 C:\Windows\System32\advapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795770645352881 0x7ffad0070000 1277952 C:\Windows\System32\ole32.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft OLE для Windows 131795770645352881 0x7ffad01b0000 335872 C:\Windows\System32\SHLWAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека небольших программ оболочки 131795770645352881 0x7ffad0210000 364544 C:\Windows\System32\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795770645352881 0x7ffad0270000 1908736 C:\Windows\SYSTEM32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 13 404 396 14 00000000:000003e7 131765776186257169 0 0 1 Обязательная метка\Обязательный уровень системы NT AUTHORITY\СИСТЕМА csrss.exe C:\Windows\system32\csrss.exe %SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16 Microsoft Corporation 10.0.14393.0 (rs1_release.160715-1616) Процесс исполнения клиент-сервер 15 468 460 16 00000000:000003e7 131765776223665667 0 0 1 Обязательная метка\Обязательный уровень системы NT AUTHORITY\СИСТЕМА csrss.exe C:\Windows\system32\csrss.exe %SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16 Microsoft Corporation 10.0.14393.0 (rs1_release.160715-1616) Процесс исполнения клиент-сервер 17 484 396 14 00000000:000003e7 131765776226419105 0 0 1 Обязательная метка\Обязательный уровень системы NT AUTHORITY\СИСТЕМА wininit.exe C:\Windows\system32\wininit.exe wininit.exe Microsoft Corporation 10.0.14393.0 (rs1_release.160715-1616) Автозагрузка приложений Windows 18 520 460 16 00000000:000003e7 131765776226825613 0 0 1 Обязательная метка\Обязательный уровень системы NT AUTHORITY\СИСТЕМА winlogon.exe C:\Windows\system32\winlogon.exe winlogon.exe Microsoft Corporation 10.0.14393.0 (rs1_release.160715-1616) Программа входа в систему Windows 131795770645375500 0x7ff7b5570000 696320 C:\Windows\system32\winlogon.exe 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Программа входа в систему Windows 131795770645375500 0x7ffabaab0000 94208 C:\Windows\SYSTEM32\profext.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation profext 131795770645375500 0x7ffabcf30000 110592 C:\Windows\system32\MPR.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека маршрутизации для нескольких служб доступа 131795770645375500 0x7ffac4450000 86016 C:\Windows\SYSTEM32\usermgrcli.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation UserMgr API DLL 131795770645375500 0x7ffac90b0000 90112 C:\Windows\system32\wkscli.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Workstation Service Client DLL 131795770645375500 0x7ffaca4e0000 77824 C:\Windows\SYSTEM32\wtsapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Remote Desktop Session Host Server SDK APIs 131795770645375500 0x7ffacadf0000 499712 C:\Windows\system32\apphelp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиентская библиотека совместимости приложений 131795770645375500 0x7ffacaee0000 81920 C:\Windows\SYSTEM32\dwminit.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DWMInit 131795770645375500 0x7ffacaf00000 610304 C:\Windows\system32\UxTheme.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека тем UxTheme (Microsoft) 131795770645375500 0x7ffacafa0000 118784 C:\Windows\system32\UXINIT.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows User Experience Session Initialization Dll 131795770645375500 0x7ffacb360000 176128 C:\Windows\system32\fwbase.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Firewall Base DLL 131795770645375500 0x7ffacb420000 204800 C:\Windows\SYSTEM32\ntmarta.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик Windows NT MARTA 131795770645375500 0x7ffacb460000 548864 C:\Windows\SYSTEM32\firewallapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API брандмауэра Windows 131795770645375500 0x7ffacbbf0000 40960 C:\Windows\system32\DPAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Data Protection API 131795770645375500 0x7ffacbe20000 53248 C:\Windows\system32\netutils.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API Helpers DLL 131795770645375500 0x7ffacbe40000 126976 C:\Windows\system32\USERENV.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Userenv 131795770645375500 0x7ffacc170000 45056 C:\Windows\system32\CRYPTBASE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base cryptographic API DLL 131795770645375500 0x7ffacc350000 180224 C:\Windows\system32\SspiCli.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Security Support Provider Interface 131795770645375500 0x7ffacc5c0000 352256 C:\Windows\SYSTEM32\winsta.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Winstation Library 131795770645375500 0x7ffacc620000 176128 C:\Windows\system32\bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795770645375500 0x7ffacc6f0000 311296 C:\Windows\System32\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795770645375500 0x7ffacc740000 81920 C:\Windows\System32\profapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Profile Basic API 131795770645375500 0x7ffacc760000 65536 C:\Windows\System32\MSASN1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ASN.1 Runtime APIs 131795770645375500 0x7ffacc8f0000 1003520 C:\Windows\System32\ucrtbase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645375500 0x7ffacc9f0000 434176 C:\Windows\System32\bcryptPrimitives.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Cryptographic Primitives Library 131795770645375500 0x7ffacca60000 122880 C:\Windows\System32\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795770645375500 0x7ffaccae0000 692224 C:\Windows\System32\shcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795770645375500 0x7ffacd270000 2215936 C:\Windows\System32\KERNELBASE.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645375500 0x7ffacd490000 1871872 C:\Windows\System32\CRYPT32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API32 криптографии 131795770645375500 0x7ffacee50000 1183744 C:\Windows\System32\RPCRT4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795770645375500 0x7ffacef90000 647168 C:\Windows\System32\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795770645375500 0x7ffacf0d0000 704512 C:\Windows\System32\KERNEL32.DLL 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645375500 0x7ffacf770000 212992 C:\Windows\System32\GDI32.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation GDI Client DLL 131795770645375500 0x7ffacf890000 188416 C:\Windows\System32\IMM32.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Multi-User Windows IMM32 API Client DLL 131795770645375500 0x7ffacf8c0000 1462272 C:\Windows\System32\user32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795770645375500 0x7ffacfb30000 2916352 C:\Windows\System32\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795770645375500 0x7ffacfe20000 663552 C:\Windows\System32\advapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795770645375500 0x7ffad0210000 364544 C:\Windows\System32\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795770645375500 0x7ffad0270000 1908736 C:\Windows\SYSTEM32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 19 588 484 17 00000000:000003e7 131765776277547408 0 0 1 Обязательная метка\Обязательный уровень системы NT AUTHORITY\СИСТЕМА lsass.exe C:\Windows\system32\lsass.exe C:\Windows\system32\lsass.exe Microsoft Corporation 10.0.14393.1770 (rs1_release.170917-1700) Local Security Authority Process 131795770645375702 0x222e3610000 12288 C:\Windows\system32\msprivs.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Переводы привилегий Майкрософт 131795770645375702 0x7ff6b2d20000 69632 C:\Windows\system32\lsass.exe 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Local Security Authority Process 131795770645375702 0x7ffab9170000 380928 C:\Windows\System32\vaultsvc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служба диспетчера учетных данных 131795770645375702 0x7ffabf170000 77824 C:\Windows\system32\hmkd.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows HMAC Key Derivation API 131795770645375702 0x7ffabf190000 126976 C:\Windows\System32\ngcpopkeysrv.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Microsoft Passport Proof-of-possession Key Service 131795770645375702 0x7ffabf1b0000 114688 C:\Windows\system32\keyiso.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служба изоляции ключей CNG 131795770645375702 0x7ffabf1d0000 192512 C:\Windows\System32\cryptnet.dll 10.0.14393.2035 (rs1_release_inmarket.180110-1910) Microsoft Corporation Crypto Network Related API 131795770645375702 0x7ffabf200000 405504 C:\Windows\SYSTEM32\cryptngc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API службы Microsoft Passport 131795770645375702 0x7ffabf270000 143360 C:\Windows\System32\SecureTimeAggregator.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Secure Time Aggregator 131795770645375702 0x7ffabf2a0000 159744 C:\Windows\system32\dssenh.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Enhanced DSS and Diffie-Hellman Cryptographic Provider 131795770645375702 0x7ffabf2d0000 344064 C:\Windows\system32\ncryptprov.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft KSP 131795770645375702 0x7ffabff60000 135168 C:\Windows\system32\ncryptsslp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft SChannel Provider 131795770645375702 0x7ffac0ac0000 53248 C:\Windows\system32\tbs.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation TBS 131795770645375702 0x7ffac0ad0000 86016 C:\Windows\SYSTEM32\mskeyprotect.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик защиты ключей (Майкрософт) 131795770645375702 0x7ffac1d60000 589824 C:\Windows\system32\webio.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API протоколов передачи по Веб 131795770645375702 0x7ffac6610000 40960 C:\Windows\System32\rasadhlp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Remote Access AutoDial Helper 131795770645375702 0x7ffac69c0000 839680 C:\Windows\system32\WINHTTP.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Службы HTTP Windows 131795770645375702 0x7ffac6b90000 53248 C:\Windows\system32\DSPARSE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Active Directory Domain Services API 131795770645375702 0x7ffac6ba0000 49152 C:\Windows\SYSTEM32\secur32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Security Support Provider Interface 131795770645375702 0x7ffac83d0000 106496 C:\Windows\SYSTEM32\dhcpcsvc.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служба DHCP-клиента 131795770645375702 0x7ffac83f0000 90112 C:\Windows\SYSTEM32\dhcpcsvc6.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиент DHCPv6 131795770645375702 0x7ffac8420000 434176 C:\Windows\System32\fwpuclnt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API пользовательского режима FWP/IPsec 131795770645375702 0x7ffac8810000 45056 C:\Windows\SYSTEM32\WINNSI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Network Store Information RPC interface 131795770645375702 0x7ffac8fa0000 253952 C:\Windows\system32\logoncli.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Net Logon Client DLL 131795770645375702 0x7ffac9220000 397312 C:\Windows\SYSTEM32\wevtapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API настройки и использования событий 131795770645375702 0x7ffac9290000 40960 C:\Windows\system32\DSROLE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DS Setup Client DLL 131795770645375702 0x7ffacb6f0000 143360 C:\Windows\SYSTEM32\gpapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиентские функции API групповой политики 131795770645375702 0x7ffacb960000 303104 C:\Windows\system32\AUTHZ.dll 10.0.14393.1737 (rs1_release_inmarket.170914-1249) Microsoft Corporation Authorization Framework 131795770645375702 0x7ffacb9b0000 294912 C:\Windows\system32\scecli.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиент редактора конфигураций безопасности 131795770645375702 0x7ffacba80000 49152 C:\Windows\SYSTEM32\SspiSrv.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation LSA SSPI RPC interface DLL 131795770645375702 0x7ffacba90000 221184 C:\Windows\system32\dpapisrv.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DPAPI Server 131795770645375702 0x7ffacbad0000 102400 C:\Windows\system32\efslsaext.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation LSA extension for EFS 131795770645375702 0x7ffacbaf0000 495616 C:\Windows\system32\schannel.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик безопасности TLS/SSL 131795770645375702 0x7ffacbb70000 245760 C:\Windows\system32\wdigest.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Digest Access 131795770645375702 0x7ffacbbb0000 208896 C:\Windows\system32\rsaenh.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Enhanced Cryptographic Provider 131795770645375702 0x7ffacbbf0000 40960 C:\Windows\SYSTEM32\DPAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Data Protection API 131795770645375702 0x7ffacbc00000 290816 C:\Windows\SYSTEM32\MicrosoftAccountCloudAP.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation MicrosoftAccount Cloud AP Plugin 131795770645375702 0x7ffacbc50000 372736 C:\Windows\system32\cloudAP.DLL 10.0.14393.1358 (rs1_release.170602-2252) Microsoft Corporation Cloud AP Security Package 131795770645375702 0x7ffacbcb0000 278528 C:\Windows\system32\pku2u.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Pku2u Security Package 131795770645375702 0x7ffacbd00000 139264 C:\Windows\system32\tspkg.DLL 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation Web Service Security Package 131795770645375702 0x7ffacbd30000 229376 C:\Windows\SYSTEM32\IPHLPAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API вспомогательного приложения IP 131795770645375702 0x7ffacbd70000 659456 C:\Windows\system32\DNSAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Динамическая библиотека API DNS-клиента 131795770645375702 0x7ffacbe20000 53248 C:\Windows\system32\netutils.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API Helpers DLL 131795770645375702 0x7ffacbe30000 57344 C:\Windows\system32\gmsaclient.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation "gmsaclient.DYNLINK" 131795770645375702 0x7ffacbe40000 126976 C:\Windows\system32\USERENV.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Userenv 131795770645375702 0x7ffacbe60000 843776 C:\Windows\system32\netlogon.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Динамическая библиотека службы Net Logon 131795770645375702 0x7ffacbf30000 49152 C:\Windows\system32\NtlmShared.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation NTLM Shared Functionality 131795770645375702 0x7ffacbf40000 421888 C:\Windows\system32\msv1_0.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Authentication Package v1.0 131795770645375702 0x7ffacbfb0000 376832 C:\Windows\system32\mswsock.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширение поставщика службы API Microsoft Windows Sockets 2.0 131795770645375702 0x7ffacc010000 86016 C:\Windows\system32\cryptdll.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Cryptography Manager 131795770645375702 0x7ffacc030000 163840 C:\Windows\system32\KerbClientShared.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Kerberos Client Shared Functionality 131795770645375702 0x7ffacc150000 94208 C:\Windows\system32\CRYPTSP.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Cryptographic Service Provider API 131795770645375702 0x7ffacc170000 45056 C:\Windows\system32\CRYPTBASE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base cryptographic API DLL 131795770645375702 0x7ffacc180000 155648 C:\Windows\system32\negoexts.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation NegoExtender Security Package 131795770645375702 0x7ffacc1b0000 126976 C:\Windows\system32\JOINUTIL.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Join Utility DLL 131795770645375702 0x7ffacc1d0000 86016 C:\Windows\SYSTEM32\netprovfw.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Provisioning Service Framework DLL 131795770645375702 0x7ffacc1f0000 241664 C:\Windows\system32\NTASN1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft ASN.1 API 131795770645375702 0x7ffacc230000 155648 C:\Windows\system32\ncrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Маршрутизатор Windows NCrypt 131795770645375702 0x7ffacc260000 921600 C:\Windows\SYSTEM32\samsrv.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека сервера диспетчера учетных записей 131795770645375702 0x7ffacc350000 180224 C:\Windows\system32\SspiCli.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Security Support Provider Interface 131795770645375702 0x7ffacc380000 1527808 C:\Windows\system32\lsasrv.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation Библиотека DLL сервера LSA 131795770645375702 0x7ffacc5c0000 352256 C:\Windows\SYSTEM32\winsta.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Winstation Library 131795770645375702 0x7ffacc620000 176128 C:\Windows\system32\bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795770645375702 0x7ffacc6f0000 311296 C:\Windows\System32\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795770645375702 0x7ffacc740000 81920 C:\Windows\System32\profapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Profile Basic API 131795770645375702 0x7ffacc760000 65536 C:\Windows\System32\MSASN1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ASN.1 Runtime APIs 131795770645375702 0x7ffacc8f0000 1003520 C:\Windows\System32\ucrtbase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645375702 0x7ffacc9f0000 434176 C:\Windows\System32\bcryptprimitives.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Cryptographic Primitives Library 131795770645375702 0x7ffacd270000 2215936 C:\Windows\System32\KERNELBASE.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645375702 0x7ffacd490000 1871872 C:\Windows\System32\CRYPT32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API32 криптографии 131795770645375702 0x7ffacd710000 638976 C:\Windows\System32\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645375702 0x7ffaced20000 782336 C:\Windows\System32\OLEAUT32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795770645375702 0x7ffacee50000 1183744 C:\Windows\System32\RPCRT4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795770645375702 0x7ffacef80000 32768 C:\Windows\System32\NSI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation NSI User-mode interface DLL 131795770645375702 0x7ffacef90000 647168 C:\Windows\System32\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795770645375702 0x7ffacf0d0000 704512 C:\Windows\System32\KERNEL32.DLL 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645375702 0x7ffacf180000 376832 C:\Windows\System32\WLDAP32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Win32 LDAP API DLL 131795770645375702 0x7ffacf820000 434176 C:\Windows\System32\WS2_32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation 32-разрядная библиотека Windows Socket 2.0 131795770645375702 0x7ffacfb30000 2916352 C:\Windows\System32\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795770645375702 0x7ffacfe20000 663552 C:\Windows\System32\advapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795770645375702 0x7ffad0210000 364544 C:\Windows\System32\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795770645375702 0x7ffad0270000 1908736 C:\Windows\SYSTEM32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 20 704 580 4 00000000:000003e4 131765776284978539 0 0 1 Обязательная метка\Обязательный уровень системы NT AUTHORITY\NETWORK SERVICE svchost.exe C:\Windows\system32\svchost.exe C:\Windows\system32\svchost.exe -k RPCSS Microsoft Corporation 10.0.14393.0 (rs1_release.160715-1616) Хост-процесс для служб Windows 131795770645375918 0x7ff718c20000 57344 C:\Windows\system32\svchost.exe 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Хост-процесс для служб Windows 131795770645375918 0x7ffabae40000 110592 C:\Windows\SYSTEM32\capauthz.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API авторизации возможностей 131795770645375918 0x7ffac4450000 86016 C:\Windows\SYSTEM32\usermgrcli.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation UserMgr API DLL 131795770645375918 0x7ffac6610000 40960 C:\Windows\System32\rasadhlp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Remote Access AutoDial Helper 131795770645375918 0x7ffac8250000 28672 C:\Windows\system32\wshhyperv.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Hyper-V Winsock2 Helper DLL 131795770645375918 0x7ffac8420000 434176 C:\Windows\system32\fwpuclnt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API пользовательского режима FWP/IPsec 131795770645375918 0x7ffaca4e0000 77824 C:\Windows\SYSTEM32\wtsapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Remote Desktop Session Host Server SDK APIs 131795770645375918 0x7ffacb360000 176128 C:\Windows\system32\fwbase.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Firewall Base DLL 131795770645375918 0x7ffacb460000 548864 C:\Windows\system32\FirewallAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API брандмауэра Windows 131795770645375918 0x7ffacb5c0000 913408 c:\windows\system32\rpcss.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Distributed COM Services 131795770645375918 0x7ffacb6a0000 73728 C:\Windows\system32\RpcRtRemote.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Remote RPC Extension 131795770645375918 0x7ffacb6c0000 98304 c:\windows\system32\rpcepmap.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Сопоставитель конечных точек RPC 131795770645375918 0x7ffacb920000 81920 C:\Windows\SYSTEM32\WLDP.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Политика блокировки Windows 131795770645375918 0x7ffacbd30000 229376 C:\Windows\SYSTEM32\IPHLPAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API вспомогательного приложения IP 131795770645375918 0x7ffacbd70000 659456 C:\Windows\SYSTEM32\DNSAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Динамическая библиотека API DNS-клиента 131795770645375918 0x7ffacbf30000 49152 C:\Windows\system32\NtlmShared.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation NTLM Shared Functionality 131795770645375918 0x7ffacbf40000 421888 C:\Windows\system32\msv1_0.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Authentication Package v1.0 131795770645375918 0x7ffacbfb0000 376832 C:\Windows\system32\mswsock.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширение поставщика службы API Microsoft Windows Sockets 2.0 131795770645375918 0x7ffacc010000 86016 C:\Windows\system32\cryptdll.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Cryptography Manager 131795770645375918 0x7ffacc350000 180224 C:\Windows\system32\sspicli.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Security Support Provider Interface 131795770645375918 0x7ffacc5c0000 352256 C:\Windows\SYSTEM32\WINSTA.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Winstation Library 131795770645375918 0x7ffacc620000 176128 C:\Windows\system32\bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795770645375918 0x7ffacc6e0000 61440 C:\Windows\System32\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795770645375918 0x7ffacc6f0000 311296 C:\Windows\System32\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795770645375918 0x7ffacc760000 65536 C:\Windows\System32\MSASN1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ASN.1 Runtime APIs 131795770645375918 0x7ffacc8f0000 1003520 C:\Windows\System32\ucrtbase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645375918 0x7ffacc9f0000 434176 C:\Windows\System32\bcryptPrimitives.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Cryptographic Primitives Library 131795770645375918 0x7ffacca60000 122880 C:\Windows\System32\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795770645375918 0x7ffacca80000 348160 C:\Windows\System32\WINTRUST.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation Microsoft Trust Verification APIs 131795770645375918 0x7ffacd270000 2215936 C:\Windows\System32\KERNELBASE.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645375918 0x7ffacd490000 1871872 C:\Windows\System32\CRYPT32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API32 криптографии 131795770645375918 0x7ffacee50000 1183744 C:\Windows\System32\RPCRT4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795770645375918 0x7ffacef80000 32768 C:\Windows\System32\NSI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation NSI User-mode interface DLL 131795770645375918 0x7ffacef90000 647168 C:\Windows\System32\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795770645375918 0x7ffacf030000 651264 C:\Windows\System32\clbcatq.dll 2001.12.10941.16384 (rs1_release.160715-1616) Microsoft Corporation COM+ Configuration Catalog 131795770645375918 0x7ffacf0d0000 704512 C:\Windows\System32\KERNEL32.DLL 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645375918 0x7ffacf770000 212992 C:\Windows\System32\GDI32.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation GDI Client DLL 131795770645375918 0x7ffacf820000 434176 C:\Windows\System32\WS2_32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation 32-разрядная библиотека Windows Socket 2.0 131795770645375918 0x7ffacf8c0000 1462272 C:\Windows\System32\USER32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795770645375918 0x7ffacfb30000 2916352 C:\Windows\System32\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795770645375918 0x7ffacfe20000 663552 C:\Windows\System32\advapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795770645375918 0x7ffad0070000 1277952 C:\Windows\System32\ole32.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft OLE для Windows 131795770645375918 0x7ffad0210000 364544 C:\Windows\System32\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795770645375918 0x7ffad0270000 1908736 C:\Windows\SYSTEM32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 21 808 520 18 00000000:0000c8d4 131765776288401882 0 0 1 Обязательная метка\Обязательный уровень системы Window Manager\DWM-1 dwm.exe C:\Windows\system32\dwm.exe "dwm.exe" Microsoft Corporation 10.0.14393.0 (rs1_release.160715-1616) Диспетчер окон рабочего стола 131795770645376024 0x7ff683990000 77824 C:\Windows\system32\dwm.exe 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Диспетчер окон рабочего стола 131795770645376024 0x7ffac3810000 167936 C:\Windows\system32\Cabinet.dll 5.00 (rs1_release.160715-1616) Microsoft Corporation Microsoft® Cabinet File API 131795770645376024 0x7ffac60e0000 221184 C:\Windows\system32\XmlLite.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft XmlLite Library 131795770645376024 0x7ffac6f50000 5632000 C:\Windows\system32\d2d1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека Microsoft D2D 131795770645376024 0x7ffac7720000 1601536 C:\Windows\System32\OneCoreUAPCommonProxyStub.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation OneCoreUAP Common Proxy Stub 131795770645376024 0x7ffac7b70000 569344 C:\Windows\System32\Windows.Gaming.Input.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Gaming Input API 131795770645376024 0x7ffac7fc0000 2674688 C:\Windows\system32\d3d10warp.dll 10.0.14393.576 (rs1_release_inmarket.161208-2252) Microsoft Corporation Direct3D 10 Rasterizer 131795770645376024 0x7ffac88a0000 2842624 C:\Windows\system32\d3d11.dll 10.0.14393.953 (rs1_release_inmarket.170303-1614) Microsoft Corporation Direct3D 11 Runtime 131795770645376024 0x7ffac8f90000 45056 C:\Windows\system32\avrt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Среда выполнения мультимедиа в реальном времени 131795770645376024 0x7ffac92e0000 1269760 C:\Windows\SYSTEM32\wintypes.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL основных типов Windows 131795770645376024 0x7ffac9500000 2682880 C:\Windows\system32\CoreUIComponents.dll 131795770645376024 0x7ffac9a30000 249856 C:\Windows\SYSTEM32\ism32k.dll 131795770645376024 0x7ffac9ec0000 294912 C:\Windows\System32\UIAnimation.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Animation Manager 131795770645376024 0x7ffac9f50000 1736704 C:\Windows\system32\WindowsCodecs.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Microsoft Windows Codecs Library 131795770645376024 0x7ffaca110000 94208 C:\Windows\SYSTEM32\dwmghost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DWMGhost 131795770645376024 0x7ffaca5e0000 155648 C:\Windows\system32\dwmapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Интерфейс API диспетчера окон рабочего стола (Майкрософт) 131795770645376024 0x7ffaca640000 770048 C:\Windows\system32\CoreMessaging.dll 10.0.14393.0 Microsoft Corporation Microsoft CoreMessaging Dll 131795770645376024 0x7ffaca770000 1380352 C:\Windows\system32\dcomp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft DirectComposition Library 131795770645376024 0x7ffaca8d0000 2318336 C:\Windows\system32\dwmcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека ядра Microsoft DWM 131795770645376024 0x7ffacac90000 856064 C:\Windows\SYSTEM32\udwm.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Диспетчер окон рабочего стола Майкрософт 131795770645376024 0x7ffacadc0000 167936 C:\Windows\SYSTEM32\dwmredir.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Компонент перенаправления диспетчера окон рабочего стола Microsoft 131795770645376024 0x7ffacadf0000 499712 C:\Windows\system32\apphelp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиентская библиотека совместимости приложений 131795770645376024 0x7ffacaf00000 610304 C:\Windows\system32\uxtheme.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека тем UxTheme (Microsoft) 131795770645376024 0x7ffacb1e0000 1163264 C:\Windows\System32\twinapi.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation twinapi.appcore 131795770645376024 0x7ffacb780000 651264 C:\Windows\system32\dxgi.dll 10.0.14393.953 (rs1_release_inmarket.170303-1614) Microsoft Corporation DirectX Graphics Infrastructure 131795770645376024 0x7ffacc620000 176128 C:\Windows\System32\bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795770645376024 0x7ffacc6e0000 61440 C:\Windows\System32\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795770645376024 0x7ffacc760000 65536 C:\Windows\System32\MSASN1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ASN.1 Runtime APIs 131795770645376024 0x7ffacc8f0000 1003520 C:\Windows\System32\ucrtbase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645376024 0x7ffacc9f0000 434176 C:\Windows\System32\bcryptPrimitives.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Cryptographic Primitives Library 131795770645376024 0x7ffacca60000 122880 C:\Windows\System32\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795770645376024 0x7ffaccae0000 692224 C:\Windows\System32\shcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795770645376024 0x7ffacd270000 2215936 C:\Windows\System32\KERNELBASE.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645376024 0x7ffacd490000 1871872 C:\Windows\System32\CRYPT32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API32 криптографии 131795770645376024 0x7ffacd710000 638976 C:\Windows\System32\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645376024 0x7ffacd7b0000 270336 C:\Windows\System32\cfgmgr32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Configuration Manager DLL 131795770645376024 0x7ffaced20000 782336 C:\Windows\System32\OLEAUT32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795770645376024 0x7ffacee50000 1183744 C:\Windows\System32\RPCRT4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795770645376024 0x7ffacef90000 647168 C:\Windows\System32\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795770645376024 0x7ffacf030000 651264 C:\Windows\System32\clbcatq.dll 2001.12.10941.16384 (rs1_release.160715-1616) Microsoft Corporation COM+ Configuration Catalog 131795770645376024 0x7ffacf0d0000 704512 C:\Windows\System32\KERNEL32.DLL 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645376024 0x7ffacf770000 212992 C:\Windows\System32\gdi32.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation GDI Client DLL 131795770645376024 0x7ffacf890000 188416 C:\Windows\System32\IMM32.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Multi-User Windows IMM32 API Client DLL 131795770645376024 0x7ffacf8c0000 1462272 C:\Windows\System32\USER32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795770645376024 0x7ffacfb30000 2916352 C:\Windows\System32\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795770645376024 0x7ffacfe20000 663552 C:\Windows\System32\advapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795770645376024 0x7ffad0210000 364544 C:\Windows\System32\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795770645376024 0x7ffad0270000 1908736 C:\Windows\SYSTEM32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 22 904 580 4 00000000:000003e7 131765776293087855 0 0 1 Обязательная метка\Обязательный уровень системы NT AUTHORITY\СИСТЕМА svchost.exe C:\Windows\System32\svchost.exe C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted Microsoft Corporation 10.0.14393.0 (rs1_release.160715-1616) Хост-процесс для служб Windows 131795770645376243 0x259b0640000 12288 C:\Windows\system32\SFC.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows File Protection 131795770645376243 0x7ff718c20000 57344 C:\Windows\System32\svchost.exe 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Хост-процесс для служб Windows 131795770645376243 0x7ffaab830000 278528 c:\windows\system32\netman.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Диспетчер сетевых подключений 131795770645376243 0x7ffaab880000 532480 c:\windows\system32\MPRAPI.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation Windows NT MP Router Administration DLL 131795770645376243 0x7ffaab910000 905216 c:\windows\system32\RASDLG.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API общих диалогов службы удаленного доступа 131795770645376243 0x7ffab1260000 10350592 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\clr.dll 4.7.2117.0 built by: NET47REL1LAST Microsoft Corporation Microsoft .NET Runtime Common Language Runtime - WorkStation 131795770645376243 0x7ffab2460000 2822144 C:\Windows\System32\netshell.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Оболочка сетевых подключений 131795770645376243 0x7ffab7d80000 753664 c:\windows\system32\RASAPI32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API удаленного доступа 131795770645376243 0x7ffabae60000 77824 C:\Windows\System32\DEVRTL.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Device Management Run Time Library 131795770645376243 0x7ffabb430000 65536 C:\Windows\System32\pcacli.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Program Compatibility Assistant Client Module 131795778252487651 0x7ffabc160000 688128 C:\Windows\System32\aeinv.dll 10.0.17060.1029 (WinBuild.160101.0800) Microsoft Corporation Application Inventory Component 131795770645376243 0x7ffabc510000 90112 C:\Windows\system32\execmodelproxy.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ExecModelProxy 131795770645376243 0x7ffabcf30000 110592 C:\Windows\System32\MPR.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека маршрутизации для нескольких служб доступа 131795770645376243 0x7ffabcf50000 921600 C:\Windows\System32\drvstore.dll 10.0.14393.351 (rs1_release_inmarket.161014-1755) Microsoft Corporation Driver Store API 131795770645376243 0x7ffabdd60000 425984 C:\Windows\System32\AppXDeploymentClient.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL-библиотека клиента развертывания AppX 131795770645376243 0x7ffabef80000 69632 C:\Windows\System32\sfc_os.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows File Protection 131795778007496118 0x7ffabefd0000 258048 C:\Windows\System32\aepic.dll 10.0.17060.1029 (WinBuild.160101.0800) Microsoft Corporation Application Experience Program Cache 131795770645376243 0x7ffabfa00000 1011712 C:\Windows\SYSTEM32\MSVCR120_CLR0400.dll 12.00.52519.0 built by: VSWINSERVICING Microsoft Corporation Microsoft® C Runtime Library 131795770645376243 0x7ffac0610000 3088384 C:\Windows\System32\MSI.DLL 5.0.14393.2155 Microsoft Corporation Windows Installer 131795770645376243 0x7ffac0bf0000 3559424 C:\Windows\System32\ActXPrxy.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation ActiveX Interface Marshaling Library 131795770645376243 0x7ffac0fc0000 294912 C:\Windows\system32\spp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека общих точек защиты Microsoft® Windows 131795770645376243 0x7ffac1010000 417792 C:\Windows\system32\MSCOREE.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft .NET Runtime Execution Engine 131795770645376243 0x7ffac10f0000 421888 c:\windows\system32\storsvc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Службы хранения 131795770645376243 0x7ffac1240000 638976 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscoreei.dll 4.7.2623.0 built by: NET471REL1LAST_C Microsoft Corporation Microsoft .NET Runtime Execution Engine 131795781037721051 0x7ffac1660000 688128 C:\Windows\System32\aeinv.dll 10.0.17060.1029 (WinBuild.160101.0800) Microsoft Corporation Application Inventory Component 131795770645376243 0x7ffac1e80000 507904 C:\Windows\System32\NetSetupShim.dll 10.0.14393.1532 (rs1_release_d.170711-1840) Microsoft Corporation Network Configuration API 131795770645376243 0x7ffac1fd0000 999424 C:\Windows\system32\wbem\fastprox.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation WMI Custom Marshaller 131795770645376243 0x7ffac20d0000 110592 c:\windows\system32\RMCLIENT.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Resource Manager Client 131795770645376243 0x7ffac21d0000 81920 C:\Windows\system32\wbem\wbemsvc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation WMI 131795770645376243 0x7ffac2360000 57344 c:\windows\system32\TimeBrokerClient.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Time Broker Client Library 131795770645376243 0x7ffac23c0000 331776 C:\Windows\System32\OneCoreCommonProxyStub.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation OneCore Common Proxy Stub 131795770645376243 0x7ffac2420000 466944 c:\windows\system32\das.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служба сопоставления устройств 131795770645376243 0x7ffac2530000 270336 C:\Windows\system32\hnetcfgclient.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиент API конфигурации домашней сети 131795770645376243 0x7ffac2750000 106496 c:\windows\system32\bcd.dll 10.0.14393.1794 (rs1_release.171008-1615) Microsoft Corporation BCD DLL 131795770645376243 0x7ffac29f0000 159744 C:\Windows\System32\NetSetupApi.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Network Configuration API 131795770645376243 0x7ffac2a20000 81920 c:\windows\system32\rtutils.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Routing Utilities 131795770645376243 0x7ffac2b80000 40960 C:\Windows\System32\VERSION.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Version Checking and File Installation Libraries 131795770645376243 0x7ffac3270000 40960 c:\windows\system32\FLTLIB.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека фильтров 131795770645376243 0x7ffac34c0000 81920 C:\Windows\system32\vss_ps.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation Microsoft® Volume Shadow Copy Service proxy/stub 131795770645376243 0x7ffac3840000 3088384 c:\windows\system32\ESENT.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширяемая подсистема хранения данных ESE для Microsoft(R) Windows(R) 131795778007645121 0x7ffac3cb0000 2772992 C:\Windows\System32\iertutil.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служебная программа времени выполнения для Internet Explorer 131795770645376243 0x7ffac4050000 118784 c:\windows\system32\wdi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Инфраструктура диагностики Windows 131795770645376243 0x7ffac41c0000 139264 c:\windows\system32\trkwks.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиент отслеживания изменившихся связей 131795770645376243 0x7ffac4220000 520192 C:\Windows\SYSTEM32\wbemcomn.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation WMI 131795770645376243 0x7ffac4450000 86016 C:\Windows\SYSTEM32\usermgrcli.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation UserMgr API DLL 131795770645376243 0x7ffac4470000 65536 C:\Windows\system32\wbem\wbemprox.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation WMI 131795770645376243 0x7ffac4650000 516096 c:\windows\system32\pcasvc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служба помощника по совместимости программ 131795770645376243 0x7ffac4f40000 122880 C:\Windows\system32\radardt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Программа обнаружения нехватки системных ресурсов Windows 131795770645376243 0x7ffac4fd0000 618496 C:\Windows\System32\wlidprov.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft® Account Provider 131795770645376243 0x7ffac5b30000 114688 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\fusion.dll 4.6.1586.0 built by: NETFXREL2 Microsoft Corporation Assembly manager 131795770645376243 0x7ffac5b50000 180224 c:\windows\system32\dssvc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL службы NT для службы совместного доступа к данным 131795770645376243 0x7ffac5c50000 131072 c:\windows\system32\rasman.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Remote Access Connection Manager 131795770645376243 0x7ffac60e0000 221184 C:\Windows\System32\XmlLite.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft XmlLite Library 131795770645376243 0x7ffac6120000 966656 c:\windows\system32\sysmain.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Хост службы Superfetch 131795770645376243 0x7ffac6410000 98304 C:\Windows\system32\VssTrace.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека трассировки службы теневого копирования тома Microsoft® 131795770645376243 0x7ffac6430000 1581056 C:\Windows\system32\VSSAPI.DLL 10.0.14393.953 (rs1_release_inmarket.170303-1614) Microsoft Corporation Microsoft® Volume Shadow Copy Requestor/Writer Services API DLL 131795770645376243 0x7ffac6c40000 2596864 C:\Windows\WinSxS\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.14393.953_none_42151e83c686086b\Comctl32.dll 6.10 (rs1_release_inmarket.170303-1614) Microsoft Corporation Библиотека элементов управления взаимодействия с пользователем 131795770645376243 0x7ffac79c0000 57344 C:\Windows\System32\npmproxy.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Network List Manager Proxy 131795770645376243 0x7ffac7b10000 217088 C:\Windows\SYSTEM32\WUDFPlatform.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Driver Foundation - библиотека платформ пользовательского режима 131795770645376243 0x7ffac7b50000 114688 c:\windows\system32\wudfsvc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Driver Foundation (WDF) - служба среды выполнения платформы драйвера режима пользователя 131795770645376243 0x7ffac8810000 45056 c:\windows\system32\WINNSI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Network Store Information RPC interface 131795770645376243 0x7ffac8880000 69632 c:\windows\system32\WMICLNT.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation WMI Client API 131795770645376243 0x7ffac8cf0000 815104 C:\Windows\System32\taskschd.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Task Scheduler COM API 131795770645376243 0x7ffac9290000 40960 c:\windows\system32\DSROLE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DS Setup Client DLL 131795770645376243 0x7ffac9480000 462848 c:\windows\system32\MMDevAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation MMDevice API 131795770645376243 0x7ffac9790000 98304 C:\Windows\System32\nlaapi.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Network Location Awareness 2 131795770645376243 0x7ffac9800000 376832 c:\windows\system32\audioendpointbuilder.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Средство построения конечных точек Windows Audio 131795770645376243 0x7ffac9de0000 94208 C:\Windows\System32\portabledeviceconnectapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Portable Device Connection API Components 131795770645376243 0x7ffac9e00000 647168 C:\Windows\SYSTEM32\PortableDeviceApi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Компоненты API для переносных устройств Windows 131795770645376243 0x7ffac9f10000 221184 C:\Windows\System32\netprofm.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Network List Manager 131795770645376243 0x7ffaca100000 36864 C:\Windows\SYSTEM32\httpprxc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Proxy Manager Provider RPC interface 131795770645376243 0x7ffaca130000 204800 C:\Windows\SYSTEM32\windows.devices.radios.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows.Devices.Radios DLL 131795770645376243 0x7ffaca1f0000 65536 C:\Windows\SYSTEM32\storageusage.dll 10.0.14393.82 (rs1_release.160805-1735) Microsoft Corporation Storage Usage 131795770645376243 0x7ffaca250000 49152 C:\Windows\SYSTEM32\bi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Background Broker Infrastructure Client Library 131795770645376243 0x7ffaca260000 45056 c:\windows\system32\SystemEventsBrokerClient.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation system Events Broker Client Library 131795770645376243 0x7ffaca2d0000 360448 c:\windows\system32\ncbservice.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Посредник подключений к сети 131795770645376243 0x7ffaca340000 1593344 c:\windows\system32\PROPSYS.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Система страниц свойств (Майкрософт) 131795770645376243 0x7ffaca4e0000 77824 c:\windows\system32\WTSAPI32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Remote Desktop Session Host Server SDK APIs 131795770645376243 0x7ffaca710000 65536 C:\Windows\system32\pcadm.dll 10.0.14393.2189 (rs1_release.180329-1711) Microsoft Corporation Program Compatibility Assistant Diagnostic Module 131795770645376243 0x7ffacad70000 278528 c:\windows\system32\BrokerLib.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Broker Base Library 131795770645376243 0x7ffacadf0000 499712 c:\windows\system32\apphelp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиентская библиотека совместимости приложений 131795770645376243 0x7ffacb1e0000 1163264 C:\Windows\SYSTEM32\twinapi.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation twinapi.appcore 131795770645376243 0x7ffacb3f0000 163840 C:\Windows\System32\DEVOBJ.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Device Information Set DLL 131795770645376243 0x7ffacb420000 204800 C:\Windows\SYSTEM32\ntmarta.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик Windows NT MARTA 131795770645376243 0x7ffacb920000 81920 C:\Windows\SYSTEM32\WLDP.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Политика блокировки Windows 131795770645376243 0x7ffacbbb0000 208896 C:\Windows\system32\rsaenh.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Enhanced Cryptographic Provider 131795770645376243 0x7ffacbbf0000 40960 c:\windows\system32\DPAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Data Protection API 131795770645376243 0x7ffacbd30000 229376 c:\windows\system32\IPHLPAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API вспомогательного приложения IP 131795770645376243 0x7ffacbe40000 126976 c:\windows\system32\USERENV.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Userenv 131795770645376243 0x7ffacbfb0000 376832 C:\Windows\system32\mswsock.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширение поставщика службы API Microsoft Windows Sockets 2.0 131795770645376243 0x7ffacc150000 94208 C:\Windows\System32\CRYPTSP.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Cryptographic Service Provider API 131795770645376243 0x7ffacc170000 45056 C:\Windows\System32\CRYPTBASE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base cryptographic API DLL 131795770645376243 0x7ffacc350000 180224 c:\windows\system32\SspiCli.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Security Support Provider Interface 131795770645376243 0x7ffacc500000 102400 c:\windows\system32\EventAggregation.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Event Aggregation User Mode Library 131795770645376243 0x7ffacc520000 622592 C:\Windows\system32\SXS.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Fusion 2.5 131795770645376243 0x7ffacc5c0000 352256 c:\windows\system32\WINSTA.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Winstation Library 131795770645376243 0x7ffacc620000 176128 c:\windows\system32\bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795770645376243 0x7ffacc6e0000 61440 C:\Windows\System32\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795770645376243 0x7ffacc6f0000 311296 C:\Windows\System32\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795770645376243 0x7ffacc740000 81920 C:\Windows\System32\profapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Profile Basic API 131795770645376243 0x7ffacc760000 65536 C:\Windows\System32\MSASN1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ASN.1 Runtime APIs 131795770645376243 0x7ffacc8f0000 1003520 C:\Windows\System32\ucrtbase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645376243 0x7ffacc9f0000 434176 C:\Windows\System32\bcryptPrimitives.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Cryptographic Primitives Library 131795770645376243 0x7ffacca60000 122880 C:\Windows\System32\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795770645376243 0x7ffacca80000 348160 C:\Windows\System32\WINTRUST.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation Microsoft Trust Verification APIs 131795770645376243 0x7ffaccae0000 692224 C:\Windows\System32\shcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795770645376243 0x7ffaccb90000 7180288 C:\Windows\System32\windows.storage.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API хранения Microsoft WinRT 131795770645376243 0x7ffacd270000 2215936 C:\Windows\System32\KERNELBASE.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645376243 0x7ffacd490000 1871872 C:\Windows\System32\CRYPT32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API32 криптографии 131795770645376243 0x7ffacd710000 638976 C:\Windows\System32\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645376243 0x7ffacd7b0000 270336 C:\Windows\System32\cfgmgr32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Configuration Manager DLL 131795770645376243 0x7ffacd810000 22056960 C:\Windows\System32\SHELL32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Общая библиотека оболочки Windows 131795770645376243 0x7ffaced20000 782336 C:\Windows\System32\OLEAUT32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795770645376243 0x7ffacede0000 450560 C:\Windows\System32\coml2.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft COM for Windows 131795770645376243 0x7ffacee50000 1183744 C:\Windows\System32\RPCRT4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795770645376243 0x7ffacef80000 32768 C:\Windows\System32\NSI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation NSI User-mode interface DLL 131795770645376243 0x7ffacef90000 647168 C:\Windows\System32\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795770645376243 0x7ffacf030000 651264 C:\Windows\System32\clbcatq.dll 2001.12.10941.16384 (rs1_release.160715-1616) Microsoft Corporation COM+ Configuration Catalog 131795770645376243 0x7ffacf0d0000 704512 C:\Windows\System32\KERNEL32.DLL 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645376243 0x7ffacf340000 4362240 C:\Windows\System32\SETUPAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Setup API 131795770645376243 0x7ffacf770000 212992 C:\Windows\System32\GDI32.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation GDI Client DLL 131795770645376243 0x7ffacf820000 434176 C:\Windows\System32\WS2_32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation 32-разрядная библиотека Windows Socket 2.0 131795770645376243 0x7ffacf8c0000 1462272 C:\Windows\System32\user32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795770645376243 0x7ffacfb30000 2916352 C:\Windows\System32\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795770645376243 0x7ffacfe20000 663552 C:\Windows\System32\ADVAPI32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795770645376243 0x7ffad0070000 1277952 C:\Windows\System32\ole32.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft OLE для Windows 131795770645376243 0x7ffad01b0000 335872 C:\Windows\System32\SHLWAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека небольших программ оболочки 131795770645376243 0x7ffad0210000 364544 C:\Windows\System32\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795770645376243 0x7ffad0270000 1908736 C:\Windows\SYSTEM32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 23 96 580 4 00000000:000003e5 131765776304995849 0 0 1 Обязательная метка\Обязательный уровень системы NT AUTHORITY\LOCAL SERVICE svchost.exe C:\Windows\system32\svchost.exe C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork Microsoft Corporation 10.0.14393.0 (rs1_release.160715-1616) Хост-процесс для служб Windows 131795770645376384 0x7ff718c20000 57344 C:\Windows\system32\svchost.exe 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Хост-процесс для служб Windows 131795770645376384 0x7ffac0bf0000 3559424 C:\Windows\System32\ActXPrxy.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation ActiveX Interface Marshaling Library 131795770645376384 0x7ffac1fd0000 999424 C:\Windows\system32\wbem\fastprox.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation WMI Custom Marshaller 131795770645376384 0x7ffac21b0000 77824 C:\Windows\System32\srumapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation System Resource Usage Monitor API 131795770645376384 0x7ffac21d0000 81920 C:\Windows\system32\wbem\wbemsvc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation WMI 131795770645376384 0x7ffac2510000 102400 C:\Windows\System32\energyprov.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Energy System Resource Usage Monitor (SRUM) provider 131795770645376384 0x7ffac2580000 49152 C:\Windows\System32\ncuprov.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Network Connectivity Statistics Provider for System Resource Usage Monitor Service 131795770645376384 0x7ffac2b90000 90112 C:\Windows\System32\nduprov.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик сетевой статистики для службы отслеживания использования ресурсов системы 131795770645376384 0x7ffac2bb0000 106496 C:\Windows\SYSTEM32\appsruprov.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Application System Resource Usage Monitor (SRUM) provider 131795770645376384 0x7ffac2bd0000 131072 C:\Windows\System32\eeprov.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Energy Estimator SRUM provider 131795770645376384 0x7ffac2c20000 45056 C:\Windows\system32\wfapigp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Firewall GPO Helper dll 131795770645376384 0x7ffac2d70000 57344 C:\Windows\System32\wpnsruprov.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SRUM provider for WPN 131795770645376384 0x7ffac3310000 225280 C:\Windows\System32\srumsvc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation System Resource Usage Monitor Service 131795770645376384 0x7ffac3730000 36864 C:\Windows\system32\pnpts.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation PlugPlay Troubleshooter 131795770645376384 0x7ffac3840000 3088384 C:\Windows\system32\ESENT.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширяемая подсистема хранения данных ESE для Microsoft(R) Windows(R) 131795770645376384 0x7ffac3bd0000 106496 c:\windows\system32\ncdautosetup.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL службы автоматической настройки сетевых устройств 131795770645376384 0x7ffac3cb0000 2772992 C:\Windows\SYSTEM32\iertutil.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служебная программа времени выполнения для Internet Explorer 131795770645376384 0x7ffac3f60000 225280 c:\windows\system32\FWPolicyIOMgr.dll 10.0.14393.2189 (rs1_release.180329-1711) Microsoft Corporation FwPolicyIoMgr DLL 131795770645376384 0x7ffac4000000 274432 C:\Windows\SYSTEM32\policymanager.dll 10.0.14393.2035 (rs1_release_inmarket.180110-1910) Microsoft Corporation Policy Manager DLL 131795770645376384 0x7ffac4050000 118784 c:\windows\system32\wdi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Инфраструктура диагностики Windows 131795770645376384 0x7ffac41f0000 40960 C:\Windows\system32\adhapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AD harvest sites and subnets API 131795770645376384 0x7ffac4220000 520192 C:\Windows\SYSTEM32\wbemcomn.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation WMI 131795770645376384 0x7ffac4470000 65536 C:\Windows\system32\wbem\wbemprox.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation WMI 131795770645376384 0x7ffac4500000 200704 c:\windows\system32\dps.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служба политики диагностики WDI 131795770645376384 0x7ffac4cd0000 933888 c:\windows\system32\mpssvc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служба защиты (Microsoft) 131795770645376384 0x7ffac4f40000 122880 C:\Windows\system32\radardt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Программа обнаружения нехватки системных ресурсов Windows 131795770645376384 0x7ffac66c0000 32768 C:\Windows\system32\wship6.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL помощника Winsock2 (TL/IPv6) 131795770645376384 0x7ffac66d0000 32768 C:\Windows\system32\wshtcpip.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL помощника службы Winsock2 (TL/IPv4) 131795770645376384 0x7ffac6700000 40960 C:\Windows\system32\wshqos.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL помощника службы QoS Winsock2 131795770645376384 0x7ffac6740000 53248 C:\Windows\system32\dtsh.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека API состояния общего доступа и обнаружения 131795770645376384 0x7ffac6990000 69632 c:\windows\system32\deviceassociation.dll 10.0.14393.82 (rs1_release.160805-1735) Microsoft Corporation Device Association Client DLL 131795770645376384 0x7ffac74b0000 827392 c:\windows\system32\bfe.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служба базовой фильтрации 131795770645376384 0x7ffac7580000 1077248 C:\Windows\SYSTEM32\mrmcorer.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Windows MRM 131795770645376384 0x7ffac79c0000 57344 C:\Windows\System32\npmproxy.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Network List Manager Proxy 131795770645376384 0x7ffac83d0000 106496 C:\Windows\SYSTEM32\dhcpcsvc.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служба DHCP-клиента 131795770645376384 0x7ffac83f0000 90112 C:\Windows\SYSTEM32\dhcpcsvc6.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиент DHCPv6 131795770645376384 0x7ffac8420000 434176 c:\windows\system32\fwpuclnt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API пользовательского режима FWP/IPsec 131795770645376384 0x7ffac8810000 45056 C:\Windows\SYSTEM32\WINNSI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Network Store Information RPC interface 131795770645376384 0x7ffac8cf0000 815104 C:\Windows\System32\taskschd.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Task Scheduler COM API 131795770645376384 0x7ffac90b0000 90112 c:\windows\system32\wkscli.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Workstation Service Client DLL 131795770645376384 0x7ffac9220000 397312 C:\Windows\SYSTEM32\wevtapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API настройки и использования событий 131795770645376384 0x7ffac9f10000 221184 C:\Windows\System32\netprofm.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Network List Manager 131795770645376384 0x7ffaca100000 36864 C:\Windows\SYSTEM32\httpprxc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Proxy Manager Provider RPC interface 131795770645376384 0x7ffaca170000 45056 c:\windows\system32\ktmw32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows KTM Win32 Client DLL 131795770645376384 0x7ffaca340000 1593344 C:\Windows\System32\PROPSYS.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Система страниц свойств (Майкрософт) 131795770645376384 0x7ffaca4e0000 77824 C:\Windows\system32\WTSAPI32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Remote Desktop Session Host Server SDK APIs 131795770645376384 0x7ffaca640000 770048 c:\windows\system32\coremessaging.dll 10.0.14393.0 Microsoft Corporation Microsoft CoreMessaging Dll 131795770645376384 0x7ffacb070000 69632 C:\Windows\SYSTEM32\embeddedmodesvcapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Embedded Mode Service Client DLL 131795770645376384 0x7ffacb140000 593920 c:\windows\system32\msvcp110_win.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Microsoft® STL110 C++ Runtime Library 131795770645376384 0x7ffacb360000 176128 C:\Windows\system32\fwbase.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Firewall Base DLL 131795770645376384 0x7ffacb3f0000 163840 C:\Windows\system32\DEVOBJ.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Device Information Set DLL 131795770645376384 0x7ffacb420000 204800 C:\Windows\system32\ntmarta.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик Windows NT MARTA 131795770645376384 0x7ffacb460000 548864 C:\Windows\system32\FirewallAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API брандмауэра Windows 131795770645376384 0x7ffacb6f0000 143360 C:\Windows\SYSTEM32\gpapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиентские функции API групповой политики 131795770645376384 0x7ffacb920000 81920 C:\Windows\SYSTEM32\WLDP.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Политика блокировки Windows 131795770645376384 0x7ffacb960000 303104 c:\windows\system32\AUTHZ.dll 10.0.14393.1737 (rs1_release_inmarket.170914-1249) Microsoft Corporation Authorization Framework 131795770645376384 0x7ffacbd30000 229376 c:\windows\system32\IPHLPAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API вспомогательного приложения IP 131795770645376384 0x7ffacbd70000 659456 c:\windows\system32\DNSAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Динамическая библиотека API DNS-клиента 131795770645376384 0x7ffacbe20000 53248 c:\windows\system32\netutils.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API Helpers DLL 131795770645376384 0x7ffacbfb0000 376832 C:\Windows\system32\mswsock.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширение поставщика службы API Microsoft Windows Sockets 2.0 131795770645376384 0x7ffacc170000 45056 C:\Windows\system32\CRYPTBASE.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base cryptographic API DLL 131795770645376384 0x7ffacc350000 180224 c:\windows\system32\SspiCli.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Security Support Provider Interface 131795770645376384 0x7ffacc5c0000 352256 C:\Windows\system32\WINSTA.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Winstation Library 131795770645376384 0x7ffacc620000 176128 c:\windows\system32\bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795770645376384 0x7ffacc6e0000 61440 C:\Windows\System32\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795770645376384 0x7ffacc6f0000 311296 C:\Windows\System32\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795770645376384 0x7ffacc740000 81920 C:\Windows\System32\profapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Profile Basic API 131795770645376384 0x7ffacc760000 65536 C:\Windows\System32\MSASN1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ASN.1 Runtime APIs 131795770645376384 0x7ffacc8f0000 1003520 C:\Windows\System32\ucrtbase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645376384 0x7ffacc9f0000 434176 C:\Windows\System32\bcryptPrimitives.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Cryptographic Primitives Library 131795770645376384 0x7ffacca60000 122880 C:\Windows\System32\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795770645376384 0x7ffacca80000 348160 C:\Windows\System32\WINTRUST.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation Microsoft Trust Verification APIs 131795770645376384 0x7ffaccae0000 692224 C:\Windows\System32\shcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795770645376384 0x7ffaccb90000 7180288 C:\Windows\System32\windows.storage.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API хранения Microsoft WinRT 131795770645376384 0x7ffacd270000 2215936 C:\Windows\System32\KERNELBASE.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645376384 0x7ffacd490000 1871872 C:\Windows\System32\CRYPT32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API32 криптографии 131795770645376384 0x7ffacd710000 638976 C:\Windows\System32\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645376384 0x7ffacd7b0000 270336 C:\Windows\System32\CFGMGR32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Configuration Manager DLL 131795770645376384 0x7ffacd810000 22056960 C:\Windows\System32\SHELL32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Общая библиотека оболочки Windows 131795770645376384 0x7ffaced20000 782336 C:\Windows\System32\OLEAUT32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795770645376384 0x7ffacee50000 1183744 C:\Windows\System32\RPCRT4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795770645376384 0x7ffacef80000 32768 C:\Windows\System32\NSI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation NSI User-mode interface DLL 131795770645376384 0x7ffacef90000 647168 C:\Windows\System32\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795770645376384 0x7ffacf030000 651264 C:\Windows\System32\clbcatq.dll 2001.12.10941.16384 (rs1_release.160715-1616) Microsoft Corporation COM+ Configuration Catalog 131795770645376384 0x7ffacf0d0000 704512 C:\Windows\System32\KERNEL32.DLL 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645376384 0x7ffacf770000 212992 C:\Windows\System32\GDI32.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation GDI Client DLL 131795770645376384 0x7ffacf820000 434176 C:\Windows\System32\WS2_32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation 32-разрядная библиотека Windows Socket 2.0 131795770645376384 0x7ffacf8c0000 1462272 C:\Windows\System32\user32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795770645376384 0x7ffacfb30000 2916352 C:\Windows\System32\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795770645376384 0x7ffacfe20000 663552 C:\Windows\System32\advapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795770645376384 0x7ffad0070000 1277952 C:\Windows\System32\ole32.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft OLE для Windows 131795770645376384 0x7ffad01b0000 335872 C:\Windows\System32\shlwapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека небольших программ оболочки 131795770645376384 0x7ffad0210000 364544 C:\Windows\System32\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795770645376384 0x7ffad0270000 1908736 C:\Windows\SYSTEM32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 24 348 580 4 00000000:000003e7 131765776305446235 0 0 1 Обязательная метка\Обязательный уровень системы NT AUTHORITY\СИСТЕМА svchost.exe C:\Windows\system32\svchost.exe C:\Windows\system32\svchost.exe -k netsvcs Microsoft Corporation 10.0.14393.0 (rs1_release.160715-1616) Хост-процесс для служб Windows 131795770645376622 0x7ff718c20000 57344 C:\Windows\system32\svchost.exe 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Хост-процесс для служб Windows 131795770645376622 0x7ffaa0aa0000 2138112 c:\windows\system32\wlidsvc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служба учетных записей Майкрософт 131795770645376622 0x7ffab0750000 368640 C:\Windows\system32\rascustom.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Модуль настраиваемых протоколов 131795770645376622 0x7ffab07b0000 606208 C:\Windows\system32\vpnike.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation VPNIKE Protocol Engine - Test dll 131795770645376622 0x7ffab09b0000 323584 C:\Windows\system32\rasppp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Remote Access PPP 131795770645376622 0x7ffab0a00000 270336 C:\Windows\system32\rastapi.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Remote Access TAPI Compliance Layer 131795770645376622 0x7ffab1d80000 262144 C:\Windows\system32\eappcfg.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Eap Peer Config 131795770645376622 0x7ffab3440000 696320 c:\windows\system32\rasmans.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Диспетчер подключений удаленного доступа 131795770645376622 0x7ffab4b90000 655360 C:\Windows\System32\StructuredQuery.dll 7.0.14393.2068 (rs1_release.180209-1727) Microsoft Corporation Structured Query 131795770645376622 0x7ffab4c50000 90112 c:\windows\system32\eappprxy.dll 10.0.14393.187 (rs1_release_inmarket.160906-1818) Microsoft Corporation Microsoft EAPHost Peer Client DLL 131795770645376622 0x7ffab7d80000 753664 C:\Windows\system32\RASAPI32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API удаленного доступа 131795770645376622 0x7ffab9a90000 479232 C:\Windows\system32\dmEnrollEngine.DLL 10.0.14393.479 (rs1_release.161110-2025) Microsoft Corporation Enroll Engine DLL 131795770645376622 0x7ffabae60000 77824 C:\Windows\system32\DEVRTL.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Device Management Run Time Library 131795770645376622 0x7ffabafc0000 700416 C:\Windows\SYSTEM32\wer.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека сообщений об ошибках Windows 131795770645376622 0x7ffabc210000 2355200 c:\windows\system32\wuaueng.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Агент Центра обновления Windows 131795770645376622 0x7ffabcf30000 110592 c:\windows\system32\MPR.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека маршрутизации для нескольких служб доступа 131795770645376622 0x7ffabcf50000 921600 C:\Windows\system32\drvstore.dll 10.0.14393.351 (rs1_release_inmarket.161014-1755) Microsoft Corporation Driver Store API 131795770645376622 0x7ffabd180000 548864 C:\Windows\SYSTEM32\WINSPOOL.DRV 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Драйвер диспетчера очереди Windows 131795770645376622 0x7ffabdf60000 159744 C:\Windows\System32\raschap.dll 10.0.14393.1480 (rs1_release.170706-2004) Microsoft Corporation Удаленные доступ через PPP CHAP 131795770645376622 0x7ffabe4a0000 147456 c:\windows\system32\appinfo.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служба сведений о приложении 131795770645376622 0x7ffabe4d0000 286720 C:\Windows\System32\MSWB7.dll 10.0.14393.1737 (rs1_release_inmarket.170914-1249) Microsoft Corporation MSWB7 DLL 131795770645376622 0x7ffabed80000 540672 C:\Windows\system32\wbem\wbemess.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation WMI 131795770645376622 0x7ffabee10000 90112 C:\Windows\SYSTEM32\NCObjAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation 131795770645376622 0x7ffabee30000 847872 C:\Windows\system32\wbem\wmiprvsd.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation WMI 131795770645376622 0x7ffabefd0000 258048 C:\Windows\SYSTEM32\AEPIC.dll 10.0.17060.1029 (WinBuild.160101.0800) Microsoft Corporation Application Experience Program Cache 131795770645376622 0x7ffabf010000 98304 C:\Windows\SYSTEM32\elscore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL ядра платформы Els 131795786151289779 0x7ffabf030000 98304 C:\Windows\System32\LocationFrameworkInternalPS.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Geolocation Framework Internal PS 131795770645376622 0x7ffabf090000 98304 C:\Windows\System32\LocationFrameworkInternalPS.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Geolocation Framework Internal PS 131795770645376622 0x7ffabf0e0000 372736 C:\Windows\system32\hnetcfg.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Диспетчер конфигурации домашней сети 131795770645376622 0x7ffabf1d0000 192512 C:\Windows\System32\cryptnet.dll 10.0.14393.2035 (rs1_release_inmarket.180110-1910) Microsoft Corporation Crypto Network Related API 131795770645376622 0x7ffabf200000 405504 c:\windows\system32\cryptngc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API службы Microsoft Passport 131795770645376622 0x7ffabf2a0000 159744 C:\Windows\system32\dssenh.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Enhanced DSS and Diffie-Hellman Cryptographic Provider 131795770645376622 0x7ffabf330000 2457600 C:\Windows\System32\msxml6.dll 6.30.14393.2156 Microsoft Corporation MSXML 6.0 131795770645376622 0x7ffabfd60000 90112 C:\Windows\system32\napinsp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик оболочки совместимости для имен электронной почты 131795770645376622 0x7ffabfda0000 122880 C:\Windows\system32\wbem\ncprov.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Non-COM WMI Event Provision APIs 131795770645376622 0x7ffabfdc0000 86016 C:\Windows\system32\keepaliveprovider.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Keep alive provider API 131795770645376622 0x7ffabfe50000 643072 C:\Windows\System32\wpnprv.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик подключения платформы push-уведомлений Windows 131795770645376622 0x7ffabfef0000 106496 C:\Windows\system32\pnrpnsp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик пространства имен PNRP 131795770645376622 0x7ffabff60000 135168 C:\Windows\system32\ncryptsslp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft SChannel Provider 131795770645376622 0x7ffac0000000 401408 C:\Windows\system32\wbem\repdrvfs.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation WMI Repository Driver 131795770645376622 0x7ffac05f0000 94208 C:\Windows\System32\wwapi.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation WWAN API 131795770645376622 0x7ffac0610000 3088384 C:\Windows\SYSTEM32\msi.dll 5.0.14393.2155 Microsoft Corporation Windows Installer 131795770645376622 0x7ffac0910000 724992 C:\Windows\System32\Windows.Networking.Connectivity.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Networking Connectivity Runtime DLL 131795770645376622 0x7ffac0ab0000 57344 C:\Windows\System32\winrnr.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation LDAP RnR Provider DLL 131795770645376622 0x7ffac0ac0000 53248 c:\windows\system32\tbs.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation TBS 131795770645376622 0x7ffac0ad0000 86016 C:\Windows\SYSTEM32\mskeyprotect.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик защиты ключей (Майкрософт) 131795770645376622 0x7ffac0af0000 114688 C:\Windows\system32\ATL.DLL 3.05.2284 Microsoft Corporation ATL Module for Windows XP (Unicode) 131795770645376622 0x7ffac0bf0000 3559424 C:\Windows\System32\ActXPrxy.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation ActiveX Interface Marshaling Library 131795770645376622 0x7ffac1090000 94208 C:\Windows\System32\shacctprofile.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Shell Accounts Profile Classes 131795770645376622 0x7ffac1160000 892928 C:\Windows\System32\wuapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API клиента Центра обновления Windows 131795783766785197 0x7ffac13e0000 581632 C:\Windows\System32\usocore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Обновление ядра оркестратора сеанса 131795770645376622 0x7ffac1530000 528384 C:\Windows\SYSTEM32\dpx.dll 5.00 (rs1_release.160715-1616) Microsoft Corporation Microsoft(R) Delta Package Expander 131795783773591339 0x7ffac1660000 323584 C:\Windows\System32\updatehandlers.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation Update Session Orchestrator Update Handlers 131795770645376622 0x7ffac1900000 225280 c:\windows\system32\appxapplicabilityblob.dll 10.0.14393.953 (rs1_release_inmarket.170303-1614) Microsoft Corporation Appx Applicability Blob DLL 131795783942703101 0x7ffac1940000 155648 C:\Windows\System32\browser.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL службы браузера компьютеров 131795770645376622 0x7ffac1970000 1073152 c:\windows\system32\qmgr.dll 7.8.14393.0 (rs1_release.160715-1616) Microsoft Corporation Фоновая интеллектуальная служба передачи 131795770645376622 0x7ffac1b70000 122880 C:\Windows\System32\DevDispItemProvider.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Подсистема DeviceItem inproc devquery 131795770645376622 0x7ffac1c30000 49152 C:\Windows\system32\DMProcessXMLFiltered.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation dmprocessxmlfiltered 131795779661934902 0x7ffac1c90000 155648 C:\Windows\System32\browser.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL службы браузера компьютеров 131795770645376622 0x7ffac1cf0000 417792 C:\Windows\SYSTEM32\wuuhext.dll 10.0.14393.2189 (rs1_release.180329-1711) Microsoft Corporation Windows Update Agent plugin for Windows 131795770645376622 0x7ffac1df0000 61440 c:\windows\system32\NCI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation CoInstaller: NET 131795770645376622 0x7ffac1e20000 147456 C:\Windows\system32\wbem\wmiutils.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation WMI 131795770645376622 0x7ffac1e80000 507904 C:\Windows\System32\NetSetupShim.dll 10.0.14393.1532 (rs1_release_d.170711-1840) Microsoft Corporation Network Configuration API 131795770645376622 0x7ffac1f10000 126976 c:\windows\system32\DMCmnUtils.dll 10.0.14393.1737 (rs1_release_inmarket.170914-1249) Microsoft Corporation dmcmnutils 131795770645376622 0x7ffac1f30000 118784 C:\Windows\system32\SPINF.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows SPINF 131795770645376622 0x7ffac1f50000 471040 C:\Windows\system32\wbem\esscli.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation WMI 131795770645376622 0x7ffac1fd0000 999424 C:\Windows\system32\wbem\FastProx.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation WMI Custom Marshaller 131795770645376622 0x7ffac20d0000 110592 c:\windows\system32\RMCLIENT.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Resource Manager Client 131795770645376622 0x7ffac20f0000 753664 C:\Windows\system32\CLUSAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека API кластера 131795770645376622 0x7ffac21d0000 81920 C:\Windows\system32\wbem\wbemsvc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation WMI 131795770645376622 0x7ffac2210000 1351680 C:\Windows\system32\wbem\wbemcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Инструментарий управления Windows 131795770645376622 0x7ffac2360000 57344 c:\windows\system32\TimeBrokerClient.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Time Broker Client Library 131795770645376622 0x7ffac2370000 110592 C:\Windows\system32\adhsvc.dll 10.0.14393.2189 (rs1_release.180329-1711) Microsoft Corporation AD Harvest Sites and Subnets Service 131795770645376622 0x7ffac2390000 147456 C:\Windows\system32\httpprxm.dll 10.0.14393.2189 (rs1_release.180329-1711) Microsoft Corporation Proxy Manager 131795775850813653 0x7ffac23c0000 331776 C:\Windows\System32\OneCoreCommonProxyStub.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation OneCore Common Proxy Stub 131795770645376622 0x7ffac24a0000 397312 C:\Windows\system32\RESUTILS.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL служебной программы ресурсов кластера (Майкрософт) 131795770645376622 0x7ffac2530000 270336 C:\Windows\system32\hnetcfgclient.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиент API конфигурации домашней сети 131795784861928280 0x7ffac2590000 659456 C:\Windows\System32\FlightSettings.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Параметры цикла тестирования 131795770645376622 0x7ffac2640000 188416 C:\Windows\system32\wmidcom.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation WMI 131795770645376622 0x7ffac2670000 376832 C:\Windows\system32\miutils.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Инфраструктура управления 131795770645376622 0x7ffac26f0000 36864 C:\Windows\SYSTEM32\sscoreext.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Server Service Core DLL 131795770645376622 0x7ffac2720000 192512 C:\Windows\SYSTEM32\WPTaskScheduler.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation WP Task Scheduler DLL 131795784861934949 0x7ffac2750000 106496 C:\Windows\System32\bcd.dll 10.0.14393.1794 (rs1_release.171008-1615) Microsoft Corporation BCD DLL 131795770645376622 0x7ffac2770000 69632 C:\Windows\system32\SSCORE.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Основная DLL-библиотека службы сервера 131795770645376622 0x7ffac2940000 45056 c:\windows\system32\CSystemEventsBrokerClient.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Classic System Events Broker Client Library 131795770645376622 0x7ffac29f0000 159744 c:\windows\system32\NetSetupApi.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Network Configuration API 131795770645376622 0x7ffac2a20000 81920 c:\windows\system32\rtutils.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Routing Utilities 131795770645376622 0x7ffac2a40000 974848 c:\windows\system32\iphlpsvc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Эта служба предоставляет автоматическое подключение IPv6 в сети IPv4. 131795770645376622 0x7ffac2b30000 286720 C:\Windows\System32\usermgrproxy.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation UserMgrProxy 131795770645376622 0x7ffac2c30000 135168 c:\windows\system32\CLIPC.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиент платформы лицензирования клиента 131795770645376622 0x7ffac2c60000 278528 c:\windows\system32\WDSCORE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Panther Engine Module 131795770645376622 0x7ffac2cb0000 778240 C:\Windows\System32\winsqlite3.dll 3.12.2 SQLite Development Team SQLite is a software library that implements a self-contained, serverless, zero-configuration, transactional SQL database engine. 131795770645376622 0x7ffac2d80000 5140480 C:\Windows\System32\cdp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API клиента Microsoft (R) CDP 131795770645376622 0x7ffac3360000 1396736 C:\Windows\System32\wpncore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Ядро извещающих уведомлений Windows 131795770645376622 0x7ffac34c0000 81920 C:\Windows\system32\vss_ps.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation Microsoft® Volume Shadow Copy Service proxy/stub 131795770645376622 0x7ffac34e0000 1843200 C:\Windows\System32\urlmon.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширения OLE32 для Win32 131795770645376622 0x7ffac36b0000 524288 C:\Windows\system32\msdelta.dll 5.00 (rs1_release.160715-1616) Microsoft Corporation Microsoft Patch Engine 131795770645376622 0x7ffac3740000 413696 C:\Windows\system32\upnp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API контрольной точки UPnP 131795770645376622 0x7ffac3810000 167936 C:\Windows\SYSTEM32\Cabinet.dll 5.00 (rs1_release.160715-1616) Microsoft Corporation Microsoft® Cabinet File API 131795770645376622 0x7ffac3840000 3088384 c:\windows\system32\ESENT.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширяемая подсистема хранения данных ESE для Microsoft(R) Windows(R) 131795770645376622 0x7ffac3b40000 245760 c:\windows\system32\wbem\wmisvc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation WMI 131795770645376622 0x7ffac3cb0000 2772992 C:\Windows\System32\iertutil.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служебная программа времени выполнения для Internet Explorer 131795770645376622 0x7ffac3f60000 225280 C:\Windows\system32\FWPolicyIOMgr.dll 10.0.14393.2189 (rs1_release.180329-1711) Microsoft Corporation FwPolicyIoMgr DLL 131795770645376622 0x7ffac3fa0000 331776 c:\windows\system32\srvsvc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека (DLL) ресурсов для службы сервера 131795770645376622 0x7ffac4000000 274432 C:\Windows\SYSTEM32\policymanager.dll 10.0.14393.2035 (rs1_release_inmarket.180110-1910) Microsoft Corporation Policy Manager DLL 131795770645376622 0x7ffac4160000 253952 c:\windows\system32\wpnservice.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служба системы push-уведомлений Windows 131795770645376622 0x7ffac4220000 520192 C:\Windows\SYSTEM32\wbemcomn.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation WMI 131795770645376622 0x7ffac4450000 86016 C:\Windows\SYSTEM32\usermgrcli.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation UserMgr API DLL 131795770645376622 0x7ffac4480000 499712 C:\Windows\system32\taskcomp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Оснастка обратной совместимости диспетчера задач 131795770645376622 0x7ffac4540000 69632 C:\Windows\system32\ProximityServicePAL.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Proximity Service PAL 131795775380234927 0x7ffac4b60000 155648 C:\Windows\System32\browser.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL службы браузера компьютеров 131795770645376622 0x7ffac4cc0000 36864 C:\Windows\system32\ProximityCommonPal.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Proximity Common PAL 131795770645376622 0x7ffac4dc0000 176128 C:\Windows\system32\ProximityCommon.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Универсальная реализация близкого взаимодействия 131795770645376622 0x7ffac4e70000 102400 C:\Windows\SYSTEM32\samcli.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Security Accounts Manager Client DLL 131795770645376622 0x7ffac4ee0000 331776 C:\Windows\System32\ProximityService.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Proximity Service Implementation 131795770645376622 0x7ffac4f60000 143360 C:\Windows\SYSTEM32\wcmapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Connection Manager Client API 131795770645376622 0x7ffac5c50000 131072 C:\Windows\system32\rasman.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Remote Access Connection Manager 131795770645376622 0x7ffac5ef0000 868352 C:\Windows\System32\MbaeApiPublic.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Mobile Broadband Account API 131795770645376622 0x7ffac60e0000 221184 C:\Windows\System32\XmlLite.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft XmlLite Library 131795770645376622 0x7ffac6410000 98304 C:\Windows\SYSTEM32\VssTrace.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека трассировки службы теневого копирования тома Microsoft® 131795770645376622 0x7ffac6430000 1581056 C:\Windows\SYSTEM32\VSSAPI.DLL 10.0.14393.953 (rs1_release_inmarket.170303-1614) Microsoft Corporation Microsoft® Volume Shadow Copy Requestor/Writer Services API DLL 131795770645376622 0x7ffac6610000 40960 C:\Windows\System32\rasadhlp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Remote Access AutoDial Helper 131795770645376622 0x7ffac66a0000 86016 C:\Windows\SYSTEM32\ondemandconnroutehelper.dll 10.0.14393.351 (rs1_release_inmarket.161014-1755) Microsoft Corporation On Demand Connctiond Route Helper 131795770645376622 0x7ffac6750000 1380352 c:\windows\system32\webservices.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Среда выполнения веб-служб Windows 131795770645376622 0x7ffac69c0000 839680 C:\Windows\System32\WINHTTP.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Службы HTTP Windows 131795786151642053 0x7ffac6a90000 49152 C:\Windows\System32\LocationFrameworkPS.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Geolocation Framework PS 131795770645376622 0x7ffac6c40000 2596864 C:\Windows\WinSxS\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.14393.953_none_42151e83c686086b\Comctl32.dll 6.10 (rs1_release_inmarket.170303-1614) Microsoft Corporation Библиотека элементов управления взаимодействия с пользователем 131795770645376622 0x7ffac7580000 1077248 C:\Windows\SYSTEM32\mrmcorer.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Windows MRM 131795770645376622 0x7ffac7700000 65536 C:\Windows\system32\CredentialMigrationHandler.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Credential Migration Handler 131795770645376622 0x7ffac79c0000 57344 C:\Windows\System32\npmproxy.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Network List Manager Proxy 131795770645376622 0x7ffac79d0000 53248 C:\Windows\system32\sqmapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SQM Client 131795770645376622 0x7ffac7aa0000 401408 C:\Windows\SYSTEM32\wlanapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows WLAN AutoConfig Client Side API DLL 131795783776936389 0x7ffac7ce0000 94208 C:\Windows\System32\usoapi.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Update Session Orchestrator API 131795770645376622 0x7ffac7d20000 106496 C:\Windows\SYSTEM32\msauserext.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation MSA USER Extension DLL 131795770645376622 0x7ffac7d60000 114688 c:\windows\system32\UpdatePolicy.dll 10.0.14393.2189 (rs1_release.180329-1711) Microsoft Corporation Update Policy Reader 131795770645376622 0x7ffac7e50000 86016 C:\Windows\system32\SSDPAPI.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation SSDP Client API DLL 131795770645376622 0x7ffac7e90000 749568 c:\windows\system32\FVEAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows BitLocker Drive Encryption API 131795770645376622 0x7ffac82d0000 643072 c:\windows\system32\shsvcs.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL служб оболочки Windows 131795770645376622 0x7ffac83d0000 106496 C:\Windows\SYSTEM32\dhcpcsvc.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служба DHCP-клиента 131795770645376622 0x7ffac83f0000 90112 C:\Windows\SYSTEM32\dhcpcsvc6.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиент DHCPv6 131795770645376622 0x7ffac8420000 434176 c:\windows\system32\fwpuclnt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API пользовательского режима FWP/IPsec 131795770645376622 0x7ffac8590000 135168 C:\Windows\System32\LocationWinPalMisc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Location Platform Abstraction Layer 131795770645376622 0x7ffac85c0000 1810432 c:\windows\system32\LocationFramework.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Платформа географического положения Windows 131795770645376622 0x7ffac8780000 274432 c:\windows\system32\UBPM.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL единого диспетчера фоновых процессов 131795770645376622 0x7ffac8810000 45056 c:\windows\system32\WINNSI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Network Store Information RPC interface 131795770645376622 0x7ffac8880000 69632 c:\windows\system32\WMICLNT.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation WMI Client API 131795770645376622 0x7ffac8b60000 966656 c:\windows\system32\schedsvc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служба планировщика заданий 131795783774133461 0x7ffac8cf0000 815104 C:\Windows\System32\taskschd.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Task Scheduler COM API 131795770645376622 0x7ffac8dc0000 167936 C:\Windows\system32\dbgcore.DLL 10.0.14321.1024 (debuggers(dbg).160715-1616) Microsoft Windows Core Debugging Helpers 131795770645376622 0x7ffac8df0000 1646592 C:\Windows\system32\dbghelp.dll 10.0.14321.1024 (rs1_release.160715-1616) Microsoft Windows Image Helper 131795770645376622 0x7ffac8fa0000 253952 c:\windows\system32\logoncli.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Net Logon Client DLL 131795770645376622 0x7ffac90b0000 90112 c:\windows\system32\wkscli.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Workstation Service Client DLL 131795770645376622 0x7ffac91c0000 167936 C:\Windows\SYSTEM32\profsvcext.dll 10.0.14393.1532 (rs1_release_d.170711-1840) Microsoft Corporation ProfSvcExt 131795770645376622 0x7ffac9220000 397312 C:\Windows\SYSTEM32\wevtapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API настройки и использования событий 131795770645376622 0x7ffac9290000 40960 c:\windows\system32\DSROLE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DS Setup Client DLL 131795770645376622 0x7ffac92a0000 90112 c:\windows\system32\sens.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служба уведомления о системных событиях (SENS) 131795770645376622 0x7ffac92c0000 98304 c:\windows\system32\themeservice.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL службы темы оболочки Windows 131795770645376622 0x7ffac92e0000 1269760 C:\Windows\SYSTEM32\wintypes.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL основных типов Windows 131795770645376622 0x7ffac9420000 380928 c:\windows\system32\profsvc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ProfSvc 131795770645376622 0x7ffac9790000 98304 c:\windows\system32\nlaapi.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Network Location Awareness 2 131795770645376622 0x7ffac9a70000 1257472 c:\windows\system32\gpsvc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиент групповой политики 131795770645376622 0x7ffac9bb0000 479232 C:\Windows\System32\ES.DLL 2001.12.10941.16384 (rs1_release.160715-1616) Microsoft Corporation COM+ 131795770645376622 0x7ffac9f10000 221184 C:\Windows\System32\netprofm.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Network List Manager 131795770645376622 0x7ffaca100000 36864 C:\Windows\SYSTEM32\httpprxc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Proxy Manager Provider RPC interface 131795770645376622 0x7ffaca1f0000 65536 C:\Windows\SYSTEM32\storageusage.dll 10.0.14393.82 (rs1_release.160805-1735) Microsoft Corporation Storage Usage 131795770645376622 0x7ffaca250000 49152 C:\Windows\SYSTEM32\bi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Background Broker Infrastructure Client Library 131795770645376622 0x7ffaca280000 73728 C:\Windows\System32\BitsProxy.dll 7.8.14393.0 (rs1_release.160715-1616) Microsoft Corporation Background Intelligent Transfer Service Proxy 131795770645376622 0x7ffaca340000 1593344 C:\Windows\System32\PROPSYS.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Система страниц свойств (Майкрософт) 131795770645376622 0x7ffaca4e0000 77824 C:\Windows\SYSTEM32\wtsapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Remote Desktop Session Host Server SDK APIs 131795770645376622 0x7ffaca500000 69632 C:\Windows\System32\wups.dll 10.0.14393.2122 (rs1_release.180217-2341) Microsoft Corporation Windows Update client proxy stub 131795770645376622 0x7ffaca570000 421888 C:\Windows\SYSTEM32\Bcp47Langs.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation BCP47 Language Classes 131795770645376622 0x7ffaca610000 143360 C:\Windows\SYSTEM32\SAMLIB.dll 10.0.14393.82 (rs1_release.160805-1735) Microsoft Corporation SAM Library DLL 131795770645376622 0x7ffaca700000 32768 c:\windows\system32\DABAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Desktop Activity Broker API 131795770645376622 0x7ffaca720000 77824 C:\Windows\system32\bitsigd.dll 7.8.14393.0 (rs1_release.160715-1616) Microsoft Corporation Background Intelligent Transfer Service IGD Support 131795770645376622 0x7ffacab70000 53248 c:\windows\system32\lfsvc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служба географического положения 131795770645376622 0x7ffacac40000 53248 c:\windows\system32\seclogon.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL службы вторичного входа 131795770645376622 0x7ffacac50000 45056 c:\windows\system32\bitsperf.dll 7.8.14393.0 (rs1_release.160715-1616) Microsoft Corporation Perfmon Counter Access 131795770645376622 0x7ffacad70000 278528 c:\windows\system32\BrokerLib.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Broker Base Library 131795770645376622 0x7ffacadf0000 499712 c:\windows\system32\apphelp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиентская библиотека совместимости приложений 131795770645376622 0x7ffacb000000 53248 c:\windows\system32\SYSNTFY.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Windows Notifications Dynamic Link Library 131795770645376622 0x7ffacb140000 593920 C:\Windows\System32\msvcp110_win.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Microsoft® STL110 C++ Runtime Library 131795770645376622 0x7ffacb1e0000 1163264 C:\Windows\SYSTEM32\twinapi.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation twinapi.appcore 131795770645376622 0x7ffacb300000 364544 C:\Windows\System32\VEEventDispatcher.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Visual Element Event dispatcher 131795770645376622 0x7ffacb360000 176128 C:\Windows\system32\fwbase.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Firewall Base DLL 131795770645376622 0x7ffacb3d0000 110592 C:\Windows\SYSTEM32\resourcepolicyclient.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Resource Policy Client 131795770645376622 0x7ffacb3f0000 163840 c:\windows\system32\DEVOBJ.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Device Information Set DLL 131795770645376622 0x7ffacb420000 204800 C:\Windows\SYSTEM32\ntmarta.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик Windows NT MARTA 131795770645376622 0x7ffacb460000 548864 C:\Windows\SYSTEM32\firewallapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API брандмауэра Windows 131795770645376622 0x7ffacb6e0000 49152 c:\windows\system32\HID.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека пользователя HID 131795770645376622 0x7ffacb6f0000 143360 C:\Windows\SYSTEM32\gpapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиентские функции API групповой политики 131795770645376622 0x7ffacb920000 81920 C:\Windows\SYSTEM32\WLDP.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Политика блокировки Windows 131795770645376622 0x7ffacb960000 303104 c:\windows\system32\AUTHZ.dll 10.0.14393.1737 (rs1_release_inmarket.170914-1249) Microsoft Corporation Authorization Framework 131795770645376622 0x7ffacbaf0000 495616 C:\Windows\system32\schannel.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик безопасности TLS/SSL 131795770645376622 0x7ffacbbb0000 208896 C:\Windows\system32\rsaenh.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Enhanced Cryptographic Provider 131795770645376622 0x7ffacbbf0000 40960 C:\Windows\system32\DPAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Data Protection API 131795770645376622 0x7ffacbd30000 229376 C:\Windows\system32\IPHLPAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API вспомогательного приложения IP 131795770645376622 0x7ffacbd70000 659456 C:\Windows\system32\DNSAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Динамическая библиотека API DNS-клиента 131795770645376622 0x7ffacbe20000 53248 c:\windows\system32\netutils.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API Helpers DLL 131795770645376622 0x7ffacbe40000 126976 c:\windows\system32\USERENV.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Userenv 131795770645376622 0x7ffacbfb0000 376832 C:\Windows\system32\MSWSOCK.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширение поставщика службы API Microsoft Windows Sockets 2.0 131795770645376622 0x7ffacc150000 94208 C:\Windows\SYSTEM32\cryptsp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Cryptographic Service Provider API 131795770645376622 0x7ffacc170000 45056 C:\Windows\System32\CRYPTBASE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base cryptographic API DLL 131795770645376622 0x7ffacc1f0000 241664 C:\Windows\System32\NTASN1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft ASN.1 API 131795770645376622 0x7ffacc230000 155648 C:\Windows\System32\ncrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Маршрутизатор Windows NCrypt 131795770645376622 0x7ffacc350000 180224 C:\Windows\System32\SspiCli.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Security Support Provider Interface 131795770645376622 0x7ffacc500000 102400 c:\windows\system32\EventAggregation.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Event Aggregation User Mode Library 131795770645376622 0x7ffacc520000 622592 C:\Windows\SYSTEM32\sxs.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Fusion 2.5 131795770645376622 0x7ffacc5c0000 352256 C:\Windows\SYSTEM32\winsta.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Winstation Library 131795770645376622 0x7ffacc620000 176128 c:\windows\system32\bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795770645376622 0x7ffacc6e0000 61440 C:\Windows\System32\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795770645376622 0x7ffacc6f0000 311296 C:\Windows\System32\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795770645376622 0x7ffacc740000 81920 C:\Windows\System32\profapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Profile Basic API 131795770645376622 0x7ffacc760000 65536 C:\Windows\System32\MSASN1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ASN.1 Runtime APIs 131795770645376622 0x7ffacc8f0000 1003520 C:\Windows\System32\ucrtbase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645376622 0x7ffacc9f0000 434176 C:\Windows\System32\bcryptPrimitives.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Cryptographic Primitives Library 131795770645376622 0x7ffacca60000 122880 C:\Windows\System32\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795770645376622 0x7ffacca80000 348160 C:\Windows\System32\WINTRUST.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation Microsoft Trust Verification APIs 131795770645376622 0x7ffaccae0000 692224 C:\Windows\System32\shcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795770645376622 0x7ffaccb90000 7180288 C:\Windows\System32\windows.storage.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API хранения Microsoft WinRT 131795770645376622 0x7ffacd270000 2215936 C:\Windows\System32\KERNELBASE.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645376622 0x7ffacd490000 1871872 C:\Windows\System32\CRYPT32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API32 криптографии 131795770645376622 0x7ffacd710000 638976 C:\Windows\System32\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645376622 0x7ffacd7b0000 270336 C:\Windows\System32\cfgmgr32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Configuration Manager DLL 131795770645376622 0x7ffacd810000 22056960 C:\Windows\System32\SHELL32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Общая библиотека оболочки Windows 131795770645376622 0x7ffaced20000 782336 C:\Windows\System32\OLEAUT32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795770645376622 0x7ffacede0000 450560 C:\Windows\System32\coml2.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft COM for Windows 131795770645376622 0x7ffacee50000 1183744 C:\Windows\System32\RPCRT4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795770645376622 0x7ffacef80000 32768 C:\Windows\System32\NSI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation NSI User-mode interface DLL 131795770645376622 0x7ffacef90000 647168 C:\Windows\System32\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795770645376622 0x7ffacf030000 651264 C:\Windows\System32\clbcatq.dll 2001.12.10941.16384 (rs1_release.160715-1616) Microsoft Corporation COM+ Configuration Catalog 131795770645376622 0x7ffacf0d0000 704512 C:\Windows\System32\KERNEL32.DLL 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645376622 0x7ffacf180000 376832 C:\Windows\System32\WLDAP32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Win32 LDAP API DLL 131795770645376622 0x7ffacf340000 4362240 C:\Windows\System32\setupapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Setup API 131795770645376622 0x7ffacf770000 212992 C:\Windows\System32\GDI32.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation GDI Client DLL 131795770645376622 0x7ffacf820000 434176 C:\Windows\System32\WS2_32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation 32-разрядная библиотека Windows Socket 2.0 131795770645376622 0x7ffacf8c0000 1462272 C:\Windows\System32\user32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795770645376622 0x7ffacfb30000 2916352 C:\Windows\System32\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795770645376622 0x7ffacfe00000 114688 C:\Windows\System32\imagehlp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT Image Helper 131795770645376622 0x7ffacfe20000 663552 C:\Windows\System32\advapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795770645376622 0x7ffad0070000 1277952 C:\Windows\System32\ole32.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft OLE для Windows 131795770645376622 0x7ffad01b0000 335872 C:\Windows\System32\shlwapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека небольших программ оболочки 131795770645376622 0x7ffad0210000 364544 C:\Windows\System32\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795770645376622 0x7ffad0270000 1908736 C:\Windows\SYSTEM32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 25 372 580 4 00000000:000003e5 131765776305463443 0 0 1 Обязательная метка\Обязательный уровень системы NT AUTHORITY\LOCAL SERVICE svchost.exe C:\Windows\system32\svchost.exe C:\Windows\system32\svchost.exe -k LocalService Microsoft Corporation 10.0.14393.0 (rs1_release.160715-1616) Хост-процесс для служб Windows 131795770645376755 0x7ff718c20000 57344 C:\Windows\system32\svchost.exe 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Хост-процесс для служб Windows 131795770645376755 0x7ffab1c40000 1302528 c:\windows\system32\LicenseManager.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation LicenseManager 131795770645376755 0x7ffab91f0000 233472 c:\windows\system32\sstpsvc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Обеспечивает возможность использования SSTP для подключения к удаленным компьютерам с помощью VPN. 131795770645376755 0x7ffab93b0000 897024 C:\Windows\System32\TokenBroker.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Token Broker 131795770645376755 0x7ffabaab0000 94208 C:\Windows\SYSTEM32\profext.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation profext 131795780812578370 0x7ffabafc0000 700416 C:\Windows\System32\wer.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека сообщений об ошибках Windows 131795770645376755 0x7ffabbd10000 65536 C:\Windows\System32\TOKENBINDING.dll 10.0.14393.1593 (rs1_release.170731-1934) Microsoft Corporation Token Binding Protocol 131795770645376755 0x7ffabc610000 540672 c:\windows\system32\w32time.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служба времени Windows 131795770645376755 0x7ffabca50000 819200 C:\Windows\System32\Windows.Security.Authentication.Web.Core.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Token Broker WinRT API 131795770645376755 0x7ffabcb70000 262144 C:\Windows\System32\cdprt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft (R) CDP Client WinRT API 131795770645376755 0x7ffabef00000 499712 c:\windows\system32\cdpsvc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служба CDP Майкрософт (R) 131795770645376755 0x7ffabf2d0000 344064 C:\Windows\system32\ncryptprov.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft KSP 131795770645376755 0x7ffabf330000 2457600 C:\Windows\System32\msxml6.dll 6.30.14393.2156 Microsoft Corporation MSXML 6.0 131795770645376755 0x7ffabfbe0000 1011712 C:\Windows\System32\Windows.Security.Authentication.OnlineId.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation Windows Runtime OnlineId Authentication DLL 131795770645376755 0x7ffabff60000 135168 C:\Windows\system32\ncryptsslp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft SChannel Provider 131795770645376755 0x7ffac05e0000 40960 c:\windows\system32\sbservicetrigger.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Socket Broker Service Trigger 131795770645376755 0x7ffac05f0000 94208 C:\Windows\System32\wwapi.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation WWAN API 131795770645376755 0x7ffac0910000 724992 C:\Windows\System32\Windows.Networking.Connectivity.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Networking Connectivity Runtime DLL 131795770645376755 0x7ffac0ad0000 86016 C:\Windows\SYSTEM32\mskeyprotect.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик защиты ключей (Майкрософт) 131795770645376755 0x7ffac1160000 892928 C:\Windows\System32\wuapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API клиента Центра обновления Windows 131795770645376755 0x7ffac1d60000 589824 C:\Windows\System32\webio.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API протоколов передачи по Веб 131795770645376755 0x7ffac23c0000 331776 C:\Windows\System32\OneCoreCommonProxyStub.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation OneCore Common Proxy Stub 131795770645376755 0x7ffac2a20000 81920 c:\windows\system32\rtutils.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Routing Utilities 131795770645376755 0x7ffac2b30000 286720 C:\Windows\System32\usermgrproxy.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation UserMgrProxy 131795770645376755 0x7ffac2c30000 135168 c:\windows\system32\CLIPC.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиент платформы лицензирования клиента 131795770645376755 0x7ffac2d80000 5140480 c:\windows\system32\cdp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API клиента Microsoft (R) CDP 131795780812550384 0x7ffac3290000 86016 C:\Windows\System32\fthsvc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Модуль диагностики отказоустойчивой кучи Microsoft Windows 131795770645376755 0x7ffac3cb0000 2772992 C:\Windows\System32\iertutil.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служебная программа времени выполнения для Internet Explorer 131795770645376755 0x7ffac3f60000 225280 C:\Windows\System32\FWPolicyIOMgr.dll 10.0.14393.2189 (rs1_release.180329-1711) Microsoft Corporation FwPolicyIoMgr DLL 131795770645376755 0x7ffac4050000 118784 c:\windows\system32\wdi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Инфраструктура диагностики Windows 131795770645376755 0x7ffac4130000 40960 c:\windows\system32\fdphost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служба размещения поставщиков функций обнаружения 131795770645376755 0x7ffac41a0000 77824 C:\Windows\System32\fdproxy.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation Function Discovery Proxy Dll 131795770645376755 0x7ffac4200000 98304 C:\Windows\system32\perftrack.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Performance PerfTrack 131795770645376755 0x7ffac42a0000 659456 C:\Windows\System32\StateRepository.Core.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation StateRepository Core 131795770645376755 0x7ffac4450000 86016 C:\Windows\SYSTEM32\usermgrcli.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation UserMgr API DLL 131795770645376755 0x7ffac46d0000 4161536 C:\Windows\System32\Windows.StateRepository.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Сервер Windows StateRepository API Server 131795770645376755 0x7ffac5070000 798720 C:\Windows\System32\Windows.Web.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL веб-клиента 131795770645376755 0x7ffac5b80000 184320 C:\Windows\SYSTEM32\AuthBroker.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API WinRT для веб-проверки подлинности 131795770645376755 0x7ffac60e0000 221184 C:\Windows\System32\XmlLite.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft XmlLite Library 131795770645376755 0x7ffac6400000 53248 c:\windows\system32\HTTPAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation HTTP Protocol Stack API 131795770645376755 0x7ffac6610000 40960 C:\Windows\System32\rasadhlp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Remote Access AutoDial Helper 131795770645376755 0x7ffac66a0000 86016 C:\Windows\SYSTEM32\ondemandconnroutehelper.dll 10.0.14393.351 (rs1_release_inmarket.161014-1755) Microsoft Corporation On Demand Connctiond Route Helper 131795770645376755 0x7ffac66e0000 122880 C:\Windows\System32\fdssdp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Function Discovery SSDP Provider Dll 131795770645376755 0x7ffac6710000 172032 C:\Windows\System32\FunDisc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL обнаружения функции 131795770645376755 0x7ffac6750000 1380352 C:\Windows\System32\webservices.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Среда выполнения веб-служб Windows 131795770645376755 0x7ffac68b0000 696320 C:\Windows\System32\wsdapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Веб-службы для библиотек DLL API-интерфейсов устройств 131795770645376755 0x7ffac6960000 167936 C:\Windows\System32\fdwsd.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Function Discovery WS Discovery Provider Dll 131795770645376755 0x7ffac69c0000 839680 C:\Windows\System32\WINHTTP.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Службы HTTP Windows 131795770645376755 0x7ffac76d0000 65536 C:\Windows\System32\vmictimeprovider.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Virtual Machine Integration Component Time Sync Provider Library 131795770645376755 0x7ffac79c0000 57344 C:\Windows\System32\npmproxy.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Network List Manager Proxy 131795770645376755 0x7ffac7a10000 544768 c:\windows\system32\netprofmsvc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Диспетчер списка сетей 131795770645376755 0x7ffac7aa0000 401408 C:\Windows\SYSTEM32\wlanapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows WLAN AutoConfig Client Side API DLL 131795770645376755 0x7ffac7d20000 106496 C:\Windows\SYSTEM32\msauserext.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation MSA USER Extension DLL 131795770645376755 0x7ffac7e50000 86016 C:\Windows\System32\SSDPAPI.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation SSDP Client API DLL 131795770645376755 0x7ffac7f70000 49152 c:\windows\system32\licensemanagersvc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation LicenseManagerSvc 131795770645376755 0x7ffac83d0000 106496 C:\Windows\SYSTEM32\dhcpcsvc.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служба DHCP-клиента 131795770645376755 0x7ffac83f0000 90112 C:\Windows\SYSTEM32\dhcpcsvc6.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиент DHCPv6 131795770645376755 0x7ffac8420000 434176 C:\Windows\System32\fwpuclnt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API пользовательского режима FWP/IPsec 131795770645376755 0x7ffac8540000 286720 C:\Windows\System32\vaultcli.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиентская библиотека хранилища учетных данных 131795770645376755 0x7ffac8810000 45056 C:\Windows\SYSTEM32\WINNSI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Network Store Information RPC interface 131795770645376755 0x7ffac8fa0000 253952 c:\windows\system32\logoncli.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Net Logon Client DLL 131795770645376755 0x7ffac90a0000 53248 c:\windows\system32\nsisvc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation RPC-сервер интерфейса сохранения сети 131795770645376755 0x7ffac90b0000 90112 C:\Windows\SYSTEM32\wkscli.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Workstation Service Client DLL 131795770645376755 0x7ffac91f0000 172032 c:\windows\system32\FontProvider.dll 10.0.14393.1066 (rs1_release_sec.170327-1835) Microsoft Corporation Windows Font Provider Library 131795780812573070 0x7ffac9220000 397312 C:\Windows\System32\wevtapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API настройки и использования событий 131795770645376755 0x7ffac9290000 40960 c:\windows\system32\DSROLE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DS Setup Client DLL 131795770645376755 0x7ffac92e0000 1269760 C:\Windows\System32\WinTypes.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL основных типов Windows 131795770645376755 0x7ffac9790000 98304 c:\windows\system32\nlaapi.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Network Location Awareness 2 131795770645376755 0x7ffac9860000 1896448 c:\windows\system32\fntcache.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служба кэша шрифтов Windows 131795770645376755 0x7ffac9bb0000 479232 c:\windows\system32\es.dll 2001.12.10941.16384 (rs1_release.160715-1616) Microsoft Corporation COM+ 131795770645376755 0x7ffaca130000 204800 C:\Windows\SYSTEM32\windows.devices.radios.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows.Devices.Radios DLL 131795770645376755 0x7ffaca280000 73728 C:\Windows\System32\BitsProxy.dll 7.8.14393.0 (rs1_release.160715-1616) Microsoft Corporation Background Intelligent Transfer Service Proxy 131795770645376755 0x7ffaca340000 1593344 C:\Windows\system32\propsys.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Система страниц свойств (Майкрософт) 131795770645376755 0x7ffaca500000 69632 C:\Windows\System32\wups.dll 10.0.14393.2122 (rs1_release.180217-2341) Microsoft Corporation Windows Update client proxy stub 131795780812567382 0x7ffacadf0000 499712 C:\Windows\System32\apphelp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиентская библиотека совместимости приложений 131795770645376755 0x7ffacb140000 593920 c:\windows\system32\msvcp110_win.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Microsoft® STL110 C++ Runtime Library 131795770645376755 0x7ffacb1e0000 1163264 C:\Windows\System32\twinapi.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation twinapi.appcore 131795770645376755 0x7ffacb300000 364544 c:\windows\system32\VEEventDispatcher.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Visual Element Event dispatcher 131795770645376755 0x7ffacb360000 176128 C:\Windows\System32\fwbase.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Firewall Base DLL 131795770645376755 0x7ffacb420000 204800 C:\Windows\SYSTEM32\ntmarta.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик Windows NT MARTA 131795770645376755 0x7ffacb460000 548864 C:\Windows\System32\FirewallAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API брандмауэра Windows 131795770645376755 0x7ffacb6f0000 143360 C:\Windows\SYSTEM32\gpapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиентские функции API групповой политики 131795770645376755 0x7ffacb920000 81920 C:\Windows\SYSTEM32\WLDP.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Политика блокировки Windows 131795770645376755 0x7ffacbaf0000 495616 C:\Windows\system32\schannel.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик безопасности TLS/SSL 131795770645376755 0x7ffacbbb0000 208896 C:\Windows\system32\rsaenh.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Enhanced Cryptographic Provider 131795770645376755 0x7ffacbbf0000 40960 C:\Windows\SYSTEM32\DPAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Data Protection API 131795770645376755 0x7ffacbd30000 229376 c:\windows\system32\IPHLPAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API вспомогательного приложения IP 131795770645376755 0x7ffacbd70000 659456 C:\Windows\SYSTEM32\DNSAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Динамическая библиотека API DNS-клиента 131795770645376755 0x7ffacbe20000 53248 C:\Windows\SYSTEM32\netutils.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API Helpers DLL 131795770645376755 0x7ffacbe40000 126976 c:\windows\system32\USERENV.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Userenv 131795770645376755 0x7ffacbfb0000 376832 C:\Windows\system32\mswsock.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширение поставщика службы API Microsoft Windows Sockets 2.0 131795770645376755 0x7ffacc150000 94208 C:\Windows\System32\CRYPTSP.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Cryptographic Service Provider API 131795770645376755 0x7ffacc170000 45056 C:\Windows\system32\CRYPTBASE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base cryptographic API DLL 131795770645376755 0x7ffacc1f0000 241664 c:\windows\system32\NTASN1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft ASN.1 API 131795770645376755 0x7ffacc230000 155648 c:\windows\system32\ncrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Маршрутизатор Windows NCrypt 131795770645376755 0x7ffacc350000 180224 C:\Windows\System32\SspiCli.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Security Support Provider Interface 131795770645376755 0x7ffacc520000 622592 C:\Windows\SYSTEM32\sxs.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Fusion 2.5 131795770645376755 0x7ffacc620000 176128 C:\Windows\System32\bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795770645376755 0x7ffacc6e0000 61440 C:\Windows\System32\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795770645376755 0x7ffacc6f0000 311296 C:\Windows\System32\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795770645376755 0x7ffacc740000 81920 C:\Windows\System32\profapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Profile Basic API 131795770645376755 0x7ffacc760000 65536 C:\Windows\System32\MSASN1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ASN.1 Runtime APIs 131795770645376755 0x7ffacc8f0000 1003520 C:\Windows\System32\ucrtbase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645376755 0x7ffacc9f0000 434176 C:\Windows\System32\bcryptPrimitives.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Cryptographic Primitives Library 131795770645376755 0x7ffacca60000 122880 C:\Windows\System32\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795770645376755 0x7ffacca80000 348160 C:\Windows\System32\WINTRUST.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation Microsoft Trust Verification APIs 131795770645376755 0x7ffaccae0000 692224 C:\Windows\System32\shcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795770645376755 0x7ffacd270000 2215936 C:\Windows\System32\KERNELBASE.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645376755 0x7ffacd490000 1871872 C:\Windows\System32\CRYPT32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API32 криптографии 131795770645376755 0x7ffacd710000 638976 C:\Windows\System32\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645376755 0x7ffacd7b0000 270336 C:\Windows\System32\cfgmgr32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Configuration Manager DLL 131795770645376755 0x7ffaced20000 782336 C:\Windows\System32\OLEAUT32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795770645376755 0x7ffacede0000 450560 C:\Windows\System32\coml2.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft COM for Windows 131795770645376755 0x7ffacee50000 1183744 C:\Windows\System32\RPCRT4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795770645376755 0x7ffacef80000 32768 C:\Windows\System32\NSI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation NSI User-mode interface DLL 131795770645376755 0x7ffacef90000 647168 C:\Windows\System32\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795770645376755 0x7ffacf030000 651264 C:\Windows\System32\clbcatq.dll 2001.12.10941.16384 (rs1_release.160715-1616) Microsoft Corporation COM+ Configuration Catalog 131795770645376755 0x7ffacf0d0000 704512 C:\Windows\System32\KERNEL32.DLL 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645376755 0x7ffacf770000 212992 C:\Windows\System32\GDI32.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation GDI Client DLL 131795770645376755 0x7ffacf820000 434176 C:\Windows\System32\WS2_32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation 32-разрядная библиотека Windows Socket 2.0 131795770645376755 0x7ffacf8c0000 1462272 C:\Windows\System32\user32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795770645376755 0x7ffacfb30000 2916352 C:\Windows\System32\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795770645376755 0x7ffacfe20000 663552 C:\Windows\System32\advapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795770645376755 0x7ffad0070000 1277952 C:\Windows\System32\ole32.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft OLE для Windows 131795770645376755 0x7ffad0210000 364544 C:\Windows\System32\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795770645376755 0x7ffad0270000 1908736 C:\Windows\SYSTEM32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 26 360 580 4 00000000:000003e5 131765776311216195 0 0 1 Обязательная метка\Обязательный уровень системы NT AUTHORITY\LOCAL SERVICE svchost.exe C:\Windows\System32\svchost.exe C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted Microsoft Corporation 10.0.14393.0 (rs1_release.160715-1616) Хост-процесс для служб Windows 131795770645376855 0x7ff718c20000 57344 C:\Windows\System32\svchost.exe 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Хост-процесс для служб Windows 131795770645376855 0x7ffab4af0000 606208 C:\Windows\System32\audioses.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Сеанс обработки звука 131795770645376855 0x7ffabaad0000 352256 C:\Windows\System32\deviceaccess.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Device Broker And Policy COM Server 131795770645376855 0x7ffac7e70000 36864 C:\Windows\SYSTEM32\coreaudiopolicymanagerext.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation "coreaudiopolicymanagerext.DYNLINK" 131795770645376855 0x7ffac87d0000 237568 c:\windows\system32\AUDIOSRVPOLICYMANAGER.dll 10.0.14393.351 (rs1_release_inmarket.161014-1755) Microsoft Corporation Windows Audio Service Policy Manager 131795770645376855 0x7ffac90d0000 978944 c:\windows\system32\audiosrv.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служба Windows Audio 131795770645376855 0x7ffac92e0000 1269760 C:\Windows\SYSTEM32\wintypes.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL основных типов Windows 131795770645376855 0x7ffac9480000 462848 c:\windows\system32\MMDevAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation MMDevice API 131795770645376855 0x7ffaca340000 1593344 c:\windows\system32\PROPSYS.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Система страниц свойств (Майкрософт) 131795770645376855 0x7ffaca4e0000 77824 C:\Windows\SYSTEM32\wtsapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Remote Desktop Session Host Server SDK APIs 131795770645376855 0x7ffacb1e0000 1163264 C:\Windows\System32\twinapi.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation twinapi.appcore 131795770645376855 0x7ffacb3f0000 163840 c:\windows\system32\DEVOBJ.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Device Information Set DLL 131795770645376855 0x7ffacb920000 81920 C:\Windows\SYSTEM32\WLDP.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Политика блокировки Windows 131795770645376855 0x7ffacc5c0000 352256 C:\Windows\SYSTEM32\winsta.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Winstation Library 131795770645376855 0x7ffacc620000 176128 C:\Windows\System32\bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795770645376855 0x7ffacc6e0000 61440 C:\Windows\System32\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795770645376855 0x7ffacc6f0000 311296 C:\Windows\System32\POWRPROF.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795770645376855 0x7ffacc760000 65536 C:\Windows\System32\MSASN1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ASN.1 Runtime APIs 131795770645376855 0x7ffacc8f0000 1003520 C:\Windows\System32\ucrtbase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645376855 0x7ffacc9f0000 434176 C:\Windows\System32\bcryptPrimitives.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Cryptographic Primitives Library 131795770645376855 0x7ffacca60000 122880 C:\Windows\System32\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795770645376855 0x7ffacca80000 348160 C:\Windows\System32\WINTRUST.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation Microsoft Trust Verification APIs 131795770645376855 0x7ffaccae0000 692224 C:\Windows\System32\shcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795770645376855 0x7ffacd270000 2215936 C:\Windows\System32\KERNELBASE.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645376855 0x7ffacd490000 1871872 C:\Windows\System32\CRYPT32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API32 криптографии 131795770645376855 0x7ffacd710000 638976 C:\Windows\System32\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645376855 0x7ffacd7b0000 270336 C:\Windows\System32\cfgmgr32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Configuration Manager DLL 131795770645376855 0x7ffaced20000 782336 C:\Windows\System32\OLEAUT32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795770645376855 0x7ffacee50000 1183744 C:\Windows\System32\RPCRT4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795770645376855 0x7ffacef90000 647168 C:\Windows\System32\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795770645376855 0x7ffacf030000 651264 C:\Windows\System32\clbcatq.dll 2001.12.10941.16384 (rs1_release.160715-1616) Microsoft Corporation COM+ Configuration Catalog 131795770645376855 0x7ffacf0d0000 704512 C:\Windows\System32\KERNEL32.DLL 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645376855 0x7ffacf770000 212992 C:\Windows\System32\GDI32.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation GDI Client DLL 131795770645376855 0x7ffacf8c0000 1462272 C:\Windows\System32\user32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795770645376855 0x7ffacfb30000 2916352 C:\Windows\System32\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795770645376855 0x7ffad0210000 364544 C:\Windows\System32\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795770645376855 0x7ffad0270000 1908736 C:\Windows\SYSTEM32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 27 1040 580 4 00000000:000003e5 131765776311708649 0 0 1 Обязательная метка\Обязательный уровень системы NT AUTHORITY\LOCAL SERVICE svchost.exe C:\Windows\system32\svchost.exe C:\Windows\system32\svchost.exe -k LocalServiceNetworkRestricted Microsoft Corporation 10.0.14393.0 (rs1_release.160715-1616) Хост-процесс для служб Windows 131795770645376955 0x7ff718c20000 57344 C:\Windows\system32\svchost.exe 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Хост-процесс для служб Windows 131795770645376955 0x7ffac8820000 57344 C:\Windows\SYSTEM32\cmintegrator.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation cmintegrator.dll 131795770645376955 0x7ffac8880000 69632 C:\Windows\system32\WMICLNT.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation WMI Client API 131795770645376955 0x7ffac8c50000 245760 C:\Windows\system32\wcmcsp.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Windows Connection Service Provider DLL 131795770645376955 0x7ffac8fe0000 737280 c:\windows\system32\wcmsvc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL службы диспетчера подключений Windows 131795770645376955 0x7ffac9790000 98304 C:\Windows\SYSTEM32\nlaapi.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Network Location Awareness 2 131795770645376955 0x7ffaca4e0000 77824 C:\Windows\SYSTEM32\wtsapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Remote Desktop Session Host Server SDK APIs 131795770645376955 0x7ffacb6f0000 143360 C:\Windows\SYSTEM32\gpapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиентские функции API групповой политики 131795770645376955 0x7ffacb920000 81920 C:\Windows\SYSTEM32\WLDP.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Политика блокировки Windows 131795770645376955 0x7ffacbd30000 229376 c:\windows\system32\IPHLPAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API вспомогательного приложения IP 131795770645376955 0x7ffacc5c0000 352256 C:\Windows\SYSTEM32\WINSTA.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Winstation Library 131795770645376955 0x7ffacc6e0000 61440 C:\Windows\System32\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795770645376955 0x7ffacc6f0000 311296 C:\Windows\System32\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795770645376955 0x7ffacc760000 65536 C:\Windows\System32\MSASN1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ASN.1 Runtime APIs 131795770645376955 0x7ffacc8f0000 1003520 C:\Windows\System32\ucrtbase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645376955 0x7ffacc9f0000 434176 C:\Windows\System32\bcryptPrimitives.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Cryptographic Primitives Library 131795770645376955 0x7ffacca60000 122880 C:\Windows\System32\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795770645376955 0x7ffacca80000 348160 C:\Windows\System32\WINTRUST.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation Microsoft Trust Verification APIs 131795770645376955 0x7ffacd270000 2215936 C:\Windows\System32\KERNELBASE.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645376955 0x7ffacd490000 1871872 C:\Windows\System32\CRYPT32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API32 криптографии 131795770645376955 0x7ffacd710000 638976 C:\Windows\System32\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645376955 0x7ffacd7b0000 270336 C:\Windows\System32\cfgmgr32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Configuration Manager DLL 131795770645376955 0x7ffaced20000 782336 C:\Windows\System32\OLEAUT32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795770645376955 0x7ffacee50000 1183744 C:\Windows\System32\RPCRT4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795770645376955 0x7ffacef80000 32768 C:\Windows\System32\NSI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation NSI User-mode interface DLL 131795770645376955 0x7ffacef90000 647168 C:\Windows\System32\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795770645376955 0x7ffacf0d0000 704512 C:\Windows\System32\KERNEL32.DLL 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645376955 0x7ffacf770000 212992 C:\Windows\System32\GDI32.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation GDI Client DLL 131795770645376955 0x7ffacf820000 434176 C:\Windows\System32\WS2_32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation 32-разрядная библиотека Windows Socket 2.0 131795770645376955 0x7ffacf8c0000 1462272 C:\Windows\System32\user32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795770645376955 0x7ffacfb30000 2916352 C:\Windows\System32\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795770645376955 0x7ffacfe20000 663552 C:\Windows\System32\advapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795770645376955 0x7ffad0210000 364544 C:\Windows\System32\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795770645376955 0x7ffad0270000 1908736 C:\Windows\SYSTEM32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 28 1068 580 4 00000000:000003e4 131765776312395030 0 0 1 Обязательная метка\Обязательный уровень системы NT AUTHORITY\NETWORK SERVICE svchost.exe C:\Windows\system32\svchost.exe C:\Windows\system32\svchost.exe -k NetworkService Microsoft Corporation 10.0.14393.0 (rs1_release.160715-1616) Хост-процесс для служб Windows 131795770645377076 0x7ff718c20000 57344 C:\Windows\system32\svchost.exe 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Хост-процесс для служб Windows 131795770645377076 0x7ffab1fd0000 2277376 C:\Windows\System32\msxml3.dll 8.110.14393.1532 Microsoft Corporation MSXML 3.0 131795770645377076 0x7ffabcf50000 921600 C:\Windows\system32\drvstore.dll 10.0.14393.351 (rs1_release_inmarket.161014-1755) Microsoft Corporation Driver Store API 131795770645377076 0x7ffabf1d0000 192512 c:\windows\system32\CRYPTNET.dll 10.0.14393.2035 (rs1_release_inmarket.180110-1910) Microsoft Corporation Crypto Network Related API 131795770645377076 0x7ffac1d60000 589824 c:\windows\system32\webio.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API протоколов передачи по Веб 131795770645377076 0x7ffac34c0000 81920 C:\Windows\system32\vss_ps.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation Microsoft® Volume Shadow Copy Service proxy/stub 131795770645377076 0x7ffac3810000 167936 C:\Windows\SYSTEM32\Cabinet.dll 5.00 (rs1_release.160715-1616) Microsoft Corporation Microsoft® Cabinet File API 131795770645377076 0x7ffac3840000 3088384 C:\Windows\system32\ESENT.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширяемая подсистема хранения данных ESE для Microsoft(R) Windows(R) 131795770645377076 0x7ffac4e70000 102400 C:\Windows\system32\samcli.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Security Accounts Manager Client DLL 131795770645377076 0x7ffac6410000 98304 C:\Windows\system32\VssTrace.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека трассировки службы теневого копирования тома Microsoft® 131795770645377076 0x7ffac6430000 1581056 C:\Windows\system32\VSSAPI.DLL 10.0.14393.953 (rs1_release_inmarket.170303-1614) Microsoft Corporation Microsoft® Volume Shadow Copy Requestor/Writer Services API DLL 131795770645377076 0x7ffac65c0000 155648 C:\Windows\System32\cryptcatsvc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Cryptographic Catalog Services 131795770645377076 0x7ffac65f0000 77824 C:\Windows\System32\crypttpmeksvc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Cryptographic TPM Endorsement Key Services 131795770645377076 0x7ffac6610000 40960 C:\Windows\System32\rasadhlp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Remote Access AutoDial Helper 131795770645377076 0x7ffac6680000 102400 c:\windows\system32\cryptsvc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Службы криптографии 131795770645377076 0x7ffac69c0000 839680 c:\windows\system32\WINHTTP.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Службы HTTP Windows 131795770645377076 0x7ffac6b90000 53248 c:\windows\system32\DSPARSE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Active Directory Domain Services API 131795770645377076 0x7ffac6f00000 303104 c:\windows\system32\wkssvc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL службы рабочей станции 131795770645377076 0x7ffac79c0000 57344 C:\Windows\System32\npmproxy.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Network List Manager Proxy 131795770645377076 0x7ffac79e0000 184320 C:\Windows\SYSTEM32\netjoin.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL присоединения к домену 131795770645377076 0x7ffac7aa0000 401408 C:\Windows\system32\WlanApi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows WLAN AutoConfig Client Side API DLL 131795770645377076 0x7ffac7c00000 266240 C:\Windows\System32\mstask.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека интерфейса планировщика заданий 131795770645377076 0x7ffac7e50000 86016 C:\Windows\system32\ssdpapi.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation SSDP Client API DLL 131795770645377076 0x7ffac8260000 425984 c:\windows\system32\ncsi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Индикатор работоспособности сетевых подключений 131795770645377076 0x7ffac8370000 389120 c:\windows\system32\nlasvc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служба сведений о подключенных сетях 2 131795770645377076 0x7ffac83d0000 106496 C:\Windows\SYSTEM32\dhcpcsvc.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служба DHCP-клиента 131795770645377076 0x7ffac83f0000 90112 C:\Windows\SYSTEM32\dhcpcsvc6.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиент DHCPv6 131795770645377076 0x7ffac8410000 40960 C:\Windows\System32\dnsext.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DNS extension DLL 131795770645377076 0x7ffac8420000 434176 C:\Windows\SYSTEM32\Fwpuclnt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API пользовательского режима FWP/IPsec 131795770645377076 0x7ffac8810000 45056 C:\Windows\SYSTEM32\WINNSI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Network Store Information RPC interface 131795770645377076 0x7ffac8830000 290816 c:\windows\system32\dnsrslvr.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служба кэширующего сопоставителя DNS 131795770645377076 0x7ffac8880000 69632 c:\windows\system32\WMICLNT.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation WMI Client API 131795770645377076 0x7ffac8cf0000 815104 C:\Windows\System32\taskschd.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Task Scheduler COM API 131795770645377076 0x7ffac90b0000 90112 c:\windows\system32\wkscli.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Workstation Service Client DLL 131795770645377076 0x7ffac9220000 397312 C:\Windows\SYSTEM32\wevtapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API настройки и использования событий 131795770645377076 0x7ffac9bb0000 479232 C:\Windows\System32\ES.DLL 2001.12.10941.16384 (rs1_release.160715-1616) Microsoft Corporation COM+ 131795770645377076 0x7ffac9f10000 221184 C:\Windows\System32\netprofm.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Network List Manager 131795770645377076 0x7ffaca340000 1593344 C:\Windows\System32\PROPSYS.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Система страниц свойств (Майкрософт) 131795770645377076 0x7ffaca4e0000 77824 C:\Windows\SYSTEM32\wtsapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Remote Desktop Session Host Server SDK APIs 131795770645377076 0x7ffaca610000 143360 C:\Windows\system32\SAMLIB.dll 10.0.14393.82 (rs1_release.160805-1735) Microsoft Corporation SAM Library DLL 131795770645377076 0x7ffacb3f0000 163840 c:\windows\system32\DEVOBJ.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Device Information Set DLL 131795770645377076 0x7ffacb6f0000 143360 C:\Windows\SYSTEM32\gpapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиентские функции API групповой политики 131795770645377076 0x7ffacb920000 81920 C:\Windows\SYSTEM32\WLDP.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Политика блокировки Windows 131795770645377076 0x7ffacbbb0000 208896 C:\Windows\system32\rsaenh.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Enhanced Cryptographic Provider 131795770645377076 0x7ffacbd30000 229376 C:\Windows\SYSTEM32\IPHLPAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API вспомогательного приложения IP 131795770645377076 0x7ffacbd70000 659456 C:\Windows\SYSTEM32\DNSAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Динамическая библиотека API DNS-клиента 131795770645377076 0x7ffacbe20000 53248 C:\Windows\SYSTEM32\netutils.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API Helpers DLL 131795770645377076 0x7ffacbe40000 126976 C:\Windows\system32\USERENV.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Userenv 131795770645377076 0x7ffacbfb0000 376832 C:\Windows\system32\mswsock.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширение поставщика службы API Microsoft Windows Sockets 2.0 131795770645377076 0x7ffacc150000 94208 C:\Windows\SYSTEM32\CRYPTSP.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Cryptographic Service Provider API 131795770645377076 0x7ffacc170000 45056 C:\Windows\SYSTEM32\CRYPTBASE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base cryptographic API DLL 131795770645377076 0x7ffacc1b0000 126976 C:\Windows\SYSTEM32\JoinUtil.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Join Utility DLL 131795770645377076 0x7ffacc350000 180224 C:\Windows\system32\sspicli.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Security Support Provider Interface 131795770645377076 0x7ffacc520000 622592 C:\Windows\SYSTEM32\sxs.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Fusion 2.5 131795770645377076 0x7ffacc5c0000 352256 C:\Windows\SYSTEM32\WINSTA.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Winstation Library 131795770645377076 0x7ffacc620000 176128 C:\Windows\SYSTEM32\bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795770645377076 0x7ffacc6e0000 61440 C:\Windows\System32\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795770645377076 0x7ffacc6f0000 311296 C:\Windows\System32\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795770645377076 0x7ffacc740000 81920 C:\Windows\System32\profapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Profile Basic API 131795770645377076 0x7ffacc760000 65536 C:\Windows\System32\MSASN1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ASN.1 Runtime APIs 131795770645377076 0x7ffacc8f0000 1003520 C:\Windows\System32\ucrtbase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645377076 0x7ffacc9f0000 434176 C:\Windows\System32\bcryptPrimitives.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Cryptographic Primitives Library 131795770645377076 0x7ffacca60000 122880 C:\Windows\System32\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795770645377076 0x7ffacca80000 348160 C:\Windows\System32\WINTRUST.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation Microsoft Trust Verification APIs 131795770645377076 0x7ffaccae0000 692224 C:\Windows\System32\shcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795770645377076 0x7ffacd270000 2215936 C:\Windows\System32\KERNELBASE.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645377076 0x7ffacd490000 1871872 C:\Windows\System32\CRYPT32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API32 криптографии 131795770645377076 0x7ffacd710000 638976 C:\Windows\System32\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645377076 0x7ffacd7b0000 270336 C:\Windows\System32\cfgmgr32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Configuration Manager DLL 131795770645377076 0x7ffaced20000 782336 C:\Windows\System32\OLEAUT32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795770645377076 0x7ffacee50000 1183744 C:\Windows\System32\RPCRT4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795770645377076 0x7ffacef80000 32768 C:\Windows\System32\NSI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation NSI User-mode interface DLL 131795770645377076 0x7ffacef90000 647168 C:\Windows\System32\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795770645377076 0x7ffacf030000 651264 C:\Windows\System32\clbcatq.dll 2001.12.10941.16384 (rs1_release.160715-1616) Microsoft Corporation COM+ Configuration Catalog 131795770645377076 0x7ffacf0d0000 704512 C:\Windows\System32\KERNEL32.DLL 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645377076 0x7ffacf770000 212992 C:\Windows\System32\GDI32.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation GDI Client DLL 131795770645377076 0x7ffacf820000 434176 C:\Windows\System32\WS2_32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation 32-разрядная библиотека Windows Socket 2.0 131795770645377076 0x7ffacf8c0000 1462272 C:\Windows\System32\user32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795770645377076 0x7ffacfb30000 2916352 C:\Windows\System32\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795770645377076 0x7ffacfe20000 663552 C:\Windows\System32\ADVAPI32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795770645377076 0x7ffad0210000 364544 C:\Windows\System32\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795770645377076 0x7ffad0270000 1908736 C:\Windows\SYSTEM32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 29 1248 580 4 00000000:000003e7 131765776322176070 0 0 1 Обязательная метка\Обязательный уровень системы NT AUTHORITY\СИСТЕМА spoolsv.exe C:\Windows\System32\spoolsv.exe C:\Windows\System32\spoolsv.exe Microsoft Corporation 10.0.14393.0 (rs1_release.160715-1616) Диспетчер очереди печати 131795770645377182 0x7ff639680000 819200 C:\Windows\System32\spoolsv.exe 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Диспетчер очереди печати 131795770645377182 0x7ffab8a60000 3346432 C:\Windows\system32\spool\DRIVERS\x64\3\PrintConfig.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Пользовательский интерфейс PrintConfig 131795770645377182 0x7ffaba980000 815104 C:\Windows\System32\jscript.dll 5.812.10240.16384 Microsoft Corporation Microsoft ® JScript 131795770645377182 0x7ffabae60000 77824 C:\Windows\System32\DEVRTL.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Device Management Run Time Library 131795770645377182 0x7ffabb7d0000 851968 C:\Windows\System32\win32spl.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик печати с исполнением на стороне клиента 131795770645377182 0x7ffabbd40000 176128 C:\Windows\SYSTEM32\prntvpt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Print Ticket Services Module 131795770645377182 0x7ffabbd70000 3346432 C:\Windows\System32\DriverStore\FileRepository\prnms003.inf_amd64_53d78f68bc1697cc\Amd64\PrintConfig.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Пользовательский интерфейс PrintConfig 131795770645377182 0x7ffabc0c0000 118784 C:\Windows\System32\SPFILEQ.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows SPFILEQ 131795770645377182 0x7ffabc590000 118784 C:\Program Files\Windows Defender\MpOav.dll 4.10.14393.1794 (rs1_release.171008-1615) Microsoft Corporation IOfficeAntiVirus Module 131795770645377182 0x7ffabc5b0000 65536 C:\Windows\SYSTEM32\amsi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Anti-Malware Scan Interface 131795770645377182 0x7ffabc880000 73728 C:\Windows\System32\cscapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Offline Files Win32 API 131795770645377182 0x7ffabcf50000 921600 C:\Windows\System32\drvstore.dll 10.0.14393.351 (rs1_release_inmarket.161014-1755) Microsoft Corporation Driver Store API 131795770645377182 0x7ffabd040000 77824 C:\Windows\System32\fdPnp.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Pnp Provider Dll 131795770645377182 0x7ffabd060000 610304 C:\Windows\System32\WSDMon.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Диспетчер порта принтера WSD 131795770645377182 0x7ffabd100000 348160 C:\Windows\System32\usbmon.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Standard Dynamic Printing Port Monitor DLL 131795770645377182 0x7ffabd160000 86016 C:\Windows\System32\wsnmp32.dll 10.0.14393.2189 (rs1_release.180329-1711) Microsoft Corporation Microsoft WinSNMP v2.0 Manager API 131795770645377182 0x7ffabd180000 548864 C:\Windows\system32\winspool.drv 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Драйвер диспетчера очереди Windows 131795770645377182 0x7ffabd2a0000 1159168 C:\Windows\System32\localspl.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Библиотека локального диспетчера очереди 131795770645377182 0x7ffabde60000 237568 C:\Windows\System32\tcpmon.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека монитора портов TCP/IP 131795770645377182 0x7ffabe3f0000 65536 C:\Windows\system32\spool\PRTPROCS\x64\winprint.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Windows Print Processor DLL 131795770645377182 0x7ffabe6c0000 77824 C:\Windows\System32\PrintIsolationProxy.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Print Sandbox COM Proxy Stub 131795770645377182 0x7ffabe8a0000 49152 C:\Windows\System32\snmpapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SNMP Utility Library 131795770645377182 0x7ffabe980000 114688 C:\Windows\System32\SPOOLSS.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Spooler SubSystem DLL 131795770645377182 0x7ffabef80000 69632 C:\Windows\System32\sfc_os.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows File Protection 131795770645377182 0x7ffabf330000 2457600 C:\Windows\System32\msxml6.dll 6.30.14393.2156 Microsoft Corporation MSXML 6.0 131795770645377182 0x7ffabf5d0000 2924544 C:\Windows\SYSTEM32\wininet.dll 11.00.14393.447 (rs1_release_inmarket.161102-0100) Microsoft Corporation Расширения Интернета для Win32 131795770645377182 0x7ffabff10000 155648 C:\Windows\System32\srvcli.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Server Service Client DLL 131795770645377182 0x7ffac0af0000 114688 C:\Windows\System32\ATL.DLL 3.05.2284 Microsoft Corporation ATL Module for Windows XP (Unicode) 131795770645377182 0x7ffac1f00000 65536 C:\Windows\System32\FXSMON.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Fax Print Monitor 131795770645377182 0x7ffac1f30000 118784 C:\Windows\System32\SPINF.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows SPINF 131795770645377182 0x7ffac2b80000 40960 C:\Windows\SYSTEM32\VERSION.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Version Checking and File Installation Libraries 131795770645377182 0x7ffac34e0000 1843200 C:\Windows\SYSTEM32\urlmon.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширения OLE32 для Win32 131795770645377182 0x7ffac3810000 167936 C:\Windows\System32\cabinet.dll 5.00 (rs1_release.160715-1616) Microsoft Corporation Microsoft® Cabinet File API 131795770645377182 0x7ffac3cb0000 2772992 C:\Windows\SYSTEM32\iertutil.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служебная программа времени выполнения для Internet Explorer 131795770645377182 0x7ffac4e90000 32768 C:\Windows\System32\wshirda.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Sockets Helper DLL 131795770645377182 0x7ffac60e0000 221184 C:\Windows\System32\XmlLite.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft XmlLite Library 131795770645377182 0x7ffac6610000 40960 C:\Windows\System32\rasadhlp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Remote Access AutoDial Helper 131795770645377182 0x7ffac6710000 172032 C:\Windows\System32\FunDisc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL обнаружения функции 131795770645377182 0x7ffac6750000 1380352 C:\Windows\System32\webservices.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Среда выполнения веб-служб Windows 131795770645377182 0x7ffac68b0000 696320 C:\Windows\System32\wsdapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Веб-службы для библиотек DLL API-интерфейсов устройств 131795770645377182 0x7ffac6990000 69632 C:\Windows\System32\deviceassociation.dll 10.0.14393.82 (rs1_release.160805-1735) Microsoft Corporation Device Association Client DLL 131795770645377182 0x7ffac69c0000 839680 C:\Windows\System32\WINHTTP.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Службы HTTP Windows 131795770645377182 0x7ffac6ba0000 49152 C:\Windows\System32\Secur32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Security Support Provider Interface 131795770645377182 0x7ffac7e00000 196608 C:\Windows\System32\inetpp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL Internet Print Provider 131795770645377182 0x7ffac8420000 434176 C:\Windows\System32\fwpuclnt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API пользовательского режима FWP/IPsec 131795770645377182 0x7ffac8810000 45056 C:\Windows\SYSTEM32\WINNSI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Network Store Information RPC interface 131795770645377182 0x7ffac9290000 40960 C:\Windows\System32\DSROLE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DS Setup Client DLL 131795770645377182 0x7ffaca4e0000 77824 C:\Windows\System32\WTSAPI32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Remote Desktop Session Host Server SDK APIs 131795770645377182 0x7ffacadf0000 499712 C:\Windows\system32\apphelp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиентская библиотека совместимости приложений 131795770645377182 0x7ffacb360000 176128 C:\Windows\System32\fwbase.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Firewall Base DLL 131795770645377182 0x7ffacb3f0000 163840 C:\Windows\System32\DEVOBJ.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Device Information Set DLL 131795770645377182 0x7ffacb420000 204800 C:\Windows\SYSTEM32\ntmarta.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик Windows NT MARTA 131795770645377182 0x7ffacb460000 548864 C:\Windows\System32\FirewallAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API брандмауэра Windows 131795770645377182 0x7ffacb6f0000 143360 C:\Windows\SYSTEM32\gpapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиентские функции API групповой политики 131795770645377182 0x7ffacbbb0000 208896 C:\Windows\system32\rsaenh.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Enhanced Cryptographic Provider 131795770645377182 0x7ffacbd30000 229376 C:\Windows\SYSTEM32\IPHLPAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API вспомогательного приложения IP 131795770645377182 0x7ffacbd70000 659456 C:\Windows\System32\DNSAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Динамическая библиотека API DNS-клиента 131795770645377182 0x7ffacbe20000 53248 C:\Windows\System32\netutils.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API Helpers DLL 131795770645377182 0x7ffacbe40000 126976 C:\Windows\System32\USERENV.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Userenv 131795770645377182 0x7ffacbfb0000 376832 C:\Windows\system32\mswsock.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширение поставщика службы API Microsoft Windows Sockets 2.0 131795770645377182 0x7ffacc150000 94208 C:\Windows\System32\CRYPTSP.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Cryptographic Service Provider API 131795770645377182 0x7ffacc170000 45056 C:\Windows\System32\CRYPTBASE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base cryptographic API DLL 131795770645377182 0x7ffacc350000 180224 C:\Windows\System32\SspiCli.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Security Support Provider Interface 131795770645377182 0x7ffacc520000 622592 C:\Windows\SYSTEM32\sxs.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Fusion 2.5 131795770645377182 0x7ffacc5c0000 352256 C:\Windows\System32\WINSTA.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Winstation Library 131795770645377182 0x7ffacc620000 176128 C:\Windows\System32\bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795770645377182 0x7ffacc6e0000 61440 C:\Windows\System32\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795770645377182 0x7ffacc6f0000 311296 C:\Windows\System32\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795770645377182 0x7ffacc740000 81920 C:\Windows\System32\profapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Profile Basic API 131795770645377182 0x7ffacc760000 65536 C:\Windows\System32\MSASN1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ASN.1 Runtime APIs 131795770645377182 0x7ffacc8f0000 1003520 C:\Windows\System32\ucrtbase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645377182 0x7ffacc9f0000 434176 C:\Windows\System32\bcryptPrimitives.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Cryptographic Primitives Library 131795770645377182 0x7ffacca60000 122880 C:\Windows\System32\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795770645377182 0x7ffacca80000 348160 C:\Windows\System32\WINTRUST.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation Microsoft Trust Verification APIs 131795770645377182 0x7ffaccae0000 692224 C:\Windows\System32\shcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795770645377182 0x7ffaccb90000 7180288 C:\Windows\System32\windows.storage.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API хранения Microsoft WinRT 131795770645377182 0x7ffacd270000 2215936 C:\Windows\System32\KERNELBASE.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645377182 0x7ffacd490000 1871872 C:\Windows\System32\CRYPT32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API32 криптографии 131795770645377182 0x7ffacd710000 638976 C:\Windows\System32\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645377182 0x7ffacd7b0000 270336 C:\Windows\System32\cfgmgr32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Configuration Manager DLL 131795770645377182 0x7ffacd810000 22056960 C:\Windows\System32\SHELL32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Общая библиотека оболочки Windows 131795770645377182 0x7ffaced20000 782336 C:\Windows\System32\OLEAUT32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795770645377182 0x7ffacee50000 1183744 C:\Windows\System32\RPCRT4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795770645377182 0x7ffacef80000 32768 C:\Windows\System32\NSI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation NSI User-mode interface DLL 131795770645377182 0x7ffacef90000 647168 C:\Windows\System32\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795770645377182 0x7ffacf030000 651264 C:\Windows\System32\clbcatq.dll 2001.12.10941.16384 (rs1_release.160715-1616) Microsoft Corporation COM+ Configuration Catalog 131795770645377182 0x7ffacf0d0000 704512 C:\Windows\System32\KERNEL32.DLL 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645377182 0x7ffacf340000 4362240 C:\Windows\System32\SETUPAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Setup API 131795770645377182 0x7ffacf770000 212992 C:\Windows\System32\GDI32.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation GDI Client DLL 131795770645377182 0x7ffacf820000 434176 C:\Windows\System32\WS2_32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation 32-разрядная библиотека Windows Socket 2.0 131795770645377182 0x7ffacf8c0000 1462272 C:\Windows\System32\USER32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795770645377182 0x7ffacfb30000 2916352 C:\Windows\System32\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795770645377182 0x7ffacfe20000 663552 C:\Windows\System32\advapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795770645377182 0x7ffad0070000 1277952 C:\Windows\System32\ole32.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft OLE для Windows 131795770645377182 0x7ffad01b0000 335872 C:\Windows\System32\SHLWAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека небольших программ оболочки 131795770645377182 0x7ffad0210000 364544 C:\Windows\System32\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795770645377182 0x7ffad0270000 1908736 C:\Windows\SYSTEM32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 30 1512 580 4 00000000:000003e5 131765776336551242 0 0 1 Обязательная метка\Обязательный уровень системы NT AUTHORITY\LOCAL SERVICE svchost.exe C:\Windows\system32\svchost.exe C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation Microsoft Corporation 10.0.14393.0 (rs1_release.160715-1616) Хост-процесс для служб Windows 131795770645377290 0x7ff718c20000 57344 C:\Windows\system32\svchost.exe 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Хост-процесс для служб Windows 131795770645377290 0x7ffabe9f0000 258048 c:\windows\system32\ssdpsrv.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL службы SSDP 131795770645377290 0x7ffac3f60000 225280 c:\windows\system32\FWPolicyIOMgr.dll 10.0.14393.2189 (rs1_release.180329-1711) Microsoft Corporation FwPolicyIoMgr DLL 131795770645377290 0x7ffac60e0000 221184 C:\Windows\System32\XmlLite.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft XmlLite Library 131795770645377290 0x7ffac6400000 53248 c:\windows\system32\HTTPAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation HTTP Protocol Stack API 131795770645377290 0x7ffac66c0000 32768 C:\Windows\system32\wship6.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL помощника Winsock2 (TL/IPv6) 131795770645377290 0x7ffac66d0000 32768 C:\Windows\system32\wshtcpip.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL помощника службы Winsock2 (TL/IPv4) 131795770645377290 0x7ffac6700000 40960 C:\Windows\system32\wshqos.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL помощника службы QoS Winsock2 131795770645377290 0x7ffac6710000 172032 C:\Windows\System32\FunDisc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL обнаружения функции 131795770645377290 0x7ffac6750000 1380352 c:\windows\system32\webservices.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Среда выполнения веб-служб Windows 131795770645377290 0x7ffac68b0000 696320 c:\windows\system32\wsdapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Веб-службы для библиотек DLL API-интерфейсов устройств 131795770645377290 0x7ffac69b0000 57344 c:\windows\system32\fdrespub.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служба публикации ресурсов обнаружения функции 131795770645377290 0x7ffac69c0000 839680 c:\windows\system32\WINHTTP.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Службы HTTP Windows 131795770645377290 0x7ffac83d0000 106496 C:\Windows\SYSTEM32\dhcpcsvc.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служба DHCP-клиента 131795770645377290 0x7ffac83f0000 90112 C:\Windows\SYSTEM32\dhcpcsvc6.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиент DHCPv6 131795770645377290 0x7ffac8810000 45056 C:\Windows\SYSTEM32\WINNSI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Network Store Information RPC interface 131795770645377290 0x7ffac90b0000 90112 c:\windows\system32\wkscli.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Workstation Service Client DLL 131795770645377290 0x7ffacb360000 176128 c:\windows\system32\fwbase.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Firewall Base DLL 131795770645377290 0x7ffacb460000 548864 c:\windows\system32\FirewallAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API брандмауэра Windows 131795770645377290 0x7ffacb920000 81920 C:\Windows\SYSTEM32\WLDP.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Политика блокировки Windows 131795770645377290 0x7ffacbbb0000 208896 C:\Windows\system32\rsaenh.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Enhanced Cryptographic Provider 131795770645377290 0x7ffacbd30000 229376 c:\windows\system32\IPHLPAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API вспомогательного приложения IP 131795770645377290 0x7ffacbe20000 53248 c:\windows\system32\netutils.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API Helpers DLL 131795770645377290 0x7ffacbfb0000 376832 C:\Windows\system32\mswsock.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширение поставщика службы API Microsoft Windows Sockets 2.0 131795770645377290 0x7ffacc150000 94208 c:\windows\system32\CRYPTSP.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Cryptographic Service Provider API 131795770645377290 0x7ffacc170000 45056 C:\Windows\system32\CRYPTBASE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base cryptographic API DLL 131795770645377290 0x7ffacc350000 180224 C:\Windows\system32\sspicli.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Security Support Provider Interface 131795770645377290 0x7ffacc620000 176128 c:\windows\system32\bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795770645377290 0x7ffacc6e0000 61440 C:\Windows\System32\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795770645377290 0x7ffacc6f0000 311296 C:\Windows\System32\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795770645377290 0x7ffacc760000 65536 C:\Windows\System32\MSASN1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ASN.1 Runtime APIs 131795770645377290 0x7ffacc8f0000 1003520 C:\Windows\System32\ucrtbase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645377290 0x7ffacc9f0000 434176 C:\Windows\System32\bcryptPrimitives.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Cryptographic Primitives Library 131795770645377290 0x7ffacca60000 122880 C:\Windows\System32\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795770645377290 0x7ffacca80000 348160 C:\Windows\System32\WINTRUST.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation Microsoft Trust Verification APIs 131795770645377290 0x7ffacd270000 2215936 C:\Windows\System32\KERNELBASE.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645377290 0x7ffacd490000 1871872 C:\Windows\System32\CRYPT32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API32 криптографии 131795770645377290 0x7ffacee50000 1183744 C:\Windows\System32\RPCRT4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795770645377290 0x7ffacef80000 32768 C:\Windows\System32\NSI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation NSI User-mode interface DLL 131795770645377290 0x7ffacef90000 647168 C:\Windows\System32\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795770645377290 0x7ffacf030000 651264 C:\Windows\System32\clbcatq.dll 2001.12.10941.16384 (rs1_release.160715-1616) Microsoft Corporation COM+ Configuration Catalog 131795770645377290 0x7ffacf0d0000 704512 C:\Windows\System32\KERNEL32.DLL 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645377290 0x7ffacf770000 212992 C:\Windows\System32\GDI32.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation GDI Client DLL 131795770645377290 0x7ffacf820000 434176 C:\Windows\System32\WS2_32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation 32-разрядная библиотека Windows Socket 2.0 131795770645377290 0x7ffacf8c0000 1462272 C:\Windows\System32\user32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795770645377290 0x7ffacfb30000 2916352 C:\Windows\System32\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795770645377290 0x7ffad0210000 364544 C:\Windows\System32\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795770645377290 0x7ffad0270000 1908736 C:\Windows\SYSTEM32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 31 1556 580 4 00000000:000003e7 131765776339471770 0 0 1 Обязательная метка\Обязательный уровень системы NT AUTHORITY\СИСТЕМА svchost.exe C:\Windows\System32\svchost.exe C:\Windows\System32\svchost.exe -k utcsvc Microsoft Corporation 10.0.14393.0 (rs1_release.160715-1616) Хост-процесс для служб Windows 131795770645377395 0x272f9bf0000 12288 C:\Windows\SYSTEM32\sfc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows File Protection 131795770645377395 0x7ff718c20000 57344 C:\Windows\System32\svchost.exe 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Хост-процесс для служб Windows 131795770645377395 0x7ffab93b0000 897024 C:\Windows\System32\TokenBroker.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Token Broker 131795770645377395 0x7ffabaab0000 94208 C:\Windows\SYSTEM32\profext.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation profext 131795770645377395 0x7ffabae60000 77824 C:\Windows\SYSTEM32\DEVRTL.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Device Management Run Time Library 131795770645377395 0x7ffabbd10000 65536 C:\Windows\System32\TOKENBINDING.dll 10.0.14393.1593 (rs1_release.170731-1934) Microsoft Corporation Token Binding Protocol 131795770645377395 0x7ffabca50000 819200 C:\Windows\System32\Windows.Security.Authentication.Web.Core.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Token Broker WinRT API 131795770645377395 0x7ffabcf50000 921600 C:\Windows\System32\drvstore.dll 10.0.14393.351 (rs1_release_inmarket.161014-1755) Microsoft Corporation Driver Store API 131795770645377395 0x7ffabe850000 155648 C:\Windows\System32\IDStore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Identity Store 131795770645377395 0x7ffabef80000 69632 C:\Windows\SYSTEM32\sfc_os.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows File Protection 131795770645377395 0x7ffabefd0000 258048 C:\Windows\SYSTEM32\aepic.dll 10.0.17060.1029 (WinBuild.160101.0800) Microsoft Corporation Application Experience Program Cache 131795770645377395 0x7ffabf140000 176128 C:\Windows\System32\CourtesyEngine.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Feedback Courtesy Engine DLL Server 131795770645377395 0x7ffabf1d0000 192512 C:\Windows\System32\cryptnet.dll 10.0.14393.2035 (rs1_release_inmarket.180110-1910) Microsoft Corporation Crypto Network Related API 131795770645377395 0x7ffabfbe0000 1011712 C:\Windows\System32\Windows.Security.Authentication.OnlineId.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation Windows Runtime OnlineId Authentication DLL 131795770645377395 0x7ffabfde0000 143360 c:\windows\system32\CRYPTXML.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API-интерфейс XML DigSig 131795770645377395 0x7ffabff60000 135168 C:\Windows\system32\ncryptsslp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft SChannel Provider 131795770645377395 0x7ffac05f0000 94208 C:\Windows\System32\wwapi.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation WWAN API 131795770645377395 0x7ffac0910000 724992 C:\Windows\System32\Windows.Networking.Connectivity.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Networking Connectivity Runtime DLL 131795770645377395 0x7ffac09d0000 884736 C:\Windows\System32\wpnapps.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Приложения для push-уведомлений Windows 131795770645377395 0x7ffac0ad0000 86016 C:\Windows\SYSTEM32\mskeyprotect.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик защиты ключей (Майкрософт) 131795770645377395 0x7ffac0bf0000 3559424 C:\Windows\System32\ActXPrxy.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation ActiveX Interface Marshaling Library 131795770645377395 0x7ffac1d60000 589824 c:\windows\system32\webio.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API протоколов передачи по Веб 131795770645377395 0x7ffac20d0000 110592 C:\Windows\System32\RMCLIENT.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Resource Manager Client 131795770645377395 0x7ffac23c0000 331776 C:\Windows\System32\OneCoreCommonProxyStub.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation OneCore Common Proxy Stub 131795770645377395 0x7ffac2590000 659456 C:\Windows\System32\FlightSettings.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Параметры цикла тестирования 131795770645377395 0x7ffac2700000 98304 C:\Windows\SYSTEM32\Netapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API DLL 131795770645377395 0x7ffac2750000 106496 C:\Windows\System32\bcd.dll 10.0.14393.1794 (rs1_release.171008-1615) Microsoft Corporation BCD DLL 131795770645377395 0x7ffac2b30000 286720 C:\Windows\System32\usermgrproxy.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation UserMgrProxy 131795770645377395 0x7ffac3cb0000 2772992 C:\Windows\SYSTEM32\iertutil.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служебная программа времени выполнения для Internet Explorer 131795770645377395 0x7ffac4000000 274432 C:\Windows\SYSTEM32\policymanager.dll 10.0.14393.2035 (rs1_release_inmarket.180110-1910) Microsoft Corporation Policy Manager DLL 131795770645377395 0x7ffac4070000 499712 C:\Windows\SYSTEM32\DSREG.DLL 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation AD/AAD User Device Registration 131795770645377395 0x7ffac4450000 86016 C:\Windows\SYSTEM32\usermgrcli.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation UserMgr API DLL 131795770645377395 0x7ffac5fd0000 1056768 c:\windows\system32\WindowsPerformanceRecorderControl.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Windows Performance Recorder Control Library 131795770645377395 0x7ffac60e0000 221184 c:\windows\system32\XmlLite.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft XmlLite Library 131795770645377395 0x7ffac6210000 2007040 c:\windows\system32\diagtrack.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Диагностическое отслеживание Microsoft Windows 131795770645377395 0x7ffac6610000 40960 C:\Windows\System32\rasadhlp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Remote Access AutoDial Helper 131795786489787144 0x7ffac66a0000 86016 C:\Windows\System32\OnDemandConnRouteHelper.dll 10.0.14393.351 (rs1_release_inmarket.161014-1755) Microsoft Corporation On Demand Connctiond Route Helper 131795770645377395 0x7ffac6750000 1380352 c:\windows\system32\webservices.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Среда выполнения веб-служб Windows 131795770645377395 0x7ffac69c0000 839680 c:\windows\system32\WINHTTP.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Службы HTTP Windows 131795770645377395 0x7ffac79c0000 57344 C:\Windows\System32\npmproxy.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Network List Manager Proxy 131795770645377395 0x7ffac7aa0000 401408 C:\Windows\SYSTEM32\wlanapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows WLAN AutoConfig Client Side API DLL 131795770645377395 0x7ffac83d0000 106496 C:\Windows\SYSTEM32\dhcpcsvc.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служба DHCP-клиента 131795770645377395 0x7ffac83f0000 90112 C:\Windows\SYSTEM32\dhcpcsvc6.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиент DHCPv6 131795786490911252 0x7ffac8420000 434176 C:\Windows\System32\FWPUCLNT.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API пользовательского режима FWP/IPsec 131795770645377395 0x7ffac8540000 286720 C:\Windows\System32\vaultcli.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиентская библиотека хранилища учетных данных 131795770645377395 0x7ffac8810000 45056 C:\Windows\SYSTEM32\WINNSI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Network Store Information RPC interface 131795770645377395 0x7ffac8cf0000 815104 C:\Windows\System32\taskschd.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Task Scheduler COM API 131795770645377395 0x7ffac8dc0000 167936 C:\Windows\System32\dbgcore.DLL 10.0.14321.1024 (debuggers(dbg).160715-1616) Microsoft Windows Core Debugging Helpers 131795770645377395 0x7ffac8df0000 1646592 C:\Windows\system32\dbghelp.dll 10.0.14321.1024 (rs1_release.160715-1616) Microsoft Windows Image Helper 131795770645377395 0x7ffac90b0000 90112 C:\Windows\System32\wkscli.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Workstation Service Client DLL 131795770645377395 0x7ffac92e0000 1269760 C:\Windows\System32\WinTypes.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL основных типов Windows 131795770645377395 0x7ffaca4e0000 77824 C:\Windows\SYSTEM32\wtsapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Remote Desktop Session Host Server SDK APIs 131795770645377395 0x7ffaca610000 143360 C:\Windows\System32\SAMLIB.dll 10.0.14393.82 (rs1_release.160805-1735) Microsoft Corporation SAM Library DLL 131795770645377395 0x7ffacb140000 593920 c:\windows\system32\msvcp110_win.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Microsoft® STL110 C++ Runtime Library 131795770645377395 0x7ffacb1e0000 1163264 C:\Windows\System32\twinapi.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation twinapi.appcore 131795770645377395 0x7ffacb420000 204800 C:\Windows\SYSTEM32\ntmarta.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик Windows NT MARTA 131795770645377395 0x7ffacb6f0000 143360 C:\Windows\SYSTEM32\gpapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиентские функции API групповой политики 131795770645377395 0x7ffacb920000 81920 C:\Windows\SYSTEM32\WLDP.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Политика блокировки Windows 131795770645377395 0x7ffacbaf0000 495616 C:\Windows\system32\schannel.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик безопасности TLS/SSL 131795770645377395 0x7ffacbbb0000 208896 C:\Windows\system32\rsaenh.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Enhanced Cryptographic Provider 131795770645377395 0x7ffacbbf0000 40960 C:\Windows\System32\DPAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Data Protection API 131795770645377395 0x7ffacbd30000 229376 C:\Windows\System32\IPHLPAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API вспомогательного приложения IP 131795770645377395 0x7ffacbd70000 659456 c:\windows\system32\DNSAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Динамическая библиотека API DNS-клиента 131795770645377395 0x7ffacbe20000 53248 C:\Windows\System32\netutils.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API Helpers DLL 131795770645377395 0x7ffacbe40000 126976 c:\windows\system32\USERENV.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Userenv 131795770645377395 0x7ffacbfb0000 376832 C:\Windows\system32\mswsock.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширение поставщика службы API Microsoft Windows Sockets 2.0 131795770645377395 0x7ffacc150000 94208 C:\Windows\SYSTEM32\cryptsp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Cryptographic Service Provider API 131795770645377395 0x7ffacc170000 45056 C:\Windows\System32\CRYPTBASE.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base cryptographic API DLL 131795770645377395 0x7ffacc1f0000 241664 C:\Windows\SYSTEM32\NTASN1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft ASN.1 API 131795770645377395 0x7ffacc230000 155648 C:\Windows\SYSTEM32\ncrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Маршрутизатор Windows NCrypt 131795770645377395 0x7ffacc350000 180224 C:\Windows\SYSTEM32\SspiCli.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Security Support Provider Interface 131795770645377395 0x7ffacc5c0000 352256 C:\Windows\SYSTEM32\WINSTA.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Winstation Library 131795770645377395 0x7ffacc620000 176128 c:\windows\system32\bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795770645377395 0x7ffacc6e0000 61440 C:\Windows\System32\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795770645377395 0x7ffacc6f0000 311296 C:\Windows\System32\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795770645377395 0x7ffacc740000 81920 C:\Windows\System32\profapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Profile Basic API 131795770645377395 0x7ffacc760000 65536 C:\Windows\System32\MSASN1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ASN.1 Runtime APIs 131795770645377395 0x7ffacc8f0000 1003520 C:\Windows\System32\ucrtbase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645377395 0x7ffacc9f0000 434176 C:\Windows\System32\bcryptPrimitives.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Cryptographic Primitives Library 131795770645377395 0x7ffacca60000 122880 C:\Windows\System32\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795770645377395 0x7ffacca80000 348160 C:\Windows\System32\WINTRUST.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation Microsoft Trust Verification APIs 131795770645377395 0x7ffaccae0000 692224 C:\Windows\System32\shcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795770645377395 0x7ffaccb90000 7180288 C:\Windows\System32\windows.storage.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API хранения Microsoft WinRT 131795770645377395 0x7ffacd270000 2215936 C:\Windows\System32\KERNELBASE.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645377395 0x7ffacd490000 1871872 C:\Windows\System32\CRYPT32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API32 криптографии 131795770645377395 0x7ffacd710000 638976 C:\Windows\System32\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645377395 0x7ffacd7b0000 270336 C:\Windows\System32\cfgmgr32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Configuration Manager DLL 131795770645377395 0x7ffacd810000 22056960 C:\Windows\System32\SHELL32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Общая библиотека оболочки Windows 131795770645377395 0x7ffaced20000 782336 C:\Windows\System32\OLEAUT32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795770645377395 0x7ffacede0000 450560 C:\Windows\System32\coml2.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft COM for Windows 131795770645377395 0x7ffacee50000 1183744 C:\Windows\System32\RPCRT4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795770645377395 0x7ffacef80000 32768 C:\Windows\System32\NSI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation NSI User-mode interface DLL 131795770645377395 0x7ffacef90000 647168 C:\Windows\System32\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795770645377395 0x7ffacf030000 651264 C:\Windows\System32\clbcatq.dll 2001.12.10941.16384 (rs1_release.160715-1616) Microsoft Corporation COM+ Configuration Catalog 131795770645377395 0x7ffacf0d0000 704512 C:\Windows\System32\KERNEL32.DLL 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645377395 0x7ffacf340000 4362240 C:\Windows\System32\SETUPAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Setup API 131795770645377395 0x7ffacf770000 212992 C:\Windows\System32\GDI32.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation GDI Client DLL 131795770645377395 0x7ffacf820000 434176 C:\Windows\System32\WS2_32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation 32-разрядная библиотека Windows Socket 2.0 131795770645377395 0x7ffacf8c0000 1462272 C:\Windows\System32\user32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795770645377395 0x7ffacfb30000 2916352 C:\Windows\System32\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795770645377395 0x7ffacfe20000 663552 C:\Windows\System32\advapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795770645377395 0x7ffad0070000 1277952 C:\Windows\System32\OLE32.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft OLE для Windows 131795770645377395 0x7ffad01b0000 335872 C:\Windows\System32\SHLWAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека небольших программ оболочки 131795770645377395 0x7ffad0210000 364544 C:\Windows\System32\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795770645377395 0x7ffad0270000 1908736 C:\Windows\SYSTEM32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 32 1636 580 4 00000000:000003e7 131765776343009549 0 0 1 Обязательная метка\Обязательный уровень системы NT AUTHORITY\СИСТЕМА svchost.exe C:\Windows\system32\svchost.exe C:\Windows\system32\svchost.exe -k appmodel Microsoft Corporation 10.0.14393.0 (rs1_release.160715-1616) Хост-процесс для служб Windows 131795770645377489 0x7ff718c20000 57344 C:\Windows\system32\svchost.exe 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Хост-процесс для служб Windows 131795770645377489 0x7ffac0bf0000 3559424 C:\Windows\System32\ActXPrxy.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation ActiveX Interface Marshaling Library 131795770645377489 0x7ffac34e0000 1843200 c:\windows\system32\urlmon.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширения OLE32 для Win32 131795770645377489 0x7ffac3840000 3088384 c:\windows\system32\ESENT.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширяемая подсистема хранения данных ESE для Microsoft(R) Windows(R) 131795770645377489 0x7ffac3c10000 593920 c:\windows\system32\tileobjserver.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Сервер моделей данных плиток 131795770645377489 0x7ffac3cb0000 2772992 c:\windows\system32\iertutil.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служебная программа времени выполнения для Internet Explorer 131795770645377489 0x7ffac42a0000 659456 c:\windows\system32\StateRepository.Core.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation StateRepository Core 131795770645377489 0x7ffac46d0000 4161536 c:\windows\system32\windows.staterepository.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Сервер Windows StateRepository API Server 131795770645377489 0x7ffac6ac0000 835584 C:\Windows\System32\Windows.UI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Runtime UI Foundation DLL 131795780599947775 0x7ffac7580000 1077248 C:\Windows\System32\MrmCoreR.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Windows MRM 131795770645377489 0x7ffaca4e0000 77824 C:\Windows\SYSTEM32\wtsapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Remote Desktop Session Host Server SDK APIs 131795780600943570 0x7ffaca570000 421888 C:\Windows\System32\BCP47Langs.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation BCP47 Language Classes 131795770645377489 0x7ffacb140000 593920 c:\windows\system32\msvcp110_win.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Microsoft® STL110 C++ Runtime Library 131795770645377489 0x7ffacb920000 81920 C:\Windows\SYSTEM32\WLDP.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Политика блокировки Windows 131795770645377489 0x7ffacbe40000 126976 C:\Windows\system32\USERENV.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Userenv 131795770645377489 0x7ffacc170000 45056 C:\Windows\system32\CRYPTBASE.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base cryptographic API DLL 131795770645377489 0x7ffacc350000 180224 C:\Windows\SYSTEM32\SspiCli.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Security Support Provider Interface 131795770645377489 0x7ffacc5c0000 352256 C:\Windows\SYSTEM32\WINSTA.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Winstation Library 131795770645377489 0x7ffacc620000 176128 C:\Windows\system32\Bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795770645377489 0x7ffacc6e0000 61440 C:\Windows\System32\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795770645377489 0x7ffacc6f0000 311296 C:\Windows\System32\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795770645377489 0x7ffacc740000 81920 C:\Windows\System32\profapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Profile Basic API 131795770645377489 0x7ffacc760000 65536 C:\Windows\System32\MSASN1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ASN.1 Runtime APIs 131795770645377489 0x7ffacc8f0000 1003520 C:\Windows\System32\ucrtbase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645377489 0x7ffacc9f0000 434176 C:\Windows\System32\bcryptPrimitives.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Cryptographic Primitives Library 131795770645377489 0x7ffacca60000 122880 C:\Windows\System32\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795770645377489 0x7ffacca80000 348160 C:\Windows\System32\WINTRUST.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation Microsoft Trust Verification APIs 131795770645377489 0x7ffaccae0000 692224 C:\Windows\System32\shcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795770645377489 0x7ffaccb90000 7180288 C:\Windows\System32\windows.storage.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API хранения Microsoft WinRT 131795770645377489 0x7ffacd270000 2215936 C:\Windows\System32\KERNELBASE.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645377489 0x7ffacd490000 1871872 C:\Windows\System32\CRYPT32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API32 криптографии 131795770645377489 0x7ffacd710000 638976 C:\Windows\System32\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645377489 0x7ffaced20000 782336 C:\Windows\System32\OLEAUT32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795770645377489 0x7ffacee50000 1183744 C:\Windows\System32\RPCRT4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795770645377489 0x7ffacef90000 647168 C:\Windows\System32\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795770645377489 0x7ffacf030000 651264 C:\Windows\System32\clbcatq.dll 2001.12.10941.16384 (rs1_release.160715-1616) Microsoft Corporation COM+ Configuration Catalog 131795770645377489 0x7ffacf0d0000 704512 C:\Windows\System32\KERNEL32.DLL 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645377489 0x7ffacf770000 212992 C:\Windows\System32\GDI32.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation GDI Client DLL 131795770645377489 0x7ffacf8c0000 1462272 C:\Windows\System32\user32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795770645377489 0x7ffacfb30000 2916352 C:\Windows\System32\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795770645377489 0x7ffacfe20000 663552 C:\Windows\System32\advapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795770645377489 0x7ffad01b0000 335872 C:\Windows\System32\shlwapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека небольших программ оболочки 131795770645377489 0x7ffad0210000 364544 C:\Windows\System32\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795770645377489 0x7ffad0270000 1908736 C:\Windows\SYSTEM32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 33 1744 4 9 00000000:000003e7 131765776348255325 0 0 1 Обязательная метка\Обязательный уровень системы NT AUTHORITY\СИСТЕМА MemCompression MemCompression 34 2100 580 4 00000000:000003e4 131765776438403561 0 0 1 Обязательная метка\Обязательный уровень системы NT AUTHORITY\NETWORK SERVICE svchost.exe C:\Windows\system32\svchost.exe C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted Microsoft Corporation 10.0.14393.0 (rs1_release.160715-1616) Хост-процесс для служб Windows 131795770645377758 0x7ff718c20000 57344 C:\Windows\system32\svchost.exe 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Хост-процесс для служб Windows 131795770645377758 0x7ffabff90000 409600 c:\windows\system32\ipsecsvc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows IPsec SPD Server DLL 131795770645377758 0x7ffac1e00000 114688 c:\windows\system32\FwRemoteSvr.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Firewall Remote APIs Server 131795770645377758 0x7ffac3f60000 225280 c:\windows\system32\FWPolicyIOMgr.dll 10.0.14393.2189 (rs1_release.180329-1711) Microsoft Corporation FwPolicyIoMgr DLL 131795770645377758 0x7ffac83d0000 106496 C:\Windows\SYSTEM32\dhcpcsvc.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служба DHCP-клиента 131795770645377758 0x7ffac83f0000 90112 C:\Windows\SYSTEM32\dhcpcsvc6.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиент DHCPv6 131795770645377758 0x7ffac8420000 434176 c:\windows\system32\fwpuclnt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API пользовательского режима FWP/IPsec 131795770645377758 0x7ffacb360000 176128 c:\windows\system32\fwbase.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Firewall Base DLL 131795770645377758 0x7ffacb460000 548864 c:\windows\system32\FirewallAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API брандмауэра Windows 131795770645377758 0x7ffacb920000 81920 C:\Windows\SYSTEM32\WLDP.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Политика блокировки Windows 131795770645377758 0x7ffacb960000 303104 c:\windows\system32\AUTHZ.dll 10.0.14393.1737 (rs1_release_inmarket.170914-1249) Microsoft Corporation Authorization Framework 131795770645377758 0x7ffacbd30000 229376 c:\windows\system32\IPHLPAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API вспомогательного приложения IP 131795770645377758 0x7ffacbfb0000 376832 C:\Windows\system32\mswsock.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширение поставщика службы API Microsoft Windows Sockets 2.0 131795770645377758 0x7ffacc350000 180224 C:\Windows\system32\sspicli.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Security Support Provider Interface 131795770645377758 0x7ffacc620000 176128 c:\windows\system32\bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795770645377758 0x7ffacc6e0000 61440 C:\Windows\System32\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795770645377758 0x7ffacc760000 65536 C:\Windows\System32\MSASN1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ASN.1 Runtime APIs 131795770645377758 0x7ffacc8f0000 1003520 C:\Windows\System32\ucrtbase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645377758 0x7ffacc9f0000 434176 C:\Windows\System32\bcryptPrimitives.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Cryptographic Primitives Library 131795770645377758 0x7ffacca80000 348160 C:\Windows\System32\WINTRUST.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation Microsoft Trust Verification APIs 131795770645377758 0x7ffacd270000 2215936 C:\Windows\System32\KERNELBASE.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645377758 0x7ffacd490000 1871872 C:\Windows\System32\CRYPT32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API32 криптографии 131795770645377758 0x7ffacd710000 638976 C:\Windows\System32\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645377758 0x7ffaced20000 782336 C:\Windows\System32\OLEAUT32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795770645377758 0x7ffacee50000 1183744 C:\Windows\System32\RPCRT4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795770645377758 0x7ffacef80000 32768 C:\Windows\System32\NSI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation NSI User-mode interface DLL 131795770645377758 0x7ffacef90000 647168 C:\Windows\System32\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795770645377758 0x7ffacf030000 651264 C:\Windows\System32\clbcatq.dll 2001.12.10941.16384 (rs1_release.160715-1616) Microsoft Corporation COM+ Configuration Catalog 131795770645377758 0x7ffacf0d0000 704512 C:\Windows\System32\KERNEL32.DLL 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645377758 0x7ffacf820000 434176 C:\Windows\System32\WS2_32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation 32-разрядная библиотека Windows Socket 2.0 131795770645377758 0x7ffacfb30000 2916352 C:\Windows\System32\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795770645377758 0x7ffad0210000 364544 C:\Windows\System32\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795770645377758 0x7ffad0270000 1908736 C:\Windows\SYSTEM32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 35 2648 348 24 00000000:0031f1da 131765777555980720 0 0 1 Обязательная метка\Средний обязательный уровень WIN-0UOTFKKVN1S\User sihost.exe C:\Windows\system32\sihost.exe sihost.exe Microsoft Corporation 10.0.14393.0 (rs1_release.160715-1616) Shell Infrastructure Host 131795770645377872 0x7ff7bbae0000 94208 C:\Windows\system32\sihost.exe 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Shell Infrastructure Host 131795770645377872 0x7ffab9490000 860160 C:\Windows\System32\ntshrui.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширения оболочки, обеспечивающие общий доступ 131795770645377872 0x7ffabae40000 110592 C:\Windows\SYSTEM32\capauthz.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API авторизации возможностей 131795770645377872 0x7ffabaf70000 270336 C:\Windows\System32\edputil.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служебная программа EDP 131795770645377872 0x7ffabb910000 344064 C:\Windows\System32\container.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Windows Containers 131795770645377872 0x7ffabb970000 487424 C:\Windows\System32\daxexec.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation daxexec 131795770645377872 0x7ffabba80000 995328 C:\Windows\System32\twinui.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation TWINUI.APPCORE 131795770645377872 0x7ffabbb80000 61440 C:\Windows\System32\dsclient.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Data Sharing Service Client DLL 131795770645377872 0x7ffabbb90000 581632 C:\Windows\System32\Windows.System.Launcher.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows.System.Launcher 131795770645377872 0x7ffabbd00000 36864 C:\Windows\system32\WpPortingLibrary.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation <d> DLL 131795770645377872 0x7ffabc0b0000 65536 C:\Windows\System32\LINKINFO.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Volume Tracking 131795770645377872 0x7ffabc450000 741376 C:\Windows\system32\ShareHost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ShareHost 131795770645377872 0x7ffabc510000 90112 C:\Windows\system32\execmodelproxy.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ExecModelProxy 131795770645377872 0x7ffabc570000 94208 C:\Windows\SYSTEM32\licensemanagerapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation "LicenseManagerApi.DYNLINK" 131795770645377872 0x7ffabc6b0000 1114112 C:\Windows\System32\AppContracts.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Сервер API Windows AppContracts 131795770645377872 0x7ffabc800000 266240 C:\Windows\System32\windowmanagement.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Window Management 131795770645377872 0x7ffabc850000 159744 C:\Windows\System32\AppointmentActivation.dll 10.0.14393.2189 (rs1_release.180329-1711) Microsoft Corporation DLL for AppointmentActivation 131795770645377872 0x7ffabc880000 73728 C:\Windows\system32\cscapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Offline Files Win32 API 131795770645377872 0x7ffabc8b0000 61440 C:\Windows\System32\NotificationPlatformComponent.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation NotificationPlatformComponent 131795770645377872 0x7ffabc920000 270336 C:\Windows\system32\ExecModelClient.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation ExecModelClient 131795770645377872 0x7ffabc9a0000 413696 C:\Windows\system32\activationmanager.dll 10.0.14393.479 (rs1_release.161110-2025) Microsoft Corporation Activation Manager 131795770645377872 0x7ffabca10000 221184 C:\Windows\System32\ClipboardServer.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Сервер API Modern Clipboard 131795770645377872 0x7ffabcde0000 983040 C:\Windows\System32\modernexecserver.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Сервер Modern Execution 131795770645377872 0x7ffabcef0000 102400 C:\Windows\System32\Windows.Shell.ServiceHostBuilder.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows.Shell.ServiceHostBuilder 131795770645377872 0x7ffabcf10000 122880 C:\Windows\system32\desktopshellext.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DesktopHost Extensions 131795770645377872 0x7ffabff10000 155648 C:\Windows\System32\srvcli.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Server Service Client DLL 131795770645377872 0x7ffac0bf0000 3559424 C:\Windows\System32\ActXPrxy.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation ActiveX Interface Marshaling Library 131795770645377872 0x7ffac20d0000 110592 C:\Windows\System32\RMCLIENT.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Resource Manager Client 131795770645377872 0x7ffac23c0000 331776 C:\Windows\System32\OneCoreCommonProxyStub.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation OneCore Common Proxy Stub 131795770645377872 0x7ffac2b30000 286720 C:\Windows\System32\usermgrproxy.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation UserMgrProxy 131795770645377872 0x7ffac3270000 40960 C:\Windows\System32\FLTLIB.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека фильтров 131795770645377872 0x7ffac34e0000 1843200 C:\Windows\System32\urlmon.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширения OLE32 для Win32 131795770645377872 0x7ffac3cb0000 2772992 C:\Windows\System32\iertutil.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служебная программа времени выполнения для Internet Explorer 131795770645377872 0x7ffac42a0000 659456 C:\Windows\System32\StateRepository.Core.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation StateRepository Core 131795770645377872 0x7ffac4450000 86016 C:\Windows\SYSTEM32\usermgrcli.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation UserMgr API DLL 131795770645377872 0x7ffac46d0000 4161536 C:\Windows\System32\Windows.StateRepository.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Сервер Windows StateRepository API Server 131795770645377872 0x7ffac5500000 438272 C:\Windows\system32\PhotoMetadataHandler.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Photo Metadata Handler 131795770645377872 0x7ffac7720000 1601536 C:\Windows\System32\OneCoreUAPCommonProxyStub.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation OneCoreUAP Common Proxy Stub 131795770645377872 0x7ffac92e0000 1269760 C:\Windows\SYSTEM32\wintypes.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL основных типов Windows 131795770645377872 0x7ffac9500000 2682880 C:\Windows\system32\CoreUIComponents.dll 131795770645377872 0x7ffac9f50000 1736704 C:\Windows\system32\WindowsCodecs.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Microsoft Windows Codecs Library 131795770645377872 0x7ffaca340000 1593344 C:\Windows\System32\PROPSYS.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Система страниц свойств (Майкрософт) 131795770645377872 0x7ffaca4e0000 77824 C:\Windows\SYSTEM32\wtsapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Remote Desktop Session Host Server SDK APIs 131795770645377872 0x7ffaca5e0000 155648 C:\Windows\System32\dwmapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Интерфейс API диспетчера окон рабочего стола (Майкрософт) 131795770645377872 0x7ffaca640000 770048 C:\Windows\system32\CoreMessaging.dll 10.0.14393.0 Microsoft Corporation Microsoft CoreMessaging Dll 131795770645377872 0x7ffacadf0000 499712 C:\Windows\System32\apphelp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиентская библиотека совместимости приложений 131795770645377872 0x7ffacaf00000 610304 C:\Windows\system32\uxtheme.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека тем UxTheme (Microsoft) 131795770645377872 0x7ffacb140000 593920 C:\Windows\System32\msvcp110_win.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Microsoft® STL110 C++ Runtime Library 131795770645377872 0x7ffacb1e0000 1163264 C:\Windows\SYSTEM32\twinapi.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation twinapi.appcore 131795770645377872 0x7ffacb300000 364544 C:\Windows\System32\VEEventDispatcher.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Visual Element Event dispatcher 131795770645377872 0x7ffacb3d0000 110592 C:\Windows\System32\ResourcePolicyClient.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Resource Policy Client 131795770645377872 0x7ffacb420000 204800 C:\Windows\SYSTEM32\ntmarta.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик Windows NT MARTA 131795770645377872 0x7ffacbd30000 229376 C:\Windows\System32\IPHLPAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API вспомогательного приложения IP 131795770645377872 0x7ffacc350000 180224 C:\Windows\System32\SspiCli.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Security Support Provider Interface 131795770645377872 0x7ffacc5c0000 352256 C:\Windows\SYSTEM32\WINSTA.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Winstation Library 131795770645377872 0x7ffacc620000 176128 C:\Windows\System32\bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795770645377872 0x7ffacc6e0000 61440 C:\Windows\System32\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795770645377872 0x7ffacc6f0000 311296 C:\Windows\System32\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795770645377872 0x7ffacc740000 81920 C:\Windows\System32\profapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Profile Basic API 131795770645377872 0x7ffacc8f0000 1003520 C:\Windows\System32\ucrtbase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645377872 0x7ffacc9f0000 434176 C:\Windows\System32\bcryptPrimitives.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Cryptographic Primitives Library 131795770645377872 0x7ffacca60000 122880 C:\Windows\System32\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795770645377872 0x7ffaccae0000 692224 C:\Windows\System32\shcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795770645377872 0x7ffaccb90000 7180288 C:\Windows\System32\Windows.Storage.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API хранения Microsoft WinRT 131795770645377872 0x7ffacd270000 2215936 C:\Windows\System32\KERNELBASE.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645377872 0x7ffacd710000 638976 C:\Windows\System32\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645377872 0x7ffacd7b0000 270336 C:\Windows\System32\cfgmgr32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Configuration Manager DLL 131795770645377872 0x7ffacd810000 22056960 C:\Windows\System32\shell32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Общая библиотека оболочки Windows 131795770645377872 0x7ffaced20000 782336 C:\Windows\System32\OLEAUT32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795770645377872 0x7ffacee50000 1183744 C:\Windows\System32\RPCRT4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795770645377872 0x7ffacef90000 647168 C:\Windows\System32\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795770645377872 0x7ffacf030000 651264 C:\Windows\System32\clbcatq.dll 2001.12.10941.16384 (rs1_release.160715-1616) Microsoft Corporation COM+ Configuration Catalog 131795770645377872 0x7ffacf0d0000 704512 C:\Windows\System32\KERNEL32.DLL 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645377872 0x7ffacf770000 212992 C:\Windows\System32\GDI32.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation GDI Client DLL 131795770645377872 0x7ffacf890000 188416 C:\Windows\System32\IMM32.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Multi-User Windows IMM32 API Client DLL 131795770645377872 0x7ffacf8c0000 1462272 C:\Windows\System32\user32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795770645377872 0x7ffacfb30000 2916352 C:\Windows\System32\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795770645377872 0x7ffacfe20000 663552 C:\Windows\System32\advapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795770645377872 0x7ffad0070000 1277952 C:\Windows\System32\ole32.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft OLE для Windows 131795770645377872 0x7ffad01b0000 335872 C:\Windows\System32\shlwapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека небольших программ оболочки 131795770645377872 0x7ffad0210000 364544 C:\Windows\System32\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795770645377872 0x7ffad0270000 1908736 C:\Windows\SYSTEM32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 36 840 580 4 00000000:0031f1da 131765777563791648 0 0 1 Обязательная метка\Средний обязательный уровень WIN-0UOTFKKVN1S\User svchost.exe C:\Windows\system32\svchost.exe C:\Windows\system32\svchost.exe -k UnistackSvcGroup Microsoft Corporation 10.0.14393.0 (rs1_release.160715-1616) Хост-процесс для служб Windows 131795770645377971 0x7ff718c20000 57344 C:\Windows\system32\svchost.exe 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Хост-процесс для служб Windows 131795770645377971 0x7ffaaf6a0000 331776 C:\Windows\System32\PhoneUtil.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Phone utilities 131795770645377971 0x7ffaaf700000 1421312 C:\Windows\System32\PIMSTORE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation POOM 131795770645377971 0x7ffab05d0000 339968 C:\Windows\System32\AccountAccessor.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Sync data model to access accounts 131795770645377971 0x7ffab0630000 618496 C:\Windows\System32\SyncController.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SyncController for managing sync of mail, contacts, calendar 131795770645377971 0x7ffab93b0000 897024 C:\Windows\System32\TokenBroker.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Token Broker 131795770645377971 0x7ffabaab0000 94208 C:\Windows\SYSTEM32\profext.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation profext 131795770645377971 0x7ffabbb80000 61440 C:\Windows\System32\dsclient.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Data Sharing Service Client DLL 131795770645377971 0x7ffabbd10000 65536 C:\Windows\System32\TOKENBINDING.dll 10.0.14393.1593 (rs1_release.170731-1934) Microsoft Corporation Token Binding Protocol 131795770645377971 0x7ffabca50000 819200 C:\Windows\System32\Windows.Security.Authentication.Web.Core.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Token Broker WinRT API 131795770645377971 0x7ffabcb20000 266240 C:\Windows\System32\CEMAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation CEMAPI 131795770645377971 0x7ffabcb70000 262144 C:\Windows\System32\cdprt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft (R) CDP Client WinRT API 131795770645377971 0x7ffabcd80000 360448 c:\windows\system32\cdpusersvc.dll 10.0.14393.479 (rs1_release.161110-2025) Microsoft Corporation Microsoft (R) CDP User Components 131795770645377971 0x7ffabd630000 200704 C:\Windows\System32\MCCSEngineShared.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Utilies shared among OneSync engines 131795770645377971 0x7ffabdde0000 462848 c:\windows\system32\SYNCUTIL.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Sync utilities for mail, contacts, calendar 131795770645377971 0x7ffabe850000 155648 C:\Windows\System32\IDStore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Identity Store 131795770645377971 0x7ffabed20000 389120 c:\windows\system32\aphostservice.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Accounts Host Service 131795770645377971 0x7ffabfbe0000 1011712 C:\Windows\System32\Windows.Security.Authentication.OnlineId.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation Windows Runtime OnlineId Authentication DLL 131795770645377971 0x7ffac05f0000 94208 C:\Windows\System32\wwapi.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation WWAN API 131795770645377971 0x7ffac0910000 724992 C:\Windows\System32\Windows.Networking.Connectivity.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Networking Connectivity Runtime DLL 131795770645377971 0x7ffac09d0000 884736 C:\Windows\System32\wpnapps.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Приложения для push-уведомлений Windows 131795770645377971 0x7ffac0bf0000 3559424 C:\Windows\System32\ActXPrxy.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation ActiveX Interface Marshaling Library 131795770645377971 0x7ffac20d0000 110592 C:\Windows\System32\RMCLIENT.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Resource Manager Client 131795770645377971 0x7ffac23c0000 331776 C:\Windows\System32\OneCoreCommonProxyStub.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation OneCore Common Proxy Stub 131795770645377971 0x7ffac2590000 659456 C:\Windows\System32\FlightSettings.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Параметры цикла тестирования 131795770645377971 0x7ffac2750000 106496 C:\Windows\System32\bcd.dll 10.0.14393.1794 (rs1_release.171008-1615) Microsoft Corporation BCD DLL 131795770645377971 0x7ffac2b30000 286720 C:\Windows\System32\usermgrproxy.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation UserMgrProxy 131795770645377971 0x7ffac2cb0000 778240 c:\windows\system32\winsqlite3.dll 3.12.2 SQLite Development Team SQLite is a software library that implements a self-contained, serverless, zero-configuration, transactional SQL database engine. 131795770645377971 0x7ffac2d80000 5140480 c:\windows\system32\cdp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API клиента Microsoft (R) CDP 131795770645377971 0x7ffac3cb0000 2772992 C:\Windows\System32\iertutil.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служебная программа времени выполнения для Internet Explorer 131795770645377971 0x7ffac4000000 274432 C:\Windows\SYSTEM32\policymanager.dll 10.0.14393.2035 (rs1_release_inmarket.180110-1910) Microsoft Corporation Policy Manager DLL 131795770645377971 0x7ffac4100000 151552 c:\windows\system32\NetworkHelper.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Network utilities for mail, contacts, calendar 131795770645377971 0x7ffac4450000 86016 C:\Windows\SYSTEM32\usermgrcli.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation UserMgr API DLL 131795770645377971 0x7ffac60e0000 221184 C:\Windows\System32\XmlLite.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft XmlLite Library 131795770645377971 0x7ffac66a0000 86016 C:\Windows\SYSTEM32\ondemandconnroutehelper.dll 10.0.14393.351 (rs1_release_inmarket.161014-1755) Microsoft Corporation On Demand Connctiond Route Helper 131795770645377971 0x7ffac69c0000 839680 c:\windows\system32\WINHTTP.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Службы HTTP Windows 131795770645377971 0x7ffac79c0000 57344 C:\Windows\System32\npmproxy.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Network List Manager Proxy 131795770645377971 0x7ffac7aa0000 401408 C:\Windows\SYSTEM32\wlanapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows WLAN AutoConfig Client Side API DLL 131795770645377971 0x7ffac83d0000 106496 C:\Windows\SYSTEM32\dhcpcsvc.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служба DHCP-клиента 131795770645377971 0x7ffac83f0000 90112 C:\Windows\SYSTEM32\dhcpcsvc6.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиент DHCPv6 131795770645377971 0x7ffac8540000 286720 C:\Windows\System32\vaultcli.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиентская библиотека хранилища учетных данных 131795770645377971 0x7ffac92e0000 1269760 C:\Windows\SYSTEM32\wintypes.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL основных типов Windows 131795770645377971 0x7ffac97b0000 81920 c:\windows\system32\InprocLogger.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation In-proc Private Event Trace Logger 131795770645377971 0x7ffaca1d0000 69632 C:\Windows\System32\UserDataTypeHelperUtil.dll 10.0.14393.2189 (rs1_release.180329-1711) Microsoft Corporation Type Utilities for data access 131795770645377971 0x7ffaca270000 65536 C:\Windows\System32\UserDataLanguageUtil.dll 10.0.14393.2189 (rs1_release.180329-1711) Microsoft Corporation Language-related helper functions for user data 131795770645377971 0x7ffaca4e0000 77824 C:\Windows\SYSTEM32\wtsapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Remote Desktop Session Host Server SDK APIs 131795770645377971 0x7ffaca520000 90112 C:\Windows\System32\APHostClient.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Accounts Host Service RPC Client 131795770645377971 0x7ffaca610000 143360 C:\Windows\System32\SAMLIB.dll 10.0.14393.82 (rs1_release.160805-1735) Microsoft Corporation SAM Library DLL 131795770645377971 0x7ffacabf0000 45056 c:\windows\system32\MCCSPal.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Platform abstraction layer dll for MCCS 131795770645377971 0x7ffacac20000 86016 c:\windows\system32\UserDataPlatformHelperUtil.dll 10.0.14393.2189 (rs1_release.180329-1711) Microsoft Corporation Platform Utilities for data access 131795770645377971 0x7ffacb140000 593920 c:\windows\system32\msvcp110_win.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Microsoft® STL110 C++ Runtime Library 131795770645377971 0x7ffacb1e0000 1163264 C:\Windows\System32\twinapi.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation twinapi.appcore 131795770645377971 0x7ffacb300000 364544 c:\windows\system32\VEEventDispatcher.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Visual Element Event dispatcher 131795770645377971 0x7ffacb420000 204800 C:\Windows\SYSTEM32\ntmarta.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик Windows NT MARTA 131795770645377971 0x7ffacb920000 81920 C:\Windows\SYSTEM32\WLDP.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Политика блокировки Windows 131795770645377971 0x7ffacbbf0000 40960 C:\Windows\System32\DPAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Data Protection API 131795770645377971 0x7ffacbd30000 229376 c:\windows\system32\IPHLPAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API вспомогательного приложения IP 131795770645377971 0x7ffacbe40000 126976 C:\Windows\System32\USERENV.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Userenv 131795770645377971 0x7ffacbf30000 49152 C:\Windows\system32\NtlmShared.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation NTLM Shared Functionality 131795770645377971 0x7ffacbf40000 421888 C:\Windows\system32\msv1_0.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Authentication Package v1.0 131795770645377971 0x7ffacc010000 86016 C:\Windows\system32\cryptdll.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Cryptography Manager 131795770645377971 0x7ffacc150000 94208 C:\Windows\SYSTEM32\cryptsp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Cryptographic Service Provider API 131795770645377971 0x7ffacc170000 45056 c:\windows\system32\CRYPTBASE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base cryptographic API DLL 131795770645377971 0x7ffacc1f0000 241664 c:\windows\system32\NTASN1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft ASN.1 API 131795770645377971 0x7ffacc230000 155648 c:\windows\system32\ncrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Маршрутизатор Windows NCrypt 131795770645377971 0x7ffacc350000 180224 c:\windows\system32\SspiCli.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Security Support Provider Interface 131795770645377971 0x7ffacc620000 176128 c:\windows\system32\bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795770645377971 0x7ffacc6e0000 61440 C:\Windows\System32\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795770645377971 0x7ffacc6f0000 311296 C:\Windows\System32\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795770645377971 0x7ffacc740000 81920 C:\Windows\System32\profapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Profile Basic API 131795770645377971 0x7ffacc760000 65536 C:\Windows\System32\MSASN1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ASN.1 Runtime APIs 131795770645377971 0x7ffacc8f0000 1003520 C:\Windows\System32\ucrtbase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645377971 0x7ffacc9f0000 434176 C:\Windows\System32\bcryptPrimitives.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Cryptographic Primitives Library 131795770645377971 0x7ffacca60000 122880 C:\Windows\System32\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795770645377971 0x7ffacca80000 348160 C:\Windows\System32\WINTRUST.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation Microsoft Trust Verification APIs 131795770645377971 0x7ffaccae0000 692224 C:\Windows\System32\shcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795770645377971 0x7ffaccb90000 7180288 C:\Windows\System32\windows.storage.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API хранения Microsoft WinRT 131795770645377971 0x7ffacd270000 2215936 C:\Windows\System32\KERNELBASE.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645377971 0x7ffacd490000 1871872 C:\Windows\System32\CRYPT32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API32 криптографии 131795770645377971 0x7ffacd710000 638976 C:\Windows\System32\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645377971 0x7ffacd7b0000 270336 C:\Windows\System32\cfgmgr32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Configuration Manager DLL 131795770645377971 0x7ffaced20000 782336 C:\Windows\System32\OLEAUT32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795770645377971 0x7ffacee50000 1183744 C:\Windows\System32\RPCRT4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795770645377971 0x7ffacef80000 32768 C:\Windows\System32\NSI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation NSI User-mode interface DLL 131795770645377971 0x7ffacef90000 647168 C:\Windows\System32\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795770645377971 0x7ffacf030000 651264 C:\Windows\System32\clbcatq.dll 2001.12.10941.16384 (rs1_release.160715-1616) Microsoft Corporation COM+ Configuration Catalog 131795770645377971 0x7ffacf0d0000 704512 C:\Windows\System32\KERNEL32.DLL 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645377971 0x7ffacf770000 212992 C:\Windows\System32\GDI32.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation GDI Client DLL 131795770645377971 0x7ffacf820000 434176 C:\Windows\System32\WS2_32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation 32-разрядная библиотека Windows Socket 2.0 131795770645377971 0x7ffacf890000 188416 C:\Windows\System32\IMM32.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Multi-User Windows IMM32 API Client DLL 131795770645377971 0x7ffacf8c0000 1462272 C:\Windows\System32\user32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795770645377971 0x7ffacfb30000 2916352 C:\Windows\System32\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795770645377971 0x7ffacfe20000 663552 C:\Windows\System32\advapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795770645377971 0x7ffad01b0000 335872 C:\Windows\System32\shlwapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека небольших программ оболочки 131795770645377971 0x7ffad0210000 364544 C:\Windows\System32\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795770645377971 0x7ffad0270000 1908736 C:\Windows\SYSTEM32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 37 528 348 24 00000000:0031f1da 131765777565618284 0 0 1 Обязательная метка\Средний обязательный уровень WIN-0UOTFKKVN1S\User taskhostw.exe C:\Windows\system32\taskhostw.exe taskhostw.exe {222A245B-E637-4AE9-A93F-A59CA119A75E} Microsoft Corporation 10.0.14393.0 (rs1_release.160715-1616) Хост-процесс для задач Windows 131795770645378085 0x7ff794e10000 102400 C:\Windows\system32\taskhostw.exe 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Хост-процесс для задач Windows 131795770645378085 0x7ffab4af0000 606208 C:\Windows\system32\AUDIOSES.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Сеанс обработки звука 131795770645378085 0x7ffabaab0000 94208 C:\Windows\SYSTEM32\profext.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation profext 131795770645378085 0x7ffabb3c0000 450560 C:\Windows\system32\TextInputFramework.dll 10.0.14393.2189 (rs1_release.180329-1711) Microsoft Corporation "TextInputFramework.DYNLINK" 131795770645378085 0x7ffabb440000 282624 C:\Windows\system32\MTFServer.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation "MTFServer.DYNLINK" 131795770645378085 0x7ffabb510000 2854912 C:\Windows\system32\InputService.dll 10.0.14393.2189 (rs1_release.180329-1711) Microsoft Corporation Microsoft Text InputService Dll 131795770645378085 0x7ffabb8c0000 131072 C:\Windows\system32\InputLocaleManager.dll 10.0.14393.576 (rs1_release_inmarket.161208-2252) Microsoft Corporation "InputLocaleManager.DYNLINK" 131795770645378085 0x7ffabb8f0000 98304 C:\Windows\system32\EditBufferTestHook.dll 10.0.14393.576 (rs1_release_inmarket.161208-2252) Microsoft Corporation "EditBufferTestHook.DYNLINK" 131795770645378085 0x7ffabb9f0000 483328 C:\Windows\system32\MSUTB.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека (DLL) сервера MSUTB 131795770645378085 0x7ffabba70000 53248 C:\Windows\system32\MsCtfMonitor.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation MsCtfMonitor DLL 131795770645378085 0x7ffabbc20000 106496 C:\Windows\System32\PlaySndSrv.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служба PlaySound 131795770645378085 0x7ffabf5d0000 2924544 C:\Windows\system32\wininet.dll 11.00.14393.447 (rs1_release_inmarket.161102-0100) Microsoft Corporation Расширения Интернета для Win32 131795770645378085 0x7ffac37d0000 258048 C:\Windows\system32\wdmaud.drv 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Системный звуковой драйвер Winmm 131795770645378085 0x7ffac3840000 3088384 C:\Windows\system32\ESENT.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширяемая подсистема хранения данных ESE для Microsoft(R) Windows(R) 131795770645378085 0x7ffac3cb0000 2772992 C:\Windows\system32\iertutil.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служебная программа времени выполнения для Internet Explorer 131795770645378085 0x7ffac4000000 274432 C:\Windows\SYSTEM32\policymanager.dll 10.0.14393.2035 (rs1_release_inmarket.180110-1910) Microsoft Corporation Policy Manager DLL 131795770645378085 0x7ffac4140000 114688 C:\Windows\system32\MSACM32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Фильтр диспетчера аудиосжатия Microsoft 131795770645378085 0x7ffac7d10000 32768 C:\Windows\system32\KBDUS.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation United States Keyboard Layout 131795770645378085 0x7ffac8f90000 45056 C:\Windows\system32\AVRT.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Среда выполнения мультимедиа в реальном времени 131795770645378085 0x7ffac92e0000 1269760 C:\Windows\SYSTEM32\wintypes.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL основных типов Windows 131795770645378085 0x7ffac9480000 462848 C:\Windows\System32\MMDevAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation MMDevice API 131795770645378085 0x7ffac9500000 2682880 C:\Windows\system32\CoreUIComponents.dll 131795770645378085 0x7ffac97d0000 40960 C:\Windows\system32\midimap.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft MIDI Mapper 131795770645378085 0x7ffaca180000 53248 C:\Windows\system32\msacm32.drv 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Программа переназначения звуковых устройств 131795770645378085 0x7ffaca340000 1593344 C:\Windows\System32\PROPSYS.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Система страниц свойств (Майкрософт) 131795770645378085 0x7ffaca550000 36864 C:\Windows\system32\ksuser.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User CSA Library 131795770645378085 0x7ffaca5e0000 155648 C:\Windows\system32\dwmapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Интерфейс API диспетчера окон рабочего стола (Майкрософт) 131795770645378085 0x7ffaca640000 770048 C:\Windows\system32\CoreMessaging.dll 10.0.14393.0 Microsoft Corporation Microsoft CoreMessaging Dll 131795770645378085 0x7ffacab10000 61440 C:\Windows\System32\WordBreakers.dll 10.0.14393.2189 (rs1_release.180329-1711) Microsoft Corporation "WordBreakers.DYNLINK" 131795770645378085 0x7ffacab40000 176128 C:\Windows\System32\WINMMBASE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base Multimedia Extension API DLL 131795770645378085 0x7ffacaba0000 143360 C:\Windows\System32\WINMM.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation MCI API DLL 131795770645378085 0x7ffacaf00000 610304 C:\Windows\system32\uxtheme.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека тем UxTheme (Microsoft) 131795770645378085 0x7ffacb140000 593920 C:\Windows\system32\msvcp110_win.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Microsoft® STL110 C++ Runtime Library 131795770645378085 0x7ffacb3f0000 163840 C:\Windows\System32\DEVOBJ.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Device Information Set DLL 131795770645378085 0x7ffacb420000 204800 C:\Windows\SYSTEM32\ntmarta.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик Windows NT MARTA 131795770645378085 0x7ffacbe40000 126976 C:\Windows\SYSTEM32\userenv.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Userenv 131795770645378085 0x7ffacc170000 45056 C:\Windows\system32\CRYPTBASE.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base cryptographic API DLL 131795770645378085 0x7ffacc5c0000 352256 C:\Windows\system32\WINSTA.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Winstation Library 131795770645378085 0x7ffacc6e0000 61440 C:\Windows\System32\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795770645378085 0x7ffacc6f0000 311296 C:\Windows\System32\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795770645378085 0x7ffacc740000 81920 C:\Windows\System32\profapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Profile Basic API 131795770645378085 0x7ffacc8f0000 1003520 C:\Windows\System32\ucrtbase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645378085 0x7ffacc9f0000 434176 C:\Windows\System32\bcryptPrimitives.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Cryptographic Primitives Library 131795770645378085 0x7ffacca60000 122880 C:\Windows\System32\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795770645378085 0x7ffaccae0000 692224 C:\Windows\System32\shcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795770645378085 0x7ffaccb90000 7180288 C:\Windows\System32\windows.storage.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API хранения Microsoft WinRT 131795770645378085 0x7ffacd270000 2215936 C:\Windows\System32\KERNELBASE.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645378085 0x7ffacd710000 638976 C:\Windows\System32\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645378085 0x7ffacd7b0000 270336 C:\Windows\System32\cfgmgr32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Configuration Manager DLL 131795770645378085 0x7ffaced20000 782336 C:\Windows\System32\OLEAUT32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795770645378085 0x7ffacee50000 1183744 C:\Windows\System32\RPCRT4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795770645378085 0x7ffacef90000 647168 C:\Windows\System32\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795770645378085 0x7ffacf030000 651264 C:\Windows\System32\clbcatq.dll 2001.12.10941.16384 (rs1_release.160715-1616) Microsoft Corporation COM+ Configuration Catalog 131795770645378085 0x7ffacf0d0000 704512 C:\Windows\System32\KERNEL32.DLL 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645378085 0x7ffacf1e0000 1417216 C:\Windows\System32\MSCTF.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Серверная библиотека MSCTF 131795770645378085 0x7ffacf770000 212992 C:\Windows\System32\GDI32.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation GDI Client DLL 131795770645378085 0x7ffacf890000 188416 C:\Windows\System32\imm32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Multi-User Windows IMM32 API Client DLL 131795770645378085 0x7ffacf8c0000 1462272 C:\Windows\System32\USER32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795770645378085 0x7ffacfb30000 2916352 C:\Windows\System32\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795770645378085 0x7ffacfe20000 663552 C:\Windows\System32\advapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795770645378085 0x7ffad0070000 1277952 C:\Windows\System32\ole32.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft OLE для Windows 131795770645378085 0x7ffad01b0000 335872 C:\Windows\System32\shlwapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека небольших программ оболочки 131795770645378085 0x7ffad0210000 364544 C:\Windows\System32\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795770645378085 0x7ffad0270000 1908736 C:\Windows\SYSTEM32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 38 3632 664 6 00000000:0031f1da 131765777941176116 0 0 1 Обязательная метка\Средний обязательный уровень WIN-0UOTFKKVN1S\User RuntimeBroker.exe C:\Windows\System32\RuntimeBroker.exe C:\Windows\System32\RuntimeBroker.exe -Embedding Microsoft Corporation 10.0.14393.0 (rs1_release.160715-1616) Runtime Broker 131795770645378207 0x7ff7808b0000 8527872 C:\Windows\system32\ntoskrnl.exe 10.0.14393.2189 (rs1_release.180329-1711) Microsoft Corporation NT Kernel & System 131795770645378207 0x7ff7a45f0000 49152 C:\Windows\System32\RuntimeBroker.exe 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Runtime Broker 131795770645378207 0x7ffaab750000 876544 C:\Windows\System32\Windows.Media.Import.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation Windows Photo Import API (WinRT/COM) 131795770645378207 0x7ffaac6e0000 13156352 C:\Windows\System32\ieframe.dll 11.00.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Браузер 131795780843802542 0x7ffaad3f0000 1826816 C:\Windows\System32\Wpc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека параметров родительского контроля 131795786292112107 0x7ffab08d0000 593920 C:\Windows\System32\LockAppBroker.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL брокера приложения "Блокировка" Windows 131795786164057245 0x7ffab0b10000 798720 C:\Windows\System32\mssvp.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Платформа Vista MSSearch 131795770645378207 0x7ffab33d0000 258048 C:\Windows\System32\MLANG.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL многоязыковой поддержки 131795770645378207 0x7ffab4b90000 655360 C:\Windows\System32\StructuredQuery.dll 7.0.14393.2068 (rs1_release.180209-1727) Microsoft Corporation Structured Query 131795770645378207 0x7ffab7780000 2576384 C:\Windows\system32\mssrch.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Встроенный поиск (Майкрософт) 131795770645378207 0x7ffab7a00000 3424256 C:\Windows\system32\TQUERY.DLL 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Запросы Microsoft Tripoli 131795770645378207 0x7ffab7d80000 753664 C:\Windows\System32\RASAPI32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API удаленного доступа 131795770645378207 0x7ffab8190000 9191424 C:\Windows\system32\twinui.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation TWINUI 131795780489291214 0x7ffab8da0000 1675264 C:\Windows\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.14393.1715_none_aec701fbddd850fa\GdiPlus.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Microsoft GDI+ 131795770645378207 0x7ffab92e0000 827392 C:\Windows\system32\Windows.Storage.Search.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows.Storage.Search 131795786088780638 0x7ffab93b0000 897024 C:\Windows\System32\TokenBroker.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Token Broker 131795770645378207 0x7ffab9490000 860160 C:\Windows\System32\ntshrui.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширения оболочки, обеспечивающие общий доступ 131795770645378207 0x7ffab9a40000 299008 C:\Windows\System32\RasMediaManager.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Ras Media Manager DLL 131795770645378207 0x7ffaba950000 188416 C:\Windows\System32\EthernetMediaManager.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Ethernet Media Manager DLL 131795770645378207 0x7ffabaa50000 339968 C:\Windows\System32\NetworkUXBroker.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation NetworkUXBroker DLL 131795770645378207 0x7ffabaab0000 94208 C:\Windows\SYSTEM32\profext.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation profext 131795786148630640 0x7ffabaad0000 352256 C:\Windows\System32\deviceaccess.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Device Broker And Policy COM Server 131795770645378207 0x7ffabae40000 110592 C:\Windows\SYSTEM32\capauthz.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API авторизации возможностей 131795770645378207 0x7ffabaf70000 270336 C:\Windows\System32\edputil.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служебная программа EDP 131795770645378207 0x7ffabb2b0000 1089536 C:\Windows\system32\SettingSyncCore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Setting Synchronization Core 131795770645378207 0x7ffabba80000 995328 C:\Windows\System32\twinui.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation TWINUI.APPCORE 131795786089047958 0x7ffabbd10000 65536 C:\Windows\System32\tokenbinding.dll 10.0.14393.1593 (rs1_release.170731-1934) Microsoft Corporation Token Binding Protocol 131795770645378207 0x7ffabc0b0000 65536 C:\Windows\System32\LINKINFO.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Volume Tracking 131795780613006289 0x7ffabc510000 90112 C:\Windows\System32\execmodelproxy.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ExecModelProxy 131795770645378207 0x7ffabc530000 241664 C:\Windows\System32\Windows.Networking.HostName.dll 10.0.14393.953 (rs1_release_inmarket.170303-1614) Microsoft Corporation Windows.Networking.HostName DLL 131795780733496994 0x7ffabc6b0000 1114112 C:\Windows\System32\AppContracts.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Сервер API Windows AppContracts 131795770645378207 0x7ffabc880000 73728 C:\Windows\System32\cscapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Offline Files Win32 API 131795780611542837 0x7ffabc920000 270336 C:\Windows\System32\ExecModelClient.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation ExecModelClient 131795786306767518 0x7ffabcef0000 102400 C:\Windows\System32\Windows.Shell.ServiceHostBuilder.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows.Shell.ServiceHostBuilder 131795770645378207 0x7ffabcf30000 110592 C:\Windows\System32\MPR.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека маршрутизации для нескольких служб доступа 131795786143522657 0x7ffabd220000 479232 C:\Windows\System32\Windows.Devices.Enumeration.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows.Devices.Enumeration 131795770645378207 0x7ffabdd60000 425984 C:\Windows\System32\AppXDeploymentClient.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL-библиотека клиента развертывания AppX 131795770645378207 0x7ffabe070000 610304 C:\Windows\System32\efswrt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Storage Protection Windows Runtime DLL 131795786165227211 0x7ffabe130000 126976 C:\Windows\System32\mapi32.dll 1.0.2536.0 (rs1_release.160715-1616) Microsoft Corporation Расширенный MAPI 1.0 для Windows NT 131795770645378207 0x7ffabe4d0000 286720 C:\Windows\System32\MSWB7.dll 10.0.14393.1737 (rs1_release_inmarket.170914-1249) Microsoft Corporation MSWB7 DLL 131795786089826857 0x7ffabe850000 155648 C:\Windows\System32\IDStore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Identity Store 131795770645378207 0x7ffabe880000 94208 C:\Windows\System32\FeClient.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT File Encryption Client Interfaces 131795770645378207 0x7ffabe8c0000 454656 C:\Windows\system32\windows.cortana.Desktop.dll 10.0.14393.953 (rs1_release_inmarket.170303-1614) Microsoft Corporation Windows.Cortana.Desktop 131795786151786571 0x7ffabf030000 98304 C:\Windows\System32\LocationFrameworkInternalPS.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Geolocation Framework Internal PS 131795770645378207 0x7ffabf330000 2457600 C:\Windows\System32\msxml6.dll 6.30.14393.2156 Microsoft Corporation MSXML 6.0 131795770645378207 0x7ffabf5d0000 2924544 C:\Windows\System32\WININET.dll 11.00.14393.447 (rs1_release_inmarket.161102-0100) Microsoft Corporation Расширения Интернета для Win32 131795780443980999 0x7ffabf8a0000 122880 C:\Windows\System32\Windows.Cortana.ProxyStub.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows.Cortana.ProxyStub 131795770645378207 0x7ffabf8c0000 802816 C:\Windows\system32\Windows.Internal.Shell.Broker.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation Windows Shell Broker 131795770645378207 0x7ffabf9c0000 200704 C:\Windows\system32\windows.cortana.onecore.dll 10.0.14393.953 (rs1_release_inmarket.170303-1614) Microsoft Corporation Windows.Cortana.OneCore 131795770645378207 0x7ffabfb00000 626688 C:\Windows\System32\ContentDeliveryManager.Utilities.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation ContentDeliveryManager.Utilities 131795786445101159 0x7ffabfbe0000 1011712 C:\Windows\System32\Windows.Security.Authentication.OnlineId.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation Windows Runtime OnlineId Authentication DLL 131795770645378207 0x7ffabff10000 155648 C:\Windows\System32\srvcli.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Server Service Client DLL 131795770645378207 0x7ffac05f0000 94208 C:\Windows\System32\wwapi.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation WWAN API 131795770645378207 0x7ffac0910000 724992 C:\Windows\System32\Windows.Networking.Connectivity.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Networking Connectivity Runtime DLL 131795770645378207 0x7ffac09d0000 884736 C:\Windows\System32\wpnapps.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Приложения для push-уведомлений Windows 131795770645378207 0x7ffac0bf0000 3559424 C:\Windows\System32\ActXPrxy.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation ActiveX Interface Marshaling Library 131795779561161209 0x7ffac1470000 704512 C:\Windows\System32\ieproxy.dll 11.00.14393.2007 (rs1_release.171231-1800) Microsoft Corporation IE ActiveX Interface Marshaling Library 131795786075081206 0x7ffac15d0000 172032 C:\Windows\System32\Windows.ApplicationModel.Core.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation Windows Application Model Core API 131795770645378207 0x7ffac1c40000 94208 C:\Windows\System32\SystemSettings.DataModel.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SystemSettings.Datamodel private API 131795770645378207 0x7ffac20d0000 110592 C:\Windows\System32\RMCLIENT.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Resource Manager Client 131795770645378207 0x7ffac23c0000 331776 C:\Windows\System32\OneCoreCommonProxyStub.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation OneCore Common Proxy Stub 131795770645378207 0x7ffac2700000 98304 C:\Windows\System32\NETAPI32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API DLL 131795770645378207 0x7ffac2960000 143360 C:\Windows\system32\mssprxy.dll 7.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation Microsoft Search Proxy 131795770645378207 0x7ffac2a20000 81920 C:\Windows\System32\rtutils.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Routing Utilities 131795770645378207 0x7ffac2b80000 40960 C:\Windows\System32\VERSION.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Version Checking and File Installation Libraries 131795770645378207 0x7ffac34e0000 1843200 C:\Windows\System32\urlmon.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширения OLE32 для Win32 131795780447369522 0x7ffac37b0000 106496 C:\Windows\System32\ShellCommonCommonProxyStub.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ShellCommon Common Proxy Stub 131795770645378207 0x7ffac3840000 3088384 C:\Windows\system32\ESENT.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширяемая подсистема хранения данных ESE для Microsoft(R) Windows(R) 131795770645378207 0x7ffac3cb0000 2772992 C:\Windows\System32\iertutil.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служебная программа времени выполнения для Internet Explorer 131795770645378207 0x7ffac4000000 274432 C:\Windows\system32\policymanager.dll 10.0.14393.2035 (rs1_release_inmarket.180110-1910) Microsoft Corporation Policy Manager DLL 131795770645378207 0x7ffac42a0000 659456 C:\Windows\System32\StateRepository.Core.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation StateRepository Core 131795770645378207 0x7ffac4450000 86016 C:\Windows\SYSTEM32\usermgrcli.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation UserMgr API DLL 131795770645378207 0x7ffac46d0000 4161536 C:\Windows\System32\Windows.StateRepository.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Сервер Windows StateRepository API Server 131795771234179313 0x7ffac4b70000 106496 C:\Windows\System32\ShellCommonCommonProxyStub.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ShellCommon Common Proxy Stub 131795770645378207 0x7ffac4b90000 774144 C:\Windows\System32\StoreAgent.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation StoreAgent 131795780489961900 0x7ffac4df0000 462848 C:\Windows\System32\provsvc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Домашняя группа Windows 131795770645378207 0x7ffac4f60000 143360 C:\Windows\System32\wcmapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Connection Manager Client API 131795780846908833 0x7ffac4fd0000 618496 C:\Windows\System32\wlidprov.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft® Account Provider 131795770645378207 0x7ffac5630000 339968 C:\Windows\System32\thumbcache.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Кэш эскизов Майкрософт 131795770645378207 0x7ffac5c50000 131072 C:\Windows\System32\rasman.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Remote Access Connection Manager 131795770645378207 0x7ffac5ca0000 200704 C:\Windows\System32\AppExtension.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API AppExtension 131795770645378207 0x7ffac60e0000 221184 C:\Windows\System32\XmlLite.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft XmlLite Library 131795786144114651 0x7ffac6620000 192512 C:\Windows\System32\biwinrt.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation Windows Background Broker Infrastructure 131795786145514308 0x7ffac6990000 69632 C:\Windows\System32\deviceassociation.dll 10.0.14393.82 (rs1_release.160805-1735) Microsoft Corporation Device Association Client DLL 131795770645378207 0x7ffac69c0000 839680 C:\Windows\System32\WINHTTP.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Службы HTTP Windows 131795770645378207 0x7ffac6a90000 49152 C:\Windows\System32\LocationFrameworkPS.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Geolocation Framework PS 131795786287854312 0x7ffac6ac0000 835584 C:\Windows\System32\Windows.UI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Runtime UI Foundation DLL 131795770645378207 0x7ffac6ba0000 49152 C:\Windows\System32\Secur32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Security Support Provider Interface 131795770645378207 0x7ffac6c40000 2596864 C:\Windows\WinSxS\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.14393.953_none_42151e83c686086b\comctl32.dll 6.10 (rs1_release_inmarket.170303-1614) Microsoft Corporation Библиотека элементов управления взаимодействия с пользователем 131795770645378207 0x7ffac6ec0000 36864 C:\Windows\system32\IconCodecService.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Converts a PNG part of the icon to a legacy bmp icon 131795770645378207 0x7ffac7580000 1077248 C:\Windows\SYSTEM32\mrmcorer.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Windows MRM 131795770645378207 0x7ffac76a0000 159744 C:\Windows\System32\sppc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Software Licensing Client DLL 131795770645378207 0x7ffac7720000 1601536 C:\Windows\System32\OneCoreUAPCommonProxyStub.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation OneCoreUAP Common Proxy Stub 131795786448623381 0x7ffac79c0000 57344 C:\Windows\System32\npmproxy.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Network List Manager Proxy 131795770645378207 0x7ffac7aa0000 401408 C:\Windows\SYSTEM32\wlanapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows WLAN AutoConfig Client Side API DLL 131795770645378207 0x7ffac7d00000 32768 C:\Windows\SYSTEM32\familysafetyext.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation FamilySafety ChildAccount Extensions 131795770645378207 0x7ffac90b0000 90112 C:\Windows\System32\wkscli.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Workstation Service Client DLL 131795770645378207 0x7ffac9290000 40960 C:\Windows\System32\DSROLE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DS Setup Client DLL 131795770645378207 0x7ffac92e0000 1269760 C:\Windows\System32\WinTypes.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL основных типов Windows 131795780849625720 0x7ffac9f10000 221184 C:\Windows\System32\netprofm.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Network List Manager 131795770645378207 0x7ffac9f50000 1736704 C:\Windows\system32\windowscodecs.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Microsoft Windows Codecs Library 131795770645378207 0x7ffaca340000 1593344 C:\Windows\system32\PROPSYS.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Система страниц свойств (Майкрософт) 131795770645378207 0x7ffaca4e0000 77824 C:\Windows\SYSTEM32\wtsapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Remote Desktop Session Host Server SDK APIs 131795770645378207 0x7ffaca570000 421888 C:\Windows\System32\Bcp47Langs.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation BCP47 Language Classes 131795770645378207 0x7ffaca5e0000 155648 C:\Windows\system32\dwmapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Интерфейс API диспетчера окон рабочего стола (Майкрософт) 131795786090201282 0x7ffaca610000 143360 C:\Windows\System32\samlib.dll 10.0.14393.82 (rs1_release.160805-1735) Microsoft Corporation SAM Library DLL 131795780611842861 0x7ffaca640000 770048 C:\Windows\System32\CoreMessaging.dll 10.0.14393.0 Microsoft Corporation Microsoft CoreMessaging Dll 131795770645378207 0x7ffacadf0000 499712 C:\Windows\System32\apphelp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиентская библиотека совместимости приложений 131795770645378207 0x7ffacaf00000 610304 C:\Windows\system32\uxtheme.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека тем UxTheme (Microsoft) 131795770645378207 0x7ffacb140000 593920 C:\Windows\system32\msvcp110_win.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Microsoft® STL110 C++ Runtime Library 131795770645378207 0x7ffacb1e0000 1163264 C:\Windows\System32\twinapi.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation twinapi.appcore 131795770645378207 0x7ffacb300000 364544 C:\Windows\system32\VEEventDispatcher.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Visual Element Event dispatcher 131795770645378207 0x7ffacb3f0000 163840 C:\Windows\System32\DEVOBJ.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Device Information Set DLL 131795770645378207 0x7ffacb420000 204800 C:\Windows\SYSTEM32\ntmarta.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик Windows NT MARTA 131795770645378207 0x7ffacbd30000 229376 C:\Windows\System32\IPHLPAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API вспомогательного приложения IP 131795770645378207 0x7ffacbe20000 53248 C:\Windows\System32\netutils.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API Helpers DLL 131795770645378207 0x7ffacbe40000 126976 C:\Windows\system32\USERENV.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Userenv 131795770645378207 0x7ffacc150000 94208 C:\Windows\System32\CRYPTSP.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Cryptographic Service Provider API 131795770645378207 0x7ffacc350000 180224 C:\Windows\System32\SspiCli.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Security Support Provider Interface 131795770645378207 0x7ffacc520000 622592 C:\Windows\SYSTEM32\sxs.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Fusion 2.5 131795770645378207 0x7ffacc5c0000 352256 C:\Windows\SYSTEM32\WINSTA.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Winstation Library 131795770645378207 0x7ffacc620000 176128 C:\Windows\System32\bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795770645378207 0x7ffacc6e0000 61440 C:\Windows\System32\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795770645378207 0x7ffacc6f0000 311296 C:\Windows\System32\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795770645378207 0x7ffacc740000 81920 C:\Windows\System32\profapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Profile Basic API 131795770645378207 0x7ffacc770000 1572864 C:\Windows\System32\gdi32full.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation GDI Client DLL 131795770645378207 0x7ffacc8f0000 1003520 C:\Windows\System32\ucrtbase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645378207 0x7ffacc9f0000 434176 C:\Windows\System32\bcryptPrimitives.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Cryptographic Primitives Library 131795770645378207 0x7ffacca60000 122880 C:\Windows\System32\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795770645378207 0x7ffaccae0000 692224 C:\Windows\System32\shcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795770645378207 0x7ffaccb90000 7180288 C:\Windows\System32\windows.storage.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API хранения Microsoft WinRT 131795770645378207 0x7ffacd270000 2215936 C:\Windows\System32\KERNELBASE.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645378207 0x7ffacd710000 638976 C:\Windows\System32\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645378207 0x7ffacd7b0000 270336 C:\Windows\System32\cfgmgr32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Configuration Manager DLL 131795770645378207 0x7ffacd810000 22056960 C:\Windows\System32\SHELL32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Общая библиотека оболочки Windows 131795770645378207 0x7ffaced20000 782336 C:\Windows\System32\OLEAUT32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795770645378207 0x7ffacede0000 450560 C:\Windows\System32\coml2.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft COM for Windows 131795770645378207 0x7ffacee50000 1183744 C:\Windows\System32\RPCRT4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795770645378207 0x7ffacef80000 32768 C:\Windows\System32\NSI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation NSI User-mode interface DLL 131795770645378207 0x7ffacef90000 647168 C:\Windows\System32\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795770645378207 0x7ffacf030000 651264 C:\Windows\System32\clbcatq.dll 2001.12.10941.16384 (rs1_release.160715-1616) Microsoft Corporation COM+ Configuration Catalog 131795770645378207 0x7ffacf0d0000 704512 C:\Windows\System32\KERNEL32.DLL 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645378207 0x7ffacf1e0000 1417216 C:\Windows\System32\MSCTF.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Серверная библиотека MSCTF 131795770645378207 0x7ffacf770000 212992 C:\Windows\System32\GDI32.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation GDI Client DLL 131795770645378207 0x7ffacf820000 434176 C:\Windows\System32\WS2_32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation 32-разрядная библиотека Windows Socket 2.0 131795770645378207 0x7ffacf890000 188416 C:\Windows\System32\IMM32.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Multi-User Windows IMM32 API Client DLL 131795770645378207 0x7ffacf8c0000 1462272 C:\Windows\System32\USER32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795770645378207 0x7ffacfb30000 2916352 C:\Windows\System32\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795770645378207 0x7ffacfe20000 663552 C:\Windows\System32\advapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795770645378207 0x7ffad0070000 1277952 C:\Windows\System32\ole32.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft OLE для Windows 131795770645378207 0x7ffad01b0000 335872 C:\Windows\System32\shlwapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека небольших программ оболочки 131795770645378207 0x7ffad0210000 364544 C:\Windows\System32\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795770645378207 0x7ffad0270000 1908736 C:\Windows\SYSTEM32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 39 3164 664 6 00000000:0031f1da 131765778119045372 0 0 1 Обязательная метка\Низкий обязательный уровень WIN-0UOTFKKVN1S\User ShellExperienceHost.exe C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\ShellExperienceHost.exe "C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\ShellExperienceHost.exe" -ServerName:App.AppXtk181tbxbce2qsex02s8tw7hfxa9xb3t.mca Microsoft Corporation 10.0.14393.2125 (rs1_release.180301-2139) Windows Shell Experience Host 131795770645379346 0x7ff697570000 1662976 C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\ShellExperienceHost.exe 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation Windows Shell Experience Host 131795770645379346 0x7ffa9f150000 6311936 C:\Windows\System32\Windows.Media.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Media Runtime DLL 131795770645379346 0x7ffa9f760000 3796992 C:\Windows\System32\MFMediaEngine.dll 10.0.14393.351 (rs1_release_inmarket.161014-1755) Microsoft Corporation Media Foundation Media Engine DLL 131795770645379346 0x7ffaabad0000 1871872 C:\Windows\System32\mfsrcsnk.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Media Foundation Source and Sink DLL 131795770645379346 0x7ffaafe70000 4239360 C:\Windows\System32\mfcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Media Foundation Core DLL 131795770645379346 0x7ffab0be0000 1421312 C:\Windows\ShellExperiences\NetworkUX.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Network Experience 131795770645379346 0x7ffab4af0000 606208 C:\Windows\SYSTEM32\AUDIOSES.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Сеанс обработки звука 131795770645379346 0x7ffab5b40000 2527232 C:\Windows\SYSTEM32\dwrite.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Службы Microsoft DirectX Typography 131795770645379346 0x7ffab6710000 17231872 C:\Windows\System32\Windows.UI.Xaml.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows.UI.Xaml dll 131795770645379346 0x7ffab9eb0000 2899968 C:\Windows\ShellExperiences\Windows.UI.ActionCenter.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation ActionCenter Experience 131795770645379346 0x7ffaba180000 7880704 C:\Windows\ShellExperiences\StartUI.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Start UI 131795770645379346 0x7ffabaa50000 339968 C:\Windows\System32\NetworkUXBroker.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation NetworkUXBroker DLL 131795770645379346 0x7ffabab30000 303104 C:\Windows\System32\NotificationObjFactory.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Notifications Object Factory 131795770645379346 0x7ffabacc0000 1380352 C:\Windows\System32\SharedStartModel.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Shared Start Model InProc Server 131795770645379346 0x7ffabaf70000 270336 C:\Windows\SYSTEM32\edputil.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служебная программа EDP 131795770645379346 0x7ffabb3c0000 450560 C:\Windows\SYSTEM32\TextInputFramework.dll 10.0.14393.2189 (rs1_release.180329-1711) Microsoft Corporation "TextInputFramework.DYNLINK" 131795770645379346 0x7ffabb490000 512000 C:\Windows\system32\twinapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation twinapi 131795770645379346 0x7ffabbb80000 61440 C:\Windows\SYSTEM32\dsclient.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Data Sharing Service Client DLL 131795770645379346 0x7ffabbb90000 581632 C:\Windows\System32\Windows.System.Launcher.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows.System.Launcher 131795770645379346 0x7ffabbd00000 36864 C:\Windows\SYSTEM32\WpPortingLibrary.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation <d> DLL 131795770645379346 0x7ffabc5c0000 319488 C:\Windows\SYSTEM32\MFSENSORGROUP.dll 10.0.14393.447 (rs1_release_inmarket.161102-0100) Microsoft Corporation Media Foundation Sensor Group DLL 131795770645379346 0x7ffabcef0000 102400 C:\Windows\System32\Windows.Shell.ServiceHostBuilder.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows.Shell.ServiceHostBuilder 131795770645379346 0x7ffabd420000 487424 C:\Windows\System32\RTMediaFrame.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Runtime MediaFrame DLL 131795770645379346 0x7ffabd4a0000 1613824 C:\Windows\System32\Windows.Globalization.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Globalization 131795770645379346 0x7ffabe410000 339968 C:\Windows\SYSTEM32\globcollationhost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation GlobCollationHost 131795770645379346 0x7ffabe6e0000 561152 C:\Windows\system32\directmanipulation.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Direct Manipulation Component 131795770645379346 0x7ffabeac0000 335872 C:\Windows\System32\Windows.Storage.ApplicationData.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Application Data API Server 131795770645379346 0x7ffabf330000 2457600 C:\Windows\System32\msxml6.dll 6.30.14393.2156 Microsoft Corporation MSXML 6.0 131795780594734370 0x7ffabfb00000 626688 C:\Windows\System32\ContentDeliveryManager.Utilities.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation ContentDeliveryManager.Utilities 131795770645379346 0x7ffabfce0000 90112 C:\Windows\System32\Windows.Globalization.Fontgroups.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Fonts Mapping API 131795770645379346 0x7ffabfd00000 356352 C:\Windows\System32\Windows.Graphics.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation WinRT Windows Graphics DLL 131795770645379346 0x7ffabfd80000 86016 C:\Windows\System32\threadpoolwinrt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows WinRT Threadpool 131795770645379346 0x7ffac0080000 249856 C:\Windows\System32\resampledmo.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Media Resampler 131795770645379346 0x7ffac00c0000 282624 C:\Windows\SYSTEM32\windows.ui.core.textinput.dll 10.0.14393.2189 (rs1_release.180329-1711) Microsoft Corporation Windows.UI.Core.TextInput dll 131795770645379346 0x7ffac0110000 290816 C:\Windows\SYSTEM32\QuickActionsDataModel.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation QuickActionsDataModel 131795770645379346 0x7ffac0160000 491520 C:\Windows\ShellExperiences\QuickActions.dll 131795770645379346 0x7ffac01e0000 397312 C:\Windows\SYSTEM32\wincorlib.DLL 10.0.14393.576 (rs1_release_inmarket.161208-2252) Microsoft Corporation Microsoft Windows ® WinRT core library 131795770645379346 0x7ffac0470000 1478656 C:\Windows\SYSTEM32\MFPlat.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Media Foundation Platform DLL 131795770645379346 0x7ffac0bf0000 3559424 C:\Windows\System32\ActXPrxy.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation ActiveX Interface Marshaling Library 131795770645379346 0x7ffac1c40000 94208 C:\Windows\System32\SystemSettings.DataModel.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SystemSettings.Datamodel private API 131795770645379346 0x7ffac1e50000 188416 C:\Windows\SYSTEM32\RTWorkQ.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL для WorkQueue реального времени 131795770645379346 0x7ffac20d0000 110592 C:\Windows\System32\rmclient.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Resource Manager Client 131795770645379346 0x7ffac23c0000 331776 C:\Windows\System32\OneCoreCommonProxyStub.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation OneCore Common Proxy Stub 131795770645379346 0x7ffac2990000 385024 C:\Windows\SYSTEM32\NInput.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Pen and Touch Input Component 131795770645379346 0x7ffac34e0000 1843200 C:\Windows\SYSTEM32\urlmon.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширения OLE32 для Win32 131795770645379346 0x7ffac3cb0000 2772992 C:\Windows\SYSTEM32\iertutil.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служебная программа времени выполнения для Internet Explorer 131795770645379346 0x7ffac4000000 274432 C:\Windows\SYSTEM32\policymanager.dll 10.0.14393.2035 (rs1_release_inmarket.180110-1910) Microsoft Corporation Policy Manager DLL 131795770645379346 0x7ffac40f0000 40960 C:\Windows\SYSTEM32\msdmo.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DMO Runtime 131795770645379346 0x7ffac42a0000 659456 C:\Windows\SYSTEM32\StateRepository.Core.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation StateRepository Core 131795770645379346 0x7ffac46d0000 4161536 C:\Windows\System32\Windows.StateRepository.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Сервер Windows StateRepository API Server 131795770645379346 0x7ffac4eb0000 147456 C:\Windows\ShellExperiences\Windows.UI.Shell.SharedUtilities.dll 131795770645379346 0x7ffac5350000 1765376 C:\Windows\System32\Windows.UI.Immersive.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation WINDOWS.UI.IMMERSIVE 131795770645379346 0x7ffac5500000 438272 C:\Windows\SYSTEM32\PhotoMetadataHandler.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Photo Metadata Handler 131795770645379346 0x7ffac5b20000 49152 C:\Windows\SYSTEM32\CompPkgSup.DLL 10.0.14393.969 (rs1_release_inmarket.170315-1735) Microsoft Corporation Component Package Support DLL 131795770645379346 0x7ffac5ce0000 1744896 C:\Windows\SYSTEM32\uiautomationcore.dll 7.2.14393.0 (rs1_release.160715-1616) Microsoft Corporation Основные автоматические компоненты Microsoft UI 131795770645379346 0x7ffac5e90000 380928 C:\Windows\System32\Windows.Media.MediaControl.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL сервера MediaControl среды выполнения Windows 131795770645379346 0x7ffac60e0000 221184 C:\Windows\SYSTEM32\XmlLite.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft XmlLite Library 131795770645379346 0x7ffac6ac0000 835584 C:\Windows\System32\Windows.UI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Runtime UI Foundation DLL 131795770645379346 0x7ffac6bd0000 413696 C:\Windows\SYSTEM32\OLEACC.dll 7.2.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Active Accessibility Core Component 131795770645379346 0x7ffac6f50000 5632000 C:\Windows\SYSTEM32\d2d1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека Microsoft D2D 131795770645379346 0x7ffac7580000 1077248 C:\Windows\SYSTEM32\MrmCoreR.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Windows MRM 131795770645379346 0x7ffac76a0000 159744 C:\Windows\SYSTEM32\sppc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Software Licensing Client DLL 131795770645379346 0x7ffac7720000 1601536 C:\Windows\System32\OneCoreUAPCommonProxyStub.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation OneCoreUAP Common Proxy Stub 131795770645379346 0x7ffac7990000 155648 C:\Windows\SYSTEM32\SLC.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Software Licensing Client DLL 131795770645379346 0x7ffac7e30000 40960 C:\Windows\SYSTEM32\fontgroupsoverride.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation fontgroupsoverride.dll 131795770645379346 0x7ffac7fc0000 2674688 C:\Windows\SYSTEM32\d3d10warp.dll 10.0.14393.576 (rs1_release_inmarket.161208-2252) Microsoft Corporation Direct3D 10 Rasterizer 131795770645379346 0x7ffac84e0000 53248 C:\Windows\System32\NotificationControllerPS.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation NotificationController Proxy Stub 131795770645379346 0x7ffac84f0000 299008 C:\Windows\system32\DataExchange.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation Data exchange 131795770645379346 0x7ffac88a0000 2842624 C:\Windows\SYSTEM32\d3d11.dll 10.0.14393.953 (rs1_release_inmarket.170303-1614) Microsoft Corporation Direct3D 11 Runtime 131795770645379346 0x7ffac8f90000 45056 C:\Windows\SYSTEM32\AVRT.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Среда выполнения мультимедиа в реальном времени 131795770645379346 0x7ffac8fa0000 253952 C:\Windows\SYSTEM32\logoncli.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Net Logon Client DLL 131795770645379346 0x7ffac92e0000 1269760 C:\Windows\System32\WinTypes.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL основных типов Windows 131795770645379346 0x7ffac9480000 462848 C:\Windows\System32\MMDevApi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation MMDevice API 131795770645379346 0x7ffac9500000 2682880 C:\Windows\system32\CoreUIComponents.dll 131795770645379346 0x7ffac9f50000 1736704 C:\Windows\system32\windowscodecs.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Microsoft Windows Codecs Library 131795770645379346 0x7ffaca340000 1593344 C:\Windows\SYSTEM32\PROPSYS.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Система страниц свойств (Майкрософт) 131795770645379346 0x7ffaca550000 36864 C:\Windows\SYSTEM32\ksuser.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User CSA Library 131795770645379346 0x7ffaca570000 421888 C:\Windows\SYSTEM32\Bcp47Langs.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation BCP47 Language Classes 131795770645379346 0x7ffaca5e0000 155648 C:\Windows\SYSTEM32\dwmapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Интерфейс API диспетчера окон рабочего стола (Майкрософт) 131795770645379346 0x7ffaca640000 770048 C:\Windows\SYSTEM32\CoreMessaging.dll 10.0.14393.0 Microsoft Corporation Microsoft CoreMessaging Dll 131795770645379346 0x7ffaca770000 1380352 C:\Windows\SYSTEM32\dcomp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft DirectComposition Library 131795770645379346 0x7ffacab40000 176128 C:\Windows\SYSTEM32\winmmbase.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base Multimedia Extension API DLL 131795770645379346 0x7ffacaf00000 610304 C:\Windows\system32\uxtheme.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека тем UxTheme (Microsoft) 131795770645379346 0x7ffacb140000 593920 C:\Windows\SYSTEM32\msvcp110_win.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Microsoft® STL110 C++ Runtime Library 131795770645379346 0x7ffacb1e0000 1163264 C:\Windows\System32\twinapi.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation twinapi.appcore 131795770645379346 0x7ffacb300000 364544 C:\Windows\SYSTEM32\VEEventDispatcher.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Visual Element Event dispatcher 131795770645379346 0x7ffacb3f0000 163840 C:\Windows\SYSTEM32\DEVOBJ.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Device Information Set DLL 131795770645379346 0x7ffacb780000 651264 C:\Windows\SYSTEM32\dxgi.dll 10.0.14393.953 (rs1_release_inmarket.170303-1614) Microsoft Corporation DirectX Graphics Infrastructure 131795770645379346 0x7ffacbe40000 126976 C:\Windows\SYSTEM32\USERENV.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Userenv 131795770645379346 0x7ffacc170000 45056 C:\Windows\SYSTEM32\CRYPTBASE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base cryptographic API DLL 131795770645379346 0x7ffacc350000 180224 C:\Windows\SYSTEM32\SspiCli.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Security Support Provider Interface 131795770645379346 0x7ffacc5c0000 352256 C:\Windows\SYSTEM32\winsta.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Winstation Library 131795770645379346 0x7ffacc620000 176128 C:\Windows\SYSTEM32\bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795770645379346 0x7ffacc6e0000 61440 C:\Windows\System32\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795770645379346 0x7ffacc6f0000 311296 C:\Windows\System32\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795770645379346 0x7ffacc740000 81920 C:\Windows\System32\profapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Profile Basic API 131795770645379346 0x7ffacc760000 65536 C:\Windows\System32\MSASN1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ASN.1 Runtime APIs 131795770645379346 0x7ffacc8f0000 1003520 C:\Windows\System32\ucrtbase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645379346 0x7ffacc9f0000 434176 C:\Windows\System32\bcryptPrimitives.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Cryptographic Primitives Library 131795770645379346 0x7ffacca60000 122880 C:\Windows\System32\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795770645379346 0x7ffaccae0000 692224 C:\Windows\System32\shcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795770645379346 0x7ffaccb90000 7180288 C:\Windows\System32\windows.storage.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API хранения Microsoft WinRT 131795770645379346 0x7ffacd270000 2215936 C:\Windows\System32\KERNELBASE.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645379346 0x7ffacd490000 1871872 C:\Windows\System32\CRYPT32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API32 криптографии 131795770645379346 0x7ffacd710000 638976 C:\Windows\System32\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645379346 0x7ffacd7b0000 270336 C:\Windows\System32\cfgmgr32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Configuration Manager DLL 131795770645379346 0x7ffacd810000 22056960 C:\Windows\System32\SHELL32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Общая библиотека оболочки Windows 131795770645379346 0x7ffaced20000 782336 C:\Windows\System32\OLEAUT32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795770645379346 0x7ffacee50000 1183744 C:\Windows\System32\RPCRT4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795770645379346 0x7ffacef90000 647168 C:\Windows\System32\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795770645379346 0x7ffacf0d0000 704512 C:\Windows\System32\KERNEL32.DLL 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645379346 0x7ffacf1e0000 1417216 C:\Windows\System32\msctf.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Серверная библиотека MSCTF 131795770645379346 0x7ffacf770000 212992 C:\Windows\System32\GDI32.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation GDI Client DLL 131795770645379346 0x7ffacf890000 188416 C:\Windows\System32\IMM32.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Multi-User Windows IMM32 API Client DLL 131795770645379346 0x7ffacf8c0000 1462272 C:\Windows\System32\user32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795770645379346 0x7ffacfb30000 2916352 C:\Windows\System32\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795770645379346 0x7ffacfe20000 663552 C:\Windows\System32\advapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795770645379346 0x7ffad0070000 1277952 C:\Windows\System32\ole32.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft OLE для Windows 131795770645379346 0x7ffad01b0000 335872 C:\Windows\System32\SHLWAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека небольших программ оболочки 131795770645379346 0x7ffad0210000 364544 C:\Windows\System32\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795770645379346 0x7ffad0270000 1908736 C:\Windows\SYSTEM32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 40 4856 3108 11 00000000:0031f1da 131765778391112136 0 0 1 Обязательная метка\Средний обязательный уровень WIN-0UOTFKKVN1S\User MSASCuiL.exe C:\Program Files\Windows Defender\MSASCuiL.exe "C:\Program Files\Windows Defender\MSASCuiL.exe" Microsoft Corporation 4.10.14393.1198 (rs1_release_sec.170427-1353) Windows Defender notification icon 131795770645379462 0x23622c70000 733184 C:\Program Files\Windows Defender\EppManifest.dll 4.10.14393.0 (rs1_release.160715-1616) Microsoft Corporation Модуль ресурсов настройки пользовательского интерфейса 131795770645379462 0x7ff63bef0000 651264 C:\Program Files\Windows Defender\MSASCuiL.exe 4.10.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Windows Defender notification icon 131795770645379462 0x7ffab8da0000 1675264 C:\Windows\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.14393.1715_none_aec701fbddd850fa\gdiplus.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Microsoft GDI+ 131795770645379462 0x7ffabf330000 2457600 C:\Windows\System32\msxml6.dll 6.30.14393.2156 Microsoft Corporation MSXML 6.0 131795770645379462 0x7ffac4560000 950272 C:\Program Files\Windows Defender\mpclient.dll 4.10.14393.1794 (rs1_release.171008-1615) Microsoft Corporation Client Interface 131795770645379462 0x7ffac4ea0000 36864 C:\Windows\SYSTEM32\atlthunk.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation atlthunk.dll 131795770645379462 0x7ffac9f50000 1736704 C:\Windows\SYSTEM32\WindowsCodecs.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Microsoft Windows Codecs Library 131795770645379462 0x7ffaca4e0000 77824 C:\Windows\SYSTEM32\WTSAPI32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Remote Desktop Session Host Server SDK APIs 131795770645379462 0x7ffaca5e0000 155648 C:\Windows\system32\dwmapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Интерфейс API диспетчера окон рабочего стола (Майкрософт) 131795770645379462 0x7ffacaf00000 610304 C:\Windows\system32\uxtheme.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека тем UxTheme (Microsoft) 131795770645379462 0x7ffacb6f0000 143360 C:\Windows\SYSTEM32\gpapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиентские функции API групповой политики 131795770645379462 0x7ffacbbb0000 208896 C:\Windows\system32\rsaenh.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Enhanced Cryptographic Provider 131795770645379462 0x7ffacbe40000 126976 C:\Windows\SYSTEM32\USERENV.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Userenv 131795770645379462 0x7ffacc150000 94208 C:\Windows\SYSTEM32\CRYPTSP.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Cryptographic Service Provider API 131795770645379462 0x7ffacc170000 45056 C:\Windows\SYSTEM32\CRYPTBASE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base cryptographic API DLL 131795770645379462 0x7ffacc620000 176128 C:\Windows\SYSTEM32\bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795770645379462 0x7ffacc6e0000 61440 C:\Windows\System32\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795770645379462 0x7ffacc6f0000 311296 C:\Windows\System32\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795770645379462 0x7ffacc740000 81920 C:\Windows\System32\profapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Profile Basic API 131795770645379462 0x7ffacc760000 65536 C:\Windows\System32\MSASN1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ASN.1 Runtime APIs 131795770645379462 0x7ffacc8f0000 1003520 C:\Windows\System32\ucrtbase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645379462 0x7ffacc9f0000 434176 C:\Windows\System32\bcryptPrimitives.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Cryptographic Primitives Library 131795770645379462 0x7ffacca60000 122880 C:\Windows\System32\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795770645379462 0x7ffacca80000 348160 C:\Windows\System32\WINTRUST.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation Microsoft Trust Verification APIs 131795770645379462 0x7ffaccae0000 692224 C:\Windows\System32\shcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795770645379462 0x7ffaccb90000 7180288 C:\Windows\System32\windows.storage.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API хранения Microsoft WinRT 131795770645379462 0x7ffacd270000 2215936 C:\Windows\System32\KERNELBASE.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645379462 0x7ffacd490000 1871872 C:\Windows\System32\CRYPT32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API32 криптографии 131795770645379462 0x7ffacd710000 638976 C:\Windows\System32\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645379462 0x7ffacd7b0000 270336 C:\Windows\System32\cfgmgr32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Configuration Manager DLL 131795770645379462 0x7ffacd810000 22056960 C:\Windows\System32\SHELL32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Общая библиотека оболочки Windows 131795770645379462 0x7ffaced20000 782336 C:\Windows\System32\OLEAUT32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795770645379462 0x7ffacee50000 1183744 C:\Windows\System32\RPCRT4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795770645379462 0x7ffacef90000 647168 C:\Windows\System32\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795770645379462 0x7ffacf030000 651264 C:\Windows\System32\clbcatq.dll 2001.12.10941.16384 (rs1_release.160715-1616) Microsoft Corporation COM+ Configuration Catalog 131795770645379462 0x7ffacf0d0000 704512 C:\Windows\System32\KERNEL32.DLL 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645379462 0x7ffacf1e0000 1417216 C:\Windows\System32\MSCTF.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Серверная библиотека MSCTF 131795770645379462 0x7ffacf770000 212992 C:\Windows\System32\GDI32.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation GDI Client DLL 131795770645379462 0x7ffacf890000 188416 C:\Windows\System32\IMM32.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Multi-User Windows IMM32 API Client DLL 131795770645379462 0x7ffacf8c0000 1462272 C:\Windows\System32\USER32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795770645379462 0x7ffacfb30000 2916352 C:\Windows\System32\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795770645379462 0x7ffacfe00000 114688 C:\Windows\System32\imagehlp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT Image Helper 131795770645379462 0x7ffacfe20000 663552 C:\Windows\System32\ADVAPI32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795770645379462 0x7ffad0070000 1277952 C:\Windows\System32\ole32.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft OLE для Windows 131795770645379462 0x7ffad01b0000 335872 C:\Windows\System32\SHLWAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека небольших программ оболочки 131795770645379462 0x7ffad0210000 364544 C:\Windows\System32\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795770645379462 0x7ffad0270000 1908736 C:\Windows\SYSTEM32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 41 4928 3108 11 00000000:0031f1da 131765778406250112 0 0 0 Обязательная метка\Средний обязательный уровень WIN-0UOTFKKVN1S\User uTorrent.exe C:\Users\User\AppData\Roaming\uTorrent\uTorrent.exe "C:\Users\User\AppData\Roaming\uTorrent\uTorrent.exe" /MINIMIZED BitTorrent Inc. 3.5.4.44498 µTorrent 131795770645379614 0x400000 5406720 C:\Users\User\AppData\Roaming\uTorrent\uTorrent.exe 3.5.4.44498 BitTorrent Inc. µTorrent 131795770645379614 0x5c020000 335872 C:\Windows\System32\wow64.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation Win32 Emulation on NT64 131795770645379614 0x5c080000 487424 C:\Windows\System32\wow64win.dll 10.0.14393.1884 (rs1_release.171101-1233) Microsoft Corporation Wow64 Console and Win32 API Logging 131795770645379614 0x5c100000 40960 C:\Windows\System32\wow64cpu.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation AMD64 Wow64 CPU 131795770645379614 0x60750000 1556480 C:\Program Files (x86)\360\Total Security\safemon\safemon.dll 8, 4, 0, 1420 Qihu 360 Software Co., Ltd. 360 Internet Security Internet Protection 131795770645379614 0x6c5c0000 1384448 C:\Windows\SysWOW64\UIAutomationCore.DLL 7.2.14393.0 (rs1_release.160715-1616) Microsoft Corporation Основные автоматические компоненты Microsoft UI 131795770645379614 0x6cda0000 528384 C:\Windows\SysWOW64\sxs.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Fusion 2.5 131795770645379614 0x6e140000 348160 C:\Windows\SysWOW64\upnp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API контрольной точки UPnP 131795770645379614 0x6e1a0000 98304 C:\Windows\SysWOW64\ATL.DLL 3.05.2284 Microsoft Corporation ATL Module for Windows XP (Unicode) 131795770645379614 0x6e1c0000 307200 C:\Windows\SysWOW64\hnetcfg.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Диспетчер конфигурации домашней сети 131795770645379614 0x6ef20000 65536 C:\Windows\SysWOW64\SSDPAPI.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation SSDP Client API DLL 131795770645379614 0x6fc70000 385024 C:\Windows\SysWOW64\FirewallAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API брандмауэра Windows 131795770645379614 0x6fd30000 139264 C:\Windows\SysWOW64\DEVOBJ.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Device Information Set DLL 131795770645379614 0x703d0000 2056192 C:\Windows\SysWOW64\DWrite.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Службы Microsoft DirectX Typography 131795770645379614 0x705e0000 344064 C:\Windows\SysWOW64\OLEACC.dll 7.2.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Active Accessibility Core Component 131795770645379614 0x70640000 1499136 C:\Windows\SysWOW64\WindowsCodecs.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Microsoft Windows Codecs Library 131795770645379614 0x707b0000 110592 C:\Windows\SysWOW64\ncryptsslp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft SChannel Provider 131795770645379614 0x70a40000 81920 C:\Windows\SysWOW64\NLAapi.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Network Location Awareness 2 131795770645379614 0x70a60000 90112 C:\Windows\SysWOW64\pnrpnsp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик пространства имен PNRP 131795770645379614 0x70a80000 409600 C:\Windows\SysWOW64\schannel.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик безопасности TLS/SSL 131795770645379614 0x70af0000 36864 C:\Windows\SysWOW64\npmproxy.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Network List Manager Proxy 131795770645379614 0x70b40000 69632 C:\Windows\SysWOW64\mskeyprotect.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик защиты ключей (Майкрософт) 131795770645379614 0x70b70000 163840 C:\Windows\SysWOW64\ntmarta.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик Windows NT MARTA 131795770645379614 0x70ba0000 188416 C:\Windows\SysWOW64\FWPolicyIOMgr.dll 10.0.14393.2189 (rs1_release.180329-1711) Microsoft Corporation FwPolicyIoMgr DLL 131795770645379614 0x70bd0000 147456 C:\Windows\SysWOW64\fwbase.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Firewall Base DLL 131795770645379614 0x70c00000 49152 C:\Windows\SysWOW64\winrnr.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation LDAP RnR Provider DLL 131795770645379614 0x70c10000 73728 C:\Windows\SysWOW64\napinsp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик оболочки совместимости для имен электронной почты 131795770645379614 0x70ca0000 45056 C:\Windows\SysWOW64\NETUTILS.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API Helpers DLL 131795770645379614 0x70cc0000 65536 C:\Windows\SysWOW64\ondemandconnroutehelper.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation On Demand Connctiond Route Helper 131795770645379614 0x70e60000 176128 C:\Windows\SysWOW64\NTASN1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft ASN.1 API 131795770645379614 0x71140000 77824 C:\Windows\SysWOW64\NETAPI32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API DLL 131795770645379614 0x71610000 77824 C:\Windows\SysWOW64\dhcpcsvc6.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиент DHCPv6 131795770645379614 0x725e0000 2273280 C:\Windows\SysWOW64\iertutil.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служебная программа времени выполнения для Internet Explorer 131795770645379614 0x728e0000 1372160 C:\Windows\SysWOW64\PROPSYS.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Система страниц свойств (Майкрософт) 131795770645379614 0x72b90000 126976 C:\Windows\SysWOW64\dwmapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Интерфейс API диспетчера окон рабочего стола (Майкрософт) 131795770645379614 0x73a40000 32768 C:\Windows\SysWOW64\WINNSI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Network Store Information RPC interface 131795770645379614 0x73a50000 299008 C:\Windows\SysWOW64\fwpuclnt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API пользовательского режима FWP/IPsec 131795770645379614 0x73aa0000 32768 C:\Windows\SysWOW64\DPAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Data Protection API 131795770645379614 0x73ab0000 32768 C:\Windows\SysWOW64\rasadhlp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Remote Access AutoDial Helper 131795770645379614 0x73ac0000 81920 C:\Windows\SysWOW64\dhcpcsvc.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служба DHCP-клиента 131795770645379614 0x73ae0000 40960 C:\Windows\SysWOW64\Secur32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Security Support Provider Interface 131795770645379614 0x73c50000 1478656 C:\Windows\WinSxS\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.14393.1715_none_f67438d2f2547a00\gdiplus.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Microsoft GDI+ 131795770645379614 0x73ee0000 61440 C:\Windows\SysWOW64\WTSAPI32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Remote Desktop Session Host Server SDK APIs 131795770645379614 0x73ef0000 24576 C:\Windows\SysWOW64\MSIMG32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation GDIEXT Client DLL 131795770645379614 0x73f00000 192512 C:\Windows\SysWOW64\IPHLPAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API вспомогательного приложения IP 131795770645379614 0x73f30000 512000 C:\Windows\SysWOW64\DNSAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Динамическая библиотека API DNS-клиента 131795770645379614 0x73fc0000 28672 C:\Windows\SysWOW64\wship6.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL помощника Winsock2 (TL/IPv6) 131795770645379614 0x73fd0000 28672 C:\Windows\SysWOW64\wshtcpip.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL помощника службы Winsock2 (TL/IPv4) 131795770645379614 0x73fe0000 32768 C:\Windows\SysWOW64\wshqos.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL помощника службы QoS Winsock2 131795770645379614 0x73ff0000 319488 C:\Windows\SysWOW64\mswsock.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширение поставщика службы API Microsoft Windows Sockets 2.0 131795770645379614 0x74040000 126976 C:\Windows\SysWOW64\gpapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиентские функции API групповой политики 131795770645379614 0x74060000 192512 C:\Windows\SysWOW64\rsaenh.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Enhanced Cryptographic Provider 131795770645379614 0x74110000 479232 C:\Windows\SysWOW64\uxtheme.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека тем UxTheme (Microsoft) 131795770645379614 0x74190000 110592 C:\Windows\SysWOW64\bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795770645379614 0x741b0000 77824 C:\Windows\SysWOW64\CRYPTSP.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Cryptographic Service Provider API 131795770645379614 0x74260000 2514944 C:\Windows\SysWOW64\WININET.dll 11.00.14393.447 (rs1_release_inmarket.161102-0100) Microsoft Corporation Расширения Интернета для Win32 131795770645379614 0x744d0000 2138112 C:\Windows\WinSxS\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.14393.953_none_89c2555adb023171\COMCTL32.dll 6.10 (rs1_release_inmarket.170303-1614) Microsoft Corporation Библиотека элементов управления взаимодействия с пользователем 131795770645379614 0x746e0000 32768 C:\Windows\SysWOW64\VERSION.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Version Checking and File Installation Libraries 131795770645379614 0x746f0000 106496 C:\Windows\SysWOW64\USERENV.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Userenv 131795770645379614 0x747d0000 40960 C:\Windows\SysWOW64\CRYPTBASE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base cryptographic API DLL 131795770645379614 0x747e0000 126976 C:\Windows\SysWOW64\SspiCli.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Security Support Provider Interface 131795770645379614 0x74800000 151552 C:\Windows\SysWOW64\IMM32.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Multi-User Windows IMM32 API Client DLL 131795770645379614 0x74910000 2170880 C:\Windows\SysWOW64\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795770645379614 0x74b30000 53248 C:\Windows\SysWOW64\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795770645379614 0x74b40000 102400 C:\Windows\SysWOW64\imagehlp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT Image Helper 131795770645379614 0x74b60000 790528 C:\Windows\SysWOW64\RPCRT4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795770645379614 0x74c30000 1417216 C:\Windows\SysWOW64\gdi32full.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation GDI Client DLL 131795770645379614 0x74d90000 24576 C:\Windows\SysWOW64\PSAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Process Status Helper 131795770645379614 0x74da0000 778240 C:\Windows\SysWOW64\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795770645379614 0x74e60000 557056 C:\Windows\SysWOW64\shcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795770645379614 0x74ef0000 540672 C:\Windows\SysWOW64\clbcatq.dll 2001.12.10941.16384 (rs1_release.160715-1616) Microsoft Corporation COM+ Configuration Catalog 131795770645379614 0x74f80000 278528 C:\Windows\SysWOW64\wintrust.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation Microsoft Trust Verification APIs 131795770645379614 0x74fd0000 405504 C:\Windows\SysWOW64\WS2_32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation 32-разрядная библиотека Windows Socket 2.0 131795770645379614 0x75040000 282624 C:\Windows\SysWOW64\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795770645379614 0x75090000 1265664 C:\Windows\SysWOW64\MSCTF.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Серверная библиотека MSCTF 131795770645379614 0x751d0000 57344 C:\Windows\SysWOW64\MSASN1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ASN.1 Runtime APIs 131795770645379614 0x751e0000 1708032 C:\Windows\SysWOW64\KERNELBASE.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645379614 0x75390000 266240 C:\Windows\SysWOW64\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795770645379614 0x753e0000 1560576 C:\Windows\SysWOW64\CRYPT32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API32 криптографии 131795770645379614 0x75560000 487424 C:\Windows\SysWOW64\ADVAPI32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795770645379614 0x756c0000 5693440 C:\Windows\SysWOW64\windows.storage.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API хранения Microsoft WinRT 131795770645379614 0x75c90000 286720 C:\Windows\SysWOW64\SHLWAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека небольших программ оболочки 131795770645379614 0x75ce0000 20811776 C:\Windows\SysWOW64\SHELL32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Общая библиотека оболочки Windows 131795770645379614 0x770c0000 4239360 C:\Windows\SysWOW64\SETUPAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Setup API 131795770645379614 0x774d0000 86016 C:\Windows\SysWOW64\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795770645379614 0x774f0000 61440 C:\Windows\SysWOW64\profapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Profile Basic API 131795770645379614 0x77560000 1437696 C:\Windows\SysWOW64\USER32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795770645379614 0x776c0000 368640 C:\Windows\SysWOW64\bcryptPrimitives.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation Windows Cryptographic Primitives Library 131795770645379614 0x77780000 503808 C:\Windows\SysWOW64\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645379614 0x77800000 606208 C:\Windows\SysWOW64\OLEAUT32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795770645379614 0x77ac0000 966656 C:\Windows\SysWOW64\ole32.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft OLE для Windows 131795770645379614 0x77bb0000 176128 C:\Windows\SysWOW64\GDI32.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation GDI Client DLL 131795770645379614 0x77be0000 937984 C:\Windows\SysWOW64\COMDLG32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека общих диалоговых окон 131795770645379614 0x77cd0000 221184 C:\Windows\SysWOW64\cfgmgr32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Configuration Manager DLL 131795770645379614 0x77d10000 28672 C:\Windows\SysWOW64\NSI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation NSI User-mode interface DLL 131795770645379614 0x77d20000 1585152 C:\Windows\SysWOW64\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 131795770645379614 0x7ffad0270000 1908736 C:\Windows\SYSTEM32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 42 3608 664 6 00000000:0031f1da 131765778496229053 0 0 1 Обязательная метка\Средний обязательный уровень WIN-0UOTFKKVN1S\User ApplicationFrameHost.exe C:\Windows\system32\ApplicationFrameHost.exe C:\Windows\system32\ApplicationFrameHost.exe -Embedding Microsoft Corporation 10.0.14393.0 (rs1_release.160715-1616) Application Frame Host 131795770645379722 0x7ff6aa270000 61440 C:\Windows\system32\ApplicationFrameHost.exe 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Application Frame Host 131795770645379722 0x7ffabb490000 512000 C:\Windows\System32\TWINAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation twinapi 131795770645379722 0x7ffac0bf0000 3559424 C:\Windows\System32\ActXPrxy.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation ActiveX Interface Marshaling Library 131795770645379722 0x7ffac3cb0000 2772992 C:\Windows\SYSTEM32\iertutil.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служебная программа времени выполнения для Internet Explorer 131795770645379722 0x7ffac5240000 1114112 C:\Windows\System32\ApplicationFrame.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Фрейм приложения 131795770645379722 0x7ffac5ce0000 1744896 C:\Windows\system32\UIAutomationCore.DLL 7.2.14393.0 (rs1_release.160715-1616) Microsoft Corporation Основные автоматические компоненты Microsoft UI 131795786034558955 0x7ffac6ac0000 835584 C:\Windows\System32\Windows.UI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Runtime UI Foundation DLL 131795770645379722 0x7ffac6bd0000 413696 C:\Windows\system32\OLEACC.dll 7.2.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Active Accessibility Core Component 131795770645379722 0x7ffac6f50000 5632000 C:\Windows\System32\d2d1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека Microsoft D2D 131795770645379722 0x7ffac7580000 1077248 C:\Windows\SYSTEM32\mrmcorer.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Windows MRM 131795770645379722 0x7ffac7fc0000 2674688 C:\Windows\system32\D3D10Warp.dll 10.0.14393.576 (rs1_release_inmarket.161208-2252) Microsoft Corporation Direct3D 10 Rasterizer 131795770645379722 0x7ffac88a0000 2842624 C:\Windows\System32\d3d11.dll 10.0.14393.953 (rs1_release_inmarket.170303-1614) Microsoft Corporation Direct3D 11 Runtime 131795770645379722 0x7ffac9ec0000 294912 C:\Windows\System32\UIAnimation.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Animation Manager 131795770645379722 0x7ffac9f50000 1736704 C:\Windows\system32\windowscodecs.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Microsoft Windows Codecs Library 131795770645379722 0x7ffaca340000 1593344 C:\Windows\System32\PROPSYS.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Система страниц свойств (Майкрософт) 131795770645379722 0x7ffaca570000 421888 C:\Windows\system32\Bcp47Langs.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation BCP47 Language Classes 131795770645379722 0x7ffaca5e0000 155648 C:\Windows\System32\dwmapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Интерфейс API диспетчера окон рабочего стола (Майкрософт) 131795770645379722 0x7ffaca770000 1380352 C:\Windows\System32\dcomp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft DirectComposition Library 131795770645379722 0x7ffacaf00000 610304 C:\Windows\System32\UxTheme.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека тем UxTheme (Microsoft) 131795770645379722 0x7ffacb1e0000 1163264 C:\Windows\System32\twinapi.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation twinapi.appcore 131795770645379722 0x7ffacb3f0000 163840 C:\Windows\System32\DEVOBJ.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Device Information Set DLL 131795770645379722 0x7ffacb780000 651264 C:\Windows\System32\dxgi.dll 10.0.14393.953 (rs1_release_inmarket.170303-1614) Microsoft Corporation DirectX Graphics Infrastructure 131795770645379722 0x7ffacbe40000 126976 C:\Windows\system32\USERENV.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Userenv 131795770645379722 0x7ffacc520000 622592 C:\Windows\SYSTEM32\sxs.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Fusion 2.5 131795770645379722 0x7ffacc620000 176128 C:\Windows\System32\bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795770645379722 0x7ffacc6e0000 61440 C:\Windows\System32\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795770645379722 0x7ffacc6f0000 311296 C:\Windows\System32\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795770645379722 0x7ffacc740000 81920 C:\Windows\System32\profapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Profile Basic API 131795770645379722 0x7ffacc760000 65536 C:\Windows\System32\MSASN1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ASN.1 Runtime APIs 131795770645379722 0x7ffacc8f0000 1003520 C:\Windows\System32\ucrtbase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645379722 0x7ffacc9f0000 434176 C:\Windows\System32\bcryptPrimitives.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Cryptographic Primitives Library 131795770645379722 0x7ffacca60000 122880 C:\Windows\System32\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795770645379722 0x7ffaccae0000 692224 C:\Windows\System32\SHCORE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795770645379722 0x7ffaccb90000 7180288 C:\Windows\System32\windows.storage.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API хранения Microsoft WinRT 131795770645379722 0x7ffacd270000 2215936 C:\Windows\System32\KERNELBASE.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645379722 0x7ffacd490000 1871872 C:\Windows\System32\CRYPT32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API32 криптографии 131795770645379722 0x7ffacd710000 638976 C:\Windows\System32\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645379722 0x7ffacd7b0000 270336 C:\Windows\System32\cfgmgr32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Configuration Manager DLL 131795770645379722 0x7ffacd810000 22056960 C:\Windows\System32\SHELL32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Общая библиотека оболочки Windows 131795770645379722 0x7ffaced20000 782336 C:\Windows\System32\OLEAUT32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795770645379722 0x7ffacee50000 1183744 C:\Windows\System32\RPCRT4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795770645379722 0x7ffacef90000 647168 C:\Windows\System32\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795770645379722 0x7ffacf030000 651264 C:\Windows\System32\clbcatq.dll 2001.12.10941.16384 (rs1_release.160715-1616) Microsoft Corporation COM+ Configuration Catalog 131795770645379722 0x7ffacf0d0000 704512 C:\Windows\System32\KERNEL32.DLL 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645379722 0x7ffacf1e0000 1417216 C:\Windows\System32\MSCTF.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Серверная библиотека MSCTF 131795770645379722 0x7ffacf770000 212992 C:\Windows\System32\GDI32.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation GDI Client DLL 131795770645379722 0x7ffacf890000 188416 C:\Windows\System32\IMM32.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Multi-User Windows IMM32 API Client DLL 131795770645379722 0x7ffacf8c0000 1462272 C:\Windows\System32\USER32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795770645379722 0x7ffacfb30000 2916352 C:\Windows\System32\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795770645379722 0x7ffacfe20000 663552 C:\Windows\System32\advapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795770645379722 0x7ffad01b0000 335872 C:\Windows\System32\SHLWAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека небольших программ оболочки 131795770645379722 0x7ffad0210000 364544 C:\Windows\System32\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795770645379722 0x7ffad0270000 1908736 C:\Windows\SYSTEM32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 43 5952 4928 41 00000000:0031f1da 131765778883326814 0 1 0 Обязательная метка\Низкий обязательный уровень WIN-0UOTFKKVN1S\User utorrentie.exe C:\Users\User\AppData\Roaming\uTorrent\updates\3.5.4_44498\utorrentie.exe "C:\Users\User\AppData\Roaming\uTorrent\updates\3.5.4_44498\utorrentie.exe" uTorrent_4928_02D54150_1240996307 µTorrent4823DF041B09 uTorrent BitTorrent Inc. 1.0.0 WebHelper 131795770645379833 0x1180000 417792 C:\Users\User\AppData\Roaming\uTorrent\updates\3.5.4_44498\utorrentie.exe 1.0.0 BitTorrent Inc. WebHelper 131795770645379833 0x5c020000 335872 C:\Windows\System32\wow64.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation Win32 Emulation on NT64 131795770645379833 0x5c080000 487424 C:\Windows\System32\wow64win.dll 10.0.14393.1884 (rs1_release.171101-1233) Microsoft Corporation Wow64 Console and Win32 API Logging 131795770645379833 0x5c100000 40960 C:\Windows\System32\wow64cpu.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation AMD64 Wow64 CPU 131795770645379833 0x63490000 221184 C:\Windows\SysWOW64\dinput8.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft DirectInput 131795770645379833 0x634d0000 561152 C:\Windows\SysWOW64\DSOUND.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DirectSound 131795770645379833 0x63560000 23334912 C:\Windows\SysWOW64\Macromed\Flash\Flash.ocx 29,0,0,140 Adobe Systems, Inc. Adobe Flash Player 29.0 r0 131795770645379833 0x64d00000 5079040 C:\Windows\SysWOW64\d2d1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека Microsoft D2D 131795770645379833 0x651e0000 20537344 C:\Windows\SysWOW64\mshtml.dll 11.00.14393.447 (rs1_release_inmarket.161102-0100) Microsoft Corporation Средство просмотра HTML Microsoft® 131795770645379833 0x66580000 12247040 C:\Windows\SysWOW64\ieframe.dll 11.00.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Браузер 131795770645379833 0x6b670000 212992 C:\Windows\SysWOW64\mlang.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL многоязыковой поддержки 131795770645379833 0x6b6b0000 36864 C:\Windows\SysWOW64\atlthunk.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation atlthunk.dll 131795770645379833 0x6c290000 987136 C:\Windows\SysWOW64\twinapi.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation twinapi.appcore 131795770645379833 0x6c390000 1126400 C:\Windows\SysWOW64\dcomp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft DirectComposition Library 131795770645379833 0x6c4b0000 278528 C:\Windows\SysWOW64\dataexchange.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation Data exchange 131795770645379833 0x6c540000 483328 C:\Windows\SysWOW64\webio.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API протоколов передачи по Веб 131795770645379833 0x6c5c0000 1384448 C:\Windows\SysWOW64\UIAutomationCore.DLL 7.2.14393.0 (rs1_release.160715-1616) Microsoft Corporation Основные автоматические компоненты Microsoft UI 131795770645379833 0x6c720000 2318336 C:\Windows\SysWOW64\d3d10warp.dll 10.0.14393.576 (rs1_release_inmarket.161208-2252) Microsoft Corporation Direct3D 10 Rasterizer 131795770645379833 0x6c960000 57344 C:\Windows\SysWOW64\msimtf.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Active IMM Server DLL 131795770645379833 0x6c970000 3698688 C:\Windows\SysWOW64\jscript9.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft ® JScript 131795770645379833 0x6cd00000 69632 C:\Windows\SysWOW64\WLDP.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Политика блокировки Windows 131795770645379833 0x6cd20000 135168 C:\Windows\SysWOW64\srpapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL программных интерфейсов (API) поставщика общих ресурсов 131795770645379833 0x6cda0000 528384 C:\Windows\SysWOW64\sxs.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Fusion 2.5 131795770645379833 0x6d080000 151552 C:\Windows\SysWOW64\cryptnet.dll 10.0.14393.2035 (rs1_release_inmarket.180110-1910) Microsoft Corporation Crypto Network Related API 131795770645379833 0x6d0b0000 847872 C:\Windows\SysWOW64\wintypes.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL основных типов Windows 131795770645379833 0x6fd30000 139264 C:\Windows\SysWOW64\DEVOBJ.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Device Information Set DLL 131795770645379833 0x6fd60000 360448 C:\Windows\SysWOW64\MMDevApi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation MMDevice API 131795770645379833 0x6fdc0000 507904 C:\Windows\SysWOW64\AUDIOSES.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Сеанс обработки звука 131795770645379833 0x6fe90000 544768 C:\Windows\SysWOW64\mscms.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL-библиотека системы сопоставления цветов Майкрософт 131795770645379833 0x70340000 536576 C:\Windows\SysWOW64\dxgi.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation DirectX Graphics Infrastructure 131795770645379833 0x703d0000 2056192 C:\Windows\SysWOW64\DWrite.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Службы Microsoft DirectX Typography 131795770645379833 0x70640000 1499136 C:\Windows\SysWOW64\windowscodecs.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Microsoft Windows Codecs Library 131795770645379833 0x707b0000 110592 C:\Windows\SysWOW64\ncryptsslp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft SChannel Provider 131795770645379833 0x707f0000 2293760 C:\Windows\SysWOW64\d3d11.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation Direct3D 11 Runtime 131795770645379833 0x70a80000 409600 C:\Windows\SysWOW64\schannel.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик безопасности TLS/SSL 131795770645379833 0x70b40000 69632 C:\Windows\SysWOW64\mskeyprotect.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик защиты ключей (Майкрософт) 131795770645379833 0x70ca0000 45056 C:\Windows\SysWOW64\NETUTILS.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API Helpers DLL 131795770645379833 0x70cc0000 65536 C:\Windows\SysWOW64\ondemandconnroutehelper.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation On Demand Connctiond Route Helper 131795770645379833 0x70e60000 176128 C:\Windows\SysWOW64\NTASN1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft ASN.1 API 131795770645379833 0x71140000 77824 C:\Windows\SysWOW64\NETAPI32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API DLL 131795770645379833 0x71610000 77824 C:\Windows\SysWOW64\dhcpcsvc6.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиент DHCPv6 131795770645379833 0x725e0000 2273280 C:\Windows\SysWOW64\iertutil.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служебная программа времени выполнения для Internet Explorer 131795770645379833 0x728e0000 1372160 C:\Windows\SysWOW64\PROPSYS.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Система страниц свойств (Майкрософт) 131795770645379833 0x72b90000 126976 C:\Windows\SysWOW64\dwmapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Интерфейс API диспетчера окон рабочего стола (Майкрософт) 131795770645379833 0x72cc0000 1658880 C:\Windows\SysWOW64\urlmon.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширения OLE32 для Win32 131795770645379833 0x73a40000 32768 C:\Windows\SysWOW64\WINNSI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Network Store Information RPC interface 131795770645379833 0x73a50000 299008 C:\Windows\SysWOW64\fwpuclnt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API пользовательского режима FWP/IPsec 131795770645379833 0x73aa0000 32768 C:\Windows\SysWOW64\DPAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Data Protection API 131795770645379833 0x73ab0000 32768 C:\Windows\SysWOW64\rasadhlp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Remote Access AutoDial Helper 131795770645379833 0x73ac0000 81920 C:\Windows\SysWOW64\dhcpcsvc.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служба DHCP-клиента 131795770645379833 0x73ae0000 40960 C:\Windows\SysWOW64\Secur32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Security Support Provider Interface 131795770645379833 0x73ef0000 24576 C:\Windows\SysWOW64\MSIMG32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation GDIEXT Client DLL 131795770645379833 0x73f00000 192512 C:\Windows\SysWOW64\IPHLPAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API вспомогательного приложения IP 131795770645379833 0x73f30000 512000 C:\Windows\SysWOW64\DNSAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Динамическая библиотека API DNS-клиента 131795770645379833 0x73ff0000 319488 C:\Windows\SysWOW64\mswsock.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширение поставщика службы API Microsoft Windows Sockets 2.0 131795770645379833 0x74060000 192512 C:\Windows\SysWOW64\rsaenh.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Enhanced Cryptographic Provider 131795770645379833 0x74110000 479232 C:\Windows\SysWOW64\uxtheme.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека тем UxTheme (Microsoft) 131795770645379833 0x74190000 110592 C:\Windows\SysWOW64\bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795770645379833 0x741b0000 77824 C:\Windows\SysWOW64\CRYPTSP.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Cryptographic Service Provider API 131795770645379833 0x741f0000 143360 C:\Windows\SysWOW64\WINMMBASE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base Multimedia Extension API DLL 131795770645379833 0x74230000 147456 C:\Windows\SysWOW64\WINMM.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation MCI API DLL 131795770645379833 0x74260000 2514944 C:\Windows\SysWOW64\WININET.dll 11.00.14393.447 (rs1_release_inmarket.161102-0100) Microsoft Corporation Расширения Интернета для Win32 131795770645379833 0x744d0000 2138112 C:\Windows\WinSxS\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.14393.953_none_89c2555adb023171\comctl32.dll 6.10 (rs1_release_inmarket.170303-1614) Microsoft Corporation Библиотека элементов управления взаимодействия с пользователем 131795770645379833 0x746e0000 32768 C:\Windows\SysWOW64\VERSION.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Version Checking and File Installation Libraries 131795770645379833 0x746f0000 106496 C:\Windows\SysWOW64\USERENV.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Userenv 131795770645379833 0x74730000 598016 C:\Windows\SysWOW64\apphelp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиентская библиотека совместимости приложений 131795770645379833 0x747d0000 40960 C:\Windows\SysWOW64\CRYPTBASE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base cryptographic API DLL 131795770645379833 0x747e0000 126976 C:\Windows\SysWOW64\SspiCli.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Security Support Provider Interface 131795770645379833 0x74800000 151552 C:\Windows\SysWOW64\IMM32.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Multi-User Windows IMM32 API Client DLL 131795770645379833 0x74910000 2170880 C:\Windows\SysWOW64\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795770645379833 0x74b30000 53248 C:\Windows\SysWOW64\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795770645379833 0x74b60000 790528 C:\Windows\SysWOW64\RPCRT4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795770645379833 0x74c30000 1417216 C:\Windows\SysWOW64\gdi32full.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation GDI Client DLL 131795770645379833 0x74da0000 778240 C:\Windows\SysWOW64\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795770645379833 0x74e60000 557056 C:\Windows\SysWOW64\shcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795770645379833 0x74ef0000 540672 C:\Windows\SysWOW64\clbcatq.dll 2001.12.10941.16384 (rs1_release.160715-1616) Microsoft Corporation COM+ Configuration Catalog 131795770645379833 0x74f80000 278528 C:\Windows\SysWOW64\WINTRUST.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation Microsoft Trust Verification APIs 131795770645379833 0x74fd0000 405504 C:\Windows\SysWOW64\WS2_32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation 32-разрядная библиотека Windows Socket 2.0 131795770645379833 0x75040000 282624 C:\Windows\SysWOW64\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795770645379833 0x75090000 1265664 C:\Windows\SysWOW64\MSCTF.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Серверная библиотека MSCTF 131795770645379833 0x751d0000 57344 C:\Windows\SysWOW64\MSASN1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ASN.1 Runtime APIs 131795770645379833 0x751e0000 1708032 C:\Windows\SysWOW64\KERNELBASE.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645379833 0x75390000 266240 C:\Windows\SysWOW64\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795770645379833 0x753e0000 1560576 C:\Windows\SysWOW64\CRYPT32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API32 криптографии 131795770645379833 0x75560000 487424 C:\Windows\SysWOW64\advapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795770645379833 0x756c0000 5693440 C:\Windows\SysWOW64\windows.storage.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API хранения Microsoft WinRT 131795770645379833 0x75c30000 372736 C:\Windows\SysWOW64\coml2.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft COM for Windows 131795770645379833 0x75c90000 286720 C:\Windows\SysWOW64\shlwapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека небольших программ оболочки 131795770645379833 0x75ce0000 20811776 C:\Windows\SysWOW64\SHELL32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Общая библиотека оболочки Windows 131795770645379833 0x774d0000 86016 C:\Windows\SysWOW64\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795770645379833 0x774f0000 61440 C:\Windows\SysWOW64\profapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Profile Basic API 131795770645379833 0x77560000 1437696 C:\Windows\SysWOW64\USER32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795770645379833 0x776c0000 368640 C:\Windows\SysWOW64\bcryptPrimitives.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation Windows Cryptographic Primitives Library 131795770645379833 0x77780000 503808 C:\Windows\SysWOW64\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645379833 0x77800000 606208 C:\Windows\SysWOW64\OLEAUT32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795770645379833 0x77ac0000 966656 C:\Windows\SysWOW64\ole32.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft OLE для Windows 131795770645379833 0x77bb0000 176128 C:\Windows\SysWOW64\GDI32.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation GDI Client DLL 131795770645379833 0x77cd0000 221184 C:\Windows\SysWOW64\cfgmgr32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Configuration Manager DLL 131795770645379833 0x77d10000 28672 C:\Windows\SysWOW64\NSI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation NSI User-mode interface DLL 131795770645379833 0x77d20000 1585152 C:\Windows\SysWOW64\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 131795770645379833 0x7ffad0270000 1908736 C:\Windows\SYSTEM32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 44 5800 664 6 00000000:0031f1da 131765779120650795 0 0 1 Обязательная метка\Средний обязательный уровень WIN-0UOTFKKVN1S\User DllHost.exe C:\Windows\system32\DllHost.exe C:\Windows\system32\DllHost.exe /Processid:{49F6E667-6658-4BD1-9DE9-6AF87F9FAF85} Microsoft Corporation 10.0.14393.0 (rs1_release.160715-1616) COM Surrogate 131795770645379938 0x7ff7a2280000 36864 C:\Windows\system32\DllHost.exe 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation COM Surrogate 131795770645379938 0x7ffac3840000 3088384 C:\Windows\SYSTEM32\esent.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширяемая подсистема хранения данных ESE для Microsoft(R) Windows(R) 131795770645379938 0x7ffac3b80000 286720 C:\Windows\system32\indexeddbserver.dll 10.0.14393.2189 (rs1_release.180329-1711) Microsoft Corporation IndexedDb host 131795770645379938 0x7ffac3cb0000 2772992 C:\Windows\system32\iertutil.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служебная программа времени выполнения для Internet Explorer 131795770645379938 0x7ffacaf00000 610304 C:\Windows\system32\uxtheme.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека тем UxTheme (Microsoft) 131795770645379938 0x7ffacc170000 45056 C:\Windows\system32\CRYPTBASE.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base cryptographic API DLL 131795770645379938 0x7ffacc6e0000 61440 C:\Windows\System32\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795770645379938 0x7ffacc6f0000 311296 C:\Windows\System32\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795770645379938 0x7ffacc740000 81920 C:\Windows\System32\profapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Profile Basic API 131795770645379938 0x7ffacc8f0000 1003520 C:\Windows\System32\ucrtbase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645379938 0x7ffacc9f0000 434176 C:\Windows\System32\bcryptPrimitives.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Cryptographic Primitives Library 131795770645379938 0x7ffacca60000 122880 C:\Windows\System32\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795770645379938 0x7ffaccae0000 692224 C:\Windows\System32\shcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795770645379938 0x7ffaccb90000 7180288 C:\Windows\System32\windows.storage.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API хранения Microsoft WinRT 131795770645379938 0x7ffacd270000 2215936 C:\Windows\System32\KERNELBASE.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645379938 0x7ffacd710000 638976 C:\Windows\System32\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645379938 0x7ffaced20000 782336 C:\Windows\System32\OLEAUT32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795770645379938 0x7ffacee50000 1183744 C:\Windows\System32\RPCRT4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795770645379938 0x7ffacef90000 647168 C:\Windows\System32\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795770645379938 0x7ffacf030000 651264 C:\Windows\System32\clbcatq.dll 2001.12.10941.16384 (rs1_release.160715-1616) Microsoft Corporation COM+ Configuration Catalog 131795770645379938 0x7ffacf0d0000 704512 C:\Windows\System32\KERNEL32.DLL 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645379938 0x7ffacf770000 212992 C:\Windows\System32\GDI32.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation GDI Client DLL 131795770645379938 0x7ffacf890000 188416 C:\Windows\System32\IMM32.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Multi-User Windows IMM32 API Client DLL 131795770645379938 0x7ffacf8c0000 1462272 C:\Windows\System32\user32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795770645379938 0x7ffacfb30000 2916352 C:\Windows\System32\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795770645379938 0x7ffacfe20000 663552 C:\Windows\System32\advapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795770645379938 0x7ffad01b0000 335872 C:\Windows\System32\shlwapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека небольших программ оболочки 131795770645379938 0x7ffad0210000 364544 C:\Windows\System32\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795770645379938 0x7ffad0270000 1908736 C:\Windows\SYSTEM32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 45 340 4928 41 00000000:0031f1da 131765800389528045 0 1 0 Обязательная метка\Низкий обязательный уровень WIN-0UOTFKKVN1S\User utorrentie.exe C:\Users\User\AppData\Roaming\uTorrent\updates\3.5.4_44498\utorrentie.exe "C:\Users\User\AppData\Roaming\uTorrent\updates\3.5.4_44498\utorrentie.exe" uTorrent_4928_02D54870_1839591030 µTorrent4823DF041B09 uTorrent BitTorrent Inc. 1.0.0 WebHelper 131795770645380038 0x1180000 417792 C:\Users\User\AppData\Roaming\uTorrent\updates\3.5.4_44498\utorrentie.exe 1.0.0 BitTorrent Inc. WebHelper 131795770645380038 0x5c020000 335872 C:\Windows\System32\wow64.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation Win32 Emulation on NT64 131795770645380038 0x5c080000 487424 C:\Windows\System32\wow64win.dll 10.0.14393.1884 (rs1_release.171101-1233) Microsoft Corporation Wow64 Console and Win32 API Logging 131795770645380038 0x5c100000 40960 C:\Windows\System32\wow64cpu.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation AMD64 Wow64 CPU 131795770645380038 0x60750000 1556480 C:\Program Files (x86)\360\Total Security\safemon\safemon.dll 8, 4, 0, 1420 Qihu 360 Software Co., Ltd. 360 Internet Security Internet Protection 131795770645380038 0x63490000 221184 C:\Windows\SysWOW64\dinput8.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft DirectInput 131795770645380038 0x634d0000 561152 C:\Windows\SysWOW64\DSOUND.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DirectSound 131795770645380038 0x63560000 23334912 C:\Windows\SysWOW64\Macromed\Flash\Flash.ocx 29,0,0,140 Adobe Systems, Inc. Adobe Flash Player 29.0 r0 131795770645380038 0x64d00000 5079040 C:\Windows\SysWOW64\d2d1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека Microsoft D2D 131795770645380038 0x651e0000 20537344 C:\Windows\SysWOW64\mshtml.dll 11.00.14393.447 (rs1_release_inmarket.161102-0100) Microsoft Corporation Средство просмотра HTML Microsoft® 131795770645380038 0x66580000 12247040 C:\Windows\SysWOW64\ieframe.dll 11.00.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Браузер 131795770645380038 0x6b670000 212992 C:\Windows\SysWOW64\mlang.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL многоязыковой поддержки 131795770645380038 0x6b6b0000 36864 C:\Windows\SysWOW64\atlthunk.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation atlthunk.dll 131795770645380038 0x6c290000 987136 C:\Windows\SysWOW64\twinapi.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation twinapi.appcore 131795770645380038 0x6c390000 1126400 C:\Windows\SysWOW64\dcomp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft DirectComposition Library 131795770645380038 0x6c4b0000 278528 C:\Windows\SysWOW64\dataexchange.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation Data exchange 131795770645380038 0x6c540000 483328 C:\Windows\SysWOW64\webio.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API протоколов передачи по Веб 131795770645380038 0x6c5c0000 1384448 C:\Windows\SysWOW64\UIAutomationCore.DLL 7.2.14393.0 (rs1_release.160715-1616) Microsoft Corporation Основные автоматические компоненты Microsoft UI 131795770645380038 0x6c720000 2318336 C:\Windows\SysWOW64\d3d10warp.dll 10.0.14393.576 (rs1_release_inmarket.161208-2252) Microsoft Corporation Direct3D 10 Rasterizer 131795770645380038 0x6c960000 57344 C:\Windows\SysWOW64\msimtf.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Active IMM Server DLL 131795770645380038 0x6c970000 3698688 C:\Windows\SysWOW64\jscript9.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft ® JScript 131795770645380038 0x6cd00000 69632 C:\Windows\SysWOW64\WLDP.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Политика блокировки Windows 131795770645380038 0x6cd20000 135168 C:\Windows\SysWOW64\srpapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL программных интерфейсов (API) поставщика общих ресурсов 131795770645380038 0x6cda0000 528384 C:\Windows\SysWOW64\sxs.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Fusion 2.5 131795770645380038 0x6d080000 151552 C:\Windows\SysWOW64\cryptnet.dll 10.0.14393.2035 (rs1_release_inmarket.180110-1910) Microsoft Corporation Crypto Network Related API 131795770645380038 0x6d0b0000 847872 C:\Windows\SysWOW64\wintypes.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL основных типов Windows 131795770645380038 0x6fd30000 139264 C:\Windows\SysWOW64\DEVOBJ.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Device Information Set DLL 131795770645380038 0x6fd60000 360448 C:\Windows\SysWOW64\MMDevApi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation MMDevice API 131795770645380038 0x6fdc0000 507904 C:\Windows\SysWOW64\AUDIOSES.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Сеанс обработки звука 131795770645380038 0x6fe90000 544768 C:\Windows\SysWOW64\mscms.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL-библиотека системы сопоставления цветов Майкрософт 131795770645380038 0x70340000 536576 C:\Windows\SysWOW64\dxgi.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation DirectX Graphics Infrastructure 131795770645380038 0x703d0000 2056192 C:\Windows\SysWOW64\DWrite.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Службы Microsoft DirectX Typography 131795770645380038 0x70640000 1499136 C:\Windows\SysWOW64\windowscodecs.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Microsoft Windows Codecs Library 131795770645380038 0x707b0000 110592 C:\Windows\SysWOW64\ncryptsslp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft SChannel Provider 131795770645380038 0x707f0000 2293760 C:\Windows\SysWOW64\d3d11.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation Direct3D 11 Runtime 131795770645380038 0x70a40000 81920 C:\Windows\SysWOW64\NLAapi.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Network Location Awareness 2 131795770645380038 0x70a60000 90112 C:\Windows\SysWOW64\pnrpnsp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик пространства имен PNRP 131795770645380038 0x70a80000 409600 C:\Windows\SysWOW64\schannel.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик безопасности TLS/SSL 131795770645380038 0x70b40000 69632 C:\Windows\SysWOW64\mskeyprotect.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик защиты ключей (Майкрософт) 131795770645380038 0x70c00000 49152 C:\Windows\SysWOW64\winrnr.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation LDAP RnR Provider DLL 131795770645380038 0x70c10000 73728 C:\Windows\SysWOW64\napinsp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик оболочки совместимости для имен электронной почты 131795770645380038 0x70c30000 114688 C:\Windows\SysWOW64\srvcli.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Server Service Client DLL 131795770645380038 0x70c50000 319488 C:\Windows\SysWOW64\Ninput.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Pen and Touch Input Component 131795770645380038 0x70ca0000 45056 C:\Windows\SysWOW64\NETUTILS.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API Helpers DLL 131795770645380038 0x70cc0000 65536 C:\Windows\SysWOW64\ondemandconnroutehelper.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation On Demand Connctiond Route Helper 131795770645380038 0x70e60000 176128 C:\Windows\SysWOW64\NTASN1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft ASN.1 API 131795770645380038 0x71140000 77824 C:\Windows\SysWOW64\NETAPI32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API DLL 131795770645380038 0x71610000 77824 C:\Windows\SysWOW64\dhcpcsvc6.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиент DHCPv6 131795770645380038 0x725e0000 2273280 C:\Windows\SysWOW64\iertutil.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служебная программа времени выполнения для Internet Explorer 131795770645380038 0x728e0000 1372160 C:\Windows\SysWOW64\PROPSYS.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Система страниц свойств (Майкрософт) 131795770645380038 0x72b90000 126976 C:\Windows\SysWOW64\dwmapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Интерфейс API диспетчера окон рабочего стола (Майкрософт) 131795770645380038 0x72cc0000 1658880 C:\Windows\SysWOW64\urlmon.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширения OLE32 для Win32 131795770645380038 0x73a40000 32768 C:\Windows\SysWOW64\WINNSI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Network Store Information RPC interface 131795770645380038 0x73a50000 299008 C:\Windows\SysWOW64\fwpuclnt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API пользовательского режима FWP/IPsec 131795770645380038 0x73aa0000 32768 C:\Windows\SysWOW64\DPAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Data Protection API 131795770645380038 0x73ab0000 32768 C:\Windows\SysWOW64\rasadhlp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Remote Access AutoDial Helper 131795770645380038 0x73ac0000 81920 C:\Windows\SysWOW64\dhcpcsvc.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служба DHCP-клиента 131795770645380038 0x73ae0000 40960 C:\Windows\SysWOW64\Secur32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Security Support Provider Interface 131795770645380038 0x73ef0000 24576 C:\Windows\SysWOW64\MSIMG32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation GDIEXT Client DLL 131795770645380038 0x73f00000 192512 C:\Windows\SysWOW64\IPHLPAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API вспомогательного приложения IP 131795770645380038 0x73f30000 512000 C:\Windows\SysWOW64\DNSAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Динамическая библиотека API DNS-клиента 131795770645380038 0x73ff0000 319488 C:\Windows\SysWOW64\mswsock.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширение поставщика службы API Microsoft Windows Sockets 2.0 131795770645380038 0x74060000 192512 C:\Windows\SysWOW64\rsaenh.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Enhanced Cryptographic Provider 131795770645380038 0x74110000 479232 C:\Windows\SysWOW64\uxtheme.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека тем UxTheme (Microsoft) 131795770645380038 0x74190000 110592 C:\Windows\SysWOW64\bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795770645380038 0x741b0000 77824 C:\Windows\SysWOW64\CRYPTSP.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Cryptographic Service Provider API 131795770645380038 0x741f0000 143360 C:\Windows\SysWOW64\WINMMBASE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base Multimedia Extension API DLL 131795770645380038 0x74230000 147456 C:\Windows\SysWOW64\WINMM.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation MCI API DLL 131795770645380038 0x74260000 2514944 C:\Windows\SysWOW64\WININET.dll 11.00.14393.447 (rs1_release_inmarket.161102-0100) Microsoft Corporation Расширения Интернета для Win32 131795770645380038 0x744d0000 2138112 C:\Windows\WinSxS\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.14393.953_none_89c2555adb023171\comctl32.dll 6.10 (rs1_release_inmarket.170303-1614) Microsoft Corporation Библиотека элементов управления взаимодействия с пользователем 131795770645380038 0x746e0000 32768 C:\Windows\SysWOW64\VERSION.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Version Checking and File Installation Libraries 131795770645380038 0x746f0000 106496 C:\Windows\SysWOW64\USERENV.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Userenv 131795770645380038 0x74730000 598016 C:\Windows\SysWOW64\apphelp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиентская библиотека совместимости приложений 131795770645380038 0x747d0000 40960 C:\Windows\SysWOW64\CRYPTBASE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base cryptographic API DLL 131795770645380038 0x747e0000 126976 C:\Windows\SysWOW64\SspiCli.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Security Support Provider Interface 131795770645380038 0x74800000 151552 C:\Windows\SysWOW64\IMM32.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Multi-User Windows IMM32 API Client DLL 131795770645380038 0x74910000 2170880 C:\Windows\SysWOW64\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795770645380038 0x74b30000 53248 C:\Windows\SysWOW64\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795770645380038 0x74b60000 790528 C:\Windows\SysWOW64\RPCRT4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795770645380038 0x74c30000 1417216 C:\Windows\SysWOW64\gdi32full.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation GDI Client DLL 131795770645380038 0x74d90000 24576 C:\Windows\SysWOW64\PSAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Process Status Helper 131795770645380038 0x74da0000 778240 C:\Windows\SysWOW64\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795770645380038 0x74e60000 557056 C:\Windows\SysWOW64\shcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795770645380038 0x74ef0000 540672 C:\Windows\SysWOW64\clbcatq.dll 2001.12.10941.16384 (rs1_release.160715-1616) Microsoft Corporation COM+ Configuration Catalog 131795770645380038 0x74f80000 278528 C:\Windows\SysWOW64\WINTRUST.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation Microsoft Trust Verification APIs 131795770645380038 0x74fd0000 405504 C:\Windows\SysWOW64\WS2_32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation 32-разрядная библиотека Windows Socket 2.0 131795770645380038 0x75040000 282624 C:\Windows\SysWOW64\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795770645380038 0x75090000 1265664 C:\Windows\SysWOW64\MSCTF.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Серверная библиотека MSCTF 131795770645380038 0x751d0000 57344 C:\Windows\SysWOW64\MSASN1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ASN.1 Runtime APIs 131795770645380038 0x751e0000 1708032 C:\Windows\SysWOW64\KERNELBASE.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645380038 0x75390000 266240 C:\Windows\SysWOW64\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795770645380038 0x753e0000 1560576 C:\Windows\SysWOW64\CRYPT32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API32 криптографии 131795770645380038 0x75560000 487424 C:\Windows\SysWOW64\advapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795770645380038 0x756c0000 5693440 C:\Windows\SysWOW64\windows.storage.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API хранения Microsoft WinRT 131795770645380038 0x75c30000 372736 C:\Windows\SysWOW64\coml2.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft COM for Windows 131795770645380038 0x75c90000 286720 C:\Windows\SysWOW64\shlwapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека небольших программ оболочки 131795770645380038 0x75ce0000 20811776 C:\Windows\SysWOW64\SHELL32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Общая библиотека оболочки Windows 131795770645380038 0x774d0000 86016 C:\Windows\SysWOW64\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795770645380038 0x774f0000 61440 C:\Windows\SysWOW64\profapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Profile Basic API 131795770645380038 0x77560000 1437696 C:\Windows\SysWOW64\USER32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795770645380038 0x776c0000 368640 C:\Windows\SysWOW64\bcryptPrimitives.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation Windows Cryptographic Primitives Library 131795770645380038 0x77780000 503808 C:\Windows\SysWOW64\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645380038 0x77800000 606208 C:\Windows\SysWOW64\OLEAUT32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795770645380038 0x77ac0000 966656 C:\Windows\SysWOW64\ole32.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft OLE для Windows 131795770645380038 0x77bb0000 176128 C:\Windows\SysWOW64\GDI32.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation GDI Client DLL 131795770645380038 0x77cd0000 221184 C:\Windows\SysWOW64\cfgmgr32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Configuration Manager DLL 131795770645380038 0x77d10000 28672 C:\Windows\SysWOW64\NSI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation NSI User-mode interface DLL 131795770645380038 0x77d20000 1585152 C:\Windows\SysWOW64\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 131795770645380038 0x7ffad0270000 1908736 C:\Windows\SYSTEM32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 46 2736 3976 47 00000000:0031f1ab 131765800903010156 0 0 1 Обязательная метка\Высокий обязательный уровень WIN-0UOTFKKVN1S\User Taskmgr.exe C:\Windows\System32\Taskmgr.exe "C:\Windows\System32\Taskmgr.exe" /2 Microsoft® Windows® Operating System 1, 0, 0, 1 Task Manager 131795770645380149 0x7ff7c2a70000 1286144 C:\Windows\System32\Taskmgr.exe 1, 0, 0, 1 Microsoft® Windows® Operating System Task Manager 131795770645380149 0x7ffab2720000 606208 C:\Windows\System32\DUser.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows DirectUser Engine 131795770645380149 0x7ffab8190000 9191424 C:\Windows\System32\TwinUI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation TWINUI 131795770645380149 0x7ffabdbb0000 1736704 C:\Windows\System32\DUI70.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Подсистема DirectUI Windows 131795770645380149 0x7ffabdfa0000 393216 C:\Windows\System32\faultrep.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека отчетов о сбоях в пользовательском режиме Windows 131795770645380149 0x7ffabeb20000 385024 C:\Windows\System32\Windows.ApplicationModel.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows ApplicationModel API Server 131795770645380149 0x7ffac0bf0000 3559424 C:\Windows\System32\ActXPrxy.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation ActiveX Interface Marshaling Library 131795770645380149 0x7ffac21b0000 77824 C:\Windows\System32\srumapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation System Resource Usage Monitor API 131795770645380149 0x7ffac3cb0000 2772992 C:\Windows\SYSTEM32\iertutil.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служебная программа времени выполнения для Internet Explorer 131795770645380149 0x7ffac4000000 274432 C:\Windows\SYSTEM32\policymanager.dll 10.0.14393.2035 (rs1_release_inmarket.180110-1910) Microsoft Corporation Policy Manager DLL 131795770645380149 0x7ffac42a0000 659456 C:\Windows\System32\StateRepository.Core.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation StateRepository Core 131795770645380149 0x7ffac46d0000 4161536 C:\Windows\System32\Windows.StateRepository.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Сервер Windows StateRepository API Server 131795770645380149 0x7ffac4e70000 102400 C:\Windows\System32\samcli.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Security Accounts Manager Client DLL 131795770645380149 0x7ffac4ea0000 36864 C:\Windows\SYSTEM32\atlthunk.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation atlthunk.dll 131795770645380149 0x7ffac5350000 1765376 C:\Windows\System32\Windows.UI.Immersive.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation WINDOWS.UI.IMMERSIVE 131795770645380149 0x7ffac5630000 339968 C:\Windows\System32\thumbcache.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Кэш эскизов Майкрософт 131795770645380149 0x7ffac60e0000 221184 C:\Windows\System32\XmlLite.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft XmlLite Library 131795770645380149 0x7ffac6ac0000 835584 C:\Windows\System32\Windows.UI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Runtime UI Foundation DLL 131795770645380149 0x7ffac6bd0000 413696 C:\Windows\System32\OLEACC.dll 7.2.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Active Accessibility Core Component 131795770645380149 0x7ffac6c40000 2596864 C:\Windows\WinSxS\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.14393.953_none_42151e83c686086b\COMCTL32.dll 6.10 (rs1_release_inmarket.170303-1614) Microsoft Corporation Библиотека элементов управления взаимодействия с пользователем 131795770645380149 0x7ffac7580000 1077248 C:\Windows\SYSTEM32\MrmCoreR.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Windows MRM 131795770645380149 0x7ffac83d0000 106496 C:\Windows\SYSTEM32\dhcpcsvc.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служба DHCP-клиента 131795770645380149 0x7ffac83f0000 90112 C:\Windows\SYSTEM32\dhcpcsvc6.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиент DHCPv6 131795770645380149 0x7ffac8810000 45056 C:\Windows\SYSTEM32\WINNSI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Network Store Information RPC interface 131795770645380149 0x7ffac8dc0000 167936 C:\Windows\System32\dbgcore.DLL 10.0.14321.1024 (debuggers(dbg).160715-1616) Microsoft Windows Core Debugging Helpers 131795770645380149 0x7ffac8df0000 1646592 C:\Windows\System32\dbghelp.dll 10.0.14321.1024 (rs1_release.160715-1616) Microsoft Windows Image Helper 131795770645380149 0x7ffac90b0000 90112 C:\Windows\System32\wkscli.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Workstation Service Client DLL 131795770645380149 0x7ffac92e0000 1269760 C:\Windows\SYSTEM32\wintypes.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL основных типов Windows 131795770645380149 0x7ffac9f50000 1736704 C:\Windows\System32\WindowsCodecs.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Microsoft Windows Codecs Library 131795770645380149 0x7ffaca340000 1593344 C:\Windows\system32\propsys.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Система страниц свойств (Майкрософт) 131795770645380149 0x7ffaca4e0000 77824 C:\Windows\System32\WTSAPI32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Remote Desktop Session Host Server SDK APIs 131795770645380149 0x7ffaca570000 421888 C:\Windows\System32\Bcp47Langs.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation BCP47 Language Classes 131795770645380149 0x7ffaca5e0000 155648 C:\Windows\System32\dwmapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Интерфейс API диспетчера окон рабочего стола (Майкрософт) 131795770645380149 0x7ffaca610000 143360 C:\Windows\System32\SAMLIB.dll 10.0.14393.82 (rs1_release.160805-1735) Microsoft Corporation SAM Library DLL 131795770645380149 0x7ffacac60000 69632 C:\Windows\System32\credui.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Credential Manager User Interface 131795770645380149 0x7ffacadf0000 499712 C:\Windows\System32\apphelp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиентская библиотека совместимости приложений 131795770645380149 0x7ffacaf00000 610304 C:\Windows\System32\UxTheme.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека тем UxTheme (Microsoft) 131795770645380149 0x7ffacb140000 593920 C:\Windows\SYSTEM32\msvcp110_win.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Microsoft® STL110 C++ Runtime Library 131795770645380149 0x7ffacb1e0000 1163264 C:\Windows\System32\twinapi.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation twinapi.appcore 131795770645380149 0x7ffacb300000 364544 C:\Windows\SYSTEM32\VEEventDispatcher.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Visual Element Event dispatcher 131795770645380149 0x7ffacbd30000 229376 C:\Windows\System32\IPHLPAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API вспомогательного приложения IP 131795770645380149 0x7ffacbe20000 53248 C:\Windows\System32\netutils.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API Helpers DLL 131795770645380149 0x7ffacbe40000 126976 C:\Windows\System32\USERENV.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Userenv 131795770645380149 0x7ffacc5c0000 352256 C:\Windows\System32\WINSTA.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Winstation Library 131795770645380149 0x7ffacc620000 176128 C:\Windows\System32\bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795770645380149 0x7ffacc6e0000 61440 C:\Windows\System32\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795770645380149 0x7ffacc6f0000 311296 C:\Windows\System32\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795770645380149 0x7ffacc740000 81920 C:\Windows\System32\profapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Profile Basic API 131795770645380149 0x7ffacc8f0000 1003520 C:\Windows\System32\ucrtbase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645380149 0x7ffacc9f0000 434176 C:\Windows\System32\bcryptPrimitives.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Cryptographic Primitives Library 131795770645380149 0x7ffacca60000 122880 C:\Windows\System32\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795770645380149 0x7ffaccae0000 692224 C:\Windows\System32\shcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795770645380149 0x7ffaccb90000 7180288 C:\Windows\System32\windows.storage.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API хранения Microsoft WinRT 131795770645380149 0x7ffacd270000 2215936 C:\Windows\System32\KERNELBASE.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645380149 0x7ffacd710000 638976 C:\Windows\System32\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645380149 0x7ffacd7b0000 270336 C:\Windows\System32\cfgmgr32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Configuration Manager DLL 131795770645380149 0x7ffacd810000 22056960 C:\Windows\System32\SHELL32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Общая библиотека оболочки Windows 131795770645380149 0x7ffaced20000 782336 C:\Windows\System32\OLEAUT32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795770645380149 0x7ffacee50000 1183744 C:\Windows\System32\RPCRT4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795770645380149 0x7ffacef80000 32768 C:\Windows\System32\NSI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation NSI User-mode interface DLL 131795770645380149 0x7ffacef90000 647168 C:\Windows\System32\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795770645380149 0x7ffacf030000 651264 C:\Windows\System32\clbcatq.dll 2001.12.10941.16384 (rs1_release.160715-1616) Microsoft Corporation COM+ Configuration Catalog 131795770645380149 0x7ffacf0d0000 704512 C:\Windows\System32\KERNEL32.DLL 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645380149 0x7ffacf1e0000 1417216 C:\Windows\System32\MSCTF.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Серверная библиотека MSCTF 131795770645380149 0x7ffacf770000 212992 C:\Windows\System32\GDI32.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation GDI Client DLL 131795770645380149 0x7ffacf820000 434176 C:\Windows\System32\WS2_32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation 32-разрядная библиотека Windows Socket 2.0 131795770645380149 0x7ffacf890000 188416 C:\Windows\System32\IMM32.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Multi-User Windows IMM32 API Client DLL 131795770645380149 0x7ffacf8c0000 1462272 C:\Windows\System32\USER32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795770645380149 0x7ffacfb30000 2916352 C:\Windows\System32\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795770645380149 0x7ffacfe20000 663552 C:\Windows\System32\advapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795770645380149 0x7ffad0070000 1277952 C:\Windows\System32\ole32.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft OLE для Windows 131795770645380149 0x7ffad01b0000 335872 C:\Windows\System32\SHLWAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека небольших программ оболочки 131795770645380149 0x7ffad0210000 364544 C:\Windows\System32\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795770645380149 0x7ffad0270000 1908736 C:\Windows\SYSTEM32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 49 6724 580 4 00000000:000003e7 131765803507001117 0 0 0 Обязательная метка\Обязательный уровень системы NT AUTHORITY\СИСТЕМА QHActiveDefense.exe C:\Program Files (x86)\360\Total Security\safemon\QHActiveDefense.exe "C:\Program Files (x86)\360\Total Security\safemon\QHActiveDefense.exe" Qihoo 360 Technology Co. Ltd. 10,0,0,1008 360 Total Security 131795778431738530 0x10000 413696 C:\ProgramData\Package Cache\{b8e12890-118d-4721-8e54-05d978086712}\VC_redist.x64.exe 14.0.24516.0 Microsoft Corporation Microsoft Visual C++ 2015 Redistributable (x64) - 14.0.24516 131795770645381706 0xd0000 983040 C:\Program Files (x86)\360\Total Security\safemon\QHActiveDefense.exe 10,0,0,1008 Qihoo 360 Technology Co. Ltd. 360 Total Security 131795778469924367 0x400000 278528 C:\Program Files\Wireshark\WinPcap_4_1_3.exe 4.1.0.2980 Riverbed Technology, Inc. WinPcap 4.1.3 installer 131795778203065490 0x840000 413696 C:\Program Files\Wireshark\vcredist_x64.exe 14.12.25810.0 Microsoft Corporation Microsoft Visual C++ 2017 Redistributable (x64) - 14.12.25810 131795786058722021 0x34c0000 40960 C:\Windows\System32\browser_broker.exe 11.00.14393.1613 (rs1_release_d.170807-1806) Microsoft Corporation Browser_Broker 131795770645381706 0x3c80000 12288 C:\Windows\SysWOW64\sfc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows File Protection 131795780944214585 0x40a0000 438272 C:\Program Files\Wireshark\dumpcap.exe 2.6.2 The Wireshark developer community Dumpcap 131795780231568066 0x4630000 204800 C:\Windows\SysWOW64\net1.exe 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Command 131795778389953959 0xa8e0000 696320 C:\Windows\System32\msvcp140.dll 14.12.25810.0 built by: VCTOOLSREL Microsoft Corporation Microsoft® C Runtime Library 131795786140191230 0xe830000 2416640 C:\Windows\System32\smartscreen.exe 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SmartScreen 131795780691287613 0xf730000 8298496 C:\Program Files\Wireshark\Wireshark.exe 2.6.2 The Wireshark developer community, http://www.wireshark.org/ Wireshark 131795780222197886 0x10000000 98304 C:\Windows\SysWOW64\Packet.dll 4.1.0.2980 Riverbed Technology, Inc. packet.dll (Vista) Dynamic Link Library 131795770645381706 0x5c020000 335872 C:\Windows\System32\wow64.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation Win32 Emulation on NT64 131795770645381706 0x5c080000 487424 C:\Windows\System32\wow64win.dll 10.0.14393.1884 (rs1_release.171101-1233) Microsoft Corporation Wow64 Console and Win32 API Logging 131795770645381706 0x5c100000 40960 C:\Windows\System32\wow64cpu.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation AMD64 Wow64 CPU 131795770645381706 0x5fb90000 2736128 C:\Program Files (x86)\360\Total Security\deepscan\deepscan.dll 3, 5, 1, 2130 Qihu 360 Software Co., Ltd. 360 Total Security Cloud Security 131795770645381706 0x5fec0000 794624 C:\Windows\SysWOW64\wbem\fastprox.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation WMI Custom Marshaller 131795770645381706 0x5ffa0000 421888 C:\Windows\SysWOW64\wbemcomn.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation WMI 131795770645381706 0x60010000 53248 C:\Windows\SysWOW64\wbem\wbemprox.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation WMI 131795770645381706 0x60190000 475136 C:\Program Files (x86)\360\Total Security\safemon\360SafeCamera.tpi 2, 0, 0, 1031 QIHU 360 SOFTWARE CO. LIMITED 360 Total Security Proactive Defense 131795770645381706 0x60210000 1269760 C:\Program Files (x86)\360\Total Security\deepscan\jcloudscan.dll 1, 0, 0, 1012 360.cn 360安全卫士 移动云查询模块 131795770645381706 0x604a0000 196608 C:\Program Files (x86)\360\Total Security\ipc\appdext.dll 1, 0, 0, 1483 360.cn 360安全卫士 木马防火墙模块 131795770645381706 0x604e0000 188416 C:\Program Files (x86)\360\Total Security\ipc\DrvUtility.dll 1, 0, 0, 1081 Qihu 360 Software Co., Ltd. 360 Internet Security 2013 Proactive Defense 131795770645381706 0x60510000 409600 C:\Program Files (x86)\360\Total Security\SafeScan.dll 1, 0, 0, 1074 Qihoo 360 Technology Co. Ltd. 360 Scan Util Module 131795770645381706 0x60580000 204800 C:\Program Files (x86)\360\Total Security\ScanStub.dll 1, 0, 0, 1014 Qihoo 360 Technology Co. Ltd. 360 Scan Util Module 131795770645381706 0x605c0000 249856 C:\Program Files (x86)\360\Total Security\netmon\360gameidentify.dll 1, 0, 1, 1050 360.cn 360流量防火墙 游戏识别模块 131795770645381706 0x60600000 200704 C:\Program Files (x86)\360\Total Security\safemon\WDRecord.dll 1, 0, 1, 1130 Qihu 360 Software Co., Ltd. 360 Internet Security Internet Protection 131795770645381706 0x60640000 430080 C:\Program Files (x86)\360\Total Security\netmon\Netgm.dll 9,0,0,1005 360.cn 360流量防火墙 游戏模式判断模块 131795770645381706 0x608d0000 159744 C:\Program Files (x86)\360\Total Security\safemon\safemonhlp.dll 1, 0, 0, 1265 Qihu 360 Software Co., Ltd. 360 Internet Security Internet Protection 131795770645381706 0x60a50000 479232 C:\Program Files (x86)\360\Total Security\deepscan\DsSysRepair.dll 1, 0, 0, 1062 QIHU360 SOFTWARE CO. LIMITED 360 Total Security System Repair Module 131795770645381706 0x60ad0000 352256 C:\Program Files (x86)\360\Total Security\360Common.dll 7, 3, 0, 3233 360.cn 360安全衛士 基礎模塊 131795770645381706 0x60b30000 1712128 C:\Program Files (x86)\360\Total Security\safemon\360safemonpro.tpi 3, 1, 1, 3140 Qihu 360 Software Co., Ltd. 360 Internet Security Internet Protection 131795770645381706 0x60ce0000 581632 C:\Program Files (x86)\360\Total Security\dynlenv.dll 1, 1, 0, 1016 360.cn dynlenv Dynamic Link Library 131795770645381706 0x61000000 184320 C:\Program Files (x86)\360\Total Security\ipc\qutmipc.dll 7, 3, 0, 1267 360.cn 360安全卫士 木马防火墙模块 131795770645381706 0x61030000 262144 C:\Program Files (x86)\360\Total Security\safemon\safehmpg.dll 3, 0, 0, 1160 Qihu 360 Software Co., Ltd. 360 Internet Security Browser HomePage Protection 131795770645381706 0x610d0000 1097728 C:\Program Files (x86)\360\Total Security\SoftMgr\SomAdvUtils.dll 3, 1, 1, 2020 360.cn 360 Safeguard PC Boost 131795770645381706 0x61380000 315392 C:\Program Files (x86)\360\Total Security\safemon\360bsmon.tpi 6, 8, 0, 1248 Qihu 360 Software Co., Ltd. 360 Total Security Active Protection 131795770645381706 0x61480000 2191360 C:\Program Files (x86)\360\Total Security\deepscan\qex\qex.dll 4.1.13.3366 Qihu 360 Software Co., Ltd. 360 Internet Security 2017 Antivirus 131795770645381706 0x616a0000 331776 C:\Program Files (x86)\360\Total Security\safemon\SelfProtectAPI2.dll 7, 1, 1, 1033 Qihu 360 Software Co., Ltd. 360 Total Security Proactive Defense 131795770645381706 0x61700000 483328 C:\Program Files (x86)\360\Total Security\safemon\360procmon.dll 7, 1, 1, 1221 Qihu 360 Software Co., Ltd. 360 Total Security Proactive Defense 131795770645381706 0x61780000 335872 C:\Program Files (x86)\360\Total Security\ipc\netdefender.dll 1, 0, 0, 1129 Qihu 360 Software Co., Ltd. 360 Internet Security Internet Protection 131795770645381706 0x617e0000 897024 C:\Program Files (x86)\360\Total Security\ipc\appd.dll 7, 3, 6, 3113 Qihu 360 Software Co., Ltd. 360 Total Security Proactive Defense 131795770645381706 0x61a30000 512000 C:\Program Files (x86)\360\Total Security\safemon\360HipsPopWnd.dll 7,3,2,1211 Qihoo 360 Technology Co. Ltd. 360 Internet Security Proactive Defense 131795770645381706 0x61ab0000 495616 C:\Program Files (x86)\360\Total Security\ipc\fileMgr.dll 7, 3, 0, 1963 Qihu 360 Software Co., Ltd. 360 Total Security Proactive Defense 131795770645381706 0x61b30000 3350528 C:\Program Files (x86)\360\Total Security\SoftMgr\somkernl.dll 2, 1, 0, 1130 360.cn 360软件管家 131795770645381706 0x61e70000 614400 C:\Program Files (x86)\360\Total Security\ipc\ipcservice.dll 7, 1, 2, 1643 Qihu 360 Software Co., Ltd. 360 Total Security Proactive Defense 131795770645381706 0x61f10000 1458176 C:\Program Files (x86)\360\Total Security\deepscan\cloudcom2.dll 3, 3, 10, 1288 Qihu 360 Software Co., Ltd. 360 Total Security 131795770645381706 0x621a0000 458752 C:\Program Files (x86)\360\Total Security\ipc\yhregd.dll 7, 2, 0, 1903 Qihu 360 Software Co., Ltd. 360 Total Security Proactive Defense 131795770645381706 0x62280000 454656 C:\Program Files (x86)\360\Total Security\SoftMgr\360SoftMgrS.dll 2, 1, 6, 1490 360.cn 360软件管家 服务模块 131795770645381706 0x622f0000 520192 C:\Program Files (x86)\360\Total Security\deepscan\heavygate.dll 3, 8, 11, 1 Qihu 360 Software Co., Ltd. 360 Total Security Cloud Security 131795770645381706 0x62370000 602112 C:\Program Files (x86)\360\Total Security\360util.dll 1.0.0.1485 360.cn 360安全卫士 公共模块 131795770645381706 0x62410000 352256 C:\Program Files (x86)\360\Total Security\CrashReport.dll 7, 0, 0, 1000 360.cn 360杀毒 异常捕获程序 131795770645381706 0x62470000 405504 C:\Program Files (x86)\360\Total Security\deepscan\qutmload.dll 7, 2, 1, 1279 360.cn 360安全卫士 木马防火墙模块 131795770645381706 0x624e0000 315392 C:\Program Files (x86)\360\Total Security\ipc\360box.dll 2, 0, 0, 1043 360.cn 360隔离沙箱模块 131795770645381706 0x62540000 278528 C:\Program Files (x86)\360\Total Security\360conf.dll 1, 0, 0, 1014 Qihu 360 Software Co., Ltd. 360 Internet Security Base Module 131795770645381706 0x62590000 987136 C:\Program Files (x86)\360\Total Security\360base.dll 1, 0, 0, 1165 360.cn 360安全卫士 基础模块 131795770645381706 0x62690000 266240 C:\Program Files (x86)\360\Total Security\deepscan\BAPI.dll 2.0.0.1191 360.cn BAPI 131795770645381706 0x627d0000 249856 C:\Windows\SysWOW64\edputil.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служебная программа EDP 131795770645381706 0x62980000 376832 C:\Program Files (x86)\360\Total Security\360NetBase.dll 7, 25, 0, 76 360.cn 360安全卫士 网络基础模块 131795770645381706 0x62b50000 106496 C:\Program Files (x86)\360\Total Security\i18n\ru\deepscan\DsRes.dll 1,0,0,1012 Qihu 360 Software Co., Ltd. 360 Total Security Cloud Security Resource 131795770645381706 0x62b70000 208896 C:\Program Files (x86)\360\Total Security\safemon\gamemode.tpi 9,0,0,1001 QIHU 360 SOFTWARE CO. LIMITED 360 Total Security Game Mode Control 131795770645381706 0x67130000 86016 C:\Windows\SysWOW64\devenum.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Перечисление устройств. 131795770645381706 0x67690000 61440 C:\Windows\SysWOW64\sfc_os.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows File Protection 131795770645381706 0x676a0000 61440 C:\Program Files (x86)\360\Total Security\ipc\x64for32lib.dll 6, 8, 0, 1059 360.cn 360安全卫士 木马防火墙模块 131795770645381706 0x676b0000 32768 C:\Windows\SysWOW64\fltlib.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека фильтров 131795770645381706 0x6b6c0000 36864 C:\Windows\SysWOW64\msdmo.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DMO Runtime 131795770645381706 0x6b6d0000 102400 C:\Program Files (x86)\360\Total Security\i18n.dll 1, 0, 0, 1016 Qihu 360 Software Co., Ltd. 360 Total Security 131795770645381706 0x6bf00000 3715072 C:\Windows\SysWOW64\msi.dll 5.0.14393.2155 Microsoft Corporation Windows Installer 131795770645381706 0x6cd50000 106496 C:\Windows\SysWOW64\SAMLIB.dll 10.0.14393.82 (rs1_release.160805-1735) Microsoft Corporation SAM Library DLL 131795770645381706 0x6cf60000 569344 C:\Windows\SysWOW64\taskschd.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Task Scheduler COM API 131795770645381706 0x6d080000 151552 C:\Windows\SysWOW64\cryptnet.dll 10.0.14393.2035 (rs1_release_inmarket.180110-1910) Microsoft Corporation Crypto Network Related API 131795770645381706 0x6ea80000 860160 C:\Program Files (x86)\360\Total Security\deepscan\QVM\360QVM.dll 5.0.2.1003 Qihu 360 Software Co., Ltd. 360 Internet Security QVM Engine 131795770645381706 0x6fcd0000 151552 C:\Windows\SysWOW64\dbgcore.DLL 10.0.14321.1024 (debuggers(dbg).160715-1616) Microsoft Windows Core Debugging Helpers 131795770645381706 0x6fd30000 139264 C:\Windows\SysWOW64\DEVOBJ.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Device Information Set DLL 131795770645381706 0x700d0000 434176 C:\Windows\SysWOW64\WINSPOOL.DRV 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Драйвер диспетчера очереди Windows 131795770645381706 0x70140000 274432 C:\Windows\SysWOW64\WINSTA.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Winstation Library 131795770645381706 0x70210000 966656 C:\Program Files (x86)\360\Total Security\deepscan\ave\AVEngine.dll 1, 0, 0, 2016 Qihu 360 Software Co., Ltd. 360 Internet Security 2013 AntiVirus Engine 131795770645381706 0x70300000 208896 C:\Program Files (x86)\360\Total Security\deepscan\ave\AVEI.dll 1, 0, 0, 2003 Qihu 360 Software Co., Ltd. 360 Internet Security 2013 AntiVirus Engine 131795770645381706 0x707d0000 86016 C:\Windows\SysWOW64\SAMCLI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Security Accounts Manager Client DLL 131795770645381706 0x70a40000 81920 C:\Windows\SysWOW64\NLAapi.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Network Location Awareness 2 131795770645381706 0x70a60000 90112 C:\Windows\SysWOW64\pnrpnsp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик пространства имен PNRP 131795770645381706 0x70b70000 163840 C:\Windows\SysWOW64\ntmarta.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик Windows NT MARTA 131795770645381706 0x70c00000 49152 C:\Windows\SysWOW64\winrnr.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation LDAP RnR Provider DLL 131795770645381706 0x70c10000 73728 C:\Windows\SysWOW64\napinsp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик оболочки совместимости для имен электронной почты 131795770645381706 0x70c30000 114688 C:\Windows\SysWOW64\srvcli.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Server Service Client DLL 131795770645381706 0x70ca0000 45056 C:\Windows\SysWOW64\NETUTILS.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API Helpers DLL 131795770645381706 0x70cb0000 65536 C:\Windows\SysWOW64\wkscli.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Workstation Service Client DLL 131795770645381706 0x70fd0000 1331200 C:\Windows\SysWOW64\dbghelp.dll 10.0.14321.1024 (rs1_release.160715-1616) Microsoft Windows Image Helper 131795770645381706 0x71140000 77824 C:\Windows\SysWOW64\NETAPI32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API DLL 131795770645381706 0x71610000 77824 C:\Windows\SysWOW64\dhcpcsvc6.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиент DHCPv6 131795770645381706 0x725e0000 2273280 C:\Windows\SysWOW64\iertutil.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служебная программа времени выполнения для Internet Explorer 131795770645381706 0x728e0000 1372160 C:\Windows\SysWOW64\propsys.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Система страниц свойств (Майкрософт) 131795770645381706 0x72a30000 188416 C:\Windows\SysWOW64\XmlLite.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft XmlLite Library 131795770645381706 0x72cc0000 1658880 C:\Windows\SysWOW64\urlmon.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширения OLE32 для Win32 131795770645381706 0x73a40000 32768 C:\Windows\SysWOW64\WINNSI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Network Store Information RPC interface 131795770645381706 0x73a50000 299008 C:\Windows\SysWOW64\fwpuclnt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API пользовательского режима FWP/IPsec 131795770645381706 0x73ab0000 32768 C:\Windows\SysWOW64\rasadhlp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Remote Access AutoDial Helper 131795770645381706 0x73ac0000 81920 C:\Windows\SysWOW64\dhcpcsvc.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служба DHCP-клиента 131795770645381706 0x73ae0000 40960 C:\Windows\SysWOW64\secur32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Security Support Provider Interface 131795770645381706 0x73c50000 1478656 C:\Windows\WinSxS\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.14393.1715_none_f67438d2f2547a00\gdiplus.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Microsoft GDI+ 131795770645381706 0x73ee0000 61440 C:\Windows\SysWOW64\WTSAPI32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Remote Desktop Session Host Server SDK APIs 131795770645381706 0x73ef0000 24576 C:\Windows\SysWOW64\MSIMG32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation GDIEXT Client DLL 131795770645381706 0x73f00000 192512 C:\Windows\SysWOW64\IPHLPAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API вспомогательного приложения IP 131795770645381706 0x73f30000 512000 C:\Windows\SysWOW64\dnsapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Динамическая библиотека API DNS-клиента 131795770645381706 0x73ff0000 319488 C:\Windows\SysWOW64\mswsock.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширение поставщика службы API Microsoft Windows Sockets 2.0 131795770645381706 0x74040000 126976 C:\Windows\SysWOW64\gpapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиентские функции API групповой политики 131795770645381706 0x74060000 192512 C:\Windows\SysWOW64\rsaenh.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Enhanced Cryptographic Provider 131795770645381706 0x74190000 110592 C:\Windows\SysWOW64\bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795770645381706 0x741b0000 77824 C:\Windows\SysWOW64\CRYPTSP.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Cryptographic Service Provider API 131795770645381706 0x741f0000 143360 C:\Windows\SysWOW64\WINMMBASE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base Multimedia Extension API DLL 131795770645381706 0x74230000 147456 C:\Windows\SysWOW64\WINMM.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation MCI API DLL 131795770645381706 0x74260000 2514944 C:\Windows\SysWOW64\WININET.dll 11.00.14393.447 (rs1_release_inmarket.161102-0100) Microsoft Corporation Расширения Интернета для Win32 131795770645381706 0x746e0000 32768 C:\Windows\SysWOW64\VERSION.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Version Checking and File Installation Libraries 131795770645381706 0x746f0000 106496 C:\Windows\SysWOW64\USERENV.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Userenv 131795770645381706 0x74710000 90112 C:\Windows\SysWOW64\MPR.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека маршрутизации для нескольких служб доступа 131795770645381706 0x74730000 598016 C:\Windows\SysWOW64\apphelp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиентская библиотека совместимости приложений 131795770645381706 0x747d0000 40960 C:\Windows\SysWOW64\CRYPTBASE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base cryptographic API DLL 131795770645381706 0x747e0000 126976 C:\Windows\SysWOW64\SspiCli.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Security Support Provider Interface 131795770645381706 0x74910000 2170880 C:\Windows\SysWOW64\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795770645381706 0x74b30000 53248 C:\Windows\SysWOW64\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795770645381706 0x74b40000 102400 C:\Windows\SysWOW64\imagehlp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT Image Helper 131795770645381706 0x74b60000 790528 C:\Windows\SysWOW64\RPCRT4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795770645381706 0x74c30000 1417216 C:\Windows\SysWOW64\gdi32full.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation GDI Client DLL 131795770645381706 0x74d90000 24576 C:\Windows\SysWOW64\PSAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Process Status Helper 131795770645381706 0x74da0000 778240 C:\Windows\SysWOW64\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795770645381706 0x74e60000 557056 C:\Windows\SysWOW64\shcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795770645381706 0x74ef0000 540672 C:\Windows\SysWOW64\clbcatq.dll 2001.12.10941.16384 (rs1_release.160715-1616) Microsoft Corporation COM+ Configuration Catalog 131795770645381706 0x74f80000 278528 C:\Windows\SysWOW64\WINTRUST.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation Microsoft Trust Verification APIs 131795770645381706 0x74fd0000 405504 C:\Windows\SysWOW64\WS2_32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation 32-разрядная библиотека Windows Socket 2.0 131795770645381706 0x75040000 282624 C:\Windows\SysWOW64\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795770645381706 0x751d0000 57344 C:\Windows\SysWOW64\MSASN1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ASN.1 Runtime APIs 131795770645381706 0x751e0000 1708032 C:\Windows\SysWOW64\KERNELBASE.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645381706 0x75390000 266240 C:\Windows\SysWOW64\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795770645381706 0x753e0000 1560576 C:\Windows\SysWOW64\CRYPT32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API32 криптографии 131795770645381706 0x75560000 487424 C:\Windows\SysWOW64\ADVAPI32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795770645381706 0x756c0000 5693440 C:\Windows\SysWOW64\windows.storage.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API хранения Microsoft WinRT 131795770645381706 0x75c30000 372736 C:\Windows\SysWOW64\coml2.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft COM for Windows 131795770645381706 0x75c90000 286720 C:\Windows\SysWOW64\shlwapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека небольших программ оболочки 131795770645381706 0x75ce0000 20811776 C:\Windows\SysWOW64\SHELL32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Общая библиотека оболочки Windows 131795770645381706 0x770c0000 4239360 C:\Windows\SysWOW64\SETUPAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Setup API 131795770645381706 0x774d0000 86016 C:\Windows\SysWOW64\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795770645381706 0x774f0000 61440 C:\Windows\SysWOW64\profapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Profile Basic API 131795770645381706 0x77560000 1437696 C:\Windows\SysWOW64\USER32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795770645381706 0x776c0000 368640 C:\Windows\SysWOW64\bcryptPrimitives.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation Windows Cryptographic Primitives Library 131795770645381706 0x77780000 503808 C:\Windows\SysWOW64\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645381706 0x77800000 606208 C:\Windows\SysWOW64\OLEAUT32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795770645381706 0x77ac0000 966656 C:\Windows\SysWOW64\ole32.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft OLE для Windows 131795770645381706 0x77bb0000 176128 C:\Windows\SysWOW64\GDI32.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation GDI Client DLL 131795770645381706 0x77cd0000 221184 C:\Windows\SysWOW64\cfgmgr32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Configuration Manager DLL 131795770645381706 0x77d10000 28672 C:\Windows\SysWOW64\NSI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation NSI User-mode interface DLL 131795770645381706 0x77d20000 1585152 C:\Windows\SysWOW64\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 131795770645381706 0x7ffad0270000 1908736 C:\Windows\SYSTEM32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 50 6340 6724 49 00000000:0031f1ab 131765803510844292 0 0 0 Обязательная метка\Высокий обязательный уровень WIN-0UOTFKKVN1S\User QHSafeTray.exe C:\Program Files (x86)\360\Total Security\safemon\QHSafeTray.exe /showtrayicon Qihoo 360 Technology Co. Ltd. 10,0,0,1024 360 Total Security 131795770645381850 0xec0000 2351104 C:\Program Files (x86)\360\Total Security\safemon\QHSafeTray.exe 10,0,0,1024 Qihoo 360 Technology Co. Ltd. 360 Total Security 131795770645381850 0x68f0000 12288 C:\Windows\SysWOW64\sfc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows File Protection 131795770645381850 0x5c020000 335872 C:\Windows\System32\wow64.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation Win32 Emulation on NT64 131795770645381850 0x5c080000 487424 C:\Windows\System32\wow64win.dll 10.0.14393.1884 (rs1_release.171101-1233) Microsoft Corporation Wow64 Console and Win32 API Logging 131795770645381850 0x5c100000 40960 C:\Windows\System32\wow64cpu.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation AMD64 Wow64 CPU 131795770645381850 0x5c480000 245760 C:\Program Files (x86)\360\Total Security\PDown.dll 1, 3, 0, 1420 Qihu 360 Software Co., Ltd. 360 Security Center Network Module 131795770645381850 0x5fe30000 581632 C:\Program Files (x86)\360\Total Security\safemon\wdui2.dll 9,6,0,1001 131795770645381850 0x60020000 413696 C:\Program Files (x86)\360\Total Security\netmon\360netctrl.dll 5, 3, 15, 2232 360.cn 360 Total Security NetwokrMonCtrl 131795770645381850 0x60090000 335872 C:\Program Files (x86)\360\Total Security\safemon\netmon.tpi 5, 1, 1, 3157 Qihoo 360 Technology Co. Ltd. 360安全卫士 流量防火墙模块 131795770645381850 0x60350000 1331200 C:\Program Files (x86)\360\Total Security\ToolBox.dll 1, 0, 0, 1094 Qihoo 360 Technology Co. Ltd. 360 Total Security 131795770645381850 0x60600000 200704 C:\Program Files (x86)\360\Total Security\safemon\WDRecord.dll 1, 0, 1, 1130 Qihu 360 Software Co., Ltd. 360 Internet Security Internet Protection 131795770645381850 0x606b0000 598016 C:\Program Files (x86)\360\Total Security\safemon\spsafe.dll 1, 0, 0, 1120 Qihu 360 Software Co., Ltd. 360 Internet Security Internet Protection 131795770645381850 0x60750000 1556480 C:\Program Files (x86)\360\Total Security\safemon\safemon.dll 8, 4, 0, 1420 Qihu 360 Software Co., Ltd. 360 Internet Security Internet Protection 131795770645381850 0x608d0000 159744 C:\Program Files (x86)\360\Total Security\safemon\safemonhlp.dll 1, 0, 0, 1265 Qihu 360 Software Co., Ltd. 360 Internet Security Internet Protection 131795770645381850 0x609b0000 241664 C:\Program Files (x86)\360\Total Security\safemon\360GuardBase.dll 3, 1, 0, 1060 360.cn 360保镖 131795770645381850 0x60ad0000 352256 C:\Program Files (x86)\360\Total Security\360Common.dll 7, 3, 0, 3233 360.cn 360安全衛士 基礎模塊 131795770645381850 0x60b30000 1712128 C:\Program Files (x86)\360\Total Security\safemon\360safemonpro.tpi 3, 1, 1, 3140 Qihu 360 Software Co., Ltd. 360 Internet Security Internet Protection 131795770645381850 0x60ce0000 581632 C:\Program Files (x86)\360\Total Security\dynlenv.dll 1, 1, 0, 1016 360.cn dynlenv Dynamic Link Library 131795770645381850 0x61070000 393216 C:\Program Files (x86)\360\Total Security\safemon\SomProxy.dll 1, 0, 0, 1900 Qihu 360 Software Co., Ltd. 360 Internet Security Internet Protection 131795770645381850 0x611e0000 1662976 C:\Program Files (x86)\360\Total Security\safemon\360connect.tpi 9,2,0,1030 QIHU 360 SOFTWARE CO. LIMITED 360 Connect 131795770645381850 0x61380000 315392 C:\Program Files (x86)\360\Total Security\safemon\360bsmon.tpi 6, 8, 0, 1248 Qihu 360 Software Co., Ltd. 360 Total Security Active Protection 131795770645381850 0x613d0000 667648 C:\Windows\WinSxS\x86_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.9247_none_5090cb78bcba4a35\MSVCR90.dll 9.00.30729.9247 Microsoft Corporation Microsoft® C Runtime Library 131795770645381850 0x618c0000 1478656 C:\Program Files (x86)\360\Total Security\sites.dll 11, 1, 0, 1212 360.cn 360安全卫士 131795770645381850 0x61a30000 512000 C:\Program Files (x86)\360\Total Security\safemon\360hipsPopWnd.dll 7,3,2,1211 Qihoo 360 Technology Co. Ltd. 360 Internet Security Proactive Defense 131795770645381850 0x61b30000 3350528 C:\Program Files (x86)\360\Total Security\softmgr\somkernl.dll 2, 1, 0, 1130 360.cn 360软件管家 131795770645381850 0x61e70000 614400 C:\Program Files (x86)\360\Total Security\ipc\ipcservice.dll 7, 1, 2, 1643 Qihu 360 Software Co., Ltd. 360 Total Security Proactive Defense 131795770645381850 0x61f10000 1458176 C:\Program Files (x86)\360\Total Security\deepscan\Cloudcom2.dll 3, 3, 10, 1288 Qihu 360 Software Co., Ltd. 360 Total Security 131795770645381850 0x62210000 446464 C:\Program Files (x86)\360\Total Security\360TSCommon.dll 9, 0, 0, 1016 QIHU 360 SOFTWARE CO. LIMITED 360 Total Security 131795770645381850 0x622f0000 520192 C:\Program Files (x86)\360\Total Security\deepscan\heavygate.dll 3, 8, 11, 1 Qihu 360 Software Co., Ltd. 360 Total Security Cloud Security 131795770645381850 0x62370000 602112 C:\Program Files (x86)\360\Total Security\360util.dll 1.0.0.1485 360.cn 360安全卫士 公共模块 131795770645381850 0x62410000 352256 C:\Program Files (x86)\360\Total Security\CrashReport.dll 7, 0, 0, 1000 360.cn 360杀毒 异常捕获程序 131795770645381850 0x62540000 278528 C:\Program Files (x86)\360\Total Security\360conf.dll 1, 0, 0, 1014 Qihu 360 Software Co., Ltd. 360 Internet Security Base Module 131795770645381850 0x62590000 987136 C:\Program Files (x86)\360\Total Security\360base.dll 1, 0, 0, 1165 360.cn 360安全卫士 基础模块 131795770645381850 0x62690000 266240 C:\Program Files (x86)\360\Total Security\deepscan\BAPI.dll 2.0.0.1191 360.cn BAPI 131795770645381850 0x627d0000 249856 C:\Windows\SysWOW64\edputil.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служебная программа EDP 131795770645381850 0x62960000 77824 C:\Program Files (x86)\360\Total Security\safemon\CleanPlusCache.tpi 1, 0, 0, 1004 QIHU 360 SOFTWARE CO. LIMITED CleanPlusCache 131795770645381850 0x62980000 376832 C:\Program Files (x86)\360\Total Security\360NetBase.dll 7, 25, 0, 76 360.cn 360安全卫士 网络基础模块 131795770645381850 0x67500000 1597440 C:\Windows\SysWOW64\ActXPrxy.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation ActiveX Interface Marshaling Library 131795770645381850 0x67690000 61440 C:\Windows\SysWOW64\sfc_os.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows File Protection 131795770645381850 0x676a0000 61440 C:\Program Files (x86)\360\Total Security\ipc\x64for32lib.dll 6, 8, 0, 1059 360.cn 360安全卫士 木马防火墙模块 131795771279916892 0x68850000 2764800 C:\Windows\SysWOW64\msftedit.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Элемент управления "Поле ввода форматированного текста", версия 8.5 131795770645381850 0x6b6d0000 102400 C:\Program Files (x86)\360\Total Security\i18n.dll 1, 0, 0, 1016 Qihu 360 Software Co., Ltd. 360 Total Security 131795770645381850 0x6bf00000 3715072 C:\Windows\SysWOW64\msi.dll 5.0.14393.2155 Microsoft Corporation Windows Installer 131795770645381850 0x6c290000 987136 C:\Windows\SysWOW64\twinapi.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation twinapi.appcore 131795770645381850 0x6c390000 1126400 C:\Windows\SysWOW64\dcomp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft DirectComposition Library 131795770645381850 0x6c4b0000 278528 C:\Windows\SysWOW64\dataexchange.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation Data exchange 131795770645381850 0x6e6e0000 151552 C:\Windows\SysWOW64\globinputhost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Globalization Extension API for Input 131795770645381850 0x6e710000 335872 C:\Windows\SysWOW64\Bcp47Langs.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation BCP47 Language Classes 131795770645381850 0x6e770000 1269760 C:\Windows\SysWOW64\Windows.Globalization.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Globalization 131795770645381850 0x6eed0000 274432 C:\Windows\SysWOW64\thumbcache.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Кэш эскизов Майкрософт 131795770645381850 0x6fc70000 385024 C:\Windows\SysWOW64\FirewallAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API брандмауэра Windows 131795770645381850 0x6fcd0000 151552 C:\Windows\SysWOW64\dbgcore.DLL 10.0.14321.1024 (debuggers(dbg).160715-1616) Microsoft Windows Core Debugging Helpers 131795770645381850 0x700d0000 434176 C:\Windows\SysWOW64\WINSPOOL.DRV 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Драйвер диспетчера очереди Windows 131795770645381850 0x70140000 274432 C:\Windows\SysWOW64\WINSTA.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Winstation Library 131795770645381850 0x70340000 536576 C:\Windows\SysWOW64\dxgi.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation DirectX Graphics Infrastructure 131795770645381850 0x703d0000 2056192 C:\Windows\SysWOW64\DWrite.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Службы Microsoft DirectX Typography 131795770645381850 0x705e0000 344064 C:\Windows\SysWOW64\OLEACC.dll 7.2.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Active Accessibility Core Component 131795770645381850 0x70640000 1499136 C:\Windows\SysWOW64\WindowsCodecs.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Microsoft Windows Codecs Library 131795770645381850 0x707b0000 110592 C:\Windows\SysWOW64\ncryptsslp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft SChannel Provider 131795770645381850 0x707f0000 2293760 C:\Windows\SysWOW64\d3d11.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation Direct3D 11 Runtime 131795770645381850 0x70a40000 81920 C:\Windows\SysWOW64\NLAapi.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Network Location Awareness 2 131795770645381850 0x70a60000 90112 C:\Windows\SysWOW64\pnrpnsp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик пространства имен PNRP 131795770645381850 0x70a80000 409600 C:\Windows\SysWOW64\schannel.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик безопасности TLS/SSL 131795770645381850 0x70b40000 69632 C:\Windows\SysWOW64\mskeyprotect.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик защиты ключей (Майкрософт) 131795770645381850 0x70b70000 163840 C:\Windows\SysWOW64\ntmarta.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик Windows NT MARTA 131795770645381850 0x70ba0000 188416 C:\Windows\SysWOW64\FWPolicyIOMgr.dll 10.0.14393.2189 (rs1_release.180329-1711) Microsoft Corporation FwPolicyIoMgr DLL 131795770645381850 0x70bd0000 147456 C:\Windows\SysWOW64\fwbase.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Firewall Base DLL 131795770645381850 0x70c00000 49152 C:\Windows\SysWOW64\winrnr.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation LDAP RnR Provider DLL 131795770645381850 0x70c10000 73728 C:\Windows\SysWOW64\napinsp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик оболочки совместимости для имен электронной почты 131795770645381850 0x70c30000 114688 C:\Windows\SysWOW64\SRVCLI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Server Service Client DLL 131795770645381850 0x70ca0000 45056 C:\Windows\SysWOW64\NETUTILS.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API Helpers DLL 131795770645381850 0x70cc0000 65536 C:\Windows\SysWOW64\ondemandconnroutehelper.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation On Demand Connctiond Route Helper 131795770645381850 0x70e60000 176128 C:\Windows\SysWOW64\NTASN1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft ASN.1 API 131795770645381850 0x70fd0000 1331200 C:\Windows\SysWOW64\dbghelp.dll 10.0.14321.1024 (rs1_release.160715-1616) Microsoft Windows Image Helper 131795770645381850 0x71140000 77824 C:\Windows\SysWOW64\NETAPI32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API DLL 131795770645381850 0x71170000 466944 C:\Program Files (x86)\360\Total Security\deepscan\CQhCltHttpW.dll 1, 4, 0, 1030 QIHU 360 SOFTWARE CO. LIMITED 360 Internet Security Base Module 131795770645381850 0x71610000 77824 C:\Windows\SysWOW64\dhcpcsvc6.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиент DHCPv6 131795770645381850 0x725e0000 2273280 C:\Windows\SysWOW64\iertutil.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служебная программа времени выполнения для Internet Explorer 131795770645381850 0x728e0000 1372160 C:\Windows\SysWOW64\PROPSYS.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Система страниц свойств (Майкрософт) 131795770645381850 0x72b90000 126976 C:\Windows\SysWOW64\dwmapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Интерфейс API диспетчера окон рабочего стола (Майкрософт) 131795770645381850 0x72cc0000 1658880 C:\Windows\SysWOW64\urlmon.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширения OLE32 для Win32 131795770645381850 0x73a40000 32768 C:\Windows\SysWOW64\WINNSI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Network Store Information RPC interface 131795770645381850 0x73a50000 299008 C:\Windows\SysWOW64\fwpuclnt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API пользовательского режима FWP/IPsec 131795770645381850 0x73ab0000 32768 C:\Windows\SysWOW64\rasadhlp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Remote Access AutoDial Helper 131795770645381850 0x73ac0000 81920 C:\Windows\SysWOW64\dhcpcsvc.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служба DHCP-клиента 131795770645381850 0x73ae0000 40960 C:\Windows\SysWOW64\Secur32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Security Support Provider Interface 131795770645381850 0x73c50000 1478656 C:\Windows\WinSxS\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.14393.1715_none_f67438d2f2547a00\gdiplus.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Microsoft GDI+ 131795770645381850 0x73ee0000 61440 C:\Windows\SysWOW64\WTSAPI32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Remote Desktop Session Host Server SDK APIs 131795770645381850 0x73ef0000 24576 C:\Windows\SysWOW64\MSIMG32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation GDIEXT Client DLL 131795770645381850 0x73f00000 192512 C:\Windows\SysWOW64\IPHLPAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API вспомогательного приложения IP 131795770645381850 0x73f30000 512000 C:\Windows\SysWOW64\DNSAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Динамическая библиотека API DNS-клиента 131795770645381850 0x73ff0000 319488 C:\Windows\SysWOW64\mswsock.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширение поставщика службы API Microsoft Windows Sockets 2.0 131795770645381850 0x74060000 192512 C:\Windows\SysWOW64\rsaenh.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Enhanced Cryptographic Provider 131795770645381850 0x74110000 479232 C:\Windows\SysWOW64\uxtheme.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека тем UxTheme (Microsoft) 131795770645381850 0x74190000 110592 C:\Windows\SysWOW64\bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795770645381850 0x741b0000 77824 C:\Windows\SysWOW64\CRYPTSP.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Cryptographic Service Provider API 131795770645381850 0x741f0000 143360 C:\Windows\SysWOW64\WINMMBASE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base Multimedia Extension API DLL 131795770645381850 0x74230000 147456 C:\Windows\SysWOW64\WINMM.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation MCI API DLL 131795770645381850 0x74260000 2514944 C:\Windows\SysWOW64\WININET.dll 11.00.14393.447 (rs1_release_inmarket.161102-0100) Microsoft Corporation Расширения Интернета для Win32 131795770645381850 0x744d0000 2138112 C:\Windows\WinSxS\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.14393.953_none_89c2555adb023171\COMCTL32.dll 6.10 (rs1_release_inmarket.170303-1614) Microsoft Corporation Библиотека элементов управления взаимодействия с пользователем 131795770645381850 0x746e0000 32768 C:\Windows\SysWOW64\VERSION.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Version Checking and File Installation Libraries 131795770645381850 0x746f0000 106496 C:\Windows\SysWOW64\USERENV.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Userenv 131795770645381850 0x74730000 598016 C:\Windows\SysWOW64\apphelp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиентская библиотека совместимости приложений 131795770645381850 0x747d0000 40960 C:\Windows\SysWOW64\CRYPTBASE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base cryptographic API DLL 131795770645381850 0x747e0000 126976 C:\Windows\SysWOW64\SspiCli.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Security Support Provider Interface 131795770645381850 0x74800000 151552 C:\Windows\SysWOW64\IMM32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Multi-User Windows IMM32 API Client DLL 131795770645381850 0x74910000 2170880 C:\Windows\SysWOW64\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795770645381850 0x74b30000 53248 C:\Windows\SysWOW64\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795770645381850 0x74b40000 102400 C:\Windows\SysWOW64\imagehlp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT Image Helper 131795770645381850 0x74b60000 790528 C:\Windows\SysWOW64\RPCRT4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795770645381850 0x74c30000 1417216 C:\Windows\SysWOW64\gdi32full.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation GDI Client DLL 131795770645381850 0x74d90000 24576 C:\Windows\SysWOW64\PSAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Process Status Helper 131795770645381850 0x74da0000 778240 C:\Windows\SysWOW64\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795770645381850 0x74e60000 557056 C:\Windows\SysWOW64\shcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795770645381850 0x74ef0000 540672 C:\Windows\SysWOW64\clbcatq.dll 2001.12.10941.16384 (rs1_release.160715-1616) Microsoft Corporation COM+ Configuration Catalog 131795770645381850 0x74f80000 278528 C:\Windows\SysWOW64\WINTRUST.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation Microsoft Trust Verification APIs 131795770645381850 0x74fd0000 405504 C:\Windows\SysWOW64\WS2_32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation 32-разрядная библиотека Windows Socket 2.0 131795770645381850 0x75040000 282624 C:\Windows\SysWOW64\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795770645381850 0x75090000 1265664 C:\Windows\SysWOW64\MSCTF.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Серверная библиотека MSCTF 131795770645381850 0x751d0000 57344 C:\Windows\SysWOW64\MSASN1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ASN.1 Runtime APIs 131795770645381850 0x751e0000 1708032 C:\Windows\SysWOW64\KERNELBASE.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645381850 0x75390000 266240 C:\Windows\SysWOW64\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795770645381850 0x753e0000 1560576 C:\Windows\SysWOW64\CRYPT32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API32 криптографии 131795770645381850 0x75560000 487424 C:\Windows\SysWOW64\ADVAPI32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795770645381850 0x756c0000 5693440 C:\Windows\SysWOW64\windows.storage.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API хранения Microsoft WinRT 131795770645381850 0x75c30000 372736 C:\Windows\SysWOW64\coml2.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft COM for Windows 131795770645381850 0x75c90000 286720 C:\Windows\SysWOW64\shlwapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека небольших программ оболочки 131795770645381850 0x75ce0000 20811776 C:\Windows\SysWOW64\SHELL32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Общая библиотека оболочки Windows 131795770645381850 0x770c0000 4239360 C:\Windows\SysWOW64\SETUPAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Setup API 131795770645381850 0x774d0000 86016 C:\Windows\SysWOW64\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795770645381850 0x774f0000 61440 C:\Windows\SysWOW64\profapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Profile Basic API 131795770645381850 0x77560000 1437696 C:\Windows\SysWOW64\USER32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795770645381850 0x776c0000 368640 C:\Windows\SysWOW64\bcryptPrimitives.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation Windows Cryptographic Primitives Library 131795770645381850 0x77780000 503808 C:\Windows\SysWOW64\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645381850 0x77800000 606208 C:\Windows\SysWOW64\OLEAUT32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795770645381850 0x77ac0000 966656 C:\Windows\SysWOW64\ole32.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft OLE для Windows 131795770645381850 0x77bb0000 176128 C:\Windows\SysWOW64\GDI32.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation GDI Client DLL 131795770645381850 0x77cd0000 221184 C:\Windows\SysWOW64\cfgmgr32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Configuration Manager DLL 131795770645381850 0x77d10000 28672 C:\Windows\SysWOW64\NSI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation NSI User-mode interface DLL 131795770645381850 0x77d20000 1585152 C:\Windows\SysWOW64\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 131795770645381850 0x7ffad0270000 1908736 C:\Windows\SYSTEM32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 51 6860 6724 49 00000000:000003e7 131765803555957830 0 0 0 Обязательная метка\Обязательный уровень системы NT AUTHORITY\СИСТЕМА QHWatchdog.exe C:\Program Files (x86)\360\Total Security\safemon\QHWatchdog.exe "C:\Program Files (x86)\360\Total Security\safemon\QHWatchdog.exe" /watch QIHU 360 SOFTWARE CO. LIMITED 8,2,0,1000 360 Total Security 131795770645381936 0xdf0000 139264 C:\Program Files (x86)\360\Total Security\safemon\QHWatchdog.exe 8,2,0,1000 QIHU 360 SOFTWARE CO. LIMITED 360 Total Security 131795770645381936 0x5c020000 335872 C:\Windows\System32\wow64.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation Win32 Emulation on NT64 131795770645381936 0x5c080000 487424 C:\Windows\System32\wow64win.dll 10.0.14393.1884 (rs1_release.171101-1233) Microsoft Corporation Wow64 Console and Win32 API Logging 131795770645381936 0x5c100000 40960 C:\Windows\System32\wow64cpu.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation AMD64 Wow64 CPU 131795770645381936 0x74730000 598016 C:\Windows\SysWOW64\apphelp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиентская библиотека совместимости приложений 131795770645381936 0x747d0000 40960 C:\Windows\SysWOW64\CRYPTBASE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base cryptographic API DLL 131795770645381936 0x747e0000 126976 C:\Windows\SysWOW64\SspiCli.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Security Support Provider Interface 131795770645381936 0x74910000 2170880 C:\Windows\SysWOW64\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795770645381936 0x74b60000 790528 C:\Windows\SysWOW64\RPCRT4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795770645381936 0x74c30000 1417216 C:\Windows\SysWOW64\gdi32full.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation GDI Client DLL 131795770645381936 0x74da0000 778240 C:\Windows\SysWOW64\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795770645381936 0x74e60000 557056 C:\Windows\SysWOW64\shcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795770645381936 0x751e0000 1708032 C:\Windows\SysWOW64\KERNELBASE.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645381936 0x75390000 266240 C:\Windows\SysWOW64\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795770645381936 0x75560000 487424 C:\Windows\SysWOW64\ADVAPI32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795770645381936 0x755e0000 917504 C:\Windows\SysWOW64\KERNEL32.DLL 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645381936 0x75c90000 286720 C:\Windows\SysWOW64\SHLWAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека небольших программ оболочки 131795770645381936 0x774d0000 86016 C:\Windows\SysWOW64\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795770645381936 0x77560000 1437696 C:\Windows\SysWOW64\USER32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795770645381936 0x776c0000 368640 C:\Windows\SysWOW64\bcryptPrimitives.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation Windows Cryptographic Primitives Library 131795770645381936 0x77bb0000 176128 C:\Windows\SysWOW64\GDI32.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation GDI Client DLL 131795770645381936 0x77d20000 1585152 C:\Windows\SysWOW64\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 131795770645381936 0x7ffad0270000 1908736 C:\Windows\SYSTEM32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 52 5924 664 6 00000000:000003e4 131765805232900810 0 0 0 Обязательная метка\Обязательный уровень системы NT AUTHORITY\NETWORK SERVICE wmiprvse.exe C:\Windows\sysWOW64\wbem\wmiprvse.exe C:\Windows\sysWOW64\wbem\wmiprvse.exe -Embedding Microsoft Corporation 10.0.14393.2155 (rs1_release_1.180305-1842) WMI Provider Host 131795770645382027 0x950000 434176 C:\Windows\sysWOW64\wbem\wmiprvse.exe 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation WMI Provider Host 131795770645382027 0x5c020000 335872 C:\Windows\System32\wow64.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation Win32 Emulation on NT64 131795770645382027 0x5c080000 487424 C:\Windows\System32\wow64win.dll 10.0.14393.1884 (rs1_release.171101-1233) Microsoft Corporation Wow64 Console and Win32 API Logging 131795770645382027 0x5c100000 40960 C:\Windows\System32\wow64cpu.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation AMD64 Wow64 CPU 131795770645382027 0x5fec0000 794624 C:\Windows\SysWOW64\wbem\FastProx.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation WMI Custom Marshaller 131795770645382027 0x5ffa0000 421888 C:\Windows\SysWOW64\wbemcomn.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation WMI 131795770645382027 0x60130000 36864 C:\Windows\SysWOW64\storagewmi_passthru.dll 10.0.14393.103 (rs1_release_inmarket.160819-1924) Microsoft Corporation WMI PassThru Provider for Storage Management 131795770645382027 0x60140000 114688 C:\Windows\SysWOW64\wbem\wmiutils.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation WMI 131795770645382027 0x60160000 73728 C:\Windows\SysWOW64\NCObjAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation 131795770645382027 0x604d0000 36864 C:\Windows\SysWOW64\delegatorprovider.dll 10.0.14393.103 (rs1_release_inmarket.160819-1924) Microsoft Corporation WMI PassThru Provider for Storage Management 131795770645382027 0x74190000 110592 C:\Windows\SysWOW64\bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795770645382027 0x747d0000 40960 C:\Windows\SysWOW64\CRYPTBASE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base cryptographic API DLL 131795770645382027 0x747e0000 126976 C:\Windows\SysWOW64\SspiCli.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Security Support Provider Interface 131795770645382027 0x74910000 2170880 C:\Windows\SysWOW64\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795770645382027 0x74b30000 53248 C:\Windows\SysWOW64\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795770645382027 0x74b60000 790528 C:\Windows\SysWOW64\RPCRT4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795770645382027 0x74c30000 1417216 C:\Windows\SysWOW64\gdi32full.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation GDI Client DLL 131795770645382027 0x74da0000 778240 C:\Windows\SysWOW64\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795770645382027 0x74ef0000 540672 C:\Windows\SysWOW64\clbcatq.dll 2001.12.10941.16384 (rs1_release.160715-1616) Microsoft Corporation COM+ Configuration Catalog 131795770645382027 0x74fd0000 405504 C:\Windows\SysWOW64\WS2_32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation 32-разрядная библиотека Windows Socket 2.0 131795770645382027 0x751e0000 1708032 C:\Windows\SysWOW64\KERNELBASE.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645382027 0x75390000 266240 C:\Windows\SysWOW64\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795770645382027 0x75560000 487424 C:\Windows\SysWOW64\advapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795770645382027 0x755e0000 917504 C:\Windows\SysWOW64\KERNEL32.DLL 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645382027 0x774d0000 86016 C:\Windows\SysWOW64\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795770645382027 0x77560000 1437696 C:\Windows\SysWOW64\user32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795770645382027 0x776c0000 368640 C:\Windows\SysWOW64\bcryptPrimitives.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation Windows Cryptographic Primitives Library 131795770645382027 0x77780000 503808 C:\Windows\SysWOW64\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645382027 0x77800000 606208 C:\Windows\SysWOW64\OLEAUT32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795770645382027 0x77bb0000 176128 C:\Windows\SysWOW64\GDI32.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation GDI Client DLL 131795770645382027 0x77d20000 1585152 C:\Windows\SysWOW64\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 131795770645382027 0x7ffad0270000 1908736 C:\Windows\SYSTEM32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 54 4408 348 24 00000000:0031f1ab 131765812380694767 0 0 1 Обязательная метка\Высокий обязательный уровень WIN-0UOTFKKVN1S\User taskhostw.exe C:\Windows\system32\taskhostw.exe taskhostw.exe Microsoft Corporation 10.0.14393.0 (rs1_release.160715-1616) Хост-процесс для задач Windows 131795770645382224 0x17826230000 12288 C:\Windows\SYSTEM32\sfc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows File Protection 131795770645382224 0x7ff794e10000 102400 C:\Windows\system32\taskhostw.exe 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Хост-процесс для задач Windows 131795770645382224 0x7ffab1140000 1134592 C:\Windows\System32\ReAgent.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL агента восстановления Microsoft Windows 131795770645382224 0x7ffab1c40000 1302528 C:\Windows\System32\LicenseManager.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation LicenseManager 131795770645382224 0x7ffab8da0000 1675264 C:\Windows\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.14393.1715_none_aec701fbddd850fa\gdiplus.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Microsoft GDI+ 131795770645382224 0x7ffab93b0000 897024 C:\Windows\System32\TokenBroker.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Token Broker 131795770645382224 0x7ffabafc0000 700416 C:\Windows\system32\wer.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека сообщений об ошибках Windows 131795770645382224 0x7ffabb2b0000 1089536 C:\Windows\system32\SettingSyncCore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Setting Synchronization Core 131795770645382224 0x7ffabbd20000 106496 C:\Windows\SYSTEM32\settingsyncpolicy.dll 10.0.14393.82 (rs1_release.160805-1735) Microsoft Corporation SettingSync Policy 131795770645382224 0x7ffabe000000 409600 C:\Windows\system32\WinSATAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows System Assessment Tool API 131795770645382224 0x7ffabe850000 155648 C:\Windows\System32\IDStore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Identity Store 131795770645382224 0x7ffabef80000 69632 C:\Windows\SYSTEM32\sfc_os.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows File Protection 131795770645382224 0x7ffabefd0000 258048 C:\Windows\system32\AEPIC.dll 10.0.17060.1029 (WinBuild.160101.0800) Microsoft Corporation Application Experience Program Cache 131795770645382224 0x7ffabf050000 225280 C:\Windows\System32\sdiageng.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Подсистема выполнения сценариев диагностики 131795770645382224 0x7ffabf1d0000 192512 C:\Windows\system32\cryptnet.dll 10.0.14393.2035 (rs1_release_inmarket.180110-1910) Microsoft Corporation Crypto Network Related API 131795770645382224 0x7ffabf330000 2457600 C:\Windows\System32\msxml6.dll 6.30.14393.2156 Microsoft Corporation MSXML 6.0 131795770645382224 0x7ffabfbe0000 1011712 C:\Windows\System32\Windows.Security.Authentication.OnlineId.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation Windows Runtime OnlineId Authentication DLL 131795770645382224 0x7ffabff60000 135168 C:\Windows\system32\ncryptsslp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft SChannel Provider 131795770645382224 0x7ffac0ad0000 86016 C:\Windows\SYSTEM32\mskeyprotect.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик защиты ключей (Майкрософт) 131795770645382224 0x7ffac0bf0000 3559424 C:\Windows\System32\ActXPrxy.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation ActiveX Interface Marshaling Library 131795770645382224 0x7ffac1d60000 589824 C:\Windows\system32\webio.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API протоколов передачи по Веб 131795770645382224 0x7ffac23c0000 331776 C:\Windows\System32\OneCoreCommonProxyStub.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation OneCore Common Proxy Stub 131795770645382224 0x7ffac2750000 106496 C:\Windows\System32\bcd.dll 10.0.14393.1794 (rs1_release.171008-1615) Microsoft Corporation BCD DLL 131795770645382224 0x7ffac2b80000 40960 C:\Windows\system32\VERSION.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Version Checking and File Installation Libraries 131795770645382224 0x7ffac2c30000 135168 C:\Windows\System32\CLIPC.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиент платформы лицензирования клиента 131795770645382224 0x7ffac3810000 167936 C:\Windows\System32\Cabinet.dll 5.00 (rs1_release.160715-1616) Microsoft Corporation Microsoft® Cabinet File API 131795770645382224 0x7ffac3cb0000 2772992 C:\Windows\SYSTEM32\iertutil.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служебная программа времени выполнения для Internet Explorer 131795770645382224 0x7ffac4000000 274432 C:\Windows\SYSTEM32\policymanager.dll 10.0.14393.2035 (rs1_release_inmarket.180110-1910) Microsoft Corporation Policy Manager DLL 131795770645382224 0x7ffac4050000 118784 C:\Windows\System32\wdi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Инфраструктура диагностики Windows 131795770645382224 0x7ffac4ae0000 69632 C:\Windows\System32\sdiagschd.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Запланированная задача сценариев проверки 131795770645382224 0x7ffac4b00000 45056 C:\Windows\System32\MemoryDiagnostic.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Обработчик задач средства проверки памяти Windows (Майкрософт) 131795770645382224 0x7ffac5c80000 90112 C:\Windows\System32\TempSignedLicenseExchangeTask.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation TempSignedLicenseExchangeTask Task 131795770645382224 0x7ffac60e0000 221184 C:\Windows\system32\XmlLite.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft XmlLite Library 131795770645382224 0x7ffac6610000 40960 C:\Windows\System32\rasadhlp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Remote Access AutoDial Helper 131795770645382224 0x7ffac69c0000 839680 C:\Windows\system32\WINHTTP.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Службы HTTP Windows 131795770645382224 0x7ffac6c40000 2596864 C:\Windows\WinSxS\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.14393.953_none_42151e83c686086b\COMCTL32.dll 6.10 (rs1_release_inmarket.170303-1614) Microsoft Corporation Библиотека элементов управления взаимодействия с пользователем 131795770645382224 0x7ffac79c0000 57344 C:\Windows\System32\npmproxy.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Network List Manager Proxy 131795770645382224 0x7ffac83d0000 106496 C:\Windows\SYSTEM32\dhcpcsvc.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служба DHCP-клиента 131795770645382224 0x7ffac83f0000 90112 C:\Windows\SYSTEM32\dhcpcsvc6.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиент DHCPv6 131795770645382224 0x7ffac8810000 45056 C:\Windows\SYSTEM32\WINNSI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Network Store Information RPC interface 131795770645382224 0x7ffac8cf0000 815104 C:\Windows\System32\taskschd.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Task Scheduler COM API 131795770645382224 0x7ffac8dc0000 167936 C:\Windows\system32\dbgcore.DLL 10.0.14321.1024 (debuggers(dbg).160715-1616) Microsoft Windows Core Debugging Helpers 131795770645382224 0x7ffac8df0000 1646592 C:\Windows\system32\dbghelp.dll 10.0.14321.1024 (rs1_release.160715-1616) Microsoft Windows Image Helper 131795770645382224 0x7ffac9220000 397312 C:\Windows\System32\wevtapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API настройки и использования событий 131795770645382224 0x7ffac92e0000 1269760 C:\Windows\System32\WinTypes.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL основных типов Windows 131795770645382224 0x7ffac9f10000 221184 C:\Windows\System32\netprofm.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Network List Manager 131795770645382224 0x7ffaca200000 32768 C:\Windows\System32\ReAgentTask.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Обработчик задач агента восстановления Microsoft Windows 131795770645382224 0x7ffaca210000 225280 C:\Windows\system32\RstrtMgr.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Диспетчер перезапуска 131795770645382224 0x7ffaca4e0000 77824 C:\Windows\SYSTEM32\wtsapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Remote Desktop Session Host Server SDK APIs 131795770645382224 0x7ffaca5e0000 155648 C:\Windows\system32\dwmapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Интерфейс API диспетчера окон рабочего стола (Майкрософт) 131795770645382224 0x7ffaca610000 143360 C:\Windows\System32\SAMLIB.dll 10.0.14393.82 (rs1_release.160805-1735) Microsoft Corporation SAM Library DLL 131795770645382224 0x7ffacac00000 94208 C:\Windows\system32\radarrs.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation программа устранения нехватки системных ресурсов Microsoft Windows 131795770645382224 0x7ffacaf00000 610304 C:\Windows\system32\uxtheme.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека тем UxTheme (Microsoft) 131795770645382224 0x7ffacb140000 593920 C:\Windows\SYSTEM32\msvcp110_win.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Microsoft® STL110 C++ Runtime Library 131795770645382224 0x7ffacb1e0000 1163264 C:\Windows\System32\twinapi.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation twinapi.appcore 131795770645382224 0x7ffacb420000 204800 C:\Windows\SYSTEM32\ntmarta.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик Windows NT MARTA 131795770645382224 0x7ffacb6f0000 143360 C:\Windows\SYSTEM32\gpapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиентские функции API групповой политики 131795770645382224 0x7ffacb780000 651264 C:\Windows\system32\dxgi.dll 10.0.14393.953 (rs1_release_inmarket.170303-1614) Microsoft Corporation DirectX Graphics Infrastructure 131795770645382224 0x7ffacbaf0000 495616 C:\Windows\system32\schannel.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик безопасности TLS/SSL 131795770645382224 0x7ffacbbb0000 208896 C:\Windows\system32\rsaenh.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Enhanced Cryptographic Provider 131795770645382224 0x7ffacbbf0000 40960 C:\Windows\System32\DPAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Data Protection API 131795770645382224 0x7ffacbd30000 229376 C:\Windows\SYSTEM32\IPHLPAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API вспомогательного приложения IP 131795770645382224 0x7ffacbd70000 659456 C:\Windows\system32\DNSAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Динамическая библиотека API DNS-клиента 131795770645382224 0x7ffacbe40000 126976 C:\Windows\system32\USERENV.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Userenv 131795770645382224 0x7ffacbfb0000 376832 C:\Windows\system32\mswsock.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширение поставщика службы API Microsoft Windows Sockets 2.0 131795770645382224 0x7ffacc150000 94208 C:\Windows\system32\CRYPTSP.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Cryptographic Service Provider API 131795770645382224 0x7ffacc170000 45056 C:\Windows\system32\CRYPTBASE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base cryptographic API DLL 131795770645382224 0x7ffacc1f0000 241664 C:\Windows\system32\NTASN1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft ASN.1 API 131795770645382224 0x7ffacc230000 155648 C:\Windows\system32\ncrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Маршрутизатор Windows NCrypt 131795770645382224 0x7ffacc350000 180224 C:\Windows\system32\SspiCli.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Security Support Provider Interface 131795770645382224 0x7ffacc520000 622592 C:\Windows\SYSTEM32\sxs.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Fusion 2.5 131795770645382224 0x7ffacc620000 176128 C:\Windows\system32\bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795770645382224 0x7ffacc6e0000 61440 C:\Windows\System32\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795770645382224 0x7ffacc6f0000 311296 C:\Windows\System32\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795770645382224 0x7ffacc740000 81920 C:\Windows\System32\profapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Profile Basic API 131795770645382224 0x7ffacc760000 65536 C:\Windows\System32\MSASN1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ASN.1 Runtime APIs 131795770645382224 0x7ffacc8f0000 1003520 C:\Windows\System32\ucrtbase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645382224 0x7ffacc9f0000 434176 C:\Windows\System32\bcryptPrimitives.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Cryptographic Primitives Library 131795770645382224 0x7ffacca60000 122880 C:\Windows\System32\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795770645382224 0x7ffacca80000 348160 C:\Windows\System32\WINTRUST.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation Microsoft Trust Verification APIs 131795770645382224 0x7ffaccae0000 692224 C:\Windows\System32\shcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795770645382224 0x7ffaccb90000 7180288 C:\Windows\System32\windows.storage.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API хранения Microsoft WinRT 131795770645382224 0x7ffacd270000 2215936 C:\Windows\System32\KERNELBASE.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645382224 0x7ffacd490000 1871872 C:\Windows\System32\CRYPT32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API32 криптографии 131795770645382224 0x7ffacd710000 638976 C:\Windows\System32\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645382224 0x7ffacd7b0000 270336 C:\Windows\System32\cfgmgr32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Configuration Manager DLL 131795770645382224 0x7ffacd810000 22056960 C:\Windows\System32\SHELL32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Общая библиотека оболочки Windows 131795770645382224 0x7ffaced20000 782336 C:\Windows\System32\OLEAUT32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795770645382224 0x7ffacee50000 1183744 C:\Windows\System32\RPCRT4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795770645382224 0x7ffacef80000 32768 C:\Windows\System32\NSI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation NSI User-mode interface DLL 131795770645382224 0x7ffacef90000 647168 C:\Windows\System32\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795770645382224 0x7ffacf030000 651264 C:\Windows\System32\clbcatq.dll 2001.12.10941.16384 (rs1_release.160715-1616) Microsoft Corporation COM+ Configuration Catalog 131795770645382224 0x7ffacf0d0000 704512 C:\Windows\System32\KERNEL32.DLL 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645382224 0x7ffacf1e0000 1417216 C:\Windows\System32\MSCTF.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Серверная библиотека MSCTF 131795770645382224 0x7ffacf340000 4362240 C:\Windows\System32\SETUPAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Setup API 131795770645382224 0x7ffacf770000 212992 C:\Windows\System32\GDI32.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation GDI Client DLL 131795770645382224 0x7ffacf820000 434176 C:\Windows\System32\WS2_32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation 32-разрядная библиотека Windows Socket 2.0 131795770645382224 0x7ffacf890000 188416 C:\Windows\System32\imm32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Multi-User Windows IMM32 API Client DLL 131795770645382224 0x7ffacf8c0000 1462272 C:\Windows\System32\USER32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795770645382224 0x7ffacfb30000 2916352 C:\Windows\System32\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795770645382224 0x7ffacfe00000 114688 C:\Windows\System32\imagehlp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT Image Helper 131795770645382224 0x7ffacfe20000 663552 C:\Windows\System32\ADVAPI32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795770645382224 0x7ffad0070000 1277952 C:\Windows\System32\ole32.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft OLE для Windows 131795770645382224 0x7ffad01b0000 335872 C:\Windows\System32\SHLWAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека небольших программ оболочки 131795770645382224 0x7ffad0210000 364544 C:\Windows\System32\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795770645382224 0x7ffad0270000 1908736 C:\Windows\SYSTEM32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 55 6944 664 6 00000000:0031f1da 131767576301455145 0 0 1 Обязательная метка\Низкий обязательный уровень WIN-0UOTFKKVN1S\User SkypeHost.exe C:\Program Files\WindowsApps\Microsoft.SkypeApp_12.1815.210.0_x64__kzf8qxf38zg5c\SkypeHost.exe "C:\Program Files\WindowsApps\Microsoft.SkypeApp_12.1815.210.0_x64__kzf8qxf38zg5c\SkypeHost.exe" -ServerName:SkypeHost.ServerServer Microsoft Corporation 12.1815.210.0 Microsoft Skype 131795770645382388 0x7ff7e8670000 102400 C:\Program Files\WindowsApps\Microsoft.SkypeApp_12.1815.210.0_x64__kzf8qxf38zg5c\SkypeHost.exe 12.1815.210.0 Microsoft Corporation Microsoft Skype 131795770645382388 0x7ffaae130000 22437888 C:\Program Files\WindowsApps\Microsoft.SkypeApp_12.1815.210.0_x64__kzf8qxf38zg5c\SkyWrap.dll 12.1815.210.0 Microsoft Corporation Microsoft Skype 131795770645382388 0x7ffabaab0000 94208 C:\Windows\SYSTEM32\profext.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation profext 131795770645382388 0x7ffabc530000 241664 C:\Windows\SYSTEM32\Windows.Networking.HostName.dll 10.0.14393.953 (rs1_release_inmarket.170303-1614) Microsoft Corporation Windows.Networking.HostName DLL 131795770645382388 0x7ffabca50000 819200 C:\Windows\System32\Windows.Security.Authentication.Web.Core.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Token Broker WinRT API 131795770645382388 0x7ffabe150000 2691072 C:\Program Files\WindowsApps\Microsoft.SkypeApp_12.1815.210.0_x64__kzf8qxf38zg5c\skypert.dll 2018.15.01.31 SkypeRT shared library 131795770645382388 0x7ffabea90000 135168 C:\Windows\System32\Windows.ApplicationModel.Background.SystemEventsBroker.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Background System Events Broker API Server 131795770645382388 0x7ffabeac0000 335872 C:\Windows\System32\Windows.Storage.ApplicationData.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Application Data API Server 131795770645382388 0x7ffac0470000 1478656 C:\Windows\SYSTEM32\MFPlat.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Media Foundation Platform DLL 131795770645382388 0x7ffac0910000 724992 C:\Windows\SYSTEM32\Windows.Networking.Connectivity.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Networking Connectivity Runtime DLL 131795770645382388 0x7ffac0bf0000 3559424 C:\Windows\System32\ActXPrxy.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation ActiveX Interface Marshaling Library 131795770645382388 0x7ffac1a80000 978944 C:\Windows\SYSTEM32\Windows.Networking.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows.Networking DLL 131795770645382388 0x7ffac1b90000 630784 C:\Program Files\WindowsApps\Microsoft.VCLibs.140.00_14.0.25426.0_x64__8wekyb3d8bbwe\MSVCP140_APP.dll 14.11.25426.0 built by: VCTOOLSREL Microsoft Corporation Microsoft® C Runtime Library 131795770645382388 0x7ffac1e50000 188416 C:\Windows\SYSTEM32\RTWorkQ.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL для WorkQueue реального времени 131795770645382388 0x7ffac23c0000 331776 C:\Windows\System32\OneCoreCommonProxyStub.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation OneCore Common Proxy Stub 131795770645382388 0x7ffac2b30000 286720 C:\Windows\System32\usermgrproxy.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation UserMgrProxy 131795770645382388 0x7ffac2c30000 135168 C:\Windows\SYSTEM32\clipc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиент платформы лицензирования клиента 131795770645382388 0x7ffac3cb0000 2772992 C:\Windows\System32\iertutil.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служебная программа времени выполнения для Internet Explorer 131795770645382388 0x7ffac4b10000 307200 C:\Program Files\WindowsApps\Microsoft.VCLibs.140.00_14.0.25426.0_x64__8wekyb3d8bbwe\CONCRT140_APP.dll 14.11.25426.0 built by: VCTOOLSREL Microsoft Corporation Microsoft® Concurrency Runtime Library 131795770645382388 0x7ffac4c60000 385024 C:\Program Files\WindowsApps\Microsoft.VCLibs.140.00_14.0.25426.0_x64__8wekyb3d8bbwe\vccorlib140_app.DLL 14.11.25426.0 built by: VCTOOLSREL Microsoft Corporation Microsoft ® VC WinRT core library 131795770645382388 0x7ffac5070000 798720 C:\Windows\System32\Windows.Web.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL веб-клиента 131795770645382388 0x7ffac6620000 192512 C:\Windows\System32\biwinrt.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation Windows Background Broker Infrastructure 131795770645382388 0x7ffac7580000 1077248 C:\Windows\SYSTEM32\mrmcorer.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Windows MRM 131795770645382388 0x7ffac7720000 1601536 C:\Windows\System32\OneCoreUAPCommonProxyStub.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation OneCoreUAP Common Proxy Stub 131795770645382388 0x7ffac7c80000 208896 C:\Program Files\WindowsApps\Microsoft.SkypeApp_12.1815.210.0_x64__kzf8qxf38zg5c\SkypeBackgroundTasks.dll 12.1815.210.0 Microsoft Corporation Microsoft Skype 131795770645382388 0x7ffac7d80000 49152 C:\Windows\System32\Windows.ApplicationModel.Background.TimeBroker.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Background Time Broker API Server 131795770645382388 0x7ffac8540000 286720 C:\Windows\System32\vaultcli.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиентская библиотека хранилища учетных данных 131795770645382388 0x7ffac92e0000 1269760 C:\Windows\System32\WinTypes.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL основных типов Windows 131795770645382388 0x7ffaca260000 45056 C:\Windows\SYSTEM32\SystemEventsBrokerClient.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation system Events Broker Client Library 131795770645382388 0x7ffaca340000 1593344 C:\Windows\SYSTEM32\PROPSYS.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Система страниц свойств (Майкрософт) 131795770645382388 0x7ffacab80000 90112 C:\Program Files\WindowsApps\Microsoft.VCLibs.140.00_14.0.25426.0_x64__8wekyb3d8bbwe\VCRUNTIME140_APP.dll 14.11.25426.0 built by: VCTOOLSREL Microsoft Corporation Microsoft® C Runtime Library 131795770645382388 0x7ffacb1e0000 1163264 C:\Windows\SYSTEM32\twinapi.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation twinapi.appcore 131795770645382388 0x7ffacb360000 176128 C:\Windows\SYSTEM32\fwbase.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Firewall Base DLL 131795770645382388 0x7ffacb420000 204800 C:\Windows\SYSTEM32\ntmarta.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик Windows NT MARTA 131795770645382388 0x7ffacb460000 548864 C:\Windows\SYSTEM32\FirewallAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API брандмауэра Windows 131795770645382388 0x7ffacbbf0000 40960 C:\Windows\SYSTEM32\DPAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Data Protection API 131795770645382388 0x7ffacbd30000 229376 C:\Windows\SYSTEM32\IPHLPAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API вспомогательного приложения IP 131795770645382388 0x7ffacbe40000 126976 C:\Windows\SYSTEM32\USERENV.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Userenv 131795770645382388 0x7ffacc170000 45056 C:\Windows\SYSTEM32\CRYPTBASE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base cryptographic API DLL 131795770645382388 0x7ffacc620000 176128 C:\Windows\SYSTEM32\bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795770645382388 0x7ffacc6e0000 61440 C:\Windows\System32\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795770645382388 0x7ffacc6f0000 311296 C:\Windows\System32\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795770645382388 0x7ffacc740000 81920 C:\Windows\System32\profapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Profile Basic API 131795770645382388 0x7ffacc760000 65536 C:\Windows\System32\MSASN1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ASN.1 Runtime APIs 131795770645382388 0x7ffacc8f0000 1003520 C:\Windows\System32\ucrtbase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645382388 0x7ffacc9f0000 434176 C:\Windows\System32\bcryptPrimitives.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Cryptographic Primitives Library 131795770645382388 0x7ffacca60000 122880 C:\Windows\System32\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795770645382388 0x7ffaccae0000 692224 C:\Windows\System32\shcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795770645382388 0x7ffaccb90000 7180288 C:\Windows\System32\windows.storage.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API хранения Microsoft WinRT 131795770645382388 0x7ffacd270000 2215936 C:\Windows\System32\KERNELBASE.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645382388 0x7ffacd490000 1871872 C:\Windows\System32\CRYPT32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API32 криптографии 131795770645382388 0x7ffacd710000 638976 C:\Windows\System32\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645382388 0x7ffacd7b0000 270336 C:\Windows\System32\cfgmgr32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Configuration Manager DLL 131795770645382388 0x7ffaced20000 782336 C:\Windows\System32\OLEAUT32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795770645382388 0x7ffacee50000 1183744 C:\Windows\System32\RPCRT4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795770645382388 0x7ffacef90000 647168 C:\Windows\System32\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795770645382388 0x7ffacf0d0000 704512 C:\Windows\System32\KERNEL32.DLL 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645382388 0x7ffacf770000 212992 C:\Windows\System32\GDI32.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation GDI Client DLL 131795770645382388 0x7ffacf820000 434176 C:\Windows\System32\WS2_32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation 32-разрядная библиотека Windows Socket 2.0 131795770645382388 0x7ffacf890000 188416 C:\Windows\System32\IMM32.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Multi-User Windows IMM32 API Client DLL 131795770645382388 0x7ffacf8c0000 1462272 C:\Windows\System32\USER32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795770645382388 0x7ffacfb30000 2916352 C:\Windows\System32\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795770645382388 0x7ffacfe20000 663552 C:\Windows\System32\advapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795770645382388 0x7ffad01b0000 335872 C:\Windows\System32\shlwapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека небольших программ оболочки 131795770645382388 0x7ffad0210000 364544 C:\Windows\System32\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795770645382388 0x7ffad0270000 1908736 C:\Windows\SYSTEM32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 56 1048 580 4 00000000:000003e7 131768729449405953 0 0 1 Обязательная метка\Обязательный уровень системы NT AUTHORITY\СИСТЕМА sedsvc.exe C:\Program Files\rempl\sedsvc.exe "C:\Program Files\rempl\sedsvc.exe" Microsoft Corporation 10.0.16299.10000 (WinBuild.160101.0800) sedsvc 131795770645382485 0x7ff751430000 307200 C:\Program Files\rempl\sedsvc.exe 10.0.16299.10000 (WinBuild.160101.0800) Microsoft Corporation sedsvc 131795770645382485 0x7ffabf5d0000 2924544 C:\Windows\SYSTEM32\WININET.dll 11.00.14393.447 (rs1_release_inmarket.161102-0100) Microsoft Corporation Расширения Интернета для Win32 131795770645382485 0x7ffac2b80000 40960 C:\Windows\SYSTEM32\VERSION.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Version Checking and File Installation Libraries 131795770645382485 0x7ffac69c0000 839680 C:\Windows\SYSTEM32\WINHTTP.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Службы HTTP Windows 131795770645382485 0x7ffac8cf0000 815104 C:\Windows\System32\taskschd.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Task Scheduler COM API 131795770645382485 0x7ffaca4e0000 77824 C:\Windows\SYSTEM32\WTSAPI32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Remote Desktop Session Host Server SDK APIs 131795770645382485 0x7ffacb6f0000 143360 C:\Windows\SYSTEM32\gpapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиентские функции API групповой политики 131795770645382485 0x7ffacbbb0000 208896 C:\Windows\system32\rsaenh.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Enhanced Cryptographic Provider 131795770645382485 0x7ffacc150000 94208 C:\Windows\SYSTEM32\CRYPTSP.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Cryptographic Service Provider API 131795770645382485 0x7ffacc170000 45056 C:\Windows\SYSTEM32\CRYPTBASE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base cryptographic API DLL 131795770645382485 0x7ffacc350000 180224 C:\Windows\System32\SspiCli.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Security Support Provider Interface 131795770645382485 0x7ffacc620000 176128 C:\Windows\SYSTEM32\bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795770645382485 0x7ffacc6e0000 61440 C:\Windows\System32\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795770645382485 0x7ffacc6f0000 311296 C:\Windows\System32\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795770645382485 0x7ffacc740000 81920 C:\Windows\System32\profapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Profile Basic API 131795770645382485 0x7ffacc760000 65536 C:\Windows\System32\MSASN1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ASN.1 Runtime APIs 131795770645382485 0x7ffacc8f0000 1003520 C:\Windows\System32\ucrtbase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645382485 0x7ffacc9f0000 434176 C:\Windows\System32\bcryptPrimitives.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Cryptographic Primitives Library 131795770645382485 0x7ffacca60000 122880 C:\Windows\System32\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795770645382485 0x7ffacca80000 348160 C:\Windows\System32\WINTRUST.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation Microsoft Trust Verification APIs 131795770645382485 0x7ffaccae0000 692224 C:\Windows\System32\shcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795770645382485 0x7ffaccb90000 7180288 C:\Windows\System32\windows.storage.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API хранения Microsoft WinRT 131795770645382485 0x7ffacd270000 2215936 C:\Windows\System32\KERNELBASE.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645382485 0x7ffacd490000 1871872 C:\Windows\System32\CRYPT32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API32 криптографии 131795770645382485 0x7ffacd710000 638976 C:\Windows\System32\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645382485 0x7ffacd7b0000 270336 C:\Windows\System32\cfgmgr32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Configuration Manager DLL 131795770645382485 0x7ffacd810000 22056960 C:\Windows\System32\SHELL32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Общая библиотека оболочки Windows 131795770645382485 0x7ffaced20000 782336 C:\Windows\System32\OLEAUT32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795770645382485 0x7ffacee50000 1183744 C:\Windows\System32\RPCRT4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795770645382485 0x7ffacef90000 647168 C:\Windows\System32\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795770645382485 0x7ffacf030000 651264 C:\Windows\System32\clbcatq.dll 2001.12.10941.16384 (rs1_release.160715-1616) Microsoft Corporation COM+ Configuration Catalog 131795770645382485 0x7ffacf0d0000 704512 C:\Windows\System32\KERNEL32.DLL 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645382485 0x7ffacf340000 4362240 C:\Windows\System32\setupapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Setup API 131795770645382485 0x7ffacf770000 212992 C:\Windows\System32\GDI32.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation GDI Client DLL 131795770645382485 0x7ffacf8c0000 1462272 C:\Windows\System32\USER32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795770645382485 0x7ffacfb30000 2916352 C:\Windows\System32\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795770645382485 0x7ffacfe00000 114688 C:\Windows\System32\imagehlp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT Image Helper 131795770645382485 0x7ffacfe20000 663552 C:\Windows\System32\advapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795770645382485 0x7ffad01b0000 335872 C:\Windows\System32\shlwapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека небольших программ оболочки 131795770645382485 0x7ffad0210000 364544 C:\Windows\System32\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795770645382485 0x7ffad0270000 1908736 C:\Windows\SYSTEM32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 57 7744 3108 11 00000000:0031f1da 131769081112364684 0 0 0 Обязательная метка\Средний обязательный уровень WIN-0UOTFKKVN1S\User browser.exe C:\Users\User\AppData\Local\Yandex\YandexBrowser\Application\browser.exe "C:\Users\User\AppData\Local\Yandex\YandexBrowser\Application\browser.exe" YANDEX LLC 18.6.1.770 Yandex 131795770645382623 0x10e0000 2519040 C:\Users\User\AppData\Local\Yandex\YandexBrowser\Application\browser.exe 18.6.1.770 YANDEX LLC Yandex 131795770645382623 0x11330000 172032 C:\Windows\SysWOW64\RTWorkQ.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL для WorkQueue реального времени 131795770645382623 0x5c020000 335872 C:\Windows\System32\wow64.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation Win32 Emulation on NT64 131795770645382623 0x5c080000 487424 C:\Windows\System32\wow64win.dll 10.0.14393.1884 (rs1_release.171101-1233) Microsoft Corporation Wow64 Console and Win32 API Logging 131795770645382623 0x5c100000 40960 C:\Windows\System32\wow64cpu.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation AMD64 Wow64 CPU 131795770645382623 0x5fec0000 794624 C:\Windows\SysWOW64\wbem\fastprox.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation WMI Custom Marshaller 131795770645382623 0x5ffa0000 421888 C:\Windows\SysWOW64\wbemcomn.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation WMI 131795770645382623 0x60010000 53248 C:\Windows\SysWOW64\wbem\wbemprox.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation WMI 131795770645382623 0x60750000 1556480 C:\Program Files (x86)\360\Total Security\safemon\safemon.dll 8, 4, 0, 1420 Qihu 360 Software Co., Ltd. 360 Internet Security Internet Protection 131795770645382623 0x60900000 720896 C:\Program Files (x86)\360\Total Security\safemon\urlproc.dll 2, 9, 5, 1260 Qihu 360 Software Co., Ltd. 360 Internet Security 2013 Internet Protection 131795770645382623 0x622f0000 520192 C:\Program Files (x86)\360\Total Security\deepscan\heavygate.dll 3, 8, 11, 1 Qihu 360 Software Co., Ltd. 360 Total Security Cloud Security 131795770645382623 0x62980000 376832 C:\Program Files (x86)\360\Total Security\360NetBase.dll 7, 25, 0, 76 360.cn 360安全卫士 网络基础模块 131795770645382623 0x68b00000 44998656 C:\Users\User\AppData\Local\Yandex\YandexBrowser\Application\18.6.1.770\browser.dll 18.6.1.770 YANDEX LLC Yandex 131795770645382623 0x6b6b0000 36864 C:\Windows\SysWOW64\atlthunk.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation atlthunk.dll 131795770645382623 0x6b6d0000 102400 C:\Program Files (x86)\360\Total Security\I18N.dll 1, 0, 0, 1016 Qihu 360 Software Co., Ltd. 360 Total Security 131795770645382623 0x6bf00000 3715072 C:\Windows\SysWOW64\msi.dll 5.0.14393.2155 Microsoft Corporation Windows Installer 131795770645382623 0x6c290000 987136 C:\Windows\SysWOW64\twinapi.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation twinapi.appcore 131795770645382623 0x6c390000 1126400 C:\Windows\SysWOW64\dcomp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft DirectComposition Library 131795770645382623 0x6c4b0000 278528 C:\Windows\SysWOW64\dataexchange.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation Data exchange 131795770645382623 0x6c540000 483328 C:\Windows\SysWOW64\webio.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API протоколов передачи по Веб 131795770645382623 0x6cd50000 106496 C:\Windows\SysWOW64\SAMLIB.dll 10.0.14393.82 (rs1_release.160805-1735) Microsoft Corporation SAM Library DLL 131795770645382623 0x6ce30000 421888 C:\Windows\SysWOW64\msvcp110_win.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Microsoft® STL110 C++ Runtime Library 131795770645382623 0x6cf60000 569344 C:\Windows\SysWOW64\taskschd.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Task Scheduler COM API 131795770645382623 0x6d080000 151552 C:\Windows\SysWOW64\cryptnet.dll 10.0.14393.2035 (rs1_release_inmarket.180110-1910) Microsoft Corporation Crypto Network Related API 131795770645382623 0x6d0b0000 847872 C:\Windows\SysWOW64\wintypes.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL основных типов Windows 131795770645382623 0x6dc80000 90112 C:\Program Files (x86)\Windows Defender\MpOav.dll 4.10.14393.1794 (rs1_release.171008-1615) Microsoft Corporation IOfficeAntiVirus Module 131795770645382623 0x6df70000 245760 C:\Windows\SysWOW64\shdocvw.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека объектов документов и элементов управления оболочки 131795770645382623 0x6e070000 98304 C:\Windows\SysWOW64\MSACM32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Фильтр диспетчера аудиосжатия Microsoft 131795770645382623 0x6e090000 233472 C:\Windows\SysWOW64\wdmaud.drv 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Системный звуковой драйвер Winmm 131795770645382623 0x6e110000 32768 C:\Windows\SysWOW64\midimap.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft MIDI Mapper 131795770645382623 0x6e120000 40960 C:\Windows\SysWOW64\msacm32.drv 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Программа переназначения звуковых устройств 131795770645382623 0x6e130000 36864 C:\Windows\SysWOW64\AVRT.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Multimedia Realtime Runtime 131795770645382623 0x6e2a0000 4440064 C:\Windows\SysWOW64\explorerframe.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ExplorerFrame 131795770645382623 0x6e8b0000 1859584 C:\Windows\SysWOW64\mfmp4srcsnk.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL источника и приемника MPEG4 Media Foundation 131795770645382623 0x6eb60000 28672 C:\Windows\SysWOW64\ksuser.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User CSA Library 131795770645382623 0x6eb70000 790528 C:\Windows\SysWOW64\ntshrui.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширения оболочки, обеспечивающие общий доступ 131795770645382623 0x6ec40000 442368 C:\Windows\SysWOW64\twinapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation twinapi 131795770645382623 0x6eed0000 274432 C:\Windows\SysWOW64\thumbcache.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Кэш эскизов Майкрософт 131795770645382623 0x6ef30000 647168 C:\Windows\SysWOW64\evr.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека DLL средства отображения видео 131795770645382623 0x6efd0000 458752 C:\Windows\SysWOW64\msauddecmft.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Media Foundation Audio Decoders 131795770645382623 0x6f790000 1085440 C:\Windows\SysWOW64\mfperfhelper.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation MFPerf DLL 131795770645382623 0x6f8a0000 2220032 C:\Windows\SysWOW64\msmpeg2vdec.dll 10.0.14393.953 (rs1_release_inmarket.170303-1614) Microsoft Corporation Microsoft DTV-DVD Video Decoder 131795770645382623 0x6fac0000 1130496 C:\Windows\SysWOW64\mfplat.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Media Foundation Platform DLL 131795770645382623 0x6fc70000 385024 C:\Windows\SysWOW64\FirewallAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API брандмауэра Windows 131795770645382623 0x6fd00000 73728 C:\Windows\SysWOW64\mssprxy.dll 7.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation Microsoft Search Proxy 131795770645382623 0x6fd20000 61440 C:\Windows\SysWOW64\cscapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Offline Files Win32 API 131795770645382623 0x6fd30000 139264 C:\Windows\SysWOW64\DEVOBJ.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Device Information Set DLL 131795770645382623 0x6fd60000 360448 C:\Windows\SysWOW64\MMDevAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation MMDevice API 131795770645382623 0x6fdc0000 507904 C:\Windows\SysWOW64\audioses.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Сеанс обработки звука 131795770645382623 0x6fe40000 57344 C:\Windows\SysWOW64\BitsProxy.dll 7.8.14393.0 (rs1_release.160715-1616) Microsoft Corporation Background Intelligent Transfer Service Proxy 131795770645382623 0x6fe50000 241664 C:\Windows\SysWOW64\mstask.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека интерфейса планировщика заданий 131795770645382623 0x6fe90000 544768 C:\Windows\SysWOW64\mscms.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL-библиотека системы сопоставления цветов Майкрософт 131795770645382623 0x6ff90000 323584 C:\Windows\SysWOW64\wlanapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows WLAN AutoConfig Client Side API DLL 131795770645382623 0x6ffe0000 303104 C:\Windows\SysWOW64\wevtapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API настройки и использования событий 131795770645382623 0x70030000 593920 C:\Users\User\AppData\Local\Yandex\YandexBrowser\Application\18.6.1.770\browser_elf.dll 18.6.1.770 YANDEX LLC Yandex 131795770645382623 0x70140000 274432 C:\Windows\SysWOW64\WINSTA.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Winstation Library 131795770645382623 0x70190000 53248 C:\Windows\SysWOW64\LINKINFO.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Volume Tracking 131795770645382623 0x701a0000 401408 C:\Users\User\AppData\Local\Yandex\YandexBrowser\Application\18.6.1.770\dllyupdate.dll 1.2.0.1831 Yandex LLC Yandex updater (CU) 131795770645382623 0x70340000 536576 C:\Windows\SysWOW64\dxgi.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation DirectX Graphics Infrastructure 131795770645382623 0x703d0000 2056192 C:\Windows\SysWOW64\DWrite.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Службы Microsoft DirectX Typography 131795770645382623 0x705e0000 344064 C:\Windows\SysWOW64\OLEACC.dll 7.2.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Active Accessibility Core Component 131795770645382623 0x70640000 1499136 C:\Windows\SysWOW64\WindowsCodecs.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Microsoft Windows Codecs Library 131795770645382623 0x707d0000 86016 C:\Windows\SysWOW64\SAMCLI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Security Accounts Manager Client DLL 131795770645382623 0x70a20000 94208 C:\Windows\SysWOW64\USP10.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Uniscribe Unicode script processor 131795770645382623 0x70a40000 81920 C:\Windows\SysWOW64\NLAapi.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Network Location Awareness 2 131795770645382623 0x70b00000 176128 C:\Windows\SysWOW64\wscapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API центра обеспечения безопасности Windows 131795770645382623 0x70b30000 36864 C:\Windows\SysWOW64\WINUSB.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows USB Driver User Library 131795770645382623 0x70b60000 40960 C:\Windows\SysWOW64\HID.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека пользователя HID 131795770645382623 0x70b70000 163840 C:\Windows\SysWOW64\ntmarta.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик Windows NT MARTA 131795770645382623 0x70ba0000 188416 C:\Windows\SysWOW64\FWPolicyIOMgr.dll 10.0.14393.2189 (rs1_release.180329-1711) Microsoft Corporation FwPolicyIoMgr DLL 131795770645382623 0x70bd0000 147456 C:\Windows\SysWOW64\fwbase.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Firewall Base DLL 131795770645382623 0x70c30000 114688 C:\Windows\SysWOW64\srvcli.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Server Service Client DLL 131795770645382623 0x70ca0000 45056 C:\Windows\SysWOW64\NETUTILS.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API Helpers DLL 131795770645382623 0x70cc0000 65536 C:\Windows\SysWOW64\ondemandconnroutehelper.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation On Demand Connctiond Route Helper 131795770645382623 0x70e60000 176128 C:\Windows\SysWOW64\NTASN1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft ASN.1 API 131795770645382623 0x70fd0000 1331200 C:\Windows\SysWOW64\dbghelp.dll 10.0.14321.1024 (rs1_release.160715-1616) Microsoft Windows Image Helper 131795770645382623 0x71140000 77824 C:\Windows\SysWOW64\NETAPI32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API DLL 131795770645382623 0x711f0000 32768 C:\Windows\SysWOW64\IconCodecService.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Converts a PNG part of the icon to a legacy bmp icon 131795770645382623 0x71610000 77824 C:\Windows\SysWOW64\dhcpcsvc6.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиент DHCPv6 131795770645382623 0x724f0000 57344 C:\Windows\SysWOW64\credui.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Credential Manager User Interface 131795770645382623 0x725e0000 2273280 C:\Windows\SysWOW64\iertutil.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служебная программа времени выполнения для Internet Explorer 131795770645382623 0x728e0000 1372160 C:\Windows\SysWOW64\PROPSYS.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Система страниц свойств (Майкрософт) 131795770645382623 0x72b90000 126976 C:\Windows\SysWOW64\dwmapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Интерфейс API диспетчера окон рабочего стола (Майкрософт) 131795770645382623 0x72cc0000 1658880 C:\Windows\SysWOW64\urlmon.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширения OLE32 для Win32 131795770645382623 0x73a40000 32768 C:\Windows\SysWOW64\WINNSI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Network Store Information RPC interface 131795770645382623 0x73a50000 299008 C:\Windows\SysWOW64\fwpuclnt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API пользовательского режима FWP/IPsec 131795770645382623 0x73aa0000 32768 C:\Windows\SysWOW64\DPAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Data Protection API 131795770645382623 0x73ab0000 32768 C:\Windows\SysWOW64\rasadhlp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Remote Access AutoDial Helper 131795770645382623 0x73ac0000 81920 C:\Windows\SysWOW64\dhcpcsvc.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служба DHCP-клиента 131795770645382623 0x73ae0000 40960 C:\Windows\SysWOW64\Secur32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Security Support Provider Interface 131795770645382623 0x73ee0000 61440 C:\Windows\SysWOW64\WTSAPI32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Remote Desktop Session Host Server SDK APIs 131795770645382623 0x73f00000 192512 C:\Windows\SysWOW64\IPHLPAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API вспомогательного приложения IP 131795770645382623 0x73f30000 512000 C:\Windows\SysWOW64\DNSAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Динамическая библиотека API DNS-клиента 131795770645382623 0x73ff0000 319488 C:\Windows\SysWOW64\mswsock.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширение поставщика службы API Microsoft Windows Sockets 2.0 131795770645382623 0x74040000 126976 C:\Windows\SysWOW64\gpapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиентские функции API групповой политики 131795770645382623 0x74060000 192512 C:\Windows\SysWOW64\rsaenh.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Enhanced Cryptographic Provider 131795770645382623 0x74110000 479232 C:\Windows\SysWOW64\uxtheme.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека тем UxTheme (Microsoft) 131795770645382623 0x74190000 110592 C:\Windows\SysWOW64\bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795770645382623 0x741b0000 77824 C:\Windows\SysWOW64\CRYPTSP.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Cryptographic Service Provider API 131795770645382623 0x741f0000 143360 C:\Windows\SysWOW64\WINMMBASE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base Multimedia Extension API DLL 131795770645382623 0x74230000 147456 C:\Windows\SysWOW64\WINMM.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation MCI API DLL 131795770645382623 0x74260000 2514944 C:\Windows\SysWOW64\WININET.dll 11.00.14393.447 (rs1_release_inmarket.161102-0100) Microsoft Corporation Расширения Интернета для Win32 131795770645382623 0x744d0000 2138112 C:\Windows\WinSxS\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.14393.953_none_89c2555adb023171\COMCTL32.dll 6.10 (rs1_release_inmarket.170303-1614) Microsoft Corporation Библиотека элементов управления взаимодействия с пользователем 131795770645382623 0x746e0000 32768 C:\Windows\SysWOW64\VERSION.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Version Checking and File Installation Libraries 131795770645382623 0x746f0000 106496 C:\Windows\SysWOW64\USERENV.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Userenv 131795770645382623 0x74730000 598016 C:\Windows\SysWOW64\apphelp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиентская библиотека совместимости приложений 131795770645382623 0x747d0000 40960 C:\Windows\SysWOW64\CRYPTBASE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base cryptographic API DLL 131795770645382623 0x747e0000 126976 C:\Windows\SysWOW64\SspiCli.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Security Support Provider Interface 131795770645382623 0x74800000 151552 C:\Windows\SysWOW64\IMM32.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Multi-User Windows IMM32 API Client DLL 131795770645382623 0x74910000 2170880 C:\Windows\SysWOW64\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795770645382623 0x74b30000 53248 C:\Windows\SysWOW64\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795770645382623 0x74b40000 102400 C:\Windows\SysWOW64\imagehlp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT Image Helper 131795770645382623 0x74b60000 790528 C:\Windows\SysWOW64\RPCRT4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795770645382623 0x74c30000 1417216 C:\Windows\SysWOW64\gdi32full.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation GDI Client DLL 131795770645382623 0x74d90000 24576 C:\Windows\SysWOW64\PSAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Process Status Helper 131795770645382623 0x74da0000 778240 C:\Windows\SysWOW64\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795770645382623 0x74e60000 557056 C:\Windows\SysWOW64\shcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795770645382623 0x74ef0000 540672 C:\Windows\SysWOW64\clbcatq.dll 2001.12.10941.16384 (rs1_release.160715-1616) Microsoft Corporation COM+ Configuration Catalog 131795770645382623 0x74f80000 278528 C:\Windows\SysWOW64\WINTRUST.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation Microsoft Trust Verification APIs 131795770645382623 0x74fd0000 405504 C:\Windows\SysWOW64\WS2_32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation 32-разрядная библиотека Windows Socket 2.0 131795770645382623 0x75040000 282624 C:\Windows\SysWOW64\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795770645382623 0x75090000 1265664 C:\Windows\SysWOW64\MSCTF.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Серверная библиотека MSCTF 131795770645382623 0x751d0000 57344 C:\Windows\SysWOW64\MSASN1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ASN.1 Runtime APIs 131795770645382623 0x751e0000 1708032 C:\Windows\SysWOW64\KERNELBASE.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645382623 0x75390000 266240 C:\Windows\SysWOW64\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795770645382623 0x753e0000 1560576 C:\Windows\SysWOW64\CRYPT32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API32 криптографии 131795770645382623 0x75560000 487424 C:\Windows\SysWOW64\ADVAPI32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795770645382623 0x756c0000 5693440 C:\Windows\SysWOW64\windows.storage.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API хранения Microsoft WinRT 131795770645382623 0x75c30000 372736 C:\Windows\SysWOW64\coml2.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft COM for Windows 131795770645382623 0x75c90000 286720 C:\Windows\SysWOW64\shlwapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека небольших программ оболочки 131795770645382623 0x75ce0000 20811776 C:\Windows\SysWOW64\SHELL32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Общая библиотека оболочки Windows 131795770645382623 0x774d0000 86016 C:\Windows\SysWOW64\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795770645382623 0x774f0000 61440 C:\Windows\SysWOW64\profapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Profile Basic API 131795770645382623 0x77560000 1437696 C:\Windows\SysWOW64\USER32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795770645382623 0x776c0000 368640 C:\Windows\SysWOW64\bcryptPrimitives.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation Windows Cryptographic Primitives Library 131795770645382623 0x77780000 503808 C:\Windows\SysWOW64\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645382623 0x77800000 606208 C:\Windows\SysWOW64\OLEAUT32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795770645382623 0x77ac0000 966656 C:\Windows\SysWOW64\ole32.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft OLE для Windows 131795770645382623 0x77bb0000 176128 C:\Windows\SysWOW64\GDI32.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation GDI Client DLL 131795770645382623 0x77cd0000 221184 C:\Windows\SysWOW64\cfgmgr32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Configuration Manager DLL 131795770645382623 0x77d10000 28672 C:\Windows\SysWOW64\NSI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation NSI User-mode interface DLL 131795770645382623 0x77d20000 1585152 C:\Windows\SysWOW64\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 131795770645382623 0x7ffad0270000 1908736 C:\Windows\SYSTEM32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 58 5696 7744 57 00000000:0031f1da 131769081114193232 0 0 0 Обязательная метка\Средний обязательный уровень WIN-0UOTFKKVN1S\User browser.exe C:\Users\User\AppData\Local\Yandex\YandexBrowser\Application\browser.exe C:\Users\User\AppData\Local\Yandex\YandexBrowser\Application\browser.exe --type=crashpad-handler "--user-data-dir=C:\Users\User\AppData\Local\Yandex\YandexBrowser\User Data" /prefetch:7 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Users\User\AppData\Local\Yandex\YandexBrowser\User Data\Crashpad" "--metrics-dir=C:\Users\User\AppData\Local\Yandex\YandexBrowser\User Data" --url=https://crash-reports.browser.yandex.net/submit --annotation=machine_id=c46245ef0fec9d5c44d2fa20241f2070 --annotation=main_process_pid=7744 --annotation=metrics_client_id=520f4dd3247d4cdfb744f32b1130b1bf --annotation=plat=Win32 --annotation=prod=Yandex --annotation=ver=18.6.1.770 --initial-client-data=0x1c4,0x1cc,0x1d0,0x1c0,0x1d4,0x700b800c,0x700b7ffc,0x700b7fe0,0x1c8 YANDEX LLC 18.6.1.770 Yandex 131795770645382726 0x10e0000 2519040 C:\Users\User\AppData\Local\Yandex\YandexBrowser\Application\browser.exe 18.6.1.770 YANDEX LLC Yandex 131795770645382726 0x5c020000 335872 C:\Windows\System32\wow64.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation Win32 Emulation on NT64 131795770645382726 0x5c080000 487424 C:\Windows\System32\wow64win.dll 10.0.14393.1884 (rs1_release.171101-1233) Microsoft Corporation Wow64 Console and Win32 API Logging 131795770645382726 0x5c100000 40960 C:\Windows\System32\wow64cpu.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation AMD64 Wow64 CPU 131795770645382726 0x60750000 1556480 C:\Program Files (x86)\360\Total Security\safemon\safemon.dll 8, 4, 0, 1420 Qihu 360 Software Co., Ltd. 360 Internet Security Internet Protection 131795770645382726 0x70030000 593920 C:\Users\User\AppData\Local\Yandex\YandexBrowser\Application\18.6.1.770\browser_elf.dll 18.6.1.770 YANDEX LLC Yandex 131795770645382726 0x70b70000 163840 C:\Windows\SysWOW64\ntmarta.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик Windows NT MARTA 131795770645382726 0x70ca0000 45056 C:\Windows\SysWOW64\NETUTILS.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API Helpers DLL 131795770645382726 0x70cb0000 65536 C:\Windows\SysWOW64\WKSCLI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Workstation Service Client DLL 131795770645382726 0x71140000 77824 C:\Windows\SysWOW64\NETAPI32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API DLL 131795770645382726 0x72b90000 126976 C:\Windows\SysWOW64\dwmapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Интерфейс API диспетчера окон рабочего стола (Майкрософт) 131795770645382726 0x74110000 479232 C:\Windows\SysWOW64\uxtheme.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека тем UxTheme (Microsoft) 131795770645382726 0x74190000 110592 C:\Windows\SysWOW64\bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795770645382726 0x741f0000 143360 C:\Windows\SysWOW64\WINMMBASE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base Multimedia Extension API DLL 131795770645382726 0x74230000 147456 C:\Windows\SysWOW64\WINMM.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation MCI API DLL 131795770645382726 0x746e0000 32768 C:\Windows\SysWOW64\VERSION.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Version Checking and File Installation Libraries 131795770645382726 0x746f0000 106496 C:\Windows\SysWOW64\USERENV.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Userenv 131795770645382726 0x747d0000 40960 C:\Windows\SysWOW64\CRYPTBASE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base cryptographic API DLL 131795770645382726 0x747e0000 126976 C:\Windows\SysWOW64\SspiCli.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Security Support Provider Interface 131795770645382726 0x74800000 151552 C:\Windows\SysWOW64\IMM32.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Multi-User Windows IMM32 API Client DLL 131795770645382726 0x74910000 2170880 C:\Windows\SysWOW64\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795770645382726 0x74b30000 53248 C:\Windows\SysWOW64\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795770645382726 0x74b60000 790528 C:\Windows\SysWOW64\RPCRT4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795770645382726 0x74c30000 1417216 C:\Windows\SysWOW64\gdi32full.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation GDI Client DLL 131795770645382726 0x74d90000 24576 C:\Windows\SysWOW64\PSAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Process Status Helper 131795770645382726 0x74da0000 778240 C:\Windows\SysWOW64\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795770645382726 0x74e60000 557056 C:\Windows\SysWOW64\shcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795770645382726 0x74fd0000 405504 C:\Windows\SysWOW64\WS2_32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation 32-разрядная библиотека Windows Socket 2.0 131795770645382726 0x75040000 282624 C:\Windows\SysWOW64\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795770645382726 0x75090000 1265664 C:\Windows\SysWOW64\MSCTF.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Серверная библиотека MSCTF 131795770645382726 0x751e0000 1708032 C:\Windows\SysWOW64\KERNELBASE.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645382726 0x75390000 266240 C:\Windows\SysWOW64\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795770645382726 0x75560000 487424 C:\Windows\SysWOW64\ADVAPI32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795770645382726 0x756c0000 5693440 C:\Windows\SysWOW64\windows.storage.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API хранения Microsoft WinRT 131795770645382726 0x75c90000 286720 C:\Windows\SysWOW64\shlwapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека небольших программ оболочки 131795770645382726 0x75ce0000 20811776 C:\Windows\SysWOW64\SHELL32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Общая библиотека оболочки Windows 131795770645382726 0x774d0000 86016 C:\Windows\SysWOW64\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795770645382726 0x774f0000 61440 C:\Windows\SysWOW64\profapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Profile Basic API 131795770645382726 0x77560000 1437696 C:\Windows\SysWOW64\USER32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795770645382726 0x776c0000 368640 C:\Windows\SysWOW64\bcryptPrimitives.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation Windows Cryptographic Primitives Library 131795770645382726 0x77780000 503808 C:\Windows\SysWOW64\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645382726 0x77800000 606208 C:\Windows\SysWOW64\OLEAUT32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795770645382726 0x77ac0000 966656 C:\Windows\SysWOW64\ole32.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft OLE для Windows 131795770645382726 0x77bb0000 176128 C:\Windows\SysWOW64\GDI32.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation GDI Client DLL 131795770645382726 0x77cd0000 221184 C:\Windows\SysWOW64\cfgmgr32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Configuration Manager DLL 131795770645382726 0x77d20000 1585152 C:\Windows\SysWOW64\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 131795770645382726 0x7ffad0270000 1908736 C:\Windows\SYSTEM32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 59 4664 7744 57 00000000:0031f1da 131769081123844756 0 0 0 Обязательная метка\Низкий обязательный уровень WIN-0UOTFKKVN1S\User browser.exe C:\Users\User\AppData\Local\Yandex\YandexBrowser\Application\browser.exe "C:\Users\User\AppData\Local\Yandex\YandexBrowser\Application\browser.exe" --type=gpu-process --field-trial-handle=1292,9555382311565764851,7120838982649204725,131072 --user-id=32B2E0A1-3039-4C67-86BE-75A88EF21B54 --brand-id=yandex --partner-id=7924 --gpu-preferences=KAAAAAAAAACAAwCAAQAAAAAAAAAAAGAAEAAAAAAAAAAAAAAAAAAAACgAAAAEAAAAIAAAAAAAAAAoAAAAAAAAADAAAAAAAAAAOAAAAAAAAAAQAAAAAAAAAAAAAAAKAAAAEAAAAAAAAAAAAAAACwAAABAAAAAAAAAAAQAAAAoAAAAQAAAAAAAAAAEAAAALAAAA --user-id=32B2E0A1-3039-4C67-86BE-75A88EF21B54 --brand-id=yandex --partner-id=7924 --service-request-channel-token=CC1AC8FA9C8EFF1EEBC2375FE4F704C6 --mojo-platform-channel-handle=1588 --ignored=" --type=renderer " /prefetch:2 YANDEX LLC 18.6.1.770 Yandex 131795770645382836 0x10e0000 2519040 C:\Users\User\AppData\Local\Yandex\YandexBrowser\Application\browser.exe 18.6.1.770 YANDEX LLC Yandex 131795770645382836 0x58720000 59748352 C:\Users\User\AppData\Local\Yandex\YandexBrowser\Application\18.6.1.770\browser_child.dll 18.6.1.770 YANDEX LLC Yandex 131795770645382836 0x5c020000 335872 C:\Windows\System32\wow64.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation Win32 Emulation on NT64 131795770645382836 0x5c080000 487424 C:\Windows\System32\wow64win.dll 10.0.14393.1884 (rs1_release.171101-1233) Microsoft Corporation Wow64 Console and Win32 API Logging 131795770645382836 0x5c100000 40960 C:\Windows\System32\wow64cpu.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation AMD64 Wow64 CPU 131795770645382836 0x6ecb0000 2228224 C:\Windows\SysWOW64\mfh264enc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Media Foundation H264 Encoder 131795770645382836 0x6f250000 970752 C:\Windows\SysWOW64\ddraw.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft DirectDraw 131795770645382836 0x6f340000 3784704 C:\Windows\SysWOW64\D3DCompiler_47.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Direct3D HLSL Compiler 131795770645382836 0x6f6e0000 688128 C:\Windows\SysWOW64\msvproc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Media Foundation Video Processor 131795770645382836 0x6f790000 1085440 C:\Windows\SysWOW64\mfperfhelper.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation MFPerf DLL 131795770645382836 0x6f8a0000 2220032 C:\Windows\SysWOW64\msmpeg2vdec.dll 10.0.14393.953 (rs1_release_inmarket.170303-1614) Microsoft Corporation Microsoft DTV-DVD Video Decoder 131795770645382836 0x6fac0000 1130496 C:\Windows\SysWOW64\MFPlat.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Media Foundation Platform DLL 131795770645382836 0x6fbe0000 540672 C:\Windows\SysWOW64\mf.dll 10.0.14393.953 (rs1_release_inmarket.170303-1614) Microsoft Corporation Библиотека DLL Media Foundation 131795770645382836 0x6fd30000 139264 C:\Windows\SysWOW64\DEVOBJ.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Device Information Set DLL 131795770645382836 0x6ff20000 118784 C:\Users\User\AppData\Local\Yandex\YandexBrowser\Application\18.6.1.770\swiftshader\libegl.dll 4.0.0.3 SwiftShader libEGL 32-bit Dynamic Link Library 131795770645382836 0x6ff40000 126976 C:\Windows\SysWOW64\dxva2.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DirectX Video Acceleration 2.0 DLL 131795770645382836 0x6ff60000 172032 C:\Windows\SysWOW64\RTWorkQ.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL для WorkQueue реального времени 131795770645382836 0x70030000 593920 C:\Users\User\AppData\Local\Yandex\YandexBrowser\Application\18.6.1.770\browser_elf.dll 18.6.1.770 YANDEX LLC Yandex 131795770645382836 0x700d0000 434176 C:\Windows\SysWOW64\WINSPOOL.DRV 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Драйвер диспетчера очереди Windows 131795770645382836 0x70340000 536576 C:\Windows\SysWOW64\dxgi.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation DirectX Graphics Infrastructure 131795770645382836 0x703d0000 2056192 C:\Windows\SysWOW64\DWrite.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Службы Microsoft DirectX Typography 131795770645382836 0x705d0000 28672 C:\Windows\SysWOW64\DCIMAN32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DCI Manager 131795770645382836 0x707d0000 86016 C:\Windows\SysWOW64\SAMCLI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Security Accounts Manager Client DLL 131795770645382836 0x70a20000 94208 C:\Windows\SysWOW64\USP10.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Uniscribe Unicode script processor 131795770645382836 0x70ca0000 45056 C:\Windows\SysWOW64\NETUTILS.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API Helpers DLL 131795770645382836 0x70fd0000 1331200 C:\Windows\SysWOW64\dbghelp.dll 10.0.14321.1024 (rs1_release.160715-1616) Microsoft Windows Image Helper 131795770645382836 0x71140000 77824 C:\Windows\SysWOW64\NETAPI32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API DLL 131795770645382836 0x725e0000 2273280 C:\Windows\SysWOW64\iertutil.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служебная программа времени выполнения для Internet Explorer 131795770645382836 0x728e0000 1372160 C:\Windows\SysWOW64\PROPSYS.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Система страниц свойств (Майкрософт) 131795770645382836 0x72b90000 126976 C:\Windows\SysWOW64\dwmapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Интерфейс API диспетчера окон рабочего стола (Майкрософт) 131795770645382836 0x72cc0000 1658880 C:\Windows\SysWOW64\urlmon.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширения OLE32 для Win32 131795770645382836 0x73ac0000 81920 C:\Windows\SysWOW64\dhcpcsvc.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служба DHCP-клиента 131795770645382836 0x73ae0000 40960 C:\Windows\SysWOW64\Secur32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Security Support Provider Interface 131795770645382836 0x73f00000 192512 C:\Windows\SysWOW64\IPHLPAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API вспомогательного приложения IP 131795770645382836 0x74190000 110592 C:\Windows\SysWOW64\bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795770645382836 0x741b0000 77824 C:\Windows\SysWOW64\cryptsp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Cryptographic Service Provider API 131795770645382836 0x741f0000 143360 C:\Windows\SysWOW64\WINMMBASE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base Multimedia Extension API DLL 131795770645382836 0x74230000 147456 C:\Windows\SysWOW64\WINMM.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation MCI API DLL 131795770645382836 0x744d0000 2138112 C:\Windows\WinSxS\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.14393.953_none_89c2555adb023171\COMCTL32.dll 6.10 (rs1_release_inmarket.170303-1614) Microsoft Corporation Библиотека элементов управления взаимодействия с пользователем 131795770645382836 0x746e0000 32768 C:\Windows\SysWOW64\VERSION.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Version Checking and File Installation Libraries 131795770645382836 0x746f0000 106496 C:\Windows\SysWOW64\USERENV.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Userenv 131795770645382836 0x747d0000 40960 C:\Windows\SysWOW64\CRYPTBASE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base cryptographic API DLL 131795770645382836 0x747e0000 126976 C:\Windows\SysWOW64\SspiCli.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Security Support Provider Interface 131795770645382836 0x74800000 151552 C:\Windows\SysWOW64\IMM32.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Multi-User Windows IMM32 API Client DLL 131795770645382836 0x74910000 2170880 C:\Windows\SysWOW64\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795770645382836 0x74b30000 53248 C:\Windows\SysWOW64\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795770645382836 0x74b60000 790528 C:\Windows\SysWOW64\RPCRT4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795770645382836 0x74c30000 1417216 C:\Windows\SysWOW64\gdi32full.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation GDI Client DLL 131795770645382836 0x74d90000 24576 C:\Windows\SysWOW64\PSAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Process Status Helper 131795770645382836 0x74da0000 778240 C:\Windows\SysWOW64\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795770645382836 0x74e60000 557056 C:\Windows\SysWOW64\shcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795770645382836 0x74ef0000 540672 C:\Windows\SysWOW64\clbcatq.dll 2001.12.10941.16384 (rs1_release.160715-1616) Microsoft Corporation COM+ Configuration Catalog 131795770645382836 0x74f80000 278528 C:\Windows\SysWOW64\WINTRUST.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation Microsoft Trust Verification APIs 131795770645382836 0x74fd0000 405504 C:\Windows\SysWOW64\WS2_32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation 32-разрядная библиотека Windows Socket 2.0 131795770645382836 0x75040000 282624 C:\Windows\SysWOW64\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795770645382836 0x751d0000 57344 C:\Windows\SysWOW64\MSASN1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ASN.1 Runtime APIs 131795770645382836 0x751e0000 1708032 C:\Windows\SysWOW64\KERNELBASE.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645382836 0x75390000 266240 C:\Windows\SysWOW64\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795770645382836 0x753e0000 1560576 C:\Windows\SysWOW64\CRYPT32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API32 криптографии 131795770645382836 0x75560000 487424 C:\Windows\SysWOW64\ADVAPI32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795770645382836 0x756c0000 5693440 C:\Windows\SysWOW64\windows.storage.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API хранения Microsoft WinRT 131795770645382836 0x75c90000 286720 C:\Windows\SysWOW64\shlwapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека небольших программ оболочки 131795770645382836 0x75ce0000 20811776 C:\Windows\SysWOW64\SHELL32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Общая библиотека оболочки Windows 131795770645382836 0x770c0000 4239360 C:\Windows\SysWOW64\SETUPAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Setup API 131795770645382836 0x774d0000 86016 C:\Windows\SysWOW64\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795770645382836 0x774f0000 61440 C:\Windows\SysWOW64\profapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Profile Basic API 131795770645382836 0x77560000 1437696 C:\Windows\SysWOW64\USER32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795770645382836 0x776c0000 368640 C:\Windows\SysWOW64\bcryptPrimitives.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation Windows Cryptographic Primitives Library 131795770645382836 0x77780000 503808 C:\Windows\SysWOW64\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645382836 0x77800000 606208 C:\Windows\SysWOW64\OLEAUT32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795770645382836 0x77ac0000 966656 C:\Windows\SysWOW64\ole32.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft OLE для Windows 131795770645382836 0x77bb0000 176128 C:\Windows\SysWOW64\GDI32.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation GDI Client DLL 131795770645382836 0x77be0000 937984 C:\Windows\SysWOW64\COMDLG32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека общих диалоговых окон 131795770645382836 0x77cd0000 221184 C:\Windows\SysWOW64\cfgmgr32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Configuration Manager DLL 131795770645382836 0x77d10000 28672 C:\Windows\SysWOW64\NSI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation NSI User-mode interface DLL 131795770645382836 0x77d20000 1585152 C:\Windows\SysWOW64\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 131795770645382836 0x7ffad0270000 1908736 C:\Windows\SYSTEM32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 60 8968 7744 57 00000000:0031f1da 131769081206363215 0 0 0 Обязательная метка\Ненадежный обязательный уровень WIN-0UOTFKKVN1S\User browser.exe C:\Users\User\AppData\Local\Yandex\YandexBrowser\Application\browser.exe "C:\Users\User\AppData\Local\Yandex\YandexBrowser\Application\browser.exe" --type=renderer --enable-in-process-wmf-demuxer --field-trial-handle=1292,9555382311565764851,7120838982649204725,131072 --enable-ignition --service-pipe-token=183F52B8A6577BFD721F95F3A9641348 --lang=ru --user-id=32B2E0A1-3039-4C67-86BE-75A88EF21B54 --brand-id=yandex --partner-id=7924 --help-url=https://api.browser.yandex.ru/redirect/help/ --user-agent-info --translate-security-origin=https://translate.yandex.net --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --enable-instaserp --device-scale-factor=1 --num-raster-threads=1 --enable-compositor-image-animations --service-request-channel-token=183F52B8A6577BFD721F95F3A9641348 --renderer-client-id=4 --mojo-platform-channel-handle=2640 /prefetch:1 YANDEX LLC 18.6.1.770 Yandex 131795770645382953 0x10e0000 2519040 C:\Users\User\AppData\Local\Yandex\YandexBrowser\Application\browser.exe 18.6.1.770 YANDEX LLC Yandex 131795770645382953 0x58720000 59748352 C:\Users\User\AppData\Local\Yandex\YandexBrowser\Application\18.6.1.770\browser_child.dll 18.6.1.770 YANDEX LLC Yandex 131795770645382953 0x5c020000 335872 C:\Windows\System32\wow64.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation Win32 Emulation on NT64 131795770645382953 0x5c080000 487424 C:\Windows\System32\wow64win.dll 10.0.14393.1884 (rs1_release.171101-1233) Microsoft Corporation Wow64 Console and Win32 API Logging 131795770645382953 0x5c100000 40960 C:\Windows\System32\wow64cpu.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation AMD64 Wow64 CPU 131795770645382953 0x6e8b0000 1859584 C:\Windows\SysWOW64\mfmp4srcsnk.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL источника и приемника MPEG4 Media Foundation 131795770645382953 0x6ef30000 647168 C:\Windows\SysWOW64\evr.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека DLL средства отображения видео 131795770645382953 0x6efd0000 458752 C:\Windows\SysWOW64\msauddecmft.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Media Foundation Audio Decoders 131795770645382953 0x6f790000 1085440 C:\Windows\SysWOW64\mfperfhelper.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation MFPerf DLL 131795770645382953 0x6f8a0000 2220032 C:\Windows\SysWOW64\msmpeg2vdec.dll 10.0.14393.953 (rs1_release_inmarket.170303-1614) Microsoft Corporation Microsoft DTV-DVD Video Decoder 131795770645382953 0x6fac0000 1130496 C:\Windows\SysWOW64\mfplat.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Media Foundation Platform DLL 131795770645382953 0x6ff60000 172032 C:\Windows\SysWOW64\RTWorkQ.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL для WorkQueue реального времени 131795770645382953 0x70030000 593920 C:\Users\User\AppData\Local\Yandex\YandexBrowser\Application\18.6.1.770\browser_elf.dll 18.6.1.770 YANDEX LLC Yandex 131795770645382953 0x700d0000 434176 C:\Windows\SysWOW64\WINSPOOL.DRV 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Драйвер диспетчера очереди Windows 131795770645382953 0x70340000 536576 C:\Windows\SysWOW64\dxgi.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation DirectX Graphics Infrastructure 131795770645382953 0x703d0000 2056192 C:\Windows\SysWOW64\DWrite.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Службы Microsoft DirectX Typography 131795770645382953 0x707d0000 86016 C:\Windows\SysWOW64\SAMCLI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Security Accounts Manager Client DLL 131795770645382953 0x70a20000 94208 C:\Windows\SysWOW64\USP10.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Uniscribe Unicode script processor 131795770645382953 0x70ca0000 45056 C:\Windows\SysWOW64\NETUTILS.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API Helpers DLL 131795770645382953 0x70fd0000 1331200 C:\Windows\SysWOW64\dbghelp.dll 10.0.14321.1024 (rs1_release.160715-1616) Microsoft Windows Image Helper 131795770645382953 0x71140000 77824 C:\Windows\SysWOW64\NETAPI32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API DLL 131795770645382953 0x725e0000 2273280 C:\Windows\SysWOW64\iertutil.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служебная программа времени выполнения для Internet Explorer 131795770645382953 0x728e0000 1372160 C:\Windows\SysWOW64\PROPSYS.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Система страниц свойств (Майкрософт) 131795770645382953 0x72af0000 655360 C:\Windows\SysWOW64\WINHTTP.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Службы HTTP Windows 131795770645382953 0x72cc0000 1658880 C:\Windows\SysWOW64\urlmon.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширения OLE32 для Win32 131795770645382953 0x73ac0000 81920 C:\Windows\SysWOW64\dhcpcsvc.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служба DHCP-клиента 131795770645382953 0x73ae0000 40960 C:\Windows\SysWOW64\Secur32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Security Support Provider Interface 131795770645382953 0x73f00000 192512 C:\Windows\SysWOW64\IPHLPAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API вспомогательного приложения IP 131795770645382953 0x74190000 110592 C:\Windows\SysWOW64\bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795770645382953 0x741b0000 77824 C:\Windows\SysWOW64\cryptsp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Cryptographic Service Provider API 131795770645382953 0x741f0000 143360 C:\Windows\SysWOW64\WINMMBASE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base Multimedia Extension API DLL 131795770645382953 0x74230000 147456 C:\Windows\SysWOW64\WINMM.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation MCI API DLL 131795770645382953 0x744d0000 2138112 C:\Windows\WinSxS\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.14393.953_none_89c2555adb023171\COMCTL32.dll 6.10 (rs1_release_inmarket.170303-1614) Microsoft Corporation Библиотека элементов управления взаимодействия с пользователем 131795770645382953 0x746e0000 32768 C:\Windows\SysWOW64\VERSION.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Version Checking and File Installation Libraries 131795770645382953 0x746f0000 106496 C:\Windows\SysWOW64\USERENV.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Userenv 131795770645382953 0x747d0000 40960 C:\Windows\SysWOW64\CRYPTBASE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base cryptographic API DLL 131795770645382953 0x747e0000 126976 C:\Windows\SysWOW64\SspiCli.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Security Support Provider Interface 131795770645382953 0x74800000 151552 C:\Windows\SysWOW64\IMM32.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Multi-User Windows IMM32 API Client DLL 131795770645382953 0x74910000 2170880 C:\Windows\SysWOW64\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795770645382953 0x74b30000 53248 C:\Windows\SysWOW64\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795770645382953 0x74b60000 790528 C:\Windows\SysWOW64\RPCRT4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795770645382953 0x74c30000 1417216 C:\Windows\SysWOW64\gdi32full.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation GDI Client DLL 131795770645382953 0x74d90000 24576 C:\Windows\SysWOW64\PSAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Process Status Helper 131795770645382953 0x74da0000 778240 C:\Windows\SysWOW64\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795770645382953 0x74e60000 557056 C:\Windows\SysWOW64\shcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795770645382953 0x74f80000 278528 C:\Windows\SysWOW64\WINTRUST.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation Microsoft Trust Verification APIs 131795770645382953 0x74fd0000 405504 C:\Windows\SysWOW64\WS2_32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation 32-разрядная библиотека Windows Socket 2.0 131795770645382953 0x75040000 282624 C:\Windows\SysWOW64\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795770645382953 0x751d0000 57344 C:\Windows\SysWOW64\MSASN1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ASN.1 Runtime APIs 131795770645382953 0x751e0000 1708032 C:\Windows\SysWOW64\KERNELBASE.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645382953 0x75390000 266240 C:\Windows\SysWOW64\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795770645382953 0x753e0000 1560576 C:\Windows\SysWOW64\CRYPT32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API32 криптографии 131795770645382953 0x75560000 487424 C:\Windows\SysWOW64\ADVAPI32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795770645382953 0x756c0000 5693440 C:\Windows\SysWOW64\windows.storage.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API хранения Microsoft WinRT 131795770645382953 0x75c90000 286720 C:\Windows\SysWOW64\shlwapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека небольших программ оболочки 131795770645382953 0x75ce0000 20811776 C:\Windows\SysWOW64\SHELL32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Общая библиотека оболочки Windows 131795770645382953 0x774d0000 86016 C:\Windows\SysWOW64\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795770645382953 0x774f0000 61440 C:\Windows\SysWOW64\profapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Profile Basic API 131795770645382953 0x77560000 1437696 C:\Windows\SysWOW64\USER32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795770645382953 0x776c0000 368640 C:\Windows\SysWOW64\bcryptPrimitives.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation Windows Cryptographic Primitives Library 131795770645382953 0x77780000 503808 C:\Windows\SysWOW64\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645382953 0x77800000 606208 C:\Windows\SysWOW64\OLEAUT32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795770645382953 0x77ac0000 966656 C:\Windows\SysWOW64\ole32.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft OLE для Windows 131795770645382953 0x77bb0000 176128 C:\Windows\SysWOW64\GDI32.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation GDI Client DLL 131795770645382953 0x77be0000 937984 C:\Windows\SysWOW64\COMDLG32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека общих диалоговых окон 131795770645382953 0x77cd0000 221184 C:\Windows\SysWOW64\cfgmgr32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Configuration Manager DLL 131795770645382953 0x77d10000 28672 C:\Windows\SysWOW64\NSI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation NSI User-mode interface DLL 131795770645382953 0x77d20000 1585152 C:\Windows\SysWOW64\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 131795770645382953 0x7ffad0270000 1908736 C:\Windows\SYSTEM32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 61 4992 7744 57 00000000:0031f1da 131769081244357280 0 0 0 Обязательная метка\Ненадежный обязательный уровень WIN-0UOTFKKVN1S\User browser.exe C:\Users\User\AppData\Local\Yandex\YandexBrowser\Application\browser.exe "C:\Users\User\AppData\Local\Yandex\YandexBrowser\Application\browser.exe" --type=renderer --enable-in-process-wmf-demuxer --field-trial-handle=1292,9555382311565764851,7120838982649204725,131072 --enable-ignition --service-pipe-token=7E8A8199C364F4B0114F2A163B757250 --lang=ru --user-id=32B2E0A1-3039-4C67-86BE-75A88EF21B54 --brand-id=yandex --partner-id=7924 --help-url=https://api.browser.yandex.ru/redirect/help/ --user-agent-info --translate-security-origin=https://translate.yandex.net --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --enable-instaserp --device-scale-factor=1 --num-raster-threads=1 --enable-compositor-image-animations --service-request-channel-token=7E8A8199C364F4B0114F2A163B757250 --renderer-client-id=10 --mojo-platform-channel-handle=3904 /prefetch:1 YANDEX LLC 18.6.1.770 Yandex 131795770645383069 0x10e0000 2519040 C:\Users\User\AppData\Local\Yandex\YandexBrowser\Application\browser.exe 18.6.1.770 YANDEX LLC Yandex 131795770645383069 0x58720000 59748352 C:\Users\User\AppData\Local\Yandex\YandexBrowser\Application\18.6.1.770\browser_child.dll 18.6.1.770 YANDEX LLC Yandex 131795770645383069 0x5c020000 335872 C:\Windows\System32\wow64.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation Win32 Emulation on NT64 131795770645383069 0x5c080000 487424 C:\Windows\System32\wow64win.dll 10.0.14393.1884 (rs1_release.171101-1233) Microsoft Corporation Wow64 Console and Win32 API Logging 131795770645383069 0x5c100000 40960 C:\Windows\System32\wow64cpu.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation AMD64 Wow64 CPU 131795770645383069 0x6e8b0000 1859584 C:\Windows\SysWOW64\mfmp4srcsnk.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL источника и приемника MPEG4 Media Foundation 131795770645383069 0x6ef30000 647168 C:\Windows\SysWOW64\evr.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека DLL средства отображения видео 131795770645383069 0x6efd0000 458752 C:\Windows\SysWOW64\msauddecmft.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Media Foundation Audio Decoders 131795770645383069 0x6f790000 1085440 C:\Windows\SysWOW64\mfperfhelper.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation MFPerf DLL 131795770645383069 0x6f8a0000 2220032 C:\Windows\SysWOW64\msmpeg2vdec.dll 10.0.14393.953 (rs1_release_inmarket.170303-1614) Microsoft Corporation Microsoft DTV-DVD Video Decoder 131795770645383069 0x6fac0000 1130496 C:\Windows\SysWOW64\mfplat.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Media Foundation Platform DLL 131795770645383069 0x6ff60000 172032 C:\Windows\SysWOW64\RTWorkQ.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL для WorkQueue реального времени 131795770645383069 0x70030000 593920 C:\Users\User\AppData\Local\Yandex\YandexBrowser\Application\18.6.1.770\browser_elf.dll 18.6.1.770 YANDEX LLC Yandex 131795770645383069 0x700d0000 434176 C:\Windows\SysWOW64\WINSPOOL.DRV 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Драйвер диспетчера очереди Windows 131795770645383069 0x70340000 536576 C:\Windows\SysWOW64\dxgi.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation DirectX Graphics Infrastructure 131795770645383069 0x703d0000 2056192 C:\Windows\SysWOW64\DWrite.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Службы Microsoft DirectX Typography 131795770645383069 0x707d0000 86016 C:\Windows\SysWOW64\SAMCLI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Security Accounts Manager Client DLL 131795770645383069 0x70a20000 94208 C:\Windows\SysWOW64\USP10.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Uniscribe Unicode script processor 131795770645383069 0x70ca0000 45056 C:\Windows\SysWOW64\NETUTILS.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API Helpers DLL 131795770645383069 0x70fd0000 1331200 C:\Windows\SysWOW64\dbghelp.dll 10.0.14321.1024 (rs1_release.160715-1616) Microsoft Windows Image Helper 131795770645383069 0x71140000 77824 C:\Windows\SysWOW64\NETAPI32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API DLL 131795770645383069 0x725e0000 2273280 C:\Windows\SysWOW64\iertutil.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служебная программа времени выполнения для Internet Explorer 131795770645383069 0x728e0000 1372160 C:\Windows\SysWOW64\PROPSYS.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Система страниц свойств (Майкрософт) 131795770645383069 0x72af0000 655360 C:\Windows\SysWOW64\WINHTTP.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Службы HTTP Windows 131795770645383069 0x72cc0000 1658880 C:\Windows\SysWOW64\urlmon.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширения OLE32 для Win32 131795770645383069 0x73ac0000 81920 C:\Windows\SysWOW64\dhcpcsvc.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служба DHCP-клиента 131795770645383069 0x73ae0000 40960 C:\Windows\SysWOW64\Secur32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Security Support Provider Interface 131795770645383069 0x73f00000 192512 C:\Windows\SysWOW64\IPHLPAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API вспомогательного приложения IP 131795770645383069 0x74190000 110592 C:\Windows\SysWOW64\bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795770645383069 0x741b0000 77824 C:\Windows\SysWOW64\cryptsp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Cryptographic Service Provider API 131795770645383069 0x741f0000 143360 C:\Windows\SysWOW64\WINMMBASE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base Multimedia Extension API DLL 131795770645383069 0x74230000 147456 C:\Windows\SysWOW64\WINMM.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation MCI API DLL 131795770645383069 0x744d0000 2138112 C:\Windows\WinSxS\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.14393.953_none_89c2555adb023171\COMCTL32.dll 6.10 (rs1_release_inmarket.170303-1614) Microsoft Corporation Библиотека элементов управления взаимодействия с пользователем 131795770645383069 0x746e0000 32768 C:\Windows\SysWOW64\VERSION.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Version Checking and File Installation Libraries 131795770645383069 0x746f0000 106496 C:\Windows\SysWOW64\USERENV.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Userenv 131795770645383069 0x747d0000 40960 C:\Windows\SysWOW64\CRYPTBASE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base cryptographic API DLL 131795770645383069 0x747e0000 126976 C:\Windows\SysWOW64\SspiCli.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Security Support Provider Interface 131795770645383069 0x74800000 151552 C:\Windows\SysWOW64\IMM32.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Multi-User Windows IMM32 API Client DLL 131795770645383069 0x74910000 2170880 C:\Windows\SysWOW64\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795770645383069 0x74b30000 53248 C:\Windows\SysWOW64\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795770645383069 0x74b60000 790528 C:\Windows\SysWOW64\RPCRT4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795770645383069 0x74c30000 1417216 C:\Windows\SysWOW64\gdi32full.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation GDI Client DLL 131795770645383069 0x74d90000 24576 C:\Windows\SysWOW64\PSAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Process Status Helper 131795770645383069 0x74da0000 778240 C:\Windows\SysWOW64\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795770645383069 0x74e60000 557056 C:\Windows\SysWOW64\shcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795770645383069 0x74f80000 278528 C:\Windows\SysWOW64\WINTRUST.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation Microsoft Trust Verification APIs 131795770645383069 0x74fd0000 405504 C:\Windows\SysWOW64\WS2_32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation 32-разрядная библиотека Windows Socket 2.0 131795770645383069 0x75040000 282624 C:\Windows\SysWOW64\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795770645383069 0x751d0000 57344 C:\Windows\SysWOW64\MSASN1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ASN.1 Runtime APIs 131795770645383069 0x751e0000 1708032 C:\Windows\SysWOW64\KERNELBASE.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645383069 0x75390000 266240 C:\Windows\SysWOW64\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795770645383069 0x753e0000 1560576 C:\Windows\SysWOW64\CRYPT32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API32 криптографии 131795770645383069 0x75560000 487424 C:\Windows\SysWOW64\ADVAPI32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795770645383069 0x756c0000 5693440 C:\Windows\SysWOW64\windows.storage.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API хранения Microsoft WinRT 131795770645383069 0x75c90000 286720 C:\Windows\SysWOW64\shlwapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека небольших программ оболочки 131795770645383069 0x75ce0000 20811776 C:\Windows\SysWOW64\SHELL32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Общая библиотека оболочки Windows 131795770645383069 0x774d0000 86016 C:\Windows\SysWOW64\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795770645383069 0x774f0000 61440 C:\Windows\SysWOW64\profapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Profile Basic API 131795770645383069 0x77560000 1437696 C:\Windows\SysWOW64\USER32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795770645383069 0x776c0000 368640 C:\Windows\SysWOW64\bcryptPrimitives.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation Windows Cryptographic Primitives Library 131795770645383069 0x77780000 503808 C:\Windows\SysWOW64\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645383069 0x77800000 606208 C:\Windows\SysWOW64\OLEAUT32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795770645383069 0x77ac0000 966656 C:\Windows\SysWOW64\ole32.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft OLE для Windows 131795770645383069 0x77bb0000 176128 C:\Windows\SysWOW64\GDI32.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation GDI Client DLL 131795770645383069 0x77be0000 937984 C:\Windows\SysWOW64\COMDLG32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека общих диалоговых окон 131795770645383069 0x77cd0000 221184 C:\Windows\SysWOW64\cfgmgr32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Configuration Manager DLL 131795770645383069 0x77d10000 28672 C:\Windows\SysWOW64\NSI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation NSI User-mode interface DLL 131795770645383069 0x77d20000 1585152 C:\Windows\SysWOW64\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 131795770645383069 0x7ffad0270000 1908736 C:\Windows\SYSTEM32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 63 9504 664 6 00000000:0031f1da 131794956266598229 0 0 1 Обязательная метка\Средний обязательный уровень WIN-0UOTFKKVN1S\User InstallAgent.exe C:\Windows\System32\InstallAgent.exe C:\Windows\System32\InstallAgent.exe -Embedding Microsoft Corporation 10.0.14393.0 (rs1_release.160715-1616) InstallAgent 131795770645383260 0x7ff63d380000 229376 C:\Windows\System32\InstallAgent.exe 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation InstallAgent 131795770645383260 0x7ffabea60000 180224 C:\Windows\System32\VEStoreEventHandlers.dll 10.0.14393.479 (rs1_release.161110-2025) Microsoft Corporation TDL Store Event Handlers 131795770645383260 0x7ffac0bf0000 3559424 C:\Windows\System32\ActXPrxy.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation ActiveX Interface Marshaling Library 131795770645383260 0x7ffac4000000 274432 C:\Windows\SYSTEM32\policymanager.dll 10.0.14393.2035 (rs1_release_inmarket.180110-1910) Microsoft Corporation Policy Manager DLL 131795770645383260 0x7ffac4450000 86016 C:\Windows\SYSTEM32\usermgrcli.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation UserMgr API DLL 131795770645383260 0x7ffac4ad0000 61440 C:\Windows\System32\EAMProgressHandler.dll 10.0.14393.479 (rs1_release.161110-2025) Microsoft Corporation EAMProgressHandler 131795770645383260 0x7ffac4b90000 774144 C:\Windows\System32\StoreAgent.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation StoreAgent 131795770645383260 0x7ffac76a0000 159744 C:\Windows\System32\sppc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Software Licensing Client DLL 131795770645383260 0x7ffac7990000 155648 C:\Windows\System32\SLC.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Software Licensing Client DLL 131795770645383260 0x7ffacb140000 593920 C:\Windows\System32\msvcp110_win.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Microsoft® STL110 C++ Runtime Library 131795770645383260 0x7ffacc150000 94208 C:\Windows\System32\CRYPTSP.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Cryptographic Service Provider API 131795770645383260 0x7ffacc520000 622592 C:\Windows\SYSTEM32\sxs.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Fusion 2.5 131795770645383260 0x7ffacc620000 176128 C:\Windows\System32\Bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795770645383260 0x7ffacc6e0000 61440 C:\Windows\System32\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795770645383260 0x7ffacc6f0000 311296 C:\Windows\System32\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795770645383260 0x7ffacc740000 81920 C:\Windows\System32\profapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Profile Basic API 131795770645383260 0x7ffacc8f0000 1003520 C:\Windows\System32\ucrtbase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645383260 0x7ffacc9f0000 434176 C:\Windows\System32\bcryptPrimitives.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Cryptographic Primitives Library 131795770645383260 0x7ffacca60000 122880 C:\Windows\System32\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795770645383260 0x7ffaccae0000 692224 C:\Windows\System32\shcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795770645383260 0x7ffaccb90000 7180288 C:\Windows\System32\windows.storage.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API хранения Microsoft WinRT 131795770645383260 0x7ffacd270000 2215936 C:\Windows\System32\KERNELBASE.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645383260 0x7ffacd710000 638976 C:\Windows\System32\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645383260 0x7ffaced20000 782336 C:\Windows\System32\OLEAUT32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795770645383260 0x7ffacee50000 1183744 C:\Windows\System32\RPCRT4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795770645383260 0x7ffacef90000 647168 C:\Windows\System32\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795770645383260 0x7ffacf030000 651264 C:\Windows\System32\clbcatq.dll 2001.12.10941.16384 (rs1_release.160715-1616) Microsoft Corporation COM+ Configuration Catalog 131795770645383260 0x7ffacf0d0000 704512 C:\Windows\System32\KERNEL32.DLL 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645383260 0x7ffacf770000 212992 C:\Windows\System32\GDI32.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation GDI Client DLL 131795770645383260 0x7ffacf890000 188416 C:\Windows\System32\IMM32.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Multi-User Windows IMM32 API Client DLL 131795770645383260 0x7ffacf8c0000 1462272 C:\Windows\System32\user32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795770645383260 0x7ffacfb30000 2916352 C:\Windows\System32\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795770645383260 0x7ffacfe20000 663552 C:\Windows\System32\advapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795770645383260 0x7ffad01b0000 335872 C:\Windows\System32\shlwapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека небольших программ оболочки 131795770645383260 0x7ffad0210000 364544 C:\Windows\System32\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795770645383260 0x7ffad0270000 1908736 C:\Windows\SYSTEM32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 64 8768 664 6 00000000:0031f1da 131794956321853179 0 0 1 Обязательная метка\Средний обязательный уровень WIN-0UOTFKKVN1S\User InstallAgentUserBroker.exe C:\Windows\System32\InstallAgentUserBroker.exe C:\Windows\System32\InstallAgentUserBroker.exe -Embedding Microsoft Corporation 10.0.14393.2156 (rs1_release_inmarket.180321-1733) InstallAgentUserBroker 131795770645383355 0x22530450000 12288 C:\Windows\SYSTEM32\sfc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows File Protection 131795770645383355 0x7ff74f890000 278528 C:\Windows\System32\InstallAgentUserBroker.exe 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation InstallAgentUserBroker 131795770645383355 0x7ffabafc0000 700416 C:\Windows\SYSTEM32\wer.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека сообщений об ошибках Windows 131795770645383355 0x7ffabd8e0000 704512 C:\Windows\WinSxS\amd64_microsoft.windows.common-controls_6595b64144ccf1df_5.82.14393.447_none_0d5aa7fbb6d35646\Comctl32.dll 6.10 (rs1_release_inmarket.170303-1614) Microsoft Corporation Библиотека элементов управления взаимодействия с пользователем 131795770645383355 0x7ffabef80000 69632 C:\Windows\SYSTEM32\sfc_os.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows File Protection 131795770645383355 0x7ffabefd0000 258048 C:\Windows\System32\AEPIC.dll 10.0.17060.1029 (WinBuild.160101.0800) Microsoft Corporation Application Experience Program Cache 131795770645383355 0x7ffabf1d0000 192512 C:\Windows\System32\cryptnet.dll 10.0.14393.2035 (rs1_release_inmarket.180110-1910) Microsoft Corporation Crypto Network Related API 131795770645383355 0x7ffabf5d0000 2924544 C:\Windows\System32\WININET.dll 11.00.14393.447 (rs1_release_inmarket.161102-0100) Microsoft Corporation Расширения Интернета для Win32 131795770645383355 0x7ffabff60000 135168 C:\Windows\system32\ncryptsslp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft SChannel Provider 131795770645383355 0x7ffac0ad0000 86016 C:\Windows\SYSTEM32\mskeyprotect.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик защиты ключей (Майкрософт) 131795770645383355 0x7ffac34e0000 1843200 C:\Windows\System32\urlmon.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширения OLE32 для Win32 131795770645383355 0x7ffac3cb0000 2772992 C:\Windows\System32\iertutil.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служебная программа времени выполнения для Internet Explorer 131795770645383355 0x7ffac4000000 274432 C:\Windows\SYSTEM32\policymanager.dll 10.0.14393.2035 (rs1_release_inmarket.180110-1910) Microsoft Corporation Policy Manager DLL 131795770645383355 0x7ffac4b90000 774144 C:\Windows\System32\StoreAgent.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation StoreAgent 131795770645383355 0x7ffac6610000 40960 C:\Windows\System32\rasadhlp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Remote Access AutoDial Helper 131795770645383355 0x7ffac66a0000 86016 C:\Windows\SYSTEM32\ondemandconnroutehelper.dll 10.0.14393.351 (rs1_release_inmarket.161014-1755) Microsoft Corporation On Demand Connctiond Route Helper 131795770645383355 0x7ffac69c0000 839680 C:\Windows\SYSTEM32\winhttp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Службы HTTP Windows 131795770645383355 0x7ffac76a0000 159744 C:\Windows\System32\sppc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Software Licensing Client DLL 131795770645383355 0x7ffac7990000 155648 C:\Windows\System32\SLC.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Software Licensing Client DLL 131795770645383355 0x7ffac83d0000 106496 C:\Windows\SYSTEM32\dhcpcsvc.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служба DHCP-клиента 131795770645383355 0x7ffac83f0000 90112 C:\Windows\SYSTEM32\dhcpcsvc6.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиент DHCPv6 131795770645383355 0x7ffac8420000 434176 C:\Windows\System32\fwpuclnt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API пользовательского режима FWP/IPsec 131795770645383355 0x7ffac8810000 45056 C:\Windows\SYSTEM32\WINNSI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Network Store Information RPC interface 131795770645383355 0x7ffacb140000 593920 C:\Windows\System32\msvcp110_win.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Microsoft® STL110 C++ Runtime Library 131795770645383355 0x7ffacb420000 204800 C:\Windows\SYSTEM32\ntmarta.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик Windows NT MARTA 131795770645383355 0x7ffacbaf0000 495616 C:\Windows\system32\schannel.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик безопасности TLS/SSL 131795770645383355 0x7ffacbbb0000 208896 C:\Windows\system32\rsaenh.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Enhanced Cryptographic Provider 131795770645383355 0x7ffacbbf0000 40960 C:\Windows\System32\DPAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Data Protection API 131795770645383355 0x7ffacbd30000 229376 C:\Windows\SYSTEM32\IPHLPAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API вспомогательного приложения IP 131795770645383355 0x7ffacbd70000 659456 C:\Windows\System32\DNSAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Динамическая библиотека API DNS-клиента 131795770645383355 0x7ffacbfb0000 376832 C:\Windows\system32\mswsock.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширение поставщика службы API Microsoft Windows Sockets 2.0 131795770645383355 0x7ffacc150000 94208 C:\Windows\System32\CRYPTSP.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Cryptographic Service Provider API 131795770645383355 0x7ffacc170000 45056 C:\Windows\System32\CRYPTBASE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base cryptographic API DLL 131795770645383355 0x7ffacc1f0000 241664 C:\Windows\SYSTEM32\NTASN1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft ASN.1 API 131795770645383355 0x7ffacc230000 155648 C:\Windows\SYSTEM32\ncrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Маршрутизатор Windows NCrypt 131795770645383355 0x7ffacc350000 180224 C:\Windows\System32\SspiCli.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Security Support Provider Interface 131795770645383355 0x7ffacc520000 622592 C:\Windows\SYSTEM32\sxs.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Fusion 2.5 131795770645383355 0x7ffacc620000 176128 C:\Windows\System32\bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795770645383355 0x7ffacc6e0000 61440 C:\Windows\System32\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795770645383355 0x7ffacc6f0000 311296 C:\Windows\System32\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795770645383355 0x7ffacc740000 81920 C:\Windows\System32\profapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Profile Basic API 131795770645383355 0x7ffacc760000 65536 C:\Windows\System32\MSASN1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ASN.1 Runtime APIs 131795770645383355 0x7ffacc8f0000 1003520 C:\Windows\System32\ucrtbase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645383355 0x7ffacc9f0000 434176 C:\Windows\System32\bcryptPrimitives.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Cryptographic Primitives Library 131795770645383355 0x7ffacca60000 122880 C:\Windows\System32\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795770645383355 0x7ffacca80000 348160 C:\Windows\System32\WINTRUST.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation Microsoft Trust Verification APIs 131795770645383355 0x7ffaccae0000 692224 C:\Windows\System32\shcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795770645383355 0x7ffaccb90000 7180288 C:\Windows\System32\windows.storage.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API хранения Microsoft WinRT 131795770645383355 0x7ffacd270000 2215936 C:\Windows\System32\KERNELBASE.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645383355 0x7ffacd490000 1871872 C:\Windows\System32\CRYPT32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API32 криптографии 131795770645383355 0x7ffacd710000 638976 C:\Windows\System32\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645383355 0x7ffacd7b0000 270336 C:\Windows\System32\cfgmgr32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Configuration Manager DLL 131795770645383355 0x7ffacd810000 22056960 C:\Windows\System32\SHELL32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Общая библиотека оболочки Windows 131795770645383355 0x7ffaced20000 782336 C:\Windows\System32\OLEAUT32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795770645383355 0x7ffacee50000 1183744 C:\Windows\System32\RPCRT4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795770645383355 0x7ffacef80000 32768 C:\Windows\System32\NSI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation NSI User-mode interface DLL 131795770645383355 0x7ffacef90000 647168 C:\Windows\System32\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795770645383355 0x7ffacf030000 651264 C:\Windows\System32\clbcatq.dll 2001.12.10941.16384 (rs1_release.160715-1616) Microsoft Corporation COM+ Configuration Catalog 131795770645383355 0x7ffacf0d0000 704512 C:\Windows\System32\KERNEL32.DLL 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645383355 0x7ffacf770000 212992 C:\Windows\System32\GDI32.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation GDI Client DLL 131795770645383355 0x7ffacf820000 434176 C:\Windows\System32\WS2_32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation 32-разрядная библиотека Windows Socket 2.0 131795770645383355 0x7ffacf890000 188416 C:\Windows\System32\IMM32.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Multi-User Windows IMM32 API Client DLL 131795770645383355 0x7ffacf8c0000 1462272 C:\Windows\System32\user32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795770645383355 0x7ffacfb30000 2916352 C:\Windows\System32\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795770645383355 0x7ffacfe20000 663552 C:\Windows\System32\advapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795770645383355 0x7ffad0070000 1277952 C:\Windows\System32\OLE32.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft OLE для Windows 131795770645383355 0x7ffad01b0000 335872 C:\Windows\System32\SHLWAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека небольших программ оболочки 131795770645383355 0x7ffad0210000 364544 C:\Windows\System32\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795770645383355 0x7ffad0270000 1908736 C:\Windows\SYSTEM32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 65 9636 664 6 00000000:0031f1da 131794956424585250 0 0 1 Обязательная метка\Средний обязательный уровень WIN-0UOTFKKVN1S\User SystemSettingsBroker.exe C:\Windows\System32\SystemSettingsBroker.exe C:\Windows\System32\SystemSettingsBroker.exe -Embedding Microsoft Corporation 10.0.14393.0 (rs1_release.160715-1616) System Settings Broker 131795770645383490 0x7ff6015f0000 196608 C:\Windows\System32\SystemSettingsBroker.exe 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation System Settings Broker 131795770645383490 0x7ffac1c40000 94208 C:\Windows\System32\SystemSettings.DataModel.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SystemSettings.Datamodel private API 131795770645383490 0x7ffacc6e0000 61440 C:\Windows\System32\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795770645383490 0x7ffacc8f0000 1003520 C:\Windows\System32\ucrtbase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645383490 0x7ffacc9f0000 434176 C:\Windows\System32\bcryptPrimitives.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Cryptographic Primitives Library 131795770645383490 0x7ffacd270000 2215936 C:\Windows\System32\KERNELBASE.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645383490 0x7ffacee50000 1183744 C:\Windows\System32\RPCRT4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795770645383490 0x7ffacef90000 647168 C:\Windows\System32\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795770645383490 0x7ffacf030000 651264 C:\Windows\System32\clbcatq.dll 2001.12.10941.16384 (rs1_release.160715-1616) Microsoft Corporation COM+ Configuration Catalog 131795770645383490 0x7ffacf0d0000 704512 C:\Windows\System32\KERNEL32.DLL 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645383490 0x7ffacfb30000 2916352 C:\Windows\System32\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795770645383490 0x7ffad0210000 364544 C:\Windows\System32\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795770645383490 0x7ffad0270000 1908736 C:\Windows\SYSTEM32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 66 10592 664 6 00000000:0031f1da 131794956519902643 0 0 1 Обязательная метка\Средний обязательный уровень WIN-0UOTFKKVN1S\User SystemSettings.exe C:\Windows\ImmersiveControlPanel\SystemSettings.exe "C:\Windows\ImmersiveControlPanel\SystemSettings.exe" -ServerName:microsoft.windows.immersivecontrolpanel Microsoft Corporation 10.0.14393.82 (rs1_release.160805-1735) Параметры 131795770645383654 0x18099ef0000 12288 C:\Windows\SYSTEM32\WMI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation WMI DC and DP functionality 131795770645383654 0x7ff7937a0000 98304 C:\Windows\ImmersiveControlPanel\SystemSettings.exe 10.0.14393.82 (rs1_release.160805-1735) Microsoft Corporation Параметры 131795770645383654 0x7ffaabce0000 2535424 C:\Windows\System32\NetworkMobileSettings.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation System settings network mobile handlers group 131795770645383654 0x7ffaac0c0000 1396736 C:\Windows\System32\Windows.UI.Xaml.Phone.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows UI XAML Phone API 131795770645383654 0x7ffaac220000 4952064 C:\Windows\ImmersiveControlPanel\SystemSettings.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation System Settings Application 131795770645383654 0x7ffaadd90000 258048 C:\Windows\System32\NetworkDesktopSettings.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Группа обработчиков системных параметров сетевого рабочего стола 131795770645383654 0x7ffaaf920000 905216 C:\Windows\ImmersiveControlPanel\SystemSettingsViewModel.Desktop.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation System Settings View Model Desktop 131795770645383654 0x7ffab0970000 262144 C:\Windows\system32\credprovhost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Хост инфраструктуры поставщика учетных данных 131795770645383654 0x7ffab0a70000 454656 C:\Windows\System32\fhcfg.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Диспетчер конфигураций истории файлов 131795770645383654 0x7ffab1d80000 262144 C:\Windows\SYSTEM32\eappcfg.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Eap Peer Config 131795770645383654 0x7ffab5520000 3231744 C:\Windows\SYSTEM32\msftedit.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Элемент управления "Поле ввода форматированного текста", версия 8.5 131795770645383654 0x7ffab5b40000 2527232 C:\Windows\SYSTEM32\dwrite.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Службы Microsoft DirectX Typography 131795770645383654 0x7ffab6710000 17231872 C:\Windows\System32\Windows.UI.Xaml.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows.UI.Xaml dll 131795770645383654 0x7ffab7d80000 753664 C:\Windows\SYSTEM32\RASAPI32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API удаленного доступа 131795770645383654 0x7ffab8190000 9191424 C:\Windows\system32\twinui.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation TWINUI 131795770645383654 0x7ffab91d0000 69632 C:\Windows\ImmersiveControlPanel\Telemetry.Desktop.dll 10.0.14393.953 (rs1_release_inmarket.170303-1614) Microsoft Corporation System Settings Telemetry Desktop 131795770645383654 0x7ffab9a40000 299008 C:\Windows\System32\RasMediaManager.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Ras Media Manager DLL 131795770645383654 0x7ffaba950000 188416 C:\Windows\System32\EthernetMediaManager.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Ethernet Media Manager DLL 131795770645383654 0x7ffabaa50000 339968 C:\Windows\System32\NetworkUXBroker.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation NetworkUXBroker DLL 131795770645383654 0x7ffabae40000 110592 C:\Windows\SYSTEM32\capauthz.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API авторизации возможностей 131795770645383654 0x7ffabaf70000 270336 C:\Windows\SYSTEM32\edputil.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служебная программа EDP 131795770645383654 0x7ffabb3c0000 450560 C:\Windows\SYSTEM32\TextInputFramework.dll 10.0.14393.2189 (rs1_release.180329-1711) Microsoft Corporation "TextInputFramework.DYNLINK" 131795770645383654 0x7ffabb430000 65536 C:\Windows\SYSTEM32\pcacli.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Program Compatibility Assistant Client Module 131795770645383654 0x7ffabb490000 512000 C:\Windows\system32\twinapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation twinapi 131795770645383654 0x7ffabcc60000 1122304 C:\Windows\System32\MiracastReceiver.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API приемника Miracast 131795770645383654 0x7ffabcf30000 110592 C:\Windows\SYSTEM32\MPR.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека маршрутизации для нескольких служб доступа 131795770645383654 0x7ffabd4a0000 1613824 C:\Windows\System32\Windows.Globalization.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Globalization 131795770645383654 0x7ffabe6e0000 561152 C:\Windows\system32\directmanipulation.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Direct Manipulation Component 131795770645383654 0x7ffabe9c0000 188416 C:\Windows\SYSTEM32\globinputhost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Globalization Extension API for Input 131795770645383654 0x7ffabeb20000 385024 C:\Windows\System32\Windows.ApplicationModel.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows ApplicationModel API Server 131795770645383654 0x7ffabfd80000 86016 C:\Windows\System32\threadpoolwinrt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows WinRT Threadpool 131795770645383654 0x7ffabff10000 155648 C:\Windows\SYSTEM32\SRVCLI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Server Service Client DLL 131795770645383654 0x7ffac00c0000 282624 C:\Windows\SYSTEM32\windows.ui.core.textinput.dll 10.0.14393.2189 (rs1_release.180329-1711) Microsoft Corporation Windows.UI.Core.TextInput dll 131795770645383654 0x7ffac01e0000 397312 C:\Windows\SYSTEM32\wincorlib.DLL 10.0.14393.576 (rs1_release_inmarket.161208-2252) Microsoft Corporation Microsoft Windows ® WinRT core library 131795770645383654 0x7ffac0470000 1478656 C:\Windows\SYSTEM32\MFPlat.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Media Foundation Platform DLL 131795770645383654 0x7ffac0bf0000 3559424 C:\Windows\System32\ActXPrxy.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation ActiveX Interface Marshaling Library 131795770645383654 0x7ffac1470000 704512 C:\Windows\System32\ieproxy.dll 11.00.14393.2007 (rs1_release.171231-1800) Microsoft Corporation IE ActiveX Interface Marshaling Library 131795770645383654 0x7ffac1e50000 188416 C:\Windows\SYSTEM32\RTWorkQ.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL для WorkQueue реального времени 131795770645383654 0x7ffac20d0000 110592 C:\Windows\System32\rmclient.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Resource Manager Client 131795770645383654 0x7ffac23c0000 331776 C:\Windows\System32\OneCoreCommonProxyStub.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation OneCore Common Proxy Stub 131795770645383654 0x7ffac2700000 98304 C:\Windows\SYSTEM32\NETAPI32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API DLL 131795770645383654 0x7ffac2990000 385024 C:\Windows\SYSTEM32\NInput.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Pen and Touch Input Component 131795770645383654 0x7ffac2a20000 81920 C:\Windows\SYSTEM32\rtutils.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Routing Utilities 131795770645383654 0x7ffac2bf0000 65536 C:\Windows\SYSTEM32\EFSUTIL.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation EFS Utility Library 131795770645383654 0x7ffac34e0000 1843200 C:\Windows\SYSTEM32\urlmon.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширения OLE32 для Win32 131795770645383654 0x7ffac3cb0000 2772992 C:\Windows\SYSTEM32\iertutil.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служебная программа времени выполнения для Internet Explorer 131795770645383654 0x7ffac4000000 274432 C:\Windows\SYSTEM32\policymanager.dll 10.0.14393.2035 (rs1_release_inmarket.180110-1910) Microsoft Corporation Policy Manager DLL 131795770645383654 0x7ffac42a0000 659456 C:\Windows\SYSTEM32\StateRepository.Core.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation StateRepository Core 131795770645383654 0x7ffac46d0000 4161536 C:\Windows\System32\Windows.StateRepository.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Сервер Windows StateRepository API Server 131795770645383654 0x7ffac4e70000 102400 C:\Windows\SYSTEM32\samcli.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Security Accounts Manager Client DLL 131795770645383654 0x7ffac5350000 1765376 C:\Windows\System32\Windows.UI.Immersive.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation WINDOWS.UI.IMMERSIVE 131795770645383654 0x7ffac5c50000 131072 C:\Windows\SYSTEM32\rasman.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Remote Access Connection Manager 131795770645383654 0x7ffac60e0000 221184 C:\Windows\SYSTEM32\XmlLite.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft XmlLite Library 131795770645383654 0x7ffac69c0000 839680 C:\Windows\SYSTEM32\WINHTTP.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Службы HTTP Windows 131795770645383654 0x7ffac6ac0000 835584 C:\Windows\System32\Windows.UI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Runtime UI Foundation DLL 131795770645383654 0x7ffac6c40000 2596864 C:\Windows\WinSxS\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.14393.953_none_42151e83c686086b\Comctl32.dll 6.10 (rs1_release_inmarket.170303-1614) Microsoft Corporation Библиотека элементов управления взаимодействия с пользователем 131795770645383654 0x7ffac6f50000 5632000 C:\Windows\SYSTEM32\d2d1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека Microsoft D2D 131795770645383654 0x7ffac7580000 1077248 C:\Windows\SYSTEM32\MrmCoreR.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Windows MRM 131795770645383654 0x7ffac76a0000 159744 C:\Windows\SYSTEM32\sppc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Software Licensing Client DLL 131795770645383654 0x7ffac7720000 1601536 C:\Windows\System32\OneCoreUAPCommonProxyStub.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation OneCoreUAP Common Proxy Stub 131795770645383654 0x7ffac7990000 155648 C:\Windows\SYSTEM32\SLC.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Software Licensing Client DLL 131795770645383654 0x7ffac7fc0000 2674688 C:\Windows\SYSTEM32\d3d10warp.dll 10.0.14393.576 (rs1_release_inmarket.161208-2252) Microsoft Corporation Direct3D 10 Rasterizer 131795770645383654 0x7ffac84f0000 299008 C:\Windows\system32\DataExchange.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation Data exchange 131795770645383654 0x7ffac8880000 69632 C:\Windows\SYSTEM32\wmiclnt.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation WMI Client API 131795770645383654 0x7ffac88a0000 2842624 C:\Windows\SYSTEM32\d3d11.dll 10.0.14393.953 (rs1_release_inmarket.170303-1614) Microsoft Corporation Direct3D 11 Runtime 131795770645383654 0x7ffac9220000 397312 C:\Windows\SYSTEM32\wevtapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API настройки и использования событий 131795770645383654 0x7ffac9290000 40960 C:\Windows\SYSTEM32\DSROLE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DS Setup Client DLL 131795770645383654 0x7ffac92e0000 1269760 C:\Windows\System32\WinTypes.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL основных типов Windows 131795770645383654 0x7ffac9500000 2682880 C:\Windows\system32\CoreUIComponents.dll 131795770645383654 0x7ffac9f50000 1736704 C:\Windows\system32\windowscodecs.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Microsoft Windows Codecs Library 131795770645383654 0x7ffaca340000 1593344 C:\Windows\SYSTEM32\PROPSYS.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Система страниц свойств (Майкрософт) 131795770645383654 0x7ffaca4e0000 77824 C:\Windows\SYSTEM32\WTSAPI32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Remote Desktop Session Host Server SDK APIs 131795770645383654 0x7ffaca560000 45056 C:\Windows\SYSTEM32\NcaApi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Network Connectivity Assistant API 131795770645383654 0x7ffaca570000 421888 C:\Windows\SYSTEM32\Bcp47Langs.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation BCP47 Language Classes 131795770645383654 0x7ffaca5e0000 155648 C:\Windows\SYSTEM32\dwmapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Интерфейс API диспетчера окон рабочего стола (Майкрософт) 131795770645383654 0x7ffaca640000 770048 C:\Windows\SYSTEM32\CoreMessaging.dll 10.0.14393.0 Microsoft Corporation Microsoft CoreMessaging Dll 131795770645383654 0x7ffaca770000 1380352 C:\Windows\SYSTEM32\dcomp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft DirectComposition Library 131795770645383654 0x7ffacaf00000 610304 C:\Windows\system32\uxtheme.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека тем UxTheme (Microsoft) 131795770645383654 0x7ffacb140000 593920 C:\Windows\SYSTEM32\msvcp110_win.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Microsoft® STL110 C++ Runtime Library 131795770645383654 0x7ffacb1e0000 1163264 C:\Windows\System32\twinapi.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation twinapi.appcore 131795770645383654 0x7ffacb300000 364544 C:\Windows\SYSTEM32\VEEventDispatcher.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Visual Element Event dispatcher 131795770645383654 0x7ffacb3f0000 163840 C:\Windows\SYSTEM32\DEVOBJ.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Device Information Set DLL 131795770645383654 0x7ffacb780000 651264 C:\Windows\SYSTEM32\dxgi.dll 10.0.14393.953 (rs1_release_inmarket.170303-1614) Microsoft Corporation DirectX Graphics Infrastructure 131795770645383654 0x7ffacbd30000 229376 C:\Windows\SYSTEM32\IPHLPAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API вспомогательного приложения IP 131795770645383654 0x7ffacbe20000 53248 C:\Windows\SYSTEM32\netutils.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API Helpers DLL 131795770645383654 0x7ffacbe40000 126976 C:\Windows\SYSTEM32\USERENV.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Userenv 131795770645383654 0x7ffacc150000 94208 C:\Windows\SYSTEM32\cryptsp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Cryptographic Service Provider API 131795770645383654 0x7ffacc170000 45056 C:\Windows\SYSTEM32\CRYPTBASE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base cryptographic API DLL 131795770645383654 0x7ffacc1f0000 241664 C:\Windows\SYSTEM32\NTASN1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft ASN.1 API 131795770645383654 0x7ffacc230000 155648 C:\Windows\SYSTEM32\ncrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Маршрутизатор Windows NCrypt 131795770645383654 0x7ffacc350000 180224 C:\Windows\SYSTEM32\SspiCli.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Security Support Provider Interface 131795770645383654 0x7ffacc5c0000 352256 C:\Windows\SYSTEM32\WINSTA.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Winstation Library 131795770645383654 0x7ffacc620000 176128 C:\Windows\SYSTEM32\bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795770645383654 0x7ffacc6e0000 61440 C:\Windows\System32\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795770645383654 0x7ffacc6f0000 311296 C:\Windows\System32\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795770645383654 0x7ffacc740000 81920 C:\Windows\System32\profapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Profile Basic API 131795770645383654 0x7ffacc760000 65536 C:\Windows\System32\MSASN1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ASN.1 Runtime APIs 131795770645383654 0x7ffacc8f0000 1003520 C:\Windows\System32\ucrtbase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645383654 0x7ffacc9f0000 434176 C:\Windows\System32\bcryptPrimitives.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Cryptographic Primitives Library 131795770645383654 0x7ffacca60000 122880 C:\Windows\System32\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795770645383654 0x7ffaccae0000 692224 C:\Windows\System32\shcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795770645383654 0x7ffaccb90000 7180288 C:\Windows\System32\windows.storage.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API хранения Microsoft WinRT 131795770645383654 0x7ffacd270000 2215936 C:\Windows\System32\KERNELBASE.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645383654 0x7ffacd490000 1871872 C:\Windows\System32\CRYPT32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API32 криптографии 131795770645383654 0x7ffacd710000 638976 C:\Windows\System32\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645383654 0x7ffacd7b0000 270336 C:\Windows\System32\cfgmgr32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Configuration Manager DLL 131795770645383654 0x7ffacd810000 22056960 C:\Windows\System32\SHELL32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Общая библиотека оболочки Windows 131795770645383654 0x7ffaced20000 782336 C:\Windows\System32\OLEAUT32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795770645383654 0x7ffacee50000 1183744 C:\Windows\System32\RPCRT4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795770645383654 0x7ffacef90000 647168 C:\Windows\System32\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795770645383654 0x7ffacf030000 651264 C:\Windows\System32\clbcatq.dll 2001.12.10941.16384 (rs1_release.160715-1616) Microsoft Corporation COM+ Configuration Catalog 131795770645383654 0x7ffacf0d0000 704512 C:\Windows\System32\KERNEL32.DLL 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645383654 0x7ffacf1e0000 1417216 C:\Windows\System32\msctf.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Серверная библиотека MSCTF 131795770645383654 0x7ffacf770000 212992 C:\Windows\System32\GDI32.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation GDI Client DLL 131795770645383654 0x7ffacf820000 434176 C:\Windows\System32\WS2_32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation 32-разрядная библиотека Windows Socket 2.0 131795770645383654 0x7ffacf890000 188416 C:\Windows\System32\IMM32.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Multi-User Windows IMM32 API Client DLL 131795770645383654 0x7ffacf8c0000 1462272 C:\Windows\System32\USER32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795770645383654 0x7ffacfb30000 2916352 C:\Windows\System32\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795770645383654 0x7ffacfe20000 663552 C:\Windows\System32\advapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795770645383654 0x7ffad0070000 1277952 C:\Windows\System32\ole32.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft OLE для Windows 131795770645383654 0x7ffad01b0000 335872 C:\Windows\System32\SHLWAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека небольших программ оболочки 131795770645383654 0x7ffad0210000 364544 C:\Windows\System32\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795770645383654 0x7ffad0270000 1908736 C:\Windows\SYSTEM32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 67 10964 664 6 00000000:0031f1ab 131794956837373387 0 0 1 Обязательная метка\Высокий обязательный уровень WIN-0UOTFKKVN1S\User DllHost.exe C:\Windows\system32\DllHost.exe C:\Windows\system32\DllHost.exe /Processid:{BA126F01-2166-11D1-B1D0-00805FC1270E} Microsoft Corporation 10.0.14393.0 (rs1_release.160715-1616) COM Surrogate 131795770645383742 0x7ff7a2280000 36864 C:\Windows\system32\DllHost.exe 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation COM Surrogate 131795770645383742 0x7ffab2460000 2822144 C:\Windows\system32\netshell.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Оболочка сетевых подключений 131795770645383742 0x7ffac9790000 98304 C:\Windows\system32\nlaapi.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Network Location Awareness 2 131795770645383742 0x7ffacaf00000 610304 C:\Windows\system32\uxtheme.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека тем UxTheme (Microsoft) 131795770645383742 0x7ffacbd30000 229376 C:\Windows\system32\IPHLPAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API вспомогательного приложения IP 131795770645383742 0x7ffacc6e0000 61440 C:\Windows\System32\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795770645383742 0x7ffacc6f0000 311296 C:\Windows\System32\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795770645383742 0x7ffacc740000 81920 C:\Windows\System32\profapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Profile Basic API 131795770645383742 0x7ffacc8f0000 1003520 C:\Windows\System32\ucrtbase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645383742 0x7ffacc9f0000 434176 C:\Windows\System32\bcryptPrimitives.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Cryptographic Primitives Library 131795770645383742 0x7ffacca60000 122880 C:\Windows\System32\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795770645383742 0x7ffaccae0000 692224 C:\Windows\System32\shcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795770645383742 0x7ffaccb90000 7180288 C:\Windows\System32\windows.storage.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API хранения Microsoft WinRT 131795770645383742 0x7ffacd270000 2215936 C:\Windows\System32\KERNELBASE.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645383742 0x7ffacd7b0000 270336 C:\Windows\System32\cfgmgr32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Configuration Manager DLL 131795770645383742 0x7ffacd810000 22056960 C:\Windows\System32\SHELL32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Общая библиотека оболочки Windows 131795770645383742 0x7ffacee50000 1183744 C:\Windows\System32\RPCRT4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795770645383742 0x7ffacef90000 647168 C:\Windows\System32\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795770645383742 0x7ffacf030000 651264 C:\Windows\System32\clbcatq.dll 2001.12.10941.16384 (rs1_release.160715-1616) Microsoft Corporation COM+ Configuration Catalog 131795770645383742 0x7ffacf0d0000 704512 C:\Windows\System32\KERNEL32.DLL 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645383742 0x7ffacf770000 212992 C:\Windows\System32\GDI32.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation GDI Client DLL 131795770645383742 0x7ffacf890000 188416 C:\Windows\System32\IMM32.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Multi-User Windows IMM32 API Client DLL 131795770645383742 0x7ffacf8c0000 1462272 C:\Windows\System32\user32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795770645383742 0x7ffacfb30000 2916352 C:\Windows\System32\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795770645383742 0x7ffacfe20000 663552 C:\Windows\System32\advapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795770645383742 0x7ffad0070000 1277952 C:\Windows\System32\ole32.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft OLE для Windows 131795770645383742 0x7ffad01b0000 335872 C:\Windows\System32\SHLWAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека небольших программ оболочки 131795770645383742 0x7ffad0210000 364544 C:\Windows\System32\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795770645383742 0x7ffad0270000 1908736 C:\Windows\SYSTEM32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 76 11496 664 6 00000000:0031f1da 131794958406617238 0 0 1 Обязательная метка\Низкий обязательный уровень WIN-0UOTFKKVN1S\User SearchUI.exe C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\SearchUI.exe "C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\SearchUI.exe" -ServerName:CortanaUI.AppXa50dqqa5gqv4a428c9y1jjw7m3btvepj.mca Microsoft Corporation 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Search and Cortana application 131795770645385613 0x7ff79c3c0000 10706944 C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\SearchUI.exe 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Search and Cortana application 131795770645385613 0x7ffab2c00000 8179712 C:\Windows\SYSTEM32\chakra.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft ® Chakra (Private) 131795770645385613 0x7ffab33d0000 258048 C:\Windows\SYSTEM32\MLANG.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL многоязыковой поддержки 131795770645385613 0x7ffab3540000 22740992 C:\Windows\SYSTEM32\edgehtml.dll 11.00.14393.447 (rs1_release_inmarket.161102-0100) Microsoft Corporation Веб-платформа Microsoft Edge 131795770645385613 0x7ffab4b90000 655360 C:\Windows\System32\StructuredQuery.dll 7.0.14393.2068 (rs1_release.180209-1727) Microsoft Corporation Structured Query 131795770645385613 0x7ffab4c70000 4874240 C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\RemindersUI.dll 131795770645385613 0x7ffab52c0000 2445312 C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.BackgroundTask.dll 131795770645385613 0x7ffab5520000 3231744 C:\Windows\SYSTEM32\msftedit.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Элемент управления "Поле ввода форматированного текста", версия 8.5 131795770645385613 0x7ffab5840000 3108864 C:\Windows\System32\Speech_OneCore\Common\sapi_onecore.dll 5.3.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Speech API 131795770645385613 0x7ffab5b40000 2527232 C:\Windows\SYSTEM32\dwrite.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Службы Microsoft DirectX Typography 131795770645385613 0x7ffab5db0000 9781248 C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\CortanaApi.dll 131795770645385613 0x7ffab6710000 17231872 C:\Windows\System32\Windows.UI.Xaml.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows.UI.Xaml dll 131795770645385613 0x7ffab7a00000 3424256 C:\Windows\system32\tquery.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Запросы Microsoft Tripoli 131795770645385613 0x7ffab9c00000 1343488 C:\Windows\System32\Windows.Web.Http.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL Windows.Web.Http 131795770645385613 0x7ffab9d50000 1429504 C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Core.dll 131795770645385613 0x7ffabaab0000 94208 C:\Windows\SYSTEM32\profext.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation profext 131795770645385613 0x7ffabae40000 110592 C:\Windows\SYSTEM32\capauthz.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API авторизации возможностей 131795770645385613 0x7ffabaf70000 270336 C:\Windows\SYSTEM32\edputil.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служебная программа EDP 131795770645385613 0x7ffabb200000 294912 C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\CortanaApi.ProxyStub.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation "CortanaApi.ProxyStub.DYNLINK" 131795770645385613 0x7ffabb3c0000 450560 C:\Windows\SYSTEM32\TextInputFramework.dll 10.0.14393.2189 (rs1_release.180329-1711) Microsoft Corporation "TextInputFramework.DYNLINK" 131795770645385613 0x7ffabb490000 512000 C:\Windows\System32\twinapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation twinapi 131795770645385613 0x7ffabbd10000 65536 C:\Windows\SYSTEM32\tokenbinding.dll 10.0.14393.1593 (rs1_release.170731-1934) Microsoft Corporation Token Binding Protocol 131795770645385613 0x7ffabd4a0000 1613824 C:\Windows\System32\Windows.Globalization.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Globalization 131795770645385613 0x7ffabe4d0000 286720 C:\Windows\System32\MSWB7.dll 10.0.14393.1737 (rs1_release_inmarket.170914-1249) Microsoft Corporation MSWB7 DLL 131795770645385613 0x7ffabe6e0000 561152 C:\Windows\system32\directmanipulation.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Direct Manipulation Component 131795770645385613 0x7ffabe770000 774144 C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\CSGSuggestLib.dll 131795770645385613 0x7ffabe9c0000 188416 C:\Windows\SYSTEM32\globinputhost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Globalization Extension API for Input 131795770645385613 0x7ffabea90000 135168 C:\Windows\System32\Windows.ApplicationModel.Background.SystemEventsBroker.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Background System Events Broker API Server 131795770645385613 0x7ffabeac0000 335872 C:\Windows\System32\Windows.Storage.ApplicationData.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Application Data API Server 131795770645385613 0x7ffabeb20000 385024 C:\Windows\System32\Windows.ApplicationModel.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows ApplicationModel API Server 131795770645385613 0x7ffabefa0000 192512 C:\Windows\system32\Cortana.Persona.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Cortana.Persona 131795770645385613 0x7ffabf5d0000 2924544 C:\Windows\SYSTEM32\WININET.dll 11.00.14393.447 (rs1_release_inmarket.161102-0100) Microsoft Corporation Расширения Интернета для Win32 131795770645385613 0x7ffabf8a0000 122880 C:\Windows\System32\Windows.Cortana.ProxyStub.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows.Cortana.ProxyStub 131795770645385613 0x7ffabfce0000 90112 C:\Windows\System32\Windows.Globalization.Fontgroups.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Fonts Mapping API 131795770645385613 0x7ffabfd00000 356352 C:\Windows\System32\Windows.Graphics.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation WinRT Windows Graphics DLL 131795770645385613 0x7ffabfd80000 86016 C:\Windows\System32\threadpoolwinrt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows WinRT Threadpool 131795770645385613 0x7ffabfe10000 237568 C:\Windows\SYSTEM32\rometadata.dll 4.6.1586.0 built by: NETFXREL2 Microsoft Corporation Microsoft MetaData Library 131795770645385613 0x7ffac00c0000 282624 C:\Windows\SYSTEM32\windows.ui.core.textinput.dll 10.0.14393.2189 (rs1_release.180329-1711) Microsoft Corporation Windows.UI.Core.TextInput dll 131795770645385613 0x7ffac01e0000 397312 C:\Windows\SYSTEM32\wincorlib.DLL 10.0.14393.576 (rs1_release_inmarket.161208-2252) Microsoft Corporation Microsoft Windows ® WinRT core library 131795770645385613 0x7ffac0bf0000 3559424 C:\Windows\System32\ActXPrxy.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation ActiveX Interface Marshaling Library 131795770645385613 0x7ffac10b0000 217088 C:\Windows\system32\PersonaX.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation PersonaX 131795770645385613 0x7ffac1c40000 94208 C:\Windows\System32\SystemSettings.DataModel.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SystemSettings.Datamodel private API 131795770645385613 0x7ffac20d0000 110592 C:\Windows\System32\rmclient.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Resource Manager Client 131795770645385613 0x7ffac23c0000 331776 C:\Windows\System32\OneCoreCommonProxyStub.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation OneCore Common Proxy Stub 131795770645385613 0x7ffac2990000 385024 C:\Windows\SYSTEM32\NInput.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Pen and Touch Input Component 131795770645385613 0x7ffac2c30000 135168 C:\Windows\SYSTEM32\clipc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиент платформы лицензирования клиента 131795770645385613 0x7ffac2d80000 5140480 C:\Windows\SYSTEM32\cdp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API клиента Microsoft (R) CDP 131795770645385613 0x7ffac34e0000 1843200 C:\Windows\SYSTEM32\urlmon.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширения OLE32 для Win32 131795770645385613 0x7ffac3810000 167936 C:\Windows\SYSTEM32\Cabinet.dll 5.00 (rs1_release.160715-1616) Microsoft Corporation Microsoft® Cabinet File API 131795770645385613 0x7ffac3b80000 286720 C:\Windows\system32\indexeddbserver.dll 10.0.14393.2189 (rs1_release.180329-1711) Microsoft Corporation IndexedDb host 131795770645385613 0x7ffac3bf0000 94208 C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\ActionMgr.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Cortana Action Manager 131795770645385613 0x7ffac3cb0000 2772992 C:\Windows\SYSTEM32\iertutil.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служебная программа времени выполнения для Internet Explorer 131795770645385613 0x7ffac4000000 274432 C:\Windows\SYSTEM32\policymanager.dll 10.0.14393.2035 (rs1_release_inmarket.180110-1910) Microsoft Corporation Policy Manager DLL 131795770645385613 0x7ffac5070000 798720 C:\Windows\System32\Windows.Web.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL веб-клиента 131795770645385613 0x7ffac5350000 1765376 C:\Windows\System32\Windows.UI.Immersive.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation WINDOWS.UI.IMMERSIVE 131795770645385613 0x7ffac5ce0000 1744896 C:\Windows\SYSTEM32\UIAutomationCore.DLL 7.2.14393.0 (rs1_release.160715-1616) Microsoft Corporation Основные автоматические компоненты Microsoft UI 131795770645385613 0x7ffac60e0000 221184 C:\Windows\SYSTEM32\XmlLite.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft XmlLite Library 131795770645385613 0x7ffac6610000 40960 C:\Windows\System32\rasadhlp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Remote Access AutoDial Helper 131795770645385613 0x7ffac6620000 192512 C:\Windows\System32\biwinrt.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation Windows Background Broker Infrastructure 131795770645385613 0x7ffac66a0000 86016 C:\Windows\SYSTEM32\ondemandconnroutehelper.dll 10.0.14393.351 (rs1_release_inmarket.161014-1755) Microsoft Corporation On Demand Connctiond Route Helper 131795770645385613 0x7ffac69c0000 839680 C:\Windows\SYSTEM32\WINHTTP.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Службы HTTP Windows 131795770645385613 0x7ffac6ac0000 835584 C:\Windows\System32\Windows.UI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Runtime UI Foundation DLL 131795770645385613 0x7ffac6bb0000 118784 C:\Windows\system32\windows.cortana.pal.desktop.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows.Cortana.PAL.Desktop 131795770645385613 0x7ffac6bd0000 413696 C:\Windows\SYSTEM32\OLEACC.dll 7.2.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Active Accessibility Core Component 131795770645385613 0x7ffac6ed0000 155648 C:\Windows\SYSTEM32\srpapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL программных интерфейсов (API) поставщика общих ресурсов 131795770645385613 0x7ffac6f50000 5632000 C:\Windows\SYSTEM32\d2d1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека Microsoft D2D 131795770645385613 0x7ffac7580000 1077248 C:\Windows\System32\MrmCoreR.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Windows MRM 131795770645385613 0x7ffac7720000 1601536 C:\Windows\System32\OneCoreUAPCommonProxyStub.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation OneCoreUAP Common Proxy Stub 131795770645385613 0x7ffac78b0000 65536 C:\Windows\system32\msimtf.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Active IMM Server DLL 131795770645385613 0x7ffac7c50000 118784 C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\BingConfigurationClient.dll 10.0.14393.82 (rs1_release.160805-1735) Microsoft Corporation Bing Configuration Client DLL 131795770645385613 0x7ffac7d80000 49152 C:\Windows\System32\Windows.ApplicationModel.Background.TimeBroker.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Background Time Broker API Server 131795770645385613 0x7ffac7e30000 40960 C:\Windows\SYSTEM32\fontgroupsoverride.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation fontgroupsoverride.dll 131795770645385613 0x7ffac7fc0000 2674688 C:\Windows\SYSTEM32\d3d10warp.dll 10.0.14393.576 (rs1_release_inmarket.161208-2252) Microsoft Corporation Direct3D 10 Rasterizer 131795770645385613 0x7ffac83d0000 106496 C:\Windows\SYSTEM32\dhcpcsvc.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служба DHCP-клиента 131795770645385613 0x7ffac83f0000 90112 C:\Windows\SYSTEM32\dhcpcsvc6.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиент DHCPv6 131795770645385613 0x7ffac84f0000 299008 C:\Windows\system32\DataExchange.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation Data exchange 131795770645385613 0x7ffac8810000 45056 C:\Windows\SYSTEM32\WINNSI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Network Store Information RPC interface 131795770645385613 0x7ffac88a0000 2842624 C:\Windows\SYSTEM32\d3d11.dll 10.0.14393.953 (rs1_release_inmarket.170303-1614) Microsoft Corporation Direct3D 11 Runtime 131795770645385613 0x7ffac8fa0000 253952 C:\Windows\SYSTEM32\logoncli.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Net Logon Client DLL 131795770645385613 0x7ffac92e0000 1269760 C:\Windows\System32\WinTypes.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL основных типов Windows 131795770645385613 0x7ffac9480000 462848 C:\Windows\SYSTEM32\MMDevAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation MMDevice API 131795770645385613 0x7ffac9500000 2682880 C:\Windows\system32\CoreUIComponents.dll 131795770645385613 0x7ffac9f50000 1736704 C:\Windows\system32\windowscodecs.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Microsoft Windows Codecs Library 131795770645385613 0x7ffaca260000 45056 C:\Windows\SYSTEM32\SystemEventsBrokerClient.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation system Events Broker Client Library 131795770645385613 0x7ffaca340000 1593344 C:\Windows\SYSTEM32\PROPSYS.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Система страниц свойств (Майкрософт) 131795770645385613 0x7ffaca570000 421888 C:\Windows\SYSTEM32\Bcp47Langs.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation BCP47 Language Classes 131795770645385613 0x7ffaca5e0000 155648 C:\Windows\SYSTEM32\dwmapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Интерфейс API диспетчера окон рабочего стола (Майкрософт) 131795770645385613 0x7ffaca640000 770048 C:\Windows\SYSTEM32\CoreMessaging.dll 10.0.14393.0 Microsoft Corporation Microsoft CoreMessaging Dll 131795770645385613 0x7ffaca770000 1380352 C:\Windows\SYSTEM32\dcomp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft DirectComposition Library 131795770645385613 0x7ffacab40000 176128 C:\Windows\SYSTEM32\winmmbase.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base Multimedia Extension API DLL 131795770645385613 0x7ffacadf0000 499712 C:\Windows\system32\apphelp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиентская библиотека совместимости приложений 131795770645385613 0x7ffacaf00000 610304 C:\Windows\system32\uxtheme.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека тем UxTheme (Microsoft) 131795770645385613 0x7ffacb140000 593920 C:\Windows\SYSTEM32\msvcp110_win.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Microsoft® STL110 C++ Runtime Library 131795770645385613 0x7ffacb1e0000 1163264 C:\Windows\System32\twinapi.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation twinapi.appcore 131795770645385613 0x7ffacb300000 364544 C:\Windows\SYSTEM32\VEEventDispatcher.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Visual Element Event dispatcher 131795770645385613 0x7ffacb3f0000 163840 C:\Windows\SYSTEM32\DEVOBJ.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Device Information Set DLL 131795770645385613 0x7ffacb420000 204800 C:\Windows\SYSTEM32\ntmarta.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик Windows NT MARTA 131795770645385613 0x7ffacb780000 651264 C:\Windows\SYSTEM32\dxgi.dll 10.0.14393.953 (rs1_release_inmarket.170303-1614) Microsoft Corporation DirectX Graphics Infrastructure 131795770645385613 0x7ffacbd30000 229376 C:\Windows\SYSTEM32\IPHLPAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API вспомогательного приложения IP 131795770645385613 0x7ffacbd70000 659456 C:\Windows\SYSTEM32\DNSAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Динамическая библиотека API DNS-клиента 131795770645385613 0x7ffacbe40000 126976 C:\Windows\SYSTEM32\userenv.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Userenv 131795770645385613 0x7ffacbfb0000 376832 C:\Windows\system32\mswsock.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширение поставщика службы API Microsoft Windows Sockets 2.0 131795770645385613 0x7ffacc150000 94208 C:\Windows\SYSTEM32\cryptsp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Cryptographic Service Provider API 131795770645385613 0x7ffacc170000 45056 C:\Windows\SYSTEM32\CRYPTBASE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base cryptographic API DLL 131795770645385613 0x7ffacc1f0000 241664 C:\Windows\SYSTEM32\NTASN1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft ASN.1 API 131795770645385613 0x7ffacc230000 155648 C:\Windows\SYSTEM32\ncrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Маршрутизатор Windows NCrypt 131795770645385613 0x7ffacc350000 180224 C:\Windows\SYSTEM32\SspiCli.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Security Support Provider Interface 131795780654647361 0x7ffacc520000 622592 C:\Windows\System32\sxs.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Fusion 2.5 131795770645385613 0x7ffacc620000 176128 C:\Windows\SYSTEM32\bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795770645385613 0x7ffacc6e0000 61440 C:\Windows\System32\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795770645385613 0x7ffacc6f0000 311296 C:\Windows\System32\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795770645385613 0x7ffacc740000 81920 C:\Windows\System32\profapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Profile Basic API 131795770645385613 0x7ffacc760000 65536 C:\Windows\System32\MSASN1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ASN.1 Runtime APIs 131795770645385613 0x7ffacc8f0000 1003520 C:\Windows\System32\ucrtbase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645385613 0x7ffacc9f0000 434176 C:\Windows\System32\bcryptPrimitives.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Cryptographic Primitives Library 131795770645385613 0x7ffacca60000 122880 C:\Windows\System32\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795770645385613 0x7ffaccae0000 692224 C:\Windows\System32\shcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795770645385613 0x7ffaccb90000 7180288 C:\Windows\System32\windows.storage.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API хранения Microsoft WinRT 131795770645385613 0x7ffacd270000 2215936 C:\Windows\System32\KERNELBASE.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645385613 0x7ffacd490000 1871872 C:\Windows\System32\CRYPT32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API32 криптографии 131795770645385613 0x7ffacd710000 638976 C:\Windows\System32\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645385613 0x7ffacd7b0000 270336 C:\Windows\System32\cfgmgr32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Configuration Manager DLL 131795770645385613 0x7ffacd810000 22056960 C:\Windows\System32\shell32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Общая библиотека оболочки Windows 131795770645385613 0x7ffaced20000 782336 C:\Windows\System32\OLEAUT32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795770645385613 0x7ffacee50000 1183744 C:\Windows\System32\RPCRT4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795770645385613 0x7ffacef80000 32768 C:\Windows\System32\NSI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation NSI User-mode interface DLL 131795770645385613 0x7ffacef90000 647168 C:\Windows\System32\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795770645385613 0x7ffacf0d0000 704512 C:\Windows\System32\KERNEL32.DLL 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645385613 0x7ffacf1e0000 1417216 C:\Windows\System32\msctf.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Серверная библиотека MSCTF 131795770645385613 0x7ffacf770000 212992 C:\Windows\System32\GDI32.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation GDI Client DLL 131795770645385613 0x7ffacf820000 434176 C:\Windows\System32\WS2_32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation 32-разрядная библиотека Windows Socket 2.0 131795770645385613 0x7ffacf890000 188416 C:\Windows\System32\IMM32.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Multi-User Windows IMM32 API Client DLL 131795770645385613 0x7ffacf8c0000 1462272 C:\Windows\System32\user32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795770645385613 0x7ffacfb30000 2916352 C:\Windows\System32\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795770645385613 0x7ffacfe20000 663552 C:\Windows\System32\advapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795770645385613 0x7ffad0070000 1277952 C:\Windows\System32\ole32.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft OLE для Windows 131795770645385613 0x7ffad01b0000 335872 C:\Windows\System32\shlwapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека небольших программ оболочки 131795770645385613 0x7ffad0210000 364544 C:\Windows\System32\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795770645385613 0x7ffad0270000 1908736 C:\Windows\SYSTEM32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 79 5612 904 22 00000000:000003e5 131794965205293998 0 0 1 Обязательная метка\Обязательный уровень системы NT AUTHORITY\LOCAL SERVICE dashost.exe C:\Windows\system32\dashost.exe dashost.exe {609e1ffd-7b4d-4dbc-a36f725917d81f2d} Microsoft Corporation 10.0.14393.82 (rs1_release.160805-1735) Device Association Framework Provider Host 131795770645385987 0x7ff6559c0000 110592 C:\Windows\system32\dashost.exe 10.0.14393.82 (rs1_release.160805-1735) Microsoft Corporation Device Association Framework Provider Host 131795770645385987 0x7ffabb1a0000 274432 C:\Windows\system32\DAFWSD.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DAF WSD Provider 131795770645385987 0x7ffabc970000 188416 C:\Windows\system32\dafupnp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DAF UPnP Provider 131795770645385987 0x7ffac1d60000 589824 C:\Windows\system32\webio.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API протоколов передачи по Веб 131795770645385987 0x7ffac3f60000 225280 C:\Windows\system32\FWPolicyIOMgr.dll 10.0.14393.2189 (rs1_release.180329-1711) Microsoft Corporation FwPolicyIoMgr DLL 131795770645385987 0x7ffac60e0000 221184 C:\Windows\system32\XmlLite.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft XmlLite Library 131795770645385987 0x7ffac66c0000 32768 C:\Windows\system32\wship6.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL помощника Winsock2 (TL/IPv6) 131795770645385987 0x7ffac66d0000 32768 C:\Windows\system32\wshtcpip.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL помощника службы Winsock2 (TL/IPv4) 131795770645385987 0x7ffac6700000 40960 C:\Windows\system32\wshqos.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL помощника службы QoS Winsock2 131795770645385987 0x7ffac6750000 1380352 C:\Windows\system32\webservices.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Среда выполнения веб-служб Windows 131795770645385987 0x7ffac68b0000 696320 C:\Windows\system32\wsdapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Веб-службы для библиотек DLL API-интерфейсов устройств 131795770645385987 0x7ffac6990000 69632 C:\Windows\system32\deviceassociation.dll 10.0.14393.82 (rs1_release.160805-1735) Microsoft Corporation Device Association Client DLL 131795770645385987 0x7ffac69c0000 839680 C:\Windows\system32\WINHTTP.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Службы HTTP Windows 131795770645385987 0x7ffac79c0000 57344 C:\Windows\System32\npmproxy.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Network List Manager Proxy 131795770645385987 0x7ffac7e50000 86016 C:\Windows\system32\SSDPAPI.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation SSDP Client API DLL 131795770645385987 0x7ffac83d0000 106496 C:\Windows\SYSTEM32\dhcpcsvc.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служба DHCP-клиента 131795770645385987 0x7ffac83f0000 90112 C:\Windows\SYSTEM32\dhcpcsvc6.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиент DHCPv6 131795770645385987 0x7ffac8810000 45056 C:\Windows\SYSTEM32\WINNSI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Network Store Information RPC interface 131795770645385987 0x7ffac9f10000 221184 C:\Windows\System32\netprofm.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Network List Manager 131795770645385987 0x7ffacb360000 176128 C:\Windows\system32\fwbase.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Firewall Base DLL 131795770645385987 0x7ffacb460000 548864 C:\Windows\system32\FirewallAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API брандмауэра Windows 131795770645385987 0x7ffacbbb0000 208896 C:\Windows\system32\rsaenh.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Enhanced Cryptographic Provider 131795770645385987 0x7ffacbd30000 229376 C:\Windows\system32\IPHLPAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API вспомогательного приложения IP 131795770645385987 0x7ffacbd70000 659456 C:\Windows\system32\DNSAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Динамическая библиотека API DNS-клиента 131795770645385987 0x7ffacbfb0000 376832 C:\Windows\system32\mswsock.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширение поставщика службы API Microsoft Windows Sockets 2.0 131795770645385987 0x7ffacc150000 94208 C:\Windows\system32\CRYPTSP.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Cryptographic Service Provider API 131795770645385987 0x7ffacc170000 45056 C:\Windows\system32\CRYPTBASE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base cryptographic API DLL 131795770645385987 0x7ffacc350000 180224 C:\Windows\system32\SspiCli.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Security Support Provider Interface 131795770645385987 0x7ffacc620000 176128 C:\Windows\system32\bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795770645385987 0x7ffacc6e0000 61440 C:\Windows\System32\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795770645385987 0x7ffacc6f0000 311296 C:\Windows\System32\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795770645385987 0x7ffacc760000 65536 C:\Windows\System32\MSASN1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ASN.1 Runtime APIs 131795770645385987 0x7ffacc8f0000 1003520 C:\Windows\System32\ucrtbase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645385987 0x7ffacc9f0000 434176 C:\Windows\System32\bcryptPrimitives.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Cryptographic Primitives Library 131795770645385987 0x7ffacca60000 122880 C:\Windows\System32\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795770645385987 0x7ffacd270000 2215936 C:\Windows\System32\KERNELBASE.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645385987 0x7ffacd490000 1871872 C:\Windows\System32\CRYPT32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API32 криптографии 131795770645385987 0x7ffacd710000 638976 C:\Windows\System32\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645385987 0x7ffacd7b0000 270336 C:\Windows\System32\cfgmgr32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Configuration Manager DLL 131795770645385987 0x7ffaced20000 782336 C:\Windows\System32\OLEAUT32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795770645385987 0x7ffacee50000 1183744 C:\Windows\System32\RPCRT4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795770645385987 0x7ffacef80000 32768 C:\Windows\System32\NSI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation NSI User-mode interface DLL 131795770645385987 0x7ffacef90000 647168 C:\Windows\System32\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795770645385987 0x7ffacf030000 651264 C:\Windows\System32\clbcatq.dll 2001.12.10941.16384 (rs1_release.160715-1616) Microsoft Corporation COM+ Configuration Catalog 131795770645385987 0x7ffacf0d0000 704512 C:\Windows\System32\KERNEL32.DLL 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645385987 0x7ffacf770000 212992 C:\Windows\System32\GDI32.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation GDI Client DLL 131795770645385987 0x7ffacf820000 434176 C:\Windows\System32\WS2_32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation 32-разрядная библиотека Windows Socket 2.0 131795770645385987 0x7ffacf8c0000 1462272 C:\Windows\System32\user32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795770645385987 0x7ffacfb30000 2916352 C:\Windows\System32\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795770645385987 0x7ffad0210000 364544 C:\Windows\System32\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795770645385987 0x7ffad0270000 1908736 C:\Windows\SYSTEM32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 80 9720 9180 81 00000000:0031f1ab 131794969418818027 0 0 0 Обязательная метка\Высокий обязательный уровень WIN-0UOTFKKVN1S\User Windows10UpgraderApp.exe C:\Windows10Upgrade\Windows10UpgraderApp.exe "C:\Windows10Upgrade\Windows10UpgraderApp.exe" /Install /ClientID Win10Upgrade:VNL:NHV18:{} /SkipEULA /PostEosUi Microsoft Corporation 1.4.9200.22452 Помощник по обновлению Windows 10 131795770645386103 0xb30000 1875968 C:\Windows10Upgrade\Windows10UpgraderApp.exe 1.4.9200.22452 Microsoft Corporation Помощник по обновлению Windows 10 131795770645386103 0x5c020000 335872 C:\Windows\System32\wow64.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation Win32 Emulation on NT64 131795770645386103 0x5c080000 487424 C:\Windows\System32\wow64win.dll 10.0.14393.1884 (rs1_release.171101-1233) Microsoft Corporation Wow64 Console and Win32 API Logging 131795770645386103 0x5c100000 40960 C:\Windows\System32\wow64cpu.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation AMD64 Wow64 CPU 131795770645386103 0x5fec0000 794624 C:\Windows\SysWOW64\wbem\fastprox.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation WMI Custom Marshaller 131795770645386103 0x5ffa0000 421888 C:\Windows\SysWOW64\wbemcomn.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation WMI 131795770645386103 0x60010000 53248 C:\Windows\SysWOW64\wbem\wbemprox.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation WMI 131795770645386103 0x60750000 1556480 C:\Program Files (x86)\360\Total Security\safemon\safemon.dll 8, 4, 0, 1420 Qihu 360 Software Co., Ltd. 360 Internet Security Internet Protection 131795770645386103 0x627d0000 249856 C:\Windows\SysWOW64\edputil.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служебная программа EDP 131795770645386103 0x64d00000 5079040 C:\Windows\SysWOW64\d2d1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека Microsoft D2D 131795770645386103 0x651e0000 20537344 C:\Windows\SysWOW64\mshtml.dll 11.00.14393.447 (rs1_release_inmarket.161102-0100) Microsoft Corporation Средство просмотра HTML Microsoft® 131795770645386103 0x66580000 12247040 C:\Windows\SysWOW64\ieframe.dll 11.00.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Браузер 131795770645386103 0x67200000 1978368 C:\Windows\SysWOW64\msxml6.dll 6.30.14393.2156 Microsoft Corporation MSXML 6.0 131795770645386103 0x67500000 1597440 C:\Windows\SysWOW64\ActXPrxy.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation ActiveX Interface Marshaling Library 131795770645386103 0x6b670000 212992 C:\Windows\SysWOW64\mlang.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL многоязыковой поддержки 131795770645386103 0x6c290000 987136 C:\Windows\SysWOW64\twinapi.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation twinapi.appcore 131795770645386103 0x6c390000 1126400 C:\Windows\SysWOW64\dcomp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft DirectComposition Library 131795770645386103 0x6c4b0000 278528 C:\Windows\SysWOW64\dataexchange.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation Data exchange 131795770645386103 0x6c540000 483328 C:\Windows\SysWOW64\webio.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API протоколов передачи по Веб 131795770645386103 0x6c720000 2318336 C:\Windows\SysWOW64\d3d10warp.dll 10.0.14393.576 (rs1_release_inmarket.161208-2252) Microsoft Corporation Direct3D 10 Rasterizer 131795770645386103 0x6c960000 57344 C:\Windows\SysWOW64\msimtf.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Active IMM Server DLL 131795770645386103 0x6c970000 3698688 C:\Windows\SysWOW64\jscript9.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft ® JScript 131795770645386103 0x6cd00000 69632 C:\Windows\SysWOW64\WLDP.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Политика блокировки Windows 131795770645386103 0x6cd20000 135168 C:\Windows\SysWOW64\srpapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL программных интерфейсов (API) поставщика общих ресурсов 131795770645386103 0x6cda0000 528384 C:\Windows\SysWOW64\sxs.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Fusion 2.5 131795770645386103 0x6d080000 151552 C:\Windows\SysWOW64\cryptnet.dll 10.0.14393.2035 (rs1_release_inmarket.180110-1910) Microsoft Corporation Crypto Network Related API 131795770645386103 0x6d0b0000 847872 C:\Windows\SysWOW64\WinTypes.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL основных типов Windows 131795770645386103 0x6d6e0000 634880 C:\Windows\SysWOW64\Windows.UI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Runtime UI Foundation DLL 131795770645386103 0x6d780000 876544 C:\Windows\SysWOW64\mrmcorer.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Windows MRM 131795770645386103 0x6d860000 1245184 C:\Windows\SysWOW64\MFC42u.dll 6.06.8063.0 Microsoft Corporation Общая библиотека MFCDLL - розничная версия 131795770645386103 0x6dcd0000 606208 C:\Windows\WinSxS\x86_microsoft.windows.common-controls_6595b64144ccf1df_5.82.14393.447_none_5507ded2cb4f7f4c\COMCTL32.dll 6.10 (rs1_release_inmarket.170303-1614) Microsoft Corporation Библиотека элементов управления взаимодействия с пользователем 131795770645386103 0x6ded0000 630784 C:\Windows\SysWOW64\ODBC32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ODBC Driver Manager 131795770645386103 0x6dfc0000 53248 C:\Windows\SysWOW64\execmodelproxy.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ExecModelProxy 131795770645386103 0x6dfd0000 253952 C:\Windows\SysWOW64\UIAnimation.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Animation Manager 131795770645386103 0x6e010000 208896 C:\Windows10Upgrade\Downloader.dll 1.4.9200.22452 (win8_ldr.180426-0600) Microsoft Corporation Downloader 131795770645386103 0x6e050000 81920 C:\Windows\SysWOW64\Windows.Shell.ServiceHostBuilder.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows.Shell.ServiceHostBuilder 131795770645386103 0x6e710000 335872 C:\Windows\SysWOW64\Bcp47Langs.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation BCP47 Language Classes 131795770645386103 0x70340000 536576 C:\Windows\SysWOW64\dxgi.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation DirectX Graphics Infrastructure 131795770645386103 0x703d0000 2056192 C:\Windows\SysWOW64\DWrite.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Службы Microsoft DirectX Typography 131795770645386103 0x705e0000 344064 C:\Windows\SysWOW64\OLEACC.DLL 7.2.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Active Accessibility Core Component 131795770645386103 0x70640000 1499136 C:\Windows\SysWOW64\windowscodecs.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Microsoft Windows Codecs Library 131795770645386103 0x707b0000 110592 C:\Windows\SysWOW64\ncryptsslp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft SChannel Provider 131795770645386103 0x707d0000 86016 C:\Windows\SysWOW64\SAMCLI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Security Accounts Manager Client DLL 131795770645386103 0x707f0000 2293760 C:\Windows\SysWOW64\d3d11.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation Direct3D 11 Runtime 131795770645386103 0x70a80000 409600 C:\Windows\SysWOW64\schannel.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик безопасности TLS/SSL 131795770645386103 0x70b40000 69632 C:\Windows\SysWOW64\mskeyprotect.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик защиты ключей (Майкрософт) 131795770645386103 0x70b70000 163840 C:\Windows\SysWOW64\ntmarta.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик Windows NT MARTA 131795770645386103 0x70ca0000 45056 C:\Windows\SysWOW64\NETUTILS.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API Helpers DLL 131795770645386103 0x70cc0000 65536 C:\Windows\SysWOW64\ondemandconnroutehelper.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation On Demand Connctiond Route Helper 131795770645386103 0x70e60000 176128 C:\Windows\SysWOW64\NTASN1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft ASN.1 API 131795770645386103 0x71140000 77824 C:\Windows\SysWOW64\NETAPI32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API DLL 131795770645386103 0x71610000 77824 C:\Windows\SysWOW64\dhcpcsvc6.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиент DHCPv6 131795770645386103 0x725e0000 2273280 C:\Windows\SysWOW64\iertutil.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служебная программа времени выполнения для Internet Explorer 131795770645386103 0x728e0000 1372160 C:\Windows\SysWOW64\PROPSYS.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Система страниц свойств (Майкрософт) 131795770645386103 0x72b90000 126976 C:\Windows\SysWOW64\dwmapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Интерфейс API диспетчера окон рабочего стола (Майкрософт) 131795770645386103 0x72cc0000 1658880 C:\Windows\SysWOW64\urlmon.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширения OLE32 для Win32 131795770645386103 0x73a40000 32768 C:\Windows\SysWOW64\WINNSI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Network Store Information RPC interface 131795770645386103 0x73a50000 299008 C:\Windows\SysWOW64\fwpuclnt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API пользовательского режима FWP/IPsec 131795770645386103 0x73aa0000 32768 C:\Windows\SysWOW64\DPAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Data Protection API 131795770645386103 0x73ab0000 32768 C:\Windows\SysWOW64\rasadhlp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Remote Access AutoDial Helper 131795770645386103 0x73ac0000 81920 C:\Windows\SysWOW64\dhcpcsvc.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служба DHCP-клиента 131795770645386103 0x73ae0000 40960 C:\Windows\SysWOW64\Secur32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Security Support Provider Interface 131795770645386103 0x73f00000 192512 C:\Windows\SysWOW64\IPHLPAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API вспомогательного приложения IP 131795770645386103 0x73f30000 512000 C:\Windows\SysWOW64\DNSAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Динамическая библиотека API DNS-клиента 131795770645386103 0x73ff0000 319488 C:\Windows\SysWOW64\mswsock.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширение поставщика службы API Microsoft Windows Sockets 2.0 131795770645386103 0x74060000 192512 C:\Windows\SysWOW64\rsaenh.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Enhanced Cryptographic Provider 131795770645386103 0x74110000 479232 C:\Windows\SysWOW64\uxtheme.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека тем UxTheme (Microsoft) 131795770645386103 0x74190000 110592 C:\Windows\SysWOW64\bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795770645386103 0x741b0000 77824 C:\Windows\SysWOW64\CRYPTSP.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Cryptographic Service Provider API 131795770645386103 0x74260000 2514944 C:\Windows\SysWOW64\WININET.dll 11.00.14393.447 (rs1_release_inmarket.161102-0100) Microsoft Corporation Расширения Интернета для Win32 131795770645386103 0x744d0000 2138112 C:\Windows\WinSxS\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.14393.953_none_89c2555adb023171\comctl32.dll 6.10 (rs1_release_inmarket.170303-1614) Microsoft Corporation Библиотека элементов управления взаимодействия с пользователем 131795770645386103 0x746e0000 32768 C:\Windows\SysWOW64\VERSION.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Version Checking and File Installation Libraries 131795770645386103 0x746f0000 106496 C:\Windows\SysWOW64\USERENV.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Userenv 131795770645386103 0x74730000 598016 C:\Windows\SysWOW64\apphelp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиентская библиотека совместимости приложений 131795770645386103 0x747d0000 40960 C:\Windows\SysWOW64\CRYPTBASE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base cryptographic API DLL 131795770645386103 0x747e0000 126976 C:\Windows\SysWOW64\SspiCli.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Security Support Provider Interface 131795770645386103 0x74800000 151552 C:\Windows\SysWOW64\IMM32.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Multi-User Windows IMM32 API Client DLL 131795770645386103 0x74910000 2170880 C:\Windows\SysWOW64\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795770645386103 0x74b30000 53248 C:\Windows\SysWOW64\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795770645386103 0x74b60000 790528 C:\Windows\SysWOW64\RPCRT4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795770645386103 0x74c30000 1417216 C:\Windows\SysWOW64\gdi32full.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation GDI Client DLL 131795770645386103 0x74d90000 24576 C:\Windows\SysWOW64\PSAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Process Status Helper 131795770645386103 0x74da0000 778240 C:\Windows\SysWOW64\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795770645386103 0x74e60000 557056 C:\Windows\SysWOW64\shcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795770645386103 0x74ef0000 540672 C:\Windows\SysWOW64\clbcatq.dll 2001.12.10941.16384 (rs1_release.160715-1616) Microsoft Corporation COM+ Configuration Catalog 131795770645386103 0x74f80000 278528 C:\Windows\SysWOW64\WINTRUST.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation Microsoft Trust Verification APIs 131795770645386103 0x74fd0000 405504 C:\Windows\SysWOW64\WS2_32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation 32-разрядная библиотека Windows Socket 2.0 131795770645386103 0x75040000 282624 C:\Windows\SysWOW64\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795770645386103 0x75090000 1265664 C:\Windows\SysWOW64\MSCTF.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Серверная библиотека MSCTF 131795770645386103 0x751d0000 57344 C:\Windows\SysWOW64\MSASN1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ASN.1 Runtime APIs 131795770645386103 0x751e0000 1708032 C:\Windows\SysWOW64\KERNELBASE.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645386103 0x75390000 266240 C:\Windows\SysWOW64\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795770645386103 0x753e0000 1560576 C:\Windows\SysWOW64\CRYPT32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API32 криптографии 131795770645386103 0x75560000 487424 C:\Windows\SysWOW64\ADVAPI32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795770645386103 0x756c0000 5693440 C:\Windows\SysWOW64\windows.storage.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API хранения Microsoft WinRT 131795770645386103 0x75c90000 286720 C:\Windows\SysWOW64\shlwapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека небольших программ оболочки 131795770645386103 0x75ce0000 20811776 C:\Windows\SysWOW64\SHELL32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Общая библиотека оболочки Windows 131795770645386103 0x774d0000 86016 C:\Windows\SysWOW64\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795770645386103 0x774f0000 61440 C:\Windows\SysWOW64\profapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Profile Basic API 131795770645386103 0x77560000 1437696 C:\Windows\SysWOW64\USER32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795770645386103 0x776c0000 368640 C:\Windows\SysWOW64\bcryptPrimitives.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation Windows Cryptographic Primitives Library 131795770645386103 0x77780000 503808 C:\Windows\SysWOW64\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645386103 0x77800000 606208 C:\Windows\SysWOW64\OLEAUT32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795770645386103 0x77ac0000 966656 C:\Windows\SysWOW64\ole32.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft OLE для Windows 131795770645386103 0x77bb0000 176128 C:\Windows\SysWOW64\GDI32.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation GDI Client DLL 131795770645386103 0x77cd0000 221184 C:\Windows\SysWOW64\cfgmgr32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Configuration Manager DLL 131795770645386103 0x77d10000 28672 C:\Windows\SysWOW64\NSI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation NSI User-mode interface DLL 131795770645386103 0x77d20000 1585152 C:\Windows\SysWOW64\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 131795770645386103 0x7ffad0270000 1908736 C:\Windows\SYSTEM32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 82 8944 520 18 00000000:0031f1da 131795005508439638 0 0 1 Обязательная метка\Низкий обязательный уровень WIN-0UOTFKKVN1S\User fontdrvhost.exe C:\Windows\system32\fontdrvhost.exe "fontdrvhost.exe" Microsoft Corporation 10.0.14393.2189 (rs1_release.180329-1711) Usermode Font Driver Host 131795770645386388 0x7ff654db0000 638976 C:\Windows\system32\fontdrvhost.exe 10.0.14393.2189 (rs1_release.180329-1711) Microsoft Corporation Usermode Font Driver Host 131795770645386388 0x7ffacc770000 1572864 C:\Windows\System32\gdi32full.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation GDI Client DLL 131795770645386388 0x7ffacca60000 122880 C:\Windows\System32\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795770645386388 0x7ffacd270000 2215936 C:\Windows\System32\KERNELBASE.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645386388 0x7ffacef90000 647168 C:\Windows\System32\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795770645386388 0x7ffacf0d0000 704512 C:\Windows\System32\KERNEL32.DLL 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645386388 0x7ffacf770000 212992 C:\Windows\System32\gdi32.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation GDI Client DLL 131795770645386388 0x7ffacf890000 188416 C:\Windows\System32\IMM32.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Multi-User Windows IMM32 API Client DLL 131795770645386388 0x7ffacf8c0000 1462272 C:\Windows\System32\USER32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795770645386388 0x7ffad0270000 1908736 C:\Windows\SYSTEM32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 83 6684 664 6 00000000:0031f1da 131795006053748558 0 0 1 Обязательная метка\Низкий обязательный уровень WIN-0UOTFKKVN1S\User Microsoft.Photos.exe C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2017.35063.44410.0_x64__8wekyb3d8bbwe\Microsoft.Photos.exe "C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2017.35063.44410.0_x64__8wekyb3d8bbwe\Microsoft.Photos.exe" -ServerName:App.AppXzst44mncqdg84v7sv6p7yznqwssy6f7f.mca 131795770645660438 0x7ff705e40000 36864 C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2017.35063.44410.0_x64__8wekyb3d8bbwe\Microsoft.Photos.exe 131795770645660438 0x7ffa9bb10000 1380352 C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2017.35063.44410.0_x64__8wekyb3d8bbwe\Microsoft.RichMedia.Ink.Controls.dll 131795770645660438 0x7ffa9bc70000 3158016 C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2017.35063.44410.0_x64__8wekyb3d8bbwe\Microsoft.UI.Xaml.dll 131795770645660438 0x7ffa9bf80000 2994176 C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2017.35063.44410.0_x64__8wekyb3d8bbwe\AppCore.Windows.dll 131795770645660438 0x7ffa9c260000 20144128 C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2017.35063.44410.0_x64__8wekyb3d8bbwe\PhotosApp.Windows.dll 131795770645660438 0x7ffa9d5a0000 29011968 C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2017.35063.44410.0_x64__8wekyb3d8bbwe\Microsoft.Photos.dll 131795770645660438 0x7ffa9f150000 6311936 C:\Windows\System32\Windows.Media.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Media Runtime DLL 131795770645660438 0x7ffa9fb20000 7950336 C:\Program Files\WindowsApps\Microsoft.NET.Native.Framework.1.3_1.3.24201.0_x64__8wekyb3d8bbwe\SharedLibrary.dll Microsoft Corporation Microsoft .NET Native Shared Framework 131795770645660438 0x7ffaa03f0000 4546560 C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2017.35063.44410.0_x64__8wekyb3d8bbwe\FaceSdkStoreWrapper.dll 16.425.0.0 Microsoft Corporation FaceSdkStoreWrapper 131795770645660438 0x7ffaa0850000 2371584 C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2017.35063.44410.0_x64__8wekyb3d8bbwe\MediaEngine.dll 131795770645660438 0x7ffaab270000 917504 C:\Windows\System32\Windows.AccountsControl.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Accounts Control 131795770645660438 0x7ffaab750000 876544 C:\Windows\System32\Windows.Media.Import.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation Windows Photo Import API (WinRT/COM) 131795770645660438 0x7ffaac0c0000 1396736 C:\Windows\System32\Windows.UI.Xaml.Phone.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows UI XAML Phone API 131795770645660438 0x7ffab5b40000 2527232 C:\Windows\SYSTEM32\dwrite.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Службы Microsoft DirectX Typography 131795770645660438 0x7ffab6710000 17231872 C:\Windows\System32\Windows.UI.Xaml.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows.UI.Xaml dll 131795770645660438 0x7ffab8f40000 94208 C:\Windows\System32\Windows.System.Diagnostics.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows System Diagnostics DLL 131795770645660438 0x7ffab8f60000 397312 C:\Windows\System32\CryptoWinRT.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Crypto WinRT Library 131795770645660438 0x7ffab9270000 454656 C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2017.35063.44410.0_x64__8wekyb3d8bbwe\Microsoft.Photos.AGM.Native.Windows.dll 131795770645660438 0x7ffab9b40000 389120 C:\Program Files\WindowsApps\Microsoft.NET.Native.Runtime.1.4_1.4.24201.0_x64__8wekyb3d8bbwe\mrt100_app.dll 1.4.24201.0 built by: PROJECTNREL Microsoft Corporation Microsoft .NET Native Runtime 131795770645660438 0x7ffabb3c0000 450560 C:\Windows\SYSTEM32\TextInputFramework.dll 10.0.14393.2189 (rs1_release.180329-1711) Microsoft Corporation "TextInputFramework.DYNLINK" 131795770645660438 0x7ffabc510000 90112 C:\Windows\system32\execmodelproxy.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ExecModelProxy 131795770645660438 0x7ffabc5c0000 319488 C:\Windows\SYSTEM32\MFSENSORGROUP.dll 10.0.14393.447 (rs1_release_inmarket.161102-0100) Microsoft Corporation Media Foundation Sensor Group DLL 131795770645660438 0x7ffabc920000 270336 C:\Windows\System32\execmodelclient.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation ExecModelClient 131795770645660438 0x7ffabcef0000 102400 C:\Windows\System32\Windows.Shell.ServiceHostBuilder.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows.Shell.ServiceHostBuilder 131795770645660438 0x7ffabd4a0000 1613824 C:\Windows\System32\Windows.Globalization.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Globalization 131795770645660438 0x7ffabd8e0000 704512 C:\Windows\WinSxS\amd64_microsoft.windows.common-controls_6595b64144ccf1df_5.82.14393.447_none_0d5aa7fbb6d35646\comctl32.dll 6.10 (rs1_release_inmarket.170303-1614) Microsoft Corporation Библиотека элементов управления взаимодействия с пользователем 131795770645660438 0x7ffabe6e0000 561152 C:\Windows\system32\directmanipulation.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Direct Manipulation Component 131795770645660438 0x7ffabea30000 192512 C:\Windows\System32\Windows.Energy.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Energy Runtime DLL 131795770645660438 0x7ffabeac0000 335872 C:\Windows\System32\Windows.Storage.ApplicationData.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Application Data API Server 131795770645660438 0x7ffabeb20000 385024 C:\Windows\System32\Windows.ApplicationModel.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows ApplicationModel API Server 131795770645660438 0x7ffabf330000 2457600 C:\Windows\System32\msxml6.dll 6.30.14393.2156 Microsoft Corporation MSXML 6.0 131795770645660438 0x7ffabfce0000 90112 C:\Windows\System32\Windows.Globalization.Fontgroups.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Fonts Mapping API 131795770645660438 0x7ffabfd00000 356352 C:\Windows\System32\Windows.Graphics.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation WinRT Windows Graphics DLL 131795770645660438 0x7ffabfd80000 86016 C:\Windows\System32\threadpoolwinrt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows WinRT Threadpool 131795770645660438 0x7ffabfe10000 237568 C:\Windows\SYSTEM32\rometadata.dll 4.6.1586.0 built by: NETFXREL2 Microsoft Corporation Microsoft MetaData Library 131795770645660438 0x7ffac00c0000 282624 C:\Windows\SYSTEM32\windows.ui.core.textinput.dll 10.0.14393.2189 (rs1_release.180329-1711) Microsoft Corporation Windows.UI.Core.TextInput dll 131795770645660438 0x7ffac0470000 1478656 C:\Windows\SYSTEM32\MFPlat.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Media Foundation Platform DLL 131795770645660438 0x7ffac0910000 724992 C:\Windows\System32\Windows.Networking.Connectivity.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Networking Connectivity Runtime DLL 131795770645660438 0x7ffac0bf0000 3559424 C:\Windows\System32\ActXPrxy.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation ActiveX Interface Marshaling Library 131795770645660438 0x7ffac0fa0000 77824 C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2017.35063.44410.0_x64__8wekyb3d8bbwe\Microsoft.Photos.Edit.Services.dll 131795770645660438 0x7ffac1b90000 630784 C:\Program Files\WindowsApps\Microsoft.VCLibs.140.00_14.0.25426.0_x64__8wekyb3d8bbwe\MSVCP140_APP.dll 14.11.25426.0 built by: VCTOOLSREL Microsoft Corporation Microsoft® C Runtime Library 131795770645660438 0x7ffac1c70000 69632 C:\Program Files\WindowsApps\Microsoft.VCLibs.140.00_14.0.25426.0_x64__8wekyb3d8bbwe\VCOMP140_app.DLL 14.11.25426.0 built by: VCTOOLSREL Microsoft Corporation Microsoft® C/C++ OpenMP Runtime 131795770645660438 0x7ffac1e50000 188416 C:\Windows\SYSTEM32\RTWorkQ.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL для WorkQueue реального времени 131795770645660438 0x7ffac20d0000 110592 C:\Windows\System32\rmclient.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Resource Manager Client 131795770645660438 0x7ffac2c00000 69632 C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2017.35063.44410.0_x64__8wekyb3d8bbwe\clrcompression.dll 1.0.23123.00 built by: PROJECTKREL Microsoft Corporation ClrCompression 131795770645660438 0x7ffac2cb0000 778240 C:\Windows\SYSTEM32\winsqlite3.dll 3.12.2 SQLite Development Team SQLite is a software library that implements a self-contained, serverless, zero-configuration, transactional SQL database engine. 131795770645660438 0x7ffac3280000 36864 C:\Windows\SYSTEM32\mrt100.dll 1.0.24120.0 built by: PROJECTNREL Microsoft Corporation Microsoft .NET Native Runtime 131795770645660438 0x7ffac34e0000 1843200 C:\Windows\SYSTEM32\urlmon.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширения OLE32 для Win32 131795770645660438 0x7ffac3cb0000 2772992 C:\Windows\SYSTEM32\iertutil.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служебная программа времени выполнения для Internet Explorer 131795770645660438 0x7ffac4b10000 307200 C:\Program Files\WindowsApps\Microsoft.VCLibs.140.00_14.0.25426.0_x64__8wekyb3d8bbwe\CONCRT140_APP.dll 14.11.25426.0 built by: VCTOOLSREL Microsoft Corporation Microsoft® Concurrency Runtime Library 131795770645660438 0x7ffac4c60000 385024 C:\Program Files\WindowsApps\Microsoft.VCLibs.140.00_14.0.25426.0_x64__8wekyb3d8bbwe\vccorlib140_app.DLL 14.11.25426.0 built by: VCTOOLSREL Microsoft Corporation Microsoft ® VC WinRT core library 131795770645660438 0x7ffac5350000 1765376 C:\Windows\System32\Windows.UI.Immersive.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation WINDOWS.UI.IMMERSIVE 131795770645660438 0x7ffac60e0000 221184 C:\Windows\SYSTEM32\XmlLite.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft XmlLite Library 131795770645660438 0x7ffac6620000 192512 C:\Windows\System32\biwinrt.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation Windows Background Broker Infrastructure 131795770645660438 0x7ffac6ac0000 835584 C:\Windows\System32\Windows.UI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Runtime UI Foundation DLL 131795770645660438 0x7ffac6f50000 5632000 C:\Windows\SYSTEM32\d2d1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека Microsoft D2D 131795770645660438 0x7ffac7580000 1077248 C:\Windows\System32\MrmCoreR.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Windows MRM 131795770645660438 0x7ffac7720000 1601536 C:\Windows\System32\OneCoreUAPCommonProxyStub.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation OneCoreUAP Common Proxy Stub 131795770645660438 0x7ffac7e30000 40960 C:\Windows\SYSTEM32\fontgroupsoverride.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation fontgroupsoverride.dll 131795770645660438 0x7ffac7fc0000 2674688 C:\Windows\SYSTEM32\d3d10warp.dll 10.0.14393.576 (rs1_release_inmarket.161208-2252) Microsoft Corporation Direct3D 10 Rasterizer 131795770645660438 0x7ffac84f0000 299008 C:\Windows\system32\DataExchange.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation Data exchange 131795770645660438 0x7ffac8540000 286720 C:\Windows\System32\vaultcli.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиентская библиотека хранилища учетных данных 131795770645660438 0x7ffac88a0000 2842624 C:\Windows\SYSTEM32\d3d11.dll 10.0.14393.953 (rs1_release_inmarket.170303-1614) Microsoft Corporation Direct3D 11 Runtime 131795770645660438 0x7ffac8fa0000 253952 C:\Windows\SYSTEM32\logoncli.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Net Logon Client DLL 131795770645660438 0x7ffac92e0000 1269760 C:\Windows\SYSTEM32\wintypes.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL основных типов Windows 131795770645660438 0x7ffac9500000 2682880 C:\Windows\system32\CoreUIComponents.dll 131795770645660438 0x7ffac9f50000 1736704 C:\Windows\system32\windowscodecs.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Microsoft Windows Codecs Library 131795770645660438 0x7ffaca340000 1593344 C:\Windows\SYSTEM32\PROPSYS.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Система страниц свойств (Майкрософт) 131795770645660438 0x7ffaca570000 421888 C:\Windows\SYSTEM32\Bcp47Langs.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation BCP47 Language Classes 131795770645660438 0x7ffaca5e0000 155648 C:\Windows\SYSTEM32\dwmapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Интерфейс API диспетчера окон рабочего стола (Майкрософт) 131795770645660438 0x7ffaca640000 770048 C:\Windows\SYSTEM32\CoreMessaging.dll 10.0.14393.0 Microsoft Corporation Microsoft CoreMessaging Dll 131795770645660438 0x7ffaca770000 1380352 C:\Windows\SYSTEM32\dcomp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft DirectComposition Library 131795770645660438 0x7ffacab80000 90112 C:\Program Files\WindowsApps\Microsoft.VCLibs.140.00_14.0.25426.0_x64__8wekyb3d8bbwe\VCRUNTIME140_APP.dll 14.11.25426.0 built by: VCTOOLSREL Microsoft Corporation Microsoft® C Runtime Library 131795770645660438 0x7ffacadf0000 499712 C:\Windows\system32\apphelp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиентская библиотека совместимости приложений 131795770645660438 0x7ffacaf00000 610304 C:\Windows\system32\uxtheme.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека тем UxTheme (Microsoft) 131795770645660438 0x7ffacb1e0000 1163264 C:\Windows\SYSTEM32\twinapi.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation twinapi.appcore 131795770645660438 0x7ffacb780000 651264 C:\Windows\SYSTEM32\dxgi.dll 10.0.14393.953 (rs1_release_inmarket.170303-1614) Microsoft Corporation DirectX Graphics Infrastructure 131795770645660438 0x7ffacbe40000 126976 C:\Windows\SYSTEM32\USERENV.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Userenv 131795770645660438 0x7ffacc170000 45056 C:\Windows\SYSTEM32\CRYPTBASE.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base cryptographic API DLL 131795770645660438 0x7ffacc350000 180224 C:\Windows\SYSTEM32\SspiCli.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Security Support Provider Interface 131795770645660438 0x7ffacc620000 176128 C:\Windows\SYSTEM32\bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795770645660438 0x7ffacc6e0000 61440 C:\Windows\System32\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795770645660438 0x7ffacc6f0000 311296 C:\Windows\System32\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795770645660438 0x7ffacc740000 81920 C:\Windows\System32\profapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Profile Basic API 131795770645660438 0x7ffacc760000 65536 C:\Windows\System32\MSASN1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ASN.1 Runtime APIs 131795770645660438 0x7ffacc8f0000 1003520 C:\Windows\System32\ucrtbase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645660438 0x7ffacc9f0000 434176 C:\Windows\System32\bcryptPrimitives.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Cryptographic Primitives Library 131795770645660438 0x7ffacca60000 122880 C:\Windows\System32\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795770645660438 0x7ffaccae0000 692224 C:\Windows\System32\shcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795770645660438 0x7ffaccb90000 7180288 C:\Windows\System32\windows.storage.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API хранения Microsoft WinRT 131795770645660438 0x7ffacd270000 2215936 C:\Windows\System32\KERNELBASE.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645660438 0x7ffacd490000 1871872 C:\Windows\System32\CRYPT32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API32 криптографии 131795770645660438 0x7ffacd710000 638976 C:\Windows\System32\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645660438 0x7ffacd7b0000 270336 C:\Windows\System32\cfgmgr32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Configuration Manager DLL 131795770645660438 0x7ffaced20000 782336 C:\Windows\System32\OleAut32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795770645660438 0x7ffacee50000 1183744 C:\Windows\System32\RPCRT4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795770645660438 0x7ffacef90000 647168 C:\Windows\System32\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795770645660438 0x7ffacf0d0000 704512 C:\Windows\System32\KERNEL32.DLL 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645660438 0x7ffacf1e0000 1417216 C:\Windows\System32\msctf.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Серверная библиотека MSCTF 131795770645660438 0x7ffacf770000 212992 C:\Windows\System32\GDI32.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation GDI Client DLL 131795770645660438 0x7ffacf890000 188416 C:\Windows\System32\IMM32.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Multi-User Windows IMM32 API Client DLL 131795770645660438 0x7ffacf8c0000 1462272 C:\Windows\System32\USER32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795770645660438 0x7ffacfb30000 2916352 C:\Windows\System32\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795770645660438 0x7ffacfe20000 663552 C:\Windows\System32\advapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795770645660438 0x7ffad01b0000 335872 C:\Windows\System32\shlwapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека небольших программ оболочки 131795770645660438 0x7ffad0210000 364544 C:\Windows\System32\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795770645660438 0x7ffad0270000 1908736 C:\Windows\SYSTEM32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 84 6208 12140 85 00000000:0031f1da 131795181740423780 0 0 0 Обязательная метка\Средний обязательный уровень WIN-0UOTFKKVN1S\User OneDrive.exe C:\Users\User\AppData\Local\Microsoft\OneDrive\OneDrive.exe /updateInstalled /background Microsoft Corporation 18.131.0701.0007 Microsoft OneDrive 131795770645660654 0x11f0000 1646592 C:\Users\User\AppData\Local\Microsoft\OneDrive\OneDrive.exe 18.131.0701.0007 Microsoft Corporation Microsoft OneDrive 131795770645660654 0x55a0000 1003520 C:\Users\User\AppData\Local\Microsoft\OneDrive\18.131.0701.0007\FileSync.Resources.dll 18.131.0701.0007 Microsoft Corporation Microsoft OneDrive 131795770645660654 0x5c020000 335872 C:\Windows\System32\wow64.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation Win32 Emulation on NT64 131795770645660654 0x5c080000 487424 C:\Windows\System32\wow64win.dll 10.0.14393.1884 (rs1_release.171101-1233) Microsoft Corporation Wow64 Console and Win32 API Logging 131795770645660654 0x5c100000 40960 C:\Windows\System32\wow64cpu.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation AMD64 Wow64 CPU 131795770645660654 0x60750000 1556480 C:\Program Files (x86)\360\Total Security\safemon\safemon.dll 8, 4, 0, 1420 Qihu 360 Software Co., Ltd. 360 Internet Security Internet Protection 131795770645660654 0x64d00000 5079040 C:\Windows\SysWOW64\d2d1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека Microsoft D2D 131795770645660654 0x651e0000 20537344 C:\Windows\SysWOW64\MSHTML.dll 11.00.14393.447 (rs1_release_inmarket.161102-0100) Microsoft Corporation Средство просмотра HTML Microsoft® 131795770645660654 0x66580000 12247040 C:\Windows\SysWOW64\ieframe.dll 11.00.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Браузер 131795770645660654 0x67200000 1978368 C:\Windows\SysWOW64\msxml6.dll 6.30.14393.2156 Microsoft Corporation MSXML 6.0 131795770645660654 0x67500000 1597440 C:\Windows\SysWOW64\ActXPrxy.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation ActiveX Interface Marshaling Library 131795770645660654 0x6b670000 212992 C:\Windows\SysWOW64\mlang.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL многоязыковой поддержки 131795770645660654 0x6b6b0000 36864 C:\Windows\SysWOW64\atlthunk.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation atlthunk.dll 131795770645660654 0x6bab0000 4472832 C:\Users\User\AppData\Local\Microsoft\OneDrive\18.131.0701.0007\Qt5Widgets.dll 5.9.1.0 The Qt Company Ltd C++ application development framework. 131795770645660654 0x6c290000 987136 C:\Windows\SysWOW64\twinapi.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation twinapi.appcore 131795770645660654 0x6c390000 1126400 C:\Windows\SysWOW64\dcomp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft DirectComposition Library 131795770645660654 0x6c4b0000 278528 C:\Windows\SysWOW64\dataexchange.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation Data exchange 131795770645660654 0x6c540000 483328 C:\Windows\SysWOW64\webio.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API протоколов передачи по Веб 131795770645660654 0x6c5c0000 1384448 C:\Windows\SysWOW64\uiautomationcore.dll 7.2.14393.0 (rs1_release.160715-1616) Microsoft Corporation Основные автоматические компоненты Microsoft UI 131795770645660654 0x6c960000 57344 C:\Windows\SysWOW64\msimtf.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Active IMM Server DLL 131795770645660654 0x6c970000 3698688 C:\Windows\SysWOW64\jscript9.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft ® JScript 131795770645660654 0x6cd20000 135168 C:\Windows\SysWOW64\srpapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL программных интерфейсов (API) поставщика общих ресурсов 131795770645660654 0x6cd50000 106496 C:\Windows\SysWOW64\SAMLIB.dll 10.0.14393.82 (rs1_release.160805-1735) Microsoft Corporation SAM Library DLL 131795770645660654 0x6cda0000 528384 C:\Windows\SysWOW64\sxs.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Fusion 2.5 131795770645660654 0x6cf60000 569344 C:\Windows\SysWOW64\taskschd.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Task Scheduler COM API 131795770645660654 0x6d080000 151552 C:\Windows\SysWOW64\cryptnet.dll 10.0.14393.2035 (rs1_release_inmarket.180110-1910) Microsoft Corporation Crypto Network Related API 131795770645660654 0x6d0b0000 847872 C:\Windows\SysWOW64\WinTypes.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL основных типов Windows 131795770645660654 0x6d210000 4993024 C:\Users\User\AppData\Local\Microsoft\OneDrive\18.131.0701.0007\Qt5Gui.dll 5.9.1.0 The Qt Company Ltd C++ application development framework. 131795770645660654 0x6fcd0000 151552 C:\Windows\SysWOW64\dbgcore.DLL 10.0.14321.1024 (debuggers(dbg).160715-1616) Microsoft Windows Core Debugging Helpers 131795770645660654 0x70340000 536576 C:\Windows\SysWOW64\dxgi.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation DirectX Graphics Infrastructure 131795770645660654 0x703d0000 2056192 C:\Windows\SysWOW64\DWrite.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Службы Microsoft DirectX Typography 131795770645660654 0x707b0000 110592 C:\Windows\SysWOW64\ncryptsslp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft SChannel Provider 131795770645660654 0x707f0000 2293760 C:\Windows\SysWOW64\d3d11.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation Direct3D 11 Runtime 131795770645660654 0x70a80000 409600 C:\Windows\SysWOW64\schannel.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик безопасности TLS/SSL 131795770645660654 0x70b00000 176128 C:\Windows\SysWOW64\Wscapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API центра обеспечения безопасности Windows 131795770645660654 0x70b40000 69632 C:\Windows\SysWOW64\mskeyprotect.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик защиты ключей (Майкрософт) 131795770645660654 0x70ca0000 45056 C:\Windows\SysWOW64\NETUTILS.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API Helpers DLL 131795770645660654 0x70cc0000 65536 C:\Windows\SysWOW64\ondemandconnroutehelper.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation On Demand Connctiond Route Helper 131795770645660654 0x70ce0000 1519616 C:\Windows\SysWOW64\wpc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека параметров родительского контроля 131795770645660654 0x70e60000 176128 C:\Windows\SysWOW64\NTASN1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft ASN.1 API 131795770645660654 0x70f00000 815104 C:\Windows\SysWOW64\OneCoreUAPCommonProxyStub.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation OneCoreUAP Common Proxy Stub 131795770645660654 0x70fd0000 1331200 C:\Windows\SysWOW64\dbghelp.dll 10.0.14321.1024 (rs1_release.160715-1616) Microsoft Windows Image Helper 131795770645660654 0x71140000 77824 C:\Windows\SysWOW64\NETAPI32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API DLL 131795770645660654 0x71200000 708608 C:\Windows\SysWOW64\TokenBroker.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Token Broker 131795770645660654 0x712b0000 602112 C:\Windows\SysWOW64\Windows.Security.Authentication.Web.Core.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Token Broker WinRT API 131795770645660654 0x71350000 2867200 C:\Users\User\AppData\Local\Microsoft\OneDrive\18.131.0701.0007\Qt5Quick.dll 5.9.1.0 The Qt Company Ltd C++ application development framework. 131795770645660654 0x71610000 77824 C:\Windows\SysWOW64\dhcpcsvc6.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиент DHCPv6 131795770645660654 0x71630000 487424 C:\Windows\SysWOW64\wlidprov.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft® Account Provider 131795770645660654 0x716b0000 1294336 C:\Users\User\AppData\Local\Microsoft\OneDrive\18.131.0701.0007\LIBEAY32.dll 1.0.2k The OpenSSL Project, http://www.openssl.org/ OpenSSL Shared Library 131795770645660654 0x717f0000 2637824 C:\Users\User\AppData\Local\Microsoft\OneDrive\18.131.0701.0007\Qt5Qml.dll 5.9.1.0 The Qt Company Ltd C++ application development framework. 131795770645660654 0x71a80000 4796416 C:\Users\User\AppData\Local\Microsoft\OneDrive\18.131.0701.0007\Qt5Core.dll 5.9.1.0 The Qt Company Ltd C++ application development framework. 131795770645660654 0x71f20000 6033408 C:\Users\User\AppData\Local\Microsoft\OneDrive\18.131.0701.0007\SyncEngine.DLL 18.131.0701.0007 Microsoft Corporation Microsoft OneDrive Sync Engine 131795770645660654 0x724f0000 57344 C:\Windows\SysWOW64\credui.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Credential Manager User Interface 131795770645660654 0x72530000 126976 C:\Windows\SysWOW64\IDStore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Identity Store 131795770645660654 0x72550000 561152 C:\Windows\SysWOW64\Windows.Networking.Connectivity.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Networking Connectivity Runtime DLL 131795770645660654 0x725e0000 2273280 C:\Windows\SysWOW64\iertutil.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служебная программа времени выполнения для Internet Explorer 131795770645660654 0x72810000 28672 C:\Windows\SysWOW64\familysafetyext.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation FamilySafety ChildAccount Extensions 131795770645660654 0x72820000 167936 C:\Windows\SysWOW64\MicrosoftAccountTokenProvider.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft® Account Token Provider 131795770645660654 0x72850000 331776 C:\Windows\SysWOW64\AppXDeploymentClient.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL-библиотека клиента развертывания AppX 131795770645660654 0x728b0000 135168 C:\Users\User\AppData\Local\Microsoft\OneDrive\18.131.0701.0007\FileSyncFAL.dll 18.131.0701.0007 Microsoft Corporation Microsoft OneDriveFile Sync FAL 131795770645660654 0x728e0000 1372160 C:\Windows\SysWOW64\PROPSYS.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Система страниц свойств (Майкрософт) 131795770645660654 0x72a30000 188416 C:\Windows\SysWOW64\XmlLite.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft XmlLite Library 131795770645660654 0x72a60000 589824 C:\Windows\SysWOW64\wer.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека сообщений об ошибках Windows 131795770645660654 0x72b90000 126976 C:\Windows\SysWOW64\dwmapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Интерфейс API диспетчера окон рабочего стола (Майкрософт) 131795770645660654 0x72bb0000 1105920 C:\Users\User\AppData\Local\Microsoft\OneDrive\18.131.0701.0007\platforms\qwindows.dll 5.9.1.0 The Qt Company Ltd C++ application development framework. 131795770645660654 0x72cc0000 1658880 C:\Windows\SysWOW64\urlmon.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширения OLE32 для Win32 131795770645660654 0x72e60000 172032 C:\Windows\SysWOW64\rometadata.dll 4.6.1586.0 built by: NETFXREL2 Microsoft Corporation Microsoft MetaData Library 131795770645660654 0x72e90000 299008 C:\Users\User\AppData\Local\Microsoft\OneDrive\18.131.0701.0007\SSLEAY32.dll 1.0.2k The OpenSSL Project, http://www.openssl.org/ OpenSSL Shared Library 131795770645660654 0x72ee0000 950272 C:\Users\User\AppData\Local\Microsoft\OneDrive\18.131.0701.0007\Qt5Network.dll 5.9.1.0 The Qt Company Ltd C++ application development framework. 131795770645660654 0x72fd0000 126976 C:\Windows\SysWOW64\loadperf.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Загрузка и выгрузка счетчиков производительности 131795770645660654 0x72ff0000 278528 C:\Windows\SysWOW64\pdh.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Модуль поддержки данных производительности Windows 131795770645660654 0x73040000 253952 C:\Users\User\AppData\Local\Microsoft\OneDrive\18.131.0701.0007\Qt5WinExtras.dll 5.9.1.0 The Qt Company Ltd C++ application development framework. 131795770645660654 0x73080000 880640 C:\Users\User\AppData\Local\Microsoft\OneDrive\18.131.0701.0007\ADAL.dll 1.0.2110.0526 Microsoft ADAL.Native 131795770645660654 0x73160000 32768 C:\Windows\SysWOW64\WSOCK32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Socket 32-Bit DLL 131795770645660654 0x73170000 352256 C:\Windows\SysWOW64\faultrep.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека отчетов о сбоях в пользовательском режиме Windows 131795770645660654 0x731d0000 413696 C:\Users\User\AppData\Local\Microsoft\OneDrive\18.131.0701.0007\WnsClientApi.dll 18.131.0701.0007 Microsoft Corporation OneDrive WNS Client Library 131795770645660654 0x73240000 520192 C:\Users\User\AppData\Local\Microsoft\OneDrive\18.131.0701.0007\LogUploader.dll 18.131.0701.0007 Microsoft Corporation OneDrive Sync LogUploader Library 131795770645660654 0x732c0000 1269760 C:\Users\User\AppData\Local\Microsoft\OneDrive\18.131.0701.0007\FileSyncViews.dll 18.131.0701.0007 Microsoft Corporation Microsoft OneDrive Qt Components 131795770645660654 0x73400000 159744 C:\Users\User\AppData\Local\Microsoft\OneDrive\18.131.0701.0007\UpdateRingSettings.dll 18.131.0701.0007 Microsoft Corporation Update Ring Settings 131795770645660654 0x73430000 1748992 C:\Users\User\AppData\Local\Microsoft\OneDrive\18.131.0701.0007\FileSyncSessions.dll 18.131.0701.0007 Microsoft Corporation P2P Session Library 131795770645660654 0x735e0000 671744 C:\Users\User\AppData\Local\Microsoft\OneDrive\18.131.0701.0007\RemoteAccess.dll 18.131.0701.0007 Microsoft Corporation Remote Access 131795770645660654 0x73690000 188416 C:\Users\User\AppData\Local\Microsoft\OneDrive\18.131.0701.0007\Telemetry.dll 18.131.0701.0007 Microsoft Corporation Telemetry Library 131795770645660654 0x736c0000 32768 C:\Users\User\AppData\Local\Microsoft\OneDrive\18.131.0701.0007\ETWLog.dll 18.131.0701.0007 Microsoft Corporation ETW Session Library 131795770645660654 0x736d0000 3600384 C:\Users\User\AppData\Local\Microsoft\OneDrive\18.131.0701.0007\FileSyncClient.dll 18.131.0701.0007 Microsoft Corporation Microsoft OneDrive Client 131795770645660654 0x73a40000 32768 C:\Windows\SysWOW64\WINNSI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Network Store Information RPC interface 131795770645660654 0x73a50000 299008 C:\Windows\SysWOW64\fwpuclnt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API пользовательского режима FWP/IPsec 131795770645660654 0x73aa0000 32768 C:\Windows\SysWOW64\DPAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Data Protection API 131795770645660654 0x73ab0000 32768 C:\Windows\SysWOW64\rasadhlp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Remote Access AutoDial Helper 131795770645660654 0x73ac0000 81920 C:\Windows\SysWOW64\dhcpcsvc.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служба DHCP-клиента 131795770645660654 0x73ae0000 40960 C:\Windows\SysWOW64\Secur32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Security Support Provider Interface 131795770645660654 0x73af0000 1417216 C:\Users\User\AppData\Local\Microsoft\OneDrive\18.131.0701.0007\LoggingPlatform.dll 18.131.0701.0007 Microsoft Corporation Logging Platform 131795770645660654 0x73c50000 1478656 C:\Windows\WinSxS\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.14393.1715_none_f67438d2f2547a00\gdiplus.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Microsoft GDI+ 131795770645660654 0x73dc0000 1171456 C:\Users\User\AppData\Local\Microsoft\OneDrive\18.131.0701.0007\ucrtbase.dll 10.0.17134.12 (WinBuild.160101.0800) Microsoft Corporation Microsoft® C Runtime Library 131795770645660654 0x73ee0000 61440 C:\Windows\SysWOW64\wtsapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Remote Desktop Session Host Server SDK APIs 131795770645660654 0x73f00000 192512 C:\Windows\SysWOW64\IPHLPAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API вспомогательного приложения IP 131795770645660654 0x73f30000 512000 C:\Windows\SysWOW64\DNSAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Динамическая библиотека API DNS-клиента 131795770645660654 0x73fb0000 36864 C:\Windows\SysWOW64\ktmw32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows KTM Win32 Client DLL 131795770645660654 0x73ff0000 319488 C:\Windows\SysWOW64\MSWSOCK.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширение поставщика службы API Microsoft Windows Sockets 2.0 131795770645660654 0x74060000 192512 C:\Windows\SysWOW64\rsaenh.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Enhanced Cryptographic Provider 131795770645660654 0x74090000 462848 C:\Users\User\AppData\Local\Microsoft\OneDrive\18.131.0701.0007\MSVCP140.dll 14.13.26020.0 built by: VCTOOLSREL Microsoft Corporation Microsoft® C Runtime Library 131795770645660654 0x74110000 479232 C:\Windows\SysWOW64\UxTheme.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека тем UxTheme (Microsoft) 131795770645660654 0x74190000 110592 C:\Windows\SysWOW64\bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795770645660654 0x741b0000 77824 C:\Windows\SysWOW64\CRYPTSP.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Cryptographic Service Provider API 131795770645660654 0x741d0000 86016 C:\Users\User\AppData\Local\Microsoft\OneDrive\18.131.0701.0007\VCRUNTIME140.dll 14.13.26020.0 built by: VCTOOLSREL Microsoft Corporation Microsoft® C Runtime Library 131795770645660654 0x741f0000 143360 C:\Windows\SysWOW64\WINMMBASE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base Multimedia Extension API DLL 131795770645660654 0x74220000 53248 C:\Windows\SysWOW64\TOKENBINDING.dll 10.0.14393.1593 (rs1_release.170731-1934) Microsoft Corporation Token Binding Protocol 131795770645660654 0x74230000 147456 C:\Windows\SysWOW64\WINMM.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation MCI API DLL 131795770645660654 0x74260000 2514944 C:\Windows\SysWOW64\WININET.dll 11.00.14393.447 (rs1_release_inmarket.161102-0100) Microsoft Corporation Расширения Интернета для Win32 131795770645660654 0x744d0000 2138112 C:\Windows\WinSxS\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.14393.953_none_89c2555adb023171\COMCTL32.dll 6.10 (rs1_release_inmarket.170303-1614) Microsoft Corporation Библиотека элементов управления взаимодействия с пользователем 131795770645660654 0x746e0000 32768 C:\Windows\SysWOW64\VERSION.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Version Checking and File Installation Libraries 131795770645660654 0x746f0000 106496 C:\Windows\SysWOW64\USERENV.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Userenv 131795770645660654 0x74710000 90112 C:\Windows\SysWOW64\MPR.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека маршрутизации для нескольких служб доступа 131795770645660654 0x74730000 598016 C:\Windows\SysWOW64\apphelp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиентская библиотека совместимости приложений 131795770645660654 0x747d0000 40960 C:\Windows\SysWOW64\CRYPTBASE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base cryptographic API DLL 131795770645660654 0x747e0000 126976 C:\Windows\SysWOW64\SspiCli.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Security Support Provider Interface 131795770645660654 0x74800000 151552 C:\Windows\SysWOW64\IMM32.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Multi-User Windows IMM32 API Client DLL 131795770645660654 0x74910000 2170880 C:\Windows\SysWOW64\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795770645660654 0x74b30000 53248 C:\Windows\SysWOW64\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795770645660654 0x74b60000 790528 C:\Windows\SysWOW64\RPCRT4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795770645660654 0x74c30000 1417216 C:\Windows\SysWOW64\gdi32full.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation GDI Client DLL 131795770645660654 0x74d90000 24576 C:\Windows\SysWOW64\PSAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Process Status Helper 131795770645660654 0x74da0000 778240 C:\Windows\SysWOW64\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795770645660654 0x74e60000 557056 C:\Windows\SysWOW64\shcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795770645660654 0x74ef0000 540672 C:\Windows\SysWOW64\clbcatq.dll 2001.12.10941.16384 (rs1_release.160715-1616) Microsoft Corporation COM+ Configuration Catalog 131795770645660654 0x74f80000 278528 C:\Windows\SysWOW64\WINTRUST.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation Microsoft Trust Verification APIs 131795770645660654 0x74fd0000 405504 C:\Windows\SysWOW64\WS2_32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation 32-разрядная библиотека Windows Socket 2.0 131795770645660654 0x75040000 282624 C:\Windows\SysWOW64\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795770645660654 0x75090000 1265664 C:\Windows\SysWOW64\MSCTF.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Серверная библиотека MSCTF 131795770645660654 0x751d0000 57344 C:\Windows\SysWOW64\MSASN1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ASN.1 Runtime APIs 131795770645660654 0x751e0000 1708032 C:\Windows\SysWOW64\KERNELBASE.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645660654 0x75390000 266240 C:\Windows\SysWOW64\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795770645660654 0x753e0000 1560576 C:\Windows\SysWOW64\CRYPT32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API32 криптографии 131795770645660654 0x75560000 487424 C:\Windows\SysWOW64\ADVAPI32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795770645660654 0x756c0000 5693440 C:\Windows\SysWOW64\windows.storage.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API хранения Microsoft WinRT 131795770645660654 0x75c90000 286720 C:\Windows\SysWOW64\shlwapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека небольших программ оболочки 131795770645660654 0x75ce0000 20811776 C:\Windows\SysWOW64\SHELL32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Общая библиотека оболочки Windows 131795770645660654 0x774d0000 86016 C:\Windows\SysWOW64\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795770645660654 0x774f0000 61440 C:\Windows\SysWOW64\profapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Profile Basic API 131795770645660654 0x77560000 1437696 C:\Windows\SysWOW64\USER32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795770645660654 0x776c0000 368640 C:\Windows\SysWOW64\bcryptPrimitives.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation Windows Cryptographic Primitives Library 131795770645660654 0x77780000 503808 C:\Windows\SysWOW64\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645660654 0x77800000 606208 C:\Windows\SysWOW64\OLEAUT32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795770645660654 0x77ac0000 966656 C:\Windows\SysWOW64\ole32.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft OLE для Windows 131795770645660654 0x77bb0000 176128 C:\Windows\SysWOW64\GDI32.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation GDI Client DLL 131795770645660654 0x77cd0000 221184 C:\Windows\SysWOW64\cfgmgr32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Configuration Manager DLL 131795770645660654 0x77d10000 28672 C:\Windows\SysWOW64\NSI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation NSI User-mode interface DLL 131795770645660654 0x77d20000 1585152 C:\Windows\SysWOW64\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 131795770645660654 0x7ffad0270000 1908736 C:\Windows\SYSTEM32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 86 6140 7744 57 00000000:0031f1da 131795747339404666 0 0 0 Обязательная метка\Ненадежный обязательный уровень WIN-0UOTFKKVN1S\User browser.exe C:\Users\User\AppData\Local\Yandex\YandexBrowser\Application\browser.exe "C:\Users\User\AppData\Local\Yandex\YandexBrowser\Application\browser.exe" --type=renderer --enable-in-process-wmf-demuxer --field-trial-handle=1292,9555382311565764851,7120838982649204725,131072 --enable-ignition --disable-gpu-compositing --service-pipe-token=764E64A4EA650A23B18EB059FF0B4B51 --lang=ru --user-id=32B2E0A1-3039-4C67-86BE-75A88EF21B54 --brand-id=yandex --partner-id=7924 --help-url=https://api.browser.yandex.ru/redirect/help/ --user-agent-info --translate-security-origin=https://translate.yandex.net --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --enable-instaserp --device-scale-factor=1 --num-raster-threads=1 --enable-compositor-image-animations --service-request-channel-token=764E64A4EA650A23B18EB059FF0B4B51 --renderer-client-id=106 --mojo-platform-channel-handle=6612 /prefetch:1 YANDEX LLC 18.6.1.770 Yandex 131795770645660799 0x10e0000 2519040 C:\Users\User\AppData\Local\Yandex\YandexBrowser\Application\browser.exe 18.6.1.770 YANDEX LLC Yandex 131795770645660799 0x58720000 59748352 C:\Users\User\AppData\Local\Yandex\YandexBrowser\Application\18.6.1.770\browser_child.dll 18.6.1.770 YANDEX LLC Yandex 131795770645660799 0x5c020000 335872 C:\Windows\System32\wow64.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation Win32 Emulation on NT64 131795770645660799 0x5c080000 487424 C:\Windows\System32\wow64win.dll 10.0.14393.1884 (rs1_release.171101-1233) Microsoft Corporation Wow64 Console and Win32 API Logging 131795770645660799 0x5c100000 40960 C:\Windows\System32\wow64cpu.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation AMD64 Wow64 CPU 131795770645660799 0x6e8b0000 1859584 C:\Windows\SysWOW64\mfmp4srcsnk.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL источника и приемника MPEG4 Media Foundation 131795770645660799 0x6ef30000 647168 C:\Windows\SysWOW64\evr.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека DLL средства отображения видео 131795770645660799 0x6efd0000 458752 C:\Windows\SysWOW64\msauddecmft.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Media Foundation Audio Decoders 131795770645660799 0x6f790000 1085440 C:\Windows\SysWOW64\mfperfhelper.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation MFPerf DLL 131795770645660799 0x6f8a0000 2220032 C:\Windows\SysWOW64\msmpeg2vdec.dll 10.0.14393.953 (rs1_release_inmarket.170303-1614) Microsoft Corporation Microsoft DTV-DVD Video Decoder 131795770645660799 0x6fac0000 1130496 C:\Windows\SysWOW64\mfplat.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Media Foundation Platform DLL 131795770645660799 0x6ff60000 172032 C:\Windows\SysWOW64\RTWorkQ.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL для WorkQueue реального времени 131795770645660799 0x70030000 593920 C:\Users\User\AppData\Local\Yandex\YandexBrowser\Application\18.6.1.770\browser_elf.dll 18.6.1.770 YANDEX LLC Yandex 131795770645660799 0x700d0000 434176 C:\Windows\SysWOW64\WINSPOOL.DRV 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Драйвер диспетчера очереди Windows 131795770645660799 0x70340000 536576 C:\Windows\SysWOW64\dxgi.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation DirectX Graphics Infrastructure 131795770645660799 0x703d0000 2056192 C:\Windows\SysWOW64\DWrite.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Службы Microsoft DirectX Typography 131795770645660799 0x707d0000 86016 C:\Windows\SysWOW64\SAMCLI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Security Accounts Manager Client DLL 131795770645660799 0x70a20000 94208 C:\Windows\SysWOW64\USP10.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Uniscribe Unicode script processor 131795770645660799 0x70ca0000 45056 C:\Windows\SysWOW64\NETUTILS.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API Helpers DLL 131795770645660799 0x70fd0000 1331200 C:\Windows\SysWOW64\dbghelp.dll 10.0.14321.1024 (rs1_release.160715-1616) Microsoft Windows Image Helper 131795770645660799 0x71140000 77824 C:\Windows\SysWOW64\NETAPI32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API DLL 131795770645660799 0x725e0000 2273280 C:\Windows\SysWOW64\iertutil.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служебная программа времени выполнения для Internet Explorer 131795770645660799 0x728e0000 1372160 C:\Windows\SysWOW64\PROPSYS.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Система страниц свойств (Майкрософт) 131795770645660799 0x72af0000 655360 C:\Windows\SysWOW64\WINHTTP.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Службы HTTP Windows 131795770645660799 0x72cc0000 1658880 C:\Windows\SysWOW64\urlmon.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширения OLE32 для Win32 131795770645660799 0x73ac0000 81920 C:\Windows\SysWOW64\dhcpcsvc.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служба DHCP-клиента 131795770645660799 0x73ae0000 40960 C:\Windows\SysWOW64\Secur32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Security Support Provider Interface 131795770645660799 0x73f00000 192512 C:\Windows\SysWOW64\IPHLPAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API вспомогательного приложения IP 131795770645660799 0x74190000 110592 C:\Windows\SysWOW64\bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795770645660799 0x741b0000 77824 C:\Windows\SysWOW64\cryptsp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Cryptographic Service Provider API 131795770645660799 0x741f0000 143360 C:\Windows\SysWOW64\WINMMBASE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base Multimedia Extension API DLL 131795770645660799 0x74230000 147456 C:\Windows\SysWOW64\WINMM.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation MCI API DLL 131795770645660799 0x744d0000 2138112 C:\Windows\WinSxS\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.14393.953_none_89c2555adb023171\COMCTL32.dll 6.10 (rs1_release_inmarket.170303-1614) Microsoft Corporation Библиотека элементов управления взаимодействия с пользователем 131795770645660799 0x746e0000 32768 C:\Windows\SysWOW64\VERSION.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Version Checking and File Installation Libraries 131795770645660799 0x746f0000 106496 C:\Windows\SysWOW64\USERENV.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Userenv 131795770645660799 0x747d0000 40960 C:\Windows\SysWOW64\CRYPTBASE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base cryptographic API DLL 131795770645660799 0x747e0000 126976 C:\Windows\SysWOW64\SspiCli.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Security Support Provider Interface 131795770645660799 0x74800000 151552 C:\Windows\SysWOW64\IMM32.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Multi-User Windows IMM32 API Client DLL 131795770645660799 0x74910000 2170880 C:\Windows\SysWOW64\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795770645660799 0x74b30000 53248 C:\Windows\SysWOW64\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795770645660799 0x74b60000 790528 C:\Windows\SysWOW64\RPCRT4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795770645660799 0x74c30000 1417216 C:\Windows\SysWOW64\gdi32full.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation GDI Client DLL 131795770645660799 0x74d90000 24576 C:\Windows\SysWOW64\PSAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Process Status Helper 131795770645660799 0x74da0000 778240 C:\Windows\SysWOW64\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795770645660799 0x74e60000 557056 C:\Windows\SysWOW64\shcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795770645660799 0x74f80000 278528 C:\Windows\SysWOW64\WINTRUST.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation Microsoft Trust Verification APIs 131795770645660799 0x74fd0000 405504 C:\Windows\SysWOW64\WS2_32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation 32-разрядная библиотека Windows Socket 2.0 131795770645660799 0x75040000 282624 C:\Windows\SysWOW64\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795770645660799 0x751d0000 57344 C:\Windows\SysWOW64\MSASN1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ASN.1 Runtime APIs 131795770645660799 0x751e0000 1708032 C:\Windows\SysWOW64\KERNELBASE.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645660799 0x75390000 266240 C:\Windows\SysWOW64\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795770645660799 0x753e0000 1560576 C:\Windows\SysWOW64\CRYPT32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API32 криптографии 131795770645660799 0x75560000 487424 C:\Windows\SysWOW64\ADVAPI32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795770645660799 0x756c0000 5693440 C:\Windows\SysWOW64\windows.storage.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API хранения Microsoft WinRT 131795770645660799 0x75c90000 286720 C:\Windows\SysWOW64\shlwapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека небольших программ оболочки 131795770645660799 0x75ce0000 20811776 C:\Windows\SysWOW64\SHELL32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Общая библиотека оболочки Windows 131795770645660799 0x774d0000 86016 C:\Windows\SysWOW64\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795770645660799 0x774f0000 61440 C:\Windows\SysWOW64\profapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Profile Basic API 131795770645660799 0x77560000 1437696 C:\Windows\SysWOW64\USER32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795770645660799 0x776c0000 368640 C:\Windows\SysWOW64\bcryptPrimitives.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation Windows Cryptographic Primitives Library 131795770645660799 0x77780000 503808 C:\Windows\SysWOW64\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645660799 0x77800000 606208 C:\Windows\SysWOW64\OLEAUT32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795770645660799 0x77ac0000 966656 C:\Windows\SysWOW64\ole32.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft OLE для Windows 131795770645660799 0x77bb0000 176128 C:\Windows\SysWOW64\GDI32.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation GDI Client DLL 131795770645660799 0x77be0000 937984 C:\Windows\SysWOW64\COMDLG32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека общих диалоговых окон 131795770645660799 0x77cd0000 221184 C:\Windows\SysWOW64\cfgmgr32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Configuration Manager DLL 131795770645660799 0x77d10000 28672 C:\Windows\SysWOW64\NSI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation NSI User-mode interface DLL 131795770645660799 0x77d20000 1585152 C:\Windows\SysWOW64\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 131795770645660799 0x7ffad0270000 1908736 C:\Windows\SYSTEM32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 87 11432 7744 57 00000000:0031f1da 131795755605761168 0 0 0 Обязательная метка\Ненадежный обязательный уровень WIN-0UOTFKKVN1S\User browser.exe C:\Users\User\AppData\Local\Yandex\YandexBrowser\Application\browser.exe "C:\Users\User\AppData\Local\Yandex\YandexBrowser\Application\browser.exe" --type=renderer --enable-in-process-wmf-demuxer --field-trial-handle=1292,9555382311565764851,7120838982649204725,131072 --enable-ignition --disable-gpu-compositing --service-pipe-token=9DD318D38190D474A9A0F5AFD262A449 --lang=ru --user-id=32B2E0A1-3039-4C67-86BE-75A88EF21B54 --brand-id=yandex --partner-id=7924 --help-url=https://api.browser.yandex.ru/redirect/help/ --user-agent-info --translate-security-origin=https://translate.yandex.net --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --enable-instaserp --device-scale-factor=1 --num-raster-threads=1 --enable-compositor-image-animations --service-request-channel-token=9DD318D38190D474A9A0F5AFD262A449 --renderer-client-id=109 --mojo-platform-channel-handle=4152 /prefetch:1 YANDEX LLC 18.6.1.770 Yandex 131795770645660929 0x10e0000 2519040 C:\Users\User\AppData\Local\Yandex\YandexBrowser\Application\browser.exe 18.6.1.770 YANDEX LLC Yandex 131795770645660929 0x58720000 59748352 C:\Users\User\AppData\Local\Yandex\YandexBrowser\Application\18.6.1.770\browser_child.dll 18.6.1.770 YANDEX LLC Yandex 131795770645660929 0x5c020000 335872 C:\Windows\System32\wow64.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation Win32 Emulation on NT64 131795770645660929 0x5c080000 487424 C:\Windows\System32\wow64win.dll 10.0.14393.1884 (rs1_release.171101-1233) Microsoft Corporation Wow64 Console and Win32 API Logging 131795770645660929 0x5c100000 40960 C:\Windows\System32\wow64cpu.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation AMD64 Wow64 CPU 131795770645660929 0x6e8b0000 1859584 C:\Windows\SysWOW64\mfmp4srcsnk.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL источника и приемника MPEG4 Media Foundation 131795770645660929 0x6ef30000 647168 C:\Windows\SysWOW64\evr.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека DLL средства отображения видео 131795770645660929 0x6efd0000 458752 C:\Windows\SysWOW64\msauddecmft.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Media Foundation Audio Decoders 131795770645660929 0x6f790000 1085440 C:\Windows\SysWOW64\mfperfhelper.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation MFPerf DLL 131795770645660929 0x6f8a0000 2220032 C:\Windows\SysWOW64\msmpeg2vdec.dll 10.0.14393.953 (rs1_release_inmarket.170303-1614) Microsoft Corporation Microsoft DTV-DVD Video Decoder 131795770645660929 0x6fac0000 1130496 C:\Windows\SysWOW64\mfplat.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Media Foundation Platform DLL 131795770645660929 0x6ff60000 172032 C:\Windows\SysWOW64\RTWorkQ.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL для WorkQueue реального времени 131795770645660929 0x70030000 593920 C:\Users\User\AppData\Local\Yandex\YandexBrowser\Application\18.6.1.770\browser_elf.dll 18.6.1.770 YANDEX LLC Yandex 131795770645660929 0x700d0000 434176 C:\Windows\SysWOW64\WINSPOOL.DRV 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Драйвер диспетчера очереди Windows 131795770645660929 0x70340000 536576 C:\Windows\SysWOW64\dxgi.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation DirectX Graphics Infrastructure 131795770645660929 0x703d0000 2056192 C:\Windows\SysWOW64\DWrite.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Службы Microsoft DirectX Typography 131795770645660929 0x707d0000 86016 C:\Windows\SysWOW64\SAMCLI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Security Accounts Manager Client DLL 131795770645660929 0x70a20000 94208 C:\Windows\SysWOW64\USP10.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Uniscribe Unicode script processor 131795770645660929 0x70ca0000 45056 C:\Windows\SysWOW64\NETUTILS.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API Helpers DLL 131795770645660929 0x70fd0000 1331200 C:\Windows\SysWOW64\dbghelp.dll 10.0.14321.1024 (rs1_release.160715-1616) Microsoft Windows Image Helper 131795770645660929 0x71140000 77824 C:\Windows\SysWOW64\NETAPI32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API DLL 131795770645660929 0x725e0000 2273280 C:\Windows\SysWOW64\iertutil.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служебная программа времени выполнения для Internet Explorer 131795770645660929 0x728e0000 1372160 C:\Windows\SysWOW64\PROPSYS.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Система страниц свойств (Майкрософт) 131795770645660929 0x72af0000 655360 C:\Windows\SysWOW64\WINHTTP.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Службы HTTP Windows 131795770645660929 0x72cc0000 1658880 C:\Windows\SysWOW64\urlmon.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширения OLE32 для Win32 131795770645660929 0x73ac0000 81920 C:\Windows\SysWOW64\dhcpcsvc.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служба DHCP-клиента 131795770645660929 0x73ae0000 40960 C:\Windows\SysWOW64\Secur32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Security Support Provider Interface 131795770645660929 0x73f00000 192512 C:\Windows\SysWOW64\IPHLPAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API вспомогательного приложения IP 131795770645660929 0x74190000 110592 C:\Windows\SysWOW64\bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795770645660929 0x741b0000 77824 C:\Windows\SysWOW64\cryptsp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Cryptographic Service Provider API 131795770645660929 0x741f0000 143360 C:\Windows\SysWOW64\WINMMBASE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base Multimedia Extension API DLL 131795770645660929 0x74230000 147456 C:\Windows\SysWOW64\WINMM.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation MCI API DLL 131795770645660929 0x744d0000 2138112 C:\Windows\WinSxS\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.14393.953_none_89c2555adb023171\COMCTL32.dll 6.10 (rs1_release_inmarket.170303-1614) Microsoft Corporation Библиотека элементов управления взаимодействия с пользователем 131795770645660929 0x746e0000 32768 C:\Windows\SysWOW64\VERSION.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Version Checking and File Installation Libraries 131795770645660929 0x746f0000 106496 C:\Windows\SysWOW64\USERENV.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Userenv 131795770645660929 0x747d0000 40960 C:\Windows\SysWOW64\CRYPTBASE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base cryptographic API DLL 131795770645660929 0x747e0000 126976 C:\Windows\SysWOW64\SspiCli.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Security Support Provider Interface 131795770645660929 0x74800000 151552 C:\Windows\SysWOW64\IMM32.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Multi-User Windows IMM32 API Client DLL 131795770645660929 0x74910000 2170880 C:\Windows\SysWOW64\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795770645660929 0x74b30000 53248 C:\Windows\SysWOW64\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795770645660929 0x74b60000 790528 C:\Windows\SysWOW64\RPCRT4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795770645660929 0x74c30000 1417216 C:\Windows\SysWOW64\gdi32full.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation GDI Client DLL 131795770645660929 0x74d90000 24576 C:\Windows\SysWOW64\PSAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Process Status Helper 131795770645660929 0x74da0000 778240 C:\Windows\SysWOW64\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795770645660929 0x74e60000 557056 C:\Windows\SysWOW64\shcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795770645660929 0x74f80000 278528 C:\Windows\SysWOW64\WINTRUST.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation Microsoft Trust Verification APIs 131795770645660929 0x74fd0000 405504 C:\Windows\SysWOW64\WS2_32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation 32-разрядная библиотека Windows Socket 2.0 131795770645660929 0x75040000 282624 C:\Windows\SysWOW64\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795770645660929 0x751d0000 57344 C:\Windows\SysWOW64\MSASN1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ASN.1 Runtime APIs 131795770645660929 0x751e0000 1708032 C:\Windows\SysWOW64\KERNELBASE.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645660929 0x75390000 266240 C:\Windows\SysWOW64\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795770645660929 0x753e0000 1560576 C:\Windows\SysWOW64\CRYPT32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API32 криптографии 131795770645660929 0x75560000 487424 C:\Windows\SysWOW64\ADVAPI32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795770645660929 0x756c0000 5693440 C:\Windows\SysWOW64\windows.storage.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API хранения Microsoft WinRT 131795770645660929 0x75c90000 286720 C:\Windows\SysWOW64\shlwapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека небольших программ оболочки 131795770645660929 0x75ce0000 20811776 C:\Windows\SysWOW64\SHELL32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Общая библиотека оболочки Windows 131795770645660929 0x774d0000 86016 C:\Windows\SysWOW64\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795770645660929 0x774f0000 61440 C:\Windows\SysWOW64\profapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Profile Basic API 131795770645660929 0x77560000 1437696 C:\Windows\SysWOW64\USER32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795770645660929 0x776c0000 368640 C:\Windows\SysWOW64\bcryptPrimitives.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation Windows Cryptographic Primitives Library 131795770645660929 0x77780000 503808 C:\Windows\SysWOW64\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645660929 0x77800000 606208 C:\Windows\SysWOW64\OLEAUT32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795770645660929 0x77ac0000 966656 C:\Windows\SysWOW64\ole32.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft OLE для Windows 131795770645660929 0x77bb0000 176128 C:\Windows\SysWOW64\GDI32.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation GDI Client DLL 131795770645660929 0x77be0000 937984 C:\Windows\SysWOW64\COMDLG32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека общих диалоговых окон 131795770645660929 0x77cd0000 221184 C:\Windows\SysWOW64\cfgmgr32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Configuration Manager DLL 131795770645660929 0x77d10000 28672 C:\Windows\SysWOW64\NSI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation NSI User-mode interface DLL 131795770645660929 0x77d20000 1585152 C:\Windows\SysWOW64\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 131795770645660929 0x7ffad0270000 1908736 C:\Windows\SYSTEM32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 88 10384 7744 57 00000000:0031f1da 131795755746873891 0 0 0 Обязательная метка\Ненадежный обязательный уровень WIN-0UOTFKKVN1S\User browser.exe C:\Users\User\AppData\Local\Yandex\YandexBrowser\Application\browser.exe "C:\Users\User\AppData\Local\Yandex\YandexBrowser\Application\browser.exe" --type=renderer --enable-in-process-wmf-demuxer --field-trial-handle=1292,9555382311565764851,7120838982649204725,131072 --enable-ignition --disable-gpu-compositing --service-pipe-token=7E669976FFDCEE94D9B90B02CADE1179 --lang=ru --user-id=32B2E0A1-3039-4C67-86BE-75A88EF21B54 --brand-id=yandex --partner-id=7924 --help-url=https://api.browser.yandex.ru/redirect/help/ --user-agent-info --translate-security-origin=https://translate.yandex.net --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --enable-instaserp --device-scale-factor=1 --num-raster-threads=1 --enable-compositor-image-animations --service-request-channel-token=7E669976FFDCEE94D9B90B02CADE1179 --renderer-client-id=112 --mojo-platform-channel-handle=5412 /prefetch:1 YANDEX LLC 18.6.1.770 Yandex 131795770645661053 0x10e0000 2519040 C:\Users\User\AppData\Local\Yandex\YandexBrowser\Application\browser.exe 18.6.1.770 YANDEX LLC Yandex 131795770645661053 0x58720000 59748352 C:\Users\User\AppData\Local\Yandex\YandexBrowser\Application\18.6.1.770\browser_child.dll 18.6.1.770 YANDEX LLC Yandex 131795770645661053 0x5c020000 335872 C:\Windows\System32\wow64.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation Win32 Emulation on NT64 131795770645661053 0x5c080000 487424 C:\Windows\System32\wow64win.dll 10.0.14393.1884 (rs1_release.171101-1233) Microsoft Corporation Wow64 Console and Win32 API Logging 131795770645661053 0x5c100000 40960 C:\Windows\System32\wow64cpu.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation AMD64 Wow64 CPU 131795770645661053 0x6e8b0000 1859584 C:\Windows\SysWOW64\mfmp4srcsnk.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL источника и приемника MPEG4 Media Foundation 131795770645661053 0x6ef30000 647168 C:\Windows\SysWOW64\evr.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека DLL средства отображения видео 131795770645661053 0x6efd0000 458752 C:\Windows\SysWOW64\msauddecmft.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Media Foundation Audio Decoders 131795770645661053 0x6f790000 1085440 C:\Windows\SysWOW64\mfperfhelper.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation MFPerf DLL 131795770645661053 0x6f8a0000 2220032 C:\Windows\SysWOW64\msmpeg2vdec.dll 10.0.14393.953 (rs1_release_inmarket.170303-1614) Microsoft Corporation Microsoft DTV-DVD Video Decoder 131795770645661053 0x6fac0000 1130496 C:\Windows\SysWOW64\mfplat.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Media Foundation Platform DLL 131795770645661053 0x6ff60000 172032 C:\Windows\SysWOW64\RTWorkQ.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL для WorkQueue реального времени 131795770645661053 0x70030000 593920 C:\Users\User\AppData\Local\Yandex\YandexBrowser\Application\18.6.1.770\browser_elf.dll 18.6.1.770 YANDEX LLC Yandex 131795770645661053 0x700d0000 434176 C:\Windows\SysWOW64\WINSPOOL.DRV 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Драйвер диспетчера очереди Windows 131795770645661053 0x70340000 536576 C:\Windows\SysWOW64\dxgi.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation DirectX Graphics Infrastructure 131795770645661053 0x703d0000 2056192 C:\Windows\SysWOW64\DWrite.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Службы Microsoft DirectX Typography 131795770645661053 0x707d0000 86016 C:\Windows\SysWOW64\SAMCLI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Security Accounts Manager Client DLL 131795770645661053 0x70a20000 94208 C:\Windows\SysWOW64\USP10.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Uniscribe Unicode script processor 131795770645661053 0x70ca0000 45056 C:\Windows\SysWOW64\NETUTILS.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API Helpers DLL 131795770645661053 0x70fd0000 1331200 C:\Windows\SysWOW64\dbghelp.dll 10.0.14321.1024 (rs1_release.160715-1616) Microsoft Windows Image Helper 131795770645661053 0x71140000 77824 C:\Windows\SysWOW64\NETAPI32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API DLL 131795770645661053 0x725e0000 2273280 C:\Windows\SysWOW64\iertutil.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служебная программа времени выполнения для Internet Explorer 131795770645661053 0x728e0000 1372160 C:\Windows\SysWOW64\PROPSYS.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Система страниц свойств (Майкрософт) 131795770645661053 0x72af0000 655360 C:\Windows\SysWOW64\WINHTTP.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Службы HTTP Windows 131795770645661053 0x72cc0000 1658880 C:\Windows\SysWOW64\urlmon.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширения OLE32 для Win32 131795770645661053 0x73ac0000 81920 C:\Windows\SysWOW64\dhcpcsvc.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служба DHCP-клиента 131795770645661053 0x73ae0000 40960 C:\Windows\SysWOW64\Secur32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Security Support Provider Interface 131795770645661053 0x73f00000 192512 C:\Windows\SysWOW64\IPHLPAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API вспомогательного приложения IP 131795770645661053 0x74190000 110592 C:\Windows\SysWOW64\bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795770645661053 0x741b0000 77824 C:\Windows\SysWOW64\cryptsp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Cryptographic Service Provider API 131795770645661053 0x741f0000 143360 C:\Windows\SysWOW64\WINMMBASE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base Multimedia Extension API DLL 131795770645661053 0x74230000 147456 C:\Windows\SysWOW64\WINMM.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation MCI API DLL 131795770645661053 0x744d0000 2138112 C:\Windows\WinSxS\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.14393.953_none_89c2555adb023171\COMCTL32.dll 6.10 (rs1_release_inmarket.170303-1614) Microsoft Corporation Библиотека элементов управления взаимодействия с пользователем 131795770645661053 0x746e0000 32768 C:\Windows\SysWOW64\VERSION.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Version Checking and File Installation Libraries 131795770645661053 0x746f0000 106496 C:\Windows\SysWOW64\USERENV.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Userenv 131795770645661053 0x747d0000 40960 C:\Windows\SysWOW64\CRYPTBASE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base cryptographic API DLL 131795770645661053 0x747e0000 126976 C:\Windows\SysWOW64\SspiCli.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Security Support Provider Interface 131795770645661053 0x74800000 151552 C:\Windows\SysWOW64\IMM32.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Multi-User Windows IMM32 API Client DLL 131795770645661053 0x74910000 2170880 C:\Windows\SysWOW64\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795770645661053 0x74b30000 53248 C:\Windows\SysWOW64\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795770645661053 0x74b60000 790528 C:\Windows\SysWOW64\RPCRT4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795770645661053 0x74c30000 1417216 C:\Windows\SysWOW64\gdi32full.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation GDI Client DLL 131795770645661053 0x74d90000 24576 C:\Windows\SysWOW64\PSAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Process Status Helper 131795770645661053 0x74da0000 778240 C:\Windows\SysWOW64\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795770645661053 0x74e60000 557056 C:\Windows\SysWOW64\shcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795770645661053 0x74f80000 278528 C:\Windows\SysWOW64\WINTRUST.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation Microsoft Trust Verification APIs 131795770645661053 0x74fd0000 405504 C:\Windows\SysWOW64\WS2_32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation 32-разрядная библиотека Windows Socket 2.0 131795770645661053 0x75040000 282624 C:\Windows\SysWOW64\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795770645661053 0x751d0000 57344 C:\Windows\SysWOW64\MSASN1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ASN.1 Runtime APIs 131795770645661053 0x751e0000 1708032 C:\Windows\SysWOW64\KERNELBASE.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645661053 0x75390000 266240 C:\Windows\SysWOW64\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795770645661053 0x753e0000 1560576 C:\Windows\SysWOW64\CRYPT32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API32 криптографии 131795770645661053 0x75560000 487424 C:\Windows\SysWOW64\ADVAPI32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795770645661053 0x756c0000 5693440 C:\Windows\SysWOW64\windows.storage.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API хранения Microsoft WinRT 131795770645661053 0x75c90000 286720 C:\Windows\SysWOW64\shlwapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека небольших программ оболочки 131795770645661053 0x75ce0000 20811776 C:\Windows\SysWOW64\SHELL32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Общая библиотека оболочки Windows 131795770645661053 0x774d0000 86016 C:\Windows\SysWOW64\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795770645661053 0x774f0000 61440 C:\Windows\SysWOW64\profapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Profile Basic API 131795770645661053 0x77560000 1437696 C:\Windows\SysWOW64\USER32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795770645661053 0x776c0000 368640 C:\Windows\SysWOW64\bcryptPrimitives.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation Windows Cryptographic Primitives Library 131795770645661053 0x77780000 503808 C:\Windows\SysWOW64\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645661053 0x77800000 606208 C:\Windows\SysWOW64\OLEAUT32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795770645661053 0x77ac0000 966656 C:\Windows\SysWOW64\ole32.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft OLE для Windows 131795770645661053 0x77bb0000 176128 C:\Windows\SysWOW64\GDI32.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation GDI Client DLL 131795770645661053 0x77be0000 937984 C:\Windows\SysWOW64\COMDLG32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека общих диалоговых окон 131795770645661053 0x77cd0000 221184 C:\Windows\SysWOW64\cfgmgr32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Configuration Manager DLL 131795770645661053 0x77d10000 28672 C:\Windows\SysWOW64\NSI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation NSI User-mode interface DLL 131795770645661053 0x77d20000 1585152 C:\Windows\SysWOW64\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 131795770645661053 0x7ffad0270000 1908736 C:\Windows\SYSTEM32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 90 6936 7744 57 00000000:0031f1da 131795756360200321 0 0 0 Обязательная метка\Ненадежный обязательный уровень WIN-0UOTFKKVN1S\User browser.exe C:\Users\User\AppData\Local\Yandex\YandexBrowser\Application\browser.exe "C:\Users\User\AppData\Local\Yandex\YandexBrowser\Application\browser.exe" --type=renderer --enable-in-process-wmf-demuxer --field-trial-handle=1292,9555382311565764851,7120838982649204725,131072 --enable-ignition --disable-gpu-compositing --service-pipe-token=73B8CB09F7D184AD1D3DDBFE4AFC07BA --lang=ru --user-id=32B2E0A1-3039-4C67-86BE-75A88EF21B54 --brand-id=yandex --partner-id=7924 --help-url=https://api.browser.yandex.ru/redirect/help/ --user-agent-info --translate-security-origin=https://translate.yandex.net --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --enable-instaserp --device-scale-factor=1 --num-raster-threads=1 --enable-compositor-image-animations --service-request-channel-token=73B8CB09F7D184AD1D3DDBFE4AFC07BA --renderer-client-id=116 --mojo-platform-channel-handle=4024 /prefetch:1 YANDEX LLC 18.6.1.770 Yandex 131795770645661289 0x10e0000 2519040 C:\Users\User\AppData\Local\Yandex\YandexBrowser\Application\browser.exe 18.6.1.770 YANDEX LLC Yandex 131795770645661289 0x58720000 59748352 C:\Users\User\AppData\Local\Yandex\YandexBrowser\Application\18.6.1.770\browser_child.dll 18.6.1.770 YANDEX LLC Yandex 131795770645661289 0x5c020000 335872 C:\Windows\System32\wow64.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation Win32 Emulation on NT64 131795770645661289 0x5c080000 487424 C:\Windows\System32\wow64win.dll 10.0.14393.1884 (rs1_release.171101-1233) Microsoft Corporation Wow64 Console and Win32 API Logging 131795770645661289 0x5c100000 40960 C:\Windows\System32\wow64cpu.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation AMD64 Wow64 CPU 131795770645661289 0x6e8b0000 1859584 C:\Windows\SysWOW64\mfmp4srcsnk.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL источника и приемника MPEG4 Media Foundation 131795770645661289 0x6ef30000 647168 C:\Windows\SysWOW64\evr.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека DLL средства отображения видео 131795770645661289 0x6efd0000 458752 C:\Windows\SysWOW64\msauddecmft.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Media Foundation Audio Decoders 131795770645661289 0x6f790000 1085440 C:\Windows\SysWOW64\mfperfhelper.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation MFPerf DLL 131795770645661289 0x6f8a0000 2220032 C:\Windows\SysWOW64\msmpeg2vdec.dll 10.0.14393.953 (rs1_release_inmarket.170303-1614) Microsoft Corporation Microsoft DTV-DVD Video Decoder 131795770645661289 0x6fac0000 1130496 C:\Windows\SysWOW64\mfplat.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Media Foundation Platform DLL 131795770645661289 0x6ff60000 172032 C:\Windows\SysWOW64\RTWorkQ.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL для WorkQueue реального времени 131795770645661289 0x70030000 593920 C:\Users\User\AppData\Local\Yandex\YandexBrowser\Application\18.6.1.770\browser_elf.dll 18.6.1.770 YANDEX LLC Yandex 131795770645661289 0x700d0000 434176 C:\Windows\SysWOW64\WINSPOOL.DRV 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Драйвер диспетчера очереди Windows 131795770645661289 0x70340000 536576 C:\Windows\SysWOW64\dxgi.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation DirectX Graphics Infrastructure 131795770645661289 0x703d0000 2056192 C:\Windows\SysWOW64\DWrite.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Службы Microsoft DirectX Typography 131795770645661289 0x707d0000 86016 C:\Windows\SysWOW64\SAMCLI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Security Accounts Manager Client DLL 131795770645661289 0x70a20000 94208 C:\Windows\SysWOW64\USP10.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Uniscribe Unicode script processor 131795770645661289 0x70ca0000 45056 C:\Windows\SysWOW64\NETUTILS.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API Helpers DLL 131795770645661289 0x70fd0000 1331200 C:\Windows\SysWOW64\dbghelp.dll 10.0.14321.1024 (rs1_release.160715-1616) Microsoft Windows Image Helper 131795770645661289 0x71140000 77824 C:\Windows\SysWOW64\NETAPI32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API DLL 131795770645661289 0x725e0000 2273280 C:\Windows\SysWOW64\iertutil.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служебная программа времени выполнения для Internet Explorer 131795770645661289 0x728e0000 1372160 C:\Windows\SysWOW64\PROPSYS.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Система страниц свойств (Майкрософт) 131795770645661289 0x72af0000 655360 C:\Windows\SysWOW64\WINHTTP.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Службы HTTP Windows 131795770645661289 0x72cc0000 1658880 C:\Windows\SysWOW64\urlmon.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширения OLE32 для Win32 131795770645661289 0x73ac0000 81920 C:\Windows\SysWOW64\dhcpcsvc.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служба DHCP-клиента 131795770645661289 0x73ae0000 40960 C:\Windows\SysWOW64\Secur32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Security Support Provider Interface 131795770645661289 0x73f00000 192512 C:\Windows\SysWOW64\IPHLPAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API вспомогательного приложения IP 131795770645661289 0x74190000 110592 C:\Windows\SysWOW64\bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795770645661289 0x741b0000 77824 C:\Windows\SysWOW64\cryptsp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Cryptographic Service Provider API 131795770645661289 0x741f0000 143360 C:\Windows\SysWOW64\WINMMBASE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base Multimedia Extension API DLL 131795770645661289 0x74230000 147456 C:\Windows\SysWOW64\WINMM.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation MCI API DLL 131795770645661289 0x744d0000 2138112 C:\Windows\WinSxS\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.14393.953_none_89c2555adb023171\COMCTL32.dll 6.10 (rs1_release_inmarket.170303-1614) Microsoft Corporation Библиотека элементов управления взаимодействия с пользователем 131795770645661289 0x746e0000 32768 C:\Windows\SysWOW64\VERSION.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Version Checking and File Installation Libraries 131795770645661289 0x746f0000 106496 C:\Windows\SysWOW64\USERENV.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Userenv 131795770645661289 0x747d0000 40960 C:\Windows\SysWOW64\CRYPTBASE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base cryptographic API DLL 131795770645661289 0x747e0000 126976 C:\Windows\SysWOW64\SspiCli.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Security Support Provider Interface 131795770645661289 0x74800000 151552 C:\Windows\SysWOW64\IMM32.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Multi-User Windows IMM32 API Client DLL 131795770645661289 0x74910000 2170880 C:\Windows\SysWOW64\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795770645661289 0x74b30000 53248 C:\Windows\SysWOW64\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795770645661289 0x74b60000 790528 C:\Windows\SysWOW64\RPCRT4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795770645661289 0x74c30000 1417216 C:\Windows\SysWOW64\gdi32full.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation GDI Client DLL 131795770645661289 0x74d90000 24576 C:\Windows\SysWOW64\PSAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Process Status Helper 131795770645661289 0x74da0000 778240 C:\Windows\SysWOW64\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795770645661289 0x74e60000 557056 C:\Windows\SysWOW64\shcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795770645661289 0x74f80000 278528 C:\Windows\SysWOW64\WINTRUST.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation Microsoft Trust Verification APIs 131795770645661289 0x74fd0000 405504 C:\Windows\SysWOW64\WS2_32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation 32-разрядная библиотека Windows Socket 2.0 131795770645661289 0x75040000 282624 C:\Windows\SysWOW64\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795770645661289 0x751d0000 57344 C:\Windows\SysWOW64\MSASN1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ASN.1 Runtime APIs 131795770645661289 0x751e0000 1708032 C:\Windows\SysWOW64\KERNELBASE.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645661289 0x75390000 266240 C:\Windows\SysWOW64\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795770645661289 0x753e0000 1560576 C:\Windows\SysWOW64\CRYPT32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API32 криптографии 131795770645661289 0x75560000 487424 C:\Windows\SysWOW64\ADVAPI32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795770645661289 0x756c0000 5693440 C:\Windows\SysWOW64\windows.storage.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API хранения Microsoft WinRT 131795770645661289 0x75c90000 286720 C:\Windows\SysWOW64\shlwapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека небольших программ оболочки 131795770645661289 0x75ce0000 20811776 C:\Windows\SysWOW64\SHELL32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Общая библиотека оболочки Windows 131795770645661289 0x774d0000 86016 C:\Windows\SysWOW64\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795770645661289 0x774f0000 61440 C:\Windows\SysWOW64\profapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Profile Basic API 131795770645661289 0x77560000 1437696 C:\Windows\SysWOW64\USER32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795770645661289 0x776c0000 368640 C:\Windows\SysWOW64\bcryptPrimitives.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation Windows Cryptographic Primitives Library 131795770645661289 0x77780000 503808 C:\Windows\SysWOW64\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645661289 0x77800000 606208 C:\Windows\SysWOW64\OLEAUT32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795770645661289 0x77ac0000 966656 C:\Windows\SysWOW64\ole32.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft OLE для Windows 131795770645661289 0x77bb0000 176128 C:\Windows\SysWOW64\GDI32.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation GDI Client DLL 131795770645661289 0x77be0000 937984 C:\Windows\SysWOW64\COMDLG32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека общих диалоговых окон 131795770645661289 0x77cd0000 221184 C:\Windows\SysWOW64\cfgmgr32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Configuration Manager DLL 131795770645661289 0x77d10000 28672 C:\Windows\SysWOW64\NSI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation NSI User-mode interface DLL 131795770645661289 0x77d20000 1585152 C:\Windows\SysWOW64\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 131795770645661289 0x7ffad0270000 1908736 C:\Windows\SYSTEM32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 98 6080 84 97 00000000:0031f1da 131795771125310655 0 0 0 Обязательная метка\Средний обязательный уровень WIN-0UOTFKKVN1S\User MCLauncher.exe C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe "C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe" 1.0 131795771127806606 0x400000 2830336 C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe 1.0 131795771129292604 0x750000 1462272 C:\Windows\System32\user32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795771335510731 0x11000000 1396736 C:\Users\User\AppData\Roaming\MCLauncher\libeay32.dll 1.0.2o The OpenSSL Project, http://www.openssl.org/ OpenSSL Shared Library 131795771334241016 0x12000000 360448 C:\Users\User\AppData\Roaming\MCLauncher\ssleay32.dll 1.0.2o The OpenSSL Project, http://www.openssl.org/ OpenSSL Shared Library 131795771129285523 0x5c020000 335872 C:\Windows\System32\wow64.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation Win32 Emulation on NT64 131795771129286235 0x5c080000 487424 C:\Windows\System32\wow64win.dll 10.0.14393.1884 (rs1_release.171101-1233) Microsoft Corporation Wow64 Console and Win32 API Logging 131795771129295328 0x5c100000 40960 C:\Windows\System32\wow64cpu.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation AMD64 Wow64 CPU 131795771135408057 0x60750000 1556480 C:\Program Files (x86)\360\Total Security\safemon\safemon.dll 8, 4, 0, 1420 Qihu 360 Software Co., Ltd. 360 Internet Security Internet Protection 131795771129575672 0x613d0000 667648 C:\Windows\WinSxS\x86_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.9247_none_5090cb78bcba4a35\msvcr90.dll 9.00.30729.9247 Microsoft Corporation Microsoft® C Runtime Library 131795771129398434 0x66680000 12288 C:\Windows\SysWOW64\sfc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows File Protection 131795771136825814 0x67500000 1597440 C:\Windows\SysWOW64\actxprxy.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation ActiveX Interface Marshaling Library 131795771129423112 0x67690000 61440 C:\Windows\SysWOW64\sfc_os.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows File Protection 131795771129349562 0x6b830000 2584576 C:\Windows\AppPatch\AcLayers.dll 10.0.14393.953 (rs1_release_inmarket.170303-1614) Microsoft Corporation Windows Compatibility DLL 131795771329638947 0x6c290000 987136 C:\Windows\SysWOW64\twinapi.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation twinapi.appcore 131795771329610149 0x6c390000 1126400 C:\Windows\SysWOW64\dcomp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft DirectComposition Library 131795771329592759 0x6c4b0000 278528 C:\Windows\SysWOW64\DataExchange.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation Data exchange 131795771136045859 0x6cda0000 528384 C:\Windows\SysWOW64\sxs.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Fusion 2.5 131795771131298623 0x6d180000 581632 C:\Windows\WinSxS\x86_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.9247_none_5090cb78bcba4a35\msvcp90.dll 9.00.30729.9247 Microsoft Corporation Microsoft® C++ Runtime Library 131795771136082794 0x6dca0000 176128 C:\Windows\SysWOW64\scrrun.dll 5.812.10240.16384 Microsoft Corporation Microsoft ® Script Runtime 131795771133718253 0x6dcd0000 606208 C:\Windows\WinSxS\x86_microsoft.windows.common-controls_6595b64144ccf1df_5.82.14393.447_none_5507ded2cb4f7f4c\comctl32.dll 6.10 (rs1_release_inmarket.170303-1614) Microsoft Corporation Библиотека элементов управления взаимодействия с пользователем 131795771129406131 0x700d0000 434176 C:\Windows\SysWOW64\winspool.drv 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Драйвер диспетчера очереди Windows 131795771329618480 0x70340000 536576 C:\Windows\SysWOW64\dxgi.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation DirectX Graphics Infrastructure 131795771329601483 0x707f0000 2293760 C:\Windows\SysWOW64\d3d11.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation Direct3D 11 Runtime 131795771336447829 0x70c30000 114688 C:\Windows\SysWOW64\srvcli.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Server Service Client DLL 131795771135435621 0x70ca0000 45056 C:\Windows\SysWOW64\netutils.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API Helpers DLL 131795771135446667 0x70cb0000 65536 C:\Windows\SysWOW64\wkscli.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Workstation Service Client DLL 131795771136073867 0x70e90000 147456 C:\Windows\SysWOW64\wshom.ocx 5.812.10240.16384 Microsoft Corporation Windows Script Host Runtime Library 131795771135423397 0x71140000 77824 C:\Windows\SysWOW64\netapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API DLL 131795771135552456 0x725e0000 2273280 C:\Windows\SysWOW64\iertutil.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служебная программа времени выполнения для Internet Explorer 131795771136181434 0x728e0000 1372160 C:\Windows\SysWOW64\propsys.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Система страниц свойств (Майкрософт) 131795771328759427 0x72b90000 126976 C:\Windows\SysWOW64\dwmapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Интерфейс API диспетчера окон рабочего стола (Майкрософт) 131795771135541570 0x72cc0000 1658880 C:\Windows\SysWOW64\urlmon.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширения OLE32 для Win32 131795771347140137 0x73a50000 299008 C:\Windows\SysWOW64\FWPUCLNT.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API пользовательского режима FWP/IPsec 131795771347110306 0x73ab0000 32768 C:\Windows\SysWOW64\rasadhlp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Remote Access AutoDial Helper 131795771135314174 0x73ae0000 40960 C:\Windows\SysWOW64\secur32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Security Support Provider Interface 131795771347090516 0x73f00000 192512 C:\Windows\SysWOW64\IPHLPAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API вспомогательного приложения IP 131795771347075776 0x73f30000 512000 C:\Windows\SysWOW64\dnsapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Динамическая библиотека API DNS-клиента 131795771328179609 0x73ff0000 319488 C:\Windows\SysWOW64\mswsock.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширение поставщика службы API Microsoft Windows Sockets 2.0 131795771130913562 0x74060000 192512 C:\Windows\SysWOW64\rsaenh.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Enhanced Cryptographic Provider 131795771135359123 0x74110000 479232 C:\Windows\SysWOW64\uxtheme.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека тем UxTheme (Microsoft) 131795771129415027 0x74190000 110592 C:\Windows\SysWOW64\bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795771130899582 0x741b0000 77824 C:\Windows\SysWOW64\cryptsp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Cryptographic Service Provider API 131795771133098293 0x741f0000 143360 C:\Windows\SysWOW64\winmmbase.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base Multimedia Extension API DLL 131795771132990161 0x74230000 147456 C:\Windows\SysWOW64\winmm.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation MCI API DLL 131795771131765102 0x746e0000 32768 C:\Windows\SysWOW64\version.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Version Checking and File Installation Libraries 131795771129389543 0x74710000 90112 C:\Windows\SysWOW64\mpr.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека маршрутизации для нескольких служб доступа 131795771129317462 0x74730000 598016 C:\Windows\SysWOW64\apphelp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиентская библиотека совместимости приложений 131795771129360685 0x747d0000 40960 C:\Windows\SysWOW64\cryptbase.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base cryptographic API DLL 131795771129360034 0x747e0000 126976 C:\Windows\SysWOW64\sspicli.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Security Support Provider Interface 131795771129496759 0x74800000 151552 C:\Windows\SysWOW64\imm32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Multi-User Windows IMM32 API Client DLL 131795771129358136 0x74830000 917504 C:\Windows\SysWOW64\ucrtbase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795771129357408 0x74910000 2170880 C:\Windows\SysWOW64\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795771129365891 0x74b30000 53248 C:\Windows\SysWOW64\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795771129359203 0x74b60000 790528 C:\Windows\SysWOW64\rpcrt4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795771129353720 0x74c30000 1417216 C:\Windows\SysWOW64\gdi32full.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation GDI Client DLL 131795771135412052 0x74d90000 24576 C:\Windows\SysWOW64\psapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Process Status Helper 131795771129350362 0x74da0000 778240 C:\Windows\SysWOW64\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795771129366695 0x74e60000 557056 C:\Windows\SysWOW64\SHCore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795771136054082 0x74ef0000 540672 C:\Windows\SysWOW64\clbcatq.dll 2001.12.10941.16384 (rs1_release.160715-1616) Microsoft Corporation COM+ Configuration Catalog 131795771131750596 0x74fd0000 405504 C:\Windows\SysWOW64\ws2_32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation 32-разрядная библиотека Windows Socket 2.0 131795771129363162 0x75040000 282624 C:\Windows\SysWOW64\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795771328737550 0x75090000 1265664 C:\Windows\SysWOW64\msctf.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Серверная библиотека MSCTF 131795771135228888 0x751d0000 57344 C:\Windows\SysWOW64\msasn1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ASN.1 Runtime APIs 131795771129301509 0x751e0000 1708032 C:\Windows\SysWOW64\KernelBase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795771129362062 0x75390000 266240 C:\Windows\SysWOW64\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795771135227735 0x753e0000 1560576 C:\Windows\SysWOW64\crypt32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API32 криптографии 131795771129363985 0x75560000 487424 C:\Windows\SysWOW64\advapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795771129356607 0x756c0000 5693440 C:\Windows\SysWOW64\windows.storage.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API хранения Microsoft WinRT 131795771129364960 0x75c90000 286720 C:\Windows\SysWOW64\shlwapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека небольших программ оболочки 131795771129354665 0x75ce0000 20811776 C:\Windows\SysWOW64\shell32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Общая библиотека оболочки Windows 131795771129370252 0x770c0000 4239360 C:\Windows\SysWOW64\setupapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Setup API 131795771129352041 0x774d0000 86016 C:\Windows\SysWOW64\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795771129367584 0x774f0000 61440 C:\Windows\SysWOW64\profapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Profile Basic API 131795771129351257 0x77560000 1437696 C:\Windows\SysWOW64\user32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795771129361361 0x776c0000 368640 C:\Windows\SysWOW64\bcryptprimitives.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation Windows Cryptographic Primitives Library 131795771129369244 0x77780000 503808 C:\Windows\SysWOW64\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795771129368545 0x77800000 606208 C:\Windows\SysWOW64\oleaut32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795771131168008 0x77ac0000 966656 C:\Windows\SysWOW64\ole32.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft OLE для Windows 131795771129352931 0x77bb0000 176128 C:\Windows\SysWOW64\gdi32.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation GDI Client DLL 131795771133704572 0x77be0000 937984 C:\Windows\SysWOW64\comdlg32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека общих диалоговых окон 131795771129355632 0x77cd0000 221184 C:\Windows\SysWOW64\cfgmgr32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Configuration Manager DLL 131795771347076821 0x77d10000 28672 C:\Windows\SysWOW64\nsi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation NSI User-mode interface DLL 131795771127807387 0x77d20000 1585152 C:\Windows\SysWOW64\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 131795771127807116 0x7ffad0270000 1908736 C:\Windows\System32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 104 12696 7744 57 00000000:0031f1da 131795777567759490 0 0 0 Обязательная метка\Низкий обязательный уровень WIN-0UOTFKKVN1S\User browser.exe C:\Users\User\AppData\Local\Yandex\YandexBrowser\Application\browser.exe "C:\Users\User\AppData\Local\Yandex\YandexBrowser\Application\browser.exe" --type=renderer --enable-in-process-wmf-demuxer --field-trial-handle=1292,9555382311565764851,7120838982649204725,131072 --enable-ignition --disable-gpu-compositing --service-pipe-token=E83DB721798C8A70C76CD26F6F4EE1BC --lang=ru --user-id=32B2E0A1-3039-4C67-86BE-75A88EF21B54 --brand-id=yandex --partner-id=7924 --help-url=https://api.browser.yandex.ru/redirect/help/ --user-agent-info --translate-security-origin=https://translate.yandex.net --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --enable-instaserp --device-scale-factor=1 --num-raster-threads=1 --enable-compositor-image-animations --service-request-channel-token=E83DB721798C8A70C76CD26F6F4EE1BC --renderer-client-id=119 --mojo-platform-channel-handle=7052 /prefetch:1 YANDEX LLC 18.6.1.770 Yandex 131795777567991690 0xc00000 1462272 C:\Windows\System32\user32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795777567961139 0x10e0000 2519040 C:\Users\User\AppData\Local\Yandex\YandexBrowser\Application\browser.exe 18.6.1.770 YANDEX LLC Yandex 131795777569452751 0x58720000 59748352 C:\Users\User\AppData\Local\Yandex\YandexBrowser\Application\18.6.1.770\browser_child.dll 18.6.1.770 YANDEX LLC Yandex 131795777567980184 0x5c020000 335872 C:\Windows\System32\wow64.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation Win32 Emulation on NT64 131795777567981270 0x5c080000 487424 C:\Windows\System32\wow64win.dll 10.0.14393.1884 (rs1_release.171101-1233) Microsoft Corporation Wow64 Console and Win32 API Logging 131795777567994943 0x5c100000 40960 C:\Windows\System32\wow64cpu.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation AMD64 Wow64 CPU 131795777570994535 0x6e8b0000 1859584 C:\Windows\SysWOW64\mfmp4srcsnk.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL источника и приемника MPEG4 Media Foundation 131795777570968696 0x6ef30000 647168 C:\Windows\SysWOW64\evr.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека DLL средства отображения видео 131795777570908362 0x6efd0000 458752 C:\Windows\SysWOW64\MSAudDecMFT.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Media Foundation Audio Decoders 131795777570920904 0x6f790000 1085440 C:\Windows\SysWOW64\mfperfhelper.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation MFPerf DLL 131795777570943637 0x6f8a0000 2220032 C:\Windows\SysWOW64\msmpeg2vdec.dll 10.0.14393.953 (rs1_release_inmarket.170303-1614) Microsoft Corporation Microsoft DTV-DVD Video Decoder 131795777570874151 0x6fac0000 1130496 C:\Windows\SysWOW64\mfplat.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Media Foundation Platform DLL 131795777570891841 0x6ff60000 172032 C:\Windows\SysWOW64\RTWorkQ.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL для WorkQueue реального времени 131795777568100773 0x70030000 593920 C:\Users\User\AppData\Local\Yandex\YandexBrowser\Application\18.6.1.770\browser_elf.dll 18.6.1.770 YANDEX LLC Yandex 131795777570569484 0x700d0000 434176 C:\Windows\SysWOW64\winspool.drv 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Драйвер диспетчера очереди Windows 131795777570619251 0x70340000 536576 C:\Windows\SysWOW64\dxgi.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation DirectX Graphics Infrastructure 131795777570607590 0x703d0000 2056192 C:\Windows\SysWOW64\DWrite.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Службы Microsoft DirectX Typography 131795777570676211 0x707d0000 86016 C:\Windows\SysWOW64\samcli.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Security Accounts Manager Client DLL 131795777570557202 0x70a20000 94208 C:\Windows\SysWOW64\usp10.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Uniscribe Unicode script processor 131795777570691164 0x70ca0000 45056 C:\Windows\SysWOW64\netutils.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API Helpers DLL 131795777570539079 0x70fd0000 1331200 C:\Windows\SysWOW64\dbghelp.dll 10.0.14321.1024 (rs1_release.160715-1616) Microsoft Windows Image Helper 131795777569494420 0x71140000 77824 C:\Windows\SysWOW64\netapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API DLL 131795777570658737 0x725e0000 2273280 C:\Windows\SysWOW64\iertutil.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служебная программа времени выполнения для Internet Explorer 131795777569526517 0x728e0000 1372160 C:\Windows\SysWOW64\propsys.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Система страниц свойств (Майкрософт) 131795777569154123 0x72af0000 655360 C:\Windows\SysWOW64\winhttp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Службы HTTP Windows 131795777570594964 0x72cc0000 1658880 C:\Windows\SysWOW64\urlmon.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширения OLE32 для Win32 131795777570630821 0x73ac0000 81920 C:\Windows\SysWOW64\dhcpcsvc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служба DHCP-клиента 131795777570523174 0x73ae0000 40960 C:\Windows\SysWOW64\secur32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Security Support Provider Interface 131795777570582120 0x73f00000 192512 C:\Windows\SysWOW64\IPHLPAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API вспомогательного приложения IP 131795777570646486 0x74190000 110592 C:\Windows\SysWOW64\bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795777570953652 0x741b0000 77824 C:\Windows\SysWOW64\cryptsp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Cryptographic Service Provider API 131795777569213807 0x741f0000 143360 C:\Windows\SysWOW64\winmmbase.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base Multimedia Extension API DLL 131795777568156054 0x74230000 147456 C:\Windows\SysWOW64\winmm.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation MCI API DLL 131795777569481011 0x744d0000 2138112 C:\Windows\WinSxS\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.14393.953_none_89c2555adb023171\comctl32.dll 6.10 (rs1_release_inmarket.170303-1614) Microsoft Corporation Библиотека элементов управления взаимодействия с пользователем 131795777568142933 0x746e0000 32768 C:\Windows\SysWOW64\version.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Version Checking and File Installation Libraries 131795777568179155 0x746f0000 106496 C:\Windows\SysWOW64\userenv.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Userenv 131795777568043561 0x747d0000 40960 C:\Windows\SysWOW64\cryptbase.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base cryptographic API DLL 131795777568042430 0x747e0000 126976 C:\Windows\SysWOW64\sspicli.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Security Support Provider Interface 131795777569239058 0x74800000 151552 C:\Windows\SysWOW64\imm32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Multi-User Windows IMM32 API Client DLL 131795777568075566 0x74830000 917504 C:\Windows\SysWOW64\ucrtbase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795777568073430 0x74910000 2170880 C:\Windows\SysWOW64\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795777568086784 0x74b30000 53248 C:\Windows\SysWOW64\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795777568041126 0x74b60000 790528 C:\Windows\SysWOW64\rpcrt4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795777568081914 0x74c30000 1417216 C:\Windows\SysWOW64\gdi32full.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation GDI Client DLL 131795777568046844 0x74d90000 24576 C:\Windows\SysWOW64\psapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Process Status Helper 131795777568038347 0x74da0000 778240 C:\Windows\SysWOW64\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795777568088134 0x74e60000 557056 C:\Windows\SysWOW64\SHCore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795777569468247 0x74f80000 278528 C:\Windows\SysWOW64\wintrust.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation Microsoft Trust Verification APIs 131795777569466798 0x74fd0000 405504 C:\Windows\SysWOW64\ws2_32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation 32-разрядная библиотека Windows Socket 2.0 131795777568077279 0x75040000 282624 C:\Windows\SysWOW64\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795777569469408 0x751d0000 57344 C:\Windows\SysWOW64\msasn1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ASN.1 Runtime APIs 131795777568024100 0x751e0000 1708032 C:\Windows\SysWOW64\KernelBase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795777568039823 0x75390000 266240 C:\Windows\SysWOW64\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795777569470854 0x753e0000 1560576 C:\Windows\SysWOW64\crypt32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API32 криптографии 131795777568036731 0x75560000 487424 C:\Windows\SysWOW64\advapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795777568054568 0x756c0000 5693440 C:\Windows\SysWOW64\windows.storage.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API хранения Microsoft WinRT 131795777568078714 0x75c90000 286720 C:\Windows\SysWOW64\shlwapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека небольших программ оболочки 131795777568050811 0x75ce0000 20811776 C:\Windows\SysWOW64\shell32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Общая библиотека оболочки Windows 131795777568084892 0x774d0000 86016 C:\Windows\SysWOW64\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795777568089486 0x774f0000 61440 C:\Windows\SysWOW64\profapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Profile Basic API 131795777568083413 0x77560000 1437696 C:\Windows\SysWOW64\user32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795777568044758 0x776c0000 368640 C:\Windows\SysWOW64\bcryptprimitives.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation Windows Cryptographic Primitives Library 131795777569464930 0x77780000 503808 C:\Windows\SysWOW64\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795777569463567 0x77800000 606208 C:\Windows\SysWOW64\oleaut32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795777568116745 0x77ac0000 966656 C:\Windows\SysWOW64\ole32.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft OLE для Windows 131795777568080182 0x77bb0000 176128 C:\Windows\SysWOW64\gdi32.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation GDI Client DLL 131795777569457550 0x77be0000 937984 C:\Windows\SysWOW64\comdlg32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека общих диалоговых окон 131795777568052363 0x77cd0000 221184 C:\Windows\SysWOW64\cfgmgr32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Configuration Manager DLL 131795777570632192 0x77d10000 28672 C:\Windows\SysWOW64\nsi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation NSI User-mode interface DLL 131795777567961904 0x77d20000 1585152 C:\Windows\SysWOW64\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 131795777567961630 0x7ffad0270000 1908736 C:\Windows\System32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 106 5556 7744 57 00000000:0031f1da 131795777595302537 0 0 0 Обязательная метка\Низкий обязательный уровень WIN-0UOTFKKVN1S\User browser.exe C:\Users\User\AppData\Local\Yandex\YandexBrowser\Application\browser.exe "C:\Users\User\AppData\Local\Yandex\YandexBrowser\Application\browser.exe" --type=renderer --enable-in-process-wmf-demuxer --field-trial-handle=1292,9555382311565764851,7120838982649204725,131072 --enable-ignition --disable-gpu-compositing --service-pipe-token=3ADFA2396247AD5E547F61590603D06D --lang=ru --user-id=32B2E0A1-3039-4C67-86BE-75A88EF21B54 --brand-id=yandex --partner-id=7924 --help-url=https://api.browser.yandex.ru/redirect/help/ --user-agent-info --translate-security-origin=https://translate.yandex.net --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --enable-instaserp --device-scale-factor=1 --num-raster-threads=1 --enable-compositor-image-animations --service-request-channel-token=3ADFA2396247AD5E547F61590603D06D --renderer-client-id=121 --mojo-platform-channel-handle=6636 /prefetch:1 YANDEX LLC 18.6.1.770 Yandex 131795777595490187 0x1020000 704512 C:\Windows\System32\kernel32.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795777595475498 0x10e0000 2519040 C:\Users\User\AppData\Local\Yandex\YandexBrowser\Application\browser.exe 18.6.1.770 YANDEX LLC Yandex 131795777595491301 0x5550000 1462272 C:\Windows\System32\user32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795777596381097 0x58720000 59748352 C:\Users\User\AppData\Local\Yandex\YandexBrowser\Application\18.6.1.770\browser_child.dll 18.6.1.770 YANDEX LLC Yandex 131795777595481485 0x5c020000 335872 C:\Windows\System32\wow64.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation Win32 Emulation on NT64 131795777595482474 0x5c080000 487424 C:\Windows\System32\wow64win.dll 10.0.14393.1884 (rs1_release.171101-1233) Microsoft Corporation Wow64 Console and Win32 API Logging 131795777595494304 0x5c100000 40960 C:\Windows\System32\wow64cpu.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation AMD64 Wow64 CPU 131795777597543015 0x6e8b0000 1859584 C:\Windows\SysWOW64\mfmp4srcsnk.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL источника и приемника MPEG4 Media Foundation 131795777597521210 0x6ef30000 647168 C:\Windows\SysWOW64\evr.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека DLL средства отображения видео 131795777597472595 0x6efd0000 458752 C:\Windows\SysWOW64\MSAudDecMFT.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Media Foundation Audio Decoders 131795777597484525 0x6f790000 1085440 C:\Windows\SysWOW64\mfperfhelper.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation MFPerf DLL 131795777597497517 0x6f8a0000 2220032 C:\Windows\SysWOW64\msmpeg2vdec.dll 10.0.14393.953 (rs1_release_inmarket.170303-1614) Microsoft Corporation Microsoft DTV-DVD Video Decoder 131795777597428793 0x6fac0000 1130496 C:\Windows\SysWOW64\mfplat.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Media Foundation Platform DLL 131795777597448444 0x6ff60000 172032 C:\Windows\SysWOW64\RTWorkQ.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL для WorkQueue реального времени 131795777595565558 0x70030000 593920 C:\Users\User\AppData\Local\Yandex\YandexBrowser\Application\18.6.1.770\browser_elf.dll 18.6.1.770 YANDEX LLC Yandex 131795777597103476 0x700d0000 434176 C:\Windows\SysWOW64\winspool.drv 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Драйвер диспетчера очереди Windows 131795777597165296 0x70340000 536576 C:\Windows\SysWOW64\dxgi.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation DirectX Graphics Infrastructure 131795777597153510 0x703d0000 2056192 C:\Windows\SysWOW64\DWrite.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Службы Microsoft DirectX Typography 131795777597221087 0x707d0000 86016 C:\Windows\SysWOW64\samcli.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Security Accounts Manager Client DLL 131795777597072535 0x70a20000 94208 C:\Windows\SysWOW64\usp10.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Uniscribe Unicode script processor 131795777597233493 0x70ca0000 45056 C:\Windows\SysWOW64\netutils.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API Helpers DLL 131795777597059294 0x70fd0000 1331200 C:\Windows\SysWOW64\dbghelp.dll 10.0.14321.1024 (rs1_release.160715-1616) Microsoft Windows Image Helper 131795777596424202 0x71140000 77824 C:\Windows\SysWOW64\netapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API DLL 131795777597205195 0x725e0000 2273280 C:\Windows\SysWOW64\iertutil.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служебная программа времени выполнения для Internet Explorer 131795777596436120 0x728e0000 1372160 C:\Windows\SysWOW64\propsys.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Система страниц свойств (Майкрософт) 131795777596128973 0x72af0000 655360 C:\Windows\SysWOW64\winhttp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Службы HTTP Windows 131795777597128037 0x72cc0000 1658880 C:\Windows\SysWOW64\urlmon.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширения OLE32 для Win32 131795777597177209 0x73ac0000 81920 C:\Windows\SysWOW64\dhcpcsvc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служба DHCP-клиента 131795777597044137 0x73ae0000 40960 C:\Windows\SysWOW64\secur32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Security Support Provider Interface 131795777597116160 0x73f00000 192512 C:\Windows\SysWOW64\IPHLPAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API вспомогательного приложения IP 131795777597192860 0x74190000 110592 C:\Windows\SysWOW64\bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795777597506812 0x741b0000 77824 C:\Windows\SysWOW64\cryptsp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Cryptographic Service Provider API 131795777596148547 0x741f0000 143360 C:\Windows\SysWOW64\winmmbase.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base Multimedia Extension API DLL 131795777595627397 0x74230000 147456 C:\Windows\SysWOW64\winmm.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation MCI API DLL 131795777596410831 0x744d0000 2138112 C:\Windows\WinSxS\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.14393.953_none_89c2555adb023171\comctl32.dll 6.10 (rs1_release_inmarket.170303-1614) Microsoft Corporation Библиотека элементов управления взаимодействия с пользователем 131795777595610560 0x746e0000 32768 C:\Windows\SysWOW64\version.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Version Checking and File Installation Libraries 131795777595638942 0x746f0000 106496 C:\Windows\SysWOW64\userenv.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Userenv 131795777595529014 0x747d0000 40960 C:\Windows\SysWOW64\cryptbase.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base cryptographic API DLL 131795777595527983 0x747e0000 126976 C:\Windows\SysWOW64\sspicli.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Security Support Provider Interface 131795777596182171 0x74800000 151552 C:\Windows\SysWOW64\imm32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Multi-User Windows IMM32 API Client DLL 131795777595541526 0x74830000 917504 C:\Windows\SysWOW64\ucrtbase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795777595540326 0x74910000 2170880 C:\Windows\SysWOW64\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795777595551866 0x74b30000 53248 C:\Windows\SysWOW64\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795777595526606 0x74b60000 790528 C:\Windows\SysWOW64\rpcrt4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795777595547732 0x74c30000 1417216 C:\Windows\SysWOW64\gdi32full.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation GDI Client DLL 131795777595531563 0x74d90000 24576 C:\Windows\SysWOW64\psapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Process Status Helper 131795777595524005 0x74da0000 778240 C:\Windows\SysWOW64\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795777595553384 0x74e60000 557056 C:\Windows\SysWOW64\SHCore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795777596396507 0x74f80000 278528 C:\Windows\SysWOW64\wintrust.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation Microsoft Trust Verification APIs 131795777596394953 0x74fd0000 405504 C:\Windows\SysWOW64\ws2_32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation 32-разрядная библиотека Windows Socket 2.0 131795777595543299 0x75040000 282624 C:\Windows\SysWOW64\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795777596397607 0x751d0000 57344 C:\Windows\SysWOW64\msasn1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ASN.1 Runtime APIs 131795777595508927 0x751e0000 1708032 C:\Windows\SysWOW64\KernelBase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795777595525398 0x75390000 266240 C:\Windows\SysWOW64\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795777596398892 0x753e0000 1560576 C:\Windows\SysWOW64\crypt32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API32 криптографии 131795777595522182 0x75560000 487424 C:\Windows\SysWOW64\advapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795777595538927 0x756c0000 5693440 C:\Windows\SysWOW64\windows.storage.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API хранения Microsoft WinRT 131795777595544568 0x75c90000 286720 C:\Windows\SysWOW64\shlwapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека небольших программ оболочки 131795777595535397 0x75ce0000 20811776 C:\Windows\SysWOW64\shell32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Общая библиотека оболочки Windows 131795777595550455 0x774d0000 86016 C:\Windows\SysWOW64\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795777595554628 0x774f0000 61440 C:\Windows\SysWOW64\profapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Profile Basic API 131795777595549128 0x77560000 1437696 C:\Windows\SysWOW64\user32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795777595530150 0x776c0000 368640 C:\Windows\SysWOW64\bcryptprimitives.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation Windows Cryptographic Primitives Library 131795777596393437 0x77780000 503808 C:\Windows\SysWOW64\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795777596392132 0x77800000 606208 C:\Windows\SysWOW64\oleaut32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795777595583766 0x77ac0000 966656 C:\Windows\SysWOW64\ole32.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft OLE для Windows 131795777595545878 0x77bb0000 176128 C:\Windows\SysWOW64\gdi32.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation GDI Client DLL 131795777596385979 0x77be0000 937984 C:\Windows\SysWOW64\comdlg32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека общих диалоговых окон 131795777595536930 0x77cd0000 221184 C:\Windows\SysWOW64\cfgmgr32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Configuration Manager DLL 131795777597178434 0x77d10000 28672 C:\Windows\SysWOW64\nsi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation NSI User-mode interface DLL 131795777595476066 0x77d20000 1585152 C:\Windows\SysWOW64\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 131795777595475814 0x7ffad0270000 1908736 C:\Windows\System32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 111 9032 664 6 00000000:0031f1da 131795777895284069 0 0 1 Обязательная метка\Средний обязательный уровень WIN-0UOTFKKVN1S\User explorer.exe C:\Windows\explorer.exe C:\Windows\explorer.exe /factory,{75dff2b7-6936-4c06-a8bb-676a7b00b24b} -Embedding Microsoft Corporation 10.0.14393.0 (rs1_release.160715-1616) Проводник 131795777911330291 0x4d80000 593920 C:\Windows\System32\UIRibbonRes.dll 10.0.14393.2189 (rs1_release.180329-1711) Microsoft Corporation Windows Ribbon Framework Resources 131795777920515787 0x6530000 8937472 C:\Program Files\Microsoft Office\Office16\1049\GrooveIntlResource.dll 16.0.4266.1001 Корпорация Майкрософт Модуль международных ресурсов для Microsoft OneDrive для бизнеса 131795777903881315 0x5bbd0000 1101824 C:\Program Files (x86)\360\Total Security\safemon\safemon64.dll 1, 0, 0, 1190 Qihu 360 Software Co., Ltd. 360 Internet Security Internet Protection 131795777903867506 0x5bce0000 28672 C:\Program Files (x86)\360\Total Security\safemon\SafeWrapper.dll 2, 0, 0, 1060 Qihu 360 Software Co., Ltd. 360 Internet Security Internet Protection 131795777895813346 0x7ff6a5b30000 4665344 C:\Windows\explorer.exe 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Проводник 131795777906005639 0x7ffab2720000 606208 C:\Windows\System32\duser.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows DirectUser Engine 131795777922060868 0x7ffab28d0000 802816 C:\Windows\System32\cscui.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Интерфейс кэширования на стороне клиента 131795777918507242 0x7ffab4b90000 655360 C:\Windows\System32\StructuredQuery.dll 7.0.14393.2068 (rs1_release.180209-1727) Microsoft Corporation Structured Query 131795777907532495 0x7ffab5520000 3231744 C:\Windows\System32\msftedit.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Элемент управления "Поле ввода форматированного текста", версия 8.5 131795777910997447 0x7ffab8da0000 1675264 C:\Windows\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.14393.1715_none_aec701fbddd850fa\GdiPlus.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Microsoft GDI+ 131795777915260331 0x7ffab9490000 860160 C:\Windows\System32\ntshrui.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширения оболочки, обеспечивающие общий доступ 131795777910978745 0x7ffab95c0000 4091904 C:\Windows\System32\UIRibbon.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Платформа ленты Windows 131795778008622616 0x7ffabacc0000 1380352 C:\Windows\System32\SharedStartModel.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Shared Start Model InProc Server 131795778007235790 0x7ffabae60000 77824 C:\Windows\System32\devrtl.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Device Management Run Time Library 131795777909146457 0x7ffabaf70000 270336 C:\Windows\System32\edputil.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служебная программа EDP 131795777902950088 0x7ffabb2b0000 1089536 C:\Windows\System32\SettingSyncCore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Setting Synchronization Core 131795778007048279 0x7ffabb430000 65536 C:\Windows\System32\pcacli.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Program Compatibility Assistant Client Module 131795777902932644 0x7ffabb490000 512000 C:\Windows\System32\twinapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation twinapi 131795777909802797 0x7ffabbc40000 643072 C:\Windows\System32\msvcp140.dll 14.10.24516.0 built by: VCTOOLSRELESC Microsoft Corporation Microsoft® C Runtime Library 131795777909791020 0x7ffabbce0000 90112 C:\Windows\System32\vcruntime140.dll 14.10.24516.0 built by: VCTOOLSRELESC Microsoft Corporation Microsoft® C Runtime Library 131795777917395017 0x7ffabc0b0000 65536 C:\Windows\System32\linkinfo.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Volume Tracking 131795777918158137 0x7ffabc880000 73728 C:\Windows\System32\cscapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Offline Files Win32 API 131795777966565943 0x7ffabcf30000 110592 C:\Windows\System32\mpr.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека маршрутизации для нескольких служб доступа 131795777908125051 0x7ffabd4a0000 1613824 C:\Windows\System32\Windows.Globalization.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Globalization 131795777905900322 0x7ffabdbb0000 1736704 C:\Windows\System32\dui70.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Подсистема DirectUI Windows 131795777908270107 0x7ffabe9c0000 188416 C:\Windows\System32\globinputhost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Globalization Extension API for Input 131795777922014669 0x7ffabebf0000 1208320 C:\Windows\System32\networkexplorer.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Сетевой проводник 131795778007216762 0x7ffabef80000 69632 C:\Windows\System32\sfc_os.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows File Protection 131795777919764442 0x7ffabf5d0000 2924544 C:\Windows\System32\wininet.dll 11.00.14393.447 (rs1_release_inmarket.161102-0100) Microsoft Corporation Расширения Интернета для Win32 131795777915281766 0x7ffabff10000 155648 C:\Windows\System32\srvcli.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Server Service Client DLL 131795777909775471 0x7ffac0250000 2179072 C:\Program Files\Microsoft Office\Office16\GROOVEEX.DLL 16.0.4266.1001 Microsoft Corporation Microsoft OneDrive for Business Extensions 131795777910387599 0x7ffac0610000 3088384 C:\Windows\System32\msi.dll 5.0.14393.2155 Microsoft Corporation Windows Installer 131795777905243222 0x7ffac0bf0000 3559424 C:\Windows\System32\actxprxy.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation ActiveX Interface Marshaling Library 131795777919412503 0x7ffac1710000 1642496 C:\Users\User\AppData\Local\Microsoft\OneDrive\18.131.0701.0007\amd64\FileSyncShell64.dll 18.131.0701.0007 Microsoft Corporation Microsoft OneDrive Shell Extension 131795777904716802 0x7ffac18b0000 270336 C:\Program Files (x86)\360\Total Security\safemon\safehmpg64.dll 1, 0, 0, 1140 Qihu 360 Software Co., Ltd. 360 Internet Security Browser HomePage Protection 131795777944562485 0x7ffac23c0000 331776 C:\Windows\System32\OneCoreCommonProxyStub.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation OneCore Common Proxy Stub 131795777903915791 0x7ffac2700000 98304 C:\Windows\System32\netapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API DLL 131795777922001525 0x7ffac2960000 143360 C:\Windows\System32\mssprxy.dll 7.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation Microsoft Search Proxy 131795777903903305 0x7ffac2b80000 40960 C:\Windows\System32\version.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Version Checking and File Installation Libraries 131795777909321798 0x7ffac34e0000 1843200 C:\Windows\System32\urlmon.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширения OLE32 для Win32 131795777909330655 0x7ffac3cb0000 2772992 C:\Windows\System32\iertutil.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служебная программа времени выполнения для Internet Explorer 131795777906462233 0x7ffac4000000 274432 C:\Windows\System32\policymanager.dll 10.0.14393.2035 (rs1_release_inmarket.180110-1910) Microsoft Corporation Policy Manager DLL 131795777910949757 0x7ffac4ea0000 36864 C:\Windows\System32\atlthunk.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation atlthunk.dll 131795777920555307 0x7ffac4f90000 221184 C:\Windows\System32\EhStorShell.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL расширения оболочки Windows Enhanced Storage 131795777906356495 0x7ffac5630000 339968 C:\Windows\System32\thumbcache.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Кэш эскизов Майкрософт 131795777905097743 0x7ffac5690000 4734976 C:\Windows\System32\ExplorerFrame.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ExplorerFrame 131795777908567233 0x7ffac5bb0000 622592 C:\Program Files\Common Files\microsoft shared\ink\tiptsf.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Инфраструктура текстовых служб сенсорной клавиатуры и панели рукописного ввода 131795777911007559 0x7ffac60e0000 221184 C:\Windows\System32\xmllite.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft XmlLite Library 131795777914831974 0x7ffac6bd0000 413696 C:\Windows\System32\oleacc.dll 7.2.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Active Accessibility Core Component 131795777905390625 0x7ffac6c40000 2596864 C:\Windows\WinSxS\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.14393.953_none_42151e83c686086b\comctl32.dll 6.10 (rs1_release_inmarket.170303-1614) Microsoft Corporation Библиотека элементов управления взаимодействия с пользователем 131795777902894862 0x7ffac7580000 1077248 C:\Windows\System32\MrmCoreR.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Windows MRM 131795777906986296 0x7ffac84f0000 299008 C:\Windows\System32\DataExchange.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation Data exchange 131795777906995835 0x7ffac88a0000 2842624 C:\Windows\System32\d3d11.dll 10.0.14393.953 (rs1_release_inmarket.170303-1614) Microsoft Corporation Direct3D 11 Runtime 131795777903975733 0x7ffac90b0000 90112 C:\Windows\System32\wkscli.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Workstation Service Client DLL 131795777906257948 0x7ffac9f50000 1736704 C:\Windows\System32\WindowsCodecs.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Microsoft Windows Codecs Library 131795777919424461 0x7ffaca170000 45056 C:\Windows\System32\ktmw32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows KTM Win32 Client DLL 131795777902880674 0x7ffaca340000 1593344 C:\Windows\System32\propsys.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Система страниц свойств (Майкрософт) 131795777908138610 0x7ffaca570000 421888 C:\Windows\System32\BCP47Langs.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation BCP47 Language Classes 131795777902921260 0x7ffaca5e0000 155648 C:\Windows\System32\dwmapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Интерфейс API диспетчера окон рабочего стола (Майкрософт) 131795778008641775 0x7ffaca640000 770048 C:\Windows\System32\CoreMessaging.dll 10.0.14393.0 Microsoft Corporation Microsoft CoreMessaging Dll 131795777907005063 0x7ffaca770000 1380352 C:\Windows\System32\dcomp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft DirectComposition Library 131795777918659102 0x7ffacab40000 176128 C:\Windows\System32\winmmbase.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base Multimedia Extension API DLL 131795777918649579 0x7ffacaba0000 143360 C:\Windows\System32\winmm.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation MCI API DLL 131795777909306748 0x7ffacadf0000 499712 C:\Windows\System32\apphelp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиентская библиотека совместимости приложений 131795777902905939 0x7ffacaf00000 610304 C:\Windows\System32\uxtheme.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека тем UxTheme (Microsoft) 131795777906474194 0x7ffacb140000 593920 C:\Windows\System32\msvcp110_win.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Microsoft® STL110 C++ Runtime Library 131795777902941219 0x7ffacb1e0000 1163264 C:\Windows\System32\twinapi.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation twinapi.appcore 131795778008632518 0x7ffacb300000 364544 C:\Windows\System32\VEEventDispatcher.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Visual Element Event dispatcher 131795777918171528 0x7ffacb420000 204800 C:\Windows\System32\ntmarta.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик Windows NT MARTA 131795777907014508 0x7ffacb780000 651264 C:\Windows\System32\dxgi.dll 10.0.14393.953 (rs1_release_inmarket.170303-1614) Microsoft Corporation DirectX Graphics Infrastructure 131795777903933947 0x7ffacbe20000 53248 C:\Windows\System32\netutils.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API Helpers DLL 131795777902985171 0x7ffacbe40000 126976 C:\Windows\System32\userenv.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Userenv 131795777903008375 0x7ffacc150000 94208 C:\Windows\System32\cryptsp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Cryptographic Service Provider API 131795777902974089 0x7ffacc350000 180224 C:\Windows\System32\sspicli.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Security Support Provider Interface 131795777905657867 0x7ffacc520000 622592 C:\Windows\System32\sxs.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Fusion 2.5 131795777902999880 0x7ffacc620000 176128 C:\Windows\System32\bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795777902852334 0x7ffacc6e0000 61440 C:\Windows\System32\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795777902849489 0x7ffacc6f0000 311296 C:\Windows\System32\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795777902853126 0x7ffacc740000 81920 C:\Windows\System32\profapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Profile Basic API 131795777902855116 0x7ffacc760000 65536 C:\Windows\System32\msasn1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ASN.1 Runtime APIs 131795777902843222 0x7ffacc770000 1572864 C:\Windows\System32\gdi32full.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation GDI Client DLL 131795777902836309 0x7ffacc8f0000 1003520 C:\Windows\System32\ucrtbase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795777902838974 0x7ffacc9f0000 434176 C:\Windows\System32\bcryptprimitives.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Cryptographic Primitives Library 131795777902841617 0x7ffacca60000 122880 C:\Windows\System32\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795777902844144 0x7ffaccae0000 692224 C:\Windows\System32\SHCore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795777902848566 0x7ffaccb90000 7180288 C:\Windows\System32\windows.storage.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API хранения Microsoft WinRT 131795777902824318 0x7ffacd270000 2215936 C:\Windows\System32\KernelBase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795777902854301 0x7ffacd490000 1871872 C:\Windows\System32\crypt32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API32 криптографии 131795777902835470 0x7ffacd710000 638976 C:\Windows\System32\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795777902847555 0x7ffacd7b0000 270336 C:\Windows\System32\cfgmgr32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Configuration Manager DLL 131795777902846521 0x7ffacd810000 22056960 C:\Windows\System32\shell32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Общая библиотека оболочки Windows 131795777902834719 0x7ffaced20000 782336 C:\Windows\System32\oleaut32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795777916996283 0x7ffacede0000 450560 C:\Windows\System32\coml2.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft COM for Windows 131795777902838016 0x7ffacee50000 1183744 C:\Windows\System32\rpcrt4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795777902833378 0x7ffacef90000 647168 C:\Windows\System32\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795777904879129 0x7ffacf030000 651264 C:\Windows\System32\clbcatq.dll 2001.12.10941.16384 (rs1_release.160715-1616) Microsoft Corporation COM+ Configuration Catalog 131795777902823359 0x7ffacf0d0000 704512 C:\Windows\System32\kernel32.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795777905449820 0x7ffacf1e0000 1417216 C:\Windows\System32\msctf.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Серверная библиотека MSCTF 131795777920556415 0x7ffacf340000 4362240 C:\Windows\System32\setupapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Setup API 131795777902842396 0x7ffacf770000 212992 C:\Windows\System32\gdi32.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation GDI Client DLL 131795777903888252 0x7ffacf820000 434176 C:\Windows\System32\ws2_32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation 32-разрядная библиотека Windows Socket 2.0 131795777903413262 0x7ffacf890000 188416 C:\Windows\System32\imm32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Multi-User Windows IMM32 API Client DLL 131795777902840664 0x7ffacf8c0000 1462272 C:\Windows\System32\user32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795777902837229 0x7ffacfb30000 2916352 C:\Windows\System32\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795777903887407 0x7ffacfe00000 114688 C:\Windows\System32\imagehlp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT Image Helper 131795777902850328 0x7ffacfe20000 663552 C:\Windows\System32\advapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795777903886124 0x7ffad0070000 1277952 C:\Windows\System32\ole32.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft OLE для Windows 131795777902845086 0x7ffad01b0000 335872 C:\Windows\System32\shlwapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека небольших программ оболочки 131795777902851375 0x7ffad0210000 364544 C:\Windows\System32\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795777895813598 0x7ffad0270000 1908736 C:\Windows\System32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 144 12892 3108 11 00000000:0031f1da 131795780695167004 0 0 1 Обязательная метка\Средний обязательный уровень WIN-0UOTFKKVN1S\User Wireshark.exe C:\Program Files\Wireshark\Wireshark.exe "C:\Program Files\Wireshark\Wireshark.exe" The Wireshark developer community, http://www.wireshark.org/ 2.6.2 Wireshark 131795780706141890 0xbd0000 90112 C:\Program Files\Wireshark\libwinpthread-1.dll 1, 0, 0, 0 MingW-W64 Project. All rights reserved. POSIX WinThreads for Windows 131795780721765742 0xbf0000 53248 C:\Program Files\Wireshark\k5sprt64.dll 1.6-kfw-3.2.2 Massachusetts Institute of Technology. Kerberos v5 support - internal support code for MIT Kerberos v5 /GSS distribution 131795780722106261 0xc00000 45056 C:\Program Files\Wireshark\comerr64.dll 1.6-kfw-3.2.2 Massachusetts Institute of Technology. COM_ERR - Common Error Handler for MIT Kerberos v5 / GSS distribution 131795780719731475 0x1c000000 1089536 C:\Program Files\Wireshark\krb5_64.dll 1.6-kfw-3.2.2 Massachusetts Institute of Technology. Kerberos v5 - MIT GSS / Kerberos v5 distribution 131795780773060331 0x5af30000 348160 C:\Program Files\Wireshark\Qt5Svg.dll 5.9.5.0 The Qt Company Ltd. C++ Application Development Framework 131795780721210805 0x5af90000 1286144 C:\Program Files\Wireshark\libxml2-2.dll 131795780696840198 0x5b0d0000 5865472 C:\Program Files\Wireshark\Qt5Core.dll 5.9.5.0 The Qt Company Ltd. C++ Application Development Framework 131795780696801039 0x5b670000 5619712 C:\Program Files\Wireshark\Qt5Widgets.dll 5.9.5.0 The Qt Company Ltd. C++ Application Development Framework 131795780721068755 0x5bcf0000 733184 C:\Program Files\Wireshark\libsmi-2.dll 131795780720701584 0x5bdb0000 204800 C:\Program Files\Wireshark\liblz4.dll 131795780720048995 0x5bdf0000 110592 C:\Program Files\Wireshark\libcares-2.dll 131795780701085625 0x5be10000 122880 C:\Program Files\Wireshark\libbcg729.dll 131795780700086118 0x5be30000 1261568 C:\Program Files\Wireshark\Qt5Network.dll 5.9.5.0 The Qt Company Ltd. C++ Application Development Framework 131795780701499544 0x61cc0000 151552 C:\Program Files\Wireshark\libintl-8.dll 0.18.1 Free Software Foundation LGPLed libintl for Windows NT/2000/XP/Vista/7 and Windows 95/98/ME 131795780704834900 0x646c0000 155648 C:\Program Files\Wireshark\libgpg-error6-0.dll 131795780703191110 0x64840000 1220608 C:\Program Files\Wireshark\libgnutls-30.dll 131795780720700188 0x64a00000 253952 C:\Program Files\Wireshark\lua52.dll 131795780702785552 0x653c0000 1089536 C:\Program Files\Wireshark\libgcrypt-20.dll 131795780706408972 0x65f00000 114688 C:\Program Files\Wireshark\libtasn1-6.dll 131795780705520711 0x66f00000 233472 C:\Program Files\Wireshark\libhogweed-4-2.dll 131795780696518462 0x685c0000 1265664 C:\Program Files\Wireshark\libglib-2.0-0.dll 2.42.0.0 The GLib developer community GLib 131795780706610973 0x68ec0000 389120 C:\Program Files\Wireshark\libp11-kit-0.dll 131795780720967901 0x69340000 815104 C:\Program Files\Wireshark\libsnappy-1.dll 131795780705423287 0x69c80000 253952 C:\Program Files\Wireshark\libnettle-6-2.dll 131795780700701891 0x6a680000 122880 C:\Program Files\Wireshark\libsbc-1.dll 131795780705248323 0x6acc0000 483328 C:\Program Files\Wireshark\libgmp-10.dll 131795780707311684 0x6b740000 73728 C:\Program Files\Wireshark\libffi-6.dll 131795780700957949 0x6d7c0000 495616 C:\Program Files\Wireshark\libspandsp-2.dll 131795780720746780 0x6dc80000 167936 C:\Program Files\Wireshark\libnghttp2-14.dll 131795780698864675 0x6dd00000 69632 C:\Program Files\Wireshark\libgmodule-2.0-0.dll 2.42.0.0 The GLib developer community GModule 131795780759720376 0x180000000 413696 C:\Windows\System32\wpcap.dll 4.1.0.2980 Riverbed Technology, Inc. wpcap.dll Dynamic Link Library - based on libpcap 1.0rel0b branch (20091008) 131795780760417804 0x190ac770000 126976 C:\Windows\System32\Packet.dll 4.1.0.2980 Riverbed Technology, Inc. packet.dll (Vista) Dynamic Link Library 131795780695991379 0x7ff7f1130000 8298496 C:\Program Files\Wireshark\Wireshark.exe 2.6.2 The Wireshark developer community, http://www.wireshark.org/ Wireshark 131795780718751145 0x7ffaa6f50000 64282624 C:\Program Files\Wireshark\libwireshark.dll 2.6.2 The Wireshark developer community, http://www.wireshark.org/ Wireshark dissector library 131795780697272337 0x7ffaaaca0000 6094848 C:\Program Files\Wireshark\Qt5Gui.dll 5.9.5.0 The Qt Company Ltd. C++ Application Development Framework 131795780896758694 0x7ffab1e90000 593920 C:\Program Files\Wireshark\plugins\2.6\epan\wimax.dll 1.2.0.0 The Wireshark developer community, http://www.wireshark.org/ wimax dissector 131795780766458881 0x7ffab1f30000 614400 C:\Windows\System32\riched20.dll 5.31.23.1231 Microsoft Corporation Rich Text Edit Control, v3.1 131795780699399720 0x7ffab2280000 1916928 C:\Program Files\Wireshark\WinSparkle.dll 0.5.7 winsparkle.org WinSparkle updater 131795780771263589 0x7ffab5b40000 2527232 C:\Windows\System32\DWrite.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Службы Microsoft DirectX Typography 131795780765326722 0x7ffab9010000 1388544 C:\Program Files\Wireshark\platforms\qwindows.dll 5.9.5.0 The Qt Company Ltd. C++ Application Development Framework 131795780896746168 0x7ffab9b10000 135168 C:\Program Files\Wireshark\plugins\2.6\epan\unistim.dll 0.0.2.0 The Wireshark developer community, http://www.wireshark.org/ unistim dissector 131795780896708383 0x7ffabaef0000 462848 C:\Program Files\Wireshark\plugins\2.6\epan\profinet.dll 0.2.4.0 The Wireshark developer community, http://www.wireshark.org/ profinet dissector 131795780773615377 0x7ffabb070000 512000 C:\Program Files\Wireshark\imageformats\qwebp.dll 5.9.5.0 The Qt Company Ltd. C++ Application Development Framework 131795780702318544 0x7ffabb0f0000 696320 C:\Windows\System32\msvcp140.dll 14.12.25810.0 built by: VCTOOLSREL Microsoft Corporation Microsoft® C Runtime Library 131795780773096445 0x7ffabb250000 393216 C:\Program Files\Wireshark\imageformats\qtiff.dll 5.9.5.0 The Qt Company Ltd. C++ Application Development Framework 131795780896696149 0x7ffabc110000 237568 C:\Program Files\Wireshark\plugins\2.6\epan\opcua.dll 1.0.0.0 The Wireshark developer community, http://www.wireshark.org/ opcua dissector 131795780696290907 0x7ffabc150000 729088 C:\Program Files\Wireshark\Qt5Multimedia.dll 5.9.5.0 The Qt Company Ltd. C++ Application Development Framework 131795780699299849 0x7ffabcbb0000 704512 C:\Program Files\Wireshark\libwiretap.dll 2.6.2 The Wireshark developer community, http://www.wireshark.org/ Wireshark capture file library 131795780702235327 0x7ffabcf30000 110592 C:\Windows\System32\mpr.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека маршрутизации для нескольких служб доступа 131795780699512168 0x7ffabd180000 548864 C:\Windows\System32\winspool.drv 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Драйвер диспетчера очереди Windows 131795780773039075 0x7ffabe940000 253952 C:\Program Files\Wireshark\imageformats\qjpeg.dll 5.9.5.0 The Qt Company Ltd. C++ Application Development Framework 131795780896684027 0x7ffabeb80000 163840 C:\Program Files\Wireshark\plugins\2.6\epan\mate.dll 1.0.1.0 The Wireshark developer community, http://www.wireshark.org/ mate dissector 131795780767100288 0x7ffabebb0000 233472 C:\Windows\System32\msls31.dll 3.10.349.0 Microsoft Corporation Microsoft Line Services library file 131795780967804060 0x7ffabf1d0000 192512 C:\Windows\System32\cryptnet.dll 10.0.14393.2035 (rs1_release_inmarket.180110-1910) Microsoft Corporation Crypto Network Related API 131795780703722010 0x7ffabf5d0000 2924544 C:\Windows\System32\wininet.dll 11.00.14393.447 (rs1_release_inmarket.161102-0100) Microsoft Corporation Расширения Интернета для Win32 131795780896660120 0x7ffabf990000 135168 C:\Program Files\Wireshark\plugins\2.6\epan\gryphon.dll 0.0.4.0 The Wireshark developer community, http://www.wireshark.org/ gryphon dissector 131795781117544658 0x7ffabfd60000 90112 C:\Windows\System32\NapiNSP.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик оболочки совместимости для имен электронной почты 131795781117680972 0x7ffabfef0000 106496 C:\Windows\System32\pnrpnsp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик пространства имен PNRP 131795780896781202 0x7ffabff40000 90112 C:\Program Files\Wireshark\plugins\2.6\epan\wimaxmacphy.dll 0.0.1.0 The Wireshark developer community, http://www.wireshark.org/ wimaxmacphy dissector 131795780975772674 0x7ffabff60000 135168 C:\Windows\System32\ncryptsslp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft SChannel Provider 131795781117813782 0x7ffac0ab0000 57344 C:\Windows\System32\winrnr.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation LDAP RnR Provider DLL 131795780967709675 0x7ffac0ad0000 86016 C:\Windows\System32\mskeyprotect.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик защиты ключей (Майкрософт) 131795780896602379 0x7ffac0b10000 180224 C:\Program Files\Wireshark\plugins\2.6\epan\ethercat.dll 0.1.0.0 The Wireshark developer community, http://www.wireshark.org/ ethercat dissector 131795780696305369 0x7ffac12f0000 585728 C:\Program Files\Wireshark\Qt5WinExtras.dll 5.9.5.0 The Qt Company Ltd. C++ Application Development Framework 131795780696268510 0x7ffac1380000 335872 C:\Program Files\Wireshark\Qt5PrintSupport.dll 5.9.5.0 The Qt Company Ltd. C++ Application Development Framework 131795780896769846 0x7ffac1640000 81920 C:\Program Files\Wireshark\plugins\2.6\epan\wimaxasncp.dll 0.0.1.0 The Wireshark developer community, http://www.wireshark.org/ wimaxasncp dissector 131795780703633136 0x7ffac1c90000 155648 C:\Program Files\Wireshark\zlib1.dll 1.2.11 zlib data compression library 131795780968289847 0x7ffac1d60000 589824 C:\Windows\System32\webio.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API протоколов передачи по Веб 131795780896672499 0x7ffac21f0000 73728 C:\Program Files\Wireshark\plugins\2.6\epan\irda.dll 0.0.6.0 The Wireshark developer community, http://www.wireshark.org/ irda dissector 131795780943468609 0x7ffac2950000 32768 C:\Program Files\Wireshark\plugins\2.6\codecs\l16mono.dll 0.1.0.0 The Wireshark developer community, http://www.wireshark.org/ l16mono dissector 131795780696778265 0x7ffac2b80000 40960 C:\Windows\System32\version.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Version Checking and File Installation Libraries 131795780698025500 0x7ffac32b0000 155648 C:\Program Files\Wireshark\libwsutil.dll 2.6.2 The Wireshark developer community, http://www.wireshark.org/ Wireshark utility library 131795780964290332 0x7ffac34e0000 1843200 C:\Windows\System32\urlmon.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширения OLE32 для Win32 131795780896734845 0x7ffac3730000 49152 C:\Program Files\Wireshark\plugins\2.6\epan\transum.dll 2.0.4.0 The Wireshark developer community, http://www.wireshark.org/ transum dissector 131795780962958391 0x7ffac3cb0000 2772992 C:\Windows\System32\iertutil.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служебная программа времени выполнения для Internet Explorer 131795780891504201 0x7ffac4000000 274432 C:\Windows\System32\policymanager.dll 10.0.14393.2035 (rs1_release_inmarket.180110-1910) Microsoft Corporation Policy Manager DLL 131795780896719593 0x7ffac4b60000 36864 C:\Program Files\Wireshark\plugins\2.6\epan\stats_tree.dll 0.0.1.0 The Wireshark developer community, http://www.wireshark.org/ stats_tree dissector 131795780893701095 0x7ffac4c50000 36864 C:\Program Files\Wireshark\plugins\2.6\wiretap\usbdump.dll 0.0.1.0 The Wireshark developer community, http://www.wireshark.org/ usbdump dissector 131795780891269455 0x7ffac5630000 339968 C:\Windows\System32\thumbcache.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Кэш эскизов Майкрософт 131795780965552062 0x7ffac6610000 40960 C:\Windows\System32\rasadhlp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Remote Access AutoDial Helper 131795780963571749 0x7ffac66a0000 86016 C:\Windows\System32\OnDemandConnRouteHelper.dll 10.0.14393.351 (rs1_release_inmarket.161014-1755) Microsoft Corporation On Demand Connctiond Route Helper 131795780963646684 0x7ffac69c0000 839680 C:\Windows\System32\winhttp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Службы HTTP Windows 131795780773109195 0x7ffac6aa0000 49152 C:\Program Files\Wireshark\imageformats\qwbmp.dll 5.9.5.0 The Qt Company Ltd. C++ Application Development Framework 131795780773083338 0x7ffac6ab0000 49152 C:\Program Files\Wireshark\imageformats\qtga.dll 5.9.5.0 The Qt Company Ltd. C++ Application Development Framework 131795780700311672 0x7ffac6c40000 2596864 C:\Windows\WinSxS\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.14393.953_none_42151e83c686086b\comctl32.dll 6.10 (rs1_release_inmarket.170303-1614) Microsoft Corporation Библиотека элементов управления взаимодействия с пользователем 131795780700270884 0x7ffac76e0000 90112 C:\Windows\System32\vcruntime140.dll 14.12.25810.0 built by: VCTOOLSREL Microsoft Corporation Microsoft® C Runtime Library 131795780773051219 0x7ffac7710000 49152 C:\Program Files\Wireshark\imageformats\qsvg.dll 5.9.5.0 The Qt Company Ltd. C++ Application Development Framework 131795780773027062 0x7ffac7c70000 53248 C:\Program Files\Wireshark\imageformats\qico.dll 5.9.5.0 The Qt Company Ltd. C++ Application Development Framework 131795780773014999 0x7ffac7cc0000 61440 C:\Program Files\Wireshark\imageformats\qicns.dll 5.9.5.0 The Qt Company Ltd. C++ Application Development Framework 131795780773002354 0x7ffac7e80000 53248 C:\Program Files\Wireshark\imageformats\qgif.dll 5.9.5.0 The Qt Company Ltd. C++ Application Development Framework 131795780968266724 0x7ffac83d0000 106496 C:\Windows\System32\dhcpcsvc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служба DHCP-клиента 131795780968255503 0x7ffac83f0000 90112 C:\Windows\System32\dhcpcsvc6.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиент DHCPv6 131795780966275544 0x7ffac8420000 434176 C:\Windows\System32\FWPUCLNT.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API пользовательского режима FWP/IPsec 131795780892525330 0x7ffac84f0000 299008 C:\Windows\System32\DataExchange.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation Data exchange 131795780963686201 0x7ffac8810000 45056 C:\Windows\System32\winnsi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Network Store Information RPC interface 131795780892534590 0x7ffac88a0000 2842624 C:\Windows\System32\d3d11.dll 10.0.14393.953 (rs1_release_inmarket.170303-1614) Microsoft Corporation Direct3D 11 Runtime 131795781117718740 0x7ffac9790000 98304 C:\Windows\System32\nlaapi.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Network Location Awareness 2 131795780698877286 0x7ffac97e0000 36864 C:\Windows\System32\wsock32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Socket 32-Bit DLL 131795780891204535 0x7ffac9f50000 1736704 C:\Windows\System32\WindowsCodecs.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Microsoft Windows Codecs Library 131795780696645603 0x7ffaca540000 53248 C:\Program Files\Wireshark\libwscodecs.dll 2.6.2 The Wireshark developer community, http://www.wireshark.org/ Wireshark codecs library 131795780700298298 0x7ffaca5e0000 155648 C:\Windows\System32\dwmapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Интерфейс API диспетчера окон рабочего стола (Майкрософт) 131795780892543743 0x7ffaca770000 1380352 C:\Windows\System32\dcomp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft DirectComposition Library 131795780766486586 0x7ffacab20000 102400 C:\Windows\System32\usp10.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Uniscribe Unicode script processor 131795780704258643 0x7ffacab40000 176128 C:\Windows\System32\winmmbase.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base Multimedia Extension API DLL 131795780702045466 0x7ffacaba0000 143360 C:\Windows\System32\winmm.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation MCI API DLL 131795780946467813 0x7ffacadf0000 499712 C:\Windows\System32\apphelp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиентская библиотека совместимости приложений 131795780696789076 0x7ffacaf00000 610304 C:\Windows\System32\uxtheme.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека тем UxTheme (Microsoft) 131795780891516231 0x7ffacb140000 593920 C:\Windows\System32\msvcp110_win.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Microsoft® STL110 C++ Runtime Library 131795780892568770 0x7ffacb1e0000 1163264 C:\Windows\System32\twinapi.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation twinapi.appcore 131795780892552823 0x7ffacb780000 651264 C:\Windows\System32\dxgi.dll 10.0.14393.953 (rs1_release_inmarket.170303-1614) Microsoft Corporation DirectX Graphics Infrastructure 131795780966945740 0x7ffacbaf0000 495616 C:\Windows\System32\schannel.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик безопасности TLS/SSL 131795780735395573 0x7ffacbbb0000 208896 C:\Windows\System32\rsaenh.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Enhanced Cryptographic Provider 131795780967734879 0x7ffacbbf0000 40960 C:\Windows\System32\dpapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Data Protection API 131795780699490686 0x7ffacbd30000 229376 C:\Windows\System32\IPHLPAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API вспомогательного приложения IP 131795780703368899 0x7ffacbd70000 659456 C:\Windows\System32\dnsapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Динамическая библиотека API DNS-клиента 131795780963669913 0x7ffacbfb0000 376832 C:\Windows\System32\mswsock.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширение поставщика службы API Microsoft Windows Sockets 2.0 131795780735383654 0x7ffacc150000 94208 C:\Windows\System32\cryptsp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Cryptographic Service Provider API 131795780725077080 0x7ffacc170000 45056 C:\Windows\System32\cryptbase.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base cryptographic API DLL 131795780735352973 0x7ffacc1f0000 241664 C:\Windows\System32\ntasn1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft ASN.1 API 131795780735341669 0x7ffacc230000 155648 C:\Windows\System32\ncrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Маршрутизатор Windows NCrypt 131795780963187802 0x7ffacc350000 180224 C:\Windows\System32\sspicli.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Security Support Provider Interface 131795780703358385 0x7ffacc620000 176128 C:\Windows\System32\bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795780696324267 0x7ffacc6e0000 61440 C:\Windows\System32\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795780696320774 0x7ffacc6f0000 311296 C:\Windows\System32\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795780696326027 0x7ffacc740000 81920 C:\Windows\System32\profapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Profile Basic API 131795780700094061 0x7ffacc760000 65536 C:\Windows\System32\msasn1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ASN.1 Runtime APIs 131795780696281753 0x7ffacc8f0000 1003520 C:\Windows\System32\ucrtbase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795780696314418 0x7ffacc9f0000 434176 C:\Windows\System32\bcryptprimitives.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Cryptographic Primitives Library 131795780696011047 0x7ffacca60000 122880 C:\Windows\System32\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795780967736295 0x7ffacca80000 348160 C:\Windows\System32\wintrust.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation Microsoft Trust Verification APIs 131795780696325096 0x7ffaccae0000 692224 C:\Windows\System32\SHCore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795780696319762 0x7ffaccb90000 7180288 C:\Windows\System32\windows.storage.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API хранения Microsoft WinRT 131795780696000095 0x7ffacd270000 2215936 C:\Windows\System32\KernelBase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795780700093105 0x7ffacd490000 1871872 C:\Windows\System32\crypt32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API32 криптографии 131795780700405929 0x7ffacd710000 638976 C:\Windows\System32\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795780696318427 0x7ffacd7b0000 270336 C:\Windows\System32\cfgmgr32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Configuration Manager DLL 131795780719380090 0x7ffacd800000 32768 C:\Windows\System32\psapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Process Status Helper 131795780696316518 0x7ffacd810000 22056960 C:\Windows\System32\shell32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Общая библиотека оболочки Windows 131795780700405056 0x7ffaced20000 782336 C:\Windows\System32\oleaut32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795780696313332 0x7ffacee50000 1183744 C:\Windows\System32\rpcrt4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795780703813608 0x7ffacef80000 32768 C:\Windows\System32\nsi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation NSI User-mode interface DLL 131795780696317482 0x7ffacef90000 647168 C:\Windows\System32\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795780891250440 0x7ffacf030000 651264 C:\Windows\System32\clbcatq.dll 2001.12.10941.16384 (rs1_release.160715-1616) Microsoft Corporation COM+ Configuration Catalog 131795780695999112 0x7ffacf0d0000 704512 C:\Windows\System32\kernel32.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795780892432004 0x7ffacf1e0000 1417216 C:\Windows\System32\msctf.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Серверная библиотека MSCTF 131795780696011842 0x7ffacf770000 212992 C:\Windows\System32\gdi32.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation GDI Client DLL 131795780696829366 0x7ffacf820000 434176 C:\Windows\System32\ws2_32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation 32-разрядная библиотека Windows Socket 2.0 131795780722304611 0x7ffacf890000 188416 C:\Windows\System32\imm32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Multi-User Windows IMM32 API Client DLL 131795780696010125 0x7ffacf8c0000 1462272 C:\Windows\System32\user32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795780696013618 0x7ffacfa30000 1024000 C:\Windows\System32\comdlg32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека общих диалоговых окон 131795780696312465 0x7ffacfb30000 2916352 C:\Windows\System32\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795780696321680 0x7ffacfe20000 663552 C:\Windows\System32\advapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795780696311589 0x7ffad0070000 1277952 C:\Windows\System32\ole32.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft OLE для Windows 131795780696323259 0x7ffad01b0000 335872 C:\Windows\System32\shlwapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека небольших программ оболочки 131795780696315318 0x7ffad0210000 364544 C:\Windows\System32\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795780695991736 0x7ffad0270000 1908736 C:\Windows\System32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 154 10368 12892 144 00000000:0031f1da 131795781110701520 0 0 1 Обязательная метка\Средний обязательный уровень WIN-0UOTFKKVN1S\User dumpcap.exe C:\Program Files\Wireshark\dumpcap.exe "C:\Program Files\Wireshark\dumpcap.exe" -n -i \Device\NPF_{8742EB38-E176-4D94-AB83-DB4440CD90E6} -y EN10MB -Z 12892 The Wireshark developer community 2.6.2 Dumpcap 131795781112729961 0xe30000 90112 C:\Program Files\Wireshark\libwinpthread-1.dll 1, 0, 0, 0 MingW-W64 Project. All rights reserved. POSIX WinThreads for Windows 131795781112668516 0x61cc0000 151552 C:\Program Files\Wireshark\libintl-8.dll 0.18.1 Free Software Foundation LGPLed libintl for Windows NT/2000/XP/Vista/7 and Windows 95/98/ME 131795781112689838 0x646c0000 155648 C:\Program Files\Wireshark\libgpg-error6-0.dll 131795781112636826 0x64840000 1220608 C:\Program Files\Wireshark\libgnutls-30.dll 131795781112629190 0x653c0000 1089536 C:\Program Files\Wireshark\libgcrypt-20.dll 131795781112737406 0x65f00000 114688 C:\Program Files\Wireshark\libtasn1-6.dll 131795781112705672 0x66f00000 233472 C:\Program Files\Wireshark\libhogweed-4-2.dll 131795781112573973 0x685c0000 1265664 C:\Program Files\Wireshark\libglib-2.0-0.dll 2.42.0.0 The GLib developer community GLib 131795781112722622 0x68ec0000 389120 C:\Program Files\Wireshark\libp11-kit-0.dll 131795781112715396 0x69c80000 253952 C:\Program Files\Wireshark\libnettle-6-2.dll 131795781112698255 0x6acc0000 483328 C:\Program Files\Wireshark\libgmp-10.dll 131795781112775160 0x6b740000 73728 C:\Program Files\Wireshark\libffi-6.dll 131795781112582576 0x6dd00000 69632 C:\Program Files\Wireshark\libgmodule-2.0-0.dll 2.42.0.0 The GLib developer community GModule 131795781112962306 0x180000000 413696 C:\Windows\System32\wpcap.dll 4.1.0.2980 Riverbed Technology, Inc. wpcap.dll Dynamic Link Library - based on libpcap 1.0rel0b branch (20091008) 131795781112975613 0x2203d070000 126976 C:\Windows\System32\Packet.dll 4.1.0.2980 Riverbed Technology, Inc. packet.dll (Vista) Dynamic Link Library 131795781110777700 0x7ff79b530000 438272 C:\Program Files\Wireshark\dumpcap.exe 2.6.2 The Wireshark developer community Dumpcap 131795781112745027 0x7ffac1c90000 155648 C:\Program Files\Wireshark\zlib1.dll 1.2.11 zlib data compression library 131795781112991873 0x7ffac2b80000 40960 C:\Windows\System32\version.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Version Checking and File Installation Libraries 131795781112551689 0x7ffac32b0000 155648 C:\Program Files\Wireshark\libwsutil.dll 2.6.2 The Wireshark developer community, http://www.wireshark.org/ Wireshark utility library 131795781112616429 0x7ffac76e0000 90112 C:\Windows\System32\vcruntime140.dll 14.12.25810.0 built by: VCTOOLSREL Microsoft Corporation Microsoft® C Runtime Library 131795781113081556 0x7ffac83d0000 106496 C:\Windows\System32\dhcpcsvc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служба DHCP-клиента 131795781113068402 0x7ffac83f0000 90112 C:\Windows\System32\dhcpcsvc6.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиент DHCPv6 131795781112593287 0x7ffac97e0000 36864 C:\Windows\System32\wsock32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Socket 32-Bit DLL 131795781112764136 0x7ffacab40000 176128 C:\Windows\System32\winmmbase.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base Multimedia Extension API DLL 131795781112680590 0x7ffacaba0000 143360 C:\Windows\System32\winmm.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation MCI API DLL 131795781112901553 0x7ffacbbb0000 208896 C:\Windows\System32\rsaenh.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Enhanced Cryptographic Provider 131795781112603842 0x7ffacbd30000 229376 C:\Windows\System32\IPHLPAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API вспомогательного приложения IP 131795781112889933 0x7ffacc150000 94208 C:\Windows\System32\cryptsp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Cryptographic Service Provider API 131795781112922216 0x7ffacc170000 45056 C:\Windows\System32\cryptbase.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base cryptographic API DLL 131795781112873689 0x7ffacc1f0000 241664 C:\Windows\System32\ntasn1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft ASN.1 API 131795781112851456 0x7ffacc230000 155648 C:\Windows\System32\ncrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Маршрутизатор Windows NCrypt 131795781112862535 0x7ffacc620000 176128 C:\Windows\System32\bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795781112564185 0x7ffacc6e0000 61440 C:\Windows\System32\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795781112558680 0x7ffacc6f0000 311296 C:\Windows\System32\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795781112565891 0x7ffacc740000 81920 C:\Windows\System32\profapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Profile Basic API 131795781112638400 0x7ffacc760000 65536 C:\Windows\System32\msasn1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ASN.1 Runtime APIs 131795781112561378 0x7ffacc770000 1572864 C:\Windows\System32\gdi32full.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation GDI Client DLL 131795781112543433 0x7ffacc8f0000 1003520 C:\Windows\System32\ucrtbase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795781112557787 0x7ffacc9f0000 434176 C:\Windows\System32\bcryptprimitives.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Cryptographic Primitives Library 131795781112563121 0x7ffacca60000 122880 C:\Windows\System32\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795781112564994 0x7ffaccae0000 692224 C:\Windows\System32\SHCore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795781112555945 0x7ffaccb90000 7180288 C:\Windows\System32\windows.storage.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API хранения Microsoft WinRT 131795781111306780 0x7ffacd270000 2215936 C:\Windows\System32\KernelBase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795781112637496 0x7ffacd490000 1871872 C:\Windows\System32\crypt32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API32 криптографии 131795781112554892 0x7ffacd7b0000 270336 C:\Windows\System32\cfgmgr32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Configuration Manager DLL 131795781112553795 0x7ffacd810000 22056960 C:\Windows\System32\shell32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Общая библиотека оболочки Windows 131795781112541505 0x7ffacee50000 1183744 C:\Windows\System32\rpcrt4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795781113056743 0x7ffacef80000 32768 C:\Windows\System32\nsi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation NSI User-mode interface DLL 131795781112539956 0x7ffacef90000 647168 C:\Windows\System32\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795781111305815 0x7ffacf0d0000 704512 C:\Windows\System32\kernel32.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795781112560555 0x7ffacf770000 212992 C:\Windows\System32\gdi32.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation GDI Client DLL 131795781112552568 0x7ffacf820000 434176 C:\Windows\System32\ws2_32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation 32-разрядная библиотека Windows Socket 2.0 131795781112797169 0x7ffacf890000 188416 C:\Windows\System32\imm32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Multi-User Windows IMM32 API Client DLL 131795781112562317 0x7ffacf8c0000 1462272 C:\Windows\System32\user32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795781112556862 0x7ffacfb30000 2916352 C:\Windows\System32\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795781112538759 0x7ffacfe20000 663552 C:\Windows\System32\advapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795781112574716 0x7ffad0070000 1277952 C:\Windows\System32\ole32.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft OLE для Windows 131795781112559630 0x7ffad01b0000 335872 C:\Windows\System32\shlwapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека небольших программ оболочки 131795781112540782 0x7ffad0210000 364544 C:\Windows\System32\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795781110778043 0x7ffad0270000 1908736 C:\Windows\System32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 155 10656 10368 154 00000000:0031f1da 131795781111864203 0 0 1 Обязательная метка\Средний обязательный уровень WIN-0UOTFKKVN1S\User Conhost.exe C:\Windows\System32\Conhost.exe \??\C:\Windows\system32\conhost.exe 0xffffffff -ForceV1 Microsoft Corporation 10.0.14393.0 (rs1_release.160715-1616) Console Window Host 131795781111913743 0x7ff768b40000 69632 C:\Windows\System32\conhost.exe 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Console Window Host 131795781111943590 0x7ffac16b0000 368640 C:\Windows\System32\ConhostV2.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Хост окна консоли 131795781112487631 0x7ffac6c40000 2596864 C:\Windows\WinSxS\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.14393.953_none_42151e83c686086b\comctl32.dll 6.10 (rs1_release_inmarket.170303-1614) Microsoft Corporation Библиотека элементов управления взаимодействия с пользователем 131795781111973094 0x7ffaca340000 1593344 C:\Windows\System32\propsys.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Система страниц свойств (Майкрософт) 131795781112447250 0x7ffaca5e0000 155648 C:\Windows\System32\dwmapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Интерфейс API диспетчера окон рабочего стола (Майкрософт) 131795781112288506 0x7ffacaf00000 610304 C:\Windows\System32\uxtheme.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека тем UxTheme (Microsoft) 131795781112268292 0x7ffacc6e0000 61440 C:\Windows\System32\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795781112265698 0x7ffacc6f0000 311296 C:\Windows\System32\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795781112269042 0x7ffacc740000 81920 C:\Windows\System32\profapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Profile Basic API 131795781111955891 0x7ffacc770000 1572864 C:\Windows\System32\gdi32full.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation GDI Client DLL 131795781111952093 0x7ffacc8f0000 1003520 C:\Windows\System32\ucrtbase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795781111953761 0x7ffacc9f0000 434176 C:\Windows\System32\bcryptprimitives.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Cryptographic Primitives Library 131795781111957462 0x7ffacca60000 122880 C:\Windows\System32\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795781111974737 0x7ffaccae0000 692224 C:\Windows\System32\SHCore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795781112264787 0x7ffaccb90000 7180288 C:\Windows\System32\windows.storage.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API хранения Microsoft WinRT 131795781111919763 0x7ffacd270000 2215936 C:\Windows\System32\KernelBase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795781111959779 0x7ffacd710000 638976 C:\Windows\System32\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795781112263740 0x7ffacd7b0000 270336 C:\Windows\System32\cfgmgr32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Configuration Manager DLL 131795781112262565 0x7ffacd810000 22056960 C:\Windows\System32\shell32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Общая библиотека оболочки Windows 131795781111959111 0x7ffaced20000 782336 C:\Windows\System32\oleaut32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795781111952833 0x7ffacee50000 1183744 C:\Windows\System32\rpcrt4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795781111927637 0x7ffacef90000 647168 C:\Windows\System32\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795781111918688 0x7ffacf0d0000 704512 C:\Windows\System32\kernel32.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795781112429009 0x7ffacf1e0000 1417216 C:\Windows\System32\msctf.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Серверная библиотека MSCTF 131795781111954501 0x7ffacf770000 212992 C:\Windows\System32\gdi32.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation GDI Client DLL 131795781111958338 0x7ffacf890000 188416 C:\Windows\System32\imm32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Multi-User Windows IMM32 API Client DLL 131795781111956778 0x7ffacf8c0000 1462272 C:\Windows\System32\user32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795781111951234 0x7ffacfb30000 2916352 C:\Windows\System32\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795781112266518 0x7ffacfe20000 663552 C:\Windows\System32\advapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795781112267424 0x7ffad01b0000 335872 C:\Windows\System32\shlwapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека небольших программ оболочки 131795781111973936 0x7ffad0210000 364544 C:\Windows\System32\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795781111913976 0x7ffad0270000 1908736 C:\Windows\System32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 162 4760 664 6 00000000:0031f1da 131795786042098193 0 0 1 Обязательная метка\Низкий обязательный уровень WIN-0UOTFKKVN1S\User MicrosoftEdge.exe C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdge.exe "C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdge.exe" -ServerName:MicrosoftEdge.AppXdnhjhccw3zf0j06tkg3jtqr00qdm0khc.mca Microsoft Corporation 11.00.14393.2189 (rs1_release.180329-1711) Microsoft Edge 131795786042630177 0x7ff782940000 7663616 C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdge.exe 11.00.14393.2189 (rs1_release.180329-1711) Microsoft Corporation Microsoft Edge 131795786057154585 0x7ffaad380000 5730304 C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\eView.dll 11.00.14393.2189 (rs1_release.180329-1711) Microsoft Corporation Microsoft Edge View 131795786054805787 0x7ffaad900000 4730880 C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\eModel.dll 11.00.14393.2189 (rs1_release.180329-1711) Microsoft Corporation Microsoft Edge Model 131795786066907553 0x7ffab0430000 1662976 C:\Windows\System32\ieapfltr.dll 11.00.14393.2189 Microsoft Corporation Microsoft SmartScreen Filter 131795786128228596 0x7ffab1df0000 602112 C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\eData.dll 11.00.14393.2189 (rs1_release.180329-1711) Microsoft Corporation Microsoft Edge Data Store API Module 131795786065479748 0x7ffab5520000 3231744 C:\Windows\System32\msftedit.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Элемент управления "Поле ввода форматированного текста", версия 8.5 131795786063895095 0x7ffab5b40000 2527232 C:\Windows\System32\DWrite.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Службы Microsoft DirectX Typography 131795786054266392 0x7ffab6710000 17231872 C:\Windows\System32\Windows.UI.Xaml.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows.UI.Xaml dll 131795786230757616 0x7ffab8fd0000 229376 C:\Windows\System32\MicrosoftAccountTokenProvider.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft® Account Token Provider 131795786063975264 0x7ffabaab0000 94208 C:\Windows\System32\profext.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation profext 131795786144818989 0x7ffabaf70000 270336 C:\Windows\System32\edputil.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служебная программа EDP 131795786059649322 0x7ffabb3c0000 450560 C:\Windows\System32\TextInputFramework.dll 10.0.14393.2189 (rs1_release.180329-1711) Microsoft Corporation "TextInputFramework.DYNLINK" 131795786067415829 0x7ffabb490000 512000 C:\Windows\System32\twinapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation twinapi 131795786288759665 0x7ffabbb80000 61440 C:\Windows\System32\dsclient.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Data Sharing Service Client DLL 131795786288473868 0x7ffabbb90000 581632 C:\Windows\System32\Windows.System.Launcher.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows.System.Launcher 131795786288676720 0x7ffabbd00000 36864 C:\Windows\System32\WpPortingLibrary.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation <d> DLL 131795786065177710 0x7ffabbd10000 65536 C:\Windows\System32\tokenbinding.dll 10.0.14393.1593 (rs1_release.170731-1934) Microsoft Corporation Token Binding Protocol 131795786066322832 0x7ffabc510000 90112 C:\Windows\System32\execmodelproxy.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ExecModelProxy 131795786072876141 0x7ffabc920000 270336 C:\Windows\System32\ExecModelClient.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation ExecModelClient 131795786088399099 0x7ffabca50000 819200 C:\Windows\System32\Windows.Security.Authentication.Web.Core.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Token Broker WinRT API 131795786065841979 0x7ffabcef0000 102400 C:\Windows\System32\Windows.Shell.ServiceHostBuilder.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows.Shell.ServiceHostBuilder 131795786055069007 0x7ffabcf30000 110592 C:\Windows\System32\mpr.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека маршрутизации для нескольких служб доступа 131795786147341523 0x7ffabd220000 479232 C:\Windows\System32\Windows.Devices.Enumeration.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows.Devices.Enumeration 131795786063327247 0x7ffabd4a0000 1613824 C:\Windows\System32\Windows.Globalization.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Globalization 131795786125346246 0x7ffabe4d0000 286720 C:\Windows\System32\MSWB7.dll 10.0.14393.1737 (rs1_release_inmarket.170914-1249) Microsoft Corporation MSWB7 DLL 131795786068479711 0x7ffabe6e0000 561152 C:\Windows\System32\directmanipulation.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Direct Manipulation Component 131795786065629245 0x7ffabe9c0000 188416 C:\Windows\System32\globinputhost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Globalization Extension API for Input 131795786100800557 0x7ffabeac0000 335872 C:\Windows\System32\Windows.Storage.ApplicationData.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Application Data API Server 131795786057138366 0x7ffabeb20000 385024 C:\Windows\System32\Windows.ApplicationModel.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows ApplicationModel API Server 131795786088259759 0x7ffabf090000 81920 C:\Windows\System32\Windows.System.Profile.PlatformDiagnosticsAndUsageDataSettings.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Platform Diagnostics and Usage Settings DLL 131795786241271463 0x7ffabf1d0000 192512 C:\Windows\System32\cryptnet.dll 10.0.14393.2035 (rs1_release_inmarket.180110-1910) Microsoft Corporation Crypto Network Related API 131795786064506043 0x7ffabf5d0000 2924544 C:\Windows\System32\wininet.dll 11.00.14393.447 (rs1_release_inmarket.161102-0100) Microsoft Corporation Расширения Интернета для Win32 131795786066155936 0x7ffabfce0000 90112 C:\Windows\System32\Windows.Globalization.Fontgroups.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Fonts Mapping API 131795786063962359 0x7ffabfd00000 356352 C:\Windows\System32\Windows.Graphics.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation WinRT Windows Graphics DLL 131795786069984086 0x7ffabfd80000 86016 C:\Windows\System32\threadpoolwinrt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows WinRT Threadpool 131795786241104861 0x7ffabff60000 135168 C:\Windows\System32\ncryptsslp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft SChannel Provider 131795786059637885 0x7ffac00c0000 282624 C:\Windows\System32\Windows.UI.Core.TextInput.dll 10.0.14393.2189 (rs1_release.180329-1711) Microsoft Corporation Windows.UI.Core.TextInput dll 131795786053932620 0x7ffac01e0000 397312 C:\Windows\System32\wincorlib.dll 10.0.14393.576 (rs1_release_inmarket.161208-2252) Microsoft Corporation Microsoft Windows ® WinRT core library 131795786241083669 0x7ffac0ad0000 86016 C:\Windows\System32\mskeyprotect.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик защиты ключей (Майкрософт) 131795786056074983 0x7ffac0bf0000 3559424 C:\Windows\System32\actxprxy.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation ActiveX Interface Marshaling Library 131795786100125856 0x7ffac1470000 704512 C:\Windows\System32\ieproxy.dll 11.00.14393.2007 (rs1_release.171231-1800) Microsoft Corporation IE ActiveX Interface Marshaling Library 131795786075280874 0x7ffac15d0000 172032 C:\Windows\System32\Windows.ApplicationModel.Core.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation Windows Application Model Core API 131795786070406699 0x7ffac1600000 208896 C:\Windows\System32\mdmregistration.dll 10.0.14393.576 (rs1_release_inmarket.161208-2252) Microsoft Corporation MDM Registration DLL 131795786062579941 0x7ffac1940000 172032 C:\Windows\System32\Windows.System.Profile.RetailInfo.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation Windows.System.Profile.RetailInfo Runtime DLL 131795786070419915 0x7ffac1f10000 126976 C:\Windows\System32\dmcmnutils.dll 10.0.14393.1737 (rs1_release_inmarket.170914-1249) Microsoft Corporation dmcmnutils 131795786068039488 0x7ffac20d0000 110592 C:\Windows\System32\rmclient.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Resource Manager Client 131795786089075107 0x7ffac23c0000 331776 C:\Windows\System32\OneCoreCommonProxyStub.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation OneCore Common Proxy Stub 131795786065677921 0x7ffac2990000 385024 C:\Windows\System32\ninput.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Pen and Touch Input Component 131795786065270981 0x7ffac34e0000 1843200 C:\Windows\System32\urlmon.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширения OLE32 для Win32 131795786128841302 0x7ffac3840000 3088384 C:\Windows\System32\esent.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширяемая подсистема хранения данных ESE для Microsoft(R) Windows(R) 131795786054294330 0x7ffac3cb0000 2772992 C:\Windows\System32\iertutil.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служебная программа времени выполнения для Internet Explorer 131795786063368609 0x7ffac4000000 274432 C:\Windows\System32\policymanager.dll 10.0.14393.2035 (rs1_release_inmarket.180110-1910) Microsoft Corporation Policy Manager DLL 131795786202359997 0x7ffac42a0000 659456 C:\Windows\System32\StateRepository.Core.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation StateRepository Core 131795786200068117 0x7ffac46d0000 4161536 C:\Windows\System32\Windows.StateRepository.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Сервер Windows StateRepository API Server 131795786055042484 0x7ffac4b70000 122880 C:\Windows\System32\eShims.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Edge Compatibility Shims 131795786089712128 0x7ffac4b90000 774144 C:\Windows\System32\StoreAgent.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation StoreAgent 131795786059830786 0x7ffac5350000 1765376 C:\Windows\System32\Windows.UI.Immersive.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation WINDOWS.UI.IMMERSIVE 131795786150797625 0x7ffac5500000 438272 C:\Windows\System32\PhotoMetadataHandler.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Photo Metadata Handler 131795786453454285 0x7ffac5ce0000 1744896 C:\Windows\System32\UIAutomationCore.dll 7.2.14393.0 (rs1_release.160715-1616) Microsoft Corporation Основные автоматические компоненты Microsoft UI 131795786067621067 0x7ffac60e0000 221184 C:\Windows\System32\xmllite.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft XmlLite Library 131795786092263039 0x7ffac6610000 40960 C:\Windows\System32\rasadhlp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Remote Access AutoDial Helper 131795786147367807 0x7ffac6620000 192512 C:\Windows\System32\biwinrt.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation Windows Background Broker Infrastructure 131795786065223183 0x7ffac66a0000 86016 C:\Windows\System32\OnDemandConnRouteHelper.dll 10.0.14393.351 (rs1_release_inmarket.161014-1755) Microsoft Corporation On Demand Connctiond Route Helper 131795786147382918 0x7ffac6990000 69632 C:\Windows\System32\deviceassociation.dll 10.0.14393.82 (rs1_release.160805-1735) Microsoft Corporation Device Association Client DLL 131795786065248448 0x7ffac69c0000 839680 C:\Windows\System32\winhttp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Службы HTTP Windows 131795786055777229 0x7ffac6ac0000 835584 C:\Windows\System32\Windows.UI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Runtime UI Foundation DLL 131795786453657664 0x7ffac6bd0000 413696 C:\Windows\System32\oleacc.dll 7.2.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Active Accessibility Core Component 131795786057001398 0x7ffac6f50000 5632000 C:\Windows\System32\d2d1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека Microsoft D2D 131795786057773467 0x7ffac7580000 1077248 C:\Windows\System32\MrmCoreR.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Windows MRM 131795786060164250 0x7ffac7720000 1601536 C:\Windows\System32\OneCoreUAPCommonProxyStub.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation OneCoreUAP Common Proxy Stub 131795786068353332 0x7ffac79c0000 57344 C:\Windows\System32\npmproxy.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Network List Manager Proxy 131795786070260699 0x7ffac79e0000 184320 C:\Windows\System32\netjoin.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL присоединения к домену 131795786066493970 0x7ffac7e30000 40960 C:\Windows\System32\fontgroupsoverride.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation fontgroupsoverride.dll 131795786056922456 0x7ffac7fc0000 2674688 C:\Windows\System32\d3d10warp.dll 10.0.14393.576 (rs1_release_inmarket.161208-2252) Microsoft Corporation Direct3D 10 Rasterizer 131795786092912724 0x7ffac8420000 434176 C:\Windows\System32\FWPUCLNT.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API пользовательского режима FWP/IPsec 131795786060129754 0x7ffac84f0000 299008 C:\Windows\System32\DataExchange.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation Data exchange 131795786065322940 0x7ffac8810000 45056 C:\Windows\System32\winnsi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Network Store Information RPC interface 131795786056749751 0x7ffac88a0000 2842624 C:\Windows\System32\d3d11.dll 10.0.14393.953 (rs1_release_inmarket.170303-1614) Microsoft Corporation Direct3D 11 Runtime 131795786070245572 0x7ffac90b0000 90112 C:\Windows\System32\wkscli.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Workstation Service Client DLL 131795786054670572 0x7ffac92e0000 1269760 C:\Windows\System32\WinTypes.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL основных типов Windows 131795786056291342 0x7ffac9500000 2682880 C:\Windows\System32\CoreUIComponents.dll 131795786068265491 0x7ffac9f10000 221184 C:\Windows\System32\netprofm.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Network List Manager 131795786082912516 0x7ffac9f50000 1736704 C:\Windows\System32\WindowsCodecs.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Microsoft Windows Codecs Library 131795786063291141 0x7ffaca340000 1593344 C:\Windows\System32\propsys.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Система страниц свойств (Майкрософт) 131795786054280400 0x7ffaca570000 421888 C:\Windows\System32\BCP47Langs.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation BCP47 Language Classes 131795786056308035 0x7ffaca5e0000 155648 C:\Windows\System32\dwmapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Интерфейс API диспетчера окон рабочего стола (Майкрософт) 131795786054309397 0x7ffaca640000 770048 C:\Windows\System32\CoreMessaging.dll 10.0.14393.0 Microsoft Corporation Microsoft CoreMessaging Dll 131795786060143604 0x7ffaca770000 1380352 C:\Windows\System32\dcomp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft DirectComposition Library 131795786053885709 0x7ffacadf0000 499712 C:\Windows\System32\apphelp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиентская библиотека совместимости приложений 131795786056099190 0x7ffacaf00000 610304 C:\Windows\System32\uxtheme.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека тем UxTheme (Microsoft) 131795786063385911 0x7ffacb140000 593920 C:\Windows\System32\msvcp110_win.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Microsoft® STL110 C++ Runtime Library 131795786054634364 0x7ffacb1e0000 1163264 C:\Windows\System32\twinapi.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation twinapi.appcore 131795786064476035 0x7ffacb360000 176128 C:\Windows\System32\fwbase.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Firewall Base DLL 131795786056663398 0x7ffacb3d0000 110592 C:\Windows\System32\ResourcePolicyClient.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Resource Policy Client 131795786070433601 0x7ffacb3f0000 163840 C:\Windows\System32\devobj.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Device Information Set DLL 131795786054821679 0x7ffacb420000 204800 C:\Windows\System32\ntmarta.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик Windows NT MARTA 131795786064343854 0x7ffacb460000 548864 C:\Windows\System32\FirewallAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API брандмауэра Windows 131795786056649628 0x7ffacb780000 651264 C:\Windows\System32\dxgi.dll 10.0.14393.953 (rs1_release_inmarket.170303-1614) Microsoft Corporation DirectX Graphics Infrastructure 131795786240387843 0x7ffacbaf0000 495616 C:\Windows\System32\schannel.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик безопасности TLS/SSL 131795786241189729 0x7ffacbbb0000 208896 C:\Windows\System32\rsaenh.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Enhanced Cryptographic Provider 131795786241130378 0x7ffacbbf0000 40960 C:\Windows\System32\dpapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Data Protection API 131795786065234326 0x7ffacbd30000 229376 C:\Windows\System32\IPHLPAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API вспомогательного приложения IP 131795786070099854 0x7ffacbd70000 659456 C:\Windows\System32\dnsapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Динамическая библиотека API DNS-клиента 131795786070392550 0x7ffacbe20000 53248 C:\Windows\System32\netutils.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API Helpers DLL 131795786055055520 0x7ffacbe40000 126976 C:\Windows\System32\userenv.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Userenv 131795786065299260 0x7ffacbfb0000 376832 C:\Windows\System32\mswsock.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширение поставщика службы API Microsoft Windows Sockets 2.0 131795786067045090 0x7ffacc150000 94208 C:\Windows\System32\cryptsp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Cryptographic Service Provider API 131795786061034021 0x7ffacc170000 45056 C:\Windows\System32\cryptbase.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base cryptographic API DLL 131795786070369175 0x7ffacc1b0000 126976 C:\Windows\System32\joinutil.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Join Utility DLL 131795786070463748 0x7ffacc1f0000 241664 C:\Windows\System32\ntasn1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft ASN.1 API 131795786070448934 0x7ffacc230000 155648 C:\Windows\System32\ncrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Маршрутизатор Windows NCrypt 131795786064523489 0x7ffacc350000 180224 C:\Windows\System32\sspicli.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Security Support Provider Interface 131795786054651608 0x7ffacc620000 176128 C:\Windows\System32\bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795786054249334 0x7ffacc6e0000 61440 C:\Windows\System32\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795786054809092 0x7ffacc6f0000 311296 C:\Windows\System32\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795786054683095 0x7ffacc740000 81920 C:\Windows\System32\profapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Profile Basic API 131795786057003667 0x7ffacc760000 65536 C:\Windows\System32\msasn1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ASN.1 Runtime APIs 131795786053916113 0x7ffacc770000 1572864 C:\Windows\System32\gdi32full.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation GDI Client DLL 131795786053913423 0x7ffacc8f0000 1003520 C:\Windows\System32\ucrtbase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795786053914306 0x7ffacc9f0000 434176 C:\Windows\System32\bcryptprimitives.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Cryptographic Primitives Library 131795786053917903 0x7ffacca60000 122880 C:\Windows\System32\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795786241132060 0x7ffacca80000 348160 C:\Windows\System32\wintrust.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation Microsoft Trust Verification APIs 131795786054295713 0x7ffaccae0000 692224 C:\Windows\System32\SHCore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795786054808089 0x7ffaccb90000 7180288 C:\Windows\System32\windows.storage.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API хранения Microsoft WinRT 131795786053867639 0x7ffacd270000 2215936 C:\Windows\System32\KernelBase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795786057002708 0x7ffacd490000 1871872 C:\Windows\System32\crypt32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API32 криптографии 131795786053934160 0x7ffacd710000 638976 C:\Windows\System32\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795786054810350 0x7ffacd7b0000 270336 C:\Windows\System32\cfgmgr32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Configuration Manager DLL 131795786072535568 0x7ffacd810000 22056960 C:\Windows\System32\shell32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Общая библиотека оболочки Windows 131795786053933393 0x7ffaced20000 782336 C:\Windows\System32\oleaut32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795786070371970 0x7ffacede0000 450560 C:\Windows\System32\coml2.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft COM for Windows 131795786053910705 0x7ffacee50000 1183744 C:\Windows\System32\rpcrt4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795786065324109 0x7ffacef80000 32768 C:\Windows\System32\nsi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation NSI User-mode interface DLL 131795786053908868 0x7ffacef90000 647168 C:\Windows\System32\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795786053866675 0x7ffacf0d0000 704512 C:\Windows\System32\kernel32.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795786058760529 0x7ffacf1e0000 1417216 C:\Windows\System32\msctf.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Серверная библиотека MSCTF 131795786053915276 0x7ffacf770000 212992 C:\Windows\System32\gdi32.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation GDI Client DLL 131795786065183195 0x7ffacf820000 434176 C:\Windows\System32\ws2_32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation 32-разрядная библиотека Windows Socket 2.0 131795786053988560 0x7ffacf890000 188416 C:\Windows\System32\imm32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Multi-User Windows IMM32 API Client DLL 131795786053916977 0x7ffacf8c0000 1462272 C:\Windows\System32\user32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795786053912669 0x7ffacfb30000 2916352 C:\Windows\System32\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795786053907976 0x7ffacfe20000 663552 C:\Windows\System32\advapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795786053911866 0x7ffad0070000 1277952 C:\Windows\System32\ole32.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft OLE для Windows 131795786054806876 0x7ffad01b0000 335872 C:\Windows\System32\shlwapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека небольших программ оболочки 131795786053909990 0x7ffad0210000 364544 C:\Windows\System32\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795786042630465 0x7ffad0270000 1908736 C:\Windows\System32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 163 11628 664 6 00000000:0031f1da 131795786060723216 0 0 1 Обязательная метка\Средний обязательный уровень WIN-0UOTFKKVN1S\User browser_broker.exe C:\Windows\system32\browser_broker.exe C:\Windows\system32\browser_broker.exe -Embedding Microsoft Corporation 11.00.14393.1613 (rs1_release_d.170807-1806) Browser_Broker 131795786060746750 0x7ff7b0a20000 40960 C:\Windows\System32\browser_broker.exe 11.00.14393.1613 (rs1_release_d.170807-1806) Microsoft Corporation Browser_Broker 131795786168836722 0x7ffab2c00000 8179712 C:\Windows\System32\Chakra.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft ® Chakra (Private) 131795786168862865 0x7ffab33d0000 258048 C:\Windows\System32\mlang.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL многоязыковой поддержки 131795786168827250 0x7ffab3540000 22740992 C:\Windows\System32\edgehtml.dll 11.00.14393.447 (rs1_release_inmarket.161102-0100) Microsoft Corporation Веб-платформа Microsoft Edge 131795786282574098 0x7ffabaab0000 94208 C:\Windows\System32\profext.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation profext 131795786062630515 0x7ffabcf30000 110592 C:\Windows\System32\mpr.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека маршрутизации для нескольких служб доступа 131795786377997340 0x7ffabf1d0000 192512 C:\Windows\System32\cryptnet.dll 10.0.14393.2035 (rs1_release_inmarket.180110-1910) Microsoft Corporation Crypto Network Related API 131795786062639680 0x7ffabf5d0000 2924544 C:\Windows\System32\wininet.dll 11.00.14393.447 (rs1_release_inmarket.161102-0100) Microsoft Corporation Расширения Интернета для Win32 131795786379114346 0x7ffabff60000 135168 C:\Windows\System32\ncryptsslp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft SChannel Provider 131795786377416821 0x7ffac0ad0000 86016 C:\Windows\System32\mskeyprotect.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик защиты ключей (Майкрософт) 131795786174396342 0x7ffac0bf0000 3559424 C:\Windows\System32\actxprxy.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation ActiveX Interface Marshaling Library 131795786063237345 0x7ffac1470000 704512 C:\Windows\System32\ieproxy.dll 11.00.14393.2007 (rs1_release.171231-1800) Microsoft Corporation IE ActiveX Interface Marshaling Library 131795786062620047 0x7ffac34e0000 1843200 C:\Windows\System32\urlmon.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширения OLE32 для Win32 131795786062594364 0x7ffac37b0000 122880 C:\Windows\System32\browserbroker.dll 11.00.14393.1613 (rs1_release_d.170807-1806) Microsoft Corporation BrowserBroker 131795786062611592 0x7ffac3cb0000 2772992 C:\Windows\System32\iertutil.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служебная программа времени выполнения для Internet Explorer 131795786373086635 0x7ffac4000000 274432 C:\Windows\System32\policymanager.dll 10.0.14393.2035 (rs1_release_inmarket.180110-1910) Microsoft Corporation Policy Manager DLL 131795786062648299 0x7ffac60e0000 221184 C:\Windows\System32\xmllite.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft XmlLite Library 131795786374469208 0x7ffac6610000 40960 C:\Windows\System32\rasadhlp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Remote Access AutoDial Helper 131795786169923245 0x7ffac66a0000 86016 C:\Windows\System32\OnDemandConnRouteHelper.dll 10.0.14393.351 (rs1_release_inmarket.161014-1755) Microsoft Corporation On Demand Connctiond Route Helper 131795786169944900 0x7ffac69c0000 839680 C:\Windows\System32\winhttp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Службы HTTP Windows 131795786375051635 0x7ffac8420000 434176 C:\Windows\System32\FWPUCLNT.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API пользовательского режима FWP/IPsec 131795786170132533 0x7ffac8810000 45056 C:\Windows\System32\winnsi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Network Store Information RPC interface 131795786168854180 0x7ffac92e0000 1269760 C:\Windows\System32\WinTypes.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL основных типов Windows 131795786372529204 0x7ffaca5e0000 155648 C:\Windows\System32\dwmapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Интерфейс API диспетчера окон рабочего стола (Майкрософт) 131795786060981181 0x7ffacaf00000 610304 C:\Windows\System32\uxtheme.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека тем UxTheme (Microsoft) 131795786373096703 0x7ffacb140000 593920 C:\Windows\System32\msvcp110_win.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Microsoft® STL110 C++ Runtime Library 131795786062656563 0x7ffacb420000 204800 C:\Windows\System32\ntmarta.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик Windows NT MARTA 131795786376235194 0x7ffacbaf0000 495616 C:\Windows\System32\schannel.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик безопасности TLS/SSL 131795786377463635 0x7ffacbbb0000 208896 C:\Windows\System32\rsaenh.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Enhanced Cryptographic Provider 131795786062672588 0x7ffacbbf0000 40960 C:\Windows\System32\dpapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Data Protection API 131795786169932479 0x7ffacbd30000 229376 C:\Windows\System32\IPHLPAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API вспомогательного приложения IP 131795786372992934 0x7ffacbd70000 659456 C:\Windows\System32\dnsapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Динамическая библиотека API DNS-клиента 131795786282563295 0x7ffacbe40000 126976 C:\Windows\System32\userenv.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Userenv 131795786170115721 0x7ffacbfb0000 376832 C:\Windows\System32\mswsock.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширение поставщика службы API Microsoft Windows Sockets 2.0 131795786168845591 0x7ffacc150000 94208 C:\Windows\System32\cryptsp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Cryptographic Service Provider API 131795786377475058 0x7ffacc170000 45056 C:\Windows\System32\cryptbase.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base cryptographic API DLL 131795786377435415 0x7ffacc1f0000 241664 C:\Windows\System32\ntasn1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft ASN.1 API 131795786377426421 0x7ffacc230000 155648 C:\Windows\System32\ncrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Маршрутизатор Windows NCrypt 131795786065020552 0x7ffacc350000 180224 C:\Windows\System32\sspicli.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Security Support Provider Interface 131795786168896935 0x7ffacc620000 176128 C:\Windows\System32\bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795786060963845 0x7ffacc6e0000 61440 C:\Windows\System32\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795786065028759 0x7ffacc6f0000 311296 C:\Windows\System32\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795786065029803 0x7ffacc740000 81920 C:\Windows\System32\profapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Profile Basic API 131795786062602748 0x7ffacc760000 65536 C:\Windows\System32\msasn1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ASN.1 Runtime APIs 131795786060771823 0x7ffacc770000 1572864 C:\Windows\System32\gdi32full.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation GDI Client DLL 131795786060765038 0x7ffacc8f0000 1003520 C:\Windows\System32\ucrtbase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795786060766797 0x7ffacc9f0000 434176 C:\Windows\System32\bcryptprimitives.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Cryptographic Primitives Library 131795786060769366 0x7ffacca60000 122880 C:\Windows\System32\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795786377447217 0x7ffacca80000 348160 C:\Windows\System32\wintrust.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation Microsoft Trust Verification APIs 131795786062597872 0x7ffaccae0000 692224 C:\Windows\System32\SHCore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795786065027623 0x7ffaccb90000 7180288 C:\Windows\System32\windows.storage.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API хранения Microsoft WinRT 131795786060754491 0x7ffacd270000 2215936 C:\Windows\System32\KernelBase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795786062601823 0x7ffacd490000 1871872 C:\Windows\System32\crypt32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API32 криптографии 131795786062599820 0x7ffacd710000 638976 C:\Windows\System32\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795786174124589 0x7ffacd7b0000 270336 C:\Windows\System32\cfgmgr32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Configuration Manager DLL 131795786174123329 0x7ffacd810000 22056960 C:\Windows\System32\shell32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Общая библиотека оболочки Windows 131795786062599041 0x7ffaced20000 782336 C:\Windows\System32\oleaut32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795786060765825 0x7ffacee50000 1183744 C:\Windows\System32\rpcrt4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795786170133242 0x7ffacef80000 32768 C:\Windows\System32\nsi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation NSI User-mode interface DLL 131795786060762708 0x7ffacef90000 647168 C:\Windows\System32\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795786062743817 0x7ffacf030000 651264 C:\Windows\System32\clbcatq.dll 2001.12.10941.16384 (rs1_release.160715-1616) Microsoft Corporation COM+ Configuration Catalog 131795786060753543 0x7ffacf0d0000 704512 C:\Windows\System32\kernel32.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795786060770964 0x7ffacf770000 212992 C:\Windows\System32\gdi32.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation GDI Client DLL 131795786169882199 0x7ffacf820000 434176 C:\Windows\System32\ws2_32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation 32-разрядная библиотека Windows Socket 2.0 131795786060799279 0x7ffacf890000 188416 C:\Windows\System32\imm32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Multi-User Windows IMM32 API Client DLL 131795786060768413 0x7ffacf8c0000 1462272 C:\Windows\System32\user32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795786060764068 0x7ffacfb30000 2916352 C:\Windows\System32\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795786062600875 0x7ffacfe20000 663552 C:\Windows\System32\advapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795786063238473 0x7ffad0070000 1277952 C:\Windows\System32\ole32.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft OLE для Windows 131795786062621206 0x7ffad01b0000 335872 C:\Windows\System32\shlwapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека небольших программ оболочки 131795786060767532 0x7ffad0210000 364544 C:\Windows\System32\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795786060746988 0x7ffad0270000 1908736 C:\Windows\System32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 164 9260 3632 38 00000000:0031f1da 131795786076559956 0 0 1 Обязательная метка\Низкий обязательный уровень WIN-0UOTFKKVN1S\User microsoftedgecp.exe C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\microsoftedgecp.exe "C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\microsoftedgecp.exe" SCODEF:4760 CREDAT:140545 /prefetch:2 Microsoft Corporation 11.00.14393.2189 (rs1_release.180329-1711) Microsoft Edge Content Process 131795786082343149 0x5bbd0000 1101824 C:\Program Files (x86)\360\Total Security\safemon\safemon64.dll 1, 0, 0, 1190 Qihu 360 Software Co., Ltd. 360 Internet Security Internet Protection 131795786082139934 0x5bce0000 28672 C:\Program Files (x86)\360\Total Security\safemon\SafeWrapper.dll 2, 0, 0, 1060 Qihu 360 Software Co., Ltd. 360 Internet Security Internet Protection 131795786076857473 0x7ff6405a0000 106496 C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe 11.00.14393.2189 (rs1_release.180329-1711) Microsoft Corporation Microsoft Edge Content Process 131795786340825586 0x7ffaa65e0000 4526080 C:\Windows\System32\D3DCompiler_47.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Direct3D HLSL Compiler 131795786083247759 0x7ffaafb30000 3379200 C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\EdgeContent.dll 11.00.14393.2189 (rs1_release.180329-1711) Microsoft Corporation Microsoft Edge Content 131795786086088180 0x7ffab0430000 1662976 C:\Windows\System32\ieapfltr.dll 11.00.14393.2189 Microsoft Corporation Microsoft SmartScreen Filter 131795786159084433 0x7ffab0d50000 593920 C:\Windows\System32\mscms.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL-библиотека системы сопоставления цветов Майкрософт 131795786202624192 0x7ffab2230000 270336 C:\Windows\System32\elshyph.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ELS Hyphenation Service 131795786084579233 0x7ffab2c00000 8179712 C:\Windows\System32\Chakra.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft ® Chakra (Private) 131795786084609324 0x7ffab33d0000 258048 C:\Windows\System32\mlang.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL многоязыковой поддержки 131795786084567131 0x7ffab3540000 22740992 C:\Windows\System32\edgehtml.dll 11.00.14393.447 (rs1_release_inmarket.161102-0100) Microsoft Corporation Веб-платформа Microsoft Edge 131795786088444599 0x7ffab5b40000 2527232 C:\Windows\System32\DWrite.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Службы Microsoft DirectX Typography 131795786084123182 0x7ffabaab0000 94208 C:\Windows\System32\profext.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation profext 131795786160557742 0x7ffababa0000 270336 C:\Windows\System32\icm32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Color Management Module (CMM) 131795786082878183 0x7ffababf0000 806912 C:\Program Files (x86)\360\Total Security\safemon\spsafe64.dll 1, 0, 0, 1150 Qihu 360 Software Co., Ltd. 360 Internet Security Internet Protection 131795786390382274 0x7ffabaf70000 270336 C:\Windows\System32\edputil.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служебная программа EDP 131795786086580284 0x7ffabb490000 512000 C:\Windows\System32\twinapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation twinapi 131795786085595890 0x7ffabbd10000 65536 C:\Windows\System32\tokenbinding.dll 10.0.14393.1593 (rs1_release.170731-1934) Microsoft Corporation Token Binding Protocol 131795786083370196 0x7ffabcf30000 110592 C:\Windows\System32\mpr.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека маршрутизации для нескольких служб доступа 131795786137282976 0x7ffabd4a0000 1613824 C:\Windows\System32\Windows.Globalization.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Globalization 131795786244144116 0x7ffabe110000 69632 C:\Windows\System32\imgutil.dll 11.00.14393.2007 (rs1_release.171231-1800) Microsoft Corporation IE plugin image decoder support DLL 131795786154004846 0x7ffabe530000 307200 C:\Windows\System32\WindowsCodecsExt.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Microsoft Windows Codecs Extended Library 131795786089791507 0x7ffabe6e0000 561152 C:\Windows\System32\directmanipulation.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Direct Manipulation Component 131795786155347443 0x7ffabe830000 77824 C:\Windows\System32\smartscreenps.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SmartScreenPS 131795786389154702 0x7ffabe9c0000 188416 C:\Windows\System32\globinputhost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Globalization Extension API for Input 131795786114772856 0x7ffabf1d0000 192512 C:\Windows\System32\cryptnet.dll 10.0.14393.2035 (rs1_release_inmarket.180110-1910) Microsoft Corporation Crypto Network Related API 131795786296880485 0x7ffabf330000 2457600 C:\Windows\System32\msxml6.dll 6.30.14393.2156 Microsoft Corporation MSXML 6.0 131795786085297567 0x7ffabf5d0000 2924544 C:\Windows\System32\wininet.dll 11.00.14393.447 (rs1_release_inmarket.161102-0100) Microsoft Corporation Расширения Интернета для Win32 131795786112051091 0x7ffabff60000 135168 C:\Windows\System32\ncryptsslp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft SChannel Provider 131795786107069509 0x7ffac0ad0000 86016 C:\Windows\System32\mskeyprotect.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик защиты ключей (Майкрософт) 131795786241015463 0x7ffac0bf0000 3559424 C:\Windows\System32\actxprxy.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation ActiveX Interface Marshaling Library 131795786083065977 0x7ffac1090000 126976 C:\Program Files (x86)\360\Total Security\I18N64.dll 1, 0, 0, 1016 Qihu 360 Software Co., Ltd. 360 Total Security 131795786100196624 0x7ffac1470000 704512 C:\Windows\System32\ieproxy.dll 11.00.14393.2007 (rs1_release.171231-1800) Microsoft Corporation IE ActiveX Interface Marshaling Library 131795786271419198 0x7ffac1d60000 589824 C:\Windows\System32\webio.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API протоколов передачи по Веб 131795786086130048 0x7ffac20d0000 110592 C:\Windows\System32\rmclient.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Resource Manager Client 131795786082410441 0x7ffac2700000 98304 C:\Windows\System32\netapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API DLL 131795786087301397 0x7ffac2990000 385024 C:\Windows\System32\ninput.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Pen and Touch Input Component 131795786082393485 0x7ffac2b80000 40960 C:\Windows\System32\version.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Version Checking and File Installation Libraries 131795786086032569 0x7ffac34e0000 1843200 C:\Windows\System32\urlmon.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширения OLE32 для Win32 131795786321446812 0x7ffac3810000 167936 C:\Windows\System32\cabinet.dll 5.00 (rs1_release.160715-1616) Microsoft Corporation Microsoft® Cabinet File API 131795786282318342 0x7ffac3b80000 286720 C:\Windows\System32\indexeddbserver.dll 10.0.14393.2189 (rs1_release.180329-1711) Microsoft Corporation IndexedDb host 131795786082097229 0x7ffac3cb0000 2772992 C:\Windows\System32\iertutil.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служебная программа времени выполнения для Internet Explorer 131795786085965984 0x7ffac4000000 274432 C:\Windows\System32\policymanager.dll 10.0.14393.2035 (rs1_release_inmarket.180110-1910) Microsoft Corporation Policy Manager DLL 131795786083356981 0x7ffac4b70000 122880 C:\Windows\System32\eShims.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Edge Compatibility Shims 131795786210171775 0x7ffac60e0000 221184 C:\Windows\System32\xmllite.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft XmlLite Library 131795786104739299 0x7ffac6610000 40960 C:\Windows\System32\rasadhlp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Remote Access AutoDial Helper 131795786085635138 0x7ffac66a0000 86016 C:\Windows\System32\OnDemandConnRouteHelper.dll 10.0.14393.351 (rs1_release_inmarket.161014-1755) Microsoft Corporation On Demand Connctiond Route Helper 131795786085676901 0x7ffac69c0000 839680 C:\Windows\System32\winhttp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Службы HTTP Windows 131795786089609753 0x7ffac6ac0000 835584 C:\Windows\System32\Windows.UI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Runtime UI Foundation DLL 131795786087107447 0x7ffac6ed0000 155648 C:\Windows\System32\srpapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL программных интерфейсов (API) поставщика общих ресурсов 131795786088421856 0x7ffac6f50000 5632000 C:\Windows\System32\d2d1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека Microsoft D2D 131795786092153446 0x7ffac7580000 1077248 C:\Windows\System32\MrmCoreR.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Windows MRM 131795786100849928 0x7ffac7720000 1601536 C:\Windows\System32\OneCoreUAPCommonProxyStub.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation OneCoreUAP Common Proxy Stub 131795786089750406 0x7ffac78b0000 65536 C:\Windows\System32\msimtf.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Active IMM Server DLL 131795786088584854 0x7ffac7fc0000 2674688 C:\Windows\System32\d3d10warp.dll 10.0.14393.576 (rs1_release_inmarket.161208-2252) Microsoft Corporation Direct3D 10 Rasterizer 131795786270943858 0x7ffac83d0000 106496 C:\Windows\System32\dhcpcsvc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служба DHCP-клиента 131795786270495097 0x7ffac83f0000 90112 C:\Windows\System32\dhcpcsvc6.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиент DHCPv6 131795786104726596 0x7ffac8420000 434176 C:\Windows\System32\FWPUCLNT.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API пользовательского режима FWP/IPsec 131795786086442135 0x7ffac84f0000 299008 C:\Windows\System32\DataExchange.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation Data exchange 131795786085717720 0x7ffac8810000 45056 C:\Windows\System32\winnsi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Network Store Information RPC interface 131795786086457038 0x7ffac88a0000 2842624 C:\Windows\System32\d3d11.dll 10.0.14393.953 (rs1_release_inmarket.170303-1614) Microsoft Corporation Direct3D 11 Runtime 131795786082439684 0x7ffac90b0000 90112 C:\Windows\System32\wkscli.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Workstation Service Client DLL 131795786084597848 0x7ffac92e0000 1269760 C:\Windows\System32\WinTypes.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL основных типов Windows 131795786184150347 0x7ffac9ec0000 294912 C:\Windows\System32\UIAnimation.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Animation Manager 131795786141307846 0x7ffac9f50000 1736704 C:\Windows\System32\WindowsCodecs.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Microsoft Windows Codecs Library 131795786240298598 0x7ffaca340000 1593344 C:\Windows\System32\propsys.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Система страниц свойств (Майкрософт) 131795786092224838 0x7ffaca570000 421888 C:\Windows\System32\BCP47Langs.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation BCP47 Language Classes 131795786086057183 0x7ffaca5e0000 155648 C:\Windows\System32\dwmapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Интерфейс API диспетчера окон рабочего стола (Майкрософт) 131795786089629599 0x7ffaca640000 770048 C:\Windows\System32\CoreMessaging.dll 10.0.14393.0 Microsoft Corporation Microsoft CoreMessaging Dll 131795786086481184 0x7ffaca770000 1380352 C:\Windows\System32\dcomp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft DirectComposition Library 131795786082048569 0x7ffacadf0000 499712 C:\Windows\System32\apphelp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиентская библиотека совместимости приложений 131795786084078182 0x7ffacaf00000 610304 C:\Windows\System32\uxtheme.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека тем UxTheme (Microsoft) 131795786086008568 0x7ffacb140000 593920 C:\Windows\System32\msvcp110_win.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Microsoft® STL110 C++ Runtime Library 131795786083279286 0x7ffacb1e0000 1163264 C:\Windows\System32\twinapi.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation twinapi.appcore 131795786088520571 0x7ffacb3d0000 110592 C:\Windows\System32\ResourcePolicyClient.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Resource Policy Client 131795786083257346 0x7ffacb420000 204800 C:\Windows\System32\ntmarta.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик Windows NT MARTA 131795786086544984 0x7ffacb780000 651264 C:\Windows\System32\dxgi.dll 10.0.14393.953 (rs1_release_inmarket.170303-1614) Microsoft Corporation DirectX Graphics Infrastructure 131795786105438151 0x7ffacbaf0000 495616 C:\Windows\System32\schannel.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик безопасности TLS/SSL 131795786098058671 0x7ffacbbb0000 208896 C:\Windows\System32\rsaenh.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Enhanced Cryptographic Provider 131795786098091830 0x7ffacbbf0000 40960 C:\Windows\System32\dpapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Data Protection API 131795786085647065 0x7ffacbd30000 229376 C:\Windows\System32\IPHLPAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API вспомогательного приложения IP 131795786093150053 0x7ffacbd70000 659456 C:\Windows\System32\dnsapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Динамическая библиотека API DNS-клиента 131795786082425895 0x7ffacbe20000 53248 C:\Windows\System32\netutils.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API Helpers DLL 131795786083270628 0x7ffacbe40000 126976 C:\Windows\System32\userenv.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Userenv 131795786085695835 0x7ffacbfb0000 376832 C:\Windows\System32\mswsock.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширение поставщика службы API Microsoft Windows Sockets 2.0 131795786084588700 0x7ffacc150000 94208 C:\Windows\System32\cryptsp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Cryptographic Service Provider API 131795786098076226 0x7ffacc170000 45056 C:\Windows\System32\cryptbase.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base cryptographic API DLL 131795786112038692 0x7ffacc1f0000 241664 C:\Windows\System32\ntasn1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft ASN.1 API 131795786112026610 0x7ffacc230000 155648 C:\Windows\System32\ncrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Маршрутизатор Windows NCrypt 131795786085316210 0x7ffacc350000 180224 C:\Windows\System32\sspicli.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Security Support Provider Interface 131795786082453168 0x7ffacc620000 176128 C:\Windows\System32\bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795786082355351 0x7ffacc6e0000 61440 C:\Windows\System32\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795786082352777 0x7ffacc6f0000 311296 C:\Windows\System32\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795786082356404 0x7ffacc740000 81920 C:\Windows\System32\profapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Profile Basic API 131795786082346599 0x7ffacc770000 1572864 C:\Windows\System32\gdi32full.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation GDI Client DLL 131795786082076458 0x7ffacc8f0000 1003520 C:\Windows\System32\ucrtbase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795786082077405 0x7ffacc9f0000 434176 C:\Windows\System32\bcryptprimitives.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Cryptographic Primitives Library 131795786082344914 0x7ffacca60000 122880 C:\Windows\System32\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795786082078287 0x7ffacca80000 348160 C:\Windows\System32\wintrust.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation Microsoft Trust Verification APIs 131795786082074829 0x7ffaccae0000 692224 C:\Windows\System32\SHCore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795786082351486 0x7ffaccb90000 7180288 C:\Windows\System32\windows.storage.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API хранения Microsoft WinRT 131795786082030503 0x7ffacd270000 2215936 C:\Windows\System32\KernelBase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795786082079752 0x7ffacd490000 1871872 C:\Windows\System32\crypt32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API32 криптографии 131795786082360385 0x7ffacd710000 638976 C:\Windows\System32\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795786082350101 0x7ffacd7b0000 270336 C:\Windows\System32\cfgmgr32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Configuration Manager DLL 131795786082348521 0x7ffacd810000 22056960 C:\Windows\System32\shell32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Общая библиотека оболочки Windows 131795786082359321 0x7ffaced20000 782336 C:\Windows\System32\oleaut32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795786082073607 0x7ffacee50000 1183744 C:\Windows\System32\rpcrt4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795786085718659 0x7ffacef80000 32768 C:\Windows\System32\nsi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation NSI User-mode interface DLL 131795786082071659 0x7ffacef90000 647168 C:\Windows\System32\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795786082029525 0x7ffacf0d0000 704512 C:\Windows\System32\kernel32.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795786086063062 0x7ffacf1e0000 1417216 C:\Windows\System32\msctf.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Серверная библиотека MSCTF 131795786082345765 0x7ffacf770000 212992 C:\Windows\System32\gdi32.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation GDI Client DLL 131795786082362660 0x7ffacf820000 434176 C:\Windows\System32\ws2_32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation 32-разрядная библиотека Windows Socket 2.0 131795786082465073 0x7ffacf890000 188416 C:\Windows\System32\imm32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Multi-User Windows IMM32 API Client DLL 131795786082343975 0x7ffacf8c0000 1462272 C:\Windows\System32\user32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795786082075682 0x7ffacfb30000 2916352 C:\Windows\System32\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795786082361662 0x7ffacfe00000 114688 C:\Windows\System32\imagehlp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT Image Helper 131795786082070778 0x7ffacfe20000 663552 C:\Windows\System32\advapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795786082357670 0x7ffad0070000 1277952 C:\Windows\System32\ole32.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft OLE для Windows 131795786082354079 0x7ffad01b0000 335872 C:\Windows\System32\shlwapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека небольших программ оболочки 131795786082072862 0x7ffad0210000 364544 C:\Windows\System32\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795786076857714 0x7ffad0270000 1908736 C:\Windows\System32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 165 9716 664 6 00000000:0031f1da 131795786078382267 0 0 1 Обязательная метка\Низкий обязательный уровень WIN-0UOTFKKVN1S\User backgroundTaskHost.exe C:\Windows\system32\backgroundTaskHost.exe "C:\Windows\system32\backgroundTaskHost.exe" -ServerName:App.AppXmtcan0h2tfbfy7k9kn8hbxb6dmzz1zh0.mca Microsoft Corporation 10.0.14393.0 (rs1_release.160715-1616) Background Task Host 131795786078418454 0x7ff6c9470000 28672 C:\Windows\System32\backgroundTaskHost.exe 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Background Task Host 131795786443106818 0x7ffaa63b0000 2260992 C:\Windows\SystemApps\Microsoft.Windows.ContentDeliveryManager_cw5n1h2txyewy\ContentManagementSDK.dll 131795786178014437 0x7ffaadde0000 3424256 C:\Windows\SystemApps\Microsoft.Windows.ContentDeliveryManager_cw5n1h2txyewy\ContentDeliveryManager.Background.dll 131795786446836026 0x7ffab8f60000 397312 C:\Windows\System32\CryptoWinRT.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Crypto WinRT Library 131795786452519637 0x7ffabb490000 512000 C:\Windows\System32\twinapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation twinapi 131795786442096938 0x7ffabd4a0000 1613824 C:\Windows\System32\Windows.Globalization.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Globalization 131795786184454951 0x7ffabea90000 135168 C:\Windows\System32\Windows.ApplicationModel.Background.SystemEventsBroker.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Background System Events Broker API Server 131795786411124347 0x7ffabeac0000 335872 C:\Windows\System32\Windows.Storage.ApplicationData.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Application Data API Server 131795786447511170 0x7ffabf2d0000 344064 C:\Windows\System32\ncryptprov.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft KSP 131795786446350687 0x7ffabfd80000 86016 C:\Windows\System32\threadpoolwinrt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows WinRT Threadpool 131795786178082701 0x7ffac01e0000 397312 C:\Windows\System32\wincorlib.dll 10.0.14393.576 (rs1_release_inmarket.161208-2252) Microsoft Corporation Microsoft Windows ® WinRT core library 131795786448549221 0x7ffac0910000 724992 C:\Windows\System32\Windows.Networking.Connectivity.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Networking Connectivity Runtime DLL 131795786087899215 0x7ffac0bf0000 3559424 C:\Windows\System32\actxprxy.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation ActiveX Interface Marshaling Library 131795786439664619 0x7ffac3cb0000 2772992 C:\Windows\System32\iertutil.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служебная программа времени выполнения для Internet Explorer 131795786178119779 0x7ffac4000000 274432 C:\Windows\System32\policymanager.dll 10.0.14393.2035 (rs1_release_inmarket.180110-1910) Microsoft Corporation Policy Manager DLL 131795786438702275 0x7ffac5070000 798720 C:\Windows\System32\Windows.Web.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL веб-клиента 131795786138262787 0x7ffac6620000 192512 C:\Windows\System32\biwinrt.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation Windows Background Broker Infrastructure 131795786087656774 0x7ffac6ac0000 835584 C:\Windows\System32\Windows.UI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Runtime UI Foundation DLL 131795786087636053 0x7ffac7580000 1077248 C:\Windows\System32\MrmCoreR.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Windows MRM 131795786178883132 0x7ffac76a0000 159744 C:\Windows\System32\sppc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Software Licensing Client DLL 131795786138319065 0x7ffac7720000 1601536 C:\Windows\System32\OneCoreUAPCommonProxyStub.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation OneCoreUAP Common Proxy Stub 131795786178060788 0x7ffac7990000 155648 C:\Windows\System32\slc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Software Licensing Client DLL 131795786424168262 0x7ffac8fa0000 253952 C:\Windows\System32\logoncli.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Net Logon Client DLL 131795786085105196 0x7ffac92e0000 1269760 C:\Windows\System32\WinTypes.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL основных типов Windows 131795786444935300 0x7ffaca340000 1593344 C:\Windows\System32\propsys.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Система страниц свойств (Майкрософт) 131795786135208275 0x7ffaca570000 421888 C:\Windows\System32\BCP47Langs.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation BCP47 Language Classes 131795786135908983 0x7ffacaf00000 610304 C:\Windows\System32\uxtheme.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека тем UxTheme (Microsoft) 131795786178148521 0x7ffacb140000 593920 C:\Windows\System32\msvcp110_win.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Microsoft® STL110 C++ Runtime Library 131795786078586397 0x7ffacb1e0000 1163264 C:\Windows\System32\twinapi.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation twinapi.appcore 131795786178071668 0x7ffacb300000 364544 C:\Windows\System32\VEEventDispatcher.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Visual Element Event dispatcher 131795786448305262 0x7ffacc170000 45056 C:\Windows\System32\cryptbase.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base cryptographic API DLL 131795786447500168 0x7ffacc1f0000 241664 C:\Windows\System32\ntasn1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft ASN.1 API 131795786447396943 0x7ffacc230000 155648 C:\Windows\System32\ncrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Маршрутизатор Windows NCrypt 131795786178048432 0x7ffacc350000 180224 C:\Windows\System32\sspicli.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Security Support Provider Interface 131795786085085167 0x7ffacc620000 176128 C:\Windows\System32\bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795786078572417 0x7ffacc6e0000 61440 C:\Windows\System32\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795786444912775 0x7ffacc6f0000 311296 C:\Windows\System32\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795786087643960 0x7ffacc740000 81920 C:\Windows\System32\profapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Profile Basic API 131795786087150180 0x7ffacc770000 1572864 C:\Windows\System32\gdi32full.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation GDI Client DLL 131795786078435842 0x7ffacc8f0000 1003520 C:\Windows\System32\ucrtbase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795786078437510 0x7ffacc9f0000 434176 C:\Windows\System32\bcryptprimitives.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Cryptographic Primitives Library 131795786087148614 0x7ffacca60000 122880 C:\Windows\System32\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795786085110036 0x7ffaccae0000 692224 C:\Windows\System32\SHCore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795786444911600 0x7ffaccb90000 7180288 C:\Windows\System32\windows.storage.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API хранения Microsoft WinRT 131795786078425607 0x7ffacd270000 2215936 C:\Windows\System32\KernelBase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795786178085269 0x7ffacd710000 638976 C:\Windows\System32\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795786178083562 0x7ffaced20000 782336 C:\Windows\System32\oleaut32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795786078436568 0x7ffacee50000 1183744 C:\Windows\System32\rpcrt4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795786078433692 0x7ffacef90000 647168 C:\Windows\System32\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795786078424455 0x7ffacf0d0000 704512 C:\Windows\System32\kernel32.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795786087149421 0x7ffacf770000 212992 C:\Windows\System32\gdi32.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation GDI Client DLL 131795786087182640 0x7ffacf890000 188416 C:\Windows\System32\imm32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Multi-User Windows IMM32 API Client DLL 131795786087147697 0x7ffacf8c0000 1462272 C:\Windows\System32\user32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795786078435030 0x7ffacfb30000 2916352 C:\Windows\System32\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795786178015977 0x7ffacfe20000 663552 C:\Windows\System32\advapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795786444913925 0x7ffad01b0000 335872 C:\Windows\System32\shlwapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека небольших программ оболочки 131795786078587414 0x7ffad0210000 364544 C:\Windows\System32\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795786078418747 0x7ffad0270000 1908736 C:\Windows\System32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 166 10548 3632 38 00000000:0031f1da 131795786089162133 0 0 1 Обязательная метка\Низкий обязательный уровень WIN-0UOTFKKVN1S\User microsoftedgecp.exe C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\microsoftedgecp.exe "C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\microsoftedgecp.exe" SCODEF:4760 CREDAT:140546 /prefetch:2 Microsoft Corporation 11.00.14393.2189 (rs1_release.180329-1711) Microsoft Edge Content Process 131795786091222895 0x5bbd0000 1101824 C:\Program Files (x86)\360\Total Security\safemon\safemon64.dll 1, 0, 0, 1190 Qihu 360 Software Co., Ltd. 360 Internet Security Internet Protection 131795786090902666 0x5bce0000 28672 C:\Program Files (x86)\360\Total Security\safemon\SafeWrapper.dll 2, 0, 0, 1060 Qihu 360 Software Co., Ltd. 360 Internet Security Internet Protection 131795786089403507 0x7ff6405a0000 106496 C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe 11.00.14393.2189 (rs1_release.180329-1711) Microsoft Corporation Microsoft Edge Content Process 131795786093276149 0x7ffaafb30000 3379200 C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\EdgeContent.dll 11.00.14393.2189 (rs1_release.180329-1711) Microsoft Corporation Microsoft Edge Content 131795786097059549 0x7ffab0430000 1662976 C:\Windows\System32\ieapfltr.dll 11.00.14393.2189 Microsoft Corporation Microsoft SmartScreen Filter 131795786095385025 0x7ffab2c00000 8179712 C:\Windows\System32\Chakra.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft ® Chakra (Private) 131795786095414401 0x7ffab33d0000 258048 C:\Windows\System32\mlang.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL многоязыковой поддержки 131795786095372148 0x7ffab3540000 22740992 C:\Windows\System32\edgehtml.dll 11.00.14393.447 (rs1_release_inmarket.161102-0100) Microsoft Corporation Веб-платформа Microsoft Edge 131795786098894292 0x7ffab5b40000 2527232 C:\Windows\System32\DWrite.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Службы Microsoft DirectX Typography 131795786095060723 0x7ffabaab0000 94208 C:\Windows\System32\profext.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation profext 131795786092008108 0x7ffababf0000 806912 C:\Program Files (x86)\360\Total Security\safemon\spsafe64.dll 1, 0, 0, 1150 Qihu 360 Software Co., Ltd. 360 Internet Security Internet Protection 131795786097852913 0x7ffabb490000 512000 C:\Windows\System32\twinapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation twinapi 131795786095928005 0x7ffabbd10000 65536 C:\Windows\System32\tokenbinding.dll 10.0.14393.1593 (rs1_release.170731-1934) Microsoft Corporation Token Binding Protocol 131795786093350863 0x7ffabcf30000 110592 C:\Windows\System32\mpr.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека маршрутизации для нескольких служб доступа 131795786137298934 0x7ffabd4a0000 1613824 C:\Windows\System32\Windows.Globalization.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Globalization 131795786099499942 0x7ffabe6e0000 561152 C:\Windows\System32\directmanipulation.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Direct Manipulation Component 131795786155511100 0x7ffabe830000 77824 C:\Windows\System32\smartscreenps.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SmartScreenPS 131795786175106783 0x7ffabe9c0000 188416 C:\Windows\System32\globinputhost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Globalization Extension API for Input 131795786126783504 0x7ffabf1d0000 192512 C:\Windows\System32\cryptnet.dll 10.0.14393.2035 (rs1_release_inmarket.180110-1910) Microsoft Corporation Crypto Network Related API 131795786095697218 0x7ffabf5d0000 2924544 C:\Windows\System32\wininet.dll 11.00.14393.447 (rs1_release_inmarket.161102-0100) Microsoft Corporation Расширения Интернета для Win32 131795786126703773 0x7ffabff60000 135168 C:\Windows\System32\ncryptsslp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft SChannel Provider 131795786126666772 0x7ffac0ad0000 86016 C:\Windows\System32\mskeyprotect.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик защиты ключей (Майкрософт) 131795786092840839 0x7ffac1090000 126976 C:\Program Files (x86)\360\Total Security\I18N64.dll 1, 0, 0, 1016 Qihu 360 Software Co., Ltd. 360 Total Security 131795786122446702 0x7ffac1470000 704512 C:\Windows\System32\ieproxy.dll 11.00.14393.2007 (rs1_release.171231-1800) Microsoft Corporation IE ActiveX Interface Marshaling Library 131795786097238400 0x7ffac20d0000 110592 C:\Windows\System32\rmclient.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Resource Manager Client 131795786091280736 0x7ffac2700000 98304 C:\Windows\System32\netapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API DLL 131795786098823307 0x7ffac2990000 385024 C:\Windows\System32\ninput.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Pen and Touch Input Component 131795786091266496 0x7ffac2b80000 40960 C:\Windows\System32\version.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Version Checking and File Installation Libraries 131795786097003528 0x7ffac34e0000 1843200 C:\Windows\System32\urlmon.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширения OLE32 для Win32 131795786168735686 0x7ffac3b80000 286720 C:\Windows\System32\indexeddbserver.dll 10.0.14393.2189 (rs1_release.180329-1711) Microsoft Corporation IndexedDb host 131795786090797141 0x7ffac3cb0000 2772992 C:\Windows\System32\iertutil.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служебная программа времени выполнения для Internet Explorer 131795786096821309 0x7ffac4000000 274432 C:\Windows\System32\policymanager.dll 10.0.14393.2035 (rs1_release_inmarket.180110-1910) Microsoft Corporation Policy Manager DLL 131795786093337459 0x7ffac4b70000 122880 C:\Windows\System32\eShims.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Edge Compatibility Shims 131795786149406998 0x7ffac60e0000 221184 C:\Windows\System32\xmllite.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft XmlLite Library 131795786124866847 0x7ffac6610000 40960 C:\Windows\System32\rasadhlp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Remote Access AutoDial Helper 131795786096204385 0x7ffac66a0000 86016 C:\Windows\System32\OnDemandConnRouteHelper.dll 10.0.14393.351 (rs1_release_inmarket.161014-1755) Microsoft Corporation On Demand Connctiond Route Helper 131795786096235413 0x7ffac69c0000 839680 C:\Windows\System32\winhttp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Службы HTTP Windows 131795786099433900 0x7ffac6ac0000 835584 C:\Windows\System32\Windows.UI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Runtime UI Foundation DLL 131795786098769154 0x7ffac6ed0000 155648 C:\Windows\System32\srpapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL программных интерфейсов (API) поставщика общих ресурсов 131795786098876641 0x7ffac6f50000 5632000 C:\Windows\System32\d2d1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека Microsoft D2D 131795786099938691 0x7ffac7580000 1077248 C:\Windows\System32\MrmCoreR.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Windows MRM 131795786126416006 0x7ffac7720000 1601536 C:\Windows\System32\OneCoreUAPCommonProxyStub.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation OneCoreUAP Common Proxy Stub 131795786099479132 0x7ffac78b0000 65536 C:\Windows\System32\msimtf.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Active IMM Server DLL 131795786098957527 0x7ffac7fc0000 2674688 C:\Windows\System32\d3d10warp.dll 10.0.14393.576 (rs1_release_inmarket.161208-2252) Microsoft Corporation Direct3D 10 Rasterizer 131795786124773333 0x7ffac8420000 434176 C:\Windows\System32\FWPUCLNT.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API пользовательского режима FWP/IPsec 131795786097660874 0x7ffac84f0000 299008 C:\Windows\System32\DataExchange.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation Data exchange 131795786096795570 0x7ffac8810000 45056 C:\Windows\System32\winnsi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Network Store Information RPC interface 131795786097688469 0x7ffac88a0000 2842624 C:\Windows\System32\d3d11.dll 10.0.14393.953 (rs1_release_inmarket.170303-1614) Microsoft Corporation Direct3D 11 Runtime 131795786091312218 0x7ffac90b0000 90112 C:\Windows\System32\wkscli.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Workstation Service Client DLL 131795786095403206 0x7ffac92e0000 1269760 C:\Windows\System32\WinTypes.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL основных типов Windows 131795786220221983 0x7ffac9ec0000 294912 C:\Windows\System32\UIAnimation.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Animation Manager 131795786176564935 0x7ffac9f50000 1736704 C:\Windows\System32\WindowsCodecs.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Microsoft Windows Codecs Library 131795786196210087 0x7ffaca340000 1593344 C:\Windows\System32\propsys.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Система страниц свойств (Майкрософт) 131795786100083353 0x7ffaca570000 421888 C:\Windows\System32\BCP47Langs.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation BCP47 Language Classes 131795786097022036 0x7ffaca5e0000 155648 C:\Windows\System32\dwmapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Интерфейс API диспетчера окон рабочего стола (Майкрософт) 131795786099453250 0x7ffaca640000 770048 C:\Windows\System32\CoreMessaging.dll 10.0.14393.0 Microsoft Corporation Microsoft CoreMessaging Dll 131795786097703788 0x7ffaca770000 1380352 C:\Windows\System32\dcomp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft DirectComposition Library 131795786090732326 0x7ffacadf0000 499712 C:\Windows\System32\apphelp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиентская библиотека совместимости приложений 131795786094154074 0x7ffacaf00000 610304 C:\Windows\System32\uxtheme.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека тем UxTheme (Microsoft) 131795786096836522 0x7ffacb140000 593920 C:\Windows\System32\msvcp110_win.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Microsoft® STL110 C++ Runtime Library 131795786093314951 0x7ffacb1e0000 1163264 C:\Windows\System32\twinapi.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation twinapi.appcore 131795786098913536 0x7ffacb3d0000 110592 C:\Windows\System32\ResourcePolicyClient.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Resource Policy Client 131795786093292052 0x7ffacb420000 204800 C:\Windows\System32\ntmarta.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик Windows NT MARTA 131795786097717992 0x7ffacb780000 651264 C:\Windows\System32\dxgi.dll 10.0.14393.953 (rs1_release_inmarket.170303-1614) Microsoft Corporation DirectX Graphics Infrastructure 131795786125771324 0x7ffacbaf0000 495616 C:\Windows\System32\schannel.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик безопасности TLS/SSL 131795786118519493 0x7ffacbbb0000 208896 C:\Windows\System32\rsaenh.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Enhanced Cryptographic Provider 131795786118553070 0x7ffacbbf0000 40960 C:\Windows\System32\dpapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Data Protection API 131795786096216041 0x7ffacbd30000 229376 C:\Windows\System32\IPHLPAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API вспомогательного приложения IP 131795786109730985 0x7ffacbd70000 659456 C:\Windows\System32\dnsapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Динамическая библиотека API DNS-клиента 131795786091297207 0x7ffacbe20000 53248 C:\Windows\System32\netutils.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API Helpers DLL 131795786093305950 0x7ffacbe40000 126976 C:\Windows\System32\userenv.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Userenv 131795786096756389 0x7ffacbfb0000 376832 C:\Windows\System32\mswsock.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширение поставщика службы API Microsoft Windows Sockets 2.0 131795786095394201 0x7ffacc150000 94208 C:\Windows\System32\cryptsp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Cryptographic Service Provider API 131795786118538156 0x7ffacc170000 45056 C:\Windows\System32\cryptbase.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base cryptographic API DLL 131795786126691616 0x7ffacc1f0000 241664 C:\Windows\System32\ntasn1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft ASN.1 API 131795786126679897 0x7ffacc230000 155648 C:\Windows\System32\ncrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Маршрутизатор Windows NCrypt 131795786095715320 0x7ffacc350000 180224 C:\Windows\System32\sspicli.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Security Support Provider Interface 131795786091326041 0x7ffacc620000 176128 C:\Windows\System32\bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795786091234983 0x7ffacc6e0000 61440 C:\Windows\System32\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795786091232285 0x7ffacc6f0000 311296 C:\Windows\System32\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795786091236180 0x7ffacc740000 81920 C:\Windows\System32\profapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Profile Basic API 131795786091226209 0x7ffacc770000 1572864 C:\Windows\System32\gdi32full.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation GDI Client DLL 131795786090775583 0x7ffacc8f0000 1003520 C:\Windows\System32\ucrtbase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795786090776791 0x7ffacc9f0000 434176 C:\Windows\System32\bcryptprimitives.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Cryptographic Primitives Library 131795786091224549 0x7ffacca60000 122880 C:\Windows\System32\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795786090777738 0x7ffacca80000 348160 C:\Windows\System32\wintrust.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation Microsoft Trust Verification APIs 131795786090758361 0x7ffaccae0000 692224 C:\Windows\System32\SHCore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795786091230916 0x7ffaccb90000 7180288 C:\Windows\System32\windows.storage.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API хранения Microsoft WinRT 131795786090715101 0x7ffacd270000 2215936 C:\Windows\System32\KernelBase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795786090779459 0x7ffacd490000 1871872 C:\Windows\System32\crypt32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API32 криптографии 131795786091239738 0x7ffacd710000 638976 C:\Windows\System32\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795786091229511 0x7ffacd7b0000 270336 C:\Windows\System32\cfgmgr32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Configuration Manager DLL 131795786091227932 0x7ffacd810000 22056960 C:\Windows\System32\shell32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Общая библиотека оболочки Windows 131795786091238674 0x7ffaced20000 782336 C:\Windows\System32\oleaut32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795786226607039 0x7ffacede0000 450560 C:\Windows\System32\coml2.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft COM for Windows 131795786090757247 0x7ffacee50000 1183744 C:\Windows\System32\rpcrt4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795786096796493 0x7ffacef80000 32768 C:\Windows\System32\nsi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation NSI User-mode interface DLL 131795786090755355 0x7ffacef90000 647168 C:\Windows\System32\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795786090714140 0x7ffacf0d0000 704512 C:\Windows\System32\kernel32.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795786097027569 0x7ffacf1e0000 1417216 C:\Windows\System32\msctf.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Серверная библиотека MSCTF 131795786091225372 0x7ffacf770000 212992 C:\Windows\System32\gdi32.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation GDI Client DLL 131795786091241982 0x7ffacf820000 434176 C:\Windows\System32\ws2_32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation 32-разрядная библиотека Windows Socket 2.0 131795786091337871 0x7ffacf890000 188416 C:\Windows\System32\imm32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Multi-User Windows IMM32 API Client DLL 131795786091223732 0x7ffacf8c0000 1462272 C:\Windows\System32\user32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795786090759164 0x7ffacfb30000 2916352 C:\Windows\System32\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795786091241004 0x7ffacfe00000 114688 C:\Windows\System32\imagehlp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT Image Helper 131795786090754460 0x7ffacfe20000 663552 C:\Windows\System32\advapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795786091237308 0x7ffad0070000 1277952 C:\Windows\System32\ole32.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft OLE для Windows 131795786091233709 0x7ffad01b0000 335872 C:\Windows\System32\shlwapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека небольших программ оболочки 131795786090756519 0x7ffad0210000 364544 C:\Windows\System32\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795786089403873 0x7ffad0270000 1908736 C:\Windows\System32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 167 8360 664 6 00000000:0031f1da 131795786145545826 0 0 1 Обязательная метка\Средний обязательный уровень WIN-0UOTFKKVN1S\User smartscreen.exe C:\Windows\System32\smartscreen.exe C:\Windows\System32\smartscreen.exe -Embedding Microsoft Corporation 10.0.14393.0 (rs1_release.160715-1616) SmartScreen 131795786149935538 0x7ff75abc0000 2416640 C:\Windows\System32\smartscreen.exe 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SmartScreen 131795786314242815 0x7ffaa6a40000 2936832 C:\Windows\System32\CertEnroll.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиент регистрации служб сертификатов Active Directory Microsoft® 131795786321983797 0x7ffab0360000 798720 C:\Windows\System32\certca.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ЦС служб сертификации Microsoft® Active Directory 131795786150398418 0x7ffab2c00000 8179712 C:\Windows\System32\Chakra.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft ® Chakra (Private) 131795786338506430 0x7ffab33d0000 258048 C:\Windows\System32\mlang.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL многоязыковой поддержки 131795786156130630 0x7ffab9c00000 1343488 C:\Windows\System32\Windows.Web.Http.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL Windows.Web.Http 131795786162891895 0x7ffabd4a0000 1613824 C:\Windows\System32\Windows.Globalization.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Globalization 131795786155325960 0x7ffabe830000 77824 C:\Windows\System32\smartscreenps.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SmartScreenPS 131795786290626130 0x7ffabe850000 155648 C:\Windows\System32\IDStore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Identity Store 131795786303817642 0x7ffabf1d0000 192512 C:\Windows\System32\cryptnet.dll 10.0.14393.2035 (rs1_release_inmarket.180110-1910) Microsoft Corporation Crypto Network Related API 131795786292777426 0x7ffabf5d0000 2924544 C:\Windows\System32\wininet.dll 11.00.14393.447 (rs1_release_inmarket.161102-0100) Microsoft Corporation Расширения Интернета для Win32 131795786308881957 0x7ffabff60000 135168 C:\Windows\System32\ncryptsslp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft SChannel Provider 131795786291185460 0x7ffac0ac0000 53248 C:\Windows\System32\tbs.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation TBS 131795786303729142 0x7ffac0ad0000 86016 C:\Windows\System32\mskeyprotect.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик защиты ключей (Майкрософт) 131795786295084336 0x7ffac34e0000 1843200 C:\Windows\System32\urlmon.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширения OLE32 для Win32 131795786150377395 0x7ffac36b0000 524288 C:\Windows\System32\msdelta.dll 5.00 (rs1_release.160715-1616) Microsoft Corporation Microsoft Patch Engine 131795786150443503 0x7ffac3cb0000 2772992 C:\Windows\System32\iertutil.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служебная программа времени выполнения для Internet Explorer 131795786295137905 0x7ffac6610000 40960 C:\Windows\System32\rasadhlp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Remote Access AutoDial Helper 131795786293100161 0x7ffac66a0000 86016 C:\Windows\System32\OnDemandConnRouteHelper.dll 10.0.14393.351 (rs1_release_inmarket.161014-1755) Microsoft Corporation On Demand Connctiond Route Helper 131795786293113418 0x7ffac69c0000 839680 C:\Windows\System32\winhttp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Службы HTTP Windows 131795786317286245 0x7ffac6b90000 53248 C:\Windows\System32\dsparse.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Active Directory Domain Services API 131795786296541369 0x7ffac8420000 434176 C:\Windows\System32\FWPUCLNT.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API пользовательского режима FWP/IPsec 131795786294026752 0x7ffac8810000 45056 C:\Windows\System32\winnsi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Network Store Information RPC interface 131795786150415925 0x7ffac90b0000 90112 C:\Windows\System32\wkscli.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Workstation Service Client DLL 131795786150432150 0x7ffac92e0000 1269760 C:\Windows\System32\WinTypes.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL основных типов Windows 131795786162900766 0x7ffaca570000 421888 C:\Windows\System32\BCP47Langs.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation BCP47 Language Classes 131795786290836325 0x7ffaca610000 143360 C:\Windows\System32\samlib.dll 10.0.14393.82 (rs1_release.160805-1735) Microsoft Corporation SAM Library DLL 131795786293555790 0x7ffacb360000 176128 C:\Windows\System32\fwbase.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Firewall Base DLL 131795786293160744 0x7ffacb460000 548864 C:\Windows\System32\FirewallAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API брандмауэра Windows 131795786340507243 0x7ffacb6f0000 143360 C:\Windows\System32\gpapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиентские функции API групповой политики 131795786297745460 0x7ffacbaf0000 495616 C:\Windows\System32\schannel.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик безопасности TLS/SSL 131795786155834219 0x7ffacbbb0000 208896 C:\Windows\System32\rsaenh.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Enhanced Cryptographic Provider 131795786303757002 0x7ffacbbf0000 40960 C:\Windows\System32\dpapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Data Protection API 131795786167890086 0x7ffacbd30000 229376 C:\Windows\System32\IPHLPAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API вспомогательного приложения IP 131795786167870284 0x7ffacbd70000 659456 C:\Windows\System32\dnsapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Динамическая библиотека API DNS-клиента 131795786150424134 0x7ffacbe20000 53248 C:\Windows\System32\netutils.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API Helpers DLL 131795786294009833 0x7ffacbfb0000 376832 C:\Windows\System32\mswsock.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширение поставщика службы API Microsoft Windows Sockets 2.0 131795786150385959 0x7ffacc150000 94208 C:\Windows\System32\cryptsp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Cryptographic Service Provider API 131795786155846861 0x7ffacc170000 45056 C:\Windows\System32\cryptbase.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base cryptographic API DLL 131795786303746521 0x7ffacc1f0000 241664 C:\Windows\System32\ntasn1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft ASN.1 API 131795786303737722 0x7ffacc230000 155648 C:\Windows\System32\ncrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Маршрутизатор Windows NCrypt 131795786292790345 0x7ffacc350000 180224 C:\Windows\System32\sspicli.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Security Support Provider Interface 131795786150407736 0x7ffacc620000 176128 C:\Windows\System32\bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795786149962132 0x7ffacc6e0000 61440 C:\Windows\System32\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795786149968291 0x7ffacc6f0000 311296 C:\Windows\System32\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795786149971001 0x7ffacc740000 81920 C:\Windows\System32\profapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Profile Basic API 131795786149965440 0x7ffacc770000 1572864 C:\Windows\System32\gdi32full.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation GDI Client DLL 131795786149952992 0x7ffacc8f0000 1003520 C:\Windows\System32\ucrtbase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795786149956475 0x7ffacc9f0000 434176 C:\Windows\System32\bcryptprimitives.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Cryptographic Primitives Library 131795786149963670 0x7ffacca60000 122880 C:\Windows\System32\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795786149971757 0x7ffacca80000 348160 C:\Windows\System32\wintrust.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation Microsoft Trust Verification APIs 131795786149957278 0x7ffaccae0000 692224 C:\Windows\System32\SHCore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795786149967388 0x7ffaccb90000 7180288 C:\Windows\System32\windows.storage.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API хранения Microsoft WinRT 131795786149943620 0x7ffacd270000 2215936 C:\Windows\System32\KernelBase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795786149960523 0x7ffacd490000 1871872 C:\Windows\System32\crypt32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API32 криптографии 131795786149952242 0x7ffacd710000 638976 C:\Windows\System32\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795786155995189 0x7ffacd7b0000 270336 C:\Windows\System32\cfgmgr32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Configuration Manager DLL 131795786157141835 0x7ffaced20000 782336 C:\Windows\System32\oleaut32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795786149955480 0x7ffacee50000 1183744 C:\Windows\System32\rpcrt4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795786167871961 0x7ffacef80000 32768 C:\Windows\System32\nsi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation NSI User-mode interface DLL 131795786149957990 0x7ffacef90000 647168 C:\Windows\System32\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795786154314206 0x7ffacf030000 651264 C:\Windows\System32\clbcatq.dll 2001.12.10941.16384 (rs1_release.160715-1616) Microsoft Corporation COM+ Configuration Catalog 131795786149942691 0x7ffacf0d0000 704512 C:\Windows\System32\kernel32.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795786322132523 0x7ffacf180000 376832 C:\Windows\System32\Wldap32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Win32 LDAP API DLL 131795786149964615 0x7ffacf770000 212992 C:\Windows\System32\gdi32.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation GDI Client DLL 131795786149966457 0x7ffacf820000 434176 C:\Windows\System32\ws2_32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation 32-разрядная библиотека Windows Socket 2.0 131795786151032932 0x7ffacf890000 188416 C:\Windows\System32\imm32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Multi-User Windows IMM32 API Client DLL 131795786149962916 0x7ffacf8c0000 1462272 C:\Windows\System32\user32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795786149954350 0x7ffacfb30000 2916352 C:\Windows\System32\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795786149969125 0x7ffacfe20000 663552 C:\Windows\System32\advapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795786149970065 0x7ffad01b0000 335872 C:\Windows\System32\shlwapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека небольших программ оболочки 131795786149959703 0x7ffad0210000 364544 C:\Windows\System32\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795786149935879 0x7ffad0270000 1908736 C:\Windows\System32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 168 10424 664 6 00000000:0031f1da 131795786165392877 131795786220626599 0 1 Обязательная метка\Средний обязательный уровень WIN-0UOTFKKVN1S\User DllHost.exe C:\Windows\system32\DllHost.exe C:\Windows\system32\DllHost.exe /Processid:{DC4537C3-CA73-4AC7-9E1D-B2CE27C3A7A6} Microsoft Corporation 10.0.14393.0 (rs1_release.160715-1616) COM Surrogate 131795786165580408 0x7ff7a2280000 36864 C:\Windows\System32\dllhost.exe 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation COM Surrogate 131795786167836628 0x7ffac3b80000 286720 C:\Windows\System32\indexeddbserver.dll 10.0.14393.2189 (rs1_release.180329-1711) Microsoft Corporation IndexedDb host 131795786167391676 0x7ffacaf00000 610304 C:\Windows\System32\uxtheme.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека тем UxTheme (Microsoft) 131795786166847881 0x7ffacc6e0000 61440 C:\Windows\System32\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795786166883283 0x7ffacc770000 1572864 C:\Windows\System32\gdi32full.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation GDI Client DLL 131795786166311839 0x7ffacc8f0000 1003520 C:\Windows\System32\ucrtbase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795786166314864 0x7ffacc9f0000 434176 C:\Windows\System32\bcryptprimitives.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Cryptographic Primitives Library 131795786166867627 0x7ffacca60000 122880 C:\Windows\System32\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795786166302973 0x7ffacd270000 2215936 C:\Windows\System32\KernelBase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795786168206836 0x7ffacd710000 638976 C:\Windows\System32\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795786168205896 0x7ffaced20000 782336 C:\Windows\System32\oleaut32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795786166313892 0x7ffacee50000 1183744 C:\Windows\System32\rpcrt4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795786166848937 0x7ffacef90000 647168 C:\Windows\System32\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795786166854863 0x7ffacf030000 651264 C:\Windows\System32\clbcatq.dll 2001.12.10941.16384 (rs1_release.160715-1616) Microsoft Corporation COM+ Configuration Catalog 131795786166302020 0x7ffacf0d0000 704512 C:\Windows\System32\kernel32.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795786166868439 0x7ffacf770000 212992 C:\Windows\System32\gdi32.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation GDI Client DLL 131795786166896006 0x7ffacf890000 188416 C:\Windows\System32\imm32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Multi-User Windows IMM32 API Client DLL 131795786166866807 0x7ffacf8c0000 1462272 C:\Windows\System32\user32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795786166313074 0x7ffacfb30000 2916352 C:\Windows\System32\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795786167022152 0x7ffad0210000 364544 C:\Windows\System32\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795786165580657 0x7ffad0270000 1908736 C:\Windows\System32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 169 10296 580 4 00000000:000003e7 131795786226372453 0 0 1 Обязательная метка\Обязательный уровень системы NT AUTHORITY\СИСТЕМА svchost.exe C:\Windows\system32\svchost.exe C:\Windows\system32\svchost.exe -k wsappx Microsoft Corporation 10.0.14393.0 (rs1_release.160715-1616) Хост-процесс для служб Windows 131795786226400516 0x7ff718c20000 57344 C:\Windows\System32\svchost.exe 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Хост-процесс для служб Windows 131795786230130846 0x7ffaa6d10000 2297856 C:\Windows\System32\AppXDeploymentServer.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation Библиотека DLL сервера развертывания AppX 131795786231602983 0x7ffabafc0000 700416 C:\Windows\System32\wer.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека сообщений об ошибках Windows 131795786230153246 0x7ffac3270000 40960 C:\Windows\System32\fltLib.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека фильтров 131795786230145294 0x7ffac42a0000 659456 C:\Windows\System32\StateRepository.Core.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation StateRepository Core 131795786231588260 0x7ffac9220000 397312 C:\Windows\System32\wevtapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API настройки и использования событий 131795786230170844 0x7ffacb420000 204800 C:\Windows\System32\ntmarta.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик Windows NT MARTA 131795786230189651 0x7ffacb720000 344064 C:\Windows\System32\mintdh.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Вспомогательная библиотека трассировки событий 131795786230158474 0x7ffacb820000 712704 C:\Windows\System32\tdh.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Вспомогательная библиотека трассировки событий 131795786231611090 0x7ffacb920000 81920 C:\Windows\System32\wldp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Политика блокировки Windows 131795786230164145 0x7ffacbe40000 126976 C:\Windows\System32\userenv.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Userenv 131795786231594114 0x7ffacc620000 176128 C:\Windows\System32\bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795786229616871 0x7ffacc6e0000 61440 C:\Windows\System32\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795786230136201 0x7ffacc740000 81920 C:\Windows\System32\profapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Profile Basic API 131795786230137819 0x7ffacc760000 65536 C:\Windows\System32\msasn1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ASN.1 Runtime APIs 131795786229625340 0x7ffacc770000 1572864 C:\Windows\System32\gdi32full.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation GDI Client DLL 131795786229594723 0x7ffacc8f0000 1003520 C:\Windows\System32\ucrtbase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795786229603946 0x7ffacc9f0000 434176 C:\Windows\System32\bcryptprimitives.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Cryptographic Primitives Library 131795786229623786 0x7ffacca60000 122880 C:\Windows\System32\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795786231611929 0x7ffacca80000 348160 C:\Windows\System32\wintrust.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation Microsoft Trust Verification APIs 131795786230132115 0x7ffaccae0000 692224 C:\Windows\System32\SHCore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795786229584668 0x7ffacd270000 2215936 C:\Windows\System32\KernelBase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795786230136994 0x7ffacd490000 1871872 C:\Windows\System32\crypt32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API32 криптографии 131795786230134090 0x7ffacd710000 638976 C:\Windows\System32\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795786230133328 0x7ffaced20000 782336 C:\Windows\System32\oleaut32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795786229593263 0x7ffacee50000 1183744 C:\Windows\System32\rpcrt4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795786229617635 0x7ffacef90000 647168 C:\Windows\System32\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795786229583632 0x7ffacf0d0000 704512 C:\Windows\System32\kernel32.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795786229624570 0x7ffacf770000 212992 C:\Windows\System32\gdi32.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation GDI Client DLL 131795786229622783 0x7ffacf8c0000 1462272 C:\Windows\System32\user32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795786229602893 0x7ffacfb30000 2916352 C:\Windows\System32\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795786230135123 0x7ffacfe20000 663552 C:\Windows\System32\advapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795786229592437 0x7ffad0210000 364544 C:\Windows\System32\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795786226400757 0x7ffad0270000 1908736 C:\Windows\System32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 170 10876 4048 3 00000000:0031f1da 131795786251236056 0 0 1 Обязательная метка\Средний обязательный уровень WIN-0UOTFKKVN1S\User SearchProtocolHost.exe C:\Windows\system32\SearchProtocolHost.exe "C:\Windows\system32\SearchProtocolHost.exe" Global\UsGthrFltPipeMssGthrPipe_S-1-5-21-3477790013-1571897634-1299942168-1000288_ Global\UsGthrCtrlFltPipeMssGthrPipe_S-1-5-21-3477790013-1571897634-1299942168-1000288 1 -2147483646 "Software\Microsoft\Windows Search" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT; MS Search 4.0 Robot)" "C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc" "DownLevelDaemon" "1" Microsoft Corporation 7.0.14393.2125 (rs1_release.180301-2139) Microsoft Windows Search Protocol Host 131795786251269067 0x7ff77c170000 368640 C:\Windows\System32\SearchProtocolHost.exe 7.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation Microsoft Windows Search Protocol Host 131795786252378762 0x7ffab7a00000 3424256 C:\Windows\System32\tquery.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Запросы Microsoft Tripoli 131795786311861720 0x7ffab7d50000 192512 C:\Windows\System32\mssph.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Обработчик протоколов поиска Microsoft 131795786298907649 0x7ffac2960000 143360 C:\Windows\System32\mssprxy.dll 7.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation Microsoft Search Proxy 131795786252887437 0x7ffac7e40000 28672 C:\Windows\System32\msidle.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Idle Monitor 131795786252245401 0x7ffacc6e0000 61440 C:\Windows\System32\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795786252238173 0x7ffacc6f0000 311296 C:\Windows\System32\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795786252246194 0x7ffacc740000 81920 C:\Windows\System32\profapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Profile Basic API 131795786252240990 0x7ffacc770000 1572864 C:\Windows\System32\gdi32full.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation GDI Client DLL 131795786252230091 0x7ffacc8f0000 1003520 C:\Windows\System32\ucrtbase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795786252232823 0x7ffacc9f0000 434176 C:\Windows\System32\bcryptprimitives.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Cryptographic Primitives Library 131795786252244559 0x7ffacca60000 122880 C:\Windows\System32\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795786252236231 0x7ffaccae0000 692224 C:\Windows\System32\SHCore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795786252237203 0x7ffaccb90000 7180288 C:\Windows\System32\windows.storage.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API хранения Microsoft WinRT 131795786252218352 0x7ffacd270000 2215936 C:\Windows\System32\KernelBase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795786252229401 0x7ffacd710000 638976 C:\Windows\System32\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795786252228473 0x7ffaced20000 782336 C:\Windows\System32\oleaut32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795786252231867 0x7ffacee50000 1183744 C:\Windows\System32\rpcrt4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795786252227168 0x7ffacef90000 647168 C:\Windows\System32\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795786255090404 0x7ffacf030000 651264 C:\Windows\System32\clbcatq.dll 2001.12.10941.16384 (rs1_release.160715-1616) Microsoft Corporation COM+ Configuration Catalog 131795786252217360 0x7ffacf0d0000 704512 C:\Windows\System32\kernel32.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795786252240184 0x7ffacf770000 212992 C:\Windows\System32\gdi32.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation GDI Client DLL 131795786252464763 0x7ffacf890000 188416 C:\Windows\System32\imm32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Multi-User Windows IMM32 API Client DLL 131795786252243819 0x7ffacf8c0000 1462272 C:\Windows\System32\user32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795786252231033 0x7ffacfb30000 2916352 C:\Windows\System32\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795786252234383 0x7ffacfe20000 663552 C:\Windows\System32\advapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795786258307185 0x7ffad0070000 1277952 C:\Windows\System32\ole32.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft OLE для Windows 131795786252239270 0x7ffad01b0000 335872 C:\Windows\System32\shlwapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека небольших программ оболочки 131795786252235203 0x7ffad0210000 364544 C:\Windows\System32\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795786251269513 0x7ffad0270000 1908736 C:\Windows\System32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 171 12864 4048 3 00000000:000003e7 131795786259819446 0 0 1 Обязательная метка\Средний обязательный уровень NT AUTHORITY\СИСТЕМА SearchFilterHost.exe C:\Windows\system32\SearchFilterHost.exe "C:\Windows\system32\SearchFilterHost.exe" 0 708 712 720 8192 716 Microsoft Corporation 7.0.14393.2125 (rs1_release.180301-2139) Microsoft Windows Search Filter Host 131795786260175133 0x7ff6a9f90000 225280 C:\Windows\System32\SearchFilterHost.exe 7.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation Microsoft Windows Search Filter Host 131795786261457443 0x7ffab7a00000 3424256 C:\Windows\System32\tquery.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Запросы Microsoft Tripoli 131795786263344012 0x7ffac2960000 143360 C:\Windows\System32\mssprxy.dll 7.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation Microsoft Search Proxy 131795786261520949 0x7ffacc6e0000 61440 C:\Windows\System32\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795786261484334 0x7ffacc770000 1572864 C:\Windows\System32\gdi32full.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation GDI Client DLL 131795786261436442 0x7ffacc8f0000 1003520 C:\Windows\System32\ucrtbase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795786261439345 0x7ffacc9f0000 434176 C:\Windows\System32\bcryptprimitives.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Cryptographic Primitives Library 131795786261482480 0x7ffacca60000 122880 C:\Windows\System32\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795786263346910 0x7ffaccae0000 692224 C:\Windows\System32\SHCore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795786261425296 0x7ffacd270000 2215936 C:\Windows\System32\KernelBase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795786261435749 0x7ffacd710000 638976 C:\Windows\System32\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795786261434971 0x7ffaced20000 782336 C:\Windows\System32\oleaut32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795786261438373 0x7ffacee50000 1183744 C:\Windows\System32\rpcrt4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795786261433616 0x7ffacef90000 647168 C:\Windows\System32\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795786262531245 0x7ffacf030000 651264 C:\Windows\System32\clbcatq.dll 2001.12.10941.16384 (rs1_release.160715-1616) Microsoft Corporation COM+ Configuration Catalog 131795786261424318 0x7ffacf0d0000 704512 C:\Windows\System32\kernel32.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795786261483472 0x7ffacf770000 212992 C:\Windows\System32\gdi32.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation GDI Client DLL 131795786261480909 0x7ffacf890000 188416 C:\Windows\System32\imm32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Multi-User Windows IMM32 API Client DLL 131795786261481696 0x7ffacf8c0000 1462272 C:\Windows\System32\user32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795786261437569 0x7ffacfb30000 2916352 C:\Windows\System32\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795786261440235 0x7ffacfe20000 663552 C:\Windows\System32\advapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795786261442074 0x7ffad0210000 364544 C:\Windows\System32\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795786260175449 0x7ffad0270000 1908736 C:\Windows\System32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 172 11924 3632 38 00000000:0031f1da 131795786260517979 0 0 1 Обязательная метка\Низкий обязательный уровень WIN-0UOTFKKVN1S\User microsoftedgecp.exe C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\microsoftedgecp.exe "C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\microsoftedgecp.exe" SCODEF:4760 CREDAT:271620 /prefetch:2 Microsoft Corporation 11.00.14393.2189 (rs1_release.180329-1711) Microsoft Edge Content Process 131795786262397181 0x5bbd0000 1101824 C:\Program Files (x86)\360\Total Security\safemon\safemon64.dll 1, 0, 0, 1190 Qihu 360 Software Co., Ltd. 360 Internet Security Internet Protection 131795786262167704 0x5bce0000 28672 C:\Program Files (x86)\360\Total Security\safemon\SafeWrapper.dll 2, 0, 0, 1060 Qihu 360 Software Co., Ltd. 360 Internet Security Internet Protection 131795786260845950 0x7ff6405a0000 106496 C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe 11.00.14393.2189 (rs1_release.180329-1711) Microsoft Corporation Microsoft Edge Content Process 131795786266817230 0x7ffaafb30000 3379200 C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\EdgeContent.dll 11.00.14393.2189 (rs1_release.180329-1711) Microsoft Corporation Microsoft Edge Content 131795786273171730 0x7ffab0430000 1662976 C:\Windows\System32\ieapfltr.dll 11.00.14393.2189 Microsoft Corporation Microsoft SmartScreen Filter 131795786270806162 0x7ffab2c00000 8179712 C:\Windows\System32\Chakra.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft ® Chakra (Private) 131795786270839051 0x7ffab33d0000 258048 C:\Windows\System32\mlang.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL многоязыковой поддержки 131795786270772483 0x7ffab3540000 22740992 C:\Windows\System32\edgehtml.dll 11.00.14393.447 (rs1_release_inmarket.161102-0100) Microsoft Corporation Веб-платформа Microsoft Edge 131795786275446565 0x7ffab5b40000 2527232 C:\Windows\System32\DWrite.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Службы Microsoft DirectX Typography 131795786270072489 0x7ffabaab0000 94208 C:\Windows\System32\profext.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation profext 131795786265786335 0x7ffababf0000 806912 C:\Program Files (x86)\360\Total Security\safemon\spsafe64.dll 1, 0, 0, 1150 Qihu 360 Software Co., Ltd. 360 Internet Security Internet Protection 131795786274051995 0x7ffabb490000 512000 C:\Windows\System32\twinapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation twinapi 131795786272010707 0x7ffabbd10000 65536 C:\Windows\System32\tokenbinding.dll 10.0.14393.1593 (rs1_release.170731-1934) Microsoft Corporation Token Binding Protocol 131795786268295906 0x7ffabcf30000 110592 C:\Windows\System32\mpr.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека маршрутизации для нескольких служб доступа 131795786276659367 0x7ffabe6e0000 561152 C:\Windows\System32\directmanipulation.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Direct Manipulation Component 131795786270998807 0x7ffabf5d0000 2924544 C:\Windows\System32\wininet.dll 11.00.14393.447 (rs1_release_inmarket.161102-0100) Microsoft Corporation Расширения Интернета для Win32 131795786266702928 0x7ffac1090000 126976 C:\Program Files (x86)\360\Total Security\I18N64.dll 1, 0, 0, 1016 Qihu 360 Software Co., Ltd. 360 Total Security 131795786281591660 0x7ffac1470000 704512 C:\Windows\System32\ieproxy.dll 11.00.14393.2007 (rs1_release.171231-1800) Microsoft Corporation IE ActiveX Interface Marshaling Library 131795786273587652 0x7ffac20d0000 110592 C:\Windows\System32\rmclient.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Resource Manager Client 131795786263279818 0x7ffac2700000 98304 C:\Windows\System32\netapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API DLL 131795786274502821 0x7ffac2990000 385024 C:\Windows\System32\ninput.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Pen and Touch Input Component 131795786262999598 0x7ffac2b80000 40960 C:\Windows\System32\version.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Version Checking and File Installation Libraries 131795786273075968 0x7ffac34e0000 1843200 C:\Windows\System32\urlmon.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширения OLE32 для Win32 131795786262124801 0x7ffac3cb0000 2772992 C:\Windows\System32\iertutil.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служебная программа времени выполнения для Internet Explorer 131795786273039671 0x7ffac4000000 274432 C:\Windows\System32\policymanager.dll 10.0.14393.2035 (rs1_release_inmarket.180110-1910) Microsoft Corporation Policy Manager DLL 131795786267816488 0x7ffac4b70000 122880 C:\Windows\System32\eShims.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Edge Compatibility Shims 131795786272372041 0x7ffac66a0000 86016 C:\Windows\System32\OnDemandConnRouteHelper.dll 10.0.14393.351 (rs1_release_inmarket.161014-1755) Microsoft Corporation On Demand Connctiond Route Helper 131795786272398710 0x7ffac69c0000 839680 C:\Windows\System32\winhttp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Службы HTTP Windows 131795786276370397 0x7ffac6ac0000 835584 C:\Windows\System32\Windows.UI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Runtime UI Foundation DLL 131795786274296386 0x7ffac6ed0000 155648 C:\Windows\System32\srpapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL программных интерфейсов (API) поставщика общих ресурсов 131795786275429221 0x7ffac6f50000 5632000 C:\Windows\System32\d2d1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека Microsoft D2D 131795786277431755 0x7ffac7580000 1077248 C:\Windows\System32\MrmCoreR.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Windows MRM 131795786281870494 0x7ffac7720000 1601536 C:\Windows\System32\OneCoreUAPCommonProxyStub.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation OneCoreUAP Common Proxy Stub 131795786276415541 0x7ffac78b0000 65536 C:\Windows\System32\msimtf.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Active IMM Server DLL 131795786275500652 0x7ffac7fc0000 2674688 C:\Windows\System32\d3d10warp.dll 10.0.14393.576 (rs1_release_inmarket.161208-2252) Microsoft Corporation Direct3D 10 Rasterizer 131795786273929786 0x7ffac84f0000 299008 C:\Windows\System32\DataExchange.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation Data exchange 131795786272872598 0x7ffac8810000 45056 C:\Windows\System32\winnsi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Network Store Information RPC interface 131795786273944650 0x7ffac88a0000 2842624 C:\Windows\System32\d3d11.dll 10.0.14393.953 (rs1_release_inmarket.170303-1614) Microsoft Corporation Direct3D 11 Runtime 131795786264741964 0x7ffac90b0000 90112 C:\Windows\System32\wkscli.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Workstation Service Client DLL 131795786270826076 0x7ffac92e0000 1269760 C:\Windows\System32\WinTypes.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL основных типов Windows 131795786277530830 0x7ffaca570000 421888 C:\Windows\System32\BCP47Langs.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation BCP47 Language Classes 131795786273013365 0x7ffaca5e0000 155648 C:\Windows\System32\dwmapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Интерфейс API диспетчера окон рабочего стола (Майкрософт) 131795786276389583 0x7ffaca640000 770048 C:\Windows\System32\CoreMessaging.dll 10.0.14393.0 Microsoft Corporation Microsoft CoreMessaging Dll 131795786273968562 0x7ffaca770000 1380352 C:\Windows\System32\dcomp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft DirectComposition Library 131795786261792794 0x7ffacadf0000 499712 C:\Windows\System32\apphelp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиентская библиотека совместимости приложений 131795786269891965 0x7ffacaf00000 610304 C:\Windows\System32\uxtheme.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека тем UxTheme (Microsoft) 131795786273053460 0x7ffacb140000 593920 C:\Windows\System32\msvcp110_win.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Microsoft® STL110 C++ Runtime Library 131795786267733064 0x7ffacb1e0000 1163264 C:\Windows\System32\twinapi.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation twinapi.appcore 131795786275464402 0x7ffacb3d0000 110592 C:\Windows\System32\ResourcePolicyClient.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Resource Policy Client 131795786267710124 0x7ffacb420000 204800 C:\Windows\System32\ntmarta.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик Windows NT MARTA 131795786273983354 0x7ffacb780000 651264 C:\Windows\System32\dxgi.dll 10.0.14393.953 (rs1_release_inmarket.170303-1614) Microsoft Corporation DirectX Graphics Infrastructure 131795786272383802 0x7ffacbd30000 229376 C:\Windows\System32\IPHLPAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API вспомогательного приложения IP 131795786264728389 0x7ffacbe20000 53248 C:\Windows\System32\netutils.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API Helpers DLL 131795786267723907 0x7ffacbe40000 126976 C:\Windows\System32\userenv.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Userenv 131795786272853268 0x7ffacbfb0000 376832 C:\Windows\System32\mswsock.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширение поставщика службы API Microsoft Windows Sockets 2.0 131795786270815412 0x7ffacc150000 94208 C:\Windows\System32\cryptsp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Cryptographic Service Provider API 131795786271801017 0x7ffacc350000 180224 C:\Windows\System32\sspicli.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Security Support Provider Interface 131795786264754931 0x7ffacc620000 176128 C:\Windows\System32\bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795786262716363 0x7ffacc6e0000 61440 C:\Windows\System32\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795786262713703 0x7ffacc6f0000 311296 C:\Windows\System32\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795786262717336 0x7ffacc740000 81920 C:\Windows\System32\profapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Profile Basic API 131795786262708096 0x7ffacc770000 1572864 C:\Windows\System32\gdi32full.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation GDI Client DLL 131795786262103806 0x7ffacc8f0000 1003520 C:\Windows\System32\ucrtbase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795786262104662 0x7ffacc9f0000 434176 C:\Windows\System32\bcryptprimitives.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Cryptographic Primitives Library 131795786262706569 0x7ffacca60000 122880 C:\Windows\System32\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795786262105460 0x7ffacca80000 348160 C:\Windows\System32\wintrust.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation Microsoft Trust Verification APIs 131795786262102390 0x7ffaccae0000 692224 C:\Windows\System32\SHCore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795786262712493 0x7ffaccb90000 7180288 C:\Windows\System32\windows.storage.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API хранения Microsoft WinRT 131795786261162555 0x7ffacd270000 2215936 C:\Windows\System32\KernelBase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795786262106757 0x7ffacd490000 1871872 C:\Windows\System32\crypt32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API32 криптографии 131795786262720644 0x7ffacd710000 638976 C:\Windows\System32\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795786262711177 0x7ffacd7b0000 270336 C:\Windows\System32\cfgmgr32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Configuration Manager DLL 131795786262709636 0x7ffacd810000 22056960 C:\Windows\System32\shell32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Общая библиотека оболочки Windows 131795786262719660 0x7ffaced20000 782336 C:\Windows\System32\oleaut32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795786262101329 0x7ffacee50000 1183744 C:\Windows\System32\rpcrt4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795786272873296 0x7ffacef80000 32768 C:\Windows\System32\nsi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation NSI User-mode interface DLL 131795786262099282 0x7ffacef90000 647168 C:\Windows\System32\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795786261161608 0x7ffacf0d0000 704512 C:\Windows\System32\kernel32.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795786273020851 0x7ffacf1e0000 1417216 C:\Windows\System32\msctf.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Серверная библиотека MSCTF 131795786262707345 0x7ffacf770000 212992 C:\Windows\System32\gdi32.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation GDI Client DLL 131795786263695399 0x7ffacf820000 434176 C:\Windows\System32\ws2_32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation 32-разрядная библиотека Windows Socket 2.0 131795786264820388 0x7ffacf890000 188416 C:\Windows\System32\imm32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Multi-User Windows IMM32 API Client DLL 131795786262705735 0x7ffacf8c0000 1462272 C:\Windows\System32\user32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795786262103125 0x7ffacfb30000 2916352 C:\Windows\System32\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795786262721852 0x7ffacfe00000 114688 C:\Windows\System32\imagehlp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT Image Helper 131795786262098445 0x7ffacfe20000 663552 C:\Windows\System32\advapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795786262718386 0x7ffad0070000 1277952 C:\Windows\System32\ole32.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft OLE для Windows 131795786262715028 0x7ffad01b0000 335872 C:\Windows\System32\shlwapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека небольших программ оболочки 131795786262100531 0x7ffad0210000 364544 C:\Windows\System32\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795786260846246 0x7ffad0270000 1908736 C:\Windows\System32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 173 6512 664 6 00000000:0031f1da 131795786279544797 131795786332953778 0 1 Обязательная метка\Средний обязательный уровень WIN-0UOTFKKVN1S\User DllHost.exe C:\Windows\system32\DllHost.exe C:\Windows\system32\DllHost.exe /Processid:{DC4537C3-CA73-4AC7-9E1D-B2CE27C3A7A6} Microsoft Corporation 10.0.14393.0 (rs1_release.160715-1616) COM Surrogate 131795786279756626 0x7ff7a2280000 36864 C:\Windows\System32\dllhost.exe 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation COM Surrogate 131795786282280809 0x7ffac3b80000 286720 C:\Windows\System32\indexeddbserver.dll 10.0.14393.2189 (rs1_release.180329-1711) Microsoft Corporation IndexedDb host 131795786281646883 0x7ffacaf00000 610304 C:\Windows\System32\uxtheme.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека тем UxTheme (Microsoft) 131795786279816706 0x7ffacc6e0000 61440 C:\Windows\System32\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795786279836723 0x7ffacc770000 1572864 C:\Windows\System32\gdi32full.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation GDI Client DLL 131795786279791427 0x7ffacc8f0000 1003520 C:\Windows\System32\ucrtbase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795786279794572 0x7ffacc9f0000 434176 C:\Windows\System32\bcryptprimitives.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Cryptographic Primitives Library 131795786279835169 0x7ffacca60000 122880 C:\Windows\System32\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795786279765038 0x7ffacd270000 2215936 C:\Windows\System32\KernelBase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795786282282419 0x7ffacd710000 638976 C:\Windows\System32\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795786282281668 0x7ffaced20000 782336 C:\Windows\System32\oleaut32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795786279793499 0x7ffacee50000 1183744 C:\Windows\System32\rpcrt4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795786279817501 0x7ffacef90000 647168 C:\Windows\System32\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795786279823410 0x7ffacf030000 651264 C:\Windows\System32\clbcatq.dll 2001.12.10941.16384 (rs1_release.160715-1616) Microsoft Corporation COM+ Configuration Catalog 131795786279763827 0x7ffacf0d0000 704512 C:\Windows\System32\kernel32.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795786279835983 0x7ffacf770000 212992 C:\Windows\System32\gdi32.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation GDI Client DLL 131795786279850030 0x7ffacf890000 188416 C:\Windows\System32\imm32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Multi-User Windows IMM32 API Client DLL 131795786279834412 0x7ffacf8c0000 1462272 C:\Windows\System32\user32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795786279792641 0x7ffacfb30000 2916352 C:\Windows\System32\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795786280521004 0x7ffad0210000 364544 C:\Windows\System32\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795786279756867 0x7ffad0270000 1908736 C:\Windows\System32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 174 10416 664 6 00000000:0031f1da 131795786340684007 131795786440769208 0 1 Обязательная метка\Средний обязательный уровень WIN-0UOTFKKVN1S\User OpenWith.exe C:\Windows\system32\OpenWith.exe C:\Windows\system32\OpenWith.exe -Embedding Microsoft Corporation 10.0.14393.0 (rs1_release.160715-1616) Выбор приложения 131795786340697046 0x7ff7cf030000 106496 C:\Windows\System32\OpenWith.exe 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Выбор приложения 131795786364855084 0x7ffaac6e0000 13156352 C:\Windows\System32\ieframe.dll 11.00.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Браузер 131795786385190978 0x7ffab2720000 606208 C:\Windows\System32\duser.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows DirectUser Engine 131795786371582484 0x7ffab33d0000 258048 C:\Windows\System32\mlang.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL многоязыковой поддержки 131795786386435101 0x7ffab5b40000 2527232 C:\Windows\System32\DWrite.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Службы Microsoft DirectX Typography 131795786363702843 0x7ffab8190000 9191424 C:\Windows\System32\twinui.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation TWINUI 131795786387741545 0x7ffabaf70000 270336 C:\Windows\System32\edputil.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служебная программа EDP 131795786375033549 0x7ffabcef0000 102400 C:\Windows\System32\Windows.Shell.ServiceHostBuilder.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows.Shell.ServiceHostBuilder 131795786385172975 0x7ffabdbb0000 1736704 C:\Windows\System32\dui70.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Подсистема DirectUI Windows 131795786398185782 0x7ffabe6e0000 561152 C:\Windows\System32\directmanipulation.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Direct Manipulation Component 131795786371609311 0x7ffabf5d0000 2924544 C:\Windows\System32\wininet.dll 11.00.14393.447 (rs1_release_inmarket.161102-0100) Microsoft Corporation Расширения Интернета для Win32 131795786358721789 0x7ffac0bf0000 3559424 C:\Windows\System32\actxprxy.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation ActiveX Interface Marshaling Library 131795786364045243 0x7ffac23c0000 331776 C:\Windows\System32\OneCoreCommonProxyStub.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation OneCore Common Proxy Stub 131795786365588891 0x7ffac2700000 98304 C:\Windows\System32\netapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API DLL 131795786365601478 0x7ffac2b80000 40960 C:\Windows\System32\version.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Version Checking and File Installation Libraries 131795786372856393 0x7ffac34e0000 1843200 C:\Windows\System32\urlmon.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширения OLE32 для Win32 131795786365574958 0x7ffac3cb0000 2772992 C:\Windows\System32\iertutil.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служебная программа времени выполнения для Internet Explorer 131795786393561736 0x7ffac42a0000 659456 C:\Windows\System32\StateRepository.Core.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation StateRepository Core 131795786393544445 0x7ffac46d0000 4161536 C:\Windows\System32\Windows.StateRepository.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Сервер Windows StateRepository API Server 131795786376167966 0x7ffac5350000 1765376 C:\Windows\System32\Windows.UI.Immersive.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation WINDOWS.UI.IMMERSIVE 131795786396849688 0x7ffac5630000 339968 C:\Windows\System32\thumbcache.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Кэш эскизов Майкрософт 131795786384903236 0x7ffac5ce0000 1744896 C:\Windows\System32\UIAutomationCore.dll 7.2.14393.0 (rs1_release.160715-1616) Microsoft Corporation Основные автоматические компоненты Microsoft UI 131795786395129075 0x7ffac6ac0000 835584 C:\Windows\System32\Windows.UI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Runtime UI Foundation DLL 131795786370388547 0x7ffac6ba0000 49152 C:\Windows\System32\secur32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Security Support Provider Interface 131795786387700172 0x7ffac6bd0000 413696 C:\Windows\System32\oleacc.dll 7.2.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Active Accessibility Core Component 131795786356469026 0x7ffac6c40000 2596864 C:\Windows\WinSxS\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.14393.953_none_42151e83c686086b\comctl32.dll 6.10 (rs1_release_inmarket.170303-1614) Microsoft Corporation Библиотека элементов управления взаимодействия с пользователем 131795786394999236 0x7ffac7580000 1077248 C:\Windows\System32\MrmCoreR.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Windows MRM 131795786386597129 0x7ffac7fc0000 2674688 C:\Windows\System32\d3d10warp.dll 10.0.14393.576 (rs1_release_inmarket.161208-2252) Microsoft Corporation Direct3D 10 Rasterizer 131795786386570997 0x7ffac88a0000 2842624 C:\Windows\System32\d3d11.dll 10.0.14393.953 (rs1_release_inmarket.170303-1614) Microsoft Corporation Direct3D 11 Runtime 131795786365622133 0x7ffac90b0000 90112 C:\Windows\System32\wkscli.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Workstation Service Client DLL 131795786363734173 0x7ffac92e0000 1269760 C:\Windows\System32\WinTypes.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL основных типов Windows 131795786386542039 0x7ffac9ec0000 294912 C:\Windows\System32\UIAnimation.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Animation Manager 131795786371593148 0x7ffaca340000 1593344 C:\Windows\System32\propsys.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Система страниц свойств (Майкрософт) 131795786386485594 0x7ffaca570000 421888 C:\Windows\System32\BCP47Langs.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation BCP47 Language Classes 131795786363723229 0x7ffaca5e0000 155648 C:\Windows\System32\dwmapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Интерфейс API диспетчера окон рабочего стола (Майкрософт) 131795786386649285 0x7ffaca770000 1380352 C:\Windows\System32\dcomp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft DirectComposition Library 131795786390586753 0x7ffacadf0000 499712 C:\Windows\System32\apphelp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиентская библиотека совместимости приложений 131795786357409673 0x7ffacaf00000 610304 C:\Windows\System32\uxtheme.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека тем UxTheme (Microsoft) 131795786391843038 0x7ffacb140000 593920 C:\Windows\System32\msvcp110_win.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Microsoft® STL110 C++ Runtime Library 131795786363713890 0x7ffacb1e0000 1163264 C:\Windows\System32\twinapi.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation twinapi.appcore 131795786391819591 0x7ffacb300000 364544 C:\Windows\System32\VEEventDispatcher.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Visual Element Event dispatcher 131795786386607690 0x7ffacb3d0000 110592 C:\Windows\System32\ResourcePolicyClient.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Resource Policy Client 131795786386581048 0x7ffacb780000 651264 C:\Windows\System32\dxgi.dll 10.0.14393.953 (rs1_release_inmarket.170303-1614) Microsoft Corporation DirectX Graphics Infrastructure 131795786365612937 0x7ffacbe20000 53248 C:\Windows\System32\netutils.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API Helpers DLL 131795786384914246 0x7ffacbe40000 126976 C:\Windows\System32\userenv.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Userenv 131795786371527014 0x7ffacc350000 180224 C:\Windows\System32\sspicli.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Security Support Provider Interface 131795786398123334 0x7ffacc520000 622592 C:\Windows\System32\sxs.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Fusion 2.5 131795786363743640 0x7ffacc620000 176128 C:\Windows\System32\bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795786356442224 0x7ffacc6e0000 61440 C:\Windows\System32\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795786356438658 0x7ffacc6f0000 311296 C:\Windows\System32\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795786356443027 0x7ffacc740000 81920 C:\Windows\System32\profapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Profile Basic API 131795786356431668 0x7ffacc8f0000 1003520 C:\Windows\System32\ucrtbase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795786356434184 0x7ffacc9f0000 434176 C:\Windows\System32\bcryptprimitives.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Cryptographic Primitives Library 131795786356426149 0x7ffacca60000 122880 C:\Windows\System32\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795786356430100 0x7ffaccae0000 692224 C:\Windows\System32\SHCore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795786356437639 0x7ffaccb90000 7180288 C:\Windows\System32\windows.storage.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API хранения Microsoft WinRT 131795786356416679 0x7ffacd270000 2215936 C:\Windows\System32\KernelBase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795786359375904 0x7ffacd710000 638976 C:\Windows\System32\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795786356436375 0x7ffacd7b0000 270336 C:\Windows\System32\cfgmgr32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Configuration Manager DLL 131795786356435328 0x7ffacd810000 22056960 C:\Windows\System32\shell32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Общая библиотека оболочки Windows 131795786359374713 0x7ffaced20000 782336 C:\Windows\System32\oleaut32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795786356433167 0x7ffacee50000 1183744 C:\Windows\System32\rpcrt4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795786356429346 0x7ffacef90000 647168 C:\Windows\System32\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795786357514231 0x7ffacf030000 651264 C:\Windows\System32\clbcatq.dll 2001.12.10941.16384 (rs1_release.160715-1616) Microsoft Corporation COM+ Configuration Catalog 131795786356415696 0x7ffacf0d0000 704512 C:\Windows\System32\kernel32.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795786386382735 0x7ffacf1e0000 1417216 C:\Windows\System32\msctf.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Серверная библиотека MSCTF 131795786356426961 0x7ffacf770000 212992 C:\Windows\System32\gdi32.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation GDI Client DLL 131795786356480704 0x7ffacf890000 188416 C:\Windows\System32\imm32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Multi-User Windows IMM32 API Client DLL 131795786356425185 0x7ffacf8c0000 1462272 C:\Windows\System32\user32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795786356430923 0x7ffacfb30000 2916352 C:\Windows\System32\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795786356439506 0x7ffacfe20000 663552 C:\Windows\System32\advapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795786358091907 0x7ffad0070000 1277952 C:\Windows\System32\ole32.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft OLE для Windows 131795786356441268 0x7ffad01b0000 335872 C:\Windows\System32\shlwapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека небольших программ оболочки 131795786356440265 0x7ffad0210000 364544 C:\Windows\System32\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795786340697298 0x7ffad0270000 1908736 C:\Windows\System32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 175 5516 664 6 00000000:0031f1da 131795786458574348 0 0 0 Обязательная метка\Средний обязательный уровень WIN-0UOTFKKVN1S\User DllHost.exe C:\Windows\SysWOW64\DllHost.exe C:\Windows\SysWOW64\DllHost.exe /Processid:{53362C32-A296-4F2D-A2F8-FD984D08340B} Microsoft Corporation 10.0.14393.0 (rs1_release.160715-1616) COM Surrogate 131795786458625739 0x1c0000 28672 C:\Windows\SysWOW64\dllhost.exe 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation COM Surrogate 131795786458812497 0x28a0000 1462272 C:\Windows\System32\user32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795786458802018 0x5c020000 335872 C:\Windows\System32\wow64.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation Win32 Emulation on NT64 131795786458803135 0x5c080000 487424 C:\Windows\System32\wow64win.dll 10.0.14393.1884 (rs1_release.171101-1233) Microsoft Corporation Wow64 Console and Win32 API Logging 131795786459187647 0x5c100000 40960 C:\Windows\System32\wow64cpu.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation AMD64 Wow64 CPU 131795786464828747 0x60750000 1556480 C:\Program Files (x86)\360\Total Security\safemon\safemon.dll 8, 4, 0, 1420 Qihu 360 Software Co., Ltd. 360 Internet Security Internet Protection 131795786471755242 0x6cda0000 528384 C:\Windows\SysWOW64\sxs.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Fusion 2.5 131795786467292564 0x705e0000 344064 C:\Windows\SysWOW64\oleacc.dll 7.2.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Active Accessibility Core Component 131795786465884399 0x70ca0000 45056 C:\Windows\SysWOW64\netutils.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API Helpers DLL 131795786465896468 0x70cb0000 65536 C:\Windows\SysWOW64\wkscli.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Workstation Service Client DLL 131795786465871513 0x71140000 77824 C:\Windows\SysWOW64\netapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API DLL 131795786475201135 0x72510000 32768 C:\Windows\SysWOW64\oleacchooks.dll 7.2.14393.0 (rs1_release.160715-1616) Microsoft Corporation Active Accessibility Event Hooks Library 131795786464811068 0x74110000 479232 C:\Windows\SysWOW64\uxtheme.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека тем UxTheme (Microsoft) 131795786465908090 0x74190000 110592 C:\Windows\SysWOW64\bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795786465859315 0x746e0000 32768 C:\Windows\SysWOW64\version.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Version Checking and File Installation Libraries 131795786460206704 0x747d0000 40960 C:\Windows\SysWOW64\cryptbase.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base cryptographic API DLL 131795786460205088 0x747e0000 126976 C:\Windows\SysWOW64\sspicli.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Security Support Provider Interface 131795786464695607 0x74800000 151552 C:\Windows\SysWOW64\imm32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Multi-User Windows IMM32 API Client DLL 131795786460203002 0x74910000 2170880 C:\Windows\SysWOW64\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795786461511851 0x74b30000 53248 C:\Windows\SysWOW64\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795786460204080 0x74b60000 790528 C:\Windows\SysWOW64\rpcrt4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795786464171982 0x74c30000 1417216 C:\Windows\SysWOW64\gdi32full.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation GDI Client DLL 131795786465839162 0x74d90000 24576 C:\Windows\SysWOW64\psapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Process Status Helper 131795786461513544 0x74da0000 778240 C:\Windows\SysWOW64\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795786465833280 0x74e60000 557056 C:\Windows\SysWOW64\SHCore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795786461526166 0x74ef0000 540672 C:\Windows\SysWOW64\clbcatq.dll 2001.12.10941.16384 (rs1_release.160715-1616) Microsoft Corporation COM+ Configuration Catalog 131795786465840162 0x74fd0000 405504 C:\Windows\SysWOW64\ws2_32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation 32-разрядная библиотека Windows Socket 2.0 131795786465830817 0x75040000 282624 C:\Windows\SysWOW64\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795786460190404 0x751e0000 1708032 C:\Windows\SysWOW64\KernelBase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795786460954334 0x75390000 266240 C:\Windows\SysWOW64\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795786465573379 0x75560000 487424 C:\Windows\SysWOW64\advapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795786465829008 0x756c0000 5693440 C:\Windows\SysWOW64\windows.storage.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API хранения Microsoft WinRT 131795786465832041 0x75c90000 286720 C:\Windows\SysWOW64\shlwapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека небольших программ оболочки 131795786465577964 0x75ce0000 20811776 C:\Windows\SysWOW64\shell32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Общая библиотека оболочки Windows 131795786464044290 0x774d0000 86016 C:\Windows\SysWOW64\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795786465834482 0x774f0000 61440 C:\Windows\SysWOW64\profapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Profile Basic API 131795786464043149 0x77560000 1437696 C:\Windows\SysWOW64\user32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795786460952558 0x776c0000 368640 C:\Windows\SysWOW64\bcryptprimitives.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation Windows Cryptographic Primitives Library 131795786465838059 0x77780000 503808 C:\Windows\SysWOW64\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795786465836920 0x77800000 606208 C:\Windows\SysWOW64\oleaut32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795786465835671 0x77ac0000 966656 C:\Windows\SysWOW64\ole32.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft OLE для Windows 131795786464045523 0x77bb0000 176128 C:\Windows\SysWOW64\gdi32.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation GDI Client DLL 131795786465579325 0x77cd0000 221184 C:\Windows\SysWOW64\cfgmgr32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Configuration Manager DLL 131795786458626282 0x77d20000 1585152 C:\Windows\SysWOW64\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 131795786458626030 0x7ffad0270000 1908736 C:\Windows\System32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 176 10132 664 6 00000000:0031f1da 131795786476963161 0 0 0 Обязательная метка\Средний обязательный уровень WIN-0UOTFKKVN1S\User DllHost.exe C:\Windows\SysWOW64\DllHost.exe C:\Windows\SysWOW64\DllHost.exe /Processid:{60A90A2F-858D-42AF-8929-82BE9D99E8A1} Microsoft Corporation 10.0.14393.0 (rs1_release.160715-1616) COM Surrogate 131795786477001176 0x1c0000 28672 C:\Windows\SysWOW64\dllhost.exe 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation COM Surrogate 131795786478398121 0x2d30000 1462272 C:\Windows\System32\user32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795786478389241 0x5c020000 335872 C:\Windows\System32\wow64.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation Win32 Emulation on NT64 131795786478390127 0x5c080000 487424 C:\Windows\System32\wow64win.dll 10.0.14393.1884 (rs1_release.171101-1233) Microsoft Corporation Wow64 Console and Win32 API Logging 131795786478400908 0x5c100000 40960 C:\Windows\System32\wow64cpu.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation AMD64 Wow64 CPU 131795786480674311 0x60750000 1556480 C:\Program Files (x86)\360\Total Security\safemon\safemon.dll 8, 4, 0, 1420 Qihu 360 Software Co., Ltd. 360 Internet Security Internet Protection 131795786482887456 0x6c5c0000 1384448 C:\Windows\SysWOW64\UIAutomationCore.dll 7.2.14393.0 (rs1_release.160715-1616) Microsoft Corporation Основные автоматические компоненты Microsoft UI 131795786483144498 0x6cda0000 528384 C:\Windows\SysWOW64\sxs.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Fusion 2.5 131795786480744805 0x70ca0000 45056 C:\Windows\SysWOW64\netutils.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API Helpers DLL 131795786480755984 0x70cb0000 65536 C:\Windows\SysWOW64\wkscli.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Workstation Service Client DLL 131795786480732611 0x71140000 77824 C:\Windows\SysWOW64\netapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API DLL 131795786479600862 0x74110000 479232 C:\Windows\SysWOW64\uxtheme.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека тем UxTheme (Microsoft) 131795786480770108 0x74190000 110592 C:\Windows\SysWOW64\bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795786480721105 0x746e0000 32768 C:\Windows\SysWOW64\version.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Version Checking and File Installation Libraries 131795786482897187 0x746f0000 106496 C:\Windows\SysWOW64\userenv.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Userenv 131795786478425807 0x747d0000 40960 C:\Windows\SysWOW64\cryptbase.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base cryptographic API DLL 131795786478424070 0x747e0000 126976 C:\Windows\SysWOW64\sspicli.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Security Support Provider Interface 131795786479420252 0x74800000 151552 C:\Windows\SysWOW64\imm32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Multi-User Windows IMM32 API Client DLL 131795786478422103 0x74910000 2170880 C:\Windows\SysWOW64\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795786478445339 0x74b30000 53248 C:\Windows\SysWOW64\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795786478423111 0x74b60000 790528 C:\Windows\SysWOW64\rpcrt4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795786479406688 0x74c30000 1417216 C:\Windows\SysWOW64\gdi32full.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation GDI Client DLL 131795786480701271 0x74d90000 24576 C:\Windows\SysWOW64\psapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Process Status Helper 131795786478446378 0x74da0000 778240 C:\Windows\SysWOW64\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795786480695805 0x74e60000 557056 C:\Windows\SysWOW64\SHCore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795786478454213 0x74ef0000 540672 C:\Windows\SysWOW64\clbcatq.dll 2001.12.10941.16384 (rs1_release.160715-1616) Microsoft Corporation COM+ Configuration Catalog 131795786480702108 0x74fd0000 405504 C:\Windows\SysWOW64\ws2_32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation 32-разрядная библиотека Windows Socket 2.0 131795786480693547 0x75040000 282624 C:\Windows\SysWOW64\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795786478411433 0x751e0000 1708032 C:\Windows\SysWOW64\KernelBase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795786478427541 0x75390000 266240 C:\Windows\SysWOW64\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795786480678971 0x75560000 487424 C:\Windows\SysWOW64\advapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795786480692449 0x756c0000 5693440 C:\Windows\SysWOW64\windows.storage.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API хранения Microsoft WinRT 131795786480694624 0x75c90000 286720 C:\Windows\SysWOW64\shlwapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека небольших программ оболочки 131795786480682946 0x75ce0000 20811776 C:\Windows\SysWOW64\shell32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Общая библиотека оболочки Windows 131795786479404153 0x774d0000 86016 C:\Windows\SysWOW64\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795786480696852 0x774f0000 61440 C:\Windows\SysWOW64\profapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Profile Basic API 131795786479403125 0x77560000 1437696 C:\Windows\SysWOW64\user32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795786478426691 0x776c0000 368640 C:\Windows\SysWOW64\bcryptprimitives.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation Windows Cryptographic Primitives Library 131795786480700210 0x77780000 503808 C:\Windows\SysWOW64\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795786480699254 0x77800000 606208 C:\Windows\SysWOW64\oleaut32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795786480697952 0x77ac0000 966656 C:\Windows\SysWOW64\ole32.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft OLE для Windows 131795786479405386 0x77bb0000 176128 C:\Windows\SysWOW64\gdi32.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation GDI Client DLL 131795786480690377 0x77cd0000 221184 C:\Windows\SysWOW64\cfgmgr32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Configuration Manager DLL 131795786477001678 0x77d20000 1585152 C:\Windows\SysWOW64\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 131795786477001417 0x7ffad0270000 1908736 C:\Windows\System32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 177 4460 360 26 00000000:000003e5 131795786483672847 0 0 1 Обязательная метка\Обязательный уровень системы NT AUTHORITY\LOCAL SERVICE AUDIODG.EXE C:\Windows\system32\AUDIODG.EXE C:\Windows\system32\AUDIODG.EXE 0x3c8 Microsoft Corporation 10.0.14393.0 (rs1_release.160715-1616) Изоляция графов аудиоустройств Windows 131795786483737234 0x7ff644450000 389120 C:\Windows\System32\audiodg.exe 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Изоляция графов аудиоустройств Windows 131795786489991459 0x7ffaa61f0000 1802240 C:\Windows\System32\WMALFXGFXDSP.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SysFx DSP 131795786491203172 0x7ffab02d0000 552960 C:\Windows\System32\AudioEng.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Audio Engine 131795786493632244 0x7ffab2210000 438272 C:\Windows\System32\AUDIOKSE.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Audio Ks Endpoint 131795786489315184 0x7ffab4af0000 606208 C:\Windows\System32\AudioSes.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Сеанс обработки звука 131795786491212877 0x7ffac8f90000 45056 C:\Windows\System32\avrt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Среда выполнения мультимедиа в реальном времени 131795786489374175 0x7ffac92e0000 1269760 C:\Windows\System32\WinTypes.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL основных типов Windows 131795786486995361 0x7ffac9480000 462848 C:\Windows\System32\MMDevAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation MMDevice API 131795786487023199 0x7ffaca340000 1593344 C:\Windows\System32\propsys.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Система страниц свойств (Майкрософт) 131795786487012555 0x7ffacb3f0000 163840 C:\Windows\System32\devobj.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Device Information Set DLL 131795786487110854 0x7ffacc6e0000 61440 C:\Windows\System32\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795786489316223 0x7ffacc6f0000 311296 C:\Windows\System32\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795786487130406 0x7ffacc770000 1572864 C:\Windows\System32\gdi32full.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation GDI Client DLL 131795786487013350 0x7ffacc8f0000 1003520 C:\Windows\System32\ucrtbase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795786487027890 0x7ffacc9f0000 434176 C:\Windows\System32\bcryptprimitives.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Cryptographic Primitives Library 131795786487128514 0x7ffacca60000 122880 C:\Windows\System32\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795786487028876 0x7ffaccae0000 692224 C:\Windows\System32\SHCore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795786486974715 0x7ffacd270000 2215936 C:\Windows\System32\KernelBase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795786487025610 0x7ffacd710000 638976 C:\Windows\System32\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795786487014184 0x7ffacd7b0000 270336 C:\Windows\System32\cfgmgr32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Configuration Manager DLL 131795786487024061 0x7ffaced20000 782336 C:\Windows\System32\oleaut32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795786486996225 0x7ffacee50000 1183744 C:\Windows\System32\rpcrt4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795786486983209 0x7ffacef90000 647168 C:\Windows\System32\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795786487161583 0x7ffacf030000 651264 C:\Windows\System32\clbcatq.dll 2001.12.10941.16384 (rs1_release.160715-1616) Microsoft Corporation COM+ Configuration Catalog 131795786486973739 0x7ffacf0d0000 704512 C:\Windows\System32\kernel32.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795786487129567 0x7ffacf770000 212992 C:\Windows\System32\gdi32.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation GDI Client DLL 131795786487127680 0x7ffacf8c0000 1462272 C:\Windows\System32\user32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795786487026948 0x7ffacfb30000 2916352 C:\Windows\System32\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795786486997505 0x7ffad0210000 364544 C:\Windows\System32\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795786483737473 0x7ffad0270000 1908736 C:\Windows\System32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 1 11372 10560 2 00000000:0031f1ab 131795770632346846 0 0 1 Обязательная метка\Высокий обязательный уровень WIN-0UOTFKKVN1S\User Procmon64.exe C:\Users\User\AppData\Local\Temp\Procmon64.exe "C:\Users\User\AppData\Local\Temp\Procmon64.exe" /originalpath "C:\Users\User\Downloads\ProcessMonitor\Procmon.exe" Sysinternals - www.sysinternals.com 3.50 Process Monitor 131795770645297135 0x7ff7ed960000 1224704 C:\Users\User\AppData\Local\Temp\Procmon64.exe 3.50 Sysinternals - www.sysinternals.com Process Monitor 131795770645297135 0x7ffac2b80000 40960 C:\Windows\SYSTEM32\VERSION.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Version Checking and File Installation Libraries 131795770645297135 0x7ffac3270000 40960 C:\Windows\SYSTEM32\FLTLIB.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека фильтров 131795770645297135 0x7ffac5630000 339968 C:\Windows\System32\thumbcache.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Кэш эскизов Майкрософт 131795770645297135 0x7ffac6c40000 2596864 C:\Windows\WinSxS\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.14393.953_none_42151e83c686086b\COMCTL32.dll 6.10 (rs1_release_inmarket.170303-1614) Microsoft Corporation Библиотека элементов управления взаимодействия с пользователем 131795770645297135 0x7ffac84f0000 299008 C:\Windows\system32\dataexchange.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation Data exchange 131795770645297135 0x7ffac88a0000 2842624 C:\Windows\system32\d3d11.dll 10.0.14393.953 (rs1_release_inmarket.170303-1614) Microsoft Corporation Direct3D 11 Runtime 131795770645297135 0x7ffac8df0000 1646592 C:\Windows\SYSTEM32\dbghelp.dll 10.0.14321.1024 (rs1_release.160715-1616) Microsoft Windows Image Helper 131795770645297135 0x7ffac9f50000 1736704 C:\Windows\SYSTEM32\WindowsCodecs.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Microsoft Windows Codecs Library 131795770645297135 0x7ffaca340000 1593344 C:\Windows\SYSTEM32\PROPSYS.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Система страниц свойств (Майкрософт) 131795770645297135 0x7ffaca5e0000 155648 C:\Windows\SYSTEM32\dwmapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Интерфейс API диспетчера окон рабочего стола (Майкрософт) 131795770645297135 0x7ffaca770000 1380352 C:\Windows\system32\dcomp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft DirectComposition Library 131795770645297135 0x7ffacadf0000 499712 C:\Windows\system32\apphelp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиентская библиотека совместимости приложений 131795770645297135 0x7ffacaf00000 610304 C:\Windows\SYSTEM32\uxtheme.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека тем UxTheme (Microsoft) 131795770645297135 0x7ffacb1e0000 1163264 C:\Windows\system32\twinapi.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation twinapi.appcore 131795770645297135 0x7ffacb780000 651264 C:\Windows\system32\dxgi.dll 10.0.14393.953 (rs1_release_inmarket.170303-1614) Microsoft Corporation DirectX Graphics Infrastructure 131795770645297135 0x7ffacc620000 176128 C:\Windows\system32\bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795770645297135 0x7ffacc6e0000 61440 C:\Windows\System32\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795770645297135 0x7ffacc6f0000 311296 C:\Windows\System32\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795770645297135 0x7ffacc740000 81920 C:\Windows\System32\profapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Profile Basic API 131795770645297135 0x7ffacc8f0000 1003520 C:\Windows\System32\ucrtbase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645297135 0x7ffacc9f0000 434176 C:\Windows\System32\bcryptPrimitives.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Cryptographic Primitives Library 131795770645297135 0x7ffacca60000 122880 C:\Windows\System32\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795770645297135 0x7ffaccae0000 692224 C:\Windows\System32\shcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795770645297135 0x7ffaccb90000 7180288 C:\Windows\System32\windows.storage.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API хранения Microsoft WinRT 131795770645297135 0x7ffacd270000 2215936 C:\Windows\System32\KERNELBASE.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645297135 0x7ffacd710000 638976 C:\Windows\System32\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645297135 0x7ffacd7b0000 270336 C:\Windows\System32\cfgmgr32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Configuration Manager DLL 131795770645297135 0x7ffacd810000 22056960 C:\Windows\System32\SHELL32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Общая библиотека оболочки Windows 131795770645297135 0x7ffaced20000 782336 C:\Windows\System32\OLEAUT32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795770645297135 0x7ffacee50000 1183744 C:\Windows\System32\RPCRT4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795770645297135 0x7ffacef90000 647168 C:\Windows\System32\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795770645297135 0x7ffacf030000 651264 C:\Windows\System32\clbcatq.dll 2001.12.10941.16384 (rs1_release.160715-1616) Microsoft Corporation COM+ Configuration Catalog 131795770645297135 0x7ffacf0d0000 704512 C:\Windows\System32\KERNEL32.DLL 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645297135 0x7ffacf1e0000 1417216 C:\Windows\System32\MSCTF.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Серверная библиотека MSCTF 131795770645297135 0x7ffacf770000 212992 C:\Windows\System32\GDI32.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation GDI Client DLL 131795770645297135 0x7ffacf820000 434176 C:\Windows\System32\WS2_32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation 32-разрядная библиотека Windows Socket 2.0 131795770645297135 0x7ffacf890000 188416 C:\Windows\System32\IMM32.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Multi-User Windows IMM32 API Client DLL 131795770645297135 0x7ffacf8c0000 1462272 C:\Windows\System32\USER32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795770645297135 0x7ffacfa30000 1024000 C:\Windows\System32\COMDLG32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека общих диалоговых окон 131795770645297135 0x7ffacfb30000 2916352 C:\Windows\System32\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795770645297135 0x7ffacfe20000 663552 C:\Windows\System32\advapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795770645297135 0x7ffad0070000 1277952 C:\Windows\System32\ole32.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft OLE для Windows 131795770645297135 0x7ffad01b0000 335872 C:\Windows\System32\SHLWAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека небольших программ оболочки 131795770645297135 0x7ffad0210000 364544 C:\Windows\System32\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795770645297135 0x7ffad0270000 1908736 C:\Windows\SYSTEM32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 2 10560 3108 11 00000000:0031f1ab 131795770594566098 0 0 0 Обязательная метка\Высокий обязательный уровень WIN-0UOTFKKVN1S\User Procmon.exe C:\Users\User\Downloads\ProcessMonitor\Procmon.exe "C:\Users\User\Downloads\ProcessMonitor\Procmon.exe" Sysinternals - www.sysinternals.com 3.50 Process Monitor 131795770645662037 0x1000000 2191360 C:\Users\User\Downloads\ProcessMonitor\Procmon.exe 3.50 Sysinternals - www.sysinternals.com Process Monitor 131795770645662037 0x5c020000 335872 C:\Windows\System32\wow64.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation Win32 Emulation on NT64 131795770645662037 0x5c080000 487424 C:\Windows\System32\wow64win.dll 10.0.14393.1884 (rs1_release.171101-1233) Microsoft Corporation Wow64 Console and Win32 API Logging 131795770645662037 0x5c100000 40960 C:\Windows\System32\wow64cpu.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation AMD64 Wow64 CPU 131795770645662037 0x60750000 1556480 C:\Program Files (x86)\360\Total Security\safemon\safemon.dll 8, 4, 0, 1420 Qihu 360 Software Co., Ltd. 360 Internet Security Internet Protection 131795770645662037 0x62530000 65536 C:\Windows\SysWOW64\DEVRTL.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Device Management Run Time Library 131795770645662037 0x627d0000 249856 C:\Windows\SysWOW64\edputil.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служебная программа EDP 131795770645662037 0x67690000 61440 C:\Windows\SysWOW64\sfc_os.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows File Protection 131795770645662037 0x676b0000 32768 C:\Windows\SysWOW64\FLTLIB.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека фильтров 131795770645662037 0x6dd70000 528384 C:\Windows\SysWOW64\RICHED20.dll 5.31.23.1231 Microsoft Corporation Rich Text Edit Control, v3.1 131795770645662037 0x6e710000 335872 C:\Windows\SysWOW64\Bcp47Langs.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation BCP47 Language Classes 131795770645662037 0x70a20000 94208 C:\Windows\SysWOW64\USP10.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Uniscribe Unicode script processor 131795770645662037 0x70ca0000 45056 C:\Windows\SysWOW64\NETUTILS.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API Helpers DLL 131795770645662037 0x70cb0000 65536 C:\Windows\SysWOW64\WKSCLI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Workstation Service Client DLL 131795770645662037 0x70cd0000 49152 C:\Windows\SysWOW64\pcacli.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Program Compatibility Assistant Client Module 131795770645662037 0x70ec0000 200704 C:\Windows\SysWOW64\msls31.dll 3.10.349.0 Microsoft Corporation Microsoft Line Services library file 131795770645662037 0x71140000 77824 C:\Windows\SysWOW64\NETAPI32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API DLL 131795770645662037 0x72520000 24576 C:\Windows\SysWOW64\Riched32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Wrapper Dll for Richedit 1.0 131795770645662037 0x725e0000 2273280 C:\Windows\SysWOW64\iertutil.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служебная программа времени выполнения для Internet Explorer 131795770645662037 0x728e0000 1372160 C:\Windows\SysWOW64\PROPSYS.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Система страниц свойств (Майкрософт) 131795770645662037 0x72b90000 126976 C:\Windows\SysWOW64\dwmapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Интерфейс API диспетчера окон рабочего стола (Майкрософт) 131795770645662037 0x72cc0000 1658880 C:\Windows\SysWOW64\urlmon.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширения OLE32 для Win32 131795770645662037 0x74110000 479232 C:\Windows\SysWOW64\uxtheme.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека тем UxTheme (Microsoft) 131795770645662037 0x74190000 110592 C:\Windows\SysWOW64\bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795770645662037 0x744d0000 2138112 C:\Windows\WinSxS\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.14393.953_none_89c2555adb023171\COMCTL32.dll 6.10 (rs1_release_inmarket.170303-1614) Microsoft Corporation Библиотека элементов управления взаимодействия с пользователем 131795770645662037 0x746e0000 32768 C:\Windows\SysWOW64\VERSION.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Version Checking and File Installation Libraries 131795770645662037 0x746f0000 106496 C:\Windows\SysWOW64\USERENV.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Userenv 131795770645662037 0x74710000 90112 C:\Windows\SysWOW64\MPR.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека маршрутизации для нескольких служб доступа 131795770645662037 0x74730000 598016 C:\Windows\SysWOW64\apphelp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиентская библиотека совместимости приложений 131795770645662037 0x747d0000 40960 C:\Windows\SysWOW64\CRYPTBASE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base cryptographic API DLL 131795770645662037 0x747e0000 126976 C:\Windows\SysWOW64\SspiCli.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Security Support Provider Interface 131795770645662037 0x74800000 151552 C:\Windows\SysWOW64\IMM32.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Multi-User Windows IMM32 API Client DLL 131795770645662037 0x74910000 2170880 C:\Windows\SysWOW64\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795770645662037 0x74b30000 53248 C:\Windows\SysWOW64\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795770645662037 0x74b60000 790528 C:\Windows\SysWOW64\RPCRT4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795770645662037 0x74c30000 1417216 C:\Windows\SysWOW64\gdi32full.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation GDI Client DLL 131795770645662037 0x74d90000 24576 C:\Windows\SysWOW64\PSAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Process Status Helper 131795770645662037 0x74da0000 778240 C:\Windows\SysWOW64\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795770645662037 0x74e60000 557056 C:\Windows\SysWOW64\shcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795770645662037 0x74ef0000 540672 C:\Windows\SysWOW64\clbcatq.dll 2001.12.10941.16384 (rs1_release.160715-1616) Microsoft Corporation COM+ Configuration Catalog 131795770645662037 0x74fd0000 405504 C:\Windows\SysWOW64\WS2_32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation 32-разрядная библиотека Windows Socket 2.0 131795770645662037 0x75040000 282624 C:\Windows\SysWOW64\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795770645662037 0x75090000 1265664 C:\Windows\SysWOW64\MSCTF.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Серверная библиотека MSCTF 131795770645662037 0x751e0000 1708032 C:\Windows\SysWOW64\KERNELBASE.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645662037 0x75390000 266240 C:\Windows\SysWOW64\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795770645662037 0x75560000 487424 C:\Windows\SysWOW64\advapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795770645662037 0x756c0000 5693440 C:\Windows\SysWOW64\windows.storage.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API хранения Microsoft WinRT 131795770645662037 0x75c90000 286720 C:\Windows\SysWOW64\SHLWAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека небольших программ оболочки 131795770645662037 0x75ce0000 20811776 C:\Windows\SysWOW64\SHELL32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Общая библиотека оболочки Windows 131795770645662037 0x770c0000 4239360 C:\Windows\SysWOW64\SETUPAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Setup API 131795770645662037 0x774d0000 86016 C:\Windows\SysWOW64\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795770645662037 0x774f0000 61440 C:\Windows\SysWOW64\profapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Profile Basic API 131795770645662037 0x77560000 1437696 C:\Windows\SysWOW64\USER32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795770645662037 0x776c0000 368640 C:\Windows\SysWOW64\bcryptPrimitives.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation Windows Cryptographic Primitives Library 131795770645662037 0x77780000 503808 C:\Windows\SysWOW64\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645662037 0x77800000 606208 C:\Windows\SysWOW64\OLEAUT32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795770645662037 0x77ac0000 966656 C:\Windows\SysWOW64\ole32.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft OLE для Windows 131795770645662037 0x77bb0000 176128 C:\Windows\SysWOW64\GDI32.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation GDI Client DLL 131795770645662037 0x77be0000 937984 C:\Windows\SysWOW64\COMDLG32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека общих диалоговых окон 131795770645662037 0x77cd0000 221184 C:\Windows\SysWOW64\cfgmgr32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Configuration Manager DLL 131795770645662037 0x77d20000 1585152 C:\Windows\SysWOW64\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 131795770645662037 0x7ffad0270000 1908736 C:\Windows\SYSTEM32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 3 4048 580 4 00000000:000003e7 131765778109600457 0 0 1 Обязательная метка\Обязательный уровень системы NT AUTHORITY\СИСТЕМА SearchIndexer.exe C:\Windows\system32\SearchIndexer.exe C:\Windows\system32\SearchIndexer.exe /Embedding Microsoft Corporation 7.0.14393.0 (rs1_release.160715-1616) Индексатор службы Microsoft Windows Search 131795770645302950 0x7ff63db40000 929792 C:\Windows\system32\SearchIndexer.exe 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Индексатор службы Microsoft Windows Search 131795770645302950 0x7ffab1fd0000 2277376 C:\Windows\System32\msxml3.dll 8.110.14393.1532 Microsoft Corporation MSXML 3.0 131795770645302950 0x7ffab4b90000 655360 C:\Windows\System32\StructuredQuery.dll 7.0.14393.2068 (rs1_release.180209-1727) Microsoft Corporation Structured Query 131795770645302950 0x7ffab7780000 2576384 C:\Windows\system32\MSSRCH.DLL 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Встроенный поиск (Майкрософт) 131795770645302950 0x7ffab7a00000 3424256 C:\Windows\system32\TQUERY.DLL 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Запросы Microsoft Tripoli 131795770645302950 0x7ffabd990000 720896 C:\Windows\system32\ElsLad.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ELS Language Detection 131795770645302950 0x7ffabe4d0000 286720 C:\Windows\System32\MSWB7.dll 10.0.14393.1737 (rs1_release_inmarket.170914-1249) Microsoft Corporation MSWB7 DLL 131795770645302950 0x7ffabf010000 98304 C:\Windows\SYSTEM32\elscore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL ядра платформы Els 131795770645302950 0x7ffac0bf0000 3559424 C:\Windows\System32\ActXPrxy.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation ActiveX Interface Marshaling Library 131795770645302950 0x7ffac2960000 143360 C:\Windows\system32\mssprxy.dll 7.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation Microsoft Search Proxy 131795770645302950 0x7ffac34c0000 81920 C:\Windows\system32\vss_ps.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation Microsoft® Volume Shadow Copy Service proxy/stub 131795770645302950 0x7ffac3840000 3088384 C:\Windows\system32\ESENT.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширяемая подсистема хранения данных ESE для Microsoft(R) Windows(R) 131795770645302950 0x7ffac4000000 274432 C:\Windows\SYSTEM32\policymanager.dll 10.0.14393.2035 (rs1_release_inmarket.180110-1910) Microsoft Corporation Policy Manager DLL 131795770645302950 0x7ffac4e70000 102400 C:\Windows\system32\samcli.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Security Accounts Manager Client DLL 131795770645302950 0x7ffac6410000 98304 C:\Windows\system32\VssTrace.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека трассировки службы теневого копирования тома Microsoft® 131795770645302950 0x7ffac6430000 1581056 C:\Windows\SYSTEM32\vssapi.dll 10.0.14393.953 (rs1_release_inmarket.170303-1614) Microsoft Corporation Microsoft® Volume Shadow Copy Requestor/Writer Services API DLL 131795770645302950 0x7ffac7e40000 28672 C:\Windows\system32\Msidle.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Idle Monitor 131795770645302950 0x7ffac9bb0000 479232 C:\Windows\System32\ES.DLL 2001.12.10941.16384 (rs1_release.160715-1616) Microsoft Corporation COM+ 131795770645302950 0x7ffaca340000 1593344 C:\Windows\system32\propsys.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Система страниц свойств (Майкрософт) 131795770645302950 0x7ffaca4e0000 77824 C:\Windows\SYSTEM32\wtsapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Remote Desktop Session Host Server SDK APIs 131795770645302950 0x7ffaca570000 421888 C:\Windows\system32\Bcp47Langs.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation BCP47 Language Classes 131795770645302950 0x7ffaca610000 143360 C:\Windows\system32\SAMLIB.dll 10.0.14393.82 (rs1_release.160805-1735) Microsoft Corporation SAM Library DLL 131795770645302950 0x7ffacb140000 593920 C:\Windows\system32\msvcp110_win.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Microsoft® STL110 C++ Runtime Library 131795770645302950 0x7ffacb3f0000 163840 C:\Windows\system32\DEVOBJ.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Device Information Set DLL 131795770645302950 0x7ffacb420000 204800 C:\Windows\SYSTEM32\ntmarta.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик Windows NT MARTA 131795770645302950 0x7ffacbe20000 53248 C:\Windows\system32\netutils.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API Helpers DLL 131795770645302950 0x7ffacbe40000 126976 C:\Windows\system32\USERENV.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Userenv 131795770645302950 0x7ffacc170000 45056 C:\Windows\system32\CRYPTBASE.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base cryptographic API DLL 131795770645302950 0x7ffacc350000 180224 C:\Windows\system32\sspicli.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Security Support Provider Interface 131795770645302950 0x7ffacc520000 622592 C:\Windows\SYSTEM32\sxs.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Fusion 2.5 131795770645302950 0x7ffacc5c0000 352256 C:\Windows\system32\WINSTA.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Winstation Library 131795770645302950 0x7ffacc620000 176128 C:\Windows\System32\bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795770645302950 0x7ffacc6e0000 61440 C:\Windows\System32\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795770645302950 0x7ffacc6f0000 311296 C:\Windows\System32\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795770645302950 0x7ffacc740000 81920 C:\Windows\System32\profapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Profile Basic API 131795770645302950 0x7ffacc8f0000 1003520 C:\Windows\System32\ucrtbase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645302950 0x7ffacc9f0000 434176 C:\Windows\System32\bcryptPrimitives.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Cryptographic Primitives Library 131795770645302950 0x7ffacca60000 122880 C:\Windows\System32\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795770645302950 0x7ffaccae0000 692224 C:\Windows\System32\shcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795770645302950 0x7ffaccb90000 7180288 C:\Windows\System32\Windows.Storage.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API хранения Microsoft WinRT 131795770645302950 0x7ffacd270000 2215936 C:\Windows\System32\KERNELBASE.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645302950 0x7ffacd710000 638976 C:\Windows\System32\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645302950 0x7ffacd7b0000 270336 C:\Windows\System32\cfgmgr32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Configuration Manager DLL 131795770645302950 0x7ffaced20000 782336 C:\Windows\System32\OLEAUT32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795770645302950 0x7ffacee50000 1183744 C:\Windows\System32\RPCRT4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795770645302950 0x7ffacef90000 647168 C:\Windows\System32\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795770645302950 0x7ffacf030000 651264 C:\Windows\System32\clbcatq.dll 2001.12.10941.16384 (rs1_release.160715-1616) Microsoft Corporation COM+ Configuration Catalog 131795770645302950 0x7ffacf0d0000 704512 C:\Windows\System32\KERNEL32.DLL 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645302950 0x7ffacf770000 212992 C:\Windows\System32\GDI32.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation GDI Client DLL 131795770645302950 0x7ffacf820000 434176 C:\Windows\System32\WS2_32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation 32-разрядная библиотека Windows Socket 2.0 131795770645302950 0x7ffacf8c0000 1462272 C:\Windows\System32\USER32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795770645302950 0x7ffacfb30000 2916352 C:\Windows\System32\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795770645302950 0x7ffacfe20000 663552 C:\Windows\System32\advapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795770645302950 0x7ffad0070000 1277952 C:\Windows\System32\ole32.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft OLE для Windows 131795770645302950 0x7ffad01b0000 335872 C:\Windows\System32\shlwapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека небольших программ оболочки 131795770645302950 0x7ffad0210000 364544 C:\Windows\System32\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795770645302950 0x7ffad0270000 1908736 C:\Windows\SYSTEM32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 4 580 484 17 00000000:000003e7 131765776275984299 0 0 1 Обязательная метка\Обязательный уровень системы NT AUTHORITY\СИСТЕМА services.exe C:\Windows\system32\services.exe C:\Windows\system32\services.exe Microsoft Corporation 10.0.14393.0 (rs1_release.160715-1616) Приложение служб и контроллеров 6 664 580 4 00000000:000003e7 131765776282506625 0 0 1 Обязательная метка\Обязательный уровень системы NT AUTHORITY\СИСТЕМА svchost.exe C:\Windows\system32\svchost.exe C:\Windows\system32\svchost.exe -k DcomLaunch Microsoft Corporation 10.0.14393.0 (rs1_release.160715-1616) Хост-процесс для служб Windows 131795770645375819 0x7ff718c20000 57344 C:\Windows\system32\svchost.exe 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Хост-процесс для служб Windows 131795770645375819 0x7ffabae40000 110592 C:\Windows\SYSTEM32\capauthz.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API авторизации возможностей 131795770645375819 0x7ffabc510000 90112 C:\Windows\system32\execmodelproxy.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ExecModelProxy 131795770645375819 0x7ffabc570000 94208 C:\Windows\SYSTEM32\licensemanagerapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation "LicenseManagerApi.DYNLINK" 131795770645375819 0x7ffabc6a0000 61440 C:\Windows\system32\SebBackgroundManagerPolicy.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation <d> SEB Background Manager Policy DLL 131795770645375819 0x7ffabc7e0000 73728 C:\Windows\system32\SmartCardBackgroundPolicy.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SmartCardBackgroundPolicy 131795770645375819 0x7ffabc8c0000 61440 C:\Windows\system32\CbtBackgroundManagerPolicy.dll 10.0.14393.479 (rs1_release.161110-2025) Microsoft Corporation <d> CBT Background Manager Policy DLL 131795770645375819 0x7ffabc8d0000 176128 C:\Windows\System32\ACPBackgroundManagerPolicy.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation <d> ACP Background Manager Policy DLL 131795770645375819 0x7ffabc900000 73728 C:\Windows\System32\BackgroundMediaPolicy.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation <d> Background Media Policy DLL 131795770645375819 0x7ffabc920000 270336 C:\Windows\SYSTEM32\execmodelclient.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation ExecModelClient 131795770645375819 0x7ffac0bf0000 3559424 C:\Windows\System32\ActXPrxy.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation ActiveX Interface Marshaling Library 131795770645375819 0x7ffac20d0000 110592 C:\Windows\system32\RmClient.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Resource Manager Client 131795770645375819 0x7ffac23c0000 331776 C:\Windows\System32\OneCoreCommonProxyStub.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation OneCore Common Proxy Stub 131795770645375819 0x7ffac42a0000 659456 C:\Windows\System32\StateRepository.Core.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation StateRepository Core 131795770645375819 0x7ffac4450000 86016 C:\Windows\SYSTEM32\usermgrcli.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation UserMgr API DLL 131795770645375819 0x7ffac46d0000 4161536 C:\Windows\System32\Windows.StateRepository.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Сервер Windows StateRepository API Server 131795770645375819 0x7ffac7720000 1601536 C:\Windows\System32\OneCoreUAPCommonProxyStub.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation OneCoreUAP Common Proxy Stub 131795770645375819 0x7ffaca250000 49152 C:\Windows\SYSTEM32\bi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Background Broker Infrastructure Client Library 131795770645375819 0x7ffaca4e0000 77824 C:\Windows\SYSTEM32\wtsapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Remote Desktop Session Host Server SDK APIs 131795770645375819 0x7ffaca640000 770048 c:\windows\system32\CoreMessaging.dll 10.0.14393.0 Microsoft Corporation Microsoft CoreMessaging Dll 131795770645375819 0x7ffaca740000 135168 c:\windows\system32\DAB.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL брокера активности компьютера 131795770645375819 0x7ffacabd0000 69632 C:\Windows\System32\OnDemandBrokerClient.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation OnDemandBrokerClient 131795770645375819 0x7ffacad70000 278528 c:\windows\system32\BrokerLib.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Broker Base Library 131795770645375819 0x7ffacadf0000 499712 C:\Windows\system32\apphelp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиентская библиотека совместимости приложений 131795770645375819 0x7ffacae70000 409600 c:\windows\system32\systemeventsbrokerserver.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Брокер системных событий 131795770645375819 0x7ffacafc0000 229376 C:\Windows\SYSTEM32\resourcepolicyserver.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Resource Policy RM Service Extension 131795770645375819 0x7ffacb000000 53248 c:\windows\system32\SYSNTFY.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Windows Notifications Dynamic Link Library 131795770645375819 0x7ffacb010000 348160 C:\Windows\SYSTEM32\psmserviceexthost.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Resource Manager PSM Service Extension 131795770645375819 0x7ffacb070000 69632 C:\Windows\SYSTEM32\embeddedmodesvcapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Embedded Mode Service Client DLL 131795770645375819 0x7ffacb140000 593920 c:\windows\system32\msvcp110_win.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Microsoft® STL110 C++ Runtime Library 131795770645375819 0x7ffacb1e0000 1163264 C:\Windows\SYSTEM32\twinapi.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation twinapi.appcore 131795770645375819 0x7ffacb300000 364544 c:\windows\system32\VEEventDispatcher.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Visual Element Event dispatcher 131795770645375819 0x7ffacb390000 225280 c:\windows\system32\psmsrv.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Process State Manager (PSM) Service 131795770645375819 0x7ffacb3d0000 110592 c:\windows\system32\ResourcePolicyClient.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Resource Policy Client 131795770645375819 0x7ffacb3f0000 163840 c:\windows\system32\DEVOBJ.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Device Information Set DLL 131795770645375819 0x7ffacb420000 204800 C:\Windows\SYSTEM32\ntmarta.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик Windows NT MARTA 131795770645375819 0x7ffacb4f0000 794624 c:\windows\system32\bisrv.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служба инфраструктуры фоновых задач 131795770645375819 0x7ffacb5c0000 913408 c:\windows\system32\rpcss.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Distributed COM Services 131795770645375819 0x7ffacb6e0000 49152 C:\Windows\SYSTEM32\HID.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека пользователя HID 131795770645375819 0x7ffacb6f0000 143360 C:\Windows\SYSTEM32\gpapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиентские функции API групповой политики 131795770645375819 0x7ffacb720000 344064 c:\windows\system32\mintdh.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Вспомогательная библиотека трассировки событий 131795770645375819 0x7ffacb780000 651264 c:\windows\system32\dxgi.dll 10.0.14393.953 (rs1_release_inmarket.170303-1614) Microsoft Corporation DirectX Graphics Infrastructure 131795770645375819 0x7ffacb820000 712704 C:\Windows\SYSTEM32\tdh.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Вспомогательная библиотека трассировки событий 131795770645375819 0x7ffacb8d0000 114688 C:\Windows\SYSTEM32\umpoext.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширения службы пользовательского режима питания 131795770645375819 0x7ffacb8f0000 147456 c:\windows\system32\umpo.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служба пользовательского режима питания 131795770645375819 0x7ffacb920000 81920 C:\Windows\SYSTEM32\WLDP.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Политика блокировки Windows 131795770645375819 0x7ffacb940000 131072 c:\windows\system32\umpnpmgr.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Пользовательский режим службы самонастройки (Plug-and-Play) 131795770645375819 0x7ffacbbb0000 208896 C:\Windows\system32\rsaenh.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Enhanced Cryptographic Provider 131795770645375819 0x7ffacbbf0000 40960 C:\Windows\SYSTEM32\DPAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Data Protection API 131795770645375819 0x7ffacbe40000 126976 C:\Windows\System32\Userenv.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Userenv 131795770645375819 0x7ffacc150000 94208 C:\Windows\SYSTEM32\CRYPTSP.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Cryptographic Service Provider API 131795770645375819 0x7ffacc170000 45056 C:\Windows\System32\CRYPTBASE.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base cryptographic API DLL 131795770645375819 0x7ffacc350000 180224 c:\windows\system32\SspiCli.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Security Support Provider Interface 131795770645375819 0x7ffacc500000 102400 c:\windows\system32\EventAggregation.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Event Aggregation User Mode Library 131795770645375819 0x7ffacc5c0000 352256 C:\Windows\SYSTEM32\WINSTA.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Winstation Library 131795770645375819 0x7ffacc620000 176128 c:\windows\system32\bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795770645375819 0x7ffacc6e0000 61440 C:\Windows\System32\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795770645375819 0x7ffacc6f0000 311296 C:\Windows\System32\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795770645375819 0x7ffacc740000 81920 C:\Windows\System32\profapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Profile Basic API 131795770645375819 0x7ffacc760000 65536 C:\Windows\System32\MSASN1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ASN.1 Runtime APIs 131795770645375819 0x7ffacc8f0000 1003520 C:\Windows\System32\ucrtbase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645375819 0x7ffacc9f0000 434176 C:\Windows\System32\bcryptPrimitives.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Cryptographic Primitives Library 131795770645375819 0x7ffacca60000 122880 C:\Windows\System32\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795770645375819 0x7ffacca80000 348160 C:\Windows\System32\WINTRUST.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation Microsoft Trust Verification APIs 131795770645375819 0x7ffaccae0000 692224 C:\Windows\System32\shcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795770645375819 0x7ffaccb90000 7180288 C:\Windows\System32\windows.storage.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API хранения Microsoft WinRT 131795770645375819 0x7ffacd270000 2215936 C:\Windows\System32\KERNELBASE.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645375819 0x7ffacd490000 1871872 C:\Windows\System32\CRYPT32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API32 криптографии 131795770645375819 0x7ffacd710000 638976 C:\Windows\System32\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645375819 0x7ffacd7b0000 270336 C:\Windows\System32\cfgmgr32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Configuration Manager DLL 131795770645375819 0x7ffaced20000 782336 C:\Windows\System32\OLEAUT32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795770645375819 0x7ffacede0000 450560 C:\Windows\System32\coml2.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft COM for Windows 131795770645375819 0x7ffacee50000 1183744 C:\Windows\System32\RPCRT4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795770645375819 0x7ffacef90000 647168 C:\Windows\System32\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795770645375819 0x7ffacf030000 651264 C:\Windows\System32\clbcatq.dll 2001.12.10941.16384 (rs1_release.160715-1616) Microsoft Corporation COM+ Configuration Catalog 131795770645375819 0x7ffacf0d0000 704512 C:\Windows\System32\KERNEL32.DLL 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645375819 0x7ffacf770000 212992 C:\Windows\System32\gdi32.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation GDI Client DLL 131795770645375819 0x7ffacf8c0000 1462272 C:\Windows\System32\USER32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795770645375819 0x7ffacfb30000 2916352 C:\Windows\System32\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795770645375819 0x7ffacfe20000 663552 C:\Windows\System32\advapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795770645375819 0x7ffad0070000 1277952 C:\Windows\System32\ole32.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft OLE для Windows 131795770645375819 0x7ffad01b0000 335872 C:\Windows\System32\shlwapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека небольших программ оболочки 131795770645375819 0x7ffad0210000 364544 C:\Windows\System32\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795770645375819 0x7ffad0270000 1908736 C:\Windows\SYSTEM32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 7 884 580 4 00000000:000003e5 131765776292813936 0 0 1 Обязательная метка\Обязательный уровень системы NT AUTHORITY\LOCAL SERVICE svchost.exe C:\Windows\System32\svchost.exe C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted Microsoft Corporation 10.0.14393.0 (rs1_release.160715-1616) Хост-процесс для служб Windows 131795770645326170 0x7ff718c20000 57344 C:\Windows\System32\svchost.exe 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Хост-процесс для служб Windows 131795770645326170 0x7ffab9230000 143360 C:\Windows\SYSTEM32\bluetoothapis.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Bluetooth Usermode Api host 131795770645326170 0x7ffab9580000 118784 C:\Windows\system32\BthRadioMedia.dll 10.0.14393.351 (rs1_release_inmarket.161014-1755) Microsoft Corporation Bluetooth Radio Media Provider 131795770645326170 0x7ffab95a0000 77824 C:\Windows\system32\WlanRadioManager.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Wlan Radio Manager 131795770645326170 0x7ffaba920000 155648 c:\windows\system32\rmapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Radio Manager API 131795770645326170 0x7ffabae80000 69632 C:\Windows\system32\NfcRadioMedia.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation NFC Radio Media Provider 131795770645326170 0x7ffabb8a0000 81920 C:\Windows\system32\XboxGipRadioManager.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Xbox GIP Radio Manager 131795770645326170 0x7ffabc0e0000 81920 C:\Windows\system32\WwanRadioManager.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Wwan Radio Manager 131795770645326170 0x7ffabc510000 90112 C:\Windows\system32\execmodelproxy.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ExecModelProxy 131795770645326170 0x7ffabe850000 155648 C:\Windows\System32\IDStore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Identity Store 131795770645326170 0x7ffac05f0000 94208 C:\Windows\SYSTEM32\wwapi.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation WWAN API 131795770645326170 0x7ffac0bf0000 3559424 C:\Windows\System32\ActXPrxy.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation ActiveX Interface Marshaling Library 131795770645326170 0x7ffac1fd0000 999424 C:\Windows\system32\wbem\fastprox.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation WMI Custom Marshaller 131795770645326170 0x7ffac21d0000 81920 C:\Windows\system32\wbem\wbemsvc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation WMI 131795770645326170 0x7ffac23c0000 331776 C:\Windows\System32\OneCoreCommonProxyStub.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation OneCore Common Proxy Stub 131795770645326170 0x7ffac41a0000 77824 C:\Windows\System32\fdproxy.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation Function Discovery Proxy Dll 131795770645326170 0x7ffac4220000 520192 C:\Windows\SYSTEM32\wbemcomn.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation WMI 131795770645326170 0x7ffac4450000 86016 C:\Windows\SYSTEM32\usermgrcli.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation UserMgr API DLL 131795770645326170 0x7ffac4470000 65536 C:\Windows\system32\wbem\wbemprox.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation WMI 131795770645326170 0x7ffac4df0000 462848 c:\windows\system32\provsvc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Домашняя группа Windows 131795770645326170 0x7ffac60e0000 221184 C:\Windows\System32\XmlLite.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft XmlLite Library 131795770645326170 0x7ffac6710000 172032 C:\Windows\System32\FunDisc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL обнаружения функции 131795770645326170 0x7ffac69c0000 839680 c:\windows\system32\WINHTTP.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Службы HTTP Windows 131795770645326170 0x7ffac78c0000 163840 C:\Windows\System32\shacct.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Shell Accounts Classes 131795770645326170 0x7ffac79c0000 57344 C:\Windows\System32\npmproxy.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Network List Manager Proxy 131795770645326170 0x7ffac7aa0000 401408 C:\Windows\system32\wlanapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows WLAN AutoConfig Client Side API DLL 131795770645326170 0x7ffac7f80000 208896 c:\windows\system32\wscsvc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служба центра обеспечения безопасности Windows 131795770645326170 0x7ffac83d0000 106496 C:\Windows\SYSTEM32\dhcpcsvc.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служба DHCP-клиента 131795770645326170 0x7ffac83f0000 90112 C:\Windows\SYSTEM32\dhcpcsvc6.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиент DHCPv6 131795770645326170 0x7ffac8490000 294912 C:\Windows\System32\dhcpcore6.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиент DHCPv6 131795770645326170 0x7ffac8810000 45056 C:\Windows\SYSTEM32\WINNSI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Network Store Information RPC interface 131795770645326170 0x7ffac8c90000 385024 c:\windows\system32\dhcpcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служба DHCP-клиента 131795770645326170 0x7ffac8df0000 1646592 c:\windows\system32\dbghelp.dll 10.0.14321.1024 (rs1_release.160715-1616) Microsoft Windows Image Helper 131795770645326170 0x7ffac9c30000 1732608 c:\windows\system32\wevtsvc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служба протоколирования событий 131795770645326170 0x7ffaca250000 49152 C:\Windows\SYSTEM32\bi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Background Broker Infrastructure Client Library 131795770645326170 0x7ffaca2a0000 192512 c:\windows\system32\timebrokerserver.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Брокер событий времени 131795770645326170 0x7ffaca330000 36864 c:\windows\system32\nrpsrv.DLL 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Name Resolution Proxy (NRP) RPC interface 131795770645326170 0x7ffaca340000 1593344 C:\Windows\system32\propsys.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Система страниц свойств (Майкрософт) 131795770645326170 0x7ffaca4d0000 53248 c:\windows\system32\lmhsvc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL служб транспорта TCPIP NetBios 131795770645326170 0x7ffaca4e0000 77824 C:\Windows\SYSTEM32\wtsapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Remote Desktop Session Host Server SDK APIs 131795770645326170 0x7ffaca610000 143360 C:\Windows\System32\SAMLIB.dll 10.0.14393.82 (rs1_release.160805-1735) Microsoft Corporation SAM Library DLL 131795770645326170 0x7ffacad70000 278528 c:\windows\system32\BrokerLib.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Broker Base Library 131795770645326170 0x7ffacb1e0000 1163264 C:\Windows\System32\twinapi.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation twinapi.appcore 131795770645326170 0x7ffacb360000 176128 C:\Windows\SYSTEM32\fwbase.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Firewall Base DLL 131795770645326170 0x7ffacb3f0000 163840 c:\windows\system32\DEVOBJ.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Device Information Set DLL 131795770645326170 0x7ffacb420000 204800 C:\Windows\SYSTEM32\ntmarta.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик Windows NT MARTA 131795770645326170 0x7ffacb460000 548864 C:\Windows\SYSTEM32\firewallapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API брандмауэра Windows 131795770645326170 0x7ffacb6e0000 49152 c:\windows\system32\HID.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека пользователя HID 131795770645326170 0x7ffacb6f0000 143360 C:\Windows\SYSTEM32\gpapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиентские функции API групповой политики 131795770645326170 0x7ffacb920000 81920 C:\Windows\SYSTEM32\WLDP.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Политика блокировки Windows 131795770645326170 0x7ffacbbb0000 208896 C:\Windows\system32\rsaenh.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Enhanced Cryptographic Provider 131795770645326170 0x7ffacbd30000 229376 C:\Windows\SYSTEM32\IPHLPAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API вспомогательного приложения IP 131795770645326170 0x7ffacbd70000 659456 C:\Windows\SYSTEM32\DNSAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Динамическая библиотека API DNS-клиента 131795770645326170 0x7ffacbe20000 53248 c:\windows\system32\netutils.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API Helpers DLL 131795770645326170 0x7ffacbe40000 126976 c:\windows\system32\USERENV.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Userenv 131795770645326170 0x7ffacbfb0000 376832 C:\Windows\system32\mswsock.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширение поставщика службы API Microsoft Windows Sockets 2.0 131795770645326170 0x7ffacc150000 94208 C:\Windows\SYSTEM32\CRYPTSP.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Cryptographic Service Provider API 131795770645326170 0x7ffacc170000 45056 C:\Windows\SYSTEM32\CRYPTBASE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base cryptographic API DLL 131795770645326170 0x7ffacc350000 180224 C:\Windows\System32\sspicli.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Security Support Provider Interface 131795770645326170 0x7ffacc5c0000 352256 C:\Windows\SYSTEM32\WINSTA.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Winstation Library 131795770645326170 0x7ffacc620000 176128 c:\windows\system32\bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795770645326170 0x7ffacc6e0000 61440 C:\Windows\System32\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795770645326170 0x7ffacc6f0000 311296 C:\Windows\System32\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795770645326170 0x7ffacc740000 81920 C:\Windows\System32\profapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Profile Basic API 131795770645326170 0x7ffacc760000 65536 C:\Windows\System32\MSASN1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ASN.1 Runtime APIs 131795770645326170 0x7ffacc8f0000 1003520 C:\Windows\System32\ucrtbase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645326170 0x7ffacc9f0000 434176 C:\Windows\System32\bcryptPrimitives.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Cryptographic Primitives Library 131795770645326170 0x7ffacca60000 122880 C:\Windows\System32\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795770645326170 0x7ffacca80000 348160 C:\Windows\System32\WINTRUST.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation Microsoft Trust Verification APIs 131795770645326170 0x7ffaccae0000 692224 C:\Windows\System32\shcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795770645326170 0x7ffacd270000 2215936 C:\Windows\System32\KERNELBASE.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645326170 0x7ffacd490000 1871872 C:\Windows\System32\CRYPT32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API32 криптографии 131795770645326170 0x7ffacd710000 638976 C:\Windows\System32\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645326170 0x7ffacd7b0000 270336 C:\Windows\System32\cfgmgr32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Configuration Manager DLL 131795770645326170 0x7ffaced20000 782336 C:\Windows\System32\OLEAUT32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795770645326170 0x7ffacede0000 450560 C:\Windows\System32\coml2.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft COM for Windows 131795770645326170 0x7ffacee50000 1183744 C:\Windows\System32\RPCRT4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795770645326170 0x7ffacef80000 32768 C:\Windows\System32\NSI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation NSI User-mode interface DLL 131795770645326170 0x7ffacef90000 647168 C:\Windows\System32\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795770645326170 0x7ffacf030000 651264 C:\Windows\System32\clbcatq.dll 2001.12.10941.16384 (rs1_release.160715-1616) Microsoft Corporation COM+ Configuration Catalog 131795770645326170 0x7ffacf0d0000 704512 C:\Windows\System32\KERNEL32.DLL 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645326170 0x7ffacf770000 212992 C:\Windows\System32\GDI32.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation GDI Client DLL 131795770645326170 0x7ffacf820000 434176 C:\Windows\System32\WS2_32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation 32-разрядная библиотека Windows Socket 2.0 131795770645326170 0x7ffacf8c0000 1462272 C:\Windows\System32\user32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795770645326170 0x7ffacfb30000 2916352 C:\Windows\System32\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795770645326170 0x7ffacfe00000 114688 C:\Windows\System32\imagehlp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT Image Helper 131795770645326170 0x7ffacfe20000 663552 C:\Windows\System32\ADVAPI32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795770645326170 0x7ffad0070000 1277952 C:\Windows\System32\ole32.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft OLE для Windows 131795770645326170 0x7ffad0210000 364544 C:\Windows\System32\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795770645326170 0x7ffad0270000 1908736 C:\Windows\SYSTEM32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 8 0 0 8 00000000:00000000 131765775874898587 0 4294967295 1 Idle Idle 131795770645349496 0x7ff7ed960000 1224704 C:\Users\User\AppData\Local\Temp\Procmon64.exe 3.50 Sysinternals - www.sysinternals.com Process Monitor 131795770645349496 0x7ffac1fd0000 999424 C:\Windows\system32\wbem\fastprox.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation WMI Custom Marshaller 131795770645349496 0x7ffac21d0000 81920 C:\Windows\system32\wbem\wbemsvc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation WMI 131795770645349496 0x7ffac2b80000 40960 C:\Windows\SYSTEM32\VERSION.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Version Checking and File Installation Libraries 131795770645349496 0x7ffac3270000 40960 C:\Windows\SYSTEM32\FLTLIB.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека фильтров 131795770645349496 0x7ffac4220000 520192 C:\Windows\SYSTEM32\wbemcomn.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation WMI 131795770645349496 0x7ffac4470000 65536 C:\Windows\system32\wbem\wbemprox.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation WMI 131795770645349496 0x7ffac5630000 339968 C:\Windows\System32\thumbcache.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Кэш эскизов Майкрософт 131795770645349496 0x7ffac6c40000 2596864 C:\Windows\WinSxS\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.14393.953_none_42151e83c686086b\COMCTL32.dll 6.10 (rs1_release_inmarket.170303-1614) Microsoft Corporation Библиотека элементов управления взаимодействия с пользователем 131795770645349496 0x7ffac84f0000 299008 C:\Windows\system32\dataexchange.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation Data exchange 131795770645349496 0x7ffac88a0000 2842624 C:\Windows\system32\d3d11.dll 10.0.14393.953 (rs1_release_inmarket.170303-1614) Microsoft Corporation Direct3D 11 Runtime 131795770645349496 0x7ffac8df0000 1646592 C:\Windows\SYSTEM32\dbghelp.dll 10.0.14321.1024 (rs1_release.160715-1616) Microsoft Windows Image Helper 131795770645349496 0x7ffac9f50000 1736704 C:\Windows\SYSTEM32\WindowsCodecs.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Microsoft Windows Codecs Library 131795770645349496 0x7ffaca340000 1593344 C:\Windows\SYSTEM32\PROPSYS.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Система страниц свойств (Майкрософт) 131795770645349496 0x7ffaca5e0000 155648 C:\Windows\SYSTEM32\dwmapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Интерфейс API диспетчера окон рабочего стола (Майкрософт) 131795770645349496 0x7ffaca770000 1380352 C:\Windows\system32\dcomp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft DirectComposition Library 131795770645349496 0x7ffacadf0000 499712 C:\Windows\system32\apphelp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиентская библиотека совместимости приложений 131795770645349496 0x7ffacaf00000 610304 C:\Windows\SYSTEM32\uxtheme.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека тем UxTheme (Microsoft) 131795770645349496 0x7ffacb1e0000 1163264 C:\Windows\system32\twinapi.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation twinapi.appcore 131795770645349496 0x7ffacb780000 651264 C:\Windows\system32\dxgi.dll 10.0.14393.953 (rs1_release_inmarket.170303-1614) Microsoft Corporation DirectX Graphics Infrastructure 131795770645349496 0x7ffacc620000 176128 C:\Windows\system32\bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795770645349496 0x7ffacc6e0000 61440 C:\Windows\System32\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795770645349496 0x7ffacc6f0000 311296 C:\Windows\System32\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795770645349496 0x7ffacc740000 81920 C:\Windows\System32\profapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Profile Basic API 131795770645349496 0x7ffacc8f0000 1003520 C:\Windows\System32\ucrtbase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645349496 0x7ffacc9f0000 434176 C:\Windows\System32\bcryptPrimitives.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Cryptographic Primitives Library 131795770645349496 0x7ffacca60000 122880 C:\Windows\System32\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795770645349496 0x7ffaccae0000 692224 C:\Windows\System32\shcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795770645349496 0x7ffaccb90000 7180288 C:\Windows\System32\windows.storage.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API хранения Microsoft WinRT 131795770645349496 0x7ffacd270000 2215936 C:\Windows\System32\KERNELBASE.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645349496 0x7ffacd710000 638976 C:\Windows\System32\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645349496 0x7ffacd7b0000 270336 C:\Windows\System32\cfgmgr32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Configuration Manager DLL 131795770645349496 0x7ffacd810000 22056960 C:\Windows\System32\SHELL32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Общая библиотека оболочки Windows 131795770645349496 0x7ffaced20000 782336 C:\Windows\System32\OLEAUT32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795770645349496 0x7ffacee50000 1183744 C:\Windows\System32\RPCRT4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795770645349496 0x7ffacef90000 647168 C:\Windows\System32\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795770645349496 0x7ffacf030000 651264 C:\Windows\System32\clbcatq.dll 2001.12.10941.16384 (rs1_release.160715-1616) Microsoft Corporation COM+ Configuration Catalog 131795770645349496 0x7ffacf0d0000 704512 C:\Windows\System32\KERNEL32.DLL 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645349496 0x7ffacf1e0000 1417216 C:\Windows\System32\MSCTF.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Серверная библиотека MSCTF 131795770645349496 0x7ffacf770000 212992 C:\Windows\System32\GDI32.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation GDI Client DLL 131795770645349496 0x7ffacf820000 434176 C:\Windows\System32\WS2_32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation 32-разрядная библиотека Windows Socket 2.0 131795770645349496 0x7ffacf890000 188416 C:\Windows\System32\IMM32.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Multi-User Windows IMM32 API Client DLL 131795770645349496 0x7ffacf8c0000 1462272 C:\Windows\System32\USER32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795770645349496 0x7ffacfa30000 1024000 C:\Windows\System32\COMDLG32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека общих диалоговых окон 131795770645349496 0x7ffacfb30000 2916352 C:\Windows\System32\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795770645349496 0x7ffacfe20000 663552 C:\Windows\System32\advapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795770645349496 0x7ffad0070000 1277952 C:\Windows\System32\ole32.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft OLE для Windows 131795770645349496 0x7ffad01b0000 335872 C:\Windows\System32\SHLWAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека небольших программ оболочки 131795770645349496 0x7ffad0210000 364544 C:\Windows\System32\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795770645349496 0x7ffad0270000 1908736 C:\Windows\SYSTEM32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 9 4 0 8 00000000:000003e7 131765775907178738 0 0 1 Обязательная метка\Обязательный уровень системы NT AUTHORITY\СИСТЕМА System System 131795770645349720 0xffffc709b6e00000 3698688 C:\Windows\System32\win32kfull.sys 10.0.14393.2189 (rs1_release.180329-1711) Microsoft Corporation Full/Desktop Win32k Kernel Driver 131795770645349720 0xffffc709b7190000 1576960 C:\Windows\System32\win32kbase.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Базовый драйвер ядра Win32k 131795770645349720 0xffffc709b7320000 40960 C:\Windows\System32\TSDDD.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Framebuffer Display Driver 131795770645349720 0xffffc709b7330000 258048 C:\Windows\System32\cdd.dll 10.0.14393.2189 (rs1_release.180329-1711) Microsoft Corporation Canonical Display Driver 131795770645349720 0xffffc709b74a0000 241664 C:\Windows\System32\win32k.sys 10.0.14393.594 (rs1_release_inmarket.161213-1754) Microsoft Corporation Full/Desktop Multi-User Win32 Driver 131795770645349720 0xfffff80278934000 45056 C:\Windows\system32\kd.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Local Kernel Debugger 131795770645349720 0xfffff80279678000 8527872 C:\Windows\system32\ntoskrnl.exe 10.0.14393.2189 (rs1_release.180329-1711) Microsoft Corporation NT Kernel & System 131795770645349720 0xfffff80d92e00000 163840 C:\Windows\System32\drivers\ksecdd.sys 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Kernel Security Support Provider Interface 131795770645349720 0xfffff80d92ee0000 53248 C:\Windows\System32\drivers\cmimcext.sys 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation Kernel Configuration Manager Initial Configuration Extension Host Export Driver 131795770645349720 0xfffff80d92ef0000 49152 C:\Windows\System32\drivers\ntosext.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation NTOS extension host driver 131795770645349720 0xfffff80d92fa0000 647168 C:\Windows\System32\drivers\cng.sys 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Kernel Cryptography, Next Generation 131795770645349720 0xfffff80d93040000 868352 C:\Windows\system32\drivers\Wdf01000.sys 1.19.14393.0 (rs1_release.160715-1616) Microsoft Corporation Среда выполнения платформы драйвера режима ядра 131795770645349720 0xfffff80d93120000 77824 C:\Windows\system32\drivers\WDFLDR.SYS 1.19.14393.0 (rs1_release.160715-1616) Microsoft Corporation Kernel Mode Driver Framework Loader 131795770645349720 0xfffff80d93140000 143360 C:\Windows\System32\Drivers\acpiex.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ACPIEx Driver 131795770645349720 0xfffff80d93170000 57344 C:\Windows\System32\Drivers\WppRecorder.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation WPP Trace Recorder 131795770645349720 0xfffff80d93180000 733184 C:\Windows\System32\drivers\ACPI.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ACPI драйвер для NT 131795770645349720 0xfffff80d93240000 49152 C:\Windows\System32\drivers\WMILIB.SYS 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation WMILIB WMI support library Dll 131795770645349720 0xfffff80d93260000 69632 C:\Windows\System32\drivers\intelpep.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Intel Power Engine Plugin 131795770645349720 0xfffff80d93280000 126976 C:\Windows\system32\drivers\WindowsTrustedRT.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Trusted Runtime Interface Driver 131795770645349720 0xfffff80d932a0000 45056 C:\Windows\System32\drivers\WindowsTrustedRTProxy.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Trusted Runtime Service Proxy Driver 131795770645349720 0xfffff80d932b0000 73728 C:\Windows\System32\drivers\pcw.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Performance Counters for Windows Driver 131795770645349720 0xfffff80d932d0000 45056 C:\Windows\System32\drivers\msisadrv.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ISA Driver 131795770645349720 0xfffff80d932e0000 45056 C:\Windows\System32\drivers\isapnp.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Драйвер шины PNP ISA 131795770645349720 0xfffff80d932f0000 356352 C:\Windows\System32\drivers\pci.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation NT Plug and Play PCI-перечислитель 131795770645349720 0xfffff80d93350000 73728 C:\Windows\System32\drivers\vdrvroot.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Virtual Drive Root Enumerator 131795770645349720 0xfffff80d93370000 135168 C:\Windows\system32\drivers\pdc.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Power Dependency Coordinator Driver 131795770645349720 0xfffff80d933a0000 102400 C:\Windows\system32\drivers\CEA.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Event Aggregation Kernel Mode Library 131795770645349720 0xfffff80d933c0000 147456 C:\Windows\System32\drivers\partmgr.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Partition driver 131795770645349720 0xfffff80d933f0000 163840 C:\Windows\System32\drivers\nvraid.sys 10.6.0.23 (PART_L3.131021-1012) NVIDIA Corporation NVIDIA® nForce(TM) RAID Driver 131795770645349720 0xfffff80d93420000 401408 C:\Windows\System32\drivers\CLASSPNP.SYS 10.0.14393.953 (rs1_release_inmarket.170303-1614) Microsoft Corporation SCSI Class System Dll 131795770645349720 0xfffff80d93490000 139264 C:\Windows\System32\drivers\vmbus.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Дочерний драйвер шины виртуальной машины Microsoft Hyper-V 131795770645349720 0xfffff80d934c0000 1212416 C:\Windows\System32\drivers\NDIS.SYS 10.0.14393.953 (rs1_release_inmarket.170303-1614) Microsoft Corporation NDIS (Network Driver Interface Specification) 131795770645349720 0xfffff80d935f0000 495616 C:\Windows\System32\drivers\NETIO.SYS 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Network I/O Subsystem 131795770645349720 0xfffff80d93670000 135168 C:\Windows\System32\drivers\hvsocket.sys 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Microsoft Hyper-V Socket Provider 131795770645349720 0xfffff80d936a0000 98304 C:\Windows\System32\drivers\vmbkmcl.sys 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Hyper-V VMBus KMCL 131795770645349720 0xfffff80d936c0000 57344 C:\Windows\System32\drivers\winhv.sys 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Windows Hypervisor Interface Driver 131795770645349720 0xfffff80d936d0000 40960 C:\Windows\System32\drivers\pciide.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Generic PCI IDE Bus Driver 131795770645349720 0xfffff80d936e0000 69632 C:\Windows\System32\drivers\PCIIDEX.SYS 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation PCI IDE Bus Driver Extension 131795770645349720 0xfffff80d93700000 593920 C:\Windows\System32\drivers\spaceport.sys 10.0.14393.1914 (rs1_release_inmarket.171117-1700) Microsoft Corporation Storage Spaces Driver 131795770645349720 0xfffff80d937a0000 40960 C:\Windows\System32\drivers\intelide.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Intel PCI IDE Driver 131795770645349720 0xfffff80d937b0000 98304 C:\Windows\System32\drivers\volmgr.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Драйвер диспетчера томов 131795770645349720 0xfffff80d937d0000 385024 C:\Windows\System32\drivers\volmgrx.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Драйвер расширения диспетчера томов 131795770645349720 0xfffff80d93830000 122880 C:\Windows\System32\drivers\mountmgr.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Диспетчер точек подключения 131795770645349720 0xfffff80d93850000 172032 C:\Windows\System32\drivers\nvstor.sys 10.6.0.23 (PART_L3.131021-1012) NVIDIA Corporation NVIDIA® nForce(TM) Sata Performance Driver 131795770645349720 0xfffff80d93880000 532480 C:\Windows\System32\drivers\storport.sys 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft Storage Port Driver 131795770645349720 0xfffff80d93910000 49152 C:\Windows\System32\drivers\atapi.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ATAPI IDE Miniport Driver 131795770645349720 0xfffff80d93920000 217088 C:\Windows\System32\drivers\ataport.SYS 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ATAPI Driver Extension 131795770645349720 0xfffff80d93960000 147456 C:\Windows\System32\drivers\storahci.sys 10.0.14393.2068 (rs1_release.180209-1727) Microsoft Corporation MS AHCI Storport Miniport Driver 131795770645349720 0xfffff80d93990000 102400 C:\Windows\System32\drivers\stornvme.sys 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation Microsoft NVM Express Storport Miniport Driver 131795770645349720 0xfffff80d939b0000 114688 C:\Windows\System32\drivers\EhStorClass.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Enhanced Storage Class driver for IEEE 1667 devices 131795770645349720 0xfffff80d939d0000 102400 C:\Windows\System32\drivers\fileinfo.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation FileInfo Filter Driver 131795770645349720 0xfffff80d939f0000 229376 C:\Windows\System32\Drivers\Wof.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Фильтр оверлея Windows 131795770645349720 0xfffff80d93a80000 2297856 C:\Windows\System32\Drivers\NTFS.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Драйвер файловой системы NT 131795770645349720 0xfffff80d93cc0000 57344 C:\Windows\System32\drivers\storvsc.sys 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Storage VSC Driver 131795770645349720 0xfffff80d93cd0000 53248 C:\Windows\System32\Drivers\Fs_Rec.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation File System Recognizer Driver 131795770645349720 0xfffff80d93d10000 483328 C:\Windows\System32\drivers\USBPORT.SYS 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Драйвер порта USB 1.1 и 2.0 131795770645349720 0xfffff80d93db0000 581632 C:\Windows\system32\mcupdate_GenuineIntel.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Intel Microcode Update Library 131795770645349720 0xfffff80d93e50000 405504 C:\Windows\System32\drivers\CLFS.SYS 10.0.14393.2068 (rs1_release.180209-1727) Microsoft Corporation Common Log File System Driver 131795770645349720 0xfffff80d93ec0000 151552 C:\Windows\System32\drivers\tm.sys 10.0.14393.2189 (rs1_release.180329-1711) Microsoft Corporation Kernel Transaction Manager Driver 131795770645349720 0xfffff80d93ef0000 94208 C:\Windows\system32\PSHED.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Драйвер аппаратных ошибок, специфичных для платформы 131795770645349720 0xfffff80d93f10000 49152 C:\Windows\system32\BOOTVID.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation VGA Boot Driver 131795770645349720 0xfffff80d93f20000 401408 C:\Windows\System32\drivers\FLTMGR.SYS 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Диспетчер фильтров файловых систем Майкрософт 131795770645349720 0xfffff80d93f90000 380928 C:\Windows\System32\drivers\msrpc.sys 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation Kernel Remote Procedure Call Provider 131795770645349720 0xfffff80d94000000 430080 C:\Windows\System32\drivers\fwpkclnt.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation FWP/IPsec Kernel-Mode API 131795770645349720 0xfffff80d94070000 172032 C:\Windows\System32\drivers\wfplwfs.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation WFP NDIS 6.30 Lightweight Filter Driver 131795770645349720 0xfffff80d940b0000 659456 C:\Windows\System32\DRIVERS\fvevol.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation BitLocker Drive Encryption Driver 131795770645349720 0xfffff80d94160000 45056 C:\Windows\System32\drivers\volume.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Volume driver 131795770645349720 0xfffff80d94170000 409600 C:\Windows\System32\drivers\volsnap.sys 10.0.14393.1794 (rs1_release.171008-1615) Microsoft Corporation Volume Shadow Copy driver 131795770645349720 0xfffff80d941e0000 106496 C:\Windows\System32\drivers\scmbus.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Storage Class Memory Bus Driver 131795770645349720 0xfffff80d94200000 294912 C:\Windows\System32\drivers\rdyboost.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ReadyBoost Driver 131795770645349720 0xfffff80d94250000 151552 C:\Windows\System32\Drivers\mup.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Драйвер поставщика множественных UNC 131795770645349720 0xfffff80d94280000 65536 C:\Windows\system32\drivers\iorate.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation I/O rate control Filter 131795770645349720 0xfffff80d942a0000 126976 C:\Windows\System32\drivers\disk.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation PnP Disk Driver 131795770645349720 0xfffff80d942e0000 102400 C:\Windows\System32\Drivers\crashdmp.sys 10.0.14393.351 (rs1_release_inmarket.161014-1755) Microsoft Corporation Crash Dump Driver 131795770645349720 0xfffff80d943c0000 200704 C:\Windows\System32\drivers\cdrom.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SCSI CD-ROM Driver 131795770645349720 0xfffff80d94400000 118784 C:\Windows\system32\drivers\filecrypt.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows sandboxing and encryption filter 131795770645349720 0xfffff80d94420000 57344 C:\Windows\system32\drivers\tbs.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Export driver for kernel mode TPM API 131795770645349720 0xfffff80d94430000 40960 C:\Windows\System32\Drivers\Null.SYS 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation NULL Driver 131795770645349720 0xfffff80d94440000 40960 C:\Windows\System32\Drivers\Beep.SYS 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation BEEP Driver 131795770645349720 0xfffff80d94450000 81920 C:\Windows\System32\drivers\BasicDisplay.sys 10.0.14393.1066 (rs1_release_sec.170327-1835) Microsoft Corporation Microsoft Basic Display Driver 131795770645349720 0xfffff80d94470000 81920 C:\Windows\System32\drivers\watchdog.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Watchdog Driver 131795770645349720 0xfffff80d94490000 2220032 C:\Windows\System32\drivers\dxgkrnl.sys 10.0.14393.2189 (rs1_release.180329-1711) Microsoft Corporation DirectX Graphics Kernel 131795770645349720 0xfffff80d946b0000 73728 C:\Windows\System32\drivers\BasicRender.sys 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation Microsoft Basic Render Driver 131795770645349720 0xfffff80d946d0000 102400 C:\Windows\System32\Drivers\Npfs.SYS 10.0.14393.1737 (rs1_release_inmarket.170914-1249) Microsoft Corporation NPFS Driver 131795770645349720 0xfffff80d94700000 143360 C:\Windows\system32\DRIVERS\tdx.sys 10.0.14393.1613 (rs1_release_d.170807-1806) Microsoft Corporation TDI Translation Driver 131795770645349720 0xfffff80d94740000 307200 C:\Windows\System32\DRIVERS\netbt.sys 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation MBT Transport driver 131795770645349720 0xfffff80d94790000 610304 C:\Windows\system32\drivers\afd.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Драйвер дополнительных функций для Winsock 131795770645349720 0xfffff80d94830000 102400 C:\Windows\System32\drivers\vwififlt.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Virtual WiFi Filter Driver 131795770645349720 0xfffff80d94850000 176128 C:\Windows\System32\drivers\pacer.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Планировщик пакетов QoS 131795770645349720 0xfffff80d94880000 73728 C:\Windows\system32\drivers\netbios.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation NetBIOS interface driver 131795770645349720 0xfffff80d948a0000 479232 C:\Windows\system32\DRIVERS\rdbss.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Драйвер подсистемы буферизации перенаправленного диска 131795770645349720 0xfffff80d94920000 581632 C:\Windows\system32\drivers\csc.sys 10.0.14393.953 (rs1_release_inmarket.170303-1614) Microsoft Corporation Windows Client Side Caching Driver 131795770645349720 0xfffff80d949b0000 106496 C:\Windows\system32\drivers\nsiproxy.sys 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation NSI Proxy 131795770645349720 0xfffff80d949d0000 53248 C:\Windows\System32\drivers\npsvctrig.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Named pipe service triggers 131795770645349720 0xfffff80d949f0000 40960 C:\Windows\System32\drivers\gpuenergydrv.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation GPU Energy Kernel Driver 131795770645349720 0xfffff80d94a00000 172032 C:\Windows\System32\Drivers\dfsc.sys 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation DFS Namespace Client Driver 131795770645349720 0xfffff80d94a50000 258048 C:\Windows\system32\DRIVERS\ahcache.sys 10.0.14393.351 (rs1_release_inmarket.161014-1755) Microsoft Corporation Application Compatibility Cache 131795770645349720 0xfffff80d94a90000 69632 C:\Windows\System32\DriverStore\FileRepository\compositebus.inf_amd64_a140581a8f8b58b7\CompositeBus.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Multi-Transport Composite Bus Enumerator 131795770645349720 0xfffff80d94ab0000 57344 C:\Windows\System32\drivers\kdnic.sys 6.01.00.0000 (rs1_release.160715-1616) Microsoft Corporation Microsoft Kernel Debugger Network Miniport 131795770645349720 0xfffff80d94ac0000 86016 C:\Windows\System32\drivers\umbus.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User-Mode Bus Enumerator 131795770645349720 0xfffff80d94ae0000 139264 C:\Windows\System32\drivers\i8042prt.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Драйвер порта i8042 131795770645349720 0xfffff80d94b10000 77824 C:\Windows\System32\drivers\kbdclass.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Драйвер класса клавиатуры 131795770645349720 0xfffff80d94b30000 73728 C:\Windows\System32\drivers\mouclass.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Драйвер класса мыши 131795770645349720 0xfffff80d94b80000 110592 C:\Windows\System32\drivers\HDAudBus.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation High Definition Audio Bus Driver 131795770645349720 0xfffff80d94ba0000 397312 C:\Windows\System32\drivers\portcls.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Port Class (Class Driver for Port/Miniport Devices) 131795770645349720 0xfffff80d94c10000 135168 C:\Windows\System32\drivers\drmk.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Trusted Audio Drivers 131795770645349720 0xfffff80d94c40000 425984 C:\Windows\System32\drivers\ks.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Kernel CSA Library 131795770645349720 0xfffff80d94cb0000 61440 C:\Windows\System32\drivers\usbohci.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation OHCI USB Miniport Driver 131795770645349720 0xfffff80d94cc0000 57344 C:\Windows\System32\drivers\CmBatt.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Control Method Battery Driver 131795770645349720 0xfffff80d94cd0000 57344 C:\Windows\System32\drivers\BATTC.SYS 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Battery Class Driver 131795770645349720 0xfffff80d94ce0000 176128 C:\Windows\System32\drivers\intelppm.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Processor Device Driver 131795770645349720 0xfffff80d94d10000 53248 C:\Windows\System32\drivers\NdisVirtualBus.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Перечислитель виртуальных сетевых адаптеров (Майкрософт) 131795770645349720 0xfffff80d94d20000 2588672 C:\Windows\System32\drivers\tcpip.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Драйвер TCP/IP 131795770645349720 0xfffff80d94fa0000 49152 C:\Windows\System32\drivers\swenum.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Plug and Play Software Device Enumerator 131795770645349720 0xfffff80d94fb0000 57344 C:\Windows\System32\drivers\rdpbus.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft RDP Bus Device driver 131795770645349720 0xfffff80d95200000 344064 C:\Windows\system32\DRIVERS\udfs.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation UDF File System Driver 131795770645349720 0xfffff80d95280000 61440 C:\Windows\System32\Drivers\dump_diskdump.sys 131795770645349720 0xfffff80d952c0000 147456 C:\Windows\System32\Drivers\dump_storahci.sys 131795770645349720 0xfffff80d95310000 118784 C:\Windows\System32\Drivers\dump_dumpfve.sys 131795770645349720 0xfffff80d95330000 1122304 C:\Windows\system32\drivers\HTTP.sys 10.0.14393.1532 (rs1_release_d.170711-1840) Microsoft Corporation Стек протокола HTTP 131795770645349720 0xfffff80d95450000 122880 C:\Windows\system32\drivers\WudfPf.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Driver Foundation - User-mode Driver Framework Platform Driver 131795770645349720 0xfffff80d95470000 139264 C:\Windows\system32\DRIVERS\bowser.sys 10.0.14393.447 (rs1_release_inmarket.161102-0100) Microsoft Corporation NT Lan Manager Datagram Receiver Driver 131795770645349720 0xfffff80d954a0000 479232 C:\Windows\system32\DRIVERS\mrxsmb.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT SMB Minirdr 131795770645349720 0xfffff80d95520000 102400 C:\Windows\System32\drivers\mpsdrv.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Protection Service Driver 131795770645349720 0xfffff80d95540000 241664 C:\Windows\system32\DRIVERS\mrxsmb20.sys 10.0.14393.2035 (rs1_release_inmarket.180110-1910) Microsoft Corporation Longhorn SMB 2.0 Redirector 131795770645349720 0xfffff80d95580000 278528 C:\Windows\System32\DRIVERS\srvnet.sys 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Server Network driver 131795770645349720 0xfffff80d955d0000 741376 C:\Windows\System32\DRIVERS\srv2.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Драйвер сервера SMB 2.0 131795770645349720 0xfffff80d95690000 315392 C:\Windows\system32\DRIVERS\mrxsmb10.sys 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Longhorn SMB Downlevel SubRdr 131795770645349720 0xfffff80d956e0000 573440 C:\Windows\System32\DRIVERS\srv.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Server driver 131795770645349720 0xfffff80d95770000 81920 C:\Windows\System32\drivers\tcpipreg.sys 10.0.14393.1480 (rs1_release.170706-2004) Microsoft Corporation TCP/IP Registry Compatibility Driver 131795770645349720 0xfffff80d95860000 684032 C:\Windows\System32\drivers\dxgmms2.sys 10.0.14393.2189 (rs1_release.180329-1711) Microsoft Corporation DirectX Graphics MMS 131795770645349720 0xfffff80d95910000 155648 C:\Windows\system32\drivers\luafv.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Драйвер фильтра виртуализации файлов LUA 131795770645349720 0xfffff80d95960000 102400 C:\Windows\system32\drivers\storqosflt.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Фильтр качества обслуживания хранилища 131795770645349720 0xfffff80d95980000 98304 C:\Windows\System32\drivers\registry.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Registry Containment Driver 131795770645349720 0xfffff80d959a0000 90112 C:\Windows\system32\drivers\lltdio.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Link-Layer Topology Mapper I/O Driver 131795770645349720 0xfffff80d959c0000 98304 C:\Windows\system32\drivers\mslldp.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Драйвер протокола Microsoft LLDP 131795770645349720 0xfffff80d959e0000 106496 C:\Windows\system32\drivers\rspndr.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Link-Layer Topology Responder Driver for NDIS 6 131795770645349720 0xfffff80d95ae0000 57344 C:\Windows\System32\drivers\USBD.SYS 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Universal Serial Bus Driver 131795770645349720 0xfffff80d95af0000 434176 C:\Windows\system32\DRIVERS\HdAudio.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation High Definition Audio Function Driver 131795770645349720 0xfffff80d95b60000 57344 C:\Windows\system32\drivers\ksthunk.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Kernel Streaming WOW Thunk Service 131795770645349720 0xfffff80d95bc0000 73728 C:\Windows\System32\drivers\HIDPARSE.SYS 10.0.14393.2068 (rs1_release.180209-1727) Microsoft Corporation Hid Parsing Library 131795770645349720 0xfffff80d97020000 208896 C:\Windows\System32\Drivers\360AntiHacker64.sys 1.0.0.1149 360.cn 360安全卫士 网络防黑模块 131795770645349720 0xfffff80d97060000 102400 C:\Windows\system32\DRIVERS\360AvFlt.sys 1.1.0.1056 360.cn 360杀毒 文件监控驱动 131795770645349720 0xfffff80d97080000 217088 C:\Windows\system32\DRIVERS\BAPIDRV64.sys 2.0.0.1221 360.cn BAPIDRV 131795770645349720 0xfffff80d970c0000 372736 C:\Windows\system32\drivers\360netmon.sys 2.1.11.5195 360.cn 360netmon 131795770645349720 0xfffff80d97120000 356352 C:\Windows\system32\DRIVERS\360Box64.sys 2.1.0.1253 360.cn 360Box64 131795770645349720 0xfffff80d97180000 811008 C:\Windows\system32\DRIVERS\360FsFlt.sys 6.9.1.1751 360.cn 360 Total Security 131795770645349720 0xfffff80d97330000 69632 C:\Windows\System32\drivers\hidusb.sys 10.0.14393.82 (rs1_release.160805-1735) Microsoft Corporation USB Miniport Driver for Input Devices 131795770645349720 0xfffff80d97350000 192512 C:\Windows\System32\drivers\HIDCLASS.SYS 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека классов HID 131795770645349720 0xfffff80d97380000 61440 C:\Windows\System32\drivers\mouhid.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Драйвер фильтра мыши HID 131795770645349720 0xfffff80d97390000 106496 C:\Windows\System32\drivers\rassstp.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation RAS SSTP Miniport Call Manager 131795770645349720 0xfffff80d973b0000 86016 C:\Windows\System32\DRIVERS\NDProxy.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation NDIS Proxy 131795770645349720 0xfffff80d973d0000 159744 C:\Windows\System32\drivers\AgileVpn.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Диспетчер вызовов минипорта RAS Agile VPN 131795770645349720 0xfffff80d97420000 131072 C:\Windows\System32\drivers\rasl2tp.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation RAS L2TP mini-port/call-manager driver 131795770645349720 0xfffff80d97460000 126976 C:\Windows\System32\drivers\raspptp.sys 10.0.14393.2035 (rs1_release_inmarket.180110-1910) Microsoft Corporation Peer-to-Peer Tunneling Protocol 131795770645349720 0xfffff80d974a0000 110592 C:\Windows\System32\drivers\raspppoe.sys 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation RAS PPPoE mini-port/call-manager driver 131795770645349720 0xfffff80d974c0000 57344 C:\Windows\System32\DRIVERS\ndistapi.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation NDIS 3.0 connection wrapper driver 131795770645349720 0xfffff80d974d0000 221184 C:\Windows\System32\drivers\ndiswan.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation MS PPP Framing Driver (Strong Encryption) 131795770645349720 0xfffff80d97510000 110592 C:\Windows\System32\DRIVERS\wanarp.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation MS Remote Access and Routing ARP Driver 131795770645349720 0xfffff80d97550000 151552 C:\Windows\System32\drivers\E1G6032E.sys 8.4.13.0 built by: WinDDK Intel Corporation Intel(R) PRO/1000 Adapter NDIS 6 deserialized driver 131795770645349720 0xfffff80d97580000 192512 C:\Windows\System32\drivers\tunnel.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Драйвер интерфейса туннеля (Майкрософт) 131795770645349720 0xfffff80d97600000 106496 C:\Windows\system32\Drivers\PROCMON24.SYS 3.10 Sysinternals - www.sysinternals.com Process Monitor Driver 131795780236159256 0xfffff80d97620000 49152 C:\Windows\System32\drivers\npf.sys 4.1.0.2980 Riverbed Technology, Inc. npf.sys (NT5/6 AMD64) Kernel Driver 131795770645349720 0xfffff80d97a60000 794624 C:\Windows\system32\drivers\peauth.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Protected Environment Authentication and Authorization Export Driver 131795770645349720 0xfffff80d97b30000 155648 C:\Windows\system32\drivers\Ndu.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Network Data Usage Monitoring Driver 131795770645349720 0xfffff80d97b60000 81920 C:\Windows\system32\drivers\mmcss.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation MMCSS Driver 131795770645349720 0xfffff80d97bb0000 73728 C:\Windows\System32\drivers\condrv.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Console Driver 10 320 4 9 00000000:000003e7 131765775908989732 0 0 1 Обязательная метка\Обязательный уровень системы NT AUTHORITY\СИСТЕМА smss.exe C:\Windows\System32\smss.exe \SystemRoot\System32\smss.exe Microsoft Corporation 10.0.14393.0 (rs1_release.160715-1616) Диспетчер сеанса Windows 11 3108 3092 12 00000000:0031f1da 131765777624392598 0 0 1 Обязательная метка\Средний обязательный уровень WIN-0UOTFKKVN1S\User Explorer.EXE C:\Windows\Explorer.EXE C:\Windows\Explorer.EXE Microsoft Corporation 10.0.14393.0 (rs1_release.160715-1616) Проводник 131795770645352881 0x31b0000 12288 C:\Windows\system32\sfc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows File Protection 131795770645352881 0x5db0000 397312 C:\Program Files\Uninstall Tool\utshellext.dll 1.1.0.15 CrystalIDEA Software Uninstall Tool Shell Extension 131795770645352881 0x81a0000 8937472 C:\Program Files\MICROS~1\Office16\1049\GrooveIntlResource.dll 16.0.4266.1001 Корпорация Майкрософт Модуль международных ресурсов для Microsoft OneDrive для бизнеса 131795770645352881 0x8cb0000 593920 C:\Windows\SYSTEM32\UIRibbonRes.dll 10.0.14393.2189 (rs1_release.180329-1711) Microsoft Corporation Windows Ribbon Framework Resources 131795770645352881 0x5bf70000 667648 C:\Windows\WinSxS\amd64_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.9247_none_08e394a1a83e212f\MSVCR90.dll 9.00.30729.9247 Microsoft Corporation Microsoft® C Runtime Library 131795770645352881 0x180000000 241664 C:\Program Files (x86)\Notepad++\NppShell_06.dll 0.1 ShellHandler for Notepad++ (64 bit) 131795770645352881 0x7ff6a5b30000 4665344 C:\Windows\Explorer.EXE 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Проводник 131795770645352881 0x7ff7808b0000 8527872 C:\Windows\system32\ntoskrnl.exe 10.0.14393.2189 (rs1_release.180329-1711) Microsoft Corporation NT Kernel & System 131795770645352881 0x7ffaa6c80000 2093056 C:\Windows\system32\wpdshext.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширение оболочки для переносных устройств 131795770645352881 0x7ffaab350000 1683456 C:\Windows\System32\comsvcs.dll 2001.12.10941.16384 (rs1_release_1.180305-1842) Microsoft Corporation COM+ Services 131795770645352881 0x7ffaab4f0000 1400832 C:\Windows\system32\connect.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Мастера подключений 131795770645352881 0x7ffaab650000 970752 C:\Windows\system32\rasgcw.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Страницы мастера RAS 131795770645352881 0x7ffaab880000 532480 C:\Windows\System32\MPRAPI.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation Windows NT MP Router Administration DLL 131795770645352881 0x7ffaab910000 905216 C:\Windows\System32\RASDLG.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API общих диалогов службы удаленного доступа 131795770645352881 0x7ffaac6e0000 13156352 C:\Windows\system32\ieframe.DLL 11.00.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Браузер 131795770645352881 0x7ffab0df0000 1626112 C:\Windows\SYSTEM32\d3d9.dll 10.0.14393.447 (rs1_release_inmarket.161102-0100) Microsoft Corporation Direct3D 9 Runtime 131795770645352881 0x7ffab0f80000 1777664 C:\Program Files\Windows Photo Viewer\PhotoViewer.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Просмотр фотографий Windows 131795770645352881 0x7ffab1d80000 262144 C:\Windows\system32\eappcfg.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Eap Peer Config 131795770645352881 0x7ffab2460000 2822144 C:\Windows\System32\netshell.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Оболочка сетевых подключений 131795770645352881 0x7ffab2720000 606208 C:\Windows\System32\DUser.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows DirectUser Engine 131795770645352881 0x7ffab27c0000 516096 C:\Windows\System32\imapi2.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation IMAPI версии 2 131795770645352881 0x7ffab2840000 253952 C:\Windows\System32\bthprops.cpl 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Приложение панели управления Bluetooth 131795770645352881 0x7ffab2880000 315392 C:\Windows\System32\cscobj.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Внутрипроцессный COM-объект используемый клиентами CSC API 131795770645352881 0x7ffab28d0000 802816 C:\Windows\System32\cscui.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Интерфейс кэширования на стороне клиента 131795770645352881 0x7ffab29a0000 1912832 C:\Windows\System32\pnidui.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Значок сетевой системы 131795770645352881 0x7ffab2b80000 212992 C:\Windows\system32\SettingMonitor.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Setting Synchronization Change Monitor 131795770645352881 0x7ffab2bc0000 204800 C:\Windows\System32\PortableDeviceTypes.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Portable Device (Parameter) Types Component 131795770645352881 0x7ffab33d0000 258048 C:\Windows\SYSTEM32\MLANG.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL многоязыковой поддержки 131795770645352881 0x7ffab34f0000 323584 C:\Windows\System32\Actioncenter.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Центр безопасности и обслуживания 131795770645352881 0x7ffab4af0000 606208 C:\Windows\SYSTEM32\AUDIOSES.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Сеанс обработки звука 131795770645352881 0x7ffab4b90000 655360 C:\Windows\System32\StructuredQuery.dll 7.0.14393.2068 (rs1_release.180209-1727) Microsoft Corporation Structured Query 131795770645352881 0x7ffab5120000 1691648 C:\Windows\system32\BatMeter.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Battery Meter Helper DLL 131795770645352881 0x7ffab5520000 3231744 C:\Windows\SYSTEM32\MsftEdit.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Элемент управления "Поле ввода форматированного текста", версия 8.5 131795770645352881 0x7ffab5b40000 2527232 C:\Windows\SYSTEM32\DWrite.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Службы Microsoft DirectX Typography 131795770645352881 0x7ffab7d80000 753664 C:\Windows\System32\RASAPI32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API удаленного доступа 131795770645352881 0x7ffab7e40000 3420160 C:\Windows\System32\SyncCenter.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Центр синхронизации Майкрософт 131795770645352881 0x7ffab8190000 9191424 C:\Windows\System32\TwinUI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation TWINUI 131795770645352881 0x7ffab8da0000 1675264 C:\Windows\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.14393.1715_none_aec701fbddd850fa\gdiplus.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Microsoft GDI+ 131795770645352881 0x7ffab92e0000 827392 C:\Windows\system32\Windows.Storage.Search.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows.Storage.Search 131795770645352881 0x7ffab93b0000 897024 C:\Windows\System32\TokenBroker.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Token Broker 131795770645352881 0x7ffab9490000 860160 C:\Windows\system32\ntshrui.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширения оболочки, обеспечивающие общий доступ 131795770645352881 0x7ffab95c0000 4091904 C:\Windows\system32\UIRibbon.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Платформа ленты Windows 131795770645352881 0x7ffab99b0000 499712 C:\Windows\system32\dxp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширение оболочки компонента Device Stage 131795770645352881 0x7ffab9ba0000 389120 C:\Windows\SYSTEM32\searchfolder.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SearchFolder 131795770645352881 0x7ffaba950000 188416 C:\Windows\System32\EthernetMediaManager.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Ethernet Media Manager DLL 131795770645352881 0x7ffabaa50000 339968 C:\Windows\System32\NetworkUXBroker.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation NetworkUXBroker DLL 131795770645352881 0x7ffabaab0000 94208 C:\Windows\SYSTEM32\profext.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation profext 131795770645352881 0x7ffabab30000 303104 C:\Windows\System32\NotificationObjFactory.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Notifications Object Factory 131795770645352881 0x7ffabac60000 151552 C:\Windows\System32\EhStorAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Enhanced Storage API 131795770645352881 0x7ffabacc0000 1380352 C:\Windows\System32\SharedStartModel.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Shared Start Model InProc Server 131795770645352881 0x7ffabae20000 40960 C:\Windows\SYSTEM32\msiltcfg.dll 5.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Installer Configuration API Stub 131795770645352881 0x7ffabae60000 77824 C:\Windows\System32\DEVRTL.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Device Management Run Time Library 131795770645352881 0x7ffabaea0000 266240 C:\Windows\system32\SHDOCVW.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека объектов документов и элементов управления оболочки 131795770645352881 0x7ffabaf70000 270336 C:\Windows\SYSTEM32\edputil.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служебная программа EDP 131795770645352881 0x7ffabafc0000 700416 C:\Windows\System32\wer.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека сообщений об ошибках Windows 131795770645352881 0x7ffabb2b0000 1089536 C:\Windows\SYSTEM32\settingsynccore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Setting Synchronization Core 131795770645352881 0x7ffabb430000 65536 C:\Windows\SYSTEM32\pcacli.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Program Compatibility Assistant Client Module 131795770645352881 0x7ffabb490000 512000 C:\Windows\SYSTEM32\TWINAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation twinapi 131795786030517308 0x7ffabb910000 344064 C:\Windows\System32\container.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Windows Containers 131795786030225106 0x7ffabb970000 487424 C:\Windows\System32\daxexec.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation daxexec 131795770645352881 0x7ffabba80000 995328 C:\Windows\System32\twinui.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation TWINUI.APPCORE 131795786377372706 0x7ffabbb80000 61440 C:\Windows\System32\dsclient.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Data Sharing Service Client DLL 131795786377355113 0x7ffabbb90000 581632 C:\Windows\System32\Windows.System.Launcher.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows.System.Launcher 131795770645352881 0x7ffabbc40000 643072 C:\Windows\SYSTEM32\MSVCP140.dll 14.10.24516.0 built by: VCTOOLSRELESC Microsoft Corporation Microsoft® C Runtime Library 131795770645352881 0x7ffabbce0000 90112 C:\Windows\SYSTEM32\VCRUNTIME140.dll 14.10.24516.0 built by: VCTOOLSRELESC Microsoft Corporation Microsoft® C Runtime Library 131795786377364261 0x7ffabbd00000 36864 C:\Windows\System32\WpPortingLibrary.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation <d> DLL 131795770645352881 0x7ffabbd20000 106496 C:\Windows\SYSTEM32\settingsyncpolicy.dll 10.0.14393.82 (rs1_release.160805-1735) Microsoft Corporation SettingSync Policy 131795770645352881 0x7ffabc0b0000 65536 C:\Windows\SYSTEM32\LINKINFO.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Volume Tracking 131795770645352881 0x7ffabc510000 90112 C:\Windows\system32\execmodelproxy.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ExecModelProxy 131795770645352881 0x7ffabc880000 73728 C:\Windows\SYSTEM32\cscapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Offline Files Win32 API 131795786376748307 0x7ffabcef0000 102400 C:\Windows\System32\Windows.Shell.ServiceHostBuilder.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows.Shell.ServiceHostBuilder 131795770645352881 0x7ffabcf30000 110592 C:\Windows\SYSTEM32\MPR.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека маршрутизации для нескольких служб доступа 131795770645352881 0x7ffabd3c0000 368640 C:\Windows\System32\InputSwitch.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Переключатель ввода Microsoft Windows 131795770645352881 0x7ffabd4a0000 1613824 C:\Windows\System32\Windows.Globalization.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Globalization 131795770645352881 0x7ffabd670000 315392 C:\Windows\System32\framedynos.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation WMI SDK Provider Framework 131795770645352881 0x7ffabd6c0000 1306624 C:\Windows\System32\werconcpl.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation PRS CPL 131795770645352881 0x7ffabd800000 876544 C:\Windows\System32\NPSMDesktopProvider.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation <d> Библиотека DLL локального поставщика рабочего стола NPSM 131795770645352881 0x7ffabda60000 1241088 C:\Windows\System32\wscui.cpl 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Центр безопасности и обслуживания 131795770645352881 0x7ffabdbb0000 1736704 C:\Windows\SYSTEM32\DUI70.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Подсистема DirectUI Windows 131795770645352881 0x7ffabdeb0000 86016 C:\Windows\system32\wpdshserviceobj.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Portable Device Shell Service Object 131795770645352881 0x7ffabded0000 413696 C:\Windows\system32\stobject.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Объект службы оболочки Systray 131795770645352881 0x7ffabe070000 610304 C:\Windows\SYSTEM32\efswrt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Storage Protection Windows Runtime DLL 131795770645352881 0x7ffabe470000 180224 C:\Windows\System32\wscinterop.dll 10.0.14393.479 (rs1_release.161110-2025) Microsoft Corporation Windows Health Center WSC Interop 131795770645352881 0x7ffabe4d0000 286720 C:\Windows\System32\MSWB7.dll 10.0.14393.1737 (rs1_release_inmarket.170914-1249) Microsoft Corporation MSWB7 DLL 131795770645352881 0x7ffabe580000 831488 C:\Program Files (x86)\360\Total Security\MenuEx64.dll 9, 6, 0, 1001 360 Total Security 131795770645352881 0x7ffabe650000 405504 C:\Windows\system32\zipfldr.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Сжатые ZIP-папки 131795770645352881 0x7ffabe850000 155648 C:\Windows\System32\IDStore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Identity Store 131795770645352881 0x7ffabe9a0000 94208 C:\Windows\system32\Syncreg.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Synchronization Framework Registration 131795770645352881 0x7ffabe9c0000 188416 C:\Windows\SYSTEM32\globinputhost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Globalization Extension API for Input 131795770645352881 0x7ffabebf0000 1208320 C:\Windows\system32\NetworkExplorer.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Сетевой проводник 131795770645352881 0x7ffabef80000 69632 C:\Windows\System32\sfc_os.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows File Protection 131795770645352881 0x7ffabf0b0000 176128 C:\Windows\System32\playtomenu.dll 12.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека меню функции "Передать на устройство" 131795770645352881 0x7ffabf0e0000 372736 C:\Windows\System32\hnetcfg.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Диспетчер конфигурации домашней сети 131795770645352881 0x7ffabf330000 2457600 C:\Windows\System32\msxml6.dll 6.30.14393.2156 Microsoft Corporation MSXML 6.0 131795770645352881 0x7ffabf590000 208896 C:\Windows\system32\syncui.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Портфель Windows 131795770645352881 0x7ffabf5d0000 2924544 C:\Windows\SYSTEM32\WININET.dll 11.00.14393.447 (rs1_release_inmarket.161102-0100) Microsoft Corporation Расширения Интернета для Win32 131795770645352881 0x7ffabf8c0000 802816 C:\Windows\system32\Windows.Internal.Shell.Broker.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation Windows Shell Broker 131795786456426767 0x7ffabfb00000 626688 C:\Windows\System32\ContentDeliveryManager.Utilities.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation ContentDeliveryManager.Utilities 131795770645352881 0x7ffabfba0000 212992 C:\Windows\System32\WSCAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API центра обеспечения безопасности Windows 131795770645352881 0x7ffabfdc0000 86016 C:\Windows\system32\keepaliveprovider.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Keep alive provider API 131795770645352881 0x7ffabfe50000 643072 C:\Windows\System32\wpnprv.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик подключения платформы push-уведомлений Windows 131795770645352881 0x7ffabff10000 155648 C:\Windows\system32\srvcli.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Server Service Client DLL 131795770645352881 0x7ffabff60000 135168 C:\Windows\system32\ncryptsslp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft SChannel Provider 131795770645352881 0x7ffac01e0000 397312 C:\Windows\System32\wincorlib.DLL 10.0.14393.576 (rs1_release_inmarket.161208-2252) Microsoft Corporation Microsoft Windows ® WinRT core library 131795770645352881 0x7ffac0250000 2179072 C:\Program Files\MICROS~1\Office16\GROOVEEX.DLL 16.0.4266.1001 Microsoft Corporation Microsoft OneDrive for Business Extensions 131795770645352881 0x7ffac0470000 1478656 C:\Windows\SYSTEM32\MFPlat.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Media Foundation Platform DLL 131795770645352881 0x7ffac05f0000 94208 C:\Windows\System32\wwapi.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation WWAN API 131795770645352881 0x7ffac0610000 3088384 C:\Windows\SYSTEM32\msi.dll 5.0.14393.2155 Microsoft Corporation Windows Installer 131795770645352881 0x7ffac0910000 724992 C:\Windows\System32\Windows.Networking.Connectivity.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Networking Connectivity Runtime DLL 131795770645352881 0x7ffac09d0000 884736 C:\Windows\System32\wpnapps.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Приложения для push-уведомлений Windows 131795770645352881 0x7ffac0ad0000 86016 C:\Windows\SYSTEM32\mskeyprotect.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик защиты ключей (Майкрософт) 131795770645352881 0x7ffac0af0000 114688 C:\Windows\System32\ATL.DLL 3.05.2284 Microsoft Corporation ATL Module for Windows XP (Unicode) 131795770645352881 0x7ffac0b40000 315392 C:\Windows\System32\dlnashext.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLNA Namespace DLL 131795770645352881 0x7ffac0b90000 380928 C:\Windows\System32\srchadmin.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Параметры индексирования 131795770645352881 0x7ffac0bf0000 3559424 C:\Windows\System32\ActXPrxy.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation ActiveX Interface Marshaling Library 131795770645352881 0x7ffac0f60000 151552 C:\Windows\SYSTEM32\CHARTV.dll 10.0.14393.351 (rs1_release_inmarket.161014-1755) Microsoft Corporation Chart View 131795770645352881 0x7ffac1b70000 122880 C:\Windows\System32\DevDispItemProvider.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Подсистема DeviceItem inproc devquery 131795770645352881 0x7ffac1cc0000 163840 C:\Windows\System32\Windows.Networking.Sockets.PushEnabledApplication.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows.Networking.Sockets.PushEnabledApplication DLL 131795770645352881 0x7ffac1d60000 589824 C:\Windows\System32\webio.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API протоколов передачи по Веб 131795770645352881 0x7ffac1e50000 188416 C:\Windows\SYSTEM32\RTWorkQ.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL для WorkQueue реального времени 131795770645352881 0x7ffac1fd0000 999424 C:\Windows\system32\wbem\fastprox.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation WMI Custom Marshaller 131795770645352881 0x7ffac20d0000 110592 C:\Windows\System32\RMCLIENT.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Resource Manager Client 131795770645352881 0x7ffac21d0000 81920 C:\Windows\system32\wbem\wbemsvc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation WMI 131795770645352881 0x7ffac2360000 57344 C:\Windows\System32\TimeBrokerClient.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Time Broker Client Library 131795770645352881 0x7ffac23c0000 331776 C:\Windows\System32\OneCoreCommonProxyStub.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation OneCore Common Proxy Stub 131795770645352881 0x7ffac2530000 270336 C:\Windows\system32\hnetcfgclient.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиент API конфигурации домашней сети 131795770645352881 0x7ffac2700000 98304 C:\Windows\system32\NETAPI32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API DLL 131795770645352881 0x7ffac27a0000 1642496 C:\Users\User\AppData\Local\Microsoft\OneDrive\18.111.0603.0006\amd64\FileSyncShell64.dll 18.111.0603.0006 Microsoft Corporation Microsoft OneDrive Shell Extension 131795770645352881 0x7ffac2960000 143360 C:\Windows\system32\mssprxy.dll 7.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation Microsoft Search Proxy 131795770645352881 0x7ffac2990000 385024 C:\Windows\SYSTEM32\NInput.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Pen and Touch Input Component 131795770645352881 0x7ffac29f0000 159744 C:\Windows\system32\NetSetupApi.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Network Configuration API 131795770645352881 0x7ffac2a20000 81920 C:\Windows\System32\rtutils.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Routing Utilities 131795770645352881 0x7ffac2b80000 40960 C:\Windows\SYSTEM32\VERSION.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Version Checking and File Installation Libraries 131795770645352881 0x7ffac2cb0000 778240 C:\Windows\System32\winsqlite3.dll 3.12.2 SQLite Development Team SQLite is a software library that implements a self-contained, serverless, zero-configuration, transactional SQL database engine. 131795770645352881 0x7ffac2d80000 5140480 C:\Windows\System32\cdp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API клиента Microsoft (R) CDP 131795786030406949 0x7ffac3270000 40960 C:\Windows\System32\fltLib.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека фильтров 131795770645352881 0x7ffac32e0000 180224 C:\Windows\system32\twext.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Свойства: Предыдущие версии 131795770645352881 0x7ffac3350000 36864 C:\Windows\SYSTEM32\OLEACCHOOKS.DLL 7.2.14393.0 (rs1_release.160715-1616) Microsoft Corporation Active Accessibility Event Hooks Library 131795770645352881 0x7ffac3360000 1396736 C:\Windows\System32\wpncore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Ядро извещающих уведомлений Windows 131795770645352881 0x7ffac34e0000 1843200 C:\Windows\SYSTEM32\urlmon.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширения OLE32 для Win32 131795770645352881 0x7ffac37d0000 258048 C:\Windows\SYSTEM32\wdmaud.drv 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Системный звуковой драйвер Winmm 131795770645352881 0x7ffac3cb0000 2772992 C:\Windows\SYSTEM32\iertutil.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служебная программа времени выполнения для Internet Explorer 131795770645352881 0x7ffac4000000 274432 C:\Windows\SYSTEM32\policymanager.dll 10.0.14393.2035 (rs1_release_inmarket.180110-1910) Microsoft Corporation Policy Manager DLL 131795770645352881 0x7ffac4070000 499712 C:\Windows\SYSTEM32\dsreg.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation AD/AAD User Device Registration 131795770645352881 0x7ffac4140000 114688 C:\Windows\SYSTEM32\MSACM32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Фильтр диспетчера аудиосжатия Microsoft 131795770645352881 0x7ffac4220000 520192 C:\Windows\SYSTEM32\wbemcomn.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation WMI 131795770645352881 0x7ffac42a0000 659456 C:\Windows\System32\StateRepository.Core.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation StateRepository Core 131795770645352881 0x7ffac4450000 86016 C:\Windows\SYSTEM32\usermgrcli.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation UserMgr API DLL 131795770645352881 0x7ffac4470000 65536 C:\Windows\system32\wbem\wbemprox.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation WMI 131795770645352881 0x7ffac46d0000 4161536 C:\Windows\System32\Windows.StateRepository.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Сервер Windows StateRepository API Server 131795770645352881 0x7ffac4df0000 462848 C:\Windows\System32\provsvc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Домашняя группа Windows 131795770645352881 0x7ffac4ea0000 36864 C:\Windows\SYSTEM32\atlthunk.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation atlthunk.dll 131795770645352881 0x7ffac4f60000 143360 C:\Windows\System32\wcmapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Connection Manager Client API 131795770645352881 0x7ffac4f90000 221184 C:\Windows\System32\EhStorShell.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL расширения оболочки Windows Enhanced Storage 131795770645352881 0x7ffac4fd0000 618496 C:\Windows\System32\wlidprov.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft® Account Provider 131795770645352881 0x7ffac5070000 798720 C:\Windows\System32\Windows.Web.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL веб-клиента 131795770645352881 0x7ffac5140000 307200 C:\Windows\System32\AboveLockAppHost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AboveLockAppHost 131795770645352881 0x7ffac5190000 659456 C:\Windows\System32\NotificationController.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation NotificationController 131795770645352881 0x7ffac5350000 1765376 C:\Windows\System32\Windows.UI.Immersive.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation WINDOWS.UI.IMMERSIVE 131795770645352881 0x7ffac5500000 438272 C:\Windows\SYSTEM32\PhotoMetadataHandler.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Photo Metadata Handler 131795770645352881 0x7ffac5570000 339968 C:\Windows\system32\twinui.pcshell.dll 10.0.14393.351 (rs1_release_inmarket.161014-1755) Microsoft Corporation Twinui.PCShell 131795770645352881 0x7ffac55d0000 376832 C:\Windows\System32\windows.immersiveshell.serviceprovider.dll 10.0.14393.1593 (rs1_release.170731-1934) Microsoft Corporation Windows.ImmersiveShell.ServiceProvider 131795770645352881 0x7ffac5630000 339968 C:\Windows\System32\thumbcache.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Кэш эскизов Майкрософт 131795770645352881 0x7ffac5690000 4734976 C:\Windows\system32\explorerframe.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ExplorerFrame 131795770645352881 0x7ffac5bb0000 622592 C:\Program Files\Common Files\microsoft shared\ink\tiptsf.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Инфраструктура текстовых служб сенсорной клавиатуры и панели рукописного ввода 131795770645352881 0x7ffac5c70000 65536 C:\Program Files\Windows Photo Viewer\PhotoBase.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Photo Base Library 131795770645352881 0x7ffac5ce0000 1744896 C:\Windows\SYSTEM32\UIAutomationCore.DLL 7.2.14393.0 (rs1_release.160715-1616) Microsoft Corporation Основные автоматические компоненты Microsoft UI 131795770645352881 0x7ffac60e0000 221184 C:\Windows\System32\XmlLite.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft XmlLite Library 131795770645352881 0x7ffac6610000 40960 C:\Windows\System32\rasadhlp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Remote Access AutoDial Helper 131795770645352881 0x7ffac6650000 176128 C:\Windows\System32\npsm.dll 10.0.14393.447 (rs1_release_inmarket.161102-0100) Microsoft Corporation NPSM 131795780903771340 0x7ffac66a0000 86016 C:\Windows\System32\OnDemandConnRouteHelper.dll 10.0.14393.351 (rs1_release_inmarket.161014-1755) Microsoft Corporation On Demand Connctiond Route Helper 131795770645352881 0x7ffac69c0000 839680 C:\Windows\System32\WINHTTP.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Службы HTTP Windows 131795770645352881 0x7ffac6ac0000 835584 C:\Windows\System32\Windows.UI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Runtime UI Foundation DLL 131795770645352881 0x7ffac6ba0000 49152 C:\Windows\SYSTEM32\Secur32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Security Support Provider Interface 131795770645352881 0x7ffac6bd0000 413696 C:\Windows\SYSTEM32\OLEACC.dll 7.2.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Active Accessibility Core Component 131795770645352881 0x7ffac6c40000 2596864 C:\Windows\WinSxS\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.14393.953_none_42151e83c686086b\comctl32.dll 6.10 (rs1_release_inmarket.170303-1614) Microsoft Corporation Библиотека элементов управления взаимодействия с пользователем 131795770645352881 0x7ffac6ec0000 36864 C:\Windows\system32\IconCodecService.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Converts a PNG part of the icon to a legacy bmp icon 131795770645352881 0x7ffac6f50000 5632000 C:\Windows\System32\d2d1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека Microsoft D2D 131795770645352881 0x7ffac7580000 1077248 C:\Windows\SYSTEM32\MrmCoreR.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Windows MRM 131795770645352881 0x7ffac76a0000 159744 C:\Windows\SYSTEM32\sppc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Software Licensing Client DLL 131795770645352881 0x7ffac78f0000 647168 C:\Windows\System32\hgcpl.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Панель управления домашней группы 131795770645352881 0x7ffac7990000 155648 C:\Windows\SYSTEM32\SLC.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Software Licensing Client DLL 131795770645352881 0x7ffac79c0000 57344 C:\Windows\System32\npmproxy.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Network List Manager Proxy 131795770645352881 0x7ffac7aa0000 401408 C:\Windows\SYSTEM32\wlanapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows WLAN AutoConfig Client Side API DLL 131795782572474169 0x7ffac7ce0000 73728 C:\Windows\System32\ploptin.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Prelaunch OptIn 131795770645352881 0x7ffac7d40000 131072 C:\Windows\system32\SYNCENG.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Briefcase Engine 131795770645352881 0x7ffac7d90000 454656 C:\Windows\SYSTEM32\SndVolSSO.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Громкость SCA 131795770645352881 0x7ffac7f50000 73728 C:\Windows\system32\acppage.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека расширений для вкладки "Совместимость" 131795770645352881 0x7ffac7fc0000 2674688 C:\Windows\SYSTEM32\d3d10warp.dll 10.0.14393.576 (rs1_release_inmarket.161208-2252) Microsoft Corporation Direct3D 10 Rasterizer 131795770645352881 0x7ffac83d0000 106496 C:\Windows\SYSTEM32\dhcpcsvc.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служба DHCP-клиента 131795770645352881 0x7ffac83f0000 90112 C:\Windows\SYSTEM32\dhcpcsvc6.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиент DHCPv6 131795770645352881 0x7ffac8420000 434176 C:\Windows\System32\fwpuclnt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API пользовательского режима FWP/IPsec 131795770645352881 0x7ffac84e0000 53248 C:\Windows\System32\NotificationControllerPS.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation NotificationController Proxy Stub 131795770645352881 0x7ffac84f0000 299008 C:\Windows\system32\dataexchange.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation Data exchange 131795770645352881 0x7ffac8810000 45056 C:\Windows\SYSTEM32\WINNSI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Network Store Information RPC interface 131795770645352881 0x7ffac8880000 69632 C:\Windows\system32\WMICLNT.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation WMI Client API 131795770645352881 0x7ffac88a0000 2842624 C:\Windows\system32\d3d11.dll 10.0.14393.953 (rs1_release_inmarket.170303-1614) Microsoft Corporation Direct3D 11 Runtime 131795770645352881 0x7ffac8f90000 45056 C:\Windows\SYSTEM32\AVRT.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Среда выполнения мультимедиа в реальном времени 131795770645352881 0x7ffac90b0000 90112 C:\Windows\SYSTEM32\wkscli.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Workstation Service Client DLL 131795770645352881 0x7ffac9220000 397312 C:\Windows\System32\wevtapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API настройки и использования событий 131795770645352881 0x7ffac9290000 40960 C:\Windows\system32\DSROLE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DS Setup Client DLL 131795770645352881 0x7ffac92e0000 1269760 C:\Windows\System32\WinTypes.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL основных типов Windows 131795770645352881 0x7ffac9480000 462848 C:\Windows\System32\MMDevApi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation MMDevice API 131795770645352881 0x7ffac9500000 2682880 C:\Windows\SYSTEM32\CoreUIComponents.dll 131795770645352881 0x7ffac9790000 98304 C:\Windows\System32\nlaapi.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Network Location Awareness 2 131795770645352881 0x7ffac97d0000 40960 C:\Windows\SYSTEM32\midimap.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft MIDI Mapper 131795778062352400 0x7ffac97e0000 73728 C:\Windows\System32\ploptin.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Prelaunch OptIn 131795770645352881 0x7ffac9bb0000 479232 C:\Windows\system32\es.dll 2001.12.10941.16384 (rs1_release.160715-1616) Microsoft Corporation COM+ 131795770645352881 0x7ffac9e00000 647168 C:\Windows\System32\PortableDeviceApi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Компоненты API для переносных устройств Windows 131795770645352881 0x7ffac9ea0000 81920 C:\Windows\System32\hcproviders.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщики компонента "Центр безопасности и обслуживания" 131795770645352881 0x7ffac9ec0000 294912 C:\Windows\System32\UIAnimation.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Animation Manager 131795770645352881 0x7ffac9f10000 221184 C:\Windows\System32\netprofm.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Network List Manager 131795770645352881 0x7ffac9f50000 1736704 C:\Windows\system32\windowscodecs.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Microsoft Windows Codecs Library 131795770645352881 0x7ffaca170000 45056 C:\Windows\SYSTEM32\ktmw32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows KTM Win32 Client DLL 131795770645352881 0x7ffaca180000 53248 C:\Windows\SYSTEM32\msacm32.drv 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Программа переназначения звуковых устройств 131795770645352881 0x7ffaca190000 241664 C:\Windows\System32\WorkFoldersShell.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширение оболочки рабочих папок (Майкрософт) 131795770645352881 0x7ffaca260000 45056 C:\Windows\System32\SystemEventsBrokerClient.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation system Events Broker Client Library 131795780604813666 0x7ffaca280000 73728 C:\Windows\System32\BitsProxy.dll 7.8.14393.0 (rs1_release.160715-1616) Microsoft Corporation Background Intelligent Transfer Service Proxy 131795770645352881 0x7ffaca340000 1593344 C:\Windows\SYSTEM32\PROPSYS.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Система страниц свойств (Майкрософт) 131795770645352881 0x7ffaca4e0000 77824 C:\Windows\SYSTEM32\wtsapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Remote Desktop Session Host Server SDK APIs 131795770645352881 0x7ffaca550000 36864 C:\Windows\SYSTEM32\ksuser.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User CSA Library 131795770645352881 0x7ffaca570000 421888 C:\Windows\SYSTEM32\Bcp47Langs.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation BCP47 Language Classes 131795770645352881 0x7ffaca5e0000 155648 C:\Windows\SYSTEM32\dwmapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Интерфейс API диспетчера окон рабочего стола (Майкрософт) 131795770645352881 0x7ffaca610000 143360 C:\Windows\System32\SAMLIB.dll 10.0.14393.82 (rs1_release.160805-1735) Microsoft Corporation SAM Library DLL 131795770645352881 0x7ffaca640000 770048 C:\Windows\System32\CoreMessaging.dll 10.0.14393.0 Microsoft Corporation Microsoft CoreMessaging Dll 131795770645352881 0x7ffaca770000 1380352 C:\Windows\system32\dcomp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft DirectComposition Library 131795770645352881 0x7ffacab40000 176128 C:\Windows\SYSTEM32\WINMMBASE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base Multimedia Extension API DLL 131795770645352881 0x7ffacaba0000 143360 C:\Windows\SYSTEM32\WINMM.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation MCI API DLL 131795770645352881 0x7ffacac60000 69632 C:\Windows\system32\credui.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Credential Manager User Interface 131795770645352881 0x7ffacac80000 28672 C:\Windows\SYSTEM32\MSIMG32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation GDIEXT Client DLL 131795770645352881 0x7ffacadf0000 499712 C:\Windows\SYSTEM32\apphelp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиентская библиотека совместимости приложений 131795770645352881 0x7ffacaf00000 610304 C:\Windows\SYSTEM32\UxTheme.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека тем UxTheme (Microsoft) 131795770645352881 0x7ffacb140000 593920 C:\Windows\System32\msvcp110_win.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Microsoft® STL110 C++ Runtime Library 131795770645352881 0x7ffacb1e0000 1163264 C:\Windows\SYSTEM32\twinapi.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation twinapi.appcore 131795770645352881 0x7ffacb300000 364544 C:\Windows\System32\VEEventDispatcher.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Visual Element Event dispatcher 131795770645352881 0x7ffacb3d0000 110592 C:\Windows\SYSTEM32\resourcepolicyclient.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Resource Policy Client 131795770645352881 0x7ffacb3f0000 163840 C:\Windows\System32\DEVOBJ.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Device Information Set DLL 131795770645352881 0x7ffacb420000 204800 C:\Windows\SYSTEM32\ntmarta.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик Windows NT MARTA 131795770645352881 0x7ffacb6f0000 143360 C:\Windows\SYSTEM32\gpapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиентские функции API групповой политики 131795770645352881 0x7ffacb780000 651264 C:\Windows\system32\dxgi.dll 10.0.14393.953 (rs1_release_inmarket.170303-1614) Microsoft Corporation DirectX Graphics Infrastructure 131795770645352881 0x7ffacb920000 81920 C:\Windows\SYSTEM32\WLDP.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Политика блокировки Windows 131795770645352881 0x7ffacbaf0000 495616 C:\Windows\system32\schannel.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик безопасности TLS/SSL 131795770645352881 0x7ffacbbb0000 208896 C:\Windows\system32\rsaenh.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Enhanced Cryptographic Provider 131795770645352881 0x7ffacbbf0000 40960 C:\Windows\SYSTEM32\DPAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Data Protection API 131795770645352881 0x7ffacbd30000 229376 C:\Windows\System32\IPHLPAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API вспомогательного приложения IP 131795770645352881 0x7ffacbd70000 659456 C:\Windows\System32\DNSAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Динамическая библиотека API DNS-клиента 131795770645352881 0x7ffacbe20000 53248 C:\Windows\system32\netutils.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API Helpers DLL 131795770645352881 0x7ffacbe40000 126976 C:\Windows\SYSTEM32\USERENV.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Userenv 131795770645352881 0x7ffacbfb0000 376832 C:\Windows\system32\mswsock.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширение поставщика службы API Microsoft Windows Sockets 2.0 131795770645352881 0x7ffacc150000 94208 C:\Windows\SYSTEM32\cryptsp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Cryptographic Service Provider API 131795770645352881 0x7ffacc170000 45056 C:\Windows\System32\CRYPTBASE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base cryptographic API DLL 131795770645352881 0x7ffacc1f0000 241664 C:\Windows\System32\NTASN1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft ASN.1 API 131795770645352881 0x7ffacc230000 155648 C:\Windows\System32\ncrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Маршрутизатор Windows NCrypt 131795770645352881 0x7ffacc350000 180224 C:\Windows\SYSTEM32\SspiCli.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Security Support Provider Interface 131795770645352881 0x7ffacc500000 102400 C:\Windows\System32\EventAggregation.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Event Aggregation User Mode Library 131795770645352881 0x7ffacc520000 622592 C:\Windows\SYSTEM32\sxs.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Fusion 2.5 131795770645352881 0x7ffacc5c0000 352256 C:\Windows\SYSTEM32\WINSTA.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Winstation Library 131795770645352881 0x7ffacc620000 176128 C:\Windows\SYSTEM32\bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795770645352881 0x7ffacc6e0000 61440 C:\Windows\System32\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795770645352881 0x7ffacc6f0000 311296 C:\Windows\System32\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795770645352881 0x7ffacc740000 81920 C:\Windows\System32\profapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Profile Basic API 131795770645352881 0x7ffacc760000 65536 C:\Windows\System32\MSASN1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ASN.1 Runtime APIs 131795770645352881 0x7ffacc8f0000 1003520 C:\Windows\System32\ucrtbase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645352881 0x7ffacc9f0000 434176 C:\Windows\System32\bcryptPrimitives.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Cryptographic Primitives Library 131795770645352881 0x7ffacca60000 122880 C:\Windows\System32\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795770645352881 0x7ffacca80000 348160 C:\Windows\System32\WINTRUST.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation Microsoft Trust Verification APIs 131795770645352881 0x7ffaccae0000 692224 C:\Windows\System32\SHCORE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795770645352881 0x7ffaccb90000 7180288 C:\Windows\System32\windows.storage.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API хранения Microsoft WinRT 131795770645352881 0x7ffacd270000 2215936 C:\Windows\System32\KERNELBASE.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645352881 0x7ffacd490000 1871872 C:\Windows\System32\CRYPT32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API32 криптографии 131795770645352881 0x7ffacd710000 638976 C:\Windows\System32\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645352881 0x7ffacd7b0000 270336 C:\Windows\System32\cfgmgr32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Configuration Manager DLL 131795770645352881 0x7ffacd810000 22056960 C:\Windows\System32\SHELL32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Общая библиотека оболочки Windows 131795770645352881 0x7ffaced20000 782336 C:\Windows\System32\OLEAUT32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795770645352881 0x7ffacede0000 450560 C:\Windows\System32\coml2.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft COM for Windows 131795770645352881 0x7ffacee50000 1183744 C:\Windows\System32\RPCRT4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795770645352881 0x7ffacef80000 32768 C:\Windows\System32\NSI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation NSI User-mode interface DLL 131795770645352881 0x7ffacef90000 647168 C:\Windows\System32\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795770645352881 0x7ffacf030000 651264 C:\Windows\System32\clbcatq.dll 2001.12.10941.16384 (rs1_release.160715-1616) Microsoft Corporation COM+ Configuration Catalog 131795770645352881 0x7ffacf0d0000 704512 C:\Windows\System32\KERNEL32.DLL 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645352881 0x7ffacf1e0000 1417216 C:\Windows\System32\MSCTF.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Серверная библиотека MSCTF 131795770645352881 0x7ffacf340000 4362240 C:\Windows\System32\SETUPAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Setup API 131795770645352881 0x7ffacf770000 212992 C:\Windows\System32\GDI32.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation GDI Client DLL 131795770645352881 0x7ffacf820000 434176 C:\Windows\System32\WS2_32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation 32-разрядная библиотека Windows Socket 2.0 131795770645352881 0x7ffacf890000 188416 C:\Windows\System32\IMM32.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Multi-User Windows IMM32 API Client DLL 131795770645352881 0x7ffacf8c0000 1462272 C:\Windows\System32\USER32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795770645352881 0x7ffacfb30000 2916352 C:\Windows\System32\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795770645352881 0x7ffacfe00000 114688 C:\Windows\System32\imagehlp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT Image Helper 131795770645352881 0x7ffacfe20000 663552 C:\Windows\System32\advapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795770645352881 0x7ffad0070000 1277952 C:\Windows\System32\ole32.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft OLE для Windows 131795770645352881 0x7ffad01b0000 335872 C:\Windows\System32\SHLWAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека небольших программ оболочки 131795770645352881 0x7ffad0210000 364544 C:\Windows\System32\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795770645352881 0x7ffad0270000 1908736 C:\Windows\SYSTEM32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 13 404 396 14 00000000:000003e7 131765776186257169 0 0 1 Обязательная метка\Обязательный уровень системы NT AUTHORITY\СИСТЕМА csrss.exe C:\Windows\system32\csrss.exe %SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16 Microsoft Corporation 10.0.14393.0 (rs1_release.160715-1616) Процесс исполнения клиент-сервер 15 468 460 16 00000000:000003e7 131765776223665667 0 0 1 Обязательная метка\Обязательный уровень системы NT AUTHORITY\СИСТЕМА csrss.exe C:\Windows\system32\csrss.exe %SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16 Microsoft Corporation 10.0.14393.0 (rs1_release.160715-1616) Процесс исполнения клиент-сервер 17 484 396 14 00000000:000003e7 131765776226419105 0 0 1 Обязательная метка\Обязательный уровень системы NT AUTHORITY\СИСТЕМА wininit.exe C:\Windows\system32\wininit.exe wininit.exe Microsoft Corporation 10.0.14393.0 (rs1_release.160715-1616) Автозагрузка приложений Windows 18 520 460 16 00000000:000003e7 131765776226825613 0 0 1 Обязательная метка\Обязательный уровень системы NT AUTHORITY\СИСТЕМА winlogon.exe C:\Windows\system32\winlogon.exe winlogon.exe Microsoft Corporation 10.0.14393.0 (rs1_release.160715-1616) Программа входа в систему Windows 131795770645375500 0x7ff7b5570000 696320 C:\Windows\system32\winlogon.exe 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Программа входа в систему Windows 131795770645375500 0x7ffabaab0000 94208 C:\Windows\SYSTEM32\profext.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation profext 131795770645375500 0x7ffabcf30000 110592 C:\Windows\system32\MPR.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека маршрутизации для нескольких служб доступа 131795770645375500 0x7ffac4450000 86016 C:\Windows\SYSTEM32\usermgrcli.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation UserMgr API DLL 131795770645375500 0x7ffac90b0000 90112 C:\Windows\system32\wkscli.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Workstation Service Client DLL 131795770645375500 0x7ffaca4e0000 77824 C:\Windows\SYSTEM32\wtsapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Remote Desktop Session Host Server SDK APIs 131795770645375500 0x7ffacadf0000 499712 C:\Windows\system32\apphelp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиентская библиотека совместимости приложений 131795770645375500 0x7ffacaee0000 81920 C:\Windows\SYSTEM32\dwminit.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DWMInit 131795770645375500 0x7ffacaf00000 610304 C:\Windows\system32\UxTheme.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека тем UxTheme (Microsoft) 131795770645375500 0x7ffacafa0000 118784 C:\Windows\system32\UXINIT.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows User Experience Session Initialization Dll 131795770645375500 0x7ffacb360000 176128 C:\Windows\system32\fwbase.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Firewall Base DLL 131795770645375500 0x7ffacb420000 204800 C:\Windows\SYSTEM32\ntmarta.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик Windows NT MARTA 131795770645375500 0x7ffacb460000 548864 C:\Windows\SYSTEM32\firewallapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API брандмауэра Windows 131795770645375500 0x7ffacbbf0000 40960 C:\Windows\system32\DPAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Data Protection API 131795770645375500 0x7ffacbe20000 53248 C:\Windows\system32\netutils.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API Helpers DLL 131795770645375500 0x7ffacbe40000 126976 C:\Windows\system32\USERENV.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Userenv 131795770645375500 0x7ffacc170000 45056 C:\Windows\system32\CRYPTBASE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base cryptographic API DLL 131795770645375500 0x7ffacc350000 180224 C:\Windows\system32\SspiCli.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Security Support Provider Interface 131795770645375500 0x7ffacc5c0000 352256 C:\Windows\SYSTEM32\winsta.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Winstation Library 131795770645375500 0x7ffacc620000 176128 C:\Windows\system32\bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795770645375500 0x7ffacc6f0000 311296 C:\Windows\System32\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795770645375500 0x7ffacc740000 81920 C:\Windows\System32\profapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Profile Basic API 131795770645375500 0x7ffacc760000 65536 C:\Windows\System32\MSASN1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ASN.1 Runtime APIs 131795770645375500 0x7ffacc8f0000 1003520 C:\Windows\System32\ucrtbase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645375500 0x7ffacc9f0000 434176 C:\Windows\System32\bcryptPrimitives.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Cryptographic Primitives Library 131795770645375500 0x7ffacca60000 122880 C:\Windows\System32\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795770645375500 0x7ffaccae0000 692224 C:\Windows\System32\shcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795770645375500 0x7ffacd270000 2215936 C:\Windows\System32\KERNELBASE.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645375500 0x7ffacd490000 1871872 C:\Windows\System32\CRYPT32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API32 криптографии 131795770645375500 0x7ffacee50000 1183744 C:\Windows\System32\RPCRT4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795770645375500 0x7ffacef90000 647168 C:\Windows\System32\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795770645375500 0x7ffacf0d0000 704512 C:\Windows\System32\KERNEL32.DLL 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645375500 0x7ffacf770000 212992 C:\Windows\System32\GDI32.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation GDI Client DLL 131795770645375500 0x7ffacf890000 188416 C:\Windows\System32\IMM32.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Multi-User Windows IMM32 API Client DLL 131795770645375500 0x7ffacf8c0000 1462272 C:\Windows\System32\user32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795770645375500 0x7ffacfb30000 2916352 C:\Windows\System32\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795770645375500 0x7ffacfe20000 663552 C:\Windows\System32\advapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795770645375500 0x7ffad0210000 364544 C:\Windows\System32\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795770645375500 0x7ffad0270000 1908736 C:\Windows\SYSTEM32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 19 588 484 17 00000000:000003e7 131765776277547408 0 0 1 Обязательная метка\Обязательный уровень системы NT AUTHORITY\СИСТЕМА lsass.exe C:\Windows\system32\lsass.exe C:\Windows\system32\lsass.exe Microsoft Corporation 10.0.14393.1770 (rs1_release.170917-1700) Local Security Authority Process 131795770645375702 0x222e3610000 12288 C:\Windows\system32\msprivs.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Переводы привилегий Майкрософт 131795770645375702 0x7ff6b2d20000 69632 C:\Windows\system32\lsass.exe 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Local Security Authority Process 131795770645375702 0x7ffab9170000 380928 C:\Windows\System32\vaultsvc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служба диспетчера учетных данных 131795770645375702 0x7ffabf170000 77824 C:\Windows\system32\hmkd.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows HMAC Key Derivation API 131795770645375702 0x7ffabf190000 126976 C:\Windows\System32\ngcpopkeysrv.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Microsoft Passport Proof-of-possession Key Service 131795770645375702 0x7ffabf1b0000 114688 C:\Windows\system32\keyiso.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служба изоляции ключей CNG 131795770645375702 0x7ffabf1d0000 192512 C:\Windows\System32\cryptnet.dll 10.0.14393.2035 (rs1_release_inmarket.180110-1910) Microsoft Corporation Crypto Network Related API 131795770645375702 0x7ffabf200000 405504 C:\Windows\SYSTEM32\cryptngc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API службы Microsoft Passport 131795770645375702 0x7ffabf270000 143360 C:\Windows\System32\SecureTimeAggregator.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Secure Time Aggregator 131795770645375702 0x7ffabf2a0000 159744 C:\Windows\system32\dssenh.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Enhanced DSS and Diffie-Hellman Cryptographic Provider 131795770645375702 0x7ffabf2d0000 344064 C:\Windows\system32\ncryptprov.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft KSP 131795770645375702 0x7ffabff60000 135168 C:\Windows\system32\ncryptsslp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft SChannel Provider 131795770645375702 0x7ffac0ac0000 53248 C:\Windows\system32\tbs.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation TBS 131795770645375702 0x7ffac0ad0000 86016 C:\Windows\SYSTEM32\mskeyprotect.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик защиты ключей (Майкрософт) 131795770645375702 0x7ffac1d60000 589824 C:\Windows\system32\webio.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API протоколов передачи по Веб 131795770645375702 0x7ffac6610000 40960 C:\Windows\System32\rasadhlp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Remote Access AutoDial Helper 131795770645375702 0x7ffac69c0000 839680 C:\Windows\system32\WINHTTP.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Службы HTTP Windows 131795770645375702 0x7ffac6b90000 53248 C:\Windows\system32\DSPARSE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Active Directory Domain Services API 131795770645375702 0x7ffac6ba0000 49152 C:\Windows\SYSTEM32\secur32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Security Support Provider Interface 131795770645375702 0x7ffac83d0000 106496 C:\Windows\SYSTEM32\dhcpcsvc.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служба DHCP-клиента 131795770645375702 0x7ffac83f0000 90112 C:\Windows\SYSTEM32\dhcpcsvc6.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиент DHCPv6 131795770645375702 0x7ffac8420000 434176 C:\Windows\System32\fwpuclnt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API пользовательского режима FWP/IPsec 131795770645375702 0x7ffac8810000 45056 C:\Windows\SYSTEM32\WINNSI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Network Store Information RPC interface 131795770645375702 0x7ffac8fa0000 253952 C:\Windows\system32\logoncli.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Net Logon Client DLL 131795770645375702 0x7ffac9220000 397312 C:\Windows\SYSTEM32\wevtapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API настройки и использования событий 131795770645375702 0x7ffac9290000 40960 C:\Windows\system32\DSROLE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DS Setup Client DLL 131795770645375702 0x7ffacb6f0000 143360 C:\Windows\SYSTEM32\gpapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиентские функции API групповой политики 131795770645375702 0x7ffacb960000 303104 C:\Windows\system32\AUTHZ.dll 10.0.14393.1737 (rs1_release_inmarket.170914-1249) Microsoft Corporation Authorization Framework 131795770645375702 0x7ffacb9b0000 294912 C:\Windows\system32\scecli.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиент редактора конфигураций безопасности 131795770645375702 0x7ffacba80000 49152 C:\Windows\SYSTEM32\SspiSrv.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation LSA SSPI RPC interface DLL 131795770645375702 0x7ffacba90000 221184 C:\Windows\system32\dpapisrv.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DPAPI Server 131795770645375702 0x7ffacbad0000 102400 C:\Windows\system32\efslsaext.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation LSA extension for EFS 131795770645375702 0x7ffacbaf0000 495616 C:\Windows\system32\schannel.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик безопасности TLS/SSL 131795770645375702 0x7ffacbb70000 245760 C:\Windows\system32\wdigest.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Digest Access 131795770645375702 0x7ffacbbb0000 208896 C:\Windows\system32\rsaenh.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Enhanced Cryptographic Provider 131795770645375702 0x7ffacbbf0000 40960 C:\Windows\SYSTEM32\DPAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Data Protection API 131795770645375702 0x7ffacbc00000 290816 C:\Windows\SYSTEM32\MicrosoftAccountCloudAP.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation MicrosoftAccount Cloud AP Plugin 131795770645375702 0x7ffacbc50000 372736 C:\Windows\system32\cloudAP.DLL 10.0.14393.1358 (rs1_release.170602-2252) Microsoft Corporation Cloud AP Security Package 131795770645375702 0x7ffacbcb0000 278528 C:\Windows\system32\pku2u.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Pku2u Security Package 131795770645375702 0x7ffacbd00000 139264 C:\Windows\system32\tspkg.DLL 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation Web Service Security Package 131795770645375702 0x7ffacbd30000 229376 C:\Windows\SYSTEM32\IPHLPAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API вспомогательного приложения IP 131795770645375702 0x7ffacbd70000 659456 C:\Windows\system32\DNSAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Динамическая библиотека API DNS-клиента 131795770645375702 0x7ffacbe20000 53248 C:\Windows\system32\netutils.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API Helpers DLL 131795770645375702 0x7ffacbe30000 57344 C:\Windows\system32\gmsaclient.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation "gmsaclient.DYNLINK" 131795770645375702 0x7ffacbe40000 126976 C:\Windows\system32\USERENV.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Userenv 131795770645375702 0x7ffacbe60000 843776 C:\Windows\system32\netlogon.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Динамическая библиотека службы Net Logon 131795770645375702 0x7ffacbf30000 49152 C:\Windows\system32\NtlmShared.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation NTLM Shared Functionality 131795770645375702 0x7ffacbf40000 421888 C:\Windows\system32\msv1_0.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Authentication Package v1.0 131795770645375702 0x7ffacbfb0000 376832 C:\Windows\system32\mswsock.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширение поставщика службы API Microsoft Windows Sockets 2.0 131795770645375702 0x7ffacc010000 86016 C:\Windows\system32\cryptdll.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Cryptography Manager 131795770645375702 0x7ffacc030000 163840 C:\Windows\system32\KerbClientShared.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Kerberos Client Shared Functionality 131795770645375702 0x7ffacc150000 94208 C:\Windows\system32\CRYPTSP.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Cryptographic Service Provider API 131795770645375702 0x7ffacc170000 45056 C:\Windows\system32\CRYPTBASE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base cryptographic API DLL 131795770645375702 0x7ffacc180000 155648 C:\Windows\system32\negoexts.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation NegoExtender Security Package 131795770645375702 0x7ffacc1b0000 126976 C:\Windows\system32\JOINUTIL.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Join Utility DLL 131795770645375702 0x7ffacc1d0000 86016 C:\Windows\SYSTEM32\netprovfw.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Provisioning Service Framework DLL 131795770645375702 0x7ffacc1f0000 241664 C:\Windows\system32\NTASN1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft ASN.1 API 131795770645375702 0x7ffacc230000 155648 C:\Windows\system32\ncrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Маршрутизатор Windows NCrypt 131795770645375702 0x7ffacc260000 921600 C:\Windows\SYSTEM32\samsrv.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека сервера диспетчера учетных записей 131795770645375702 0x7ffacc350000 180224 C:\Windows\system32\SspiCli.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Security Support Provider Interface 131795770645375702 0x7ffacc380000 1527808 C:\Windows\system32\lsasrv.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation Библиотека DLL сервера LSA 131795770645375702 0x7ffacc5c0000 352256 C:\Windows\SYSTEM32\winsta.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Winstation Library 131795770645375702 0x7ffacc620000 176128 C:\Windows\system32\bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795770645375702 0x7ffacc6f0000 311296 C:\Windows\System32\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795770645375702 0x7ffacc740000 81920 C:\Windows\System32\profapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Profile Basic API 131795770645375702 0x7ffacc760000 65536 C:\Windows\System32\MSASN1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ASN.1 Runtime APIs 131795770645375702 0x7ffacc8f0000 1003520 C:\Windows\System32\ucrtbase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645375702 0x7ffacc9f0000 434176 C:\Windows\System32\bcryptprimitives.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Cryptographic Primitives Library 131795770645375702 0x7ffacd270000 2215936 C:\Windows\System32\KERNELBASE.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645375702 0x7ffacd490000 1871872 C:\Windows\System32\CRYPT32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API32 криптографии 131795770645375702 0x7ffacd710000 638976 C:\Windows\System32\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645375702 0x7ffaced20000 782336 C:\Windows\System32\OLEAUT32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795770645375702 0x7ffacee50000 1183744 C:\Windows\System32\RPCRT4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795770645375702 0x7ffacef80000 32768 C:\Windows\System32\NSI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation NSI User-mode interface DLL 131795770645375702 0x7ffacef90000 647168 C:\Windows\System32\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795770645375702 0x7ffacf0d0000 704512 C:\Windows\System32\KERNEL32.DLL 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645375702 0x7ffacf180000 376832 C:\Windows\System32\WLDAP32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Win32 LDAP API DLL 131795770645375702 0x7ffacf820000 434176 C:\Windows\System32\WS2_32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation 32-разрядная библиотека Windows Socket 2.0 131795770645375702 0x7ffacfb30000 2916352 C:\Windows\System32\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795770645375702 0x7ffacfe20000 663552 C:\Windows\System32\advapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795770645375702 0x7ffad0210000 364544 C:\Windows\System32\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795770645375702 0x7ffad0270000 1908736 C:\Windows\SYSTEM32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 20 704 580 4 00000000:000003e4 131765776284978539 0 0 1 Обязательная метка\Обязательный уровень системы NT AUTHORITY\NETWORK SERVICE svchost.exe C:\Windows\system32\svchost.exe C:\Windows\system32\svchost.exe -k RPCSS Microsoft Corporation 10.0.14393.0 (rs1_release.160715-1616) Хост-процесс для служб Windows 131795770645375918 0x7ff718c20000 57344 C:\Windows\system32\svchost.exe 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Хост-процесс для служб Windows 131795770645375918 0x7ffabae40000 110592 C:\Windows\SYSTEM32\capauthz.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API авторизации возможностей 131795770645375918 0x7ffac4450000 86016 C:\Windows\SYSTEM32\usermgrcli.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation UserMgr API DLL 131795770645375918 0x7ffac6610000 40960 C:\Windows\System32\rasadhlp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Remote Access AutoDial Helper 131795770645375918 0x7ffac8250000 28672 C:\Windows\system32\wshhyperv.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Hyper-V Winsock2 Helper DLL 131795770645375918 0x7ffac8420000 434176 C:\Windows\system32\fwpuclnt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API пользовательского режима FWP/IPsec 131795770645375918 0x7ffaca4e0000 77824 C:\Windows\SYSTEM32\wtsapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Remote Desktop Session Host Server SDK APIs 131795770645375918 0x7ffacb360000 176128 C:\Windows\system32\fwbase.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Firewall Base DLL 131795770645375918 0x7ffacb460000 548864 C:\Windows\system32\FirewallAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API брандмауэра Windows 131795770645375918 0x7ffacb5c0000 913408 c:\windows\system32\rpcss.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Distributed COM Services 131795770645375918 0x7ffacb6a0000 73728 C:\Windows\system32\RpcRtRemote.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Remote RPC Extension 131795770645375918 0x7ffacb6c0000 98304 c:\windows\system32\rpcepmap.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Сопоставитель конечных точек RPC 131795770645375918 0x7ffacb920000 81920 C:\Windows\SYSTEM32\WLDP.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Политика блокировки Windows 131795770645375918 0x7ffacbd30000 229376 C:\Windows\SYSTEM32\IPHLPAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API вспомогательного приложения IP 131795770645375918 0x7ffacbd70000 659456 C:\Windows\SYSTEM32\DNSAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Динамическая библиотека API DNS-клиента 131795770645375918 0x7ffacbf30000 49152 C:\Windows\system32\NtlmShared.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation NTLM Shared Functionality 131795770645375918 0x7ffacbf40000 421888 C:\Windows\system32\msv1_0.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Authentication Package v1.0 131795770645375918 0x7ffacbfb0000 376832 C:\Windows\system32\mswsock.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширение поставщика службы API Microsoft Windows Sockets 2.0 131795770645375918 0x7ffacc010000 86016 C:\Windows\system32\cryptdll.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Cryptography Manager 131795770645375918 0x7ffacc350000 180224 C:\Windows\system32\sspicli.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Security Support Provider Interface 131795770645375918 0x7ffacc5c0000 352256 C:\Windows\SYSTEM32\WINSTA.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Winstation Library 131795770645375918 0x7ffacc620000 176128 C:\Windows\system32\bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795770645375918 0x7ffacc6e0000 61440 C:\Windows\System32\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795770645375918 0x7ffacc6f0000 311296 C:\Windows\System32\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795770645375918 0x7ffacc760000 65536 C:\Windows\System32\MSASN1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ASN.1 Runtime APIs 131795770645375918 0x7ffacc8f0000 1003520 C:\Windows\System32\ucrtbase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645375918 0x7ffacc9f0000 434176 C:\Windows\System32\bcryptPrimitives.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Cryptographic Primitives Library 131795770645375918 0x7ffacca60000 122880 C:\Windows\System32\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795770645375918 0x7ffacca80000 348160 C:\Windows\System32\WINTRUST.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation Microsoft Trust Verification APIs 131795770645375918 0x7ffacd270000 2215936 C:\Windows\System32\KERNELBASE.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645375918 0x7ffacd490000 1871872 C:\Windows\System32\CRYPT32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API32 криптографии 131795770645375918 0x7ffacee50000 1183744 C:\Windows\System32\RPCRT4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795770645375918 0x7ffacef80000 32768 C:\Windows\System32\NSI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation NSI User-mode interface DLL 131795770645375918 0x7ffacef90000 647168 C:\Windows\System32\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795770645375918 0x7ffacf030000 651264 C:\Windows\System32\clbcatq.dll 2001.12.10941.16384 (rs1_release.160715-1616) Microsoft Corporation COM+ Configuration Catalog 131795770645375918 0x7ffacf0d0000 704512 C:\Windows\System32\KERNEL32.DLL 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645375918 0x7ffacf770000 212992 C:\Windows\System32\GDI32.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation GDI Client DLL 131795770645375918 0x7ffacf820000 434176 C:\Windows\System32\WS2_32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation 32-разрядная библиотека Windows Socket 2.0 131795770645375918 0x7ffacf8c0000 1462272 C:\Windows\System32\USER32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795770645375918 0x7ffacfb30000 2916352 C:\Windows\System32\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795770645375918 0x7ffacfe20000 663552 C:\Windows\System32\advapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795770645375918 0x7ffad0070000 1277952 C:\Windows\System32\ole32.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft OLE для Windows 131795770645375918 0x7ffad0210000 364544 C:\Windows\System32\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795770645375918 0x7ffad0270000 1908736 C:\Windows\SYSTEM32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 21 808 520 18 00000000:0000c8d4 131765776288401882 0 0 1 Обязательная метка\Обязательный уровень системы Window Manager\DWM-1 dwm.exe C:\Windows\system32\dwm.exe "dwm.exe" Microsoft Corporation 10.0.14393.0 (rs1_release.160715-1616) Диспетчер окон рабочего стола 131795770645376024 0x7ff683990000 77824 C:\Windows\system32\dwm.exe 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Диспетчер окон рабочего стола 131795770645376024 0x7ffac3810000 167936 C:\Windows\system32\Cabinet.dll 5.00 (rs1_release.160715-1616) Microsoft Corporation Microsoft® Cabinet File API 131795770645376024 0x7ffac60e0000 221184 C:\Windows\system32\XmlLite.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft XmlLite Library 131795770645376024 0x7ffac6f50000 5632000 C:\Windows\system32\d2d1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека Microsoft D2D 131795770645376024 0x7ffac7720000 1601536 C:\Windows\System32\OneCoreUAPCommonProxyStub.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation OneCoreUAP Common Proxy Stub 131795770645376024 0x7ffac7b70000 569344 C:\Windows\System32\Windows.Gaming.Input.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Gaming Input API 131795770645376024 0x7ffac7fc0000 2674688 C:\Windows\system32\d3d10warp.dll 10.0.14393.576 (rs1_release_inmarket.161208-2252) Microsoft Corporation Direct3D 10 Rasterizer 131795770645376024 0x7ffac88a0000 2842624 C:\Windows\system32\d3d11.dll 10.0.14393.953 (rs1_release_inmarket.170303-1614) Microsoft Corporation Direct3D 11 Runtime 131795770645376024 0x7ffac8f90000 45056 C:\Windows\system32\avrt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Среда выполнения мультимедиа в реальном времени 131795770645376024 0x7ffac92e0000 1269760 C:\Windows\SYSTEM32\wintypes.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL основных типов Windows 131795770645376024 0x7ffac9500000 2682880 C:\Windows\system32\CoreUIComponents.dll 131795770645376024 0x7ffac9a30000 249856 C:\Windows\SYSTEM32\ism32k.dll 131795770645376024 0x7ffac9ec0000 294912 C:\Windows\System32\UIAnimation.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Animation Manager 131795770645376024 0x7ffac9f50000 1736704 C:\Windows\system32\WindowsCodecs.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Microsoft Windows Codecs Library 131795770645376024 0x7ffaca110000 94208 C:\Windows\SYSTEM32\dwmghost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DWMGhost 131795770645376024 0x7ffaca5e0000 155648 C:\Windows\system32\dwmapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Интерфейс API диспетчера окон рабочего стола (Майкрософт) 131795770645376024 0x7ffaca640000 770048 C:\Windows\system32\CoreMessaging.dll 10.0.14393.0 Microsoft Corporation Microsoft CoreMessaging Dll 131795770645376024 0x7ffaca770000 1380352 C:\Windows\system32\dcomp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft DirectComposition Library 131795770645376024 0x7ffaca8d0000 2318336 C:\Windows\system32\dwmcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека ядра Microsoft DWM 131795770645376024 0x7ffacac90000 856064 C:\Windows\SYSTEM32\udwm.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Диспетчер окон рабочего стола Майкрософт 131795770645376024 0x7ffacadc0000 167936 C:\Windows\SYSTEM32\dwmredir.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Компонент перенаправления диспетчера окон рабочего стола Microsoft 131795770645376024 0x7ffacadf0000 499712 C:\Windows\system32\apphelp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиентская библиотека совместимости приложений 131795770645376024 0x7ffacaf00000 610304 C:\Windows\system32\uxtheme.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека тем UxTheme (Microsoft) 131795770645376024 0x7ffacb1e0000 1163264 C:\Windows\System32\twinapi.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation twinapi.appcore 131795770645376024 0x7ffacb780000 651264 C:\Windows\system32\dxgi.dll 10.0.14393.953 (rs1_release_inmarket.170303-1614) Microsoft Corporation DirectX Graphics Infrastructure 131795770645376024 0x7ffacc620000 176128 C:\Windows\System32\bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795770645376024 0x7ffacc6e0000 61440 C:\Windows\System32\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795770645376024 0x7ffacc760000 65536 C:\Windows\System32\MSASN1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ASN.1 Runtime APIs 131795770645376024 0x7ffacc8f0000 1003520 C:\Windows\System32\ucrtbase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645376024 0x7ffacc9f0000 434176 C:\Windows\System32\bcryptPrimitives.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Cryptographic Primitives Library 131795770645376024 0x7ffacca60000 122880 C:\Windows\System32\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795770645376024 0x7ffaccae0000 692224 C:\Windows\System32\shcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795770645376024 0x7ffacd270000 2215936 C:\Windows\System32\KERNELBASE.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645376024 0x7ffacd490000 1871872 C:\Windows\System32\CRYPT32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API32 криптографии 131795770645376024 0x7ffacd710000 638976 C:\Windows\System32\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645376024 0x7ffacd7b0000 270336 C:\Windows\System32\cfgmgr32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Configuration Manager DLL 131795770645376024 0x7ffaced20000 782336 C:\Windows\System32\OLEAUT32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795770645376024 0x7ffacee50000 1183744 C:\Windows\System32\RPCRT4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795770645376024 0x7ffacef90000 647168 C:\Windows\System32\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795770645376024 0x7ffacf030000 651264 C:\Windows\System32\clbcatq.dll 2001.12.10941.16384 (rs1_release.160715-1616) Microsoft Corporation COM+ Configuration Catalog 131795770645376024 0x7ffacf0d0000 704512 C:\Windows\System32\KERNEL32.DLL 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645376024 0x7ffacf770000 212992 C:\Windows\System32\gdi32.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation GDI Client DLL 131795770645376024 0x7ffacf890000 188416 C:\Windows\System32\IMM32.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Multi-User Windows IMM32 API Client DLL 131795770645376024 0x7ffacf8c0000 1462272 C:\Windows\System32\USER32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795770645376024 0x7ffacfb30000 2916352 C:\Windows\System32\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795770645376024 0x7ffacfe20000 663552 C:\Windows\System32\advapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795770645376024 0x7ffad0210000 364544 C:\Windows\System32\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795770645376024 0x7ffad0270000 1908736 C:\Windows\SYSTEM32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 22 904 580 4 00000000:000003e7 131765776293087855 0 0 1 Обязательная метка\Обязательный уровень системы NT AUTHORITY\СИСТЕМА svchost.exe C:\Windows\System32\svchost.exe C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted Microsoft Corporation 10.0.14393.0 (rs1_release.160715-1616) Хост-процесс для служб Windows 131795770645376243 0x259b0640000 12288 C:\Windows\system32\SFC.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows File Protection 131795770645376243 0x7ff718c20000 57344 C:\Windows\System32\svchost.exe 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Хост-процесс для служб Windows 131795770645376243 0x7ffaab830000 278528 c:\windows\system32\netman.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Диспетчер сетевых подключений 131795770645376243 0x7ffaab880000 532480 c:\windows\system32\MPRAPI.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation Windows NT MP Router Administration DLL 131795770645376243 0x7ffaab910000 905216 c:\windows\system32\RASDLG.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API общих диалогов службы удаленного доступа 131795770645376243 0x7ffab1260000 10350592 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\clr.dll 4.7.2117.0 built by: NET47REL1LAST Microsoft Corporation Microsoft .NET Runtime Common Language Runtime - WorkStation 131795770645376243 0x7ffab2460000 2822144 C:\Windows\System32\netshell.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Оболочка сетевых подключений 131795770645376243 0x7ffab7d80000 753664 c:\windows\system32\RASAPI32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API удаленного доступа 131795770645376243 0x7ffabae60000 77824 C:\Windows\System32\DEVRTL.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Device Management Run Time Library 131795770645376243 0x7ffabb430000 65536 C:\Windows\System32\pcacli.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Program Compatibility Assistant Client Module 131795778252487651 0x7ffabc160000 688128 C:\Windows\System32\aeinv.dll 10.0.17060.1029 (WinBuild.160101.0800) Microsoft Corporation Application Inventory Component 131795770645376243 0x7ffabc510000 90112 C:\Windows\system32\execmodelproxy.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ExecModelProxy 131795770645376243 0x7ffabcf30000 110592 C:\Windows\System32\MPR.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека маршрутизации для нескольких служб доступа 131795770645376243 0x7ffabcf50000 921600 C:\Windows\System32\drvstore.dll 10.0.14393.351 (rs1_release_inmarket.161014-1755) Microsoft Corporation Driver Store API 131795770645376243 0x7ffabdd60000 425984 C:\Windows\System32\AppXDeploymentClient.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL-библиотека клиента развертывания AppX 131795770645376243 0x7ffabef80000 69632 C:\Windows\System32\sfc_os.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows File Protection 131795778007496118 0x7ffabefd0000 258048 C:\Windows\System32\aepic.dll 10.0.17060.1029 (WinBuild.160101.0800) Microsoft Corporation Application Experience Program Cache 131795770645376243 0x7ffabfa00000 1011712 C:\Windows\SYSTEM32\MSVCR120_CLR0400.dll 12.00.52519.0 built by: VSWINSERVICING Microsoft Corporation Microsoft® C Runtime Library 131795770645376243 0x7ffac0610000 3088384 C:\Windows\System32\MSI.DLL 5.0.14393.2155 Microsoft Corporation Windows Installer 131795770645376243 0x7ffac0bf0000 3559424 C:\Windows\System32\ActXPrxy.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation ActiveX Interface Marshaling Library 131795770645376243 0x7ffac0fc0000 294912 C:\Windows\system32\spp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека общих точек защиты Microsoft® Windows 131795770645376243 0x7ffac1010000 417792 C:\Windows\system32\MSCOREE.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft .NET Runtime Execution Engine 131795770645376243 0x7ffac10f0000 421888 c:\windows\system32\storsvc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Службы хранения 131795770645376243 0x7ffac1240000 638976 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscoreei.dll 4.7.2623.0 built by: NET471REL1LAST_C Microsoft Corporation Microsoft .NET Runtime Execution Engine 131795781037721051 0x7ffac1660000 688128 C:\Windows\System32\aeinv.dll 10.0.17060.1029 (WinBuild.160101.0800) Microsoft Corporation Application Inventory Component 131795770645376243 0x7ffac1e80000 507904 C:\Windows\System32\NetSetupShim.dll 10.0.14393.1532 (rs1_release_d.170711-1840) Microsoft Corporation Network Configuration API 131795770645376243 0x7ffac1fd0000 999424 C:\Windows\system32\wbem\fastprox.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation WMI Custom Marshaller 131795770645376243 0x7ffac20d0000 110592 c:\windows\system32\RMCLIENT.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Resource Manager Client 131795770645376243 0x7ffac21d0000 81920 C:\Windows\system32\wbem\wbemsvc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation WMI 131795770645376243 0x7ffac2360000 57344 c:\windows\system32\TimeBrokerClient.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Time Broker Client Library 131795770645376243 0x7ffac23c0000 331776 C:\Windows\System32\OneCoreCommonProxyStub.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation OneCore Common Proxy Stub 131795770645376243 0x7ffac2420000 466944 c:\windows\system32\das.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служба сопоставления устройств 131795770645376243 0x7ffac2530000 270336 C:\Windows\system32\hnetcfgclient.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиент API конфигурации домашней сети 131795770645376243 0x7ffac2750000 106496 c:\windows\system32\bcd.dll 10.0.14393.1794 (rs1_release.171008-1615) Microsoft Corporation BCD DLL 131795770645376243 0x7ffac29f0000 159744 C:\Windows\System32\NetSetupApi.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Network Configuration API 131795770645376243 0x7ffac2a20000 81920 c:\windows\system32\rtutils.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Routing Utilities 131795770645376243 0x7ffac2b80000 40960 C:\Windows\System32\VERSION.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Version Checking and File Installation Libraries 131795770645376243 0x7ffac3270000 40960 c:\windows\system32\FLTLIB.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека фильтров 131795770645376243 0x7ffac34c0000 81920 C:\Windows\system32\vss_ps.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation Microsoft® Volume Shadow Copy Service proxy/stub 131795770645376243 0x7ffac3840000 3088384 c:\windows\system32\ESENT.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширяемая подсистема хранения данных ESE для Microsoft(R) Windows(R) 131795778007645121 0x7ffac3cb0000 2772992 C:\Windows\System32\iertutil.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служебная программа времени выполнения для Internet Explorer 131795770645376243 0x7ffac4050000 118784 c:\windows\system32\wdi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Инфраструктура диагностики Windows 131795770645376243 0x7ffac41c0000 139264 c:\windows\system32\trkwks.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиент отслеживания изменившихся связей 131795770645376243 0x7ffac4220000 520192 C:\Windows\SYSTEM32\wbemcomn.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation WMI 131795770645376243 0x7ffac4450000 86016 C:\Windows\SYSTEM32\usermgrcli.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation UserMgr API DLL 131795770645376243 0x7ffac4470000 65536 C:\Windows\system32\wbem\wbemprox.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation WMI 131795770645376243 0x7ffac4650000 516096 c:\windows\system32\pcasvc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служба помощника по совместимости программ 131795770645376243 0x7ffac4f40000 122880 C:\Windows\system32\radardt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Программа обнаружения нехватки системных ресурсов Windows 131795770645376243 0x7ffac4fd0000 618496 C:\Windows\System32\wlidprov.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft® Account Provider 131795770645376243 0x7ffac5b30000 114688 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\fusion.dll 4.6.1586.0 built by: NETFXREL2 Microsoft Corporation Assembly manager 131795770645376243 0x7ffac5b50000 180224 c:\windows\system32\dssvc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL службы NT для службы совместного доступа к данным 131795770645376243 0x7ffac5c50000 131072 c:\windows\system32\rasman.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Remote Access Connection Manager 131795770645376243 0x7ffac60e0000 221184 C:\Windows\System32\XmlLite.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft XmlLite Library 131795770645376243 0x7ffac6120000 966656 c:\windows\system32\sysmain.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Хост службы Superfetch 131795770645376243 0x7ffac6410000 98304 C:\Windows\system32\VssTrace.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека трассировки службы теневого копирования тома Microsoft® 131795770645376243 0x7ffac6430000 1581056 C:\Windows\system32\VSSAPI.DLL 10.0.14393.953 (rs1_release_inmarket.170303-1614) Microsoft Corporation Microsoft® Volume Shadow Copy Requestor/Writer Services API DLL 131795770645376243 0x7ffac6c40000 2596864 C:\Windows\WinSxS\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.14393.953_none_42151e83c686086b\Comctl32.dll 6.10 (rs1_release_inmarket.170303-1614) Microsoft Corporation Библиотека элементов управления взаимодействия с пользователем 131795770645376243 0x7ffac79c0000 57344 C:\Windows\System32\npmproxy.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Network List Manager Proxy 131795770645376243 0x7ffac7b10000 217088 C:\Windows\SYSTEM32\WUDFPlatform.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Driver Foundation - библиотека платформ пользовательского режима 131795770645376243 0x7ffac7b50000 114688 c:\windows\system32\wudfsvc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Driver Foundation (WDF) - служба среды выполнения платформы драйвера режима пользователя 131795770645376243 0x7ffac8810000 45056 c:\windows\system32\WINNSI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Network Store Information RPC interface 131795770645376243 0x7ffac8880000 69632 c:\windows\system32\WMICLNT.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation WMI Client API 131795770645376243 0x7ffac8cf0000 815104 C:\Windows\System32\taskschd.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Task Scheduler COM API 131795770645376243 0x7ffac9290000 40960 c:\windows\system32\DSROLE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DS Setup Client DLL 131795770645376243 0x7ffac9480000 462848 c:\windows\system32\MMDevAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation MMDevice API 131795770645376243 0x7ffac9790000 98304 C:\Windows\System32\nlaapi.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Network Location Awareness 2 131795770645376243 0x7ffac9800000 376832 c:\windows\system32\audioendpointbuilder.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Средство построения конечных точек Windows Audio 131795770645376243 0x7ffac9de0000 94208 C:\Windows\System32\portabledeviceconnectapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Portable Device Connection API Components 131795770645376243 0x7ffac9e00000 647168 C:\Windows\SYSTEM32\PortableDeviceApi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Компоненты API для переносных устройств Windows 131795770645376243 0x7ffac9f10000 221184 C:\Windows\System32\netprofm.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Network List Manager 131795770645376243 0x7ffaca100000 36864 C:\Windows\SYSTEM32\httpprxc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Proxy Manager Provider RPC interface 131795770645376243 0x7ffaca130000 204800 C:\Windows\SYSTEM32\windows.devices.radios.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows.Devices.Radios DLL 131795770645376243 0x7ffaca1f0000 65536 C:\Windows\SYSTEM32\storageusage.dll 10.0.14393.82 (rs1_release.160805-1735) Microsoft Corporation Storage Usage 131795770645376243 0x7ffaca250000 49152 C:\Windows\SYSTEM32\bi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Background Broker Infrastructure Client Library 131795770645376243 0x7ffaca260000 45056 c:\windows\system32\SystemEventsBrokerClient.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation system Events Broker Client Library 131795770645376243 0x7ffaca2d0000 360448 c:\windows\system32\ncbservice.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Посредник подключений к сети 131795770645376243 0x7ffaca340000 1593344 c:\windows\system32\PROPSYS.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Система страниц свойств (Майкрософт) 131795770645376243 0x7ffaca4e0000 77824 c:\windows\system32\WTSAPI32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Remote Desktop Session Host Server SDK APIs 131795770645376243 0x7ffaca710000 65536 C:\Windows\system32\pcadm.dll 10.0.14393.2189 (rs1_release.180329-1711) Microsoft Corporation Program Compatibility Assistant Diagnostic Module 131795770645376243 0x7ffacad70000 278528 c:\windows\system32\BrokerLib.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Broker Base Library 131795770645376243 0x7ffacadf0000 499712 c:\windows\system32\apphelp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиентская библиотека совместимости приложений 131795770645376243 0x7ffacb1e0000 1163264 C:\Windows\SYSTEM32\twinapi.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation twinapi.appcore 131795770645376243 0x7ffacb3f0000 163840 C:\Windows\System32\DEVOBJ.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Device Information Set DLL 131795770645376243 0x7ffacb420000 204800 C:\Windows\SYSTEM32\ntmarta.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик Windows NT MARTA 131795770645376243 0x7ffacb920000 81920 C:\Windows\SYSTEM32\WLDP.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Политика блокировки Windows 131795770645376243 0x7ffacbbb0000 208896 C:\Windows\system32\rsaenh.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Enhanced Cryptographic Provider 131795770645376243 0x7ffacbbf0000 40960 c:\windows\system32\DPAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Data Protection API 131795770645376243 0x7ffacbd30000 229376 c:\windows\system32\IPHLPAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API вспомогательного приложения IP 131795770645376243 0x7ffacbe40000 126976 c:\windows\system32\USERENV.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Userenv 131795770645376243 0x7ffacbfb0000 376832 C:\Windows\system32\mswsock.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширение поставщика службы API Microsoft Windows Sockets 2.0 131795770645376243 0x7ffacc150000 94208 C:\Windows\System32\CRYPTSP.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Cryptographic Service Provider API 131795770645376243 0x7ffacc170000 45056 C:\Windows\System32\CRYPTBASE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base cryptographic API DLL 131795770645376243 0x7ffacc350000 180224 c:\windows\system32\SspiCli.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Security Support Provider Interface 131795770645376243 0x7ffacc500000 102400 c:\windows\system32\EventAggregation.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Event Aggregation User Mode Library 131795770645376243 0x7ffacc520000 622592 C:\Windows\system32\SXS.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Fusion 2.5 131795770645376243 0x7ffacc5c0000 352256 c:\windows\system32\WINSTA.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Winstation Library 131795770645376243 0x7ffacc620000 176128 c:\windows\system32\bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795770645376243 0x7ffacc6e0000 61440 C:\Windows\System32\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795770645376243 0x7ffacc6f0000 311296 C:\Windows\System32\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795770645376243 0x7ffacc740000 81920 C:\Windows\System32\profapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Profile Basic API 131795770645376243 0x7ffacc760000 65536 C:\Windows\System32\MSASN1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ASN.1 Runtime APIs 131795770645376243 0x7ffacc8f0000 1003520 C:\Windows\System32\ucrtbase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645376243 0x7ffacc9f0000 434176 C:\Windows\System32\bcryptPrimitives.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Cryptographic Primitives Library 131795770645376243 0x7ffacca60000 122880 C:\Windows\System32\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795770645376243 0x7ffacca80000 348160 C:\Windows\System32\WINTRUST.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation Microsoft Trust Verification APIs 131795770645376243 0x7ffaccae0000 692224 C:\Windows\System32\shcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795770645376243 0x7ffaccb90000 7180288 C:\Windows\System32\windows.storage.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API хранения Microsoft WinRT 131795770645376243 0x7ffacd270000 2215936 C:\Windows\System32\KERNELBASE.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645376243 0x7ffacd490000 1871872 C:\Windows\System32\CRYPT32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API32 криптографии 131795770645376243 0x7ffacd710000 638976 C:\Windows\System32\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645376243 0x7ffacd7b0000 270336 C:\Windows\System32\cfgmgr32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Configuration Manager DLL 131795770645376243 0x7ffacd810000 22056960 C:\Windows\System32\SHELL32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Общая библиотека оболочки Windows 131795770645376243 0x7ffaced20000 782336 C:\Windows\System32\OLEAUT32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795770645376243 0x7ffacede0000 450560 C:\Windows\System32\coml2.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft COM for Windows 131795770645376243 0x7ffacee50000 1183744 C:\Windows\System32\RPCRT4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795770645376243 0x7ffacef80000 32768 C:\Windows\System32\NSI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation NSI User-mode interface DLL 131795770645376243 0x7ffacef90000 647168 C:\Windows\System32\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795770645376243 0x7ffacf030000 651264 C:\Windows\System32\clbcatq.dll 2001.12.10941.16384 (rs1_release.160715-1616) Microsoft Corporation COM+ Configuration Catalog 131795770645376243 0x7ffacf0d0000 704512 C:\Windows\System32\KERNEL32.DLL 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645376243 0x7ffacf340000 4362240 C:\Windows\System32\SETUPAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Setup API 131795770645376243 0x7ffacf770000 212992 C:\Windows\System32\GDI32.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation GDI Client DLL 131795770645376243 0x7ffacf820000 434176 C:\Windows\System32\WS2_32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation 32-разрядная библиотека Windows Socket 2.0 131795770645376243 0x7ffacf8c0000 1462272 C:\Windows\System32\user32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795770645376243 0x7ffacfb30000 2916352 C:\Windows\System32\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795770645376243 0x7ffacfe20000 663552 C:\Windows\System32\ADVAPI32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795770645376243 0x7ffad0070000 1277952 C:\Windows\System32\ole32.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft OLE для Windows 131795770645376243 0x7ffad01b0000 335872 C:\Windows\System32\SHLWAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека небольших программ оболочки 131795770645376243 0x7ffad0210000 364544 C:\Windows\System32\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795770645376243 0x7ffad0270000 1908736 C:\Windows\SYSTEM32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 23 96 580 4 00000000:000003e5 131765776304995849 0 0 1 Обязательная метка\Обязательный уровень системы NT AUTHORITY\LOCAL SERVICE svchost.exe C:\Windows\system32\svchost.exe C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork Microsoft Corporation 10.0.14393.0 (rs1_release.160715-1616) Хост-процесс для служб Windows 131795770645376384 0x7ff718c20000 57344 C:\Windows\system32\svchost.exe 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Хост-процесс для служб Windows 131795770645376384 0x7ffac0bf0000 3559424 C:\Windows\System32\ActXPrxy.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation ActiveX Interface Marshaling Library 131795770645376384 0x7ffac1fd0000 999424 C:\Windows\system32\wbem\fastprox.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation WMI Custom Marshaller 131795770645376384 0x7ffac21b0000 77824 C:\Windows\System32\srumapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation System Resource Usage Monitor API 131795770645376384 0x7ffac21d0000 81920 C:\Windows\system32\wbem\wbemsvc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation WMI 131795770645376384 0x7ffac2510000 102400 C:\Windows\System32\energyprov.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Energy System Resource Usage Monitor (SRUM) provider 131795770645376384 0x7ffac2580000 49152 C:\Windows\System32\ncuprov.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Network Connectivity Statistics Provider for System Resource Usage Monitor Service 131795770645376384 0x7ffac2b90000 90112 C:\Windows\System32\nduprov.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик сетевой статистики для службы отслеживания использования ресурсов системы 131795770645376384 0x7ffac2bb0000 106496 C:\Windows\SYSTEM32\appsruprov.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Application System Resource Usage Monitor (SRUM) provider 131795770645376384 0x7ffac2bd0000 131072 C:\Windows\System32\eeprov.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Energy Estimator SRUM provider 131795770645376384 0x7ffac2c20000 45056 C:\Windows\system32\wfapigp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Firewall GPO Helper dll 131795770645376384 0x7ffac2d70000 57344 C:\Windows\System32\wpnsruprov.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SRUM provider for WPN 131795770645376384 0x7ffac3310000 225280 C:\Windows\System32\srumsvc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation System Resource Usage Monitor Service 131795770645376384 0x7ffac3730000 36864 C:\Windows\system32\pnpts.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation PlugPlay Troubleshooter 131795770645376384 0x7ffac3840000 3088384 C:\Windows\system32\ESENT.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширяемая подсистема хранения данных ESE для Microsoft(R) Windows(R) 131795770645376384 0x7ffac3bd0000 106496 c:\windows\system32\ncdautosetup.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL службы автоматической настройки сетевых устройств 131795770645376384 0x7ffac3cb0000 2772992 C:\Windows\SYSTEM32\iertutil.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служебная программа времени выполнения для Internet Explorer 131795770645376384 0x7ffac3f60000 225280 c:\windows\system32\FWPolicyIOMgr.dll 10.0.14393.2189 (rs1_release.180329-1711) Microsoft Corporation FwPolicyIoMgr DLL 131795770645376384 0x7ffac4000000 274432 C:\Windows\SYSTEM32\policymanager.dll 10.0.14393.2035 (rs1_release_inmarket.180110-1910) Microsoft Corporation Policy Manager DLL 131795770645376384 0x7ffac4050000 118784 c:\windows\system32\wdi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Инфраструктура диагностики Windows 131795770645376384 0x7ffac41f0000 40960 C:\Windows\system32\adhapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AD harvest sites and subnets API 131795770645376384 0x7ffac4220000 520192 C:\Windows\SYSTEM32\wbemcomn.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation WMI 131795770645376384 0x7ffac4470000 65536 C:\Windows\system32\wbem\wbemprox.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation WMI 131795770645376384 0x7ffac4500000 200704 c:\windows\system32\dps.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служба политики диагностики WDI 131795770645376384 0x7ffac4cd0000 933888 c:\windows\system32\mpssvc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служба защиты (Microsoft) 131795770645376384 0x7ffac4f40000 122880 C:\Windows\system32\radardt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Программа обнаружения нехватки системных ресурсов Windows 131795770645376384 0x7ffac66c0000 32768 C:\Windows\system32\wship6.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL помощника Winsock2 (TL/IPv6) 131795770645376384 0x7ffac66d0000 32768 C:\Windows\system32\wshtcpip.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL помощника службы Winsock2 (TL/IPv4) 131795770645376384 0x7ffac6700000 40960 C:\Windows\system32\wshqos.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL помощника службы QoS Winsock2 131795770645376384 0x7ffac6740000 53248 C:\Windows\system32\dtsh.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека API состояния общего доступа и обнаружения 131795770645376384 0x7ffac6990000 69632 c:\windows\system32\deviceassociation.dll 10.0.14393.82 (rs1_release.160805-1735) Microsoft Corporation Device Association Client DLL 131795770645376384 0x7ffac74b0000 827392 c:\windows\system32\bfe.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служба базовой фильтрации 131795770645376384 0x7ffac7580000 1077248 C:\Windows\SYSTEM32\mrmcorer.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Windows MRM 131795770645376384 0x7ffac79c0000 57344 C:\Windows\System32\npmproxy.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Network List Manager Proxy 131795770645376384 0x7ffac83d0000 106496 C:\Windows\SYSTEM32\dhcpcsvc.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служба DHCP-клиента 131795770645376384 0x7ffac83f0000 90112 C:\Windows\SYSTEM32\dhcpcsvc6.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиент DHCPv6 131795770645376384 0x7ffac8420000 434176 c:\windows\system32\fwpuclnt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API пользовательского режима FWP/IPsec 131795770645376384 0x7ffac8810000 45056 C:\Windows\SYSTEM32\WINNSI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Network Store Information RPC interface 131795770645376384 0x7ffac8cf0000 815104 C:\Windows\System32\taskschd.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Task Scheduler COM API 131795770645376384 0x7ffac90b0000 90112 c:\windows\system32\wkscli.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Workstation Service Client DLL 131795770645376384 0x7ffac9220000 397312 C:\Windows\SYSTEM32\wevtapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API настройки и использования событий 131795770645376384 0x7ffac9f10000 221184 C:\Windows\System32\netprofm.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Network List Manager 131795770645376384 0x7ffaca100000 36864 C:\Windows\SYSTEM32\httpprxc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Proxy Manager Provider RPC interface 131795770645376384 0x7ffaca170000 45056 c:\windows\system32\ktmw32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows KTM Win32 Client DLL 131795770645376384 0x7ffaca340000 1593344 C:\Windows\System32\PROPSYS.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Система страниц свойств (Майкрософт) 131795770645376384 0x7ffaca4e0000 77824 C:\Windows\system32\WTSAPI32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Remote Desktop Session Host Server SDK APIs 131795770645376384 0x7ffaca640000 770048 c:\windows\system32\coremessaging.dll 10.0.14393.0 Microsoft Corporation Microsoft CoreMessaging Dll 131795770645376384 0x7ffacb070000 69632 C:\Windows\SYSTEM32\embeddedmodesvcapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Embedded Mode Service Client DLL 131795770645376384 0x7ffacb140000 593920 c:\windows\system32\msvcp110_win.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Microsoft® STL110 C++ Runtime Library 131795770645376384 0x7ffacb360000 176128 C:\Windows\system32\fwbase.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Firewall Base DLL 131795770645376384 0x7ffacb3f0000 163840 C:\Windows\system32\DEVOBJ.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Device Information Set DLL 131795770645376384 0x7ffacb420000 204800 C:\Windows\system32\ntmarta.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик Windows NT MARTA 131795770645376384 0x7ffacb460000 548864 C:\Windows\system32\FirewallAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API брандмауэра Windows 131795770645376384 0x7ffacb6f0000 143360 C:\Windows\SYSTEM32\gpapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиентские функции API групповой политики 131795770645376384 0x7ffacb920000 81920 C:\Windows\SYSTEM32\WLDP.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Политика блокировки Windows 131795770645376384 0x7ffacb960000 303104 c:\windows\system32\AUTHZ.dll 10.0.14393.1737 (rs1_release_inmarket.170914-1249) Microsoft Corporation Authorization Framework 131795770645376384 0x7ffacbd30000 229376 c:\windows\system32\IPHLPAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API вспомогательного приложения IP 131795770645376384 0x7ffacbd70000 659456 c:\windows\system32\DNSAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Динамическая библиотека API DNS-клиента 131795770645376384 0x7ffacbe20000 53248 c:\windows\system32\netutils.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API Helpers DLL 131795770645376384 0x7ffacbfb0000 376832 C:\Windows\system32\mswsock.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширение поставщика службы API Microsoft Windows Sockets 2.0 131795770645376384 0x7ffacc170000 45056 C:\Windows\system32\CRYPTBASE.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base cryptographic API DLL 131795770645376384 0x7ffacc350000 180224 c:\windows\system32\SspiCli.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Security Support Provider Interface 131795770645376384 0x7ffacc5c0000 352256 C:\Windows\system32\WINSTA.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Winstation Library 131795770645376384 0x7ffacc620000 176128 c:\windows\system32\bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795770645376384 0x7ffacc6e0000 61440 C:\Windows\System32\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795770645376384 0x7ffacc6f0000 311296 C:\Windows\System32\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795770645376384 0x7ffacc740000 81920 C:\Windows\System32\profapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Profile Basic API 131795770645376384 0x7ffacc760000 65536 C:\Windows\System32\MSASN1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ASN.1 Runtime APIs 131795770645376384 0x7ffacc8f0000 1003520 C:\Windows\System32\ucrtbase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645376384 0x7ffacc9f0000 434176 C:\Windows\System32\bcryptPrimitives.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Cryptographic Primitives Library 131795770645376384 0x7ffacca60000 122880 C:\Windows\System32\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795770645376384 0x7ffacca80000 348160 C:\Windows\System32\WINTRUST.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation Microsoft Trust Verification APIs 131795770645376384 0x7ffaccae0000 692224 C:\Windows\System32\shcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795770645376384 0x7ffaccb90000 7180288 C:\Windows\System32\windows.storage.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API хранения Microsoft WinRT 131795770645376384 0x7ffacd270000 2215936 C:\Windows\System32\KERNELBASE.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645376384 0x7ffacd490000 1871872 C:\Windows\System32\CRYPT32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API32 криптографии 131795770645376384 0x7ffacd710000 638976 C:\Windows\System32\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645376384 0x7ffacd7b0000 270336 C:\Windows\System32\CFGMGR32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Configuration Manager DLL 131795770645376384 0x7ffacd810000 22056960 C:\Windows\System32\SHELL32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Общая библиотека оболочки Windows 131795770645376384 0x7ffaced20000 782336 C:\Windows\System32\OLEAUT32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795770645376384 0x7ffacee50000 1183744 C:\Windows\System32\RPCRT4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795770645376384 0x7ffacef80000 32768 C:\Windows\System32\NSI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation NSI User-mode interface DLL 131795770645376384 0x7ffacef90000 647168 C:\Windows\System32\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795770645376384 0x7ffacf030000 651264 C:\Windows\System32\clbcatq.dll 2001.12.10941.16384 (rs1_release.160715-1616) Microsoft Corporation COM+ Configuration Catalog 131795770645376384 0x7ffacf0d0000 704512 C:\Windows\System32\KERNEL32.DLL 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645376384 0x7ffacf770000 212992 C:\Windows\System32\GDI32.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation GDI Client DLL 131795770645376384 0x7ffacf820000 434176 C:\Windows\System32\WS2_32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation 32-разрядная библиотека Windows Socket 2.0 131795770645376384 0x7ffacf8c0000 1462272 C:\Windows\System32\user32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795770645376384 0x7ffacfb30000 2916352 C:\Windows\System32\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795770645376384 0x7ffacfe20000 663552 C:\Windows\System32\advapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795770645376384 0x7ffad0070000 1277952 C:\Windows\System32\ole32.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft OLE для Windows 131795770645376384 0x7ffad01b0000 335872 C:\Windows\System32\shlwapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека небольших программ оболочки 131795770645376384 0x7ffad0210000 364544 C:\Windows\System32\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795770645376384 0x7ffad0270000 1908736 C:\Windows\SYSTEM32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 24 348 580 4 00000000:000003e7 131765776305446235 0 0 1 Обязательная метка\Обязательный уровень системы NT AUTHORITY\СИСТЕМА svchost.exe C:\Windows\system32\svchost.exe C:\Windows\system32\svchost.exe -k netsvcs Microsoft Corporation 10.0.14393.0 (rs1_release.160715-1616) Хост-процесс для служб Windows 131795770645376622 0x7ff718c20000 57344 C:\Windows\system32\svchost.exe 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Хост-процесс для служб Windows 131795770645376622 0x7ffaa0aa0000 2138112 c:\windows\system32\wlidsvc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служба учетных записей Майкрософт 131795770645376622 0x7ffab0750000 368640 C:\Windows\system32\rascustom.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Модуль настраиваемых протоколов 131795770645376622 0x7ffab07b0000 606208 C:\Windows\system32\vpnike.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation VPNIKE Protocol Engine - Test dll 131795770645376622 0x7ffab09b0000 323584 C:\Windows\system32\rasppp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Remote Access PPP 131795770645376622 0x7ffab0a00000 270336 C:\Windows\system32\rastapi.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Remote Access TAPI Compliance Layer 131795770645376622 0x7ffab1d80000 262144 C:\Windows\system32\eappcfg.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Eap Peer Config 131795786944300478 0x7ffab3410000 155648 C:\Windows\System32\browser.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL службы браузера компьютеров 131795770645376622 0x7ffab3440000 696320 c:\windows\system32\rasmans.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Диспетчер подключений удаленного доступа 131795770645376622 0x7ffab4b90000 655360 C:\Windows\System32\StructuredQuery.dll 7.0.14393.2068 (rs1_release.180209-1727) Microsoft Corporation Structured Query 131795770645376622 0x7ffab4c50000 90112 c:\windows\system32\eappprxy.dll 10.0.14393.187 (rs1_release_inmarket.160906-1818) Microsoft Corporation Microsoft EAPHost Peer Client DLL 131795770645376622 0x7ffab7d80000 753664 C:\Windows\system32\RASAPI32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API удаленного доступа 131795770645376622 0x7ffab9a90000 479232 C:\Windows\system32\dmEnrollEngine.DLL 10.0.14393.479 (rs1_release.161110-2025) Microsoft Corporation Enroll Engine DLL 131795770645376622 0x7ffabae60000 77824 C:\Windows\system32\DEVRTL.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Device Management Run Time Library 131795770645376622 0x7ffabafc0000 700416 C:\Windows\SYSTEM32\wer.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека сообщений об ошибках Windows 131795770645376622 0x7ffabc210000 2355200 c:\windows\system32\wuaueng.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Агент Центра обновления Windows 131795770645376622 0x7ffabcf30000 110592 c:\windows\system32\MPR.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека маршрутизации для нескольких служб доступа 131795770645376622 0x7ffabcf50000 921600 C:\Windows\system32\drvstore.dll 10.0.14393.351 (rs1_release_inmarket.161014-1755) Microsoft Corporation Driver Store API 131795770645376622 0x7ffabd180000 548864 C:\Windows\SYSTEM32\WINSPOOL.DRV 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Драйвер диспетчера очереди Windows 131795770645376622 0x7ffabdf60000 159744 C:\Windows\System32\raschap.dll 10.0.14393.1480 (rs1_release.170706-2004) Microsoft Corporation Удаленные доступ через PPP CHAP 131795770645376622 0x7ffabe4a0000 147456 c:\windows\system32\appinfo.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служба сведений о приложении 131795770645376622 0x7ffabe4d0000 286720 C:\Windows\System32\MSWB7.dll 10.0.14393.1737 (rs1_release_inmarket.170914-1249) Microsoft Corporation MSWB7 DLL 131795770645376622 0x7ffabed80000 540672 C:\Windows\system32\wbem\wbemess.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation WMI 131795770645376622 0x7ffabee10000 90112 C:\Windows\SYSTEM32\NCObjAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation 131795770645376622 0x7ffabee30000 847872 C:\Windows\system32\wbem\wmiprvsd.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation WMI 131795770645376622 0x7ffabefd0000 258048 C:\Windows\SYSTEM32\AEPIC.dll 10.0.17060.1029 (WinBuild.160101.0800) Microsoft Corporation Application Experience Program Cache 131795770645376622 0x7ffabf010000 98304 C:\Windows\SYSTEM32\elscore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL ядра платформы Els 131795786151289779 0x7ffabf030000 98304 C:\Windows\System32\LocationFrameworkInternalPS.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Geolocation Framework Internal PS 131795770645376622 0x7ffabf090000 98304 C:\Windows\System32\LocationFrameworkInternalPS.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Geolocation Framework Internal PS 131795770645376622 0x7ffabf0e0000 372736 C:\Windows\system32\hnetcfg.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Диспетчер конфигурации домашней сети 131795770645376622 0x7ffabf1d0000 192512 C:\Windows\System32\cryptnet.dll 10.0.14393.2035 (rs1_release_inmarket.180110-1910) Microsoft Corporation Crypto Network Related API 131795770645376622 0x7ffabf200000 405504 c:\windows\system32\cryptngc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API службы Microsoft Passport 131795770645376622 0x7ffabf2a0000 159744 C:\Windows\system32\dssenh.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Enhanced DSS and Diffie-Hellman Cryptographic Provider 131795770645376622 0x7ffabf330000 2457600 C:\Windows\System32\msxml6.dll 6.30.14393.2156 Microsoft Corporation MSXML 6.0 131795770645376622 0x7ffabfd60000 90112 C:\Windows\system32\napinsp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик оболочки совместимости для имен электронной почты 131795770645376622 0x7ffabfda0000 122880 C:\Windows\system32\wbem\ncprov.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Non-COM WMI Event Provision APIs 131795770645376622 0x7ffabfdc0000 86016 C:\Windows\system32\keepaliveprovider.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Keep alive provider API 131795770645376622 0x7ffabfe50000 643072 C:\Windows\System32\wpnprv.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик подключения платформы push-уведомлений Windows 131795770645376622 0x7ffabfef0000 106496 C:\Windows\system32\pnrpnsp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик пространства имен PNRP 131795770645376622 0x7ffabff60000 135168 C:\Windows\system32\ncryptsslp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft SChannel Provider 131795770645376622 0x7ffac0000000 401408 C:\Windows\system32\wbem\repdrvfs.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation WMI Repository Driver 131795770645376622 0x7ffac05f0000 94208 C:\Windows\System32\wwapi.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation WWAN API 131795770645376622 0x7ffac0610000 3088384 C:\Windows\SYSTEM32\msi.dll 5.0.14393.2155 Microsoft Corporation Windows Installer 131795770645376622 0x7ffac0910000 724992 C:\Windows\System32\Windows.Networking.Connectivity.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Networking Connectivity Runtime DLL 131795770645376622 0x7ffac0ab0000 57344 C:\Windows\System32\winrnr.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation LDAP RnR Provider DLL 131795770645376622 0x7ffac0ac0000 53248 c:\windows\system32\tbs.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation TBS 131795770645376622 0x7ffac0ad0000 86016 C:\Windows\SYSTEM32\mskeyprotect.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик защиты ключей (Майкрософт) 131795770645376622 0x7ffac0af0000 114688 C:\Windows\system32\ATL.DLL 3.05.2284 Microsoft Corporation ATL Module for Windows XP (Unicode) 131795770645376622 0x7ffac0bf0000 3559424 C:\Windows\System32\ActXPrxy.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation ActiveX Interface Marshaling Library 131795770645376622 0x7ffac1090000 94208 C:\Windows\System32\shacctprofile.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Shell Accounts Profile Classes 131795770645376622 0x7ffac1160000 892928 C:\Windows\System32\wuapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API клиента Центра обновления Windows 131795783766785197 0x7ffac13e0000 581632 C:\Windows\System32\usocore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Обновление ядра оркестратора сеанса 131795770645376622 0x7ffac1530000 528384 C:\Windows\SYSTEM32\dpx.dll 5.00 (rs1_release.160715-1616) Microsoft Corporation Microsoft(R) Delta Package Expander 131795788214269808 0x7ffac15d0000 155648 C:\Windows\System32\browser.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL службы браузера компьютеров 131795783773591339 0x7ffac1660000 323584 C:\Windows\System32\updatehandlers.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation Update Session Orchestrator Update Handlers 131795770645376622 0x7ffac1900000 225280 c:\windows\system32\appxapplicabilityblob.dll 10.0.14393.953 (rs1_release_inmarket.170303-1614) Microsoft Corporation Appx Applicability Blob DLL 131795783942703101 0x7ffac1940000 155648 C:\Windows\System32\browser.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL службы браузера компьютеров 131795770645376622 0x7ffac1970000 1073152 c:\windows\system32\qmgr.dll 7.8.14393.0 (rs1_release.160715-1616) Microsoft Corporation Фоновая интеллектуальная служба передачи 131795770645376622 0x7ffac1b70000 122880 C:\Windows\System32\DevDispItemProvider.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Подсистема DeviceItem inproc devquery 131795770645376622 0x7ffac1c30000 49152 C:\Windows\system32\DMProcessXMLFiltered.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation dmprocessxmlfiltered 131795779661934902 0x7ffac1c90000 155648 C:\Windows\System32\browser.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL службы браузера компьютеров 131795770645376622 0x7ffac1cf0000 417792 C:\Windows\SYSTEM32\wuuhext.dll 10.0.14393.2189 (rs1_release.180329-1711) Microsoft Corporation Windows Update Agent plugin for Windows 131795770645376622 0x7ffac1df0000 61440 c:\windows\system32\NCI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation CoInstaller: NET 131795770645376622 0x7ffac1e20000 147456 C:\Windows\system32\wbem\wmiutils.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation WMI 131795770645376622 0x7ffac1e80000 507904 C:\Windows\System32\NetSetupShim.dll 10.0.14393.1532 (rs1_release_d.170711-1840) Microsoft Corporation Network Configuration API 131795770645376622 0x7ffac1f10000 126976 c:\windows\system32\DMCmnUtils.dll 10.0.14393.1737 (rs1_release_inmarket.170914-1249) Microsoft Corporation dmcmnutils 131795770645376622 0x7ffac1f30000 118784 C:\Windows\system32\SPINF.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows SPINF 131795770645376622 0x7ffac1f50000 471040 C:\Windows\system32\wbem\esscli.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation WMI 131795770645376622 0x7ffac1fd0000 999424 C:\Windows\system32\wbem\FastProx.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation WMI Custom Marshaller 131795770645376622 0x7ffac20d0000 110592 c:\windows\system32\RMCLIENT.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Resource Manager Client 131795770645376622 0x7ffac20f0000 753664 C:\Windows\system32\CLUSAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека API кластера 131795770645376622 0x7ffac21d0000 81920 C:\Windows\system32\wbem\wbemsvc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation WMI 131795770645376622 0x7ffac2210000 1351680 C:\Windows\system32\wbem\wbemcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Инструментарий управления Windows 131795770645376622 0x7ffac2360000 57344 c:\windows\system32\TimeBrokerClient.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Time Broker Client Library 131795770645376622 0x7ffac2370000 110592 C:\Windows\system32\adhsvc.dll 10.0.14393.2189 (rs1_release.180329-1711) Microsoft Corporation AD Harvest Sites and Subnets Service 131795770645376622 0x7ffac2390000 147456 C:\Windows\system32\httpprxm.dll 10.0.14393.2189 (rs1_release.180329-1711) Microsoft Corporation Proxy Manager 131795775850813653 0x7ffac23c0000 331776 C:\Windows\System32\OneCoreCommonProxyStub.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation OneCore Common Proxy Stub 131795770645376622 0x7ffac24a0000 397312 C:\Windows\system32\RESUTILS.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL служебной программы ресурсов кластера (Майкрософт) 131795770645376622 0x7ffac2530000 270336 C:\Windows\system32\hnetcfgclient.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиент API конфигурации домашней сети 131795784861928280 0x7ffac2590000 659456 C:\Windows\System32\FlightSettings.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Параметры цикла тестирования 131795770645376622 0x7ffac2640000 188416 C:\Windows\system32\wmidcom.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation WMI 131795770645376622 0x7ffac2670000 376832 C:\Windows\system32\miutils.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Инфраструктура управления 131795770645376622 0x7ffac26f0000 36864 C:\Windows\SYSTEM32\sscoreext.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Server Service Core DLL 131795770645376622 0x7ffac2720000 192512 C:\Windows\SYSTEM32\WPTaskScheduler.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation WP Task Scheduler DLL 131795784861934949 0x7ffac2750000 106496 C:\Windows\System32\bcd.dll 10.0.14393.1794 (rs1_release.171008-1615) Microsoft Corporation BCD DLL 131795770645376622 0x7ffac2770000 69632 C:\Windows\system32\SSCORE.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Основная DLL-библиотека службы сервера 131795770645376622 0x7ffac2940000 45056 c:\windows\system32\CSystemEventsBrokerClient.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Classic System Events Broker Client Library 131795770645376622 0x7ffac29f0000 159744 c:\windows\system32\NetSetupApi.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Network Configuration API 131795770645376622 0x7ffac2a20000 81920 c:\windows\system32\rtutils.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Routing Utilities 131795770645376622 0x7ffac2a40000 974848 c:\windows\system32\iphlpsvc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Эта служба предоставляет автоматическое подключение IPv6 в сети IPv4. 131795770645376622 0x7ffac2b30000 286720 C:\Windows\System32\usermgrproxy.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation UserMgrProxy 131795770645376622 0x7ffac2c30000 135168 c:\windows\system32\CLIPC.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиент платформы лицензирования клиента 131795770645376622 0x7ffac2c60000 278528 c:\windows\system32\WDSCORE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Panther Engine Module 131795770645376622 0x7ffac2cb0000 778240 C:\Windows\System32\winsqlite3.dll 3.12.2 SQLite Development Team SQLite is a software library that implements a self-contained, serverless, zero-configuration, transactional SQL database engine. 131795770645376622 0x7ffac2d80000 5140480 C:\Windows\System32\cdp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API клиента Microsoft (R) CDP 131795770645376622 0x7ffac3360000 1396736 C:\Windows\System32\wpncore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Ядро извещающих уведомлений Windows 131795770645376622 0x7ffac34c0000 81920 C:\Windows\system32\vss_ps.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation Microsoft® Volume Shadow Copy Service proxy/stub 131795770645376622 0x7ffac34e0000 1843200 C:\Windows\System32\urlmon.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширения OLE32 для Win32 131795770645376622 0x7ffac36b0000 524288 C:\Windows\system32\msdelta.dll 5.00 (rs1_release.160715-1616) Microsoft Corporation Microsoft Patch Engine 131795770645376622 0x7ffac3740000 413696 C:\Windows\system32\upnp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API контрольной точки UPnP 131795770645376622 0x7ffac3810000 167936 C:\Windows\SYSTEM32\Cabinet.dll 5.00 (rs1_release.160715-1616) Microsoft Corporation Microsoft® Cabinet File API 131795770645376622 0x7ffac3840000 3088384 c:\windows\system32\ESENT.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширяемая подсистема хранения данных ESE для Microsoft(R) Windows(R) 131795770645376622 0x7ffac3b40000 245760 c:\windows\system32\wbem\wmisvc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation WMI 131795770645376622 0x7ffac3cb0000 2772992 C:\Windows\System32\iertutil.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служебная программа времени выполнения для Internet Explorer 131795770645376622 0x7ffac3f60000 225280 C:\Windows\system32\FWPolicyIOMgr.dll 10.0.14393.2189 (rs1_release.180329-1711) Microsoft Corporation FwPolicyIoMgr DLL 131795770645376622 0x7ffac3fa0000 331776 c:\windows\system32\srvsvc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека (DLL) ресурсов для службы сервера 131795770645376622 0x7ffac4000000 274432 C:\Windows\SYSTEM32\policymanager.dll 10.0.14393.2035 (rs1_release_inmarket.180110-1910) Microsoft Corporation Policy Manager DLL 131795770645376622 0x7ffac4160000 253952 c:\windows\system32\wpnservice.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служба системы push-уведомлений Windows 131795770645376622 0x7ffac4220000 520192 C:\Windows\SYSTEM32\wbemcomn.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation WMI 131795770645376622 0x7ffac4450000 86016 C:\Windows\SYSTEM32\usermgrcli.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation UserMgr API DLL 131795770645376622 0x7ffac4480000 499712 C:\Windows\system32\taskcomp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Оснастка обратной совместимости диспетчера задач 131795770645376622 0x7ffac4540000 69632 C:\Windows\system32\ProximityServicePAL.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Proximity Service PAL 131795775380234927 0x7ffac4b60000 155648 C:\Windows\System32\browser.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL службы браузера компьютеров 131795770645376622 0x7ffac4cc0000 36864 C:\Windows\system32\ProximityCommonPal.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Proximity Common PAL 131795770645376622 0x7ffac4dc0000 176128 C:\Windows\system32\ProximityCommon.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Универсальная реализация близкого взаимодействия 131795770645376622 0x7ffac4e70000 102400 C:\Windows\SYSTEM32\samcli.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Security Accounts Manager Client DLL 131795770645376622 0x7ffac4ee0000 331776 C:\Windows\System32\ProximityService.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Proximity Service Implementation 131795770645376622 0x7ffac4f60000 143360 C:\Windows\SYSTEM32\wcmapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Connection Manager Client API 131795770645376622 0x7ffac5c50000 131072 C:\Windows\system32\rasman.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Remote Access Connection Manager 131795770645376622 0x7ffac5ef0000 868352 C:\Windows\System32\MbaeApiPublic.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Mobile Broadband Account API 131795770645376622 0x7ffac60e0000 221184 C:\Windows\System32\XmlLite.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft XmlLite Library 131795770645376622 0x7ffac6410000 98304 C:\Windows\SYSTEM32\VssTrace.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека трассировки службы теневого копирования тома Microsoft® 131795770645376622 0x7ffac6430000 1581056 C:\Windows\SYSTEM32\VSSAPI.DLL 10.0.14393.953 (rs1_release_inmarket.170303-1614) Microsoft Corporation Microsoft® Volume Shadow Copy Requestor/Writer Services API DLL 131795770645376622 0x7ffac6610000 40960 C:\Windows\System32\rasadhlp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Remote Access AutoDial Helper 131795770645376622 0x7ffac66a0000 86016 C:\Windows\SYSTEM32\ondemandconnroutehelper.dll 10.0.14393.351 (rs1_release_inmarket.161014-1755) Microsoft Corporation On Demand Connctiond Route Helper 131795770645376622 0x7ffac6750000 1380352 c:\windows\system32\webservices.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Среда выполнения веб-служб Windows 131795770645376622 0x7ffac69c0000 839680 C:\Windows\System32\WINHTTP.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Службы HTTP Windows 131795786151642053 0x7ffac6a90000 49152 C:\Windows\System32\LocationFrameworkPS.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Geolocation Framework PS 131795770645376622 0x7ffac6c40000 2596864 C:\Windows\WinSxS\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.14393.953_none_42151e83c686086b\Comctl32.dll 6.10 (rs1_release_inmarket.170303-1614) Microsoft Corporation Библиотека элементов управления взаимодействия с пользователем 131795770645376622 0x7ffac7580000 1077248 C:\Windows\SYSTEM32\mrmcorer.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Windows MRM 131795770645376622 0x7ffac7700000 65536 C:\Windows\system32\CredentialMigrationHandler.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Credential Migration Handler 131795770645376622 0x7ffac79c0000 57344 C:\Windows\System32\npmproxy.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Network List Manager Proxy 131795770645376622 0x7ffac79d0000 53248 C:\Windows\system32\sqmapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SQM Client 131795770645376622 0x7ffac7aa0000 401408 C:\Windows\SYSTEM32\wlanapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows WLAN AutoConfig Client Side API DLL 131795783776936389 0x7ffac7ce0000 94208 C:\Windows\System32\usoapi.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Update Session Orchestrator API 131795770645376622 0x7ffac7d20000 106496 C:\Windows\SYSTEM32\msauserext.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation MSA USER Extension DLL 131795770645376622 0x7ffac7d60000 114688 c:\windows\system32\UpdatePolicy.dll 10.0.14393.2189 (rs1_release.180329-1711) Microsoft Corporation Update Policy Reader 131795770645376622 0x7ffac7e50000 86016 C:\Windows\system32\SSDPAPI.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation SSDP Client API DLL 131795770645376622 0x7ffac7e90000 749568 c:\windows\system32\FVEAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows BitLocker Drive Encryption API 131795770645376622 0x7ffac82d0000 643072 c:\windows\system32\shsvcs.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL служб оболочки Windows 131795770645376622 0x7ffac83d0000 106496 C:\Windows\SYSTEM32\dhcpcsvc.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служба DHCP-клиента 131795770645376622 0x7ffac83f0000 90112 C:\Windows\SYSTEM32\dhcpcsvc6.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиент DHCPv6 131795770645376622 0x7ffac8420000 434176 c:\windows\system32\fwpuclnt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API пользовательского режима FWP/IPsec 131795770645376622 0x7ffac8590000 135168 C:\Windows\System32\LocationWinPalMisc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Location Platform Abstraction Layer 131795770645376622 0x7ffac85c0000 1810432 c:\windows\system32\LocationFramework.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Платформа географического положения Windows 131795770645376622 0x7ffac8780000 274432 c:\windows\system32\UBPM.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL единого диспетчера фоновых процессов 131795770645376622 0x7ffac8810000 45056 c:\windows\system32\WINNSI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Network Store Information RPC interface 131795770645376622 0x7ffac8880000 69632 c:\windows\system32\WMICLNT.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation WMI Client API 131795770645376622 0x7ffac8b60000 966656 c:\windows\system32\schedsvc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служба планировщика заданий 131795783774133461 0x7ffac8cf0000 815104 C:\Windows\System32\taskschd.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Task Scheduler COM API 131795770645376622 0x7ffac8dc0000 167936 C:\Windows\system32\dbgcore.DLL 10.0.14321.1024 (debuggers(dbg).160715-1616) Microsoft Windows Core Debugging Helpers 131795770645376622 0x7ffac8df0000 1646592 C:\Windows\system32\dbghelp.dll 10.0.14321.1024 (rs1_release.160715-1616) Microsoft Windows Image Helper 131795770645376622 0x7ffac8fa0000 253952 c:\windows\system32\logoncli.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Net Logon Client DLL 131795770645376622 0x7ffac90b0000 90112 c:\windows\system32\wkscli.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Workstation Service Client DLL 131795770645376622 0x7ffac91c0000 167936 C:\Windows\SYSTEM32\profsvcext.dll 10.0.14393.1532 (rs1_release_d.170711-1840) Microsoft Corporation ProfSvcExt 131795770645376622 0x7ffac9220000 397312 C:\Windows\SYSTEM32\wevtapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API настройки и использования событий 131795770645376622 0x7ffac9290000 40960 c:\windows\system32\DSROLE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DS Setup Client DLL 131795770645376622 0x7ffac92a0000 90112 c:\windows\system32\sens.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служба уведомления о системных событиях (SENS) 131795770645376622 0x7ffac92c0000 98304 c:\windows\system32\themeservice.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL службы темы оболочки Windows 131795770645376622 0x7ffac92e0000 1269760 C:\Windows\SYSTEM32\wintypes.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL основных типов Windows 131795770645376622 0x7ffac9420000 380928 c:\windows\system32\profsvc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ProfSvc 131795770645376622 0x7ffac9790000 98304 c:\windows\system32\nlaapi.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Network Location Awareness 2 131795770645376622 0x7ffac9a70000 1257472 c:\windows\system32\gpsvc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиент групповой политики 131795770645376622 0x7ffac9bb0000 479232 C:\Windows\System32\ES.DLL 2001.12.10941.16384 (rs1_release.160715-1616) Microsoft Corporation COM+ 131795770645376622 0x7ffac9f10000 221184 C:\Windows\System32\netprofm.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Network List Manager 131795770645376622 0x7ffaca100000 36864 C:\Windows\SYSTEM32\httpprxc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Proxy Manager Provider RPC interface 131795770645376622 0x7ffaca1f0000 65536 C:\Windows\SYSTEM32\storageusage.dll 10.0.14393.82 (rs1_release.160805-1735) Microsoft Corporation Storage Usage 131795770645376622 0x7ffaca250000 49152 C:\Windows\SYSTEM32\bi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Background Broker Infrastructure Client Library 131795770645376622 0x7ffaca280000 73728 C:\Windows\System32\BitsProxy.dll 7.8.14393.0 (rs1_release.160715-1616) Microsoft Corporation Background Intelligent Transfer Service Proxy 131795770645376622 0x7ffaca340000 1593344 C:\Windows\System32\PROPSYS.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Система страниц свойств (Майкрософт) 131795770645376622 0x7ffaca4e0000 77824 C:\Windows\SYSTEM32\wtsapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Remote Desktop Session Host Server SDK APIs 131795770645376622 0x7ffaca500000 69632 C:\Windows\System32\wups.dll 10.0.14393.2122 (rs1_release.180217-2341) Microsoft Corporation Windows Update client proxy stub 131795770645376622 0x7ffaca570000 421888 C:\Windows\SYSTEM32\Bcp47Langs.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation BCP47 Language Classes 131795770645376622 0x7ffaca610000 143360 C:\Windows\SYSTEM32\SAMLIB.dll 10.0.14393.82 (rs1_release.160805-1735) Microsoft Corporation SAM Library DLL 131795770645376622 0x7ffaca700000 32768 c:\windows\system32\DABAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Desktop Activity Broker API 131795770645376622 0x7ffaca720000 77824 C:\Windows\system32\bitsigd.dll 7.8.14393.0 (rs1_release.160715-1616) Microsoft Corporation Background Intelligent Transfer Service IGD Support 131795770645376622 0x7ffacab70000 53248 c:\windows\system32\lfsvc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служба географического положения 131795770645376622 0x7ffacac40000 53248 c:\windows\system32\seclogon.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL службы вторичного входа 131795770645376622 0x7ffacac50000 45056 c:\windows\system32\bitsperf.dll 7.8.14393.0 (rs1_release.160715-1616) Microsoft Corporation Perfmon Counter Access 131795770645376622 0x7ffacad70000 278528 c:\windows\system32\BrokerLib.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Broker Base Library 131795770645376622 0x7ffacadf0000 499712 c:\windows\system32\apphelp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиентская библиотека совместимости приложений 131795770645376622 0x7ffacb000000 53248 c:\windows\system32\SYSNTFY.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Windows Notifications Dynamic Link Library 131795770645376622 0x7ffacb140000 593920 C:\Windows\System32\msvcp110_win.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Microsoft® STL110 C++ Runtime Library 131795770645376622 0x7ffacb1e0000 1163264 C:\Windows\SYSTEM32\twinapi.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation twinapi.appcore 131795770645376622 0x7ffacb300000 364544 C:\Windows\System32\VEEventDispatcher.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Visual Element Event dispatcher 131795770645376622 0x7ffacb360000 176128 C:\Windows\system32\fwbase.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Firewall Base DLL 131795770645376622 0x7ffacb3d0000 110592 C:\Windows\SYSTEM32\resourcepolicyclient.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Resource Policy Client 131795770645376622 0x7ffacb3f0000 163840 c:\windows\system32\DEVOBJ.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Device Information Set DLL 131795770645376622 0x7ffacb420000 204800 C:\Windows\SYSTEM32\ntmarta.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик Windows NT MARTA 131795770645376622 0x7ffacb460000 548864 C:\Windows\SYSTEM32\firewallapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API брандмауэра Windows 131795770645376622 0x7ffacb6e0000 49152 c:\windows\system32\HID.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека пользователя HID 131795770645376622 0x7ffacb6f0000 143360 C:\Windows\SYSTEM32\gpapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиентские функции API групповой политики 131795770645376622 0x7ffacb920000 81920 C:\Windows\SYSTEM32\WLDP.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Политика блокировки Windows 131795770645376622 0x7ffacb960000 303104 c:\windows\system32\AUTHZ.dll 10.0.14393.1737 (rs1_release_inmarket.170914-1249) Microsoft Corporation Authorization Framework 131795770645376622 0x7ffacbaf0000 495616 C:\Windows\system32\schannel.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик безопасности TLS/SSL 131795770645376622 0x7ffacbbb0000 208896 C:\Windows\system32\rsaenh.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Enhanced Cryptographic Provider 131795770645376622 0x7ffacbbf0000 40960 C:\Windows\system32\DPAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Data Protection API 131795770645376622 0x7ffacbd30000 229376 C:\Windows\system32\IPHLPAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API вспомогательного приложения IP 131795770645376622 0x7ffacbd70000 659456 C:\Windows\system32\DNSAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Динамическая библиотека API DNS-клиента 131795770645376622 0x7ffacbe20000 53248 c:\windows\system32\netutils.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API Helpers DLL 131795770645376622 0x7ffacbe40000 126976 c:\windows\system32\USERENV.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Userenv 131795770645376622 0x7ffacbfb0000 376832 C:\Windows\system32\MSWSOCK.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширение поставщика службы API Microsoft Windows Sockets 2.0 131795770645376622 0x7ffacc150000 94208 C:\Windows\SYSTEM32\cryptsp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Cryptographic Service Provider API 131795770645376622 0x7ffacc170000 45056 C:\Windows\System32\CRYPTBASE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base cryptographic API DLL 131795770645376622 0x7ffacc1f0000 241664 C:\Windows\System32\NTASN1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft ASN.1 API 131795770645376622 0x7ffacc230000 155648 C:\Windows\System32\ncrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Маршрутизатор Windows NCrypt 131795770645376622 0x7ffacc350000 180224 C:\Windows\System32\SspiCli.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Security Support Provider Interface 131795770645376622 0x7ffacc500000 102400 c:\windows\system32\EventAggregation.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Event Aggregation User Mode Library 131795770645376622 0x7ffacc520000 622592 C:\Windows\SYSTEM32\sxs.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Fusion 2.5 131795770645376622 0x7ffacc5c0000 352256 C:\Windows\SYSTEM32\winsta.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Winstation Library 131795770645376622 0x7ffacc620000 176128 c:\windows\system32\bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795770645376622 0x7ffacc6e0000 61440 C:\Windows\System32\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795770645376622 0x7ffacc6f0000 311296 C:\Windows\System32\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795770645376622 0x7ffacc740000 81920 C:\Windows\System32\profapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Profile Basic API 131795770645376622 0x7ffacc760000 65536 C:\Windows\System32\MSASN1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ASN.1 Runtime APIs 131795770645376622 0x7ffacc8f0000 1003520 C:\Windows\System32\ucrtbase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645376622 0x7ffacc9f0000 434176 C:\Windows\System32\bcryptPrimitives.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Cryptographic Primitives Library 131795770645376622 0x7ffacca60000 122880 C:\Windows\System32\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795770645376622 0x7ffacca80000 348160 C:\Windows\System32\WINTRUST.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation Microsoft Trust Verification APIs 131795770645376622 0x7ffaccae0000 692224 C:\Windows\System32\shcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795770645376622 0x7ffaccb90000 7180288 C:\Windows\System32\windows.storage.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API хранения Microsoft WinRT 131795770645376622 0x7ffacd270000 2215936 C:\Windows\System32\KERNELBASE.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645376622 0x7ffacd490000 1871872 C:\Windows\System32\CRYPT32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API32 криптографии 131795770645376622 0x7ffacd710000 638976 C:\Windows\System32\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645376622 0x7ffacd7b0000 270336 C:\Windows\System32\cfgmgr32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Configuration Manager DLL 131795770645376622 0x7ffacd810000 22056960 C:\Windows\System32\SHELL32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Общая библиотека оболочки Windows 131795770645376622 0x7ffaced20000 782336 C:\Windows\System32\OLEAUT32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795770645376622 0x7ffacede0000 450560 C:\Windows\System32\coml2.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft COM for Windows 131795770645376622 0x7ffacee50000 1183744 C:\Windows\System32\RPCRT4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795770645376622 0x7ffacef80000 32768 C:\Windows\System32\NSI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation NSI User-mode interface DLL 131795770645376622 0x7ffacef90000 647168 C:\Windows\System32\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795770645376622 0x7ffacf030000 651264 C:\Windows\System32\clbcatq.dll 2001.12.10941.16384 (rs1_release.160715-1616) Microsoft Corporation COM+ Configuration Catalog 131795770645376622 0x7ffacf0d0000 704512 C:\Windows\System32\KERNEL32.DLL 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645376622 0x7ffacf180000 376832 C:\Windows\System32\WLDAP32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Win32 LDAP API DLL 131795770645376622 0x7ffacf340000 4362240 C:\Windows\System32\setupapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Setup API 131795770645376622 0x7ffacf770000 212992 C:\Windows\System32\GDI32.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation GDI Client DLL 131795770645376622 0x7ffacf820000 434176 C:\Windows\System32\WS2_32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation 32-разрядная библиотека Windows Socket 2.0 131795770645376622 0x7ffacf8c0000 1462272 C:\Windows\System32\user32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795770645376622 0x7ffacfb30000 2916352 C:\Windows\System32\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795770645376622 0x7ffacfe00000 114688 C:\Windows\System32\imagehlp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT Image Helper 131795770645376622 0x7ffacfe20000 663552 C:\Windows\System32\advapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795770645376622 0x7ffad0070000 1277952 C:\Windows\System32\ole32.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft OLE для Windows 131795770645376622 0x7ffad01b0000 335872 C:\Windows\System32\shlwapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека небольших программ оболочки 131795770645376622 0x7ffad0210000 364544 C:\Windows\System32\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795770645376622 0x7ffad0270000 1908736 C:\Windows\SYSTEM32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 25 372 580 4 00000000:000003e5 131765776305463443 0 0 1 Обязательная метка\Обязательный уровень системы NT AUTHORITY\LOCAL SERVICE svchost.exe C:\Windows\system32\svchost.exe C:\Windows\system32\svchost.exe -k LocalService Microsoft Corporation 10.0.14393.0 (rs1_release.160715-1616) Хост-процесс для служб Windows 131795770645376755 0x7ff718c20000 57344 C:\Windows\system32\svchost.exe 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Хост-процесс для служб Windows 131795770645376755 0x7ffab1c40000 1302528 c:\windows\system32\LicenseManager.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation LicenseManager 131795770645376755 0x7ffab91f0000 233472 c:\windows\system32\sstpsvc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Обеспечивает возможность использования SSTP для подключения к удаленным компьютерам с помощью VPN. 131795770645376755 0x7ffab93b0000 897024 C:\Windows\System32\TokenBroker.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Token Broker 131795770645376755 0x7ffabaab0000 94208 C:\Windows\SYSTEM32\profext.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation profext 131795780812578370 0x7ffabafc0000 700416 C:\Windows\System32\wer.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека сообщений об ошибках Windows 131795770645376755 0x7ffabbd10000 65536 C:\Windows\System32\TOKENBINDING.dll 10.0.14393.1593 (rs1_release.170731-1934) Microsoft Corporation Token Binding Protocol 131795770645376755 0x7ffabc610000 540672 c:\windows\system32\w32time.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служба времени Windows 131795770645376755 0x7ffabca50000 819200 C:\Windows\System32\Windows.Security.Authentication.Web.Core.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Token Broker WinRT API 131795770645376755 0x7ffabcb70000 262144 C:\Windows\System32\cdprt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft (R) CDP Client WinRT API 131795770645376755 0x7ffabef00000 499712 c:\windows\system32\cdpsvc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служба CDP Майкрософт (R) 131795770645376755 0x7ffabf2d0000 344064 C:\Windows\system32\ncryptprov.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft KSP 131795770645376755 0x7ffabf330000 2457600 C:\Windows\System32\msxml6.dll 6.30.14393.2156 Microsoft Corporation MSXML 6.0 131795770645376755 0x7ffabfbe0000 1011712 C:\Windows\System32\Windows.Security.Authentication.OnlineId.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation Windows Runtime OnlineId Authentication DLL 131795770645376755 0x7ffabff60000 135168 C:\Windows\system32\ncryptsslp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft SChannel Provider 131795770645376755 0x7ffac05e0000 40960 c:\windows\system32\sbservicetrigger.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Socket Broker Service Trigger 131795770645376755 0x7ffac05f0000 94208 C:\Windows\System32\wwapi.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation WWAN API 131795770645376755 0x7ffac0910000 724992 C:\Windows\System32\Windows.Networking.Connectivity.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Networking Connectivity Runtime DLL 131795770645376755 0x7ffac0ad0000 86016 C:\Windows\SYSTEM32\mskeyprotect.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик защиты ключей (Майкрософт) 131795770645376755 0x7ffac1160000 892928 C:\Windows\System32\wuapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API клиента Центра обновления Windows 131795770645376755 0x7ffac1d60000 589824 C:\Windows\System32\webio.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API протоколов передачи по Веб 131795770645376755 0x7ffac23c0000 331776 C:\Windows\System32\OneCoreCommonProxyStub.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation OneCore Common Proxy Stub 131795770645376755 0x7ffac2a20000 81920 c:\windows\system32\rtutils.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Routing Utilities 131795770645376755 0x7ffac2b30000 286720 C:\Windows\System32\usermgrproxy.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation UserMgrProxy 131795770645376755 0x7ffac2c30000 135168 c:\windows\system32\CLIPC.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиент платформы лицензирования клиента 131795770645376755 0x7ffac2d80000 5140480 c:\windows\system32\cdp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API клиента Microsoft (R) CDP 131795780812550384 0x7ffac3290000 86016 C:\Windows\System32\fthsvc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Модуль диагностики отказоустойчивой кучи Microsoft Windows 131795770645376755 0x7ffac3cb0000 2772992 C:\Windows\System32\iertutil.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служебная программа времени выполнения для Internet Explorer 131795770645376755 0x7ffac3f60000 225280 C:\Windows\System32\FWPolicyIOMgr.dll 10.0.14393.2189 (rs1_release.180329-1711) Microsoft Corporation FwPolicyIoMgr DLL 131795770645376755 0x7ffac4050000 118784 c:\windows\system32\wdi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Инфраструктура диагностики Windows 131795770645376755 0x7ffac4130000 40960 c:\windows\system32\fdphost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служба размещения поставщиков функций обнаружения 131795770645376755 0x7ffac41a0000 77824 C:\Windows\System32\fdproxy.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation Function Discovery Proxy Dll 131795770645376755 0x7ffac4200000 98304 C:\Windows\system32\perftrack.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Performance PerfTrack 131795770645376755 0x7ffac42a0000 659456 C:\Windows\System32\StateRepository.Core.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation StateRepository Core 131795770645376755 0x7ffac4450000 86016 C:\Windows\SYSTEM32\usermgrcli.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation UserMgr API DLL 131795770645376755 0x7ffac46d0000 4161536 C:\Windows\System32\Windows.StateRepository.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Сервер Windows StateRepository API Server 131795770645376755 0x7ffac5070000 798720 C:\Windows\System32\Windows.Web.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL веб-клиента 131795770645376755 0x7ffac5b80000 184320 C:\Windows\SYSTEM32\AuthBroker.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API WinRT для веб-проверки подлинности 131795770645376755 0x7ffac60e0000 221184 C:\Windows\System32\XmlLite.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft XmlLite Library 131795770645376755 0x7ffac6400000 53248 c:\windows\system32\HTTPAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation HTTP Protocol Stack API 131795770645376755 0x7ffac6610000 40960 C:\Windows\System32\rasadhlp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Remote Access AutoDial Helper 131795770645376755 0x7ffac66a0000 86016 C:\Windows\SYSTEM32\ondemandconnroutehelper.dll 10.0.14393.351 (rs1_release_inmarket.161014-1755) Microsoft Corporation On Demand Connctiond Route Helper 131795770645376755 0x7ffac66e0000 122880 C:\Windows\System32\fdssdp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Function Discovery SSDP Provider Dll 131795770645376755 0x7ffac6710000 172032 C:\Windows\System32\FunDisc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL обнаружения функции 131795770645376755 0x7ffac6750000 1380352 C:\Windows\System32\webservices.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Среда выполнения веб-служб Windows 131795770645376755 0x7ffac68b0000 696320 C:\Windows\System32\wsdapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Веб-службы для библиотек DLL API-интерфейсов устройств 131795770645376755 0x7ffac6960000 167936 C:\Windows\System32\fdwsd.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Function Discovery WS Discovery Provider Dll 131795770645376755 0x7ffac69c0000 839680 C:\Windows\System32\WINHTTP.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Службы HTTP Windows 131795770645376755 0x7ffac76d0000 65536 C:\Windows\System32\vmictimeprovider.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Virtual Machine Integration Component Time Sync Provider Library 131795770645376755 0x7ffac79c0000 57344 C:\Windows\System32\npmproxy.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Network List Manager Proxy 131795770645376755 0x7ffac7a10000 544768 c:\windows\system32\netprofmsvc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Диспетчер списка сетей 131795770645376755 0x7ffac7aa0000 401408 C:\Windows\SYSTEM32\wlanapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows WLAN AutoConfig Client Side API DLL 131795770645376755 0x7ffac7d20000 106496 C:\Windows\SYSTEM32\msauserext.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation MSA USER Extension DLL 131795770645376755 0x7ffac7e50000 86016 C:\Windows\System32\SSDPAPI.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation SSDP Client API DLL 131795770645376755 0x7ffac7f70000 49152 c:\windows\system32\licensemanagersvc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation LicenseManagerSvc 131795770645376755 0x7ffac83d0000 106496 C:\Windows\SYSTEM32\dhcpcsvc.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служба DHCP-клиента 131795770645376755 0x7ffac83f0000 90112 C:\Windows\SYSTEM32\dhcpcsvc6.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиент DHCPv6 131795770645376755 0x7ffac8420000 434176 C:\Windows\System32\fwpuclnt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API пользовательского режима FWP/IPsec 131795770645376755 0x7ffac8540000 286720 C:\Windows\System32\vaultcli.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиентская библиотека хранилища учетных данных 131795770645376755 0x7ffac8810000 45056 C:\Windows\SYSTEM32\WINNSI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Network Store Information RPC interface 131795770645376755 0x7ffac8fa0000 253952 c:\windows\system32\logoncli.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Net Logon Client DLL 131795770645376755 0x7ffac90a0000 53248 c:\windows\system32\nsisvc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation RPC-сервер интерфейса сохранения сети 131795770645376755 0x7ffac90b0000 90112 C:\Windows\SYSTEM32\wkscli.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Workstation Service Client DLL 131795770645376755 0x7ffac91f0000 172032 c:\windows\system32\FontProvider.dll 10.0.14393.1066 (rs1_release_sec.170327-1835) Microsoft Corporation Windows Font Provider Library 131795780812573070 0x7ffac9220000 397312 C:\Windows\System32\wevtapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API настройки и использования событий 131795770645376755 0x7ffac9290000 40960 c:\windows\system32\DSROLE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DS Setup Client DLL 131795770645376755 0x7ffac92e0000 1269760 C:\Windows\System32\WinTypes.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL основных типов Windows 131795770645376755 0x7ffac9790000 98304 c:\windows\system32\nlaapi.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Network Location Awareness 2 131795770645376755 0x7ffac9860000 1896448 c:\windows\system32\fntcache.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служба кэша шрифтов Windows 131795770645376755 0x7ffac9bb0000 479232 c:\windows\system32\es.dll 2001.12.10941.16384 (rs1_release.160715-1616) Microsoft Corporation COM+ 131795770645376755 0x7ffaca130000 204800 C:\Windows\SYSTEM32\windows.devices.radios.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows.Devices.Radios DLL 131795770645376755 0x7ffaca280000 73728 C:\Windows\System32\BitsProxy.dll 7.8.14393.0 (rs1_release.160715-1616) Microsoft Corporation Background Intelligent Transfer Service Proxy 131795770645376755 0x7ffaca340000 1593344 C:\Windows\system32\propsys.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Система страниц свойств (Майкрософт) 131795770645376755 0x7ffaca500000 69632 C:\Windows\System32\wups.dll 10.0.14393.2122 (rs1_release.180217-2341) Microsoft Corporation Windows Update client proxy stub 131795780812567382 0x7ffacadf0000 499712 C:\Windows\System32\apphelp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиентская библиотека совместимости приложений 131795770645376755 0x7ffacb140000 593920 c:\windows\system32\msvcp110_win.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Microsoft® STL110 C++ Runtime Library 131795770645376755 0x7ffacb1e0000 1163264 C:\Windows\System32\twinapi.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation twinapi.appcore 131795770645376755 0x7ffacb300000 364544 c:\windows\system32\VEEventDispatcher.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Visual Element Event dispatcher 131795770645376755 0x7ffacb360000 176128 C:\Windows\System32\fwbase.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Firewall Base DLL 131795770645376755 0x7ffacb420000 204800 C:\Windows\SYSTEM32\ntmarta.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик Windows NT MARTA 131795770645376755 0x7ffacb460000 548864 C:\Windows\System32\FirewallAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API брандмауэра Windows 131795770645376755 0x7ffacb6f0000 143360 C:\Windows\SYSTEM32\gpapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиентские функции API групповой политики 131795770645376755 0x7ffacb920000 81920 C:\Windows\SYSTEM32\WLDP.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Политика блокировки Windows 131795770645376755 0x7ffacbaf0000 495616 C:\Windows\system32\schannel.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик безопасности TLS/SSL 131795770645376755 0x7ffacbbb0000 208896 C:\Windows\system32\rsaenh.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Enhanced Cryptographic Provider 131795770645376755 0x7ffacbbf0000 40960 C:\Windows\SYSTEM32\DPAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Data Protection API 131795770645376755 0x7ffacbd30000 229376 c:\windows\system32\IPHLPAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API вспомогательного приложения IP 131795770645376755 0x7ffacbd70000 659456 C:\Windows\SYSTEM32\DNSAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Динамическая библиотека API DNS-клиента 131795770645376755 0x7ffacbe20000 53248 C:\Windows\SYSTEM32\netutils.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API Helpers DLL 131795770645376755 0x7ffacbe40000 126976 c:\windows\system32\USERENV.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Userenv 131795770645376755 0x7ffacbfb0000 376832 C:\Windows\system32\mswsock.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширение поставщика службы API Microsoft Windows Sockets 2.0 131795770645376755 0x7ffacc150000 94208 C:\Windows\System32\CRYPTSP.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Cryptographic Service Provider API 131795770645376755 0x7ffacc170000 45056 C:\Windows\system32\CRYPTBASE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base cryptographic API DLL 131795770645376755 0x7ffacc1f0000 241664 c:\windows\system32\NTASN1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft ASN.1 API 131795770645376755 0x7ffacc230000 155648 c:\windows\system32\ncrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Маршрутизатор Windows NCrypt 131795770645376755 0x7ffacc350000 180224 C:\Windows\System32\SspiCli.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Security Support Provider Interface 131795770645376755 0x7ffacc520000 622592 C:\Windows\SYSTEM32\sxs.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Fusion 2.5 131795770645376755 0x7ffacc620000 176128 C:\Windows\System32\bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795770645376755 0x7ffacc6e0000 61440 C:\Windows\System32\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795770645376755 0x7ffacc6f0000 311296 C:\Windows\System32\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795770645376755 0x7ffacc740000 81920 C:\Windows\System32\profapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Profile Basic API 131795770645376755 0x7ffacc760000 65536 C:\Windows\System32\MSASN1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ASN.1 Runtime APIs 131795770645376755 0x7ffacc8f0000 1003520 C:\Windows\System32\ucrtbase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645376755 0x7ffacc9f0000 434176 C:\Windows\System32\bcryptPrimitives.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Cryptographic Primitives Library 131795770645376755 0x7ffacca60000 122880 C:\Windows\System32\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795770645376755 0x7ffacca80000 348160 C:\Windows\System32\WINTRUST.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation Microsoft Trust Verification APIs 131795770645376755 0x7ffaccae0000 692224 C:\Windows\System32\shcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795770645376755 0x7ffacd270000 2215936 C:\Windows\System32\KERNELBASE.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645376755 0x7ffacd490000 1871872 C:\Windows\System32\CRYPT32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API32 криптографии 131795770645376755 0x7ffacd710000 638976 C:\Windows\System32\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645376755 0x7ffacd7b0000 270336 C:\Windows\System32\cfgmgr32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Configuration Manager DLL 131795770645376755 0x7ffaced20000 782336 C:\Windows\System32\OLEAUT32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795770645376755 0x7ffacede0000 450560 C:\Windows\System32\coml2.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft COM for Windows 131795770645376755 0x7ffacee50000 1183744 C:\Windows\System32\RPCRT4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795770645376755 0x7ffacef80000 32768 C:\Windows\System32\NSI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation NSI User-mode interface DLL 131795770645376755 0x7ffacef90000 647168 C:\Windows\System32\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795770645376755 0x7ffacf030000 651264 C:\Windows\System32\clbcatq.dll 2001.12.10941.16384 (rs1_release.160715-1616) Microsoft Corporation COM+ Configuration Catalog 131795770645376755 0x7ffacf0d0000 704512 C:\Windows\System32\KERNEL32.DLL 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645376755 0x7ffacf770000 212992 C:\Windows\System32\GDI32.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation GDI Client DLL 131795770645376755 0x7ffacf820000 434176 C:\Windows\System32\WS2_32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation 32-разрядная библиотека Windows Socket 2.0 131795770645376755 0x7ffacf8c0000 1462272 C:\Windows\System32\user32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795770645376755 0x7ffacfb30000 2916352 C:\Windows\System32\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795770645376755 0x7ffacfe20000 663552 C:\Windows\System32\advapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795770645376755 0x7ffad0070000 1277952 C:\Windows\System32\ole32.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft OLE для Windows 131795770645376755 0x7ffad0210000 364544 C:\Windows\System32\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795770645376755 0x7ffad0270000 1908736 C:\Windows\SYSTEM32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 26 360 580 4 00000000:000003e5 131765776311216195 0 0 1 Обязательная метка\Обязательный уровень системы NT AUTHORITY\LOCAL SERVICE svchost.exe C:\Windows\System32\svchost.exe C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted Microsoft Corporation 10.0.14393.0 (rs1_release.160715-1616) Хост-процесс для служб Windows 131795770645376855 0x7ff718c20000 57344 C:\Windows\System32\svchost.exe 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Хост-процесс для служб Windows 131795770645376855 0x7ffab4af0000 606208 C:\Windows\System32\audioses.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Сеанс обработки звука 131795770645376855 0x7ffabaad0000 352256 C:\Windows\System32\deviceaccess.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Device Broker And Policy COM Server 131795770645376855 0x7ffac7e70000 36864 C:\Windows\SYSTEM32\coreaudiopolicymanagerext.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation "coreaudiopolicymanagerext.DYNLINK" 131795770645376855 0x7ffac87d0000 237568 c:\windows\system32\AUDIOSRVPOLICYMANAGER.dll 10.0.14393.351 (rs1_release_inmarket.161014-1755) Microsoft Corporation Windows Audio Service Policy Manager 131795770645376855 0x7ffac90d0000 978944 c:\windows\system32\audiosrv.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служба Windows Audio 131795770645376855 0x7ffac92e0000 1269760 C:\Windows\SYSTEM32\wintypes.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL основных типов Windows 131795770645376855 0x7ffac9480000 462848 c:\windows\system32\MMDevAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation MMDevice API 131795770645376855 0x7ffaca340000 1593344 c:\windows\system32\PROPSYS.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Система страниц свойств (Майкрософт) 131795770645376855 0x7ffaca4e0000 77824 C:\Windows\SYSTEM32\wtsapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Remote Desktop Session Host Server SDK APIs 131795770645376855 0x7ffacb1e0000 1163264 C:\Windows\System32\twinapi.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation twinapi.appcore 131795770645376855 0x7ffacb3f0000 163840 c:\windows\system32\DEVOBJ.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Device Information Set DLL 131795770645376855 0x7ffacb920000 81920 C:\Windows\SYSTEM32\WLDP.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Политика блокировки Windows 131795770645376855 0x7ffacc5c0000 352256 C:\Windows\SYSTEM32\winsta.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Winstation Library 131795770645376855 0x7ffacc620000 176128 C:\Windows\System32\bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795770645376855 0x7ffacc6e0000 61440 C:\Windows\System32\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795770645376855 0x7ffacc6f0000 311296 C:\Windows\System32\POWRPROF.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795770645376855 0x7ffacc760000 65536 C:\Windows\System32\MSASN1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ASN.1 Runtime APIs 131795770645376855 0x7ffacc8f0000 1003520 C:\Windows\System32\ucrtbase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645376855 0x7ffacc9f0000 434176 C:\Windows\System32\bcryptPrimitives.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Cryptographic Primitives Library 131795770645376855 0x7ffacca60000 122880 C:\Windows\System32\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795770645376855 0x7ffacca80000 348160 C:\Windows\System32\WINTRUST.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation Microsoft Trust Verification APIs 131795770645376855 0x7ffaccae0000 692224 C:\Windows\System32\shcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795770645376855 0x7ffacd270000 2215936 C:\Windows\System32\KERNELBASE.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645376855 0x7ffacd490000 1871872 C:\Windows\System32\CRYPT32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API32 криптографии 131795770645376855 0x7ffacd710000 638976 C:\Windows\System32\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645376855 0x7ffacd7b0000 270336 C:\Windows\System32\cfgmgr32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Configuration Manager DLL 131795770645376855 0x7ffaced20000 782336 C:\Windows\System32\OLEAUT32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795770645376855 0x7ffacee50000 1183744 C:\Windows\System32\RPCRT4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795770645376855 0x7ffacef90000 647168 C:\Windows\System32\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795770645376855 0x7ffacf030000 651264 C:\Windows\System32\clbcatq.dll 2001.12.10941.16384 (rs1_release.160715-1616) Microsoft Corporation COM+ Configuration Catalog 131795770645376855 0x7ffacf0d0000 704512 C:\Windows\System32\KERNEL32.DLL 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645376855 0x7ffacf770000 212992 C:\Windows\System32\GDI32.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation GDI Client DLL 131795770645376855 0x7ffacf8c0000 1462272 C:\Windows\System32\user32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795770645376855 0x7ffacfb30000 2916352 C:\Windows\System32\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795770645376855 0x7ffad0210000 364544 C:\Windows\System32\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795770645376855 0x7ffad0270000 1908736 C:\Windows\SYSTEM32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 27 1040 580 4 00000000:000003e5 131765776311708649 0 0 1 Обязательная метка\Обязательный уровень системы NT AUTHORITY\LOCAL SERVICE svchost.exe C:\Windows\system32\svchost.exe C:\Windows\system32\svchost.exe -k LocalServiceNetworkRestricted Microsoft Corporation 10.0.14393.0 (rs1_release.160715-1616) Хост-процесс для служб Windows 131795770645376955 0x7ff718c20000 57344 C:\Windows\system32\svchost.exe 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Хост-процесс для служб Windows 131795770645376955 0x7ffac8820000 57344 C:\Windows\SYSTEM32\cmintegrator.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation cmintegrator.dll 131795770645376955 0x7ffac8880000 69632 C:\Windows\system32\WMICLNT.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation WMI Client API 131795770645376955 0x7ffac8c50000 245760 C:\Windows\system32\wcmcsp.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Windows Connection Service Provider DLL 131795770645376955 0x7ffac8fe0000 737280 c:\windows\system32\wcmsvc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL службы диспетчера подключений Windows 131795770645376955 0x7ffac9790000 98304 C:\Windows\SYSTEM32\nlaapi.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Network Location Awareness 2 131795770645376955 0x7ffaca4e0000 77824 C:\Windows\SYSTEM32\wtsapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Remote Desktop Session Host Server SDK APIs 131795770645376955 0x7ffacb6f0000 143360 C:\Windows\SYSTEM32\gpapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиентские функции API групповой политики 131795770645376955 0x7ffacb920000 81920 C:\Windows\SYSTEM32\WLDP.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Политика блокировки Windows 131795770645376955 0x7ffacbd30000 229376 c:\windows\system32\IPHLPAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API вспомогательного приложения IP 131795770645376955 0x7ffacc5c0000 352256 C:\Windows\SYSTEM32\WINSTA.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Winstation Library 131795770645376955 0x7ffacc6e0000 61440 C:\Windows\System32\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795770645376955 0x7ffacc6f0000 311296 C:\Windows\System32\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795770645376955 0x7ffacc760000 65536 C:\Windows\System32\MSASN1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ASN.1 Runtime APIs 131795770645376955 0x7ffacc8f0000 1003520 C:\Windows\System32\ucrtbase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645376955 0x7ffacc9f0000 434176 C:\Windows\System32\bcryptPrimitives.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Cryptographic Primitives Library 131795770645376955 0x7ffacca60000 122880 C:\Windows\System32\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795770645376955 0x7ffacca80000 348160 C:\Windows\System32\WINTRUST.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation Microsoft Trust Verification APIs 131795770645376955 0x7ffacd270000 2215936 C:\Windows\System32\KERNELBASE.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645376955 0x7ffacd490000 1871872 C:\Windows\System32\CRYPT32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API32 криптографии 131795770645376955 0x7ffacd710000 638976 C:\Windows\System32\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645376955 0x7ffacd7b0000 270336 C:\Windows\System32\cfgmgr32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Configuration Manager DLL 131795770645376955 0x7ffaced20000 782336 C:\Windows\System32\OLEAUT32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795770645376955 0x7ffacee50000 1183744 C:\Windows\System32\RPCRT4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795770645376955 0x7ffacef80000 32768 C:\Windows\System32\NSI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation NSI User-mode interface DLL 131795770645376955 0x7ffacef90000 647168 C:\Windows\System32\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795770645376955 0x7ffacf0d0000 704512 C:\Windows\System32\KERNEL32.DLL 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645376955 0x7ffacf770000 212992 C:\Windows\System32\GDI32.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation GDI Client DLL 131795770645376955 0x7ffacf820000 434176 C:\Windows\System32\WS2_32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation 32-разрядная библиотека Windows Socket 2.0 131795770645376955 0x7ffacf8c0000 1462272 C:\Windows\System32\user32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795770645376955 0x7ffacfb30000 2916352 C:\Windows\System32\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795770645376955 0x7ffacfe20000 663552 C:\Windows\System32\advapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795770645376955 0x7ffad0210000 364544 C:\Windows\System32\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795770645376955 0x7ffad0270000 1908736 C:\Windows\SYSTEM32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 28 1068 580 4 00000000:000003e4 131765776312395030 0 0 1 Обязательная метка\Обязательный уровень системы NT AUTHORITY\NETWORK SERVICE svchost.exe C:\Windows\system32\svchost.exe C:\Windows\system32\svchost.exe -k NetworkService Microsoft Corporation 10.0.14393.0 (rs1_release.160715-1616) Хост-процесс для служб Windows 131795770645377076 0x7ff718c20000 57344 C:\Windows\system32\svchost.exe 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Хост-процесс для служб Windows 131795770645377076 0x7ffab1fd0000 2277376 C:\Windows\System32\msxml3.dll 8.110.14393.1532 Microsoft Corporation MSXML 3.0 131795770645377076 0x7ffabcf50000 921600 C:\Windows\system32\drvstore.dll 10.0.14393.351 (rs1_release_inmarket.161014-1755) Microsoft Corporation Driver Store API 131795770645377076 0x7ffabf1d0000 192512 c:\windows\system32\CRYPTNET.dll 10.0.14393.2035 (rs1_release_inmarket.180110-1910) Microsoft Corporation Crypto Network Related API 131795770645377076 0x7ffac1d60000 589824 c:\windows\system32\webio.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API протоколов передачи по Веб 131795770645377076 0x7ffac34c0000 81920 C:\Windows\system32\vss_ps.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation Microsoft® Volume Shadow Copy Service proxy/stub 131795770645377076 0x7ffac3810000 167936 C:\Windows\SYSTEM32\Cabinet.dll 5.00 (rs1_release.160715-1616) Microsoft Corporation Microsoft® Cabinet File API 131795770645377076 0x7ffac3840000 3088384 C:\Windows\system32\ESENT.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширяемая подсистема хранения данных ESE для Microsoft(R) Windows(R) 131795770645377076 0x7ffac4e70000 102400 C:\Windows\system32\samcli.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Security Accounts Manager Client DLL 131795770645377076 0x7ffac6410000 98304 C:\Windows\system32\VssTrace.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека трассировки службы теневого копирования тома Microsoft® 131795770645377076 0x7ffac6430000 1581056 C:\Windows\system32\VSSAPI.DLL 10.0.14393.953 (rs1_release_inmarket.170303-1614) Microsoft Corporation Microsoft® Volume Shadow Copy Requestor/Writer Services API DLL 131795770645377076 0x7ffac65c0000 155648 C:\Windows\System32\cryptcatsvc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Cryptographic Catalog Services 131795770645377076 0x7ffac65f0000 77824 C:\Windows\System32\crypttpmeksvc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Cryptographic TPM Endorsement Key Services 131795770645377076 0x7ffac6610000 40960 C:\Windows\System32\rasadhlp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Remote Access AutoDial Helper 131795770645377076 0x7ffac6680000 102400 c:\windows\system32\cryptsvc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Службы криптографии 131795770645377076 0x7ffac69c0000 839680 c:\windows\system32\WINHTTP.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Службы HTTP Windows 131795770645377076 0x7ffac6b90000 53248 c:\windows\system32\DSPARSE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Active Directory Domain Services API 131795770645377076 0x7ffac6f00000 303104 c:\windows\system32\wkssvc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL службы рабочей станции 131795770645377076 0x7ffac79c0000 57344 C:\Windows\System32\npmproxy.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Network List Manager Proxy 131795770645377076 0x7ffac79e0000 184320 C:\Windows\SYSTEM32\netjoin.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL присоединения к домену 131795770645377076 0x7ffac7aa0000 401408 C:\Windows\system32\WlanApi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows WLAN AutoConfig Client Side API DLL 131795770645377076 0x7ffac7c00000 266240 C:\Windows\System32\mstask.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека интерфейса планировщика заданий 131795770645377076 0x7ffac7e50000 86016 C:\Windows\system32\ssdpapi.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation SSDP Client API DLL 131795770645377076 0x7ffac8260000 425984 c:\windows\system32\ncsi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Индикатор работоспособности сетевых подключений 131795770645377076 0x7ffac8370000 389120 c:\windows\system32\nlasvc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служба сведений о подключенных сетях 2 131795770645377076 0x7ffac83d0000 106496 C:\Windows\SYSTEM32\dhcpcsvc.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служба DHCP-клиента 131795770645377076 0x7ffac83f0000 90112 C:\Windows\SYSTEM32\dhcpcsvc6.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиент DHCPv6 131795770645377076 0x7ffac8410000 40960 C:\Windows\System32\dnsext.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DNS extension DLL 131795770645377076 0x7ffac8420000 434176 C:\Windows\SYSTEM32\Fwpuclnt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API пользовательского режима FWP/IPsec 131795770645377076 0x7ffac8810000 45056 C:\Windows\SYSTEM32\WINNSI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Network Store Information RPC interface 131795770645377076 0x7ffac8830000 290816 c:\windows\system32\dnsrslvr.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служба кэширующего сопоставителя DNS 131795770645377076 0x7ffac8880000 69632 c:\windows\system32\WMICLNT.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation WMI Client API 131795770645377076 0x7ffac8cf0000 815104 C:\Windows\System32\taskschd.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Task Scheduler COM API 131795770645377076 0x7ffac90b0000 90112 c:\windows\system32\wkscli.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Workstation Service Client DLL 131795770645377076 0x7ffac9220000 397312 C:\Windows\SYSTEM32\wevtapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API настройки и использования событий 131795770645377076 0x7ffac9bb0000 479232 C:\Windows\System32\ES.DLL 2001.12.10941.16384 (rs1_release.160715-1616) Microsoft Corporation COM+ 131795770645377076 0x7ffac9f10000 221184 C:\Windows\System32\netprofm.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Network List Manager 131795770645377076 0x7ffaca340000 1593344 C:\Windows\System32\PROPSYS.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Система страниц свойств (Майкрософт) 131795770645377076 0x7ffaca4e0000 77824 C:\Windows\SYSTEM32\wtsapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Remote Desktop Session Host Server SDK APIs 131795770645377076 0x7ffaca610000 143360 C:\Windows\system32\SAMLIB.dll 10.0.14393.82 (rs1_release.160805-1735) Microsoft Corporation SAM Library DLL 131795770645377076 0x7ffacb3f0000 163840 c:\windows\system32\DEVOBJ.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Device Information Set DLL 131795770645377076 0x7ffacb6f0000 143360 C:\Windows\SYSTEM32\gpapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиентские функции API групповой политики 131795770645377076 0x7ffacb920000 81920 C:\Windows\SYSTEM32\WLDP.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Политика блокировки Windows 131795770645377076 0x7ffacbbb0000 208896 C:\Windows\system32\rsaenh.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Enhanced Cryptographic Provider 131795770645377076 0x7ffacbd30000 229376 C:\Windows\SYSTEM32\IPHLPAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API вспомогательного приложения IP 131795770645377076 0x7ffacbd70000 659456 C:\Windows\SYSTEM32\DNSAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Динамическая библиотека API DNS-клиента 131795770645377076 0x7ffacbe20000 53248 C:\Windows\SYSTEM32\netutils.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API Helpers DLL 131795770645377076 0x7ffacbe40000 126976 C:\Windows\system32\USERENV.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Userenv 131795770645377076 0x7ffacbfb0000 376832 C:\Windows\system32\mswsock.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширение поставщика службы API Microsoft Windows Sockets 2.0 131795770645377076 0x7ffacc150000 94208 C:\Windows\SYSTEM32\CRYPTSP.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Cryptographic Service Provider API 131795770645377076 0x7ffacc170000 45056 C:\Windows\SYSTEM32\CRYPTBASE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base cryptographic API DLL 131795770645377076 0x7ffacc1b0000 126976 C:\Windows\SYSTEM32\JoinUtil.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Join Utility DLL 131795770645377076 0x7ffacc350000 180224 C:\Windows\system32\sspicli.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Security Support Provider Interface 131795770645377076 0x7ffacc520000 622592 C:\Windows\SYSTEM32\sxs.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Fusion 2.5 131795770645377076 0x7ffacc5c0000 352256 C:\Windows\SYSTEM32\WINSTA.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Winstation Library 131795770645377076 0x7ffacc620000 176128 C:\Windows\SYSTEM32\bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795770645377076 0x7ffacc6e0000 61440 C:\Windows\System32\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795770645377076 0x7ffacc6f0000 311296 C:\Windows\System32\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795770645377076 0x7ffacc740000 81920 C:\Windows\System32\profapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Profile Basic API 131795770645377076 0x7ffacc760000 65536 C:\Windows\System32\MSASN1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ASN.1 Runtime APIs 131795770645377076 0x7ffacc8f0000 1003520 C:\Windows\System32\ucrtbase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645377076 0x7ffacc9f0000 434176 C:\Windows\System32\bcryptPrimitives.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Cryptographic Primitives Library 131795770645377076 0x7ffacca60000 122880 C:\Windows\System32\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795770645377076 0x7ffacca80000 348160 C:\Windows\System32\WINTRUST.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation Microsoft Trust Verification APIs 131795770645377076 0x7ffaccae0000 692224 C:\Windows\System32\shcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795770645377076 0x7ffacd270000 2215936 C:\Windows\System32\KERNELBASE.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645377076 0x7ffacd490000 1871872 C:\Windows\System32\CRYPT32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API32 криптографии 131795770645377076 0x7ffacd710000 638976 C:\Windows\System32\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645377076 0x7ffacd7b0000 270336 C:\Windows\System32\cfgmgr32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Configuration Manager DLL 131795770645377076 0x7ffaced20000 782336 C:\Windows\System32\OLEAUT32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795770645377076 0x7ffacee50000 1183744 C:\Windows\System32\RPCRT4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795770645377076 0x7ffacef80000 32768 C:\Windows\System32\NSI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation NSI User-mode interface DLL 131795770645377076 0x7ffacef90000 647168 C:\Windows\System32\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795770645377076 0x7ffacf030000 651264 C:\Windows\System32\clbcatq.dll 2001.12.10941.16384 (rs1_release.160715-1616) Microsoft Corporation COM+ Configuration Catalog 131795770645377076 0x7ffacf0d0000 704512 C:\Windows\System32\KERNEL32.DLL 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645377076 0x7ffacf770000 212992 C:\Windows\System32\GDI32.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation GDI Client DLL 131795770645377076 0x7ffacf820000 434176 C:\Windows\System32\WS2_32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation 32-разрядная библиотека Windows Socket 2.0 131795770645377076 0x7ffacf8c0000 1462272 C:\Windows\System32\user32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795770645377076 0x7ffacfb30000 2916352 C:\Windows\System32\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795770645377076 0x7ffacfe20000 663552 C:\Windows\System32\ADVAPI32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795770645377076 0x7ffad0210000 364544 C:\Windows\System32\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795770645377076 0x7ffad0270000 1908736 C:\Windows\SYSTEM32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 29 1248 580 4 00000000:000003e7 131765776322176070 0 0 1 Обязательная метка\Обязательный уровень системы NT AUTHORITY\СИСТЕМА spoolsv.exe C:\Windows\System32\spoolsv.exe C:\Windows\System32\spoolsv.exe Microsoft Corporation 10.0.14393.0 (rs1_release.160715-1616) Диспетчер очереди печати 131795770645377182 0x7ff639680000 819200 C:\Windows\System32\spoolsv.exe 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Диспетчер очереди печати 131795770645377182 0x7ffab8a60000 3346432 C:\Windows\system32\spool\DRIVERS\x64\3\PrintConfig.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Пользовательский интерфейс PrintConfig 131795770645377182 0x7ffaba980000 815104 C:\Windows\System32\jscript.dll 5.812.10240.16384 Microsoft Corporation Microsoft ® JScript 131795770645377182 0x7ffabae60000 77824 C:\Windows\System32\DEVRTL.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Device Management Run Time Library 131795770645377182 0x7ffabb7d0000 851968 C:\Windows\System32\win32spl.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик печати с исполнением на стороне клиента 131795770645377182 0x7ffabbd40000 176128 C:\Windows\SYSTEM32\prntvpt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Print Ticket Services Module 131795770645377182 0x7ffabbd70000 3346432 C:\Windows\System32\DriverStore\FileRepository\prnms003.inf_amd64_53d78f68bc1697cc\Amd64\PrintConfig.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Пользовательский интерфейс PrintConfig 131795770645377182 0x7ffabc0c0000 118784 C:\Windows\System32\SPFILEQ.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows SPFILEQ 131795770645377182 0x7ffabc590000 118784 C:\Program Files\Windows Defender\MpOav.dll 4.10.14393.1794 (rs1_release.171008-1615) Microsoft Corporation IOfficeAntiVirus Module 131795770645377182 0x7ffabc5b0000 65536 C:\Windows\SYSTEM32\amsi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Anti-Malware Scan Interface 131795770645377182 0x7ffabc880000 73728 C:\Windows\System32\cscapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Offline Files Win32 API 131795770645377182 0x7ffabcf50000 921600 C:\Windows\System32\drvstore.dll 10.0.14393.351 (rs1_release_inmarket.161014-1755) Microsoft Corporation Driver Store API 131795770645377182 0x7ffabd040000 77824 C:\Windows\System32\fdPnp.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Pnp Provider Dll 131795770645377182 0x7ffabd060000 610304 C:\Windows\System32\WSDMon.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Диспетчер порта принтера WSD 131795770645377182 0x7ffabd100000 348160 C:\Windows\System32\usbmon.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Standard Dynamic Printing Port Monitor DLL 131795770645377182 0x7ffabd160000 86016 C:\Windows\System32\wsnmp32.dll 10.0.14393.2189 (rs1_release.180329-1711) Microsoft Corporation Microsoft WinSNMP v2.0 Manager API 131795770645377182 0x7ffabd180000 548864 C:\Windows\system32\winspool.drv 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Драйвер диспетчера очереди Windows 131795770645377182 0x7ffabd2a0000 1159168 C:\Windows\System32\localspl.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Библиотека локального диспетчера очереди 131795770645377182 0x7ffabde60000 237568 C:\Windows\System32\tcpmon.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека монитора портов TCP/IP 131795770645377182 0x7ffabe3f0000 65536 C:\Windows\system32\spool\PRTPROCS\x64\winprint.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Windows Print Processor DLL 131795770645377182 0x7ffabe6c0000 77824 C:\Windows\System32\PrintIsolationProxy.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Print Sandbox COM Proxy Stub 131795770645377182 0x7ffabe8a0000 49152 C:\Windows\System32\snmpapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SNMP Utility Library 131795770645377182 0x7ffabe980000 114688 C:\Windows\System32\SPOOLSS.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Spooler SubSystem DLL 131795770645377182 0x7ffabef80000 69632 C:\Windows\System32\sfc_os.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows File Protection 131795770645377182 0x7ffabf330000 2457600 C:\Windows\System32\msxml6.dll 6.30.14393.2156 Microsoft Corporation MSXML 6.0 131795770645377182 0x7ffabf5d0000 2924544 C:\Windows\SYSTEM32\wininet.dll 11.00.14393.447 (rs1_release_inmarket.161102-0100) Microsoft Corporation Расширения Интернета для Win32 131795770645377182 0x7ffabff10000 155648 C:\Windows\System32\srvcli.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Server Service Client DLL 131795770645377182 0x7ffac0af0000 114688 C:\Windows\System32\ATL.DLL 3.05.2284 Microsoft Corporation ATL Module for Windows XP (Unicode) 131795770645377182 0x7ffac1f00000 65536 C:\Windows\System32\FXSMON.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Fax Print Monitor 131795770645377182 0x7ffac1f30000 118784 C:\Windows\System32\SPINF.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows SPINF 131795770645377182 0x7ffac2b80000 40960 C:\Windows\SYSTEM32\VERSION.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Version Checking and File Installation Libraries 131795770645377182 0x7ffac34e0000 1843200 C:\Windows\SYSTEM32\urlmon.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширения OLE32 для Win32 131795770645377182 0x7ffac3810000 167936 C:\Windows\System32\cabinet.dll 5.00 (rs1_release.160715-1616) Microsoft Corporation Microsoft® Cabinet File API 131795770645377182 0x7ffac3cb0000 2772992 C:\Windows\SYSTEM32\iertutil.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служебная программа времени выполнения для Internet Explorer 131795770645377182 0x7ffac4e90000 32768 C:\Windows\System32\wshirda.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Sockets Helper DLL 131795770645377182 0x7ffac60e0000 221184 C:\Windows\System32\XmlLite.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft XmlLite Library 131795770645377182 0x7ffac6610000 40960 C:\Windows\System32\rasadhlp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Remote Access AutoDial Helper 131795770645377182 0x7ffac6710000 172032 C:\Windows\System32\FunDisc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL обнаружения функции 131795770645377182 0x7ffac6750000 1380352 C:\Windows\System32\webservices.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Среда выполнения веб-служб Windows 131795770645377182 0x7ffac68b0000 696320 C:\Windows\System32\wsdapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Веб-службы для библиотек DLL API-интерфейсов устройств 131795770645377182 0x7ffac6990000 69632 C:\Windows\System32\deviceassociation.dll 10.0.14393.82 (rs1_release.160805-1735) Microsoft Corporation Device Association Client DLL 131795770645377182 0x7ffac69c0000 839680 C:\Windows\System32\WINHTTP.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Службы HTTP Windows 131795770645377182 0x7ffac6ba0000 49152 C:\Windows\System32\Secur32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Security Support Provider Interface 131795770645377182 0x7ffac7e00000 196608 C:\Windows\System32\inetpp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL Internet Print Provider 131795770645377182 0x7ffac8420000 434176 C:\Windows\System32\fwpuclnt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API пользовательского режима FWP/IPsec 131795770645377182 0x7ffac8810000 45056 C:\Windows\SYSTEM32\WINNSI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Network Store Information RPC interface 131795770645377182 0x7ffac9290000 40960 C:\Windows\System32\DSROLE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DS Setup Client DLL 131795770645377182 0x7ffaca4e0000 77824 C:\Windows\System32\WTSAPI32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Remote Desktop Session Host Server SDK APIs 131795770645377182 0x7ffacadf0000 499712 C:\Windows\system32\apphelp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиентская библиотека совместимости приложений 131795770645377182 0x7ffacb360000 176128 C:\Windows\System32\fwbase.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Firewall Base DLL 131795770645377182 0x7ffacb3f0000 163840 C:\Windows\System32\DEVOBJ.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Device Information Set DLL 131795770645377182 0x7ffacb420000 204800 C:\Windows\SYSTEM32\ntmarta.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик Windows NT MARTA 131795770645377182 0x7ffacb460000 548864 C:\Windows\System32\FirewallAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API брандмауэра Windows 131795770645377182 0x7ffacb6f0000 143360 C:\Windows\SYSTEM32\gpapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиентские функции API групповой политики 131795770645377182 0x7ffacbbb0000 208896 C:\Windows\system32\rsaenh.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Enhanced Cryptographic Provider 131795770645377182 0x7ffacbd30000 229376 C:\Windows\SYSTEM32\IPHLPAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API вспомогательного приложения IP 131795770645377182 0x7ffacbd70000 659456 C:\Windows\System32\DNSAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Динамическая библиотека API DNS-клиента 131795770645377182 0x7ffacbe20000 53248 C:\Windows\System32\netutils.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API Helpers DLL 131795770645377182 0x7ffacbe40000 126976 C:\Windows\System32\USERENV.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Userenv 131795770645377182 0x7ffacbfb0000 376832 C:\Windows\system32\mswsock.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширение поставщика службы API Microsoft Windows Sockets 2.0 131795770645377182 0x7ffacc150000 94208 C:\Windows\System32\CRYPTSP.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Cryptographic Service Provider API 131795770645377182 0x7ffacc170000 45056 C:\Windows\System32\CRYPTBASE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base cryptographic API DLL 131795770645377182 0x7ffacc350000 180224 C:\Windows\System32\SspiCli.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Security Support Provider Interface 131795770645377182 0x7ffacc520000 622592 C:\Windows\SYSTEM32\sxs.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Fusion 2.5 131795770645377182 0x7ffacc5c0000 352256 C:\Windows\System32\WINSTA.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Winstation Library 131795770645377182 0x7ffacc620000 176128 C:\Windows\System32\bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795770645377182 0x7ffacc6e0000 61440 C:\Windows\System32\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795770645377182 0x7ffacc6f0000 311296 C:\Windows\System32\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795770645377182 0x7ffacc740000 81920 C:\Windows\System32\profapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Profile Basic API 131795770645377182 0x7ffacc760000 65536 C:\Windows\System32\MSASN1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ASN.1 Runtime APIs 131795770645377182 0x7ffacc8f0000 1003520 C:\Windows\System32\ucrtbase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645377182 0x7ffacc9f0000 434176 C:\Windows\System32\bcryptPrimitives.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Cryptographic Primitives Library 131795770645377182 0x7ffacca60000 122880 C:\Windows\System32\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795770645377182 0x7ffacca80000 348160 C:\Windows\System32\WINTRUST.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation Microsoft Trust Verification APIs 131795770645377182 0x7ffaccae0000 692224 C:\Windows\System32\shcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795770645377182 0x7ffaccb90000 7180288 C:\Windows\System32\windows.storage.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API хранения Microsoft WinRT 131795770645377182 0x7ffacd270000 2215936 C:\Windows\System32\KERNELBASE.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645377182 0x7ffacd490000 1871872 C:\Windows\System32\CRYPT32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API32 криптографии 131795770645377182 0x7ffacd710000 638976 C:\Windows\System32\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645377182 0x7ffacd7b0000 270336 C:\Windows\System32\cfgmgr32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Configuration Manager DLL 131795770645377182 0x7ffacd810000 22056960 C:\Windows\System32\SHELL32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Общая библиотека оболочки Windows 131795770645377182 0x7ffaced20000 782336 C:\Windows\System32\OLEAUT32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795770645377182 0x7ffacee50000 1183744 C:\Windows\System32\RPCRT4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795770645377182 0x7ffacef80000 32768 C:\Windows\System32\NSI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation NSI User-mode interface DLL 131795770645377182 0x7ffacef90000 647168 C:\Windows\System32\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795770645377182 0x7ffacf030000 651264 C:\Windows\System32\clbcatq.dll 2001.12.10941.16384 (rs1_release.160715-1616) Microsoft Corporation COM+ Configuration Catalog 131795770645377182 0x7ffacf0d0000 704512 C:\Windows\System32\KERNEL32.DLL 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645377182 0x7ffacf340000 4362240 C:\Windows\System32\SETUPAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Setup API 131795770645377182 0x7ffacf770000 212992 C:\Windows\System32\GDI32.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation GDI Client DLL 131795770645377182 0x7ffacf820000 434176 C:\Windows\System32\WS2_32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation 32-разрядная библиотека Windows Socket 2.0 131795770645377182 0x7ffacf8c0000 1462272 C:\Windows\System32\USER32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795770645377182 0x7ffacfb30000 2916352 C:\Windows\System32\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795770645377182 0x7ffacfe20000 663552 C:\Windows\System32\advapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795770645377182 0x7ffad0070000 1277952 C:\Windows\System32\ole32.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft OLE для Windows 131795770645377182 0x7ffad01b0000 335872 C:\Windows\System32\SHLWAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека небольших программ оболочки 131795770645377182 0x7ffad0210000 364544 C:\Windows\System32\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795770645377182 0x7ffad0270000 1908736 C:\Windows\SYSTEM32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 30 1512 580 4 00000000:000003e5 131765776336551242 0 0 1 Обязательная метка\Обязательный уровень системы NT AUTHORITY\LOCAL SERVICE svchost.exe C:\Windows\system32\svchost.exe C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation Microsoft Corporation 10.0.14393.0 (rs1_release.160715-1616) Хост-процесс для служб Windows 131795770645377290 0x7ff718c20000 57344 C:\Windows\system32\svchost.exe 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Хост-процесс для служб Windows 131795770645377290 0x7ffabe9f0000 258048 c:\windows\system32\ssdpsrv.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL службы SSDP 131795770645377290 0x7ffac3f60000 225280 c:\windows\system32\FWPolicyIOMgr.dll 10.0.14393.2189 (rs1_release.180329-1711) Microsoft Corporation FwPolicyIoMgr DLL 131795770645377290 0x7ffac60e0000 221184 C:\Windows\System32\XmlLite.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft XmlLite Library 131795770645377290 0x7ffac6400000 53248 c:\windows\system32\HTTPAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation HTTP Protocol Stack API 131795770645377290 0x7ffac66c0000 32768 C:\Windows\system32\wship6.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL помощника Winsock2 (TL/IPv6) 131795770645377290 0x7ffac66d0000 32768 C:\Windows\system32\wshtcpip.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL помощника службы Winsock2 (TL/IPv4) 131795770645377290 0x7ffac6700000 40960 C:\Windows\system32\wshqos.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL помощника службы QoS Winsock2 131795770645377290 0x7ffac6710000 172032 C:\Windows\System32\FunDisc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL обнаружения функции 131795770645377290 0x7ffac6750000 1380352 c:\windows\system32\webservices.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Среда выполнения веб-служб Windows 131795770645377290 0x7ffac68b0000 696320 c:\windows\system32\wsdapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Веб-службы для библиотек DLL API-интерфейсов устройств 131795770645377290 0x7ffac69b0000 57344 c:\windows\system32\fdrespub.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служба публикации ресурсов обнаружения функции 131795770645377290 0x7ffac69c0000 839680 c:\windows\system32\WINHTTP.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Службы HTTP Windows 131795770645377290 0x7ffac83d0000 106496 C:\Windows\SYSTEM32\dhcpcsvc.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служба DHCP-клиента 131795770645377290 0x7ffac83f0000 90112 C:\Windows\SYSTEM32\dhcpcsvc6.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиент DHCPv6 131795770645377290 0x7ffac8810000 45056 C:\Windows\SYSTEM32\WINNSI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Network Store Information RPC interface 131795770645377290 0x7ffac90b0000 90112 c:\windows\system32\wkscli.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Workstation Service Client DLL 131795770645377290 0x7ffacb360000 176128 c:\windows\system32\fwbase.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Firewall Base DLL 131795770645377290 0x7ffacb460000 548864 c:\windows\system32\FirewallAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API брандмауэра Windows 131795770645377290 0x7ffacb920000 81920 C:\Windows\SYSTEM32\WLDP.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Политика блокировки Windows 131795770645377290 0x7ffacbbb0000 208896 C:\Windows\system32\rsaenh.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Enhanced Cryptographic Provider 131795770645377290 0x7ffacbd30000 229376 c:\windows\system32\IPHLPAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API вспомогательного приложения IP 131795770645377290 0x7ffacbe20000 53248 c:\windows\system32\netutils.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API Helpers DLL 131795770645377290 0x7ffacbfb0000 376832 C:\Windows\system32\mswsock.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширение поставщика службы API Microsoft Windows Sockets 2.0 131795770645377290 0x7ffacc150000 94208 c:\windows\system32\CRYPTSP.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Cryptographic Service Provider API 131795770645377290 0x7ffacc170000 45056 C:\Windows\system32\CRYPTBASE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base cryptographic API DLL 131795770645377290 0x7ffacc350000 180224 C:\Windows\system32\sspicli.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Security Support Provider Interface 131795770645377290 0x7ffacc620000 176128 c:\windows\system32\bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795770645377290 0x7ffacc6e0000 61440 C:\Windows\System32\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795770645377290 0x7ffacc6f0000 311296 C:\Windows\System32\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795770645377290 0x7ffacc760000 65536 C:\Windows\System32\MSASN1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ASN.1 Runtime APIs 131795770645377290 0x7ffacc8f0000 1003520 C:\Windows\System32\ucrtbase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645377290 0x7ffacc9f0000 434176 C:\Windows\System32\bcryptPrimitives.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Cryptographic Primitives Library 131795770645377290 0x7ffacca60000 122880 C:\Windows\System32\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795770645377290 0x7ffacca80000 348160 C:\Windows\System32\WINTRUST.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation Microsoft Trust Verification APIs 131795770645377290 0x7ffacd270000 2215936 C:\Windows\System32\KERNELBASE.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645377290 0x7ffacd490000 1871872 C:\Windows\System32\CRYPT32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API32 криптографии 131795770645377290 0x7ffacee50000 1183744 C:\Windows\System32\RPCRT4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795770645377290 0x7ffacef80000 32768 C:\Windows\System32\NSI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation NSI User-mode interface DLL 131795770645377290 0x7ffacef90000 647168 C:\Windows\System32\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795770645377290 0x7ffacf030000 651264 C:\Windows\System32\clbcatq.dll 2001.12.10941.16384 (rs1_release.160715-1616) Microsoft Corporation COM+ Configuration Catalog 131795770645377290 0x7ffacf0d0000 704512 C:\Windows\System32\KERNEL32.DLL 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645377290 0x7ffacf770000 212992 C:\Windows\System32\GDI32.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation GDI Client DLL 131795770645377290 0x7ffacf820000 434176 C:\Windows\System32\WS2_32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation 32-разрядная библиотека Windows Socket 2.0 131795770645377290 0x7ffacf8c0000 1462272 C:\Windows\System32\user32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795770645377290 0x7ffacfb30000 2916352 C:\Windows\System32\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795770645377290 0x7ffad0210000 364544 C:\Windows\System32\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795770645377290 0x7ffad0270000 1908736 C:\Windows\SYSTEM32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 31 1556 580 4 00000000:000003e7 131765776339471770 0 0 1 Обязательная метка\Обязательный уровень системы NT AUTHORITY\СИСТЕМА svchost.exe C:\Windows\System32\svchost.exe C:\Windows\System32\svchost.exe -k utcsvc Microsoft Corporation 10.0.14393.0 (rs1_release.160715-1616) Хост-процесс для служб Windows 131795770645377395 0x272f9bf0000 12288 C:\Windows\SYSTEM32\sfc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows File Protection 131795770645377395 0x7ff718c20000 57344 C:\Windows\System32\svchost.exe 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Хост-процесс для служб Windows 131795770645377395 0x7ffab93b0000 897024 C:\Windows\System32\TokenBroker.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Token Broker 131795770645377395 0x7ffabaab0000 94208 C:\Windows\SYSTEM32\profext.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation profext 131795770645377395 0x7ffabae60000 77824 C:\Windows\SYSTEM32\DEVRTL.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Device Management Run Time Library 131795770645377395 0x7ffabbd10000 65536 C:\Windows\System32\TOKENBINDING.dll 10.0.14393.1593 (rs1_release.170731-1934) Microsoft Corporation Token Binding Protocol 131795770645377395 0x7ffabca50000 819200 C:\Windows\System32\Windows.Security.Authentication.Web.Core.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Token Broker WinRT API 131795770645377395 0x7ffabcf50000 921600 C:\Windows\System32\drvstore.dll 10.0.14393.351 (rs1_release_inmarket.161014-1755) Microsoft Corporation Driver Store API 131795770645377395 0x7ffabe850000 155648 C:\Windows\System32\IDStore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Identity Store 131795770645377395 0x7ffabef80000 69632 C:\Windows\SYSTEM32\sfc_os.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows File Protection 131795770645377395 0x7ffabefd0000 258048 C:\Windows\SYSTEM32\aepic.dll 10.0.17060.1029 (WinBuild.160101.0800) Microsoft Corporation Application Experience Program Cache 131795770645377395 0x7ffabf140000 176128 C:\Windows\System32\CourtesyEngine.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Feedback Courtesy Engine DLL Server 131795770645377395 0x7ffabf1d0000 192512 C:\Windows\System32\cryptnet.dll 10.0.14393.2035 (rs1_release_inmarket.180110-1910) Microsoft Corporation Crypto Network Related API 131795770645377395 0x7ffabfbe0000 1011712 C:\Windows\System32\Windows.Security.Authentication.OnlineId.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation Windows Runtime OnlineId Authentication DLL 131795770645377395 0x7ffabfde0000 143360 c:\windows\system32\CRYPTXML.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API-интерфейс XML DigSig 131795770645377395 0x7ffabff60000 135168 C:\Windows\system32\ncryptsslp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft SChannel Provider 131795770645377395 0x7ffac05f0000 94208 C:\Windows\System32\wwapi.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation WWAN API 131795770645377395 0x7ffac0910000 724992 C:\Windows\System32\Windows.Networking.Connectivity.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Networking Connectivity Runtime DLL 131795770645377395 0x7ffac09d0000 884736 C:\Windows\System32\wpnapps.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Приложения для push-уведомлений Windows 131795770645377395 0x7ffac0ad0000 86016 C:\Windows\SYSTEM32\mskeyprotect.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик защиты ключей (Майкрософт) 131795770645377395 0x7ffac0bf0000 3559424 C:\Windows\System32\ActXPrxy.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation ActiveX Interface Marshaling Library 131795770645377395 0x7ffac1d60000 589824 c:\windows\system32\webio.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API протоколов передачи по Веб 131795770645377395 0x7ffac20d0000 110592 C:\Windows\System32\RMCLIENT.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Resource Manager Client 131795770645377395 0x7ffac23c0000 331776 C:\Windows\System32\OneCoreCommonProxyStub.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation OneCore Common Proxy Stub 131795770645377395 0x7ffac2590000 659456 C:\Windows\System32\FlightSettings.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Параметры цикла тестирования 131795770645377395 0x7ffac2700000 98304 C:\Windows\SYSTEM32\Netapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API DLL 131795770645377395 0x7ffac2750000 106496 C:\Windows\System32\bcd.dll 10.0.14393.1794 (rs1_release.171008-1615) Microsoft Corporation BCD DLL 131795770645377395 0x7ffac2b30000 286720 C:\Windows\System32\usermgrproxy.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation UserMgrProxy 131795770645377395 0x7ffac3cb0000 2772992 C:\Windows\SYSTEM32\iertutil.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служебная программа времени выполнения для Internet Explorer 131795770645377395 0x7ffac4000000 274432 C:\Windows\SYSTEM32\policymanager.dll 10.0.14393.2035 (rs1_release_inmarket.180110-1910) Microsoft Corporation Policy Manager DLL 131795770645377395 0x7ffac4070000 499712 C:\Windows\SYSTEM32\DSREG.DLL 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation AD/AAD User Device Registration 131795770645377395 0x7ffac4450000 86016 C:\Windows\SYSTEM32\usermgrcli.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation UserMgr API DLL 131795770645377395 0x7ffac5fd0000 1056768 c:\windows\system32\WindowsPerformanceRecorderControl.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Windows Performance Recorder Control Library 131795770645377395 0x7ffac60e0000 221184 c:\windows\system32\XmlLite.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft XmlLite Library 131795770645377395 0x7ffac6210000 2007040 c:\windows\system32\diagtrack.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Диагностическое отслеживание Microsoft Windows 131795770645377395 0x7ffac6610000 40960 C:\Windows\System32\rasadhlp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Remote Access AutoDial Helper 131795786489787144 0x7ffac66a0000 86016 C:\Windows\System32\OnDemandConnRouteHelper.dll 10.0.14393.351 (rs1_release_inmarket.161014-1755) Microsoft Corporation On Demand Connctiond Route Helper 131795770645377395 0x7ffac6750000 1380352 c:\windows\system32\webservices.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Среда выполнения веб-служб Windows 131795770645377395 0x7ffac69c0000 839680 c:\windows\system32\WINHTTP.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Службы HTTP Windows 131795770645377395 0x7ffac79c0000 57344 C:\Windows\System32\npmproxy.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Network List Manager Proxy 131795770645377395 0x7ffac7aa0000 401408 C:\Windows\SYSTEM32\wlanapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows WLAN AutoConfig Client Side API DLL 131795770645377395 0x7ffac83d0000 106496 C:\Windows\SYSTEM32\dhcpcsvc.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служба DHCP-клиента 131795770645377395 0x7ffac83f0000 90112 C:\Windows\SYSTEM32\dhcpcsvc6.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиент DHCPv6 131795786490911252 0x7ffac8420000 434176 C:\Windows\System32\FWPUCLNT.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API пользовательского режима FWP/IPsec 131795770645377395 0x7ffac8540000 286720 C:\Windows\System32\vaultcli.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиентская библиотека хранилища учетных данных 131795770645377395 0x7ffac8810000 45056 C:\Windows\SYSTEM32\WINNSI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Network Store Information RPC interface 131795770645377395 0x7ffac8cf0000 815104 C:\Windows\System32\taskschd.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Task Scheduler COM API 131795770645377395 0x7ffac8dc0000 167936 C:\Windows\System32\dbgcore.DLL 10.0.14321.1024 (debuggers(dbg).160715-1616) Microsoft Windows Core Debugging Helpers 131795770645377395 0x7ffac8df0000 1646592 C:\Windows\system32\dbghelp.dll 10.0.14321.1024 (rs1_release.160715-1616) Microsoft Windows Image Helper 131795770645377395 0x7ffac90b0000 90112 C:\Windows\System32\wkscli.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Workstation Service Client DLL 131795770645377395 0x7ffac92e0000 1269760 C:\Windows\System32\WinTypes.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL основных типов Windows 131795770645377395 0x7ffaca4e0000 77824 C:\Windows\SYSTEM32\wtsapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Remote Desktop Session Host Server SDK APIs 131795770645377395 0x7ffaca610000 143360 C:\Windows\System32\SAMLIB.dll 10.0.14393.82 (rs1_release.160805-1735) Microsoft Corporation SAM Library DLL 131795770645377395 0x7ffacb140000 593920 c:\windows\system32\msvcp110_win.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Microsoft® STL110 C++ Runtime Library 131795770645377395 0x7ffacb1e0000 1163264 C:\Windows\System32\twinapi.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation twinapi.appcore 131795770645377395 0x7ffacb420000 204800 C:\Windows\SYSTEM32\ntmarta.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик Windows NT MARTA 131795770645377395 0x7ffacb6f0000 143360 C:\Windows\SYSTEM32\gpapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиентские функции API групповой политики 131795770645377395 0x7ffacb920000 81920 C:\Windows\SYSTEM32\WLDP.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Политика блокировки Windows 131795770645377395 0x7ffacbaf0000 495616 C:\Windows\system32\schannel.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик безопасности TLS/SSL 131795770645377395 0x7ffacbbb0000 208896 C:\Windows\system32\rsaenh.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Enhanced Cryptographic Provider 131795770645377395 0x7ffacbbf0000 40960 C:\Windows\System32\DPAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Data Protection API 131795770645377395 0x7ffacbd30000 229376 C:\Windows\System32\IPHLPAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API вспомогательного приложения IP 131795770645377395 0x7ffacbd70000 659456 c:\windows\system32\DNSAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Динамическая библиотека API DNS-клиента 131795770645377395 0x7ffacbe20000 53248 C:\Windows\System32\netutils.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API Helpers DLL 131795770645377395 0x7ffacbe40000 126976 c:\windows\system32\USERENV.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Userenv 131795770645377395 0x7ffacbfb0000 376832 C:\Windows\system32\mswsock.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширение поставщика службы API Microsoft Windows Sockets 2.0 131795770645377395 0x7ffacc150000 94208 C:\Windows\SYSTEM32\cryptsp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Cryptographic Service Provider API 131795770645377395 0x7ffacc170000 45056 C:\Windows\System32\CRYPTBASE.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base cryptographic API DLL 131795770645377395 0x7ffacc1f0000 241664 C:\Windows\SYSTEM32\NTASN1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft ASN.1 API 131795770645377395 0x7ffacc230000 155648 C:\Windows\SYSTEM32\ncrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Маршрутизатор Windows NCrypt 131795770645377395 0x7ffacc350000 180224 C:\Windows\SYSTEM32\SspiCli.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Security Support Provider Interface 131795770645377395 0x7ffacc5c0000 352256 C:\Windows\SYSTEM32\WINSTA.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Winstation Library 131795770645377395 0x7ffacc620000 176128 c:\windows\system32\bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795770645377395 0x7ffacc6e0000 61440 C:\Windows\System32\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795770645377395 0x7ffacc6f0000 311296 C:\Windows\System32\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795770645377395 0x7ffacc740000 81920 C:\Windows\System32\profapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Profile Basic API 131795770645377395 0x7ffacc760000 65536 C:\Windows\System32\MSASN1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ASN.1 Runtime APIs 131795770645377395 0x7ffacc8f0000 1003520 C:\Windows\System32\ucrtbase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645377395 0x7ffacc9f0000 434176 C:\Windows\System32\bcryptPrimitives.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Cryptographic Primitives Library 131795770645377395 0x7ffacca60000 122880 C:\Windows\System32\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795770645377395 0x7ffacca80000 348160 C:\Windows\System32\WINTRUST.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation Microsoft Trust Verification APIs 131795770645377395 0x7ffaccae0000 692224 C:\Windows\System32\shcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795770645377395 0x7ffaccb90000 7180288 C:\Windows\System32\windows.storage.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API хранения Microsoft WinRT 131795770645377395 0x7ffacd270000 2215936 C:\Windows\System32\KERNELBASE.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645377395 0x7ffacd490000 1871872 C:\Windows\System32\CRYPT32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API32 криптографии 131795770645377395 0x7ffacd710000 638976 C:\Windows\System32\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645377395 0x7ffacd7b0000 270336 C:\Windows\System32\cfgmgr32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Configuration Manager DLL 131795770645377395 0x7ffacd810000 22056960 C:\Windows\System32\SHELL32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Общая библиотека оболочки Windows 131795770645377395 0x7ffaced20000 782336 C:\Windows\System32\OLEAUT32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795770645377395 0x7ffacede0000 450560 C:\Windows\System32\coml2.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft COM for Windows 131795770645377395 0x7ffacee50000 1183744 C:\Windows\System32\RPCRT4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795770645377395 0x7ffacef80000 32768 C:\Windows\System32\NSI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation NSI User-mode interface DLL 131795770645377395 0x7ffacef90000 647168 C:\Windows\System32\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795770645377395 0x7ffacf030000 651264 C:\Windows\System32\clbcatq.dll 2001.12.10941.16384 (rs1_release.160715-1616) Microsoft Corporation COM+ Configuration Catalog 131795770645377395 0x7ffacf0d0000 704512 C:\Windows\System32\KERNEL32.DLL 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645377395 0x7ffacf340000 4362240 C:\Windows\System32\SETUPAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Setup API 131795770645377395 0x7ffacf770000 212992 C:\Windows\System32\GDI32.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation GDI Client DLL 131795770645377395 0x7ffacf820000 434176 C:\Windows\System32\WS2_32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation 32-разрядная библиотека Windows Socket 2.0 131795770645377395 0x7ffacf8c0000 1462272 C:\Windows\System32\user32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795770645377395 0x7ffacfb30000 2916352 C:\Windows\System32\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795770645377395 0x7ffacfe20000 663552 C:\Windows\System32\advapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795770645377395 0x7ffad0070000 1277952 C:\Windows\System32\OLE32.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft OLE для Windows 131795770645377395 0x7ffad01b0000 335872 C:\Windows\System32\SHLWAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека небольших программ оболочки 131795770645377395 0x7ffad0210000 364544 C:\Windows\System32\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795770645377395 0x7ffad0270000 1908736 C:\Windows\SYSTEM32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 32 1636 580 4 00000000:000003e7 131765776343009549 0 0 1 Обязательная метка\Обязательный уровень системы NT AUTHORITY\СИСТЕМА svchost.exe C:\Windows\system32\svchost.exe C:\Windows\system32\svchost.exe -k appmodel Microsoft Corporation 10.0.14393.0 (rs1_release.160715-1616) Хост-процесс для служб Windows 131795770645377489 0x7ff718c20000 57344 C:\Windows\system32\svchost.exe 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Хост-процесс для служб Windows 131795770645377489 0x7ffac0bf0000 3559424 C:\Windows\System32\ActXPrxy.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation ActiveX Interface Marshaling Library 131795770645377489 0x7ffac34e0000 1843200 c:\windows\system32\urlmon.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширения OLE32 для Win32 131795770645377489 0x7ffac3840000 3088384 c:\windows\system32\ESENT.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширяемая подсистема хранения данных ESE для Microsoft(R) Windows(R) 131795770645377489 0x7ffac3c10000 593920 c:\windows\system32\tileobjserver.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Сервер моделей данных плиток 131795770645377489 0x7ffac3cb0000 2772992 c:\windows\system32\iertutil.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служебная программа времени выполнения для Internet Explorer 131795770645377489 0x7ffac42a0000 659456 c:\windows\system32\StateRepository.Core.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation StateRepository Core 131795770645377489 0x7ffac46d0000 4161536 c:\windows\system32\windows.staterepository.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Сервер Windows StateRepository API Server 131795770645377489 0x7ffac6ac0000 835584 C:\Windows\System32\Windows.UI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Runtime UI Foundation DLL 131795780599947775 0x7ffac7580000 1077248 C:\Windows\System32\MrmCoreR.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Windows MRM 131795770645377489 0x7ffaca4e0000 77824 C:\Windows\SYSTEM32\wtsapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Remote Desktop Session Host Server SDK APIs 131795780600943570 0x7ffaca570000 421888 C:\Windows\System32\BCP47Langs.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation BCP47 Language Classes 131795770645377489 0x7ffacb140000 593920 c:\windows\system32\msvcp110_win.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Microsoft® STL110 C++ Runtime Library 131795770645377489 0x7ffacb920000 81920 C:\Windows\SYSTEM32\WLDP.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Политика блокировки Windows 131795770645377489 0x7ffacbe40000 126976 C:\Windows\system32\USERENV.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Userenv 131795770645377489 0x7ffacc170000 45056 C:\Windows\system32\CRYPTBASE.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base cryptographic API DLL 131795770645377489 0x7ffacc350000 180224 C:\Windows\SYSTEM32\SspiCli.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Security Support Provider Interface 131795770645377489 0x7ffacc5c0000 352256 C:\Windows\SYSTEM32\WINSTA.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Winstation Library 131795770645377489 0x7ffacc620000 176128 C:\Windows\system32\Bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795770645377489 0x7ffacc6e0000 61440 C:\Windows\System32\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795770645377489 0x7ffacc6f0000 311296 C:\Windows\System32\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795770645377489 0x7ffacc740000 81920 C:\Windows\System32\profapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Profile Basic API 131795770645377489 0x7ffacc760000 65536 C:\Windows\System32\MSASN1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ASN.1 Runtime APIs 131795770645377489 0x7ffacc8f0000 1003520 C:\Windows\System32\ucrtbase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645377489 0x7ffacc9f0000 434176 C:\Windows\System32\bcryptPrimitives.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Cryptographic Primitives Library 131795770645377489 0x7ffacca60000 122880 C:\Windows\System32\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795770645377489 0x7ffacca80000 348160 C:\Windows\System32\WINTRUST.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation Microsoft Trust Verification APIs 131795770645377489 0x7ffaccae0000 692224 C:\Windows\System32\shcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795770645377489 0x7ffaccb90000 7180288 C:\Windows\System32\windows.storage.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API хранения Microsoft WinRT 131795770645377489 0x7ffacd270000 2215936 C:\Windows\System32\KERNELBASE.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645377489 0x7ffacd490000 1871872 C:\Windows\System32\CRYPT32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API32 криптографии 131795770645377489 0x7ffacd710000 638976 C:\Windows\System32\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645377489 0x7ffaced20000 782336 C:\Windows\System32\OLEAUT32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795770645377489 0x7ffacee50000 1183744 C:\Windows\System32\RPCRT4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795770645377489 0x7ffacef90000 647168 C:\Windows\System32\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795770645377489 0x7ffacf030000 651264 C:\Windows\System32\clbcatq.dll 2001.12.10941.16384 (rs1_release.160715-1616) Microsoft Corporation COM+ Configuration Catalog 131795770645377489 0x7ffacf0d0000 704512 C:\Windows\System32\KERNEL32.DLL 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645377489 0x7ffacf770000 212992 C:\Windows\System32\GDI32.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation GDI Client DLL 131795770645377489 0x7ffacf8c0000 1462272 C:\Windows\System32\user32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795770645377489 0x7ffacfb30000 2916352 C:\Windows\System32\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795770645377489 0x7ffacfe20000 663552 C:\Windows\System32\advapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795770645377489 0x7ffad01b0000 335872 C:\Windows\System32\shlwapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека небольших программ оболочки 131795770645377489 0x7ffad0210000 364544 C:\Windows\System32\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795770645377489 0x7ffad0270000 1908736 C:\Windows\SYSTEM32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 33 1744 4 9 00000000:000003e7 131765776348255325 0 0 1 Обязательная метка\Обязательный уровень системы NT AUTHORITY\СИСТЕМА MemCompression MemCompression 34 2100 580 4 00000000:000003e4 131765776438403561 0 0 1 Обязательная метка\Обязательный уровень системы NT AUTHORITY\NETWORK SERVICE svchost.exe C:\Windows\system32\svchost.exe C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted Microsoft Corporation 10.0.14393.0 (rs1_release.160715-1616) Хост-процесс для служб Windows 131795770645377758 0x7ff718c20000 57344 C:\Windows\system32\svchost.exe 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Хост-процесс для служб Windows 131795770645377758 0x7ffabff90000 409600 c:\windows\system32\ipsecsvc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows IPsec SPD Server DLL 131795770645377758 0x7ffac1e00000 114688 c:\windows\system32\FwRemoteSvr.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Firewall Remote APIs Server 131795770645377758 0x7ffac3f60000 225280 c:\windows\system32\FWPolicyIOMgr.dll 10.0.14393.2189 (rs1_release.180329-1711) Microsoft Corporation FwPolicyIoMgr DLL 131795770645377758 0x7ffac83d0000 106496 C:\Windows\SYSTEM32\dhcpcsvc.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служба DHCP-клиента 131795770645377758 0x7ffac83f0000 90112 C:\Windows\SYSTEM32\dhcpcsvc6.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиент DHCPv6 131795770645377758 0x7ffac8420000 434176 c:\windows\system32\fwpuclnt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API пользовательского режима FWP/IPsec 131795770645377758 0x7ffacb360000 176128 c:\windows\system32\fwbase.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Firewall Base DLL 131795770645377758 0x7ffacb460000 548864 c:\windows\system32\FirewallAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API брандмауэра Windows 131795770645377758 0x7ffacb920000 81920 C:\Windows\SYSTEM32\WLDP.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Политика блокировки Windows 131795770645377758 0x7ffacb960000 303104 c:\windows\system32\AUTHZ.dll 10.0.14393.1737 (rs1_release_inmarket.170914-1249) Microsoft Corporation Authorization Framework 131795770645377758 0x7ffacbd30000 229376 c:\windows\system32\IPHLPAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API вспомогательного приложения IP 131795770645377758 0x7ffacbfb0000 376832 C:\Windows\system32\mswsock.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширение поставщика службы API Microsoft Windows Sockets 2.0 131795770645377758 0x7ffacc350000 180224 C:\Windows\system32\sspicli.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Security Support Provider Interface 131795770645377758 0x7ffacc620000 176128 c:\windows\system32\bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795770645377758 0x7ffacc6e0000 61440 C:\Windows\System32\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795770645377758 0x7ffacc760000 65536 C:\Windows\System32\MSASN1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ASN.1 Runtime APIs 131795770645377758 0x7ffacc8f0000 1003520 C:\Windows\System32\ucrtbase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645377758 0x7ffacc9f0000 434176 C:\Windows\System32\bcryptPrimitives.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Cryptographic Primitives Library 131795770645377758 0x7ffacca80000 348160 C:\Windows\System32\WINTRUST.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation Microsoft Trust Verification APIs 131795770645377758 0x7ffacd270000 2215936 C:\Windows\System32\KERNELBASE.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645377758 0x7ffacd490000 1871872 C:\Windows\System32\CRYPT32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API32 криптографии 131795770645377758 0x7ffacd710000 638976 C:\Windows\System32\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645377758 0x7ffaced20000 782336 C:\Windows\System32\OLEAUT32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795770645377758 0x7ffacee50000 1183744 C:\Windows\System32\RPCRT4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795770645377758 0x7ffacef80000 32768 C:\Windows\System32\NSI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation NSI User-mode interface DLL 131795770645377758 0x7ffacef90000 647168 C:\Windows\System32\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795770645377758 0x7ffacf030000 651264 C:\Windows\System32\clbcatq.dll 2001.12.10941.16384 (rs1_release.160715-1616) Microsoft Corporation COM+ Configuration Catalog 131795770645377758 0x7ffacf0d0000 704512 C:\Windows\System32\KERNEL32.DLL 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645377758 0x7ffacf820000 434176 C:\Windows\System32\WS2_32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation 32-разрядная библиотека Windows Socket 2.0 131795770645377758 0x7ffacfb30000 2916352 C:\Windows\System32\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795770645377758 0x7ffad0210000 364544 C:\Windows\System32\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795770645377758 0x7ffad0270000 1908736 C:\Windows\SYSTEM32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 35 2648 348 24 00000000:0031f1da 131765777555980720 0 0 1 Обязательная метка\Средний обязательный уровень WIN-0UOTFKKVN1S\User sihost.exe C:\Windows\system32\sihost.exe sihost.exe Microsoft Corporation 10.0.14393.0 (rs1_release.160715-1616) Shell Infrastructure Host 131795770645377872 0x7ff7bbae0000 94208 C:\Windows\system32\sihost.exe 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Shell Infrastructure Host 131795770645377872 0x7ffab9490000 860160 C:\Windows\System32\ntshrui.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширения оболочки, обеспечивающие общий доступ 131795770645377872 0x7ffabae40000 110592 C:\Windows\SYSTEM32\capauthz.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API авторизации возможностей 131795770645377872 0x7ffabaf70000 270336 C:\Windows\System32\edputil.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служебная программа EDP 131795770645377872 0x7ffabb910000 344064 C:\Windows\System32\container.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Windows Containers 131795770645377872 0x7ffabb970000 487424 C:\Windows\System32\daxexec.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation daxexec 131795770645377872 0x7ffabba80000 995328 C:\Windows\System32\twinui.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation TWINUI.APPCORE 131795770645377872 0x7ffabbb80000 61440 C:\Windows\System32\dsclient.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Data Sharing Service Client DLL 131795770645377872 0x7ffabbb90000 581632 C:\Windows\System32\Windows.System.Launcher.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows.System.Launcher 131795770645377872 0x7ffabbd00000 36864 C:\Windows\system32\WpPortingLibrary.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation <d> DLL 131795770645377872 0x7ffabc0b0000 65536 C:\Windows\System32\LINKINFO.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Volume Tracking 131795770645377872 0x7ffabc450000 741376 C:\Windows\system32\ShareHost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ShareHost 131795770645377872 0x7ffabc510000 90112 C:\Windows\system32\execmodelproxy.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ExecModelProxy 131795770645377872 0x7ffabc570000 94208 C:\Windows\SYSTEM32\licensemanagerapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation "LicenseManagerApi.DYNLINK" 131795770645377872 0x7ffabc6b0000 1114112 C:\Windows\System32\AppContracts.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Сервер API Windows AppContracts 131795770645377872 0x7ffabc800000 266240 C:\Windows\System32\windowmanagement.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Window Management 131795770645377872 0x7ffabc850000 159744 C:\Windows\System32\AppointmentActivation.dll 10.0.14393.2189 (rs1_release.180329-1711) Microsoft Corporation DLL for AppointmentActivation 131795770645377872 0x7ffabc880000 73728 C:\Windows\system32\cscapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Offline Files Win32 API 131795770645377872 0x7ffabc8b0000 61440 C:\Windows\System32\NotificationPlatformComponent.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation NotificationPlatformComponent 131795770645377872 0x7ffabc920000 270336 C:\Windows\system32\ExecModelClient.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation ExecModelClient 131795770645377872 0x7ffabc9a0000 413696 C:\Windows\system32\activationmanager.dll 10.0.14393.479 (rs1_release.161110-2025) Microsoft Corporation Activation Manager 131795770645377872 0x7ffabca10000 221184 C:\Windows\System32\ClipboardServer.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Сервер API Modern Clipboard 131795770645377872 0x7ffabcde0000 983040 C:\Windows\System32\modernexecserver.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Сервер Modern Execution 131795770645377872 0x7ffabcef0000 102400 C:\Windows\System32\Windows.Shell.ServiceHostBuilder.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows.Shell.ServiceHostBuilder 131795770645377872 0x7ffabcf10000 122880 C:\Windows\system32\desktopshellext.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DesktopHost Extensions 131795770645377872 0x7ffabff10000 155648 C:\Windows\System32\srvcli.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Server Service Client DLL 131795770645377872 0x7ffac0bf0000 3559424 C:\Windows\System32\ActXPrxy.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation ActiveX Interface Marshaling Library 131795770645377872 0x7ffac20d0000 110592 C:\Windows\System32\RMCLIENT.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Resource Manager Client 131795770645377872 0x7ffac23c0000 331776 C:\Windows\System32\OneCoreCommonProxyStub.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation OneCore Common Proxy Stub 131795770645377872 0x7ffac2b30000 286720 C:\Windows\System32\usermgrproxy.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation UserMgrProxy 131795770645377872 0x7ffac3270000 40960 C:\Windows\System32\FLTLIB.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека фильтров 131795770645377872 0x7ffac34e0000 1843200 C:\Windows\System32\urlmon.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширения OLE32 для Win32 131795770645377872 0x7ffac3cb0000 2772992 C:\Windows\System32\iertutil.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служебная программа времени выполнения для Internet Explorer 131795770645377872 0x7ffac42a0000 659456 C:\Windows\System32\StateRepository.Core.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation StateRepository Core 131795770645377872 0x7ffac4450000 86016 C:\Windows\SYSTEM32\usermgrcli.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation UserMgr API DLL 131795770645377872 0x7ffac46d0000 4161536 C:\Windows\System32\Windows.StateRepository.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Сервер Windows StateRepository API Server 131795770645377872 0x7ffac5500000 438272 C:\Windows\system32\PhotoMetadataHandler.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Photo Metadata Handler 131795770645377872 0x7ffac7720000 1601536 C:\Windows\System32\OneCoreUAPCommonProxyStub.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation OneCoreUAP Common Proxy Stub 131795770645377872 0x7ffac92e0000 1269760 C:\Windows\SYSTEM32\wintypes.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL основных типов Windows 131795770645377872 0x7ffac9500000 2682880 C:\Windows\system32\CoreUIComponents.dll 131795770645377872 0x7ffac9f50000 1736704 C:\Windows\system32\WindowsCodecs.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Microsoft Windows Codecs Library 131795770645377872 0x7ffaca340000 1593344 C:\Windows\System32\PROPSYS.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Система страниц свойств (Майкрософт) 131795770645377872 0x7ffaca4e0000 77824 C:\Windows\SYSTEM32\wtsapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Remote Desktop Session Host Server SDK APIs 131795770645377872 0x7ffaca5e0000 155648 C:\Windows\System32\dwmapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Интерфейс API диспетчера окон рабочего стола (Майкрософт) 131795770645377872 0x7ffaca640000 770048 C:\Windows\system32\CoreMessaging.dll 10.0.14393.0 Microsoft Corporation Microsoft CoreMessaging Dll 131795770645377872 0x7ffacadf0000 499712 C:\Windows\System32\apphelp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиентская библиотека совместимости приложений 131795770645377872 0x7ffacaf00000 610304 C:\Windows\system32\uxtheme.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека тем UxTheme (Microsoft) 131795770645377872 0x7ffacb140000 593920 C:\Windows\System32\msvcp110_win.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Microsoft® STL110 C++ Runtime Library 131795770645377872 0x7ffacb1e0000 1163264 C:\Windows\SYSTEM32\twinapi.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation twinapi.appcore 131795770645377872 0x7ffacb300000 364544 C:\Windows\System32\VEEventDispatcher.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Visual Element Event dispatcher 131795770645377872 0x7ffacb3d0000 110592 C:\Windows\System32\ResourcePolicyClient.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Resource Policy Client 131795770645377872 0x7ffacb420000 204800 C:\Windows\SYSTEM32\ntmarta.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик Windows NT MARTA 131795770645377872 0x7ffacbd30000 229376 C:\Windows\System32\IPHLPAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API вспомогательного приложения IP 131795770645377872 0x7ffacc350000 180224 C:\Windows\System32\SspiCli.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Security Support Provider Interface 131795770645377872 0x7ffacc5c0000 352256 C:\Windows\SYSTEM32\WINSTA.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Winstation Library 131795770645377872 0x7ffacc620000 176128 C:\Windows\System32\bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795770645377872 0x7ffacc6e0000 61440 C:\Windows\System32\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795770645377872 0x7ffacc6f0000 311296 C:\Windows\System32\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795770645377872 0x7ffacc740000 81920 C:\Windows\System32\profapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Profile Basic API 131795770645377872 0x7ffacc8f0000 1003520 C:\Windows\System32\ucrtbase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645377872 0x7ffacc9f0000 434176 C:\Windows\System32\bcryptPrimitives.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Cryptographic Primitives Library 131795770645377872 0x7ffacca60000 122880 C:\Windows\System32\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795770645377872 0x7ffaccae0000 692224 C:\Windows\System32\shcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795770645377872 0x7ffaccb90000 7180288 C:\Windows\System32\Windows.Storage.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API хранения Microsoft WinRT 131795770645377872 0x7ffacd270000 2215936 C:\Windows\System32\KERNELBASE.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645377872 0x7ffacd710000 638976 C:\Windows\System32\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645377872 0x7ffacd7b0000 270336 C:\Windows\System32\cfgmgr32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Configuration Manager DLL 131795770645377872 0x7ffacd810000 22056960 C:\Windows\System32\shell32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Общая библиотека оболочки Windows 131795770645377872 0x7ffaced20000 782336 C:\Windows\System32\OLEAUT32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795770645377872 0x7ffacee50000 1183744 C:\Windows\System32\RPCRT4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795770645377872 0x7ffacef90000 647168 C:\Windows\System32\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795770645377872 0x7ffacf030000 651264 C:\Windows\System32\clbcatq.dll 2001.12.10941.16384 (rs1_release.160715-1616) Microsoft Corporation COM+ Configuration Catalog 131795770645377872 0x7ffacf0d0000 704512 C:\Windows\System32\KERNEL32.DLL 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645377872 0x7ffacf770000 212992 C:\Windows\System32\GDI32.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation GDI Client DLL 131795770645377872 0x7ffacf890000 188416 C:\Windows\System32\IMM32.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Multi-User Windows IMM32 API Client DLL 131795770645377872 0x7ffacf8c0000 1462272 C:\Windows\System32\user32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795770645377872 0x7ffacfb30000 2916352 C:\Windows\System32\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795770645377872 0x7ffacfe20000 663552 C:\Windows\System32\advapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795770645377872 0x7ffad0070000 1277952 C:\Windows\System32\ole32.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft OLE для Windows 131795770645377872 0x7ffad01b0000 335872 C:\Windows\System32\shlwapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека небольших программ оболочки 131795770645377872 0x7ffad0210000 364544 C:\Windows\System32\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795770645377872 0x7ffad0270000 1908736 C:\Windows\SYSTEM32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 36 840 580 4 00000000:0031f1da 131765777563791648 0 0 1 Обязательная метка\Средний обязательный уровень WIN-0UOTFKKVN1S\User svchost.exe C:\Windows\system32\svchost.exe C:\Windows\system32\svchost.exe -k UnistackSvcGroup Microsoft Corporation 10.0.14393.0 (rs1_release.160715-1616) Хост-процесс для служб Windows 131795770645377971 0x7ff718c20000 57344 C:\Windows\system32\svchost.exe 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Хост-процесс для служб Windows 131795770645377971 0x7ffaaf6a0000 331776 C:\Windows\System32\PhoneUtil.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Phone utilities 131795770645377971 0x7ffaaf700000 1421312 C:\Windows\System32\PIMSTORE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation POOM 131795770645377971 0x7ffab05d0000 339968 C:\Windows\System32\AccountAccessor.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Sync data model to access accounts 131795770645377971 0x7ffab0630000 618496 C:\Windows\System32\SyncController.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SyncController for managing sync of mail, contacts, calendar 131795770645377971 0x7ffab93b0000 897024 C:\Windows\System32\TokenBroker.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Token Broker 131795770645377971 0x7ffabaab0000 94208 C:\Windows\SYSTEM32\profext.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation profext 131795770645377971 0x7ffabbb80000 61440 C:\Windows\System32\dsclient.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Data Sharing Service Client DLL 131795770645377971 0x7ffabbd10000 65536 C:\Windows\System32\TOKENBINDING.dll 10.0.14393.1593 (rs1_release.170731-1934) Microsoft Corporation Token Binding Protocol 131795770645377971 0x7ffabca50000 819200 C:\Windows\System32\Windows.Security.Authentication.Web.Core.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Token Broker WinRT API 131795770645377971 0x7ffabcb20000 266240 C:\Windows\System32\CEMAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation CEMAPI 131795770645377971 0x7ffabcb70000 262144 C:\Windows\System32\cdprt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft (R) CDP Client WinRT API 131795770645377971 0x7ffabcd80000 360448 c:\windows\system32\cdpusersvc.dll 10.0.14393.479 (rs1_release.161110-2025) Microsoft Corporation Microsoft (R) CDP User Components 131795770645377971 0x7ffabd630000 200704 C:\Windows\System32\MCCSEngineShared.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Utilies shared among OneSync engines 131795770645377971 0x7ffabdde0000 462848 c:\windows\system32\SYNCUTIL.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Sync utilities for mail, contacts, calendar 131795770645377971 0x7ffabe850000 155648 C:\Windows\System32\IDStore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Identity Store 131795770645377971 0x7ffabed20000 389120 c:\windows\system32\aphostservice.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Accounts Host Service 131795770645377971 0x7ffabfbe0000 1011712 C:\Windows\System32\Windows.Security.Authentication.OnlineId.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation Windows Runtime OnlineId Authentication DLL 131795770645377971 0x7ffac05f0000 94208 C:\Windows\System32\wwapi.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation WWAN API 131795770645377971 0x7ffac0910000 724992 C:\Windows\System32\Windows.Networking.Connectivity.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Networking Connectivity Runtime DLL 131795770645377971 0x7ffac09d0000 884736 C:\Windows\System32\wpnapps.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Приложения для push-уведомлений Windows 131795770645377971 0x7ffac0bf0000 3559424 C:\Windows\System32\ActXPrxy.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation ActiveX Interface Marshaling Library 131795770645377971 0x7ffac20d0000 110592 C:\Windows\System32\RMCLIENT.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Resource Manager Client 131795770645377971 0x7ffac23c0000 331776 C:\Windows\System32\OneCoreCommonProxyStub.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation OneCore Common Proxy Stub 131795770645377971 0x7ffac2590000 659456 C:\Windows\System32\FlightSettings.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Параметры цикла тестирования 131795770645377971 0x7ffac2750000 106496 C:\Windows\System32\bcd.dll 10.0.14393.1794 (rs1_release.171008-1615) Microsoft Corporation BCD DLL 131795770645377971 0x7ffac2b30000 286720 C:\Windows\System32\usermgrproxy.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation UserMgrProxy 131795770645377971 0x7ffac2cb0000 778240 c:\windows\system32\winsqlite3.dll 3.12.2 SQLite Development Team SQLite is a software library that implements a self-contained, serverless, zero-configuration, transactional SQL database engine. 131795770645377971 0x7ffac2d80000 5140480 c:\windows\system32\cdp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API клиента Microsoft (R) CDP 131795770645377971 0x7ffac3cb0000 2772992 C:\Windows\System32\iertutil.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служебная программа времени выполнения для Internet Explorer 131795770645377971 0x7ffac4000000 274432 C:\Windows\SYSTEM32\policymanager.dll 10.0.14393.2035 (rs1_release_inmarket.180110-1910) Microsoft Corporation Policy Manager DLL 131795770645377971 0x7ffac4100000 151552 c:\windows\system32\NetworkHelper.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Network utilities for mail, contacts, calendar 131795770645377971 0x7ffac4450000 86016 C:\Windows\SYSTEM32\usermgrcli.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation UserMgr API DLL 131795770645377971 0x7ffac60e0000 221184 C:\Windows\System32\XmlLite.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft XmlLite Library 131795770645377971 0x7ffac66a0000 86016 C:\Windows\SYSTEM32\ondemandconnroutehelper.dll 10.0.14393.351 (rs1_release_inmarket.161014-1755) Microsoft Corporation On Demand Connctiond Route Helper 131795770645377971 0x7ffac69c0000 839680 c:\windows\system32\WINHTTP.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Службы HTTP Windows 131795770645377971 0x7ffac79c0000 57344 C:\Windows\System32\npmproxy.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Network List Manager Proxy 131795770645377971 0x7ffac7aa0000 401408 C:\Windows\SYSTEM32\wlanapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows WLAN AutoConfig Client Side API DLL 131795770645377971 0x7ffac83d0000 106496 C:\Windows\SYSTEM32\dhcpcsvc.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служба DHCP-клиента 131795770645377971 0x7ffac83f0000 90112 C:\Windows\SYSTEM32\dhcpcsvc6.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиент DHCPv6 131795770645377971 0x7ffac8540000 286720 C:\Windows\System32\vaultcli.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиентская библиотека хранилища учетных данных 131795770645377971 0x7ffac92e0000 1269760 C:\Windows\SYSTEM32\wintypes.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL основных типов Windows 131795770645377971 0x7ffac97b0000 81920 c:\windows\system32\InprocLogger.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation In-proc Private Event Trace Logger 131795770645377971 0x7ffaca1d0000 69632 C:\Windows\System32\UserDataTypeHelperUtil.dll 10.0.14393.2189 (rs1_release.180329-1711) Microsoft Corporation Type Utilities for data access 131795770645377971 0x7ffaca270000 65536 C:\Windows\System32\UserDataLanguageUtil.dll 10.0.14393.2189 (rs1_release.180329-1711) Microsoft Corporation Language-related helper functions for user data 131795770645377971 0x7ffaca4e0000 77824 C:\Windows\SYSTEM32\wtsapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Remote Desktop Session Host Server SDK APIs 131795770645377971 0x7ffaca520000 90112 C:\Windows\System32\APHostClient.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Accounts Host Service RPC Client 131795770645377971 0x7ffaca610000 143360 C:\Windows\System32\SAMLIB.dll 10.0.14393.82 (rs1_release.160805-1735) Microsoft Corporation SAM Library DLL 131795770645377971 0x7ffacabf0000 45056 c:\windows\system32\MCCSPal.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Platform abstraction layer dll for MCCS 131795770645377971 0x7ffacac20000 86016 c:\windows\system32\UserDataPlatformHelperUtil.dll 10.0.14393.2189 (rs1_release.180329-1711) Microsoft Corporation Platform Utilities for data access 131795770645377971 0x7ffacb140000 593920 c:\windows\system32\msvcp110_win.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Microsoft® STL110 C++ Runtime Library 131795770645377971 0x7ffacb1e0000 1163264 C:\Windows\System32\twinapi.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation twinapi.appcore 131795770645377971 0x7ffacb300000 364544 c:\windows\system32\VEEventDispatcher.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Visual Element Event dispatcher 131795770645377971 0x7ffacb420000 204800 C:\Windows\SYSTEM32\ntmarta.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик Windows NT MARTA 131795770645377971 0x7ffacb920000 81920 C:\Windows\SYSTEM32\WLDP.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Политика блокировки Windows 131795770645377971 0x7ffacbbf0000 40960 C:\Windows\System32\DPAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Data Protection API 131795770645377971 0x7ffacbd30000 229376 c:\windows\system32\IPHLPAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API вспомогательного приложения IP 131795770645377971 0x7ffacbe40000 126976 C:\Windows\System32\USERENV.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Userenv 131795770645377971 0x7ffacbf30000 49152 C:\Windows\system32\NtlmShared.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation NTLM Shared Functionality 131795770645377971 0x7ffacbf40000 421888 C:\Windows\system32\msv1_0.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Authentication Package v1.0 131795770645377971 0x7ffacc010000 86016 C:\Windows\system32\cryptdll.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Cryptography Manager 131795770645377971 0x7ffacc150000 94208 C:\Windows\SYSTEM32\cryptsp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Cryptographic Service Provider API 131795770645377971 0x7ffacc170000 45056 c:\windows\system32\CRYPTBASE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base cryptographic API DLL 131795770645377971 0x7ffacc1f0000 241664 c:\windows\system32\NTASN1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft ASN.1 API 131795770645377971 0x7ffacc230000 155648 c:\windows\system32\ncrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Маршрутизатор Windows NCrypt 131795770645377971 0x7ffacc350000 180224 c:\windows\system32\SspiCli.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Security Support Provider Interface 131795770645377971 0x7ffacc620000 176128 c:\windows\system32\bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795770645377971 0x7ffacc6e0000 61440 C:\Windows\System32\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795770645377971 0x7ffacc6f0000 311296 C:\Windows\System32\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795770645377971 0x7ffacc740000 81920 C:\Windows\System32\profapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Profile Basic API 131795770645377971 0x7ffacc760000 65536 C:\Windows\System32\MSASN1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ASN.1 Runtime APIs 131795770645377971 0x7ffacc8f0000 1003520 C:\Windows\System32\ucrtbase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645377971 0x7ffacc9f0000 434176 C:\Windows\System32\bcryptPrimitives.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Cryptographic Primitives Library 131795770645377971 0x7ffacca60000 122880 C:\Windows\System32\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795770645377971 0x7ffacca80000 348160 C:\Windows\System32\WINTRUST.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation Microsoft Trust Verification APIs 131795770645377971 0x7ffaccae0000 692224 C:\Windows\System32\shcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795770645377971 0x7ffaccb90000 7180288 C:\Windows\System32\windows.storage.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API хранения Microsoft WinRT 131795770645377971 0x7ffacd270000 2215936 C:\Windows\System32\KERNELBASE.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645377971 0x7ffacd490000 1871872 C:\Windows\System32\CRYPT32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API32 криптографии 131795770645377971 0x7ffacd710000 638976 C:\Windows\System32\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645377971 0x7ffacd7b0000 270336 C:\Windows\System32\cfgmgr32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Configuration Manager DLL 131795770645377971 0x7ffaced20000 782336 C:\Windows\System32\OLEAUT32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795770645377971 0x7ffacee50000 1183744 C:\Windows\System32\RPCRT4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795770645377971 0x7ffacef80000 32768 C:\Windows\System32\NSI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation NSI User-mode interface DLL 131795770645377971 0x7ffacef90000 647168 C:\Windows\System32\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795770645377971 0x7ffacf030000 651264 C:\Windows\System32\clbcatq.dll 2001.12.10941.16384 (rs1_release.160715-1616) Microsoft Corporation COM+ Configuration Catalog 131795770645377971 0x7ffacf0d0000 704512 C:\Windows\System32\KERNEL32.DLL 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645377971 0x7ffacf770000 212992 C:\Windows\System32\GDI32.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation GDI Client DLL 131795770645377971 0x7ffacf820000 434176 C:\Windows\System32\WS2_32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation 32-разрядная библиотека Windows Socket 2.0 131795770645377971 0x7ffacf890000 188416 C:\Windows\System32\IMM32.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Multi-User Windows IMM32 API Client DLL 131795770645377971 0x7ffacf8c0000 1462272 C:\Windows\System32\user32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795770645377971 0x7ffacfb30000 2916352 C:\Windows\System32\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795770645377971 0x7ffacfe20000 663552 C:\Windows\System32\advapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795770645377971 0x7ffad01b0000 335872 C:\Windows\System32\shlwapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека небольших программ оболочки 131795770645377971 0x7ffad0210000 364544 C:\Windows\System32\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795770645377971 0x7ffad0270000 1908736 C:\Windows\SYSTEM32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 37 528 348 24 00000000:0031f1da 131765777565618284 0 0 1 Обязательная метка\Средний обязательный уровень WIN-0UOTFKKVN1S\User taskhostw.exe C:\Windows\system32\taskhostw.exe taskhostw.exe {222A245B-E637-4AE9-A93F-A59CA119A75E} Microsoft Corporation 10.0.14393.0 (rs1_release.160715-1616) Хост-процесс для задач Windows 131795770645378085 0x7ff794e10000 102400 C:\Windows\system32\taskhostw.exe 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Хост-процесс для задач Windows 131795770645378085 0x7ffab4af0000 606208 C:\Windows\system32\AUDIOSES.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Сеанс обработки звука 131795770645378085 0x7ffabaab0000 94208 C:\Windows\SYSTEM32\profext.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation profext 131795770645378085 0x7ffabb3c0000 450560 C:\Windows\system32\TextInputFramework.dll 10.0.14393.2189 (rs1_release.180329-1711) Microsoft Corporation "TextInputFramework.DYNLINK" 131795770645378085 0x7ffabb440000 282624 C:\Windows\system32\MTFServer.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation "MTFServer.DYNLINK" 131795770645378085 0x7ffabb510000 2854912 C:\Windows\system32\InputService.dll 10.0.14393.2189 (rs1_release.180329-1711) Microsoft Corporation Microsoft Text InputService Dll 131795770645378085 0x7ffabb8c0000 131072 C:\Windows\system32\InputLocaleManager.dll 10.0.14393.576 (rs1_release_inmarket.161208-2252) Microsoft Corporation "InputLocaleManager.DYNLINK" 131795770645378085 0x7ffabb8f0000 98304 C:\Windows\system32\EditBufferTestHook.dll 10.0.14393.576 (rs1_release_inmarket.161208-2252) Microsoft Corporation "EditBufferTestHook.DYNLINK" 131795770645378085 0x7ffabb9f0000 483328 C:\Windows\system32\MSUTB.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека (DLL) сервера MSUTB 131795770645378085 0x7ffabba70000 53248 C:\Windows\system32\MsCtfMonitor.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation MsCtfMonitor DLL 131795770645378085 0x7ffabbc20000 106496 C:\Windows\System32\PlaySndSrv.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служба PlaySound 131795770645378085 0x7ffabf5d0000 2924544 C:\Windows\system32\wininet.dll 11.00.14393.447 (rs1_release_inmarket.161102-0100) Microsoft Corporation Расширения Интернета для Win32 131795770645378085 0x7ffac37d0000 258048 C:\Windows\system32\wdmaud.drv 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Системный звуковой драйвер Winmm 131795770645378085 0x7ffac3840000 3088384 C:\Windows\system32\ESENT.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширяемая подсистема хранения данных ESE для Microsoft(R) Windows(R) 131795770645378085 0x7ffac3cb0000 2772992 C:\Windows\system32\iertutil.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служебная программа времени выполнения для Internet Explorer 131795770645378085 0x7ffac4000000 274432 C:\Windows\SYSTEM32\policymanager.dll 10.0.14393.2035 (rs1_release_inmarket.180110-1910) Microsoft Corporation Policy Manager DLL 131795770645378085 0x7ffac4140000 114688 C:\Windows\system32\MSACM32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Фильтр диспетчера аудиосжатия Microsoft 131795770645378085 0x7ffac7d10000 32768 C:\Windows\system32\KBDUS.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation United States Keyboard Layout 131795770645378085 0x7ffac8f90000 45056 C:\Windows\system32\AVRT.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Среда выполнения мультимедиа в реальном времени 131795770645378085 0x7ffac92e0000 1269760 C:\Windows\SYSTEM32\wintypes.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL основных типов Windows 131795770645378085 0x7ffac9480000 462848 C:\Windows\System32\MMDevAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation MMDevice API 131795770645378085 0x7ffac9500000 2682880 C:\Windows\system32\CoreUIComponents.dll 131795770645378085 0x7ffac97d0000 40960 C:\Windows\system32\midimap.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft MIDI Mapper 131795770645378085 0x7ffaca180000 53248 C:\Windows\system32\msacm32.drv 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Программа переназначения звуковых устройств 131795770645378085 0x7ffaca340000 1593344 C:\Windows\System32\PROPSYS.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Система страниц свойств (Майкрософт) 131795770645378085 0x7ffaca550000 36864 C:\Windows\system32\ksuser.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User CSA Library 131795770645378085 0x7ffaca5e0000 155648 C:\Windows\system32\dwmapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Интерфейс API диспетчера окон рабочего стола (Майкрософт) 131795770645378085 0x7ffaca640000 770048 C:\Windows\system32\CoreMessaging.dll 10.0.14393.0 Microsoft Corporation Microsoft CoreMessaging Dll 131795770645378085 0x7ffacab10000 61440 C:\Windows\System32\WordBreakers.dll 10.0.14393.2189 (rs1_release.180329-1711) Microsoft Corporation "WordBreakers.DYNLINK" 131795770645378085 0x7ffacab40000 176128 C:\Windows\System32\WINMMBASE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base Multimedia Extension API DLL 131795770645378085 0x7ffacaba0000 143360 C:\Windows\System32\WINMM.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation MCI API DLL 131795770645378085 0x7ffacaf00000 610304 C:\Windows\system32\uxtheme.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека тем UxTheme (Microsoft) 131795770645378085 0x7ffacb140000 593920 C:\Windows\system32\msvcp110_win.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Microsoft® STL110 C++ Runtime Library 131795770645378085 0x7ffacb3f0000 163840 C:\Windows\System32\DEVOBJ.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Device Information Set DLL 131795770645378085 0x7ffacb420000 204800 C:\Windows\SYSTEM32\ntmarta.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик Windows NT MARTA 131795770645378085 0x7ffacbe40000 126976 C:\Windows\SYSTEM32\userenv.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Userenv 131795770645378085 0x7ffacc170000 45056 C:\Windows\system32\CRYPTBASE.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base cryptographic API DLL 131795770645378085 0x7ffacc5c0000 352256 C:\Windows\system32\WINSTA.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Winstation Library 131795770645378085 0x7ffacc6e0000 61440 C:\Windows\System32\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795770645378085 0x7ffacc6f0000 311296 C:\Windows\System32\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795770645378085 0x7ffacc740000 81920 C:\Windows\System32\profapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Profile Basic API 131795770645378085 0x7ffacc8f0000 1003520 C:\Windows\System32\ucrtbase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645378085 0x7ffacc9f0000 434176 C:\Windows\System32\bcryptPrimitives.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Cryptographic Primitives Library 131795770645378085 0x7ffacca60000 122880 C:\Windows\System32\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795770645378085 0x7ffaccae0000 692224 C:\Windows\System32\shcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795770645378085 0x7ffaccb90000 7180288 C:\Windows\System32\windows.storage.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API хранения Microsoft WinRT 131795770645378085 0x7ffacd270000 2215936 C:\Windows\System32\KERNELBASE.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645378085 0x7ffacd710000 638976 C:\Windows\System32\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645378085 0x7ffacd7b0000 270336 C:\Windows\System32\cfgmgr32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Configuration Manager DLL 131795770645378085 0x7ffaced20000 782336 C:\Windows\System32\OLEAUT32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795770645378085 0x7ffacee50000 1183744 C:\Windows\System32\RPCRT4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795770645378085 0x7ffacef90000 647168 C:\Windows\System32\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795770645378085 0x7ffacf030000 651264 C:\Windows\System32\clbcatq.dll 2001.12.10941.16384 (rs1_release.160715-1616) Microsoft Corporation COM+ Configuration Catalog 131795770645378085 0x7ffacf0d0000 704512 C:\Windows\System32\KERNEL32.DLL 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645378085 0x7ffacf1e0000 1417216 C:\Windows\System32\MSCTF.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Серверная библиотека MSCTF 131795770645378085 0x7ffacf770000 212992 C:\Windows\System32\GDI32.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation GDI Client DLL 131795770645378085 0x7ffacf890000 188416 C:\Windows\System32\imm32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Multi-User Windows IMM32 API Client DLL 131795770645378085 0x7ffacf8c0000 1462272 C:\Windows\System32\USER32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795770645378085 0x7ffacfb30000 2916352 C:\Windows\System32\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795770645378085 0x7ffacfe20000 663552 C:\Windows\System32\advapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795770645378085 0x7ffad0070000 1277952 C:\Windows\System32\ole32.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft OLE для Windows 131795770645378085 0x7ffad01b0000 335872 C:\Windows\System32\shlwapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека небольших программ оболочки 131795770645378085 0x7ffad0210000 364544 C:\Windows\System32\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795770645378085 0x7ffad0270000 1908736 C:\Windows\SYSTEM32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 38 3632 664 6 00000000:0031f1da 131765777941176116 0 0 1 Обязательная метка\Средний обязательный уровень WIN-0UOTFKKVN1S\User RuntimeBroker.exe C:\Windows\System32\RuntimeBroker.exe C:\Windows\System32\RuntimeBroker.exe -Embedding Microsoft Corporation 10.0.14393.0 (rs1_release.160715-1616) Runtime Broker 131795770645378207 0x7ff7808b0000 8527872 C:\Windows\system32\ntoskrnl.exe 10.0.14393.2189 (rs1_release.180329-1711) Microsoft Corporation NT Kernel & System 131795770645378207 0x7ff7a45f0000 49152 C:\Windows\System32\RuntimeBroker.exe 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Runtime Broker 131795770645378207 0x7ffaab750000 876544 C:\Windows\System32\Windows.Media.Import.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation Windows Photo Import API (WinRT/COM) 131795770645378207 0x7ffaac6e0000 13156352 C:\Windows\System32\ieframe.dll 11.00.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Браузер 131795780843802542 0x7ffaad3f0000 1826816 C:\Windows\System32\Wpc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека параметров родительского контроля 131795786292112107 0x7ffab08d0000 593920 C:\Windows\System32\LockAppBroker.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL брокера приложения "Блокировка" Windows 131795786164057245 0x7ffab0b10000 798720 C:\Windows\System32\mssvp.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Платформа Vista MSSearch 131795770645378207 0x7ffab33d0000 258048 C:\Windows\System32\MLANG.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL многоязыковой поддержки 131795770645378207 0x7ffab4b90000 655360 C:\Windows\System32\StructuredQuery.dll 7.0.14393.2068 (rs1_release.180209-1727) Microsoft Corporation Structured Query 131795770645378207 0x7ffab7780000 2576384 C:\Windows\system32\mssrch.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Встроенный поиск (Майкрософт) 131795770645378207 0x7ffab7a00000 3424256 C:\Windows\system32\TQUERY.DLL 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Запросы Microsoft Tripoli 131795770645378207 0x7ffab7d80000 753664 C:\Windows\System32\RASAPI32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API удаленного доступа 131795770645378207 0x7ffab8190000 9191424 C:\Windows\system32\twinui.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation TWINUI 131795780489291214 0x7ffab8da0000 1675264 C:\Windows\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.14393.1715_none_aec701fbddd850fa\GdiPlus.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Microsoft GDI+ 131795770645378207 0x7ffab92e0000 827392 C:\Windows\system32\Windows.Storage.Search.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows.Storage.Search 131795786088780638 0x7ffab93b0000 897024 C:\Windows\System32\TokenBroker.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Token Broker 131795770645378207 0x7ffab9490000 860160 C:\Windows\System32\ntshrui.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширения оболочки, обеспечивающие общий доступ 131795770645378207 0x7ffab9a40000 299008 C:\Windows\System32\RasMediaManager.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Ras Media Manager DLL 131795770645378207 0x7ffaba950000 188416 C:\Windows\System32\EthernetMediaManager.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Ethernet Media Manager DLL 131795770645378207 0x7ffabaa50000 339968 C:\Windows\System32\NetworkUXBroker.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation NetworkUXBroker DLL 131795770645378207 0x7ffabaab0000 94208 C:\Windows\SYSTEM32\profext.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation profext 131795786148630640 0x7ffabaad0000 352256 C:\Windows\System32\deviceaccess.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Device Broker And Policy COM Server 131795770645378207 0x7ffabae40000 110592 C:\Windows\SYSTEM32\capauthz.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API авторизации возможностей 131795770645378207 0x7ffabaf70000 270336 C:\Windows\System32\edputil.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служебная программа EDP 131795770645378207 0x7ffabb2b0000 1089536 C:\Windows\system32\SettingSyncCore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Setting Synchronization Core 131795770645378207 0x7ffabba80000 995328 C:\Windows\System32\twinui.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation TWINUI.APPCORE 131795786089047958 0x7ffabbd10000 65536 C:\Windows\System32\tokenbinding.dll 10.0.14393.1593 (rs1_release.170731-1934) Microsoft Corporation Token Binding Protocol 131795770645378207 0x7ffabc0b0000 65536 C:\Windows\System32\LINKINFO.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Volume Tracking 131795780613006289 0x7ffabc510000 90112 C:\Windows\System32\execmodelproxy.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ExecModelProxy 131795770645378207 0x7ffabc530000 241664 C:\Windows\System32\Windows.Networking.HostName.dll 10.0.14393.953 (rs1_release_inmarket.170303-1614) Microsoft Corporation Windows.Networking.HostName DLL 131795780733496994 0x7ffabc6b0000 1114112 C:\Windows\System32\AppContracts.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Сервер API Windows AppContracts 131795770645378207 0x7ffabc880000 73728 C:\Windows\System32\cscapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Offline Files Win32 API 131795780611542837 0x7ffabc920000 270336 C:\Windows\System32\ExecModelClient.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation ExecModelClient 131795786306767518 0x7ffabcef0000 102400 C:\Windows\System32\Windows.Shell.ServiceHostBuilder.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows.Shell.ServiceHostBuilder 131795770645378207 0x7ffabcf30000 110592 C:\Windows\System32\MPR.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека маршрутизации для нескольких служб доступа 131795786143522657 0x7ffabd220000 479232 C:\Windows\System32\Windows.Devices.Enumeration.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows.Devices.Enumeration 131795770645378207 0x7ffabdd60000 425984 C:\Windows\System32\AppXDeploymentClient.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL-библиотека клиента развертывания AppX 131795770645378207 0x7ffabe070000 610304 C:\Windows\System32\efswrt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Storage Protection Windows Runtime DLL 131795786165227211 0x7ffabe130000 126976 C:\Windows\System32\mapi32.dll 1.0.2536.0 (rs1_release.160715-1616) Microsoft Corporation Расширенный MAPI 1.0 для Windows NT 131795770645378207 0x7ffabe4d0000 286720 C:\Windows\System32\MSWB7.dll 10.0.14393.1737 (rs1_release_inmarket.170914-1249) Microsoft Corporation MSWB7 DLL 131795786089826857 0x7ffabe850000 155648 C:\Windows\System32\IDStore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Identity Store 131795770645378207 0x7ffabe880000 94208 C:\Windows\System32\FeClient.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT File Encryption Client Interfaces 131795770645378207 0x7ffabe8c0000 454656 C:\Windows\system32\windows.cortana.Desktop.dll 10.0.14393.953 (rs1_release_inmarket.170303-1614) Microsoft Corporation Windows.Cortana.Desktop 131795786151786571 0x7ffabf030000 98304 C:\Windows\System32\LocationFrameworkInternalPS.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Geolocation Framework Internal PS 131795770645378207 0x7ffabf330000 2457600 C:\Windows\System32\msxml6.dll 6.30.14393.2156 Microsoft Corporation MSXML 6.0 131795770645378207 0x7ffabf5d0000 2924544 C:\Windows\System32\WININET.dll 11.00.14393.447 (rs1_release_inmarket.161102-0100) Microsoft Corporation Расширения Интернета для Win32 131795780443980999 0x7ffabf8a0000 122880 C:\Windows\System32\Windows.Cortana.ProxyStub.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows.Cortana.ProxyStub 131795770645378207 0x7ffabf8c0000 802816 C:\Windows\system32\Windows.Internal.Shell.Broker.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation Windows Shell Broker 131795770645378207 0x7ffabf9c0000 200704 C:\Windows\system32\windows.cortana.onecore.dll 10.0.14393.953 (rs1_release_inmarket.170303-1614) Microsoft Corporation Windows.Cortana.OneCore 131795770645378207 0x7ffabfb00000 626688 C:\Windows\System32\ContentDeliveryManager.Utilities.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation ContentDeliveryManager.Utilities 131795786445101159 0x7ffabfbe0000 1011712 C:\Windows\System32\Windows.Security.Authentication.OnlineId.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation Windows Runtime OnlineId Authentication DLL 131795770645378207 0x7ffabff10000 155648 C:\Windows\System32\srvcli.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Server Service Client DLL 131795770645378207 0x7ffac05f0000 94208 C:\Windows\System32\wwapi.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation WWAN API 131795770645378207 0x7ffac0910000 724992 C:\Windows\System32\Windows.Networking.Connectivity.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Networking Connectivity Runtime DLL 131795770645378207 0x7ffac09d0000 884736 C:\Windows\System32\wpnapps.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Приложения для push-уведомлений Windows 131795770645378207 0x7ffac0bf0000 3559424 C:\Windows\System32\ActXPrxy.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation ActiveX Interface Marshaling Library 131795779561161209 0x7ffac1470000 704512 C:\Windows\System32\ieproxy.dll 11.00.14393.2007 (rs1_release.171231-1800) Microsoft Corporation IE ActiveX Interface Marshaling Library 131795786075081206 0x7ffac15d0000 172032 C:\Windows\System32\Windows.ApplicationModel.Core.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation Windows Application Model Core API 131795770645378207 0x7ffac1c40000 94208 C:\Windows\System32\SystemSettings.DataModel.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SystemSettings.Datamodel private API 131795770645378207 0x7ffac20d0000 110592 C:\Windows\System32\RMCLIENT.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Resource Manager Client 131795770645378207 0x7ffac23c0000 331776 C:\Windows\System32\OneCoreCommonProxyStub.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation OneCore Common Proxy Stub 131795770645378207 0x7ffac2700000 98304 C:\Windows\System32\NETAPI32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API DLL 131795770645378207 0x7ffac2960000 143360 C:\Windows\system32\mssprxy.dll 7.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation Microsoft Search Proxy 131795770645378207 0x7ffac2a20000 81920 C:\Windows\System32\rtutils.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Routing Utilities 131795770645378207 0x7ffac2b80000 40960 C:\Windows\System32\VERSION.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Version Checking and File Installation Libraries 131795770645378207 0x7ffac34e0000 1843200 C:\Windows\System32\urlmon.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширения OLE32 для Win32 131795780447369522 0x7ffac37b0000 106496 C:\Windows\System32\ShellCommonCommonProxyStub.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ShellCommon Common Proxy Stub 131795770645378207 0x7ffac3840000 3088384 C:\Windows\system32\ESENT.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширяемая подсистема хранения данных ESE для Microsoft(R) Windows(R) 131795770645378207 0x7ffac3cb0000 2772992 C:\Windows\System32\iertutil.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служебная программа времени выполнения для Internet Explorer 131795770645378207 0x7ffac4000000 274432 C:\Windows\system32\policymanager.dll 10.0.14393.2035 (rs1_release_inmarket.180110-1910) Microsoft Corporation Policy Manager DLL 131795770645378207 0x7ffac42a0000 659456 C:\Windows\System32\StateRepository.Core.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation StateRepository Core 131795770645378207 0x7ffac4450000 86016 C:\Windows\SYSTEM32\usermgrcli.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation UserMgr API DLL 131795770645378207 0x7ffac46d0000 4161536 C:\Windows\System32\Windows.StateRepository.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Сервер Windows StateRepository API Server 131795771234179313 0x7ffac4b70000 106496 C:\Windows\System32\ShellCommonCommonProxyStub.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ShellCommon Common Proxy Stub 131795770645378207 0x7ffac4b90000 774144 C:\Windows\System32\StoreAgent.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation StoreAgent 131795780489961900 0x7ffac4df0000 462848 C:\Windows\System32\provsvc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Домашняя группа Windows 131795770645378207 0x7ffac4f60000 143360 C:\Windows\System32\wcmapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Connection Manager Client API 131795780846908833 0x7ffac4fd0000 618496 C:\Windows\System32\wlidprov.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft® Account Provider 131795770645378207 0x7ffac5630000 339968 C:\Windows\System32\thumbcache.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Кэш эскизов Майкрософт 131795770645378207 0x7ffac5c50000 131072 C:\Windows\System32\rasman.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Remote Access Connection Manager 131795770645378207 0x7ffac5ca0000 200704 C:\Windows\System32\AppExtension.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API AppExtension 131795770645378207 0x7ffac60e0000 221184 C:\Windows\System32\XmlLite.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft XmlLite Library 131795786144114651 0x7ffac6620000 192512 C:\Windows\System32\biwinrt.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation Windows Background Broker Infrastructure 131795786145514308 0x7ffac6990000 69632 C:\Windows\System32\deviceassociation.dll 10.0.14393.82 (rs1_release.160805-1735) Microsoft Corporation Device Association Client DLL 131795770645378207 0x7ffac69c0000 839680 C:\Windows\System32\WINHTTP.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Службы HTTP Windows 131795770645378207 0x7ffac6a90000 49152 C:\Windows\System32\LocationFrameworkPS.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Geolocation Framework PS 131795786287854312 0x7ffac6ac0000 835584 C:\Windows\System32\Windows.UI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Runtime UI Foundation DLL 131795770645378207 0x7ffac6ba0000 49152 C:\Windows\System32\Secur32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Security Support Provider Interface 131795770645378207 0x7ffac6c40000 2596864 C:\Windows\WinSxS\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.14393.953_none_42151e83c686086b\comctl32.dll 6.10 (rs1_release_inmarket.170303-1614) Microsoft Corporation Библиотека элементов управления взаимодействия с пользователем 131795770645378207 0x7ffac6ec0000 36864 C:\Windows\system32\IconCodecService.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Converts a PNG part of the icon to a legacy bmp icon 131795770645378207 0x7ffac7580000 1077248 C:\Windows\SYSTEM32\mrmcorer.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Windows MRM 131795770645378207 0x7ffac76a0000 159744 C:\Windows\System32\sppc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Software Licensing Client DLL 131795770645378207 0x7ffac7720000 1601536 C:\Windows\System32\OneCoreUAPCommonProxyStub.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation OneCoreUAP Common Proxy Stub 131795786448623381 0x7ffac79c0000 57344 C:\Windows\System32\npmproxy.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Network List Manager Proxy 131795770645378207 0x7ffac7aa0000 401408 C:\Windows\SYSTEM32\wlanapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows WLAN AutoConfig Client Side API DLL 131795770645378207 0x7ffac7d00000 32768 C:\Windows\SYSTEM32\familysafetyext.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation FamilySafety ChildAccount Extensions 131795770645378207 0x7ffac90b0000 90112 C:\Windows\System32\wkscli.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Workstation Service Client DLL 131795770645378207 0x7ffac9290000 40960 C:\Windows\System32\DSROLE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DS Setup Client DLL 131795770645378207 0x7ffac92e0000 1269760 C:\Windows\System32\WinTypes.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL основных типов Windows 131795780849625720 0x7ffac9f10000 221184 C:\Windows\System32\netprofm.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Network List Manager 131795770645378207 0x7ffac9f50000 1736704 C:\Windows\system32\windowscodecs.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Microsoft Windows Codecs Library 131795770645378207 0x7ffaca340000 1593344 C:\Windows\system32\PROPSYS.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Система страниц свойств (Майкрософт) 131795770645378207 0x7ffaca4e0000 77824 C:\Windows\SYSTEM32\wtsapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Remote Desktop Session Host Server SDK APIs 131795770645378207 0x7ffaca570000 421888 C:\Windows\System32\Bcp47Langs.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation BCP47 Language Classes 131795770645378207 0x7ffaca5e0000 155648 C:\Windows\system32\dwmapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Интерфейс API диспетчера окон рабочего стола (Майкрософт) 131795786090201282 0x7ffaca610000 143360 C:\Windows\System32\samlib.dll 10.0.14393.82 (rs1_release.160805-1735) Microsoft Corporation SAM Library DLL 131795780611842861 0x7ffaca640000 770048 C:\Windows\System32\CoreMessaging.dll 10.0.14393.0 Microsoft Corporation Microsoft CoreMessaging Dll 131795770645378207 0x7ffacadf0000 499712 C:\Windows\System32\apphelp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиентская библиотека совместимости приложений 131795770645378207 0x7ffacaf00000 610304 C:\Windows\system32\uxtheme.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека тем UxTheme (Microsoft) 131795770645378207 0x7ffacb140000 593920 C:\Windows\system32\msvcp110_win.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Microsoft® STL110 C++ Runtime Library 131795770645378207 0x7ffacb1e0000 1163264 C:\Windows\System32\twinapi.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation twinapi.appcore 131795770645378207 0x7ffacb300000 364544 C:\Windows\system32\VEEventDispatcher.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Visual Element Event dispatcher 131795770645378207 0x7ffacb3f0000 163840 C:\Windows\System32\DEVOBJ.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Device Information Set DLL 131795770645378207 0x7ffacb420000 204800 C:\Windows\SYSTEM32\ntmarta.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик Windows NT MARTA 131795770645378207 0x7ffacbd30000 229376 C:\Windows\System32\IPHLPAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API вспомогательного приложения IP 131795770645378207 0x7ffacbe20000 53248 C:\Windows\System32\netutils.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API Helpers DLL 131795770645378207 0x7ffacbe40000 126976 C:\Windows\system32\USERENV.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Userenv 131795770645378207 0x7ffacc150000 94208 C:\Windows\System32\CRYPTSP.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Cryptographic Service Provider API 131795770645378207 0x7ffacc350000 180224 C:\Windows\System32\SspiCli.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Security Support Provider Interface 131795770645378207 0x7ffacc520000 622592 C:\Windows\SYSTEM32\sxs.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Fusion 2.5 131795770645378207 0x7ffacc5c0000 352256 C:\Windows\SYSTEM32\WINSTA.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Winstation Library 131795770645378207 0x7ffacc620000 176128 C:\Windows\System32\bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795770645378207 0x7ffacc6e0000 61440 C:\Windows\System32\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795770645378207 0x7ffacc6f0000 311296 C:\Windows\System32\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795770645378207 0x7ffacc740000 81920 C:\Windows\System32\profapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Profile Basic API 131795770645378207 0x7ffacc770000 1572864 C:\Windows\System32\gdi32full.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation GDI Client DLL 131795770645378207 0x7ffacc8f0000 1003520 C:\Windows\System32\ucrtbase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645378207 0x7ffacc9f0000 434176 C:\Windows\System32\bcryptPrimitives.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Cryptographic Primitives Library 131795770645378207 0x7ffacca60000 122880 C:\Windows\System32\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795770645378207 0x7ffaccae0000 692224 C:\Windows\System32\shcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795770645378207 0x7ffaccb90000 7180288 C:\Windows\System32\windows.storage.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API хранения Microsoft WinRT 131795770645378207 0x7ffacd270000 2215936 C:\Windows\System32\KERNELBASE.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645378207 0x7ffacd710000 638976 C:\Windows\System32\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645378207 0x7ffacd7b0000 270336 C:\Windows\System32\cfgmgr32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Configuration Manager DLL 131795770645378207 0x7ffacd810000 22056960 C:\Windows\System32\SHELL32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Общая библиотека оболочки Windows 131795770645378207 0x7ffaced20000 782336 C:\Windows\System32\OLEAUT32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795770645378207 0x7ffacede0000 450560 C:\Windows\System32\coml2.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft COM for Windows 131795770645378207 0x7ffacee50000 1183744 C:\Windows\System32\RPCRT4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795770645378207 0x7ffacef80000 32768 C:\Windows\System32\NSI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation NSI User-mode interface DLL 131795770645378207 0x7ffacef90000 647168 C:\Windows\System32\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795770645378207 0x7ffacf030000 651264 C:\Windows\System32\clbcatq.dll 2001.12.10941.16384 (rs1_release.160715-1616) Microsoft Corporation COM+ Configuration Catalog 131795770645378207 0x7ffacf0d0000 704512 C:\Windows\System32\KERNEL32.DLL 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645378207 0x7ffacf1e0000 1417216 C:\Windows\System32\MSCTF.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Серверная библиотека MSCTF 131795770645378207 0x7ffacf770000 212992 C:\Windows\System32\GDI32.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation GDI Client DLL 131795770645378207 0x7ffacf820000 434176 C:\Windows\System32\WS2_32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation 32-разрядная библиотека Windows Socket 2.0 131795770645378207 0x7ffacf890000 188416 C:\Windows\System32\IMM32.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Multi-User Windows IMM32 API Client DLL 131795770645378207 0x7ffacf8c0000 1462272 C:\Windows\System32\USER32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795770645378207 0x7ffacfb30000 2916352 C:\Windows\System32\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795770645378207 0x7ffacfe20000 663552 C:\Windows\System32\advapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795770645378207 0x7ffad0070000 1277952 C:\Windows\System32\ole32.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft OLE для Windows 131795770645378207 0x7ffad01b0000 335872 C:\Windows\System32\shlwapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека небольших программ оболочки 131795770645378207 0x7ffad0210000 364544 C:\Windows\System32\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795770645378207 0x7ffad0270000 1908736 C:\Windows\SYSTEM32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 39 3164 664 6 00000000:0031f1da 131765778119045372 0 0 1 Обязательная метка\Низкий обязательный уровень WIN-0UOTFKKVN1S\User ShellExperienceHost.exe C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\ShellExperienceHost.exe "C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\ShellExperienceHost.exe" -ServerName:App.AppXtk181tbxbce2qsex02s8tw7hfxa9xb3t.mca Microsoft Corporation 10.0.14393.2125 (rs1_release.180301-2139) Windows Shell Experience Host 131795770645379346 0x7ff697570000 1662976 C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\ShellExperienceHost.exe 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation Windows Shell Experience Host 131795770645379346 0x7ffa9f150000 6311936 C:\Windows\System32\Windows.Media.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Media Runtime DLL 131795770645379346 0x7ffa9f760000 3796992 C:\Windows\System32\MFMediaEngine.dll 10.0.14393.351 (rs1_release_inmarket.161014-1755) Microsoft Corporation Media Foundation Media Engine DLL 131795770645379346 0x7ffaabad0000 1871872 C:\Windows\System32\mfsrcsnk.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Media Foundation Source and Sink DLL 131795770645379346 0x7ffaafe70000 4239360 C:\Windows\System32\mfcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Media Foundation Core DLL 131795770645379346 0x7ffab0be0000 1421312 C:\Windows\ShellExperiences\NetworkUX.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Network Experience 131795770645379346 0x7ffab4af0000 606208 C:\Windows\SYSTEM32\AUDIOSES.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Сеанс обработки звука 131795770645379346 0x7ffab5b40000 2527232 C:\Windows\SYSTEM32\dwrite.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Службы Microsoft DirectX Typography 131795770645379346 0x7ffab6710000 17231872 C:\Windows\System32\Windows.UI.Xaml.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows.UI.Xaml dll 131795770645379346 0x7ffab9eb0000 2899968 C:\Windows\ShellExperiences\Windows.UI.ActionCenter.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation ActionCenter Experience 131795770645379346 0x7ffaba180000 7880704 C:\Windows\ShellExperiences\StartUI.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Start UI 131795770645379346 0x7ffabaa50000 339968 C:\Windows\System32\NetworkUXBroker.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation NetworkUXBroker DLL 131795770645379346 0x7ffabab30000 303104 C:\Windows\System32\NotificationObjFactory.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Notifications Object Factory 131795770645379346 0x7ffabacc0000 1380352 C:\Windows\System32\SharedStartModel.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Shared Start Model InProc Server 131795770645379346 0x7ffabaf70000 270336 C:\Windows\SYSTEM32\edputil.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служебная программа EDP 131795770645379346 0x7ffabb3c0000 450560 C:\Windows\SYSTEM32\TextInputFramework.dll 10.0.14393.2189 (rs1_release.180329-1711) Microsoft Corporation "TextInputFramework.DYNLINK" 131795770645379346 0x7ffabb490000 512000 C:\Windows\system32\twinapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation twinapi 131795770645379346 0x7ffabbb80000 61440 C:\Windows\SYSTEM32\dsclient.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Data Sharing Service Client DLL 131795770645379346 0x7ffabbb90000 581632 C:\Windows\System32\Windows.System.Launcher.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows.System.Launcher 131795770645379346 0x7ffabbd00000 36864 C:\Windows\SYSTEM32\WpPortingLibrary.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation <d> DLL 131795770645379346 0x7ffabc5c0000 319488 C:\Windows\SYSTEM32\MFSENSORGROUP.dll 10.0.14393.447 (rs1_release_inmarket.161102-0100) Microsoft Corporation Media Foundation Sensor Group DLL 131795770645379346 0x7ffabcef0000 102400 C:\Windows\System32\Windows.Shell.ServiceHostBuilder.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows.Shell.ServiceHostBuilder 131795770645379346 0x7ffabd420000 487424 C:\Windows\System32\RTMediaFrame.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Runtime MediaFrame DLL 131795770645379346 0x7ffabd4a0000 1613824 C:\Windows\System32\Windows.Globalization.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Globalization 131795770645379346 0x7ffabe410000 339968 C:\Windows\SYSTEM32\globcollationhost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation GlobCollationHost 131795770645379346 0x7ffabe6e0000 561152 C:\Windows\system32\directmanipulation.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Direct Manipulation Component 131795770645379346 0x7ffabeac0000 335872 C:\Windows\System32\Windows.Storage.ApplicationData.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Application Data API Server 131795770645379346 0x7ffabf330000 2457600 C:\Windows\System32\msxml6.dll 6.30.14393.2156 Microsoft Corporation MSXML 6.0 131795780594734370 0x7ffabfb00000 626688 C:\Windows\System32\ContentDeliveryManager.Utilities.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation ContentDeliveryManager.Utilities 131795770645379346 0x7ffabfce0000 90112 C:\Windows\System32\Windows.Globalization.Fontgroups.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Fonts Mapping API 131795770645379346 0x7ffabfd00000 356352 C:\Windows\System32\Windows.Graphics.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation WinRT Windows Graphics DLL 131795770645379346 0x7ffabfd80000 86016 C:\Windows\System32\threadpoolwinrt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows WinRT Threadpool 131795770645379346 0x7ffac0080000 249856 C:\Windows\System32\resampledmo.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Media Resampler 131795770645379346 0x7ffac00c0000 282624 C:\Windows\SYSTEM32\windows.ui.core.textinput.dll 10.0.14393.2189 (rs1_release.180329-1711) Microsoft Corporation Windows.UI.Core.TextInput dll 131795770645379346 0x7ffac0110000 290816 C:\Windows\SYSTEM32\QuickActionsDataModel.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation QuickActionsDataModel 131795770645379346 0x7ffac0160000 491520 C:\Windows\ShellExperiences\QuickActions.dll 131795770645379346 0x7ffac01e0000 397312 C:\Windows\SYSTEM32\wincorlib.DLL 10.0.14393.576 (rs1_release_inmarket.161208-2252) Microsoft Corporation Microsoft Windows ® WinRT core library 131795770645379346 0x7ffac0470000 1478656 C:\Windows\SYSTEM32\MFPlat.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Media Foundation Platform DLL 131795770645379346 0x7ffac0bf0000 3559424 C:\Windows\System32\ActXPrxy.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation ActiveX Interface Marshaling Library 131795770645379346 0x7ffac1c40000 94208 C:\Windows\System32\SystemSettings.DataModel.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SystemSettings.Datamodel private API 131795770645379346 0x7ffac1e50000 188416 C:\Windows\SYSTEM32\RTWorkQ.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL для WorkQueue реального времени 131795770645379346 0x7ffac20d0000 110592 C:\Windows\System32\rmclient.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Resource Manager Client 131795770645379346 0x7ffac23c0000 331776 C:\Windows\System32\OneCoreCommonProxyStub.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation OneCore Common Proxy Stub 131795770645379346 0x7ffac2990000 385024 C:\Windows\SYSTEM32\NInput.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Pen and Touch Input Component 131795770645379346 0x7ffac34e0000 1843200 C:\Windows\SYSTEM32\urlmon.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширения OLE32 для Win32 131795770645379346 0x7ffac3cb0000 2772992 C:\Windows\SYSTEM32\iertutil.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служебная программа времени выполнения для Internet Explorer 131795770645379346 0x7ffac4000000 274432 C:\Windows\SYSTEM32\policymanager.dll 10.0.14393.2035 (rs1_release_inmarket.180110-1910) Microsoft Corporation Policy Manager DLL 131795770645379346 0x7ffac40f0000 40960 C:\Windows\SYSTEM32\msdmo.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DMO Runtime 131795770645379346 0x7ffac42a0000 659456 C:\Windows\SYSTEM32\StateRepository.Core.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation StateRepository Core 131795770645379346 0x7ffac46d0000 4161536 C:\Windows\System32\Windows.StateRepository.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Сервер Windows StateRepository API Server 131795770645379346 0x7ffac4eb0000 147456 C:\Windows\ShellExperiences\Windows.UI.Shell.SharedUtilities.dll 131795770645379346 0x7ffac5350000 1765376 C:\Windows\System32\Windows.UI.Immersive.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation WINDOWS.UI.IMMERSIVE 131795770645379346 0x7ffac5500000 438272 C:\Windows\SYSTEM32\PhotoMetadataHandler.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Photo Metadata Handler 131795770645379346 0x7ffac5b20000 49152 C:\Windows\SYSTEM32\CompPkgSup.DLL 10.0.14393.969 (rs1_release_inmarket.170315-1735) Microsoft Corporation Component Package Support DLL 131795770645379346 0x7ffac5ce0000 1744896 C:\Windows\SYSTEM32\uiautomationcore.dll 7.2.14393.0 (rs1_release.160715-1616) Microsoft Corporation Основные автоматические компоненты Microsoft UI 131795770645379346 0x7ffac5e90000 380928 C:\Windows\System32\Windows.Media.MediaControl.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL сервера MediaControl среды выполнения Windows 131795770645379346 0x7ffac60e0000 221184 C:\Windows\SYSTEM32\XmlLite.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft XmlLite Library 131795770645379346 0x7ffac6ac0000 835584 C:\Windows\System32\Windows.UI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Runtime UI Foundation DLL 131795770645379346 0x7ffac6bd0000 413696 C:\Windows\SYSTEM32\OLEACC.dll 7.2.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Active Accessibility Core Component 131795770645379346 0x7ffac6f50000 5632000 C:\Windows\SYSTEM32\d2d1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека Microsoft D2D 131795770645379346 0x7ffac7580000 1077248 C:\Windows\SYSTEM32\MrmCoreR.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Windows MRM 131795770645379346 0x7ffac76a0000 159744 C:\Windows\SYSTEM32\sppc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Software Licensing Client DLL 131795770645379346 0x7ffac7720000 1601536 C:\Windows\System32\OneCoreUAPCommonProxyStub.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation OneCoreUAP Common Proxy Stub 131795770645379346 0x7ffac7990000 155648 C:\Windows\SYSTEM32\SLC.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Software Licensing Client DLL 131795770645379346 0x7ffac7e30000 40960 C:\Windows\SYSTEM32\fontgroupsoverride.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation fontgroupsoverride.dll 131795770645379346 0x7ffac7fc0000 2674688 C:\Windows\SYSTEM32\d3d10warp.dll 10.0.14393.576 (rs1_release_inmarket.161208-2252) Microsoft Corporation Direct3D 10 Rasterizer 131795770645379346 0x7ffac84e0000 53248 C:\Windows\System32\NotificationControllerPS.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation NotificationController Proxy Stub 131795770645379346 0x7ffac84f0000 299008 C:\Windows\system32\DataExchange.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation Data exchange 131795770645379346 0x7ffac88a0000 2842624 C:\Windows\SYSTEM32\d3d11.dll 10.0.14393.953 (rs1_release_inmarket.170303-1614) Microsoft Corporation Direct3D 11 Runtime 131795770645379346 0x7ffac8f90000 45056 C:\Windows\SYSTEM32\AVRT.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Среда выполнения мультимедиа в реальном времени 131795770645379346 0x7ffac8fa0000 253952 C:\Windows\SYSTEM32\logoncli.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Net Logon Client DLL 131795770645379346 0x7ffac92e0000 1269760 C:\Windows\System32\WinTypes.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL основных типов Windows 131795770645379346 0x7ffac9480000 462848 C:\Windows\System32\MMDevApi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation MMDevice API 131795770645379346 0x7ffac9500000 2682880 C:\Windows\system32\CoreUIComponents.dll 131795770645379346 0x7ffac9f50000 1736704 C:\Windows\system32\windowscodecs.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Microsoft Windows Codecs Library 131795770645379346 0x7ffaca340000 1593344 C:\Windows\SYSTEM32\PROPSYS.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Система страниц свойств (Майкрософт) 131795770645379346 0x7ffaca550000 36864 C:\Windows\SYSTEM32\ksuser.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User CSA Library 131795770645379346 0x7ffaca570000 421888 C:\Windows\SYSTEM32\Bcp47Langs.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation BCP47 Language Classes 131795770645379346 0x7ffaca5e0000 155648 C:\Windows\SYSTEM32\dwmapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Интерфейс API диспетчера окон рабочего стола (Майкрософт) 131795770645379346 0x7ffaca640000 770048 C:\Windows\SYSTEM32\CoreMessaging.dll 10.0.14393.0 Microsoft Corporation Microsoft CoreMessaging Dll 131795770645379346 0x7ffaca770000 1380352 C:\Windows\SYSTEM32\dcomp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft DirectComposition Library 131795770645379346 0x7ffacab40000 176128 C:\Windows\SYSTEM32\winmmbase.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base Multimedia Extension API DLL 131795770645379346 0x7ffacaf00000 610304 C:\Windows\system32\uxtheme.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека тем UxTheme (Microsoft) 131795770645379346 0x7ffacb140000 593920 C:\Windows\SYSTEM32\msvcp110_win.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Microsoft® STL110 C++ Runtime Library 131795770645379346 0x7ffacb1e0000 1163264 C:\Windows\System32\twinapi.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation twinapi.appcore 131795770645379346 0x7ffacb300000 364544 C:\Windows\SYSTEM32\VEEventDispatcher.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Visual Element Event dispatcher 131795770645379346 0x7ffacb3f0000 163840 C:\Windows\SYSTEM32\DEVOBJ.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Device Information Set DLL 131795770645379346 0x7ffacb780000 651264 C:\Windows\SYSTEM32\dxgi.dll 10.0.14393.953 (rs1_release_inmarket.170303-1614) Microsoft Corporation DirectX Graphics Infrastructure 131795770645379346 0x7ffacbe40000 126976 C:\Windows\SYSTEM32\USERENV.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Userenv 131795770645379346 0x7ffacc170000 45056 C:\Windows\SYSTEM32\CRYPTBASE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base cryptographic API DLL 131795770645379346 0x7ffacc350000 180224 C:\Windows\SYSTEM32\SspiCli.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Security Support Provider Interface 131795770645379346 0x7ffacc5c0000 352256 C:\Windows\SYSTEM32\winsta.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Winstation Library 131795770645379346 0x7ffacc620000 176128 C:\Windows\SYSTEM32\bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795770645379346 0x7ffacc6e0000 61440 C:\Windows\System32\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795770645379346 0x7ffacc6f0000 311296 C:\Windows\System32\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795770645379346 0x7ffacc740000 81920 C:\Windows\System32\profapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Profile Basic API 131795770645379346 0x7ffacc760000 65536 C:\Windows\System32\MSASN1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ASN.1 Runtime APIs 131795770645379346 0x7ffacc8f0000 1003520 C:\Windows\System32\ucrtbase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645379346 0x7ffacc9f0000 434176 C:\Windows\System32\bcryptPrimitives.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Cryptographic Primitives Library 131795770645379346 0x7ffacca60000 122880 C:\Windows\System32\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795770645379346 0x7ffaccae0000 692224 C:\Windows\System32\shcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795770645379346 0x7ffaccb90000 7180288 C:\Windows\System32\windows.storage.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API хранения Microsoft WinRT 131795770645379346 0x7ffacd270000 2215936 C:\Windows\System32\KERNELBASE.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645379346 0x7ffacd490000 1871872 C:\Windows\System32\CRYPT32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API32 криптографии 131795770645379346 0x7ffacd710000 638976 C:\Windows\System32\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645379346 0x7ffacd7b0000 270336 C:\Windows\System32\cfgmgr32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Configuration Manager DLL 131795770645379346 0x7ffacd810000 22056960 C:\Windows\System32\SHELL32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Общая библиотека оболочки Windows 131795770645379346 0x7ffaced20000 782336 C:\Windows\System32\OLEAUT32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795770645379346 0x7ffacee50000 1183744 C:\Windows\System32\RPCRT4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795770645379346 0x7ffacef90000 647168 C:\Windows\System32\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795770645379346 0x7ffacf0d0000 704512 C:\Windows\System32\KERNEL32.DLL 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645379346 0x7ffacf1e0000 1417216 C:\Windows\System32\msctf.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Серверная библиотека MSCTF 131795770645379346 0x7ffacf770000 212992 C:\Windows\System32\GDI32.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation GDI Client DLL 131795770645379346 0x7ffacf890000 188416 C:\Windows\System32\IMM32.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Multi-User Windows IMM32 API Client DLL 131795770645379346 0x7ffacf8c0000 1462272 C:\Windows\System32\user32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795770645379346 0x7ffacfb30000 2916352 C:\Windows\System32\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795770645379346 0x7ffacfe20000 663552 C:\Windows\System32\advapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795770645379346 0x7ffad0070000 1277952 C:\Windows\System32\ole32.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft OLE для Windows 131795770645379346 0x7ffad01b0000 335872 C:\Windows\System32\SHLWAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека небольших программ оболочки 131795770645379346 0x7ffad0210000 364544 C:\Windows\System32\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795770645379346 0x7ffad0270000 1908736 C:\Windows\SYSTEM32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 40 4856 3108 11 00000000:0031f1da 131765778391112136 0 0 1 Обязательная метка\Средний обязательный уровень WIN-0UOTFKKVN1S\User MSASCuiL.exe C:\Program Files\Windows Defender\MSASCuiL.exe "C:\Program Files\Windows Defender\MSASCuiL.exe" Microsoft Corporation 4.10.14393.1198 (rs1_release_sec.170427-1353) Windows Defender notification icon 131795770645379462 0x23622c70000 733184 C:\Program Files\Windows Defender\EppManifest.dll 4.10.14393.0 (rs1_release.160715-1616) Microsoft Corporation Модуль ресурсов настройки пользовательского интерфейса 131795770645379462 0x7ff63bef0000 651264 C:\Program Files\Windows Defender\MSASCuiL.exe 4.10.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Windows Defender notification icon 131795770645379462 0x7ffab8da0000 1675264 C:\Windows\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.14393.1715_none_aec701fbddd850fa\gdiplus.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Microsoft GDI+ 131795770645379462 0x7ffabf330000 2457600 C:\Windows\System32\msxml6.dll 6.30.14393.2156 Microsoft Corporation MSXML 6.0 131795770645379462 0x7ffac4560000 950272 C:\Program Files\Windows Defender\mpclient.dll 4.10.14393.1794 (rs1_release.171008-1615) Microsoft Corporation Client Interface 131795770645379462 0x7ffac4ea0000 36864 C:\Windows\SYSTEM32\atlthunk.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation atlthunk.dll 131795770645379462 0x7ffac9f50000 1736704 C:\Windows\SYSTEM32\WindowsCodecs.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Microsoft Windows Codecs Library 131795770645379462 0x7ffaca4e0000 77824 C:\Windows\SYSTEM32\WTSAPI32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Remote Desktop Session Host Server SDK APIs 131795770645379462 0x7ffaca5e0000 155648 C:\Windows\system32\dwmapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Интерфейс API диспетчера окон рабочего стола (Майкрософт) 131795770645379462 0x7ffacaf00000 610304 C:\Windows\system32\uxtheme.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека тем UxTheme (Microsoft) 131795770645379462 0x7ffacb6f0000 143360 C:\Windows\SYSTEM32\gpapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиентские функции API групповой политики 131795770645379462 0x7ffacbbb0000 208896 C:\Windows\system32\rsaenh.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Enhanced Cryptographic Provider 131795770645379462 0x7ffacbe40000 126976 C:\Windows\SYSTEM32\USERENV.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Userenv 131795770645379462 0x7ffacc150000 94208 C:\Windows\SYSTEM32\CRYPTSP.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Cryptographic Service Provider API 131795770645379462 0x7ffacc170000 45056 C:\Windows\SYSTEM32\CRYPTBASE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base cryptographic API DLL 131795770645379462 0x7ffacc620000 176128 C:\Windows\SYSTEM32\bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795770645379462 0x7ffacc6e0000 61440 C:\Windows\System32\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795770645379462 0x7ffacc6f0000 311296 C:\Windows\System32\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795770645379462 0x7ffacc740000 81920 C:\Windows\System32\profapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Profile Basic API 131795770645379462 0x7ffacc760000 65536 C:\Windows\System32\MSASN1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ASN.1 Runtime APIs 131795770645379462 0x7ffacc8f0000 1003520 C:\Windows\System32\ucrtbase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645379462 0x7ffacc9f0000 434176 C:\Windows\System32\bcryptPrimitives.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Cryptographic Primitives Library 131795770645379462 0x7ffacca60000 122880 C:\Windows\System32\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795770645379462 0x7ffacca80000 348160 C:\Windows\System32\WINTRUST.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation Microsoft Trust Verification APIs 131795770645379462 0x7ffaccae0000 692224 C:\Windows\System32\shcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795770645379462 0x7ffaccb90000 7180288 C:\Windows\System32\windows.storage.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API хранения Microsoft WinRT 131795770645379462 0x7ffacd270000 2215936 C:\Windows\System32\KERNELBASE.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645379462 0x7ffacd490000 1871872 C:\Windows\System32\CRYPT32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API32 криптографии 131795770645379462 0x7ffacd710000 638976 C:\Windows\System32\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645379462 0x7ffacd7b0000 270336 C:\Windows\System32\cfgmgr32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Configuration Manager DLL 131795770645379462 0x7ffacd810000 22056960 C:\Windows\System32\SHELL32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Общая библиотека оболочки Windows 131795770645379462 0x7ffaced20000 782336 C:\Windows\System32\OLEAUT32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795770645379462 0x7ffacee50000 1183744 C:\Windows\System32\RPCRT4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795770645379462 0x7ffacef90000 647168 C:\Windows\System32\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795770645379462 0x7ffacf030000 651264 C:\Windows\System32\clbcatq.dll 2001.12.10941.16384 (rs1_release.160715-1616) Microsoft Corporation COM+ Configuration Catalog 131795770645379462 0x7ffacf0d0000 704512 C:\Windows\System32\KERNEL32.DLL 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645379462 0x7ffacf1e0000 1417216 C:\Windows\System32\MSCTF.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Серверная библиотека MSCTF 131795770645379462 0x7ffacf770000 212992 C:\Windows\System32\GDI32.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation GDI Client DLL 131795770645379462 0x7ffacf890000 188416 C:\Windows\System32\IMM32.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Multi-User Windows IMM32 API Client DLL 131795770645379462 0x7ffacf8c0000 1462272 C:\Windows\System32\USER32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795770645379462 0x7ffacfb30000 2916352 C:\Windows\System32\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795770645379462 0x7ffacfe00000 114688 C:\Windows\System32\imagehlp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT Image Helper 131795770645379462 0x7ffacfe20000 663552 C:\Windows\System32\ADVAPI32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795770645379462 0x7ffad0070000 1277952 C:\Windows\System32\ole32.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft OLE для Windows 131795770645379462 0x7ffad01b0000 335872 C:\Windows\System32\SHLWAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека небольших программ оболочки 131795770645379462 0x7ffad0210000 364544 C:\Windows\System32\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795770645379462 0x7ffad0270000 1908736 C:\Windows\SYSTEM32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 41 4928 3108 11 00000000:0031f1da 131765778406250112 0 0 0 Обязательная метка\Средний обязательный уровень WIN-0UOTFKKVN1S\User uTorrent.exe C:\Users\User\AppData\Roaming\uTorrent\uTorrent.exe "C:\Users\User\AppData\Roaming\uTorrent\uTorrent.exe" /MINIMIZED BitTorrent Inc. 3.5.4.44498 µTorrent 131795770645379614 0x400000 5406720 C:\Users\User\AppData\Roaming\uTorrent\uTorrent.exe 3.5.4.44498 BitTorrent Inc. µTorrent 131795770645379614 0x5c020000 335872 C:\Windows\System32\wow64.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation Win32 Emulation on NT64 131795770645379614 0x5c080000 487424 C:\Windows\System32\wow64win.dll 10.0.14393.1884 (rs1_release.171101-1233) Microsoft Corporation Wow64 Console and Win32 API Logging 131795770645379614 0x5c100000 40960 C:\Windows\System32\wow64cpu.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation AMD64 Wow64 CPU 131795770645379614 0x60750000 1556480 C:\Program Files (x86)\360\Total Security\safemon\safemon.dll 8, 4, 0, 1420 Qihu 360 Software Co., Ltd. 360 Internet Security Internet Protection 131795770645379614 0x6c5c0000 1384448 C:\Windows\SysWOW64\UIAutomationCore.DLL 7.2.14393.0 (rs1_release.160715-1616) Microsoft Corporation Основные автоматические компоненты Microsoft UI 131795770645379614 0x6cda0000 528384 C:\Windows\SysWOW64\sxs.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Fusion 2.5 131795770645379614 0x6e140000 348160 C:\Windows\SysWOW64\upnp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API контрольной точки UPnP 131795770645379614 0x6e1a0000 98304 C:\Windows\SysWOW64\ATL.DLL 3.05.2284 Microsoft Corporation ATL Module for Windows XP (Unicode) 131795770645379614 0x6e1c0000 307200 C:\Windows\SysWOW64\hnetcfg.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Диспетчер конфигурации домашней сети 131795770645379614 0x6ef20000 65536 C:\Windows\SysWOW64\SSDPAPI.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation SSDP Client API DLL 131795770645379614 0x6fc70000 385024 C:\Windows\SysWOW64\FirewallAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API брандмауэра Windows 131795770645379614 0x6fd30000 139264 C:\Windows\SysWOW64\DEVOBJ.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Device Information Set DLL 131795770645379614 0x703d0000 2056192 C:\Windows\SysWOW64\DWrite.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Службы Microsoft DirectX Typography 131795770645379614 0x705e0000 344064 C:\Windows\SysWOW64\OLEACC.dll 7.2.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Active Accessibility Core Component 131795770645379614 0x70640000 1499136 C:\Windows\SysWOW64\WindowsCodecs.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Microsoft Windows Codecs Library 131795770645379614 0x707b0000 110592 C:\Windows\SysWOW64\ncryptsslp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft SChannel Provider 131795770645379614 0x70a40000 81920 C:\Windows\SysWOW64\NLAapi.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Network Location Awareness 2 131795770645379614 0x70a60000 90112 C:\Windows\SysWOW64\pnrpnsp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик пространства имен PNRP 131795770645379614 0x70a80000 409600 C:\Windows\SysWOW64\schannel.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик безопасности TLS/SSL 131795770645379614 0x70af0000 36864 C:\Windows\SysWOW64\npmproxy.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Network List Manager Proxy 131795770645379614 0x70b40000 69632 C:\Windows\SysWOW64\mskeyprotect.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик защиты ключей (Майкрософт) 131795770645379614 0x70b70000 163840 C:\Windows\SysWOW64\ntmarta.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик Windows NT MARTA 131795770645379614 0x70ba0000 188416 C:\Windows\SysWOW64\FWPolicyIOMgr.dll 10.0.14393.2189 (rs1_release.180329-1711) Microsoft Corporation FwPolicyIoMgr DLL 131795770645379614 0x70bd0000 147456 C:\Windows\SysWOW64\fwbase.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Firewall Base DLL 131795770645379614 0x70c00000 49152 C:\Windows\SysWOW64\winrnr.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation LDAP RnR Provider DLL 131795770645379614 0x70c10000 73728 C:\Windows\SysWOW64\napinsp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик оболочки совместимости для имен электронной почты 131795770645379614 0x70ca0000 45056 C:\Windows\SysWOW64\NETUTILS.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API Helpers DLL 131795770645379614 0x70cc0000 65536 C:\Windows\SysWOW64\ondemandconnroutehelper.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation On Demand Connctiond Route Helper 131795770645379614 0x70e60000 176128 C:\Windows\SysWOW64\NTASN1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft ASN.1 API 131795770645379614 0x71140000 77824 C:\Windows\SysWOW64\NETAPI32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API DLL 131795770645379614 0x71610000 77824 C:\Windows\SysWOW64\dhcpcsvc6.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиент DHCPv6 131795770645379614 0x725e0000 2273280 C:\Windows\SysWOW64\iertutil.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служебная программа времени выполнения для Internet Explorer 131795770645379614 0x728e0000 1372160 C:\Windows\SysWOW64\PROPSYS.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Система страниц свойств (Майкрософт) 131795770645379614 0x72b90000 126976 C:\Windows\SysWOW64\dwmapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Интерфейс API диспетчера окон рабочего стола (Майкрософт) 131795770645379614 0x73a40000 32768 C:\Windows\SysWOW64\WINNSI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Network Store Information RPC interface 131795770645379614 0x73a50000 299008 C:\Windows\SysWOW64\fwpuclnt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API пользовательского режима FWP/IPsec 131795770645379614 0x73aa0000 32768 C:\Windows\SysWOW64\DPAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Data Protection API 131795770645379614 0x73ab0000 32768 C:\Windows\SysWOW64\rasadhlp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Remote Access AutoDial Helper 131795770645379614 0x73ac0000 81920 C:\Windows\SysWOW64\dhcpcsvc.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служба DHCP-клиента 131795770645379614 0x73ae0000 40960 C:\Windows\SysWOW64\Secur32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Security Support Provider Interface 131795770645379614 0x73c50000 1478656 C:\Windows\WinSxS\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.14393.1715_none_f67438d2f2547a00\gdiplus.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Microsoft GDI+ 131795770645379614 0x73ee0000 61440 C:\Windows\SysWOW64\WTSAPI32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Remote Desktop Session Host Server SDK APIs 131795770645379614 0x73ef0000 24576 C:\Windows\SysWOW64\MSIMG32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation GDIEXT Client DLL 131795770645379614 0x73f00000 192512 C:\Windows\SysWOW64\IPHLPAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API вспомогательного приложения IP 131795770645379614 0x73f30000 512000 C:\Windows\SysWOW64\DNSAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Динамическая библиотека API DNS-клиента 131795770645379614 0x73fc0000 28672 C:\Windows\SysWOW64\wship6.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL помощника Winsock2 (TL/IPv6) 131795770645379614 0x73fd0000 28672 C:\Windows\SysWOW64\wshtcpip.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL помощника службы Winsock2 (TL/IPv4) 131795770645379614 0x73fe0000 32768 C:\Windows\SysWOW64\wshqos.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL помощника службы QoS Winsock2 131795770645379614 0x73ff0000 319488 C:\Windows\SysWOW64\mswsock.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширение поставщика службы API Microsoft Windows Sockets 2.0 131795770645379614 0x74040000 126976 C:\Windows\SysWOW64\gpapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиентские функции API групповой политики 131795770645379614 0x74060000 192512 C:\Windows\SysWOW64\rsaenh.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Enhanced Cryptographic Provider 131795770645379614 0x74110000 479232 C:\Windows\SysWOW64\uxtheme.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека тем UxTheme (Microsoft) 131795770645379614 0x74190000 110592 C:\Windows\SysWOW64\bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795770645379614 0x741b0000 77824 C:\Windows\SysWOW64\CRYPTSP.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Cryptographic Service Provider API 131795770645379614 0x74260000 2514944 C:\Windows\SysWOW64\WININET.dll 11.00.14393.447 (rs1_release_inmarket.161102-0100) Microsoft Corporation Расширения Интернета для Win32 131795770645379614 0x744d0000 2138112 C:\Windows\WinSxS\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.14393.953_none_89c2555adb023171\COMCTL32.dll 6.10 (rs1_release_inmarket.170303-1614) Microsoft Corporation Библиотека элементов управления взаимодействия с пользователем 131795770645379614 0x746e0000 32768 C:\Windows\SysWOW64\VERSION.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Version Checking and File Installation Libraries 131795770645379614 0x746f0000 106496 C:\Windows\SysWOW64\USERENV.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Userenv 131795770645379614 0x747d0000 40960 C:\Windows\SysWOW64\CRYPTBASE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base cryptographic API DLL 131795770645379614 0x747e0000 126976 C:\Windows\SysWOW64\SspiCli.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Security Support Provider Interface 131795770645379614 0x74800000 151552 C:\Windows\SysWOW64\IMM32.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Multi-User Windows IMM32 API Client DLL 131795770645379614 0x74910000 2170880 C:\Windows\SysWOW64\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795770645379614 0x74b30000 53248 C:\Windows\SysWOW64\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795770645379614 0x74b40000 102400 C:\Windows\SysWOW64\imagehlp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT Image Helper 131795770645379614 0x74b60000 790528 C:\Windows\SysWOW64\RPCRT4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795770645379614 0x74c30000 1417216 C:\Windows\SysWOW64\gdi32full.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation GDI Client DLL 131795770645379614 0x74d90000 24576 C:\Windows\SysWOW64\PSAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Process Status Helper 131795770645379614 0x74da0000 778240 C:\Windows\SysWOW64\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795770645379614 0x74e60000 557056 C:\Windows\SysWOW64\shcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795770645379614 0x74ef0000 540672 C:\Windows\SysWOW64\clbcatq.dll 2001.12.10941.16384 (rs1_release.160715-1616) Microsoft Corporation COM+ Configuration Catalog 131795770645379614 0x74f80000 278528 C:\Windows\SysWOW64\wintrust.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation Microsoft Trust Verification APIs 131795770645379614 0x74fd0000 405504 C:\Windows\SysWOW64\WS2_32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation 32-разрядная библиотека Windows Socket 2.0 131795770645379614 0x75040000 282624 C:\Windows\SysWOW64\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795770645379614 0x75090000 1265664 C:\Windows\SysWOW64\MSCTF.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Серверная библиотека MSCTF 131795770645379614 0x751d0000 57344 C:\Windows\SysWOW64\MSASN1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ASN.1 Runtime APIs 131795770645379614 0x751e0000 1708032 C:\Windows\SysWOW64\KERNELBASE.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645379614 0x75390000 266240 C:\Windows\SysWOW64\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795770645379614 0x753e0000 1560576 C:\Windows\SysWOW64\CRYPT32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API32 криптографии 131795770645379614 0x75560000 487424 C:\Windows\SysWOW64\ADVAPI32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795770645379614 0x756c0000 5693440 C:\Windows\SysWOW64\windows.storage.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API хранения Microsoft WinRT 131795770645379614 0x75c90000 286720 C:\Windows\SysWOW64\SHLWAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека небольших программ оболочки 131795770645379614 0x75ce0000 20811776 C:\Windows\SysWOW64\SHELL32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Общая библиотека оболочки Windows 131795770645379614 0x770c0000 4239360 C:\Windows\SysWOW64\SETUPAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Setup API 131795770645379614 0x774d0000 86016 C:\Windows\SysWOW64\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795770645379614 0x774f0000 61440 C:\Windows\SysWOW64\profapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Profile Basic API 131795770645379614 0x77560000 1437696 C:\Windows\SysWOW64\USER32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795770645379614 0x776c0000 368640 C:\Windows\SysWOW64\bcryptPrimitives.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation Windows Cryptographic Primitives Library 131795770645379614 0x77780000 503808 C:\Windows\SysWOW64\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645379614 0x77800000 606208 C:\Windows\SysWOW64\OLEAUT32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795770645379614 0x77ac0000 966656 C:\Windows\SysWOW64\ole32.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft OLE для Windows 131795770645379614 0x77bb0000 176128 C:\Windows\SysWOW64\GDI32.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation GDI Client DLL 131795770645379614 0x77be0000 937984 C:\Windows\SysWOW64\COMDLG32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека общих диалоговых окон 131795770645379614 0x77cd0000 221184 C:\Windows\SysWOW64\cfgmgr32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Configuration Manager DLL 131795770645379614 0x77d10000 28672 C:\Windows\SysWOW64\NSI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation NSI User-mode interface DLL 131795770645379614 0x77d20000 1585152 C:\Windows\SysWOW64\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 131795770645379614 0x7ffad0270000 1908736 C:\Windows\SYSTEM32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 42 3608 664 6 00000000:0031f1da 131765778496229053 0 0 1 Обязательная метка\Средний обязательный уровень WIN-0UOTFKKVN1S\User ApplicationFrameHost.exe C:\Windows\system32\ApplicationFrameHost.exe C:\Windows\system32\ApplicationFrameHost.exe -Embedding Microsoft Corporation 10.0.14393.0 (rs1_release.160715-1616) Application Frame Host 131795770645379722 0x7ff6aa270000 61440 C:\Windows\system32\ApplicationFrameHost.exe 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Application Frame Host 131795770645379722 0x7ffabb490000 512000 C:\Windows\System32\TWINAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation twinapi 131795770645379722 0x7ffac0bf0000 3559424 C:\Windows\System32\ActXPrxy.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation ActiveX Interface Marshaling Library 131795770645379722 0x7ffac3cb0000 2772992 C:\Windows\SYSTEM32\iertutil.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служебная программа времени выполнения для Internet Explorer 131795770645379722 0x7ffac5240000 1114112 C:\Windows\System32\ApplicationFrame.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Фрейм приложения 131795770645379722 0x7ffac5ce0000 1744896 C:\Windows\system32\UIAutomationCore.DLL 7.2.14393.0 (rs1_release.160715-1616) Microsoft Corporation Основные автоматические компоненты Microsoft UI 131795786034558955 0x7ffac6ac0000 835584 C:\Windows\System32\Windows.UI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Runtime UI Foundation DLL 131795770645379722 0x7ffac6bd0000 413696 C:\Windows\system32\OLEACC.dll 7.2.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Active Accessibility Core Component 131795770645379722 0x7ffac6f50000 5632000 C:\Windows\System32\d2d1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека Microsoft D2D 131795770645379722 0x7ffac7580000 1077248 C:\Windows\SYSTEM32\mrmcorer.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Windows MRM 131795770645379722 0x7ffac7fc0000 2674688 C:\Windows\system32\D3D10Warp.dll 10.0.14393.576 (rs1_release_inmarket.161208-2252) Microsoft Corporation Direct3D 10 Rasterizer 131795770645379722 0x7ffac88a0000 2842624 C:\Windows\System32\d3d11.dll 10.0.14393.953 (rs1_release_inmarket.170303-1614) Microsoft Corporation Direct3D 11 Runtime 131795770645379722 0x7ffac9ec0000 294912 C:\Windows\System32\UIAnimation.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Animation Manager 131795770645379722 0x7ffac9f50000 1736704 C:\Windows\system32\windowscodecs.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Microsoft Windows Codecs Library 131795770645379722 0x7ffaca340000 1593344 C:\Windows\System32\PROPSYS.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Система страниц свойств (Майкрософт) 131795770645379722 0x7ffaca570000 421888 C:\Windows\system32\Bcp47Langs.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation BCP47 Language Classes 131795770645379722 0x7ffaca5e0000 155648 C:\Windows\System32\dwmapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Интерфейс API диспетчера окон рабочего стола (Майкрософт) 131795770645379722 0x7ffaca770000 1380352 C:\Windows\System32\dcomp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft DirectComposition Library 131795770645379722 0x7ffacaf00000 610304 C:\Windows\System32\UxTheme.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека тем UxTheme (Microsoft) 131795770645379722 0x7ffacb1e0000 1163264 C:\Windows\System32\twinapi.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation twinapi.appcore 131795770645379722 0x7ffacb3f0000 163840 C:\Windows\System32\DEVOBJ.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Device Information Set DLL 131795770645379722 0x7ffacb780000 651264 C:\Windows\System32\dxgi.dll 10.0.14393.953 (rs1_release_inmarket.170303-1614) Microsoft Corporation DirectX Graphics Infrastructure 131795770645379722 0x7ffacbe40000 126976 C:\Windows\system32\USERENV.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Userenv 131795770645379722 0x7ffacc520000 622592 C:\Windows\SYSTEM32\sxs.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Fusion 2.5 131795770645379722 0x7ffacc620000 176128 C:\Windows\System32\bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795770645379722 0x7ffacc6e0000 61440 C:\Windows\System32\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795770645379722 0x7ffacc6f0000 311296 C:\Windows\System32\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795770645379722 0x7ffacc740000 81920 C:\Windows\System32\profapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Profile Basic API 131795770645379722 0x7ffacc760000 65536 C:\Windows\System32\MSASN1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ASN.1 Runtime APIs 131795770645379722 0x7ffacc8f0000 1003520 C:\Windows\System32\ucrtbase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645379722 0x7ffacc9f0000 434176 C:\Windows\System32\bcryptPrimitives.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Cryptographic Primitives Library 131795770645379722 0x7ffacca60000 122880 C:\Windows\System32\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795770645379722 0x7ffaccae0000 692224 C:\Windows\System32\SHCORE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795770645379722 0x7ffaccb90000 7180288 C:\Windows\System32\windows.storage.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API хранения Microsoft WinRT 131795770645379722 0x7ffacd270000 2215936 C:\Windows\System32\KERNELBASE.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645379722 0x7ffacd490000 1871872 C:\Windows\System32\CRYPT32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API32 криптографии 131795770645379722 0x7ffacd710000 638976 C:\Windows\System32\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645379722 0x7ffacd7b0000 270336 C:\Windows\System32\cfgmgr32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Configuration Manager DLL 131795770645379722 0x7ffacd810000 22056960 C:\Windows\System32\SHELL32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Общая библиотека оболочки Windows 131795770645379722 0x7ffaced20000 782336 C:\Windows\System32\OLEAUT32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795770645379722 0x7ffacee50000 1183744 C:\Windows\System32\RPCRT4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795770645379722 0x7ffacef90000 647168 C:\Windows\System32\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795770645379722 0x7ffacf030000 651264 C:\Windows\System32\clbcatq.dll 2001.12.10941.16384 (rs1_release.160715-1616) Microsoft Corporation COM+ Configuration Catalog 131795770645379722 0x7ffacf0d0000 704512 C:\Windows\System32\KERNEL32.DLL 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645379722 0x7ffacf1e0000 1417216 C:\Windows\System32\MSCTF.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Серверная библиотека MSCTF 131795770645379722 0x7ffacf770000 212992 C:\Windows\System32\GDI32.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation GDI Client DLL 131795770645379722 0x7ffacf890000 188416 C:\Windows\System32\IMM32.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Multi-User Windows IMM32 API Client DLL 131795770645379722 0x7ffacf8c0000 1462272 C:\Windows\System32\USER32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795770645379722 0x7ffacfb30000 2916352 C:\Windows\System32\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795770645379722 0x7ffacfe20000 663552 C:\Windows\System32\advapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795770645379722 0x7ffad01b0000 335872 C:\Windows\System32\SHLWAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека небольших программ оболочки 131795770645379722 0x7ffad0210000 364544 C:\Windows\System32\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795770645379722 0x7ffad0270000 1908736 C:\Windows\SYSTEM32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 43 5952 4928 41 00000000:0031f1da 131765778883326814 0 1 0 Обязательная метка\Низкий обязательный уровень WIN-0UOTFKKVN1S\User utorrentie.exe C:\Users\User\AppData\Roaming\uTorrent\updates\3.5.4_44498\utorrentie.exe "C:\Users\User\AppData\Roaming\uTorrent\updates\3.5.4_44498\utorrentie.exe" uTorrent_4928_02D54150_1240996307 µTorrent4823DF041B09 uTorrent BitTorrent Inc. 1.0.0 WebHelper 131795770645379833 0x1180000 417792 C:\Users\User\AppData\Roaming\uTorrent\updates\3.5.4_44498\utorrentie.exe 1.0.0 BitTorrent Inc. WebHelper 131795770645379833 0x5c020000 335872 C:\Windows\System32\wow64.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation Win32 Emulation on NT64 131795770645379833 0x5c080000 487424 C:\Windows\System32\wow64win.dll 10.0.14393.1884 (rs1_release.171101-1233) Microsoft Corporation Wow64 Console and Win32 API Logging 131795770645379833 0x5c100000 40960 C:\Windows\System32\wow64cpu.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation AMD64 Wow64 CPU 131795770645379833 0x63490000 221184 C:\Windows\SysWOW64\dinput8.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft DirectInput 131795770645379833 0x634d0000 561152 C:\Windows\SysWOW64\DSOUND.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DirectSound 131795770645379833 0x63560000 23334912 C:\Windows\SysWOW64\Macromed\Flash\Flash.ocx 29,0,0,140 Adobe Systems, Inc. Adobe Flash Player 29.0 r0 131795770645379833 0x64d00000 5079040 C:\Windows\SysWOW64\d2d1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека Microsoft D2D 131795770645379833 0x651e0000 20537344 C:\Windows\SysWOW64\mshtml.dll 11.00.14393.447 (rs1_release_inmarket.161102-0100) Microsoft Corporation Средство просмотра HTML Microsoft® 131795770645379833 0x66580000 12247040 C:\Windows\SysWOW64\ieframe.dll 11.00.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Браузер 131795770645379833 0x6b670000 212992 C:\Windows\SysWOW64\mlang.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL многоязыковой поддержки 131795770645379833 0x6b6b0000 36864 C:\Windows\SysWOW64\atlthunk.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation atlthunk.dll 131795770645379833 0x6c290000 987136 C:\Windows\SysWOW64\twinapi.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation twinapi.appcore 131795770645379833 0x6c390000 1126400 C:\Windows\SysWOW64\dcomp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft DirectComposition Library 131795770645379833 0x6c4b0000 278528 C:\Windows\SysWOW64\dataexchange.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation Data exchange 131795770645379833 0x6c540000 483328 C:\Windows\SysWOW64\webio.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API протоколов передачи по Веб 131795770645379833 0x6c5c0000 1384448 C:\Windows\SysWOW64\UIAutomationCore.DLL 7.2.14393.0 (rs1_release.160715-1616) Microsoft Corporation Основные автоматические компоненты Microsoft UI 131795770645379833 0x6c720000 2318336 C:\Windows\SysWOW64\d3d10warp.dll 10.0.14393.576 (rs1_release_inmarket.161208-2252) Microsoft Corporation Direct3D 10 Rasterizer 131795770645379833 0x6c960000 57344 C:\Windows\SysWOW64\msimtf.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Active IMM Server DLL 131795770645379833 0x6c970000 3698688 C:\Windows\SysWOW64\jscript9.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft ® JScript 131795770645379833 0x6cd00000 69632 C:\Windows\SysWOW64\WLDP.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Политика блокировки Windows 131795770645379833 0x6cd20000 135168 C:\Windows\SysWOW64\srpapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL программных интерфейсов (API) поставщика общих ресурсов 131795770645379833 0x6cda0000 528384 C:\Windows\SysWOW64\sxs.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Fusion 2.5 131795770645379833 0x6d080000 151552 C:\Windows\SysWOW64\cryptnet.dll 10.0.14393.2035 (rs1_release_inmarket.180110-1910) Microsoft Corporation Crypto Network Related API 131795770645379833 0x6d0b0000 847872 C:\Windows\SysWOW64\wintypes.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL основных типов Windows 131795770645379833 0x6fd30000 139264 C:\Windows\SysWOW64\DEVOBJ.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Device Information Set DLL 131795770645379833 0x6fd60000 360448 C:\Windows\SysWOW64\MMDevApi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation MMDevice API 131795770645379833 0x6fdc0000 507904 C:\Windows\SysWOW64\AUDIOSES.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Сеанс обработки звука 131795770645379833 0x6fe90000 544768 C:\Windows\SysWOW64\mscms.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL-библиотека системы сопоставления цветов Майкрософт 131795770645379833 0x70340000 536576 C:\Windows\SysWOW64\dxgi.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation DirectX Graphics Infrastructure 131795770645379833 0x703d0000 2056192 C:\Windows\SysWOW64\DWrite.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Службы Microsoft DirectX Typography 131795770645379833 0x70640000 1499136 C:\Windows\SysWOW64\windowscodecs.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Microsoft Windows Codecs Library 131795770645379833 0x707b0000 110592 C:\Windows\SysWOW64\ncryptsslp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft SChannel Provider 131795770645379833 0x707f0000 2293760 C:\Windows\SysWOW64\d3d11.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation Direct3D 11 Runtime 131795770645379833 0x70a80000 409600 C:\Windows\SysWOW64\schannel.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик безопасности TLS/SSL 131795770645379833 0x70b40000 69632 C:\Windows\SysWOW64\mskeyprotect.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик защиты ключей (Майкрософт) 131795770645379833 0x70ca0000 45056 C:\Windows\SysWOW64\NETUTILS.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API Helpers DLL 131795770645379833 0x70cc0000 65536 C:\Windows\SysWOW64\ondemandconnroutehelper.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation On Demand Connctiond Route Helper 131795770645379833 0x70e60000 176128 C:\Windows\SysWOW64\NTASN1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft ASN.1 API 131795770645379833 0x71140000 77824 C:\Windows\SysWOW64\NETAPI32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API DLL 131795770645379833 0x71610000 77824 C:\Windows\SysWOW64\dhcpcsvc6.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиент DHCPv6 131795770645379833 0x725e0000 2273280 C:\Windows\SysWOW64\iertutil.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служебная программа времени выполнения для Internet Explorer 131795770645379833 0x728e0000 1372160 C:\Windows\SysWOW64\PROPSYS.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Система страниц свойств (Майкрософт) 131795770645379833 0x72b90000 126976 C:\Windows\SysWOW64\dwmapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Интерфейс API диспетчера окон рабочего стола (Майкрософт) 131795770645379833 0x72cc0000 1658880 C:\Windows\SysWOW64\urlmon.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширения OLE32 для Win32 131795770645379833 0x73a40000 32768 C:\Windows\SysWOW64\WINNSI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Network Store Information RPC interface 131795770645379833 0x73a50000 299008 C:\Windows\SysWOW64\fwpuclnt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API пользовательского режима FWP/IPsec 131795770645379833 0x73aa0000 32768 C:\Windows\SysWOW64\DPAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Data Protection API 131795770645379833 0x73ab0000 32768 C:\Windows\SysWOW64\rasadhlp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Remote Access AutoDial Helper 131795770645379833 0x73ac0000 81920 C:\Windows\SysWOW64\dhcpcsvc.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служба DHCP-клиента 131795770645379833 0x73ae0000 40960 C:\Windows\SysWOW64\Secur32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Security Support Provider Interface 131795770645379833 0x73ef0000 24576 C:\Windows\SysWOW64\MSIMG32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation GDIEXT Client DLL 131795770645379833 0x73f00000 192512 C:\Windows\SysWOW64\IPHLPAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API вспомогательного приложения IP 131795770645379833 0x73f30000 512000 C:\Windows\SysWOW64\DNSAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Динамическая библиотека API DNS-клиента 131795770645379833 0x73ff0000 319488 C:\Windows\SysWOW64\mswsock.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширение поставщика службы API Microsoft Windows Sockets 2.0 131795770645379833 0x74060000 192512 C:\Windows\SysWOW64\rsaenh.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Enhanced Cryptographic Provider 131795770645379833 0x74110000 479232 C:\Windows\SysWOW64\uxtheme.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека тем UxTheme (Microsoft) 131795770645379833 0x74190000 110592 C:\Windows\SysWOW64\bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795770645379833 0x741b0000 77824 C:\Windows\SysWOW64\CRYPTSP.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Cryptographic Service Provider API 131795770645379833 0x741f0000 143360 C:\Windows\SysWOW64\WINMMBASE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base Multimedia Extension API DLL 131795770645379833 0x74230000 147456 C:\Windows\SysWOW64\WINMM.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation MCI API DLL 131795770645379833 0x74260000 2514944 C:\Windows\SysWOW64\WININET.dll 11.00.14393.447 (rs1_release_inmarket.161102-0100) Microsoft Corporation Расширения Интернета для Win32 131795770645379833 0x744d0000 2138112 C:\Windows\WinSxS\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.14393.953_none_89c2555adb023171\comctl32.dll 6.10 (rs1_release_inmarket.170303-1614) Microsoft Corporation Библиотека элементов управления взаимодействия с пользователем 131795770645379833 0x746e0000 32768 C:\Windows\SysWOW64\VERSION.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Version Checking and File Installation Libraries 131795770645379833 0x746f0000 106496 C:\Windows\SysWOW64\USERENV.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Userenv 131795770645379833 0x74730000 598016 C:\Windows\SysWOW64\apphelp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиентская библиотека совместимости приложений 131795770645379833 0x747d0000 40960 C:\Windows\SysWOW64\CRYPTBASE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base cryptographic API DLL 131795770645379833 0x747e0000 126976 C:\Windows\SysWOW64\SspiCli.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Security Support Provider Interface 131795770645379833 0x74800000 151552 C:\Windows\SysWOW64\IMM32.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Multi-User Windows IMM32 API Client DLL 131795770645379833 0x74910000 2170880 C:\Windows\SysWOW64\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795770645379833 0x74b30000 53248 C:\Windows\SysWOW64\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795770645379833 0x74b60000 790528 C:\Windows\SysWOW64\RPCRT4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795770645379833 0x74c30000 1417216 C:\Windows\SysWOW64\gdi32full.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation GDI Client DLL 131795770645379833 0x74da0000 778240 C:\Windows\SysWOW64\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795770645379833 0x74e60000 557056 C:\Windows\SysWOW64\shcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795770645379833 0x74ef0000 540672 C:\Windows\SysWOW64\clbcatq.dll 2001.12.10941.16384 (rs1_release.160715-1616) Microsoft Corporation COM+ Configuration Catalog 131795770645379833 0x74f80000 278528 C:\Windows\SysWOW64\WINTRUST.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation Microsoft Trust Verification APIs 131795770645379833 0x74fd0000 405504 C:\Windows\SysWOW64\WS2_32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation 32-разрядная библиотека Windows Socket 2.0 131795770645379833 0x75040000 282624 C:\Windows\SysWOW64\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795770645379833 0x75090000 1265664 C:\Windows\SysWOW64\MSCTF.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Серверная библиотека MSCTF 131795770645379833 0x751d0000 57344 C:\Windows\SysWOW64\MSASN1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ASN.1 Runtime APIs 131795770645379833 0x751e0000 1708032 C:\Windows\SysWOW64\KERNELBASE.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645379833 0x75390000 266240 C:\Windows\SysWOW64\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795770645379833 0x753e0000 1560576 C:\Windows\SysWOW64\CRYPT32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API32 криптографии 131795770645379833 0x75560000 487424 C:\Windows\SysWOW64\advapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795770645379833 0x756c0000 5693440 C:\Windows\SysWOW64\windows.storage.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API хранения Microsoft WinRT 131795770645379833 0x75c30000 372736 C:\Windows\SysWOW64\coml2.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft COM for Windows 131795770645379833 0x75c90000 286720 C:\Windows\SysWOW64\shlwapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека небольших программ оболочки 131795770645379833 0x75ce0000 20811776 C:\Windows\SysWOW64\SHELL32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Общая библиотека оболочки Windows 131795770645379833 0x774d0000 86016 C:\Windows\SysWOW64\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795770645379833 0x774f0000 61440 C:\Windows\SysWOW64\profapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Profile Basic API 131795770645379833 0x77560000 1437696 C:\Windows\SysWOW64\USER32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795770645379833 0x776c0000 368640 C:\Windows\SysWOW64\bcryptPrimitives.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation Windows Cryptographic Primitives Library 131795770645379833 0x77780000 503808 C:\Windows\SysWOW64\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645379833 0x77800000 606208 C:\Windows\SysWOW64\OLEAUT32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795770645379833 0x77ac0000 966656 C:\Windows\SysWOW64\ole32.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft OLE для Windows 131795770645379833 0x77bb0000 176128 C:\Windows\SysWOW64\GDI32.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation GDI Client DLL 131795770645379833 0x77cd0000 221184 C:\Windows\SysWOW64\cfgmgr32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Configuration Manager DLL 131795770645379833 0x77d10000 28672 C:\Windows\SysWOW64\NSI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation NSI User-mode interface DLL 131795770645379833 0x77d20000 1585152 C:\Windows\SysWOW64\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 131795770645379833 0x7ffad0270000 1908736 C:\Windows\SYSTEM32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 44 5800 664 6 00000000:0031f1da 131765779120650795 0 0 1 Обязательная метка\Средний обязательный уровень WIN-0UOTFKKVN1S\User DllHost.exe C:\Windows\system32\DllHost.exe C:\Windows\system32\DllHost.exe /Processid:{49F6E667-6658-4BD1-9DE9-6AF87F9FAF85} Microsoft Corporation 10.0.14393.0 (rs1_release.160715-1616) COM Surrogate 131795770645379938 0x7ff7a2280000 36864 C:\Windows\system32\DllHost.exe 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation COM Surrogate 131795770645379938 0x7ffac3840000 3088384 C:\Windows\SYSTEM32\esent.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширяемая подсистема хранения данных ESE для Microsoft(R) Windows(R) 131795770645379938 0x7ffac3b80000 286720 C:\Windows\system32\indexeddbserver.dll 10.0.14393.2189 (rs1_release.180329-1711) Microsoft Corporation IndexedDb host 131795770645379938 0x7ffac3cb0000 2772992 C:\Windows\system32\iertutil.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служебная программа времени выполнения для Internet Explorer 131795770645379938 0x7ffacaf00000 610304 C:\Windows\system32\uxtheme.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека тем UxTheme (Microsoft) 131795770645379938 0x7ffacc170000 45056 C:\Windows\system32\CRYPTBASE.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base cryptographic API DLL 131795770645379938 0x7ffacc6e0000 61440 C:\Windows\System32\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795770645379938 0x7ffacc6f0000 311296 C:\Windows\System32\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795770645379938 0x7ffacc740000 81920 C:\Windows\System32\profapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Profile Basic API 131795770645379938 0x7ffacc8f0000 1003520 C:\Windows\System32\ucrtbase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645379938 0x7ffacc9f0000 434176 C:\Windows\System32\bcryptPrimitives.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Cryptographic Primitives Library 131795770645379938 0x7ffacca60000 122880 C:\Windows\System32\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795770645379938 0x7ffaccae0000 692224 C:\Windows\System32\shcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795770645379938 0x7ffaccb90000 7180288 C:\Windows\System32\windows.storage.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API хранения Microsoft WinRT 131795770645379938 0x7ffacd270000 2215936 C:\Windows\System32\KERNELBASE.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645379938 0x7ffacd710000 638976 C:\Windows\System32\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645379938 0x7ffaced20000 782336 C:\Windows\System32\OLEAUT32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795770645379938 0x7ffacee50000 1183744 C:\Windows\System32\RPCRT4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795770645379938 0x7ffacef90000 647168 C:\Windows\System32\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795770645379938 0x7ffacf030000 651264 C:\Windows\System32\clbcatq.dll 2001.12.10941.16384 (rs1_release.160715-1616) Microsoft Corporation COM+ Configuration Catalog 131795770645379938 0x7ffacf0d0000 704512 C:\Windows\System32\KERNEL32.DLL 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645379938 0x7ffacf770000 212992 C:\Windows\System32\GDI32.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation GDI Client DLL 131795770645379938 0x7ffacf890000 188416 C:\Windows\System32\IMM32.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Multi-User Windows IMM32 API Client DLL 131795770645379938 0x7ffacf8c0000 1462272 C:\Windows\System32\user32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795770645379938 0x7ffacfb30000 2916352 C:\Windows\System32\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795770645379938 0x7ffacfe20000 663552 C:\Windows\System32\advapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795770645379938 0x7ffad01b0000 335872 C:\Windows\System32\shlwapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека небольших программ оболочки 131795770645379938 0x7ffad0210000 364544 C:\Windows\System32\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795770645379938 0x7ffad0270000 1908736 C:\Windows\SYSTEM32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 45 340 4928 41 00000000:0031f1da 131765800389528045 0 1 0 Обязательная метка\Низкий обязательный уровень WIN-0UOTFKKVN1S\User utorrentie.exe C:\Users\User\AppData\Roaming\uTorrent\updates\3.5.4_44498\utorrentie.exe "C:\Users\User\AppData\Roaming\uTorrent\updates\3.5.4_44498\utorrentie.exe" uTorrent_4928_02D54870_1839591030 µTorrent4823DF041B09 uTorrent BitTorrent Inc. 1.0.0 WebHelper 131795770645380038 0x1180000 417792 C:\Users\User\AppData\Roaming\uTorrent\updates\3.5.4_44498\utorrentie.exe 1.0.0 BitTorrent Inc. WebHelper 131795770645380038 0x5c020000 335872 C:\Windows\System32\wow64.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation Win32 Emulation on NT64 131795770645380038 0x5c080000 487424 C:\Windows\System32\wow64win.dll 10.0.14393.1884 (rs1_release.171101-1233) Microsoft Corporation Wow64 Console and Win32 API Logging 131795770645380038 0x5c100000 40960 C:\Windows\System32\wow64cpu.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation AMD64 Wow64 CPU 131795770645380038 0x60750000 1556480 C:\Program Files (x86)\360\Total Security\safemon\safemon.dll 8, 4, 0, 1420 Qihu 360 Software Co., Ltd. 360 Internet Security Internet Protection 131795770645380038 0x63490000 221184 C:\Windows\SysWOW64\dinput8.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft DirectInput 131795770645380038 0x634d0000 561152 C:\Windows\SysWOW64\DSOUND.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DirectSound 131795770645380038 0x63560000 23334912 C:\Windows\SysWOW64\Macromed\Flash\Flash.ocx 29,0,0,140 Adobe Systems, Inc. Adobe Flash Player 29.0 r0 131795770645380038 0x64d00000 5079040 C:\Windows\SysWOW64\d2d1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека Microsoft D2D 131795770645380038 0x651e0000 20537344 C:\Windows\SysWOW64\mshtml.dll 11.00.14393.447 (rs1_release_inmarket.161102-0100) Microsoft Corporation Средство просмотра HTML Microsoft® 131795770645380038 0x66580000 12247040 C:\Windows\SysWOW64\ieframe.dll 11.00.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Браузер 131795770645380038 0x6b670000 212992 C:\Windows\SysWOW64\mlang.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL многоязыковой поддержки 131795770645380038 0x6b6b0000 36864 C:\Windows\SysWOW64\atlthunk.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation atlthunk.dll 131795770645380038 0x6c290000 987136 C:\Windows\SysWOW64\twinapi.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation twinapi.appcore 131795770645380038 0x6c390000 1126400 C:\Windows\SysWOW64\dcomp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft DirectComposition Library 131795770645380038 0x6c4b0000 278528 C:\Windows\SysWOW64\dataexchange.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation Data exchange 131795770645380038 0x6c540000 483328 C:\Windows\SysWOW64\webio.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API протоколов передачи по Веб 131795770645380038 0x6c5c0000 1384448 C:\Windows\SysWOW64\UIAutomationCore.DLL 7.2.14393.0 (rs1_release.160715-1616) Microsoft Corporation Основные автоматические компоненты Microsoft UI 131795770645380038 0x6c720000 2318336 C:\Windows\SysWOW64\d3d10warp.dll 10.0.14393.576 (rs1_release_inmarket.161208-2252) Microsoft Corporation Direct3D 10 Rasterizer 131795770645380038 0x6c960000 57344 C:\Windows\SysWOW64\msimtf.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Active IMM Server DLL 131795770645380038 0x6c970000 3698688 C:\Windows\SysWOW64\jscript9.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft ® JScript 131795770645380038 0x6cd00000 69632 C:\Windows\SysWOW64\WLDP.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Политика блокировки Windows 131795770645380038 0x6cd20000 135168 C:\Windows\SysWOW64\srpapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL программных интерфейсов (API) поставщика общих ресурсов 131795770645380038 0x6cda0000 528384 C:\Windows\SysWOW64\sxs.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Fusion 2.5 131795770645380038 0x6d080000 151552 C:\Windows\SysWOW64\cryptnet.dll 10.0.14393.2035 (rs1_release_inmarket.180110-1910) Microsoft Corporation Crypto Network Related API 131795770645380038 0x6d0b0000 847872 C:\Windows\SysWOW64\wintypes.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL основных типов Windows 131795770645380038 0x6fd30000 139264 C:\Windows\SysWOW64\DEVOBJ.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Device Information Set DLL 131795770645380038 0x6fd60000 360448 C:\Windows\SysWOW64\MMDevApi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation MMDevice API 131795770645380038 0x6fdc0000 507904 C:\Windows\SysWOW64\AUDIOSES.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Сеанс обработки звука 131795770645380038 0x6fe90000 544768 C:\Windows\SysWOW64\mscms.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL-библиотека системы сопоставления цветов Майкрософт 131795770645380038 0x70340000 536576 C:\Windows\SysWOW64\dxgi.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation DirectX Graphics Infrastructure 131795770645380038 0x703d0000 2056192 C:\Windows\SysWOW64\DWrite.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Службы Microsoft DirectX Typography 131795770645380038 0x70640000 1499136 C:\Windows\SysWOW64\windowscodecs.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Microsoft Windows Codecs Library 131795770645380038 0x707b0000 110592 C:\Windows\SysWOW64\ncryptsslp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft SChannel Provider 131795770645380038 0x707f0000 2293760 C:\Windows\SysWOW64\d3d11.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation Direct3D 11 Runtime 131795770645380038 0x70a40000 81920 C:\Windows\SysWOW64\NLAapi.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Network Location Awareness 2 131795770645380038 0x70a60000 90112 C:\Windows\SysWOW64\pnrpnsp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик пространства имен PNRP 131795770645380038 0x70a80000 409600 C:\Windows\SysWOW64\schannel.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик безопасности TLS/SSL 131795770645380038 0x70b40000 69632 C:\Windows\SysWOW64\mskeyprotect.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик защиты ключей (Майкрософт) 131795770645380038 0x70c00000 49152 C:\Windows\SysWOW64\winrnr.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation LDAP RnR Provider DLL 131795770645380038 0x70c10000 73728 C:\Windows\SysWOW64\napinsp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик оболочки совместимости для имен электронной почты 131795770645380038 0x70c30000 114688 C:\Windows\SysWOW64\srvcli.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Server Service Client DLL 131795770645380038 0x70c50000 319488 C:\Windows\SysWOW64\Ninput.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Pen and Touch Input Component 131795770645380038 0x70ca0000 45056 C:\Windows\SysWOW64\NETUTILS.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API Helpers DLL 131795770645380038 0x70cc0000 65536 C:\Windows\SysWOW64\ondemandconnroutehelper.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation On Demand Connctiond Route Helper 131795770645380038 0x70e60000 176128 C:\Windows\SysWOW64\NTASN1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft ASN.1 API 131795770645380038 0x71140000 77824 C:\Windows\SysWOW64\NETAPI32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API DLL 131795770645380038 0x71610000 77824 C:\Windows\SysWOW64\dhcpcsvc6.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиент DHCPv6 131795770645380038 0x725e0000 2273280 C:\Windows\SysWOW64\iertutil.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служебная программа времени выполнения для Internet Explorer 131795770645380038 0x728e0000 1372160 C:\Windows\SysWOW64\PROPSYS.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Система страниц свойств (Майкрософт) 131795770645380038 0x72b90000 126976 C:\Windows\SysWOW64\dwmapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Интерфейс API диспетчера окон рабочего стола (Майкрософт) 131795770645380038 0x72cc0000 1658880 C:\Windows\SysWOW64\urlmon.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширения OLE32 для Win32 131795770645380038 0x73a40000 32768 C:\Windows\SysWOW64\WINNSI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Network Store Information RPC interface 131795770645380038 0x73a50000 299008 C:\Windows\SysWOW64\fwpuclnt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API пользовательского режима FWP/IPsec 131795770645380038 0x73aa0000 32768 C:\Windows\SysWOW64\DPAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Data Protection API 131795770645380038 0x73ab0000 32768 C:\Windows\SysWOW64\rasadhlp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Remote Access AutoDial Helper 131795770645380038 0x73ac0000 81920 C:\Windows\SysWOW64\dhcpcsvc.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служба DHCP-клиента 131795770645380038 0x73ae0000 40960 C:\Windows\SysWOW64\Secur32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Security Support Provider Interface 131795770645380038 0x73ef0000 24576 C:\Windows\SysWOW64\MSIMG32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation GDIEXT Client DLL 131795770645380038 0x73f00000 192512 C:\Windows\SysWOW64\IPHLPAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API вспомогательного приложения IP 131795770645380038 0x73f30000 512000 C:\Windows\SysWOW64\DNSAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Динамическая библиотека API DNS-клиента 131795770645380038 0x73ff0000 319488 C:\Windows\SysWOW64\mswsock.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширение поставщика службы API Microsoft Windows Sockets 2.0 131795770645380038 0x74060000 192512 C:\Windows\SysWOW64\rsaenh.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Enhanced Cryptographic Provider 131795770645380038 0x74110000 479232 C:\Windows\SysWOW64\uxtheme.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека тем UxTheme (Microsoft) 131795770645380038 0x74190000 110592 C:\Windows\SysWOW64\bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795770645380038 0x741b0000 77824 C:\Windows\SysWOW64\CRYPTSP.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Cryptographic Service Provider API 131795770645380038 0x741f0000 143360 C:\Windows\SysWOW64\WINMMBASE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base Multimedia Extension API DLL 131795770645380038 0x74230000 147456 C:\Windows\SysWOW64\WINMM.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation MCI API DLL 131795770645380038 0x74260000 2514944 C:\Windows\SysWOW64\WININET.dll 11.00.14393.447 (rs1_release_inmarket.161102-0100) Microsoft Corporation Расширения Интернета для Win32 131795770645380038 0x744d0000 2138112 C:\Windows\WinSxS\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.14393.953_none_89c2555adb023171\comctl32.dll 6.10 (rs1_release_inmarket.170303-1614) Microsoft Corporation Библиотека элементов управления взаимодействия с пользователем 131795770645380038 0x746e0000 32768 C:\Windows\SysWOW64\VERSION.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Version Checking and File Installation Libraries 131795770645380038 0x746f0000 106496 C:\Windows\SysWOW64\USERENV.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Userenv 131795770645380038 0x74730000 598016 C:\Windows\SysWOW64\apphelp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиентская библиотека совместимости приложений 131795770645380038 0x747d0000 40960 C:\Windows\SysWOW64\CRYPTBASE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base cryptographic API DLL 131795770645380038 0x747e0000 126976 C:\Windows\SysWOW64\SspiCli.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Security Support Provider Interface 131795770645380038 0x74800000 151552 C:\Windows\SysWOW64\IMM32.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Multi-User Windows IMM32 API Client DLL 131795770645380038 0x74910000 2170880 C:\Windows\SysWOW64\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795770645380038 0x74b30000 53248 C:\Windows\SysWOW64\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795770645380038 0x74b60000 790528 C:\Windows\SysWOW64\RPCRT4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795770645380038 0x74c30000 1417216 C:\Windows\SysWOW64\gdi32full.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation GDI Client DLL 131795770645380038 0x74d90000 24576 C:\Windows\SysWOW64\PSAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Process Status Helper 131795770645380038 0x74da0000 778240 C:\Windows\SysWOW64\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795770645380038 0x74e60000 557056 C:\Windows\SysWOW64\shcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795770645380038 0x74ef0000 540672 C:\Windows\SysWOW64\clbcatq.dll 2001.12.10941.16384 (rs1_release.160715-1616) Microsoft Corporation COM+ Configuration Catalog 131795770645380038 0x74f80000 278528 C:\Windows\SysWOW64\WINTRUST.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation Microsoft Trust Verification APIs 131795770645380038 0x74fd0000 405504 C:\Windows\SysWOW64\WS2_32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation 32-разрядная библиотека Windows Socket 2.0 131795770645380038 0x75040000 282624 C:\Windows\SysWOW64\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795770645380038 0x75090000 1265664 C:\Windows\SysWOW64\MSCTF.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Серверная библиотека MSCTF 131795770645380038 0x751d0000 57344 C:\Windows\SysWOW64\MSASN1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ASN.1 Runtime APIs 131795770645380038 0x751e0000 1708032 C:\Windows\SysWOW64\KERNELBASE.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645380038 0x75390000 266240 C:\Windows\SysWOW64\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795770645380038 0x753e0000 1560576 C:\Windows\SysWOW64\CRYPT32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API32 криптографии 131795770645380038 0x75560000 487424 C:\Windows\SysWOW64\advapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795770645380038 0x756c0000 5693440 C:\Windows\SysWOW64\windows.storage.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API хранения Microsoft WinRT 131795770645380038 0x75c30000 372736 C:\Windows\SysWOW64\coml2.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft COM for Windows 131795770645380038 0x75c90000 286720 C:\Windows\SysWOW64\shlwapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека небольших программ оболочки 131795770645380038 0x75ce0000 20811776 C:\Windows\SysWOW64\SHELL32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Общая библиотека оболочки Windows 131795770645380038 0x774d0000 86016 C:\Windows\SysWOW64\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795770645380038 0x774f0000 61440 C:\Windows\SysWOW64\profapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Profile Basic API 131795770645380038 0x77560000 1437696 C:\Windows\SysWOW64\USER32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795770645380038 0x776c0000 368640 C:\Windows\SysWOW64\bcryptPrimitives.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation Windows Cryptographic Primitives Library 131795770645380038 0x77780000 503808 C:\Windows\SysWOW64\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645380038 0x77800000 606208 C:\Windows\SysWOW64\OLEAUT32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795770645380038 0x77ac0000 966656 C:\Windows\SysWOW64\ole32.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft OLE для Windows 131795770645380038 0x77bb0000 176128 C:\Windows\SysWOW64\GDI32.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation GDI Client DLL 131795770645380038 0x77cd0000 221184 C:\Windows\SysWOW64\cfgmgr32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Configuration Manager DLL 131795770645380038 0x77d10000 28672 C:\Windows\SysWOW64\NSI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation NSI User-mode interface DLL 131795770645380038 0x77d20000 1585152 C:\Windows\SysWOW64\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 131795770645380038 0x7ffad0270000 1908736 C:\Windows\SYSTEM32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 46 2736 3976 47 00000000:0031f1ab 131765800903010156 0 0 1 Обязательная метка\Высокий обязательный уровень WIN-0UOTFKKVN1S\User Taskmgr.exe C:\Windows\System32\Taskmgr.exe "C:\Windows\System32\Taskmgr.exe" /2 Microsoft® Windows® Operating System 1, 0, 0, 1 Task Manager 131795770645380149 0x7ff7c2a70000 1286144 C:\Windows\System32\Taskmgr.exe 1, 0, 0, 1 Microsoft® Windows® Operating System Task Manager 131795770645380149 0x7ffab2720000 606208 C:\Windows\System32\DUser.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows DirectUser Engine 131795770645380149 0x7ffab8190000 9191424 C:\Windows\System32\TwinUI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation TWINUI 131795770645380149 0x7ffabdbb0000 1736704 C:\Windows\System32\DUI70.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Подсистема DirectUI Windows 131795770645380149 0x7ffabdfa0000 393216 C:\Windows\System32\faultrep.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека отчетов о сбоях в пользовательском режиме Windows 131795770645380149 0x7ffabeb20000 385024 C:\Windows\System32\Windows.ApplicationModel.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows ApplicationModel API Server 131795770645380149 0x7ffac0bf0000 3559424 C:\Windows\System32\ActXPrxy.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation ActiveX Interface Marshaling Library 131795770645380149 0x7ffac21b0000 77824 C:\Windows\System32\srumapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation System Resource Usage Monitor API 131795770645380149 0x7ffac3cb0000 2772992 C:\Windows\SYSTEM32\iertutil.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служебная программа времени выполнения для Internet Explorer 131795770645380149 0x7ffac4000000 274432 C:\Windows\SYSTEM32\policymanager.dll 10.0.14393.2035 (rs1_release_inmarket.180110-1910) Microsoft Corporation Policy Manager DLL 131795770645380149 0x7ffac42a0000 659456 C:\Windows\System32\StateRepository.Core.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation StateRepository Core 131795770645380149 0x7ffac46d0000 4161536 C:\Windows\System32\Windows.StateRepository.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Сервер Windows StateRepository API Server 131795770645380149 0x7ffac4e70000 102400 C:\Windows\System32\samcli.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Security Accounts Manager Client DLL 131795770645380149 0x7ffac4ea0000 36864 C:\Windows\SYSTEM32\atlthunk.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation atlthunk.dll 131795770645380149 0x7ffac5350000 1765376 C:\Windows\System32\Windows.UI.Immersive.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation WINDOWS.UI.IMMERSIVE 131795770645380149 0x7ffac5630000 339968 C:\Windows\System32\thumbcache.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Кэш эскизов Майкрософт 131795770645380149 0x7ffac60e0000 221184 C:\Windows\System32\XmlLite.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft XmlLite Library 131795770645380149 0x7ffac6ac0000 835584 C:\Windows\System32\Windows.UI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Runtime UI Foundation DLL 131795770645380149 0x7ffac6bd0000 413696 C:\Windows\System32\OLEACC.dll 7.2.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Active Accessibility Core Component 131795770645380149 0x7ffac6c40000 2596864 C:\Windows\WinSxS\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.14393.953_none_42151e83c686086b\COMCTL32.dll 6.10 (rs1_release_inmarket.170303-1614) Microsoft Corporation Библиотека элементов управления взаимодействия с пользователем 131795770645380149 0x7ffac7580000 1077248 C:\Windows\SYSTEM32\MrmCoreR.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Windows MRM 131795770645380149 0x7ffac83d0000 106496 C:\Windows\SYSTEM32\dhcpcsvc.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служба DHCP-клиента 131795770645380149 0x7ffac83f0000 90112 C:\Windows\SYSTEM32\dhcpcsvc6.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиент DHCPv6 131795770645380149 0x7ffac8810000 45056 C:\Windows\SYSTEM32\WINNSI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Network Store Information RPC interface 131795770645380149 0x7ffac8dc0000 167936 C:\Windows\System32\dbgcore.DLL 10.0.14321.1024 (debuggers(dbg).160715-1616) Microsoft Windows Core Debugging Helpers 131795770645380149 0x7ffac8df0000 1646592 C:\Windows\System32\dbghelp.dll 10.0.14321.1024 (rs1_release.160715-1616) Microsoft Windows Image Helper 131795770645380149 0x7ffac90b0000 90112 C:\Windows\System32\wkscli.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Workstation Service Client DLL 131795770645380149 0x7ffac92e0000 1269760 C:\Windows\SYSTEM32\wintypes.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL основных типов Windows 131795770645380149 0x7ffac9f50000 1736704 C:\Windows\System32\WindowsCodecs.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Microsoft Windows Codecs Library 131795770645380149 0x7ffaca340000 1593344 C:\Windows\system32\propsys.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Система страниц свойств (Майкрософт) 131795770645380149 0x7ffaca4e0000 77824 C:\Windows\System32\WTSAPI32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Remote Desktop Session Host Server SDK APIs 131795770645380149 0x7ffaca570000 421888 C:\Windows\System32\Bcp47Langs.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation BCP47 Language Classes 131795770645380149 0x7ffaca5e0000 155648 C:\Windows\System32\dwmapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Интерфейс API диспетчера окон рабочего стола (Майкрософт) 131795770645380149 0x7ffaca610000 143360 C:\Windows\System32\SAMLIB.dll 10.0.14393.82 (rs1_release.160805-1735) Microsoft Corporation SAM Library DLL 131795770645380149 0x7ffacac60000 69632 C:\Windows\System32\credui.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Credential Manager User Interface 131795770645380149 0x7ffacadf0000 499712 C:\Windows\System32\apphelp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиентская библиотека совместимости приложений 131795770645380149 0x7ffacaf00000 610304 C:\Windows\System32\UxTheme.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека тем UxTheme (Microsoft) 131795770645380149 0x7ffacb140000 593920 C:\Windows\SYSTEM32\msvcp110_win.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Microsoft® STL110 C++ Runtime Library 131795770645380149 0x7ffacb1e0000 1163264 C:\Windows\System32\twinapi.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation twinapi.appcore 131795770645380149 0x7ffacb300000 364544 C:\Windows\SYSTEM32\VEEventDispatcher.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Visual Element Event dispatcher 131795770645380149 0x7ffacbd30000 229376 C:\Windows\System32\IPHLPAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API вспомогательного приложения IP 131795770645380149 0x7ffacbe20000 53248 C:\Windows\System32\netutils.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API Helpers DLL 131795770645380149 0x7ffacbe40000 126976 C:\Windows\System32\USERENV.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Userenv 131795770645380149 0x7ffacc5c0000 352256 C:\Windows\System32\WINSTA.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Winstation Library 131795770645380149 0x7ffacc620000 176128 C:\Windows\System32\bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795770645380149 0x7ffacc6e0000 61440 C:\Windows\System32\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795770645380149 0x7ffacc6f0000 311296 C:\Windows\System32\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795770645380149 0x7ffacc740000 81920 C:\Windows\System32\profapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Profile Basic API 131795770645380149 0x7ffacc8f0000 1003520 C:\Windows\System32\ucrtbase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645380149 0x7ffacc9f0000 434176 C:\Windows\System32\bcryptPrimitives.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Cryptographic Primitives Library 131795770645380149 0x7ffacca60000 122880 C:\Windows\System32\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795770645380149 0x7ffaccae0000 692224 C:\Windows\System32\shcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795770645380149 0x7ffaccb90000 7180288 C:\Windows\System32\windows.storage.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API хранения Microsoft WinRT 131795770645380149 0x7ffacd270000 2215936 C:\Windows\System32\KERNELBASE.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645380149 0x7ffacd710000 638976 C:\Windows\System32\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645380149 0x7ffacd7b0000 270336 C:\Windows\System32\cfgmgr32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Configuration Manager DLL 131795770645380149 0x7ffacd810000 22056960 C:\Windows\System32\SHELL32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Общая библиотека оболочки Windows 131795770645380149 0x7ffaced20000 782336 C:\Windows\System32\OLEAUT32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795770645380149 0x7ffacee50000 1183744 C:\Windows\System32\RPCRT4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795770645380149 0x7ffacef80000 32768 C:\Windows\System32\NSI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation NSI User-mode interface DLL 131795770645380149 0x7ffacef90000 647168 C:\Windows\System32\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795770645380149 0x7ffacf030000 651264 C:\Windows\System32\clbcatq.dll 2001.12.10941.16384 (rs1_release.160715-1616) Microsoft Corporation COM+ Configuration Catalog 131795770645380149 0x7ffacf0d0000 704512 C:\Windows\System32\KERNEL32.DLL 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645380149 0x7ffacf1e0000 1417216 C:\Windows\System32\MSCTF.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Серверная библиотека MSCTF 131795770645380149 0x7ffacf770000 212992 C:\Windows\System32\GDI32.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation GDI Client DLL 131795770645380149 0x7ffacf820000 434176 C:\Windows\System32\WS2_32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation 32-разрядная библиотека Windows Socket 2.0 131795770645380149 0x7ffacf890000 188416 C:\Windows\System32\IMM32.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Multi-User Windows IMM32 API Client DLL 131795770645380149 0x7ffacf8c0000 1462272 C:\Windows\System32\USER32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795770645380149 0x7ffacfb30000 2916352 C:\Windows\System32\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795770645380149 0x7ffacfe20000 663552 C:\Windows\System32\advapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795770645380149 0x7ffad0070000 1277952 C:\Windows\System32\ole32.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft OLE для Windows 131795770645380149 0x7ffad01b0000 335872 C:\Windows\System32\SHLWAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека небольших программ оболочки 131795770645380149 0x7ffad0210000 364544 C:\Windows\System32\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795770645380149 0x7ffad0270000 1908736 C:\Windows\SYSTEM32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 49 6724 580 4 00000000:000003e7 131765803507001117 0 0 0 Обязательная метка\Обязательный уровень системы NT AUTHORITY\СИСТЕМА QHActiveDefense.exe C:\Program Files (x86)\360\Total Security\safemon\QHActiveDefense.exe "C:\Program Files (x86)\360\Total Security\safemon\QHActiveDefense.exe" Qihoo 360 Technology Co. Ltd. 10,0,0,1008 360 Total Security 131795778431738530 0x10000 413696 C:\ProgramData\Package Cache\{b8e12890-118d-4721-8e54-05d978086712}\VC_redist.x64.exe 14.0.24516.0 Microsoft Corporation Microsoft Visual C++ 2015 Redistributable (x64) - 14.0.24516 131795770645381706 0xd0000 983040 C:\Program Files (x86)\360\Total Security\safemon\QHActiveDefense.exe 10,0,0,1008 Qihoo 360 Technology Co. Ltd. 360 Total Security 131795778469924367 0x400000 278528 C:\Program Files\Wireshark\WinPcap_4_1_3.exe 4.1.0.2980 Riverbed Technology, Inc. WinPcap 4.1.3 installer 131795778203065490 0x840000 413696 C:\Program Files\Wireshark\vcredist_x64.exe 14.12.25810.0 Microsoft Corporation Microsoft Visual C++ 2017 Redistributable (x64) - 14.12.25810 131795786058722021 0x34c0000 40960 C:\Windows\System32\browser_broker.exe 11.00.14393.1613 (rs1_release_d.170807-1806) Microsoft Corporation Browser_Broker 131795770645381706 0x3c80000 12288 C:\Windows\SysWOW64\sfc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows File Protection 131795780944214585 0x40a0000 438272 C:\Program Files\Wireshark\dumpcap.exe 2.6.2 The Wireshark developer community Dumpcap 131795780231568066 0x4630000 204800 C:\Windows\SysWOW64\net1.exe 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Command 131795778389953959 0xa8e0000 696320 C:\Windows\System32\msvcp140.dll 14.12.25810.0 built by: VCTOOLSREL Microsoft Corporation Microsoft® C Runtime Library 131795786140191230 0xe830000 2416640 C:\Windows\System32\smartscreen.exe 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SmartScreen 131795780691287613 0xf730000 8298496 C:\Program Files\Wireshark\Wireshark.exe 2.6.2 The Wireshark developer community, http://www.wireshark.org/ Wireshark 131795780222197886 0x10000000 98304 C:\Windows\SysWOW64\Packet.dll 4.1.0.2980 Riverbed Technology, Inc. packet.dll (Vista) Dynamic Link Library 131795770645381706 0x5c020000 335872 C:\Windows\System32\wow64.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation Win32 Emulation on NT64 131795770645381706 0x5c080000 487424 C:\Windows\System32\wow64win.dll 10.0.14393.1884 (rs1_release.171101-1233) Microsoft Corporation Wow64 Console and Win32 API Logging 131795770645381706 0x5c100000 40960 C:\Windows\System32\wow64cpu.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation AMD64 Wow64 CPU 131795770645381706 0x5fb90000 2736128 C:\Program Files (x86)\360\Total Security\deepscan\deepscan.dll 3, 5, 1, 2130 Qihu 360 Software Co., Ltd. 360 Total Security Cloud Security 131795770645381706 0x5fec0000 794624 C:\Windows\SysWOW64\wbem\fastprox.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation WMI Custom Marshaller 131795770645381706 0x5ffa0000 421888 C:\Windows\SysWOW64\wbemcomn.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation WMI 131795770645381706 0x60010000 53248 C:\Windows\SysWOW64\wbem\wbemprox.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation WMI 131795770645381706 0x60190000 475136 C:\Program Files (x86)\360\Total Security\safemon\360SafeCamera.tpi 2, 0, 0, 1031 QIHU 360 SOFTWARE CO. LIMITED 360 Total Security Proactive Defense 131795770645381706 0x60210000 1269760 C:\Program Files (x86)\360\Total Security\deepscan\jcloudscan.dll 1, 0, 0, 1012 360.cn 360安全卫士 移动云查询模块 131795770645381706 0x604a0000 196608 C:\Program Files (x86)\360\Total Security\ipc\appdext.dll 1, 0, 0, 1483 360.cn 360安全卫士 木马防火墙模块 131795770645381706 0x604e0000 188416 C:\Program Files (x86)\360\Total Security\ipc\DrvUtility.dll 1, 0, 0, 1081 Qihu 360 Software Co., Ltd. 360 Internet Security 2013 Proactive Defense 131795770645381706 0x60510000 409600 C:\Program Files (x86)\360\Total Security\SafeScan.dll 1, 0, 0, 1074 Qihoo 360 Technology Co. Ltd. 360 Scan Util Module 131795770645381706 0x60580000 204800 C:\Program Files (x86)\360\Total Security\ScanStub.dll 1, 0, 0, 1014 Qihoo 360 Technology Co. Ltd. 360 Scan Util Module 131795770645381706 0x605c0000 249856 C:\Program Files (x86)\360\Total Security\netmon\360gameidentify.dll 1, 0, 1, 1050 360.cn 360流量防火墙 游戏识别模块 131795770645381706 0x60600000 200704 C:\Program Files (x86)\360\Total Security\safemon\WDRecord.dll 1, 0, 1, 1130 Qihu 360 Software Co., Ltd. 360 Internet Security Internet Protection 131795770645381706 0x60640000 430080 C:\Program Files (x86)\360\Total Security\netmon\Netgm.dll 9,0,0,1005 360.cn 360流量防火墙 游戏模式判断模块 131795770645381706 0x608d0000 159744 C:\Program Files (x86)\360\Total Security\safemon\safemonhlp.dll 1, 0, 0, 1265 Qihu 360 Software Co., Ltd. 360 Internet Security Internet Protection 131795770645381706 0x60a50000 479232 C:\Program Files (x86)\360\Total Security\deepscan\DsSysRepair.dll 1, 0, 0, 1062 QIHU360 SOFTWARE CO. LIMITED 360 Total Security System Repair Module 131795770645381706 0x60ad0000 352256 C:\Program Files (x86)\360\Total Security\360Common.dll 7, 3, 0, 3233 360.cn 360安全衛士 基礎模塊 131795770645381706 0x60b30000 1712128 C:\Program Files (x86)\360\Total Security\safemon\360safemonpro.tpi 3, 1, 1, 3140 Qihu 360 Software Co., Ltd. 360 Internet Security Internet Protection 131795770645381706 0x60ce0000 581632 C:\Program Files (x86)\360\Total Security\dynlenv.dll 1, 1, 0, 1016 360.cn dynlenv Dynamic Link Library 131795770645381706 0x61000000 184320 C:\Program Files (x86)\360\Total Security\ipc\qutmipc.dll 7, 3, 0, 1267 360.cn 360安全卫士 木马防火墙模块 131795770645381706 0x61030000 262144 C:\Program Files (x86)\360\Total Security\safemon\safehmpg.dll 3, 0, 0, 1160 Qihu 360 Software Co., Ltd. 360 Internet Security Browser HomePage Protection 131795770645381706 0x610d0000 1097728 C:\Program Files (x86)\360\Total Security\SoftMgr\SomAdvUtils.dll 3, 1, 1, 2020 360.cn 360 Safeguard PC Boost 131795770645381706 0x61380000 315392 C:\Program Files (x86)\360\Total Security\safemon\360bsmon.tpi 6, 8, 0, 1248 Qihu 360 Software Co., Ltd. 360 Total Security Active Protection 131795770645381706 0x61480000 2191360 C:\Program Files (x86)\360\Total Security\deepscan\qex\qex.dll 4.1.13.3366 Qihu 360 Software Co., Ltd. 360 Internet Security 2017 Antivirus 131795770645381706 0x616a0000 331776 C:\Program Files (x86)\360\Total Security\safemon\SelfProtectAPI2.dll 7, 1, 1, 1033 Qihu 360 Software Co., Ltd. 360 Total Security Proactive Defense 131795770645381706 0x61700000 483328 C:\Program Files (x86)\360\Total Security\safemon\360procmon.dll 7, 1, 1, 1221 Qihu 360 Software Co., Ltd. 360 Total Security Proactive Defense 131795770645381706 0x61780000 335872 C:\Program Files (x86)\360\Total Security\ipc\netdefender.dll 1, 0, 0, 1129 Qihu 360 Software Co., Ltd. 360 Internet Security Internet Protection 131795770645381706 0x617e0000 897024 C:\Program Files (x86)\360\Total Security\ipc\appd.dll 7, 3, 6, 3113 Qihu 360 Software Co., Ltd. 360 Total Security Proactive Defense 131795770645381706 0x61a30000 512000 C:\Program Files (x86)\360\Total Security\safemon\360HipsPopWnd.dll 7,3,2,1211 Qihoo 360 Technology Co. Ltd. 360 Internet Security Proactive Defense 131795770645381706 0x61ab0000 495616 C:\Program Files (x86)\360\Total Security\ipc\fileMgr.dll 7, 3, 0, 1963 Qihu 360 Software Co., Ltd. 360 Total Security Proactive Defense 131795770645381706 0x61b30000 3350528 C:\Program Files (x86)\360\Total Security\SoftMgr\somkernl.dll 2, 1, 0, 1130 360.cn 360软件管家 131795770645381706 0x61e70000 614400 C:\Program Files (x86)\360\Total Security\ipc\ipcservice.dll 7, 1, 2, 1643 Qihu 360 Software Co., Ltd. 360 Total Security Proactive Defense 131795770645381706 0x61f10000 1458176 C:\Program Files (x86)\360\Total Security\deepscan\cloudcom2.dll 3, 3, 10, 1288 Qihu 360 Software Co., Ltd. 360 Total Security 131795770645381706 0x621a0000 458752 C:\Program Files (x86)\360\Total Security\ipc\yhregd.dll 7, 2, 0, 1903 Qihu 360 Software Co., Ltd. 360 Total Security Proactive Defense 131795770645381706 0x62280000 454656 C:\Program Files (x86)\360\Total Security\SoftMgr\360SoftMgrS.dll 2, 1, 6, 1490 360.cn 360软件管家 服务模块 131795770645381706 0x622f0000 520192 C:\Program Files (x86)\360\Total Security\deepscan\heavygate.dll 3, 8, 11, 1 Qihu 360 Software Co., Ltd. 360 Total Security Cloud Security 131795770645381706 0x62370000 602112 C:\Program Files (x86)\360\Total Security\360util.dll 1.0.0.1485 360.cn 360安全卫士 公共模块 131795770645381706 0x62410000 352256 C:\Program Files (x86)\360\Total Security\CrashReport.dll 7, 0, 0, 1000 360.cn 360杀毒 异常捕获程序 131795770645381706 0x62470000 405504 C:\Program Files (x86)\360\Total Security\deepscan\qutmload.dll 7, 2, 1, 1279 360.cn 360安全卫士 木马防火墙模块 131795770645381706 0x624e0000 315392 C:\Program Files (x86)\360\Total Security\ipc\360box.dll 2, 0, 0, 1043 360.cn 360隔离沙箱模块 131795770645381706 0x62540000 278528 C:\Program Files (x86)\360\Total Security\360conf.dll 1, 0, 0, 1014 Qihu 360 Software Co., Ltd. 360 Internet Security Base Module 131795770645381706 0x62590000 987136 C:\Program Files (x86)\360\Total Security\360base.dll 1, 0, 0, 1165 360.cn 360安全卫士 基础模块 131795770645381706 0x62690000 266240 C:\Program Files (x86)\360\Total Security\deepscan\BAPI.dll 2.0.0.1191 360.cn BAPI 131795770645381706 0x627d0000 249856 C:\Windows\SysWOW64\edputil.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служебная программа EDP 131795770645381706 0x62980000 376832 C:\Program Files (x86)\360\Total Security\360NetBase.dll 7, 25, 0, 76 360.cn 360安全卫士 网络基础模块 131795770645381706 0x62b50000 106496 C:\Program Files (x86)\360\Total Security\i18n\ru\deepscan\DsRes.dll 1,0,0,1012 Qihu 360 Software Co., Ltd. 360 Total Security Cloud Security Resource 131795770645381706 0x62b70000 208896 C:\Program Files (x86)\360\Total Security\safemon\gamemode.tpi 9,0,0,1001 QIHU 360 SOFTWARE CO. LIMITED 360 Total Security Game Mode Control 131795770645381706 0x67130000 86016 C:\Windows\SysWOW64\devenum.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Перечисление устройств. 131795770645381706 0x67690000 61440 C:\Windows\SysWOW64\sfc_os.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows File Protection 131795770645381706 0x676a0000 61440 C:\Program Files (x86)\360\Total Security\ipc\x64for32lib.dll 6, 8, 0, 1059 360.cn 360安全卫士 木马防火墙模块 131795770645381706 0x676b0000 32768 C:\Windows\SysWOW64\fltlib.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека фильтров 131795770645381706 0x6b6c0000 36864 C:\Windows\SysWOW64\msdmo.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DMO Runtime 131795770645381706 0x6b6d0000 102400 C:\Program Files (x86)\360\Total Security\i18n.dll 1, 0, 0, 1016 Qihu 360 Software Co., Ltd. 360 Total Security 131795770645381706 0x6bf00000 3715072 C:\Windows\SysWOW64\msi.dll 5.0.14393.2155 Microsoft Corporation Windows Installer 131795770645381706 0x6cd50000 106496 C:\Windows\SysWOW64\SAMLIB.dll 10.0.14393.82 (rs1_release.160805-1735) Microsoft Corporation SAM Library DLL 131795770645381706 0x6cf60000 569344 C:\Windows\SysWOW64\taskschd.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Task Scheduler COM API 131795770645381706 0x6d080000 151552 C:\Windows\SysWOW64\cryptnet.dll 10.0.14393.2035 (rs1_release_inmarket.180110-1910) Microsoft Corporation Crypto Network Related API 131795770645381706 0x6ea80000 860160 C:\Program Files (x86)\360\Total Security\deepscan\QVM\360QVM.dll 5.0.2.1003 Qihu 360 Software Co., Ltd. 360 Internet Security QVM Engine 131795770645381706 0x6fcd0000 151552 C:\Windows\SysWOW64\dbgcore.DLL 10.0.14321.1024 (debuggers(dbg).160715-1616) Microsoft Windows Core Debugging Helpers 131795770645381706 0x6fd30000 139264 C:\Windows\SysWOW64\DEVOBJ.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Device Information Set DLL 131795770645381706 0x700d0000 434176 C:\Windows\SysWOW64\WINSPOOL.DRV 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Драйвер диспетчера очереди Windows 131795770645381706 0x70140000 274432 C:\Windows\SysWOW64\WINSTA.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Winstation Library 131795770645381706 0x70210000 966656 C:\Program Files (x86)\360\Total Security\deepscan\ave\AVEngine.dll 1, 0, 0, 2016 Qihu 360 Software Co., Ltd. 360 Internet Security 2013 AntiVirus Engine 131795770645381706 0x70300000 208896 C:\Program Files (x86)\360\Total Security\deepscan\ave\AVEI.dll 1, 0, 0, 2003 Qihu 360 Software Co., Ltd. 360 Internet Security 2013 AntiVirus Engine 131795770645381706 0x707d0000 86016 C:\Windows\SysWOW64\SAMCLI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Security Accounts Manager Client DLL 131795770645381706 0x70a40000 81920 C:\Windows\SysWOW64\NLAapi.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Network Location Awareness 2 131795770645381706 0x70a60000 90112 C:\Windows\SysWOW64\pnrpnsp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик пространства имен PNRP 131795770645381706 0x70b70000 163840 C:\Windows\SysWOW64\ntmarta.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик Windows NT MARTA 131795770645381706 0x70c00000 49152 C:\Windows\SysWOW64\winrnr.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation LDAP RnR Provider DLL 131795770645381706 0x70c10000 73728 C:\Windows\SysWOW64\napinsp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик оболочки совместимости для имен электронной почты 131795770645381706 0x70c30000 114688 C:\Windows\SysWOW64\srvcli.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Server Service Client DLL 131795770645381706 0x70ca0000 45056 C:\Windows\SysWOW64\NETUTILS.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API Helpers DLL 131795770645381706 0x70cb0000 65536 C:\Windows\SysWOW64\wkscli.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Workstation Service Client DLL 131795770645381706 0x70fd0000 1331200 C:\Windows\SysWOW64\dbghelp.dll 10.0.14321.1024 (rs1_release.160715-1616) Microsoft Windows Image Helper 131795770645381706 0x71140000 77824 C:\Windows\SysWOW64\NETAPI32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API DLL 131795770645381706 0x71610000 77824 C:\Windows\SysWOW64\dhcpcsvc6.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиент DHCPv6 131795770645381706 0x725e0000 2273280 C:\Windows\SysWOW64\iertutil.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служебная программа времени выполнения для Internet Explorer 131795770645381706 0x728e0000 1372160 C:\Windows\SysWOW64\propsys.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Система страниц свойств (Майкрософт) 131795770645381706 0x72a30000 188416 C:\Windows\SysWOW64\XmlLite.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft XmlLite Library 131795770645381706 0x72cc0000 1658880 C:\Windows\SysWOW64\urlmon.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширения OLE32 для Win32 131795770645381706 0x73a40000 32768 C:\Windows\SysWOW64\WINNSI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Network Store Information RPC interface 131795770645381706 0x73a50000 299008 C:\Windows\SysWOW64\fwpuclnt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API пользовательского режима FWP/IPsec 131795770645381706 0x73ab0000 32768 C:\Windows\SysWOW64\rasadhlp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Remote Access AutoDial Helper 131795770645381706 0x73ac0000 81920 C:\Windows\SysWOW64\dhcpcsvc.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служба DHCP-клиента 131795770645381706 0x73ae0000 40960 C:\Windows\SysWOW64\secur32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Security Support Provider Interface 131795770645381706 0x73c50000 1478656 C:\Windows\WinSxS\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.14393.1715_none_f67438d2f2547a00\gdiplus.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Microsoft GDI+ 131795770645381706 0x73ee0000 61440 C:\Windows\SysWOW64\WTSAPI32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Remote Desktop Session Host Server SDK APIs 131795770645381706 0x73ef0000 24576 C:\Windows\SysWOW64\MSIMG32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation GDIEXT Client DLL 131795770645381706 0x73f00000 192512 C:\Windows\SysWOW64\IPHLPAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API вспомогательного приложения IP 131795770645381706 0x73f30000 512000 C:\Windows\SysWOW64\dnsapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Динамическая библиотека API DNS-клиента 131795770645381706 0x73ff0000 319488 C:\Windows\SysWOW64\mswsock.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширение поставщика службы API Microsoft Windows Sockets 2.0 131795770645381706 0x74040000 126976 C:\Windows\SysWOW64\gpapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиентские функции API групповой политики 131795770645381706 0x74060000 192512 C:\Windows\SysWOW64\rsaenh.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Enhanced Cryptographic Provider 131795770645381706 0x74190000 110592 C:\Windows\SysWOW64\bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795770645381706 0x741b0000 77824 C:\Windows\SysWOW64\CRYPTSP.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Cryptographic Service Provider API 131795770645381706 0x741f0000 143360 C:\Windows\SysWOW64\WINMMBASE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base Multimedia Extension API DLL 131795770645381706 0x74230000 147456 C:\Windows\SysWOW64\WINMM.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation MCI API DLL 131795770645381706 0x74260000 2514944 C:\Windows\SysWOW64\WININET.dll 11.00.14393.447 (rs1_release_inmarket.161102-0100) Microsoft Corporation Расширения Интернета для Win32 131795770645381706 0x746e0000 32768 C:\Windows\SysWOW64\VERSION.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Version Checking and File Installation Libraries 131795770645381706 0x746f0000 106496 C:\Windows\SysWOW64\USERENV.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Userenv 131795770645381706 0x74710000 90112 C:\Windows\SysWOW64\MPR.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека маршрутизации для нескольких служб доступа 131795770645381706 0x74730000 598016 C:\Windows\SysWOW64\apphelp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиентская библиотека совместимости приложений 131795770645381706 0x747d0000 40960 C:\Windows\SysWOW64\CRYPTBASE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base cryptographic API DLL 131795770645381706 0x747e0000 126976 C:\Windows\SysWOW64\SspiCli.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Security Support Provider Interface 131795770645381706 0x74910000 2170880 C:\Windows\SysWOW64\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795770645381706 0x74b30000 53248 C:\Windows\SysWOW64\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795770645381706 0x74b40000 102400 C:\Windows\SysWOW64\imagehlp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT Image Helper 131795770645381706 0x74b60000 790528 C:\Windows\SysWOW64\RPCRT4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795770645381706 0x74c30000 1417216 C:\Windows\SysWOW64\gdi32full.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation GDI Client DLL 131795770645381706 0x74d90000 24576 C:\Windows\SysWOW64\PSAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Process Status Helper 131795770645381706 0x74da0000 778240 C:\Windows\SysWOW64\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795770645381706 0x74e60000 557056 C:\Windows\SysWOW64\shcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795770645381706 0x74ef0000 540672 C:\Windows\SysWOW64\clbcatq.dll 2001.12.10941.16384 (rs1_release.160715-1616) Microsoft Corporation COM+ Configuration Catalog 131795770645381706 0x74f80000 278528 C:\Windows\SysWOW64\WINTRUST.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation Microsoft Trust Verification APIs 131795770645381706 0x74fd0000 405504 C:\Windows\SysWOW64\WS2_32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation 32-разрядная библиотека Windows Socket 2.0 131795770645381706 0x75040000 282624 C:\Windows\SysWOW64\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795770645381706 0x751d0000 57344 C:\Windows\SysWOW64\MSASN1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ASN.1 Runtime APIs 131795770645381706 0x751e0000 1708032 C:\Windows\SysWOW64\KERNELBASE.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645381706 0x75390000 266240 C:\Windows\SysWOW64\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795770645381706 0x753e0000 1560576 C:\Windows\SysWOW64\CRYPT32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API32 криптографии 131795770645381706 0x75560000 487424 C:\Windows\SysWOW64\ADVAPI32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795770645381706 0x756c0000 5693440 C:\Windows\SysWOW64\windows.storage.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API хранения Microsoft WinRT 131795770645381706 0x75c30000 372736 C:\Windows\SysWOW64\coml2.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft COM for Windows 131795770645381706 0x75c90000 286720 C:\Windows\SysWOW64\shlwapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека небольших программ оболочки 131795770645381706 0x75ce0000 20811776 C:\Windows\SysWOW64\SHELL32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Общая библиотека оболочки Windows 131795770645381706 0x770c0000 4239360 C:\Windows\SysWOW64\SETUPAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Setup API 131795770645381706 0x774d0000 86016 C:\Windows\SysWOW64\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795770645381706 0x774f0000 61440 C:\Windows\SysWOW64\profapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Profile Basic API 131795770645381706 0x77560000 1437696 C:\Windows\SysWOW64\USER32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795770645381706 0x776c0000 368640 C:\Windows\SysWOW64\bcryptPrimitives.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation Windows Cryptographic Primitives Library 131795770645381706 0x77780000 503808 C:\Windows\SysWOW64\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645381706 0x77800000 606208 C:\Windows\SysWOW64\OLEAUT32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795770645381706 0x77ac0000 966656 C:\Windows\SysWOW64\ole32.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft OLE для Windows 131795770645381706 0x77bb0000 176128 C:\Windows\SysWOW64\GDI32.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation GDI Client DLL 131795770645381706 0x77cd0000 221184 C:\Windows\SysWOW64\cfgmgr32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Configuration Manager DLL 131795770645381706 0x77d10000 28672 C:\Windows\SysWOW64\NSI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation NSI User-mode interface DLL 131795770645381706 0x77d20000 1585152 C:\Windows\SysWOW64\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 131795770645381706 0x7ffad0270000 1908736 C:\Windows\SYSTEM32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 50 6340 6724 49 00000000:0031f1ab 131765803510844292 0 0 0 Обязательная метка\Высокий обязательный уровень WIN-0UOTFKKVN1S\User QHSafeTray.exe C:\Program Files (x86)\360\Total Security\safemon\QHSafeTray.exe /showtrayicon Qihoo 360 Technology Co. Ltd. 10,0,0,1024 360 Total Security 131795770645381850 0xec0000 2351104 C:\Program Files (x86)\360\Total Security\safemon\QHSafeTray.exe 10,0,0,1024 Qihoo 360 Technology Co. Ltd. 360 Total Security 131795770645381850 0x68f0000 12288 C:\Windows\SysWOW64\sfc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows File Protection 131795770645381850 0x5c020000 335872 C:\Windows\System32\wow64.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation Win32 Emulation on NT64 131795770645381850 0x5c080000 487424 C:\Windows\System32\wow64win.dll 10.0.14393.1884 (rs1_release.171101-1233) Microsoft Corporation Wow64 Console and Win32 API Logging 131795770645381850 0x5c100000 40960 C:\Windows\System32\wow64cpu.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation AMD64 Wow64 CPU 131795770645381850 0x5c480000 245760 C:\Program Files (x86)\360\Total Security\PDown.dll 1, 3, 0, 1420 Qihu 360 Software Co., Ltd. 360 Security Center Network Module 131795770645381850 0x5fe30000 581632 C:\Program Files (x86)\360\Total Security\safemon\wdui2.dll 9,6,0,1001 131795770645381850 0x60020000 413696 C:\Program Files (x86)\360\Total Security\netmon\360netctrl.dll 5, 3, 15, 2232 360.cn 360 Total Security NetwokrMonCtrl 131795770645381850 0x60090000 335872 C:\Program Files (x86)\360\Total Security\safemon\netmon.tpi 5, 1, 1, 3157 Qihoo 360 Technology Co. Ltd. 360安全卫士 流量防火墙模块 131795770645381850 0x60350000 1331200 C:\Program Files (x86)\360\Total Security\ToolBox.dll 1, 0, 0, 1094 Qihoo 360 Technology Co. Ltd. 360 Total Security 131795770645381850 0x60600000 200704 C:\Program Files (x86)\360\Total Security\safemon\WDRecord.dll 1, 0, 1, 1130 Qihu 360 Software Co., Ltd. 360 Internet Security Internet Protection 131795770645381850 0x606b0000 598016 C:\Program Files (x86)\360\Total Security\safemon\spsafe.dll 1, 0, 0, 1120 Qihu 360 Software Co., Ltd. 360 Internet Security Internet Protection 131795770645381850 0x60750000 1556480 C:\Program Files (x86)\360\Total Security\safemon\safemon.dll 8, 4, 0, 1420 Qihu 360 Software Co., Ltd. 360 Internet Security Internet Protection 131795770645381850 0x608d0000 159744 C:\Program Files (x86)\360\Total Security\safemon\safemonhlp.dll 1, 0, 0, 1265 Qihu 360 Software Co., Ltd. 360 Internet Security Internet Protection 131795770645381850 0x609b0000 241664 C:\Program Files (x86)\360\Total Security\safemon\360GuardBase.dll 3, 1, 0, 1060 360.cn 360保镖 131795770645381850 0x60ad0000 352256 C:\Program Files (x86)\360\Total Security\360Common.dll 7, 3, 0, 3233 360.cn 360安全衛士 基礎模塊 131795770645381850 0x60b30000 1712128 C:\Program Files (x86)\360\Total Security\safemon\360safemonpro.tpi 3, 1, 1, 3140 Qihu 360 Software Co., Ltd. 360 Internet Security Internet Protection 131795770645381850 0x60ce0000 581632 C:\Program Files (x86)\360\Total Security\dynlenv.dll 1, 1, 0, 1016 360.cn dynlenv Dynamic Link Library 131795770645381850 0x61070000 393216 C:\Program Files (x86)\360\Total Security\safemon\SomProxy.dll 1, 0, 0, 1900 Qihu 360 Software Co., Ltd. 360 Internet Security Internet Protection 131795770645381850 0x611e0000 1662976 C:\Program Files (x86)\360\Total Security\safemon\360connect.tpi 9,2,0,1030 QIHU 360 SOFTWARE CO. LIMITED 360 Connect 131795770645381850 0x61380000 315392 C:\Program Files (x86)\360\Total Security\safemon\360bsmon.tpi 6, 8, 0, 1248 Qihu 360 Software Co., Ltd. 360 Total Security Active Protection 131795770645381850 0x613d0000 667648 C:\Windows\WinSxS\x86_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.9247_none_5090cb78bcba4a35\MSVCR90.dll 9.00.30729.9247 Microsoft Corporation Microsoft® C Runtime Library 131795770645381850 0x618c0000 1478656 C:\Program Files (x86)\360\Total Security\sites.dll 11, 1, 0, 1212 360.cn 360安全卫士 131795770645381850 0x61a30000 512000 C:\Program Files (x86)\360\Total Security\safemon\360hipsPopWnd.dll 7,3,2,1211 Qihoo 360 Technology Co. Ltd. 360 Internet Security Proactive Defense 131795770645381850 0x61b30000 3350528 C:\Program Files (x86)\360\Total Security\softmgr\somkernl.dll 2, 1, 0, 1130 360.cn 360软件管家 131795770645381850 0x61e70000 614400 C:\Program Files (x86)\360\Total Security\ipc\ipcservice.dll 7, 1, 2, 1643 Qihu 360 Software Co., Ltd. 360 Total Security Proactive Defense 131795770645381850 0x61f10000 1458176 C:\Program Files (x86)\360\Total Security\deepscan\Cloudcom2.dll 3, 3, 10, 1288 Qihu 360 Software Co., Ltd. 360 Total Security 131795770645381850 0x62210000 446464 C:\Program Files (x86)\360\Total Security\360TSCommon.dll 9, 0, 0, 1016 QIHU 360 SOFTWARE CO. LIMITED 360 Total Security 131795770645381850 0x622f0000 520192 C:\Program Files (x86)\360\Total Security\deepscan\heavygate.dll 3, 8, 11, 1 Qihu 360 Software Co., Ltd. 360 Total Security Cloud Security 131795770645381850 0x62370000 602112 C:\Program Files (x86)\360\Total Security\360util.dll 1.0.0.1485 360.cn 360安全卫士 公共模块 131795770645381850 0x62410000 352256 C:\Program Files (x86)\360\Total Security\CrashReport.dll 7, 0, 0, 1000 360.cn 360杀毒 异常捕获程序 131795770645381850 0x62540000 278528 C:\Program Files (x86)\360\Total Security\360conf.dll 1, 0, 0, 1014 Qihu 360 Software Co., Ltd. 360 Internet Security Base Module 131795770645381850 0x62590000 987136 C:\Program Files (x86)\360\Total Security\360base.dll 1, 0, 0, 1165 360.cn 360安全卫士 基础模块 131795770645381850 0x62690000 266240 C:\Program Files (x86)\360\Total Security\deepscan\BAPI.dll 2.0.0.1191 360.cn BAPI 131795770645381850 0x627d0000 249856 C:\Windows\SysWOW64\edputil.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служебная программа EDP 131795770645381850 0x62960000 77824 C:\Program Files (x86)\360\Total Security\safemon\CleanPlusCache.tpi 1, 0, 0, 1004 QIHU 360 SOFTWARE CO. LIMITED CleanPlusCache 131795770645381850 0x62980000 376832 C:\Program Files (x86)\360\Total Security\360NetBase.dll 7, 25, 0, 76 360.cn 360安全卫士 网络基础模块 131795770645381850 0x67500000 1597440 C:\Windows\SysWOW64\ActXPrxy.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation ActiveX Interface Marshaling Library 131795770645381850 0x67690000 61440 C:\Windows\SysWOW64\sfc_os.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows File Protection 131795770645381850 0x676a0000 61440 C:\Program Files (x86)\360\Total Security\ipc\x64for32lib.dll 6, 8, 0, 1059 360.cn 360安全卫士 木马防火墙模块 131795771279916892 0x68850000 2764800 C:\Windows\SysWOW64\msftedit.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Элемент управления "Поле ввода форматированного текста", версия 8.5 131795770645381850 0x6b6d0000 102400 C:\Program Files (x86)\360\Total Security\i18n.dll 1, 0, 0, 1016 Qihu 360 Software Co., Ltd. 360 Total Security 131795770645381850 0x6bf00000 3715072 C:\Windows\SysWOW64\msi.dll 5.0.14393.2155 Microsoft Corporation Windows Installer 131795770645381850 0x6c290000 987136 C:\Windows\SysWOW64\twinapi.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation twinapi.appcore 131795770645381850 0x6c390000 1126400 C:\Windows\SysWOW64\dcomp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft DirectComposition Library 131795770645381850 0x6c4b0000 278528 C:\Windows\SysWOW64\dataexchange.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation Data exchange 131795770645381850 0x6e6e0000 151552 C:\Windows\SysWOW64\globinputhost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Globalization Extension API for Input 131795770645381850 0x6e710000 335872 C:\Windows\SysWOW64\Bcp47Langs.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation BCP47 Language Classes 131795770645381850 0x6e770000 1269760 C:\Windows\SysWOW64\Windows.Globalization.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Globalization 131795770645381850 0x6eed0000 274432 C:\Windows\SysWOW64\thumbcache.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Кэш эскизов Майкрософт 131795770645381850 0x6fc70000 385024 C:\Windows\SysWOW64\FirewallAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API брандмауэра Windows 131795770645381850 0x6fcd0000 151552 C:\Windows\SysWOW64\dbgcore.DLL 10.0.14321.1024 (debuggers(dbg).160715-1616) Microsoft Windows Core Debugging Helpers 131795770645381850 0x700d0000 434176 C:\Windows\SysWOW64\WINSPOOL.DRV 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Драйвер диспетчера очереди Windows 131795770645381850 0x70140000 274432 C:\Windows\SysWOW64\WINSTA.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Winstation Library 131795770645381850 0x70340000 536576 C:\Windows\SysWOW64\dxgi.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation DirectX Graphics Infrastructure 131795770645381850 0x703d0000 2056192 C:\Windows\SysWOW64\DWrite.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Службы Microsoft DirectX Typography 131795770645381850 0x705e0000 344064 C:\Windows\SysWOW64\OLEACC.dll 7.2.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Active Accessibility Core Component 131795770645381850 0x70640000 1499136 C:\Windows\SysWOW64\WindowsCodecs.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Microsoft Windows Codecs Library 131795770645381850 0x707b0000 110592 C:\Windows\SysWOW64\ncryptsslp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft SChannel Provider 131795770645381850 0x707f0000 2293760 C:\Windows\SysWOW64\d3d11.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation Direct3D 11 Runtime 131795770645381850 0x70a40000 81920 C:\Windows\SysWOW64\NLAapi.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Network Location Awareness 2 131795770645381850 0x70a60000 90112 C:\Windows\SysWOW64\pnrpnsp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик пространства имен PNRP 131795770645381850 0x70a80000 409600 C:\Windows\SysWOW64\schannel.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик безопасности TLS/SSL 131795770645381850 0x70b40000 69632 C:\Windows\SysWOW64\mskeyprotect.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик защиты ключей (Майкрософт) 131795770645381850 0x70b70000 163840 C:\Windows\SysWOW64\ntmarta.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик Windows NT MARTA 131795770645381850 0x70ba0000 188416 C:\Windows\SysWOW64\FWPolicyIOMgr.dll 10.0.14393.2189 (rs1_release.180329-1711) Microsoft Corporation FwPolicyIoMgr DLL 131795770645381850 0x70bd0000 147456 C:\Windows\SysWOW64\fwbase.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Firewall Base DLL 131795770645381850 0x70c00000 49152 C:\Windows\SysWOW64\winrnr.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation LDAP RnR Provider DLL 131795770645381850 0x70c10000 73728 C:\Windows\SysWOW64\napinsp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик оболочки совместимости для имен электронной почты 131795770645381850 0x70c30000 114688 C:\Windows\SysWOW64\SRVCLI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Server Service Client DLL 131795770645381850 0x70ca0000 45056 C:\Windows\SysWOW64\NETUTILS.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API Helpers DLL 131795770645381850 0x70cc0000 65536 C:\Windows\SysWOW64\ondemandconnroutehelper.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation On Demand Connctiond Route Helper 131795770645381850 0x70e60000 176128 C:\Windows\SysWOW64\NTASN1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft ASN.1 API 131795770645381850 0x70fd0000 1331200 C:\Windows\SysWOW64\dbghelp.dll 10.0.14321.1024 (rs1_release.160715-1616) Microsoft Windows Image Helper 131795770645381850 0x71140000 77824 C:\Windows\SysWOW64\NETAPI32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API DLL 131795770645381850 0x71170000 466944 C:\Program Files (x86)\360\Total Security\deepscan\CQhCltHttpW.dll 1, 4, 0, 1030 QIHU 360 SOFTWARE CO. LIMITED 360 Internet Security Base Module 131795770645381850 0x71610000 77824 C:\Windows\SysWOW64\dhcpcsvc6.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиент DHCPv6 131795770645381850 0x725e0000 2273280 C:\Windows\SysWOW64\iertutil.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служебная программа времени выполнения для Internet Explorer 131795770645381850 0x728e0000 1372160 C:\Windows\SysWOW64\PROPSYS.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Система страниц свойств (Майкрософт) 131795770645381850 0x72b90000 126976 C:\Windows\SysWOW64\dwmapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Интерфейс API диспетчера окон рабочего стола (Майкрософт) 131795770645381850 0x72cc0000 1658880 C:\Windows\SysWOW64\urlmon.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширения OLE32 для Win32 131795770645381850 0x73a40000 32768 C:\Windows\SysWOW64\WINNSI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Network Store Information RPC interface 131795770645381850 0x73a50000 299008 C:\Windows\SysWOW64\fwpuclnt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API пользовательского режима FWP/IPsec 131795770645381850 0x73ab0000 32768 C:\Windows\SysWOW64\rasadhlp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Remote Access AutoDial Helper 131795770645381850 0x73ac0000 81920 C:\Windows\SysWOW64\dhcpcsvc.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служба DHCP-клиента 131795770645381850 0x73ae0000 40960 C:\Windows\SysWOW64\Secur32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Security Support Provider Interface 131795770645381850 0x73c50000 1478656 C:\Windows\WinSxS\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.14393.1715_none_f67438d2f2547a00\gdiplus.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Microsoft GDI+ 131795770645381850 0x73ee0000 61440 C:\Windows\SysWOW64\WTSAPI32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Remote Desktop Session Host Server SDK APIs 131795770645381850 0x73ef0000 24576 C:\Windows\SysWOW64\MSIMG32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation GDIEXT Client DLL 131795770645381850 0x73f00000 192512 C:\Windows\SysWOW64\IPHLPAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API вспомогательного приложения IP 131795770645381850 0x73f30000 512000 C:\Windows\SysWOW64\DNSAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Динамическая библиотека API DNS-клиента 131795770645381850 0x73ff0000 319488 C:\Windows\SysWOW64\mswsock.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширение поставщика службы API Microsoft Windows Sockets 2.0 131795770645381850 0x74060000 192512 C:\Windows\SysWOW64\rsaenh.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Enhanced Cryptographic Provider 131795770645381850 0x74110000 479232 C:\Windows\SysWOW64\uxtheme.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека тем UxTheme (Microsoft) 131795770645381850 0x74190000 110592 C:\Windows\SysWOW64\bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795770645381850 0x741b0000 77824 C:\Windows\SysWOW64\CRYPTSP.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Cryptographic Service Provider API 131795770645381850 0x741f0000 143360 C:\Windows\SysWOW64\WINMMBASE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base Multimedia Extension API DLL 131795770645381850 0x74230000 147456 C:\Windows\SysWOW64\WINMM.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation MCI API DLL 131795770645381850 0x74260000 2514944 C:\Windows\SysWOW64\WININET.dll 11.00.14393.447 (rs1_release_inmarket.161102-0100) Microsoft Corporation Расширения Интернета для Win32 131795770645381850 0x744d0000 2138112 C:\Windows\WinSxS\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.14393.953_none_89c2555adb023171\COMCTL32.dll 6.10 (rs1_release_inmarket.170303-1614) Microsoft Corporation Библиотека элементов управления взаимодействия с пользователем 131795770645381850 0x746e0000 32768 C:\Windows\SysWOW64\VERSION.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Version Checking and File Installation Libraries 131795770645381850 0x746f0000 106496 C:\Windows\SysWOW64\USERENV.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Userenv 131795770645381850 0x74730000 598016 C:\Windows\SysWOW64\apphelp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиентская библиотека совместимости приложений 131795770645381850 0x747d0000 40960 C:\Windows\SysWOW64\CRYPTBASE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base cryptographic API DLL 131795770645381850 0x747e0000 126976 C:\Windows\SysWOW64\SspiCli.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Security Support Provider Interface 131795770645381850 0x74800000 151552 C:\Windows\SysWOW64\IMM32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Multi-User Windows IMM32 API Client DLL 131795770645381850 0x74910000 2170880 C:\Windows\SysWOW64\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795770645381850 0x74b30000 53248 C:\Windows\SysWOW64\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795770645381850 0x74b40000 102400 C:\Windows\SysWOW64\imagehlp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT Image Helper 131795770645381850 0x74b60000 790528 C:\Windows\SysWOW64\RPCRT4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795770645381850 0x74c30000 1417216 C:\Windows\SysWOW64\gdi32full.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation GDI Client DLL 131795770645381850 0x74d90000 24576 C:\Windows\SysWOW64\PSAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Process Status Helper 131795770645381850 0x74da0000 778240 C:\Windows\SysWOW64\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795770645381850 0x74e60000 557056 C:\Windows\SysWOW64\shcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795770645381850 0x74ef0000 540672 C:\Windows\SysWOW64\clbcatq.dll 2001.12.10941.16384 (rs1_release.160715-1616) Microsoft Corporation COM+ Configuration Catalog 131795770645381850 0x74f80000 278528 C:\Windows\SysWOW64\WINTRUST.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation Microsoft Trust Verification APIs 131795770645381850 0x74fd0000 405504 C:\Windows\SysWOW64\WS2_32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation 32-разрядная библиотека Windows Socket 2.0 131795770645381850 0x75040000 282624 C:\Windows\SysWOW64\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795770645381850 0x75090000 1265664 C:\Windows\SysWOW64\MSCTF.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Серверная библиотека MSCTF 131795770645381850 0x751d0000 57344 C:\Windows\SysWOW64\MSASN1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ASN.1 Runtime APIs 131795770645381850 0x751e0000 1708032 C:\Windows\SysWOW64\KERNELBASE.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645381850 0x75390000 266240 C:\Windows\SysWOW64\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795770645381850 0x753e0000 1560576 C:\Windows\SysWOW64\CRYPT32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API32 криптографии 131795770645381850 0x75560000 487424 C:\Windows\SysWOW64\ADVAPI32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795770645381850 0x756c0000 5693440 C:\Windows\SysWOW64\windows.storage.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API хранения Microsoft WinRT 131795770645381850 0x75c30000 372736 C:\Windows\SysWOW64\coml2.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft COM for Windows 131795770645381850 0x75c90000 286720 C:\Windows\SysWOW64\shlwapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека небольших программ оболочки 131795770645381850 0x75ce0000 20811776 C:\Windows\SysWOW64\SHELL32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Общая библиотека оболочки Windows 131795770645381850 0x770c0000 4239360 C:\Windows\SysWOW64\SETUPAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Setup API 131795770645381850 0x774d0000 86016 C:\Windows\SysWOW64\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795770645381850 0x774f0000 61440 C:\Windows\SysWOW64\profapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Profile Basic API 131795770645381850 0x77560000 1437696 C:\Windows\SysWOW64\USER32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795770645381850 0x776c0000 368640 C:\Windows\SysWOW64\bcryptPrimitives.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation Windows Cryptographic Primitives Library 131795770645381850 0x77780000 503808 C:\Windows\SysWOW64\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645381850 0x77800000 606208 C:\Windows\SysWOW64\OLEAUT32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795770645381850 0x77ac0000 966656 C:\Windows\SysWOW64\ole32.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft OLE для Windows 131795770645381850 0x77bb0000 176128 C:\Windows\SysWOW64\GDI32.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation GDI Client DLL 131795770645381850 0x77cd0000 221184 C:\Windows\SysWOW64\cfgmgr32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Configuration Manager DLL 131795770645381850 0x77d10000 28672 C:\Windows\SysWOW64\NSI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation NSI User-mode interface DLL 131795770645381850 0x77d20000 1585152 C:\Windows\SysWOW64\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 131795770645381850 0x7ffad0270000 1908736 C:\Windows\SYSTEM32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 51 6860 6724 49 00000000:000003e7 131765803555957830 0 0 0 Обязательная метка\Обязательный уровень системы NT AUTHORITY\СИСТЕМА QHWatchdog.exe C:\Program Files (x86)\360\Total Security\safemon\QHWatchdog.exe "C:\Program Files (x86)\360\Total Security\safemon\QHWatchdog.exe" /watch QIHU 360 SOFTWARE CO. LIMITED 8,2,0,1000 360 Total Security 131795770645381936 0xdf0000 139264 C:\Program Files (x86)\360\Total Security\safemon\QHWatchdog.exe 8,2,0,1000 QIHU 360 SOFTWARE CO. LIMITED 360 Total Security 131795770645381936 0x5c020000 335872 C:\Windows\System32\wow64.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation Win32 Emulation on NT64 131795770645381936 0x5c080000 487424 C:\Windows\System32\wow64win.dll 10.0.14393.1884 (rs1_release.171101-1233) Microsoft Corporation Wow64 Console and Win32 API Logging 131795770645381936 0x5c100000 40960 C:\Windows\System32\wow64cpu.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation AMD64 Wow64 CPU 131795770645381936 0x74730000 598016 C:\Windows\SysWOW64\apphelp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиентская библиотека совместимости приложений 131795770645381936 0x747d0000 40960 C:\Windows\SysWOW64\CRYPTBASE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base cryptographic API DLL 131795770645381936 0x747e0000 126976 C:\Windows\SysWOW64\SspiCli.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Security Support Provider Interface 131795770645381936 0x74910000 2170880 C:\Windows\SysWOW64\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795770645381936 0x74b60000 790528 C:\Windows\SysWOW64\RPCRT4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795770645381936 0x74c30000 1417216 C:\Windows\SysWOW64\gdi32full.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation GDI Client DLL 131795770645381936 0x74da0000 778240 C:\Windows\SysWOW64\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795770645381936 0x74e60000 557056 C:\Windows\SysWOW64\shcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795770645381936 0x751e0000 1708032 C:\Windows\SysWOW64\KERNELBASE.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645381936 0x75390000 266240 C:\Windows\SysWOW64\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795770645381936 0x75560000 487424 C:\Windows\SysWOW64\ADVAPI32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795770645381936 0x755e0000 917504 C:\Windows\SysWOW64\KERNEL32.DLL 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645381936 0x75c90000 286720 C:\Windows\SysWOW64\SHLWAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека небольших программ оболочки 131795770645381936 0x774d0000 86016 C:\Windows\SysWOW64\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795770645381936 0x77560000 1437696 C:\Windows\SysWOW64\USER32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795770645381936 0x776c0000 368640 C:\Windows\SysWOW64\bcryptPrimitives.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation Windows Cryptographic Primitives Library 131795770645381936 0x77bb0000 176128 C:\Windows\SysWOW64\GDI32.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation GDI Client DLL 131795770645381936 0x77d20000 1585152 C:\Windows\SysWOW64\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 131795770645381936 0x7ffad0270000 1908736 C:\Windows\SYSTEM32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 52 5924 664 6 00000000:000003e4 131765805232900810 0 0 0 Обязательная метка\Обязательный уровень системы NT AUTHORITY\NETWORK SERVICE wmiprvse.exe C:\Windows\sysWOW64\wbem\wmiprvse.exe C:\Windows\sysWOW64\wbem\wmiprvse.exe -Embedding Microsoft Corporation 10.0.14393.2155 (rs1_release_1.180305-1842) WMI Provider Host 131795770645382027 0x950000 434176 C:\Windows\sysWOW64\wbem\wmiprvse.exe 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation WMI Provider Host 131795770645382027 0x5c020000 335872 C:\Windows\System32\wow64.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation Win32 Emulation on NT64 131795770645382027 0x5c080000 487424 C:\Windows\System32\wow64win.dll 10.0.14393.1884 (rs1_release.171101-1233) Microsoft Corporation Wow64 Console and Win32 API Logging 131795770645382027 0x5c100000 40960 C:\Windows\System32\wow64cpu.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation AMD64 Wow64 CPU 131795770645382027 0x5fec0000 794624 C:\Windows\SysWOW64\wbem\FastProx.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation WMI Custom Marshaller 131795770645382027 0x5ffa0000 421888 C:\Windows\SysWOW64\wbemcomn.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation WMI 131795770645382027 0x60130000 36864 C:\Windows\SysWOW64\storagewmi_passthru.dll 10.0.14393.103 (rs1_release_inmarket.160819-1924) Microsoft Corporation WMI PassThru Provider for Storage Management 131795770645382027 0x60140000 114688 C:\Windows\SysWOW64\wbem\wmiutils.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation WMI 131795770645382027 0x60160000 73728 C:\Windows\SysWOW64\NCObjAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation 131795770645382027 0x604d0000 36864 C:\Windows\SysWOW64\delegatorprovider.dll 10.0.14393.103 (rs1_release_inmarket.160819-1924) Microsoft Corporation WMI PassThru Provider for Storage Management 131795770645382027 0x74190000 110592 C:\Windows\SysWOW64\bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795770645382027 0x747d0000 40960 C:\Windows\SysWOW64\CRYPTBASE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base cryptographic API DLL 131795770645382027 0x747e0000 126976 C:\Windows\SysWOW64\SspiCli.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Security Support Provider Interface 131795770645382027 0x74910000 2170880 C:\Windows\SysWOW64\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795770645382027 0x74b30000 53248 C:\Windows\SysWOW64\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795770645382027 0x74b60000 790528 C:\Windows\SysWOW64\RPCRT4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795770645382027 0x74c30000 1417216 C:\Windows\SysWOW64\gdi32full.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation GDI Client DLL 131795770645382027 0x74da0000 778240 C:\Windows\SysWOW64\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795770645382027 0x74ef0000 540672 C:\Windows\SysWOW64\clbcatq.dll 2001.12.10941.16384 (rs1_release.160715-1616) Microsoft Corporation COM+ Configuration Catalog 131795770645382027 0x74fd0000 405504 C:\Windows\SysWOW64\WS2_32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation 32-разрядная библиотека Windows Socket 2.0 131795770645382027 0x751e0000 1708032 C:\Windows\SysWOW64\KERNELBASE.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645382027 0x75390000 266240 C:\Windows\SysWOW64\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795770645382027 0x75560000 487424 C:\Windows\SysWOW64\advapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795770645382027 0x755e0000 917504 C:\Windows\SysWOW64\KERNEL32.DLL 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645382027 0x774d0000 86016 C:\Windows\SysWOW64\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795770645382027 0x77560000 1437696 C:\Windows\SysWOW64\user32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795770645382027 0x776c0000 368640 C:\Windows\SysWOW64\bcryptPrimitives.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation Windows Cryptographic Primitives Library 131795770645382027 0x77780000 503808 C:\Windows\SysWOW64\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645382027 0x77800000 606208 C:\Windows\SysWOW64\OLEAUT32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795770645382027 0x77bb0000 176128 C:\Windows\SysWOW64\GDI32.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation GDI Client DLL 131795770645382027 0x77d20000 1585152 C:\Windows\SysWOW64\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 131795770645382027 0x7ffad0270000 1908736 C:\Windows\SYSTEM32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 54 4408 348 24 00000000:0031f1ab 131765812380694767 0 0 1 Обязательная метка\Высокий обязательный уровень WIN-0UOTFKKVN1S\User taskhostw.exe C:\Windows\system32\taskhostw.exe taskhostw.exe Microsoft Corporation 10.0.14393.0 (rs1_release.160715-1616) Хост-процесс для задач Windows 131795770645382224 0x17826230000 12288 C:\Windows\SYSTEM32\sfc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows File Protection 131795770645382224 0x7ff794e10000 102400 C:\Windows\system32\taskhostw.exe 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Хост-процесс для задач Windows 131795770645382224 0x7ffab1140000 1134592 C:\Windows\System32\ReAgent.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL агента восстановления Microsoft Windows 131795770645382224 0x7ffab1c40000 1302528 C:\Windows\System32\LicenseManager.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation LicenseManager 131795770645382224 0x7ffab8da0000 1675264 C:\Windows\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.14393.1715_none_aec701fbddd850fa\gdiplus.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Microsoft GDI+ 131795770645382224 0x7ffab93b0000 897024 C:\Windows\System32\TokenBroker.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Token Broker 131795770645382224 0x7ffabafc0000 700416 C:\Windows\system32\wer.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека сообщений об ошибках Windows 131795770645382224 0x7ffabb2b0000 1089536 C:\Windows\system32\SettingSyncCore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Setting Synchronization Core 131795770645382224 0x7ffabbd20000 106496 C:\Windows\SYSTEM32\settingsyncpolicy.dll 10.0.14393.82 (rs1_release.160805-1735) Microsoft Corporation SettingSync Policy 131795770645382224 0x7ffabe000000 409600 C:\Windows\system32\WinSATAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows System Assessment Tool API 131795770645382224 0x7ffabe850000 155648 C:\Windows\System32\IDStore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Identity Store 131795770645382224 0x7ffabef80000 69632 C:\Windows\SYSTEM32\sfc_os.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows File Protection 131795770645382224 0x7ffabefd0000 258048 C:\Windows\system32\AEPIC.dll 10.0.17060.1029 (WinBuild.160101.0800) Microsoft Corporation Application Experience Program Cache 131795770645382224 0x7ffabf050000 225280 C:\Windows\System32\sdiageng.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Подсистема выполнения сценариев диагностики 131795770645382224 0x7ffabf1d0000 192512 C:\Windows\system32\cryptnet.dll 10.0.14393.2035 (rs1_release_inmarket.180110-1910) Microsoft Corporation Crypto Network Related API 131795770645382224 0x7ffabf330000 2457600 C:\Windows\System32\msxml6.dll 6.30.14393.2156 Microsoft Corporation MSXML 6.0 131795770645382224 0x7ffabfbe0000 1011712 C:\Windows\System32\Windows.Security.Authentication.OnlineId.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation Windows Runtime OnlineId Authentication DLL 131795770645382224 0x7ffabff60000 135168 C:\Windows\system32\ncryptsslp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft SChannel Provider 131795770645382224 0x7ffac0ad0000 86016 C:\Windows\SYSTEM32\mskeyprotect.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик защиты ключей (Майкрософт) 131795770645382224 0x7ffac0bf0000 3559424 C:\Windows\System32\ActXPrxy.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation ActiveX Interface Marshaling Library 131795770645382224 0x7ffac1d60000 589824 C:\Windows\system32\webio.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API протоколов передачи по Веб 131795770645382224 0x7ffac23c0000 331776 C:\Windows\System32\OneCoreCommonProxyStub.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation OneCore Common Proxy Stub 131795770645382224 0x7ffac2750000 106496 C:\Windows\System32\bcd.dll 10.0.14393.1794 (rs1_release.171008-1615) Microsoft Corporation BCD DLL 131795770645382224 0x7ffac2b80000 40960 C:\Windows\system32\VERSION.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Version Checking and File Installation Libraries 131795770645382224 0x7ffac2c30000 135168 C:\Windows\System32\CLIPC.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиент платформы лицензирования клиента 131795770645382224 0x7ffac3810000 167936 C:\Windows\System32\Cabinet.dll 5.00 (rs1_release.160715-1616) Microsoft Corporation Microsoft® Cabinet File API 131795770645382224 0x7ffac3cb0000 2772992 C:\Windows\SYSTEM32\iertutil.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служебная программа времени выполнения для Internet Explorer 131795770645382224 0x7ffac4000000 274432 C:\Windows\SYSTEM32\policymanager.dll 10.0.14393.2035 (rs1_release_inmarket.180110-1910) Microsoft Corporation Policy Manager DLL 131795770645382224 0x7ffac4050000 118784 C:\Windows\System32\wdi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Инфраструктура диагностики Windows 131795770645382224 0x7ffac4ae0000 69632 C:\Windows\System32\sdiagschd.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Запланированная задача сценариев проверки 131795770645382224 0x7ffac4b00000 45056 C:\Windows\System32\MemoryDiagnostic.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Обработчик задач средства проверки памяти Windows (Майкрософт) 131795770645382224 0x7ffac5c80000 90112 C:\Windows\System32\TempSignedLicenseExchangeTask.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation TempSignedLicenseExchangeTask Task 131795770645382224 0x7ffac60e0000 221184 C:\Windows\system32\XmlLite.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft XmlLite Library 131795770645382224 0x7ffac6610000 40960 C:\Windows\System32\rasadhlp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Remote Access AutoDial Helper 131795770645382224 0x7ffac69c0000 839680 C:\Windows\system32\WINHTTP.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Службы HTTP Windows 131795770645382224 0x7ffac6c40000 2596864 C:\Windows\WinSxS\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.14393.953_none_42151e83c686086b\COMCTL32.dll 6.10 (rs1_release_inmarket.170303-1614) Microsoft Corporation Библиотека элементов управления взаимодействия с пользователем 131795770645382224 0x7ffac79c0000 57344 C:\Windows\System32\npmproxy.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Network List Manager Proxy 131795770645382224 0x7ffac83d0000 106496 C:\Windows\SYSTEM32\dhcpcsvc.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служба DHCP-клиента 131795770645382224 0x7ffac83f0000 90112 C:\Windows\SYSTEM32\dhcpcsvc6.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиент DHCPv6 131795770645382224 0x7ffac8810000 45056 C:\Windows\SYSTEM32\WINNSI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Network Store Information RPC interface 131795770645382224 0x7ffac8cf0000 815104 C:\Windows\System32\taskschd.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Task Scheduler COM API 131795770645382224 0x7ffac8dc0000 167936 C:\Windows\system32\dbgcore.DLL 10.0.14321.1024 (debuggers(dbg).160715-1616) Microsoft Windows Core Debugging Helpers 131795770645382224 0x7ffac8df0000 1646592 C:\Windows\system32\dbghelp.dll 10.0.14321.1024 (rs1_release.160715-1616) Microsoft Windows Image Helper 131795770645382224 0x7ffac9220000 397312 C:\Windows\System32\wevtapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API настройки и использования событий 131795770645382224 0x7ffac92e0000 1269760 C:\Windows\System32\WinTypes.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL основных типов Windows 131795770645382224 0x7ffac9f10000 221184 C:\Windows\System32\netprofm.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Network List Manager 131795770645382224 0x7ffaca200000 32768 C:\Windows\System32\ReAgentTask.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Обработчик задач агента восстановления Microsoft Windows 131795770645382224 0x7ffaca210000 225280 C:\Windows\system32\RstrtMgr.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Диспетчер перезапуска 131795770645382224 0x7ffaca4e0000 77824 C:\Windows\SYSTEM32\wtsapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Remote Desktop Session Host Server SDK APIs 131795770645382224 0x7ffaca5e0000 155648 C:\Windows\system32\dwmapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Интерфейс API диспетчера окон рабочего стола (Майкрософт) 131795770645382224 0x7ffaca610000 143360 C:\Windows\System32\SAMLIB.dll 10.0.14393.82 (rs1_release.160805-1735) Microsoft Corporation SAM Library DLL 131795770645382224 0x7ffacac00000 94208 C:\Windows\system32\radarrs.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation программа устранения нехватки системных ресурсов Microsoft Windows 131795770645382224 0x7ffacaf00000 610304 C:\Windows\system32\uxtheme.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека тем UxTheme (Microsoft) 131795770645382224 0x7ffacb140000 593920 C:\Windows\SYSTEM32\msvcp110_win.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Microsoft® STL110 C++ Runtime Library 131795770645382224 0x7ffacb1e0000 1163264 C:\Windows\System32\twinapi.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation twinapi.appcore 131795770645382224 0x7ffacb420000 204800 C:\Windows\SYSTEM32\ntmarta.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик Windows NT MARTA 131795770645382224 0x7ffacb6f0000 143360 C:\Windows\SYSTEM32\gpapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиентские функции API групповой политики 131795770645382224 0x7ffacb780000 651264 C:\Windows\system32\dxgi.dll 10.0.14393.953 (rs1_release_inmarket.170303-1614) Microsoft Corporation DirectX Graphics Infrastructure 131795770645382224 0x7ffacbaf0000 495616 C:\Windows\system32\schannel.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик безопасности TLS/SSL 131795770645382224 0x7ffacbbb0000 208896 C:\Windows\system32\rsaenh.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Enhanced Cryptographic Provider 131795770645382224 0x7ffacbbf0000 40960 C:\Windows\System32\DPAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Data Protection API 131795770645382224 0x7ffacbd30000 229376 C:\Windows\SYSTEM32\IPHLPAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API вспомогательного приложения IP 131795770645382224 0x7ffacbd70000 659456 C:\Windows\system32\DNSAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Динамическая библиотека API DNS-клиента 131795770645382224 0x7ffacbe40000 126976 C:\Windows\system32\USERENV.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Userenv 131795770645382224 0x7ffacbfb0000 376832 C:\Windows\system32\mswsock.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширение поставщика службы API Microsoft Windows Sockets 2.0 131795770645382224 0x7ffacc150000 94208 C:\Windows\system32\CRYPTSP.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Cryptographic Service Provider API 131795770645382224 0x7ffacc170000 45056 C:\Windows\system32\CRYPTBASE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base cryptographic API DLL 131795770645382224 0x7ffacc1f0000 241664 C:\Windows\system32\NTASN1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft ASN.1 API 131795770645382224 0x7ffacc230000 155648 C:\Windows\system32\ncrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Маршрутизатор Windows NCrypt 131795770645382224 0x7ffacc350000 180224 C:\Windows\system32\SspiCli.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Security Support Provider Interface 131795770645382224 0x7ffacc520000 622592 C:\Windows\SYSTEM32\sxs.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Fusion 2.5 131795770645382224 0x7ffacc620000 176128 C:\Windows\system32\bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795770645382224 0x7ffacc6e0000 61440 C:\Windows\System32\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795770645382224 0x7ffacc6f0000 311296 C:\Windows\System32\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795770645382224 0x7ffacc740000 81920 C:\Windows\System32\profapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Profile Basic API 131795770645382224 0x7ffacc760000 65536 C:\Windows\System32\MSASN1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ASN.1 Runtime APIs 131795770645382224 0x7ffacc8f0000 1003520 C:\Windows\System32\ucrtbase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645382224 0x7ffacc9f0000 434176 C:\Windows\System32\bcryptPrimitives.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Cryptographic Primitives Library 131795770645382224 0x7ffacca60000 122880 C:\Windows\System32\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795770645382224 0x7ffacca80000 348160 C:\Windows\System32\WINTRUST.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation Microsoft Trust Verification APIs 131795770645382224 0x7ffaccae0000 692224 C:\Windows\System32\shcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795770645382224 0x7ffaccb90000 7180288 C:\Windows\System32\windows.storage.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API хранения Microsoft WinRT 131795770645382224 0x7ffacd270000 2215936 C:\Windows\System32\KERNELBASE.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645382224 0x7ffacd490000 1871872 C:\Windows\System32\CRYPT32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API32 криптографии 131795770645382224 0x7ffacd710000 638976 C:\Windows\System32\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645382224 0x7ffacd7b0000 270336 C:\Windows\System32\cfgmgr32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Configuration Manager DLL 131795770645382224 0x7ffacd810000 22056960 C:\Windows\System32\SHELL32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Общая библиотека оболочки Windows 131795770645382224 0x7ffaced20000 782336 C:\Windows\System32\OLEAUT32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795770645382224 0x7ffacee50000 1183744 C:\Windows\System32\RPCRT4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795770645382224 0x7ffacef80000 32768 C:\Windows\System32\NSI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation NSI User-mode interface DLL 131795770645382224 0x7ffacef90000 647168 C:\Windows\System32\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795770645382224 0x7ffacf030000 651264 C:\Windows\System32\clbcatq.dll 2001.12.10941.16384 (rs1_release.160715-1616) Microsoft Corporation COM+ Configuration Catalog 131795770645382224 0x7ffacf0d0000 704512 C:\Windows\System32\KERNEL32.DLL 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645382224 0x7ffacf1e0000 1417216 C:\Windows\System32\MSCTF.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Серверная библиотека MSCTF 131795770645382224 0x7ffacf340000 4362240 C:\Windows\System32\SETUPAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Setup API 131795770645382224 0x7ffacf770000 212992 C:\Windows\System32\GDI32.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation GDI Client DLL 131795770645382224 0x7ffacf820000 434176 C:\Windows\System32\WS2_32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation 32-разрядная библиотека Windows Socket 2.0 131795770645382224 0x7ffacf890000 188416 C:\Windows\System32\imm32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Multi-User Windows IMM32 API Client DLL 131795770645382224 0x7ffacf8c0000 1462272 C:\Windows\System32\USER32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795770645382224 0x7ffacfb30000 2916352 C:\Windows\System32\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795770645382224 0x7ffacfe00000 114688 C:\Windows\System32\imagehlp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT Image Helper 131795770645382224 0x7ffacfe20000 663552 C:\Windows\System32\ADVAPI32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795770645382224 0x7ffad0070000 1277952 C:\Windows\System32\ole32.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft OLE для Windows 131795770645382224 0x7ffad01b0000 335872 C:\Windows\System32\SHLWAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека небольших программ оболочки 131795770645382224 0x7ffad0210000 364544 C:\Windows\System32\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795770645382224 0x7ffad0270000 1908736 C:\Windows\SYSTEM32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 55 6944 664 6 00000000:0031f1da 131767576301455145 0 0 1 Обязательная метка\Низкий обязательный уровень WIN-0UOTFKKVN1S\User SkypeHost.exe C:\Program Files\WindowsApps\Microsoft.SkypeApp_12.1815.210.0_x64__kzf8qxf38zg5c\SkypeHost.exe "C:\Program Files\WindowsApps\Microsoft.SkypeApp_12.1815.210.0_x64__kzf8qxf38zg5c\SkypeHost.exe" -ServerName:SkypeHost.ServerServer Microsoft Corporation 12.1815.210.0 Microsoft Skype 131795770645382388 0x7ff7e8670000 102400 C:\Program Files\WindowsApps\Microsoft.SkypeApp_12.1815.210.0_x64__kzf8qxf38zg5c\SkypeHost.exe 12.1815.210.0 Microsoft Corporation Microsoft Skype 131795770645382388 0x7ffaae130000 22437888 C:\Program Files\WindowsApps\Microsoft.SkypeApp_12.1815.210.0_x64__kzf8qxf38zg5c\SkyWrap.dll 12.1815.210.0 Microsoft Corporation Microsoft Skype 131795770645382388 0x7ffabaab0000 94208 C:\Windows\SYSTEM32\profext.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation profext 131795770645382388 0x7ffabc530000 241664 C:\Windows\SYSTEM32\Windows.Networking.HostName.dll 10.0.14393.953 (rs1_release_inmarket.170303-1614) Microsoft Corporation Windows.Networking.HostName DLL 131795770645382388 0x7ffabca50000 819200 C:\Windows\System32\Windows.Security.Authentication.Web.Core.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Token Broker WinRT API 131795770645382388 0x7ffabe150000 2691072 C:\Program Files\WindowsApps\Microsoft.SkypeApp_12.1815.210.0_x64__kzf8qxf38zg5c\skypert.dll 2018.15.01.31 SkypeRT shared library 131795770645382388 0x7ffabea90000 135168 C:\Windows\System32\Windows.ApplicationModel.Background.SystemEventsBroker.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Background System Events Broker API Server 131795770645382388 0x7ffabeac0000 335872 C:\Windows\System32\Windows.Storage.ApplicationData.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Application Data API Server 131795770645382388 0x7ffac0470000 1478656 C:\Windows\SYSTEM32\MFPlat.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Media Foundation Platform DLL 131795770645382388 0x7ffac0910000 724992 C:\Windows\SYSTEM32\Windows.Networking.Connectivity.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Networking Connectivity Runtime DLL 131795770645382388 0x7ffac0bf0000 3559424 C:\Windows\System32\ActXPrxy.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation ActiveX Interface Marshaling Library 131795770645382388 0x7ffac1a80000 978944 C:\Windows\SYSTEM32\Windows.Networking.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows.Networking DLL 131795770645382388 0x7ffac1b90000 630784 C:\Program Files\WindowsApps\Microsoft.VCLibs.140.00_14.0.25426.0_x64__8wekyb3d8bbwe\MSVCP140_APP.dll 14.11.25426.0 built by: VCTOOLSREL Microsoft Corporation Microsoft® C Runtime Library 131795770645382388 0x7ffac1e50000 188416 C:\Windows\SYSTEM32\RTWorkQ.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL для WorkQueue реального времени 131795770645382388 0x7ffac23c0000 331776 C:\Windows\System32\OneCoreCommonProxyStub.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation OneCore Common Proxy Stub 131795770645382388 0x7ffac2b30000 286720 C:\Windows\System32\usermgrproxy.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation UserMgrProxy 131795770645382388 0x7ffac2c30000 135168 C:\Windows\SYSTEM32\clipc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиент платформы лицензирования клиента 131795770645382388 0x7ffac3cb0000 2772992 C:\Windows\System32\iertutil.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служебная программа времени выполнения для Internet Explorer 131795770645382388 0x7ffac4b10000 307200 C:\Program Files\WindowsApps\Microsoft.VCLibs.140.00_14.0.25426.0_x64__8wekyb3d8bbwe\CONCRT140_APP.dll 14.11.25426.0 built by: VCTOOLSREL Microsoft Corporation Microsoft® Concurrency Runtime Library 131795770645382388 0x7ffac4c60000 385024 C:\Program Files\WindowsApps\Microsoft.VCLibs.140.00_14.0.25426.0_x64__8wekyb3d8bbwe\vccorlib140_app.DLL 14.11.25426.0 built by: VCTOOLSREL Microsoft Corporation Microsoft ® VC WinRT core library 131795770645382388 0x7ffac5070000 798720 C:\Windows\System32\Windows.Web.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL веб-клиента 131795770645382388 0x7ffac6620000 192512 C:\Windows\System32\biwinrt.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation Windows Background Broker Infrastructure 131795770645382388 0x7ffac7580000 1077248 C:\Windows\SYSTEM32\mrmcorer.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Windows MRM 131795770645382388 0x7ffac7720000 1601536 C:\Windows\System32\OneCoreUAPCommonProxyStub.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation OneCoreUAP Common Proxy Stub 131795770645382388 0x7ffac7c80000 208896 C:\Program Files\WindowsApps\Microsoft.SkypeApp_12.1815.210.0_x64__kzf8qxf38zg5c\SkypeBackgroundTasks.dll 12.1815.210.0 Microsoft Corporation Microsoft Skype 131795770645382388 0x7ffac7d80000 49152 C:\Windows\System32\Windows.ApplicationModel.Background.TimeBroker.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Background Time Broker API Server 131795770645382388 0x7ffac8540000 286720 C:\Windows\System32\vaultcli.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиентская библиотека хранилища учетных данных 131795770645382388 0x7ffac92e0000 1269760 C:\Windows\System32\WinTypes.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL основных типов Windows 131795770645382388 0x7ffaca260000 45056 C:\Windows\SYSTEM32\SystemEventsBrokerClient.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation system Events Broker Client Library 131795770645382388 0x7ffaca340000 1593344 C:\Windows\SYSTEM32\PROPSYS.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Система страниц свойств (Майкрософт) 131795770645382388 0x7ffacab80000 90112 C:\Program Files\WindowsApps\Microsoft.VCLibs.140.00_14.0.25426.0_x64__8wekyb3d8bbwe\VCRUNTIME140_APP.dll 14.11.25426.0 built by: VCTOOLSREL Microsoft Corporation Microsoft® C Runtime Library 131795770645382388 0x7ffacb1e0000 1163264 C:\Windows\SYSTEM32\twinapi.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation twinapi.appcore 131795770645382388 0x7ffacb360000 176128 C:\Windows\SYSTEM32\fwbase.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Firewall Base DLL 131795770645382388 0x7ffacb420000 204800 C:\Windows\SYSTEM32\ntmarta.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик Windows NT MARTA 131795770645382388 0x7ffacb460000 548864 C:\Windows\SYSTEM32\FirewallAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API брандмауэра Windows 131795770645382388 0x7ffacbbf0000 40960 C:\Windows\SYSTEM32\DPAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Data Protection API 131795770645382388 0x7ffacbd30000 229376 C:\Windows\SYSTEM32\IPHLPAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API вспомогательного приложения IP 131795770645382388 0x7ffacbe40000 126976 C:\Windows\SYSTEM32\USERENV.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Userenv 131795770645382388 0x7ffacc170000 45056 C:\Windows\SYSTEM32\CRYPTBASE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base cryptographic API DLL 131795770645382388 0x7ffacc620000 176128 C:\Windows\SYSTEM32\bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795770645382388 0x7ffacc6e0000 61440 C:\Windows\System32\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795770645382388 0x7ffacc6f0000 311296 C:\Windows\System32\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795770645382388 0x7ffacc740000 81920 C:\Windows\System32\profapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Profile Basic API 131795770645382388 0x7ffacc760000 65536 C:\Windows\System32\MSASN1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ASN.1 Runtime APIs 131795770645382388 0x7ffacc8f0000 1003520 C:\Windows\System32\ucrtbase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645382388 0x7ffacc9f0000 434176 C:\Windows\System32\bcryptPrimitives.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Cryptographic Primitives Library 131795770645382388 0x7ffacca60000 122880 C:\Windows\System32\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795770645382388 0x7ffaccae0000 692224 C:\Windows\System32\shcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795770645382388 0x7ffaccb90000 7180288 C:\Windows\System32\windows.storage.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API хранения Microsoft WinRT 131795770645382388 0x7ffacd270000 2215936 C:\Windows\System32\KERNELBASE.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645382388 0x7ffacd490000 1871872 C:\Windows\System32\CRYPT32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API32 криптографии 131795770645382388 0x7ffacd710000 638976 C:\Windows\System32\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645382388 0x7ffacd7b0000 270336 C:\Windows\System32\cfgmgr32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Configuration Manager DLL 131795770645382388 0x7ffaced20000 782336 C:\Windows\System32\OLEAUT32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795770645382388 0x7ffacee50000 1183744 C:\Windows\System32\RPCRT4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795770645382388 0x7ffacef90000 647168 C:\Windows\System32\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795770645382388 0x7ffacf0d0000 704512 C:\Windows\System32\KERNEL32.DLL 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645382388 0x7ffacf770000 212992 C:\Windows\System32\GDI32.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation GDI Client DLL 131795770645382388 0x7ffacf820000 434176 C:\Windows\System32\WS2_32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation 32-разрядная библиотека Windows Socket 2.0 131795770645382388 0x7ffacf890000 188416 C:\Windows\System32\IMM32.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Multi-User Windows IMM32 API Client DLL 131795770645382388 0x7ffacf8c0000 1462272 C:\Windows\System32\USER32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795770645382388 0x7ffacfb30000 2916352 C:\Windows\System32\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795770645382388 0x7ffacfe20000 663552 C:\Windows\System32\advapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795770645382388 0x7ffad01b0000 335872 C:\Windows\System32\shlwapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека небольших программ оболочки 131795770645382388 0x7ffad0210000 364544 C:\Windows\System32\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795770645382388 0x7ffad0270000 1908736 C:\Windows\SYSTEM32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 56 1048 580 4 00000000:000003e7 131768729449405953 0 0 1 Обязательная метка\Обязательный уровень системы NT AUTHORITY\СИСТЕМА sedsvc.exe C:\Program Files\rempl\sedsvc.exe "C:\Program Files\rempl\sedsvc.exe" Microsoft Corporation 10.0.16299.10000 (WinBuild.160101.0800) sedsvc 131795770645382485 0x7ff751430000 307200 C:\Program Files\rempl\sedsvc.exe 10.0.16299.10000 (WinBuild.160101.0800) Microsoft Corporation sedsvc 131795770645382485 0x7ffabf5d0000 2924544 C:\Windows\SYSTEM32\WININET.dll 11.00.14393.447 (rs1_release_inmarket.161102-0100) Microsoft Corporation Расширения Интернета для Win32 131795770645382485 0x7ffac2b80000 40960 C:\Windows\SYSTEM32\VERSION.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Version Checking and File Installation Libraries 131795770645382485 0x7ffac69c0000 839680 C:\Windows\SYSTEM32\WINHTTP.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Службы HTTP Windows 131795770645382485 0x7ffac8cf0000 815104 C:\Windows\System32\taskschd.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Task Scheduler COM API 131795770645382485 0x7ffaca4e0000 77824 C:\Windows\SYSTEM32\WTSAPI32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Remote Desktop Session Host Server SDK APIs 131795770645382485 0x7ffacb6f0000 143360 C:\Windows\SYSTEM32\gpapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиентские функции API групповой политики 131795770645382485 0x7ffacbbb0000 208896 C:\Windows\system32\rsaenh.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Enhanced Cryptographic Provider 131795770645382485 0x7ffacc150000 94208 C:\Windows\SYSTEM32\CRYPTSP.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Cryptographic Service Provider API 131795770645382485 0x7ffacc170000 45056 C:\Windows\SYSTEM32\CRYPTBASE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base cryptographic API DLL 131795770645382485 0x7ffacc350000 180224 C:\Windows\System32\SspiCli.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Security Support Provider Interface 131795770645382485 0x7ffacc620000 176128 C:\Windows\SYSTEM32\bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795770645382485 0x7ffacc6e0000 61440 C:\Windows\System32\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795770645382485 0x7ffacc6f0000 311296 C:\Windows\System32\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795770645382485 0x7ffacc740000 81920 C:\Windows\System32\profapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Profile Basic API 131795770645382485 0x7ffacc760000 65536 C:\Windows\System32\MSASN1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ASN.1 Runtime APIs 131795770645382485 0x7ffacc8f0000 1003520 C:\Windows\System32\ucrtbase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645382485 0x7ffacc9f0000 434176 C:\Windows\System32\bcryptPrimitives.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Cryptographic Primitives Library 131795770645382485 0x7ffacca60000 122880 C:\Windows\System32\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795770645382485 0x7ffacca80000 348160 C:\Windows\System32\WINTRUST.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation Microsoft Trust Verification APIs 131795770645382485 0x7ffaccae0000 692224 C:\Windows\System32\shcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795770645382485 0x7ffaccb90000 7180288 C:\Windows\System32\windows.storage.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API хранения Microsoft WinRT 131795770645382485 0x7ffacd270000 2215936 C:\Windows\System32\KERNELBASE.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645382485 0x7ffacd490000 1871872 C:\Windows\System32\CRYPT32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API32 криптографии 131795770645382485 0x7ffacd710000 638976 C:\Windows\System32\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645382485 0x7ffacd7b0000 270336 C:\Windows\System32\cfgmgr32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Configuration Manager DLL 131795770645382485 0x7ffacd810000 22056960 C:\Windows\System32\SHELL32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Общая библиотека оболочки Windows 131795770645382485 0x7ffaced20000 782336 C:\Windows\System32\OLEAUT32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795770645382485 0x7ffacee50000 1183744 C:\Windows\System32\RPCRT4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795770645382485 0x7ffacef90000 647168 C:\Windows\System32\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795770645382485 0x7ffacf030000 651264 C:\Windows\System32\clbcatq.dll 2001.12.10941.16384 (rs1_release.160715-1616) Microsoft Corporation COM+ Configuration Catalog 131795770645382485 0x7ffacf0d0000 704512 C:\Windows\System32\KERNEL32.DLL 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645382485 0x7ffacf340000 4362240 C:\Windows\System32\setupapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Setup API 131795770645382485 0x7ffacf770000 212992 C:\Windows\System32\GDI32.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation GDI Client DLL 131795770645382485 0x7ffacf8c0000 1462272 C:\Windows\System32\USER32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795770645382485 0x7ffacfb30000 2916352 C:\Windows\System32\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795770645382485 0x7ffacfe00000 114688 C:\Windows\System32\imagehlp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT Image Helper 131795770645382485 0x7ffacfe20000 663552 C:\Windows\System32\advapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795770645382485 0x7ffad01b0000 335872 C:\Windows\System32\shlwapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека небольших программ оболочки 131795770645382485 0x7ffad0210000 364544 C:\Windows\System32\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795770645382485 0x7ffad0270000 1908736 C:\Windows\SYSTEM32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 57 7744 3108 11 00000000:0031f1da 131769081112364684 0 0 0 Обязательная метка\Средний обязательный уровень WIN-0UOTFKKVN1S\User browser.exe C:\Users\User\AppData\Local\Yandex\YandexBrowser\Application\browser.exe "C:\Users\User\AppData\Local\Yandex\YandexBrowser\Application\browser.exe" YANDEX LLC 18.6.1.770 Yandex 131795770645382623 0x10e0000 2519040 C:\Users\User\AppData\Local\Yandex\YandexBrowser\Application\browser.exe 18.6.1.770 YANDEX LLC Yandex 131795770645382623 0x11330000 172032 C:\Windows\SysWOW64\RTWorkQ.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL для WorkQueue реального времени 131795770645382623 0x5c020000 335872 C:\Windows\System32\wow64.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation Win32 Emulation on NT64 131795770645382623 0x5c080000 487424 C:\Windows\System32\wow64win.dll 10.0.14393.1884 (rs1_release.171101-1233) Microsoft Corporation Wow64 Console and Win32 API Logging 131795770645382623 0x5c100000 40960 C:\Windows\System32\wow64cpu.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation AMD64 Wow64 CPU 131795770645382623 0x5fec0000 794624 C:\Windows\SysWOW64\wbem\fastprox.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation WMI Custom Marshaller 131795770645382623 0x5ffa0000 421888 C:\Windows\SysWOW64\wbemcomn.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation WMI 131795770645382623 0x60010000 53248 C:\Windows\SysWOW64\wbem\wbemprox.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation WMI 131795770645382623 0x60750000 1556480 C:\Program Files (x86)\360\Total Security\safemon\safemon.dll 8, 4, 0, 1420 Qihu 360 Software Co., Ltd. 360 Internet Security Internet Protection 131795770645382623 0x60900000 720896 C:\Program Files (x86)\360\Total Security\safemon\urlproc.dll 2, 9, 5, 1260 Qihu 360 Software Co., Ltd. 360 Internet Security 2013 Internet Protection 131795770645382623 0x622f0000 520192 C:\Program Files (x86)\360\Total Security\deepscan\heavygate.dll 3, 8, 11, 1 Qihu 360 Software Co., Ltd. 360 Total Security Cloud Security 131795770645382623 0x62980000 376832 C:\Program Files (x86)\360\Total Security\360NetBase.dll 7, 25, 0, 76 360.cn 360安全卫士 网络基础模块 131795770645382623 0x68b00000 44998656 C:\Users\User\AppData\Local\Yandex\YandexBrowser\Application\18.6.1.770\browser.dll 18.6.1.770 YANDEX LLC Yandex 131795770645382623 0x6b6b0000 36864 C:\Windows\SysWOW64\atlthunk.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation atlthunk.dll 131795770645382623 0x6b6d0000 102400 C:\Program Files (x86)\360\Total Security\I18N.dll 1, 0, 0, 1016 Qihu 360 Software Co., Ltd. 360 Total Security 131795770645382623 0x6bf00000 3715072 C:\Windows\SysWOW64\msi.dll 5.0.14393.2155 Microsoft Corporation Windows Installer 131795770645382623 0x6c290000 987136 C:\Windows\SysWOW64\twinapi.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation twinapi.appcore 131795770645382623 0x6c390000 1126400 C:\Windows\SysWOW64\dcomp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft DirectComposition Library 131795770645382623 0x6c4b0000 278528 C:\Windows\SysWOW64\dataexchange.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation Data exchange 131795770645382623 0x6c540000 483328 C:\Windows\SysWOW64\webio.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API протоколов передачи по Веб 131795770645382623 0x6cd50000 106496 C:\Windows\SysWOW64\SAMLIB.dll 10.0.14393.82 (rs1_release.160805-1735) Microsoft Corporation SAM Library DLL 131795770645382623 0x6ce30000 421888 C:\Windows\SysWOW64\msvcp110_win.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Microsoft® STL110 C++ Runtime Library 131795770645382623 0x6cf60000 569344 C:\Windows\SysWOW64\taskschd.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Task Scheduler COM API 131795770645382623 0x6d080000 151552 C:\Windows\SysWOW64\cryptnet.dll 10.0.14393.2035 (rs1_release_inmarket.180110-1910) Microsoft Corporation Crypto Network Related API 131795770645382623 0x6d0b0000 847872 C:\Windows\SysWOW64\wintypes.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL основных типов Windows 131795770645382623 0x6dc80000 90112 C:\Program Files (x86)\Windows Defender\MpOav.dll 4.10.14393.1794 (rs1_release.171008-1615) Microsoft Corporation IOfficeAntiVirus Module 131795770645382623 0x6df70000 245760 C:\Windows\SysWOW64\shdocvw.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека объектов документов и элементов управления оболочки 131795770645382623 0x6e070000 98304 C:\Windows\SysWOW64\MSACM32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Фильтр диспетчера аудиосжатия Microsoft 131795770645382623 0x6e090000 233472 C:\Windows\SysWOW64\wdmaud.drv 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Системный звуковой драйвер Winmm 131795770645382623 0x6e110000 32768 C:\Windows\SysWOW64\midimap.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft MIDI Mapper 131795770645382623 0x6e120000 40960 C:\Windows\SysWOW64\msacm32.drv 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Программа переназначения звуковых устройств 131795770645382623 0x6e130000 36864 C:\Windows\SysWOW64\AVRT.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Multimedia Realtime Runtime 131795770645382623 0x6e2a0000 4440064 C:\Windows\SysWOW64\explorerframe.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ExplorerFrame 131795770645382623 0x6e8b0000 1859584 C:\Windows\SysWOW64\mfmp4srcsnk.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL источника и приемника MPEG4 Media Foundation 131795770645382623 0x6eb60000 28672 C:\Windows\SysWOW64\ksuser.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User CSA Library 131795770645382623 0x6eb70000 790528 C:\Windows\SysWOW64\ntshrui.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширения оболочки, обеспечивающие общий доступ 131795770645382623 0x6ec40000 442368 C:\Windows\SysWOW64\twinapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation twinapi 131795770645382623 0x6eed0000 274432 C:\Windows\SysWOW64\thumbcache.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Кэш эскизов Майкрософт 131795770645382623 0x6ef30000 647168 C:\Windows\SysWOW64\evr.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека DLL средства отображения видео 131795770645382623 0x6efd0000 458752 C:\Windows\SysWOW64\msauddecmft.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Media Foundation Audio Decoders 131795770645382623 0x6f790000 1085440 C:\Windows\SysWOW64\mfperfhelper.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation MFPerf DLL 131795770645382623 0x6f8a0000 2220032 C:\Windows\SysWOW64\msmpeg2vdec.dll 10.0.14393.953 (rs1_release_inmarket.170303-1614) Microsoft Corporation Microsoft DTV-DVD Video Decoder 131795770645382623 0x6fac0000 1130496 C:\Windows\SysWOW64\mfplat.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Media Foundation Platform DLL 131795770645382623 0x6fc70000 385024 C:\Windows\SysWOW64\FirewallAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API брандмауэра Windows 131795770645382623 0x6fd00000 73728 C:\Windows\SysWOW64\mssprxy.dll 7.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation Microsoft Search Proxy 131795770645382623 0x6fd20000 61440 C:\Windows\SysWOW64\cscapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Offline Files Win32 API 131795770645382623 0x6fd30000 139264 C:\Windows\SysWOW64\DEVOBJ.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Device Information Set DLL 131795770645382623 0x6fd60000 360448 C:\Windows\SysWOW64\MMDevAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation MMDevice API 131795770645382623 0x6fdc0000 507904 C:\Windows\SysWOW64\audioses.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Сеанс обработки звука 131795770645382623 0x6fe40000 57344 C:\Windows\SysWOW64\BitsProxy.dll 7.8.14393.0 (rs1_release.160715-1616) Microsoft Corporation Background Intelligent Transfer Service Proxy 131795770645382623 0x6fe50000 241664 C:\Windows\SysWOW64\mstask.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека интерфейса планировщика заданий 131795770645382623 0x6fe90000 544768 C:\Windows\SysWOW64\mscms.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL-библиотека системы сопоставления цветов Майкрософт 131795770645382623 0x6ff90000 323584 C:\Windows\SysWOW64\wlanapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows WLAN AutoConfig Client Side API DLL 131795770645382623 0x6ffe0000 303104 C:\Windows\SysWOW64\wevtapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API настройки и использования событий 131795770645382623 0x70030000 593920 C:\Users\User\AppData\Local\Yandex\YandexBrowser\Application\18.6.1.770\browser_elf.dll 18.6.1.770 YANDEX LLC Yandex 131795770645382623 0x70140000 274432 C:\Windows\SysWOW64\WINSTA.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Winstation Library 131795770645382623 0x70190000 53248 C:\Windows\SysWOW64\LINKINFO.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Volume Tracking 131795770645382623 0x701a0000 401408 C:\Users\User\AppData\Local\Yandex\YandexBrowser\Application\18.6.1.770\dllyupdate.dll 1.2.0.1831 Yandex LLC Yandex updater (CU) 131795770645382623 0x70340000 536576 C:\Windows\SysWOW64\dxgi.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation DirectX Graphics Infrastructure 131795770645382623 0x703d0000 2056192 C:\Windows\SysWOW64\DWrite.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Службы Microsoft DirectX Typography 131795770645382623 0x705e0000 344064 C:\Windows\SysWOW64\OLEACC.dll 7.2.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Active Accessibility Core Component 131795770645382623 0x70640000 1499136 C:\Windows\SysWOW64\WindowsCodecs.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Microsoft Windows Codecs Library 131795770645382623 0x707d0000 86016 C:\Windows\SysWOW64\SAMCLI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Security Accounts Manager Client DLL 131795770645382623 0x70a20000 94208 C:\Windows\SysWOW64\USP10.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Uniscribe Unicode script processor 131795770645382623 0x70a40000 81920 C:\Windows\SysWOW64\NLAapi.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Network Location Awareness 2 131795770645382623 0x70b00000 176128 C:\Windows\SysWOW64\wscapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API центра обеспечения безопасности Windows 131795770645382623 0x70b30000 36864 C:\Windows\SysWOW64\WINUSB.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows USB Driver User Library 131795770645382623 0x70b60000 40960 C:\Windows\SysWOW64\HID.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека пользователя HID 131795770645382623 0x70b70000 163840 C:\Windows\SysWOW64\ntmarta.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик Windows NT MARTA 131795770645382623 0x70ba0000 188416 C:\Windows\SysWOW64\FWPolicyIOMgr.dll 10.0.14393.2189 (rs1_release.180329-1711) Microsoft Corporation FwPolicyIoMgr DLL 131795770645382623 0x70bd0000 147456 C:\Windows\SysWOW64\fwbase.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Firewall Base DLL 131795770645382623 0x70c30000 114688 C:\Windows\SysWOW64\srvcli.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Server Service Client DLL 131795770645382623 0x70ca0000 45056 C:\Windows\SysWOW64\NETUTILS.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API Helpers DLL 131795770645382623 0x70cc0000 65536 C:\Windows\SysWOW64\ondemandconnroutehelper.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation On Demand Connctiond Route Helper 131795770645382623 0x70e60000 176128 C:\Windows\SysWOW64\NTASN1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft ASN.1 API 131795770645382623 0x70fd0000 1331200 C:\Windows\SysWOW64\dbghelp.dll 10.0.14321.1024 (rs1_release.160715-1616) Microsoft Windows Image Helper 131795770645382623 0x71140000 77824 C:\Windows\SysWOW64\NETAPI32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API DLL 131795770645382623 0x711f0000 32768 C:\Windows\SysWOW64\IconCodecService.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Converts a PNG part of the icon to a legacy bmp icon 131795770645382623 0x71610000 77824 C:\Windows\SysWOW64\dhcpcsvc6.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиент DHCPv6 131795770645382623 0x724f0000 57344 C:\Windows\SysWOW64\credui.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Credential Manager User Interface 131795770645382623 0x725e0000 2273280 C:\Windows\SysWOW64\iertutil.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служебная программа времени выполнения для Internet Explorer 131795770645382623 0x728e0000 1372160 C:\Windows\SysWOW64\PROPSYS.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Система страниц свойств (Майкрософт) 131795770645382623 0x72b90000 126976 C:\Windows\SysWOW64\dwmapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Интерфейс API диспетчера окон рабочего стола (Майкрософт) 131795770645382623 0x72cc0000 1658880 C:\Windows\SysWOW64\urlmon.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширения OLE32 для Win32 131795770645382623 0x73a40000 32768 C:\Windows\SysWOW64\WINNSI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Network Store Information RPC interface 131795770645382623 0x73a50000 299008 C:\Windows\SysWOW64\fwpuclnt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API пользовательского режима FWP/IPsec 131795770645382623 0x73aa0000 32768 C:\Windows\SysWOW64\DPAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Data Protection API 131795770645382623 0x73ab0000 32768 C:\Windows\SysWOW64\rasadhlp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Remote Access AutoDial Helper 131795770645382623 0x73ac0000 81920 C:\Windows\SysWOW64\dhcpcsvc.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служба DHCP-клиента 131795770645382623 0x73ae0000 40960 C:\Windows\SysWOW64\Secur32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Security Support Provider Interface 131795770645382623 0x73ee0000 61440 C:\Windows\SysWOW64\WTSAPI32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Remote Desktop Session Host Server SDK APIs 131795770645382623 0x73f00000 192512 C:\Windows\SysWOW64\IPHLPAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API вспомогательного приложения IP 131795770645382623 0x73f30000 512000 C:\Windows\SysWOW64\DNSAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Динамическая библиотека API DNS-клиента 131795770645382623 0x73ff0000 319488 C:\Windows\SysWOW64\mswsock.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширение поставщика службы API Microsoft Windows Sockets 2.0 131795770645382623 0x74040000 126976 C:\Windows\SysWOW64\gpapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиентские функции API групповой политики 131795770645382623 0x74060000 192512 C:\Windows\SysWOW64\rsaenh.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Enhanced Cryptographic Provider 131795770645382623 0x74110000 479232 C:\Windows\SysWOW64\uxtheme.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека тем UxTheme (Microsoft) 131795770645382623 0x74190000 110592 C:\Windows\SysWOW64\bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795770645382623 0x741b0000 77824 C:\Windows\SysWOW64\CRYPTSP.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Cryptographic Service Provider API 131795770645382623 0x741f0000 143360 C:\Windows\SysWOW64\WINMMBASE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base Multimedia Extension API DLL 131795770645382623 0x74230000 147456 C:\Windows\SysWOW64\WINMM.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation MCI API DLL 131795770645382623 0x74260000 2514944 C:\Windows\SysWOW64\WININET.dll 11.00.14393.447 (rs1_release_inmarket.161102-0100) Microsoft Corporation Расширения Интернета для Win32 131795770645382623 0x744d0000 2138112 C:\Windows\WinSxS\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.14393.953_none_89c2555adb023171\COMCTL32.dll 6.10 (rs1_release_inmarket.170303-1614) Microsoft Corporation Библиотека элементов управления взаимодействия с пользователем 131795770645382623 0x746e0000 32768 C:\Windows\SysWOW64\VERSION.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Version Checking and File Installation Libraries 131795770645382623 0x746f0000 106496 C:\Windows\SysWOW64\USERENV.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Userenv 131795770645382623 0x74730000 598016 C:\Windows\SysWOW64\apphelp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиентская библиотека совместимости приложений 131795770645382623 0x747d0000 40960 C:\Windows\SysWOW64\CRYPTBASE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base cryptographic API DLL 131795770645382623 0x747e0000 126976 C:\Windows\SysWOW64\SspiCli.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Security Support Provider Interface 131795770645382623 0x74800000 151552 C:\Windows\SysWOW64\IMM32.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Multi-User Windows IMM32 API Client DLL 131795770645382623 0x74910000 2170880 C:\Windows\SysWOW64\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795770645382623 0x74b30000 53248 C:\Windows\SysWOW64\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795770645382623 0x74b40000 102400 C:\Windows\SysWOW64\imagehlp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT Image Helper 131795770645382623 0x74b60000 790528 C:\Windows\SysWOW64\RPCRT4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795770645382623 0x74c30000 1417216 C:\Windows\SysWOW64\gdi32full.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation GDI Client DLL 131795770645382623 0x74d90000 24576 C:\Windows\SysWOW64\PSAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Process Status Helper 131795770645382623 0x74da0000 778240 C:\Windows\SysWOW64\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795770645382623 0x74e60000 557056 C:\Windows\SysWOW64\shcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795770645382623 0x74ef0000 540672 C:\Windows\SysWOW64\clbcatq.dll 2001.12.10941.16384 (rs1_release.160715-1616) Microsoft Corporation COM+ Configuration Catalog 131795770645382623 0x74f80000 278528 C:\Windows\SysWOW64\WINTRUST.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation Microsoft Trust Verification APIs 131795770645382623 0x74fd0000 405504 C:\Windows\SysWOW64\WS2_32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation 32-разрядная библиотека Windows Socket 2.0 131795770645382623 0x75040000 282624 C:\Windows\SysWOW64\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795770645382623 0x75090000 1265664 C:\Windows\SysWOW64\MSCTF.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Серверная библиотека MSCTF 131795770645382623 0x751d0000 57344 C:\Windows\SysWOW64\MSASN1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ASN.1 Runtime APIs 131795770645382623 0x751e0000 1708032 C:\Windows\SysWOW64\KERNELBASE.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645382623 0x75390000 266240 C:\Windows\SysWOW64\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795770645382623 0x753e0000 1560576 C:\Windows\SysWOW64\CRYPT32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API32 криптографии 131795770645382623 0x75560000 487424 C:\Windows\SysWOW64\ADVAPI32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795770645382623 0x756c0000 5693440 C:\Windows\SysWOW64\windows.storage.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API хранения Microsoft WinRT 131795770645382623 0x75c30000 372736 C:\Windows\SysWOW64\coml2.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft COM for Windows 131795770645382623 0x75c90000 286720 C:\Windows\SysWOW64\shlwapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека небольших программ оболочки 131795770645382623 0x75ce0000 20811776 C:\Windows\SysWOW64\SHELL32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Общая библиотека оболочки Windows 131795770645382623 0x774d0000 86016 C:\Windows\SysWOW64\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795770645382623 0x774f0000 61440 C:\Windows\SysWOW64\profapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Profile Basic API 131795770645382623 0x77560000 1437696 C:\Windows\SysWOW64\USER32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795770645382623 0x776c0000 368640 C:\Windows\SysWOW64\bcryptPrimitives.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation Windows Cryptographic Primitives Library 131795770645382623 0x77780000 503808 C:\Windows\SysWOW64\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645382623 0x77800000 606208 C:\Windows\SysWOW64\OLEAUT32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795770645382623 0x77ac0000 966656 C:\Windows\SysWOW64\ole32.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft OLE для Windows 131795770645382623 0x77bb0000 176128 C:\Windows\SysWOW64\GDI32.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation GDI Client DLL 131795770645382623 0x77cd0000 221184 C:\Windows\SysWOW64\cfgmgr32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Configuration Manager DLL 131795770645382623 0x77d10000 28672 C:\Windows\SysWOW64\NSI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation NSI User-mode interface DLL 131795770645382623 0x77d20000 1585152 C:\Windows\SysWOW64\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 131795770645382623 0x7ffad0270000 1908736 C:\Windows\SYSTEM32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 58 5696 7744 57 00000000:0031f1da 131769081114193232 0 0 0 Обязательная метка\Средний обязательный уровень WIN-0UOTFKKVN1S\User browser.exe C:\Users\User\AppData\Local\Yandex\YandexBrowser\Application\browser.exe C:\Users\User\AppData\Local\Yandex\YandexBrowser\Application\browser.exe --type=crashpad-handler "--user-data-dir=C:\Users\User\AppData\Local\Yandex\YandexBrowser\User Data" /prefetch:7 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Users\User\AppData\Local\Yandex\YandexBrowser\User Data\Crashpad" "--metrics-dir=C:\Users\User\AppData\Local\Yandex\YandexBrowser\User Data" --url=https://crash-reports.browser.yandex.net/submit --annotation=machine_id=c46245ef0fec9d5c44d2fa20241f2070 --annotation=main_process_pid=7744 --annotation=metrics_client_id=520f4dd3247d4cdfb744f32b1130b1bf --annotation=plat=Win32 --annotation=prod=Yandex --annotation=ver=18.6.1.770 --initial-client-data=0x1c4,0x1cc,0x1d0,0x1c0,0x1d4,0x700b800c,0x700b7ffc,0x700b7fe0,0x1c8 YANDEX LLC 18.6.1.770 Yandex 131795770645382726 0x10e0000 2519040 C:\Users\User\AppData\Local\Yandex\YandexBrowser\Application\browser.exe 18.6.1.770 YANDEX LLC Yandex 131795770645382726 0x5c020000 335872 C:\Windows\System32\wow64.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation Win32 Emulation on NT64 131795770645382726 0x5c080000 487424 C:\Windows\System32\wow64win.dll 10.0.14393.1884 (rs1_release.171101-1233) Microsoft Corporation Wow64 Console and Win32 API Logging 131795770645382726 0x5c100000 40960 C:\Windows\System32\wow64cpu.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation AMD64 Wow64 CPU 131795770645382726 0x60750000 1556480 C:\Program Files (x86)\360\Total Security\safemon\safemon.dll 8, 4, 0, 1420 Qihu 360 Software Co., Ltd. 360 Internet Security Internet Protection 131795770645382726 0x70030000 593920 C:\Users\User\AppData\Local\Yandex\YandexBrowser\Application\18.6.1.770\browser_elf.dll 18.6.1.770 YANDEX LLC Yandex 131795770645382726 0x70b70000 163840 C:\Windows\SysWOW64\ntmarta.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик Windows NT MARTA 131795770645382726 0x70ca0000 45056 C:\Windows\SysWOW64\NETUTILS.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API Helpers DLL 131795770645382726 0x70cb0000 65536 C:\Windows\SysWOW64\WKSCLI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Workstation Service Client DLL 131795770645382726 0x71140000 77824 C:\Windows\SysWOW64\NETAPI32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API DLL 131795770645382726 0x72b90000 126976 C:\Windows\SysWOW64\dwmapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Интерфейс API диспетчера окон рабочего стола (Майкрософт) 131795770645382726 0x74110000 479232 C:\Windows\SysWOW64\uxtheme.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека тем UxTheme (Microsoft) 131795770645382726 0x74190000 110592 C:\Windows\SysWOW64\bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795770645382726 0x741f0000 143360 C:\Windows\SysWOW64\WINMMBASE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base Multimedia Extension API DLL 131795770645382726 0x74230000 147456 C:\Windows\SysWOW64\WINMM.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation MCI API DLL 131795770645382726 0x746e0000 32768 C:\Windows\SysWOW64\VERSION.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Version Checking and File Installation Libraries 131795770645382726 0x746f0000 106496 C:\Windows\SysWOW64\USERENV.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Userenv 131795770645382726 0x747d0000 40960 C:\Windows\SysWOW64\CRYPTBASE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base cryptographic API DLL 131795770645382726 0x747e0000 126976 C:\Windows\SysWOW64\SspiCli.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Security Support Provider Interface 131795770645382726 0x74800000 151552 C:\Windows\SysWOW64\IMM32.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Multi-User Windows IMM32 API Client DLL 131795770645382726 0x74910000 2170880 C:\Windows\SysWOW64\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795770645382726 0x74b30000 53248 C:\Windows\SysWOW64\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795770645382726 0x74b60000 790528 C:\Windows\SysWOW64\RPCRT4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795770645382726 0x74c30000 1417216 C:\Windows\SysWOW64\gdi32full.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation GDI Client DLL 131795770645382726 0x74d90000 24576 C:\Windows\SysWOW64\PSAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Process Status Helper 131795770645382726 0x74da0000 778240 C:\Windows\SysWOW64\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795770645382726 0x74e60000 557056 C:\Windows\SysWOW64\shcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795770645382726 0x74fd0000 405504 C:\Windows\SysWOW64\WS2_32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation 32-разрядная библиотека Windows Socket 2.0 131795770645382726 0x75040000 282624 C:\Windows\SysWOW64\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795770645382726 0x75090000 1265664 C:\Windows\SysWOW64\MSCTF.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Серверная библиотека MSCTF 131795770645382726 0x751e0000 1708032 C:\Windows\SysWOW64\KERNELBASE.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645382726 0x75390000 266240 C:\Windows\SysWOW64\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795770645382726 0x75560000 487424 C:\Windows\SysWOW64\ADVAPI32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795770645382726 0x756c0000 5693440 C:\Windows\SysWOW64\windows.storage.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API хранения Microsoft WinRT 131795770645382726 0x75c90000 286720 C:\Windows\SysWOW64\shlwapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека небольших программ оболочки 131795770645382726 0x75ce0000 20811776 C:\Windows\SysWOW64\SHELL32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Общая библиотека оболочки Windows 131795770645382726 0x774d0000 86016 C:\Windows\SysWOW64\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795770645382726 0x774f0000 61440 C:\Windows\SysWOW64\profapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Profile Basic API 131795770645382726 0x77560000 1437696 C:\Windows\SysWOW64\USER32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795770645382726 0x776c0000 368640 C:\Windows\SysWOW64\bcryptPrimitives.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation Windows Cryptographic Primitives Library 131795770645382726 0x77780000 503808 C:\Windows\SysWOW64\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645382726 0x77800000 606208 C:\Windows\SysWOW64\OLEAUT32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795770645382726 0x77ac0000 966656 C:\Windows\SysWOW64\ole32.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft OLE для Windows 131795770645382726 0x77bb0000 176128 C:\Windows\SysWOW64\GDI32.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation GDI Client DLL 131795770645382726 0x77cd0000 221184 C:\Windows\SysWOW64\cfgmgr32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Configuration Manager DLL 131795770645382726 0x77d20000 1585152 C:\Windows\SysWOW64\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 131795770645382726 0x7ffad0270000 1908736 C:\Windows\SYSTEM32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 59 4664 7744 57 00000000:0031f1da 131769081123844756 0 0 0 Обязательная метка\Низкий обязательный уровень WIN-0UOTFKKVN1S\User browser.exe C:\Users\User\AppData\Local\Yandex\YandexBrowser\Application\browser.exe "C:\Users\User\AppData\Local\Yandex\YandexBrowser\Application\browser.exe" --type=gpu-process --field-trial-handle=1292,9555382311565764851,7120838982649204725,131072 --user-id=32B2E0A1-3039-4C67-86BE-75A88EF21B54 --brand-id=yandex --partner-id=7924 --gpu-preferences=KAAAAAAAAACAAwCAAQAAAAAAAAAAAGAAEAAAAAAAAAAAAAAAAAAAACgAAAAEAAAAIAAAAAAAAAAoAAAAAAAAADAAAAAAAAAAOAAAAAAAAAAQAAAAAAAAAAAAAAAKAAAAEAAAAAAAAAAAAAAACwAAABAAAAAAAAAAAQAAAAoAAAAQAAAAAAAAAAEAAAALAAAA --user-id=32B2E0A1-3039-4C67-86BE-75A88EF21B54 --brand-id=yandex --partner-id=7924 --service-request-channel-token=CC1AC8FA9C8EFF1EEBC2375FE4F704C6 --mojo-platform-channel-handle=1588 --ignored=" --type=renderer " /prefetch:2 YANDEX LLC 18.6.1.770 Yandex 131795770645382836 0x10e0000 2519040 C:\Users\User\AppData\Local\Yandex\YandexBrowser\Application\browser.exe 18.6.1.770 YANDEX LLC Yandex 131795770645382836 0x58720000 59748352 C:\Users\User\AppData\Local\Yandex\YandexBrowser\Application\18.6.1.770\browser_child.dll 18.6.1.770 YANDEX LLC Yandex 131795770645382836 0x5c020000 335872 C:\Windows\System32\wow64.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation Win32 Emulation on NT64 131795770645382836 0x5c080000 487424 C:\Windows\System32\wow64win.dll 10.0.14393.1884 (rs1_release.171101-1233) Microsoft Corporation Wow64 Console and Win32 API Logging 131795770645382836 0x5c100000 40960 C:\Windows\System32\wow64cpu.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation AMD64 Wow64 CPU 131795770645382836 0x6ecb0000 2228224 C:\Windows\SysWOW64\mfh264enc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Media Foundation H264 Encoder 131795770645382836 0x6f250000 970752 C:\Windows\SysWOW64\ddraw.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft DirectDraw 131795770645382836 0x6f340000 3784704 C:\Windows\SysWOW64\D3DCompiler_47.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Direct3D HLSL Compiler 131795770645382836 0x6f6e0000 688128 C:\Windows\SysWOW64\msvproc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Media Foundation Video Processor 131795770645382836 0x6f790000 1085440 C:\Windows\SysWOW64\mfperfhelper.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation MFPerf DLL 131795770645382836 0x6f8a0000 2220032 C:\Windows\SysWOW64\msmpeg2vdec.dll 10.0.14393.953 (rs1_release_inmarket.170303-1614) Microsoft Corporation Microsoft DTV-DVD Video Decoder 131795770645382836 0x6fac0000 1130496 C:\Windows\SysWOW64\MFPlat.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Media Foundation Platform DLL 131795770645382836 0x6fbe0000 540672 C:\Windows\SysWOW64\mf.dll 10.0.14393.953 (rs1_release_inmarket.170303-1614) Microsoft Corporation Библиотека DLL Media Foundation 131795770645382836 0x6fd30000 139264 C:\Windows\SysWOW64\DEVOBJ.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Device Information Set DLL 131795770645382836 0x6ff20000 118784 C:\Users\User\AppData\Local\Yandex\YandexBrowser\Application\18.6.1.770\swiftshader\libegl.dll 4.0.0.3 SwiftShader libEGL 32-bit Dynamic Link Library 131795770645382836 0x6ff40000 126976 C:\Windows\SysWOW64\dxva2.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DirectX Video Acceleration 2.0 DLL 131795770645382836 0x6ff60000 172032 C:\Windows\SysWOW64\RTWorkQ.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL для WorkQueue реального времени 131795770645382836 0x70030000 593920 C:\Users\User\AppData\Local\Yandex\YandexBrowser\Application\18.6.1.770\browser_elf.dll 18.6.1.770 YANDEX LLC Yandex 131795770645382836 0x700d0000 434176 C:\Windows\SysWOW64\WINSPOOL.DRV 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Драйвер диспетчера очереди Windows 131795770645382836 0x70340000 536576 C:\Windows\SysWOW64\dxgi.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation DirectX Graphics Infrastructure 131795770645382836 0x703d0000 2056192 C:\Windows\SysWOW64\DWrite.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Службы Microsoft DirectX Typography 131795770645382836 0x705d0000 28672 C:\Windows\SysWOW64\DCIMAN32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DCI Manager 131795770645382836 0x707d0000 86016 C:\Windows\SysWOW64\SAMCLI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Security Accounts Manager Client DLL 131795770645382836 0x70a20000 94208 C:\Windows\SysWOW64\USP10.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Uniscribe Unicode script processor 131795770645382836 0x70ca0000 45056 C:\Windows\SysWOW64\NETUTILS.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API Helpers DLL 131795770645382836 0x70fd0000 1331200 C:\Windows\SysWOW64\dbghelp.dll 10.0.14321.1024 (rs1_release.160715-1616) Microsoft Windows Image Helper 131795770645382836 0x71140000 77824 C:\Windows\SysWOW64\NETAPI32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API DLL 131795770645382836 0x725e0000 2273280 C:\Windows\SysWOW64\iertutil.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служебная программа времени выполнения для Internet Explorer 131795770645382836 0x728e0000 1372160 C:\Windows\SysWOW64\PROPSYS.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Система страниц свойств (Майкрософт) 131795770645382836 0x72b90000 126976 C:\Windows\SysWOW64\dwmapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Интерфейс API диспетчера окон рабочего стола (Майкрософт) 131795770645382836 0x72cc0000 1658880 C:\Windows\SysWOW64\urlmon.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширения OLE32 для Win32 131795770645382836 0x73ac0000 81920 C:\Windows\SysWOW64\dhcpcsvc.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служба DHCP-клиента 131795770645382836 0x73ae0000 40960 C:\Windows\SysWOW64\Secur32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Security Support Provider Interface 131795770645382836 0x73f00000 192512 C:\Windows\SysWOW64\IPHLPAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API вспомогательного приложения IP 131795770645382836 0x74190000 110592 C:\Windows\SysWOW64\bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795770645382836 0x741b0000 77824 C:\Windows\SysWOW64\cryptsp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Cryptographic Service Provider API 131795770645382836 0x741f0000 143360 C:\Windows\SysWOW64\WINMMBASE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base Multimedia Extension API DLL 131795770645382836 0x74230000 147456 C:\Windows\SysWOW64\WINMM.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation MCI API DLL 131795770645382836 0x744d0000 2138112 C:\Windows\WinSxS\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.14393.953_none_89c2555adb023171\COMCTL32.dll 6.10 (rs1_release_inmarket.170303-1614) Microsoft Corporation Библиотека элементов управления взаимодействия с пользователем 131795770645382836 0x746e0000 32768 C:\Windows\SysWOW64\VERSION.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Version Checking and File Installation Libraries 131795770645382836 0x746f0000 106496 C:\Windows\SysWOW64\USERENV.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Userenv 131795770645382836 0x747d0000 40960 C:\Windows\SysWOW64\CRYPTBASE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base cryptographic API DLL 131795770645382836 0x747e0000 126976 C:\Windows\SysWOW64\SspiCli.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Security Support Provider Interface 131795770645382836 0x74800000 151552 C:\Windows\SysWOW64\IMM32.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Multi-User Windows IMM32 API Client DLL 131795770645382836 0x74910000 2170880 C:\Windows\SysWOW64\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795770645382836 0x74b30000 53248 C:\Windows\SysWOW64\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795770645382836 0x74b60000 790528 C:\Windows\SysWOW64\RPCRT4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795770645382836 0x74c30000 1417216 C:\Windows\SysWOW64\gdi32full.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation GDI Client DLL 131795770645382836 0x74d90000 24576 C:\Windows\SysWOW64\PSAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Process Status Helper 131795770645382836 0x74da0000 778240 C:\Windows\SysWOW64\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795770645382836 0x74e60000 557056 C:\Windows\SysWOW64\shcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795770645382836 0x74ef0000 540672 C:\Windows\SysWOW64\clbcatq.dll 2001.12.10941.16384 (rs1_release.160715-1616) Microsoft Corporation COM+ Configuration Catalog 131795770645382836 0x74f80000 278528 C:\Windows\SysWOW64\WINTRUST.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation Microsoft Trust Verification APIs 131795770645382836 0x74fd0000 405504 C:\Windows\SysWOW64\WS2_32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation 32-разрядная библиотека Windows Socket 2.0 131795770645382836 0x75040000 282624 C:\Windows\SysWOW64\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795770645382836 0x751d0000 57344 C:\Windows\SysWOW64\MSASN1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ASN.1 Runtime APIs 131795770645382836 0x751e0000 1708032 C:\Windows\SysWOW64\KERNELBASE.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645382836 0x75390000 266240 C:\Windows\SysWOW64\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795770645382836 0x753e0000 1560576 C:\Windows\SysWOW64\CRYPT32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API32 криптографии 131795770645382836 0x75560000 487424 C:\Windows\SysWOW64\ADVAPI32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795770645382836 0x756c0000 5693440 C:\Windows\SysWOW64\windows.storage.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API хранения Microsoft WinRT 131795770645382836 0x75c90000 286720 C:\Windows\SysWOW64\shlwapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека небольших программ оболочки 131795770645382836 0x75ce0000 20811776 C:\Windows\SysWOW64\SHELL32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Общая библиотека оболочки Windows 131795770645382836 0x770c0000 4239360 C:\Windows\SysWOW64\SETUPAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Setup API 131795770645382836 0x774d0000 86016 C:\Windows\SysWOW64\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795770645382836 0x774f0000 61440 C:\Windows\SysWOW64\profapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Profile Basic API 131795770645382836 0x77560000 1437696 C:\Windows\SysWOW64\USER32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795770645382836 0x776c0000 368640 C:\Windows\SysWOW64\bcryptPrimitives.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation Windows Cryptographic Primitives Library 131795770645382836 0x77780000 503808 C:\Windows\SysWOW64\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645382836 0x77800000 606208 C:\Windows\SysWOW64\OLEAUT32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795770645382836 0x77ac0000 966656 C:\Windows\SysWOW64\ole32.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft OLE для Windows 131795770645382836 0x77bb0000 176128 C:\Windows\SysWOW64\GDI32.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation GDI Client DLL 131795770645382836 0x77be0000 937984 C:\Windows\SysWOW64\COMDLG32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека общих диалоговых окон 131795770645382836 0x77cd0000 221184 C:\Windows\SysWOW64\cfgmgr32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Configuration Manager DLL 131795770645382836 0x77d10000 28672 C:\Windows\SysWOW64\NSI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation NSI User-mode interface DLL 131795770645382836 0x77d20000 1585152 C:\Windows\SysWOW64\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 131795770645382836 0x7ffad0270000 1908736 C:\Windows\SYSTEM32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 60 8968 7744 57 00000000:0031f1da 131769081206363215 0 0 0 Обязательная метка\Ненадежный обязательный уровень WIN-0UOTFKKVN1S\User browser.exe C:\Users\User\AppData\Local\Yandex\YandexBrowser\Application\browser.exe "C:\Users\User\AppData\Local\Yandex\YandexBrowser\Application\browser.exe" --type=renderer --enable-in-process-wmf-demuxer --field-trial-handle=1292,9555382311565764851,7120838982649204725,131072 --enable-ignition --service-pipe-token=183F52B8A6577BFD721F95F3A9641348 --lang=ru --user-id=32B2E0A1-3039-4C67-86BE-75A88EF21B54 --brand-id=yandex --partner-id=7924 --help-url=https://api.browser.yandex.ru/redirect/help/ --user-agent-info --translate-security-origin=https://translate.yandex.net --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --enable-instaserp --device-scale-factor=1 --num-raster-threads=1 --enable-compositor-image-animations --service-request-channel-token=183F52B8A6577BFD721F95F3A9641348 --renderer-client-id=4 --mojo-platform-channel-handle=2640 /prefetch:1 YANDEX LLC 18.6.1.770 Yandex 131795770645382953 0x10e0000 2519040 C:\Users\User\AppData\Local\Yandex\YandexBrowser\Application\browser.exe 18.6.1.770 YANDEX LLC Yandex 131795770645382953 0x58720000 59748352 C:\Users\User\AppData\Local\Yandex\YandexBrowser\Application\18.6.1.770\browser_child.dll 18.6.1.770 YANDEX LLC Yandex 131795770645382953 0x5c020000 335872 C:\Windows\System32\wow64.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation Win32 Emulation on NT64 131795770645382953 0x5c080000 487424 C:\Windows\System32\wow64win.dll 10.0.14393.1884 (rs1_release.171101-1233) Microsoft Corporation Wow64 Console and Win32 API Logging 131795770645382953 0x5c100000 40960 C:\Windows\System32\wow64cpu.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation AMD64 Wow64 CPU 131795770645382953 0x6e8b0000 1859584 C:\Windows\SysWOW64\mfmp4srcsnk.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL источника и приемника MPEG4 Media Foundation 131795770645382953 0x6ef30000 647168 C:\Windows\SysWOW64\evr.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека DLL средства отображения видео 131795770645382953 0x6efd0000 458752 C:\Windows\SysWOW64\msauddecmft.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Media Foundation Audio Decoders 131795770645382953 0x6f790000 1085440 C:\Windows\SysWOW64\mfperfhelper.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation MFPerf DLL 131795770645382953 0x6f8a0000 2220032 C:\Windows\SysWOW64\msmpeg2vdec.dll 10.0.14393.953 (rs1_release_inmarket.170303-1614) Microsoft Corporation Microsoft DTV-DVD Video Decoder 131795770645382953 0x6fac0000 1130496 C:\Windows\SysWOW64\mfplat.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Media Foundation Platform DLL 131795770645382953 0x6ff60000 172032 C:\Windows\SysWOW64\RTWorkQ.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL для WorkQueue реального времени 131795770645382953 0x70030000 593920 C:\Users\User\AppData\Local\Yandex\YandexBrowser\Application\18.6.1.770\browser_elf.dll 18.6.1.770 YANDEX LLC Yandex 131795770645382953 0x700d0000 434176 C:\Windows\SysWOW64\WINSPOOL.DRV 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Драйвер диспетчера очереди Windows 131795770645382953 0x70340000 536576 C:\Windows\SysWOW64\dxgi.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation DirectX Graphics Infrastructure 131795770645382953 0x703d0000 2056192 C:\Windows\SysWOW64\DWrite.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Службы Microsoft DirectX Typography 131795770645382953 0x707d0000 86016 C:\Windows\SysWOW64\SAMCLI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Security Accounts Manager Client DLL 131795770645382953 0x70a20000 94208 C:\Windows\SysWOW64\USP10.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Uniscribe Unicode script processor 131795770645382953 0x70ca0000 45056 C:\Windows\SysWOW64\NETUTILS.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API Helpers DLL 131795770645382953 0x70fd0000 1331200 C:\Windows\SysWOW64\dbghelp.dll 10.0.14321.1024 (rs1_release.160715-1616) Microsoft Windows Image Helper 131795770645382953 0x71140000 77824 C:\Windows\SysWOW64\NETAPI32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API DLL 131795770645382953 0x725e0000 2273280 C:\Windows\SysWOW64\iertutil.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служебная программа времени выполнения для Internet Explorer 131795770645382953 0x728e0000 1372160 C:\Windows\SysWOW64\PROPSYS.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Система страниц свойств (Майкрософт) 131795770645382953 0x72af0000 655360 C:\Windows\SysWOW64\WINHTTP.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Службы HTTP Windows 131795770645382953 0x72cc0000 1658880 C:\Windows\SysWOW64\urlmon.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширения OLE32 для Win32 131795770645382953 0x73ac0000 81920 C:\Windows\SysWOW64\dhcpcsvc.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служба DHCP-клиента 131795770645382953 0x73ae0000 40960 C:\Windows\SysWOW64\Secur32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Security Support Provider Interface 131795770645382953 0x73f00000 192512 C:\Windows\SysWOW64\IPHLPAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API вспомогательного приложения IP 131795770645382953 0x74190000 110592 C:\Windows\SysWOW64\bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795770645382953 0x741b0000 77824 C:\Windows\SysWOW64\cryptsp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Cryptographic Service Provider API 131795770645382953 0x741f0000 143360 C:\Windows\SysWOW64\WINMMBASE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base Multimedia Extension API DLL 131795770645382953 0x74230000 147456 C:\Windows\SysWOW64\WINMM.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation MCI API DLL 131795770645382953 0x744d0000 2138112 C:\Windows\WinSxS\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.14393.953_none_89c2555adb023171\COMCTL32.dll 6.10 (rs1_release_inmarket.170303-1614) Microsoft Corporation Библиотека элементов управления взаимодействия с пользователем 131795770645382953 0x746e0000 32768 C:\Windows\SysWOW64\VERSION.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Version Checking and File Installation Libraries 131795770645382953 0x746f0000 106496 C:\Windows\SysWOW64\USERENV.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Userenv 131795770645382953 0x747d0000 40960 C:\Windows\SysWOW64\CRYPTBASE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base cryptographic API DLL 131795770645382953 0x747e0000 126976 C:\Windows\SysWOW64\SspiCli.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Security Support Provider Interface 131795770645382953 0x74800000 151552 C:\Windows\SysWOW64\IMM32.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Multi-User Windows IMM32 API Client DLL 131795770645382953 0x74910000 2170880 C:\Windows\SysWOW64\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795770645382953 0x74b30000 53248 C:\Windows\SysWOW64\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795770645382953 0x74b60000 790528 C:\Windows\SysWOW64\RPCRT4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795770645382953 0x74c30000 1417216 C:\Windows\SysWOW64\gdi32full.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation GDI Client DLL 131795770645382953 0x74d90000 24576 C:\Windows\SysWOW64\PSAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Process Status Helper 131795770645382953 0x74da0000 778240 C:\Windows\SysWOW64\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795770645382953 0x74e60000 557056 C:\Windows\SysWOW64\shcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795770645382953 0x74f80000 278528 C:\Windows\SysWOW64\WINTRUST.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation Microsoft Trust Verification APIs 131795770645382953 0x74fd0000 405504 C:\Windows\SysWOW64\WS2_32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation 32-разрядная библиотека Windows Socket 2.0 131795770645382953 0x75040000 282624 C:\Windows\SysWOW64\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795770645382953 0x751d0000 57344 C:\Windows\SysWOW64\MSASN1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ASN.1 Runtime APIs 131795770645382953 0x751e0000 1708032 C:\Windows\SysWOW64\KERNELBASE.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645382953 0x75390000 266240 C:\Windows\SysWOW64\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795770645382953 0x753e0000 1560576 C:\Windows\SysWOW64\CRYPT32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API32 криптографии 131795770645382953 0x75560000 487424 C:\Windows\SysWOW64\ADVAPI32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795770645382953 0x756c0000 5693440 C:\Windows\SysWOW64\windows.storage.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API хранения Microsoft WinRT 131795770645382953 0x75c90000 286720 C:\Windows\SysWOW64\shlwapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека небольших программ оболочки 131795770645382953 0x75ce0000 20811776 C:\Windows\SysWOW64\SHELL32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Общая библиотека оболочки Windows 131795770645382953 0x774d0000 86016 C:\Windows\SysWOW64\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795770645382953 0x774f0000 61440 C:\Windows\SysWOW64\profapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Profile Basic API 131795770645382953 0x77560000 1437696 C:\Windows\SysWOW64\USER32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795770645382953 0x776c0000 368640 C:\Windows\SysWOW64\bcryptPrimitives.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation Windows Cryptographic Primitives Library 131795770645382953 0x77780000 503808 C:\Windows\SysWOW64\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645382953 0x77800000 606208 C:\Windows\SysWOW64\OLEAUT32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795770645382953 0x77ac0000 966656 C:\Windows\SysWOW64\ole32.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft OLE для Windows 131795770645382953 0x77bb0000 176128 C:\Windows\SysWOW64\GDI32.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation GDI Client DLL 131795770645382953 0x77be0000 937984 C:\Windows\SysWOW64\COMDLG32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека общих диалоговых окон 131795770645382953 0x77cd0000 221184 C:\Windows\SysWOW64\cfgmgr32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Configuration Manager DLL 131795770645382953 0x77d10000 28672 C:\Windows\SysWOW64\NSI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation NSI User-mode interface DLL 131795770645382953 0x77d20000 1585152 C:\Windows\SysWOW64\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 131795770645382953 0x7ffad0270000 1908736 C:\Windows\SYSTEM32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 61 4992 7744 57 00000000:0031f1da 131769081244357280 0 0 0 Обязательная метка\Ненадежный обязательный уровень WIN-0UOTFKKVN1S\User browser.exe C:\Users\User\AppData\Local\Yandex\YandexBrowser\Application\browser.exe "C:\Users\User\AppData\Local\Yandex\YandexBrowser\Application\browser.exe" --type=renderer --enable-in-process-wmf-demuxer --field-trial-handle=1292,9555382311565764851,7120838982649204725,131072 --enable-ignition --service-pipe-token=7E8A8199C364F4B0114F2A163B757250 --lang=ru --user-id=32B2E0A1-3039-4C67-86BE-75A88EF21B54 --brand-id=yandex --partner-id=7924 --help-url=https://api.browser.yandex.ru/redirect/help/ --user-agent-info --translate-security-origin=https://translate.yandex.net --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --enable-instaserp --device-scale-factor=1 --num-raster-threads=1 --enable-compositor-image-animations --service-request-channel-token=7E8A8199C364F4B0114F2A163B757250 --renderer-client-id=10 --mojo-platform-channel-handle=3904 /prefetch:1 YANDEX LLC 18.6.1.770 Yandex 131795770645383069 0x10e0000 2519040 C:\Users\User\AppData\Local\Yandex\YandexBrowser\Application\browser.exe 18.6.1.770 YANDEX LLC Yandex 131795770645383069 0x58720000 59748352 C:\Users\User\AppData\Local\Yandex\YandexBrowser\Application\18.6.1.770\browser_child.dll 18.6.1.770 YANDEX LLC Yandex 131795770645383069 0x5c020000 335872 C:\Windows\System32\wow64.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation Win32 Emulation on NT64 131795770645383069 0x5c080000 487424 C:\Windows\System32\wow64win.dll 10.0.14393.1884 (rs1_release.171101-1233) Microsoft Corporation Wow64 Console and Win32 API Logging 131795770645383069 0x5c100000 40960 C:\Windows\System32\wow64cpu.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation AMD64 Wow64 CPU 131795770645383069 0x6e8b0000 1859584 C:\Windows\SysWOW64\mfmp4srcsnk.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL источника и приемника MPEG4 Media Foundation 131795770645383069 0x6ef30000 647168 C:\Windows\SysWOW64\evr.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека DLL средства отображения видео 131795770645383069 0x6efd0000 458752 C:\Windows\SysWOW64\msauddecmft.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Media Foundation Audio Decoders 131795770645383069 0x6f790000 1085440 C:\Windows\SysWOW64\mfperfhelper.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation MFPerf DLL 131795770645383069 0x6f8a0000 2220032 C:\Windows\SysWOW64\msmpeg2vdec.dll 10.0.14393.953 (rs1_release_inmarket.170303-1614) Microsoft Corporation Microsoft DTV-DVD Video Decoder 131795770645383069 0x6fac0000 1130496 C:\Windows\SysWOW64\mfplat.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Media Foundation Platform DLL 131795770645383069 0x6ff60000 172032 C:\Windows\SysWOW64\RTWorkQ.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL для WorkQueue реального времени 131795770645383069 0x70030000 593920 C:\Users\User\AppData\Local\Yandex\YandexBrowser\Application\18.6.1.770\browser_elf.dll 18.6.1.770 YANDEX LLC Yandex 131795770645383069 0x700d0000 434176 C:\Windows\SysWOW64\WINSPOOL.DRV 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Драйвер диспетчера очереди Windows 131795770645383069 0x70340000 536576 C:\Windows\SysWOW64\dxgi.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation DirectX Graphics Infrastructure 131795770645383069 0x703d0000 2056192 C:\Windows\SysWOW64\DWrite.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Службы Microsoft DirectX Typography 131795770645383069 0x707d0000 86016 C:\Windows\SysWOW64\SAMCLI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Security Accounts Manager Client DLL 131795770645383069 0x70a20000 94208 C:\Windows\SysWOW64\USP10.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Uniscribe Unicode script processor 131795770645383069 0x70ca0000 45056 C:\Windows\SysWOW64\NETUTILS.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API Helpers DLL 131795770645383069 0x70fd0000 1331200 C:\Windows\SysWOW64\dbghelp.dll 10.0.14321.1024 (rs1_release.160715-1616) Microsoft Windows Image Helper 131795770645383069 0x71140000 77824 C:\Windows\SysWOW64\NETAPI32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API DLL 131795770645383069 0x725e0000 2273280 C:\Windows\SysWOW64\iertutil.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служебная программа времени выполнения для Internet Explorer 131795770645383069 0x728e0000 1372160 C:\Windows\SysWOW64\PROPSYS.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Система страниц свойств (Майкрософт) 131795770645383069 0x72af0000 655360 C:\Windows\SysWOW64\WINHTTP.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Службы HTTP Windows 131795770645383069 0x72cc0000 1658880 C:\Windows\SysWOW64\urlmon.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширения OLE32 для Win32 131795770645383069 0x73ac0000 81920 C:\Windows\SysWOW64\dhcpcsvc.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служба DHCP-клиента 131795770645383069 0x73ae0000 40960 C:\Windows\SysWOW64\Secur32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Security Support Provider Interface 131795770645383069 0x73f00000 192512 C:\Windows\SysWOW64\IPHLPAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API вспомогательного приложения IP 131795770645383069 0x74190000 110592 C:\Windows\SysWOW64\bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795770645383069 0x741b0000 77824 C:\Windows\SysWOW64\cryptsp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Cryptographic Service Provider API 131795770645383069 0x741f0000 143360 C:\Windows\SysWOW64\WINMMBASE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base Multimedia Extension API DLL 131795770645383069 0x74230000 147456 C:\Windows\SysWOW64\WINMM.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation MCI API DLL 131795770645383069 0x744d0000 2138112 C:\Windows\WinSxS\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.14393.953_none_89c2555adb023171\COMCTL32.dll 6.10 (rs1_release_inmarket.170303-1614) Microsoft Corporation Библиотека элементов управления взаимодействия с пользователем 131795770645383069 0x746e0000 32768 C:\Windows\SysWOW64\VERSION.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Version Checking and File Installation Libraries 131795770645383069 0x746f0000 106496 C:\Windows\SysWOW64\USERENV.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Userenv 131795770645383069 0x747d0000 40960 C:\Windows\SysWOW64\CRYPTBASE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base cryptographic API DLL 131795770645383069 0x747e0000 126976 C:\Windows\SysWOW64\SspiCli.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Security Support Provider Interface 131795770645383069 0x74800000 151552 C:\Windows\SysWOW64\IMM32.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Multi-User Windows IMM32 API Client DLL 131795770645383069 0x74910000 2170880 C:\Windows\SysWOW64\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795770645383069 0x74b30000 53248 C:\Windows\SysWOW64\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795770645383069 0x74b60000 790528 C:\Windows\SysWOW64\RPCRT4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795770645383069 0x74c30000 1417216 C:\Windows\SysWOW64\gdi32full.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation GDI Client DLL 131795770645383069 0x74d90000 24576 C:\Windows\SysWOW64\PSAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Process Status Helper 131795770645383069 0x74da0000 778240 C:\Windows\SysWOW64\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795770645383069 0x74e60000 557056 C:\Windows\SysWOW64\shcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795770645383069 0x74f80000 278528 C:\Windows\SysWOW64\WINTRUST.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation Microsoft Trust Verification APIs 131795770645383069 0x74fd0000 405504 C:\Windows\SysWOW64\WS2_32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation 32-разрядная библиотека Windows Socket 2.0 131795770645383069 0x75040000 282624 C:\Windows\SysWOW64\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795770645383069 0x751d0000 57344 C:\Windows\SysWOW64\MSASN1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ASN.1 Runtime APIs 131795770645383069 0x751e0000 1708032 C:\Windows\SysWOW64\KERNELBASE.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645383069 0x75390000 266240 C:\Windows\SysWOW64\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795770645383069 0x753e0000 1560576 C:\Windows\SysWOW64\CRYPT32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API32 криптографии 131795770645383069 0x75560000 487424 C:\Windows\SysWOW64\ADVAPI32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795770645383069 0x756c0000 5693440 C:\Windows\SysWOW64\windows.storage.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API хранения Microsoft WinRT 131795770645383069 0x75c90000 286720 C:\Windows\SysWOW64\shlwapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека небольших программ оболочки 131795770645383069 0x75ce0000 20811776 C:\Windows\SysWOW64\SHELL32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Общая библиотека оболочки Windows 131795770645383069 0x774d0000 86016 C:\Windows\SysWOW64\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795770645383069 0x774f0000 61440 C:\Windows\SysWOW64\profapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Profile Basic API 131795770645383069 0x77560000 1437696 C:\Windows\SysWOW64\USER32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795770645383069 0x776c0000 368640 C:\Windows\SysWOW64\bcryptPrimitives.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation Windows Cryptographic Primitives Library 131795770645383069 0x77780000 503808 C:\Windows\SysWOW64\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645383069 0x77800000 606208 C:\Windows\SysWOW64\OLEAUT32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795770645383069 0x77ac0000 966656 C:\Windows\SysWOW64\ole32.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft OLE для Windows 131795770645383069 0x77bb0000 176128 C:\Windows\SysWOW64\GDI32.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation GDI Client DLL 131795770645383069 0x77be0000 937984 C:\Windows\SysWOW64\COMDLG32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека общих диалоговых окон 131795770645383069 0x77cd0000 221184 C:\Windows\SysWOW64\cfgmgr32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Configuration Manager DLL 131795770645383069 0x77d10000 28672 C:\Windows\SysWOW64\NSI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation NSI User-mode interface DLL 131795770645383069 0x77d20000 1585152 C:\Windows\SysWOW64\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 131795770645383069 0x7ffad0270000 1908736 C:\Windows\SYSTEM32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 63 9504 664 6 00000000:0031f1da 131794956266598229 0 0 1 Обязательная метка\Средний обязательный уровень WIN-0UOTFKKVN1S\User InstallAgent.exe C:\Windows\System32\InstallAgent.exe C:\Windows\System32\InstallAgent.exe -Embedding Microsoft Corporation 10.0.14393.0 (rs1_release.160715-1616) InstallAgent 131795770645383260 0x7ff63d380000 229376 C:\Windows\System32\InstallAgent.exe 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation InstallAgent 131795770645383260 0x7ffabea60000 180224 C:\Windows\System32\VEStoreEventHandlers.dll 10.0.14393.479 (rs1_release.161110-2025) Microsoft Corporation TDL Store Event Handlers 131795770645383260 0x7ffac0bf0000 3559424 C:\Windows\System32\ActXPrxy.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation ActiveX Interface Marshaling Library 131795770645383260 0x7ffac4000000 274432 C:\Windows\SYSTEM32\policymanager.dll 10.0.14393.2035 (rs1_release_inmarket.180110-1910) Microsoft Corporation Policy Manager DLL 131795770645383260 0x7ffac4450000 86016 C:\Windows\SYSTEM32\usermgrcli.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation UserMgr API DLL 131795770645383260 0x7ffac4ad0000 61440 C:\Windows\System32\EAMProgressHandler.dll 10.0.14393.479 (rs1_release.161110-2025) Microsoft Corporation EAMProgressHandler 131795770645383260 0x7ffac4b90000 774144 C:\Windows\System32\StoreAgent.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation StoreAgent 131795770645383260 0x7ffac76a0000 159744 C:\Windows\System32\sppc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Software Licensing Client DLL 131795770645383260 0x7ffac7990000 155648 C:\Windows\System32\SLC.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Software Licensing Client DLL 131795770645383260 0x7ffacb140000 593920 C:\Windows\System32\msvcp110_win.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Microsoft® STL110 C++ Runtime Library 131795770645383260 0x7ffacc150000 94208 C:\Windows\System32\CRYPTSP.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Cryptographic Service Provider API 131795770645383260 0x7ffacc520000 622592 C:\Windows\SYSTEM32\sxs.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Fusion 2.5 131795770645383260 0x7ffacc620000 176128 C:\Windows\System32\Bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795770645383260 0x7ffacc6e0000 61440 C:\Windows\System32\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795770645383260 0x7ffacc6f0000 311296 C:\Windows\System32\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795770645383260 0x7ffacc740000 81920 C:\Windows\System32\profapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Profile Basic API 131795770645383260 0x7ffacc8f0000 1003520 C:\Windows\System32\ucrtbase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645383260 0x7ffacc9f0000 434176 C:\Windows\System32\bcryptPrimitives.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Cryptographic Primitives Library 131795770645383260 0x7ffacca60000 122880 C:\Windows\System32\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795770645383260 0x7ffaccae0000 692224 C:\Windows\System32\shcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795770645383260 0x7ffaccb90000 7180288 C:\Windows\System32\windows.storage.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API хранения Microsoft WinRT 131795770645383260 0x7ffacd270000 2215936 C:\Windows\System32\KERNELBASE.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645383260 0x7ffacd710000 638976 C:\Windows\System32\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645383260 0x7ffaced20000 782336 C:\Windows\System32\OLEAUT32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795770645383260 0x7ffacee50000 1183744 C:\Windows\System32\RPCRT4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795770645383260 0x7ffacef90000 647168 C:\Windows\System32\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795770645383260 0x7ffacf030000 651264 C:\Windows\System32\clbcatq.dll 2001.12.10941.16384 (rs1_release.160715-1616) Microsoft Corporation COM+ Configuration Catalog 131795770645383260 0x7ffacf0d0000 704512 C:\Windows\System32\KERNEL32.DLL 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645383260 0x7ffacf770000 212992 C:\Windows\System32\GDI32.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation GDI Client DLL 131795770645383260 0x7ffacf890000 188416 C:\Windows\System32\IMM32.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Multi-User Windows IMM32 API Client DLL 131795770645383260 0x7ffacf8c0000 1462272 C:\Windows\System32\user32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795770645383260 0x7ffacfb30000 2916352 C:\Windows\System32\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795770645383260 0x7ffacfe20000 663552 C:\Windows\System32\advapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795770645383260 0x7ffad01b0000 335872 C:\Windows\System32\shlwapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека небольших программ оболочки 131795770645383260 0x7ffad0210000 364544 C:\Windows\System32\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795770645383260 0x7ffad0270000 1908736 C:\Windows\SYSTEM32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 64 8768 664 6 00000000:0031f1da 131794956321853179 0 0 1 Обязательная метка\Средний обязательный уровень WIN-0UOTFKKVN1S\User InstallAgentUserBroker.exe C:\Windows\System32\InstallAgentUserBroker.exe C:\Windows\System32\InstallAgentUserBroker.exe -Embedding Microsoft Corporation 10.0.14393.2156 (rs1_release_inmarket.180321-1733) InstallAgentUserBroker 131795770645383355 0x22530450000 12288 C:\Windows\SYSTEM32\sfc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows File Protection 131795770645383355 0x7ff74f890000 278528 C:\Windows\System32\InstallAgentUserBroker.exe 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation InstallAgentUserBroker 131795770645383355 0x7ffabafc0000 700416 C:\Windows\SYSTEM32\wer.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека сообщений об ошибках Windows 131795770645383355 0x7ffabd8e0000 704512 C:\Windows\WinSxS\amd64_microsoft.windows.common-controls_6595b64144ccf1df_5.82.14393.447_none_0d5aa7fbb6d35646\Comctl32.dll 6.10 (rs1_release_inmarket.170303-1614) Microsoft Corporation Библиотека элементов управления взаимодействия с пользователем 131795770645383355 0x7ffabef80000 69632 C:\Windows\SYSTEM32\sfc_os.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows File Protection 131795770645383355 0x7ffabefd0000 258048 C:\Windows\System32\AEPIC.dll 10.0.17060.1029 (WinBuild.160101.0800) Microsoft Corporation Application Experience Program Cache 131795770645383355 0x7ffabf1d0000 192512 C:\Windows\System32\cryptnet.dll 10.0.14393.2035 (rs1_release_inmarket.180110-1910) Microsoft Corporation Crypto Network Related API 131795770645383355 0x7ffabf5d0000 2924544 C:\Windows\System32\WININET.dll 11.00.14393.447 (rs1_release_inmarket.161102-0100) Microsoft Corporation Расширения Интернета для Win32 131795770645383355 0x7ffabff60000 135168 C:\Windows\system32\ncryptsslp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft SChannel Provider 131795770645383355 0x7ffac0ad0000 86016 C:\Windows\SYSTEM32\mskeyprotect.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик защиты ключей (Майкрософт) 131795770645383355 0x7ffac34e0000 1843200 C:\Windows\System32\urlmon.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширения OLE32 для Win32 131795770645383355 0x7ffac3cb0000 2772992 C:\Windows\System32\iertutil.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служебная программа времени выполнения для Internet Explorer 131795770645383355 0x7ffac4000000 274432 C:\Windows\SYSTEM32\policymanager.dll 10.0.14393.2035 (rs1_release_inmarket.180110-1910) Microsoft Corporation Policy Manager DLL 131795770645383355 0x7ffac4b90000 774144 C:\Windows\System32\StoreAgent.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation StoreAgent 131795770645383355 0x7ffac6610000 40960 C:\Windows\System32\rasadhlp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Remote Access AutoDial Helper 131795770645383355 0x7ffac66a0000 86016 C:\Windows\SYSTEM32\ondemandconnroutehelper.dll 10.0.14393.351 (rs1_release_inmarket.161014-1755) Microsoft Corporation On Demand Connctiond Route Helper 131795770645383355 0x7ffac69c0000 839680 C:\Windows\SYSTEM32\winhttp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Службы HTTP Windows 131795770645383355 0x7ffac76a0000 159744 C:\Windows\System32\sppc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Software Licensing Client DLL 131795770645383355 0x7ffac7990000 155648 C:\Windows\System32\SLC.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Software Licensing Client DLL 131795770645383355 0x7ffac83d0000 106496 C:\Windows\SYSTEM32\dhcpcsvc.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служба DHCP-клиента 131795770645383355 0x7ffac83f0000 90112 C:\Windows\SYSTEM32\dhcpcsvc6.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиент DHCPv6 131795770645383355 0x7ffac8420000 434176 C:\Windows\System32\fwpuclnt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API пользовательского режима FWP/IPsec 131795770645383355 0x7ffac8810000 45056 C:\Windows\SYSTEM32\WINNSI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Network Store Information RPC interface 131795770645383355 0x7ffacb140000 593920 C:\Windows\System32\msvcp110_win.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Microsoft® STL110 C++ Runtime Library 131795770645383355 0x7ffacb420000 204800 C:\Windows\SYSTEM32\ntmarta.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик Windows NT MARTA 131795770645383355 0x7ffacbaf0000 495616 C:\Windows\system32\schannel.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик безопасности TLS/SSL 131795770645383355 0x7ffacbbb0000 208896 C:\Windows\system32\rsaenh.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Enhanced Cryptographic Provider 131795770645383355 0x7ffacbbf0000 40960 C:\Windows\System32\DPAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Data Protection API 131795770645383355 0x7ffacbd30000 229376 C:\Windows\SYSTEM32\IPHLPAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API вспомогательного приложения IP 131795770645383355 0x7ffacbd70000 659456 C:\Windows\System32\DNSAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Динамическая библиотека API DNS-клиента 131795770645383355 0x7ffacbfb0000 376832 C:\Windows\system32\mswsock.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширение поставщика службы API Microsoft Windows Sockets 2.0 131795770645383355 0x7ffacc150000 94208 C:\Windows\System32\CRYPTSP.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Cryptographic Service Provider API 131795770645383355 0x7ffacc170000 45056 C:\Windows\System32\CRYPTBASE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base cryptographic API DLL 131795770645383355 0x7ffacc1f0000 241664 C:\Windows\SYSTEM32\NTASN1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft ASN.1 API 131795770645383355 0x7ffacc230000 155648 C:\Windows\SYSTEM32\ncrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Маршрутизатор Windows NCrypt 131795770645383355 0x7ffacc350000 180224 C:\Windows\System32\SspiCli.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Security Support Provider Interface 131795770645383355 0x7ffacc520000 622592 C:\Windows\SYSTEM32\sxs.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Fusion 2.5 131795770645383355 0x7ffacc620000 176128 C:\Windows\System32\bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795770645383355 0x7ffacc6e0000 61440 C:\Windows\System32\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795770645383355 0x7ffacc6f0000 311296 C:\Windows\System32\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795770645383355 0x7ffacc740000 81920 C:\Windows\System32\profapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Profile Basic API 131795770645383355 0x7ffacc760000 65536 C:\Windows\System32\MSASN1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ASN.1 Runtime APIs 131795770645383355 0x7ffacc8f0000 1003520 C:\Windows\System32\ucrtbase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645383355 0x7ffacc9f0000 434176 C:\Windows\System32\bcryptPrimitives.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Cryptographic Primitives Library 131795770645383355 0x7ffacca60000 122880 C:\Windows\System32\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795770645383355 0x7ffacca80000 348160 C:\Windows\System32\WINTRUST.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation Microsoft Trust Verification APIs 131795770645383355 0x7ffaccae0000 692224 C:\Windows\System32\shcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795770645383355 0x7ffaccb90000 7180288 C:\Windows\System32\windows.storage.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API хранения Microsoft WinRT 131795770645383355 0x7ffacd270000 2215936 C:\Windows\System32\KERNELBASE.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645383355 0x7ffacd490000 1871872 C:\Windows\System32\CRYPT32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API32 криптографии 131795770645383355 0x7ffacd710000 638976 C:\Windows\System32\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645383355 0x7ffacd7b0000 270336 C:\Windows\System32\cfgmgr32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Configuration Manager DLL 131795770645383355 0x7ffacd810000 22056960 C:\Windows\System32\SHELL32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Общая библиотека оболочки Windows 131795770645383355 0x7ffaced20000 782336 C:\Windows\System32\OLEAUT32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795770645383355 0x7ffacee50000 1183744 C:\Windows\System32\RPCRT4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795770645383355 0x7ffacef80000 32768 C:\Windows\System32\NSI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation NSI User-mode interface DLL 131795770645383355 0x7ffacef90000 647168 C:\Windows\System32\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795770645383355 0x7ffacf030000 651264 C:\Windows\System32\clbcatq.dll 2001.12.10941.16384 (rs1_release.160715-1616) Microsoft Corporation COM+ Configuration Catalog 131795770645383355 0x7ffacf0d0000 704512 C:\Windows\System32\KERNEL32.DLL 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645383355 0x7ffacf770000 212992 C:\Windows\System32\GDI32.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation GDI Client DLL 131795770645383355 0x7ffacf820000 434176 C:\Windows\System32\WS2_32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation 32-разрядная библиотека Windows Socket 2.0 131795770645383355 0x7ffacf890000 188416 C:\Windows\System32\IMM32.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Multi-User Windows IMM32 API Client DLL 131795770645383355 0x7ffacf8c0000 1462272 C:\Windows\System32\user32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795770645383355 0x7ffacfb30000 2916352 C:\Windows\System32\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795770645383355 0x7ffacfe20000 663552 C:\Windows\System32\advapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795770645383355 0x7ffad0070000 1277952 C:\Windows\System32\OLE32.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft OLE для Windows 131795770645383355 0x7ffad01b0000 335872 C:\Windows\System32\SHLWAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека небольших программ оболочки 131795770645383355 0x7ffad0210000 364544 C:\Windows\System32\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795770645383355 0x7ffad0270000 1908736 C:\Windows\SYSTEM32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 65 9636 664 6 00000000:0031f1da 131794956424585250 0 0 1 Обязательная метка\Средний обязательный уровень WIN-0UOTFKKVN1S\User SystemSettingsBroker.exe C:\Windows\System32\SystemSettingsBroker.exe C:\Windows\System32\SystemSettingsBroker.exe -Embedding Microsoft Corporation 10.0.14393.0 (rs1_release.160715-1616) System Settings Broker 131795770645383490 0x7ff6015f0000 196608 C:\Windows\System32\SystemSettingsBroker.exe 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation System Settings Broker 131795770645383490 0x7ffac1c40000 94208 C:\Windows\System32\SystemSettings.DataModel.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SystemSettings.Datamodel private API 131795770645383490 0x7ffacc6e0000 61440 C:\Windows\System32\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795770645383490 0x7ffacc8f0000 1003520 C:\Windows\System32\ucrtbase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645383490 0x7ffacc9f0000 434176 C:\Windows\System32\bcryptPrimitives.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Cryptographic Primitives Library 131795770645383490 0x7ffacd270000 2215936 C:\Windows\System32\KERNELBASE.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645383490 0x7ffacee50000 1183744 C:\Windows\System32\RPCRT4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795770645383490 0x7ffacef90000 647168 C:\Windows\System32\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795770645383490 0x7ffacf030000 651264 C:\Windows\System32\clbcatq.dll 2001.12.10941.16384 (rs1_release.160715-1616) Microsoft Corporation COM+ Configuration Catalog 131795770645383490 0x7ffacf0d0000 704512 C:\Windows\System32\KERNEL32.DLL 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645383490 0x7ffacfb30000 2916352 C:\Windows\System32\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795770645383490 0x7ffad0210000 364544 C:\Windows\System32\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795770645383490 0x7ffad0270000 1908736 C:\Windows\SYSTEM32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 66 10592 664 6 00000000:0031f1da 131794956519902643 0 0 1 Обязательная метка\Средний обязательный уровень WIN-0UOTFKKVN1S\User SystemSettings.exe C:\Windows\ImmersiveControlPanel\SystemSettings.exe "C:\Windows\ImmersiveControlPanel\SystemSettings.exe" -ServerName:microsoft.windows.immersivecontrolpanel Microsoft Corporation 10.0.14393.82 (rs1_release.160805-1735) Параметры 131795770645383654 0x18099ef0000 12288 C:\Windows\SYSTEM32\WMI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation WMI DC and DP functionality 131795770645383654 0x7ff7937a0000 98304 C:\Windows\ImmersiveControlPanel\SystemSettings.exe 10.0.14393.82 (rs1_release.160805-1735) Microsoft Corporation Параметры 131795770645383654 0x7ffaabce0000 2535424 C:\Windows\System32\NetworkMobileSettings.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation System settings network mobile handlers group 131795770645383654 0x7ffaac0c0000 1396736 C:\Windows\System32\Windows.UI.Xaml.Phone.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows UI XAML Phone API 131795770645383654 0x7ffaac220000 4952064 C:\Windows\ImmersiveControlPanel\SystemSettings.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation System Settings Application 131795770645383654 0x7ffaadd90000 258048 C:\Windows\System32\NetworkDesktopSettings.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Группа обработчиков системных параметров сетевого рабочего стола 131795770645383654 0x7ffaaf920000 905216 C:\Windows\ImmersiveControlPanel\SystemSettingsViewModel.Desktop.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation System Settings View Model Desktop 131795770645383654 0x7ffab0970000 262144 C:\Windows\system32\credprovhost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Хост инфраструктуры поставщика учетных данных 131795770645383654 0x7ffab0a70000 454656 C:\Windows\System32\fhcfg.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Диспетчер конфигураций истории файлов 131795770645383654 0x7ffab1d80000 262144 C:\Windows\SYSTEM32\eappcfg.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Eap Peer Config 131795770645383654 0x7ffab5520000 3231744 C:\Windows\SYSTEM32\msftedit.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Элемент управления "Поле ввода форматированного текста", версия 8.5 131795770645383654 0x7ffab5b40000 2527232 C:\Windows\SYSTEM32\dwrite.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Службы Microsoft DirectX Typography 131795770645383654 0x7ffab6710000 17231872 C:\Windows\System32\Windows.UI.Xaml.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows.UI.Xaml dll 131795770645383654 0x7ffab7d80000 753664 C:\Windows\SYSTEM32\RASAPI32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API удаленного доступа 131795770645383654 0x7ffab8190000 9191424 C:\Windows\system32\twinui.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation TWINUI 131795770645383654 0x7ffab91d0000 69632 C:\Windows\ImmersiveControlPanel\Telemetry.Desktop.dll 10.0.14393.953 (rs1_release_inmarket.170303-1614) Microsoft Corporation System Settings Telemetry Desktop 131795770645383654 0x7ffab9a40000 299008 C:\Windows\System32\RasMediaManager.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Ras Media Manager DLL 131795770645383654 0x7ffaba950000 188416 C:\Windows\System32\EthernetMediaManager.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Ethernet Media Manager DLL 131795770645383654 0x7ffabaa50000 339968 C:\Windows\System32\NetworkUXBroker.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation NetworkUXBroker DLL 131795770645383654 0x7ffabae40000 110592 C:\Windows\SYSTEM32\capauthz.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API авторизации возможностей 131795770645383654 0x7ffabaf70000 270336 C:\Windows\SYSTEM32\edputil.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служебная программа EDP 131795770645383654 0x7ffabb3c0000 450560 C:\Windows\SYSTEM32\TextInputFramework.dll 10.0.14393.2189 (rs1_release.180329-1711) Microsoft Corporation "TextInputFramework.DYNLINK" 131795770645383654 0x7ffabb430000 65536 C:\Windows\SYSTEM32\pcacli.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Program Compatibility Assistant Client Module 131795770645383654 0x7ffabb490000 512000 C:\Windows\system32\twinapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation twinapi 131795770645383654 0x7ffabcc60000 1122304 C:\Windows\System32\MiracastReceiver.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API приемника Miracast 131795770645383654 0x7ffabcf30000 110592 C:\Windows\SYSTEM32\MPR.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека маршрутизации для нескольких служб доступа 131795770645383654 0x7ffabd4a0000 1613824 C:\Windows\System32\Windows.Globalization.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Globalization 131795770645383654 0x7ffabe6e0000 561152 C:\Windows\system32\directmanipulation.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Direct Manipulation Component 131795770645383654 0x7ffabe9c0000 188416 C:\Windows\SYSTEM32\globinputhost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Globalization Extension API for Input 131795770645383654 0x7ffabeb20000 385024 C:\Windows\System32\Windows.ApplicationModel.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows ApplicationModel API Server 131795770645383654 0x7ffabfd80000 86016 C:\Windows\System32\threadpoolwinrt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows WinRT Threadpool 131795770645383654 0x7ffabff10000 155648 C:\Windows\SYSTEM32\SRVCLI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Server Service Client DLL 131795770645383654 0x7ffac00c0000 282624 C:\Windows\SYSTEM32\windows.ui.core.textinput.dll 10.0.14393.2189 (rs1_release.180329-1711) Microsoft Corporation Windows.UI.Core.TextInput dll 131795770645383654 0x7ffac01e0000 397312 C:\Windows\SYSTEM32\wincorlib.DLL 10.0.14393.576 (rs1_release_inmarket.161208-2252) Microsoft Corporation Microsoft Windows ® WinRT core library 131795770645383654 0x7ffac0470000 1478656 C:\Windows\SYSTEM32\MFPlat.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Media Foundation Platform DLL 131795770645383654 0x7ffac0bf0000 3559424 C:\Windows\System32\ActXPrxy.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation ActiveX Interface Marshaling Library 131795770645383654 0x7ffac1470000 704512 C:\Windows\System32\ieproxy.dll 11.00.14393.2007 (rs1_release.171231-1800) Microsoft Corporation IE ActiveX Interface Marshaling Library 131795770645383654 0x7ffac1e50000 188416 C:\Windows\SYSTEM32\RTWorkQ.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL для WorkQueue реального времени 131795770645383654 0x7ffac20d0000 110592 C:\Windows\System32\rmclient.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Resource Manager Client 131795770645383654 0x7ffac23c0000 331776 C:\Windows\System32\OneCoreCommonProxyStub.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation OneCore Common Proxy Stub 131795770645383654 0x7ffac2700000 98304 C:\Windows\SYSTEM32\NETAPI32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API DLL 131795770645383654 0x7ffac2990000 385024 C:\Windows\SYSTEM32\NInput.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Pen and Touch Input Component 131795770645383654 0x7ffac2a20000 81920 C:\Windows\SYSTEM32\rtutils.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Routing Utilities 131795770645383654 0x7ffac2bf0000 65536 C:\Windows\SYSTEM32\EFSUTIL.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation EFS Utility Library 131795770645383654 0x7ffac34e0000 1843200 C:\Windows\SYSTEM32\urlmon.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширения OLE32 для Win32 131795770645383654 0x7ffac3cb0000 2772992 C:\Windows\SYSTEM32\iertutil.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служебная программа времени выполнения для Internet Explorer 131795770645383654 0x7ffac4000000 274432 C:\Windows\SYSTEM32\policymanager.dll 10.0.14393.2035 (rs1_release_inmarket.180110-1910) Microsoft Corporation Policy Manager DLL 131795770645383654 0x7ffac42a0000 659456 C:\Windows\SYSTEM32\StateRepository.Core.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation StateRepository Core 131795770645383654 0x7ffac46d0000 4161536 C:\Windows\System32\Windows.StateRepository.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Сервер Windows StateRepository API Server 131795770645383654 0x7ffac4e70000 102400 C:\Windows\SYSTEM32\samcli.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Security Accounts Manager Client DLL 131795770645383654 0x7ffac5350000 1765376 C:\Windows\System32\Windows.UI.Immersive.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation WINDOWS.UI.IMMERSIVE 131795770645383654 0x7ffac5c50000 131072 C:\Windows\SYSTEM32\rasman.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Remote Access Connection Manager 131795770645383654 0x7ffac60e0000 221184 C:\Windows\SYSTEM32\XmlLite.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft XmlLite Library 131795770645383654 0x7ffac69c0000 839680 C:\Windows\SYSTEM32\WINHTTP.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Службы HTTP Windows 131795770645383654 0x7ffac6ac0000 835584 C:\Windows\System32\Windows.UI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Runtime UI Foundation DLL 131795770645383654 0x7ffac6c40000 2596864 C:\Windows\WinSxS\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.14393.953_none_42151e83c686086b\Comctl32.dll 6.10 (rs1_release_inmarket.170303-1614) Microsoft Corporation Библиотека элементов управления взаимодействия с пользователем 131795770645383654 0x7ffac6f50000 5632000 C:\Windows\SYSTEM32\d2d1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека Microsoft D2D 131795770645383654 0x7ffac7580000 1077248 C:\Windows\SYSTEM32\MrmCoreR.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Windows MRM 131795770645383654 0x7ffac76a0000 159744 C:\Windows\SYSTEM32\sppc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Software Licensing Client DLL 131795770645383654 0x7ffac7720000 1601536 C:\Windows\System32\OneCoreUAPCommonProxyStub.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation OneCoreUAP Common Proxy Stub 131795770645383654 0x7ffac7990000 155648 C:\Windows\SYSTEM32\SLC.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Software Licensing Client DLL 131795770645383654 0x7ffac7fc0000 2674688 C:\Windows\SYSTEM32\d3d10warp.dll 10.0.14393.576 (rs1_release_inmarket.161208-2252) Microsoft Corporation Direct3D 10 Rasterizer 131795770645383654 0x7ffac84f0000 299008 C:\Windows\system32\DataExchange.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation Data exchange 131795770645383654 0x7ffac8880000 69632 C:\Windows\SYSTEM32\wmiclnt.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation WMI Client API 131795770645383654 0x7ffac88a0000 2842624 C:\Windows\SYSTEM32\d3d11.dll 10.0.14393.953 (rs1_release_inmarket.170303-1614) Microsoft Corporation Direct3D 11 Runtime 131795770645383654 0x7ffac9220000 397312 C:\Windows\SYSTEM32\wevtapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API настройки и использования событий 131795770645383654 0x7ffac9290000 40960 C:\Windows\SYSTEM32\DSROLE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DS Setup Client DLL 131795770645383654 0x7ffac92e0000 1269760 C:\Windows\System32\WinTypes.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL основных типов Windows 131795770645383654 0x7ffac9500000 2682880 C:\Windows\system32\CoreUIComponents.dll 131795770645383654 0x7ffac9f50000 1736704 C:\Windows\system32\windowscodecs.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Microsoft Windows Codecs Library 131795770645383654 0x7ffaca340000 1593344 C:\Windows\SYSTEM32\PROPSYS.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Система страниц свойств (Майкрософт) 131795770645383654 0x7ffaca4e0000 77824 C:\Windows\SYSTEM32\WTSAPI32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Remote Desktop Session Host Server SDK APIs 131795770645383654 0x7ffaca560000 45056 C:\Windows\SYSTEM32\NcaApi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Network Connectivity Assistant API 131795770645383654 0x7ffaca570000 421888 C:\Windows\SYSTEM32\Bcp47Langs.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation BCP47 Language Classes 131795770645383654 0x7ffaca5e0000 155648 C:\Windows\SYSTEM32\dwmapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Интерфейс API диспетчера окон рабочего стола (Майкрософт) 131795770645383654 0x7ffaca640000 770048 C:\Windows\SYSTEM32\CoreMessaging.dll 10.0.14393.0 Microsoft Corporation Microsoft CoreMessaging Dll 131795770645383654 0x7ffaca770000 1380352 C:\Windows\SYSTEM32\dcomp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft DirectComposition Library 131795770645383654 0x7ffacaf00000 610304 C:\Windows\system32\uxtheme.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека тем UxTheme (Microsoft) 131795770645383654 0x7ffacb140000 593920 C:\Windows\SYSTEM32\msvcp110_win.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Microsoft® STL110 C++ Runtime Library 131795770645383654 0x7ffacb1e0000 1163264 C:\Windows\System32\twinapi.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation twinapi.appcore 131795770645383654 0x7ffacb300000 364544 C:\Windows\SYSTEM32\VEEventDispatcher.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Visual Element Event dispatcher 131795770645383654 0x7ffacb3f0000 163840 C:\Windows\SYSTEM32\DEVOBJ.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Device Information Set DLL 131795770645383654 0x7ffacb780000 651264 C:\Windows\SYSTEM32\dxgi.dll 10.0.14393.953 (rs1_release_inmarket.170303-1614) Microsoft Corporation DirectX Graphics Infrastructure 131795770645383654 0x7ffacbd30000 229376 C:\Windows\SYSTEM32\IPHLPAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API вспомогательного приложения IP 131795770645383654 0x7ffacbe20000 53248 C:\Windows\SYSTEM32\netutils.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API Helpers DLL 131795770645383654 0x7ffacbe40000 126976 C:\Windows\SYSTEM32\USERENV.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Userenv 131795770645383654 0x7ffacc150000 94208 C:\Windows\SYSTEM32\cryptsp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Cryptographic Service Provider API 131795770645383654 0x7ffacc170000 45056 C:\Windows\SYSTEM32\CRYPTBASE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base cryptographic API DLL 131795770645383654 0x7ffacc1f0000 241664 C:\Windows\SYSTEM32\NTASN1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft ASN.1 API 131795770645383654 0x7ffacc230000 155648 C:\Windows\SYSTEM32\ncrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Маршрутизатор Windows NCrypt 131795770645383654 0x7ffacc350000 180224 C:\Windows\SYSTEM32\SspiCli.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Security Support Provider Interface 131795770645383654 0x7ffacc5c0000 352256 C:\Windows\SYSTEM32\WINSTA.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Winstation Library 131795770645383654 0x7ffacc620000 176128 C:\Windows\SYSTEM32\bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795770645383654 0x7ffacc6e0000 61440 C:\Windows\System32\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795770645383654 0x7ffacc6f0000 311296 C:\Windows\System32\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795770645383654 0x7ffacc740000 81920 C:\Windows\System32\profapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Profile Basic API 131795770645383654 0x7ffacc760000 65536 C:\Windows\System32\MSASN1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ASN.1 Runtime APIs 131795770645383654 0x7ffacc8f0000 1003520 C:\Windows\System32\ucrtbase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645383654 0x7ffacc9f0000 434176 C:\Windows\System32\bcryptPrimitives.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Cryptographic Primitives Library 131795770645383654 0x7ffacca60000 122880 C:\Windows\System32\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795770645383654 0x7ffaccae0000 692224 C:\Windows\System32\shcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795770645383654 0x7ffaccb90000 7180288 C:\Windows\System32\windows.storage.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API хранения Microsoft WinRT 131795770645383654 0x7ffacd270000 2215936 C:\Windows\System32\KERNELBASE.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645383654 0x7ffacd490000 1871872 C:\Windows\System32\CRYPT32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API32 криптографии 131795770645383654 0x7ffacd710000 638976 C:\Windows\System32\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645383654 0x7ffacd7b0000 270336 C:\Windows\System32\cfgmgr32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Configuration Manager DLL 131795770645383654 0x7ffacd810000 22056960 C:\Windows\System32\SHELL32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Общая библиотека оболочки Windows 131795770645383654 0x7ffaced20000 782336 C:\Windows\System32\OLEAUT32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795770645383654 0x7ffacee50000 1183744 C:\Windows\System32\RPCRT4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795770645383654 0x7ffacef90000 647168 C:\Windows\System32\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795770645383654 0x7ffacf030000 651264 C:\Windows\System32\clbcatq.dll 2001.12.10941.16384 (rs1_release.160715-1616) Microsoft Corporation COM+ Configuration Catalog 131795770645383654 0x7ffacf0d0000 704512 C:\Windows\System32\KERNEL32.DLL 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645383654 0x7ffacf1e0000 1417216 C:\Windows\System32\msctf.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Серверная библиотека MSCTF 131795770645383654 0x7ffacf770000 212992 C:\Windows\System32\GDI32.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation GDI Client DLL 131795770645383654 0x7ffacf820000 434176 C:\Windows\System32\WS2_32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation 32-разрядная библиотека Windows Socket 2.0 131795770645383654 0x7ffacf890000 188416 C:\Windows\System32\IMM32.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Multi-User Windows IMM32 API Client DLL 131795770645383654 0x7ffacf8c0000 1462272 C:\Windows\System32\USER32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795770645383654 0x7ffacfb30000 2916352 C:\Windows\System32\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795770645383654 0x7ffacfe20000 663552 C:\Windows\System32\advapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795770645383654 0x7ffad0070000 1277952 C:\Windows\System32\ole32.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft OLE для Windows 131795770645383654 0x7ffad01b0000 335872 C:\Windows\System32\SHLWAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека небольших программ оболочки 131795770645383654 0x7ffad0210000 364544 C:\Windows\System32\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795770645383654 0x7ffad0270000 1908736 C:\Windows\SYSTEM32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 67 10964 664 6 00000000:0031f1ab 131794956837373387 0 0 1 Обязательная метка\Высокий обязательный уровень WIN-0UOTFKKVN1S\User DllHost.exe C:\Windows\system32\DllHost.exe C:\Windows\system32\DllHost.exe /Processid:{BA126F01-2166-11D1-B1D0-00805FC1270E} Microsoft Corporation 10.0.14393.0 (rs1_release.160715-1616) COM Surrogate 131795770645383742 0x7ff7a2280000 36864 C:\Windows\system32\DllHost.exe 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation COM Surrogate 131795770645383742 0x7ffab2460000 2822144 C:\Windows\system32\netshell.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Оболочка сетевых подключений 131795770645383742 0x7ffac9790000 98304 C:\Windows\system32\nlaapi.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Network Location Awareness 2 131795770645383742 0x7ffacaf00000 610304 C:\Windows\system32\uxtheme.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека тем UxTheme (Microsoft) 131795770645383742 0x7ffacbd30000 229376 C:\Windows\system32\IPHLPAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API вспомогательного приложения IP 131795770645383742 0x7ffacc6e0000 61440 C:\Windows\System32\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795770645383742 0x7ffacc6f0000 311296 C:\Windows\System32\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795770645383742 0x7ffacc740000 81920 C:\Windows\System32\profapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Profile Basic API 131795770645383742 0x7ffacc8f0000 1003520 C:\Windows\System32\ucrtbase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645383742 0x7ffacc9f0000 434176 C:\Windows\System32\bcryptPrimitives.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Cryptographic Primitives Library 131795770645383742 0x7ffacca60000 122880 C:\Windows\System32\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795770645383742 0x7ffaccae0000 692224 C:\Windows\System32\shcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795770645383742 0x7ffaccb90000 7180288 C:\Windows\System32\windows.storage.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API хранения Microsoft WinRT 131795770645383742 0x7ffacd270000 2215936 C:\Windows\System32\KERNELBASE.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645383742 0x7ffacd7b0000 270336 C:\Windows\System32\cfgmgr32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Configuration Manager DLL 131795770645383742 0x7ffacd810000 22056960 C:\Windows\System32\SHELL32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Общая библиотека оболочки Windows 131795770645383742 0x7ffacee50000 1183744 C:\Windows\System32\RPCRT4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795770645383742 0x7ffacef90000 647168 C:\Windows\System32\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795770645383742 0x7ffacf030000 651264 C:\Windows\System32\clbcatq.dll 2001.12.10941.16384 (rs1_release.160715-1616) Microsoft Corporation COM+ Configuration Catalog 131795770645383742 0x7ffacf0d0000 704512 C:\Windows\System32\KERNEL32.DLL 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645383742 0x7ffacf770000 212992 C:\Windows\System32\GDI32.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation GDI Client DLL 131795770645383742 0x7ffacf890000 188416 C:\Windows\System32\IMM32.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Multi-User Windows IMM32 API Client DLL 131795770645383742 0x7ffacf8c0000 1462272 C:\Windows\System32\user32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795770645383742 0x7ffacfb30000 2916352 C:\Windows\System32\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795770645383742 0x7ffacfe20000 663552 C:\Windows\System32\advapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795770645383742 0x7ffad0070000 1277952 C:\Windows\System32\ole32.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft OLE для Windows 131795770645383742 0x7ffad01b0000 335872 C:\Windows\System32\SHLWAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека небольших программ оболочки 131795770645383742 0x7ffad0210000 364544 C:\Windows\System32\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795770645383742 0x7ffad0270000 1908736 C:\Windows\SYSTEM32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 76 11496 664 6 00000000:0031f1da 131794958406617238 0 0 1 Обязательная метка\Низкий обязательный уровень WIN-0UOTFKKVN1S\User SearchUI.exe C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\SearchUI.exe "C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\SearchUI.exe" -ServerName:CortanaUI.AppXa50dqqa5gqv4a428c9y1jjw7m3btvepj.mca Microsoft Corporation 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Search and Cortana application 131795770645385613 0x7ff79c3c0000 10706944 C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\SearchUI.exe 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Search and Cortana application 131795770645385613 0x7ffab2c00000 8179712 C:\Windows\SYSTEM32\chakra.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft ® Chakra (Private) 131795770645385613 0x7ffab33d0000 258048 C:\Windows\SYSTEM32\MLANG.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL многоязыковой поддержки 131795770645385613 0x7ffab3540000 22740992 C:\Windows\SYSTEM32\edgehtml.dll 11.00.14393.447 (rs1_release_inmarket.161102-0100) Microsoft Corporation Веб-платформа Microsoft Edge 131795770645385613 0x7ffab4b90000 655360 C:\Windows\System32\StructuredQuery.dll 7.0.14393.2068 (rs1_release.180209-1727) Microsoft Corporation Structured Query 131795770645385613 0x7ffab4c70000 4874240 C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\RemindersUI.dll 131795770645385613 0x7ffab52c0000 2445312 C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.BackgroundTask.dll 131795770645385613 0x7ffab5520000 3231744 C:\Windows\SYSTEM32\msftedit.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Элемент управления "Поле ввода форматированного текста", версия 8.5 131795770645385613 0x7ffab5840000 3108864 C:\Windows\System32\Speech_OneCore\Common\sapi_onecore.dll 5.3.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Speech API 131795770645385613 0x7ffab5b40000 2527232 C:\Windows\SYSTEM32\dwrite.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Службы Microsoft DirectX Typography 131795770645385613 0x7ffab5db0000 9781248 C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\CortanaApi.dll 131795770645385613 0x7ffab6710000 17231872 C:\Windows\System32\Windows.UI.Xaml.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows.UI.Xaml dll 131795770645385613 0x7ffab7a00000 3424256 C:\Windows\system32\tquery.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Запросы Microsoft Tripoli 131795770645385613 0x7ffab9c00000 1343488 C:\Windows\System32\Windows.Web.Http.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL Windows.Web.Http 131795770645385613 0x7ffab9d50000 1429504 C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Core.dll 131795770645385613 0x7ffabaab0000 94208 C:\Windows\SYSTEM32\profext.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation profext 131795770645385613 0x7ffabae40000 110592 C:\Windows\SYSTEM32\capauthz.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API авторизации возможностей 131795770645385613 0x7ffabaf70000 270336 C:\Windows\SYSTEM32\edputil.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служебная программа EDP 131795770645385613 0x7ffabb200000 294912 C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\CortanaApi.ProxyStub.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation "CortanaApi.ProxyStub.DYNLINK" 131795770645385613 0x7ffabb3c0000 450560 C:\Windows\SYSTEM32\TextInputFramework.dll 10.0.14393.2189 (rs1_release.180329-1711) Microsoft Corporation "TextInputFramework.DYNLINK" 131795770645385613 0x7ffabb490000 512000 C:\Windows\System32\twinapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation twinapi 131795770645385613 0x7ffabbd10000 65536 C:\Windows\SYSTEM32\tokenbinding.dll 10.0.14393.1593 (rs1_release.170731-1934) Microsoft Corporation Token Binding Protocol 131795770645385613 0x7ffabd4a0000 1613824 C:\Windows\System32\Windows.Globalization.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Globalization 131795770645385613 0x7ffabe4d0000 286720 C:\Windows\System32\MSWB7.dll 10.0.14393.1737 (rs1_release_inmarket.170914-1249) Microsoft Corporation MSWB7 DLL 131795770645385613 0x7ffabe6e0000 561152 C:\Windows\system32\directmanipulation.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Direct Manipulation Component 131795770645385613 0x7ffabe770000 774144 C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\CSGSuggestLib.dll 131795770645385613 0x7ffabe9c0000 188416 C:\Windows\SYSTEM32\globinputhost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Globalization Extension API for Input 131795770645385613 0x7ffabea90000 135168 C:\Windows\System32\Windows.ApplicationModel.Background.SystemEventsBroker.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Background System Events Broker API Server 131795770645385613 0x7ffabeac0000 335872 C:\Windows\System32\Windows.Storage.ApplicationData.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Application Data API Server 131795770645385613 0x7ffabeb20000 385024 C:\Windows\System32\Windows.ApplicationModel.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows ApplicationModel API Server 131795770645385613 0x7ffabefa0000 192512 C:\Windows\system32\Cortana.Persona.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Cortana.Persona 131795770645385613 0x7ffabf5d0000 2924544 C:\Windows\SYSTEM32\WININET.dll 11.00.14393.447 (rs1_release_inmarket.161102-0100) Microsoft Corporation Расширения Интернета для Win32 131795770645385613 0x7ffabf8a0000 122880 C:\Windows\System32\Windows.Cortana.ProxyStub.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows.Cortana.ProxyStub 131795770645385613 0x7ffabfce0000 90112 C:\Windows\System32\Windows.Globalization.Fontgroups.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Fonts Mapping API 131795770645385613 0x7ffabfd00000 356352 C:\Windows\System32\Windows.Graphics.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation WinRT Windows Graphics DLL 131795770645385613 0x7ffabfd80000 86016 C:\Windows\System32\threadpoolwinrt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows WinRT Threadpool 131795770645385613 0x7ffabfe10000 237568 C:\Windows\SYSTEM32\rometadata.dll 4.6.1586.0 built by: NETFXREL2 Microsoft Corporation Microsoft MetaData Library 131795770645385613 0x7ffac00c0000 282624 C:\Windows\SYSTEM32\windows.ui.core.textinput.dll 10.0.14393.2189 (rs1_release.180329-1711) Microsoft Corporation Windows.UI.Core.TextInput dll 131795770645385613 0x7ffac01e0000 397312 C:\Windows\SYSTEM32\wincorlib.DLL 10.0.14393.576 (rs1_release_inmarket.161208-2252) Microsoft Corporation Microsoft Windows ® WinRT core library 131795770645385613 0x7ffac0bf0000 3559424 C:\Windows\System32\ActXPrxy.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation ActiveX Interface Marshaling Library 131795770645385613 0x7ffac10b0000 217088 C:\Windows\system32\PersonaX.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation PersonaX 131795770645385613 0x7ffac1c40000 94208 C:\Windows\System32\SystemSettings.DataModel.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SystemSettings.Datamodel private API 131795770645385613 0x7ffac20d0000 110592 C:\Windows\System32\rmclient.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Resource Manager Client 131795770645385613 0x7ffac23c0000 331776 C:\Windows\System32\OneCoreCommonProxyStub.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation OneCore Common Proxy Stub 131795770645385613 0x7ffac2990000 385024 C:\Windows\SYSTEM32\NInput.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Pen and Touch Input Component 131795770645385613 0x7ffac2c30000 135168 C:\Windows\SYSTEM32\clipc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиент платформы лицензирования клиента 131795770645385613 0x7ffac2d80000 5140480 C:\Windows\SYSTEM32\cdp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API клиента Microsoft (R) CDP 131795770645385613 0x7ffac34e0000 1843200 C:\Windows\SYSTEM32\urlmon.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширения OLE32 для Win32 131795770645385613 0x7ffac3810000 167936 C:\Windows\SYSTEM32\Cabinet.dll 5.00 (rs1_release.160715-1616) Microsoft Corporation Microsoft® Cabinet File API 131795770645385613 0x7ffac3b80000 286720 C:\Windows\system32\indexeddbserver.dll 10.0.14393.2189 (rs1_release.180329-1711) Microsoft Corporation IndexedDb host 131795770645385613 0x7ffac3bf0000 94208 C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\ActionMgr.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Cortana Action Manager 131795770645385613 0x7ffac3cb0000 2772992 C:\Windows\SYSTEM32\iertutil.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служебная программа времени выполнения для Internet Explorer 131795770645385613 0x7ffac4000000 274432 C:\Windows\SYSTEM32\policymanager.dll 10.0.14393.2035 (rs1_release_inmarket.180110-1910) Microsoft Corporation Policy Manager DLL 131795770645385613 0x7ffac5070000 798720 C:\Windows\System32\Windows.Web.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL веб-клиента 131795770645385613 0x7ffac5350000 1765376 C:\Windows\System32\Windows.UI.Immersive.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation WINDOWS.UI.IMMERSIVE 131795770645385613 0x7ffac5ce0000 1744896 C:\Windows\SYSTEM32\UIAutomationCore.DLL 7.2.14393.0 (rs1_release.160715-1616) Microsoft Corporation Основные автоматические компоненты Microsoft UI 131795770645385613 0x7ffac60e0000 221184 C:\Windows\SYSTEM32\XmlLite.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft XmlLite Library 131795770645385613 0x7ffac6610000 40960 C:\Windows\System32\rasadhlp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Remote Access AutoDial Helper 131795770645385613 0x7ffac6620000 192512 C:\Windows\System32\biwinrt.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation Windows Background Broker Infrastructure 131795770645385613 0x7ffac66a0000 86016 C:\Windows\SYSTEM32\ondemandconnroutehelper.dll 10.0.14393.351 (rs1_release_inmarket.161014-1755) Microsoft Corporation On Demand Connctiond Route Helper 131795770645385613 0x7ffac69c0000 839680 C:\Windows\SYSTEM32\WINHTTP.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Службы HTTP Windows 131795770645385613 0x7ffac6ac0000 835584 C:\Windows\System32\Windows.UI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Runtime UI Foundation DLL 131795770645385613 0x7ffac6bb0000 118784 C:\Windows\system32\windows.cortana.pal.desktop.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows.Cortana.PAL.Desktop 131795770645385613 0x7ffac6bd0000 413696 C:\Windows\SYSTEM32\OLEACC.dll 7.2.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Active Accessibility Core Component 131795770645385613 0x7ffac6ed0000 155648 C:\Windows\SYSTEM32\srpapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL программных интерфейсов (API) поставщика общих ресурсов 131795770645385613 0x7ffac6f50000 5632000 C:\Windows\SYSTEM32\d2d1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека Microsoft D2D 131795770645385613 0x7ffac7580000 1077248 C:\Windows\System32\MrmCoreR.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Windows MRM 131795770645385613 0x7ffac7720000 1601536 C:\Windows\System32\OneCoreUAPCommonProxyStub.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation OneCoreUAP Common Proxy Stub 131795770645385613 0x7ffac78b0000 65536 C:\Windows\system32\msimtf.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Active IMM Server DLL 131795770645385613 0x7ffac7c50000 118784 C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\BingConfigurationClient.dll 10.0.14393.82 (rs1_release.160805-1735) Microsoft Corporation Bing Configuration Client DLL 131795770645385613 0x7ffac7d80000 49152 C:\Windows\System32\Windows.ApplicationModel.Background.TimeBroker.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Background Time Broker API Server 131795770645385613 0x7ffac7e30000 40960 C:\Windows\SYSTEM32\fontgroupsoverride.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation fontgroupsoverride.dll 131795770645385613 0x7ffac7fc0000 2674688 C:\Windows\SYSTEM32\d3d10warp.dll 10.0.14393.576 (rs1_release_inmarket.161208-2252) Microsoft Corporation Direct3D 10 Rasterizer 131795770645385613 0x7ffac83d0000 106496 C:\Windows\SYSTEM32\dhcpcsvc.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служба DHCP-клиента 131795770645385613 0x7ffac83f0000 90112 C:\Windows\SYSTEM32\dhcpcsvc6.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиент DHCPv6 131795770645385613 0x7ffac84f0000 299008 C:\Windows\system32\DataExchange.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation Data exchange 131795770645385613 0x7ffac8810000 45056 C:\Windows\SYSTEM32\WINNSI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Network Store Information RPC interface 131795770645385613 0x7ffac88a0000 2842624 C:\Windows\SYSTEM32\d3d11.dll 10.0.14393.953 (rs1_release_inmarket.170303-1614) Microsoft Corporation Direct3D 11 Runtime 131795770645385613 0x7ffac8fa0000 253952 C:\Windows\SYSTEM32\logoncli.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Net Logon Client DLL 131795770645385613 0x7ffac92e0000 1269760 C:\Windows\System32\WinTypes.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL основных типов Windows 131795770645385613 0x7ffac9480000 462848 C:\Windows\SYSTEM32\MMDevAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation MMDevice API 131795770645385613 0x7ffac9500000 2682880 C:\Windows\system32\CoreUIComponents.dll 131795770645385613 0x7ffac9f50000 1736704 C:\Windows\system32\windowscodecs.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Microsoft Windows Codecs Library 131795770645385613 0x7ffaca260000 45056 C:\Windows\SYSTEM32\SystemEventsBrokerClient.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation system Events Broker Client Library 131795770645385613 0x7ffaca340000 1593344 C:\Windows\SYSTEM32\PROPSYS.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Система страниц свойств (Майкрософт) 131795770645385613 0x7ffaca570000 421888 C:\Windows\SYSTEM32\Bcp47Langs.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation BCP47 Language Classes 131795770645385613 0x7ffaca5e0000 155648 C:\Windows\SYSTEM32\dwmapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Интерфейс API диспетчера окон рабочего стола (Майкрософт) 131795770645385613 0x7ffaca640000 770048 C:\Windows\SYSTEM32\CoreMessaging.dll 10.0.14393.0 Microsoft Corporation Microsoft CoreMessaging Dll 131795770645385613 0x7ffaca770000 1380352 C:\Windows\SYSTEM32\dcomp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft DirectComposition Library 131795770645385613 0x7ffacab40000 176128 C:\Windows\SYSTEM32\winmmbase.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base Multimedia Extension API DLL 131795770645385613 0x7ffacadf0000 499712 C:\Windows\system32\apphelp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиентская библиотека совместимости приложений 131795770645385613 0x7ffacaf00000 610304 C:\Windows\system32\uxtheme.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека тем UxTheme (Microsoft) 131795770645385613 0x7ffacb140000 593920 C:\Windows\SYSTEM32\msvcp110_win.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Microsoft® STL110 C++ Runtime Library 131795770645385613 0x7ffacb1e0000 1163264 C:\Windows\System32\twinapi.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation twinapi.appcore 131795770645385613 0x7ffacb300000 364544 C:\Windows\SYSTEM32\VEEventDispatcher.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Visual Element Event dispatcher 131795770645385613 0x7ffacb3f0000 163840 C:\Windows\SYSTEM32\DEVOBJ.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Device Information Set DLL 131795770645385613 0x7ffacb420000 204800 C:\Windows\SYSTEM32\ntmarta.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик Windows NT MARTA 131795770645385613 0x7ffacb780000 651264 C:\Windows\SYSTEM32\dxgi.dll 10.0.14393.953 (rs1_release_inmarket.170303-1614) Microsoft Corporation DirectX Graphics Infrastructure 131795770645385613 0x7ffacbd30000 229376 C:\Windows\SYSTEM32\IPHLPAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API вспомогательного приложения IP 131795770645385613 0x7ffacbd70000 659456 C:\Windows\SYSTEM32\DNSAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Динамическая библиотека API DNS-клиента 131795770645385613 0x7ffacbe40000 126976 C:\Windows\SYSTEM32\userenv.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Userenv 131795770645385613 0x7ffacbfb0000 376832 C:\Windows\system32\mswsock.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширение поставщика службы API Microsoft Windows Sockets 2.0 131795770645385613 0x7ffacc150000 94208 C:\Windows\SYSTEM32\cryptsp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Cryptographic Service Provider API 131795770645385613 0x7ffacc170000 45056 C:\Windows\SYSTEM32\CRYPTBASE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base cryptographic API DLL 131795770645385613 0x7ffacc1f0000 241664 C:\Windows\SYSTEM32\NTASN1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft ASN.1 API 131795770645385613 0x7ffacc230000 155648 C:\Windows\SYSTEM32\ncrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Маршрутизатор Windows NCrypt 131795770645385613 0x7ffacc350000 180224 C:\Windows\SYSTEM32\SspiCli.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Security Support Provider Interface 131795780654647361 0x7ffacc520000 622592 C:\Windows\System32\sxs.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Fusion 2.5 131795770645385613 0x7ffacc620000 176128 C:\Windows\SYSTEM32\bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795770645385613 0x7ffacc6e0000 61440 C:\Windows\System32\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795770645385613 0x7ffacc6f0000 311296 C:\Windows\System32\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795770645385613 0x7ffacc740000 81920 C:\Windows\System32\profapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Profile Basic API 131795770645385613 0x7ffacc760000 65536 C:\Windows\System32\MSASN1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ASN.1 Runtime APIs 131795770645385613 0x7ffacc8f0000 1003520 C:\Windows\System32\ucrtbase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645385613 0x7ffacc9f0000 434176 C:\Windows\System32\bcryptPrimitives.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Cryptographic Primitives Library 131795770645385613 0x7ffacca60000 122880 C:\Windows\System32\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795770645385613 0x7ffaccae0000 692224 C:\Windows\System32\shcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795770645385613 0x7ffaccb90000 7180288 C:\Windows\System32\windows.storage.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API хранения Microsoft WinRT 131795770645385613 0x7ffacd270000 2215936 C:\Windows\System32\KERNELBASE.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645385613 0x7ffacd490000 1871872 C:\Windows\System32\CRYPT32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API32 криптографии 131795770645385613 0x7ffacd710000 638976 C:\Windows\System32\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645385613 0x7ffacd7b0000 270336 C:\Windows\System32\cfgmgr32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Configuration Manager DLL 131795770645385613 0x7ffacd810000 22056960 C:\Windows\System32\shell32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Общая библиотека оболочки Windows 131795770645385613 0x7ffaced20000 782336 C:\Windows\System32\OLEAUT32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795770645385613 0x7ffacee50000 1183744 C:\Windows\System32\RPCRT4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795770645385613 0x7ffacef80000 32768 C:\Windows\System32\NSI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation NSI User-mode interface DLL 131795770645385613 0x7ffacef90000 647168 C:\Windows\System32\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795770645385613 0x7ffacf0d0000 704512 C:\Windows\System32\KERNEL32.DLL 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645385613 0x7ffacf1e0000 1417216 C:\Windows\System32\msctf.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Серверная библиотека MSCTF 131795770645385613 0x7ffacf770000 212992 C:\Windows\System32\GDI32.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation GDI Client DLL 131795770645385613 0x7ffacf820000 434176 C:\Windows\System32\WS2_32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation 32-разрядная библиотека Windows Socket 2.0 131795770645385613 0x7ffacf890000 188416 C:\Windows\System32\IMM32.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Multi-User Windows IMM32 API Client DLL 131795770645385613 0x7ffacf8c0000 1462272 C:\Windows\System32\user32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795770645385613 0x7ffacfb30000 2916352 C:\Windows\System32\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795770645385613 0x7ffacfe20000 663552 C:\Windows\System32\advapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795770645385613 0x7ffad0070000 1277952 C:\Windows\System32\ole32.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft OLE для Windows 131795770645385613 0x7ffad01b0000 335872 C:\Windows\System32\shlwapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека небольших программ оболочки 131795770645385613 0x7ffad0210000 364544 C:\Windows\System32\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795770645385613 0x7ffad0270000 1908736 C:\Windows\SYSTEM32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 79 5612 904 22 00000000:000003e5 131794965205293998 0 0 1 Обязательная метка\Обязательный уровень системы NT AUTHORITY\LOCAL SERVICE dashost.exe C:\Windows\system32\dashost.exe dashost.exe {609e1ffd-7b4d-4dbc-a36f725917d81f2d} Microsoft Corporation 10.0.14393.82 (rs1_release.160805-1735) Device Association Framework Provider Host 131795770645385987 0x7ff6559c0000 110592 C:\Windows\system32\dashost.exe 10.0.14393.82 (rs1_release.160805-1735) Microsoft Corporation Device Association Framework Provider Host 131795770645385987 0x7ffabb1a0000 274432 C:\Windows\system32\DAFWSD.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DAF WSD Provider 131795770645385987 0x7ffabc970000 188416 C:\Windows\system32\dafupnp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DAF UPnP Provider 131795770645385987 0x7ffac1d60000 589824 C:\Windows\system32\webio.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API протоколов передачи по Веб 131795770645385987 0x7ffac3f60000 225280 C:\Windows\system32\FWPolicyIOMgr.dll 10.0.14393.2189 (rs1_release.180329-1711) Microsoft Corporation FwPolicyIoMgr DLL 131795770645385987 0x7ffac60e0000 221184 C:\Windows\system32\XmlLite.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft XmlLite Library 131795770645385987 0x7ffac66c0000 32768 C:\Windows\system32\wship6.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL помощника Winsock2 (TL/IPv6) 131795770645385987 0x7ffac66d0000 32768 C:\Windows\system32\wshtcpip.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL помощника службы Winsock2 (TL/IPv4) 131795770645385987 0x7ffac6700000 40960 C:\Windows\system32\wshqos.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL помощника службы QoS Winsock2 131795770645385987 0x7ffac6750000 1380352 C:\Windows\system32\webservices.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Среда выполнения веб-служб Windows 131795770645385987 0x7ffac68b0000 696320 C:\Windows\system32\wsdapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Веб-службы для библиотек DLL API-интерфейсов устройств 131795770645385987 0x7ffac6990000 69632 C:\Windows\system32\deviceassociation.dll 10.0.14393.82 (rs1_release.160805-1735) Microsoft Corporation Device Association Client DLL 131795770645385987 0x7ffac69c0000 839680 C:\Windows\system32\WINHTTP.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Службы HTTP Windows 131795770645385987 0x7ffac79c0000 57344 C:\Windows\System32\npmproxy.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Network List Manager Proxy 131795770645385987 0x7ffac7e50000 86016 C:\Windows\system32\SSDPAPI.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation SSDP Client API DLL 131795770645385987 0x7ffac83d0000 106496 C:\Windows\SYSTEM32\dhcpcsvc.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служба DHCP-клиента 131795770645385987 0x7ffac83f0000 90112 C:\Windows\SYSTEM32\dhcpcsvc6.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиент DHCPv6 131795770645385987 0x7ffac8810000 45056 C:\Windows\SYSTEM32\WINNSI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Network Store Information RPC interface 131795770645385987 0x7ffac9f10000 221184 C:\Windows\System32\netprofm.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Network List Manager 131795770645385987 0x7ffacb360000 176128 C:\Windows\system32\fwbase.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Firewall Base DLL 131795770645385987 0x7ffacb460000 548864 C:\Windows\system32\FirewallAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API брандмауэра Windows 131795770645385987 0x7ffacbbb0000 208896 C:\Windows\system32\rsaenh.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Enhanced Cryptographic Provider 131795770645385987 0x7ffacbd30000 229376 C:\Windows\system32\IPHLPAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API вспомогательного приложения IP 131795770645385987 0x7ffacbd70000 659456 C:\Windows\system32\DNSAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Динамическая библиотека API DNS-клиента 131795770645385987 0x7ffacbfb0000 376832 C:\Windows\system32\mswsock.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширение поставщика службы API Microsoft Windows Sockets 2.0 131795770645385987 0x7ffacc150000 94208 C:\Windows\system32\CRYPTSP.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Cryptographic Service Provider API 131795770645385987 0x7ffacc170000 45056 C:\Windows\system32\CRYPTBASE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base cryptographic API DLL 131795770645385987 0x7ffacc350000 180224 C:\Windows\system32\SspiCli.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Security Support Provider Interface 131795770645385987 0x7ffacc620000 176128 C:\Windows\system32\bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795770645385987 0x7ffacc6e0000 61440 C:\Windows\System32\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795770645385987 0x7ffacc6f0000 311296 C:\Windows\System32\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795770645385987 0x7ffacc760000 65536 C:\Windows\System32\MSASN1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ASN.1 Runtime APIs 131795770645385987 0x7ffacc8f0000 1003520 C:\Windows\System32\ucrtbase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645385987 0x7ffacc9f0000 434176 C:\Windows\System32\bcryptPrimitives.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Cryptographic Primitives Library 131795770645385987 0x7ffacca60000 122880 C:\Windows\System32\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795770645385987 0x7ffacd270000 2215936 C:\Windows\System32\KERNELBASE.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645385987 0x7ffacd490000 1871872 C:\Windows\System32\CRYPT32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API32 криптографии 131795770645385987 0x7ffacd710000 638976 C:\Windows\System32\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645385987 0x7ffacd7b0000 270336 C:\Windows\System32\cfgmgr32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Configuration Manager DLL 131795770645385987 0x7ffaced20000 782336 C:\Windows\System32\OLEAUT32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795770645385987 0x7ffacee50000 1183744 C:\Windows\System32\RPCRT4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795770645385987 0x7ffacef80000 32768 C:\Windows\System32\NSI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation NSI User-mode interface DLL 131795770645385987 0x7ffacef90000 647168 C:\Windows\System32\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795770645385987 0x7ffacf030000 651264 C:\Windows\System32\clbcatq.dll 2001.12.10941.16384 (rs1_release.160715-1616) Microsoft Corporation COM+ Configuration Catalog 131795770645385987 0x7ffacf0d0000 704512 C:\Windows\System32\KERNEL32.DLL 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645385987 0x7ffacf770000 212992 C:\Windows\System32\GDI32.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation GDI Client DLL 131795770645385987 0x7ffacf820000 434176 C:\Windows\System32\WS2_32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation 32-разрядная библиотека Windows Socket 2.0 131795770645385987 0x7ffacf8c0000 1462272 C:\Windows\System32\user32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795770645385987 0x7ffacfb30000 2916352 C:\Windows\System32\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795770645385987 0x7ffad0210000 364544 C:\Windows\System32\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795770645385987 0x7ffad0270000 1908736 C:\Windows\SYSTEM32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 80 9720 9180 81 00000000:0031f1ab 131794969418818027 0 0 0 Обязательная метка\Высокий обязательный уровень WIN-0UOTFKKVN1S\User Windows10UpgraderApp.exe C:\Windows10Upgrade\Windows10UpgraderApp.exe "C:\Windows10Upgrade\Windows10UpgraderApp.exe" /Install /ClientID Win10Upgrade:VNL:NHV18:{} /SkipEULA /PostEosUi Microsoft Corporation 1.4.9200.22452 Помощник по обновлению Windows 10 131795770645386103 0xb30000 1875968 C:\Windows10Upgrade\Windows10UpgraderApp.exe 1.4.9200.22452 Microsoft Corporation Помощник по обновлению Windows 10 131795770645386103 0x5c020000 335872 C:\Windows\System32\wow64.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation Win32 Emulation on NT64 131795770645386103 0x5c080000 487424 C:\Windows\System32\wow64win.dll 10.0.14393.1884 (rs1_release.171101-1233) Microsoft Corporation Wow64 Console and Win32 API Logging 131795770645386103 0x5c100000 40960 C:\Windows\System32\wow64cpu.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation AMD64 Wow64 CPU 131795770645386103 0x5fec0000 794624 C:\Windows\SysWOW64\wbem\fastprox.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation WMI Custom Marshaller 131795770645386103 0x5ffa0000 421888 C:\Windows\SysWOW64\wbemcomn.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation WMI 131795770645386103 0x60010000 53248 C:\Windows\SysWOW64\wbem\wbemprox.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation WMI 131795770645386103 0x60750000 1556480 C:\Program Files (x86)\360\Total Security\safemon\safemon.dll 8, 4, 0, 1420 Qihu 360 Software Co., Ltd. 360 Internet Security Internet Protection 131795770645386103 0x627d0000 249856 C:\Windows\SysWOW64\edputil.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служебная программа EDP 131795770645386103 0x64d00000 5079040 C:\Windows\SysWOW64\d2d1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека Microsoft D2D 131795770645386103 0x651e0000 20537344 C:\Windows\SysWOW64\mshtml.dll 11.00.14393.447 (rs1_release_inmarket.161102-0100) Microsoft Corporation Средство просмотра HTML Microsoft® 131795770645386103 0x66580000 12247040 C:\Windows\SysWOW64\ieframe.dll 11.00.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Браузер 131795770645386103 0x67200000 1978368 C:\Windows\SysWOW64\msxml6.dll 6.30.14393.2156 Microsoft Corporation MSXML 6.0 131795770645386103 0x67500000 1597440 C:\Windows\SysWOW64\ActXPrxy.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation ActiveX Interface Marshaling Library 131795770645386103 0x6b670000 212992 C:\Windows\SysWOW64\mlang.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL многоязыковой поддержки 131795770645386103 0x6c290000 987136 C:\Windows\SysWOW64\twinapi.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation twinapi.appcore 131795770645386103 0x6c390000 1126400 C:\Windows\SysWOW64\dcomp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft DirectComposition Library 131795770645386103 0x6c4b0000 278528 C:\Windows\SysWOW64\dataexchange.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation Data exchange 131795770645386103 0x6c540000 483328 C:\Windows\SysWOW64\webio.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API протоколов передачи по Веб 131795770645386103 0x6c720000 2318336 C:\Windows\SysWOW64\d3d10warp.dll 10.0.14393.576 (rs1_release_inmarket.161208-2252) Microsoft Corporation Direct3D 10 Rasterizer 131795770645386103 0x6c960000 57344 C:\Windows\SysWOW64\msimtf.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Active IMM Server DLL 131795770645386103 0x6c970000 3698688 C:\Windows\SysWOW64\jscript9.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft ® JScript 131795770645386103 0x6cd00000 69632 C:\Windows\SysWOW64\WLDP.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Политика блокировки Windows 131795770645386103 0x6cd20000 135168 C:\Windows\SysWOW64\srpapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL программных интерфейсов (API) поставщика общих ресурсов 131795770645386103 0x6cda0000 528384 C:\Windows\SysWOW64\sxs.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Fusion 2.5 131795770645386103 0x6d080000 151552 C:\Windows\SysWOW64\cryptnet.dll 10.0.14393.2035 (rs1_release_inmarket.180110-1910) Microsoft Corporation Crypto Network Related API 131795770645386103 0x6d0b0000 847872 C:\Windows\SysWOW64\WinTypes.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL основных типов Windows 131795770645386103 0x6d6e0000 634880 C:\Windows\SysWOW64\Windows.UI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Runtime UI Foundation DLL 131795770645386103 0x6d780000 876544 C:\Windows\SysWOW64\mrmcorer.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Windows MRM 131795770645386103 0x6d860000 1245184 C:\Windows\SysWOW64\MFC42u.dll 6.06.8063.0 Microsoft Corporation Общая библиотека MFCDLL - розничная версия 131795770645386103 0x6dcd0000 606208 C:\Windows\WinSxS\x86_microsoft.windows.common-controls_6595b64144ccf1df_5.82.14393.447_none_5507ded2cb4f7f4c\COMCTL32.dll 6.10 (rs1_release_inmarket.170303-1614) Microsoft Corporation Библиотека элементов управления взаимодействия с пользователем 131795770645386103 0x6ded0000 630784 C:\Windows\SysWOW64\ODBC32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ODBC Driver Manager 131795770645386103 0x6dfc0000 53248 C:\Windows\SysWOW64\execmodelproxy.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ExecModelProxy 131795770645386103 0x6dfd0000 253952 C:\Windows\SysWOW64\UIAnimation.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Animation Manager 131795770645386103 0x6e010000 208896 C:\Windows10Upgrade\Downloader.dll 1.4.9200.22452 (win8_ldr.180426-0600) Microsoft Corporation Downloader 131795770645386103 0x6e050000 81920 C:\Windows\SysWOW64\Windows.Shell.ServiceHostBuilder.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows.Shell.ServiceHostBuilder 131795770645386103 0x6e710000 335872 C:\Windows\SysWOW64\Bcp47Langs.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation BCP47 Language Classes 131795770645386103 0x70340000 536576 C:\Windows\SysWOW64\dxgi.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation DirectX Graphics Infrastructure 131795770645386103 0x703d0000 2056192 C:\Windows\SysWOW64\DWrite.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Службы Microsoft DirectX Typography 131795770645386103 0x705e0000 344064 C:\Windows\SysWOW64\OLEACC.DLL 7.2.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Active Accessibility Core Component 131795770645386103 0x70640000 1499136 C:\Windows\SysWOW64\windowscodecs.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Microsoft Windows Codecs Library 131795770645386103 0x707b0000 110592 C:\Windows\SysWOW64\ncryptsslp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft SChannel Provider 131795770645386103 0x707d0000 86016 C:\Windows\SysWOW64\SAMCLI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Security Accounts Manager Client DLL 131795770645386103 0x707f0000 2293760 C:\Windows\SysWOW64\d3d11.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation Direct3D 11 Runtime 131795770645386103 0x70a80000 409600 C:\Windows\SysWOW64\schannel.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик безопасности TLS/SSL 131795770645386103 0x70b40000 69632 C:\Windows\SysWOW64\mskeyprotect.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик защиты ключей (Майкрософт) 131795770645386103 0x70b70000 163840 C:\Windows\SysWOW64\ntmarta.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик Windows NT MARTA 131795770645386103 0x70ca0000 45056 C:\Windows\SysWOW64\NETUTILS.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API Helpers DLL 131795770645386103 0x70cc0000 65536 C:\Windows\SysWOW64\ondemandconnroutehelper.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation On Demand Connctiond Route Helper 131795770645386103 0x70e60000 176128 C:\Windows\SysWOW64\NTASN1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft ASN.1 API 131795770645386103 0x71140000 77824 C:\Windows\SysWOW64\NETAPI32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API DLL 131795770645386103 0x71610000 77824 C:\Windows\SysWOW64\dhcpcsvc6.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиент DHCPv6 131795770645386103 0x725e0000 2273280 C:\Windows\SysWOW64\iertutil.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служебная программа времени выполнения для Internet Explorer 131795770645386103 0x728e0000 1372160 C:\Windows\SysWOW64\PROPSYS.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Система страниц свойств (Майкрософт) 131795770645386103 0x72b90000 126976 C:\Windows\SysWOW64\dwmapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Интерфейс API диспетчера окон рабочего стола (Майкрософт) 131795770645386103 0x72cc0000 1658880 C:\Windows\SysWOW64\urlmon.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширения OLE32 для Win32 131795770645386103 0x73a40000 32768 C:\Windows\SysWOW64\WINNSI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Network Store Information RPC interface 131795770645386103 0x73a50000 299008 C:\Windows\SysWOW64\fwpuclnt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API пользовательского режима FWP/IPsec 131795770645386103 0x73aa0000 32768 C:\Windows\SysWOW64\DPAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Data Protection API 131795770645386103 0x73ab0000 32768 C:\Windows\SysWOW64\rasadhlp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Remote Access AutoDial Helper 131795770645386103 0x73ac0000 81920 C:\Windows\SysWOW64\dhcpcsvc.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служба DHCP-клиента 131795770645386103 0x73ae0000 40960 C:\Windows\SysWOW64\Secur32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Security Support Provider Interface 131795770645386103 0x73f00000 192512 C:\Windows\SysWOW64\IPHLPAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API вспомогательного приложения IP 131795770645386103 0x73f30000 512000 C:\Windows\SysWOW64\DNSAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Динамическая библиотека API DNS-клиента 131795770645386103 0x73ff0000 319488 C:\Windows\SysWOW64\mswsock.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширение поставщика службы API Microsoft Windows Sockets 2.0 131795770645386103 0x74060000 192512 C:\Windows\SysWOW64\rsaenh.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Enhanced Cryptographic Provider 131795770645386103 0x74110000 479232 C:\Windows\SysWOW64\uxtheme.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека тем UxTheme (Microsoft) 131795770645386103 0x74190000 110592 C:\Windows\SysWOW64\bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795770645386103 0x741b0000 77824 C:\Windows\SysWOW64\CRYPTSP.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Cryptographic Service Provider API 131795770645386103 0x74260000 2514944 C:\Windows\SysWOW64\WININET.dll 11.00.14393.447 (rs1_release_inmarket.161102-0100) Microsoft Corporation Расширения Интернета для Win32 131795770645386103 0x744d0000 2138112 C:\Windows\WinSxS\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.14393.953_none_89c2555adb023171\comctl32.dll 6.10 (rs1_release_inmarket.170303-1614) Microsoft Corporation Библиотека элементов управления взаимодействия с пользователем 131795770645386103 0x746e0000 32768 C:\Windows\SysWOW64\VERSION.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Version Checking and File Installation Libraries 131795770645386103 0x746f0000 106496 C:\Windows\SysWOW64\USERENV.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Userenv 131795770645386103 0x74730000 598016 C:\Windows\SysWOW64\apphelp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиентская библиотека совместимости приложений 131795770645386103 0x747d0000 40960 C:\Windows\SysWOW64\CRYPTBASE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base cryptographic API DLL 131795770645386103 0x747e0000 126976 C:\Windows\SysWOW64\SspiCli.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Security Support Provider Interface 131795770645386103 0x74800000 151552 C:\Windows\SysWOW64\IMM32.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Multi-User Windows IMM32 API Client DLL 131795770645386103 0x74910000 2170880 C:\Windows\SysWOW64\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795770645386103 0x74b30000 53248 C:\Windows\SysWOW64\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795770645386103 0x74b60000 790528 C:\Windows\SysWOW64\RPCRT4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795770645386103 0x74c30000 1417216 C:\Windows\SysWOW64\gdi32full.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation GDI Client DLL 131795770645386103 0x74d90000 24576 C:\Windows\SysWOW64\PSAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Process Status Helper 131795770645386103 0x74da0000 778240 C:\Windows\SysWOW64\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795770645386103 0x74e60000 557056 C:\Windows\SysWOW64\shcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795770645386103 0x74ef0000 540672 C:\Windows\SysWOW64\clbcatq.dll 2001.12.10941.16384 (rs1_release.160715-1616) Microsoft Corporation COM+ Configuration Catalog 131795770645386103 0x74f80000 278528 C:\Windows\SysWOW64\WINTRUST.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation Microsoft Trust Verification APIs 131795770645386103 0x74fd0000 405504 C:\Windows\SysWOW64\WS2_32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation 32-разрядная библиотека Windows Socket 2.0 131795770645386103 0x75040000 282624 C:\Windows\SysWOW64\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795770645386103 0x75090000 1265664 C:\Windows\SysWOW64\MSCTF.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Серверная библиотека MSCTF 131795770645386103 0x751d0000 57344 C:\Windows\SysWOW64\MSASN1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ASN.1 Runtime APIs 131795770645386103 0x751e0000 1708032 C:\Windows\SysWOW64\KERNELBASE.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645386103 0x75390000 266240 C:\Windows\SysWOW64\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795770645386103 0x753e0000 1560576 C:\Windows\SysWOW64\CRYPT32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API32 криптографии 131795770645386103 0x75560000 487424 C:\Windows\SysWOW64\ADVAPI32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795770645386103 0x756c0000 5693440 C:\Windows\SysWOW64\windows.storage.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API хранения Microsoft WinRT 131795770645386103 0x75c90000 286720 C:\Windows\SysWOW64\shlwapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека небольших программ оболочки 131795770645386103 0x75ce0000 20811776 C:\Windows\SysWOW64\SHELL32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Общая библиотека оболочки Windows 131795770645386103 0x774d0000 86016 C:\Windows\SysWOW64\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795770645386103 0x774f0000 61440 C:\Windows\SysWOW64\profapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Profile Basic API 131795770645386103 0x77560000 1437696 C:\Windows\SysWOW64\USER32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795770645386103 0x776c0000 368640 C:\Windows\SysWOW64\bcryptPrimitives.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation Windows Cryptographic Primitives Library 131795770645386103 0x77780000 503808 C:\Windows\SysWOW64\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645386103 0x77800000 606208 C:\Windows\SysWOW64\OLEAUT32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795770645386103 0x77ac0000 966656 C:\Windows\SysWOW64\ole32.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft OLE для Windows 131795770645386103 0x77bb0000 176128 C:\Windows\SysWOW64\GDI32.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation GDI Client DLL 131795770645386103 0x77cd0000 221184 C:\Windows\SysWOW64\cfgmgr32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Configuration Manager DLL 131795770645386103 0x77d10000 28672 C:\Windows\SysWOW64\NSI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation NSI User-mode interface DLL 131795770645386103 0x77d20000 1585152 C:\Windows\SysWOW64\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 131795770645386103 0x7ffad0270000 1908736 C:\Windows\SYSTEM32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 82 8944 520 18 00000000:0031f1da 131795005508439638 0 0 1 Обязательная метка\Низкий обязательный уровень WIN-0UOTFKKVN1S\User fontdrvhost.exe C:\Windows\system32\fontdrvhost.exe "fontdrvhost.exe" Microsoft Corporation 10.0.14393.2189 (rs1_release.180329-1711) Usermode Font Driver Host 131795770645386388 0x7ff654db0000 638976 C:\Windows\system32\fontdrvhost.exe 10.0.14393.2189 (rs1_release.180329-1711) Microsoft Corporation Usermode Font Driver Host 131795770645386388 0x7ffacc770000 1572864 C:\Windows\System32\gdi32full.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation GDI Client DLL 131795770645386388 0x7ffacca60000 122880 C:\Windows\System32\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795770645386388 0x7ffacd270000 2215936 C:\Windows\System32\KERNELBASE.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645386388 0x7ffacef90000 647168 C:\Windows\System32\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795770645386388 0x7ffacf0d0000 704512 C:\Windows\System32\KERNEL32.DLL 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645386388 0x7ffacf770000 212992 C:\Windows\System32\gdi32.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation GDI Client DLL 131795770645386388 0x7ffacf890000 188416 C:\Windows\System32\IMM32.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Multi-User Windows IMM32 API Client DLL 131795770645386388 0x7ffacf8c0000 1462272 C:\Windows\System32\USER32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795770645386388 0x7ffad0270000 1908736 C:\Windows\SYSTEM32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 83 6684 664 6 00000000:0031f1da 131795006053748558 0 0 1 Обязательная метка\Низкий обязательный уровень WIN-0UOTFKKVN1S\User Microsoft.Photos.exe C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2017.35063.44410.0_x64__8wekyb3d8bbwe\Microsoft.Photos.exe "C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2017.35063.44410.0_x64__8wekyb3d8bbwe\Microsoft.Photos.exe" -ServerName:App.AppXzst44mncqdg84v7sv6p7yznqwssy6f7f.mca 131795770645660438 0x7ff705e40000 36864 C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2017.35063.44410.0_x64__8wekyb3d8bbwe\Microsoft.Photos.exe 131795770645660438 0x7ffa9bb10000 1380352 C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2017.35063.44410.0_x64__8wekyb3d8bbwe\Microsoft.RichMedia.Ink.Controls.dll 131795770645660438 0x7ffa9bc70000 3158016 C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2017.35063.44410.0_x64__8wekyb3d8bbwe\Microsoft.UI.Xaml.dll 131795770645660438 0x7ffa9bf80000 2994176 C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2017.35063.44410.0_x64__8wekyb3d8bbwe\AppCore.Windows.dll 131795770645660438 0x7ffa9c260000 20144128 C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2017.35063.44410.0_x64__8wekyb3d8bbwe\PhotosApp.Windows.dll 131795770645660438 0x7ffa9d5a0000 29011968 C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2017.35063.44410.0_x64__8wekyb3d8bbwe\Microsoft.Photos.dll 131795770645660438 0x7ffa9f150000 6311936 C:\Windows\System32\Windows.Media.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Media Runtime DLL 131795770645660438 0x7ffa9fb20000 7950336 C:\Program Files\WindowsApps\Microsoft.NET.Native.Framework.1.3_1.3.24201.0_x64__8wekyb3d8bbwe\SharedLibrary.dll Microsoft Corporation Microsoft .NET Native Shared Framework 131795770645660438 0x7ffaa03f0000 4546560 C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2017.35063.44410.0_x64__8wekyb3d8bbwe\FaceSdkStoreWrapper.dll 16.425.0.0 Microsoft Corporation FaceSdkStoreWrapper 131795770645660438 0x7ffaa0850000 2371584 C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2017.35063.44410.0_x64__8wekyb3d8bbwe\MediaEngine.dll 131795770645660438 0x7ffaab270000 917504 C:\Windows\System32\Windows.AccountsControl.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Accounts Control 131795770645660438 0x7ffaab750000 876544 C:\Windows\System32\Windows.Media.Import.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation Windows Photo Import API (WinRT/COM) 131795770645660438 0x7ffaac0c0000 1396736 C:\Windows\System32\Windows.UI.Xaml.Phone.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows UI XAML Phone API 131795770645660438 0x7ffab5b40000 2527232 C:\Windows\SYSTEM32\dwrite.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Службы Microsoft DirectX Typography 131795770645660438 0x7ffab6710000 17231872 C:\Windows\System32\Windows.UI.Xaml.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows.UI.Xaml dll 131795770645660438 0x7ffab8f40000 94208 C:\Windows\System32\Windows.System.Diagnostics.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows System Diagnostics DLL 131795770645660438 0x7ffab8f60000 397312 C:\Windows\System32\CryptoWinRT.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Crypto WinRT Library 131795770645660438 0x7ffab9270000 454656 C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2017.35063.44410.0_x64__8wekyb3d8bbwe\Microsoft.Photos.AGM.Native.Windows.dll 131795770645660438 0x7ffab9b40000 389120 C:\Program Files\WindowsApps\Microsoft.NET.Native.Runtime.1.4_1.4.24201.0_x64__8wekyb3d8bbwe\mrt100_app.dll 1.4.24201.0 built by: PROJECTNREL Microsoft Corporation Microsoft .NET Native Runtime 131795770645660438 0x7ffabb3c0000 450560 C:\Windows\SYSTEM32\TextInputFramework.dll 10.0.14393.2189 (rs1_release.180329-1711) Microsoft Corporation "TextInputFramework.DYNLINK" 131795770645660438 0x7ffabc510000 90112 C:\Windows\system32\execmodelproxy.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ExecModelProxy 131795770645660438 0x7ffabc5c0000 319488 C:\Windows\SYSTEM32\MFSENSORGROUP.dll 10.0.14393.447 (rs1_release_inmarket.161102-0100) Microsoft Corporation Media Foundation Sensor Group DLL 131795770645660438 0x7ffabc920000 270336 C:\Windows\System32\execmodelclient.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation ExecModelClient 131795770645660438 0x7ffabcef0000 102400 C:\Windows\System32\Windows.Shell.ServiceHostBuilder.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows.Shell.ServiceHostBuilder 131795770645660438 0x7ffabd4a0000 1613824 C:\Windows\System32\Windows.Globalization.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Globalization 131795770645660438 0x7ffabd8e0000 704512 C:\Windows\WinSxS\amd64_microsoft.windows.common-controls_6595b64144ccf1df_5.82.14393.447_none_0d5aa7fbb6d35646\comctl32.dll 6.10 (rs1_release_inmarket.170303-1614) Microsoft Corporation Библиотека элементов управления взаимодействия с пользователем 131795770645660438 0x7ffabe6e0000 561152 C:\Windows\system32\directmanipulation.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Direct Manipulation Component 131795770645660438 0x7ffabea30000 192512 C:\Windows\System32\Windows.Energy.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Energy Runtime DLL 131795770645660438 0x7ffabeac0000 335872 C:\Windows\System32\Windows.Storage.ApplicationData.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Application Data API Server 131795770645660438 0x7ffabeb20000 385024 C:\Windows\System32\Windows.ApplicationModel.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows ApplicationModel API Server 131795770645660438 0x7ffabf330000 2457600 C:\Windows\System32\msxml6.dll 6.30.14393.2156 Microsoft Corporation MSXML 6.0 131795770645660438 0x7ffabfce0000 90112 C:\Windows\System32\Windows.Globalization.Fontgroups.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Fonts Mapping API 131795770645660438 0x7ffabfd00000 356352 C:\Windows\System32\Windows.Graphics.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation WinRT Windows Graphics DLL 131795770645660438 0x7ffabfd80000 86016 C:\Windows\System32\threadpoolwinrt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows WinRT Threadpool 131795770645660438 0x7ffabfe10000 237568 C:\Windows\SYSTEM32\rometadata.dll 4.6.1586.0 built by: NETFXREL2 Microsoft Corporation Microsoft MetaData Library 131795770645660438 0x7ffac00c0000 282624 C:\Windows\SYSTEM32\windows.ui.core.textinput.dll 10.0.14393.2189 (rs1_release.180329-1711) Microsoft Corporation Windows.UI.Core.TextInput dll 131795770645660438 0x7ffac0470000 1478656 C:\Windows\SYSTEM32\MFPlat.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Media Foundation Platform DLL 131795770645660438 0x7ffac0910000 724992 C:\Windows\System32\Windows.Networking.Connectivity.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Networking Connectivity Runtime DLL 131795770645660438 0x7ffac0bf0000 3559424 C:\Windows\System32\ActXPrxy.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation ActiveX Interface Marshaling Library 131795770645660438 0x7ffac0fa0000 77824 C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2017.35063.44410.0_x64__8wekyb3d8bbwe\Microsoft.Photos.Edit.Services.dll 131795770645660438 0x7ffac1b90000 630784 C:\Program Files\WindowsApps\Microsoft.VCLibs.140.00_14.0.25426.0_x64__8wekyb3d8bbwe\MSVCP140_APP.dll 14.11.25426.0 built by: VCTOOLSREL Microsoft Corporation Microsoft® C Runtime Library 131795770645660438 0x7ffac1c70000 69632 C:\Program Files\WindowsApps\Microsoft.VCLibs.140.00_14.0.25426.0_x64__8wekyb3d8bbwe\VCOMP140_app.DLL 14.11.25426.0 built by: VCTOOLSREL Microsoft Corporation Microsoft® C/C++ OpenMP Runtime 131795770645660438 0x7ffac1e50000 188416 C:\Windows\SYSTEM32\RTWorkQ.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL для WorkQueue реального времени 131795770645660438 0x7ffac20d0000 110592 C:\Windows\System32\rmclient.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Resource Manager Client 131795770645660438 0x7ffac2c00000 69632 C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2017.35063.44410.0_x64__8wekyb3d8bbwe\clrcompression.dll 1.0.23123.00 built by: PROJECTKREL Microsoft Corporation ClrCompression 131795770645660438 0x7ffac2cb0000 778240 C:\Windows\SYSTEM32\winsqlite3.dll 3.12.2 SQLite Development Team SQLite is a software library that implements a self-contained, serverless, zero-configuration, transactional SQL database engine. 131795770645660438 0x7ffac3280000 36864 C:\Windows\SYSTEM32\mrt100.dll 1.0.24120.0 built by: PROJECTNREL Microsoft Corporation Microsoft .NET Native Runtime 131795770645660438 0x7ffac34e0000 1843200 C:\Windows\SYSTEM32\urlmon.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширения OLE32 для Win32 131795770645660438 0x7ffac3cb0000 2772992 C:\Windows\SYSTEM32\iertutil.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служебная программа времени выполнения для Internet Explorer 131795770645660438 0x7ffac4b10000 307200 C:\Program Files\WindowsApps\Microsoft.VCLibs.140.00_14.0.25426.0_x64__8wekyb3d8bbwe\CONCRT140_APP.dll 14.11.25426.0 built by: VCTOOLSREL Microsoft Corporation Microsoft® Concurrency Runtime Library 131795770645660438 0x7ffac4c60000 385024 C:\Program Files\WindowsApps\Microsoft.VCLibs.140.00_14.0.25426.0_x64__8wekyb3d8bbwe\vccorlib140_app.DLL 14.11.25426.0 built by: VCTOOLSREL Microsoft Corporation Microsoft ® VC WinRT core library 131795770645660438 0x7ffac5350000 1765376 C:\Windows\System32\Windows.UI.Immersive.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation WINDOWS.UI.IMMERSIVE 131795770645660438 0x7ffac60e0000 221184 C:\Windows\SYSTEM32\XmlLite.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft XmlLite Library 131795770645660438 0x7ffac6620000 192512 C:\Windows\System32\biwinrt.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation Windows Background Broker Infrastructure 131795770645660438 0x7ffac6ac0000 835584 C:\Windows\System32\Windows.UI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Runtime UI Foundation DLL 131795770645660438 0x7ffac6f50000 5632000 C:\Windows\SYSTEM32\d2d1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека Microsoft D2D 131795770645660438 0x7ffac7580000 1077248 C:\Windows\System32\MrmCoreR.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Windows MRM 131795770645660438 0x7ffac7720000 1601536 C:\Windows\System32\OneCoreUAPCommonProxyStub.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation OneCoreUAP Common Proxy Stub 131795770645660438 0x7ffac7e30000 40960 C:\Windows\SYSTEM32\fontgroupsoverride.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation fontgroupsoverride.dll 131795770645660438 0x7ffac7fc0000 2674688 C:\Windows\SYSTEM32\d3d10warp.dll 10.0.14393.576 (rs1_release_inmarket.161208-2252) Microsoft Corporation Direct3D 10 Rasterizer 131795770645660438 0x7ffac84f0000 299008 C:\Windows\system32\DataExchange.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation Data exchange 131795770645660438 0x7ffac8540000 286720 C:\Windows\System32\vaultcli.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиентская библиотека хранилища учетных данных 131795770645660438 0x7ffac88a0000 2842624 C:\Windows\SYSTEM32\d3d11.dll 10.0.14393.953 (rs1_release_inmarket.170303-1614) Microsoft Corporation Direct3D 11 Runtime 131795770645660438 0x7ffac8fa0000 253952 C:\Windows\SYSTEM32\logoncli.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Net Logon Client DLL 131795770645660438 0x7ffac92e0000 1269760 C:\Windows\SYSTEM32\wintypes.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL основных типов Windows 131795770645660438 0x7ffac9500000 2682880 C:\Windows\system32\CoreUIComponents.dll 131795770645660438 0x7ffac9f50000 1736704 C:\Windows\system32\windowscodecs.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Microsoft Windows Codecs Library 131795770645660438 0x7ffaca340000 1593344 C:\Windows\SYSTEM32\PROPSYS.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Система страниц свойств (Майкрософт) 131795770645660438 0x7ffaca570000 421888 C:\Windows\SYSTEM32\Bcp47Langs.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation BCP47 Language Classes 131795770645660438 0x7ffaca5e0000 155648 C:\Windows\SYSTEM32\dwmapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Интерфейс API диспетчера окон рабочего стола (Майкрософт) 131795770645660438 0x7ffaca640000 770048 C:\Windows\SYSTEM32\CoreMessaging.dll 10.0.14393.0 Microsoft Corporation Microsoft CoreMessaging Dll 131795770645660438 0x7ffaca770000 1380352 C:\Windows\SYSTEM32\dcomp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft DirectComposition Library 131795770645660438 0x7ffacab80000 90112 C:\Program Files\WindowsApps\Microsoft.VCLibs.140.00_14.0.25426.0_x64__8wekyb3d8bbwe\VCRUNTIME140_APP.dll 14.11.25426.0 built by: VCTOOLSREL Microsoft Corporation Microsoft® C Runtime Library 131795770645660438 0x7ffacadf0000 499712 C:\Windows\system32\apphelp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиентская библиотека совместимости приложений 131795770645660438 0x7ffacaf00000 610304 C:\Windows\system32\uxtheme.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека тем UxTheme (Microsoft) 131795770645660438 0x7ffacb1e0000 1163264 C:\Windows\SYSTEM32\twinapi.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation twinapi.appcore 131795770645660438 0x7ffacb780000 651264 C:\Windows\SYSTEM32\dxgi.dll 10.0.14393.953 (rs1_release_inmarket.170303-1614) Microsoft Corporation DirectX Graphics Infrastructure 131795770645660438 0x7ffacbe40000 126976 C:\Windows\SYSTEM32\USERENV.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Userenv 131795770645660438 0x7ffacc170000 45056 C:\Windows\SYSTEM32\CRYPTBASE.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base cryptographic API DLL 131795770645660438 0x7ffacc350000 180224 C:\Windows\SYSTEM32\SspiCli.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Security Support Provider Interface 131795770645660438 0x7ffacc620000 176128 C:\Windows\SYSTEM32\bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795770645660438 0x7ffacc6e0000 61440 C:\Windows\System32\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795770645660438 0x7ffacc6f0000 311296 C:\Windows\System32\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795770645660438 0x7ffacc740000 81920 C:\Windows\System32\profapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Profile Basic API 131795770645660438 0x7ffacc760000 65536 C:\Windows\System32\MSASN1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ASN.1 Runtime APIs 131795770645660438 0x7ffacc8f0000 1003520 C:\Windows\System32\ucrtbase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645660438 0x7ffacc9f0000 434176 C:\Windows\System32\bcryptPrimitives.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Cryptographic Primitives Library 131795770645660438 0x7ffacca60000 122880 C:\Windows\System32\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795770645660438 0x7ffaccae0000 692224 C:\Windows\System32\shcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795770645660438 0x7ffaccb90000 7180288 C:\Windows\System32\windows.storage.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API хранения Microsoft WinRT 131795770645660438 0x7ffacd270000 2215936 C:\Windows\System32\KERNELBASE.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645660438 0x7ffacd490000 1871872 C:\Windows\System32\CRYPT32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API32 криптографии 131795770645660438 0x7ffacd710000 638976 C:\Windows\System32\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645660438 0x7ffacd7b0000 270336 C:\Windows\System32\cfgmgr32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Configuration Manager DLL 131795770645660438 0x7ffaced20000 782336 C:\Windows\System32\OleAut32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795770645660438 0x7ffacee50000 1183744 C:\Windows\System32\RPCRT4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795770645660438 0x7ffacef90000 647168 C:\Windows\System32\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795770645660438 0x7ffacf0d0000 704512 C:\Windows\System32\KERNEL32.DLL 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645660438 0x7ffacf1e0000 1417216 C:\Windows\System32\msctf.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Серверная библиотека MSCTF 131795770645660438 0x7ffacf770000 212992 C:\Windows\System32\GDI32.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation GDI Client DLL 131795770645660438 0x7ffacf890000 188416 C:\Windows\System32\IMM32.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Multi-User Windows IMM32 API Client DLL 131795770645660438 0x7ffacf8c0000 1462272 C:\Windows\System32\USER32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795770645660438 0x7ffacfb30000 2916352 C:\Windows\System32\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795770645660438 0x7ffacfe20000 663552 C:\Windows\System32\advapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795770645660438 0x7ffad01b0000 335872 C:\Windows\System32\shlwapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека небольших программ оболочки 131795770645660438 0x7ffad0210000 364544 C:\Windows\System32\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795770645660438 0x7ffad0270000 1908736 C:\Windows\SYSTEM32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 84 6208 12140 85 00000000:0031f1da 131795181740423780 0 0 0 Обязательная метка\Средний обязательный уровень WIN-0UOTFKKVN1S\User OneDrive.exe C:\Users\User\AppData\Local\Microsoft\OneDrive\OneDrive.exe /updateInstalled /background Microsoft Corporation 18.131.0701.0007 Microsoft OneDrive 131795770645660654 0x11f0000 1646592 C:\Users\User\AppData\Local\Microsoft\OneDrive\OneDrive.exe 18.131.0701.0007 Microsoft Corporation Microsoft OneDrive 131795770645660654 0x55a0000 1003520 C:\Users\User\AppData\Local\Microsoft\OneDrive\18.131.0701.0007\FileSync.Resources.dll 18.131.0701.0007 Microsoft Corporation Microsoft OneDrive 131795770645660654 0x5c020000 335872 C:\Windows\System32\wow64.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation Win32 Emulation on NT64 131795770645660654 0x5c080000 487424 C:\Windows\System32\wow64win.dll 10.0.14393.1884 (rs1_release.171101-1233) Microsoft Corporation Wow64 Console and Win32 API Logging 131795770645660654 0x5c100000 40960 C:\Windows\System32\wow64cpu.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation AMD64 Wow64 CPU 131795770645660654 0x60750000 1556480 C:\Program Files (x86)\360\Total Security\safemon\safemon.dll 8, 4, 0, 1420 Qihu 360 Software Co., Ltd. 360 Internet Security Internet Protection 131795770645660654 0x64d00000 5079040 C:\Windows\SysWOW64\d2d1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека Microsoft D2D 131795770645660654 0x651e0000 20537344 C:\Windows\SysWOW64\MSHTML.dll 11.00.14393.447 (rs1_release_inmarket.161102-0100) Microsoft Corporation Средство просмотра HTML Microsoft® 131795770645660654 0x66580000 12247040 C:\Windows\SysWOW64\ieframe.dll 11.00.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Браузер 131795770645660654 0x67200000 1978368 C:\Windows\SysWOW64\msxml6.dll 6.30.14393.2156 Microsoft Corporation MSXML 6.0 131795770645660654 0x67500000 1597440 C:\Windows\SysWOW64\ActXPrxy.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation ActiveX Interface Marshaling Library 131795770645660654 0x6b670000 212992 C:\Windows\SysWOW64\mlang.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL многоязыковой поддержки 131795770645660654 0x6b6b0000 36864 C:\Windows\SysWOW64\atlthunk.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation atlthunk.dll 131795770645660654 0x6bab0000 4472832 C:\Users\User\AppData\Local\Microsoft\OneDrive\18.131.0701.0007\Qt5Widgets.dll 5.9.1.0 The Qt Company Ltd C++ application development framework. 131795770645660654 0x6c290000 987136 C:\Windows\SysWOW64\twinapi.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation twinapi.appcore 131795770645660654 0x6c390000 1126400 C:\Windows\SysWOW64\dcomp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft DirectComposition Library 131795770645660654 0x6c4b0000 278528 C:\Windows\SysWOW64\dataexchange.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation Data exchange 131795770645660654 0x6c540000 483328 C:\Windows\SysWOW64\webio.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API протоколов передачи по Веб 131795770645660654 0x6c5c0000 1384448 C:\Windows\SysWOW64\uiautomationcore.dll 7.2.14393.0 (rs1_release.160715-1616) Microsoft Corporation Основные автоматические компоненты Microsoft UI 131795770645660654 0x6c960000 57344 C:\Windows\SysWOW64\msimtf.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Active IMM Server DLL 131795770645660654 0x6c970000 3698688 C:\Windows\SysWOW64\jscript9.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft ® JScript 131795770645660654 0x6cd20000 135168 C:\Windows\SysWOW64\srpapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL программных интерфейсов (API) поставщика общих ресурсов 131795770645660654 0x6cd50000 106496 C:\Windows\SysWOW64\SAMLIB.dll 10.0.14393.82 (rs1_release.160805-1735) Microsoft Corporation SAM Library DLL 131795770645660654 0x6cda0000 528384 C:\Windows\SysWOW64\sxs.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Fusion 2.5 131795770645660654 0x6cf60000 569344 C:\Windows\SysWOW64\taskschd.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Task Scheduler COM API 131795770645660654 0x6d080000 151552 C:\Windows\SysWOW64\cryptnet.dll 10.0.14393.2035 (rs1_release_inmarket.180110-1910) Microsoft Corporation Crypto Network Related API 131795770645660654 0x6d0b0000 847872 C:\Windows\SysWOW64\WinTypes.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL основных типов Windows 131795770645660654 0x6d210000 4993024 C:\Users\User\AppData\Local\Microsoft\OneDrive\18.131.0701.0007\Qt5Gui.dll 5.9.1.0 The Qt Company Ltd C++ application development framework. 131795770645660654 0x6fcd0000 151552 C:\Windows\SysWOW64\dbgcore.DLL 10.0.14321.1024 (debuggers(dbg).160715-1616) Microsoft Windows Core Debugging Helpers 131795770645660654 0x70340000 536576 C:\Windows\SysWOW64\dxgi.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation DirectX Graphics Infrastructure 131795770645660654 0x703d0000 2056192 C:\Windows\SysWOW64\DWrite.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Службы Microsoft DirectX Typography 131795770645660654 0x707b0000 110592 C:\Windows\SysWOW64\ncryptsslp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft SChannel Provider 131795770645660654 0x707f0000 2293760 C:\Windows\SysWOW64\d3d11.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation Direct3D 11 Runtime 131795770645660654 0x70a80000 409600 C:\Windows\SysWOW64\schannel.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик безопасности TLS/SSL 131795770645660654 0x70b00000 176128 C:\Windows\SysWOW64\Wscapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API центра обеспечения безопасности Windows 131795770645660654 0x70b40000 69632 C:\Windows\SysWOW64\mskeyprotect.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик защиты ключей (Майкрософт) 131795770645660654 0x70ca0000 45056 C:\Windows\SysWOW64\NETUTILS.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API Helpers DLL 131795770645660654 0x70cc0000 65536 C:\Windows\SysWOW64\ondemandconnroutehelper.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation On Demand Connctiond Route Helper 131795770645660654 0x70ce0000 1519616 C:\Windows\SysWOW64\wpc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека параметров родительского контроля 131795770645660654 0x70e60000 176128 C:\Windows\SysWOW64\NTASN1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft ASN.1 API 131795770645660654 0x70f00000 815104 C:\Windows\SysWOW64\OneCoreUAPCommonProxyStub.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation OneCoreUAP Common Proxy Stub 131795770645660654 0x70fd0000 1331200 C:\Windows\SysWOW64\dbghelp.dll 10.0.14321.1024 (rs1_release.160715-1616) Microsoft Windows Image Helper 131795770645660654 0x71140000 77824 C:\Windows\SysWOW64\NETAPI32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API DLL 131795770645660654 0x71200000 708608 C:\Windows\SysWOW64\TokenBroker.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Token Broker 131795770645660654 0x712b0000 602112 C:\Windows\SysWOW64\Windows.Security.Authentication.Web.Core.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Token Broker WinRT API 131795770645660654 0x71350000 2867200 C:\Users\User\AppData\Local\Microsoft\OneDrive\18.131.0701.0007\Qt5Quick.dll 5.9.1.0 The Qt Company Ltd C++ application development framework. 131795770645660654 0x71610000 77824 C:\Windows\SysWOW64\dhcpcsvc6.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиент DHCPv6 131795770645660654 0x71630000 487424 C:\Windows\SysWOW64\wlidprov.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft® Account Provider 131795770645660654 0x716b0000 1294336 C:\Users\User\AppData\Local\Microsoft\OneDrive\18.131.0701.0007\LIBEAY32.dll 1.0.2k The OpenSSL Project, http://www.openssl.org/ OpenSSL Shared Library 131795770645660654 0x717f0000 2637824 C:\Users\User\AppData\Local\Microsoft\OneDrive\18.131.0701.0007\Qt5Qml.dll 5.9.1.0 The Qt Company Ltd C++ application development framework. 131795770645660654 0x71a80000 4796416 C:\Users\User\AppData\Local\Microsoft\OneDrive\18.131.0701.0007\Qt5Core.dll 5.9.1.0 The Qt Company Ltd C++ application development framework. 131795770645660654 0x71f20000 6033408 C:\Users\User\AppData\Local\Microsoft\OneDrive\18.131.0701.0007\SyncEngine.DLL 18.131.0701.0007 Microsoft Corporation Microsoft OneDrive Sync Engine 131795770645660654 0x724f0000 57344 C:\Windows\SysWOW64\credui.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Credential Manager User Interface 131795770645660654 0x72530000 126976 C:\Windows\SysWOW64\IDStore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Identity Store 131795770645660654 0x72550000 561152 C:\Windows\SysWOW64\Windows.Networking.Connectivity.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Networking Connectivity Runtime DLL 131795770645660654 0x725e0000 2273280 C:\Windows\SysWOW64\iertutil.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служебная программа времени выполнения для Internet Explorer 131795770645660654 0x72810000 28672 C:\Windows\SysWOW64\familysafetyext.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation FamilySafety ChildAccount Extensions 131795770645660654 0x72820000 167936 C:\Windows\SysWOW64\MicrosoftAccountTokenProvider.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft® Account Token Provider 131795770645660654 0x72850000 331776 C:\Windows\SysWOW64\AppXDeploymentClient.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL-библиотека клиента развертывания AppX 131795770645660654 0x728b0000 135168 C:\Users\User\AppData\Local\Microsoft\OneDrive\18.131.0701.0007\FileSyncFAL.dll 18.131.0701.0007 Microsoft Corporation Microsoft OneDriveFile Sync FAL 131795770645660654 0x728e0000 1372160 C:\Windows\SysWOW64\PROPSYS.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Система страниц свойств (Майкрософт) 131795770645660654 0x72a30000 188416 C:\Windows\SysWOW64\XmlLite.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft XmlLite Library 131795770645660654 0x72a60000 589824 C:\Windows\SysWOW64\wer.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека сообщений об ошибках Windows 131795770645660654 0x72b90000 126976 C:\Windows\SysWOW64\dwmapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Интерфейс API диспетчера окон рабочего стола (Майкрософт) 131795770645660654 0x72bb0000 1105920 C:\Users\User\AppData\Local\Microsoft\OneDrive\18.131.0701.0007\platforms\qwindows.dll 5.9.1.0 The Qt Company Ltd C++ application development framework. 131795770645660654 0x72cc0000 1658880 C:\Windows\SysWOW64\urlmon.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширения OLE32 для Win32 131795770645660654 0x72e60000 172032 C:\Windows\SysWOW64\rometadata.dll 4.6.1586.0 built by: NETFXREL2 Microsoft Corporation Microsoft MetaData Library 131795770645660654 0x72e90000 299008 C:\Users\User\AppData\Local\Microsoft\OneDrive\18.131.0701.0007\SSLEAY32.dll 1.0.2k The OpenSSL Project, http://www.openssl.org/ OpenSSL Shared Library 131795770645660654 0x72ee0000 950272 C:\Users\User\AppData\Local\Microsoft\OneDrive\18.131.0701.0007\Qt5Network.dll 5.9.1.0 The Qt Company Ltd C++ application development framework. 131795770645660654 0x72fd0000 126976 C:\Windows\SysWOW64\loadperf.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Загрузка и выгрузка счетчиков производительности 131795770645660654 0x72ff0000 278528 C:\Windows\SysWOW64\pdh.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Модуль поддержки данных производительности Windows 131795770645660654 0x73040000 253952 C:\Users\User\AppData\Local\Microsoft\OneDrive\18.131.0701.0007\Qt5WinExtras.dll 5.9.1.0 The Qt Company Ltd C++ application development framework. 131795770645660654 0x73080000 880640 C:\Users\User\AppData\Local\Microsoft\OneDrive\18.131.0701.0007\ADAL.dll 1.0.2110.0526 Microsoft ADAL.Native 131795770645660654 0x73160000 32768 C:\Windows\SysWOW64\WSOCK32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Socket 32-Bit DLL 131795770645660654 0x73170000 352256 C:\Windows\SysWOW64\faultrep.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека отчетов о сбоях в пользовательском режиме Windows 131795770645660654 0x731d0000 413696 C:\Users\User\AppData\Local\Microsoft\OneDrive\18.131.0701.0007\WnsClientApi.dll 18.131.0701.0007 Microsoft Corporation OneDrive WNS Client Library 131795770645660654 0x73240000 520192 C:\Users\User\AppData\Local\Microsoft\OneDrive\18.131.0701.0007\LogUploader.dll 18.131.0701.0007 Microsoft Corporation OneDrive Sync LogUploader Library 131795770645660654 0x732c0000 1269760 C:\Users\User\AppData\Local\Microsoft\OneDrive\18.131.0701.0007\FileSyncViews.dll 18.131.0701.0007 Microsoft Corporation Microsoft OneDrive Qt Components 131795770645660654 0x73400000 159744 C:\Users\User\AppData\Local\Microsoft\OneDrive\18.131.0701.0007\UpdateRingSettings.dll 18.131.0701.0007 Microsoft Corporation Update Ring Settings 131795770645660654 0x73430000 1748992 C:\Users\User\AppData\Local\Microsoft\OneDrive\18.131.0701.0007\FileSyncSessions.dll 18.131.0701.0007 Microsoft Corporation P2P Session Library 131795770645660654 0x735e0000 671744 C:\Users\User\AppData\Local\Microsoft\OneDrive\18.131.0701.0007\RemoteAccess.dll 18.131.0701.0007 Microsoft Corporation Remote Access 131795770645660654 0x73690000 188416 C:\Users\User\AppData\Local\Microsoft\OneDrive\18.131.0701.0007\Telemetry.dll 18.131.0701.0007 Microsoft Corporation Telemetry Library 131795770645660654 0x736c0000 32768 C:\Users\User\AppData\Local\Microsoft\OneDrive\18.131.0701.0007\ETWLog.dll 18.131.0701.0007 Microsoft Corporation ETW Session Library 131795770645660654 0x736d0000 3600384 C:\Users\User\AppData\Local\Microsoft\OneDrive\18.131.0701.0007\FileSyncClient.dll 18.131.0701.0007 Microsoft Corporation Microsoft OneDrive Client 131795770645660654 0x73a40000 32768 C:\Windows\SysWOW64\WINNSI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Network Store Information RPC interface 131795770645660654 0x73a50000 299008 C:\Windows\SysWOW64\fwpuclnt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API пользовательского режима FWP/IPsec 131795770645660654 0x73aa0000 32768 C:\Windows\SysWOW64\DPAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Data Protection API 131795770645660654 0x73ab0000 32768 C:\Windows\SysWOW64\rasadhlp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Remote Access AutoDial Helper 131795770645660654 0x73ac0000 81920 C:\Windows\SysWOW64\dhcpcsvc.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служба DHCP-клиента 131795770645660654 0x73ae0000 40960 C:\Windows\SysWOW64\Secur32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Security Support Provider Interface 131795770645660654 0x73af0000 1417216 C:\Users\User\AppData\Local\Microsoft\OneDrive\18.131.0701.0007\LoggingPlatform.dll 18.131.0701.0007 Microsoft Corporation Logging Platform 131795770645660654 0x73c50000 1478656 C:\Windows\WinSxS\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.14393.1715_none_f67438d2f2547a00\gdiplus.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Microsoft GDI+ 131795770645660654 0x73dc0000 1171456 C:\Users\User\AppData\Local\Microsoft\OneDrive\18.131.0701.0007\ucrtbase.dll 10.0.17134.12 (WinBuild.160101.0800) Microsoft Corporation Microsoft® C Runtime Library 131795770645660654 0x73ee0000 61440 C:\Windows\SysWOW64\wtsapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Remote Desktop Session Host Server SDK APIs 131795770645660654 0x73f00000 192512 C:\Windows\SysWOW64\IPHLPAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API вспомогательного приложения IP 131795770645660654 0x73f30000 512000 C:\Windows\SysWOW64\DNSAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Динамическая библиотека API DNS-клиента 131795770645660654 0x73fb0000 36864 C:\Windows\SysWOW64\ktmw32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows KTM Win32 Client DLL 131795770645660654 0x73ff0000 319488 C:\Windows\SysWOW64\MSWSOCK.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширение поставщика службы API Microsoft Windows Sockets 2.0 131795770645660654 0x74060000 192512 C:\Windows\SysWOW64\rsaenh.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Enhanced Cryptographic Provider 131795770645660654 0x74090000 462848 C:\Users\User\AppData\Local\Microsoft\OneDrive\18.131.0701.0007\MSVCP140.dll 14.13.26020.0 built by: VCTOOLSREL Microsoft Corporation Microsoft® C Runtime Library 131795770645660654 0x74110000 479232 C:\Windows\SysWOW64\UxTheme.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека тем UxTheme (Microsoft) 131795770645660654 0x74190000 110592 C:\Windows\SysWOW64\bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795770645660654 0x741b0000 77824 C:\Windows\SysWOW64\CRYPTSP.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Cryptographic Service Provider API 131795770645660654 0x741d0000 86016 C:\Users\User\AppData\Local\Microsoft\OneDrive\18.131.0701.0007\VCRUNTIME140.dll 14.13.26020.0 built by: VCTOOLSREL Microsoft Corporation Microsoft® C Runtime Library 131795770645660654 0x741f0000 143360 C:\Windows\SysWOW64\WINMMBASE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base Multimedia Extension API DLL 131795770645660654 0x74220000 53248 C:\Windows\SysWOW64\TOKENBINDING.dll 10.0.14393.1593 (rs1_release.170731-1934) Microsoft Corporation Token Binding Protocol 131795770645660654 0x74230000 147456 C:\Windows\SysWOW64\WINMM.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation MCI API DLL 131795770645660654 0x74260000 2514944 C:\Windows\SysWOW64\WININET.dll 11.00.14393.447 (rs1_release_inmarket.161102-0100) Microsoft Corporation Расширения Интернета для Win32 131795770645660654 0x744d0000 2138112 C:\Windows\WinSxS\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.14393.953_none_89c2555adb023171\COMCTL32.dll 6.10 (rs1_release_inmarket.170303-1614) Microsoft Corporation Библиотека элементов управления взаимодействия с пользователем 131795770645660654 0x746e0000 32768 C:\Windows\SysWOW64\VERSION.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Version Checking and File Installation Libraries 131795770645660654 0x746f0000 106496 C:\Windows\SysWOW64\USERENV.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Userenv 131795770645660654 0x74710000 90112 C:\Windows\SysWOW64\MPR.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека маршрутизации для нескольких служб доступа 131795770645660654 0x74730000 598016 C:\Windows\SysWOW64\apphelp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиентская библиотека совместимости приложений 131795770645660654 0x747d0000 40960 C:\Windows\SysWOW64\CRYPTBASE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base cryptographic API DLL 131795770645660654 0x747e0000 126976 C:\Windows\SysWOW64\SspiCli.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Security Support Provider Interface 131795770645660654 0x74800000 151552 C:\Windows\SysWOW64\IMM32.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Multi-User Windows IMM32 API Client DLL 131795770645660654 0x74910000 2170880 C:\Windows\SysWOW64\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795770645660654 0x74b30000 53248 C:\Windows\SysWOW64\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795770645660654 0x74b60000 790528 C:\Windows\SysWOW64\RPCRT4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795770645660654 0x74c30000 1417216 C:\Windows\SysWOW64\gdi32full.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation GDI Client DLL 131795770645660654 0x74d90000 24576 C:\Windows\SysWOW64\PSAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Process Status Helper 131795770645660654 0x74da0000 778240 C:\Windows\SysWOW64\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795770645660654 0x74e60000 557056 C:\Windows\SysWOW64\shcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795770645660654 0x74ef0000 540672 C:\Windows\SysWOW64\clbcatq.dll 2001.12.10941.16384 (rs1_release.160715-1616) Microsoft Corporation COM+ Configuration Catalog 131795770645660654 0x74f80000 278528 C:\Windows\SysWOW64\WINTRUST.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation Microsoft Trust Verification APIs 131795770645660654 0x74fd0000 405504 C:\Windows\SysWOW64\WS2_32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation 32-разрядная библиотека Windows Socket 2.0 131795770645660654 0x75040000 282624 C:\Windows\SysWOW64\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795770645660654 0x75090000 1265664 C:\Windows\SysWOW64\MSCTF.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Серверная библиотека MSCTF 131795770645660654 0x751d0000 57344 C:\Windows\SysWOW64\MSASN1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ASN.1 Runtime APIs 131795770645660654 0x751e0000 1708032 C:\Windows\SysWOW64\KERNELBASE.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645660654 0x75390000 266240 C:\Windows\SysWOW64\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795770645660654 0x753e0000 1560576 C:\Windows\SysWOW64\CRYPT32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API32 криптографии 131795770645660654 0x75560000 487424 C:\Windows\SysWOW64\ADVAPI32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795770645660654 0x756c0000 5693440 C:\Windows\SysWOW64\windows.storage.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API хранения Microsoft WinRT 131795770645660654 0x75c90000 286720 C:\Windows\SysWOW64\shlwapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека небольших программ оболочки 131795770645660654 0x75ce0000 20811776 C:\Windows\SysWOW64\SHELL32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Общая библиотека оболочки Windows 131795770645660654 0x774d0000 86016 C:\Windows\SysWOW64\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795770645660654 0x774f0000 61440 C:\Windows\SysWOW64\profapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Profile Basic API 131795770645660654 0x77560000 1437696 C:\Windows\SysWOW64\USER32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795770645660654 0x776c0000 368640 C:\Windows\SysWOW64\bcryptPrimitives.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation Windows Cryptographic Primitives Library 131795770645660654 0x77780000 503808 C:\Windows\SysWOW64\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645660654 0x77800000 606208 C:\Windows\SysWOW64\OLEAUT32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795770645660654 0x77ac0000 966656 C:\Windows\SysWOW64\ole32.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft OLE для Windows 131795770645660654 0x77bb0000 176128 C:\Windows\SysWOW64\GDI32.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation GDI Client DLL 131795770645660654 0x77cd0000 221184 C:\Windows\SysWOW64\cfgmgr32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Configuration Manager DLL 131795770645660654 0x77d10000 28672 C:\Windows\SysWOW64\NSI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation NSI User-mode interface DLL 131795770645660654 0x77d20000 1585152 C:\Windows\SysWOW64\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 131795770645660654 0x7ffad0270000 1908736 C:\Windows\SYSTEM32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 86 6140 7744 57 00000000:0031f1da 131795747339404666 0 0 0 Обязательная метка\Ненадежный обязательный уровень WIN-0UOTFKKVN1S\User browser.exe C:\Users\User\AppData\Local\Yandex\YandexBrowser\Application\browser.exe "C:\Users\User\AppData\Local\Yandex\YandexBrowser\Application\browser.exe" --type=renderer --enable-in-process-wmf-demuxer --field-trial-handle=1292,9555382311565764851,7120838982649204725,131072 --enable-ignition --disable-gpu-compositing --service-pipe-token=764E64A4EA650A23B18EB059FF0B4B51 --lang=ru --user-id=32B2E0A1-3039-4C67-86BE-75A88EF21B54 --brand-id=yandex --partner-id=7924 --help-url=https://api.browser.yandex.ru/redirect/help/ --user-agent-info --translate-security-origin=https://translate.yandex.net --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --enable-instaserp --device-scale-factor=1 --num-raster-threads=1 --enable-compositor-image-animations --service-request-channel-token=764E64A4EA650A23B18EB059FF0B4B51 --renderer-client-id=106 --mojo-platform-channel-handle=6612 /prefetch:1 YANDEX LLC 18.6.1.770 Yandex 131795770645660799 0x10e0000 2519040 C:\Users\User\AppData\Local\Yandex\YandexBrowser\Application\browser.exe 18.6.1.770 YANDEX LLC Yandex 131795770645660799 0x58720000 59748352 C:\Users\User\AppData\Local\Yandex\YandexBrowser\Application\18.6.1.770\browser_child.dll 18.6.1.770 YANDEX LLC Yandex 131795770645660799 0x5c020000 335872 C:\Windows\System32\wow64.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation Win32 Emulation on NT64 131795770645660799 0x5c080000 487424 C:\Windows\System32\wow64win.dll 10.0.14393.1884 (rs1_release.171101-1233) Microsoft Corporation Wow64 Console and Win32 API Logging 131795770645660799 0x5c100000 40960 C:\Windows\System32\wow64cpu.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation AMD64 Wow64 CPU 131795770645660799 0x6e8b0000 1859584 C:\Windows\SysWOW64\mfmp4srcsnk.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL источника и приемника MPEG4 Media Foundation 131795770645660799 0x6ef30000 647168 C:\Windows\SysWOW64\evr.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека DLL средства отображения видео 131795770645660799 0x6efd0000 458752 C:\Windows\SysWOW64\msauddecmft.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Media Foundation Audio Decoders 131795770645660799 0x6f790000 1085440 C:\Windows\SysWOW64\mfperfhelper.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation MFPerf DLL 131795770645660799 0x6f8a0000 2220032 C:\Windows\SysWOW64\msmpeg2vdec.dll 10.0.14393.953 (rs1_release_inmarket.170303-1614) Microsoft Corporation Microsoft DTV-DVD Video Decoder 131795770645660799 0x6fac0000 1130496 C:\Windows\SysWOW64\mfplat.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Media Foundation Platform DLL 131795770645660799 0x6ff60000 172032 C:\Windows\SysWOW64\RTWorkQ.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL для WorkQueue реального времени 131795770645660799 0x70030000 593920 C:\Users\User\AppData\Local\Yandex\YandexBrowser\Application\18.6.1.770\browser_elf.dll 18.6.1.770 YANDEX LLC Yandex 131795770645660799 0x700d0000 434176 C:\Windows\SysWOW64\WINSPOOL.DRV 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Драйвер диспетчера очереди Windows 131795770645660799 0x70340000 536576 C:\Windows\SysWOW64\dxgi.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation DirectX Graphics Infrastructure 131795770645660799 0x703d0000 2056192 C:\Windows\SysWOW64\DWrite.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Службы Microsoft DirectX Typography 131795770645660799 0x707d0000 86016 C:\Windows\SysWOW64\SAMCLI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Security Accounts Manager Client DLL 131795770645660799 0x70a20000 94208 C:\Windows\SysWOW64\USP10.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Uniscribe Unicode script processor 131795770645660799 0x70ca0000 45056 C:\Windows\SysWOW64\NETUTILS.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API Helpers DLL 131795770645660799 0x70fd0000 1331200 C:\Windows\SysWOW64\dbghelp.dll 10.0.14321.1024 (rs1_release.160715-1616) Microsoft Windows Image Helper 131795770645660799 0x71140000 77824 C:\Windows\SysWOW64\NETAPI32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API DLL 131795770645660799 0x725e0000 2273280 C:\Windows\SysWOW64\iertutil.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служебная программа времени выполнения для Internet Explorer 131795770645660799 0x728e0000 1372160 C:\Windows\SysWOW64\PROPSYS.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Система страниц свойств (Майкрософт) 131795770645660799 0x72af0000 655360 C:\Windows\SysWOW64\WINHTTP.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Службы HTTP Windows 131795770645660799 0x72cc0000 1658880 C:\Windows\SysWOW64\urlmon.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширения OLE32 для Win32 131795770645660799 0x73ac0000 81920 C:\Windows\SysWOW64\dhcpcsvc.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служба DHCP-клиента 131795770645660799 0x73ae0000 40960 C:\Windows\SysWOW64\Secur32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Security Support Provider Interface 131795770645660799 0x73f00000 192512 C:\Windows\SysWOW64\IPHLPAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API вспомогательного приложения IP 131795770645660799 0x74190000 110592 C:\Windows\SysWOW64\bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795770645660799 0x741b0000 77824 C:\Windows\SysWOW64\cryptsp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Cryptographic Service Provider API 131795770645660799 0x741f0000 143360 C:\Windows\SysWOW64\WINMMBASE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base Multimedia Extension API DLL 131795770645660799 0x74230000 147456 C:\Windows\SysWOW64\WINMM.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation MCI API DLL 131795770645660799 0x744d0000 2138112 C:\Windows\WinSxS\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.14393.953_none_89c2555adb023171\COMCTL32.dll 6.10 (rs1_release_inmarket.170303-1614) Microsoft Corporation Библиотека элементов управления взаимодействия с пользователем 131795770645660799 0x746e0000 32768 C:\Windows\SysWOW64\VERSION.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Version Checking and File Installation Libraries 131795770645660799 0x746f0000 106496 C:\Windows\SysWOW64\USERENV.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Userenv 131795770645660799 0x747d0000 40960 C:\Windows\SysWOW64\CRYPTBASE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base cryptographic API DLL 131795770645660799 0x747e0000 126976 C:\Windows\SysWOW64\SspiCli.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Security Support Provider Interface 131795770645660799 0x74800000 151552 C:\Windows\SysWOW64\IMM32.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Multi-User Windows IMM32 API Client DLL 131795770645660799 0x74910000 2170880 C:\Windows\SysWOW64\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795770645660799 0x74b30000 53248 C:\Windows\SysWOW64\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795770645660799 0x74b60000 790528 C:\Windows\SysWOW64\RPCRT4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795770645660799 0x74c30000 1417216 C:\Windows\SysWOW64\gdi32full.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation GDI Client DLL 131795770645660799 0x74d90000 24576 C:\Windows\SysWOW64\PSAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Process Status Helper 131795770645660799 0x74da0000 778240 C:\Windows\SysWOW64\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795770645660799 0x74e60000 557056 C:\Windows\SysWOW64\shcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795770645660799 0x74f80000 278528 C:\Windows\SysWOW64\WINTRUST.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation Microsoft Trust Verification APIs 131795770645660799 0x74fd0000 405504 C:\Windows\SysWOW64\WS2_32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation 32-разрядная библиотека Windows Socket 2.0 131795770645660799 0x75040000 282624 C:\Windows\SysWOW64\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795770645660799 0x751d0000 57344 C:\Windows\SysWOW64\MSASN1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ASN.1 Runtime APIs 131795770645660799 0x751e0000 1708032 C:\Windows\SysWOW64\KERNELBASE.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645660799 0x75390000 266240 C:\Windows\SysWOW64\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795770645660799 0x753e0000 1560576 C:\Windows\SysWOW64\CRYPT32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API32 криптографии 131795770645660799 0x75560000 487424 C:\Windows\SysWOW64\ADVAPI32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795770645660799 0x756c0000 5693440 C:\Windows\SysWOW64\windows.storage.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API хранения Microsoft WinRT 131795770645660799 0x75c90000 286720 C:\Windows\SysWOW64\shlwapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека небольших программ оболочки 131795770645660799 0x75ce0000 20811776 C:\Windows\SysWOW64\SHELL32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Общая библиотека оболочки Windows 131795770645660799 0x774d0000 86016 C:\Windows\SysWOW64\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795770645660799 0x774f0000 61440 C:\Windows\SysWOW64\profapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Profile Basic API 131795770645660799 0x77560000 1437696 C:\Windows\SysWOW64\USER32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795770645660799 0x776c0000 368640 C:\Windows\SysWOW64\bcryptPrimitives.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation Windows Cryptographic Primitives Library 131795770645660799 0x77780000 503808 C:\Windows\SysWOW64\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645660799 0x77800000 606208 C:\Windows\SysWOW64\OLEAUT32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795770645660799 0x77ac0000 966656 C:\Windows\SysWOW64\ole32.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft OLE для Windows 131795770645660799 0x77bb0000 176128 C:\Windows\SysWOW64\GDI32.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation GDI Client DLL 131795770645660799 0x77be0000 937984 C:\Windows\SysWOW64\COMDLG32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека общих диалоговых окон 131795770645660799 0x77cd0000 221184 C:\Windows\SysWOW64\cfgmgr32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Configuration Manager DLL 131795770645660799 0x77d10000 28672 C:\Windows\SysWOW64\NSI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation NSI User-mode interface DLL 131795770645660799 0x77d20000 1585152 C:\Windows\SysWOW64\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 131795770645660799 0x7ffad0270000 1908736 C:\Windows\SYSTEM32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 87 11432 7744 57 00000000:0031f1da 131795755605761168 0 0 0 Обязательная метка\Ненадежный обязательный уровень WIN-0UOTFKKVN1S\User browser.exe C:\Users\User\AppData\Local\Yandex\YandexBrowser\Application\browser.exe "C:\Users\User\AppData\Local\Yandex\YandexBrowser\Application\browser.exe" --type=renderer --enable-in-process-wmf-demuxer --field-trial-handle=1292,9555382311565764851,7120838982649204725,131072 --enable-ignition --disable-gpu-compositing --service-pipe-token=9DD318D38190D474A9A0F5AFD262A449 --lang=ru --user-id=32B2E0A1-3039-4C67-86BE-75A88EF21B54 --brand-id=yandex --partner-id=7924 --help-url=https://api.browser.yandex.ru/redirect/help/ --user-agent-info --translate-security-origin=https://translate.yandex.net --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --enable-instaserp --device-scale-factor=1 --num-raster-threads=1 --enable-compositor-image-animations --service-request-channel-token=9DD318D38190D474A9A0F5AFD262A449 --renderer-client-id=109 --mojo-platform-channel-handle=4152 /prefetch:1 YANDEX LLC 18.6.1.770 Yandex 131795770645660929 0x10e0000 2519040 C:\Users\User\AppData\Local\Yandex\YandexBrowser\Application\browser.exe 18.6.1.770 YANDEX LLC Yandex 131795770645660929 0x58720000 59748352 C:\Users\User\AppData\Local\Yandex\YandexBrowser\Application\18.6.1.770\browser_child.dll 18.6.1.770 YANDEX LLC Yandex 131795770645660929 0x5c020000 335872 C:\Windows\System32\wow64.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation Win32 Emulation on NT64 131795770645660929 0x5c080000 487424 C:\Windows\System32\wow64win.dll 10.0.14393.1884 (rs1_release.171101-1233) Microsoft Corporation Wow64 Console and Win32 API Logging 131795770645660929 0x5c100000 40960 C:\Windows\System32\wow64cpu.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation AMD64 Wow64 CPU 131795770645660929 0x6e8b0000 1859584 C:\Windows\SysWOW64\mfmp4srcsnk.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL источника и приемника MPEG4 Media Foundation 131795770645660929 0x6ef30000 647168 C:\Windows\SysWOW64\evr.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека DLL средства отображения видео 131795770645660929 0x6efd0000 458752 C:\Windows\SysWOW64\msauddecmft.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Media Foundation Audio Decoders 131795770645660929 0x6f790000 1085440 C:\Windows\SysWOW64\mfperfhelper.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation MFPerf DLL 131795770645660929 0x6f8a0000 2220032 C:\Windows\SysWOW64\msmpeg2vdec.dll 10.0.14393.953 (rs1_release_inmarket.170303-1614) Microsoft Corporation Microsoft DTV-DVD Video Decoder 131795770645660929 0x6fac0000 1130496 C:\Windows\SysWOW64\mfplat.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Media Foundation Platform DLL 131795770645660929 0x6ff60000 172032 C:\Windows\SysWOW64\RTWorkQ.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL для WorkQueue реального времени 131795770645660929 0x70030000 593920 C:\Users\User\AppData\Local\Yandex\YandexBrowser\Application\18.6.1.770\browser_elf.dll 18.6.1.770 YANDEX LLC Yandex 131795770645660929 0x700d0000 434176 C:\Windows\SysWOW64\WINSPOOL.DRV 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Драйвер диспетчера очереди Windows 131795770645660929 0x70340000 536576 C:\Windows\SysWOW64\dxgi.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation DirectX Graphics Infrastructure 131795770645660929 0x703d0000 2056192 C:\Windows\SysWOW64\DWrite.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Службы Microsoft DirectX Typography 131795770645660929 0x707d0000 86016 C:\Windows\SysWOW64\SAMCLI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Security Accounts Manager Client DLL 131795770645660929 0x70a20000 94208 C:\Windows\SysWOW64\USP10.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Uniscribe Unicode script processor 131795770645660929 0x70ca0000 45056 C:\Windows\SysWOW64\NETUTILS.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API Helpers DLL 131795770645660929 0x70fd0000 1331200 C:\Windows\SysWOW64\dbghelp.dll 10.0.14321.1024 (rs1_release.160715-1616) Microsoft Windows Image Helper 131795770645660929 0x71140000 77824 C:\Windows\SysWOW64\NETAPI32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API DLL 131795770645660929 0x725e0000 2273280 C:\Windows\SysWOW64\iertutil.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служебная программа времени выполнения для Internet Explorer 131795770645660929 0x728e0000 1372160 C:\Windows\SysWOW64\PROPSYS.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Система страниц свойств (Майкрософт) 131795770645660929 0x72af0000 655360 C:\Windows\SysWOW64\WINHTTP.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Службы HTTP Windows 131795770645660929 0x72cc0000 1658880 C:\Windows\SysWOW64\urlmon.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширения OLE32 для Win32 131795770645660929 0x73ac0000 81920 C:\Windows\SysWOW64\dhcpcsvc.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служба DHCP-клиента 131795770645660929 0x73ae0000 40960 C:\Windows\SysWOW64\Secur32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Security Support Provider Interface 131795770645660929 0x73f00000 192512 C:\Windows\SysWOW64\IPHLPAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API вспомогательного приложения IP 131795770645660929 0x74190000 110592 C:\Windows\SysWOW64\bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795770645660929 0x741b0000 77824 C:\Windows\SysWOW64\cryptsp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Cryptographic Service Provider API 131795770645660929 0x741f0000 143360 C:\Windows\SysWOW64\WINMMBASE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base Multimedia Extension API DLL 131795770645660929 0x74230000 147456 C:\Windows\SysWOW64\WINMM.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation MCI API DLL 131795770645660929 0x744d0000 2138112 C:\Windows\WinSxS\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.14393.953_none_89c2555adb023171\COMCTL32.dll 6.10 (rs1_release_inmarket.170303-1614) Microsoft Corporation Библиотека элементов управления взаимодействия с пользователем 131795770645660929 0x746e0000 32768 C:\Windows\SysWOW64\VERSION.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Version Checking and File Installation Libraries 131795770645660929 0x746f0000 106496 C:\Windows\SysWOW64\USERENV.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Userenv 131795770645660929 0x747d0000 40960 C:\Windows\SysWOW64\CRYPTBASE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base cryptographic API DLL 131795770645660929 0x747e0000 126976 C:\Windows\SysWOW64\SspiCli.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Security Support Provider Interface 131795770645660929 0x74800000 151552 C:\Windows\SysWOW64\IMM32.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Multi-User Windows IMM32 API Client DLL 131795770645660929 0x74910000 2170880 C:\Windows\SysWOW64\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795770645660929 0x74b30000 53248 C:\Windows\SysWOW64\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795770645660929 0x74b60000 790528 C:\Windows\SysWOW64\RPCRT4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795770645660929 0x74c30000 1417216 C:\Windows\SysWOW64\gdi32full.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation GDI Client DLL 131795770645660929 0x74d90000 24576 C:\Windows\SysWOW64\PSAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Process Status Helper 131795770645660929 0x74da0000 778240 C:\Windows\SysWOW64\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795770645660929 0x74e60000 557056 C:\Windows\SysWOW64\shcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795770645660929 0x74f80000 278528 C:\Windows\SysWOW64\WINTRUST.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation Microsoft Trust Verification APIs 131795770645660929 0x74fd0000 405504 C:\Windows\SysWOW64\WS2_32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation 32-разрядная библиотека Windows Socket 2.0 131795770645660929 0x75040000 282624 C:\Windows\SysWOW64\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795770645660929 0x751d0000 57344 C:\Windows\SysWOW64\MSASN1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ASN.1 Runtime APIs 131795770645660929 0x751e0000 1708032 C:\Windows\SysWOW64\KERNELBASE.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645660929 0x75390000 266240 C:\Windows\SysWOW64\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795770645660929 0x753e0000 1560576 C:\Windows\SysWOW64\CRYPT32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API32 криптографии 131795770645660929 0x75560000 487424 C:\Windows\SysWOW64\ADVAPI32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795770645660929 0x756c0000 5693440 C:\Windows\SysWOW64\windows.storage.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API хранения Microsoft WinRT 131795770645660929 0x75c90000 286720 C:\Windows\SysWOW64\shlwapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека небольших программ оболочки 131795770645660929 0x75ce0000 20811776 C:\Windows\SysWOW64\SHELL32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Общая библиотека оболочки Windows 131795770645660929 0x774d0000 86016 C:\Windows\SysWOW64\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795770645660929 0x774f0000 61440 C:\Windows\SysWOW64\profapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Profile Basic API 131795770645660929 0x77560000 1437696 C:\Windows\SysWOW64\USER32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795770645660929 0x776c0000 368640 C:\Windows\SysWOW64\bcryptPrimitives.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation Windows Cryptographic Primitives Library 131795770645660929 0x77780000 503808 C:\Windows\SysWOW64\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645660929 0x77800000 606208 C:\Windows\SysWOW64\OLEAUT32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795770645660929 0x77ac0000 966656 C:\Windows\SysWOW64\ole32.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft OLE для Windows 131795770645660929 0x77bb0000 176128 C:\Windows\SysWOW64\GDI32.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation GDI Client DLL 131795770645660929 0x77be0000 937984 C:\Windows\SysWOW64\COMDLG32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека общих диалоговых окон 131795770645660929 0x77cd0000 221184 C:\Windows\SysWOW64\cfgmgr32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Configuration Manager DLL 131795770645660929 0x77d10000 28672 C:\Windows\SysWOW64\NSI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation NSI User-mode interface DLL 131795770645660929 0x77d20000 1585152 C:\Windows\SysWOW64\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 131795770645660929 0x7ffad0270000 1908736 C:\Windows\SYSTEM32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 88 10384 7744 57 00000000:0031f1da 131795755746873891 0 0 0 Обязательная метка\Ненадежный обязательный уровень WIN-0UOTFKKVN1S\User browser.exe C:\Users\User\AppData\Local\Yandex\YandexBrowser\Application\browser.exe "C:\Users\User\AppData\Local\Yandex\YandexBrowser\Application\browser.exe" --type=renderer --enable-in-process-wmf-demuxer --field-trial-handle=1292,9555382311565764851,7120838982649204725,131072 --enable-ignition --disable-gpu-compositing --service-pipe-token=7E669976FFDCEE94D9B90B02CADE1179 --lang=ru --user-id=32B2E0A1-3039-4C67-86BE-75A88EF21B54 --brand-id=yandex --partner-id=7924 --help-url=https://api.browser.yandex.ru/redirect/help/ --user-agent-info --translate-security-origin=https://translate.yandex.net --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --enable-instaserp --device-scale-factor=1 --num-raster-threads=1 --enable-compositor-image-animations --service-request-channel-token=7E669976FFDCEE94D9B90B02CADE1179 --renderer-client-id=112 --mojo-platform-channel-handle=5412 /prefetch:1 YANDEX LLC 18.6.1.770 Yandex 131795770645661053 0x10e0000 2519040 C:\Users\User\AppData\Local\Yandex\YandexBrowser\Application\browser.exe 18.6.1.770 YANDEX LLC Yandex 131795770645661053 0x58720000 59748352 C:\Users\User\AppData\Local\Yandex\YandexBrowser\Application\18.6.1.770\browser_child.dll 18.6.1.770 YANDEX LLC Yandex 131795770645661053 0x5c020000 335872 C:\Windows\System32\wow64.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation Win32 Emulation on NT64 131795770645661053 0x5c080000 487424 C:\Windows\System32\wow64win.dll 10.0.14393.1884 (rs1_release.171101-1233) Microsoft Corporation Wow64 Console and Win32 API Logging 131795770645661053 0x5c100000 40960 C:\Windows\System32\wow64cpu.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation AMD64 Wow64 CPU 131795770645661053 0x6e8b0000 1859584 C:\Windows\SysWOW64\mfmp4srcsnk.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL источника и приемника MPEG4 Media Foundation 131795770645661053 0x6ef30000 647168 C:\Windows\SysWOW64\evr.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека DLL средства отображения видео 131795770645661053 0x6efd0000 458752 C:\Windows\SysWOW64\msauddecmft.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Media Foundation Audio Decoders 131795770645661053 0x6f790000 1085440 C:\Windows\SysWOW64\mfperfhelper.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation MFPerf DLL 131795770645661053 0x6f8a0000 2220032 C:\Windows\SysWOW64\msmpeg2vdec.dll 10.0.14393.953 (rs1_release_inmarket.170303-1614) Microsoft Corporation Microsoft DTV-DVD Video Decoder 131795770645661053 0x6fac0000 1130496 C:\Windows\SysWOW64\mfplat.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Media Foundation Platform DLL 131795770645661053 0x6ff60000 172032 C:\Windows\SysWOW64\RTWorkQ.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL для WorkQueue реального времени 131795770645661053 0x70030000 593920 C:\Users\User\AppData\Local\Yandex\YandexBrowser\Application\18.6.1.770\browser_elf.dll 18.6.1.770 YANDEX LLC Yandex 131795770645661053 0x700d0000 434176 C:\Windows\SysWOW64\WINSPOOL.DRV 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Драйвер диспетчера очереди Windows 131795770645661053 0x70340000 536576 C:\Windows\SysWOW64\dxgi.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation DirectX Graphics Infrastructure 131795770645661053 0x703d0000 2056192 C:\Windows\SysWOW64\DWrite.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Службы Microsoft DirectX Typography 131795770645661053 0x707d0000 86016 C:\Windows\SysWOW64\SAMCLI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Security Accounts Manager Client DLL 131795770645661053 0x70a20000 94208 C:\Windows\SysWOW64\USP10.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Uniscribe Unicode script processor 131795770645661053 0x70ca0000 45056 C:\Windows\SysWOW64\NETUTILS.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API Helpers DLL 131795770645661053 0x70fd0000 1331200 C:\Windows\SysWOW64\dbghelp.dll 10.0.14321.1024 (rs1_release.160715-1616) Microsoft Windows Image Helper 131795770645661053 0x71140000 77824 C:\Windows\SysWOW64\NETAPI32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API DLL 131795770645661053 0x725e0000 2273280 C:\Windows\SysWOW64\iertutil.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служебная программа времени выполнения для Internet Explorer 131795770645661053 0x728e0000 1372160 C:\Windows\SysWOW64\PROPSYS.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Система страниц свойств (Майкрософт) 131795770645661053 0x72af0000 655360 C:\Windows\SysWOW64\WINHTTP.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Службы HTTP Windows 131795770645661053 0x72cc0000 1658880 C:\Windows\SysWOW64\urlmon.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширения OLE32 для Win32 131795770645661053 0x73ac0000 81920 C:\Windows\SysWOW64\dhcpcsvc.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служба DHCP-клиента 131795770645661053 0x73ae0000 40960 C:\Windows\SysWOW64\Secur32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Security Support Provider Interface 131795770645661053 0x73f00000 192512 C:\Windows\SysWOW64\IPHLPAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API вспомогательного приложения IP 131795770645661053 0x74190000 110592 C:\Windows\SysWOW64\bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795770645661053 0x741b0000 77824 C:\Windows\SysWOW64\cryptsp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Cryptographic Service Provider API 131795770645661053 0x741f0000 143360 C:\Windows\SysWOW64\WINMMBASE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base Multimedia Extension API DLL 131795770645661053 0x74230000 147456 C:\Windows\SysWOW64\WINMM.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation MCI API DLL 131795770645661053 0x744d0000 2138112 C:\Windows\WinSxS\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.14393.953_none_89c2555adb023171\COMCTL32.dll 6.10 (rs1_release_inmarket.170303-1614) Microsoft Corporation Библиотека элементов управления взаимодействия с пользователем 131795770645661053 0x746e0000 32768 C:\Windows\SysWOW64\VERSION.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Version Checking and File Installation Libraries 131795770645661053 0x746f0000 106496 C:\Windows\SysWOW64\USERENV.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Userenv 131795770645661053 0x747d0000 40960 C:\Windows\SysWOW64\CRYPTBASE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base cryptographic API DLL 131795770645661053 0x747e0000 126976 C:\Windows\SysWOW64\SspiCli.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Security Support Provider Interface 131795770645661053 0x74800000 151552 C:\Windows\SysWOW64\IMM32.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Multi-User Windows IMM32 API Client DLL 131795770645661053 0x74910000 2170880 C:\Windows\SysWOW64\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795770645661053 0x74b30000 53248 C:\Windows\SysWOW64\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795770645661053 0x74b60000 790528 C:\Windows\SysWOW64\RPCRT4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795770645661053 0x74c30000 1417216 C:\Windows\SysWOW64\gdi32full.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation GDI Client DLL 131795770645661053 0x74d90000 24576 C:\Windows\SysWOW64\PSAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Process Status Helper 131795770645661053 0x74da0000 778240 C:\Windows\SysWOW64\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795770645661053 0x74e60000 557056 C:\Windows\SysWOW64\shcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795770645661053 0x74f80000 278528 C:\Windows\SysWOW64\WINTRUST.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation Microsoft Trust Verification APIs 131795770645661053 0x74fd0000 405504 C:\Windows\SysWOW64\WS2_32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation 32-разрядная библиотека Windows Socket 2.0 131795770645661053 0x75040000 282624 C:\Windows\SysWOW64\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795770645661053 0x751d0000 57344 C:\Windows\SysWOW64\MSASN1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ASN.1 Runtime APIs 131795770645661053 0x751e0000 1708032 C:\Windows\SysWOW64\KERNELBASE.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645661053 0x75390000 266240 C:\Windows\SysWOW64\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795770645661053 0x753e0000 1560576 C:\Windows\SysWOW64\CRYPT32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API32 криптографии 131795770645661053 0x75560000 487424 C:\Windows\SysWOW64\ADVAPI32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795770645661053 0x756c0000 5693440 C:\Windows\SysWOW64\windows.storage.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API хранения Microsoft WinRT 131795770645661053 0x75c90000 286720 C:\Windows\SysWOW64\shlwapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека небольших программ оболочки 131795770645661053 0x75ce0000 20811776 C:\Windows\SysWOW64\SHELL32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Общая библиотека оболочки Windows 131795770645661053 0x774d0000 86016 C:\Windows\SysWOW64\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795770645661053 0x774f0000 61440 C:\Windows\SysWOW64\profapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Profile Basic API 131795770645661053 0x77560000 1437696 C:\Windows\SysWOW64\USER32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795770645661053 0x776c0000 368640 C:\Windows\SysWOW64\bcryptPrimitives.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation Windows Cryptographic Primitives Library 131795770645661053 0x77780000 503808 C:\Windows\SysWOW64\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645661053 0x77800000 606208 C:\Windows\SysWOW64\OLEAUT32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795770645661053 0x77ac0000 966656 C:\Windows\SysWOW64\ole32.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft OLE для Windows 131795770645661053 0x77bb0000 176128 C:\Windows\SysWOW64\GDI32.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation GDI Client DLL 131795770645661053 0x77be0000 937984 C:\Windows\SysWOW64\COMDLG32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека общих диалоговых окон 131795770645661053 0x77cd0000 221184 C:\Windows\SysWOW64\cfgmgr32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Configuration Manager DLL 131795770645661053 0x77d10000 28672 C:\Windows\SysWOW64\NSI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation NSI User-mode interface DLL 131795770645661053 0x77d20000 1585152 C:\Windows\SysWOW64\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 131795770645661053 0x7ffad0270000 1908736 C:\Windows\SYSTEM32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 90 6936 7744 57 00000000:0031f1da 131795756360200321 0 0 0 Обязательная метка\Ненадежный обязательный уровень WIN-0UOTFKKVN1S\User browser.exe C:\Users\User\AppData\Local\Yandex\YandexBrowser\Application\browser.exe "C:\Users\User\AppData\Local\Yandex\YandexBrowser\Application\browser.exe" --type=renderer --enable-in-process-wmf-demuxer --field-trial-handle=1292,9555382311565764851,7120838982649204725,131072 --enable-ignition --disable-gpu-compositing --service-pipe-token=73B8CB09F7D184AD1D3DDBFE4AFC07BA --lang=ru --user-id=32B2E0A1-3039-4C67-86BE-75A88EF21B54 --brand-id=yandex --partner-id=7924 --help-url=https://api.browser.yandex.ru/redirect/help/ --user-agent-info --translate-security-origin=https://translate.yandex.net --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --enable-instaserp --device-scale-factor=1 --num-raster-threads=1 --enable-compositor-image-animations --service-request-channel-token=73B8CB09F7D184AD1D3DDBFE4AFC07BA --renderer-client-id=116 --mojo-platform-channel-handle=4024 /prefetch:1 YANDEX LLC 18.6.1.770 Yandex 131795770645661289 0x10e0000 2519040 C:\Users\User\AppData\Local\Yandex\YandexBrowser\Application\browser.exe 18.6.1.770 YANDEX LLC Yandex 131795770645661289 0x58720000 59748352 C:\Users\User\AppData\Local\Yandex\YandexBrowser\Application\18.6.1.770\browser_child.dll 18.6.1.770 YANDEX LLC Yandex 131795770645661289 0x5c020000 335872 C:\Windows\System32\wow64.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation Win32 Emulation on NT64 131795770645661289 0x5c080000 487424 C:\Windows\System32\wow64win.dll 10.0.14393.1884 (rs1_release.171101-1233) Microsoft Corporation Wow64 Console and Win32 API Logging 131795770645661289 0x5c100000 40960 C:\Windows\System32\wow64cpu.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation AMD64 Wow64 CPU 131795770645661289 0x6e8b0000 1859584 C:\Windows\SysWOW64\mfmp4srcsnk.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL источника и приемника MPEG4 Media Foundation 131795770645661289 0x6ef30000 647168 C:\Windows\SysWOW64\evr.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека DLL средства отображения видео 131795770645661289 0x6efd0000 458752 C:\Windows\SysWOW64\msauddecmft.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Media Foundation Audio Decoders 131795770645661289 0x6f790000 1085440 C:\Windows\SysWOW64\mfperfhelper.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation MFPerf DLL 131795770645661289 0x6f8a0000 2220032 C:\Windows\SysWOW64\msmpeg2vdec.dll 10.0.14393.953 (rs1_release_inmarket.170303-1614) Microsoft Corporation Microsoft DTV-DVD Video Decoder 131795770645661289 0x6fac0000 1130496 C:\Windows\SysWOW64\mfplat.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Media Foundation Platform DLL 131795770645661289 0x6ff60000 172032 C:\Windows\SysWOW64\RTWorkQ.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL для WorkQueue реального времени 131795770645661289 0x70030000 593920 C:\Users\User\AppData\Local\Yandex\YandexBrowser\Application\18.6.1.770\browser_elf.dll 18.6.1.770 YANDEX LLC Yandex 131795770645661289 0x700d0000 434176 C:\Windows\SysWOW64\WINSPOOL.DRV 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Драйвер диспетчера очереди Windows 131795770645661289 0x70340000 536576 C:\Windows\SysWOW64\dxgi.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation DirectX Graphics Infrastructure 131795770645661289 0x703d0000 2056192 C:\Windows\SysWOW64\DWrite.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Службы Microsoft DirectX Typography 131795770645661289 0x707d0000 86016 C:\Windows\SysWOW64\SAMCLI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Security Accounts Manager Client DLL 131795770645661289 0x70a20000 94208 C:\Windows\SysWOW64\USP10.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Uniscribe Unicode script processor 131795770645661289 0x70ca0000 45056 C:\Windows\SysWOW64\NETUTILS.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API Helpers DLL 131795770645661289 0x70fd0000 1331200 C:\Windows\SysWOW64\dbghelp.dll 10.0.14321.1024 (rs1_release.160715-1616) Microsoft Windows Image Helper 131795770645661289 0x71140000 77824 C:\Windows\SysWOW64\NETAPI32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API DLL 131795770645661289 0x725e0000 2273280 C:\Windows\SysWOW64\iertutil.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служебная программа времени выполнения для Internet Explorer 131795770645661289 0x728e0000 1372160 C:\Windows\SysWOW64\PROPSYS.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Система страниц свойств (Майкрософт) 131795770645661289 0x72af0000 655360 C:\Windows\SysWOW64\WINHTTP.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Службы HTTP Windows 131795770645661289 0x72cc0000 1658880 C:\Windows\SysWOW64\urlmon.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширения OLE32 для Win32 131795770645661289 0x73ac0000 81920 C:\Windows\SysWOW64\dhcpcsvc.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служба DHCP-клиента 131795770645661289 0x73ae0000 40960 C:\Windows\SysWOW64\Secur32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Security Support Provider Interface 131795770645661289 0x73f00000 192512 C:\Windows\SysWOW64\IPHLPAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API вспомогательного приложения IP 131795770645661289 0x74190000 110592 C:\Windows\SysWOW64\bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795770645661289 0x741b0000 77824 C:\Windows\SysWOW64\cryptsp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Cryptographic Service Provider API 131795770645661289 0x741f0000 143360 C:\Windows\SysWOW64\WINMMBASE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base Multimedia Extension API DLL 131795770645661289 0x74230000 147456 C:\Windows\SysWOW64\WINMM.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation MCI API DLL 131795770645661289 0x744d0000 2138112 C:\Windows\WinSxS\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.14393.953_none_89c2555adb023171\COMCTL32.dll 6.10 (rs1_release_inmarket.170303-1614) Microsoft Corporation Библиотека элементов управления взаимодействия с пользователем 131795770645661289 0x746e0000 32768 C:\Windows\SysWOW64\VERSION.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Version Checking and File Installation Libraries 131795770645661289 0x746f0000 106496 C:\Windows\SysWOW64\USERENV.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Userenv 131795770645661289 0x747d0000 40960 C:\Windows\SysWOW64\CRYPTBASE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base cryptographic API DLL 131795770645661289 0x747e0000 126976 C:\Windows\SysWOW64\SspiCli.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Security Support Provider Interface 131795770645661289 0x74800000 151552 C:\Windows\SysWOW64\IMM32.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Multi-User Windows IMM32 API Client DLL 131795770645661289 0x74910000 2170880 C:\Windows\SysWOW64\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795770645661289 0x74b30000 53248 C:\Windows\SysWOW64\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795770645661289 0x74b60000 790528 C:\Windows\SysWOW64\RPCRT4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795770645661289 0x74c30000 1417216 C:\Windows\SysWOW64\gdi32full.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation GDI Client DLL 131795770645661289 0x74d90000 24576 C:\Windows\SysWOW64\PSAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Process Status Helper 131795770645661289 0x74da0000 778240 C:\Windows\SysWOW64\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795770645661289 0x74e60000 557056 C:\Windows\SysWOW64\shcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795770645661289 0x74f80000 278528 C:\Windows\SysWOW64\WINTRUST.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation Microsoft Trust Verification APIs 131795770645661289 0x74fd0000 405504 C:\Windows\SysWOW64\WS2_32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation 32-разрядная библиотека Windows Socket 2.0 131795770645661289 0x75040000 282624 C:\Windows\SysWOW64\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795770645661289 0x751d0000 57344 C:\Windows\SysWOW64\MSASN1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ASN.1 Runtime APIs 131795770645661289 0x751e0000 1708032 C:\Windows\SysWOW64\KERNELBASE.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645661289 0x75390000 266240 C:\Windows\SysWOW64\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795770645661289 0x753e0000 1560576 C:\Windows\SysWOW64\CRYPT32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API32 криптографии 131795770645661289 0x75560000 487424 C:\Windows\SysWOW64\ADVAPI32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795770645661289 0x756c0000 5693440 C:\Windows\SysWOW64\windows.storage.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API хранения Microsoft WinRT 131795770645661289 0x75c90000 286720 C:\Windows\SysWOW64\shlwapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека небольших программ оболочки 131795770645661289 0x75ce0000 20811776 C:\Windows\SysWOW64\SHELL32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Общая библиотека оболочки Windows 131795770645661289 0x774d0000 86016 C:\Windows\SysWOW64\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795770645661289 0x774f0000 61440 C:\Windows\SysWOW64\profapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Profile Basic API 131795770645661289 0x77560000 1437696 C:\Windows\SysWOW64\USER32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795770645661289 0x776c0000 368640 C:\Windows\SysWOW64\bcryptPrimitives.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation Windows Cryptographic Primitives Library 131795770645661289 0x77780000 503808 C:\Windows\SysWOW64\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645661289 0x77800000 606208 C:\Windows\SysWOW64\OLEAUT32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795770645661289 0x77ac0000 966656 C:\Windows\SysWOW64\ole32.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft OLE для Windows 131795770645661289 0x77bb0000 176128 C:\Windows\SysWOW64\GDI32.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation GDI Client DLL 131795770645661289 0x77be0000 937984 C:\Windows\SysWOW64\COMDLG32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека общих диалоговых окон 131795770645661289 0x77cd0000 221184 C:\Windows\SysWOW64\cfgmgr32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Configuration Manager DLL 131795770645661289 0x77d10000 28672 C:\Windows\SysWOW64\NSI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation NSI User-mode interface DLL 131795770645661289 0x77d20000 1585152 C:\Windows\SysWOW64\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 131795770645661289 0x7ffad0270000 1908736 C:\Windows\SYSTEM32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 98 6080 84 97 00000000:0031f1da 131795771125310655 0 0 0 Обязательная метка\Средний обязательный уровень WIN-0UOTFKKVN1S\User MCLauncher.exe C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe "C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe" 1.0 131795771127806606 0x400000 2830336 C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe 1.0 131795771129292604 0x750000 1462272 C:\Windows\System32\user32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795771335510731 0x11000000 1396736 C:\Users\User\AppData\Roaming\MCLauncher\libeay32.dll 1.0.2o The OpenSSL Project, http://www.openssl.org/ OpenSSL Shared Library 131795771334241016 0x12000000 360448 C:\Users\User\AppData\Roaming\MCLauncher\ssleay32.dll 1.0.2o The OpenSSL Project, http://www.openssl.org/ OpenSSL Shared Library 131795771129285523 0x5c020000 335872 C:\Windows\System32\wow64.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation Win32 Emulation on NT64 131795771129286235 0x5c080000 487424 C:\Windows\System32\wow64win.dll 10.0.14393.1884 (rs1_release.171101-1233) Microsoft Corporation Wow64 Console and Win32 API Logging 131795771129295328 0x5c100000 40960 C:\Windows\System32\wow64cpu.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation AMD64 Wow64 CPU 131795771135408057 0x60750000 1556480 C:\Program Files (x86)\360\Total Security\safemon\safemon.dll 8, 4, 0, 1420 Qihu 360 Software Co., Ltd. 360 Internet Security Internet Protection 131795771129575672 0x613d0000 667648 C:\Windows\WinSxS\x86_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.9247_none_5090cb78bcba4a35\msvcr90.dll 9.00.30729.9247 Microsoft Corporation Microsoft® C Runtime Library 131795771129398434 0x66680000 12288 C:\Windows\SysWOW64\sfc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows File Protection 131795771136825814 0x67500000 1597440 C:\Windows\SysWOW64\actxprxy.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation ActiveX Interface Marshaling Library 131795771129423112 0x67690000 61440 C:\Windows\SysWOW64\sfc_os.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows File Protection 131795771129349562 0x6b830000 2584576 C:\Windows\AppPatch\AcLayers.dll 10.0.14393.953 (rs1_release_inmarket.170303-1614) Microsoft Corporation Windows Compatibility DLL 131795771329638947 0x6c290000 987136 C:\Windows\SysWOW64\twinapi.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation twinapi.appcore 131795771329610149 0x6c390000 1126400 C:\Windows\SysWOW64\dcomp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft DirectComposition Library 131795771329592759 0x6c4b0000 278528 C:\Windows\SysWOW64\DataExchange.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation Data exchange 131795771136045859 0x6cda0000 528384 C:\Windows\SysWOW64\sxs.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Fusion 2.5 131795771131298623 0x6d180000 581632 C:\Windows\WinSxS\x86_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.9247_none_5090cb78bcba4a35\msvcp90.dll 9.00.30729.9247 Microsoft Corporation Microsoft® C++ Runtime Library 131795771136082794 0x6dca0000 176128 C:\Windows\SysWOW64\scrrun.dll 5.812.10240.16384 Microsoft Corporation Microsoft ® Script Runtime 131795771133718253 0x6dcd0000 606208 C:\Windows\WinSxS\x86_microsoft.windows.common-controls_6595b64144ccf1df_5.82.14393.447_none_5507ded2cb4f7f4c\comctl32.dll 6.10 (rs1_release_inmarket.170303-1614) Microsoft Corporation Библиотека элементов управления взаимодействия с пользователем 131795771129406131 0x700d0000 434176 C:\Windows\SysWOW64\winspool.drv 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Драйвер диспетчера очереди Windows 131795771329618480 0x70340000 536576 C:\Windows\SysWOW64\dxgi.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation DirectX Graphics Infrastructure 131795771329601483 0x707f0000 2293760 C:\Windows\SysWOW64\d3d11.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation Direct3D 11 Runtime 131795771336447829 0x70c30000 114688 C:\Windows\SysWOW64\srvcli.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Server Service Client DLL 131795771135435621 0x70ca0000 45056 C:\Windows\SysWOW64\netutils.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API Helpers DLL 131795771135446667 0x70cb0000 65536 C:\Windows\SysWOW64\wkscli.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Workstation Service Client DLL 131795771136073867 0x70e90000 147456 C:\Windows\SysWOW64\wshom.ocx 5.812.10240.16384 Microsoft Corporation Windows Script Host Runtime Library 131795771135423397 0x71140000 77824 C:\Windows\SysWOW64\netapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API DLL 131795771135552456 0x725e0000 2273280 C:\Windows\SysWOW64\iertutil.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служебная программа времени выполнения для Internet Explorer 131795771136181434 0x728e0000 1372160 C:\Windows\SysWOW64\propsys.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Система страниц свойств (Майкрософт) 131795771328759427 0x72b90000 126976 C:\Windows\SysWOW64\dwmapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Интерфейс API диспетчера окон рабочего стола (Майкрософт) 131795771135541570 0x72cc0000 1658880 C:\Windows\SysWOW64\urlmon.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширения OLE32 для Win32 131795771347140137 0x73a50000 299008 C:\Windows\SysWOW64\FWPUCLNT.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API пользовательского режима FWP/IPsec 131795771347110306 0x73ab0000 32768 C:\Windows\SysWOW64\rasadhlp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Remote Access AutoDial Helper 131795771135314174 0x73ae0000 40960 C:\Windows\SysWOW64\secur32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Security Support Provider Interface 131795771347090516 0x73f00000 192512 C:\Windows\SysWOW64\IPHLPAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API вспомогательного приложения IP 131795771347075776 0x73f30000 512000 C:\Windows\SysWOW64\dnsapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Динамическая библиотека API DNS-клиента 131795771328179609 0x73ff0000 319488 C:\Windows\SysWOW64\mswsock.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширение поставщика службы API Microsoft Windows Sockets 2.0 131795771130913562 0x74060000 192512 C:\Windows\SysWOW64\rsaenh.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Enhanced Cryptographic Provider 131795771135359123 0x74110000 479232 C:\Windows\SysWOW64\uxtheme.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека тем UxTheme (Microsoft) 131795771129415027 0x74190000 110592 C:\Windows\SysWOW64\bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795771130899582 0x741b0000 77824 C:\Windows\SysWOW64\cryptsp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Cryptographic Service Provider API 131795771133098293 0x741f0000 143360 C:\Windows\SysWOW64\winmmbase.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base Multimedia Extension API DLL 131795771132990161 0x74230000 147456 C:\Windows\SysWOW64\winmm.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation MCI API DLL 131795771131765102 0x746e0000 32768 C:\Windows\SysWOW64\version.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Version Checking and File Installation Libraries 131795771129389543 0x74710000 90112 C:\Windows\SysWOW64\mpr.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека маршрутизации для нескольких служб доступа 131795771129317462 0x74730000 598016 C:\Windows\SysWOW64\apphelp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиентская библиотека совместимости приложений 131795771129360685 0x747d0000 40960 C:\Windows\SysWOW64\cryptbase.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base cryptographic API DLL 131795771129360034 0x747e0000 126976 C:\Windows\SysWOW64\sspicli.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Security Support Provider Interface 131795771129496759 0x74800000 151552 C:\Windows\SysWOW64\imm32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Multi-User Windows IMM32 API Client DLL 131795771129358136 0x74830000 917504 C:\Windows\SysWOW64\ucrtbase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795771129357408 0x74910000 2170880 C:\Windows\SysWOW64\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795771129365891 0x74b30000 53248 C:\Windows\SysWOW64\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795771129359203 0x74b60000 790528 C:\Windows\SysWOW64\rpcrt4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795771129353720 0x74c30000 1417216 C:\Windows\SysWOW64\gdi32full.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation GDI Client DLL 131795771135412052 0x74d90000 24576 C:\Windows\SysWOW64\psapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Process Status Helper 131795771129350362 0x74da0000 778240 C:\Windows\SysWOW64\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795771129366695 0x74e60000 557056 C:\Windows\SysWOW64\SHCore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795771136054082 0x74ef0000 540672 C:\Windows\SysWOW64\clbcatq.dll 2001.12.10941.16384 (rs1_release.160715-1616) Microsoft Corporation COM+ Configuration Catalog 131795771131750596 0x74fd0000 405504 C:\Windows\SysWOW64\ws2_32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation 32-разрядная библиотека Windows Socket 2.0 131795771129363162 0x75040000 282624 C:\Windows\SysWOW64\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795771328737550 0x75090000 1265664 C:\Windows\SysWOW64\msctf.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Серверная библиотека MSCTF 131795771135228888 0x751d0000 57344 C:\Windows\SysWOW64\msasn1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ASN.1 Runtime APIs 131795771129301509 0x751e0000 1708032 C:\Windows\SysWOW64\KernelBase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795771129362062 0x75390000 266240 C:\Windows\SysWOW64\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795771135227735 0x753e0000 1560576 C:\Windows\SysWOW64\crypt32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API32 криптографии 131795771129363985 0x75560000 487424 C:\Windows\SysWOW64\advapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795771129356607 0x756c0000 5693440 C:\Windows\SysWOW64\windows.storage.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API хранения Microsoft WinRT 131795771129364960 0x75c90000 286720 C:\Windows\SysWOW64\shlwapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека небольших программ оболочки 131795771129354665 0x75ce0000 20811776 C:\Windows\SysWOW64\shell32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Общая библиотека оболочки Windows 131795771129370252 0x770c0000 4239360 C:\Windows\SysWOW64\setupapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Setup API 131795771129352041 0x774d0000 86016 C:\Windows\SysWOW64\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795771129367584 0x774f0000 61440 C:\Windows\SysWOW64\profapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Profile Basic API 131795771129351257 0x77560000 1437696 C:\Windows\SysWOW64\user32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795771129361361 0x776c0000 368640 C:\Windows\SysWOW64\bcryptprimitives.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation Windows Cryptographic Primitives Library 131795771129369244 0x77780000 503808 C:\Windows\SysWOW64\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795771129368545 0x77800000 606208 C:\Windows\SysWOW64\oleaut32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795771131168008 0x77ac0000 966656 C:\Windows\SysWOW64\ole32.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft OLE для Windows 131795771129352931 0x77bb0000 176128 C:\Windows\SysWOW64\gdi32.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation GDI Client DLL 131795771133704572 0x77be0000 937984 C:\Windows\SysWOW64\comdlg32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека общих диалоговых окон 131795771129355632 0x77cd0000 221184 C:\Windows\SysWOW64\cfgmgr32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Configuration Manager DLL 131795771347076821 0x77d10000 28672 C:\Windows\SysWOW64\nsi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation NSI User-mode interface DLL 131795771127807387 0x77d20000 1585152 C:\Windows\SysWOW64\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 131795771127807116 0x7ffad0270000 1908736 C:\Windows\System32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 104 12696 7744 57 00000000:0031f1da 131795777567759490 0 0 0 Обязательная метка\Низкий обязательный уровень WIN-0UOTFKKVN1S\User browser.exe C:\Users\User\AppData\Local\Yandex\YandexBrowser\Application\browser.exe "C:\Users\User\AppData\Local\Yandex\YandexBrowser\Application\browser.exe" --type=renderer --enable-in-process-wmf-demuxer --field-trial-handle=1292,9555382311565764851,7120838982649204725,131072 --enable-ignition --disable-gpu-compositing --service-pipe-token=E83DB721798C8A70C76CD26F6F4EE1BC --lang=ru --user-id=32B2E0A1-3039-4C67-86BE-75A88EF21B54 --brand-id=yandex --partner-id=7924 --help-url=https://api.browser.yandex.ru/redirect/help/ --user-agent-info --translate-security-origin=https://translate.yandex.net --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --enable-instaserp --device-scale-factor=1 --num-raster-threads=1 --enable-compositor-image-animations --service-request-channel-token=E83DB721798C8A70C76CD26F6F4EE1BC --renderer-client-id=119 --mojo-platform-channel-handle=7052 /prefetch:1 YANDEX LLC 18.6.1.770 Yandex 131795777567991690 0xc00000 1462272 C:\Windows\System32\user32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795777567961139 0x10e0000 2519040 C:\Users\User\AppData\Local\Yandex\YandexBrowser\Application\browser.exe 18.6.1.770 YANDEX LLC Yandex 131795777569452751 0x58720000 59748352 C:\Users\User\AppData\Local\Yandex\YandexBrowser\Application\18.6.1.770\browser_child.dll 18.6.1.770 YANDEX LLC Yandex 131795777567980184 0x5c020000 335872 C:\Windows\System32\wow64.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation Win32 Emulation on NT64 131795777567981270 0x5c080000 487424 C:\Windows\System32\wow64win.dll 10.0.14393.1884 (rs1_release.171101-1233) Microsoft Corporation Wow64 Console and Win32 API Logging 131795777567994943 0x5c100000 40960 C:\Windows\System32\wow64cpu.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation AMD64 Wow64 CPU 131795777570994535 0x6e8b0000 1859584 C:\Windows\SysWOW64\mfmp4srcsnk.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL источника и приемника MPEG4 Media Foundation 131795777570968696 0x6ef30000 647168 C:\Windows\SysWOW64\evr.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека DLL средства отображения видео 131795777570908362 0x6efd0000 458752 C:\Windows\SysWOW64\MSAudDecMFT.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Media Foundation Audio Decoders 131795777570920904 0x6f790000 1085440 C:\Windows\SysWOW64\mfperfhelper.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation MFPerf DLL 131795777570943637 0x6f8a0000 2220032 C:\Windows\SysWOW64\msmpeg2vdec.dll 10.0.14393.953 (rs1_release_inmarket.170303-1614) Microsoft Corporation Microsoft DTV-DVD Video Decoder 131795777570874151 0x6fac0000 1130496 C:\Windows\SysWOW64\mfplat.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Media Foundation Platform DLL 131795777570891841 0x6ff60000 172032 C:\Windows\SysWOW64\RTWorkQ.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL для WorkQueue реального времени 131795777568100773 0x70030000 593920 C:\Users\User\AppData\Local\Yandex\YandexBrowser\Application\18.6.1.770\browser_elf.dll 18.6.1.770 YANDEX LLC Yandex 131795777570569484 0x700d0000 434176 C:\Windows\SysWOW64\winspool.drv 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Драйвер диспетчера очереди Windows 131795777570619251 0x70340000 536576 C:\Windows\SysWOW64\dxgi.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation DirectX Graphics Infrastructure 131795777570607590 0x703d0000 2056192 C:\Windows\SysWOW64\DWrite.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Службы Microsoft DirectX Typography 131795777570676211 0x707d0000 86016 C:\Windows\SysWOW64\samcli.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Security Accounts Manager Client DLL 131795777570557202 0x70a20000 94208 C:\Windows\SysWOW64\usp10.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Uniscribe Unicode script processor 131795777570691164 0x70ca0000 45056 C:\Windows\SysWOW64\netutils.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API Helpers DLL 131795777570539079 0x70fd0000 1331200 C:\Windows\SysWOW64\dbghelp.dll 10.0.14321.1024 (rs1_release.160715-1616) Microsoft Windows Image Helper 131795777569494420 0x71140000 77824 C:\Windows\SysWOW64\netapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API DLL 131795777570658737 0x725e0000 2273280 C:\Windows\SysWOW64\iertutil.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служебная программа времени выполнения для Internet Explorer 131795777569526517 0x728e0000 1372160 C:\Windows\SysWOW64\propsys.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Система страниц свойств (Майкрософт) 131795777569154123 0x72af0000 655360 C:\Windows\SysWOW64\winhttp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Службы HTTP Windows 131795777570594964 0x72cc0000 1658880 C:\Windows\SysWOW64\urlmon.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширения OLE32 для Win32 131795777570630821 0x73ac0000 81920 C:\Windows\SysWOW64\dhcpcsvc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служба DHCP-клиента 131795777570523174 0x73ae0000 40960 C:\Windows\SysWOW64\secur32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Security Support Provider Interface 131795777570582120 0x73f00000 192512 C:\Windows\SysWOW64\IPHLPAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API вспомогательного приложения IP 131795777570646486 0x74190000 110592 C:\Windows\SysWOW64\bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795777570953652 0x741b0000 77824 C:\Windows\SysWOW64\cryptsp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Cryptographic Service Provider API 131795777569213807 0x741f0000 143360 C:\Windows\SysWOW64\winmmbase.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base Multimedia Extension API DLL 131795777568156054 0x74230000 147456 C:\Windows\SysWOW64\winmm.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation MCI API DLL 131795777569481011 0x744d0000 2138112 C:\Windows\WinSxS\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.14393.953_none_89c2555adb023171\comctl32.dll 6.10 (rs1_release_inmarket.170303-1614) Microsoft Corporation Библиотека элементов управления взаимодействия с пользователем 131795777568142933 0x746e0000 32768 C:\Windows\SysWOW64\version.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Version Checking and File Installation Libraries 131795777568179155 0x746f0000 106496 C:\Windows\SysWOW64\userenv.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Userenv 131795777568043561 0x747d0000 40960 C:\Windows\SysWOW64\cryptbase.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base cryptographic API DLL 131795777568042430 0x747e0000 126976 C:\Windows\SysWOW64\sspicli.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Security Support Provider Interface 131795777569239058 0x74800000 151552 C:\Windows\SysWOW64\imm32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Multi-User Windows IMM32 API Client DLL 131795777568075566 0x74830000 917504 C:\Windows\SysWOW64\ucrtbase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795777568073430 0x74910000 2170880 C:\Windows\SysWOW64\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795777568086784 0x74b30000 53248 C:\Windows\SysWOW64\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795777568041126 0x74b60000 790528 C:\Windows\SysWOW64\rpcrt4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795777568081914 0x74c30000 1417216 C:\Windows\SysWOW64\gdi32full.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation GDI Client DLL 131795777568046844 0x74d90000 24576 C:\Windows\SysWOW64\psapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Process Status Helper 131795777568038347 0x74da0000 778240 C:\Windows\SysWOW64\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795777568088134 0x74e60000 557056 C:\Windows\SysWOW64\SHCore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795777569468247 0x74f80000 278528 C:\Windows\SysWOW64\wintrust.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation Microsoft Trust Verification APIs 131795777569466798 0x74fd0000 405504 C:\Windows\SysWOW64\ws2_32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation 32-разрядная библиотека Windows Socket 2.0 131795777568077279 0x75040000 282624 C:\Windows\SysWOW64\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795777569469408 0x751d0000 57344 C:\Windows\SysWOW64\msasn1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ASN.1 Runtime APIs 131795777568024100 0x751e0000 1708032 C:\Windows\SysWOW64\KernelBase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795777568039823 0x75390000 266240 C:\Windows\SysWOW64\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795777569470854 0x753e0000 1560576 C:\Windows\SysWOW64\crypt32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API32 криптографии 131795777568036731 0x75560000 487424 C:\Windows\SysWOW64\advapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795777568054568 0x756c0000 5693440 C:\Windows\SysWOW64\windows.storage.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API хранения Microsoft WinRT 131795777568078714 0x75c90000 286720 C:\Windows\SysWOW64\shlwapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека небольших программ оболочки 131795777568050811 0x75ce0000 20811776 C:\Windows\SysWOW64\shell32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Общая библиотека оболочки Windows 131795777568084892 0x774d0000 86016 C:\Windows\SysWOW64\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795777568089486 0x774f0000 61440 C:\Windows\SysWOW64\profapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Profile Basic API 131795777568083413 0x77560000 1437696 C:\Windows\SysWOW64\user32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795777568044758 0x776c0000 368640 C:\Windows\SysWOW64\bcryptprimitives.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation Windows Cryptographic Primitives Library 131795777569464930 0x77780000 503808 C:\Windows\SysWOW64\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795777569463567 0x77800000 606208 C:\Windows\SysWOW64\oleaut32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795777568116745 0x77ac0000 966656 C:\Windows\SysWOW64\ole32.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft OLE для Windows 131795777568080182 0x77bb0000 176128 C:\Windows\SysWOW64\gdi32.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation GDI Client DLL 131795777569457550 0x77be0000 937984 C:\Windows\SysWOW64\comdlg32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека общих диалоговых окон 131795777568052363 0x77cd0000 221184 C:\Windows\SysWOW64\cfgmgr32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Configuration Manager DLL 131795777570632192 0x77d10000 28672 C:\Windows\SysWOW64\nsi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation NSI User-mode interface DLL 131795777567961904 0x77d20000 1585152 C:\Windows\SysWOW64\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 131795777567961630 0x7ffad0270000 1908736 C:\Windows\System32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 106 5556 7744 57 00000000:0031f1da 131795777595302537 0 0 0 Обязательная метка\Низкий обязательный уровень WIN-0UOTFKKVN1S\User browser.exe C:\Users\User\AppData\Local\Yandex\YandexBrowser\Application\browser.exe "C:\Users\User\AppData\Local\Yandex\YandexBrowser\Application\browser.exe" --type=renderer --enable-in-process-wmf-demuxer --field-trial-handle=1292,9555382311565764851,7120838982649204725,131072 --enable-ignition --disable-gpu-compositing --service-pipe-token=3ADFA2396247AD5E547F61590603D06D --lang=ru --user-id=32B2E0A1-3039-4C67-86BE-75A88EF21B54 --brand-id=yandex --partner-id=7924 --help-url=https://api.browser.yandex.ru/redirect/help/ --user-agent-info --translate-security-origin=https://translate.yandex.net --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --enable-instaserp --device-scale-factor=1 --num-raster-threads=1 --enable-compositor-image-animations --service-request-channel-token=3ADFA2396247AD5E547F61590603D06D --renderer-client-id=121 --mojo-platform-channel-handle=6636 /prefetch:1 YANDEX LLC 18.6.1.770 Yandex 131795777595490187 0x1020000 704512 C:\Windows\System32\kernel32.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795777595475498 0x10e0000 2519040 C:\Users\User\AppData\Local\Yandex\YandexBrowser\Application\browser.exe 18.6.1.770 YANDEX LLC Yandex 131795777595491301 0x5550000 1462272 C:\Windows\System32\user32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795777596381097 0x58720000 59748352 C:\Users\User\AppData\Local\Yandex\YandexBrowser\Application\18.6.1.770\browser_child.dll 18.6.1.770 YANDEX LLC Yandex 131795777595481485 0x5c020000 335872 C:\Windows\System32\wow64.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation Win32 Emulation on NT64 131795777595482474 0x5c080000 487424 C:\Windows\System32\wow64win.dll 10.0.14393.1884 (rs1_release.171101-1233) Microsoft Corporation Wow64 Console and Win32 API Logging 131795777595494304 0x5c100000 40960 C:\Windows\System32\wow64cpu.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation AMD64 Wow64 CPU 131795777597543015 0x6e8b0000 1859584 C:\Windows\SysWOW64\mfmp4srcsnk.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL источника и приемника MPEG4 Media Foundation 131795777597521210 0x6ef30000 647168 C:\Windows\SysWOW64\evr.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека DLL средства отображения видео 131795777597472595 0x6efd0000 458752 C:\Windows\SysWOW64\MSAudDecMFT.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Media Foundation Audio Decoders 131795777597484525 0x6f790000 1085440 C:\Windows\SysWOW64\mfperfhelper.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation MFPerf DLL 131795777597497517 0x6f8a0000 2220032 C:\Windows\SysWOW64\msmpeg2vdec.dll 10.0.14393.953 (rs1_release_inmarket.170303-1614) Microsoft Corporation Microsoft DTV-DVD Video Decoder 131795777597428793 0x6fac0000 1130496 C:\Windows\SysWOW64\mfplat.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Media Foundation Platform DLL 131795777597448444 0x6ff60000 172032 C:\Windows\SysWOW64\RTWorkQ.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL для WorkQueue реального времени 131795777595565558 0x70030000 593920 C:\Users\User\AppData\Local\Yandex\YandexBrowser\Application\18.6.1.770\browser_elf.dll 18.6.1.770 YANDEX LLC Yandex 131795777597103476 0x700d0000 434176 C:\Windows\SysWOW64\winspool.drv 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Драйвер диспетчера очереди Windows 131795777597165296 0x70340000 536576 C:\Windows\SysWOW64\dxgi.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation DirectX Graphics Infrastructure 131795777597153510 0x703d0000 2056192 C:\Windows\SysWOW64\DWrite.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Службы Microsoft DirectX Typography 131795777597221087 0x707d0000 86016 C:\Windows\SysWOW64\samcli.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Security Accounts Manager Client DLL 131795777597072535 0x70a20000 94208 C:\Windows\SysWOW64\usp10.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Uniscribe Unicode script processor 131795777597233493 0x70ca0000 45056 C:\Windows\SysWOW64\netutils.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API Helpers DLL 131795777597059294 0x70fd0000 1331200 C:\Windows\SysWOW64\dbghelp.dll 10.0.14321.1024 (rs1_release.160715-1616) Microsoft Windows Image Helper 131795777596424202 0x71140000 77824 C:\Windows\SysWOW64\netapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API DLL 131795777597205195 0x725e0000 2273280 C:\Windows\SysWOW64\iertutil.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служебная программа времени выполнения для Internet Explorer 131795777596436120 0x728e0000 1372160 C:\Windows\SysWOW64\propsys.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Система страниц свойств (Майкрософт) 131795777596128973 0x72af0000 655360 C:\Windows\SysWOW64\winhttp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Службы HTTP Windows 131795777597128037 0x72cc0000 1658880 C:\Windows\SysWOW64\urlmon.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширения OLE32 для Win32 131795777597177209 0x73ac0000 81920 C:\Windows\SysWOW64\dhcpcsvc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служба DHCP-клиента 131795777597044137 0x73ae0000 40960 C:\Windows\SysWOW64\secur32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Security Support Provider Interface 131795777597116160 0x73f00000 192512 C:\Windows\SysWOW64\IPHLPAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API вспомогательного приложения IP 131795777597192860 0x74190000 110592 C:\Windows\SysWOW64\bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795777597506812 0x741b0000 77824 C:\Windows\SysWOW64\cryptsp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Cryptographic Service Provider API 131795777596148547 0x741f0000 143360 C:\Windows\SysWOW64\winmmbase.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base Multimedia Extension API DLL 131795777595627397 0x74230000 147456 C:\Windows\SysWOW64\winmm.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation MCI API DLL 131795777596410831 0x744d0000 2138112 C:\Windows\WinSxS\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.14393.953_none_89c2555adb023171\comctl32.dll 6.10 (rs1_release_inmarket.170303-1614) Microsoft Corporation Библиотека элементов управления взаимодействия с пользователем 131795777595610560 0x746e0000 32768 C:\Windows\SysWOW64\version.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Version Checking and File Installation Libraries 131795777595638942 0x746f0000 106496 C:\Windows\SysWOW64\userenv.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Userenv 131795777595529014 0x747d0000 40960 C:\Windows\SysWOW64\cryptbase.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base cryptographic API DLL 131795777595527983 0x747e0000 126976 C:\Windows\SysWOW64\sspicli.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Security Support Provider Interface 131795777596182171 0x74800000 151552 C:\Windows\SysWOW64\imm32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Multi-User Windows IMM32 API Client DLL 131795777595541526 0x74830000 917504 C:\Windows\SysWOW64\ucrtbase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795777595540326 0x74910000 2170880 C:\Windows\SysWOW64\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795777595551866 0x74b30000 53248 C:\Windows\SysWOW64\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795777595526606 0x74b60000 790528 C:\Windows\SysWOW64\rpcrt4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795777595547732 0x74c30000 1417216 C:\Windows\SysWOW64\gdi32full.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation GDI Client DLL 131795777595531563 0x74d90000 24576 C:\Windows\SysWOW64\psapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Process Status Helper 131795777595524005 0x74da0000 778240 C:\Windows\SysWOW64\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795777595553384 0x74e60000 557056 C:\Windows\SysWOW64\SHCore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795777596396507 0x74f80000 278528 C:\Windows\SysWOW64\wintrust.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation Microsoft Trust Verification APIs 131795777596394953 0x74fd0000 405504 C:\Windows\SysWOW64\ws2_32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation 32-разрядная библиотека Windows Socket 2.0 131795777595543299 0x75040000 282624 C:\Windows\SysWOW64\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795777596397607 0x751d0000 57344 C:\Windows\SysWOW64\msasn1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ASN.1 Runtime APIs 131795777595508927 0x751e0000 1708032 C:\Windows\SysWOW64\KernelBase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795777595525398 0x75390000 266240 C:\Windows\SysWOW64\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795777596398892 0x753e0000 1560576 C:\Windows\SysWOW64\crypt32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API32 криптографии 131795777595522182 0x75560000 487424 C:\Windows\SysWOW64\advapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795777595538927 0x756c0000 5693440 C:\Windows\SysWOW64\windows.storage.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API хранения Microsoft WinRT 131795777595544568 0x75c90000 286720 C:\Windows\SysWOW64\shlwapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека небольших программ оболочки 131795777595535397 0x75ce0000 20811776 C:\Windows\SysWOW64\shell32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Общая библиотека оболочки Windows 131795777595550455 0x774d0000 86016 C:\Windows\SysWOW64\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795777595554628 0x774f0000 61440 C:\Windows\SysWOW64\profapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Profile Basic API 131795777595549128 0x77560000 1437696 C:\Windows\SysWOW64\user32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795777595530150 0x776c0000 368640 C:\Windows\SysWOW64\bcryptprimitives.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation Windows Cryptographic Primitives Library 131795777596393437 0x77780000 503808 C:\Windows\SysWOW64\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795777596392132 0x77800000 606208 C:\Windows\SysWOW64\oleaut32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795777595583766 0x77ac0000 966656 C:\Windows\SysWOW64\ole32.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft OLE для Windows 131795777595545878 0x77bb0000 176128 C:\Windows\SysWOW64\gdi32.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation GDI Client DLL 131795777596385979 0x77be0000 937984 C:\Windows\SysWOW64\comdlg32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека общих диалоговых окон 131795777595536930 0x77cd0000 221184 C:\Windows\SysWOW64\cfgmgr32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Configuration Manager DLL 131795777597178434 0x77d10000 28672 C:\Windows\SysWOW64\nsi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation NSI User-mode interface DLL 131795777595476066 0x77d20000 1585152 C:\Windows\SysWOW64\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 131795777595475814 0x7ffad0270000 1908736 C:\Windows\System32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 111 9032 664 6 00000000:0031f1da 131795777895284069 0 0 1 Обязательная метка\Средний обязательный уровень WIN-0UOTFKKVN1S\User explorer.exe C:\Windows\explorer.exe C:\Windows\explorer.exe /factory,{75dff2b7-6936-4c06-a8bb-676a7b00b24b} -Embedding Microsoft Corporation 10.0.14393.0 (rs1_release.160715-1616) Проводник 131795777911330291 0x4d80000 593920 C:\Windows\System32\UIRibbonRes.dll 10.0.14393.2189 (rs1_release.180329-1711) Microsoft Corporation Windows Ribbon Framework Resources 131795777920515787 0x6530000 8937472 C:\Program Files\Microsoft Office\Office16\1049\GrooveIntlResource.dll 16.0.4266.1001 Корпорация Майкрософт Модуль международных ресурсов для Microsoft OneDrive для бизнеса 131795777903881315 0x5bbd0000 1101824 C:\Program Files (x86)\360\Total Security\safemon\safemon64.dll 1, 0, 0, 1190 Qihu 360 Software Co., Ltd. 360 Internet Security Internet Protection 131795777903867506 0x5bce0000 28672 C:\Program Files (x86)\360\Total Security\safemon\SafeWrapper.dll 2, 0, 0, 1060 Qihu 360 Software Co., Ltd. 360 Internet Security Internet Protection 131795777895813346 0x7ff6a5b30000 4665344 C:\Windows\explorer.exe 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Проводник 131795777906005639 0x7ffab2720000 606208 C:\Windows\System32\duser.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows DirectUser Engine 131795777922060868 0x7ffab28d0000 802816 C:\Windows\System32\cscui.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Интерфейс кэширования на стороне клиента 131795777918507242 0x7ffab4b90000 655360 C:\Windows\System32\StructuredQuery.dll 7.0.14393.2068 (rs1_release.180209-1727) Microsoft Corporation Structured Query 131795777907532495 0x7ffab5520000 3231744 C:\Windows\System32\msftedit.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Элемент управления "Поле ввода форматированного текста", версия 8.5 131795777910997447 0x7ffab8da0000 1675264 C:\Windows\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.14393.1715_none_aec701fbddd850fa\GdiPlus.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Microsoft GDI+ 131795777915260331 0x7ffab9490000 860160 C:\Windows\System32\ntshrui.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширения оболочки, обеспечивающие общий доступ 131795777910978745 0x7ffab95c0000 4091904 C:\Windows\System32\UIRibbon.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Платформа ленты Windows 131795778008622616 0x7ffabacc0000 1380352 C:\Windows\System32\SharedStartModel.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Shared Start Model InProc Server 131795778007235790 0x7ffabae60000 77824 C:\Windows\System32\devrtl.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Device Management Run Time Library 131795777909146457 0x7ffabaf70000 270336 C:\Windows\System32\edputil.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служебная программа EDP 131795777902950088 0x7ffabb2b0000 1089536 C:\Windows\System32\SettingSyncCore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Setting Synchronization Core 131795778007048279 0x7ffabb430000 65536 C:\Windows\System32\pcacli.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Program Compatibility Assistant Client Module 131795777902932644 0x7ffabb490000 512000 C:\Windows\System32\twinapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation twinapi 131795777909802797 0x7ffabbc40000 643072 C:\Windows\System32\msvcp140.dll 14.10.24516.0 built by: VCTOOLSRELESC Microsoft Corporation Microsoft® C Runtime Library 131795777909791020 0x7ffabbce0000 90112 C:\Windows\System32\vcruntime140.dll 14.10.24516.0 built by: VCTOOLSRELESC Microsoft Corporation Microsoft® C Runtime Library 131795777917395017 0x7ffabc0b0000 65536 C:\Windows\System32\linkinfo.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Volume Tracking 131795777918158137 0x7ffabc880000 73728 C:\Windows\System32\cscapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Offline Files Win32 API 131795777966565943 0x7ffabcf30000 110592 C:\Windows\System32\mpr.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека маршрутизации для нескольких служб доступа 131795777908125051 0x7ffabd4a0000 1613824 C:\Windows\System32\Windows.Globalization.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Globalization 131795777905900322 0x7ffabdbb0000 1736704 C:\Windows\System32\dui70.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Подсистема DirectUI Windows 131795777908270107 0x7ffabe9c0000 188416 C:\Windows\System32\globinputhost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Globalization Extension API for Input 131795777922014669 0x7ffabebf0000 1208320 C:\Windows\System32\networkexplorer.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Сетевой проводник 131795778007216762 0x7ffabef80000 69632 C:\Windows\System32\sfc_os.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows File Protection 131795777919764442 0x7ffabf5d0000 2924544 C:\Windows\System32\wininet.dll 11.00.14393.447 (rs1_release_inmarket.161102-0100) Microsoft Corporation Расширения Интернета для Win32 131795777915281766 0x7ffabff10000 155648 C:\Windows\System32\srvcli.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Server Service Client DLL 131795777909775471 0x7ffac0250000 2179072 C:\Program Files\Microsoft Office\Office16\GROOVEEX.DLL 16.0.4266.1001 Microsoft Corporation Microsoft OneDrive for Business Extensions 131795777910387599 0x7ffac0610000 3088384 C:\Windows\System32\msi.dll 5.0.14393.2155 Microsoft Corporation Windows Installer 131795777905243222 0x7ffac0bf0000 3559424 C:\Windows\System32\actxprxy.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation ActiveX Interface Marshaling Library 131795777919412503 0x7ffac1710000 1642496 C:\Users\User\AppData\Local\Microsoft\OneDrive\18.131.0701.0007\amd64\FileSyncShell64.dll 18.131.0701.0007 Microsoft Corporation Microsoft OneDrive Shell Extension 131795777904716802 0x7ffac18b0000 270336 C:\Program Files (x86)\360\Total Security\safemon\safehmpg64.dll 1, 0, 0, 1140 Qihu 360 Software Co., Ltd. 360 Internet Security Browser HomePage Protection 131795777944562485 0x7ffac23c0000 331776 C:\Windows\System32\OneCoreCommonProxyStub.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation OneCore Common Proxy Stub 131795777903915791 0x7ffac2700000 98304 C:\Windows\System32\netapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API DLL 131795777922001525 0x7ffac2960000 143360 C:\Windows\System32\mssprxy.dll 7.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation Microsoft Search Proxy 131795777903903305 0x7ffac2b80000 40960 C:\Windows\System32\version.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Version Checking and File Installation Libraries 131795777909321798 0x7ffac34e0000 1843200 C:\Windows\System32\urlmon.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширения OLE32 для Win32 131795777909330655 0x7ffac3cb0000 2772992 C:\Windows\System32\iertutil.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служебная программа времени выполнения для Internet Explorer 131795777906462233 0x7ffac4000000 274432 C:\Windows\System32\policymanager.dll 10.0.14393.2035 (rs1_release_inmarket.180110-1910) Microsoft Corporation Policy Manager DLL 131795777910949757 0x7ffac4ea0000 36864 C:\Windows\System32\atlthunk.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation atlthunk.dll 131795777920555307 0x7ffac4f90000 221184 C:\Windows\System32\EhStorShell.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL расширения оболочки Windows Enhanced Storage 131795777906356495 0x7ffac5630000 339968 C:\Windows\System32\thumbcache.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Кэш эскизов Майкрософт 131795777905097743 0x7ffac5690000 4734976 C:\Windows\System32\ExplorerFrame.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ExplorerFrame 131795777908567233 0x7ffac5bb0000 622592 C:\Program Files\Common Files\microsoft shared\ink\tiptsf.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Инфраструктура текстовых служб сенсорной клавиатуры и панели рукописного ввода 131795777911007559 0x7ffac60e0000 221184 C:\Windows\System32\xmllite.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft XmlLite Library 131795777914831974 0x7ffac6bd0000 413696 C:\Windows\System32\oleacc.dll 7.2.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Active Accessibility Core Component 131795777905390625 0x7ffac6c40000 2596864 C:\Windows\WinSxS\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.14393.953_none_42151e83c686086b\comctl32.dll 6.10 (rs1_release_inmarket.170303-1614) Microsoft Corporation Библиотека элементов управления взаимодействия с пользователем 131795777902894862 0x7ffac7580000 1077248 C:\Windows\System32\MrmCoreR.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Windows MRM 131795777906986296 0x7ffac84f0000 299008 C:\Windows\System32\DataExchange.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation Data exchange 131795777906995835 0x7ffac88a0000 2842624 C:\Windows\System32\d3d11.dll 10.0.14393.953 (rs1_release_inmarket.170303-1614) Microsoft Corporation Direct3D 11 Runtime 131795777903975733 0x7ffac90b0000 90112 C:\Windows\System32\wkscli.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Workstation Service Client DLL 131795777906257948 0x7ffac9f50000 1736704 C:\Windows\System32\WindowsCodecs.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Microsoft Windows Codecs Library 131795777919424461 0x7ffaca170000 45056 C:\Windows\System32\ktmw32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows KTM Win32 Client DLL 131795777902880674 0x7ffaca340000 1593344 C:\Windows\System32\propsys.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Система страниц свойств (Майкрософт) 131795777908138610 0x7ffaca570000 421888 C:\Windows\System32\BCP47Langs.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation BCP47 Language Classes 131795777902921260 0x7ffaca5e0000 155648 C:\Windows\System32\dwmapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Интерфейс API диспетчера окон рабочего стола (Майкрософт) 131795778008641775 0x7ffaca640000 770048 C:\Windows\System32\CoreMessaging.dll 10.0.14393.0 Microsoft Corporation Microsoft CoreMessaging Dll 131795777907005063 0x7ffaca770000 1380352 C:\Windows\System32\dcomp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft DirectComposition Library 131795777918659102 0x7ffacab40000 176128 C:\Windows\System32\winmmbase.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base Multimedia Extension API DLL 131795777918649579 0x7ffacaba0000 143360 C:\Windows\System32\winmm.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation MCI API DLL 131795777909306748 0x7ffacadf0000 499712 C:\Windows\System32\apphelp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиентская библиотека совместимости приложений 131795777902905939 0x7ffacaf00000 610304 C:\Windows\System32\uxtheme.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека тем UxTheme (Microsoft) 131795777906474194 0x7ffacb140000 593920 C:\Windows\System32\msvcp110_win.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Microsoft® STL110 C++ Runtime Library 131795777902941219 0x7ffacb1e0000 1163264 C:\Windows\System32\twinapi.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation twinapi.appcore 131795778008632518 0x7ffacb300000 364544 C:\Windows\System32\VEEventDispatcher.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Visual Element Event dispatcher 131795777918171528 0x7ffacb420000 204800 C:\Windows\System32\ntmarta.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик Windows NT MARTA 131795777907014508 0x7ffacb780000 651264 C:\Windows\System32\dxgi.dll 10.0.14393.953 (rs1_release_inmarket.170303-1614) Microsoft Corporation DirectX Graphics Infrastructure 131795777903933947 0x7ffacbe20000 53248 C:\Windows\System32\netutils.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API Helpers DLL 131795777902985171 0x7ffacbe40000 126976 C:\Windows\System32\userenv.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Userenv 131795777903008375 0x7ffacc150000 94208 C:\Windows\System32\cryptsp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Cryptographic Service Provider API 131795777902974089 0x7ffacc350000 180224 C:\Windows\System32\sspicli.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Security Support Provider Interface 131795777905657867 0x7ffacc520000 622592 C:\Windows\System32\sxs.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Fusion 2.5 131795777902999880 0x7ffacc620000 176128 C:\Windows\System32\bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795777902852334 0x7ffacc6e0000 61440 C:\Windows\System32\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795777902849489 0x7ffacc6f0000 311296 C:\Windows\System32\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795777902853126 0x7ffacc740000 81920 C:\Windows\System32\profapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Profile Basic API 131795777902855116 0x7ffacc760000 65536 C:\Windows\System32\msasn1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ASN.1 Runtime APIs 131795777902843222 0x7ffacc770000 1572864 C:\Windows\System32\gdi32full.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation GDI Client DLL 131795777902836309 0x7ffacc8f0000 1003520 C:\Windows\System32\ucrtbase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795777902838974 0x7ffacc9f0000 434176 C:\Windows\System32\bcryptprimitives.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Cryptographic Primitives Library 131795777902841617 0x7ffacca60000 122880 C:\Windows\System32\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795777902844144 0x7ffaccae0000 692224 C:\Windows\System32\SHCore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795777902848566 0x7ffaccb90000 7180288 C:\Windows\System32\windows.storage.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API хранения Microsoft WinRT 131795777902824318 0x7ffacd270000 2215936 C:\Windows\System32\KernelBase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795777902854301 0x7ffacd490000 1871872 C:\Windows\System32\crypt32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API32 криптографии 131795777902835470 0x7ffacd710000 638976 C:\Windows\System32\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795777902847555 0x7ffacd7b0000 270336 C:\Windows\System32\cfgmgr32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Configuration Manager DLL 131795777902846521 0x7ffacd810000 22056960 C:\Windows\System32\shell32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Общая библиотека оболочки Windows 131795777902834719 0x7ffaced20000 782336 C:\Windows\System32\oleaut32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795777916996283 0x7ffacede0000 450560 C:\Windows\System32\coml2.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft COM for Windows 131795777902838016 0x7ffacee50000 1183744 C:\Windows\System32\rpcrt4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795777902833378 0x7ffacef90000 647168 C:\Windows\System32\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795777904879129 0x7ffacf030000 651264 C:\Windows\System32\clbcatq.dll 2001.12.10941.16384 (rs1_release.160715-1616) Microsoft Corporation COM+ Configuration Catalog 131795777902823359 0x7ffacf0d0000 704512 C:\Windows\System32\kernel32.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795777905449820 0x7ffacf1e0000 1417216 C:\Windows\System32\msctf.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Серверная библиотека MSCTF 131795777920556415 0x7ffacf340000 4362240 C:\Windows\System32\setupapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Setup API 131795777902842396 0x7ffacf770000 212992 C:\Windows\System32\gdi32.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation GDI Client DLL 131795777903888252 0x7ffacf820000 434176 C:\Windows\System32\ws2_32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation 32-разрядная библиотека Windows Socket 2.0 131795777903413262 0x7ffacf890000 188416 C:\Windows\System32\imm32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Multi-User Windows IMM32 API Client DLL 131795777902840664 0x7ffacf8c0000 1462272 C:\Windows\System32\user32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795777902837229 0x7ffacfb30000 2916352 C:\Windows\System32\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795777903887407 0x7ffacfe00000 114688 C:\Windows\System32\imagehlp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT Image Helper 131795777902850328 0x7ffacfe20000 663552 C:\Windows\System32\advapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795777903886124 0x7ffad0070000 1277952 C:\Windows\System32\ole32.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft OLE для Windows 131795777902845086 0x7ffad01b0000 335872 C:\Windows\System32\shlwapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека небольших программ оболочки 131795777902851375 0x7ffad0210000 364544 C:\Windows\System32\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795777895813598 0x7ffad0270000 1908736 C:\Windows\System32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 144 12892 3108 11 00000000:0031f1da 131795780695167004 0 0 1 Обязательная метка\Средний обязательный уровень WIN-0UOTFKKVN1S\User Wireshark.exe C:\Program Files\Wireshark\Wireshark.exe "C:\Program Files\Wireshark\Wireshark.exe" The Wireshark developer community, http://www.wireshark.org/ 2.6.2 Wireshark 131795780706141890 0xbd0000 90112 C:\Program Files\Wireshark\libwinpthread-1.dll 1, 0, 0, 0 MingW-W64 Project. All rights reserved. POSIX WinThreads for Windows 131795780721765742 0xbf0000 53248 C:\Program Files\Wireshark\k5sprt64.dll 1.6-kfw-3.2.2 Massachusetts Institute of Technology. Kerberos v5 support - internal support code for MIT Kerberos v5 /GSS distribution 131795780722106261 0xc00000 45056 C:\Program Files\Wireshark\comerr64.dll 1.6-kfw-3.2.2 Massachusetts Institute of Technology. COM_ERR - Common Error Handler for MIT Kerberos v5 / GSS distribution 131795780719731475 0x1c000000 1089536 C:\Program Files\Wireshark\krb5_64.dll 1.6-kfw-3.2.2 Massachusetts Institute of Technology. Kerberos v5 - MIT GSS / Kerberos v5 distribution 131795780773060331 0x5af30000 348160 C:\Program Files\Wireshark\Qt5Svg.dll 5.9.5.0 The Qt Company Ltd. C++ Application Development Framework 131795780721210805 0x5af90000 1286144 C:\Program Files\Wireshark\libxml2-2.dll 131795780696840198 0x5b0d0000 5865472 C:\Program Files\Wireshark\Qt5Core.dll 5.9.5.0 The Qt Company Ltd. C++ Application Development Framework 131795780696801039 0x5b670000 5619712 C:\Program Files\Wireshark\Qt5Widgets.dll 5.9.5.0 The Qt Company Ltd. C++ Application Development Framework 131795780721068755 0x5bcf0000 733184 C:\Program Files\Wireshark\libsmi-2.dll 131795780720701584 0x5bdb0000 204800 C:\Program Files\Wireshark\liblz4.dll 131795780720048995 0x5bdf0000 110592 C:\Program Files\Wireshark\libcares-2.dll 131795780701085625 0x5be10000 122880 C:\Program Files\Wireshark\libbcg729.dll 131795780700086118 0x5be30000 1261568 C:\Program Files\Wireshark\Qt5Network.dll 5.9.5.0 The Qt Company Ltd. C++ Application Development Framework 131795780701499544 0x61cc0000 151552 C:\Program Files\Wireshark\libintl-8.dll 0.18.1 Free Software Foundation LGPLed libintl for Windows NT/2000/XP/Vista/7 and Windows 95/98/ME 131795780704834900 0x646c0000 155648 C:\Program Files\Wireshark\libgpg-error6-0.dll 131795780703191110 0x64840000 1220608 C:\Program Files\Wireshark\libgnutls-30.dll 131795780720700188 0x64a00000 253952 C:\Program Files\Wireshark\lua52.dll 131795780702785552 0x653c0000 1089536 C:\Program Files\Wireshark\libgcrypt-20.dll 131795780706408972 0x65f00000 114688 C:\Program Files\Wireshark\libtasn1-6.dll 131795780705520711 0x66f00000 233472 C:\Program Files\Wireshark\libhogweed-4-2.dll 131795780696518462 0x685c0000 1265664 C:\Program Files\Wireshark\libglib-2.0-0.dll 2.42.0.0 The GLib developer community GLib 131795780706610973 0x68ec0000 389120 C:\Program Files\Wireshark\libp11-kit-0.dll 131795780720967901 0x69340000 815104 C:\Program Files\Wireshark\libsnappy-1.dll 131795780705423287 0x69c80000 253952 C:\Program Files\Wireshark\libnettle-6-2.dll 131795780700701891 0x6a680000 122880 C:\Program Files\Wireshark\libsbc-1.dll 131795780705248323 0x6acc0000 483328 C:\Program Files\Wireshark\libgmp-10.dll 131795780707311684 0x6b740000 73728 C:\Program Files\Wireshark\libffi-6.dll 131795780700957949 0x6d7c0000 495616 C:\Program Files\Wireshark\libspandsp-2.dll 131795780720746780 0x6dc80000 167936 C:\Program Files\Wireshark\libnghttp2-14.dll 131795780698864675 0x6dd00000 69632 C:\Program Files\Wireshark\libgmodule-2.0-0.dll 2.42.0.0 The GLib developer community GModule 131795780759720376 0x180000000 413696 C:\Windows\System32\wpcap.dll 4.1.0.2980 Riverbed Technology, Inc. wpcap.dll Dynamic Link Library - based on libpcap 1.0rel0b branch (20091008) 131795780760417804 0x190ac770000 126976 C:\Windows\System32\Packet.dll 4.1.0.2980 Riverbed Technology, Inc. packet.dll (Vista) Dynamic Link Library 131795780695991379 0x7ff7f1130000 8298496 C:\Program Files\Wireshark\Wireshark.exe 2.6.2 The Wireshark developer community, http://www.wireshark.org/ Wireshark 131795780718751145 0x7ffaa6f50000 64282624 C:\Program Files\Wireshark\libwireshark.dll 2.6.2 The Wireshark developer community, http://www.wireshark.org/ Wireshark dissector library 131795780697272337 0x7ffaaaca0000 6094848 C:\Program Files\Wireshark\Qt5Gui.dll 5.9.5.0 The Qt Company Ltd. C++ Application Development Framework 131795780896758694 0x7ffab1e90000 593920 C:\Program Files\Wireshark\plugins\2.6\epan\wimax.dll 1.2.0.0 The Wireshark developer community, http://www.wireshark.org/ wimax dissector 131795780766458881 0x7ffab1f30000 614400 C:\Windows\System32\riched20.dll 5.31.23.1231 Microsoft Corporation Rich Text Edit Control, v3.1 131795780699399720 0x7ffab2280000 1916928 C:\Program Files\Wireshark\WinSparkle.dll 0.5.7 winsparkle.org WinSparkle updater 131795780771263589 0x7ffab5b40000 2527232 C:\Windows\System32\DWrite.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Службы Microsoft DirectX Typography 131795780765326722 0x7ffab9010000 1388544 C:\Program Files\Wireshark\platforms\qwindows.dll 5.9.5.0 The Qt Company Ltd. C++ Application Development Framework 131795780896746168 0x7ffab9b10000 135168 C:\Program Files\Wireshark\plugins\2.6\epan\unistim.dll 0.0.2.0 The Wireshark developer community, http://www.wireshark.org/ unistim dissector 131795780896708383 0x7ffabaef0000 462848 C:\Program Files\Wireshark\plugins\2.6\epan\profinet.dll 0.2.4.0 The Wireshark developer community, http://www.wireshark.org/ profinet dissector 131795780773615377 0x7ffabb070000 512000 C:\Program Files\Wireshark\imageformats\qwebp.dll 5.9.5.0 The Qt Company Ltd. C++ Application Development Framework 131795780702318544 0x7ffabb0f0000 696320 C:\Windows\System32\msvcp140.dll 14.12.25810.0 built by: VCTOOLSREL Microsoft Corporation Microsoft® C Runtime Library 131795780773096445 0x7ffabb250000 393216 C:\Program Files\Wireshark\imageformats\qtiff.dll 5.9.5.0 The Qt Company Ltd. C++ Application Development Framework 131795780896696149 0x7ffabc110000 237568 C:\Program Files\Wireshark\plugins\2.6\epan\opcua.dll 1.0.0.0 The Wireshark developer community, http://www.wireshark.org/ opcua dissector 131795780696290907 0x7ffabc150000 729088 C:\Program Files\Wireshark\Qt5Multimedia.dll 5.9.5.0 The Qt Company Ltd. C++ Application Development Framework 131795780699299849 0x7ffabcbb0000 704512 C:\Program Files\Wireshark\libwiretap.dll 2.6.2 The Wireshark developer community, http://www.wireshark.org/ Wireshark capture file library 131795780702235327 0x7ffabcf30000 110592 C:\Windows\System32\mpr.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека маршрутизации для нескольких служб доступа 131795780699512168 0x7ffabd180000 548864 C:\Windows\System32\winspool.drv 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Драйвер диспетчера очереди Windows 131795780773039075 0x7ffabe940000 253952 C:\Program Files\Wireshark\imageformats\qjpeg.dll 5.9.5.0 The Qt Company Ltd. C++ Application Development Framework 131795780896684027 0x7ffabeb80000 163840 C:\Program Files\Wireshark\plugins\2.6\epan\mate.dll 1.0.1.0 The Wireshark developer community, http://www.wireshark.org/ mate dissector 131795780767100288 0x7ffabebb0000 233472 C:\Windows\System32\msls31.dll 3.10.349.0 Microsoft Corporation Microsoft Line Services library file 131795780967804060 0x7ffabf1d0000 192512 C:\Windows\System32\cryptnet.dll 10.0.14393.2035 (rs1_release_inmarket.180110-1910) Microsoft Corporation Crypto Network Related API 131795780703722010 0x7ffabf5d0000 2924544 C:\Windows\System32\wininet.dll 11.00.14393.447 (rs1_release_inmarket.161102-0100) Microsoft Corporation Расширения Интернета для Win32 131795780896660120 0x7ffabf990000 135168 C:\Program Files\Wireshark\plugins\2.6\epan\gryphon.dll 0.0.4.0 The Wireshark developer community, http://www.wireshark.org/ gryphon dissector 131795781117544658 0x7ffabfd60000 90112 C:\Windows\System32\NapiNSP.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик оболочки совместимости для имен электронной почты 131795781117680972 0x7ffabfef0000 106496 C:\Windows\System32\pnrpnsp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик пространства имен PNRP 131795780896781202 0x7ffabff40000 90112 C:\Program Files\Wireshark\plugins\2.6\epan\wimaxmacphy.dll 0.0.1.0 The Wireshark developer community, http://www.wireshark.org/ wimaxmacphy dissector 131795780975772674 0x7ffabff60000 135168 C:\Windows\System32\ncryptsslp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft SChannel Provider 131795781117813782 0x7ffac0ab0000 57344 C:\Windows\System32\winrnr.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation LDAP RnR Provider DLL 131795780967709675 0x7ffac0ad0000 86016 C:\Windows\System32\mskeyprotect.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик защиты ключей (Майкрософт) 131795780896602379 0x7ffac0b10000 180224 C:\Program Files\Wireshark\plugins\2.6\epan\ethercat.dll 0.1.0.0 The Wireshark developer community, http://www.wireshark.org/ ethercat dissector 131795780696305369 0x7ffac12f0000 585728 C:\Program Files\Wireshark\Qt5WinExtras.dll 5.9.5.0 The Qt Company Ltd. C++ Application Development Framework 131795780696268510 0x7ffac1380000 335872 C:\Program Files\Wireshark\Qt5PrintSupport.dll 5.9.5.0 The Qt Company Ltd. C++ Application Development Framework 131795780896769846 0x7ffac1640000 81920 C:\Program Files\Wireshark\plugins\2.6\epan\wimaxasncp.dll 0.0.1.0 The Wireshark developer community, http://www.wireshark.org/ wimaxasncp dissector 131795780703633136 0x7ffac1c90000 155648 C:\Program Files\Wireshark\zlib1.dll 1.2.11 zlib data compression library 131795780968289847 0x7ffac1d60000 589824 C:\Windows\System32\webio.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API протоколов передачи по Веб 131795780896672499 0x7ffac21f0000 73728 C:\Program Files\Wireshark\plugins\2.6\epan\irda.dll 0.0.6.0 The Wireshark developer community, http://www.wireshark.org/ irda dissector 131795780943468609 0x7ffac2950000 32768 C:\Program Files\Wireshark\plugins\2.6\codecs\l16mono.dll 0.1.0.0 The Wireshark developer community, http://www.wireshark.org/ l16mono dissector 131795780696778265 0x7ffac2b80000 40960 C:\Windows\System32\version.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Version Checking and File Installation Libraries 131795780698025500 0x7ffac32b0000 155648 C:\Program Files\Wireshark\libwsutil.dll 2.6.2 The Wireshark developer community, http://www.wireshark.org/ Wireshark utility library 131795780964290332 0x7ffac34e0000 1843200 C:\Windows\System32\urlmon.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширения OLE32 для Win32 131795780896734845 0x7ffac3730000 49152 C:\Program Files\Wireshark\plugins\2.6\epan\transum.dll 2.0.4.0 The Wireshark developer community, http://www.wireshark.org/ transum dissector 131795780962958391 0x7ffac3cb0000 2772992 C:\Windows\System32\iertutil.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служебная программа времени выполнения для Internet Explorer 131795780891504201 0x7ffac4000000 274432 C:\Windows\System32\policymanager.dll 10.0.14393.2035 (rs1_release_inmarket.180110-1910) Microsoft Corporation Policy Manager DLL 131795780896719593 0x7ffac4b60000 36864 C:\Program Files\Wireshark\plugins\2.6\epan\stats_tree.dll 0.0.1.0 The Wireshark developer community, http://www.wireshark.org/ stats_tree dissector 131795780893701095 0x7ffac4c50000 36864 C:\Program Files\Wireshark\plugins\2.6\wiretap\usbdump.dll 0.0.1.0 The Wireshark developer community, http://www.wireshark.org/ usbdump dissector 131795780891269455 0x7ffac5630000 339968 C:\Windows\System32\thumbcache.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Кэш эскизов Майкрософт 131795780965552062 0x7ffac6610000 40960 C:\Windows\System32\rasadhlp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Remote Access AutoDial Helper 131795780963571749 0x7ffac66a0000 86016 C:\Windows\System32\OnDemandConnRouteHelper.dll 10.0.14393.351 (rs1_release_inmarket.161014-1755) Microsoft Corporation On Demand Connctiond Route Helper 131795780963646684 0x7ffac69c0000 839680 C:\Windows\System32\winhttp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Службы HTTP Windows 131795780773109195 0x7ffac6aa0000 49152 C:\Program Files\Wireshark\imageformats\qwbmp.dll 5.9.5.0 The Qt Company Ltd. C++ Application Development Framework 131795780773083338 0x7ffac6ab0000 49152 C:\Program Files\Wireshark\imageformats\qtga.dll 5.9.5.0 The Qt Company Ltd. C++ Application Development Framework 131795780700311672 0x7ffac6c40000 2596864 C:\Windows\WinSxS\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.14393.953_none_42151e83c686086b\comctl32.dll 6.10 (rs1_release_inmarket.170303-1614) Microsoft Corporation Библиотека элементов управления взаимодействия с пользователем 131795780700270884 0x7ffac76e0000 90112 C:\Windows\System32\vcruntime140.dll 14.12.25810.0 built by: VCTOOLSREL Microsoft Corporation Microsoft® C Runtime Library 131795780773051219 0x7ffac7710000 49152 C:\Program Files\Wireshark\imageformats\qsvg.dll 5.9.5.0 The Qt Company Ltd. C++ Application Development Framework 131795780773027062 0x7ffac7c70000 53248 C:\Program Files\Wireshark\imageformats\qico.dll 5.9.5.0 The Qt Company Ltd. C++ Application Development Framework 131795780773014999 0x7ffac7cc0000 61440 C:\Program Files\Wireshark\imageformats\qicns.dll 5.9.5.0 The Qt Company Ltd. C++ Application Development Framework 131795780773002354 0x7ffac7e80000 53248 C:\Program Files\Wireshark\imageformats\qgif.dll 5.9.5.0 The Qt Company Ltd. C++ Application Development Framework 131795780968266724 0x7ffac83d0000 106496 C:\Windows\System32\dhcpcsvc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служба DHCP-клиента 131795780968255503 0x7ffac83f0000 90112 C:\Windows\System32\dhcpcsvc6.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиент DHCPv6 131795780966275544 0x7ffac8420000 434176 C:\Windows\System32\FWPUCLNT.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API пользовательского режима FWP/IPsec 131795780892525330 0x7ffac84f0000 299008 C:\Windows\System32\DataExchange.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation Data exchange 131795780963686201 0x7ffac8810000 45056 C:\Windows\System32\winnsi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Network Store Information RPC interface 131795780892534590 0x7ffac88a0000 2842624 C:\Windows\System32\d3d11.dll 10.0.14393.953 (rs1_release_inmarket.170303-1614) Microsoft Corporation Direct3D 11 Runtime 131795781117718740 0x7ffac9790000 98304 C:\Windows\System32\nlaapi.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Network Location Awareness 2 131795780698877286 0x7ffac97e0000 36864 C:\Windows\System32\wsock32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Socket 32-Bit DLL 131795780891204535 0x7ffac9f50000 1736704 C:\Windows\System32\WindowsCodecs.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Microsoft Windows Codecs Library 131795780696645603 0x7ffaca540000 53248 C:\Program Files\Wireshark\libwscodecs.dll 2.6.2 The Wireshark developer community, http://www.wireshark.org/ Wireshark codecs library 131795780700298298 0x7ffaca5e0000 155648 C:\Windows\System32\dwmapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Интерфейс API диспетчера окон рабочего стола (Майкрософт) 131795780892543743 0x7ffaca770000 1380352 C:\Windows\System32\dcomp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft DirectComposition Library 131795780766486586 0x7ffacab20000 102400 C:\Windows\System32\usp10.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Uniscribe Unicode script processor 131795780704258643 0x7ffacab40000 176128 C:\Windows\System32\winmmbase.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base Multimedia Extension API DLL 131795780702045466 0x7ffacaba0000 143360 C:\Windows\System32\winmm.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation MCI API DLL 131795780946467813 0x7ffacadf0000 499712 C:\Windows\System32\apphelp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиентская библиотека совместимости приложений 131795780696789076 0x7ffacaf00000 610304 C:\Windows\System32\uxtheme.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека тем UxTheme (Microsoft) 131795780891516231 0x7ffacb140000 593920 C:\Windows\System32\msvcp110_win.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Microsoft® STL110 C++ Runtime Library 131795780892568770 0x7ffacb1e0000 1163264 C:\Windows\System32\twinapi.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation twinapi.appcore 131795780892552823 0x7ffacb780000 651264 C:\Windows\System32\dxgi.dll 10.0.14393.953 (rs1_release_inmarket.170303-1614) Microsoft Corporation DirectX Graphics Infrastructure 131795780966945740 0x7ffacbaf0000 495616 C:\Windows\System32\schannel.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик безопасности TLS/SSL 131795780735395573 0x7ffacbbb0000 208896 C:\Windows\System32\rsaenh.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Enhanced Cryptographic Provider 131795780967734879 0x7ffacbbf0000 40960 C:\Windows\System32\dpapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Data Protection API 131795780699490686 0x7ffacbd30000 229376 C:\Windows\System32\IPHLPAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API вспомогательного приложения IP 131795780703368899 0x7ffacbd70000 659456 C:\Windows\System32\dnsapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Динамическая библиотека API DNS-клиента 131795780963669913 0x7ffacbfb0000 376832 C:\Windows\System32\mswsock.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширение поставщика службы API Microsoft Windows Sockets 2.0 131795780735383654 0x7ffacc150000 94208 C:\Windows\System32\cryptsp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Cryptographic Service Provider API 131795780725077080 0x7ffacc170000 45056 C:\Windows\System32\cryptbase.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base cryptographic API DLL 131795780735352973 0x7ffacc1f0000 241664 C:\Windows\System32\ntasn1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft ASN.1 API 131795780735341669 0x7ffacc230000 155648 C:\Windows\System32\ncrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Маршрутизатор Windows NCrypt 131795780963187802 0x7ffacc350000 180224 C:\Windows\System32\sspicli.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Security Support Provider Interface 131795780703358385 0x7ffacc620000 176128 C:\Windows\System32\bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795780696324267 0x7ffacc6e0000 61440 C:\Windows\System32\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795780696320774 0x7ffacc6f0000 311296 C:\Windows\System32\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795780696326027 0x7ffacc740000 81920 C:\Windows\System32\profapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Profile Basic API 131795780700094061 0x7ffacc760000 65536 C:\Windows\System32\msasn1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ASN.1 Runtime APIs 131795780696281753 0x7ffacc8f0000 1003520 C:\Windows\System32\ucrtbase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795780696314418 0x7ffacc9f0000 434176 C:\Windows\System32\bcryptprimitives.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Cryptographic Primitives Library 131795780696011047 0x7ffacca60000 122880 C:\Windows\System32\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795780967736295 0x7ffacca80000 348160 C:\Windows\System32\wintrust.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation Microsoft Trust Verification APIs 131795780696325096 0x7ffaccae0000 692224 C:\Windows\System32\SHCore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795780696319762 0x7ffaccb90000 7180288 C:\Windows\System32\windows.storage.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API хранения Microsoft WinRT 131795780696000095 0x7ffacd270000 2215936 C:\Windows\System32\KernelBase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795780700093105 0x7ffacd490000 1871872 C:\Windows\System32\crypt32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API32 криптографии 131795780700405929 0x7ffacd710000 638976 C:\Windows\System32\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795780696318427 0x7ffacd7b0000 270336 C:\Windows\System32\cfgmgr32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Configuration Manager DLL 131795780719380090 0x7ffacd800000 32768 C:\Windows\System32\psapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Process Status Helper 131795780696316518 0x7ffacd810000 22056960 C:\Windows\System32\shell32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Общая библиотека оболочки Windows 131795780700405056 0x7ffaced20000 782336 C:\Windows\System32\oleaut32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795780696313332 0x7ffacee50000 1183744 C:\Windows\System32\rpcrt4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795780703813608 0x7ffacef80000 32768 C:\Windows\System32\nsi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation NSI User-mode interface DLL 131795780696317482 0x7ffacef90000 647168 C:\Windows\System32\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795780891250440 0x7ffacf030000 651264 C:\Windows\System32\clbcatq.dll 2001.12.10941.16384 (rs1_release.160715-1616) Microsoft Corporation COM+ Configuration Catalog 131795780695999112 0x7ffacf0d0000 704512 C:\Windows\System32\kernel32.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795780892432004 0x7ffacf1e0000 1417216 C:\Windows\System32\msctf.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Серверная библиотека MSCTF 131795780696011842 0x7ffacf770000 212992 C:\Windows\System32\gdi32.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation GDI Client DLL 131795780696829366 0x7ffacf820000 434176 C:\Windows\System32\ws2_32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation 32-разрядная библиотека Windows Socket 2.0 131795780722304611 0x7ffacf890000 188416 C:\Windows\System32\imm32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Multi-User Windows IMM32 API Client DLL 131795780696010125 0x7ffacf8c0000 1462272 C:\Windows\System32\user32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795780696013618 0x7ffacfa30000 1024000 C:\Windows\System32\comdlg32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека общих диалоговых окон 131795780696312465 0x7ffacfb30000 2916352 C:\Windows\System32\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795780696321680 0x7ffacfe20000 663552 C:\Windows\System32\advapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795780696311589 0x7ffad0070000 1277952 C:\Windows\System32\ole32.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft OLE для Windows 131795780696323259 0x7ffad01b0000 335872 C:\Windows\System32\shlwapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека небольших программ оболочки 131795780696315318 0x7ffad0210000 364544 C:\Windows\System32\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795780695991736 0x7ffad0270000 1908736 C:\Windows\System32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 154 10368 12892 144 00000000:0031f1da 131795781110701520 0 0 1 Обязательная метка\Средний обязательный уровень WIN-0UOTFKKVN1S\User dumpcap.exe C:\Program Files\Wireshark\dumpcap.exe "C:\Program Files\Wireshark\dumpcap.exe" -n -i \Device\NPF_{8742EB38-E176-4D94-AB83-DB4440CD90E6} -y EN10MB -Z 12892 The Wireshark developer community 2.6.2 Dumpcap 131795781112729961 0xe30000 90112 C:\Program Files\Wireshark\libwinpthread-1.dll 1, 0, 0, 0 MingW-W64 Project. All rights reserved. POSIX WinThreads for Windows 131795781112668516 0x61cc0000 151552 C:\Program Files\Wireshark\libintl-8.dll 0.18.1 Free Software Foundation LGPLed libintl for Windows NT/2000/XP/Vista/7 and Windows 95/98/ME 131795781112689838 0x646c0000 155648 C:\Program Files\Wireshark\libgpg-error6-0.dll 131795781112636826 0x64840000 1220608 C:\Program Files\Wireshark\libgnutls-30.dll 131795781112629190 0x653c0000 1089536 C:\Program Files\Wireshark\libgcrypt-20.dll 131795781112737406 0x65f00000 114688 C:\Program Files\Wireshark\libtasn1-6.dll 131795781112705672 0x66f00000 233472 C:\Program Files\Wireshark\libhogweed-4-2.dll 131795781112573973 0x685c0000 1265664 C:\Program Files\Wireshark\libglib-2.0-0.dll 2.42.0.0 The GLib developer community GLib 131795781112722622 0x68ec0000 389120 C:\Program Files\Wireshark\libp11-kit-0.dll 131795781112715396 0x69c80000 253952 C:\Program Files\Wireshark\libnettle-6-2.dll 131795781112698255 0x6acc0000 483328 C:\Program Files\Wireshark\libgmp-10.dll 131795781112775160 0x6b740000 73728 C:\Program Files\Wireshark\libffi-6.dll 131795781112582576 0x6dd00000 69632 C:\Program Files\Wireshark\libgmodule-2.0-0.dll 2.42.0.0 The GLib developer community GModule 131795781112962306 0x180000000 413696 C:\Windows\System32\wpcap.dll 4.1.0.2980 Riverbed Technology, Inc. wpcap.dll Dynamic Link Library - based on libpcap 1.0rel0b branch (20091008) 131795781112975613 0x2203d070000 126976 C:\Windows\System32\Packet.dll 4.1.0.2980 Riverbed Technology, Inc. packet.dll (Vista) Dynamic Link Library 131795781110777700 0x7ff79b530000 438272 C:\Program Files\Wireshark\dumpcap.exe 2.6.2 The Wireshark developer community Dumpcap 131795781112745027 0x7ffac1c90000 155648 C:\Program Files\Wireshark\zlib1.dll 1.2.11 zlib data compression library 131795781112991873 0x7ffac2b80000 40960 C:\Windows\System32\version.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Version Checking and File Installation Libraries 131795781112551689 0x7ffac32b0000 155648 C:\Program Files\Wireshark\libwsutil.dll 2.6.2 The Wireshark developer community, http://www.wireshark.org/ Wireshark utility library 131795781112616429 0x7ffac76e0000 90112 C:\Windows\System32\vcruntime140.dll 14.12.25810.0 built by: VCTOOLSREL Microsoft Corporation Microsoft® C Runtime Library 131795781113081556 0x7ffac83d0000 106496 C:\Windows\System32\dhcpcsvc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служба DHCP-клиента 131795781113068402 0x7ffac83f0000 90112 C:\Windows\System32\dhcpcsvc6.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиент DHCPv6 131795781112593287 0x7ffac97e0000 36864 C:\Windows\System32\wsock32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Socket 32-Bit DLL 131795781112764136 0x7ffacab40000 176128 C:\Windows\System32\winmmbase.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base Multimedia Extension API DLL 131795781112680590 0x7ffacaba0000 143360 C:\Windows\System32\winmm.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation MCI API DLL 131795781112901553 0x7ffacbbb0000 208896 C:\Windows\System32\rsaenh.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Enhanced Cryptographic Provider 131795781112603842 0x7ffacbd30000 229376 C:\Windows\System32\IPHLPAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API вспомогательного приложения IP 131795781112889933 0x7ffacc150000 94208 C:\Windows\System32\cryptsp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Cryptographic Service Provider API 131795781112922216 0x7ffacc170000 45056 C:\Windows\System32\cryptbase.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base cryptographic API DLL 131795781112873689 0x7ffacc1f0000 241664 C:\Windows\System32\ntasn1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft ASN.1 API 131795781112851456 0x7ffacc230000 155648 C:\Windows\System32\ncrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Маршрутизатор Windows NCrypt 131795781112862535 0x7ffacc620000 176128 C:\Windows\System32\bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795781112564185 0x7ffacc6e0000 61440 C:\Windows\System32\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795781112558680 0x7ffacc6f0000 311296 C:\Windows\System32\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795781112565891 0x7ffacc740000 81920 C:\Windows\System32\profapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Profile Basic API 131795781112638400 0x7ffacc760000 65536 C:\Windows\System32\msasn1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ASN.1 Runtime APIs 131795781112561378 0x7ffacc770000 1572864 C:\Windows\System32\gdi32full.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation GDI Client DLL 131795781112543433 0x7ffacc8f0000 1003520 C:\Windows\System32\ucrtbase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795781112557787 0x7ffacc9f0000 434176 C:\Windows\System32\bcryptprimitives.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Cryptographic Primitives Library 131795781112563121 0x7ffacca60000 122880 C:\Windows\System32\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795781112564994 0x7ffaccae0000 692224 C:\Windows\System32\SHCore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795781112555945 0x7ffaccb90000 7180288 C:\Windows\System32\windows.storage.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API хранения Microsoft WinRT 131795781111306780 0x7ffacd270000 2215936 C:\Windows\System32\KernelBase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795781112637496 0x7ffacd490000 1871872 C:\Windows\System32\crypt32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API32 криптографии 131795781112554892 0x7ffacd7b0000 270336 C:\Windows\System32\cfgmgr32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Configuration Manager DLL 131795781112553795 0x7ffacd810000 22056960 C:\Windows\System32\shell32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Общая библиотека оболочки Windows 131795781112541505 0x7ffacee50000 1183744 C:\Windows\System32\rpcrt4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795781113056743 0x7ffacef80000 32768 C:\Windows\System32\nsi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation NSI User-mode interface DLL 131795781112539956 0x7ffacef90000 647168 C:\Windows\System32\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795781111305815 0x7ffacf0d0000 704512 C:\Windows\System32\kernel32.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795781112560555 0x7ffacf770000 212992 C:\Windows\System32\gdi32.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation GDI Client DLL 131795781112552568 0x7ffacf820000 434176 C:\Windows\System32\ws2_32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation 32-разрядная библиотека Windows Socket 2.0 131795781112797169 0x7ffacf890000 188416 C:\Windows\System32\imm32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Multi-User Windows IMM32 API Client DLL 131795781112562317 0x7ffacf8c0000 1462272 C:\Windows\System32\user32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795781112556862 0x7ffacfb30000 2916352 C:\Windows\System32\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795781112538759 0x7ffacfe20000 663552 C:\Windows\System32\advapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795781112574716 0x7ffad0070000 1277952 C:\Windows\System32\ole32.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft OLE для Windows 131795781112559630 0x7ffad01b0000 335872 C:\Windows\System32\shlwapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека небольших программ оболочки 131795781112540782 0x7ffad0210000 364544 C:\Windows\System32\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795781110778043 0x7ffad0270000 1908736 C:\Windows\System32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 155 10656 10368 154 00000000:0031f1da 131795781111864203 0 0 1 Обязательная метка\Средний обязательный уровень WIN-0UOTFKKVN1S\User Conhost.exe C:\Windows\System32\Conhost.exe \??\C:\Windows\system32\conhost.exe 0xffffffff -ForceV1 Microsoft Corporation 10.0.14393.0 (rs1_release.160715-1616) Console Window Host 131795781111913743 0x7ff768b40000 69632 C:\Windows\System32\conhost.exe 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Console Window Host 131795781111943590 0x7ffac16b0000 368640 C:\Windows\System32\ConhostV2.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Хост окна консоли 131795781112487631 0x7ffac6c40000 2596864 C:\Windows\WinSxS\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.14393.953_none_42151e83c686086b\comctl32.dll 6.10 (rs1_release_inmarket.170303-1614) Microsoft Corporation Библиотека элементов управления взаимодействия с пользователем 131795781111973094 0x7ffaca340000 1593344 C:\Windows\System32\propsys.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Система страниц свойств (Майкрософт) 131795781112447250 0x7ffaca5e0000 155648 C:\Windows\System32\dwmapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Интерфейс API диспетчера окон рабочего стола (Майкрософт) 131795781112288506 0x7ffacaf00000 610304 C:\Windows\System32\uxtheme.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека тем UxTheme (Microsoft) 131795781112268292 0x7ffacc6e0000 61440 C:\Windows\System32\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795781112265698 0x7ffacc6f0000 311296 C:\Windows\System32\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795781112269042 0x7ffacc740000 81920 C:\Windows\System32\profapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Profile Basic API 131795781111955891 0x7ffacc770000 1572864 C:\Windows\System32\gdi32full.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation GDI Client DLL 131795781111952093 0x7ffacc8f0000 1003520 C:\Windows\System32\ucrtbase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795781111953761 0x7ffacc9f0000 434176 C:\Windows\System32\bcryptprimitives.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Cryptographic Primitives Library 131795781111957462 0x7ffacca60000 122880 C:\Windows\System32\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795781111974737 0x7ffaccae0000 692224 C:\Windows\System32\SHCore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795781112264787 0x7ffaccb90000 7180288 C:\Windows\System32\windows.storage.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API хранения Microsoft WinRT 131795781111919763 0x7ffacd270000 2215936 C:\Windows\System32\KernelBase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795781111959779 0x7ffacd710000 638976 C:\Windows\System32\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795781112263740 0x7ffacd7b0000 270336 C:\Windows\System32\cfgmgr32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Configuration Manager DLL 131795781112262565 0x7ffacd810000 22056960 C:\Windows\System32\shell32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Общая библиотека оболочки Windows 131795781111959111 0x7ffaced20000 782336 C:\Windows\System32\oleaut32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795781111952833 0x7ffacee50000 1183744 C:\Windows\System32\rpcrt4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795781111927637 0x7ffacef90000 647168 C:\Windows\System32\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795781111918688 0x7ffacf0d0000 704512 C:\Windows\System32\kernel32.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795781112429009 0x7ffacf1e0000 1417216 C:\Windows\System32\msctf.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Серверная библиотека MSCTF 131795781111954501 0x7ffacf770000 212992 C:\Windows\System32\gdi32.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation GDI Client DLL 131795781111958338 0x7ffacf890000 188416 C:\Windows\System32\imm32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Multi-User Windows IMM32 API Client DLL 131795781111956778 0x7ffacf8c0000 1462272 C:\Windows\System32\user32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795781111951234 0x7ffacfb30000 2916352 C:\Windows\System32\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795781112266518 0x7ffacfe20000 663552 C:\Windows\System32\advapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795781112267424 0x7ffad01b0000 335872 C:\Windows\System32\shlwapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека небольших программ оболочки 131795781111973936 0x7ffad0210000 364544 C:\Windows\System32\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795781111913976 0x7ffad0270000 1908736 C:\Windows\System32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 162 4760 664 6 00000000:0031f1da 131795786042098193 0 0 1 Обязательная метка\Низкий обязательный уровень WIN-0UOTFKKVN1S\User MicrosoftEdge.exe C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdge.exe "C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdge.exe" -ServerName:MicrosoftEdge.AppXdnhjhccw3zf0j06tkg3jtqr00qdm0khc.mca Microsoft Corporation 11.00.14393.2189 (rs1_release.180329-1711) Microsoft Edge 131795786042630177 0x7ff782940000 7663616 C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdge.exe 11.00.14393.2189 (rs1_release.180329-1711) Microsoft Corporation Microsoft Edge 131795786057154585 0x7ffaad380000 5730304 C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\eView.dll 11.00.14393.2189 (rs1_release.180329-1711) Microsoft Corporation Microsoft Edge View 131795786054805787 0x7ffaad900000 4730880 C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\eModel.dll 11.00.14393.2189 (rs1_release.180329-1711) Microsoft Corporation Microsoft Edge Model 131795786066907553 0x7ffab0430000 1662976 C:\Windows\System32\ieapfltr.dll 11.00.14393.2189 Microsoft Corporation Microsoft SmartScreen Filter 131795786128228596 0x7ffab1df0000 602112 C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\eData.dll 11.00.14393.2189 (rs1_release.180329-1711) Microsoft Corporation Microsoft Edge Data Store API Module 131795786065479748 0x7ffab5520000 3231744 C:\Windows\System32\msftedit.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Элемент управления "Поле ввода форматированного текста", версия 8.5 131795786063895095 0x7ffab5b40000 2527232 C:\Windows\System32\DWrite.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Службы Microsoft DirectX Typography 131795786054266392 0x7ffab6710000 17231872 C:\Windows\System32\Windows.UI.Xaml.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows.UI.Xaml dll 131795786230757616 0x7ffab8fd0000 229376 C:\Windows\System32\MicrosoftAccountTokenProvider.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft® Account Token Provider 131795786063975264 0x7ffabaab0000 94208 C:\Windows\System32\profext.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation profext 131795786144818989 0x7ffabaf70000 270336 C:\Windows\System32\edputil.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служебная программа EDP 131795786059649322 0x7ffabb3c0000 450560 C:\Windows\System32\TextInputFramework.dll 10.0.14393.2189 (rs1_release.180329-1711) Microsoft Corporation "TextInputFramework.DYNLINK" 131795786067415829 0x7ffabb490000 512000 C:\Windows\System32\twinapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation twinapi 131795786288759665 0x7ffabbb80000 61440 C:\Windows\System32\dsclient.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Data Sharing Service Client DLL 131795786288473868 0x7ffabbb90000 581632 C:\Windows\System32\Windows.System.Launcher.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows.System.Launcher 131795786288676720 0x7ffabbd00000 36864 C:\Windows\System32\WpPortingLibrary.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation <d> DLL 131795786065177710 0x7ffabbd10000 65536 C:\Windows\System32\tokenbinding.dll 10.0.14393.1593 (rs1_release.170731-1934) Microsoft Corporation Token Binding Protocol 131795786066322832 0x7ffabc510000 90112 C:\Windows\System32\execmodelproxy.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ExecModelProxy 131795786072876141 0x7ffabc920000 270336 C:\Windows\System32\ExecModelClient.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation ExecModelClient 131795786088399099 0x7ffabca50000 819200 C:\Windows\System32\Windows.Security.Authentication.Web.Core.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Token Broker WinRT API 131795786065841979 0x7ffabcef0000 102400 C:\Windows\System32\Windows.Shell.ServiceHostBuilder.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows.Shell.ServiceHostBuilder 131795786055069007 0x7ffabcf30000 110592 C:\Windows\System32\mpr.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека маршрутизации для нескольких служб доступа 131795786147341523 0x7ffabd220000 479232 C:\Windows\System32\Windows.Devices.Enumeration.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows.Devices.Enumeration 131795786063327247 0x7ffabd4a0000 1613824 C:\Windows\System32\Windows.Globalization.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Globalization 131795786125346246 0x7ffabe4d0000 286720 C:\Windows\System32\MSWB7.dll 10.0.14393.1737 (rs1_release_inmarket.170914-1249) Microsoft Corporation MSWB7 DLL 131795786068479711 0x7ffabe6e0000 561152 C:\Windows\System32\directmanipulation.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Direct Manipulation Component 131795786065629245 0x7ffabe9c0000 188416 C:\Windows\System32\globinputhost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Globalization Extension API for Input 131795786100800557 0x7ffabeac0000 335872 C:\Windows\System32\Windows.Storage.ApplicationData.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Application Data API Server 131795786057138366 0x7ffabeb20000 385024 C:\Windows\System32\Windows.ApplicationModel.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows ApplicationModel API Server 131795786088259759 0x7ffabf090000 81920 C:\Windows\System32\Windows.System.Profile.PlatformDiagnosticsAndUsageDataSettings.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Platform Diagnostics and Usage Settings DLL 131795786241271463 0x7ffabf1d0000 192512 C:\Windows\System32\cryptnet.dll 10.0.14393.2035 (rs1_release_inmarket.180110-1910) Microsoft Corporation Crypto Network Related API 131795786064506043 0x7ffabf5d0000 2924544 C:\Windows\System32\wininet.dll 11.00.14393.447 (rs1_release_inmarket.161102-0100) Microsoft Corporation Расширения Интернета для Win32 131795786066155936 0x7ffabfce0000 90112 C:\Windows\System32\Windows.Globalization.Fontgroups.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Fonts Mapping API 131795786063962359 0x7ffabfd00000 356352 C:\Windows\System32\Windows.Graphics.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation WinRT Windows Graphics DLL 131795786069984086 0x7ffabfd80000 86016 C:\Windows\System32\threadpoolwinrt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows WinRT Threadpool 131795786241104861 0x7ffabff60000 135168 C:\Windows\System32\ncryptsslp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft SChannel Provider 131795786059637885 0x7ffac00c0000 282624 C:\Windows\System32\Windows.UI.Core.TextInput.dll 10.0.14393.2189 (rs1_release.180329-1711) Microsoft Corporation Windows.UI.Core.TextInput dll 131795786053932620 0x7ffac01e0000 397312 C:\Windows\System32\wincorlib.dll 10.0.14393.576 (rs1_release_inmarket.161208-2252) Microsoft Corporation Microsoft Windows ® WinRT core library 131795786241083669 0x7ffac0ad0000 86016 C:\Windows\System32\mskeyprotect.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик защиты ключей (Майкрософт) 131795786056074983 0x7ffac0bf0000 3559424 C:\Windows\System32\actxprxy.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation ActiveX Interface Marshaling Library 131795786100125856 0x7ffac1470000 704512 C:\Windows\System32\ieproxy.dll 11.00.14393.2007 (rs1_release.171231-1800) Microsoft Corporation IE ActiveX Interface Marshaling Library 131795786075280874 0x7ffac15d0000 172032 C:\Windows\System32\Windows.ApplicationModel.Core.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation Windows Application Model Core API 131795786070406699 0x7ffac1600000 208896 C:\Windows\System32\mdmregistration.dll 10.0.14393.576 (rs1_release_inmarket.161208-2252) Microsoft Corporation MDM Registration DLL 131795786062579941 0x7ffac1940000 172032 C:\Windows\System32\Windows.System.Profile.RetailInfo.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation Windows.System.Profile.RetailInfo Runtime DLL 131795786070419915 0x7ffac1f10000 126976 C:\Windows\System32\dmcmnutils.dll 10.0.14393.1737 (rs1_release_inmarket.170914-1249) Microsoft Corporation dmcmnutils 131795786068039488 0x7ffac20d0000 110592 C:\Windows\System32\rmclient.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Resource Manager Client 131795786089075107 0x7ffac23c0000 331776 C:\Windows\System32\OneCoreCommonProxyStub.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation OneCore Common Proxy Stub 131795786065677921 0x7ffac2990000 385024 C:\Windows\System32\ninput.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Pen and Touch Input Component 131795786065270981 0x7ffac34e0000 1843200 C:\Windows\System32\urlmon.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширения OLE32 для Win32 131795786128841302 0x7ffac3840000 3088384 C:\Windows\System32\esent.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширяемая подсистема хранения данных ESE для Microsoft(R) Windows(R) 131795786054294330 0x7ffac3cb0000 2772992 C:\Windows\System32\iertutil.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служебная программа времени выполнения для Internet Explorer 131795786063368609 0x7ffac4000000 274432 C:\Windows\System32\policymanager.dll 10.0.14393.2035 (rs1_release_inmarket.180110-1910) Microsoft Corporation Policy Manager DLL 131795786202359997 0x7ffac42a0000 659456 C:\Windows\System32\StateRepository.Core.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation StateRepository Core 131795786200068117 0x7ffac46d0000 4161536 C:\Windows\System32\Windows.StateRepository.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Сервер Windows StateRepository API Server 131795786055042484 0x7ffac4b70000 122880 C:\Windows\System32\eShims.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Edge Compatibility Shims 131795786089712128 0x7ffac4b90000 774144 C:\Windows\System32\StoreAgent.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation StoreAgent 131795786059830786 0x7ffac5350000 1765376 C:\Windows\System32\Windows.UI.Immersive.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation WINDOWS.UI.IMMERSIVE 131795786150797625 0x7ffac5500000 438272 C:\Windows\System32\PhotoMetadataHandler.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Photo Metadata Handler 131795786453454285 0x7ffac5ce0000 1744896 C:\Windows\System32\UIAutomationCore.dll 7.2.14393.0 (rs1_release.160715-1616) Microsoft Corporation Основные автоматические компоненты Microsoft UI 131795786067621067 0x7ffac60e0000 221184 C:\Windows\System32\xmllite.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft XmlLite Library 131795786092263039 0x7ffac6610000 40960 C:\Windows\System32\rasadhlp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Remote Access AutoDial Helper 131795786147367807 0x7ffac6620000 192512 C:\Windows\System32\biwinrt.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation Windows Background Broker Infrastructure 131795786065223183 0x7ffac66a0000 86016 C:\Windows\System32\OnDemandConnRouteHelper.dll 10.0.14393.351 (rs1_release_inmarket.161014-1755) Microsoft Corporation On Demand Connctiond Route Helper 131795786147382918 0x7ffac6990000 69632 C:\Windows\System32\deviceassociation.dll 10.0.14393.82 (rs1_release.160805-1735) Microsoft Corporation Device Association Client DLL 131795786065248448 0x7ffac69c0000 839680 C:\Windows\System32\winhttp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Службы HTTP Windows 131795786055777229 0x7ffac6ac0000 835584 C:\Windows\System32\Windows.UI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Runtime UI Foundation DLL 131795786453657664 0x7ffac6bd0000 413696 C:\Windows\System32\oleacc.dll 7.2.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Active Accessibility Core Component 131795786057001398 0x7ffac6f50000 5632000 C:\Windows\System32\d2d1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека Microsoft D2D 131795786057773467 0x7ffac7580000 1077248 C:\Windows\System32\MrmCoreR.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Windows MRM 131795786060164250 0x7ffac7720000 1601536 C:\Windows\System32\OneCoreUAPCommonProxyStub.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation OneCoreUAP Common Proxy Stub 131795786068353332 0x7ffac79c0000 57344 C:\Windows\System32\npmproxy.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Network List Manager Proxy 131795786070260699 0x7ffac79e0000 184320 C:\Windows\System32\netjoin.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL присоединения к домену 131795786066493970 0x7ffac7e30000 40960 C:\Windows\System32\fontgroupsoverride.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation fontgroupsoverride.dll 131795786056922456 0x7ffac7fc0000 2674688 C:\Windows\System32\d3d10warp.dll 10.0.14393.576 (rs1_release_inmarket.161208-2252) Microsoft Corporation Direct3D 10 Rasterizer 131795786092912724 0x7ffac8420000 434176 C:\Windows\System32\FWPUCLNT.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API пользовательского режима FWP/IPsec 131795786060129754 0x7ffac84f0000 299008 C:\Windows\System32\DataExchange.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation Data exchange 131795786065322940 0x7ffac8810000 45056 C:\Windows\System32\winnsi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Network Store Information RPC interface 131795786056749751 0x7ffac88a0000 2842624 C:\Windows\System32\d3d11.dll 10.0.14393.953 (rs1_release_inmarket.170303-1614) Microsoft Corporation Direct3D 11 Runtime 131795786070245572 0x7ffac90b0000 90112 C:\Windows\System32\wkscli.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Workstation Service Client DLL 131795786054670572 0x7ffac92e0000 1269760 C:\Windows\System32\WinTypes.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL основных типов Windows 131795786056291342 0x7ffac9500000 2682880 C:\Windows\System32\CoreUIComponents.dll 131795786068265491 0x7ffac9f10000 221184 C:\Windows\System32\netprofm.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Network List Manager 131795786082912516 0x7ffac9f50000 1736704 C:\Windows\System32\WindowsCodecs.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Microsoft Windows Codecs Library 131795786063291141 0x7ffaca340000 1593344 C:\Windows\System32\propsys.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Система страниц свойств (Майкрософт) 131795786054280400 0x7ffaca570000 421888 C:\Windows\System32\BCP47Langs.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation BCP47 Language Classes 131795786056308035 0x7ffaca5e0000 155648 C:\Windows\System32\dwmapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Интерфейс API диспетчера окон рабочего стола (Майкрософт) 131795786054309397 0x7ffaca640000 770048 C:\Windows\System32\CoreMessaging.dll 10.0.14393.0 Microsoft Corporation Microsoft CoreMessaging Dll 131795786060143604 0x7ffaca770000 1380352 C:\Windows\System32\dcomp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft DirectComposition Library 131795786053885709 0x7ffacadf0000 499712 C:\Windows\System32\apphelp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиентская библиотека совместимости приложений 131795786056099190 0x7ffacaf00000 610304 C:\Windows\System32\uxtheme.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека тем UxTheme (Microsoft) 131795786063385911 0x7ffacb140000 593920 C:\Windows\System32\msvcp110_win.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Microsoft® STL110 C++ Runtime Library 131795786054634364 0x7ffacb1e0000 1163264 C:\Windows\System32\twinapi.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation twinapi.appcore 131795786064476035 0x7ffacb360000 176128 C:\Windows\System32\fwbase.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Firewall Base DLL 131795786056663398 0x7ffacb3d0000 110592 C:\Windows\System32\ResourcePolicyClient.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Resource Policy Client 131795786070433601 0x7ffacb3f0000 163840 C:\Windows\System32\devobj.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Device Information Set DLL 131795786054821679 0x7ffacb420000 204800 C:\Windows\System32\ntmarta.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик Windows NT MARTA 131795786064343854 0x7ffacb460000 548864 C:\Windows\System32\FirewallAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API брандмауэра Windows 131795786741705319 0x7ffacb6f0000 143360 C:\Windows\System32\gpapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиентские функции API групповой политики 131795786056649628 0x7ffacb780000 651264 C:\Windows\System32\dxgi.dll 10.0.14393.953 (rs1_release_inmarket.170303-1614) Microsoft Corporation DirectX Graphics Infrastructure 131795786240387843 0x7ffacbaf0000 495616 C:\Windows\System32\schannel.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик безопасности TLS/SSL 131795786241189729 0x7ffacbbb0000 208896 C:\Windows\System32\rsaenh.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Enhanced Cryptographic Provider 131795786241130378 0x7ffacbbf0000 40960 C:\Windows\System32\dpapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Data Protection API 131795786065234326 0x7ffacbd30000 229376 C:\Windows\System32\IPHLPAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API вспомогательного приложения IP 131795786070099854 0x7ffacbd70000 659456 C:\Windows\System32\dnsapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Динамическая библиотека API DNS-клиента 131795786070392550 0x7ffacbe20000 53248 C:\Windows\System32\netutils.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API Helpers DLL 131795786055055520 0x7ffacbe40000 126976 C:\Windows\System32\userenv.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Userenv 131795786065299260 0x7ffacbfb0000 376832 C:\Windows\System32\mswsock.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширение поставщика службы API Microsoft Windows Sockets 2.0 131795786067045090 0x7ffacc150000 94208 C:\Windows\System32\cryptsp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Cryptographic Service Provider API 131795786061034021 0x7ffacc170000 45056 C:\Windows\System32\cryptbase.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base cryptographic API DLL 131795786070369175 0x7ffacc1b0000 126976 C:\Windows\System32\joinutil.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Join Utility DLL 131795786070463748 0x7ffacc1f0000 241664 C:\Windows\System32\ntasn1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft ASN.1 API 131795786070448934 0x7ffacc230000 155648 C:\Windows\System32\ncrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Маршрутизатор Windows NCrypt 131795786064523489 0x7ffacc350000 180224 C:\Windows\System32\sspicli.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Security Support Provider Interface 131795786054651608 0x7ffacc620000 176128 C:\Windows\System32\bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795786054249334 0x7ffacc6e0000 61440 C:\Windows\System32\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795786054809092 0x7ffacc6f0000 311296 C:\Windows\System32\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795786054683095 0x7ffacc740000 81920 C:\Windows\System32\profapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Profile Basic API 131795786057003667 0x7ffacc760000 65536 C:\Windows\System32\msasn1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ASN.1 Runtime APIs 131795786053916113 0x7ffacc770000 1572864 C:\Windows\System32\gdi32full.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation GDI Client DLL 131795786053913423 0x7ffacc8f0000 1003520 C:\Windows\System32\ucrtbase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795786053914306 0x7ffacc9f0000 434176 C:\Windows\System32\bcryptprimitives.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Cryptographic Primitives Library 131795786053917903 0x7ffacca60000 122880 C:\Windows\System32\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795786241132060 0x7ffacca80000 348160 C:\Windows\System32\wintrust.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation Microsoft Trust Verification APIs 131795786054295713 0x7ffaccae0000 692224 C:\Windows\System32\SHCore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795786054808089 0x7ffaccb90000 7180288 C:\Windows\System32\windows.storage.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API хранения Microsoft WinRT 131795786053867639 0x7ffacd270000 2215936 C:\Windows\System32\KernelBase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795786057002708 0x7ffacd490000 1871872 C:\Windows\System32\crypt32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API32 криптографии 131795786053934160 0x7ffacd710000 638976 C:\Windows\System32\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795786054810350 0x7ffacd7b0000 270336 C:\Windows\System32\cfgmgr32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Configuration Manager DLL 131795786072535568 0x7ffacd810000 22056960 C:\Windows\System32\shell32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Общая библиотека оболочки Windows 131795786053933393 0x7ffaced20000 782336 C:\Windows\System32\oleaut32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795786070371970 0x7ffacede0000 450560 C:\Windows\System32\coml2.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft COM for Windows 131795786053910705 0x7ffacee50000 1183744 C:\Windows\System32\rpcrt4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795786065324109 0x7ffacef80000 32768 C:\Windows\System32\nsi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation NSI User-mode interface DLL 131795786053908868 0x7ffacef90000 647168 C:\Windows\System32\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795786053866675 0x7ffacf0d0000 704512 C:\Windows\System32\kernel32.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795786058760529 0x7ffacf1e0000 1417216 C:\Windows\System32\msctf.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Серверная библиотека MSCTF 131795786053915276 0x7ffacf770000 212992 C:\Windows\System32\gdi32.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation GDI Client DLL 131795786065183195 0x7ffacf820000 434176 C:\Windows\System32\ws2_32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation 32-разрядная библиотека Windows Socket 2.0 131795786053988560 0x7ffacf890000 188416 C:\Windows\System32\imm32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Multi-User Windows IMM32 API Client DLL 131795786053916977 0x7ffacf8c0000 1462272 C:\Windows\System32\user32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795786053912669 0x7ffacfb30000 2916352 C:\Windows\System32\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795786053907976 0x7ffacfe20000 663552 C:\Windows\System32\advapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795786053911866 0x7ffad0070000 1277952 C:\Windows\System32\ole32.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft OLE для Windows 131795786054806876 0x7ffad01b0000 335872 C:\Windows\System32\shlwapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека небольших программ оболочки 131795786053909990 0x7ffad0210000 364544 C:\Windows\System32\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795786042630465 0x7ffad0270000 1908736 C:\Windows\System32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 163 11628 664 6 00000000:0031f1da 131795786060723216 0 0 1 Обязательная метка\Средний обязательный уровень WIN-0UOTFKKVN1S\User browser_broker.exe C:\Windows\system32\browser_broker.exe C:\Windows\system32\browser_broker.exe -Embedding Microsoft Corporation 11.00.14393.1613 (rs1_release_d.170807-1806) Browser_Broker 131795786060746750 0x7ff7b0a20000 40960 C:\Windows\System32\browser_broker.exe 11.00.14393.1613 (rs1_release_d.170807-1806) Microsoft Corporation Browser_Broker 131795786168836722 0x7ffab2c00000 8179712 C:\Windows\System32\Chakra.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft ® Chakra (Private) 131795786168862865 0x7ffab33d0000 258048 C:\Windows\System32\mlang.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL многоязыковой поддержки 131795786168827250 0x7ffab3540000 22740992 C:\Windows\System32\edgehtml.dll 11.00.14393.447 (rs1_release_inmarket.161102-0100) Microsoft Corporation Веб-платформа Microsoft Edge 131795786282574098 0x7ffabaab0000 94208 C:\Windows\System32\profext.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation profext 131795786062630515 0x7ffabcf30000 110592 C:\Windows\System32\mpr.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека маршрутизации для нескольких служб доступа 131795786377997340 0x7ffabf1d0000 192512 C:\Windows\System32\cryptnet.dll 10.0.14393.2035 (rs1_release_inmarket.180110-1910) Microsoft Corporation Crypto Network Related API 131795786062639680 0x7ffabf5d0000 2924544 C:\Windows\System32\wininet.dll 11.00.14393.447 (rs1_release_inmarket.161102-0100) Microsoft Corporation Расширения Интернета для Win32 131795786379114346 0x7ffabff60000 135168 C:\Windows\System32\ncryptsslp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft SChannel Provider 131795786377416821 0x7ffac0ad0000 86016 C:\Windows\System32\mskeyprotect.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик защиты ключей (Майкрософт) 131795786174396342 0x7ffac0bf0000 3559424 C:\Windows\System32\actxprxy.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation ActiveX Interface Marshaling Library 131795786063237345 0x7ffac1470000 704512 C:\Windows\System32\ieproxy.dll 11.00.14393.2007 (rs1_release.171231-1800) Microsoft Corporation IE ActiveX Interface Marshaling Library 131795786062620047 0x7ffac34e0000 1843200 C:\Windows\System32\urlmon.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширения OLE32 для Win32 131795786062594364 0x7ffac37b0000 122880 C:\Windows\System32\browserbroker.dll 11.00.14393.1613 (rs1_release_d.170807-1806) Microsoft Corporation BrowserBroker 131795786062611592 0x7ffac3cb0000 2772992 C:\Windows\System32\iertutil.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служебная программа времени выполнения для Internet Explorer 131795786373086635 0x7ffac4000000 274432 C:\Windows\System32\policymanager.dll 10.0.14393.2035 (rs1_release_inmarket.180110-1910) Microsoft Corporation Policy Manager DLL 131795786062648299 0x7ffac60e0000 221184 C:\Windows\System32\xmllite.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft XmlLite Library 131795786374469208 0x7ffac6610000 40960 C:\Windows\System32\rasadhlp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Remote Access AutoDial Helper 131795786169923245 0x7ffac66a0000 86016 C:\Windows\System32\OnDemandConnRouteHelper.dll 10.0.14393.351 (rs1_release_inmarket.161014-1755) Microsoft Corporation On Demand Connctiond Route Helper 131795786169944900 0x7ffac69c0000 839680 C:\Windows\System32\winhttp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Службы HTTP Windows 131795786375051635 0x7ffac8420000 434176 C:\Windows\System32\FWPUCLNT.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API пользовательского режима FWP/IPsec 131795786170132533 0x7ffac8810000 45056 C:\Windows\System32\winnsi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Network Store Information RPC interface 131795786168854180 0x7ffac92e0000 1269760 C:\Windows\System32\WinTypes.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL основных типов Windows 131795786372529204 0x7ffaca5e0000 155648 C:\Windows\System32\dwmapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Интерфейс API диспетчера окон рабочего стола (Майкрософт) 131795786060981181 0x7ffacaf00000 610304 C:\Windows\System32\uxtheme.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека тем UxTheme (Microsoft) 131795786373096703 0x7ffacb140000 593920 C:\Windows\System32\msvcp110_win.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Microsoft® STL110 C++ Runtime Library 131795786062656563 0x7ffacb420000 204800 C:\Windows\System32\ntmarta.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик Windows NT MARTA 131795786376235194 0x7ffacbaf0000 495616 C:\Windows\System32\schannel.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик безопасности TLS/SSL 131795786377463635 0x7ffacbbb0000 208896 C:\Windows\System32\rsaenh.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Enhanced Cryptographic Provider 131795786062672588 0x7ffacbbf0000 40960 C:\Windows\System32\dpapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Data Protection API 131795786169932479 0x7ffacbd30000 229376 C:\Windows\System32\IPHLPAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API вспомогательного приложения IP 131795786372992934 0x7ffacbd70000 659456 C:\Windows\System32\dnsapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Динамическая библиотека API DNS-клиента 131795786282563295 0x7ffacbe40000 126976 C:\Windows\System32\userenv.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Userenv 131795786170115721 0x7ffacbfb0000 376832 C:\Windows\System32\mswsock.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширение поставщика службы API Microsoft Windows Sockets 2.0 131795786168845591 0x7ffacc150000 94208 C:\Windows\System32\cryptsp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Cryptographic Service Provider API 131795786377475058 0x7ffacc170000 45056 C:\Windows\System32\cryptbase.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base cryptographic API DLL 131795786377435415 0x7ffacc1f0000 241664 C:\Windows\System32\ntasn1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft ASN.1 API 131795786377426421 0x7ffacc230000 155648 C:\Windows\System32\ncrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Маршрутизатор Windows NCrypt 131795786065020552 0x7ffacc350000 180224 C:\Windows\System32\sspicli.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Security Support Provider Interface 131795786168896935 0x7ffacc620000 176128 C:\Windows\System32\bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795786060963845 0x7ffacc6e0000 61440 C:\Windows\System32\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795786065028759 0x7ffacc6f0000 311296 C:\Windows\System32\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795786065029803 0x7ffacc740000 81920 C:\Windows\System32\profapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Profile Basic API 131795786062602748 0x7ffacc760000 65536 C:\Windows\System32\msasn1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ASN.1 Runtime APIs 131795786060771823 0x7ffacc770000 1572864 C:\Windows\System32\gdi32full.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation GDI Client DLL 131795786060765038 0x7ffacc8f0000 1003520 C:\Windows\System32\ucrtbase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795786060766797 0x7ffacc9f0000 434176 C:\Windows\System32\bcryptprimitives.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Cryptographic Primitives Library 131795786060769366 0x7ffacca60000 122880 C:\Windows\System32\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795786377447217 0x7ffacca80000 348160 C:\Windows\System32\wintrust.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation Microsoft Trust Verification APIs 131795786062597872 0x7ffaccae0000 692224 C:\Windows\System32\SHCore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795786065027623 0x7ffaccb90000 7180288 C:\Windows\System32\windows.storage.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API хранения Microsoft WinRT 131795786060754491 0x7ffacd270000 2215936 C:\Windows\System32\KernelBase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795786062601823 0x7ffacd490000 1871872 C:\Windows\System32\crypt32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API32 криптографии 131795786062599820 0x7ffacd710000 638976 C:\Windows\System32\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795786174124589 0x7ffacd7b0000 270336 C:\Windows\System32\cfgmgr32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Configuration Manager DLL 131795786174123329 0x7ffacd810000 22056960 C:\Windows\System32\shell32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Общая библиотека оболочки Windows 131795786062599041 0x7ffaced20000 782336 C:\Windows\System32\oleaut32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795786060765825 0x7ffacee50000 1183744 C:\Windows\System32\rpcrt4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795786170133242 0x7ffacef80000 32768 C:\Windows\System32\nsi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation NSI User-mode interface DLL 131795786060762708 0x7ffacef90000 647168 C:\Windows\System32\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795786062743817 0x7ffacf030000 651264 C:\Windows\System32\clbcatq.dll 2001.12.10941.16384 (rs1_release.160715-1616) Microsoft Corporation COM+ Configuration Catalog 131795786060753543 0x7ffacf0d0000 704512 C:\Windows\System32\kernel32.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795786060770964 0x7ffacf770000 212992 C:\Windows\System32\gdi32.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation GDI Client DLL 131795786169882199 0x7ffacf820000 434176 C:\Windows\System32\ws2_32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation 32-разрядная библиотека Windows Socket 2.0 131795786060799279 0x7ffacf890000 188416 C:\Windows\System32\imm32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Multi-User Windows IMM32 API Client DLL 131795786060768413 0x7ffacf8c0000 1462272 C:\Windows\System32\user32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795786060764068 0x7ffacfb30000 2916352 C:\Windows\System32\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795786062600875 0x7ffacfe20000 663552 C:\Windows\System32\advapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795786063238473 0x7ffad0070000 1277952 C:\Windows\System32\ole32.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft OLE для Windows 131795786062621206 0x7ffad01b0000 335872 C:\Windows\System32\shlwapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека небольших программ оболочки 131795786060767532 0x7ffad0210000 364544 C:\Windows\System32\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795786060746988 0x7ffad0270000 1908736 C:\Windows\System32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 164 9260 3632 38 00000000:0031f1da 131795786076559956 0 0 1 Обязательная метка\Низкий обязательный уровень WIN-0UOTFKKVN1S\User microsoftedgecp.exe C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\microsoftedgecp.exe "C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\microsoftedgecp.exe" SCODEF:4760 CREDAT:140545 /prefetch:2 Microsoft Corporation 11.00.14393.2189 (rs1_release.180329-1711) Microsoft Edge Content Process 131795786082343149 0x5bbd0000 1101824 C:\Program Files (x86)\360\Total Security\safemon\safemon64.dll 1, 0, 0, 1190 Qihu 360 Software Co., Ltd. 360 Internet Security Internet Protection 131795786082139934 0x5bce0000 28672 C:\Program Files (x86)\360\Total Security\safemon\SafeWrapper.dll 2, 0, 0, 1060 Qihu 360 Software Co., Ltd. 360 Internet Security Internet Protection 131795786076857473 0x7ff6405a0000 106496 C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe 11.00.14393.2189 (rs1_release.180329-1711) Microsoft Corporation Microsoft Edge Content Process 131795786340825586 0x7ffaa65e0000 4526080 C:\Windows\System32\D3DCompiler_47.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Direct3D HLSL Compiler 131795786083247759 0x7ffaafb30000 3379200 C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\EdgeContent.dll 11.00.14393.2189 (rs1_release.180329-1711) Microsoft Corporation Microsoft Edge Content 131795786086088180 0x7ffab0430000 1662976 C:\Windows\System32\ieapfltr.dll 11.00.14393.2189 Microsoft Corporation Microsoft SmartScreen Filter 131795786159084433 0x7ffab0d50000 593920 C:\Windows\System32\mscms.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL-библиотека системы сопоставления цветов Майкрософт 131795786202624192 0x7ffab2230000 270336 C:\Windows\System32\elshyph.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ELS Hyphenation Service 131795786084579233 0x7ffab2c00000 8179712 C:\Windows\System32\Chakra.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft ® Chakra (Private) 131795786084609324 0x7ffab33d0000 258048 C:\Windows\System32\mlang.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL многоязыковой поддержки 131795786084567131 0x7ffab3540000 22740992 C:\Windows\System32\edgehtml.dll 11.00.14393.447 (rs1_release_inmarket.161102-0100) Microsoft Corporation Веб-платформа Microsoft Edge 131795786088444599 0x7ffab5b40000 2527232 C:\Windows\System32\DWrite.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Службы Microsoft DirectX Typography 131795786084123182 0x7ffabaab0000 94208 C:\Windows\System32\profext.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation profext 131795786160557742 0x7ffababa0000 270336 C:\Windows\System32\icm32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Color Management Module (CMM) 131795786082878183 0x7ffababf0000 806912 C:\Program Files (x86)\360\Total Security\safemon\spsafe64.dll 1, 0, 0, 1150 Qihu 360 Software Co., Ltd. 360 Internet Security Internet Protection 131795786390382274 0x7ffabaf70000 270336 C:\Windows\System32\edputil.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служебная программа EDP 131795786086580284 0x7ffabb490000 512000 C:\Windows\System32\twinapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation twinapi 131795786085595890 0x7ffabbd10000 65536 C:\Windows\System32\tokenbinding.dll 10.0.14393.1593 (rs1_release.170731-1934) Microsoft Corporation Token Binding Protocol 131795786083370196 0x7ffabcf30000 110592 C:\Windows\System32\mpr.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека маршрутизации для нескольких служб доступа 131795786137282976 0x7ffabd4a0000 1613824 C:\Windows\System32\Windows.Globalization.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Globalization 131795786244144116 0x7ffabe110000 69632 C:\Windows\System32\imgutil.dll 11.00.14393.2007 (rs1_release.171231-1800) Microsoft Corporation IE plugin image decoder support DLL 131795786154004846 0x7ffabe530000 307200 C:\Windows\System32\WindowsCodecsExt.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Microsoft Windows Codecs Extended Library 131795786089791507 0x7ffabe6e0000 561152 C:\Windows\System32\directmanipulation.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Direct Manipulation Component 131795786155347443 0x7ffabe830000 77824 C:\Windows\System32\smartscreenps.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SmartScreenPS 131795786389154702 0x7ffabe9c0000 188416 C:\Windows\System32\globinputhost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Globalization Extension API for Input 131795786114772856 0x7ffabf1d0000 192512 C:\Windows\System32\cryptnet.dll 10.0.14393.2035 (rs1_release_inmarket.180110-1910) Microsoft Corporation Crypto Network Related API 131795786296880485 0x7ffabf330000 2457600 C:\Windows\System32\msxml6.dll 6.30.14393.2156 Microsoft Corporation MSXML 6.0 131795786085297567 0x7ffabf5d0000 2924544 C:\Windows\System32\wininet.dll 11.00.14393.447 (rs1_release_inmarket.161102-0100) Microsoft Corporation Расширения Интернета для Win32 131795786112051091 0x7ffabff60000 135168 C:\Windows\System32\ncryptsslp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft SChannel Provider 131795786107069509 0x7ffac0ad0000 86016 C:\Windows\System32\mskeyprotect.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик защиты ключей (Майкрософт) 131795786241015463 0x7ffac0bf0000 3559424 C:\Windows\System32\actxprxy.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation ActiveX Interface Marshaling Library 131795786083065977 0x7ffac1090000 126976 C:\Program Files (x86)\360\Total Security\I18N64.dll 1, 0, 0, 1016 Qihu 360 Software Co., Ltd. 360 Total Security 131795786100196624 0x7ffac1470000 704512 C:\Windows\System32\ieproxy.dll 11.00.14393.2007 (rs1_release.171231-1800) Microsoft Corporation IE ActiveX Interface Marshaling Library 131795786271419198 0x7ffac1d60000 589824 C:\Windows\System32\webio.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API протоколов передачи по Веб 131795786086130048 0x7ffac20d0000 110592 C:\Windows\System32\rmclient.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Resource Manager Client 131795786082410441 0x7ffac2700000 98304 C:\Windows\System32\netapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API DLL 131795786087301397 0x7ffac2990000 385024 C:\Windows\System32\ninput.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Pen and Touch Input Component 131795786082393485 0x7ffac2b80000 40960 C:\Windows\System32\version.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Version Checking and File Installation Libraries 131795786086032569 0x7ffac34e0000 1843200 C:\Windows\System32\urlmon.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширения OLE32 для Win32 131795786321446812 0x7ffac3810000 167936 C:\Windows\System32\cabinet.dll 5.00 (rs1_release.160715-1616) Microsoft Corporation Microsoft® Cabinet File API 131795786282318342 0x7ffac3b80000 286720 C:\Windows\System32\indexeddbserver.dll 10.0.14393.2189 (rs1_release.180329-1711) Microsoft Corporation IndexedDb host 131795786082097229 0x7ffac3cb0000 2772992 C:\Windows\System32\iertutil.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служебная программа времени выполнения для Internet Explorer 131795786085965984 0x7ffac4000000 274432 C:\Windows\System32\policymanager.dll 10.0.14393.2035 (rs1_release_inmarket.180110-1910) Microsoft Corporation Policy Manager DLL 131795786083356981 0x7ffac4b70000 122880 C:\Windows\System32\eShims.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Edge Compatibility Shims 131795786210171775 0x7ffac60e0000 221184 C:\Windows\System32\xmllite.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft XmlLite Library 131795786104739299 0x7ffac6610000 40960 C:\Windows\System32\rasadhlp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Remote Access AutoDial Helper 131795786085635138 0x7ffac66a0000 86016 C:\Windows\System32\OnDemandConnRouteHelper.dll 10.0.14393.351 (rs1_release_inmarket.161014-1755) Microsoft Corporation On Demand Connctiond Route Helper 131795786085676901 0x7ffac69c0000 839680 C:\Windows\System32\winhttp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Службы HTTP Windows 131795786089609753 0x7ffac6ac0000 835584 C:\Windows\System32\Windows.UI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Runtime UI Foundation DLL 131795786087107447 0x7ffac6ed0000 155648 C:\Windows\System32\srpapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL программных интерфейсов (API) поставщика общих ресурсов 131795786088421856 0x7ffac6f50000 5632000 C:\Windows\System32\d2d1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека Microsoft D2D 131795786092153446 0x7ffac7580000 1077248 C:\Windows\System32\MrmCoreR.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Windows MRM 131795786100849928 0x7ffac7720000 1601536 C:\Windows\System32\OneCoreUAPCommonProxyStub.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation OneCoreUAP Common Proxy Stub 131795786089750406 0x7ffac78b0000 65536 C:\Windows\System32\msimtf.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Active IMM Server DLL 131795786088584854 0x7ffac7fc0000 2674688 C:\Windows\System32\d3d10warp.dll 10.0.14393.576 (rs1_release_inmarket.161208-2252) Microsoft Corporation Direct3D 10 Rasterizer 131795786270943858 0x7ffac83d0000 106496 C:\Windows\System32\dhcpcsvc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служба DHCP-клиента 131795786270495097 0x7ffac83f0000 90112 C:\Windows\System32\dhcpcsvc6.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиент DHCPv6 131795786104726596 0x7ffac8420000 434176 C:\Windows\System32\FWPUCLNT.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API пользовательского режима FWP/IPsec 131795786086442135 0x7ffac84f0000 299008 C:\Windows\System32\DataExchange.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation Data exchange 131795786085717720 0x7ffac8810000 45056 C:\Windows\System32\winnsi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Network Store Information RPC interface 131795786086457038 0x7ffac88a0000 2842624 C:\Windows\System32\d3d11.dll 10.0.14393.953 (rs1_release_inmarket.170303-1614) Microsoft Corporation Direct3D 11 Runtime 131795786082439684 0x7ffac90b0000 90112 C:\Windows\System32\wkscli.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Workstation Service Client DLL 131795786084597848 0x7ffac92e0000 1269760 C:\Windows\System32\WinTypes.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL основных типов Windows 131795786184150347 0x7ffac9ec0000 294912 C:\Windows\System32\UIAnimation.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Animation Manager 131795786141307846 0x7ffac9f50000 1736704 C:\Windows\System32\WindowsCodecs.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Microsoft Windows Codecs Library 131795786240298598 0x7ffaca340000 1593344 C:\Windows\System32\propsys.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Система страниц свойств (Майкрософт) 131795786092224838 0x7ffaca570000 421888 C:\Windows\System32\BCP47Langs.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation BCP47 Language Classes 131795786086057183 0x7ffaca5e0000 155648 C:\Windows\System32\dwmapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Интерфейс API диспетчера окон рабочего стола (Майкрософт) 131795786089629599 0x7ffaca640000 770048 C:\Windows\System32\CoreMessaging.dll 10.0.14393.0 Microsoft Corporation Microsoft CoreMessaging Dll 131795786086481184 0x7ffaca770000 1380352 C:\Windows\System32\dcomp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft DirectComposition Library 131795786082048569 0x7ffacadf0000 499712 C:\Windows\System32\apphelp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиентская библиотека совместимости приложений 131795786084078182 0x7ffacaf00000 610304 C:\Windows\System32\uxtheme.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека тем UxTheme (Microsoft) 131795786086008568 0x7ffacb140000 593920 C:\Windows\System32\msvcp110_win.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Microsoft® STL110 C++ Runtime Library 131795786083279286 0x7ffacb1e0000 1163264 C:\Windows\System32\twinapi.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation twinapi.appcore 131795786088520571 0x7ffacb3d0000 110592 C:\Windows\System32\ResourcePolicyClient.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Resource Policy Client 131795786083257346 0x7ffacb420000 204800 C:\Windows\System32\ntmarta.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик Windows NT MARTA 131795786086544984 0x7ffacb780000 651264 C:\Windows\System32\dxgi.dll 10.0.14393.953 (rs1_release_inmarket.170303-1614) Microsoft Corporation DirectX Graphics Infrastructure 131795786105438151 0x7ffacbaf0000 495616 C:\Windows\System32\schannel.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик безопасности TLS/SSL 131795786098058671 0x7ffacbbb0000 208896 C:\Windows\System32\rsaenh.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Enhanced Cryptographic Provider 131795786098091830 0x7ffacbbf0000 40960 C:\Windows\System32\dpapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Data Protection API 131795786085647065 0x7ffacbd30000 229376 C:\Windows\System32\IPHLPAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API вспомогательного приложения IP 131795786093150053 0x7ffacbd70000 659456 C:\Windows\System32\dnsapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Динамическая библиотека API DNS-клиента 131795786082425895 0x7ffacbe20000 53248 C:\Windows\System32\netutils.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API Helpers DLL 131795786083270628 0x7ffacbe40000 126976 C:\Windows\System32\userenv.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Userenv 131795786085695835 0x7ffacbfb0000 376832 C:\Windows\System32\mswsock.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширение поставщика службы API Microsoft Windows Sockets 2.0 131795786084588700 0x7ffacc150000 94208 C:\Windows\System32\cryptsp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Cryptographic Service Provider API 131795786098076226 0x7ffacc170000 45056 C:\Windows\System32\cryptbase.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base cryptographic API DLL 131795786112038692 0x7ffacc1f0000 241664 C:\Windows\System32\ntasn1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft ASN.1 API 131795786112026610 0x7ffacc230000 155648 C:\Windows\System32\ncrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Маршрутизатор Windows NCrypt 131795786085316210 0x7ffacc350000 180224 C:\Windows\System32\sspicli.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Security Support Provider Interface 131795786082453168 0x7ffacc620000 176128 C:\Windows\System32\bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795786082355351 0x7ffacc6e0000 61440 C:\Windows\System32\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795786082352777 0x7ffacc6f0000 311296 C:\Windows\System32\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795786082356404 0x7ffacc740000 81920 C:\Windows\System32\profapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Profile Basic API 131795786082346599 0x7ffacc770000 1572864 C:\Windows\System32\gdi32full.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation GDI Client DLL 131795786082076458 0x7ffacc8f0000 1003520 C:\Windows\System32\ucrtbase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795786082077405 0x7ffacc9f0000 434176 C:\Windows\System32\bcryptprimitives.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Cryptographic Primitives Library 131795786082344914 0x7ffacca60000 122880 C:\Windows\System32\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795786082078287 0x7ffacca80000 348160 C:\Windows\System32\wintrust.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation Microsoft Trust Verification APIs 131795786082074829 0x7ffaccae0000 692224 C:\Windows\System32\SHCore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795786082351486 0x7ffaccb90000 7180288 C:\Windows\System32\windows.storage.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API хранения Microsoft WinRT 131795786082030503 0x7ffacd270000 2215936 C:\Windows\System32\KernelBase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795786082079752 0x7ffacd490000 1871872 C:\Windows\System32\crypt32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API32 криптографии 131795786082360385 0x7ffacd710000 638976 C:\Windows\System32\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795786082350101 0x7ffacd7b0000 270336 C:\Windows\System32\cfgmgr32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Configuration Manager DLL 131795786082348521 0x7ffacd810000 22056960 C:\Windows\System32\shell32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Общая библиотека оболочки Windows 131795786082359321 0x7ffaced20000 782336 C:\Windows\System32\oleaut32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795786082073607 0x7ffacee50000 1183744 C:\Windows\System32\rpcrt4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795786085718659 0x7ffacef80000 32768 C:\Windows\System32\nsi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation NSI User-mode interface DLL 131795786082071659 0x7ffacef90000 647168 C:\Windows\System32\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795786082029525 0x7ffacf0d0000 704512 C:\Windows\System32\kernel32.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795786086063062 0x7ffacf1e0000 1417216 C:\Windows\System32\msctf.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Серверная библиотека MSCTF 131795786082345765 0x7ffacf770000 212992 C:\Windows\System32\gdi32.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation GDI Client DLL 131795786082362660 0x7ffacf820000 434176 C:\Windows\System32\ws2_32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation 32-разрядная библиотека Windows Socket 2.0 131795786082465073 0x7ffacf890000 188416 C:\Windows\System32\imm32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Multi-User Windows IMM32 API Client DLL 131795786082343975 0x7ffacf8c0000 1462272 C:\Windows\System32\user32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795786082075682 0x7ffacfb30000 2916352 C:\Windows\System32\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795786082361662 0x7ffacfe00000 114688 C:\Windows\System32\imagehlp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT Image Helper 131795786082070778 0x7ffacfe20000 663552 C:\Windows\System32\advapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795786082357670 0x7ffad0070000 1277952 C:\Windows\System32\ole32.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft OLE для Windows 131795786082354079 0x7ffad01b0000 335872 C:\Windows\System32\shlwapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека небольших программ оболочки 131795786082072862 0x7ffad0210000 364544 C:\Windows\System32\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795786076857714 0x7ffad0270000 1908736 C:\Windows\System32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 165 9716 664 6 00000000:0031f1da 131795786078382267 131795786679713103 0 1 Обязательная метка\Низкий обязательный уровень WIN-0UOTFKKVN1S\User backgroundTaskHost.exe C:\Windows\system32\backgroundTaskHost.exe "C:\Windows\system32\backgroundTaskHost.exe" -ServerName:App.AppXmtcan0h2tfbfy7k9kn8hbxb6dmzz1zh0.mca Microsoft Corporation 10.0.14393.0 (rs1_release.160715-1616) Background Task Host 131795786078418454 0x7ff6c9470000 28672 C:\Windows\System32\backgroundTaskHost.exe 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Background Task Host 131795786443106818 0x7ffaa63b0000 2260992 C:\Windows\SystemApps\Microsoft.Windows.ContentDeliveryManager_cw5n1h2txyewy\ContentManagementSDK.dll 131795786178014437 0x7ffaadde0000 3424256 C:\Windows\SystemApps\Microsoft.Windows.ContentDeliveryManager_cw5n1h2txyewy\ContentDeliveryManager.Background.dll 131795786446836026 0x7ffab8f60000 397312 C:\Windows\System32\CryptoWinRT.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Crypto WinRT Library 131795786452519637 0x7ffabb490000 512000 C:\Windows\System32\twinapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation twinapi 131795786442096938 0x7ffabd4a0000 1613824 C:\Windows\System32\Windows.Globalization.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Globalization 131795786184454951 0x7ffabea90000 135168 C:\Windows\System32\Windows.ApplicationModel.Background.SystemEventsBroker.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Background System Events Broker API Server 131795786411124347 0x7ffabeac0000 335872 C:\Windows\System32\Windows.Storage.ApplicationData.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Application Data API Server 131795786447511170 0x7ffabf2d0000 344064 C:\Windows\System32\ncryptprov.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft KSP 131795786446350687 0x7ffabfd80000 86016 C:\Windows\System32\threadpoolwinrt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows WinRT Threadpool 131795786178082701 0x7ffac01e0000 397312 C:\Windows\System32\wincorlib.dll 10.0.14393.576 (rs1_release_inmarket.161208-2252) Microsoft Corporation Microsoft Windows ® WinRT core library 131795786448549221 0x7ffac0910000 724992 C:\Windows\System32\Windows.Networking.Connectivity.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Networking Connectivity Runtime DLL 131795786087899215 0x7ffac0bf0000 3559424 C:\Windows\System32\actxprxy.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation ActiveX Interface Marshaling Library 131795786439664619 0x7ffac3cb0000 2772992 C:\Windows\System32\iertutil.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служебная программа времени выполнения для Internet Explorer 131795786178119779 0x7ffac4000000 274432 C:\Windows\System32\policymanager.dll 10.0.14393.2035 (rs1_release_inmarket.180110-1910) Microsoft Corporation Policy Manager DLL 131795786438702275 0x7ffac5070000 798720 C:\Windows\System32\Windows.Web.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL веб-клиента 131795786138262787 0x7ffac6620000 192512 C:\Windows\System32\biwinrt.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation Windows Background Broker Infrastructure 131795786087656774 0x7ffac6ac0000 835584 C:\Windows\System32\Windows.UI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Runtime UI Foundation DLL 131795786087636053 0x7ffac7580000 1077248 C:\Windows\System32\MrmCoreR.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Windows MRM 131795786178883132 0x7ffac76a0000 159744 C:\Windows\System32\sppc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Software Licensing Client DLL 131795786138319065 0x7ffac7720000 1601536 C:\Windows\System32\OneCoreUAPCommonProxyStub.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation OneCoreUAP Common Proxy Stub 131795786178060788 0x7ffac7990000 155648 C:\Windows\System32\slc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Software Licensing Client DLL 131795786564018964 0x7ffac7d80000 49152 C:\Windows\System32\Windows.ApplicationModel.Background.TimeBroker.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Background Time Broker API Server 131795786424168262 0x7ffac8fa0000 253952 C:\Windows\System32\logoncli.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Net Logon Client DLL 131795786085105196 0x7ffac92e0000 1269760 C:\Windows\System32\WinTypes.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL основных типов Windows 131795786630053916 0x7ffaca260000 45056 C:\Windows\System32\SystemEventsBrokerClient.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation system Events Broker Client Library 131795786444935300 0x7ffaca340000 1593344 C:\Windows\System32\propsys.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Система страниц свойств (Майкрософт) 131795786135208275 0x7ffaca570000 421888 C:\Windows\System32\BCP47Langs.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation BCP47 Language Classes 131795786135908983 0x7ffacaf00000 610304 C:\Windows\System32\uxtheme.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека тем UxTheme (Microsoft) 131795786178148521 0x7ffacb140000 593920 C:\Windows\System32\msvcp110_win.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Microsoft® STL110 C++ Runtime Library 131795786078586397 0x7ffacb1e0000 1163264 C:\Windows\System32\twinapi.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation twinapi.appcore 131795786178071668 0x7ffacb300000 364544 C:\Windows\System32\VEEventDispatcher.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Visual Element Event dispatcher 131795786675912834 0x7ffacb420000 204800 C:\Windows\System32\ntmarta.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик Windows NT MARTA 131795786448305262 0x7ffacc170000 45056 C:\Windows\System32\cryptbase.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base cryptographic API DLL 131795786447500168 0x7ffacc1f0000 241664 C:\Windows\System32\ntasn1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft ASN.1 API 131795786447396943 0x7ffacc230000 155648 C:\Windows\System32\ncrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Маршрутизатор Windows NCrypt 131795786178048432 0x7ffacc350000 180224 C:\Windows\System32\sspicli.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Security Support Provider Interface 131795786085085167 0x7ffacc620000 176128 C:\Windows\System32\bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795786078572417 0x7ffacc6e0000 61440 C:\Windows\System32\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795786444912775 0x7ffacc6f0000 311296 C:\Windows\System32\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795786087643960 0x7ffacc740000 81920 C:\Windows\System32\profapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Profile Basic API 131795786087150180 0x7ffacc770000 1572864 C:\Windows\System32\gdi32full.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation GDI Client DLL 131795786078435842 0x7ffacc8f0000 1003520 C:\Windows\System32\ucrtbase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795786078437510 0x7ffacc9f0000 434176 C:\Windows\System32\bcryptprimitives.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Cryptographic Primitives Library 131795786087148614 0x7ffacca60000 122880 C:\Windows\System32\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795786085110036 0x7ffaccae0000 692224 C:\Windows\System32\SHCore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795786444911600 0x7ffaccb90000 7180288 C:\Windows\System32\windows.storage.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API хранения Microsoft WinRT 131795786078425607 0x7ffacd270000 2215936 C:\Windows\System32\KernelBase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795786178085269 0x7ffacd710000 638976 C:\Windows\System32\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795786178083562 0x7ffaced20000 782336 C:\Windows\System32\oleaut32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795786078436568 0x7ffacee50000 1183744 C:\Windows\System32\rpcrt4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795786078433692 0x7ffacef90000 647168 C:\Windows\System32\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795786078424455 0x7ffacf0d0000 704512 C:\Windows\System32\kernel32.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795786087149421 0x7ffacf770000 212992 C:\Windows\System32\gdi32.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation GDI Client DLL 131795786087182640 0x7ffacf890000 188416 C:\Windows\System32\imm32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Multi-User Windows IMM32 API Client DLL 131795786087147697 0x7ffacf8c0000 1462272 C:\Windows\System32\user32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795786078435030 0x7ffacfb30000 2916352 C:\Windows\System32\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795786178015977 0x7ffacfe20000 663552 C:\Windows\System32\advapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795786444913925 0x7ffad01b0000 335872 C:\Windows\System32\shlwapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека небольших программ оболочки 131795786078587414 0x7ffad0210000 364544 C:\Windows\System32\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795786078418747 0x7ffad0270000 1908736 C:\Windows\System32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 166 10548 3632 38 00000000:0031f1da 131795786089162133 131795786943874336 0 1 Обязательная метка\Низкий обязательный уровень WIN-0UOTFKKVN1S\User microsoftedgecp.exe C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\microsoftedgecp.exe "C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\microsoftedgecp.exe" SCODEF:4760 CREDAT:140546 /prefetch:2 Microsoft Corporation 11.00.14393.2189 (rs1_release.180329-1711) Microsoft Edge Content Process 131795786091222895 0x5bbd0000 1101824 C:\Program Files (x86)\360\Total Security\safemon\safemon64.dll 1, 0, 0, 1190 Qihu 360 Software Co., Ltd. 360 Internet Security Internet Protection 131795786090902666 0x5bce0000 28672 C:\Program Files (x86)\360\Total Security\safemon\SafeWrapper.dll 2, 0, 0, 1060 Qihu 360 Software Co., Ltd. 360 Internet Security Internet Protection 131795786089403507 0x7ff6405a0000 106496 C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe 11.00.14393.2189 (rs1_release.180329-1711) Microsoft Corporation Microsoft Edge Content Process 131795786093276149 0x7ffaafb30000 3379200 C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\EdgeContent.dll 11.00.14393.2189 (rs1_release.180329-1711) Microsoft Corporation Microsoft Edge Content 131795786097059549 0x7ffab0430000 1662976 C:\Windows\System32\ieapfltr.dll 11.00.14393.2189 Microsoft Corporation Microsoft SmartScreen Filter 131795786095385025 0x7ffab2c00000 8179712 C:\Windows\System32\Chakra.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft ® Chakra (Private) 131795786095414401 0x7ffab33d0000 258048 C:\Windows\System32\mlang.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL многоязыковой поддержки 131795786095372148 0x7ffab3540000 22740992 C:\Windows\System32\edgehtml.dll 11.00.14393.447 (rs1_release_inmarket.161102-0100) Microsoft Corporation Веб-платформа Microsoft Edge 131795786098894292 0x7ffab5b40000 2527232 C:\Windows\System32\DWrite.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Службы Microsoft DirectX Typography 131795786095060723 0x7ffabaab0000 94208 C:\Windows\System32\profext.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation profext 131795786092008108 0x7ffababf0000 806912 C:\Program Files (x86)\360\Total Security\safemon\spsafe64.dll 1, 0, 0, 1150 Qihu 360 Software Co., Ltd. 360 Internet Security Internet Protection 131795786097852913 0x7ffabb490000 512000 C:\Windows\System32\twinapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation twinapi 131795786095928005 0x7ffabbd10000 65536 C:\Windows\System32\tokenbinding.dll 10.0.14393.1593 (rs1_release.170731-1934) Microsoft Corporation Token Binding Protocol 131795786093350863 0x7ffabcf30000 110592 C:\Windows\System32\mpr.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека маршрутизации для нескольких служб доступа 131795786137298934 0x7ffabd4a0000 1613824 C:\Windows\System32\Windows.Globalization.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Globalization 131795786099499942 0x7ffabe6e0000 561152 C:\Windows\System32\directmanipulation.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Direct Manipulation Component 131795786155511100 0x7ffabe830000 77824 C:\Windows\System32\smartscreenps.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SmartScreenPS 131795786175106783 0x7ffabe9c0000 188416 C:\Windows\System32\globinputhost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Globalization Extension API for Input 131795786126783504 0x7ffabf1d0000 192512 C:\Windows\System32\cryptnet.dll 10.0.14393.2035 (rs1_release_inmarket.180110-1910) Microsoft Corporation Crypto Network Related API 131795786095697218 0x7ffabf5d0000 2924544 C:\Windows\System32\wininet.dll 11.00.14393.447 (rs1_release_inmarket.161102-0100) Microsoft Corporation Расширения Интернета для Win32 131795786126703773 0x7ffabff60000 135168 C:\Windows\System32\ncryptsslp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft SChannel Provider 131795786126666772 0x7ffac0ad0000 86016 C:\Windows\System32\mskeyprotect.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик защиты ключей (Майкрософт) 131795786092840839 0x7ffac1090000 126976 C:\Program Files (x86)\360\Total Security\I18N64.dll 1, 0, 0, 1016 Qihu 360 Software Co., Ltd. 360 Total Security 131795786122446702 0x7ffac1470000 704512 C:\Windows\System32\ieproxy.dll 11.00.14393.2007 (rs1_release.171231-1800) Microsoft Corporation IE ActiveX Interface Marshaling Library 131795786097238400 0x7ffac20d0000 110592 C:\Windows\System32\rmclient.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Resource Manager Client 131795786091280736 0x7ffac2700000 98304 C:\Windows\System32\netapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API DLL 131795786098823307 0x7ffac2990000 385024 C:\Windows\System32\ninput.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Pen and Touch Input Component 131795786091266496 0x7ffac2b80000 40960 C:\Windows\System32\version.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Version Checking and File Installation Libraries 131795786097003528 0x7ffac34e0000 1843200 C:\Windows\System32\urlmon.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширения OLE32 для Win32 131795786168735686 0x7ffac3b80000 286720 C:\Windows\System32\indexeddbserver.dll 10.0.14393.2189 (rs1_release.180329-1711) Microsoft Corporation IndexedDb host 131795786090797141 0x7ffac3cb0000 2772992 C:\Windows\System32\iertutil.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служебная программа времени выполнения для Internet Explorer 131795786096821309 0x7ffac4000000 274432 C:\Windows\System32\policymanager.dll 10.0.14393.2035 (rs1_release_inmarket.180110-1910) Microsoft Corporation Policy Manager DLL 131795786093337459 0x7ffac4b70000 122880 C:\Windows\System32\eShims.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Edge Compatibility Shims 131795786149406998 0x7ffac60e0000 221184 C:\Windows\System32\xmllite.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft XmlLite Library 131795786124866847 0x7ffac6610000 40960 C:\Windows\System32\rasadhlp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Remote Access AutoDial Helper 131795786096204385 0x7ffac66a0000 86016 C:\Windows\System32\OnDemandConnRouteHelper.dll 10.0.14393.351 (rs1_release_inmarket.161014-1755) Microsoft Corporation On Demand Connctiond Route Helper 131795786096235413 0x7ffac69c0000 839680 C:\Windows\System32\winhttp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Службы HTTP Windows 131795786099433900 0x7ffac6ac0000 835584 C:\Windows\System32\Windows.UI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Runtime UI Foundation DLL 131795786098769154 0x7ffac6ed0000 155648 C:\Windows\System32\srpapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL программных интерфейсов (API) поставщика общих ресурсов 131795786098876641 0x7ffac6f50000 5632000 C:\Windows\System32\d2d1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека Microsoft D2D 131795786099938691 0x7ffac7580000 1077248 C:\Windows\System32\MrmCoreR.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Windows MRM 131795786126416006 0x7ffac7720000 1601536 C:\Windows\System32\OneCoreUAPCommonProxyStub.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation OneCoreUAP Common Proxy Stub 131795786099479132 0x7ffac78b0000 65536 C:\Windows\System32\msimtf.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Active IMM Server DLL 131795786098957527 0x7ffac7fc0000 2674688 C:\Windows\System32\d3d10warp.dll 10.0.14393.576 (rs1_release_inmarket.161208-2252) Microsoft Corporation Direct3D 10 Rasterizer 131795786124773333 0x7ffac8420000 434176 C:\Windows\System32\FWPUCLNT.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API пользовательского режима FWP/IPsec 131795786097660874 0x7ffac84f0000 299008 C:\Windows\System32\DataExchange.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation Data exchange 131795786096795570 0x7ffac8810000 45056 C:\Windows\System32\winnsi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Network Store Information RPC interface 131795786097688469 0x7ffac88a0000 2842624 C:\Windows\System32\d3d11.dll 10.0.14393.953 (rs1_release_inmarket.170303-1614) Microsoft Corporation Direct3D 11 Runtime 131795786091312218 0x7ffac90b0000 90112 C:\Windows\System32\wkscli.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Workstation Service Client DLL 131795786095403206 0x7ffac92e0000 1269760 C:\Windows\System32\WinTypes.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL основных типов Windows 131795786220221983 0x7ffac9ec0000 294912 C:\Windows\System32\UIAnimation.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Animation Manager 131795786176564935 0x7ffac9f50000 1736704 C:\Windows\System32\WindowsCodecs.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Microsoft Windows Codecs Library 131795786196210087 0x7ffaca340000 1593344 C:\Windows\System32\propsys.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Система страниц свойств (Майкрософт) 131795786100083353 0x7ffaca570000 421888 C:\Windows\System32\BCP47Langs.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation BCP47 Language Classes 131795786097022036 0x7ffaca5e0000 155648 C:\Windows\System32\dwmapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Интерфейс API диспетчера окон рабочего стола (Майкрософт) 131795786099453250 0x7ffaca640000 770048 C:\Windows\System32\CoreMessaging.dll 10.0.14393.0 Microsoft Corporation Microsoft CoreMessaging Dll 131795786097703788 0x7ffaca770000 1380352 C:\Windows\System32\dcomp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft DirectComposition Library 131795786090732326 0x7ffacadf0000 499712 C:\Windows\System32\apphelp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиентская библиотека совместимости приложений 131795786094154074 0x7ffacaf00000 610304 C:\Windows\System32\uxtheme.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека тем UxTheme (Microsoft) 131795786096836522 0x7ffacb140000 593920 C:\Windows\System32\msvcp110_win.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Microsoft® STL110 C++ Runtime Library 131795786093314951 0x7ffacb1e0000 1163264 C:\Windows\System32\twinapi.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation twinapi.appcore 131795786098913536 0x7ffacb3d0000 110592 C:\Windows\System32\ResourcePolicyClient.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Resource Policy Client 131795786093292052 0x7ffacb420000 204800 C:\Windows\System32\ntmarta.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик Windows NT MARTA 131795786097717992 0x7ffacb780000 651264 C:\Windows\System32\dxgi.dll 10.0.14393.953 (rs1_release_inmarket.170303-1614) Microsoft Corporation DirectX Graphics Infrastructure 131795786125771324 0x7ffacbaf0000 495616 C:\Windows\System32\schannel.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик безопасности TLS/SSL 131795786118519493 0x7ffacbbb0000 208896 C:\Windows\System32\rsaenh.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Enhanced Cryptographic Provider 131795786118553070 0x7ffacbbf0000 40960 C:\Windows\System32\dpapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Data Protection API 131795786096216041 0x7ffacbd30000 229376 C:\Windows\System32\IPHLPAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API вспомогательного приложения IP 131795786109730985 0x7ffacbd70000 659456 C:\Windows\System32\dnsapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Динамическая библиотека API DNS-клиента 131795786091297207 0x7ffacbe20000 53248 C:\Windows\System32\netutils.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API Helpers DLL 131795786093305950 0x7ffacbe40000 126976 C:\Windows\System32\userenv.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Userenv 131795786096756389 0x7ffacbfb0000 376832 C:\Windows\System32\mswsock.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширение поставщика службы API Microsoft Windows Sockets 2.0 131795786095394201 0x7ffacc150000 94208 C:\Windows\System32\cryptsp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Cryptographic Service Provider API 131795786118538156 0x7ffacc170000 45056 C:\Windows\System32\cryptbase.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base cryptographic API DLL 131795786126691616 0x7ffacc1f0000 241664 C:\Windows\System32\ntasn1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft ASN.1 API 131795786126679897 0x7ffacc230000 155648 C:\Windows\System32\ncrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Маршрутизатор Windows NCrypt 131795786095715320 0x7ffacc350000 180224 C:\Windows\System32\sspicli.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Security Support Provider Interface 131795786091326041 0x7ffacc620000 176128 C:\Windows\System32\bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795786091234983 0x7ffacc6e0000 61440 C:\Windows\System32\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795786091232285 0x7ffacc6f0000 311296 C:\Windows\System32\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795786091236180 0x7ffacc740000 81920 C:\Windows\System32\profapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Profile Basic API 131795786091226209 0x7ffacc770000 1572864 C:\Windows\System32\gdi32full.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation GDI Client DLL 131795786090775583 0x7ffacc8f0000 1003520 C:\Windows\System32\ucrtbase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795786090776791 0x7ffacc9f0000 434176 C:\Windows\System32\bcryptprimitives.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Cryptographic Primitives Library 131795786091224549 0x7ffacca60000 122880 C:\Windows\System32\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795786090777738 0x7ffacca80000 348160 C:\Windows\System32\wintrust.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation Microsoft Trust Verification APIs 131795786090758361 0x7ffaccae0000 692224 C:\Windows\System32\SHCore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795786091230916 0x7ffaccb90000 7180288 C:\Windows\System32\windows.storage.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API хранения Microsoft WinRT 131795786090715101 0x7ffacd270000 2215936 C:\Windows\System32\KernelBase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795786090779459 0x7ffacd490000 1871872 C:\Windows\System32\crypt32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API32 криптографии 131795786091239738 0x7ffacd710000 638976 C:\Windows\System32\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795786091229511 0x7ffacd7b0000 270336 C:\Windows\System32\cfgmgr32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Configuration Manager DLL 131795786091227932 0x7ffacd810000 22056960 C:\Windows\System32\shell32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Общая библиотека оболочки Windows 131795786091238674 0x7ffaced20000 782336 C:\Windows\System32\oleaut32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795786226607039 0x7ffacede0000 450560 C:\Windows\System32\coml2.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft COM for Windows 131795786090757247 0x7ffacee50000 1183744 C:\Windows\System32\rpcrt4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795786096796493 0x7ffacef80000 32768 C:\Windows\System32\nsi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation NSI User-mode interface DLL 131795786090755355 0x7ffacef90000 647168 C:\Windows\System32\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795786090714140 0x7ffacf0d0000 704512 C:\Windows\System32\kernel32.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795786097027569 0x7ffacf1e0000 1417216 C:\Windows\System32\msctf.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Серверная библиотека MSCTF 131795786091225372 0x7ffacf770000 212992 C:\Windows\System32\gdi32.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation GDI Client DLL 131795786091241982 0x7ffacf820000 434176 C:\Windows\System32\ws2_32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation 32-разрядная библиотека Windows Socket 2.0 131795786091337871 0x7ffacf890000 188416 C:\Windows\System32\imm32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Multi-User Windows IMM32 API Client DLL 131795786091223732 0x7ffacf8c0000 1462272 C:\Windows\System32\user32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795786090759164 0x7ffacfb30000 2916352 C:\Windows\System32\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795786091241004 0x7ffacfe00000 114688 C:\Windows\System32\imagehlp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT Image Helper 131795786090754460 0x7ffacfe20000 663552 C:\Windows\System32\advapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795786091237308 0x7ffad0070000 1277952 C:\Windows\System32\ole32.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft OLE для Windows 131795786091233709 0x7ffad01b0000 335872 C:\Windows\System32\shlwapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека небольших программ оболочки 131795786090756519 0x7ffad0210000 364544 C:\Windows\System32\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795786089403873 0x7ffad0270000 1908736 C:\Windows\System32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 167 8360 664 6 00000000:0031f1da 131795786145545826 0 0 1 Обязательная метка\Средний обязательный уровень WIN-0UOTFKKVN1S\User smartscreen.exe C:\Windows\System32\smartscreen.exe C:\Windows\System32\smartscreen.exe -Embedding Microsoft Corporation 10.0.14393.0 (rs1_release.160715-1616) SmartScreen 131795786149935538 0x7ff75abc0000 2416640 C:\Windows\System32\smartscreen.exe 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SmartScreen 131795786314242815 0x7ffaa6a40000 2936832 C:\Windows\System32\CertEnroll.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиент регистрации служб сертификатов Active Directory Microsoft® 131795786321983797 0x7ffab0360000 798720 C:\Windows\System32\certca.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ЦС служб сертификации Microsoft® Active Directory 131795786150398418 0x7ffab2c00000 8179712 C:\Windows\System32\Chakra.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft ® Chakra (Private) 131795786338506430 0x7ffab33d0000 258048 C:\Windows\System32\mlang.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL многоязыковой поддержки 131795786156130630 0x7ffab9c00000 1343488 C:\Windows\System32\Windows.Web.Http.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL Windows.Web.Http 131795786162891895 0x7ffabd4a0000 1613824 C:\Windows\System32\Windows.Globalization.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Globalization 131795786155325960 0x7ffabe830000 77824 C:\Windows\System32\smartscreenps.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SmartScreenPS 131795786290626130 0x7ffabe850000 155648 C:\Windows\System32\IDStore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Identity Store 131795786303817642 0x7ffabf1d0000 192512 C:\Windows\System32\cryptnet.dll 10.0.14393.2035 (rs1_release_inmarket.180110-1910) Microsoft Corporation Crypto Network Related API 131795786292777426 0x7ffabf5d0000 2924544 C:\Windows\System32\wininet.dll 11.00.14393.447 (rs1_release_inmarket.161102-0100) Microsoft Corporation Расширения Интернета для Win32 131795786308881957 0x7ffabff60000 135168 C:\Windows\System32\ncryptsslp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft SChannel Provider 131795786291185460 0x7ffac0ac0000 53248 C:\Windows\System32\tbs.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation TBS 131795786303729142 0x7ffac0ad0000 86016 C:\Windows\System32\mskeyprotect.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик защиты ключей (Майкрософт) 131795786295084336 0x7ffac34e0000 1843200 C:\Windows\System32\urlmon.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширения OLE32 для Win32 131795786150377395 0x7ffac36b0000 524288 C:\Windows\System32\msdelta.dll 5.00 (rs1_release.160715-1616) Microsoft Corporation Microsoft Patch Engine 131795786150443503 0x7ffac3cb0000 2772992 C:\Windows\System32\iertutil.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служебная программа времени выполнения для Internet Explorer 131795786295137905 0x7ffac6610000 40960 C:\Windows\System32\rasadhlp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Remote Access AutoDial Helper 131795786293100161 0x7ffac66a0000 86016 C:\Windows\System32\OnDemandConnRouteHelper.dll 10.0.14393.351 (rs1_release_inmarket.161014-1755) Microsoft Corporation On Demand Connctiond Route Helper 131795786293113418 0x7ffac69c0000 839680 C:\Windows\System32\winhttp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Службы HTTP Windows 131795786317286245 0x7ffac6b90000 53248 C:\Windows\System32\dsparse.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Active Directory Domain Services API 131795786296541369 0x7ffac8420000 434176 C:\Windows\System32\FWPUCLNT.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API пользовательского режима FWP/IPsec 131795786294026752 0x7ffac8810000 45056 C:\Windows\System32\winnsi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Network Store Information RPC interface 131795786150415925 0x7ffac90b0000 90112 C:\Windows\System32\wkscli.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Workstation Service Client DLL 131795786150432150 0x7ffac92e0000 1269760 C:\Windows\System32\WinTypes.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL основных типов Windows 131795786162900766 0x7ffaca570000 421888 C:\Windows\System32\BCP47Langs.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation BCP47 Language Classes 131795786290836325 0x7ffaca610000 143360 C:\Windows\System32\samlib.dll 10.0.14393.82 (rs1_release.160805-1735) Microsoft Corporation SAM Library DLL 131795786293555790 0x7ffacb360000 176128 C:\Windows\System32\fwbase.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Firewall Base DLL 131795786293160744 0x7ffacb460000 548864 C:\Windows\System32\FirewallAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API брандмауэра Windows 131795786340507243 0x7ffacb6f0000 143360 C:\Windows\System32\gpapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиентские функции API групповой политики 131795786297745460 0x7ffacbaf0000 495616 C:\Windows\System32\schannel.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик безопасности TLS/SSL 131795786155834219 0x7ffacbbb0000 208896 C:\Windows\System32\rsaenh.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Enhanced Cryptographic Provider 131795786303757002 0x7ffacbbf0000 40960 C:\Windows\System32\dpapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Data Protection API 131795786167890086 0x7ffacbd30000 229376 C:\Windows\System32\IPHLPAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API вспомогательного приложения IP 131795786167870284 0x7ffacbd70000 659456 C:\Windows\System32\dnsapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Динамическая библиотека API DNS-клиента 131795786150424134 0x7ffacbe20000 53248 C:\Windows\System32\netutils.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API Helpers DLL 131795786294009833 0x7ffacbfb0000 376832 C:\Windows\System32\mswsock.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширение поставщика службы API Microsoft Windows Sockets 2.0 131795786150385959 0x7ffacc150000 94208 C:\Windows\System32\cryptsp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Cryptographic Service Provider API 131795786155846861 0x7ffacc170000 45056 C:\Windows\System32\cryptbase.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base cryptographic API DLL 131795786303746521 0x7ffacc1f0000 241664 C:\Windows\System32\ntasn1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft ASN.1 API 131795786303737722 0x7ffacc230000 155648 C:\Windows\System32\ncrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Маршрутизатор Windows NCrypt 131795786292790345 0x7ffacc350000 180224 C:\Windows\System32\sspicli.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Security Support Provider Interface 131795786150407736 0x7ffacc620000 176128 C:\Windows\System32\bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795786149962132 0x7ffacc6e0000 61440 C:\Windows\System32\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795786149968291 0x7ffacc6f0000 311296 C:\Windows\System32\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795786149971001 0x7ffacc740000 81920 C:\Windows\System32\profapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Profile Basic API 131795786149965440 0x7ffacc770000 1572864 C:\Windows\System32\gdi32full.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation GDI Client DLL 131795786149952992 0x7ffacc8f0000 1003520 C:\Windows\System32\ucrtbase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795786149956475 0x7ffacc9f0000 434176 C:\Windows\System32\bcryptprimitives.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Cryptographic Primitives Library 131795786149963670 0x7ffacca60000 122880 C:\Windows\System32\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795786149971757 0x7ffacca80000 348160 C:\Windows\System32\wintrust.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation Microsoft Trust Verification APIs 131795786149957278 0x7ffaccae0000 692224 C:\Windows\System32\SHCore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795786149967388 0x7ffaccb90000 7180288 C:\Windows\System32\windows.storage.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API хранения Microsoft WinRT 131795786149943620 0x7ffacd270000 2215936 C:\Windows\System32\KernelBase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795786149960523 0x7ffacd490000 1871872 C:\Windows\System32\crypt32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API32 криптографии 131795786149952242 0x7ffacd710000 638976 C:\Windows\System32\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795786155995189 0x7ffacd7b0000 270336 C:\Windows\System32\cfgmgr32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Configuration Manager DLL 131795786157141835 0x7ffaced20000 782336 C:\Windows\System32\oleaut32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795786149955480 0x7ffacee50000 1183744 C:\Windows\System32\rpcrt4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795786167871961 0x7ffacef80000 32768 C:\Windows\System32\nsi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation NSI User-mode interface DLL 131795786149957990 0x7ffacef90000 647168 C:\Windows\System32\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795786154314206 0x7ffacf030000 651264 C:\Windows\System32\clbcatq.dll 2001.12.10941.16384 (rs1_release.160715-1616) Microsoft Corporation COM+ Configuration Catalog 131795786149942691 0x7ffacf0d0000 704512 C:\Windows\System32\kernel32.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795786322132523 0x7ffacf180000 376832 C:\Windows\System32\Wldap32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Win32 LDAP API DLL 131795786149964615 0x7ffacf770000 212992 C:\Windows\System32\gdi32.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation GDI Client DLL 131795786149966457 0x7ffacf820000 434176 C:\Windows\System32\ws2_32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation 32-разрядная библиотека Windows Socket 2.0 131795786151032932 0x7ffacf890000 188416 C:\Windows\System32\imm32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Multi-User Windows IMM32 API Client DLL 131795786149962916 0x7ffacf8c0000 1462272 C:\Windows\System32\user32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795786149954350 0x7ffacfb30000 2916352 C:\Windows\System32\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795786149969125 0x7ffacfe20000 663552 C:\Windows\System32\advapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795786149970065 0x7ffad01b0000 335872 C:\Windows\System32\shlwapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека небольших программ оболочки 131795786149959703 0x7ffad0210000 364544 C:\Windows\System32\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795786149935879 0x7ffad0270000 1908736 C:\Windows\System32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 169 10296 580 4 00000000:000003e7 131795786226372453 131795789233522663 0 1 Обязательная метка\Обязательный уровень системы NT AUTHORITY\СИСТЕМА svchost.exe C:\Windows\system32\svchost.exe C:\Windows\system32\svchost.exe -k wsappx Microsoft Corporation 10.0.14393.0 (rs1_release.160715-1616) Хост-процесс для служб Windows 131795786226400516 0x7ff718c20000 57344 C:\Windows\System32\svchost.exe 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Хост-процесс для служб Windows 131795786230130846 0x7ffaa6d10000 2297856 C:\Windows\System32\AppXDeploymentServer.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation Библиотека DLL сервера развертывания AppX 131795786231602983 0x7ffabafc0000 700416 C:\Windows\System32\wer.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека сообщений об ошибках Windows 131795786230153246 0x7ffac3270000 40960 C:\Windows\System32\fltLib.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека фильтров 131795786230145294 0x7ffac42a0000 659456 C:\Windows\System32\StateRepository.Core.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation StateRepository Core 131795786231588260 0x7ffac9220000 397312 C:\Windows\System32\wevtapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API настройки и использования событий 131795786230170844 0x7ffacb420000 204800 C:\Windows\System32\ntmarta.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик Windows NT MARTA 131795786230189651 0x7ffacb720000 344064 C:\Windows\System32\mintdh.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Вспомогательная библиотека трассировки событий 131795786230158474 0x7ffacb820000 712704 C:\Windows\System32\tdh.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Вспомогательная библиотека трассировки событий 131795786231611090 0x7ffacb920000 81920 C:\Windows\System32\wldp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Политика блокировки Windows 131795786230164145 0x7ffacbe40000 126976 C:\Windows\System32\userenv.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Userenv 131795786231594114 0x7ffacc620000 176128 C:\Windows\System32\bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795786229616871 0x7ffacc6e0000 61440 C:\Windows\System32\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795786230136201 0x7ffacc740000 81920 C:\Windows\System32\profapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Profile Basic API 131795786230137819 0x7ffacc760000 65536 C:\Windows\System32\msasn1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ASN.1 Runtime APIs 131795786229625340 0x7ffacc770000 1572864 C:\Windows\System32\gdi32full.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation GDI Client DLL 131795786229594723 0x7ffacc8f0000 1003520 C:\Windows\System32\ucrtbase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795786229603946 0x7ffacc9f0000 434176 C:\Windows\System32\bcryptprimitives.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Cryptographic Primitives Library 131795786229623786 0x7ffacca60000 122880 C:\Windows\System32\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795786231611929 0x7ffacca80000 348160 C:\Windows\System32\wintrust.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation Microsoft Trust Verification APIs 131795786230132115 0x7ffaccae0000 692224 C:\Windows\System32\SHCore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795786229584668 0x7ffacd270000 2215936 C:\Windows\System32\KernelBase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795786230136994 0x7ffacd490000 1871872 C:\Windows\System32\crypt32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API32 криптографии 131795786230134090 0x7ffacd710000 638976 C:\Windows\System32\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795786230133328 0x7ffaced20000 782336 C:\Windows\System32\oleaut32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795786229593263 0x7ffacee50000 1183744 C:\Windows\System32\rpcrt4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795786229617635 0x7ffacef90000 647168 C:\Windows\System32\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795786229583632 0x7ffacf0d0000 704512 C:\Windows\System32\kernel32.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795786229624570 0x7ffacf770000 212992 C:\Windows\System32\gdi32.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation GDI Client DLL 131795786229622783 0x7ffacf8c0000 1462272 C:\Windows\System32\user32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795786229602893 0x7ffacfb30000 2916352 C:\Windows\System32\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795786230135123 0x7ffacfe20000 663552 C:\Windows\System32\advapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795786229592437 0x7ffad0210000 364544 C:\Windows\System32\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795786226400757 0x7ffad0270000 1908736 C:\Windows\System32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 170 10876 4048 3 00000000:0031f1da 131795786251236056 131795788181531259 0 1 Обязательная метка\Средний обязательный уровень WIN-0UOTFKKVN1S\User SearchProtocolHost.exe C:\Windows\system32\SearchProtocolHost.exe "C:\Windows\system32\SearchProtocolHost.exe" Global\UsGthrFltPipeMssGthrPipe_S-1-5-21-3477790013-1571897634-1299942168-1000288_ Global\UsGthrCtrlFltPipeMssGthrPipe_S-1-5-21-3477790013-1571897634-1299942168-1000288 1 -2147483646 "Software\Microsoft\Windows Search" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT; MS Search 4.0 Robot)" "C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc" "DownLevelDaemon" "1" Microsoft Corporation 7.0.14393.2125 (rs1_release.180301-2139) Microsoft Windows Search Protocol Host 131795786251269067 0x7ff77c170000 368640 C:\Windows\System32\SearchProtocolHost.exe 7.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation Microsoft Windows Search Protocol Host 131795786252378762 0x7ffab7a00000 3424256 C:\Windows\System32\tquery.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Запросы Microsoft Tripoli 131795786311861720 0x7ffab7d50000 192512 C:\Windows\System32\mssph.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Обработчик протоколов поиска Microsoft 131795786298907649 0x7ffac2960000 143360 C:\Windows\System32\mssprxy.dll 7.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation Microsoft Search Proxy 131795786252887437 0x7ffac7e40000 28672 C:\Windows\System32\msidle.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Idle Monitor 131795786252245401 0x7ffacc6e0000 61440 C:\Windows\System32\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795786252238173 0x7ffacc6f0000 311296 C:\Windows\System32\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795786252246194 0x7ffacc740000 81920 C:\Windows\System32\profapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Profile Basic API 131795786252240990 0x7ffacc770000 1572864 C:\Windows\System32\gdi32full.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation GDI Client DLL 131795786252230091 0x7ffacc8f0000 1003520 C:\Windows\System32\ucrtbase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795786252232823 0x7ffacc9f0000 434176 C:\Windows\System32\bcryptprimitives.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Cryptographic Primitives Library 131795786252244559 0x7ffacca60000 122880 C:\Windows\System32\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795786252236231 0x7ffaccae0000 692224 C:\Windows\System32\SHCore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795786252237203 0x7ffaccb90000 7180288 C:\Windows\System32\windows.storage.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API хранения Microsoft WinRT 131795786252218352 0x7ffacd270000 2215936 C:\Windows\System32\KernelBase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795786252229401 0x7ffacd710000 638976 C:\Windows\System32\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795786252228473 0x7ffaced20000 782336 C:\Windows\System32\oleaut32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795786252231867 0x7ffacee50000 1183744 C:\Windows\System32\rpcrt4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795786252227168 0x7ffacef90000 647168 C:\Windows\System32\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795786255090404 0x7ffacf030000 651264 C:\Windows\System32\clbcatq.dll 2001.12.10941.16384 (rs1_release.160715-1616) Microsoft Corporation COM+ Configuration Catalog 131795786252217360 0x7ffacf0d0000 704512 C:\Windows\System32\kernel32.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795786252240184 0x7ffacf770000 212992 C:\Windows\System32\gdi32.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation GDI Client DLL 131795786252464763 0x7ffacf890000 188416 C:\Windows\System32\imm32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Multi-User Windows IMM32 API Client DLL 131795786252243819 0x7ffacf8c0000 1462272 C:\Windows\System32\user32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795786252231033 0x7ffacfb30000 2916352 C:\Windows\System32\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795786252234383 0x7ffacfe20000 663552 C:\Windows\System32\advapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795786258307185 0x7ffad0070000 1277952 C:\Windows\System32\ole32.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft OLE для Windows 131795786252239270 0x7ffad01b0000 335872 C:\Windows\System32\shlwapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека небольших программ оболочки 131795786252235203 0x7ffad0210000 364544 C:\Windows\System32\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795786251269513 0x7ffad0270000 1908736 C:\Windows\System32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 171 12864 4048 3 00000000:000003e7 131795786259819446 131795788181883048 0 1 Обязательная метка\Средний обязательный уровень NT AUTHORITY\СИСТЕМА SearchFilterHost.exe C:\Windows\system32\SearchFilterHost.exe "C:\Windows\system32\SearchFilterHost.exe" 0 708 712 720 8192 716 Microsoft Corporation 7.0.14393.2125 (rs1_release.180301-2139) Microsoft Windows Search Filter Host 131795786260175133 0x7ff6a9f90000 225280 C:\Windows\System32\SearchFilterHost.exe 7.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation Microsoft Windows Search Filter Host 131795786261457443 0x7ffab7a00000 3424256 C:\Windows\System32\tquery.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Запросы Microsoft Tripoli 131795786263344012 0x7ffac2960000 143360 C:\Windows\System32\mssprxy.dll 7.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation Microsoft Search Proxy 131795786261520949 0x7ffacc6e0000 61440 C:\Windows\System32\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795786261484334 0x7ffacc770000 1572864 C:\Windows\System32\gdi32full.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation GDI Client DLL 131795786261436442 0x7ffacc8f0000 1003520 C:\Windows\System32\ucrtbase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795786261439345 0x7ffacc9f0000 434176 C:\Windows\System32\bcryptprimitives.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Cryptographic Primitives Library 131795786261482480 0x7ffacca60000 122880 C:\Windows\System32\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795786263346910 0x7ffaccae0000 692224 C:\Windows\System32\SHCore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795786261425296 0x7ffacd270000 2215936 C:\Windows\System32\KernelBase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795786261435749 0x7ffacd710000 638976 C:\Windows\System32\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795786261434971 0x7ffaced20000 782336 C:\Windows\System32\oleaut32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795786261438373 0x7ffacee50000 1183744 C:\Windows\System32\rpcrt4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795786261433616 0x7ffacef90000 647168 C:\Windows\System32\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795786262531245 0x7ffacf030000 651264 C:\Windows\System32\clbcatq.dll 2001.12.10941.16384 (rs1_release.160715-1616) Microsoft Corporation COM+ Configuration Catalog 131795786261424318 0x7ffacf0d0000 704512 C:\Windows\System32\kernel32.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795786261483472 0x7ffacf770000 212992 C:\Windows\System32\gdi32.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation GDI Client DLL 131795786261480909 0x7ffacf890000 188416 C:\Windows\System32\imm32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Multi-User Windows IMM32 API Client DLL 131795786261481696 0x7ffacf8c0000 1462272 C:\Windows\System32\user32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795786261437569 0x7ffacfb30000 2916352 C:\Windows\System32\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795786261440235 0x7ffacfe20000 663552 C:\Windows\System32\advapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795786261442074 0x7ffad0210000 364544 C:\Windows\System32\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795786260175449 0x7ffad0270000 1908736 C:\Windows\System32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 172 11924 3632 38 00000000:0031f1da 131795786260517979 131795786892711288 0 1 Обязательная метка\Низкий обязательный уровень WIN-0UOTFKKVN1S\User microsoftedgecp.exe C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\microsoftedgecp.exe "C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\microsoftedgecp.exe" SCODEF:4760 CREDAT:271620 /prefetch:2 Microsoft Corporation 11.00.14393.2189 (rs1_release.180329-1711) Microsoft Edge Content Process 131795786262397181 0x5bbd0000 1101824 C:\Program Files (x86)\360\Total Security\safemon\safemon64.dll 1, 0, 0, 1190 Qihu 360 Software Co., Ltd. 360 Internet Security Internet Protection 131795786262167704 0x5bce0000 28672 C:\Program Files (x86)\360\Total Security\safemon\SafeWrapper.dll 2, 0, 0, 1060 Qihu 360 Software Co., Ltd. 360 Internet Security Internet Protection 131795786260845950 0x7ff6405a0000 106496 C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe 11.00.14393.2189 (rs1_release.180329-1711) Microsoft Corporation Microsoft Edge Content Process 131795786266817230 0x7ffaafb30000 3379200 C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\EdgeContent.dll 11.00.14393.2189 (rs1_release.180329-1711) Microsoft Corporation Microsoft Edge Content 131795786273171730 0x7ffab0430000 1662976 C:\Windows\System32\ieapfltr.dll 11.00.14393.2189 Microsoft Corporation Microsoft SmartScreen Filter 131795786270806162 0x7ffab2c00000 8179712 C:\Windows\System32\Chakra.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft ® Chakra (Private) 131795786270839051 0x7ffab33d0000 258048 C:\Windows\System32\mlang.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL многоязыковой поддержки 131795786270772483 0x7ffab3540000 22740992 C:\Windows\System32\edgehtml.dll 11.00.14393.447 (rs1_release_inmarket.161102-0100) Microsoft Corporation Веб-платформа Microsoft Edge 131795786275446565 0x7ffab5b40000 2527232 C:\Windows\System32\DWrite.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Службы Microsoft DirectX Typography 131795786270072489 0x7ffabaab0000 94208 C:\Windows\System32\profext.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation profext 131795786265786335 0x7ffababf0000 806912 C:\Program Files (x86)\360\Total Security\safemon\spsafe64.dll 1, 0, 0, 1150 Qihu 360 Software Co., Ltd. 360 Internet Security Internet Protection 131795786274051995 0x7ffabb490000 512000 C:\Windows\System32\twinapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation twinapi 131795786272010707 0x7ffabbd10000 65536 C:\Windows\System32\tokenbinding.dll 10.0.14393.1593 (rs1_release.170731-1934) Microsoft Corporation Token Binding Protocol 131795786268295906 0x7ffabcf30000 110592 C:\Windows\System32\mpr.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека маршрутизации для нескольких служб доступа 131795786276659367 0x7ffabe6e0000 561152 C:\Windows\System32\directmanipulation.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Direct Manipulation Component 131795786270998807 0x7ffabf5d0000 2924544 C:\Windows\System32\wininet.dll 11.00.14393.447 (rs1_release_inmarket.161102-0100) Microsoft Corporation Расширения Интернета для Win32 131795786266702928 0x7ffac1090000 126976 C:\Program Files (x86)\360\Total Security\I18N64.dll 1, 0, 0, 1016 Qihu 360 Software Co., Ltd. 360 Total Security 131795786281591660 0x7ffac1470000 704512 C:\Windows\System32\ieproxy.dll 11.00.14393.2007 (rs1_release.171231-1800) Microsoft Corporation IE ActiveX Interface Marshaling Library 131795786273587652 0x7ffac20d0000 110592 C:\Windows\System32\rmclient.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Resource Manager Client 131795786263279818 0x7ffac2700000 98304 C:\Windows\System32\netapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API DLL 131795786274502821 0x7ffac2990000 385024 C:\Windows\System32\ninput.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Pen and Touch Input Component 131795786262999598 0x7ffac2b80000 40960 C:\Windows\System32\version.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Version Checking and File Installation Libraries 131795786273075968 0x7ffac34e0000 1843200 C:\Windows\System32\urlmon.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширения OLE32 для Win32 131795786262124801 0x7ffac3cb0000 2772992 C:\Windows\System32\iertutil.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служебная программа времени выполнения для Internet Explorer 131795786273039671 0x7ffac4000000 274432 C:\Windows\System32\policymanager.dll 10.0.14393.2035 (rs1_release_inmarket.180110-1910) Microsoft Corporation Policy Manager DLL 131795786267816488 0x7ffac4b70000 122880 C:\Windows\System32\eShims.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Edge Compatibility Shims 131795786272372041 0x7ffac66a0000 86016 C:\Windows\System32\OnDemandConnRouteHelper.dll 10.0.14393.351 (rs1_release_inmarket.161014-1755) Microsoft Corporation On Demand Connctiond Route Helper 131795786272398710 0x7ffac69c0000 839680 C:\Windows\System32\winhttp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Службы HTTP Windows 131795786276370397 0x7ffac6ac0000 835584 C:\Windows\System32\Windows.UI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Runtime UI Foundation DLL 131795786274296386 0x7ffac6ed0000 155648 C:\Windows\System32\srpapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL программных интерфейсов (API) поставщика общих ресурсов 131795786275429221 0x7ffac6f50000 5632000 C:\Windows\System32\d2d1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека Microsoft D2D 131795786277431755 0x7ffac7580000 1077248 C:\Windows\System32\MrmCoreR.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Windows MRM 131795786281870494 0x7ffac7720000 1601536 C:\Windows\System32\OneCoreUAPCommonProxyStub.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation OneCoreUAP Common Proxy Stub 131795786276415541 0x7ffac78b0000 65536 C:\Windows\System32\msimtf.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Active IMM Server DLL 131795786275500652 0x7ffac7fc0000 2674688 C:\Windows\System32\d3d10warp.dll 10.0.14393.576 (rs1_release_inmarket.161208-2252) Microsoft Corporation Direct3D 10 Rasterizer 131795786273929786 0x7ffac84f0000 299008 C:\Windows\System32\DataExchange.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation Data exchange 131795786272872598 0x7ffac8810000 45056 C:\Windows\System32\winnsi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Network Store Information RPC interface 131795786273944650 0x7ffac88a0000 2842624 C:\Windows\System32\d3d11.dll 10.0.14393.953 (rs1_release_inmarket.170303-1614) Microsoft Corporation Direct3D 11 Runtime 131795786264741964 0x7ffac90b0000 90112 C:\Windows\System32\wkscli.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Workstation Service Client DLL 131795786270826076 0x7ffac92e0000 1269760 C:\Windows\System32\WinTypes.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL основных типов Windows 131795786277530830 0x7ffaca570000 421888 C:\Windows\System32\BCP47Langs.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation BCP47 Language Classes 131795786273013365 0x7ffaca5e0000 155648 C:\Windows\System32\dwmapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Интерфейс API диспетчера окон рабочего стола (Майкрософт) 131795786276389583 0x7ffaca640000 770048 C:\Windows\System32\CoreMessaging.dll 10.0.14393.0 Microsoft Corporation Microsoft CoreMessaging Dll 131795786273968562 0x7ffaca770000 1380352 C:\Windows\System32\dcomp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft DirectComposition Library 131795786261792794 0x7ffacadf0000 499712 C:\Windows\System32\apphelp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиентская библиотека совместимости приложений 131795786269891965 0x7ffacaf00000 610304 C:\Windows\System32\uxtheme.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека тем UxTheme (Microsoft) 131795786273053460 0x7ffacb140000 593920 C:\Windows\System32\msvcp110_win.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Microsoft® STL110 C++ Runtime Library 131795786267733064 0x7ffacb1e0000 1163264 C:\Windows\System32\twinapi.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation twinapi.appcore 131795786275464402 0x7ffacb3d0000 110592 C:\Windows\System32\ResourcePolicyClient.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Resource Policy Client 131795786267710124 0x7ffacb420000 204800 C:\Windows\System32\ntmarta.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик Windows NT MARTA 131795786273983354 0x7ffacb780000 651264 C:\Windows\System32\dxgi.dll 10.0.14393.953 (rs1_release_inmarket.170303-1614) Microsoft Corporation DirectX Graphics Infrastructure 131795786272383802 0x7ffacbd30000 229376 C:\Windows\System32\IPHLPAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API вспомогательного приложения IP 131795786264728389 0x7ffacbe20000 53248 C:\Windows\System32\netutils.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API Helpers DLL 131795786267723907 0x7ffacbe40000 126976 C:\Windows\System32\userenv.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Userenv 131795786272853268 0x7ffacbfb0000 376832 C:\Windows\System32\mswsock.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширение поставщика службы API Microsoft Windows Sockets 2.0 131795786270815412 0x7ffacc150000 94208 C:\Windows\System32\cryptsp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Cryptographic Service Provider API 131795786271801017 0x7ffacc350000 180224 C:\Windows\System32\sspicli.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Security Support Provider Interface 131795786264754931 0x7ffacc620000 176128 C:\Windows\System32\bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795786262716363 0x7ffacc6e0000 61440 C:\Windows\System32\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795786262713703 0x7ffacc6f0000 311296 C:\Windows\System32\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795786262717336 0x7ffacc740000 81920 C:\Windows\System32\profapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Profile Basic API 131795786262708096 0x7ffacc770000 1572864 C:\Windows\System32\gdi32full.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation GDI Client DLL 131795786262103806 0x7ffacc8f0000 1003520 C:\Windows\System32\ucrtbase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795786262104662 0x7ffacc9f0000 434176 C:\Windows\System32\bcryptprimitives.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Cryptographic Primitives Library 131795786262706569 0x7ffacca60000 122880 C:\Windows\System32\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795786262105460 0x7ffacca80000 348160 C:\Windows\System32\wintrust.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation Microsoft Trust Verification APIs 131795786262102390 0x7ffaccae0000 692224 C:\Windows\System32\SHCore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795786262712493 0x7ffaccb90000 7180288 C:\Windows\System32\windows.storage.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API хранения Microsoft WinRT 131795786261162555 0x7ffacd270000 2215936 C:\Windows\System32\KernelBase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795786262106757 0x7ffacd490000 1871872 C:\Windows\System32\crypt32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API32 криптографии 131795786262720644 0x7ffacd710000 638976 C:\Windows\System32\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795786262711177 0x7ffacd7b0000 270336 C:\Windows\System32\cfgmgr32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Configuration Manager DLL 131795786262709636 0x7ffacd810000 22056960 C:\Windows\System32\shell32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Общая библиотека оболочки Windows 131795786262719660 0x7ffaced20000 782336 C:\Windows\System32\oleaut32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795786262101329 0x7ffacee50000 1183744 C:\Windows\System32\rpcrt4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795786272873296 0x7ffacef80000 32768 C:\Windows\System32\nsi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation NSI User-mode interface DLL 131795786262099282 0x7ffacef90000 647168 C:\Windows\System32\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795786261161608 0x7ffacf0d0000 704512 C:\Windows\System32\kernel32.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795786273020851 0x7ffacf1e0000 1417216 C:\Windows\System32\msctf.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Серверная библиотека MSCTF 131795786262707345 0x7ffacf770000 212992 C:\Windows\System32\gdi32.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation GDI Client DLL 131795786263695399 0x7ffacf820000 434176 C:\Windows\System32\ws2_32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation 32-разрядная библиотека Windows Socket 2.0 131795786264820388 0x7ffacf890000 188416 C:\Windows\System32\imm32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Multi-User Windows IMM32 API Client DLL 131795786262705735 0x7ffacf8c0000 1462272 C:\Windows\System32\user32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795786262103125 0x7ffacfb30000 2916352 C:\Windows\System32\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795786262721852 0x7ffacfe00000 114688 C:\Windows\System32\imagehlp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT Image Helper 131795786262098445 0x7ffacfe20000 663552 C:\Windows\System32\advapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795786262718386 0x7ffad0070000 1277952 C:\Windows\System32\ole32.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft OLE для Windows 131795786262715028 0x7ffad01b0000 335872 C:\Windows\System32\shlwapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека небольших программ оболочки 131795786262100531 0x7ffad0210000 364544 C:\Windows\System32\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795786260846246 0x7ffad0270000 1908736 C:\Windows\System32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 175 5516 664 6 00000000:0031f1da 131795786458574348 131795786668714812 0 0 Обязательная метка\Средний обязательный уровень WIN-0UOTFKKVN1S\User DllHost.exe C:\Windows\SysWOW64\DllHost.exe C:\Windows\SysWOW64\DllHost.exe /Processid:{53362C32-A296-4F2D-A2F8-FD984D08340B} Microsoft Corporation 10.0.14393.0 (rs1_release.160715-1616) COM Surrogate 131795786458625739 0x1c0000 28672 C:\Windows\SysWOW64\dllhost.exe 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation COM Surrogate 131795786458812497 0x28a0000 1462272 C:\Windows\System32\user32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795786458802018 0x5c020000 335872 C:\Windows\System32\wow64.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation Win32 Emulation on NT64 131795786458803135 0x5c080000 487424 C:\Windows\System32\wow64win.dll 10.0.14393.1884 (rs1_release.171101-1233) Microsoft Corporation Wow64 Console and Win32 API Logging 131795786459187647 0x5c100000 40960 C:\Windows\System32\wow64cpu.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation AMD64 Wow64 CPU 131795786464828747 0x60750000 1556480 C:\Program Files (x86)\360\Total Security\safemon\safemon.dll 8, 4, 0, 1420 Qihu 360 Software Co., Ltd. 360 Internet Security Internet Protection 131795786471755242 0x6cda0000 528384 C:\Windows\SysWOW64\sxs.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Fusion 2.5 131795786467292564 0x705e0000 344064 C:\Windows\SysWOW64\oleacc.dll 7.2.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Active Accessibility Core Component 131795786465884399 0x70ca0000 45056 C:\Windows\SysWOW64\netutils.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API Helpers DLL 131795786465896468 0x70cb0000 65536 C:\Windows\SysWOW64\wkscli.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Workstation Service Client DLL 131795786465871513 0x71140000 77824 C:\Windows\SysWOW64\netapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API DLL 131795786475201135 0x72510000 32768 C:\Windows\SysWOW64\oleacchooks.dll 7.2.14393.0 (rs1_release.160715-1616) Microsoft Corporation Active Accessibility Event Hooks Library 131795786464811068 0x74110000 479232 C:\Windows\SysWOW64\uxtheme.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека тем UxTheme (Microsoft) 131795786465908090 0x74190000 110592 C:\Windows\SysWOW64\bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795786465859315 0x746e0000 32768 C:\Windows\SysWOW64\version.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Version Checking and File Installation Libraries 131795786460206704 0x747d0000 40960 C:\Windows\SysWOW64\cryptbase.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base cryptographic API DLL 131795786460205088 0x747e0000 126976 C:\Windows\SysWOW64\sspicli.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Security Support Provider Interface 131795786464695607 0x74800000 151552 C:\Windows\SysWOW64\imm32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Multi-User Windows IMM32 API Client DLL 131795786460203002 0x74910000 2170880 C:\Windows\SysWOW64\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795786461511851 0x74b30000 53248 C:\Windows\SysWOW64\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795786460204080 0x74b60000 790528 C:\Windows\SysWOW64\rpcrt4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795786464171982 0x74c30000 1417216 C:\Windows\SysWOW64\gdi32full.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation GDI Client DLL 131795786465839162 0x74d90000 24576 C:\Windows\SysWOW64\psapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Process Status Helper 131795786461513544 0x74da0000 778240 C:\Windows\SysWOW64\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795786465833280 0x74e60000 557056 C:\Windows\SysWOW64\SHCore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795786461526166 0x74ef0000 540672 C:\Windows\SysWOW64\clbcatq.dll 2001.12.10941.16384 (rs1_release.160715-1616) Microsoft Corporation COM+ Configuration Catalog 131795786465840162 0x74fd0000 405504 C:\Windows\SysWOW64\ws2_32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation 32-разрядная библиотека Windows Socket 2.0 131795786465830817 0x75040000 282624 C:\Windows\SysWOW64\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795786460190404 0x751e0000 1708032 C:\Windows\SysWOW64\KernelBase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795786460954334 0x75390000 266240 C:\Windows\SysWOW64\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795786465573379 0x75560000 487424 C:\Windows\SysWOW64\advapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795786465829008 0x756c0000 5693440 C:\Windows\SysWOW64\windows.storage.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API хранения Microsoft WinRT 131795786465832041 0x75c90000 286720 C:\Windows\SysWOW64\shlwapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека небольших программ оболочки 131795786465577964 0x75ce0000 20811776 C:\Windows\SysWOW64\shell32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Общая библиотека оболочки Windows 131795786464044290 0x774d0000 86016 C:\Windows\SysWOW64\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795786465834482 0x774f0000 61440 C:\Windows\SysWOW64\profapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Profile Basic API 131795786464043149 0x77560000 1437696 C:\Windows\SysWOW64\user32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795786460952558 0x776c0000 368640 C:\Windows\SysWOW64\bcryptprimitives.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation Windows Cryptographic Primitives Library 131795786465838059 0x77780000 503808 C:\Windows\SysWOW64\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795786465836920 0x77800000 606208 C:\Windows\SysWOW64\oleaut32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795786465835671 0x77ac0000 966656 C:\Windows\SysWOW64\ole32.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft OLE для Windows 131795786464045523 0x77bb0000 176128 C:\Windows\SysWOW64\gdi32.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation GDI Client DLL 131795786465579325 0x77cd0000 221184 C:\Windows\SysWOW64\cfgmgr32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Configuration Manager DLL 131795786458626282 0x77d20000 1585152 C:\Windows\SysWOW64\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 131795786458626030 0x7ffad0270000 1908736 C:\Windows\System32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 176 10132 664 6 00000000:0031f1da 131795786476963161 131795786539225053 0 0 Обязательная метка\Средний обязательный уровень WIN-0UOTFKKVN1S\User DllHost.exe C:\Windows\SysWOW64\DllHost.exe C:\Windows\SysWOW64\DllHost.exe /Processid:{60A90A2F-858D-42AF-8929-82BE9D99E8A1} Microsoft Corporation 10.0.14393.0 (rs1_release.160715-1616) COM Surrogate 131795786477001176 0x1c0000 28672 C:\Windows\SysWOW64\dllhost.exe 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation COM Surrogate 131795786478398121 0x2d30000 1462272 C:\Windows\System32\user32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795786478389241 0x5c020000 335872 C:\Windows\System32\wow64.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation Win32 Emulation on NT64 131795786478390127 0x5c080000 487424 C:\Windows\System32\wow64win.dll 10.0.14393.1884 (rs1_release.171101-1233) Microsoft Corporation Wow64 Console and Win32 API Logging 131795786478400908 0x5c100000 40960 C:\Windows\System32\wow64cpu.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation AMD64 Wow64 CPU 131795786480674311 0x60750000 1556480 C:\Program Files (x86)\360\Total Security\safemon\safemon.dll 8, 4, 0, 1420 Qihu 360 Software Co., Ltd. 360 Internet Security Internet Protection 131795786482887456 0x6c5c0000 1384448 C:\Windows\SysWOW64\UIAutomationCore.dll 7.2.14393.0 (rs1_release.160715-1616) Microsoft Corporation Основные автоматические компоненты Microsoft UI 131795786483144498 0x6cda0000 528384 C:\Windows\SysWOW64\sxs.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Fusion 2.5 131795786480744805 0x70ca0000 45056 C:\Windows\SysWOW64\netutils.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API Helpers DLL 131795786480755984 0x70cb0000 65536 C:\Windows\SysWOW64\wkscli.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Workstation Service Client DLL 131795786480732611 0x71140000 77824 C:\Windows\SysWOW64\netapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API DLL 131795786479600862 0x74110000 479232 C:\Windows\SysWOW64\uxtheme.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека тем UxTheme (Microsoft) 131795786480770108 0x74190000 110592 C:\Windows\SysWOW64\bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795786480721105 0x746e0000 32768 C:\Windows\SysWOW64\version.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Version Checking and File Installation Libraries 131795786482897187 0x746f0000 106496 C:\Windows\SysWOW64\userenv.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Userenv 131795786478425807 0x747d0000 40960 C:\Windows\SysWOW64\cryptbase.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base cryptographic API DLL 131795786478424070 0x747e0000 126976 C:\Windows\SysWOW64\sspicli.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Security Support Provider Interface 131795786479420252 0x74800000 151552 C:\Windows\SysWOW64\imm32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Multi-User Windows IMM32 API Client DLL 131795786478422103 0x74910000 2170880 C:\Windows\SysWOW64\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795786478445339 0x74b30000 53248 C:\Windows\SysWOW64\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795786478423111 0x74b60000 790528 C:\Windows\SysWOW64\rpcrt4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795786479406688 0x74c30000 1417216 C:\Windows\SysWOW64\gdi32full.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation GDI Client DLL 131795786480701271 0x74d90000 24576 C:\Windows\SysWOW64\psapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Process Status Helper 131795786478446378 0x74da0000 778240 C:\Windows\SysWOW64\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795786480695805 0x74e60000 557056 C:\Windows\SysWOW64\SHCore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795786478454213 0x74ef0000 540672 C:\Windows\SysWOW64\clbcatq.dll 2001.12.10941.16384 (rs1_release.160715-1616) Microsoft Corporation COM+ Configuration Catalog 131795786480702108 0x74fd0000 405504 C:\Windows\SysWOW64\ws2_32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation 32-разрядная библиотека Windows Socket 2.0 131795786480693547 0x75040000 282624 C:\Windows\SysWOW64\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795786478411433 0x751e0000 1708032 C:\Windows\SysWOW64\KernelBase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795786478427541 0x75390000 266240 C:\Windows\SysWOW64\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795786480678971 0x75560000 487424 C:\Windows\SysWOW64\advapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795786480692449 0x756c0000 5693440 C:\Windows\SysWOW64\windows.storage.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API хранения Microsoft WinRT 131795786480694624 0x75c90000 286720 C:\Windows\SysWOW64\shlwapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека небольших программ оболочки 131795786480682946 0x75ce0000 20811776 C:\Windows\SysWOW64\shell32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Общая библиотека оболочки Windows 131795786479404153 0x774d0000 86016 C:\Windows\SysWOW64\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795786480696852 0x774f0000 61440 C:\Windows\SysWOW64\profapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Profile Basic API 131795786479403125 0x77560000 1437696 C:\Windows\SysWOW64\user32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795786478426691 0x776c0000 368640 C:\Windows\SysWOW64\bcryptprimitives.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation Windows Cryptographic Primitives Library 131795786480700210 0x77780000 503808 C:\Windows\SysWOW64\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795786480699254 0x77800000 606208 C:\Windows\SysWOW64\oleaut32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795786480697952 0x77ac0000 966656 C:\Windows\SysWOW64\ole32.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft OLE для Windows 131795786479405386 0x77bb0000 176128 C:\Windows\SysWOW64\gdi32.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation GDI Client DLL 131795786480690377 0x77cd0000 221184 C:\Windows\SysWOW64\cfgmgr32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Configuration Manager DLL 131795786477001678 0x77d20000 1585152 C:\Windows\SysWOW64\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 131795786477001417 0x7ffad0270000 1908736 C:\Windows\System32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 177 4460 360 26 00000000:000003e5 131795786483672847 131795789552424842 0 1 Обязательная метка\Обязательный уровень системы NT AUTHORITY\LOCAL SERVICE AUDIODG.EXE C:\Windows\system32\AUDIODG.EXE C:\Windows\system32\AUDIODG.EXE 0x3c8 Microsoft Corporation 10.0.14393.0 (rs1_release.160715-1616) Изоляция графов аудиоустройств Windows 131795786483737234 0x7ff644450000 389120 C:\Windows\System32\audiodg.exe 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Изоляция графов аудиоустройств Windows 131795786489991459 0x7ffaa61f0000 1802240 C:\Windows\System32\WMALFXGFXDSP.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SysFx DSP 131795786491203172 0x7ffab02d0000 552960 C:\Windows\System32\AudioEng.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Audio Engine 131795786493632244 0x7ffab2210000 438272 C:\Windows\System32\AUDIOKSE.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Audio Ks Endpoint 131795786489315184 0x7ffab4af0000 606208 C:\Windows\System32\AudioSes.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Сеанс обработки звука 131795786491212877 0x7ffac8f90000 45056 C:\Windows\System32\avrt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Среда выполнения мультимедиа в реальном времени 131795786489374175 0x7ffac92e0000 1269760 C:\Windows\System32\WinTypes.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL основных типов Windows 131795786486995361 0x7ffac9480000 462848 C:\Windows\System32\MMDevAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation MMDevice API 131795786487023199 0x7ffaca340000 1593344 C:\Windows\System32\propsys.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Система страниц свойств (Майкрософт) 131795786487012555 0x7ffacb3f0000 163840 C:\Windows\System32\devobj.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Device Information Set DLL 131795786487110854 0x7ffacc6e0000 61440 C:\Windows\System32\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795786489316223 0x7ffacc6f0000 311296 C:\Windows\System32\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795786487130406 0x7ffacc770000 1572864 C:\Windows\System32\gdi32full.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation GDI Client DLL 131795786487013350 0x7ffacc8f0000 1003520 C:\Windows\System32\ucrtbase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795786487027890 0x7ffacc9f0000 434176 C:\Windows\System32\bcryptprimitives.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Cryptographic Primitives Library 131795786487128514 0x7ffacca60000 122880 C:\Windows\System32\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795786487028876 0x7ffaccae0000 692224 C:\Windows\System32\SHCore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795786486974715 0x7ffacd270000 2215936 C:\Windows\System32\KernelBase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795786487025610 0x7ffacd710000 638976 C:\Windows\System32\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795786487014184 0x7ffacd7b0000 270336 C:\Windows\System32\cfgmgr32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Configuration Manager DLL 131795786487024061 0x7ffaced20000 782336 C:\Windows\System32\oleaut32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795786486996225 0x7ffacee50000 1183744 C:\Windows\System32\rpcrt4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795786486983209 0x7ffacef90000 647168 C:\Windows\System32\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795786487161583 0x7ffacf030000 651264 C:\Windows\System32\clbcatq.dll 2001.12.10941.16384 (rs1_release.160715-1616) Microsoft Corporation COM+ Configuration Catalog 131795786486973739 0x7ffacf0d0000 704512 C:\Windows\System32\kernel32.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795786487129567 0x7ffacf770000 212992 C:\Windows\System32\gdi32.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation GDI Client DLL 131795786487127680 0x7ffacf8c0000 1462272 C:\Windows\System32\user32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795786487026948 0x7ffacfb30000 2916352 C:\Windows\System32\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795786486997505 0x7ffad0210000 364544 C:\Windows\System32\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795786483737473 0x7ffad0270000 1908736 C:\Windows\System32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 178 3980 3632 38 00000000:0031f1da 131795786542534038 131795787153665956 0 1 Обязательная метка\Низкий обязательный уровень WIN-0UOTFKKVN1S\User microsoftedgecp.exe C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\microsoftedgecp.exe "C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\microsoftedgecp.exe" SCODEF:4760 CREDAT:75042 /prefetch:2 Microsoft Corporation 11.00.14393.2189 (rs1_release.180329-1711) Microsoft Edge Content Process 131795786543166673 0x5bbd0000 1101824 C:\Program Files (x86)\360\Total Security\safemon\safemon64.dll 1, 0, 0, 1190 Qihu 360 Software Co., Ltd. 360 Internet Security Internet Protection 131795786543156173 0x5bce0000 28672 C:\Program Files (x86)\360\Total Security\safemon\SafeWrapper.dll 2, 0, 0, 1060 Qihu 360 Software Co., Ltd. 360 Internet Security Internet Protection 131795786543023139 0x7ff6405a0000 106496 C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe 11.00.14393.2189 (rs1_release.180329-1711) Microsoft Corporation Microsoft Edge Content Process 131795786544668949 0x7ffaafb30000 3379200 C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\EdgeContent.dll 11.00.14393.2189 (rs1_release.180329-1711) Microsoft Corporation Microsoft Edge Content 131795786547134753 0x7ffab0430000 1662976 C:\Windows\System32\ieapfltr.dll 11.00.14393.2189 Microsoft Corporation Microsoft SmartScreen Filter 131795786546099229 0x7ffab2c00000 8179712 C:\Windows\System32\Chakra.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft ® Chakra (Private) 131795786546132872 0x7ffab33d0000 258048 C:\Windows\System32\mlang.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL многоязыковой поддержки 131795786546086736 0x7ffab3540000 22740992 C:\Windows\System32\edgehtml.dll 11.00.14393.447 (rs1_release_inmarket.161102-0100) Microsoft Corporation Веб-платформа Microsoft Edge 131795786545840173 0x7ffabaab0000 94208 C:\Windows\System32\profext.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation profext 131795786544284320 0x7ffababf0000 806912 C:\Program Files (x86)\360\Total Security\safemon\spsafe64.dll 1, 0, 0, 1150 Qihu 360 Software Co., Ltd. 360 Internet Security Internet Protection 131795786546767845 0x7ffabbd10000 65536 C:\Windows\System32\tokenbinding.dll 10.0.14393.1593 (rs1_release.170731-1934) Microsoft Corporation Token Binding Protocol 131795786544756593 0x7ffabcf30000 110592 C:\Windows\System32\mpr.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека маршрутизации для нескольких служб доступа 131795786546447893 0x7ffabf5d0000 2924544 C:\Windows\System32\wininet.dll 11.00.14393.447 (rs1_release_inmarket.161102-0100) Microsoft Corporation Расширения Интернета для Win32 131795786544441946 0x7ffac1090000 126976 C:\Program Files (x86)\360\Total Security\I18N64.dll 1, 0, 0, 1016 Qihu 360 Software Co., Ltd. 360 Total Security 131795786547370949 0x7ffac20d0000 110592 C:\Windows\System32\rmclient.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Resource Manager Client 131795786543249419 0x7ffac2700000 98304 C:\Windows\System32\netapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API DLL 131795786543235314 0x7ffac2b80000 40960 C:\Windows\System32\version.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Version Checking and File Installation Libraries 131795786547074480 0x7ffac34e0000 1843200 C:\Windows\System32\urlmon.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширения OLE32 для Win32 131795786543110293 0x7ffac3cb0000 2772992 C:\Windows\System32\iertutil.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служебная программа времени выполнения для Internet Explorer 131795786547037950 0x7ffac4000000 274432 C:\Windows\System32\policymanager.dll 10.0.14393.2035 (rs1_release_inmarket.180110-1910) Microsoft Corporation Policy Manager DLL 131795786544742430 0x7ffac4b70000 122880 C:\Windows\System32\eShims.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Edge Compatibility Shims 131795786546808750 0x7ffac66a0000 86016 C:\Windows\System32\OnDemandConnRouteHelper.dll 10.0.14393.351 (rs1_release_inmarket.161014-1755) Microsoft Corporation On Demand Connctiond Route Helper 131795786546837985 0x7ffac69c0000 839680 C:\Windows\System32\winhttp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Службы HTTP Windows 131795786547008646 0x7ffac8810000 45056 C:\Windows\System32\winnsi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Network Store Information RPC interface 131795786543281081 0x7ffac90b0000 90112 C:\Windows\System32\wkscli.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Workstation Service Client DLL 131795786546121243 0x7ffac92e0000 1269760 C:\Windows\System32\WinTypes.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL основных типов Windows 131795786547103227 0x7ffaca5e0000 155648 C:\Windows\System32\dwmapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Интерфейс API диспетчера окон рабочего стола (Майкрософт) 131795786543050856 0x7ffacadf0000 499712 C:\Windows\System32\apphelp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиентская библиотека совместимости приложений 131795786545377082 0x7ffacaf00000 610304 C:\Windows\System32\uxtheme.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека тем UxTheme (Microsoft) 131795786547051625 0x7ffacb140000 593920 C:\Windows\System32\msvcp110_win.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Microsoft® STL110 C++ Runtime Library 131795786544707036 0x7ffacb1e0000 1163264 C:\Windows\System32\twinapi.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation twinapi.appcore 131795786544683494 0x7ffacb420000 204800 C:\Windows\System32\ntmarta.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик Windows NT MARTA 131795786546820375 0x7ffacbd30000 229376 C:\Windows\System32\IPHLPAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API вспомогательного приложения IP 131795786543266200 0x7ffacbe20000 53248 C:\Windows\System32\netutils.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API Helpers DLL 131795786544697655 0x7ffacbe40000 126976 C:\Windows\System32\userenv.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Userenv 131795786546988052 0x7ffacbfb0000 376832 C:\Windows\System32\mswsock.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширение поставщика службы API Microsoft Windows Sockets 2.0 131795786546108435 0x7ffacc150000 94208 C:\Windows\System32\cryptsp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Cryptographic Service Provider API 131795786546466846 0x7ffacc350000 180224 C:\Windows\System32\sspicli.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Security Support Provider Interface 131795786543295712 0x7ffacc620000 176128 C:\Windows\System32\bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795786543199419 0x7ffacc6e0000 61440 C:\Windows\System32\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795786543196715 0x7ffacc6f0000 311296 C:\Windows\System32\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795786543200430 0x7ffacc740000 81920 C:\Windows\System32\profapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Profile Basic API 131795786543170597 0x7ffacc770000 1572864 C:\Windows\System32\gdi32full.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation GDI Client DLL 131795786543084116 0x7ffacc8f0000 1003520 C:\Windows\System32\ucrtbase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795786543085632 0x7ffacc9f0000 434176 C:\Windows\System32\bcryptprimitives.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Cryptographic Primitives Library 131795786543168463 0x7ffacca60000 122880 C:\Windows\System32\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795786543086449 0x7ffacca80000 348160 C:\Windows\System32\wintrust.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation Microsoft Trust Verification APIs 131795786543082543 0x7ffaccae0000 692224 C:\Windows\System32\SHCore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795786543195302 0x7ffaccb90000 7180288 C:\Windows\System32\windows.storage.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API хранения Microsoft WinRT 131795786543031329 0x7ffacd270000 2215936 C:\Windows\System32\KernelBase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795786543087768 0x7ffacd490000 1871872 C:\Windows\System32\crypt32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API32 криптографии 131795786543204245 0x7ffacd710000 638976 C:\Windows\System32\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795786543193930 0x7ffacd7b0000 270336 C:\Windows\System32\cfgmgr32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Configuration Manager DLL 131795786543172173 0x7ffacd810000 22056960 C:\Windows\System32\shell32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Общая библиотека оболочки Windows 131795786543203070 0x7ffaced20000 782336 C:\Windows\System32\oleaut32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795786543081398 0x7ffacee50000 1183744 C:\Windows\System32\rpcrt4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795786547009355 0x7ffacef80000 32768 C:\Windows\System32\nsi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation NSI User-mode interface DLL 131795786543079163 0x7ffacef90000 647168 C:\Windows\System32\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795786543030185 0x7ffacf0d0000 704512 C:\Windows\System32\kernel32.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795786547109372 0x7ffacf1e0000 1417216 C:\Windows\System32\msctf.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Серверная библиотека MSCTF 131795786543169353 0x7ffacf770000 212992 C:\Windows\System32\gdi32.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation GDI Client DLL 131795786543206414 0x7ffacf820000 434176 C:\Windows\System32\ws2_32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation 32-разрядная библиотека Windows Socket 2.0 131795786543310277 0x7ffacf890000 188416 C:\Windows\System32\imm32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Multi-User Windows IMM32 API Client DLL 131795786543167391 0x7ffacf8c0000 1462272 C:\Windows\System32\user32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795786543083335 0x7ffacfb30000 2916352 C:\Windows\System32\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795786543205475 0x7ffacfe00000 114688 C:\Windows\System32\imagehlp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT Image Helper 131795786543078284 0x7ffacfe20000 663552 C:\Windows\System32\advapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795786543201502 0x7ffad0070000 1277952 C:\Windows\System32\ole32.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft OLE для Windows 131795786543198161 0x7ffad01b0000 335872 C:\Windows\System32\shlwapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека небольших программ оболочки 131795786543080673 0x7ffad0210000 364544 C:\Windows\System32\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795786543023544 0x7ffad0270000 1908736 C:\Windows\System32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 179 4244 664 6 00000000:0031f1da 131795786562592500 131795786637941751 0 0 Обязательная метка\Средний обязательный уровень WIN-0UOTFKKVN1S\User DllHost.exe C:\Windows\SysWOW64\DllHost.exe C:\Windows\SysWOW64\DllHost.exe /Processid:{60A90A2F-858D-42AF-8929-82BE9D99E8A1} Microsoft Corporation 10.0.14393.0 (rs1_release.160715-1616) COM Surrogate 131795786562663462 0x1c0000 28672 C:\Windows\SysWOW64\dllhost.exe 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation COM Surrogate 131795786566149636 0x2570000 1462272 C:\Windows\System32\user32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795786566140612 0x5c020000 335872 C:\Windows\System32\wow64.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation Win32 Emulation on NT64 131795786566141510 0x5c080000 487424 C:\Windows\System32\wow64win.dll 10.0.14393.1884 (rs1_release.171101-1233) Microsoft Corporation Wow64 Console and Win32 API Logging 131795786566152332 0x5c100000 40960 C:\Windows\System32\wow64cpu.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation AMD64 Wow64 CPU 131795786566701565 0x60750000 1556480 C:\Program Files (x86)\360\Total Security\safemon\safemon.dll 8, 4, 0, 1420 Qihu 360 Software Co., Ltd. 360 Internet Security Internet Protection 131795786566985276 0x6c5c0000 1384448 C:\Windows\SysWOW64\UIAutomationCore.dll 7.2.14393.0 (rs1_release.160715-1616) Microsoft Corporation Основные автоматические компоненты Microsoft UI 131795786567016478 0x6cda0000 528384 C:\Windows\SysWOW64\sxs.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Fusion 2.5 131795786566774423 0x70ca0000 45056 C:\Windows\SysWOW64\netutils.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API Helpers DLL 131795786566785906 0x70cb0000 65536 C:\Windows\SysWOW64\wkscli.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Workstation Service Client DLL 131795786566761847 0x71140000 77824 C:\Windows\SysWOW64\netapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API DLL 131795786566608422 0x74110000 479232 C:\Windows\SysWOW64\uxtheme.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека тем UxTheme (Microsoft) 131795786566797077 0x74190000 110592 C:\Windows\SysWOW64\bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795786566749632 0x746e0000 32768 C:\Windows\SysWOW64\version.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Version Checking and File Installation Libraries 131795786566994350 0x746f0000 106496 C:\Windows\SysWOW64\userenv.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Userenv 131795786566177367 0x747d0000 40960 C:\Windows\SysWOW64\cryptbase.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base cryptographic API DLL 131795786566175458 0x747e0000 126976 C:\Windows\SysWOW64\sspicli.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Security Support Provider Interface 131795786566570216 0x74800000 151552 C:\Windows\SysWOW64\imm32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Multi-User Windows IMM32 API Client DLL 131795786566173446 0x74910000 2170880 C:\Windows\SysWOW64\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795786566196561 0x74b30000 53248 C:\Windows\SysWOW64\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795786566174491 0x74b60000 790528 C:\Windows\SysWOW64\rpcrt4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795786566555155 0x74c30000 1417216 C:\Windows\SysWOW64\gdi32full.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation GDI Client DLL 131795786566724982 0x74d90000 24576 C:\Windows\SysWOW64\psapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Process Status Helper 131795786566197606 0x74da0000 778240 C:\Windows\SysWOW64\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795786566719272 0x74e60000 557056 C:\Windows\SysWOW64\SHCore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795786566206211 0x74ef0000 540672 C:\Windows\SysWOW64\clbcatq.dll 2001.12.10941.16384 (rs1_release.160715-1616) Microsoft Corporation COM+ Configuration Catalog 131795786566725849 0x74fd0000 405504 C:\Windows\SysWOW64\ws2_32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation 32-разрядная библиотека Windows Socket 2.0 131795786566716931 0x75040000 282624 C:\Windows\SysWOW64\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795786566162375 0x751e0000 1708032 C:\Windows\SysWOW64\KernelBase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795786566179145 0x75390000 266240 C:\Windows\SysWOW64\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795786566705915 0x75560000 487424 C:\Windows\SysWOW64\advapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795786566713044 0x756c0000 5693440 C:\Windows\SysWOW64\windows.storage.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API хранения Microsoft WinRT 131795786566718069 0x75c90000 286720 C:\Windows\SysWOW64\shlwapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека небольших программ оболочки 131795786566709979 0x75ce0000 20811776 C:\Windows\SysWOW64\shell32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Общая библиотека оболочки Windows 131795786566552722 0x774d0000 86016 C:\Windows\SysWOW64\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795786566720344 0x774f0000 61440 C:\Windows\SysWOW64\profapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Profile Basic API 131795786566551478 0x77560000 1437696 C:\Windows\SysWOW64\user32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795786566178270 0x776c0000 368640 C:\Windows\SysWOW64\bcryptprimitives.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation Windows Cryptographic Primitives Library 131795786566723865 0x77780000 503808 C:\Windows\SysWOW64\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795786566722849 0x77800000 606208 C:\Windows\SysWOW64\oleaut32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795786566721499 0x77ac0000 966656 C:\Windows\SysWOW64\ole32.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft OLE для Windows 131795786566554011 0x77bb0000 176128 C:\Windows\SysWOW64\gdi32.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation GDI Client DLL 131795786566711273 0x77cd0000 221184 C:\Windows\SysWOW64\cfgmgr32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Configuration Manager DLL 131795786562664241 0x77d20000 1585152 C:\Windows\SysWOW64\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 131795786562663905 0x7ffad0270000 1908736 C:\Windows\System32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 1 11372 10560 2 00000000:0031f1ab 131795770632346846 0 0 1 Обязательная метка\Высокий обязательный уровень WIN-0UOTFKKVN1S\User Procmon64.exe C:\Users\User\AppData\Local\Temp\Procmon64.exe "C:\Users\User\AppData\Local\Temp\Procmon64.exe" /originalpath "C:\Users\User\Downloads\ProcessMonitor\Procmon.exe" Sysinternals - www.sysinternals.com 3.50 Process Monitor 131795770645297135 0x7ff7ed960000 1224704 C:\Users\User\AppData\Local\Temp\Procmon64.exe 3.50 Sysinternals - www.sysinternals.com Process Monitor 131795770645297135 0x7ffac2b80000 40960 C:\Windows\SYSTEM32\VERSION.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Version Checking and File Installation Libraries 131795770645297135 0x7ffac3270000 40960 C:\Windows\SYSTEM32\FLTLIB.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека фильтров 131795770645297135 0x7ffac5630000 339968 C:\Windows\System32\thumbcache.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Кэш эскизов Майкрософт 131795770645297135 0x7ffac6c40000 2596864 C:\Windows\WinSxS\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.14393.953_none_42151e83c686086b\COMCTL32.dll 6.10 (rs1_release_inmarket.170303-1614) Microsoft Corporation Библиотека элементов управления взаимодействия с пользователем 131795770645297135 0x7ffac84f0000 299008 C:\Windows\system32\dataexchange.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation Data exchange 131795770645297135 0x7ffac88a0000 2842624 C:\Windows\system32\d3d11.dll 10.0.14393.953 (rs1_release_inmarket.170303-1614) Microsoft Corporation Direct3D 11 Runtime 131795770645297135 0x7ffac8df0000 1646592 C:\Windows\SYSTEM32\dbghelp.dll 10.0.14321.1024 (rs1_release.160715-1616) Microsoft Windows Image Helper 131795770645297135 0x7ffac9f50000 1736704 C:\Windows\SYSTEM32\WindowsCodecs.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Microsoft Windows Codecs Library 131795770645297135 0x7ffaca340000 1593344 C:\Windows\SYSTEM32\PROPSYS.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Система страниц свойств (Майкрософт) 131795770645297135 0x7ffaca5e0000 155648 C:\Windows\SYSTEM32\dwmapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Интерфейс API диспетчера окон рабочего стола (Майкрософт) 131795770645297135 0x7ffaca770000 1380352 C:\Windows\system32\dcomp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft DirectComposition Library 131795770645297135 0x7ffacadf0000 499712 C:\Windows\system32\apphelp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиентская библиотека совместимости приложений 131795770645297135 0x7ffacaf00000 610304 C:\Windows\SYSTEM32\uxtheme.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека тем UxTheme (Microsoft) 131795770645297135 0x7ffacb1e0000 1163264 C:\Windows\system32\twinapi.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation twinapi.appcore 131795770645297135 0x7ffacb780000 651264 C:\Windows\system32\dxgi.dll 10.0.14393.953 (rs1_release_inmarket.170303-1614) Microsoft Corporation DirectX Graphics Infrastructure 131795770645297135 0x7ffacc620000 176128 C:\Windows\system32\bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795770645297135 0x7ffacc6e0000 61440 C:\Windows\System32\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795770645297135 0x7ffacc6f0000 311296 C:\Windows\System32\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795770645297135 0x7ffacc740000 81920 C:\Windows\System32\profapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Profile Basic API 131795770645297135 0x7ffacc8f0000 1003520 C:\Windows\System32\ucrtbase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645297135 0x7ffacc9f0000 434176 C:\Windows\System32\bcryptPrimitives.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Cryptographic Primitives Library 131795770645297135 0x7ffacca60000 122880 C:\Windows\System32\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795770645297135 0x7ffaccae0000 692224 C:\Windows\System32\shcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795770645297135 0x7ffaccb90000 7180288 C:\Windows\System32\windows.storage.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API хранения Microsoft WinRT 131795770645297135 0x7ffacd270000 2215936 C:\Windows\System32\KERNELBASE.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645297135 0x7ffacd710000 638976 C:\Windows\System32\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645297135 0x7ffacd7b0000 270336 C:\Windows\System32\cfgmgr32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Configuration Manager DLL 131795770645297135 0x7ffacd810000 22056960 C:\Windows\System32\SHELL32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Общая библиотека оболочки Windows 131795770645297135 0x7ffaced20000 782336 C:\Windows\System32\OLEAUT32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795770645297135 0x7ffacee50000 1183744 C:\Windows\System32\RPCRT4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795770645297135 0x7ffacef90000 647168 C:\Windows\System32\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795770645297135 0x7ffacf030000 651264 C:\Windows\System32\clbcatq.dll 2001.12.10941.16384 (rs1_release.160715-1616) Microsoft Corporation COM+ Configuration Catalog 131795770645297135 0x7ffacf0d0000 704512 C:\Windows\System32\KERNEL32.DLL 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645297135 0x7ffacf1e0000 1417216 C:\Windows\System32\MSCTF.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Серверная библиотека MSCTF 131795770645297135 0x7ffacf770000 212992 C:\Windows\System32\GDI32.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation GDI Client DLL 131795770645297135 0x7ffacf820000 434176 C:\Windows\System32\WS2_32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation 32-разрядная библиотека Windows Socket 2.0 131795770645297135 0x7ffacf890000 188416 C:\Windows\System32\IMM32.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Multi-User Windows IMM32 API Client DLL 131795770645297135 0x7ffacf8c0000 1462272 C:\Windows\System32\USER32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795770645297135 0x7ffacfa30000 1024000 C:\Windows\System32\COMDLG32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека общих диалоговых окон 131795770645297135 0x7ffacfb30000 2916352 C:\Windows\System32\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795770645297135 0x7ffacfe20000 663552 C:\Windows\System32\advapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795770645297135 0x7ffad0070000 1277952 C:\Windows\System32\ole32.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft OLE для Windows 131795770645297135 0x7ffad01b0000 335872 C:\Windows\System32\SHLWAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека небольших программ оболочки 131795770645297135 0x7ffad0210000 364544 C:\Windows\System32\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795770645297135 0x7ffad0270000 1908736 C:\Windows\SYSTEM32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 2 10560 3108 11 00000000:0031f1ab 131795770594566098 0 0 0 Обязательная метка\Высокий обязательный уровень WIN-0UOTFKKVN1S\User Procmon.exe C:\Users\User\Downloads\ProcessMonitor\Procmon.exe "C:\Users\User\Downloads\ProcessMonitor\Procmon.exe" Sysinternals - www.sysinternals.com 3.50 Process Monitor 131795770645662037 0x1000000 2191360 C:\Users\User\Downloads\ProcessMonitor\Procmon.exe 3.50 Sysinternals - www.sysinternals.com Process Monitor 131795770645662037 0x5c020000 335872 C:\Windows\System32\wow64.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation Win32 Emulation on NT64 131795770645662037 0x5c080000 487424 C:\Windows\System32\wow64win.dll 10.0.14393.1884 (rs1_release.171101-1233) Microsoft Corporation Wow64 Console and Win32 API Logging 131795770645662037 0x5c100000 40960 C:\Windows\System32\wow64cpu.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation AMD64 Wow64 CPU 131795770645662037 0x60750000 1556480 C:\Program Files (x86)\360\Total Security\safemon\safemon.dll 8, 4, 0, 1420 Qihu 360 Software Co., Ltd. 360 Internet Security Internet Protection 131795770645662037 0x62530000 65536 C:\Windows\SysWOW64\DEVRTL.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Device Management Run Time Library 131795770645662037 0x627d0000 249856 C:\Windows\SysWOW64\edputil.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служебная программа EDP 131795770645662037 0x67690000 61440 C:\Windows\SysWOW64\sfc_os.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows File Protection 131795770645662037 0x676b0000 32768 C:\Windows\SysWOW64\FLTLIB.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека фильтров 131795770645662037 0x6dd70000 528384 C:\Windows\SysWOW64\RICHED20.dll 5.31.23.1231 Microsoft Corporation Rich Text Edit Control, v3.1 131795770645662037 0x6e710000 335872 C:\Windows\SysWOW64\Bcp47Langs.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation BCP47 Language Classes 131795770645662037 0x70a20000 94208 C:\Windows\SysWOW64\USP10.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Uniscribe Unicode script processor 131795770645662037 0x70ca0000 45056 C:\Windows\SysWOW64\NETUTILS.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API Helpers DLL 131795770645662037 0x70cb0000 65536 C:\Windows\SysWOW64\WKSCLI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Workstation Service Client DLL 131795770645662037 0x70cd0000 49152 C:\Windows\SysWOW64\pcacli.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Program Compatibility Assistant Client Module 131795770645662037 0x70ec0000 200704 C:\Windows\SysWOW64\msls31.dll 3.10.349.0 Microsoft Corporation Microsoft Line Services library file 131795770645662037 0x71140000 77824 C:\Windows\SysWOW64\NETAPI32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API DLL 131795770645662037 0x72520000 24576 C:\Windows\SysWOW64\Riched32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Wrapper Dll for Richedit 1.0 131795770645662037 0x725e0000 2273280 C:\Windows\SysWOW64\iertutil.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служебная программа времени выполнения для Internet Explorer 131795770645662037 0x728e0000 1372160 C:\Windows\SysWOW64\PROPSYS.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Система страниц свойств (Майкрософт) 131795770645662037 0x72b90000 126976 C:\Windows\SysWOW64\dwmapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Интерфейс API диспетчера окон рабочего стола (Майкрософт) 131795770645662037 0x72cc0000 1658880 C:\Windows\SysWOW64\urlmon.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширения OLE32 для Win32 131795770645662037 0x74110000 479232 C:\Windows\SysWOW64\uxtheme.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека тем UxTheme (Microsoft) 131795770645662037 0x74190000 110592 C:\Windows\SysWOW64\bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795770645662037 0x744d0000 2138112 C:\Windows\WinSxS\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.14393.953_none_89c2555adb023171\COMCTL32.dll 6.10 (rs1_release_inmarket.170303-1614) Microsoft Corporation Библиотека элементов управления взаимодействия с пользователем 131795770645662037 0x746e0000 32768 C:\Windows\SysWOW64\VERSION.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Version Checking and File Installation Libraries 131795770645662037 0x746f0000 106496 C:\Windows\SysWOW64\USERENV.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Userenv 131795770645662037 0x74710000 90112 C:\Windows\SysWOW64\MPR.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека маршрутизации для нескольких служб доступа 131795770645662037 0x74730000 598016 C:\Windows\SysWOW64\apphelp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиентская библиотека совместимости приложений 131795770645662037 0x747d0000 40960 C:\Windows\SysWOW64\CRYPTBASE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base cryptographic API DLL 131795770645662037 0x747e0000 126976 C:\Windows\SysWOW64\SspiCli.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Security Support Provider Interface 131795770645662037 0x74800000 151552 C:\Windows\SysWOW64\IMM32.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Multi-User Windows IMM32 API Client DLL 131795770645662037 0x74910000 2170880 C:\Windows\SysWOW64\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795770645662037 0x74b30000 53248 C:\Windows\SysWOW64\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795770645662037 0x74b60000 790528 C:\Windows\SysWOW64\RPCRT4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795770645662037 0x74c30000 1417216 C:\Windows\SysWOW64\gdi32full.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation GDI Client DLL 131795770645662037 0x74d90000 24576 C:\Windows\SysWOW64\PSAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Process Status Helper 131795770645662037 0x74da0000 778240 C:\Windows\SysWOW64\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795770645662037 0x74e60000 557056 C:\Windows\SysWOW64\shcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795770645662037 0x74ef0000 540672 C:\Windows\SysWOW64\clbcatq.dll 2001.12.10941.16384 (rs1_release.160715-1616) Microsoft Corporation COM+ Configuration Catalog 131795770645662037 0x74fd0000 405504 C:\Windows\SysWOW64\WS2_32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation 32-разрядная библиотека Windows Socket 2.0 131795770645662037 0x75040000 282624 C:\Windows\SysWOW64\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795770645662037 0x75090000 1265664 C:\Windows\SysWOW64\MSCTF.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Серверная библиотека MSCTF 131795770645662037 0x751e0000 1708032 C:\Windows\SysWOW64\KERNELBASE.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645662037 0x75390000 266240 C:\Windows\SysWOW64\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795770645662037 0x75560000 487424 C:\Windows\SysWOW64\advapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795770645662037 0x756c0000 5693440 C:\Windows\SysWOW64\windows.storage.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API хранения Microsoft WinRT 131795770645662037 0x75c90000 286720 C:\Windows\SysWOW64\SHLWAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека небольших программ оболочки 131795770645662037 0x75ce0000 20811776 C:\Windows\SysWOW64\SHELL32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Общая библиотека оболочки Windows 131795770645662037 0x770c0000 4239360 C:\Windows\SysWOW64\SETUPAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Setup API 131795770645662037 0x774d0000 86016 C:\Windows\SysWOW64\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795770645662037 0x774f0000 61440 C:\Windows\SysWOW64\profapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Profile Basic API 131795770645662037 0x77560000 1437696 C:\Windows\SysWOW64\USER32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795770645662037 0x776c0000 368640 C:\Windows\SysWOW64\bcryptPrimitives.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation Windows Cryptographic Primitives Library 131795770645662037 0x77780000 503808 C:\Windows\SysWOW64\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645662037 0x77800000 606208 C:\Windows\SysWOW64\OLEAUT32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795770645662037 0x77ac0000 966656 C:\Windows\SysWOW64\ole32.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft OLE для Windows 131795770645662037 0x77bb0000 176128 C:\Windows\SysWOW64\GDI32.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation GDI Client DLL 131795770645662037 0x77be0000 937984 C:\Windows\SysWOW64\COMDLG32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека общих диалоговых окон 131795770645662037 0x77cd0000 221184 C:\Windows\SysWOW64\cfgmgr32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Configuration Manager DLL 131795770645662037 0x77d20000 1585152 C:\Windows\SysWOW64\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 131795770645662037 0x7ffad0270000 1908736 C:\Windows\SYSTEM32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 3 4048 580 4 00000000:000003e7 131765778109600457 0 0 1 Обязательная метка\Обязательный уровень системы NT AUTHORITY\СИСТЕМА SearchIndexer.exe C:\Windows\system32\SearchIndexer.exe C:\Windows\system32\SearchIndexer.exe /Embedding Microsoft Corporation 7.0.14393.0 (rs1_release.160715-1616) Индексатор службы Microsoft Windows Search 131795770645302950 0x7ff63db40000 929792 C:\Windows\system32\SearchIndexer.exe 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Индексатор службы Microsoft Windows Search 131795770645302950 0x7ffab1fd0000 2277376 C:\Windows\System32\msxml3.dll 8.110.14393.1532 Microsoft Corporation MSXML 3.0 131795770645302950 0x7ffab4b90000 655360 C:\Windows\System32\StructuredQuery.dll 7.0.14393.2068 (rs1_release.180209-1727) Microsoft Corporation Structured Query 131795770645302950 0x7ffab7780000 2576384 C:\Windows\system32\MSSRCH.DLL 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Встроенный поиск (Майкрософт) 131795770645302950 0x7ffab7a00000 3424256 C:\Windows\system32\TQUERY.DLL 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Запросы Microsoft Tripoli 131795770645302950 0x7ffabd990000 720896 C:\Windows\system32\ElsLad.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ELS Language Detection 131795770645302950 0x7ffabe4d0000 286720 C:\Windows\System32\MSWB7.dll 10.0.14393.1737 (rs1_release_inmarket.170914-1249) Microsoft Corporation MSWB7 DLL 131795770645302950 0x7ffabf010000 98304 C:\Windows\SYSTEM32\elscore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL ядра платформы Els 131795770645302950 0x7ffac0bf0000 3559424 C:\Windows\System32\ActXPrxy.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation ActiveX Interface Marshaling Library 131795770645302950 0x7ffac2960000 143360 C:\Windows\system32\mssprxy.dll 7.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation Microsoft Search Proxy 131795770645302950 0x7ffac34c0000 81920 C:\Windows\system32\vss_ps.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation Microsoft® Volume Shadow Copy Service proxy/stub 131795770645302950 0x7ffac3840000 3088384 C:\Windows\system32\ESENT.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширяемая подсистема хранения данных ESE для Microsoft(R) Windows(R) 131795770645302950 0x7ffac4000000 274432 C:\Windows\SYSTEM32\policymanager.dll 10.0.14393.2035 (rs1_release_inmarket.180110-1910) Microsoft Corporation Policy Manager DLL 131795770645302950 0x7ffac4e70000 102400 C:\Windows\system32\samcli.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Security Accounts Manager Client DLL 131795770645302950 0x7ffac6410000 98304 C:\Windows\system32\VssTrace.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека трассировки службы теневого копирования тома Microsoft® 131795770645302950 0x7ffac6430000 1581056 C:\Windows\SYSTEM32\vssapi.dll 10.0.14393.953 (rs1_release_inmarket.170303-1614) Microsoft Corporation Microsoft® Volume Shadow Copy Requestor/Writer Services API DLL 131795770645302950 0x7ffac7e40000 28672 C:\Windows\system32\Msidle.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Idle Monitor 131795770645302950 0x7ffac9bb0000 479232 C:\Windows\System32\ES.DLL 2001.12.10941.16384 (rs1_release.160715-1616) Microsoft Corporation COM+ 131795770645302950 0x7ffaca340000 1593344 C:\Windows\system32\propsys.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Система страниц свойств (Майкрософт) 131795770645302950 0x7ffaca4e0000 77824 C:\Windows\SYSTEM32\wtsapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Remote Desktop Session Host Server SDK APIs 131795770645302950 0x7ffaca570000 421888 C:\Windows\system32\Bcp47Langs.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation BCP47 Language Classes 131795770645302950 0x7ffaca610000 143360 C:\Windows\system32\SAMLIB.dll 10.0.14393.82 (rs1_release.160805-1735) Microsoft Corporation SAM Library DLL 131795770645302950 0x7ffacb140000 593920 C:\Windows\system32\msvcp110_win.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Microsoft® STL110 C++ Runtime Library 131795770645302950 0x7ffacb3f0000 163840 C:\Windows\system32\DEVOBJ.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Device Information Set DLL 131795770645302950 0x7ffacb420000 204800 C:\Windows\SYSTEM32\ntmarta.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик Windows NT MARTA 131795770645302950 0x7ffacbe20000 53248 C:\Windows\system32\netutils.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API Helpers DLL 131795770645302950 0x7ffacbe40000 126976 C:\Windows\system32\USERENV.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Userenv 131795770645302950 0x7ffacc170000 45056 C:\Windows\system32\CRYPTBASE.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base cryptographic API DLL 131795770645302950 0x7ffacc350000 180224 C:\Windows\system32\sspicli.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Security Support Provider Interface 131795770645302950 0x7ffacc520000 622592 C:\Windows\SYSTEM32\sxs.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Fusion 2.5 131795770645302950 0x7ffacc5c0000 352256 C:\Windows\system32\WINSTA.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Winstation Library 131795770645302950 0x7ffacc620000 176128 C:\Windows\System32\bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795770645302950 0x7ffacc6e0000 61440 C:\Windows\System32\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795770645302950 0x7ffacc6f0000 311296 C:\Windows\System32\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795770645302950 0x7ffacc740000 81920 C:\Windows\System32\profapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Profile Basic API 131795770645302950 0x7ffacc8f0000 1003520 C:\Windows\System32\ucrtbase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645302950 0x7ffacc9f0000 434176 C:\Windows\System32\bcryptPrimitives.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Cryptographic Primitives Library 131795770645302950 0x7ffacca60000 122880 C:\Windows\System32\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795770645302950 0x7ffaccae0000 692224 C:\Windows\System32\shcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795770645302950 0x7ffaccb90000 7180288 C:\Windows\System32\Windows.Storage.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API хранения Microsoft WinRT 131795770645302950 0x7ffacd270000 2215936 C:\Windows\System32\KERNELBASE.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645302950 0x7ffacd710000 638976 C:\Windows\System32\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645302950 0x7ffacd7b0000 270336 C:\Windows\System32\cfgmgr32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Configuration Manager DLL 131795770645302950 0x7ffaced20000 782336 C:\Windows\System32\OLEAUT32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795770645302950 0x7ffacee50000 1183744 C:\Windows\System32\RPCRT4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795770645302950 0x7ffacef90000 647168 C:\Windows\System32\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795770645302950 0x7ffacf030000 651264 C:\Windows\System32\clbcatq.dll 2001.12.10941.16384 (rs1_release.160715-1616) Microsoft Corporation COM+ Configuration Catalog 131795770645302950 0x7ffacf0d0000 704512 C:\Windows\System32\KERNEL32.DLL 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645302950 0x7ffacf770000 212992 C:\Windows\System32\GDI32.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation GDI Client DLL 131795770645302950 0x7ffacf820000 434176 C:\Windows\System32\WS2_32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation 32-разрядная библиотека Windows Socket 2.0 131795770645302950 0x7ffacf8c0000 1462272 C:\Windows\System32\USER32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795770645302950 0x7ffacfb30000 2916352 C:\Windows\System32\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795770645302950 0x7ffacfe20000 663552 C:\Windows\System32\advapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795770645302950 0x7ffad0070000 1277952 C:\Windows\System32\ole32.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft OLE для Windows 131795770645302950 0x7ffad01b0000 335872 C:\Windows\System32\shlwapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека небольших программ оболочки 131795770645302950 0x7ffad0210000 364544 C:\Windows\System32\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795770645302950 0x7ffad0270000 1908736 C:\Windows\SYSTEM32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 4 580 484 17 00000000:000003e7 131765776275984299 0 0 1 Обязательная метка\Обязательный уровень системы NT AUTHORITY\СИСТЕМА services.exe C:\Windows\system32\services.exe C:\Windows\system32\services.exe Microsoft Corporation 10.0.14393.0 (rs1_release.160715-1616) Приложение служб и контроллеров 6 664 580 4 00000000:000003e7 131765776282506625 0 0 1 Обязательная метка\Обязательный уровень системы NT AUTHORITY\СИСТЕМА svchost.exe C:\Windows\system32\svchost.exe C:\Windows\system32\svchost.exe -k DcomLaunch Microsoft Corporation 10.0.14393.0 (rs1_release.160715-1616) Хост-процесс для служб Windows 131795770645375819 0x7ff718c20000 57344 C:\Windows\system32\svchost.exe 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Хост-процесс для служб Windows 131795770645375819 0x7ffabae40000 110592 C:\Windows\SYSTEM32\capauthz.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API авторизации возможностей 131795770645375819 0x7ffabc510000 90112 C:\Windows\system32\execmodelproxy.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ExecModelProxy 131795770645375819 0x7ffabc570000 94208 C:\Windows\SYSTEM32\licensemanagerapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation "LicenseManagerApi.DYNLINK" 131795770645375819 0x7ffabc6a0000 61440 C:\Windows\system32\SebBackgroundManagerPolicy.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation <d> SEB Background Manager Policy DLL 131795770645375819 0x7ffabc7e0000 73728 C:\Windows\system32\SmartCardBackgroundPolicy.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SmartCardBackgroundPolicy 131795770645375819 0x7ffabc8c0000 61440 C:\Windows\system32\CbtBackgroundManagerPolicy.dll 10.0.14393.479 (rs1_release.161110-2025) Microsoft Corporation <d> CBT Background Manager Policy DLL 131795770645375819 0x7ffabc8d0000 176128 C:\Windows\System32\ACPBackgroundManagerPolicy.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation <d> ACP Background Manager Policy DLL 131795770645375819 0x7ffabc900000 73728 C:\Windows\System32\BackgroundMediaPolicy.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation <d> Background Media Policy DLL 131795770645375819 0x7ffabc920000 270336 C:\Windows\SYSTEM32\execmodelclient.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation ExecModelClient 131795770645375819 0x7ffac0bf0000 3559424 C:\Windows\System32\ActXPrxy.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation ActiveX Interface Marshaling Library 131795770645375819 0x7ffac20d0000 110592 C:\Windows\system32\RmClient.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Resource Manager Client 131795770645375819 0x7ffac23c0000 331776 C:\Windows\System32\OneCoreCommonProxyStub.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation OneCore Common Proxy Stub 131795770645375819 0x7ffac42a0000 659456 C:\Windows\System32\StateRepository.Core.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation StateRepository Core 131795770645375819 0x7ffac4450000 86016 C:\Windows\SYSTEM32\usermgrcli.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation UserMgr API DLL 131795770645375819 0x7ffac46d0000 4161536 C:\Windows\System32\Windows.StateRepository.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Сервер Windows StateRepository API Server 131795770645375819 0x7ffac7720000 1601536 C:\Windows\System32\OneCoreUAPCommonProxyStub.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation OneCoreUAP Common Proxy Stub 131795770645375819 0x7ffaca250000 49152 C:\Windows\SYSTEM32\bi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Background Broker Infrastructure Client Library 131795770645375819 0x7ffaca4e0000 77824 C:\Windows\SYSTEM32\wtsapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Remote Desktop Session Host Server SDK APIs 131795770645375819 0x7ffaca640000 770048 c:\windows\system32\CoreMessaging.dll 10.0.14393.0 Microsoft Corporation Microsoft CoreMessaging Dll 131795770645375819 0x7ffaca740000 135168 c:\windows\system32\DAB.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL брокера активности компьютера 131795770645375819 0x7ffacabd0000 69632 C:\Windows\System32\OnDemandBrokerClient.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation OnDemandBrokerClient 131795770645375819 0x7ffacad70000 278528 c:\windows\system32\BrokerLib.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Broker Base Library 131795770645375819 0x7ffacadf0000 499712 C:\Windows\system32\apphelp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиентская библиотека совместимости приложений 131795770645375819 0x7ffacae70000 409600 c:\windows\system32\systemeventsbrokerserver.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Брокер системных событий 131795770645375819 0x7ffacafc0000 229376 C:\Windows\SYSTEM32\resourcepolicyserver.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Resource Policy RM Service Extension 131795770645375819 0x7ffacb000000 53248 c:\windows\system32\SYSNTFY.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Windows Notifications Dynamic Link Library 131795770645375819 0x7ffacb010000 348160 C:\Windows\SYSTEM32\psmserviceexthost.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Resource Manager PSM Service Extension 131795770645375819 0x7ffacb070000 69632 C:\Windows\SYSTEM32\embeddedmodesvcapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Embedded Mode Service Client DLL 131795770645375819 0x7ffacb140000 593920 c:\windows\system32\msvcp110_win.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Microsoft® STL110 C++ Runtime Library 131795770645375819 0x7ffacb1e0000 1163264 C:\Windows\SYSTEM32\twinapi.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation twinapi.appcore 131795770645375819 0x7ffacb300000 364544 c:\windows\system32\VEEventDispatcher.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Visual Element Event dispatcher 131795770645375819 0x7ffacb390000 225280 c:\windows\system32\psmsrv.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Process State Manager (PSM) Service 131795770645375819 0x7ffacb3d0000 110592 c:\windows\system32\ResourcePolicyClient.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Resource Policy Client 131795770645375819 0x7ffacb3f0000 163840 c:\windows\system32\DEVOBJ.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Device Information Set DLL 131795770645375819 0x7ffacb420000 204800 C:\Windows\SYSTEM32\ntmarta.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик Windows NT MARTA 131795770645375819 0x7ffacb4f0000 794624 c:\windows\system32\bisrv.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служба инфраструктуры фоновых задач 131795770645375819 0x7ffacb5c0000 913408 c:\windows\system32\rpcss.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Distributed COM Services 131795770645375819 0x7ffacb6e0000 49152 C:\Windows\SYSTEM32\HID.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека пользователя HID 131795770645375819 0x7ffacb6f0000 143360 C:\Windows\SYSTEM32\gpapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиентские функции API групповой политики 131795770645375819 0x7ffacb720000 344064 c:\windows\system32\mintdh.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Вспомогательная библиотека трассировки событий 131795770645375819 0x7ffacb780000 651264 c:\windows\system32\dxgi.dll 10.0.14393.953 (rs1_release_inmarket.170303-1614) Microsoft Corporation DirectX Graphics Infrastructure 131795770645375819 0x7ffacb820000 712704 C:\Windows\SYSTEM32\tdh.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Вспомогательная библиотека трассировки событий 131795770645375819 0x7ffacb8d0000 114688 C:\Windows\SYSTEM32\umpoext.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширения службы пользовательского режима питания 131795770645375819 0x7ffacb8f0000 147456 c:\windows\system32\umpo.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служба пользовательского режима питания 131795770645375819 0x7ffacb920000 81920 C:\Windows\SYSTEM32\WLDP.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Политика блокировки Windows 131795770645375819 0x7ffacb940000 131072 c:\windows\system32\umpnpmgr.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Пользовательский режим службы самонастройки (Plug-and-Play) 131795770645375819 0x7ffacbbb0000 208896 C:\Windows\system32\rsaenh.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Enhanced Cryptographic Provider 131795770645375819 0x7ffacbbf0000 40960 C:\Windows\SYSTEM32\DPAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Data Protection API 131795770645375819 0x7ffacbe40000 126976 C:\Windows\System32\Userenv.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Userenv 131795770645375819 0x7ffacc150000 94208 C:\Windows\SYSTEM32\CRYPTSP.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Cryptographic Service Provider API 131795770645375819 0x7ffacc170000 45056 C:\Windows\System32\CRYPTBASE.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base cryptographic API DLL 131795770645375819 0x7ffacc350000 180224 c:\windows\system32\SspiCli.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Security Support Provider Interface 131795770645375819 0x7ffacc500000 102400 c:\windows\system32\EventAggregation.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Event Aggregation User Mode Library 131795770645375819 0x7ffacc5c0000 352256 C:\Windows\SYSTEM32\WINSTA.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Winstation Library 131795770645375819 0x7ffacc620000 176128 c:\windows\system32\bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795770645375819 0x7ffacc6e0000 61440 C:\Windows\System32\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795770645375819 0x7ffacc6f0000 311296 C:\Windows\System32\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795770645375819 0x7ffacc740000 81920 C:\Windows\System32\profapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Profile Basic API 131795770645375819 0x7ffacc760000 65536 C:\Windows\System32\MSASN1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ASN.1 Runtime APIs 131795770645375819 0x7ffacc8f0000 1003520 C:\Windows\System32\ucrtbase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645375819 0x7ffacc9f0000 434176 C:\Windows\System32\bcryptPrimitives.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Cryptographic Primitives Library 131795770645375819 0x7ffacca60000 122880 C:\Windows\System32\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795770645375819 0x7ffacca80000 348160 C:\Windows\System32\WINTRUST.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation Microsoft Trust Verification APIs 131795770645375819 0x7ffaccae0000 692224 C:\Windows\System32\shcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795770645375819 0x7ffaccb90000 7180288 C:\Windows\System32\windows.storage.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API хранения Microsoft WinRT 131795770645375819 0x7ffacd270000 2215936 C:\Windows\System32\KERNELBASE.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645375819 0x7ffacd490000 1871872 C:\Windows\System32\CRYPT32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API32 криптографии 131795770645375819 0x7ffacd710000 638976 C:\Windows\System32\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645375819 0x7ffacd7b0000 270336 C:\Windows\System32\cfgmgr32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Configuration Manager DLL 131795770645375819 0x7ffaced20000 782336 C:\Windows\System32\OLEAUT32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795770645375819 0x7ffacede0000 450560 C:\Windows\System32\coml2.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft COM for Windows 131795770645375819 0x7ffacee50000 1183744 C:\Windows\System32\RPCRT4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795770645375819 0x7ffacef90000 647168 C:\Windows\System32\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795770645375819 0x7ffacf030000 651264 C:\Windows\System32\clbcatq.dll 2001.12.10941.16384 (rs1_release.160715-1616) Microsoft Corporation COM+ Configuration Catalog 131795770645375819 0x7ffacf0d0000 704512 C:\Windows\System32\KERNEL32.DLL 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645375819 0x7ffacf770000 212992 C:\Windows\System32\gdi32.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation GDI Client DLL 131795770645375819 0x7ffacf8c0000 1462272 C:\Windows\System32\USER32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795770645375819 0x7ffacfb30000 2916352 C:\Windows\System32\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795770645375819 0x7ffacfe20000 663552 C:\Windows\System32\advapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795770645375819 0x7ffad0070000 1277952 C:\Windows\System32\ole32.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft OLE для Windows 131795770645375819 0x7ffad01b0000 335872 C:\Windows\System32\shlwapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека небольших программ оболочки 131795770645375819 0x7ffad0210000 364544 C:\Windows\System32\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795770645375819 0x7ffad0270000 1908736 C:\Windows\SYSTEM32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 7 884 580 4 00000000:000003e5 131765776292813936 0 0 1 Обязательная метка\Обязательный уровень системы NT AUTHORITY\LOCAL SERVICE svchost.exe C:\Windows\System32\svchost.exe C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted Microsoft Corporation 10.0.14393.0 (rs1_release.160715-1616) Хост-процесс для служб Windows 131795770645326170 0x7ff718c20000 57344 C:\Windows\System32\svchost.exe 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Хост-процесс для служб Windows 131795770645326170 0x7ffab9230000 143360 C:\Windows\SYSTEM32\bluetoothapis.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Bluetooth Usermode Api host 131795770645326170 0x7ffab9580000 118784 C:\Windows\system32\BthRadioMedia.dll 10.0.14393.351 (rs1_release_inmarket.161014-1755) Microsoft Corporation Bluetooth Radio Media Provider 131795770645326170 0x7ffab95a0000 77824 C:\Windows\system32\WlanRadioManager.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Wlan Radio Manager 131795770645326170 0x7ffaba920000 155648 c:\windows\system32\rmapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Radio Manager API 131795770645326170 0x7ffabae80000 69632 C:\Windows\system32\NfcRadioMedia.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation NFC Radio Media Provider 131795770645326170 0x7ffabb8a0000 81920 C:\Windows\system32\XboxGipRadioManager.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Xbox GIP Radio Manager 131795770645326170 0x7ffabc0e0000 81920 C:\Windows\system32\WwanRadioManager.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Wwan Radio Manager 131795770645326170 0x7ffabc510000 90112 C:\Windows\system32\execmodelproxy.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ExecModelProxy 131795770645326170 0x7ffabe850000 155648 C:\Windows\System32\IDStore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Identity Store 131795770645326170 0x7ffac05f0000 94208 C:\Windows\SYSTEM32\wwapi.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation WWAN API 131795770645326170 0x7ffac0bf0000 3559424 C:\Windows\System32\ActXPrxy.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation ActiveX Interface Marshaling Library 131795770645326170 0x7ffac1fd0000 999424 C:\Windows\system32\wbem\fastprox.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation WMI Custom Marshaller 131795770645326170 0x7ffac21d0000 81920 C:\Windows\system32\wbem\wbemsvc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation WMI 131795770645326170 0x7ffac23c0000 331776 C:\Windows\System32\OneCoreCommonProxyStub.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation OneCore Common Proxy Stub 131795770645326170 0x7ffac41a0000 77824 C:\Windows\System32\fdproxy.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation Function Discovery Proxy Dll 131795770645326170 0x7ffac4220000 520192 C:\Windows\SYSTEM32\wbemcomn.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation WMI 131795770645326170 0x7ffac4450000 86016 C:\Windows\SYSTEM32\usermgrcli.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation UserMgr API DLL 131795770645326170 0x7ffac4470000 65536 C:\Windows\system32\wbem\wbemprox.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation WMI 131795770645326170 0x7ffac4df0000 462848 c:\windows\system32\provsvc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Домашняя группа Windows 131795770645326170 0x7ffac60e0000 221184 C:\Windows\System32\XmlLite.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft XmlLite Library 131795770645326170 0x7ffac6710000 172032 C:\Windows\System32\FunDisc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL обнаружения функции 131795770645326170 0x7ffac69c0000 839680 c:\windows\system32\WINHTTP.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Службы HTTP Windows 131795770645326170 0x7ffac78c0000 163840 C:\Windows\System32\shacct.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Shell Accounts Classes 131795770645326170 0x7ffac79c0000 57344 C:\Windows\System32\npmproxy.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Network List Manager Proxy 131795770645326170 0x7ffac7aa0000 401408 C:\Windows\system32\wlanapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows WLAN AutoConfig Client Side API DLL 131795770645326170 0x7ffac7f80000 208896 c:\windows\system32\wscsvc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служба центра обеспечения безопасности Windows 131795770645326170 0x7ffac83d0000 106496 C:\Windows\SYSTEM32\dhcpcsvc.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служба DHCP-клиента 131795770645326170 0x7ffac83f0000 90112 C:\Windows\SYSTEM32\dhcpcsvc6.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиент DHCPv6 131795770645326170 0x7ffac8490000 294912 C:\Windows\System32\dhcpcore6.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиент DHCPv6 131795770645326170 0x7ffac8810000 45056 C:\Windows\SYSTEM32\WINNSI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Network Store Information RPC interface 131795770645326170 0x7ffac8c90000 385024 c:\windows\system32\dhcpcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служба DHCP-клиента 131795770645326170 0x7ffac8df0000 1646592 c:\windows\system32\dbghelp.dll 10.0.14321.1024 (rs1_release.160715-1616) Microsoft Windows Image Helper 131795770645326170 0x7ffac9c30000 1732608 c:\windows\system32\wevtsvc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служба протоколирования событий 131795770645326170 0x7ffaca250000 49152 C:\Windows\SYSTEM32\bi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Background Broker Infrastructure Client Library 131795770645326170 0x7ffaca2a0000 192512 c:\windows\system32\timebrokerserver.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Брокер событий времени 131795770645326170 0x7ffaca330000 36864 c:\windows\system32\nrpsrv.DLL 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Name Resolution Proxy (NRP) RPC interface 131795770645326170 0x7ffaca340000 1593344 C:\Windows\system32\propsys.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Система страниц свойств (Майкрософт) 131795770645326170 0x7ffaca4d0000 53248 c:\windows\system32\lmhsvc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL служб транспорта TCPIP NetBios 131795770645326170 0x7ffaca4e0000 77824 C:\Windows\SYSTEM32\wtsapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Remote Desktop Session Host Server SDK APIs 131795770645326170 0x7ffaca610000 143360 C:\Windows\System32\SAMLIB.dll 10.0.14393.82 (rs1_release.160805-1735) Microsoft Corporation SAM Library DLL 131795770645326170 0x7ffacad70000 278528 c:\windows\system32\BrokerLib.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Broker Base Library 131795770645326170 0x7ffacb1e0000 1163264 C:\Windows\System32\twinapi.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation twinapi.appcore 131795770645326170 0x7ffacb360000 176128 C:\Windows\SYSTEM32\fwbase.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Firewall Base DLL 131795770645326170 0x7ffacb3f0000 163840 c:\windows\system32\DEVOBJ.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Device Information Set DLL 131795770645326170 0x7ffacb420000 204800 C:\Windows\SYSTEM32\ntmarta.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик Windows NT MARTA 131795770645326170 0x7ffacb460000 548864 C:\Windows\SYSTEM32\firewallapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API брандмауэра Windows 131795770645326170 0x7ffacb6e0000 49152 c:\windows\system32\HID.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека пользователя HID 131795770645326170 0x7ffacb6f0000 143360 C:\Windows\SYSTEM32\gpapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиентские функции API групповой политики 131795770645326170 0x7ffacb920000 81920 C:\Windows\SYSTEM32\WLDP.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Политика блокировки Windows 131795770645326170 0x7ffacbbb0000 208896 C:\Windows\system32\rsaenh.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Enhanced Cryptographic Provider 131795770645326170 0x7ffacbd30000 229376 C:\Windows\SYSTEM32\IPHLPAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API вспомогательного приложения IP 131795770645326170 0x7ffacbd70000 659456 C:\Windows\SYSTEM32\DNSAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Динамическая библиотека API DNS-клиента 131795770645326170 0x7ffacbe20000 53248 c:\windows\system32\netutils.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API Helpers DLL 131795770645326170 0x7ffacbe40000 126976 c:\windows\system32\USERENV.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Userenv 131795770645326170 0x7ffacbfb0000 376832 C:\Windows\system32\mswsock.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширение поставщика службы API Microsoft Windows Sockets 2.0 131795770645326170 0x7ffacc150000 94208 C:\Windows\SYSTEM32\CRYPTSP.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Cryptographic Service Provider API 131795770645326170 0x7ffacc170000 45056 C:\Windows\SYSTEM32\CRYPTBASE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base cryptographic API DLL 131795770645326170 0x7ffacc350000 180224 C:\Windows\System32\sspicli.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Security Support Provider Interface 131795770645326170 0x7ffacc5c0000 352256 C:\Windows\SYSTEM32\WINSTA.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Winstation Library 131795770645326170 0x7ffacc620000 176128 c:\windows\system32\bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795770645326170 0x7ffacc6e0000 61440 C:\Windows\System32\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795770645326170 0x7ffacc6f0000 311296 C:\Windows\System32\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795770645326170 0x7ffacc740000 81920 C:\Windows\System32\profapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Profile Basic API 131795770645326170 0x7ffacc760000 65536 C:\Windows\System32\MSASN1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ASN.1 Runtime APIs 131795770645326170 0x7ffacc8f0000 1003520 C:\Windows\System32\ucrtbase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645326170 0x7ffacc9f0000 434176 C:\Windows\System32\bcryptPrimitives.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Cryptographic Primitives Library 131795770645326170 0x7ffacca60000 122880 C:\Windows\System32\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795770645326170 0x7ffacca80000 348160 C:\Windows\System32\WINTRUST.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation Microsoft Trust Verification APIs 131795770645326170 0x7ffaccae0000 692224 C:\Windows\System32\shcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795770645326170 0x7ffacd270000 2215936 C:\Windows\System32\KERNELBASE.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645326170 0x7ffacd490000 1871872 C:\Windows\System32\CRYPT32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API32 криптографии 131795770645326170 0x7ffacd710000 638976 C:\Windows\System32\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645326170 0x7ffacd7b0000 270336 C:\Windows\System32\cfgmgr32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Configuration Manager DLL 131795770645326170 0x7ffaced20000 782336 C:\Windows\System32\OLEAUT32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795770645326170 0x7ffacede0000 450560 C:\Windows\System32\coml2.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft COM for Windows 131795770645326170 0x7ffacee50000 1183744 C:\Windows\System32\RPCRT4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795770645326170 0x7ffacef80000 32768 C:\Windows\System32\NSI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation NSI User-mode interface DLL 131795770645326170 0x7ffacef90000 647168 C:\Windows\System32\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795770645326170 0x7ffacf030000 651264 C:\Windows\System32\clbcatq.dll 2001.12.10941.16384 (rs1_release.160715-1616) Microsoft Corporation COM+ Configuration Catalog 131795770645326170 0x7ffacf0d0000 704512 C:\Windows\System32\KERNEL32.DLL 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645326170 0x7ffacf770000 212992 C:\Windows\System32\GDI32.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation GDI Client DLL 131795770645326170 0x7ffacf820000 434176 C:\Windows\System32\WS2_32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation 32-разрядная библиотека Windows Socket 2.0 131795770645326170 0x7ffacf8c0000 1462272 C:\Windows\System32\user32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795770645326170 0x7ffacfb30000 2916352 C:\Windows\System32\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795770645326170 0x7ffacfe00000 114688 C:\Windows\System32\imagehlp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT Image Helper 131795770645326170 0x7ffacfe20000 663552 C:\Windows\System32\ADVAPI32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795770645326170 0x7ffad0070000 1277952 C:\Windows\System32\ole32.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft OLE для Windows 131795770645326170 0x7ffad0210000 364544 C:\Windows\System32\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795770645326170 0x7ffad0270000 1908736 C:\Windows\SYSTEM32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 8 0 0 8 00000000:00000000 131765775874898587 0 4294967295 1 Idle Idle 131795770645349496 0x7ff7ed960000 1224704 C:\Users\User\AppData\Local\Temp\Procmon64.exe 3.50 Sysinternals - www.sysinternals.com Process Monitor 131795770645349496 0x7ffac1fd0000 999424 C:\Windows\system32\wbem\fastprox.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation WMI Custom Marshaller 131795770645349496 0x7ffac21d0000 81920 C:\Windows\system32\wbem\wbemsvc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation WMI 131795770645349496 0x7ffac2b80000 40960 C:\Windows\SYSTEM32\VERSION.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Version Checking and File Installation Libraries 131795770645349496 0x7ffac3270000 40960 C:\Windows\SYSTEM32\FLTLIB.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека фильтров 131795770645349496 0x7ffac4220000 520192 C:\Windows\SYSTEM32\wbemcomn.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation WMI 131795770645349496 0x7ffac4470000 65536 C:\Windows\system32\wbem\wbemprox.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation WMI 131795770645349496 0x7ffac5630000 339968 C:\Windows\System32\thumbcache.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Кэш эскизов Майкрософт 131795770645349496 0x7ffac6c40000 2596864 C:\Windows\WinSxS\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.14393.953_none_42151e83c686086b\COMCTL32.dll 6.10 (rs1_release_inmarket.170303-1614) Microsoft Corporation Библиотека элементов управления взаимодействия с пользователем 131795770645349496 0x7ffac84f0000 299008 C:\Windows\system32\dataexchange.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation Data exchange 131795770645349496 0x7ffac88a0000 2842624 C:\Windows\system32\d3d11.dll 10.0.14393.953 (rs1_release_inmarket.170303-1614) Microsoft Corporation Direct3D 11 Runtime 131795770645349496 0x7ffac8df0000 1646592 C:\Windows\SYSTEM32\dbghelp.dll 10.0.14321.1024 (rs1_release.160715-1616) Microsoft Windows Image Helper 131795770645349496 0x7ffac9f50000 1736704 C:\Windows\SYSTEM32\WindowsCodecs.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Microsoft Windows Codecs Library 131795770645349496 0x7ffaca340000 1593344 C:\Windows\SYSTEM32\PROPSYS.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Система страниц свойств (Майкрософт) 131795770645349496 0x7ffaca5e0000 155648 C:\Windows\SYSTEM32\dwmapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Интерфейс API диспетчера окон рабочего стола (Майкрософт) 131795770645349496 0x7ffaca770000 1380352 C:\Windows\system32\dcomp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft DirectComposition Library 131795770645349496 0x7ffacadf0000 499712 C:\Windows\system32\apphelp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиентская библиотека совместимости приложений 131795770645349496 0x7ffacaf00000 610304 C:\Windows\SYSTEM32\uxtheme.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека тем UxTheme (Microsoft) 131795770645349496 0x7ffacb1e0000 1163264 C:\Windows\system32\twinapi.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation twinapi.appcore 131795770645349496 0x7ffacb780000 651264 C:\Windows\system32\dxgi.dll 10.0.14393.953 (rs1_release_inmarket.170303-1614) Microsoft Corporation DirectX Graphics Infrastructure 131795770645349496 0x7ffacc620000 176128 C:\Windows\system32\bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795770645349496 0x7ffacc6e0000 61440 C:\Windows\System32\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795770645349496 0x7ffacc6f0000 311296 C:\Windows\System32\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795770645349496 0x7ffacc740000 81920 C:\Windows\System32\profapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Profile Basic API 131795770645349496 0x7ffacc8f0000 1003520 C:\Windows\System32\ucrtbase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645349496 0x7ffacc9f0000 434176 C:\Windows\System32\bcryptPrimitives.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Cryptographic Primitives Library 131795770645349496 0x7ffacca60000 122880 C:\Windows\System32\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795770645349496 0x7ffaccae0000 692224 C:\Windows\System32\shcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795770645349496 0x7ffaccb90000 7180288 C:\Windows\System32\windows.storage.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API хранения Microsoft WinRT 131795770645349496 0x7ffacd270000 2215936 C:\Windows\System32\KERNELBASE.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645349496 0x7ffacd710000 638976 C:\Windows\System32\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645349496 0x7ffacd7b0000 270336 C:\Windows\System32\cfgmgr32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Configuration Manager DLL 131795770645349496 0x7ffacd810000 22056960 C:\Windows\System32\SHELL32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Общая библиотека оболочки Windows 131795770645349496 0x7ffaced20000 782336 C:\Windows\System32\OLEAUT32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795770645349496 0x7ffacee50000 1183744 C:\Windows\System32\RPCRT4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795770645349496 0x7ffacef90000 647168 C:\Windows\System32\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795770645349496 0x7ffacf030000 651264 C:\Windows\System32\clbcatq.dll 2001.12.10941.16384 (rs1_release.160715-1616) Microsoft Corporation COM+ Configuration Catalog 131795770645349496 0x7ffacf0d0000 704512 C:\Windows\System32\KERNEL32.DLL 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645349496 0x7ffacf1e0000 1417216 C:\Windows\System32\MSCTF.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Серверная библиотека MSCTF 131795770645349496 0x7ffacf770000 212992 C:\Windows\System32\GDI32.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation GDI Client DLL 131795770645349496 0x7ffacf820000 434176 C:\Windows\System32\WS2_32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation 32-разрядная библиотека Windows Socket 2.0 131795770645349496 0x7ffacf890000 188416 C:\Windows\System32\IMM32.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Multi-User Windows IMM32 API Client DLL 131795770645349496 0x7ffacf8c0000 1462272 C:\Windows\System32\USER32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795770645349496 0x7ffacfa30000 1024000 C:\Windows\System32\COMDLG32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека общих диалоговых окон 131795770645349496 0x7ffacfb30000 2916352 C:\Windows\System32\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795770645349496 0x7ffacfe20000 663552 C:\Windows\System32\advapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795770645349496 0x7ffad0070000 1277952 C:\Windows\System32\ole32.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft OLE для Windows 131795770645349496 0x7ffad01b0000 335872 C:\Windows\System32\SHLWAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека небольших программ оболочки 131795770645349496 0x7ffad0210000 364544 C:\Windows\System32\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795770645349496 0x7ffad0270000 1908736 C:\Windows\SYSTEM32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 9 4 0 8 00000000:000003e7 131765775907178738 0 0 1 Обязательная метка\Обязательный уровень системы NT AUTHORITY\СИСТЕМА System System 131795770645349720 0xffffc709b6e00000 3698688 C:\Windows\System32\win32kfull.sys 10.0.14393.2189 (rs1_release.180329-1711) Microsoft Corporation Full/Desktop Win32k Kernel Driver 131795770645349720 0xffffc709b7190000 1576960 C:\Windows\System32\win32kbase.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Базовый драйвер ядра Win32k 131795770645349720 0xffffc709b7320000 40960 C:\Windows\System32\TSDDD.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Framebuffer Display Driver 131795770645349720 0xffffc709b7330000 258048 C:\Windows\System32\cdd.dll 10.0.14393.2189 (rs1_release.180329-1711) Microsoft Corporation Canonical Display Driver 131795770645349720 0xffffc709b74a0000 241664 C:\Windows\System32\win32k.sys 10.0.14393.594 (rs1_release_inmarket.161213-1754) Microsoft Corporation Full/Desktop Multi-User Win32 Driver 131795770645349720 0xfffff80278934000 45056 C:\Windows\system32\kd.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Local Kernel Debugger 131795770645349720 0xfffff80279678000 8527872 C:\Windows\system32\ntoskrnl.exe 10.0.14393.2189 (rs1_release.180329-1711) Microsoft Corporation NT Kernel & System 131795770645349720 0xfffff80d92e00000 163840 C:\Windows\System32\drivers\ksecdd.sys 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Kernel Security Support Provider Interface 131795770645349720 0xfffff80d92ee0000 53248 C:\Windows\System32\drivers\cmimcext.sys 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation Kernel Configuration Manager Initial Configuration Extension Host Export Driver 131795770645349720 0xfffff80d92ef0000 49152 C:\Windows\System32\drivers\ntosext.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation NTOS extension host driver 131795770645349720 0xfffff80d92fa0000 647168 C:\Windows\System32\drivers\cng.sys 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Kernel Cryptography, Next Generation 131795770645349720 0xfffff80d93040000 868352 C:\Windows\system32\drivers\Wdf01000.sys 1.19.14393.0 (rs1_release.160715-1616) Microsoft Corporation Среда выполнения платформы драйвера режима ядра 131795770645349720 0xfffff80d93120000 77824 C:\Windows\system32\drivers\WDFLDR.SYS 1.19.14393.0 (rs1_release.160715-1616) Microsoft Corporation Kernel Mode Driver Framework Loader 131795770645349720 0xfffff80d93140000 143360 C:\Windows\System32\Drivers\acpiex.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ACPIEx Driver 131795770645349720 0xfffff80d93170000 57344 C:\Windows\System32\Drivers\WppRecorder.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation WPP Trace Recorder 131795770645349720 0xfffff80d93180000 733184 C:\Windows\System32\drivers\ACPI.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ACPI драйвер для NT 131795770645349720 0xfffff80d93240000 49152 C:\Windows\System32\drivers\WMILIB.SYS 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation WMILIB WMI support library Dll 131795770645349720 0xfffff80d93260000 69632 C:\Windows\System32\drivers\intelpep.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Intel Power Engine Plugin 131795770645349720 0xfffff80d93280000 126976 C:\Windows\system32\drivers\WindowsTrustedRT.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Trusted Runtime Interface Driver 131795770645349720 0xfffff80d932a0000 45056 C:\Windows\System32\drivers\WindowsTrustedRTProxy.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Trusted Runtime Service Proxy Driver 131795770645349720 0xfffff80d932b0000 73728 C:\Windows\System32\drivers\pcw.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Performance Counters for Windows Driver 131795770645349720 0xfffff80d932d0000 45056 C:\Windows\System32\drivers\msisadrv.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ISA Driver 131795770645349720 0xfffff80d932e0000 45056 C:\Windows\System32\drivers\isapnp.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Драйвер шины PNP ISA 131795770645349720 0xfffff80d932f0000 356352 C:\Windows\System32\drivers\pci.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation NT Plug and Play PCI-перечислитель 131795770645349720 0xfffff80d93350000 73728 C:\Windows\System32\drivers\vdrvroot.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Virtual Drive Root Enumerator 131795770645349720 0xfffff80d93370000 135168 C:\Windows\system32\drivers\pdc.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Power Dependency Coordinator Driver 131795770645349720 0xfffff80d933a0000 102400 C:\Windows\system32\drivers\CEA.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Event Aggregation Kernel Mode Library 131795770645349720 0xfffff80d933c0000 147456 C:\Windows\System32\drivers\partmgr.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Partition driver 131795770645349720 0xfffff80d933f0000 163840 C:\Windows\System32\drivers\nvraid.sys 10.6.0.23 (PART_L3.131021-1012) NVIDIA Corporation NVIDIA® nForce(TM) RAID Driver 131795770645349720 0xfffff80d93420000 401408 C:\Windows\System32\drivers\CLASSPNP.SYS 10.0.14393.953 (rs1_release_inmarket.170303-1614) Microsoft Corporation SCSI Class System Dll 131795770645349720 0xfffff80d93490000 139264 C:\Windows\System32\drivers\vmbus.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Дочерний драйвер шины виртуальной машины Microsoft Hyper-V 131795770645349720 0xfffff80d934c0000 1212416 C:\Windows\System32\drivers\NDIS.SYS 10.0.14393.953 (rs1_release_inmarket.170303-1614) Microsoft Corporation NDIS (Network Driver Interface Specification) 131795770645349720 0xfffff80d935f0000 495616 C:\Windows\System32\drivers\NETIO.SYS 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Network I/O Subsystem 131795770645349720 0xfffff80d93670000 135168 C:\Windows\System32\drivers\hvsocket.sys 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Microsoft Hyper-V Socket Provider 131795770645349720 0xfffff80d936a0000 98304 C:\Windows\System32\drivers\vmbkmcl.sys 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Hyper-V VMBus KMCL 131795770645349720 0xfffff80d936c0000 57344 C:\Windows\System32\drivers\winhv.sys 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Windows Hypervisor Interface Driver 131795770645349720 0xfffff80d936d0000 40960 C:\Windows\System32\drivers\pciide.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Generic PCI IDE Bus Driver 131795770645349720 0xfffff80d936e0000 69632 C:\Windows\System32\drivers\PCIIDEX.SYS 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation PCI IDE Bus Driver Extension 131795770645349720 0xfffff80d93700000 593920 C:\Windows\System32\drivers\spaceport.sys 10.0.14393.1914 (rs1_release_inmarket.171117-1700) Microsoft Corporation Storage Spaces Driver 131795770645349720 0xfffff80d937a0000 40960 C:\Windows\System32\drivers\intelide.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Intel PCI IDE Driver 131795770645349720 0xfffff80d937b0000 98304 C:\Windows\System32\drivers\volmgr.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Драйвер диспетчера томов 131795770645349720 0xfffff80d937d0000 385024 C:\Windows\System32\drivers\volmgrx.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Драйвер расширения диспетчера томов 131795770645349720 0xfffff80d93830000 122880 C:\Windows\System32\drivers\mountmgr.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Диспетчер точек подключения 131795770645349720 0xfffff80d93850000 172032 C:\Windows\System32\drivers\nvstor.sys 10.6.0.23 (PART_L3.131021-1012) NVIDIA Corporation NVIDIA® nForce(TM) Sata Performance Driver 131795770645349720 0xfffff80d93880000 532480 C:\Windows\System32\drivers\storport.sys 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft Storage Port Driver 131795770645349720 0xfffff80d93910000 49152 C:\Windows\System32\drivers\atapi.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ATAPI IDE Miniport Driver 131795770645349720 0xfffff80d93920000 217088 C:\Windows\System32\drivers\ataport.SYS 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ATAPI Driver Extension 131795770645349720 0xfffff80d93960000 147456 C:\Windows\System32\drivers\storahci.sys 10.0.14393.2068 (rs1_release.180209-1727) Microsoft Corporation MS AHCI Storport Miniport Driver 131795770645349720 0xfffff80d93990000 102400 C:\Windows\System32\drivers\stornvme.sys 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation Microsoft NVM Express Storport Miniport Driver 131795770645349720 0xfffff80d939b0000 114688 C:\Windows\System32\drivers\EhStorClass.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Enhanced Storage Class driver for IEEE 1667 devices 131795770645349720 0xfffff80d939d0000 102400 C:\Windows\System32\drivers\fileinfo.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation FileInfo Filter Driver 131795770645349720 0xfffff80d939f0000 229376 C:\Windows\System32\Drivers\Wof.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Фильтр оверлея Windows 131795770645349720 0xfffff80d93a80000 2297856 C:\Windows\System32\Drivers\NTFS.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Драйвер файловой системы NT 131795770645349720 0xfffff80d93cc0000 57344 C:\Windows\System32\drivers\storvsc.sys 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Storage VSC Driver 131795770645349720 0xfffff80d93cd0000 53248 C:\Windows\System32\Drivers\Fs_Rec.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation File System Recognizer Driver 131795770645349720 0xfffff80d93d10000 483328 C:\Windows\System32\drivers\USBPORT.SYS 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Драйвер порта USB 1.1 и 2.0 131795770645349720 0xfffff80d93db0000 581632 C:\Windows\system32\mcupdate_GenuineIntel.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Intel Microcode Update Library 131795770645349720 0xfffff80d93e50000 405504 C:\Windows\System32\drivers\CLFS.SYS 10.0.14393.2068 (rs1_release.180209-1727) Microsoft Corporation Common Log File System Driver 131795770645349720 0xfffff80d93ec0000 151552 C:\Windows\System32\drivers\tm.sys 10.0.14393.2189 (rs1_release.180329-1711) Microsoft Corporation Kernel Transaction Manager Driver 131795770645349720 0xfffff80d93ef0000 94208 C:\Windows\system32\PSHED.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Драйвер аппаратных ошибок, специфичных для платформы 131795770645349720 0xfffff80d93f10000 49152 C:\Windows\system32\BOOTVID.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation VGA Boot Driver 131795770645349720 0xfffff80d93f20000 401408 C:\Windows\System32\drivers\FLTMGR.SYS 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Диспетчер фильтров файловых систем Майкрософт 131795770645349720 0xfffff80d93f90000 380928 C:\Windows\System32\drivers\msrpc.sys 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation Kernel Remote Procedure Call Provider 131795770645349720 0xfffff80d94000000 430080 C:\Windows\System32\drivers\fwpkclnt.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation FWP/IPsec Kernel-Mode API 131795770645349720 0xfffff80d94070000 172032 C:\Windows\System32\drivers\wfplwfs.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation WFP NDIS 6.30 Lightweight Filter Driver 131795770645349720 0xfffff80d940b0000 659456 C:\Windows\System32\DRIVERS\fvevol.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation BitLocker Drive Encryption Driver 131795770645349720 0xfffff80d94160000 45056 C:\Windows\System32\drivers\volume.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Volume driver 131795770645349720 0xfffff80d94170000 409600 C:\Windows\System32\drivers\volsnap.sys 10.0.14393.1794 (rs1_release.171008-1615) Microsoft Corporation Volume Shadow Copy driver 131795770645349720 0xfffff80d941e0000 106496 C:\Windows\System32\drivers\scmbus.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Storage Class Memory Bus Driver 131795770645349720 0xfffff80d94200000 294912 C:\Windows\System32\drivers\rdyboost.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ReadyBoost Driver 131795770645349720 0xfffff80d94250000 151552 C:\Windows\System32\Drivers\mup.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Драйвер поставщика множественных UNC 131795770645349720 0xfffff80d94280000 65536 C:\Windows\system32\drivers\iorate.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation I/O rate control Filter 131795770645349720 0xfffff80d942a0000 126976 C:\Windows\System32\drivers\disk.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation PnP Disk Driver 131795770645349720 0xfffff80d942e0000 102400 C:\Windows\System32\Drivers\crashdmp.sys 10.0.14393.351 (rs1_release_inmarket.161014-1755) Microsoft Corporation Crash Dump Driver 131795770645349720 0xfffff80d943c0000 200704 C:\Windows\System32\drivers\cdrom.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SCSI CD-ROM Driver 131795770645349720 0xfffff80d94400000 118784 C:\Windows\system32\drivers\filecrypt.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows sandboxing and encryption filter 131795770645349720 0xfffff80d94420000 57344 C:\Windows\system32\drivers\tbs.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Export driver for kernel mode TPM API 131795770645349720 0xfffff80d94430000 40960 C:\Windows\System32\Drivers\Null.SYS 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation NULL Driver 131795770645349720 0xfffff80d94440000 40960 C:\Windows\System32\Drivers\Beep.SYS 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation BEEP Driver 131795770645349720 0xfffff80d94450000 81920 C:\Windows\System32\drivers\BasicDisplay.sys 10.0.14393.1066 (rs1_release_sec.170327-1835) Microsoft Corporation Microsoft Basic Display Driver 131795770645349720 0xfffff80d94470000 81920 C:\Windows\System32\drivers\watchdog.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Watchdog Driver 131795770645349720 0xfffff80d94490000 2220032 C:\Windows\System32\drivers\dxgkrnl.sys 10.0.14393.2189 (rs1_release.180329-1711) Microsoft Corporation DirectX Graphics Kernel 131795770645349720 0xfffff80d946b0000 73728 C:\Windows\System32\drivers\BasicRender.sys 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation Microsoft Basic Render Driver 131795770645349720 0xfffff80d946d0000 102400 C:\Windows\System32\Drivers\Npfs.SYS 10.0.14393.1737 (rs1_release_inmarket.170914-1249) Microsoft Corporation NPFS Driver 131795770645349720 0xfffff80d94700000 143360 C:\Windows\system32\DRIVERS\tdx.sys 10.0.14393.1613 (rs1_release_d.170807-1806) Microsoft Corporation TDI Translation Driver 131795770645349720 0xfffff80d94740000 307200 C:\Windows\System32\DRIVERS\netbt.sys 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation MBT Transport driver 131795770645349720 0xfffff80d94790000 610304 C:\Windows\system32\drivers\afd.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Драйвер дополнительных функций для Winsock 131795770645349720 0xfffff80d94830000 102400 C:\Windows\System32\drivers\vwififlt.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Virtual WiFi Filter Driver 131795770645349720 0xfffff80d94850000 176128 C:\Windows\System32\drivers\pacer.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Планировщик пакетов QoS 131795770645349720 0xfffff80d94880000 73728 C:\Windows\system32\drivers\netbios.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation NetBIOS interface driver 131795770645349720 0xfffff80d948a0000 479232 C:\Windows\system32\DRIVERS\rdbss.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Драйвер подсистемы буферизации перенаправленного диска 131795770645349720 0xfffff80d94920000 581632 C:\Windows\system32\drivers\csc.sys 10.0.14393.953 (rs1_release_inmarket.170303-1614) Microsoft Corporation Windows Client Side Caching Driver 131795770645349720 0xfffff80d949b0000 106496 C:\Windows\system32\drivers\nsiproxy.sys 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation NSI Proxy 131795770645349720 0xfffff80d949d0000 53248 C:\Windows\System32\drivers\npsvctrig.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Named pipe service triggers 131795770645349720 0xfffff80d949f0000 40960 C:\Windows\System32\drivers\gpuenergydrv.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation GPU Energy Kernel Driver 131795770645349720 0xfffff80d94a00000 172032 C:\Windows\System32\Drivers\dfsc.sys 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation DFS Namespace Client Driver 131795770645349720 0xfffff80d94a50000 258048 C:\Windows\system32\DRIVERS\ahcache.sys 10.0.14393.351 (rs1_release_inmarket.161014-1755) Microsoft Corporation Application Compatibility Cache 131795770645349720 0xfffff80d94a90000 69632 C:\Windows\System32\DriverStore\FileRepository\compositebus.inf_amd64_a140581a8f8b58b7\CompositeBus.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Multi-Transport Composite Bus Enumerator 131795770645349720 0xfffff80d94ab0000 57344 C:\Windows\System32\drivers\kdnic.sys 6.01.00.0000 (rs1_release.160715-1616) Microsoft Corporation Microsoft Kernel Debugger Network Miniport 131795770645349720 0xfffff80d94ac0000 86016 C:\Windows\System32\drivers\umbus.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User-Mode Bus Enumerator 131795770645349720 0xfffff80d94ae0000 139264 C:\Windows\System32\drivers\i8042prt.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Драйвер порта i8042 131795770645349720 0xfffff80d94b10000 77824 C:\Windows\System32\drivers\kbdclass.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Драйвер класса клавиатуры 131795770645349720 0xfffff80d94b30000 73728 C:\Windows\System32\drivers\mouclass.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Драйвер класса мыши 131795770645349720 0xfffff80d94b80000 110592 C:\Windows\System32\drivers\HDAudBus.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation High Definition Audio Bus Driver 131795770645349720 0xfffff80d94ba0000 397312 C:\Windows\System32\drivers\portcls.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Port Class (Class Driver for Port/Miniport Devices) 131795770645349720 0xfffff80d94c10000 135168 C:\Windows\System32\drivers\drmk.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Trusted Audio Drivers 131795770645349720 0xfffff80d94c40000 425984 C:\Windows\System32\drivers\ks.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Kernel CSA Library 131795770645349720 0xfffff80d94cb0000 61440 C:\Windows\System32\drivers\usbohci.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation OHCI USB Miniport Driver 131795770645349720 0xfffff80d94cc0000 57344 C:\Windows\System32\drivers\CmBatt.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Control Method Battery Driver 131795770645349720 0xfffff80d94cd0000 57344 C:\Windows\System32\drivers\BATTC.SYS 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Battery Class Driver 131795770645349720 0xfffff80d94ce0000 176128 C:\Windows\System32\drivers\intelppm.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Processor Device Driver 131795770645349720 0xfffff80d94d10000 53248 C:\Windows\System32\drivers\NdisVirtualBus.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Перечислитель виртуальных сетевых адаптеров (Майкрософт) 131795770645349720 0xfffff80d94d20000 2588672 C:\Windows\System32\drivers\tcpip.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Драйвер TCP/IP 131795770645349720 0xfffff80d94fa0000 49152 C:\Windows\System32\drivers\swenum.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Plug and Play Software Device Enumerator 131795770645349720 0xfffff80d94fb0000 57344 C:\Windows\System32\drivers\rdpbus.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft RDP Bus Device driver 131795770645349720 0xfffff80d95200000 344064 C:\Windows\system32\DRIVERS\udfs.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation UDF File System Driver 131795770645349720 0xfffff80d95280000 61440 C:\Windows\System32\Drivers\dump_diskdump.sys 131795770645349720 0xfffff80d952c0000 147456 C:\Windows\System32\Drivers\dump_storahci.sys 131795770645349720 0xfffff80d95310000 118784 C:\Windows\System32\Drivers\dump_dumpfve.sys 131795770645349720 0xfffff80d95330000 1122304 C:\Windows\system32\drivers\HTTP.sys 10.0.14393.1532 (rs1_release_d.170711-1840) Microsoft Corporation Стек протокола HTTP 131795770645349720 0xfffff80d95450000 122880 C:\Windows\system32\drivers\WudfPf.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Driver Foundation - User-mode Driver Framework Platform Driver 131795770645349720 0xfffff80d95470000 139264 C:\Windows\system32\DRIVERS\bowser.sys 10.0.14393.447 (rs1_release_inmarket.161102-0100) Microsoft Corporation NT Lan Manager Datagram Receiver Driver 131795770645349720 0xfffff80d954a0000 479232 C:\Windows\system32\DRIVERS\mrxsmb.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT SMB Minirdr 131795770645349720 0xfffff80d95520000 102400 C:\Windows\System32\drivers\mpsdrv.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Protection Service Driver 131795770645349720 0xfffff80d95540000 241664 C:\Windows\system32\DRIVERS\mrxsmb20.sys 10.0.14393.2035 (rs1_release_inmarket.180110-1910) Microsoft Corporation Longhorn SMB 2.0 Redirector 131795770645349720 0xfffff80d95580000 278528 C:\Windows\System32\DRIVERS\srvnet.sys 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Server Network driver 131795770645349720 0xfffff80d955d0000 741376 C:\Windows\System32\DRIVERS\srv2.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Драйвер сервера SMB 2.0 131795770645349720 0xfffff80d95690000 315392 C:\Windows\system32\DRIVERS\mrxsmb10.sys 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Longhorn SMB Downlevel SubRdr 131795770645349720 0xfffff80d956e0000 573440 C:\Windows\System32\DRIVERS\srv.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Server driver 131795770645349720 0xfffff80d95770000 81920 C:\Windows\System32\drivers\tcpipreg.sys 10.0.14393.1480 (rs1_release.170706-2004) Microsoft Corporation TCP/IP Registry Compatibility Driver 131795770645349720 0xfffff80d95860000 684032 C:\Windows\System32\drivers\dxgmms2.sys 10.0.14393.2189 (rs1_release.180329-1711) Microsoft Corporation DirectX Graphics MMS 131795770645349720 0xfffff80d95910000 155648 C:\Windows\system32\drivers\luafv.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Драйвер фильтра виртуализации файлов LUA 131795770645349720 0xfffff80d95960000 102400 C:\Windows\system32\drivers\storqosflt.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Фильтр качества обслуживания хранилища 131795770645349720 0xfffff80d95980000 98304 C:\Windows\System32\drivers\registry.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Registry Containment Driver 131795770645349720 0xfffff80d959a0000 90112 C:\Windows\system32\drivers\lltdio.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Link-Layer Topology Mapper I/O Driver 131795770645349720 0xfffff80d959c0000 98304 C:\Windows\system32\drivers\mslldp.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Драйвер протокола Microsoft LLDP 131795770645349720 0xfffff80d959e0000 106496 C:\Windows\system32\drivers\rspndr.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Link-Layer Topology Responder Driver for NDIS 6 131795770645349720 0xfffff80d95ae0000 57344 C:\Windows\System32\drivers\USBD.SYS 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Universal Serial Bus Driver 131795770645349720 0xfffff80d95af0000 434176 C:\Windows\system32\DRIVERS\HdAudio.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation High Definition Audio Function Driver 131795770645349720 0xfffff80d95b60000 57344 C:\Windows\system32\drivers\ksthunk.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Kernel Streaming WOW Thunk Service 131795770645349720 0xfffff80d95bc0000 73728 C:\Windows\System32\drivers\HIDPARSE.SYS 10.0.14393.2068 (rs1_release.180209-1727) Microsoft Corporation Hid Parsing Library 131795770645349720 0xfffff80d97020000 208896 C:\Windows\System32\Drivers\360AntiHacker64.sys 1.0.0.1149 360.cn 360安全卫士 网络防黑模块 131795770645349720 0xfffff80d97060000 102400 C:\Windows\system32\DRIVERS\360AvFlt.sys 1.1.0.1056 360.cn 360杀毒 文件监控驱动 131795770645349720 0xfffff80d97080000 217088 C:\Windows\system32\DRIVERS\BAPIDRV64.sys 2.0.0.1221 360.cn BAPIDRV 131795770645349720 0xfffff80d970c0000 372736 C:\Windows\system32\drivers\360netmon.sys 2.1.11.5195 360.cn 360netmon 131795770645349720 0xfffff80d97120000 356352 C:\Windows\system32\DRIVERS\360Box64.sys 2.1.0.1253 360.cn 360Box64 131795770645349720 0xfffff80d97180000 811008 C:\Windows\system32\DRIVERS\360FsFlt.sys 6.9.1.1751 360.cn 360 Total Security 131795770645349720 0xfffff80d97330000 69632 C:\Windows\System32\drivers\hidusb.sys 10.0.14393.82 (rs1_release.160805-1735) Microsoft Corporation USB Miniport Driver for Input Devices 131795770645349720 0xfffff80d97350000 192512 C:\Windows\System32\drivers\HIDCLASS.SYS 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека классов HID 131795770645349720 0xfffff80d97380000 61440 C:\Windows\System32\drivers\mouhid.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Драйвер фильтра мыши HID 131795770645349720 0xfffff80d97390000 106496 C:\Windows\System32\drivers\rassstp.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation RAS SSTP Miniport Call Manager 131795770645349720 0xfffff80d973b0000 86016 C:\Windows\System32\DRIVERS\NDProxy.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation NDIS Proxy 131795770645349720 0xfffff80d973d0000 159744 C:\Windows\System32\drivers\AgileVpn.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Диспетчер вызовов минипорта RAS Agile VPN 131795770645349720 0xfffff80d97420000 131072 C:\Windows\System32\drivers\rasl2tp.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation RAS L2TP mini-port/call-manager driver 131795770645349720 0xfffff80d97460000 126976 C:\Windows\System32\drivers\raspptp.sys 10.0.14393.2035 (rs1_release_inmarket.180110-1910) Microsoft Corporation Peer-to-Peer Tunneling Protocol 131795770645349720 0xfffff80d974a0000 110592 C:\Windows\System32\drivers\raspppoe.sys 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation RAS PPPoE mini-port/call-manager driver 131795770645349720 0xfffff80d974c0000 57344 C:\Windows\System32\DRIVERS\ndistapi.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation NDIS 3.0 connection wrapper driver 131795770645349720 0xfffff80d974d0000 221184 C:\Windows\System32\drivers\ndiswan.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation MS PPP Framing Driver (Strong Encryption) 131795770645349720 0xfffff80d97510000 110592 C:\Windows\System32\DRIVERS\wanarp.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation MS Remote Access and Routing ARP Driver 131795770645349720 0xfffff80d97550000 151552 C:\Windows\System32\drivers\E1G6032E.sys 8.4.13.0 built by: WinDDK Intel Corporation Intel(R) PRO/1000 Adapter NDIS 6 deserialized driver 131795770645349720 0xfffff80d97580000 192512 C:\Windows\System32\drivers\tunnel.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Драйвер интерфейса туннеля (Майкрософт) 131795770645349720 0xfffff80d97600000 106496 C:\Windows\system32\Drivers\PROCMON24.SYS 3.10 Sysinternals - www.sysinternals.com Process Monitor Driver 131795780236159256 0xfffff80d97620000 49152 C:\Windows\System32\drivers\npf.sys 4.1.0.2980 Riverbed Technology, Inc. npf.sys (NT5/6 AMD64) Kernel Driver 131795770645349720 0xfffff80d97a60000 794624 C:\Windows\system32\drivers\peauth.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Protected Environment Authentication and Authorization Export Driver 131795770645349720 0xfffff80d97b30000 155648 C:\Windows\system32\drivers\Ndu.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Network Data Usage Monitoring Driver 131795770645349720 0xfffff80d97b60000 81920 C:\Windows\system32\drivers\mmcss.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation MMCSS Driver 131795770645349720 0xfffff80d97bb0000 73728 C:\Windows\System32\drivers\condrv.sys 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Console Driver 10 320 4 9 00000000:000003e7 131765775908989732 0 0 1 Обязательная метка\Обязательный уровень системы NT AUTHORITY\СИСТЕМА smss.exe C:\Windows\System32\smss.exe \SystemRoot\System32\smss.exe Microsoft Corporation 10.0.14393.0 (rs1_release.160715-1616) Диспетчер сеанса Windows 11 3108 3092 12 00000000:0031f1da 131765777624392598 0 0 1 Обязательная метка\Средний обязательный уровень WIN-0UOTFKKVN1S\User Explorer.EXE C:\Windows\Explorer.EXE C:\Windows\Explorer.EXE Microsoft Corporation 10.0.14393.0 (rs1_release.160715-1616) Проводник 131795770645352881 0x31b0000 12288 C:\Windows\system32\sfc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows File Protection 131795770645352881 0x5db0000 397312 C:\Program Files\Uninstall Tool\utshellext.dll 1.1.0.15 CrystalIDEA Software Uninstall Tool Shell Extension 131795770645352881 0x81a0000 8937472 C:\Program Files\MICROS~1\Office16\1049\GrooveIntlResource.dll 16.0.4266.1001 Корпорация Майкрософт Модуль международных ресурсов для Microsoft OneDrive для бизнеса 131795770645352881 0x8cb0000 593920 C:\Windows\SYSTEM32\UIRibbonRes.dll 10.0.14393.2189 (rs1_release.180329-1711) Microsoft Corporation Windows Ribbon Framework Resources 131795770645352881 0x5bf70000 667648 C:\Windows\WinSxS\amd64_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.9247_none_08e394a1a83e212f\MSVCR90.dll 9.00.30729.9247 Microsoft Corporation Microsoft® C Runtime Library 131795770645352881 0x180000000 241664 C:\Program Files (x86)\Notepad++\NppShell_06.dll 0.1 ShellHandler for Notepad++ (64 bit) 131795770645352881 0x7ff6a5b30000 4665344 C:\Windows\Explorer.EXE 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Проводник 131795770645352881 0x7ff7808b0000 8527872 C:\Windows\system32\ntoskrnl.exe 10.0.14393.2189 (rs1_release.180329-1711) Microsoft Corporation NT Kernel & System 131795770645352881 0x7ffaa6c80000 2093056 C:\Windows\system32\wpdshext.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширение оболочки для переносных устройств 131795770645352881 0x7ffaab350000 1683456 C:\Windows\System32\comsvcs.dll 2001.12.10941.16384 (rs1_release_1.180305-1842) Microsoft Corporation COM+ Services 131795770645352881 0x7ffaab4f0000 1400832 C:\Windows\system32\connect.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Мастера подключений 131795770645352881 0x7ffaab650000 970752 C:\Windows\system32\rasgcw.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Страницы мастера RAS 131795770645352881 0x7ffaab880000 532480 C:\Windows\System32\MPRAPI.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation Windows NT MP Router Administration DLL 131795770645352881 0x7ffaab910000 905216 C:\Windows\System32\RASDLG.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API общих диалогов службы удаленного доступа 131795770645352881 0x7ffaac6e0000 13156352 C:\Windows\system32\ieframe.DLL 11.00.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Браузер 131795770645352881 0x7ffab0df0000 1626112 C:\Windows\SYSTEM32\d3d9.dll 10.0.14393.447 (rs1_release_inmarket.161102-0100) Microsoft Corporation Direct3D 9 Runtime 131795770645352881 0x7ffab0f80000 1777664 C:\Program Files\Windows Photo Viewer\PhotoViewer.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Просмотр фотографий Windows 131795770645352881 0x7ffab1d80000 262144 C:\Windows\system32\eappcfg.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Eap Peer Config 131795770645352881 0x7ffab2460000 2822144 C:\Windows\System32\netshell.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Оболочка сетевых подключений 131795770645352881 0x7ffab2720000 606208 C:\Windows\System32\DUser.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows DirectUser Engine 131795770645352881 0x7ffab27c0000 516096 C:\Windows\System32\imapi2.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation IMAPI версии 2 131795770645352881 0x7ffab2840000 253952 C:\Windows\System32\bthprops.cpl 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Приложение панели управления Bluetooth 131795770645352881 0x7ffab2880000 315392 C:\Windows\System32\cscobj.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Внутрипроцессный COM-объект используемый клиентами CSC API 131795770645352881 0x7ffab28d0000 802816 C:\Windows\System32\cscui.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Интерфейс кэширования на стороне клиента 131795770645352881 0x7ffab29a0000 1912832 C:\Windows\System32\pnidui.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Значок сетевой системы 131795770645352881 0x7ffab2b80000 212992 C:\Windows\system32\SettingMonitor.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Setting Synchronization Change Monitor 131795770645352881 0x7ffab2bc0000 204800 C:\Windows\System32\PortableDeviceTypes.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Portable Device (Parameter) Types Component 131795770645352881 0x7ffab33d0000 258048 C:\Windows\SYSTEM32\MLANG.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL многоязыковой поддержки 131795770645352881 0x7ffab34f0000 323584 C:\Windows\System32\Actioncenter.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Центр безопасности и обслуживания 131795770645352881 0x7ffab4af0000 606208 C:\Windows\SYSTEM32\AUDIOSES.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Сеанс обработки звука 131795770645352881 0x7ffab4b90000 655360 C:\Windows\System32\StructuredQuery.dll 7.0.14393.2068 (rs1_release.180209-1727) Microsoft Corporation Structured Query 131795770645352881 0x7ffab5120000 1691648 C:\Windows\system32\BatMeter.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Battery Meter Helper DLL 131795770645352881 0x7ffab5520000 3231744 C:\Windows\SYSTEM32\MsftEdit.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Элемент управления "Поле ввода форматированного текста", версия 8.5 131795770645352881 0x7ffab5b40000 2527232 C:\Windows\SYSTEM32\DWrite.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Службы Microsoft DirectX Typography 131795770645352881 0x7ffab7d80000 753664 C:\Windows\System32\RASAPI32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API удаленного доступа 131795770645352881 0x7ffab7e40000 3420160 C:\Windows\System32\SyncCenter.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Центр синхронизации Майкрософт 131795770645352881 0x7ffab8190000 9191424 C:\Windows\System32\TwinUI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation TWINUI 131795770645352881 0x7ffab8da0000 1675264 C:\Windows\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.14393.1715_none_aec701fbddd850fa\gdiplus.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Microsoft GDI+ 131795770645352881 0x7ffab92e0000 827392 C:\Windows\system32\Windows.Storage.Search.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows.Storage.Search 131795770645352881 0x7ffab93b0000 897024 C:\Windows\System32\TokenBroker.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Token Broker 131795770645352881 0x7ffab9490000 860160 C:\Windows\system32\ntshrui.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширения оболочки, обеспечивающие общий доступ 131795770645352881 0x7ffab95c0000 4091904 C:\Windows\system32\UIRibbon.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Платформа ленты Windows 131795770645352881 0x7ffab99b0000 499712 C:\Windows\system32\dxp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширение оболочки компонента Device Stage 131795770645352881 0x7ffab9ba0000 389120 C:\Windows\SYSTEM32\searchfolder.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SearchFolder 131795770645352881 0x7ffaba950000 188416 C:\Windows\System32\EthernetMediaManager.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Ethernet Media Manager DLL 131795770645352881 0x7ffabaa50000 339968 C:\Windows\System32\NetworkUXBroker.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation NetworkUXBroker DLL 131795770645352881 0x7ffabaab0000 94208 C:\Windows\SYSTEM32\profext.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation profext 131795770645352881 0x7ffabab30000 303104 C:\Windows\System32\NotificationObjFactory.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Notifications Object Factory 131795770645352881 0x7ffabac60000 151552 C:\Windows\System32\EhStorAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Enhanced Storage API 131795770645352881 0x7ffabacc0000 1380352 C:\Windows\System32\SharedStartModel.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Shared Start Model InProc Server 131795770645352881 0x7ffabae20000 40960 C:\Windows\SYSTEM32\msiltcfg.dll 5.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Installer Configuration API Stub 131795770645352881 0x7ffabae60000 77824 C:\Windows\System32\DEVRTL.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Device Management Run Time Library 131795770645352881 0x7ffabaea0000 266240 C:\Windows\system32\SHDOCVW.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека объектов документов и элементов управления оболочки 131795770645352881 0x7ffabaf70000 270336 C:\Windows\SYSTEM32\edputil.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служебная программа EDP 131795770645352881 0x7ffabafc0000 700416 C:\Windows\System32\wer.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека сообщений об ошибках Windows 131795770645352881 0x7ffabb2b0000 1089536 C:\Windows\SYSTEM32\settingsynccore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Setting Synchronization Core 131795770645352881 0x7ffabb430000 65536 C:\Windows\SYSTEM32\pcacli.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Program Compatibility Assistant Client Module 131795770645352881 0x7ffabb490000 512000 C:\Windows\SYSTEM32\TWINAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation twinapi 131795786030517308 0x7ffabb910000 344064 C:\Windows\System32\container.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Windows Containers 131795786030225106 0x7ffabb970000 487424 C:\Windows\System32\daxexec.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation daxexec 131795770645352881 0x7ffabba80000 995328 C:\Windows\System32\twinui.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation TWINUI.APPCORE 131795786377372706 0x7ffabbb80000 61440 C:\Windows\System32\dsclient.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Data Sharing Service Client DLL 131795786377355113 0x7ffabbb90000 581632 C:\Windows\System32\Windows.System.Launcher.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows.System.Launcher 131795770645352881 0x7ffabbc40000 643072 C:\Windows\SYSTEM32\MSVCP140.dll 14.10.24516.0 built by: VCTOOLSRELESC Microsoft Corporation Microsoft® C Runtime Library 131795770645352881 0x7ffabbce0000 90112 C:\Windows\SYSTEM32\VCRUNTIME140.dll 14.10.24516.0 built by: VCTOOLSRELESC Microsoft Corporation Microsoft® C Runtime Library 131795786377364261 0x7ffabbd00000 36864 C:\Windows\System32\WpPortingLibrary.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation <d> DLL 131795770645352881 0x7ffabbd20000 106496 C:\Windows\SYSTEM32\settingsyncpolicy.dll 10.0.14393.82 (rs1_release.160805-1735) Microsoft Corporation SettingSync Policy 131795770645352881 0x7ffabc0b0000 65536 C:\Windows\SYSTEM32\LINKINFO.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Volume Tracking 131795770645352881 0x7ffabc510000 90112 C:\Windows\system32\execmodelproxy.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ExecModelProxy 131795770645352881 0x7ffabc880000 73728 C:\Windows\SYSTEM32\cscapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Offline Files Win32 API 131795786376748307 0x7ffabcef0000 102400 C:\Windows\System32\Windows.Shell.ServiceHostBuilder.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows.Shell.ServiceHostBuilder 131795770645352881 0x7ffabcf30000 110592 C:\Windows\SYSTEM32\MPR.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека маршрутизации для нескольких служб доступа 131795770645352881 0x7ffabd3c0000 368640 C:\Windows\System32\InputSwitch.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Переключатель ввода Microsoft Windows 131795770645352881 0x7ffabd4a0000 1613824 C:\Windows\System32\Windows.Globalization.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Globalization 131795770645352881 0x7ffabd670000 315392 C:\Windows\System32\framedynos.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation WMI SDK Provider Framework 131795770645352881 0x7ffabd6c0000 1306624 C:\Windows\System32\werconcpl.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation PRS CPL 131795770645352881 0x7ffabd800000 876544 C:\Windows\System32\NPSMDesktopProvider.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation <d> Библиотека DLL локального поставщика рабочего стола NPSM 131795770645352881 0x7ffabda60000 1241088 C:\Windows\System32\wscui.cpl 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Центр безопасности и обслуживания 131795770645352881 0x7ffabdbb0000 1736704 C:\Windows\SYSTEM32\DUI70.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Подсистема DirectUI Windows 131795770645352881 0x7ffabdeb0000 86016 C:\Windows\system32\wpdshserviceobj.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Portable Device Shell Service Object 131795770645352881 0x7ffabded0000 413696 C:\Windows\system32\stobject.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Объект службы оболочки Systray 131795770645352881 0x7ffabe070000 610304 C:\Windows\SYSTEM32\efswrt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Storage Protection Windows Runtime DLL 131795770645352881 0x7ffabe470000 180224 C:\Windows\System32\wscinterop.dll 10.0.14393.479 (rs1_release.161110-2025) Microsoft Corporation Windows Health Center WSC Interop 131795770645352881 0x7ffabe4d0000 286720 C:\Windows\System32\MSWB7.dll 10.0.14393.1737 (rs1_release_inmarket.170914-1249) Microsoft Corporation MSWB7 DLL 131795770645352881 0x7ffabe580000 831488 C:\Program Files (x86)\360\Total Security\MenuEx64.dll 9, 6, 0, 1001 360 Total Security 131795770645352881 0x7ffabe650000 405504 C:\Windows\system32\zipfldr.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Сжатые ZIP-папки 131795770645352881 0x7ffabe850000 155648 C:\Windows\System32\IDStore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Identity Store 131795770645352881 0x7ffabe9a0000 94208 C:\Windows\system32\Syncreg.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Synchronization Framework Registration 131795770645352881 0x7ffabe9c0000 188416 C:\Windows\SYSTEM32\globinputhost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Globalization Extension API for Input 131795770645352881 0x7ffabebf0000 1208320 C:\Windows\system32\NetworkExplorer.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Сетевой проводник 131795770645352881 0x7ffabef80000 69632 C:\Windows\System32\sfc_os.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows File Protection 131795770645352881 0x7ffabf0b0000 176128 C:\Windows\System32\playtomenu.dll 12.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека меню функции "Передать на устройство" 131795770645352881 0x7ffabf0e0000 372736 C:\Windows\System32\hnetcfg.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Диспетчер конфигурации домашней сети 131795770645352881 0x7ffabf330000 2457600 C:\Windows\System32\msxml6.dll 6.30.14393.2156 Microsoft Corporation MSXML 6.0 131795770645352881 0x7ffabf590000 208896 C:\Windows\system32\syncui.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Портфель Windows 131795770645352881 0x7ffabf5d0000 2924544 C:\Windows\SYSTEM32\WININET.dll 11.00.14393.447 (rs1_release_inmarket.161102-0100) Microsoft Corporation Расширения Интернета для Win32 131795770645352881 0x7ffabf8c0000 802816 C:\Windows\system32\Windows.Internal.Shell.Broker.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation Windows Shell Broker 131795786456426767 0x7ffabfb00000 626688 C:\Windows\System32\ContentDeliveryManager.Utilities.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation ContentDeliveryManager.Utilities 131795770645352881 0x7ffabfba0000 212992 C:\Windows\System32\WSCAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API центра обеспечения безопасности Windows 131795770645352881 0x7ffabfdc0000 86016 C:\Windows\system32\keepaliveprovider.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Keep alive provider API 131795770645352881 0x7ffabfe50000 643072 C:\Windows\System32\wpnprv.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик подключения платформы push-уведомлений Windows 131795770645352881 0x7ffabff10000 155648 C:\Windows\system32\srvcli.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Server Service Client DLL 131795770645352881 0x7ffabff60000 135168 C:\Windows\system32\ncryptsslp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft SChannel Provider 131795770645352881 0x7ffac01e0000 397312 C:\Windows\System32\wincorlib.DLL 10.0.14393.576 (rs1_release_inmarket.161208-2252) Microsoft Corporation Microsoft Windows ® WinRT core library 131795770645352881 0x7ffac0250000 2179072 C:\Program Files\MICROS~1\Office16\GROOVEEX.DLL 16.0.4266.1001 Microsoft Corporation Microsoft OneDrive for Business Extensions 131795770645352881 0x7ffac0470000 1478656 C:\Windows\SYSTEM32\MFPlat.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Media Foundation Platform DLL 131795770645352881 0x7ffac05f0000 94208 C:\Windows\System32\wwapi.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation WWAN API 131795770645352881 0x7ffac0610000 3088384 C:\Windows\SYSTEM32\msi.dll 5.0.14393.2155 Microsoft Corporation Windows Installer 131795770645352881 0x7ffac0910000 724992 C:\Windows\System32\Windows.Networking.Connectivity.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Networking Connectivity Runtime DLL 131795770645352881 0x7ffac09d0000 884736 C:\Windows\System32\wpnapps.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Приложения для push-уведомлений Windows 131795770645352881 0x7ffac0ad0000 86016 C:\Windows\SYSTEM32\mskeyprotect.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик защиты ключей (Майкрософт) 131795770645352881 0x7ffac0af0000 114688 C:\Windows\System32\ATL.DLL 3.05.2284 Microsoft Corporation ATL Module for Windows XP (Unicode) 131795770645352881 0x7ffac0b40000 315392 C:\Windows\System32\dlnashext.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLNA Namespace DLL 131795770645352881 0x7ffac0b90000 380928 C:\Windows\System32\srchadmin.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Параметры индексирования 131795770645352881 0x7ffac0bf0000 3559424 C:\Windows\System32\ActXPrxy.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation ActiveX Interface Marshaling Library 131795770645352881 0x7ffac0f60000 151552 C:\Windows\SYSTEM32\CHARTV.dll 10.0.14393.351 (rs1_release_inmarket.161014-1755) Microsoft Corporation Chart View 131795770645352881 0x7ffac1b70000 122880 C:\Windows\System32\DevDispItemProvider.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Подсистема DeviceItem inproc devquery 131795770645352881 0x7ffac1cc0000 163840 C:\Windows\System32\Windows.Networking.Sockets.PushEnabledApplication.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows.Networking.Sockets.PushEnabledApplication DLL 131795770645352881 0x7ffac1d60000 589824 C:\Windows\System32\webio.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API протоколов передачи по Веб 131795770645352881 0x7ffac1e50000 188416 C:\Windows\SYSTEM32\RTWorkQ.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL для WorkQueue реального времени 131795770645352881 0x7ffac1fd0000 999424 C:\Windows\system32\wbem\fastprox.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation WMI Custom Marshaller 131795770645352881 0x7ffac20d0000 110592 C:\Windows\System32\RMCLIENT.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Resource Manager Client 131795770645352881 0x7ffac21d0000 81920 C:\Windows\system32\wbem\wbemsvc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation WMI 131795770645352881 0x7ffac2360000 57344 C:\Windows\System32\TimeBrokerClient.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Time Broker Client Library 131795770645352881 0x7ffac23c0000 331776 C:\Windows\System32\OneCoreCommonProxyStub.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation OneCore Common Proxy Stub 131795770645352881 0x7ffac2530000 270336 C:\Windows\system32\hnetcfgclient.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиент API конфигурации домашней сети 131795770645352881 0x7ffac2700000 98304 C:\Windows\system32\NETAPI32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API DLL 131795770645352881 0x7ffac27a0000 1642496 C:\Users\User\AppData\Local\Microsoft\OneDrive\18.111.0603.0006\amd64\FileSyncShell64.dll 18.111.0603.0006 Microsoft Corporation Microsoft OneDrive Shell Extension 131795770645352881 0x7ffac2960000 143360 C:\Windows\system32\mssprxy.dll 7.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation Microsoft Search Proxy 131795770645352881 0x7ffac2990000 385024 C:\Windows\SYSTEM32\NInput.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Pen and Touch Input Component 131795770645352881 0x7ffac29f0000 159744 C:\Windows\system32\NetSetupApi.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Network Configuration API 131795770645352881 0x7ffac2a20000 81920 C:\Windows\System32\rtutils.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Routing Utilities 131795770645352881 0x7ffac2b80000 40960 C:\Windows\SYSTEM32\VERSION.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Version Checking and File Installation Libraries 131795770645352881 0x7ffac2cb0000 778240 C:\Windows\System32\winsqlite3.dll 3.12.2 SQLite Development Team SQLite is a software library that implements a self-contained, serverless, zero-configuration, transactional SQL database engine. 131795770645352881 0x7ffac2d80000 5140480 C:\Windows\System32\cdp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API клиента Microsoft (R) CDP 131795786030406949 0x7ffac3270000 40960 C:\Windows\System32\fltLib.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека фильтров 131795770645352881 0x7ffac32e0000 180224 C:\Windows\system32\twext.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Свойства: Предыдущие версии 131795770645352881 0x7ffac3350000 36864 C:\Windows\SYSTEM32\OLEACCHOOKS.DLL 7.2.14393.0 (rs1_release.160715-1616) Microsoft Corporation Active Accessibility Event Hooks Library 131795770645352881 0x7ffac3360000 1396736 C:\Windows\System32\wpncore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Ядро извещающих уведомлений Windows 131795770645352881 0x7ffac34e0000 1843200 C:\Windows\SYSTEM32\urlmon.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширения OLE32 для Win32 131795770645352881 0x7ffac37d0000 258048 C:\Windows\SYSTEM32\wdmaud.drv 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Системный звуковой драйвер Winmm 131795770645352881 0x7ffac3cb0000 2772992 C:\Windows\SYSTEM32\iertutil.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служебная программа времени выполнения для Internet Explorer 131795770645352881 0x7ffac4000000 274432 C:\Windows\SYSTEM32\policymanager.dll 10.0.14393.2035 (rs1_release_inmarket.180110-1910) Microsoft Corporation Policy Manager DLL 131795770645352881 0x7ffac4070000 499712 C:\Windows\SYSTEM32\dsreg.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation AD/AAD User Device Registration 131795770645352881 0x7ffac4140000 114688 C:\Windows\SYSTEM32\MSACM32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Фильтр диспетчера аудиосжатия Microsoft 131795770645352881 0x7ffac4220000 520192 C:\Windows\SYSTEM32\wbemcomn.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation WMI 131795770645352881 0x7ffac42a0000 659456 C:\Windows\System32\StateRepository.Core.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation StateRepository Core 131795770645352881 0x7ffac4450000 86016 C:\Windows\SYSTEM32\usermgrcli.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation UserMgr API DLL 131795770645352881 0x7ffac4470000 65536 C:\Windows\system32\wbem\wbemprox.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation WMI 131795770645352881 0x7ffac46d0000 4161536 C:\Windows\System32\Windows.StateRepository.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Сервер Windows StateRepository API Server 131795770645352881 0x7ffac4df0000 462848 C:\Windows\System32\provsvc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Домашняя группа Windows 131795770645352881 0x7ffac4ea0000 36864 C:\Windows\SYSTEM32\atlthunk.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation atlthunk.dll 131795770645352881 0x7ffac4f60000 143360 C:\Windows\System32\wcmapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Connection Manager Client API 131795770645352881 0x7ffac4f90000 221184 C:\Windows\System32\EhStorShell.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL расширения оболочки Windows Enhanced Storage 131795770645352881 0x7ffac4fd0000 618496 C:\Windows\System32\wlidprov.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft® Account Provider 131795770645352881 0x7ffac5070000 798720 C:\Windows\System32\Windows.Web.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL веб-клиента 131795770645352881 0x7ffac5140000 307200 C:\Windows\System32\AboveLockAppHost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AboveLockAppHost 131795770645352881 0x7ffac5190000 659456 C:\Windows\System32\NotificationController.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation NotificationController 131795770645352881 0x7ffac5350000 1765376 C:\Windows\System32\Windows.UI.Immersive.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation WINDOWS.UI.IMMERSIVE 131795770645352881 0x7ffac5500000 438272 C:\Windows\SYSTEM32\PhotoMetadataHandler.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Photo Metadata Handler 131795770645352881 0x7ffac5570000 339968 C:\Windows\system32\twinui.pcshell.dll 10.0.14393.351 (rs1_release_inmarket.161014-1755) Microsoft Corporation Twinui.PCShell 131795770645352881 0x7ffac55d0000 376832 C:\Windows\System32\windows.immersiveshell.serviceprovider.dll 10.0.14393.1593 (rs1_release.170731-1934) Microsoft Corporation Windows.ImmersiveShell.ServiceProvider 131795770645352881 0x7ffac5630000 339968 C:\Windows\System32\thumbcache.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Кэш эскизов Майкрософт 131795770645352881 0x7ffac5690000 4734976 C:\Windows\system32\explorerframe.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ExplorerFrame 131795770645352881 0x7ffac5bb0000 622592 C:\Program Files\Common Files\microsoft shared\ink\tiptsf.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Инфраструктура текстовых служб сенсорной клавиатуры и панели рукописного ввода 131795770645352881 0x7ffac5c70000 65536 C:\Program Files\Windows Photo Viewer\PhotoBase.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Photo Base Library 131795770645352881 0x7ffac5ce0000 1744896 C:\Windows\SYSTEM32\UIAutomationCore.DLL 7.2.14393.0 (rs1_release.160715-1616) Microsoft Corporation Основные автоматические компоненты Microsoft UI 131795770645352881 0x7ffac60e0000 221184 C:\Windows\System32\XmlLite.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft XmlLite Library 131795770645352881 0x7ffac6610000 40960 C:\Windows\System32\rasadhlp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Remote Access AutoDial Helper 131795770645352881 0x7ffac6650000 176128 C:\Windows\System32\npsm.dll 10.0.14393.447 (rs1_release_inmarket.161102-0100) Microsoft Corporation NPSM 131795780903771340 0x7ffac66a0000 86016 C:\Windows\System32\OnDemandConnRouteHelper.dll 10.0.14393.351 (rs1_release_inmarket.161014-1755) Microsoft Corporation On Demand Connctiond Route Helper 131795770645352881 0x7ffac69c0000 839680 C:\Windows\System32\WINHTTP.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Службы HTTP Windows 131795770645352881 0x7ffac6ac0000 835584 C:\Windows\System32\Windows.UI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Runtime UI Foundation DLL 131795770645352881 0x7ffac6ba0000 49152 C:\Windows\SYSTEM32\Secur32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Security Support Provider Interface 131795770645352881 0x7ffac6bd0000 413696 C:\Windows\SYSTEM32\OLEACC.dll 7.2.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Active Accessibility Core Component 131795770645352881 0x7ffac6c40000 2596864 C:\Windows\WinSxS\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.14393.953_none_42151e83c686086b\comctl32.dll 6.10 (rs1_release_inmarket.170303-1614) Microsoft Corporation Библиотека элементов управления взаимодействия с пользователем 131795770645352881 0x7ffac6ec0000 36864 C:\Windows\system32\IconCodecService.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Converts a PNG part of the icon to a legacy bmp icon 131795770645352881 0x7ffac6f50000 5632000 C:\Windows\System32\d2d1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека Microsoft D2D 131795770645352881 0x7ffac7580000 1077248 C:\Windows\SYSTEM32\MrmCoreR.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Windows MRM 131795770645352881 0x7ffac76a0000 159744 C:\Windows\SYSTEM32\sppc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Software Licensing Client DLL 131795770645352881 0x7ffac78f0000 647168 C:\Windows\System32\hgcpl.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Панель управления домашней группы 131795770645352881 0x7ffac7990000 155648 C:\Windows\SYSTEM32\SLC.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Software Licensing Client DLL 131795770645352881 0x7ffac79c0000 57344 C:\Windows\System32\npmproxy.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Network List Manager Proxy 131795770645352881 0x7ffac7aa0000 401408 C:\Windows\SYSTEM32\wlanapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows WLAN AutoConfig Client Side API DLL 131795782572474169 0x7ffac7ce0000 73728 C:\Windows\System32\ploptin.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Prelaunch OptIn 131795770645352881 0x7ffac7d40000 131072 C:\Windows\system32\SYNCENG.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Briefcase Engine 131795770645352881 0x7ffac7d90000 454656 C:\Windows\SYSTEM32\SndVolSSO.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Громкость SCA 131795770645352881 0x7ffac7f50000 73728 C:\Windows\system32\acppage.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека расширений для вкладки "Совместимость" 131795770645352881 0x7ffac7fc0000 2674688 C:\Windows\SYSTEM32\d3d10warp.dll 10.0.14393.576 (rs1_release_inmarket.161208-2252) Microsoft Corporation Direct3D 10 Rasterizer 131795770645352881 0x7ffac83d0000 106496 C:\Windows\SYSTEM32\dhcpcsvc.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служба DHCP-клиента 131795770645352881 0x7ffac83f0000 90112 C:\Windows\SYSTEM32\dhcpcsvc6.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиент DHCPv6 131795770645352881 0x7ffac8420000 434176 C:\Windows\System32\fwpuclnt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API пользовательского режима FWP/IPsec 131795770645352881 0x7ffac84e0000 53248 C:\Windows\System32\NotificationControllerPS.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation NotificationController Proxy Stub 131795770645352881 0x7ffac84f0000 299008 C:\Windows\system32\dataexchange.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation Data exchange 131795770645352881 0x7ffac8810000 45056 C:\Windows\SYSTEM32\WINNSI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Network Store Information RPC interface 131795770645352881 0x7ffac8880000 69632 C:\Windows\system32\WMICLNT.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation WMI Client API 131795770645352881 0x7ffac88a0000 2842624 C:\Windows\system32\d3d11.dll 10.0.14393.953 (rs1_release_inmarket.170303-1614) Microsoft Corporation Direct3D 11 Runtime 131795770645352881 0x7ffac8f90000 45056 C:\Windows\SYSTEM32\AVRT.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Среда выполнения мультимедиа в реальном времени 131795770645352881 0x7ffac90b0000 90112 C:\Windows\SYSTEM32\wkscli.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Workstation Service Client DLL 131795770645352881 0x7ffac9220000 397312 C:\Windows\System32\wevtapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API настройки и использования событий 131795770645352881 0x7ffac9290000 40960 C:\Windows\system32\DSROLE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DS Setup Client DLL 131795770645352881 0x7ffac92e0000 1269760 C:\Windows\System32\WinTypes.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL основных типов Windows 131795770645352881 0x7ffac9480000 462848 C:\Windows\System32\MMDevApi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation MMDevice API 131795770645352881 0x7ffac9500000 2682880 C:\Windows\SYSTEM32\CoreUIComponents.dll 131795770645352881 0x7ffac9790000 98304 C:\Windows\System32\nlaapi.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Network Location Awareness 2 131795770645352881 0x7ffac97d0000 40960 C:\Windows\SYSTEM32\midimap.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft MIDI Mapper 131795778062352400 0x7ffac97e0000 73728 C:\Windows\System32\ploptin.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Prelaunch OptIn 131795770645352881 0x7ffac9bb0000 479232 C:\Windows\system32\es.dll 2001.12.10941.16384 (rs1_release.160715-1616) Microsoft Corporation COM+ 131795770645352881 0x7ffac9e00000 647168 C:\Windows\System32\PortableDeviceApi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Компоненты API для переносных устройств Windows 131795770645352881 0x7ffac9ea0000 81920 C:\Windows\System32\hcproviders.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщики компонента "Центр безопасности и обслуживания" 131795770645352881 0x7ffac9ec0000 294912 C:\Windows\System32\UIAnimation.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Animation Manager 131795770645352881 0x7ffac9f10000 221184 C:\Windows\System32\netprofm.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Network List Manager 131795770645352881 0x7ffac9f50000 1736704 C:\Windows\system32\windowscodecs.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Microsoft Windows Codecs Library 131795770645352881 0x7ffaca170000 45056 C:\Windows\SYSTEM32\ktmw32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows KTM Win32 Client DLL 131795770645352881 0x7ffaca180000 53248 C:\Windows\SYSTEM32\msacm32.drv 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Программа переназначения звуковых устройств 131795770645352881 0x7ffaca190000 241664 C:\Windows\System32\WorkFoldersShell.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширение оболочки рабочих папок (Майкрософт) 131795770645352881 0x7ffaca260000 45056 C:\Windows\System32\SystemEventsBrokerClient.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation system Events Broker Client Library 131795780604813666 0x7ffaca280000 73728 C:\Windows\System32\BitsProxy.dll 7.8.14393.0 (rs1_release.160715-1616) Microsoft Corporation Background Intelligent Transfer Service Proxy 131795770645352881 0x7ffaca340000 1593344 C:\Windows\SYSTEM32\PROPSYS.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Система страниц свойств (Майкрософт) 131795770645352881 0x7ffaca4e0000 77824 C:\Windows\SYSTEM32\wtsapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Remote Desktop Session Host Server SDK APIs 131795770645352881 0x7ffaca550000 36864 C:\Windows\SYSTEM32\ksuser.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User CSA Library 131795770645352881 0x7ffaca570000 421888 C:\Windows\SYSTEM32\Bcp47Langs.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation BCP47 Language Classes 131795770645352881 0x7ffaca5e0000 155648 C:\Windows\SYSTEM32\dwmapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Интерфейс API диспетчера окон рабочего стола (Майкрософт) 131795770645352881 0x7ffaca610000 143360 C:\Windows\System32\SAMLIB.dll 10.0.14393.82 (rs1_release.160805-1735) Microsoft Corporation SAM Library DLL 131795770645352881 0x7ffaca640000 770048 C:\Windows\System32\CoreMessaging.dll 10.0.14393.0 Microsoft Corporation Microsoft CoreMessaging Dll 131795770645352881 0x7ffaca770000 1380352 C:\Windows\system32\dcomp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft DirectComposition Library 131795770645352881 0x7ffacab40000 176128 C:\Windows\SYSTEM32\WINMMBASE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base Multimedia Extension API DLL 131795770645352881 0x7ffacaba0000 143360 C:\Windows\SYSTEM32\WINMM.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation MCI API DLL 131795770645352881 0x7ffacac60000 69632 C:\Windows\system32\credui.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Credential Manager User Interface 131795770645352881 0x7ffacac80000 28672 C:\Windows\SYSTEM32\MSIMG32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation GDIEXT Client DLL 131795770645352881 0x7ffacadf0000 499712 C:\Windows\SYSTEM32\apphelp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиентская библиотека совместимости приложений 131795770645352881 0x7ffacaf00000 610304 C:\Windows\SYSTEM32\UxTheme.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека тем UxTheme (Microsoft) 131795770645352881 0x7ffacb140000 593920 C:\Windows\System32\msvcp110_win.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Microsoft® STL110 C++ Runtime Library 131795770645352881 0x7ffacb1e0000 1163264 C:\Windows\SYSTEM32\twinapi.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation twinapi.appcore 131795770645352881 0x7ffacb300000 364544 C:\Windows\System32\VEEventDispatcher.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Visual Element Event dispatcher 131795770645352881 0x7ffacb3d0000 110592 C:\Windows\SYSTEM32\resourcepolicyclient.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Resource Policy Client 131795770645352881 0x7ffacb3f0000 163840 C:\Windows\System32\DEVOBJ.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Device Information Set DLL 131795770645352881 0x7ffacb420000 204800 C:\Windows\SYSTEM32\ntmarta.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик Windows NT MARTA 131795770645352881 0x7ffacb6f0000 143360 C:\Windows\SYSTEM32\gpapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиентские функции API групповой политики 131795770645352881 0x7ffacb780000 651264 C:\Windows\system32\dxgi.dll 10.0.14393.953 (rs1_release_inmarket.170303-1614) Microsoft Corporation DirectX Graphics Infrastructure 131795770645352881 0x7ffacb920000 81920 C:\Windows\SYSTEM32\WLDP.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Политика блокировки Windows 131795770645352881 0x7ffacbaf0000 495616 C:\Windows\system32\schannel.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик безопасности TLS/SSL 131795770645352881 0x7ffacbbb0000 208896 C:\Windows\system32\rsaenh.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Enhanced Cryptographic Provider 131795770645352881 0x7ffacbbf0000 40960 C:\Windows\SYSTEM32\DPAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Data Protection API 131795770645352881 0x7ffacbd30000 229376 C:\Windows\System32\IPHLPAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API вспомогательного приложения IP 131795770645352881 0x7ffacbd70000 659456 C:\Windows\System32\DNSAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Динамическая библиотека API DNS-клиента 131795770645352881 0x7ffacbe20000 53248 C:\Windows\system32\netutils.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API Helpers DLL 131795770645352881 0x7ffacbe40000 126976 C:\Windows\SYSTEM32\USERENV.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Userenv 131795770645352881 0x7ffacbfb0000 376832 C:\Windows\system32\mswsock.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширение поставщика службы API Microsoft Windows Sockets 2.0 131795770645352881 0x7ffacc150000 94208 C:\Windows\SYSTEM32\cryptsp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Cryptographic Service Provider API 131795770645352881 0x7ffacc170000 45056 C:\Windows\System32\CRYPTBASE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base cryptographic API DLL 131795770645352881 0x7ffacc1f0000 241664 C:\Windows\System32\NTASN1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft ASN.1 API 131795770645352881 0x7ffacc230000 155648 C:\Windows\System32\ncrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Маршрутизатор Windows NCrypt 131795770645352881 0x7ffacc350000 180224 C:\Windows\SYSTEM32\SspiCli.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Security Support Provider Interface 131795770645352881 0x7ffacc500000 102400 C:\Windows\System32\EventAggregation.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Event Aggregation User Mode Library 131795770645352881 0x7ffacc520000 622592 C:\Windows\SYSTEM32\sxs.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Fusion 2.5 131795770645352881 0x7ffacc5c0000 352256 C:\Windows\SYSTEM32\WINSTA.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Winstation Library 131795770645352881 0x7ffacc620000 176128 C:\Windows\SYSTEM32\bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795770645352881 0x7ffacc6e0000 61440 C:\Windows\System32\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795770645352881 0x7ffacc6f0000 311296 C:\Windows\System32\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795770645352881 0x7ffacc740000 81920 C:\Windows\System32\profapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Profile Basic API 131795770645352881 0x7ffacc760000 65536 C:\Windows\System32\MSASN1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ASN.1 Runtime APIs 131795770645352881 0x7ffacc8f0000 1003520 C:\Windows\System32\ucrtbase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645352881 0x7ffacc9f0000 434176 C:\Windows\System32\bcryptPrimitives.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Cryptographic Primitives Library 131795770645352881 0x7ffacca60000 122880 C:\Windows\System32\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795770645352881 0x7ffacca80000 348160 C:\Windows\System32\WINTRUST.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation Microsoft Trust Verification APIs 131795770645352881 0x7ffaccae0000 692224 C:\Windows\System32\SHCORE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795770645352881 0x7ffaccb90000 7180288 C:\Windows\System32\windows.storage.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API хранения Microsoft WinRT 131795770645352881 0x7ffacd270000 2215936 C:\Windows\System32\KERNELBASE.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645352881 0x7ffacd490000 1871872 C:\Windows\System32\CRYPT32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API32 криптографии 131795770645352881 0x7ffacd710000 638976 C:\Windows\System32\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645352881 0x7ffacd7b0000 270336 C:\Windows\System32\cfgmgr32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Configuration Manager DLL 131795770645352881 0x7ffacd810000 22056960 C:\Windows\System32\SHELL32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Общая библиотека оболочки Windows 131795770645352881 0x7ffaced20000 782336 C:\Windows\System32\OLEAUT32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795770645352881 0x7ffacede0000 450560 C:\Windows\System32\coml2.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft COM for Windows 131795770645352881 0x7ffacee50000 1183744 C:\Windows\System32\RPCRT4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795770645352881 0x7ffacef80000 32768 C:\Windows\System32\NSI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation NSI User-mode interface DLL 131795770645352881 0x7ffacef90000 647168 C:\Windows\System32\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795770645352881 0x7ffacf030000 651264 C:\Windows\System32\clbcatq.dll 2001.12.10941.16384 (rs1_release.160715-1616) Microsoft Corporation COM+ Configuration Catalog 131795770645352881 0x7ffacf0d0000 704512 C:\Windows\System32\KERNEL32.DLL 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645352881 0x7ffacf1e0000 1417216 C:\Windows\System32\MSCTF.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Серверная библиотека MSCTF 131795770645352881 0x7ffacf340000 4362240 C:\Windows\System32\SETUPAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Setup API 131795770645352881 0x7ffacf770000 212992 C:\Windows\System32\GDI32.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation GDI Client DLL 131795770645352881 0x7ffacf820000 434176 C:\Windows\System32\WS2_32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation 32-разрядная библиотека Windows Socket 2.0 131795770645352881 0x7ffacf890000 188416 C:\Windows\System32\IMM32.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Multi-User Windows IMM32 API Client DLL 131795770645352881 0x7ffacf8c0000 1462272 C:\Windows\System32\USER32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795770645352881 0x7ffacfb30000 2916352 C:\Windows\System32\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795770645352881 0x7ffacfe00000 114688 C:\Windows\System32\imagehlp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT Image Helper 131795770645352881 0x7ffacfe20000 663552 C:\Windows\System32\advapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795770645352881 0x7ffad0070000 1277952 C:\Windows\System32\ole32.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft OLE для Windows 131795770645352881 0x7ffad01b0000 335872 C:\Windows\System32\SHLWAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека небольших программ оболочки 131795770645352881 0x7ffad0210000 364544 C:\Windows\System32\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795770645352881 0x7ffad0270000 1908736 C:\Windows\SYSTEM32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 13 404 396 14 00000000:000003e7 131765776186257169 0 0 1 Обязательная метка\Обязательный уровень системы NT AUTHORITY\СИСТЕМА csrss.exe C:\Windows\system32\csrss.exe %SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16 Microsoft Corporation 10.0.14393.0 (rs1_release.160715-1616) Процесс исполнения клиент-сервер 15 468 460 16 00000000:000003e7 131765776223665667 0 0 1 Обязательная метка\Обязательный уровень системы NT AUTHORITY\СИСТЕМА csrss.exe C:\Windows\system32\csrss.exe %SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16 Microsoft Corporation 10.0.14393.0 (rs1_release.160715-1616) Процесс исполнения клиент-сервер 17 484 396 14 00000000:000003e7 131765776226419105 0 0 1 Обязательная метка\Обязательный уровень системы NT AUTHORITY\СИСТЕМА wininit.exe C:\Windows\system32\wininit.exe wininit.exe Microsoft Corporation 10.0.14393.0 (rs1_release.160715-1616) Автозагрузка приложений Windows 18 520 460 16 00000000:000003e7 131765776226825613 0 0 1 Обязательная метка\Обязательный уровень системы NT AUTHORITY\СИСТЕМА winlogon.exe C:\Windows\system32\winlogon.exe winlogon.exe Microsoft Corporation 10.0.14393.0 (rs1_release.160715-1616) Программа входа в систему Windows 131795770645375500 0x7ff7b5570000 696320 C:\Windows\system32\winlogon.exe 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Программа входа в систему Windows 131795770645375500 0x7ffabaab0000 94208 C:\Windows\SYSTEM32\profext.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation profext 131795770645375500 0x7ffabcf30000 110592 C:\Windows\system32\MPR.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека маршрутизации для нескольких служб доступа 131795770645375500 0x7ffac4450000 86016 C:\Windows\SYSTEM32\usermgrcli.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation UserMgr API DLL 131795770645375500 0x7ffac90b0000 90112 C:\Windows\system32\wkscli.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Workstation Service Client DLL 131795770645375500 0x7ffaca4e0000 77824 C:\Windows\SYSTEM32\wtsapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Remote Desktop Session Host Server SDK APIs 131795770645375500 0x7ffacadf0000 499712 C:\Windows\system32\apphelp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиентская библиотека совместимости приложений 131795770645375500 0x7ffacaee0000 81920 C:\Windows\SYSTEM32\dwminit.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DWMInit 131795770645375500 0x7ffacaf00000 610304 C:\Windows\system32\UxTheme.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека тем UxTheme (Microsoft) 131795770645375500 0x7ffacafa0000 118784 C:\Windows\system32\UXINIT.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows User Experience Session Initialization Dll 131795770645375500 0x7ffacb360000 176128 C:\Windows\system32\fwbase.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Firewall Base DLL 131795770645375500 0x7ffacb420000 204800 C:\Windows\SYSTEM32\ntmarta.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик Windows NT MARTA 131795770645375500 0x7ffacb460000 548864 C:\Windows\SYSTEM32\firewallapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API брандмауэра Windows 131795770645375500 0x7ffacbbf0000 40960 C:\Windows\system32\DPAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Data Protection API 131795770645375500 0x7ffacbe20000 53248 C:\Windows\system32\netutils.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API Helpers DLL 131795770645375500 0x7ffacbe40000 126976 C:\Windows\system32\USERENV.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Userenv 131795770645375500 0x7ffacc170000 45056 C:\Windows\system32\CRYPTBASE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base cryptographic API DLL 131795770645375500 0x7ffacc350000 180224 C:\Windows\system32\SspiCli.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Security Support Provider Interface 131795770645375500 0x7ffacc5c0000 352256 C:\Windows\SYSTEM32\winsta.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Winstation Library 131795770645375500 0x7ffacc620000 176128 C:\Windows\system32\bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795770645375500 0x7ffacc6f0000 311296 C:\Windows\System32\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795770645375500 0x7ffacc740000 81920 C:\Windows\System32\profapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Profile Basic API 131795770645375500 0x7ffacc760000 65536 C:\Windows\System32\MSASN1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ASN.1 Runtime APIs 131795770645375500 0x7ffacc8f0000 1003520 C:\Windows\System32\ucrtbase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645375500 0x7ffacc9f0000 434176 C:\Windows\System32\bcryptPrimitives.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Cryptographic Primitives Library 131795770645375500 0x7ffacca60000 122880 C:\Windows\System32\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795770645375500 0x7ffaccae0000 692224 C:\Windows\System32\shcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795770645375500 0x7ffacd270000 2215936 C:\Windows\System32\KERNELBASE.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645375500 0x7ffacd490000 1871872 C:\Windows\System32\CRYPT32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API32 криптографии 131795770645375500 0x7ffacee50000 1183744 C:\Windows\System32\RPCRT4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795770645375500 0x7ffacef90000 647168 C:\Windows\System32\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795770645375500 0x7ffacf0d0000 704512 C:\Windows\System32\KERNEL32.DLL 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645375500 0x7ffacf770000 212992 C:\Windows\System32\GDI32.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation GDI Client DLL 131795770645375500 0x7ffacf890000 188416 C:\Windows\System32\IMM32.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Multi-User Windows IMM32 API Client DLL 131795770645375500 0x7ffacf8c0000 1462272 C:\Windows\System32\user32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795770645375500 0x7ffacfb30000 2916352 C:\Windows\System32\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795770645375500 0x7ffacfe20000 663552 C:\Windows\System32\advapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795770645375500 0x7ffad0210000 364544 C:\Windows\System32\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795770645375500 0x7ffad0270000 1908736 C:\Windows\SYSTEM32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 19 588 484 17 00000000:000003e7 131765776277547408 0 0 1 Обязательная метка\Обязательный уровень системы NT AUTHORITY\СИСТЕМА lsass.exe C:\Windows\system32\lsass.exe C:\Windows\system32\lsass.exe Microsoft Corporation 10.0.14393.1770 (rs1_release.170917-1700) Local Security Authority Process 131795770645375702 0x222e3610000 12288 C:\Windows\system32\msprivs.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Переводы привилегий Майкрософт 131795770645375702 0x7ff6b2d20000 69632 C:\Windows\system32\lsass.exe 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Local Security Authority Process 131795770645375702 0x7ffab9170000 380928 C:\Windows\System32\vaultsvc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служба диспетчера учетных данных 131795770645375702 0x7ffabf170000 77824 C:\Windows\system32\hmkd.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows HMAC Key Derivation API 131795770645375702 0x7ffabf190000 126976 C:\Windows\System32\ngcpopkeysrv.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Microsoft Passport Proof-of-possession Key Service 131795770645375702 0x7ffabf1b0000 114688 C:\Windows\system32\keyiso.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служба изоляции ключей CNG 131795770645375702 0x7ffabf1d0000 192512 C:\Windows\System32\cryptnet.dll 10.0.14393.2035 (rs1_release_inmarket.180110-1910) Microsoft Corporation Crypto Network Related API 131795770645375702 0x7ffabf200000 405504 C:\Windows\SYSTEM32\cryptngc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API службы Microsoft Passport 131795770645375702 0x7ffabf270000 143360 C:\Windows\System32\SecureTimeAggregator.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Secure Time Aggregator 131795770645375702 0x7ffabf2a0000 159744 C:\Windows\system32\dssenh.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Enhanced DSS and Diffie-Hellman Cryptographic Provider 131795770645375702 0x7ffabf2d0000 344064 C:\Windows\system32\ncryptprov.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft KSP 131795770645375702 0x7ffabff60000 135168 C:\Windows\system32\ncryptsslp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft SChannel Provider 131795770645375702 0x7ffac0ac0000 53248 C:\Windows\system32\tbs.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation TBS 131795770645375702 0x7ffac0ad0000 86016 C:\Windows\SYSTEM32\mskeyprotect.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик защиты ключей (Майкрософт) 131795770645375702 0x7ffac1d60000 589824 C:\Windows\system32\webio.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API протоколов передачи по Веб 131795770645375702 0x7ffac6610000 40960 C:\Windows\System32\rasadhlp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Remote Access AutoDial Helper 131795770645375702 0x7ffac69c0000 839680 C:\Windows\system32\WINHTTP.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Службы HTTP Windows 131795770645375702 0x7ffac6b90000 53248 C:\Windows\system32\DSPARSE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Active Directory Domain Services API 131795770645375702 0x7ffac6ba0000 49152 C:\Windows\SYSTEM32\secur32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Security Support Provider Interface 131795770645375702 0x7ffac83d0000 106496 C:\Windows\SYSTEM32\dhcpcsvc.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служба DHCP-клиента 131795770645375702 0x7ffac83f0000 90112 C:\Windows\SYSTEM32\dhcpcsvc6.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиент DHCPv6 131795770645375702 0x7ffac8420000 434176 C:\Windows\System32\fwpuclnt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API пользовательского режима FWP/IPsec 131795770645375702 0x7ffac8810000 45056 C:\Windows\SYSTEM32\WINNSI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Network Store Information RPC interface 131795770645375702 0x7ffac8fa0000 253952 C:\Windows\system32\logoncli.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Net Logon Client DLL 131795770645375702 0x7ffac9220000 397312 C:\Windows\SYSTEM32\wevtapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API настройки и использования событий 131795770645375702 0x7ffac9290000 40960 C:\Windows\system32\DSROLE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DS Setup Client DLL 131795770645375702 0x7ffacb6f0000 143360 C:\Windows\SYSTEM32\gpapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиентские функции API групповой политики 131795770645375702 0x7ffacb960000 303104 C:\Windows\system32\AUTHZ.dll 10.0.14393.1737 (rs1_release_inmarket.170914-1249) Microsoft Corporation Authorization Framework 131795770645375702 0x7ffacb9b0000 294912 C:\Windows\system32\scecli.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиент редактора конфигураций безопасности 131795770645375702 0x7ffacba80000 49152 C:\Windows\SYSTEM32\SspiSrv.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation LSA SSPI RPC interface DLL 131795770645375702 0x7ffacba90000 221184 C:\Windows\system32\dpapisrv.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DPAPI Server 131795770645375702 0x7ffacbad0000 102400 C:\Windows\system32\efslsaext.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation LSA extension for EFS 131795770645375702 0x7ffacbaf0000 495616 C:\Windows\system32\schannel.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик безопасности TLS/SSL 131795770645375702 0x7ffacbb70000 245760 C:\Windows\system32\wdigest.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Digest Access 131795770645375702 0x7ffacbbb0000 208896 C:\Windows\system32\rsaenh.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Enhanced Cryptographic Provider 131795770645375702 0x7ffacbbf0000 40960 C:\Windows\SYSTEM32\DPAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Data Protection API 131795770645375702 0x7ffacbc00000 290816 C:\Windows\SYSTEM32\MicrosoftAccountCloudAP.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation MicrosoftAccount Cloud AP Plugin 131795770645375702 0x7ffacbc50000 372736 C:\Windows\system32\cloudAP.DLL 10.0.14393.1358 (rs1_release.170602-2252) Microsoft Corporation Cloud AP Security Package 131795770645375702 0x7ffacbcb0000 278528 C:\Windows\system32\pku2u.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Pku2u Security Package 131795770645375702 0x7ffacbd00000 139264 C:\Windows\system32\tspkg.DLL 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation Web Service Security Package 131795770645375702 0x7ffacbd30000 229376 C:\Windows\SYSTEM32\IPHLPAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API вспомогательного приложения IP 131795770645375702 0x7ffacbd70000 659456 C:\Windows\system32\DNSAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Динамическая библиотека API DNS-клиента 131795770645375702 0x7ffacbe20000 53248 C:\Windows\system32\netutils.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API Helpers DLL 131795770645375702 0x7ffacbe30000 57344 C:\Windows\system32\gmsaclient.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation "gmsaclient.DYNLINK" 131795770645375702 0x7ffacbe40000 126976 C:\Windows\system32\USERENV.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Userenv 131795770645375702 0x7ffacbe60000 843776 C:\Windows\system32\netlogon.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Динамическая библиотека службы Net Logon 131795770645375702 0x7ffacbf30000 49152 C:\Windows\system32\NtlmShared.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation NTLM Shared Functionality 131795770645375702 0x7ffacbf40000 421888 C:\Windows\system32\msv1_0.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Authentication Package v1.0 131795770645375702 0x7ffacbfb0000 376832 C:\Windows\system32\mswsock.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширение поставщика службы API Microsoft Windows Sockets 2.0 131795770645375702 0x7ffacc010000 86016 C:\Windows\system32\cryptdll.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Cryptography Manager 131795770645375702 0x7ffacc030000 163840 C:\Windows\system32\KerbClientShared.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Kerberos Client Shared Functionality 131795770645375702 0x7ffacc150000 94208 C:\Windows\system32\CRYPTSP.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Cryptographic Service Provider API 131795770645375702 0x7ffacc170000 45056 C:\Windows\system32\CRYPTBASE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base cryptographic API DLL 131795770645375702 0x7ffacc180000 155648 C:\Windows\system32\negoexts.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation NegoExtender Security Package 131795770645375702 0x7ffacc1b0000 126976 C:\Windows\system32\JOINUTIL.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Join Utility DLL 131795770645375702 0x7ffacc1d0000 86016 C:\Windows\SYSTEM32\netprovfw.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Provisioning Service Framework DLL 131795770645375702 0x7ffacc1f0000 241664 C:\Windows\system32\NTASN1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft ASN.1 API 131795770645375702 0x7ffacc230000 155648 C:\Windows\system32\ncrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Маршрутизатор Windows NCrypt 131795770645375702 0x7ffacc260000 921600 C:\Windows\SYSTEM32\samsrv.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека сервера диспетчера учетных записей 131795770645375702 0x7ffacc350000 180224 C:\Windows\system32\SspiCli.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Security Support Provider Interface 131795770645375702 0x7ffacc380000 1527808 C:\Windows\system32\lsasrv.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation Библиотека DLL сервера LSA 131795770645375702 0x7ffacc5c0000 352256 C:\Windows\SYSTEM32\winsta.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Winstation Library 131795770645375702 0x7ffacc620000 176128 C:\Windows\system32\bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795770645375702 0x7ffacc6f0000 311296 C:\Windows\System32\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795770645375702 0x7ffacc740000 81920 C:\Windows\System32\profapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Profile Basic API 131795770645375702 0x7ffacc760000 65536 C:\Windows\System32\MSASN1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ASN.1 Runtime APIs 131795770645375702 0x7ffacc8f0000 1003520 C:\Windows\System32\ucrtbase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645375702 0x7ffacc9f0000 434176 C:\Windows\System32\bcryptprimitives.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Cryptographic Primitives Library 131795770645375702 0x7ffacd270000 2215936 C:\Windows\System32\KERNELBASE.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645375702 0x7ffacd490000 1871872 C:\Windows\System32\CRYPT32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API32 криптографии 131795770645375702 0x7ffacd710000 638976 C:\Windows\System32\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645375702 0x7ffaced20000 782336 C:\Windows\System32\OLEAUT32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795770645375702 0x7ffacee50000 1183744 C:\Windows\System32\RPCRT4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795770645375702 0x7ffacef80000 32768 C:\Windows\System32\NSI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation NSI User-mode interface DLL 131795770645375702 0x7ffacef90000 647168 C:\Windows\System32\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795770645375702 0x7ffacf0d0000 704512 C:\Windows\System32\KERNEL32.DLL 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645375702 0x7ffacf180000 376832 C:\Windows\System32\WLDAP32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Win32 LDAP API DLL 131795770645375702 0x7ffacf820000 434176 C:\Windows\System32\WS2_32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation 32-разрядная библиотека Windows Socket 2.0 131795770645375702 0x7ffacfb30000 2916352 C:\Windows\System32\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795770645375702 0x7ffacfe20000 663552 C:\Windows\System32\advapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795770645375702 0x7ffad0210000 364544 C:\Windows\System32\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795770645375702 0x7ffad0270000 1908736 C:\Windows\SYSTEM32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 20 704 580 4 00000000:000003e4 131765776284978539 0 0 1 Обязательная метка\Обязательный уровень системы NT AUTHORITY\NETWORK SERVICE svchost.exe C:\Windows\system32\svchost.exe C:\Windows\system32\svchost.exe -k RPCSS Microsoft Corporation 10.0.14393.0 (rs1_release.160715-1616) Хост-процесс для служб Windows 131795770645375918 0x7ff718c20000 57344 C:\Windows\system32\svchost.exe 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Хост-процесс для служб Windows 131795770645375918 0x7ffabae40000 110592 C:\Windows\SYSTEM32\capauthz.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API авторизации возможностей 131795770645375918 0x7ffac4450000 86016 C:\Windows\SYSTEM32\usermgrcli.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation UserMgr API DLL 131795770645375918 0x7ffac6610000 40960 C:\Windows\System32\rasadhlp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Remote Access AutoDial Helper 131795770645375918 0x7ffac8250000 28672 C:\Windows\system32\wshhyperv.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Hyper-V Winsock2 Helper DLL 131795770645375918 0x7ffac8420000 434176 C:\Windows\system32\fwpuclnt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API пользовательского режима FWP/IPsec 131795770645375918 0x7ffaca4e0000 77824 C:\Windows\SYSTEM32\wtsapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Remote Desktop Session Host Server SDK APIs 131795770645375918 0x7ffacb360000 176128 C:\Windows\system32\fwbase.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Firewall Base DLL 131795770645375918 0x7ffacb460000 548864 C:\Windows\system32\FirewallAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API брандмауэра Windows 131795770645375918 0x7ffacb5c0000 913408 c:\windows\system32\rpcss.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Distributed COM Services 131795770645375918 0x7ffacb6a0000 73728 C:\Windows\system32\RpcRtRemote.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Remote RPC Extension 131795770645375918 0x7ffacb6c0000 98304 c:\windows\system32\rpcepmap.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Сопоставитель конечных точек RPC 131795770645375918 0x7ffacb920000 81920 C:\Windows\SYSTEM32\WLDP.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Политика блокировки Windows 131795770645375918 0x7ffacbd30000 229376 C:\Windows\SYSTEM32\IPHLPAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API вспомогательного приложения IP 131795770645375918 0x7ffacbd70000 659456 C:\Windows\SYSTEM32\DNSAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Динамическая библиотека API DNS-клиента 131795770645375918 0x7ffacbf30000 49152 C:\Windows\system32\NtlmShared.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation NTLM Shared Functionality 131795770645375918 0x7ffacbf40000 421888 C:\Windows\system32\msv1_0.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Authentication Package v1.0 131795770645375918 0x7ffacbfb0000 376832 C:\Windows\system32\mswsock.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширение поставщика службы API Microsoft Windows Sockets 2.0 131795770645375918 0x7ffacc010000 86016 C:\Windows\system32\cryptdll.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Cryptography Manager 131795770645375918 0x7ffacc350000 180224 C:\Windows\system32\sspicli.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Security Support Provider Interface 131795770645375918 0x7ffacc5c0000 352256 C:\Windows\SYSTEM32\WINSTA.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Winstation Library 131795770645375918 0x7ffacc620000 176128 C:\Windows\system32\bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795770645375918 0x7ffacc6e0000 61440 C:\Windows\System32\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795770645375918 0x7ffacc6f0000 311296 C:\Windows\System32\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795770645375918 0x7ffacc760000 65536 C:\Windows\System32\MSASN1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ASN.1 Runtime APIs 131795770645375918 0x7ffacc8f0000 1003520 C:\Windows\System32\ucrtbase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645375918 0x7ffacc9f0000 434176 C:\Windows\System32\bcryptPrimitives.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Cryptographic Primitives Library 131795770645375918 0x7ffacca60000 122880 C:\Windows\System32\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795770645375918 0x7ffacca80000 348160 C:\Windows\System32\WINTRUST.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation Microsoft Trust Verification APIs 131795770645375918 0x7ffacd270000 2215936 C:\Windows\System32\KERNELBASE.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645375918 0x7ffacd490000 1871872 C:\Windows\System32\CRYPT32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API32 криптографии 131795770645375918 0x7ffacee50000 1183744 C:\Windows\System32\RPCRT4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795770645375918 0x7ffacef80000 32768 C:\Windows\System32\NSI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation NSI User-mode interface DLL 131795770645375918 0x7ffacef90000 647168 C:\Windows\System32\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795770645375918 0x7ffacf030000 651264 C:\Windows\System32\clbcatq.dll 2001.12.10941.16384 (rs1_release.160715-1616) Microsoft Corporation COM+ Configuration Catalog 131795770645375918 0x7ffacf0d0000 704512 C:\Windows\System32\KERNEL32.DLL 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645375918 0x7ffacf770000 212992 C:\Windows\System32\GDI32.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation GDI Client DLL 131795770645375918 0x7ffacf820000 434176 C:\Windows\System32\WS2_32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation 32-разрядная библиотека Windows Socket 2.0 131795770645375918 0x7ffacf8c0000 1462272 C:\Windows\System32\USER32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795770645375918 0x7ffacfb30000 2916352 C:\Windows\System32\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795770645375918 0x7ffacfe20000 663552 C:\Windows\System32\advapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795770645375918 0x7ffad0070000 1277952 C:\Windows\System32\ole32.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft OLE для Windows 131795770645375918 0x7ffad0210000 364544 C:\Windows\System32\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795770645375918 0x7ffad0270000 1908736 C:\Windows\SYSTEM32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 21 808 520 18 00000000:0000c8d4 131765776288401882 0 0 1 Обязательная метка\Обязательный уровень системы Window Manager\DWM-1 dwm.exe C:\Windows\system32\dwm.exe "dwm.exe" Microsoft Corporation 10.0.14393.0 (rs1_release.160715-1616) Диспетчер окон рабочего стола 131795770645376024 0x7ff683990000 77824 C:\Windows\system32\dwm.exe 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Диспетчер окон рабочего стола 131795770645376024 0x7ffac3810000 167936 C:\Windows\system32\Cabinet.dll 5.00 (rs1_release.160715-1616) Microsoft Corporation Microsoft® Cabinet File API 131795770645376024 0x7ffac60e0000 221184 C:\Windows\system32\XmlLite.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft XmlLite Library 131795770645376024 0x7ffac6f50000 5632000 C:\Windows\system32\d2d1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека Microsoft D2D 131795770645376024 0x7ffac7720000 1601536 C:\Windows\System32\OneCoreUAPCommonProxyStub.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation OneCoreUAP Common Proxy Stub 131795770645376024 0x7ffac7b70000 569344 C:\Windows\System32\Windows.Gaming.Input.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Gaming Input API 131795770645376024 0x7ffac7fc0000 2674688 C:\Windows\system32\d3d10warp.dll 10.0.14393.576 (rs1_release_inmarket.161208-2252) Microsoft Corporation Direct3D 10 Rasterizer 131795770645376024 0x7ffac88a0000 2842624 C:\Windows\system32\d3d11.dll 10.0.14393.953 (rs1_release_inmarket.170303-1614) Microsoft Corporation Direct3D 11 Runtime 131795770645376024 0x7ffac8f90000 45056 C:\Windows\system32\avrt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Среда выполнения мультимедиа в реальном времени 131795770645376024 0x7ffac92e0000 1269760 C:\Windows\SYSTEM32\wintypes.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL основных типов Windows 131795770645376024 0x7ffac9500000 2682880 C:\Windows\system32\CoreUIComponents.dll 131795770645376024 0x7ffac9a30000 249856 C:\Windows\SYSTEM32\ism32k.dll 131795770645376024 0x7ffac9ec0000 294912 C:\Windows\System32\UIAnimation.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Animation Manager 131795770645376024 0x7ffac9f50000 1736704 C:\Windows\system32\WindowsCodecs.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Microsoft Windows Codecs Library 131795770645376024 0x7ffaca110000 94208 C:\Windows\SYSTEM32\dwmghost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DWMGhost 131795770645376024 0x7ffaca5e0000 155648 C:\Windows\system32\dwmapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Интерфейс API диспетчера окон рабочего стола (Майкрософт) 131795770645376024 0x7ffaca640000 770048 C:\Windows\system32\CoreMessaging.dll 10.0.14393.0 Microsoft Corporation Microsoft CoreMessaging Dll 131795770645376024 0x7ffaca770000 1380352 C:\Windows\system32\dcomp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft DirectComposition Library 131795770645376024 0x7ffaca8d0000 2318336 C:\Windows\system32\dwmcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека ядра Microsoft DWM 131795770645376024 0x7ffacac90000 856064 C:\Windows\SYSTEM32\udwm.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Диспетчер окон рабочего стола Майкрософт 131795770645376024 0x7ffacadc0000 167936 C:\Windows\SYSTEM32\dwmredir.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Компонент перенаправления диспетчера окон рабочего стола Microsoft 131795770645376024 0x7ffacadf0000 499712 C:\Windows\system32\apphelp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиентская библиотека совместимости приложений 131795770645376024 0x7ffacaf00000 610304 C:\Windows\system32\uxtheme.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека тем UxTheme (Microsoft) 131795770645376024 0x7ffacb1e0000 1163264 C:\Windows\System32\twinapi.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation twinapi.appcore 131795770645376024 0x7ffacb780000 651264 C:\Windows\system32\dxgi.dll 10.0.14393.953 (rs1_release_inmarket.170303-1614) Microsoft Corporation DirectX Graphics Infrastructure 131795770645376024 0x7ffacc620000 176128 C:\Windows\System32\bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795770645376024 0x7ffacc6e0000 61440 C:\Windows\System32\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795770645376024 0x7ffacc760000 65536 C:\Windows\System32\MSASN1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ASN.1 Runtime APIs 131795770645376024 0x7ffacc8f0000 1003520 C:\Windows\System32\ucrtbase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645376024 0x7ffacc9f0000 434176 C:\Windows\System32\bcryptPrimitives.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Cryptographic Primitives Library 131795770645376024 0x7ffacca60000 122880 C:\Windows\System32\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795770645376024 0x7ffaccae0000 692224 C:\Windows\System32\shcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795770645376024 0x7ffacd270000 2215936 C:\Windows\System32\KERNELBASE.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645376024 0x7ffacd490000 1871872 C:\Windows\System32\CRYPT32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API32 криптографии 131795770645376024 0x7ffacd710000 638976 C:\Windows\System32\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645376024 0x7ffacd7b0000 270336 C:\Windows\System32\cfgmgr32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Configuration Manager DLL 131795770645376024 0x7ffaced20000 782336 C:\Windows\System32\OLEAUT32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795770645376024 0x7ffacee50000 1183744 C:\Windows\System32\RPCRT4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795770645376024 0x7ffacef90000 647168 C:\Windows\System32\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795770645376024 0x7ffacf030000 651264 C:\Windows\System32\clbcatq.dll 2001.12.10941.16384 (rs1_release.160715-1616) Microsoft Corporation COM+ Configuration Catalog 131795770645376024 0x7ffacf0d0000 704512 C:\Windows\System32\KERNEL32.DLL 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645376024 0x7ffacf770000 212992 C:\Windows\System32\gdi32.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation GDI Client DLL 131795770645376024 0x7ffacf890000 188416 C:\Windows\System32\IMM32.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Multi-User Windows IMM32 API Client DLL 131795770645376024 0x7ffacf8c0000 1462272 C:\Windows\System32\USER32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795770645376024 0x7ffacfb30000 2916352 C:\Windows\System32\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795770645376024 0x7ffacfe20000 663552 C:\Windows\System32\advapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795770645376024 0x7ffad0210000 364544 C:\Windows\System32\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795770645376024 0x7ffad0270000 1908736 C:\Windows\SYSTEM32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 22 904 580 4 00000000:000003e7 131765776293087855 0 0 1 Обязательная метка\Обязательный уровень системы NT AUTHORITY\СИСТЕМА svchost.exe C:\Windows\System32\svchost.exe C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted Microsoft Corporation 10.0.14393.0 (rs1_release.160715-1616) Хост-процесс для служб Windows 131795770645376243 0x259b0640000 12288 C:\Windows\system32\SFC.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows File Protection 131795770645376243 0x7ff718c20000 57344 C:\Windows\System32\svchost.exe 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Хост-процесс для служб Windows 131795770645376243 0x7ffaab830000 278528 c:\windows\system32\netman.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Диспетчер сетевых подключений 131795770645376243 0x7ffaab880000 532480 c:\windows\system32\MPRAPI.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation Windows NT MP Router Administration DLL 131795770645376243 0x7ffaab910000 905216 c:\windows\system32\RASDLG.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API общих диалогов службы удаленного доступа 131795770645376243 0x7ffab1260000 10350592 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\clr.dll 4.7.2117.0 built by: NET47REL1LAST Microsoft Corporation Microsoft .NET Runtime Common Language Runtime - WorkStation 131795770645376243 0x7ffab2460000 2822144 C:\Windows\System32\netshell.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Оболочка сетевых подключений 131795770645376243 0x7ffab7d80000 753664 c:\windows\system32\RASAPI32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API удаленного доступа 131795770645376243 0x7ffabae60000 77824 C:\Windows\System32\DEVRTL.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Device Management Run Time Library 131795770645376243 0x7ffabb430000 65536 C:\Windows\System32\pcacli.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Program Compatibility Assistant Client Module 131795778252487651 0x7ffabc160000 688128 C:\Windows\System32\aeinv.dll 10.0.17060.1029 (WinBuild.160101.0800) Microsoft Corporation Application Inventory Component 131795770645376243 0x7ffabc510000 90112 C:\Windows\system32\execmodelproxy.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ExecModelProxy 131795770645376243 0x7ffabcf30000 110592 C:\Windows\System32\MPR.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека маршрутизации для нескольких служб доступа 131795770645376243 0x7ffabcf50000 921600 C:\Windows\System32\drvstore.dll 10.0.14393.351 (rs1_release_inmarket.161014-1755) Microsoft Corporation Driver Store API 131795770645376243 0x7ffabdd60000 425984 C:\Windows\System32\AppXDeploymentClient.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL-библиотека клиента развертывания AppX 131795770645376243 0x7ffabef80000 69632 C:\Windows\System32\sfc_os.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows File Protection 131795778007496118 0x7ffabefd0000 258048 C:\Windows\System32\aepic.dll 10.0.17060.1029 (WinBuild.160101.0800) Microsoft Corporation Application Experience Program Cache 131795770645376243 0x7ffabfa00000 1011712 C:\Windows\SYSTEM32\MSVCR120_CLR0400.dll 12.00.52519.0 built by: VSWINSERVICING Microsoft Corporation Microsoft® C Runtime Library 131795770645376243 0x7ffac0610000 3088384 C:\Windows\System32\MSI.DLL 5.0.14393.2155 Microsoft Corporation Windows Installer 131795770645376243 0x7ffac0bf0000 3559424 C:\Windows\System32\ActXPrxy.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation ActiveX Interface Marshaling Library 131795770645376243 0x7ffac0fc0000 294912 C:\Windows\system32\spp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека общих точек защиты Microsoft® Windows 131795770645376243 0x7ffac1010000 417792 C:\Windows\system32\MSCOREE.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft .NET Runtime Execution Engine 131795770645376243 0x7ffac10f0000 421888 c:\windows\system32\storsvc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Службы хранения 131795770645376243 0x7ffac1240000 638976 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscoreei.dll 4.7.2623.0 built by: NET471REL1LAST_C Microsoft Corporation Microsoft .NET Runtime Execution Engine 131795781037721051 0x7ffac1660000 688128 C:\Windows\System32\aeinv.dll 10.0.17060.1029 (WinBuild.160101.0800) Microsoft Corporation Application Inventory Component 131795770645376243 0x7ffac1e80000 507904 C:\Windows\System32\NetSetupShim.dll 10.0.14393.1532 (rs1_release_d.170711-1840) Microsoft Corporation Network Configuration API 131795770645376243 0x7ffac1fd0000 999424 C:\Windows\system32\wbem\fastprox.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation WMI Custom Marshaller 131795770645376243 0x7ffac20d0000 110592 c:\windows\system32\RMCLIENT.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Resource Manager Client 131795770645376243 0x7ffac21d0000 81920 C:\Windows\system32\wbem\wbemsvc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation WMI 131795770645376243 0x7ffac2360000 57344 c:\windows\system32\TimeBrokerClient.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Time Broker Client Library 131795770645376243 0x7ffac23c0000 331776 C:\Windows\System32\OneCoreCommonProxyStub.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation OneCore Common Proxy Stub 131795770645376243 0x7ffac2420000 466944 c:\windows\system32\das.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служба сопоставления устройств 131795770645376243 0x7ffac2530000 270336 C:\Windows\system32\hnetcfgclient.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиент API конфигурации домашней сети 131795770645376243 0x7ffac2750000 106496 c:\windows\system32\bcd.dll 10.0.14393.1794 (rs1_release.171008-1615) Microsoft Corporation BCD DLL 131795770645376243 0x7ffac29f0000 159744 C:\Windows\System32\NetSetupApi.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Network Configuration API 131795770645376243 0x7ffac2a20000 81920 c:\windows\system32\rtutils.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Routing Utilities 131795770645376243 0x7ffac2b80000 40960 C:\Windows\System32\VERSION.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Version Checking and File Installation Libraries 131795770645376243 0x7ffac3270000 40960 c:\windows\system32\FLTLIB.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека фильтров 131795770645376243 0x7ffac34c0000 81920 C:\Windows\system32\vss_ps.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation Microsoft® Volume Shadow Copy Service proxy/stub 131795770645376243 0x7ffac3840000 3088384 c:\windows\system32\ESENT.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширяемая подсистема хранения данных ESE для Microsoft(R) Windows(R) 131795778007645121 0x7ffac3cb0000 2772992 C:\Windows\System32\iertutil.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служебная программа времени выполнения для Internet Explorer 131795770645376243 0x7ffac4050000 118784 c:\windows\system32\wdi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Инфраструктура диагностики Windows 131795770645376243 0x7ffac41c0000 139264 c:\windows\system32\trkwks.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиент отслеживания изменившихся связей 131795770645376243 0x7ffac4220000 520192 C:\Windows\SYSTEM32\wbemcomn.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation WMI 131795770645376243 0x7ffac4450000 86016 C:\Windows\SYSTEM32\usermgrcli.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation UserMgr API DLL 131795770645376243 0x7ffac4470000 65536 C:\Windows\system32\wbem\wbemprox.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation WMI 131795770645376243 0x7ffac4650000 516096 c:\windows\system32\pcasvc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служба помощника по совместимости программ 131795770645376243 0x7ffac4f40000 122880 C:\Windows\system32\radardt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Программа обнаружения нехватки системных ресурсов Windows 131795770645376243 0x7ffac4fd0000 618496 C:\Windows\System32\wlidprov.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft® Account Provider 131795770645376243 0x7ffac5b30000 114688 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\fusion.dll 4.6.1586.0 built by: NETFXREL2 Microsoft Corporation Assembly manager 131795770645376243 0x7ffac5b50000 180224 c:\windows\system32\dssvc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL службы NT для службы совместного доступа к данным 131795770645376243 0x7ffac5c50000 131072 c:\windows\system32\rasman.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Remote Access Connection Manager 131795770645376243 0x7ffac60e0000 221184 C:\Windows\System32\XmlLite.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft XmlLite Library 131795770645376243 0x7ffac6120000 966656 c:\windows\system32\sysmain.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Хост службы Superfetch 131795770645376243 0x7ffac6410000 98304 C:\Windows\system32\VssTrace.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека трассировки службы теневого копирования тома Microsoft® 131795770645376243 0x7ffac6430000 1581056 C:\Windows\system32\VSSAPI.DLL 10.0.14393.953 (rs1_release_inmarket.170303-1614) Microsoft Corporation Microsoft® Volume Shadow Copy Requestor/Writer Services API DLL 131795770645376243 0x7ffac6c40000 2596864 C:\Windows\WinSxS\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.14393.953_none_42151e83c686086b\Comctl32.dll 6.10 (rs1_release_inmarket.170303-1614) Microsoft Corporation Библиотека элементов управления взаимодействия с пользователем 131795770645376243 0x7ffac79c0000 57344 C:\Windows\System32\npmproxy.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Network List Manager Proxy 131795770645376243 0x7ffac7b10000 217088 C:\Windows\SYSTEM32\WUDFPlatform.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Driver Foundation - библиотека платформ пользовательского режима 131795770645376243 0x7ffac7b50000 114688 c:\windows\system32\wudfsvc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Driver Foundation (WDF) - служба среды выполнения платформы драйвера режима пользователя 131795770645376243 0x7ffac8810000 45056 c:\windows\system32\WINNSI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Network Store Information RPC interface 131795770645376243 0x7ffac8880000 69632 c:\windows\system32\WMICLNT.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation WMI Client API 131795770645376243 0x7ffac8cf0000 815104 C:\Windows\System32\taskschd.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Task Scheduler COM API 131795770645376243 0x7ffac9290000 40960 c:\windows\system32\DSROLE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DS Setup Client DLL 131795770645376243 0x7ffac9480000 462848 c:\windows\system32\MMDevAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation MMDevice API 131795770645376243 0x7ffac9790000 98304 C:\Windows\System32\nlaapi.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Network Location Awareness 2 131795770645376243 0x7ffac9800000 376832 c:\windows\system32\audioendpointbuilder.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Средство построения конечных точек Windows Audio 131795770645376243 0x7ffac9de0000 94208 C:\Windows\System32\portabledeviceconnectapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Portable Device Connection API Components 131795770645376243 0x7ffac9e00000 647168 C:\Windows\SYSTEM32\PortableDeviceApi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Компоненты API для переносных устройств Windows 131795770645376243 0x7ffac9f10000 221184 C:\Windows\System32\netprofm.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Network List Manager 131795770645376243 0x7ffaca100000 36864 C:\Windows\SYSTEM32\httpprxc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Proxy Manager Provider RPC interface 131795770645376243 0x7ffaca130000 204800 C:\Windows\SYSTEM32\windows.devices.radios.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows.Devices.Radios DLL 131795770645376243 0x7ffaca1f0000 65536 C:\Windows\SYSTEM32\storageusage.dll 10.0.14393.82 (rs1_release.160805-1735) Microsoft Corporation Storage Usage 131795770645376243 0x7ffaca250000 49152 C:\Windows\SYSTEM32\bi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Background Broker Infrastructure Client Library 131795770645376243 0x7ffaca260000 45056 c:\windows\system32\SystemEventsBrokerClient.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation system Events Broker Client Library 131795770645376243 0x7ffaca2d0000 360448 c:\windows\system32\ncbservice.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Посредник подключений к сети 131795770645376243 0x7ffaca340000 1593344 c:\windows\system32\PROPSYS.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Система страниц свойств (Майкрософт) 131795770645376243 0x7ffaca4e0000 77824 c:\windows\system32\WTSAPI32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Remote Desktop Session Host Server SDK APIs 131795770645376243 0x7ffaca710000 65536 C:\Windows\system32\pcadm.dll 10.0.14393.2189 (rs1_release.180329-1711) Microsoft Corporation Program Compatibility Assistant Diagnostic Module 131795770645376243 0x7ffacad70000 278528 c:\windows\system32\BrokerLib.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Broker Base Library 131795770645376243 0x7ffacadf0000 499712 c:\windows\system32\apphelp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиентская библиотека совместимости приложений 131795770645376243 0x7ffacb1e0000 1163264 C:\Windows\SYSTEM32\twinapi.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation twinapi.appcore 131795770645376243 0x7ffacb3f0000 163840 C:\Windows\System32\DEVOBJ.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Device Information Set DLL 131795770645376243 0x7ffacb420000 204800 C:\Windows\SYSTEM32\ntmarta.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик Windows NT MARTA 131795770645376243 0x7ffacb920000 81920 C:\Windows\SYSTEM32\WLDP.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Политика блокировки Windows 131795770645376243 0x7ffacbbb0000 208896 C:\Windows\system32\rsaenh.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Enhanced Cryptographic Provider 131795770645376243 0x7ffacbbf0000 40960 c:\windows\system32\DPAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Data Protection API 131795770645376243 0x7ffacbd30000 229376 c:\windows\system32\IPHLPAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API вспомогательного приложения IP 131795770645376243 0x7ffacbe40000 126976 c:\windows\system32\USERENV.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Userenv 131795770645376243 0x7ffacbfb0000 376832 C:\Windows\system32\mswsock.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширение поставщика службы API Microsoft Windows Sockets 2.0 131795770645376243 0x7ffacc150000 94208 C:\Windows\System32\CRYPTSP.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Cryptographic Service Provider API 131795770645376243 0x7ffacc170000 45056 C:\Windows\System32\CRYPTBASE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base cryptographic API DLL 131795770645376243 0x7ffacc350000 180224 c:\windows\system32\SspiCli.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Security Support Provider Interface 131795770645376243 0x7ffacc500000 102400 c:\windows\system32\EventAggregation.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Event Aggregation User Mode Library 131795770645376243 0x7ffacc520000 622592 C:\Windows\system32\SXS.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Fusion 2.5 131795770645376243 0x7ffacc5c0000 352256 c:\windows\system32\WINSTA.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Winstation Library 131795770645376243 0x7ffacc620000 176128 c:\windows\system32\bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795770645376243 0x7ffacc6e0000 61440 C:\Windows\System32\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795770645376243 0x7ffacc6f0000 311296 C:\Windows\System32\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795770645376243 0x7ffacc740000 81920 C:\Windows\System32\profapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Profile Basic API 131795770645376243 0x7ffacc760000 65536 C:\Windows\System32\MSASN1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ASN.1 Runtime APIs 131795770645376243 0x7ffacc8f0000 1003520 C:\Windows\System32\ucrtbase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645376243 0x7ffacc9f0000 434176 C:\Windows\System32\bcryptPrimitives.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Cryptographic Primitives Library 131795770645376243 0x7ffacca60000 122880 C:\Windows\System32\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795770645376243 0x7ffacca80000 348160 C:\Windows\System32\WINTRUST.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation Microsoft Trust Verification APIs 131795770645376243 0x7ffaccae0000 692224 C:\Windows\System32\shcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795770645376243 0x7ffaccb90000 7180288 C:\Windows\System32\windows.storage.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API хранения Microsoft WinRT 131795770645376243 0x7ffacd270000 2215936 C:\Windows\System32\KERNELBASE.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645376243 0x7ffacd490000 1871872 C:\Windows\System32\CRYPT32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API32 криптографии 131795770645376243 0x7ffacd710000 638976 C:\Windows\System32\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645376243 0x7ffacd7b0000 270336 C:\Windows\System32\cfgmgr32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Configuration Manager DLL 131795770645376243 0x7ffacd810000 22056960 C:\Windows\System32\SHELL32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Общая библиотека оболочки Windows 131795770645376243 0x7ffaced20000 782336 C:\Windows\System32\OLEAUT32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795770645376243 0x7ffacede0000 450560 C:\Windows\System32\coml2.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft COM for Windows 131795770645376243 0x7ffacee50000 1183744 C:\Windows\System32\RPCRT4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795770645376243 0x7ffacef80000 32768 C:\Windows\System32\NSI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation NSI User-mode interface DLL 131795770645376243 0x7ffacef90000 647168 C:\Windows\System32\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795770645376243 0x7ffacf030000 651264 C:\Windows\System32\clbcatq.dll 2001.12.10941.16384 (rs1_release.160715-1616) Microsoft Corporation COM+ Configuration Catalog 131795770645376243 0x7ffacf0d0000 704512 C:\Windows\System32\KERNEL32.DLL 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645376243 0x7ffacf340000 4362240 C:\Windows\System32\SETUPAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Setup API 131795770645376243 0x7ffacf770000 212992 C:\Windows\System32\GDI32.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation GDI Client DLL 131795770645376243 0x7ffacf820000 434176 C:\Windows\System32\WS2_32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation 32-разрядная библиотека Windows Socket 2.0 131795770645376243 0x7ffacf8c0000 1462272 C:\Windows\System32\user32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795770645376243 0x7ffacfb30000 2916352 C:\Windows\System32\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795770645376243 0x7ffacfe20000 663552 C:\Windows\System32\ADVAPI32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795770645376243 0x7ffad0070000 1277952 C:\Windows\System32\ole32.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft OLE для Windows 131795770645376243 0x7ffad01b0000 335872 C:\Windows\System32\SHLWAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека небольших программ оболочки 131795770645376243 0x7ffad0210000 364544 C:\Windows\System32\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795770645376243 0x7ffad0270000 1908736 C:\Windows\SYSTEM32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 23 96 580 4 00000000:000003e5 131765776304995849 0 0 1 Обязательная метка\Обязательный уровень системы NT AUTHORITY\LOCAL SERVICE svchost.exe C:\Windows\system32\svchost.exe C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork Microsoft Corporation 10.0.14393.0 (rs1_release.160715-1616) Хост-процесс для служб Windows 131795770645376384 0x7ff718c20000 57344 C:\Windows\system32\svchost.exe 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Хост-процесс для служб Windows 131795770645376384 0x7ffac0bf0000 3559424 C:\Windows\System32\ActXPrxy.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation ActiveX Interface Marshaling Library 131795770645376384 0x7ffac1fd0000 999424 C:\Windows\system32\wbem\fastprox.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation WMI Custom Marshaller 131795770645376384 0x7ffac21b0000 77824 C:\Windows\System32\srumapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation System Resource Usage Monitor API 131795770645376384 0x7ffac21d0000 81920 C:\Windows\system32\wbem\wbemsvc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation WMI 131795770645376384 0x7ffac2510000 102400 C:\Windows\System32\energyprov.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Energy System Resource Usage Monitor (SRUM) provider 131795770645376384 0x7ffac2580000 49152 C:\Windows\System32\ncuprov.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Network Connectivity Statistics Provider for System Resource Usage Monitor Service 131795770645376384 0x7ffac2b90000 90112 C:\Windows\System32\nduprov.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик сетевой статистики для службы отслеживания использования ресурсов системы 131795770645376384 0x7ffac2bb0000 106496 C:\Windows\SYSTEM32\appsruprov.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Application System Resource Usage Monitor (SRUM) provider 131795770645376384 0x7ffac2bd0000 131072 C:\Windows\System32\eeprov.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Energy Estimator SRUM provider 131795770645376384 0x7ffac2c20000 45056 C:\Windows\system32\wfapigp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Firewall GPO Helper dll 131795770645376384 0x7ffac2d70000 57344 C:\Windows\System32\wpnsruprov.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SRUM provider for WPN 131795770645376384 0x7ffac3310000 225280 C:\Windows\System32\srumsvc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation System Resource Usage Monitor Service 131795770645376384 0x7ffac3730000 36864 C:\Windows\system32\pnpts.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation PlugPlay Troubleshooter 131795770645376384 0x7ffac3840000 3088384 C:\Windows\system32\ESENT.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширяемая подсистема хранения данных ESE для Microsoft(R) Windows(R) 131795770645376384 0x7ffac3bd0000 106496 c:\windows\system32\ncdautosetup.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL службы автоматической настройки сетевых устройств 131795770645376384 0x7ffac3cb0000 2772992 C:\Windows\SYSTEM32\iertutil.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служебная программа времени выполнения для Internet Explorer 131795770645376384 0x7ffac3f60000 225280 c:\windows\system32\FWPolicyIOMgr.dll 10.0.14393.2189 (rs1_release.180329-1711) Microsoft Corporation FwPolicyIoMgr DLL 131795770645376384 0x7ffac4000000 274432 C:\Windows\SYSTEM32\policymanager.dll 10.0.14393.2035 (rs1_release_inmarket.180110-1910) Microsoft Corporation Policy Manager DLL 131795770645376384 0x7ffac4050000 118784 c:\windows\system32\wdi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Инфраструктура диагностики Windows 131795770645376384 0x7ffac41f0000 40960 C:\Windows\system32\adhapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AD harvest sites and subnets API 131795770645376384 0x7ffac4220000 520192 C:\Windows\SYSTEM32\wbemcomn.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation WMI 131795770645376384 0x7ffac4470000 65536 C:\Windows\system32\wbem\wbemprox.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation WMI 131795770645376384 0x7ffac4500000 200704 c:\windows\system32\dps.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служба политики диагностики WDI 131795770645376384 0x7ffac4cd0000 933888 c:\windows\system32\mpssvc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служба защиты (Microsoft) 131795770645376384 0x7ffac4f40000 122880 C:\Windows\system32\radardt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Программа обнаружения нехватки системных ресурсов Windows 131795770645376384 0x7ffac66c0000 32768 C:\Windows\system32\wship6.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL помощника Winsock2 (TL/IPv6) 131795770645376384 0x7ffac66d0000 32768 C:\Windows\system32\wshtcpip.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL помощника службы Winsock2 (TL/IPv4) 131795770645376384 0x7ffac6700000 40960 C:\Windows\system32\wshqos.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL помощника службы QoS Winsock2 131795770645376384 0x7ffac6740000 53248 C:\Windows\system32\dtsh.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека API состояния общего доступа и обнаружения 131795770645376384 0x7ffac6990000 69632 c:\windows\system32\deviceassociation.dll 10.0.14393.82 (rs1_release.160805-1735) Microsoft Corporation Device Association Client DLL 131795770645376384 0x7ffac74b0000 827392 c:\windows\system32\bfe.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служба базовой фильтрации 131795770645376384 0x7ffac7580000 1077248 C:\Windows\SYSTEM32\mrmcorer.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Windows MRM 131795770645376384 0x7ffac79c0000 57344 C:\Windows\System32\npmproxy.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Network List Manager Proxy 131795770645376384 0x7ffac83d0000 106496 C:\Windows\SYSTEM32\dhcpcsvc.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служба DHCP-клиента 131795770645376384 0x7ffac83f0000 90112 C:\Windows\SYSTEM32\dhcpcsvc6.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиент DHCPv6 131795770645376384 0x7ffac8420000 434176 c:\windows\system32\fwpuclnt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API пользовательского режима FWP/IPsec 131795770645376384 0x7ffac8810000 45056 C:\Windows\SYSTEM32\WINNSI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Network Store Information RPC interface 131795770645376384 0x7ffac8cf0000 815104 C:\Windows\System32\taskschd.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Task Scheduler COM API 131795770645376384 0x7ffac90b0000 90112 c:\windows\system32\wkscli.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Workstation Service Client DLL 131795770645376384 0x7ffac9220000 397312 C:\Windows\SYSTEM32\wevtapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API настройки и использования событий 131795770645376384 0x7ffac9f10000 221184 C:\Windows\System32\netprofm.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Network List Manager 131795770645376384 0x7ffaca100000 36864 C:\Windows\SYSTEM32\httpprxc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Proxy Manager Provider RPC interface 131795770645376384 0x7ffaca170000 45056 c:\windows\system32\ktmw32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows KTM Win32 Client DLL 131795770645376384 0x7ffaca340000 1593344 C:\Windows\System32\PROPSYS.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Система страниц свойств (Майкрософт) 131795770645376384 0x7ffaca4e0000 77824 C:\Windows\system32\WTSAPI32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Remote Desktop Session Host Server SDK APIs 131795770645376384 0x7ffaca640000 770048 c:\windows\system32\coremessaging.dll 10.0.14393.0 Microsoft Corporation Microsoft CoreMessaging Dll 131795770645376384 0x7ffacb070000 69632 C:\Windows\SYSTEM32\embeddedmodesvcapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Embedded Mode Service Client DLL 131795770645376384 0x7ffacb140000 593920 c:\windows\system32\msvcp110_win.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Microsoft® STL110 C++ Runtime Library 131795770645376384 0x7ffacb360000 176128 C:\Windows\system32\fwbase.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Firewall Base DLL 131795770645376384 0x7ffacb3f0000 163840 C:\Windows\system32\DEVOBJ.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Device Information Set DLL 131795770645376384 0x7ffacb420000 204800 C:\Windows\system32\ntmarta.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик Windows NT MARTA 131795770645376384 0x7ffacb460000 548864 C:\Windows\system32\FirewallAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API брандмауэра Windows 131795770645376384 0x7ffacb6f0000 143360 C:\Windows\SYSTEM32\gpapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиентские функции API групповой политики 131795770645376384 0x7ffacb920000 81920 C:\Windows\SYSTEM32\WLDP.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Политика блокировки Windows 131795770645376384 0x7ffacb960000 303104 c:\windows\system32\AUTHZ.dll 10.0.14393.1737 (rs1_release_inmarket.170914-1249) Microsoft Corporation Authorization Framework 131795770645376384 0x7ffacbd30000 229376 c:\windows\system32\IPHLPAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API вспомогательного приложения IP 131795770645376384 0x7ffacbd70000 659456 c:\windows\system32\DNSAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Динамическая библиотека API DNS-клиента 131795770645376384 0x7ffacbe20000 53248 c:\windows\system32\netutils.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API Helpers DLL 131795770645376384 0x7ffacbfb0000 376832 C:\Windows\system32\mswsock.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширение поставщика службы API Microsoft Windows Sockets 2.0 131795770645376384 0x7ffacc170000 45056 C:\Windows\system32\CRYPTBASE.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base cryptographic API DLL 131795770645376384 0x7ffacc350000 180224 c:\windows\system32\SspiCli.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Security Support Provider Interface 131795770645376384 0x7ffacc5c0000 352256 C:\Windows\system32\WINSTA.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Winstation Library 131795770645376384 0x7ffacc620000 176128 c:\windows\system32\bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795770645376384 0x7ffacc6e0000 61440 C:\Windows\System32\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795770645376384 0x7ffacc6f0000 311296 C:\Windows\System32\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795770645376384 0x7ffacc740000 81920 C:\Windows\System32\profapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Profile Basic API 131795770645376384 0x7ffacc760000 65536 C:\Windows\System32\MSASN1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ASN.1 Runtime APIs 131795770645376384 0x7ffacc8f0000 1003520 C:\Windows\System32\ucrtbase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645376384 0x7ffacc9f0000 434176 C:\Windows\System32\bcryptPrimitives.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Cryptographic Primitives Library 131795770645376384 0x7ffacca60000 122880 C:\Windows\System32\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795770645376384 0x7ffacca80000 348160 C:\Windows\System32\WINTRUST.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation Microsoft Trust Verification APIs 131795770645376384 0x7ffaccae0000 692224 C:\Windows\System32\shcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795770645376384 0x7ffaccb90000 7180288 C:\Windows\System32\windows.storage.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API хранения Microsoft WinRT 131795770645376384 0x7ffacd270000 2215936 C:\Windows\System32\KERNELBASE.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645376384 0x7ffacd490000 1871872 C:\Windows\System32\CRYPT32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API32 криптографии 131795770645376384 0x7ffacd710000 638976 C:\Windows\System32\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645376384 0x7ffacd7b0000 270336 C:\Windows\System32\CFGMGR32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Configuration Manager DLL 131795770645376384 0x7ffacd810000 22056960 C:\Windows\System32\SHELL32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Общая библиотека оболочки Windows 131795770645376384 0x7ffaced20000 782336 C:\Windows\System32\OLEAUT32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795770645376384 0x7ffacee50000 1183744 C:\Windows\System32\RPCRT4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795770645376384 0x7ffacef80000 32768 C:\Windows\System32\NSI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation NSI User-mode interface DLL 131795770645376384 0x7ffacef90000 647168 C:\Windows\System32\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795770645376384 0x7ffacf030000 651264 C:\Windows\System32\clbcatq.dll 2001.12.10941.16384 (rs1_release.160715-1616) Microsoft Corporation COM+ Configuration Catalog 131795770645376384 0x7ffacf0d0000 704512 C:\Windows\System32\KERNEL32.DLL 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645376384 0x7ffacf770000 212992 C:\Windows\System32\GDI32.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation GDI Client DLL 131795770645376384 0x7ffacf820000 434176 C:\Windows\System32\WS2_32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation 32-разрядная библиотека Windows Socket 2.0 131795770645376384 0x7ffacf8c0000 1462272 C:\Windows\System32\user32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795770645376384 0x7ffacfb30000 2916352 C:\Windows\System32\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795770645376384 0x7ffacfe20000 663552 C:\Windows\System32\advapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795770645376384 0x7ffad0070000 1277952 C:\Windows\System32\ole32.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft OLE для Windows 131795770645376384 0x7ffad01b0000 335872 C:\Windows\System32\shlwapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека небольших программ оболочки 131795770645376384 0x7ffad0210000 364544 C:\Windows\System32\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795770645376384 0x7ffad0270000 1908736 C:\Windows\SYSTEM32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 24 348 580 4 00000000:000003e7 131765776305446235 0 0 1 Обязательная метка\Обязательный уровень системы NT AUTHORITY\СИСТЕМА svchost.exe C:\Windows\system32\svchost.exe C:\Windows\system32\svchost.exe -k netsvcs Microsoft Corporation 10.0.14393.0 (rs1_release.160715-1616) Хост-процесс для служб Windows 131795770645376622 0x7ff718c20000 57344 C:\Windows\system32\svchost.exe 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Хост-процесс для служб Windows 131795770645376622 0x7ffaa0aa0000 2138112 c:\windows\system32\wlidsvc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служба учетных записей Майкрософт 131795770645376622 0x7ffab0750000 368640 C:\Windows\system32\rascustom.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Модуль настраиваемых протоколов 131795770645376622 0x7ffab07b0000 606208 C:\Windows\system32\vpnike.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation VPNIKE Protocol Engine - Test dll 131795770645376622 0x7ffab09b0000 323584 C:\Windows\system32\rasppp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Remote Access PPP 131795770645376622 0x7ffab0a00000 270336 C:\Windows\system32\rastapi.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Remote Access TAPI Compliance Layer 131795770645376622 0x7ffab1d80000 262144 C:\Windows\system32\eappcfg.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Eap Peer Config 131795786944300478 0x7ffab3410000 155648 C:\Windows\System32\browser.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL службы браузера компьютеров 131795770645376622 0x7ffab3440000 696320 c:\windows\system32\rasmans.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Диспетчер подключений удаленного доступа 131795770645376622 0x7ffab4b90000 655360 C:\Windows\System32\StructuredQuery.dll 7.0.14393.2068 (rs1_release.180209-1727) Microsoft Corporation Structured Query 131795770645376622 0x7ffab4c50000 90112 c:\windows\system32\eappprxy.dll 10.0.14393.187 (rs1_release_inmarket.160906-1818) Microsoft Corporation Microsoft EAPHost Peer Client DLL 131795770645376622 0x7ffab7d80000 753664 C:\Windows\system32\RASAPI32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API удаленного доступа 131795770645376622 0x7ffab9a90000 479232 C:\Windows\system32\dmEnrollEngine.DLL 10.0.14393.479 (rs1_release.161110-2025) Microsoft Corporation Enroll Engine DLL 131795770645376622 0x7ffabae60000 77824 C:\Windows\system32\DEVRTL.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Device Management Run Time Library 131795770645376622 0x7ffabafc0000 700416 C:\Windows\SYSTEM32\wer.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека сообщений об ошибках Windows 131795770645376622 0x7ffabc210000 2355200 c:\windows\system32\wuaueng.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Агент Центра обновления Windows 131795770645376622 0x7ffabcf30000 110592 c:\windows\system32\MPR.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека маршрутизации для нескольких служб доступа 131795770645376622 0x7ffabcf50000 921600 C:\Windows\system32\drvstore.dll 10.0.14393.351 (rs1_release_inmarket.161014-1755) Microsoft Corporation Driver Store API 131795770645376622 0x7ffabd180000 548864 C:\Windows\SYSTEM32\WINSPOOL.DRV 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Драйвер диспетчера очереди Windows 131795770645376622 0x7ffabdf60000 159744 C:\Windows\System32\raschap.dll 10.0.14393.1480 (rs1_release.170706-2004) Microsoft Corporation Удаленные доступ через PPP CHAP 131795770645376622 0x7ffabe4a0000 147456 c:\windows\system32\appinfo.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служба сведений о приложении 131795770645376622 0x7ffabe4d0000 286720 C:\Windows\System32\MSWB7.dll 10.0.14393.1737 (rs1_release_inmarket.170914-1249) Microsoft Corporation MSWB7 DLL 131795770645376622 0x7ffabed80000 540672 C:\Windows\system32\wbem\wbemess.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation WMI 131795770645376622 0x7ffabee10000 90112 C:\Windows\SYSTEM32\NCObjAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation 131795770645376622 0x7ffabee30000 847872 C:\Windows\system32\wbem\wmiprvsd.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation WMI 131795770645376622 0x7ffabefd0000 258048 C:\Windows\SYSTEM32\AEPIC.dll 10.0.17060.1029 (WinBuild.160101.0800) Microsoft Corporation Application Experience Program Cache 131795770645376622 0x7ffabf010000 98304 C:\Windows\SYSTEM32\elscore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL ядра платформы Els 131795786151289779 0x7ffabf030000 98304 C:\Windows\System32\LocationFrameworkInternalPS.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Geolocation Framework Internal PS 131795770645376622 0x7ffabf090000 98304 C:\Windows\System32\LocationFrameworkInternalPS.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Geolocation Framework Internal PS 131795770645376622 0x7ffabf0e0000 372736 C:\Windows\system32\hnetcfg.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Диспетчер конфигурации домашней сети 131795770645376622 0x7ffabf1d0000 192512 C:\Windows\System32\cryptnet.dll 10.0.14393.2035 (rs1_release_inmarket.180110-1910) Microsoft Corporation Crypto Network Related API 131795770645376622 0x7ffabf200000 405504 c:\windows\system32\cryptngc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API службы Microsoft Passport 131795770645376622 0x7ffabf2a0000 159744 C:\Windows\system32\dssenh.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Enhanced DSS and Diffie-Hellman Cryptographic Provider 131795770645376622 0x7ffabf330000 2457600 C:\Windows\System32\msxml6.dll 6.30.14393.2156 Microsoft Corporation MSXML 6.0 131795770645376622 0x7ffabfd60000 90112 C:\Windows\system32\napinsp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик оболочки совместимости для имен электронной почты 131795770645376622 0x7ffabfda0000 122880 C:\Windows\system32\wbem\ncprov.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Non-COM WMI Event Provision APIs 131795770645376622 0x7ffabfdc0000 86016 C:\Windows\system32\keepaliveprovider.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Keep alive provider API 131795770645376622 0x7ffabfe50000 643072 C:\Windows\System32\wpnprv.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик подключения платформы push-уведомлений Windows 131795770645376622 0x7ffabfef0000 106496 C:\Windows\system32\pnrpnsp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик пространства имен PNRP 131795770645376622 0x7ffabff60000 135168 C:\Windows\system32\ncryptsslp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft SChannel Provider 131795770645376622 0x7ffac0000000 401408 C:\Windows\system32\wbem\repdrvfs.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation WMI Repository Driver 131795770645376622 0x7ffac05f0000 94208 C:\Windows\System32\wwapi.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation WWAN API 131795770645376622 0x7ffac0610000 3088384 C:\Windows\SYSTEM32\msi.dll 5.0.14393.2155 Microsoft Corporation Windows Installer 131795770645376622 0x7ffac0910000 724992 C:\Windows\System32\Windows.Networking.Connectivity.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Networking Connectivity Runtime DLL 131795770645376622 0x7ffac0ab0000 57344 C:\Windows\System32\winrnr.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation LDAP RnR Provider DLL 131795770645376622 0x7ffac0ac0000 53248 c:\windows\system32\tbs.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation TBS 131795770645376622 0x7ffac0ad0000 86016 C:\Windows\SYSTEM32\mskeyprotect.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик защиты ключей (Майкрософт) 131795770645376622 0x7ffac0af0000 114688 C:\Windows\system32\ATL.DLL 3.05.2284 Microsoft Corporation ATL Module for Windows XP (Unicode) 131795770645376622 0x7ffac0bf0000 3559424 C:\Windows\System32\ActXPrxy.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation ActiveX Interface Marshaling Library 131795770645376622 0x7ffac1090000 94208 C:\Windows\System32\shacctprofile.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Shell Accounts Profile Classes 131795770645376622 0x7ffac1160000 892928 C:\Windows\System32\wuapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API клиента Центра обновления Windows 131795783766785197 0x7ffac13e0000 581632 C:\Windows\System32\usocore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Обновление ядра оркестратора сеанса 131795770645376622 0x7ffac1530000 528384 C:\Windows\SYSTEM32\dpx.dll 5.00 (rs1_release.160715-1616) Microsoft Corporation Microsoft(R) Delta Package Expander 131795788214269808 0x7ffac15d0000 155648 C:\Windows\System32\browser.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL службы браузера компьютеров 131795783773591339 0x7ffac1660000 323584 C:\Windows\System32\updatehandlers.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation Update Session Orchestrator Update Handlers 131795770645376622 0x7ffac1900000 225280 c:\windows\system32\appxapplicabilityblob.dll 10.0.14393.953 (rs1_release_inmarket.170303-1614) Microsoft Corporation Appx Applicability Blob DLL 131795783942703101 0x7ffac1940000 155648 C:\Windows\System32\browser.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL службы браузера компьютеров 131795770645376622 0x7ffac1970000 1073152 c:\windows\system32\qmgr.dll 7.8.14393.0 (rs1_release.160715-1616) Microsoft Corporation Фоновая интеллектуальная служба передачи 131795770645376622 0x7ffac1b70000 122880 C:\Windows\System32\DevDispItemProvider.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Подсистема DeviceItem inproc devquery 131795770645376622 0x7ffac1c30000 49152 C:\Windows\system32\DMProcessXMLFiltered.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation dmprocessxmlfiltered 131795779661934902 0x7ffac1c90000 155648 C:\Windows\System32\browser.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL службы браузера компьютеров 131795770645376622 0x7ffac1cf0000 417792 C:\Windows\SYSTEM32\wuuhext.dll 10.0.14393.2189 (rs1_release.180329-1711) Microsoft Corporation Windows Update Agent plugin for Windows 131795770645376622 0x7ffac1df0000 61440 c:\windows\system32\NCI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation CoInstaller: NET 131795770645376622 0x7ffac1e20000 147456 C:\Windows\system32\wbem\wmiutils.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation WMI 131795770645376622 0x7ffac1e80000 507904 C:\Windows\System32\NetSetupShim.dll 10.0.14393.1532 (rs1_release_d.170711-1840) Microsoft Corporation Network Configuration API 131795770645376622 0x7ffac1f10000 126976 c:\windows\system32\DMCmnUtils.dll 10.0.14393.1737 (rs1_release_inmarket.170914-1249) Microsoft Corporation dmcmnutils 131795770645376622 0x7ffac1f30000 118784 C:\Windows\system32\SPINF.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows SPINF 131795770645376622 0x7ffac1f50000 471040 C:\Windows\system32\wbem\esscli.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation WMI 131795770645376622 0x7ffac1fd0000 999424 C:\Windows\system32\wbem\FastProx.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation WMI Custom Marshaller 131795770645376622 0x7ffac20d0000 110592 c:\windows\system32\RMCLIENT.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Resource Manager Client 131795770645376622 0x7ffac20f0000 753664 C:\Windows\system32\CLUSAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека API кластера 131795770645376622 0x7ffac21d0000 81920 C:\Windows\system32\wbem\wbemsvc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation WMI 131795770645376622 0x7ffac2210000 1351680 C:\Windows\system32\wbem\wbemcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Инструментарий управления Windows 131795770645376622 0x7ffac2360000 57344 c:\windows\system32\TimeBrokerClient.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Time Broker Client Library 131795770645376622 0x7ffac2370000 110592 C:\Windows\system32\adhsvc.dll 10.0.14393.2189 (rs1_release.180329-1711) Microsoft Corporation AD Harvest Sites and Subnets Service 131795770645376622 0x7ffac2390000 147456 C:\Windows\system32\httpprxm.dll 10.0.14393.2189 (rs1_release.180329-1711) Microsoft Corporation Proxy Manager 131795775850813653 0x7ffac23c0000 331776 C:\Windows\System32\OneCoreCommonProxyStub.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation OneCore Common Proxy Stub 131795770645376622 0x7ffac24a0000 397312 C:\Windows\system32\RESUTILS.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL служебной программы ресурсов кластера (Майкрософт) 131795770645376622 0x7ffac2530000 270336 C:\Windows\system32\hnetcfgclient.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиент API конфигурации домашней сети 131795790154003588 0x7ffac2590000 659456 C:\Windows\System32\FlightSettings.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Параметры цикла тестирования 131795770645376622 0x7ffac2640000 188416 C:\Windows\system32\wmidcom.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation WMI 131795770645376622 0x7ffac2670000 376832 C:\Windows\system32\miutils.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Инфраструктура управления 131795770645376622 0x7ffac26f0000 36864 C:\Windows\SYSTEM32\sscoreext.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Server Service Core DLL 131795770645376622 0x7ffac2720000 192512 C:\Windows\SYSTEM32\WPTaskScheduler.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation WP Task Scheduler DLL 131795790154254642 0x7ffac2750000 106496 C:\Windows\System32\bcd.dll 10.0.14393.1794 (rs1_release.171008-1615) Microsoft Corporation BCD DLL 131795770645376622 0x7ffac2770000 69632 C:\Windows\system32\SSCORE.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Основная DLL-библиотека службы сервера 131795770645376622 0x7ffac2940000 45056 c:\windows\system32\CSystemEventsBrokerClient.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Classic System Events Broker Client Library 131795770645376622 0x7ffac29f0000 159744 c:\windows\system32\NetSetupApi.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Network Configuration API 131795770645376622 0x7ffac2a20000 81920 c:\windows\system32\rtutils.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Routing Utilities 131795770645376622 0x7ffac2a40000 974848 c:\windows\system32\iphlpsvc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Эта служба предоставляет автоматическое подключение IPv6 в сети IPv4. 131795770645376622 0x7ffac2b30000 286720 C:\Windows\System32\usermgrproxy.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation UserMgrProxy 131795770645376622 0x7ffac2c30000 135168 c:\windows\system32\CLIPC.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиент платформы лицензирования клиента 131795770645376622 0x7ffac2c60000 278528 c:\windows\system32\WDSCORE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Panther Engine Module 131795770645376622 0x7ffac2cb0000 778240 C:\Windows\System32\winsqlite3.dll 3.12.2 SQLite Development Team SQLite is a software library that implements a self-contained, serverless, zero-configuration, transactional SQL database engine. 131795770645376622 0x7ffac2d80000 5140480 C:\Windows\System32\cdp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API клиента Microsoft (R) CDP 131795770645376622 0x7ffac3360000 1396736 C:\Windows\System32\wpncore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Ядро извещающих уведомлений Windows 131795770645376622 0x7ffac34c0000 81920 C:\Windows\system32\vss_ps.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation Microsoft® Volume Shadow Copy Service proxy/stub 131795770645376622 0x7ffac34e0000 1843200 C:\Windows\System32\urlmon.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширения OLE32 для Win32 131795770645376622 0x7ffac36b0000 524288 C:\Windows\system32\msdelta.dll 5.00 (rs1_release.160715-1616) Microsoft Corporation Microsoft Patch Engine 131795770645376622 0x7ffac3740000 413696 C:\Windows\system32\upnp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API контрольной точки UPnP 131795770645376622 0x7ffac3810000 167936 C:\Windows\SYSTEM32\Cabinet.dll 5.00 (rs1_release.160715-1616) Microsoft Corporation Microsoft® Cabinet File API 131795770645376622 0x7ffac3840000 3088384 c:\windows\system32\ESENT.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширяемая подсистема хранения данных ESE для Microsoft(R) Windows(R) 131795770645376622 0x7ffac3b40000 245760 c:\windows\system32\wbem\wmisvc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation WMI 131795770645376622 0x7ffac3cb0000 2772992 C:\Windows\System32\iertutil.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служебная программа времени выполнения для Internet Explorer 131795770645376622 0x7ffac3f60000 225280 C:\Windows\system32\FWPolicyIOMgr.dll 10.0.14393.2189 (rs1_release.180329-1711) Microsoft Corporation FwPolicyIoMgr DLL 131795770645376622 0x7ffac3fa0000 331776 c:\windows\system32\srvsvc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека (DLL) ресурсов для службы сервера 131795770645376622 0x7ffac4000000 274432 C:\Windows\SYSTEM32\policymanager.dll 10.0.14393.2035 (rs1_release_inmarket.180110-1910) Microsoft Corporation Policy Manager DLL 131795770645376622 0x7ffac4160000 253952 c:\windows\system32\wpnservice.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служба системы push-уведомлений Windows 131795770645376622 0x7ffac4220000 520192 C:\Windows\SYSTEM32\wbemcomn.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation WMI 131795770645376622 0x7ffac4450000 86016 C:\Windows\SYSTEM32\usermgrcli.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation UserMgr API DLL 131795770645376622 0x7ffac4480000 499712 C:\Windows\system32\taskcomp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Оснастка обратной совместимости диспетчера задач 131795770645376622 0x7ffac4540000 69632 C:\Windows\system32\ProximityServicePAL.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Proximity Service PAL 131795775380234927 0x7ffac4b60000 155648 C:\Windows\System32\browser.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL службы браузера компьютеров 131795770645376622 0x7ffac4cc0000 36864 C:\Windows\system32\ProximityCommonPal.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Proximity Common PAL 131795770645376622 0x7ffac4dc0000 176128 C:\Windows\system32\ProximityCommon.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Универсальная реализация близкого взаимодействия 131795770645376622 0x7ffac4e70000 102400 C:\Windows\SYSTEM32\samcli.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Security Accounts Manager Client DLL 131795770645376622 0x7ffac4ee0000 331776 C:\Windows\System32\ProximityService.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Proximity Service Implementation 131795770645376622 0x7ffac4f60000 143360 C:\Windows\SYSTEM32\wcmapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Connection Manager Client API 131795770645376622 0x7ffac5c50000 131072 C:\Windows\system32\rasman.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Remote Access Connection Manager 131795770645376622 0x7ffac5ef0000 868352 C:\Windows\System32\MbaeApiPublic.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Mobile Broadband Account API 131795770645376622 0x7ffac60e0000 221184 C:\Windows\System32\XmlLite.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft XmlLite Library 131795770645376622 0x7ffac6410000 98304 C:\Windows\SYSTEM32\VssTrace.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека трассировки службы теневого копирования тома Microsoft® 131795770645376622 0x7ffac6430000 1581056 C:\Windows\SYSTEM32\VSSAPI.DLL 10.0.14393.953 (rs1_release_inmarket.170303-1614) Microsoft Corporation Microsoft® Volume Shadow Copy Requestor/Writer Services API DLL 131795770645376622 0x7ffac6610000 40960 C:\Windows\System32\rasadhlp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Remote Access AutoDial Helper 131795770645376622 0x7ffac66a0000 86016 C:\Windows\SYSTEM32\ondemandconnroutehelper.dll 10.0.14393.351 (rs1_release_inmarket.161014-1755) Microsoft Corporation On Demand Connctiond Route Helper 131795770645376622 0x7ffac6750000 1380352 c:\windows\system32\webservices.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Среда выполнения веб-служб Windows 131795770645376622 0x7ffac69c0000 839680 C:\Windows\System32\WINHTTP.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Службы HTTP Windows 131795786151642053 0x7ffac6a90000 49152 C:\Windows\System32\LocationFrameworkPS.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Geolocation Framework PS 131795770645376622 0x7ffac6c40000 2596864 C:\Windows\WinSxS\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.14393.953_none_42151e83c686086b\Comctl32.dll 6.10 (rs1_release_inmarket.170303-1614) Microsoft Corporation Библиотека элементов управления взаимодействия с пользователем 131795770645376622 0x7ffac7580000 1077248 C:\Windows\SYSTEM32\mrmcorer.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Windows MRM 131795770645376622 0x7ffac7700000 65536 C:\Windows\system32\CredentialMigrationHandler.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Credential Migration Handler 131795770645376622 0x7ffac79c0000 57344 C:\Windows\System32\npmproxy.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Network List Manager Proxy 131795770645376622 0x7ffac79d0000 53248 C:\Windows\system32\sqmapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SQM Client 131795770645376622 0x7ffac7aa0000 401408 C:\Windows\SYSTEM32\wlanapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows WLAN AutoConfig Client Side API DLL 131795783776936389 0x7ffac7ce0000 94208 C:\Windows\System32\usoapi.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Update Session Orchestrator API 131795770645376622 0x7ffac7d20000 106496 C:\Windows\SYSTEM32\msauserext.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation MSA USER Extension DLL 131795770645376622 0x7ffac7d60000 114688 c:\windows\system32\UpdatePolicy.dll 10.0.14393.2189 (rs1_release.180329-1711) Microsoft Corporation Update Policy Reader 131795770645376622 0x7ffac7e50000 86016 C:\Windows\system32\SSDPAPI.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation SSDP Client API DLL 131795770645376622 0x7ffac7e90000 749568 c:\windows\system32\FVEAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows BitLocker Drive Encryption API 131795770645376622 0x7ffac82d0000 643072 c:\windows\system32\shsvcs.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL служб оболочки Windows 131795770645376622 0x7ffac83d0000 106496 C:\Windows\SYSTEM32\dhcpcsvc.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служба DHCP-клиента 131795770645376622 0x7ffac83f0000 90112 C:\Windows\SYSTEM32\dhcpcsvc6.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиент DHCPv6 131795770645376622 0x7ffac8420000 434176 c:\windows\system32\fwpuclnt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API пользовательского режима FWP/IPsec 131795770645376622 0x7ffac8590000 135168 C:\Windows\System32\LocationWinPalMisc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Location Platform Abstraction Layer 131795770645376622 0x7ffac85c0000 1810432 c:\windows\system32\LocationFramework.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Платформа географического положения Windows 131795770645376622 0x7ffac8780000 274432 c:\windows\system32\UBPM.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL единого диспетчера фоновых процессов 131795770645376622 0x7ffac8810000 45056 c:\windows\system32\WINNSI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Network Store Information RPC interface 131795770645376622 0x7ffac8880000 69632 c:\windows\system32\WMICLNT.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation WMI Client API 131795770645376622 0x7ffac8b60000 966656 c:\windows\system32\schedsvc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служба планировщика заданий 131795783774133461 0x7ffac8cf0000 815104 C:\Windows\System32\taskschd.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Task Scheduler COM API 131795770645376622 0x7ffac8dc0000 167936 C:\Windows\system32\dbgcore.DLL 10.0.14321.1024 (debuggers(dbg).160715-1616) Microsoft Windows Core Debugging Helpers 131795770645376622 0x7ffac8df0000 1646592 C:\Windows\system32\dbghelp.dll 10.0.14321.1024 (rs1_release.160715-1616) Microsoft Windows Image Helper 131795770645376622 0x7ffac8fa0000 253952 c:\windows\system32\logoncli.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Net Logon Client DLL 131795770645376622 0x7ffac90b0000 90112 c:\windows\system32\wkscli.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Workstation Service Client DLL 131795770645376622 0x7ffac91c0000 167936 C:\Windows\SYSTEM32\profsvcext.dll 10.0.14393.1532 (rs1_release_d.170711-1840) Microsoft Corporation ProfSvcExt 131795770645376622 0x7ffac9220000 397312 C:\Windows\SYSTEM32\wevtapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API настройки и использования событий 131795770645376622 0x7ffac9290000 40960 c:\windows\system32\DSROLE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DS Setup Client DLL 131795770645376622 0x7ffac92a0000 90112 c:\windows\system32\sens.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служба уведомления о системных событиях (SENS) 131795770645376622 0x7ffac92c0000 98304 c:\windows\system32\themeservice.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL службы темы оболочки Windows 131795770645376622 0x7ffac92e0000 1269760 C:\Windows\SYSTEM32\wintypes.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL основных типов Windows 131795770645376622 0x7ffac9420000 380928 c:\windows\system32\profsvc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ProfSvc 131795770645376622 0x7ffac9790000 98304 c:\windows\system32\nlaapi.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Network Location Awareness 2 131795770645376622 0x7ffac9a70000 1257472 c:\windows\system32\gpsvc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиент групповой политики 131795770645376622 0x7ffac9bb0000 479232 C:\Windows\System32\ES.DLL 2001.12.10941.16384 (rs1_release.160715-1616) Microsoft Corporation COM+ 131795770645376622 0x7ffac9f10000 221184 C:\Windows\System32\netprofm.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Network List Manager 131795770645376622 0x7ffaca100000 36864 C:\Windows\SYSTEM32\httpprxc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Proxy Manager Provider RPC interface 131795770645376622 0x7ffaca1f0000 65536 C:\Windows\SYSTEM32\storageusage.dll 10.0.14393.82 (rs1_release.160805-1735) Microsoft Corporation Storage Usage 131795770645376622 0x7ffaca250000 49152 C:\Windows\SYSTEM32\bi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Background Broker Infrastructure Client Library 131795770645376622 0x7ffaca280000 73728 C:\Windows\System32\BitsProxy.dll 7.8.14393.0 (rs1_release.160715-1616) Microsoft Corporation Background Intelligent Transfer Service Proxy 131795770645376622 0x7ffaca340000 1593344 C:\Windows\System32\PROPSYS.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Система страниц свойств (Майкрософт) 131795770645376622 0x7ffaca4e0000 77824 C:\Windows\SYSTEM32\wtsapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Remote Desktop Session Host Server SDK APIs 131795770645376622 0x7ffaca500000 69632 C:\Windows\System32\wups.dll 10.0.14393.2122 (rs1_release.180217-2341) Microsoft Corporation Windows Update client proxy stub 131795770645376622 0x7ffaca570000 421888 C:\Windows\SYSTEM32\Bcp47Langs.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation BCP47 Language Classes 131795770645376622 0x7ffaca610000 143360 C:\Windows\SYSTEM32\SAMLIB.dll 10.0.14393.82 (rs1_release.160805-1735) Microsoft Corporation SAM Library DLL 131795770645376622 0x7ffaca700000 32768 c:\windows\system32\DABAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Desktop Activity Broker API 131795770645376622 0x7ffaca720000 77824 C:\Windows\system32\bitsigd.dll 7.8.14393.0 (rs1_release.160715-1616) Microsoft Corporation Background Intelligent Transfer Service IGD Support 131795770645376622 0x7ffacab70000 53248 c:\windows\system32\lfsvc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служба географического положения 131795770645376622 0x7ffacac40000 53248 c:\windows\system32\seclogon.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL службы вторичного входа 131795770645376622 0x7ffacac50000 45056 c:\windows\system32\bitsperf.dll 7.8.14393.0 (rs1_release.160715-1616) Microsoft Corporation Perfmon Counter Access 131795770645376622 0x7ffacad70000 278528 c:\windows\system32\BrokerLib.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Broker Base Library 131795770645376622 0x7ffacadf0000 499712 c:\windows\system32\apphelp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиентская библиотека совместимости приложений 131795770645376622 0x7ffacb000000 53248 c:\windows\system32\SYSNTFY.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Windows Notifications Dynamic Link Library 131795770645376622 0x7ffacb140000 593920 C:\Windows\System32\msvcp110_win.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Microsoft® STL110 C++ Runtime Library 131795770645376622 0x7ffacb1e0000 1163264 C:\Windows\SYSTEM32\twinapi.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation twinapi.appcore 131795770645376622 0x7ffacb300000 364544 C:\Windows\System32\VEEventDispatcher.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Visual Element Event dispatcher 131795770645376622 0x7ffacb360000 176128 C:\Windows\system32\fwbase.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Firewall Base DLL 131795770645376622 0x7ffacb3d0000 110592 C:\Windows\SYSTEM32\resourcepolicyclient.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Resource Policy Client 131795770645376622 0x7ffacb3f0000 163840 c:\windows\system32\DEVOBJ.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Device Information Set DLL 131795770645376622 0x7ffacb420000 204800 C:\Windows\SYSTEM32\ntmarta.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик Windows NT MARTA 131795770645376622 0x7ffacb460000 548864 C:\Windows\SYSTEM32\firewallapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API брандмауэра Windows 131795770645376622 0x7ffacb6e0000 49152 c:\windows\system32\HID.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека пользователя HID 131795770645376622 0x7ffacb6f0000 143360 C:\Windows\SYSTEM32\gpapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиентские функции API групповой политики 131795770645376622 0x7ffacb920000 81920 C:\Windows\SYSTEM32\WLDP.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Политика блокировки Windows 131795770645376622 0x7ffacb960000 303104 c:\windows\system32\AUTHZ.dll 10.0.14393.1737 (rs1_release_inmarket.170914-1249) Microsoft Corporation Authorization Framework 131795770645376622 0x7ffacbaf0000 495616 C:\Windows\system32\schannel.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик безопасности TLS/SSL 131795770645376622 0x7ffacbbb0000 208896 C:\Windows\system32\rsaenh.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Enhanced Cryptographic Provider 131795770645376622 0x7ffacbbf0000 40960 C:\Windows\system32\DPAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Data Protection API 131795770645376622 0x7ffacbd30000 229376 C:\Windows\system32\IPHLPAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API вспомогательного приложения IP 131795770645376622 0x7ffacbd70000 659456 C:\Windows\system32\DNSAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Динамическая библиотека API DNS-клиента 131795770645376622 0x7ffacbe20000 53248 c:\windows\system32\netutils.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API Helpers DLL 131795770645376622 0x7ffacbe40000 126976 c:\windows\system32\USERENV.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Userenv 131795770645376622 0x7ffacbfb0000 376832 C:\Windows\system32\MSWSOCK.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширение поставщика службы API Microsoft Windows Sockets 2.0 131795770645376622 0x7ffacc150000 94208 C:\Windows\SYSTEM32\cryptsp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Cryptographic Service Provider API 131795770645376622 0x7ffacc170000 45056 C:\Windows\System32\CRYPTBASE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base cryptographic API DLL 131795770645376622 0x7ffacc1f0000 241664 C:\Windows\System32\NTASN1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft ASN.1 API 131795770645376622 0x7ffacc230000 155648 C:\Windows\System32\ncrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Маршрутизатор Windows NCrypt 131795770645376622 0x7ffacc350000 180224 C:\Windows\System32\SspiCli.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Security Support Provider Interface 131795770645376622 0x7ffacc500000 102400 c:\windows\system32\EventAggregation.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Event Aggregation User Mode Library 131795770645376622 0x7ffacc520000 622592 C:\Windows\SYSTEM32\sxs.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Fusion 2.5 131795770645376622 0x7ffacc5c0000 352256 C:\Windows\SYSTEM32\winsta.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Winstation Library 131795770645376622 0x7ffacc620000 176128 c:\windows\system32\bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795770645376622 0x7ffacc6e0000 61440 C:\Windows\System32\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795770645376622 0x7ffacc6f0000 311296 C:\Windows\System32\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795770645376622 0x7ffacc740000 81920 C:\Windows\System32\profapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Profile Basic API 131795770645376622 0x7ffacc760000 65536 C:\Windows\System32\MSASN1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ASN.1 Runtime APIs 131795770645376622 0x7ffacc8f0000 1003520 C:\Windows\System32\ucrtbase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645376622 0x7ffacc9f0000 434176 C:\Windows\System32\bcryptPrimitives.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Cryptographic Primitives Library 131795770645376622 0x7ffacca60000 122880 C:\Windows\System32\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795770645376622 0x7ffacca80000 348160 C:\Windows\System32\WINTRUST.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation Microsoft Trust Verification APIs 131795770645376622 0x7ffaccae0000 692224 C:\Windows\System32\shcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795770645376622 0x7ffaccb90000 7180288 C:\Windows\System32\windows.storage.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API хранения Microsoft WinRT 131795770645376622 0x7ffacd270000 2215936 C:\Windows\System32\KERNELBASE.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645376622 0x7ffacd490000 1871872 C:\Windows\System32\CRYPT32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API32 криптографии 131795770645376622 0x7ffacd710000 638976 C:\Windows\System32\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645376622 0x7ffacd7b0000 270336 C:\Windows\System32\cfgmgr32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Configuration Manager DLL 131795770645376622 0x7ffacd810000 22056960 C:\Windows\System32\SHELL32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Общая библиотека оболочки Windows 131795770645376622 0x7ffaced20000 782336 C:\Windows\System32\OLEAUT32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795770645376622 0x7ffacede0000 450560 C:\Windows\System32\coml2.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft COM for Windows 131795770645376622 0x7ffacee50000 1183744 C:\Windows\System32\RPCRT4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795770645376622 0x7ffacef80000 32768 C:\Windows\System32\NSI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation NSI User-mode interface DLL 131795770645376622 0x7ffacef90000 647168 C:\Windows\System32\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795770645376622 0x7ffacf030000 651264 C:\Windows\System32\clbcatq.dll 2001.12.10941.16384 (rs1_release.160715-1616) Microsoft Corporation COM+ Configuration Catalog 131795770645376622 0x7ffacf0d0000 704512 C:\Windows\System32\KERNEL32.DLL 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645376622 0x7ffacf180000 376832 C:\Windows\System32\WLDAP32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Win32 LDAP API DLL 131795770645376622 0x7ffacf340000 4362240 C:\Windows\System32\setupapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Setup API 131795770645376622 0x7ffacf770000 212992 C:\Windows\System32\GDI32.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation GDI Client DLL 131795770645376622 0x7ffacf820000 434176 C:\Windows\System32\WS2_32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation 32-разрядная библиотека Windows Socket 2.0 131795770645376622 0x7ffacf8c0000 1462272 C:\Windows\System32\user32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795770645376622 0x7ffacfb30000 2916352 C:\Windows\System32\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795770645376622 0x7ffacfe00000 114688 C:\Windows\System32\imagehlp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT Image Helper 131795770645376622 0x7ffacfe20000 663552 C:\Windows\System32\advapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795770645376622 0x7ffad0070000 1277952 C:\Windows\System32\ole32.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft OLE для Windows 131795770645376622 0x7ffad01b0000 335872 C:\Windows\System32\shlwapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека небольших программ оболочки 131795770645376622 0x7ffad0210000 364544 C:\Windows\System32\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795770645376622 0x7ffad0270000 1908736 C:\Windows\SYSTEM32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 25 372 580 4 00000000:000003e5 131765776305463443 0 0 1 Обязательная метка\Обязательный уровень системы NT AUTHORITY\LOCAL SERVICE svchost.exe C:\Windows\system32\svchost.exe C:\Windows\system32\svchost.exe -k LocalService Microsoft Corporation 10.0.14393.0 (rs1_release.160715-1616) Хост-процесс для служб Windows 131795770645376755 0x7ff718c20000 57344 C:\Windows\system32\svchost.exe 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Хост-процесс для служб Windows 131795770645376755 0x7ffab1c40000 1302528 c:\windows\system32\LicenseManager.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation LicenseManager 131795770645376755 0x7ffab91f0000 233472 c:\windows\system32\sstpsvc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Обеспечивает возможность использования SSTP для подключения к удаленным компьютерам с помощью VPN. 131795770645376755 0x7ffab93b0000 897024 C:\Windows\System32\TokenBroker.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Token Broker 131795770645376755 0x7ffabaab0000 94208 C:\Windows\SYSTEM32\profext.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation profext 131795780812578370 0x7ffabafc0000 700416 C:\Windows\System32\wer.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека сообщений об ошибках Windows 131795770645376755 0x7ffabbd10000 65536 C:\Windows\System32\TOKENBINDING.dll 10.0.14393.1593 (rs1_release.170731-1934) Microsoft Corporation Token Binding Protocol 131795770645376755 0x7ffabc610000 540672 c:\windows\system32\w32time.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служба времени Windows 131795770645376755 0x7ffabca50000 819200 C:\Windows\System32\Windows.Security.Authentication.Web.Core.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Token Broker WinRT API 131795770645376755 0x7ffabcb70000 262144 C:\Windows\System32\cdprt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft (R) CDP Client WinRT API 131795770645376755 0x7ffabef00000 499712 c:\windows\system32\cdpsvc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служба CDP Майкрософт (R) 131795770645376755 0x7ffabf2d0000 344064 C:\Windows\system32\ncryptprov.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft KSP 131795770645376755 0x7ffabf330000 2457600 C:\Windows\System32\msxml6.dll 6.30.14393.2156 Microsoft Corporation MSXML 6.0 131795770645376755 0x7ffabfbe0000 1011712 C:\Windows\System32\Windows.Security.Authentication.OnlineId.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation Windows Runtime OnlineId Authentication DLL 131795770645376755 0x7ffabff60000 135168 C:\Windows\system32\ncryptsslp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft SChannel Provider 131795770645376755 0x7ffac05e0000 40960 c:\windows\system32\sbservicetrigger.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Socket Broker Service Trigger 131795770645376755 0x7ffac05f0000 94208 C:\Windows\System32\wwapi.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation WWAN API 131795770645376755 0x7ffac0910000 724992 C:\Windows\System32\Windows.Networking.Connectivity.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Networking Connectivity Runtime DLL 131795770645376755 0x7ffac0ad0000 86016 C:\Windows\SYSTEM32\mskeyprotect.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик защиты ключей (Майкрософт) 131795770645376755 0x7ffac1160000 892928 C:\Windows\System32\wuapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API клиента Центра обновления Windows 131795770645376755 0x7ffac1d60000 589824 C:\Windows\System32\webio.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API протоколов передачи по Веб 131795770645376755 0x7ffac23c0000 331776 C:\Windows\System32\OneCoreCommonProxyStub.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation OneCore Common Proxy Stub 131795770645376755 0x7ffac2a20000 81920 c:\windows\system32\rtutils.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Routing Utilities 131795770645376755 0x7ffac2b30000 286720 C:\Windows\System32\usermgrproxy.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation UserMgrProxy 131795770645376755 0x7ffac2c30000 135168 c:\windows\system32\CLIPC.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиент платформы лицензирования клиента 131795770645376755 0x7ffac2d80000 5140480 c:\windows\system32\cdp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API клиента Microsoft (R) CDP 131795780812550384 0x7ffac3290000 86016 C:\Windows\System32\fthsvc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Модуль диагностики отказоустойчивой кучи Microsoft Windows 131795770645376755 0x7ffac3cb0000 2772992 C:\Windows\System32\iertutil.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служебная программа времени выполнения для Internet Explorer 131795770645376755 0x7ffac3f60000 225280 C:\Windows\System32\FWPolicyIOMgr.dll 10.0.14393.2189 (rs1_release.180329-1711) Microsoft Corporation FwPolicyIoMgr DLL 131795770645376755 0x7ffac4050000 118784 c:\windows\system32\wdi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Инфраструктура диагностики Windows 131795770645376755 0x7ffac4130000 40960 c:\windows\system32\fdphost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служба размещения поставщиков функций обнаружения 131795770645376755 0x7ffac41a0000 77824 C:\Windows\System32\fdproxy.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation Function Discovery Proxy Dll 131795770645376755 0x7ffac4200000 98304 C:\Windows\system32\perftrack.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Performance PerfTrack 131795770645376755 0x7ffac42a0000 659456 C:\Windows\System32\StateRepository.Core.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation StateRepository Core 131795770645376755 0x7ffac4450000 86016 C:\Windows\SYSTEM32\usermgrcli.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation UserMgr API DLL 131795770645376755 0x7ffac46d0000 4161536 C:\Windows\System32\Windows.StateRepository.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Сервер Windows StateRepository API Server 131795770645376755 0x7ffac5070000 798720 C:\Windows\System32\Windows.Web.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL веб-клиента 131795770645376755 0x7ffac5b80000 184320 C:\Windows\SYSTEM32\AuthBroker.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API WinRT для веб-проверки подлинности 131795770645376755 0x7ffac60e0000 221184 C:\Windows\System32\XmlLite.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft XmlLite Library 131795770645376755 0x7ffac6400000 53248 c:\windows\system32\HTTPAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation HTTP Protocol Stack API 131795770645376755 0x7ffac6610000 40960 C:\Windows\System32\rasadhlp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Remote Access AutoDial Helper 131795770645376755 0x7ffac66a0000 86016 C:\Windows\SYSTEM32\ondemandconnroutehelper.dll 10.0.14393.351 (rs1_release_inmarket.161014-1755) Microsoft Corporation On Demand Connctiond Route Helper 131795770645376755 0x7ffac66e0000 122880 C:\Windows\System32\fdssdp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Function Discovery SSDP Provider Dll 131795770645376755 0x7ffac6710000 172032 C:\Windows\System32\FunDisc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL обнаружения функции 131795770645376755 0x7ffac6750000 1380352 C:\Windows\System32\webservices.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Среда выполнения веб-служб Windows 131795770645376755 0x7ffac68b0000 696320 C:\Windows\System32\wsdapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Веб-службы для библиотек DLL API-интерфейсов устройств 131795770645376755 0x7ffac6960000 167936 C:\Windows\System32\fdwsd.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Function Discovery WS Discovery Provider Dll 131795770645376755 0x7ffac69c0000 839680 C:\Windows\System32\WINHTTP.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Службы HTTP Windows 131795770645376755 0x7ffac76d0000 65536 C:\Windows\System32\vmictimeprovider.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Virtual Machine Integration Component Time Sync Provider Library 131795770645376755 0x7ffac79c0000 57344 C:\Windows\System32\npmproxy.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Network List Manager Proxy 131795770645376755 0x7ffac7a10000 544768 c:\windows\system32\netprofmsvc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Диспетчер списка сетей 131795770645376755 0x7ffac7aa0000 401408 C:\Windows\SYSTEM32\wlanapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows WLAN AutoConfig Client Side API DLL 131795770645376755 0x7ffac7d20000 106496 C:\Windows\SYSTEM32\msauserext.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation MSA USER Extension DLL 131795770645376755 0x7ffac7e50000 86016 C:\Windows\System32\SSDPAPI.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation SSDP Client API DLL 131795770645376755 0x7ffac7f70000 49152 c:\windows\system32\licensemanagersvc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation LicenseManagerSvc 131795770645376755 0x7ffac83d0000 106496 C:\Windows\SYSTEM32\dhcpcsvc.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служба DHCP-клиента 131795770645376755 0x7ffac83f0000 90112 C:\Windows\SYSTEM32\dhcpcsvc6.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиент DHCPv6 131795770645376755 0x7ffac8420000 434176 C:\Windows\System32\fwpuclnt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API пользовательского режима FWP/IPsec 131795770645376755 0x7ffac8540000 286720 C:\Windows\System32\vaultcli.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиентская библиотека хранилища учетных данных 131795770645376755 0x7ffac8810000 45056 C:\Windows\SYSTEM32\WINNSI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Network Store Information RPC interface 131795770645376755 0x7ffac8fa0000 253952 c:\windows\system32\logoncli.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Net Logon Client DLL 131795770645376755 0x7ffac90a0000 53248 c:\windows\system32\nsisvc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation RPC-сервер интерфейса сохранения сети 131795770645376755 0x7ffac90b0000 90112 C:\Windows\SYSTEM32\wkscli.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Workstation Service Client DLL 131795770645376755 0x7ffac91f0000 172032 c:\windows\system32\FontProvider.dll 10.0.14393.1066 (rs1_release_sec.170327-1835) Microsoft Corporation Windows Font Provider Library 131795780812573070 0x7ffac9220000 397312 C:\Windows\System32\wevtapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API настройки и использования событий 131795770645376755 0x7ffac9290000 40960 c:\windows\system32\DSROLE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DS Setup Client DLL 131795770645376755 0x7ffac92e0000 1269760 C:\Windows\System32\WinTypes.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL основных типов Windows 131795770645376755 0x7ffac9790000 98304 c:\windows\system32\nlaapi.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Network Location Awareness 2 131795770645376755 0x7ffac9860000 1896448 c:\windows\system32\fntcache.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служба кэша шрифтов Windows 131795770645376755 0x7ffac9bb0000 479232 c:\windows\system32\es.dll 2001.12.10941.16384 (rs1_release.160715-1616) Microsoft Corporation COM+ 131795770645376755 0x7ffaca130000 204800 C:\Windows\SYSTEM32\windows.devices.radios.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows.Devices.Radios DLL 131795770645376755 0x7ffaca280000 73728 C:\Windows\System32\BitsProxy.dll 7.8.14393.0 (rs1_release.160715-1616) Microsoft Corporation Background Intelligent Transfer Service Proxy 131795770645376755 0x7ffaca340000 1593344 C:\Windows\system32\propsys.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Система страниц свойств (Майкрософт) 131795770645376755 0x7ffaca500000 69632 C:\Windows\System32\wups.dll 10.0.14393.2122 (rs1_release.180217-2341) Microsoft Corporation Windows Update client proxy stub 131795780812567382 0x7ffacadf0000 499712 C:\Windows\System32\apphelp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиентская библиотека совместимости приложений 131795770645376755 0x7ffacb140000 593920 c:\windows\system32\msvcp110_win.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Microsoft® STL110 C++ Runtime Library 131795770645376755 0x7ffacb1e0000 1163264 C:\Windows\System32\twinapi.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation twinapi.appcore 131795770645376755 0x7ffacb300000 364544 c:\windows\system32\VEEventDispatcher.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Visual Element Event dispatcher 131795770645376755 0x7ffacb360000 176128 C:\Windows\System32\fwbase.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Firewall Base DLL 131795770645376755 0x7ffacb420000 204800 C:\Windows\SYSTEM32\ntmarta.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик Windows NT MARTA 131795770645376755 0x7ffacb460000 548864 C:\Windows\System32\FirewallAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API брандмауэра Windows 131795770645376755 0x7ffacb6f0000 143360 C:\Windows\SYSTEM32\gpapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиентские функции API групповой политики 131795770645376755 0x7ffacb920000 81920 C:\Windows\SYSTEM32\WLDP.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Политика блокировки Windows 131795770645376755 0x7ffacbaf0000 495616 C:\Windows\system32\schannel.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик безопасности TLS/SSL 131795770645376755 0x7ffacbbb0000 208896 C:\Windows\system32\rsaenh.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Enhanced Cryptographic Provider 131795770645376755 0x7ffacbbf0000 40960 C:\Windows\SYSTEM32\DPAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Data Protection API 131795770645376755 0x7ffacbd30000 229376 c:\windows\system32\IPHLPAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API вспомогательного приложения IP 131795770645376755 0x7ffacbd70000 659456 C:\Windows\SYSTEM32\DNSAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Динамическая библиотека API DNS-клиента 131795770645376755 0x7ffacbe20000 53248 C:\Windows\SYSTEM32\netutils.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API Helpers DLL 131795770645376755 0x7ffacbe40000 126976 c:\windows\system32\USERENV.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Userenv 131795770645376755 0x7ffacbfb0000 376832 C:\Windows\system32\mswsock.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширение поставщика службы API Microsoft Windows Sockets 2.0 131795770645376755 0x7ffacc150000 94208 C:\Windows\System32\CRYPTSP.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Cryptographic Service Provider API 131795770645376755 0x7ffacc170000 45056 C:\Windows\system32\CRYPTBASE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base cryptographic API DLL 131795770645376755 0x7ffacc1f0000 241664 c:\windows\system32\NTASN1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft ASN.1 API 131795770645376755 0x7ffacc230000 155648 c:\windows\system32\ncrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Маршрутизатор Windows NCrypt 131795770645376755 0x7ffacc350000 180224 C:\Windows\System32\SspiCli.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Security Support Provider Interface 131795770645376755 0x7ffacc520000 622592 C:\Windows\SYSTEM32\sxs.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Fusion 2.5 131795770645376755 0x7ffacc620000 176128 C:\Windows\System32\bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795770645376755 0x7ffacc6e0000 61440 C:\Windows\System32\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795770645376755 0x7ffacc6f0000 311296 C:\Windows\System32\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795770645376755 0x7ffacc740000 81920 C:\Windows\System32\profapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Profile Basic API 131795770645376755 0x7ffacc760000 65536 C:\Windows\System32\MSASN1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ASN.1 Runtime APIs 131795770645376755 0x7ffacc8f0000 1003520 C:\Windows\System32\ucrtbase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645376755 0x7ffacc9f0000 434176 C:\Windows\System32\bcryptPrimitives.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Cryptographic Primitives Library 131795770645376755 0x7ffacca60000 122880 C:\Windows\System32\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795770645376755 0x7ffacca80000 348160 C:\Windows\System32\WINTRUST.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation Microsoft Trust Verification APIs 131795770645376755 0x7ffaccae0000 692224 C:\Windows\System32\shcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795770645376755 0x7ffacd270000 2215936 C:\Windows\System32\KERNELBASE.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645376755 0x7ffacd490000 1871872 C:\Windows\System32\CRYPT32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API32 криптографии 131795770645376755 0x7ffacd710000 638976 C:\Windows\System32\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645376755 0x7ffacd7b0000 270336 C:\Windows\System32\cfgmgr32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Configuration Manager DLL 131795770645376755 0x7ffaced20000 782336 C:\Windows\System32\OLEAUT32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795770645376755 0x7ffacede0000 450560 C:\Windows\System32\coml2.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft COM for Windows 131795770645376755 0x7ffacee50000 1183744 C:\Windows\System32\RPCRT4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795770645376755 0x7ffacef80000 32768 C:\Windows\System32\NSI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation NSI User-mode interface DLL 131795770645376755 0x7ffacef90000 647168 C:\Windows\System32\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795770645376755 0x7ffacf030000 651264 C:\Windows\System32\clbcatq.dll 2001.12.10941.16384 (rs1_release.160715-1616) Microsoft Corporation COM+ Configuration Catalog 131795770645376755 0x7ffacf0d0000 704512 C:\Windows\System32\KERNEL32.DLL 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645376755 0x7ffacf770000 212992 C:\Windows\System32\GDI32.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation GDI Client DLL 131795770645376755 0x7ffacf820000 434176 C:\Windows\System32\WS2_32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation 32-разрядная библиотека Windows Socket 2.0 131795770645376755 0x7ffacf8c0000 1462272 C:\Windows\System32\user32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795770645376755 0x7ffacfb30000 2916352 C:\Windows\System32\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795770645376755 0x7ffacfe20000 663552 C:\Windows\System32\advapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795770645376755 0x7ffad0070000 1277952 C:\Windows\System32\ole32.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft OLE для Windows 131795770645376755 0x7ffad0210000 364544 C:\Windows\System32\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795770645376755 0x7ffad0270000 1908736 C:\Windows\SYSTEM32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 26 360 580 4 00000000:000003e5 131765776311216195 0 0 1 Обязательная метка\Обязательный уровень системы NT AUTHORITY\LOCAL SERVICE svchost.exe C:\Windows\System32\svchost.exe C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted Microsoft Corporation 10.0.14393.0 (rs1_release.160715-1616) Хост-процесс для служб Windows 131795770645376855 0x7ff718c20000 57344 C:\Windows\System32\svchost.exe 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Хост-процесс для служб Windows 131795770645376855 0x7ffab4af0000 606208 C:\Windows\System32\audioses.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Сеанс обработки звука 131795770645376855 0x7ffabaad0000 352256 C:\Windows\System32\deviceaccess.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Device Broker And Policy COM Server 131795770645376855 0x7ffac7e70000 36864 C:\Windows\SYSTEM32\coreaudiopolicymanagerext.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation "coreaudiopolicymanagerext.DYNLINK" 131795770645376855 0x7ffac87d0000 237568 c:\windows\system32\AUDIOSRVPOLICYMANAGER.dll 10.0.14393.351 (rs1_release_inmarket.161014-1755) Microsoft Corporation Windows Audio Service Policy Manager 131795770645376855 0x7ffac90d0000 978944 c:\windows\system32\audiosrv.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служба Windows Audio 131795770645376855 0x7ffac92e0000 1269760 C:\Windows\SYSTEM32\wintypes.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL основных типов Windows 131795770645376855 0x7ffac9480000 462848 c:\windows\system32\MMDevAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation MMDevice API 131795770645376855 0x7ffaca340000 1593344 c:\windows\system32\PROPSYS.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Система страниц свойств (Майкрософт) 131795770645376855 0x7ffaca4e0000 77824 C:\Windows\SYSTEM32\wtsapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Remote Desktop Session Host Server SDK APIs 131795770645376855 0x7ffacb1e0000 1163264 C:\Windows\System32\twinapi.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation twinapi.appcore 131795770645376855 0x7ffacb3f0000 163840 c:\windows\system32\DEVOBJ.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Device Information Set DLL 131795770645376855 0x7ffacb920000 81920 C:\Windows\SYSTEM32\WLDP.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Политика блокировки Windows 131795770645376855 0x7ffacc5c0000 352256 C:\Windows\SYSTEM32\winsta.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Winstation Library 131795770645376855 0x7ffacc620000 176128 C:\Windows\System32\bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795770645376855 0x7ffacc6e0000 61440 C:\Windows\System32\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795770645376855 0x7ffacc6f0000 311296 C:\Windows\System32\POWRPROF.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795770645376855 0x7ffacc760000 65536 C:\Windows\System32\MSASN1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ASN.1 Runtime APIs 131795770645376855 0x7ffacc8f0000 1003520 C:\Windows\System32\ucrtbase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645376855 0x7ffacc9f0000 434176 C:\Windows\System32\bcryptPrimitives.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Cryptographic Primitives Library 131795770645376855 0x7ffacca60000 122880 C:\Windows\System32\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795770645376855 0x7ffacca80000 348160 C:\Windows\System32\WINTRUST.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation Microsoft Trust Verification APIs 131795770645376855 0x7ffaccae0000 692224 C:\Windows\System32\shcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795770645376855 0x7ffacd270000 2215936 C:\Windows\System32\KERNELBASE.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645376855 0x7ffacd490000 1871872 C:\Windows\System32\CRYPT32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API32 криптографии 131795770645376855 0x7ffacd710000 638976 C:\Windows\System32\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645376855 0x7ffacd7b0000 270336 C:\Windows\System32\cfgmgr32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Configuration Manager DLL 131795770645376855 0x7ffaced20000 782336 C:\Windows\System32\OLEAUT32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795770645376855 0x7ffacee50000 1183744 C:\Windows\System32\RPCRT4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795770645376855 0x7ffacef90000 647168 C:\Windows\System32\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795770645376855 0x7ffacf030000 651264 C:\Windows\System32\clbcatq.dll 2001.12.10941.16384 (rs1_release.160715-1616) Microsoft Corporation COM+ Configuration Catalog 131795770645376855 0x7ffacf0d0000 704512 C:\Windows\System32\KERNEL32.DLL 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645376855 0x7ffacf770000 212992 C:\Windows\System32\GDI32.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation GDI Client DLL 131795770645376855 0x7ffacf8c0000 1462272 C:\Windows\System32\user32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795770645376855 0x7ffacfb30000 2916352 C:\Windows\System32\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795770645376855 0x7ffad0210000 364544 C:\Windows\System32\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795770645376855 0x7ffad0270000 1908736 C:\Windows\SYSTEM32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 27 1040 580 4 00000000:000003e5 131765776311708649 0 0 1 Обязательная метка\Обязательный уровень системы NT AUTHORITY\LOCAL SERVICE svchost.exe C:\Windows\system32\svchost.exe C:\Windows\system32\svchost.exe -k LocalServiceNetworkRestricted Microsoft Corporation 10.0.14393.0 (rs1_release.160715-1616) Хост-процесс для служб Windows 131795770645376955 0x7ff718c20000 57344 C:\Windows\system32\svchost.exe 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Хост-процесс для служб Windows 131795770645376955 0x7ffac8820000 57344 C:\Windows\SYSTEM32\cmintegrator.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation cmintegrator.dll 131795770645376955 0x7ffac8880000 69632 C:\Windows\system32\WMICLNT.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation WMI Client API 131795770645376955 0x7ffac8c50000 245760 C:\Windows\system32\wcmcsp.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Windows Connection Service Provider DLL 131795770645376955 0x7ffac8fe0000 737280 c:\windows\system32\wcmsvc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL службы диспетчера подключений Windows 131795770645376955 0x7ffac9790000 98304 C:\Windows\SYSTEM32\nlaapi.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Network Location Awareness 2 131795770645376955 0x7ffaca4e0000 77824 C:\Windows\SYSTEM32\wtsapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Remote Desktop Session Host Server SDK APIs 131795770645376955 0x7ffacb6f0000 143360 C:\Windows\SYSTEM32\gpapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиентские функции API групповой политики 131795770645376955 0x7ffacb920000 81920 C:\Windows\SYSTEM32\WLDP.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Политика блокировки Windows 131795770645376955 0x7ffacbd30000 229376 c:\windows\system32\IPHLPAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API вспомогательного приложения IP 131795770645376955 0x7ffacc5c0000 352256 C:\Windows\SYSTEM32\WINSTA.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Winstation Library 131795770645376955 0x7ffacc6e0000 61440 C:\Windows\System32\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795770645376955 0x7ffacc6f0000 311296 C:\Windows\System32\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795770645376955 0x7ffacc760000 65536 C:\Windows\System32\MSASN1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ASN.1 Runtime APIs 131795770645376955 0x7ffacc8f0000 1003520 C:\Windows\System32\ucrtbase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645376955 0x7ffacc9f0000 434176 C:\Windows\System32\bcryptPrimitives.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Cryptographic Primitives Library 131795770645376955 0x7ffacca60000 122880 C:\Windows\System32\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795770645376955 0x7ffacca80000 348160 C:\Windows\System32\WINTRUST.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation Microsoft Trust Verification APIs 131795770645376955 0x7ffacd270000 2215936 C:\Windows\System32\KERNELBASE.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645376955 0x7ffacd490000 1871872 C:\Windows\System32\CRYPT32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API32 криптографии 131795770645376955 0x7ffacd710000 638976 C:\Windows\System32\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645376955 0x7ffacd7b0000 270336 C:\Windows\System32\cfgmgr32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Configuration Manager DLL 131795770645376955 0x7ffaced20000 782336 C:\Windows\System32\OLEAUT32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795770645376955 0x7ffacee50000 1183744 C:\Windows\System32\RPCRT4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795770645376955 0x7ffacef80000 32768 C:\Windows\System32\NSI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation NSI User-mode interface DLL 131795770645376955 0x7ffacef90000 647168 C:\Windows\System32\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795770645376955 0x7ffacf0d0000 704512 C:\Windows\System32\KERNEL32.DLL 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645376955 0x7ffacf770000 212992 C:\Windows\System32\GDI32.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation GDI Client DLL 131795770645376955 0x7ffacf820000 434176 C:\Windows\System32\WS2_32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation 32-разрядная библиотека Windows Socket 2.0 131795770645376955 0x7ffacf8c0000 1462272 C:\Windows\System32\user32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795770645376955 0x7ffacfb30000 2916352 C:\Windows\System32\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795770645376955 0x7ffacfe20000 663552 C:\Windows\System32\advapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795770645376955 0x7ffad0210000 364544 C:\Windows\System32\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795770645376955 0x7ffad0270000 1908736 C:\Windows\SYSTEM32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 28 1068 580 4 00000000:000003e4 131765776312395030 0 0 1 Обязательная метка\Обязательный уровень системы NT AUTHORITY\NETWORK SERVICE svchost.exe C:\Windows\system32\svchost.exe C:\Windows\system32\svchost.exe -k NetworkService Microsoft Corporation 10.0.14393.0 (rs1_release.160715-1616) Хост-процесс для служб Windows 131795770645377076 0x7ff718c20000 57344 C:\Windows\system32\svchost.exe 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Хост-процесс для служб Windows 131795770645377076 0x7ffab1fd0000 2277376 C:\Windows\System32\msxml3.dll 8.110.14393.1532 Microsoft Corporation MSXML 3.0 131795770645377076 0x7ffabcf50000 921600 C:\Windows\system32\drvstore.dll 10.0.14393.351 (rs1_release_inmarket.161014-1755) Microsoft Corporation Driver Store API 131795770645377076 0x7ffabf1d0000 192512 c:\windows\system32\CRYPTNET.dll 10.0.14393.2035 (rs1_release_inmarket.180110-1910) Microsoft Corporation Crypto Network Related API 131795770645377076 0x7ffac1d60000 589824 c:\windows\system32\webio.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API протоколов передачи по Веб 131795770645377076 0x7ffac34c0000 81920 C:\Windows\system32\vss_ps.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation Microsoft® Volume Shadow Copy Service proxy/stub 131795770645377076 0x7ffac3810000 167936 C:\Windows\SYSTEM32\Cabinet.dll 5.00 (rs1_release.160715-1616) Microsoft Corporation Microsoft® Cabinet File API 131795770645377076 0x7ffac3840000 3088384 C:\Windows\system32\ESENT.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширяемая подсистема хранения данных ESE для Microsoft(R) Windows(R) 131795770645377076 0x7ffac4e70000 102400 C:\Windows\system32\samcli.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Security Accounts Manager Client DLL 131795770645377076 0x7ffac6410000 98304 C:\Windows\system32\VssTrace.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека трассировки службы теневого копирования тома Microsoft® 131795770645377076 0x7ffac6430000 1581056 C:\Windows\system32\VSSAPI.DLL 10.0.14393.953 (rs1_release_inmarket.170303-1614) Microsoft Corporation Microsoft® Volume Shadow Copy Requestor/Writer Services API DLL 131795770645377076 0x7ffac65c0000 155648 C:\Windows\System32\cryptcatsvc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Cryptographic Catalog Services 131795770645377076 0x7ffac65f0000 77824 C:\Windows\System32\crypttpmeksvc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Cryptographic TPM Endorsement Key Services 131795770645377076 0x7ffac6610000 40960 C:\Windows\System32\rasadhlp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Remote Access AutoDial Helper 131795770645377076 0x7ffac6680000 102400 c:\windows\system32\cryptsvc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Службы криптографии 131795770645377076 0x7ffac69c0000 839680 c:\windows\system32\WINHTTP.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Службы HTTP Windows 131795770645377076 0x7ffac6b90000 53248 c:\windows\system32\DSPARSE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Active Directory Domain Services API 131795770645377076 0x7ffac6f00000 303104 c:\windows\system32\wkssvc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL службы рабочей станции 131795770645377076 0x7ffac79c0000 57344 C:\Windows\System32\npmproxy.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Network List Manager Proxy 131795770645377076 0x7ffac79e0000 184320 C:\Windows\SYSTEM32\netjoin.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL присоединения к домену 131795770645377076 0x7ffac7aa0000 401408 C:\Windows\system32\WlanApi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows WLAN AutoConfig Client Side API DLL 131795770645377076 0x7ffac7c00000 266240 C:\Windows\System32\mstask.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека интерфейса планировщика заданий 131795770645377076 0x7ffac7e50000 86016 C:\Windows\system32\ssdpapi.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation SSDP Client API DLL 131795770645377076 0x7ffac8260000 425984 c:\windows\system32\ncsi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Индикатор работоспособности сетевых подключений 131795770645377076 0x7ffac8370000 389120 c:\windows\system32\nlasvc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служба сведений о подключенных сетях 2 131795770645377076 0x7ffac83d0000 106496 C:\Windows\SYSTEM32\dhcpcsvc.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служба DHCP-клиента 131795770645377076 0x7ffac83f0000 90112 C:\Windows\SYSTEM32\dhcpcsvc6.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиент DHCPv6 131795770645377076 0x7ffac8410000 40960 C:\Windows\System32\dnsext.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DNS extension DLL 131795770645377076 0x7ffac8420000 434176 C:\Windows\SYSTEM32\Fwpuclnt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API пользовательского режима FWP/IPsec 131795770645377076 0x7ffac8810000 45056 C:\Windows\SYSTEM32\WINNSI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Network Store Information RPC interface 131795770645377076 0x7ffac8830000 290816 c:\windows\system32\dnsrslvr.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служба кэширующего сопоставителя DNS 131795770645377076 0x7ffac8880000 69632 c:\windows\system32\WMICLNT.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation WMI Client API 131795770645377076 0x7ffac8cf0000 815104 C:\Windows\System32\taskschd.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Task Scheduler COM API 131795770645377076 0x7ffac90b0000 90112 c:\windows\system32\wkscli.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Workstation Service Client DLL 131795770645377076 0x7ffac9220000 397312 C:\Windows\SYSTEM32\wevtapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API настройки и использования событий 131795770645377076 0x7ffac9bb0000 479232 C:\Windows\System32\ES.DLL 2001.12.10941.16384 (rs1_release.160715-1616) Microsoft Corporation COM+ 131795770645377076 0x7ffac9f10000 221184 C:\Windows\System32\netprofm.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Network List Manager 131795770645377076 0x7ffaca340000 1593344 C:\Windows\System32\PROPSYS.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Система страниц свойств (Майкрософт) 131795770645377076 0x7ffaca4e0000 77824 C:\Windows\SYSTEM32\wtsapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Remote Desktop Session Host Server SDK APIs 131795770645377076 0x7ffaca610000 143360 C:\Windows\system32\SAMLIB.dll 10.0.14393.82 (rs1_release.160805-1735) Microsoft Corporation SAM Library DLL 131795770645377076 0x7ffacb3f0000 163840 c:\windows\system32\DEVOBJ.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Device Information Set DLL 131795770645377076 0x7ffacb6f0000 143360 C:\Windows\SYSTEM32\gpapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиентские функции API групповой политики 131795770645377076 0x7ffacb920000 81920 C:\Windows\SYSTEM32\WLDP.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Политика блокировки Windows 131795770645377076 0x7ffacbbb0000 208896 C:\Windows\system32\rsaenh.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Enhanced Cryptographic Provider 131795770645377076 0x7ffacbd30000 229376 C:\Windows\SYSTEM32\IPHLPAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API вспомогательного приложения IP 131795770645377076 0x7ffacbd70000 659456 C:\Windows\SYSTEM32\DNSAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Динамическая библиотека API DNS-клиента 131795770645377076 0x7ffacbe20000 53248 C:\Windows\SYSTEM32\netutils.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API Helpers DLL 131795770645377076 0x7ffacbe40000 126976 C:\Windows\system32\USERENV.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Userenv 131795770645377076 0x7ffacbfb0000 376832 C:\Windows\system32\mswsock.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширение поставщика службы API Microsoft Windows Sockets 2.0 131795770645377076 0x7ffacc150000 94208 C:\Windows\SYSTEM32\CRYPTSP.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Cryptographic Service Provider API 131795770645377076 0x7ffacc170000 45056 C:\Windows\SYSTEM32\CRYPTBASE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base cryptographic API DLL 131795770645377076 0x7ffacc1b0000 126976 C:\Windows\SYSTEM32\JoinUtil.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Join Utility DLL 131795770645377076 0x7ffacc350000 180224 C:\Windows\system32\sspicli.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Security Support Provider Interface 131795770645377076 0x7ffacc520000 622592 C:\Windows\SYSTEM32\sxs.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Fusion 2.5 131795770645377076 0x7ffacc5c0000 352256 C:\Windows\SYSTEM32\WINSTA.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Winstation Library 131795770645377076 0x7ffacc620000 176128 C:\Windows\SYSTEM32\bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795770645377076 0x7ffacc6e0000 61440 C:\Windows\System32\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795770645377076 0x7ffacc6f0000 311296 C:\Windows\System32\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795770645377076 0x7ffacc740000 81920 C:\Windows\System32\profapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Profile Basic API 131795770645377076 0x7ffacc760000 65536 C:\Windows\System32\MSASN1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ASN.1 Runtime APIs 131795770645377076 0x7ffacc8f0000 1003520 C:\Windows\System32\ucrtbase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645377076 0x7ffacc9f0000 434176 C:\Windows\System32\bcryptPrimitives.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Cryptographic Primitives Library 131795770645377076 0x7ffacca60000 122880 C:\Windows\System32\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795770645377076 0x7ffacca80000 348160 C:\Windows\System32\WINTRUST.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation Microsoft Trust Verification APIs 131795770645377076 0x7ffaccae0000 692224 C:\Windows\System32\shcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795770645377076 0x7ffacd270000 2215936 C:\Windows\System32\KERNELBASE.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645377076 0x7ffacd490000 1871872 C:\Windows\System32\CRYPT32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API32 криптографии 131795770645377076 0x7ffacd710000 638976 C:\Windows\System32\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645377076 0x7ffacd7b0000 270336 C:\Windows\System32\cfgmgr32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Configuration Manager DLL 131795770645377076 0x7ffaced20000 782336 C:\Windows\System32\OLEAUT32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795770645377076 0x7ffacee50000 1183744 C:\Windows\System32\RPCRT4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795770645377076 0x7ffacef80000 32768 C:\Windows\System32\NSI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation NSI User-mode interface DLL 131795770645377076 0x7ffacef90000 647168 C:\Windows\System32\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795770645377076 0x7ffacf030000 651264 C:\Windows\System32\clbcatq.dll 2001.12.10941.16384 (rs1_release.160715-1616) Microsoft Corporation COM+ Configuration Catalog 131795770645377076 0x7ffacf0d0000 704512 C:\Windows\System32\KERNEL32.DLL 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645377076 0x7ffacf770000 212992 C:\Windows\System32\GDI32.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation GDI Client DLL 131795770645377076 0x7ffacf820000 434176 C:\Windows\System32\WS2_32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation 32-разрядная библиотека Windows Socket 2.0 131795770645377076 0x7ffacf8c0000 1462272 C:\Windows\System32\user32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795770645377076 0x7ffacfb30000 2916352 C:\Windows\System32\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795770645377076 0x7ffacfe20000 663552 C:\Windows\System32\ADVAPI32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795770645377076 0x7ffad0210000 364544 C:\Windows\System32\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795770645377076 0x7ffad0270000 1908736 C:\Windows\SYSTEM32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 29 1248 580 4 00000000:000003e7 131765776322176070 0 0 1 Обязательная метка\Обязательный уровень системы NT AUTHORITY\СИСТЕМА spoolsv.exe C:\Windows\System32\spoolsv.exe C:\Windows\System32\spoolsv.exe Microsoft Corporation 10.0.14393.0 (rs1_release.160715-1616) Диспетчер очереди печати 131795770645377182 0x7ff639680000 819200 C:\Windows\System32\spoolsv.exe 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Диспетчер очереди печати 131795770645377182 0x7ffab8a60000 3346432 C:\Windows\system32\spool\DRIVERS\x64\3\PrintConfig.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Пользовательский интерфейс PrintConfig 131795770645377182 0x7ffaba980000 815104 C:\Windows\System32\jscript.dll 5.812.10240.16384 Microsoft Corporation Microsoft ® JScript 131795770645377182 0x7ffabae60000 77824 C:\Windows\System32\DEVRTL.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Device Management Run Time Library 131795770645377182 0x7ffabb7d0000 851968 C:\Windows\System32\win32spl.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик печати с исполнением на стороне клиента 131795770645377182 0x7ffabbd40000 176128 C:\Windows\SYSTEM32\prntvpt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Print Ticket Services Module 131795770645377182 0x7ffabbd70000 3346432 C:\Windows\System32\DriverStore\FileRepository\prnms003.inf_amd64_53d78f68bc1697cc\Amd64\PrintConfig.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Пользовательский интерфейс PrintConfig 131795770645377182 0x7ffabc0c0000 118784 C:\Windows\System32\SPFILEQ.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows SPFILEQ 131795770645377182 0x7ffabc590000 118784 C:\Program Files\Windows Defender\MpOav.dll 4.10.14393.1794 (rs1_release.171008-1615) Microsoft Corporation IOfficeAntiVirus Module 131795770645377182 0x7ffabc5b0000 65536 C:\Windows\SYSTEM32\amsi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Anti-Malware Scan Interface 131795770645377182 0x7ffabc880000 73728 C:\Windows\System32\cscapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Offline Files Win32 API 131795770645377182 0x7ffabcf50000 921600 C:\Windows\System32\drvstore.dll 10.0.14393.351 (rs1_release_inmarket.161014-1755) Microsoft Corporation Driver Store API 131795770645377182 0x7ffabd040000 77824 C:\Windows\System32\fdPnp.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Pnp Provider Dll 131795770645377182 0x7ffabd060000 610304 C:\Windows\System32\WSDMon.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Диспетчер порта принтера WSD 131795770645377182 0x7ffabd100000 348160 C:\Windows\System32\usbmon.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Standard Dynamic Printing Port Monitor DLL 131795770645377182 0x7ffabd160000 86016 C:\Windows\System32\wsnmp32.dll 10.0.14393.2189 (rs1_release.180329-1711) Microsoft Corporation Microsoft WinSNMP v2.0 Manager API 131795770645377182 0x7ffabd180000 548864 C:\Windows\system32\winspool.drv 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Драйвер диспетчера очереди Windows 131795770645377182 0x7ffabd2a0000 1159168 C:\Windows\System32\localspl.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Библиотека локального диспетчера очереди 131795770645377182 0x7ffabde60000 237568 C:\Windows\System32\tcpmon.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека монитора портов TCP/IP 131795770645377182 0x7ffabe3f0000 65536 C:\Windows\system32\spool\PRTPROCS\x64\winprint.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Windows Print Processor DLL 131795770645377182 0x7ffabe6c0000 77824 C:\Windows\System32\PrintIsolationProxy.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Print Sandbox COM Proxy Stub 131795770645377182 0x7ffabe8a0000 49152 C:\Windows\System32\snmpapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SNMP Utility Library 131795770645377182 0x7ffabe980000 114688 C:\Windows\System32\SPOOLSS.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Spooler SubSystem DLL 131795770645377182 0x7ffabef80000 69632 C:\Windows\System32\sfc_os.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows File Protection 131795770645377182 0x7ffabf330000 2457600 C:\Windows\System32\msxml6.dll 6.30.14393.2156 Microsoft Corporation MSXML 6.0 131795770645377182 0x7ffabf5d0000 2924544 C:\Windows\SYSTEM32\wininet.dll 11.00.14393.447 (rs1_release_inmarket.161102-0100) Microsoft Corporation Расширения Интернета для Win32 131795770645377182 0x7ffabff10000 155648 C:\Windows\System32\srvcli.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Server Service Client DLL 131795770645377182 0x7ffac0af0000 114688 C:\Windows\System32\ATL.DLL 3.05.2284 Microsoft Corporation ATL Module for Windows XP (Unicode) 131795770645377182 0x7ffac1f00000 65536 C:\Windows\System32\FXSMON.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Fax Print Monitor 131795770645377182 0x7ffac1f30000 118784 C:\Windows\System32\SPINF.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows SPINF 131795770645377182 0x7ffac2b80000 40960 C:\Windows\SYSTEM32\VERSION.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Version Checking and File Installation Libraries 131795770645377182 0x7ffac34e0000 1843200 C:\Windows\SYSTEM32\urlmon.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширения OLE32 для Win32 131795770645377182 0x7ffac3810000 167936 C:\Windows\System32\cabinet.dll 5.00 (rs1_release.160715-1616) Microsoft Corporation Microsoft® Cabinet File API 131795770645377182 0x7ffac3cb0000 2772992 C:\Windows\SYSTEM32\iertutil.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служебная программа времени выполнения для Internet Explorer 131795770645377182 0x7ffac4e90000 32768 C:\Windows\System32\wshirda.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Sockets Helper DLL 131795770645377182 0x7ffac60e0000 221184 C:\Windows\System32\XmlLite.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft XmlLite Library 131795770645377182 0x7ffac6610000 40960 C:\Windows\System32\rasadhlp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Remote Access AutoDial Helper 131795770645377182 0x7ffac6710000 172032 C:\Windows\System32\FunDisc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL обнаружения функции 131795770645377182 0x7ffac6750000 1380352 C:\Windows\System32\webservices.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Среда выполнения веб-служб Windows 131795770645377182 0x7ffac68b0000 696320 C:\Windows\System32\wsdapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Веб-службы для библиотек DLL API-интерфейсов устройств 131795770645377182 0x7ffac6990000 69632 C:\Windows\System32\deviceassociation.dll 10.0.14393.82 (rs1_release.160805-1735) Microsoft Corporation Device Association Client DLL 131795770645377182 0x7ffac69c0000 839680 C:\Windows\System32\WINHTTP.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Службы HTTP Windows 131795770645377182 0x7ffac6ba0000 49152 C:\Windows\System32\Secur32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Security Support Provider Interface 131795770645377182 0x7ffac7e00000 196608 C:\Windows\System32\inetpp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL Internet Print Provider 131795770645377182 0x7ffac8420000 434176 C:\Windows\System32\fwpuclnt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API пользовательского режима FWP/IPsec 131795770645377182 0x7ffac8810000 45056 C:\Windows\SYSTEM32\WINNSI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Network Store Information RPC interface 131795770645377182 0x7ffac9290000 40960 C:\Windows\System32\DSROLE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DS Setup Client DLL 131795770645377182 0x7ffaca4e0000 77824 C:\Windows\System32\WTSAPI32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Remote Desktop Session Host Server SDK APIs 131795770645377182 0x7ffacadf0000 499712 C:\Windows\system32\apphelp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиентская библиотека совместимости приложений 131795770645377182 0x7ffacb360000 176128 C:\Windows\System32\fwbase.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Firewall Base DLL 131795770645377182 0x7ffacb3f0000 163840 C:\Windows\System32\DEVOBJ.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Device Information Set DLL 131795770645377182 0x7ffacb420000 204800 C:\Windows\SYSTEM32\ntmarta.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик Windows NT MARTA 131795770645377182 0x7ffacb460000 548864 C:\Windows\System32\FirewallAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API брандмауэра Windows 131795770645377182 0x7ffacb6f0000 143360 C:\Windows\SYSTEM32\gpapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиентские функции API групповой политики 131795770645377182 0x7ffacbbb0000 208896 C:\Windows\system32\rsaenh.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Enhanced Cryptographic Provider 131795770645377182 0x7ffacbd30000 229376 C:\Windows\SYSTEM32\IPHLPAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API вспомогательного приложения IP 131795770645377182 0x7ffacbd70000 659456 C:\Windows\System32\DNSAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Динамическая библиотека API DNS-клиента 131795770645377182 0x7ffacbe20000 53248 C:\Windows\System32\netutils.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API Helpers DLL 131795770645377182 0x7ffacbe40000 126976 C:\Windows\System32\USERENV.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Userenv 131795770645377182 0x7ffacbfb0000 376832 C:\Windows\system32\mswsock.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширение поставщика службы API Microsoft Windows Sockets 2.0 131795770645377182 0x7ffacc150000 94208 C:\Windows\System32\CRYPTSP.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Cryptographic Service Provider API 131795770645377182 0x7ffacc170000 45056 C:\Windows\System32\CRYPTBASE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base cryptographic API DLL 131795770645377182 0x7ffacc350000 180224 C:\Windows\System32\SspiCli.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Security Support Provider Interface 131795770645377182 0x7ffacc520000 622592 C:\Windows\SYSTEM32\sxs.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Fusion 2.5 131795770645377182 0x7ffacc5c0000 352256 C:\Windows\System32\WINSTA.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Winstation Library 131795770645377182 0x7ffacc620000 176128 C:\Windows\System32\bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795770645377182 0x7ffacc6e0000 61440 C:\Windows\System32\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795770645377182 0x7ffacc6f0000 311296 C:\Windows\System32\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795770645377182 0x7ffacc740000 81920 C:\Windows\System32\profapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Profile Basic API 131795770645377182 0x7ffacc760000 65536 C:\Windows\System32\MSASN1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ASN.1 Runtime APIs 131795770645377182 0x7ffacc8f0000 1003520 C:\Windows\System32\ucrtbase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645377182 0x7ffacc9f0000 434176 C:\Windows\System32\bcryptPrimitives.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Cryptographic Primitives Library 131795770645377182 0x7ffacca60000 122880 C:\Windows\System32\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795770645377182 0x7ffacca80000 348160 C:\Windows\System32\WINTRUST.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation Microsoft Trust Verification APIs 131795770645377182 0x7ffaccae0000 692224 C:\Windows\System32\shcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795770645377182 0x7ffaccb90000 7180288 C:\Windows\System32\windows.storage.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API хранения Microsoft WinRT 131795770645377182 0x7ffacd270000 2215936 C:\Windows\System32\KERNELBASE.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645377182 0x7ffacd490000 1871872 C:\Windows\System32\CRYPT32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API32 криптографии 131795770645377182 0x7ffacd710000 638976 C:\Windows\System32\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645377182 0x7ffacd7b0000 270336 C:\Windows\System32\cfgmgr32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Configuration Manager DLL 131795770645377182 0x7ffacd810000 22056960 C:\Windows\System32\SHELL32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Общая библиотека оболочки Windows 131795770645377182 0x7ffaced20000 782336 C:\Windows\System32\OLEAUT32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795770645377182 0x7ffacee50000 1183744 C:\Windows\System32\RPCRT4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795770645377182 0x7ffacef80000 32768 C:\Windows\System32\NSI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation NSI User-mode interface DLL 131795770645377182 0x7ffacef90000 647168 C:\Windows\System32\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795770645377182 0x7ffacf030000 651264 C:\Windows\System32\clbcatq.dll 2001.12.10941.16384 (rs1_release.160715-1616) Microsoft Corporation COM+ Configuration Catalog 131795770645377182 0x7ffacf0d0000 704512 C:\Windows\System32\KERNEL32.DLL 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645377182 0x7ffacf340000 4362240 C:\Windows\System32\SETUPAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Setup API 131795770645377182 0x7ffacf770000 212992 C:\Windows\System32\GDI32.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation GDI Client DLL 131795770645377182 0x7ffacf820000 434176 C:\Windows\System32\WS2_32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation 32-разрядная библиотека Windows Socket 2.0 131795770645377182 0x7ffacf8c0000 1462272 C:\Windows\System32\USER32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795770645377182 0x7ffacfb30000 2916352 C:\Windows\System32\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795770645377182 0x7ffacfe20000 663552 C:\Windows\System32\advapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795770645377182 0x7ffad0070000 1277952 C:\Windows\System32\ole32.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft OLE для Windows 131795770645377182 0x7ffad01b0000 335872 C:\Windows\System32\SHLWAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека небольших программ оболочки 131795770645377182 0x7ffad0210000 364544 C:\Windows\System32\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795770645377182 0x7ffad0270000 1908736 C:\Windows\SYSTEM32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 30 1512 580 4 00000000:000003e5 131765776336551242 0 0 1 Обязательная метка\Обязательный уровень системы NT AUTHORITY\LOCAL SERVICE svchost.exe C:\Windows\system32\svchost.exe C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation Microsoft Corporation 10.0.14393.0 (rs1_release.160715-1616) Хост-процесс для служб Windows 131795770645377290 0x7ff718c20000 57344 C:\Windows\system32\svchost.exe 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Хост-процесс для служб Windows 131795770645377290 0x7ffabe9f0000 258048 c:\windows\system32\ssdpsrv.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL службы SSDP 131795770645377290 0x7ffac3f60000 225280 c:\windows\system32\FWPolicyIOMgr.dll 10.0.14393.2189 (rs1_release.180329-1711) Microsoft Corporation FwPolicyIoMgr DLL 131795770645377290 0x7ffac60e0000 221184 C:\Windows\System32\XmlLite.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft XmlLite Library 131795770645377290 0x7ffac6400000 53248 c:\windows\system32\HTTPAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation HTTP Protocol Stack API 131795770645377290 0x7ffac66c0000 32768 C:\Windows\system32\wship6.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL помощника Winsock2 (TL/IPv6) 131795770645377290 0x7ffac66d0000 32768 C:\Windows\system32\wshtcpip.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL помощника службы Winsock2 (TL/IPv4) 131795770645377290 0x7ffac6700000 40960 C:\Windows\system32\wshqos.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL помощника службы QoS Winsock2 131795770645377290 0x7ffac6710000 172032 C:\Windows\System32\FunDisc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL обнаружения функции 131795770645377290 0x7ffac6750000 1380352 c:\windows\system32\webservices.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Среда выполнения веб-служб Windows 131795770645377290 0x7ffac68b0000 696320 c:\windows\system32\wsdapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Веб-службы для библиотек DLL API-интерфейсов устройств 131795770645377290 0x7ffac69b0000 57344 c:\windows\system32\fdrespub.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служба публикации ресурсов обнаружения функции 131795770645377290 0x7ffac69c0000 839680 c:\windows\system32\WINHTTP.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Службы HTTP Windows 131795770645377290 0x7ffac83d0000 106496 C:\Windows\SYSTEM32\dhcpcsvc.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служба DHCP-клиента 131795770645377290 0x7ffac83f0000 90112 C:\Windows\SYSTEM32\dhcpcsvc6.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиент DHCPv6 131795770645377290 0x7ffac8810000 45056 C:\Windows\SYSTEM32\WINNSI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Network Store Information RPC interface 131795770645377290 0x7ffac90b0000 90112 c:\windows\system32\wkscli.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Workstation Service Client DLL 131795770645377290 0x7ffacb360000 176128 c:\windows\system32\fwbase.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Firewall Base DLL 131795770645377290 0x7ffacb460000 548864 c:\windows\system32\FirewallAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API брандмауэра Windows 131795770645377290 0x7ffacb920000 81920 C:\Windows\SYSTEM32\WLDP.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Политика блокировки Windows 131795770645377290 0x7ffacbbb0000 208896 C:\Windows\system32\rsaenh.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Enhanced Cryptographic Provider 131795770645377290 0x7ffacbd30000 229376 c:\windows\system32\IPHLPAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API вспомогательного приложения IP 131795770645377290 0x7ffacbe20000 53248 c:\windows\system32\netutils.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API Helpers DLL 131795770645377290 0x7ffacbfb0000 376832 C:\Windows\system32\mswsock.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширение поставщика службы API Microsoft Windows Sockets 2.0 131795770645377290 0x7ffacc150000 94208 c:\windows\system32\CRYPTSP.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Cryptographic Service Provider API 131795770645377290 0x7ffacc170000 45056 C:\Windows\system32\CRYPTBASE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base cryptographic API DLL 131795770645377290 0x7ffacc350000 180224 C:\Windows\system32\sspicli.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Security Support Provider Interface 131795770645377290 0x7ffacc620000 176128 c:\windows\system32\bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795770645377290 0x7ffacc6e0000 61440 C:\Windows\System32\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795770645377290 0x7ffacc6f0000 311296 C:\Windows\System32\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795770645377290 0x7ffacc760000 65536 C:\Windows\System32\MSASN1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ASN.1 Runtime APIs 131795770645377290 0x7ffacc8f0000 1003520 C:\Windows\System32\ucrtbase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645377290 0x7ffacc9f0000 434176 C:\Windows\System32\bcryptPrimitives.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Cryptographic Primitives Library 131795770645377290 0x7ffacca60000 122880 C:\Windows\System32\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795770645377290 0x7ffacca80000 348160 C:\Windows\System32\WINTRUST.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation Microsoft Trust Verification APIs 131795770645377290 0x7ffacd270000 2215936 C:\Windows\System32\KERNELBASE.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645377290 0x7ffacd490000 1871872 C:\Windows\System32\CRYPT32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API32 криптографии 131795770645377290 0x7ffacee50000 1183744 C:\Windows\System32\RPCRT4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795770645377290 0x7ffacef80000 32768 C:\Windows\System32\NSI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation NSI User-mode interface DLL 131795770645377290 0x7ffacef90000 647168 C:\Windows\System32\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795770645377290 0x7ffacf030000 651264 C:\Windows\System32\clbcatq.dll 2001.12.10941.16384 (rs1_release.160715-1616) Microsoft Corporation COM+ Configuration Catalog 131795770645377290 0x7ffacf0d0000 704512 C:\Windows\System32\KERNEL32.DLL 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645377290 0x7ffacf770000 212992 C:\Windows\System32\GDI32.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation GDI Client DLL 131795770645377290 0x7ffacf820000 434176 C:\Windows\System32\WS2_32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation 32-разрядная библиотека Windows Socket 2.0 131795770645377290 0x7ffacf8c0000 1462272 C:\Windows\System32\user32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795770645377290 0x7ffacfb30000 2916352 C:\Windows\System32\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795770645377290 0x7ffad0210000 364544 C:\Windows\System32\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795770645377290 0x7ffad0270000 1908736 C:\Windows\SYSTEM32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 31 1556 580 4 00000000:000003e7 131765776339471770 0 0 1 Обязательная метка\Обязательный уровень системы NT AUTHORITY\СИСТЕМА svchost.exe C:\Windows\System32\svchost.exe C:\Windows\System32\svchost.exe -k utcsvc Microsoft Corporation 10.0.14393.0 (rs1_release.160715-1616) Хост-процесс для служб Windows 131795770645377395 0x272f9bf0000 12288 C:\Windows\SYSTEM32\sfc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows File Protection 131795770645377395 0x7ff718c20000 57344 C:\Windows\System32\svchost.exe 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Хост-процесс для служб Windows 131795770645377395 0x7ffab93b0000 897024 C:\Windows\System32\TokenBroker.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Token Broker 131795770645377395 0x7ffabaab0000 94208 C:\Windows\SYSTEM32\profext.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation profext 131795770645377395 0x7ffabae60000 77824 C:\Windows\SYSTEM32\DEVRTL.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Device Management Run Time Library 131795770645377395 0x7ffabbd10000 65536 C:\Windows\System32\TOKENBINDING.dll 10.0.14393.1593 (rs1_release.170731-1934) Microsoft Corporation Token Binding Protocol 131795770645377395 0x7ffabca50000 819200 C:\Windows\System32\Windows.Security.Authentication.Web.Core.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Token Broker WinRT API 131795770645377395 0x7ffabcf50000 921600 C:\Windows\System32\drvstore.dll 10.0.14393.351 (rs1_release_inmarket.161014-1755) Microsoft Corporation Driver Store API 131795770645377395 0x7ffabe850000 155648 C:\Windows\System32\IDStore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Identity Store 131795770645377395 0x7ffabef80000 69632 C:\Windows\SYSTEM32\sfc_os.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows File Protection 131795770645377395 0x7ffabefd0000 258048 C:\Windows\SYSTEM32\aepic.dll 10.0.17060.1029 (WinBuild.160101.0800) Microsoft Corporation Application Experience Program Cache 131795770645377395 0x7ffabf140000 176128 C:\Windows\System32\CourtesyEngine.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Feedback Courtesy Engine DLL Server 131795770645377395 0x7ffabf1d0000 192512 C:\Windows\System32\cryptnet.dll 10.0.14393.2035 (rs1_release_inmarket.180110-1910) Microsoft Corporation Crypto Network Related API 131795770645377395 0x7ffabfbe0000 1011712 C:\Windows\System32\Windows.Security.Authentication.OnlineId.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation Windows Runtime OnlineId Authentication DLL 131795770645377395 0x7ffabfde0000 143360 c:\windows\system32\CRYPTXML.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API-интерфейс XML DigSig 131795770645377395 0x7ffabff60000 135168 C:\Windows\system32\ncryptsslp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft SChannel Provider 131795770645377395 0x7ffac05f0000 94208 C:\Windows\System32\wwapi.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation WWAN API 131795770645377395 0x7ffac0910000 724992 C:\Windows\System32\Windows.Networking.Connectivity.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Networking Connectivity Runtime DLL 131795770645377395 0x7ffac09d0000 884736 C:\Windows\System32\wpnapps.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Приложения для push-уведомлений Windows 131795770645377395 0x7ffac0ad0000 86016 C:\Windows\SYSTEM32\mskeyprotect.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик защиты ключей (Майкрософт) 131795770645377395 0x7ffac0bf0000 3559424 C:\Windows\System32\ActXPrxy.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation ActiveX Interface Marshaling Library 131795770645377395 0x7ffac1d60000 589824 c:\windows\system32\webio.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API протоколов передачи по Веб 131795770645377395 0x7ffac20d0000 110592 C:\Windows\System32\RMCLIENT.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Resource Manager Client 131795770645377395 0x7ffac23c0000 331776 C:\Windows\System32\OneCoreCommonProxyStub.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation OneCore Common Proxy Stub 131795770645377395 0x7ffac2590000 659456 C:\Windows\System32\FlightSettings.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Параметры цикла тестирования 131795770645377395 0x7ffac2700000 98304 C:\Windows\SYSTEM32\Netapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API DLL 131795770645377395 0x7ffac2750000 106496 C:\Windows\System32\bcd.dll 10.0.14393.1794 (rs1_release.171008-1615) Microsoft Corporation BCD DLL 131795770645377395 0x7ffac2b30000 286720 C:\Windows\System32\usermgrproxy.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation UserMgrProxy 131795770645377395 0x7ffac3cb0000 2772992 C:\Windows\SYSTEM32\iertutil.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служебная программа времени выполнения для Internet Explorer 131795770645377395 0x7ffac4000000 274432 C:\Windows\SYSTEM32\policymanager.dll 10.0.14393.2035 (rs1_release_inmarket.180110-1910) Microsoft Corporation Policy Manager DLL 131795770645377395 0x7ffac4070000 499712 C:\Windows\SYSTEM32\DSREG.DLL 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation AD/AAD User Device Registration 131795770645377395 0x7ffac4450000 86016 C:\Windows\SYSTEM32\usermgrcli.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation UserMgr API DLL 131795770645377395 0x7ffac5fd0000 1056768 c:\windows\system32\WindowsPerformanceRecorderControl.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Windows Performance Recorder Control Library 131795770645377395 0x7ffac60e0000 221184 c:\windows\system32\XmlLite.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft XmlLite Library 131795770645377395 0x7ffac6210000 2007040 c:\windows\system32\diagtrack.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Диагностическое отслеживание Microsoft Windows 131795770645377395 0x7ffac6610000 40960 C:\Windows\System32\rasadhlp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Remote Access AutoDial Helper 131795786489787144 0x7ffac66a0000 86016 C:\Windows\System32\OnDemandConnRouteHelper.dll 10.0.14393.351 (rs1_release_inmarket.161014-1755) Microsoft Corporation On Demand Connctiond Route Helper 131795770645377395 0x7ffac6750000 1380352 c:\windows\system32\webservices.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Среда выполнения веб-служб Windows 131795770645377395 0x7ffac69c0000 839680 c:\windows\system32\WINHTTP.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Службы HTTP Windows 131795770645377395 0x7ffac79c0000 57344 C:\Windows\System32\npmproxy.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Network List Manager Proxy 131795770645377395 0x7ffac7aa0000 401408 C:\Windows\SYSTEM32\wlanapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows WLAN AutoConfig Client Side API DLL 131795770645377395 0x7ffac83d0000 106496 C:\Windows\SYSTEM32\dhcpcsvc.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служба DHCP-клиента 131795770645377395 0x7ffac83f0000 90112 C:\Windows\SYSTEM32\dhcpcsvc6.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиент DHCPv6 131795786490911252 0x7ffac8420000 434176 C:\Windows\System32\FWPUCLNT.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API пользовательского режима FWP/IPsec 131795770645377395 0x7ffac8540000 286720 C:\Windows\System32\vaultcli.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиентская библиотека хранилища учетных данных 131795770645377395 0x7ffac8810000 45056 C:\Windows\SYSTEM32\WINNSI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Network Store Information RPC interface 131795770645377395 0x7ffac8cf0000 815104 C:\Windows\System32\taskschd.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Task Scheduler COM API 131795770645377395 0x7ffac8dc0000 167936 C:\Windows\System32\dbgcore.DLL 10.0.14321.1024 (debuggers(dbg).160715-1616) Microsoft Windows Core Debugging Helpers 131795770645377395 0x7ffac8df0000 1646592 C:\Windows\system32\dbghelp.dll 10.0.14321.1024 (rs1_release.160715-1616) Microsoft Windows Image Helper 131795770645377395 0x7ffac90b0000 90112 C:\Windows\System32\wkscli.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Workstation Service Client DLL 131795770645377395 0x7ffac92e0000 1269760 C:\Windows\System32\WinTypes.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL основных типов Windows 131795770645377395 0x7ffaca4e0000 77824 C:\Windows\SYSTEM32\wtsapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Remote Desktop Session Host Server SDK APIs 131795770645377395 0x7ffaca610000 143360 C:\Windows\System32\SAMLIB.dll 10.0.14393.82 (rs1_release.160805-1735) Microsoft Corporation SAM Library DLL 131795770645377395 0x7ffacb140000 593920 c:\windows\system32\msvcp110_win.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Microsoft® STL110 C++ Runtime Library 131795770645377395 0x7ffacb1e0000 1163264 C:\Windows\System32\twinapi.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation twinapi.appcore 131795770645377395 0x7ffacb420000 204800 C:\Windows\SYSTEM32\ntmarta.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик Windows NT MARTA 131795770645377395 0x7ffacb6f0000 143360 C:\Windows\SYSTEM32\gpapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиентские функции API групповой политики 131795770645377395 0x7ffacb920000 81920 C:\Windows\SYSTEM32\WLDP.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Политика блокировки Windows 131795770645377395 0x7ffacbaf0000 495616 C:\Windows\system32\schannel.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик безопасности TLS/SSL 131795770645377395 0x7ffacbbb0000 208896 C:\Windows\system32\rsaenh.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Enhanced Cryptographic Provider 131795770645377395 0x7ffacbbf0000 40960 C:\Windows\System32\DPAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Data Protection API 131795770645377395 0x7ffacbd30000 229376 C:\Windows\System32\IPHLPAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API вспомогательного приложения IP 131795770645377395 0x7ffacbd70000 659456 c:\windows\system32\DNSAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Динамическая библиотека API DNS-клиента 131795770645377395 0x7ffacbe20000 53248 C:\Windows\System32\netutils.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API Helpers DLL 131795770645377395 0x7ffacbe40000 126976 c:\windows\system32\USERENV.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Userenv 131795770645377395 0x7ffacbfb0000 376832 C:\Windows\system32\mswsock.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширение поставщика службы API Microsoft Windows Sockets 2.0 131795770645377395 0x7ffacc150000 94208 C:\Windows\SYSTEM32\cryptsp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Cryptographic Service Provider API 131795770645377395 0x7ffacc170000 45056 C:\Windows\System32\CRYPTBASE.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base cryptographic API DLL 131795770645377395 0x7ffacc1f0000 241664 C:\Windows\SYSTEM32\NTASN1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft ASN.1 API 131795770645377395 0x7ffacc230000 155648 C:\Windows\SYSTEM32\ncrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Маршрутизатор Windows NCrypt 131795770645377395 0x7ffacc350000 180224 C:\Windows\SYSTEM32\SspiCli.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Security Support Provider Interface 131795770645377395 0x7ffacc5c0000 352256 C:\Windows\SYSTEM32\WINSTA.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Winstation Library 131795770645377395 0x7ffacc620000 176128 c:\windows\system32\bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795770645377395 0x7ffacc6e0000 61440 C:\Windows\System32\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795770645377395 0x7ffacc6f0000 311296 C:\Windows\System32\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795770645377395 0x7ffacc740000 81920 C:\Windows\System32\profapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Profile Basic API 131795770645377395 0x7ffacc760000 65536 C:\Windows\System32\MSASN1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ASN.1 Runtime APIs 131795770645377395 0x7ffacc8f0000 1003520 C:\Windows\System32\ucrtbase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645377395 0x7ffacc9f0000 434176 C:\Windows\System32\bcryptPrimitives.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Cryptographic Primitives Library 131795770645377395 0x7ffacca60000 122880 C:\Windows\System32\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795770645377395 0x7ffacca80000 348160 C:\Windows\System32\WINTRUST.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation Microsoft Trust Verification APIs 131795770645377395 0x7ffaccae0000 692224 C:\Windows\System32\shcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795770645377395 0x7ffaccb90000 7180288 C:\Windows\System32\windows.storage.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API хранения Microsoft WinRT 131795770645377395 0x7ffacd270000 2215936 C:\Windows\System32\KERNELBASE.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645377395 0x7ffacd490000 1871872 C:\Windows\System32\CRYPT32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API32 криптографии 131795770645377395 0x7ffacd710000 638976 C:\Windows\System32\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645377395 0x7ffacd7b0000 270336 C:\Windows\System32\cfgmgr32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Configuration Manager DLL 131795770645377395 0x7ffacd810000 22056960 C:\Windows\System32\SHELL32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Общая библиотека оболочки Windows 131795770645377395 0x7ffaced20000 782336 C:\Windows\System32\OLEAUT32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795770645377395 0x7ffacede0000 450560 C:\Windows\System32\coml2.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft COM for Windows 131795770645377395 0x7ffacee50000 1183744 C:\Windows\System32\RPCRT4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795770645377395 0x7ffacef80000 32768 C:\Windows\System32\NSI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation NSI User-mode interface DLL 131795770645377395 0x7ffacef90000 647168 C:\Windows\System32\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795770645377395 0x7ffacf030000 651264 C:\Windows\System32\clbcatq.dll 2001.12.10941.16384 (rs1_release.160715-1616) Microsoft Corporation COM+ Configuration Catalog 131795770645377395 0x7ffacf0d0000 704512 C:\Windows\System32\KERNEL32.DLL 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645377395 0x7ffacf340000 4362240 C:\Windows\System32\SETUPAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Setup API 131795770645377395 0x7ffacf770000 212992 C:\Windows\System32\GDI32.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation GDI Client DLL 131795770645377395 0x7ffacf820000 434176 C:\Windows\System32\WS2_32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation 32-разрядная библиотека Windows Socket 2.0 131795770645377395 0x7ffacf8c0000 1462272 C:\Windows\System32\user32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795770645377395 0x7ffacfb30000 2916352 C:\Windows\System32\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795770645377395 0x7ffacfe20000 663552 C:\Windows\System32\advapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795770645377395 0x7ffad0070000 1277952 C:\Windows\System32\OLE32.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft OLE для Windows 131795770645377395 0x7ffad01b0000 335872 C:\Windows\System32\SHLWAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека небольших программ оболочки 131795770645377395 0x7ffad0210000 364544 C:\Windows\System32\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795770645377395 0x7ffad0270000 1908736 C:\Windows\SYSTEM32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 32 1636 580 4 00000000:000003e7 131765776343009549 0 0 1 Обязательная метка\Обязательный уровень системы NT AUTHORITY\СИСТЕМА svchost.exe C:\Windows\system32\svchost.exe C:\Windows\system32\svchost.exe -k appmodel Microsoft Corporation 10.0.14393.0 (rs1_release.160715-1616) Хост-процесс для служб Windows 131795770645377489 0x7ff718c20000 57344 C:\Windows\system32\svchost.exe 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Хост-процесс для служб Windows 131795770645377489 0x7ffac0bf0000 3559424 C:\Windows\System32\ActXPrxy.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation ActiveX Interface Marshaling Library 131795770645377489 0x7ffac34e0000 1843200 c:\windows\system32\urlmon.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширения OLE32 для Win32 131795770645377489 0x7ffac3840000 3088384 c:\windows\system32\ESENT.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширяемая подсистема хранения данных ESE для Microsoft(R) Windows(R) 131795770645377489 0x7ffac3c10000 593920 c:\windows\system32\tileobjserver.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Сервер моделей данных плиток 131795770645377489 0x7ffac3cb0000 2772992 c:\windows\system32\iertutil.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служебная программа времени выполнения для Internet Explorer 131795770645377489 0x7ffac42a0000 659456 c:\windows\system32\StateRepository.Core.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation StateRepository Core 131795770645377489 0x7ffac46d0000 4161536 c:\windows\system32\windows.staterepository.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Сервер Windows StateRepository API Server 131795770645377489 0x7ffac6ac0000 835584 C:\Windows\System32\Windows.UI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Runtime UI Foundation DLL 131795780599947775 0x7ffac7580000 1077248 C:\Windows\System32\MrmCoreR.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Windows MRM 131795770645377489 0x7ffaca4e0000 77824 C:\Windows\SYSTEM32\wtsapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Remote Desktop Session Host Server SDK APIs 131795780600943570 0x7ffaca570000 421888 C:\Windows\System32\BCP47Langs.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation BCP47 Language Classes 131795770645377489 0x7ffacb140000 593920 c:\windows\system32\msvcp110_win.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Microsoft® STL110 C++ Runtime Library 131795770645377489 0x7ffacb920000 81920 C:\Windows\SYSTEM32\WLDP.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Политика блокировки Windows 131795770645377489 0x7ffacbe40000 126976 C:\Windows\system32\USERENV.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Userenv 131795770645377489 0x7ffacc170000 45056 C:\Windows\system32\CRYPTBASE.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base cryptographic API DLL 131795770645377489 0x7ffacc350000 180224 C:\Windows\SYSTEM32\SspiCli.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Security Support Provider Interface 131795770645377489 0x7ffacc5c0000 352256 C:\Windows\SYSTEM32\WINSTA.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Winstation Library 131795770645377489 0x7ffacc620000 176128 C:\Windows\system32\Bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795770645377489 0x7ffacc6e0000 61440 C:\Windows\System32\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795770645377489 0x7ffacc6f0000 311296 C:\Windows\System32\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795770645377489 0x7ffacc740000 81920 C:\Windows\System32\profapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Profile Basic API 131795770645377489 0x7ffacc760000 65536 C:\Windows\System32\MSASN1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ASN.1 Runtime APIs 131795770645377489 0x7ffacc8f0000 1003520 C:\Windows\System32\ucrtbase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645377489 0x7ffacc9f0000 434176 C:\Windows\System32\bcryptPrimitives.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Cryptographic Primitives Library 131795770645377489 0x7ffacca60000 122880 C:\Windows\System32\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795770645377489 0x7ffacca80000 348160 C:\Windows\System32\WINTRUST.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation Microsoft Trust Verification APIs 131795770645377489 0x7ffaccae0000 692224 C:\Windows\System32\shcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795770645377489 0x7ffaccb90000 7180288 C:\Windows\System32\windows.storage.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API хранения Microsoft WinRT 131795770645377489 0x7ffacd270000 2215936 C:\Windows\System32\KERNELBASE.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645377489 0x7ffacd490000 1871872 C:\Windows\System32\CRYPT32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API32 криптографии 131795770645377489 0x7ffacd710000 638976 C:\Windows\System32\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645377489 0x7ffaced20000 782336 C:\Windows\System32\OLEAUT32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795770645377489 0x7ffacee50000 1183744 C:\Windows\System32\RPCRT4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795770645377489 0x7ffacef90000 647168 C:\Windows\System32\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795770645377489 0x7ffacf030000 651264 C:\Windows\System32\clbcatq.dll 2001.12.10941.16384 (rs1_release.160715-1616) Microsoft Corporation COM+ Configuration Catalog 131795770645377489 0x7ffacf0d0000 704512 C:\Windows\System32\KERNEL32.DLL 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645377489 0x7ffacf770000 212992 C:\Windows\System32\GDI32.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation GDI Client DLL 131795770645377489 0x7ffacf8c0000 1462272 C:\Windows\System32\user32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795770645377489 0x7ffacfb30000 2916352 C:\Windows\System32\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795770645377489 0x7ffacfe20000 663552 C:\Windows\System32\advapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795770645377489 0x7ffad01b0000 335872 C:\Windows\System32\shlwapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека небольших программ оболочки 131795770645377489 0x7ffad0210000 364544 C:\Windows\System32\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795770645377489 0x7ffad0270000 1908736 C:\Windows\SYSTEM32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 33 1744 4 9 00000000:000003e7 131765776348255325 0 0 1 Обязательная метка\Обязательный уровень системы NT AUTHORITY\СИСТЕМА MemCompression MemCompression 34 2100 580 4 00000000:000003e4 131765776438403561 0 0 1 Обязательная метка\Обязательный уровень системы NT AUTHORITY\NETWORK SERVICE svchost.exe C:\Windows\system32\svchost.exe C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted Microsoft Corporation 10.0.14393.0 (rs1_release.160715-1616) Хост-процесс для служб Windows 131795770645377758 0x7ff718c20000 57344 C:\Windows\system32\svchost.exe 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Хост-процесс для служб Windows 131795770645377758 0x7ffabff90000 409600 c:\windows\system32\ipsecsvc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows IPsec SPD Server DLL 131795770645377758 0x7ffac1e00000 114688 c:\windows\system32\FwRemoteSvr.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Firewall Remote APIs Server 131795770645377758 0x7ffac3f60000 225280 c:\windows\system32\FWPolicyIOMgr.dll 10.0.14393.2189 (rs1_release.180329-1711) Microsoft Corporation FwPolicyIoMgr DLL 131795770645377758 0x7ffac83d0000 106496 C:\Windows\SYSTEM32\dhcpcsvc.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служба DHCP-клиента 131795770645377758 0x7ffac83f0000 90112 C:\Windows\SYSTEM32\dhcpcsvc6.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиент DHCPv6 131795770645377758 0x7ffac8420000 434176 c:\windows\system32\fwpuclnt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API пользовательского режима FWP/IPsec 131795770645377758 0x7ffacb360000 176128 c:\windows\system32\fwbase.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Firewall Base DLL 131795770645377758 0x7ffacb460000 548864 c:\windows\system32\FirewallAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API брандмауэра Windows 131795770645377758 0x7ffacb920000 81920 C:\Windows\SYSTEM32\WLDP.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Политика блокировки Windows 131795770645377758 0x7ffacb960000 303104 c:\windows\system32\AUTHZ.dll 10.0.14393.1737 (rs1_release_inmarket.170914-1249) Microsoft Corporation Authorization Framework 131795770645377758 0x7ffacbd30000 229376 c:\windows\system32\IPHLPAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API вспомогательного приложения IP 131795770645377758 0x7ffacbfb0000 376832 C:\Windows\system32\mswsock.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширение поставщика службы API Microsoft Windows Sockets 2.0 131795770645377758 0x7ffacc350000 180224 C:\Windows\system32\sspicli.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Security Support Provider Interface 131795770645377758 0x7ffacc620000 176128 c:\windows\system32\bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795770645377758 0x7ffacc6e0000 61440 C:\Windows\System32\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795770645377758 0x7ffacc760000 65536 C:\Windows\System32\MSASN1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ASN.1 Runtime APIs 131795770645377758 0x7ffacc8f0000 1003520 C:\Windows\System32\ucrtbase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645377758 0x7ffacc9f0000 434176 C:\Windows\System32\bcryptPrimitives.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Cryptographic Primitives Library 131795770645377758 0x7ffacca80000 348160 C:\Windows\System32\WINTRUST.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation Microsoft Trust Verification APIs 131795770645377758 0x7ffacd270000 2215936 C:\Windows\System32\KERNELBASE.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645377758 0x7ffacd490000 1871872 C:\Windows\System32\CRYPT32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API32 криптографии 131795770645377758 0x7ffacd710000 638976 C:\Windows\System32\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645377758 0x7ffaced20000 782336 C:\Windows\System32\OLEAUT32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795770645377758 0x7ffacee50000 1183744 C:\Windows\System32\RPCRT4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795770645377758 0x7ffacef80000 32768 C:\Windows\System32\NSI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation NSI User-mode interface DLL 131795770645377758 0x7ffacef90000 647168 C:\Windows\System32\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795770645377758 0x7ffacf030000 651264 C:\Windows\System32\clbcatq.dll 2001.12.10941.16384 (rs1_release.160715-1616) Microsoft Corporation COM+ Configuration Catalog 131795770645377758 0x7ffacf0d0000 704512 C:\Windows\System32\KERNEL32.DLL 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645377758 0x7ffacf820000 434176 C:\Windows\System32\WS2_32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation 32-разрядная библиотека Windows Socket 2.0 131795770645377758 0x7ffacfb30000 2916352 C:\Windows\System32\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795770645377758 0x7ffad0210000 364544 C:\Windows\System32\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795770645377758 0x7ffad0270000 1908736 C:\Windows\SYSTEM32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 35 2648 348 24 00000000:0031f1da 131765777555980720 0 0 1 Обязательная метка\Средний обязательный уровень WIN-0UOTFKKVN1S\User sihost.exe C:\Windows\system32\sihost.exe sihost.exe Microsoft Corporation 10.0.14393.0 (rs1_release.160715-1616) Shell Infrastructure Host 131795770645377872 0x7ff7bbae0000 94208 C:\Windows\system32\sihost.exe 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Shell Infrastructure Host 131795770645377872 0x7ffab9490000 860160 C:\Windows\System32\ntshrui.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширения оболочки, обеспечивающие общий доступ 131795770645377872 0x7ffabae40000 110592 C:\Windows\SYSTEM32\capauthz.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API авторизации возможностей 131795770645377872 0x7ffabaf70000 270336 C:\Windows\System32\edputil.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служебная программа EDP 131795770645377872 0x7ffabb910000 344064 C:\Windows\System32\container.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Windows Containers 131795770645377872 0x7ffabb970000 487424 C:\Windows\System32\daxexec.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation daxexec 131795770645377872 0x7ffabba80000 995328 C:\Windows\System32\twinui.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation TWINUI.APPCORE 131795770645377872 0x7ffabbb80000 61440 C:\Windows\System32\dsclient.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Data Sharing Service Client DLL 131795770645377872 0x7ffabbb90000 581632 C:\Windows\System32\Windows.System.Launcher.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows.System.Launcher 131795770645377872 0x7ffabbd00000 36864 C:\Windows\system32\WpPortingLibrary.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation <d> DLL 131795770645377872 0x7ffabc0b0000 65536 C:\Windows\System32\LINKINFO.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Volume Tracking 131795770645377872 0x7ffabc450000 741376 C:\Windows\system32\ShareHost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ShareHost 131795770645377872 0x7ffabc510000 90112 C:\Windows\system32\execmodelproxy.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ExecModelProxy 131795770645377872 0x7ffabc570000 94208 C:\Windows\SYSTEM32\licensemanagerapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation "LicenseManagerApi.DYNLINK" 131795770645377872 0x7ffabc6b0000 1114112 C:\Windows\System32\AppContracts.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Сервер API Windows AppContracts 131795770645377872 0x7ffabc800000 266240 C:\Windows\System32\windowmanagement.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Window Management 131795770645377872 0x7ffabc850000 159744 C:\Windows\System32\AppointmentActivation.dll 10.0.14393.2189 (rs1_release.180329-1711) Microsoft Corporation DLL for AppointmentActivation 131795770645377872 0x7ffabc880000 73728 C:\Windows\system32\cscapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Offline Files Win32 API 131795770645377872 0x7ffabc8b0000 61440 C:\Windows\System32\NotificationPlatformComponent.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation NotificationPlatformComponent 131795770645377872 0x7ffabc920000 270336 C:\Windows\system32\ExecModelClient.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation ExecModelClient 131795770645377872 0x7ffabc9a0000 413696 C:\Windows\system32\activationmanager.dll 10.0.14393.479 (rs1_release.161110-2025) Microsoft Corporation Activation Manager 131795770645377872 0x7ffabca10000 221184 C:\Windows\System32\ClipboardServer.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Сервер API Modern Clipboard 131795770645377872 0x7ffabcde0000 983040 C:\Windows\System32\modernexecserver.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Сервер Modern Execution 131795770645377872 0x7ffabcef0000 102400 C:\Windows\System32\Windows.Shell.ServiceHostBuilder.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows.Shell.ServiceHostBuilder 131795770645377872 0x7ffabcf10000 122880 C:\Windows\system32\desktopshellext.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DesktopHost Extensions 131795770645377872 0x7ffabff10000 155648 C:\Windows\System32\srvcli.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Server Service Client DLL 131795770645377872 0x7ffac0bf0000 3559424 C:\Windows\System32\ActXPrxy.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation ActiveX Interface Marshaling Library 131795770645377872 0x7ffac20d0000 110592 C:\Windows\System32\RMCLIENT.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Resource Manager Client 131795770645377872 0x7ffac23c0000 331776 C:\Windows\System32\OneCoreCommonProxyStub.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation OneCore Common Proxy Stub 131795770645377872 0x7ffac2b30000 286720 C:\Windows\System32\usermgrproxy.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation UserMgrProxy 131795770645377872 0x7ffac3270000 40960 C:\Windows\System32\FLTLIB.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека фильтров 131795770645377872 0x7ffac34e0000 1843200 C:\Windows\System32\urlmon.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширения OLE32 для Win32 131795770645377872 0x7ffac3cb0000 2772992 C:\Windows\System32\iertutil.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служебная программа времени выполнения для Internet Explorer 131795770645377872 0x7ffac42a0000 659456 C:\Windows\System32\StateRepository.Core.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation StateRepository Core 131795770645377872 0x7ffac4450000 86016 C:\Windows\SYSTEM32\usermgrcli.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation UserMgr API DLL 131795770645377872 0x7ffac46d0000 4161536 C:\Windows\System32\Windows.StateRepository.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Сервер Windows StateRepository API Server 131795770645377872 0x7ffac5500000 438272 C:\Windows\system32\PhotoMetadataHandler.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Photo Metadata Handler 131795770645377872 0x7ffac7720000 1601536 C:\Windows\System32\OneCoreUAPCommonProxyStub.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation OneCoreUAP Common Proxy Stub 131795770645377872 0x7ffac92e0000 1269760 C:\Windows\SYSTEM32\wintypes.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL основных типов Windows 131795770645377872 0x7ffac9500000 2682880 C:\Windows\system32\CoreUIComponents.dll 131795770645377872 0x7ffac9f50000 1736704 C:\Windows\system32\WindowsCodecs.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Microsoft Windows Codecs Library 131795770645377872 0x7ffaca340000 1593344 C:\Windows\System32\PROPSYS.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Система страниц свойств (Майкрософт) 131795770645377872 0x7ffaca4e0000 77824 C:\Windows\SYSTEM32\wtsapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Remote Desktop Session Host Server SDK APIs 131795770645377872 0x7ffaca5e0000 155648 C:\Windows\System32\dwmapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Интерфейс API диспетчера окон рабочего стола (Майкрософт) 131795770645377872 0x7ffaca640000 770048 C:\Windows\system32\CoreMessaging.dll 10.0.14393.0 Microsoft Corporation Microsoft CoreMessaging Dll 131795770645377872 0x7ffacadf0000 499712 C:\Windows\System32\apphelp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиентская библиотека совместимости приложений 131795770645377872 0x7ffacaf00000 610304 C:\Windows\system32\uxtheme.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека тем UxTheme (Microsoft) 131795770645377872 0x7ffacb140000 593920 C:\Windows\System32\msvcp110_win.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Microsoft® STL110 C++ Runtime Library 131795770645377872 0x7ffacb1e0000 1163264 C:\Windows\SYSTEM32\twinapi.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation twinapi.appcore 131795770645377872 0x7ffacb300000 364544 C:\Windows\System32\VEEventDispatcher.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Visual Element Event dispatcher 131795770645377872 0x7ffacb3d0000 110592 C:\Windows\System32\ResourcePolicyClient.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Resource Policy Client 131795770645377872 0x7ffacb420000 204800 C:\Windows\SYSTEM32\ntmarta.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик Windows NT MARTA 131795770645377872 0x7ffacbd30000 229376 C:\Windows\System32\IPHLPAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API вспомогательного приложения IP 131795770645377872 0x7ffacc350000 180224 C:\Windows\System32\SspiCli.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Security Support Provider Interface 131795770645377872 0x7ffacc5c0000 352256 C:\Windows\SYSTEM32\WINSTA.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Winstation Library 131795770645377872 0x7ffacc620000 176128 C:\Windows\System32\bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795770645377872 0x7ffacc6e0000 61440 C:\Windows\System32\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795770645377872 0x7ffacc6f0000 311296 C:\Windows\System32\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795770645377872 0x7ffacc740000 81920 C:\Windows\System32\profapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Profile Basic API 131795770645377872 0x7ffacc8f0000 1003520 C:\Windows\System32\ucrtbase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645377872 0x7ffacc9f0000 434176 C:\Windows\System32\bcryptPrimitives.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Cryptographic Primitives Library 131795770645377872 0x7ffacca60000 122880 C:\Windows\System32\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795770645377872 0x7ffaccae0000 692224 C:\Windows\System32\shcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795770645377872 0x7ffaccb90000 7180288 C:\Windows\System32\Windows.Storage.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API хранения Microsoft WinRT 131795770645377872 0x7ffacd270000 2215936 C:\Windows\System32\KERNELBASE.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645377872 0x7ffacd710000 638976 C:\Windows\System32\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645377872 0x7ffacd7b0000 270336 C:\Windows\System32\cfgmgr32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Configuration Manager DLL 131795770645377872 0x7ffacd810000 22056960 C:\Windows\System32\shell32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Общая библиотека оболочки Windows 131795770645377872 0x7ffaced20000 782336 C:\Windows\System32\OLEAUT32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795770645377872 0x7ffacee50000 1183744 C:\Windows\System32\RPCRT4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795770645377872 0x7ffacef90000 647168 C:\Windows\System32\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795770645377872 0x7ffacf030000 651264 C:\Windows\System32\clbcatq.dll 2001.12.10941.16384 (rs1_release.160715-1616) Microsoft Corporation COM+ Configuration Catalog 131795770645377872 0x7ffacf0d0000 704512 C:\Windows\System32\KERNEL32.DLL 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645377872 0x7ffacf770000 212992 C:\Windows\System32\GDI32.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation GDI Client DLL 131795770645377872 0x7ffacf890000 188416 C:\Windows\System32\IMM32.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Multi-User Windows IMM32 API Client DLL 131795770645377872 0x7ffacf8c0000 1462272 C:\Windows\System32\user32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795770645377872 0x7ffacfb30000 2916352 C:\Windows\System32\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795770645377872 0x7ffacfe20000 663552 C:\Windows\System32\advapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795770645377872 0x7ffad0070000 1277952 C:\Windows\System32\ole32.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft OLE для Windows 131795770645377872 0x7ffad01b0000 335872 C:\Windows\System32\shlwapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека небольших программ оболочки 131795770645377872 0x7ffad0210000 364544 C:\Windows\System32\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795770645377872 0x7ffad0270000 1908736 C:\Windows\SYSTEM32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 36 840 580 4 00000000:0031f1da 131765777563791648 0 0 1 Обязательная метка\Средний обязательный уровень WIN-0UOTFKKVN1S\User svchost.exe C:\Windows\system32\svchost.exe C:\Windows\system32\svchost.exe -k UnistackSvcGroup Microsoft Corporation 10.0.14393.0 (rs1_release.160715-1616) Хост-процесс для служб Windows 131795770645377971 0x7ff718c20000 57344 C:\Windows\system32\svchost.exe 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Хост-процесс для служб Windows 131795770645377971 0x7ffaaf6a0000 331776 C:\Windows\System32\PhoneUtil.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Phone utilities 131795770645377971 0x7ffaaf700000 1421312 C:\Windows\System32\PIMSTORE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation POOM 131795770645377971 0x7ffab05d0000 339968 C:\Windows\System32\AccountAccessor.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Sync data model to access accounts 131795770645377971 0x7ffab0630000 618496 C:\Windows\System32\SyncController.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SyncController for managing sync of mail, contacts, calendar 131795770645377971 0x7ffab93b0000 897024 C:\Windows\System32\TokenBroker.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Token Broker 131795770645377971 0x7ffabaab0000 94208 C:\Windows\SYSTEM32\profext.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation profext 131795770645377971 0x7ffabbb80000 61440 C:\Windows\System32\dsclient.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Data Sharing Service Client DLL 131795770645377971 0x7ffabbd10000 65536 C:\Windows\System32\TOKENBINDING.dll 10.0.14393.1593 (rs1_release.170731-1934) Microsoft Corporation Token Binding Protocol 131795770645377971 0x7ffabca50000 819200 C:\Windows\System32\Windows.Security.Authentication.Web.Core.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Token Broker WinRT API 131795770645377971 0x7ffabcb20000 266240 C:\Windows\System32\CEMAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation CEMAPI 131795770645377971 0x7ffabcb70000 262144 C:\Windows\System32\cdprt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft (R) CDP Client WinRT API 131795770645377971 0x7ffabcd80000 360448 c:\windows\system32\cdpusersvc.dll 10.0.14393.479 (rs1_release.161110-2025) Microsoft Corporation Microsoft (R) CDP User Components 131795770645377971 0x7ffabd630000 200704 C:\Windows\System32\MCCSEngineShared.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Utilies shared among OneSync engines 131795770645377971 0x7ffabdde0000 462848 c:\windows\system32\SYNCUTIL.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Sync utilities for mail, contacts, calendar 131795770645377971 0x7ffabe850000 155648 C:\Windows\System32\IDStore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Identity Store 131795770645377971 0x7ffabed20000 389120 c:\windows\system32\aphostservice.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Accounts Host Service 131795770645377971 0x7ffabfbe0000 1011712 C:\Windows\System32\Windows.Security.Authentication.OnlineId.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation Windows Runtime OnlineId Authentication DLL 131795770645377971 0x7ffac05f0000 94208 C:\Windows\System32\wwapi.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation WWAN API 131795770645377971 0x7ffac0910000 724992 C:\Windows\System32\Windows.Networking.Connectivity.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Networking Connectivity Runtime DLL 131795770645377971 0x7ffac09d0000 884736 C:\Windows\System32\wpnapps.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Приложения для push-уведомлений Windows 131795770645377971 0x7ffac0bf0000 3559424 C:\Windows\System32\ActXPrxy.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation ActiveX Interface Marshaling Library 131795770645377971 0x7ffac20d0000 110592 C:\Windows\System32\RMCLIENT.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Resource Manager Client 131795770645377971 0x7ffac23c0000 331776 C:\Windows\System32\OneCoreCommonProxyStub.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation OneCore Common Proxy Stub 131795770645377971 0x7ffac2590000 659456 C:\Windows\System32\FlightSettings.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Параметры цикла тестирования 131795770645377971 0x7ffac2750000 106496 C:\Windows\System32\bcd.dll 10.0.14393.1794 (rs1_release.171008-1615) Microsoft Corporation BCD DLL 131795770645377971 0x7ffac2b30000 286720 C:\Windows\System32\usermgrproxy.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation UserMgrProxy 131795770645377971 0x7ffac2cb0000 778240 c:\windows\system32\winsqlite3.dll 3.12.2 SQLite Development Team SQLite is a software library that implements a self-contained, serverless, zero-configuration, transactional SQL database engine. 131795770645377971 0x7ffac2d80000 5140480 c:\windows\system32\cdp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API клиента Microsoft (R) CDP 131795770645377971 0x7ffac3cb0000 2772992 C:\Windows\System32\iertutil.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служебная программа времени выполнения для Internet Explorer 131795770645377971 0x7ffac4000000 274432 C:\Windows\SYSTEM32\policymanager.dll 10.0.14393.2035 (rs1_release_inmarket.180110-1910) Microsoft Corporation Policy Manager DLL 131795770645377971 0x7ffac4100000 151552 c:\windows\system32\NetworkHelper.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Network utilities for mail, contacts, calendar 131795770645377971 0x7ffac4450000 86016 C:\Windows\SYSTEM32\usermgrcli.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation UserMgr API DLL 131795770645377971 0x7ffac60e0000 221184 C:\Windows\System32\XmlLite.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft XmlLite Library 131795770645377971 0x7ffac66a0000 86016 C:\Windows\SYSTEM32\ondemandconnroutehelper.dll 10.0.14393.351 (rs1_release_inmarket.161014-1755) Microsoft Corporation On Demand Connctiond Route Helper 131795770645377971 0x7ffac69c0000 839680 c:\windows\system32\WINHTTP.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Службы HTTP Windows 131795770645377971 0x7ffac79c0000 57344 C:\Windows\System32\npmproxy.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Network List Manager Proxy 131795770645377971 0x7ffac7aa0000 401408 C:\Windows\SYSTEM32\wlanapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows WLAN AutoConfig Client Side API DLL 131795770645377971 0x7ffac83d0000 106496 C:\Windows\SYSTEM32\dhcpcsvc.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служба DHCP-клиента 131795770645377971 0x7ffac83f0000 90112 C:\Windows\SYSTEM32\dhcpcsvc6.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиент DHCPv6 131795770645377971 0x7ffac8540000 286720 C:\Windows\System32\vaultcli.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиентская библиотека хранилища учетных данных 131795770645377971 0x7ffac92e0000 1269760 C:\Windows\SYSTEM32\wintypes.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL основных типов Windows 131795770645377971 0x7ffac97b0000 81920 c:\windows\system32\InprocLogger.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation In-proc Private Event Trace Logger 131795770645377971 0x7ffaca1d0000 69632 C:\Windows\System32\UserDataTypeHelperUtil.dll 10.0.14393.2189 (rs1_release.180329-1711) Microsoft Corporation Type Utilities for data access 131795770645377971 0x7ffaca270000 65536 C:\Windows\System32\UserDataLanguageUtil.dll 10.0.14393.2189 (rs1_release.180329-1711) Microsoft Corporation Language-related helper functions for user data 131795770645377971 0x7ffaca4e0000 77824 C:\Windows\SYSTEM32\wtsapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Remote Desktop Session Host Server SDK APIs 131795770645377971 0x7ffaca520000 90112 C:\Windows\System32\APHostClient.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Accounts Host Service RPC Client 131795770645377971 0x7ffaca610000 143360 C:\Windows\System32\SAMLIB.dll 10.0.14393.82 (rs1_release.160805-1735) Microsoft Corporation SAM Library DLL 131795770645377971 0x7ffacabf0000 45056 c:\windows\system32\MCCSPal.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Platform abstraction layer dll for MCCS 131795770645377971 0x7ffacac20000 86016 c:\windows\system32\UserDataPlatformHelperUtil.dll 10.0.14393.2189 (rs1_release.180329-1711) Microsoft Corporation Platform Utilities for data access 131795770645377971 0x7ffacb140000 593920 c:\windows\system32\msvcp110_win.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Microsoft® STL110 C++ Runtime Library 131795770645377971 0x7ffacb1e0000 1163264 C:\Windows\System32\twinapi.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation twinapi.appcore 131795770645377971 0x7ffacb300000 364544 c:\windows\system32\VEEventDispatcher.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Visual Element Event dispatcher 131795770645377971 0x7ffacb420000 204800 C:\Windows\SYSTEM32\ntmarta.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик Windows NT MARTA 131795770645377971 0x7ffacb920000 81920 C:\Windows\SYSTEM32\WLDP.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Политика блокировки Windows 131795770645377971 0x7ffacbbf0000 40960 C:\Windows\System32\DPAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Data Protection API 131795770645377971 0x7ffacbd30000 229376 c:\windows\system32\IPHLPAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API вспомогательного приложения IP 131795770645377971 0x7ffacbe40000 126976 C:\Windows\System32\USERENV.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Userenv 131795770645377971 0x7ffacbf30000 49152 C:\Windows\system32\NtlmShared.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation NTLM Shared Functionality 131795770645377971 0x7ffacbf40000 421888 C:\Windows\system32\msv1_0.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Authentication Package v1.0 131795770645377971 0x7ffacc010000 86016 C:\Windows\system32\cryptdll.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Cryptography Manager 131795770645377971 0x7ffacc150000 94208 C:\Windows\SYSTEM32\cryptsp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Cryptographic Service Provider API 131795770645377971 0x7ffacc170000 45056 c:\windows\system32\CRYPTBASE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base cryptographic API DLL 131795770645377971 0x7ffacc1f0000 241664 c:\windows\system32\NTASN1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft ASN.1 API 131795770645377971 0x7ffacc230000 155648 c:\windows\system32\ncrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Маршрутизатор Windows NCrypt 131795770645377971 0x7ffacc350000 180224 c:\windows\system32\SspiCli.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Security Support Provider Interface 131795770645377971 0x7ffacc620000 176128 c:\windows\system32\bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795770645377971 0x7ffacc6e0000 61440 C:\Windows\System32\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795770645377971 0x7ffacc6f0000 311296 C:\Windows\System32\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795770645377971 0x7ffacc740000 81920 C:\Windows\System32\profapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Profile Basic API 131795770645377971 0x7ffacc760000 65536 C:\Windows\System32\MSASN1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ASN.1 Runtime APIs 131795770645377971 0x7ffacc8f0000 1003520 C:\Windows\System32\ucrtbase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645377971 0x7ffacc9f0000 434176 C:\Windows\System32\bcryptPrimitives.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Cryptographic Primitives Library 131795770645377971 0x7ffacca60000 122880 C:\Windows\System32\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795770645377971 0x7ffacca80000 348160 C:\Windows\System32\WINTRUST.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation Microsoft Trust Verification APIs 131795770645377971 0x7ffaccae0000 692224 C:\Windows\System32\shcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795770645377971 0x7ffaccb90000 7180288 C:\Windows\System32\windows.storage.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API хранения Microsoft WinRT 131795770645377971 0x7ffacd270000 2215936 C:\Windows\System32\KERNELBASE.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645377971 0x7ffacd490000 1871872 C:\Windows\System32\CRYPT32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API32 криптографии 131795770645377971 0x7ffacd710000 638976 C:\Windows\System32\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645377971 0x7ffacd7b0000 270336 C:\Windows\System32\cfgmgr32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Configuration Manager DLL 131795770645377971 0x7ffaced20000 782336 C:\Windows\System32\OLEAUT32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795770645377971 0x7ffacee50000 1183744 C:\Windows\System32\RPCRT4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795770645377971 0x7ffacef80000 32768 C:\Windows\System32\NSI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation NSI User-mode interface DLL 131795770645377971 0x7ffacef90000 647168 C:\Windows\System32\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795770645377971 0x7ffacf030000 651264 C:\Windows\System32\clbcatq.dll 2001.12.10941.16384 (rs1_release.160715-1616) Microsoft Corporation COM+ Configuration Catalog 131795770645377971 0x7ffacf0d0000 704512 C:\Windows\System32\KERNEL32.DLL 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645377971 0x7ffacf770000 212992 C:\Windows\System32\GDI32.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation GDI Client DLL 131795770645377971 0x7ffacf820000 434176 C:\Windows\System32\WS2_32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation 32-разрядная библиотека Windows Socket 2.0 131795770645377971 0x7ffacf890000 188416 C:\Windows\System32\IMM32.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Multi-User Windows IMM32 API Client DLL 131795770645377971 0x7ffacf8c0000 1462272 C:\Windows\System32\user32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795770645377971 0x7ffacfb30000 2916352 C:\Windows\System32\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795770645377971 0x7ffacfe20000 663552 C:\Windows\System32\advapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795770645377971 0x7ffad01b0000 335872 C:\Windows\System32\shlwapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека небольших программ оболочки 131795770645377971 0x7ffad0210000 364544 C:\Windows\System32\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795770645377971 0x7ffad0270000 1908736 C:\Windows\SYSTEM32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 37 528 348 24 00000000:0031f1da 131765777565618284 0 0 1 Обязательная метка\Средний обязательный уровень WIN-0UOTFKKVN1S\User taskhostw.exe C:\Windows\system32\taskhostw.exe taskhostw.exe {222A245B-E637-4AE9-A93F-A59CA119A75E} Microsoft Corporation 10.0.14393.0 (rs1_release.160715-1616) Хост-процесс для задач Windows 131795770645378085 0x7ff794e10000 102400 C:\Windows\system32\taskhostw.exe 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Хост-процесс для задач Windows 131795770645378085 0x7ffab4af0000 606208 C:\Windows\system32\AUDIOSES.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Сеанс обработки звука 131795770645378085 0x7ffabaab0000 94208 C:\Windows\SYSTEM32\profext.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation profext 131795770645378085 0x7ffabb3c0000 450560 C:\Windows\system32\TextInputFramework.dll 10.0.14393.2189 (rs1_release.180329-1711) Microsoft Corporation "TextInputFramework.DYNLINK" 131795770645378085 0x7ffabb440000 282624 C:\Windows\system32\MTFServer.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation "MTFServer.DYNLINK" 131795770645378085 0x7ffabb510000 2854912 C:\Windows\system32\InputService.dll 10.0.14393.2189 (rs1_release.180329-1711) Microsoft Corporation Microsoft Text InputService Dll 131795770645378085 0x7ffabb8c0000 131072 C:\Windows\system32\InputLocaleManager.dll 10.0.14393.576 (rs1_release_inmarket.161208-2252) Microsoft Corporation "InputLocaleManager.DYNLINK" 131795770645378085 0x7ffabb8f0000 98304 C:\Windows\system32\EditBufferTestHook.dll 10.0.14393.576 (rs1_release_inmarket.161208-2252) Microsoft Corporation "EditBufferTestHook.DYNLINK" 131795770645378085 0x7ffabb9f0000 483328 C:\Windows\system32\MSUTB.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека (DLL) сервера MSUTB 131795770645378085 0x7ffabba70000 53248 C:\Windows\system32\MsCtfMonitor.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation MsCtfMonitor DLL 131795770645378085 0x7ffabbc20000 106496 C:\Windows\System32\PlaySndSrv.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служба PlaySound 131795770645378085 0x7ffabf5d0000 2924544 C:\Windows\system32\wininet.dll 11.00.14393.447 (rs1_release_inmarket.161102-0100) Microsoft Corporation Расширения Интернета для Win32 131795770645378085 0x7ffac37d0000 258048 C:\Windows\system32\wdmaud.drv 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Системный звуковой драйвер Winmm 131795770645378085 0x7ffac3840000 3088384 C:\Windows\system32\ESENT.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширяемая подсистема хранения данных ESE для Microsoft(R) Windows(R) 131795770645378085 0x7ffac3cb0000 2772992 C:\Windows\system32\iertutil.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служебная программа времени выполнения для Internet Explorer 131795770645378085 0x7ffac4000000 274432 C:\Windows\SYSTEM32\policymanager.dll 10.0.14393.2035 (rs1_release_inmarket.180110-1910) Microsoft Corporation Policy Manager DLL 131795770645378085 0x7ffac4140000 114688 C:\Windows\system32\MSACM32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Фильтр диспетчера аудиосжатия Microsoft 131795770645378085 0x7ffac7d10000 32768 C:\Windows\system32\KBDUS.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation United States Keyboard Layout 131795770645378085 0x7ffac8f90000 45056 C:\Windows\system32\AVRT.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Среда выполнения мультимедиа в реальном времени 131795770645378085 0x7ffac92e0000 1269760 C:\Windows\SYSTEM32\wintypes.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL основных типов Windows 131795770645378085 0x7ffac9480000 462848 C:\Windows\System32\MMDevAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation MMDevice API 131795770645378085 0x7ffac9500000 2682880 C:\Windows\system32\CoreUIComponents.dll 131795770645378085 0x7ffac97d0000 40960 C:\Windows\system32\midimap.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft MIDI Mapper 131795770645378085 0x7ffaca180000 53248 C:\Windows\system32\msacm32.drv 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Программа переназначения звуковых устройств 131795770645378085 0x7ffaca340000 1593344 C:\Windows\System32\PROPSYS.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Система страниц свойств (Майкрософт) 131795770645378085 0x7ffaca550000 36864 C:\Windows\system32\ksuser.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User CSA Library 131795770645378085 0x7ffaca5e0000 155648 C:\Windows\system32\dwmapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Интерфейс API диспетчера окон рабочего стола (Майкрософт) 131795770645378085 0x7ffaca640000 770048 C:\Windows\system32\CoreMessaging.dll 10.0.14393.0 Microsoft Corporation Microsoft CoreMessaging Dll 131795770645378085 0x7ffacab10000 61440 C:\Windows\System32\WordBreakers.dll 10.0.14393.2189 (rs1_release.180329-1711) Microsoft Corporation "WordBreakers.DYNLINK" 131795770645378085 0x7ffacab40000 176128 C:\Windows\System32\WINMMBASE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base Multimedia Extension API DLL 131795770645378085 0x7ffacaba0000 143360 C:\Windows\System32\WINMM.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation MCI API DLL 131795770645378085 0x7ffacaf00000 610304 C:\Windows\system32\uxtheme.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека тем UxTheme (Microsoft) 131795770645378085 0x7ffacb140000 593920 C:\Windows\system32\msvcp110_win.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Microsoft® STL110 C++ Runtime Library 131795770645378085 0x7ffacb3f0000 163840 C:\Windows\System32\DEVOBJ.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Device Information Set DLL 131795770645378085 0x7ffacb420000 204800 C:\Windows\SYSTEM32\ntmarta.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик Windows NT MARTA 131795770645378085 0x7ffacbe40000 126976 C:\Windows\SYSTEM32\userenv.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Userenv 131795770645378085 0x7ffacc170000 45056 C:\Windows\system32\CRYPTBASE.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base cryptographic API DLL 131795770645378085 0x7ffacc5c0000 352256 C:\Windows\system32\WINSTA.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Winstation Library 131795770645378085 0x7ffacc6e0000 61440 C:\Windows\System32\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795770645378085 0x7ffacc6f0000 311296 C:\Windows\System32\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795770645378085 0x7ffacc740000 81920 C:\Windows\System32\profapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Profile Basic API 131795770645378085 0x7ffacc8f0000 1003520 C:\Windows\System32\ucrtbase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645378085 0x7ffacc9f0000 434176 C:\Windows\System32\bcryptPrimitives.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Cryptographic Primitives Library 131795770645378085 0x7ffacca60000 122880 C:\Windows\System32\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795770645378085 0x7ffaccae0000 692224 C:\Windows\System32\shcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795770645378085 0x7ffaccb90000 7180288 C:\Windows\System32\windows.storage.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API хранения Microsoft WinRT 131795770645378085 0x7ffacd270000 2215936 C:\Windows\System32\KERNELBASE.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645378085 0x7ffacd710000 638976 C:\Windows\System32\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645378085 0x7ffacd7b0000 270336 C:\Windows\System32\cfgmgr32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Configuration Manager DLL 131795770645378085 0x7ffaced20000 782336 C:\Windows\System32\OLEAUT32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795770645378085 0x7ffacee50000 1183744 C:\Windows\System32\RPCRT4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795770645378085 0x7ffacef90000 647168 C:\Windows\System32\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795770645378085 0x7ffacf030000 651264 C:\Windows\System32\clbcatq.dll 2001.12.10941.16384 (rs1_release.160715-1616) Microsoft Corporation COM+ Configuration Catalog 131795770645378085 0x7ffacf0d0000 704512 C:\Windows\System32\KERNEL32.DLL 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645378085 0x7ffacf1e0000 1417216 C:\Windows\System32\MSCTF.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Серверная библиотека MSCTF 131795770645378085 0x7ffacf770000 212992 C:\Windows\System32\GDI32.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation GDI Client DLL 131795770645378085 0x7ffacf890000 188416 C:\Windows\System32\imm32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Multi-User Windows IMM32 API Client DLL 131795770645378085 0x7ffacf8c0000 1462272 C:\Windows\System32\USER32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795770645378085 0x7ffacfb30000 2916352 C:\Windows\System32\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795770645378085 0x7ffacfe20000 663552 C:\Windows\System32\advapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795770645378085 0x7ffad0070000 1277952 C:\Windows\System32\ole32.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft OLE для Windows 131795770645378085 0x7ffad01b0000 335872 C:\Windows\System32\shlwapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека небольших программ оболочки 131795770645378085 0x7ffad0210000 364544 C:\Windows\System32\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795770645378085 0x7ffad0270000 1908736 C:\Windows\SYSTEM32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 38 3632 664 6 00000000:0031f1da 131765777941176116 0 0 1 Обязательная метка\Средний обязательный уровень WIN-0UOTFKKVN1S\User RuntimeBroker.exe C:\Windows\System32\RuntimeBroker.exe C:\Windows\System32\RuntimeBroker.exe -Embedding Microsoft Corporation 10.0.14393.0 (rs1_release.160715-1616) Runtime Broker 131795770645378207 0x7ff7808b0000 8527872 C:\Windows\system32\ntoskrnl.exe 10.0.14393.2189 (rs1_release.180329-1711) Microsoft Corporation NT Kernel & System 131795770645378207 0x7ff7a45f0000 49152 C:\Windows\System32\RuntimeBroker.exe 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Runtime Broker 131795770645378207 0x7ffaab750000 876544 C:\Windows\System32\Windows.Media.Import.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation Windows Photo Import API (WinRT/COM) 131795770645378207 0x7ffaac6e0000 13156352 C:\Windows\System32\ieframe.dll 11.00.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Браузер 131795780843802542 0x7ffaad3f0000 1826816 C:\Windows\System32\Wpc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека параметров родительского контроля 131795786292112107 0x7ffab08d0000 593920 C:\Windows\System32\LockAppBroker.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL брокера приложения "Блокировка" Windows 131795786164057245 0x7ffab0b10000 798720 C:\Windows\System32\mssvp.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Платформа Vista MSSearch 131795770645378207 0x7ffab33d0000 258048 C:\Windows\System32\MLANG.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL многоязыковой поддержки 131795770645378207 0x7ffab4b90000 655360 C:\Windows\System32\StructuredQuery.dll 7.0.14393.2068 (rs1_release.180209-1727) Microsoft Corporation Structured Query 131795770645378207 0x7ffab7780000 2576384 C:\Windows\system32\mssrch.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Встроенный поиск (Майкрософт) 131795770645378207 0x7ffab7a00000 3424256 C:\Windows\system32\TQUERY.DLL 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Запросы Microsoft Tripoli 131795770645378207 0x7ffab7d80000 753664 C:\Windows\System32\RASAPI32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API удаленного доступа 131795770645378207 0x7ffab8190000 9191424 C:\Windows\system32\twinui.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation TWINUI 131795780489291214 0x7ffab8da0000 1675264 C:\Windows\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.14393.1715_none_aec701fbddd850fa\GdiPlus.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Microsoft GDI+ 131795770645378207 0x7ffab92e0000 827392 C:\Windows\system32\Windows.Storage.Search.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows.Storage.Search 131795786088780638 0x7ffab93b0000 897024 C:\Windows\System32\TokenBroker.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Token Broker 131795770645378207 0x7ffab9490000 860160 C:\Windows\System32\ntshrui.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширения оболочки, обеспечивающие общий доступ 131795770645378207 0x7ffab9a40000 299008 C:\Windows\System32\RasMediaManager.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Ras Media Manager DLL 131795770645378207 0x7ffaba950000 188416 C:\Windows\System32\EthernetMediaManager.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Ethernet Media Manager DLL 131795770645378207 0x7ffabaa50000 339968 C:\Windows\System32\NetworkUXBroker.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation NetworkUXBroker DLL 131795770645378207 0x7ffabaab0000 94208 C:\Windows\SYSTEM32\profext.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation profext 131795786148630640 0x7ffabaad0000 352256 C:\Windows\System32\deviceaccess.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Device Broker And Policy COM Server 131795770645378207 0x7ffabae40000 110592 C:\Windows\SYSTEM32\capauthz.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API авторизации возможностей 131795770645378207 0x7ffabaf70000 270336 C:\Windows\System32\edputil.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служебная программа EDP 131795770645378207 0x7ffabb2b0000 1089536 C:\Windows\system32\SettingSyncCore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Setting Synchronization Core 131795770645378207 0x7ffabba80000 995328 C:\Windows\System32\twinui.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation TWINUI.APPCORE 131795786089047958 0x7ffabbd10000 65536 C:\Windows\System32\tokenbinding.dll 10.0.14393.1593 (rs1_release.170731-1934) Microsoft Corporation Token Binding Protocol 131795770645378207 0x7ffabc0b0000 65536 C:\Windows\System32\LINKINFO.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Volume Tracking 131795780613006289 0x7ffabc510000 90112 C:\Windows\System32\execmodelproxy.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ExecModelProxy 131795770645378207 0x7ffabc530000 241664 C:\Windows\System32\Windows.Networking.HostName.dll 10.0.14393.953 (rs1_release_inmarket.170303-1614) Microsoft Corporation Windows.Networking.HostName DLL 131795780733496994 0x7ffabc6b0000 1114112 C:\Windows\System32\AppContracts.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Сервер API Windows AppContracts 131795770645378207 0x7ffabc880000 73728 C:\Windows\System32\cscapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Offline Files Win32 API 131795780611542837 0x7ffabc920000 270336 C:\Windows\System32\ExecModelClient.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation ExecModelClient 131795786306767518 0x7ffabcef0000 102400 C:\Windows\System32\Windows.Shell.ServiceHostBuilder.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows.Shell.ServiceHostBuilder 131795770645378207 0x7ffabcf30000 110592 C:\Windows\System32\MPR.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека маршрутизации для нескольких служб доступа 131795786143522657 0x7ffabd220000 479232 C:\Windows\System32\Windows.Devices.Enumeration.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows.Devices.Enumeration 131795770645378207 0x7ffabdd60000 425984 C:\Windows\System32\AppXDeploymentClient.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL-библиотека клиента развертывания AppX 131795770645378207 0x7ffabe070000 610304 C:\Windows\System32\efswrt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Storage Protection Windows Runtime DLL 131795786165227211 0x7ffabe130000 126976 C:\Windows\System32\mapi32.dll 1.0.2536.0 (rs1_release.160715-1616) Microsoft Corporation Расширенный MAPI 1.0 для Windows NT 131795770645378207 0x7ffabe4d0000 286720 C:\Windows\System32\MSWB7.dll 10.0.14393.1737 (rs1_release_inmarket.170914-1249) Microsoft Corporation MSWB7 DLL 131795786089826857 0x7ffabe850000 155648 C:\Windows\System32\IDStore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Identity Store 131795770645378207 0x7ffabe880000 94208 C:\Windows\System32\FeClient.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT File Encryption Client Interfaces 131795770645378207 0x7ffabe8c0000 454656 C:\Windows\system32\windows.cortana.Desktop.dll 10.0.14393.953 (rs1_release_inmarket.170303-1614) Microsoft Corporation Windows.Cortana.Desktop 131795786151786571 0x7ffabf030000 98304 C:\Windows\System32\LocationFrameworkInternalPS.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Geolocation Framework Internal PS 131795770645378207 0x7ffabf330000 2457600 C:\Windows\System32\msxml6.dll 6.30.14393.2156 Microsoft Corporation MSXML 6.0 131795770645378207 0x7ffabf5d0000 2924544 C:\Windows\System32\WININET.dll 11.00.14393.447 (rs1_release_inmarket.161102-0100) Microsoft Corporation Расширения Интернета для Win32 131795780443980999 0x7ffabf8a0000 122880 C:\Windows\System32\Windows.Cortana.ProxyStub.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows.Cortana.ProxyStub 131795770645378207 0x7ffabf8c0000 802816 C:\Windows\system32\Windows.Internal.Shell.Broker.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation Windows Shell Broker 131795770645378207 0x7ffabf9c0000 200704 C:\Windows\system32\windows.cortana.onecore.dll 10.0.14393.953 (rs1_release_inmarket.170303-1614) Microsoft Corporation Windows.Cortana.OneCore 131795770645378207 0x7ffabfb00000 626688 C:\Windows\System32\ContentDeliveryManager.Utilities.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation ContentDeliveryManager.Utilities 131795786445101159 0x7ffabfbe0000 1011712 C:\Windows\System32\Windows.Security.Authentication.OnlineId.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation Windows Runtime OnlineId Authentication DLL 131795770645378207 0x7ffabff10000 155648 C:\Windows\System32\srvcli.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Server Service Client DLL 131795770645378207 0x7ffac05f0000 94208 C:\Windows\System32\wwapi.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation WWAN API 131795770645378207 0x7ffac0910000 724992 C:\Windows\System32\Windows.Networking.Connectivity.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Networking Connectivity Runtime DLL 131795770645378207 0x7ffac09d0000 884736 C:\Windows\System32\wpnapps.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Приложения для push-уведомлений Windows 131795770645378207 0x7ffac0bf0000 3559424 C:\Windows\System32\ActXPrxy.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation ActiveX Interface Marshaling Library 131795779561161209 0x7ffac1470000 704512 C:\Windows\System32\ieproxy.dll 11.00.14393.2007 (rs1_release.171231-1800) Microsoft Corporation IE ActiveX Interface Marshaling Library 131795786075081206 0x7ffac15d0000 172032 C:\Windows\System32\Windows.ApplicationModel.Core.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation Windows Application Model Core API 131795770645378207 0x7ffac1c40000 94208 C:\Windows\System32\SystemSettings.DataModel.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SystemSettings.Datamodel private API 131795770645378207 0x7ffac20d0000 110592 C:\Windows\System32\RMCLIENT.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Resource Manager Client 131795770645378207 0x7ffac23c0000 331776 C:\Windows\System32\OneCoreCommonProxyStub.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation OneCore Common Proxy Stub 131795770645378207 0x7ffac2700000 98304 C:\Windows\System32\NETAPI32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API DLL 131795770645378207 0x7ffac2960000 143360 C:\Windows\system32\mssprxy.dll 7.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation Microsoft Search Proxy 131795770645378207 0x7ffac2a20000 81920 C:\Windows\System32\rtutils.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Routing Utilities 131795770645378207 0x7ffac2b80000 40960 C:\Windows\System32\VERSION.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Version Checking and File Installation Libraries 131795770645378207 0x7ffac34e0000 1843200 C:\Windows\System32\urlmon.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширения OLE32 для Win32 131795780447369522 0x7ffac37b0000 106496 C:\Windows\System32\ShellCommonCommonProxyStub.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ShellCommon Common Proxy Stub 131795770645378207 0x7ffac3840000 3088384 C:\Windows\system32\ESENT.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширяемая подсистема хранения данных ESE для Microsoft(R) Windows(R) 131795770645378207 0x7ffac3cb0000 2772992 C:\Windows\System32\iertutil.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служебная программа времени выполнения для Internet Explorer 131795770645378207 0x7ffac4000000 274432 C:\Windows\system32\policymanager.dll 10.0.14393.2035 (rs1_release_inmarket.180110-1910) Microsoft Corporation Policy Manager DLL 131795770645378207 0x7ffac42a0000 659456 C:\Windows\System32\StateRepository.Core.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation StateRepository Core 131795770645378207 0x7ffac4450000 86016 C:\Windows\SYSTEM32\usermgrcli.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation UserMgr API DLL 131795770645378207 0x7ffac46d0000 4161536 C:\Windows\System32\Windows.StateRepository.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Сервер Windows StateRepository API Server 131795771234179313 0x7ffac4b70000 106496 C:\Windows\System32\ShellCommonCommonProxyStub.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ShellCommon Common Proxy Stub 131795770645378207 0x7ffac4b90000 774144 C:\Windows\System32\StoreAgent.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation StoreAgent 131795780489961900 0x7ffac4df0000 462848 C:\Windows\System32\provsvc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Домашняя группа Windows 131795770645378207 0x7ffac4f60000 143360 C:\Windows\System32\wcmapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Connection Manager Client API 131795780846908833 0x7ffac4fd0000 618496 C:\Windows\System32\wlidprov.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft® Account Provider 131795770645378207 0x7ffac5630000 339968 C:\Windows\System32\thumbcache.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Кэш эскизов Майкрософт 131795770645378207 0x7ffac5c50000 131072 C:\Windows\System32\rasman.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Remote Access Connection Manager 131795770645378207 0x7ffac5ca0000 200704 C:\Windows\System32\AppExtension.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API AppExtension 131795770645378207 0x7ffac60e0000 221184 C:\Windows\System32\XmlLite.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft XmlLite Library 131795786144114651 0x7ffac6620000 192512 C:\Windows\System32\biwinrt.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation Windows Background Broker Infrastructure 131795786145514308 0x7ffac6990000 69632 C:\Windows\System32\deviceassociation.dll 10.0.14393.82 (rs1_release.160805-1735) Microsoft Corporation Device Association Client DLL 131795770645378207 0x7ffac69c0000 839680 C:\Windows\System32\WINHTTP.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Службы HTTP Windows 131795770645378207 0x7ffac6a90000 49152 C:\Windows\System32\LocationFrameworkPS.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Geolocation Framework PS 131795786287854312 0x7ffac6ac0000 835584 C:\Windows\System32\Windows.UI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Runtime UI Foundation DLL 131795770645378207 0x7ffac6ba0000 49152 C:\Windows\System32\Secur32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Security Support Provider Interface 131795770645378207 0x7ffac6c40000 2596864 C:\Windows\WinSxS\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.14393.953_none_42151e83c686086b\comctl32.dll 6.10 (rs1_release_inmarket.170303-1614) Microsoft Corporation Библиотека элементов управления взаимодействия с пользователем 131795770645378207 0x7ffac6ec0000 36864 C:\Windows\system32\IconCodecService.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Converts a PNG part of the icon to a legacy bmp icon 131795770645378207 0x7ffac7580000 1077248 C:\Windows\SYSTEM32\mrmcorer.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Windows MRM 131795770645378207 0x7ffac76a0000 159744 C:\Windows\System32\sppc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Software Licensing Client DLL 131795770645378207 0x7ffac7720000 1601536 C:\Windows\System32\OneCoreUAPCommonProxyStub.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation OneCoreUAP Common Proxy Stub 131795786448623381 0x7ffac79c0000 57344 C:\Windows\System32\npmproxy.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Network List Manager Proxy 131795770645378207 0x7ffac7aa0000 401408 C:\Windows\SYSTEM32\wlanapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows WLAN AutoConfig Client Side API DLL 131795770645378207 0x7ffac7d00000 32768 C:\Windows\SYSTEM32\familysafetyext.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation FamilySafety ChildAccount Extensions 131795770645378207 0x7ffac90b0000 90112 C:\Windows\System32\wkscli.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Workstation Service Client DLL 131795770645378207 0x7ffac9290000 40960 C:\Windows\System32\DSROLE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DS Setup Client DLL 131795770645378207 0x7ffac92e0000 1269760 C:\Windows\System32\WinTypes.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL основных типов Windows 131795780849625720 0x7ffac9f10000 221184 C:\Windows\System32\netprofm.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Network List Manager 131795770645378207 0x7ffac9f50000 1736704 C:\Windows\system32\windowscodecs.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Microsoft Windows Codecs Library 131795770645378207 0x7ffaca340000 1593344 C:\Windows\system32\PROPSYS.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Система страниц свойств (Майкрософт) 131795770645378207 0x7ffaca4e0000 77824 C:\Windows\SYSTEM32\wtsapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Remote Desktop Session Host Server SDK APIs 131795770645378207 0x7ffaca570000 421888 C:\Windows\System32\Bcp47Langs.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation BCP47 Language Classes 131795770645378207 0x7ffaca5e0000 155648 C:\Windows\system32\dwmapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Интерфейс API диспетчера окон рабочего стола (Майкрософт) 131795786090201282 0x7ffaca610000 143360 C:\Windows\System32\samlib.dll 10.0.14393.82 (rs1_release.160805-1735) Microsoft Corporation SAM Library DLL 131795780611842861 0x7ffaca640000 770048 C:\Windows\System32\CoreMessaging.dll 10.0.14393.0 Microsoft Corporation Microsoft CoreMessaging Dll 131795770645378207 0x7ffacadf0000 499712 C:\Windows\System32\apphelp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиентская библиотека совместимости приложений 131795770645378207 0x7ffacaf00000 610304 C:\Windows\system32\uxtheme.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека тем UxTheme (Microsoft) 131795770645378207 0x7ffacb140000 593920 C:\Windows\system32\msvcp110_win.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Microsoft® STL110 C++ Runtime Library 131795770645378207 0x7ffacb1e0000 1163264 C:\Windows\System32\twinapi.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation twinapi.appcore 131795770645378207 0x7ffacb300000 364544 C:\Windows\system32\VEEventDispatcher.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Visual Element Event dispatcher 131795770645378207 0x7ffacb3f0000 163840 C:\Windows\System32\DEVOBJ.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Device Information Set DLL 131795770645378207 0x7ffacb420000 204800 C:\Windows\SYSTEM32\ntmarta.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик Windows NT MARTA 131795770645378207 0x7ffacbd30000 229376 C:\Windows\System32\IPHLPAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API вспомогательного приложения IP 131795770645378207 0x7ffacbe20000 53248 C:\Windows\System32\netutils.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API Helpers DLL 131795770645378207 0x7ffacbe40000 126976 C:\Windows\system32\USERENV.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Userenv 131795770645378207 0x7ffacc150000 94208 C:\Windows\System32\CRYPTSP.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Cryptographic Service Provider API 131795770645378207 0x7ffacc350000 180224 C:\Windows\System32\SspiCli.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Security Support Provider Interface 131795770645378207 0x7ffacc520000 622592 C:\Windows\SYSTEM32\sxs.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Fusion 2.5 131795770645378207 0x7ffacc5c0000 352256 C:\Windows\SYSTEM32\WINSTA.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Winstation Library 131795770645378207 0x7ffacc620000 176128 C:\Windows\System32\bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795770645378207 0x7ffacc6e0000 61440 C:\Windows\System32\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795770645378207 0x7ffacc6f0000 311296 C:\Windows\System32\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795770645378207 0x7ffacc740000 81920 C:\Windows\System32\profapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Profile Basic API 131795770645378207 0x7ffacc770000 1572864 C:\Windows\System32\gdi32full.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation GDI Client DLL 131795770645378207 0x7ffacc8f0000 1003520 C:\Windows\System32\ucrtbase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645378207 0x7ffacc9f0000 434176 C:\Windows\System32\bcryptPrimitives.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Cryptographic Primitives Library 131795770645378207 0x7ffacca60000 122880 C:\Windows\System32\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795770645378207 0x7ffaccae0000 692224 C:\Windows\System32\shcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795770645378207 0x7ffaccb90000 7180288 C:\Windows\System32\windows.storage.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API хранения Microsoft WinRT 131795770645378207 0x7ffacd270000 2215936 C:\Windows\System32\KERNELBASE.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645378207 0x7ffacd710000 638976 C:\Windows\System32\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645378207 0x7ffacd7b0000 270336 C:\Windows\System32\cfgmgr32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Configuration Manager DLL 131795770645378207 0x7ffacd810000 22056960 C:\Windows\System32\SHELL32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Общая библиотека оболочки Windows 131795770645378207 0x7ffaced20000 782336 C:\Windows\System32\OLEAUT32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795770645378207 0x7ffacede0000 450560 C:\Windows\System32\coml2.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft COM for Windows 131795770645378207 0x7ffacee50000 1183744 C:\Windows\System32\RPCRT4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795770645378207 0x7ffacef80000 32768 C:\Windows\System32\NSI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation NSI User-mode interface DLL 131795770645378207 0x7ffacef90000 647168 C:\Windows\System32\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795770645378207 0x7ffacf030000 651264 C:\Windows\System32\clbcatq.dll 2001.12.10941.16384 (rs1_release.160715-1616) Microsoft Corporation COM+ Configuration Catalog 131795770645378207 0x7ffacf0d0000 704512 C:\Windows\System32\KERNEL32.DLL 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645378207 0x7ffacf1e0000 1417216 C:\Windows\System32\MSCTF.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Серверная библиотека MSCTF 131795770645378207 0x7ffacf770000 212992 C:\Windows\System32\GDI32.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation GDI Client DLL 131795770645378207 0x7ffacf820000 434176 C:\Windows\System32\WS2_32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation 32-разрядная библиотека Windows Socket 2.0 131795770645378207 0x7ffacf890000 188416 C:\Windows\System32\IMM32.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Multi-User Windows IMM32 API Client DLL 131795770645378207 0x7ffacf8c0000 1462272 C:\Windows\System32\USER32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795770645378207 0x7ffacfb30000 2916352 C:\Windows\System32\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795770645378207 0x7ffacfe20000 663552 C:\Windows\System32\advapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795770645378207 0x7ffad0070000 1277952 C:\Windows\System32\ole32.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft OLE для Windows 131795770645378207 0x7ffad01b0000 335872 C:\Windows\System32\shlwapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека небольших программ оболочки 131795770645378207 0x7ffad0210000 364544 C:\Windows\System32\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795770645378207 0x7ffad0270000 1908736 C:\Windows\SYSTEM32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 39 3164 664 6 00000000:0031f1da 131765778119045372 0 0 1 Обязательная метка\Низкий обязательный уровень WIN-0UOTFKKVN1S\User ShellExperienceHost.exe C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\ShellExperienceHost.exe "C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\ShellExperienceHost.exe" -ServerName:App.AppXtk181tbxbce2qsex02s8tw7hfxa9xb3t.mca Microsoft Corporation 10.0.14393.2125 (rs1_release.180301-2139) Windows Shell Experience Host 131795770645379346 0x7ff697570000 1662976 C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\ShellExperienceHost.exe 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation Windows Shell Experience Host 131795770645379346 0x7ffa9f150000 6311936 C:\Windows\System32\Windows.Media.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Media Runtime DLL 131795770645379346 0x7ffa9f760000 3796992 C:\Windows\System32\MFMediaEngine.dll 10.0.14393.351 (rs1_release_inmarket.161014-1755) Microsoft Corporation Media Foundation Media Engine DLL 131795770645379346 0x7ffaabad0000 1871872 C:\Windows\System32\mfsrcsnk.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Media Foundation Source and Sink DLL 131795770645379346 0x7ffaafe70000 4239360 C:\Windows\System32\mfcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Media Foundation Core DLL 131795770645379346 0x7ffab0be0000 1421312 C:\Windows\ShellExperiences\NetworkUX.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Network Experience 131795770645379346 0x7ffab4af0000 606208 C:\Windows\SYSTEM32\AUDIOSES.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Сеанс обработки звука 131795770645379346 0x7ffab5b40000 2527232 C:\Windows\SYSTEM32\dwrite.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Службы Microsoft DirectX Typography 131795770645379346 0x7ffab6710000 17231872 C:\Windows\System32\Windows.UI.Xaml.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows.UI.Xaml dll 131795770645379346 0x7ffab9eb0000 2899968 C:\Windows\ShellExperiences\Windows.UI.ActionCenter.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation ActionCenter Experience 131795770645379346 0x7ffaba180000 7880704 C:\Windows\ShellExperiences\StartUI.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Start UI 131795770645379346 0x7ffabaa50000 339968 C:\Windows\System32\NetworkUXBroker.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation NetworkUXBroker DLL 131795770645379346 0x7ffabab30000 303104 C:\Windows\System32\NotificationObjFactory.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Notifications Object Factory 131795770645379346 0x7ffabacc0000 1380352 C:\Windows\System32\SharedStartModel.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Shared Start Model InProc Server 131795770645379346 0x7ffabaf70000 270336 C:\Windows\SYSTEM32\edputil.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служебная программа EDP 131795770645379346 0x7ffabb3c0000 450560 C:\Windows\SYSTEM32\TextInputFramework.dll 10.0.14393.2189 (rs1_release.180329-1711) Microsoft Corporation "TextInputFramework.DYNLINK" 131795770645379346 0x7ffabb490000 512000 C:\Windows\system32\twinapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation twinapi 131795770645379346 0x7ffabbb80000 61440 C:\Windows\SYSTEM32\dsclient.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Data Sharing Service Client DLL 131795770645379346 0x7ffabbb90000 581632 C:\Windows\System32\Windows.System.Launcher.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows.System.Launcher 131795770645379346 0x7ffabbd00000 36864 C:\Windows\SYSTEM32\WpPortingLibrary.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation <d> DLL 131795770645379346 0x7ffabc5c0000 319488 C:\Windows\SYSTEM32\MFSENSORGROUP.dll 10.0.14393.447 (rs1_release_inmarket.161102-0100) Microsoft Corporation Media Foundation Sensor Group DLL 131795770645379346 0x7ffabcef0000 102400 C:\Windows\System32\Windows.Shell.ServiceHostBuilder.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows.Shell.ServiceHostBuilder 131795770645379346 0x7ffabd420000 487424 C:\Windows\System32\RTMediaFrame.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Runtime MediaFrame DLL 131795770645379346 0x7ffabd4a0000 1613824 C:\Windows\System32\Windows.Globalization.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Globalization 131795770645379346 0x7ffabe410000 339968 C:\Windows\SYSTEM32\globcollationhost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation GlobCollationHost 131795770645379346 0x7ffabe6e0000 561152 C:\Windows\system32\directmanipulation.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Direct Manipulation Component 131795770645379346 0x7ffabeac0000 335872 C:\Windows\System32\Windows.Storage.ApplicationData.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Application Data API Server 131795770645379346 0x7ffabf330000 2457600 C:\Windows\System32\msxml6.dll 6.30.14393.2156 Microsoft Corporation MSXML 6.0 131795780594734370 0x7ffabfb00000 626688 C:\Windows\System32\ContentDeliveryManager.Utilities.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation ContentDeliveryManager.Utilities 131795770645379346 0x7ffabfce0000 90112 C:\Windows\System32\Windows.Globalization.Fontgroups.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Fonts Mapping API 131795770645379346 0x7ffabfd00000 356352 C:\Windows\System32\Windows.Graphics.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation WinRT Windows Graphics DLL 131795770645379346 0x7ffabfd80000 86016 C:\Windows\System32\threadpoolwinrt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows WinRT Threadpool 131795770645379346 0x7ffac0080000 249856 C:\Windows\System32\resampledmo.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Media Resampler 131795770645379346 0x7ffac00c0000 282624 C:\Windows\SYSTEM32\windows.ui.core.textinput.dll 10.0.14393.2189 (rs1_release.180329-1711) Microsoft Corporation Windows.UI.Core.TextInput dll 131795770645379346 0x7ffac0110000 290816 C:\Windows\SYSTEM32\QuickActionsDataModel.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation QuickActionsDataModel 131795770645379346 0x7ffac0160000 491520 C:\Windows\ShellExperiences\QuickActions.dll 131795770645379346 0x7ffac01e0000 397312 C:\Windows\SYSTEM32\wincorlib.DLL 10.0.14393.576 (rs1_release_inmarket.161208-2252) Microsoft Corporation Microsoft Windows ® WinRT core library 131795770645379346 0x7ffac0470000 1478656 C:\Windows\SYSTEM32\MFPlat.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Media Foundation Platform DLL 131795770645379346 0x7ffac0bf0000 3559424 C:\Windows\System32\ActXPrxy.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation ActiveX Interface Marshaling Library 131795770645379346 0x7ffac1c40000 94208 C:\Windows\System32\SystemSettings.DataModel.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SystemSettings.Datamodel private API 131795770645379346 0x7ffac1e50000 188416 C:\Windows\SYSTEM32\RTWorkQ.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL для WorkQueue реального времени 131795770645379346 0x7ffac20d0000 110592 C:\Windows\System32\rmclient.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Resource Manager Client 131795770645379346 0x7ffac23c0000 331776 C:\Windows\System32\OneCoreCommonProxyStub.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation OneCore Common Proxy Stub 131795770645379346 0x7ffac2990000 385024 C:\Windows\SYSTEM32\NInput.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Pen and Touch Input Component 131795770645379346 0x7ffac34e0000 1843200 C:\Windows\SYSTEM32\urlmon.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширения OLE32 для Win32 131795770645379346 0x7ffac3cb0000 2772992 C:\Windows\SYSTEM32\iertutil.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служебная программа времени выполнения для Internet Explorer 131795770645379346 0x7ffac4000000 274432 C:\Windows\SYSTEM32\policymanager.dll 10.0.14393.2035 (rs1_release_inmarket.180110-1910) Microsoft Corporation Policy Manager DLL 131795770645379346 0x7ffac40f0000 40960 C:\Windows\SYSTEM32\msdmo.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DMO Runtime 131795770645379346 0x7ffac42a0000 659456 C:\Windows\SYSTEM32\StateRepository.Core.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation StateRepository Core 131795770645379346 0x7ffac46d0000 4161536 C:\Windows\System32\Windows.StateRepository.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Сервер Windows StateRepository API Server 131795770645379346 0x7ffac4eb0000 147456 C:\Windows\ShellExperiences\Windows.UI.Shell.SharedUtilities.dll 131795770645379346 0x7ffac5350000 1765376 C:\Windows\System32\Windows.UI.Immersive.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation WINDOWS.UI.IMMERSIVE 131795770645379346 0x7ffac5500000 438272 C:\Windows\SYSTEM32\PhotoMetadataHandler.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Photo Metadata Handler 131795770645379346 0x7ffac5b20000 49152 C:\Windows\SYSTEM32\CompPkgSup.DLL 10.0.14393.969 (rs1_release_inmarket.170315-1735) Microsoft Corporation Component Package Support DLL 131795770645379346 0x7ffac5ce0000 1744896 C:\Windows\SYSTEM32\uiautomationcore.dll 7.2.14393.0 (rs1_release.160715-1616) Microsoft Corporation Основные автоматические компоненты Microsoft UI 131795770645379346 0x7ffac5e90000 380928 C:\Windows\System32\Windows.Media.MediaControl.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL сервера MediaControl среды выполнения Windows 131795770645379346 0x7ffac60e0000 221184 C:\Windows\SYSTEM32\XmlLite.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft XmlLite Library 131795770645379346 0x7ffac6ac0000 835584 C:\Windows\System32\Windows.UI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Runtime UI Foundation DLL 131795770645379346 0x7ffac6bd0000 413696 C:\Windows\SYSTEM32\OLEACC.dll 7.2.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Active Accessibility Core Component 131795770645379346 0x7ffac6f50000 5632000 C:\Windows\SYSTEM32\d2d1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека Microsoft D2D 131795770645379346 0x7ffac7580000 1077248 C:\Windows\SYSTEM32\MrmCoreR.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Windows MRM 131795770645379346 0x7ffac76a0000 159744 C:\Windows\SYSTEM32\sppc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Software Licensing Client DLL 131795770645379346 0x7ffac7720000 1601536 C:\Windows\System32\OneCoreUAPCommonProxyStub.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation OneCoreUAP Common Proxy Stub 131795770645379346 0x7ffac7990000 155648 C:\Windows\SYSTEM32\SLC.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Software Licensing Client DLL 131795770645379346 0x7ffac7e30000 40960 C:\Windows\SYSTEM32\fontgroupsoverride.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation fontgroupsoverride.dll 131795770645379346 0x7ffac7fc0000 2674688 C:\Windows\SYSTEM32\d3d10warp.dll 10.0.14393.576 (rs1_release_inmarket.161208-2252) Microsoft Corporation Direct3D 10 Rasterizer 131795770645379346 0x7ffac84e0000 53248 C:\Windows\System32\NotificationControllerPS.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation NotificationController Proxy Stub 131795770645379346 0x7ffac84f0000 299008 C:\Windows\system32\DataExchange.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation Data exchange 131795770645379346 0x7ffac88a0000 2842624 C:\Windows\SYSTEM32\d3d11.dll 10.0.14393.953 (rs1_release_inmarket.170303-1614) Microsoft Corporation Direct3D 11 Runtime 131795770645379346 0x7ffac8f90000 45056 C:\Windows\SYSTEM32\AVRT.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Среда выполнения мультимедиа в реальном времени 131795770645379346 0x7ffac8fa0000 253952 C:\Windows\SYSTEM32\logoncli.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Net Logon Client DLL 131795770645379346 0x7ffac92e0000 1269760 C:\Windows\System32\WinTypes.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL основных типов Windows 131795770645379346 0x7ffac9480000 462848 C:\Windows\System32\MMDevApi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation MMDevice API 131795770645379346 0x7ffac9500000 2682880 C:\Windows\system32\CoreUIComponents.dll 131795770645379346 0x7ffac9f50000 1736704 C:\Windows\system32\windowscodecs.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Microsoft Windows Codecs Library 131795770645379346 0x7ffaca340000 1593344 C:\Windows\SYSTEM32\PROPSYS.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Система страниц свойств (Майкрософт) 131795770645379346 0x7ffaca550000 36864 C:\Windows\SYSTEM32\ksuser.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User CSA Library 131795770645379346 0x7ffaca570000 421888 C:\Windows\SYSTEM32\Bcp47Langs.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation BCP47 Language Classes 131795770645379346 0x7ffaca5e0000 155648 C:\Windows\SYSTEM32\dwmapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Интерфейс API диспетчера окон рабочего стола (Майкрософт) 131795770645379346 0x7ffaca640000 770048 C:\Windows\SYSTEM32\CoreMessaging.dll 10.0.14393.0 Microsoft Corporation Microsoft CoreMessaging Dll 131795770645379346 0x7ffaca770000 1380352 C:\Windows\SYSTEM32\dcomp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft DirectComposition Library 131795770645379346 0x7ffacab40000 176128 C:\Windows\SYSTEM32\winmmbase.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base Multimedia Extension API DLL 131795770645379346 0x7ffacaf00000 610304 C:\Windows\system32\uxtheme.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека тем UxTheme (Microsoft) 131795770645379346 0x7ffacb140000 593920 C:\Windows\SYSTEM32\msvcp110_win.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Microsoft® STL110 C++ Runtime Library 131795770645379346 0x7ffacb1e0000 1163264 C:\Windows\System32\twinapi.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation twinapi.appcore 131795770645379346 0x7ffacb300000 364544 C:\Windows\SYSTEM32\VEEventDispatcher.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Visual Element Event dispatcher 131795770645379346 0x7ffacb3f0000 163840 C:\Windows\SYSTEM32\DEVOBJ.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Device Information Set DLL 131795770645379346 0x7ffacb780000 651264 C:\Windows\SYSTEM32\dxgi.dll 10.0.14393.953 (rs1_release_inmarket.170303-1614) Microsoft Corporation DirectX Graphics Infrastructure 131795770645379346 0x7ffacbe40000 126976 C:\Windows\SYSTEM32\USERENV.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Userenv 131795770645379346 0x7ffacc170000 45056 C:\Windows\SYSTEM32\CRYPTBASE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base cryptographic API DLL 131795770645379346 0x7ffacc350000 180224 C:\Windows\SYSTEM32\SspiCli.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Security Support Provider Interface 131795770645379346 0x7ffacc5c0000 352256 C:\Windows\SYSTEM32\winsta.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Winstation Library 131795770645379346 0x7ffacc620000 176128 C:\Windows\SYSTEM32\bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795770645379346 0x7ffacc6e0000 61440 C:\Windows\System32\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795770645379346 0x7ffacc6f0000 311296 C:\Windows\System32\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795770645379346 0x7ffacc740000 81920 C:\Windows\System32\profapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Profile Basic API 131795770645379346 0x7ffacc760000 65536 C:\Windows\System32\MSASN1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ASN.1 Runtime APIs 131795770645379346 0x7ffacc8f0000 1003520 C:\Windows\System32\ucrtbase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645379346 0x7ffacc9f0000 434176 C:\Windows\System32\bcryptPrimitives.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Cryptographic Primitives Library 131795770645379346 0x7ffacca60000 122880 C:\Windows\System32\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795770645379346 0x7ffaccae0000 692224 C:\Windows\System32\shcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795770645379346 0x7ffaccb90000 7180288 C:\Windows\System32\windows.storage.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API хранения Microsoft WinRT 131795770645379346 0x7ffacd270000 2215936 C:\Windows\System32\KERNELBASE.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645379346 0x7ffacd490000 1871872 C:\Windows\System32\CRYPT32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API32 криптографии 131795770645379346 0x7ffacd710000 638976 C:\Windows\System32\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645379346 0x7ffacd7b0000 270336 C:\Windows\System32\cfgmgr32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Configuration Manager DLL 131795770645379346 0x7ffacd810000 22056960 C:\Windows\System32\SHELL32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Общая библиотека оболочки Windows 131795770645379346 0x7ffaced20000 782336 C:\Windows\System32\OLEAUT32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795770645379346 0x7ffacee50000 1183744 C:\Windows\System32\RPCRT4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795770645379346 0x7ffacef90000 647168 C:\Windows\System32\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795770645379346 0x7ffacf0d0000 704512 C:\Windows\System32\KERNEL32.DLL 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645379346 0x7ffacf1e0000 1417216 C:\Windows\System32\msctf.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Серверная библиотека MSCTF 131795770645379346 0x7ffacf770000 212992 C:\Windows\System32\GDI32.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation GDI Client DLL 131795770645379346 0x7ffacf890000 188416 C:\Windows\System32\IMM32.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Multi-User Windows IMM32 API Client DLL 131795770645379346 0x7ffacf8c0000 1462272 C:\Windows\System32\user32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795770645379346 0x7ffacfb30000 2916352 C:\Windows\System32\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795770645379346 0x7ffacfe20000 663552 C:\Windows\System32\advapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795770645379346 0x7ffad0070000 1277952 C:\Windows\System32\ole32.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft OLE для Windows 131795770645379346 0x7ffad01b0000 335872 C:\Windows\System32\SHLWAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека небольших программ оболочки 131795770645379346 0x7ffad0210000 364544 C:\Windows\System32\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795770645379346 0x7ffad0270000 1908736 C:\Windows\SYSTEM32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 40 4856 3108 11 00000000:0031f1da 131765778391112136 0 0 1 Обязательная метка\Средний обязательный уровень WIN-0UOTFKKVN1S\User MSASCuiL.exe C:\Program Files\Windows Defender\MSASCuiL.exe "C:\Program Files\Windows Defender\MSASCuiL.exe" Microsoft Corporation 4.10.14393.1198 (rs1_release_sec.170427-1353) Windows Defender notification icon 131795770645379462 0x23622c70000 733184 C:\Program Files\Windows Defender\EppManifest.dll 4.10.14393.0 (rs1_release.160715-1616) Microsoft Corporation Модуль ресурсов настройки пользовательского интерфейса 131795770645379462 0x7ff63bef0000 651264 C:\Program Files\Windows Defender\MSASCuiL.exe 4.10.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Windows Defender notification icon 131795770645379462 0x7ffab8da0000 1675264 C:\Windows\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.14393.1715_none_aec701fbddd850fa\gdiplus.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Microsoft GDI+ 131795770645379462 0x7ffabf330000 2457600 C:\Windows\System32\msxml6.dll 6.30.14393.2156 Microsoft Corporation MSXML 6.0 131795770645379462 0x7ffac4560000 950272 C:\Program Files\Windows Defender\mpclient.dll 4.10.14393.1794 (rs1_release.171008-1615) Microsoft Corporation Client Interface 131795770645379462 0x7ffac4ea0000 36864 C:\Windows\SYSTEM32\atlthunk.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation atlthunk.dll 131795770645379462 0x7ffac9f50000 1736704 C:\Windows\SYSTEM32\WindowsCodecs.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Microsoft Windows Codecs Library 131795770645379462 0x7ffaca4e0000 77824 C:\Windows\SYSTEM32\WTSAPI32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Remote Desktop Session Host Server SDK APIs 131795770645379462 0x7ffaca5e0000 155648 C:\Windows\system32\dwmapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Интерфейс API диспетчера окон рабочего стола (Майкрософт) 131795770645379462 0x7ffacaf00000 610304 C:\Windows\system32\uxtheme.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека тем UxTheme (Microsoft) 131795770645379462 0x7ffacb6f0000 143360 C:\Windows\SYSTEM32\gpapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиентские функции API групповой политики 131795770645379462 0x7ffacbbb0000 208896 C:\Windows\system32\rsaenh.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Enhanced Cryptographic Provider 131795770645379462 0x7ffacbe40000 126976 C:\Windows\SYSTEM32\USERENV.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Userenv 131795770645379462 0x7ffacc150000 94208 C:\Windows\SYSTEM32\CRYPTSP.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Cryptographic Service Provider API 131795770645379462 0x7ffacc170000 45056 C:\Windows\SYSTEM32\CRYPTBASE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base cryptographic API DLL 131795770645379462 0x7ffacc620000 176128 C:\Windows\SYSTEM32\bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795770645379462 0x7ffacc6e0000 61440 C:\Windows\System32\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795770645379462 0x7ffacc6f0000 311296 C:\Windows\System32\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795770645379462 0x7ffacc740000 81920 C:\Windows\System32\profapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Profile Basic API 131795770645379462 0x7ffacc760000 65536 C:\Windows\System32\MSASN1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ASN.1 Runtime APIs 131795770645379462 0x7ffacc8f0000 1003520 C:\Windows\System32\ucrtbase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645379462 0x7ffacc9f0000 434176 C:\Windows\System32\bcryptPrimitives.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Cryptographic Primitives Library 131795770645379462 0x7ffacca60000 122880 C:\Windows\System32\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795770645379462 0x7ffacca80000 348160 C:\Windows\System32\WINTRUST.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation Microsoft Trust Verification APIs 131795770645379462 0x7ffaccae0000 692224 C:\Windows\System32\shcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795770645379462 0x7ffaccb90000 7180288 C:\Windows\System32\windows.storage.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API хранения Microsoft WinRT 131795770645379462 0x7ffacd270000 2215936 C:\Windows\System32\KERNELBASE.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645379462 0x7ffacd490000 1871872 C:\Windows\System32\CRYPT32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API32 криптографии 131795770645379462 0x7ffacd710000 638976 C:\Windows\System32\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645379462 0x7ffacd7b0000 270336 C:\Windows\System32\cfgmgr32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Configuration Manager DLL 131795770645379462 0x7ffacd810000 22056960 C:\Windows\System32\SHELL32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Общая библиотека оболочки Windows 131795770645379462 0x7ffaced20000 782336 C:\Windows\System32\OLEAUT32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795770645379462 0x7ffacee50000 1183744 C:\Windows\System32\RPCRT4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795770645379462 0x7ffacef90000 647168 C:\Windows\System32\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795770645379462 0x7ffacf030000 651264 C:\Windows\System32\clbcatq.dll 2001.12.10941.16384 (rs1_release.160715-1616) Microsoft Corporation COM+ Configuration Catalog 131795770645379462 0x7ffacf0d0000 704512 C:\Windows\System32\KERNEL32.DLL 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645379462 0x7ffacf1e0000 1417216 C:\Windows\System32\MSCTF.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Серверная библиотека MSCTF 131795770645379462 0x7ffacf770000 212992 C:\Windows\System32\GDI32.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation GDI Client DLL 131795770645379462 0x7ffacf890000 188416 C:\Windows\System32\IMM32.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Multi-User Windows IMM32 API Client DLL 131795770645379462 0x7ffacf8c0000 1462272 C:\Windows\System32\USER32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795770645379462 0x7ffacfb30000 2916352 C:\Windows\System32\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795770645379462 0x7ffacfe00000 114688 C:\Windows\System32\imagehlp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT Image Helper 131795770645379462 0x7ffacfe20000 663552 C:\Windows\System32\ADVAPI32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795770645379462 0x7ffad0070000 1277952 C:\Windows\System32\ole32.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft OLE для Windows 131795770645379462 0x7ffad01b0000 335872 C:\Windows\System32\SHLWAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека небольших программ оболочки 131795770645379462 0x7ffad0210000 364544 C:\Windows\System32\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795770645379462 0x7ffad0270000 1908736 C:\Windows\SYSTEM32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 41 4928 3108 11 00000000:0031f1da 131765778406250112 0 0 0 Обязательная метка\Средний обязательный уровень WIN-0UOTFKKVN1S\User uTorrent.exe C:\Users\User\AppData\Roaming\uTorrent\uTorrent.exe "C:\Users\User\AppData\Roaming\uTorrent\uTorrent.exe" /MINIMIZED BitTorrent Inc. 3.5.4.44498 µTorrent 131795770645379614 0x400000 5406720 C:\Users\User\AppData\Roaming\uTorrent\uTorrent.exe 3.5.4.44498 BitTorrent Inc. µTorrent 131795770645379614 0x5c020000 335872 C:\Windows\System32\wow64.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation Win32 Emulation on NT64 131795770645379614 0x5c080000 487424 C:\Windows\System32\wow64win.dll 10.0.14393.1884 (rs1_release.171101-1233) Microsoft Corporation Wow64 Console and Win32 API Logging 131795770645379614 0x5c100000 40960 C:\Windows\System32\wow64cpu.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation AMD64 Wow64 CPU 131795770645379614 0x60750000 1556480 C:\Program Files (x86)\360\Total Security\safemon\safemon.dll 8, 4, 0, 1420 Qihu 360 Software Co., Ltd. 360 Internet Security Internet Protection 131795770645379614 0x6c5c0000 1384448 C:\Windows\SysWOW64\UIAutomationCore.DLL 7.2.14393.0 (rs1_release.160715-1616) Microsoft Corporation Основные автоматические компоненты Microsoft UI 131795770645379614 0x6cda0000 528384 C:\Windows\SysWOW64\sxs.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Fusion 2.5 131795770645379614 0x6e140000 348160 C:\Windows\SysWOW64\upnp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API контрольной точки UPnP 131795770645379614 0x6e1a0000 98304 C:\Windows\SysWOW64\ATL.DLL 3.05.2284 Microsoft Corporation ATL Module for Windows XP (Unicode) 131795770645379614 0x6e1c0000 307200 C:\Windows\SysWOW64\hnetcfg.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Диспетчер конфигурации домашней сети 131795770645379614 0x6ef20000 65536 C:\Windows\SysWOW64\SSDPAPI.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation SSDP Client API DLL 131795770645379614 0x6fc70000 385024 C:\Windows\SysWOW64\FirewallAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API брандмауэра Windows 131795770645379614 0x6fd30000 139264 C:\Windows\SysWOW64\DEVOBJ.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Device Information Set DLL 131795770645379614 0x703d0000 2056192 C:\Windows\SysWOW64\DWrite.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Службы Microsoft DirectX Typography 131795770645379614 0x705e0000 344064 C:\Windows\SysWOW64\OLEACC.dll 7.2.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Active Accessibility Core Component 131795770645379614 0x70640000 1499136 C:\Windows\SysWOW64\WindowsCodecs.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Microsoft Windows Codecs Library 131795770645379614 0x707b0000 110592 C:\Windows\SysWOW64\ncryptsslp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft SChannel Provider 131795770645379614 0x70a40000 81920 C:\Windows\SysWOW64\NLAapi.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Network Location Awareness 2 131795770645379614 0x70a60000 90112 C:\Windows\SysWOW64\pnrpnsp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик пространства имен PNRP 131795770645379614 0x70a80000 409600 C:\Windows\SysWOW64\schannel.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик безопасности TLS/SSL 131795770645379614 0x70af0000 36864 C:\Windows\SysWOW64\npmproxy.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Network List Manager Proxy 131795770645379614 0x70b40000 69632 C:\Windows\SysWOW64\mskeyprotect.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик защиты ключей (Майкрософт) 131795770645379614 0x70b70000 163840 C:\Windows\SysWOW64\ntmarta.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик Windows NT MARTA 131795770645379614 0x70ba0000 188416 C:\Windows\SysWOW64\FWPolicyIOMgr.dll 10.0.14393.2189 (rs1_release.180329-1711) Microsoft Corporation FwPolicyIoMgr DLL 131795770645379614 0x70bd0000 147456 C:\Windows\SysWOW64\fwbase.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Firewall Base DLL 131795770645379614 0x70c00000 49152 C:\Windows\SysWOW64\winrnr.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation LDAP RnR Provider DLL 131795770645379614 0x70c10000 73728 C:\Windows\SysWOW64\napinsp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик оболочки совместимости для имен электронной почты 131795770645379614 0x70ca0000 45056 C:\Windows\SysWOW64\NETUTILS.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API Helpers DLL 131795770645379614 0x70cc0000 65536 C:\Windows\SysWOW64\ondemandconnroutehelper.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation On Demand Connctiond Route Helper 131795770645379614 0x70e60000 176128 C:\Windows\SysWOW64\NTASN1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft ASN.1 API 131795770645379614 0x71140000 77824 C:\Windows\SysWOW64\NETAPI32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API DLL 131795770645379614 0x71610000 77824 C:\Windows\SysWOW64\dhcpcsvc6.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиент DHCPv6 131795770645379614 0x725e0000 2273280 C:\Windows\SysWOW64\iertutil.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служебная программа времени выполнения для Internet Explorer 131795770645379614 0x728e0000 1372160 C:\Windows\SysWOW64\PROPSYS.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Система страниц свойств (Майкрософт) 131795770645379614 0x72b90000 126976 C:\Windows\SysWOW64\dwmapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Интерфейс API диспетчера окон рабочего стола (Майкрософт) 131795770645379614 0x73a40000 32768 C:\Windows\SysWOW64\WINNSI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Network Store Information RPC interface 131795770645379614 0x73a50000 299008 C:\Windows\SysWOW64\fwpuclnt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API пользовательского режима FWP/IPsec 131795770645379614 0x73aa0000 32768 C:\Windows\SysWOW64\DPAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Data Protection API 131795770645379614 0x73ab0000 32768 C:\Windows\SysWOW64\rasadhlp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Remote Access AutoDial Helper 131795770645379614 0x73ac0000 81920 C:\Windows\SysWOW64\dhcpcsvc.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служба DHCP-клиента 131795770645379614 0x73ae0000 40960 C:\Windows\SysWOW64\Secur32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Security Support Provider Interface 131795770645379614 0x73c50000 1478656 C:\Windows\WinSxS\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.14393.1715_none_f67438d2f2547a00\gdiplus.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Microsoft GDI+ 131795770645379614 0x73ee0000 61440 C:\Windows\SysWOW64\WTSAPI32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Remote Desktop Session Host Server SDK APIs 131795770645379614 0x73ef0000 24576 C:\Windows\SysWOW64\MSIMG32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation GDIEXT Client DLL 131795770645379614 0x73f00000 192512 C:\Windows\SysWOW64\IPHLPAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API вспомогательного приложения IP 131795770645379614 0x73f30000 512000 C:\Windows\SysWOW64\DNSAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Динамическая библиотека API DNS-клиента 131795770645379614 0x73fc0000 28672 C:\Windows\SysWOW64\wship6.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL помощника Winsock2 (TL/IPv6) 131795770645379614 0x73fd0000 28672 C:\Windows\SysWOW64\wshtcpip.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL помощника службы Winsock2 (TL/IPv4) 131795770645379614 0x73fe0000 32768 C:\Windows\SysWOW64\wshqos.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL помощника службы QoS Winsock2 131795770645379614 0x73ff0000 319488 C:\Windows\SysWOW64\mswsock.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширение поставщика службы API Microsoft Windows Sockets 2.0 131795770645379614 0x74040000 126976 C:\Windows\SysWOW64\gpapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиентские функции API групповой политики 131795770645379614 0x74060000 192512 C:\Windows\SysWOW64\rsaenh.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Enhanced Cryptographic Provider 131795770645379614 0x74110000 479232 C:\Windows\SysWOW64\uxtheme.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека тем UxTheme (Microsoft) 131795770645379614 0x74190000 110592 C:\Windows\SysWOW64\bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795770645379614 0x741b0000 77824 C:\Windows\SysWOW64\CRYPTSP.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Cryptographic Service Provider API 131795770645379614 0x74260000 2514944 C:\Windows\SysWOW64\WININET.dll 11.00.14393.447 (rs1_release_inmarket.161102-0100) Microsoft Corporation Расширения Интернета для Win32 131795770645379614 0x744d0000 2138112 C:\Windows\WinSxS\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.14393.953_none_89c2555adb023171\COMCTL32.dll 6.10 (rs1_release_inmarket.170303-1614) Microsoft Corporation Библиотека элементов управления взаимодействия с пользователем 131795770645379614 0x746e0000 32768 C:\Windows\SysWOW64\VERSION.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Version Checking and File Installation Libraries 131795770645379614 0x746f0000 106496 C:\Windows\SysWOW64\USERENV.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Userenv 131795770645379614 0x747d0000 40960 C:\Windows\SysWOW64\CRYPTBASE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base cryptographic API DLL 131795770645379614 0x747e0000 126976 C:\Windows\SysWOW64\SspiCli.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Security Support Provider Interface 131795770645379614 0x74800000 151552 C:\Windows\SysWOW64\IMM32.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Multi-User Windows IMM32 API Client DLL 131795770645379614 0x74910000 2170880 C:\Windows\SysWOW64\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795770645379614 0x74b30000 53248 C:\Windows\SysWOW64\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795770645379614 0x74b40000 102400 C:\Windows\SysWOW64\imagehlp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT Image Helper 131795770645379614 0x74b60000 790528 C:\Windows\SysWOW64\RPCRT4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795770645379614 0x74c30000 1417216 C:\Windows\SysWOW64\gdi32full.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation GDI Client DLL 131795770645379614 0x74d90000 24576 C:\Windows\SysWOW64\PSAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Process Status Helper 131795770645379614 0x74da0000 778240 C:\Windows\SysWOW64\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795770645379614 0x74e60000 557056 C:\Windows\SysWOW64\shcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795770645379614 0x74ef0000 540672 C:\Windows\SysWOW64\clbcatq.dll 2001.12.10941.16384 (rs1_release.160715-1616) Microsoft Corporation COM+ Configuration Catalog 131795770645379614 0x74f80000 278528 C:\Windows\SysWOW64\wintrust.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation Microsoft Trust Verification APIs 131795770645379614 0x74fd0000 405504 C:\Windows\SysWOW64\WS2_32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation 32-разрядная библиотека Windows Socket 2.0 131795770645379614 0x75040000 282624 C:\Windows\SysWOW64\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795770645379614 0x75090000 1265664 C:\Windows\SysWOW64\MSCTF.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Серверная библиотека MSCTF 131795770645379614 0x751d0000 57344 C:\Windows\SysWOW64\MSASN1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ASN.1 Runtime APIs 131795770645379614 0x751e0000 1708032 C:\Windows\SysWOW64\KERNELBASE.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645379614 0x75390000 266240 C:\Windows\SysWOW64\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795770645379614 0x753e0000 1560576 C:\Windows\SysWOW64\CRYPT32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API32 криптографии 131795770645379614 0x75560000 487424 C:\Windows\SysWOW64\ADVAPI32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795770645379614 0x756c0000 5693440 C:\Windows\SysWOW64\windows.storage.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API хранения Microsoft WinRT 131795770645379614 0x75c90000 286720 C:\Windows\SysWOW64\SHLWAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека небольших программ оболочки 131795770645379614 0x75ce0000 20811776 C:\Windows\SysWOW64\SHELL32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Общая библиотека оболочки Windows 131795770645379614 0x770c0000 4239360 C:\Windows\SysWOW64\SETUPAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Setup API 131795770645379614 0x774d0000 86016 C:\Windows\SysWOW64\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795770645379614 0x774f0000 61440 C:\Windows\SysWOW64\profapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Profile Basic API 131795770645379614 0x77560000 1437696 C:\Windows\SysWOW64\USER32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795770645379614 0x776c0000 368640 C:\Windows\SysWOW64\bcryptPrimitives.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation Windows Cryptographic Primitives Library 131795770645379614 0x77780000 503808 C:\Windows\SysWOW64\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645379614 0x77800000 606208 C:\Windows\SysWOW64\OLEAUT32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795770645379614 0x77ac0000 966656 C:\Windows\SysWOW64\ole32.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft OLE для Windows 131795770645379614 0x77bb0000 176128 C:\Windows\SysWOW64\GDI32.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation GDI Client DLL 131795770645379614 0x77be0000 937984 C:\Windows\SysWOW64\COMDLG32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека общих диалоговых окон 131795770645379614 0x77cd0000 221184 C:\Windows\SysWOW64\cfgmgr32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Configuration Manager DLL 131795770645379614 0x77d10000 28672 C:\Windows\SysWOW64\NSI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation NSI User-mode interface DLL 131795770645379614 0x77d20000 1585152 C:\Windows\SysWOW64\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 131795770645379614 0x7ffad0270000 1908736 C:\Windows\SYSTEM32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 42 3608 664 6 00000000:0031f1da 131765778496229053 0 0 1 Обязательная метка\Средний обязательный уровень WIN-0UOTFKKVN1S\User ApplicationFrameHost.exe C:\Windows\system32\ApplicationFrameHost.exe C:\Windows\system32\ApplicationFrameHost.exe -Embedding Microsoft Corporation 10.0.14393.0 (rs1_release.160715-1616) Application Frame Host 131795770645379722 0x7ff6aa270000 61440 C:\Windows\system32\ApplicationFrameHost.exe 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Application Frame Host 131795770645379722 0x7ffabb490000 512000 C:\Windows\System32\TWINAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation twinapi 131795770645379722 0x7ffac0bf0000 3559424 C:\Windows\System32\ActXPrxy.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation ActiveX Interface Marshaling Library 131795770645379722 0x7ffac3cb0000 2772992 C:\Windows\SYSTEM32\iertutil.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служебная программа времени выполнения для Internet Explorer 131795770645379722 0x7ffac5240000 1114112 C:\Windows\System32\ApplicationFrame.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Фрейм приложения 131795770645379722 0x7ffac5ce0000 1744896 C:\Windows\system32\UIAutomationCore.DLL 7.2.14393.0 (rs1_release.160715-1616) Microsoft Corporation Основные автоматические компоненты Microsoft UI 131795786034558955 0x7ffac6ac0000 835584 C:\Windows\System32\Windows.UI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Runtime UI Foundation DLL 131795770645379722 0x7ffac6bd0000 413696 C:\Windows\system32\OLEACC.dll 7.2.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Active Accessibility Core Component 131795770645379722 0x7ffac6f50000 5632000 C:\Windows\System32\d2d1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека Microsoft D2D 131795770645379722 0x7ffac7580000 1077248 C:\Windows\SYSTEM32\mrmcorer.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Windows MRM 131795770645379722 0x7ffac7fc0000 2674688 C:\Windows\system32\D3D10Warp.dll 10.0.14393.576 (rs1_release_inmarket.161208-2252) Microsoft Corporation Direct3D 10 Rasterizer 131795770645379722 0x7ffac88a0000 2842624 C:\Windows\System32\d3d11.dll 10.0.14393.953 (rs1_release_inmarket.170303-1614) Microsoft Corporation Direct3D 11 Runtime 131795770645379722 0x7ffac9ec0000 294912 C:\Windows\System32\UIAnimation.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Animation Manager 131795770645379722 0x7ffac9f50000 1736704 C:\Windows\system32\windowscodecs.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Microsoft Windows Codecs Library 131795770645379722 0x7ffaca340000 1593344 C:\Windows\System32\PROPSYS.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Система страниц свойств (Майкрософт) 131795770645379722 0x7ffaca570000 421888 C:\Windows\system32\Bcp47Langs.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation BCP47 Language Classes 131795770645379722 0x7ffaca5e0000 155648 C:\Windows\System32\dwmapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Интерфейс API диспетчера окон рабочего стола (Майкрософт) 131795770645379722 0x7ffaca770000 1380352 C:\Windows\System32\dcomp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft DirectComposition Library 131795770645379722 0x7ffacaf00000 610304 C:\Windows\System32\UxTheme.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека тем UxTheme (Microsoft) 131795770645379722 0x7ffacb1e0000 1163264 C:\Windows\System32\twinapi.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation twinapi.appcore 131795770645379722 0x7ffacb3f0000 163840 C:\Windows\System32\DEVOBJ.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Device Information Set DLL 131795770645379722 0x7ffacb780000 651264 C:\Windows\System32\dxgi.dll 10.0.14393.953 (rs1_release_inmarket.170303-1614) Microsoft Corporation DirectX Graphics Infrastructure 131795770645379722 0x7ffacbe40000 126976 C:\Windows\system32\USERENV.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Userenv 131795770645379722 0x7ffacc520000 622592 C:\Windows\SYSTEM32\sxs.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Fusion 2.5 131795770645379722 0x7ffacc620000 176128 C:\Windows\System32\bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795770645379722 0x7ffacc6e0000 61440 C:\Windows\System32\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795770645379722 0x7ffacc6f0000 311296 C:\Windows\System32\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795770645379722 0x7ffacc740000 81920 C:\Windows\System32\profapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Profile Basic API 131795770645379722 0x7ffacc760000 65536 C:\Windows\System32\MSASN1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ASN.1 Runtime APIs 131795770645379722 0x7ffacc8f0000 1003520 C:\Windows\System32\ucrtbase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645379722 0x7ffacc9f0000 434176 C:\Windows\System32\bcryptPrimitives.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Cryptographic Primitives Library 131795770645379722 0x7ffacca60000 122880 C:\Windows\System32\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795770645379722 0x7ffaccae0000 692224 C:\Windows\System32\SHCORE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795770645379722 0x7ffaccb90000 7180288 C:\Windows\System32\windows.storage.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API хранения Microsoft WinRT 131795770645379722 0x7ffacd270000 2215936 C:\Windows\System32\KERNELBASE.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645379722 0x7ffacd490000 1871872 C:\Windows\System32\CRYPT32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API32 криптографии 131795770645379722 0x7ffacd710000 638976 C:\Windows\System32\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645379722 0x7ffacd7b0000 270336 C:\Windows\System32\cfgmgr32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Configuration Manager DLL 131795770645379722 0x7ffacd810000 22056960 C:\Windows\System32\SHELL32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Общая библиотека оболочки Windows 131795770645379722 0x7ffaced20000 782336 C:\Windows\System32\OLEAUT32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795770645379722 0x7ffacee50000 1183744 C:\Windows\System32\RPCRT4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795770645379722 0x7ffacef90000 647168 C:\Windows\System32\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795770645379722 0x7ffacf030000 651264 C:\Windows\System32\clbcatq.dll 2001.12.10941.16384 (rs1_release.160715-1616) Microsoft Corporation COM+ Configuration Catalog 131795770645379722 0x7ffacf0d0000 704512 C:\Windows\System32\KERNEL32.DLL 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645379722 0x7ffacf1e0000 1417216 C:\Windows\System32\MSCTF.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Серверная библиотека MSCTF 131795770645379722 0x7ffacf770000 212992 C:\Windows\System32\GDI32.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation GDI Client DLL 131795770645379722 0x7ffacf890000 188416 C:\Windows\System32\IMM32.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Multi-User Windows IMM32 API Client DLL 131795770645379722 0x7ffacf8c0000 1462272 C:\Windows\System32\USER32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795770645379722 0x7ffacfb30000 2916352 C:\Windows\System32\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795770645379722 0x7ffacfe20000 663552 C:\Windows\System32\advapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795770645379722 0x7ffad01b0000 335872 C:\Windows\System32\SHLWAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека небольших программ оболочки 131795770645379722 0x7ffad0210000 364544 C:\Windows\System32\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795770645379722 0x7ffad0270000 1908736 C:\Windows\SYSTEM32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 43 5952 4928 41 00000000:0031f1da 131765778883326814 0 1 0 Обязательная метка\Низкий обязательный уровень WIN-0UOTFKKVN1S\User utorrentie.exe C:\Users\User\AppData\Roaming\uTorrent\updates\3.5.4_44498\utorrentie.exe "C:\Users\User\AppData\Roaming\uTorrent\updates\3.5.4_44498\utorrentie.exe" uTorrent_4928_02D54150_1240996307 µTorrent4823DF041B09 uTorrent BitTorrent Inc. 1.0.0 WebHelper 131795770645379833 0x1180000 417792 C:\Users\User\AppData\Roaming\uTorrent\updates\3.5.4_44498\utorrentie.exe 1.0.0 BitTorrent Inc. WebHelper 131795770645379833 0x5c020000 335872 C:\Windows\System32\wow64.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation Win32 Emulation on NT64 131795770645379833 0x5c080000 487424 C:\Windows\System32\wow64win.dll 10.0.14393.1884 (rs1_release.171101-1233) Microsoft Corporation Wow64 Console and Win32 API Logging 131795770645379833 0x5c100000 40960 C:\Windows\System32\wow64cpu.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation AMD64 Wow64 CPU 131795770645379833 0x63490000 221184 C:\Windows\SysWOW64\dinput8.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft DirectInput 131795770645379833 0x634d0000 561152 C:\Windows\SysWOW64\DSOUND.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DirectSound 131795770645379833 0x63560000 23334912 C:\Windows\SysWOW64\Macromed\Flash\Flash.ocx 29,0,0,140 Adobe Systems, Inc. Adobe Flash Player 29.0 r0 131795770645379833 0x64d00000 5079040 C:\Windows\SysWOW64\d2d1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека Microsoft D2D 131795770645379833 0x651e0000 20537344 C:\Windows\SysWOW64\mshtml.dll 11.00.14393.447 (rs1_release_inmarket.161102-0100) Microsoft Corporation Средство просмотра HTML Microsoft® 131795770645379833 0x66580000 12247040 C:\Windows\SysWOW64\ieframe.dll 11.00.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Браузер 131795770645379833 0x6b670000 212992 C:\Windows\SysWOW64\mlang.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL многоязыковой поддержки 131795770645379833 0x6b6b0000 36864 C:\Windows\SysWOW64\atlthunk.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation atlthunk.dll 131795770645379833 0x6c290000 987136 C:\Windows\SysWOW64\twinapi.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation twinapi.appcore 131795770645379833 0x6c390000 1126400 C:\Windows\SysWOW64\dcomp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft DirectComposition Library 131795770645379833 0x6c4b0000 278528 C:\Windows\SysWOW64\dataexchange.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation Data exchange 131795770645379833 0x6c540000 483328 C:\Windows\SysWOW64\webio.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API протоколов передачи по Веб 131795770645379833 0x6c5c0000 1384448 C:\Windows\SysWOW64\UIAutomationCore.DLL 7.2.14393.0 (rs1_release.160715-1616) Microsoft Corporation Основные автоматические компоненты Microsoft UI 131795770645379833 0x6c720000 2318336 C:\Windows\SysWOW64\d3d10warp.dll 10.0.14393.576 (rs1_release_inmarket.161208-2252) Microsoft Corporation Direct3D 10 Rasterizer 131795770645379833 0x6c960000 57344 C:\Windows\SysWOW64\msimtf.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Active IMM Server DLL 131795770645379833 0x6c970000 3698688 C:\Windows\SysWOW64\jscript9.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft ® JScript 131795770645379833 0x6cd00000 69632 C:\Windows\SysWOW64\WLDP.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Политика блокировки Windows 131795770645379833 0x6cd20000 135168 C:\Windows\SysWOW64\srpapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL программных интерфейсов (API) поставщика общих ресурсов 131795770645379833 0x6cda0000 528384 C:\Windows\SysWOW64\sxs.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Fusion 2.5 131795770645379833 0x6d080000 151552 C:\Windows\SysWOW64\cryptnet.dll 10.0.14393.2035 (rs1_release_inmarket.180110-1910) Microsoft Corporation Crypto Network Related API 131795770645379833 0x6d0b0000 847872 C:\Windows\SysWOW64\wintypes.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL основных типов Windows 131795770645379833 0x6fd30000 139264 C:\Windows\SysWOW64\DEVOBJ.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Device Information Set DLL 131795770645379833 0x6fd60000 360448 C:\Windows\SysWOW64\MMDevApi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation MMDevice API 131795770645379833 0x6fdc0000 507904 C:\Windows\SysWOW64\AUDIOSES.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Сеанс обработки звука 131795770645379833 0x6fe90000 544768 C:\Windows\SysWOW64\mscms.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL-библиотека системы сопоставления цветов Майкрософт 131795770645379833 0x70340000 536576 C:\Windows\SysWOW64\dxgi.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation DirectX Graphics Infrastructure 131795770645379833 0x703d0000 2056192 C:\Windows\SysWOW64\DWrite.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Службы Microsoft DirectX Typography 131795770645379833 0x70640000 1499136 C:\Windows\SysWOW64\windowscodecs.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Microsoft Windows Codecs Library 131795770645379833 0x707b0000 110592 C:\Windows\SysWOW64\ncryptsslp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft SChannel Provider 131795770645379833 0x707f0000 2293760 C:\Windows\SysWOW64\d3d11.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation Direct3D 11 Runtime 131795770645379833 0x70a80000 409600 C:\Windows\SysWOW64\schannel.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик безопасности TLS/SSL 131795770645379833 0x70b40000 69632 C:\Windows\SysWOW64\mskeyprotect.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик защиты ключей (Майкрософт) 131795770645379833 0x70ca0000 45056 C:\Windows\SysWOW64\NETUTILS.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API Helpers DLL 131795770645379833 0x70cc0000 65536 C:\Windows\SysWOW64\ondemandconnroutehelper.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation On Demand Connctiond Route Helper 131795770645379833 0x70e60000 176128 C:\Windows\SysWOW64\NTASN1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft ASN.1 API 131795770645379833 0x71140000 77824 C:\Windows\SysWOW64\NETAPI32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API DLL 131795770645379833 0x71610000 77824 C:\Windows\SysWOW64\dhcpcsvc6.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиент DHCPv6 131795770645379833 0x725e0000 2273280 C:\Windows\SysWOW64\iertutil.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служебная программа времени выполнения для Internet Explorer 131795770645379833 0x728e0000 1372160 C:\Windows\SysWOW64\PROPSYS.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Система страниц свойств (Майкрософт) 131795770645379833 0x72b90000 126976 C:\Windows\SysWOW64\dwmapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Интерфейс API диспетчера окон рабочего стола (Майкрософт) 131795770645379833 0x72cc0000 1658880 C:\Windows\SysWOW64\urlmon.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширения OLE32 для Win32 131795770645379833 0x73a40000 32768 C:\Windows\SysWOW64\WINNSI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Network Store Information RPC interface 131795770645379833 0x73a50000 299008 C:\Windows\SysWOW64\fwpuclnt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API пользовательского режима FWP/IPsec 131795770645379833 0x73aa0000 32768 C:\Windows\SysWOW64\DPAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Data Protection API 131795770645379833 0x73ab0000 32768 C:\Windows\SysWOW64\rasadhlp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Remote Access AutoDial Helper 131795770645379833 0x73ac0000 81920 C:\Windows\SysWOW64\dhcpcsvc.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служба DHCP-клиента 131795770645379833 0x73ae0000 40960 C:\Windows\SysWOW64\Secur32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Security Support Provider Interface 131795770645379833 0x73ef0000 24576 C:\Windows\SysWOW64\MSIMG32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation GDIEXT Client DLL 131795770645379833 0x73f00000 192512 C:\Windows\SysWOW64\IPHLPAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API вспомогательного приложения IP 131795770645379833 0x73f30000 512000 C:\Windows\SysWOW64\DNSAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Динамическая библиотека API DNS-клиента 131795770645379833 0x73ff0000 319488 C:\Windows\SysWOW64\mswsock.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширение поставщика службы API Microsoft Windows Sockets 2.0 131795770645379833 0x74060000 192512 C:\Windows\SysWOW64\rsaenh.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Enhanced Cryptographic Provider 131795770645379833 0x74110000 479232 C:\Windows\SysWOW64\uxtheme.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека тем UxTheme (Microsoft) 131795770645379833 0x74190000 110592 C:\Windows\SysWOW64\bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795770645379833 0x741b0000 77824 C:\Windows\SysWOW64\CRYPTSP.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Cryptographic Service Provider API 131795770645379833 0x741f0000 143360 C:\Windows\SysWOW64\WINMMBASE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base Multimedia Extension API DLL 131795770645379833 0x74230000 147456 C:\Windows\SysWOW64\WINMM.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation MCI API DLL 131795770645379833 0x74260000 2514944 C:\Windows\SysWOW64\WININET.dll 11.00.14393.447 (rs1_release_inmarket.161102-0100) Microsoft Corporation Расширения Интернета для Win32 131795770645379833 0x744d0000 2138112 C:\Windows\WinSxS\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.14393.953_none_89c2555adb023171\comctl32.dll 6.10 (rs1_release_inmarket.170303-1614) Microsoft Corporation Библиотека элементов управления взаимодействия с пользователем 131795770645379833 0x746e0000 32768 C:\Windows\SysWOW64\VERSION.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Version Checking and File Installation Libraries 131795770645379833 0x746f0000 106496 C:\Windows\SysWOW64\USERENV.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Userenv 131795770645379833 0x74730000 598016 C:\Windows\SysWOW64\apphelp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиентская библиотека совместимости приложений 131795770645379833 0x747d0000 40960 C:\Windows\SysWOW64\CRYPTBASE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base cryptographic API DLL 131795770645379833 0x747e0000 126976 C:\Windows\SysWOW64\SspiCli.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Security Support Provider Interface 131795770645379833 0x74800000 151552 C:\Windows\SysWOW64\IMM32.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Multi-User Windows IMM32 API Client DLL 131795770645379833 0x74910000 2170880 C:\Windows\SysWOW64\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795770645379833 0x74b30000 53248 C:\Windows\SysWOW64\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795770645379833 0x74b60000 790528 C:\Windows\SysWOW64\RPCRT4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795770645379833 0x74c30000 1417216 C:\Windows\SysWOW64\gdi32full.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation GDI Client DLL 131795770645379833 0x74da0000 778240 C:\Windows\SysWOW64\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795770645379833 0x74e60000 557056 C:\Windows\SysWOW64\shcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795770645379833 0x74ef0000 540672 C:\Windows\SysWOW64\clbcatq.dll 2001.12.10941.16384 (rs1_release.160715-1616) Microsoft Corporation COM+ Configuration Catalog 131795770645379833 0x74f80000 278528 C:\Windows\SysWOW64\WINTRUST.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation Microsoft Trust Verification APIs 131795770645379833 0x74fd0000 405504 C:\Windows\SysWOW64\WS2_32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation 32-разрядная библиотека Windows Socket 2.0 131795770645379833 0x75040000 282624 C:\Windows\SysWOW64\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795770645379833 0x75090000 1265664 C:\Windows\SysWOW64\MSCTF.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Серверная библиотека MSCTF 131795770645379833 0x751d0000 57344 C:\Windows\SysWOW64\MSASN1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ASN.1 Runtime APIs 131795770645379833 0x751e0000 1708032 C:\Windows\SysWOW64\KERNELBASE.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645379833 0x75390000 266240 C:\Windows\SysWOW64\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795770645379833 0x753e0000 1560576 C:\Windows\SysWOW64\CRYPT32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API32 криптографии 131795770645379833 0x75560000 487424 C:\Windows\SysWOW64\advapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795770645379833 0x756c0000 5693440 C:\Windows\SysWOW64\windows.storage.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API хранения Microsoft WinRT 131795770645379833 0x75c30000 372736 C:\Windows\SysWOW64\coml2.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft COM for Windows 131795770645379833 0x75c90000 286720 C:\Windows\SysWOW64\shlwapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека небольших программ оболочки 131795770645379833 0x75ce0000 20811776 C:\Windows\SysWOW64\SHELL32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Общая библиотека оболочки Windows 131795770645379833 0x774d0000 86016 C:\Windows\SysWOW64\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795770645379833 0x774f0000 61440 C:\Windows\SysWOW64\profapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Profile Basic API 131795770645379833 0x77560000 1437696 C:\Windows\SysWOW64\USER32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795770645379833 0x776c0000 368640 C:\Windows\SysWOW64\bcryptPrimitives.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation Windows Cryptographic Primitives Library 131795770645379833 0x77780000 503808 C:\Windows\SysWOW64\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645379833 0x77800000 606208 C:\Windows\SysWOW64\OLEAUT32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795770645379833 0x77ac0000 966656 C:\Windows\SysWOW64\ole32.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft OLE для Windows 131795770645379833 0x77bb0000 176128 C:\Windows\SysWOW64\GDI32.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation GDI Client DLL 131795770645379833 0x77cd0000 221184 C:\Windows\SysWOW64\cfgmgr32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Configuration Manager DLL 131795770645379833 0x77d10000 28672 C:\Windows\SysWOW64\NSI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation NSI User-mode interface DLL 131795770645379833 0x77d20000 1585152 C:\Windows\SysWOW64\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 131795770645379833 0x7ffad0270000 1908736 C:\Windows\SYSTEM32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 44 5800 664 6 00000000:0031f1da 131765779120650795 0 0 1 Обязательная метка\Средний обязательный уровень WIN-0UOTFKKVN1S\User DllHost.exe C:\Windows\system32\DllHost.exe C:\Windows\system32\DllHost.exe /Processid:{49F6E667-6658-4BD1-9DE9-6AF87F9FAF85} Microsoft Corporation 10.0.14393.0 (rs1_release.160715-1616) COM Surrogate 131795770645379938 0x7ff7a2280000 36864 C:\Windows\system32\DllHost.exe 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation COM Surrogate 131795770645379938 0x7ffac3840000 3088384 C:\Windows\SYSTEM32\esent.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширяемая подсистема хранения данных ESE для Microsoft(R) Windows(R) 131795770645379938 0x7ffac3b80000 286720 C:\Windows\system32\indexeddbserver.dll 10.0.14393.2189 (rs1_release.180329-1711) Microsoft Corporation IndexedDb host 131795770645379938 0x7ffac3cb0000 2772992 C:\Windows\system32\iertutil.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служебная программа времени выполнения для Internet Explorer 131795770645379938 0x7ffacaf00000 610304 C:\Windows\system32\uxtheme.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека тем UxTheme (Microsoft) 131795770645379938 0x7ffacc170000 45056 C:\Windows\system32\CRYPTBASE.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base cryptographic API DLL 131795770645379938 0x7ffacc6e0000 61440 C:\Windows\System32\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795770645379938 0x7ffacc6f0000 311296 C:\Windows\System32\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795770645379938 0x7ffacc740000 81920 C:\Windows\System32\profapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Profile Basic API 131795770645379938 0x7ffacc8f0000 1003520 C:\Windows\System32\ucrtbase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645379938 0x7ffacc9f0000 434176 C:\Windows\System32\bcryptPrimitives.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Cryptographic Primitives Library 131795770645379938 0x7ffacca60000 122880 C:\Windows\System32\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795770645379938 0x7ffaccae0000 692224 C:\Windows\System32\shcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795770645379938 0x7ffaccb90000 7180288 C:\Windows\System32\windows.storage.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API хранения Microsoft WinRT 131795770645379938 0x7ffacd270000 2215936 C:\Windows\System32\KERNELBASE.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645379938 0x7ffacd710000 638976 C:\Windows\System32\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645379938 0x7ffaced20000 782336 C:\Windows\System32\OLEAUT32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795770645379938 0x7ffacee50000 1183744 C:\Windows\System32\RPCRT4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795770645379938 0x7ffacef90000 647168 C:\Windows\System32\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795770645379938 0x7ffacf030000 651264 C:\Windows\System32\clbcatq.dll 2001.12.10941.16384 (rs1_release.160715-1616) Microsoft Corporation COM+ Configuration Catalog 131795770645379938 0x7ffacf0d0000 704512 C:\Windows\System32\KERNEL32.DLL 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645379938 0x7ffacf770000 212992 C:\Windows\System32\GDI32.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation GDI Client DLL 131795770645379938 0x7ffacf890000 188416 C:\Windows\System32\IMM32.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Multi-User Windows IMM32 API Client DLL 131795770645379938 0x7ffacf8c0000 1462272 C:\Windows\System32\user32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795770645379938 0x7ffacfb30000 2916352 C:\Windows\System32\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795770645379938 0x7ffacfe20000 663552 C:\Windows\System32\advapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795770645379938 0x7ffad01b0000 335872 C:\Windows\System32\shlwapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека небольших программ оболочки 131795770645379938 0x7ffad0210000 364544 C:\Windows\System32\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795770645379938 0x7ffad0270000 1908736 C:\Windows\SYSTEM32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 45 340 4928 41 00000000:0031f1da 131765800389528045 0 1 0 Обязательная метка\Низкий обязательный уровень WIN-0UOTFKKVN1S\User utorrentie.exe C:\Users\User\AppData\Roaming\uTorrent\updates\3.5.4_44498\utorrentie.exe "C:\Users\User\AppData\Roaming\uTorrent\updates\3.5.4_44498\utorrentie.exe" uTorrent_4928_02D54870_1839591030 µTorrent4823DF041B09 uTorrent BitTorrent Inc. 1.0.0 WebHelper 131795770645380038 0x1180000 417792 C:\Users\User\AppData\Roaming\uTorrent\updates\3.5.4_44498\utorrentie.exe 1.0.0 BitTorrent Inc. WebHelper 131795770645380038 0x5c020000 335872 C:\Windows\System32\wow64.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation Win32 Emulation on NT64 131795770645380038 0x5c080000 487424 C:\Windows\System32\wow64win.dll 10.0.14393.1884 (rs1_release.171101-1233) Microsoft Corporation Wow64 Console and Win32 API Logging 131795770645380038 0x5c100000 40960 C:\Windows\System32\wow64cpu.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation AMD64 Wow64 CPU 131795770645380038 0x60750000 1556480 C:\Program Files (x86)\360\Total Security\safemon\safemon.dll 8, 4, 0, 1420 Qihu 360 Software Co., Ltd. 360 Internet Security Internet Protection 131795770645380038 0x63490000 221184 C:\Windows\SysWOW64\dinput8.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft DirectInput 131795770645380038 0x634d0000 561152 C:\Windows\SysWOW64\DSOUND.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DirectSound 131795770645380038 0x63560000 23334912 C:\Windows\SysWOW64\Macromed\Flash\Flash.ocx 29,0,0,140 Adobe Systems, Inc. Adobe Flash Player 29.0 r0 131795770645380038 0x64d00000 5079040 C:\Windows\SysWOW64\d2d1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека Microsoft D2D 131795770645380038 0x651e0000 20537344 C:\Windows\SysWOW64\mshtml.dll 11.00.14393.447 (rs1_release_inmarket.161102-0100) Microsoft Corporation Средство просмотра HTML Microsoft® 131795770645380038 0x66580000 12247040 C:\Windows\SysWOW64\ieframe.dll 11.00.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Браузер 131795770645380038 0x6b670000 212992 C:\Windows\SysWOW64\mlang.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL многоязыковой поддержки 131795770645380038 0x6b6b0000 36864 C:\Windows\SysWOW64\atlthunk.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation atlthunk.dll 131795770645380038 0x6c290000 987136 C:\Windows\SysWOW64\twinapi.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation twinapi.appcore 131795770645380038 0x6c390000 1126400 C:\Windows\SysWOW64\dcomp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft DirectComposition Library 131795770645380038 0x6c4b0000 278528 C:\Windows\SysWOW64\dataexchange.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation Data exchange 131795770645380038 0x6c540000 483328 C:\Windows\SysWOW64\webio.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API протоколов передачи по Веб 131795770645380038 0x6c5c0000 1384448 C:\Windows\SysWOW64\UIAutomationCore.DLL 7.2.14393.0 (rs1_release.160715-1616) Microsoft Corporation Основные автоматические компоненты Microsoft UI 131795770645380038 0x6c720000 2318336 C:\Windows\SysWOW64\d3d10warp.dll 10.0.14393.576 (rs1_release_inmarket.161208-2252) Microsoft Corporation Direct3D 10 Rasterizer 131795770645380038 0x6c960000 57344 C:\Windows\SysWOW64\msimtf.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Active IMM Server DLL 131795770645380038 0x6c970000 3698688 C:\Windows\SysWOW64\jscript9.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft ® JScript 131795770645380038 0x6cd00000 69632 C:\Windows\SysWOW64\WLDP.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Политика блокировки Windows 131795770645380038 0x6cd20000 135168 C:\Windows\SysWOW64\srpapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL программных интерфейсов (API) поставщика общих ресурсов 131795770645380038 0x6cda0000 528384 C:\Windows\SysWOW64\sxs.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Fusion 2.5 131795770645380038 0x6d080000 151552 C:\Windows\SysWOW64\cryptnet.dll 10.0.14393.2035 (rs1_release_inmarket.180110-1910) Microsoft Corporation Crypto Network Related API 131795770645380038 0x6d0b0000 847872 C:\Windows\SysWOW64\wintypes.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL основных типов Windows 131795770645380038 0x6fd30000 139264 C:\Windows\SysWOW64\DEVOBJ.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Device Information Set DLL 131795770645380038 0x6fd60000 360448 C:\Windows\SysWOW64\MMDevApi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation MMDevice API 131795770645380038 0x6fdc0000 507904 C:\Windows\SysWOW64\AUDIOSES.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Сеанс обработки звука 131795770645380038 0x6fe90000 544768 C:\Windows\SysWOW64\mscms.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL-библиотека системы сопоставления цветов Майкрософт 131795770645380038 0x70340000 536576 C:\Windows\SysWOW64\dxgi.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation DirectX Graphics Infrastructure 131795770645380038 0x703d0000 2056192 C:\Windows\SysWOW64\DWrite.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Службы Microsoft DirectX Typography 131795770645380038 0x70640000 1499136 C:\Windows\SysWOW64\windowscodecs.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Microsoft Windows Codecs Library 131795770645380038 0x707b0000 110592 C:\Windows\SysWOW64\ncryptsslp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft SChannel Provider 131795770645380038 0x707f0000 2293760 C:\Windows\SysWOW64\d3d11.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation Direct3D 11 Runtime 131795770645380038 0x70a40000 81920 C:\Windows\SysWOW64\NLAapi.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Network Location Awareness 2 131795770645380038 0x70a60000 90112 C:\Windows\SysWOW64\pnrpnsp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик пространства имен PNRP 131795770645380038 0x70a80000 409600 C:\Windows\SysWOW64\schannel.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик безопасности TLS/SSL 131795770645380038 0x70b40000 69632 C:\Windows\SysWOW64\mskeyprotect.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик защиты ключей (Майкрософт) 131795770645380038 0x70c00000 49152 C:\Windows\SysWOW64\winrnr.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation LDAP RnR Provider DLL 131795770645380038 0x70c10000 73728 C:\Windows\SysWOW64\napinsp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик оболочки совместимости для имен электронной почты 131795770645380038 0x70c30000 114688 C:\Windows\SysWOW64\srvcli.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Server Service Client DLL 131795770645380038 0x70c50000 319488 C:\Windows\SysWOW64\Ninput.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Pen and Touch Input Component 131795770645380038 0x70ca0000 45056 C:\Windows\SysWOW64\NETUTILS.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API Helpers DLL 131795770645380038 0x70cc0000 65536 C:\Windows\SysWOW64\ondemandconnroutehelper.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation On Demand Connctiond Route Helper 131795770645380038 0x70e60000 176128 C:\Windows\SysWOW64\NTASN1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft ASN.1 API 131795770645380038 0x71140000 77824 C:\Windows\SysWOW64\NETAPI32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API DLL 131795770645380038 0x71610000 77824 C:\Windows\SysWOW64\dhcpcsvc6.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиент DHCPv6 131795770645380038 0x725e0000 2273280 C:\Windows\SysWOW64\iertutil.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служебная программа времени выполнения для Internet Explorer 131795770645380038 0x728e0000 1372160 C:\Windows\SysWOW64\PROPSYS.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Система страниц свойств (Майкрософт) 131795770645380038 0x72b90000 126976 C:\Windows\SysWOW64\dwmapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Интерфейс API диспетчера окон рабочего стола (Майкрософт) 131795770645380038 0x72cc0000 1658880 C:\Windows\SysWOW64\urlmon.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширения OLE32 для Win32 131795770645380038 0x73a40000 32768 C:\Windows\SysWOW64\WINNSI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Network Store Information RPC interface 131795770645380038 0x73a50000 299008 C:\Windows\SysWOW64\fwpuclnt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API пользовательского режима FWP/IPsec 131795770645380038 0x73aa0000 32768 C:\Windows\SysWOW64\DPAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Data Protection API 131795770645380038 0x73ab0000 32768 C:\Windows\SysWOW64\rasadhlp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Remote Access AutoDial Helper 131795770645380038 0x73ac0000 81920 C:\Windows\SysWOW64\dhcpcsvc.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служба DHCP-клиента 131795770645380038 0x73ae0000 40960 C:\Windows\SysWOW64\Secur32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Security Support Provider Interface 131795770645380038 0x73ef0000 24576 C:\Windows\SysWOW64\MSIMG32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation GDIEXT Client DLL 131795770645380038 0x73f00000 192512 C:\Windows\SysWOW64\IPHLPAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API вспомогательного приложения IP 131795770645380038 0x73f30000 512000 C:\Windows\SysWOW64\DNSAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Динамическая библиотека API DNS-клиента 131795770645380038 0x73ff0000 319488 C:\Windows\SysWOW64\mswsock.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширение поставщика службы API Microsoft Windows Sockets 2.0 131795770645380038 0x74060000 192512 C:\Windows\SysWOW64\rsaenh.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Enhanced Cryptographic Provider 131795770645380038 0x74110000 479232 C:\Windows\SysWOW64\uxtheme.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека тем UxTheme (Microsoft) 131795770645380038 0x74190000 110592 C:\Windows\SysWOW64\bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795770645380038 0x741b0000 77824 C:\Windows\SysWOW64\CRYPTSP.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Cryptographic Service Provider API 131795770645380038 0x741f0000 143360 C:\Windows\SysWOW64\WINMMBASE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base Multimedia Extension API DLL 131795770645380038 0x74230000 147456 C:\Windows\SysWOW64\WINMM.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation MCI API DLL 131795770645380038 0x74260000 2514944 C:\Windows\SysWOW64\WININET.dll 11.00.14393.447 (rs1_release_inmarket.161102-0100) Microsoft Corporation Расширения Интернета для Win32 131795770645380038 0x744d0000 2138112 C:\Windows\WinSxS\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.14393.953_none_89c2555adb023171\comctl32.dll 6.10 (rs1_release_inmarket.170303-1614) Microsoft Corporation Библиотека элементов управления взаимодействия с пользователем 131795770645380038 0x746e0000 32768 C:\Windows\SysWOW64\VERSION.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Version Checking and File Installation Libraries 131795770645380038 0x746f0000 106496 C:\Windows\SysWOW64\USERENV.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Userenv 131795770645380038 0x74730000 598016 C:\Windows\SysWOW64\apphelp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиентская библиотека совместимости приложений 131795770645380038 0x747d0000 40960 C:\Windows\SysWOW64\CRYPTBASE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base cryptographic API DLL 131795770645380038 0x747e0000 126976 C:\Windows\SysWOW64\SspiCli.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Security Support Provider Interface 131795770645380038 0x74800000 151552 C:\Windows\SysWOW64\IMM32.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Multi-User Windows IMM32 API Client DLL 131795770645380038 0x74910000 2170880 C:\Windows\SysWOW64\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795770645380038 0x74b30000 53248 C:\Windows\SysWOW64\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795770645380038 0x74b60000 790528 C:\Windows\SysWOW64\RPCRT4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795770645380038 0x74c30000 1417216 C:\Windows\SysWOW64\gdi32full.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation GDI Client DLL 131795770645380038 0x74d90000 24576 C:\Windows\SysWOW64\PSAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Process Status Helper 131795770645380038 0x74da0000 778240 C:\Windows\SysWOW64\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795770645380038 0x74e60000 557056 C:\Windows\SysWOW64\shcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795770645380038 0x74ef0000 540672 C:\Windows\SysWOW64\clbcatq.dll 2001.12.10941.16384 (rs1_release.160715-1616) Microsoft Corporation COM+ Configuration Catalog 131795770645380038 0x74f80000 278528 C:\Windows\SysWOW64\WINTRUST.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation Microsoft Trust Verification APIs 131795770645380038 0x74fd0000 405504 C:\Windows\SysWOW64\WS2_32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation 32-разрядная библиотека Windows Socket 2.0 131795770645380038 0x75040000 282624 C:\Windows\SysWOW64\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795770645380038 0x75090000 1265664 C:\Windows\SysWOW64\MSCTF.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Серверная библиотека MSCTF 131795770645380038 0x751d0000 57344 C:\Windows\SysWOW64\MSASN1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ASN.1 Runtime APIs 131795770645380038 0x751e0000 1708032 C:\Windows\SysWOW64\KERNELBASE.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645380038 0x75390000 266240 C:\Windows\SysWOW64\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795770645380038 0x753e0000 1560576 C:\Windows\SysWOW64\CRYPT32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API32 криптографии 131795770645380038 0x75560000 487424 C:\Windows\SysWOW64\advapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795770645380038 0x756c0000 5693440 C:\Windows\SysWOW64\windows.storage.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API хранения Microsoft WinRT 131795770645380038 0x75c30000 372736 C:\Windows\SysWOW64\coml2.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft COM for Windows 131795770645380038 0x75c90000 286720 C:\Windows\SysWOW64\shlwapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека небольших программ оболочки 131795770645380038 0x75ce0000 20811776 C:\Windows\SysWOW64\SHELL32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Общая библиотека оболочки Windows 131795770645380038 0x774d0000 86016 C:\Windows\SysWOW64\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795770645380038 0x774f0000 61440 C:\Windows\SysWOW64\profapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Profile Basic API 131795770645380038 0x77560000 1437696 C:\Windows\SysWOW64\USER32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795770645380038 0x776c0000 368640 C:\Windows\SysWOW64\bcryptPrimitives.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation Windows Cryptographic Primitives Library 131795770645380038 0x77780000 503808 C:\Windows\SysWOW64\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645380038 0x77800000 606208 C:\Windows\SysWOW64\OLEAUT32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795770645380038 0x77ac0000 966656 C:\Windows\SysWOW64\ole32.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft OLE для Windows 131795770645380038 0x77bb0000 176128 C:\Windows\SysWOW64\GDI32.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation GDI Client DLL 131795770645380038 0x77cd0000 221184 C:\Windows\SysWOW64\cfgmgr32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Configuration Manager DLL 131795770645380038 0x77d10000 28672 C:\Windows\SysWOW64\NSI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation NSI User-mode interface DLL 131795770645380038 0x77d20000 1585152 C:\Windows\SysWOW64\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 131795770645380038 0x7ffad0270000 1908736 C:\Windows\SYSTEM32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 46 2736 3976 47 00000000:0031f1ab 131765800903010156 0 0 1 Обязательная метка\Высокий обязательный уровень WIN-0UOTFKKVN1S\User Taskmgr.exe C:\Windows\System32\Taskmgr.exe "C:\Windows\System32\Taskmgr.exe" /2 Microsoft® Windows® Operating System 1, 0, 0, 1 Task Manager 131795770645380149 0x7ff7c2a70000 1286144 C:\Windows\System32\Taskmgr.exe 1, 0, 0, 1 Microsoft® Windows® Operating System Task Manager 131795770645380149 0x7ffab2720000 606208 C:\Windows\System32\DUser.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows DirectUser Engine 131795770645380149 0x7ffab8190000 9191424 C:\Windows\System32\TwinUI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation TWINUI 131795770645380149 0x7ffabdbb0000 1736704 C:\Windows\System32\DUI70.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Подсистема DirectUI Windows 131795770645380149 0x7ffabdfa0000 393216 C:\Windows\System32\faultrep.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека отчетов о сбоях в пользовательском режиме Windows 131795770645380149 0x7ffabeb20000 385024 C:\Windows\System32\Windows.ApplicationModel.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows ApplicationModel API Server 131795770645380149 0x7ffac0bf0000 3559424 C:\Windows\System32\ActXPrxy.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation ActiveX Interface Marshaling Library 131795770645380149 0x7ffac21b0000 77824 C:\Windows\System32\srumapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation System Resource Usage Monitor API 131795770645380149 0x7ffac3cb0000 2772992 C:\Windows\SYSTEM32\iertutil.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служебная программа времени выполнения для Internet Explorer 131795770645380149 0x7ffac4000000 274432 C:\Windows\SYSTEM32\policymanager.dll 10.0.14393.2035 (rs1_release_inmarket.180110-1910) Microsoft Corporation Policy Manager DLL 131795770645380149 0x7ffac42a0000 659456 C:\Windows\System32\StateRepository.Core.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation StateRepository Core 131795770645380149 0x7ffac46d0000 4161536 C:\Windows\System32\Windows.StateRepository.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Сервер Windows StateRepository API Server 131795770645380149 0x7ffac4e70000 102400 C:\Windows\System32\samcli.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Security Accounts Manager Client DLL 131795770645380149 0x7ffac4ea0000 36864 C:\Windows\SYSTEM32\atlthunk.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation atlthunk.dll 131795770645380149 0x7ffac5350000 1765376 C:\Windows\System32\Windows.UI.Immersive.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation WINDOWS.UI.IMMERSIVE 131795770645380149 0x7ffac5630000 339968 C:\Windows\System32\thumbcache.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Кэш эскизов Майкрософт 131795770645380149 0x7ffac60e0000 221184 C:\Windows\System32\XmlLite.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft XmlLite Library 131795770645380149 0x7ffac6ac0000 835584 C:\Windows\System32\Windows.UI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Runtime UI Foundation DLL 131795770645380149 0x7ffac6bd0000 413696 C:\Windows\System32\OLEACC.dll 7.2.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Active Accessibility Core Component 131795770645380149 0x7ffac6c40000 2596864 C:\Windows\WinSxS\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.14393.953_none_42151e83c686086b\COMCTL32.dll 6.10 (rs1_release_inmarket.170303-1614) Microsoft Corporation Библиотека элементов управления взаимодействия с пользователем 131795770645380149 0x7ffac7580000 1077248 C:\Windows\SYSTEM32\MrmCoreR.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Windows MRM 131795770645380149 0x7ffac83d0000 106496 C:\Windows\SYSTEM32\dhcpcsvc.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служба DHCP-клиента 131795770645380149 0x7ffac83f0000 90112 C:\Windows\SYSTEM32\dhcpcsvc6.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиент DHCPv6 131795770645380149 0x7ffac8810000 45056 C:\Windows\SYSTEM32\WINNSI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Network Store Information RPC interface 131795770645380149 0x7ffac8dc0000 167936 C:\Windows\System32\dbgcore.DLL 10.0.14321.1024 (debuggers(dbg).160715-1616) Microsoft Windows Core Debugging Helpers 131795770645380149 0x7ffac8df0000 1646592 C:\Windows\System32\dbghelp.dll 10.0.14321.1024 (rs1_release.160715-1616) Microsoft Windows Image Helper 131795770645380149 0x7ffac90b0000 90112 C:\Windows\System32\wkscli.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Workstation Service Client DLL 131795770645380149 0x7ffac92e0000 1269760 C:\Windows\SYSTEM32\wintypes.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL основных типов Windows 131795770645380149 0x7ffac9f50000 1736704 C:\Windows\System32\WindowsCodecs.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Microsoft Windows Codecs Library 131795770645380149 0x7ffaca340000 1593344 C:\Windows\system32\propsys.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Система страниц свойств (Майкрософт) 131795770645380149 0x7ffaca4e0000 77824 C:\Windows\System32\WTSAPI32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Remote Desktop Session Host Server SDK APIs 131795770645380149 0x7ffaca570000 421888 C:\Windows\System32\Bcp47Langs.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation BCP47 Language Classes 131795770645380149 0x7ffaca5e0000 155648 C:\Windows\System32\dwmapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Интерфейс API диспетчера окон рабочего стола (Майкрософт) 131795770645380149 0x7ffaca610000 143360 C:\Windows\System32\SAMLIB.dll 10.0.14393.82 (rs1_release.160805-1735) Microsoft Corporation SAM Library DLL 131795770645380149 0x7ffacac60000 69632 C:\Windows\System32\credui.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Credential Manager User Interface 131795770645380149 0x7ffacadf0000 499712 C:\Windows\System32\apphelp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиентская библиотека совместимости приложений 131795770645380149 0x7ffacaf00000 610304 C:\Windows\System32\UxTheme.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека тем UxTheme (Microsoft) 131795770645380149 0x7ffacb140000 593920 C:\Windows\SYSTEM32\msvcp110_win.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Microsoft® STL110 C++ Runtime Library 131795770645380149 0x7ffacb1e0000 1163264 C:\Windows\System32\twinapi.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation twinapi.appcore 131795770645380149 0x7ffacb300000 364544 C:\Windows\SYSTEM32\VEEventDispatcher.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Visual Element Event dispatcher 131795770645380149 0x7ffacbd30000 229376 C:\Windows\System32\IPHLPAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API вспомогательного приложения IP 131795770645380149 0x7ffacbe20000 53248 C:\Windows\System32\netutils.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API Helpers DLL 131795770645380149 0x7ffacbe40000 126976 C:\Windows\System32\USERENV.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Userenv 131795770645380149 0x7ffacc5c0000 352256 C:\Windows\System32\WINSTA.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Winstation Library 131795770645380149 0x7ffacc620000 176128 C:\Windows\System32\bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795770645380149 0x7ffacc6e0000 61440 C:\Windows\System32\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795770645380149 0x7ffacc6f0000 311296 C:\Windows\System32\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795770645380149 0x7ffacc740000 81920 C:\Windows\System32\profapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Profile Basic API 131795770645380149 0x7ffacc8f0000 1003520 C:\Windows\System32\ucrtbase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645380149 0x7ffacc9f0000 434176 C:\Windows\System32\bcryptPrimitives.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Cryptographic Primitives Library 131795770645380149 0x7ffacca60000 122880 C:\Windows\System32\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795770645380149 0x7ffaccae0000 692224 C:\Windows\System32\shcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795770645380149 0x7ffaccb90000 7180288 C:\Windows\System32\windows.storage.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API хранения Microsoft WinRT 131795770645380149 0x7ffacd270000 2215936 C:\Windows\System32\KERNELBASE.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645380149 0x7ffacd710000 638976 C:\Windows\System32\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645380149 0x7ffacd7b0000 270336 C:\Windows\System32\cfgmgr32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Configuration Manager DLL 131795770645380149 0x7ffacd810000 22056960 C:\Windows\System32\SHELL32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Общая библиотека оболочки Windows 131795770645380149 0x7ffaced20000 782336 C:\Windows\System32\OLEAUT32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795770645380149 0x7ffacee50000 1183744 C:\Windows\System32\RPCRT4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795770645380149 0x7ffacef80000 32768 C:\Windows\System32\NSI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation NSI User-mode interface DLL 131795770645380149 0x7ffacef90000 647168 C:\Windows\System32\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795770645380149 0x7ffacf030000 651264 C:\Windows\System32\clbcatq.dll 2001.12.10941.16384 (rs1_release.160715-1616) Microsoft Corporation COM+ Configuration Catalog 131795770645380149 0x7ffacf0d0000 704512 C:\Windows\System32\KERNEL32.DLL 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645380149 0x7ffacf1e0000 1417216 C:\Windows\System32\MSCTF.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Серверная библиотека MSCTF 131795770645380149 0x7ffacf770000 212992 C:\Windows\System32\GDI32.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation GDI Client DLL 131795770645380149 0x7ffacf820000 434176 C:\Windows\System32\WS2_32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation 32-разрядная библиотека Windows Socket 2.0 131795770645380149 0x7ffacf890000 188416 C:\Windows\System32\IMM32.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Multi-User Windows IMM32 API Client DLL 131795770645380149 0x7ffacf8c0000 1462272 C:\Windows\System32\USER32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795770645380149 0x7ffacfb30000 2916352 C:\Windows\System32\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795770645380149 0x7ffacfe20000 663552 C:\Windows\System32\advapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795770645380149 0x7ffad0070000 1277952 C:\Windows\System32\ole32.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft OLE для Windows 131795770645380149 0x7ffad01b0000 335872 C:\Windows\System32\SHLWAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека небольших программ оболочки 131795770645380149 0x7ffad0210000 364544 C:\Windows\System32\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795770645380149 0x7ffad0270000 1908736 C:\Windows\SYSTEM32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 49 6724 580 4 00000000:000003e7 131765803507001117 0 0 0 Обязательная метка\Обязательный уровень системы NT AUTHORITY\СИСТЕМА QHActiveDefense.exe C:\Program Files (x86)\360\Total Security\safemon\QHActiveDefense.exe "C:\Program Files (x86)\360\Total Security\safemon\QHActiveDefense.exe" Qihoo 360 Technology Co. Ltd. 10,0,0,1008 360 Total Security 131795778431738530 0x10000 413696 C:\ProgramData\Package Cache\{b8e12890-118d-4721-8e54-05d978086712}\VC_redist.x64.exe 14.0.24516.0 Microsoft Corporation Microsoft Visual C++ 2015 Redistributable (x64) - 14.0.24516 131795770645381706 0xd0000 983040 C:\Program Files (x86)\360\Total Security\safemon\QHActiveDefense.exe 10,0,0,1008 Qihoo 360 Technology Co. Ltd. 360 Total Security 131795778469924367 0x400000 278528 C:\Program Files\Wireshark\WinPcap_4_1_3.exe 4.1.0.2980 Riverbed Technology, Inc. WinPcap 4.1.3 installer 131795778203065490 0x840000 413696 C:\Program Files\Wireshark\vcredist_x64.exe 14.12.25810.0 Microsoft Corporation Microsoft Visual C++ 2017 Redistributable (x64) - 14.12.25810 131795786058722021 0x34c0000 40960 C:\Windows\System32\browser_broker.exe 11.00.14393.1613 (rs1_release_d.170807-1806) Microsoft Corporation Browser_Broker 131795770645381706 0x3c80000 12288 C:\Windows\SysWOW64\sfc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows File Protection 131795780944214585 0x40a0000 438272 C:\Program Files\Wireshark\dumpcap.exe 2.6.2 The Wireshark developer community Dumpcap 131795780231568066 0x4630000 204800 C:\Windows\SysWOW64\net1.exe 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Command 131795778389953959 0xa8e0000 696320 C:\Windows\System32\msvcp140.dll 14.12.25810.0 built by: VCTOOLSREL Microsoft Corporation Microsoft® C Runtime Library 131795786140191230 0xe830000 2416640 C:\Windows\System32\smartscreen.exe 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SmartScreen 131795780691287613 0xf730000 8298496 C:\Program Files\Wireshark\Wireshark.exe 2.6.2 The Wireshark developer community, http://www.wireshark.org/ Wireshark 131795780222197886 0x10000000 98304 C:\Windows\SysWOW64\Packet.dll 4.1.0.2980 Riverbed Technology, Inc. packet.dll (Vista) Dynamic Link Library 131795770645381706 0x5c020000 335872 C:\Windows\System32\wow64.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation Win32 Emulation on NT64 131795770645381706 0x5c080000 487424 C:\Windows\System32\wow64win.dll 10.0.14393.1884 (rs1_release.171101-1233) Microsoft Corporation Wow64 Console and Win32 API Logging 131795770645381706 0x5c100000 40960 C:\Windows\System32\wow64cpu.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation AMD64 Wow64 CPU 131795770645381706 0x5fb90000 2736128 C:\Program Files (x86)\360\Total Security\deepscan\deepscan.dll 3, 5, 1, 2130 Qihu 360 Software Co., Ltd. 360 Total Security Cloud Security 131795770645381706 0x5fec0000 794624 C:\Windows\SysWOW64\wbem\fastprox.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation WMI Custom Marshaller 131795770645381706 0x5ffa0000 421888 C:\Windows\SysWOW64\wbemcomn.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation WMI 131795770645381706 0x60010000 53248 C:\Windows\SysWOW64\wbem\wbemprox.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation WMI 131795770645381706 0x60190000 475136 C:\Program Files (x86)\360\Total Security\safemon\360SafeCamera.tpi 2, 0, 0, 1031 QIHU 360 SOFTWARE CO. LIMITED 360 Total Security Proactive Defense 131795770645381706 0x60210000 1269760 C:\Program Files (x86)\360\Total Security\deepscan\jcloudscan.dll 1, 0, 0, 1012 360.cn 360安全卫士 移动云查询模块 131795770645381706 0x604a0000 196608 C:\Program Files (x86)\360\Total Security\ipc\appdext.dll 1, 0, 0, 1483 360.cn 360安全卫士 木马防火墙模块 131795770645381706 0x604e0000 188416 C:\Program Files (x86)\360\Total Security\ipc\DrvUtility.dll 1, 0, 0, 1081 Qihu 360 Software Co., Ltd. 360 Internet Security 2013 Proactive Defense 131795770645381706 0x60510000 409600 C:\Program Files (x86)\360\Total Security\SafeScan.dll 1, 0, 0, 1074 Qihoo 360 Technology Co. Ltd. 360 Scan Util Module 131795770645381706 0x60580000 204800 C:\Program Files (x86)\360\Total Security\ScanStub.dll 1, 0, 0, 1014 Qihoo 360 Technology Co. Ltd. 360 Scan Util Module 131795770645381706 0x605c0000 249856 C:\Program Files (x86)\360\Total Security\netmon\360gameidentify.dll 1, 0, 1, 1050 360.cn 360流量防火墙 游戏识别模块 131795770645381706 0x60600000 200704 C:\Program Files (x86)\360\Total Security\safemon\WDRecord.dll 1, 0, 1, 1130 Qihu 360 Software Co., Ltd. 360 Internet Security Internet Protection 131795770645381706 0x60640000 430080 C:\Program Files (x86)\360\Total Security\netmon\Netgm.dll 9,0,0,1005 360.cn 360流量防火墙 游戏模式判断模块 131795770645381706 0x608d0000 159744 C:\Program Files (x86)\360\Total Security\safemon\safemonhlp.dll 1, 0, 0, 1265 Qihu 360 Software Co., Ltd. 360 Internet Security Internet Protection 131795770645381706 0x60a50000 479232 C:\Program Files (x86)\360\Total Security\deepscan\DsSysRepair.dll 1, 0, 0, 1062 QIHU360 SOFTWARE CO. LIMITED 360 Total Security System Repair Module 131795770645381706 0x60ad0000 352256 C:\Program Files (x86)\360\Total Security\360Common.dll 7, 3, 0, 3233 360.cn 360安全衛士 基礎模塊 131795770645381706 0x60b30000 1712128 C:\Program Files (x86)\360\Total Security\safemon\360safemonpro.tpi 3, 1, 1, 3140 Qihu 360 Software Co., Ltd. 360 Internet Security Internet Protection 131795770645381706 0x60ce0000 581632 C:\Program Files (x86)\360\Total Security\dynlenv.dll 1, 1, 0, 1016 360.cn dynlenv Dynamic Link Library 131795770645381706 0x61000000 184320 C:\Program Files (x86)\360\Total Security\ipc\qutmipc.dll 7, 3, 0, 1267 360.cn 360安全卫士 木马防火墙模块 131795770645381706 0x61030000 262144 C:\Program Files (x86)\360\Total Security\safemon\safehmpg.dll 3, 0, 0, 1160 Qihu 360 Software Co., Ltd. 360 Internet Security Browser HomePage Protection 131795770645381706 0x610d0000 1097728 C:\Program Files (x86)\360\Total Security\SoftMgr\SomAdvUtils.dll 3, 1, 1, 2020 360.cn 360 Safeguard PC Boost 131795770645381706 0x61380000 315392 C:\Program Files (x86)\360\Total Security\safemon\360bsmon.tpi 6, 8, 0, 1248 Qihu 360 Software Co., Ltd. 360 Total Security Active Protection 131795770645381706 0x61480000 2191360 C:\Program Files (x86)\360\Total Security\deepscan\qex\qex.dll 4.1.13.3366 Qihu 360 Software Co., Ltd. 360 Internet Security 2017 Antivirus 131795770645381706 0x616a0000 331776 C:\Program Files (x86)\360\Total Security\safemon\SelfProtectAPI2.dll 7, 1, 1, 1033 Qihu 360 Software Co., Ltd. 360 Total Security Proactive Defense 131795770645381706 0x61700000 483328 C:\Program Files (x86)\360\Total Security\safemon\360procmon.dll 7, 1, 1, 1221 Qihu 360 Software Co., Ltd. 360 Total Security Proactive Defense 131795770645381706 0x61780000 335872 C:\Program Files (x86)\360\Total Security\ipc\netdefender.dll 1, 0, 0, 1129 Qihu 360 Software Co., Ltd. 360 Internet Security Internet Protection 131795770645381706 0x617e0000 897024 C:\Program Files (x86)\360\Total Security\ipc\appd.dll 7, 3, 6, 3113 Qihu 360 Software Co., Ltd. 360 Total Security Proactive Defense 131795770645381706 0x61a30000 512000 C:\Program Files (x86)\360\Total Security\safemon\360HipsPopWnd.dll 7,3,2,1211 Qihoo 360 Technology Co. Ltd. 360 Internet Security Proactive Defense 131795770645381706 0x61ab0000 495616 C:\Program Files (x86)\360\Total Security\ipc\fileMgr.dll 7, 3, 0, 1963 Qihu 360 Software Co., Ltd. 360 Total Security Proactive Defense 131795770645381706 0x61b30000 3350528 C:\Program Files (x86)\360\Total Security\SoftMgr\somkernl.dll 2, 1, 0, 1130 360.cn 360软件管家 131795770645381706 0x61e70000 614400 C:\Program Files (x86)\360\Total Security\ipc\ipcservice.dll 7, 1, 2, 1643 Qihu 360 Software Co., Ltd. 360 Total Security Proactive Defense 131795770645381706 0x61f10000 1458176 C:\Program Files (x86)\360\Total Security\deepscan\cloudcom2.dll 3, 3, 10, 1288 Qihu 360 Software Co., Ltd. 360 Total Security 131795770645381706 0x621a0000 458752 C:\Program Files (x86)\360\Total Security\ipc\yhregd.dll 7, 2, 0, 1903 Qihu 360 Software Co., Ltd. 360 Total Security Proactive Defense 131795770645381706 0x62280000 454656 C:\Program Files (x86)\360\Total Security\SoftMgr\360SoftMgrS.dll 2, 1, 6, 1490 360.cn 360软件管家 服务模块 131795770645381706 0x622f0000 520192 C:\Program Files (x86)\360\Total Security\deepscan\heavygate.dll 3, 8, 11, 1 Qihu 360 Software Co., Ltd. 360 Total Security Cloud Security 131795770645381706 0x62370000 602112 C:\Program Files (x86)\360\Total Security\360util.dll 1.0.0.1485 360.cn 360安全卫士 公共模块 131795770645381706 0x62410000 352256 C:\Program Files (x86)\360\Total Security\CrashReport.dll 7, 0, 0, 1000 360.cn 360杀毒 异常捕获程序 131795770645381706 0x62470000 405504 C:\Program Files (x86)\360\Total Security\deepscan\qutmload.dll 7, 2, 1, 1279 360.cn 360安全卫士 木马防火墙模块 131795770645381706 0x624e0000 315392 C:\Program Files (x86)\360\Total Security\ipc\360box.dll 2, 0, 0, 1043 360.cn 360隔离沙箱模块 131795770645381706 0x62540000 278528 C:\Program Files (x86)\360\Total Security\360conf.dll 1, 0, 0, 1014 Qihu 360 Software Co., Ltd. 360 Internet Security Base Module 131795770645381706 0x62590000 987136 C:\Program Files (x86)\360\Total Security\360base.dll 1, 0, 0, 1165 360.cn 360安全卫士 基础模块 131795770645381706 0x62690000 266240 C:\Program Files (x86)\360\Total Security\deepscan\BAPI.dll 2.0.0.1191 360.cn BAPI 131795770645381706 0x627d0000 249856 C:\Windows\SysWOW64\edputil.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служебная программа EDP 131795770645381706 0x62980000 376832 C:\Program Files (x86)\360\Total Security\360NetBase.dll 7, 25, 0, 76 360.cn 360安全卫士 网络基础模块 131795770645381706 0x62b50000 106496 C:\Program Files (x86)\360\Total Security\i18n\ru\deepscan\DsRes.dll 1,0,0,1012 Qihu 360 Software Co., Ltd. 360 Total Security Cloud Security Resource 131795770645381706 0x62b70000 208896 C:\Program Files (x86)\360\Total Security\safemon\gamemode.tpi 9,0,0,1001 QIHU 360 SOFTWARE CO. LIMITED 360 Total Security Game Mode Control 131795770645381706 0x67130000 86016 C:\Windows\SysWOW64\devenum.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Перечисление устройств. 131795770645381706 0x67690000 61440 C:\Windows\SysWOW64\sfc_os.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows File Protection 131795770645381706 0x676a0000 61440 C:\Program Files (x86)\360\Total Security\ipc\x64for32lib.dll 6, 8, 0, 1059 360.cn 360安全卫士 木马防火墙模块 131795770645381706 0x676b0000 32768 C:\Windows\SysWOW64\fltlib.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека фильтров 131795770645381706 0x6b6c0000 36864 C:\Windows\SysWOW64\msdmo.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DMO Runtime 131795770645381706 0x6b6d0000 102400 C:\Program Files (x86)\360\Total Security\i18n.dll 1, 0, 0, 1016 Qihu 360 Software Co., Ltd. 360 Total Security 131795770645381706 0x6bf00000 3715072 C:\Windows\SysWOW64\msi.dll 5.0.14393.2155 Microsoft Corporation Windows Installer 131795770645381706 0x6cd50000 106496 C:\Windows\SysWOW64\SAMLIB.dll 10.0.14393.82 (rs1_release.160805-1735) Microsoft Corporation SAM Library DLL 131795770645381706 0x6cf60000 569344 C:\Windows\SysWOW64\taskschd.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Task Scheduler COM API 131795770645381706 0x6d080000 151552 C:\Windows\SysWOW64\cryptnet.dll 10.0.14393.2035 (rs1_release_inmarket.180110-1910) Microsoft Corporation Crypto Network Related API 131795770645381706 0x6ea80000 860160 C:\Program Files (x86)\360\Total Security\deepscan\QVM\360QVM.dll 5.0.2.1003 Qihu 360 Software Co., Ltd. 360 Internet Security QVM Engine 131795770645381706 0x6fcd0000 151552 C:\Windows\SysWOW64\dbgcore.DLL 10.0.14321.1024 (debuggers(dbg).160715-1616) Microsoft Windows Core Debugging Helpers 131795770645381706 0x6fd30000 139264 C:\Windows\SysWOW64\DEVOBJ.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Device Information Set DLL 131795770645381706 0x700d0000 434176 C:\Windows\SysWOW64\WINSPOOL.DRV 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Драйвер диспетчера очереди Windows 131795770645381706 0x70140000 274432 C:\Windows\SysWOW64\WINSTA.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Winstation Library 131795770645381706 0x70210000 966656 C:\Program Files (x86)\360\Total Security\deepscan\ave\AVEngine.dll 1, 0, 0, 2016 Qihu 360 Software Co., Ltd. 360 Internet Security 2013 AntiVirus Engine 131795770645381706 0x70300000 208896 C:\Program Files (x86)\360\Total Security\deepscan\ave\AVEI.dll 1, 0, 0, 2003 Qihu 360 Software Co., Ltd. 360 Internet Security 2013 AntiVirus Engine 131795770645381706 0x707d0000 86016 C:\Windows\SysWOW64\SAMCLI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Security Accounts Manager Client DLL 131795770645381706 0x70a40000 81920 C:\Windows\SysWOW64\NLAapi.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Network Location Awareness 2 131795770645381706 0x70a60000 90112 C:\Windows\SysWOW64\pnrpnsp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик пространства имен PNRP 131795770645381706 0x70b70000 163840 C:\Windows\SysWOW64\ntmarta.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик Windows NT MARTA 131795770645381706 0x70c00000 49152 C:\Windows\SysWOW64\winrnr.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation LDAP RnR Provider DLL 131795770645381706 0x70c10000 73728 C:\Windows\SysWOW64\napinsp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик оболочки совместимости для имен электронной почты 131795770645381706 0x70c30000 114688 C:\Windows\SysWOW64\srvcli.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Server Service Client DLL 131795770645381706 0x70ca0000 45056 C:\Windows\SysWOW64\NETUTILS.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API Helpers DLL 131795770645381706 0x70cb0000 65536 C:\Windows\SysWOW64\wkscli.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Workstation Service Client DLL 131795770645381706 0x70fd0000 1331200 C:\Windows\SysWOW64\dbghelp.dll 10.0.14321.1024 (rs1_release.160715-1616) Microsoft Windows Image Helper 131795770645381706 0x71140000 77824 C:\Windows\SysWOW64\NETAPI32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API DLL 131795770645381706 0x71610000 77824 C:\Windows\SysWOW64\dhcpcsvc6.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиент DHCPv6 131795770645381706 0x725e0000 2273280 C:\Windows\SysWOW64\iertutil.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служебная программа времени выполнения для Internet Explorer 131795770645381706 0x728e0000 1372160 C:\Windows\SysWOW64\propsys.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Система страниц свойств (Майкрософт) 131795770645381706 0x72a30000 188416 C:\Windows\SysWOW64\XmlLite.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft XmlLite Library 131795770645381706 0x72cc0000 1658880 C:\Windows\SysWOW64\urlmon.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширения OLE32 для Win32 131795770645381706 0x73a40000 32768 C:\Windows\SysWOW64\WINNSI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Network Store Information RPC interface 131795770645381706 0x73a50000 299008 C:\Windows\SysWOW64\fwpuclnt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API пользовательского режима FWP/IPsec 131795770645381706 0x73ab0000 32768 C:\Windows\SysWOW64\rasadhlp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Remote Access AutoDial Helper 131795770645381706 0x73ac0000 81920 C:\Windows\SysWOW64\dhcpcsvc.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служба DHCP-клиента 131795770645381706 0x73ae0000 40960 C:\Windows\SysWOW64\secur32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Security Support Provider Interface 131795770645381706 0x73c50000 1478656 C:\Windows\WinSxS\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.14393.1715_none_f67438d2f2547a00\gdiplus.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Microsoft GDI+ 131795770645381706 0x73ee0000 61440 C:\Windows\SysWOW64\WTSAPI32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Remote Desktop Session Host Server SDK APIs 131795770645381706 0x73ef0000 24576 C:\Windows\SysWOW64\MSIMG32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation GDIEXT Client DLL 131795770645381706 0x73f00000 192512 C:\Windows\SysWOW64\IPHLPAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API вспомогательного приложения IP 131795770645381706 0x73f30000 512000 C:\Windows\SysWOW64\dnsapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Динамическая библиотека API DNS-клиента 131795770645381706 0x73ff0000 319488 C:\Windows\SysWOW64\mswsock.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширение поставщика службы API Microsoft Windows Sockets 2.0 131795770645381706 0x74040000 126976 C:\Windows\SysWOW64\gpapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиентские функции API групповой политики 131795770645381706 0x74060000 192512 C:\Windows\SysWOW64\rsaenh.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Enhanced Cryptographic Provider 131795770645381706 0x74190000 110592 C:\Windows\SysWOW64\bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795770645381706 0x741b0000 77824 C:\Windows\SysWOW64\CRYPTSP.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Cryptographic Service Provider API 131795770645381706 0x741f0000 143360 C:\Windows\SysWOW64\WINMMBASE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base Multimedia Extension API DLL 131795770645381706 0x74230000 147456 C:\Windows\SysWOW64\WINMM.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation MCI API DLL 131795770645381706 0x74260000 2514944 C:\Windows\SysWOW64\WININET.dll 11.00.14393.447 (rs1_release_inmarket.161102-0100) Microsoft Corporation Расширения Интернета для Win32 131795770645381706 0x746e0000 32768 C:\Windows\SysWOW64\VERSION.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Version Checking and File Installation Libraries 131795770645381706 0x746f0000 106496 C:\Windows\SysWOW64\USERENV.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Userenv 131795770645381706 0x74710000 90112 C:\Windows\SysWOW64\MPR.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека маршрутизации для нескольких служб доступа 131795770645381706 0x74730000 598016 C:\Windows\SysWOW64\apphelp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиентская библиотека совместимости приложений 131795770645381706 0x747d0000 40960 C:\Windows\SysWOW64\CRYPTBASE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base cryptographic API DLL 131795770645381706 0x747e0000 126976 C:\Windows\SysWOW64\SspiCli.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Security Support Provider Interface 131795770645381706 0x74910000 2170880 C:\Windows\SysWOW64\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795770645381706 0x74b30000 53248 C:\Windows\SysWOW64\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795770645381706 0x74b40000 102400 C:\Windows\SysWOW64\imagehlp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT Image Helper 131795770645381706 0x74b60000 790528 C:\Windows\SysWOW64\RPCRT4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795770645381706 0x74c30000 1417216 C:\Windows\SysWOW64\gdi32full.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation GDI Client DLL 131795770645381706 0x74d90000 24576 C:\Windows\SysWOW64\PSAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Process Status Helper 131795770645381706 0x74da0000 778240 C:\Windows\SysWOW64\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795770645381706 0x74e60000 557056 C:\Windows\SysWOW64\shcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795770645381706 0x74ef0000 540672 C:\Windows\SysWOW64\clbcatq.dll 2001.12.10941.16384 (rs1_release.160715-1616) Microsoft Corporation COM+ Configuration Catalog 131795770645381706 0x74f80000 278528 C:\Windows\SysWOW64\WINTRUST.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation Microsoft Trust Verification APIs 131795770645381706 0x74fd0000 405504 C:\Windows\SysWOW64\WS2_32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation 32-разрядная библиотека Windows Socket 2.0 131795770645381706 0x75040000 282624 C:\Windows\SysWOW64\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795770645381706 0x751d0000 57344 C:\Windows\SysWOW64\MSASN1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ASN.1 Runtime APIs 131795770645381706 0x751e0000 1708032 C:\Windows\SysWOW64\KERNELBASE.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645381706 0x75390000 266240 C:\Windows\SysWOW64\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795770645381706 0x753e0000 1560576 C:\Windows\SysWOW64\CRYPT32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API32 криптографии 131795770645381706 0x75560000 487424 C:\Windows\SysWOW64\ADVAPI32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795770645381706 0x756c0000 5693440 C:\Windows\SysWOW64\windows.storage.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API хранения Microsoft WinRT 131795770645381706 0x75c30000 372736 C:\Windows\SysWOW64\coml2.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft COM for Windows 131795770645381706 0x75c90000 286720 C:\Windows\SysWOW64\shlwapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека небольших программ оболочки 131795770645381706 0x75ce0000 20811776 C:\Windows\SysWOW64\SHELL32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Общая библиотека оболочки Windows 131795770645381706 0x770c0000 4239360 C:\Windows\SysWOW64\SETUPAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Setup API 131795770645381706 0x774d0000 86016 C:\Windows\SysWOW64\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795770645381706 0x774f0000 61440 C:\Windows\SysWOW64\profapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Profile Basic API 131795770645381706 0x77560000 1437696 C:\Windows\SysWOW64\USER32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795770645381706 0x776c0000 368640 C:\Windows\SysWOW64\bcryptPrimitives.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation Windows Cryptographic Primitives Library 131795770645381706 0x77780000 503808 C:\Windows\SysWOW64\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645381706 0x77800000 606208 C:\Windows\SysWOW64\OLEAUT32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795770645381706 0x77ac0000 966656 C:\Windows\SysWOW64\ole32.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft OLE для Windows 131795770645381706 0x77bb0000 176128 C:\Windows\SysWOW64\GDI32.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation GDI Client DLL 131795770645381706 0x77cd0000 221184 C:\Windows\SysWOW64\cfgmgr32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Configuration Manager DLL 131795770645381706 0x77d10000 28672 C:\Windows\SysWOW64\NSI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation NSI User-mode interface DLL 131795770645381706 0x77d20000 1585152 C:\Windows\SysWOW64\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 131795770645381706 0x7ffad0270000 1908736 C:\Windows\SYSTEM32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 50 6340 6724 49 00000000:0031f1ab 131765803510844292 0 0 0 Обязательная метка\Высокий обязательный уровень WIN-0UOTFKKVN1S\User QHSafeTray.exe C:\Program Files (x86)\360\Total Security\safemon\QHSafeTray.exe /showtrayicon Qihoo 360 Technology Co. Ltd. 10,0,0,1024 360 Total Security 131795770645381850 0xec0000 2351104 C:\Program Files (x86)\360\Total Security\safemon\QHSafeTray.exe 10,0,0,1024 Qihoo 360 Technology Co. Ltd. 360 Total Security 131795770645381850 0x68f0000 12288 C:\Windows\SysWOW64\sfc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows File Protection 131795770645381850 0x5c020000 335872 C:\Windows\System32\wow64.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation Win32 Emulation on NT64 131795770645381850 0x5c080000 487424 C:\Windows\System32\wow64win.dll 10.0.14393.1884 (rs1_release.171101-1233) Microsoft Corporation Wow64 Console and Win32 API Logging 131795770645381850 0x5c100000 40960 C:\Windows\System32\wow64cpu.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation AMD64 Wow64 CPU 131795770645381850 0x5c480000 245760 C:\Program Files (x86)\360\Total Security\PDown.dll 1, 3, 0, 1420 Qihu 360 Software Co., Ltd. 360 Security Center Network Module 131795770645381850 0x5fe30000 581632 C:\Program Files (x86)\360\Total Security\safemon\wdui2.dll 9,6,0,1001 131795770645381850 0x60020000 413696 C:\Program Files (x86)\360\Total Security\netmon\360netctrl.dll 5, 3, 15, 2232 360.cn 360 Total Security NetwokrMonCtrl 131795770645381850 0x60090000 335872 C:\Program Files (x86)\360\Total Security\safemon\netmon.tpi 5, 1, 1, 3157 Qihoo 360 Technology Co. Ltd. 360安全卫士 流量防火墙模块 131795770645381850 0x60350000 1331200 C:\Program Files (x86)\360\Total Security\ToolBox.dll 1, 0, 0, 1094 Qihoo 360 Technology Co. Ltd. 360 Total Security 131795770645381850 0x60600000 200704 C:\Program Files (x86)\360\Total Security\safemon\WDRecord.dll 1, 0, 1, 1130 Qihu 360 Software Co., Ltd. 360 Internet Security Internet Protection 131795770645381850 0x606b0000 598016 C:\Program Files (x86)\360\Total Security\safemon\spsafe.dll 1, 0, 0, 1120 Qihu 360 Software Co., Ltd. 360 Internet Security Internet Protection 131795770645381850 0x60750000 1556480 C:\Program Files (x86)\360\Total Security\safemon\safemon.dll 8, 4, 0, 1420 Qihu 360 Software Co., Ltd. 360 Internet Security Internet Protection 131795770645381850 0x608d0000 159744 C:\Program Files (x86)\360\Total Security\safemon\safemonhlp.dll 1, 0, 0, 1265 Qihu 360 Software Co., Ltd. 360 Internet Security Internet Protection 131795770645381850 0x609b0000 241664 C:\Program Files (x86)\360\Total Security\safemon\360GuardBase.dll 3, 1, 0, 1060 360.cn 360保镖 131795770645381850 0x60ad0000 352256 C:\Program Files (x86)\360\Total Security\360Common.dll 7, 3, 0, 3233 360.cn 360安全衛士 基礎模塊 131795770645381850 0x60b30000 1712128 C:\Program Files (x86)\360\Total Security\safemon\360safemonpro.tpi 3, 1, 1, 3140 Qihu 360 Software Co., Ltd. 360 Internet Security Internet Protection 131795770645381850 0x60ce0000 581632 C:\Program Files (x86)\360\Total Security\dynlenv.dll 1, 1, 0, 1016 360.cn dynlenv Dynamic Link Library 131795770645381850 0x61070000 393216 C:\Program Files (x86)\360\Total Security\safemon\SomProxy.dll 1, 0, 0, 1900 Qihu 360 Software Co., Ltd. 360 Internet Security Internet Protection 131795770645381850 0x611e0000 1662976 C:\Program Files (x86)\360\Total Security\safemon\360connect.tpi 9,2,0,1030 QIHU 360 SOFTWARE CO. LIMITED 360 Connect 131795770645381850 0x61380000 315392 C:\Program Files (x86)\360\Total Security\safemon\360bsmon.tpi 6, 8, 0, 1248 Qihu 360 Software Co., Ltd. 360 Total Security Active Protection 131795770645381850 0x613d0000 667648 C:\Windows\WinSxS\x86_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.9247_none_5090cb78bcba4a35\MSVCR90.dll 9.00.30729.9247 Microsoft Corporation Microsoft® C Runtime Library 131795770645381850 0x618c0000 1478656 C:\Program Files (x86)\360\Total Security\sites.dll 11, 1, 0, 1212 360.cn 360安全卫士 131795770645381850 0x61a30000 512000 C:\Program Files (x86)\360\Total Security\safemon\360hipsPopWnd.dll 7,3,2,1211 Qihoo 360 Technology Co. Ltd. 360 Internet Security Proactive Defense 131795770645381850 0x61b30000 3350528 C:\Program Files (x86)\360\Total Security\softmgr\somkernl.dll 2, 1, 0, 1130 360.cn 360软件管家 131795770645381850 0x61e70000 614400 C:\Program Files (x86)\360\Total Security\ipc\ipcservice.dll 7, 1, 2, 1643 Qihu 360 Software Co., Ltd. 360 Total Security Proactive Defense 131795770645381850 0x61f10000 1458176 C:\Program Files (x86)\360\Total Security\deepscan\Cloudcom2.dll 3, 3, 10, 1288 Qihu 360 Software Co., Ltd. 360 Total Security 131795770645381850 0x62210000 446464 C:\Program Files (x86)\360\Total Security\360TSCommon.dll 9, 0, 0, 1016 QIHU 360 SOFTWARE CO. LIMITED 360 Total Security 131795770645381850 0x622f0000 520192 C:\Program Files (x86)\360\Total Security\deepscan\heavygate.dll 3, 8, 11, 1 Qihu 360 Software Co., Ltd. 360 Total Security Cloud Security 131795770645381850 0x62370000 602112 C:\Program Files (x86)\360\Total Security\360util.dll 1.0.0.1485 360.cn 360安全卫士 公共模块 131795770645381850 0x62410000 352256 C:\Program Files (x86)\360\Total Security\CrashReport.dll 7, 0, 0, 1000 360.cn 360杀毒 异常捕获程序 131795770645381850 0x62540000 278528 C:\Program Files (x86)\360\Total Security\360conf.dll 1, 0, 0, 1014 Qihu 360 Software Co., Ltd. 360 Internet Security Base Module 131795770645381850 0x62590000 987136 C:\Program Files (x86)\360\Total Security\360base.dll 1, 0, 0, 1165 360.cn 360安全卫士 基础模块 131795770645381850 0x62690000 266240 C:\Program Files (x86)\360\Total Security\deepscan\BAPI.dll 2.0.0.1191 360.cn BAPI 131795770645381850 0x627d0000 249856 C:\Windows\SysWOW64\edputil.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служебная программа EDP 131795770645381850 0x62960000 77824 C:\Program Files (x86)\360\Total Security\safemon\CleanPlusCache.tpi 1, 0, 0, 1004 QIHU 360 SOFTWARE CO. LIMITED CleanPlusCache 131795770645381850 0x62980000 376832 C:\Program Files (x86)\360\Total Security\360NetBase.dll 7, 25, 0, 76 360.cn 360安全卫士 网络基础模块 131795770645381850 0x67500000 1597440 C:\Windows\SysWOW64\ActXPrxy.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation ActiveX Interface Marshaling Library 131795770645381850 0x67690000 61440 C:\Windows\SysWOW64\sfc_os.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows File Protection 131795770645381850 0x676a0000 61440 C:\Program Files (x86)\360\Total Security\ipc\x64for32lib.dll 6, 8, 0, 1059 360.cn 360安全卫士 木马防火墙模块 131795771279916892 0x68850000 2764800 C:\Windows\SysWOW64\msftedit.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Элемент управления "Поле ввода форматированного текста", версия 8.5 131795770645381850 0x6b6d0000 102400 C:\Program Files (x86)\360\Total Security\i18n.dll 1, 0, 0, 1016 Qihu 360 Software Co., Ltd. 360 Total Security 131795770645381850 0x6bf00000 3715072 C:\Windows\SysWOW64\msi.dll 5.0.14393.2155 Microsoft Corporation Windows Installer 131795770645381850 0x6c290000 987136 C:\Windows\SysWOW64\twinapi.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation twinapi.appcore 131795770645381850 0x6c390000 1126400 C:\Windows\SysWOW64\dcomp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft DirectComposition Library 131795770645381850 0x6c4b0000 278528 C:\Windows\SysWOW64\dataexchange.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation Data exchange 131795770645381850 0x6e6e0000 151552 C:\Windows\SysWOW64\globinputhost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Globalization Extension API for Input 131795770645381850 0x6e710000 335872 C:\Windows\SysWOW64\Bcp47Langs.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation BCP47 Language Classes 131795770645381850 0x6e770000 1269760 C:\Windows\SysWOW64\Windows.Globalization.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Globalization 131795770645381850 0x6eed0000 274432 C:\Windows\SysWOW64\thumbcache.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Кэш эскизов Майкрософт 131795770645381850 0x6fc70000 385024 C:\Windows\SysWOW64\FirewallAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API брандмауэра Windows 131795770645381850 0x6fcd0000 151552 C:\Windows\SysWOW64\dbgcore.DLL 10.0.14321.1024 (debuggers(dbg).160715-1616) Microsoft Windows Core Debugging Helpers 131795770645381850 0x700d0000 434176 C:\Windows\SysWOW64\WINSPOOL.DRV 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Драйвер диспетчера очереди Windows 131795770645381850 0x70140000 274432 C:\Windows\SysWOW64\WINSTA.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Winstation Library 131795770645381850 0x70340000 536576 C:\Windows\SysWOW64\dxgi.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation DirectX Graphics Infrastructure 131795770645381850 0x703d0000 2056192 C:\Windows\SysWOW64\DWrite.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Службы Microsoft DirectX Typography 131795770645381850 0x705e0000 344064 C:\Windows\SysWOW64\OLEACC.dll 7.2.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Active Accessibility Core Component 131795770645381850 0x70640000 1499136 C:\Windows\SysWOW64\WindowsCodecs.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Microsoft Windows Codecs Library 131795770645381850 0x707b0000 110592 C:\Windows\SysWOW64\ncryptsslp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft SChannel Provider 131795770645381850 0x707f0000 2293760 C:\Windows\SysWOW64\d3d11.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation Direct3D 11 Runtime 131795770645381850 0x70a40000 81920 C:\Windows\SysWOW64\NLAapi.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Network Location Awareness 2 131795770645381850 0x70a60000 90112 C:\Windows\SysWOW64\pnrpnsp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик пространства имен PNRP 131795770645381850 0x70a80000 409600 C:\Windows\SysWOW64\schannel.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик безопасности TLS/SSL 131795770645381850 0x70b40000 69632 C:\Windows\SysWOW64\mskeyprotect.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик защиты ключей (Майкрософт) 131795770645381850 0x70b70000 163840 C:\Windows\SysWOW64\ntmarta.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик Windows NT MARTA 131795770645381850 0x70ba0000 188416 C:\Windows\SysWOW64\FWPolicyIOMgr.dll 10.0.14393.2189 (rs1_release.180329-1711) Microsoft Corporation FwPolicyIoMgr DLL 131795770645381850 0x70bd0000 147456 C:\Windows\SysWOW64\fwbase.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Firewall Base DLL 131795770645381850 0x70c00000 49152 C:\Windows\SysWOW64\winrnr.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation LDAP RnR Provider DLL 131795770645381850 0x70c10000 73728 C:\Windows\SysWOW64\napinsp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик оболочки совместимости для имен электронной почты 131795770645381850 0x70c30000 114688 C:\Windows\SysWOW64\SRVCLI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Server Service Client DLL 131795770645381850 0x70ca0000 45056 C:\Windows\SysWOW64\NETUTILS.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API Helpers DLL 131795770645381850 0x70cc0000 65536 C:\Windows\SysWOW64\ondemandconnroutehelper.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation On Demand Connctiond Route Helper 131795770645381850 0x70e60000 176128 C:\Windows\SysWOW64\NTASN1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft ASN.1 API 131795770645381850 0x70fd0000 1331200 C:\Windows\SysWOW64\dbghelp.dll 10.0.14321.1024 (rs1_release.160715-1616) Microsoft Windows Image Helper 131795770645381850 0x71140000 77824 C:\Windows\SysWOW64\NETAPI32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API DLL 131795770645381850 0x71170000 466944 C:\Program Files (x86)\360\Total Security\deepscan\CQhCltHttpW.dll 1, 4, 0, 1030 QIHU 360 SOFTWARE CO. LIMITED 360 Internet Security Base Module 131795770645381850 0x71610000 77824 C:\Windows\SysWOW64\dhcpcsvc6.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиент DHCPv6 131795770645381850 0x725e0000 2273280 C:\Windows\SysWOW64\iertutil.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служебная программа времени выполнения для Internet Explorer 131795770645381850 0x728e0000 1372160 C:\Windows\SysWOW64\PROPSYS.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Система страниц свойств (Майкрософт) 131795770645381850 0x72b90000 126976 C:\Windows\SysWOW64\dwmapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Интерфейс API диспетчера окон рабочего стола (Майкрософт) 131795770645381850 0x72cc0000 1658880 C:\Windows\SysWOW64\urlmon.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширения OLE32 для Win32 131795770645381850 0x73a40000 32768 C:\Windows\SysWOW64\WINNSI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Network Store Information RPC interface 131795770645381850 0x73a50000 299008 C:\Windows\SysWOW64\fwpuclnt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API пользовательского режима FWP/IPsec 131795770645381850 0x73ab0000 32768 C:\Windows\SysWOW64\rasadhlp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Remote Access AutoDial Helper 131795770645381850 0x73ac0000 81920 C:\Windows\SysWOW64\dhcpcsvc.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служба DHCP-клиента 131795770645381850 0x73ae0000 40960 C:\Windows\SysWOW64\Secur32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Security Support Provider Interface 131795770645381850 0x73c50000 1478656 C:\Windows\WinSxS\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.14393.1715_none_f67438d2f2547a00\gdiplus.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Microsoft GDI+ 131795770645381850 0x73ee0000 61440 C:\Windows\SysWOW64\WTSAPI32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Remote Desktop Session Host Server SDK APIs 131795770645381850 0x73ef0000 24576 C:\Windows\SysWOW64\MSIMG32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation GDIEXT Client DLL 131795770645381850 0x73f00000 192512 C:\Windows\SysWOW64\IPHLPAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API вспомогательного приложения IP 131795770645381850 0x73f30000 512000 C:\Windows\SysWOW64\DNSAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Динамическая библиотека API DNS-клиента 131795770645381850 0x73ff0000 319488 C:\Windows\SysWOW64\mswsock.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширение поставщика службы API Microsoft Windows Sockets 2.0 131795770645381850 0x74060000 192512 C:\Windows\SysWOW64\rsaenh.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Enhanced Cryptographic Provider 131795770645381850 0x74110000 479232 C:\Windows\SysWOW64\uxtheme.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека тем UxTheme (Microsoft) 131795770645381850 0x74190000 110592 C:\Windows\SysWOW64\bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795770645381850 0x741b0000 77824 C:\Windows\SysWOW64\CRYPTSP.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Cryptographic Service Provider API 131795770645381850 0x741f0000 143360 C:\Windows\SysWOW64\WINMMBASE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base Multimedia Extension API DLL 131795770645381850 0x74230000 147456 C:\Windows\SysWOW64\WINMM.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation MCI API DLL 131795770645381850 0x74260000 2514944 C:\Windows\SysWOW64\WININET.dll 11.00.14393.447 (rs1_release_inmarket.161102-0100) Microsoft Corporation Расширения Интернета для Win32 131795770645381850 0x744d0000 2138112 C:\Windows\WinSxS\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.14393.953_none_89c2555adb023171\COMCTL32.dll 6.10 (rs1_release_inmarket.170303-1614) Microsoft Corporation Библиотека элементов управления взаимодействия с пользователем 131795770645381850 0x746e0000 32768 C:\Windows\SysWOW64\VERSION.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Version Checking and File Installation Libraries 131795770645381850 0x746f0000 106496 C:\Windows\SysWOW64\USERENV.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Userenv 131795770645381850 0x74730000 598016 C:\Windows\SysWOW64\apphelp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиентская библиотека совместимости приложений 131795770645381850 0x747d0000 40960 C:\Windows\SysWOW64\CRYPTBASE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base cryptographic API DLL 131795770645381850 0x747e0000 126976 C:\Windows\SysWOW64\SspiCli.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Security Support Provider Interface 131795770645381850 0x74800000 151552 C:\Windows\SysWOW64\IMM32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Multi-User Windows IMM32 API Client DLL 131795770645381850 0x74910000 2170880 C:\Windows\SysWOW64\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795770645381850 0x74b30000 53248 C:\Windows\SysWOW64\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795770645381850 0x74b40000 102400 C:\Windows\SysWOW64\imagehlp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT Image Helper 131795770645381850 0x74b60000 790528 C:\Windows\SysWOW64\RPCRT4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795770645381850 0x74c30000 1417216 C:\Windows\SysWOW64\gdi32full.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation GDI Client DLL 131795770645381850 0x74d90000 24576 C:\Windows\SysWOW64\PSAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Process Status Helper 131795770645381850 0x74da0000 778240 C:\Windows\SysWOW64\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795770645381850 0x74e60000 557056 C:\Windows\SysWOW64\shcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795770645381850 0x74ef0000 540672 C:\Windows\SysWOW64\clbcatq.dll 2001.12.10941.16384 (rs1_release.160715-1616) Microsoft Corporation COM+ Configuration Catalog 131795770645381850 0x74f80000 278528 C:\Windows\SysWOW64\WINTRUST.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation Microsoft Trust Verification APIs 131795770645381850 0x74fd0000 405504 C:\Windows\SysWOW64\WS2_32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation 32-разрядная библиотека Windows Socket 2.0 131795770645381850 0x75040000 282624 C:\Windows\SysWOW64\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795770645381850 0x75090000 1265664 C:\Windows\SysWOW64\MSCTF.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Серверная библиотека MSCTF 131795770645381850 0x751d0000 57344 C:\Windows\SysWOW64\MSASN1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ASN.1 Runtime APIs 131795770645381850 0x751e0000 1708032 C:\Windows\SysWOW64\KERNELBASE.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645381850 0x75390000 266240 C:\Windows\SysWOW64\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795770645381850 0x753e0000 1560576 C:\Windows\SysWOW64\CRYPT32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API32 криптографии 131795770645381850 0x75560000 487424 C:\Windows\SysWOW64\ADVAPI32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795770645381850 0x756c0000 5693440 C:\Windows\SysWOW64\windows.storage.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API хранения Microsoft WinRT 131795770645381850 0x75c30000 372736 C:\Windows\SysWOW64\coml2.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft COM for Windows 131795770645381850 0x75c90000 286720 C:\Windows\SysWOW64\shlwapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека небольших программ оболочки 131795770645381850 0x75ce0000 20811776 C:\Windows\SysWOW64\SHELL32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Общая библиотека оболочки Windows 131795770645381850 0x770c0000 4239360 C:\Windows\SysWOW64\SETUPAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Setup API 131795770645381850 0x774d0000 86016 C:\Windows\SysWOW64\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795770645381850 0x774f0000 61440 C:\Windows\SysWOW64\profapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Profile Basic API 131795770645381850 0x77560000 1437696 C:\Windows\SysWOW64\USER32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795770645381850 0x776c0000 368640 C:\Windows\SysWOW64\bcryptPrimitives.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation Windows Cryptographic Primitives Library 131795770645381850 0x77780000 503808 C:\Windows\SysWOW64\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645381850 0x77800000 606208 C:\Windows\SysWOW64\OLEAUT32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795770645381850 0x77ac0000 966656 C:\Windows\SysWOW64\ole32.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft OLE для Windows 131795770645381850 0x77bb0000 176128 C:\Windows\SysWOW64\GDI32.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation GDI Client DLL 131795770645381850 0x77cd0000 221184 C:\Windows\SysWOW64\cfgmgr32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Configuration Manager DLL 131795770645381850 0x77d10000 28672 C:\Windows\SysWOW64\NSI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation NSI User-mode interface DLL 131795770645381850 0x77d20000 1585152 C:\Windows\SysWOW64\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 131795770645381850 0x7ffad0270000 1908736 C:\Windows\SYSTEM32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 51 6860 6724 49 00000000:000003e7 131765803555957830 0 0 0 Обязательная метка\Обязательный уровень системы NT AUTHORITY\СИСТЕМА QHWatchdog.exe C:\Program Files (x86)\360\Total Security\safemon\QHWatchdog.exe "C:\Program Files (x86)\360\Total Security\safemon\QHWatchdog.exe" /watch QIHU 360 SOFTWARE CO. LIMITED 8,2,0,1000 360 Total Security 131795770645381936 0xdf0000 139264 C:\Program Files (x86)\360\Total Security\safemon\QHWatchdog.exe 8,2,0,1000 QIHU 360 SOFTWARE CO. LIMITED 360 Total Security 131795770645381936 0x5c020000 335872 C:\Windows\System32\wow64.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation Win32 Emulation on NT64 131795770645381936 0x5c080000 487424 C:\Windows\System32\wow64win.dll 10.0.14393.1884 (rs1_release.171101-1233) Microsoft Corporation Wow64 Console and Win32 API Logging 131795770645381936 0x5c100000 40960 C:\Windows\System32\wow64cpu.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation AMD64 Wow64 CPU 131795770645381936 0x74730000 598016 C:\Windows\SysWOW64\apphelp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиентская библиотека совместимости приложений 131795770645381936 0x747d0000 40960 C:\Windows\SysWOW64\CRYPTBASE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base cryptographic API DLL 131795770645381936 0x747e0000 126976 C:\Windows\SysWOW64\SspiCli.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Security Support Provider Interface 131795770645381936 0x74910000 2170880 C:\Windows\SysWOW64\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795770645381936 0x74b60000 790528 C:\Windows\SysWOW64\RPCRT4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795770645381936 0x74c30000 1417216 C:\Windows\SysWOW64\gdi32full.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation GDI Client DLL 131795770645381936 0x74da0000 778240 C:\Windows\SysWOW64\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795770645381936 0x74e60000 557056 C:\Windows\SysWOW64\shcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795770645381936 0x751e0000 1708032 C:\Windows\SysWOW64\KERNELBASE.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645381936 0x75390000 266240 C:\Windows\SysWOW64\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795770645381936 0x75560000 487424 C:\Windows\SysWOW64\ADVAPI32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795770645381936 0x755e0000 917504 C:\Windows\SysWOW64\KERNEL32.DLL 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645381936 0x75c90000 286720 C:\Windows\SysWOW64\SHLWAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека небольших программ оболочки 131795770645381936 0x774d0000 86016 C:\Windows\SysWOW64\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795770645381936 0x77560000 1437696 C:\Windows\SysWOW64\USER32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795770645381936 0x776c0000 368640 C:\Windows\SysWOW64\bcryptPrimitives.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation Windows Cryptographic Primitives Library 131795770645381936 0x77bb0000 176128 C:\Windows\SysWOW64\GDI32.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation GDI Client DLL 131795770645381936 0x77d20000 1585152 C:\Windows\SysWOW64\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 131795770645381936 0x7ffad0270000 1908736 C:\Windows\SYSTEM32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 52 5924 664 6 00000000:000003e4 131765805232900810 0 0 0 Обязательная метка\Обязательный уровень системы NT AUTHORITY\NETWORK SERVICE wmiprvse.exe C:\Windows\sysWOW64\wbem\wmiprvse.exe C:\Windows\sysWOW64\wbem\wmiprvse.exe -Embedding Microsoft Corporation 10.0.14393.2155 (rs1_release_1.180305-1842) WMI Provider Host 131795770645382027 0x950000 434176 C:\Windows\sysWOW64\wbem\wmiprvse.exe 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation WMI Provider Host 131795770645382027 0x5c020000 335872 C:\Windows\System32\wow64.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation Win32 Emulation on NT64 131795770645382027 0x5c080000 487424 C:\Windows\System32\wow64win.dll 10.0.14393.1884 (rs1_release.171101-1233) Microsoft Corporation Wow64 Console and Win32 API Logging 131795770645382027 0x5c100000 40960 C:\Windows\System32\wow64cpu.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation AMD64 Wow64 CPU 131795770645382027 0x5fec0000 794624 C:\Windows\SysWOW64\wbem\FastProx.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation WMI Custom Marshaller 131795770645382027 0x5ffa0000 421888 C:\Windows\SysWOW64\wbemcomn.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation WMI 131795770645382027 0x60130000 36864 C:\Windows\SysWOW64\storagewmi_passthru.dll 10.0.14393.103 (rs1_release_inmarket.160819-1924) Microsoft Corporation WMI PassThru Provider for Storage Management 131795770645382027 0x60140000 114688 C:\Windows\SysWOW64\wbem\wmiutils.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation WMI 131795770645382027 0x60160000 73728 C:\Windows\SysWOW64\NCObjAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation 131795770645382027 0x604d0000 36864 C:\Windows\SysWOW64\delegatorprovider.dll 10.0.14393.103 (rs1_release_inmarket.160819-1924) Microsoft Corporation WMI PassThru Provider for Storage Management 131795770645382027 0x74190000 110592 C:\Windows\SysWOW64\bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795770645382027 0x747d0000 40960 C:\Windows\SysWOW64\CRYPTBASE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base cryptographic API DLL 131795770645382027 0x747e0000 126976 C:\Windows\SysWOW64\SspiCli.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Security Support Provider Interface 131795770645382027 0x74910000 2170880 C:\Windows\SysWOW64\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795770645382027 0x74b30000 53248 C:\Windows\SysWOW64\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795770645382027 0x74b60000 790528 C:\Windows\SysWOW64\RPCRT4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795770645382027 0x74c30000 1417216 C:\Windows\SysWOW64\gdi32full.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation GDI Client DLL 131795770645382027 0x74da0000 778240 C:\Windows\SysWOW64\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795770645382027 0x74ef0000 540672 C:\Windows\SysWOW64\clbcatq.dll 2001.12.10941.16384 (rs1_release.160715-1616) Microsoft Corporation COM+ Configuration Catalog 131795770645382027 0x74fd0000 405504 C:\Windows\SysWOW64\WS2_32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation 32-разрядная библиотека Windows Socket 2.0 131795770645382027 0x751e0000 1708032 C:\Windows\SysWOW64\KERNELBASE.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645382027 0x75390000 266240 C:\Windows\SysWOW64\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795770645382027 0x75560000 487424 C:\Windows\SysWOW64\advapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795770645382027 0x755e0000 917504 C:\Windows\SysWOW64\KERNEL32.DLL 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645382027 0x774d0000 86016 C:\Windows\SysWOW64\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795770645382027 0x77560000 1437696 C:\Windows\SysWOW64\user32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795770645382027 0x776c0000 368640 C:\Windows\SysWOW64\bcryptPrimitives.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation Windows Cryptographic Primitives Library 131795770645382027 0x77780000 503808 C:\Windows\SysWOW64\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645382027 0x77800000 606208 C:\Windows\SysWOW64\OLEAUT32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795770645382027 0x77bb0000 176128 C:\Windows\SysWOW64\GDI32.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation GDI Client DLL 131795770645382027 0x77d20000 1585152 C:\Windows\SysWOW64\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 131795770645382027 0x7ffad0270000 1908736 C:\Windows\SYSTEM32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 54 4408 348 24 00000000:0031f1ab 131765812380694767 0 0 1 Обязательная метка\Высокий обязательный уровень WIN-0UOTFKKVN1S\User taskhostw.exe C:\Windows\system32\taskhostw.exe taskhostw.exe Microsoft Corporation 10.0.14393.0 (rs1_release.160715-1616) Хост-процесс для задач Windows 131795770645382224 0x17826230000 12288 C:\Windows\SYSTEM32\sfc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows File Protection 131795770645382224 0x7ff794e10000 102400 C:\Windows\system32\taskhostw.exe 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Хост-процесс для задач Windows 131795770645382224 0x7ffab1140000 1134592 C:\Windows\System32\ReAgent.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL агента восстановления Microsoft Windows 131795770645382224 0x7ffab1c40000 1302528 C:\Windows\System32\LicenseManager.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation LicenseManager 131795770645382224 0x7ffab8da0000 1675264 C:\Windows\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.14393.1715_none_aec701fbddd850fa\gdiplus.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Microsoft GDI+ 131795770645382224 0x7ffab93b0000 897024 C:\Windows\System32\TokenBroker.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Token Broker 131795770645382224 0x7ffabafc0000 700416 C:\Windows\system32\wer.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека сообщений об ошибках Windows 131795770645382224 0x7ffabb2b0000 1089536 C:\Windows\system32\SettingSyncCore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Setting Synchronization Core 131795770645382224 0x7ffabbd20000 106496 C:\Windows\SYSTEM32\settingsyncpolicy.dll 10.0.14393.82 (rs1_release.160805-1735) Microsoft Corporation SettingSync Policy 131795770645382224 0x7ffabe000000 409600 C:\Windows\system32\WinSATAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows System Assessment Tool API 131795770645382224 0x7ffabe850000 155648 C:\Windows\System32\IDStore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Identity Store 131795770645382224 0x7ffabef80000 69632 C:\Windows\SYSTEM32\sfc_os.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows File Protection 131795770645382224 0x7ffabefd0000 258048 C:\Windows\system32\AEPIC.dll 10.0.17060.1029 (WinBuild.160101.0800) Microsoft Corporation Application Experience Program Cache 131795770645382224 0x7ffabf050000 225280 C:\Windows\System32\sdiageng.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Подсистема выполнения сценариев диагностики 131795770645382224 0x7ffabf1d0000 192512 C:\Windows\system32\cryptnet.dll 10.0.14393.2035 (rs1_release_inmarket.180110-1910) Microsoft Corporation Crypto Network Related API 131795770645382224 0x7ffabf330000 2457600 C:\Windows\System32\msxml6.dll 6.30.14393.2156 Microsoft Corporation MSXML 6.0 131795770645382224 0x7ffabfbe0000 1011712 C:\Windows\System32\Windows.Security.Authentication.OnlineId.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation Windows Runtime OnlineId Authentication DLL 131795770645382224 0x7ffabff60000 135168 C:\Windows\system32\ncryptsslp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft SChannel Provider 131795770645382224 0x7ffac0ad0000 86016 C:\Windows\SYSTEM32\mskeyprotect.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик защиты ключей (Майкрософт) 131795770645382224 0x7ffac0bf0000 3559424 C:\Windows\System32\ActXPrxy.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation ActiveX Interface Marshaling Library 131795770645382224 0x7ffac1d60000 589824 C:\Windows\system32\webio.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API протоколов передачи по Веб 131795770645382224 0x7ffac23c0000 331776 C:\Windows\System32\OneCoreCommonProxyStub.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation OneCore Common Proxy Stub 131795770645382224 0x7ffac2750000 106496 C:\Windows\System32\bcd.dll 10.0.14393.1794 (rs1_release.171008-1615) Microsoft Corporation BCD DLL 131795770645382224 0x7ffac2b80000 40960 C:\Windows\system32\VERSION.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Version Checking and File Installation Libraries 131795770645382224 0x7ffac2c30000 135168 C:\Windows\System32\CLIPC.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиент платформы лицензирования клиента 131795770645382224 0x7ffac3810000 167936 C:\Windows\System32\Cabinet.dll 5.00 (rs1_release.160715-1616) Microsoft Corporation Microsoft® Cabinet File API 131795770645382224 0x7ffac3cb0000 2772992 C:\Windows\SYSTEM32\iertutil.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служебная программа времени выполнения для Internet Explorer 131795770645382224 0x7ffac4000000 274432 C:\Windows\SYSTEM32\policymanager.dll 10.0.14393.2035 (rs1_release_inmarket.180110-1910) Microsoft Corporation Policy Manager DLL 131795770645382224 0x7ffac4050000 118784 C:\Windows\System32\wdi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Инфраструктура диагностики Windows 131795770645382224 0x7ffac4ae0000 69632 C:\Windows\System32\sdiagschd.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Запланированная задача сценариев проверки 131795770645382224 0x7ffac4b00000 45056 C:\Windows\System32\MemoryDiagnostic.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Обработчик задач средства проверки памяти Windows (Майкрософт) 131795770645382224 0x7ffac5c80000 90112 C:\Windows\System32\TempSignedLicenseExchangeTask.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation TempSignedLicenseExchangeTask Task 131795770645382224 0x7ffac60e0000 221184 C:\Windows\system32\XmlLite.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft XmlLite Library 131795770645382224 0x7ffac6610000 40960 C:\Windows\System32\rasadhlp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Remote Access AutoDial Helper 131795790155731176 0x7ffac66a0000 86016 C:\Windows\System32\OnDemandConnRouteHelper.dll 10.0.14393.351 (rs1_release_inmarket.161014-1755) Microsoft Corporation On Demand Connctiond Route Helper 131795770645382224 0x7ffac69c0000 839680 C:\Windows\system32\WINHTTP.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Службы HTTP Windows 131795770645382224 0x7ffac6c40000 2596864 C:\Windows\WinSxS\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.14393.953_none_42151e83c686086b\COMCTL32.dll 6.10 (rs1_release_inmarket.170303-1614) Microsoft Corporation Библиотека элементов управления взаимодействия с пользователем 131795770645382224 0x7ffac79c0000 57344 C:\Windows\System32\npmproxy.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Network List Manager Proxy 131795770645382224 0x7ffac83d0000 106496 C:\Windows\SYSTEM32\dhcpcsvc.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служба DHCP-клиента 131795770645382224 0x7ffac83f0000 90112 C:\Windows\SYSTEM32\dhcpcsvc6.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиент DHCPv6 131795790158890250 0x7ffac8420000 434176 C:\Windows\System32\FWPUCLNT.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API пользовательского режима FWP/IPsec 131795770645382224 0x7ffac8810000 45056 C:\Windows\SYSTEM32\WINNSI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Network Store Information RPC interface 131795770645382224 0x7ffac8cf0000 815104 C:\Windows\System32\taskschd.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Task Scheduler COM API 131795770645382224 0x7ffac8dc0000 167936 C:\Windows\system32\dbgcore.DLL 10.0.14321.1024 (debuggers(dbg).160715-1616) Microsoft Windows Core Debugging Helpers 131795770645382224 0x7ffac8df0000 1646592 C:\Windows\system32\dbghelp.dll 10.0.14321.1024 (rs1_release.160715-1616) Microsoft Windows Image Helper 131795770645382224 0x7ffac9220000 397312 C:\Windows\System32\wevtapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API настройки и использования событий 131795770645382224 0x7ffac92e0000 1269760 C:\Windows\System32\WinTypes.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL основных типов Windows 131795770645382224 0x7ffac9f10000 221184 C:\Windows\System32\netprofm.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Network List Manager 131795770645382224 0x7ffaca200000 32768 C:\Windows\System32\ReAgentTask.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Обработчик задач агента восстановления Microsoft Windows 131795770645382224 0x7ffaca210000 225280 C:\Windows\system32\RstrtMgr.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Диспетчер перезапуска 131795770645382224 0x7ffaca4e0000 77824 C:\Windows\SYSTEM32\wtsapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Remote Desktop Session Host Server SDK APIs 131795770645382224 0x7ffaca5e0000 155648 C:\Windows\system32\dwmapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Интерфейс API диспетчера окон рабочего стола (Майкрософт) 131795770645382224 0x7ffaca610000 143360 C:\Windows\System32\SAMLIB.dll 10.0.14393.82 (rs1_release.160805-1735) Microsoft Corporation SAM Library DLL 131795770645382224 0x7ffacac00000 94208 C:\Windows\system32\radarrs.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation программа устранения нехватки системных ресурсов Microsoft Windows 131795770645382224 0x7ffacaf00000 610304 C:\Windows\system32\uxtheme.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека тем UxTheme (Microsoft) 131795770645382224 0x7ffacb140000 593920 C:\Windows\SYSTEM32\msvcp110_win.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Microsoft® STL110 C++ Runtime Library 131795770645382224 0x7ffacb1e0000 1163264 C:\Windows\System32\twinapi.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation twinapi.appcore 131795770645382224 0x7ffacb420000 204800 C:\Windows\SYSTEM32\ntmarta.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик Windows NT MARTA 131795770645382224 0x7ffacb6f0000 143360 C:\Windows\SYSTEM32\gpapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиентские функции API групповой политики 131795770645382224 0x7ffacb780000 651264 C:\Windows\system32\dxgi.dll 10.0.14393.953 (rs1_release_inmarket.170303-1614) Microsoft Corporation DirectX Graphics Infrastructure 131795770645382224 0x7ffacbaf0000 495616 C:\Windows\system32\schannel.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик безопасности TLS/SSL 131795770645382224 0x7ffacbbb0000 208896 C:\Windows\system32\rsaenh.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Enhanced Cryptographic Provider 131795770645382224 0x7ffacbbf0000 40960 C:\Windows\System32\DPAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Data Protection API 131795770645382224 0x7ffacbd30000 229376 C:\Windows\SYSTEM32\IPHLPAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API вспомогательного приложения IP 131795770645382224 0x7ffacbd70000 659456 C:\Windows\system32\DNSAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Динамическая библиотека API DNS-клиента 131795770645382224 0x7ffacbe40000 126976 C:\Windows\system32\USERENV.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Userenv 131795770645382224 0x7ffacbfb0000 376832 C:\Windows\system32\mswsock.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширение поставщика службы API Microsoft Windows Sockets 2.0 131795770645382224 0x7ffacc150000 94208 C:\Windows\system32\CRYPTSP.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Cryptographic Service Provider API 131795770645382224 0x7ffacc170000 45056 C:\Windows\system32\CRYPTBASE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base cryptographic API DLL 131795770645382224 0x7ffacc1f0000 241664 C:\Windows\system32\NTASN1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft ASN.1 API 131795770645382224 0x7ffacc230000 155648 C:\Windows\system32\ncrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Маршрутизатор Windows NCrypt 131795770645382224 0x7ffacc350000 180224 C:\Windows\system32\SspiCli.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Security Support Provider Interface 131795770645382224 0x7ffacc520000 622592 C:\Windows\SYSTEM32\sxs.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Fusion 2.5 131795770645382224 0x7ffacc620000 176128 C:\Windows\system32\bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795770645382224 0x7ffacc6e0000 61440 C:\Windows\System32\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795770645382224 0x7ffacc6f0000 311296 C:\Windows\System32\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795770645382224 0x7ffacc740000 81920 C:\Windows\System32\profapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Profile Basic API 131795770645382224 0x7ffacc760000 65536 C:\Windows\System32\MSASN1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ASN.1 Runtime APIs 131795770645382224 0x7ffacc8f0000 1003520 C:\Windows\System32\ucrtbase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645382224 0x7ffacc9f0000 434176 C:\Windows\System32\bcryptPrimitives.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Cryptographic Primitives Library 131795770645382224 0x7ffacca60000 122880 C:\Windows\System32\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795770645382224 0x7ffacca80000 348160 C:\Windows\System32\WINTRUST.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation Microsoft Trust Verification APIs 131795770645382224 0x7ffaccae0000 692224 C:\Windows\System32\shcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795770645382224 0x7ffaccb90000 7180288 C:\Windows\System32\windows.storage.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API хранения Microsoft WinRT 131795770645382224 0x7ffacd270000 2215936 C:\Windows\System32\KERNELBASE.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645382224 0x7ffacd490000 1871872 C:\Windows\System32\CRYPT32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API32 криптографии 131795770645382224 0x7ffacd710000 638976 C:\Windows\System32\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645382224 0x7ffacd7b0000 270336 C:\Windows\System32\cfgmgr32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Configuration Manager DLL 131795770645382224 0x7ffacd810000 22056960 C:\Windows\System32\SHELL32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Общая библиотека оболочки Windows 131795770645382224 0x7ffaced20000 782336 C:\Windows\System32\OLEAUT32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795770645382224 0x7ffacee50000 1183744 C:\Windows\System32\RPCRT4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795770645382224 0x7ffacef80000 32768 C:\Windows\System32\NSI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation NSI User-mode interface DLL 131795770645382224 0x7ffacef90000 647168 C:\Windows\System32\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795770645382224 0x7ffacf030000 651264 C:\Windows\System32\clbcatq.dll 2001.12.10941.16384 (rs1_release.160715-1616) Microsoft Corporation COM+ Configuration Catalog 131795770645382224 0x7ffacf0d0000 704512 C:\Windows\System32\KERNEL32.DLL 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645382224 0x7ffacf1e0000 1417216 C:\Windows\System32\MSCTF.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Серверная библиотека MSCTF 131795770645382224 0x7ffacf340000 4362240 C:\Windows\System32\SETUPAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Setup API 131795770645382224 0x7ffacf770000 212992 C:\Windows\System32\GDI32.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation GDI Client DLL 131795770645382224 0x7ffacf820000 434176 C:\Windows\System32\WS2_32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation 32-разрядная библиотека Windows Socket 2.0 131795770645382224 0x7ffacf890000 188416 C:\Windows\System32\imm32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Multi-User Windows IMM32 API Client DLL 131795770645382224 0x7ffacf8c0000 1462272 C:\Windows\System32\USER32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795770645382224 0x7ffacfb30000 2916352 C:\Windows\System32\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795770645382224 0x7ffacfe00000 114688 C:\Windows\System32\imagehlp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT Image Helper 131795770645382224 0x7ffacfe20000 663552 C:\Windows\System32\ADVAPI32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795770645382224 0x7ffad0070000 1277952 C:\Windows\System32\ole32.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft OLE для Windows 131795770645382224 0x7ffad01b0000 335872 C:\Windows\System32\SHLWAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека небольших программ оболочки 131795770645382224 0x7ffad0210000 364544 C:\Windows\System32\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795770645382224 0x7ffad0270000 1908736 C:\Windows\SYSTEM32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 55 6944 664 6 00000000:0031f1da 131767576301455145 0 0 1 Обязательная метка\Низкий обязательный уровень WIN-0UOTFKKVN1S\User SkypeHost.exe C:\Program Files\WindowsApps\Microsoft.SkypeApp_12.1815.210.0_x64__kzf8qxf38zg5c\SkypeHost.exe "C:\Program Files\WindowsApps\Microsoft.SkypeApp_12.1815.210.0_x64__kzf8qxf38zg5c\SkypeHost.exe" -ServerName:SkypeHost.ServerServer Microsoft Corporation 12.1815.210.0 Microsoft Skype 131795770645382388 0x7ff7e8670000 102400 C:\Program Files\WindowsApps\Microsoft.SkypeApp_12.1815.210.0_x64__kzf8qxf38zg5c\SkypeHost.exe 12.1815.210.0 Microsoft Corporation Microsoft Skype 131795770645382388 0x7ffaae130000 22437888 C:\Program Files\WindowsApps\Microsoft.SkypeApp_12.1815.210.0_x64__kzf8qxf38zg5c\SkyWrap.dll 12.1815.210.0 Microsoft Corporation Microsoft Skype 131795770645382388 0x7ffabaab0000 94208 C:\Windows\SYSTEM32\profext.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation profext 131795770645382388 0x7ffabc530000 241664 C:\Windows\SYSTEM32\Windows.Networking.HostName.dll 10.0.14393.953 (rs1_release_inmarket.170303-1614) Microsoft Corporation Windows.Networking.HostName DLL 131795770645382388 0x7ffabca50000 819200 C:\Windows\System32\Windows.Security.Authentication.Web.Core.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Token Broker WinRT API 131795770645382388 0x7ffabe150000 2691072 C:\Program Files\WindowsApps\Microsoft.SkypeApp_12.1815.210.0_x64__kzf8qxf38zg5c\skypert.dll 2018.15.01.31 SkypeRT shared library 131795770645382388 0x7ffabea90000 135168 C:\Windows\System32\Windows.ApplicationModel.Background.SystemEventsBroker.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Background System Events Broker API Server 131795770645382388 0x7ffabeac0000 335872 C:\Windows\System32\Windows.Storage.ApplicationData.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Application Data API Server 131795770645382388 0x7ffac0470000 1478656 C:\Windows\SYSTEM32\MFPlat.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Media Foundation Platform DLL 131795770645382388 0x7ffac0910000 724992 C:\Windows\SYSTEM32\Windows.Networking.Connectivity.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Networking Connectivity Runtime DLL 131795770645382388 0x7ffac0bf0000 3559424 C:\Windows\System32\ActXPrxy.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation ActiveX Interface Marshaling Library 131795770645382388 0x7ffac1a80000 978944 C:\Windows\SYSTEM32\Windows.Networking.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows.Networking DLL 131795770645382388 0x7ffac1b90000 630784 C:\Program Files\WindowsApps\Microsoft.VCLibs.140.00_14.0.25426.0_x64__8wekyb3d8bbwe\MSVCP140_APP.dll 14.11.25426.0 built by: VCTOOLSREL Microsoft Corporation Microsoft® C Runtime Library 131795770645382388 0x7ffac1e50000 188416 C:\Windows\SYSTEM32\RTWorkQ.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL для WorkQueue реального времени 131795770645382388 0x7ffac23c0000 331776 C:\Windows\System32\OneCoreCommonProxyStub.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation OneCore Common Proxy Stub 131795770645382388 0x7ffac2b30000 286720 C:\Windows\System32\usermgrproxy.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation UserMgrProxy 131795770645382388 0x7ffac2c30000 135168 C:\Windows\SYSTEM32\clipc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиент платформы лицензирования клиента 131795770645382388 0x7ffac3cb0000 2772992 C:\Windows\System32\iertutil.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служебная программа времени выполнения для Internet Explorer 131795770645382388 0x7ffac4b10000 307200 C:\Program Files\WindowsApps\Microsoft.VCLibs.140.00_14.0.25426.0_x64__8wekyb3d8bbwe\CONCRT140_APP.dll 14.11.25426.0 built by: VCTOOLSREL Microsoft Corporation Microsoft® Concurrency Runtime Library 131795770645382388 0x7ffac4c60000 385024 C:\Program Files\WindowsApps\Microsoft.VCLibs.140.00_14.0.25426.0_x64__8wekyb3d8bbwe\vccorlib140_app.DLL 14.11.25426.0 built by: VCTOOLSREL Microsoft Corporation Microsoft ® VC WinRT core library 131795770645382388 0x7ffac5070000 798720 C:\Windows\System32\Windows.Web.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL веб-клиента 131795770645382388 0x7ffac6620000 192512 C:\Windows\System32\biwinrt.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation Windows Background Broker Infrastructure 131795770645382388 0x7ffac7580000 1077248 C:\Windows\SYSTEM32\mrmcorer.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Windows MRM 131795770645382388 0x7ffac7720000 1601536 C:\Windows\System32\OneCoreUAPCommonProxyStub.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation OneCoreUAP Common Proxy Stub 131795770645382388 0x7ffac7c80000 208896 C:\Program Files\WindowsApps\Microsoft.SkypeApp_12.1815.210.0_x64__kzf8qxf38zg5c\SkypeBackgroundTasks.dll 12.1815.210.0 Microsoft Corporation Microsoft Skype 131795770645382388 0x7ffac7d80000 49152 C:\Windows\System32\Windows.ApplicationModel.Background.TimeBroker.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Background Time Broker API Server 131795770645382388 0x7ffac8540000 286720 C:\Windows\System32\vaultcli.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиентская библиотека хранилища учетных данных 131795770645382388 0x7ffac92e0000 1269760 C:\Windows\System32\WinTypes.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL основных типов Windows 131795770645382388 0x7ffaca260000 45056 C:\Windows\SYSTEM32\SystemEventsBrokerClient.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation system Events Broker Client Library 131795770645382388 0x7ffaca340000 1593344 C:\Windows\SYSTEM32\PROPSYS.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Система страниц свойств (Майкрософт) 131795770645382388 0x7ffacab80000 90112 C:\Program Files\WindowsApps\Microsoft.VCLibs.140.00_14.0.25426.0_x64__8wekyb3d8bbwe\VCRUNTIME140_APP.dll 14.11.25426.0 built by: VCTOOLSREL Microsoft Corporation Microsoft® C Runtime Library 131795770645382388 0x7ffacb1e0000 1163264 C:\Windows\SYSTEM32\twinapi.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation twinapi.appcore 131795770645382388 0x7ffacb360000 176128 C:\Windows\SYSTEM32\fwbase.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Firewall Base DLL 131795770645382388 0x7ffacb420000 204800 C:\Windows\SYSTEM32\ntmarta.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик Windows NT MARTA 131795770645382388 0x7ffacb460000 548864 C:\Windows\SYSTEM32\FirewallAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API брандмауэра Windows 131795770645382388 0x7ffacbbf0000 40960 C:\Windows\SYSTEM32\DPAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Data Protection API 131795770645382388 0x7ffacbd30000 229376 C:\Windows\SYSTEM32\IPHLPAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API вспомогательного приложения IP 131795770645382388 0x7ffacbe40000 126976 C:\Windows\SYSTEM32\USERENV.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Userenv 131795770645382388 0x7ffacc170000 45056 C:\Windows\SYSTEM32\CRYPTBASE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base cryptographic API DLL 131795770645382388 0x7ffacc620000 176128 C:\Windows\SYSTEM32\bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795770645382388 0x7ffacc6e0000 61440 C:\Windows\System32\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795770645382388 0x7ffacc6f0000 311296 C:\Windows\System32\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795770645382388 0x7ffacc740000 81920 C:\Windows\System32\profapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Profile Basic API 131795770645382388 0x7ffacc760000 65536 C:\Windows\System32\MSASN1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ASN.1 Runtime APIs 131795770645382388 0x7ffacc8f0000 1003520 C:\Windows\System32\ucrtbase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645382388 0x7ffacc9f0000 434176 C:\Windows\System32\bcryptPrimitives.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Cryptographic Primitives Library 131795770645382388 0x7ffacca60000 122880 C:\Windows\System32\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795770645382388 0x7ffaccae0000 692224 C:\Windows\System32\shcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795770645382388 0x7ffaccb90000 7180288 C:\Windows\System32\windows.storage.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API хранения Microsoft WinRT 131795770645382388 0x7ffacd270000 2215936 C:\Windows\System32\KERNELBASE.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645382388 0x7ffacd490000 1871872 C:\Windows\System32\CRYPT32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API32 криптографии 131795770645382388 0x7ffacd710000 638976 C:\Windows\System32\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645382388 0x7ffacd7b0000 270336 C:\Windows\System32\cfgmgr32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Configuration Manager DLL 131795770645382388 0x7ffaced20000 782336 C:\Windows\System32\OLEAUT32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795770645382388 0x7ffacee50000 1183744 C:\Windows\System32\RPCRT4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795770645382388 0x7ffacef90000 647168 C:\Windows\System32\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795770645382388 0x7ffacf0d0000 704512 C:\Windows\System32\KERNEL32.DLL 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645382388 0x7ffacf770000 212992 C:\Windows\System32\GDI32.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation GDI Client DLL 131795770645382388 0x7ffacf820000 434176 C:\Windows\System32\WS2_32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation 32-разрядная библиотека Windows Socket 2.0 131795770645382388 0x7ffacf890000 188416 C:\Windows\System32\IMM32.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Multi-User Windows IMM32 API Client DLL 131795770645382388 0x7ffacf8c0000 1462272 C:\Windows\System32\USER32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795770645382388 0x7ffacfb30000 2916352 C:\Windows\System32\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795770645382388 0x7ffacfe20000 663552 C:\Windows\System32\advapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795770645382388 0x7ffad01b0000 335872 C:\Windows\System32\shlwapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека небольших программ оболочки 131795770645382388 0x7ffad0210000 364544 C:\Windows\System32\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795770645382388 0x7ffad0270000 1908736 C:\Windows\SYSTEM32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 56 1048 580 4 00000000:000003e7 131768729449405953 0 0 1 Обязательная метка\Обязательный уровень системы NT AUTHORITY\СИСТЕМА sedsvc.exe C:\Program Files\rempl\sedsvc.exe "C:\Program Files\rempl\sedsvc.exe" Microsoft Corporation 10.0.16299.10000 (WinBuild.160101.0800) sedsvc 131795770645382485 0x7ff751430000 307200 C:\Program Files\rempl\sedsvc.exe 10.0.16299.10000 (WinBuild.160101.0800) Microsoft Corporation sedsvc 131795770645382485 0x7ffabf5d0000 2924544 C:\Windows\SYSTEM32\WININET.dll 11.00.14393.447 (rs1_release_inmarket.161102-0100) Microsoft Corporation Расширения Интернета для Win32 131795770645382485 0x7ffac2b80000 40960 C:\Windows\SYSTEM32\VERSION.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Version Checking and File Installation Libraries 131795770645382485 0x7ffac69c0000 839680 C:\Windows\SYSTEM32\WINHTTP.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Службы HTTP Windows 131795770645382485 0x7ffac8cf0000 815104 C:\Windows\System32\taskschd.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Task Scheduler COM API 131795770645382485 0x7ffaca4e0000 77824 C:\Windows\SYSTEM32\WTSAPI32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Remote Desktop Session Host Server SDK APIs 131795770645382485 0x7ffacb6f0000 143360 C:\Windows\SYSTEM32\gpapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиентские функции API групповой политики 131795770645382485 0x7ffacbbb0000 208896 C:\Windows\system32\rsaenh.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Enhanced Cryptographic Provider 131795770645382485 0x7ffacc150000 94208 C:\Windows\SYSTEM32\CRYPTSP.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Cryptographic Service Provider API 131795770645382485 0x7ffacc170000 45056 C:\Windows\SYSTEM32\CRYPTBASE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base cryptographic API DLL 131795770645382485 0x7ffacc350000 180224 C:\Windows\System32\SspiCli.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Security Support Provider Interface 131795770645382485 0x7ffacc620000 176128 C:\Windows\SYSTEM32\bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795770645382485 0x7ffacc6e0000 61440 C:\Windows\System32\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795770645382485 0x7ffacc6f0000 311296 C:\Windows\System32\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795770645382485 0x7ffacc740000 81920 C:\Windows\System32\profapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Profile Basic API 131795770645382485 0x7ffacc760000 65536 C:\Windows\System32\MSASN1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ASN.1 Runtime APIs 131795770645382485 0x7ffacc8f0000 1003520 C:\Windows\System32\ucrtbase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645382485 0x7ffacc9f0000 434176 C:\Windows\System32\bcryptPrimitives.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Cryptographic Primitives Library 131795770645382485 0x7ffacca60000 122880 C:\Windows\System32\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795770645382485 0x7ffacca80000 348160 C:\Windows\System32\WINTRUST.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation Microsoft Trust Verification APIs 131795770645382485 0x7ffaccae0000 692224 C:\Windows\System32\shcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795770645382485 0x7ffaccb90000 7180288 C:\Windows\System32\windows.storage.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API хранения Microsoft WinRT 131795770645382485 0x7ffacd270000 2215936 C:\Windows\System32\KERNELBASE.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645382485 0x7ffacd490000 1871872 C:\Windows\System32\CRYPT32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API32 криптографии 131795770645382485 0x7ffacd710000 638976 C:\Windows\System32\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645382485 0x7ffacd7b0000 270336 C:\Windows\System32\cfgmgr32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Configuration Manager DLL 131795770645382485 0x7ffacd810000 22056960 C:\Windows\System32\SHELL32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Общая библиотека оболочки Windows 131795770645382485 0x7ffaced20000 782336 C:\Windows\System32\OLEAUT32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795770645382485 0x7ffacee50000 1183744 C:\Windows\System32\RPCRT4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795770645382485 0x7ffacef90000 647168 C:\Windows\System32\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795770645382485 0x7ffacf030000 651264 C:\Windows\System32\clbcatq.dll 2001.12.10941.16384 (rs1_release.160715-1616) Microsoft Corporation COM+ Configuration Catalog 131795770645382485 0x7ffacf0d0000 704512 C:\Windows\System32\KERNEL32.DLL 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645382485 0x7ffacf340000 4362240 C:\Windows\System32\setupapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Setup API 131795770645382485 0x7ffacf770000 212992 C:\Windows\System32\GDI32.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation GDI Client DLL 131795770645382485 0x7ffacf8c0000 1462272 C:\Windows\System32\USER32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795770645382485 0x7ffacfb30000 2916352 C:\Windows\System32\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795770645382485 0x7ffacfe00000 114688 C:\Windows\System32\imagehlp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT Image Helper 131795770645382485 0x7ffacfe20000 663552 C:\Windows\System32\advapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795770645382485 0x7ffad01b0000 335872 C:\Windows\System32\shlwapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека небольших программ оболочки 131795770645382485 0x7ffad0210000 364544 C:\Windows\System32\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795770645382485 0x7ffad0270000 1908736 C:\Windows\SYSTEM32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 57 7744 3108 11 00000000:0031f1da 131769081112364684 0 0 0 Обязательная метка\Средний обязательный уровень WIN-0UOTFKKVN1S\User browser.exe C:\Users\User\AppData\Local\Yandex\YandexBrowser\Application\browser.exe "C:\Users\User\AppData\Local\Yandex\YandexBrowser\Application\browser.exe" YANDEX LLC 18.6.1.770 Yandex 131795770645382623 0x10e0000 2519040 C:\Users\User\AppData\Local\Yandex\YandexBrowser\Application\browser.exe 18.6.1.770 YANDEX LLC Yandex 131795770645382623 0x11330000 172032 C:\Windows\SysWOW64\RTWorkQ.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL для WorkQueue реального времени 131795770645382623 0x5c020000 335872 C:\Windows\System32\wow64.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation Win32 Emulation on NT64 131795770645382623 0x5c080000 487424 C:\Windows\System32\wow64win.dll 10.0.14393.1884 (rs1_release.171101-1233) Microsoft Corporation Wow64 Console and Win32 API Logging 131795770645382623 0x5c100000 40960 C:\Windows\System32\wow64cpu.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation AMD64 Wow64 CPU 131795770645382623 0x5fec0000 794624 C:\Windows\SysWOW64\wbem\fastprox.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation WMI Custom Marshaller 131795770645382623 0x5ffa0000 421888 C:\Windows\SysWOW64\wbemcomn.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation WMI 131795770645382623 0x60010000 53248 C:\Windows\SysWOW64\wbem\wbemprox.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation WMI 131795770645382623 0x60750000 1556480 C:\Program Files (x86)\360\Total Security\safemon\safemon.dll 8, 4, 0, 1420 Qihu 360 Software Co., Ltd. 360 Internet Security Internet Protection 131795770645382623 0x60900000 720896 C:\Program Files (x86)\360\Total Security\safemon\urlproc.dll 2, 9, 5, 1260 Qihu 360 Software Co., Ltd. 360 Internet Security 2013 Internet Protection 131795770645382623 0x622f0000 520192 C:\Program Files (x86)\360\Total Security\deepscan\heavygate.dll 3, 8, 11, 1 Qihu 360 Software Co., Ltd. 360 Total Security Cloud Security 131795770645382623 0x62980000 376832 C:\Program Files (x86)\360\Total Security\360NetBase.dll 7, 25, 0, 76 360.cn 360安全卫士 网络基础模块 131795770645382623 0x68b00000 44998656 C:\Users\User\AppData\Local\Yandex\YandexBrowser\Application\18.6.1.770\browser.dll 18.6.1.770 YANDEX LLC Yandex 131795770645382623 0x6b6b0000 36864 C:\Windows\SysWOW64\atlthunk.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation atlthunk.dll 131795770645382623 0x6b6d0000 102400 C:\Program Files (x86)\360\Total Security\I18N.dll 1, 0, 0, 1016 Qihu 360 Software Co., Ltd. 360 Total Security 131795770645382623 0x6bf00000 3715072 C:\Windows\SysWOW64\msi.dll 5.0.14393.2155 Microsoft Corporation Windows Installer 131795770645382623 0x6c290000 987136 C:\Windows\SysWOW64\twinapi.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation twinapi.appcore 131795770645382623 0x6c390000 1126400 C:\Windows\SysWOW64\dcomp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft DirectComposition Library 131795770645382623 0x6c4b0000 278528 C:\Windows\SysWOW64\dataexchange.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation Data exchange 131795770645382623 0x6c540000 483328 C:\Windows\SysWOW64\webio.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API протоколов передачи по Веб 131795770645382623 0x6cd50000 106496 C:\Windows\SysWOW64\SAMLIB.dll 10.0.14393.82 (rs1_release.160805-1735) Microsoft Corporation SAM Library DLL 131795770645382623 0x6ce30000 421888 C:\Windows\SysWOW64\msvcp110_win.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Microsoft® STL110 C++ Runtime Library 131795770645382623 0x6cf60000 569344 C:\Windows\SysWOW64\taskschd.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Task Scheduler COM API 131795770645382623 0x6d080000 151552 C:\Windows\SysWOW64\cryptnet.dll 10.0.14393.2035 (rs1_release_inmarket.180110-1910) Microsoft Corporation Crypto Network Related API 131795770645382623 0x6d0b0000 847872 C:\Windows\SysWOW64\wintypes.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL основных типов Windows 131795770645382623 0x6dc80000 90112 C:\Program Files (x86)\Windows Defender\MpOav.dll 4.10.14393.1794 (rs1_release.171008-1615) Microsoft Corporation IOfficeAntiVirus Module 131795770645382623 0x6df70000 245760 C:\Windows\SysWOW64\shdocvw.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека объектов документов и элементов управления оболочки 131795770645382623 0x6e070000 98304 C:\Windows\SysWOW64\MSACM32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Фильтр диспетчера аудиосжатия Microsoft 131795770645382623 0x6e090000 233472 C:\Windows\SysWOW64\wdmaud.drv 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Системный звуковой драйвер Winmm 131795770645382623 0x6e110000 32768 C:\Windows\SysWOW64\midimap.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft MIDI Mapper 131795770645382623 0x6e120000 40960 C:\Windows\SysWOW64\msacm32.drv 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Программа переназначения звуковых устройств 131795770645382623 0x6e130000 36864 C:\Windows\SysWOW64\AVRT.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Multimedia Realtime Runtime 131795770645382623 0x6e2a0000 4440064 C:\Windows\SysWOW64\explorerframe.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ExplorerFrame 131795770645382623 0x6e8b0000 1859584 C:\Windows\SysWOW64\mfmp4srcsnk.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL источника и приемника MPEG4 Media Foundation 131795770645382623 0x6eb60000 28672 C:\Windows\SysWOW64\ksuser.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User CSA Library 131795770645382623 0x6eb70000 790528 C:\Windows\SysWOW64\ntshrui.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширения оболочки, обеспечивающие общий доступ 131795770645382623 0x6ec40000 442368 C:\Windows\SysWOW64\twinapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation twinapi 131795770645382623 0x6eed0000 274432 C:\Windows\SysWOW64\thumbcache.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Кэш эскизов Майкрософт 131795770645382623 0x6ef30000 647168 C:\Windows\SysWOW64\evr.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека DLL средства отображения видео 131795770645382623 0x6efd0000 458752 C:\Windows\SysWOW64\msauddecmft.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Media Foundation Audio Decoders 131795770645382623 0x6f790000 1085440 C:\Windows\SysWOW64\mfperfhelper.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation MFPerf DLL 131795770645382623 0x6f8a0000 2220032 C:\Windows\SysWOW64\msmpeg2vdec.dll 10.0.14393.953 (rs1_release_inmarket.170303-1614) Microsoft Corporation Microsoft DTV-DVD Video Decoder 131795770645382623 0x6fac0000 1130496 C:\Windows\SysWOW64\mfplat.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Media Foundation Platform DLL 131795770645382623 0x6fc70000 385024 C:\Windows\SysWOW64\FirewallAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API брандмауэра Windows 131795770645382623 0x6fd00000 73728 C:\Windows\SysWOW64\mssprxy.dll 7.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation Microsoft Search Proxy 131795770645382623 0x6fd20000 61440 C:\Windows\SysWOW64\cscapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Offline Files Win32 API 131795770645382623 0x6fd30000 139264 C:\Windows\SysWOW64\DEVOBJ.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Device Information Set DLL 131795770645382623 0x6fd60000 360448 C:\Windows\SysWOW64\MMDevAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation MMDevice API 131795770645382623 0x6fdc0000 507904 C:\Windows\SysWOW64\audioses.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Сеанс обработки звука 131795770645382623 0x6fe40000 57344 C:\Windows\SysWOW64\BitsProxy.dll 7.8.14393.0 (rs1_release.160715-1616) Microsoft Corporation Background Intelligent Transfer Service Proxy 131795770645382623 0x6fe50000 241664 C:\Windows\SysWOW64\mstask.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека интерфейса планировщика заданий 131795770645382623 0x6fe90000 544768 C:\Windows\SysWOW64\mscms.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL-библиотека системы сопоставления цветов Майкрософт 131795770645382623 0x6ff90000 323584 C:\Windows\SysWOW64\wlanapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows WLAN AutoConfig Client Side API DLL 131795770645382623 0x6ffe0000 303104 C:\Windows\SysWOW64\wevtapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API настройки и использования событий 131795770645382623 0x70030000 593920 C:\Users\User\AppData\Local\Yandex\YandexBrowser\Application\18.6.1.770\browser_elf.dll 18.6.1.770 YANDEX LLC Yandex 131795770645382623 0x70140000 274432 C:\Windows\SysWOW64\WINSTA.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Winstation Library 131795770645382623 0x70190000 53248 C:\Windows\SysWOW64\LINKINFO.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Volume Tracking 131795770645382623 0x701a0000 401408 C:\Users\User\AppData\Local\Yandex\YandexBrowser\Application\18.6.1.770\dllyupdate.dll 1.2.0.1831 Yandex LLC Yandex updater (CU) 131795770645382623 0x70340000 536576 C:\Windows\SysWOW64\dxgi.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation DirectX Graphics Infrastructure 131795770645382623 0x703d0000 2056192 C:\Windows\SysWOW64\DWrite.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Службы Microsoft DirectX Typography 131795770645382623 0x705e0000 344064 C:\Windows\SysWOW64\OLEACC.dll 7.2.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Active Accessibility Core Component 131795770645382623 0x70640000 1499136 C:\Windows\SysWOW64\WindowsCodecs.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Microsoft Windows Codecs Library 131795770645382623 0x707d0000 86016 C:\Windows\SysWOW64\SAMCLI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Security Accounts Manager Client DLL 131795770645382623 0x70a20000 94208 C:\Windows\SysWOW64\USP10.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Uniscribe Unicode script processor 131795770645382623 0x70a40000 81920 C:\Windows\SysWOW64\NLAapi.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Network Location Awareness 2 131795770645382623 0x70b00000 176128 C:\Windows\SysWOW64\wscapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API центра обеспечения безопасности Windows 131795770645382623 0x70b30000 36864 C:\Windows\SysWOW64\WINUSB.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows USB Driver User Library 131795770645382623 0x70b60000 40960 C:\Windows\SysWOW64\HID.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека пользователя HID 131795770645382623 0x70b70000 163840 C:\Windows\SysWOW64\ntmarta.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик Windows NT MARTA 131795770645382623 0x70ba0000 188416 C:\Windows\SysWOW64\FWPolicyIOMgr.dll 10.0.14393.2189 (rs1_release.180329-1711) Microsoft Corporation FwPolicyIoMgr DLL 131795770645382623 0x70bd0000 147456 C:\Windows\SysWOW64\fwbase.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Firewall Base DLL 131795770645382623 0x70c30000 114688 C:\Windows\SysWOW64\srvcli.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Server Service Client DLL 131795770645382623 0x70ca0000 45056 C:\Windows\SysWOW64\NETUTILS.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API Helpers DLL 131795770645382623 0x70cc0000 65536 C:\Windows\SysWOW64\ondemandconnroutehelper.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation On Demand Connctiond Route Helper 131795770645382623 0x70e60000 176128 C:\Windows\SysWOW64\NTASN1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft ASN.1 API 131795770645382623 0x70fd0000 1331200 C:\Windows\SysWOW64\dbghelp.dll 10.0.14321.1024 (rs1_release.160715-1616) Microsoft Windows Image Helper 131795770645382623 0x71140000 77824 C:\Windows\SysWOW64\NETAPI32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API DLL 131795770645382623 0x711f0000 32768 C:\Windows\SysWOW64\IconCodecService.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Converts a PNG part of the icon to a legacy bmp icon 131795770645382623 0x71610000 77824 C:\Windows\SysWOW64\dhcpcsvc6.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиент DHCPv6 131795770645382623 0x724f0000 57344 C:\Windows\SysWOW64\credui.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Credential Manager User Interface 131795770645382623 0x725e0000 2273280 C:\Windows\SysWOW64\iertutil.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служебная программа времени выполнения для Internet Explorer 131795770645382623 0x728e0000 1372160 C:\Windows\SysWOW64\PROPSYS.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Система страниц свойств (Майкрософт) 131795770645382623 0x72b90000 126976 C:\Windows\SysWOW64\dwmapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Интерфейс API диспетчера окон рабочего стола (Майкрософт) 131795770645382623 0x72cc0000 1658880 C:\Windows\SysWOW64\urlmon.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширения OLE32 для Win32 131795770645382623 0x73a40000 32768 C:\Windows\SysWOW64\WINNSI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Network Store Information RPC interface 131795770645382623 0x73a50000 299008 C:\Windows\SysWOW64\fwpuclnt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API пользовательского режима FWP/IPsec 131795770645382623 0x73aa0000 32768 C:\Windows\SysWOW64\DPAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Data Protection API 131795770645382623 0x73ab0000 32768 C:\Windows\SysWOW64\rasadhlp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Remote Access AutoDial Helper 131795770645382623 0x73ac0000 81920 C:\Windows\SysWOW64\dhcpcsvc.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служба DHCP-клиента 131795770645382623 0x73ae0000 40960 C:\Windows\SysWOW64\Secur32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Security Support Provider Interface 131795770645382623 0x73ee0000 61440 C:\Windows\SysWOW64\WTSAPI32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Remote Desktop Session Host Server SDK APIs 131795770645382623 0x73f00000 192512 C:\Windows\SysWOW64\IPHLPAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API вспомогательного приложения IP 131795770645382623 0x73f30000 512000 C:\Windows\SysWOW64\DNSAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Динамическая библиотека API DNS-клиента 131795770645382623 0x73ff0000 319488 C:\Windows\SysWOW64\mswsock.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширение поставщика службы API Microsoft Windows Sockets 2.0 131795770645382623 0x74040000 126976 C:\Windows\SysWOW64\gpapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиентские функции API групповой политики 131795770645382623 0x74060000 192512 C:\Windows\SysWOW64\rsaenh.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Enhanced Cryptographic Provider 131795770645382623 0x74110000 479232 C:\Windows\SysWOW64\uxtheme.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека тем UxTheme (Microsoft) 131795770645382623 0x74190000 110592 C:\Windows\SysWOW64\bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795770645382623 0x741b0000 77824 C:\Windows\SysWOW64\CRYPTSP.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Cryptographic Service Provider API 131795770645382623 0x741f0000 143360 C:\Windows\SysWOW64\WINMMBASE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base Multimedia Extension API DLL 131795770645382623 0x74230000 147456 C:\Windows\SysWOW64\WINMM.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation MCI API DLL 131795770645382623 0x74260000 2514944 C:\Windows\SysWOW64\WININET.dll 11.00.14393.447 (rs1_release_inmarket.161102-0100) Microsoft Corporation Расширения Интернета для Win32 131795770645382623 0x744d0000 2138112 C:\Windows\WinSxS\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.14393.953_none_89c2555adb023171\COMCTL32.dll 6.10 (rs1_release_inmarket.170303-1614) Microsoft Corporation Библиотека элементов управления взаимодействия с пользователем 131795770645382623 0x746e0000 32768 C:\Windows\SysWOW64\VERSION.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Version Checking and File Installation Libraries 131795770645382623 0x746f0000 106496 C:\Windows\SysWOW64\USERENV.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Userenv 131795770645382623 0x74730000 598016 C:\Windows\SysWOW64\apphelp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиентская библиотека совместимости приложений 131795770645382623 0x747d0000 40960 C:\Windows\SysWOW64\CRYPTBASE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base cryptographic API DLL 131795770645382623 0x747e0000 126976 C:\Windows\SysWOW64\SspiCli.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Security Support Provider Interface 131795770645382623 0x74800000 151552 C:\Windows\SysWOW64\IMM32.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Multi-User Windows IMM32 API Client DLL 131795770645382623 0x74910000 2170880 C:\Windows\SysWOW64\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795770645382623 0x74b30000 53248 C:\Windows\SysWOW64\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795770645382623 0x74b40000 102400 C:\Windows\SysWOW64\imagehlp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT Image Helper 131795770645382623 0x74b60000 790528 C:\Windows\SysWOW64\RPCRT4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795770645382623 0x74c30000 1417216 C:\Windows\SysWOW64\gdi32full.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation GDI Client DLL 131795770645382623 0x74d90000 24576 C:\Windows\SysWOW64\PSAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Process Status Helper 131795770645382623 0x74da0000 778240 C:\Windows\SysWOW64\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795770645382623 0x74e60000 557056 C:\Windows\SysWOW64\shcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795770645382623 0x74ef0000 540672 C:\Windows\SysWOW64\clbcatq.dll 2001.12.10941.16384 (rs1_release.160715-1616) Microsoft Corporation COM+ Configuration Catalog 131795770645382623 0x74f80000 278528 C:\Windows\SysWOW64\WINTRUST.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation Microsoft Trust Verification APIs 131795770645382623 0x74fd0000 405504 C:\Windows\SysWOW64\WS2_32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation 32-разрядная библиотека Windows Socket 2.0 131795770645382623 0x75040000 282624 C:\Windows\SysWOW64\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795770645382623 0x75090000 1265664 C:\Windows\SysWOW64\MSCTF.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Серверная библиотека MSCTF 131795770645382623 0x751d0000 57344 C:\Windows\SysWOW64\MSASN1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ASN.1 Runtime APIs 131795770645382623 0x751e0000 1708032 C:\Windows\SysWOW64\KERNELBASE.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645382623 0x75390000 266240 C:\Windows\SysWOW64\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795770645382623 0x753e0000 1560576 C:\Windows\SysWOW64\CRYPT32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API32 криптографии 131795770645382623 0x75560000 487424 C:\Windows\SysWOW64\ADVAPI32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795770645382623 0x756c0000 5693440 C:\Windows\SysWOW64\windows.storage.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API хранения Microsoft WinRT 131795770645382623 0x75c30000 372736 C:\Windows\SysWOW64\coml2.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft COM for Windows 131795770645382623 0x75c90000 286720 C:\Windows\SysWOW64\shlwapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека небольших программ оболочки 131795770645382623 0x75ce0000 20811776 C:\Windows\SysWOW64\SHELL32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Общая библиотека оболочки Windows 131795770645382623 0x774d0000 86016 C:\Windows\SysWOW64\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795770645382623 0x774f0000 61440 C:\Windows\SysWOW64\profapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Profile Basic API 131795770645382623 0x77560000 1437696 C:\Windows\SysWOW64\USER32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795770645382623 0x776c0000 368640 C:\Windows\SysWOW64\bcryptPrimitives.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation Windows Cryptographic Primitives Library 131795770645382623 0x77780000 503808 C:\Windows\SysWOW64\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645382623 0x77800000 606208 C:\Windows\SysWOW64\OLEAUT32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795770645382623 0x77ac0000 966656 C:\Windows\SysWOW64\ole32.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft OLE для Windows 131795770645382623 0x77bb0000 176128 C:\Windows\SysWOW64\GDI32.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation GDI Client DLL 131795770645382623 0x77cd0000 221184 C:\Windows\SysWOW64\cfgmgr32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Configuration Manager DLL 131795770645382623 0x77d10000 28672 C:\Windows\SysWOW64\NSI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation NSI User-mode interface DLL 131795770645382623 0x77d20000 1585152 C:\Windows\SysWOW64\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 131795770645382623 0x7ffad0270000 1908736 C:\Windows\SYSTEM32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 58 5696 7744 57 00000000:0031f1da 131769081114193232 0 0 0 Обязательная метка\Средний обязательный уровень WIN-0UOTFKKVN1S\User browser.exe C:\Users\User\AppData\Local\Yandex\YandexBrowser\Application\browser.exe C:\Users\User\AppData\Local\Yandex\YandexBrowser\Application\browser.exe --type=crashpad-handler "--user-data-dir=C:\Users\User\AppData\Local\Yandex\YandexBrowser\User Data" /prefetch:7 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Users\User\AppData\Local\Yandex\YandexBrowser\User Data\Crashpad" "--metrics-dir=C:\Users\User\AppData\Local\Yandex\YandexBrowser\User Data" --url=https://crash-reports.browser.yandex.net/submit --annotation=machine_id=c46245ef0fec9d5c44d2fa20241f2070 --annotation=main_process_pid=7744 --annotation=metrics_client_id=520f4dd3247d4cdfb744f32b1130b1bf --annotation=plat=Win32 --annotation=prod=Yandex --annotation=ver=18.6.1.770 --initial-client-data=0x1c4,0x1cc,0x1d0,0x1c0,0x1d4,0x700b800c,0x700b7ffc,0x700b7fe0,0x1c8 YANDEX LLC 18.6.1.770 Yandex 131795770645382726 0x10e0000 2519040 C:\Users\User\AppData\Local\Yandex\YandexBrowser\Application\browser.exe 18.6.1.770 YANDEX LLC Yandex 131795770645382726 0x5c020000 335872 C:\Windows\System32\wow64.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation Win32 Emulation on NT64 131795770645382726 0x5c080000 487424 C:\Windows\System32\wow64win.dll 10.0.14393.1884 (rs1_release.171101-1233) Microsoft Corporation Wow64 Console and Win32 API Logging 131795770645382726 0x5c100000 40960 C:\Windows\System32\wow64cpu.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation AMD64 Wow64 CPU 131795770645382726 0x60750000 1556480 C:\Program Files (x86)\360\Total Security\safemon\safemon.dll 8, 4, 0, 1420 Qihu 360 Software Co., Ltd. 360 Internet Security Internet Protection 131795770645382726 0x70030000 593920 C:\Users\User\AppData\Local\Yandex\YandexBrowser\Application\18.6.1.770\browser_elf.dll 18.6.1.770 YANDEX LLC Yandex 131795770645382726 0x70b70000 163840 C:\Windows\SysWOW64\ntmarta.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик Windows NT MARTA 131795770645382726 0x70ca0000 45056 C:\Windows\SysWOW64\NETUTILS.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API Helpers DLL 131795770645382726 0x70cb0000 65536 C:\Windows\SysWOW64\WKSCLI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Workstation Service Client DLL 131795770645382726 0x71140000 77824 C:\Windows\SysWOW64\NETAPI32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API DLL 131795770645382726 0x72b90000 126976 C:\Windows\SysWOW64\dwmapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Интерфейс API диспетчера окон рабочего стола (Майкрософт) 131795770645382726 0x74110000 479232 C:\Windows\SysWOW64\uxtheme.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека тем UxTheme (Microsoft) 131795770645382726 0x74190000 110592 C:\Windows\SysWOW64\bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795770645382726 0x741f0000 143360 C:\Windows\SysWOW64\WINMMBASE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base Multimedia Extension API DLL 131795770645382726 0x74230000 147456 C:\Windows\SysWOW64\WINMM.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation MCI API DLL 131795770645382726 0x746e0000 32768 C:\Windows\SysWOW64\VERSION.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Version Checking and File Installation Libraries 131795770645382726 0x746f0000 106496 C:\Windows\SysWOW64\USERENV.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Userenv 131795770645382726 0x747d0000 40960 C:\Windows\SysWOW64\CRYPTBASE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base cryptographic API DLL 131795770645382726 0x747e0000 126976 C:\Windows\SysWOW64\SspiCli.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Security Support Provider Interface 131795770645382726 0x74800000 151552 C:\Windows\SysWOW64\IMM32.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Multi-User Windows IMM32 API Client DLL 131795770645382726 0x74910000 2170880 C:\Windows\SysWOW64\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795770645382726 0x74b30000 53248 C:\Windows\SysWOW64\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795770645382726 0x74b60000 790528 C:\Windows\SysWOW64\RPCRT4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795770645382726 0x74c30000 1417216 C:\Windows\SysWOW64\gdi32full.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation GDI Client DLL 131795770645382726 0x74d90000 24576 C:\Windows\SysWOW64\PSAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Process Status Helper 131795770645382726 0x74da0000 778240 C:\Windows\SysWOW64\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795770645382726 0x74e60000 557056 C:\Windows\SysWOW64\shcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795770645382726 0x74fd0000 405504 C:\Windows\SysWOW64\WS2_32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation 32-разрядная библиотека Windows Socket 2.0 131795770645382726 0x75040000 282624 C:\Windows\SysWOW64\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795770645382726 0x75090000 1265664 C:\Windows\SysWOW64\MSCTF.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Серверная библиотека MSCTF 131795770645382726 0x751e0000 1708032 C:\Windows\SysWOW64\KERNELBASE.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645382726 0x75390000 266240 C:\Windows\SysWOW64\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795770645382726 0x75560000 487424 C:\Windows\SysWOW64\ADVAPI32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795770645382726 0x756c0000 5693440 C:\Windows\SysWOW64\windows.storage.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API хранения Microsoft WinRT 131795770645382726 0x75c90000 286720 C:\Windows\SysWOW64\shlwapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека небольших программ оболочки 131795770645382726 0x75ce0000 20811776 C:\Windows\SysWOW64\SHELL32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Общая библиотека оболочки Windows 131795770645382726 0x774d0000 86016 C:\Windows\SysWOW64\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795770645382726 0x774f0000 61440 C:\Windows\SysWOW64\profapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Profile Basic API 131795770645382726 0x77560000 1437696 C:\Windows\SysWOW64\USER32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795770645382726 0x776c0000 368640 C:\Windows\SysWOW64\bcryptPrimitives.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation Windows Cryptographic Primitives Library 131795770645382726 0x77780000 503808 C:\Windows\SysWOW64\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645382726 0x77800000 606208 C:\Windows\SysWOW64\OLEAUT32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795770645382726 0x77ac0000 966656 C:\Windows\SysWOW64\ole32.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft OLE для Windows 131795770645382726 0x77bb0000 176128 C:\Windows\SysWOW64\GDI32.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation GDI Client DLL 131795770645382726 0x77cd0000 221184 C:\Windows\SysWOW64\cfgmgr32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Configuration Manager DLL 131795770645382726 0x77d20000 1585152 C:\Windows\SysWOW64\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 131795770645382726 0x7ffad0270000 1908736 C:\Windows\SYSTEM32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 59 4664 7744 57 00000000:0031f1da 131769081123844756 0 0 0 Обязательная метка\Низкий обязательный уровень WIN-0UOTFKKVN1S\User browser.exe C:\Users\User\AppData\Local\Yandex\YandexBrowser\Application\browser.exe "C:\Users\User\AppData\Local\Yandex\YandexBrowser\Application\browser.exe" --type=gpu-process --field-trial-handle=1292,9555382311565764851,7120838982649204725,131072 --user-id=32B2E0A1-3039-4C67-86BE-75A88EF21B54 --brand-id=yandex --partner-id=7924 --gpu-preferences=KAAAAAAAAACAAwCAAQAAAAAAAAAAAGAAEAAAAAAAAAAAAAAAAAAAACgAAAAEAAAAIAAAAAAAAAAoAAAAAAAAADAAAAAAAAAAOAAAAAAAAAAQAAAAAAAAAAAAAAAKAAAAEAAAAAAAAAAAAAAACwAAABAAAAAAAAAAAQAAAAoAAAAQAAAAAAAAAAEAAAALAAAA --user-id=32B2E0A1-3039-4C67-86BE-75A88EF21B54 --brand-id=yandex --partner-id=7924 --service-request-channel-token=CC1AC8FA9C8EFF1EEBC2375FE4F704C6 --mojo-platform-channel-handle=1588 --ignored=" --type=renderer " /prefetch:2 YANDEX LLC 18.6.1.770 Yandex 131795770645382836 0x10e0000 2519040 C:\Users\User\AppData\Local\Yandex\YandexBrowser\Application\browser.exe 18.6.1.770 YANDEX LLC Yandex 131795770645382836 0x58720000 59748352 C:\Users\User\AppData\Local\Yandex\YandexBrowser\Application\18.6.1.770\browser_child.dll 18.6.1.770 YANDEX LLC Yandex 131795770645382836 0x5c020000 335872 C:\Windows\System32\wow64.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation Win32 Emulation on NT64 131795770645382836 0x5c080000 487424 C:\Windows\System32\wow64win.dll 10.0.14393.1884 (rs1_release.171101-1233) Microsoft Corporation Wow64 Console and Win32 API Logging 131795770645382836 0x5c100000 40960 C:\Windows\System32\wow64cpu.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation AMD64 Wow64 CPU 131795770645382836 0x6ecb0000 2228224 C:\Windows\SysWOW64\mfh264enc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Media Foundation H264 Encoder 131795770645382836 0x6f250000 970752 C:\Windows\SysWOW64\ddraw.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft DirectDraw 131795770645382836 0x6f340000 3784704 C:\Windows\SysWOW64\D3DCompiler_47.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Direct3D HLSL Compiler 131795770645382836 0x6f6e0000 688128 C:\Windows\SysWOW64\msvproc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Media Foundation Video Processor 131795770645382836 0x6f790000 1085440 C:\Windows\SysWOW64\mfperfhelper.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation MFPerf DLL 131795770645382836 0x6f8a0000 2220032 C:\Windows\SysWOW64\msmpeg2vdec.dll 10.0.14393.953 (rs1_release_inmarket.170303-1614) Microsoft Corporation Microsoft DTV-DVD Video Decoder 131795770645382836 0x6fac0000 1130496 C:\Windows\SysWOW64\MFPlat.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Media Foundation Platform DLL 131795770645382836 0x6fbe0000 540672 C:\Windows\SysWOW64\mf.dll 10.0.14393.953 (rs1_release_inmarket.170303-1614) Microsoft Corporation Библиотека DLL Media Foundation 131795770645382836 0x6fd30000 139264 C:\Windows\SysWOW64\DEVOBJ.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Device Information Set DLL 131795770645382836 0x6ff20000 118784 C:\Users\User\AppData\Local\Yandex\YandexBrowser\Application\18.6.1.770\swiftshader\libegl.dll 4.0.0.3 SwiftShader libEGL 32-bit Dynamic Link Library 131795770645382836 0x6ff40000 126976 C:\Windows\SysWOW64\dxva2.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DirectX Video Acceleration 2.0 DLL 131795770645382836 0x6ff60000 172032 C:\Windows\SysWOW64\RTWorkQ.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL для WorkQueue реального времени 131795770645382836 0x70030000 593920 C:\Users\User\AppData\Local\Yandex\YandexBrowser\Application\18.6.1.770\browser_elf.dll 18.6.1.770 YANDEX LLC Yandex 131795770645382836 0x700d0000 434176 C:\Windows\SysWOW64\WINSPOOL.DRV 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Драйвер диспетчера очереди Windows 131795770645382836 0x70340000 536576 C:\Windows\SysWOW64\dxgi.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation DirectX Graphics Infrastructure 131795770645382836 0x703d0000 2056192 C:\Windows\SysWOW64\DWrite.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Службы Microsoft DirectX Typography 131795770645382836 0x705d0000 28672 C:\Windows\SysWOW64\DCIMAN32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DCI Manager 131795770645382836 0x707d0000 86016 C:\Windows\SysWOW64\SAMCLI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Security Accounts Manager Client DLL 131795770645382836 0x70a20000 94208 C:\Windows\SysWOW64\USP10.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Uniscribe Unicode script processor 131795770645382836 0x70ca0000 45056 C:\Windows\SysWOW64\NETUTILS.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API Helpers DLL 131795770645382836 0x70fd0000 1331200 C:\Windows\SysWOW64\dbghelp.dll 10.0.14321.1024 (rs1_release.160715-1616) Microsoft Windows Image Helper 131795770645382836 0x71140000 77824 C:\Windows\SysWOW64\NETAPI32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API DLL 131795770645382836 0x725e0000 2273280 C:\Windows\SysWOW64\iertutil.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служебная программа времени выполнения для Internet Explorer 131795770645382836 0x728e0000 1372160 C:\Windows\SysWOW64\PROPSYS.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Система страниц свойств (Майкрософт) 131795770645382836 0x72b90000 126976 C:\Windows\SysWOW64\dwmapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Интерфейс API диспетчера окон рабочего стола (Майкрософт) 131795770645382836 0x72cc0000 1658880 C:\Windows\SysWOW64\urlmon.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширения OLE32 для Win32 131795770645382836 0x73ac0000 81920 C:\Windows\SysWOW64\dhcpcsvc.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служба DHCP-клиента 131795770645382836 0x73ae0000 40960 C:\Windows\SysWOW64\Secur32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Security Support Provider Interface 131795770645382836 0x73f00000 192512 C:\Windows\SysWOW64\IPHLPAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API вспомогательного приложения IP 131795770645382836 0x74190000 110592 C:\Windows\SysWOW64\bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795770645382836 0x741b0000 77824 C:\Windows\SysWOW64\cryptsp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Cryptographic Service Provider API 131795770645382836 0x741f0000 143360 C:\Windows\SysWOW64\WINMMBASE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base Multimedia Extension API DLL 131795770645382836 0x74230000 147456 C:\Windows\SysWOW64\WINMM.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation MCI API DLL 131795770645382836 0x744d0000 2138112 C:\Windows\WinSxS\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.14393.953_none_89c2555adb023171\COMCTL32.dll 6.10 (rs1_release_inmarket.170303-1614) Microsoft Corporation Библиотека элементов управления взаимодействия с пользователем 131795770645382836 0x746e0000 32768 C:\Windows\SysWOW64\VERSION.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Version Checking and File Installation Libraries 131795770645382836 0x746f0000 106496 C:\Windows\SysWOW64\USERENV.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Userenv 131795770645382836 0x747d0000 40960 C:\Windows\SysWOW64\CRYPTBASE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base cryptographic API DLL 131795770645382836 0x747e0000 126976 C:\Windows\SysWOW64\SspiCli.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Security Support Provider Interface 131795770645382836 0x74800000 151552 C:\Windows\SysWOW64\IMM32.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Multi-User Windows IMM32 API Client DLL 131795770645382836 0x74910000 2170880 C:\Windows\SysWOW64\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795770645382836 0x74b30000 53248 C:\Windows\SysWOW64\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795770645382836 0x74b60000 790528 C:\Windows\SysWOW64\RPCRT4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795770645382836 0x74c30000 1417216 C:\Windows\SysWOW64\gdi32full.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation GDI Client DLL 131795770645382836 0x74d90000 24576 C:\Windows\SysWOW64\PSAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Process Status Helper 131795770645382836 0x74da0000 778240 C:\Windows\SysWOW64\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795770645382836 0x74e60000 557056 C:\Windows\SysWOW64\shcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795770645382836 0x74ef0000 540672 C:\Windows\SysWOW64\clbcatq.dll 2001.12.10941.16384 (rs1_release.160715-1616) Microsoft Corporation COM+ Configuration Catalog 131795770645382836 0x74f80000 278528 C:\Windows\SysWOW64\WINTRUST.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation Microsoft Trust Verification APIs 131795770645382836 0x74fd0000 405504 C:\Windows\SysWOW64\WS2_32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation 32-разрядная библиотека Windows Socket 2.0 131795770645382836 0x75040000 282624 C:\Windows\SysWOW64\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795770645382836 0x751d0000 57344 C:\Windows\SysWOW64\MSASN1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ASN.1 Runtime APIs 131795770645382836 0x751e0000 1708032 C:\Windows\SysWOW64\KERNELBASE.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645382836 0x75390000 266240 C:\Windows\SysWOW64\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795770645382836 0x753e0000 1560576 C:\Windows\SysWOW64\CRYPT32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API32 криптографии 131795770645382836 0x75560000 487424 C:\Windows\SysWOW64\ADVAPI32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795770645382836 0x756c0000 5693440 C:\Windows\SysWOW64\windows.storage.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API хранения Microsoft WinRT 131795770645382836 0x75c90000 286720 C:\Windows\SysWOW64\shlwapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека небольших программ оболочки 131795770645382836 0x75ce0000 20811776 C:\Windows\SysWOW64\SHELL32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Общая библиотека оболочки Windows 131795770645382836 0x770c0000 4239360 C:\Windows\SysWOW64\SETUPAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Setup API 131795770645382836 0x774d0000 86016 C:\Windows\SysWOW64\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795770645382836 0x774f0000 61440 C:\Windows\SysWOW64\profapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Profile Basic API 131795770645382836 0x77560000 1437696 C:\Windows\SysWOW64\USER32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795770645382836 0x776c0000 368640 C:\Windows\SysWOW64\bcryptPrimitives.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation Windows Cryptographic Primitives Library 131795770645382836 0x77780000 503808 C:\Windows\SysWOW64\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645382836 0x77800000 606208 C:\Windows\SysWOW64\OLEAUT32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795770645382836 0x77ac0000 966656 C:\Windows\SysWOW64\ole32.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft OLE для Windows 131795770645382836 0x77bb0000 176128 C:\Windows\SysWOW64\GDI32.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation GDI Client DLL 131795770645382836 0x77be0000 937984 C:\Windows\SysWOW64\COMDLG32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека общих диалоговых окон 131795770645382836 0x77cd0000 221184 C:\Windows\SysWOW64\cfgmgr32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Configuration Manager DLL 131795770645382836 0x77d10000 28672 C:\Windows\SysWOW64\NSI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation NSI User-mode interface DLL 131795770645382836 0x77d20000 1585152 C:\Windows\SysWOW64\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 131795770645382836 0x7ffad0270000 1908736 C:\Windows\SYSTEM32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 60 8968 7744 57 00000000:0031f1da 131769081206363215 0 0 0 Обязательная метка\Ненадежный обязательный уровень WIN-0UOTFKKVN1S\User browser.exe C:\Users\User\AppData\Local\Yandex\YandexBrowser\Application\browser.exe "C:\Users\User\AppData\Local\Yandex\YandexBrowser\Application\browser.exe" --type=renderer --enable-in-process-wmf-demuxer --field-trial-handle=1292,9555382311565764851,7120838982649204725,131072 --enable-ignition --service-pipe-token=183F52B8A6577BFD721F95F3A9641348 --lang=ru --user-id=32B2E0A1-3039-4C67-86BE-75A88EF21B54 --brand-id=yandex --partner-id=7924 --help-url=https://api.browser.yandex.ru/redirect/help/ --user-agent-info --translate-security-origin=https://translate.yandex.net --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --enable-instaserp --device-scale-factor=1 --num-raster-threads=1 --enable-compositor-image-animations --service-request-channel-token=183F52B8A6577BFD721F95F3A9641348 --renderer-client-id=4 --mojo-platform-channel-handle=2640 /prefetch:1 YANDEX LLC 18.6.1.770 Yandex 131795770645382953 0x10e0000 2519040 C:\Users\User\AppData\Local\Yandex\YandexBrowser\Application\browser.exe 18.6.1.770 YANDEX LLC Yandex 131795770645382953 0x58720000 59748352 C:\Users\User\AppData\Local\Yandex\YandexBrowser\Application\18.6.1.770\browser_child.dll 18.6.1.770 YANDEX LLC Yandex 131795770645382953 0x5c020000 335872 C:\Windows\System32\wow64.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation Win32 Emulation on NT64 131795770645382953 0x5c080000 487424 C:\Windows\System32\wow64win.dll 10.0.14393.1884 (rs1_release.171101-1233) Microsoft Corporation Wow64 Console and Win32 API Logging 131795770645382953 0x5c100000 40960 C:\Windows\System32\wow64cpu.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation AMD64 Wow64 CPU 131795770645382953 0x6e8b0000 1859584 C:\Windows\SysWOW64\mfmp4srcsnk.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL источника и приемника MPEG4 Media Foundation 131795770645382953 0x6ef30000 647168 C:\Windows\SysWOW64\evr.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека DLL средства отображения видео 131795770645382953 0x6efd0000 458752 C:\Windows\SysWOW64\msauddecmft.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Media Foundation Audio Decoders 131795770645382953 0x6f790000 1085440 C:\Windows\SysWOW64\mfperfhelper.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation MFPerf DLL 131795770645382953 0x6f8a0000 2220032 C:\Windows\SysWOW64\msmpeg2vdec.dll 10.0.14393.953 (rs1_release_inmarket.170303-1614) Microsoft Corporation Microsoft DTV-DVD Video Decoder 131795770645382953 0x6fac0000 1130496 C:\Windows\SysWOW64\mfplat.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Media Foundation Platform DLL 131795770645382953 0x6ff60000 172032 C:\Windows\SysWOW64\RTWorkQ.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL для WorkQueue реального времени 131795770645382953 0x70030000 593920 C:\Users\User\AppData\Local\Yandex\YandexBrowser\Application\18.6.1.770\browser_elf.dll 18.6.1.770 YANDEX LLC Yandex 131795770645382953 0x700d0000 434176 C:\Windows\SysWOW64\WINSPOOL.DRV 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Драйвер диспетчера очереди Windows 131795770645382953 0x70340000 536576 C:\Windows\SysWOW64\dxgi.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation DirectX Graphics Infrastructure 131795770645382953 0x703d0000 2056192 C:\Windows\SysWOW64\DWrite.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Службы Microsoft DirectX Typography 131795770645382953 0x707d0000 86016 C:\Windows\SysWOW64\SAMCLI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Security Accounts Manager Client DLL 131795770645382953 0x70a20000 94208 C:\Windows\SysWOW64\USP10.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Uniscribe Unicode script processor 131795770645382953 0x70ca0000 45056 C:\Windows\SysWOW64\NETUTILS.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API Helpers DLL 131795770645382953 0x70fd0000 1331200 C:\Windows\SysWOW64\dbghelp.dll 10.0.14321.1024 (rs1_release.160715-1616) Microsoft Windows Image Helper 131795770645382953 0x71140000 77824 C:\Windows\SysWOW64\NETAPI32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API DLL 131795770645382953 0x725e0000 2273280 C:\Windows\SysWOW64\iertutil.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служебная программа времени выполнения для Internet Explorer 131795770645382953 0x728e0000 1372160 C:\Windows\SysWOW64\PROPSYS.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Система страниц свойств (Майкрософт) 131795770645382953 0x72af0000 655360 C:\Windows\SysWOW64\WINHTTP.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Службы HTTP Windows 131795770645382953 0x72cc0000 1658880 C:\Windows\SysWOW64\urlmon.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширения OLE32 для Win32 131795770645382953 0x73ac0000 81920 C:\Windows\SysWOW64\dhcpcsvc.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служба DHCP-клиента 131795770645382953 0x73ae0000 40960 C:\Windows\SysWOW64\Secur32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Security Support Provider Interface 131795770645382953 0x73f00000 192512 C:\Windows\SysWOW64\IPHLPAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API вспомогательного приложения IP 131795770645382953 0x74190000 110592 C:\Windows\SysWOW64\bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795770645382953 0x741b0000 77824 C:\Windows\SysWOW64\cryptsp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Cryptographic Service Provider API 131795770645382953 0x741f0000 143360 C:\Windows\SysWOW64\WINMMBASE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base Multimedia Extension API DLL 131795770645382953 0x74230000 147456 C:\Windows\SysWOW64\WINMM.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation MCI API DLL 131795770645382953 0x744d0000 2138112 C:\Windows\WinSxS\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.14393.953_none_89c2555adb023171\COMCTL32.dll 6.10 (rs1_release_inmarket.170303-1614) Microsoft Corporation Библиотека элементов управления взаимодействия с пользователем 131795770645382953 0x746e0000 32768 C:\Windows\SysWOW64\VERSION.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Version Checking and File Installation Libraries 131795770645382953 0x746f0000 106496 C:\Windows\SysWOW64\USERENV.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Userenv 131795770645382953 0x747d0000 40960 C:\Windows\SysWOW64\CRYPTBASE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base cryptographic API DLL 131795770645382953 0x747e0000 126976 C:\Windows\SysWOW64\SspiCli.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Security Support Provider Interface 131795770645382953 0x74800000 151552 C:\Windows\SysWOW64\IMM32.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Multi-User Windows IMM32 API Client DLL 131795770645382953 0x74910000 2170880 C:\Windows\SysWOW64\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795770645382953 0x74b30000 53248 C:\Windows\SysWOW64\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795770645382953 0x74b60000 790528 C:\Windows\SysWOW64\RPCRT4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795770645382953 0x74c30000 1417216 C:\Windows\SysWOW64\gdi32full.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation GDI Client DLL 131795770645382953 0x74d90000 24576 C:\Windows\SysWOW64\PSAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Process Status Helper 131795770645382953 0x74da0000 778240 C:\Windows\SysWOW64\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795770645382953 0x74e60000 557056 C:\Windows\SysWOW64\shcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795770645382953 0x74f80000 278528 C:\Windows\SysWOW64\WINTRUST.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation Microsoft Trust Verification APIs 131795770645382953 0x74fd0000 405504 C:\Windows\SysWOW64\WS2_32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation 32-разрядная библиотека Windows Socket 2.0 131795770645382953 0x75040000 282624 C:\Windows\SysWOW64\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795770645382953 0x751d0000 57344 C:\Windows\SysWOW64\MSASN1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ASN.1 Runtime APIs 131795770645382953 0x751e0000 1708032 C:\Windows\SysWOW64\KERNELBASE.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645382953 0x75390000 266240 C:\Windows\SysWOW64\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795770645382953 0x753e0000 1560576 C:\Windows\SysWOW64\CRYPT32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API32 криптографии 131795770645382953 0x75560000 487424 C:\Windows\SysWOW64\ADVAPI32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795770645382953 0x756c0000 5693440 C:\Windows\SysWOW64\windows.storage.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API хранения Microsoft WinRT 131795770645382953 0x75c90000 286720 C:\Windows\SysWOW64\shlwapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека небольших программ оболочки 131795770645382953 0x75ce0000 20811776 C:\Windows\SysWOW64\SHELL32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Общая библиотека оболочки Windows 131795770645382953 0x774d0000 86016 C:\Windows\SysWOW64\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795770645382953 0x774f0000 61440 C:\Windows\SysWOW64\profapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Profile Basic API 131795770645382953 0x77560000 1437696 C:\Windows\SysWOW64\USER32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795770645382953 0x776c0000 368640 C:\Windows\SysWOW64\bcryptPrimitives.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation Windows Cryptographic Primitives Library 131795770645382953 0x77780000 503808 C:\Windows\SysWOW64\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645382953 0x77800000 606208 C:\Windows\SysWOW64\OLEAUT32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795770645382953 0x77ac0000 966656 C:\Windows\SysWOW64\ole32.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft OLE для Windows 131795770645382953 0x77bb0000 176128 C:\Windows\SysWOW64\GDI32.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation GDI Client DLL 131795770645382953 0x77be0000 937984 C:\Windows\SysWOW64\COMDLG32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека общих диалоговых окон 131795770645382953 0x77cd0000 221184 C:\Windows\SysWOW64\cfgmgr32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Configuration Manager DLL 131795770645382953 0x77d10000 28672 C:\Windows\SysWOW64\NSI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation NSI User-mode interface DLL 131795770645382953 0x77d20000 1585152 C:\Windows\SysWOW64\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 131795770645382953 0x7ffad0270000 1908736 C:\Windows\SYSTEM32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 61 4992 7744 57 00000000:0031f1da 131769081244357280 0 0 0 Обязательная метка\Ненадежный обязательный уровень WIN-0UOTFKKVN1S\User browser.exe C:\Users\User\AppData\Local\Yandex\YandexBrowser\Application\browser.exe "C:\Users\User\AppData\Local\Yandex\YandexBrowser\Application\browser.exe" --type=renderer --enable-in-process-wmf-demuxer --field-trial-handle=1292,9555382311565764851,7120838982649204725,131072 --enable-ignition --service-pipe-token=7E8A8199C364F4B0114F2A163B757250 --lang=ru --user-id=32B2E0A1-3039-4C67-86BE-75A88EF21B54 --brand-id=yandex --partner-id=7924 --help-url=https://api.browser.yandex.ru/redirect/help/ --user-agent-info --translate-security-origin=https://translate.yandex.net --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --enable-instaserp --device-scale-factor=1 --num-raster-threads=1 --enable-compositor-image-animations --service-request-channel-token=7E8A8199C364F4B0114F2A163B757250 --renderer-client-id=10 --mojo-platform-channel-handle=3904 /prefetch:1 YANDEX LLC 18.6.1.770 Yandex 131795770645383069 0x10e0000 2519040 C:\Users\User\AppData\Local\Yandex\YandexBrowser\Application\browser.exe 18.6.1.770 YANDEX LLC Yandex 131795770645383069 0x58720000 59748352 C:\Users\User\AppData\Local\Yandex\YandexBrowser\Application\18.6.1.770\browser_child.dll 18.6.1.770 YANDEX LLC Yandex 131795770645383069 0x5c020000 335872 C:\Windows\System32\wow64.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation Win32 Emulation on NT64 131795770645383069 0x5c080000 487424 C:\Windows\System32\wow64win.dll 10.0.14393.1884 (rs1_release.171101-1233) Microsoft Corporation Wow64 Console and Win32 API Logging 131795770645383069 0x5c100000 40960 C:\Windows\System32\wow64cpu.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation AMD64 Wow64 CPU 131795770645383069 0x6e8b0000 1859584 C:\Windows\SysWOW64\mfmp4srcsnk.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL источника и приемника MPEG4 Media Foundation 131795770645383069 0x6ef30000 647168 C:\Windows\SysWOW64\evr.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека DLL средства отображения видео 131795770645383069 0x6efd0000 458752 C:\Windows\SysWOW64\msauddecmft.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Media Foundation Audio Decoders 131795770645383069 0x6f790000 1085440 C:\Windows\SysWOW64\mfperfhelper.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation MFPerf DLL 131795770645383069 0x6f8a0000 2220032 C:\Windows\SysWOW64\msmpeg2vdec.dll 10.0.14393.953 (rs1_release_inmarket.170303-1614) Microsoft Corporation Microsoft DTV-DVD Video Decoder 131795770645383069 0x6fac0000 1130496 C:\Windows\SysWOW64\mfplat.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Media Foundation Platform DLL 131795770645383069 0x6ff60000 172032 C:\Windows\SysWOW64\RTWorkQ.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL для WorkQueue реального времени 131795770645383069 0x70030000 593920 C:\Users\User\AppData\Local\Yandex\YandexBrowser\Application\18.6.1.770\browser_elf.dll 18.6.1.770 YANDEX LLC Yandex 131795770645383069 0x700d0000 434176 C:\Windows\SysWOW64\WINSPOOL.DRV 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Драйвер диспетчера очереди Windows 131795770645383069 0x70340000 536576 C:\Windows\SysWOW64\dxgi.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation DirectX Graphics Infrastructure 131795770645383069 0x703d0000 2056192 C:\Windows\SysWOW64\DWrite.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Службы Microsoft DirectX Typography 131795770645383069 0x707d0000 86016 C:\Windows\SysWOW64\SAMCLI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Security Accounts Manager Client DLL 131795770645383069 0x70a20000 94208 C:\Windows\SysWOW64\USP10.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Uniscribe Unicode script processor 131795770645383069 0x70ca0000 45056 C:\Windows\SysWOW64\NETUTILS.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API Helpers DLL 131795770645383069 0x70fd0000 1331200 C:\Windows\SysWOW64\dbghelp.dll 10.0.14321.1024 (rs1_release.160715-1616) Microsoft Windows Image Helper 131795770645383069 0x71140000 77824 C:\Windows\SysWOW64\NETAPI32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API DLL 131795770645383069 0x725e0000 2273280 C:\Windows\SysWOW64\iertutil.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служебная программа времени выполнения для Internet Explorer 131795770645383069 0x728e0000 1372160 C:\Windows\SysWOW64\PROPSYS.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Система страниц свойств (Майкрософт) 131795770645383069 0x72af0000 655360 C:\Windows\SysWOW64\WINHTTP.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Службы HTTP Windows 131795770645383069 0x72cc0000 1658880 C:\Windows\SysWOW64\urlmon.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширения OLE32 для Win32 131795770645383069 0x73ac0000 81920 C:\Windows\SysWOW64\dhcpcsvc.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служба DHCP-клиента 131795770645383069 0x73ae0000 40960 C:\Windows\SysWOW64\Secur32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Security Support Provider Interface 131795770645383069 0x73f00000 192512 C:\Windows\SysWOW64\IPHLPAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API вспомогательного приложения IP 131795770645383069 0x74190000 110592 C:\Windows\SysWOW64\bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795770645383069 0x741b0000 77824 C:\Windows\SysWOW64\cryptsp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Cryptographic Service Provider API 131795770645383069 0x741f0000 143360 C:\Windows\SysWOW64\WINMMBASE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base Multimedia Extension API DLL 131795770645383069 0x74230000 147456 C:\Windows\SysWOW64\WINMM.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation MCI API DLL 131795770645383069 0x744d0000 2138112 C:\Windows\WinSxS\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.14393.953_none_89c2555adb023171\COMCTL32.dll 6.10 (rs1_release_inmarket.170303-1614) Microsoft Corporation Библиотека элементов управления взаимодействия с пользователем 131795770645383069 0x746e0000 32768 C:\Windows\SysWOW64\VERSION.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Version Checking and File Installation Libraries 131795770645383069 0x746f0000 106496 C:\Windows\SysWOW64\USERENV.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Userenv 131795770645383069 0x747d0000 40960 C:\Windows\SysWOW64\CRYPTBASE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base cryptographic API DLL 131795770645383069 0x747e0000 126976 C:\Windows\SysWOW64\SspiCli.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Security Support Provider Interface 131795770645383069 0x74800000 151552 C:\Windows\SysWOW64\IMM32.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Multi-User Windows IMM32 API Client DLL 131795770645383069 0x74910000 2170880 C:\Windows\SysWOW64\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795770645383069 0x74b30000 53248 C:\Windows\SysWOW64\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795770645383069 0x74b60000 790528 C:\Windows\SysWOW64\RPCRT4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795770645383069 0x74c30000 1417216 C:\Windows\SysWOW64\gdi32full.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation GDI Client DLL 131795770645383069 0x74d90000 24576 C:\Windows\SysWOW64\PSAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Process Status Helper 131795770645383069 0x74da0000 778240 C:\Windows\SysWOW64\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795770645383069 0x74e60000 557056 C:\Windows\SysWOW64\shcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795770645383069 0x74f80000 278528 C:\Windows\SysWOW64\WINTRUST.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation Microsoft Trust Verification APIs 131795770645383069 0x74fd0000 405504 C:\Windows\SysWOW64\WS2_32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation 32-разрядная библиотека Windows Socket 2.0 131795770645383069 0x75040000 282624 C:\Windows\SysWOW64\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795770645383069 0x751d0000 57344 C:\Windows\SysWOW64\MSASN1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ASN.1 Runtime APIs 131795770645383069 0x751e0000 1708032 C:\Windows\SysWOW64\KERNELBASE.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645383069 0x75390000 266240 C:\Windows\SysWOW64\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795770645383069 0x753e0000 1560576 C:\Windows\SysWOW64\CRYPT32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API32 криптографии 131795770645383069 0x75560000 487424 C:\Windows\SysWOW64\ADVAPI32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795770645383069 0x756c0000 5693440 C:\Windows\SysWOW64\windows.storage.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API хранения Microsoft WinRT 131795770645383069 0x75c90000 286720 C:\Windows\SysWOW64\shlwapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека небольших программ оболочки 131795770645383069 0x75ce0000 20811776 C:\Windows\SysWOW64\SHELL32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Общая библиотека оболочки Windows 131795770645383069 0x774d0000 86016 C:\Windows\SysWOW64\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795770645383069 0x774f0000 61440 C:\Windows\SysWOW64\profapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Profile Basic API 131795770645383069 0x77560000 1437696 C:\Windows\SysWOW64\USER32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795770645383069 0x776c0000 368640 C:\Windows\SysWOW64\bcryptPrimitives.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation Windows Cryptographic Primitives Library 131795770645383069 0x77780000 503808 C:\Windows\SysWOW64\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645383069 0x77800000 606208 C:\Windows\SysWOW64\OLEAUT32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795770645383069 0x77ac0000 966656 C:\Windows\SysWOW64\ole32.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft OLE для Windows 131795770645383069 0x77bb0000 176128 C:\Windows\SysWOW64\GDI32.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation GDI Client DLL 131795770645383069 0x77be0000 937984 C:\Windows\SysWOW64\COMDLG32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека общих диалоговых окон 131795770645383069 0x77cd0000 221184 C:\Windows\SysWOW64\cfgmgr32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Configuration Manager DLL 131795770645383069 0x77d10000 28672 C:\Windows\SysWOW64\NSI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation NSI User-mode interface DLL 131795770645383069 0x77d20000 1585152 C:\Windows\SysWOW64\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 131795770645383069 0x7ffad0270000 1908736 C:\Windows\SYSTEM32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 63 9504 664 6 00000000:0031f1da 131794956266598229 0 0 1 Обязательная метка\Средний обязательный уровень WIN-0UOTFKKVN1S\User InstallAgent.exe C:\Windows\System32\InstallAgent.exe C:\Windows\System32\InstallAgent.exe -Embedding Microsoft Corporation 10.0.14393.0 (rs1_release.160715-1616) InstallAgent 131795770645383260 0x7ff63d380000 229376 C:\Windows\System32\InstallAgent.exe 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation InstallAgent 131795770645383260 0x7ffabea60000 180224 C:\Windows\System32\VEStoreEventHandlers.dll 10.0.14393.479 (rs1_release.161110-2025) Microsoft Corporation TDL Store Event Handlers 131795770645383260 0x7ffac0bf0000 3559424 C:\Windows\System32\ActXPrxy.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation ActiveX Interface Marshaling Library 131795770645383260 0x7ffac4000000 274432 C:\Windows\SYSTEM32\policymanager.dll 10.0.14393.2035 (rs1_release_inmarket.180110-1910) Microsoft Corporation Policy Manager DLL 131795770645383260 0x7ffac4450000 86016 C:\Windows\SYSTEM32\usermgrcli.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation UserMgr API DLL 131795770645383260 0x7ffac4ad0000 61440 C:\Windows\System32\EAMProgressHandler.dll 10.0.14393.479 (rs1_release.161110-2025) Microsoft Corporation EAMProgressHandler 131795770645383260 0x7ffac4b90000 774144 C:\Windows\System32\StoreAgent.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation StoreAgent 131795770645383260 0x7ffac76a0000 159744 C:\Windows\System32\sppc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Software Licensing Client DLL 131795770645383260 0x7ffac7990000 155648 C:\Windows\System32\SLC.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Software Licensing Client DLL 131795770645383260 0x7ffacb140000 593920 C:\Windows\System32\msvcp110_win.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Microsoft® STL110 C++ Runtime Library 131795770645383260 0x7ffacc150000 94208 C:\Windows\System32\CRYPTSP.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Cryptographic Service Provider API 131795770645383260 0x7ffacc520000 622592 C:\Windows\SYSTEM32\sxs.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Fusion 2.5 131795770645383260 0x7ffacc620000 176128 C:\Windows\System32\Bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795770645383260 0x7ffacc6e0000 61440 C:\Windows\System32\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795770645383260 0x7ffacc6f0000 311296 C:\Windows\System32\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795770645383260 0x7ffacc740000 81920 C:\Windows\System32\profapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Profile Basic API 131795770645383260 0x7ffacc8f0000 1003520 C:\Windows\System32\ucrtbase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645383260 0x7ffacc9f0000 434176 C:\Windows\System32\bcryptPrimitives.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Cryptographic Primitives Library 131795770645383260 0x7ffacca60000 122880 C:\Windows\System32\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795770645383260 0x7ffaccae0000 692224 C:\Windows\System32\shcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795770645383260 0x7ffaccb90000 7180288 C:\Windows\System32\windows.storage.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API хранения Microsoft WinRT 131795770645383260 0x7ffacd270000 2215936 C:\Windows\System32\KERNELBASE.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645383260 0x7ffacd710000 638976 C:\Windows\System32\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645383260 0x7ffaced20000 782336 C:\Windows\System32\OLEAUT32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795770645383260 0x7ffacee50000 1183744 C:\Windows\System32\RPCRT4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795770645383260 0x7ffacef90000 647168 C:\Windows\System32\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795770645383260 0x7ffacf030000 651264 C:\Windows\System32\clbcatq.dll 2001.12.10941.16384 (rs1_release.160715-1616) Microsoft Corporation COM+ Configuration Catalog 131795770645383260 0x7ffacf0d0000 704512 C:\Windows\System32\KERNEL32.DLL 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645383260 0x7ffacf770000 212992 C:\Windows\System32\GDI32.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation GDI Client DLL 131795770645383260 0x7ffacf890000 188416 C:\Windows\System32\IMM32.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Multi-User Windows IMM32 API Client DLL 131795770645383260 0x7ffacf8c0000 1462272 C:\Windows\System32\user32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795770645383260 0x7ffacfb30000 2916352 C:\Windows\System32\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795770645383260 0x7ffacfe20000 663552 C:\Windows\System32\advapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795770645383260 0x7ffad01b0000 335872 C:\Windows\System32\shlwapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека небольших программ оболочки 131795770645383260 0x7ffad0210000 364544 C:\Windows\System32\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795770645383260 0x7ffad0270000 1908736 C:\Windows\SYSTEM32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 64 8768 664 6 00000000:0031f1da 131794956321853179 0 0 1 Обязательная метка\Средний обязательный уровень WIN-0UOTFKKVN1S\User InstallAgentUserBroker.exe C:\Windows\System32\InstallAgentUserBroker.exe C:\Windows\System32\InstallAgentUserBroker.exe -Embedding Microsoft Corporation 10.0.14393.2156 (rs1_release_inmarket.180321-1733) InstallAgentUserBroker 131795770645383355 0x22530450000 12288 C:\Windows\SYSTEM32\sfc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows File Protection 131795770645383355 0x7ff74f890000 278528 C:\Windows\System32\InstallAgentUserBroker.exe 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation InstallAgentUserBroker 131795770645383355 0x7ffabafc0000 700416 C:\Windows\SYSTEM32\wer.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека сообщений об ошибках Windows 131795770645383355 0x7ffabd8e0000 704512 C:\Windows\WinSxS\amd64_microsoft.windows.common-controls_6595b64144ccf1df_5.82.14393.447_none_0d5aa7fbb6d35646\Comctl32.dll 6.10 (rs1_release_inmarket.170303-1614) Microsoft Corporation Библиотека элементов управления взаимодействия с пользователем 131795770645383355 0x7ffabef80000 69632 C:\Windows\SYSTEM32\sfc_os.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows File Protection 131795770645383355 0x7ffabefd0000 258048 C:\Windows\System32\AEPIC.dll 10.0.17060.1029 (WinBuild.160101.0800) Microsoft Corporation Application Experience Program Cache 131795770645383355 0x7ffabf1d0000 192512 C:\Windows\System32\cryptnet.dll 10.0.14393.2035 (rs1_release_inmarket.180110-1910) Microsoft Corporation Crypto Network Related API 131795770645383355 0x7ffabf5d0000 2924544 C:\Windows\System32\WININET.dll 11.00.14393.447 (rs1_release_inmarket.161102-0100) Microsoft Corporation Расширения Интернета для Win32 131795770645383355 0x7ffabff60000 135168 C:\Windows\system32\ncryptsslp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft SChannel Provider 131795770645383355 0x7ffac0ad0000 86016 C:\Windows\SYSTEM32\mskeyprotect.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик защиты ключей (Майкрософт) 131795770645383355 0x7ffac34e0000 1843200 C:\Windows\System32\urlmon.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширения OLE32 для Win32 131795770645383355 0x7ffac3cb0000 2772992 C:\Windows\System32\iertutil.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служебная программа времени выполнения для Internet Explorer 131795770645383355 0x7ffac4000000 274432 C:\Windows\SYSTEM32\policymanager.dll 10.0.14393.2035 (rs1_release_inmarket.180110-1910) Microsoft Corporation Policy Manager DLL 131795770645383355 0x7ffac4b90000 774144 C:\Windows\System32\StoreAgent.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation StoreAgent 131795770645383355 0x7ffac6610000 40960 C:\Windows\System32\rasadhlp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Remote Access AutoDial Helper 131795770645383355 0x7ffac66a0000 86016 C:\Windows\SYSTEM32\ondemandconnroutehelper.dll 10.0.14393.351 (rs1_release_inmarket.161014-1755) Microsoft Corporation On Demand Connctiond Route Helper 131795770645383355 0x7ffac69c0000 839680 C:\Windows\SYSTEM32\winhttp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Службы HTTP Windows 131795770645383355 0x7ffac76a0000 159744 C:\Windows\System32\sppc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Software Licensing Client DLL 131795770645383355 0x7ffac7990000 155648 C:\Windows\System32\SLC.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Software Licensing Client DLL 131795770645383355 0x7ffac83d0000 106496 C:\Windows\SYSTEM32\dhcpcsvc.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служба DHCP-клиента 131795770645383355 0x7ffac83f0000 90112 C:\Windows\SYSTEM32\dhcpcsvc6.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиент DHCPv6 131795770645383355 0x7ffac8420000 434176 C:\Windows\System32\fwpuclnt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API пользовательского режима FWP/IPsec 131795770645383355 0x7ffac8810000 45056 C:\Windows\SYSTEM32\WINNSI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Network Store Information RPC interface 131795770645383355 0x7ffacb140000 593920 C:\Windows\System32\msvcp110_win.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Microsoft® STL110 C++ Runtime Library 131795770645383355 0x7ffacb420000 204800 C:\Windows\SYSTEM32\ntmarta.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик Windows NT MARTA 131795770645383355 0x7ffacbaf0000 495616 C:\Windows\system32\schannel.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик безопасности TLS/SSL 131795770645383355 0x7ffacbbb0000 208896 C:\Windows\system32\rsaenh.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Enhanced Cryptographic Provider 131795770645383355 0x7ffacbbf0000 40960 C:\Windows\System32\DPAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Data Protection API 131795770645383355 0x7ffacbd30000 229376 C:\Windows\SYSTEM32\IPHLPAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API вспомогательного приложения IP 131795770645383355 0x7ffacbd70000 659456 C:\Windows\System32\DNSAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Динамическая библиотека API DNS-клиента 131795770645383355 0x7ffacbfb0000 376832 C:\Windows\system32\mswsock.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширение поставщика службы API Microsoft Windows Sockets 2.0 131795770645383355 0x7ffacc150000 94208 C:\Windows\System32\CRYPTSP.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Cryptographic Service Provider API 131795770645383355 0x7ffacc170000 45056 C:\Windows\System32\CRYPTBASE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base cryptographic API DLL 131795770645383355 0x7ffacc1f0000 241664 C:\Windows\SYSTEM32\NTASN1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft ASN.1 API 131795770645383355 0x7ffacc230000 155648 C:\Windows\SYSTEM32\ncrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Маршрутизатор Windows NCrypt 131795770645383355 0x7ffacc350000 180224 C:\Windows\System32\SspiCli.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Security Support Provider Interface 131795770645383355 0x7ffacc520000 622592 C:\Windows\SYSTEM32\sxs.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Fusion 2.5 131795770645383355 0x7ffacc620000 176128 C:\Windows\System32\bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795770645383355 0x7ffacc6e0000 61440 C:\Windows\System32\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795770645383355 0x7ffacc6f0000 311296 C:\Windows\System32\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795770645383355 0x7ffacc740000 81920 C:\Windows\System32\profapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Profile Basic API 131795770645383355 0x7ffacc760000 65536 C:\Windows\System32\MSASN1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ASN.1 Runtime APIs 131795770645383355 0x7ffacc8f0000 1003520 C:\Windows\System32\ucrtbase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645383355 0x7ffacc9f0000 434176 C:\Windows\System32\bcryptPrimitives.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Cryptographic Primitives Library 131795770645383355 0x7ffacca60000 122880 C:\Windows\System32\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795770645383355 0x7ffacca80000 348160 C:\Windows\System32\WINTRUST.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation Microsoft Trust Verification APIs 131795770645383355 0x7ffaccae0000 692224 C:\Windows\System32\shcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795770645383355 0x7ffaccb90000 7180288 C:\Windows\System32\windows.storage.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API хранения Microsoft WinRT 131795770645383355 0x7ffacd270000 2215936 C:\Windows\System32\KERNELBASE.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645383355 0x7ffacd490000 1871872 C:\Windows\System32\CRYPT32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API32 криптографии 131795770645383355 0x7ffacd710000 638976 C:\Windows\System32\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645383355 0x7ffacd7b0000 270336 C:\Windows\System32\cfgmgr32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Configuration Manager DLL 131795770645383355 0x7ffacd810000 22056960 C:\Windows\System32\SHELL32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Общая библиотека оболочки Windows 131795770645383355 0x7ffaced20000 782336 C:\Windows\System32\OLEAUT32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795770645383355 0x7ffacee50000 1183744 C:\Windows\System32\RPCRT4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795770645383355 0x7ffacef80000 32768 C:\Windows\System32\NSI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation NSI User-mode interface DLL 131795770645383355 0x7ffacef90000 647168 C:\Windows\System32\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795770645383355 0x7ffacf030000 651264 C:\Windows\System32\clbcatq.dll 2001.12.10941.16384 (rs1_release.160715-1616) Microsoft Corporation COM+ Configuration Catalog 131795770645383355 0x7ffacf0d0000 704512 C:\Windows\System32\KERNEL32.DLL 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645383355 0x7ffacf770000 212992 C:\Windows\System32\GDI32.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation GDI Client DLL 131795770645383355 0x7ffacf820000 434176 C:\Windows\System32\WS2_32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation 32-разрядная библиотека Windows Socket 2.0 131795770645383355 0x7ffacf890000 188416 C:\Windows\System32\IMM32.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Multi-User Windows IMM32 API Client DLL 131795770645383355 0x7ffacf8c0000 1462272 C:\Windows\System32\user32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795770645383355 0x7ffacfb30000 2916352 C:\Windows\System32\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795770645383355 0x7ffacfe20000 663552 C:\Windows\System32\advapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795770645383355 0x7ffad0070000 1277952 C:\Windows\System32\OLE32.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft OLE для Windows 131795770645383355 0x7ffad01b0000 335872 C:\Windows\System32\SHLWAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека небольших программ оболочки 131795770645383355 0x7ffad0210000 364544 C:\Windows\System32\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795770645383355 0x7ffad0270000 1908736 C:\Windows\SYSTEM32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 65 9636 664 6 00000000:0031f1da 131794956424585250 0 0 1 Обязательная метка\Средний обязательный уровень WIN-0UOTFKKVN1S\User SystemSettingsBroker.exe C:\Windows\System32\SystemSettingsBroker.exe C:\Windows\System32\SystemSettingsBroker.exe -Embedding Microsoft Corporation 10.0.14393.0 (rs1_release.160715-1616) System Settings Broker 131795770645383490 0x7ff6015f0000 196608 C:\Windows\System32\SystemSettingsBroker.exe 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation System Settings Broker 131795770645383490 0x7ffac1c40000 94208 C:\Windows\System32\SystemSettings.DataModel.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SystemSettings.Datamodel private API 131795770645383490 0x7ffacc6e0000 61440 C:\Windows\System32\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795770645383490 0x7ffacc8f0000 1003520 C:\Windows\System32\ucrtbase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645383490 0x7ffacc9f0000 434176 C:\Windows\System32\bcryptPrimitives.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Cryptographic Primitives Library 131795770645383490 0x7ffacd270000 2215936 C:\Windows\System32\KERNELBASE.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645383490 0x7ffacee50000 1183744 C:\Windows\System32\RPCRT4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795770645383490 0x7ffacef90000 647168 C:\Windows\System32\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795770645383490 0x7ffacf030000 651264 C:\Windows\System32\clbcatq.dll 2001.12.10941.16384 (rs1_release.160715-1616) Microsoft Corporation COM+ Configuration Catalog 131795770645383490 0x7ffacf0d0000 704512 C:\Windows\System32\KERNEL32.DLL 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645383490 0x7ffacfb30000 2916352 C:\Windows\System32\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795770645383490 0x7ffad0210000 364544 C:\Windows\System32\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795770645383490 0x7ffad0270000 1908736 C:\Windows\SYSTEM32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 66 10592 664 6 00000000:0031f1da 131794956519902643 0 0 1 Обязательная метка\Средний обязательный уровень WIN-0UOTFKKVN1S\User SystemSettings.exe C:\Windows\ImmersiveControlPanel\SystemSettings.exe "C:\Windows\ImmersiveControlPanel\SystemSettings.exe" -ServerName:microsoft.windows.immersivecontrolpanel Microsoft Corporation 10.0.14393.82 (rs1_release.160805-1735) Параметры 131795770645383654 0x18099ef0000 12288 C:\Windows\SYSTEM32\WMI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation WMI DC and DP functionality 131795770645383654 0x7ff7937a0000 98304 C:\Windows\ImmersiveControlPanel\SystemSettings.exe 10.0.14393.82 (rs1_release.160805-1735) Microsoft Corporation Параметры 131795770645383654 0x7ffaabce0000 2535424 C:\Windows\System32\NetworkMobileSettings.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation System settings network mobile handlers group 131795770645383654 0x7ffaac0c0000 1396736 C:\Windows\System32\Windows.UI.Xaml.Phone.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows UI XAML Phone API 131795770645383654 0x7ffaac220000 4952064 C:\Windows\ImmersiveControlPanel\SystemSettings.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation System Settings Application 131795770645383654 0x7ffaadd90000 258048 C:\Windows\System32\NetworkDesktopSettings.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Группа обработчиков системных параметров сетевого рабочего стола 131795770645383654 0x7ffaaf920000 905216 C:\Windows\ImmersiveControlPanel\SystemSettingsViewModel.Desktop.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation System Settings View Model Desktop 131795770645383654 0x7ffab0970000 262144 C:\Windows\system32\credprovhost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Хост инфраструктуры поставщика учетных данных 131795770645383654 0x7ffab0a70000 454656 C:\Windows\System32\fhcfg.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Диспетчер конфигураций истории файлов 131795770645383654 0x7ffab1d80000 262144 C:\Windows\SYSTEM32\eappcfg.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Eap Peer Config 131795770645383654 0x7ffab5520000 3231744 C:\Windows\SYSTEM32\msftedit.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Элемент управления "Поле ввода форматированного текста", версия 8.5 131795770645383654 0x7ffab5b40000 2527232 C:\Windows\SYSTEM32\dwrite.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Службы Microsoft DirectX Typography 131795770645383654 0x7ffab6710000 17231872 C:\Windows\System32\Windows.UI.Xaml.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows.UI.Xaml dll 131795770645383654 0x7ffab7d80000 753664 C:\Windows\SYSTEM32\RASAPI32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API удаленного доступа 131795770645383654 0x7ffab8190000 9191424 C:\Windows\system32\twinui.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation TWINUI 131795770645383654 0x7ffab91d0000 69632 C:\Windows\ImmersiveControlPanel\Telemetry.Desktop.dll 10.0.14393.953 (rs1_release_inmarket.170303-1614) Microsoft Corporation System Settings Telemetry Desktop 131795770645383654 0x7ffab9a40000 299008 C:\Windows\System32\RasMediaManager.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Ras Media Manager DLL 131795770645383654 0x7ffaba950000 188416 C:\Windows\System32\EthernetMediaManager.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Ethernet Media Manager DLL 131795770645383654 0x7ffabaa50000 339968 C:\Windows\System32\NetworkUXBroker.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation NetworkUXBroker DLL 131795770645383654 0x7ffabae40000 110592 C:\Windows\SYSTEM32\capauthz.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API авторизации возможностей 131795770645383654 0x7ffabaf70000 270336 C:\Windows\SYSTEM32\edputil.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служебная программа EDP 131795770645383654 0x7ffabb3c0000 450560 C:\Windows\SYSTEM32\TextInputFramework.dll 10.0.14393.2189 (rs1_release.180329-1711) Microsoft Corporation "TextInputFramework.DYNLINK" 131795770645383654 0x7ffabb430000 65536 C:\Windows\SYSTEM32\pcacli.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Program Compatibility Assistant Client Module 131795770645383654 0x7ffabb490000 512000 C:\Windows\system32\twinapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation twinapi 131795770645383654 0x7ffabcc60000 1122304 C:\Windows\System32\MiracastReceiver.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API приемника Miracast 131795770645383654 0x7ffabcf30000 110592 C:\Windows\SYSTEM32\MPR.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека маршрутизации для нескольких служб доступа 131795770645383654 0x7ffabd4a0000 1613824 C:\Windows\System32\Windows.Globalization.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Globalization 131795770645383654 0x7ffabe6e0000 561152 C:\Windows\system32\directmanipulation.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Direct Manipulation Component 131795770645383654 0x7ffabe9c0000 188416 C:\Windows\SYSTEM32\globinputhost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Globalization Extension API for Input 131795770645383654 0x7ffabeb20000 385024 C:\Windows\System32\Windows.ApplicationModel.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows ApplicationModel API Server 131795770645383654 0x7ffabfd80000 86016 C:\Windows\System32\threadpoolwinrt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows WinRT Threadpool 131795770645383654 0x7ffabff10000 155648 C:\Windows\SYSTEM32\SRVCLI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Server Service Client DLL 131795770645383654 0x7ffac00c0000 282624 C:\Windows\SYSTEM32\windows.ui.core.textinput.dll 10.0.14393.2189 (rs1_release.180329-1711) Microsoft Corporation Windows.UI.Core.TextInput dll 131795770645383654 0x7ffac01e0000 397312 C:\Windows\SYSTEM32\wincorlib.DLL 10.0.14393.576 (rs1_release_inmarket.161208-2252) Microsoft Corporation Microsoft Windows ® WinRT core library 131795770645383654 0x7ffac0470000 1478656 C:\Windows\SYSTEM32\MFPlat.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Media Foundation Platform DLL 131795770645383654 0x7ffac0bf0000 3559424 C:\Windows\System32\ActXPrxy.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation ActiveX Interface Marshaling Library 131795770645383654 0x7ffac1470000 704512 C:\Windows\System32\ieproxy.dll 11.00.14393.2007 (rs1_release.171231-1800) Microsoft Corporation IE ActiveX Interface Marshaling Library 131795770645383654 0x7ffac1e50000 188416 C:\Windows\SYSTEM32\RTWorkQ.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL для WorkQueue реального времени 131795770645383654 0x7ffac20d0000 110592 C:\Windows\System32\rmclient.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Resource Manager Client 131795770645383654 0x7ffac23c0000 331776 C:\Windows\System32\OneCoreCommonProxyStub.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation OneCore Common Proxy Stub 131795770645383654 0x7ffac2700000 98304 C:\Windows\SYSTEM32\NETAPI32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API DLL 131795770645383654 0x7ffac2990000 385024 C:\Windows\SYSTEM32\NInput.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Pen and Touch Input Component 131795770645383654 0x7ffac2a20000 81920 C:\Windows\SYSTEM32\rtutils.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Routing Utilities 131795770645383654 0x7ffac2bf0000 65536 C:\Windows\SYSTEM32\EFSUTIL.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation EFS Utility Library 131795770645383654 0x7ffac34e0000 1843200 C:\Windows\SYSTEM32\urlmon.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширения OLE32 для Win32 131795770645383654 0x7ffac3cb0000 2772992 C:\Windows\SYSTEM32\iertutil.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служебная программа времени выполнения для Internet Explorer 131795770645383654 0x7ffac4000000 274432 C:\Windows\SYSTEM32\policymanager.dll 10.0.14393.2035 (rs1_release_inmarket.180110-1910) Microsoft Corporation Policy Manager DLL 131795770645383654 0x7ffac42a0000 659456 C:\Windows\SYSTEM32\StateRepository.Core.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation StateRepository Core 131795770645383654 0x7ffac46d0000 4161536 C:\Windows\System32\Windows.StateRepository.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Сервер Windows StateRepository API Server 131795770645383654 0x7ffac4e70000 102400 C:\Windows\SYSTEM32\samcli.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Security Accounts Manager Client DLL 131795770645383654 0x7ffac5350000 1765376 C:\Windows\System32\Windows.UI.Immersive.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation WINDOWS.UI.IMMERSIVE 131795770645383654 0x7ffac5c50000 131072 C:\Windows\SYSTEM32\rasman.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Remote Access Connection Manager 131795770645383654 0x7ffac60e0000 221184 C:\Windows\SYSTEM32\XmlLite.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft XmlLite Library 131795770645383654 0x7ffac69c0000 839680 C:\Windows\SYSTEM32\WINHTTP.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Службы HTTP Windows 131795770645383654 0x7ffac6ac0000 835584 C:\Windows\System32\Windows.UI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Runtime UI Foundation DLL 131795770645383654 0x7ffac6c40000 2596864 C:\Windows\WinSxS\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.14393.953_none_42151e83c686086b\Comctl32.dll 6.10 (rs1_release_inmarket.170303-1614) Microsoft Corporation Библиотека элементов управления взаимодействия с пользователем 131795770645383654 0x7ffac6f50000 5632000 C:\Windows\SYSTEM32\d2d1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека Microsoft D2D 131795770645383654 0x7ffac7580000 1077248 C:\Windows\SYSTEM32\MrmCoreR.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Windows MRM 131795770645383654 0x7ffac76a0000 159744 C:\Windows\SYSTEM32\sppc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Software Licensing Client DLL 131795770645383654 0x7ffac7720000 1601536 C:\Windows\System32\OneCoreUAPCommonProxyStub.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation OneCoreUAP Common Proxy Stub 131795770645383654 0x7ffac7990000 155648 C:\Windows\SYSTEM32\SLC.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Software Licensing Client DLL 131795770645383654 0x7ffac7fc0000 2674688 C:\Windows\SYSTEM32\d3d10warp.dll 10.0.14393.576 (rs1_release_inmarket.161208-2252) Microsoft Corporation Direct3D 10 Rasterizer 131795770645383654 0x7ffac84f0000 299008 C:\Windows\system32\DataExchange.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation Data exchange 131795770645383654 0x7ffac8880000 69632 C:\Windows\SYSTEM32\wmiclnt.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation WMI Client API 131795770645383654 0x7ffac88a0000 2842624 C:\Windows\SYSTEM32\d3d11.dll 10.0.14393.953 (rs1_release_inmarket.170303-1614) Microsoft Corporation Direct3D 11 Runtime 131795770645383654 0x7ffac9220000 397312 C:\Windows\SYSTEM32\wevtapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API настройки и использования событий 131795770645383654 0x7ffac9290000 40960 C:\Windows\SYSTEM32\DSROLE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DS Setup Client DLL 131795770645383654 0x7ffac92e0000 1269760 C:\Windows\System32\WinTypes.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL основных типов Windows 131795770645383654 0x7ffac9500000 2682880 C:\Windows\system32\CoreUIComponents.dll 131795770645383654 0x7ffac9f50000 1736704 C:\Windows\system32\windowscodecs.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Microsoft Windows Codecs Library 131795770645383654 0x7ffaca340000 1593344 C:\Windows\SYSTEM32\PROPSYS.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Система страниц свойств (Майкрософт) 131795770645383654 0x7ffaca4e0000 77824 C:\Windows\SYSTEM32\WTSAPI32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Remote Desktop Session Host Server SDK APIs 131795770645383654 0x7ffaca560000 45056 C:\Windows\SYSTEM32\NcaApi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Network Connectivity Assistant API 131795770645383654 0x7ffaca570000 421888 C:\Windows\SYSTEM32\Bcp47Langs.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation BCP47 Language Classes 131795770645383654 0x7ffaca5e0000 155648 C:\Windows\SYSTEM32\dwmapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Интерфейс API диспетчера окон рабочего стола (Майкрософт) 131795770645383654 0x7ffaca640000 770048 C:\Windows\SYSTEM32\CoreMessaging.dll 10.0.14393.0 Microsoft Corporation Microsoft CoreMessaging Dll 131795770645383654 0x7ffaca770000 1380352 C:\Windows\SYSTEM32\dcomp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft DirectComposition Library 131795770645383654 0x7ffacaf00000 610304 C:\Windows\system32\uxtheme.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека тем UxTheme (Microsoft) 131795770645383654 0x7ffacb140000 593920 C:\Windows\SYSTEM32\msvcp110_win.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Microsoft® STL110 C++ Runtime Library 131795770645383654 0x7ffacb1e0000 1163264 C:\Windows\System32\twinapi.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation twinapi.appcore 131795770645383654 0x7ffacb300000 364544 C:\Windows\SYSTEM32\VEEventDispatcher.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Visual Element Event dispatcher 131795770645383654 0x7ffacb3f0000 163840 C:\Windows\SYSTEM32\DEVOBJ.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Device Information Set DLL 131795770645383654 0x7ffacb780000 651264 C:\Windows\SYSTEM32\dxgi.dll 10.0.14393.953 (rs1_release_inmarket.170303-1614) Microsoft Corporation DirectX Graphics Infrastructure 131795770645383654 0x7ffacbd30000 229376 C:\Windows\SYSTEM32\IPHLPAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API вспомогательного приложения IP 131795770645383654 0x7ffacbe20000 53248 C:\Windows\SYSTEM32\netutils.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API Helpers DLL 131795770645383654 0x7ffacbe40000 126976 C:\Windows\SYSTEM32\USERENV.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Userenv 131795770645383654 0x7ffacc150000 94208 C:\Windows\SYSTEM32\cryptsp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Cryptographic Service Provider API 131795770645383654 0x7ffacc170000 45056 C:\Windows\SYSTEM32\CRYPTBASE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base cryptographic API DLL 131795770645383654 0x7ffacc1f0000 241664 C:\Windows\SYSTEM32\NTASN1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft ASN.1 API 131795770645383654 0x7ffacc230000 155648 C:\Windows\SYSTEM32\ncrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Маршрутизатор Windows NCrypt 131795770645383654 0x7ffacc350000 180224 C:\Windows\SYSTEM32\SspiCli.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Security Support Provider Interface 131795770645383654 0x7ffacc5c0000 352256 C:\Windows\SYSTEM32\WINSTA.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Winstation Library 131795770645383654 0x7ffacc620000 176128 C:\Windows\SYSTEM32\bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795770645383654 0x7ffacc6e0000 61440 C:\Windows\System32\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795770645383654 0x7ffacc6f0000 311296 C:\Windows\System32\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795770645383654 0x7ffacc740000 81920 C:\Windows\System32\profapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Profile Basic API 131795770645383654 0x7ffacc760000 65536 C:\Windows\System32\MSASN1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ASN.1 Runtime APIs 131795770645383654 0x7ffacc8f0000 1003520 C:\Windows\System32\ucrtbase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645383654 0x7ffacc9f0000 434176 C:\Windows\System32\bcryptPrimitives.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Cryptographic Primitives Library 131795770645383654 0x7ffacca60000 122880 C:\Windows\System32\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795770645383654 0x7ffaccae0000 692224 C:\Windows\System32\shcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795770645383654 0x7ffaccb90000 7180288 C:\Windows\System32\windows.storage.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API хранения Microsoft WinRT 131795770645383654 0x7ffacd270000 2215936 C:\Windows\System32\KERNELBASE.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645383654 0x7ffacd490000 1871872 C:\Windows\System32\CRYPT32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API32 криптографии 131795770645383654 0x7ffacd710000 638976 C:\Windows\System32\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645383654 0x7ffacd7b0000 270336 C:\Windows\System32\cfgmgr32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Configuration Manager DLL 131795770645383654 0x7ffacd810000 22056960 C:\Windows\System32\SHELL32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Общая библиотека оболочки Windows 131795770645383654 0x7ffaced20000 782336 C:\Windows\System32\OLEAUT32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795770645383654 0x7ffacee50000 1183744 C:\Windows\System32\RPCRT4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795770645383654 0x7ffacef90000 647168 C:\Windows\System32\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795770645383654 0x7ffacf030000 651264 C:\Windows\System32\clbcatq.dll 2001.12.10941.16384 (rs1_release.160715-1616) Microsoft Corporation COM+ Configuration Catalog 131795770645383654 0x7ffacf0d0000 704512 C:\Windows\System32\KERNEL32.DLL 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645383654 0x7ffacf1e0000 1417216 C:\Windows\System32\msctf.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Серверная библиотека MSCTF 131795770645383654 0x7ffacf770000 212992 C:\Windows\System32\GDI32.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation GDI Client DLL 131795770645383654 0x7ffacf820000 434176 C:\Windows\System32\WS2_32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation 32-разрядная библиотека Windows Socket 2.0 131795770645383654 0x7ffacf890000 188416 C:\Windows\System32\IMM32.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Multi-User Windows IMM32 API Client DLL 131795770645383654 0x7ffacf8c0000 1462272 C:\Windows\System32\USER32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795770645383654 0x7ffacfb30000 2916352 C:\Windows\System32\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795770645383654 0x7ffacfe20000 663552 C:\Windows\System32\advapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795770645383654 0x7ffad0070000 1277952 C:\Windows\System32\ole32.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft OLE для Windows 131795770645383654 0x7ffad01b0000 335872 C:\Windows\System32\SHLWAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека небольших программ оболочки 131795770645383654 0x7ffad0210000 364544 C:\Windows\System32\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795770645383654 0x7ffad0270000 1908736 C:\Windows\SYSTEM32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 67 10964 664 6 00000000:0031f1ab 131794956837373387 0 0 1 Обязательная метка\Высокий обязательный уровень WIN-0UOTFKKVN1S\User DllHost.exe C:\Windows\system32\DllHost.exe C:\Windows\system32\DllHost.exe /Processid:{BA126F01-2166-11D1-B1D0-00805FC1270E} Microsoft Corporation 10.0.14393.0 (rs1_release.160715-1616) COM Surrogate 131795770645383742 0x7ff7a2280000 36864 C:\Windows\system32\DllHost.exe 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation COM Surrogate 131795770645383742 0x7ffab2460000 2822144 C:\Windows\system32\netshell.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Оболочка сетевых подключений 131795770645383742 0x7ffac9790000 98304 C:\Windows\system32\nlaapi.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Network Location Awareness 2 131795770645383742 0x7ffacaf00000 610304 C:\Windows\system32\uxtheme.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека тем UxTheme (Microsoft) 131795770645383742 0x7ffacbd30000 229376 C:\Windows\system32\IPHLPAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API вспомогательного приложения IP 131795770645383742 0x7ffacc6e0000 61440 C:\Windows\System32\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795770645383742 0x7ffacc6f0000 311296 C:\Windows\System32\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795770645383742 0x7ffacc740000 81920 C:\Windows\System32\profapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Profile Basic API 131795770645383742 0x7ffacc8f0000 1003520 C:\Windows\System32\ucrtbase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645383742 0x7ffacc9f0000 434176 C:\Windows\System32\bcryptPrimitives.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Cryptographic Primitives Library 131795770645383742 0x7ffacca60000 122880 C:\Windows\System32\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795770645383742 0x7ffaccae0000 692224 C:\Windows\System32\shcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795770645383742 0x7ffaccb90000 7180288 C:\Windows\System32\windows.storage.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API хранения Microsoft WinRT 131795770645383742 0x7ffacd270000 2215936 C:\Windows\System32\KERNELBASE.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645383742 0x7ffacd7b0000 270336 C:\Windows\System32\cfgmgr32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Configuration Manager DLL 131795770645383742 0x7ffacd810000 22056960 C:\Windows\System32\SHELL32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Общая библиотека оболочки Windows 131795770645383742 0x7ffacee50000 1183744 C:\Windows\System32\RPCRT4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795770645383742 0x7ffacef90000 647168 C:\Windows\System32\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795770645383742 0x7ffacf030000 651264 C:\Windows\System32\clbcatq.dll 2001.12.10941.16384 (rs1_release.160715-1616) Microsoft Corporation COM+ Configuration Catalog 131795770645383742 0x7ffacf0d0000 704512 C:\Windows\System32\KERNEL32.DLL 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645383742 0x7ffacf770000 212992 C:\Windows\System32\GDI32.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation GDI Client DLL 131795770645383742 0x7ffacf890000 188416 C:\Windows\System32\IMM32.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Multi-User Windows IMM32 API Client DLL 131795770645383742 0x7ffacf8c0000 1462272 C:\Windows\System32\user32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795770645383742 0x7ffacfb30000 2916352 C:\Windows\System32\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795770645383742 0x7ffacfe20000 663552 C:\Windows\System32\advapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795770645383742 0x7ffad0070000 1277952 C:\Windows\System32\ole32.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft OLE для Windows 131795770645383742 0x7ffad01b0000 335872 C:\Windows\System32\SHLWAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека небольших программ оболочки 131795770645383742 0x7ffad0210000 364544 C:\Windows\System32\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795770645383742 0x7ffad0270000 1908736 C:\Windows\SYSTEM32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 76 11496 664 6 00000000:0031f1da 131794958406617238 0 0 1 Обязательная метка\Низкий обязательный уровень WIN-0UOTFKKVN1S\User SearchUI.exe C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\SearchUI.exe "C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\SearchUI.exe" -ServerName:CortanaUI.AppXa50dqqa5gqv4a428c9y1jjw7m3btvepj.mca Microsoft Corporation 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Search and Cortana application 131795770645385613 0x7ff79c3c0000 10706944 C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\SearchUI.exe 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Search and Cortana application 131795770645385613 0x7ffab2c00000 8179712 C:\Windows\SYSTEM32\chakra.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft ® Chakra (Private) 131795770645385613 0x7ffab33d0000 258048 C:\Windows\SYSTEM32\MLANG.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL многоязыковой поддержки 131795770645385613 0x7ffab3540000 22740992 C:\Windows\SYSTEM32\edgehtml.dll 11.00.14393.447 (rs1_release_inmarket.161102-0100) Microsoft Corporation Веб-платформа Microsoft Edge 131795770645385613 0x7ffab4b90000 655360 C:\Windows\System32\StructuredQuery.dll 7.0.14393.2068 (rs1_release.180209-1727) Microsoft Corporation Structured Query 131795770645385613 0x7ffab4c70000 4874240 C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\RemindersUI.dll 131795770645385613 0x7ffab52c0000 2445312 C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.BackgroundTask.dll 131795770645385613 0x7ffab5520000 3231744 C:\Windows\SYSTEM32\msftedit.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Элемент управления "Поле ввода форматированного текста", версия 8.5 131795770645385613 0x7ffab5840000 3108864 C:\Windows\System32\Speech_OneCore\Common\sapi_onecore.dll 5.3.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Speech API 131795770645385613 0x7ffab5b40000 2527232 C:\Windows\SYSTEM32\dwrite.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Службы Microsoft DirectX Typography 131795770645385613 0x7ffab5db0000 9781248 C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\CortanaApi.dll 131795770645385613 0x7ffab6710000 17231872 C:\Windows\System32\Windows.UI.Xaml.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows.UI.Xaml dll 131795770645385613 0x7ffab7a00000 3424256 C:\Windows\system32\tquery.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Запросы Microsoft Tripoli 131795770645385613 0x7ffab9c00000 1343488 C:\Windows\System32\Windows.Web.Http.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL Windows.Web.Http 131795770645385613 0x7ffab9d50000 1429504 C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Core.dll 131795770645385613 0x7ffabaab0000 94208 C:\Windows\SYSTEM32\profext.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation profext 131795770645385613 0x7ffabae40000 110592 C:\Windows\SYSTEM32\capauthz.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API авторизации возможностей 131795770645385613 0x7ffabaf70000 270336 C:\Windows\SYSTEM32\edputil.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служебная программа EDP 131795770645385613 0x7ffabb200000 294912 C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\CortanaApi.ProxyStub.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation "CortanaApi.ProxyStub.DYNLINK" 131795770645385613 0x7ffabb3c0000 450560 C:\Windows\SYSTEM32\TextInputFramework.dll 10.0.14393.2189 (rs1_release.180329-1711) Microsoft Corporation "TextInputFramework.DYNLINK" 131795770645385613 0x7ffabb490000 512000 C:\Windows\System32\twinapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation twinapi 131795770645385613 0x7ffabbd10000 65536 C:\Windows\SYSTEM32\tokenbinding.dll 10.0.14393.1593 (rs1_release.170731-1934) Microsoft Corporation Token Binding Protocol 131795770645385613 0x7ffabd4a0000 1613824 C:\Windows\System32\Windows.Globalization.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Globalization 131795770645385613 0x7ffabe4d0000 286720 C:\Windows\System32\MSWB7.dll 10.0.14393.1737 (rs1_release_inmarket.170914-1249) Microsoft Corporation MSWB7 DLL 131795770645385613 0x7ffabe6e0000 561152 C:\Windows\system32\directmanipulation.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Direct Manipulation Component 131795770645385613 0x7ffabe770000 774144 C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\CSGSuggestLib.dll 131795770645385613 0x7ffabe9c0000 188416 C:\Windows\SYSTEM32\globinputhost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Globalization Extension API for Input 131795770645385613 0x7ffabea90000 135168 C:\Windows\System32\Windows.ApplicationModel.Background.SystemEventsBroker.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Background System Events Broker API Server 131795770645385613 0x7ffabeac0000 335872 C:\Windows\System32\Windows.Storage.ApplicationData.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Application Data API Server 131795770645385613 0x7ffabeb20000 385024 C:\Windows\System32\Windows.ApplicationModel.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows ApplicationModel API Server 131795770645385613 0x7ffabefa0000 192512 C:\Windows\system32\Cortana.Persona.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Cortana.Persona 131795770645385613 0x7ffabf5d0000 2924544 C:\Windows\SYSTEM32\WININET.dll 11.00.14393.447 (rs1_release_inmarket.161102-0100) Microsoft Corporation Расширения Интернета для Win32 131795770645385613 0x7ffabf8a0000 122880 C:\Windows\System32\Windows.Cortana.ProxyStub.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows.Cortana.ProxyStub 131795770645385613 0x7ffabfce0000 90112 C:\Windows\System32\Windows.Globalization.Fontgroups.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Fonts Mapping API 131795770645385613 0x7ffabfd00000 356352 C:\Windows\System32\Windows.Graphics.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation WinRT Windows Graphics DLL 131795770645385613 0x7ffabfd80000 86016 C:\Windows\System32\threadpoolwinrt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows WinRT Threadpool 131795770645385613 0x7ffabfe10000 237568 C:\Windows\SYSTEM32\rometadata.dll 4.6.1586.0 built by: NETFXREL2 Microsoft Corporation Microsoft MetaData Library 131795770645385613 0x7ffac00c0000 282624 C:\Windows\SYSTEM32\windows.ui.core.textinput.dll 10.0.14393.2189 (rs1_release.180329-1711) Microsoft Corporation Windows.UI.Core.TextInput dll 131795770645385613 0x7ffac01e0000 397312 C:\Windows\SYSTEM32\wincorlib.DLL 10.0.14393.576 (rs1_release_inmarket.161208-2252) Microsoft Corporation Microsoft Windows ® WinRT core library 131795770645385613 0x7ffac0bf0000 3559424 C:\Windows\System32\ActXPrxy.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation ActiveX Interface Marshaling Library 131795770645385613 0x7ffac10b0000 217088 C:\Windows\system32\PersonaX.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation PersonaX 131795770645385613 0x7ffac1c40000 94208 C:\Windows\System32\SystemSettings.DataModel.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SystemSettings.Datamodel private API 131795770645385613 0x7ffac20d0000 110592 C:\Windows\System32\rmclient.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Resource Manager Client 131795770645385613 0x7ffac23c0000 331776 C:\Windows\System32\OneCoreCommonProxyStub.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation OneCore Common Proxy Stub 131795770645385613 0x7ffac2990000 385024 C:\Windows\SYSTEM32\NInput.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Pen and Touch Input Component 131795770645385613 0x7ffac2c30000 135168 C:\Windows\SYSTEM32\clipc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиент платформы лицензирования клиента 131795770645385613 0x7ffac2d80000 5140480 C:\Windows\SYSTEM32\cdp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API клиента Microsoft (R) CDP 131795770645385613 0x7ffac34e0000 1843200 C:\Windows\SYSTEM32\urlmon.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширения OLE32 для Win32 131795770645385613 0x7ffac3810000 167936 C:\Windows\SYSTEM32\Cabinet.dll 5.00 (rs1_release.160715-1616) Microsoft Corporation Microsoft® Cabinet File API 131795770645385613 0x7ffac3b80000 286720 C:\Windows\system32\indexeddbserver.dll 10.0.14393.2189 (rs1_release.180329-1711) Microsoft Corporation IndexedDb host 131795770645385613 0x7ffac3bf0000 94208 C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\ActionMgr.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Cortana Action Manager 131795770645385613 0x7ffac3cb0000 2772992 C:\Windows\SYSTEM32\iertutil.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служебная программа времени выполнения для Internet Explorer 131795770645385613 0x7ffac4000000 274432 C:\Windows\SYSTEM32\policymanager.dll 10.0.14393.2035 (rs1_release_inmarket.180110-1910) Microsoft Corporation Policy Manager DLL 131795770645385613 0x7ffac5070000 798720 C:\Windows\System32\Windows.Web.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL веб-клиента 131795770645385613 0x7ffac5350000 1765376 C:\Windows\System32\Windows.UI.Immersive.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation WINDOWS.UI.IMMERSIVE 131795770645385613 0x7ffac5ce0000 1744896 C:\Windows\SYSTEM32\UIAutomationCore.DLL 7.2.14393.0 (rs1_release.160715-1616) Microsoft Corporation Основные автоматические компоненты Microsoft UI 131795770645385613 0x7ffac60e0000 221184 C:\Windows\SYSTEM32\XmlLite.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft XmlLite Library 131795770645385613 0x7ffac6610000 40960 C:\Windows\System32\rasadhlp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Remote Access AutoDial Helper 131795770645385613 0x7ffac6620000 192512 C:\Windows\System32\biwinrt.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation Windows Background Broker Infrastructure 131795770645385613 0x7ffac66a0000 86016 C:\Windows\SYSTEM32\ondemandconnroutehelper.dll 10.0.14393.351 (rs1_release_inmarket.161014-1755) Microsoft Corporation On Demand Connctiond Route Helper 131795770645385613 0x7ffac69c0000 839680 C:\Windows\SYSTEM32\WINHTTP.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Службы HTTP Windows 131795770645385613 0x7ffac6ac0000 835584 C:\Windows\System32\Windows.UI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Runtime UI Foundation DLL 131795770645385613 0x7ffac6bb0000 118784 C:\Windows\system32\windows.cortana.pal.desktop.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows.Cortana.PAL.Desktop 131795770645385613 0x7ffac6bd0000 413696 C:\Windows\SYSTEM32\OLEACC.dll 7.2.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Active Accessibility Core Component 131795770645385613 0x7ffac6ed0000 155648 C:\Windows\SYSTEM32\srpapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL программных интерфейсов (API) поставщика общих ресурсов 131795770645385613 0x7ffac6f50000 5632000 C:\Windows\SYSTEM32\d2d1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека Microsoft D2D 131795770645385613 0x7ffac7580000 1077248 C:\Windows\System32\MrmCoreR.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Windows MRM 131795770645385613 0x7ffac7720000 1601536 C:\Windows\System32\OneCoreUAPCommonProxyStub.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation OneCoreUAP Common Proxy Stub 131795770645385613 0x7ffac78b0000 65536 C:\Windows\system32\msimtf.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Active IMM Server DLL 131795770645385613 0x7ffac7c50000 118784 C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\BingConfigurationClient.dll 10.0.14393.82 (rs1_release.160805-1735) Microsoft Corporation Bing Configuration Client DLL 131795770645385613 0x7ffac7d80000 49152 C:\Windows\System32\Windows.ApplicationModel.Background.TimeBroker.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Background Time Broker API Server 131795770645385613 0x7ffac7e30000 40960 C:\Windows\SYSTEM32\fontgroupsoverride.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation fontgroupsoverride.dll 131795770645385613 0x7ffac7fc0000 2674688 C:\Windows\SYSTEM32\d3d10warp.dll 10.0.14393.576 (rs1_release_inmarket.161208-2252) Microsoft Corporation Direct3D 10 Rasterizer 131795770645385613 0x7ffac83d0000 106496 C:\Windows\SYSTEM32\dhcpcsvc.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служба DHCP-клиента 131795770645385613 0x7ffac83f0000 90112 C:\Windows\SYSTEM32\dhcpcsvc6.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиент DHCPv6 131795770645385613 0x7ffac84f0000 299008 C:\Windows\system32\DataExchange.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation Data exchange 131795770645385613 0x7ffac8810000 45056 C:\Windows\SYSTEM32\WINNSI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Network Store Information RPC interface 131795770645385613 0x7ffac88a0000 2842624 C:\Windows\SYSTEM32\d3d11.dll 10.0.14393.953 (rs1_release_inmarket.170303-1614) Microsoft Corporation Direct3D 11 Runtime 131795770645385613 0x7ffac8fa0000 253952 C:\Windows\SYSTEM32\logoncli.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Net Logon Client DLL 131795770645385613 0x7ffac92e0000 1269760 C:\Windows\System32\WinTypes.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL основных типов Windows 131795770645385613 0x7ffac9480000 462848 C:\Windows\SYSTEM32\MMDevAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation MMDevice API 131795770645385613 0x7ffac9500000 2682880 C:\Windows\system32\CoreUIComponents.dll 131795770645385613 0x7ffac9f50000 1736704 C:\Windows\system32\windowscodecs.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Microsoft Windows Codecs Library 131795770645385613 0x7ffaca260000 45056 C:\Windows\SYSTEM32\SystemEventsBrokerClient.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation system Events Broker Client Library 131795770645385613 0x7ffaca340000 1593344 C:\Windows\SYSTEM32\PROPSYS.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Система страниц свойств (Майкрософт) 131795770645385613 0x7ffaca570000 421888 C:\Windows\SYSTEM32\Bcp47Langs.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation BCP47 Language Classes 131795770645385613 0x7ffaca5e0000 155648 C:\Windows\SYSTEM32\dwmapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Интерфейс API диспетчера окон рабочего стола (Майкрософт) 131795770645385613 0x7ffaca640000 770048 C:\Windows\SYSTEM32\CoreMessaging.dll 10.0.14393.0 Microsoft Corporation Microsoft CoreMessaging Dll 131795770645385613 0x7ffaca770000 1380352 C:\Windows\SYSTEM32\dcomp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft DirectComposition Library 131795770645385613 0x7ffacab40000 176128 C:\Windows\SYSTEM32\winmmbase.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base Multimedia Extension API DLL 131795770645385613 0x7ffacadf0000 499712 C:\Windows\system32\apphelp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиентская библиотека совместимости приложений 131795770645385613 0x7ffacaf00000 610304 C:\Windows\system32\uxtheme.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека тем UxTheme (Microsoft) 131795770645385613 0x7ffacb140000 593920 C:\Windows\SYSTEM32\msvcp110_win.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Microsoft® STL110 C++ Runtime Library 131795770645385613 0x7ffacb1e0000 1163264 C:\Windows\System32\twinapi.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation twinapi.appcore 131795770645385613 0x7ffacb300000 364544 C:\Windows\SYSTEM32\VEEventDispatcher.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Visual Element Event dispatcher 131795770645385613 0x7ffacb3f0000 163840 C:\Windows\SYSTEM32\DEVOBJ.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Device Information Set DLL 131795770645385613 0x7ffacb420000 204800 C:\Windows\SYSTEM32\ntmarta.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик Windows NT MARTA 131795770645385613 0x7ffacb780000 651264 C:\Windows\SYSTEM32\dxgi.dll 10.0.14393.953 (rs1_release_inmarket.170303-1614) Microsoft Corporation DirectX Graphics Infrastructure 131795770645385613 0x7ffacbd30000 229376 C:\Windows\SYSTEM32\IPHLPAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API вспомогательного приложения IP 131795770645385613 0x7ffacbd70000 659456 C:\Windows\SYSTEM32\DNSAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Динамическая библиотека API DNS-клиента 131795770645385613 0x7ffacbe40000 126976 C:\Windows\SYSTEM32\userenv.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Userenv 131795770645385613 0x7ffacbfb0000 376832 C:\Windows\system32\mswsock.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширение поставщика службы API Microsoft Windows Sockets 2.0 131795770645385613 0x7ffacc150000 94208 C:\Windows\SYSTEM32\cryptsp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Cryptographic Service Provider API 131795770645385613 0x7ffacc170000 45056 C:\Windows\SYSTEM32\CRYPTBASE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base cryptographic API DLL 131795770645385613 0x7ffacc1f0000 241664 C:\Windows\SYSTEM32\NTASN1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft ASN.1 API 131795770645385613 0x7ffacc230000 155648 C:\Windows\SYSTEM32\ncrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Маршрутизатор Windows NCrypt 131795770645385613 0x7ffacc350000 180224 C:\Windows\SYSTEM32\SspiCli.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Security Support Provider Interface 131795780654647361 0x7ffacc520000 622592 C:\Windows\System32\sxs.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Fusion 2.5 131795770645385613 0x7ffacc620000 176128 C:\Windows\SYSTEM32\bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795770645385613 0x7ffacc6e0000 61440 C:\Windows\System32\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795770645385613 0x7ffacc6f0000 311296 C:\Windows\System32\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795770645385613 0x7ffacc740000 81920 C:\Windows\System32\profapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Profile Basic API 131795770645385613 0x7ffacc760000 65536 C:\Windows\System32\MSASN1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ASN.1 Runtime APIs 131795770645385613 0x7ffacc8f0000 1003520 C:\Windows\System32\ucrtbase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645385613 0x7ffacc9f0000 434176 C:\Windows\System32\bcryptPrimitives.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Cryptographic Primitives Library 131795770645385613 0x7ffacca60000 122880 C:\Windows\System32\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795770645385613 0x7ffaccae0000 692224 C:\Windows\System32\shcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795770645385613 0x7ffaccb90000 7180288 C:\Windows\System32\windows.storage.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API хранения Microsoft WinRT 131795770645385613 0x7ffacd270000 2215936 C:\Windows\System32\KERNELBASE.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645385613 0x7ffacd490000 1871872 C:\Windows\System32\CRYPT32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API32 криптографии 131795770645385613 0x7ffacd710000 638976 C:\Windows\System32\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645385613 0x7ffacd7b0000 270336 C:\Windows\System32\cfgmgr32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Configuration Manager DLL 131795770645385613 0x7ffacd810000 22056960 C:\Windows\System32\shell32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Общая библиотека оболочки Windows 131795770645385613 0x7ffaced20000 782336 C:\Windows\System32\OLEAUT32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795770645385613 0x7ffacee50000 1183744 C:\Windows\System32\RPCRT4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795770645385613 0x7ffacef80000 32768 C:\Windows\System32\NSI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation NSI User-mode interface DLL 131795770645385613 0x7ffacef90000 647168 C:\Windows\System32\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795770645385613 0x7ffacf0d0000 704512 C:\Windows\System32\KERNEL32.DLL 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645385613 0x7ffacf1e0000 1417216 C:\Windows\System32\msctf.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Серверная библиотека MSCTF 131795770645385613 0x7ffacf770000 212992 C:\Windows\System32\GDI32.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation GDI Client DLL 131795770645385613 0x7ffacf820000 434176 C:\Windows\System32\WS2_32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation 32-разрядная библиотека Windows Socket 2.0 131795770645385613 0x7ffacf890000 188416 C:\Windows\System32\IMM32.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Multi-User Windows IMM32 API Client DLL 131795770645385613 0x7ffacf8c0000 1462272 C:\Windows\System32\user32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795770645385613 0x7ffacfb30000 2916352 C:\Windows\System32\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795770645385613 0x7ffacfe20000 663552 C:\Windows\System32\advapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795770645385613 0x7ffad0070000 1277952 C:\Windows\System32\ole32.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft OLE для Windows 131795770645385613 0x7ffad01b0000 335872 C:\Windows\System32\shlwapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека небольших программ оболочки 131795770645385613 0x7ffad0210000 364544 C:\Windows\System32\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795770645385613 0x7ffad0270000 1908736 C:\Windows\SYSTEM32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 79 5612 904 22 00000000:000003e5 131794965205293998 0 0 1 Обязательная метка\Обязательный уровень системы NT AUTHORITY\LOCAL SERVICE dashost.exe C:\Windows\system32\dashost.exe dashost.exe {609e1ffd-7b4d-4dbc-a36f725917d81f2d} Microsoft Corporation 10.0.14393.82 (rs1_release.160805-1735) Device Association Framework Provider Host 131795770645385987 0x7ff6559c0000 110592 C:\Windows\system32\dashost.exe 10.0.14393.82 (rs1_release.160805-1735) Microsoft Corporation Device Association Framework Provider Host 131795770645385987 0x7ffabb1a0000 274432 C:\Windows\system32\DAFWSD.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DAF WSD Provider 131795770645385987 0x7ffabc970000 188416 C:\Windows\system32\dafupnp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DAF UPnP Provider 131795770645385987 0x7ffac1d60000 589824 C:\Windows\system32\webio.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API протоколов передачи по Веб 131795770645385987 0x7ffac3f60000 225280 C:\Windows\system32\FWPolicyIOMgr.dll 10.0.14393.2189 (rs1_release.180329-1711) Microsoft Corporation FwPolicyIoMgr DLL 131795770645385987 0x7ffac60e0000 221184 C:\Windows\system32\XmlLite.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft XmlLite Library 131795770645385987 0x7ffac66c0000 32768 C:\Windows\system32\wship6.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL помощника Winsock2 (TL/IPv6) 131795770645385987 0x7ffac66d0000 32768 C:\Windows\system32\wshtcpip.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL помощника службы Winsock2 (TL/IPv4) 131795770645385987 0x7ffac6700000 40960 C:\Windows\system32\wshqos.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL помощника службы QoS Winsock2 131795770645385987 0x7ffac6750000 1380352 C:\Windows\system32\webservices.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Среда выполнения веб-служб Windows 131795770645385987 0x7ffac68b0000 696320 C:\Windows\system32\wsdapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Веб-службы для библиотек DLL API-интерфейсов устройств 131795770645385987 0x7ffac6990000 69632 C:\Windows\system32\deviceassociation.dll 10.0.14393.82 (rs1_release.160805-1735) Microsoft Corporation Device Association Client DLL 131795770645385987 0x7ffac69c0000 839680 C:\Windows\system32\WINHTTP.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Службы HTTP Windows 131795770645385987 0x7ffac79c0000 57344 C:\Windows\System32\npmproxy.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Network List Manager Proxy 131795770645385987 0x7ffac7e50000 86016 C:\Windows\system32\SSDPAPI.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation SSDP Client API DLL 131795770645385987 0x7ffac83d0000 106496 C:\Windows\SYSTEM32\dhcpcsvc.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служба DHCP-клиента 131795770645385987 0x7ffac83f0000 90112 C:\Windows\SYSTEM32\dhcpcsvc6.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиент DHCPv6 131795770645385987 0x7ffac8810000 45056 C:\Windows\SYSTEM32\WINNSI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Network Store Information RPC interface 131795770645385987 0x7ffac9f10000 221184 C:\Windows\System32\netprofm.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Network List Manager 131795770645385987 0x7ffacb360000 176128 C:\Windows\system32\fwbase.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Firewall Base DLL 131795770645385987 0x7ffacb460000 548864 C:\Windows\system32\FirewallAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API брандмауэра Windows 131795770645385987 0x7ffacbbb0000 208896 C:\Windows\system32\rsaenh.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Enhanced Cryptographic Provider 131795770645385987 0x7ffacbd30000 229376 C:\Windows\system32\IPHLPAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API вспомогательного приложения IP 131795770645385987 0x7ffacbd70000 659456 C:\Windows\system32\DNSAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Динамическая библиотека API DNS-клиента 131795770645385987 0x7ffacbfb0000 376832 C:\Windows\system32\mswsock.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширение поставщика службы API Microsoft Windows Sockets 2.0 131795770645385987 0x7ffacc150000 94208 C:\Windows\system32\CRYPTSP.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Cryptographic Service Provider API 131795770645385987 0x7ffacc170000 45056 C:\Windows\system32\CRYPTBASE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base cryptographic API DLL 131795770645385987 0x7ffacc350000 180224 C:\Windows\system32\SspiCli.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Security Support Provider Interface 131795770645385987 0x7ffacc620000 176128 C:\Windows\system32\bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795770645385987 0x7ffacc6e0000 61440 C:\Windows\System32\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795770645385987 0x7ffacc6f0000 311296 C:\Windows\System32\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795770645385987 0x7ffacc760000 65536 C:\Windows\System32\MSASN1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ASN.1 Runtime APIs 131795770645385987 0x7ffacc8f0000 1003520 C:\Windows\System32\ucrtbase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645385987 0x7ffacc9f0000 434176 C:\Windows\System32\bcryptPrimitives.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Cryptographic Primitives Library 131795770645385987 0x7ffacca60000 122880 C:\Windows\System32\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795770645385987 0x7ffacd270000 2215936 C:\Windows\System32\KERNELBASE.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645385987 0x7ffacd490000 1871872 C:\Windows\System32\CRYPT32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API32 криптографии 131795770645385987 0x7ffacd710000 638976 C:\Windows\System32\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645385987 0x7ffacd7b0000 270336 C:\Windows\System32\cfgmgr32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Configuration Manager DLL 131795770645385987 0x7ffaced20000 782336 C:\Windows\System32\OLEAUT32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795770645385987 0x7ffacee50000 1183744 C:\Windows\System32\RPCRT4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795770645385987 0x7ffacef80000 32768 C:\Windows\System32\NSI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation NSI User-mode interface DLL 131795770645385987 0x7ffacef90000 647168 C:\Windows\System32\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795770645385987 0x7ffacf030000 651264 C:\Windows\System32\clbcatq.dll 2001.12.10941.16384 (rs1_release.160715-1616) Microsoft Corporation COM+ Configuration Catalog 131795770645385987 0x7ffacf0d0000 704512 C:\Windows\System32\KERNEL32.DLL 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645385987 0x7ffacf770000 212992 C:\Windows\System32\GDI32.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation GDI Client DLL 131795770645385987 0x7ffacf820000 434176 C:\Windows\System32\WS2_32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation 32-разрядная библиотека Windows Socket 2.0 131795770645385987 0x7ffacf8c0000 1462272 C:\Windows\System32\user32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795770645385987 0x7ffacfb30000 2916352 C:\Windows\System32\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795770645385987 0x7ffad0210000 364544 C:\Windows\System32\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795770645385987 0x7ffad0270000 1908736 C:\Windows\SYSTEM32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 80 9720 9180 81 00000000:0031f1ab 131794969418818027 0 0 0 Обязательная метка\Высокий обязательный уровень WIN-0UOTFKKVN1S\User Windows10UpgraderApp.exe C:\Windows10Upgrade\Windows10UpgraderApp.exe "C:\Windows10Upgrade\Windows10UpgraderApp.exe" /Install /ClientID Win10Upgrade:VNL:NHV18:{} /SkipEULA /PostEosUi Microsoft Corporation 1.4.9200.22452 Помощник по обновлению Windows 10 131795770645386103 0xb30000 1875968 C:\Windows10Upgrade\Windows10UpgraderApp.exe 1.4.9200.22452 Microsoft Corporation Помощник по обновлению Windows 10 131795770645386103 0x5c020000 335872 C:\Windows\System32\wow64.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation Win32 Emulation on NT64 131795770645386103 0x5c080000 487424 C:\Windows\System32\wow64win.dll 10.0.14393.1884 (rs1_release.171101-1233) Microsoft Corporation Wow64 Console and Win32 API Logging 131795770645386103 0x5c100000 40960 C:\Windows\System32\wow64cpu.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation AMD64 Wow64 CPU 131795770645386103 0x5fec0000 794624 C:\Windows\SysWOW64\wbem\fastprox.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation WMI Custom Marshaller 131795770645386103 0x5ffa0000 421888 C:\Windows\SysWOW64\wbemcomn.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation WMI 131795770645386103 0x60010000 53248 C:\Windows\SysWOW64\wbem\wbemprox.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation WMI 131795770645386103 0x60750000 1556480 C:\Program Files (x86)\360\Total Security\safemon\safemon.dll 8, 4, 0, 1420 Qihu 360 Software Co., Ltd. 360 Internet Security Internet Protection 131795770645386103 0x627d0000 249856 C:\Windows\SysWOW64\edputil.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служебная программа EDP 131795770645386103 0x64d00000 5079040 C:\Windows\SysWOW64\d2d1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека Microsoft D2D 131795770645386103 0x651e0000 20537344 C:\Windows\SysWOW64\mshtml.dll 11.00.14393.447 (rs1_release_inmarket.161102-0100) Microsoft Corporation Средство просмотра HTML Microsoft® 131795770645386103 0x66580000 12247040 C:\Windows\SysWOW64\ieframe.dll 11.00.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Браузер 131795770645386103 0x67200000 1978368 C:\Windows\SysWOW64\msxml6.dll 6.30.14393.2156 Microsoft Corporation MSXML 6.0 131795770645386103 0x67500000 1597440 C:\Windows\SysWOW64\ActXPrxy.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation ActiveX Interface Marshaling Library 131795770645386103 0x6b670000 212992 C:\Windows\SysWOW64\mlang.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL многоязыковой поддержки 131795770645386103 0x6c290000 987136 C:\Windows\SysWOW64\twinapi.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation twinapi.appcore 131795770645386103 0x6c390000 1126400 C:\Windows\SysWOW64\dcomp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft DirectComposition Library 131795770645386103 0x6c4b0000 278528 C:\Windows\SysWOW64\dataexchange.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation Data exchange 131795770645386103 0x6c540000 483328 C:\Windows\SysWOW64\webio.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API протоколов передачи по Веб 131795770645386103 0x6c720000 2318336 C:\Windows\SysWOW64\d3d10warp.dll 10.0.14393.576 (rs1_release_inmarket.161208-2252) Microsoft Corporation Direct3D 10 Rasterizer 131795770645386103 0x6c960000 57344 C:\Windows\SysWOW64\msimtf.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Active IMM Server DLL 131795770645386103 0x6c970000 3698688 C:\Windows\SysWOW64\jscript9.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft ® JScript 131795770645386103 0x6cd00000 69632 C:\Windows\SysWOW64\WLDP.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Политика блокировки Windows 131795770645386103 0x6cd20000 135168 C:\Windows\SysWOW64\srpapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL программных интерфейсов (API) поставщика общих ресурсов 131795770645386103 0x6cda0000 528384 C:\Windows\SysWOW64\sxs.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Fusion 2.5 131795770645386103 0x6d080000 151552 C:\Windows\SysWOW64\cryptnet.dll 10.0.14393.2035 (rs1_release_inmarket.180110-1910) Microsoft Corporation Crypto Network Related API 131795770645386103 0x6d0b0000 847872 C:\Windows\SysWOW64\WinTypes.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL основных типов Windows 131795770645386103 0x6d6e0000 634880 C:\Windows\SysWOW64\Windows.UI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Runtime UI Foundation DLL 131795770645386103 0x6d780000 876544 C:\Windows\SysWOW64\mrmcorer.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Windows MRM 131795770645386103 0x6d860000 1245184 C:\Windows\SysWOW64\MFC42u.dll 6.06.8063.0 Microsoft Corporation Общая библиотека MFCDLL - розничная версия 131795770645386103 0x6dcd0000 606208 C:\Windows\WinSxS\x86_microsoft.windows.common-controls_6595b64144ccf1df_5.82.14393.447_none_5507ded2cb4f7f4c\COMCTL32.dll 6.10 (rs1_release_inmarket.170303-1614) Microsoft Corporation Библиотека элементов управления взаимодействия с пользователем 131795770645386103 0x6ded0000 630784 C:\Windows\SysWOW64\ODBC32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ODBC Driver Manager 131795770645386103 0x6dfc0000 53248 C:\Windows\SysWOW64\execmodelproxy.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ExecModelProxy 131795770645386103 0x6dfd0000 253952 C:\Windows\SysWOW64\UIAnimation.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Animation Manager 131795770645386103 0x6e010000 208896 C:\Windows10Upgrade\Downloader.dll 1.4.9200.22452 (win8_ldr.180426-0600) Microsoft Corporation Downloader 131795770645386103 0x6e050000 81920 C:\Windows\SysWOW64\Windows.Shell.ServiceHostBuilder.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows.Shell.ServiceHostBuilder 131795770645386103 0x6e710000 335872 C:\Windows\SysWOW64\Bcp47Langs.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation BCP47 Language Classes 131795770645386103 0x70340000 536576 C:\Windows\SysWOW64\dxgi.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation DirectX Graphics Infrastructure 131795770645386103 0x703d0000 2056192 C:\Windows\SysWOW64\DWrite.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Службы Microsoft DirectX Typography 131795770645386103 0x705e0000 344064 C:\Windows\SysWOW64\OLEACC.DLL 7.2.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Active Accessibility Core Component 131795770645386103 0x70640000 1499136 C:\Windows\SysWOW64\windowscodecs.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Microsoft Windows Codecs Library 131795770645386103 0x707b0000 110592 C:\Windows\SysWOW64\ncryptsslp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft SChannel Provider 131795770645386103 0x707d0000 86016 C:\Windows\SysWOW64\SAMCLI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Security Accounts Manager Client DLL 131795770645386103 0x707f0000 2293760 C:\Windows\SysWOW64\d3d11.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation Direct3D 11 Runtime 131795770645386103 0x70a80000 409600 C:\Windows\SysWOW64\schannel.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик безопасности TLS/SSL 131795770645386103 0x70b40000 69632 C:\Windows\SysWOW64\mskeyprotect.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик защиты ключей (Майкрософт) 131795770645386103 0x70b70000 163840 C:\Windows\SysWOW64\ntmarta.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик Windows NT MARTA 131795770645386103 0x70ca0000 45056 C:\Windows\SysWOW64\NETUTILS.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API Helpers DLL 131795770645386103 0x70cc0000 65536 C:\Windows\SysWOW64\ondemandconnroutehelper.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation On Demand Connctiond Route Helper 131795770645386103 0x70e60000 176128 C:\Windows\SysWOW64\NTASN1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft ASN.1 API 131795770645386103 0x71140000 77824 C:\Windows\SysWOW64\NETAPI32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API DLL 131795770645386103 0x71610000 77824 C:\Windows\SysWOW64\dhcpcsvc6.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиент DHCPv6 131795770645386103 0x725e0000 2273280 C:\Windows\SysWOW64\iertutil.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служебная программа времени выполнения для Internet Explorer 131795770645386103 0x728e0000 1372160 C:\Windows\SysWOW64\PROPSYS.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Система страниц свойств (Майкрософт) 131795770645386103 0x72b90000 126976 C:\Windows\SysWOW64\dwmapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Интерфейс API диспетчера окон рабочего стола (Майкрософт) 131795770645386103 0x72cc0000 1658880 C:\Windows\SysWOW64\urlmon.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширения OLE32 для Win32 131795770645386103 0x73a40000 32768 C:\Windows\SysWOW64\WINNSI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Network Store Information RPC interface 131795770645386103 0x73a50000 299008 C:\Windows\SysWOW64\fwpuclnt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API пользовательского режима FWP/IPsec 131795770645386103 0x73aa0000 32768 C:\Windows\SysWOW64\DPAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Data Protection API 131795770645386103 0x73ab0000 32768 C:\Windows\SysWOW64\rasadhlp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Remote Access AutoDial Helper 131795770645386103 0x73ac0000 81920 C:\Windows\SysWOW64\dhcpcsvc.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служба DHCP-клиента 131795770645386103 0x73ae0000 40960 C:\Windows\SysWOW64\Secur32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Security Support Provider Interface 131795770645386103 0x73f00000 192512 C:\Windows\SysWOW64\IPHLPAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API вспомогательного приложения IP 131795770645386103 0x73f30000 512000 C:\Windows\SysWOW64\DNSAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Динамическая библиотека API DNS-клиента 131795770645386103 0x73ff0000 319488 C:\Windows\SysWOW64\mswsock.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширение поставщика службы API Microsoft Windows Sockets 2.0 131795770645386103 0x74060000 192512 C:\Windows\SysWOW64\rsaenh.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Enhanced Cryptographic Provider 131795770645386103 0x74110000 479232 C:\Windows\SysWOW64\uxtheme.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека тем UxTheme (Microsoft) 131795770645386103 0x74190000 110592 C:\Windows\SysWOW64\bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795770645386103 0x741b0000 77824 C:\Windows\SysWOW64\CRYPTSP.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Cryptographic Service Provider API 131795770645386103 0x74260000 2514944 C:\Windows\SysWOW64\WININET.dll 11.00.14393.447 (rs1_release_inmarket.161102-0100) Microsoft Corporation Расширения Интернета для Win32 131795770645386103 0x744d0000 2138112 C:\Windows\WinSxS\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.14393.953_none_89c2555adb023171\comctl32.dll 6.10 (rs1_release_inmarket.170303-1614) Microsoft Corporation Библиотека элементов управления взаимодействия с пользователем 131795770645386103 0x746e0000 32768 C:\Windows\SysWOW64\VERSION.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Version Checking and File Installation Libraries 131795770645386103 0x746f0000 106496 C:\Windows\SysWOW64\USERENV.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Userenv 131795770645386103 0x74730000 598016 C:\Windows\SysWOW64\apphelp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиентская библиотека совместимости приложений 131795770645386103 0x747d0000 40960 C:\Windows\SysWOW64\CRYPTBASE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base cryptographic API DLL 131795770645386103 0x747e0000 126976 C:\Windows\SysWOW64\SspiCli.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Security Support Provider Interface 131795770645386103 0x74800000 151552 C:\Windows\SysWOW64\IMM32.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Multi-User Windows IMM32 API Client DLL 131795770645386103 0x74910000 2170880 C:\Windows\SysWOW64\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795770645386103 0x74b30000 53248 C:\Windows\SysWOW64\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795770645386103 0x74b60000 790528 C:\Windows\SysWOW64\RPCRT4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795770645386103 0x74c30000 1417216 C:\Windows\SysWOW64\gdi32full.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation GDI Client DLL 131795770645386103 0x74d90000 24576 C:\Windows\SysWOW64\PSAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Process Status Helper 131795770645386103 0x74da0000 778240 C:\Windows\SysWOW64\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795770645386103 0x74e60000 557056 C:\Windows\SysWOW64\shcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795770645386103 0x74ef0000 540672 C:\Windows\SysWOW64\clbcatq.dll 2001.12.10941.16384 (rs1_release.160715-1616) Microsoft Corporation COM+ Configuration Catalog 131795770645386103 0x74f80000 278528 C:\Windows\SysWOW64\WINTRUST.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation Microsoft Trust Verification APIs 131795770645386103 0x74fd0000 405504 C:\Windows\SysWOW64\WS2_32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation 32-разрядная библиотека Windows Socket 2.0 131795770645386103 0x75040000 282624 C:\Windows\SysWOW64\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795770645386103 0x75090000 1265664 C:\Windows\SysWOW64\MSCTF.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Серверная библиотека MSCTF 131795770645386103 0x751d0000 57344 C:\Windows\SysWOW64\MSASN1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ASN.1 Runtime APIs 131795770645386103 0x751e0000 1708032 C:\Windows\SysWOW64\KERNELBASE.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645386103 0x75390000 266240 C:\Windows\SysWOW64\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795770645386103 0x753e0000 1560576 C:\Windows\SysWOW64\CRYPT32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API32 криптографии 131795770645386103 0x75560000 487424 C:\Windows\SysWOW64\ADVAPI32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795770645386103 0x756c0000 5693440 C:\Windows\SysWOW64\windows.storage.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API хранения Microsoft WinRT 131795770645386103 0x75c90000 286720 C:\Windows\SysWOW64\shlwapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека небольших программ оболочки 131795770645386103 0x75ce0000 20811776 C:\Windows\SysWOW64\SHELL32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Общая библиотека оболочки Windows 131795770645386103 0x774d0000 86016 C:\Windows\SysWOW64\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795770645386103 0x774f0000 61440 C:\Windows\SysWOW64\profapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Profile Basic API 131795770645386103 0x77560000 1437696 C:\Windows\SysWOW64\USER32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795770645386103 0x776c0000 368640 C:\Windows\SysWOW64\bcryptPrimitives.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation Windows Cryptographic Primitives Library 131795770645386103 0x77780000 503808 C:\Windows\SysWOW64\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645386103 0x77800000 606208 C:\Windows\SysWOW64\OLEAUT32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795770645386103 0x77ac0000 966656 C:\Windows\SysWOW64\ole32.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft OLE для Windows 131795770645386103 0x77bb0000 176128 C:\Windows\SysWOW64\GDI32.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation GDI Client DLL 131795770645386103 0x77cd0000 221184 C:\Windows\SysWOW64\cfgmgr32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Configuration Manager DLL 131795770645386103 0x77d10000 28672 C:\Windows\SysWOW64\NSI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation NSI User-mode interface DLL 131795770645386103 0x77d20000 1585152 C:\Windows\SysWOW64\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 131795770645386103 0x7ffad0270000 1908736 C:\Windows\SYSTEM32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 82 8944 520 18 00000000:0031f1da 131795005508439638 0 0 1 Обязательная метка\Низкий обязательный уровень WIN-0UOTFKKVN1S\User fontdrvhost.exe C:\Windows\system32\fontdrvhost.exe "fontdrvhost.exe" Microsoft Corporation 10.0.14393.2189 (rs1_release.180329-1711) Usermode Font Driver Host 131795770645386388 0x7ff654db0000 638976 C:\Windows\system32\fontdrvhost.exe 10.0.14393.2189 (rs1_release.180329-1711) Microsoft Corporation Usermode Font Driver Host 131795770645386388 0x7ffacc770000 1572864 C:\Windows\System32\gdi32full.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation GDI Client DLL 131795770645386388 0x7ffacca60000 122880 C:\Windows\System32\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795770645386388 0x7ffacd270000 2215936 C:\Windows\System32\KERNELBASE.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645386388 0x7ffacef90000 647168 C:\Windows\System32\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795770645386388 0x7ffacf0d0000 704512 C:\Windows\System32\KERNEL32.DLL 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645386388 0x7ffacf770000 212992 C:\Windows\System32\gdi32.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation GDI Client DLL 131795770645386388 0x7ffacf890000 188416 C:\Windows\System32\IMM32.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Multi-User Windows IMM32 API Client DLL 131795770645386388 0x7ffacf8c0000 1462272 C:\Windows\System32\USER32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795770645386388 0x7ffad0270000 1908736 C:\Windows\SYSTEM32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 83 6684 664 6 00000000:0031f1da 131795006053748558 0 0 1 Обязательная метка\Низкий обязательный уровень WIN-0UOTFKKVN1S\User Microsoft.Photos.exe C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2017.35063.44410.0_x64__8wekyb3d8bbwe\Microsoft.Photos.exe "C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2017.35063.44410.0_x64__8wekyb3d8bbwe\Microsoft.Photos.exe" -ServerName:App.AppXzst44mncqdg84v7sv6p7yznqwssy6f7f.mca 131795770645660438 0x7ff705e40000 36864 C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2017.35063.44410.0_x64__8wekyb3d8bbwe\Microsoft.Photos.exe 131795770645660438 0x7ffa9bb10000 1380352 C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2017.35063.44410.0_x64__8wekyb3d8bbwe\Microsoft.RichMedia.Ink.Controls.dll 131795770645660438 0x7ffa9bc70000 3158016 C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2017.35063.44410.0_x64__8wekyb3d8bbwe\Microsoft.UI.Xaml.dll 131795770645660438 0x7ffa9bf80000 2994176 C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2017.35063.44410.0_x64__8wekyb3d8bbwe\AppCore.Windows.dll 131795770645660438 0x7ffa9c260000 20144128 C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2017.35063.44410.0_x64__8wekyb3d8bbwe\PhotosApp.Windows.dll 131795770645660438 0x7ffa9d5a0000 29011968 C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2017.35063.44410.0_x64__8wekyb3d8bbwe\Microsoft.Photos.dll 131795770645660438 0x7ffa9f150000 6311936 C:\Windows\System32\Windows.Media.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Media Runtime DLL 131795770645660438 0x7ffa9fb20000 7950336 C:\Program Files\WindowsApps\Microsoft.NET.Native.Framework.1.3_1.3.24201.0_x64__8wekyb3d8bbwe\SharedLibrary.dll Microsoft Corporation Microsoft .NET Native Shared Framework 131795770645660438 0x7ffaa03f0000 4546560 C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2017.35063.44410.0_x64__8wekyb3d8bbwe\FaceSdkStoreWrapper.dll 16.425.0.0 Microsoft Corporation FaceSdkStoreWrapper 131795770645660438 0x7ffaa0850000 2371584 C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2017.35063.44410.0_x64__8wekyb3d8bbwe\MediaEngine.dll 131795770645660438 0x7ffaab270000 917504 C:\Windows\System32\Windows.AccountsControl.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Accounts Control 131795770645660438 0x7ffaab750000 876544 C:\Windows\System32\Windows.Media.Import.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation Windows Photo Import API (WinRT/COM) 131795770645660438 0x7ffaac0c0000 1396736 C:\Windows\System32\Windows.UI.Xaml.Phone.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows UI XAML Phone API 131795770645660438 0x7ffab5b40000 2527232 C:\Windows\SYSTEM32\dwrite.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Службы Microsoft DirectX Typography 131795770645660438 0x7ffab6710000 17231872 C:\Windows\System32\Windows.UI.Xaml.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows.UI.Xaml dll 131795770645660438 0x7ffab8f40000 94208 C:\Windows\System32\Windows.System.Diagnostics.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows System Diagnostics DLL 131795770645660438 0x7ffab8f60000 397312 C:\Windows\System32\CryptoWinRT.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Crypto WinRT Library 131795770645660438 0x7ffab9270000 454656 C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2017.35063.44410.0_x64__8wekyb3d8bbwe\Microsoft.Photos.AGM.Native.Windows.dll 131795770645660438 0x7ffab9b40000 389120 C:\Program Files\WindowsApps\Microsoft.NET.Native.Runtime.1.4_1.4.24201.0_x64__8wekyb3d8bbwe\mrt100_app.dll 1.4.24201.0 built by: PROJECTNREL Microsoft Corporation Microsoft .NET Native Runtime 131795770645660438 0x7ffabb3c0000 450560 C:\Windows\SYSTEM32\TextInputFramework.dll 10.0.14393.2189 (rs1_release.180329-1711) Microsoft Corporation "TextInputFramework.DYNLINK" 131795770645660438 0x7ffabc510000 90112 C:\Windows\system32\execmodelproxy.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ExecModelProxy 131795770645660438 0x7ffabc5c0000 319488 C:\Windows\SYSTEM32\MFSENSORGROUP.dll 10.0.14393.447 (rs1_release_inmarket.161102-0100) Microsoft Corporation Media Foundation Sensor Group DLL 131795770645660438 0x7ffabc920000 270336 C:\Windows\System32\execmodelclient.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation ExecModelClient 131795770645660438 0x7ffabcef0000 102400 C:\Windows\System32\Windows.Shell.ServiceHostBuilder.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows.Shell.ServiceHostBuilder 131795770645660438 0x7ffabd4a0000 1613824 C:\Windows\System32\Windows.Globalization.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Globalization 131795770645660438 0x7ffabd8e0000 704512 C:\Windows\WinSxS\amd64_microsoft.windows.common-controls_6595b64144ccf1df_5.82.14393.447_none_0d5aa7fbb6d35646\comctl32.dll 6.10 (rs1_release_inmarket.170303-1614) Microsoft Corporation Библиотека элементов управления взаимодействия с пользователем 131795770645660438 0x7ffabe6e0000 561152 C:\Windows\system32\directmanipulation.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Direct Manipulation Component 131795770645660438 0x7ffabea30000 192512 C:\Windows\System32\Windows.Energy.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Energy Runtime DLL 131795770645660438 0x7ffabeac0000 335872 C:\Windows\System32\Windows.Storage.ApplicationData.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Application Data API Server 131795770645660438 0x7ffabeb20000 385024 C:\Windows\System32\Windows.ApplicationModel.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows ApplicationModel API Server 131795770645660438 0x7ffabf330000 2457600 C:\Windows\System32\msxml6.dll 6.30.14393.2156 Microsoft Corporation MSXML 6.0 131795770645660438 0x7ffabfce0000 90112 C:\Windows\System32\Windows.Globalization.Fontgroups.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Fonts Mapping API 131795770645660438 0x7ffabfd00000 356352 C:\Windows\System32\Windows.Graphics.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation WinRT Windows Graphics DLL 131795770645660438 0x7ffabfd80000 86016 C:\Windows\System32\threadpoolwinrt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows WinRT Threadpool 131795770645660438 0x7ffabfe10000 237568 C:\Windows\SYSTEM32\rometadata.dll 4.6.1586.0 built by: NETFXREL2 Microsoft Corporation Microsoft MetaData Library 131795770645660438 0x7ffac00c0000 282624 C:\Windows\SYSTEM32\windows.ui.core.textinput.dll 10.0.14393.2189 (rs1_release.180329-1711) Microsoft Corporation Windows.UI.Core.TextInput dll 131795770645660438 0x7ffac0470000 1478656 C:\Windows\SYSTEM32\MFPlat.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Media Foundation Platform DLL 131795770645660438 0x7ffac0910000 724992 C:\Windows\System32\Windows.Networking.Connectivity.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Networking Connectivity Runtime DLL 131795770645660438 0x7ffac0bf0000 3559424 C:\Windows\System32\ActXPrxy.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation ActiveX Interface Marshaling Library 131795770645660438 0x7ffac0fa0000 77824 C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2017.35063.44410.0_x64__8wekyb3d8bbwe\Microsoft.Photos.Edit.Services.dll 131795770645660438 0x7ffac1b90000 630784 C:\Program Files\WindowsApps\Microsoft.VCLibs.140.00_14.0.25426.0_x64__8wekyb3d8bbwe\MSVCP140_APP.dll 14.11.25426.0 built by: VCTOOLSREL Microsoft Corporation Microsoft® C Runtime Library 131795770645660438 0x7ffac1c70000 69632 C:\Program Files\WindowsApps\Microsoft.VCLibs.140.00_14.0.25426.0_x64__8wekyb3d8bbwe\VCOMP140_app.DLL 14.11.25426.0 built by: VCTOOLSREL Microsoft Corporation Microsoft® C/C++ OpenMP Runtime 131795770645660438 0x7ffac1e50000 188416 C:\Windows\SYSTEM32\RTWorkQ.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL для WorkQueue реального времени 131795770645660438 0x7ffac20d0000 110592 C:\Windows\System32\rmclient.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Resource Manager Client 131795770645660438 0x7ffac2c00000 69632 C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2017.35063.44410.0_x64__8wekyb3d8bbwe\clrcompression.dll 1.0.23123.00 built by: PROJECTKREL Microsoft Corporation ClrCompression 131795770645660438 0x7ffac2cb0000 778240 C:\Windows\SYSTEM32\winsqlite3.dll 3.12.2 SQLite Development Team SQLite is a software library that implements a self-contained, serverless, zero-configuration, transactional SQL database engine. 131795770645660438 0x7ffac3280000 36864 C:\Windows\SYSTEM32\mrt100.dll 1.0.24120.0 built by: PROJECTNREL Microsoft Corporation Microsoft .NET Native Runtime 131795770645660438 0x7ffac34e0000 1843200 C:\Windows\SYSTEM32\urlmon.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширения OLE32 для Win32 131795770645660438 0x7ffac3cb0000 2772992 C:\Windows\SYSTEM32\iertutil.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служебная программа времени выполнения для Internet Explorer 131795770645660438 0x7ffac4b10000 307200 C:\Program Files\WindowsApps\Microsoft.VCLibs.140.00_14.0.25426.0_x64__8wekyb3d8bbwe\CONCRT140_APP.dll 14.11.25426.0 built by: VCTOOLSREL Microsoft Corporation Microsoft® Concurrency Runtime Library 131795770645660438 0x7ffac4c60000 385024 C:\Program Files\WindowsApps\Microsoft.VCLibs.140.00_14.0.25426.0_x64__8wekyb3d8bbwe\vccorlib140_app.DLL 14.11.25426.0 built by: VCTOOLSREL Microsoft Corporation Microsoft ® VC WinRT core library 131795770645660438 0x7ffac5350000 1765376 C:\Windows\System32\Windows.UI.Immersive.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation WINDOWS.UI.IMMERSIVE 131795770645660438 0x7ffac60e0000 221184 C:\Windows\SYSTEM32\XmlLite.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft XmlLite Library 131795770645660438 0x7ffac6620000 192512 C:\Windows\System32\biwinrt.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation Windows Background Broker Infrastructure 131795770645660438 0x7ffac6ac0000 835584 C:\Windows\System32\Windows.UI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Runtime UI Foundation DLL 131795770645660438 0x7ffac6f50000 5632000 C:\Windows\SYSTEM32\d2d1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека Microsoft D2D 131795770645660438 0x7ffac7580000 1077248 C:\Windows\System32\MrmCoreR.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Windows MRM 131795770645660438 0x7ffac7720000 1601536 C:\Windows\System32\OneCoreUAPCommonProxyStub.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation OneCoreUAP Common Proxy Stub 131795770645660438 0x7ffac7e30000 40960 C:\Windows\SYSTEM32\fontgroupsoverride.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation fontgroupsoverride.dll 131795770645660438 0x7ffac7fc0000 2674688 C:\Windows\SYSTEM32\d3d10warp.dll 10.0.14393.576 (rs1_release_inmarket.161208-2252) Microsoft Corporation Direct3D 10 Rasterizer 131795770645660438 0x7ffac84f0000 299008 C:\Windows\system32\DataExchange.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation Data exchange 131795770645660438 0x7ffac8540000 286720 C:\Windows\System32\vaultcli.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиентская библиотека хранилища учетных данных 131795770645660438 0x7ffac88a0000 2842624 C:\Windows\SYSTEM32\d3d11.dll 10.0.14393.953 (rs1_release_inmarket.170303-1614) Microsoft Corporation Direct3D 11 Runtime 131795770645660438 0x7ffac8fa0000 253952 C:\Windows\SYSTEM32\logoncli.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Net Logon Client DLL 131795770645660438 0x7ffac92e0000 1269760 C:\Windows\SYSTEM32\wintypes.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL основных типов Windows 131795770645660438 0x7ffac9500000 2682880 C:\Windows\system32\CoreUIComponents.dll 131795770645660438 0x7ffac9f50000 1736704 C:\Windows\system32\windowscodecs.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Microsoft Windows Codecs Library 131795770645660438 0x7ffaca340000 1593344 C:\Windows\SYSTEM32\PROPSYS.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Система страниц свойств (Майкрософт) 131795770645660438 0x7ffaca570000 421888 C:\Windows\SYSTEM32\Bcp47Langs.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation BCP47 Language Classes 131795770645660438 0x7ffaca5e0000 155648 C:\Windows\SYSTEM32\dwmapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Интерфейс API диспетчера окон рабочего стола (Майкрософт) 131795770645660438 0x7ffaca640000 770048 C:\Windows\SYSTEM32\CoreMessaging.dll 10.0.14393.0 Microsoft Corporation Microsoft CoreMessaging Dll 131795770645660438 0x7ffaca770000 1380352 C:\Windows\SYSTEM32\dcomp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft DirectComposition Library 131795770645660438 0x7ffacab80000 90112 C:\Program Files\WindowsApps\Microsoft.VCLibs.140.00_14.0.25426.0_x64__8wekyb3d8bbwe\VCRUNTIME140_APP.dll 14.11.25426.0 built by: VCTOOLSREL Microsoft Corporation Microsoft® C Runtime Library 131795770645660438 0x7ffacadf0000 499712 C:\Windows\system32\apphelp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиентская библиотека совместимости приложений 131795770645660438 0x7ffacaf00000 610304 C:\Windows\system32\uxtheme.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека тем UxTheme (Microsoft) 131795770645660438 0x7ffacb1e0000 1163264 C:\Windows\SYSTEM32\twinapi.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation twinapi.appcore 131795770645660438 0x7ffacb780000 651264 C:\Windows\SYSTEM32\dxgi.dll 10.0.14393.953 (rs1_release_inmarket.170303-1614) Microsoft Corporation DirectX Graphics Infrastructure 131795770645660438 0x7ffacbe40000 126976 C:\Windows\SYSTEM32\USERENV.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Userenv 131795770645660438 0x7ffacc170000 45056 C:\Windows\SYSTEM32\CRYPTBASE.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base cryptographic API DLL 131795770645660438 0x7ffacc350000 180224 C:\Windows\SYSTEM32\SspiCli.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Security Support Provider Interface 131795770645660438 0x7ffacc620000 176128 C:\Windows\SYSTEM32\bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795770645660438 0x7ffacc6e0000 61440 C:\Windows\System32\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795770645660438 0x7ffacc6f0000 311296 C:\Windows\System32\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795770645660438 0x7ffacc740000 81920 C:\Windows\System32\profapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Profile Basic API 131795770645660438 0x7ffacc760000 65536 C:\Windows\System32\MSASN1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ASN.1 Runtime APIs 131795770645660438 0x7ffacc8f0000 1003520 C:\Windows\System32\ucrtbase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645660438 0x7ffacc9f0000 434176 C:\Windows\System32\bcryptPrimitives.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Cryptographic Primitives Library 131795770645660438 0x7ffacca60000 122880 C:\Windows\System32\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795770645660438 0x7ffaccae0000 692224 C:\Windows\System32\shcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795770645660438 0x7ffaccb90000 7180288 C:\Windows\System32\windows.storage.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API хранения Microsoft WinRT 131795770645660438 0x7ffacd270000 2215936 C:\Windows\System32\KERNELBASE.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645660438 0x7ffacd490000 1871872 C:\Windows\System32\CRYPT32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API32 криптографии 131795770645660438 0x7ffacd710000 638976 C:\Windows\System32\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645660438 0x7ffacd7b0000 270336 C:\Windows\System32\cfgmgr32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Configuration Manager DLL 131795770645660438 0x7ffaced20000 782336 C:\Windows\System32\OleAut32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795770645660438 0x7ffacee50000 1183744 C:\Windows\System32\RPCRT4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795770645660438 0x7ffacef90000 647168 C:\Windows\System32\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795770645660438 0x7ffacf0d0000 704512 C:\Windows\System32\KERNEL32.DLL 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645660438 0x7ffacf1e0000 1417216 C:\Windows\System32\msctf.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Серверная библиотека MSCTF 131795770645660438 0x7ffacf770000 212992 C:\Windows\System32\GDI32.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation GDI Client DLL 131795770645660438 0x7ffacf890000 188416 C:\Windows\System32\IMM32.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Multi-User Windows IMM32 API Client DLL 131795770645660438 0x7ffacf8c0000 1462272 C:\Windows\System32\USER32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795770645660438 0x7ffacfb30000 2916352 C:\Windows\System32\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795770645660438 0x7ffacfe20000 663552 C:\Windows\System32\advapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795770645660438 0x7ffad01b0000 335872 C:\Windows\System32\shlwapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека небольших программ оболочки 131795770645660438 0x7ffad0210000 364544 C:\Windows\System32\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795770645660438 0x7ffad0270000 1908736 C:\Windows\SYSTEM32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 84 6208 12140 85 00000000:0031f1da 131795181740423780 0 0 0 Обязательная метка\Средний обязательный уровень WIN-0UOTFKKVN1S\User OneDrive.exe C:\Users\User\AppData\Local\Microsoft\OneDrive\OneDrive.exe /updateInstalled /background Microsoft Corporation 18.131.0701.0007 Microsoft OneDrive 131795770645660654 0x11f0000 1646592 C:\Users\User\AppData\Local\Microsoft\OneDrive\OneDrive.exe 18.131.0701.0007 Microsoft Corporation Microsoft OneDrive 131795770645660654 0x55a0000 1003520 C:\Users\User\AppData\Local\Microsoft\OneDrive\18.131.0701.0007\FileSync.Resources.dll 18.131.0701.0007 Microsoft Corporation Microsoft OneDrive 131795770645660654 0x5c020000 335872 C:\Windows\System32\wow64.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation Win32 Emulation on NT64 131795770645660654 0x5c080000 487424 C:\Windows\System32\wow64win.dll 10.0.14393.1884 (rs1_release.171101-1233) Microsoft Corporation Wow64 Console and Win32 API Logging 131795770645660654 0x5c100000 40960 C:\Windows\System32\wow64cpu.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation AMD64 Wow64 CPU 131795770645660654 0x60750000 1556480 C:\Program Files (x86)\360\Total Security\safemon\safemon.dll 8, 4, 0, 1420 Qihu 360 Software Co., Ltd. 360 Internet Security Internet Protection 131795770645660654 0x64d00000 5079040 C:\Windows\SysWOW64\d2d1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека Microsoft D2D 131795770645660654 0x651e0000 20537344 C:\Windows\SysWOW64\MSHTML.dll 11.00.14393.447 (rs1_release_inmarket.161102-0100) Microsoft Corporation Средство просмотра HTML Microsoft® 131795770645660654 0x66580000 12247040 C:\Windows\SysWOW64\ieframe.dll 11.00.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Браузер 131795770645660654 0x67200000 1978368 C:\Windows\SysWOW64\msxml6.dll 6.30.14393.2156 Microsoft Corporation MSXML 6.0 131795770645660654 0x67500000 1597440 C:\Windows\SysWOW64\ActXPrxy.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation ActiveX Interface Marshaling Library 131795770645660654 0x6b670000 212992 C:\Windows\SysWOW64\mlang.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL многоязыковой поддержки 131795770645660654 0x6b6b0000 36864 C:\Windows\SysWOW64\atlthunk.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation atlthunk.dll 131795770645660654 0x6bab0000 4472832 C:\Users\User\AppData\Local\Microsoft\OneDrive\18.131.0701.0007\Qt5Widgets.dll 5.9.1.0 The Qt Company Ltd C++ application development framework. 131795770645660654 0x6c290000 987136 C:\Windows\SysWOW64\twinapi.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation twinapi.appcore 131795770645660654 0x6c390000 1126400 C:\Windows\SysWOW64\dcomp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft DirectComposition Library 131795770645660654 0x6c4b0000 278528 C:\Windows\SysWOW64\dataexchange.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation Data exchange 131795770645660654 0x6c540000 483328 C:\Windows\SysWOW64\webio.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API протоколов передачи по Веб 131795770645660654 0x6c5c0000 1384448 C:\Windows\SysWOW64\uiautomationcore.dll 7.2.14393.0 (rs1_release.160715-1616) Microsoft Corporation Основные автоматические компоненты Microsoft UI 131795770645660654 0x6c960000 57344 C:\Windows\SysWOW64\msimtf.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Active IMM Server DLL 131795770645660654 0x6c970000 3698688 C:\Windows\SysWOW64\jscript9.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft ® JScript 131795770645660654 0x6cd20000 135168 C:\Windows\SysWOW64\srpapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL программных интерфейсов (API) поставщика общих ресурсов 131795770645660654 0x6cd50000 106496 C:\Windows\SysWOW64\SAMLIB.dll 10.0.14393.82 (rs1_release.160805-1735) Microsoft Corporation SAM Library DLL 131795770645660654 0x6cda0000 528384 C:\Windows\SysWOW64\sxs.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Fusion 2.5 131795770645660654 0x6cf60000 569344 C:\Windows\SysWOW64\taskschd.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Task Scheduler COM API 131795770645660654 0x6d080000 151552 C:\Windows\SysWOW64\cryptnet.dll 10.0.14393.2035 (rs1_release_inmarket.180110-1910) Microsoft Corporation Crypto Network Related API 131795770645660654 0x6d0b0000 847872 C:\Windows\SysWOW64\WinTypes.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL основных типов Windows 131795770645660654 0x6d210000 4993024 C:\Users\User\AppData\Local\Microsoft\OneDrive\18.131.0701.0007\Qt5Gui.dll 5.9.1.0 The Qt Company Ltd C++ application development framework. 131795770645660654 0x6fcd0000 151552 C:\Windows\SysWOW64\dbgcore.DLL 10.0.14321.1024 (debuggers(dbg).160715-1616) Microsoft Windows Core Debugging Helpers 131795770645660654 0x70340000 536576 C:\Windows\SysWOW64\dxgi.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation DirectX Graphics Infrastructure 131795770645660654 0x703d0000 2056192 C:\Windows\SysWOW64\DWrite.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Службы Microsoft DirectX Typography 131795770645660654 0x707b0000 110592 C:\Windows\SysWOW64\ncryptsslp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft SChannel Provider 131795770645660654 0x707f0000 2293760 C:\Windows\SysWOW64\d3d11.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation Direct3D 11 Runtime 131795770645660654 0x70a80000 409600 C:\Windows\SysWOW64\schannel.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик безопасности TLS/SSL 131795770645660654 0x70b00000 176128 C:\Windows\SysWOW64\Wscapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API центра обеспечения безопасности Windows 131795770645660654 0x70b40000 69632 C:\Windows\SysWOW64\mskeyprotect.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик защиты ключей (Майкрософт) 131795770645660654 0x70ca0000 45056 C:\Windows\SysWOW64\NETUTILS.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API Helpers DLL 131795770645660654 0x70cc0000 65536 C:\Windows\SysWOW64\ondemandconnroutehelper.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation On Demand Connctiond Route Helper 131795770645660654 0x70ce0000 1519616 C:\Windows\SysWOW64\wpc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека параметров родительского контроля 131795770645660654 0x70e60000 176128 C:\Windows\SysWOW64\NTASN1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft ASN.1 API 131795770645660654 0x70f00000 815104 C:\Windows\SysWOW64\OneCoreUAPCommonProxyStub.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation OneCoreUAP Common Proxy Stub 131795770645660654 0x70fd0000 1331200 C:\Windows\SysWOW64\dbghelp.dll 10.0.14321.1024 (rs1_release.160715-1616) Microsoft Windows Image Helper 131795770645660654 0x71140000 77824 C:\Windows\SysWOW64\NETAPI32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API DLL 131795770645660654 0x71200000 708608 C:\Windows\SysWOW64\TokenBroker.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Token Broker 131795770645660654 0x712b0000 602112 C:\Windows\SysWOW64\Windows.Security.Authentication.Web.Core.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Token Broker WinRT API 131795770645660654 0x71350000 2867200 C:\Users\User\AppData\Local\Microsoft\OneDrive\18.131.0701.0007\Qt5Quick.dll 5.9.1.0 The Qt Company Ltd C++ application development framework. 131795770645660654 0x71610000 77824 C:\Windows\SysWOW64\dhcpcsvc6.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиент DHCPv6 131795770645660654 0x71630000 487424 C:\Windows\SysWOW64\wlidprov.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft® Account Provider 131795770645660654 0x716b0000 1294336 C:\Users\User\AppData\Local\Microsoft\OneDrive\18.131.0701.0007\LIBEAY32.dll 1.0.2k The OpenSSL Project, http://www.openssl.org/ OpenSSL Shared Library 131795770645660654 0x717f0000 2637824 C:\Users\User\AppData\Local\Microsoft\OneDrive\18.131.0701.0007\Qt5Qml.dll 5.9.1.0 The Qt Company Ltd C++ application development framework. 131795770645660654 0x71a80000 4796416 C:\Users\User\AppData\Local\Microsoft\OneDrive\18.131.0701.0007\Qt5Core.dll 5.9.1.0 The Qt Company Ltd C++ application development framework. 131795770645660654 0x71f20000 6033408 C:\Users\User\AppData\Local\Microsoft\OneDrive\18.131.0701.0007\SyncEngine.DLL 18.131.0701.0007 Microsoft Corporation Microsoft OneDrive Sync Engine 131795770645660654 0x724f0000 57344 C:\Windows\SysWOW64\credui.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Credential Manager User Interface 131795770645660654 0x72530000 126976 C:\Windows\SysWOW64\IDStore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Identity Store 131795770645660654 0x72550000 561152 C:\Windows\SysWOW64\Windows.Networking.Connectivity.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Networking Connectivity Runtime DLL 131795770645660654 0x725e0000 2273280 C:\Windows\SysWOW64\iertutil.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служебная программа времени выполнения для Internet Explorer 131795770645660654 0x72810000 28672 C:\Windows\SysWOW64\familysafetyext.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation FamilySafety ChildAccount Extensions 131795770645660654 0x72820000 167936 C:\Windows\SysWOW64\MicrosoftAccountTokenProvider.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft® Account Token Provider 131795770645660654 0x72850000 331776 C:\Windows\SysWOW64\AppXDeploymentClient.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL-библиотека клиента развертывания AppX 131795770645660654 0x728b0000 135168 C:\Users\User\AppData\Local\Microsoft\OneDrive\18.131.0701.0007\FileSyncFAL.dll 18.131.0701.0007 Microsoft Corporation Microsoft OneDriveFile Sync FAL 131795770645660654 0x728e0000 1372160 C:\Windows\SysWOW64\PROPSYS.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Система страниц свойств (Майкрософт) 131795770645660654 0x72a30000 188416 C:\Windows\SysWOW64\XmlLite.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft XmlLite Library 131795770645660654 0x72a60000 589824 C:\Windows\SysWOW64\wer.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека сообщений об ошибках Windows 131795770645660654 0x72b90000 126976 C:\Windows\SysWOW64\dwmapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Интерфейс API диспетчера окон рабочего стола (Майкрософт) 131795770645660654 0x72bb0000 1105920 C:\Users\User\AppData\Local\Microsoft\OneDrive\18.131.0701.0007\platforms\qwindows.dll 5.9.1.0 The Qt Company Ltd C++ application development framework. 131795770645660654 0x72cc0000 1658880 C:\Windows\SysWOW64\urlmon.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширения OLE32 для Win32 131795770645660654 0x72e60000 172032 C:\Windows\SysWOW64\rometadata.dll 4.6.1586.0 built by: NETFXREL2 Microsoft Corporation Microsoft MetaData Library 131795770645660654 0x72e90000 299008 C:\Users\User\AppData\Local\Microsoft\OneDrive\18.131.0701.0007\SSLEAY32.dll 1.0.2k The OpenSSL Project, http://www.openssl.org/ OpenSSL Shared Library 131795770645660654 0x72ee0000 950272 C:\Users\User\AppData\Local\Microsoft\OneDrive\18.131.0701.0007\Qt5Network.dll 5.9.1.0 The Qt Company Ltd C++ application development framework. 131795770645660654 0x72fd0000 126976 C:\Windows\SysWOW64\loadperf.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Загрузка и выгрузка счетчиков производительности 131795770645660654 0x72ff0000 278528 C:\Windows\SysWOW64\pdh.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Модуль поддержки данных производительности Windows 131795770645660654 0x73040000 253952 C:\Users\User\AppData\Local\Microsoft\OneDrive\18.131.0701.0007\Qt5WinExtras.dll 5.9.1.0 The Qt Company Ltd C++ application development framework. 131795770645660654 0x73080000 880640 C:\Users\User\AppData\Local\Microsoft\OneDrive\18.131.0701.0007\ADAL.dll 1.0.2110.0526 Microsoft ADAL.Native 131795770645660654 0x73160000 32768 C:\Windows\SysWOW64\WSOCK32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Socket 32-Bit DLL 131795770645660654 0x73170000 352256 C:\Windows\SysWOW64\faultrep.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека отчетов о сбоях в пользовательском режиме Windows 131795770645660654 0x731d0000 413696 C:\Users\User\AppData\Local\Microsoft\OneDrive\18.131.0701.0007\WnsClientApi.dll 18.131.0701.0007 Microsoft Corporation OneDrive WNS Client Library 131795770645660654 0x73240000 520192 C:\Users\User\AppData\Local\Microsoft\OneDrive\18.131.0701.0007\LogUploader.dll 18.131.0701.0007 Microsoft Corporation OneDrive Sync LogUploader Library 131795770645660654 0x732c0000 1269760 C:\Users\User\AppData\Local\Microsoft\OneDrive\18.131.0701.0007\FileSyncViews.dll 18.131.0701.0007 Microsoft Corporation Microsoft OneDrive Qt Components 131795770645660654 0x73400000 159744 C:\Users\User\AppData\Local\Microsoft\OneDrive\18.131.0701.0007\UpdateRingSettings.dll 18.131.0701.0007 Microsoft Corporation Update Ring Settings 131795770645660654 0x73430000 1748992 C:\Users\User\AppData\Local\Microsoft\OneDrive\18.131.0701.0007\FileSyncSessions.dll 18.131.0701.0007 Microsoft Corporation P2P Session Library 131795770645660654 0x735e0000 671744 C:\Users\User\AppData\Local\Microsoft\OneDrive\18.131.0701.0007\RemoteAccess.dll 18.131.0701.0007 Microsoft Corporation Remote Access 131795770645660654 0x73690000 188416 C:\Users\User\AppData\Local\Microsoft\OneDrive\18.131.0701.0007\Telemetry.dll 18.131.0701.0007 Microsoft Corporation Telemetry Library 131795770645660654 0x736c0000 32768 C:\Users\User\AppData\Local\Microsoft\OneDrive\18.131.0701.0007\ETWLog.dll 18.131.0701.0007 Microsoft Corporation ETW Session Library 131795770645660654 0x736d0000 3600384 C:\Users\User\AppData\Local\Microsoft\OneDrive\18.131.0701.0007\FileSyncClient.dll 18.131.0701.0007 Microsoft Corporation Microsoft OneDrive Client 131795770645660654 0x73a40000 32768 C:\Windows\SysWOW64\WINNSI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Network Store Information RPC interface 131795770645660654 0x73a50000 299008 C:\Windows\SysWOW64\fwpuclnt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API пользовательского режима FWP/IPsec 131795770645660654 0x73aa0000 32768 C:\Windows\SysWOW64\DPAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Data Protection API 131795770645660654 0x73ab0000 32768 C:\Windows\SysWOW64\rasadhlp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Remote Access AutoDial Helper 131795770645660654 0x73ac0000 81920 C:\Windows\SysWOW64\dhcpcsvc.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служба DHCP-клиента 131795770645660654 0x73ae0000 40960 C:\Windows\SysWOW64\Secur32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Security Support Provider Interface 131795770645660654 0x73af0000 1417216 C:\Users\User\AppData\Local\Microsoft\OneDrive\18.131.0701.0007\LoggingPlatform.dll 18.131.0701.0007 Microsoft Corporation Logging Platform 131795770645660654 0x73c50000 1478656 C:\Windows\WinSxS\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.14393.1715_none_f67438d2f2547a00\gdiplus.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Microsoft GDI+ 131795770645660654 0x73dc0000 1171456 C:\Users\User\AppData\Local\Microsoft\OneDrive\18.131.0701.0007\ucrtbase.dll 10.0.17134.12 (WinBuild.160101.0800) Microsoft Corporation Microsoft® C Runtime Library 131795770645660654 0x73ee0000 61440 C:\Windows\SysWOW64\wtsapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Remote Desktop Session Host Server SDK APIs 131795770645660654 0x73f00000 192512 C:\Windows\SysWOW64\IPHLPAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API вспомогательного приложения IP 131795770645660654 0x73f30000 512000 C:\Windows\SysWOW64\DNSAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Динамическая библиотека API DNS-клиента 131795770645660654 0x73fb0000 36864 C:\Windows\SysWOW64\ktmw32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows KTM Win32 Client DLL 131795770645660654 0x73ff0000 319488 C:\Windows\SysWOW64\MSWSOCK.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширение поставщика службы API Microsoft Windows Sockets 2.0 131795770645660654 0x74060000 192512 C:\Windows\SysWOW64\rsaenh.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Enhanced Cryptographic Provider 131795770645660654 0x74090000 462848 C:\Users\User\AppData\Local\Microsoft\OneDrive\18.131.0701.0007\MSVCP140.dll 14.13.26020.0 built by: VCTOOLSREL Microsoft Corporation Microsoft® C Runtime Library 131795770645660654 0x74110000 479232 C:\Windows\SysWOW64\UxTheme.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека тем UxTheme (Microsoft) 131795770645660654 0x74190000 110592 C:\Windows\SysWOW64\bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795770645660654 0x741b0000 77824 C:\Windows\SysWOW64\CRYPTSP.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Cryptographic Service Provider API 131795770645660654 0x741d0000 86016 C:\Users\User\AppData\Local\Microsoft\OneDrive\18.131.0701.0007\VCRUNTIME140.dll 14.13.26020.0 built by: VCTOOLSREL Microsoft Corporation Microsoft® C Runtime Library 131795770645660654 0x741f0000 143360 C:\Windows\SysWOW64\WINMMBASE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base Multimedia Extension API DLL 131795770645660654 0x74220000 53248 C:\Windows\SysWOW64\TOKENBINDING.dll 10.0.14393.1593 (rs1_release.170731-1934) Microsoft Corporation Token Binding Protocol 131795770645660654 0x74230000 147456 C:\Windows\SysWOW64\WINMM.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation MCI API DLL 131795770645660654 0x74260000 2514944 C:\Windows\SysWOW64\WININET.dll 11.00.14393.447 (rs1_release_inmarket.161102-0100) Microsoft Corporation Расширения Интернета для Win32 131795770645660654 0x744d0000 2138112 C:\Windows\WinSxS\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.14393.953_none_89c2555adb023171\COMCTL32.dll 6.10 (rs1_release_inmarket.170303-1614) Microsoft Corporation Библиотека элементов управления взаимодействия с пользователем 131795770645660654 0x746e0000 32768 C:\Windows\SysWOW64\VERSION.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Version Checking and File Installation Libraries 131795770645660654 0x746f0000 106496 C:\Windows\SysWOW64\USERENV.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Userenv 131795770645660654 0x74710000 90112 C:\Windows\SysWOW64\MPR.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека маршрутизации для нескольких служб доступа 131795770645660654 0x74730000 598016 C:\Windows\SysWOW64\apphelp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиентская библиотека совместимости приложений 131795770645660654 0x747d0000 40960 C:\Windows\SysWOW64\CRYPTBASE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base cryptographic API DLL 131795770645660654 0x747e0000 126976 C:\Windows\SysWOW64\SspiCli.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Security Support Provider Interface 131795770645660654 0x74800000 151552 C:\Windows\SysWOW64\IMM32.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Multi-User Windows IMM32 API Client DLL 131795770645660654 0x74910000 2170880 C:\Windows\SysWOW64\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795770645660654 0x74b30000 53248 C:\Windows\SysWOW64\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795770645660654 0x74b60000 790528 C:\Windows\SysWOW64\RPCRT4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795770645660654 0x74c30000 1417216 C:\Windows\SysWOW64\gdi32full.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation GDI Client DLL 131795770645660654 0x74d90000 24576 C:\Windows\SysWOW64\PSAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Process Status Helper 131795770645660654 0x74da0000 778240 C:\Windows\SysWOW64\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795770645660654 0x74e60000 557056 C:\Windows\SysWOW64\shcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795770645660654 0x74ef0000 540672 C:\Windows\SysWOW64\clbcatq.dll 2001.12.10941.16384 (rs1_release.160715-1616) Microsoft Corporation COM+ Configuration Catalog 131795770645660654 0x74f80000 278528 C:\Windows\SysWOW64\WINTRUST.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation Microsoft Trust Verification APIs 131795770645660654 0x74fd0000 405504 C:\Windows\SysWOW64\WS2_32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation 32-разрядная библиотека Windows Socket 2.0 131795770645660654 0x75040000 282624 C:\Windows\SysWOW64\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795770645660654 0x75090000 1265664 C:\Windows\SysWOW64\MSCTF.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Серверная библиотека MSCTF 131795770645660654 0x751d0000 57344 C:\Windows\SysWOW64\MSASN1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ASN.1 Runtime APIs 131795770645660654 0x751e0000 1708032 C:\Windows\SysWOW64\KERNELBASE.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645660654 0x75390000 266240 C:\Windows\SysWOW64\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795770645660654 0x753e0000 1560576 C:\Windows\SysWOW64\CRYPT32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API32 криптографии 131795770645660654 0x75560000 487424 C:\Windows\SysWOW64\ADVAPI32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795770645660654 0x756c0000 5693440 C:\Windows\SysWOW64\windows.storage.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API хранения Microsoft WinRT 131795770645660654 0x75c90000 286720 C:\Windows\SysWOW64\shlwapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека небольших программ оболочки 131795770645660654 0x75ce0000 20811776 C:\Windows\SysWOW64\SHELL32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Общая библиотека оболочки Windows 131795770645660654 0x774d0000 86016 C:\Windows\SysWOW64\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795770645660654 0x774f0000 61440 C:\Windows\SysWOW64\profapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Profile Basic API 131795770645660654 0x77560000 1437696 C:\Windows\SysWOW64\USER32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795770645660654 0x776c0000 368640 C:\Windows\SysWOW64\bcryptPrimitives.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation Windows Cryptographic Primitives Library 131795770645660654 0x77780000 503808 C:\Windows\SysWOW64\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645660654 0x77800000 606208 C:\Windows\SysWOW64\OLEAUT32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795770645660654 0x77ac0000 966656 C:\Windows\SysWOW64\ole32.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft OLE для Windows 131795770645660654 0x77bb0000 176128 C:\Windows\SysWOW64\GDI32.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation GDI Client DLL 131795770645660654 0x77cd0000 221184 C:\Windows\SysWOW64\cfgmgr32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Configuration Manager DLL 131795770645660654 0x77d10000 28672 C:\Windows\SysWOW64\NSI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation NSI User-mode interface DLL 131795770645660654 0x77d20000 1585152 C:\Windows\SysWOW64\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 131795770645660654 0x7ffad0270000 1908736 C:\Windows\SYSTEM32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 86 6140 7744 57 00000000:0031f1da 131795747339404666 0 0 0 Обязательная метка\Ненадежный обязательный уровень WIN-0UOTFKKVN1S\User browser.exe C:\Users\User\AppData\Local\Yandex\YandexBrowser\Application\browser.exe "C:\Users\User\AppData\Local\Yandex\YandexBrowser\Application\browser.exe" --type=renderer --enable-in-process-wmf-demuxer --field-trial-handle=1292,9555382311565764851,7120838982649204725,131072 --enable-ignition --disable-gpu-compositing --service-pipe-token=764E64A4EA650A23B18EB059FF0B4B51 --lang=ru --user-id=32B2E0A1-3039-4C67-86BE-75A88EF21B54 --brand-id=yandex --partner-id=7924 --help-url=https://api.browser.yandex.ru/redirect/help/ --user-agent-info --translate-security-origin=https://translate.yandex.net --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --enable-instaserp --device-scale-factor=1 --num-raster-threads=1 --enable-compositor-image-animations --service-request-channel-token=764E64A4EA650A23B18EB059FF0B4B51 --renderer-client-id=106 --mojo-platform-channel-handle=6612 /prefetch:1 YANDEX LLC 18.6.1.770 Yandex 131795770645660799 0x10e0000 2519040 C:\Users\User\AppData\Local\Yandex\YandexBrowser\Application\browser.exe 18.6.1.770 YANDEX LLC Yandex 131795770645660799 0x58720000 59748352 C:\Users\User\AppData\Local\Yandex\YandexBrowser\Application\18.6.1.770\browser_child.dll 18.6.1.770 YANDEX LLC Yandex 131795770645660799 0x5c020000 335872 C:\Windows\System32\wow64.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation Win32 Emulation on NT64 131795770645660799 0x5c080000 487424 C:\Windows\System32\wow64win.dll 10.0.14393.1884 (rs1_release.171101-1233) Microsoft Corporation Wow64 Console and Win32 API Logging 131795770645660799 0x5c100000 40960 C:\Windows\System32\wow64cpu.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation AMD64 Wow64 CPU 131795770645660799 0x6e8b0000 1859584 C:\Windows\SysWOW64\mfmp4srcsnk.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL источника и приемника MPEG4 Media Foundation 131795770645660799 0x6ef30000 647168 C:\Windows\SysWOW64\evr.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека DLL средства отображения видео 131795770645660799 0x6efd0000 458752 C:\Windows\SysWOW64\msauddecmft.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Media Foundation Audio Decoders 131795770645660799 0x6f790000 1085440 C:\Windows\SysWOW64\mfperfhelper.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation MFPerf DLL 131795770645660799 0x6f8a0000 2220032 C:\Windows\SysWOW64\msmpeg2vdec.dll 10.0.14393.953 (rs1_release_inmarket.170303-1614) Microsoft Corporation Microsoft DTV-DVD Video Decoder 131795770645660799 0x6fac0000 1130496 C:\Windows\SysWOW64\mfplat.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Media Foundation Platform DLL 131795770645660799 0x6ff60000 172032 C:\Windows\SysWOW64\RTWorkQ.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL для WorkQueue реального времени 131795770645660799 0x70030000 593920 C:\Users\User\AppData\Local\Yandex\YandexBrowser\Application\18.6.1.770\browser_elf.dll 18.6.1.770 YANDEX LLC Yandex 131795770645660799 0x700d0000 434176 C:\Windows\SysWOW64\WINSPOOL.DRV 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Драйвер диспетчера очереди Windows 131795770645660799 0x70340000 536576 C:\Windows\SysWOW64\dxgi.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation DirectX Graphics Infrastructure 131795770645660799 0x703d0000 2056192 C:\Windows\SysWOW64\DWrite.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Службы Microsoft DirectX Typography 131795770645660799 0x707d0000 86016 C:\Windows\SysWOW64\SAMCLI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Security Accounts Manager Client DLL 131795770645660799 0x70a20000 94208 C:\Windows\SysWOW64\USP10.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Uniscribe Unicode script processor 131795770645660799 0x70ca0000 45056 C:\Windows\SysWOW64\NETUTILS.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API Helpers DLL 131795770645660799 0x70fd0000 1331200 C:\Windows\SysWOW64\dbghelp.dll 10.0.14321.1024 (rs1_release.160715-1616) Microsoft Windows Image Helper 131795770645660799 0x71140000 77824 C:\Windows\SysWOW64\NETAPI32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API DLL 131795770645660799 0x725e0000 2273280 C:\Windows\SysWOW64\iertutil.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служебная программа времени выполнения для Internet Explorer 131795770645660799 0x728e0000 1372160 C:\Windows\SysWOW64\PROPSYS.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Система страниц свойств (Майкрософт) 131795770645660799 0x72af0000 655360 C:\Windows\SysWOW64\WINHTTP.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Службы HTTP Windows 131795770645660799 0x72cc0000 1658880 C:\Windows\SysWOW64\urlmon.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширения OLE32 для Win32 131795770645660799 0x73ac0000 81920 C:\Windows\SysWOW64\dhcpcsvc.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служба DHCP-клиента 131795770645660799 0x73ae0000 40960 C:\Windows\SysWOW64\Secur32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Security Support Provider Interface 131795770645660799 0x73f00000 192512 C:\Windows\SysWOW64\IPHLPAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API вспомогательного приложения IP 131795770645660799 0x74190000 110592 C:\Windows\SysWOW64\bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795770645660799 0x741b0000 77824 C:\Windows\SysWOW64\cryptsp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Cryptographic Service Provider API 131795770645660799 0x741f0000 143360 C:\Windows\SysWOW64\WINMMBASE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base Multimedia Extension API DLL 131795770645660799 0x74230000 147456 C:\Windows\SysWOW64\WINMM.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation MCI API DLL 131795770645660799 0x744d0000 2138112 C:\Windows\WinSxS\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.14393.953_none_89c2555adb023171\COMCTL32.dll 6.10 (rs1_release_inmarket.170303-1614) Microsoft Corporation Библиотека элементов управления взаимодействия с пользователем 131795770645660799 0x746e0000 32768 C:\Windows\SysWOW64\VERSION.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Version Checking and File Installation Libraries 131795770645660799 0x746f0000 106496 C:\Windows\SysWOW64\USERENV.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Userenv 131795770645660799 0x747d0000 40960 C:\Windows\SysWOW64\CRYPTBASE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base cryptographic API DLL 131795770645660799 0x747e0000 126976 C:\Windows\SysWOW64\SspiCli.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Security Support Provider Interface 131795770645660799 0x74800000 151552 C:\Windows\SysWOW64\IMM32.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Multi-User Windows IMM32 API Client DLL 131795770645660799 0x74910000 2170880 C:\Windows\SysWOW64\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795770645660799 0x74b30000 53248 C:\Windows\SysWOW64\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795770645660799 0x74b60000 790528 C:\Windows\SysWOW64\RPCRT4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795770645660799 0x74c30000 1417216 C:\Windows\SysWOW64\gdi32full.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation GDI Client DLL 131795770645660799 0x74d90000 24576 C:\Windows\SysWOW64\PSAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Process Status Helper 131795770645660799 0x74da0000 778240 C:\Windows\SysWOW64\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795770645660799 0x74e60000 557056 C:\Windows\SysWOW64\shcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795770645660799 0x74f80000 278528 C:\Windows\SysWOW64\WINTRUST.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation Microsoft Trust Verification APIs 131795770645660799 0x74fd0000 405504 C:\Windows\SysWOW64\WS2_32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation 32-разрядная библиотека Windows Socket 2.0 131795770645660799 0x75040000 282624 C:\Windows\SysWOW64\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795770645660799 0x751d0000 57344 C:\Windows\SysWOW64\MSASN1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ASN.1 Runtime APIs 131795770645660799 0x751e0000 1708032 C:\Windows\SysWOW64\KERNELBASE.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645660799 0x75390000 266240 C:\Windows\SysWOW64\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795770645660799 0x753e0000 1560576 C:\Windows\SysWOW64\CRYPT32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API32 криптографии 131795770645660799 0x75560000 487424 C:\Windows\SysWOW64\ADVAPI32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795770645660799 0x756c0000 5693440 C:\Windows\SysWOW64\windows.storage.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API хранения Microsoft WinRT 131795770645660799 0x75c90000 286720 C:\Windows\SysWOW64\shlwapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека небольших программ оболочки 131795770645660799 0x75ce0000 20811776 C:\Windows\SysWOW64\SHELL32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Общая библиотека оболочки Windows 131795770645660799 0x774d0000 86016 C:\Windows\SysWOW64\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795770645660799 0x774f0000 61440 C:\Windows\SysWOW64\profapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Profile Basic API 131795770645660799 0x77560000 1437696 C:\Windows\SysWOW64\USER32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795770645660799 0x776c0000 368640 C:\Windows\SysWOW64\bcryptPrimitives.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation Windows Cryptographic Primitives Library 131795770645660799 0x77780000 503808 C:\Windows\SysWOW64\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645660799 0x77800000 606208 C:\Windows\SysWOW64\OLEAUT32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795770645660799 0x77ac0000 966656 C:\Windows\SysWOW64\ole32.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft OLE для Windows 131795770645660799 0x77bb0000 176128 C:\Windows\SysWOW64\GDI32.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation GDI Client DLL 131795770645660799 0x77be0000 937984 C:\Windows\SysWOW64\COMDLG32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека общих диалоговых окон 131795770645660799 0x77cd0000 221184 C:\Windows\SysWOW64\cfgmgr32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Configuration Manager DLL 131795770645660799 0x77d10000 28672 C:\Windows\SysWOW64\NSI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation NSI User-mode interface DLL 131795770645660799 0x77d20000 1585152 C:\Windows\SysWOW64\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 131795770645660799 0x7ffad0270000 1908736 C:\Windows\SYSTEM32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 87 11432 7744 57 00000000:0031f1da 131795755605761168 0 0 0 Обязательная метка\Ненадежный обязательный уровень WIN-0UOTFKKVN1S\User browser.exe C:\Users\User\AppData\Local\Yandex\YandexBrowser\Application\browser.exe "C:\Users\User\AppData\Local\Yandex\YandexBrowser\Application\browser.exe" --type=renderer --enable-in-process-wmf-demuxer --field-trial-handle=1292,9555382311565764851,7120838982649204725,131072 --enable-ignition --disable-gpu-compositing --service-pipe-token=9DD318D38190D474A9A0F5AFD262A449 --lang=ru --user-id=32B2E0A1-3039-4C67-86BE-75A88EF21B54 --brand-id=yandex --partner-id=7924 --help-url=https://api.browser.yandex.ru/redirect/help/ --user-agent-info --translate-security-origin=https://translate.yandex.net --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --enable-instaserp --device-scale-factor=1 --num-raster-threads=1 --enable-compositor-image-animations --service-request-channel-token=9DD318D38190D474A9A0F5AFD262A449 --renderer-client-id=109 --mojo-platform-channel-handle=4152 /prefetch:1 YANDEX LLC 18.6.1.770 Yandex 131795770645660929 0x10e0000 2519040 C:\Users\User\AppData\Local\Yandex\YandexBrowser\Application\browser.exe 18.6.1.770 YANDEX LLC Yandex 131795770645660929 0x58720000 59748352 C:\Users\User\AppData\Local\Yandex\YandexBrowser\Application\18.6.1.770\browser_child.dll 18.6.1.770 YANDEX LLC Yandex 131795770645660929 0x5c020000 335872 C:\Windows\System32\wow64.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation Win32 Emulation on NT64 131795770645660929 0x5c080000 487424 C:\Windows\System32\wow64win.dll 10.0.14393.1884 (rs1_release.171101-1233) Microsoft Corporation Wow64 Console and Win32 API Logging 131795770645660929 0x5c100000 40960 C:\Windows\System32\wow64cpu.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation AMD64 Wow64 CPU 131795770645660929 0x6e8b0000 1859584 C:\Windows\SysWOW64\mfmp4srcsnk.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL источника и приемника MPEG4 Media Foundation 131795770645660929 0x6ef30000 647168 C:\Windows\SysWOW64\evr.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека DLL средства отображения видео 131795770645660929 0x6efd0000 458752 C:\Windows\SysWOW64\msauddecmft.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Media Foundation Audio Decoders 131795770645660929 0x6f790000 1085440 C:\Windows\SysWOW64\mfperfhelper.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation MFPerf DLL 131795770645660929 0x6f8a0000 2220032 C:\Windows\SysWOW64\msmpeg2vdec.dll 10.0.14393.953 (rs1_release_inmarket.170303-1614) Microsoft Corporation Microsoft DTV-DVD Video Decoder 131795770645660929 0x6fac0000 1130496 C:\Windows\SysWOW64\mfplat.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Media Foundation Platform DLL 131795770645660929 0x6ff60000 172032 C:\Windows\SysWOW64\RTWorkQ.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL для WorkQueue реального времени 131795770645660929 0x70030000 593920 C:\Users\User\AppData\Local\Yandex\YandexBrowser\Application\18.6.1.770\browser_elf.dll 18.6.1.770 YANDEX LLC Yandex 131795770645660929 0x700d0000 434176 C:\Windows\SysWOW64\WINSPOOL.DRV 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Драйвер диспетчера очереди Windows 131795770645660929 0x70340000 536576 C:\Windows\SysWOW64\dxgi.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation DirectX Graphics Infrastructure 131795770645660929 0x703d0000 2056192 C:\Windows\SysWOW64\DWrite.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Службы Microsoft DirectX Typography 131795770645660929 0x707d0000 86016 C:\Windows\SysWOW64\SAMCLI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Security Accounts Manager Client DLL 131795770645660929 0x70a20000 94208 C:\Windows\SysWOW64\USP10.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Uniscribe Unicode script processor 131795770645660929 0x70ca0000 45056 C:\Windows\SysWOW64\NETUTILS.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API Helpers DLL 131795770645660929 0x70fd0000 1331200 C:\Windows\SysWOW64\dbghelp.dll 10.0.14321.1024 (rs1_release.160715-1616) Microsoft Windows Image Helper 131795770645660929 0x71140000 77824 C:\Windows\SysWOW64\NETAPI32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API DLL 131795770645660929 0x725e0000 2273280 C:\Windows\SysWOW64\iertutil.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служебная программа времени выполнения для Internet Explorer 131795770645660929 0x728e0000 1372160 C:\Windows\SysWOW64\PROPSYS.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Система страниц свойств (Майкрософт) 131795770645660929 0x72af0000 655360 C:\Windows\SysWOW64\WINHTTP.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Службы HTTP Windows 131795770645660929 0x72cc0000 1658880 C:\Windows\SysWOW64\urlmon.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширения OLE32 для Win32 131795770645660929 0x73ac0000 81920 C:\Windows\SysWOW64\dhcpcsvc.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служба DHCP-клиента 131795770645660929 0x73ae0000 40960 C:\Windows\SysWOW64\Secur32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Security Support Provider Interface 131795770645660929 0x73f00000 192512 C:\Windows\SysWOW64\IPHLPAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API вспомогательного приложения IP 131795770645660929 0x74190000 110592 C:\Windows\SysWOW64\bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795770645660929 0x741b0000 77824 C:\Windows\SysWOW64\cryptsp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Cryptographic Service Provider API 131795770645660929 0x741f0000 143360 C:\Windows\SysWOW64\WINMMBASE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base Multimedia Extension API DLL 131795770645660929 0x74230000 147456 C:\Windows\SysWOW64\WINMM.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation MCI API DLL 131795770645660929 0x744d0000 2138112 C:\Windows\WinSxS\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.14393.953_none_89c2555adb023171\COMCTL32.dll 6.10 (rs1_release_inmarket.170303-1614) Microsoft Corporation Библиотека элементов управления взаимодействия с пользователем 131795770645660929 0x746e0000 32768 C:\Windows\SysWOW64\VERSION.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Version Checking and File Installation Libraries 131795770645660929 0x746f0000 106496 C:\Windows\SysWOW64\USERENV.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Userenv 131795770645660929 0x747d0000 40960 C:\Windows\SysWOW64\CRYPTBASE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base cryptographic API DLL 131795770645660929 0x747e0000 126976 C:\Windows\SysWOW64\SspiCli.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Security Support Provider Interface 131795770645660929 0x74800000 151552 C:\Windows\SysWOW64\IMM32.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Multi-User Windows IMM32 API Client DLL 131795770645660929 0x74910000 2170880 C:\Windows\SysWOW64\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795770645660929 0x74b30000 53248 C:\Windows\SysWOW64\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795770645660929 0x74b60000 790528 C:\Windows\SysWOW64\RPCRT4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795770645660929 0x74c30000 1417216 C:\Windows\SysWOW64\gdi32full.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation GDI Client DLL 131795770645660929 0x74d90000 24576 C:\Windows\SysWOW64\PSAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Process Status Helper 131795770645660929 0x74da0000 778240 C:\Windows\SysWOW64\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795770645660929 0x74e60000 557056 C:\Windows\SysWOW64\shcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795770645660929 0x74f80000 278528 C:\Windows\SysWOW64\WINTRUST.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation Microsoft Trust Verification APIs 131795770645660929 0x74fd0000 405504 C:\Windows\SysWOW64\WS2_32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation 32-разрядная библиотека Windows Socket 2.0 131795770645660929 0x75040000 282624 C:\Windows\SysWOW64\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795770645660929 0x751d0000 57344 C:\Windows\SysWOW64\MSASN1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ASN.1 Runtime APIs 131795770645660929 0x751e0000 1708032 C:\Windows\SysWOW64\KERNELBASE.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645660929 0x75390000 266240 C:\Windows\SysWOW64\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795770645660929 0x753e0000 1560576 C:\Windows\SysWOW64\CRYPT32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API32 криптографии 131795770645660929 0x75560000 487424 C:\Windows\SysWOW64\ADVAPI32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795770645660929 0x756c0000 5693440 C:\Windows\SysWOW64\windows.storage.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API хранения Microsoft WinRT 131795770645660929 0x75c90000 286720 C:\Windows\SysWOW64\shlwapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека небольших программ оболочки 131795770645660929 0x75ce0000 20811776 C:\Windows\SysWOW64\SHELL32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Общая библиотека оболочки Windows 131795770645660929 0x774d0000 86016 C:\Windows\SysWOW64\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795770645660929 0x774f0000 61440 C:\Windows\SysWOW64\profapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Profile Basic API 131795770645660929 0x77560000 1437696 C:\Windows\SysWOW64\USER32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795770645660929 0x776c0000 368640 C:\Windows\SysWOW64\bcryptPrimitives.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation Windows Cryptographic Primitives Library 131795770645660929 0x77780000 503808 C:\Windows\SysWOW64\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645660929 0x77800000 606208 C:\Windows\SysWOW64\OLEAUT32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795770645660929 0x77ac0000 966656 C:\Windows\SysWOW64\ole32.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft OLE для Windows 131795770645660929 0x77bb0000 176128 C:\Windows\SysWOW64\GDI32.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation GDI Client DLL 131795770645660929 0x77be0000 937984 C:\Windows\SysWOW64\COMDLG32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека общих диалоговых окон 131795770645660929 0x77cd0000 221184 C:\Windows\SysWOW64\cfgmgr32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Configuration Manager DLL 131795770645660929 0x77d10000 28672 C:\Windows\SysWOW64\NSI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation NSI User-mode interface DLL 131795770645660929 0x77d20000 1585152 C:\Windows\SysWOW64\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 131795770645660929 0x7ffad0270000 1908736 C:\Windows\SYSTEM32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 88 10384 7744 57 00000000:0031f1da 131795755746873891 0 0 0 Обязательная метка\Ненадежный обязательный уровень WIN-0UOTFKKVN1S\User browser.exe C:\Users\User\AppData\Local\Yandex\YandexBrowser\Application\browser.exe "C:\Users\User\AppData\Local\Yandex\YandexBrowser\Application\browser.exe" --type=renderer --enable-in-process-wmf-demuxer --field-trial-handle=1292,9555382311565764851,7120838982649204725,131072 --enable-ignition --disable-gpu-compositing --service-pipe-token=7E669976FFDCEE94D9B90B02CADE1179 --lang=ru --user-id=32B2E0A1-3039-4C67-86BE-75A88EF21B54 --brand-id=yandex --partner-id=7924 --help-url=https://api.browser.yandex.ru/redirect/help/ --user-agent-info --translate-security-origin=https://translate.yandex.net --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --enable-instaserp --device-scale-factor=1 --num-raster-threads=1 --enable-compositor-image-animations --service-request-channel-token=7E669976FFDCEE94D9B90B02CADE1179 --renderer-client-id=112 --mojo-platform-channel-handle=5412 /prefetch:1 YANDEX LLC 18.6.1.770 Yandex 131795770645661053 0x10e0000 2519040 C:\Users\User\AppData\Local\Yandex\YandexBrowser\Application\browser.exe 18.6.1.770 YANDEX LLC Yandex 131795770645661053 0x58720000 59748352 C:\Users\User\AppData\Local\Yandex\YandexBrowser\Application\18.6.1.770\browser_child.dll 18.6.1.770 YANDEX LLC Yandex 131795770645661053 0x5c020000 335872 C:\Windows\System32\wow64.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation Win32 Emulation on NT64 131795770645661053 0x5c080000 487424 C:\Windows\System32\wow64win.dll 10.0.14393.1884 (rs1_release.171101-1233) Microsoft Corporation Wow64 Console and Win32 API Logging 131795770645661053 0x5c100000 40960 C:\Windows\System32\wow64cpu.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation AMD64 Wow64 CPU 131795770645661053 0x6e8b0000 1859584 C:\Windows\SysWOW64\mfmp4srcsnk.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL источника и приемника MPEG4 Media Foundation 131795770645661053 0x6ef30000 647168 C:\Windows\SysWOW64\evr.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека DLL средства отображения видео 131795770645661053 0x6efd0000 458752 C:\Windows\SysWOW64\msauddecmft.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Media Foundation Audio Decoders 131795770645661053 0x6f790000 1085440 C:\Windows\SysWOW64\mfperfhelper.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation MFPerf DLL 131795770645661053 0x6f8a0000 2220032 C:\Windows\SysWOW64\msmpeg2vdec.dll 10.0.14393.953 (rs1_release_inmarket.170303-1614) Microsoft Corporation Microsoft DTV-DVD Video Decoder 131795770645661053 0x6fac0000 1130496 C:\Windows\SysWOW64\mfplat.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Media Foundation Platform DLL 131795770645661053 0x6ff60000 172032 C:\Windows\SysWOW64\RTWorkQ.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL для WorkQueue реального времени 131795770645661053 0x70030000 593920 C:\Users\User\AppData\Local\Yandex\YandexBrowser\Application\18.6.1.770\browser_elf.dll 18.6.1.770 YANDEX LLC Yandex 131795770645661053 0x700d0000 434176 C:\Windows\SysWOW64\WINSPOOL.DRV 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Драйвер диспетчера очереди Windows 131795770645661053 0x70340000 536576 C:\Windows\SysWOW64\dxgi.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation DirectX Graphics Infrastructure 131795770645661053 0x703d0000 2056192 C:\Windows\SysWOW64\DWrite.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Службы Microsoft DirectX Typography 131795770645661053 0x707d0000 86016 C:\Windows\SysWOW64\SAMCLI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Security Accounts Manager Client DLL 131795770645661053 0x70a20000 94208 C:\Windows\SysWOW64\USP10.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Uniscribe Unicode script processor 131795770645661053 0x70ca0000 45056 C:\Windows\SysWOW64\NETUTILS.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API Helpers DLL 131795770645661053 0x70fd0000 1331200 C:\Windows\SysWOW64\dbghelp.dll 10.0.14321.1024 (rs1_release.160715-1616) Microsoft Windows Image Helper 131795770645661053 0x71140000 77824 C:\Windows\SysWOW64\NETAPI32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API DLL 131795770645661053 0x725e0000 2273280 C:\Windows\SysWOW64\iertutil.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служебная программа времени выполнения для Internet Explorer 131795770645661053 0x728e0000 1372160 C:\Windows\SysWOW64\PROPSYS.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Система страниц свойств (Майкрософт) 131795770645661053 0x72af0000 655360 C:\Windows\SysWOW64\WINHTTP.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Службы HTTP Windows 131795770645661053 0x72cc0000 1658880 C:\Windows\SysWOW64\urlmon.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширения OLE32 для Win32 131795770645661053 0x73ac0000 81920 C:\Windows\SysWOW64\dhcpcsvc.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служба DHCP-клиента 131795770645661053 0x73ae0000 40960 C:\Windows\SysWOW64\Secur32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Security Support Provider Interface 131795770645661053 0x73f00000 192512 C:\Windows\SysWOW64\IPHLPAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API вспомогательного приложения IP 131795770645661053 0x74190000 110592 C:\Windows\SysWOW64\bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795770645661053 0x741b0000 77824 C:\Windows\SysWOW64\cryptsp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Cryptographic Service Provider API 131795770645661053 0x741f0000 143360 C:\Windows\SysWOW64\WINMMBASE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base Multimedia Extension API DLL 131795770645661053 0x74230000 147456 C:\Windows\SysWOW64\WINMM.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation MCI API DLL 131795770645661053 0x744d0000 2138112 C:\Windows\WinSxS\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.14393.953_none_89c2555adb023171\COMCTL32.dll 6.10 (rs1_release_inmarket.170303-1614) Microsoft Corporation Библиотека элементов управления взаимодействия с пользователем 131795770645661053 0x746e0000 32768 C:\Windows\SysWOW64\VERSION.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Version Checking and File Installation Libraries 131795770645661053 0x746f0000 106496 C:\Windows\SysWOW64\USERENV.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Userenv 131795770645661053 0x747d0000 40960 C:\Windows\SysWOW64\CRYPTBASE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base cryptographic API DLL 131795770645661053 0x747e0000 126976 C:\Windows\SysWOW64\SspiCli.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Security Support Provider Interface 131795770645661053 0x74800000 151552 C:\Windows\SysWOW64\IMM32.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Multi-User Windows IMM32 API Client DLL 131795770645661053 0x74910000 2170880 C:\Windows\SysWOW64\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795770645661053 0x74b30000 53248 C:\Windows\SysWOW64\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795770645661053 0x74b60000 790528 C:\Windows\SysWOW64\RPCRT4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795770645661053 0x74c30000 1417216 C:\Windows\SysWOW64\gdi32full.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation GDI Client DLL 131795770645661053 0x74d90000 24576 C:\Windows\SysWOW64\PSAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Process Status Helper 131795770645661053 0x74da0000 778240 C:\Windows\SysWOW64\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795770645661053 0x74e60000 557056 C:\Windows\SysWOW64\shcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795770645661053 0x74f80000 278528 C:\Windows\SysWOW64\WINTRUST.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation Microsoft Trust Verification APIs 131795770645661053 0x74fd0000 405504 C:\Windows\SysWOW64\WS2_32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation 32-разрядная библиотека Windows Socket 2.0 131795770645661053 0x75040000 282624 C:\Windows\SysWOW64\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795770645661053 0x751d0000 57344 C:\Windows\SysWOW64\MSASN1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ASN.1 Runtime APIs 131795770645661053 0x751e0000 1708032 C:\Windows\SysWOW64\KERNELBASE.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645661053 0x75390000 266240 C:\Windows\SysWOW64\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795770645661053 0x753e0000 1560576 C:\Windows\SysWOW64\CRYPT32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API32 криптографии 131795770645661053 0x75560000 487424 C:\Windows\SysWOW64\ADVAPI32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795770645661053 0x756c0000 5693440 C:\Windows\SysWOW64\windows.storage.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API хранения Microsoft WinRT 131795770645661053 0x75c90000 286720 C:\Windows\SysWOW64\shlwapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека небольших программ оболочки 131795770645661053 0x75ce0000 20811776 C:\Windows\SysWOW64\SHELL32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Общая библиотека оболочки Windows 131795770645661053 0x774d0000 86016 C:\Windows\SysWOW64\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795770645661053 0x774f0000 61440 C:\Windows\SysWOW64\profapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Profile Basic API 131795770645661053 0x77560000 1437696 C:\Windows\SysWOW64\USER32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795770645661053 0x776c0000 368640 C:\Windows\SysWOW64\bcryptPrimitives.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation Windows Cryptographic Primitives Library 131795770645661053 0x77780000 503808 C:\Windows\SysWOW64\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645661053 0x77800000 606208 C:\Windows\SysWOW64\OLEAUT32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795770645661053 0x77ac0000 966656 C:\Windows\SysWOW64\ole32.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft OLE для Windows 131795770645661053 0x77bb0000 176128 C:\Windows\SysWOW64\GDI32.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation GDI Client DLL 131795770645661053 0x77be0000 937984 C:\Windows\SysWOW64\COMDLG32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека общих диалоговых окон 131795770645661053 0x77cd0000 221184 C:\Windows\SysWOW64\cfgmgr32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Configuration Manager DLL 131795770645661053 0x77d10000 28672 C:\Windows\SysWOW64\NSI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation NSI User-mode interface DLL 131795770645661053 0x77d20000 1585152 C:\Windows\SysWOW64\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 131795770645661053 0x7ffad0270000 1908736 C:\Windows\SYSTEM32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 90 6936 7744 57 00000000:0031f1da 131795756360200321 0 0 0 Обязательная метка\Ненадежный обязательный уровень WIN-0UOTFKKVN1S\User browser.exe C:\Users\User\AppData\Local\Yandex\YandexBrowser\Application\browser.exe "C:\Users\User\AppData\Local\Yandex\YandexBrowser\Application\browser.exe" --type=renderer --enable-in-process-wmf-demuxer --field-trial-handle=1292,9555382311565764851,7120838982649204725,131072 --enable-ignition --disable-gpu-compositing --service-pipe-token=73B8CB09F7D184AD1D3DDBFE4AFC07BA --lang=ru --user-id=32B2E0A1-3039-4C67-86BE-75A88EF21B54 --brand-id=yandex --partner-id=7924 --help-url=https://api.browser.yandex.ru/redirect/help/ --user-agent-info --translate-security-origin=https://translate.yandex.net --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --enable-instaserp --device-scale-factor=1 --num-raster-threads=1 --enable-compositor-image-animations --service-request-channel-token=73B8CB09F7D184AD1D3DDBFE4AFC07BA --renderer-client-id=116 --mojo-platform-channel-handle=4024 /prefetch:1 YANDEX LLC 18.6.1.770 Yandex 131795770645661289 0x10e0000 2519040 C:\Users\User\AppData\Local\Yandex\YandexBrowser\Application\browser.exe 18.6.1.770 YANDEX LLC Yandex 131795770645661289 0x58720000 59748352 C:\Users\User\AppData\Local\Yandex\YandexBrowser\Application\18.6.1.770\browser_child.dll 18.6.1.770 YANDEX LLC Yandex 131795770645661289 0x5c020000 335872 C:\Windows\System32\wow64.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation Win32 Emulation on NT64 131795770645661289 0x5c080000 487424 C:\Windows\System32\wow64win.dll 10.0.14393.1884 (rs1_release.171101-1233) Microsoft Corporation Wow64 Console and Win32 API Logging 131795770645661289 0x5c100000 40960 C:\Windows\System32\wow64cpu.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation AMD64 Wow64 CPU 131795770645661289 0x6e8b0000 1859584 C:\Windows\SysWOW64\mfmp4srcsnk.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL источника и приемника MPEG4 Media Foundation 131795770645661289 0x6ef30000 647168 C:\Windows\SysWOW64\evr.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека DLL средства отображения видео 131795770645661289 0x6efd0000 458752 C:\Windows\SysWOW64\msauddecmft.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Media Foundation Audio Decoders 131795770645661289 0x6f790000 1085440 C:\Windows\SysWOW64\mfperfhelper.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation MFPerf DLL 131795770645661289 0x6f8a0000 2220032 C:\Windows\SysWOW64\msmpeg2vdec.dll 10.0.14393.953 (rs1_release_inmarket.170303-1614) Microsoft Corporation Microsoft DTV-DVD Video Decoder 131795770645661289 0x6fac0000 1130496 C:\Windows\SysWOW64\mfplat.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Media Foundation Platform DLL 131795770645661289 0x6ff60000 172032 C:\Windows\SysWOW64\RTWorkQ.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL для WorkQueue реального времени 131795770645661289 0x70030000 593920 C:\Users\User\AppData\Local\Yandex\YandexBrowser\Application\18.6.1.770\browser_elf.dll 18.6.1.770 YANDEX LLC Yandex 131795770645661289 0x700d0000 434176 C:\Windows\SysWOW64\WINSPOOL.DRV 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Драйвер диспетчера очереди Windows 131795770645661289 0x70340000 536576 C:\Windows\SysWOW64\dxgi.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation DirectX Graphics Infrastructure 131795770645661289 0x703d0000 2056192 C:\Windows\SysWOW64\DWrite.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Службы Microsoft DirectX Typography 131795770645661289 0x707d0000 86016 C:\Windows\SysWOW64\SAMCLI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Security Accounts Manager Client DLL 131795770645661289 0x70a20000 94208 C:\Windows\SysWOW64\USP10.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Uniscribe Unicode script processor 131795770645661289 0x70ca0000 45056 C:\Windows\SysWOW64\NETUTILS.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API Helpers DLL 131795770645661289 0x70fd0000 1331200 C:\Windows\SysWOW64\dbghelp.dll 10.0.14321.1024 (rs1_release.160715-1616) Microsoft Windows Image Helper 131795770645661289 0x71140000 77824 C:\Windows\SysWOW64\NETAPI32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API DLL 131795770645661289 0x725e0000 2273280 C:\Windows\SysWOW64\iertutil.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служебная программа времени выполнения для Internet Explorer 131795770645661289 0x728e0000 1372160 C:\Windows\SysWOW64\PROPSYS.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Система страниц свойств (Майкрософт) 131795770645661289 0x72af0000 655360 C:\Windows\SysWOW64\WINHTTP.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Службы HTTP Windows 131795770645661289 0x72cc0000 1658880 C:\Windows\SysWOW64\urlmon.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширения OLE32 для Win32 131795770645661289 0x73ac0000 81920 C:\Windows\SysWOW64\dhcpcsvc.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служба DHCP-клиента 131795770645661289 0x73ae0000 40960 C:\Windows\SysWOW64\Secur32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Security Support Provider Interface 131795770645661289 0x73f00000 192512 C:\Windows\SysWOW64\IPHLPAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API вспомогательного приложения IP 131795770645661289 0x74190000 110592 C:\Windows\SysWOW64\bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795770645661289 0x741b0000 77824 C:\Windows\SysWOW64\cryptsp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Cryptographic Service Provider API 131795770645661289 0x741f0000 143360 C:\Windows\SysWOW64\WINMMBASE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base Multimedia Extension API DLL 131795770645661289 0x74230000 147456 C:\Windows\SysWOW64\WINMM.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation MCI API DLL 131795770645661289 0x744d0000 2138112 C:\Windows\WinSxS\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.14393.953_none_89c2555adb023171\COMCTL32.dll 6.10 (rs1_release_inmarket.170303-1614) Microsoft Corporation Библиотека элементов управления взаимодействия с пользователем 131795770645661289 0x746e0000 32768 C:\Windows\SysWOW64\VERSION.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Version Checking and File Installation Libraries 131795770645661289 0x746f0000 106496 C:\Windows\SysWOW64\USERENV.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Userenv 131795770645661289 0x747d0000 40960 C:\Windows\SysWOW64\CRYPTBASE.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base cryptographic API DLL 131795770645661289 0x747e0000 126976 C:\Windows\SysWOW64\SspiCli.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Security Support Provider Interface 131795770645661289 0x74800000 151552 C:\Windows\SysWOW64\IMM32.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Multi-User Windows IMM32 API Client DLL 131795770645661289 0x74910000 2170880 C:\Windows\SysWOW64\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795770645661289 0x74b30000 53248 C:\Windows\SysWOW64\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795770645661289 0x74b60000 790528 C:\Windows\SysWOW64\RPCRT4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795770645661289 0x74c30000 1417216 C:\Windows\SysWOW64\gdi32full.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation GDI Client DLL 131795770645661289 0x74d90000 24576 C:\Windows\SysWOW64\PSAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Process Status Helper 131795770645661289 0x74da0000 778240 C:\Windows\SysWOW64\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795770645661289 0x74e60000 557056 C:\Windows\SysWOW64\shcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795770645661289 0x74f80000 278528 C:\Windows\SysWOW64\WINTRUST.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation Microsoft Trust Verification APIs 131795770645661289 0x74fd0000 405504 C:\Windows\SysWOW64\WS2_32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation 32-разрядная библиотека Windows Socket 2.0 131795770645661289 0x75040000 282624 C:\Windows\SysWOW64\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795770645661289 0x751d0000 57344 C:\Windows\SysWOW64\MSASN1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ASN.1 Runtime APIs 131795770645661289 0x751e0000 1708032 C:\Windows\SysWOW64\KERNELBASE.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795770645661289 0x75390000 266240 C:\Windows\SysWOW64\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795770645661289 0x753e0000 1560576 C:\Windows\SysWOW64\CRYPT32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API32 криптографии 131795770645661289 0x75560000 487424 C:\Windows\SysWOW64\ADVAPI32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795770645661289 0x756c0000 5693440 C:\Windows\SysWOW64\windows.storage.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API хранения Microsoft WinRT 131795770645661289 0x75c90000 286720 C:\Windows\SysWOW64\shlwapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека небольших программ оболочки 131795770645661289 0x75ce0000 20811776 C:\Windows\SysWOW64\SHELL32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Общая библиотека оболочки Windows 131795770645661289 0x774d0000 86016 C:\Windows\SysWOW64\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795770645661289 0x774f0000 61440 C:\Windows\SysWOW64\profapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Profile Basic API 131795770645661289 0x77560000 1437696 C:\Windows\SysWOW64\USER32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795770645661289 0x776c0000 368640 C:\Windows\SysWOW64\bcryptPrimitives.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation Windows Cryptographic Primitives Library 131795770645661289 0x77780000 503808 C:\Windows\SysWOW64\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795770645661289 0x77800000 606208 C:\Windows\SysWOW64\OLEAUT32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795770645661289 0x77ac0000 966656 C:\Windows\SysWOW64\ole32.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft OLE для Windows 131795770645661289 0x77bb0000 176128 C:\Windows\SysWOW64\GDI32.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation GDI Client DLL 131795770645661289 0x77be0000 937984 C:\Windows\SysWOW64\COMDLG32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека общих диалоговых окон 131795770645661289 0x77cd0000 221184 C:\Windows\SysWOW64\cfgmgr32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Configuration Manager DLL 131795770645661289 0x77d10000 28672 C:\Windows\SysWOW64\NSI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation NSI User-mode interface DLL 131795770645661289 0x77d20000 1585152 C:\Windows\SysWOW64\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 131795770645661289 0x7ffad0270000 1908736 C:\Windows\SYSTEM32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 98 6080 84 97 00000000:0031f1da 131795771125310655 0 0 0 Обязательная метка\Средний обязательный уровень WIN-0UOTFKKVN1S\User MCLauncher.exe C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe "C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe" 1.0 131795771127806606 0x400000 2830336 C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe 1.0 131795771129292604 0x750000 1462272 C:\Windows\System32\user32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795771335510731 0x11000000 1396736 C:\Users\User\AppData\Roaming\MCLauncher\libeay32.dll 1.0.2o The OpenSSL Project, http://www.openssl.org/ OpenSSL Shared Library 131795771334241016 0x12000000 360448 C:\Users\User\AppData\Roaming\MCLauncher\ssleay32.dll 1.0.2o The OpenSSL Project, http://www.openssl.org/ OpenSSL Shared Library 131795771129285523 0x5c020000 335872 C:\Windows\System32\wow64.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation Win32 Emulation on NT64 131795771129286235 0x5c080000 487424 C:\Windows\System32\wow64win.dll 10.0.14393.1884 (rs1_release.171101-1233) Microsoft Corporation Wow64 Console and Win32 API Logging 131795771129295328 0x5c100000 40960 C:\Windows\System32\wow64cpu.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation AMD64 Wow64 CPU 131795771135408057 0x60750000 1556480 C:\Program Files (x86)\360\Total Security\safemon\safemon.dll 8, 4, 0, 1420 Qihu 360 Software Co., Ltd. 360 Internet Security Internet Protection 131795771129575672 0x613d0000 667648 C:\Windows\WinSxS\x86_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.9247_none_5090cb78bcba4a35\msvcr90.dll 9.00.30729.9247 Microsoft Corporation Microsoft® C Runtime Library 131795771129398434 0x66680000 12288 C:\Windows\SysWOW64\sfc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows File Protection 131795771136825814 0x67500000 1597440 C:\Windows\SysWOW64\actxprxy.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation ActiveX Interface Marshaling Library 131795771129423112 0x67690000 61440 C:\Windows\SysWOW64\sfc_os.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows File Protection 131795771129349562 0x6b830000 2584576 C:\Windows\AppPatch\AcLayers.dll 10.0.14393.953 (rs1_release_inmarket.170303-1614) Microsoft Corporation Windows Compatibility DLL 131795771329638947 0x6c290000 987136 C:\Windows\SysWOW64\twinapi.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation twinapi.appcore 131795771329610149 0x6c390000 1126400 C:\Windows\SysWOW64\dcomp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft DirectComposition Library 131795771329592759 0x6c4b0000 278528 C:\Windows\SysWOW64\DataExchange.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation Data exchange 131795771136045859 0x6cda0000 528384 C:\Windows\SysWOW64\sxs.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Fusion 2.5 131795771131298623 0x6d180000 581632 C:\Windows\WinSxS\x86_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.9247_none_5090cb78bcba4a35\msvcp90.dll 9.00.30729.9247 Microsoft Corporation Microsoft® C++ Runtime Library 131795771136082794 0x6dca0000 176128 C:\Windows\SysWOW64\scrrun.dll 5.812.10240.16384 Microsoft Corporation Microsoft ® Script Runtime 131795771133718253 0x6dcd0000 606208 C:\Windows\WinSxS\x86_microsoft.windows.common-controls_6595b64144ccf1df_5.82.14393.447_none_5507ded2cb4f7f4c\comctl32.dll 6.10 (rs1_release_inmarket.170303-1614) Microsoft Corporation Библиотека элементов управления взаимодействия с пользователем 131795771129406131 0x700d0000 434176 C:\Windows\SysWOW64\winspool.drv 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Драйвер диспетчера очереди Windows 131795771329618480 0x70340000 536576 C:\Windows\SysWOW64\dxgi.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation DirectX Graphics Infrastructure 131795771329601483 0x707f0000 2293760 C:\Windows\SysWOW64\d3d11.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation Direct3D 11 Runtime 131795771336447829 0x70c30000 114688 C:\Windows\SysWOW64\srvcli.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Server Service Client DLL 131795771135435621 0x70ca0000 45056 C:\Windows\SysWOW64\netutils.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API Helpers DLL 131795771135446667 0x70cb0000 65536 C:\Windows\SysWOW64\wkscli.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Workstation Service Client DLL 131795771136073867 0x70e90000 147456 C:\Windows\SysWOW64\wshom.ocx 5.812.10240.16384 Microsoft Corporation Windows Script Host Runtime Library 131795771135423397 0x71140000 77824 C:\Windows\SysWOW64\netapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API DLL 131795771135552456 0x725e0000 2273280 C:\Windows\SysWOW64\iertutil.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служебная программа времени выполнения для Internet Explorer 131795771136181434 0x728e0000 1372160 C:\Windows\SysWOW64\propsys.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Система страниц свойств (Майкрософт) 131795771328759427 0x72b90000 126976 C:\Windows\SysWOW64\dwmapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Интерфейс API диспетчера окон рабочего стола (Майкрософт) 131795771135541570 0x72cc0000 1658880 C:\Windows\SysWOW64\urlmon.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширения OLE32 для Win32 131795771347140137 0x73a50000 299008 C:\Windows\SysWOW64\FWPUCLNT.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API пользовательского режима FWP/IPsec 131795771347110306 0x73ab0000 32768 C:\Windows\SysWOW64\rasadhlp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Remote Access AutoDial Helper 131795771135314174 0x73ae0000 40960 C:\Windows\SysWOW64\secur32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Security Support Provider Interface 131795771347090516 0x73f00000 192512 C:\Windows\SysWOW64\IPHLPAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API вспомогательного приложения IP 131795771347075776 0x73f30000 512000 C:\Windows\SysWOW64\dnsapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Динамическая библиотека API DNS-клиента 131795771328179609 0x73ff0000 319488 C:\Windows\SysWOW64\mswsock.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширение поставщика службы API Microsoft Windows Sockets 2.0 131795771130913562 0x74060000 192512 C:\Windows\SysWOW64\rsaenh.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Enhanced Cryptographic Provider 131795771135359123 0x74110000 479232 C:\Windows\SysWOW64\uxtheme.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека тем UxTheme (Microsoft) 131795771129415027 0x74190000 110592 C:\Windows\SysWOW64\bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795771130899582 0x741b0000 77824 C:\Windows\SysWOW64\cryptsp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Cryptographic Service Provider API 131795771133098293 0x741f0000 143360 C:\Windows\SysWOW64\winmmbase.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base Multimedia Extension API DLL 131795771132990161 0x74230000 147456 C:\Windows\SysWOW64\winmm.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation MCI API DLL 131795771131765102 0x746e0000 32768 C:\Windows\SysWOW64\version.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Version Checking and File Installation Libraries 131795771129389543 0x74710000 90112 C:\Windows\SysWOW64\mpr.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека маршрутизации для нескольких служб доступа 131795771129317462 0x74730000 598016 C:\Windows\SysWOW64\apphelp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиентская библиотека совместимости приложений 131795771129360685 0x747d0000 40960 C:\Windows\SysWOW64\cryptbase.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base cryptographic API DLL 131795771129360034 0x747e0000 126976 C:\Windows\SysWOW64\sspicli.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Security Support Provider Interface 131795771129496759 0x74800000 151552 C:\Windows\SysWOW64\imm32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Multi-User Windows IMM32 API Client DLL 131795771129358136 0x74830000 917504 C:\Windows\SysWOW64\ucrtbase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795771129357408 0x74910000 2170880 C:\Windows\SysWOW64\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795771129365891 0x74b30000 53248 C:\Windows\SysWOW64\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795771129359203 0x74b60000 790528 C:\Windows\SysWOW64\rpcrt4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795771129353720 0x74c30000 1417216 C:\Windows\SysWOW64\gdi32full.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation GDI Client DLL 131795771135412052 0x74d90000 24576 C:\Windows\SysWOW64\psapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Process Status Helper 131795771129350362 0x74da0000 778240 C:\Windows\SysWOW64\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795771129366695 0x74e60000 557056 C:\Windows\SysWOW64\SHCore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795771136054082 0x74ef0000 540672 C:\Windows\SysWOW64\clbcatq.dll 2001.12.10941.16384 (rs1_release.160715-1616) Microsoft Corporation COM+ Configuration Catalog 131795771131750596 0x74fd0000 405504 C:\Windows\SysWOW64\ws2_32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation 32-разрядная библиотека Windows Socket 2.0 131795771129363162 0x75040000 282624 C:\Windows\SysWOW64\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795771328737550 0x75090000 1265664 C:\Windows\SysWOW64\msctf.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Серверная библиотека MSCTF 131795771135228888 0x751d0000 57344 C:\Windows\SysWOW64\msasn1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ASN.1 Runtime APIs 131795771129301509 0x751e0000 1708032 C:\Windows\SysWOW64\KernelBase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795771129362062 0x75390000 266240 C:\Windows\SysWOW64\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795771135227735 0x753e0000 1560576 C:\Windows\SysWOW64\crypt32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API32 криптографии 131795771129363985 0x75560000 487424 C:\Windows\SysWOW64\advapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795771129356607 0x756c0000 5693440 C:\Windows\SysWOW64\windows.storage.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API хранения Microsoft WinRT 131795771129364960 0x75c90000 286720 C:\Windows\SysWOW64\shlwapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека небольших программ оболочки 131795771129354665 0x75ce0000 20811776 C:\Windows\SysWOW64\shell32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Общая библиотека оболочки Windows 131795771129370252 0x770c0000 4239360 C:\Windows\SysWOW64\setupapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Setup API 131795771129352041 0x774d0000 86016 C:\Windows\SysWOW64\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795771129367584 0x774f0000 61440 C:\Windows\SysWOW64\profapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Profile Basic API 131795771129351257 0x77560000 1437696 C:\Windows\SysWOW64\user32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795771129361361 0x776c0000 368640 C:\Windows\SysWOW64\bcryptprimitives.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation Windows Cryptographic Primitives Library 131795771129369244 0x77780000 503808 C:\Windows\SysWOW64\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795771129368545 0x77800000 606208 C:\Windows\SysWOW64\oleaut32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795771131168008 0x77ac0000 966656 C:\Windows\SysWOW64\ole32.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft OLE для Windows 131795771129352931 0x77bb0000 176128 C:\Windows\SysWOW64\gdi32.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation GDI Client DLL 131795771133704572 0x77be0000 937984 C:\Windows\SysWOW64\comdlg32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека общих диалоговых окон 131795771129355632 0x77cd0000 221184 C:\Windows\SysWOW64\cfgmgr32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Configuration Manager DLL 131795771347076821 0x77d10000 28672 C:\Windows\SysWOW64\nsi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation NSI User-mode interface DLL 131795771127807387 0x77d20000 1585152 C:\Windows\SysWOW64\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 131795771127807116 0x7ffad0270000 1908736 C:\Windows\System32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 104 12696 7744 57 00000000:0031f1da 131795777567759490 0 0 0 Обязательная метка\Низкий обязательный уровень WIN-0UOTFKKVN1S\User browser.exe C:\Users\User\AppData\Local\Yandex\YandexBrowser\Application\browser.exe "C:\Users\User\AppData\Local\Yandex\YandexBrowser\Application\browser.exe" --type=renderer --enable-in-process-wmf-demuxer --field-trial-handle=1292,9555382311565764851,7120838982649204725,131072 --enable-ignition --disable-gpu-compositing --service-pipe-token=E83DB721798C8A70C76CD26F6F4EE1BC --lang=ru --user-id=32B2E0A1-3039-4C67-86BE-75A88EF21B54 --brand-id=yandex --partner-id=7924 --help-url=https://api.browser.yandex.ru/redirect/help/ --user-agent-info --translate-security-origin=https://translate.yandex.net --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --enable-instaserp --device-scale-factor=1 --num-raster-threads=1 --enable-compositor-image-animations --service-request-channel-token=E83DB721798C8A70C76CD26F6F4EE1BC --renderer-client-id=119 --mojo-platform-channel-handle=7052 /prefetch:1 YANDEX LLC 18.6.1.770 Yandex 131795777567991690 0xc00000 1462272 C:\Windows\System32\user32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795777567961139 0x10e0000 2519040 C:\Users\User\AppData\Local\Yandex\YandexBrowser\Application\browser.exe 18.6.1.770 YANDEX LLC Yandex 131795777569452751 0x58720000 59748352 C:\Users\User\AppData\Local\Yandex\YandexBrowser\Application\18.6.1.770\browser_child.dll 18.6.1.770 YANDEX LLC Yandex 131795777567980184 0x5c020000 335872 C:\Windows\System32\wow64.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation Win32 Emulation on NT64 131795777567981270 0x5c080000 487424 C:\Windows\System32\wow64win.dll 10.0.14393.1884 (rs1_release.171101-1233) Microsoft Corporation Wow64 Console and Win32 API Logging 131795777567994943 0x5c100000 40960 C:\Windows\System32\wow64cpu.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation AMD64 Wow64 CPU 131795777570994535 0x6e8b0000 1859584 C:\Windows\SysWOW64\mfmp4srcsnk.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL источника и приемника MPEG4 Media Foundation 131795777570968696 0x6ef30000 647168 C:\Windows\SysWOW64\evr.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека DLL средства отображения видео 131795777570908362 0x6efd0000 458752 C:\Windows\SysWOW64\MSAudDecMFT.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Media Foundation Audio Decoders 131795777570920904 0x6f790000 1085440 C:\Windows\SysWOW64\mfperfhelper.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation MFPerf DLL 131795777570943637 0x6f8a0000 2220032 C:\Windows\SysWOW64\msmpeg2vdec.dll 10.0.14393.953 (rs1_release_inmarket.170303-1614) Microsoft Corporation Microsoft DTV-DVD Video Decoder 131795777570874151 0x6fac0000 1130496 C:\Windows\SysWOW64\mfplat.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Media Foundation Platform DLL 131795777570891841 0x6ff60000 172032 C:\Windows\SysWOW64\RTWorkQ.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL для WorkQueue реального времени 131795777568100773 0x70030000 593920 C:\Users\User\AppData\Local\Yandex\YandexBrowser\Application\18.6.1.770\browser_elf.dll 18.6.1.770 YANDEX LLC Yandex 131795777570569484 0x700d0000 434176 C:\Windows\SysWOW64\winspool.drv 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Драйвер диспетчера очереди Windows 131795777570619251 0x70340000 536576 C:\Windows\SysWOW64\dxgi.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation DirectX Graphics Infrastructure 131795777570607590 0x703d0000 2056192 C:\Windows\SysWOW64\DWrite.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Службы Microsoft DirectX Typography 131795777570676211 0x707d0000 86016 C:\Windows\SysWOW64\samcli.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Security Accounts Manager Client DLL 131795777570557202 0x70a20000 94208 C:\Windows\SysWOW64\usp10.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Uniscribe Unicode script processor 131795777570691164 0x70ca0000 45056 C:\Windows\SysWOW64\netutils.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API Helpers DLL 131795777570539079 0x70fd0000 1331200 C:\Windows\SysWOW64\dbghelp.dll 10.0.14321.1024 (rs1_release.160715-1616) Microsoft Windows Image Helper 131795777569494420 0x71140000 77824 C:\Windows\SysWOW64\netapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API DLL 131795777570658737 0x725e0000 2273280 C:\Windows\SysWOW64\iertutil.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служебная программа времени выполнения для Internet Explorer 131795777569526517 0x728e0000 1372160 C:\Windows\SysWOW64\propsys.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Система страниц свойств (Майкрософт) 131795777569154123 0x72af0000 655360 C:\Windows\SysWOW64\winhttp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Службы HTTP Windows 131795777570594964 0x72cc0000 1658880 C:\Windows\SysWOW64\urlmon.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширения OLE32 для Win32 131795777570630821 0x73ac0000 81920 C:\Windows\SysWOW64\dhcpcsvc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служба DHCP-клиента 131795777570523174 0x73ae0000 40960 C:\Windows\SysWOW64\secur32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Security Support Provider Interface 131795777570582120 0x73f00000 192512 C:\Windows\SysWOW64\IPHLPAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API вспомогательного приложения IP 131795777570646486 0x74190000 110592 C:\Windows\SysWOW64\bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795777570953652 0x741b0000 77824 C:\Windows\SysWOW64\cryptsp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Cryptographic Service Provider API 131795777569213807 0x741f0000 143360 C:\Windows\SysWOW64\winmmbase.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base Multimedia Extension API DLL 131795777568156054 0x74230000 147456 C:\Windows\SysWOW64\winmm.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation MCI API DLL 131795777569481011 0x744d0000 2138112 C:\Windows\WinSxS\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.14393.953_none_89c2555adb023171\comctl32.dll 6.10 (rs1_release_inmarket.170303-1614) Microsoft Corporation Библиотека элементов управления взаимодействия с пользователем 131795777568142933 0x746e0000 32768 C:\Windows\SysWOW64\version.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Version Checking and File Installation Libraries 131795777568179155 0x746f0000 106496 C:\Windows\SysWOW64\userenv.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Userenv 131795777568043561 0x747d0000 40960 C:\Windows\SysWOW64\cryptbase.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base cryptographic API DLL 131795777568042430 0x747e0000 126976 C:\Windows\SysWOW64\sspicli.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Security Support Provider Interface 131795777569239058 0x74800000 151552 C:\Windows\SysWOW64\imm32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Multi-User Windows IMM32 API Client DLL 131795777568075566 0x74830000 917504 C:\Windows\SysWOW64\ucrtbase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795777568073430 0x74910000 2170880 C:\Windows\SysWOW64\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795777568086784 0x74b30000 53248 C:\Windows\SysWOW64\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795777568041126 0x74b60000 790528 C:\Windows\SysWOW64\rpcrt4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795777568081914 0x74c30000 1417216 C:\Windows\SysWOW64\gdi32full.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation GDI Client DLL 131795777568046844 0x74d90000 24576 C:\Windows\SysWOW64\psapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Process Status Helper 131795777568038347 0x74da0000 778240 C:\Windows\SysWOW64\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795777568088134 0x74e60000 557056 C:\Windows\SysWOW64\SHCore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795777569468247 0x74f80000 278528 C:\Windows\SysWOW64\wintrust.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation Microsoft Trust Verification APIs 131795777569466798 0x74fd0000 405504 C:\Windows\SysWOW64\ws2_32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation 32-разрядная библиотека Windows Socket 2.0 131795777568077279 0x75040000 282624 C:\Windows\SysWOW64\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795777569469408 0x751d0000 57344 C:\Windows\SysWOW64\msasn1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ASN.1 Runtime APIs 131795777568024100 0x751e0000 1708032 C:\Windows\SysWOW64\KernelBase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795777568039823 0x75390000 266240 C:\Windows\SysWOW64\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795777569470854 0x753e0000 1560576 C:\Windows\SysWOW64\crypt32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API32 криптографии 131795777568036731 0x75560000 487424 C:\Windows\SysWOW64\advapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795777568054568 0x756c0000 5693440 C:\Windows\SysWOW64\windows.storage.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API хранения Microsoft WinRT 131795777568078714 0x75c90000 286720 C:\Windows\SysWOW64\shlwapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека небольших программ оболочки 131795777568050811 0x75ce0000 20811776 C:\Windows\SysWOW64\shell32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Общая библиотека оболочки Windows 131795777568084892 0x774d0000 86016 C:\Windows\SysWOW64\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795777568089486 0x774f0000 61440 C:\Windows\SysWOW64\profapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Profile Basic API 131795777568083413 0x77560000 1437696 C:\Windows\SysWOW64\user32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795777568044758 0x776c0000 368640 C:\Windows\SysWOW64\bcryptprimitives.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation Windows Cryptographic Primitives Library 131795777569464930 0x77780000 503808 C:\Windows\SysWOW64\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795777569463567 0x77800000 606208 C:\Windows\SysWOW64\oleaut32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795777568116745 0x77ac0000 966656 C:\Windows\SysWOW64\ole32.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft OLE для Windows 131795777568080182 0x77bb0000 176128 C:\Windows\SysWOW64\gdi32.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation GDI Client DLL 131795777569457550 0x77be0000 937984 C:\Windows\SysWOW64\comdlg32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека общих диалоговых окон 131795777568052363 0x77cd0000 221184 C:\Windows\SysWOW64\cfgmgr32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Configuration Manager DLL 131795777570632192 0x77d10000 28672 C:\Windows\SysWOW64\nsi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation NSI User-mode interface DLL 131795777567961904 0x77d20000 1585152 C:\Windows\SysWOW64\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 131795777567961630 0x7ffad0270000 1908736 C:\Windows\System32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 106 5556 7744 57 00000000:0031f1da 131795777595302537 0 0 0 Обязательная метка\Низкий обязательный уровень WIN-0UOTFKKVN1S\User browser.exe C:\Users\User\AppData\Local\Yandex\YandexBrowser\Application\browser.exe "C:\Users\User\AppData\Local\Yandex\YandexBrowser\Application\browser.exe" --type=renderer --enable-in-process-wmf-demuxer --field-trial-handle=1292,9555382311565764851,7120838982649204725,131072 --enable-ignition --disable-gpu-compositing --service-pipe-token=3ADFA2396247AD5E547F61590603D06D --lang=ru --user-id=32B2E0A1-3039-4C67-86BE-75A88EF21B54 --brand-id=yandex --partner-id=7924 --help-url=https://api.browser.yandex.ru/redirect/help/ --user-agent-info --translate-security-origin=https://translate.yandex.net --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --enable-instaserp --device-scale-factor=1 --num-raster-threads=1 --enable-compositor-image-animations --service-request-channel-token=3ADFA2396247AD5E547F61590603D06D --renderer-client-id=121 --mojo-platform-channel-handle=6636 /prefetch:1 YANDEX LLC 18.6.1.770 Yandex 131795777595490187 0x1020000 704512 C:\Windows\System32\kernel32.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795777595475498 0x10e0000 2519040 C:\Users\User\AppData\Local\Yandex\YandexBrowser\Application\browser.exe 18.6.1.770 YANDEX LLC Yandex 131795777595491301 0x5550000 1462272 C:\Windows\System32\user32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795777596381097 0x58720000 59748352 C:\Users\User\AppData\Local\Yandex\YandexBrowser\Application\18.6.1.770\browser_child.dll 18.6.1.770 YANDEX LLC Yandex 131795777595481485 0x5c020000 335872 C:\Windows\System32\wow64.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation Win32 Emulation on NT64 131795777595482474 0x5c080000 487424 C:\Windows\System32\wow64win.dll 10.0.14393.1884 (rs1_release.171101-1233) Microsoft Corporation Wow64 Console and Win32 API Logging 131795777595494304 0x5c100000 40960 C:\Windows\System32\wow64cpu.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation AMD64 Wow64 CPU 131795777597543015 0x6e8b0000 1859584 C:\Windows\SysWOW64\mfmp4srcsnk.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL источника и приемника MPEG4 Media Foundation 131795777597521210 0x6ef30000 647168 C:\Windows\SysWOW64\evr.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека DLL средства отображения видео 131795777597472595 0x6efd0000 458752 C:\Windows\SysWOW64\MSAudDecMFT.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Media Foundation Audio Decoders 131795777597484525 0x6f790000 1085440 C:\Windows\SysWOW64\mfperfhelper.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation MFPerf DLL 131795777597497517 0x6f8a0000 2220032 C:\Windows\SysWOW64\msmpeg2vdec.dll 10.0.14393.953 (rs1_release_inmarket.170303-1614) Microsoft Corporation Microsoft DTV-DVD Video Decoder 131795777597428793 0x6fac0000 1130496 C:\Windows\SysWOW64\mfplat.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Media Foundation Platform DLL 131795777597448444 0x6ff60000 172032 C:\Windows\SysWOW64\RTWorkQ.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL для WorkQueue реального времени 131795777595565558 0x70030000 593920 C:\Users\User\AppData\Local\Yandex\YandexBrowser\Application\18.6.1.770\browser_elf.dll 18.6.1.770 YANDEX LLC Yandex 131795777597103476 0x700d0000 434176 C:\Windows\SysWOW64\winspool.drv 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Драйвер диспетчера очереди Windows 131795777597165296 0x70340000 536576 C:\Windows\SysWOW64\dxgi.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation DirectX Graphics Infrastructure 131795777597153510 0x703d0000 2056192 C:\Windows\SysWOW64\DWrite.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Службы Microsoft DirectX Typography 131795777597221087 0x707d0000 86016 C:\Windows\SysWOW64\samcli.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Security Accounts Manager Client DLL 131795777597072535 0x70a20000 94208 C:\Windows\SysWOW64\usp10.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Uniscribe Unicode script processor 131795777597233493 0x70ca0000 45056 C:\Windows\SysWOW64\netutils.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API Helpers DLL 131795777597059294 0x70fd0000 1331200 C:\Windows\SysWOW64\dbghelp.dll 10.0.14321.1024 (rs1_release.160715-1616) Microsoft Windows Image Helper 131795777596424202 0x71140000 77824 C:\Windows\SysWOW64\netapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API DLL 131795777597205195 0x725e0000 2273280 C:\Windows\SysWOW64\iertutil.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служебная программа времени выполнения для Internet Explorer 131795777596436120 0x728e0000 1372160 C:\Windows\SysWOW64\propsys.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Система страниц свойств (Майкрософт) 131795777596128973 0x72af0000 655360 C:\Windows\SysWOW64\winhttp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Службы HTTP Windows 131795777597128037 0x72cc0000 1658880 C:\Windows\SysWOW64\urlmon.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширения OLE32 для Win32 131795777597177209 0x73ac0000 81920 C:\Windows\SysWOW64\dhcpcsvc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служба DHCP-клиента 131795777597044137 0x73ae0000 40960 C:\Windows\SysWOW64\secur32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Security Support Provider Interface 131795777597116160 0x73f00000 192512 C:\Windows\SysWOW64\IPHLPAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API вспомогательного приложения IP 131795777597192860 0x74190000 110592 C:\Windows\SysWOW64\bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795777597506812 0x741b0000 77824 C:\Windows\SysWOW64\cryptsp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Cryptographic Service Provider API 131795777596148547 0x741f0000 143360 C:\Windows\SysWOW64\winmmbase.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base Multimedia Extension API DLL 131795777595627397 0x74230000 147456 C:\Windows\SysWOW64\winmm.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation MCI API DLL 131795777596410831 0x744d0000 2138112 C:\Windows\WinSxS\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.14393.953_none_89c2555adb023171\comctl32.dll 6.10 (rs1_release_inmarket.170303-1614) Microsoft Corporation Библиотека элементов управления взаимодействия с пользователем 131795777595610560 0x746e0000 32768 C:\Windows\SysWOW64\version.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Version Checking and File Installation Libraries 131795777595638942 0x746f0000 106496 C:\Windows\SysWOW64\userenv.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Userenv 131795777595529014 0x747d0000 40960 C:\Windows\SysWOW64\cryptbase.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base cryptographic API DLL 131795777595527983 0x747e0000 126976 C:\Windows\SysWOW64\sspicli.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Security Support Provider Interface 131795777596182171 0x74800000 151552 C:\Windows\SysWOW64\imm32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Multi-User Windows IMM32 API Client DLL 131795777595541526 0x74830000 917504 C:\Windows\SysWOW64\ucrtbase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795777595540326 0x74910000 2170880 C:\Windows\SysWOW64\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795777595551866 0x74b30000 53248 C:\Windows\SysWOW64\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795777595526606 0x74b60000 790528 C:\Windows\SysWOW64\rpcrt4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795777595547732 0x74c30000 1417216 C:\Windows\SysWOW64\gdi32full.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation GDI Client DLL 131795777595531563 0x74d90000 24576 C:\Windows\SysWOW64\psapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Process Status Helper 131795777595524005 0x74da0000 778240 C:\Windows\SysWOW64\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795777595553384 0x74e60000 557056 C:\Windows\SysWOW64\SHCore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795777596396507 0x74f80000 278528 C:\Windows\SysWOW64\wintrust.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation Microsoft Trust Verification APIs 131795777596394953 0x74fd0000 405504 C:\Windows\SysWOW64\ws2_32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation 32-разрядная библиотека Windows Socket 2.0 131795777595543299 0x75040000 282624 C:\Windows\SysWOW64\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795777596397607 0x751d0000 57344 C:\Windows\SysWOW64\msasn1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ASN.1 Runtime APIs 131795777595508927 0x751e0000 1708032 C:\Windows\SysWOW64\KernelBase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795777595525398 0x75390000 266240 C:\Windows\SysWOW64\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795777596398892 0x753e0000 1560576 C:\Windows\SysWOW64\crypt32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API32 криптографии 131795777595522182 0x75560000 487424 C:\Windows\SysWOW64\advapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795777595538927 0x756c0000 5693440 C:\Windows\SysWOW64\windows.storage.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API хранения Microsoft WinRT 131795777595544568 0x75c90000 286720 C:\Windows\SysWOW64\shlwapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека небольших программ оболочки 131795777595535397 0x75ce0000 20811776 C:\Windows\SysWOW64\shell32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Общая библиотека оболочки Windows 131795777595550455 0x774d0000 86016 C:\Windows\SysWOW64\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795777595554628 0x774f0000 61440 C:\Windows\SysWOW64\profapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Profile Basic API 131795777595549128 0x77560000 1437696 C:\Windows\SysWOW64\user32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795777595530150 0x776c0000 368640 C:\Windows\SysWOW64\bcryptprimitives.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation Windows Cryptographic Primitives Library 131795777596393437 0x77780000 503808 C:\Windows\SysWOW64\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795777596392132 0x77800000 606208 C:\Windows\SysWOW64\oleaut32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795777595583766 0x77ac0000 966656 C:\Windows\SysWOW64\ole32.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft OLE для Windows 131795777595545878 0x77bb0000 176128 C:\Windows\SysWOW64\gdi32.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation GDI Client DLL 131795777596385979 0x77be0000 937984 C:\Windows\SysWOW64\comdlg32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека общих диалоговых окон 131795777595536930 0x77cd0000 221184 C:\Windows\SysWOW64\cfgmgr32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Configuration Manager DLL 131795777597178434 0x77d10000 28672 C:\Windows\SysWOW64\nsi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation NSI User-mode interface DLL 131795777595476066 0x77d20000 1585152 C:\Windows\SysWOW64\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 131795777595475814 0x7ffad0270000 1908736 C:\Windows\System32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 111 9032 664 6 00000000:0031f1da 131795777895284069 0 0 1 Обязательная метка\Средний обязательный уровень WIN-0UOTFKKVN1S\User explorer.exe C:\Windows\explorer.exe C:\Windows\explorer.exe /factory,{75dff2b7-6936-4c06-a8bb-676a7b00b24b} -Embedding Microsoft Corporation 10.0.14393.0 (rs1_release.160715-1616) Проводник 131795777911330291 0x4d80000 593920 C:\Windows\System32\UIRibbonRes.dll 10.0.14393.2189 (rs1_release.180329-1711) Microsoft Corporation Windows Ribbon Framework Resources 131795777920515787 0x6530000 8937472 C:\Program Files\Microsoft Office\Office16\1049\GrooveIntlResource.dll 16.0.4266.1001 Корпорация Майкрософт Модуль международных ресурсов для Microsoft OneDrive для бизнеса 131795777903881315 0x5bbd0000 1101824 C:\Program Files (x86)\360\Total Security\safemon\safemon64.dll 1, 0, 0, 1190 Qihu 360 Software Co., Ltd. 360 Internet Security Internet Protection 131795777903867506 0x5bce0000 28672 C:\Program Files (x86)\360\Total Security\safemon\SafeWrapper.dll 2, 0, 0, 1060 Qihu 360 Software Co., Ltd. 360 Internet Security Internet Protection 131795777895813346 0x7ff6a5b30000 4665344 C:\Windows\explorer.exe 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Проводник 131795777906005639 0x7ffab2720000 606208 C:\Windows\System32\duser.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows DirectUser Engine 131795777922060868 0x7ffab28d0000 802816 C:\Windows\System32\cscui.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Интерфейс кэширования на стороне клиента 131795777918507242 0x7ffab4b90000 655360 C:\Windows\System32\StructuredQuery.dll 7.0.14393.2068 (rs1_release.180209-1727) Microsoft Corporation Structured Query 131795777907532495 0x7ffab5520000 3231744 C:\Windows\System32\msftedit.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Элемент управления "Поле ввода форматированного текста", версия 8.5 131795777910997447 0x7ffab8da0000 1675264 C:\Windows\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.14393.1715_none_aec701fbddd850fa\GdiPlus.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Microsoft GDI+ 131795777915260331 0x7ffab9490000 860160 C:\Windows\System32\ntshrui.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширения оболочки, обеспечивающие общий доступ 131795777910978745 0x7ffab95c0000 4091904 C:\Windows\System32\UIRibbon.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Платформа ленты Windows 131795778008622616 0x7ffabacc0000 1380352 C:\Windows\System32\SharedStartModel.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Shared Start Model InProc Server 131795778007235790 0x7ffabae60000 77824 C:\Windows\System32\devrtl.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Device Management Run Time Library 131795777909146457 0x7ffabaf70000 270336 C:\Windows\System32\edputil.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служебная программа EDP 131795777902950088 0x7ffabb2b0000 1089536 C:\Windows\System32\SettingSyncCore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Setting Synchronization Core 131795778007048279 0x7ffabb430000 65536 C:\Windows\System32\pcacli.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Program Compatibility Assistant Client Module 131795777902932644 0x7ffabb490000 512000 C:\Windows\System32\twinapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation twinapi 131795777909802797 0x7ffabbc40000 643072 C:\Windows\System32\msvcp140.dll 14.10.24516.0 built by: VCTOOLSRELESC Microsoft Corporation Microsoft® C Runtime Library 131795777909791020 0x7ffabbce0000 90112 C:\Windows\System32\vcruntime140.dll 14.10.24516.0 built by: VCTOOLSRELESC Microsoft Corporation Microsoft® C Runtime Library 131795777917395017 0x7ffabc0b0000 65536 C:\Windows\System32\linkinfo.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Volume Tracking 131795777918158137 0x7ffabc880000 73728 C:\Windows\System32\cscapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Offline Files Win32 API 131795777966565943 0x7ffabcf30000 110592 C:\Windows\System32\mpr.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека маршрутизации для нескольких служб доступа 131795777908125051 0x7ffabd4a0000 1613824 C:\Windows\System32\Windows.Globalization.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Globalization 131795777905900322 0x7ffabdbb0000 1736704 C:\Windows\System32\dui70.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Подсистема DirectUI Windows 131795777908270107 0x7ffabe9c0000 188416 C:\Windows\System32\globinputhost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Globalization Extension API for Input 131795777922014669 0x7ffabebf0000 1208320 C:\Windows\System32\networkexplorer.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Сетевой проводник 131795778007216762 0x7ffabef80000 69632 C:\Windows\System32\sfc_os.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows File Protection 131795777919764442 0x7ffabf5d0000 2924544 C:\Windows\System32\wininet.dll 11.00.14393.447 (rs1_release_inmarket.161102-0100) Microsoft Corporation Расширения Интернета для Win32 131795777915281766 0x7ffabff10000 155648 C:\Windows\System32\srvcli.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Server Service Client DLL 131795777909775471 0x7ffac0250000 2179072 C:\Program Files\Microsoft Office\Office16\GROOVEEX.DLL 16.0.4266.1001 Microsoft Corporation Microsoft OneDrive for Business Extensions 131795777910387599 0x7ffac0610000 3088384 C:\Windows\System32\msi.dll 5.0.14393.2155 Microsoft Corporation Windows Installer 131795777905243222 0x7ffac0bf0000 3559424 C:\Windows\System32\actxprxy.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation ActiveX Interface Marshaling Library 131795777919412503 0x7ffac1710000 1642496 C:\Users\User\AppData\Local\Microsoft\OneDrive\18.131.0701.0007\amd64\FileSyncShell64.dll 18.131.0701.0007 Microsoft Corporation Microsoft OneDrive Shell Extension 131795777904716802 0x7ffac18b0000 270336 C:\Program Files (x86)\360\Total Security\safemon\safehmpg64.dll 1, 0, 0, 1140 Qihu 360 Software Co., Ltd. 360 Internet Security Browser HomePage Protection 131795777944562485 0x7ffac23c0000 331776 C:\Windows\System32\OneCoreCommonProxyStub.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation OneCore Common Proxy Stub 131795777903915791 0x7ffac2700000 98304 C:\Windows\System32\netapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API DLL 131795777922001525 0x7ffac2960000 143360 C:\Windows\System32\mssprxy.dll 7.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation Microsoft Search Proxy 131795777903903305 0x7ffac2b80000 40960 C:\Windows\System32\version.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Version Checking and File Installation Libraries 131795777909321798 0x7ffac34e0000 1843200 C:\Windows\System32\urlmon.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширения OLE32 для Win32 131795777909330655 0x7ffac3cb0000 2772992 C:\Windows\System32\iertutil.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служебная программа времени выполнения для Internet Explorer 131795777906462233 0x7ffac4000000 274432 C:\Windows\System32\policymanager.dll 10.0.14393.2035 (rs1_release_inmarket.180110-1910) Microsoft Corporation Policy Manager DLL 131795777910949757 0x7ffac4ea0000 36864 C:\Windows\System32\atlthunk.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation atlthunk.dll 131795777920555307 0x7ffac4f90000 221184 C:\Windows\System32\EhStorShell.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL расширения оболочки Windows Enhanced Storage 131795777906356495 0x7ffac5630000 339968 C:\Windows\System32\thumbcache.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Кэш эскизов Майкрософт 131795777905097743 0x7ffac5690000 4734976 C:\Windows\System32\ExplorerFrame.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ExplorerFrame 131795777908567233 0x7ffac5bb0000 622592 C:\Program Files\Common Files\microsoft shared\ink\tiptsf.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Инфраструктура текстовых служб сенсорной клавиатуры и панели рукописного ввода 131795777911007559 0x7ffac60e0000 221184 C:\Windows\System32\xmllite.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft XmlLite Library 131795777914831974 0x7ffac6bd0000 413696 C:\Windows\System32\oleacc.dll 7.2.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Active Accessibility Core Component 131795777905390625 0x7ffac6c40000 2596864 C:\Windows\WinSxS\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.14393.953_none_42151e83c686086b\comctl32.dll 6.10 (rs1_release_inmarket.170303-1614) Microsoft Corporation Библиотека элементов управления взаимодействия с пользователем 131795777902894862 0x7ffac7580000 1077248 C:\Windows\System32\MrmCoreR.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Windows MRM 131795777906986296 0x7ffac84f0000 299008 C:\Windows\System32\DataExchange.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation Data exchange 131795777906995835 0x7ffac88a0000 2842624 C:\Windows\System32\d3d11.dll 10.0.14393.953 (rs1_release_inmarket.170303-1614) Microsoft Corporation Direct3D 11 Runtime 131795777903975733 0x7ffac90b0000 90112 C:\Windows\System32\wkscli.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Workstation Service Client DLL 131795777906257948 0x7ffac9f50000 1736704 C:\Windows\System32\WindowsCodecs.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Microsoft Windows Codecs Library 131795777919424461 0x7ffaca170000 45056 C:\Windows\System32\ktmw32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows KTM Win32 Client DLL 131795777902880674 0x7ffaca340000 1593344 C:\Windows\System32\propsys.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Система страниц свойств (Майкрософт) 131795777908138610 0x7ffaca570000 421888 C:\Windows\System32\BCP47Langs.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation BCP47 Language Classes 131795777902921260 0x7ffaca5e0000 155648 C:\Windows\System32\dwmapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Интерфейс API диспетчера окон рабочего стола (Майкрософт) 131795778008641775 0x7ffaca640000 770048 C:\Windows\System32\CoreMessaging.dll 10.0.14393.0 Microsoft Corporation Microsoft CoreMessaging Dll 131795777907005063 0x7ffaca770000 1380352 C:\Windows\System32\dcomp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft DirectComposition Library 131795777918659102 0x7ffacab40000 176128 C:\Windows\System32\winmmbase.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base Multimedia Extension API DLL 131795777918649579 0x7ffacaba0000 143360 C:\Windows\System32\winmm.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation MCI API DLL 131795777909306748 0x7ffacadf0000 499712 C:\Windows\System32\apphelp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиентская библиотека совместимости приложений 131795777902905939 0x7ffacaf00000 610304 C:\Windows\System32\uxtheme.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека тем UxTheme (Microsoft) 131795777906474194 0x7ffacb140000 593920 C:\Windows\System32\msvcp110_win.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Microsoft® STL110 C++ Runtime Library 131795777902941219 0x7ffacb1e0000 1163264 C:\Windows\System32\twinapi.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation twinapi.appcore 131795778008632518 0x7ffacb300000 364544 C:\Windows\System32\VEEventDispatcher.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Visual Element Event dispatcher 131795777918171528 0x7ffacb420000 204800 C:\Windows\System32\ntmarta.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик Windows NT MARTA 131795777907014508 0x7ffacb780000 651264 C:\Windows\System32\dxgi.dll 10.0.14393.953 (rs1_release_inmarket.170303-1614) Microsoft Corporation DirectX Graphics Infrastructure 131795777903933947 0x7ffacbe20000 53248 C:\Windows\System32\netutils.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API Helpers DLL 131795777902985171 0x7ffacbe40000 126976 C:\Windows\System32\userenv.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Userenv 131795777903008375 0x7ffacc150000 94208 C:\Windows\System32\cryptsp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Cryptographic Service Provider API 131795777902974089 0x7ffacc350000 180224 C:\Windows\System32\sspicli.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Security Support Provider Interface 131795777905657867 0x7ffacc520000 622592 C:\Windows\System32\sxs.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Fusion 2.5 131795777902999880 0x7ffacc620000 176128 C:\Windows\System32\bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795777902852334 0x7ffacc6e0000 61440 C:\Windows\System32\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795777902849489 0x7ffacc6f0000 311296 C:\Windows\System32\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795777902853126 0x7ffacc740000 81920 C:\Windows\System32\profapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Profile Basic API 131795777902855116 0x7ffacc760000 65536 C:\Windows\System32\msasn1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ASN.1 Runtime APIs 131795777902843222 0x7ffacc770000 1572864 C:\Windows\System32\gdi32full.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation GDI Client DLL 131795777902836309 0x7ffacc8f0000 1003520 C:\Windows\System32\ucrtbase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795777902838974 0x7ffacc9f0000 434176 C:\Windows\System32\bcryptprimitives.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Cryptographic Primitives Library 131795777902841617 0x7ffacca60000 122880 C:\Windows\System32\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795777902844144 0x7ffaccae0000 692224 C:\Windows\System32\SHCore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795777902848566 0x7ffaccb90000 7180288 C:\Windows\System32\windows.storage.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API хранения Microsoft WinRT 131795777902824318 0x7ffacd270000 2215936 C:\Windows\System32\KernelBase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795777902854301 0x7ffacd490000 1871872 C:\Windows\System32\crypt32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API32 криптографии 131795777902835470 0x7ffacd710000 638976 C:\Windows\System32\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795777902847555 0x7ffacd7b0000 270336 C:\Windows\System32\cfgmgr32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Configuration Manager DLL 131795777902846521 0x7ffacd810000 22056960 C:\Windows\System32\shell32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Общая библиотека оболочки Windows 131795777902834719 0x7ffaced20000 782336 C:\Windows\System32\oleaut32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795777916996283 0x7ffacede0000 450560 C:\Windows\System32\coml2.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft COM for Windows 131795777902838016 0x7ffacee50000 1183744 C:\Windows\System32\rpcrt4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795777902833378 0x7ffacef90000 647168 C:\Windows\System32\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795777904879129 0x7ffacf030000 651264 C:\Windows\System32\clbcatq.dll 2001.12.10941.16384 (rs1_release.160715-1616) Microsoft Corporation COM+ Configuration Catalog 131795777902823359 0x7ffacf0d0000 704512 C:\Windows\System32\kernel32.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795777905449820 0x7ffacf1e0000 1417216 C:\Windows\System32\msctf.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Серверная библиотека MSCTF 131795777920556415 0x7ffacf340000 4362240 C:\Windows\System32\setupapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Setup API 131795777902842396 0x7ffacf770000 212992 C:\Windows\System32\gdi32.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation GDI Client DLL 131795777903888252 0x7ffacf820000 434176 C:\Windows\System32\ws2_32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation 32-разрядная библиотека Windows Socket 2.0 131795777903413262 0x7ffacf890000 188416 C:\Windows\System32\imm32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Multi-User Windows IMM32 API Client DLL 131795777902840664 0x7ffacf8c0000 1462272 C:\Windows\System32\user32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795777902837229 0x7ffacfb30000 2916352 C:\Windows\System32\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795777903887407 0x7ffacfe00000 114688 C:\Windows\System32\imagehlp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT Image Helper 131795777902850328 0x7ffacfe20000 663552 C:\Windows\System32\advapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795777903886124 0x7ffad0070000 1277952 C:\Windows\System32\ole32.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft OLE для Windows 131795777902845086 0x7ffad01b0000 335872 C:\Windows\System32\shlwapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека небольших программ оболочки 131795777902851375 0x7ffad0210000 364544 C:\Windows\System32\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795777895813598 0x7ffad0270000 1908736 C:\Windows\System32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 144 12892 3108 11 00000000:0031f1da 131795780695167004 0 0 1 Обязательная метка\Средний обязательный уровень WIN-0UOTFKKVN1S\User Wireshark.exe C:\Program Files\Wireshark\Wireshark.exe "C:\Program Files\Wireshark\Wireshark.exe" The Wireshark developer community, http://www.wireshark.org/ 2.6.2 Wireshark 131795780706141890 0xbd0000 90112 C:\Program Files\Wireshark\libwinpthread-1.dll 1, 0, 0, 0 MingW-W64 Project. All rights reserved. POSIX WinThreads for Windows 131795780721765742 0xbf0000 53248 C:\Program Files\Wireshark\k5sprt64.dll 1.6-kfw-3.2.2 Massachusetts Institute of Technology. Kerberos v5 support - internal support code for MIT Kerberos v5 /GSS distribution 131795780722106261 0xc00000 45056 C:\Program Files\Wireshark\comerr64.dll 1.6-kfw-3.2.2 Massachusetts Institute of Technology. COM_ERR - Common Error Handler for MIT Kerberos v5 / GSS distribution 131795780719731475 0x1c000000 1089536 C:\Program Files\Wireshark\krb5_64.dll 1.6-kfw-3.2.2 Massachusetts Institute of Technology. Kerberos v5 - MIT GSS / Kerberos v5 distribution 131795780773060331 0x5af30000 348160 C:\Program Files\Wireshark\Qt5Svg.dll 5.9.5.0 The Qt Company Ltd. C++ Application Development Framework 131795780721210805 0x5af90000 1286144 C:\Program Files\Wireshark\libxml2-2.dll 131795780696840198 0x5b0d0000 5865472 C:\Program Files\Wireshark\Qt5Core.dll 5.9.5.0 The Qt Company Ltd. C++ Application Development Framework 131795780696801039 0x5b670000 5619712 C:\Program Files\Wireshark\Qt5Widgets.dll 5.9.5.0 The Qt Company Ltd. C++ Application Development Framework 131795780721068755 0x5bcf0000 733184 C:\Program Files\Wireshark\libsmi-2.dll 131795780720701584 0x5bdb0000 204800 C:\Program Files\Wireshark\liblz4.dll 131795780720048995 0x5bdf0000 110592 C:\Program Files\Wireshark\libcares-2.dll 131795780701085625 0x5be10000 122880 C:\Program Files\Wireshark\libbcg729.dll 131795780700086118 0x5be30000 1261568 C:\Program Files\Wireshark\Qt5Network.dll 5.9.5.0 The Qt Company Ltd. C++ Application Development Framework 131795780701499544 0x61cc0000 151552 C:\Program Files\Wireshark\libintl-8.dll 0.18.1 Free Software Foundation LGPLed libintl for Windows NT/2000/XP/Vista/7 and Windows 95/98/ME 131795780704834900 0x646c0000 155648 C:\Program Files\Wireshark\libgpg-error6-0.dll 131795780703191110 0x64840000 1220608 C:\Program Files\Wireshark\libgnutls-30.dll 131795780720700188 0x64a00000 253952 C:\Program Files\Wireshark\lua52.dll 131795780702785552 0x653c0000 1089536 C:\Program Files\Wireshark\libgcrypt-20.dll 131795780706408972 0x65f00000 114688 C:\Program Files\Wireshark\libtasn1-6.dll 131795780705520711 0x66f00000 233472 C:\Program Files\Wireshark\libhogweed-4-2.dll 131795780696518462 0x685c0000 1265664 C:\Program Files\Wireshark\libglib-2.0-0.dll 2.42.0.0 The GLib developer community GLib 131795780706610973 0x68ec0000 389120 C:\Program Files\Wireshark\libp11-kit-0.dll 131795780720967901 0x69340000 815104 C:\Program Files\Wireshark\libsnappy-1.dll 131795780705423287 0x69c80000 253952 C:\Program Files\Wireshark\libnettle-6-2.dll 131795780700701891 0x6a680000 122880 C:\Program Files\Wireshark\libsbc-1.dll 131795780705248323 0x6acc0000 483328 C:\Program Files\Wireshark\libgmp-10.dll 131795780707311684 0x6b740000 73728 C:\Program Files\Wireshark\libffi-6.dll 131795780700957949 0x6d7c0000 495616 C:\Program Files\Wireshark\libspandsp-2.dll 131795780720746780 0x6dc80000 167936 C:\Program Files\Wireshark\libnghttp2-14.dll 131795780698864675 0x6dd00000 69632 C:\Program Files\Wireshark\libgmodule-2.0-0.dll 2.42.0.0 The GLib developer community GModule 131795780759720376 0x180000000 413696 C:\Windows\System32\wpcap.dll 4.1.0.2980 Riverbed Technology, Inc. wpcap.dll Dynamic Link Library - based on libpcap 1.0rel0b branch (20091008) 131795780760417804 0x190ac770000 126976 C:\Windows\System32\Packet.dll 4.1.0.2980 Riverbed Technology, Inc. packet.dll (Vista) Dynamic Link Library 131795780695991379 0x7ff7f1130000 8298496 C:\Program Files\Wireshark\Wireshark.exe 2.6.2 The Wireshark developer community, http://www.wireshark.org/ Wireshark 131795780718751145 0x7ffaa6f50000 64282624 C:\Program Files\Wireshark\libwireshark.dll 2.6.2 The Wireshark developer community, http://www.wireshark.org/ Wireshark dissector library 131795780697272337 0x7ffaaaca0000 6094848 C:\Program Files\Wireshark\Qt5Gui.dll 5.9.5.0 The Qt Company Ltd. C++ Application Development Framework 131795780896758694 0x7ffab1e90000 593920 C:\Program Files\Wireshark\plugins\2.6\epan\wimax.dll 1.2.0.0 The Wireshark developer community, http://www.wireshark.org/ wimax dissector 131795780766458881 0x7ffab1f30000 614400 C:\Windows\System32\riched20.dll 5.31.23.1231 Microsoft Corporation Rich Text Edit Control, v3.1 131795780699399720 0x7ffab2280000 1916928 C:\Program Files\Wireshark\WinSparkle.dll 0.5.7 winsparkle.org WinSparkle updater 131795780771263589 0x7ffab5b40000 2527232 C:\Windows\System32\DWrite.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Службы Microsoft DirectX Typography 131795780765326722 0x7ffab9010000 1388544 C:\Program Files\Wireshark\platforms\qwindows.dll 5.9.5.0 The Qt Company Ltd. C++ Application Development Framework 131795780896746168 0x7ffab9b10000 135168 C:\Program Files\Wireshark\plugins\2.6\epan\unistim.dll 0.0.2.0 The Wireshark developer community, http://www.wireshark.org/ unistim dissector 131795780896708383 0x7ffabaef0000 462848 C:\Program Files\Wireshark\plugins\2.6\epan\profinet.dll 0.2.4.0 The Wireshark developer community, http://www.wireshark.org/ profinet dissector 131795780773615377 0x7ffabb070000 512000 C:\Program Files\Wireshark\imageformats\qwebp.dll 5.9.5.0 The Qt Company Ltd. C++ Application Development Framework 131795780702318544 0x7ffabb0f0000 696320 C:\Windows\System32\msvcp140.dll 14.12.25810.0 built by: VCTOOLSREL Microsoft Corporation Microsoft® C Runtime Library 131795780773096445 0x7ffabb250000 393216 C:\Program Files\Wireshark\imageformats\qtiff.dll 5.9.5.0 The Qt Company Ltd. C++ Application Development Framework 131795780896696149 0x7ffabc110000 237568 C:\Program Files\Wireshark\plugins\2.6\epan\opcua.dll 1.0.0.0 The Wireshark developer community, http://www.wireshark.org/ opcua dissector 131795780696290907 0x7ffabc150000 729088 C:\Program Files\Wireshark\Qt5Multimedia.dll 5.9.5.0 The Qt Company Ltd. C++ Application Development Framework 131795780699299849 0x7ffabcbb0000 704512 C:\Program Files\Wireshark\libwiretap.dll 2.6.2 The Wireshark developer community, http://www.wireshark.org/ Wireshark capture file library 131795780702235327 0x7ffabcf30000 110592 C:\Windows\System32\mpr.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека маршрутизации для нескольких служб доступа 131795780699512168 0x7ffabd180000 548864 C:\Windows\System32\winspool.drv 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Драйвер диспетчера очереди Windows 131795780773039075 0x7ffabe940000 253952 C:\Program Files\Wireshark\imageformats\qjpeg.dll 5.9.5.0 The Qt Company Ltd. C++ Application Development Framework 131795780896684027 0x7ffabeb80000 163840 C:\Program Files\Wireshark\plugins\2.6\epan\mate.dll 1.0.1.0 The Wireshark developer community, http://www.wireshark.org/ mate dissector 131795780767100288 0x7ffabebb0000 233472 C:\Windows\System32\msls31.dll 3.10.349.0 Microsoft Corporation Microsoft Line Services library file 131795780967804060 0x7ffabf1d0000 192512 C:\Windows\System32\cryptnet.dll 10.0.14393.2035 (rs1_release_inmarket.180110-1910) Microsoft Corporation Crypto Network Related API 131795780703722010 0x7ffabf5d0000 2924544 C:\Windows\System32\wininet.dll 11.00.14393.447 (rs1_release_inmarket.161102-0100) Microsoft Corporation Расширения Интернета для Win32 131795780896660120 0x7ffabf990000 135168 C:\Program Files\Wireshark\plugins\2.6\epan\gryphon.dll 0.0.4.0 The Wireshark developer community, http://www.wireshark.org/ gryphon dissector 131795781117544658 0x7ffabfd60000 90112 C:\Windows\System32\NapiNSP.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик оболочки совместимости для имен электронной почты 131795781117680972 0x7ffabfef0000 106496 C:\Windows\System32\pnrpnsp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик пространства имен PNRP 131795780896781202 0x7ffabff40000 90112 C:\Program Files\Wireshark\plugins\2.6\epan\wimaxmacphy.dll 0.0.1.0 The Wireshark developer community, http://www.wireshark.org/ wimaxmacphy dissector 131795780975772674 0x7ffabff60000 135168 C:\Windows\System32\ncryptsslp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft SChannel Provider 131795781117813782 0x7ffac0ab0000 57344 C:\Windows\System32\winrnr.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation LDAP RnR Provider DLL 131795780967709675 0x7ffac0ad0000 86016 C:\Windows\System32\mskeyprotect.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик защиты ключей (Майкрософт) 131795780896602379 0x7ffac0b10000 180224 C:\Program Files\Wireshark\plugins\2.6\epan\ethercat.dll 0.1.0.0 The Wireshark developer community, http://www.wireshark.org/ ethercat dissector 131795780696305369 0x7ffac12f0000 585728 C:\Program Files\Wireshark\Qt5WinExtras.dll 5.9.5.0 The Qt Company Ltd. C++ Application Development Framework 131795780696268510 0x7ffac1380000 335872 C:\Program Files\Wireshark\Qt5PrintSupport.dll 5.9.5.0 The Qt Company Ltd. C++ Application Development Framework 131795780896769846 0x7ffac1640000 81920 C:\Program Files\Wireshark\plugins\2.6\epan\wimaxasncp.dll 0.0.1.0 The Wireshark developer community, http://www.wireshark.org/ wimaxasncp dissector 131795780703633136 0x7ffac1c90000 155648 C:\Program Files\Wireshark\zlib1.dll 1.2.11 zlib data compression library 131795780968289847 0x7ffac1d60000 589824 C:\Windows\System32\webio.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API протоколов передачи по Веб 131795780896672499 0x7ffac21f0000 73728 C:\Program Files\Wireshark\plugins\2.6\epan\irda.dll 0.0.6.0 The Wireshark developer community, http://www.wireshark.org/ irda dissector 131795780943468609 0x7ffac2950000 32768 C:\Program Files\Wireshark\plugins\2.6\codecs\l16mono.dll 0.1.0.0 The Wireshark developer community, http://www.wireshark.org/ l16mono dissector 131795780696778265 0x7ffac2b80000 40960 C:\Windows\System32\version.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Version Checking and File Installation Libraries 131795780698025500 0x7ffac32b0000 155648 C:\Program Files\Wireshark\libwsutil.dll 2.6.2 The Wireshark developer community, http://www.wireshark.org/ Wireshark utility library 131795780964290332 0x7ffac34e0000 1843200 C:\Windows\System32\urlmon.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширения OLE32 для Win32 131795780896734845 0x7ffac3730000 49152 C:\Program Files\Wireshark\plugins\2.6\epan\transum.dll 2.0.4.0 The Wireshark developer community, http://www.wireshark.org/ transum dissector 131795780962958391 0x7ffac3cb0000 2772992 C:\Windows\System32\iertutil.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служебная программа времени выполнения для Internet Explorer 131795780891504201 0x7ffac4000000 274432 C:\Windows\System32\policymanager.dll 10.0.14393.2035 (rs1_release_inmarket.180110-1910) Microsoft Corporation Policy Manager DLL 131795780896719593 0x7ffac4b60000 36864 C:\Program Files\Wireshark\plugins\2.6\epan\stats_tree.dll 0.0.1.0 The Wireshark developer community, http://www.wireshark.org/ stats_tree dissector 131795780893701095 0x7ffac4c50000 36864 C:\Program Files\Wireshark\plugins\2.6\wiretap\usbdump.dll 0.0.1.0 The Wireshark developer community, http://www.wireshark.org/ usbdump dissector 131795780891269455 0x7ffac5630000 339968 C:\Windows\System32\thumbcache.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Кэш эскизов Майкрософт 131795780965552062 0x7ffac6610000 40960 C:\Windows\System32\rasadhlp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Remote Access AutoDial Helper 131795780963571749 0x7ffac66a0000 86016 C:\Windows\System32\OnDemandConnRouteHelper.dll 10.0.14393.351 (rs1_release_inmarket.161014-1755) Microsoft Corporation On Demand Connctiond Route Helper 131795780963646684 0x7ffac69c0000 839680 C:\Windows\System32\winhttp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Службы HTTP Windows 131795780773109195 0x7ffac6aa0000 49152 C:\Program Files\Wireshark\imageformats\qwbmp.dll 5.9.5.0 The Qt Company Ltd. C++ Application Development Framework 131795780773083338 0x7ffac6ab0000 49152 C:\Program Files\Wireshark\imageformats\qtga.dll 5.9.5.0 The Qt Company Ltd. C++ Application Development Framework 131795780700311672 0x7ffac6c40000 2596864 C:\Windows\WinSxS\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.14393.953_none_42151e83c686086b\comctl32.dll 6.10 (rs1_release_inmarket.170303-1614) Microsoft Corporation Библиотека элементов управления взаимодействия с пользователем 131795780700270884 0x7ffac76e0000 90112 C:\Windows\System32\vcruntime140.dll 14.12.25810.0 built by: VCTOOLSREL Microsoft Corporation Microsoft® C Runtime Library 131795780773051219 0x7ffac7710000 49152 C:\Program Files\Wireshark\imageformats\qsvg.dll 5.9.5.0 The Qt Company Ltd. C++ Application Development Framework 131795780773027062 0x7ffac7c70000 53248 C:\Program Files\Wireshark\imageformats\qico.dll 5.9.5.0 The Qt Company Ltd. C++ Application Development Framework 131795780773014999 0x7ffac7cc0000 61440 C:\Program Files\Wireshark\imageformats\qicns.dll 5.9.5.0 The Qt Company Ltd. C++ Application Development Framework 131795780773002354 0x7ffac7e80000 53248 C:\Program Files\Wireshark\imageformats\qgif.dll 5.9.5.0 The Qt Company Ltd. C++ Application Development Framework 131795780968266724 0x7ffac83d0000 106496 C:\Windows\System32\dhcpcsvc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служба DHCP-клиента 131795780968255503 0x7ffac83f0000 90112 C:\Windows\System32\dhcpcsvc6.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиент DHCPv6 131795780966275544 0x7ffac8420000 434176 C:\Windows\System32\FWPUCLNT.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API пользовательского режима FWP/IPsec 131795780892525330 0x7ffac84f0000 299008 C:\Windows\System32\DataExchange.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation Data exchange 131795780963686201 0x7ffac8810000 45056 C:\Windows\System32\winnsi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Network Store Information RPC interface 131795780892534590 0x7ffac88a0000 2842624 C:\Windows\System32\d3d11.dll 10.0.14393.953 (rs1_release_inmarket.170303-1614) Microsoft Corporation Direct3D 11 Runtime 131795781117718740 0x7ffac9790000 98304 C:\Windows\System32\nlaapi.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Network Location Awareness 2 131795780698877286 0x7ffac97e0000 36864 C:\Windows\System32\wsock32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Socket 32-Bit DLL 131795780891204535 0x7ffac9f50000 1736704 C:\Windows\System32\WindowsCodecs.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Microsoft Windows Codecs Library 131795780696645603 0x7ffaca540000 53248 C:\Program Files\Wireshark\libwscodecs.dll 2.6.2 The Wireshark developer community, http://www.wireshark.org/ Wireshark codecs library 131795780700298298 0x7ffaca5e0000 155648 C:\Windows\System32\dwmapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Интерфейс API диспетчера окон рабочего стола (Майкрософт) 131795780892543743 0x7ffaca770000 1380352 C:\Windows\System32\dcomp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft DirectComposition Library 131795780766486586 0x7ffacab20000 102400 C:\Windows\System32\usp10.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Uniscribe Unicode script processor 131795780704258643 0x7ffacab40000 176128 C:\Windows\System32\winmmbase.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base Multimedia Extension API DLL 131795780702045466 0x7ffacaba0000 143360 C:\Windows\System32\winmm.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation MCI API DLL 131795780946467813 0x7ffacadf0000 499712 C:\Windows\System32\apphelp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиентская библиотека совместимости приложений 131795780696789076 0x7ffacaf00000 610304 C:\Windows\System32\uxtheme.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека тем UxTheme (Microsoft) 131795780891516231 0x7ffacb140000 593920 C:\Windows\System32\msvcp110_win.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Microsoft® STL110 C++ Runtime Library 131795780892568770 0x7ffacb1e0000 1163264 C:\Windows\System32\twinapi.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation twinapi.appcore 131795780892552823 0x7ffacb780000 651264 C:\Windows\System32\dxgi.dll 10.0.14393.953 (rs1_release_inmarket.170303-1614) Microsoft Corporation DirectX Graphics Infrastructure 131795780966945740 0x7ffacbaf0000 495616 C:\Windows\System32\schannel.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик безопасности TLS/SSL 131795780735395573 0x7ffacbbb0000 208896 C:\Windows\System32\rsaenh.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Enhanced Cryptographic Provider 131795780967734879 0x7ffacbbf0000 40960 C:\Windows\System32\dpapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Data Protection API 131795780699490686 0x7ffacbd30000 229376 C:\Windows\System32\IPHLPAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API вспомогательного приложения IP 131795780703368899 0x7ffacbd70000 659456 C:\Windows\System32\dnsapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Динамическая библиотека API DNS-клиента 131795780963669913 0x7ffacbfb0000 376832 C:\Windows\System32\mswsock.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширение поставщика службы API Microsoft Windows Sockets 2.0 131795780735383654 0x7ffacc150000 94208 C:\Windows\System32\cryptsp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Cryptographic Service Provider API 131795780725077080 0x7ffacc170000 45056 C:\Windows\System32\cryptbase.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base cryptographic API DLL 131795780735352973 0x7ffacc1f0000 241664 C:\Windows\System32\ntasn1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft ASN.1 API 131795780735341669 0x7ffacc230000 155648 C:\Windows\System32\ncrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Маршрутизатор Windows NCrypt 131795780963187802 0x7ffacc350000 180224 C:\Windows\System32\sspicli.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Security Support Provider Interface 131795780703358385 0x7ffacc620000 176128 C:\Windows\System32\bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795780696324267 0x7ffacc6e0000 61440 C:\Windows\System32\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795780696320774 0x7ffacc6f0000 311296 C:\Windows\System32\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795780696326027 0x7ffacc740000 81920 C:\Windows\System32\profapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Profile Basic API 131795780700094061 0x7ffacc760000 65536 C:\Windows\System32\msasn1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ASN.1 Runtime APIs 131795780696281753 0x7ffacc8f0000 1003520 C:\Windows\System32\ucrtbase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795780696314418 0x7ffacc9f0000 434176 C:\Windows\System32\bcryptprimitives.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Cryptographic Primitives Library 131795780696011047 0x7ffacca60000 122880 C:\Windows\System32\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795780967736295 0x7ffacca80000 348160 C:\Windows\System32\wintrust.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation Microsoft Trust Verification APIs 131795780696325096 0x7ffaccae0000 692224 C:\Windows\System32\SHCore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795780696319762 0x7ffaccb90000 7180288 C:\Windows\System32\windows.storage.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API хранения Microsoft WinRT 131795780696000095 0x7ffacd270000 2215936 C:\Windows\System32\KernelBase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795780700093105 0x7ffacd490000 1871872 C:\Windows\System32\crypt32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API32 криптографии 131795780700405929 0x7ffacd710000 638976 C:\Windows\System32\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795780696318427 0x7ffacd7b0000 270336 C:\Windows\System32\cfgmgr32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Configuration Manager DLL 131795780719380090 0x7ffacd800000 32768 C:\Windows\System32\psapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Process Status Helper 131795780696316518 0x7ffacd810000 22056960 C:\Windows\System32\shell32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Общая библиотека оболочки Windows 131795780700405056 0x7ffaced20000 782336 C:\Windows\System32\oleaut32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795780696313332 0x7ffacee50000 1183744 C:\Windows\System32\rpcrt4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795780703813608 0x7ffacef80000 32768 C:\Windows\System32\nsi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation NSI User-mode interface DLL 131795780696317482 0x7ffacef90000 647168 C:\Windows\System32\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795780891250440 0x7ffacf030000 651264 C:\Windows\System32\clbcatq.dll 2001.12.10941.16384 (rs1_release.160715-1616) Microsoft Corporation COM+ Configuration Catalog 131795780695999112 0x7ffacf0d0000 704512 C:\Windows\System32\kernel32.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795780892432004 0x7ffacf1e0000 1417216 C:\Windows\System32\msctf.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Серверная библиотека MSCTF 131795780696011842 0x7ffacf770000 212992 C:\Windows\System32\gdi32.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation GDI Client DLL 131795780696829366 0x7ffacf820000 434176 C:\Windows\System32\ws2_32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation 32-разрядная библиотека Windows Socket 2.0 131795780722304611 0x7ffacf890000 188416 C:\Windows\System32\imm32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Multi-User Windows IMM32 API Client DLL 131795780696010125 0x7ffacf8c0000 1462272 C:\Windows\System32\user32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795780696013618 0x7ffacfa30000 1024000 C:\Windows\System32\comdlg32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека общих диалоговых окон 131795780696312465 0x7ffacfb30000 2916352 C:\Windows\System32\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795780696321680 0x7ffacfe20000 663552 C:\Windows\System32\advapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795780696311589 0x7ffad0070000 1277952 C:\Windows\System32\ole32.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft OLE для Windows 131795780696323259 0x7ffad01b0000 335872 C:\Windows\System32\shlwapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека небольших программ оболочки 131795780696315318 0x7ffad0210000 364544 C:\Windows\System32\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795780695991736 0x7ffad0270000 1908736 C:\Windows\System32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 154 10368 12892 144 00000000:0031f1da 131795781110701520 0 0 1 Обязательная метка\Средний обязательный уровень WIN-0UOTFKKVN1S\User dumpcap.exe C:\Program Files\Wireshark\dumpcap.exe "C:\Program Files\Wireshark\dumpcap.exe" -n -i \Device\NPF_{8742EB38-E176-4D94-AB83-DB4440CD90E6} -y EN10MB -Z 12892 The Wireshark developer community 2.6.2 Dumpcap 131795781112729961 0xe30000 90112 C:\Program Files\Wireshark\libwinpthread-1.dll 1, 0, 0, 0 MingW-W64 Project. All rights reserved. POSIX WinThreads for Windows 131795781112668516 0x61cc0000 151552 C:\Program Files\Wireshark\libintl-8.dll 0.18.1 Free Software Foundation LGPLed libintl for Windows NT/2000/XP/Vista/7 and Windows 95/98/ME 131795781112689838 0x646c0000 155648 C:\Program Files\Wireshark\libgpg-error6-0.dll 131795781112636826 0x64840000 1220608 C:\Program Files\Wireshark\libgnutls-30.dll 131795781112629190 0x653c0000 1089536 C:\Program Files\Wireshark\libgcrypt-20.dll 131795781112737406 0x65f00000 114688 C:\Program Files\Wireshark\libtasn1-6.dll 131795781112705672 0x66f00000 233472 C:\Program Files\Wireshark\libhogweed-4-2.dll 131795781112573973 0x685c0000 1265664 C:\Program Files\Wireshark\libglib-2.0-0.dll 2.42.0.0 The GLib developer community GLib 131795781112722622 0x68ec0000 389120 C:\Program Files\Wireshark\libp11-kit-0.dll 131795781112715396 0x69c80000 253952 C:\Program Files\Wireshark\libnettle-6-2.dll 131795781112698255 0x6acc0000 483328 C:\Program Files\Wireshark\libgmp-10.dll 131795781112775160 0x6b740000 73728 C:\Program Files\Wireshark\libffi-6.dll 131795781112582576 0x6dd00000 69632 C:\Program Files\Wireshark\libgmodule-2.0-0.dll 2.42.0.0 The GLib developer community GModule 131795781112962306 0x180000000 413696 C:\Windows\System32\wpcap.dll 4.1.0.2980 Riverbed Technology, Inc. wpcap.dll Dynamic Link Library - based on libpcap 1.0rel0b branch (20091008) 131795781112975613 0x2203d070000 126976 C:\Windows\System32\Packet.dll 4.1.0.2980 Riverbed Technology, Inc. packet.dll (Vista) Dynamic Link Library 131795781110777700 0x7ff79b530000 438272 C:\Program Files\Wireshark\dumpcap.exe 2.6.2 The Wireshark developer community Dumpcap 131795781112745027 0x7ffac1c90000 155648 C:\Program Files\Wireshark\zlib1.dll 1.2.11 zlib data compression library 131795781112991873 0x7ffac2b80000 40960 C:\Windows\System32\version.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Version Checking and File Installation Libraries 131795781112551689 0x7ffac32b0000 155648 C:\Program Files\Wireshark\libwsutil.dll 2.6.2 The Wireshark developer community, http://www.wireshark.org/ Wireshark utility library 131795781112616429 0x7ffac76e0000 90112 C:\Windows\System32\vcruntime140.dll 14.12.25810.0 built by: VCTOOLSREL Microsoft Corporation Microsoft® C Runtime Library 131795781113081556 0x7ffac83d0000 106496 C:\Windows\System32\dhcpcsvc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служба DHCP-клиента 131795781113068402 0x7ffac83f0000 90112 C:\Windows\System32\dhcpcsvc6.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиент DHCPv6 131795781112593287 0x7ffac97e0000 36864 C:\Windows\System32\wsock32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Socket 32-Bit DLL 131795781112764136 0x7ffacab40000 176128 C:\Windows\System32\winmmbase.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base Multimedia Extension API DLL 131795781112680590 0x7ffacaba0000 143360 C:\Windows\System32\winmm.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation MCI API DLL 131795781112901553 0x7ffacbbb0000 208896 C:\Windows\System32\rsaenh.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Enhanced Cryptographic Provider 131795781112603842 0x7ffacbd30000 229376 C:\Windows\System32\IPHLPAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API вспомогательного приложения IP 131795781112889933 0x7ffacc150000 94208 C:\Windows\System32\cryptsp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Cryptographic Service Provider API 131795781112922216 0x7ffacc170000 45056 C:\Windows\System32\cryptbase.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base cryptographic API DLL 131795781112873689 0x7ffacc1f0000 241664 C:\Windows\System32\ntasn1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft ASN.1 API 131795781112851456 0x7ffacc230000 155648 C:\Windows\System32\ncrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Маршрутизатор Windows NCrypt 131795781112862535 0x7ffacc620000 176128 C:\Windows\System32\bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795781112564185 0x7ffacc6e0000 61440 C:\Windows\System32\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795781112558680 0x7ffacc6f0000 311296 C:\Windows\System32\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795781112565891 0x7ffacc740000 81920 C:\Windows\System32\profapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Profile Basic API 131795781112638400 0x7ffacc760000 65536 C:\Windows\System32\msasn1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ASN.1 Runtime APIs 131795781112561378 0x7ffacc770000 1572864 C:\Windows\System32\gdi32full.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation GDI Client DLL 131795781112543433 0x7ffacc8f0000 1003520 C:\Windows\System32\ucrtbase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795781112557787 0x7ffacc9f0000 434176 C:\Windows\System32\bcryptprimitives.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Cryptographic Primitives Library 131795781112563121 0x7ffacca60000 122880 C:\Windows\System32\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795781112564994 0x7ffaccae0000 692224 C:\Windows\System32\SHCore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795781112555945 0x7ffaccb90000 7180288 C:\Windows\System32\windows.storage.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API хранения Microsoft WinRT 131795781111306780 0x7ffacd270000 2215936 C:\Windows\System32\KernelBase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795781112637496 0x7ffacd490000 1871872 C:\Windows\System32\crypt32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API32 криптографии 131795781112554892 0x7ffacd7b0000 270336 C:\Windows\System32\cfgmgr32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Configuration Manager DLL 131795781112553795 0x7ffacd810000 22056960 C:\Windows\System32\shell32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Общая библиотека оболочки Windows 131795781112541505 0x7ffacee50000 1183744 C:\Windows\System32\rpcrt4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795781113056743 0x7ffacef80000 32768 C:\Windows\System32\nsi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation NSI User-mode interface DLL 131795781112539956 0x7ffacef90000 647168 C:\Windows\System32\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795781111305815 0x7ffacf0d0000 704512 C:\Windows\System32\kernel32.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795781112560555 0x7ffacf770000 212992 C:\Windows\System32\gdi32.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation GDI Client DLL 131795781112552568 0x7ffacf820000 434176 C:\Windows\System32\ws2_32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation 32-разрядная библиотека Windows Socket 2.0 131795781112797169 0x7ffacf890000 188416 C:\Windows\System32\imm32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Multi-User Windows IMM32 API Client DLL 131795781112562317 0x7ffacf8c0000 1462272 C:\Windows\System32\user32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795781112556862 0x7ffacfb30000 2916352 C:\Windows\System32\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795781112538759 0x7ffacfe20000 663552 C:\Windows\System32\advapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795781112574716 0x7ffad0070000 1277952 C:\Windows\System32\ole32.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft OLE для Windows 131795781112559630 0x7ffad01b0000 335872 C:\Windows\System32\shlwapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека небольших программ оболочки 131795781112540782 0x7ffad0210000 364544 C:\Windows\System32\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795781110778043 0x7ffad0270000 1908736 C:\Windows\System32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 155 10656 10368 154 00000000:0031f1da 131795781111864203 0 0 1 Обязательная метка\Средний обязательный уровень WIN-0UOTFKKVN1S\User Conhost.exe C:\Windows\System32\Conhost.exe \??\C:\Windows\system32\conhost.exe 0xffffffff -ForceV1 Microsoft Corporation 10.0.14393.0 (rs1_release.160715-1616) Console Window Host 131795781111913743 0x7ff768b40000 69632 C:\Windows\System32\conhost.exe 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Console Window Host 131795781111943590 0x7ffac16b0000 368640 C:\Windows\System32\ConhostV2.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Хост окна консоли 131795781112487631 0x7ffac6c40000 2596864 C:\Windows\WinSxS\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.14393.953_none_42151e83c686086b\comctl32.dll 6.10 (rs1_release_inmarket.170303-1614) Microsoft Corporation Библиотека элементов управления взаимодействия с пользователем 131795781111973094 0x7ffaca340000 1593344 C:\Windows\System32\propsys.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Система страниц свойств (Майкрософт) 131795781112447250 0x7ffaca5e0000 155648 C:\Windows\System32\dwmapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Интерфейс API диспетчера окон рабочего стола (Майкрософт) 131795781112288506 0x7ffacaf00000 610304 C:\Windows\System32\uxtheme.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека тем UxTheme (Microsoft) 131795781112268292 0x7ffacc6e0000 61440 C:\Windows\System32\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795781112265698 0x7ffacc6f0000 311296 C:\Windows\System32\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795781112269042 0x7ffacc740000 81920 C:\Windows\System32\profapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Profile Basic API 131795781111955891 0x7ffacc770000 1572864 C:\Windows\System32\gdi32full.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation GDI Client DLL 131795781111952093 0x7ffacc8f0000 1003520 C:\Windows\System32\ucrtbase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795781111953761 0x7ffacc9f0000 434176 C:\Windows\System32\bcryptprimitives.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Cryptographic Primitives Library 131795781111957462 0x7ffacca60000 122880 C:\Windows\System32\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795781111974737 0x7ffaccae0000 692224 C:\Windows\System32\SHCore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795781112264787 0x7ffaccb90000 7180288 C:\Windows\System32\windows.storage.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API хранения Microsoft WinRT 131795781111919763 0x7ffacd270000 2215936 C:\Windows\System32\KernelBase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795781111959779 0x7ffacd710000 638976 C:\Windows\System32\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795781112263740 0x7ffacd7b0000 270336 C:\Windows\System32\cfgmgr32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Configuration Manager DLL 131795781112262565 0x7ffacd810000 22056960 C:\Windows\System32\shell32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Общая библиотека оболочки Windows 131795781111959111 0x7ffaced20000 782336 C:\Windows\System32\oleaut32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795781111952833 0x7ffacee50000 1183744 C:\Windows\System32\rpcrt4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795781111927637 0x7ffacef90000 647168 C:\Windows\System32\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795781111918688 0x7ffacf0d0000 704512 C:\Windows\System32\kernel32.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795781112429009 0x7ffacf1e0000 1417216 C:\Windows\System32\msctf.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Серверная библиотека MSCTF 131795781111954501 0x7ffacf770000 212992 C:\Windows\System32\gdi32.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation GDI Client DLL 131795781111958338 0x7ffacf890000 188416 C:\Windows\System32\imm32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Multi-User Windows IMM32 API Client DLL 131795781111956778 0x7ffacf8c0000 1462272 C:\Windows\System32\user32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795781111951234 0x7ffacfb30000 2916352 C:\Windows\System32\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795781112266518 0x7ffacfe20000 663552 C:\Windows\System32\advapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795781112267424 0x7ffad01b0000 335872 C:\Windows\System32\shlwapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека небольших программ оболочки 131795781111973936 0x7ffad0210000 364544 C:\Windows\System32\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795781111913976 0x7ffad0270000 1908736 C:\Windows\System32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 162 4760 664 6 00000000:0031f1da 131795786042098193 0 0 1 Обязательная метка\Низкий обязательный уровень WIN-0UOTFKKVN1S\User MicrosoftEdge.exe C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdge.exe "C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdge.exe" -ServerName:MicrosoftEdge.AppXdnhjhccw3zf0j06tkg3jtqr00qdm0khc.mca Microsoft Corporation 11.00.14393.2189 (rs1_release.180329-1711) Microsoft Edge 131795786042630177 0x7ff782940000 7663616 C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdge.exe 11.00.14393.2189 (rs1_release.180329-1711) Microsoft Corporation Microsoft Edge 131795786057154585 0x7ffaad380000 5730304 C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\eView.dll 11.00.14393.2189 (rs1_release.180329-1711) Microsoft Corporation Microsoft Edge View 131795786054805787 0x7ffaad900000 4730880 C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\eModel.dll 11.00.14393.2189 (rs1_release.180329-1711) Microsoft Corporation Microsoft Edge Model 131795786066907553 0x7ffab0430000 1662976 C:\Windows\System32\ieapfltr.dll 11.00.14393.2189 Microsoft Corporation Microsoft SmartScreen Filter 131795786128228596 0x7ffab1df0000 602112 C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\eData.dll 11.00.14393.2189 (rs1_release.180329-1711) Microsoft Corporation Microsoft Edge Data Store API Module 131795786065479748 0x7ffab5520000 3231744 C:\Windows\System32\msftedit.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Элемент управления "Поле ввода форматированного текста", версия 8.5 131795786063895095 0x7ffab5b40000 2527232 C:\Windows\System32\DWrite.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Службы Microsoft DirectX Typography 131795786054266392 0x7ffab6710000 17231872 C:\Windows\System32\Windows.UI.Xaml.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows.UI.Xaml dll 131795786230757616 0x7ffab8fd0000 229376 C:\Windows\System32\MicrosoftAccountTokenProvider.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft® Account Token Provider 131795786063975264 0x7ffabaab0000 94208 C:\Windows\System32\profext.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation profext 131795786144818989 0x7ffabaf70000 270336 C:\Windows\System32\edputil.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служебная программа EDP 131795786059649322 0x7ffabb3c0000 450560 C:\Windows\System32\TextInputFramework.dll 10.0.14393.2189 (rs1_release.180329-1711) Microsoft Corporation "TextInputFramework.DYNLINK" 131795786067415829 0x7ffabb490000 512000 C:\Windows\System32\twinapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation twinapi 131795786288759665 0x7ffabbb80000 61440 C:\Windows\System32\dsclient.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Data Sharing Service Client DLL 131795786288473868 0x7ffabbb90000 581632 C:\Windows\System32\Windows.System.Launcher.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows.System.Launcher 131795786288676720 0x7ffabbd00000 36864 C:\Windows\System32\WpPortingLibrary.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation <d> DLL 131795786065177710 0x7ffabbd10000 65536 C:\Windows\System32\tokenbinding.dll 10.0.14393.1593 (rs1_release.170731-1934) Microsoft Corporation Token Binding Protocol 131795786066322832 0x7ffabc510000 90112 C:\Windows\System32\execmodelproxy.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ExecModelProxy 131795786072876141 0x7ffabc920000 270336 C:\Windows\System32\ExecModelClient.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation ExecModelClient 131795786088399099 0x7ffabca50000 819200 C:\Windows\System32\Windows.Security.Authentication.Web.Core.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Token Broker WinRT API 131795786065841979 0x7ffabcef0000 102400 C:\Windows\System32\Windows.Shell.ServiceHostBuilder.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows.Shell.ServiceHostBuilder 131795786055069007 0x7ffabcf30000 110592 C:\Windows\System32\mpr.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека маршрутизации для нескольких служб доступа 131795786147341523 0x7ffabd220000 479232 C:\Windows\System32\Windows.Devices.Enumeration.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows.Devices.Enumeration 131795786063327247 0x7ffabd4a0000 1613824 C:\Windows\System32\Windows.Globalization.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Globalization 131795786125346246 0x7ffabe4d0000 286720 C:\Windows\System32\MSWB7.dll 10.0.14393.1737 (rs1_release_inmarket.170914-1249) Microsoft Corporation MSWB7 DLL 131795786068479711 0x7ffabe6e0000 561152 C:\Windows\System32\directmanipulation.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Direct Manipulation Component 131795786065629245 0x7ffabe9c0000 188416 C:\Windows\System32\globinputhost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Globalization Extension API for Input 131795786100800557 0x7ffabeac0000 335872 C:\Windows\System32\Windows.Storage.ApplicationData.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Application Data API Server 131795786057138366 0x7ffabeb20000 385024 C:\Windows\System32\Windows.ApplicationModel.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows ApplicationModel API Server 131795786088259759 0x7ffabf090000 81920 C:\Windows\System32\Windows.System.Profile.PlatformDiagnosticsAndUsageDataSettings.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Platform Diagnostics and Usage Settings DLL 131795786241271463 0x7ffabf1d0000 192512 C:\Windows\System32\cryptnet.dll 10.0.14393.2035 (rs1_release_inmarket.180110-1910) Microsoft Corporation Crypto Network Related API 131795786064506043 0x7ffabf5d0000 2924544 C:\Windows\System32\wininet.dll 11.00.14393.447 (rs1_release_inmarket.161102-0100) Microsoft Corporation Расширения Интернета для Win32 131795786066155936 0x7ffabfce0000 90112 C:\Windows\System32\Windows.Globalization.Fontgroups.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Fonts Mapping API 131795786063962359 0x7ffabfd00000 356352 C:\Windows\System32\Windows.Graphics.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation WinRT Windows Graphics DLL 131795786069984086 0x7ffabfd80000 86016 C:\Windows\System32\threadpoolwinrt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows WinRT Threadpool 131795786241104861 0x7ffabff60000 135168 C:\Windows\System32\ncryptsslp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft SChannel Provider 131795786059637885 0x7ffac00c0000 282624 C:\Windows\System32\Windows.UI.Core.TextInput.dll 10.0.14393.2189 (rs1_release.180329-1711) Microsoft Corporation Windows.UI.Core.TextInput dll 131795786053932620 0x7ffac01e0000 397312 C:\Windows\System32\wincorlib.dll 10.0.14393.576 (rs1_release_inmarket.161208-2252) Microsoft Corporation Microsoft Windows ® WinRT core library 131795786241083669 0x7ffac0ad0000 86016 C:\Windows\System32\mskeyprotect.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик защиты ключей (Майкрософт) 131795786056074983 0x7ffac0bf0000 3559424 C:\Windows\System32\actxprxy.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation ActiveX Interface Marshaling Library 131795786100125856 0x7ffac1470000 704512 C:\Windows\System32\ieproxy.dll 11.00.14393.2007 (rs1_release.171231-1800) Microsoft Corporation IE ActiveX Interface Marshaling Library 131795786075280874 0x7ffac15d0000 172032 C:\Windows\System32\Windows.ApplicationModel.Core.dll 10.0.14393.2155 (rs1_release_1.180305-1842) Microsoft Corporation Windows Application Model Core API 131795786070406699 0x7ffac1600000 208896 C:\Windows\System32\mdmregistration.dll 10.0.14393.576 (rs1_release_inmarket.161208-2252) Microsoft Corporation MDM Registration DLL 131795786062579941 0x7ffac1940000 172032 C:\Windows\System32\Windows.System.Profile.RetailInfo.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation Windows.System.Profile.RetailInfo Runtime DLL 131795786070419915 0x7ffac1f10000 126976 C:\Windows\System32\dmcmnutils.dll 10.0.14393.1737 (rs1_release_inmarket.170914-1249) Microsoft Corporation dmcmnutils 131795786068039488 0x7ffac20d0000 110592 C:\Windows\System32\rmclient.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Resource Manager Client 131795786089075107 0x7ffac23c0000 331776 C:\Windows\System32\OneCoreCommonProxyStub.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation OneCore Common Proxy Stub 131795786065677921 0x7ffac2990000 385024 C:\Windows\System32\ninput.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Pen and Touch Input Component 131795786065270981 0x7ffac34e0000 1843200 C:\Windows\System32\urlmon.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширения OLE32 для Win32 131795786128841302 0x7ffac3840000 3088384 C:\Windows\System32\esent.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширяемая подсистема хранения данных ESE для Microsoft(R) Windows(R) 131795786054294330 0x7ffac3cb0000 2772992 C:\Windows\System32\iertutil.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служебная программа времени выполнения для Internet Explorer 131795786063368609 0x7ffac4000000 274432 C:\Windows\System32\policymanager.dll 10.0.14393.2035 (rs1_release_inmarket.180110-1910) Microsoft Corporation Policy Manager DLL 131795786202359997 0x7ffac42a0000 659456 C:\Windows\System32\StateRepository.Core.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation StateRepository Core 131795786200068117 0x7ffac46d0000 4161536 C:\Windows\System32\Windows.StateRepository.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Сервер Windows StateRepository API Server 131795786055042484 0x7ffac4b70000 122880 C:\Windows\System32\eShims.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Edge Compatibility Shims 131795786089712128 0x7ffac4b90000 774144 C:\Windows\System32\StoreAgent.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation StoreAgent 131795786059830786 0x7ffac5350000 1765376 C:\Windows\System32\Windows.UI.Immersive.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation WINDOWS.UI.IMMERSIVE 131795786150797625 0x7ffac5500000 438272 C:\Windows\System32\PhotoMetadataHandler.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Photo Metadata Handler 131795786453454285 0x7ffac5ce0000 1744896 C:\Windows\System32\UIAutomationCore.dll 7.2.14393.0 (rs1_release.160715-1616) Microsoft Corporation Основные автоматические компоненты Microsoft UI 131795786067621067 0x7ffac60e0000 221184 C:\Windows\System32\xmllite.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft XmlLite Library 131795786092263039 0x7ffac6610000 40960 C:\Windows\System32\rasadhlp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Remote Access AutoDial Helper 131795786147367807 0x7ffac6620000 192512 C:\Windows\System32\biwinrt.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation Windows Background Broker Infrastructure 131795786065223183 0x7ffac66a0000 86016 C:\Windows\System32\OnDemandConnRouteHelper.dll 10.0.14393.351 (rs1_release_inmarket.161014-1755) Microsoft Corporation On Demand Connctiond Route Helper 131795786147382918 0x7ffac6990000 69632 C:\Windows\System32\deviceassociation.dll 10.0.14393.82 (rs1_release.160805-1735) Microsoft Corporation Device Association Client DLL 131795786065248448 0x7ffac69c0000 839680 C:\Windows\System32\winhttp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Службы HTTP Windows 131795786055777229 0x7ffac6ac0000 835584 C:\Windows\System32\Windows.UI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Runtime UI Foundation DLL 131795786453657664 0x7ffac6bd0000 413696 C:\Windows\System32\oleacc.dll 7.2.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Active Accessibility Core Component 131795786057001398 0x7ffac6f50000 5632000 C:\Windows\System32\d2d1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека Microsoft D2D 131795786057773467 0x7ffac7580000 1077248 C:\Windows\System32\MrmCoreR.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Windows MRM 131795786060164250 0x7ffac7720000 1601536 C:\Windows\System32\OneCoreUAPCommonProxyStub.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation OneCoreUAP Common Proxy Stub 131795786068353332 0x7ffac79c0000 57344 C:\Windows\System32\npmproxy.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Network List Manager Proxy 131795786070260699 0x7ffac79e0000 184320 C:\Windows\System32\netjoin.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL присоединения к домену 131795786066493970 0x7ffac7e30000 40960 C:\Windows\System32\fontgroupsoverride.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation fontgroupsoverride.dll 131795786056922456 0x7ffac7fc0000 2674688 C:\Windows\System32\d3d10warp.dll 10.0.14393.576 (rs1_release_inmarket.161208-2252) Microsoft Corporation Direct3D 10 Rasterizer 131795786092912724 0x7ffac8420000 434176 C:\Windows\System32\FWPUCLNT.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API пользовательского режима FWP/IPsec 131795786060129754 0x7ffac84f0000 299008 C:\Windows\System32\DataExchange.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation Data exchange 131795786065322940 0x7ffac8810000 45056 C:\Windows\System32\winnsi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Network Store Information RPC interface 131795786056749751 0x7ffac88a0000 2842624 C:\Windows\System32\d3d11.dll 10.0.14393.953 (rs1_release_inmarket.170303-1614) Microsoft Corporation Direct3D 11 Runtime 131795786070245572 0x7ffac90b0000 90112 C:\Windows\System32\wkscli.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Workstation Service Client DLL 131795786054670572 0x7ffac92e0000 1269760 C:\Windows\System32\WinTypes.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL основных типов Windows 131795786056291342 0x7ffac9500000 2682880 C:\Windows\System32\CoreUIComponents.dll 131795786068265491 0x7ffac9f10000 221184 C:\Windows\System32\netprofm.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Network List Manager 131795786082912516 0x7ffac9f50000 1736704 C:\Windows\System32\WindowsCodecs.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Microsoft Windows Codecs Library 131795786063291141 0x7ffaca340000 1593344 C:\Windows\System32\propsys.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Система страниц свойств (Майкрософт) 131795786054280400 0x7ffaca570000 421888 C:\Windows\System32\BCP47Langs.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation BCP47 Language Classes 131795786056308035 0x7ffaca5e0000 155648 C:\Windows\System32\dwmapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Интерфейс API диспетчера окон рабочего стола (Майкрософт) 131795786054309397 0x7ffaca640000 770048 C:\Windows\System32\CoreMessaging.dll 10.0.14393.0 Microsoft Corporation Microsoft CoreMessaging Dll 131795786060143604 0x7ffaca770000 1380352 C:\Windows\System32\dcomp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft DirectComposition Library 131795786053885709 0x7ffacadf0000 499712 C:\Windows\System32\apphelp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиентская библиотека совместимости приложений 131795786056099190 0x7ffacaf00000 610304 C:\Windows\System32\uxtheme.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека тем UxTheme (Microsoft) 131795786063385911 0x7ffacb140000 593920 C:\Windows\System32\msvcp110_win.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Microsoft® STL110 C++ Runtime Library 131795786054634364 0x7ffacb1e0000 1163264 C:\Windows\System32\twinapi.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation twinapi.appcore 131795786064476035 0x7ffacb360000 176128 C:\Windows\System32\fwbase.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Firewall Base DLL 131795786056663398 0x7ffacb3d0000 110592 C:\Windows\System32\ResourcePolicyClient.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Resource Policy Client 131795786070433601 0x7ffacb3f0000 163840 C:\Windows\System32\devobj.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Device Information Set DLL 131795786054821679 0x7ffacb420000 204800 C:\Windows\System32\ntmarta.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик Windows NT MARTA 131795786064343854 0x7ffacb460000 548864 C:\Windows\System32\FirewallAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API брандмауэра Windows 131795786741705319 0x7ffacb6f0000 143360 C:\Windows\System32\gpapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиентские функции API групповой политики 131795786056649628 0x7ffacb780000 651264 C:\Windows\System32\dxgi.dll 10.0.14393.953 (rs1_release_inmarket.170303-1614) Microsoft Corporation DirectX Graphics Infrastructure 131795786240387843 0x7ffacbaf0000 495616 C:\Windows\System32\schannel.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик безопасности TLS/SSL 131795786241189729 0x7ffacbbb0000 208896 C:\Windows\System32\rsaenh.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Enhanced Cryptographic Provider 131795786241130378 0x7ffacbbf0000 40960 C:\Windows\System32\dpapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Data Protection API 131795786065234326 0x7ffacbd30000 229376 C:\Windows\System32\IPHLPAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API вспомогательного приложения IP 131795786070099854 0x7ffacbd70000 659456 C:\Windows\System32\dnsapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Динамическая библиотека API DNS-клиента 131795786070392550 0x7ffacbe20000 53248 C:\Windows\System32\netutils.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API Helpers DLL 131795786055055520 0x7ffacbe40000 126976 C:\Windows\System32\userenv.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Userenv 131795786065299260 0x7ffacbfb0000 376832 C:\Windows\System32\mswsock.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширение поставщика службы API Microsoft Windows Sockets 2.0 131795786067045090 0x7ffacc150000 94208 C:\Windows\System32\cryptsp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Cryptographic Service Provider API 131795786061034021 0x7ffacc170000 45056 C:\Windows\System32\cryptbase.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base cryptographic API DLL 131795786070369175 0x7ffacc1b0000 126976 C:\Windows\System32\joinutil.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Join Utility DLL 131795786070463748 0x7ffacc1f0000 241664 C:\Windows\System32\ntasn1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft ASN.1 API 131795786070448934 0x7ffacc230000 155648 C:\Windows\System32\ncrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Маршрутизатор Windows NCrypt 131795786064523489 0x7ffacc350000 180224 C:\Windows\System32\sspicli.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Security Support Provider Interface 131795786054651608 0x7ffacc620000 176128 C:\Windows\System32\bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795786054249334 0x7ffacc6e0000 61440 C:\Windows\System32\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795786054809092 0x7ffacc6f0000 311296 C:\Windows\System32\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795786054683095 0x7ffacc740000 81920 C:\Windows\System32\profapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Profile Basic API 131795786057003667 0x7ffacc760000 65536 C:\Windows\System32\msasn1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ASN.1 Runtime APIs 131795786053916113 0x7ffacc770000 1572864 C:\Windows\System32\gdi32full.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation GDI Client DLL 131795786053913423 0x7ffacc8f0000 1003520 C:\Windows\System32\ucrtbase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795786053914306 0x7ffacc9f0000 434176 C:\Windows\System32\bcryptprimitives.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Cryptographic Primitives Library 131795786053917903 0x7ffacca60000 122880 C:\Windows\System32\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795786241132060 0x7ffacca80000 348160 C:\Windows\System32\wintrust.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation Microsoft Trust Verification APIs 131795786054295713 0x7ffaccae0000 692224 C:\Windows\System32\SHCore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795786054808089 0x7ffaccb90000 7180288 C:\Windows\System32\windows.storage.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API хранения Microsoft WinRT 131795786053867639 0x7ffacd270000 2215936 C:\Windows\System32\KernelBase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795786057002708 0x7ffacd490000 1871872 C:\Windows\System32\crypt32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API32 криптографии 131795786053934160 0x7ffacd710000 638976 C:\Windows\System32\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795786054810350 0x7ffacd7b0000 270336 C:\Windows\System32\cfgmgr32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Configuration Manager DLL 131795786072535568 0x7ffacd810000 22056960 C:\Windows\System32\shell32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Общая библиотека оболочки Windows 131795786053933393 0x7ffaced20000 782336 C:\Windows\System32\oleaut32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795786070371970 0x7ffacede0000 450560 C:\Windows\System32\coml2.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft COM for Windows 131795786053910705 0x7ffacee50000 1183744 C:\Windows\System32\rpcrt4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795786065324109 0x7ffacef80000 32768 C:\Windows\System32\nsi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation NSI User-mode interface DLL 131795786053908868 0x7ffacef90000 647168 C:\Windows\System32\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795786053866675 0x7ffacf0d0000 704512 C:\Windows\System32\kernel32.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795786058760529 0x7ffacf1e0000 1417216 C:\Windows\System32\msctf.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Серверная библиотека MSCTF 131795786053915276 0x7ffacf770000 212992 C:\Windows\System32\gdi32.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation GDI Client DLL 131795786065183195 0x7ffacf820000 434176 C:\Windows\System32\ws2_32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation 32-разрядная библиотека Windows Socket 2.0 131795786053988560 0x7ffacf890000 188416 C:\Windows\System32\imm32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Multi-User Windows IMM32 API Client DLL 131795786053916977 0x7ffacf8c0000 1462272 C:\Windows\System32\user32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795786053912669 0x7ffacfb30000 2916352 C:\Windows\System32\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795786053907976 0x7ffacfe20000 663552 C:\Windows\System32\advapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795786053911866 0x7ffad0070000 1277952 C:\Windows\System32\ole32.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft OLE для Windows 131795786054806876 0x7ffad01b0000 335872 C:\Windows\System32\shlwapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека небольших программ оболочки 131795786053909990 0x7ffad0210000 364544 C:\Windows\System32\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795786042630465 0x7ffad0270000 1908736 C:\Windows\System32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 163 11628 664 6 00000000:0031f1da 131795786060723216 0 0 1 Обязательная метка\Средний обязательный уровень WIN-0UOTFKKVN1S\User browser_broker.exe C:\Windows\system32\browser_broker.exe C:\Windows\system32\browser_broker.exe -Embedding Microsoft Corporation 11.00.14393.1613 (rs1_release_d.170807-1806) Browser_Broker 131795786060746750 0x7ff7b0a20000 40960 C:\Windows\System32\browser_broker.exe 11.00.14393.1613 (rs1_release_d.170807-1806) Microsoft Corporation Browser_Broker 131795786168836722 0x7ffab2c00000 8179712 C:\Windows\System32\Chakra.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft ® Chakra (Private) 131795786168862865 0x7ffab33d0000 258048 C:\Windows\System32\mlang.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL многоязыковой поддержки 131795786168827250 0x7ffab3540000 22740992 C:\Windows\System32\edgehtml.dll 11.00.14393.447 (rs1_release_inmarket.161102-0100) Microsoft Corporation Веб-платформа Microsoft Edge 131795786282574098 0x7ffabaab0000 94208 C:\Windows\System32\profext.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation profext 131795786062630515 0x7ffabcf30000 110592 C:\Windows\System32\mpr.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека маршрутизации для нескольких служб доступа 131795786377997340 0x7ffabf1d0000 192512 C:\Windows\System32\cryptnet.dll 10.0.14393.2035 (rs1_release_inmarket.180110-1910) Microsoft Corporation Crypto Network Related API 131795786062639680 0x7ffabf5d0000 2924544 C:\Windows\System32\wininet.dll 11.00.14393.447 (rs1_release_inmarket.161102-0100) Microsoft Corporation Расширения Интернета для Win32 131795786379114346 0x7ffabff60000 135168 C:\Windows\System32\ncryptsslp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft SChannel Provider 131795786377416821 0x7ffac0ad0000 86016 C:\Windows\System32\mskeyprotect.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик защиты ключей (Майкрософт) 131795786174396342 0x7ffac0bf0000 3559424 C:\Windows\System32\actxprxy.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation ActiveX Interface Marshaling Library 131795786063237345 0x7ffac1470000 704512 C:\Windows\System32\ieproxy.dll 11.00.14393.2007 (rs1_release.171231-1800) Microsoft Corporation IE ActiveX Interface Marshaling Library 131795786062620047 0x7ffac34e0000 1843200 C:\Windows\System32\urlmon.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширения OLE32 для Win32 131795786062594364 0x7ffac37b0000 122880 C:\Windows\System32\browserbroker.dll 11.00.14393.1613 (rs1_release_d.170807-1806) Microsoft Corporation BrowserBroker 131795786062611592 0x7ffac3cb0000 2772992 C:\Windows\System32\iertutil.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служебная программа времени выполнения для Internet Explorer 131795786373086635 0x7ffac4000000 274432 C:\Windows\System32\policymanager.dll 10.0.14393.2035 (rs1_release_inmarket.180110-1910) Microsoft Corporation Policy Manager DLL 131795786062648299 0x7ffac60e0000 221184 C:\Windows\System32\xmllite.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft XmlLite Library 131795786374469208 0x7ffac6610000 40960 C:\Windows\System32\rasadhlp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Remote Access AutoDial Helper 131795786169923245 0x7ffac66a0000 86016 C:\Windows\System32\OnDemandConnRouteHelper.dll 10.0.14393.351 (rs1_release_inmarket.161014-1755) Microsoft Corporation On Demand Connctiond Route Helper 131795786169944900 0x7ffac69c0000 839680 C:\Windows\System32\winhttp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Службы HTTP Windows 131795786375051635 0x7ffac8420000 434176 C:\Windows\System32\FWPUCLNT.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API пользовательского режима FWP/IPsec 131795786170132533 0x7ffac8810000 45056 C:\Windows\System32\winnsi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Network Store Information RPC interface 131795786168854180 0x7ffac92e0000 1269760 C:\Windows\System32\WinTypes.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL основных типов Windows 131795786372529204 0x7ffaca5e0000 155648 C:\Windows\System32\dwmapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Интерфейс API диспетчера окон рабочего стола (Майкрософт) 131795786060981181 0x7ffacaf00000 610304 C:\Windows\System32\uxtheme.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека тем UxTheme (Microsoft) 131795786373096703 0x7ffacb140000 593920 C:\Windows\System32\msvcp110_win.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Microsoft® STL110 C++ Runtime Library 131795786062656563 0x7ffacb420000 204800 C:\Windows\System32\ntmarta.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик Windows NT MARTA 131795786376235194 0x7ffacbaf0000 495616 C:\Windows\System32\schannel.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик безопасности TLS/SSL 131795786377463635 0x7ffacbbb0000 208896 C:\Windows\System32\rsaenh.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Enhanced Cryptographic Provider 131795786062672588 0x7ffacbbf0000 40960 C:\Windows\System32\dpapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Data Protection API 131795786169932479 0x7ffacbd30000 229376 C:\Windows\System32\IPHLPAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API вспомогательного приложения IP 131795786372992934 0x7ffacbd70000 659456 C:\Windows\System32\dnsapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Динамическая библиотека API DNS-клиента 131795786282563295 0x7ffacbe40000 126976 C:\Windows\System32\userenv.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Userenv 131795786170115721 0x7ffacbfb0000 376832 C:\Windows\System32\mswsock.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширение поставщика службы API Microsoft Windows Sockets 2.0 131795786168845591 0x7ffacc150000 94208 C:\Windows\System32\cryptsp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Cryptographic Service Provider API 131795786377475058 0x7ffacc170000 45056 C:\Windows\System32\cryptbase.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base cryptographic API DLL 131795786377435415 0x7ffacc1f0000 241664 C:\Windows\System32\ntasn1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft ASN.1 API 131795786377426421 0x7ffacc230000 155648 C:\Windows\System32\ncrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Маршрутизатор Windows NCrypt 131795786065020552 0x7ffacc350000 180224 C:\Windows\System32\sspicli.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Security Support Provider Interface 131795786168896935 0x7ffacc620000 176128 C:\Windows\System32\bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795786060963845 0x7ffacc6e0000 61440 C:\Windows\System32\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795786065028759 0x7ffacc6f0000 311296 C:\Windows\System32\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795786065029803 0x7ffacc740000 81920 C:\Windows\System32\profapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Profile Basic API 131795786062602748 0x7ffacc760000 65536 C:\Windows\System32\msasn1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ASN.1 Runtime APIs 131795786060771823 0x7ffacc770000 1572864 C:\Windows\System32\gdi32full.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation GDI Client DLL 131795786060765038 0x7ffacc8f0000 1003520 C:\Windows\System32\ucrtbase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795786060766797 0x7ffacc9f0000 434176 C:\Windows\System32\bcryptprimitives.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Cryptographic Primitives Library 131795786060769366 0x7ffacca60000 122880 C:\Windows\System32\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795786377447217 0x7ffacca80000 348160 C:\Windows\System32\wintrust.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation Microsoft Trust Verification APIs 131795786062597872 0x7ffaccae0000 692224 C:\Windows\System32\SHCore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795786065027623 0x7ffaccb90000 7180288 C:\Windows\System32\windows.storage.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API хранения Microsoft WinRT 131795786060754491 0x7ffacd270000 2215936 C:\Windows\System32\KernelBase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795786062601823 0x7ffacd490000 1871872 C:\Windows\System32\crypt32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API32 криптографии 131795786062599820 0x7ffacd710000 638976 C:\Windows\System32\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795786174124589 0x7ffacd7b0000 270336 C:\Windows\System32\cfgmgr32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Configuration Manager DLL 131795786174123329 0x7ffacd810000 22056960 C:\Windows\System32\shell32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Общая библиотека оболочки Windows 131795786062599041 0x7ffaced20000 782336 C:\Windows\System32\oleaut32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795786060765825 0x7ffacee50000 1183744 C:\Windows\System32\rpcrt4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795786170133242 0x7ffacef80000 32768 C:\Windows\System32\nsi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation NSI User-mode interface DLL 131795786060762708 0x7ffacef90000 647168 C:\Windows\System32\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795786062743817 0x7ffacf030000 651264 C:\Windows\System32\clbcatq.dll 2001.12.10941.16384 (rs1_release.160715-1616) Microsoft Corporation COM+ Configuration Catalog 131795786060753543 0x7ffacf0d0000 704512 C:\Windows\System32\kernel32.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795786060770964 0x7ffacf770000 212992 C:\Windows\System32\gdi32.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation GDI Client DLL 131795786169882199 0x7ffacf820000 434176 C:\Windows\System32\ws2_32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation 32-разрядная библиотека Windows Socket 2.0 131795786060799279 0x7ffacf890000 188416 C:\Windows\System32\imm32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Multi-User Windows IMM32 API Client DLL 131795786060768413 0x7ffacf8c0000 1462272 C:\Windows\System32\user32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795786060764068 0x7ffacfb30000 2916352 C:\Windows\System32\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795786062600875 0x7ffacfe20000 663552 C:\Windows\System32\advapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795786063238473 0x7ffad0070000 1277952 C:\Windows\System32\ole32.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft OLE для Windows 131795786062621206 0x7ffad01b0000 335872 C:\Windows\System32\shlwapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека небольших программ оболочки 131795786060767532 0x7ffad0210000 364544 C:\Windows\System32\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795786060746988 0x7ffad0270000 1908736 C:\Windows\System32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 164 9260 3632 38 00000000:0031f1da 131795786076559956 0 0 1 Обязательная метка\Низкий обязательный уровень WIN-0UOTFKKVN1S\User microsoftedgecp.exe C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\microsoftedgecp.exe "C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\microsoftedgecp.exe" SCODEF:4760 CREDAT:140545 /prefetch:2 Microsoft Corporation 11.00.14393.2189 (rs1_release.180329-1711) Microsoft Edge Content Process 131795786082343149 0x5bbd0000 1101824 C:\Program Files (x86)\360\Total Security\safemon\safemon64.dll 1, 0, 0, 1190 Qihu 360 Software Co., Ltd. 360 Internet Security Internet Protection 131795786082139934 0x5bce0000 28672 C:\Program Files (x86)\360\Total Security\safemon\SafeWrapper.dll 2, 0, 0, 1060 Qihu 360 Software Co., Ltd. 360 Internet Security Internet Protection 131795786076857473 0x7ff6405a0000 106496 C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe 11.00.14393.2189 (rs1_release.180329-1711) Microsoft Corporation Microsoft Edge Content Process 131795786340825586 0x7ffaa65e0000 4526080 C:\Windows\System32\D3DCompiler_47.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Direct3D HLSL Compiler 131795786083247759 0x7ffaafb30000 3379200 C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\EdgeContent.dll 11.00.14393.2189 (rs1_release.180329-1711) Microsoft Corporation Microsoft Edge Content 131795786086088180 0x7ffab0430000 1662976 C:\Windows\System32\ieapfltr.dll 11.00.14393.2189 Microsoft Corporation Microsoft SmartScreen Filter 131795786159084433 0x7ffab0d50000 593920 C:\Windows\System32\mscms.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL-библиотека системы сопоставления цветов Майкрософт 131795786202624192 0x7ffab2230000 270336 C:\Windows\System32\elshyph.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ELS Hyphenation Service 131795786084579233 0x7ffab2c00000 8179712 C:\Windows\System32\Chakra.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft ® Chakra (Private) 131795786084609324 0x7ffab33d0000 258048 C:\Windows\System32\mlang.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL многоязыковой поддержки 131795786084567131 0x7ffab3540000 22740992 C:\Windows\System32\edgehtml.dll 11.00.14393.447 (rs1_release_inmarket.161102-0100) Microsoft Corporation Веб-платформа Microsoft Edge 131795786088444599 0x7ffab5b40000 2527232 C:\Windows\System32\DWrite.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Службы Microsoft DirectX Typography 131795786084123182 0x7ffabaab0000 94208 C:\Windows\System32\profext.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation profext 131795786160557742 0x7ffababa0000 270336 C:\Windows\System32\icm32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Color Management Module (CMM) 131795786082878183 0x7ffababf0000 806912 C:\Program Files (x86)\360\Total Security\safemon\spsafe64.dll 1, 0, 0, 1150 Qihu 360 Software Co., Ltd. 360 Internet Security Internet Protection 131795786390382274 0x7ffabaf70000 270336 C:\Windows\System32\edputil.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служебная программа EDP 131795786086580284 0x7ffabb490000 512000 C:\Windows\System32\twinapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation twinapi 131795786085595890 0x7ffabbd10000 65536 C:\Windows\System32\tokenbinding.dll 10.0.14393.1593 (rs1_release.170731-1934) Microsoft Corporation Token Binding Protocol 131795786083370196 0x7ffabcf30000 110592 C:\Windows\System32\mpr.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека маршрутизации для нескольких служб доступа 131795786137282976 0x7ffabd4a0000 1613824 C:\Windows\System32\Windows.Globalization.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Globalization 131795786244144116 0x7ffabe110000 69632 C:\Windows\System32\imgutil.dll 11.00.14393.2007 (rs1_release.171231-1800) Microsoft Corporation IE plugin image decoder support DLL 131795786154004846 0x7ffabe530000 307200 C:\Windows\System32\WindowsCodecsExt.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Microsoft Windows Codecs Extended Library 131795786089791507 0x7ffabe6e0000 561152 C:\Windows\System32\directmanipulation.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Direct Manipulation Component 131795786155347443 0x7ffabe830000 77824 C:\Windows\System32\smartscreenps.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SmartScreenPS 131795786389154702 0x7ffabe9c0000 188416 C:\Windows\System32\globinputhost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Globalization Extension API for Input 131795786114772856 0x7ffabf1d0000 192512 C:\Windows\System32\cryptnet.dll 10.0.14393.2035 (rs1_release_inmarket.180110-1910) Microsoft Corporation Crypto Network Related API 131795786296880485 0x7ffabf330000 2457600 C:\Windows\System32\msxml6.dll 6.30.14393.2156 Microsoft Corporation MSXML 6.0 131795786085297567 0x7ffabf5d0000 2924544 C:\Windows\System32\wininet.dll 11.00.14393.447 (rs1_release_inmarket.161102-0100) Microsoft Corporation Расширения Интернета для Win32 131795786112051091 0x7ffabff60000 135168 C:\Windows\System32\ncryptsslp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft SChannel Provider 131795786107069509 0x7ffac0ad0000 86016 C:\Windows\System32\mskeyprotect.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик защиты ключей (Майкрософт) 131795786241015463 0x7ffac0bf0000 3559424 C:\Windows\System32\actxprxy.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation ActiveX Interface Marshaling Library 131795786083065977 0x7ffac1090000 126976 C:\Program Files (x86)\360\Total Security\I18N64.dll 1, 0, 0, 1016 Qihu 360 Software Co., Ltd. 360 Total Security 131795786100196624 0x7ffac1470000 704512 C:\Windows\System32\ieproxy.dll 11.00.14393.2007 (rs1_release.171231-1800) Microsoft Corporation IE ActiveX Interface Marshaling Library 131795786271419198 0x7ffac1d60000 589824 C:\Windows\System32\webio.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API протоколов передачи по Веб 131795786086130048 0x7ffac20d0000 110592 C:\Windows\System32\rmclient.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Resource Manager Client 131795786082410441 0x7ffac2700000 98304 C:\Windows\System32\netapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API DLL 131795786087301397 0x7ffac2990000 385024 C:\Windows\System32\ninput.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Pen and Touch Input Component 131795786082393485 0x7ffac2b80000 40960 C:\Windows\System32\version.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Version Checking and File Installation Libraries 131795786086032569 0x7ffac34e0000 1843200 C:\Windows\System32\urlmon.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширения OLE32 для Win32 131795786321446812 0x7ffac3810000 167936 C:\Windows\System32\cabinet.dll 5.00 (rs1_release.160715-1616) Microsoft Corporation Microsoft® Cabinet File API 131795786282318342 0x7ffac3b80000 286720 C:\Windows\System32\indexeddbserver.dll 10.0.14393.2189 (rs1_release.180329-1711) Microsoft Corporation IndexedDb host 131795786082097229 0x7ffac3cb0000 2772992 C:\Windows\System32\iertutil.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служебная программа времени выполнения для Internet Explorer 131795786085965984 0x7ffac4000000 274432 C:\Windows\System32\policymanager.dll 10.0.14393.2035 (rs1_release_inmarket.180110-1910) Microsoft Corporation Policy Manager DLL 131795786083356981 0x7ffac4b70000 122880 C:\Windows\System32\eShims.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Edge Compatibility Shims 131795786210171775 0x7ffac60e0000 221184 C:\Windows\System32\xmllite.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft XmlLite Library 131795786104739299 0x7ffac6610000 40960 C:\Windows\System32\rasadhlp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Remote Access AutoDial Helper 131795786085635138 0x7ffac66a0000 86016 C:\Windows\System32\OnDemandConnRouteHelper.dll 10.0.14393.351 (rs1_release_inmarket.161014-1755) Microsoft Corporation On Demand Connctiond Route Helper 131795786085676901 0x7ffac69c0000 839680 C:\Windows\System32\winhttp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Службы HTTP Windows 131795786089609753 0x7ffac6ac0000 835584 C:\Windows\System32\Windows.UI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Runtime UI Foundation DLL 131795786087107447 0x7ffac6ed0000 155648 C:\Windows\System32\srpapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL программных интерфейсов (API) поставщика общих ресурсов 131795786088421856 0x7ffac6f50000 5632000 C:\Windows\System32\d2d1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека Microsoft D2D 131795786092153446 0x7ffac7580000 1077248 C:\Windows\System32\MrmCoreR.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Windows MRM 131795786100849928 0x7ffac7720000 1601536 C:\Windows\System32\OneCoreUAPCommonProxyStub.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation OneCoreUAP Common Proxy Stub 131795786089750406 0x7ffac78b0000 65536 C:\Windows\System32\msimtf.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Active IMM Server DLL 131795786088584854 0x7ffac7fc0000 2674688 C:\Windows\System32\d3d10warp.dll 10.0.14393.576 (rs1_release_inmarket.161208-2252) Microsoft Corporation Direct3D 10 Rasterizer 131795786270943858 0x7ffac83d0000 106496 C:\Windows\System32\dhcpcsvc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служба DHCP-клиента 131795786270495097 0x7ffac83f0000 90112 C:\Windows\System32\dhcpcsvc6.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиент DHCPv6 131795786104726596 0x7ffac8420000 434176 C:\Windows\System32\FWPUCLNT.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API пользовательского режима FWP/IPsec 131795786086442135 0x7ffac84f0000 299008 C:\Windows\System32\DataExchange.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation Data exchange 131795786085717720 0x7ffac8810000 45056 C:\Windows\System32\winnsi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Network Store Information RPC interface 131795786086457038 0x7ffac88a0000 2842624 C:\Windows\System32\d3d11.dll 10.0.14393.953 (rs1_release_inmarket.170303-1614) Microsoft Corporation Direct3D 11 Runtime 131795786082439684 0x7ffac90b0000 90112 C:\Windows\System32\wkscli.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Workstation Service Client DLL 131795786084597848 0x7ffac92e0000 1269760 C:\Windows\System32\WinTypes.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL основных типов Windows 131795786184150347 0x7ffac9ec0000 294912 C:\Windows\System32\UIAnimation.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Animation Manager 131795786141307846 0x7ffac9f50000 1736704 C:\Windows\System32\WindowsCodecs.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Microsoft Windows Codecs Library 131795786240298598 0x7ffaca340000 1593344 C:\Windows\System32\propsys.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Система страниц свойств (Майкрософт) 131795786092224838 0x7ffaca570000 421888 C:\Windows\System32\BCP47Langs.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation BCP47 Language Classes 131795786086057183 0x7ffaca5e0000 155648 C:\Windows\System32\dwmapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Интерфейс API диспетчера окон рабочего стола (Майкрософт) 131795786089629599 0x7ffaca640000 770048 C:\Windows\System32\CoreMessaging.dll 10.0.14393.0 Microsoft Corporation Microsoft CoreMessaging Dll 131795786086481184 0x7ffaca770000 1380352 C:\Windows\System32\dcomp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft DirectComposition Library 131795786082048569 0x7ffacadf0000 499712 C:\Windows\System32\apphelp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиентская библиотека совместимости приложений 131795786084078182 0x7ffacaf00000 610304 C:\Windows\System32\uxtheme.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека тем UxTheme (Microsoft) 131795786086008568 0x7ffacb140000 593920 C:\Windows\System32\msvcp110_win.dll 10.0.14393.2007 (rs1_release.171231-1800) Microsoft Corporation Microsoft® STL110 C++ Runtime Library 131795786083279286 0x7ffacb1e0000 1163264 C:\Windows\System32\twinapi.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation twinapi.appcore 131795786088520571 0x7ffacb3d0000 110592 C:\Windows\System32\ResourcePolicyClient.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Resource Policy Client 131795786083257346 0x7ffacb420000 204800 C:\Windows\System32\ntmarta.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик Windows NT MARTA 131795786086544984 0x7ffacb780000 651264 C:\Windows\System32\dxgi.dll 10.0.14393.953 (rs1_release_inmarket.170303-1614) Microsoft Corporation DirectX Graphics Infrastructure 131795786105438151 0x7ffacbaf0000 495616 C:\Windows\System32\schannel.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик безопасности TLS/SSL 131795786098058671 0x7ffacbbb0000 208896 C:\Windows\System32\rsaenh.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Enhanced Cryptographic Provider 131795786098091830 0x7ffacbbf0000 40960 C:\Windows\System32\dpapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Data Protection API 131795786085647065 0x7ffacbd30000 229376 C:\Windows\System32\IPHLPAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API вспомогательного приложения IP 131795786093150053 0x7ffacbd70000 659456 C:\Windows\System32\dnsapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Динамическая библиотека API DNS-клиента 131795786082425895 0x7ffacbe20000 53248 C:\Windows\System32\netutils.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API Helpers DLL 131795786083270628 0x7ffacbe40000 126976 C:\Windows\System32\userenv.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Userenv 131795786085695835 0x7ffacbfb0000 376832 C:\Windows\System32\mswsock.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширение поставщика службы API Microsoft Windows Sockets 2.0 131795786084588700 0x7ffacc150000 94208 C:\Windows\System32\cryptsp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Cryptographic Service Provider API 131795786098076226 0x7ffacc170000 45056 C:\Windows\System32\cryptbase.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base cryptographic API DLL 131795786112038692 0x7ffacc1f0000 241664 C:\Windows\System32\ntasn1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft ASN.1 API 131795786112026610 0x7ffacc230000 155648 C:\Windows\System32\ncrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Маршрутизатор Windows NCrypt 131795786085316210 0x7ffacc350000 180224 C:\Windows\System32\sspicli.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Security Support Provider Interface 131795786082453168 0x7ffacc620000 176128 C:\Windows\System32\bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795786082355351 0x7ffacc6e0000 61440 C:\Windows\System32\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795786082352777 0x7ffacc6f0000 311296 C:\Windows\System32\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795786082356404 0x7ffacc740000 81920 C:\Windows\System32\profapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Profile Basic API 131795786082346599 0x7ffacc770000 1572864 C:\Windows\System32\gdi32full.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation GDI Client DLL 131795786082076458 0x7ffacc8f0000 1003520 C:\Windows\System32\ucrtbase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795786082077405 0x7ffacc9f0000 434176 C:\Windows\System32\bcryptprimitives.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Cryptographic Primitives Library 131795786082344914 0x7ffacca60000 122880 C:\Windows\System32\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795786082078287 0x7ffacca80000 348160 C:\Windows\System32\wintrust.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation Microsoft Trust Verification APIs 131795786082074829 0x7ffaccae0000 692224 C:\Windows\System32\SHCore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795786082351486 0x7ffaccb90000 7180288 C:\Windows\System32\windows.storage.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API хранения Microsoft WinRT 131795786082030503 0x7ffacd270000 2215936 C:\Windows\System32\KernelBase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795786082079752 0x7ffacd490000 1871872 C:\Windows\System32\crypt32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API32 криптографии 131795786082360385 0x7ffacd710000 638976 C:\Windows\System32\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795786082350101 0x7ffacd7b0000 270336 C:\Windows\System32\cfgmgr32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Configuration Manager DLL 131795786082348521 0x7ffacd810000 22056960 C:\Windows\System32\shell32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Общая библиотека оболочки Windows 131795786082359321 0x7ffaced20000 782336 C:\Windows\System32\oleaut32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795786082073607 0x7ffacee50000 1183744 C:\Windows\System32\rpcrt4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795786085718659 0x7ffacef80000 32768 C:\Windows\System32\nsi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation NSI User-mode interface DLL 131795786082071659 0x7ffacef90000 647168 C:\Windows\System32\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795786082029525 0x7ffacf0d0000 704512 C:\Windows\System32\kernel32.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795786086063062 0x7ffacf1e0000 1417216 C:\Windows\System32\msctf.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Серверная библиотека MSCTF 131795786082345765 0x7ffacf770000 212992 C:\Windows\System32\gdi32.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation GDI Client DLL 131795786082362660 0x7ffacf820000 434176 C:\Windows\System32\ws2_32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation 32-разрядная библиотека Windows Socket 2.0 131795786082465073 0x7ffacf890000 188416 C:\Windows\System32\imm32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Multi-User Windows IMM32 API Client DLL 131795786082343975 0x7ffacf8c0000 1462272 C:\Windows\System32\user32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795786082075682 0x7ffacfb30000 2916352 C:\Windows\System32\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795786082361662 0x7ffacfe00000 114688 C:\Windows\System32\imagehlp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT Image Helper 131795786082070778 0x7ffacfe20000 663552 C:\Windows\System32\advapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795786082357670 0x7ffad0070000 1277952 C:\Windows\System32\ole32.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft OLE для Windows 131795786082354079 0x7ffad01b0000 335872 C:\Windows\System32\shlwapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека небольших программ оболочки 131795786082072862 0x7ffad0210000 364544 C:\Windows\System32\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795786076857714 0x7ffad0270000 1908736 C:\Windows\System32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 167 8360 664 6 00000000:0031f1da 131795786145545826 0 0 1 Обязательная метка\Средний обязательный уровень WIN-0UOTFKKVN1S\User smartscreen.exe C:\Windows\System32\smartscreen.exe C:\Windows\System32\smartscreen.exe -Embedding Microsoft Corporation 10.0.14393.0 (rs1_release.160715-1616) SmartScreen 131795786149935538 0x7ff75abc0000 2416640 C:\Windows\System32\smartscreen.exe 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SmartScreen 131795786314242815 0x7ffaa6a40000 2936832 C:\Windows\System32\CertEnroll.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиент регистрации служб сертификатов Active Directory Microsoft® 131795786321983797 0x7ffab0360000 798720 C:\Windows\System32\certca.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ЦС служб сертификации Microsoft® Active Directory 131795786150398418 0x7ffab2c00000 8179712 C:\Windows\System32\Chakra.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft ® Chakra (Private) 131795786338506430 0x7ffab33d0000 258048 C:\Windows\System32\mlang.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL многоязыковой поддержки 131795786156130630 0x7ffab9c00000 1343488 C:\Windows\System32\Windows.Web.Http.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL Windows.Web.Http 131795786162891895 0x7ffabd4a0000 1613824 C:\Windows\System32\Windows.Globalization.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows Globalization 131795786155325960 0x7ffabe830000 77824 C:\Windows\System32\smartscreenps.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SmartScreenPS 131795786290626130 0x7ffabe850000 155648 C:\Windows\System32\IDStore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Identity Store 131795786303817642 0x7ffabf1d0000 192512 C:\Windows\System32\cryptnet.dll 10.0.14393.2035 (rs1_release_inmarket.180110-1910) Microsoft Corporation Crypto Network Related API 131795786292777426 0x7ffabf5d0000 2924544 C:\Windows\System32\wininet.dll 11.00.14393.447 (rs1_release_inmarket.161102-0100) Microsoft Corporation Расширения Интернета для Win32 131795786308881957 0x7ffabff60000 135168 C:\Windows\System32\ncryptsslp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft SChannel Provider 131795786291185460 0x7ffac0ac0000 53248 C:\Windows\System32\tbs.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation TBS 131795786303729142 0x7ffac0ad0000 86016 C:\Windows\System32\mskeyprotect.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик защиты ключей (Майкрософт) 131795786295084336 0x7ffac34e0000 1843200 C:\Windows\System32\urlmon.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширения OLE32 для Win32 131795786150377395 0x7ffac36b0000 524288 C:\Windows\System32\msdelta.dll 5.00 (rs1_release.160715-1616) Microsoft Corporation Microsoft Patch Engine 131795786150443503 0x7ffac3cb0000 2772992 C:\Windows\System32\iertutil.dll 11.00.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служебная программа времени выполнения для Internet Explorer 131795786295137905 0x7ffac6610000 40960 C:\Windows\System32\rasadhlp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Remote Access AutoDial Helper 131795786293100161 0x7ffac66a0000 86016 C:\Windows\System32\OnDemandConnRouteHelper.dll 10.0.14393.351 (rs1_release_inmarket.161014-1755) Microsoft Corporation On Demand Connctiond Route Helper 131795786293113418 0x7ffac69c0000 839680 C:\Windows\System32\winhttp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Службы HTTP Windows 131795786317286245 0x7ffac6b90000 53248 C:\Windows\System32\dsparse.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Active Directory Domain Services API 131795786296541369 0x7ffac8420000 434176 C:\Windows\System32\FWPUCLNT.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API пользовательского режима FWP/IPsec 131795786294026752 0x7ffac8810000 45056 C:\Windows\System32\winnsi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Network Store Information RPC interface 131795786150415925 0x7ffac90b0000 90112 C:\Windows\System32\wkscli.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Workstation Service Client DLL 131795786150432150 0x7ffac92e0000 1269760 C:\Windows\System32\WinTypes.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека DLL основных типов Windows 131795786162900766 0x7ffaca570000 421888 C:\Windows\System32\BCP47Langs.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation BCP47 Language Classes 131795786290836325 0x7ffaca610000 143360 C:\Windows\System32\samlib.dll 10.0.14393.82 (rs1_release.160805-1735) Microsoft Corporation SAM Library DLL 131795786293555790 0x7ffacb360000 176128 C:\Windows\System32\fwbase.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Firewall Base DLL 131795786293160744 0x7ffacb460000 548864 C:\Windows\System32\FirewallAPI.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API брандмауэра Windows 131795786340507243 0x7ffacb6f0000 143360 C:\Windows\System32\gpapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Клиентские функции API групповой политики 131795786297745460 0x7ffacbaf0000 495616 C:\Windows\System32\schannel.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик безопасности TLS/SSL 131795786155834219 0x7ffacbbb0000 208896 C:\Windows\System32\rsaenh.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft Enhanced Cryptographic Provider 131795786303757002 0x7ffacbbf0000 40960 C:\Windows\System32\dpapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Data Protection API 131795786167890086 0x7ffacbd30000 229376 C:\Windows\System32\IPHLPAPI.DLL 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API вспомогательного приложения IP 131795786167870284 0x7ffacbd70000 659456 C:\Windows\System32\dnsapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Динамическая библиотека API DNS-клиента 131795786150424134 0x7ffacbe20000 53248 C:\Windows\System32\netutils.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Net Win32 API Helpers DLL 131795786294009833 0x7ffacbfb0000 376832 C:\Windows\System32\mswsock.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширение поставщика службы API Microsoft Windows Sockets 2.0 131795786150385959 0x7ffacc150000 94208 C:\Windows\System32\cryptsp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Cryptographic Service Provider API 131795786155846861 0x7ffacc170000 45056 C:\Windows\System32\cryptbase.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Base cryptographic API DLL 131795786303746521 0x7ffacc1f0000 241664 C:\Windows\System32\ntasn1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Microsoft ASN.1 API 131795786303737722 0x7ffacc230000 155648 C:\Windows\System32\ncrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Маршрутизатор Windows NCrypt 131795786292790345 0x7ffacc350000 180224 C:\Windows\System32\sspicli.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation Security Support Provider Interface 131795786150407736 0x7ffacc620000 176128 C:\Windows\System32\bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795786149962132 0x7ffacc6e0000 61440 C:\Windows\System32\kernel.appcore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation AppModel API Host 131795786149968291 0x7ffacc6f0000 311296 C:\Windows\System32\powrprof.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation DLL модуля поддержки профиля управления питанием 131795786149971001 0x7ffacc740000 81920 C:\Windows\System32\profapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Profile Basic API 131795786149965440 0x7ffacc770000 1572864 C:\Windows\System32\gdi32full.dll 10.0.14393.1770 (rs1_release.170917-1700) Microsoft Corporation GDI Client DLL 131795786149952992 0x7ffacc8f0000 1003520 C:\Windows\System32\ucrtbase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795786149956475 0x7ffacc9f0000 434176 C:\Windows\System32\bcryptprimitives.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Cryptographic Primitives Library 131795786149963670 0x7ffacca60000 122880 C:\Windows\System32\win32u.dll 10.0.14393.51 (rs1_release_inmarket.160801-1836) Microsoft Corporation Win32u 131795786149971757 0x7ffacca80000 348160 C:\Windows\System32\wintrust.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation Microsoft Trust Verification APIs 131795786149957278 0x7ffaccae0000 692224 C:\Windows\System32\SHCore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795786149967388 0x7ffaccb90000 7180288 C:\Windows\System32\windows.storage.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API хранения Microsoft WinRT 131795786149943620 0x7ffacd270000 2215936 C:\Windows\System32\KernelBase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795786149960523 0x7ffacd490000 1871872 C:\Windows\System32\crypt32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API32 криптографии 131795786149952242 0x7ffacd710000 638976 C:\Windows\System32\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795786155995189 0x7ffacd7b0000 270336 C:\Windows\System32\cfgmgr32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Configuration Manager DLL 131795786157141835 0x7ffaced20000 782336 C:\Windows\System32\oleaut32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795786149955480 0x7ffacee50000 1183744 C:\Windows\System32\rpcrt4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795786167871961 0x7ffacef80000 32768 C:\Windows\System32\nsi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation NSI User-mode interface DLL 131795786149957990 0x7ffacef90000 647168 C:\Windows\System32\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795786154314206 0x7ffacf030000 651264 C:\Windows\System32\clbcatq.dll 2001.12.10941.16384 (rs1_release.160715-1616) Microsoft Corporation COM+ Configuration Catalog 131795786149942691 0x7ffacf0d0000 704512 C:\Windows\System32\kernel32.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795786322132523 0x7ffacf180000 376832 C:\Windows\System32\Wldap32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Win32 LDAP API DLL 131795786149964615 0x7ffacf770000 212992 C:\Windows\System32\gdi32.dll 10.0.14393.206 (rs1_release.160915-0644) Microsoft Corporation GDI Client DLL 131795786149966457 0x7ffacf820000 434176 C:\Windows\System32\ws2_32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation 32-разрядная библиотека Windows Socket 2.0 131795786151032932 0x7ffacf890000 188416 C:\Windows\System32\imm32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Multi-User Windows IMM32 API Client DLL 131795786149962916 0x7ffacf8c0000 1462272 C:\Windows\System32\user32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Многопользовательская библиотека клиента USER API Windows 131795786149954350 0x7ffacfb30000 2916352 C:\Windows\System32\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795786149969125 0x7ffacfe20000 663552 C:\Windows\System32\advapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795786149970065 0x7ffad01b0000 335872 C:\Windows\System32\shlwapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека небольших программ оболочки 131795786149959703 0x7ffad0210000 364544 C:\Windows\System32\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795786149935879 0x7ffad0270000 1908736 C:\Windows\System32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 180 4244 580 4 00000000:000003e7 131795790147954241 0 0 1 Обязательная метка\Обязательный уровень системы NT AUTHORITY\СИСТЕМА svchost.exe C:\Windows\System32\svchost.exe C:\Windows\System32\svchost.exe -k WerSvcGroup Microsoft Corporation 10.0.14393.0 (rs1_release.160715-1616) Хост-процесс для служб Windows 131795790148018919 0x7ff718c20000 57344 C:\Windows\System32\svchost.exe 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Хост-процесс для служб Windows 131795790149736107 0x7ffab8fd0000 241664 C:\Windows\System32\weretw.dll 10.0.14393.447 (rs1_release_inmarket.161102-0100) Microsoft Corporation WERETW.DLL 131795790149730286 0x7ffabafc0000 700416 C:\Windows\System32\wer.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека сообщений об ошибках Windows 131795790149723654 0x7ffabdfa0000 393216 C:\Windows\System32\Faultrep.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека отчетов о сбоях в пользовательском режиме Windows 131795790149698015 0x7ffac15d0000 180224 C:\Windows\System32\wersvc.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Служба регистрации ошибок Windows 131795790149758280 0x7ffac8dc0000 167936 C:\Windows\System32\dbgcore.dll 10.0.14321.1024 (debuggers(dbg).160715-1616) Microsoft Windows Core Debugging Helpers 131795790149743981 0x7ffac8df0000 1646592 C:\Windows\System32\dbghelp.dll 10.0.14321.1024 (rs1_release.160715-1616) Microsoft Windows Image Helper 131795790149717043 0x7ffacb420000 204800 C:\Windows\System32\ntmarta.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Поставщик Windows NT MARTA 131795790150390475 0x7ffacb920000 81920 C:\Windows\System32\wldp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Политика блокировки Windows 131795790149709557 0x7ffacc150000 94208 C:\Windows\System32\cryptsp.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Cryptographic Service Provider API 131795790149752002 0x7ffacc620000 176128 C:\Windows\System32\bcrypt.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека криптографических примитивов Windows 131795790149699755 0x7ffacc740000 81920 C:\Windows\System32\profapi.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation User Profile Basic API 131795790150392414 0x7ffacc760000 65536 C:\Windows\System32\msasn1.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation ASN.1 Runtime APIs 131795790149639584 0x7ffacc8f0000 1003520 C:\Windows\System32\ucrtbase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795790149701594 0x7ffacc9f0000 434176 C:\Windows\System32\bcryptprimitives.dll 10.0.14393.2156 (rs1_release_inmarket.180321-1733) Microsoft Corporation Windows Cryptographic Primitives Library 131795790150393298 0x7ffacca80000 348160 C:\Windows\System32\wintrust.dll 10.0.14393.2125 (rs1_release.180301-2139) Microsoft Corporation Microsoft Trust Verification APIs 131795790149724748 0x7ffaccae0000 692224 C:\Windows\System32\SHCore.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation SHCORE 131795790149628535 0x7ffacd270000 2215936 C:\Windows\System32\KernelBase.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795790150391489 0x7ffacd490000 1871872 C:\Windows\System32\crypt32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation API32 криптографии 131795790149737723 0x7ffacd710000 638976 C:\Windows\System32\msvcp_win.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Microsoft® C Runtime Library 131795790149736916 0x7ffaced20000 782336 C:\Windows\System32\oleaut32.dll 10.0.14393.1378 (rs1_release.170620-2008) Microsoft Corporation OLEAUT32.DLL 131795790149638204 0x7ffacee50000 1183744 C:\Windows\System32\rpcrt4.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Библиотека удаленного вызова процедур 131795790149698849 0x7ffacef90000 647168 C:\Windows\System32\msvcrt.dll 7.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Windows NT CRT DLL 131795790149627637 0x7ffacf0d0000 704512 C:\Windows\System32\kernel32.dll 10.0.14393.2097 (rs1_release_1.180212-1105) Microsoft Corporation Библиотека клиента Windows NT BASE API 131795790149700675 0x7ffacfb30000 2916352 C:\Windows\System32\combase.dll 10.0.14393.1198 (rs1_release_sec.170427-1353) Microsoft Corporation Microsoft COM для Windows 131795790149702758 0x7ffacfe20000 663552 C:\Windows\System32\advapi32.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Расширенная библиотека API Windows 32 131795790149637329 0x7ffad0210000 364544 C:\Windows\System32\sechost.dll 10.0.14393.0 (rs1_release.160715-1616) Microsoft Corporation Host for SCM/SDDL/LSA Lookup APIs 131795790148019282 0x7ffad0270000 1908736 C:\Windows\System32\ntdll.dll 10.0.14393.1715 (rs1_release_inmarket.170906-1810) Microsoft Corporation Системная библиотека NT 97 12:38:29,5730550 MCLauncher.exe 84 Process Start SUCCESS Parent PID: 3108, Command line: "C:\Users\User\Downloads\MCLauncher.exe" , Current directory: C:\Users\User\Downloads\, Environment: =::=::\ ALLUSERSPROFILE=C:\ProgramData APPDATA=C:\Users\User\AppData\Roaming CommonProgramFiles=C:\Program Files\Common Files CommonProgramFiles(x86)=C:\Program Files (x86)\Common Files CommonProgramW6432=C:\Program Files\Common Files COMPUTERNAME=WIN-0UOTFKKVN1S ComSpec=C:\Windows\system32\cmd.exe FPS_BROWSER_APP_PROFILE_STRING=Internet Explorer FPS_BROWSER_USER_PROFILE_STRING=Default HOMEDRIVE=C: HOMEPATH=\Users\User LOCALAPPDATA=C:\Users\User\AppData\Local LOGONSERVER=\\WIN-0UOTFKKVN1S NUMBER_OF_PROCESSORS=1 OneDrive=C:\Users\User\OneDrive OS=Windows_NT Path=C:\Program Files (x86)\Common Files\Oracle\Java\javapath;C:\Windows\system32;C:\Windows;C:\Windows\System32\Wbem;C:\Windows\System32\WindowsPowerShell\v1.0\;C:\Users\User\AppData\Local\Microsoft\WindowsApps; PATHEXT=.COM;.EXE;.BAT;.CMD;.VBS;.VBE;.JS;.JSE;.WSF;.WSH;.MSC PROCESSOR_ARCHITECTURE=AMD64 PROCESSOR_IDENTIFIER=Intel64 Family 6 Model 158 Stepping 10, GenuineIntel PROCESSOR_LEVEL=6 PROCESSOR_REVISION=9e0a ProgramData=C:\ProgramData ProgramFiles=C:\Program Files ProgramFiles(x86)=C:\Program Files (x86) ProgramW6432=C:\Program Files PSModulePath=C:\Program Files\WindowsPowerShell\Modules;C:\Windows\system32\WindowsPowerShell\v1.0\Modules PUBLIC=C:\Users\Public SESSIONNAME=Console SystemDrive=C: SystemRoot=C:\Windows TEMP=C:\Users\User\AppData\Local\Temp TMP=C:\Users\User\AppData\Local\Temp USERDOMAIN=WIN-0UOTFKKVN1S USERDOMAIN_ROAMINGPROFILE=WIN-0UOTFKKVN1S USERNAME=User USERPROFILE=C:\Users\User windir=C:\Windows 97 12:38:29,8087840 MCLauncher.exe 84 Thread Create SUCCESS Thread ID: 2340 97 12:38:30,0052569 MCLauncher.exe 84 Load Image C:\Users\User\Downloads\MCLauncher.exe SUCCESS Image Base: 0x400000, Image Size: 0x2b3000 97 12:38:30,0052962 MCLauncher.exe 84 Load Image C:\Windows\System32\ntdll.dll SUCCESS Image Base: 0x7ffad0270000, Image Size: 0x1d2000 97 12:38:30,0053240 MCLauncher.exe 84 Load Image C:\Windows\SysWOW64\ntdll.dll SUCCESS Image Base: 0x77d20000, Image Size: 0x183000 97 12:38:30,0054525 MCLauncher.exe 84 CreateFile C:\Windows\Prefetch\MCLAUNCHER.EXE-E3686D69.pf SUCCESS Desired Access: Generic Read, Disposition: Open, Options: Synchronous IO Non-Alert, Attributes: n/a, ShareMode: None, AllocationSize: n/a, OpenResult: Opened 97 12:38:30,0055024 MCLauncher.exe 84 QueryStandardInformationFile C:\Windows\Prefetch\MCLAUNCHER.EXE-E3686D69.pf SUCCESS AllocationSize: 24 576, EndOfFile: 24 123, NumberOfLinks: 1, DeletePending: False, Directory: False 97 12:38:30,0055190 MCLauncher.exe 84 ReadFile C:\Windows\Prefetch\MCLAUNCHER.EXE-E3686D69.pf SUCCESS Offset: 0, Length: 24 123, Priority: Normal 97 12:38:30,0055470 MCLauncher.exe 84 ReadFile C:\Windows\Prefetch\MCLAUNCHER.EXE-E3686D69.pf SUCCESS Offset: 0, Length: 24 123, I/O Flags: Non-cached, Paging I/O, Priority: Normal 97 12:38:30,0203030 MCLauncher.exe 84 CloseFile C:\Windows\Prefetch\MCLAUNCHER.EXE-E3686D69.pf SUCCESS 97 12:38:30,7976081 MCLauncher.exe 84 RegOpenKey HKLM\SYSTEM\CurrentControlSet\Control\Session Manager\Segment Heap REPARSE Desired Access: Query Value 97 12:38:30,7976272 MCLauncher.exe 84 RegOpenKey HKLM\System\CurrentControlSet\Control\Session Manager\Segment Heap NAME NOT FOUND Desired Access: Query Value 97 12:38:30,7979644 MCLauncher.exe 84 CreateFile C:\Windows SUCCESS Desired Access: Execute/Traverse, Synchronize, Disposition: Open, Options: Directory, Synchronous IO Non-Alert, Attributes: n/a, ShareMode: Read, Write, AllocationSize: n/a, OpenResult: Opened 97 12:38:30,7980658 MCLauncher.exe 84 Load Image C:\Windows\System32\wow64.dll SUCCESS Image Base: 0x5c020000, Image Size: 0x52000 97 12:38:30,7981450 MCLauncher.exe 84 Load Image C:\Windows\System32\wow64win.dll SUCCESS Image Base: 0x5c080000, Image Size: 0x77000 97 12:38:30,7988039 MCLauncher.exe 84 CreateFile C:\Windows\System32\wow64log.dll NAME NOT FOUND Desired Access: Read Attributes, Disposition: Open, Options: Open Reparse Point, Attributes: n/a, ShareMode: Read, Write, Delete, AllocationSize: n/a 97 12:38:30,7988870 MCLauncher.exe 84 Load Image C:\Windows\System32\kernel32.dll SUCCESS Image Base: 0x6c0000, Image Size: 0xac000 97 12:38:30,7989504 MCLauncher.exe 84 Load Image C:\Windows\SysWOW64\kernel32.dll SUCCESS Image Base: 0x755e0000, Image Size: 0xe0000 97 12:38:30,7990028 MCLauncher.exe 84 Load Image C:\Windows\System32\kernel32.dll SUCCESS Image Base: 0x6c0000, Image Size: 0xac000 97 12:38:30,7990477 MCLauncher.exe 84 Load Image C:\Windows\System32\user32.dll SUCCESS Image Base: 0x7d0000, Image Size: 0x165000 97 12:38:30,7991496 MCLauncher.exe 84 CreateFile C:\Windows SUCCESS Desired Access: Read Attributes, Synchronize, Disposition: Open, Options: Synchronous IO Non-Alert, Attributes: n/a, ShareMode: Read, Write, Delete, AllocationSize: n/a, OpenResult: Opened 97 12:38:30,7991738 MCLauncher.exe 84 QueryNameInformationFile C:\Windows SUCCESS Name: \Windows 97 12:38:30,7991854 MCLauncher.exe 84 CloseFile C:\Windows SUCCESS 97 12:38:30,7992153 MCLauncher.exe 84 RegOpenKey HKLM\Software\Microsoft\Wow64\x86 SUCCESS Desired Access: Read 97 12:38:30,7992342 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\Microsoft\Wow64\x86\MCLauncher.exe NAME NOT FOUND Length: 520 97 12:38:30,7992491 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\Microsoft\Wow64\x86\(Default) SUCCESS Type: REG_SZ, Length: 26, Data: wow64cpu.dll 97 12:38:30,7992580 MCLauncher.exe 84 RegCloseKey HKLM\SOFTWARE\Microsoft\Wow64\x86 SUCCESS 97 12:38:30,7993070 MCLauncher.exe 84 Load Image C:\Windows\System32\wow64cpu.dll SUCCESS Image Base: 0x5c100000, Image Size: 0xa000 97 12:38:30,7994893 MCLauncher.exe 84 RegOpenKey HKLM\SYSTEM\CurrentControlSet\Control\Session Manager\Segment Heap REPARSE Desired Access: Query Value 97 12:38:30,7995004 MCLauncher.exe 84 RegOpenKey HKLM\System\CurrentControlSet\Control\Session Manager\Segment Heap NAME NOT FOUND Desired Access: Query Value 97 12:38:30,7998007 MCLauncher.exe 84 CreateFile C:\Users\User\Downloads SUCCESS Desired Access: Execute/Traverse, Synchronize, Disposition: Open, Options: Directory, Synchronous IO Non-Alert, Attributes: n/a, ShareMode: Read, Write, AllocationSize: n/a, OpenResult: Opened 97 12:38:30,7998747 MCLauncher.exe 84 Load Image C:\Windows\SysWOW64\kernel32.dll SUCCESS Image Base: 0x755e0000, Image Size: 0xe0000 97 12:38:30,7999750 MCLauncher.exe 84 Load Image C:\Windows\SysWOW64\KernelBase.dll SUCCESS Image Base: 0x751e0000, Image Size: 0x1a1000 97 12:38:30,8003892 MCLauncher.exe 84 RegQueryValue HKLM\System\CurrentControlSet\Control\WMI\Security\05f95efe-7f75-49c7-a994-60a55cc09571 NAME NOT FOUND Length: 524 97 12:38:30,8008017 MCLauncher.exe 84 RegOpenKey HKLM\System\CurrentControlSet\Control\SafeBoot\Option REPARSE Desired Access: Query Value, Set Value 97 12:38:30,8008131 MCLauncher.exe 84 RegOpenKey HKLM\System\CurrentControlSet\Control\SafeBoot\Option NAME NOT FOUND Desired Access: Query Value, Set Value 97 12:38:30,8008242 MCLauncher.exe 84 RegOpenKey HKLM\System\CurrentControlSet\Control\Srp\GP\DLL REPARSE Desired Access: Read 97 12:38:30,8008300 MCLauncher.exe 84 RegOpenKey HKLM\System\CurrentControlSet\Control\Srp\GP\DLL NAME NOT FOUND Desired Access: Read 97 12:38:30,8008405 MCLauncher.exe 84 RegOpenKey HKLM\Software\WOW6432Node\Policies\Microsoft\Windows\Safer\CodeIdentifiers REPARSE Desired Access: Query Value 97 12:38:30,8008486 MCLauncher.exe 84 RegOpenKey HKLM\SOFTWARE\Policies\Microsoft\Windows\Safer\CodeIdentifiers SUCCESS Desired Access: Query Value 97 12:38:30,8008619 MCLauncher.exe 84 RegSetInfoKey HKLM\SOFTWARE\Policies\Microsoft\Windows\safer\codeidentifiers SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 97 12:38:30,8008671 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\Policies\Microsoft\Windows\safer\codeidentifiers\TransparentEnabled NAME NOT FOUND Length: 80 97 12:38:30,8008868 MCLauncher.exe 84 RegCloseKey HKLM\SOFTWARE\Policies\Microsoft\Windows\safer\codeidentifiers SUCCESS 97 12:38:30,8009042 MCLauncher.exe 84 RegOpenKey HKCU\Software\Policies\Microsoft\Windows\Safer\CodeIdentifiers NAME NOT FOUND Desired Access: Query Value 97 12:38:30,8011691 MCLauncher.exe 84 CreateFile C:\Windows\SysWOW64\apphelp.dll SUCCESS Desired Access: Read Attributes, Disposition: Open, Options: Open Reparse Point, Attributes: n/a, ShareMode: Read, Write, Delete, AllocationSize: n/a, OpenResult: Opened 97 12:38:30,8011974 MCLauncher.exe 84 QueryBasicInformationFile C:\Windows\SysWOW64\apphelp.dll SUCCESS CreationTime: 16.07.2016 14:42:45, LastAccessTime: 16.07.2016 14:42:45, LastWriteTime: 16.07.2016 14:42:45, ChangeTime: 19.07.2018 19:32:46, FileAttributes: A 97 12:38:30,8012065 MCLauncher.exe 84 CloseFile C:\Windows\SysWOW64\apphelp.dll SUCCESS 97 12:38:30,8013049 MCLauncher.exe 84 CreateFile C:\Windows\SysWOW64\apphelp.dll SUCCESS Desired Access: Read Data/List Directory, Execute/Traverse, Synchronize, Disposition: Open, Options: Synchronous IO Non-Alert, Non-Directory File, Attributes: n/a, ShareMode: Read, Delete, AllocationSize: n/a, OpenResult: Opened 97 12:38:30,8013337 MCLauncher.exe 84 CreateFileMapping C:\Windows\SysWOW64\apphelp.dll FILE LOCKED WITH ONLY READERS SyncType: SyncTypeCreateSection, PageProtection: PAGE_EXECUTE|PAGE_NOCACHE 97 12:38:30,8013509 MCLauncher.exe 84 QueryNameInformationFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Name: \Users\User\Downloads\MCLauncher.exe 97 12:38:30,8014439 MCLauncher.exe 84 CreateFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Desired Access: Synchronize, Disposition: Open, Options: Synchronous IO Non-Alert, Attributes: N, ShareMode: Read, Write, Delete, AllocationSize: n/a, OpenResult: Opened 97 12:38:30,8014642 MCLauncher.exe 84 CloseFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS 97 12:38:30,8014958 MCLauncher.exe 84 QueryNameInformationFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Name: \Users\User\Downloads\MCLauncher.exe 97 12:38:30,8016002 MCLauncher.exe 84 CreateFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Desired Access: Synchronize, Disposition: Open, Options: Synchronous IO Non-Alert, Attributes: N, ShareMode: Read, Write, Delete, AllocationSize: n/a, OpenResult: Opened 97 12:38:30,8016179 MCLauncher.exe 84 CloseFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS 97 12:38:30,8016465 MCLauncher.exe 84 QueryNameInformationFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Name: \Users\User\Downloads\MCLauncher.exe 97 12:38:30,8017318 MCLauncher.exe 84 CreateFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Desired Access: Synchronize, Disposition: Open, Options: Synchronous IO Non-Alert, Attributes: N, ShareMode: Read, Write, Delete, AllocationSize: n/a, OpenResult: Opened 97 12:38:30,8017487 MCLauncher.exe 84 CloseFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS 97 12:38:30,8018194 MCLauncher.exe 84 CreateFileMapping C:\Windows\SysWOW64\apphelp.dll SUCCESS SyncType: SyncTypeOther 97 12:38:30,8018712 MCLauncher.exe 84 Load Image C:\Windows\SysWOW64\apphelp.dll SUCCESS Image Base: 0x74730000, Image Size: 0x92000 97 12:38:30,8019909 MCLauncher.exe 84 CloseFile C:\Windows\SysWOW64\apphelp.dll SUCCESS 97 12:38:30,8020405 MCLauncher.exe 84 RegQueryValue HKLM\System\CurrentControlSet\Control\WMI\Security\8ccca27d-f1d8-4dda-b5dd-339aee937731 NAME NOT FOUND Length: 524 97 12:38:30,8021047 MCLauncher.exe 84 RegOpenKey HKLM\Software\WOW6432Node\Microsoft\Windows NT\CurrentVersion\AppCompatFlags SUCCESS Desired Access: Query Value 97 12:38:30,8021222 MCLauncher.exe 84 RegSetInfoKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows NT\CurrentVersion\AppCompatFlags SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 97 12:38:30,8021291 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows NT\CurrentVersion\AppCompatFlags\LogFlags NAME NOT FOUND Length: 20 97 12:38:30,8021452 MCLauncher.exe 84 RegCloseKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows NT\CurrentVersion\AppCompatFlags SUCCESS 97 12:38:30,8022108 MCLauncher.exe 84 RegOpenKey HKLM\Software\WOW6432Node\Microsoft\Windows NT\CurrentVersion\AppCompatFlags SUCCESS Desired Access: Query Value 97 12:38:30,8022214 MCLauncher.exe 84 RegSetInfoKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows NT\CurrentVersion\AppCompatFlags SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 97 12:38:30,8022266 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows NT\CurrentVersion\AppCompatFlags\ShowDebugInfo NAME NOT FOUND Length: 20 97 12:38:30,8022410 MCLauncher.exe 84 RegCloseKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows NT\CurrentVersion\AppCompatFlags SUCCESS 97 12:38:30,8022574 MCLauncher.exe 84 RegOpenKey HKLM\SYSTEM\CurrentControlSet\Control\Session Manager REPARSE Desired Access: Query Value, Enumerate Sub Keys 97 12:38:30,8022651 MCLauncher.exe 84 RegOpenKey HKLM\System\CurrentControlSet\Control\Session Manager SUCCESS Desired Access: Query Value, Enumerate Sub Keys 97 12:38:30,8022826 MCLauncher.exe 84 RegSetInfoKey HKLM\System\CurrentControlSet\Control\Session Manager SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 97 12:38:30,8022909 MCLauncher.exe 84 RegQueryValue HKLM\System\CurrentControlSet\Control\Session Manager\ResourcePolicies NAME NOT FOUND Length: 24 97 12:38:30,8023059 MCLauncher.exe 84 RegCloseKey HKLM\System\CurrentControlSet\Control\Session Manager SUCCESS 97 12:38:30,8024477 MCLauncher.exe 84 CreateFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Desired Access: Read Control, Disposition: Open, Options: , Attributes: n/a, ShareMode: Read, Delete, AllocationSize: n/a, OpenResult: Opened 97 12:38:30,8024685 MCLauncher.exe 84 QuerySecurityFile C:\Users\User\Downloads\MCLauncher.exe BUFFER OVERFLOW Information: Owner 97 12:38:30,8024768 MCLauncher.exe 84 QuerySecurityFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Information: Owner 97 12:38:30,8024840 MCLauncher.exe 84 CloseFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS 97 12:38:30,8026156 MCLauncher.exe 84 CreateFile C:\Windows\SysWOW64\ntdll.dll SUCCESS Desired Access: Read Control, Disposition: Open, Options: , Attributes: n/a, ShareMode: Read, Delete, AllocationSize: n/a, OpenResult: Opened 97 12:38:30,8026458 MCLauncher.exe 84 QuerySecurityFile C:\Windows\SysWOW64\ntdll.dll BUFFER OVERFLOW Information: Owner 97 12:38:30,8026539 MCLauncher.exe 84 QuerySecurityFile C:\Windows\SysWOW64\ntdll.dll SUCCESS Information: Owner 97 12:38:30,8026608 MCLauncher.exe 84 CloseFile C:\Windows\SysWOW64\ntdll.dll SUCCESS 97 12:38:30,8027614 MCLauncher.exe 84 CreateFile C:\Windows\SysWOW64\kernel32.dll SUCCESS Desired Access: Read Control, Disposition: Open, Options: , Attributes: n/a, ShareMode: Read, Delete, AllocationSize: n/a, OpenResult: Opened 97 12:38:30,8027885 MCLauncher.exe 84 QuerySecurityFile C:\Windows\SysWOW64\kernel32.dll BUFFER OVERFLOW Information: Owner 97 12:38:30,8027960 MCLauncher.exe 84 QuerySecurityFile C:\Windows\SysWOW64\kernel32.dll SUCCESS Information: Owner 97 12:38:30,8028026 MCLauncher.exe 84 CloseFile C:\Windows\SysWOW64\kernel32.dll SUCCESS 97 12:38:30,8029007 MCLauncher.exe 84 CreateFile C:\Windows\SysWOW64\KernelBase.dll SUCCESS Desired Access: Read Control, Disposition: Open, Options: , Attributes: n/a, ShareMode: Read, Delete, AllocationSize: n/a, OpenResult: Opened 97 12:38:30,8029207 MCLauncher.exe 84 QuerySecurityFile C:\Windows\SysWOW64\KernelBase.dll BUFFER OVERFLOW Information: Owner 97 12:38:30,8029276 MCLauncher.exe 84 QuerySecurityFile C:\Windows\SysWOW64\KernelBase.dll SUCCESS Information: Owner 97 12:38:30,8029340 MCLauncher.exe 84 CloseFile C:\Windows\SysWOW64\KernelBase.dll SUCCESS 97 12:38:30,8030409 MCLauncher.exe 84 CreateFile C:\Windows\AppPatch\sysmain.sdb SUCCESS Desired Access: Generic Read, Disposition: Open, Options: Synchronous IO Non-Alert, Non-Directory File, Attributes: N, ShareMode: Read, AllocationSize: n/a, OpenResult: Opened 97 12:38:30,8030708 MCLauncher.exe 84 QueryStandardInformationFile C:\Windows\AppPatch\sysmain.sdb SUCCESS AllocationSize: 3 866 624, EndOfFile: 3 863 594, NumberOfLinks: 2, DeletePending: False, Directory: False 97 12:38:30,8030802 MCLauncher.exe 84 QueryStandardInformationFile C:\Windows\AppPatch\sysmain.sdb SUCCESS AllocationSize: 3 866 624, EndOfFile: 3 863 594, NumberOfLinks: 2, DeletePending: False, Directory: False 97 12:38:30,8030891 MCLauncher.exe 84 CreateFileMapping C:\Windows\AppPatch\sysmain.sdb FILE LOCKED WITH ONLY READERS SyncType: SyncTypeCreateSection, PageProtection: PAGE_EXECUTE|PAGE_NOCACHE 97 12:38:30,8031027 MCLauncher.exe 84 QueryNameInformationFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Name: \Users\User\Downloads\MCLauncher.exe 97 12:38:30,8031930 MCLauncher.exe 84 CreateFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Desired Access: Synchronize, Disposition: Open, Options: Synchronous IO Non-Alert, Attributes: N, ShareMode: Read, Write, Delete, AllocationSize: n/a, OpenResult: Opened 97 12:38:30,8032113 MCLauncher.exe 84 CloseFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS 97 12:38:30,8032398 MCLauncher.exe 84 QueryNameInformationFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Name: \Users\User\Downloads\MCLauncher.exe 97 12:38:30,8033263 MCLauncher.exe 84 CreateFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Desired Access: Synchronize, Disposition: Open, Options: Synchronous IO Non-Alert, Attributes: N, ShareMode: Read, Write, Delete, AllocationSize: n/a, OpenResult: Opened 97 12:38:30,8033432 MCLauncher.exe 84 CloseFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS 97 12:38:30,8034063 MCLauncher.exe 84 QueryStandardInformationFile C:\Windows\AppPatch\sysmain.sdb SUCCESS AllocationSize: 3 866 624, EndOfFile: 3 863 594, NumberOfLinks: 2, DeletePending: False, Directory: False 97 12:38:30,8034216 MCLauncher.exe 84 CreateFileMapping C:\Windows\AppPatch\sysmain.sdb SUCCESS SyncType: SyncTypeOther 97 12:38:30,8036654 MCLauncher.exe 84 CreateFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Desired Access: Generic Read, Disposition: Open, Options: Synchronous IO Non-Alert, Non-Directory File, Attributes: N, ShareMode: Read, AllocationSize: n/a, OpenResult: Opened 97 12:38:30,8036972 MCLauncher.exe 84 RegOpenKey HKCU\Software\Microsoft\Windows\CurrentVersion\Explorer\Shell Folders SUCCESS Desired Access: Query Value 97 12:38:30,8037136 MCLauncher.exe 84 RegSetInfoKey HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Shell Folders SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 97 12:38:30,8037200 MCLauncher.exe 84 RegQueryValue HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Shell Folders\Cache SUCCESS Type: REG_SZ, Length: 112, Data: C:\Users\User\AppData\Local\Microsoft\Windows\INetCache 97 12:38:30,8037427 MCLauncher.exe 84 RegCloseKey HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Shell Folders SUCCESS 97 12:38:30,8037579 MCLauncher.exe 84 QuerySecurityFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Information: Owner, Group, DACL, SACL, Label, Process Trust Label 97 12:38:30,8038527 MCLauncher.exe 84 CreateFile C:\Windows\AppPatch\sysmain.sdb SUCCESS Desired Access: Generic Read, Disposition: Open, Options: Synchronous IO Non-Alert, Non-Directory File, Attributes: N, ShareMode: Read, AllocationSize: n/a, OpenResult: Opened 97 12:38:30,8038809 MCLauncher.exe 84 QueryBasicInformationFile C:\Windows\AppPatch\sysmain.sdb SUCCESS CreationTime: 20.07.2018 1:33:29, LastAccessTime: 20.07.2018 1:33:29, LastWriteTime: 18.09.2017 4:09:15, ChangeTime: 20.07.2018 19:23:27, FileAttributes: A 97 12:38:30,8038912 MCLauncher.exe 84 CloseFile C:\Windows\AppPatch\sysmain.sdb SUCCESS 97 12:38:30,8039951 MCLauncher.exe 84 CreateFile C:\Windows\AppPatch\apppatch64\sysmain.sdb SUCCESS Desired Access: Generic Read, Disposition: Open, Options: Synchronous IO Non-Alert, Non-Directory File, Attributes: N, ShareMode: Read, AllocationSize: n/a, OpenResult: Opened 97 12:38:30,8040214 MCLauncher.exe 84 QueryBasicInformationFile C:\Windows\AppPatch\apppatch64\sysmain.sdb SUCCESS CreationTime: 20.07.2018 1:21:40, LastAccessTime: 20.07.2018 1:21:40, LastWriteTime: 18.09.2017 4:15:39, ChangeTime: 20.07.2018 19:23:27, FileAttributes: A 97 12:38:30,8040308 MCLauncher.exe 84 CloseFile C:\Windows\AppPatch\apppatch64\sysmain.sdb SUCCESS 97 12:38:30,8040541 MCLauncher.exe 84 QueryBasicInformationFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS CreationTime: 24.08.2018 12:13:55, LastAccessTime: 24.08.2018 12:13:55, LastWriteTime: 24.08.2018 12:14:13, ChangeTime: 24.08.2018 12:14:13, FileAttributes: A 97 12:38:30,8040846 MCLauncher.exe 84 CloseFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS 97 12:38:30,8041896 MCLauncher.exe 84 CreateFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Desired Access: Generic Read, Disposition: Open, Options: Synchronous IO Non-Alert, Non-Directory File, Attributes: N, ShareMode: Read, AllocationSize: n/a, OpenResult: Opened 97 12:38:30,8042164 MCLauncher.exe 84 RegOpenKey HKCU\Software\Microsoft\Windows\CurrentVersion\Explorer\Shell Folders SUCCESS Desired Access: Query Value 97 12:38:30,8042292 MCLauncher.exe 84 RegSetInfoKey HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Shell Folders SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 97 12:38:30,8042347 MCLauncher.exe 84 RegQueryValue HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Shell Folders\Cache SUCCESS Type: REG_SZ, Length: 112, Data: C:\Users\User\AppData\Local\Microsoft\Windows\INetCache 97 12:38:30,8042533 MCLauncher.exe 84 RegCloseKey HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Shell Folders SUCCESS 97 12:38:30,8042672 MCLauncher.exe 84 QuerySecurityFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Information: Owner, Group, DACL, SACL, Label, Process Trust Label 97 12:38:30,8042774 MCLauncher.exe 84 QueryBasicInformationFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS CreationTime: 24.08.2018 12:13:55, LastAccessTime: 24.08.2018 12:13:55, LastWriteTime: 24.08.2018 12:14:13, ChangeTime: 24.08.2018 12:14:13, FileAttributes: A 97 12:38:30,8042993 MCLauncher.exe 84 CloseFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS 97 12:38:30,8045087 MCLauncher.exe 84 CloseFile C:\Windows\AppPatch\sysmain.sdb SUCCESS 97 12:38:30,8047858 MCLauncher.exe 84 CreateFile C:\Windows\AppPatch\AcLayers.dll SUCCESS Desired Access: Read Attributes, Disposition: Open, Options: Open Reparse Point, Attributes: n/a, ShareMode: Read, Write, Delete, AllocationSize: n/a, OpenResult: Opened 97 12:38:30,8048118 MCLauncher.exe 84 QueryBasicInformationFile C:\Windows\AppPatch\AcLayers.dll SUCCESS CreationTime: 20.07.2018 1:33:29, LastAccessTime: 20.07.2018 1:33:29, LastWriteTime: 04.03.2017 9:24:10, ChangeTime: 20.07.2018 19:24:49, FileAttributes: A 97 12:38:30,8048199 MCLauncher.exe 84 CloseFile C:\Windows\AppPatch\AcLayers.dll SUCCESS 97 12:38:30,8049096 MCLauncher.exe 84 CreateFile C:\Windows\AppPatch\AcLayers.dll SUCCESS Desired Access: Read Data/List Directory, Execute/Traverse, Synchronize, Disposition: Open, Options: Synchronous IO Non-Alert, Non-Directory File, Attributes: n/a, ShareMode: Read, Delete, AllocationSize: n/a, OpenResult: Opened 97 12:38:30,8049376 MCLauncher.exe 84 CreateFileMapping C:\Windows\AppPatch\AcLayers.dll FILE LOCKED WITH ONLY READERS SyncType: SyncTypeCreateSection, PageProtection: PAGE_EXECUTE|PAGE_NOCACHE 97 12:38:30,8049520 MCLauncher.exe 84 QueryNameInformationFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Name: \Users\User\Downloads\MCLauncher.exe 97 12:38:30,8050404 MCLauncher.exe 84 CreateFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Desired Access: Synchronize, Disposition: Open, Options: Synchronous IO Non-Alert, Attributes: N, ShareMode: Read, Write, Delete, AllocationSize: n/a, OpenResult: Opened 97 12:38:30,8050590 MCLauncher.exe 84 CloseFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS 97 12:38:30,8051011 MCLauncher.exe 84 QueryNameInformationFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Name: \Users\User\Downloads\MCLauncher.exe 97 12:38:30,8051981 MCLauncher.exe 84 CreateFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Desired Access: Synchronize, Disposition: Open, Options: Synchronous IO Non-Alert, Attributes: N, ShareMode: Read, Write, Delete, AllocationSize: n/a, OpenResult: Opened 97 12:38:30,8052152 MCLauncher.exe 84 CloseFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS 97 12:38:30,8053263 MCLauncher.exe 84 CreateFileMapping C:\Windows\AppPatch\AcLayers.dll SUCCESS SyncType: SyncTypeOther 97 12:38:30,8053759 MCLauncher.exe 84 Load Image C:\Windows\AppPatch\AcLayers.dll SUCCESS Image Base: 0x6b830000, Image Size: 0x277000 97 12:38:30,8054879 MCLauncher.exe 84 Load Image C:\Windows\SysWOW64\msvcrt.dll SUCCESS Image Base: 0x74da0000, Image Size: 0xbe000 97 12:38:30,8055879 MCLauncher.exe 84 Load Image C:\Windows\SysWOW64\user32.dll SUCCESS Image Base: 0x77560000, Image Size: 0x15f000 97 12:38:30,8056691 MCLauncher.exe 84 Load Image C:\Windows\SysWOW64\win32u.dll SUCCESS Image Base: 0x774d0000, Image Size: 0x15000 97 12:38:30,8057591 MCLauncher.exe 84 Load Image C:\Windows\SysWOW64\gdi32.dll SUCCESS Image Base: 0x77bb0000, Image Size: 0x2b000 97 12:38:30,8058408 MCLauncher.exe 84 Load Image C:\Windows\SysWOW64\gdi32full.dll SUCCESS Image Base: 0x74c30000, Image Size: 0x15a000 97 12:38:30,8059372 MCLauncher.exe 84 Load Image C:\Windows\SysWOW64\shell32.dll SUCCESS Image Base: 0x75ce0000, Image Size: 0x13d9000 97 12:38:30,8060378 MCLauncher.exe 84 Load Image C:\Windows\SysWOW64\cfgmgr32.dll SUCCESS Image Base: 0x77cd0000, Image Size: 0x36000 97 12:38:30,8061351 MCLauncher.exe 84 Load Image C:\Windows\SysWOW64\windows.storage.dll SUCCESS Image Base: 0x756c0000, Image Size: 0x56e000 97 12:38:30,8062126 MCLauncher.exe 84 Load Image C:\Windows\SysWOW64\combase.dll SUCCESS Image Base: 0x74910000, Image Size: 0x212000 97 12:38:30,8062855 MCLauncher.exe 84 Load Image C:\Windows\SysWOW64\ucrtbase.dll SUCCESS Image Base: 0x74830000, Image Size: 0xe0000 97 12:38:30,8063667 MCLauncher.exe 84 Load Image C:\Windows\SysWOW64\rpcrt4.dll SUCCESS Image Base: 0x74b60000, Image Size: 0xc1000 97 12:38:30,8064515 MCLauncher.exe 84 Load Image C:\Windows\SysWOW64\sspicli.dll SUCCESS Image Base: 0x747e0000, Image Size: 0x1f000 97 12:38:30,8065537 MCLauncher.exe 84 Load Image C:\Windows\SysWOW64\cryptbase.dll SUCCESS Image Base: 0x747d0000, Image Size: 0xa000 97 12:38:30,8066224 MCLauncher.exe 84 Load Image C:\Windows\SysWOW64\bcryptprimitives.dll SUCCESS Image Base: 0x776c0000, Image Size: 0x5a000 97 12:38:30,8066925 MCLauncher.exe 84 Load Image C:\Windows\SysWOW64\sechost.dll SUCCESS Image Base: 0x75390000, Image Size: 0x41000 97 12:38:30,8068017 MCLauncher.exe 84 Load Image C:\Windows\SysWOW64\powrprof.dll SUCCESS Image Base: 0x75040000, Image Size: 0x45000 97 12:38:30,8068870 MCLauncher.exe 84 Load Image C:\Windows\SysWOW64\advapi32.dll SUCCESS Image Base: 0x75560000, Image Size: 0x77000 97 12:38:30,8069823 MCLauncher.exe 84 Load Image C:\Windows\SysWOW64\shlwapi.dll SUCCESS Image Base: 0x75c90000, Image Size: 0x46000 97 12:38:30,8070762 MCLauncher.exe 84 Load Image C:\Windows\SysWOW64\kernel.appcore.dll SUCCESS Image Base: 0x74b30000, Image Size: 0xd000 97 12:38:30,8071560 MCLauncher.exe 84 Load Image C:\Windows\SysWOW64\SHCore.dll SUCCESS Image Base: 0x74e60000, Image Size: 0x88000 97 12:38:30,8072455 MCLauncher.exe 84 Load Image C:\Windows\SysWOW64\profapi.dll SUCCESS Image Base: 0x774f0000, Image Size: 0xf000 97 12:38:30,8073333 MCLauncher.exe 84 Load Image C:\Windows\SysWOW64\oleaut32.dll SUCCESS Image Base: 0x77800000, Image Size: 0x94000 97 12:38:30,8074059 MCLauncher.exe 84 Load Image C:\Windows\SysWOW64\msvcp_win.dll SUCCESS Image Base: 0x77780000, Image Size: 0x7b000 97 12:38:30,8075237 MCLauncher.exe 84 Load Image C:\Windows\SysWOW64\setupapi.dll SUCCESS Image Base: 0x770c0000, Image Size: 0x40b000 97 12:38:30,8075929 MCLauncher.exe 84 CloseFile C:\Windows\AppPatch\AcLayers.dll SUCCESS 97 12:38:30,8088494 MCLauncher.exe 84 CreateFile C:\Windows\SysWOW64\mpr.dll SUCCESS Desired Access: Read Attributes, Disposition: Open, Options: Open Reparse Point, Attributes: n/a, ShareMode: Read, Write, Delete, AllocationSize: n/a, OpenResult: Opened 97 12:38:30,8088779 MCLauncher.exe 84 QueryBasicInformationFile C:\Windows\SysWOW64\mpr.dll SUCCESS CreationTime: 20.07.2018 1:34:06, LastAccessTime: 20.07.2018 1:34:06, LastWriteTime: 08.08.2017 8:16:23, ChangeTime: 20.07.2018 19:25:15, FileAttributes: A 97 12:38:30,8088876 MCLauncher.exe 84 CloseFile C:\Windows\SysWOW64\mpr.dll SUCCESS 97 12:38:30,8089871 MCLauncher.exe 84 CreateFile C:\Windows\SysWOW64\mpr.dll SUCCESS Desired Access: Read Data/List Directory, Execute/Traverse, Synchronize, Disposition: Open, Options: Synchronous IO Non-Alert, Non-Directory File, Attributes: n/a, ShareMode: Read, Delete, AllocationSize: n/a, OpenResult: Opened 97 12:38:30,8090151 MCLauncher.exe 84 CreateFileMapping C:\Windows\SysWOW64\mpr.dll FILE LOCKED WITH ONLY READERS SyncType: SyncTypeCreateSection, PageProtection: PAGE_EXECUTE|PAGE_NOCACHE 97 12:38:30,8090289 MCLauncher.exe 84 QueryNameInformationFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Name: \Users\User\Downloads\MCLauncher.exe 97 12:38:30,8091195 MCLauncher.exe 84 CreateFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Desired Access: Synchronize, Disposition: Open, Options: Synchronous IO Non-Alert, Attributes: N, ShareMode: Read, Write, Delete, AllocationSize: n/a, OpenResult: Opened 97 12:38:30,8091386 MCLauncher.exe 84 CloseFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS 97 12:38:30,8091677 MCLauncher.exe 84 QueryNameInformationFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Name: \Users\User\Downloads\MCLauncher.exe 97 12:38:30,8092547 MCLauncher.exe 84 CreateFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Desired Access: Synchronize, Disposition: Open, Options: Synchronous IO Non-Alert, Attributes: N, ShareMode: Read, Write, Delete, AllocationSize: n/a, OpenResult: Opened 97 12:38:30,8092716 MCLauncher.exe 84 CloseFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS 97 12:38:30,8093431 MCLauncher.exe 84 CreateFileMapping C:\Windows\SysWOW64\mpr.dll SUCCESS SyncType: SyncTypeOther 97 12:38:30,8094068 MCLauncher.exe 84 Load Image C:\Windows\SysWOW64\mpr.dll SUCCESS Image Base: 0x74710000, Image Size: 0x16000 97 12:38:30,8094583 MCLauncher.exe 84 CloseFile C:\Windows\SysWOW64\mpr.dll SUCCESS 97 12:38:30,8097747 MCLauncher.exe 84 CreateFile C:\Windows\SysWOW64\sfc.dll SUCCESS Desired Access: Read Attributes, Disposition: Open, Options: Open Reparse Point, Attributes: n/a, ShareMode: Read, Write, Delete, AllocationSize: n/a, OpenResult: Opened 97 12:38:30,8098005 MCLauncher.exe 84 QueryBasicInformationFile C:\Windows\SysWOW64\sfc.dll SUCCESS CreationTime: 16.07.2016 14:42:45, LastAccessTime: 16.07.2016 14:42:45, LastWriteTime: 16.07.2016 14:42:45, ChangeTime: 19.07.2018 19:38:51, FileAttributes: A 97 12:38:30,8098088 MCLauncher.exe 84 CloseFile C:\Windows\SysWOW64\sfc.dll SUCCESS 97 12:38:30,8099174 MCLauncher.exe 84 CreateFile C:\Windows\SysWOW64\sfc.dll SUCCESS Desired Access: Read Data/List Directory, Execute/Traverse, Synchronize, Disposition: Open, Options: Synchronous IO Non-Alert, Non-Directory File, Attributes: n/a, ShareMode: Read, Delete, AllocationSize: n/a, OpenResult: Opened 97 12:38:30,8099443 MCLauncher.exe 84 CreateFileMapping C:\Windows\SysWOW64\sfc.dll FILE LOCKED WITH ONLY READERS SyncType: SyncTypeCreateSection, PageProtection: PAGE_EXECUTE|PAGE_NOCACHE 97 12:38:30,8099562 MCLauncher.exe 84 QueryNameInformationFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Name: \Users\User\Downloads\MCLauncher.exe 97 12:38:30,8100452 MCLauncher.exe 84 CreateFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Desired Access: Synchronize, Disposition: Open, Options: Synchronous IO Non-Alert, Attributes: N, ShareMode: Read, Write, Delete, AllocationSize: n/a, OpenResult: Opened 97 12:38:30,8100634 MCLauncher.exe 84 CloseFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS 97 12:38:30,8100914 MCLauncher.exe 84 QueryNameInformationFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Name: \Users\User\Downloads\MCLauncher.exe 97 12:38:30,8101773 MCLauncher.exe 84 CreateFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Desired Access: Synchronize, Disposition: Open, Options: Synchronous IO Non-Alert, Attributes: N, ShareMode: Read, Write, Delete, AllocationSize: n/a, OpenResult: Opened 97 12:38:30,8101942 MCLauncher.exe 84 CloseFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS 97 12:38:30,8102687 MCLauncher.exe 84 CreateFileMapping C:\Windows\SysWOW64\sfc.dll SUCCESS SyncType: SyncTypeOther 97 12:38:30,8103192 MCLauncher.exe 84 Load Image C:\Windows\SysWOW64\sfc.dll SUCCESS Image Base: 0x66680000, Image Size: 0x3000 97 12:38:30,8103433 MCLauncher.exe 84 CloseFile C:\Windows\SysWOW64\sfc.dll SUCCESS 97 12:38:30,8106043 MCLauncher.exe 84 CreateFile C:\Windows\SysWOW64\winspool.drv SUCCESS Desired Access: Read Attributes, Disposition: Open, Options: Open Reparse Point, Attributes: n/a, ShareMode: Read, Write, Delete, AllocationSize: n/a, OpenResult: Opened 97 12:38:30,8106297 MCLauncher.exe 84 QueryBasicInformationFile C:\Windows\SysWOW64\winspool.drv SUCCESS CreationTime: 20.07.2018 1:35:14, LastAccessTime: 20.07.2018 1:35:14, LastWriteTime: 13.02.2018 0:51:43, ChangeTime: 20.07.2018 19:23:48, FileAttributes: A 97 12:38:30,8106378 MCLauncher.exe 84 CloseFile C:\Windows\SysWOW64\winspool.drv SUCCESS 97 12:38:30,8107342 MCLauncher.exe 84 CreateFile C:\Windows\SysWOW64\winspool.drv SUCCESS Desired Access: Read Data/List Directory, Execute/Traverse, Synchronize, Disposition: Open, Options: Synchronous IO Non-Alert, Non-Directory File, Attributes: n/a, ShareMode: Read, Delete, AllocationSize: n/a, OpenResult: Opened 97 12:38:30,8107611 MCLauncher.exe 84 CreateFileMapping C:\Windows\SysWOW64\winspool.drv FILE LOCKED WITH ONLY READERS SyncType: SyncTypeCreateSection, PageProtection: PAGE_EXECUTE|PAGE_NOCACHE 97 12:38:30,8107724 MCLauncher.exe 84 QueryNameInformationFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Name: \Users\User\Downloads\MCLauncher.exe 97 12:38:30,8108597 MCLauncher.exe 84 CreateFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Desired Access: Synchronize, Disposition: Open, Options: Synchronous IO Non-Alert, Attributes: N, ShareMode: Read, Write, Delete, AllocationSize: n/a, OpenResult: Opened 97 12:38:30,8108777 MCLauncher.exe 84 CloseFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS 97 12:38:30,8109049 MCLauncher.exe 84 QueryNameInformationFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Name: \Users\User\Downloads\MCLauncher.exe 97 12:38:30,8109905 MCLauncher.exe 84 CreateFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Desired Access: Synchronize, Disposition: Open, Options: Synchronous IO Non-Alert, Attributes: N, ShareMode: Read, Write, Delete, AllocationSize: n/a, OpenResult: Opened 97 12:38:30,8110071 MCLauncher.exe 84 CloseFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS 97 12:38:30,8110703 MCLauncher.exe 84 CreateFileMapping C:\Windows\SysWOW64\winspool.drv SUCCESS SyncType: SyncTypeOther 97 12:38:30,8111223 MCLauncher.exe 84 Load Image C:\Windows\SysWOW64\winspool.drv SUCCESS Image Base: 0x700d0000, Image Size: 0x6a000 97 12:38:30,8111883 MCLauncher.exe 84 CloseFile C:\Windows\SysWOW64\winspool.drv SUCCESS 97 12:38:30,8115144 MCLauncher.exe 84 CreateFile C:\Windows\SysWOW64\bcrypt.dll SUCCESS Desired Access: Read Attributes, Disposition: Open, Options: Open Reparse Point, Attributes: n/a, ShareMode: Read, Write, Delete, AllocationSize: n/a, OpenResult: Opened 97 12:38:30,8115401 MCLauncher.exe 84 QueryBasicInformationFile C:\Windows\SysWOW64\bcrypt.dll SUCCESS CreationTime: 20.07.2018 1:33:32, LastAccessTime: 20.07.2018 1:33:32, LastWriteTime: 09.12.2016 13:00:58, ChangeTime: 20.07.2018 19:44:33, FileAttributes: A 97 12:38:30,8115487 MCLauncher.exe 84 CloseFile C:\Windows\SysWOW64\bcrypt.dll SUCCESS 97 12:38:30,8116526 MCLauncher.exe 84 CreateFile C:\Windows\SysWOW64\bcrypt.dll SUCCESS Desired Access: Read Data/List Directory, Execute/Traverse, Synchronize, Disposition: Open, Options: Synchronous IO Non-Alert, Non-Directory File, Attributes: n/a, ShareMode: Read, Delete, AllocationSize: n/a, OpenResult: Opened 97 12:38:30,8116801 MCLauncher.exe 84 CreateFileMapping C:\Windows\SysWOW64\bcrypt.dll FILE LOCKED WITH ONLY READERS SyncType: SyncTypeCreateSection, PageProtection: PAGE_EXECUTE|PAGE_NOCACHE 97 12:38:30,8116920 MCLauncher.exe 84 QueryNameInformationFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Name: \Users\User\Downloads\MCLauncher.exe 97 12:38:30,8117795 MCLauncher.exe 84 CreateFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Desired Access: Synchronize, Disposition: Open, Options: Synchronous IO Non-Alert, Attributes: N, ShareMode: Read, Write, Delete, AllocationSize: n/a, OpenResult: Opened 97 12:38:30,8117973 MCLauncher.exe 84 CloseFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS 97 12:38:30,8118250 MCLauncher.exe 84 QueryNameInformationFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Name: \Users\User\Downloads\MCLauncher.exe 97 12:38:30,8119103 MCLauncher.exe 84 CreateFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Desired Access: Synchronize, Disposition: Open, Options: Synchronous IO Non-Alert, Attributes: N, ShareMode: Read, Write, Delete, AllocationSize: n/a, OpenResult: Opened 97 12:38:30,8119269 MCLauncher.exe 84 CloseFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS 97 12:38:30,8119906 MCLauncher.exe 84 CreateFileMapping C:\Windows\SysWOW64\bcrypt.dll SUCCESS SyncType: SyncTypeOther 97 12:38:30,8120411 MCLauncher.exe 84 Load Image C:\Windows\SysWOW64\bcrypt.dll SUCCESS Image Base: 0x74190000, Image Size: 0x1b000 97 12:38:30,8120846 MCLauncher.exe 84 CloseFile C:\Windows\SysWOW64\bcrypt.dll SUCCESS 97 12:38:30,8123356 MCLauncher.exe 84 CreateFile C:\Windows\SysWOW64\sfc_os.dll SUCCESS Desired Access: Read Attributes, Disposition: Open, Options: Open Reparse Point, Attributes: n/a, ShareMode: Read, Write, Delete, AllocationSize: n/a, OpenResult: Opened 97 12:38:30,8123611 MCLauncher.exe 84 QueryBasicInformationFile C:\Windows\SysWOW64\sfc_os.dll SUCCESS CreationTime: 16.07.2016 14:42:45, LastAccessTime: 16.07.2016 14:42:45, LastWriteTime: 16.07.2016 14:42:45, ChangeTime: 19.07.2018 19:38:51, FileAttributes: A 97 12:38:30,8123688 MCLauncher.exe 84 CloseFile C:\Windows\SysWOW64\sfc_os.dll SUCCESS 97 12:38:30,8124666 MCLauncher.exe 84 CreateFile C:\Windows\SysWOW64\sfc_os.dll SUCCESS Desired Access: Read Data/List Directory, Execute/Traverse, Synchronize, Disposition: Open, Options: Synchronous IO Non-Alert, Non-Directory File, Attributes: n/a, ShareMode: Read, Delete, AllocationSize: n/a, OpenResult: Opened 97 12:38:30,8124932 MCLauncher.exe 84 CreateFileMapping C:\Windows\SysWOW64\sfc_os.dll FILE LOCKED WITH ONLY READERS SyncType: SyncTypeCreateSection, PageProtection: PAGE_EXECUTE|PAGE_NOCACHE 97 12:38:30,8125046 MCLauncher.exe 84 QueryNameInformationFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Name: \Users\User\Downloads\MCLauncher.exe 97 12:38:30,8125910 MCLauncher.exe 84 CreateFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Desired Access: Synchronize, Disposition: Open, Options: Synchronous IO Non-Alert, Attributes: N, ShareMode: Read, Write, Delete, AllocationSize: n/a, OpenResult: Opened 97 12:38:30,8126088 MCLauncher.exe 84 CloseFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS 97 12:38:30,8126354 MCLauncher.exe 84 QueryNameInformationFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Name: \Users\User\Downloads\MCLauncher.exe 97 12:38:30,8127207 MCLauncher.exe 84 CreateFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Desired Access: Synchronize, Disposition: Open, Options: Synchronous IO Non-Alert, Attributes: N, ShareMode: Read, Write, Delete, AllocationSize: n/a, OpenResult: Opened 97 12:38:30,8127376 MCLauncher.exe 84 CloseFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS 97 12:38:30,8128005 MCLauncher.exe 84 CreateFileMapping C:\Windows\SysWOW64\sfc_os.dll SUCCESS SyncType: SyncTypeOther 97 12:38:30,8128503 MCLauncher.exe 84 Load Image C:\Windows\SysWOW64\sfc_os.dll SUCCESS Image Base: 0x67690000, Image Size: 0xf000 97 12:38:30,8128950 MCLauncher.exe 84 CloseFile C:\Windows\SysWOW64\sfc_os.dll SUCCESS 97 12:38:30,8133352 MCLauncher.exe 84 CreateFile C:\Windows\AppPatch\AcLayers.dll SUCCESS Desired Access: Read Attributes, Disposition: Open, Options: Open Reparse Point, Attributes: n/a, ShareMode: Read, Write, Delete, AllocationSize: n/a, OpenResult: Opened 97 12:38:30,8133665 MCLauncher.exe 84 QueryBasicInformationFile C:\Windows\AppPatch\AcLayers.dll SUCCESS CreationTime: 20.07.2018 1:33:29, LastAccessTime: 20.07.2018 1:33:29, LastWriteTime: 04.03.2017 9:24:10, ChangeTime: 20.07.2018 19:24:49, FileAttributes: A 97 12:38:30,8133754 MCLauncher.exe 84 CloseFile C:\Windows\AppPatch\AcLayers.dll SUCCESS 97 12:38:30,8135965 MCLauncher.exe 84 CreateFile C:\Windows\AppPatch\AcLayers.dll SUCCESS Desired Access: Read Attributes, Disposition: Open, Options: Open Reparse Point, Attributes: n/a, ShareMode: Read, Write, Delete, AllocationSize: n/a, OpenResult: Opened 97 12:38:30,8136186 MCLauncher.exe 84 QueryBasicInformationFile C:\Windows\AppPatch\AcLayers.dll SUCCESS CreationTime: 20.07.2018 1:33:29, LastAccessTime: 20.07.2018 1:33:29, LastWriteTime: 04.03.2017 9:24:10, ChangeTime: 20.07.2018 19:24:49, FileAttributes: A 97 12:38:30,8136264 MCLauncher.exe 84 CloseFile C:\Windows\AppPatch\AcLayers.dll SUCCESS 97 12:38:30,8137267 MCLauncher.exe 84 RegQueryValue HKLM\System\CurrentControlSet\Control\{7746D80F-97E0-4E26-9543-26B41FC22F79}\{59AEE675-B203-4D61-9A1F-04518A20F359}\570069006E0064006F00770073004500780063006C007500640065006400500072006F00630073000000 NAME NOT FOUND Length: 0 97 12:38:30,8137378 MCLauncher.exe 84 RegQueryValue HKLM\System\CurrentControlSet\Control\{7746D80F-97E0-4E26-9543-26B41FC22F79}\{59AEE675-B203-4D61-9A1F-04518A20F359}\570069006E0064006F00770073004500780063006C007500640065006400500072006F00630073000000 NAME NOT FOUND Length: 0 97 12:38:30,8137441 MCLauncher.exe 84 RegQueryValue HKLM\System\CurrentControlSet\Control\{7746D80F-97E0-4E26-9543-26B41FC22F79}\{59AEE675-B203-4D61-9A1F-04518A20F359}\4B00650072006E0065006C002D004D00550049002D004E0075006D006200650072002D0041006C006C006F007700650064000000 NAME NOT FOUND Length: 0 97 12:38:30,8137505 MCLauncher.exe 84 RegQueryValue HKLM\System\CurrentControlSet\Control\{7746D80F-97E0-4E26-9543-26B41FC22F79}\{59AEE675-B203-4D61-9A1F-04518A20F359}\4B00650072006E0065006C002D004D00550049002D004E0075006D006200650072002D0041006C006C006F007700650064000000 NAME NOT FOUND Length: 0 97 12:38:30,8137566 MCLauncher.exe 84 RegQueryValue HKLM\System\CurrentControlSet\Control\{7746D80F-97E0-4E26-9543-26B41FC22F79}\{59AEE675-B203-4D61-9A1F-04518A20F359}\4B00650072006E0065006C002D004D00550049002D004C0061006E00670075006100670065002D0041006C006C006F007700650064000000 NAME NOT FOUND Length: 0 97 12:38:30,8137619 MCLauncher.exe 84 RegQueryValue HKLM\System\CurrentControlSet\Control\{7746D80F-97E0-4E26-9543-26B41FC22F79}\{59AEE675-B203-4D61-9A1F-04518A20F359}\4B00650072006E0065006C002D004D00550049002D004C0061006E00670075006100670065002D0041006C006C006F007700650064000000 NAME NOT FOUND Length: 0 97 12:38:30,8137777 MCLauncher.exe 84 RegOpenKey HKLM\SYSTEM\CurrentControlSet\Control\Nls\CustomLocale REPARSE Desired Access: Query Value 97 12:38:30,8137879 MCLauncher.exe 84 RegOpenKey HKLM\System\CurrentControlSet\Control\Nls\CustomLocale SUCCESS Desired Access: Query Value 97 12:38:30,8137990 MCLauncher.exe 84 RegSetInfoKey HKLM\System\CurrentControlSet\Control\Nls\CustomLocale SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 97 12:38:30,8138043 MCLauncher.exe 84 RegQueryValue HKLM\System\CurrentControlSet\Control\Nls\CustomLocale\EMPTY NAME NOT FOUND Length: 120 97 12:38:30,8138259 MCLauncher.exe 84 RegQueryValue HKLM\System\CurrentControlSet\Control\{7746D80F-97E0-4E26-9543-26B41FC22F79}\{59AEE675-B203-4D61-9A1F-04518A20F359}\4B00650072006E0065006C002D004D00550049002D004C0061006E00670075006100670065002D0044006900730061006C006C006F007700650064000000 NAME NOT FOUND Length: 0 97 12:38:30,8138328 MCLauncher.exe 84 RegQueryValue HKLM\System\CurrentControlSet\Control\{7746D80F-97E0-4E26-9543-26B41FC22F79}\{59AEE675-B203-4D61-9A1F-04518A20F359}\4B00650072006E0065006C002D004D00550049002D004C0061006E00670075006100670065002D0044006900730061006C006C006F007700650064000000 NAME NOT FOUND Length: 0 97 12:38:30,8138386 MCLauncher.exe 84 RegQueryValue HKLM\System\CurrentControlSet\Control\Nls\CustomLocale\EMPTY NAME NOT FOUND Length: 120 97 12:38:30,8138508 MCLauncher.exe 84 RegQueryValue HKLM\System\CurrentControlSet\Control\{7746D80F-97E0-4E26-9543-26B41FC22F79}\{59AEE675-B203-4D61-9A1F-04518A20F359}\4B00650072006E0065006C002D004D00550049002D004C0061006E00670075006100670065002D0053004B0055000000 NAME NOT FOUND Length: 0 97 12:38:30,8138574 MCLauncher.exe 84 RegQueryValue HKLM\System\CurrentControlSet\Control\{7746D80F-97E0-4E26-9543-26B41FC22F79}\{59AEE675-B203-4D61-9A1F-04518A20F359}\4B00650072006E0065006C002D004D00550049002D004C0061006E00670075006100670065002D0053004B0055000000 NAME NOT FOUND Length: 0 97 12:38:30,8139021 MCLauncher.exe 84 RegOpenKey HKLM\System\CurrentControlSet\Control\NLS\Language REPARSE Desired Access: Read 97 12:38:30,8139090 MCLauncher.exe 84 RegOpenKey HKLM\System\CurrentControlSet\Control\NLS\Language SUCCESS Desired Access: Read 97 12:38:30,8139176 MCLauncher.exe 84 RegSetInfoKey HKLM\System\CurrentControlSet\Control\Nls\Language SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 97 12:38:30,8139223 MCLauncher.exe 84 RegQueryValue HKLM\System\CurrentControlSet\Control\Nls\Language\InstallLanguageFallback BUFFER OVERFLOW Length: 16 97 12:38:30,8139419 MCLauncher.exe 84 RegCloseKey HKLM\System\CurrentControlSet\Control\Nls\Language SUCCESS 97 12:38:30,8139511 MCLauncher.exe 84 RegOpenKey HKLM\System\CurrentControlSet\Control\MUI\UILanguages REPARSE Desired Access: Read 97 12:38:30,8139575 MCLauncher.exe 84 RegOpenKey HKLM\System\CurrentControlSet\Control\MUI\UILanguages SUCCESS Desired Access: Read 97 12:38:30,8139652 MCLauncher.exe 84 RegSetInfoKey HKLM\System\CurrentControlSet\Control\MUI\UILanguages SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 97 12:38:30,8139702 MCLauncher.exe 84 RegEnumKey HKLM\System\CurrentControlSet\Control\MUI\UILanguages SUCCESS Index: 0, Name: en-US 97 12:38:30,8139802 MCLauncher.exe 84 RegQueryKey HKLM\System\CurrentControlSet\Control\MUI\UILanguages SUCCESS Query: HandleTags, HandleTags: 0x400 97 12:38:30,8139866 MCLauncher.exe 84 RegOpenKey HKLM\System\CurrentControlSet\Control\MUI\UILanguages\en-US SUCCESS Desired Access: Read 97 12:38:30,8139949 MCLauncher.exe 84 RegQueryValue HKLM\System\CurrentControlSet\Control\MUI\UILanguages\en-US\Type SUCCESS Type: REG_DWORD, Length: 4, Data: 273 97 12:38:30,8140281 MCLauncher.exe 84 RegQueryValue HKLM\System\CurrentControlSet\Control\MUI\UILanguages\en-US\AlternateCodePage NAME NOT FOUND Length: 12 97 12:38:30,8140406 MCLauncher.exe 84 RegCloseKey HKLM\System\CurrentControlSet\Control\MUI\UILanguages\en-US SUCCESS 97 12:38:30,8140456 MCLauncher.exe 84 RegEnumKey HKLM\System\CurrentControlSet\Control\MUI\UILanguages SUCCESS Index: 1, Name: ru-RU 97 12:38:30,8140542 MCLauncher.exe 84 RegQueryKey HKLM\System\CurrentControlSet\Control\MUI\UILanguages SUCCESS Query: HandleTags, HandleTags: 0x400 97 12:38:30,8140603 MCLauncher.exe 84 RegOpenKey HKLM\System\CurrentControlSet\Control\MUI\UILanguages\ru-RU SUCCESS Desired Access: Read 97 12:38:30,8140680 MCLauncher.exe 84 RegQueryValue HKLM\System\CurrentControlSet\Control\MUI\UILanguages\ru-RU\Type SUCCESS Type: REG_DWORD, Length: 4, Data: 146 97 12:38:30,8140899 MCLauncher.exe 84 RegQueryValue HKLM\System\CurrentControlSet\Control\MUI\UILanguages\ru-RU\DefaultFallback SUCCESS Type: REG_SZ, Length: 12, Data: en-US 97 12:38:30,8141021 MCLauncher.exe 84 RegQueryValue HKLM\System\CurrentControlSet\Control\MUI\UILanguages\ru-RU\en-US SUCCESS Type: REG_MULTI_SZ, Length: 4, Data: 97 12:38:30,8141151 MCLauncher.exe 84 RegEnumValue HKLM\System\CurrentControlSet\Control\MUI\UILanguages\ru-RU SUCCESS Index: 0, Name: DefaultFallback, Type: REG_SZ, Length: 12, Data: en-US 97 12:38:30,8141212 MCLauncher.exe 84 RegEnumValue HKLM\System\CurrentControlSet\Control\MUI\UILanguages\ru-RU SUCCESS Index: 1, Name: en-US, Type: REG_MULTI_SZ, Length: 4, Data: 97 12:38:30,8141265 MCLauncher.exe 84 RegEnumValue HKLM\System\CurrentControlSet\Control\MUI\UILanguages\ru-RU SUCCESS Index: 2, Name: LCID, Type: REG_DWORD, Length: 4, Data: 1049 97 12:38:30,8141312 MCLauncher.exe 84 RegEnumValue HKLM\System\CurrentControlSet\Control\MUI\UILanguages\ru-RU SUCCESS Index: 3, Name: Type, Type: REG_DWORD, Length: 4, Data: 146 97 12:38:30,8141356 MCLauncher.exe 84 RegEnumValue HKLM\System\CurrentControlSet\Control\MUI\UILanguages\ru-RU NO MORE ENTRIES Index: 4, Length: 512 97 12:38:30,8141406 MCLauncher.exe 84 RegQueryValue HKLM\System\CurrentControlSet\Control\MUI\UILanguages\ru-RU\AlternateCodePage NAME NOT FOUND Length: 12 97 12:38:30,8141544 MCLauncher.exe 84 RegCloseKey HKLM\System\CurrentControlSet\Control\MUI\UILanguages\ru-RU SUCCESS 97 12:38:30,8141589 MCLauncher.exe 84 RegEnumKey HKLM\System\CurrentControlSet\Control\MUI\UILanguages NO MORE ENTRIES Index: 2, Length: 512 97 12:38:30,8141639 MCLauncher.exe 84 RegCloseKey HKLM\System\CurrentControlSet\Control\MUI\UILanguages SUCCESS 97 12:38:30,8141727 MCLauncher.exe 84 RegOpenKey HKLM\System\CurrentControlSet\Control\MUI\UILanguages\PendingDelete REPARSE Desired Access: Read 97 12:38:30,8141797 MCLauncher.exe 84 RegOpenKey HKLM\System\CurrentControlSet\Control\MUI\UILanguages\PendingDelete NAME NOT FOUND Desired Access: Read 97 12:38:30,8141910 MCLauncher.exe 84 RegOpenKey HKLM\Software\WOW6432Node\Policies\Microsoft\MUI\Settings REPARSE Desired Access: Read 97 12:38:30,8141993 MCLauncher.exe 84 RegOpenKey HKLM\SOFTWARE\Policies\Microsoft\MUI\Settings NAME NOT FOUND Desired Access: Read 97 12:38:30,8142118 MCLauncher.exe 84 RegOpenKey HKCU SUCCESS Desired Access: Maximum Allowed, Granted Access: All Access 97 12:38:30,8142237 MCLauncher.exe 84 RegQueryKey HKCU SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:30,8142290 MCLauncher.exe 84 RegQueryKey HKCU SUCCESS Query: Name 97 12:38:30,8142365 MCLauncher.exe 84 RegOpenKey HKCU\Control Panel\Desktop\MuiCached\MachineLanguageConfiguration NAME NOT FOUND Desired Access: Read 97 12:38:30,8142484 MCLauncher.exe 84 RegOpenKey HKLM\System\CurrentControlSet\Control\MUI\Settings\LanguageConfiguration REPARSE Desired Access: Read 97 12:38:30,8142539 MCLauncher.exe 84 RegOpenKey HKLM\System\CurrentControlSet\Control\MUI\Settings\LanguageConfiguration SUCCESS Desired Access: Read 97 12:38:30,8142619 MCLauncher.exe 84 RegSetInfoKey HKLM\System\CurrentControlSet\Control\MUI\Settings\LanguageConfiguration SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 97 12:38:30,8142661 MCLauncher.exe 84 RegEnumValue HKLM\System\CurrentControlSet\Control\MUI\Settings\LanguageConfiguration NO MORE ENTRIES Index: 0, Length: 512 97 12:38:30,8145700 MCLauncher.exe 84 RegCloseKey HKLM\System\CurrentControlSet\Control\MUI\Settings\LanguageConfiguration SUCCESS 97 12:38:30,8145764 MCLauncher.exe 84 RegCloseKey HKCU SUCCESS 97 12:38:30,8145864 MCLauncher.exe 84 RegOpenKey HKLM\Software\WOW6432Node\Policies\Microsoft\MUI\Settings REPARSE Desired Access: Read 97 12:38:30,8145941 MCLauncher.exe 84 RegOpenKey HKLM\SOFTWARE\Policies\Microsoft\MUI\Settings NAME NOT FOUND Desired Access: Read 97 12:38:30,8146041 MCLauncher.exe 84 RegOpenKey HKCU SUCCESS Desired Access: Maximum Allowed, Granted Access: All Access 97 12:38:30,8146146 MCLauncher.exe 84 RegQueryKey HKCU SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:30,8146202 MCLauncher.exe 84 RegQueryKey HKCU SUCCESS Query: Name 97 12:38:30,8146274 MCLauncher.exe 84 RegOpenKey HKCU\Software\Policies\Microsoft\Control Panel\Desktop NAME NOT FOUND Desired Access: Read 97 12:38:30,8146385 MCLauncher.exe 84 RegQueryKey HKCU SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:30,8146432 MCLauncher.exe 84 RegQueryKey HKCU SUCCESS Query: Name 97 12:38:30,8146498 MCLauncher.exe 84 RegOpenKey HKCU\Control Panel\Desktop\LanguageConfiguration SUCCESS Desired Access: Read 97 12:38:30,8146581 MCLauncher.exe 84 RegSetInfoKey HKCU\Control Panel\Desktop\LanguageConfiguration SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 97 12:38:30,8146626 MCLauncher.exe 84 RegEnumValue HKCU\Control Panel\Desktop\LanguageConfiguration NO MORE ENTRIES Index: 0, Length: 512 97 12:38:30,8146681 MCLauncher.exe 84 RegCloseKey HKCU\Control Panel\Desktop\LanguageConfiguration SUCCESS 97 12:38:30,8146720 MCLauncher.exe 84 RegCloseKey HKCU SUCCESS 97 12:38:30,8146784 MCLauncher.exe 84 RegOpenKey HKLM\Software\WOW6432Node\Policies\Microsoft\MUI\Settings REPARSE Desired Access: Read 97 12:38:30,8146842 MCLauncher.exe 84 RegOpenKey HKLM\SOFTWARE\Policies\Microsoft\MUI\Settings NAME NOT FOUND Desired Access: Read 97 12:38:30,8146919 MCLauncher.exe 84 RegOpenKey HKCU SUCCESS Desired Access: Maximum Allowed, Granted Access: All Access 97 12:38:30,8147000 MCLauncher.exe 84 RegQueryKey HKCU SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:30,8147050 MCLauncher.exe 84 RegQueryKey HKCU SUCCESS Query: Name 97 12:38:30,8147113 MCLauncher.exe 84 RegOpenKey HKCU\Software\Policies\Microsoft\Control Panel\Desktop NAME NOT FOUND Desired Access: Read 97 12:38:30,8147194 MCLauncher.exe 84 RegQueryKey HKCU SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:30,8147238 MCLauncher.exe 84 RegQueryKey HKCU SUCCESS Query: Name 97 12:38:30,8147304 MCLauncher.exe 84 RegOpenKey HKCU\Control Panel\Desktop SUCCESS Desired Access: Read 97 12:38:30,8147365 MCLauncher.exe 84 RegSetInfoKey HKCU\Control Panel\Desktop SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 97 12:38:30,8147410 MCLauncher.exe 84 RegQueryValue HKCU\Control Panel\Desktop\PreferredUILanguages NAME NOT FOUND Length: 12 97 12:38:30,8147565 MCLauncher.exe 84 RegCloseKey HKCU\Control Panel\Desktop SUCCESS 97 12:38:30,8147609 MCLauncher.exe 84 RegCloseKey HKCU SUCCESS 97 12:38:30,8147687 MCLauncher.exe 84 RegOpenKey HKLM\Software\WOW6432Node\Policies\Microsoft\MUI\Settings REPARSE Desired Access: Read 97 12:38:30,8147751 MCLauncher.exe 84 RegOpenKey HKLM\SOFTWARE\Policies\Microsoft\MUI\Settings NAME NOT FOUND Desired Access: Read 97 12:38:30,8147836 MCLauncher.exe 84 RegOpenKey HKCU SUCCESS Desired Access: Maximum Allowed, Granted Access: All Access 97 12:38:30,8147922 MCLauncher.exe 84 RegQueryKey HKCU SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:30,8147969 MCLauncher.exe 84 RegQueryKey HKCU SUCCESS Query: Name 97 12:38:30,8148036 MCLauncher.exe 84 RegOpenKey HKCU\Control Panel\Desktop\MuiCached SUCCESS Desired Access: Read 97 12:38:30,8148119 MCLauncher.exe 84 RegSetInfoKey HKCU\Control Panel\Desktop\MuiCached SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 97 12:38:30,8148161 MCLauncher.exe 84 RegQueryValue HKCU\Control Panel\Desktop\MuiCached\MachinePreferredUILanguages BUFFER OVERFLOW Length: 12 97 12:38:30,8148280 MCLauncher.exe 84 RegQueryValue HKCU\Control Panel\Desktop\MuiCached\MachinePreferredUILanguages SUCCESS Type: REG_MULTI_SZ, Length: 12, Data: ru-RU 97 12:38:30,8148418 MCLauncher.exe 84 RegCloseKey HKCU\Control Panel\Desktop\MuiCached SUCCESS 97 12:38:30,8148463 MCLauncher.exe 84 RegCloseKey HKCU SUCCESS 97 12:38:30,8148573 MCLauncher.exe 84 RegOpenKey HKLM\Software\WOW6432Node\Policies\Microsoft\MUI\Settings REPARSE Desired Access: Read 97 12:38:30,8148640 MCLauncher.exe 84 RegOpenKey HKLM\SOFTWARE\Policies\Microsoft\MUI\Settings NAME NOT FOUND Desired Access: Read 97 12:38:30,8148726 MCLauncher.exe 84 RegOpenKey HKCU SUCCESS Desired Access: Maximum Allowed, Granted Access: All Access 97 12:38:30,8148809 MCLauncher.exe 84 RegQueryKey HKCU SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:30,8148856 MCLauncher.exe 84 RegQueryKey HKCU SUCCESS Query: Name 97 12:38:30,8148923 MCLauncher.exe 84 RegOpenKey HKCU\Software\Policies\Microsoft\Control Panel\Desktop NAME NOT FOUND Desired Access: Read 97 12:38:30,8149006 MCLauncher.exe 84 RegQueryKey HKCU SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:30,8149050 MCLauncher.exe 84 RegQueryKey HKCU SUCCESS Query: Name 97 12:38:30,8149111 MCLauncher.exe 84 RegOpenKey HKCU\Control Panel\Desktop SUCCESS Desired Access: Read 97 12:38:30,8149177 MCLauncher.exe 84 RegSetInfoKey HKCU\Control Panel\Desktop SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 97 12:38:30,8149219 MCLauncher.exe 84 RegQueryValue HKCU\Control Panel\Desktop\PreferredUILanguages NAME NOT FOUND Length: 12 97 12:38:30,8149344 MCLauncher.exe 84 RegCloseKey HKCU\Control Panel\Desktop SUCCESS 97 12:38:30,8149388 MCLauncher.exe 84 RegCloseKey HKCU SUCCESS 97 12:38:30,8149463 MCLauncher.exe 84 RegOpenKey HKLM\Software\WOW6432Node\Policies\Microsoft\MUI\Settings REPARSE Desired Access: Read 97 12:38:30,8149529 MCLauncher.exe 84 RegOpenKey HKLM\SOFTWARE\Policies\Microsoft\MUI\Settings NAME NOT FOUND Desired Access: Read 97 12:38:30,8149612 MCLauncher.exe 84 RegOpenKey HKCU SUCCESS Desired Access: Maximum Allowed, Granted Access: All Access 97 12:38:30,8149693 MCLauncher.exe 84 RegQueryKey HKCU SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:30,8149740 MCLauncher.exe 84 RegQueryKey HKCU SUCCESS Query: Name 97 12:38:30,8149806 MCLauncher.exe 84 RegOpenKey HKCU\Software\Policies\Microsoft\Control Panel\Desktop NAME NOT FOUND Desired Access: Read 97 12:38:30,8149887 MCLauncher.exe 84 RegQueryKey HKCU SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:30,8149934 MCLauncher.exe 84 RegQueryKey HKCU SUCCESS Query: Name 97 12:38:30,8149995 MCLauncher.exe 84 RegOpenKey HKCU\Control Panel\Desktop\LanguageConfiguration SUCCESS Desired Access: Read 97 12:38:30,8150064 MCLauncher.exe 84 RegSetInfoKey HKCU\Control Panel\Desktop\LanguageConfiguration SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 97 12:38:30,8150106 MCLauncher.exe 84 RegEnumValue HKCU\Control Panel\Desktop\LanguageConfiguration NO MORE ENTRIES Index: 0, Length: 512 97 12:38:30,8150153 MCLauncher.exe 84 RegCloseKey HKCU\Control Panel\Desktop\LanguageConfiguration SUCCESS 97 12:38:30,8150191 MCLauncher.exe 84 RegCloseKey HKCU SUCCESS 97 12:38:30,8152643 MCLauncher.exe 84 CreateFile C:\Windows\SysWOW64\msvcrt.dll SUCCESS Desired Access: Read Control, Disposition: Open, Options: , Attributes: n/a, ShareMode: Read, Delete, AllocationSize: n/a, OpenResult: Opened 97 12:38:30,8152959 MCLauncher.exe 84 QuerySecurityFile C:\Windows\SysWOW64\msvcrt.dll BUFFER OVERFLOW Information: Owner 97 12:38:30,8153045 MCLauncher.exe 84 QuerySecurityFile C:\Windows\SysWOW64\msvcrt.dll SUCCESS Information: Owner 97 12:38:30,8153120 MCLauncher.exe 84 CloseFile C:\Windows\SysWOW64\msvcrt.dll SUCCESS 97 12:38:30,8154336 MCLauncher.exe 84 CreateFile C:\Windows\SysWOW64\win32u.dll SUCCESS Desired Access: Read Control, Disposition: Open, Options: , Attributes: n/a, ShareMode: Read, Delete, AllocationSize: n/a, OpenResult: Opened 97 12:38:30,8154619 MCLauncher.exe 84 QuerySecurityFile C:\Windows\SysWOW64\win32u.dll BUFFER OVERFLOW Information: Owner 97 12:38:30,8154696 MCLauncher.exe 84 QuerySecurityFile C:\Windows\SysWOW64\win32u.dll SUCCESS Information: Owner 97 12:38:30,8154766 MCLauncher.exe 84 CloseFile C:\Windows\SysWOW64\win32u.dll SUCCESS 97 12:38:30,8155766 MCLauncher.exe 84 CreateFile C:\Windows\SysWOW64\gdi32full.dll SUCCESS Desired Access: Read Control, Disposition: Open, Options: , Attributes: n/a, ShareMode: Read, Delete, AllocationSize: n/a, OpenResult: Opened 97 12:38:30,8155962 MCLauncher.exe 84 QuerySecurityFile C:\Windows\SysWOW64\gdi32full.dll BUFFER OVERFLOW Information: Owner 97 12:38:30,8156035 MCLauncher.exe 84 QuerySecurityFile C:\Windows\SysWOW64\gdi32full.dll SUCCESS Information: Owner 97 12:38:30,8156098 MCLauncher.exe 84 CloseFile C:\Windows\SysWOW64\gdi32full.dll SUCCESS 97 12:38:30,8157292 MCLauncher.exe 84 CreateFile C:\Windows\SysWOW64\gdi32.dll SUCCESS Desired Access: Read Control, Disposition: Open, Options: , Attributes: n/a, ShareMode: Read, Delete, AllocationSize: n/a, OpenResult: Opened 97 12:38:30,8157558 MCLauncher.exe 84 QuerySecurityFile C:\Windows\SysWOW64\gdi32.dll BUFFER OVERFLOW Information: Owner 97 12:38:30,8157630 MCLauncher.exe 84 QuerySecurityFile C:\Windows\SysWOW64\gdi32.dll SUCCESS Information: Owner 97 12:38:30,8157694 MCLauncher.exe 84 CloseFile C:\Windows\SysWOW64\gdi32.dll SUCCESS 97 12:38:30,8158714 MCLauncher.exe 84 CreateFile C:\Windows\SysWOW64\user32.dll SUCCESS Desired Access: Read Control, Disposition: Open, Options: , Attributes: n/a, ShareMode: Read, Delete, AllocationSize: n/a, OpenResult: Opened 97 12:38:30,8158974 MCLauncher.exe 84 QuerySecurityFile C:\Windows\SysWOW64\user32.dll BUFFER OVERFLOW Information: Owner 97 12:38:30,8159046 MCLauncher.exe 84 QuerySecurityFile C:\Windows\SysWOW64\user32.dll SUCCESS Information: Owner 97 12:38:30,8159110 MCLauncher.exe 84 CloseFile C:\Windows\SysWOW64\user32.dll SUCCESS 97 12:38:30,8160290 MCLauncher.exe 84 CreateFile C:\Windows\SysWOW64\cfgmgr32.dll SUCCESS Desired Access: Read Control, Disposition: Open, Options: , Attributes: n/a, ShareMode: Read, Delete, AllocationSize: n/a, OpenResult: Opened 97 12:38:30,8160551 MCLauncher.exe 84 QuerySecurityFile C:\Windows\SysWOW64\cfgmgr32.dll BUFFER OVERFLOW Information: Owner 97 12:38:30,8160625 MCLauncher.exe 84 QuerySecurityFile C:\Windows\SysWOW64\cfgmgr32.dll SUCCESS Information: Owner 97 12:38:30,8160686 MCLauncher.exe 84 CloseFile C:\Windows\SysWOW64\cfgmgr32.dll SUCCESS 97 12:38:30,8161698 MCLauncher.exe 84 CreateFile C:\Windows\SysWOW64\ucrtbase.dll SUCCESS Desired Access: Read Control, Disposition: Open, Options: , Attributes: n/a, ShareMode: Read, Delete, AllocationSize: n/a, OpenResult: Opened 97 12:38:30,8162099 MCLauncher.exe 84 QuerySecurityFile C:\Windows\SysWOW64\ucrtbase.dll BUFFER OVERFLOW Information: Owner 97 12:38:30,8162230 MCLauncher.exe 84 QuerySecurityFile C:\Windows\SysWOW64\ucrtbase.dll SUCCESS Information: Owner 97 12:38:30,8162296 MCLauncher.exe 84 CloseFile C:\Windows\SysWOW64\ucrtbase.dll SUCCESS 97 12:38:30,8163374 MCLauncher.exe 84 CreateFile C:\Windows\SysWOW64\bcryptprimitives.dll SUCCESS Desired Access: Read Control, Disposition: Open, Options: , Attributes: n/a, ShareMode: Read, Delete, AllocationSize: n/a, OpenResult: Opened 97 12:38:30,8163568 MCLauncher.exe 84 QuerySecurityFile C:\Windows\SysWOW64\bcryptprimitives.dll BUFFER OVERFLOW Information: Owner 97 12:38:30,8163637 MCLauncher.exe 84 QuerySecurityFile C:\Windows\SysWOW64\bcryptprimitives.dll SUCCESS Information: Owner 97 12:38:30,8163698 MCLauncher.exe 84 CloseFile C:\Windows\SysWOW64\bcryptprimitives.dll SUCCESS 97 12:38:30,8164695 MCLauncher.exe 84 CreateFile C:\Windows\SysWOW64\cryptbase.dll SUCCESS Desired Access: Read Control, Disposition: Open, Options: , Attributes: n/a, ShareMode: Read, Delete, AllocationSize: n/a, OpenResult: Opened 97 12:38:30,8164878 MCLauncher.exe 84 QuerySecurityFile C:\Windows\SysWOW64\cryptbase.dll BUFFER OVERFLOW Information: Owner 97 12:38:30,8164947 MCLauncher.exe 84 QuerySecurityFile C:\Windows\SysWOW64\cryptbase.dll SUCCESS Information: Owner 97 12:38:30,8165011 MCLauncher.exe 84 CloseFile C:\Windows\SysWOW64\cryptbase.dll SUCCESS 97 12:38:30,8165978 MCLauncher.exe 84 CreateFile C:\Windows\SysWOW64\sechost.dll SUCCESS Desired Access: Read Control, Disposition: Open, Options: , Attributes: n/a, ShareMode: Read, Delete, AllocationSize: n/a, OpenResult: Opened 97 12:38:30,8166241 MCLauncher.exe 84 QuerySecurityFile C:\Windows\SysWOW64\sechost.dll BUFFER OVERFLOW Information: Owner 97 12:38:30,8166311 MCLauncher.exe 84 QuerySecurityFile C:\Windows\SysWOW64\sechost.dll SUCCESS Information: Owner 97 12:38:30,8166371 MCLauncher.exe 84 CloseFile C:\Windows\SysWOW64\sechost.dll SUCCESS 97 12:38:30,8167405 MCLauncher.exe 84 CreateFile C:\Windows\SysWOW64\sspicli.dll SUCCESS Desired Access: Read Control, Disposition: Open, Options: , Attributes: n/a, ShareMode: Read, Delete, AllocationSize: n/a, OpenResult: Opened 97 12:38:30,8167657 MCLauncher.exe 84 QuerySecurityFile C:\Windows\SysWOW64\sspicli.dll BUFFER OVERFLOW Information: Owner 97 12:38:30,8167729 MCLauncher.exe 84 QuerySecurityFile C:\Windows\SysWOW64\sspicli.dll SUCCESS Information: Owner 97 12:38:30,8167790 MCLauncher.exe 84 CloseFile C:\Windows\SysWOW64\sspicli.dll SUCCESS 97 12:38:30,8168787 MCLauncher.exe 84 CreateFile C:\Windows\SysWOW64\rpcrt4.dll SUCCESS Desired Access: Read Control, Disposition: Open, Options: , Attributes: n/a, ShareMode: Read, Delete, AllocationSize: n/a, OpenResult: Opened 97 12:38:30,8169034 MCLauncher.exe 84 QuerySecurityFile C:\Windows\SysWOW64\rpcrt4.dll BUFFER OVERFLOW Information: Owner 97 12:38:30,8169106 MCLauncher.exe 84 QuerySecurityFile C:\Windows\SysWOW64\rpcrt4.dll SUCCESS Information: Owner 97 12:38:30,8169164 MCLauncher.exe 84 CloseFile C:\Windows\SysWOW64\rpcrt4.dll SUCCESS 97 12:38:30,8170211 MCLauncher.exe 84 CreateFile C:\Windows\SysWOW64\combase.dll SUCCESS Desired Access: Read Control, Disposition: Open, Options: , Attributes: n/a, ShareMode: Read, Delete, AllocationSize: n/a, OpenResult: Opened 97 12:38:30,8170458 MCLauncher.exe 84 QuerySecurityFile C:\Windows\SysWOW64\combase.dll BUFFER OVERFLOW Information: Owner 97 12:38:30,8170527 MCLauncher.exe 84 QuerySecurityFile C:\Windows\SysWOW64\combase.dll SUCCESS Information: Owner 97 12:38:30,8170588 MCLauncher.exe 84 CloseFile C:\Windows\SysWOW64\combase.dll SUCCESS 97 12:38:30,8171660 MCLauncher.exe 84 CreateFile C:\Windows\SysWOW64\powrprof.dll SUCCESS Desired Access: Read Control, Disposition: Open, Options: , Attributes: n/a, ShareMode: Read, Delete, AllocationSize: n/a, OpenResult: Opened 97 12:38:30,8171910 MCLauncher.exe 84 QuerySecurityFile C:\Windows\SysWOW64\powrprof.dll BUFFER OVERFLOW Information: Owner 97 12:38:30,8172098 MCLauncher.exe 84 QuerySecurityFile C:\Windows\SysWOW64\powrprof.dll SUCCESS Information: Owner 97 12:38:30,8172242 MCLauncher.exe 84 CloseFile C:\Windows\SysWOW64\powrprof.dll SUCCESS 97 12:38:30,8173320 MCLauncher.exe 84 CreateFile C:\Windows\SysWOW64\advapi32.dll SUCCESS Desired Access: Read Control, Disposition: Open, Options: , Attributes: n/a, ShareMode: Read, Delete, AllocationSize: n/a, OpenResult: Opened 97 12:38:30,8173580 MCLauncher.exe 84 QuerySecurityFile C:\Windows\SysWOW64\advapi32.dll BUFFER OVERFLOW Information: Owner 97 12:38:30,8173650 MCLauncher.exe 84 QuerySecurityFile C:\Windows\SysWOW64\advapi32.dll SUCCESS Information: Owner 97 12:38:30,8173713 MCLauncher.exe 84 CloseFile C:\Windows\SysWOW64\advapi32.dll SUCCESS 97 12:38:30,8174833 MCLauncher.exe 84 CreateFile C:\Windows\SysWOW64\shlwapi.dll SUCCESS Desired Access: Read Control, Disposition: Open, Options: , Attributes: n/a, ShareMode: Read, Delete, AllocationSize: n/a, OpenResult: Opened 97 12:38:30,8175088 MCLauncher.exe 84 QuerySecurityFile C:\Windows\SysWOW64\shlwapi.dll BUFFER OVERFLOW Information: Owner 97 12:38:30,8175160 MCLauncher.exe 84 QuerySecurityFile C:\Windows\SysWOW64\shlwapi.dll SUCCESS Information: Owner 97 12:38:30,8175218 MCLauncher.exe 84 CloseFile C:\Windows\SysWOW64\shlwapi.dll SUCCESS 97 12:38:30,8176307 MCLauncher.exe 84 CreateFile C:\Windows\SysWOW64\kernel.appcore.dll SUCCESS Desired Access: Read Control, Disposition: Open, Options: , Attributes: n/a, ShareMode: Read, Delete, AllocationSize: n/a, OpenResult: Opened 97 12:38:30,8176495 MCLauncher.exe 84 QuerySecurityFile C:\Windows\SysWOW64\kernel.appcore.dll BUFFER OVERFLOW Information: Owner 97 12:38:30,8176562 MCLauncher.exe 84 QuerySecurityFile C:\Windows\SysWOW64\kernel.appcore.dll SUCCESS Information: Owner 97 12:38:30,8176623 MCLauncher.exe 84 CloseFile C:\Windows\SysWOW64\kernel.appcore.dll SUCCESS 97 12:38:30,8177648 MCLauncher.exe 84 CreateFile C:\Windows\SysWOW64\SHCore.dll SUCCESS Desired Access: Read Control, Disposition: Open, Options: , Attributes: n/a, ShareMode: Read, Delete, AllocationSize: n/a, OpenResult: Opened 97 12:38:30,8177897 MCLauncher.exe 84 QuerySecurityFile C:\Windows\SysWOW64\SHCore.dll BUFFER OVERFLOW Information: Owner 97 12:38:30,8177966 MCLauncher.exe 84 QuerySecurityFile C:\Windows\SysWOW64\SHCore.dll SUCCESS Information: Owner 97 12:38:30,8178027 MCLauncher.exe 84 CloseFile C:\Windows\SysWOW64\SHCore.dll SUCCESS 97 12:38:30,8179058 MCLauncher.exe 84 CreateFile C:\Windows\SysWOW64\profapi.dll SUCCESS Desired Access: Read Control, Disposition: Open, Options: , Attributes: n/a, ShareMode: Read, Delete, AllocationSize: n/a, OpenResult: Opened 97 12:38:30,8179313 MCLauncher.exe 84 QuerySecurityFile C:\Windows\SysWOW64\profapi.dll BUFFER OVERFLOW Information: Owner 97 12:38:30,8179382 MCLauncher.exe 84 QuerySecurityFile C:\Windows\SysWOW64\profapi.dll SUCCESS Information: Owner 97 12:38:30,8179446 MCLauncher.exe 84 CloseFile C:\Windows\SysWOW64\profapi.dll SUCCESS 97 12:38:30,8180449 MCLauncher.exe 84 CreateFile C:\Windows\SysWOW64\windows.storage.dll SUCCESS Desired Access: Read Control, Disposition: Open, Options: , Attributes: n/a, ShareMode: Read, Delete, AllocationSize: n/a, OpenResult: Opened 97 12:38:30,8180643 MCLauncher.exe 84 QuerySecurityFile C:\Windows\SysWOW64\windows.storage.dll BUFFER OVERFLOW Information: Owner 97 12:38:30,8180712 MCLauncher.exe 84 QuerySecurityFile C:\Windows\SysWOW64\windows.storage.dll SUCCESS Information: Owner 97 12:38:30,8180773 MCLauncher.exe 84 CloseFile C:\Windows\SysWOW64\windows.storage.dll SUCCESS 97 12:38:30,8182158 MCLauncher.exe 84 CreateFile C:\Windows\SysWOW64\shell32.dll SUCCESS Desired Access: Read Control, Disposition: Open, Options: , Attributes: n/a, ShareMode: Read, Delete, AllocationSize: n/a, OpenResult: Opened 97 12:38:30,8185718 MCLauncher.exe 84 QuerySecurityFile C:\Windows\SysWOW64\shell32.dll BUFFER OVERFLOW Information: Owner 97 12:38:30,8185826 MCLauncher.exe 84 QuerySecurityFile C:\Windows\SysWOW64\shell32.dll SUCCESS Information: Owner 97 12:38:30,8185896 MCLauncher.exe 84 CloseFile C:\Windows\SysWOW64\shell32.dll SUCCESS 97 12:38:30,8187295 MCLauncher.exe 84 CreateFile C:\Windows\SysWOW64\msvcp_win.dll SUCCESS Desired Access: Read Control, Disposition: Open, Options: , Attributes: n/a, ShareMode: Read, Delete, AllocationSize: n/a, OpenResult: Opened 97 12:38:30,8187503 MCLauncher.exe 84 QuerySecurityFile C:\Windows\SysWOW64\msvcp_win.dll BUFFER OVERFLOW Information: Owner 97 12:38:30,8187572 MCLauncher.exe 84 QuerySecurityFile C:\Windows\SysWOW64\msvcp_win.dll SUCCESS Information: Owner 97 12:38:30,8187638 MCLauncher.exe 84 CloseFile C:\Windows\SysWOW64\msvcp_win.dll SUCCESS 97 12:38:30,8188691 MCLauncher.exe 84 CreateFile C:\Windows\SysWOW64\oleaut32.dll SUCCESS Desired Access: Read Control, Disposition: Open, Options: , Attributes: n/a, ShareMode: Read, Delete, AllocationSize: n/a, OpenResult: Opened 97 12:38:30,8188954 MCLauncher.exe 84 QuerySecurityFile C:\Windows\SysWOW64\oleaut32.dll BUFFER OVERFLOW Information: Owner 97 12:38:30,8189026 MCLauncher.exe 84 QuerySecurityFile C:\Windows\SysWOW64\oleaut32.dll SUCCESS Information: Owner 97 12:38:30,8189090 MCLauncher.exe 84 CloseFile C:\Windows\SysWOW64\oleaut32.dll SUCCESS 97 12:38:30,8190151 MCLauncher.exe 84 CreateFile C:\Windows\SysWOW64\mpr.dll SUCCESS Desired Access: Read Control, Disposition: Open, Options: , Attributes: n/a, ShareMode: Read, Delete, AllocationSize: n/a, OpenResult: Opened 97 12:38:30,8190412 MCLauncher.exe 84 QuerySecurityFile C:\Windows\SysWOW64\mpr.dll BUFFER OVERFLOW Information: Owner 97 12:38:30,8190481 MCLauncher.exe 84 QuerySecurityFile C:\Windows\SysWOW64\mpr.dll SUCCESS Information: Owner 97 12:38:30,8190542 MCLauncher.exe 84 CloseFile C:\Windows\SysWOW64\mpr.dll SUCCESS 97 12:38:30,8191664 MCLauncher.exe 84 CreateFile C:\Windows\SysWOW64\setupapi.dll SUCCESS Desired Access: Read Control, Disposition: Open, Options: , Attributes: n/a, ShareMode: Read, Delete, AllocationSize: n/a, OpenResult: Opened 97 12:38:30,8191935 MCLauncher.exe 84 QuerySecurityFile C:\Windows\SysWOW64\setupapi.dll BUFFER OVERFLOW Information: Owner 97 12:38:30,8192007 MCLauncher.exe 84 QuerySecurityFile C:\Windows\SysWOW64\setupapi.dll SUCCESS Information: Owner 97 12:38:30,8192071 MCLauncher.exe 84 CloseFile C:\Windows\SysWOW64\setupapi.dll SUCCESS 97 12:38:30,8193152 MCLauncher.exe 84 CreateFile C:\Windows\SysWOW64\sfc.dll SUCCESS Desired Access: Read Control, Disposition: Open, Options: , Attributes: n/a, ShareMode: Read, Delete, AllocationSize: n/a, OpenResult: Opened 97 12:38:30,8193398 MCLauncher.exe 84 QuerySecurityFile C:\Windows\SysWOW64\sfc.dll BUFFER OVERFLOW Information: Owner 97 12:38:30,8193470 MCLauncher.exe 84 QuerySecurityFile C:\Windows\SysWOW64\sfc.dll SUCCESS Information: Owner 97 12:38:30,8193531 MCLauncher.exe 84 CloseFile C:\Windows\SysWOW64\sfc.dll SUCCESS 97 12:38:30,8194504 MCLauncher.exe 84 CreateFile C:\Windows\SysWOW64\bcrypt.dll SUCCESS Desired Access: Read Control, Disposition: Open, Options: , Attributes: n/a, ShareMode: Read, Delete, AllocationSize: n/a, OpenResult: Opened 97 12:38:30,8194759 MCLauncher.exe 84 QuerySecurityFile C:\Windows\SysWOW64\bcrypt.dll BUFFER OVERFLOW Information: Owner 97 12:38:30,8194828 MCLauncher.exe 84 QuerySecurityFile C:\Windows\SysWOW64\bcrypt.dll SUCCESS Information: Owner 97 12:38:30,8194892 MCLauncher.exe 84 CloseFile C:\Windows\SysWOW64\bcrypt.dll SUCCESS 97 12:38:30,8195889 MCLauncher.exe 84 CreateFile C:\Windows\SysWOW64\winspool.drv SUCCESS Desired Access: Read Control, Disposition: Open, Options: , Attributes: n/a, ShareMode: Read, Delete, AllocationSize: n/a, OpenResult: Opened 97 12:38:30,8196144 MCLauncher.exe 84 QuerySecurityFile C:\Windows\SysWOW64\winspool.drv BUFFER OVERFLOW Information: Owner 97 12:38:30,8196216 MCLauncher.exe 84 QuerySecurityFile C:\Windows\SysWOW64\winspool.drv SUCCESS Information: Owner 97 12:38:30,8196277 MCLauncher.exe 84 CloseFile C:\Windows\SysWOW64\winspool.drv SUCCESS 97 12:38:30,8197319 MCLauncher.exe 84 CreateFile C:\Windows\SysWOW64\sfc_os.dll SUCCESS Desired Access: Read Control, Disposition: Open, Options: , Attributes: n/a, ShareMode: Read, Delete, AllocationSize: n/a, OpenResult: Opened 97 12:38:30,8197565 MCLauncher.exe 84 QuerySecurityFile C:\Windows\SysWOW64\sfc_os.dll BUFFER OVERFLOW Information: Owner 97 12:38:30,8197634 MCLauncher.exe 84 QuerySecurityFile C:\Windows\SysWOW64\sfc_os.dll SUCCESS Information: Owner 97 12:38:30,8197695 MCLauncher.exe 84 CloseFile C:\Windows\SysWOW64\sfc_os.dll SUCCESS 97 12:38:30,8198407 MCLauncher.exe 84 RegOpenKey HKLM\System\CurrentControlSet\Control\Nls\Sorting\Versions REPARSE Desired Access: Read 97 12:38:30,8198524 MCLauncher.exe 84 RegOpenKey HKLM\System\CurrentControlSet\Control\Nls\Sorting\Versions SUCCESS Desired Access: Read 97 12:38:30,8198626 MCLauncher.exe 84 RegSetInfoKey HKLM\System\CurrentControlSet\Control\Nls\Sorting\Versions SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 97 12:38:30,8198682 MCLauncher.exe 84 RegQueryValue HKLM\System\CurrentControlSet\Control\Nls\Sorting\Versions\(Default) SUCCESS Type: REG_SZ, Length: 18, Data: 0006020E 97 12:38:30,8202508 MCLauncher.exe 84 CreateFile C:\Windows\SysWOW64\imm32.dll SUCCESS Desired Access: Read Attributes, Disposition: Open, Options: Open Reparse Point, Attributes: n/a, ShareMode: Read, Write, Delete, AllocationSize: n/a, OpenResult: Opened 97 12:38:30,8202771 MCLauncher.exe 84 QueryBasicInformationFile C:\Windows\SysWOW64\imm32.dll SUCCESS CreationTime: 16.07.2016 14:42:49, LastAccessTime: 16.07.2016 14:42:49, LastWriteTime: 16.07.2016 14:42:49, ChangeTime: 20.07.2018 19:26:58, FileAttributes: A 97 12:38:30,8202863 MCLauncher.exe 84 CloseFile C:\Windows\SysWOW64\imm32.dll SUCCESS 97 12:38:30,8203816 MCLauncher.exe 84 CreateFile C:\Windows\SysWOW64\imm32.dll SUCCESS Desired Access: Read Data/List Directory, Synchronize, Disposition: Open, Options: Synchronous IO Non-Alert, Non-Directory File, Attributes: n/a, ShareMode: Read, Delete, AllocationSize: n/a, OpenResult: Opened 97 12:38:30,8204104 MCLauncher.exe 84 CreateFileMapping C:\Windows\SysWOW64\imm32.dll FILE LOCKED WITH ONLY READERS SyncType: SyncTypeCreateSection, PageProtection: PAGE_EXECUTE|PAGE_NOCACHE 97 12:38:30,8204256 MCLauncher.exe 84 QueryNameInformationFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Name: \Users\User\Downloads\MCLauncher.exe 97 12:38:30,8205179 MCLauncher.exe 84 CreateFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Desired Access: Synchronize, Disposition: Open, Options: Synchronous IO Non-Alert, Attributes: N, ShareMode: Read, Write, Delete, AllocationSize: n/a, OpenResult: Opened 97 12:38:30,8205370 MCLauncher.exe 84 CloseFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS 97 12:38:30,8205669 MCLauncher.exe 84 QueryNameInformationFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Name: \Users\User\Downloads\MCLauncher.exe 97 12:38:30,8206534 MCLauncher.exe 84 CreateFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Desired Access: Synchronize, Disposition: Open, Options: Synchronous IO Non-Alert, Attributes: N, ShareMode: Read, Write, Delete, AllocationSize: n/a, OpenResult: Opened 97 12:38:30,8206705 MCLauncher.exe 84 CloseFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS 97 12:38:30,8207340 MCLauncher.exe 84 QueryStandardInformationFile C:\Windows\SysWOW64\imm32.dll SUCCESS AllocationSize: 147 456, EndOfFile: 144 632, NumberOfLinks: 2, DeletePending: False, Directory: False 97 12:38:30,8207498 MCLauncher.exe 84 CreateFileMapping C:\Windows\SysWOW64\imm32.dll SUCCESS SyncType: SyncTypeOther 97 12:38:30,8208021 MCLauncher.exe 84 CloseFile C:\Windows\SysWOW64\imm32.dll SUCCESS 97 12:38:30,8208686 MCLauncher.exe 84 Load Image C:\Windows\SysWOW64\imm32.dll SUCCESS Image Base: 0x74800000, Image Size: 0x25000 97 12:38:30,8210495 MCLauncher.exe 84 CreateFile C:\Windows\SysWOW64\imm32.dll SUCCESS Desired Access: Read Control, Disposition: Open, Options: , Attributes: n/a, ShareMode: Read, Delete, AllocationSize: n/a, OpenResult: Opened 97 12:38:30,8210770 MCLauncher.exe 84 QuerySecurityFile C:\Windows\SysWOW64\imm32.dll BUFFER OVERFLOW Information: Owner 97 12:38:30,8210847 MCLauncher.exe 84 QuerySecurityFile C:\Windows\SysWOW64\imm32.dll SUCCESS Information: Owner 97 12:38:30,8210919 MCLauncher.exe 84 CloseFile C:\Windows\SysWOW64\imm32.dll SUCCESS 97 12:38:30,8213629 MCLauncher.exe 84 CreateFile C:\Windows\SysWOW64\imm32.dll SUCCESS Desired Access: Read Attributes, Disposition: Open, Options: Open Reparse Point, Attributes: n/a, ShareMode: Read, Write, Delete, AllocationSize: n/a, OpenResult: Opened 97 12:38:30,8213862 MCLauncher.exe 84 QueryBasicInformationFile C:\Windows\SysWOW64\imm32.dll SUCCESS CreationTime: 16.07.2016 14:42:49, LastAccessTime: 16.07.2016 14:42:49, LastWriteTime: 16.07.2016 14:42:49, ChangeTime: 20.07.2018 19:26:58, FileAttributes: A 97 12:38:30,8213945 MCLauncher.exe 84 CloseFile C:\Windows\SysWOW64\imm32.dll SUCCESS 97 12:38:30,8216460 MCLauncher.exe 84 CreateFile C:\Windows\SysWOW64\imm32.dll SUCCESS Desired Access: Read Attributes, Disposition: Open, Options: Open Reparse Point, Attributes: n/a, ShareMode: Read, Write, Delete, AllocationSize: n/a, OpenResult: Opened 97 12:38:30,8216682 MCLauncher.exe 84 QueryBasicInformationFile C:\Windows\SysWOW64\imm32.dll SUCCESS CreationTime: 16.07.2016 14:42:49, LastAccessTime: 16.07.2016 14:42:49, LastWriteTime: 16.07.2016 14:42:49, ChangeTime: 20.07.2018 19:26:58, FileAttributes: A 97 12:38:30,8216760 MCLauncher.exe 84 CloseFile C:\Windows\SysWOW64\imm32.dll SUCCESS 97 12:38:30,8217153 MCLauncher.exe 84 RegQueryValue HKLM\System\CurrentControlSet\Control\WMI\Security\f25bcd2e-2690-55dc-3bc4-07b65b1b41c9 NAME NOT FOUND Length: 524 97 12:38:30,8217607 MCLauncher.exe 84 RegOpenKey HKLM\Software\WOW6432Node\Microsoft\Windows NT\CurrentVersion\GRE_Initialize REPARSE Desired Access: Read 97 12:38:30,8217754 MCLauncher.exe 84 RegOpenKey HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\GRE_Initialize SUCCESS Desired Access: Read 97 12:38:30,8217832 MCLauncher.exe 84 RegSetInfoKey HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\GRE_Initialize SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 97 12:38:30,8217896 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\GRE_Initialize\DisableMetaFiles NAME NOT FOUND Length: 20 97 12:38:30,8218084 MCLauncher.exe 84 RegCloseKey HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\GRE_Initialize SUCCESS 97 12:38:30,8218644 MCLauncher.exe 84 RegOpenKey HKLM\Software\Wow6432Node\Microsoft\Windows NT\CurrentVersion\Compatibility32 SUCCESS Desired Access: Read 97 12:38:30,8218782 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows NT\CurrentVersion\Compatibility32\MCLauncher NAME NOT FOUND Length: 172 97 12:38:30,8218887 MCLauncher.exe 84 RegCloseKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows NT\CurrentVersion\Compatibility32 SUCCESS 97 12:38:30,8218971 MCLauncher.exe 84 RegOpenKey HKLM\Software\Wow6432Node\Microsoft\Windows NT\CurrentVersion\IME Compatibility NAME NOT FOUND Desired Access: Read 97 12:38:30,8223041 MCLauncher.exe 84 RegOpenKey HKLM SUCCESS Desired Access: Maximum Allowed, Granted Access: Read 97 12:38:30,8223207 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:30,8223284 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: Name 97 12:38:30,8223395 MCLauncher.exe 84 RegOpenKey HKLM\Software\WOW6432Node\Microsoft\Windows NT\CurrentVersion\Windows SUCCESS Desired Access: Read 97 12:38:30,8223517 MCLauncher.exe 84 RegSetInfoKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows NT\CurrentVersion\Windows SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 97 12:38:30,8223597 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows NT\CurrentVersion\Windows\LoadAppInit_DLLs SUCCESS Type: REG_DWORD, Length: 4, Data: 0 97 12:38:30,8223841 MCLauncher.exe 84 RegCloseKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows NT\CurrentVersion\Windows SUCCESS 97 12:38:30,8563249 MCLauncher.exe 84 RegOpenKey HKLM\Software\WOW6432Node\Microsoft\Windows NT\CurrentVersion\Image File Execution Options REPARSE Desired Access: Query Value, Enumerate Sub Keys 97 12:38:30,8563443 MCLauncher.exe 84 RegOpenKey HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options SUCCESS Desired Access: Query Value, Enumerate Sub Keys 97 12:38:30,8563545 MCLauncher.exe 84 RegSetInfoKey HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 97 12:38:30,8563681 MCLauncher.exe 84 RegQueryKey HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options SUCCESS Query: HandleTags, HandleTags: 0x400 97 12:38:30,8563756 MCLauncher.exe 84 RegOpenKey HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\MCLauncher.exe NAME NOT FOUND Desired Access: Query Value, Enumerate Sub Keys 97 12:38:30,8565457 MCLauncher.exe 84 RegOpenKey HKLM\System\CurrentControlSet\Control\Lsa\FipsAlgorithmPolicy REPARSE Desired Access: Query Value 97 12:38:30,8565543 MCLauncher.exe 84 RegOpenKey HKLM\System\CurrentControlSet\Control\Lsa\FipsAlgorithmPolicy SUCCESS Desired Access: Query Value 97 12:38:30,8565656 MCLauncher.exe 84 RegSetInfoKey HKLM\System\CurrentControlSet\Control\Lsa\FipsAlgorithmPolicy SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 97 12:38:30,8565712 MCLauncher.exe 84 RegQueryValue HKLM\System\CurrentControlSet\Control\Lsa\FipsAlgorithmPolicy\Enabled SUCCESS Type: REG_DWORD, Length: 4, Data: 0 97 12:38:30,8565908 MCLauncher.exe 84 RegOpenKey HKLM\System\CurrentControlSet\Control\Lsa REPARSE Desired Access: Query Value 97 12:38:30,8565972 MCLauncher.exe 84 RegOpenKey HKLM\System\CurrentControlSet\Control\Lsa SUCCESS Desired Access: Query Value 97 12:38:30,8566044 MCLauncher.exe 84 RegSetInfoKey HKLM\System\CurrentControlSet\Control\Lsa SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 97 12:38:30,8566091 MCLauncher.exe 84 RegQueryValue HKLM\System\CurrentControlSet\Control\Lsa\FipsAlgorithmPolicy NAME NOT FOUND Length: 20 97 12:38:30,8566230 MCLauncher.exe 84 RegQueryValue HKLM\System\CurrentControlSet\Control\Lsa\FipsAlgorithmPolicy\MDMEnabled SUCCESS Type: REG_DWORD, Length: 4, Data: 0 97 12:38:30,8566402 MCLauncher.exe 84 RegCloseKey HKLM\System\CurrentControlSet\Control\Lsa\FipsAlgorithmPolicy SUCCESS 97 12:38:30,8566454 MCLauncher.exe 84 RegCloseKey HKLM\System\CurrentControlSet\Control\Lsa SUCCESS 97 12:38:30,8566535 MCLauncher.exe 84 RegOpenKey HKLM\SYSTEM\CurrentControlSet\Policies\Microsoft\Cryptography\Configuration REPARSE Desired Access: Query Value 97 12:38:30,8566598 MCLauncher.exe 84 RegOpenKey HKLM\System\CurrentControlSet\Policies\Microsoft\Cryptography\Configuration NAME NOT FOUND Desired Access: Query Value 97 12:38:30,8567682 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:30,8567740 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: Name 97 12:38:30,8567834 MCLauncher.exe 84 RegOpenKey HKLM\SOFTWARE\WOW6432Node\Microsoft\OLE REPARSE Desired Access: Read 97 12:38:30,8567925 MCLauncher.exe 84 RegOpenKey HKLM\SOFTWARE\Microsoft\Ole SUCCESS Desired Access: Read 97 12:38:30,8567989 MCLauncher.exe 84 RegSetInfoKey HKLM\SOFTWARE\Microsoft\Ole SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 97 12:38:30,8568045 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\Microsoft\Ole\PageAllocatorUseSystemHeap NAME NOT FOUND Length: 144 97 12:38:30,8568211 MCLauncher.exe 84 RegCloseKey HKLM\SOFTWARE\Microsoft\Ole SUCCESS 97 12:38:30,8568283 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:30,8568335 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: Name 97 12:38:30,8568416 MCLauncher.exe 84 RegOpenKey HKLM\SOFTWARE\WOW6432Node\Microsoft\OLE REPARSE Desired Access: Read 97 12:38:30,8568482 MCLauncher.exe 84 RegOpenKey HKLM\SOFTWARE\Microsoft\Ole SUCCESS Desired Access: Read 97 12:38:30,8568538 MCLauncher.exe 84 RegSetInfoKey HKLM\SOFTWARE\Microsoft\Ole SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 97 12:38:30,8568582 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\Microsoft\Ole\PageAllocatorSystemHeapIsPrivate NAME NOT FOUND Length: 144 97 12:38:30,8568707 MCLauncher.exe 84 RegCloseKey HKLM\SOFTWARE\Microsoft\Ole SUCCESS 97 12:38:30,8568770 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:30,8568820 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: Name 97 12:38:30,8568898 MCLauncher.exe 84 RegOpenKey HKLM\SOFTWARE\WOW6432Node\Microsoft\OLE REPARSE Desired Access: Read 97 12:38:30,8568962 MCLauncher.exe 84 RegOpenKey HKLM\SOFTWARE\Microsoft\Ole SUCCESS Desired Access: Read 97 12:38:30,8569014 MCLauncher.exe 84 RegSetInfoKey HKLM\SOFTWARE\Microsoft\Ole SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 97 12:38:30,8569056 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\Microsoft\Ole\AggressiveMTATesting NAME NOT FOUND Length: 144 97 12:38:30,8569172 MCLauncher.exe 84 RegCloseKey HKLM\SOFTWARE\Microsoft\Ole SUCCESS 97 12:38:30,8569549 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:30,8569604 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: Name 97 12:38:30,8569688 MCLauncher.exe 84 RegOpenKey HKLM\Software\WOW6432Node\Microsoft\OLE\Tracing REPARSE Desired Access: Read 97 12:38:30,8569760 MCLauncher.exe 84 RegOpenKey HKLM\SOFTWARE\Microsoft\Ole\Tracing NAME NOT FOUND Desired Access: Read 97 12:38:30,8570183 MCLauncher.exe 84 RegQueryValue HKLM\System\CurrentControlSet\Control\WMI\Security\1aff6089-e863-4d36-bdfd-3581f07440be NAME NOT FOUND Length: 524 97 12:38:30,8573345 MCLauncher.exe 84 RegQueryValue HKLM\System\CurrentControlSet\Control\WMI\Security\30336ed4-e327-447c-9de0-51b652c86108 NAME NOT FOUND Length: 524 97 12:38:30,8573685 MCLauncher.exe 84 RegQueryValue HKLM\System\CurrentControlSet\Control\WMI\Security\b87cf16b-0bf8-4492-a510-d5f59626b033 NAME NOT FOUND Length: 524 97 12:38:30,8574993 MCLauncher.exe 84 RegQueryValue HKLM\System\CurrentControlSet\Control\WMI\Security\30336ed4-e327-447c-9de0-51b652c86108 NAME NOT FOUND Length: 524 97 12:38:30,8575231 MCLauncher.exe 84 RegQueryValue HKLM\System\CurrentControlSet\Control\WMI\Security\b87cf16b-0bf8-4492-a510-d5f59626b033 NAME NOT FOUND Length: 524 97 12:38:30,8578936 MCLauncher.exe 84 CreateFile C:\Windows\SysWOW64\ole32.dll SUCCESS Desired Access: Read Attributes, Disposition: Open, Options: Open Reparse Point, Attributes: n/a, ShareMode: Read, Write, Delete, AllocationSize: n/a, OpenResult: Opened 97 12:38:30,8579229 MCLauncher.exe 84 QueryBasicInformationFile C:\Windows\SysWOW64\ole32.dll SUCCESS CreationTime: 20.07.2018 1:33:33, LastAccessTime: 20.07.2018 1:33:33, LastWriteTime: 22.03.2018 6:29:36, ChangeTime: 20.07.2018 19:26:57, FileAttributes: A 97 12:38:30,8579315 MCLauncher.exe 84 CloseFile C:\Windows\SysWOW64\ole32.dll SUCCESS 97 12:38:30,8580310 MCLauncher.exe 84 CreateFile C:\Windows\SysWOW64\ole32.dll SUCCESS Desired Access: Read Data/List Directory, Synchronize, Disposition: Open, Options: Synchronous IO Non-Alert, Non-Directory File, Attributes: n/a, ShareMode: Read, Delete, AllocationSize: n/a, OpenResult: Opened 97 12:38:30,8580595 MCLauncher.exe 84 CreateFileMapping C:\Windows\SysWOW64\ole32.dll FILE LOCKED WITH ONLY READERS SyncType: SyncTypeCreateSection, PageProtection: PAGE_EXECUTE|PAGE_NOCACHE 97 12:38:30,8580745 MCLauncher.exe 84 QueryNameInformationFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Name: \Users\User\Downloads\MCLauncher.exe 97 12:38:30,8581850 MCLauncher.exe 84 CreateFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Desired Access: Synchronize, Disposition: Open, Options: Synchronous IO Non-Alert, Attributes: N, ShareMode: Read, Write, Delete, AllocationSize: n/a, OpenResult: Opened 97 12:38:30,8582080 MCLauncher.exe 84 CloseFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS 97 12:38:30,8582382 MCLauncher.exe 84 QueryNameInformationFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Name: \Users\User\Downloads\MCLauncher.exe 97 12:38:30,8583255 MCLauncher.exe 84 CreateFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Desired Access: Synchronize, Disposition: Open, Options: Synchronous IO Non-Alert, Attributes: N, ShareMode: Read, Write, Delete, AllocationSize: n/a, OpenResult: Opened 97 12:38:30,8583427 MCLauncher.exe 84 CloseFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS 97 12:38:30,8584031 MCLauncher.exe 84 QueryStandardInformationFile C:\Windows\SysWOW64\ole32.dll SUCCESS AllocationSize: 966 656, EndOfFile: 962 760, NumberOfLinks: 2, DeletePending: False, Directory: False 97 12:38:30,8584191 MCLauncher.exe 84 CreateFileMapping C:\Windows\SysWOW64\ole32.dll SUCCESS SyncType: SyncTypeOther 97 12:38:30,8584712 MCLauncher.exe 84 CloseFile C:\Windows\SysWOW64\ole32.dll SUCCESS 97 12:38:30,8585117 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:30,8585183 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: Name 97 12:38:30,8585294 MCLauncher.exe 84 RegOpenKey HKLM\SOFTWARE\WOW6432Node\Microsoft\OLEAUT NAME NOT FOUND Desired Access: Query Value 97 12:38:30,8585557 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:30,8585607 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: Name 97 12:38:30,8585679 MCLauncher.exe 84 RegOpenKey HKLM\system\CurrentControlSet\control\NetworkProvider\HwOrder REPARSE Desired Access: Read 97 12:38:30,8585760 MCLauncher.exe 84 RegOpenKey HKLM\System\CurrentControlSet\control\NetworkProvider\HwOrder SUCCESS Desired Access: Read 97 12:38:30,8585848 MCLauncher.exe 84 RegSetInfoKey HKLM\System\CurrentControlSet\Control\NetworkProvider\HwOrder SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 97 12:38:30,8586546 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:30,8586599 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: Name 97 12:38:30,8586682 MCLauncher.exe 84 RegOpenKey HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Setup REPARSE Desired Access: Read 97 12:38:30,8586776 MCLauncher.exe 84 RegOpenKey HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Setup SUCCESS Desired Access: Read 97 12:38:30,8586835 MCLauncher.exe 84 RegSetInfoKey HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Setup SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 97 12:38:30,8586884 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Setup\SourcePath NAME NOT FOUND Length: 16 97 12:38:30,8587062 MCLauncher.exe 84 RegCloseKey HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Setup SUCCESS 97 12:38:30,8587527 MCLauncher.exe 84 RegQueryValue HKLM\System\CurrentControlSet\Control\WMI\Security\f3a71a4b-6118-4257-8ccb-39a33ba059d4 NAME NOT FOUND Length: 524 97 12:38:30,8588267 MCLauncher.exe 84 RegQueryValue HKLM\System\CurrentControlSet\Control\WMI\Security\c69cb70a-3133-4cca-ab0e-046848effcda NAME NOT FOUND Length: 524 97 12:38:30,8590162 MCLauncher.exe 84 RegOpenKey HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\SideBySide\AssemblyStorageRoots NAME NOT FOUND Desired Access: Enumerate Sub Keys 97 12:38:30,8592802 MCLauncher.exe 84 CreateFile C:\Users\User\Downloads\MCLauncher.exe.Local NAME NOT FOUND Desired Access: Read Attributes, Disposition: Open, Options: Open Reparse Point, Attributes: n/a, ShareMode: Read, Write, Delete, AllocationSize: n/a 97 12:38:30,8593980 MCLauncher.exe 84 CreateFile C:\Windows\WinSxS\x86_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.9247_none_5090cb78bcba4a35 SUCCESS Desired Access: Execute/Traverse, Synchronize, Disposition: Open, Options: Directory, Synchronous IO Non-Alert, Attributes: n/a, ShareMode: Read, Write, AllocationSize: n/a, OpenResult: Opened 97 12:38:30,8594442 MCLauncher.exe 84 Thread Create SUCCESS Thread ID: 12960 97 12:38:30,8596822 MCLauncher.exe 84 CreateFile C:\Windows\WinSxS\x86_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.9247_none_5090cb78bcba4a35\msvcr90.dll SUCCESS Desired Access: Read Attributes, Disposition: Open, Options: Open Reparse Point, Attributes: n/a, ShareMode: Read, Write, Delete, AllocationSize: n/a, OpenResult: Opened 97 12:38:30,8596997 MCLauncher.exe 84 QueryBasicInformationFile C:\Windows\WinSxS\x86_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.9247_none_5090cb78bcba4a35\msvcr90.dll SUCCESS CreationTime: 16.07.2016 14:43:08, LastAccessTime: 16.07.2016 14:43:08, LastWriteTime: 16.07.2016 14:43:08, ChangeTime: 19.07.2018 19:37:26, FileAttributes: A 97 12:38:30,8597077 MCLauncher.exe 84 CloseFile C:\Windows\WinSxS\x86_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.9247_none_5090cb78bcba4a35\msvcr90.dll SUCCESS 97 12:38:30,8598017 MCLauncher.exe 84 CreateFile C:\Windows\WinSxS\x86_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.9247_none_5090cb78bcba4a35\msvcr90.dll SUCCESS Desired Access: Read Data/List Directory, Execute/Traverse, Synchronize, Disposition: Open, Options: Synchronous IO Non-Alert, Non-Directory File, Attributes: n/a, ShareMode: Read, Delete, AllocationSize: n/a, OpenResult: Opened 97 12:38:30,8598210 MCLauncher.exe 84 CreateFileMapping C:\Windows\WinSxS\x86_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.9247_none_5090cb78bcba4a35\msvcr90.dll FILE LOCKED WITH ONLY READERS SyncType: SyncTypeCreateSection, PageProtection: PAGE_EXECUTE|PAGE_NOCACHE 97 12:38:30,8598338 MCLauncher.exe 84 QueryNameInformationFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Name: \Users\User\Downloads\MCLauncher.exe 97 12:38:30,8599213 MCLauncher.exe 84 CreateFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Desired Access: Synchronize, Disposition: Open, Options: Synchronous IO Non-Alert, Attributes: N, ShareMode: Read, Write, Delete, AllocationSize: n/a, OpenResult: Opened 97 12:38:30,8599388 MCLauncher.exe 84 CloseFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS 97 12:38:30,8599671 MCLauncher.exe 84 QueryNameInformationFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Name: \Users\User\Downloads\MCLauncher.exe 97 12:38:30,8600516 MCLauncher.exe 84 CreateFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Desired Access: Synchronize, Disposition: Open, Options: Synchronous IO Non-Alert, Attributes: N, ShareMode: Read, Write, Delete, AllocationSize: n/a, OpenResult: Opened 97 12:38:30,8600679 MCLauncher.exe 84 CloseFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS 97 12:38:30,8601349 MCLauncher.exe 84 CreateFileMapping C:\Windows\WinSxS\x86_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.9247_none_5090cb78bcba4a35\msvcr90.dll SUCCESS SyncType: SyncTypeOther 97 12:38:30,8602128 MCLauncher.exe 84 Load Image C:\Windows\WinSxS\x86_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.9247_none_5090cb78bcba4a35\msvcr90.dll SUCCESS Image Base: 0x613d0000, Image Size: 0xa3000 97 12:38:30,8602533 MCLauncher.exe 84 CloseFile C:\Windows\WinSxS\x86_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.9247_none_5090cb78bcba4a35\msvcr90.dll SUCCESS 97 12:38:30,8603541 MCLauncher.exe 84 RegQueryKey HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options SUCCESS Query: HandleTags, HandleTags: 0x400 97 12:38:30,8603630 MCLauncher.exe 84 RegOpenKey HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\DllNXOptions SUCCESS Desired Access: Query Value, Enumerate Sub Keys 97 12:38:30,8603779 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\DllNXOptions\UseFilter NAME NOT FOUND Length: 544 97 12:38:30,8603926 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\DllNXOptions\MCLauncher.exe NAME NOT FOUND Length: 1 024 97 12:38:30,8643387 MCLauncher.exe 84 CreateFile C:\Windows\WinSxS\x86_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.9247_none_5090cb78bcba4a35\msvcr90.dll SUCCESS Desired Access: Read Attributes, Disposition: Open, Options: Open Reparse Point, Attributes: n/a, ShareMode: Read, Write, Delete, AllocationSize: n/a, OpenResult: Opened 97 12:38:30,8643587 MCLauncher.exe 84 QueryBasicInformationFile C:\Windows\WinSxS\x86_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.9247_none_5090cb78bcba4a35\msvcr90.dll SUCCESS CreationTime: 16.07.2016 14:43:08, LastAccessTime: 16.07.2016 14:43:08, LastWriteTime: 16.07.2016 14:43:08, ChangeTime: 19.07.2018 19:37:26, FileAttributes: A 97 12:38:30,8643678 MCLauncher.exe 84 CloseFile C:\Windows\WinSxS\x86_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.9247_none_5090cb78bcba4a35\msvcr90.dll SUCCESS 97 12:38:30,8644041 MCLauncher.exe 84 CreateFile C:\ SUCCESS Desired Access: Read Data/List Directory, Synchronize, Disposition: Open, Options: Directory, Synchronous IO Non-Alert, Attributes: n/a, ShareMode: Read, Write, Delete, AllocationSize: n/a, OpenResult: Opened 97 12:38:30,8644227 MCLauncher.exe 84 QueryDirectory C:\Windows SUCCESS Filter: Windows, 1: Windows 97 12:38:30,8644432 MCLauncher.exe 84 CloseFile C:\ SUCCESS 97 12:38:30,8645379 MCLauncher.exe 84 CreateFile C:\Windows SUCCESS Desired Access: Read Data/List Directory, Synchronize, Disposition: Open, Options: Directory, Synchronous IO Non-Alert, Attributes: n/a, ShareMode: Read, Write, Delete, AllocationSize: n/a, OpenResult: Opened 97 12:38:30,8645587 MCLauncher.exe 84 QueryDirectory C:\Windows\WinSxS SUCCESS Filter: WinSxS, 1: WinSxS 97 12:38:30,8645764 MCLauncher.exe 84 CloseFile C:\Windows SUCCESS 97 12:38:30,8646892 MCLauncher.exe 84 CreateFile C:\Windows\WinSxS\x86_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.9247_none_5090cb78bcba4a35 SUCCESS Desired Access: Read Data/List Directory, Synchronize, Disposition: Open, Options: Directory, Synchronous IO Non-Alert, Attributes: n/a, ShareMode: Read, Write, Delete, AllocationSize: n/a, OpenResult: Opened 97 12:38:30,8647080 MCLauncher.exe 84 QueryDirectory C:\Windows\WinSxS\x86_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.9247_none_5090cb78bcba4a35\MSVCR90.dll SUCCESS Filter: MSVCR90.dll, 1: msvcr90.dll 97 12:38:30,8647233 MCLauncher.exe 84 CloseFile C:\Windows\WinSxS\x86_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.9247_none_5090cb78bcba4a35 SUCCESS 97 12:38:30,8734173 MCLauncher.exe 84 QueryNameInformationFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Name: \Users\User\Downloads\MCLauncher.exe 97 12:38:30,8751145 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:30,8751245 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: Name 97 12:38:30,8751411 MCLauncher.exe 84 RegOpenKey HKLM\Software\WOW6432Node\Python\PythonCore\MCLauncher\PythonPath NAME NOT FOUND Desired Access: Read 97 12:38:30,8751655 MCLauncher.exe 84 RegOpenKey HKCU SUCCESS Desired Access: Maximum Allowed, Granted Access: All Access 97 12:38:30,8751810 MCLauncher.exe 84 RegQueryKey HKCU SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:30,8751860 MCLauncher.exe 84 RegQueryKey HKCU SUCCESS Query: Name 97 12:38:30,8751938 MCLauncher.exe 84 RegOpenKey HKCU\Software\Python\PythonCore\MCLauncher\PythonPath NAME NOT FOUND Desired Access: Read 97 12:38:30,8752763 MCLauncher.exe 84 RegOpenKey HKLM\SYSTEM\CurrentControlSet\Control\Session Manager REPARSE Desired Access: Query Value, Enumerate Sub Keys 97 12:38:30,8752847 MCLauncher.exe 84 RegOpenKey HKLM\System\CurrentControlSet\Control\Session Manager SUCCESS Desired Access: Query Value, Enumerate Sub Keys 97 12:38:30,8752946 MCLauncher.exe 84 RegSetInfoKey HKLM\System\CurrentControlSet\Control\Session Manager SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 97 12:38:30,8752999 MCLauncher.exe 84 RegQueryValue HKLM\System\CurrentControlSet\Control\Session Manager\ResourcePolicies NAME NOT FOUND Length: 24 97 12:38:30,8753198 MCLauncher.exe 84 RegCloseKey HKLM\System\CurrentControlSet\Control\Session Manager SUCCESS 97 12:38:30,8774490 MCLauncher.exe 84 CreateFile C:\Users\User\Downloads\zlib.pyd NAME NOT FOUND Desired Access: Read Attributes, Disposition: Open, Options: Open Reparse Point, Attributes: n/a, ShareMode: Read, Write, Delete, AllocationSize: n/a 97 12:38:30,8775662 MCLauncher.exe 84 CreateFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Desired Access: Generic Read, Disposition: Open, Options: Synchronous IO Non-Alert, Non-Directory File, Attributes: N, ShareMode: Read, AllocationSize: n/a, OpenResult: Opened 97 12:38:30,8775917 MCLauncher.exe 84 QueryStandardInformationFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS AllocationSize: 17 244 160, EndOfFile: 17 240 149, NumberOfLinks: 1, DeletePending: False, Directory: False 97 12:38:30,8776050 MCLauncher.exe 84 CreateFileMapping C:\Users\User\Downloads\MCLauncher.exe FILE LOCKED WITH ONLY READERS SyncType: SyncTypeCreateSection, PageProtection: PAGE_EXECUTE|PAGE_NOCACHE 97 12:38:30,8776211 MCLauncher.exe 84 QueryNameInformationFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Name: \Users\User\Downloads\MCLauncher.exe 97 12:38:30,8777236 MCLauncher.exe 84 CreateFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Desired Access: Synchronize, Disposition: Open, Options: Synchronous IO Non-Alert, Attributes: N, ShareMode: Read, Write, Delete, AllocationSize: n/a, OpenResult: Opened 97 12:38:30,8777460 MCLauncher.exe 84 CloseFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS 97 12:38:30,8777779 MCLauncher.exe 84 QueryNameInformationFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Name: \Users\User\Downloads\MCLauncher.exe 97 12:38:30,8778654 MCLauncher.exe 84 CreateFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Desired Access: Synchronize, Disposition: Open, Options: Synchronous IO Non-Alert, Attributes: N, ShareMode: Read, Write, Delete, AllocationSize: n/a, OpenResult: Opened 97 12:38:30,8778829 MCLauncher.exe 84 CloseFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS 97 12:38:30,8779150 MCLauncher.exe 84 QueryStandardInformationFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS AllocationSize: 17 244 160, EndOfFile: 17 240 149, NumberOfLinks: 1, DeletePending: False, Directory: False 97 12:38:30,8779286 MCLauncher.exe 84 CreateFileMapping C:\Users\User\Downloads\MCLauncher.exe SUCCESS SyncType: SyncTypeOther 97 12:38:30,8779422 MCLauncher.exe 84 CloseFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS 97 12:38:30,8781084 MCLauncher.exe 84 RegQueryKey HKCU SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:30,8781153 MCLauncher.exe 84 RegQueryKey HKCU SUCCESS Query: Name 97 12:38:30,8781264 MCLauncher.exe 84 RegOpenKey HKCU\Software\Python\PythonCore\MCLauncher\Modules\linecache NAME NOT FOUND Desired Access: Query Value 97 12:38:30,8781397 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:30,8781444 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: Name 97 12:38:30,8781536 MCLauncher.exe 84 RegOpenKey HKLM\Software\WOW6432Node\Python\PythonCore\MCLauncher\Modules\linecache NAME NOT FOUND Desired Access: Query Value 97 12:38:30,8783259 MCLauncher.exe 84 CreateFile C:\Users\User\Downloads SUCCESS Desired Access: Read Data/List Directory, Synchronize, Disposition: Open, Options: Directory, Synchronous IO Non-Alert, Attributes: n/a, ShareMode: Read, Write, Delete, AllocationSize: n/a, OpenResult: Opened 97 12:38:30,8783472 MCLauncher.exe 84 QueryDirectory C:\Users\User\Downloads\MCLauncher.exe SUCCESS Filter: MCLauncher.exe, 1: MCLauncher.exe 97 12:38:30,8786054 MCLauncher.exe 84 CreateFile C:\Windows\SysWOW64\tzres.dll SUCCESS Desired Access: Read Attributes, Disposition: Open, Options: Open Reparse Point, Attributes: n/a, ShareMode: Read, Write, Delete, AllocationSize: n/a, OpenResult: Opened 97 12:38:30,8786354 MCLauncher.exe 84 QueryBasicInformationFile C:\Windows\SysWOW64\tzres.dll SUCCESS CreationTime: 20.07.2018 1:33:47, LastAccessTime: 20.07.2018 1:33:47, LastWriteTime: 30.03.2018 6:12:25, ChangeTime: 20.07.2018 19:25:55, FileAttributes: A 97 12:38:30,8786440 MCLauncher.exe 84 CloseFile C:\Windows\SysWOW64\tzres.dll SUCCESS 97 12:38:30,8787623 MCLauncher.exe 84 CreateFile C:\Windows\SysWOW64\tzres.dll SUCCESS Desired Access: Generic Read, Disposition: Open, Options: Synchronous IO Non-Alert, Non-Directory File, Attributes: n/a, ShareMode: Read, Delete, AllocationSize: n/a, OpenResult: Opened 97 12:38:30,8787911 MCLauncher.exe 84 CreateFileMapping C:\Windows\SysWOW64\tzres.dll FILE LOCKED WITH ONLY READERS SyncType: SyncTypeCreateSection, PageProtection: PAGE_EXECUTE|PAGE_NOCACHE 97 12:38:30,8788035 MCLauncher.exe 84 QueryNameInformationFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Name: \Users\User\Downloads\MCLauncher.exe 97 12:38:30,8788916 MCLauncher.exe 84 CreateFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Desired Access: Synchronize, Disposition: Open, Options: Synchronous IO Non-Alert, Attributes: N, ShareMode: Read, Write, Delete, AllocationSize: n/a, OpenResult: Opened 97 12:38:30,8789097 MCLauncher.exe 84 CloseFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS 97 12:38:30,8789376 MCLauncher.exe 84 QueryNameInformationFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Name: \Users\User\Downloads\MCLauncher.exe 97 12:38:30,8790232 MCLauncher.exe 84 CreateFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Desired Access: Synchronize, Disposition: Open, Options: Synchronous IO Non-Alert, Attributes: N, ShareMode: Read, Write, Delete, AllocationSize: n/a, OpenResult: Opened 97 12:38:30,8790401 MCLauncher.exe 84 CloseFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS 97 12:38:30,8791086 MCLauncher.exe 84 CreateFileMapping C:\Windows\SysWOW64\tzres.dll SUCCESS SyncType: SyncTypeOther 97 12:38:30,8791429 MCLauncher.exe 84 CloseFile C:\Windows\SysWOW64\tzres.dll SUCCESS 97 12:38:30,8792867 MCLauncher.exe 84 CreateFile C:\Windows\SysWOW64\ru-RU\tzres.dll.mui SUCCESS Desired Access: Generic Read, Disposition: Open, Options: , Attributes: n/a, ShareMode: Read, Delete, AllocationSize: n/a, OpenResult: Opened 97 12:38:30,8793094 MCLauncher.exe 84 CreateFileMapping C:\Windows\SysWOW64\ru-RU\tzres.dll.mui FILE LOCKED WITH ONLY READERS SyncType: SyncTypeCreateSection, PageProtection: PAGE_EXECUTE|PAGE_NOCACHE 97 12:38:30,8793200 MCLauncher.exe 84 QueryNameInformationFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Name: \Users\User\Downloads\MCLauncher.exe 97 12:38:30,8794084 MCLauncher.exe 84 CreateFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Desired Access: Synchronize, Disposition: Open, Options: Synchronous IO Non-Alert, Attributes: N, ShareMode: Read, Write, Delete, AllocationSize: n/a, OpenResult: Opened 97 12:38:30,8794261 MCLauncher.exe 84 CloseFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS 97 12:38:30,8794527 MCLauncher.exe 84 QueryNameInformationFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Name: \Users\User\Downloads\MCLauncher.exe 97 12:38:30,8795375 MCLauncher.exe 84 CreateFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Desired Access: Synchronize, Disposition: Open, Options: Synchronous IO Non-Alert, Attributes: N, ShareMode: Read, Write, Delete, AllocationSize: n/a, OpenResult: Opened 97 12:38:30,8795541 MCLauncher.exe 84 CloseFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS 97 12:38:30,8796114 MCLauncher.exe 84 QueryStandardInformationFile C:\Windows\SysWOW64\ru-RU\tzres.dll.mui SUCCESS AllocationSize: 45 056, EndOfFile: 41 984, NumberOfLinks: 2, DeletePending: False, Directory: False 97 12:38:30,8796264 MCLauncher.exe 84 CreateFileMapping C:\Windows\SysWOW64\ru-RU\tzres.dll.mui SUCCESS SyncType: SyncTypeOther 97 12:38:30,8796923 MCLauncher.exe 84 CloseFile C:\Windows\SysWOW64\ru-RU\tzres.dll.mui SUCCESS 97 12:38:30,8799453 MCLauncher.exe 84 CreateFile C:\Windows\SysWOW64\tzres.dll SUCCESS Desired Access: Read Attributes, Disposition: Open, Options: Open Reparse Point, Attributes: n/a, ShareMode: Read, Write, Delete, AllocationSize: n/a, OpenResult: Opened 97 12:38:30,8799688 MCLauncher.exe 84 QueryBasicInformationFile C:\Windows\SysWOW64\tzres.dll SUCCESS CreationTime: 20.07.2018 1:33:47, LastAccessTime: 20.07.2018 1:33:47, LastWriteTime: 30.03.2018 6:12:25, ChangeTime: 20.07.2018 19:25:55, FileAttributes: A 97 12:38:30,8799769 MCLauncher.exe 84 CloseFile C:\Windows\SysWOW64\tzres.dll SUCCESS 97 12:38:30,8800741 MCLauncher.exe 84 CreateFile C:\Windows\SysWOW64\tzres.dll SUCCESS Desired Access: Generic Read, Disposition: Open, Options: Synchronous IO Non-Alert, Non-Directory File, Attributes: n/a, ShareMode: Read, Delete, AllocationSize: n/a, OpenResult: Opened 97 12:38:30,8801013 MCLauncher.exe 84 CreateFileMapping C:\Windows\SysWOW64\tzres.dll FILE LOCKED WITH ONLY READERS SyncType: SyncTypeCreateSection, PageProtection: PAGE_EXECUTE|PAGE_NOCACHE 97 12:38:30,8801126 MCLauncher.exe 84 QueryNameInformationFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Name: \Users\User\Downloads\MCLauncher.exe 97 12:38:30,8801988 MCLauncher.exe 84 CreateFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Desired Access: Synchronize, Disposition: Open, Options: Synchronous IO Non-Alert, Attributes: N, ShareMode: Read, Write, Delete, AllocationSize: n/a, OpenResult: Opened 97 12:38:30,8802165 MCLauncher.exe 84 CloseFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS 97 12:38:30,8802434 MCLauncher.exe 84 QueryNameInformationFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Name: \Users\User\Downloads\MCLauncher.exe 97 12:38:30,8803279 MCLauncher.exe 84 CreateFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Desired Access: Synchronize, Disposition: Open, Options: Synchronous IO Non-Alert, Attributes: N, ShareMode: Read, Write, Delete, AllocationSize: n/a, OpenResult: Opened 97 12:38:30,8803445 MCLauncher.exe 84 CloseFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS 97 12:38:30,8804069 MCLauncher.exe 84 CreateFileMapping C:\Windows\SysWOW64\tzres.dll SUCCESS SyncType: SyncTypeOther 97 12:38:30,8804274 MCLauncher.exe 84 CloseFile C:\Windows\SysWOW64\tzres.dll SUCCESS 97 12:38:30,8805338 MCLauncher.exe 84 CreateFile C:\Windows\SysWOW64\ru-RU\tzres.dll.mui SUCCESS Desired Access: Generic Read, Disposition: Open, Options: , Attributes: n/a, ShareMode: Read, Delete, AllocationSize: n/a, OpenResult: Opened 97 12:38:30,8805545 MCLauncher.exe 84 CreateFileMapping C:\Windows\SysWOW64\ru-RU\tzres.dll.mui FILE LOCKED WITH ONLY READERS SyncType: SyncTypeCreateSection, PageProtection: PAGE_EXECUTE|PAGE_NOCACHE 97 12:38:30,8805651 MCLauncher.exe 84 QueryNameInformationFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Name: \Users\User\Downloads\MCLauncher.exe 97 12:38:30,8806748 MCLauncher.exe 84 CreateFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Desired Access: Synchronize, Disposition: Open, Options: Synchronous IO Non-Alert, Attributes: N, ShareMode: Read, Write, Delete, AllocationSize: n/a, OpenResult: Opened 97 12:38:30,8806936 MCLauncher.exe 84 CloseFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS 97 12:38:30,8807210 MCLauncher.exe 84 QueryNameInformationFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Name: \Users\User\Downloads\MCLauncher.exe 97 12:38:30,8808069 MCLauncher.exe 84 CreateFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Desired Access: Synchronize, Disposition: Open, Options: Synchronous IO Non-Alert, Attributes: N, ShareMode: Read, Write, Delete, AllocationSize: n/a, OpenResult: Opened 97 12:38:30,8808238 MCLauncher.exe 84 CloseFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS 97 12:38:30,8808801 MCLauncher.exe 84 QueryStandardInformationFile C:\Windows\SysWOW64\ru-RU\tzres.dll.mui SUCCESS AllocationSize: 45 056, EndOfFile: 41 984, NumberOfLinks: 2, DeletePending: False, Directory: False 97 12:38:30,8808948 MCLauncher.exe 84 CreateFileMapping C:\Windows\SysWOW64\ru-RU\tzres.dll.mui SUCCESS SyncType: SyncTypeOther 97 12:38:30,8809358 MCLauncher.exe 84 CloseFile C:\Windows\SysWOW64\ru-RU\tzres.dll.mui SUCCESS 97 12:38:30,8809657 MCLauncher.exe 84 CloseFile C:\Users\User\Downloads SUCCESS 97 12:38:30,8810798 MCLauncher.exe 84 CreateFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Desired Access: Generic Read, Disposition: Open, Options: Synchronous IO Non-Alert, Non-Directory File, Attributes: N, ShareMode: Read, Write, AllocationSize: n/a, OpenResult: Opened 97 12:38:30,8811048 MCLauncher.exe 84 QueryStandardInformationFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS AllocationSize: 17 244 160, EndOfFile: 17 240 149, NumberOfLinks: 1, DeletePending: False, Directory: False 97 12:38:30,8811195 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 240 127, Length: 22, Priority: Normal 97 12:38:30,8811477 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 222 394, Length: 512 97 12:38:30,8811582 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 222 404, Length: 512 97 12:38:30,8811657 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 222 436, Length: 512 97 12:38:30,8811740 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 222 450, Length: 512 97 12:38:30,8811804 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 222 460, Length: 512 97 12:38:30,8811873 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 222 492, Length: 512 97 12:38:30,8811945 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 222 508, Length: 512 97 12:38:30,8812009 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 222 518, Length: 512 97 12:38:30,8812076 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 222 550, Length: 512 97 12:38:30,8812145 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 222 566, Length: 512 97 12:38:30,8812209 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 222 576, Length: 512 97 12:38:30,8812275 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 222 608, Length: 512 97 12:38:30,8812347 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 222 626, Length: 512 97 12:38:30,8812408 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 222 636, Length: 512 97 12:38:30,8812475 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 222 668, Length: 512 97 12:38:30,8812547 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 222 683, Length: 512 97 12:38:30,8812607 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 222 693, Length: 512 97 12:38:30,8812674 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 222 725, Length: 512 97 12:38:30,8812752 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 222 745, Length: 512 97 12:38:30,8812815 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 222 755, Length: 512 97 12:38:30,8812882 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 222 787, Length: 512 97 12:38:30,8812957 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 222 804, Length: 512 97 12:38:30,8813018 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 222 814, Length: 512 97 12:38:30,8813087 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 222 846, Length: 512 97 12:38:30,8813159 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 222 870, Length: 512 97 12:38:30,8813220 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 222 880, Length: 512 97 12:38:30,8813286 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 222 912, Length: 512 97 12:38:30,8813358 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 222 931, Length: 512 97 12:38:30,8813422 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 222 941, Length: 512 97 12:38:30,8813491 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 222 973, Length: 512 97 12:38:30,8813563 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 222 984, Length: 512 97 12:38:30,8813624 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 222 994, Length: 512 97 12:38:30,8813694 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 223 026, Length: 512 97 12:38:30,8813763 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 223 040, Length: 512 97 12:38:30,8813824 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 223 050, Length: 512 97 12:38:30,8813890 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 223 082, Length: 512 97 12:38:30,8813960 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 223 096, Length: 512 97 12:38:30,8814020 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 223 106, Length: 512 97 12:38:30,8814090 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 223 138, Length: 512 97 12:38:30,8814159 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 223 149, Length: 512 97 12:38:30,8814220 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 223 159, Length: 512 97 12:38:30,8814286 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 223 191, Length: 512 97 12:38:30,8814367 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 223 207, Length: 512 97 12:38:30,8814433 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 223 217, Length: 512 97 12:38:30,8814500 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 223 249, Length: 512 97 12:38:30,8814569 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 223 260, Length: 512 97 12:38:30,8814630 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 223 270, Length: 512 97 12:38:30,8814699 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 223 302, Length: 512 97 12:38:30,8814769 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 223 316, Length: 512 97 12:38:30,8814829 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 223 326, Length: 512 97 12:38:30,8814899 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 223 358, Length: 512 97 12:38:30,8814971 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 223 377, Length: 512 97 12:38:30,8815032 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 223 387, Length: 512 97 12:38:30,8815101 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 223 419, Length: 512 97 12:38:30,8815173 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 223 437, Length: 512 97 12:38:30,8815234 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 223 447, Length: 512 97 12:38:30,8815303 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 223 479, Length: 512 97 12:38:30,8815373 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 223 491, Length: 512 97 12:38:30,8815436 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 223 501, Length: 512 97 12:38:30,8815503 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 223 533, Length: 512 97 12:38:30,8815572 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 223 549, Length: 512 97 12:38:30,8815636 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 223 559, Length: 512 97 12:38:30,8815702 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 223 591, Length: 512 97 12:38:30,8815777 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 223 614, Length: 512 97 12:38:30,8815838 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 223 624, Length: 512 97 12:38:30,8815907 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 223 656, Length: 512 97 12:38:30,8815990 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 223 678, Length: 512 97 12:38:30,8816054 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 223 688, Length: 512 97 12:38:30,8816231 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 223 720, Length: 512 97 12:38:30,8816389 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 223 743, Length: 512 97 12:38:30,8816453 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 223 753, Length: 512 97 12:38:30,8816520 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 223 785, Length: 512 97 12:38:30,8816597 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 223 800, Length: 512 97 12:38:30,8816661 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 223 810, Length: 512 97 12:38:30,8816730 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 223 842, Length: 512 97 12:38:30,8816797 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 223 853, Length: 512 97 12:38:30,8816858 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 223 863, Length: 512 97 12:38:30,8816924 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 223 895, Length: 512 97 12:38:30,8816999 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 223 921, Length: 512 97 12:38:30,8817060 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 223 931, Length: 512 97 12:38:30,8817126 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 223 963, Length: 512 97 12:38:30,8817198 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 223 986, Length: 512 97 12:38:30,8817259 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 223 996, Length: 512 97 12:38:30,8817329 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 224 028, Length: 512 97 12:38:30,8817403 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 224 052, Length: 512 97 12:38:30,8817464 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 224 062, Length: 512 97 12:38:30,8817531 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 224 094, Length: 512 97 12:38:30,8817600 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 224 115, Length: 512 97 12:38:30,8817664 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 224 125, Length: 512 97 12:38:30,8817730 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 224 157, Length: 512 97 12:38:30,8817802 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 224 180, Length: 512 97 12:38:30,8817863 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 224 190, Length: 512 97 12:38:30,8817933 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 224 222, Length: 512 97 12:38:30,8818005 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 224 249, Length: 512 97 12:38:30,8818065 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 224 259, Length: 512 97 12:38:30,8818132 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 224 291, Length: 512 97 12:38:30,8818207 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 224 318, Length: 512 97 12:38:30,8818268 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 224 328, Length: 512 97 12:38:30,8818334 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 224 360, Length: 512 97 12:38:30,8818404 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 224 375, Length: 512 97 12:38:30,8818464 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 224 385, Length: 512 97 12:38:30,8818531 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 224 417, Length: 512 97 12:38:30,8818603 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 224 437, Length: 512 97 12:38:30,8818664 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 224 447, Length: 512 97 12:38:30,8818730 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 224 479, Length: 512 97 12:38:30,8818802 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 224 505, Length: 512 97 12:38:30,8818866 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 224 515, Length: 512 97 12:38:30,8818933 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 224 547, Length: 512 97 12:38:30,8819002 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 224 572, Length: 512 97 12:38:30,8819066 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 224 582, Length: 512 97 12:38:30,8819132 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 224 614, Length: 512 97 12:38:30,8819204 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 224 637, Length: 512 97 12:38:30,8819265 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 224 647, Length: 512 97 12:38:30,8819332 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 224 679, Length: 512 97 12:38:30,8819409 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 224 709, Length: 512 97 12:38:30,8819473 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 224 719, Length: 512 97 12:38:30,8819539 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 224 751, Length: 512 97 12:38:30,8819609 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 224 773, Length: 512 97 12:38:30,8819672 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 224 783, Length: 512 97 12:38:30,8819739 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 224 815, Length: 512 97 12:38:30,8819811 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 224 842, Length: 512 97 12:38:30,8819875 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 224 852, Length: 512 97 12:38:30,8819941 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 224 884, Length: 512 97 12:38:30,8820013 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 224 911, Length: 512 97 12:38:30,8820074 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 224 921, Length: 512 97 12:38:30,8820141 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 224 953, Length: 512 97 12:38:30,8820210 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 224 978, Length: 512 97 12:38:30,8820271 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 224 988, Length: 512 97 12:38:30,8820340 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 225 020, Length: 512 97 12:38:30,8820412 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 225 043, Length: 512 97 12:38:30,8820473 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 225 053, Length: 512 97 12:38:30,8820540 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 225 085, Length: 512 97 12:38:30,8820614 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 225 109, Length: 512 97 12:38:30,8820675 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 225 119, Length: 512 97 12:38:30,8820742 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 225 151, Length: 512 97 12:38:30,8820811 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 225 175, Length: 512 97 12:38:30,8820872 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 225 185, Length: 512 97 12:38:30,8820941 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 225 217, Length: 512 97 12:38:30,8821013 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 225 241, Length: 512 97 12:38:30,8821074 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 225 251, Length: 512 97 12:38:30,8821141 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 225 283, Length: 512 97 12:38:30,8821213 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 225 307, Length: 512 97 12:38:30,8821274 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 225 317, Length: 512 97 12:38:30,8821340 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 225 349, Length: 512 97 12:38:30,8821412 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 225 373, Length: 512 97 12:38:30,8821473 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 225 383, Length: 512 97 12:38:30,8821540 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 225 415, Length: 512 97 12:38:30,8821642 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 225 439, Length: 512 97 12:38:30,8821706 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 225 449, Length: 512 97 12:38:30,8821770 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 225 481, Length: 512 97 12:38:30,8821842 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 225 505, Length: 512 97 12:38:30,8821903 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 225 515, Length: 512 97 12:38:30,8821969 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 225 547, Length: 512 97 12:38:30,8822041 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 225 571, Length: 512 97 12:38:30,8822102 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 225 581, Length: 512 97 12:38:30,8822169 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 225 613, Length: 512 97 12:38:30,8822291 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 225 637, Length: 512 97 12:38:30,8822354 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 225 647, Length: 512 97 12:38:30,8822421 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 225 679, Length: 512 97 12:38:30,8822493 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 225 703, Length: 512 97 12:38:30,8822554 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 225 713, Length: 512 97 12:38:30,8822620 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 225 745, Length: 512 97 12:38:30,8822692 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 225 769, Length: 512 97 12:38:30,8822753 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 225 779, Length: 512 97 12:38:30,8822820 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 225 811, Length: 512 97 12:38:30,8822892 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 225 835, Length: 512 97 12:38:30,8822953 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 225 845, Length: 512 97 12:38:30,8823019 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 225 877, Length: 512 97 12:38:30,8823089 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 225 900, Length: 512 97 12:38:30,8823152 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 225 910, Length: 512 97 12:38:30,8823219 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 225 942, Length: 512 97 12:38:30,8823288 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 225 965, Length: 512 97 12:38:30,8823349 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 225 975, Length: 512 97 12:38:30,8823415 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 226 007, Length: 512 97 12:38:30,8823487 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 226 030, Length: 512 97 12:38:30,8823548 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 226 040, Length: 512 97 12:38:30,8823615 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 226 072, Length: 512 97 12:38:30,8823712 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 226 095, Length: 512 97 12:38:30,8823773 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 226 105, Length: 512 97 12:38:30,8823839 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 226 137, Length: 512 97 12:38:30,8823911 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 226 160, Length: 512 97 12:38:30,8823972 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 226 170, Length: 512 97 12:38:30,8824039 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 226 202, Length: 512 97 12:38:30,8824125 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 226 225, Length: 512 97 12:38:30,8824186 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 226 235, Length: 512 97 12:38:30,8824252 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 226 267, Length: 512 97 12:38:30,8824324 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 226 290, Length: 512 97 12:38:30,8824385 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 226 300, Length: 512 97 12:38:30,8824452 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 226 332, Length: 512 97 12:38:30,8824521 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 226 355, Length: 512 97 12:38:30,8824582 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 226 365, Length: 512 97 12:38:30,8824648 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 226 397, Length: 512 97 12:38:30,8824720 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 226 420, Length: 512 97 12:38:30,8824781 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 226 430, Length: 512 97 12:38:30,8824848 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 226 462, Length: 512 97 12:38:30,8824923 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 226 485, Length: 512 97 12:38:30,8824984 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 226 495, Length: 512 97 12:38:30,8825050 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 226 527, Length: 512 97 12:38:30,8825122 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 226 550, Length: 512 97 12:38:30,8825183 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 226 560, Length: 512 97 12:38:30,8825247 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 226 592, Length: 512 97 12:38:30,8825319 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 226 615, Length: 512 97 12:38:30,8825380 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 226 625, Length: 512 97 12:38:30,8825446 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 226 657, Length: 512 97 12:38:30,8825516 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 226 680, Length: 512 97 12:38:30,8825576 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 226 690, Length: 512 97 12:38:30,8825643 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 226 722, Length: 512 97 12:38:30,8825715 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 226 745, Length: 512 97 12:38:30,8825782 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 226 755, Length: 512 97 12:38:30,8825848 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 226 787, Length: 512 97 12:38:30,8826078 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 226 810, Length: 512 97 12:38:30,8826208 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 226 820, Length: 512 97 12:38:30,8826319 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 226 852, Length: 512 97 12:38:30,8826441 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 226 875, Length: 512 97 12:38:30,8826532 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 226 885, Length: 512 97 12:38:30,8826604 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 226 917, Length: 512 97 12:38:30,8826676 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 226 940, Length: 512 97 12:38:30,8826737 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 226 950, Length: 512 97 12:38:30,8826807 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 226 982, Length: 512 97 12:38:30,8826879 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 227 005, Length: 512 97 12:38:30,8826940 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 227 015, Length: 512 97 12:38:30,8827006 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 227 047, Length: 512 97 12:38:30,8827078 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 227 070, Length: 512 97 12:38:30,8827139 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 227 080, Length: 512 97 12:38:30,8827206 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 227 112, Length: 512 97 12:38:30,8827278 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 227 135, Length: 512 97 12:38:30,8827339 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 227 145, Length: 512 97 12:38:30,8827405 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 227 177, Length: 512 97 12:38:30,8827477 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 227 200, Length: 512 97 12:38:30,8827538 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 227 210, Length: 512 97 12:38:30,8827605 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 227 242, Length: 512 97 12:38:30,8827674 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 227 265, Length: 512 97 12:38:30,8827754 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 227 275, Length: 512 97 12:38:30,8827821 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 227 307, Length: 512 97 12:38:30,8827895 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 227 330, Length: 512 97 12:38:30,8827956 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 227 340, Length: 512 97 12:38:30,8828026 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 227 372, Length: 512 97 12:38:30,8828106 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 227 395, Length: 512 97 12:38:30,8828170 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 227 405, Length: 512 97 12:38:30,8828242 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 227 437, Length: 512 97 12:38:30,8828314 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 227 460, Length: 512 97 12:38:30,8828375 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 227 470, Length: 512 97 12:38:30,8828441 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 227 502, Length: 512 97 12:38:30,8828516 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 227 532, Length: 512 97 12:38:30,8828577 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 227 542, Length: 512 97 12:38:30,8828643 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 227 574, Length: 512 97 12:38:30,8828718 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 227 604, Length: 512 97 12:38:30,8828779 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 227 614, Length: 512 97 12:38:30,8828846 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 227 646, Length: 512 97 12:38:30,8828918 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 227 670, Length: 512 97 12:38:30,8828982 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 227 680, Length: 512 97 12:38:30,8829048 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 227 712, Length: 512 97 12:38:30,8829117 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 227 736, Length: 512 97 12:38:30,8829178 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 227 746, Length: 512 97 12:38:30,8829245 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 227 778, Length: 512 97 12:38:30,8829320 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 227 803, Length: 512 97 12:38:30,8829380 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 227 813, Length: 512 97 12:38:30,8829447 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 227 845, Length: 512 97 12:38:30,8829597 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 227 869, Length: 512 97 12:38:30,8829660 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 227 879, Length: 512 97 12:38:30,8829727 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 227 911, Length: 512 97 12:38:30,8829796 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 227 932, Length: 512 97 12:38:30,8829857 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 227 942, Length: 512 97 12:38:30,8829923 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 227 974, Length: 512 97 12:38:30,8829998 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 228 001, Length: 512 97 12:38:30,8830059 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 228 011, Length: 512 97 12:38:30,8830126 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 228 043, Length: 512 97 12:38:30,8830198 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 228 070, Length: 512 97 12:38:30,8830259 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 228 080, Length: 512 97 12:38:30,8830325 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 228 112, Length: 512 97 12:38:30,8830400 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 228 132, Length: 512 97 12:38:30,8830461 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 228 142, Length: 512 97 12:38:30,8830527 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 228 174, Length: 512 97 12:38:30,8830600 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 228 196, Length: 512 97 12:38:30,8830660 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 228 206, Length: 512 97 12:38:30,8830727 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 228 238, Length: 512 97 12:38:30,8830799 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 228 266, Length: 512 97 12:38:30,8830860 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 228 276, Length: 512 97 12:38:30,8830926 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 228 308, Length: 512 97 12:38:30,8831004 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 228 338, Length: 512 97 12:38:30,8831065 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 228 348, Length: 512 97 12:38:30,8831131 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 228 380, Length: 512 97 12:38:30,8831206 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 228 410, Length: 512 97 12:38:30,8831267 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 228 420, Length: 512 97 12:38:30,8831334 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 228 452, Length: 512 97 12:38:30,8831409 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 228 485, Length: 512 97 12:38:30,8831469 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 228 495, Length: 512 97 12:38:30,8831536 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 228 527, Length: 512 97 12:38:30,8831611 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 228 557, Length: 512 97 12:38:30,8831672 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 228 567, Length: 512 97 12:38:30,8831738 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 228 599, Length: 512 97 12:38:30,8831813 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 228 631, Length: 512 97 12:38:30,8831874 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 228 641, Length: 512 97 12:38:30,8831940 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 228 673, Length: 512 97 12:38:30,8832012 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 228 701, Length: 512 97 12:38:30,8832073 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 228 711, Length: 512 97 12:38:30,8832140 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 228 743, Length: 512 97 12:38:30,8832212 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 228 770, Length: 512 97 12:38:30,8832273 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 228 780, Length: 512 97 12:38:30,8832339 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 228 812, Length: 512 97 12:38:30,8832411 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 228 840, Length: 512 97 12:38:30,8832481 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 228 850, Length: 512 97 12:38:30,8832547 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 228 882, Length: 512 97 12:38:30,8832619 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 228 910, Length: 512 97 12:38:30,8832680 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 228 920, Length: 512 97 12:38:30,8832744 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 228 952, Length: 512 97 12:38:30,8832816 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 228 980, Length: 512 97 12:38:30,8832880 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 228 990, Length: 512 97 12:38:30,8832946 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 229 022, Length: 512 97 12:38:30,8833018 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 229 050, Length: 512 97 12:38:30,8833079 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 229 060, Length: 512 97 12:38:30,8833146 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 229 092, Length: 512 97 12:38:30,8833218 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 229 120, Length: 512 97 12:38:30,8833281 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 229 130, Length: 512 97 12:38:30,8833345 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 229 162, Length: 512 97 12:38:30,8833417 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 229 190, Length: 512 97 12:38:30,8833481 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 229 200, Length: 512 97 12:38:30,8833547 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 229 232, Length: 512 97 12:38:30,8833622 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 229 259, Length: 512 97 12:38:30,8833686 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 229 269, Length: 512 97 12:38:30,8833752 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 229 301, Length: 512 97 12:38:30,8833824 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 229 328, Length: 512 97 12:38:30,8833885 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 229 338, Length: 512 97 12:38:30,8833952 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 229 370, Length: 512 97 12:38:30,8834024 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 229 397, Length: 512 97 12:38:30,8834085 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 229 407, Length: 512 97 12:38:30,8834151 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 229 439, Length: 512 97 12:38:30,8834223 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 229 466, Length: 512 97 12:38:30,8834287 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 229 476, Length: 512 97 12:38:30,8834354 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 229 508, Length: 512 97 12:38:30,8834426 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 229 535, Length: 512 97 12:38:30,8834489 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 229 545, Length: 512 97 12:38:30,8834559 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 229 577, Length: 512 97 12:38:30,8834631 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 229 604, Length: 512 97 12:38:30,8834692 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 229 614, Length: 512 97 12:38:30,8834758 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 229 646, Length: 512 97 12:38:30,8834847 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 229 673, Length: 512 97 12:38:30,8834911 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 229 683, Length: 512 97 12:38:30,8834974 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 229 715, Length: 512 97 12:38:30,8835046 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 229 742, Length: 512 97 12:38:30,8835107 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 229 752, Length: 512 97 12:38:30,8835174 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 229 784, Length: 512 97 12:38:30,8835246 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 229 807, Length: 512 97 12:38:30,8835307 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 229 817, Length: 512 97 12:38:30,8835459 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 229 849, Length: 512 97 12:38:30,8835614 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 229 873, Length: 512 97 12:38:30,8835681 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 229 883, Length: 512 97 12:38:30,8835747 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 229 915, Length: 512 97 12:38:30,8835819 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 229 939, Length: 512 97 12:38:30,8835880 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 229 949, Length: 512 97 12:38:30,8835947 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 229 981, Length: 512 97 12:38:30,8836021 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 230 006, Length: 512 97 12:38:30,8836082 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 230 016, Length: 512 97 12:38:30,8836149 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 230 048, Length: 512 97 12:38:30,8836224 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 230 076, Length: 512 97 12:38:30,8836285 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 230 086, Length: 512 97 12:38:30,8836351 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 230 118, Length: 512 97 12:38:30,8836426 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 230 148, Length: 512 97 12:38:30,8836487 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 230 158, Length: 512 97 12:38:30,8836553 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 230 190, Length: 512 97 12:38:30,8836634 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 230 220, Length: 512 97 12:38:30,8836698 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 230 230, Length: 512 97 12:38:30,8836764 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 230 262, Length: 512 97 12:38:30,8836842 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 230 292, Length: 512 97 12:38:30,8836905 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 230 302, Length: 512 97 12:38:30,8836972 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 230 334, Length: 512 97 12:38:30,8837066 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 230 361, Length: 512 97 12:38:30,8837127 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 230 371, Length: 512 97 12:38:30,8837193 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 230 403, Length: 512 97 12:38:30,8837265 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 230 430, Length: 512 97 12:38:30,8837329 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 230 440, Length: 512 97 12:38:30,8837396 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 230 472, Length: 512 97 12:38:30,8837468 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 230 501, Length: 512 97 12:38:30,8837531 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 230 511, Length: 512 97 12:38:30,8837598 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 230 543, Length: 512 97 12:38:30,8837670 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 230 571, Length: 512 97 12:38:30,8837731 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 230 581, Length: 512 97 12:38:30,8837797 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 230 613, Length: 512 97 12:38:30,8837869 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 230 640, Length: 512 97 12:38:30,8837930 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 230 650, Length: 512 97 12:38:30,8837997 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 230 682, Length: 512 97 12:38:30,8838072 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 230 712, Length: 512 97 12:38:30,8838133 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 230 722, Length: 512 97 12:38:30,8838199 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 230 754, Length: 512 97 12:38:30,8838274 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 230 783, Length: 512 97 12:38:30,8838335 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 230 793, Length: 512 97 12:38:30,8838401 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 230 825, Length: 512 97 12:38:30,8838473 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 230 847, Length: 512 97 12:38:30,8838534 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 230 857, Length: 512 97 12:38:30,8838601 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 230 889, Length: 512 97 12:38:30,8838673 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 230 913, Length: 512 97 12:38:30,8838737 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 230 923, Length: 512 97 12:38:30,8838800 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 230 955, Length: 512 97 12:38:30,8838872 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 230 980, Length: 512 97 12:38:30,8838939 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 230 990, Length: 512 97 12:38:30,8839005 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 231 022, Length: 512 97 12:38:30,8839077 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 231 048, Length: 512 97 12:38:30,8839138 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 231 058, Length: 512 97 12:38:30,8839205 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 231 090, Length: 512 97 12:38:30,8839277 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 231 120, Length: 512 97 12:38:30,8839341 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 231 130, Length: 512 97 12:38:30,8839407 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 231 162, Length: 512 97 12:38:30,8839523 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 231 198, Length: 512 97 12:38:30,8839584 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 231 208, Length: 512 97 12:38:30,8839651 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 231 240, Length: 512 97 12:38:30,8839723 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 231 264, Length: 512 97 12:38:30,8839784 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 231 274, Length: 512 97 12:38:30,8839850 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 231 306, Length: 512 97 12:38:30,8839925 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 231 333, Length: 512 97 12:38:30,8839986 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 231 343, Length: 512 97 12:38:30,8840053 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 231 375, Length: 512 97 12:38:30,8840144 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 231 407, Length: 512 97 12:38:30,8840208 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 231 417, Length: 512 97 12:38:30,8840277 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 231 449, Length: 512 97 12:38:30,8840352 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 231 481, Length: 512 97 12:38:30,8840413 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 231 491, Length: 512 97 12:38:30,8840479 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 231 523, Length: 512 97 12:38:30,8840554 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 231 554, Length: 512 97 12:38:30,8840621 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 231 564, Length: 512 97 12:38:30,8840687 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 231 596, Length: 512 97 12:38:30,8840759 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 231 621, Length: 512 97 12:38:30,8840823 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 231 631, Length: 512 97 12:38:30,8840889 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 231 663, Length: 512 97 12:38:30,8840961 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 231 690, Length: 512 97 12:38:30,8841022 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 231 700, Length: 512 97 12:38:30,8841094 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 231 732, Length: 512 97 12:38:30,8841169 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 231 764, Length: 512 97 12:38:30,8841233 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 231 774, Length: 512 97 12:38:30,8841299 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 231 806, Length: 512 97 12:38:30,8841374 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 231 840, Length: 512 97 12:38:30,8841435 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 231 850, Length: 512 97 12:38:30,8841502 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 231 882, Length: 512 97 12:38:30,8841574 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 231 906, Length: 512 97 12:38:30,8841635 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 231 916, Length: 512 97 12:38:30,8841704 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 231 948, Length: 512 97 12:38:30,8841776 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 231 975, Length: 512 97 12:38:30,8841837 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 231 985, Length: 512 97 12:38:30,8841903 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 232 017, Length: 512 97 12:38:30,8841975 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 232 044, Length: 512 97 12:38:30,8842039 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 232 054, Length: 512 97 12:38:30,8842106 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 232 086, Length: 512 97 12:38:30,8842180 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 232 110, Length: 512 97 12:38:30,8842241 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 232 120, Length: 512 97 12:38:30,8842308 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 232 152, Length: 512 97 12:38:30,8842383 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 232 179, Length: 512 97 12:38:30,8842444 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 232 189, Length: 512 97 12:38:30,8842510 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 232 221, Length: 512 97 12:38:30,8842599 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 232 248, Length: 512 97 12:38:30,8842663 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 232 258, Length: 512 97 12:38:30,8842729 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 232 290, Length: 512 97 12:38:30,8842801 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 232 313, Length: 512 97 12:38:30,8842862 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 232 323, Length: 512 97 12:38:30,8842929 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 232 355, Length: 512 97 12:38:30,8843001 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 232 378, Length: 512 97 12:38:30,8843061 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 232 388, Length: 512 97 12:38:30,8843128 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 232 420, Length: 512 97 12:38:30,8843206 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 232 447, Length: 512 97 12:38:30,8843269 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 232 457, Length: 512 97 12:38:30,8843336 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 232 489, Length: 512 97 12:38:30,8843408 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 232 515, Length: 512 97 12:38:30,8843469 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 232 525, Length: 512 97 12:38:30,8843535 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 232 557, Length: 512 97 12:38:30,8843610 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 232 585, Length: 512 97 12:38:30,8843674 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 232 595, Length: 512 97 12:38:30,8843740 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 232 627, Length: 512 97 12:38:30,8843810 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 232 642, Length: 512 97 12:38:30,8843870 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 232 652, Length: 512 97 12:38:30,8843937 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 232 684, Length: 512 97 12:38:30,8844006 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 232 701, Length: 512 97 12:38:30,8844067 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 232 711, Length: 512 97 12:38:30,8844134 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 232 743, Length: 512 97 12:38:30,8844203 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 232 762, Length: 512 97 12:38:30,8844267 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 232 772, Length: 512 97 12:38:30,8844333 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 232 804, Length: 512 97 12:38:30,8844402 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 232 818, Length: 512 97 12:38:30,8844463 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 232 828, Length: 512 97 12:38:30,8844530 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 232 860, Length: 512 97 12:38:30,8844599 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 232 875, Length: 512 97 12:38:30,8844663 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 232 885, Length: 512 97 12:38:30,8844729 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 232 917, Length: 512 97 12:38:30,8844796 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 232 929, Length: 512 97 12:38:30,8844860 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 232 939, Length: 512 97 12:38:30,8844926 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 232 971, Length: 512 97 12:38:30,8844998 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 232 983, Length: 512 97 12:38:30,8845059 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 232 993, Length: 512 97 12:38:30,8845126 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 233 025, Length: 512 97 12:38:30,8845195 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 233 040, Length: 512 97 12:38:30,8845261 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 233 050, Length: 512 97 12:38:30,8845328 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 233 082, Length: 512 97 12:38:30,8845397 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 233 095, Length: 512 97 12:38:30,8845641 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 233 105, Length: 512 97 12:38:30,8845752 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 233 137, Length: 512 97 12:38:30,8845879 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 233 152, Length: 512 97 12:38:30,8845976 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 233 162, Length: 512 97 12:38:30,8846051 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 233 194, Length: 512 97 12:38:30,8846120 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 233 204, Length: 512 97 12:38:30,8846184 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 233 214, Length: 512 97 12:38:30,8846250 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 233 246, Length: 512 97 12:38:30,8846322 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 233 267, Length: 512 97 12:38:30,8846383 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 233 277, Length: 512 97 12:38:30,8846453 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 233 309, Length: 512 97 12:38:30,8846522 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 233 329, Length: 512 97 12:38:30,8846583 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 233 339, Length: 512 97 12:38:30,8846649 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 233 371, Length: 512 97 12:38:30,8846719 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 233 391, Length: 512 97 12:38:30,8846780 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 233 401, Length: 512 97 12:38:30,8846846 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 233 433, Length: 512 97 12:38:30,8846915 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 233 453, Length: 512 97 12:38:30,8846979 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 233 463, Length: 512 97 12:38:30,8847046 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 233 495, Length: 512 97 12:38:30,8847115 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 233 510, Length: 512 97 12:38:30,8847176 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 233 520, Length: 512 97 12:38:30,8847242 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 233 552, Length: 512 97 12:38:30,8847312 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 233 569, Length: 512 97 12:38:30,8847372 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 233 579, Length: 512 97 12:38:30,8847439 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 233 611, Length: 512 97 12:38:30,8847508 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 233 625, Length: 512 97 12:38:30,8847572 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 233 635, Length: 512 97 12:38:30,8847644 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 233 667, Length: 512 97 12:38:30,8847719 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 233 691, Length: 512 97 12:38:30,8847780 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 233 701, Length: 512 97 12:38:30,8847843 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 233 733, Length: 512 97 12:38:30,8847913 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 233 747, Length: 512 97 12:38:30,8847974 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 233 757, Length: 512 97 12:38:30,8848040 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 233 789, Length: 512 97 12:38:30,8848140 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 233 803, Length: 512 97 12:38:30,8848206 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 233 813, Length: 512 97 12:38:30,8848273 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 233 845, Length: 512 97 12:38:30,8848342 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 233 861, Length: 512 97 12:38:30,8848403 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 233 871, Length: 512 97 12:38:30,8848470 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 233 903, Length: 512 97 12:38:30,8848536 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 233 913, Length: 512 97 12:38:30,8848600 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 233 923, Length: 512 97 12:38:30,8848664 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 233 955, Length: 512 97 12:38:30,8848736 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 233 973, Length: 512 97 12:38:30,8848799 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 233 983, Length: 512 97 12:38:30,8848866 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 234 015, Length: 512 97 12:38:30,8848932 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 234 026, Length: 512 97 12:38:30,8848996 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 234 036, Length: 512 97 12:38:30,8849063 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 234 068, Length: 512 97 12:38:30,8849129 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 234 082, Length: 512 97 12:38:30,8849193 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 234 092, Length: 512 97 12:38:30,8849259 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 234 124, Length: 512 97 12:38:30,8849329 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 234 140, Length: 512 97 12:38:30,8849389 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 234 150, Length: 512 97 12:38:30,8849456 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 234 182, Length: 512 97 12:38:30,8849525 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 234 198, Length: 512 97 12:38:30,8849586 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 234 208, Length: 512 97 12:38:30,8849653 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 234 240, Length: 512 97 12:38:30,8849727 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 234 257, Length: 512 97 12:38:30,8849791 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 234 267, Length: 512 97 12:38:30,8849858 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 234 299, Length: 512 97 12:38:30,8849924 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 234 313, Length: 512 97 12:38:30,8849988 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 234 323, Length: 512 97 12:38:30,8850054 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 234 355, Length: 512 97 12:38:30,8850126 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 234 373, Length: 512 97 12:38:30,8850187 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 234 383, Length: 512 97 12:38:30,8850254 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 234 415, Length: 512 97 12:38:30,8850340 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 234 429, Length: 512 97 12:38:30,8850403 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 234 439, Length: 512 97 12:38:30,8850470 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 234 471, Length: 512 97 12:38:30,8850539 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 234 485, Length: 512 97 12:38:30,8850600 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 234 495, Length: 512 97 12:38:30,8850669 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 234 527, Length: 512 97 12:38:30,8850814 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 234 537, Length: 512 97 12:38:30,8850880 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 234 547, Length: 512 97 12:38:30,8850947 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 234 579, Length: 512 97 12:38:30,8851016 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 234 591, Length: 512 97 12:38:30,8851077 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 234 601, Length: 512 97 12:38:30,8851143 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 234 633, Length: 512 97 12:38:30,8851212 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 234 646, Length: 512 97 12:38:30,8851273 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 234 656, Length: 512 97 12:38:30,8851340 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 234 688, Length: 512 97 12:38:30,8851409 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 234 702, Length: 512 97 12:38:30,8851470 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 234 712, Length: 512 97 12:38:30,8851539 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 234 744, Length: 512 97 12:38:30,8851609 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 234 767, Length: 512 97 12:38:30,8851672 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 234 777, Length: 512 97 12:38:30,8851739 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 234 809, Length: 512 97 12:38:30,8851811 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 234 830, Length: 512 97 12:38:30,8851880 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 234 840, Length: 512 97 12:38:30,8851947 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 234 872, Length: 512 97 12:38:30,8852021 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 234 894, Length: 512 97 12:38:30,8852082 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 234 904, Length: 512 97 12:38:30,8852149 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 234 936, Length: 512 97 12:38:30,8852224 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 234 966, Length: 512 97 12:38:30,8852285 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 234 976, Length: 512 97 12:38:30,8852351 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 235 008, Length: 512 97 12:38:30,8852423 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 235 034, Length: 512 97 12:38:30,8852484 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 235 044, Length: 512 97 12:38:30,8852551 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 235 076, Length: 512 97 12:38:30,8852625 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 235 104, Length: 512 97 12:38:30,8852686 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 235 114, Length: 512 97 12:38:30,8852753 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 235 146, Length: 512 97 12:38:30,8852825 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 235 172, Length: 512 97 12:38:30,8852886 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 235 182, Length: 512 97 12:38:30,8852952 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 235 214, Length: 512 97 12:38:30,8853038 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 235 238, Length: 512 97 12:38:30,8853099 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 235 248, Length: 512 97 12:38:30,8853168 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 235 280, Length: 512 97 12:38:30,8853241 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 235 304, Length: 512 97 12:38:30,8853301 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 235 314, Length: 512 97 12:38:30,8853368 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 235 346, Length: 512 97 12:38:30,8853437 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 235 370, Length: 512 97 12:38:30,8853501 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 235 380, Length: 512 97 12:38:30,8853567 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 235 412, Length: 512 97 12:38:30,8853637 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 235 436, Length: 512 97 12:38:30,8853698 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 235 446, Length: 512 97 12:38:30,8853767 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 235 478, Length: 512 97 12:38:30,8853853 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 235 494, Length: 512 97 12:38:30,8853917 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 235 504, Length: 512 97 12:38:30,8853989 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 235 536, Length: 512 97 12:38:30,8854061 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 235 552, Length: 512 97 12:38:30,8854122 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 235 562, Length: 512 97 12:38:30,8854188 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 235 594, Length: 512 97 12:38:30,8854257 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 235 610, Length: 512 97 12:38:30,8854318 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 235 620, Length: 512 97 12:38:30,8854388 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 235 652, Length: 512 97 12:38:30,8854462 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 235 677, Length: 512 97 12:38:30,8854523 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 235 687, Length: 512 97 12:38:30,8854593 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 235 719, Length: 512 97 12:38:30,8854670 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 235 755, Length: 512 97 12:38:30,8854731 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 235 765, Length: 512 97 12:38:30,8854798 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 235 797, Length: 512 97 12:38:30,8854872 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 235 829, Length: 512 97 12:38:30,8854936 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 235 839, Length: 512 97 12:38:30,8855003 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 235 871, Length: 512 97 12:38:30,8855075 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 235 900, Length: 512 97 12:38:30,8855138 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 235 910, Length: 512 97 12:38:30,8855341 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 235 942, Length: 512 97 12:38:30,8855446 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 235 973, Length: 512 97 12:38:30,8855510 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 235 983, Length: 512 97 12:38:30,8855576 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 236 015, Length: 512 97 12:38:30,8855651 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 236 047, Length: 512 97 12:38:30,8855715 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 236 057, Length: 512 97 12:38:30,8855781 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 236 089, Length: 512 97 12:38:30,8855856 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 236 118, Length: 512 97 12:38:30,8855917 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 236 128, Length: 512 97 12:38:30,8855983 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 236 160, Length: 512 97 12:38:30,8856055 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 236 190, Length: 512 97 12:38:30,8856116 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 236 200, Length: 512 97 12:38:30,8856186 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 236 232, Length: 512 97 12:38:30,8856266 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 236 265, Length: 512 97 12:38:30,8856327 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 236 275, Length: 512 97 12:38:30,8856393 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 236 307, Length: 512 97 12:38:30,8856468 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 236 335, Length: 512 97 12:38:30,8856529 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 236 345, Length: 512 97 12:38:30,8856596 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 236 377, Length: 512 97 12:38:30,8856670 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 236 409, Length: 512 97 12:38:30,8856731 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 236 419, Length: 512 97 12:38:30,8856798 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 236 451, Length: 512 97 12:38:30,8856873 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 236 473, Length: 512 97 12:38:30,8856934 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 236 483, Length: 512 97 12:38:30,8857003 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 236 515, Length: 512 97 12:38:30,8857072 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 236 529, Length: 512 97 12:38:30,8857133 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 236 539, Length: 512 97 12:38:30,8857200 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 236 571, Length: 512 97 12:38:30,8857266 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 236 582, Length: 512 97 12:38:30,8857330 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 236 592, Length: 512 97 12:38:30,8857396 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 236 624, Length: 512 97 12:38:30,8857466 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 236 643, Length: 512 97 12:38:30,8857527 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 236 653, Length: 512 97 12:38:30,8857596 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 236 685, Length: 512 97 12:38:30,8857665 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 236 706, Length: 512 97 12:38:30,8857726 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 236 716, Length: 512 97 12:38:30,8857793 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 236 748, Length: 512 97 12:38:30,8857862 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 236 765, Length: 512 97 12:38:30,8857923 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 236 775, Length: 512 97 12:38:30,8857989 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 236 807, Length: 512 97 12:38:30,8858056 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 236 818, Length: 512 97 12:38:30,8858119 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 236 828, Length: 512 97 12:38:30,8858186 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 236 860, Length: 512 97 12:38:30,8858252 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 236 872, Length: 512 97 12:38:30,8858319 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 236 882, Length: 512 97 12:38:30,8858385 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 236 914, Length: 512 97 12:38:30,8858452 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 236 928, Length: 512 97 12:38:30,8858516 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 236 938, Length: 512 97 12:38:30,8858582 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 236 970, Length: 512 97 12:38:30,8858651 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 236 988, Length: 512 97 12:38:30,8858712 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 236 998, Length: 512 97 12:38:30,8858779 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 237 030, Length: 512 97 12:38:30,8858848 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 237 044, Length: 512 97 12:38:30,8858909 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 237 054, Length: 512 97 12:38:30,8858976 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 237 086, Length: 512 97 12:38:30,8859045 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 237 104, Length: 512 97 12:38:30,8859106 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 237 114, Length: 512 97 12:38:30,8859172 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 237 146, Length: 512 97 12:38:30,8859242 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 237 161, Length: 512 97 12:38:30,8859303 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 237 171, Length: 512 97 12:38:30,8859369 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 237 203, Length: 512 97 12:38:30,8859438 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 237 219, Length: 512 97 12:38:30,8859499 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 237 229, Length: 512 97 12:38:30,8859566 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 237 261, Length: 512 97 12:38:30,8859635 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 237 277, Length: 512 97 12:38:30,8859696 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 237 287, Length: 512 97 12:38:30,8859762 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 237 319, Length: 512 97 12:38:30,8859832 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 237 336, Length: 512 97 12:38:30,8859895 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 237 346, Length: 512 97 12:38:30,8859962 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 237 378, Length: 512 97 12:38:30,8860028 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 237 391, Length: 512 97 12:38:30,8860089 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 237 401, Length: 512 97 12:38:30,8860156 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 237 433, Length: 512 97 12:38:30,8860225 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 237 449, Length: 512 97 12:38:30,8860286 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 237 459, Length: 512 97 12:38:30,8860358 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 237 491, Length: 512 97 12:38:30,8860425 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 237 508, Length: 512 97 12:38:30,8860488 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 237 518, Length: 512 97 12:38:30,8860555 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 237 550, Length: 512 97 12:38:30,8860624 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 237 563, Length: 512 97 12:38:30,8860685 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 237 573, Length: 512 97 12:38:30,8860752 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 237 605, Length: 512 97 12:38:30,8860824 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 237 630, Length: 512 97 12:38:30,8860885 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 237 640, Length: 512 97 12:38:30,8860951 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 237 672, Length: 512 97 12:38:30,8861045 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 237 693, Length: 512 97 12:38:30,8861109 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 237 703, Length: 512 97 12:38:30,8861178 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 237 735, Length: 512 97 12:38:30,8861250 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 237 758, Length: 512 97 12:38:30,8861311 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 237 768, Length: 512 97 12:38:30,8861378 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 237 800, Length: 512 97 12:38:30,8861450 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 237 821, Length: 512 97 12:38:30,8861511 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 237 831, Length: 512 97 12:38:30,8861577 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 237 863, Length: 512 97 12:38:30,8861646 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 237 886, Length: 512 97 12:38:30,8861707 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 237 896, Length: 512 97 12:38:30,8861777 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 237 928, Length: 512 97 12:38:30,8861849 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 237 951, Length: 512 97 12:38:30,8861910 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 237 961, Length: 512 97 12:38:30,8861976 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 237 993, Length: 512 97 12:38:30,8862048 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 238 017, Length: 512 97 12:38:30,8862109 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 238 027, Length: 512 97 12:38:30,8862176 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 238 059, Length: 512 97 12:38:30,8862248 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 238 081, Length: 512 97 12:38:30,8862311 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 238 091, Length: 512 97 12:38:30,8862378 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 238 123, Length: 512 97 12:38:30,8862455 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 238 144, Length: 512 97 12:38:30,8862519 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 238 154, Length: 512 97 12:38:30,8862586 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 238 186, Length: 512 97 12:38:30,8862655 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 238 202, Length: 512 97 12:38:30,8862716 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 238 212, Length: 512 97 12:38:30,8862782 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 238 244, Length: 512 97 12:38:30,8862849 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 238 259, Length: 512 97 12:38:30,8862910 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 238 269, Length: 512 97 12:38:30,8862979 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 238 301, Length: 512 97 12:38:30,8863051 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 238 319, Length: 512 97 12:38:30,8863112 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 238 329, Length: 512 97 12:38:30,8863179 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 238 361, Length: 512 97 12:38:30,8863251 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 238 381, Length: 512 97 12:38:30,8863312 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 238 391, Length: 512 97 12:38:30,8863378 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 238 423, Length: 512 97 12:38:30,8863450 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 238 451, Length: 512 97 12:38:30,8863511 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 238 461, Length: 512 97 12:38:30,8863580 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 238 493, Length: 512 97 12:38:30,8863655 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 238 518, Length: 512 97 12:38:30,8863716 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 238 528, Length: 512 97 12:38:30,8863783 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 238 560, Length: 512 97 12:38:30,8863852 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 238 575, Length: 512 97 12:38:30,8863916 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 238 585, Length: 512 97 12:38:30,8863979 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 238 617, Length: 512 97 12:38:30,8864048 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 238 632, Length: 512 97 12:38:30,8864109 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 238 642, Length: 512 97 12:38:30,8864176 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 238 674, Length: 512 97 12:38:30,8864248 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 238 690, Length: 512 97 12:38:30,8864309 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 238 700, Length: 512 97 12:38:30,8864375 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 238 732, Length: 512 97 12:38:30,8864445 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 238 747, Length: 512 97 12:38:30,8864511 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 238 757, Length: 512 97 12:38:30,8864578 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 238 789, Length: 512 97 12:38:30,8864647 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 238 805, Length: 512 97 12:38:30,8864708 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 238 815, Length: 512 97 12:38:30,8864774 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 238 847, Length: 512 97 12:38:30,8864844 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 238 862, Length: 512 97 12:38:30,8864905 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 238 872, Length: 512 97 12:38:30,8865146 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 238 904, Length: 512 97 12:38:30,8865273 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 238 916, Length: 512 97 12:38:30,8865378 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 238 926, Length: 512 97 12:38:30,8865478 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 238 958, Length: 512 97 12:38:30,8865583 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 238 969, Length: 512 97 12:38:30,8865650 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 238 979, Length: 512 97 12:38:30,8865719 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 239 011, Length: 512 97 12:38:30,8865791 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 239 026, Length: 512 97 12:38:30,8865852 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 239 036, Length: 512 97 12:38:30,8865919 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 239 068, Length: 512 97 12:38:30,8865991 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 239 082, Length: 512 97 12:38:30,8866052 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 239 092, Length: 512 97 12:38:30,8866118 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 239 124, Length: 512 97 12:38:30,8866190 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 239 143, Length: 512 97 12:38:30,8866251 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 239 153, Length: 512 97 12:38:30,8866320 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 239 185, Length: 512 97 12:38:30,8866392 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 239 206, Length: 512 97 12:38:30,8866453 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 239 216, Length: 512 97 12:38:30,8866523 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 239 248, Length: 512 97 12:38:30,8866595 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 239 268, Length: 512 97 12:38:30,8866656 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 239 278, Length: 512 97 12:38:30,8866722 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 239 310, Length: 512 97 12:38:30,8866794 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 239 334, Length: 512 97 12:38:30,8866858 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 239 344, Length: 512 97 12:38:30,8866930 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 239 376, Length: 512 97 12:38:30,8867002 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 239 399, Length: 512 97 12:38:30,8867066 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 239 409, Length: 512 97 12:38:30,8867129 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 239 441, Length: 512 97 12:38:30,8867199 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 239 456, Length: 512 97 12:38:30,8867262 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 239 466, Length: 512 97 12:38:30,8867329 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 239 498, Length: 512 97 12:38:30,8867398 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 239 521, Length: 512 97 12:38:30,8867462 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 239 531, Length: 512 97 12:38:30,8867528 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 239 563, Length: 512 97 12:38:30,8867600 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 239 579, Length: 512 97 12:38:30,8867661 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 239 589, Length: 512 97 12:38:30,8867728 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 239 621, Length: 512 97 12:38:30,8867800 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 239 638, Length: 511 97 12:38:30,8867866 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 239 648, Length: 501 97 12:38:30,8867936 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 239 680, Length: 469 97 12:38:30,8868008 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 239 698, Length: 451 97 12:38:30,8868074 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 239 708, Length: 441 97 12:38:30,8868143 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 239 740, Length: 409 97 12:38:30,8868215 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 239 755, Length: 394 97 12:38:30,8868279 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 239 765, Length: 384 97 12:38:30,8868348 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 239 797, Length: 352 97 12:38:30,8868423 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 239 817, Length: 332 97 12:38:30,8868490 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 239 827, Length: 322 97 12:38:30,8868559 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 239 859, Length: 290 97 12:38:30,8868631 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 239 873, Length: 276 97 12:38:30,8868695 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 239 883, Length: 266 97 12:38:30,8868764 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 239 915, Length: 234 97 12:38:30,8868839 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 239 939, Length: 210 97 12:38:30,8868903 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 239 949, Length: 200 97 12:38:30,8868972 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 239 981, Length: 168 97 12:38:30,8869052 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 240 007, Length: 142 97 12:38:30,8869119 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 240 017, Length: 132 97 12:38:30,8869188 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 240 049, Length: 100 97 12:38:30,8869257 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 240 066, Length: 83 97 12:38:30,8869321 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 240 076, Length: 73 97 12:38:30,8869390 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 240 108, Length: 41 97 12:38:30,8869465 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 240 127, Length: 22 97 12:38:30,8869559 MCLauncher.exe 84 CloseFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS 97 12:38:30,8870775 MCLauncher.exe 84 CreateFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Desired Access: Generic Read, Disposition: Open, Options: Synchronous IO Non-Alert, Non-Directory File, Attributes: N, ShareMode: Read, Write, AllocationSize: n/a, OpenResult: Opened 97 12:38:30,8871011 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 2 131 729, Length: 4 096, Priority: Normal 97 12:38:30,8871177 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 2 131 755, Length: 512 97 12:38:30,8871257 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 2 131 772, Length: 1 024 97 12:38:30,8871318 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 2 132 796, Length: 512 97 12:38:30,8871399 MCLauncher.exe 84 CloseFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS 97 12:38:30,8872657 MCLauncher.exe 84 RegQueryKey HKCU SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:30,8872731 MCLauncher.exe 84 RegQueryKey HKCU SUCCESS Query: Name 97 12:38:30,8872845 MCLauncher.exe 84 RegOpenKey HKCU\Software\Python\PythonCore\MCLauncher\Modules\os NAME NOT FOUND Desired Access: Query Value 97 12:38:30,8872989 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:30,8873036 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: Name 97 12:38:30,8873130 MCLauncher.exe 84 RegOpenKey HKLM\Software\WOW6432Node\Python\PythonCore\MCLauncher\Modules\os NAME NOT FOUND Desired Access: Query Value 97 12:38:30,8874222 MCLauncher.exe 84 CreateFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Desired Access: Generic Read, Disposition: Open, Options: Synchronous IO Non-Alert, Non-Directory File, Attributes: N, ShareMode: Read, Write, AllocationSize: n/a, OpenResult: Opened 97 12:38:30,8874455 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 2 183 461, Length: 4 096, Priority: Normal 97 12:38:30,8874726 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 2 183 487, Length: 512 97 12:38:30,8874892 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 2 183 497, Length: 5 120 97 12:38:30,8874959 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 2 188 617, Length: 512 97 12:38:30,8875042 MCLauncher.exe 84 CloseFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS 97 12:38:30,8877619 MCLauncher.exe 84 RegQueryKey HKCU SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:30,8877693 MCLauncher.exe 84 RegQueryKey HKCU SUCCESS Query: Name 97 12:38:30,8877802 MCLauncher.exe 84 RegOpenKey HKCU\Software\Python\PythonCore\MCLauncher\Modules\ntpath NAME NOT FOUND Desired Access: Query Value 97 12:38:30,8877929 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:30,8877976 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: Name 97 12:38:30,8878065 MCLauncher.exe 84 RegOpenKey HKLM\Software\WOW6432Node\Python\PythonCore\MCLauncher\Modules\ntpath NAME NOT FOUND Desired Access: Query Value 97 12:38:30,8879159 MCLauncher.exe 84 CreateFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Desired Access: Generic Read, Disposition: Open, Options: Synchronous IO Non-Alert, Non-Directory File, Attributes: N, ShareMode: Read, Write, AllocationSize: n/a, OpenResult: Opened 97 12:38:30,8879400 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 2 162 672, Length: 4 096, Priority: Normal 97 12:38:30,8879541 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 2 162 698, Length: 512 97 12:38:30,8879691 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 2 162 712, Length: 4 096 97 12:38:30,8879769 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 2 166 808, Length: 512 97 12:38:30,8879855 MCLauncher.exe 84 CloseFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS 97 12:38:30,8881309 MCLauncher.exe 84 RegQueryKey HKCU SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:30,8881376 MCLauncher.exe 84 RegQueryKey HKCU SUCCESS Query: Name 97 12:38:30,8881475 MCLauncher.exe 84 RegOpenKey HKCU\Software\Python\PythonCore\MCLauncher\Modules\stat NAME NOT FOUND Desired Access: Query Value 97 12:38:30,8881589 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:30,8881636 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: Name 97 12:38:30,8881725 MCLauncher.exe 84 RegOpenKey HKLM\Software\WOW6432Node\Python\PythonCore\MCLauncher\Modules\stat NAME NOT FOUND Desired Access: Query Value 97 12:38:30,8882786 MCLauncher.exe 84 CreateFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Desired Access: Generic Read, Disposition: Open, Options: Synchronous IO Non-Alert, Non-Directory File, Attributes: N, ShareMode: Read, Write, AllocationSize: n/a, OpenResult: Opened 97 12:38:30,8883021 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 2 469 343, Length: 4 096, Priority: Normal 97 12:38:30,8883179 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 2 469 369, Length: 512 97 12:38:30,8883265 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 2 469 381, Length: 512 97 12:38:30,8883326 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 2 469 893, Length: 512 97 12:38:30,8883406 MCLauncher.exe 84 CloseFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS 97 12:38:30,8885077 MCLauncher.exe 84 RegQueryKey HKCU SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:30,8885146 MCLauncher.exe 84 RegQueryKey HKCU SUCCESS Query: Name 97 12:38:30,8885249 MCLauncher.exe 84 RegOpenKey HKCU\Software\Python\PythonCore\MCLauncher\Modules\genericpath NAME NOT FOUND Desired Access: Query Value 97 12:38:30,8885365 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:30,8885412 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: Name 97 12:38:30,8885504 MCLauncher.exe 84 RegOpenKey HKLM\Software\WOW6432Node\Python\PythonCore\MCLauncher\Modules\genericpath NAME NOT FOUND Desired Access: Query Value 97 12:38:30,8886606 MCLauncher.exe 84 CreateFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Desired Access: Generic Read, Disposition: Open, Options: Synchronous IO Non-Alert, Non-Directory File, Attributes: N, ShareMode: Read, Write, AllocationSize: n/a, OpenResult: Opened 97 12:38:30,8886850 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 2 087 485, Length: 4 096, Priority: Normal 97 12:38:30,8887016 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 2 087 511, Length: 512 97 12:38:30,8887105 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 2 087 530, Length: 512 97 12:38:30,8887166 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 2 088 042, Length: 512 97 12:38:30,8887249 MCLauncher.exe 84 CloseFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS 97 12:38:30,8887906 MCLauncher.exe 84 RegQueryKey HKCU SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:30,8887970 MCLauncher.exe 84 RegQueryKey HKCU SUCCESS Query: Name 97 12:38:30,8888066 MCLauncher.exe 84 RegOpenKey HKCU\Software\Python\PythonCore\MCLauncher\Modules\warnings NAME NOT FOUND Desired Access: Query Value 97 12:38:30,8888183 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:30,8888230 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: Name 97 12:38:30,8888316 MCLauncher.exe 84 RegOpenKey HKLM\Software\WOW6432Node\Python\PythonCore\MCLauncher\Modules\warnings NAME NOT FOUND Desired Access: Query Value 97 12:38:30,8889358 MCLauncher.exe 84 CreateFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Desired Access: Generic Read, Disposition: Open, Options: Synchronous IO Non-Alert, Non-Directory File, Attributes: N, ShareMode: Read, Write, AllocationSize: n/a, OpenResult: Opened 97 12:38:30,8889590 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 2 569 927, Length: 4 096, Priority: Normal 97 12:38:30,8889726 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 2 569 953, Length: 512 97 12:38:30,8889809 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 2 569 969, Length: 4 096 97 12:38:30,8889873 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 2 574 065, Length: 512 97 12:38:30,8889962 MCLauncher.exe 84 CloseFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS 97 12:38:30,8891278 MCLauncher.exe 84 RegQueryKey HKCU SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:30,8891341 MCLauncher.exe 84 RegQueryKey HKCU SUCCESS Query: Name 97 12:38:30,8891438 MCLauncher.exe 84 RegOpenKey HKCU\Software\Python\PythonCore\MCLauncher\Modules\types NAME NOT FOUND Desired Access: Query Value 97 12:38:30,8891555 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:30,8891602 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: Name 97 12:38:30,8891690 MCLauncher.exe 84 RegOpenKey HKLM\Software\WOW6432Node\Python\PythonCore\MCLauncher\Modules\types NAME NOT FOUND Desired Access: Query Value 97 12:38:30,8892732 MCLauncher.exe 84 CreateFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Desired Access: Generic Read, Disposition: Open, Options: Synchronous IO Non-Alert, Non-Directory File, Attributes: N, ShareMode: Read, Write, AllocationSize: n/a, OpenResult: Opened 97 12:38:30,8892993 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 2 539 979, Length: 4 096, Priority: Normal 97 12:38:30,8893131 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 2 540 005, Length: 512 97 12:38:30,8893217 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 2 540 018, Length: 1 024 97 12:38:30,8893278 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 2 541 042, Length: 512 97 12:38:30,8893358 MCLauncher.exe 84 CloseFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS 97 12:38:30,8895813 MCLauncher.exe 84 RegQueryKey HKCU SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:30,8895882 MCLauncher.exe 84 RegQueryKey HKCU SUCCESS Query: Name 97 12:38:30,8895988 MCLauncher.exe 84 RegOpenKey HKCU\Software\Python\PythonCore\MCLauncher\Modules\UserDict NAME NOT FOUND Desired Access: Query Value 97 12:38:30,8896107 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:30,8896157 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: Name 97 12:38:30,8896242 MCLauncher.exe 84 RegOpenKey HKLM\Software\WOW6432Node\Python\PythonCore\MCLauncher\Modules\UserDict NAME NOT FOUND Desired Access: Query Value 97 12:38:30,8897356 MCLauncher.exe 84 CreateFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Desired Access: Generic Read, Disposition: Open, Options: Synchronous IO Non-Alert, Non-Directory File, Attributes: N, ShareMode: Read, Write, AllocationSize: n/a, OpenResult: Opened 97 12:38:30,8897594 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 1 792 187, Length: 4 096, Priority: Normal 97 12:38:30,8897761 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 1 792 213, Length: 512 97 12:38:30,8897847 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 1 792 229, Length: 2 560 97 12:38:30,8897908 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 1 794 789, Length: 512 97 12:38:30,8897991 MCLauncher.exe 84 CloseFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS 97 12:38:30,8899102 MCLauncher.exe 84 RegQueryKey HKCU SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:30,8899163 MCLauncher.exe 84 RegQueryKey HKCU SUCCESS Query: Name 97 12:38:30,8899260 MCLauncher.exe 84 RegOpenKey HKCU\Software\Python\PythonCore\MCLauncher\Modules\_abcoll NAME NOT FOUND Desired Access: Query Value 97 12:38:30,8899379 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:30,8899426 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: Name 97 12:38:30,8899512 MCLauncher.exe 84 RegOpenKey HKLM\Software\WOW6432Node\Python\PythonCore\MCLauncher\Modules\_abcoll NAME NOT FOUND Desired Access: Query Value 97 12:38:30,8900570 MCLauncher.exe 84 CreateFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Desired Access: Generic Read, Disposition: Open, Options: Synchronous IO Non-Alert, Non-Directory File, Attributes: N, ShareMode: Read, Write, AllocationSize: n/a, OpenResult: Opened 97 12:38:30,8900803 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 1 795 741, Length: 4 096, Priority: Normal 97 12:38:30,8900936 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 1 795 767, Length: 512 97 12:38:30,8901022 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 1 795 782, Length: 5 120 97 12:38:30,8901083 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 1 800 902, Length: 512 97 12:38:30,8901166 MCLauncher.exe 84 CloseFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS 97 12:38:30,8903075 MCLauncher.exe 84 RegQueryKey HKCU SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:30,8903136 MCLauncher.exe 84 RegQueryKey HKCU SUCCESS Query: Name 97 12:38:30,8903235 MCLauncher.exe 84 RegOpenKey HKCU\Software\Python\PythonCore\MCLauncher\Modules\abc NAME NOT FOUND Desired Access: Query Value 97 12:38:30,8903354 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:30,8903399 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: Name 97 12:38:30,8903485 MCLauncher.exe 84 RegOpenKey HKLM\Software\WOW6432Node\Python\PythonCore\MCLauncher\Modules\abc NAME NOT FOUND Desired Access: Query Value 97 12:38:30,8904762 MCLauncher.exe 84 CreateFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Desired Access: Generic Read, Disposition: Open, Options: Synchronous IO Non-Alert, Non-Directory File, Attributes: N, ShareMode: Read, Write, AllocationSize: n/a, OpenResult: Opened 97 12:38:30,8904997 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 1 814 511, Length: 4 096, Priority: Normal 97 12:38:30,8905141 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 1 814 537, Length: 512 97 12:38:30,8905225 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 1 814 548, Length: 1 536 97 12:38:30,8905283 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 1 816 084, Length: 512 97 12:38:30,8905366 MCLauncher.exe 84 CloseFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS 97 12:38:30,8906200 MCLauncher.exe 84 RegQueryKey HKCU SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:30,8906261 MCLauncher.exe 84 RegQueryKey HKCU SUCCESS Query: Name 97 12:38:30,8906355 MCLauncher.exe 84 RegOpenKey HKCU\Software\Python\PythonCore\MCLauncher\Modules\_weakrefset NAME NOT FOUND Desired Access: Query Value 97 12:38:30,8906471 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:30,8906518 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: Name 97 12:38:30,8906604 MCLauncher.exe 84 RegOpenKey HKLM\Software\WOW6432Node\Python\PythonCore\MCLauncher\Modules\_weakrefset NAME NOT FOUND Desired Access: Query Value 97 12:38:30,8907638 MCLauncher.exe 84 CreateFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Desired Access: Generic Read, Disposition: Open, Options: Synchronous IO Non-Alert, Non-Directory File, Attributes: N, ShareMode: Read, Write, AllocationSize: n/a, OpenResult: Opened 97 12:38:30,8907865 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 1 811 950, Length: 4 096, Priority: Normal 97 12:38:30,8907981 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 1 811 976, Length: 512 97 12:38:30,8908064 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 1 811 995, Length: 2 048 97 12:38:30,8908125 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 1 814 043, Length: 512 97 12:38:30,8908206 MCLauncher.exe 84 CloseFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS 97 12:38:30,8916021 MCLauncher.exe 84 RegQueryKey HKCU SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:30,8916099 MCLauncher.exe 84 RegQueryKey HKCU SUCCESS Query: Name 97 12:38:30,8916210 MCLauncher.exe 84 RegOpenKey HKCU\Software\Python\PythonCore\MCLauncher\Modules\copy_reg NAME NOT FOUND Desired Access: Query Value 97 12:38:30,8916335 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:30,8916384 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: Name 97 12:38:30,8916479 MCLauncher.exe 84 RegOpenKey HKLM\Software\WOW6432Node\Python\PythonCore\MCLauncher\Modules\copy_reg NAME NOT FOUND Desired Access: Query Value 97 12:38:30,8917606 MCLauncher.exe 84 CreateFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Desired Access: Generic Read, Disposition: Open, Options: Synchronous IO Non-Alert, Non-Directory File, Attributes: N, ShareMode: Read, Write, AllocationSize: n/a, OpenResult: Opened 97 12:38:30,8917850 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 1 855 680, Length: 4 096, Priority: Normal 97 12:38:30,8918002 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 1 855 706, Length: 512 97 12:38:30,8918088 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 1 855 722, Length: 1 536 97 12:38:30,8918149 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 1 857 258, Length: 512 97 12:38:30,8918235 MCLauncher.exe 84 CloseFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS 97 12:38:30,9342616 MCLauncher.exe 84 RegQueryKey HKCU SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:30,9342688 MCLauncher.exe 84 RegQueryKey HKCU SUCCESS Query: Name 97 12:38:30,9342796 MCLauncher.exe 84 RegOpenKey HKCU\Software\Python\PythonCore\MCLauncher\Modules\zipextimporter NAME NOT FOUND Desired Access: Query Value 97 12:38:30,9342937 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:30,9342984 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: Name 97 12:38:30,9343076 MCLauncher.exe 84 RegOpenKey HKLM\Software\WOW6432Node\Python\PythonCore\MCLauncher\Modules\zipextimporter NAME NOT FOUND Desired Access: Query Value 97 12:38:30,9344594 MCLauncher.exe 84 CreateFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Desired Access: Generic Read, Disposition: Open, Options: Synchronous IO Non-Alert, Non-Directory File, Attributes: N, ShareMode: Read, Write, AllocationSize: n/a, OpenResult: Opened 97 12:38:30,9344890 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 2 435 931, Length: 4 096, Priority: Normal 97 12:38:30,9345084 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 2 435 957, Length: 512 97 12:38:30,9345178 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 2 435 979, Length: 1 024 97 12:38:30,9345239 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 2 437 003, Length: 512 97 12:38:30,9345331 MCLauncher.exe 84 CloseFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS 97 12:38:30,9505757 MCLauncher.exe 84 RegQueryKey HKCU SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:30,9505865 MCLauncher.exe 84 RegQueryKey HKCU SUCCESS Query: Name 97 12:38:30,9506018 MCLauncher.exe 84 RegOpenKey HKCU\Software\Python\PythonCore\MCLauncher\Modules\encodings NAME NOT FOUND Desired Access: Query Value 97 12:38:30,9506209 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:30,9506262 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: Name 97 12:38:30,9506367 MCLauncher.exe 84 RegOpenKey HKLM\Software\WOW6432Node\Python\PythonCore\MCLauncher\Modules\encodings NAME NOT FOUND Desired Access: Query Value 97 12:38:30,9507877 MCLauncher.exe 84 CreateFile C:\Users\User\Downloads SUCCESS Desired Access: Read Data/List Directory, Synchronize, Disposition: Open, Options: Directory, Synchronous IO Non-Alert, Attributes: n/a, ShareMode: Read, Write, Delete, AllocationSize: n/a, OpenResult: Opened 97 12:38:30,9508162 MCLauncher.exe 84 QueryDirectory C:\Users\User\Downloads\MCLauncher.exe SUCCESS Filter: MCLauncher.exe, 1: MCLauncher.exe 97 12:38:30,9508431 MCLauncher.exe 84 CloseFile C:\Users\User\Downloads SUCCESS 97 12:38:30,9509969 MCLauncher.exe 84 CreateFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Desired Access: Generic Read, Disposition: Open, Options: Synchronous IO Non-Alert, Non-Directory File, Attributes: N, ShareMode: Read, Write, AllocationSize: n/a, OpenResult: Opened 97 12:38:30,9510262 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 1 911 751, Length: 4 096, Priority: Normal 97 12:38:30,9510462 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 1 911 777, Length: 512 97 12:38:30,9510553 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 1 911 803, Length: 1 024 97 12:38:30,9510614 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 1 912 827, Length: 512 97 12:38:30,9510700 MCLauncher.exe 84 CloseFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS 97 12:38:30,9512423 MCLauncher.exe 84 CreateFile C:\Users\User\Downloads\MCLauncher.exe NOT A DIRECTORY Desired Access: Read Data/List Directory, Synchronize, Disposition: Open, Options: Directory, Synchronous IO Non-Alert, Attributes: n/a, ShareMode: Read, Write, Delete, AllocationSize: n/a 97 12:38:30,9513321 MCLauncher.exe 84 CreateFile C:\Users\User\Downloads\MCLauncher.exe NOT A DIRECTORY Desired Access: Read Data/List Directory, Synchronize, Disposition: Open, Options: Directory, Synchronous IO Non-Alert, Attributes: n/a, ShareMode: Read, Write, Delete, AllocationSize: n/a 97 12:38:30,9514252 MCLauncher.exe 84 CreateFile C:\Users\User\Downloads SUCCESS Desired Access: Read Data/List Directory, Synchronize, Disposition: Open, Options: Directory, Synchronous IO Non-Alert, Attributes: n/a, ShareMode: Read, Write, Delete, AllocationSize: n/a, OpenResult: Opened 97 12:38:30,9514449 MCLauncher.exe 84 QueryDirectory C:\Users\User\Downloads\MCLauncher.exe SUCCESS Filter: MCLauncher.exe, 1: MCLauncher.exe 97 12:38:30,9514637 MCLauncher.exe 84 CloseFile C:\Users\User\Downloads SUCCESS 97 12:38:30,9515213 MCLauncher.exe 84 RegQueryKey HKCU SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:30,9515413 MCLauncher.exe 84 RegQueryKey HKCU SUCCESS Query: Name 97 12:38:30,9515659 MCLauncher.exe 84 RegOpenKey HKCU\Software\Python\PythonCore\MCLauncher\Modules\codecs NAME NOT FOUND Desired Access: Query Value 97 12:38:30,9515806 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:30,9515853 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: Name 97 12:38:30,9515945 MCLauncher.exe 84 RegOpenKey HKLM\Software\WOW6432Node\Python\PythonCore\MCLauncher\Modules\codecs NAME NOT FOUND Desired Access: Query Value 97 12:38:30,9517047 MCLauncher.exe 84 CreateFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Desired Access: Generic Read, Disposition: Open, Options: Synchronous IO Non-Alert, Non-Directory File, Attributes: N, ShareMode: Read, Write, AllocationSize: n/a, OpenResult: Opened 97 12:38:30,9517277 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 1 838 198, Length: 4 096, Priority: Normal 97 12:38:30,9517424 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 1 838 224, Length: 512 97 12:38:30,9517510 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 1 838 238, Length: 5 632 97 12:38:30,9517582 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 1 843 870, Length: 512 97 12:38:30,9517665 MCLauncher.exe 84 CloseFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS 97 12:38:30,9523137 MCLauncher.exe 84 CreateFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Desired Access: Generic Read, Disposition: Open, Options: Synchronous IO Non-Alert, Non-Directory File, Attributes: N, ShareMode: Read, Write, AllocationSize: n/a, OpenResult: Opened 97 12:38:30,9523392 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 1 913 209, Length: 4 096, Priority: Normal 97 12:38:30,9523542 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 1 913 235, Length: 512 97 12:38:30,9523630 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 1 913 260, Length: 2 560 97 12:38:30,9523691 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 1 915 820, Length: 512 97 12:38:30,9523780 MCLauncher.exe 84 CloseFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS 97 12:38:30,9526412 MCLauncher.exe 84 CreateFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Desired Access: Generic Read, Disposition: Open, Options: Synchronous IO Non-Alert, Non-Directory File, Attributes: N, ShareMode: Read, Write, AllocationSize: n/a, OpenResult: Opened 97 12:38:30,9526656 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 2 080 354, Length: 4 096, Priority: Normal 97 12:38:30,9526808 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 2 080 380, Length: 512 97 12:38:30,9526894 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 2 080 403, Length: 512 97 12:38:30,9526955 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 2 080 915, Length: 512 97 12:38:30,9527038 MCLauncher.exe 84 CloseFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS 97 12:38:30,9534610 MCLauncher.exe 84 CreateFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Desired Access: Generic Read, Disposition: Open, Options: Synchronous IO Non-Alert, Non-Directory File, Attributes: N, ShareMode: Read, Write, AllocationSize: n/a, OpenResult: Opened 97 12:38:30,9534862 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 2 078 280, Length: 4 096, Priority: Normal 97 12:38:30,9534998 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 2 078 306, Length: 512 97 12:38:30,9535084 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 2 078 333, Length: 512 97 12:38:30,9535145 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 2 078 845, Length: 512 97 12:38:30,9535231 MCLauncher.exe 84 CloseFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS 97 12:38:30,9542936 MCLauncher.exe 84 RegQueryKey HKCU SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:30,9543021 MCLauncher.exe 84 RegQueryKey HKCU SUCCESS Query: Name 97 12:38:30,9543290 MCLauncher.exe 84 RegOpenKey HKCU\Software\Python\PythonCore\MCLauncher\Modules\random NAME NOT FOUND Desired Access: Query Value 97 12:38:30,9543462 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:30,9543515 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: Name 97 12:38:30,9543609 MCLauncher.exe 84 RegOpenKey HKLM\Software\WOW6432Node\Python\PythonCore\MCLauncher\Modules\random NAME NOT FOUND Desired Access: Query Value 97 12:38:30,9544856 MCLauncher.exe 84 CreateFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Desired Access: Generic Read, Disposition: Open, Options: Synchronous IO Non-Alert, Non-Directory File, Attributes: N, ShareMode: Read, Write, AllocationSize: n/a, OpenResult: Opened 97 12:38:30,9545102 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 2 245 504, Length: 4 096, Priority: Normal 97 12:38:30,9545260 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 2 245 530, Length: 512 97 12:38:30,9545346 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 2 245 544, Length: 6 656 97 12:38:30,9545410 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 2 252 200, Length: 512 97 12:38:30,9545496 MCLauncher.exe 84 CloseFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS 97 12:38:30,9547263 MCLauncher.exe 84 RegQueryKey HKCU SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:30,9547330 MCLauncher.exe 84 RegQueryKey HKCU SUCCESS Query: Name 97 12:38:30,9547429 MCLauncher.exe 84 RegOpenKey HKCU\Software\Python\PythonCore\MCLauncher\Modules\__future__ NAME NOT FOUND Desired Access: Query Value 97 12:38:30,9547549 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:30,9547596 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: Name 97 12:38:30,9547684 MCLauncher.exe 84 RegOpenKey HKLM\Software\WOW6432Node\Python\PythonCore\MCLauncher\Modules\__future__ NAME NOT FOUND Desired Access: Query Value 97 12:38:30,9558246 MCLauncher.exe 84 CreateFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Desired Access: Generic Read, Disposition: Open, Options: Synchronous IO Non-Alert, Non-Directory File, Attributes: N, ShareMode: Read, Write, AllocationSize: n/a, OpenResult: Opened 97 12:38:30,9558506 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 1 794 803, Length: 4 096, Priority: Normal 97 12:38:30,9558642 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 1 794 829, Length: 512 97 12:38:30,9558739 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 1 794 847, Length: 512 97 12:38:30,9558803 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 1 795 359, Length: 512 97 12:38:30,9558888 MCLauncher.exe 84 CloseFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS 97 12:38:30,9560174 MCLauncher.exe 84 RegQueryKey HKCU SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:30,9560243 MCLauncher.exe 84 RegQueryKey HKCU SUCCESS Query: Name 97 12:38:30,9560349 MCLauncher.exe 84 RegOpenKey HKCU\Software\Python\PythonCore\MCLauncher\Modules\hashlib NAME NOT FOUND Desired Access: Query Value 97 12:38:30,9560470 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:30,9560518 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: Name 97 12:38:30,9560609 MCLauncher.exe 84 RegOpenKey HKLM\Software\WOW6432Node\Python\PythonCore\MCLauncher\Modules\hashlib NAME NOT FOUND Desired Access: Query Value 97 12:38:30,9561734 MCLauncher.exe 84 CreateFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Desired Access: Generic Read, Disposition: Open, Options: Synchronous IO Non-Alert, Non-Directory File, Attributes: N, ShareMode: Read, Write, AllocationSize: n/a, OpenResult: Opened 97 12:38:30,9561969 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 2 102 055, Length: 4 096, Priority: Normal 97 12:38:30,9562124 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 2 102 081, Length: 512 97 12:38:30,9562208 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 2 102 096, Length: 2 560 97 12:38:30,9562266 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 2 104 656, Length: 512 97 12:38:30,9562352 MCLauncher.exe 84 CloseFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS 97 12:38:30,9563900 MCLauncher.exe 84 RegQueryKey HKCU SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:30,9563967 MCLauncher.exe 84 RegQueryKey HKCU SUCCESS Query: Name 97 12:38:30,9564067 MCLauncher.exe 84 RegOpenKey HKCU\Software\Python\PythonCore\MCLauncher\Modules\_hashlib NAME NOT FOUND Desired Access: Query Value 97 12:38:30,9564189 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:30,9564233 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: Name 97 12:38:30,9564321 MCLauncher.exe 84 RegOpenKey HKLM\Software\WOW6432Node\Python\PythonCore\MCLauncher\Modules\_hashlib NAME NOT FOUND Desired Access: Query Value 97 12:38:30,9565524 MCLauncher.exe 84 CreateFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Desired Access: Generic Read, Disposition: Open, Options: Synchronous IO Non-Alert, Non-Directory File, Attributes: N, ShareMode: Read, Write, AllocationSize: n/a, OpenResult: Opened 97 12:38:30,9565759 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 2 786 760, Length: 4 096, Priority: Normal 97 12:38:30,9565937 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 2 786 786, Length: 512 97 12:38:30,9567084 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 2 786 802, Length: 381 952 97 12:38:30,9568463 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 3 168 754, Length: 512 97 12:38:30,9568577 MCLauncher.exe 84 CloseFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS 97 12:38:30,9624869 MCLauncher.exe 84 CreateFile C:\Windows\SysWOW64\cryptsp.dll SUCCESS Desired Access: Read Attributes, Disposition: Open, Options: Open Reparse Point, Attributes: n/a, ShareMode: Read, Write, Delete, AllocationSize: n/a, OpenResult: Opened 97 12:38:30,9625191 MCLauncher.exe 84 QueryBasicInformationFile C:\Windows\SysWOW64\cryptsp.dll SUCCESS CreationTime: 16.07.2016 14:42:55, LastAccessTime: 16.07.2016 14:42:55, LastWriteTime: 16.07.2016 14:42:55, ChangeTime: 20.07.2018 19:44:33, FileAttributes: A 97 12:38:30,9625285 MCLauncher.exe 84 CloseFile C:\Windows\SysWOW64\cryptsp.dll SUCCESS 97 12:38:30,9626407 MCLauncher.exe 84 CreateFile C:\Windows\SysWOW64\cryptsp.dll SUCCESS Desired Access: Read Data/List Directory, Execute/Traverse, Synchronize, Disposition: Open, Options: Synchronous IO Non-Alert, Non-Directory File, Attributes: n/a, ShareMode: Read, Delete, AllocationSize: n/a, OpenResult: Opened 97 12:38:30,9626717 MCLauncher.exe 84 CreateFileMapping C:\Windows\SysWOW64\cryptsp.dll FILE LOCKED WITH ONLY READERS SyncType: SyncTypeCreateSection, PageProtection: PAGE_EXECUTE|PAGE_NOCACHE 97 12:38:30,9626889 MCLauncher.exe 84 QueryNameInformationFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Name: \Users\User\Downloads\MCLauncher.exe 97 12:38:30,9627792 MCLauncher.exe 84 CreateFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Desired Access: Synchronize, Disposition: Open, Options: Synchronous IO Non-Alert, Attributes: N, ShareMode: Read, Write, Delete, AllocationSize: n/a, OpenResult: Opened 97 12:38:30,9627978 MCLauncher.exe 84 CloseFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS 97 12:38:30,9628283 MCLauncher.exe 84 QueryNameInformationFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Name: \Users\User\Downloads\MCLauncher.exe 97 12:38:30,9629142 MCLauncher.exe 84 CreateFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Desired Access: Synchronize, Disposition: Open, Options: Synchronous IO Non-Alert, Attributes: N, ShareMode: Read, Write, Delete, AllocationSize: n/a, OpenResult: Opened 97 12:38:30,9629316 MCLauncher.exe 84 CloseFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS 97 12:38:30,9630078 MCLauncher.exe 84 CreateFileMapping C:\Windows\SysWOW64\cryptsp.dll SUCCESS SyncType: SyncTypeOther 97 12:38:30,9630638 MCLauncher.exe 84 Load Image C:\Windows\SysWOW64\cryptsp.dll SUCCESS Image Base: 0x741b0000, Image Size: 0x13000 97 12:38:30,9631217 MCLauncher.exe 84 CloseFile C:\Windows\SysWOW64\cryptsp.dll SUCCESS 97 12:38:30,9632632 MCLauncher.exe 84 CreateFile C:\Windows\SysWOW64\cryptsp.dll SUCCESS Desired Access: Read Control, Disposition: Open, Options: , Attributes: n/a, ShareMode: Read, Delete, AllocationSize: n/a, OpenResult: Opened 97 12:38:30,9632912 MCLauncher.exe 84 QuerySecurityFile C:\Windows\SysWOW64\cryptsp.dll BUFFER OVERFLOW Information: Owner 97 12:38:30,9632993 MCLauncher.exe 84 QuerySecurityFile C:\Windows\SysWOW64\cryptsp.dll SUCCESS Information: Owner 97 12:38:30,9633062 MCLauncher.exe 84 CloseFile C:\Windows\SysWOW64\cryptsp.dll SUCCESS 97 12:38:30,9633746 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:30,9633813 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: Name 97 12:38:30,9633929 MCLauncher.exe 84 RegOpenKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Cryptography\Defaults\Provider Types\Type 001 SUCCESS Desired Access: Read 97 12:38:30,9634120 MCLauncher.exe 84 RegSetInfoKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Cryptography\Defaults\Provider Types\Type 001 SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 97 12:38:30,9634189 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Cryptography\Defaults\Provider Types\Type 001\Name SUCCESS Type: REG_SZ, Length: 80, Data: Microsoft Strong Cryptographic Provider 97 12:38:30,9634364 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Cryptography\Defaults\Provider Types\Type 001\Name SUCCESS Type: REG_SZ, Length: 80, Data: Microsoft Strong Cryptographic Provider 97 12:38:30,9634508 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Cryptography\Defaults\Provider Types\Type 001\Name SUCCESS Type: REG_SZ, Length: 80, Data: Microsoft Strong Cryptographic Provider 97 12:38:30,9634638 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Cryptography\Defaults\Provider Types\Type 001\Name SUCCESS Type: REG_SZ, Length: 80, Data: Microsoft Strong Cryptographic Provider 97 12:38:30,9634793 MCLauncher.exe 84 RegCloseKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Cryptography\Defaults\Provider Types\Type 001 SUCCESS 97 12:38:30,9634879 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:30,9634932 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: Name 97 12:38:30,9635035 MCLauncher.exe 84 RegOpenKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Cryptography\Defaults\Provider\Microsoft Strong Cryptographic Provider SUCCESS Desired Access: Read 97 12:38:30,9635154 MCLauncher.exe 84 RegSetInfoKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Cryptography\Defaults\Provider\Microsoft Strong Cryptographic Provider SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 97 12:38:30,9635206 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Cryptography\Defaults\Provider\Microsoft Strong Cryptographic Provider\Type SUCCESS Type: REG_DWORD, Length: 4, Data: 1 97 12:38:30,9635342 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Cryptography\Defaults\Provider\Microsoft Strong Cryptographic Provider\Image Path SUCCESS Type: REG_SZ, Length: 66, Data: %SystemRoot%\system32\rsaenh.dll 97 12:38:30,9635469 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Cryptography\Defaults\Provider\Microsoft Strong Cryptographic Provider\Image Path SUCCESS Type: REG_SZ, Length: 66, Data: %SystemRoot%\system32\rsaenh.dll 97 12:38:30,9635594 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Cryptography\Defaults\Provider\Microsoft Strong Cryptographic Provider\Image Path SUCCESS Type: REG_SZ, Length: 66, Data: %SystemRoot%\system32\rsaenh.dll 97 12:38:30,9635835 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Cryptography\Defaults\Provider\Microsoft Strong Cryptographic Provider\Image Path SUCCESS Type: REG_SZ, Length: 66, Data: %SystemRoot%\system32\rsaenh.dll 97 12:38:30,9638550 MCLauncher.exe 84 CreateFile C:\Windows\SysWOW64\rsaenh.dll SUCCESS Desired Access: Read Attributes, Disposition: Open, Options: Open Reparse Point, Attributes: n/a, ShareMode: Read, Write, Delete, AllocationSize: n/a, OpenResult: Opened 97 12:38:30,9638805 MCLauncher.exe 84 QueryBasicInformationFile C:\Windows\SysWOW64\rsaenh.dll SUCCESS CreationTime: 16.07.2016 14:42:55, LastAccessTime: 16.07.2016 14:42:55, LastWriteTime: 16.07.2016 14:42:55, ChangeTime: 19.07.2018 19:38:42, FileAttributes: A 97 12:38:30,9638888 MCLauncher.exe 84 CloseFile C:\Windows\SysWOW64\rsaenh.dll SUCCESS 97 12:38:30,9639853 MCLauncher.exe 84 CreateFile C:\Windows\SysWOW64\rsaenh.dll SUCCESS Desired Access: Read Data/List Directory, Execute/Traverse, Synchronize, Disposition: Open, Options: Synchronous IO Non-Alert, Non-Directory File, Attributes: n/a, ShareMode: Read, Delete, AllocationSize: n/a, OpenResult: Opened 97 12:38:30,9640124 MCLauncher.exe 84 CreateFileMapping C:\Windows\SysWOW64\rsaenh.dll FILE LOCKED WITH ONLY READERS SyncType: SyncTypeCreateSection, PageProtection: PAGE_EXECUTE|PAGE_NOCACHE 97 12:38:30,9640249 MCLauncher.exe 84 QueryNameInformationFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Name: \Users\User\Downloads\MCLauncher.exe 97 12:38:30,9641235 MCLauncher.exe 84 CreateFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Desired Access: Synchronize, Disposition: Open, Options: Synchronous IO Non-Alert, Attributes: N, ShareMode: Read, Write, Delete, AllocationSize: n/a, OpenResult: Opened 97 12:38:30,9641415 MCLauncher.exe 84 CloseFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS 97 12:38:30,9641695 MCLauncher.exe 84 QueryNameInformationFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Name: \Users\User\Downloads\MCLauncher.exe 97 12:38:30,9642551 MCLauncher.exe 84 CreateFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Desired Access: Synchronize, Disposition: Open, Options: Synchronous IO Non-Alert, Attributes: N, ShareMode: Read, Write, Delete, AllocationSize: n/a, OpenResult: Opened 97 12:38:30,9642717 MCLauncher.exe 84 CloseFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS 97 12:38:30,9643379 MCLauncher.exe 84 CreateFileMapping C:\Windows\SysWOW64\rsaenh.dll SUCCESS SyncType: SyncTypeOther 97 12:38:30,9643878 MCLauncher.exe 84 Load Image C:\Windows\SysWOW64\rsaenh.dll SUCCESS Image Base: 0x74060000, Image Size: 0x2f000 97 12:38:30,9644776 MCLauncher.exe 84 CloseFile C:\Windows\SysWOW64\rsaenh.dll SUCCESS 97 12:38:30,9646095 MCLauncher.exe 84 CreateFile C:\Windows\SysWOW64\rsaenh.dll SUCCESS Desired Access: Read Control, Disposition: Open, Options: , Attributes: n/a, ShareMode: Read, Delete, AllocationSize: n/a, OpenResult: Opened 97 12:38:30,9646374 MCLauncher.exe 84 QuerySecurityFile C:\Windows\SysWOW64\rsaenh.dll BUFFER OVERFLOW Information: Owner 97 12:38:30,9646452 MCLauncher.exe 84 QuerySecurityFile C:\Windows\SysWOW64\rsaenh.dll SUCCESS Information: Owner 97 12:38:30,9646518 MCLauncher.exe 84 CloseFile C:\Windows\SysWOW64\rsaenh.dll SUCCESS 97 12:38:30,9647147 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:30,9647225 MCLauncher.exe 84 RegOpenKey HKLM\Software\Policies\Microsoft\Cryptography SUCCESS Desired Access: Read 97 12:38:30,9647369 MCLauncher.exe 84 RegSetInfoKey HKLM\SOFTWARE\Policies\Microsoft\Cryptography SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 97 12:38:30,9647436 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\Policies\Microsoft\Cryptography\PrivKeyCacheMaxItems NAME NOT FOUND Length: 144 97 12:38:30,9647580 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\Policies\Microsoft\Cryptography\PrivKeyCachePurgeIntervalSeconds NAME NOT FOUND Length: 144 97 12:38:30,9647696 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\Policies\Microsoft\Cryptography\PrivateKeyLifetimeSeconds NAME NOT FOUND Length: 144 97 12:38:30,9647821 MCLauncher.exe 84 RegCloseKey HKLM\SOFTWARE\Policies\Microsoft\Cryptography SUCCESS 97 12:38:30,9647951 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:30,9648017 MCLauncher.exe 84 RegOpenKey HKLM\Software\Microsoft\Cryptography SUCCESS Desired Access: Read 97 12:38:30,9648109 MCLauncher.exe 84 RegSetInfoKey HKLM\SOFTWARE\Microsoft\Cryptography SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 97 12:38:30,9648156 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\Microsoft\Cryptography\MachineGuid SUCCESS Type: REG_SZ, Length: 74, Data: 89c16905-77a2-4a80-ba7d-623b3fd0da77 97 12:38:30,9648303 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\Microsoft\Cryptography\MachineGuid SUCCESS Type: REG_SZ, Length: 74, Data: 89c16905-77a2-4a80-ba7d-623b3fd0da77 97 12:38:30,9648427 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\Microsoft\Cryptography\MachineGuid SUCCESS Type: REG_SZ, Length: 74, Data: 89c16905-77a2-4a80-ba7d-623b3fd0da77 97 12:38:30,9648544 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\Microsoft\Cryptography\MachineGuid SUCCESS Type: REG_SZ, Length: 74, Data: 89c16905-77a2-4a80-ba7d-623b3fd0da77 97 12:38:30,9648724 MCLauncher.exe 84 RegCloseKey HKLM\SOFTWARE\Microsoft\Cryptography SUCCESS 97 12:38:30,9648807 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:30,9648860 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: Name 97 12:38:30,9648959 MCLauncher.exe 84 RegOpenKey HKLM\Software\WOW6432Node\Microsoft\Cryptography\Offload NAME NOT FOUND Desired Access: Read 97 12:38:30,9649511 MCLauncher.exe 84 RegQueryValue HKLM\System\CurrentControlSet\Control\Nls\Sorting\Versions\000602xx SUCCESS Type: REG_SZ, Length: 26, Data: kernel32.dll 97 12:38:30,9650688 MCLauncher.exe 84 CreateFile C:\Windows\Globalization\Sorting\SortDefault.nls SUCCESS Desired Access: Generic Read, Disposition: Open, Options: Synchronous IO Non-Alert, Non-Directory File, Attributes: N, ShareMode: Read, AllocationSize: n/a, OpenResult: Opened 97 12:38:30,9650929 MCLauncher.exe 84 CreateFileMapping C:\Windows\Globalization\Sorting\SortDefault.nls FILE LOCKED WITH ONLY READERS SyncType: SyncTypeCreateSection, PageProtection: PAGE_EXECUTE|PAGE_NOCACHE 97 12:38:30,9651048 MCLauncher.exe 84 QueryNameInformationFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Name: \Users\User\Downloads\MCLauncher.exe 97 12:38:30,9651952 MCLauncher.exe 84 CreateFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Desired Access: Synchronize, Disposition: Open, Options: Synchronous IO Non-Alert, Attributes: N, ShareMode: Read, Write, Delete, AllocationSize: n/a, OpenResult: Opened 97 12:38:30,9652132 MCLauncher.exe 84 CloseFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS 97 12:38:30,9652423 MCLauncher.exe 84 QueryNameInformationFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Name: \Users\User\Downloads\MCLauncher.exe 97 12:38:30,9653287 MCLauncher.exe 84 CreateFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Desired Access: Synchronize, Disposition: Open, Options: Synchronous IO Non-Alert, Attributes: N, ShareMode: Read, Write, Delete, AllocationSize: n/a, OpenResult: Opened 97 12:38:30,9653456 MCLauncher.exe 84 CloseFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS 97 12:38:30,9654041 MCLauncher.exe 84 QueryStandardInformationFile C:\Windows\Globalization\Sorting\SortDefault.nls SUCCESS AllocationSize: 3 371 008, EndOfFile: 3 368 788, NumberOfLinks: 2, DeletePending: False, Directory: False 97 12:38:30,9654190 MCLauncher.exe 84 CreateFileMapping C:\Windows\Globalization\Sorting\SortDefault.nls SUCCESS SyncType: SyncTypeOther 97 12:38:30,9654398 MCLauncher.exe 84 CloseFile C:\Windows\Globalization\Sorting\SortDefault.nls SUCCESS 97 12:38:30,9654963 MCLauncher.exe 84 RegOpenKey HKLM\System\CurrentControlSet\Control\Nls\Sorting\Ids REPARSE Desired Access: Read 97 12:38:30,9655060 MCLauncher.exe 84 RegOpenKey HKLM\System\CurrentControlSet\Control\Nls\Sorting\Ids SUCCESS Desired Access: Read 97 12:38:30,9655154 MCLauncher.exe 84 RegSetInfoKey HKLM\System\CurrentControlSet\Control\Nls\Sorting\Ids SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 97 12:38:30,9655756 MCLauncher.exe 84 RegCloseKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Cryptography\Defaults\Provider\Microsoft Strong Cryptographic Provider SUCCESS 97 12:38:30,9663690 MCLauncher.exe 84 RegQueryKey HKCU SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:30,9663760 MCLauncher.exe 84 RegQueryKey HKCU SUCCESS Query: Name 97 12:38:30,9663862 MCLauncher.exe 84 RegOpenKey HKCU\Software\Python\PythonCore\MCLauncher\Modules\zipfile NAME NOT FOUND Desired Access: Query Value 97 12:38:30,9663990 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:30,9664037 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: Name 97 12:38:30,9664123 MCLauncher.exe 84 RegOpenKey HKLM\Software\WOW6432Node\Python\PythonCore\MCLauncher\Modules\zipfile NAME NOT FOUND Desired Access: Query Value 97 12:38:30,9665414 MCLauncher.exe 84 CreateFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Desired Access: Generic Read, Disposition: Open, Options: Synchronous IO Non-Alert, Non-Directory File, Attributes: N, ShareMode: Read, Write, AllocationSize: n/a, OpenResult: Opened 97 12:38:30,9665707 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 2 585 497, Length: 4 096, Priority: Normal 97 12:38:30,9665912 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 2 585 523, Length: 512 97 12:38:30,9666051 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 2 585 538, Length: 15 360 97 12:38:30,9666137 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 2 600 898, Length: 512 97 12:38:30,9666237 MCLauncher.exe 84 CloseFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS 97 12:38:30,9669802 MCLauncher.exe 84 RegQueryKey HKCU SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:30,9669874 MCLauncher.exe 84 RegQueryKey HKCU SUCCESS Query: Name 97 12:38:30,9669980 MCLauncher.exe 84 RegOpenKey HKCU\Software\Python\PythonCore\MCLauncher\Modules\struct NAME NOT FOUND Desired Access: Query Value 97 12:38:30,9670104 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:30,9670154 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: Name 97 12:38:30,9670243 MCLauncher.exe 84 RegOpenKey HKLM\Software\WOW6432Node\Python\PythonCore\MCLauncher\Modules\struct NAME NOT FOUND Desired Access: Query Value 97 12:38:30,9671376 MCLauncher.exe 84 CreateFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Desired Access: Generic Read, Disposition: Open, Options: Synchronous IO Non-Alert, Non-Directory File, Attributes: N, ShareMode: Read, Write, AllocationSize: n/a, OpenResult: Opened 97 12:38:30,9671620 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 2 480 378, Length: 4 096, Priority: Normal 97 12:38:30,9671767 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 2 480 404, Length: 512 97 12:38:30,9671847 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 2 480 418, Length: 512 97 12:38:30,9671933 MCLauncher.exe 84 CloseFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS 97 12:38:30,9673005 MCLauncher.exe 84 RegQueryKey HKCU SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:30,9673069 MCLauncher.exe 84 RegQueryKey HKCU SUCCESS Query: Name 97 12:38:30,9673166 MCLauncher.exe 84 RegOpenKey HKCU\Software\Python\PythonCore\MCLauncher\Modules\shutil NAME NOT FOUND Desired Access: Query Value 97 12:38:30,9673282 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:30,9673329 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: Name 97 12:38:30,9673418 MCLauncher.exe 84 RegOpenKey HKLM\Software\WOW6432Node\Python\PythonCore\MCLauncher\Modules\shutil NAME NOT FOUND Desired Access: Query Value 97 12:38:30,9674521 MCLauncher.exe 84 CreateFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Desired Access: Generic Read, Disposition: Open, Options: Synchronous IO Non-Alert, Non-Directory File, Attributes: N, ShareMode: Read, Write, AllocationSize: n/a, OpenResult: Opened 97 12:38:30,9674886 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 2 260 406, Length: 4 096, Priority: Normal 97 12:38:30,9675169 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 2 260 432, Length: 512 97 12:38:30,9675291 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 2 260 446, Length: 5 120 97 12:38:30,9675366 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 2 265 566, Length: 512 97 12:38:30,9675454 MCLauncher.exe 84 CloseFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS 97 12:38:30,9677050 MCLauncher.exe 84 RegQueryKey HKCU SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:30,9677114 MCLauncher.exe 84 RegQueryKey HKCU SUCCESS Query: Name 97 12:38:30,9677216 MCLauncher.exe 84 RegOpenKey HKCU\Software\Python\PythonCore\MCLauncher\Modules\fnmatch NAME NOT FOUND Desired Access: Query Value 97 12:38:30,9677335 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:30,9677380 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: Name 97 12:38:30,9677468 MCLauncher.exe 84 RegOpenKey HKLM\Software\WOW6432Node\Python\PythonCore\MCLauncher\Modules\fnmatch NAME NOT FOUND Desired Access: Query Value 97 12:38:30,9678590 MCLauncher.exe 84 CreateFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Desired Access: Generic Read, Disposition: Open, Options: Synchronous IO Non-Alert, Non-Directory File, Attributes: N, ShareMode: Read, Write, AllocationSize: n/a, OpenResult: Opened 97 12:38:30,9678829 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 2 084 943, Length: 4 096, Priority: Normal 97 12:38:30,9678992 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 2 084 969, Length: 512 97 12:38:30,9679078 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 2 084 984, Length: 1 024 97 12:38:30,9679139 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 2 086 008, Length: 512 97 12:38:30,9679222 MCLauncher.exe 84 CloseFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS 97 12:38:30,9679843 MCLauncher.exe 84 RegQueryKey HKCU SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:30,9679904 MCLauncher.exe 84 RegQueryKey HKCU SUCCESS Query: Name 97 12:38:30,9680001 MCLauncher.exe 84 RegOpenKey HKCU\Software\Python\PythonCore\MCLauncher\Modules\re NAME NOT FOUND Desired Access: Query Value 97 12:38:30,9680117 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:30,9680164 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: Name 97 12:38:30,9680250 MCLauncher.exe 84 RegOpenKey HKLM\Software\WOW6432Node\Python\PythonCore\MCLauncher\Modules\re NAME NOT FOUND Desired Access: Query Value 97 12:38:30,9681333 MCLauncher.exe 84 CreateFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Desired Access: Generic Read, Disposition: Open, Options: Synchronous IO Non-Alert, Non-Directory File, Attributes: N, ShareMode: Read, Write, AllocationSize: n/a, OpenResult: Opened 97 12:38:30,9681558 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 2 252 457, Length: 4 096, Priority: Normal 97 12:38:30,9681699 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 2 252 483, Length: 512 97 12:38:30,9681788 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 2 252 493, Length: 2 560 97 12:38:30,9681849 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 2 255 053, Length: 512 97 12:38:30,9681929 MCLauncher.exe 84 CloseFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS 97 12:38:30,9682932 MCLauncher.exe 84 RegQueryKey HKCU SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:30,9682996 MCLauncher.exe 84 RegQueryKey HKCU SUCCESS Query: Name 97 12:38:30,9683093 MCLauncher.exe 84 RegOpenKey HKCU\Software\Python\PythonCore\MCLauncher\Modules\sre_compile NAME NOT FOUND Desired Access: Query Value 97 12:38:30,9683203 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:30,9683251 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: Name 97 12:38:30,9683336 MCLauncher.exe 84 RegOpenKey HKLM\Software\WOW6432Node\Python\PythonCore\MCLauncher\Modules\sre_compile NAME NOT FOUND Desired Access: Query Value 97 12:38:30,9684434 MCLauncher.exe 84 CreateFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Desired Access: Generic Read, Disposition: Open, Options: Synchronous IO Non-Alert, Non-Directory File, Attributes: N, ShareMode: Read, Write, AllocationSize: n/a, OpenResult: Opened 97 12:38:30,9684830 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 2 443 297, Length: 4 096, Priority: Normal 97 12:38:30,9685021 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 2 443 323, Length: 512 97 12:38:30,9685118 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 2 443 342, Length: 5 120 97 12:38:30,9685179 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 2 448 462, Length: 512 97 12:38:30,9685265 MCLauncher.exe 84 CloseFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS 97 12:38:30,9686841 MCLauncher.exe 84 RegQueryKey HKCU SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:30,9686905 MCLauncher.exe 84 RegQueryKey HKCU SUCCESS Query: Name 97 12:38:30,9687002 MCLauncher.exe 84 RegOpenKey HKCU\Software\Python\PythonCore\MCLauncher\Modules\sre_parse NAME NOT FOUND Desired Access: Query Value 97 12:38:30,9687121 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:30,9687168 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: Name 97 12:38:30,9687254 MCLauncher.exe 84 RegOpenKey HKLM\Software\WOW6432Node\Python\PythonCore\MCLauncher\Modules\sre_parse NAME NOT FOUND Desired Access: Query Value 97 12:38:30,9688379 MCLauncher.exe 84 CreateFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Desired Access: Generic Read, Disposition: Open, Options: Synchronous IO Non-Alert, Non-Directory File, Attributes: N, ShareMode: Read, Write, AllocationSize: n/a, OpenResult: Opened 97 12:38:30,9688617 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 2 451 419, Length: 4 096, Priority: Normal 97 12:38:30,9688764 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 2 451 445, Length: 512 97 12:38:30,9688850 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 2 451 462, Length: 7 680 97 12:38:30,9688925 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 2 459 142, Length: 512 97 12:38:30,9689008 MCLauncher.exe 84 CloseFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS 97 12:38:30,9690911 MCLauncher.exe 84 RegQueryKey HKCU SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:30,9690975 MCLauncher.exe 84 RegQueryKey HKCU SUCCESS Query: Name 97 12:38:30,9691077 MCLauncher.exe 84 RegOpenKey HKCU\Software\Python\PythonCore\MCLauncher\Modules\sre_constants NAME NOT FOUND Desired Access: Query Value 97 12:38:30,9691197 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:30,9691244 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: Name 97 12:38:30,9691332 MCLauncher.exe 84 RegOpenKey HKLM\Software\WOW6432Node\Python\PythonCore\MCLauncher\Modules\sre_constants NAME NOT FOUND Desired Access: Query Value 97 12:38:30,9692435 MCLauncher.exe 84 CreateFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Desired Access: Generic Read, Disposition: Open, Options: Synchronous IO Non-Alert, Non-Directory File, Attributes: N, ShareMode: Read, Write, AllocationSize: n/a, OpenResult: Opened 97 12:38:30,9692698 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 2 448 705, Length: 4 096, Priority: Normal 97 12:38:30,9692820 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 2 448 731, Length: 512 97 12:38:30,9692917 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 2 448 752, Length: 2 560 97 12:38:30,9692978 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 2 451 312, Length: 512 97 12:38:30,9693064 MCLauncher.exe 84 CloseFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS 97 12:38:30,9696799 MCLauncher.exe 84 RegQueryKey HKCU SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:30,9696876 MCLauncher.exe 84 RegQueryKey HKCU SUCCESS Query: Name 97 12:38:30,9696984 MCLauncher.exe 84 RegOpenKey HKCU\Software\Python\PythonCore\MCLauncher\Modules\collections NAME NOT FOUND Desired Access: Query Value 97 12:38:30,9697106 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:30,9697153 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: Name 97 12:38:30,9697245 MCLauncher.exe 84 RegOpenKey HKLM\Software\WOW6432Node\Python\PythonCore\MCLauncher\Modules\collections NAME NOT FOUND Desired Access: Query Value 97 12:38:30,9698419 MCLauncher.exe 84 CreateFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Desired Access: Generic Read, Disposition: Open, Options: Synchronous IO Non-Alert, Non-Directory File, Attributes: N, ShareMode: Read, Write, AllocationSize: n/a, OpenResult: Opened 97 12:38:30,9698669 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 1 844 022, Length: 4 096, Priority: Normal 97 12:38:30,9698824 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 1 844 048, Length: 512 97 12:38:30,9698940 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 1 844 067, Length: 6 144 97 12:38:30,9699007 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 1 850 211, Length: 512 97 12:38:30,9699093 MCLauncher.exe 84 CloseFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS 97 12:38:31,0103074 MCLauncher.exe 84 RegQueryKey HKCU SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:31,0103171 MCLauncher.exe 84 RegQueryKey HKCU SUCCESS Query: Name 97 12:38:31,0103295 MCLauncher.exe 84 RegOpenKey HKCU\Software\Python\PythonCore\MCLauncher\Modules\keyword NAME NOT FOUND Desired Access: Query Value 97 12:38:31,0103461 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:31,0103511 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: Name 97 12:38:31,0103614 MCLauncher.exe 84 RegOpenKey HKLM\Software\WOW6432Node\Python\PythonCore\MCLauncher\Modules\keyword NAME NOT FOUND Desired Access: Query Value 97 12:38:31,0105304 MCLauncher.exe 84 CreateFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Desired Access: Generic Read, Disposition: Open, Options: Synchronous IO Non-Alert, Non-Directory File, Attributes: N, ShareMode: Read, Write, AllocationSize: n/a, OpenResult: Opened 97 12:38:31,0105609 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 2 130 664, Length: 4 096, Priority: Normal 97 12:38:31,0105808 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 2 130 690, Length: 512 97 12:38:31,0105902 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 2 130 705, Length: 1 024 97 12:38:31,0105994 MCLauncher.exe 84 CloseFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS 97 12:38:31,0106847 MCLauncher.exe 84 RegQueryKey HKCU SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:31,0106914 MCLauncher.exe 84 RegQueryKey HKCU SUCCESS Query: Name 97 12:38:31,0107013 MCLauncher.exe 84 RegOpenKey HKCU\Software\Python\PythonCore\MCLauncher\Modules\heapq NAME NOT FOUND Desired Access: Query Value 97 12:38:31,0107138 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:31,0107185 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: Name 97 12:38:31,0107274 MCLauncher.exe 84 RegOpenKey HKLM\Software\WOW6432Node\Python\PythonCore\MCLauncher\Modules\heapq NAME NOT FOUND Desired Access: Query Value 97 12:38:31,0108374 MCLauncher.exe 84 CreateFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Desired Access: Generic Read, Disposition: Open, Options: Synchronous IO Non-Alert, Non-Directory File, Attributes: N, ShareMode: Read, Write, AllocationSize: n/a, OpenResult: Opened 97 12:38:31,0108609 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 2 105 120, Length: 4 096, Priority: Normal 97 12:38:31,0108753 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 2 105 146, Length: 512 97 12:38:31,0108842 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 2 105 159, Length: 4 608 97 12:38:31,0108914 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 2 109 767, Length: 512 97 12:38:31,0109000 MCLauncher.exe 84 CloseFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS 97 12:38:31,0112402 MCLauncher.exe 84 RegQueryKey HKCU SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:31,0112477 MCLauncher.exe 84 RegQueryKey HKCU SUCCESS Query: Name 97 12:38:31,0112582 MCLauncher.exe 84 RegOpenKey HKCU\Software\Python\PythonCore\MCLauncher\Modules\pwd NAME NOT FOUND Desired Access: Query Value 97 12:38:31,0112704 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:31,0112751 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: Name 97 12:38:31,0112843 MCLauncher.exe 84 RegOpenKey HKLM\Software\WOW6432Node\Python\PythonCore\MCLauncher\Modules\pwd NAME NOT FOUND Desired Access: Query Value 97 12:38:31,0113078 MCLauncher.exe 84 RegQueryKey HKCU SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:31,0113128 MCLauncher.exe 84 RegQueryKey HKCU SUCCESS Query: Name 97 12:38:31,0113203 MCLauncher.exe 84 RegOpenKey HKCU\Software\Python\PythonCore\MCLauncher\Modules\grp NAME NOT FOUND Desired Access: Query Value 97 12:38:31,0113286 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:31,0113330 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: Name 97 12:38:31,0113402 MCLauncher.exe 84 RegOpenKey HKLM\Software\WOW6432Node\Python\PythonCore\MCLauncher\Modules\grp NAME NOT FOUND Desired Access: Query Value 97 12:38:31,0114624 MCLauncher.exe 84 RegQueryKey HKCU SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:31,0114713 MCLauncher.exe 84 RegQueryKey HKCU SUCCESS Query: Name 97 12:38:31,0114840 MCLauncher.exe 84 RegOpenKey HKCU\Software\Python\PythonCore\MCLauncher\Modules\io NAME NOT FOUND Desired Access: Query Value 97 12:38:31,0114957 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:31,0115004 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: Name 97 12:38:31,0115087 MCLauncher.exe 84 RegOpenKey HKLM\Software\WOW6432Node\Python\PythonCore\MCLauncher\Modules\io NAME NOT FOUND Desired Access: Query Value 97 12:38:31,0116250 MCLauncher.exe 84 CreateFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Desired Access: Generic Read, Disposition: Open, Options: Synchronous IO Non-Alert, Non-Directory File, Attributes: N, ShareMode: Read, Write, AllocationSize: n/a, OpenResult: Opened 97 12:38:31,0116500 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 2 119 812, Length: 4 096, Priority: Normal 97 12:38:31,0116652 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 2 119 838, Length: 512 97 12:38:31,0116752 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 2 119 848, Length: 512 97 12:38:31,0116813 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 2 120 360, Length: 512 97 12:38:31,0116899 MCLauncher.exe 84 CloseFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS 97 12:38:31,0120282 MCLauncher.exe 84 RegQueryKey HKCU SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:31,0120356 MCLauncher.exe 84 RegQueryKey HKCU SUCCESS Query: Name 97 12:38:31,0120467 MCLauncher.exe 84 RegOpenKey HKCU\Software\Python\PythonCore\MCLauncher\Modules\string NAME NOT FOUND Desired Access: Query Value 97 12:38:31,0120589 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:31,0120639 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: Name 97 12:38:31,0120730 MCLauncher.exe 84 RegOpenKey HKLM\Software\WOW6432Node\Python\PythonCore\MCLauncher\Modules\string NAME NOT FOUND Desired Access: Query Value 97 12:38:31,0121861 MCLauncher.exe 84 CreateFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Desired Access: Generic Read, Disposition: Open, Options: Synchronous IO Non-Alert, Non-Directory File, Attributes: N, ShareMode: Read, Write, AllocationSize: n/a, OpenResult: Opened 97 12:38:31,0122107 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 2 470 224, Length: 4 096, Priority: Normal 97 12:38:31,0122263 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 2 470 250, Length: 512 97 12:38:31,0122348 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 2 470 264, Length: 4 096 97 12:38:31,0122409 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 2 474 360, Length: 512 97 12:38:31,0122495 MCLauncher.exe 84 CloseFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS 97 12:38:31,0137578 MCLauncher.exe 84 RegQueryKey HKCU SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:31,0137664 MCLauncher.exe 84 RegQueryKey HKCU SUCCESS Query: Name 97 12:38:31,0137778 MCLauncher.exe 84 RegOpenKey HKCU\Software\Python\PythonCore\MCLauncher\Modules\tempfile NAME NOT FOUND Desired Access: Query Value 97 12:38:31,0137905 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:31,0137955 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: Name 97 12:38:31,0138044 MCLauncher.exe 84 RegOpenKey HKLM\Software\WOW6432Node\Python\PythonCore\MCLauncher\Modules\tempfile NAME NOT FOUND Desired Access: Query Value 97 12:38:31,0139235 MCLauncher.exe 84 CreateFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Desired Access: Generic Read, Disposition: Open, Options: Synchronous IO Non-Alert, Non-Directory File, Attributes: N, ShareMode: Read, Write, AllocationSize: n/a, OpenResult: Opened 97 12:38:31,0139509 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 2 513 636, Length: 4 096, Priority: Normal 97 12:38:31,0139664 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 2 513 662, Length: 512 97 12:38:31,0139767 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 2 513 678, Length: 5 120 97 12:38:31,0139833 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 2 518 798, Length: 512 97 12:38:31,0139930 MCLauncher.exe 84 CloseFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS 97 12:38:31,0141504 MCLauncher.exe 84 RegQueryKey HKCU SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:31,0141568 MCLauncher.exe 84 RegQueryKey HKCU SUCCESS Query: Name 97 12:38:31,0141670 MCLauncher.exe 84 RegOpenKey HKCU\Software\Python\PythonCore\MCLauncher\Modules\fcntl NAME NOT FOUND Desired Access: Query Value 97 12:38:31,0141789 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:31,0141837 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: Name 97 12:38:31,0141922 MCLauncher.exe 84 RegOpenKey HKLM\Software\WOW6432Node\Python\PythonCore\MCLauncher\Modules\fcntl NAME NOT FOUND Desired Access: Query Value 97 12:38:31,0142391 MCLauncher.exe 84 RegQueryKey HKCU SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:31,0142440 MCLauncher.exe 84 RegQueryKey HKCU SUCCESS Query: Name 97 12:38:31,0142521 MCLauncher.exe 84 RegOpenKey HKCU\Software\Python\PythonCore\MCLauncher\Modules\PySide NAME NOT FOUND Desired Access: Query Value 97 12:38:31,0142607 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:31,0142651 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: Name 97 12:38:31,0142729 MCLauncher.exe 84 RegOpenKey HKLM\Software\WOW6432Node\Python\PythonCore\MCLauncher\Modules\PySide NAME NOT FOUND Desired Access: Query Value 97 12:38:31,0144191 MCLauncher.exe 84 CreateFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Desired Access: Generic Read, Disposition: Open, Options: Synchronous IO Non-Alert, Non-Directory File, Attributes: N, ShareMode: Read, Write, AllocationSize: n/a, OpenResult: Opened 97 12:38:31,0144435 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 2 266 074, Length: 4 096, Priority: Normal 97 12:38:31,0144579 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 2 266 100, Length: 512 97 12:38:31,0144665 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 2 266 123, Length: 512 97 12:38:31,0144726 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 2 266 635, Length: 512 97 12:38:31,0144809 MCLauncher.exe 84 CloseFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS 97 12:38:31,0146233 MCLauncher.exe 84 CreateFile C:\Users\User\Downloads\MCLauncher.exe NOT A DIRECTORY Desired Access: Read Data/List Directory, Synchronize, Disposition: Open, Options: Directory, Synchronous IO Non-Alert, Attributes: n/a, ShareMode: Read, Write, Delete, AllocationSize: n/a 97 12:38:31,0147117 MCLauncher.exe 84 CreateFile C:\Users\User\Downloads\MCLauncher.exe NOT A DIRECTORY Desired Access: Read Data/List Directory, Synchronize, Disposition: Open, Options: Directory, Synchronous IO Non-Alert, Attributes: n/a, ShareMode: Read, Write, Delete, AllocationSize: n/a 97 12:38:31,0148084 MCLauncher.exe 84 CreateFile C:\Users\User\Downloads SUCCESS Desired Access: Read Data/List Directory, Synchronize, Disposition: Open, Options: Directory, Synchronous IO Non-Alert, Attributes: n/a, ShareMode: Read, Write, Delete, AllocationSize: n/a, OpenResult: Opened 97 12:38:31,0148284 MCLauncher.exe 84 QueryDirectory C:\Users\User\Downloads\MCLauncher.exe SUCCESS Filter: MCLauncher.exe, 1: MCLauncher.exe 97 12:38:31,0148502 MCLauncher.exe 84 CloseFile C:\Users\User\Downloads SUCCESS 97 12:38:31,0149849 MCLauncher.exe 84 CreateFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Desired Access: Generic Read, Disposition: Open, Options: Synchronous IO Non-Alert, Non-Directory File, Attributes: N, ShareMode: Read, Write, AllocationSize: n/a, OpenResult: Opened 97 12:38:31,0150076 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 2 266 883, Length: 4 096, Priority: Normal 97 12:38:31,0150198 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 2 266 909, Length: 512 97 12:38:31,0150284 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 2 266 930, Length: 2 560 97 12:38:31,0150345 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 2 269 490, Length: 512 97 12:38:31,0150425 MCLauncher.exe 84 CloseFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS 97 12:38:31,0151578 MCLauncher.exe 84 RegQueryKey HKCU SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:31,0151644 MCLauncher.exe 84 RegQueryKey HKCU SUCCESS Query: Name 97 12:38:31,0151744 MCLauncher.exe 84 RegOpenKey HKCU\Software\Python\PythonCore\MCLauncher\Modules\ctypes NAME NOT FOUND Desired Access: Query Value 97 12:38:31,0151866 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:31,0151913 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: Name 97 12:38:31,0152002 MCLauncher.exe 84 RegOpenKey HKLM\Software\WOW6432Node\Python\PythonCore\MCLauncher\Modules\ctypes NAME NOT FOUND Desired Access: Query Value 97 12:38:31,0153079 MCLauncher.exe 84 CreateFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Desired Access: Generic Read, Disposition: Open, Options: Synchronous IO Non-Alert, Non-Directory File, Attributes: N, ShareMode: Read, Write, AllocationSize: n/a, OpenResult: Opened 97 12:38:31,0153634 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 1 857 725, Length: 4 096, Priority: Normal 97 12:38:31,0153869 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 1 857 751, Length: 512 97 12:38:31,0153966 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 1 857 774, Length: 5 632 97 12:38:31,0154030 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 1 863 406, Length: 512 97 12:38:31,0154129 MCLauncher.exe 84 CloseFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS 97 12:38:31,0162588 MCLauncher.exe 84 CreateFile C:\Users\User\Downloads\MCLauncher.exe NOT A DIRECTORY Desired Access: Read Data/List Directory, Synchronize, Disposition: Open, Options: Directory, Synchronous IO Non-Alert, Attributes: n/a, ShareMode: Read, Write, Delete, AllocationSize: n/a 97 12:38:31,0163644 MCLauncher.exe 84 CreateFile C:\Users\User\Downloads\MCLauncher.exe NOT A DIRECTORY Desired Access: Read Data/List Directory, Synchronize, Disposition: Open, Options: Directory, Synchronous IO Non-Alert, Attributes: n/a, ShareMode: Read, Write, Delete, AllocationSize: n/a 97 12:38:31,0164599 MCLauncher.exe 84 CreateFile C:\Users\User\Downloads SUCCESS Desired Access: Read Data/List Directory, Synchronize, Disposition: Open, Options: Directory, Synchronous IO Non-Alert, Attributes: n/a, ShareMode: Read, Write, Delete, AllocationSize: n/a, OpenResult: Opened 97 12:38:31,0164804 MCLauncher.exe 84 QueryDirectory C:\Users\User\Downloads\MCLauncher.exe SUCCESS Filter: MCLauncher.exe, 1: MCLauncher.exe 97 12:38:31,0165001 MCLauncher.exe 84 CloseFile C:\Users\User\Downloads SUCCESS 97 12:38:31,0165469 MCLauncher.exe 84 RegQueryKey HKCU SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:31,0165536 MCLauncher.exe 84 RegQueryKey HKCU SUCCESS Query: Name 97 12:38:31,0165638 MCLauncher.exe 84 RegOpenKey HKCU\Software\Python\PythonCore\MCLauncher\Modules\_ctypes NAME NOT FOUND Desired Access: Query Value 97 12:38:31,0165760 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:31,0165807 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: Name 97 12:38:31,0165896 MCLauncher.exe 84 RegOpenKey HKLM\Software\WOW6432Node\Python\PythonCore\MCLauncher\Modules\_ctypes NAME NOT FOUND Desired Access: Query Value 97 12:38:31,0166999 MCLauncher.exe 84 CreateFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Desired Access: Generic Read, Disposition: Open, Options: Synchronous IO Non-Alert, Non-Directory File, Attributes: N, ShareMode: Read, Write, AllocationSize: n/a, OpenResult: Opened 97 12:38:31,0167234 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 2 746 184, Length: 4 096, Priority: Normal 97 12:38:31,0167417 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 2 746 210, Length: 512 97 12:38:31,0167581 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 2 746 225, Length: 40 448 97 12:38:31,0167722 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 2 786 673, Length: 512 97 12:38:31,0167811 MCLauncher.exe 84 CloseFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS 97 12:38:31,0173939 MCLauncher.exe 84 Load Image C:\Windows\SysWOW64\ole32.dll SUCCESS Image Base: 0x77ac0000, Image Size: 0xec000 97 12:38:31,0176834 MCLauncher.exe 84 CreateFile C:\Windows\SysWOW64\ole32.dll SUCCESS Desired Access: Read Control, Disposition: Open, Options: , Attributes: n/a, ShareMode: Read, Delete, AllocationSize: n/a, OpenResult: Opened 97 12:38:31,0177158 MCLauncher.exe 84 QuerySecurityFile C:\Windows\SysWOW64\ole32.dll BUFFER OVERFLOW Information: Owner 97 12:38:31,0177253 MCLauncher.exe 84 QuerySecurityFile C:\Windows\SysWOW64\ole32.dll SUCCESS Information: Owner 97 12:38:31,0177330 MCLauncher.exe 84 CloseFile C:\Windows\SysWOW64\ole32.dll SUCCESS 97 12:38:31,0186016 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:31,0186088 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: Name 97 12:38:31,0186204 MCLauncher.exe 84 RegOpenKey HKLM\Software\WOW6432Node\Microsoft\OLE\Tracing REPARSE Desired Access: Read 97 12:38:31,0186318 MCLauncher.exe 84 RegOpenKey HKLM\SOFTWARE\Microsoft\Ole\Tracing NAME NOT FOUND Desired Access: Read 97 12:38:31,0186689 MCLauncher.exe 84 RegQueryValue HKLM\System\CurrentControlSet\Control\WMI\Security\1aff6089-e863-4d36-bdfd-3581f07440be NAME NOT FOUND Length: 524 97 12:38:31,0189415 MCLauncher.exe 84 CreateFile C:\Windows\SysWOW64\oleaut32.dll SUCCESS Desired Access: Read Attributes, Disposition: Open, Options: Open Reparse Point, Attributes: n/a, ShareMode: Read, Write, Delete, AllocationSize: n/a, OpenResult: Opened 97 12:38:31,0189684 MCLauncher.exe 84 QueryBasicInformationFile C:\Windows\SysWOW64\oleaut32.dll SUCCESS CreationTime: 20.07.2018 1:34:14, LastAccessTime: 20.07.2018 1:34:14, LastWriteTime: 21.06.2017 10:42:23, ChangeTime: 20.07.2018 19:26:57, FileAttributes: A 97 12:38:31,0189778 MCLauncher.exe 84 CloseFile C:\Windows\SysWOW64\oleaut32.dll SUCCESS 97 12:38:31,0198733 MCLauncher.exe 84 CreateFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Desired Access: Generic Read, Disposition: Open, Options: Synchronous IO Non-Alert, Non-Directory File, Attributes: N, ShareMode: Read, Write, AllocationSize: n/a, OpenResult: Opened 97 12:38:31,0198996 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 1 863 896, Length: 4 096, Priority: Normal 97 12:38:31,0199154 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 1 863 922, Length: 512 97 12:38:31,0199243 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 1 863 944, Length: 512 97 12:38:31,0199303 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 1 864 456, Length: 512 97 12:38:31,0199395 MCLauncher.exe 84 CloseFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS 97 12:38:31,0203022 MCLauncher.exe 84 CreateFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Desired Access: Generic Read, Disposition: Open, Options: Synchronous IO Non-Alert, Non-Directory File, Attributes: N, ShareMode: Read, Write, AllocationSize: n/a, OpenResult: Opened 97 12:38:31,0203274 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 1 864 828, Length: 4 096, Priority: Normal 97 12:38:31,0203418 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 1 864 854, Length: 512 97 12:38:31,0203504 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 1 864 877, Length: 2 048 97 12:38:31,0203565 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 1 866 925, Length: 512 97 12:38:31,0203648 MCLauncher.exe 84 CloseFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS 97 12:38:31,0208427 MCLauncher.exe 84 CreateFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Desired Access: Generic Read, Disposition: Open, Options: Synchronous IO Non-Alert, Non-Directory File, Attributes: N, ShareMode: Read, Write, AllocationSize: n/a, OpenResult: Opened 97 12:38:31,0208679 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 4 138 307, Length: 4 096, Priority: Normal 97 12:38:31,0208873 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 4 138 333, Length: 512 97 12:38:31,0209912 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 4 138 354, Length: 514 560 97 12:38:31,0211267 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 4 652 914, Length: 512 97 12:38:31,0211378 MCLauncher.exe 84 CloseFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS 97 12:38:31,0303920 MCLauncher.exe 84 CreateFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Desired Access: Generic Read, Disposition: Open, Options: Synchronous IO Non-Alert, Non-Directory File, Attributes: N, ShareMode: Read, Write, AllocationSize: n/a, OpenResult: Opened 97 12:38:31,0304322 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 12 024 727, Length: 4 096, Priority: Normal 97 12:38:31,0304543 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 12 024 753, Length: 512 97 12:38:31,0304781 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 12 024 777, Length: 47 104 97 12:38:31,0304953 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 12 071 881, Length: 512 97 12:38:31,0305050 MCLauncher.exe 84 CloseFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS 97 12:38:31,0313578 MCLauncher.exe 84 CreateFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Desired Access: Generic Read, Disposition: Open, Options: Synchronous IO Non-Alert, Non-Directory File, Attributes: N, ShareMode: Read, Write, AllocationSize: n/a, OpenResult: Opened 97 12:38:31,0313872 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 12 072 256, Length: 4 096, Priority: Normal 97 12:38:31,0314016 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 12 072 282, Length: 512 97 12:38:31,0314226 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 12 072 308, Length: 44 544 97 12:38:31,0314373 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 12 116 852, Length: 512 97 12:38:31,0314465 MCLauncher.exe 84 CloseFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS 97 12:38:31,0323416 MCLauncher.exe 84 CreateFile C:\Windows\WinSxS\x86_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.9247_none_5090cb78bcba4a35\msvcp90.dll SUCCESS Desired Access: Read Attributes, Disposition: Open, Options: Open Reparse Point, Attributes: n/a, ShareMode: Read, Write, Delete, AllocationSize: n/a, OpenResult: Opened 97 12:38:31,0323613 MCLauncher.exe 84 QueryBasicInformationFile C:\Windows\WinSxS\x86_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.9247_none_5090cb78bcba4a35\msvcp90.dll SUCCESS CreationTime: 16.07.2016 14:43:08, LastAccessTime: 16.07.2016 14:43:08, LastWriteTime: 16.07.2016 14:43:08, ChangeTime: 19.07.2018 19:37:26, FileAttributes: A 97 12:38:31,0323704 MCLauncher.exe 84 CloseFile C:\Windows\WinSxS\x86_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.9247_none_5090cb78bcba4a35\msvcp90.dll SUCCESS 97 12:38:31,0324954 MCLauncher.exe 84 CreateFile C:\Windows\WinSxS\x86_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.9247_none_5090cb78bcba4a35\msvcp90.dll SUCCESS Desired Access: Read Data/List Directory, Execute/Traverse, Synchronize, Disposition: Open, Options: Synchronous IO Non-Alert, Non-Directory File, Attributes: n/a, ShareMode: Read, Delete, AllocationSize: n/a, OpenResult: Opened 97 12:38:31,0325170 MCLauncher.exe 84 CreateFileMapping C:\Windows\WinSxS\x86_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.9247_none_5090cb78bcba4a35\msvcp90.dll FILE LOCKED WITH ONLY READERS SyncType: SyncTypeCreateSection, PageProtection: PAGE_EXECUTE|PAGE_NOCACHE 97 12:38:31,0325347 MCLauncher.exe 84 QueryNameInformationFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Name: \Users\User\Downloads\MCLauncher.exe 97 12:38:31,0326248 MCLauncher.exe 84 CreateFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Desired Access: Synchronize, Disposition: Open, Options: Synchronous IO Non-Alert, Attributes: N, ShareMode: Read, Write, Delete, AllocationSize: n/a, OpenResult: Opened 97 12:38:31,0326428 MCLauncher.exe 84 CloseFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS 97 12:38:31,0326716 MCLauncher.exe 84 QueryNameInformationFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Name: \Users\User\Downloads\MCLauncher.exe 97 12:38:31,0327580 MCLauncher.exe 84 CreateFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Desired Access: Synchronize, Disposition: Open, Options: Synchronous IO Non-Alert, Attributes: N, ShareMode: Read, Write, Delete, AllocationSize: n/a, OpenResult: Opened 97 12:38:31,0327749 MCLauncher.exe 84 CloseFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS 97 12:38:31,0328725 MCLauncher.exe 84 CreateFileMapping C:\Windows\WinSxS\x86_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.9247_none_5090cb78bcba4a35\msvcp90.dll SUCCESS SyncType: SyncTypeOther 97 12:38:31,0329320 MCLauncher.exe 84 Load Image C:\Windows\WinSxS\x86_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.9247_none_5090cb78bcba4a35\msvcp90.dll SUCCESS Image Base: 0x6d180000, Image Size: 0x8e000 97 12:38:31,0329991 MCLauncher.exe 84 CloseFile C:\Windows\WinSxS\x86_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.9247_none_5090cb78bcba4a35\msvcp90.dll SUCCESS 97 12:38:31,0334449 MCLauncher.exe 84 CreateFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Desired Access: Generic Read, Disposition: Open, Options: Synchronous IO Non-Alert, Non-Directory File, Attributes: N, ShareMode: Read, Write, AllocationSize: n/a, OpenResult: Opened 97 12:38:31,0334701 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 7 318 446, Length: 4 096, Priority: Normal 97 12:38:31,0334870 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 7 318 472, Length: 512 97 12:38:31,0337618 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 7 318 487, Length: 1 030 144 97 12:38:31,0340333 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 8 348 631, Length: 512 97 12:38:31,0340452 MCLauncher.exe 84 CloseFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS 97 12:38:31,0692760 MCLauncher.exe 84 Load Image C:\Windows\SysWOW64\ws2_32.dll SUCCESS Image Base: 0x74fd0000, Image Size: 0x63000 97 12:38:31,0695436 MCLauncher.exe 84 CreateFile C:\Windows\SysWOW64\ws2_32.dll SUCCESS Desired Access: Read Control, Disposition: Open, Options: , Attributes: n/a, ShareMode: Read, Delete, AllocationSize: n/a, OpenResult: Opened 97 12:38:31,0695816 MCLauncher.exe 84 QuerySecurityFile C:\Windows\SysWOW64\ws2_32.dll BUFFER OVERFLOW Information: Owner 97 12:38:31,0695915 MCLauncher.exe 84 QuerySecurityFile C:\Windows\SysWOW64\ws2_32.dll SUCCESS Information: Owner 97 12:38:31,0695998 MCLauncher.exe 84 CloseFile C:\Windows\SysWOW64\ws2_32.dll SUCCESS 97 12:38:31,0696733 MCLauncher.exe 84 RegQueryValue HKLM\System\CurrentControlSet\Control\WMI\Security\d0f1a5c6-fc43-48ae-99bf-efb1c38be9d1 NAME NOT FOUND Length: 524 97 12:38:31,0701348 MCLauncher.exe 84 CreateFile C:\Windows\SysWOW64\version.dll SUCCESS Desired Access: Read Attributes, Disposition: Open, Options: Open Reparse Point, Attributes: n/a, ShareMode: Read, Write, Delete, AllocationSize: n/a, OpenResult: Opened 97 12:38:31,0701628 MCLauncher.exe 84 QueryBasicInformationFile C:\Windows\SysWOW64\version.dll SUCCESS CreationTime: 16.07.2016 14:43:04, LastAccessTime: 16.07.2016 14:43:04, LastWriteTime: 16.07.2016 14:43:04, ChangeTime: 20.07.2018 19:29:06, FileAttributes: A 97 12:38:31,0701728 MCLauncher.exe 84 CloseFile C:\Windows\SysWOW64\version.dll SUCCESS 97 12:38:31,0702720 MCLauncher.exe 84 CreateFile C:\Windows\SysWOW64\version.dll SUCCESS Desired Access: Read Data/List Directory, Execute/Traverse, Synchronize, Disposition: Open, Options: Synchronous IO Non-Alert, Non-Directory File, Attributes: n/a, ShareMode: Read, Delete, AllocationSize: n/a, OpenResult: Opened 97 12:38:31,0703014 MCLauncher.exe 84 CreateFileMapping C:\Windows\SysWOW64\version.dll FILE LOCKED WITH ONLY READERS SyncType: SyncTypeCreateSection, PageProtection: PAGE_EXECUTE|PAGE_NOCACHE 97 12:38:31,0703196 MCLauncher.exe 84 QueryNameInformationFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Name: \Users\User\Downloads\MCLauncher.exe 97 12:38:31,0704149 MCLauncher.exe 84 CreateFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Desired Access: Synchronize, Disposition: Open, Options: Synchronous IO Non-Alert, Attributes: N, ShareMode: Read, Write, Delete, AllocationSize: n/a, OpenResult: Opened 97 12:38:31,0704349 MCLauncher.exe 84 CloseFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS 97 12:38:31,0704654 MCLauncher.exe 84 QueryNameInformationFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Name: \Users\User\Downloads\MCLauncher.exe 97 12:38:31,0705535 MCLauncher.exe 84 CreateFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Desired Access: Synchronize, Disposition: Open, Options: Synchronous IO Non-Alert, Attributes: N, ShareMode: Read, Write, Delete, AllocationSize: n/a, OpenResult: Opened 97 12:38:31,0705704 MCLauncher.exe 84 CloseFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS 97 12:38:31,0706463 MCLauncher.exe 84 CreateFileMapping C:\Windows\SysWOW64\version.dll SUCCESS SyncType: SyncTypeOther 97 12:38:31,0706989 MCLauncher.exe 84 Load Image C:\Windows\SysWOW64\version.dll SUCCESS Image Base: 0x746e0000, Image Size: 0x8000 97 12:38:31,0707693 MCLauncher.exe 84 CloseFile C:\Windows\SysWOW64\version.dll SUCCESS 97 12:38:31,0708848 MCLauncher.exe 84 CreateFile C:\Windows\SysWOW64\version.dll SUCCESS Desired Access: Read Control, Disposition: Open, Options: , Attributes: n/a, ShareMode: Read, Delete, AllocationSize: n/a, OpenResult: Opened 97 12:38:31,0709117 MCLauncher.exe 84 QuerySecurityFile C:\Windows\SysWOW64\version.dll BUFFER OVERFLOW Information: Owner 97 12:38:31,0709195 MCLauncher.exe 84 QuerySecurityFile C:\Windows\SysWOW64\version.dll SUCCESS Information: Owner 97 12:38:31,0709261 MCLauncher.exe 84 CloseFile C:\Windows\SysWOW64\version.dll SUCCESS 97 12:38:31,0710023 MCLauncher.exe 84 RegOpenKey HKLM\System\CurrentControlSet\Control\Session Manager REPARSE Desired Access: Query Value 97 12:38:31,0710139 MCLauncher.exe 84 RegOpenKey HKLM\System\CurrentControlSet\Control\Session Manager SUCCESS Desired Access: Query Value 97 12:38:31,0710245 MCLauncher.exe 84 RegSetInfoKey HKLM\System\CurrentControlSet\Control\Session Manager SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 97 12:38:31,0710303 MCLauncher.exe 84 RegQueryValue HKLM\System\CurrentControlSet\Control\Session Manager\SafeDllSearchMode NAME NOT FOUND Length: 16 97 12:38:31,0711580 MCLauncher.exe 84 CreateFile C:\Windows\SysWOW64\ru-RU\kernel32.dll.mui SUCCESS Desired Access: Generic Read, Disposition: Open, Options: , Attributes: n/a, ShareMode: Read, Delete, AllocationSize: n/a, OpenResult: Opened 97 12:38:31,0711832 MCLauncher.exe 84 CreateFileMapping C:\Windows\SysWOW64\ru-RU\kernel32.dll.mui FILE LOCKED WITH ONLY READERS SyncType: SyncTypeCreateSection, PageProtection: PAGE_EXECUTE|PAGE_NOCACHE 97 12:38:31,0711954 MCLauncher.exe 84 QueryNameInformationFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Name: \Users\User\Downloads\MCLauncher.exe 97 12:38:31,0712843 MCLauncher.exe 84 CreateFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Desired Access: Synchronize, Disposition: Open, Options: Synchronous IO Non-Alert, Attributes: N, ShareMode: Read, Write, Delete, AllocationSize: n/a, OpenResult: Opened 97 12:38:31,0713029 MCLauncher.exe 84 CloseFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS 97 12:38:31,0713309 MCLauncher.exe 84 QueryNameInformationFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Name: \Users\User\Downloads\MCLauncher.exe 97 12:38:31,0714165 MCLauncher.exe 84 CreateFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Desired Access: Synchronize, Disposition: Open, Options: Synchronous IO Non-Alert, Attributes: N, ShareMode: Read, Write, Delete, AllocationSize: n/a, OpenResult: Opened 97 12:38:31,0714334 MCLauncher.exe 84 CloseFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS 97 12:38:31,0714921 MCLauncher.exe 84 QueryStandardInformationFile C:\Windows\SysWOW64\ru-RU\kernel32.dll.mui SUCCESS AllocationSize: 958 464, EndOfFile: 957 440, NumberOfLinks: 2, DeletePending: False, Directory: False 97 12:38:31,0715079 MCLauncher.exe 84 CreateFileMapping C:\Windows\SysWOW64\ru-RU\kernel32.dll.mui SUCCESS SyncType: SyncTypeOther 97 12:38:31,0715719 MCLauncher.exe 84 RegQueryValue HKLM\System\CurrentControlSet\Control\WMI\Security\540dc156-e9d6-42dc-a225-29794149a495 NAME NOT FOUND Length: 524 97 12:38:31,0717168 MCLauncher.exe 84 CreateFile C:\Users\User\Downloads\kernel32.dll NAME NOT FOUND Desired Access: Generic Read, Disposition: Open, Options: , Attributes: n/a, ShareMode: Read, AllocationSize: n/a 97 12:38:31,0828465 MCLauncher.exe 84 RegQueryKey HKCU SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:31,0828570 MCLauncher.exe 84 RegQueryKey HKCU SUCCESS Query: Name 97 12:38:31,0828730 MCLauncher.exe 84 RegOpenKey HKCU\Software\Python\PythonCore\MCLauncher\Modules\atexit NAME NOT FOUND Desired Access: Query Value 97 12:38:31,0828919 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:31,0828969 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: Name 97 12:38:31,0829071 MCLauncher.exe 84 RegOpenKey HKLM\Software\WOW6432Node\Python\PythonCore\MCLauncher\Modules\atexit NAME NOT FOUND Desired Access: Query Value 97 12:38:31,0830761 MCLauncher.exe 84 CreateFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Desired Access: Generic Read, Disposition: Open, Options: Synchronous IO Non-Alert, Non-Directory File, Attributes: N, ShareMode: Read, Write, AllocationSize: n/a, OpenResult: Opened 97 12:38:31,0831094 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 1 816 273, Length: 4 096, Priority: Normal 97 12:38:31,0831335 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 1 816 299, Length: 512 97 12:38:31,0831426 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 1 816 313, Length: 512 97 12:38:31,0831484 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 1 816 825, Length: 512 97 12:38:31,0831573 MCLauncher.exe 84 CloseFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS 97 12:38:31,0835779 MCLauncher.exe 84 CreateFile C:\Users\User\Downloads\MCLauncher.exe\PySide PATH NOT FOUND Desired Access: Read Attributes, Disposition: Open, Options: Open Reparse Point, Attributes: n/a, ShareMode: Read, Write, Delete, AllocationSize: n/a 97 12:38:31,0837247 MCLauncher.exe 84 CreateFile C:\Windows\SysWOW64\ru-RU\KernelBase.dll.mui SUCCESS Desired Access: Generic Read, Disposition: Open, Options: , Attributes: n/a, ShareMode: Read, Delete, AllocationSize: n/a, OpenResult: Opened 97 12:38:31,0837527 MCLauncher.exe 84 CreateFileMapping C:\Windows\SysWOW64\ru-RU\KernelBase.dll.mui FILE LOCKED WITH ONLY READERS SyncType: SyncTypeCreateSection, PageProtection: PAGE_EXECUTE|PAGE_NOCACHE 97 12:38:31,0837699 MCLauncher.exe 84 QueryNameInformationFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Name: \Users\User\Downloads\MCLauncher.exe 97 12:38:31,0838649 MCLauncher.exe 84 CreateFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Desired Access: Synchronize, Disposition: Open, Options: Synchronous IO Non-Alert, Attributes: N, ShareMode: Read, Write, Delete, AllocationSize: n/a, OpenResult: Opened 97 12:38:31,0838840 MCLauncher.exe 84 CloseFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS 97 12:38:31,0839148 MCLauncher.exe 84 QueryNameInformationFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Name: \Users\User\Downloads\MCLauncher.exe 97 12:38:31,0840037 MCLauncher.exe 84 CreateFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Desired Access: Synchronize, Disposition: Open, Options: Synchronous IO Non-Alert, Attributes: N, ShareMode: Read, Write, Delete, AllocationSize: n/a, OpenResult: Opened 97 12:38:31,0840209 MCLauncher.exe 84 CloseFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS 97 12:38:31,0840868 MCLauncher.exe 84 QueryStandardInformationFile C:\Windows\SysWOW64\ru-RU\KernelBase.dll.mui SUCCESS AllocationSize: 958 464, EndOfFile: 957 952, NumberOfLinks: 2, DeletePending: False, Directory: False 97 12:38:31,0841032 MCLauncher.exe 84 CreateFileMapping C:\Windows\SysWOW64\ru-RU\KernelBase.dll.mui SUCCESS SyncType: SyncTypeOther 97 12:38:31,0842791 MCLauncher.exe 84 CreateFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Desired Access: Generic Read, Disposition: Open, Options: Synchronous IO Non-Alert, Non-Directory File, Attributes: N, ShareMode: Read, Write, AllocationSize: n/a, OpenResult: Opened 97 12:38:31,0843251 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 6 517 646, Length: 4 096, Priority: Normal 97 12:38:31,0843509 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 6 517 672, Length: 512 97 12:38:31,0843905 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 6 517 695, Length: 111 616 97 12:38:31,0844199 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 6 629 311, Length: 512 97 12:38:31,0844290 MCLauncher.exe 84 CloseFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS 97 12:38:31,0863728 MCLauncher.exe 84 CreateFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Desired Access: Generic Read, Disposition: Open, Options: Synchronous IO Non-Alert, Non-Directory File, Attributes: N, ShareMode: Read, Write, AllocationSize: n/a, OpenResult: Opened 97 12:38:31,0863980 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 12 117 325, Length: 4 096, Priority: Normal 97 12:38:31,0864138 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 12 117 351, Length: 512 97 12:38:31,0878914 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 12 117 368, Length: 4 961 280 97 12:38:31,0891204 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 078 648, Length: 512 97 12:38:31,0891331 MCLauncher.exe 84 CloseFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS 97 12:38:31,1770660 MCLauncher.exe 84 CreateFile C:\Users\User\Downloads\WINMM.dll NAME NOT FOUND Desired Access: Read Attributes, Disposition: Open, Options: Open Reparse Point, Attributes: n/a, ShareMode: Read, Write, Delete, AllocationSize: n/a 97 12:38:31,1773082 MCLauncher.exe 84 CreateFile C:\Windows\SysWOW64\winmm.dll SUCCESS Desired Access: Read Attributes, Disposition: Open, Options: Open Reparse Point, Attributes: n/a, ShareMode: Read, Write, Delete, AllocationSize: n/a, OpenResult: Opened 97 12:38:31,1773525 MCLauncher.exe 84 QueryBasicInformationFile C:\Windows\SysWOW64\winmm.dll SUCCESS CreationTime: 16.07.2016 14:42:49, LastAccessTime: 16.07.2016 14:42:49, LastWriteTime: 16.07.2016 14:42:49, ChangeTime: 19.07.2018 19:41:04, FileAttributes: A 97 12:38:31,1773677 MCLauncher.exe 84 CloseFile C:\Windows\SysWOW64\winmm.dll SUCCESS 97 12:38:31,1774774 MCLauncher.exe 84 CreateFile C:\Windows\SysWOW64\winmm.dll SUCCESS Desired Access: Read Data/List Directory, Execute/Traverse, Synchronize, Disposition: Open, Options: Synchronous IO Non-Alert, Non-Directory File, Attributes: n/a, ShareMode: Read, Delete, AllocationSize: n/a, OpenResult: Opened 97 12:38:31,1775079 MCLauncher.exe 84 CreateFileMapping C:\Windows\SysWOW64\winmm.dll FILE LOCKED WITH ONLY READERS SyncType: SyncTypeCreateSection, PageProtection: PAGE_EXECUTE|PAGE_NOCACHE 97 12:38:31,1775254 MCLauncher.exe 84 QueryNameInformationFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Name: \Users\User\Downloads\MCLauncher.exe 97 12:38:31,1776182 MCLauncher.exe 84 CreateFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Desired Access: Synchronize, Disposition: Open, Options: Synchronous IO Non-Alert, Attributes: N, ShareMode: Read, Write, Delete, AllocationSize: n/a, OpenResult: Opened 97 12:38:31,1776387 MCLauncher.exe 84 CloseFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS 97 12:38:31,1776697 MCLauncher.exe 84 QueryNameInformationFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Name: \Users\User\Downloads\MCLauncher.exe 97 12:38:31,1777581 MCLauncher.exe 84 CreateFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Desired Access: Synchronize, Disposition: Open, Options: Synchronous IO Non-Alert, Attributes: N, ShareMode: Read, Write, Delete, AllocationSize: n/a, OpenResult: Opened 97 12:38:31,1777761 MCLauncher.exe 84 CloseFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS 97 12:38:31,1778545 MCLauncher.exe 84 CreateFileMapping C:\Windows\SysWOW64\winmm.dll SUCCESS SyncType: SyncTypeOther 97 12:38:31,1779368 MCLauncher.exe 84 Load Image C:\Windows\SysWOW64\winmm.dll SUCCESS Image Base: 0x74230000, Image Size: 0x24000 97 12:38:31,1780207 MCLauncher.exe 84 CloseFile C:\Windows\SysWOW64\winmm.dll SUCCESS 97 12:38:31,1782626 MCLauncher.exe 84 CreateFile C:\Users\User\Downloads\WINMMBASE.dll NAME NOT FOUND Desired Access: Read Attributes, Disposition: Open, Options: Open Reparse Point, Attributes: n/a, ShareMode: Read, Write, Delete, AllocationSize: n/a 97 12:38:31,1785006 MCLauncher.exe 84 CreateFile C:\Windows\SysWOW64\winmmbase.dll SUCCESS Desired Access: Read Attributes, Disposition: Open, Options: Open Reparse Point, Attributes: n/a, ShareMode: Read, Write, Delete, AllocationSize: n/a, OpenResult: Opened 97 12:38:31,1785194 MCLauncher.exe 84 QueryBasicInformationFile C:\Windows\SysWOW64\winmmbase.dll SUCCESS CreationTime: 16.07.2016 14:42:49, LastAccessTime: 16.07.2016 14:42:49, LastWriteTime: 16.07.2016 14:42:49, ChangeTime: 19.07.2018 19:41:04, FileAttributes: A 97 12:38:31,1785275 MCLauncher.exe 84 CloseFile C:\Windows\SysWOW64\winmmbase.dll SUCCESS 97 12:38:31,1786247 MCLauncher.exe 84 CreateFile C:\Windows\SysWOW64\winmmbase.dll SUCCESS Desired Access: Read Data/List Directory, Execute/Traverse, Synchronize, Disposition: Open, Options: Synchronous IO Non-Alert, Non-Directory File, Attributes: n/a, ShareMode: Read, Delete, AllocationSize: n/a, OpenResult: Opened 97 12:38:31,1786458 MCLauncher.exe 84 CreateFileMapping C:\Windows\SysWOW64\winmmbase.dll FILE LOCKED WITH ONLY READERS SyncType: SyncTypeCreateSection, PageProtection: PAGE_EXECUTE|PAGE_NOCACHE 97 12:38:31,1786569 MCLauncher.exe 84 QueryNameInformationFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Name: \Users\User\Downloads\MCLauncher.exe 97 12:38:31,1787458 MCLauncher.exe 84 CreateFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Desired Access: Synchronize, Disposition: Open, Options: Synchronous IO Non-Alert, Attributes: N, ShareMode: Read, Write, Delete, AllocationSize: n/a, OpenResult: Opened 97 12:38:31,1787638 MCLauncher.exe 84 CloseFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS 97 12:38:31,1787923 MCLauncher.exe 84 QueryNameInformationFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Name: \Users\User\Downloads\MCLauncher.exe 97 12:38:31,1788893 MCLauncher.exe 84 CreateFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Desired Access: Synchronize, Disposition: Open, Options: Synchronous IO Non-Alert, Attributes: N, ShareMode: Read, Write, Delete, AllocationSize: n/a, OpenResult: Opened 97 12:38:31,1789090 MCLauncher.exe 84 CloseFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS 97 12:38:31,1789760 MCLauncher.exe 84 CreateFileMapping C:\Windows\SysWOW64\winmmbase.dll SUCCESS SyncType: SyncTypeOther 97 12:38:31,1790290 MCLauncher.exe 84 Load Image C:\Windows\SysWOW64\winmmbase.dll SUCCESS Image Base: 0x741f0000, Image Size: 0x23000 97 12:38:31,1790863 MCLauncher.exe 84 CloseFile C:\Windows\SysWOW64\winmmbase.dll SUCCESS 97 12:38:31,1792830 MCLauncher.exe 84 CreateFile C:\Windows\SysWOW64\winmmbase.dll SUCCESS Desired Access: Read Control, Disposition: Open, Options: , Attributes: n/a, ShareMode: Read, Delete, AllocationSize: n/a, OpenResult: Opened 97 12:38:31,1793046 MCLauncher.exe 84 QuerySecurityFile C:\Windows\SysWOW64\winmmbase.dll BUFFER OVERFLOW Information: Owner 97 12:38:31,1793127 MCLauncher.exe 84 QuerySecurityFile C:\Windows\SysWOW64\winmmbase.dll SUCCESS Information: Owner 97 12:38:31,1793201 MCLauncher.exe 84 CloseFile C:\Windows\SysWOW64\winmmbase.dll SUCCESS 97 12:38:31,1794329 MCLauncher.exe 84 CreateFile C:\Windows\SysWOW64\winmm.dll SUCCESS Desired Access: Read Control, Disposition: Open, Options: , Attributes: n/a, ShareMode: Read, Delete, AllocationSize: n/a, OpenResult: Opened 97 12:38:31,1794595 MCLauncher.exe 84 QuerySecurityFile C:\Windows\SysWOW64\winmm.dll BUFFER OVERFLOW Information: Owner 97 12:38:31,1794670 MCLauncher.exe 84 QuerySecurityFile C:\Windows\SysWOW64\winmm.dll SUCCESS Information: Owner 97 12:38:31,1794733 MCLauncher.exe 84 CloseFile C:\Windows\SysWOW64\winmm.dll SUCCESS 97 12:38:31,1796604 MCLauncher.exe 84 CreateFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Desired Access: Generic Read, Disposition: Open, Options: Synchronous IO Non-Alert, Non-Directory File, Attributes: N, ShareMode: Read, Write, AllocationSize: n/a, OpenResult: Opened 97 12:38:31,1796872 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 8 391 896, Length: 4 096, Priority: Normal 97 12:38:31,1797108 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 8 391 922, Length: 512 97 12:38:31,1810484 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 8 391 936, Length: 3 632 640 97 12:38:31,1818824 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 12 024 576, Length: 512 97 12:38:31,1818951 MCLauncher.exe 84 CloseFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS 97 12:38:31,2512757 MCLauncher.exe 84 Load Image C:\Windows\SysWOW64\comdlg32.dll SUCCESS Image Base: 0x77be0000, Image Size: 0xe5000 97 12:38:31,2513539 MCLauncher.exe 84 RegOpenKey HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\SideBySide\AssemblyStorageRoots NAME NOT FOUND Desired Access: Enumerate Sub Keys 97 12:38:31,2518614 MCLauncher.exe 84 CreateFile C:\Users\User\Downloads\MCLauncher.exe.Local NAME NOT FOUND Desired Access: Read Attributes, Disposition: Open, Options: Open Reparse Point, Attributes: n/a, ShareMode: Read, Write, Delete, AllocationSize: n/a 97 12:38:31,2519942 MCLauncher.exe 84 CreateFile C:\Windows\WinSxS\x86_microsoft.windows.common-controls_6595b64144ccf1df_5.82.14393.447_none_5507ded2cb4f7f4c SUCCESS Desired Access: Execute/Traverse, Synchronize, Disposition: Open, Options: Directory, Synchronous IO Non-Alert, Attributes: n/a, ShareMode: Read, Write, AllocationSize: n/a, OpenResult: Opened 97 12:38:31,2522662 MCLauncher.exe 84 CreateFile C:\Windows\WinSxS\x86_microsoft.windows.common-controls_6595b64144ccf1df_5.82.14393.447_none_5507ded2cb4f7f4c\comctl32.dll SUCCESS Desired Access: Read Attributes, Disposition: Open, Options: Open Reparse Point, Attributes: n/a, ShareMode: Read, Write, Delete, AllocationSize: n/a, OpenResult: Opened 97 12:38:31,2522851 MCLauncher.exe 84 QueryBasicInformationFile C:\Windows\WinSxS\x86_microsoft.windows.common-controls_6595b64144ccf1df_5.82.14393.447_none_5507ded2cb4f7f4c\comctl32.dll SUCCESS CreationTime: 20.07.2018 1:35:27, LastAccessTime: 20.07.2018 1:35:27, LastWriteTime: 02.11.2016 14:04:46, ChangeTime: 20.07.2018 2:17:47, FileAttributes: A 97 12:38:31,2522937 MCLauncher.exe 84 CloseFile C:\Windows\WinSxS\x86_microsoft.windows.common-controls_6595b64144ccf1df_5.82.14393.447_none_5507ded2cb4f7f4c\comctl32.dll SUCCESS 97 12:38:31,2524014 MCLauncher.exe 84 CreateFile C:\Windows\WinSxS\x86_microsoft.windows.common-controls_6595b64144ccf1df_5.82.14393.447_none_5507ded2cb4f7f4c\comctl32.dll SUCCESS Desired Access: Read Data/List Directory, Execute/Traverse, Synchronize, Disposition: Open, Options: Synchronous IO Non-Alert, Non-Directory File, Attributes: n/a, ShareMode: Read, Delete, AllocationSize: n/a, OpenResult: Opened 97 12:38:31,2524214 MCLauncher.exe 84 CreateFileMapping C:\Windows\WinSxS\x86_microsoft.windows.common-controls_6595b64144ccf1df_5.82.14393.447_none_5507ded2cb4f7f4c\comctl32.dll FILE LOCKED WITH ONLY READERS SyncType: SyncTypeCreateSection, PageProtection: PAGE_EXECUTE|PAGE_NOCACHE 97 12:38:31,2524366 MCLauncher.exe 84 QueryNameInformationFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Name: \Users\User\Downloads\MCLauncher.exe 97 12:38:31,2525261 MCLauncher.exe 84 CreateFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Desired Access: Synchronize, Disposition: Open, Options: Synchronous IO Non-Alert, Attributes: N, ShareMode: Read, Write, Delete, AllocationSize: n/a, OpenResult: Opened 97 12:38:31,2525452 MCLauncher.exe 84 CloseFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS 97 12:38:31,2525754 MCLauncher.exe 84 QueryNameInformationFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Name: \Users\User\Downloads\MCLauncher.exe 97 12:38:31,2526619 MCLauncher.exe 84 CreateFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Desired Access: Synchronize, Disposition: Open, Options: Synchronous IO Non-Alert, Attributes: N, ShareMode: Read, Write, Delete, AllocationSize: n/a, OpenResult: Opened 97 12:38:31,2526788 MCLauncher.exe 84 CloseFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS 97 12:38:31,2527494 MCLauncher.exe 84 CreateFileMapping C:\Windows\WinSxS\x86_microsoft.windows.common-controls_6595b64144ccf1df_5.82.14393.447_none_5507ded2cb4f7f4c\comctl32.dll SUCCESS SyncType: SyncTypeOther 97 12:38:31,2527946 MCLauncher.exe 84 Load Image C:\Windows\WinSxS\x86_microsoft.windows.common-controls_6595b64144ccf1df_5.82.14393.447_none_5507ded2cb4f7f4c\comctl32.dll SUCCESS Image Base: 0x6dcd0000, Image Size: 0x94000 97 12:38:31,2528383 MCLauncher.exe 84 CloseFile C:\Windows\WinSxS\x86_microsoft.windows.common-controls_6595b64144ccf1df_5.82.14393.447_none_5507ded2cb4f7f4c\comctl32.dll SUCCESS 97 12:38:31,2531290 MCLauncher.exe 84 CreateFile C:\Windows\SysWOW64\comdlg32.dll SUCCESS Desired Access: Read Control, Disposition: Open, Options: , Attributes: n/a, ShareMode: Read, Delete, AllocationSize: n/a, OpenResult: Opened 97 12:38:31,2531603 MCLauncher.exe 84 QuerySecurityFile C:\Windows\SysWOW64\comdlg32.dll BUFFER OVERFLOW Information: Owner 97 12:38:31,2531692 MCLauncher.exe 84 QuerySecurityFile C:\Windows\SysWOW64\comdlg32.dll SUCCESS Information: Owner 97 12:38:31,2531766 MCLauncher.exe 84 CloseFile C:\Windows\SysWOW64\comdlg32.dll SUCCESS 97 12:38:31,2533517 MCLauncher.exe 84 RegOpenKey HKCU SUCCESS Desired Access: Read 97 12:38:31,2533986 MCLauncher.exe 84 RegCloseKey HKCU SUCCESS 97 12:38:31,2590605 MCLauncher.exe 84 CreateFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Desired Access: Generic Read, Disposition: Open, Options: Synchronous IO Non-Alert, Non-Directory File, Attributes: N, ShareMode: Read, Write, AllocationSize: n/a, OpenResult: Opened 97 12:38:31,2590970 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 6 927 812, Length: 4 096, Priority: Normal 97 12:38:31,2591242 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 6 927 838, Length: 512 97 12:38:31,2592403 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 6 927 856, Length: 390 144 97 12:38:31,2593192 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 7 318 000, Length: 512 97 12:38:31,2593295 MCLauncher.exe 84 CloseFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS 97 12:38:31,2667399 MCLauncher.exe 84 CreateFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Desired Access: Generic Read, Disposition: Open, Options: Synchronous IO Non-Alert, Non-Directory File, Attributes: N, ShareMode: Read, Write, AllocationSize: n/a, OpenResult: Opened 97 12:38:31,2667756 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 4 653 138, Length: 4 096, Priority: Normal 97 12:38:31,2667975 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 4 653 164, Length: 512 97 12:38:31,2731762 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 4 653 184, Length: 1 690 624 97 12:38:31,2736245 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 6 343 808, Length: 512 97 12:38:31,2736381 MCLauncher.exe 84 CloseFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS 97 12:38:31,3300397 MCLauncher.exe 84 CreateFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Desired Access: Generic Read, Disposition: Open, Options: Synchronous IO Non-Alert, Non-Directory File, Attributes: N, ShareMode: Read, Write, AllocationSize: n/a, OpenResult: Opened 97 12:38:31,3300780 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 6 343 973, Length: 4 096, Priority: Normal 97 12:38:31,3300993 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 6 343 999, Length: 512 97 12:38:31,3301528 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 6 344 023, Length: 173 568 97 12:38:31,3302082 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 6 517 591, Length: 512 97 12:38:31,3302201 MCLauncher.exe 84 CloseFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS 97 12:38:31,3367245 MCLauncher.exe 84 RegQueryKey HKCU SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:31,3367353 MCLauncher.exe 84 RegQueryKey HKCU SUCCESS Query: Name 97 12:38:31,3367503 MCLauncher.exe 84 RegOpenKey HKCU\Software\Python\PythonCore\MCLauncher\Modules\platform NAME NOT FOUND Desired Access: Query Value 97 12:38:31,3367700 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:31,3367752 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: Name 97 12:38:31,3367861 MCLauncher.exe 84 RegOpenKey HKLM\Software\WOW6432Node\Python\PythonCore\MCLauncher\Modules\platform NAME NOT FOUND Desired Access: Query Value 97 12:38:31,3369501 MCLauncher.exe 84 CreateFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Desired Access: Generic Read, Disposition: Open, Options: Synchronous IO Non-Alert, Non-Directory File, Attributes: N, ShareMode: Read, Write, AllocationSize: n/a, OpenResult: Opened 97 12:38:31,3370046 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 2 216 758, Length: 4 096, Priority: Normal 97 12:38:31,3370337 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 2 216 784, Length: 512 97 12:38:31,3370445 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 2 216 800, Length: 11 264 97 12:38:31,3370526 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 2 228 064, Length: 512 97 12:38:31,3370628 MCLauncher.exe 84 CloseFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS 97 12:38:31,3393145 MCLauncher.exe 84 RegQueryKey HKCU SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:31,3393233 MCLauncher.exe 84 RegQueryKey HKCU SUCCESS Query: Name 97 12:38:31,3393352 MCLauncher.exe 84 RegOpenKey HKCU\Software\Python\PythonCore\MCLauncher\Modules\json NAME NOT FOUND Desired Access: Query Value 97 12:38:31,3393499 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:31,3393546 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: Name 97 12:38:31,3393641 MCLauncher.exe 84 RegOpenKey HKLM\Software\WOW6432Node\Python\PythonCore\MCLauncher\Modules\json NAME NOT FOUND Desired Access: Query Value 97 12:38:31,3394896 MCLauncher.exe 84 CreateFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Desired Access: Generic Read, Disposition: Open, Options: Synchronous IO Non-Alert, Non-Directory File, Attributes: N, ShareMode: Read, Write, AllocationSize: n/a, OpenResult: Opened 97 12:38:31,3395145 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 2 120 850, Length: 4 096, Priority: Normal 97 12:38:31,3395303 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 2 120 876, Length: 512 97 12:38:31,3395392 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 2 120 897, Length: 1 024 97 12:38:31,3395453 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 2 121 921, Length: 512 97 12:38:31,3395538 MCLauncher.exe 84 CloseFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS 97 12:38:31,3397151 MCLauncher.exe 84 CreateFile C:\Users\User\Downloads\MCLauncher.exe NOT A DIRECTORY Desired Access: Read Data/List Directory, Synchronize, Disposition: Open, Options: Directory, Synchronous IO Non-Alert, Attributes: n/a, ShareMode: Read, Write, Delete, AllocationSize: n/a 97 12:38:31,3398057 MCLauncher.exe 84 CreateFile C:\Users\User\Downloads\MCLauncher.exe NOT A DIRECTORY Desired Access: Read Data/List Directory, Synchronize, Disposition: Open, Options: Directory, Synchronous IO Non-Alert, Attributes: n/a, ShareMode: Read, Write, Delete, AllocationSize: n/a 97 12:38:31,3399154 MCLauncher.exe 84 CreateFile C:\Users\User\Downloads SUCCESS Desired Access: Read Data/List Directory, Synchronize, Disposition: Open, Options: Directory, Synchronous IO Non-Alert, Attributes: n/a, ShareMode: Read, Write, Delete, AllocationSize: n/a, OpenResult: Opened 97 12:38:31,3399365 MCLauncher.exe 84 QueryDirectory C:\Users\User\Downloads\MCLauncher.exe SUCCESS Filter: MCLauncher.exe, 1: MCLauncher.exe 97 12:38:31,3399586 MCLauncher.exe 84 CloseFile C:\Users\User\Downloads SUCCESS 97 12:38:31,3400705 MCLauncher.exe 84 CreateFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Desired Access: Generic Read, Disposition: Open, Options: Synchronous IO Non-Alert, Non-Directory File, Attributes: N, ShareMode: Read, Write, AllocationSize: n/a, OpenResult: Opened 97 12:38:31,3400930 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 2 122 095, Length: 4 096, Priority: Normal 97 12:38:31,3401068 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 2 122 121, Length: 512 97 12:38:31,3401154 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 2 122 141, Length: 3 072 97 12:38:31,3401221 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 2 125 213, Length: 512 97 12:38:31,3401298 MCLauncher.exe 84 CloseFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS 97 12:38:31,3403551 MCLauncher.exe 84 CreateFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Desired Access: Generic Read, Disposition: Open, Options: Synchronous IO Non-Alert, Non-Directory File, Attributes: N, ShareMode: Read, Write, AllocationSize: n/a, OpenResult: Opened 97 12:38:31,3403778 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 2 129 490, Length: 4 096, Priority: Normal 97 12:38:31,3403911 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 2 129 516, Length: 512 97 12:38:31,3403994 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 2 129 536, Length: 1 024 97 12:38:31,3404055 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 2 130 560, Length: 512 97 12:38:31,3404135 MCLauncher.exe 84 CloseFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS 97 12:38:31,3408336 MCLauncher.exe 84 CreateFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Desired Access: Generic Read, Disposition: Open, Options: Synchronous IO Non-Alert, Non-Directory File, Attributes: N, ShareMode: Read, Write, AllocationSize: n/a, OpenResult: Opened 97 12:38:31,3408585 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 2 008 931, Length: 4 096, Priority: Normal 97 12:38:31,3408765 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 2 008 957, Length: 512 97 12:38:31,3408856 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 2 008 984, Length: 512 97 12:38:31,3409042 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 2 009 496, Length: 512 97 12:38:31,3409183 MCLauncher.exe 84 CloseFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS 97 12:38:31,3413090 MCLauncher.exe 84 CreateFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Desired Access: Generic Read, Disposition: Open, Options: Synchronous IO Non-Alert, Non-Directory File, Attributes: N, ShareMode: Read, Write, AllocationSize: n/a, OpenResult: Opened 97 12:38:31,3413339 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 2 125 702, Length: 4 096, Priority: Normal 97 12:38:31,3413469 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 2 125 728, Length: 512 97 12:38:31,3413555 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 2 125 748, Length: 3 584 97 12:38:31,3413619 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 2 129 332, Length: 512 97 12:38:31,3413702 MCLauncher.exe 84 CloseFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS 97 12:38:31,3417600 MCLauncher.exe 84 RegQueryKey HKCU SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:31,3417678 MCLauncher.exe 84 RegQueryKey HKCU SUCCESS Query: Name 97 12:38:31,3417786 MCLauncher.exe 84 RegOpenKey HKCU\Software\Python\PythonCore\MCLauncher\Modules\threading NAME NOT FOUND Desired Access: Query Value 97 12:38:31,3417913 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:31,3417961 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: Name 97 12:38:31,3418052 MCLauncher.exe 84 RegOpenKey HKLM\Software\WOW6432Node\Python\PythonCore\MCLauncher\Modules\threading NAME NOT FOUND Desired Access: Query Value 97 12:38:31,3419338 MCLauncher.exe 84 CreateFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Desired Access: Generic Read, Disposition: Open, Options: Synchronous IO Non-Alert, Non-Directory File, Attributes: N, ShareMode: Read, Write, AllocationSize: n/a, OpenResult: Opened 97 12:38:31,3419581 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 2 521 546, Length: 4 096, Priority: Normal 97 12:38:31,3419753 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 2 521 572, Length: 512 97 12:38:31,3419842 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 2 521 589, Length: 8 192 97 12:38:31,3419917 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 2 529 781, Length: 512 97 12:38:31,3420005 MCLauncher.exe 84 CloseFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS 97 12:38:31,3422582 MCLauncher.exe 84 RegQueryKey HKCU SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:31,3422651 MCLauncher.exe 84 RegQueryKey HKCU SUCCESS Query: Name 97 12:38:31,3422754 MCLauncher.exe 84 RegOpenKey HKCU\Software\Python\PythonCore\MCLauncher\Modules\traceback NAME NOT FOUND Desired Access: Query Value 97 12:38:31,3422876 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:31,3422923 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: Name 97 12:38:31,3423011 MCLauncher.exe 84 RegOpenKey HKLM\Software\WOW6432Node\Python\PythonCore\MCLauncher\Modules\traceback NAME NOT FOUND Desired Access: Query Value 97 12:38:31,3424164 MCLauncher.exe 84 CreateFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Desired Access: Generic Read, Disposition: Open, Options: Synchronous IO Non-Alert, Non-Directory File, Attributes: N, ShareMode: Read, Write, AllocationSize: n/a, OpenResult: Opened 97 12:38:31,3424405 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 2 536 990, Length: 4 096, Priority: Normal 97 12:38:31,3424546 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 2 537 016, Length: 512 97 12:38:31,3424632 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 2 537 033, Length: 2 560 97 12:38:31,3424693 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 2 539 593, Length: 512 97 12:38:31,3424776 MCLauncher.exe 84 CloseFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS 97 12:38:31,3429417 MCLauncher.exe 84 RegQueryKey HKCU SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:31,3429494 MCLauncher.exe 84 RegQueryKey HKCU SUCCESS Query: Name 97 12:38:31,3429602 MCLauncher.exe 84 RegOpenKey HKCU\Software\Python\PythonCore\MCLauncher\Modules\socket NAME NOT FOUND Desired Access: Query Value 97 12:38:31,3429730 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:31,3429777 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: Name 97 12:38:31,3429868 MCLauncher.exe 84 RegOpenKey HKLM\Software\WOW6432Node\Python\PythonCore\MCLauncher\Modules\socket NAME NOT FOUND Desired Access: Query Value 97 12:38:31,3431043 MCLauncher.exe 84 CreateFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Desired Access: Generic Read, Disposition: Open, Options: Synchronous IO Non-Alert, Non-Directory File, Attributes: N, ShareMode: Read, Write, AllocationSize: n/a, OpenResult: Opened 97 12:38:31,3431284 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 2 437 379, Length: 4 096, Priority: Normal 97 12:38:31,3431445 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 2 437 405, Length: 512 97 12:38:31,3431536 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 2 437 419, Length: 5 120 97 12:38:31,3431597 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 2 442 539, Length: 512 97 12:38:31,3431680 MCLauncher.exe 84 CloseFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS 97 12:38:31,3433226 MCLauncher.exe 84 RegQueryKey HKCU SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:31,3433290 MCLauncher.exe 84 RegQueryKey HKCU SUCCESS Query: Name 97 12:38:31,3433390 MCLauncher.exe 84 RegOpenKey HKCU\Software\Python\PythonCore\MCLauncher\Modules\_socket NAME NOT FOUND Desired Access: Query Value 97 12:38:31,3433509 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:31,3433556 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: Name 97 12:38:31,3433642 MCLauncher.exe 84 RegOpenKey HKLM\Software\WOW6432Node\Python\PythonCore\MCLauncher\Modules\_socket NAME NOT FOUND Desired Access: Query Value 97 12:38:31,3434842 MCLauncher.exe 84 CreateFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Desired Access: Generic Read, Disposition: Open, Options: Synchronous IO Non-Alert, Non-Directory File, Attributes: N, ShareMode: Read, Write, AllocationSize: n/a, OpenResult: Opened 97 12:38:31,3435080 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 3 169 073, Length: 4 096, Priority: Normal 97 12:38:31,3435335 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 3 169 099, Length: 512 97 12:38:31,3435426 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 3 169 114, Length: 20 992 97 12:38:31,3435518 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 3 190 106, Length: 512 97 12:38:31,3435603 MCLauncher.exe 84 CloseFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS 97 12:38:31,3439973 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:31,3440047 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: Name 97 12:38:31,3440150 MCLauncher.exe 84 RegOpenKey HKLM\System\CurrentControlSet\Services\WinSock2\Parameters REPARSE Desired Access: All Access 97 12:38:31,3440266 MCLauncher.exe 84 RegOpenKey HKLM\System\CurrentControlSet\Services\WinSock2\Parameters ACCESS DENIED Desired Access: All Access 97 12:38:31,3440419 MCLauncher.exe 84 QuerySecurityFile C:\Users\User\Downloads\MCLauncher.exe BUFFER OVERFLOW Information: Owner 97 12:38:31,3440521 MCLauncher.exe 84 QuerySecurityFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Information: Owner 97 12:38:31,3440887 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:31,3440940 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: Name 97 12:38:31,3441017 MCLauncher.exe 84 RegOpenKey HKLM\System\CurrentControlSet\Services\WinSock2\Parameters REPARSE Desired Access: Read 97 12:38:31,3441092 MCLauncher.exe 84 RegOpenKey HKLM\System\CurrentControlSet\Services\WinSock2\Parameters SUCCESS Desired Access: Read 97 12:38:31,3441172 MCLauncher.exe 84 RegSetInfoKey HKLM\System\CurrentControlSet\Services\WinSock2\Parameters SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 97 12:38:31,3441233 MCLauncher.exe 84 RegQueryValue HKLM\System\CurrentControlSet\Services\WinSock2\Parameters\WinSock_Registry_Version SUCCESS Type: REG_SZ, Length: 8, Data: 2.0 97 12:38:31,3441411 MCLauncher.exe 84 RegQueryValue HKLM\System\CurrentControlSet\Services\WinSock2\Parameters\WinSock_Registry_Version SUCCESS Type: REG_SZ, Length: 8, Data: 2.0 97 12:38:31,3441574 MCLauncher.exe 84 RegQueryKey HKLM\System\CurrentControlSet\Services\WinSock2\Parameters SUCCESS Query: HandleTags, HandleTags: 0x400 97 12:38:31,3441638 MCLauncher.exe 84 RegOpenKey HKLM\System\CurrentControlSet\Services\WinSock2\Parameters\AppId_Catalog SUCCESS Desired Access: Read 97 12:38:31,3441851 MCLauncher.exe 84 RegQueryKey HKLM\System\CurrentControlSet\Services\WinSock2\Parameters\AppId_Catalog SUCCESS Query: HandleTags, HandleTags: 0x400 97 12:38:31,3441907 MCLauncher.exe 84 RegOpenKey HKLM\System\CurrentControlSet\Services\WinSock2\Parameters\AppId_Catalog\210B074C NAME NOT FOUND Desired Access: Read 97 12:38:31,3442003 MCLauncher.exe 84 RegCloseKey HKLM\System\CurrentControlSet\Services\WinSock2\Parameters\AppId_Catalog SUCCESS 97 12:38:31,3442070 MCLauncher.exe 84 RegQueryValue HKLM\System\CurrentControlSet\Services\WinSock2\Parameters\NameSpace_Callout SUCCESS Type: REG_EXPAND_SZ, Length: 70, Data: %SystemRoot%\System32\fwpuclnt.dll 97 12:38:31,3442206 MCLauncher.exe 84 RegQueryValue HKLM\System\CurrentControlSet\Services\WinSock2\Parameters\NameSpace_Callout SUCCESS Type: REG_EXPAND_SZ, Length: 70, Data: %SystemRoot%\System32\fwpuclnt.dll 97 12:38:31,3442411 MCLauncher.exe 84 RegQueryKey HKLM\System\CurrentControlSet\Services\WinSock2\Parameters SUCCESS Query: HandleTags, HandleTags: 0x400 97 12:38:31,3442480 MCLauncher.exe 84 RegOpenKey HKLM\System\CurrentControlSet\Services\WinSock2\Parameters\Protocol_Catalog9 SUCCESS Desired Access: Maximum Allowed, Granted Access: Read 97 12:38:31,3442583 MCLauncher.exe 84 RegQueryValue HKLM\System\CurrentControlSet\Services\WinSock2\Parameters\Protocol_Catalog9\Serial_Access_Num SUCCESS Type: REG_DWORD, Length: 4, Data: 10 97 12:38:31,3443109 MCLauncher.exe 84 RegQueryValue HKLM\System\CurrentControlSet\Services\WinSock2\Parameters\Protocol_Catalog9\Serial_Access_Num SUCCESS Type: REG_DWORD, Length: 4, Data: 10 97 12:38:31,3443386 MCLauncher.exe 84 RegQueryKey HKLM\System\CurrentControlSet\Services\WinSock2\Parameters\Protocol_Catalog9 SUCCESS Query: HandleTags, HandleTags: 0x400 97 12:38:31,3443444 MCLauncher.exe 84 RegOpenKey HKLM\System\CurrentControlSet\Services\WinSock2\Parameters\Protocol_Catalog9\0000000A NAME NOT FOUND Desired Access: Read 97 12:38:31,3443525 MCLauncher.exe 84 RegQueryValue HKLM\System\CurrentControlSet\Services\WinSock2\Parameters\Protocol_Catalog9\Next_Catalog_Entry_ID SUCCESS Type: REG_DWORD, Length: 4, Data: 1013 97 12:38:31,3443646 MCLauncher.exe 84 RegQueryValue HKLM\System\CurrentControlSet\Services\WinSock2\Parameters\Protocol_Catalog9\Num_Catalog_Entries SUCCESS Type: REG_DWORD, Length: 4, Data: 12 97 12:38:31,3443793 MCLauncher.exe 84 RegQueryKey HKLM\System\CurrentControlSet\Services\WinSock2\Parameters\Protocol_Catalog9 SUCCESS Query: HandleTags, HandleTags: 0x400 97 12:38:31,3443851 MCLauncher.exe 84 RegOpenKey HKLM\System\CurrentControlSet\Services\WinSock2\Parameters\Protocol_Catalog9\Catalog_Entries SUCCESS Desired Access: Maximum Allowed, Granted Access: Read 97 12:38:31,3443962 MCLauncher.exe 84 RegQueryKey HKLM\System\CurrentControlSet\Services\WinSock2\Parameters\Protocol_Catalog9\Catalog_Entries SUCCESS Query: HandleTags, HandleTags: 0x400 97 12:38:31,3444015 MCLauncher.exe 84 RegOpenKey HKLM\System\CurrentControlSet\Services\WinSock2\Parameters\Protocol_Catalog9\Catalog_Entries\000000000001 SUCCESS Desired Access: Read 97 12:38:31,3444159 MCLauncher.exe 84 RegQueryValue HKLM\System\CurrentControlSet\Services\WinSock2\Parameters\Protocol_Catalog9\Catalog_Entries\000000000001\PackedCatalogItem BUFFER OVERFLOW Length: 144 97 12:38:31,3444275 MCLauncher.exe 84 RegQueryValue HKLM\System\CurrentControlSet\Services\WinSock2\Parameters\Protocol_Catalog9\Catalog_Entries\000000000001\PackedCatalogItem SUCCESS Type: REG_BINARY, Length: 888, Data: 25 53 79 73 74 65 6D 52 6F 6F 74 25 5C 73 79 73 97 12:38:31,3444419 MCLauncher.exe 84 RegCloseKey HKLM\System\CurrentControlSet\Services\WinSock2\Parameters\Protocol_Catalog9\Catalog_Entries\000000000001 SUCCESS 97 12:38:31,3444503 MCLauncher.exe 84 RegQueryKey HKLM\System\CurrentControlSet\Services\WinSock2\Parameters\Protocol_Catalog9\Catalog_Entries SUCCESS Query: HandleTags, HandleTags: 0x400 97 12:38:31,3444561 MCLauncher.exe 84 RegOpenKey HKLM\System\CurrentControlSet\Services\WinSock2\Parameters\Protocol_Catalog9\Catalog_Entries\000000000002 SUCCESS Desired Access: Read 97 12:38:31,3444644 MCLauncher.exe 84 RegQueryValue HKLM\System\CurrentControlSet\Services\WinSock2\Parameters\Protocol_Catalog9\Catalog_Entries\000000000002\PackedCatalogItem BUFFER OVERFLOW Length: 144 97 12:38:31,3444749 MCLauncher.exe 84 RegQueryValue HKLM\System\CurrentControlSet\Services\WinSock2\Parameters\Protocol_Catalog9\Catalog_Entries\000000000002\PackedCatalogItem SUCCESS Type: REG_BINARY, Length: 888, Data: 25 53 79 73 74 65 6D 52 6F 6F 74 25 5C 73 79 73 97 12:38:31,3444882 MCLauncher.exe 84 RegCloseKey HKLM\System\CurrentControlSet\Services\WinSock2\Parameters\Protocol_Catalog9\Catalog_Entries\000000000002 SUCCESS 97 12:38:31,3444957 MCLauncher.exe 84 RegQueryKey HKLM\System\CurrentControlSet\Services\WinSock2\Parameters\Protocol_Catalog9\Catalog_Entries SUCCESS Query: HandleTags, HandleTags: 0x400 97 12:38:31,3445015 MCLauncher.exe 84 RegOpenKey HKLM\System\CurrentControlSet\Services\WinSock2\Parameters\Protocol_Catalog9\Catalog_Entries\000000000003 SUCCESS Desired Access: Read 97 12:38:31,3445095 MCLauncher.exe 84 RegQueryValue HKLM\System\CurrentControlSet\Services\WinSock2\Parameters\Protocol_Catalog9\Catalog_Entries\000000000003\PackedCatalogItem BUFFER OVERFLOW Length: 144 97 12:38:31,3445298 MCLauncher.exe 84 RegQueryValue HKLM\System\CurrentControlSet\Services\WinSock2\Parameters\Protocol_Catalog9\Catalog_Entries\000000000003\PackedCatalogItem SUCCESS Type: REG_BINARY, Length: 888, Data: 25 53 79 73 74 65 6D 52 6F 6F 74 25 5C 73 79 73 97 12:38:31,3445428 MCLauncher.exe 84 RegCloseKey HKLM\System\CurrentControlSet\Services\WinSock2\Parameters\Protocol_Catalog9\Catalog_Entries\000000000003 SUCCESS 97 12:38:31,3445503 MCLauncher.exe 84 RegQueryKey HKLM\System\CurrentControlSet\Services\WinSock2\Parameters\Protocol_Catalog9\Catalog_Entries SUCCESS Query: HandleTags, HandleTags: 0x400 97 12:38:31,3445561 MCLauncher.exe 84 RegOpenKey HKLM\System\CurrentControlSet\Services\WinSock2\Parameters\Protocol_Catalog9\Catalog_Entries\000000000004 SUCCESS Desired Access: Read 97 12:38:31,3445674 MCLauncher.exe 84 RegQueryValue HKLM\System\CurrentControlSet\Services\WinSock2\Parameters\Protocol_Catalog9\Catalog_Entries\000000000004\PackedCatalogItem BUFFER OVERFLOW Length: 144 97 12:38:31,3445785 MCLauncher.exe 84 RegQueryValue HKLM\System\CurrentControlSet\Services\WinSock2\Parameters\Protocol_Catalog9\Catalog_Entries\000000000004\PackedCatalogItem SUCCESS Type: REG_BINARY, Length: 888, Data: 25 53 79 73 74 65 6D 52 6F 6F 74 25 5C 73 79 73 97 12:38:31,3445913 MCLauncher.exe 84 RegCloseKey HKLM\System\CurrentControlSet\Services\WinSock2\Parameters\Protocol_Catalog9\Catalog_Entries\000000000004 SUCCESS 97 12:38:31,3445990 MCLauncher.exe 84 RegQueryKey HKLM\System\CurrentControlSet\Services\WinSock2\Parameters\Protocol_Catalog9\Catalog_Entries SUCCESS Query: HandleTags, HandleTags: 0x400 97 12:38:31,3446046 MCLauncher.exe 84 RegOpenKey HKLM\System\CurrentControlSet\Services\WinSock2\Parameters\Protocol_Catalog9\Catalog_Entries\000000000005 SUCCESS Desired Access: Read 97 12:38:31,3446126 MCLauncher.exe 84 RegQueryValue HKLM\System\CurrentControlSet\Services\WinSock2\Parameters\Protocol_Catalog9\Catalog_Entries\000000000005\PackedCatalogItem BUFFER OVERFLOW Length: 144 97 12:38:31,3446229 MCLauncher.exe 84 RegQueryValue HKLM\System\CurrentControlSet\Services\WinSock2\Parameters\Protocol_Catalog9\Catalog_Entries\000000000005\PackedCatalogItem SUCCESS Type: REG_BINARY, Length: 888, Data: 25 53 79 73 74 65 6D 52 6F 6F 74 25 5C 73 79 73 97 12:38:31,3446353 MCLauncher.exe 84 RegCloseKey HKLM\System\CurrentControlSet\Services\WinSock2\Parameters\Protocol_Catalog9\Catalog_Entries\000000000005 SUCCESS 97 12:38:31,3446428 MCLauncher.exe 84 RegQueryKey HKLM\System\CurrentControlSet\Services\WinSock2\Parameters\Protocol_Catalog9\Catalog_Entries SUCCESS Query: HandleTags, HandleTags: 0x400 97 12:38:31,3446483 MCLauncher.exe 84 RegOpenKey HKLM\System\CurrentControlSet\Services\WinSock2\Parameters\Protocol_Catalog9\Catalog_Entries\000000000006 SUCCESS Desired Access: Read 97 12:38:31,3446567 MCLauncher.exe 84 RegQueryValue HKLM\System\CurrentControlSet\Services\WinSock2\Parameters\Protocol_Catalog9\Catalog_Entries\000000000006\PackedCatalogItem BUFFER OVERFLOW Length: 144 97 12:38:31,3446669 MCLauncher.exe 84 RegQueryValue HKLM\System\CurrentControlSet\Services\WinSock2\Parameters\Protocol_Catalog9\Catalog_Entries\000000000006\PackedCatalogItem SUCCESS Type: REG_BINARY, Length: 888, Data: 25 53 79 73 74 65 6D 52 6F 6F 74 25 5C 73 79 73 97 12:38:31,3446794 MCLauncher.exe 84 RegCloseKey HKLM\System\CurrentControlSet\Services\WinSock2\Parameters\Protocol_Catalog9\Catalog_Entries\000000000006 SUCCESS 97 12:38:31,3446869 MCLauncher.exe 84 RegQueryKey HKLM\System\CurrentControlSet\Services\WinSock2\Parameters\Protocol_Catalog9\Catalog_Entries SUCCESS Query: HandleTags, HandleTags: 0x400 97 12:38:31,3446924 MCLauncher.exe 84 RegOpenKey HKLM\System\CurrentControlSet\Services\WinSock2\Parameters\Protocol_Catalog9\Catalog_Entries\000000000007 SUCCESS Desired Access: Read 97 12:38:31,3447002 MCLauncher.exe 84 RegQueryValue HKLM\System\CurrentControlSet\Services\WinSock2\Parameters\Protocol_Catalog9\Catalog_Entries\000000000007\PackedCatalogItem BUFFER OVERFLOW Length: 144 97 12:38:31,3447135 MCLauncher.exe 84 RegQueryValue HKLM\System\CurrentControlSet\Services\WinSock2\Parameters\Protocol_Catalog9\Catalog_Entries\000000000007\PackedCatalogItem SUCCESS Type: REG_BINARY, Length: 888, Data: 25 53 79 73 74 65 6D 52 6F 6F 74 25 5C 73 79 73 97 12:38:31,3447268 MCLauncher.exe 84 RegCloseKey HKLM\System\CurrentControlSet\Services\WinSock2\Parameters\Protocol_Catalog9\Catalog_Entries\000000000007 SUCCESS 97 12:38:31,3447342 MCLauncher.exe 84 RegQueryKey HKLM\System\CurrentControlSet\Services\WinSock2\Parameters\Protocol_Catalog9\Catalog_Entries SUCCESS Query: HandleTags, HandleTags: 0x400 97 12:38:31,3447401 MCLauncher.exe 84 RegOpenKey HKLM\System\CurrentControlSet\Services\WinSock2\Parameters\Protocol_Catalog9\Catalog_Entries\000000000008 SUCCESS Desired Access: Read 97 12:38:31,3447481 MCLauncher.exe 84 RegQueryValue HKLM\System\CurrentControlSet\Services\WinSock2\Parameters\Protocol_Catalog9\Catalog_Entries\000000000008\PackedCatalogItem BUFFER OVERFLOW Length: 144 97 12:38:31,3447583 MCLauncher.exe 84 RegQueryValue HKLM\System\CurrentControlSet\Services\WinSock2\Parameters\Protocol_Catalog9\Catalog_Entries\000000000008\PackedCatalogItem SUCCESS Type: REG_BINARY, Length: 888, Data: 25 53 79 73 74 65 6D 52 6F 6F 74 25 5C 73 79 73 97 12:38:31,3447708 MCLauncher.exe 84 RegCloseKey HKLM\System\CurrentControlSet\Services\WinSock2\Parameters\Protocol_Catalog9\Catalog_Entries\000000000008 SUCCESS 97 12:38:31,3447783 MCLauncher.exe 84 RegQueryKey HKLM\System\CurrentControlSet\Services\WinSock2\Parameters\Protocol_Catalog9\Catalog_Entries SUCCESS Query: HandleTags, HandleTags: 0x400 97 12:38:31,3447838 MCLauncher.exe 84 RegOpenKey HKLM\System\CurrentControlSet\Services\WinSock2\Parameters\Protocol_Catalog9\Catalog_Entries\000000000009 SUCCESS Desired Access: Read 97 12:38:31,3447916 MCLauncher.exe 84 RegQueryValue HKLM\System\CurrentControlSet\Services\WinSock2\Parameters\Protocol_Catalog9\Catalog_Entries\000000000009\PackedCatalogItem BUFFER OVERFLOW Length: 144 97 12:38:31,3448162 MCLauncher.exe 84 RegQueryValue HKLM\System\CurrentControlSet\Services\WinSock2\Parameters\Protocol_Catalog9\Catalog_Entries\000000000009\PackedCatalogItem SUCCESS Type: REG_BINARY, Length: 888, Data: 25 53 79 73 74 65 6D 52 6F 6F 74 25 5C 73 79 73 97 12:38:31,3448373 MCLauncher.exe 84 RegCloseKey HKLM\System\CurrentControlSet\Services\WinSock2\Parameters\Protocol_Catalog9\Catalog_Entries\000000000009 SUCCESS 97 12:38:31,3448467 MCLauncher.exe 84 RegQueryKey HKLM\System\CurrentControlSet\Services\WinSock2\Parameters\Protocol_Catalog9\Catalog_Entries SUCCESS Query: HandleTags, HandleTags: 0x400 97 12:38:31,3448528 MCLauncher.exe 84 RegOpenKey HKLM\System\CurrentControlSet\Services\WinSock2\Parameters\Protocol_Catalog9\Catalog_Entries\000000000010 SUCCESS Desired Access: Read 97 12:38:31,3448614 MCLauncher.exe 84 RegQueryValue HKLM\System\CurrentControlSet\Services\WinSock2\Parameters\Protocol_Catalog9\Catalog_Entries\000000000010\PackedCatalogItem BUFFER OVERFLOW Length: 144 97 12:38:31,3448766 MCLauncher.exe 84 RegQueryValue HKLM\System\CurrentControlSet\Services\WinSock2\Parameters\Protocol_Catalog9\Catalog_Entries\000000000010\PackedCatalogItem SUCCESS Type: REG_BINARY, Length: 888, Data: 25 53 79 73 74 65 6D 52 6F 6F 74 25 5C 73 79 73 97 12:38:31,3449016 MCLauncher.exe 84 RegCloseKey HKLM\System\CurrentControlSet\Services\WinSock2\Parameters\Protocol_Catalog9\Catalog_Entries\000000000010 SUCCESS 97 12:38:31,3449093 MCLauncher.exe 84 RegQueryKey HKLM\System\CurrentControlSet\Services\WinSock2\Parameters\Protocol_Catalog9\Catalog_Entries SUCCESS Query: HandleTags, HandleTags: 0x400 97 12:38:31,3449152 MCLauncher.exe 84 RegOpenKey HKLM\System\CurrentControlSet\Services\WinSock2\Parameters\Protocol_Catalog9\Catalog_Entries\000000000011 SUCCESS Desired Access: Read 97 12:38:31,3449235 MCLauncher.exe 84 RegQueryValue HKLM\System\CurrentControlSet\Services\WinSock2\Parameters\Protocol_Catalog9\Catalog_Entries\000000000011\PackedCatalogItem BUFFER OVERFLOW Length: 144 97 12:38:31,3449340 MCLauncher.exe 84 RegQueryValue HKLM\System\CurrentControlSet\Services\WinSock2\Parameters\Protocol_Catalog9\Catalog_Entries\000000000011\PackedCatalogItem SUCCESS Type: REG_BINARY, Length: 888, Data: 25 53 79 73 74 65 6D 52 6F 6F 74 25 5C 73 79 73 97 12:38:31,3449465 MCLauncher.exe 84 RegCloseKey HKLM\System\CurrentControlSet\Services\WinSock2\Parameters\Protocol_Catalog9\Catalog_Entries\000000000011 SUCCESS 97 12:38:31,3449537 MCLauncher.exe 84 RegQueryKey HKLM\System\CurrentControlSet\Services\WinSock2\Parameters\Protocol_Catalog9\Catalog_Entries SUCCESS Query: HandleTags, HandleTags: 0x400 97 12:38:31,3449595 MCLauncher.exe 84 RegOpenKey HKLM\System\CurrentControlSet\Services\WinSock2\Parameters\Protocol_Catalog9\Catalog_Entries\000000000012 SUCCESS Desired Access: Read 97 12:38:31,3449675 MCLauncher.exe 84 RegQueryValue HKLM\System\CurrentControlSet\Services\WinSock2\Parameters\Protocol_Catalog9\Catalog_Entries\000000000012\PackedCatalogItem BUFFER OVERFLOW Length: 144 97 12:38:31,3449778 MCLauncher.exe 84 RegQueryValue HKLM\System\CurrentControlSet\Services\WinSock2\Parameters\Protocol_Catalog9\Catalog_Entries\000000000012\PackedCatalogItem SUCCESS Type: REG_BINARY, Length: 888, Data: 25 53 79 73 74 65 6D 52 6F 6F 74 25 5C 73 79 73 97 12:38:31,3449902 MCLauncher.exe 84 RegCloseKey HKLM\System\CurrentControlSet\Services\WinSock2\Parameters\Protocol_Catalog9\Catalog_Entries\000000000012 SUCCESS 97 12:38:31,3449944 MCLauncher.exe 84 RegCloseKey HKLM\System\CurrentControlSet\Services\WinSock2\Parameters\Protocol_Catalog9\Catalog_Entries SUCCESS 97 12:38:31,3450091 MCLauncher.exe 84 RegQueryKey HKLM\System\CurrentControlSet\Services\WinSock2\Parameters SUCCESS Query: HandleTags, HandleTags: 0x400 97 12:38:31,3450149 MCLauncher.exe 84 RegOpenKey HKLM\System\CurrentControlSet\Services\WinSock2\Parameters\NameSpace_Catalog5 SUCCESS Desired Access: Maximum Allowed, Granted Access: Read 97 12:38:31,3450235 MCLauncher.exe 84 RegQueryValue HKLM\System\CurrentControlSet\Services\WinSock2\Parameters\NameSpace_Catalog5\Serial_Access_Num SUCCESS Type: REG_DWORD, Length: 4, Data: 20 97 12:38:31,3450506 MCLauncher.exe 84 RegQueryValue HKLM\System\CurrentControlSet\Services\WinSock2\Parameters\NameSpace_Catalog5\Serial_Access_Num SUCCESS Type: REG_DWORD, Length: 4, Data: 20 97 12:38:31,3450661 MCLauncher.exe 84 RegQueryKey HKLM\System\CurrentControlSet\Services\WinSock2\Parameters\NameSpace_Catalog5 SUCCESS Query: HandleTags, HandleTags: 0x400 97 12:38:31,3450720 MCLauncher.exe 84 RegOpenKey HKLM\System\CurrentControlSet\Services\WinSock2\Parameters\NameSpace_Catalog5\00000014 NAME NOT FOUND Desired Access: Read 97 12:38:31,3450803 MCLauncher.exe 84 RegQueryValue HKLM\System\CurrentControlSet\Services\WinSock2\Parameters\NameSpace_Catalog5\Num_Catalog_Entries SUCCESS Type: REG_DWORD, Length: 4, Data: 6 97 12:38:31,3450947 MCLauncher.exe 84 RegQueryKey HKLM\System\CurrentControlSet\Services\WinSock2\Parameters\NameSpace_Catalog5 SUCCESS Query: HandleTags, HandleTags: 0x400 97 12:38:31,3451002 MCLauncher.exe 84 RegOpenKey HKLM\System\CurrentControlSet\Services\WinSock2\Parameters\NameSpace_Catalog5\Catalog_Entries SUCCESS Desired Access: Maximum Allowed, Granted Access: Read 97 12:38:31,3451105 MCLauncher.exe 84 RegQueryKey HKLM\System\CurrentControlSet\Services\WinSock2\Parameters\NameSpace_Catalog5\Catalog_Entries SUCCESS Query: HandleTags, HandleTags: 0x400 97 12:38:31,3451155 MCLauncher.exe 84 RegOpenKey HKLM\System\CurrentControlSet\Services\WinSock2\Parameters\NameSpace_Catalog5\Catalog_Entries\000000000001 SUCCESS Desired Access: Read 97 12:38:31,3451238 MCLauncher.exe 84 RegQueryValue HKLM\System\CurrentControlSet\Services\WinSock2\Parameters\NameSpace_Catalog5\Catalog_Entries\000000000001\LibraryPath SUCCESS Type: REG_SZ, Length: 68, Data: %SystemRoot%\system32\napinsp.dll 97 12:38:31,3451365 MCLauncher.exe 84 RegQueryValue HKLM\System\CurrentControlSet\Services\WinSock2\Parameters\NameSpace_Catalog5\Catalog_Entries\000000000001\LibraryPath SUCCESS Type: REG_SZ, Length: 68, Data: %SystemRoot%\system32\napinsp.dll 97 12:38:31,3451495 MCLauncher.exe 84 RegQueryValue HKLM\System\CurrentControlSet\Services\WinSock2\Parameters\NameSpace_Catalog5\Catalog_Entries\000000000001\DisplayString SUCCESS Type: REG_SZ, Length: 82, Data: @%SystemRoot%\system32\napinsp.dll,-1000 97 12:38:31,3451623 MCLauncher.exe 84 RegQueryValue HKLM\System\CurrentControlSet\Services\WinSock2\Parameters\NameSpace_Catalog5\Catalog_Entries\000000000001\DisplayString SUCCESS Type: REG_SZ, Length: 82, Data: @%SystemRoot%\system32\napinsp.dll,-1000 97 12:38:31,3451748 MCLauncher.exe 84 RegQueryValue HKLM\System\CurrentControlSet\Services\WinSock2\Parameters\NameSpace_Catalog5\Catalog_Entries\000000000001\DisplayString SUCCESS Type: REG_SZ, Length: 82, Data: @%SystemRoot%\system32\napinsp.dll,-1000 97 12:38:31,3451867 MCLauncher.exe 84 RegQueryValue HKLM\System\CurrentControlSet\Services\WinSock2\Parameters\NameSpace_Catalog5\Catalog_Entries\000000000001\DisplayString SUCCESS Type: REG_SZ, Length: 82, Data: @%SystemRoot%\system32\napinsp.dll,-1000 97 12:38:31,3451994 MCLauncher.exe 84 RegQueryValue HKLM\System\CurrentControlSet\Services\WinSock2\Parameters\NameSpace_Catalog5\Catalog_Entries\000000000001\ProviderId SUCCESS Type: REG_BINARY, Length: 16, Data: A2 CB 4A 96 BC B2 EB 40 8C 6A A6 DB 40 16 1C AE 97 12:38:31,3452122 MCLauncher.exe 84 RegQueryValue HKLM\System\CurrentControlSet\Services\WinSock2\Parameters\NameSpace_Catalog5\Catalog_Entries\000000000001\AddressFamily NAME NOT FOUND Length: 144 97 12:38:31,3452232 MCLauncher.exe 84 RegQueryValue HKLM\System\CurrentControlSet\Services\WinSock2\Parameters\NameSpace_Catalog5\Catalog_Entries\000000000001\SupportedNameSpace SUCCESS Type: REG_DWORD, Length: 4, Data: 37 97 12:38:31,3452354 MCLauncher.exe 84 RegQueryValue HKLM\System\CurrentControlSet\Services\WinSock2\Parameters\NameSpace_Catalog5\Catalog_Entries\000000000001\Enabled SUCCESS Type: REG_DWORD, Length: 4, Data: 1 97 12:38:31,3452476 MCLauncher.exe 84 RegQueryValue HKLM\System\CurrentControlSet\Services\WinSock2\Parameters\NameSpace_Catalog5\Catalog_Entries\000000000001\Version SUCCESS Type: REG_DWORD, Length: 4, Data: 0 97 12:38:31,3452604 MCLauncher.exe 84 RegQueryValue HKLM\System\CurrentControlSet\Services\WinSock2\Parameters\NameSpace_Catalog5\Catalog_Entries\000000000001\StoresServiceClassInfo SUCCESS Type: REG_DWORD, Length: 4, Data: 0 97 12:38:31,3452728 MCLauncher.exe 84 RegQueryValue HKLM\System\CurrentControlSet\Services\WinSock2\Parameters\NameSpace_Catalog5\Catalog_Entries\000000000001\ProviderInfo SUCCESS Type: REG_BINARY, Length: 0 97 12:38:31,3452853 MCLauncher.exe 84 RegQueryValue HKLM\System\CurrentControlSet\Services\WinSock2\Parameters\NameSpace_Catalog5\Catalog_Entries\000000000001\ProviderInfo SUCCESS Type: REG_BINARY, Length: 0 97 12:38:31,3455031 MCLauncher.exe 84 RegCloseKey HKLM\System\CurrentControlSet\Services\WinSock2\Parameters\NameSpace_Catalog5\Catalog_Entries\000000000001 SUCCESS 97 12:38:31,3455147 MCLauncher.exe 84 RegQueryKey HKLM\System\CurrentControlSet\Services\WinSock2\Parameters\NameSpace_Catalog5\Catalog_Entries SUCCESS Query: HandleTags, HandleTags: 0x400 97 12:38:31,3455219 MCLauncher.exe 84 RegOpenKey HKLM\System\CurrentControlSet\Services\WinSock2\Parameters\NameSpace_Catalog5\Catalog_Entries\000000000002 SUCCESS Desired Access: Read 97 12:38:31,3455327 MCLauncher.exe 84 RegQueryValue HKLM\System\CurrentControlSet\Services\WinSock2\Parameters\NameSpace_Catalog5\Catalog_Entries\000000000002\LibraryPath SUCCESS Type: REG_SZ, Length: 68, Data: %SystemRoot%\system32\pnrpnsp.dll 97 12:38:31,3455466 MCLauncher.exe 84 RegQueryValue HKLM\System\CurrentControlSet\Services\WinSock2\Parameters\NameSpace_Catalog5\Catalog_Entries\000000000002\LibraryPath SUCCESS Type: REG_SZ, Length: 68, Data: %SystemRoot%\system32\pnrpnsp.dll 97 12:38:31,3455596 MCLauncher.exe 84 RegQueryValue HKLM\System\CurrentControlSet\Services\WinSock2\Parameters\NameSpace_Catalog5\Catalog_Entries\000000000002\DisplayString SUCCESS Type: REG_SZ, Length: 82, Data: @%SystemRoot%\system32\pnrpnsp.dll,-1000 97 12:38:31,3455715 MCLauncher.exe 84 RegQueryValue HKLM\System\CurrentControlSet\Services\WinSock2\Parameters\NameSpace_Catalog5\Catalog_Entries\000000000002\DisplayString SUCCESS Type: REG_SZ, Length: 82, Data: @%SystemRoot%\system32\pnrpnsp.dll,-1000 97 12:38:31,3455840 MCLauncher.exe 84 RegQueryValue HKLM\System\CurrentControlSet\Services\WinSock2\Parameters\NameSpace_Catalog5\Catalog_Entries\000000000002\DisplayString SUCCESS Type: REG_SZ, Length: 82, Data: @%SystemRoot%\system32\pnrpnsp.dll,-1000 97 12:38:31,3455962 MCLauncher.exe 84 RegQueryValue HKLM\System\CurrentControlSet\Services\WinSock2\Parameters\NameSpace_Catalog5\Catalog_Entries\000000000002\DisplayString SUCCESS Type: REG_SZ, Length: 82, Data: @%SystemRoot%\system32\pnrpnsp.dll,-1000 97 12:38:31,3456086 MCLauncher.exe 84 RegQueryValue HKLM\System\CurrentControlSet\Services\WinSock2\Parameters\NameSpace_Catalog5\Catalog_Entries\000000000002\ProviderId SUCCESS Type: REG_BINARY, Length: 16, Data: CE 89 FE 03 6D 76 76 49 B9 C1 BB 9B C4 2C 7B 4D 97 12:38:31,3456208 MCLauncher.exe 84 RegQueryValue HKLM\System\CurrentControlSet\Services\WinSock2\Parameters\NameSpace_Catalog5\Catalog_Entries\000000000002\AddressFamily NAME NOT FOUND Length: 144 97 12:38:31,3456319 MCLauncher.exe 84 RegQueryValue HKLM\System\CurrentControlSet\Services\WinSock2\Parameters\NameSpace_Catalog5\Catalog_Entries\000000000002\SupportedNameSpace SUCCESS Type: REG_DWORD, Length: 4, Data: 39 97 12:38:31,3456441 MCLauncher.exe 84 RegQueryValue HKLM\System\CurrentControlSet\Services\WinSock2\Parameters\NameSpace_Catalog5\Catalog_Entries\000000000002\Enabled SUCCESS Type: REG_DWORD, Length: 4, Data: 1 97 12:38:31,3456560 MCLauncher.exe 84 RegQueryValue HKLM\System\CurrentControlSet\Services\WinSock2\Parameters\NameSpace_Catalog5\Catalog_Entries\000000000002\Version SUCCESS Type: REG_DWORD, Length: 4, Data: 0 97 12:38:31,3456682 MCLauncher.exe 84 RegQueryValue HKLM\System\CurrentControlSet\Services\WinSock2\Parameters\NameSpace_Catalog5\Catalog_Entries\000000000002\StoresServiceClassInfo SUCCESS Type: REG_DWORD, Length: 4, Data: 0 97 12:38:31,3456804 MCLauncher.exe 84 RegQueryValue HKLM\System\CurrentControlSet\Services\WinSock2\Parameters\NameSpace_Catalog5\Catalog_Entries\000000000002\ProviderInfo SUCCESS Type: REG_BINARY, Length: 0 97 12:38:31,3456942 MCLauncher.exe 84 RegQueryValue HKLM\System\CurrentControlSet\Services\WinSock2\Parameters\NameSpace_Catalog5\Catalog_Entries\000000000002\ProviderInfo SUCCESS Type: REG_BINARY, Length: 0 97 12:38:31,3457075 MCLauncher.exe 84 RegCloseKey HKLM\System\CurrentControlSet\Services\WinSock2\Parameters\NameSpace_Catalog5\Catalog_Entries\000000000002 SUCCESS 97 12:38:31,3457158 MCLauncher.exe 84 RegQueryKey HKLM\System\CurrentControlSet\Services\WinSock2\Parameters\NameSpace_Catalog5\Catalog_Entries SUCCESS Query: HandleTags, HandleTags: 0x400 97 12:38:31,3457219 MCLauncher.exe 84 RegOpenKey HKLM\System\CurrentControlSet\Services\WinSock2\Parameters\NameSpace_Catalog5\Catalog_Entries\000000000003 SUCCESS Desired Access: Read 97 12:38:31,3457300 MCLauncher.exe 84 RegQueryValue HKLM\System\CurrentControlSet\Services\WinSock2\Parameters\NameSpace_Catalog5\Catalog_Entries\000000000003\LibraryPath SUCCESS Type: REG_SZ, Length: 68, Data: %SystemRoot%\system32\pnrpnsp.dll 97 12:38:31,3457427 MCLauncher.exe 84 RegQueryValue HKLM\System\CurrentControlSet\Services\WinSock2\Parameters\NameSpace_Catalog5\Catalog_Entries\000000000003\LibraryPath SUCCESS Type: REG_SZ, Length: 68, Data: %SystemRoot%\system32\pnrpnsp.dll 97 12:38:31,3457552 MCLauncher.exe 84 RegQueryValue HKLM\System\CurrentControlSet\Services\WinSock2\Parameters\NameSpace_Catalog5\Catalog_Entries\000000000003\DisplayString SUCCESS Type: REG_SZ, Length: 82, Data: @%SystemRoot%\system32\pnrpnsp.dll,-1001 97 12:38:31,3457973 MCLauncher.exe 84 RegQueryValue HKLM\System\CurrentControlSet\Services\WinSock2\Parameters\NameSpace_Catalog5\Catalog_Entries\000000000003\DisplayString SUCCESS Type: REG_SZ, Length: 82, Data: @%SystemRoot%\system32\pnrpnsp.dll,-1001 97 12:38:31,3458120 MCLauncher.exe 84 RegQueryValue HKLM\System\CurrentControlSet\Services\WinSock2\Parameters\NameSpace_Catalog5\Catalog_Entries\000000000003\DisplayString SUCCESS Type: REG_SZ, Length: 82, Data: @%SystemRoot%\system32\pnrpnsp.dll,-1001 97 12:38:31,3458242 MCLauncher.exe 84 RegQueryValue HKLM\System\CurrentControlSet\Services\WinSock2\Parameters\NameSpace_Catalog5\Catalog_Entries\000000000003\DisplayString SUCCESS Type: REG_SZ, Length: 82, Data: @%SystemRoot%\system32\pnrpnsp.dll,-1001 97 12:38:31,3458366 MCLauncher.exe 84 RegQueryValue HKLM\System\CurrentControlSet\Services\WinSock2\Parameters\NameSpace_Catalog5\Catalog_Entries\000000000003\ProviderId SUCCESS Type: REG_BINARY, Length: 16, Data: CD 89 FE 03 6D 76 76 49 B9 C1 BB 9B C4 2C 7B 4D 97 12:38:31,3458491 MCLauncher.exe 84 RegQueryValue HKLM\System\CurrentControlSet\Services\WinSock2\Parameters\NameSpace_Catalog5\Catalog_Entries\000000000003\AddressFamily NAME NOT FOUND Length: 144 97 12:38:31,3458599 MCLauncher.exe 84 RegQueryValue HKLM\System\CurrentControlSet\Services\WinSock2\Parameters\NameSpace_Catalog5\Catalog_Entries\000000000003\SupportedNameSpace SUCCESS Type: REG_DWORD, Length: 4, Data: 38 97 12:38:31,3458721 MCLauncher.exe 84 RegQueryValue HKLM\System\CurrentControlSet\Services\WinSock2\Parameters\NameSpace_Catalog5\Catalog_Entries\000000000003\Enabled SUCCESS Type: REG_DWORD, Length: 4, Data: 1 97 12:38:31,3458843 MCLauncher.exe 84 RegQueryValue HKLM\System\CurrentControlSet\Services\WinSock2\Parameters\NameSpace_Catalog5\Catalog_Entries\000000000003\Version SUCCESS Type: REG_DWORD, Length: 4, Data: 0 97 12:38:31,3458962 MCLauncher.exe 84 RegQueryValue HKLM\System\CurrentControlSet\Services\WinSock2\Parameters\NameSpace_Catalog5\Catalog_Entries\000000000003\StoresServiceClassInfo SUCCESS Type: REG_DWORD, Length: 4, Data: 0 97 12:38:31,3459081 MCLauncher.exe 84 RegQueryValue HKLM\System\CurrentControlSet\Services\WinSock2\Parameters\NameSpace_Catalog5\Catalog_Entries\000000000003\ProviderInfo SUCCESS Type: REG_BINARY, Length: 0 97 12:38:31,3459206 MCLauncher.exe 84 RegQueryValue HKLM\System\CurrentControlSet\Services\WinSock2\Parameters\NameSpace_Catalog5\Catalog_Entries\000000000003\ProviderInfo SUCCESS Type: REG_BINARY, Length: 0 97 12:38:31,3459336 MCLauncher.exe 84 RegCloseKey HKLM\System\CurrentControlSet\Services\WinSock2\Parameters\NameSpace_Catalog5\Catalog_Entries\000000000003 SUCCESS 97 12:38:31,3459416 MCLauncher.exe 84 RegQueryKey HKLM\System\CurrentControlSet\Services\WinSock2\Parameters\NameSpace_Catalog5\Catalog_Entries SUCCESS Query: HandleTags, HandleTags: 0x400 97 12:38:31,3459477 MCLauncher.exe 84 RegOpenKey HKLM\System\CurrentControlSet\Services\WinSock2\Parameters\NameSpace_Catalog5\Catalog_Entries\000000000004 SUCCESS Desired Access: Read 97 12:38:31,3459561 MCLauncher.exe 84 RegQueryValue HKLM\System\CurrentControlSet\Services\WinSock2\Parameters\NameSpace_Catalog5\Catalog_Entries\000000000004\LibraryPath SUCCESS Type: REG_SZ, Length: 66, Data: %SystemRoot%\system32\NLAapi.dll 97 12:38:31,3459688 MCLauncher.exe 84 RegQueryValue HKLM\System\CurrentControlSet\Services\WinSock2\Parameters\NameSpace_Catalog5\Catalog_Entries\000000000004\LibraryPath SUCCESS Type: REG_SZ, Length: 66, Data: %SystemRoot%\system32\NLAapi.dll 97 12:38:31,3459813 MCLauncher.exe 84 RegQueryValue HKLM\System\CurrentControlSet\Services\WinSock2\Parameters\NameSpace_Catalog5\Catalog_Entries\000000000004\DisplayString SUCCESS Type: REG_SZ, Length: 80, Data: @%SystemRoot%\system32\nlasvc.dll,-1000 97 12:38:31,3459935 MCLauncher.exe 84 RegQueryValue HKLM\System\CurrentControlSet\Services\WinSock2\Parameters\NameSpace_Catalog5\Catalog_Entries\000000000004\DisplayString SUCCESS Type: REG_SZ, Length: 80, Data: @%SystemRoot%\system32\nlasvc.dll,-1000 97 12:38:31,3460056 MCLauncher.exe 84 RegQueryValue HKLM\System\CurrentControlSet\Services\WinSock2\Parameters\NameSpace_Catalog5\Catalog_Entries\000000000004\DisplayString SUCCESS Type: REG_SZ, Length: 80, Data: @%SystemRoot%\system32\nlasvc.dll,-1000 97 12:38:31,3460176 MCLauncher.exe 84 RegQueryValue HKLM\System\CurrentControlSet\Services\WinSock2\Parameters\NameSpace_Catalog5\Catalog_Entries\000000000004\DisplayString SUCCESS Type: REG_SZ, Length: 80, Data: @%SystemRoot%\system32\nlasvc.dll,-1000 97 12:38:31,3460297 MCLauncher.exe 84 RegQueryValue HKLM\System\CurrentControlSet\Services\WinSock2\Parameters\NameSpace_Catalog5\Catalog_Entries\000000000004\ProviderId SUCCESS Type: REG_BINARY, Length: 16, Data: 3A 24 42 66 A8 3B A6 4A BA A5 2E 0B D7 1F DD 83 97 12:38:31,3460419 MCLauncher.exe 84 RegQueryValue HKLM\System\CurrentControlSet\Services\WinSock2\Parameters\NameSpace_Catalog5\Catalog_Entries\000000000004\AddressFamily NAME NOT FOUND Length: 144 97 12:38:31,3460525 MCLauncher.exe 84 RegQueryValue HKLM\System\CurrentControlSet\Services\WinSock2\Parameters\NameSpace_Catalog5\Catalog_Entries\000000000004\SupportedNameSpace SUCCESS Type: REG_DWORD, Length: 4, Data: 15 97 12:38:31,3460641 MCLauncher.exe 84 RegQueryValue HKLM\System\CurrentControlSet\Services\WinSock2\Parameters\NameSpace_Catalog5\Catalog_Entries\000000000004\Enabled SUCCESS Type: REG_DWORD, Length: 4, Data: 1 97 12:38:31,3460760 MCLauncher.exe 84 RegQueryValue HKLM\System\CurrentControlSet\Services\WinSock2\Parameters\NameSpace_Catalog5\Catalog_Entries\000000000004\Version SUCCESS Type: REG_DWORD, Length: 4, Data: 0 97 12:38:31,3460882 MCLauncher.exe 84 RegQueryValue HKLM\System\CurrentControlSet\Services\WinSock2\Parameters\NameSpace_Catalog5\Catalog_Entries\000000000004\StoresServiceClassInfo SUCCESS Type: REG_DWORD, Length: 4, Data: 0 97 12:38:31,3461001 MCLauncher.exe 84 RegQueryValue HKLM\System\CurrentControlSet\Services\WinSock2\Parameters\NameSpace_Catalog5\Catalog_Entries\000000000004\ProviderInfo SUCCESS Type: REG_BINARY, Length: 0 97 12:38:31,3461123 MCLauncher.exe 84 RegQueryValue HKLM\System\CurrentControlSet\Services\WinSock2\Parameters\NameSpace_Catalog5\Catalog_Entries\000000000004\ProviderInfo SUCCESS Type: REG_BINARY, Length: 0 97 12:38:31,3461251 MCLauncher.exe 84 RegCloseKey HKLM\System\CurrentControlSet\Services\WinSock2\Parameters\NameSpace_Catalog5\Catalog_Entries\000000000004 SUCCESS 97 12:38:31,3461375 MCLauncher.exe 84 RegQueryKey HKLM\System\CurrentControlSet\Services\WinSock2\Parameters\NameSpace_Catalog5\Catalog_Entries SUCCESS Query: HandleTags, HandleTags: 0x400 97 12:38:31,3461436 MCLauncher.exe 84 RegOpenKey HKLM\System\CurrentControlSet\Services\WinSock2\Parameters\NameSpace_Catalog5\Catalog_Entries\000000000005 SUCCESS Desired Access: Read 97 12:38:31,3461517 MCLauncher.exe 84 RegQueryValue HKLM\System\CurrentControlSet\Services\WinSock2\Parameters\NameSpace_Catalog5\Catalog_Entries\000000000005\LibraryPath SUCCESS Type: REG_SZ, Length: 68, Data: %SystemRoot%\System32\mswsock.dll 97 12:38:31,3461641 MCLauncher.exe 84 RegQueryValue HKLM\System\CurrentControlSet\Services\WinSock2\Parameters\NameSpace_Catalog5\Catalog_Entries\000000000005\LibraryPath SUCCESS Type: REG_SZ, Length: 68, Data: %SystemRoot%\System32\mswsock.dll 97 12:38:31,3461769 MCLauncher.exe 84 RegQueryValue HKLM\System\CurrentControlSet\Services\WinSock2\Parameters\NameSpace_Catalog5\Catalog_Entries\000000000005\DisplayString SUCCESS Type: REG_SZ, Length: 86, Data: @%SystemRoot%\system32\wshtcpip.dll,-60103 97 12:38:31,3461891 MCLauncher.exe 84 RegQueryValue HKLM\System\CurrentControlSet\Services\WinSock2\Parameters\NameSpace_Catalog5\Catalog_Entries\000000000005\DisplayString SUCCESS Type: REG_SZ, Length: 86, Data: @%SystemRoot%\system32\wshtcpip.dll,-60103 97 12:38:31,3462018 MCLauncher.exe 84 RegQueryValue HKLM\System\CurrentControlSet\Services\WinSock2\Parameters\NameSpace_Catalog5\Catalog_Entries\000000000005\DisplayString SUCCESS Type: REG_SZ, Length: 86, Data: @%SystemRoot%\system32\wshtcpip.dll,-60103 97 12:38:31,3462137 MCLauncher.exe 84 RegQueryValue HKLM\System\CurrentControlSet\Services\WinSock2\Parameters\NameSpace_Catalog5\Catalog_Entries\000000000005\DisplayString SUCCESS Type: REG_SZ, Length: 86, Data: @%SystemRoot%\system32\wshtcpip.dll,-60103 97 12:38:31,3462262 MCLauncher.exe 84 RegQueryValue HKLM\System\CurrentControlSet\Services\WinSock2\Parameters\NameSpace_Catalog5\Catalog_Entries\000000000005\ProviderId SUCCESS Type: REG_BINARY, Length: 16, Data: 40 9D 05 22 9E 7E CF 11 AE 5A 00 AA 00 A7 11 2B 97 12:38:31,3462381 MCLauncher.exe 84 RegQueryValue HKLM\System\CurrentControlSet\Services\WinSock2\Parameters\NameSpace_Catalog5\Catalog_Entries\000000000005\AddressFamily NAME NOT FOUND Length: 144 97 12:38:31,3462489 MCLauncher.exe 84 RegQueryValue HKLM\System\CurrentControlSet\Services\WinSock2\Parameters\NameSpace_Catalog5\Catalog_Entries\000000000005\SupportedNameSpace SUCCESS Type: REG_DWORD, Length: 4, Data: 12 97 12:38:31,3462605 MCLauncher.exe 84 RegQueryValue HKLM\System\CurrentControlSet\Services\WinSock2\Parameters\NameSpace_Catalog5\Catalog_Entries\000000000005\Enabled SUCCESS Type: REG_DWORD, Length: 4, Data: 1 97 12:38:31,3462724 MCLauncher.exe 84 RegQueryValue HKLM\System\CurrentControlSet\Services\WinSock2\Parameters\NameSpace_Catalog5\Catalog_Entries\000000000005\Version SUCCESS Type: REG_DWORD, Length: 4, Data: 0 97 12:38:31,3462846 MCLauncher.exe 84 RegQueryValue HKLM\System\CurrentControlSet\Services\WinSock2\Parameters\NameSpace_Catalog5\Catalog_Entries\000000000005\StoresServiceClassInfo SUCCESS Type: REG_DWORD, Length: 4, Data: 0 97 12:38:31,3462968 MCLauncher.exe 84 RegQueryValue HKLM\System\CurrentControlSet\Services\WinSock2\Parameters\NameSpace_Catalog5\Catalog_Entries\000000000005\ProviderInfo SUCCESS Type: REG_BINARY, Length: 0 97 12:38:31,3463087 MCLauncher.exe 84 RegQueryValue HKLM\System\CurrentControlSet\Services\WinSock2\Parameters\NameSpace_Catalog5\Catalog_Entries\000000000005\ProviderInfo SUCCESS Type: REG_BINARY, Length: 0 97 12:38:31,3463215 MCLauncher.exe 84 RegCloseKey HKLM\System\CurrentControlSet\Services\WinSock2\Parameters\NameSpace_Catalog5\Catalog_Entries\000000000005 SUCCESS 97 12:38:31,3463290 MCLauncher.exe 84 RegQueryKey HKLM\System\CurrentControlSet\Services\WinSock2\Parameters\NameSpace_Catalog5\Catalog_Entries SUCCESS Query: HandleTags, HandleTags: 0x400 97 12:38:31,3463351 MCLauncher.exe 84 RegOpenKey HKLM\System\CurrentControlSet\Services\WinSock2\Parameters\NameSpace_Catalog5\Catalog_Entries\000000000006 SUCCESS Desired Access: Read 97 12:38:31,3463434 MCLauncher.exe 84 RegQueryValue HKLM\System\CurrentControlSet\Services\WinSock2\Parameters\NameSpace_Catalog5\Catalog_Entries\000000000006\LibraryPath SUCCESS Type: REG_SZ, Length: 66, Data: %SystemRoot%\System32\winrnr.dll 97 12:38:31,3463567 MCLauncher.exe 84 RegQueryValue HKLM\System\CurrentControlSet\Services\WinSock2\Parameters\NameSpace_Catalog5\Catalog_Entries\000000000006\LibraryPath SUCCESS Type: REG_SZ, Length: 66, Data: %SystemRoot%\System32\winrnr.dll 97 12:38:31,3463691 MCLauncher.exe 84 RegQueryValue HKLM\System\CurrentControlSet\Services\WinSock2\Parameters\NameSpace_Catalog5\Catalog_Entries\000000000006\DisplayString SUCCESS Type: REG_SZ, Length: 80, Data: @%SystemRoot%\System32\winrnr.dll,-1000 97 12:38:31,3463816 MCLauncher.exe 84 RegQueryValue HKLM\System\CurrentControlSet\Services\WinSock2\Parameters\NameSpace_Catalog5\Catalog_Entries\000000000006\DisplayString SUCCESS Type: REG_SZ, Length: 80, Data: @%SystemRoot%\System32\winrnr.dll,-1000 97 12:38:31,3463941 MCLauncher.exe 84 RegQueryValue HKLM\System\CurrentControlSet\Services\WinSock2\Parameters\NameSpace_Catalog5\Catalog_Entries\000000000006\DisplayString SUCCESS Type: REG_SZ, Length: 80, Data: @%SystemRoot%\System32\winrnr.dll,-1000 97 12:38:31,3464063 MCLauncher.exe 84 RegQueryValue HKLM\System\CurrentControlSet\Services\WinSock2\Parameters\NameSpace_Catalog5\Catalog_Entries\000000000006\DisplayString SUCCESS Type: REG_SZ, Length: 80, Data: @%SystemRoot%\System32\winrnr.dll,-1000 97 12:38:31,3464185 MCLauncher.exe 84 RegQueryValue HKLM\System\CurrentControlSet\Services\WinSock2\Parameters\NameSpace_Catalog5\Catalog_Entries\000000000006\ProviderId SUCCESS Type: REG_BINARY, Length: 16, Data: EE 37 26 3B 80 E5 CF 11 A5 55 00 C0 4F D8 D4 AC 97 12:38:31,3464306 MCLauncher.exe 84 RegQueryValue HKLM\System\CurrentControlSet\Services\WinSock2\Parameters\NameSpace_Catalog5\Catalog_Entries\000000000006\AddressFamily NAME NOT FOUND Length: 144 97 12:38:31,3464417 MCLauncher.exe 84 RegQueryValue HKLM\System\CurrentControlSet\Services\WinSock2\Parameters\NameSpace_Catalog5\Catalog_Entries\000000000006\SupportedNameSpace SUCCESS Type: REG_DWORD, Length: 4, Data: 32 97 12:38:31,3464536 MCLauncher.exe 84 RegQueryValue HKLM\System\CurrentControlSet\Services\WinSock2\Parameters\NameSpace_Catalog5\Catalog_Entries\000000000006\Enabled SUCCESS Type: REG_DWORD, Length: 4, Data: 1 97 12:38:31,3464656 MCLauncher.exe 84 RegQueryValue HKLM\System\CurrentControlSet\Services\WinSock2\Parameters\NameSpace_Catalog5\Catalog_Entries\000000000006\Version SUCCESS Type: REG_DWORD, Length: 4, Data: 0 97 12:38:31,3464775 MCLauncher.exe 84 RegQueryValue HKLM\System\CurrentControlSet\Services\WinSock2\Parameters\NameSpace_Catalog5\Catalog_Entries\000000000006\StoresServiceClassInfo SUCCESS Type: REG_DWORD, Length: 4, Data: 0 97 12:38:31,3464897 MCLauncher.exe 84 RegQueryValue HKLM\System\CurrentControlSet\Services\WinSock2\Parameters\NameSpace_Catalog5\Catalog_Entries\000000000006\ProviderInfo SUCCESS Type: REG_BINARY, Length: 0 97 12:38:31,3465016 MCLauncher.exe 84 RegQueryValue HKLM\System\CurrentControlSet\Services\WinSock2\Parameters\NameSpace_Catalog5\Catalog_Entries\000000000006\ProviderInfo SUCCESS Type: REG_BINARY, Length: 0 97 12:38:31,3465140 MCLauncher.exe 84 RegCloseKey HKLM\System\CurrentControlSet\Services\WinSock2\Parameters\NameSpace_Catalog5\Catalog_Entries\000000000006 SUCCESS 97 12:38:31,3465182 MCLauncher.exe 84 RegCloseKey HKLM\System\CurrentControlSet\Services\WinSock2\Parameters\NameSpace_Catalog5\Catalog_Entries SUCCESS 97 12:38:31,3465232 MCLauncher.exe 84 RegCloseKey HKLM\System\CurrentControlSet\Services\WinSock2\Parameters SUCCESS 97 12:38:31,3465345 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:31,3465395 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: Name 97 12:38:31,3465476 MCLauncher.exe 84 RegOpenKey HKLM\System\CurrentControlSet\Services\Winsock2\Parameters REPARSE Desired Access: Query Value 97 12:38:31,3465553 MCLauncher.exe 84 RegOpenKey HKLM\System\CurrentControlSet\Services\Winsock2\Parameters SUCCESS Desired Access: Query Value 97 12:38:31,3465625 MCLauncher.exe 84 RegSetInfoKey HKLM\System\CurrentControlSet\Services\WinSock2\Parameters SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 97 12:38:31,3465672 MCLauncher.exe 84 RegQueryValue HKLM\System\CurrentControlSet\Services\WinSock2\Parameters\Ws2_32NumHandleBuckets NAME NOT FOUND Length: 144 97 12:38:31,3465794 MCLauncher.exe 84 RegCloseKey HKLM\System\CurrentControlSet\Services\WinSock2\Parameters SUCCESS 97 12:38:31,3467493 MCLauncher.exe 84 RegQueryKey HKCU SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:31,3467556 MCLauncher.exe 84 RegQueryKey HKCU SUCCESS Query: Name 97 12:38:31,3467656 MCLauncher.exe 84 RegOpenKey HKCU\Software\Python\PythonCore\MCLauncher\Modules\functools NAME NOT FOUND Desired Access: Query Value 97 12:38:31,3467775 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:31,3467820 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: Name 97 12:38:31,3467905 MCLauncher.exe 84 RegOpenKey HKLM\Software\WOW6432Node\Python\PythonCore\MCLauncher\Modules\functools NAME NOT FOUND Desired Access: Query Value 97 12:38:31,3469221 MCLauncher.exe 84 CreateFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Desired Access: Generic Read, Disposition: Open, Options: Synchronous IO Non-Alert, Non-Directory File, Attributes: N, ShareMode: Read, Write, AllocationSize: n/a, OpenResult: Opened 97 12:38:31,3469496 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 2 086 051, Length: 4 096, Priority: Normal 97 12:38:31,3469681 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 2 086 077, Length: 512 97 12:38:31,3469787 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 2 086 094, Length: 1 024 97 12:38:31,3469848 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 2 087 118, Length: 512 97 12:38:31,3469933 MCLauncher.exe 84 CloseFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS 97 12:38:31,3471039 MCLauncher.exe 84 RegQueryKey HKCU SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:31,3471105 MCLauncher.exe 84 RegQueryKey HKCU SUCCESS Query: Name 97 12:38:31,3471202 MCLauncher.exe 84 RegOpenKey HKCU\Software\Python\PythonCore\MCLauncher\Modules\_ssl NAME NOT FOUND Desired Access: Query Value 97 12:38:31,3471319 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:31,3471366 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: Name 97 12:38:31,3471452 MCLauncher.exe 84 RegOpenKey HKLM\Software\WOW6432Node\Python\PythonCore\MCLauncher\Modules\_ssl NAME NOT FOUND Desired Access: Query Value 97 12:38:31,3472654 MCLauncher.exe 84 CreateFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Desired Access: Generic Read, Disposition: Open, Options: Synchronous IO Non-Alert, Non-Directory File, Attributes: N, ShareMode: Read, Write, AllocationSize: n/a, OpenResult: Opened 97 12:38:31,3472892 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 3 190 545, Length: 4 096, Priority: Normal 97 12:38:31,3473028 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 3 190 571, Length: 512 97 12:38:31,3474962 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 3 190 583, Length: 590 848 97 12:38:31,3476123 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 3 781 431, Length: 512 97 12:38:31,3476214 MCLauncher.exe 84 CloseFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS 97 12:38:31,3570641 MCLauncher.exe 84 Load Image C:\Windows\SysWOW64\crypt32.dll SUCCESS Image Base: 0x753e0000, Image Size: 0x17d000 97 12:38:31,3571954 MCLauncher.exe 84 Load Image C:\Windows\SysWOW64\msasn1.dll SUCCESS Image Base: 0x751d0000, Image Size: 0xe000 97 12:38:31,3574522 MCLauncher.exe 84 CreateFile C:\Windows\SysWOW64\msasn1.dll SUCCESS Desired Access: Read Control, Disposition: Open, Options: , Attributes: n/a, ShareMode: Read, Delete, AllocationSize: n/a, OpenResult: Opened 97 12:38:31,3575037 MCLauncher.exe 84 QuerySecurityFile C:\Windows\SysWOW64\msasn1.dll BUFFER OVERFLOW Information: Owner 97 12:38:31,3575137 MCLauncher.exe 84 QuerySecurityFile C:\Windows\SysWOW64\msasn1.dll SUCCESS Information: Owner 97 12:38:31,3575220 MCLauncher.exe 84 CloseFile C:\Windows\SysWOW64\msasn1.dll SUCCESS 97 12:38:31,3576428 MCLauncher.exe 84 CreateFile C:\Windows\SysWOW64\crypt32.dll SUCCESS Desired Access: Read Control, Disposition: Open, Options: , Attributes: n/a, ShareMode: Read, Delete, AllocationSize: n/a, OpenResult: Opened 97 12:38:31,3576708 MCLauncher.exe 84 QuerySecurityFile C:\Windows\SysWOW64\crypt32.dll BUFFER OVERFLOW Information: Owner 97 12:38:31,3576780 MCLauncher.exe 84 QuerySecurityFile C:\Windows\SysWOW64\crypt32.dll SUCCESS Information: Owner 97 12:38:31,3576847 MCLauncher.exe 84 CloseFile C:\Windows\SysWOW64\crypt32.dll SUCCESS 97 12:38:31,3593506 MCLauncher.exe 84 RegQueryKey HKCU SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:31,3593600 MCLauncher.exe 84 RegQueryKey HKCU SUCCESS Query: Name 97 12:38:31,3593730 MCLauncher.exe 84 RegOpenKey HKCU\Software\Python\PythonCore\MCLauncher\Modules\subprocess NAME NOT FOUND Desired Access: Query Value 97 12:38:31,3593919 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:31,3593969 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: Name 97 12:38:31,3594071 MCLauncher.exe 84 RegOpenKey HKLM\Software\WOW6432Node\Python\PythonCore\MCLauncher\Modules\subprocess NAME NOT FOUND Desired Access: Query Value 97 12:38:31,3595598 MCLauncher.exe 84 CreateFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Desired Access: Generic Read, Disposition: Open, Options: Synchronous IO Non-Alert, Non-Directory File, Attributes: N, ShareMode: Read, Write, AllocationSize: n/a, OpenResult: Opened 97 12:38:31,3595905 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 2 480 566, Length: 4 096, Priority: Normal 97 12:38:31,3596133 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 2 480 592, Length: 512 97 12:38:31,3596232 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 2 480 610, Length: 10 240 97 12:38:31,3596315 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 2 490 850, Length: 512 97 12:38:31,3596401 MCLauncher.exe 84 CloseFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS 97 12:38:31,3599953 MCLauncher.exe 84 RegQueryKey HKCU SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:31,3600025 MCLauncher.exe 84 RegQueryKey HKCU SUCCESS Query: Name 97 12:38:31,3600133 MCLauncher.exe 84 RegOpenKey HKCU\Software\Python\PythonCore\MCLauncher\Modules\win32com NAME NOT FOUND Desired Access: Query Value 97 12:38:31,3600258 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:31,3600308 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: Name 97 12:38:31,3600399 MCLauncher.exe 84 RegOpenKey HKLM\Software\WOW6432Node\Python\PythonCore\MCLauncher\Modules\win32com NAME NOT FOUND Desired Access: Query Value 97 12:38:31,3601555 MCLauncher.exe 84 CreateFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Desired Access: Generic Read, Disposition: Open, Options: Synchronous IO Non-Alert, Non-Directory File, Attributes: N, ShareMode: Read, Write, AllocationSize: n/a, OpenResult: Opened 97 12:38:31,3601796 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 2 385 857, Length: 4 096, Priority: Normal 97 12:38:31,3601948 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 2 385 883, Length: 512 97 12:38:31,3602037 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 2 385 908, Length: 1 024 97 12:38:31,3602098 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 2 386 932, Length: 512 97 12:38:31,3602178 MCLauncher.exe 84 CloseFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS 97 12:38:31,3603671 MCLauncher.exe 84 CreateFile C:\Users\User\Downloads\MCLauncher.exe NOT A DIRECTORY Desired Access: Read Data/List Directory, Synchronize, Disposition: Open, Options: Directory, Synchronous IO Non-Alert, Attributes: n/a, ShareMode: Read, Write, Delete, AllocationSize: n/a 97 12:38:31,3604879 MCLauncher.exe 84 CreateFile C:\Users\User\Downloads\MCLauncher.exe NOT A DIRECTORY Desired Access: Read Data/List Directory, Synchronize, Disposition: Open, Options: Directory, Synchronous IO Non-Alert, Attributes: n/a, ShareMode: Read, Write, Delete, AllocationSize: n/a 97 12:38:31,3605863 MCLauncher.exe 84 CreateFile C:\Users\User\Downloads SUCCESS Desired Access: Read Data/List Directory, Synchronize, Disposition: Open, Options: Directory, Synchronous IO Non-Alert, Attributes: n/a, ShareMode: Read, Write, Delete, AllocationSize: n/a, OpenResult: Opened 97 12:38:31,3606059 MCLauncher.exe 84 QueryDirectory C:\Users\User\Downloads\MCLauncher.exe SUCCESS Filter: MCLauncher.exe, 1: MCLauncher.exe 97 12:38:31,3606276 MCLauncher.exe 84 CloseFile C:\Users\User\Downloads SUCCESS 97 12:38:31,3606655 MCLauncher.exe 84 RegQueryKey HKCU SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:31,3606719 MCLauncher.exe 84 RegQueryKey HKCU SUCCESS Query: Name 97 12:38:31,3606816 MCLauncher.exe 84 RegOpenKey HKCU\Software\Python\PythonCore\MCLauncher\Modules\win32api NAME NOT FOUND Desired Access: Query Value 97 12:38:31,3606938 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:31,3606985 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: Name 97 12:38:31,3607073 MCLauncher.exe 84 RegOpenKey HKLM\Software\WOW6432Node\Python\PythonCore\MCLauncher\Modules\win32api NAME NOT FOUND Desired Access: Query Value 97 12:38:31,3608179 MCLauncher.exe 84 CreateFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Desired Access: Generic Read, Disposition: Open, Options: Synchronous IO Non-Alert, Non-Directory File, Attributes: N, ShareMode: Read, Write, AllocationSize: n/a, OpenResult: Opened 97 12:38:31,3608406 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 6 876 773, Length: 4 096, Priority: Normal 97 12:38:31,3608561 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 6 876 799, Length: 512 97 12:38:31,3608653 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 6 876 815, Length: 39 936 97 12:38:31,3608788 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 6 916 751, Length: 512 97 12:38:31,3608872 MCLauncher.exe 84 CloseFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS 97 12:38:31,3618433 MCLauncher.exe 84 CreateFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Desired Access: Generic Read, Disposition: Open, Options: Synchronous IO Non-Alert, Non-Directory File, Attributes: N, ShareMode: Read, Write, AllocationSize: n/a, OpenResult: Opened 97 12:38:31,3618688 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 8 348 909, Length: 4 096, Priority: Normal 97 12:38:31,3618865 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 8 348 935, Length: 512 97 12:38:31,3619009 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 8 348 955, Length: 42 496 97 12:38:31,3620217 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 8 391 451, Length: 512 97 12:38:31,3620328 MCLauncher.exe 84 CloseFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS 97 12:38:31,3636062 MCLauncher.exe 84 CreateFile C:\Users\User\Downloads\secur32.dll NAME NOT FOUND Desired Access: Read Attributes, Disposition: Open, Options: Open Reparse Point, Attributes: n/a, ShareMode: Read, Write, Delete, AllocationSize: n/a 97 12:38:31,3638492 MCLauncher.exe 84 CreateFile C:\Windows\SysWOW64\secur32.dll SUCCESS Desired Access: Read Attributes, Disposition: Open, Options: Open Reparse Point, Attributes: n/a, ShareMode: Read, Write, Delete, AllocationSize: n/a, OpenResult: Opened 97 12:38:31,3638783 MCLauncher.exe 84 QueryBasicInformationFile C:\Windows\SysWOW64\secur32.dll SUCCESS CreationTime: 16.07.2016 14:43:01, LastAccessTime: 16.07.2016 14:43:01, LastWriteTime: 16.07.2016 14:43:01, ChangeTime: 19.07.2018 19:38:51, FileAttributes: A 97 12:38:31,3638877 MCLauncher.exe 84 CloseFile C:\Windows\SysWOW64\secur32.dll SUCCESS 97 12:38:31,3639874 MCLauncher.exe 84 CreateFile C:\Windows\SysWOW64\secur32.dll SUCCESS Desired Access: Read Data/List Directory, Execute/Traverse, Synchronize, Disposition: Open, Options: Synchronous IO Non-Alert, Non-Directory File, Attributes: n/a, ShareMode: Read, Delete, AllocationSize: n/a, OpenResult: Opened 97 12:38:31,3640162 MCLauncher.exe 84 CreateFileMapping C:\Windows\SysWOW64\secur32.dll FILE LOCKED WITH ONLY READERS SyncType: SyncTypeCreateSection, PageProtection: PAGE_EXECUTE|PAGE_NOCACHE 97 12:38:31,3640337 MCLauncher.exe 84 QueryNameInformationFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Name: \Users\User\Downloads\MCLauncher.exe 97 12:38:31,3641226 MCLauncher.exe 84 CreateFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Desired Access: Synchronize, Disposition: Open, Options: Synchronous IO Non-Alert, Attributes: N, ShareMode: Read, Write, Delete, AllocationSize: n/a, OpenResult: Opened 97 12:38:31,3641412 MCLauncher.exe 84 CloseFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS 97 12:38:31,3641714 MCLauncher.exe 84 QueryNameInformationFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Name: \Users\User\Downloads\MCLauncher.exe 97 12:38:31,3642570 MCLauncher.exe 84 CreateFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Desired Access: Synchronize, Disposition: Open, Options: Synchronous IO Non-Alert, Attributes: N, ShareMode: Read, Write, Delete, AllocationSize: n/a, OpenResult: Opened 97 12:38:31,3642742 MCLauncher.exe 84 CloseFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS 97 12:38:31,3644407 MCLauncher.exe 84 CreateFileMapping C:\Windows\SysWOW64\secur32.dll SUCCESS SyncType: SyncTypeOther 97 12:38:31,3645033 MCLauncher.exe 84 Load Image C:\Windows\SysWOW64\secur32.dll SUCCESS Image Base: 0x73ae0000, Image Size: 0xa000 97 12:38:31,3645770 MCLauncher.exe 84 CloseFile C:\Windows\SysWOW64\secur32.dll SUCCESS 97 12:38:31,3646964 MCLauncher.exe 84 CreateFile C:\Windows\SysWOW64\secur32.dll SUCCESS Desired Access: Read Control, Disposition: Open, Options: , Attributes: n/a, ShareMode: Read, Delete, AllocationSize: n/a, OpenResult: Opened 97 12:38:31,3647244 MCLauncher.exe 84 QuerySecurityFile C:\Windows\SysWOW64\secur32.dll BUFFER OVERFLOW Information: Owner 97 12:38:31,3647324 MCLauncher.exe 84 QuerySecurityFile C:\Windows\SysWOW64\secur32.dll SUCCESS Information: Owner 97 12:38:31,3647396 MCLauncher.exe 84 CloseFile C:\Windows\SysWOW64\secur32.dll SUCCESS 97 12:38:31,3648272 MCLauncher.exe 84 RegQueryKey HKCU SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:31,3648344 MCLauncher.exe 84 RegQueryKey HKCU SUCCESS Query: Name 97 12:38:31,3648455 MCLauncher.exe 84 RegOpenKey HKCU\Software\Python\PythonCore\MCLauncher\Modules\pythoncom NAME NOT FOUND Desired Access: Query Value 97 12:38:31,3648588 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:31,3648637 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: Name 97 12:38:31,3648729 MCLauncher.exe 84 RegOpenKey HKLM\Software\WOW6432Node\Python\PythonCore\MCLauncher\Modules\pythoncom NAME NOT FOUND Desired Access: Query Value 97 12:38:31,3649953 MCLauncher.exe 84 CreateFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Desired Access: Generic Read, Disposition: Open, Options: Synchronous IO Non-Alert, Non-Directory File, Attributes: N, ShareMode: Read, Write, AllocationSize: n/a, OpenResult: Opened 97 12:38:31,3650197 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 079 147, Length: 4 096, Priority: Normal 97 12:38:31,3650355 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 079 173, Length: 512 97 12:38:31,3650530 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 079 192, Length: 142 848 97 12:38:31,3650857 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 222 040, Length: 512 97 12:38:31,3650943 MCLauncher.exe 84 CloseFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS 97 12:38:31,3676800 MCLauncher.exe 84 CreateFile C:\Windows\SysWOW64\rpcss.dll NAME NOT FOUND Desired Access: Read Attributes, Disposition: Open, Options: Open Reparse Point, Attributes: n/a, ShareMode: Read, Write, Delete, AllocationSize: n/a 97 12:38:31,3681510 MCLauncher.exe 84 CreateFile C:\Windows\SysWOW64\uxtheme.dll SUCCESS Desired Access: Read Attributes, Disposition: Open, Options: Open Reparse Point, Attributes: n/a, ShareMode: Read, Write, Delete, AllocationSize: n/a, OpenResult: Opened 97 12:38:31,3681798 MCLauncher.exe 84 QueryBasicInformationFile C:\Windows\SysWOW64\uxtheme.dll SUCCESS CreationTime: 16.07.2016 14:43:04, LastAccessTime: 16.07.2016 14:43:04, LastWriteTime: 16.07.2016 14:43:04, ChangeTime: 19.07.2018 19:40:16, FileAttributes: A 97 12:38:31,3681901 MCLauncher.exe 84 CloseFile C:\Windows\SysWOW64\uxtheme.dll SUCCESS 97 12:38:31,3683170 MCLauncher.exe 84 CreateFile C:\Windows\SysWOW64\uxtheme.dll SUCCESS Desired Access: Read Data/List Directory, Execute/Traverse, Synchronize, Disposition: Open, Options: Synchronous IO Non-Alert, Non-Directory File, Attributes: n/a, ShareMode: Read, Delete, AllocationSize: n/a, OpenResult: Opened 97 12:38:31,3683469 MCLauncher.exe 84 CreateFileMapping C:\Windows\SysWOW64\uxtheme.dll FILE LOCKED WITH ONLY READERS SyncType: SyncTypeCreateSection, PageProtection: PAGE_EXECUTE|PAGE_NOCACHE 97 12:38:31,3683630 MCLauncher.exe 84 QueryNameInformationFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Name: \Users\User\Downloads\MCLauncher.exe 97 12:38:31,3684569 MCLauncher.exe 84 CreateFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Desired Access: Synchronize, Disposition: Open, Options: Synchronous IO Non-Alert, Attributes: N, ShareMode: Read, Write, Delete, AllocationSize: n/a, OpenResult: Opened 97 12:38:31,3684760 MCLauncher.exe 84 CloseFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS 97 12:38:31,3685087 MCLauncher.exe 84 QueryNameInformationFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Name: \Users\User\Downloads\MCLauncher.exe 97 12:38:31,3685982 MCLauncher.exe 84 CreateFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Desired Access: Synchronize, Disposition: Open, Options: Synchronous IO Non-Alert, Attributes: N, ShareMode: Read, Write, Delete, AllocationSize: n/a, OpenResult: Opened 97 12:38:31,3686159 MCLauncher.exe 84 CloseFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS 97 12:38:31,3686949 MCLauncher.exe 84 CreateFileMapping C:\Windows\SysWOW64\uxtheme.dll SUCCESS SyncType: SyncTypeOther 97 12:38:31,3687519 MCLauncher.exe 84 Load Image C:\Windows\SysWOW64\uxtheme.dll SUCCESS Image Base: 0x74110000, Image Size: 0x75000 97 12:38:31,3688741 MCLauncher.exe 84 CloseFile C:\Windows\SysWOW64\uxtheme.dll SUCCESS 97 12:38:31,3689930 MCLauncher.exe 84 CreateFile C:\Windows\SysWOW64\uxtheme.dll SUCCESS Desired Access: Read Control, Disposition: Open, Options: , Attributes: n/a, ShareMode: Read, Delete, AllocationSize: n/a, OpenResult: Opened 97 12:38:31,3690218 MCLauncher.exe 84 QuerySecurityFile C:\Windows\SysWOW64\uxtheme.dll BUFFER OVERFLOW Information: Owner 97 12:38:31,3690307 MCLauncher.exe 84 QuerySecurityFile C:\Windows\SysWOW64\uxtheme.dll SUCCESS Information: Owner 97 12:38:31,3690387 MCLauncher.exe 84 CloseFile C:\Windows\SysWOW64\uxtheme.dll SUCCESS 97 12:38:31,3730164 MCLauncher.exe 84 CreateFile C:\Program Files (x86)\360\Total Security\safemon\safemon.dll SUCCESS Desired Access: Read Attributes, Disposition: Open, Options: Open Reparse Point, Attributes: n/a, ShareMode: Read, Write, Delete, AllocationSize: n/a, OpenResult: Opened 97 12:38:31,3730358 MCLauncher.exe 84 QueryBasicInformationFile C:\Program Files (x86)\360\Total Security\safemon\safemon.dll SUCCESS CreationTime: 20.07.2018 20:11:59, LastAccessTime: 20.07.2018 20:11:59, LastWriteTime: 20.07.2018 13:54:12, ChangeTime: 20.07.2018 20:09:33, FileAttributes: A 97 12:38:31,3730449 MCLauncher.exe 84 CloseFile C:\Program Files (x86)\360\Total Security\safemon\safemon.dll SUCCESS 97 12:38:31,3731782 MCLauncher.exe 84 CreateFile C:\Program Files (x86)\360\Total Security\safemon\safemon.dll SUCCESS Desired Access: Read Data/List Directory, Execute/Traverse, Synchronize, Disposition: Open, Options: Synchronous IO Non-Alert, Non-Directory File, Attributes: n/a, ShareMode: Read, Delete, AllocationSize: n/a, OpenResult: Opened 97 12:38:31,3732056 MCLauncher.exe 84 CreateFileMapping C:\Program Files (x86)\360\Total Security\safemon\safemon.dll FILE LOCKED WITH ONLY READERS SyncType: SyncTypeCreateSection, PageProtection: PAGE_EXECUTE|PAGE_NOCACHE 97 12:38:31,3732253 MCLauncher.exe 84 QueryNameInformationFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Name: \Users\User\Downloads\MCLauncher.exe 97 12:38:31,3733658 MCLauncher.exe 84 CreateFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Desired Access: Synchronize, Disposition: Open, Options: Synchronous IO Non-Alert, Attributes: N, ShareMode: Read, Write, Delete, AllocationSize: n/a, OpenResult: Opened 97 12:38:31,3733932 MCLauncher.exe 84 CloseFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS 97 12:38:31,3734403 MCLauncher.exe 84 QueryNameInformationFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Name: \Users\User\Downloads\MCLauncher.exe 97 12:38:31,3735475 MCLauncher.exe 84 CreateFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Desired Access: Synchronize, Disposition: Open, Options: Synchronous IO Non-Alert, Attributes: N, ShareMode: Read, Write, Delete, AllocationSize: n/a, OpenResult: Opened 97 12:38:31,3735661 MCLauncher.exe 84 CloseFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS 97 12:38:31,3736406 MCLauncher.exe 84 CreateFileMapping C:\Program Files (x86)\360\Total Security\safemon\safemon.dll SUCCESS SyncType: SyncTypeOther 97 12:38:31,3736952 MCLauncher.exe 84 Load Image C:\Program Files (x86)\360\Total Security\safemon\safemon.dll SUCCESS Image Base: 0x60750000, Image Size: 0x17c000 97 12:38:31,3737481 MCLauncher.exe 84 RegOpenKey HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\SideBySide SUCCESS Desired Access: Read 97 12:38:31,3737703 MCLauncher.exe 84 RegSetInfoKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\SideBySide SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 97 12:38:31,3737830 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\SideBySide\PreferExternalManifest NAME NOT FOUND Length: 20 97 12:38:31,3738018 MCLauncher.exe 84 RegCloseKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\SideBySide SUCCESS 97 12:38:31,3739019 MCLauncher.exe 84 CreateFile C:\Program Files (x86)\360\Total Security\safemon\safemon.dll SUCCESS Desired Access: Generic Read, Disposition: Open, Options: Synchronous IO Non-Alert, Non-Directory File, Attributes: n/a, ShareMode: Read, Delete, AllocationSize: n/a, OpenResult: Opened 97 12:38:31,3739238 MCLauncher.exe 84 QueryBasicInformationFile C:\Program Files (x86)\360\Total Security\safemon\safemon.dll SUCCESS CreationTime: 20.07.2018 20:11:59, LastAccessTime: 20.07.2018 20:11:59, LastWriteTime: 20.07.2018 13:54:12, ChangeTime: 20.07.2018 20:09:33, FileAttributes: A 97 12:38:31,3740088 MCLauncher.exe 84 CloseFile C:\Program Files (x86)\360\Total Security\safemon\safemon.dll SUCCESS 97 12:38:31,3741177 MCLauncher.exe 84 Load Image C:\Windows\SysWOW64\psapi.dll SUCCESS Image Base: 0x74d90000, Image Size: 0x6000 97 12:38:31,3741701 MCLauncher.exe 84 CloseFile C:\Program Files (x86)\360\Total Security\safemon\safemon.dll SUCCESS 97 12:38:31,3744294 MCLauncher.exe 84 CreateFile C:\Program Files (x86)\360\Total Security\safemon\NETAPI32.dll NAME NOT FOUND Desired Access: Read Attributes, Disposition: Open, Options: Open Reparse Point, Attributes: n/a, ShareMode: Read, Write, Delete, AllocationSize: n/a 97 12:38:31,3746632 MCLauncher.exe 84 CreateFile C:\Windows\SysWOW64\netapi32.dll SUCCESS Desired Access: Read Attributes, Disposition: Open, Options: Open Reparse Point, Attributes: n/a, ShareMode: Read, Write, Delete, AllocationSize: n/a, OpenResult: Opened 97 12:38:31,3746904 MCLauncher.exe 84 QueryBasicInformationFile C:\Windows\SysWOW64\netapi32.dll SUCCESS CreationTime: 16.07.2016 14:42:49, LastAccessTime: 16.07.2016 14:42:49, LastWriteTime: 16.07.2016 14:42:49, ChangeTime: 19.07.2018 19:37:31, FileAttributes: A 97 12:38:31,3746998 MCLauncher.exe 84 CloseFile C:\Windows\SysWOW64\netapi32.dll SUCCESS 97 12:38:31,3747995 MCLauncher.exe 84 CreateFile C:\Windows\SysWOW64\netapi32.dll SUCCESS Desired Access: Read Data/List Directory, Execute/Traverse, Synchronize, Disposition: Open, Options: Synchronous IO Non-Alert, Non-Directory File, Attributes: n/a, ShareMode: Read, Delete, AllocationSize: n/a, OpenResult: Opened 97 12:38:31,3748281 MCLauncher.exe 84 CreateFileMapping C:\Windows\SysWOW64\netapi32.dll FILE LOCKED WITH ONLY READERS SyncType: SyncTypeCreateSection, PageProtection: PAGE_EXECUTE|PAGE_NOCACHE 97 12:38:31,3748411 MCLauncher.exe 84 QueryNameInformationFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Name: \Users\User\Downloads\MCLauncher.exe 97 12:38:31,3749322 MCLauncher.exe 84 CreateFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Desired Access: Synchronize, Disposition: Open, Options: Synchronous IO Non-Alert, Attributes: N, ShareMode: Read, Write, Delete, AllocationSize: n/a, OpenResult: Opened 97 12:38:31,3749502 MCLauncher.exe 84 CloseFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS 97 12:38:31,3749807 MCLauncher.exe 84 QueryNameInformationFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Name: \Users\User\Downloads\MCLauncher.exe 97 12:38:31,3750987 MCLauncher.exe 84 CreateFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Desired Access: Synchronize, Disposition: Open, Options: Synchronous IO Non-Alert, Attributes: N, ShareMode: Read, Write, Delete, AllocationSize: n/a, OpenResult: Opened 97 12:38:31,3751181 MCLauncher.exe 84 CloseFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS 97 12:38:31,3751880 MCLauncher.exe 84 CreateFileMapping C:\Windows\SysWOW64\netapi32.dll SUCCESS SyncType: SyncTypeOther 97 12:38:31,3752450 MCLauncher.exe 84 Load Image C:\Windows\SysWOW64\netapi32.dll SUCCESS Image Base: 0x71140000, Image Size: 0x13000 97 12:38:31,3753010 MCLauncher.exe 84 CloseFile C:\Windows\SysWOW64\netapi32.dll SUCCESS 97 12:38:31,3756457 MCLauncher.exe 84 CreateFile C:\Program Files (x86)\360\Total Security\safemon\NETUTILS.DLL NAME NOT FOUND Desired Access: Read Attributes, Disposition: Open, Options: Open Reparse Point, Attributes: n/a, ShareMode: Read, Write, Delete, AllocationSize: n/a 97 12:38:31,3758776 MCLauncher.exe 84 CreateFile C:\Windows\SysWOW64\netutils.dll SUCCESS Desired Access: Read Attributes, Disposition: Open, Options: Open Reparse Point, Attributes: n/a, ShareMode: Read, Write, Delete, AllocationSize: n/a, OpenResult: Opened 97 12:38:31,3759047 MCLauncher.exe 84 QueryBasicInformationFile C:\Windows\SysWOW64\netutils.dll SUCCESS CreationTime: 16.07.2016 14:42:55, LastAccessTime: 16.07.2016 14:42:55, LastWriteTime: 16.07.2016 14:42:55, ChangeTime: 19.07.2018 19:37:42, FileAttributes: A 97 12:38:31,3759141 MCLauncher.exe 84 CloseFile C:\Windows\SysWOW64\netutils.dll SUCCESS 97 12:38:31,3760133 MCLauncher.exe 84 CreateFile C:\Windows\SysWOW64\netutils.dll SUCCESS Desired Access: Read Data/List Directory, Execute/Traverse, Synchronize, Disposition: Open, Options: Synchronous IO Non-Alert, Non-Directory File, Attributes: n/a, ShareMode: Read, Delete, AllocationSize: n/a, OpenResult: Opened 97 12:38:31,3760574 MCLauncher.exe 84 CreateFileMapping C:\Windows\SysWOW64\netutils.dll FILE LOCKED WITH ONLY READERS SyncType: SyncTypeCreateSection, PageProtection: PAGE_EXECUTE|PAGE_NOCACHE 97 12:38:31,3760709 MCLauncher.exe 84 QueryNameInformationFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Name: \Users\User\Downloads\MCLauncher.exe 97 12:38:31,3761649 MCLauncher.exe 84 CreateFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Desired Access: Synchronize, Disposition: Open, Options: Synchronous IO Non-Alert, Attributes: N, ShareMode: Read, Write, Delete, AllocationSize: n/a, OpenResult: Opened 97 12:38:31,3761831 MCLauncher.exe 84 CloseFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS 97 12:38:31,3762139 MCLauncher.exe 84 QueryNameInformationFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Name: \Users\User\Downloads\MCLauncher.exe 97 12:38:31,3763028 MCLauncher.exe 84 CreateFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Desired Access: Synchronize, Disposition: Open, Options: Synchronous IO Non-Alert, Attributes: N, ShareMode: Read, Write, Delete, AllocationSize: n/a, OpenResult: Opened 97 12:38:31,3763200 MCLauncher.exe 84 CloseFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS 97 12:38:31,3763895 MCLauncher.exe 84 CreateFileMapping C:\Windows\SysWOW64\netutils.dll SUCCESS SyncType: SyncTypeOther 97 12:38:31,3764461 MCLauncher.exe 84 Load Image C:\Windows\SysWOW64\netutils.dll SUCCESS Image Base: 0x70ca0000, Image Size: 0xb000 97 12:38:31,3764940 MCLauncher.exe 84 CloseFile C:\Windows\SysWOW64\netutils.dll SUCCESS 97 12:38:31,3770212 MCLauncher.exe 84 CreateFile C:\Program Files (x86)\360\Total Security\safemon\WKSCLI.DLL NAME NOT FOUND Desired Access: Read Attributes, Disposition: Open, Options: Open Reparse Point, Attributes: n/a, ShareMode: Read, Write, Delete, AllocationSize: n/a 97 12:38:31,3772717 MCLauncher.exe 84 CreateFile C:\Windows\SysWOW64\wkscli.dll SUCCESS Desired Access: Read Attributes, Disposition: Open, Options: Open Reparse Point, Attributes: n/a, ShareMode: Read, Write, Delete, AllocationSize: n/a, OpenResult: Opened 97 12:38:31,3772986 MCLauncher.exe 84 QueryBasicInformationFile C:\Windows\SysWOW64\wkscli.dll SUCCESS CreationTime: 16.07.2016 14:42:55, LastAccessTime: 16.07.2016 14:42:55, LastWriteTime: 16.07.2016 14:42:55, ChangeTime: 19.07.2018 19:41:08, FileAttributes: A 97 12:38:31,3773080 MCLauncher.exe 84 CloseFile C:\Windows\SysWOW64\wkscli.dll SUCCESS 97 12:38:31,3774091 MCLauncher.exe 84 CreateFile C:\Windows\SysWOW64\wkscli.dll SUCCESS Desired Access: Read Data/List Directory, Execute/Traverse, Synchronize, Disposition: Open, Options: Synchronous IO Non-Alert, Non-Directory File, Attributes: n/a, ShareMode: Read, Delete, AllocationSize: n/a, OpenResult: Opened 97 12:38:31,3774379 MCLauncher.exe 84 CreateFileMapping C:\Windows\SysWOW64\wkscli.dll FILE LOCKED WITH ONLY READERS SyncType: SyncTypeCreateSection, PageProtection: PAGE_EXECUTE|PAGE_NOCACHE 97 12:38:31,3774510 MCLauncher.exe 84 QueryNameInformationFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Name: \Users\User\Downloads\MCLauncher.exe 97 12:38:31,3775418 MCLauncher.exe 84 CreateFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Desired Access: Synchronize, Disposition: Open, Options: Synchronous IO Non-Alert, Attributes: N, ShareMode: Read, Write, Delete, AllocationSize: n/a, OpenResult: Opened 97 12:38:31,3775601 MCLauncher.exe 84 CloseFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS 97 12:38:31,3775911 MCLauncher.exe 84 QueryNameInformationFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Name: \Users\User\Downloads\MCLauncher.exe 97 12:38:31,3776795 MCLauncher.exe 84 CreateFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Desired Access: Synchronize, Disposition: Open, Options: Synchronous IO Non-Alert, Attributes: N, ShareMode: Read, Write, Delete, AllocationSize: n/a, OpenResult: Opened 97 12:38:31,3776967 MCLauncher.exe 84 CloseFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS 97 12:38:31,3777660 MCLauncher.exe 84 CreateFileMapping C:\Windows\SysWOW64\wkscli.dll SUCCESS SyncType: SyncTypeOther 97 12:38:31,3778189 MCLauncher.exe 84 Load Image C:\Windows\SysWOW64\wkscli.dll SUCCESS Image Base: 0x70cb0000, Image Size: 0x10000 97 12:38:31,3778707 MCLauncher.exe 84 CloseFile C:\Windows\SysWOW64\wkscli.dll SUCCESS 97 12:38:31,3780294 MCLauncher.exe 84 CreateFile C:\Windows\SysWOW64\psapi.dll SUCCESS Desired Access: Read Control, Disposition: Open, Options: , Attributes: n/a, ShareMode: Read, Delete, AllocationSize: n/a, OpenResult: Opened 97 12:38:31,3780602 MCLauncher.exe 84 QuerySecurityFile C:\Windows\SysWOW64\psapi.dll BUFFER OVERFLOW Information: Owner 97 12:38:31,3780693 MCLauncher.exe 84 QuerySecurityFile C:\Windows\SysWOW64\psapi.dll SUCCESS Information: Owner 97 12:38:31,3780777 MCLauncher.exe 84 CloseFile C:\Windows\SysWOW64\psapi.dll SUCCESS 97 12:38:31,3781890 MCLauncher.exe 84 CreateFile C:\Windows\SysWOW64\netapi32.dll SUCCESS Desired Access: Read Control, Disposition: Open, Options: , Attributes: n/a, ShareMode: Read, Delete, AllocationSize: n/a, OpenResult: Opened 97 12:38:31,3782162 MCLauncher.exe 84 QuerySecurityFile C:\Windows\SysWOW64\netapi32.dll BUFFER OVERFLOW Information: Owner 97 12:38:31,3782245 MCLauncher.exe 84 QuerySecurityFile C:\Windows\SysWOW64\netapi32.dll SUCCESS Information: Owner 97 12:38:31,3782322 MCLauncher.exe 84 CloseFile C:\Windows\SysWOW64\netapi32.dll SUCCESS 97 12:38:31,3783384 MCLauncher.exe 84 CreateFile C:\Windows\SysWOW64\netutils.dll SUCCESS Desired Access: Read Control, Disposition: Open, Options: , Attributes: n/a, ShareMode: Read, Delete, AllocationSize: n/a, OpenResult: Opened 97 12:38:31,3783641 MCLauncher.exe 84 QuerySecurityFile C:\Windows\SysWOW64\netutils.dll BUFFER OVERFLOW Information: Owner 97 12:38:31,3783722 MCLauncher.exe 84 QuerySecurityFile C:\Windows\SysWOW64\netutils.dll SUCCESS Information: Owner 97 12:38:31,3783796 MCLauncher.exe 84 CloseFile C:\Windows\SysWOW64\netutils.dll SUCCESS 97 12:38:31,3784830 MCLauncher.exe 84 CreateFile C:\Windows\SysWOW64\wkscli.dll SUCCESS Desired Access: Read Control, Disposition: Open, Options: , Attributes: n/a, ShareMode: Read, Delete, AllocationSize: n/a, OpenResult: Opened 97 12:38:31,3785082 MCLauncher.exe 84 QuerySecurityFile C:\Windows\SysWOW64\wkscli.dll BUFFER OVERFLOW Information: Owner 97 12:38:31,3785162 MCLauncher.exe 84 QuerySecurityFile C:\Windows\SysWOW64\wkscli.dll SUCCESS Information: Owner 97 12:38:31,3785234 MCLauncher.exe 84 CloseFile C:\Windows\SysWOW64\wkscli.dll SUCCESS 97 12:38:31,3786271 MCLauncher.exe 84 CreateFile C:\Program Files (x86)\360\Total Security\safemon\safemon.dll SUCCESS Desired Access: Read Control, Disposition: Open, Options: , Attributes: n/a, ShareMode: Read, Delete, AllocationSize: n/a, OpenResult: Opened 97 12:38:31,3786448 MCLauncher.exe 84 QuerySecurityFile C:\Program Files (x86)\360\Total Security\safemon\safemon.dll BUFFER OVERFLOW Information: Owner 97 12:38:31,3786525 MCLauncher.exe 84 QuerySecurityFile C:\Program Files (x86)\360\Total Security\safemon\safemon.dll SUCCESS Information: Owner 97 12:38:31,3786600 MCLauncher.exe 84 CloseFile C:\Program Files (x86)\360\Total Security\safemon\safemon.dll SUCCESS 97 12:38:31,3798189 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:31,3798286 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: Name 97 12:38:31,3798428 MCLauncher.exe 84 RegOpenKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\App Paths\360safe.exe REPARSE Desired Access: Query Value 97 12:38:31,3798569 MCLauncher.exe 84 RegOpenKey HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Paths\360safe.exe SUCCESS Desired Access: Query Value 97 12:38:31,3798699 MCLauncher.exe 84 RegSetInfoKey HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Paths\360safe.exe SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 97 12:38:31,3798791 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Paths\360safe.exe\Path SUCCESS Type: REG_SZ, Length: 84, Data: C:\Program Files (x86)\360\Total Security 97 12:38:31,3799015 MCLauncher.exe 84 RegCloseKey HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Paths\360safe.exe SUCCESS 97 12:38:31,3801467 MCLauncher.exe 84 CreateFile C:\Program Files (x86)\360\Total Security SUCCESS Desired Access: Read Attributes, Disposition: Open, Options: Open Reparse Point, Attributes: n/a, ShareMode: Read, Write, Delete, AllocationSize: n/a, OpenResult: Opened 97 12:38:31,3801647 MCLauncher.exe 84 QueryBasicInformationFile C:\Program Files (x86)\360\Total Security SUCCESS CreationTime: 20.07.2018 20:11:30, LastAccessTime: 23.08.2018 15:02:29, LastWriteTime: 23.08.2018 15:02:29, ChangeTime: 23.08.2018 15:02:29, FileAttributes: DA 97 12:38:31,3801739 MCLauncher.exe 84 CloseFile C:\Program Files (x86)\360\Total Security SUCCESS 97 12:38:31,3804085 MCLauncher.exe 84 CreateFile C:\Program Files (x86)\360\Total Security\config.ini SUCCESS Desired Access: Read Attributes, Disposition: Open, Options: Open Reparse Point, Attributes: n/a, ShareMode: Read, Write, Delete, AllocationSize: n/a, OpenResult: Opened 97 12:38:31,3804263 MCLauncher.exe 84 QueryBasicInformationFile C:\Program Files (x86)\360\Total Security\config.ini SUCCESS CreationTime: 20.07.2018 20:11:30, LastAccessTime: 20.07.2018 20:11:30, LastWriteTime: 20.07.2018 20:11:30, ChangeTime: 20.07.2018 20:11:30, FileAttributes: A 97 12:38:31,3804348 MCLauncher.exe 84 CloseFile C:\Program Files (x86)\360\Total Security\config.ini SUCCESS 97 12:38:31,3805393 MCLauncher.exe 84 CreateFile C:\Program Files (x86)\360\Total Security\config.ini SUCCESS Desired Access: Generic Read, Disposition: Open, Options: Synchronous IO Non-Alert, Non-Directory File, Attributes: n/a, ShareMode: Read, Write, Delete, AllocationSize: n/a, OpenResult: Opened 97 12:38:31,3805634 MCLauncher.exe 84 LockFile C:\Program Files (x86)\360\Total Security\config.ini SUCCESS Exclusive: False, Offset: 0, Length: 4 294 967 295, Fail Immediately: False 97 12:38:31,3805731 MCLauncher.exe 84 QueryStandardInformationFile C:\Program Files (x86)\360\Total Security\config.ini SUCCESS AllocationSize: 152, EndOfFile: 146, NumberOfLinks: 1, DeletePending: False, Directory: False 97 12:38:31,3805933 MCLauncher.exe 84 ReadFile C:\Program Files (x86)\360\Total Security\config.ini SUCCESS Offset: 0, Length: 146, Priority: Normal 97 12:38:31,3806440 MCLauncher.exe 84 UnlockFileSingle C:\Program Files (x86)\360\Total Security\config.ini SUCCESS Offset: 0, Length: 4 294 967 295 97 12:38:31,3806537 MCLauncher.exe 84 CloseFile C:\Program Files (x86)\360\Total Security\config.ini SUCCESS 97 12:38:31,3808898 MCLauncher.exe 84 CreateFile C:\Program Files (x86)\360\Total Security\i18n\ru\safemon\wd.ini SUCCESS Desired Access: Read Attributes, Disposition: Open, Options: Open Reparse Point, Attributes: n/a, ShareMode: Read, Write, Delete, AllocationSize: n/a, OpenResult: Opened 97 12:38:31,3809197 MCLauncher.exe 84 QueryBasicInformationFile C:\Program Files (x86)\360\Total Security\i18n\ru\safemon\wd.ini SUCCESS CreationTime: 20.07.2018 20:11:36, LastAccessTime: 20.07.2018 20:11:36, LastWriteTime: 20.07.2018 13:54:11, ChangeTime: 20.07.2018 20:09:20, FileAttributes: A 97 12:38:31,3809360 MCLauncher.exe 84 CloseFile C:\Program Files (x86)\360\Total Security\i18n\ru\safemon\wd.ini SUCCESS 97 12:38:31,3811624 MCLauncher.exe 84 CreateFile C:\Program Files (x86)\360\Total Security\i18n\ru\safemon\wd.ini SUCCESS Desired Access: Read Attributes, Disposition: Open, Options: Open Reparse Point, Attributes: n/a, ShareMode: Read, Write, Delete, AllocationSize: n/a, OpenResult: Opened 97 12:38:31,3811776 MCLauncher.exe 84 QueryBasicInformationFile C:\Program Files (x86)\360\Total Security\i18n\ru\safemon\wd.ini SUCCESS CreationTime: 20.07.2018 20:11:36, LastAccessTime: 20.07.2018 20:11:36, LastWriteTime: 20.07.2018 13:54:11, ChangeTime: 20.07.2018 20:09:20, FileAttributes: A 97 12:38:31,3811859 MCLauncher.exe 84 CloseFile C:\Program Files (x86)\360\Total Security\i18n\ru\safemon\wd.ini SUCCESS 97 12:38:31,3812946 MCLauncher.exe 84 CreateFile C:\Program Files (x86)\360\Total Security\i18n\ru\safemon\wd.ini SUCCESS Desired Access: Generic Read, Disposition: Open, Options: Synchronous IO Non-Alert, Non-Directory File, Attributes: n/a, ShareMode: Read, Write, Delete, AllocationSize: n/a, OpenResult: Opened 97 12:38:31,3813139 MCLauncher.exe 84 LockFile C:\Program Files (x86)\360\Total Security\i18n\ru\safemon\wd.ini SUCCESS Exclusive: False, Offset: 0, Length: 4 294 967 295, Fail Immediately: False 97 12:38:31,3813220 MCLauncher.exe 84 QueryStandardInformationFile C:\Program Files (x86)\360\Total Security\i18n\ru\safemon\wd.ini SUCCESS AllocationSize: 12 288, EndOfFile: 8 350, NumberOfLinks: 1, DeletePending: False, Directory: False 97 12:38:31,3813411 MCLauncher.exe 84 ReadFile C:\Program Files (x86)\360\Total Security\i18n\ru\safemon\wd.ini SUCCESS Offset: 0, Length: 8 350, Priority: Normal 97 12:38:31,3813885 MCLauncher.exe 84 UnlockFileSingle C:\Program Files (x86)\360\Total Security\i18n\ru\safemon\wd.ini SUCCESS Offset: 0, Length: 4 294 967 295 97 12:38:31,3813979 MCLauncher.exe 84 CloseFile C:\Program Files (x86)\360\Total Security\i18n\ru\safemon\wd.ini SUCCESS 97 12:38:31,3814431 MCLauncher.exe 84 RegOpenKey HKLM\System\CurrentControlSet\Control\Nls\CustomLocale REPARSE Desired Access: Read 97 12:38:31,3814547 MCLauncher.exe 84 RegOpenKey HKLM\System\CurrentControlSet\Control\Nls\CustomLocale SUCCESS Desired Access: Read 97 12:38:31,3814658 MCLauncher.exe 84 RegSetInfoKey HKLM\System\CurrentControlSet\Control\Nls\CustomLocale SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 97 12:38:31,3814721 MCLauncher.exe 84 RegQueryValue HKLM\System\CurrentControlSet\Control\Nls\CustomLocale\ru-RU NAME NOT FOUND Length: 532 97 12:38:31,3814902 MCLauncher.exe 84 RegCloseKey HKLM\System\CurrentControlSet\Control\Nls\CustomLocale SUCCESS 97 12:38:31,3814990 MCLauncher.exe 84 RegOpenKey HKLM\System\CurrentControlSet\Control\Nls\ExtendedLocale REPARSE Desired Access: Read 97 12:38:31,3815062 MCLauncher.exe 84 RegOpenKey HKLM\System\CurrentControlSet\Control\Nls\ExtendedLocale SUCCESS Desired Access: Read 97 12:38:31,3815143 MCLauncher.exe 84 RegSetInfoKey HKLM\System\CurrentControlSet\Control\Nls\ExtendedLocale SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 97 12:38:31,3815198 MCLauncher.exe 84 RegQueryValue HKLM\System\CurrentControlSet\Control\Nls\ExtendedLocale\ru-RU NAME NOT FOUND Length: 532 97 12:38:31,3815328 MCLauncher.exe 84 RegCloseKey HKLM\System\CurrentControlSet\Control\Nls\ExtendedLocale SUCCESS 97 12:38:31,3815409 MCLauncher.exe 84 RegQueryValue HKLM\System\CurrentControlSet\Control\Nls\Sorting\Ids\ru-RU NAME NOT FOUND Length: 90 97 12:38:31,3815558 MCLauncher.exe 84 RegQueryValue HKLM\System\CurrentControlSet\Control\Nls\Sorting\Ids\ru SUCCESS Type: REG_SZ, Length: 78, Data: {0000004A-57EE-1E5C-00B4-D0000BB1E11E} 97 12:38:31,3819661 MCLauncher.exe 84 CreateFile C:\Program Files (x86)\360\Total Security\config.ini SUCCESS Desired Access: Read Attributes, Disposition: Open, Options: Open Reparse Point, Attributes: n/a, ShareMode: Read, Write, Delete, AllocationSize: n/a, OpenResult: Opened 97 12:38:31,3819839 MCLauncher.exe 84 QueryBasicInformationFile C:\Program Files (x86)\360\Total Security\config.ini SUCCESS CreationTime: 20.07.2018 20:11:30, LastAccessTime: 20.07.2018 20:11:30, LastWriteTime: 20.07.2018 20:11:30, ChangeTime: 20.07.2018 20:11:30, FileAttributes: A 97 12:38:31,3819927 MCLauncher.exe 84 CloseFile C:\Program Files (x86)\360\Total Security\config.ini SUCCESS 97 12:38:31,3820927 MCLauncher.exe 84 CreateFile C:\Program Files (x86)\360\Total Security\config.ini SUCCESS Desired Access: Generic Read, Disposition: Open, Options: Synchronous IO Non-Alert, Non-Directory File, Attributes: n/a, ShareMode: Read, Write, Delete, AllocationSize: n/a, OpenResult: Opened 97 12:38:31,3821124 MCLauncher.exe 84 LockFile C:\Program Files (x86)\360\Total Security\config.ini SUCCESS Exclusive: False, Offset: 0, Length: 4 294 967 295, Fail Immediately: False 97 12:38:31,3821207 MCLauncher.exe 84 QueryStandardInformationFile C:\Program Files (x86)\360\Total Security\config.ini SUCCESS AllocationSize: 152, EndOfFile: 146, NumberOfLinks: 1, DeletePending: False, Directory: False 97 12:38:31,3821385 MCLauncher.exe 84 ReadFile C:\Program Files (x86)\360\Total Security\config.ini SUCCESS Offset: 0, Length: 146, Priority: Normal 97 12:38:31,3821606 MCLauncher.exe 84 UnlockFileSingle C:\Program Files (x86)\360\Total Security\config.ini SUCCESS Offset: 0, Length: 4 294 967 295 97 12:38:31,3821700 MCLauncher.exe 84 CloseFile C:\Program Files (x86)\360\Total Security\config.ini SUCCESS 97 12:38:31,3824017 MCLauncher.exe 84 CreateFile C:\Program Files (x86)\360\Total Security\i18n\ru\safemon\wdk.ini SUCCESS Desired Access: Read Attributes, Disposition: Open, Options: Open Reparse Point, Attributes: n/a, ShareMode: Read, Write, Delete, AllocationSize: n/a, OpenResult: Opened 97 12:38:31,3824191 MCLauncher.exe 84 QueryBasicInformationFile C:\Program Files (x86)\360\Total Security\i18n\ru\safemon\wdk.ini SUCCESS CreationTime: 20.07.2018 20:11:36, LastAccessTime: 20.07.2018 20:11:36, LastWriteTime: 20.07.2018 13:54:11, ChangeTime: 20.07.2018 20:09:20, FileAttributes: A 97 12:38:31,3824277 MCLauncher.exe 84 CloseFile C:\Program Files (x86)\360\Total Security\i18n\ru\safemon\wdk.ini SUCCESS 97 12:38:31,3826469 MCLauncher.exe 84 CreateFile C:\Program Files (x86)\360\Total Security\i18n\ru\safemon\wdk.ini SUCCESS Desired Access: Read Attributes, Disposition: Open, Options: Open Reparse Point, Attributes: n/a, ShareMode: Read, Write, Delete, AllocationSize: n/a, OpenResult: Opened 97 12:38:31,3826624 MCLauncher.exe 84 QueryBasicInformationFile C:\Program Files (x86)\360\Total Security\i18n\ru\safemon\wdk.ini SUCCESS CreationTime: 20.07.2018 20:11:36, LastAccessTime: 20.07.2018 20:11:36, LastWriteTime: 20.07.2018 13:54:11, ChangeTime: 20.07.2018 20:09:20, FileAttributes: A 97 12:38:31,3826707 MCLauncher.exe 84 CloseFile C:\Program Files (x86)\360\Total Security\i18n\ru\safemon\wdk.ini SUCCESS 97 12:38:31,3827754 MCLauncher.exe 84 CreateFile C:\Program Files (x86)\360\Total Security\i18n\ru\safemon\wdk.ini SUCCESS Desired Access: Generic Read, Disposition: Open, Options: Synchronous IO Non-Alert, Non-Directory File, Attributes: n/a, ShareMode: Read, Write, Delete, AllocationSize: n/a, OpenResult: Opened 97 12:38:31,3827940 MCLauncher.exe 84 LockFile C:\Program Files (x86)\360\Total Security\i18n\ru\safemon\wdk.ini SUCCESS Exclusive: False, Offset: 0, Length: 4 294 967 295, Fail Immediately: False 97 12:38:31,3828020 MCLauncher.exe 84 QueryStandardInformationFile C:\Program Files (x86)\360\Total Security\i18n\ru\safemon\wdk.ini SUCCESS AllocationSize: 4 096, EndOfFile: 3 052, NumberOfLinks: 1, DeletePending: False, Directory: False 97 12:38:31,3828192 MCLauncher.exe 84 ReadFile C:\Program Files (x86)\360\Total Security\i18n\ru\safemon\wdk.ini SUCCESS Offset: 0, Length: 3 052, Priority: Normal 97 12:38:31,3828713 MCLauncher.exe 84 UnlockFileSingle C:\Program Files (x86)\360\Total Security\i18n\ru\safemon\wdk.ini SUCCESS Offset: 0, Length: 4 294 967 295 97 12:38:31,3828810 MCLauncher.exe 84 CloseFile C:\Program Files (x86)\360\Total Security\i18n\ru\safemon\wdk.ini SUCCESS 97 12:38:31,3829821 MCLauncher.exe 84 CreateFile C:\Program Files (x86)\360\Total Security\i18n\ru\safemon\wdk.ini SUCCESS Desired Access: Generic Read, Disposition: Open, Options: Synchronous IO Non-Alert, Non-Directory File, Attributes: n/a, ShareMode: Read, Write, Delete, AllocationSize: n/a, OpenResult: Opened 97 12:38:31,3830012 MCLauncher.exe 84 LockFile C:\Program Files (x86)\360\Total Security\i18n\ru\safemon\wdk.ini SUCCESS Exclusive: False, Offset: 0, Length: 4 294 967 295, Fail Immediately: False 97 12:38:31,3830095 MCLauncher.exe 84 QueryStandardInformationFile C:\Program Files (x86)\360\Total Security\i18n\ru\safemon\wdk.ini SUCCESS AllocationSize: 4 096, EndOfFile: 3 052, NumberOfLinks: 1, DeletePending: False, Directory: False 97 12:38:31,3830264 MCLauncher.exe 84 ReadFile C:\Program Files (x86)\360\Total Security\i18n\ru\safemon\wdk.ini SUCCESS Offset: 0, Length: 3 052, Priority: Normal 97 12:38:31,3830525 MCLauncher.exe 84 UnlockFileSingle C:\Program Files (x86)\360\Total Security\i18n\ru\safemon\wdk.ini SUCCESS Offset: 0, Length: 4 294 967 295 97 12:38:31,3830611 MCLauncher.exe 84 CloseFile C:\Program Files (x86)\360\Total Security\i18n\ru\safemon\wdk.ini SUCCESS 97 12:38:31,3834960 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:31,3835052 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: Name 97 12:38:31,3835185 MCLauncher.exe 84 RegOpenKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\App Paths\360safe.exe REPARSE Desired Access: Query Value 97 12:38:31,3835315 MCLauncher.exe 84 RegOpenKey HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Paths\360safe.exe SUCCESS Desired Access: Query Value 97 12:38:31,3835415 MCLauncher.exe 84 RegSetInfoKey HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Paths\360safe.exe SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 97 12:38:31,3835478 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Paths\360safe.exe\Path SUCCESS Type: REG_SZ, Length: 84, Data: C:\Program Files (x86)\360\Total Security 97 12:38:31,3835695 MCLauncher.exe 84 RegCloseKey HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Paths\360safe.exe SUCCESS 97 12:38:31,3836914 MCLauncher.exe 84 CreateFile C:\Program Files (x86)\360\Total Security\safemon\wd.ini SUCCESS Desired Access: Generic Read, Disposition: Open, Options: Synchronous IO Non-Alert, Non-Directory File, Attributes: n/a, ShareMode: Read, Write, Delete, AllocationSize: n/a, OpenResult: Opened 97 12:38:31,3837138 MCLauncher.exe 84 LockFile C:\Program Files (x86)\360\Total Security\safemon\wd.ini SUCCESS Exclusive: False, Offset: 0, Length: 4 294 967 295, Fail Immediately: False 97 12:38:31,3837227 MCLauncher.exe 84 QueryStandardInformationFile C:\Program Files (x86)\360\Total Security\safemon\wd.ini SUCCESS AllocationSize: 12 288, EndOfFile: 8 350, NumberOfLinks: 1, DeletePending: False, Directory: False 97 12:38:31,3837437 MCLauncher.exe 84 ReadFile C:\Program Files (x86)\360\Total Security\safemon\wd.ini SUCCESS Offset: 0, Length: 8 350, Priority: Normal 97 12:38:31,3837975 MCLauncher.exe 84 UnlockFileSingle C:\Program Files (x86)\360\Total Security\safemon\wd.ini SUCCESS Offset: 0, Length: 4 294 967 295 97 12:38:31,3838072 MCLauncher.exe 84 CloseFile C:\Program Files (x86)\360\Total Security\safemon\wd.ini SUCCESS 97 12:38:31,3839382 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:31,3839457 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: Name 97 12:38:31,3839582 MCLauncher.exe 84 RegOpenKey HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS Desired Access: Read 97 12:38:31,3839737 MCLauncher.exe 84 RegSetInfoKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 97 12:38:31,3840089 MCLauncher.exe 84 RegQueryKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS Query: HandleTags, HandleTags: 0x400 97 12:38:31,3840172 MCLauncher.exe 84 RegOpenKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{62AB5D82-FDC1-4DC3-A9DD-070D1D495D97} SUCCESS Desired Access: Read 97 12:38:31,3840305 MCLauncher.exe 84 RegCloseKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS 97 12:38:31,3840382 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{62AB5D82-FDC1-4DC3-A9DD-070D1D495D97}\Category SUCCESS Type: REG_DWORD, Length: 4, Data: 2 97 12:38:31,3840557 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{62AB5D82-FDC1-4DC3-A9DD-070D1D495D97}\Name SUCCESS Type: REG_SZ, Length: 30, Data: Common AppData 97 12:38:31,3840748 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{62AB5D82-FDC1-4DC3-A9DD-070D1D495D97}\ParentFolder NAME NOT FOUND Length: 144 97 12:38:31,3840881 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{62AB5D82-FDC1-4DC3-A9DD-070D1D495D97}\Description NAME NOT FOUND Length: 144 97 12:38:31,3841009 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{62AB5D82-FDC1-4DC3-A9DD-070D1D495D97}\RelativePath NAME NOT FOUND Length: 144 97 12:38:31,3841125 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{62AB5D82-FDC1-4DC3-A9DD-070D1D495D97}\ParsingName NAME NOT FOUND Length: 144 97 12:38:31,3841244 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{62AB5D82-FDC1-4DC3-A9DD-070D1D495D97}\InfoTip NAME NOT FOUND Length: 144 97 12:38:31,3841363 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{62AB5D82-FDC1-4DC3-A9DD-070D1D495D97}\LocalizedName NAME NOT FOUND Length: 144 97 12:38:31,3841482 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{62AB5D82-FDC1-4DC3-A9DD-070D1D495D97}\Icon NAME NOT FOUND Length: 144 97 12:38:31,3841601 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{62AB5D82-FDC1-4DC3-A9DD-070D1D495D97}\Security NAME NOT FOUND Length: 144 97 12:38:31,3841721 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{62AB5D82-FDC1-4DC3-A9DD-070D1D495D97}\StreamResource NAME NOT FOUND Length: 144 97 12:38:31,3841840 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{62AB5D82-FDC1-4DC3-A9DD-070D1D495D97}\StreamResourceType NAME NOT FOUND Length: 144 97 12:38:31,3841959 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{62AB5D82-FDC1-4DC3-A9DD-070D1D495D97}\LocalRedirectOnly NAME NOT FOUND Length: 144 97 12:38:31,3842078 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{62AB5D82-FDC1-4DC3-A9DD-070D1D495D97}\Roamable NAME NOT FOUND Length: 144 97 12:38:31,3842197 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{62AB5D82-FDC1-4DC3-A9DD-070D1D495D97}\PreCreate NAME NOT FOUND Length: 144 97 12:38:31,3842313 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{62AB5D82-FDC1-4DC3-A9DD-070D1D495D97}\Stream NAME NOT FOUND Length: 144 97 12:38:31,3842433 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{62AB5D82-FDC1-4DC3-A9DD-070D1D495D97}\PublishExpandedPath NAME NOT FOUND Length: 144 97 12:38:31,3842552 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{62AB5D82-FDC1-4DC3-A9DD-070D1D495D97}\DefinitionFlags NAME NOT FOUND Length: 144 97 12:38:31,3842668 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{62AB5D82-FDC1-4DC3-A9DD-070D1D495D97}\Attributes NAME NOT FOUND Length: 144 97 12:38:31,3842787 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{62AB5D82-FDC1-4DC3-A9DD-070D1D495D97}\FolderTypeID NAME NOT FOUND Length: 144 97 12:38:31,3842909 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{62AB5D82-FDC1-4DC3-A9DD-070D1D495D97}\InitFolderHandler NAME NOT FOUND Length: 144 97 12:38:31,3843103 MCLauncher.exe 84 RegQueryKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{62AB5D82-FDC1-4DC3-A9DD-070D1D495D97} SUCCESS Query: HandleTags, HandleTags: 0x400 97 12:38:31,3843181 MCLauncher.exe 84 RegOpenKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{62AB5D82-FDC1-4DC3-A9DD-070D1D495D97}\PropertyBag NAME NOT FOUND Desired Access: Read 97 12:38:31,3843286 MCLauncher.exe 84 RegCloseKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{62AB5D82-FDC1-4DC3-A9DD-070D1D495D97} SUCCESS 97 12:38:31,3843527 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:31,3843588 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: Name 97 12:38:31,3843690 MCLauncher.exe 84 RegOpenKey HKLM\Software\WOW6432Node\Microsoft\Windows NT\CurrentVersion\ProfileList REPARSE Desired Access: Read 97 12:38:31,3843810 MCLauncher.exe 84 RegOpenKey HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\ProfileList SUCCESS Desired Access: Read 97 12:38:31,3843887 MCLauncher.exe 84 RegSetInfoKey HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\ProfileList SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 97 12:38:31,3843943 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\ProfileList\ProgramData SUCCESS Type: REG_EXPAND_SZ, Length: 52, Data: %SystemDrive%\ProgramData 97 12:38:31,3844098 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\ProfileList\ProgramData SUCCESS Type: REG_EXPAND_SZ, Length: 52, Data: %SystemDrive%\ProgramData 97 12:38:31,3844286 MCLauncher.exe 84 RegCloseKey HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\ProfileList SUCCESS 97 12:38:31,3844588 MCLauncher.exe 84 RegOpenKey HKLM\System\CurrentControlSet\Control\FileSystem\ REPARSE Desired Access: Read 97 12:38:31,3844677 MCLauncher.exe 84 RegOpenKey HKLM\System\CurrentControlSet\Control\FileSystem SUCCESS Desired Access: Read 97 12:38:31,3844763 MCLauncher.exe 84 RegSetInfoKey HKLM\System\CurrentControlSet\Control\FileSystem SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 97 12:38:31,3844818 MCLauncher.exe 84 RegQueryValue HKLM\System\CurrentControlSet\Control\FileSystem\LongPathsEnabled SUCCESS Type: REG_DWORD, Length: 4, Data: 0 97 12:38:31,3844976 MCLauncher.exe 84 RegCloseKey HKLM\System\CurrentControlSet\Control\FileSystem SUCCESS 97 12:38:31,3846034 MCLauncher.exe 84 CreateFile C:\ProgramData NAME COLLISION Desired Access: Read Data/List Directory, Synchronize, Disposition: Create, Options: Directory, Synchronous IO Non-Alert, Open Reparse Point, Attributes: N, ShareMode: Read, Write, AllocationSize: 0 97 12:38:31,3850766 MCLauncher.exe 84 CreateFile C:\ProgramData SUCCESS Desired Access: Read Attributes, Disposition: Open, Options: Open Reparse Point, Attributes: n/a, ShareMode: Read, Write, Delete, AllocationSize: n/a, OpenResult: Opened 97 12:38:31,3851043 MCLauncher.exe 84 QueryBasicInformationFile C:\ProgramData SUCCESS CreationTime: 16.07.2016 14:47:48, LastAccessTime: 20.07.2018 20:20:30, LastWriteTime: 20.07.2018 20:20:30, ChangeTime: 20.07.2018 20:20:30, FileAttributes: HDNCI 97 12:38:31,3851138 MCLauncher.exe 84 CloseFile C:\ProgramData SUCCESS 97 12:38:31,3851429 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:31,3851501 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: Name 97 12:38:31,3851625 MCLauncher.exe 84 RegOpenKey HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\KnownFolderSettings NAME NOT FOUND Desired Access: Query Value 97 12:38:31,3851769 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:31,3851828 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: Name 97 12:38:31,3851919 MCLauncher.exe 84 RegOpenKey HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\KnownFolderSettings NAME NOT FOUND Desired Access: Query Value 97 12:38:31,3863594 MCLauncher.exe 84 CreateFile C:\Users\User\Downloads\urlmon.dll NAME NOT FOUND Desired Access: Read Attributes, Disposition: Open, Options: Open Reparse Point, Attributes: n/a, ShareMode: Read, Write, Delete, AllocationSize: n/a 97 12:38:31,3865946 MCLauncher.exe 84 CreateFile C:\Windows\SysWOW64\urlmon.dll SUCCESS Desired Access: Read Attributes, Disposition: Open, Options: Open Reparse Point, Attributes: n/a, ShareMode: Read, Write, Delete, AllocationSize: n/a, OpenResult: Opened 97 12:38:31,3866237 MCLauncher.exe 84 QueryBasicInformationFile C:\Windows\SysWOW64\urlmon.dll SUCCESS CreationTime: 20.07.2018 1:34:59, LastAccessTime: 20.07.2018 1:34:59, LastWriteTime: 30.03.2018 5:58:40, ChangeTime: 20.07.2018 19:24:44, FileAttributes: A 97 12:38:31,3866326 MCLauncher.exe 84 CloseFile C:\Windows\SysWOW64\urlmon.dll SUCCESS 97 12:38:31,3867296 MCLauncher.exe 84 CreateFile C:\Windows\SysWOW64\urlmon.dll SUCCESS Desired Access: Read Data/List Directory, Execute/Traverse, Synchronize, Disposition: Open, Options: Synchronous IO Non-Alert, Non-Directory File, Attributes: n/a, ShareMode: Read, Delete, AllocationSize: n/a, OpenResult: Opened 97 12:38:31,3867836 MCLauncher.exe 84 CreateFileMapping C:\Windows\SysWOW64\urlmon.dll FILE LOCKED WITH ONLY READERS SyncType: SyncTypeCreateSection, PageProtection: PAGE_EXECUTE|PAGE_NOCACHE 97 12:38:31,3868016 MCLauncher.exe 84 QueryNameInformationFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Name: \Users\User\Downloads\MCLauncher.exe 97 12:38:31,3868961 MCLauncher.exe 84 CreateFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Desired Access: Synchronize, Disposition: Open, Options: Synchronous IO Non-Alert, Attributes: N, ShareMode: Read, Write, Delete, AllocationSize: n/a, OpenResult: Opened 97 12:38:31,3869152 MCLauncher.exe 84 CloseFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS 97 12:38:31,3869448 MCLauncher.exe 84 QueryNameInformationFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Name: \Users\User\Downloads\MCLauncher.exe 97 12:38:31,3870321 MCLauncher.exe 84 CreateFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Desired Access: Synchronize, Disposition: Open, Options: Synchronous IO Non-Alert, Attributes: N, ShareMode: Read, Write, Delete, AllocationSize: n/a, OpenResult: Opened 97 12:38:31,3870493 MCLauncher.exe 84 CloseFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS 97 12:38:31,3871213 MCLauncher.exe 84 CreateFileMapping C:\Windows\SysWOW64\urlmon.dll SUCCESS SyncType: SyncTypeOther 97 12:38:31,3871825 MCLauncher.exe 84 Load Image C:\Windows\SysWOW64\urlmon.dll SUCCESS Image Base: 0x72cc0000, Image Size: 0x195000 97 12:38:31,3872693 MCLauncher.exe 84 CloseFile C:\Windows\SysWOW64\urlmon.dll SUCCESS 97 12:38:31,3875073 MCLauncher.exe 84 CreateFile C:\Users\User\Downloads\iertutil.dll NAME NOT FOUND Desired Access: Read Attributes, Disposition: Open, Options: Open Reparse Point, Attributes: n/a, ShareMode: Read, Write, Delete, AllocationSize: n/a 97 12:38:31,3877480 MCLauncher.exe 84 CreateFile C:\Windows\SysWOW64\iertutil.dll SUCCESS Desired Access: Read Attributes, Disposition: Open, Options: Open Reparse Point, Attributes: n/a, ShareMode: Read, Write, Delete, AllocationSize: n/a, OpenResult: Opened 97 12:38:31,3877741 MCLauncher.exe 84 QueryBasicInformationFile C:\Windows\SysWOW64\iertutil.dll SUCCESS CreationTime: 20.07.2018 1:35:05, LastAccessTime: 20.07.2018 1:35:05, LastWriteTime: 30.03.2018 6:32:00, ChangeTime: 20.07.2018 19:25:12, FileAttributes: A 97 12:38:31,3877824 MCLauncher.exe 84 CloseFile C:\Windows\SysWOW64\iertutil.dll SUCCESS 97 12:38:31,3878788 MCLauncher.exe 84 CreateFile C:\Windows\SysWOW64\iertutil.dll SUCCESS Desired Access: Read Data/List Directory, Execute/Traverse, Synchronize, Disposition: Open, Options: Synchronous IO Non-Alert, Non-Directory File, Attributes: n/a, ShareMode: Read, Delete, AllocationSize: n/a, OpenResult: Opened 97 12:38:31,3879062 MCLauncher.exe 84 CreateFileMapping C:\Windows\SysWOW64\iertutil.dll FILE LOCKED WITH ONLY READERS SyncType: SyncTypeCreateSection, PageProtection: PAGE_EXECUTE|PAGE_NOCACHE 97 12:38:31,3879184 MCLauncher.exe 84 QueryNameInformationFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Name: \Users\User\Downloads\MCLauncher.exe 97 12:38:31,3880054 MCLauncher.exe 84 CreateFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Desired Access: Synchronize, Disposition: Open, Options: Synchronous IO Non-Alert, Attributes: N, ShareMode: Read, Write, Delete, AllocationSize: n/a, OpenResult: Opened 97 12:38:31,3880237 MCLauncher.exe 84 CloseFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS 97 12:38:31,3880517 MCLauncher.exe 84 QueryNameInformationFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Name: \Users\User\Downloads\MCLauncher.exe 97 12:38:31,3881376 MCLauncher.exe 84 CreateFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Desired Access: Synchronize, Disposition: Open, Options: Synchronous IO Non-Alert, Attributes: N, ShareMode: Read, Write, Delete, AllocationSize: n/a, OpenResult: Opened 97 12:38:31,3881545 MCLauncher.exe 84 CloseFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS 97 12:38:31,3882210 MCLauncher.exe 84 CreateFileMapping C:\Windows\SysWOW64\iertutil.dll SUCCESS SyncType: SyncTypeOther 97 12:38:31,3882758 MCLauncher.exe 84 Load Image C:\Windows\SysWOW64\iertutil.dll SUCCESS Image Base: 0x725e0000, Image Size: 0x22b000 97 12:38:31,3883487 MCLauncher.exe 84 CloseFile C:\Windows\SysWOW64\iertutil.dll SUCCESS 97 12:38:31,3886277 MCLauncher.exe 84 CreateFile C:\Windows\SysWOW64\iertutil.dll SUCCESS Desired Access: Read Control, Disposition: Open, Options: , Attributes: n/a, ShareMode: Read, Delete, AllocationSize: n/a, OpenResult: Opened 97 12:38:31,3886573 MCLauncher.exe 84 QuerySecurityFile C:\Windows\SysWOW64\iertutil.dll BUFFER OVERFLOW Information: Owner 97 12:38:31,3886656 MCLauncher.exe 84 QuerySecurityFile C:\Windows\SysWOW64\iertutil.dll SUCCESS Information: Owner 97 12:38:31,3886731 MCLauncher.exe 84 CloseFile C:\Windows\SysWOW64\iertutil.dll SUCCESS 97 12:38:31,3888443 MCLauncher.exe 84 CreateFile C:\Windows\SysWOW64\urlmon.dll SUCCESS Desired Access: Read Control, Disposition: Open, Options: , Attributes: n/a, ShareMode: Read, Delete, AllocationSize: n/a, OpenResult: Opened 97 12:38:31,3888726 MCLauncher.exe 84 QuerySecurityFile C:\Windows\SysWOW64\urlmon.dll BUFFER OVERFLOW Information: Owner 97 12:38:31,3888803 MCLauncher.exe 84 QuerySecurityFile C:\Windows\SysWOW64\urlmon.dll SUCCESS Information: Owner 97 12:38:31,3888875 MCLauncher.exe 84 CloseFile C:\Windows\SysWOW64\urlmon.dll SUCCESS 97 12:38:31,3889964 MCLauncher.exe 84 RegQueryValue HKLM\System\CurrentControlSet\Control\WMI\Security\0bca4784-8257-51a0-d9ec-24fe1fe4c90d NAME NOT FOUND Length: 524 97 12:38:31,3890854 MCLauncher.exe 84 RegQueryValue HKLM\System\CurrentControlSet\Control\WMI\Security\ff32ada1-5a4b-583c-889e-a3c027b201f5 NAME NOT FOUND Length: 524 97 12:38:31,3893918 MCLauncher.exe 84 CreateFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Desired Access: Generic Read, Disposition: Open, Options: Synchronous IO Non-Alert, Non-Directory File, Attributes: N, ShareMode: Read, Write, AllocationSize: n/a, OpenResult: Opened 97 12:38:31,3894200 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 2 435 714, Length: 4 096, Priority: Normal 97 12:38:31,3894442 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 2 435 740, Length: 512 97 12:38:31,3894533 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 2 435 772, Length: 512 97 12:38:31,3894619 MCLauncher.exe 84 CloseFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS 97 12:38:31,3895375 MCLauncher.exe 84 CreateFile C:\Users\User\Downloads\MCLauncher.exe\win32com\ PATH NOT FOUND Desired Access: Read Data/List Directory, Synchronize, Disposition: Open, Options: Directory, Synchronous IO Non-Alert, Attributes: n/a, ShareMode: Read, Write, Delete, AllocationSize: n/a 97 12:38:31,3896345 MCLauncher.exe 84 CreateFile C:\Users\User\Downloads\MCLauncher.exe NOT A DIRECTORY Desired Access: Read Data/List Directory, Synchronize, Disposition: Open, Options: Directory, Synchronous IO Non-Alert, Attributes: n/a, ShareMode: Read, Write, Delete, AllocationSize: n/a 97 12:38:31,3897398 MCLauncher.exe 84 CreateFile C:\Users\User\Downloads\MCLauncher.exe NOT A DIRECTORY Desired Access: Read Data/List Directory, Synchronize, Disposition: Open, Options: Directory, Synchronous IO Non-Alert, Attributes: n/a, ShareMode: Read, Write, Delete, AllocationSize: n/a 97 12:38:31,3898783 MCLauncher.exe 84 CreateFile C:\Users\User\Downloads SUCCESS Desired Access: Read Data/List Directory, Synchronize, Disposition: Open, Options: Directory, Synchronous IO Non-Alert, Attributes: n/a, ShareMode: Read, Write, Delete, AllocationSize: n/a, OpenResult: Opened 97 12:38:31,3898982 MCLauncher.exe 84 QueryDirectory C:\Users\User\Downloads\MCLauncher.exe SUCCESS Filter: MCLauncher.exe, 1: MCLauncher.exe 97 12:38:31,3899201 MCLauncher.exe 84 CloseFile C:\Users\User\Downloads SUCCESS 97 12:38:31,3900684 MCLauncher.exe 84 CreateFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Desired Access: Generic Read, Disposition: Open, Options: Synchronous IO Non-Alert, Non-Directory File, Attributes: N, ShareMode: Read, Write, AllocationSize: n/a, OpenResult: Opened 97 12:38:31,3900908 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 2 387 475, Length: 4 096, Priority: Normal 97 12:38:31,3901063 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 2 387 501, Length: 512 97 12:38:31,3901155 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 2 387 533, Length: 5 120 97 12:38:31,3901235 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 2 392 653, Length: 512 97 12:38:31,3901313 MCLauncher.exe 84 CloseFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS 97 12:38:31,3903302 MCLauncher.exe 84 CreateFile C:\Users\User\Downloads\MCLauncher.exe\win32com\ PATH NOT FOUND Desired Access: Read Data/List Directory, Synchronize, Disposition: Open, Options: Directory, Synchronous IO Non-Alert, Attributes: n/a, ShareMode: Read, Write, Delete, AllocationSize: n/a 97 12:38:31,3904291 MCLauncher.exe 84 CreateFile C:\Users\User\Downloads\MCLauncher.exe NOT A DIRECTORY Desired Access: Read Data/List Directory, Synchronize, Disposition: Open, Options: Directory, Synchronous IO Non-Alert, Attributes: n/a, ShareMode: Read, Write, Delete, AllocationSize: n/a 97 12:38:31,3905183 MCLauncher.exe 84 CreateFile C:\Users\User\Downloads\MCLauncher.exe NOT A DIRECTORY Desired Access: Read Data/List Directory, Synchronize, Disposition: Open, Options: Directory, Synchronous IO Non-Alert, Attributes: n/a, ShareMode: Read, Write, Delete, AllocationSize: n/a 97 12:38:31,3906106 MCLauncher.exe 84 CreateFile C:\Users\User\Downloads SUCCESS Desired Access: Read Data/List Directory, Synchronize, Disposition: Open, Options: Directory, Synchronous IO Non-Alert, Attributes: n/a, ShareMode: Read, Write, Delete, AllocationSize: n/a, OpenResult: Opened 97 12:38:31,3906297 MCLauncher.exe 84 QueryDirectory C:\Users\User\Downloads\MCLauncher.exe SUCCESS Filter: MCLauncher.exe, 1: MCLauncher.exe 97 12:38:31,3906820 MCLauncher.exe 84 CloseFile C:\Users\User\Downloads SUCCESS 97 12:38:31,3908231 MCLauncher.exe 84 CreateFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Desired Access: Generic Read, Disposition: Open, Options: Synchronous IO Non-Alert, Non-Directory File, Attributes: N, ShareMode: Read, Write, AllocationSize: n/a, OpenResult: Opened 97 12:38:31,3908458 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 2 400 491, Length: 4 096, Priority: Normal 97 12:38:31,3908607 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 2 400 517, Length: 512 97 12:38:31,3908696 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 2 400 548, Length: 6 656 97 12:38:31,3908760 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 2 407 204, Length: 512 97 12:38:31,3908837 MCLauncher.exe 84 CloseFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS 97 12:38:31,3911098 MCLauncher.exe 84 RegQueryKey HKCU SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:31,3911181 MCLauncher.exe 84 RegQueryKey HKCU SUCCESS Query: Name 97 12:38:31,3911306 MCLauncher.exe 84 RegOpenKey HKCU\Software\Python\PythonCore\MCLauncher\Modules\winerror NAME NOT FOUND Desired Access: Query Value 97 12:38:31,3911478 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:31,3911525 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: Name 97 12:38:31,3911625 MCLauncher.exe 84 RegOpenKey HKLM\Software\WOW6432Node\Python\PythonCore\MCLauncher\Modules\winerror NAME NOT FOUND Desired Access: Query Value 97 12:38:31,3912766 MCLauncher.exe 84 CreateFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Desired Access: Generic Read, Disposition: Open, Options: Synchronous IO Non-Alert, Non-Directory File, Attributes: N, ShareMode: Read, Write, AllocationSize: n/a, OpenResult: Opened 97 12:38:31,3913002 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 2 347 472, Length: 4 096, Priority: Normal 97 12:38:31,3913168 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 2 347 498, Length: 512 97 12:38:31,3913256 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 2 347 514, Length: 37 888 97 12:38:31,3913381 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 2 385 402, Length: 512 97 12:38:31,3913467 MCLauncher.exe 84 CloseFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS 97 12:38:31,3924400 MCLauncher.exe 84 CreateFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Desired Access: Generic Read, Disposition: Open, Options: Synchronous IO Non-Alert, Non-Directory File, Attributes: N, ShareMode: Read, Write, AllocationSize: n/a, OpenResult: Opened 97 12:38:31,3924643 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 2 392 977, Length: 4 096, Priority: Normal 97 12:38:31,3924785 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 2 393 003, Length: 512 97 12:38:31,3924873 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 2 393 032, Length: 7 168 97 12:38:31,3924934 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 2 400 200, Length: 512 97 12:38:31,3925020 MCLauncher.exe 84 CloseFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS 97 12:38:31,3966906 MCLauncher.exe 84 RegQueryKey HKCU SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:31,3967022 MCLauncher.exe 84 RegQueryKey HKCU SUCCESS Query: Name 97 12:38:31,3967177 MCLauncher.exe 84 RegOpenKey HKCU\Software\Python\PythonCore\MCLauncher\Modules\pywintypes NAME NOT FOUND Desired Access: Query Value 97 12:38:31,3967349 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:31,3967401 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: Name 97 12:38:31,3967504 MCLauncher.exe 84 RegOpenKey HKLM\Software\WOW6432Node\Python\PythonCore\MCLauncher\Modules\pywintypes NAME NOT FOUND Desired Access: Query Value 97 12:38:31,3969058 MCLauncher.exe 84 CreateFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Desired Access: Generic Read, Disposition: Open, Options: Synchronous IO Non-Alert, Non-Directory File, Attributes: N, ShareMode: Read, Write, AllocationSize: n/a, OpenResult: Opened 97 12:38:31,3969352 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 8 348 909, Length: 4 096, Priority: Normal 97 12:38:31,3969551 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 8 348 935, Length: 512 97 12:38:31,3969648 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 8 348 955, Length: 42 496 97 12:38:31,3969892 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 8 391 451, Length: 512 97 12:38:31,3969986 MCLauncher.exe 84 CloseFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS 97 12:38:31,3979858 MCLauncher.exe 84 CreateFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Desired Access: Generic Read, Disposition: Open, Options: Synchronous IO Non-Alert, Non-Directory File, Attributes: N, ShareMode: Read, Write, AllocationSize: n/a, OpenResult: Opened 97 12:38:31,3980110 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 2 407 375, Length: 4 096, Priority: Normal 97 12:38:31,3980273 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 2 407 401, Length: 512 97 12:38:31,3980368 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 2 407 433, Length: 6 144 97 12:38:31,3980443 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 2 413 577, Length: 512 97 12:38:31,3980528 MCLauncher.exe 84 CloseFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS 97 12:38:31,3982332 MCLauncher.exe 84 RegQueryKey HKCU SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:31,3982399 MCLauncher.exe 84 RegQueryKey HKCU SUCCESS Query: Name 97 12:38:31,3982507 MCLauncher.exe 84 RegOpenKey HKCU\Software\Python\PythonCore\MCLauncher\Modules\glob NAME NOT FOUND Desired Access: Query Value 97 12:38:31,3982631 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:31,3982681 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: Name 97 12:38:31,3982773 MCLauncher.exe 84 RegOpenKey HKLM\Software\WOW6432Node\Python\PythonCore\MCLauncher\Modules\glob NAME NOT FOUND Desired Access: Query Value 97 12:38:31,3983881 MCLauncher.exe 84 CreateFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Desired Access: Generic Read, Disposition: Open, Options: Synchronous IO Non-Alert, Non-Directory File, Attributes: N, ShareMode: Read, Write, AllocationSize: n/a, OpenResult: Opened 97 12:38:31,3984116 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 2 095 792, Length: 4 096, Priority: Normal 97 12:38:31,3984310 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 2 095 818, Length: 512 97 12:38:31,3984410 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 2 095 830, Length: 1 024 97 12:38:31,3984474 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 2 096 854, Length: 512 97 12:38:31,3984557 MCLauncher.exe 84 CloseFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS 97 12:38:31,3987327 MCLauncher.exe 84 CreateFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Desired Access: Generic Read, Disposition: Open, Options: Synchronous IO Non-Alert, Non-Directory File, Attributes: N, ShareMode: Read, Write, AllocationSize: n/a, OpenResult: Opened 97 12:38:31,3987568 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 2 387 081, Length: 4 096, Priority: Normal 97 12:38:31,3987710 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 2 387 107, Length: 512 97 12:38:31,3987790 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 2 387 143, Length: 512 97 12:38:31,3987876 MCLauncher.exe 84 CloseFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS 97 12:38:31,3990976 MCLauncher.exe 84 RegQueryKey HKCU SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:31,3991051 MCLauncher.exe 84 RegQueryKey HKCU SUCCESS Query: Name 97 12:38:31,3991159 MCLauncher.exe 84 RegOpenKey HKCU\Software\Python\PythonCore\MCLauncher\Modules\helpers NAME NOT FOUND Desired Access: Query Value 97 12:38:31,3991286 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:31,3991334 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: Name 97 12:38:31,3991422 MCLauncher.exe 84 RegOpenKey HKLM\Software\WOW6432Node\Python\PythonCore\MCLauncher\Modules\helpers NAME NOT FOUND Desired Access: Query Value 97 12:38:31,3992641 MCLauncher.exe 84 CreateFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Desired Access: Generic Read, Disposition: Open, Options: Synchronous IO Non-Alert, Non-Directory File, Attributes: N, ShareMode: Read, Write, AllocationSize: n/a, OpenResult: Opened 97 12:38:31,3992882 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 2 601 095, Length: 4 096, Priority: Normal 97 12:38:31,3993032 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 2 601 121, Length: 512 97 12:38:31,3993126 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 2 601 136, Length: 93 184 97 12:38:31,3993351 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 2 694 320, Length: 512 97 12:38:31,3993436 MCLauncher.exe 84 CloseFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS 97 12:38:31,4011171 MCLauncher.exe 84 CreateFile C:\Users\User\OneDrive\Desktop NAME NOT FOUND Desired Access: Read Attributes, Disposition: Open, Options: Open Reparse Point, Attributes: n/a, ShareMode: Read, Write, Delete, AllocationSize: n/a 97 12:38:31,4012221 MCLauncher.exe 84 CreateFile C:\Users\User\Desktop SUCCESS Desired Access: Read Data/List Directory, Synchronize, Disposition: Open, Options: Directory, Synchronous IO Non-Alert, Attributes: n/a, ShareMode: Read, Write, Delete, AllocationSize: n/a, OpenResult: Opened 97 12:38:31,4012470 MCLauncher.exe 84 QueryDirectory C:\Users\User\Desktop\* SUCCESS Filter: *, 1: . 97 12:38:31,4012756 MCLauncher.exe 84 QueryDirectory C:\Users\User\Desktop SUCCESS 0: .., 1: desktop.ini, 2: MCLauncher.lnk, 3: ProcessMonitor.zip, 4: Uninstall Tool.lnk, 5: Yandex.lnk, 6: µTorrent.lnk, 7: Помощник по обновлению до Windows 10.lnk 97 12:38:31,4012958 MCLauncher.exe 84 QueryDirectory C:\Users\User\Desktop NO MORE FILES 97 12:38:31,4013049 MCLauncher.exe 84 CloseFile C:\Users\User\Desktop SUCCESS 97 12:38:31,4014155 MCLauncher.exe 84 CreateFile C:\Users\User\Desktop SUCCESS Desired Access: Read Data/List Directory, Synchronize, Disposition: Open, Options: Directory, Synchronous IO Non-Alert, Attributes: n/a, ShareMode: Read, Write, Delete, AllocationSize: n/a, OpenResult: Opened 97 12:38:31,4014368 MCLauncher.exe 84 QueryDirectory C:\Users\User\Desktop\* SUCCESS Filter: *, 1: . 97 12:38:31,4014537 MCLauncher.exe 84 QueryDirectory C:\Users\User\Desktop SUCCESS 0: .., 1: desktop.ini, 2: MCLauncher.lnk, 3: ProcessMonitor.zip, 4: Uninstall Tool.lnk, 5: Yandex.lnk, 6: µTorrent.lnk, 7: Помощник по обновлению до Windows 10.lnk 97 12:38:31,4014698 MCLauncher.exe 84 QueryDirectory C:\Users\User\Desktop NO MORE FILES 97 12:38:31,4014784 MCLauncher.exe 84 CloseFile C:\Users\User\Desktop SUCCESS 97 12:38:31,4017366 MCLauncher.exe 84 CreateFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Desired Access: Read Attributes, Disposition: Open, Options: Open Reparse Point, Attributes: n/a, ShareMode: Read, Write, Delete, AllocationSize: n/a, OpenResult: Opened 97 12:38:31,4017524 MCLauncher.exe 84 QueryNetworkOpenInformationFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS CreationTime: 24.08.2018 12:13:55, LastAccessTime: 24.08.2018 12:13:55, LastWriteTime: 24.08.2018 12:14:13, ChangeTime: 24.08.2018 12:14:13, AllocationSize: 01.01.1601 3:00:01, EndOfFile: 01.01.1601 3:00:01, FileAttributes: A 97 12:38:31,4017607 MCLauncher.exe 84 CloseFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS 97 12:38:31,4019904 MCLauncher.exe 84 CreateFile C:\Users\User\AppData\Roaming\MCLauncher SUCCESS Desired Access: Read Attributes, Disposition: Open, Options: Open Reparse Point, Attributes: n/a, ShareMode: Read, Write, Delete, AllocationSize: n/a, OpenResult: Opened 97 12:38:31,4020067 MCLauncher.exe 84 QueryNetworkOpenInformationFile C:\Users\User\AppData\Roaming\MCLauncher SUCCESS CreationTime: 24.08.2018 12:30:11, LastAccessTime: 24.08.2018 12:30:32, LastWriteTime: 24.08.2018 12:30:32, ChangeTime: 24.08.2018 12:30:32, AllocationSize: 01.01.1601 3:00:00, EndOfFile: 01.01.1601 3:00:00, FileAttributes: D 97 12:38:31,4020142 MCLauncher.exe 84 CloseFile C:\Users\User\AppData\Roaming\MCLauncher SUCCESS 97 12:38:31,4021217 MCLauncher.exe 84 CreateFile C:\Users\User\AppData\Roaming\MCLauncher SUCCESS Desired Access: Execute/Traverse, Synchronize, Disposition: Open, Options: Directory, Synchronous IO Non-Alert, Attributes: n/a, ShareMode: Read, Write, AllocationSize: n/a, OpenResult: Opened 97 12:38:31,4021411 MCLauncher.exe 84 CloseFile C:\Users\User\Downloads SUCCESS 97 12:38:31,4022613 MCLauncher.exe 84 CreateFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Desired Access: Generic Read, Disposition: Open, Options: Synchronous IO Non-Alert, Non-Directory File, Attributes: N, ShareMode: Read, Write, AllocationSize: n/a, OpenResult: Opened 97 12:38:31,4022838 MCLauncher.exe 84 QueryInformationVolume C:\Users\User\Downloads\MCLauncher.exe BUFFER OVERFLOW VolumeCreationTime: 19.07.2018 19:30:42, VolumeSerialNumber: B6D8-C2CA, SupportsObjects: True, VolumeLabel: Wina 97 12:38:31,4022940 MCLauncher.exe 84 QueryAllInformationFile C:\Users\User\Downloads\MCLauncher.exe BUFFER OVERFLOW CreationTime: 24.08.2018 12:13:55, LastAccessTime: 24.08.2018 12:13:55, LastWriteTime: 24.08.2018 12:14:13, ChangeTime: 24.08.2018 12:14:13, FileAttributes: A, AllocationSize: 17 244 160, EndOfFile: 17 240 149, NumberOfLinks: 1, DeletePending: False, Directory: False, IndexNumber: 0x500000001fca2, EaSize: 0, Access: Generic Read, Position: 0, Mode: Synchronous IO Non-Alert, AlignmentRequirement: Word 97 12:38:31,4023098 MCLauncher.exe 84 QueryInformationVolume C:\Users\User\Downloads\MCLauncher.exe BUFFER OVERFLOW VolumeCreationTime: 19.07.2018 19:30:42, VolumeSerialNumber: B6D8-C2CA, SupportsObjects: True, VolumeLabel: Wina 97 12:38:31,4023165 MCLauncher.exe 84 QueryAllInformationFile C:\Users\User\Downloads\MCLauncher.exe BUFFER OVERFLOW CreationTime: 24.08.2018 12:13:55, LastAccessTime: 24.08.2018 12:13:55, LastWriteTime: 24.08.2018 12:14:13, ChangeTime: 24.08.2018 12:14:13, FileAttributes: A, AllocationSize: 17 244 160, EndOfFile: 17 240 149, NumberOfLinks: 1, DeletePending: False, Directory: False, IndexNumber: 0x500000001fca2, EaSize: 0, Access: Generic Read, Position: 0, Mode: Synchronous IO Non-Alert, AlignmentRequirement: Word 97 12:38:31,4119250 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 0, Length: 17 240 064, Priority: Normal 97 12:38:31,4157775 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Offset: 17 240 064, Length: 85 97 12:38:31,4157897 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\MCLauncher.exe END OF FILE Offset: 17 240 149, Length: 4 096 97 12:38:31,4158110 MCLauncher.exe 84 CloseFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS 97 12:38:31,4159955 MCLauncher.exe 84 CreateFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Desired Access: Generic Write, Read Attributes, Disposition: OverwriteIf, Options: Synchronous IO Non-Alert, Non-Directory File, Attributes: N, ShareMode: Read, Write, AllocationSize: 0, OpenResult: Overwritten 97 12:38:31,4172875 MCLauncher.exe 84 QueryInformationVolume C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe BUFFER OVERFLOW VolumeCreationTime: 19.07.2018 19:30:42, VolumeSerialNumber: B6D8-C2CA, SupportsObjects: True, VolumeLabel: Wina 97 12:38:31,4172988 MCLauncher.exe 84 QueryAllInformationFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe BUFFER OVERFLOW CreationTime: 24.08.2018 12:30:11, LastAccessTime: 24.08.2018 12:30:11, LastWriteTime: 24.08.2018 12:38:31, ChangeTime: 24.08.2018 12:38:31, FileAttributes: A, AllocationSize: 0, EndOfFile: 0, NumberOfLinks: 1, DeletePending: False, Directory: False, IndexNumber: 0x600000001de63, EaSize: 0, Access: Generic Write, Read Attributes, Position: 0, Mode: Synchronous IO Non-Alert, AlignmentRequirement: Word 97 12:38:31,4173285 MCLauncher.exe 84 WriteFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 0, Length: 17 240 064, Priority: Normal 97 12:38:31,4214416 MCLauncher.exe 84 WriteFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 16 777 216, Length: 262 144, I/O Flags: Non-cached, Paging I/O, Synchronous Paging I/O, Priority: Normal 97 12:38:31,4243757 MCLauncher.exe 84 WriteFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 039 360, Length: 200 704, I/O Flags: Non-cached, Paging I/O, Synchronous Paging I/O, Priority: Normal 97 12:38:31,4247585 MCLauncher.exe 84 WriteFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 240 064, Length: 85, Priority: Normal 97 12:38:31,4247923 MCLauncher.exe 84 CloseFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS 97 12:38:31,4248104 MCLauncher.exe 84 QueryNameInformationFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Name: \Users\User\Downloads\MCLauncher.exe 97 12:38:31,4249564 MCLauncher.exe 84 CreateFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Desired Access: Synchronize, Disposition: Open, Options: Synchronous IO Non-Alert, Attributes: N, ShareMode: Read, Write, Delete, AllocationSize: n/a, OpenResult: Opened 97 12:38:31,4249760 MCLauncher.exe 84 CloseFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS 97 12:38:31,4346622 MCLauncher.exe 84 ReadFile C:\Windows\SysWOW64\shell32.dll SUCCESS Offset: 2 507 776, Length: 32 768, I/O Flags: Non-cached, Paging I/O, Synchronous Paging I/O, Priority: Normal 97 12:38:31,4461753 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:31,4461861 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: Name 97 12:38:31,4462035 MCLauncher.exe 84 RegOpenKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\ShellCompatibility\Applications\MCLauncher.exe NAME NOT FOUND Desired Access: Query Value, Enumerate Sub Keys 97 12:38:31,4462689 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:31,4462742 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: Name 97 12:38:31,4462839 MCLauncher.exe 84 RegOpenKey HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Policies\Explorer REPARSE Desired Access: Query Value 97 12:38:31,4462936 MCLauncher.exe 84 RegOpenKey HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer SUCCESS Desired Access: Query Value 97 12:38:31,4463052 MCLauncher.exe 84 RegSetInfoKey HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 97 12:38:31,4463127 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer\EnableShellExecuteHooks NAME NOT FOUND Length: 144 97 12:38:31,4463360 MCLauncher.exe 84 RegCloseKey HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer SUCCESS 97 12:38:31,4463454 MCLauncher.exe 84 RegQueryKey HKCU SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:31,4463509 MCLauncher.exe 84 RegQueryKey HKCU SUCCESS Query: Name 97 12:38:31,4463728 MCLauncher.exe 84 RegOpenKey HKCU\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer SUCCESS Desired Access: Query Value 97 12:38:31,4463914 MCLauncher.exe 84 RegSetInfoKey HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 97 12:38:31,4463988 MCLauncher.exe 84 RegQueryValue HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer\EnableShellExecuteHooks NAME NOT FOUND Length: 144 97 12:38:31,4464182 MCLauncher.exe 84 RegCloseKey HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer SUCCESS 97 12:38:31,4467211 MCLauncher.exe 84 CreateFile C:\Users\User\AppData\Roaming\MCLauncher SUCCESS Desired Access: Read Attributes, Disposition: Open, Options: Open Reparse Point, Attributes: n/a, ShareMode: Read, Write, Delete, AllocationSize: n/a, OpenResult: Opened 97 12:38:31,4467421 MCLauncher.exe 84 QueryBasicInformationFile C:\Users\User\AppData\Roaming\MCLauncher SUCCESS CreationTime: 24.08.2018 12:30:11, LastAccessTime: 24.08.2018 12:30:32, LastWriteTime: 24.08.2018 12:30:32, ChangeTime: 24.08.2018 12:30:32, FileAttributes: D 97 12:38:31,4467513 MCLauncher.exe 84 CloseFile C:\Users\User\AppData\Roaming\MCLauncher SUCCESS 97 12:38:31,4468837 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:31,4468901 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: Name 97 12:38:31,4469009 MCLauncher.exe 84 RegOpenKey HKLM\Software\WOW6432Node\Policies\Microsoft\Windows\Explorer REPARSE Desired Access: Query Value 97 12:38:31,4469097 MCLauncher.exe 84 RegOpenKey HKLM\SOFTWARE\Policies\Microsoft\Windows\Explorer NAME NOT FOUND Desired Access: Query Value 97 12:38:31,4469208 MCLauncher.exe 84 RegQueryKey HKCU SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:31,4469258 MCLauncher.exe 84 RegQueryKey HKCU SUCCESS Query: Name 97 12:38:31,4469333 MCLauncher.exe 84 RegOpenKey HKCU\Software\Policies\Microsoft\Windows\Explorer NAME NOT FOUND Desired Access: Query Value 97 12:38:31,4470316 MCLauncher.exe 84 CreateFile C:\Users\User\AppData\Roaming\MCLauncher SUCCESS Desired Access: Read Data/List Directory, Read Attributes, Synchronize, Disposition: Open, Options: Synchronous IO Non-Alert, Attributes: n/a, ShareMode: Read, Write, Delete, AllocationSize: n/a, OpenResult: Opened 97 12:38:31,4470535 MCLauncher.exe 84 QueryRemoteProtocolInformation C:\Users\User\AppData\Roaming\MCLauncher INVALID PARAMETER 97 12:38:31,4470635 MCLauncher.exe 84 QueryDirectory C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Filter: MCLauncher.exe, 1: MCLauncher.exe 97 12:38:31,4470837 MCLauncher.exe 84 CloseFile C:\Users\User\AppData\Roaming\MCLauncher SUCCESS 97 12:38:31,4473766 MCLauncher.exe 84 CreateFile C:\Windows\SysWOW64\propsys.dll SUCCESS Desired Access: Read Attributes, Disposition: Open, Options: Open Reparse Point, Attributes: n/a, ShareMode: Read, Write, Delete, AllocationSize: n/a, OpenResult: Opened 97 12:38:31,4474068 MCLauncher.exe 84 QueryBasicInformationFile C:\Windows\SysWOW64\propsys.dll SUCCESS CreationTime: 20.07.2018 1:34:17, LastAccessTime: 20.07.2018 1:34:17, LastWriteTime: 06.03.2018 9:03:35, ChangeTime: 20.07.2018 19:24:46, FileAttributes: A 97 12:38:31,4474151 MCLauncher.exe 84 CloseFile C:\Windows\SysWOW64\propsys.dll SUCCESS 97 12:38:31,4475140 MCLauncher.exe 84 CreateFile C:\Windows\SysWOW64\propsys.dll SUCCESS Desired Access: Read Data/List Directory, Execute/Traverse, Synchronize, Disposition: Open, Options: Synchronous IO Non-Alert, Non-Directory File, Attributes: n/a, ShareMode: Read, Delete, AllocationSize: n/a, OpenResult: Opened 97 12:38:31,4475431 MCLauncher.exe 84 CreateFileMapping C:\Windows\SysWOW64\propsys.dll FILE LOCKED WITH ONLY READERS SyncType: SyncTypeCreateSection, PageProtection: PAGE_EXECUTE|PAGE_NOCACHE 97 12:38:31,4475605 MCLauncher.exe 84 QueryNameInformationFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Name: \Users\User\Downloads\MCLauncher.exe 97 12:38:31,4476528 MCLauncher.exe 84 CreateFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Desired Access: Synchronize, Disposition: Open, Options: Synchronous IO Non-Alert, Attributes: N, ShareMode: Read, Write, Delete, AllocationSize: n/a, OpenResult: Opened 97 12:38:31,4476725 MCLauncher.exe 84 CloseFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS 97 12:38:31,4477021 MCLauncher.exe 84 QueryNameInformationFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Name: \Users\User\Downloads\MCLauncher.exe 97 12:38:31,4478030 MCLauncher.exe 84 CreateFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Desired Access: Synchronize, Disposition: Open, Options: Synchronous IO Non-Alert, Attributes: N, ShareMode: Read, Write, Delete, AllocationSize: n/a, OpenResult: Opened 97 12:38:31,4478207 MCLauncher.exe 84 CloseFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS 97 12:38:31,4478938 MCLauncher.exe 84 CreateFileMapping C:\Windows\SysWOW64\propsys.dll SUCCESS SyncType: SyncTypeOther 97 12:38:31,4479545 MCLauncher.exe 84 Load Image C:\Windows\SysWOW64\propsys.dll SUCCESS Image Base: 0x728e0000, Image Size: 0x14f000 97 12:38:31,4480299 MCLauncher.exe 84 CloseFile C:\Windows\SysWOW64\propsys.dll SUCCESS 97 12:38:31,4482202 MCLauncher.exe 84 CreateFile C:\Windows\SysWOW64\propsys.dll SUCCESS Desired Access: Read Control, Disposition: Open, Options: , Attributes: n/a, ShareMode: Read, Delete, AllocationSize: n/a, OpenResult: Opened 97 12:38:31,4482499 MCLauncher.exe 84 QuerySecurityFile C:\Windows\SysWOW64\propsys.dll BUFFER OVERFLOW Information: Owner 97 12:38:31,4482784 MCLauncher.exe 84 QuerySecurityFile C:\Windows\SysWOW64\propsys.dll SUCCESS Information: Owner 97 12:38:31,4482900 MCLauncher.exe 84 CloseFile C:\Windows\SysWOW64\propsys.dll SUCCESS 97 12:38:31,4484962 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:31,4485031 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: Name 97 12:38:31,4485147 MCLauncher.exe 84 RegOpenKey HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Policies\Explorer REPARSE Desired Access: Query Value 97 12:38:31,4485244 MCLauncher.exe 84 RegOpenKey HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer SUCCESS Desired Access: Query Value 97 12:38:31,4485322 MCLauncher.exe 84 RegSetInfoKey HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 97 12:38:31,4485399 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer\NoPropertiesMyComputer NAME NOT FOUND Length: 144 97 12:38:31,4485574 MCLauncher.exe 84 RegCloseKey HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer SUCCESS 97 12:38:31,4485651 MCLauncher.exe 84 RegQueryKey HKCU SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:31,4485704 MCLauncher.exe 84 RegQueryKey HKCU SUCCESS Query: Name 97 12:38:31,4485790 MCLauncher.exe 84 RegOpenKey HKCU\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer SUCCESS Desired Access: Query Value 97 12:38:31,4485881 MCLauncher.exe 84 RegSetInfoKey HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 97 12:38:31,4485928 MCLauncher.exe 84 RegQueryValue HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer\NoPropertiesMyComputer NAME NOT FOUND Length: 144 97 12:38:31,4486064 MCLauncher.exe 84 RegCloseKey HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer SUCCESS 97 12:38:31,4486147 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:31,4486197 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: Name 97 12:38:31,4486289 MCLauncher.exe 84 RegOpenKey HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Policies\Explorer REPARSE Desired Access: Query Value 97 12:38:31,4486366 MCLauncher.exe 84 RegOpenKey HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer SUCCESS Desired Access: Query Value 97 12:38:31,4486424 MCLauncher.exe 84 RegSetInfoKey HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 97 12:38:31,4486469 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer\NoPropertiesRecycleBin NAME NOT FOUND Length: 144 97 12:38:31,4486591 MCLauncher.exe 84 RegCloseKey HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer SUCCESS 97 12:38:31,4486660 MCLauncher.exe 84 RegQueryKey HKCU SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:31,4486710 MCLauncher.exe 84 RegQueryKey HKCU SUCCESS Query: Name 97 12:38:31,4486787 MCLauncher.exe 84 RegOpenKey HKCU\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer SUCCESS Desired Access: Query Value 97 12:38:31,4486868 MCLauncher.exe 84 RegSetInfoKey HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 97 12:38:31,4486909 MCLauncher.exe 84 RegQueryValue HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer\NoPropertiesRecycleBin NAME NOT FOUND Length: 144 97 12:38:31,4487031 MCLauncher.exe 84 RegCloseKey HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer SUCCESS 97 12:38:31,4487123 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:31,4487175 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: Name 97 12:38:31,4487258 MCLauncher.exe 84 RegOpenKey HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Policies\Explorer REPARSE Desired Access: Query Value 97 12:38:31,4487333 MCLauncher.exe 84 RegOpenKey HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer SUCCESS Desired Access: Query Value 97 12:38:31,4487389 MCLauncher.exe 84 RegSetInfoKey HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 97 12:38:31,4487430 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer\NoControlPanel NAME NOT FOUND Length: 144 97 12:38:31,4487546 MCLauncher.exe 84 RegCloseKey HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer SUCCESS 97 12:38:31,4487616 MCLauncher.exe 84 RegQueryKey HKCU SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:31,4487666 MCLauncher.exe 84 RegQueryKey HKCU SUCCESS Query: Name 97 12:38:31,4487740 MCLauncher.exe 84 RegOpenKey HKCU\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer SUCCESS Desired Access: Query Value 97 12:38:31,4487818 MCLauncher.exe 84 RegSetInfoKey HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 97 12:38:31,4487860 MCLauncher.exe 84 RegQueryValue HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer\NoControlPanel NAME NOT FOUND Length: 144 97 12:38:31,4487973 MCLauncher.exe 84 RegCloseKey HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer SUCCESS 97 12:38:31,4488056 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:31,4488106 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: Name 97 12:38:31,4488186 MCLauncher.exe 84 RegOpenKey HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Policies\Explorer REPARSE Desired Access: Query Value 97 12:38:31,4488259 MCLauncher.exe 84 RegOpenKey HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer SUCCESS Desired Access: Query Value 97 12:38:31,4488314 MCLauncher.exe 84 RegSetInfoKey HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 97 12:38:31,4488353 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer\NoSetFolders NAME NOT FOUND Length: 144 97 12:38:31,4488472 MCLauncher.exe 84 RegCloseKey HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer SUCCESS 97 12:38:31,4488536 MCLauncher.exe 84 RegQueryKey HKCU SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:31,4488585 MCLauncher.exe 84 RegQueryKey HKCU SUCCESS Query: Name 97 12:38:31,4488663 MCLauncher.exe 84 RegOpenKey HKCU\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer SUCCESS Desired Access: Query Value 97 12:38:31,4488738 MCLauncher.exe 84 RegSetInfoKey HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 97 12:38:31,4488777 MCLauncher.exe 84 RegQueryValue HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer\NoSetFolders NAME NOT FOUND Length: 144 97 12:38:31,4488885 MCLauncher.exe 84 RegCloseKey HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer SUCCESS 97 12:38:31,4488962 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:31,4489012 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: Name 97 12:38:31,4489092 MCLauncher.exe 84 RegOpenKey HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Policies\Explorer REPARSE Desired Access: Query Value 97 12:38:31,4489162 MCLauncher.exe 84 RegOpenKey HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer SUCCESS Desired Access: Query Value 97 12:38:31,4489217 MCLauncher.exe 84 RegSetInfoKey HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 97 12:38:31,4489261 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer\NoInternetIcon NAME NOT FOUND Length: 144 97 12:38:31,4489383 MCLauncher.exe 84 RegCloseKey HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer SUCCESS 97 12:38:31,4489450 MCLauncher.exe 84 RegQueryKey HKCU SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:31,4489500 MCLauncher.exe 84 RegQueryKey HKCU SUCCESS Query: Name 97 12:38:31,4489572 MCLauncher.exe 84 RegOpenKey HKCU\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer SUCCESS Desired Access: Query Value 97 12:38:31,4489647 MCLauncher.exe 84 RegSetInfoKey HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 97 12:38:31,4489688 MCLauncher.exe 84 RegQueryValue HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer\NoInternetIcon NAME NOT FOUND Length: 144 97 12:38:31,4489799 MCLauncher.exe 84 RegCloseKey HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer SUCCESS 97 12:38:31,4490098 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:31,4490148 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: Name 97 12:38:31,4490234 MCLauncher.exe 84 RegOpenKey HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\Desktop\NameSpace SUCCESS Desired Access: Query Value 97 12:38:31,4490361 MCLauncher.exe 84 RegSetInfoKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\Desktop\NameSpace SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 97 12:38:31,4490406 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\Desktop\NameSpace\ValidateRegItems NAME NOT FOUND Length: 144 97 12:38:31,4490522 MCLauncher.exe 84 RegCloseKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\Desktop\NameSpace SUCCESS 97 12:38:31,4490591 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:31,4490641 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: Name 97 12:38:31,4490722 MCLauncher.exe 84 RegOpenKey HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\Desktop\NameSpace SUCCESS Desired Access: Query Value 97 12:38:31,4490802 MCLauncher.exe 84 RegSetInfoKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\Desktop\NameSpace SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 97 12:38:31,4490843 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\Desktop\NameSpace\MonitorRegistry SUCCESS Type: REG_DWORD, Length: 4, Data: 1 97 12:38:31,4490974 MCLauncher.exe 84 RegCloseKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\Desktop\NameSpace SUCCESS 97 12:38:31,4491373 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:31,4491425 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: Name 97 12:38:31,4491508 MCLauncher.exe 84 RegOpenKey HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Policies\Explorer REPARSE Desired Access: Query Value 97 12:38:31,4491583 MCLauncher.exe 84 RegOpenKey HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer SUCCESS Desired Access: Query Value 97 12:38:31,4491639 MCLauncher.exe 84 RegSetInfoKey HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 97 12:38:31,4491686 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer\NoCommonGroups NAME NOT FOUND Length: 144 97 12:38:31,4491813 MCLauncher.exe 84 RegCloseKey HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer SUCCESS 97 12:38:31,4491880 MCLauncher.exe 84 RegQueryKey HKCU SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:31,4491930 MCLauncher.exe 84 RegQueryKey HKCU SUCCESS Query: Name 97 12:38:31,4492004 MCLauncher.exe 84 RegOpenKey HKCU\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer SUCCESS Desired Access: Query Value 97 12:38:31,4492234 MCLauncher.exe 84 RegSetInfoKey HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 97 12:38:31,4492287 MCLauncher.exe 84 RegQueryValue HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer\NoCommonGroups NAME NOT FOUND Length: 144 97 12:38:31,4492406 MCLauncher.exe 84 RegCloseKey HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer SUCCESS 97 12:38:31,4493401 MCLauncher.exe 84 RegOpenKey HKCU\Software\Classes SUCCESS Desired Access: Maximum Allowed, Granted Access: All Access 97 12:38:31,4493506 MCLauncher.exe 84 RegSetInfoKey HKCU\Software\Classes SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 97 12:38:31,4493561 MCLauncher.exe 84 RegQueryKey HKCU\Software\Classes SUCCESS Query: Name 97 12:38:31,4493631 MCLauncher.exe 84 RegQueryKey HKCU\Software\Classes SUCCESS Query: HandleTags, HandleTags: 0x1 97 12:38:31,4493700 MCLauncher.exe 84 RegQueryKey HKCU\Software\Classes SUCCESS Query: HandleTags, HandleTags: 0x1 97 12:38:31,4493744 MCLauncher.exe 84 RegQueryKey HKCU\Software\Classes SUCCESS Query: Name 97 12:38:31,4493844 MCLauncher.exe 84 RegOpenKey HKCU\Software\Classes\WOW6432Node\CLSID\{20D04FE0-3AEA-1069-A2D8-08002B30309D}\ShellFolder NAME NOT FOUND Desired Access: Query Value 97 12:38:31,4494035 MCLauncher.exe 84 RegOpenKey HKCR\WOW6432Node\CLSID\{20D04FE0-3AEA-1069-A2D8-08002B30309D}\ShellFolder SUCCESS Desired Access: Query Value 97 12:38:31,4494165 MCLauncher.exe 84 RegSetInfoKey HKCR\WOW6432Node\CLSID\{20D04FE0-3AEA-1069-A2D8-08002B30309D}\ShellFolder SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 97 12:38:31,4494210 MCLauncher.exe 84 RegQueryKey HKCR\WOW6432Node\CLSID\{20D04FE0-3AEA-1069-A2D8-08002B30309D}\ShellFolder SUCCESS Query: Name 97 12:38:31,4494276 MCLauncher.exe 84 RegQueryKey HKCR\WOW6432Node\CLSID\{20D04FE0-3AEA-1069-A2D8-08002B30309D}\ShellFolder SUCCESS Query: HandleTags, HandleTags: 0x401 97 12:38:31,4494370 MCLauncher.exe 84 RegOpenKey HKCU\Software\Classes\WOW6432Node\CLSID\{20D04FE0-3AEA-1069-A2D8-08002B30309D}\ShellFolder NAME NOT FOUND Desired Access: Maximum Allowed 97 12:38:31,4494445 MCLauncher.exe 84 RegQueryValue HKCR\WOW6432Node\CLSID\{20D04FE0-3AEA-1069-A2D8-08002B30309D}\ShellFolder\Attributes NAME NOT FOUND Length: 144 97 12:38:31,4494570 MCLauncher.exe 84 RegQueryKey HKCR\WOW6432Node\CLSID\{20D04FE0-3AEA-1069-A2D8-08002B30309D}\ShellFolder SUCCESS Query: Name 97 12:38:31,4494639 MCLauncher.exe 84 RegQueryKey HKCR\WOW6432Node\CLSID\{20D04FE0-3AEA-1069-A2D8-08002B30309D}\ShellFolder SUCCESS Query: HandleTags, HandleTags: 0x401 97 12:38:31,4494739 MCLauncher.exe 84 RegOpenKey HKCU\Software\Classes\WOW6432Node\CLSID\{20D04FE0-3AEA-1069-A2D8-08002B30309D}\ShellFolder NAME NOT FOUND Desired Access: Maximum Allowed 97 12:38:31,4494819 MCLauncher.exe 84 RegQueryValue HKCR\WOW6432Node\CLSID\{20D04FE0-3AEA-1069-A2D8-08002B30309D}\ShellFolder\CallForAttributes NAME NOT FOUND Length: 144 97 12:38:31,4494930 MCLauncher.exe 84 RegQueryKey HKCR\WOW6432Node\CLSID\{20D04FE0-3AEA-1069-A2D8-08002B30309D}\ShellFolder SUCCESS Query: Name 97 12:38:31,4494999 MCLauncher.exe 84 RegQueryKey HKCR\WOW6432Node\CLSID\{20D04FE0-3AEA-1069-A2D8-08002B30309D}\ShellFolder SUCCESS Query: HandleTags, HandleTags: 0x401 97 12:38:31,4495096 MCLauncher.exe 84 RegOpenKey HKCU\Software\Classes\WOW6432Node\CLSID\{20D04FE0-3AEA-1069-A2D8-08002B30309D}\ShellFolder NAME NOT FOUND Desired Access: Maximum Allowed 97 12:38:31,4495174 MCLauncher.exe 84 RegQueryValue HKCR\WOW6432Node\CLSID\{20D04FE0-3AEA-1069-A2D8-08002B30309D}\ShellFolder\RestrictedAttributes NAME NOT FOUND Length: 144 97 12:38:31,4495285 MCLauncher.exe 84 RegQueryKey HKCR\WOW6432Node\CLSID\{20D04FE0-3AEA-1069-A2D8-08002B30309D}\ShellFolder SUCCESS Query: Name 97 12:38:31,4495348 MCLauncher.exe 84 RegQueryKey HKCR\WOW6432Node\CLSID\{20D04FE0-3AEA-1069-A2D8-08002B30309D}\ShellFolder SUCCESS Query: HandleTags, HandleTags: 0x401 97 12:38:31,4495448 MCLauncher.exe 84 RegOpenKey HKCU\Software\Classes\WOW6432Node\CLSID\{20D04FE0-3AEA-1069-A2D8-08002B30309D}\ShellFolder NAME NOT FOUND Desired Access: Maximum Allowed 97 12:38:31,4495526 MCLauncher.exe 84 RegQueryValue HKCR\WOW6432Node\CLSID\{20D04FE0-3AEA-1069-A2D8-08002B30309D}\ShellFolder\FolderValueFlags SUCCESS Type: REG_DWORD, Length: 4, Data: 1581568 97 12:38:31,4495670 MCLauncher.exe 84 RegCloseKey HKCR\WOW6432Node\CLSID\{20D04FE0-3AEA-1069-A2D8-08002B30309D}\ShellFolder SUCCESS 97 12:38:31,4495789 MCLauncher.exe 84 RegQueryKey HKCU SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:31,4495842 MCLauncher.exe 84 RegQueryKey HKCU SUCCESS Query: Name 97 12:38:31,4495922 MCLauncher.exe 84 RegOpenKey HKCU\Software\Microsoft\Windows\CurrentVersion\Explorer\CLSID\{20D04FE0-3AEA-1069-A2D8-08002B30309D}\ShellFolder NAME NOT FOUND Desired Access: Query Value 97 12:38:31,4496038 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:31,4496083 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: Name 97 12:38:31,4496168 MCLauncher.exe 84 RegOpenKey HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\CLSID\{20D04FE0-3AEA-1069-A2D8-08002B30309D}\ShellFolder NAME NOT FOUND Desired Access: Query Value 97 12:38:31,4496304 MCLauncher.exe 84 RegQueryKey HKCU SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:31,4496349 MCLauncher.exe 84 RegQueryKey HKCU SUCCESS Query: Name 97 12:38:31,4496415 MCLauncher.exe 84 RegOpenKey HKCU\Software\Microsoft\Windows\CurrentVersion\Policies\NonEnum NAME NOT FOUND Desired Access: Query Value 97 12:38:31,4496498 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:31,4496545 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: Name 97 12:38:31,4496617 MCLauncher.exe 84 RegOpenKey HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Policies\NonEnum REPARSE Desired Access: Query Value 97 12:38:31,4496681 MCLauncher.exe 84 RegOpenKey HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\NonEnum SUCCESS Desired Access: Query Value 97 12:38:31,4496748 MCLauncher.exe 84 RegSetInfoKey HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\NonEnum SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 97 12:38:31,4496792 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\NonEnum\{20D04FE0-3AEA-1069-A2D8-08002B30309D} NAME NOT FOUND Length: 144 97 12:38:31,4496928 MCLauncher.exe 84 RegCloseKey HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\NonEnum SUCCESS 97 12:38:31,4497304 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:31,4497357 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: Name 97 12:38:31,4497446 MCLauncher.exe 84 RegOpenKey HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\MyComputer\NameSpace SUCCESS Desired Access: Query Value 97 12:38:31,4497551 MCLauncher.exe 84 RegSetInfoKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\MyComputer\NameSpace SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 97 12:38:31,4497598 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\MyComputer\NameSpace\ValidateRegItems NAME NOT FOUND Length: 144 97 12:38:31,4497731 MCLauncher.exe 84 RegCloseKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\MyComputer\NameSpace SUCCESS 97 12:38:31,4497803 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:31,4497853 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: Name 97 12:38:31,4497936 MCLauncher.exe 84 RegOpenKey HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\MyComputer\NameSpace SUCCESS Desired Access: Query Value 97 12:38:31,4498014 MCLauncher.exe 84 RegSetInfoKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\MyComputer\NameSpace SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 97 12:38:31,4498058 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\MyComputer\NameSpace\MonitorRegistry NAME NOT FOUND Length: 144 97 12:38:31,4498180 MCLauncher.exe 84 RegCloseKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\MyComputer\NameSpace SUCCESS 97 12:38:31,4498407 MCLauncher.exe 84 RegQueryKey HKCU\Software\Classes SUCCESS Query: Name 97 12:38:31,4498474 MCLauncher.exe 84 RegQueryKey HKCU\Software\Classes SUCCESS Query: HandleTags, HandleTags: 0x1 97 12:38:31,4498543 MCLauncher.exe 84 RegQueryKey HKCU\Software\Classes SUCCESS Query: HandleTags, HandleTags: 0x1 97 12:38:31,4498590 MCLauncher.exe 84 RegQueryKey HKCU\Software\Classes SUCCESS Query: Name 97 12:38:31,4498668 MCLauncher.exe 84 RegOpenKey HKCU\Software\Classes\Drive\shellex\FolderExtensions NAME NOT FOUND Desired Access: Enumerate Sub Keys 97 12:38:31,4498773 MCLauncher.exe 84 RegOpenKey HKCR\Drive\shellex\FolderExtensions SUCCESS Desired Access: Enumerate Sub Keys 97 12:38:31,4498867 MCLauncher.exe 84 RegSetInfoKey HKCR\Drive\shellex\FolderExtensions SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 97 12:38:31,4498920 MCLauncher.exe 84 RegQueryKey HKCR\Drive\shellex\FolderExtensions SUCCESS Query: Name 97 12:38:31,4498986 MCLauncher.exe 84 RegQueryKey HKCR\Drive\shellex\FolderExtensions SUCCESS Query: HandleTags, HandleTags: 0x401 97 12:38:31,4499072 MCLauncher.exe 84 RegOpenKey HKCU\Software\Classes\Drive\shellex\FolderExtensions NAME NOT FOUND Desired Access: Maximum Allowed 97 12:38:31,4499141 MCLauncher.exe 84 RegEnumKey HKCR\Drive\shellex\FolderExtensions SUCCESS Index: 0, Name: {fbeb8a05-beee-4442-804e-409d6c4515e9} 97 12:38:31,4499222 MCLauncher.exe 84 RegQueryKey HKCU\Software\Classes SUCCESS Query: Name 97 12:38:31,4499277 MCLauncher.exe 84 RegQueryKey HKCU\Software\Classes SUCCESS Query: HandleTags, HandleTags: 0x1 97 12:38:31,4499341 MCLauncher.exe 84 RegQueryKey HKCU\Software\Classes SUCCESS Query: HandleTags, HandleTags: 0x1 97 12:38:31,4499385 MCLauncher.exe 84 RegQueryKey HKCU\Software\Classes SUCCESS Query: Name 97 12:38:31,4499454 MCLauncher.exe 84 RegOpenKey HKCU\Software\Classes\Drive\shellex\FolderExtensions\{fbeb8a05-beee-4442-804e-409d6c4515e9} NAME NOT FOUND Desired Access: Query Value 97 12:38:31,4499532 MCLauncher.exe 84 RegOpenKey HKCR\Drive\shellex\FolderExtensions\{fbeb8a05-beee-4442-804e-409d6c4515e9} SUCCESS Desired Access: Query Value 97 12:38:31,4499610 MCLauncher.exe 84 RegSetInfoKey HKCR\Drive\shellex\FolderExtensions\{fbeb8a05-beee-4442-804e-409d6c4515e9} SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 97 12:38:31,4499648 MCLauncher.exe 84 RegQueryKey HKCR\Drive\shellex\FolderExtensions\{fbeb8a05-beee-4442-804e-409d6c4515e9} SUCCESS Query: Name 97 12:38:31,4499706 MCLauncher.exe 84 RegQueryKey HKCR\Drive\shellex\FolderExtensions\{fbeb8a05-beee-4442-804e-409d6c4515e9} SUCCESS Query: HandleTags, HandleTags: 0x401 97 12:38:31,4499787 MCLauncher.exe 84 RegOpenKey HKCU\Software\Classes\Drive\shellex\FolderExtensions\{fbeb8a05-beee-4442-804e-409d6c4515e9} NAME NOT FOUND Desired Access: Maximum Allowed 97 12:38:31,4499848 MCLauncher.exe 84 RegQueryValue HKCR\Drive\shellex\FolderExtensions\{fbeb8a05-beee-4442-804e-409d6c4515e9}\DriveMask SUCCESS Type: REG_DWORD, Length: 4, Data: 32 97 12:38:31,4500000 MCLauncher.exe 84 RegCloseKey HKCR\Drive\shellex\FolderExtensions\{fbeb8a05-beee-4442-804e-409d6c4515e9} SUCCESS 97 12:38:31,4500105 MCLauncher.exe 84 RegEnumKey HKCR\Drive\shellex\FolderExtensions NO MORE ENTRIES Index: 1, Length: 288 97 12:38:31,4500164 MCLauncher.exe 84 RegCloseKey HKCR\Drive\shellex\FolderExtensions SUCCESS 97 12:38:31,4500687 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:31,4500740 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: Name 97 12:38:31,4500831 MCLauncher.exe 84 RegOpenKey HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Policies\Explorer REPARSE Desired Access: Query Value 97 12:38:31,4500914 MCLauncher.exe 84 RegOpenKey HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer SUCCESS Desired Access: Query Value 97 12:38:31,4500978 MCLauncher.exe 84 RegSetInfoKey HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 97 12:38:31,4501028 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer\AllowFileCLSIDJunctions NAME NOT FOUND Length: 144 97 12:38:31,4501164 MCLauncher.exe 84 RegCloseKey HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer SUCCESS 97 12:38:31,4501233 MCLauncher.exe 84 RegQueryKey HKCU SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:31,4501286 MCLauncher.exe 84 RegQueryKey HKCU SUCCESS Query: Name 97 12:38:31,4501361 MCLauncher.exe 84 RegOpenKey HKCU\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer SUCCESS Desired Access: Query Value 97 12:38:31,4501444 MCLauncher.exe 84 RegSetInfoKey HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 97 12:38:31,4501485 MCLauncher.exe 84 RegQueryValue HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer\AllowFileCLSIDJunctions NAME NOT FOUND Length: 144 97 12:38:31,4501602 MCLauncher.exe 84 RegCloseKey HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer SUCCESS 97 12:38:31,4502339 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:31,4502394 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: Name 97 12:38:31,4502488 MCLauncher.exe 84 RegOpenKey HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\KindMap REPARSE Desired Access: Read 97 12:38:31,4502582 MCLauncher.exe 84 RegOpenKey HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\KindMap SUCCESS Desired Access: Read 97 12:38:31,4502646 MCLauncher.exe 84 RegSetInfoKey HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\KindMap SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 97 12:38:31,4502696 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\KindMap\.exe SUCCESS Type: REG_SZ, Length: 16, Data: program 97 12:38:31,4502876 MCLauncher.exe 84 RegCloseKey HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\KindMap SUCCESS 97 12:38:31,4502926 MCLauncher.exe 84 RegQueryKey HKCU\Software\Classes SUCCESS Query: Name 97 12:38:31,4502987 MCLauncher.exe 84 RegQueryKey HKCU\Software\Classes SUCCESS Query: HandleTags, HandleTags: 0x1 97 12:38:31,4503056 MCLauncher.exe 84 RegQueryKey HKCU\Software\Classes SUCCESS Query: HandleTags, HandleTags: 0x1 97 12:38:31,4503106 MCLauncher.exe 84 RegQueryKey HKCU\Software\Classes SUCCESS Query: Name 97 12:38:31,4503181 MCLauncher.exe 84 RegOpenKey HKCU\Software\Classes\.exe NAME NOT FOUND Desired Access: Read 97 12:38:31,4503275 MCLauncher.exe 84 RegOpenKey HKCR\.exe SUCCESS Desired Access: Read 97 12:38:31,4503353 MCLauncher.exe 84 RegSetInfoKey HKCR\.exe SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 97 12:38:31,4503394 MCLauncher.exe 84 RegQueryKey HKCR\.exe SUCCESS Query: Name 97 12:38:31,4503452 MCLauncher.exe 84 RegQueryKey HKCR\.exe SUCCESS Query: HandleTags, HandleTags: 0x401 97 12:38:31,4503546 MCLauncher.exe 84 RegOpenKey HKCU\Software\Classes\.exe NAME NOT FOUND Desired Access: Maximum Allowed 97 12:38:31,4503610 MCLauncher.exe 84 RegQueryValue HKCR\.exe\Content Type SUCCESS Type: REG_SZ, Length: 50, Data: application/x-msdownload 97 12:38:31,4503757 MCLauncher.exe 84 RegCloseKey HKCR\.exe SUCCESS 97 12:38:31,4504422 MCLauncher.exe 84 RegOpenKey HKCU\Software\Classes SUCCESS Desired Access: Maximum Allowed, Granted Access: All Access 97 12:38:31,4504511 MCLauncher.exe 84 RegSetInfoKey HKCU\Software\Classes SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 97 12:38:31,4505068 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:31,4505128 MCLauncher.exe 84 RegOpenKey HKLM\Software\Microsoft\COM3 SUCCESS Desired Access: Read 97 12:38:31,4505214 MCLauncher.exe 84 RegSetInfoKey HKLM\SOFTWARE\Microsoft\COM3 SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 97 12:38:31,4505259 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\Microsoft\COM3\Com+Enabled SUCCESS Type: REG_DWORD, Length: 4, Data: 1 97 12:38:31,4505414 MCLauncher.exe 84 RegCloseKey HKLM\SOFTWARE\Microsoft\COM3 SUCCESS 97 12:38:31,4505987 MCLauncher.exe 84 Load Image C:\Windows\SysWOW64\clbcatq.dll SUCCESS Image Base: 0x74ef0000, Image Size: 0x84000 97 12:38:31,4507996 MCLauncher.exe 84 CreateFile C:\Windows\SysWOW64\clbcatq.dll SUCCESS Desired Access: Read Control, Disposition: Open, Options: , Attributes: n/a, ShareMode: Read, Delete, AllocationSize: n/a, OpenResult: Opened 97 12:38:31,4508290 MCLauncher.exe 84 QuerySecurityFile C:\Windows\SysWOW64\clbcatq.dll BUFFER OVERFLOW Information: Owner 97 12:38:31,4508473 MCLauncher.exe 84 QuerySecurityFile C:\Windows\SysWOW64\clbcatq.dll SUCCESS Information: Owner 97 12:38:31,4508545 MCLauncher.exe 84 CloseFile C:\Windows\SysWOW64\clbcatq.dll SUCCESS 97 12:38:31,4509841 MCLauncher.exe 84 RegQueryKey HKCU\Software\Classes SUCCESS Query: Name 97 12:38:31,4509933 MCLauncher.exe 84 RegQueryKey HKCU\Software\Classes SUCCESS Query: HandleTags, HandleTags: 0x1 97 12:38:31,4510010 MCLauncher.exe 84 RegQueryKey HKCU\Software\Classes SUCCESS Query: HandleTags, HandleTags: 0x1 97 12:38:31,4510063 MCLauncher.exe 84 RegQueryKey HKCU\Software\Classes SUCCESS Query: Name 97 12:38:31,4510171 MCLauncher.exe 84 RegOpenKey HKCU\Software\Classes\WOW6432Node\CLSID\{1F486A52-3CB1-48FD-8F50-B8DC300D9F9D} NAME NOT FOUND Desired Access: Read 97 12:38:31,4510309 MCLauncher.exe 84 RegOpenKey HKCR\WOW6432Node\CLSID\{1F486A52-3CB1-48FD-8F50-B8DC300D9F9D} SUCCESS Desired Access: Read 97 12:38:31,4510420 MCLauncher.exe 84 RegSetInfoKey HKCR\WOW6432Node\CLSID\{1f486a52-3cb1-48fd-8f50-b8dc300d9f9d} SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 97 12:38:31,4510470 MCLauncher.exe 84 RegQueryKey HKCR\WOW6432Node\CLSID\{1f486a52-3cb1-48fd-8f50-b8dc300d9f9d} SUCCESS Query: Name 97 12:38:31,4510531 MCLauncher.exe 84 RegQueryKey HKCR\WOW6432Node\CLSID\{1f486a52-3cb1-48fd-8f50-b8dc300d9f9d} SUCCESS Query: HandleTags, HandleTags: 0x401 97 12:38:31,4510636 MCLauncher.exe 84 RegOpenKey HKCU\Software\Classes\WOW6432Node\CLSID\{1f486a52-3cb1-48fd-8f50-b8dc300d9f9d}\TreatAs NAME NOT FOUND Desired Access: Query Value 97 12:38:31,4510728 MCLauncher.exe 84 RegQueryKey HKCR\WOW6432Node\CLSID\{1f486a52-3cb1-48fd-8f50-b8dc300d9f9d} SUCCESS Query: HandleTags, HandleTags: 0x401 97 12:38:31,4510783 MCLauncher.exe 84 RegOpenKey HKCR\WOW6432Node\CLSID\{1f486a52-3cb1-48fd-8f50-b8dc300d9f9d}\TreatAs NAME NOT FOUND Desired Access: Query Value 97 12:38:31,4510858 MCLauncher.exe 84 RegQueryKey HKCR\WOW6432Node\CLSID\{1f486a52-3cb1-48fd-8f50-b8dc300d9f9d} SUCCESS Query: Name 97 12:38:31,4510963 MCLauncher.exe 84 RegQueryKey HKCR\WOW6432Node\CLSID\{1f486a52-3cb1-48fd-8f50-b8dc300d9f9d} SUCCESS Query: Name 97 12:38:31,4511019 MCLauncher.exe 84 RegQueryKey HKCR\WOW6432Node\CLSID\{1f486a52-3cb1-48fd-8f50-b8dc300d9f9d} SUCCESS Query: HandleTags, HandleTags: 0x401 97 12:38:31,4511107 MCLauncher.exe 84 RegOpenKey HKCU\Software\Classes\WOW6432Node\CLSID\{1f486a52-3cb1-48fd-8f50-b8dc300d9f9d} NAME NOT FOUND Desired Access: Maximum Allowed 97 12:38:31,4511185 MCLauncher.exe 84 RegQueryValue HKCR\WOW6432Node\CLSID\{1f486a52-3cb1-48fd-8f50-b8dc300d9f9d}\(Default) SUCCESS Type: REG_SZ, Length: 48, Data: Memory Mapped Cache Mgr 97 12:38:31,4511249 MCLauncher.exe 84 RegQueryKey HKCR\WOW6432Node\CLSID\{1f486a52-3cb1-48fd-8f50-b8dc300d9f9d} SUCCESS Query: Name 97 12:38:31,4511304 MCLauncher.exe 84 RegQueryKey HKCR\WOW6432Node\CLSID\{1f486a52-3cb1-48fd-8f50-b8dc300d9f9d} SUCCESS Query: HandleTags, HandleTags: 0x401 97 12:38:31,4511387 MCLauncher.exe 84 RegOpenKey HKCU\Software\Classes\WOW6432Node\CLSID\{1f486a52-3cb1-48fd-8f50-b8dc300d9f9d} NAME NOT FOUND Desired Access: Maximum Allowed 97 12:38:31,4511451 MCLauncher.exe 84 RegQueryValue HKCR\WOW6432Node\CLSID\{1f486a52-3cb1-48fd-8f50-b8dc300d9f9d}\(Default) SUCCESS Type: REG_SZ, Length: 48, Data: Memory Mapped Cache Mgr 97 12:38:31,4511512 MCLauncher.exe 84 RegQueryKey HKCR\WOW6432Node\CLSID\{1f486a52-3cb1-48fd-8f50-b8dc300d9f9d} SUCCESS Query: Name 97 12:38:31,4511736 MCLauncher.exe 84 RegQueryKey HKCR\WOW6432Node\CLSID\{1f486a52-3cb1-48fd-8f50-b8dc300d9f9d} SUCCESS Query: HandleTags, HandleTags: 0x401 97 12:38:31,4511847 MCLauncher.exe 84 RegOpenKey HKCU\Software\Classes\WOW6432Node\CLSID\{1f486a52-3cb1-48fd-8f50-b8dc300d9f9d}\InprocServer32 NAME NOT FOUND Desired Access: Read 97 12:38:31,4511958 MCLauncher.exe 84 RegQueryKey HKCR\WOW6432Node\CLSID\{1f486a52-3cb1-48fd-8f50-b8dc300d9f9d} SUCCESS Query: HandleTags, HandleTags: 0x401 97 12:38:31,4512013 MCLauncher.exe 84 RegOpenKey HKCR\WOW6432Node\CLSID\{1f486a52-3cb1-48fd-8f50-b8dc300d9f9d}\InprocServer32 SUCCESS Desired Access: Read 97 12:38:31,4512108 MCLauncher.exe 84 RegQueryKey HKCR\WOW6432Node\CLSID\{1f486a52-3cb1-48fd-8f50-b8dc300d9f9d}\InProcServer32 SUCCESS Query: Name 97 12:38:31,4512168 MCLauncher.exe 84 RegQueryKey HKCR\WOW6432Node\CLSID\{1f486a52-3cb1-48fd-8f50-b8dc300d9f9d}\InProcServer32 SUCCESS Query: HandleTags, HandleTags: 0x401 97 12:38:31,4512249 MCLauncher.exe 84 RegOpenKey HKCU\Software\Classes\WOW6432Node\CLSID\{1f486a52-3cb1-48fd-8f50-b8dc300d9f9d}\InProcServer32 NAME NOT FOUND Desired Access: Maximum Allowed 97 12:38:31,4512318 MCLauncher.exe 84 RegQueryValue HKCR\WOW6432Node\CLSID\{1f486a52-3cb1-48fd-8f50-b8dc300d9f9d}\InProcServer32\InprocServer32 NAME NOT FOUND Length: 144 97 12:38:31,4512448 MCLauncher.exe 84 RegQueryKey HKCR\WOW6432Node\CLSID\{1f486a52-3cb1-48fd-8f50-b8dc300d9f9d}\InProcServer32 SUCCESS Query: Name 97 12:38:31,4512520 MCLauncher.exe 84 RegQueryKey HKCR\WOW6432Node\CLSID\{1f486a52-3cb1-48fd-8f50-b8dc300d9f9d}\InProcServer32 SUCCESS Query: HandleTags, HandleTags: 0x401 97 12:38:31,4512617 MCLauncher.exe 84 RegOpenKey HKCU\Software\Classes\WOW6432Node\CLSID\{1f486a52-3cb1-48fd-8f50-b8dc300d9f9d}\InProcServer32 NAME NOT FOUND Desired Access: Maximum Allowed 97 12:38:31,4512695 MCLauncher.exe 84 RegQueryValue HKCR\WOW6432Node\CLSID\{1f486a52-3cb1-48fd-8f50-b8dc300d9f9d}\InProcServer32\(Default) SUCCESS Type: REG_EXPAND_SZ, Length: 68, Data: %SystemRoot%\system32\propsys.dll 97 12:38:31,4512753 MCLauncher.exe 84 RegQueryKey HKCR\WOW6432Node\CLSID\{1f486a52-3cb1-48fd-8f50-b8dc300d9f9d}\InProcServer32 SUCCESS Query: Name 97 12:38:31,4512811 MCLauncher.exe 84 RegQueryKey HKCR\WOW6432Node\CLSID\{1f486a52-3cb1-48fd-8f50-b8dc300d9f9d}\InProcServer32 SUCCESS Query: HandleTags, HandleTags: 0x401 97 12:38:31,4512892 MCLauncher.exe 84 RegOpenKey HKCU\Software\Classes\WOW6432Node\CLSID\{1f486a52-3cb1-48fd-8f50-b8dc300d9f9d}\InProcServer32 NAME NOT FOUND Desired Access: Maximum Allowed 97 12:38:31,4512953 MCLauncher.exe 84 RegQueryValue HKCR\WOW6432Node\CLSID\{1f486a52-3cb1-48fd-8f50-b8dc300d9f9d}\InProcServer32\(Default) SUCCESS Type: REG_EXPAND_SZ, Length: 68, Data: %SystemRoot%\system32\propsys.dll 97 12:38:31,4513022 MCLauncher.exe 84 RegQueryKey HKCR\WOW6432Node\CLSID\{1f486a52-3cb1-48fd-8f50-b8dc300d9f9d}\InProcServer32 SUCCESS Query: Name 97 12:38:31,4513080 MCLauncher.exe 84 RegQueryKey HKCR\WOW6432Node\CLSID\{1f486a52-3cb1-48fd-8f50-b8dc300d9f9d}\InProcServer32 SUCCESS Query: HandleTags, HandleTags: 0x401 97 12:38:31,4513160 MCLauncher.exe 84 RegOpenKey HKCU\Software\Classes\WOW6432Node\CLSID\{1f486a52-3cb1-48fd-8f50-b8dc300d9f9d}\InProcServer32 NAME NOT FOUND Desired Access: Maximum Allowed 97 12:38:31,4513221 MCLauncher.exe 84 RegQueryValue HKCR\WOW6432Node\CLSID\{1f486a52-3cb1-48fd-8f50-b8dc300d9f9d}\InProcServer32\(Default) SUCCESS Type: REG_EXPAND_SZ, Length: 68, Data: %SystemRoot%\system32\propsys.dll 97 12:38:31,4513285 MCLauncher.exe 84 RegQueryKey HKCR\WOW6432Node\CLSID\{1f486a52-3cb1-48fd-8f50-b8dc300d9f9d}\InProcServer32 SUCCESS Query: Name 97 12:38:31,4513338 MCLauncher.exe 84 RegQueryKey HKCR\WOW6432Node\CLSID\{1f486a52-3cb1-48fd-8f50-b8dc300d9f9d}\InProcServer32 SUCCESS Query: HandleTags, HandleTags: 0x401 97 12:38:31,4513421 MCLauncher.exe 84 RegOpenKey HKCU\Software\Classes\WOW6432Node\CLSID\{1f486a52-3cb1-48fd-8f50-b8dc300d9f9d}\InProcServer32 NAME NOT FOUND Desired Access: Maximum Allowed 97 12:38:31,4513482 MCLauncher.exe 84 RegQueryValue HKCR\WOW6432Node\CLSID\{1f486a52-3cb1-48fd-8f50-b8dc300d9f9d}\InProcServer32\ThreadingModel SUCCESS Type: REG_SZ, Length: 10, Data: Both 97 12:38:31,4513645 MCLauncher.exe 84 RegCloseKey HKCR\WOW6432Node\CLSID\{1f486a52-3cb1-48fd-8f50-b8dc300d9f9d}\InProcServer32 SUCCESS 97 12:38:31,4513695 MCLauncher.exe 84 RegQueryKey HKCR\WOW6432Node\CLSID\{1f486a52-3cb1-48fd-8f50-b8dc300d9f9d} SUCCESS Query: Name 97 12:38:31,4513764 MCLauncher.exe 84 RegQueryKey HKCR\WOW6432Node\CLSID\{1f486a52-3cb1-48fd-8f50-b8dc300d9f9d} SUCCESS Query: HandleTags, HandleTags: 0x401 97 12:38:31,4513864 MCLauncher.exe 84 RegOpenKey HKCU\Software\Classes\WOW6432Node\CLSID\{1f486a52-3cb1-48fd-8f50-b8dc300d9f9d}\InprocHandler32 NAME NOT FOUND Desired Access: Query Value 97 12:38:31,4513964 MCLauncher.exe 84 RegQueryKey HKCR\WOW6432Node\CLSID\{1f486a52-3cb1-48fd-8f50-b8dc300d9f9d} SUCCESS Query: HandleTags, HandleTags: 0x401 97 12:38:31,4514016 MCLauncher.exe 84 RegOpenKey HKCR\WOW6432Node\CLSID\{1f486a52-3cb1-48fd-8f50-b8dc300d9f9d}\InprocHandler32 NAME NOT FOUND Desired Access: Query Value 97 12:38:31,4514083 MCLauncher.exe 84 RegQueryKey HKCR\WOW6432Node\CLSID\{1f486a52-3cb1-48fd-8f50-b8dc300d9f9d} SUCCESS Query: Name 97 12:38:31,4514138 MCLauncher.exe 84 RegQueryKey HKCR\WOW6432Node\CLSID\{1f486a52-3cb1-48fd-8f50-b8dc300d9f9d} SUCCESS Query: HandleTags, HandleTags: 0x401 97 12:38:31,4514219 MCLauncher.exe 84 RegOpenKey HKCU\Software\Classes\WOW6432Node\CLSID\{1f486a52-3cb1-48fd-8f50-b8dc300d9f9d}\InprocHandler NAME NOT FOUND Desired Access: Query Value 97 12:38:31,4514296 MCLauncher.exe 84 RegQueryKey HKCR\WOW6432Node\CLSID\{1f486a52-3cb1-48fd-8f50-b8dc300d9f9d} SUCCESS Query: HandleTags, HandleTags: 0x401 97 12:38:31,4514346 MCLauncher.exe 84 RegOpenKey HKCR\WOW6432Node\CLSID\{1f486a52-3cb1-48fd-8f50-b8dc300d9f9d}\InprocHandler NAME NOT FOUND Desired Access: Query Value 97 12:38:31,4514443 MCLauncher.exe 84 RegOpenKey HKCU SUCCESS Desired Access: Read 97 12:38:31,4514518 MCLauncher.exe 84 RegSetInfoKey HKCU SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 97 12:38:31,4514582 MCLauncher.exe 84 RegQueryKey HKCU SUCCESS Query: HandleTags, HandleTags: 0x100 97 12:38:31,4514634 MCLauncher.exe 84 RegOpenKey HKCU\Software\Classes\Local Settings REPARSE Desired Access: Read 97 12:38:31,4514704 MCLauncher.exe 84 RegOpenKey HKCU\Software\Classes\Local Settings SUCCESS Desired Access: Read 97 12:38:31,4514781 MCLauncher.exe 84 RegCloseKey HKCU SUCCESS 97 12:38:31,4514881 MCLauncher.exe 84 RegQueryKey HKCU\Software\Classes\Local Settings SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:31,4514931 MCLauncher.exe 84 RegQueryKey HKCU\Software\Classes\Local Settings SUCCESS Query: Name 97 12:38:31,4515008 MCLauncher.exe 84 RegOpenKey HKCU\Software\Classes\Local Settings\Software\Microsoft\Ole\FeatureDevelopmentProperties NAME NOT FOUND Desired Access: Read 97 12:38:31,4515091 MCLauncher.exe 84 RegCloseKey HKCU\Software\Classes\Local Settings SUCCESS 97 12:38:31,4515155 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:31,4515205 MCLauncher.exe 84 RegOpenKey HKLM\Software\Microsoft\Ole\FeatureDevelopmentProperties NAME NOT FOUND Desired Access: Read 97 12:38:31,4515296 MCLauncher.exe 84 RegCloseKey HKCR\WOW6432Node\CLSID\{1f486a52-3cb1-48fd-8f50-b8dc300d9f9d} SUCCESS 97 12:38:31,4515377 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:31,4515424 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: Name 97 12:38:31,4515499 MCLauncher.exe 84 RegOpenKey HKLM\Software\WOW6432Node\Microsoft\OLE REPARSE Desired Access: Read 97 12:38:31,4515573 MCLauncher.exe 84 RegOpenKey HKLM\SOFTWARE\Microsoft\Ole SUCCESS Desired Access: Read 97 12:38:31,4515629 MCLauncher.exe 84 RegSetInfoKey HKLM\SOFTWARE\Microsoft\Ole SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 97 12:38:31,4515670 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\Microsoft\Ole\MaxSxSHashCount NAME NOT FOUND Length: 144 97 12:38:31,4515806 MCLauncher.exe 84 RegCloseKey HKLM\SOFTWARE\Microsoft\Ole SUCCESS 97 12:38:31,4516305 MCLauncher.exe 84 RegOpenKey HKCU\Software\Classes SUCCESS Desired Access: Maximum Allowed, Granted Access: All Access 97 12:38:31,4516385 MCLauncher.exe 84 RegSetInfoKey HKCU\Software\Classes SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 97 12:38:31,4516441 MCLauncher.exe 84 RegQueryKey HKCU\Software\Classes SUCCESS Query: Name 97 12:38:31,4516507 MCLauncher.exe 84 RegQueryKey HKCU\Software\Classes SUCCESS Query: HandleTags, HandleTags: 0x1 97 12:38:31,4516576 MCLauncher.exe 84 RegQueryKey HKCU\Software\Classes SUCCESS Query: HandleTags, HandleTags: 0x1 97 12:38:31,4516626 MCLauncher.exe 84 RegQueryKey HKCU\Software\Classes SUCCESS Query: Name 97 12:38:31,4516712 MCLauncher.exe 84 RegOpenKey HKCU\Software\Classes\WOW6432Node\CLSID\{1F486A52-3CB1-48FD-8F50-B8DC300D9F9D} NAME NOT FOUND Desired Access: Read 97 12:38:31,4516820 MCLauncher.exe 84 RegOpenKey HKCR\WOW6432Node\CLSID\{1F486A52-3CB1-48FD-8F50-B8DC300D9F9D} SUCCESS Desired Access: Read 97 12:38:31,4516895 MCLauncher.exe 84 RegSetInfoKey HKCR\WOW6432Node\CLSID\{1f486a52-3cb1-48fd-8f50-b8dc300d9f9d} SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 97 12:38:31,4516939 MCLauncher.exe 84 RegQueryKey HKCR\WOW6432Node\CLSID\{1f486a52-3cb1-48fd-8f50-b8dc300d9f9d} SUCCESS Query: Name 97 12:38:31,4517003 MCLauncher.exe 84 RegQueryKey HKCR\WOW6432Node\CLSID\{1f486a52-3cb1-48fd-8f50-b8dc300d9f9d} SUCCESS Query: HandleTags, HandleTags: 0x401 97 12:38:31,4517095 MCLauncher.exe 84 RegOpenKey HKCU\Software\Classes\WOW6432Node\CLSID\{1f486a52-3cb1-48fd-8f50-b8dc300d9f9d}\TreatAs NAME NOT FOUND Desired Access: Read 97 12:38:31,4517178 MCLauncher.exe 84 RegQueryKey HKCR\WOW6432Node\CLSID\{1f486a52-3cb1-48fd-8f50-b8dc300d9f9d} SUCCESS Query: HandleTags, HandleTags: 0x401 97 12:38:31,4517233 MCLauncher.exe 84 RegOpenKey HKCR\WOW6432Node\CLSID\{1f486a52-3cb1-48fd-8f50-b8dc300d9f9d}\TreatAs NAME NOT FOUND Desired Access: Read 97 12:38:31,4517305 MCLauncher.exe 84 RegCloseKey HKCR\WOW6432Node\CLSID\{1f486a52-3cb1-48fd-8f50-b8dc300d9f9d} SUCCESS 97 12:38:31,4521203 MCLauncher.exe 84 CreateFile C:\Windows\SysWOW64\propsys.dll SUCCESS Desired Access: Read Attributes, Disposition: Open, Options: Open Reparse Point, Attributes: n/a, ShareMode: Read, Write, Delete, AllocationSize: n/a, OpenResult: Opened 97 12:38:31,4521591 MCLauncher.exe 84 QueryBasicInformationFile C:\Windows\SysWOW64\propsys.dll SUCCESS CreationTime: 20.07.2018 1:34:17, LastAccessTime: 20.07.2018 1:34:17, LastWriteTime: 06.03.2018 9:03:35, ChangeTime: 20.07.2018 19:24:46, FileAttributes: A 97 12:38:31,4521685 MCLauncher.exe 84 CloseFile C:\Windows\SysWOW64\propsys.dll SUCCESS 97 12:38:31,4524085 MCLauncher.exe 84 CreateFile C:\Windows\SysWOW64\propsys.dll SUCCESS Desired Access: Read Attributes, Disposition: Open, Options: Open Reparse Point, Attributes: n/a, ShareMode: Read, Write, Delete, AllocationSize: n/a, OpenResult: Opened 97 12:38:31,4524317 MCLauncher.exe 84 QueryNetworkOpenInformationFile C:\Windows\SysWOW64\propsys.dll SUCCESS CreationTime: 20.07.2018 1:34:17, LastAccessTime: 20.07.2018 1:34:17, LastWriteTime: 06.03.2018 9:03:35, ChangeTime: 20.07.2018 19:24:46, AllocationSize: 01.01.1601 3:00:00, EndOfFile: 01.01.1601 3:00:00, FileAttributes: A 97 12:38:31,4524400 MCLauncher.exe 84 CloseFile C:\Windows\SysWOW64\propsys.dll SUCCESS 97 12:38:31,4526861 MCLauncher.exe 84 CreateFile C:\Windows\System32\propsys.dll SUCCESS Desired Access: Read Attributes, Disposition: Open, Options: Open Reparse Point, Attributes: n/a, ShareMode: Read, Write, Delete, AllocationSize: n/a, OpenResult: Opened 97 12:38:31,4527113 MCLauncher.exe 84 QueryNetworkOpenInformationFile C:\Windows\System32\propsys.dll SUCCESS CreationTime: 20.07.2018 1:24:02, LastAccessTime: 20.07.2018 1:24:02, LastWriteTime: 06.03.2018 9:08:30, ChangeTime: 20.07.2018 19:29:33, AllocationSize: 01.01.1601 3:00:00, EndOfFile: 01.01.1601 3:00:00, FileAttributes: A 97 12:38:31,4527193 MCLauncher.exe 84 CloseFile C:\Windows\System32\propsys.dll SUCCESS 97 12:38:31,4530407 MCLauncher.exe 84 CreateFile C:\Windows\SysWOW64\propsys.dll SUCCESS Desired Access: Read Attributes, Disposition: Open, Options: Open Reparse Point, Attributes: n/a, ShareMode: Read, Write, Delete, AllocationSize: n/a, OpenResult: Opened 97 12:38:31,4530640 MCLauncher.exe 84 QueryBasicInformationFile C:\Windows\SysWOW64\propsys.dll SUCCESS CreationTime: 20.07.2018 1:34:17, LastAccessTime: 20.07.2018 1:34:17, LastWriteTime: 06.03.2018 9:03:35, ChangeTime: 20.07.2018 19:24:46, FileAttributes: A 97 12:38:31,4530720 MCLauncher.exe 84 CloseFile C:\Windows\SysWOW64\propsys.dll SUCCESS 97 12:38:31,4533078 MCLauncher.exe 84 CreateFile C:\Windows\SysWOW64\propsys.dll SUCCESS Desired Access: Read Attributes, Disposition: Open, Options: Open Reparse Point, Attributes: n/a, ShareMode: Read, Write, Delete, AllocationSize: n/a, OpenResult: Opened 97 12:38:31,4533300 MCLauncher.exe 84 QueryNetworkOpenInformationFile C:\Windows\SysWOW64\propsys.dll SUCCESS CreationTime: 20.07.2018 1:34:17, LastAccessTime: 20.07.2018 1:34:17, LastWriteTime: 06.03.2018 9:03:35, ChangeTime: 20.07.2018 19:24:46, AllocationSize: 01.01.1601 3:00:00, EndOfFile: 01.01.1601 3:00:00, FileAttributes: A 97 12:38:31,4533380 MCLauncher.exe 84 CloseFile C:\Windows\SysWOW64\propsys.dll SUCCESS 97 12:38:31,4535837 MCLauncher.exe 84 CreateFile C:\Windows\System32\propsys.dll SUCCESS Desired Access: Read Attributes, Disposition: Open, Options: Open Reparse Point, Attributes: n/a, ShareMode: Read, Write, Delete, AllocationSize: n/a, OpenResult: Opened 97 12:38:31,4536059 MCLauncher.exe 84 QueryNetworkOpenInformationFile C:\Windows\System32\propsys.dll SUCCESS CreationTime: 20.07.2018 1:24:02, LastAccessTime: 20.07.2018 1:24:02, LastWriteTime: 06.03.2018 9:08:30, ChangeTime: 20.07.2018 19:29:33, AllocationSize: 01.01.1601 3:00:00, EndOfFile: 01.01.1601 3:00:00, FileAttributes: A 97 12:38:31,4536137 MCLauncher.exe 84 CloseFile C:\Windows\System32\propsys.dll SUCCESS 97 12:38:31,4537766 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:31,4537835 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: Name 97 12:38:31,4537951 MCLauncher.exe 84 RegOpenKey HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Policies\Explorer REPARSE Desired Access: Query Value 97 12:38:31,4538051 MCLauncher.exe 84 RegOpenKey HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer SUCCESS Desired Access: Query Value 97 12:38:31,4538126 MCLauncher.exe 84 RegSetInfoKey HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 97 12:38:31,4538181 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer\DontShowSuperHidden NAME NOT FOUND Length: 144 97 12:38:31,4538347 MCLauncher.exe 84 RegCloseKey HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer SUCCESS 97 12:38:31,4538428 MCLauncher.exe 84 RegQueryKey HKCU SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:31,4538483 MCLauncher.exe 84 RegQueryKey HKCU SUCCESS Query: Name 97 12:38:31,4538569 MCLauncher.exe 84 RegOpenKey HKCU\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer SUCCESS Desired Access: Query Value 97 12:38:31,4538661 MCLauncher.exe 84 RegSetInfoKey HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 97 12:38:31,4538705 MCLauncher.exe 84 RegQueryValue HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer\DontShowSuperHidden NAME NOT FOUND Length: 144 97 12:38:31,4538832 MCLauncher.exe 84 RegCloseKey HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer SUCCESS 97 12:38:31,4538927 MCLauncher.exe 84 RegQueryKey HKCU SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:31,4538979 MCLauncher.exe 84 RegQueryKey HKCU SUCCESS Query: Name 97 12:38:31,4539060 MCLauncher.exe 84 RegOpenKey HKCU\Software\Microsoft\Windows\CurrentVersion\Explorer SUCCESS Desired Access: Query Value 97 12:38:31,4539145 MCLauncher.exe 84 RegSetInfoKey HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 97 12:38:31,4539209 MCLauncher.exe 84 RegQueryKey HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer SUCCESS Query: HandleTags, HandleTags: 0x400 97 12:38:31,4539265 MCLauncher.exe 84 RegOpenKey HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer SUCCESS Desired Access: Query Value 97 12:38:31,4539331 MCLauncher.exe 84 RegQueryValue HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellState SUCCESS Type: REG_BINARY, Length: 36, Data: 24 00 00 00 34 28 00 00 00 00 00 00 00 00 00 00 97 12:38:31,4539472 MCLauncher.exe 84 RegQueryValue HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellState SUCCESS Type: REG_BINARY, Length: 36, Data: 24 00 00 00 34 28 00 00 00 00 00 00 00 00 00 00 97 12:38:31,4539603 MCLauncher.exe 84 RegCloseKey HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer SUCCESS 97 12:38:31,4539713 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:31,4539766 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: Name 97 12:38:31,4539860 MCLauncher.exe 84 RegOpenKey HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Policies\Explorer REPARSE Desired Access: Query Value 97 12:38:31,4539941 MCLauncher.exe 84 RegOpenKey HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer SUCCESS Desired Access: Query Value 97 12:38:31,4539999 MCLauncher.exe 84 RegSetInfoKey HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 97 12:38:31,4540046 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer\NoWebView NAME NOT FOUND Length: 144 97 12:38:31,4540176 MCLauncher.exe 84 RegCloseKey HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer SUCCESS 97 12:38:31,4540243 MCLauncher.exe 84 RegQueryKey HKCU SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:31,4540295 MCLauncher.exe 84 RegQueryKey HKCU SUCCESS Query: Name 97 12:38:31,4540370 MCLauncher.exe 84 RegOpenKey HKCU\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer SUCCESS Desired Access: Query Value 97 12:38:31,4540450 MCLauncher.exe 84 RegSetInfoKey HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 97 12:38:31,4540492 MCLauncher.exe 84 RegQueryValue HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer\NoWebView NAME NOT FOUND Length: 144 97 12:38:31,4540611 MCLauncher.exe 84 RegCloseKey HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer SUCCESS 97 12:38:31,4540689 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:31,4540738 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: Name 97 12:38:31,4540955 MCLauncher.exe 84 RegOpenKey HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Policies\Explorer REPARSE Desired Access: Query Value 97 12:38:31,4541093 MCLauncher.exe 84 RegOpenKey HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer SUCCESS Desired Access: Query Value 97 12:38:31,4541193 MCLauncher.exe 84 RegSetInfoKey HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 97 12:38:31,4541276 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer\ClassicShell NAME NOT FOUND Length: 144 97 12:38:31,4541431 MCLauncher.exe 84 RegCloseKey HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer SUCCESS 97 12:38:31,4541503 MCLauncher.exe 84 RegQueryKey HKCU SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:31,4541556 MCLauncher.exe 84 RegQueryKey HKCU SUCCESS Query: Name 97 12:38:31,4541636 MCLauncher.exe 84 RegOpenKey HKCU\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer SUCCESS Desired Access: Query Value 97 12:38:31,4541716 MCLauncher.exe 84 RegSetInfoKey HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 97 12:38:31,4541761 MCLauncher.exe 84 RegQueryValue HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer\ClassicShell NAME NOT FOUND Length: 144 97 12:38:31,4541880 MCLauncher.exe 84 RegCloseKey HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer SUCCESS 97 12:38:31,4541960 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:31,4542010 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: Name 97 12:38:31,4542096 MCLauncher.exe 84 RegOpenKey HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Policies\Explorer REPARSE Desired Access: Query Value 97 12:38:31,4542171 MCLauncher.exe 84 RegOpenKey HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer SUCCESS Desired Access: Query Value 97 12:38:31,4542226 MCLauncher.exe 84 RegSetInfoKey HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 97 12:38:31,4542268 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer\SeparateProcess NAME NOT FOUND Length: 144 97 12:38:31,4542390 MCLauncher.exe 84 RegCloseKey HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer SUCCESS 97 12:38:31,4542459 MCLauncher.exe 84 RegQueryKey HKCU SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:31,4542509 MCLauncher.exe 84 RegQueryKey HKCU SUCCESS Query: Name 97 12:38:31,4542584 MCLauncher.exe 84 RegOpenKey HKCU\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer SUCCESS Desired Access: Query Value 97 12:38:31,4542661 MCLauncher.exe 84 RegSetInfoKey HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 97 12:38:31,4542703 MCLauncher.exe 84 RegQueryValue HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer\SeparateProcess NAME NOT FOUND Length: 144 97 12:38:31,4542819 MCLauncher.exe 84 RegCloseKey HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer SUCCESS 97 12:38:31,4542894 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:31,4542944 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: Name 97 12:38:31,4543027 MCLauncher.exe 84 RegOpenKey HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Policies\Explorer REPARSE Desired Access: Query Value 97 12:38:31,4543099 MCLauncher.exe 84 RegOpenKey HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer SUCCESS Desired Access: Query Value 97 12:38:31,4543152 MCLauncher.exe 84 RegSetInfoKey HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 97 12:38:31,4543193 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer\NoNetCrawling NAME NOT FOUND Length: 144 97 12:38:31,4543312 MCLauncher.exe 84 RegCloseKey HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer SUCCESS 97 12:38:31,4543376 MCLauncher.exe 84 RegQueryKey HKCU SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:31,4543426 MCLauncher.exe 84 RegQueryKey HKCU SUCCESS Query: Name 97 12:38:31,4543501 MCLauncher.exe 84 RegOpenKey HKCU\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer SUCCESS Desired Access: Query Value 97 12:38:31,4543576 MCLauncher.exe 84 RegSetInfoKey HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 97 12:38:31,4543617 MCLauncher.exe 84 RegQueryValue HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer\NoNetCrawling NAME NOT FOUND Length: 144 97 12:38:31,4543805 MCLauncher.exe 84 RegCloseKey HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer SUCCESS 97 12:38:31,4543891 MCLauncher.exe 84 RegQueryKey HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer SUCCESS Query: HandleTags, HandleTags: 0x400 97 12:38:31,4543952 MCLauncher.exe 84 RegOpenKey HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced SUCCESS Desired Access: Query Value 97 12:38:31,4544030 MCLauncher.exe 84 RegQueryValue HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Hidden SUCCESS Type: REG_DWORD, Length: 4, Data: 2 97 12:38:31,4544163 MCLauncher.exe 84 RegQueryValue HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\ShowCompColor SUCCESS Type: REG_DWORD, Length: 4, Data: 1 97 12:38:31,4544282 MCLauncher.exe 84 RegQueryValue HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\HideFileExt SUCCESS Type: REG_DWORD, Length: 4, Data: 1 97 12:38:31,4544398 MCLauncher.exe 84 RegQueryValue HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\DontPrettyPath SUCCESS Type: REG_DWORD, Length: 4, Data: 0 97 12:38:31,4544512 MCLauncher.exe 84 RegQueryValue HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\ShowInfoTip SUCCESS Type: REG_DWORD, Length: 4, Data: 1 97 12:38:31,4544628 MCLauncher.exe 84 RegQueryValue HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\HideIcons SUCCESS Type: REG_DWORD, Length: 4, Data: 0 97 12:38:31,4544745 MCLauncher.exe 84 RegQueryValue HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\MapNetDrvBtn SUCCESS Type: REG_DWORD, Length: 4, Data: 0 97 12:38:31,4544864 MCLauncher.exe 84 RegQueryValue HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\WebView SUCCESS Type: REG_DWORD, Length: 4, Data: 1 97 12:38:31,4544977 MCLauncher.exe 84 RegQueryValue HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Filter SUCCESS Type: REG_DWORD, Length: 4, Data: 0 97 12:38:31,4545094 MCLauncher.exe 84 RegQueryValue HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\ShowSuperHidden SUCCESS Type: REG_DWORD, Length: 4, Data: 0 97 12:38:31,4545213 MCLauncher.exe 84 RegQueryValue HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\SeparateProcess SUCCESS Type: REG_DWORD, Length: 4, Data: 0 97 12:38:31,4545327 MCLauncher.exe 84 RegQueryValue HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\NoNetCrawling NAME NOT FOUND Length: 144 97 12:38:31,4545437 MCLauncher.exe 84 RegQueryValue HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\AutoCheckSelect SUCCESS Type: REG_DWORD, Length: 4, Data: 0 97 12:38:31,4545551 MCLauncher.exe 84 RegQueryValue HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\IconsOnly SUCCESS Type: REG_DWORD, Length: 4, Data: 0 97 12:38:31,4545667 MCLauncher.exe 84 RegQueryValue HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\ShowTypeOverlay SUCCESS Type: REG_DWORD, Length: 4, Data: 1 97 12:38:31,4545781 MCLauncher.exe 84 RegQueryValue HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\ShowStatusBar SUCCESS Type: REG_DWORD, Length: 4, Data: 1 97 12:38:31,4546839 MCLauncher.exe 84 RegCloseKey HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced SUCCESS 97 12:38:31,4546997 MCLauncher.exe 84 RegQueryKey HKCU\Software\Classes SUCCESS Query: Name 97 12:38:31,4547066 MCLauncher.exe 84 RegQueryKey HKCU\Software\Classes SUCCESS Query: HandleTags, HandleTags: 0x1 97 12:38:31,4547141 MCLauncher.exe 84 RegQueryKey HKCU\Software\Classes SUCCESS Query: HandleTags, HandleTags: 0x1 97 12:38:31,4547191 MCLauncher.exe 84 RegQueryKey HKCU\Software\Classes SUCCESS Query: Name 97 12:38:31,4547271 MCLauncher.exe 84 RegOpenKey HKCU\Software\Classes\.exe NAME NOT FOUND Desired Access: Read 97 12:38:31,4547380 MCLauncher.exe 84 RegOpenKey HKCR\.exe SUCCESS Desired Access: Read 97 12:38:31,4547468 MCLauncher.exe 84 RegSetInfoKey HKCR\.exe SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 97 12:38:31,4547596 MCLauncher.exe 84 RegQueryKey HKCR\.exe SUCCESS Query: Name 97 12:38:31,4547657 MCLauncher.exe 84 RegQueryKey HKCR\.exe SUCCESS Query: HandleTags, HandleTags: 0x401 97 12:38:31,4547762 MCLauncher.exe 84 RegOpenKey HKCU\Software\Classes\.exe NAME NOT FOUND Desired Access: Maximum Allowed 97 12:38:31,4547828 MCLauncher.exe 84 RegQueryValue HKCR\.exe\(Default) SUCCESS Type: REG_SZ, Length: 16, Data: exefile 97 12:38:31,4547959 MCLauncher.exe 84 RegQueryKey HKCU\Software\Classes SUCCESS Query: Name 97 12:38:31,4548014 MCLauncher.exe 84 RegQueryKey HKCU\Software\Classes SUCCESS Query: HandleTags, HandleTags: 0x1 97 12:38:31,4548080 MCLauncher.exe 84 RegQueryKey HKCU\Software\Classes SUCCESS Query: HandleTags, HandleTags: 0x1 97 12:38:31,4548125 MCLauncher.exe 84 RegQueryKey HKCU\Software\Classes SUCCESS Query: Name 97 12:38:31,4548191 MCLauncher.exe 84 RegOpenKey HKCU\Software\Classes\exefile NAME NOT FOUND Desired Access: Read 97 12:38:31,4548269 MCLauncher.exe 84 RegOpenKey HKCR\exefile SUCCESS Desired Access: Read 97 12:38:31,4548341 MCLauncher.exe 84 RegSetInfoKey HKCR\exefile SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 97 12:38:31,4548382 MCLauncher.exe 84 RegQueryKey HKCR\exefile SUCCESS Query: Name 97 12:38:31,4548441 MCLauncher.exe 84 RegQueryKey HKCR\exefile SUCCESS Query: HandleTags, HandleTags: 0x401 97 12:38:31,4548524 MCLauncher.exe 84 RegOpenKey HKCU\Software\Classes\exefile\CurVer NAME NOT FOUND Desired Access: Query Value 97 12:38:31,4548599 MCLauncher.exe 84 RegQueryKey HKCR\exefile SUCCESS Query: HandleTags, HandleTags: 0x401 97 12:38:31,4548648 MCLauncher.exe 84 RegOpenKey HKCR\exefile\CurVer NAME NOT FOUND Desired Access: Query Value 97 12:38:31,4548723 MCLauncher.exe 84 RegQueryKey HKCR\exefile SUCCESS Query: Name 97 12:38:31,4548773 MCLauncher.exe 84 RegQueryKey HKCR\exefile SUCCESS Query: HandleTags, HandleTags: 0x401 97 12:38:31,4548851 MCLauncher.exe 84 RegOpenKey HKCU\Software\Classes\exefile NAME NOT FOUND Desired Access: Read 97 12:38:31,4548920 MCLauncher.exe 84 RegQueryKey HKCR\exefile SUCCESS Query: HandleTags, HandleTags: 0x401 97 12:38:31,4548973 MCLauncher.exe 84 RegOpenKey HKCR\exefile SUCCESS Desired Access: Read 97 12:38:31,4549053 MCLauncher.exe 84 RegCloseKey HKCR\exefile SUCCESS 97 12:38:31,4549122 MCLauncher.exe 84 RegQueryKey HKCR\exefile SUCCESS Query: Name 97 12:38:31,4549175 MCLauncher.exe 84 RegQueryKey HKCR\exefile SUCCESS Query: HandleTags, HandleTags: 0x401 97 12:38:31,4549255 MCLauncher.exe 84 RegOpenKey HKCU\Software\Classes\exefile\ShellEx\IconHandler NAME NOT FOUND Desired Access: Query Value 97 12:38:31,4549330 MCLauncher.exe 84 RegQueryKey HKCR\exefile SUCCESS Query: HandleTags, HandleTags: 0x401 97 12:38:31,4549380 MCLauncher.exe 84 RegOpenKey HKCR\exefile\ShellEx\IconHandler NAME NOT FOUND Desired Access: Query Value 97 12:38:31,4549496 MCLauncher.exe 84 RegQueryKey HKCU\Software\Classes SUCCESS Query: Name 97 12:38:31,4549552 MCLauncher.exe 84 RegQueryKey HKCU\Software\Classes SUCCESS Query: HandleTags, HandleTags: 0x1 97 12:38:31,4549613 MCLauncher.exe 84 RegQueryKey HKCU\Software\Classes SUCCESS Query: HandleTags, HandleTags: 0x1 97 12:38:31,4549660 MCLauncher.exe 84 RegQueryKey HKCU\Software\Classes SUCCESS Query: Name 97 12:38:31,4549723 MCLauncher.exe 84 RegOpenKey HKCU\Software\Classes\SystemFileAssociations\.exe NAME NOT FOUND Desired Access: Read 97 12:38:31,4549804 MCLauncher.exe 84 RegOpenKey HKCR\SystemFileAssociations\.exe SUCCESS Desired Access: Read 97 12:38:31,4549879 MCLauncher.exe 84 RegSetInfoKey HKCR\SystemFileAssociations\.exe SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 97 12:38:31,4549931 MCLauncher.exe 84 RegQueryKey HKCR\SystemFileAssociations\.exe SUCCESS Query: Name 97 12:38:31,4549992 MCLauncher.exe 84 RegQueryKey HKCR\SystemFileAssociations\.exe SUCCESS Query: HandleTags, HandleTags: 0x401 97 12:38:31,4550073 MCLauncher.exe 84 RegOpenKey HKCU\Software\Classes\SystemFileAssociations\.exe\ShellEx\IconHandler NAME NOT FOUND Desired Access: Query Value 97 12:38:31,4550147 MCLauncher.exe 84 RegQueryKey HKCR\SystemFileAssociations\.exe SUCCESS Query: HandleTags, HandleTags: 0x401 97 12:38:31,4550197 MCLauncher.exe 84 RegOpenKey HKCR\SystemFileAssociations\.exe\ShellEx\IconHandler NAME NOT FOUND Desired Access: Query Value 97 12:38:31,4550330 MCLauncher.exe 84 RegQueryKey HKCR\exefile SUCCESS Query: Name 97 12:38:31,4550388 MCLauncher.exe 84 RegQueryKey HKCR\exefile SUCCESS Query: HandleTags, HandleTags: 0x401 97 12:38:31,4550466 MCLauncher.exe 84 RegOpenKey HKCU\Software\Classes\exefile NAME NOT FOUND Desired Access: Maximum Allowed 97 12:38:31,4550524 MCLauncher.exe 84 RegQueryValue HKCR\exefile\DocObject NAME NOT FOUND Length: 144 97 12:38:31,4550654 MCLauncher.exe 84 RegQueryKey HKCR\exefile SUCCESS Query: Name 97 12:38:31,4550713 MCLauncher.exe 84 RegQueryKey HKCR\exefile SUCCESS Query: HandleTags, HandleTags: 0x401 97 12:38:31,4550807 MCLauncher.exe 84 RegOpenKey HKCU\Software\Classes\exefile\DocObject NAME NOT FOUND Desired Access: Query Value 97 12:38:31,4551048 MCLauncher.exe 84 RegQueryKey HKCR\exefile SUCCESS Query: HandleTags, HandleTags: 0x401 97 12:38:31,4551142 MCLauncher.exe 84 RegOpenKey HKCR\exefile\DocObject NAME NOT FOUND Desired Access: Query Value 97 12:38:31,4551272 MCLauncher.exe 84 RegQueryKey HKCR\SystemFileAssociations\.exe SUCCESS Query: Name 97 12:38:31,4551341 MCLauncher.exe 84 RegQueryKey HKCR\SystemFileAssociations\.exe SUCCESS Query: HandleTags, HandleTags: 0x401 97 12:38:31,4551438 MCLauncher.exe 84 RegOpenKey HKCU\Software\Classes\SystemFileAssociations\.exe NAME NOT FOUND Desired Access: Maximum Allowed 97 12:38:31,4551505 MCLauncher.exe 84 RegQueryValue HKCR\SystemFileAssociations\.exe\DocObject NAME NOT FOUND Length: 144 97 12:38:31,4551641 MCLauncher.exe 84 RegQueryKey HKCR\SystemFileAssociations\.exe SUCCESS Query: Name 97 12:38:31,4551704 MCLauncher.exe 84 RegQueryKey HKCR\SystemFileAssociations\.exe SUCCESS Query: HandleTags, HandleTags: 0x401 97 12:38:31,4551796 MCLauncher.exe 84 RegOpenKey HKCU\Software\Classes\SystemFileAssociations\.exe\DocObject NAME NOT FOUND Desired Access: Query Value 97 12:38:31,4551879 MCLauncher.exe 84 RegQueryKey HKCR\SystemFileAssociations\.exe SUCCESS Query: HandleTags, HandleTags: 0x401 97 12:38:31,4551929 MCLauncher.exe 84 RegOpenKey HKCR\SystemFileAssociations\.exe\DocObject NAME NOT FOUND Desired Access: Query Value 97 12:38:31,4552004 MCLauncher.exe 84 RegQueryKey HKCR\exefile SUCCESS Query: Name 97 12:38:31,4552056 MCLauncher.exe 84 RegQueryKey HKCR\exefile SUCCESS Query: HandleTags, HandleTags: 0x401 97 12:38:31,4552131 MCLauncher.exe 84 RegOpenKey HKCU\Software\Classes\exefile NAME NOT FOUND Desired Access: Maximum Allowed 97 12:38:31,4552189 MCLauncher.exe 84 RegQueryValue HKCR\exefile\BrowseInPlace NAME NOT FOUND Length: 144 97 12:38:31,4552303 MCLauncher.exe 84 RegQueryKey HKCR\exefile SUCCESS Query: Name 97 12:38:31,4552364 MCLauncher.exe 84 RegQueryKey HKCR\exefile SUCCESS Query: HandleTags, HandleTags: 0x401 97 12:38:31,4552455 MCLauncher.exe 84 RegOpenKey HKCU\Software\Classes\exefile\BrowseInPlace NAME NOT FOUND Desired Access: Query Value 97 12:38:31,4552533 MCLauncher.exe 84 RegQueryKey HKCR\exefile SUCCESS Query: HandleTags, HandleTags: 0x401 97 12:38:31,4552585 MCLauncher.exe 84 RegOpenKey HKCR\exefile\BrowseInPlace NAME NOT FOUND Desired Access: Query Value 97 12:38:31,4552652 MCLauncher.exe 84 RegQueryKey HKCR\SystemFileAssociations\.exe SUCCESS Query: Name 97 12:38:31,4552707 MCLauncher.exe 84 RegQueryKey HKCR\SystemFileAssociations\.exe SUCCESS Query: HandleTags, HandleTags: 0x401 97 12:38:31,4552785 MCLauncher.exe 84 RegOpenKey HKCU\Software\Classes\SystemFileAssociations\.exe NAME NOT FOUND Desired Access: Maximum Allowed 97 12:38:31,4552840 MCLauncher.exe 84 RegQueryValue HKCR\SystemFileAssociations\.exe\BrowseInPlace NAME NOT FOUND Length: 144 97 12:38:31,4552954 MCLauncher.exe 84 RegQueryKey HKCR\SystemFileAssociations\.exe SUCCESS Query: Name 97 12:38:31,4553015 MCLauncher.exe 84 RegQueryKey HKCR\SystemFileAssociations\.exe SUCCESS Query: HandleTags, HandleTags: 0x401 97 12:38:31,4553106 MCLauncher.exe 84 RegOpenKey HKCU\Software\Classes\SystemFileAssociations\.exe\BrowseInPlace NAME NOT FOUND Desired Access: Query Value 97 12:38:31,4553187 MCLauncher.exe 84 RegQueryKey HKCR\SystemFileAssociations\.exe SUCCESS Query: HandleTags, HandleTags: 0x401 97 12:38:31,4553239 MCLauncher.exe 84 RegOpenKey HKCR\SystemFileAssociations\.exe\BrowseInPlace NAME NOT FOUND Desired Access: Query Value 97 12:38:31,4553386 MCLauncher.exe 84 RegQueryKey HKCR\.exe SUCCESS Query: Name 97 12:38:31,4553442 MCLauncher.exe 84 RegQueryKey HKCR\.exe SUCCESS Query: HandleTags, HandleTags: 0x401 97 12:38:31,4553519 MCLauncher.exe 84 RegOpenKey HKCU\Software\Classes\.exe NAME NOT FOUND Desired Access: Maximum Allowed 97 12:38:31,4553577 MCLauncher.exe 84 RegQueryValue HKCR\.exe\Content Type SUCCESS Type: REG_SZ, Length: 50, Data: application/x-msdownload 97 12:38:31,4553732 MCLauncher.exe 84 RegQueryKey HKCR\exefile SUCCESS Query: Name 97 12:38:31,4553796 MCLauncher.exe 84 RegQueryKey HKCR\exefile SUCCESS Query: HandleTags, HandleTags: 0x401 97 12:38:31,4553890 MCLauncher.exe 84 RegOpenKey HKCU\Software\Classes\exefile\Clsid NAME NOT FOUND Desired Access: Query Value 97 12:38:31,4553968 MCLauncher.exe 84 RegQueryKey HKCR\exefile SUCCESS Query: HandleTags, HandleTags: 0x401 97 12:38:31,4554021 MCLauncher.exe 84 RegOpenKey HKCR\exefile\Clsid NAME NOT FOUND Desired Access: Query Value 97 12:38:31,4554087 MCLauncher.exe 84 RegQueryKey HKCR\SystemFileAssociations\.exe SUCCESS Query: Name 97 12:38:31,4554142 MCLauncher.exe 84 RegQueryKey HKCR\SystemFileAssociations\.exe SUCCESS Query: HandleTags, HandleTags: 0x401 97 12:38:31,4554220 MCLauncher.exe 84 RegOpenKey HKCU\Software\Classes\SystemFileAssociations\.exe\Clsid NAME NOT FOUND Desired Access: Query Value 97 12:38:31,4554289 MCLauncher.exe 84 RegQueryKey HKCR\SystemFileAssociations\.exe SUCCESS Query: HandleTags, HandleTags: 0x401 97 12:38:31,4554342 MCLauncher.exe 84 RegOpenKey HKCR\SystemFileAssociations\.exe\Clsid NAME NOT FOUND Desired Access: Query Value 97 12:38:31,4554444 MCLauncher.exe 84 RegQueryKey HKCR\exefile SUCCESS Query: Name 97 12:38:31,4554494 MCLauncher.exe 84 RegQueryKey HKCR\exefile SUCCESS Query: HandleTags, HandleTags: 0x401 97 12:38:31,4554572 MCLauncher.exe 84 RegOpenKey HKCU\Software\Classes\exefile NAME NOT FOUND Desired Access: Maximum Allowed 97 12:38:31,4554627 MCLauncher.exe 84 RegQueryValue HKCR\exefile\IsShortcut NAME NOT FOUND Length: 144 97 12:38:31,4554749 MCLauncher.exe 84 RegQueryKey HKCR\SystemFileAssociations\.exe SUCCESS Query: Name 97 12:38:31,4554810 MCLauncher.exe 84 RegQueryKey HKCR\SystemFileAssociations\.exe SUCCESS Query: HandleTags, HandleTags: 0x401 97 12:38:31,4554904 MCLauncher.exe 84 RegOpenKey HKCU\Software\Classes\SystemFileAssociations\.exe NAME NOT FOUND Desired Access: Maximum Allowed 97 12:38:31,4554971 MCLauncher.exe 84 RegQueryValue HKCR\SystemFileAssociations\.exe\IsShortcut NAME NOT FOUND Length: 144 97 12:38:31,4555098 MCLauncher.exe 84 RegQueryKey HKCR\exefile SUCCESS Query: Name 97 12:38:31,4555156 MCLauncher.exe 84 RegQueryKey HKCR\exefile SUCCESS Query: HandleTags, HandleTags: 0x401 97 12:38:31,4555245 MCLauncher.exe 84 RegOpenKey HKCU\Software\Classes\exefile NAME NOT FOUND Desired Access: Maximum Allowed 97 12:38:31,4555309 MCLauncher.exe 84 RegQueryValue HKCR\exefile\AlwaysShowExt NAME NOT FOUND Length: 144 97 12:38:31,4555420 MCLauncher.exe 84 RegQueryKey HKCR\SystemFileAssociations\.exe SUCCESS Query: Name 97 12:38:31,4555481 MCLauncher.exe 84 RegQueryKey HKCR\SystemFileAssociations\.exe SUCCESS Query: HandleTags, HandleTags: 0x401 97 12:38:31,4555572 MCLauncher.exe 84 RegOpenKey HKCU\Software\Classes\SystemFileAssociations\.exe NAME NOT FOUND Desired Access: Maximum Allowed 97 12:38:31,4555636 MCLauncher.exe 84 RegQueryValue HKCR\SystemFileAssociations\.exe\AlwaysShowExt NAME NOT FOUND Length: 144 97 12:38:31,4555758 MCLauncher.exe 84 RegQueryKey HKCR\exefile SUCCESS Query: Name 97 12:38:31,4555819 MCLauncher.exe 84 RegQueryKey HKCR\exefile SUCCESS Query: HandleTags, HandleTags: 0x401 97 12:38:31,4555907 MCLauncher.exe 84 RegOpenKey HKCU\Software\Classes\exefile NAME NOT FOUND Desired Access: Maximum Allowed 97 12:38:31,4555968 MCLauncher.exe 84 RegQueryValue HKCR\exefile\NeverShowExt NAME NOT FOUND Length: 144 97 12:38:31,4556082 MCLauncher.exe 84 RegQueryKey HKCR\SystemFileAssociations\.exe SUCCESS Query: Name 97 12:38:31,4556143 MCLauncher.exe 84 RegQueryKey HKCR\SystemFileAssociations\.exe SUCCESS Query: HandleTags, HandleTags: 0x401 97 12:38:31,4556234 MCLauncher.exe 84 RegOpenKey HKCU\Software\Classes\SystemFileAssociations\.exe NAME NOT FOUND Desired Access: Maximum Allowed 97 12:38:31,4556295 MCLauncher.exe 84 RegQueryValue HKCR\SystemFileAssociations\.exe\NeverShowExt NAME NOT FOUND Length: 144 97 12:38:31,4556448 MCLauncher.exe 84 RegCloseKey HKCR\.exe SUCCESS 97 12:38:31,4556503 MCLauncher.exe 84 RegCloseKey HKCR\exefile SUCCESS 97 12:38:31,4556550 MCLauncher.exe 84 RegCloseKey HKCR\SystemFileAssociations\.exe SUCCESS 97 12:38:31,4556905 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:31,4556957 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: Name 97 12:38:31,4557052 MCLauncher.exe 84 RegOpenKey HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS Desired Access: Read 97 12:38:31,4557154 MCLauncher.exe 84 RegSetInfoKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 97 12:38:31,4557226 MCLauncher.exe 84 RegQueryKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS Query: HandleTags, HandleTags: 0x400 97 12:38:31,4557279 MCLauncher.exe 84 RegOpenKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{B4BFCC3A-DB2C-424C-B029-7FE99A87C641} SUCCESS Desired Access: Read 97 12:38:31,4557365 MCLauncher.exe 84 RegCloseKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS 97 12:38:31,4557417 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{B4BFCC3A-DB2C-424C-B029-7FE99A87C641}\Category SUCCESS Type: REG_DWORD, Length: 4, Data: 4 97 12:38:31,4557559 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{B4BFCC3A-DB2C-424C-B029-7FE99A87C641}\Name SUCCESS Type: REG_SZ, Length: 16, Data: Desktop 97 12:38:31,4557694 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{B4BFCC3A-DB2C-424C-B029-7FE99A87C641}\ParentFolder NAME NOT FOUND Length: 144 97 12:38:31,4557808 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{B4BFCC3A-DB2C-424C-B029-7FE99A87C641}\Description NAME NOT FOUND Length: 144 97 12:38:31,4557916 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{B4BFCC3A-DB2C-424C-B029-7FE99A87C641}\RelativePath SUCCESS Type: REG_SZ, Length: 16, Data: Desktop 97 12:38:31,4558041 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{B4BFCC3A-DB2C-424C-B029-7FE99A87C641}\ParsingName NAME NOT FOUND Length: 144 97 12:38:31,4558149 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{B4BFCC3A-DB2C-424C-B029-7FE99A87C641}\InfoTip NAME NOT FOUND Length: 144 97 12:38:31,4558257 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{B4BFCC3A-DB2C-424C-B029-7FE99A87C641}\LocalizedName SUCCESS Type: REG_EXPAND_SZ, Length: 84, Data: @%SystemRoot%\system32\shell32.dll,-21769 97 12:38:31,4558384 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{B4BFCC3A-DB2C-424C-B029-7FE99A87C641}\Icon SUCCESS Type: REG_EXPAND_SZ, Length: 80, Data: %SystemRoot%\system32\imageres.dll,-183 97 12:38:31,4558509 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{B4BFCC3A-DB2C-424C-B029-7FE99A87C641}\Security NAME NOT FOUND Length: 144 97 12:38:31,4558617 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{B4BFCC3A-DB2C-424C-B029-7FE99A87C641}\StreamResource NAME NOT FOUND Length: 144 97 12:38:31,4558722 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{B4BFCC3A-DB2C-424C-B029-7FE99A87C641}\StreamResourceType NAME NOT FOUND Length: 144 97 12:38:31,4558827 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{B4BFCC3A-DB2C-424C-B029-7FE99A87C641}\LocalRedirectOnly NAME NOT FOUND Length: 144 97 12:38:31,4558930 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{B4BFCC3A-DB2C-424C-B029-7FE99A87C641}\Roamable SUCCESS Type: REG_DWORD, Length: 4, Data: 1 97 12:38:31,4559113 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{B4BFCC3A-DB2C-424C-B029-7FE99A87C641}\PreCreate SUCCESS Type: REG_DWORD, Length: 4, Data: 1 97 12:38:31,4559238 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{B4BFCC3A-DB2C-424C-B029-7FE99A87C641}\Stream NAME NOT FOUND Length: 144 97 12:38:31,4559346 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{B4BFCC3A-DB2C-424C-B029-7FE99A87C641}\PublishExpandedPath SUCCESS Type: REG_DWORD, Length: 4, Data: 1 97 12:38:31,4559462 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{B4BFCC3A-DB2C-424C-B029-7FE99A87C641}\DefinitionFlags NAME NOT FOUND Length: 144 97 12:38:31,4559567 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{B4BFCC3A-DB2C-424C-B029-7FE99A87C641}\Attributes SUCCESS Type: REG_DWORD, Length: 4, Data: 1 97 12:38:31,4559686 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{B4BFCC3A-DB2C-424C-B029-7FE99A87C641}\FolderTypeID NAME NOT FOUND Length: 144 97 12:38:31,4559792 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{B4BFCC3A-DB2C-424C-B029-7FE99A87C641}\InitFolderHandler NAME NOT FOUND Length: 144 97 12:38:31,4559936 MCLauncher.exe 84 RegQueryKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{B4BFCC3A-DB2C-424C-B029-7FE99A87C641} SUCCESS Query: HandleTags, HandleTags: 0x400 97 12:38:31,4559997 MCLauncher.exe 84 RegOpenKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{B4BFCC3A-DB2C-424C-B029-7FE99A87C641}\PropertyBag SUCCESS Desired Access: Read 97 12:38:31,4560094 MCLauncher.exe 84 RegCloseKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{B4BFCC3A-DB2C-424C-B029-7FE99A87C641} SUCCESS 97 12:38:31,4560296 MCLauncher.exe 84 RegQueryKey HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer SUCCESS Query: HandleTags, HandleTags: 0x400 97 12:38:31,4560351 MCLauncher.exe 84 RegOpenKey HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\SessionInfo\1 SUCCESS Desired Access: Query Value 97 12:38:31,4560457 MCLauncher.exe 84 RegQueryKey HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\SessionInfo\1 SUCCESS Query: HandleTags, HandleTags: 0x400 97 12:38:31,4560506 MCLauncher.exe 84 RegOpenKey HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\SessionInfo\1\KnownFolders NAME NOT FOUND Desired Access: Query Value 97 12:38:31,4560581 MCLauncher.exe 84 RegCloseKey HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\SessionInfo\1 SUCCESS 97 12:38:31,4560797 MCLauncher.exe 84 RegOpenKey HKCU SUCCESS Desired Access: Read 97 12:38:31,4560905 MCLauncher.exe 84 RegQueryKey HKCU SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:31,4560952 MCLauncher.exe 84 RegQueryKey HKCU SUCCESS Query: Name 97 12:38:31,4561027 MCLauncher.exe 84 RegOpenKey HKCU\Software\Microsoft\Windows\CurrentVersion\Explorer\User Shell Folders SUCCESS Desired Access: Read 97 12:38:31,4561119 MCLauncher.exe 84 RegSetInfoKey HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\User Shell Folders SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 97 12:38:31,4561169 MCLauncher.exe 84 RegCloseKey HKCU SUCCESS 97 12:38:31,4561216 MCLauncher.exe 84 RegQueryValue HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\User Shell Folders\Desktop SUCCESS Type: REG_EXPAND_SZ, Length: 44, Data: %USERPROFILE%\Desktop 97 12:38:31,4561509 MCLauncher.exe 84 RegCloseKey HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\User Shell Folders SUCCESS 97 12:38:31,4563718 MCLauncher.exe 84 CreateFile C:\Users\User\AppData\Local\Microsoft\Windows\Caches NAME COLLISION Desired Access: Read Data/List Directory, Synchronize, Disposition: Create, Options: Directory, Synchronous IO Non-Alert, Open Reparse Point, Attributes: N, ShareMode: Read, Write, AllocationSize: 0 97 12:38:31,4566463 MCLauncher.exe 84 CreateFile C:\Users\User\AppData\Local\Microsoft\Windows\Caches SUCCESS Desired Access: Read Control, Disposition: Open, Options: Open Reparse Point, Attributes: n/a, ShareMode: Read, Write, Delete, AllocationSize: n/a, OpenResult: Opened 97 12:38:31,4566671 MCLauncher.exe 84 QuerySecurityFile C:\Users\User\AppData\Local\Microsoft\Windows\Caches BUFFER OVERFLOW Information: DACL 97 12:38:31,4566760 MCLauncher.exe 84 CloseFile C:\Users\User\AppData\Local\Microsoft\Windows\Caches SUCCESS 97 12:38:31,4567707 MCLauncher.exe 84 CreateFile C:\Users\User\AppData\Local\Microsoft\Windows\Caches SUCCESS Desired Access: Read Control, Disposition: Open, Options: Open Reparse Point, Attributes: n/a, ShareMode: Read, Write, Delete, AllocationSize: n/a, OpenResult: Opened 97 12:38:31,4567879 MCLauncher.exe 84 QuerySecurityFile C:\Users\User\AppData\Local\Microsoft\Windows\Caches SUCCESS Information: DACL 97 12:38:31,4567954 MCLauncher.exe 84 CloseFile C:\Users\User\AppData\Local\Microsoft\Windows\Caches SUCCESS 97 12:38:31,4569142 MCLauncher.exe 84 CreateFile C:\Users\User\AppData\Local\Microsoft\Windows\Caches\cversions.1.db SUCCESS Desired Access: Generic Read, Disposition: Open, Options: Synchronous IO Non-Alert, Non-Directory File, Attributes: n/a, ShareMode: Read, Write, AllocationSize: n/a, OpenResult: Opened 97 12:38:31,4569466 MCLauncher.exe 84 CreateFileMapping C:\Users\User\AppData\Local\Microsoft\Windows\Caches\cversions.1.db FILE LOCKED WITH ONLY READERS SyncType: SyncTypeCreateSection, PageProtection: PAGE_EXECUTE|PAGE_NOCACHE 97 12:38:31,4569624 MCLauncher.exe 84 QueryNameInformationFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Name: \Users\User\Downloads\MCLauncher.exe 97 12:38:31,4570705 MCLauncher.exe 84 CreateFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Desired Access: Synchronize, Disposition: Open, Options: Synchronous IO Non-Alert, Attributes: N, ShareMode: Read, Write, Delete, AllocationSize: n/a, OpenResult: Opened 97 12:38:31,4570902 MCLauncher.exe 84 CloseFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS 97 12:38:31,4571198 MCLauncher.exe 84 QueryNameInformationFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Name: \Users\User\Downloads\MCLauncher.exe 97 12:38:31,4572060 MCLauncher.exe 84 CreateFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Desired Access: Synchronize, Disposition: Open, Options: Synchronous IO Non-Alert, Attributes: N, ShareMode: Read, Write, Delete, AllocationSize: n/a, OpenResult: Opened 97 12:38:31,4572226 MCLauncher.exe 84 CloseFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS 97 12:38:31,4572966 MCLauncher.exe 84 QueryStandardInformationFile C:\Users\User\AppData\Local\Microsoft\Windows\Caches\cversions.1.db SUCCESS AllocationSize: 16 384, EndOfFile: 16 384, NumberOfLinks: 1, DeletePending: False, Directory: False 97 12:38:31,4573124 MCLauncher.exe 84 CreateFileMapping C:\Users\User\AppData\Local\Microsoft\Windows\Caches\cversions.1.db SUCCESS SyncType: SyncTypeOther 97 12:38:31,4573392 MCLauncher.exe 84 CloseFile C:\Users\User\AppData\Local\Microsoft\Windows\Caches\cversions.1.db SUCCESS 97 12:38:31,4574850 MCLauncher.exe 84 CreateFile C:\Users\User\AppData\Local\Microsoft\Windows\Caches\{AFBF9F1A-8EE8-4C77-AF34-C647E37CA0D9}.1.ver0x0000000000000001.db SUCCESS Desired Access: Generic Read, Disposition: Open, Options: Synchronous IO Non-Alert, Non-Directory File, Attributes: n/a, ShareMode: Read, AllocationSize: n/a, OpenResult: Opened 97 12:38:31,4575066 MCLauncher.exe 84 QueryStandardInformationFile C:\Users\User\AppData\Local\Microsoft\Windows\Caches\{AFBF9F1A-8EE8-4C77-AF34-C647E37CA0D9}.1.ver0x0000000000000001.db SUCCESS AllocationSize: 135 168, EndOfFile: 134 416, NumberOfLinks: 1, DeletePending: False, Directory: False 97 12:38:31,4575251 MCLauncher.exe 84 CreateFileMapping C:\Users\User\AppData\Local\Microsoft\Windows\Caches\{AFBF9F1A-8EE8-4C77-AF34-C647E37CA0D9}.1.ver0x0000000000000001.db FILE LOCKED WITH ONLY READERS SyncType: SyncTypeCreateSection, PageProtection: PAGE_EXECUTE|PAGE_NOCACHE 97 12:38:31,4575368 MCLauncher.exe 84 QueryNameInformationFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Name: \Users\User\Downloads\MCLauncher.exe 97 12:38:31,4576252 MCLauncher.exe 84 CreateFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Desired Access: Synchronize, Disposition: Open, Options: Synchronous IO Non-Alert, Attributes: N, ShareMode: Read, Write, Delete, AllocationSize: n/a, OpenResult: Opened 97 12:38:31,4576432 MCLauncher.exe 84 CloseFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS 97 12:38:31,4576706 MCLauncher.exe 84 QueryNameInformationFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Name: \Users\User\Downloads\MCLauncher.exe 97 12:38:31,4577551 MCLauncher.exe 84 CreateFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Desired Access: Synchronize, Disposition: Open, Options: Synchronous IO Non-Alert, Attributes: N, ShareMode: Read, Write, Delete, AllocationSize: n/a, OpenResult: Opened 97 12:38:31,4577714 MCLauncher.exe 84 CloseFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS 97 12:38:31,4578354 MCLauncher.exe 84 QueryStandardInformationFile C:\Users\User\AppData\Local\Microsoft\Windows\Caches\{AFBF9F1A-8EE8-4C77-AF34-C647E37CA0D9}.1.ver0x0000000000000001.db SUCCESS AllocationSize: 135 168, EndOfFile: 134 416, NumberOfLinks: 1, DeletePending: False, Directory: False 97 12:38:31,4578498 MCLauncher.exe 84 CreateFileMapping C:\Users\User\AppData\Local\Microsoft\Windows\Caches\{AFBF9F1A-8EE8-4C77-AF34-C647E37CA0D9}.1.ver0x0000000000000001.db SUCCESS SyncType: SyncTypeOther 97 12:38:31,4578731 MCLauncher.exe 84 CloseFile C:\Users\User\AppData\Local\Microsoft\Windows\Caches\{AFBF9F1A-8EE8-4C77-AF34-C647E37CA0D9}.1.ver0x0000000000000001.db SUCCESS 97 12:38:31,4580992 MCLauncher.exe 84 CreateFile C:\Users\User\Desktop\desktop.ini SUCCESS Desired Access: Generic Read, Disposition: Open, Options: Sequential Access, Synchronous IO Non-Alert, Non-Directory File, Attributes: n/a, ShareMode: Read, Write, Delete, AllocationSize: n/a, OpenResult: Opened 97 12:38:31,4581208 MCLauncher.exe 84 QueryStandardInformationFile C:\Users\User\Desktop\desktop.ini SUCCESS AllocationSize: 288, EndOfFile: 282, NumberOfLinks: 1, DeletePending: False, Directory: False 97 12:38:31,4581311 MCLauncher.exe 84 ReadFile C:\Users\User\Desktop\desktop.ini SUCCESS Offset: 0, Length: 282, Priority: Normal 97 12:38:31,4581793 MCLauncher.exe 84 QueryBasicInformationFile C:\Users\User\Desktop\desktop.ini SUCCESS CreationTime: 19.07.2018 20:08:13, LastAccessTime: 19.07.2018 20:08:13, LastWriteTime: 20.07.2018 19:29:33, ChangeTime: 20.07.2018 19:29:33, FileAttributes: HSA 97 12:38:31,4581892 MCLauncher.exe 84 CloseFile C:\Users\User\Desktop\desktop.ini SUCCESS 97 12:38:31,4582577 MCLauncher.exe 84 RegQueryKey HKCU\Software\Classes SUCCESS Query: Name 97 12:38:31,4582663 MCLauncher.exe 84 RegQueryKey HKCU\Software\Classes SUCCESS Query: HandleTags, HandleTags: 0x1 97 12:38:31,4582740 MCLauncher.exe 84 RegQueryKey HKCU\Software\Classes SUCCESS Query: HandleTags, HandleTags: 0x1 97 12:38:31,4582790 MCLauncher.exe 84 RegQueryKey HKCU\Software\Classes SUCCESS Query: Name 97 12:38:31,4583375 MCLauncher.exe 84 RegOpenKey HKCU\Software\Classes\Directory SUCCESS Desired Access: Read 97 12:38:31,4583513 MCLauncher.exe 84 RegSetInfoKey HKCU\Software\Classes\Directory SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 97 12:38:31,4583594 MCLauncher.exe 84 RegQueryKey HKCU\Software\Classes\Directory SUCCESS Query: Name 97 12:38:31,4583715 MCLauncher.exe 84 RegQueryKey HKCU\Software\Classes\Directory SUCCESS Query: HandleTags, HandleTags: 0x401 97 12:38:31,4583790 MCLauncher.exe 84 RegQueryKey HKCU\Software\Classes\Directory SUCCESS Query: HandleTags, HandleTags: 0x401 97 12:38:31,4583851 MCLauncher.exe 84 RegOpenKey HKCU\Software\Classes\Directory\ShellEx\IconHandler NAME NOT FOUND Desired Access: Query Value 97 12:38:31,4583962 MCLauncher.exe 84 RegOpenKey HKCR\Directory\ShellEx\IconHandler NAME NOT FOUND Desired Access: Query Value 97 12:38:31,4584084 MCLauncher.exe 84 RegQueryKey HKCU\Software\Classes SUCCESS Query: Name 97 12:38:31,4584139 MCLauncher.exe 84 RegQueryKey HKCU\Software\Classes SUCCESS Query: HandleTags, HandleTags: 0x1 97 12:38:31,4584203 MCLauncher.exe 84 RegQueryKey HKCU\Software\Classes SUCCESS Query: HandleTags, HandleTags: 0x1 97 12:38:31,4584250 MCLauncher.exe 84 RegQueryKey HKCU\Software\Classes SUCCESS Query: Name 97 12:38:31,4584319 MCLauncher.exe 84 RegOpenKey HKCU\Software\Classes\Folder NAME NOT FOUND Desired Access: Read 97 12:38:31,4584403 MCLauncher.exe 84 RegOpenKey HKCR\Folder SUCCESS Desired Access: Read 97 12:38:31,4584475 MCLauncher.exe 84 RegSetInfoKey HKCR\Folder SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 97 12:38:31,4584524 MCLauncher.exe 84 RegQueryKey HKCR\Folder SUCCESS Query: Name 97 12:38:31,4584583 MCLauncher.exe 84 RegQueryKey HKCR\Folder SUCCESS Query: HandleTags, HandleTags: 0x401 97 12:38:31,4584680 MCLauncher.exe 84 RegOpenKey HKCU\Software\Classes\Folder\ShellEx\IconHandler NAME NOT FOUND Desired Access: Query Value 97 12:38:31,4584760 MCLauncher.exe 84 RegQueryKey HKCR\Folder SUCCESS Query: HandleTags, HandleTags: 0x401 97 12:38:31,4584810 MCLauncher.exe 84 RegOpenKey HKCR\Folder\ShellEx\IconHandler NAME NOT FOUND Desired Access: Query Value 97 12:38:31,4584896 MCLauncher.exe 84 RegQueryKey HKCU\Software\Classes SUCCESS Query: Name 97 12:38:31,4584951 MCLauncher.exe 84 RegQueryKey HKCU\Software\Classes SUCCESS Query: HandleTags, HandleTags: 0x1 97 12:38:31,4585015 MCLauncher.exe 84 RegQueryKey HKCU\Software\Classes SUCCESS Query: HandleTags, HandleTags: 0x1 97 12:38:31,4585059 MCLauncher.exe 84 RegQueryKey HKCU\Software\Classes SUCCESS Query: Name 97 12:38:31,4585126 MCLauncher.exe 84 RegOpenKey HKCU\Software\Classes\AllFilesystemObjects NAME NOT FOUND Desired Access: Read 97 12:38:31,4585203 MCLauncher.exe 84 RegOpenKey HKCR\AllFilesystemObjects SUCCESS Desired Access: Read 97 12:38:31,4585272 MCLauncher.exe 84 RegSetInfoKey HKCR\AllFilesystemObjects SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 97 12:38:31,4585320 MCLauncher.exe 84 RegQueryKey HKCR\AllFilesystemObjects SUCCESS Query: Name 97 12:38:31,4585378 MCLauncher.exe 84 RegQueryKey HKCR\AllFilesystemObjects SUCCESS Query: HandleTags, HandleTags: 0x401 97 12:38:31,4585461 MCLauncher.exe 84 RegOpenKey HKCU\Software\Classes\AllFilesystemObjects\ShellEx\IconHandler NAME NOT FOUND Desired Access: Query Value 97 12:38:31,4585536 MCLauncher.exe 84 RegQueryKey HKCR\AllFilesystemObjects SUCCESS Query: HandleTags, HandleTags: 0x401 97 12:38:31,4585588 MCLauncher.exe 84 RegOpenKey HKCR\AllFilesystemObjects\ShellEx\IconHandler NAME NOT FOUND Desired Access: Query Value 97 12:38:31,4585680 MCLauncher.exe 84 RegQueryKey HKCU\Software\Classes\Directory SUCCESS Query: Name 97 12:38:31,4585732 MCLauncher.exe 84 RegQueryKey HKCU\Software\Classes\Directory SUCCESS Query: HandleTags, HandleTags: 0x401 97 12:38:31,4585799 MCLauncher.exe 84 RegOpenKey HKCR\Directory SUCCESS Desired Access: Maximum Allowed, Granted Access: Read 97 12:38:31,4585865 MCLauncher.exe 84 RegSetInfoKey HKCR\Directory SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 97 12:38:31,4585910 MCLauncher.exe 84 RegQueryValue HKCU\Software\Classes\Directory\DocObject NAME NOT FOUND Length: 144 97 12:38:31,4586037 MCLauncher.exe 84 RegQueryValue HKCR\Directory\DocObject NAME NOT FOUND Length: 144 97 12:38:31,4586176 MCLauncher.exe 84 RegCloseKey HKCR\Directory SUCCESS 97 12:38:31,4586231 MCLauncher.exe 84 RegQueryKey HKCU\Software\Classes\Directory SUCCESS Query: Name 97 12:38:31,4586295 MCLauncher.exe 84 RegQueryKey HKCU\Software\Classes\Directory SUCCESS Query: HandleTags, HandleTags: 0x401 97 12:38:31,4586361 MCLauncher.exe 84 RegQueryKey HKCU\Software\Classes\Directory SUCCESS Query: HandleTags, HandleTags: 0x401 97 12:38:31,4586419 MCLauncher.exe 84 RegOpenKey HKCU\Software\Classes\Directory\DocObject NAME NOT FOUND Desired Access: Query Value 97 12:38:31,4586508 MCLauncher.exe 84 RegOpenKey HKCR\Directory\DocObject NAME NOT FOUND Desired Access: Query Value 97 12:38:31,4586583 MCLauncher.exe 84 RegQueryKey HKCR\Folder SUCCESS Query: Name 97 12:38:31,4586638 MCLauncher.exe 84 RegQueryKey HKCR\Folder SUCCESS Query: HandleTags, HandleTags: 0x401 97 12:38:31,4586724 MCLauncher.exe 84 RegOpenKey HKCU\Software\Classes\Folder NAME NOT FOUND Desired Access: Maximum Allowed 97 12:38:31,4586788 MCLauncher.exe 84 RegQueryValue HKCR\Folder\DocObject NAME NOT FOUND Length: 144 97 12:38:31,4586913 MCLauncher.exe 84 RegQueryKey HKCR\Folder SUCCESS Query: Name 97 12:38:31,4586971 MCLauncher.exe 84 RegQueryKey HKCR\Folder SUCCESS Query: HandleTags, HandleTags: 0x401 97 12:38:31,4587068 MCLauncher.exe 84 RegOpenKey HKCU\Software\Classes\Folder\DocObject NAME NOT FOUND Desired Access: Query Value 97 12:38:31,4587148 MCLauncher.exe 84 RegQueryKey HKCR\Folder SUCCESS Query: HandleTags, HandleTags: 0x401 97 12:38:31,4587201 MCLauncher.exe 84 RegOpenKey HKCR\Folder\DocObject NAME NOT FOUND Desired Access: Query Value 97 12:38:31,4587267 MCLauncher.exe 84 RegQueryKey HKCR\AllFilesystemObjects SUCCESS Query: Name 97 12:38:31,4587320 MCLauncher.exe 84 RegQueryKey HKCR\AllFilesystemObjects SUCCESS Query: HandleTags, HandleTags: 0x401 97 12:38:31,4587400 MCLauncher.exe 84 RegOpenKey HKCU\Software\Classes\AllFilesystemObjects NAME NOT FOUND Desired Access: Maximum Allowed 97 12:38:31,4587461 MCLauncher.exe 84 RegQueryValue HKCR\AllFilesystemObjects\DocObject NAME NOT FOUND Length: 144 97 12:38:31,4587583 MCLauncher.exe 84 RegQueryKey HKCR\AllFilesystemObjects SUCCESS Query: Name 97 12:38:31,4587644 MCLauncher.exe 84 RegQueryKey HKCR\AllFilesystemObjects SUCCESS Query: HandleTags, HandleTags: 0x401 97 12:38:31,4587736 MCLauncher.exe 84 RegOpenKey HKCU\Software\Classes\AllFilesystemObjects\DocObject NAME NOT FOUND Desired Access: Query Value 97 12:38:31,4587816 MCLauncher.exe 84 RegQueryKey HKCR\AllFilesystemObjects SUCCESS Query: HandleTags, HandleTags: 0x401 97 12:38:31,4587868 MCLauncher.exe 84 RegOpenKey HKCR\AllFilesystemObjects\DocObject NAME NOT FOUND Desired Access: Query Value 97 12:38:31,4587938 MCLauncher.exe 84 RegQueryKey HKCU\Software\Classes\Directory SUCCESS Query: Name 97 12:38:31,4587993 MCLauncher.exe 84 RegQueryKey HKCU\Software\Classes\Directory SUCCESS Query: HandleTags, HandleTags: 0x401 97 12:38:31,4588057 MCLauncher.exe 84 RegOpenKey HKCR\Directory SUCCESS Desired Access: Maximum Allowed, Granted Access: Read 97 12:38:31,4588129 MCLauncher.exe 84 RegSetInfoKey HKCR\Directory SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 97 12:38:31,4588168 MCLauncher.exe 84 RegQueryValue HKCU\Software\Classes\Directory\BrowseInPlace NAME NOT FOUND Length: 144 97 12:38:31,4588273 MCLauncher.exe 84 RegQueryValue HKCR\Directory\BrowseInPlace NAME NOT FOUND Length: 144 97 12:38:31,4588387 MCLauncher.exe 84 RegCloseKey HKCR\Directory SUCCESS 97 12:38:31,4588439 MCLauncher.exe 84 RegQueryKey HKCU\Software\Classes\Directory SUCCESS Query: Name 97 12:38:31,4588503 MCLauncher.exe 84 RegQueryKey HKCU\Software\Classes\Directory SUCCESS Query: HandleTags, HandleTags: 0x401 97 12:38:31,4588569 MCLauncher.exe 84 RegQueryKey HKCU\Software\Classes\Directory SUCCESS Query: HandleTags, HandleTags: 0x401 97 12:38:31,4588628 MCLauncher.exe 84 RegOpenKey HKCU\Software\Classes\Directory\BrowseInPlace NAME NOT FOUND Desired Access: Query Value 97 12:38:31,4588714 MCLauncher.exe 84 RegOpenKey HKCR\Directory\BrowseInPlace NAME NOT FOUND Desired Access: Query Value 97 12:38:31,4588786 MCLauncher.exe 84 RegQueryKey HKCR\Folder SUCCESS Query: Name 97 12:38:31,4588838 MCLauncher.exe 84 RegQueryKey HKCR\Folder SUCCESS Query: HandleTags, HandleTags: 0x401 97 12:38:31,4588921 MCLauncher.exe 84 RegOpenKey HKCU\Software\Classes\Folder NAME NOT FOUND Desired Access: Maximum Allowed 97 12:38:31,4588979 MCLauncher.exe 84 RegQueryValue HKCR\Folder\BrowseInPlace NAME NOT FOUND Length: 144 97 12:38:31,4589093 MCLauncher.exe 84 RegQueryKey HKCR\Folder SUCCESS Query: Name 97 12:38:31,4589154 MCLauncher.exe 84 RegQueryKey HKCR\Folder SUCCESS Query: HandleTags, HandleTags: 0x401 97 12:38:31,4589245 MCLauncher.exe 84 RegOpenKey HKCU\Software\Classes\Folder\BrowseInPlace NAME NOT FOUND Desired Access: Query Value 97 12:38:31,4589323 MCLauncher.exe 84 RegQueryKey HKCR\Folder SUCCESS Query: HandleTags, HandleTags: 0x401 97 12:38:31,4589376 MCLauncher.exe 84 RegOpenKey HKCR\Folder\BrowseInPlace NAME NOT FOUND Desired Access: Query Value 97 12:38:31,4589445 MCLauncher.exe 84 RegQueryKey HKCR\AllFilesystemObjects SUCCESS Query: Name 97 12:38:31,4589498 MCLauncher.exe 84 RegQueryKey HKCR\AllFilesystemObjects SUCCESS Query: HandleTags, HandleTags: 0x401 97 12:38:31,4589572 MCLauncher.exe 84 RegOpenKey HKCU\Software\Classes\AllFilesystemObjects NAME NOT FOUND Desired Access: Maximum Allowed 97 12:38:31,4589628 MCLauncher.exe 84 RegQueryValue HKCR\AllFilesystemObjects\BrowseInPlace NAME NOT FOUND Length: 144 97 12:38:31,4589741 MCLauncher.exe 84 RegQueryKey HKCR\AllFilesystemObjects SUCCESS Query: Name 97 12:38:31,4589802 MCLauncher.exe 84 RegQueryKey HKCR\AllFilesystemObjects SUCCESS Query: HandleTags, HandleTags: 0x401 97 12:38:31,4589988 MCLauncher.exe 84 RegOpenKey HKCU\Software\Classes\AllFilesystemObjects\BrowseInPlace NAME NOT FOUND Desired Access: Query Value 97 12:38:31,4590107 MCLauncher.exe 84 RegQueryKey HKCR\AllFilesystemObjects SUCCESS Query: HandleTags, HandleTags: 0x401 97 12:38:31,4590163 MCLauncher.exe 84 RegOpenKey HKCR\AllFilesystemObjects\BrowseInPlace NAME NOT FOUND Desired Access: Query Value 97 12:38:31,4590254 MCLauncher.exe 84 RegQueryKey HKCU\Software\Classes\Directory SUCCESS Query: Name 97 12:38:31,4590312 MCLauncher.exe 84 RegQueryKey HKCU\Software\Classes\Directory SUCCESS Query: HandleTags, HandleTags: 0x401 97 12:38:31,4590376 MCLauncher.exe 84 RegQueryKey HKCU\Software\Classes\Directory SUCCESS Query: HandleTags, HandleTags: 0x401 97 12:38:31,4590428 MCLauncher.exe 84 RegOpenKey HKCU\Software\Classes\Directory\Clsid NAME NOT FOUND Desired Access: Query Value 97 12:38:31,4590509 MCLauncher.exe 84 RegOpenKey HKCR\Directory\Clsid NAME NOT FOUND Desired Access: Query Value 97 12:38:31,4590581 MCLauncher.exe 84 RegQueryKey HKCR\Folder SUCCESS Query: Name 97 12:38:31,4590636 MCLauncher.exe 84 RegQueryKey HKCR\Folder SUCCESS Query: HandleTags, HandleTags: 0x401 97 12:38:31,4590719 MCLauncher.exe 84 RegOpenKey HKCU\Software\Classes\Folder\Clsid NAME NOT FOUND Desired Access: Query Value 97 12:38:31,4590786 MCLauncher.exe 84 RegQueryKey HKCR\Folder SUCCESS Query: HandleTags, HandleTags: 0x401 97 12:38:31,4590839 MCLauncher.exe 84 RegOpenKey HKCR\Folder\Clsid NAME NOT FOUND Desired Access: Query Value 97 12:38:31,4590897 MCLauncher.exe 84 RegQueryKey HKCR\AllFilesystemObjects SUCCESS Query: Name 97 12:38:31,4590949 MCLauncher.exe 84 RegQueryKey HKCR\AllFilesystemObjects SUCCESS Query: HandleTags, HandleTags: 0x401 97 12:38:31,4591024 MCLauncher.exe 84 RegOpenKey HKCU\Software\Classes\AllFilesystemObjects\Clsid NAME NOT FOUND Desired Access: Query Value 97 12:38:31,4591093 MCLauncher.exe 84 RegQueryKey HKCR\AllFilesystemObjects SUCCESS Query: HandleTags, HandleTags: 0x401 97 12:38:31,4591143 MCLauncher.exe 84 RegOpenKey HKCR\AllFilesystemObjects\Clsid NAME NOT FOUND Desired Access: Query Value 97 12:38:31,4591210 MCLauncher.exe 84 RegQueryKey HKCU\Software\Classes\Directory SUCCESS Query: Name 97 12:38:31,4591265 MCLauncher.exe 84 RegQueryKey HKCU\Software\Classes\Directory SUCCESS Query: HandleTags, HandleTags: 0x401 97 12:38:31,4591329 MCLauncher.exe 84 RegOpenKey HKCR\Directory SUCCESS Desired Access: Maximum Allowed, Granted Access: Read 97 12:38:31,4591398 MCLauncher.exe 84 RegSetInfoKey HKCR\Directory SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 97 12:38:31,4591437 MCLauncher.exe 84 RegQueryValue HKCU\Software\Classes\Directory\IsShortcut NAME NOT FOUND Length: 144 97 12:38:31,4591548 MCLauncher.exe 84 RegQueryValue HKCR\Directory\IsShortcut NAME NOT FOUND Length: 144 97 12:38:31,4591661 MCLauncher.exe 84 RegCloseKey HKCR\Directory SUCCESS 97 12:38:31,4591717 MCLauncher.exe 84 RegQueryKey HKCR\Folder SUCCESS Query: Name 97 12:38:31,4591775 MCLauncher.exe 84 RegQueryKey HKCR\Folder SUCCESS Query: HandleTags, HandleTags: 0x401 97 12:38:31,4591869 MCLauncher.exe 84 RegOpenKey HKCU\Software\Classes\Folder NAME NOT FOUND Desired Access: Maximum Allowed 97 12:38:31,4591936 MCLauncher.exe 84 RegQueryValue HKCR\Folder\IsShortcut NAME NOT FOUND Length: 144 97 12:38:31,4592052 MCLauncher.exe 84 RegQueryKey HKCR\AllFilesystemObjects SUCCESS Query: Name 97 12:38:31,4592110 MCLauncher.exe 84 RegQueryKey HKCR\AllFilesystemObjects SUCCESS Query: HandleTags, HandleTags: 0x401 97 12:38:31,4592202 MCLauncher.exe 84 RegOpenKey HKCU\Software\Classes\AllFilesystemObjects NAME NOT FOUND Desired Access: Maximum Allowed 97 12:38:31,4592265 MCLauncher.exe 84 RegQueryValue HKCR\AllFilesystemObjects\IsShortcut NAME NOT FOUND Length: 144 97 12:38:31,4592385 MCLauncher.exe 84 RegQueryKey HKCU\Software\Classes\Directory SUCCESS Query: Name 97 12:38:31,4592448 MCLauncher.exe 84 RegQueryKey HKCU\Software\Classes\Directory SUCCESS Query: HandleTags, HandleTags: 0x401 97 12:38:31,4592523 MCLauncher.exe 84 RegOpenKey HKCR\Directory SUCCESS Desired Access: Maximum Allowed, Granted Access: Read 97 12:38:31,4592592 MCLauncher.exe 84 RegSetInfoKey HKCR\Directory SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 97 12:38:31,4592631 MCLauncher.exe 84 RegQueryValue HKCU\Software\Classes\Directory\AlwaysShowExt NAME NOT FOUND Length: 144 97 12:38:31,4592731 MCLauncher.exe 84 RegQueryValue HKCR\Directory\AlwaysShowExt SUCCESS Type: REG_SZ, Length: 2, Data: 97 12:38:31,4592858 MCLauncher.exe 84 RegCloseKey HKCR\Directory SUCCESS 97 12:38:31,4592916 MCLauncher.exe 84 RegQueryKey HKCU\Software\Classes\Directory SUCCESS Query: Name 97 12:38:31,4592977 MCLauncher.exe 84 RegQueryKey HKCU\Software\Classes\Directory SUCCESS Query: HandleTags, HandleTags: 0x401 97 12:38:31,4593055 MCLauncher.exe 84 RegOpenKey HKCR\Directory SUCCESS Desired Access: Maximum Allowed, Granted Access: Read 97 12:38:31,4593121 MCLauncher.exe 84 RegSetInfoKey HKCR\Directory SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 97 12:38:31,4593160 MCLauncher.exe 84 RegQueryValue HKCU\Software\Classes\Directory\NeverShowExt NAME NOT FOUND Length: 144 97 12:38:31,4593257 MCLauncher.exe 84 RegQueryValue HKCR\Directory\NeverShowExt NAME NOT FOUND Length: 144 97 12:38:31,4593363 MCLauncher.exe 84 RegCloseKey HKCR\Directory SUCCESS 97 12:38:31,4593412 MCLauncher.exe 84 RegQueryKey HKCR\Folder SUCCESS Query: Name 97 12:38:31,4593471 MCLauncher.exe 84 RegQueryKey HKCR\Folder SUCCESS Query: HandleTags, HandleTags: 0x401 97 12:38:31,4593565 MCLauncher.exe 84 RegOpenKey HKCU\Software\Classes\Folder NAME NOT FOUND Desired Access: Maximum Allowed 97 12:38:31,4593631 MCLauncher.exe 84 RegQueryValue HKCR\Folder\NeverShowExt NAME NOT FOUND Length: 144 97 12:38:31,4593745 MCLauncher.exe 84 RegQueryKey HKCR\AllFilesystemObjects SUCCESS Query: Name 97 12:38:31,4593806 MCLauncher.exe 84 RegQueryKey HKCR\AllFilesystemObjects SUCCESS Query: HandleTags, HandleTags: 0x401 97 12:38:31,4593897 MCLauncher.exe 84 RegOpenKey HKCU\Software\Classes\AllFilesystemObjects NAME NOT FOUND Desired Access: Maximum Allowed 97 12:38:31,4593961 MCLauncher.exe 84 RegQueryValue HKCR\AllFilesystemObjects\NeverShowExt NAME NOT FOUND Length: 144 97 12:38:31,4594088 MCLauncher.exe 84 RegCloseKey HKCU\Software\Classes\Directory SUCCESS 97 12:38:31,4594144 MCLauncher.exe 84 RegCloseKey HKCR\Folder SUCCESS 97 12:38:31,4594185 MCLauncher.exe 84 RegCloseKey HKCR\AllFilesystemObjects SUCCESS 97 12:38:31,4594587 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:31,4594640 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: Name 97 12:38:31,4594737 MCLauncher.exe 84 RegOpenKey HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS Desired Access: Read 97 12:38:31,4594834 MCLauncher.exe 84 RegSetInfoKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 97 12:38:31,4594900 MCLauncher.exe 84 RegQueryKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS Query: HandleTags, HandleTags: 0x400 97 12:38:31,4594953 MCLauncher.exe 84 RegOpenKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{1B3EA5DC-B587-4786-B4EF-BD1DC332AEAE} SUCCESS Desired Access: Read 97 12:38:31,4595033 MCLauncher.exe 84 RegCloseKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS 97 12:38:31,4595086 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{1B3EA5DC-B587-4786-B4EF-BD1DC332AEAE}\Category SUCCESS Type: REG_DWORD, Length: 4, Data: 4 97 12:38:31,4595227 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{1B3EA5DC-B587-4786-B4EF-BD1DC332AEAE}\Name SUCCESS Type: REG_SZ, Length: 20, Data: Libraries 97 12:38:31,4595366 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{1B3EA5DC-B587-4786-B4EF-BD1DC332AEAE}\ParentFolder SUCCESS Type: REG_SZ, Length: 78, Data: {3EB685DB-65F9-4CF6-A03A-E3EF65729F3D} 97 12:38:31,4595493 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{1B3EA5DC-B587-4786-B4EF-BD1DC332AEAE}\Description NAME NOT FOUND Length: 144 97 12:38:31,4595607 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{1B3EA5DC-B587-4786-B4EF-BD1DC332AEAE}\RelativePath SUCCESS Type: REG_SZ, Length: 56, Data: Microsoft\Windows\Libraries 97 12:38:31,4595734 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{1B3EA5DC-B587-4786-B4EF-BD1DC332AEAE}\ParsingName NAME NOT FOUND Length: 144 97 12:38:31,4595903 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{1B3EA5DC-B587-4786-B4EF-BD1DC332AEAE}\InfoTip NAME NOT FOUND Length: 144 97 12:38:31,4596008 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{1B3EA5DC-B587-4786-B4EF-BD1DC332AEAE}\LocalizedName NAME NOT FOUND Length: 144 97 12:38:31,4596114 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{1B3EA5DC-B587-4786-B4EF-BD1DC332AEAE}\Icon NAME NOT FOUND Length: 144 97 12:38:31,4596219 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{1B3EA5DC-B587-4786-B4EF-BD1DC332AEAE}\Security NAME NOT FOUND Length: 144 97 12:38:31,4596321 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{1B3EA5DC-B587-4786-B4EF-BD1DC332AEAE}\StreamResource NAME NOT FOUND Length: 144 97 12:38:31,4596424 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{1B3EA5DC-B587-4786-B4EF-BD1DC332AEAE}\StreamResourceType NAME NOT FOUND Length: 144 97 12:38:31,4596532 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{1B3EA5DC-B587-4786-B4EF-BD1DC332AEAE}\LocalRedirectOnly NAME NOT FOUND Length: 144 97 12:38:31,4596635 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{1B3EA5DC-B587-4786-B4EF-BD1DC332AEAE}\Roamable NAME NOT FOUND Length: 144 97 12:38:31,4596737 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{1B3EA5DC-B587-4786-B4EF-BD1DC332AEAE}\PreCreate SUCCESS Type: REG_DWORD, Length: 4, Data: 1 97 12:38:31,4596856 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{1B3EA5DC-B587-4786-B4EF-BD1DC332AEAE}\Stream NAME NOT FOUND Length: 144 97 12:38:31,4596961 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{1B3EA5DC-B587-4786-B4EF-BD1DC332AEAE}\PublishExpandedPath SUCCESS Type: REG_DWORD, Length: 4, Data: 1 97 12:38:31,4597078 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{1B3EA5DC-B587-4786-B4EF-BD1DC332AEAE}\DefinitionFlags NAME NOT FOUND Length: 144 97 12:38:31,4597186 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{1B3EA5DC-B587-4786-B4EF-BD1DC332AEAE}\Attributes NAME NOT FOUND Length: 144 97 12:38:31,4597288 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{1B3EA5DC-B587-4786-B4EF-BD1DC332AEAE}\FolderTypeID NAME NOT FOUND Length: 144 97 12:38:31,4597394 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{1B3EA5DC-B587-4786-B4EF-BD1DC332AEAE}\InitFolderHandler NAME NOT FOUND Length: 144 97 12:38:31,4597535 MCLauncher.exe 84 RegQueryKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{1B3EA5DC-B587-4786-B4EF-BD1DC332AEAE} SUCCESS Query: HandleTags, HandleTags: 0x400 97 12:38:31,4597596 MCLauncher.exe 84 RegOpenKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{1B3EA5DC-B587-4786-B4EF-BD1DC332AEAE}\PropertyBag NAME NOT FOUND Desired Access: Read 97 12:38:31,4597685 MCLauncher.exe 84 RegCloseKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{1B3EA5DC-B587-4786-B4EF-BD1DC332AEAE} SUCCESS 97 12:38:31,4597859 MCLauncher.exe 84 RegQueryKey HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer SUCCESS Query: HandleTags, HandleTags: 0x400 97 12:38:31,4597915 MCLauncher.exe 84 RegOpenKey HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\SessionInfo\1 SUCCESS Desired Access: Query Value 97 12:38:31,4598023 MCLauncher.exe 84 RegQueryKey HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\SessionInfo\1 SUCCESS Query: HandleTags, HandleTags: 0x400 97 12:38:31,4598072 MCLauncher.exe 84 RegOpenKey HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\SessionInfo\1\KnownFolders NAME NOT FOUND Desired Access: Query Value 97 12:38:31,4598142 MCLauncher.exe 84 RegCloseKey HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\SessionInfo\1 SUCCESS 97 12:38:31,4598228 MCLauncher.exe 84 RegOpenKey HKCU SUCCESS Desired Access: Read 97 12:38:31,4598316 MCLauncher.exe 84 RegQueryKey HKCU SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:31,4598363 MCLauncher.exe 84 RegQueryKey HKCU SUCCESS Query: Name 97 12:38:31,4598435 MCLauncher.exe 84 RegOpenKey HKCU\Software\Microsoft\Windows\CurrentVersion\Explorer\User Shell Folders SUCCESS Desired Access: Read 97 12:38:31,4598519 MCLauncher.exe 84 RegSetInfoKey HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\User Shell Folders SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 97 12:38:31,4598560 MCLauncher.exe 84 RegCloseKey HKCU SUCCESS 97 12:38:31,4598613 MCLauncher.exe 84 RegQueryValue HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\User Shell Folders\{1B3EA5DC-B587-4786-B4EF-BD1DC332AEAE} NAME NOT FOUND Length: 144 97 12:38:31,4598881 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:31,4598934 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: Name 97 12:38:31,4599026 MCLauncher.exe 84 RegOpenKey HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS Desired Access: Read 97 12:38:31,4599114 MCLauncher.exe 84 RegSetInfoKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 97 12:38:31,4599175 MCLauncher.exe 84 RegQueryKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS Query: HandleTags, HandleTags: 0x400 97 12:38:31,4599228 MCLauncher.exe 84 RegOpenKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{3EB685DB-65F9-4CF6-A03A-E3EF65729F3D} SUCCESS Desired Access: Read 97 12:38:31,4599308 MCLauncher.exe 84 RegCloseKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS 97 12:38:31,4599358 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{3EB685DB-65F9-4CF6-A03A-E3EF65729F3D}\Category SUCCESS Type: REG_DWORD, Length: 4, Data: 4 97 12:38:31,4599494 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{3EB685DB-65F9-4CF6-A03A-E3EF65729F3D}\Name SUCCESS Type: REG_SZ, Length: 16, Data: AppData 97 12:38:31,4599627 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{3EB685DB-65F9-4CF6-A03A-E3EF65729F3D}\ParentFolder NAME NOT FOUND Length: 144 97 12:38:31,4599846 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{3EB685DB-65F9-4CF6-A03A-E3EF65729F3D}\Description NAME NOT FOUND Length: 144 97 12:38:31,4599954 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{3EB685DB-65F9-4CF6-A03A-E3EF65729F3D}\RelativePath SUCCESS Type: REG_SZ, Length: 32, Data: AppData\Roaming 97 12:38:31,4600128 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{3EB685DB-65F9-4CF6-A03A-E3EF65729F3D}\ParsingName NAME NOT FOUND Length: 144 97 12:38:31,4600239 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{3EB685DB-65F9-4CF6-A03A-E3EF65729F3D}\InfoTip NAME NOT FOUND Length: 144 97 12:38:31,4600347 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{3EB685DB-65F9-4CF6-A03A-E3EF65729F3D}\LocalizedName NAME NOT FOUND Length: 144 97 12:38:31,4600450 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{3EB685DB-65F9-4CF6-A03A-E3EF65729F3D}\Icon NAME NOT FOUND Length: 144 97 12:38:31,4600552 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{3EB685DB-65F9-4CF6-A03A-E3EF65729F3D}\Security NAME NOT FOUND Length: 144 97 12:38:31,4600655 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{3EB685DB-65F9-4CF6-A03A-E3EF65729F3D}\StreamResource NAME NOT FOUND Length: 144 97 12:38:31,4600760 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{3EB685DB-65F9-4CF6-A03A-E3EF65729F3D}\StreamResourceType NAME NOT FOUND Length: 144 97 12:38:31,4600862 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{3EB685DB-65F9-4CF6-A03A-E3EF65729F3D}\LocalRedirectOnly NAME NOT FOUND Length: 144 97 12:38:31,4600968 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{3EB685DB-65F9-4CF6-A03A-E3EF65729F3D}\Roamable NAME NOT FOUND Length: 144 97 12:38:31,4601070 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{3EB685DB-65F9-4CF6-A03A-E3EF65729F3D}\PreCreate NAME NOT FOUND Length: 144 97 12:38:31,4601170 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{3EB685DB-65F9-4CF6-A03A-E3EF65729F3D}\Stream NAME NOT FOUND Length: 144 97 12:38:31,4601272 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{3EB685DB-65F9-4CF6-A03A-E3EF65729F3D}\PublishExpandedPath NAME NOT FOUND Length: 144 97 12:38:31,4601375 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{3EB685DB-65F9-4CF6-A03A-E3EF65729F3D}\DefinitionFlags NAME NOT FOUND Length: 144 97 12:38:31,4601525 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{3EB685DB-65F9-4CF6-A03A-E3EF65729F3D}\Attributes NAME NOT FOUND Length: 144 97 12:38:31,4601627 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{3EB685DB-65F9-4CF6-A03A-E3EF65729F3D}\FolderTypeID NAME NOT FOUND Length: 144 97 12:38:31,4601730 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{3EB685DB-65F9-4CF6-A03A-E3EF65729F3D}\InitFolderHandler NAME NOT FOUND Length: 144 97 12:38:31,4601868 MCLauncher.exe 84 RegQueryKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{3EB685DB-65F9-4CF6-A03A-E3EF65729F3D} SUCCESS Query: HandleTags, HandleTags: 0x400 97 12:38:31,4601932 MCLauncher.exe 84 RegOpenKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{3EB685DB-65F9-4CF6-A03A-E3EF65729F3D}\PropertyBag NAME NOT FOUND Desired Access: Read 97 12:38:31,4602021 MCLauncher.exe 84 RegCloseKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{3EB685DB-65F9-4CF6-A03A-E3EF65729F3D} SUCCESS 97 12:38:31,4602115 MCLauncher.exe 84 RegQueryKey HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer SUCCESS Query: HandleTags, HandleTags: 0x400 97 12:38:31,4602170 MCLauncher.exe 84 RegOpenKey HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\SessionInfo\1 SUCCESS Desired Access: Query Value 97 12:38:31,4602264 MCLauncher.exe 84 RegQueryKey HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\SessionInfo\1 SUCCESS Query: HandleTags, HandleTags: 0x400 97 12:38:31,4602314 MCLauncher.exe 84 RegOpenKey HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\SessionInfo\1\KnownFolders NAME NOT FOUND Desired Access: Query Value 97 12:38:31,4602378 MCLauncher.exe 84 RegCloseKey HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\SessionInfo\1 SUCCESS 97 12:38:31,4602422 MCLauncher.exe 84 RegQueryValue HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\User Shell Folders\AppData SUCCESS Type: REG_EXPAND_SZ, Length: 60, Data: %USERPROFILE%\AppData\Roaming 97 12:38:31,4602694 MCLauncher.exe 84 RegCloseKey HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\User Shell Folders SUCCESS 97 12:38:31,4603073 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:31,4603126 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: Name 97 12:38:31,4603226 MCLauncher.exe 84 RegOpenKey HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS Desired Access: Read 97 12:38:31,4603320 MCLauncher.exe 84 RegSetInfoKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 97 12:38:31,4603386 MCLauncher.exe 84 RegQueryKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS Query: HandleTags, HandleTags: 0x400 97 12:38:31,4603439 MCLauncher.exe 84 RegOpenKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{F42EE2D3-909F-4907-8871-4C22FC0BF756} SUCCESS Desired Access: Read 97 12:38:31,4603519 MCLauncher.exe 84 RegCloseKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS 97 12:38:31,4603569 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{f42ee2d3-909f-4907-8871-4c22fc0bf756}\Category SUCCESS Type: REG_DWORD, Length: 4, Data: 4 97 12:38:31,4603705 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{f42ee2d3-909f-4907-8871-4c22fc0bf756}\Name SUCCESS Type: REG_SZ, Length: 32, Data: Local Documents 97 12:38:31,4603835 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{f42ee2d3-909f-4907-8871-4c22fc0bf756}\ParentFolder NAME NOT FOUND Length: 144 97 12:38:31,4603946 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{f42ee2d3-909f-4907-8871-4c22fc0bf756}\Description NAME NOT FOUND Length: 144 97 12:38:31,4604049 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{f42ee2d3-909f-4907-8871-4c22fc0bf756}\RelativePath SUCCESS Type: REG_SZ, Length: 20, Data: Documents 97 12:38:31,4604176 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{f42ee2d3-909f-4907-8871-4c22fc0bf756}\ParsingName BUFFER OVERFLOW Length: 144 97 12:38:31,4604284 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{f42ee2d3-909f-4907-8871-4c22fc0bf756}\ParsingName SUCCESS Type: REG_SZ, Length: 176, Data: shell:::{20D04FE0-3AEA-1069-A2D8-08002B30309D}\::{d3162b92-9365-467a-956b-92703aca08af} 97 12:38:31,4604409 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{f42ee2d3-909f-4907-8871-4c22fc0bf756}\InfoTip NAME NOT FOUND Length: 144 97 12:38:31,4604517 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{f42ee2d3-909f-4907-8871-4c22fc0bf756}\LocalizedName SUCCESS Type: REG_EXPAND_SZ, Length: 84, Data: @%SystemRoot%\system32\shell32.dll,-21770 97 12:38:31,4604641 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{f42ee2d3-909f-4907-8871-4c22fc0bf756}\Icon SUCCESS Type: REG_EXPAND_SZ, Length: 80, Data: %SystemRoot%\system32\imageres.dll,-112 97 12:38:31,4604766 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{f42ee2d3-909f-4907-8871-4c22fc0bf756}\Security NAME NOT FOUND Length: 144 97 12:38:31,4604874 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{f42ee2d3-909f-4907-8871-4c22fc0bf756}\StreamResource NAME NOT FOUND Length: 144 97 12:38:31,4604977 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{f42ee2d3-909f-4907-8871-4c22fc0bf756}\StreamResourceType NAME NOT FOUND Length: 144 97 12:38:31,4605085 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{f42ee2d3-909f-4907-8871-4c22fc0bf756}\LocalRedirectOnly NAME NOT FOUND Length: 144 97 12:38:31,4605187 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{f42ee2d3-909f-4907-8871-4c22fc0bf756}\Roamable NAME NOT FOUND Length: 144 97 12:38:31,4605290 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{f42ee2d3-909f-4907-8871-4c22fc0bf756}\PreCreate SUCCESS Type: REG_DWORD, Length: 4, Data: 1 97 12:38:31,4605406 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{f42ee2d3-909f-4907-8871-4c22fc0bf756}\Stream NAME NOT FOUND Length: 144 97 12:38:31,4605511 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{f42ee2d3-909f-4907-8871-4c22fc0bf756}\PublishExpandedPath NAME NOT FOUND Length: 144 97 12:38:31,4605614 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{f42ee2d3-909f-4907-8871-4c22fc0bf756}\DefinitionFlags NAME NOT FOUND Length: 144 97 12:38:31,4605719 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{f42ee2d3-909f-4907-8871-4c22fc0bf756}\Attributes SUCCESS Type: REG_DWORD, Length: 4, Data: 1 97 12:38:31,4605836 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{f42ee2d3-909f-4907-8871-4c22fc0bf756}\FolderTypeID NAME NOT FOUND Length: 144 97 12:38:31,4605941 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{f42ee2d3-909f-4907-8871-4c22fc0bf756}\InitFolderHandler NAME NOT FOUND Length: 144 97 12:38:31,4606088 MCLauncher.exe 84 RegQueryKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{f42ee2d3-909f-4907-8871-4c22fc0bf756} SUCCESS Query: HandleTags, HandleTags: 0x400 97 12:38:31,4606149 MCLauncher.exe 84 RegOpenKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{f42ee2d3-909f-4907-8871-4c22fc0bf756}\PropertyBag SUCCESS Desired Access: Read 97 12:38:31,4606237 MCLauncher.exe 84 RegCloseKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{f42ee2d3-909f-4907-8871-4c22fc0bf756} SUCCESS 97 12:38:31,4606387 MCLauncher.exe 84 RegQueryKey HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer SUCCESS Query: HandleTags, HandleTags: 0x400 97 12:38:31,4606442 MCLauncher.exe 84 RegOpenKey HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\SessionInfo\1 SUCCESS Desired Access: Query Value 97 12:38:31,4606531 MCLauncher.exe 84 RegQueryKey HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\SessionInfo\1 SUCCESS Query: HandleTags, HandleTags: 0x400 97 12:38:31,4606581 MCLauncher.exe 84 RegOpenKey HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\SessionInfo\1\KnownFolders NAME NOT FOUND Desired Access: Query Value 97 12:38:31,4606650 MCLauncher.exe 84 RegCloseKey HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\SessionInfo\1 SUCCESS 97 12:38:31,4606739 MCLauncher.exe 84 RegOpenKey HKCU SUCCESS Desired Access: Read 97 12:38:31,4606825 MCLauncher.exe 84 RegQueryKey HKCU SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:31,4606869 MCLauncher.exe 84 RegQueryKey HKCU SUCCESS Query: Name 97 12:38:31,4606941 MCLauncher.exe 84 RegOpenKey HKCU\Software\Microsoft\Windows\CurrentVersion\Explorer\User Shell Folders SUCCESS Desired Access: Read 97 12:38:31,4607019 MCLauncher.exe 84 RegSetInfoKey HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\User Shell Folders SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 97 12:38:31,4607063 MCLauncher.exe 84 RegCloseKey HKCU SUCCESS 97 12:38:31,4607110 MCLauncher.exe 84 RegQueryValue HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\User Shell Folders\{F42EE2D3-909F-4907-8871-4C22FC0BF756} NAME NOT FOUND Length: 144 97 12:38:31,4607312 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:31,4607365 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: Name 97 12:38:31,4607456 MCLauncher.exe 84 RegOpenKey HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS Desired Access: Read 97 12:38:31,4607539 MCLauncher.exe 84 RegSetInfoKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 97 12:38:31,4607600 MCLauncher.exe 84 RegQueryKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS Query: HandleTags, HandleTags: 0x400 97 12:38:31,4607653 MCLauncher.exe 84 RegOpenKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{5E6C858F-0E22-4760-9AFE-EA3317B67173} SUCCESS Desired Access: Read 97 12:38:31,4607733 MCLauncher.exe 84 RegCloseKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS 97 12:38:31,4607783 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{5E6C858F-0E22-4760-9AFE-EA3317B67173}\Category SUCCESS Type: REG_DWORD, Length: 4, Data: 2 97 12:38:31,4607913 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{5E6C858F-0E22-4760-9AFE-EA3317B67173}\Name SUCCESS Type: REG_SZ, Length: 16, Data: Profile 97 12:38:31,4608046 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{5E6C858F-0E22-4760-9AFE-EA3317B67173}\ParentFolder NAME NOT FOUND Length: 144 97 12:38:31,4608157 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{5E6C858F-0E22-4760-9AFE-EA3317B67173}\Description NAME NOT FOUND Length: 144 97 12:38:31,4608263 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{5E6C858F-0E22-4760-9AFE-EA3317B67173}\RelativePath NAME NOT FOUND Length: 144 97 12:38:31,4608368 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{5E6C858F-0E22-4760-9AFE-EA3317B67173}\ParsingName NAME NOT FOUND Length: 144 97 12:38:31,4608470 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{5E6C858F-0E22-4760-9AFE-EA3317B67173}\InfoTip NAME NOT FOUND Length: 144 97 12:38:31,4608576 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{5E6C858F-0E22-4760-9AFE-EA3317B67173}\LocalizedName NAME NOT FOUND Length: 144 97 12:38:31,4608678 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{5E6C858F-0E22-4760-9AFE-EA3317B67173}\Icon NAME NOT FOUND Length: 144 97 12:38:31,4608781 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{5E6C858F-0E22-4760-9AFE-EA3317B67173}\Security NAME NOT FOUND Length: 144 97 12:38:31,4608886 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{5E6C858F-0E22-4760-9AFE-EA3317B67173}\StreamResource NAME NOT FOUND Length: 144 97 12:38:31,4608988 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{5E6C858F-0E22-4760-9AFE-EA3317B67173}\StreamResourceType NAME NOT FOUND Length: 144 97 12:38:31,4609094 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{5E6C858F-0E22-4760-9AFE-EA3317B67173}\LocalRedirectOnly NAME NOT FOUND Length: 144 97 12:38:31,4609196 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{5E6C858F-0E22-4760-9AFE-EA3317B67173}\Roamable NAME NOT FOUND Length: 144 97 12:38:31,4609335 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{5E6C858F-0E22-4760-9AFE-EA3317B67173}\PreCreate NAME NOT FOUND Length: 144 97 12:38:31,4609565 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{5E6C858F-0E22-4760-9AFE-EA3317B67173}\Stream NAME NOT FOUND Length: 144 97 12:38:31,4609687 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{5E6C858F-0E22-4760-9AFE-EA3317B67173}\PublishExpandedPath NAME NOT FOUND Length: 144 97 12:38:31,4609792 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{5E6C858F-0E22-4760-9AFE-EA3317B67173}\DefinitionFlags NAME NOT FOUND Length: 144 97 12:38:31,4609897 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{5E6C858F-0E22-4760-9AFE-EA3317B67173}\Attributes NAME NOT FOUND Length: 144 97 12:38:31,4610005 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{5E6C858F-0E22-4760-9AFE-EA3317B67173}\FolderTypeID NAME NOT FOUND Length: 144 97 12:38:31,4610111 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{5E6C858F-0E22-4760-9AFE-EA3317B67173}\InitFolderHandler NAME NOT FOUND Length: 144 97 12:38:31,4610252 MCLauncher.exe 84 RegQueryKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{5E6C858F-0E22-4760-9AFE-EA3317B67173} SUCCESS Query: HandleTags, HandleTags: 0x400 97 12:38:31,4610316 MCLauncher.exe 84 RegOpenKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{5E6C858F-0E22-4760-9AFE-EA3317B67173}\PropertyBag NAME NOT FOUND Desired Access: Read 97 12:38:31,4610410 MCLauncher.exe 84 RegCloseKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{5E6C858F-0E22-4760-9AFE-EA3317B67173} SUCCESS 97 12:38:31,4610884 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:31,4610939 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: Name 97 12:38:31,4611036 MCLauncher.exe 84 RegOpenKey HKLM\Software\WOW6432Node\Microsoft\Windows NT\CurrentVersion\ProfileList\S-1-5-21-3477790013-1571897634-1299942168-1000 REPARSE Desired Access: Read 97 12:38:31,4611141 MCLauncher.exe 84 RegOpenKey HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\ProfileList\S-1-5-21-3477790013-1571897634-1299942168-1000 SUCCESS Desired Access: Read 97 12:38:31,4611216 MCLauncher.exe 84 RegSetInfoKey HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\ProfileList\S-1-5-21-3477790013-1571897634-1299942168-1000 SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 97 12:38:31,4611258 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\ProfileList\S-1-5-21-3477790013-1571897634-1299942168-1000\ProfileImagePath SUCCESS Type: REG_EXPAND_SZ, Length: 28, Data: C:\Users\User 97 12:38:31,4611410 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\ProfileList\S-1-5-21-3477790013-1571897634-1299942168-1000\ProfileImagePath SUCCESS Type: REG_EXPAND_SZ, Length: 28, Data: C:\Users\User 97 12:38:31,4611546 MCLauncher.exe 84 RegCloseKey HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\ProfileList\S-1-5-21-3477790013-1571897634-1299942168-1000 SUCCESS 97 12:38:31,4611634 MCLauncher.exe 84 RegCloseKey HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\User Shell Folders SUCCESS 97 12:38:31,4612959 MCLauncher.exe 84 CreateFile C:\Users\User\Documents\desktop.ini SUCCESS Desired Access: Generic Read, Disposition: Open, Options: Sequential Access, Synchronous IO Non-Alert, Non-Directory File, Attributes: n/a, ShareMode: Read, Write, Delete, AllocationSize: n/a, OpenResult: Opened 97 12:38:31,4613178 MCLauncher.exe 84 QueryStandardInformationFile C:\Users\User\Documents\desktop.ini SUCCESS AllocationSize: 408, EndOfFile: 402, NumberOfLinks: 1, DeletePending: False, Directory: False 97 12:38:31,4613280 MCLauncher.exe 84 ReadFile C:\Users\User\Documents\desktop.ini SUCCESS Offset: 0, Length: 402, Priority: Normal 97 12:38:31,4613762 MCLauncher.exe 84 QueryBasicInformationFile C:\Users\User\Documents\desktop.ini SUCCESS CreationTime: 19.07.2018 20:08:14, LastAccessTime: 19.07.2018 20:08:14, LastWriteTime: 20.07.2018 19:29:33, ChangeTime: 20.07.2018 19:29:33, FileAttributes: HSA 97 12:38:31,4613862 MCLauncher.exe 84 CloseFile C:\Users\User\Documents\desktop.ini SUCCESS 97 12:38:31,4614352 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:31,4614416 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: Name 97 12:38:31,4614527 MCLauncher.exe 84 RegOpenKey HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS Desired Access: Read 97 12:38:31,4614632 MCLauncher.exe 84 RegSetInfoKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 97 12:38:31,4614704 MCLauncher.exe 84 RegQueryKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS Query: HandleTags, HandleTags: 0x400 97 12:38:31,4614762 MCLauncher.exe 84 RegOpenKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{A0C69A99-21C8-4671-8703-7934162FCF1D} SUCCESS Desired Access: Read 97 12:38:31,4614859 MCLauncher.exe 84 RegCloseKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS 97 12:38:31,4614920 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{a0c69a99-21c8-4671-8703-7934162fcf1d}\Category SUCCESS Type: REG_DWORD, Length: 4, Data: 4 97 12:38:31,4615078 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{a0c69a99-21c8-4671-8703-7934162fcf1d}\Name SUCCESS Type: REG_SZ, Length: 24, Data: Local Music 97 12:38:31,4615217 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{a0c69a99-21c8-4671-8703-7934162fcf1d}\ParentFolder NAME NOT FOUND Length: 144 97 12:38:31,4615336 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{a0c69a99-21c8-4671-8703-7934162fcf1d}\Description NAME NOT FOUND Length: 144 97 12:38:31,4615441 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{a0c69a99-21c8-4671-8703-7934162fcf1d}\RelativePath SUCCESS Type: REG_SZ, Length: 12, Data: Music 97 12:38:31,4615566 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{a0c69a99-21c8-4671-8703-7934162fcf1d}\ParsingName BUFFER OVERFLOW Length: 144 97 12:38:31,4615674 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{a0c69a99-21c8-4671-8703-7934162fcf1d}\ParsingName SUCCESS Type: REG_SZ, Length: 176, Data: shell:::{20D04FE0-3AEA-1069-A2D8-08002B30309D}\::{3dfdf296-dbec-4fb4-81d1-6a3438bcf4de} 97 12:38:31,4615801 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{a0c69a99-21c8-4671-8703-7934162fcf1d}\InfoTip SUCCESS Type: REG_EXPAND_SZ, Length: 84, Data: @%SystemRoot%\system32\shell32.dll,-12689 97 12:38:31,4615929 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{a0c69a99-21c8-4671-8703-7934162fcf1d}\LocalizedName SUCCESS Type: REG_EXPAND_SZ, Length: 84, Data: @%SystemRoot%\system32\shell32.dll,-21790 97 12:38:31,4616056 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{a0c69a99-21c8-4671-8703-7934162fcf1d}\Icon SUCCESS Type: REG_EXPAND_SZ, Length: 80, Data: %SystemRoot%\system32\imageres.dll,-108 97 12:38:31,4616181 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{a0c69a99-21c8-4671-8703-7934162fcf1d}\Security NAME NOT FOUND Length: 144 97 12:38:31,4616289 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{a0c69a99-21c8-4671-8703-7934162fcf1d}\StreamResource NAME NOT FOUND Length: 144 97 12:38:31,4616394 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{a0c69a99-21c8-4671-8703-7934162fcf1d}\StreamResourceType NAME NOT FOUND Length: 144 97 12:38:31,4616497 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{a0c69a99-21c8-4671-8703-7934162fcf1d}\LocalRedirectOnly NAME NOT FOUND Length: 144 97 12:38:31,4616599 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{a0c69a99-21c8-4671-8703-7934162fcf1d}\Roamable NAME NOT FOUND Length: 144 97 12:38:31,4616704 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{a0c69a99-21c8-4671-8703-7934162fcf1d}\PreCreate SUCCESS Type: REG_DWORD, Length: 4, Data: 1 97 12:38:31,4616824 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{a0c69a99-21c8-4671-8703-7934162fcf1d}\Stream NAME NOT FOUND Length: 144 97 12:38:31,4616929 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{a0c69a99-21c8-4671-8703-7934162fcf1d}\PublishExpandedPath NAME NOT FOUND Length: 144 97 12:38:31,4617031 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{a0c69a99-21c8-4671-8703-7934162fcf1d}\DefinitionFlags NAME NOT FOUND Length: 144 97 12:38:31,4617139 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{a0c69a99-21c8-4671-8703-7934162fcf1d}\Attributes SUCCESS Type: REG_DWORD, Length: 4, Data: 1 97 12:38:31,4617253 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{a0c69a99-21c8-4671-8703-7934162fcf1d}\FolderTypeID NAME NOT FOUND Length: 144 97 12:38:31,4617358 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{a0c69a99-21c8-4671-8703-7934162fcf1d}\InitFolderHandler NAME NOT FOUND Length: 144 97 12:38:31,4617500 MCLauncher.exe 84 RegQueryKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{a0c69a99-21c8-4671-8703-7934162fcf1d} SUCCESS Query: HandleTags, HandleTags: 0x400 97 12:38:31,4617563 MCLauncher.exe 84 RegOpenKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{a0c69a99-21c8-4671-8703-7934162fcf1d}\PropertyBag SUCCESS Desired Access: Read 97 12:38:31,4617660 MCLauncher.exe 84 RegCloseKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{a0c69a99-21c8-4671-8703-7934162fcf1d} SUCCESS 97 12:38:31,4617821 MCLauncher.exe 84 RegQueryKey HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer SUCCESS Query: HandleTags, HandleTags: 0x400 97 12:38:31,4617876 MCLauncher.exe 84 RegOpenKey HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\SessionInfo\1 SUCCESS Desired Access: Query Value 97 12:38:31,4617973 MCLauncher.exe 84 RegQueryKey HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\SessionInfo\1 SUCCESS Query: HandleTags, HandleTags: 0x400 97 12:38:31,4618023 MCLauncher.exe 84 RegOpenKey HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\SessionInfo\1\KnownFolders NAME NOT FOUND Desired Access: Query Value 97 12:38:31,4618098 MCLauncher.exe 84 RegCloseKey HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\SessionInfo\1 SUCCESS 97 12:38:31,4618190 MCLauncher.exe 84 RegOpenKey HKCU SUCCESS Desired Access: Read 97 12:38:31,4618275 MCLauncher.exe 84 RegQueryKey HKCU SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:31,4618322 MCLauncher.exe 84 RegQueryKey HKCU SUCCESS Query: Name 97 12:38:31,4618395 MCLauncher.exe 84 RegOpenKey HKCU\Software\Microsoft\Windows\CurrentVersion\Explorer\User Shell Folders SUCCESS Desired Access: Read 97 12:38:31,4618475 MCLauncher.exe 84 RegSetInfoKey HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\User Shell Folders SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 97 12:38:31,4618522 MCLauncher.exe 84 RegCloseKey HKCU SUCCESS 97 12:38:31,4618569 MCLauncher.exe 84 RegQueryValue HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\User Shell Folders\{A0C69A99-21C8-4671-8703-7934162FCF1D} NAME NOT FOUND Length: 144 97 12:38:31,4618810 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:31,4618863 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: Name 97 12:38:31,4618960 MCLauncher.exe 84 RegOpenKey HKLM\Software\WOW6432Node\Microsoft\Windows NT\CurrentVersion\ProfileList\S-1-5-21-3477790013-1571897634-1299942168-1000 REPARSE Desired Access: Read 97 12:38:31,4619046 MCLauncher.exe 84 RegOpenKey HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\ProfileList\S-1-5-21-3477790013-1571897634-1299942168-1000 SUCCESS Desired Access: Read 97 12:38:31,4619109 MCLauncher.exe 84 RegSetInfoKey HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\ProfileList\S-1-5-21-3477790013-1571897634-1299942168-1000 SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 97 12:38:31,4619151 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\ProfileList\S-1-5-21-3477790013-1571897634-1299942168-1000\ProfileImagePath SUCCESS Type: REG_EXPAND_SZ, Length: 28, Data: C:\Users\User 97 12:38:31,4619467 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\ProfileList\S-1-5-21-3477790013-1571897634-1299942168-1000\ProfileImagePath SUCCESS Type: REG_EXPAND_SZ, Length: 28, Data: C:\Users\User 97 12:38:31,4619655 MCLauncher.exe 84 RegCloseKey HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\ProfileList\S-1-5-21-3477790013-1571897634-1299942168-1000 SUCCESS 97 12:38:31,4619738 MCLauncher.exe 84 RegCloseKey HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\User Shell Folders SUCCESS 97 12:38:31,4620971 MCLauncher.exe 84 CreateFile C:\Users\User\Music\desktop.ini SUCCESS Desired Access: Generic Read, Disposition: Open, Options: Sequential Access, Synchronous IO Non-Alert, Non-Directory File, Attributes: n/a, ShareMode: Read, Write, Delete, AllocationSize: n/a, OpenResult: Opened 97 12:38:31,4621184 MCLauncher.exe 84 QueryStandardInformationFile C:\Users\User\Music\desktop.ini SUCCESS AllocationSize: 504, EndOfFile: 504, NumberOfLinks: 1, DeletePending: False, Directory: False 97 12:38:31,4621284 MCLauncher.exe 84 ReadFile C:\Users\User\Music\desktop.ini SUCCESS Offset: 0, Length: 504, Priority: Normal 97 12:38:31,4621703 MCLauncher.exe 84 QueryBasicInformationFile C:\Users\User\Music\desktop.ini SUCCESS CreationTime: 19.07.2018 20:08:14, LastAccessTime: 19.07.2018 20:08:14, LastWriteTime: 20.07.2018 19:29:33, ChangeTime: 20.07.2018 19:29:33, FileAttributes: HSA 97 12:38:31,4621800 MCLauncher.exe 84 CloseFile C:\Users\User\Music\desktop.ini SUCCESS 97 12:38:31,4622345 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:31,4622406 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: Name 97 12:38:31,4622520 MCLauncher.exe 84 RegOpenKey HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS Desired Access: Read 97 12:38:31,4622625 MCLauncher.exe 84 RegSetInfoKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 97 12:38:31,4622697 MCLauncher.exe 84 RegQueryKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS Query: HandleTags, HandleTags: 0x400 97 12:38:31,4622755 MCLauncher.exe 84 RegOpenKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{0DDD015D-B06C-45D5-8C4C-F59713854639} SUCCESS Desired Access: Read 97 12:38:31,4622861 MCLauncher.exe 84 RegCloseKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS 97 12:38:31,4622919 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{0ddd015d-b06c-45d5-8c4c-f59713854639}\Category SUCCESS Type: REG_DWORD, Length: 4, Data: 4 97 12:38:31,4623074 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{0ddd015d-b06c-45d5-8c4c-f59713854639}\Name SUCCESS Type: REG_SZ, Length: 30, Data: Local Pictures 97 12:38:31,4623215 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{0ddd015d-b06c-45d5-8c4c-f59713854639}\ParentFolder NAME NOT FOUND Length: 144 97 12:38:31,4623326 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{0ddd015d-b06c-45d5-8c4c-f59713854639}\Description NAME NOT FOUND Length: 144 97 12:38:31,4623431 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{0ddd015d-b06c-45d5-8c4c-f59713854639}\RelativePath SUCCESS Type: REG_SZ, Length: 18, Data: Pictures 97 12:38:31,4623559 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{0ddd015d-b06c-45d5-8c4c-f59713854639}\ParsingName BUFFER OVERFLOW Length: 144 97 12:38:31,4623670 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{0ddd015d-b06c-45d5-8c4c-f59713854639}\ParsingName SUCCESS Type: REG_SZ, Length: 176, Data: shell:::{20D04FE0-3AEA-1069-A2D8-08002B30309D}\::{24ad3ad4-a569-4530-98e1-ab02f9417aa8} 97 12:38:31,4623792 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{0ddd015d-b06c-45d5-8c4c-f59713854639}\InfoTip SUCCESS Type: REG_EXPAND_SZ, Length: 84, Data: @%SystemRoot%\system32\shell32.dll,-12688 97 12:38:31,4623922 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{0ddd015d-b06c-45d5-8c4c-f59713854639}\LocalizedName SUCCESS Type: REG_EXPAND_SZ, Length: 84, Data: @%SystemRoot%\system32\shell32.dll,-21779 97 12:38:31,4624049 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{0ddd015d-b06c-45d5-8c4c-f59713854639}\Icon SUCCESS Type: REG_EXPAND_SZ, Length: 80, Data: %SystemRoot%\system32\imageres.dll,-113 97 12:38:31,4624174 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{0ddd015d-b06c-45d5-8c4c-f59713854639}\Security NAME NOT FOUND Length: 144 97 12:38:31,4624282 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{0ddd015d-b06c-45d5-8c4c-f59713854639}\StreamResource NAME NOT FOUND Length: 144 97 12:38:31,4624384 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{0ddd015d-b06c-45d5-8c4c-f59713854639}\StreamResourceType NAME NOT FOUND Length: 144 97 12:38:31,4624490 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{0ddd015d-b06c-45d5-8c4c-f59713854639}\LocalRedirectOnly NAME NOT FOUND Length: 144 97 12:38:31,4624595 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{0ddd015d-b06c-45d5-8c4c-f59713854639}\Roamable NAME NOT FOUND Length: 144 97 12:38:31,4624698 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{0ddd015d-b06c-45d5-8c4c-f59713854639}\PreCreate SUCCESS Type: REG_DWORD, Length: 4, Data: 1 97 12:38:31,4624814 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{0ddd015d-b06c-45d5-8c4c-f59713854639}\Stream NAME NOT FOUND Length: 144 97 12:38:31,4624952 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{0ddd015d-b06c-45d5-8c4c-f59713854639}\PublishExpandedPath NAME NOT FOUND Length: 144 97 12:38:31,4625060 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{0ddd015d-b06c-45d5-8c4c-f59713854639}\DefinitionFlags NAME NOT FOUND Length: 144 97 12:38:31,4625163 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{0ddd015d-b06c-45d5-8c4c-f59713854639}\Attributes SUCCESS Type: REG_DWORD, Length: 4, Data: 1 97 12:38:31,4625279 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{0ddd015d-b06c-45d5-8c4c-f59713854639}\FolderTypeID NAME NOT FOUND Length: 144 97 12:38:31,4625385 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{0ddd015d-b06c-45d5-8c4c-f59713854639}\InitFolderHandler NAME NOT FOUND Length: 144 97 12:38:31,4625526 MCLauncher.exe 84 RegQueryKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{0ddd015d-b06c-45d5-8c4c-f59713854639} SUCCESS Query: HandleTags, HandleTags: 0x400 97 12:38:31,4625592 MCLauncher.exe 84 RegOpenKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{0ddd015d-b06c-45d5-8c4c-f59713854639}\PropertyBag SUCCESS Desired Access: Read 97 12:38:31,4625689 MCLauncher.exe 84 RegCloseKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{0ddd015d-b06c-45d5-8c4c-f59713854639} SUCCESS 97 12:38:31,4625853 MCLauncher.exe 84 RegQueryKey HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer SUCCESS Query: HandleTags, HandleTags: 0x400 97 12:38:31,4625911 MCLauncher.exe 84 RegOpenKey HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\SessionInfo\1 SUCCESS Desired Access: Query Value 97 12:38:31,4626005 MCLauncher.exe 84 RegQueryKey HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\SessionInfo\1 SUCCESS Query: HandleTags, HandleTags: 0x400 97 12:38:31,4626055 MCLauncher.exe 84 RegOpenKey HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\SessionInfo\1\KnownFolders NAME NOT FOUND Desired Access: Query Value 97 12:38:31,4626127 MCLauncher.exe 84 RegCloseKey HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\SessionInfo\1 SUCCESS 97 12:38:31,4626219 MCLauncher.exe 84 RegOpenKey HKCU SUCCESS Desired Access: Read 97 12:38:31,4626307 MCLauncher.exe 84 RegQueryKey HKCU SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:31,4626354 MCLauncher.exe 84 RegQueryKey HKCU SUCCESS Query: Name 97 12:38:31,4626429 MCLauncher.exe 84 RegOpenKey HKCU\Software\Microsoft\Windows\CurrentVersion\Explorer\User Shell Folders SUCCESS Desired Access: Read 97 12:38:31,4626512 MCLauncher.exe 84 RegSetInfoKey HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\User Shell Folders SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 97 12:38:31,4626559 MCLauncher.exe 84 RegCloseKey HKCU SUCCESS 97 12:38:31,4626606 MCLauncher.exe 84 RegQueryValue HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\User Shell Folders\{0DDD015D-B06C-45D5-8C4C-F59713854639} NAME NOT FOUND Length: 144 97 12:38:31,4626856 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:31,4626906 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: Name 97 12:38:31,4627000 MCLauncher.exe 84 RegOpenKey HKLM\Software\WOW6432Node\Microsoft\Windows NT\CurrentVersion\ProfileList\S-1-5-21-3477790013-1571897634-1299942168-1000 REPARSE Desired Access: Read 97 12:38:31,4627086 MCLauncher.exe 84 RegOpenKey HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\ProfileList\S-1-5-21-3477790013-1571897634-1299942168-1000 SUCCESS Desired Access: Read 97 12:38:31,4627147 MCLauncher.exe 84 RegSetInfoKey HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\ProfileList\S-1-5-21-3477790013-1571897634-1299942168-1000 SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 97 12:38:31,4627191 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\ProfileList\S-1-5-21-3477790013-1571897634-1299942168-1000\ProfileImagePath SUCCESS Type: REG_EXPAND_SZ, Length: 28, Data: C:\Users\User 97 12:38:31,4627327 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\ProfileList\S-1-5-21-3477790013-1571897634-1299942168-1000\ProfileImagePath SUCCESS Type: REG_EXPAND_SZ, Length: 28, Data: C:\Users\User 97 12:38:31,4627463 MCLauncher.exe 84 RegCloseKey HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\ProfileList\S-1-5-21-3477790013-1571897634-1299942168-1000 SUCCESS 97 12:38:31,4627546 MCLauncher.exe 84 RegCloseKey HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\User Shell Folders SUCCESS 97 12:38:31,4628828 MCLauncher.exe 84 CreateFile C:\Users\User\Pictures\desktop.ini SUCCESS Desired Access: Generic Read, Disposition: Open, Options: Sequential Access, Synchronous IO Non-Alert, Non-Directory File, Attributes: n/a, ShareMode: Read, Write, Delete, AllocationSize: n/a, OpenResult: Opened 97 12:38:31,4629178 MCLauncher.exe 84 QueryStandardInformationFile C:\Users\User\Pictures\desktop.ini SUCCESS AllocationSize: 504, EndOfFile: 504, NumberOfLinks: 1, DeletePending: False, Directory: False 97 12:38:31,4629286 MCLauncher.exe 84 ReadFile C:\Users\User\Pictures\desktop.ini SUCCESS Offset: 0, Length: 504, Priority: Normal 97 12:38:31,4629698 MCLauncher.exe 84 QueryBasicInformationFile C:\Users\User\Pictures\desktop.ini SUCCESS CreationTime: 19.07.2018 20:08:13, LastAccessTime: 19.07.2018 20:08:13, LastWriteTime: 20.07.2018 19:29:33, ChangeTime: 20.07.2018 19:29:33, FileAttributes: HSA 97 12:38:31,4629798 MCLauncher.exe 84 CloseFile C:\Users\User\Pictures\desktop.ini SUCCESS 97 12:38:31,4630280 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:31,4630341 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: Name 97 12:38:31,4630455 MCLauncher.exe 84 RegOpenKey HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS Desired Access: Read 97 12:38:31,4630560 MCLauncher.exe 84 RegSetInfoKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 97 12:38:31,4630632 MCLauncher.exe 84 RegQueryKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS Query: HandleTags, HandleTags: 0x400 97 12:38:31,4630690 MCLauncher.exe 84 RegOpenKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{35286A68-3C57-41A1-BBB1-0EAE73D76C95} SUCCESS Desired Access: Read 97 12:38:31,4630782 MCLauncher.exe 84 RegCloseKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS 97 12:38:31,4630840 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{35286a68-3c57-41a1-bbb1-0eae73d76c95}\Category SUCCESS Type: REG_DWORD, Length: 4, Data: 4 97 12:38:31,4630992 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{35286a68-3c57-41a1-bbb1-0eae73d76c95}\Name SUCCESS Type: REG_SZ, Length: 26, Data: Local Videos 97 12:38:31,4631131 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{35286a68-3c57-41a1-bbb1-0eae73d76c95}\ParentFolder NAME NOT FOUND Length: 144 97 12:38:31,4631247 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{35286a68-3c57-41a1-bbb1-0eae73d76c95}\Description NAME NOT FOUND Length: 144 97 12:38:31,4631355 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{35286a68-3c57-41a1-bbb1-0eae73d76c95}\RelativePath SUCCESS Type: REG_SZ, Length: 14, Data: Videos 97 12:38:31,4631480 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{35286a68-3c57-41a1-bbb1-0eae73d76c95}\ParsingName BUFFER OVERFLOW Length: 144 97 12:38:31,4631591 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{35286a68-3c57-41a1-bbb1-0eae73d76c95}\ParsingName SUCCESS Type: REG_SZ, Length: 176, Data: shell:::{20D04FE0-3AEA-1069-A2D8-08002B30309D}\::{f86fa3ab-70d2-4fc7-9c99-fcbf05467f3a} 97 12:38:31,4631715 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{35286a68-3c57-41a1-bbb1-0eae73d76c95}\InfoTip SUCCESS Type: REG_EXPAND_SZ, Length: 84, Data: @%SystemRoot%\system32\shell32.dll,-12690 97 12:38:31,4631846 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{35286a68-3c57-41a1-bbb1-0eae73d76c95}\LocalizedName SUCCESS Type: REG_EXPAND_SZ, Length: 84, Data: @%SystemRoot%\system32\shell32.dll,-21791 97 12:38:31,4631973 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{35286a68-3c57-41a1-bbb1-0eae73d76c95}\Icon SUCCESS Type: REG_EXPAND_SZ, Length: 80, Data: %SystemRoot%\system32\imageres.dll,-189 97 12:38:31,4632098 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{35286a68-3c57-41a1-bbb1-0eae73d76c95}\Security NAME NOT FOUND Length: 144 97 12:38:31,4632209 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{35286a68-3c57-41a1-bbb1-0eae73d76c95}\StreamResource NAME NOT FOUND Length: 144 97 12:38:31,4632347 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{35286a68-3c57-41a1-bbb1-0eae73d76c95}\StreamResourceType NAME NOT FOUND Length: 144 97 12:38:31,4632458 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{35286a68-3c57-41a1-bbb1-0eae73d76c95}\LocalRedirectOnly NAME NOT FOUND Length: 144 97 12:38:31,4632563 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{35286a68-3c57-41a1-bbb1-0eae73d76c95}\Roamable NAME NOT FOUND Length: 144 97 12:38:31,4632666 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{35286a68-3c57-41a1-bbb1-0eae73d76c95}\PreCreate SUCCESS Type: REG_DWORD, Length: 4, Data: 1 97 12:38:31,4632788 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{35286a68-3c57-41a1-bbb1-0eae73d76c95}\Stream NAME NOT FOUND Length: 144 97 12:38:31,4632893 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{35286a68-3c57-41a1-bbb1-0eae73d76c95}\PublishExpandedPath NAME NOT FOUND Length: 144 97 12:38:31,4632998 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{35286a68-3c57-41a1-bbb1-0eae73d76c95}\DefinitionFlags NAME NOT FOUND Length: 144 97 12:38:31,4633101 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{35286a68-3c57-41a1-bbb1-0eae73d76c95}\Attributes SUCCESS Type: REG_DWORD, Length: 4, Data: 1 97 12:38:31,4633217 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{35286a68-3c57-41a1-bbb1-0eae73d76c95}\FolderTypeID NAME NOT FOUND Length: 144 97 12:38:31,4633325 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{35286a68-3c57-41a1-bbb1-0eae73d76c95}\InitFolderHandler NAME NOT FOUND Length: 144 97 12:38:31,4633466 MCLauncher.exe 84 RegQueryKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{35286a68-3c57-41a1-bbb1-0eae73d76c95} SUCCESS Query: HandleTags, HandleTags: 0x400 97 12:38:31,4633530 MCLauncher.exe 84 RegOpenKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{35286a68-3c57-41a1-bbb1-0eae73d76c95}\PropertyBag SUCCESS Desired Access: Read 97 12:38:31,4633627 MCLauncher.exe 84 RegCloseKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{35286a68-3c57-41a1-bbb1-0eae73d76c95} SUCCESS 97 12:38:31,4633788 MCLauncher.exe 84 RegQueryKey HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer SUCCESS Query: HandleTags, HandleTags: 0x400 97 12:38:31,4633843 MCLauncher.exe 84 RegOpenKey HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\SessionInfo\1 SUCCESS Desired Access: Query Value 97 12:38:31,4633940 MCLauncher.exe 84 RegQueryKey HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\SessionInfo\1 SUCCESS Query: HandleTags, HandleTags: 0x400 97 12:38:31,4633993 MCLauncher.exe 84 RegOpenKey HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\SessionInfo\1\KnownFolders NAME NOT FOUND Desired Access: Query Value 97 12:38:31,4634065 MCLauncher.exe 84 RegCloseKey HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\SessionInfo\1 SUCCESS 97 12:38:31,4634153 MCLauncher.exe 84 RegOpenKey HKCU SUCCESS Desired Access: Read 97 12:38:31,4634242 MCLauncher.exe 84 RegQueryKey HKCU SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:31,4634289 MCLauncher.exe 84 RegQueryKey HKCU SUCCESS Query: Name 97 12:38:31,4634364 MCLauncher.exe 84 RegOpenKey HKCU\Software\Microsoft\Windows\CurrentVersion\Explorer\User Shell Folders SUCCESS Desired Access: Read 97 12:38:31,4634450 MCLauncher.exe 84 RegSetInfoKey HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\User Shell Folders SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 97 12:38:31,4634494 MCLauncher.exe 84 RegCloseKey HKCU SUCCESS 97 12:38:31,4634544 MCLauncher.exe 84 RegQueryValue HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\User Shell Folders\{35286A68-3C57-41A1-BBB1-0EAE73D76C95} NAME NOT FOUND Length: 144 97 12:38:31,4634785 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:31,4634838 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: Name 97 12:38:31,4634935 MCLauncher.exe 84 RegOpenKey HKLM\Software\WOW6432Node\Microsoft\Windows NT\CurrentVersion\ProfileList\S-1-5-21-3477790013-1571897634-1299942168-1000 REPARSE Desired Access: Read 97 12:38:31,4635018 MCLauncher.exe 84 RegOpenKey HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\ProfileList\S-1-5-21-3477790013-1571897634-1299942168-1000 SUCCESS Desired Access: Read 97 12:38:31,4635084 MCLauncher.exe 84 RegSetInfoKey HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\ProfileList\S-1-5-21-3477790013-1571897634-1299942168-1000 SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 97 12:38:31,4635129 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\ProfileList\S-1-5-21-3477790013-1571897634-1299942168-1000\ProfileImagePath SUCCESS Type: REG_EXPAND_SZ, Length: 28, Data: C:\Users\User 97 12:38:31,4635273 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\ProfileList\S-1-5-21-3477790013-1571897634-1299942168-1000\ProfileImagePath SUCCESS Type: REG_EXPAND_SZ, Length: 28, Data: C:\Users\User 97 12:38:31,4635447 MCLauncher.exe 84 RegCloseKey HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\ProfileList\S-1-5-21-3477790013-1571897634-1299942168-1000 SUCCESS 97 12:38:31,4635536 MCLauncher.exe 84 RegCloseKey HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\User Shell Folders SUCCESS 97 12:38:31,4636808 MCLauncher.exe 84 CreateFile C:\Users\User\Videos\desktop.ini SUCCESS Desired Access: Generic Read, Disposition: Open, Options: Sequential Access, Synchronous IO Non-Alert, Non-Directory File, Attributes: n/a, ShareMode: Read, Write, Delete, AllocationSize: n/a, OpenResult: Opened 97 12:38:31,4637021 MCLauncher.exe 84 QueryStandardInformationFile C:\Users\User\Videos\desktop.ini SUCCESS AllocationSize: 504, EndOfFile: 504, NumberOfLinks: 1, DeletePending: False, Directory: False 97 12:38:31,4637121 MCLauncher.exe 84 ReadFile C:\Users\User\Videos\desktop.ini SUCCESS Offset: 0, Length: 504, Priority: Normal 97 12:38:31,4637600 MCLauncher.exe 84 QueryBasicInformationFile C:\Users\User\Videos\desktop.ini SUCCESS CreationTime: 19.07.2018 20:08:09, LastAccessTime: 19.07.2018 20:08:09, LastWriteTime: 20.07.2018 19:29:33, ChangeTime: 20.07.2018 19:29:33, FileAttributes: HSA 97 12:38:31,4637700 MCLauncher.exe 84 CloseFile C:\Users\User\Videos\desktop.ini SUCCESS 97 12:38:31,4638185 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:31,4638246 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: Name 97 12:38:31,4638359 MCLauncher.exe 84 RegOpenKey HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS Desired Access: Read 97 12:38:31,4638464 MCLauncher.exe 84 RegSetInfoKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 97 12:38:31,4638537 MCLauncher.exe 84 RegQueryKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS Query: HandleTags, HandleTags: 0x400 97 12:38:31,4638595 MCLauncher.exe 84 RegOpenKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{7D83EE9B-2244-4E70-B1F5-5393042AF1E4} SUCCESS Desired Access: Read 97 12:38:31,4638797 MCLauncher.exe 84 RegCloseKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS 97 12:38:31,4638894 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{7d83ee9b-2244-4e70-b1f5-5393042af1e4}\Category SUCCESS Type: REG_DWORD, Length: 4, Data: 4 97 12:38:31,4639052 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{7d83ee9b-2244-4e70-b1f5-5393042af1e4}\Name SUCCESS Type: REG_SZ, Length: 32, Data: Local Downloads 97 12:38:31,4639190 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{7d83ee9b-2244-4e70-b1f5-5393042af1e4}\ParentFolder NAME NOT FOUND Length: 144 97 12:38:31,4639304 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{7d83ee9b-2244-4e70-b1f5-5393042af1e4}\Description NAME NOT FOUND Length: 144 97 12:38:31,4639409 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{7d83ee9b-2244-4e70-b1f5-5393042af1e4}\RelativePath SUCCESS Type: REG_SZ, Length: 20, Data: Downloads 97 12:38:31,4639534 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{7d83ee9b-2244-4e70-b1f5-5393042af1e4}\ParsingName BUFFER OVERFLOW Length: 144 97 12:38:31,4639642 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{7d83ee9b-2244-4e70-b1f5-5393042af1e4}\ParsingName SUCCESS Type: REG_SZ, Length: 176, Data: shell:::{20D04FE0-3AEA-1069-A2D8-08002B30309D}\::{088e3905-0323-4b02-9826-5d99428e115f} 97 12:38:31,4639767 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{7d83ee9b-2244-4e70-b1f5-5393042af1e4}\InfoTip NAME NOT FOUND Length: 144 97 12:38:31,4639875 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{7d83ee9b-2244-4e70-b1f5-5393042af1e4}\LocalizedName SUCCESS Type: REG_EXPAND_SZ, Length: 84, Data: @%SystemRoot%\system32\shell32.dll,-21798 97 12:38:31,4639999 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{7d83ee9b-2244-4e70-b1f5-5393042af1e4}\Icon SUCCESS Type: REG_EXPAND_SZ, Length: 80, Data: %SystemRoot%\system32\imageres.dll,-184 97 12:38:31,4640124 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{7d83ee9b-2244-4e70-b1f5-5393042af1e4}\Security NAME NOT FOUND Length: 144 97 12:38:31,4640229 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{7d83ee9b-2244-4e70-b1f5-5393042af1e4}\StreamResource NAME NOT FOUND Length: 144 97 12:38:31,4640335 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{7d83ee9b-2244-4e70-b1f5-5393042af1e4}\StreamResourceType NAME NOT FOUND Length: 144 97 12:38:31,4640437 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{7d83ee9b-2244-4e70-b1f5-5393042af1e4}\LocalRedirectOnly NAME NOT FOUND Length: 144 97 12:38:31,4640542 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{7d83ee9b-2244-4e70-b1f5-5393042af1e4}\Roamable NAME NOT FOUND Length: 144 97 12:38:31,4640645 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{7d83ee9b-2244-4e70-b1f5-5393042af1e4}\PreCreate SUCCESS Type: REG_DWORD, Length: 4, Data: 1 97 12:38:31,4640764 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{7d83ee9b-2244-4e70-b1f5-5393042af1e4}\Stream NAME NOT FOUND Length: 144 97 12:38:31,4640867 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{7d83ee9b-2244-4e70-b1f5-5393042af1e4}\PublishExpandedPath NAME NOT FOUND Length: 144 97 12:38:31,4640969 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{7d83ee9b-2244-4e70-b1f5-5393042af1e4}\DefinitionFlags NAME NOT FOUND Length: 144 97 12:38:31,4641072 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{7d83ee9b-2244-4e70-b1f5-5393042af1e4}\Attributes SUCCESS Type: REG_DWORD, Length: 4, Data: 1 97 12:38:31,4641188 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{7d83ee9b-2244-4e70-b1f5-5393042af1e4}\FolderTypeID NAME NOT FOUND Length: 144 97 12:38:31,4641293 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{7d83ee9b-2244-4e70-b1f5-5393042af1e4}\InitFolderHandler NAME NOT FOUND Length: 144 97 12:38:31,4641435 MCLauncher.exe 84 RegQueryKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{7d83ee9b-2244-4e70-b1f5-5393042af1e4} SUCCESS Query: HandleTags, HandleTags: 0x400 97 12:38:31,4641501 MCLauncher.exe 84 RegOpenKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{7d83ee9b-2244-4e70-b1f5-5393042af1e4}\PropertyBag SUCCESS Desired Access: Read 97 12:38:31,4641606 MCLauncher.exe 84 RegCloseKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{7d83ee9b-2244-4e70-b1f5-5393042af1e4} SUCCESS 97 12:38:31,4641773 MCLauncher.exe 84 RegQueryKey HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer SUCCESS Query: HandleTags, HandleTags: 0x400 97 12:38:31,4641831 MCLauncher.exe 84 RegOpenKey HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\SessionInfo\1 SUCCESS Desired Access: Query Value 97 12:38:31,4641922 MCLauncher.exe 84 RegQueryKey HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\SessionInfo\1 SUCCESS Query: HandleTags, HandleTags: 0x400 97 12:38:31,4641972 MCLauncher.exe 84 RegOpenKey HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\SessionInfo\1\KnownFolders NAME NOT FOUND Desired Access: Query Value 97 12:38:31,4642044 MCLauncher.exe 84 RegCloseKey HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\SessionInfo\1 SUCCESS 97 12:38:31,4642135 MCLauncher.exe 84 RegOpenKey HKCU SUCCESS Desired Access: Read 97 12:38:31,4642221 MCLauncher.exe 84 RegQueryKey HKCU SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:31,4642268 MCLauncher.exe 84 RegQueryKey HKCU SUCCESS Query: Name 97 12:38:31,4642343 MCLauncher.exe 84 RegOpenKey HKCU\Software\Microsoft\Windows\CurrentVersion\Explorer\User Shell Folders SUCCESS Desired Access: Read 97 12:38:31,4642426 MCLauncher.exe 84 RegSetInfoKey HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\User Shell Folders SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 97 12:38:31,4642471 MCLauncher.exe 84 RegCloseKey HKCU SUCCESS 97 12:38:31,4642521 MCLauncher.exe 84 RegQueryValue HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\User Shell Folders\{7D83EE9B-2244-4E70-B1F5-5393042AF1E4} NAME NOT FOUND Length: 144 97 12:38:31,4642773 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:31,4642825 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: Name 97 12:38:31,4642922 MCLauncher.exe 84 RegOpenKey HKLM\Software\WOW6432Node\Microsoft\Windows NT\CurrentVersion\ProfileList\S-1-5-21-3477790013-1571897634-1299942168-1000 REPARSE Desired Access: Read 97 12:38:31,4643005 MCLauncher.exe 84 RegOpenKey HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\ProfileList\S-1-5-21-3477790013-1571897634-1299942168-1000 SUCCESS Desired Access: Read 97 12:38:31,4643069 MCLauncher.exe 84 RegSetInfoKey HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\ProfileList\S-1-5-21-3477790013-1571897634-1299942168-1000 SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 97 12:38:31,4643113 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\ProfileList\S-1-5-21-3477790013-1571897634-1299942168-1000\ProfileImagePath SUCCESS Type: REG_EXPAND_SZ, Length: 28, Data: C:\Users\User 97 12:38:31,4643249 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\ProfileList\S-1-5-21-3477790013-1571897634-1299942168-1000\ProfileImagePath SUCCESS Type: REG_EXPAND_SZ, Length: 28, Data: C:\Users\User 97 12:38:31,4643382 MCLauncher.exe 84 RegCloseKey HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\ProfileList\S-1-5-21-3477790013-1571897634-1299942168-1000 SUCCESS 97 12:38:31,4643463 MCLauncher.exe 84 RegCloseKey HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\User Shell Folders SUCCESS 97 12:38:31,4644718 MCLauncher.exe 84 CreateFile C:\Users\User\Downloads\desktop.ini SUCCESS Desired Access: Generic Read, Disposition: Open, Options: Sequential Access, Synchronous IO Non-Alert, Non-Directory File, Attributes: n/a, ShareMode: Read, Write, Delete, AllocationSize: n/a, OpenResult: Opened 97 12:38:31,4644939 MCLauncher.exe 84 QueryStandardInformationFile C:\Users\User\Downloads\desktop.ini SUCCESS AllocationSize: 288, EndOfFile: 282, NumberOfLinks: 1, DeletePending: False, Directory: False 97 12:38:31,4645042 MCLauncher.exe 84 ReadFile C:\Users\User\Downloads\desktop.ini SUCCESS Offset: 0, Length: 282, Priority: Normal 97 12:38:31,4645369 MCLauncher.exe 84 QueryBasicInformationFile C:\Users\User\Downloads\desktop.ini SUCCESS CreationTime: 19.07.2018 20:08:15, LastAccessTime: 19.07.2018 20:08:15, LastWriteTime: 20.07.2018 19:29:33, ChangeTime: 20.07.2018 19:29:33, FileAttributes: HSA 97 12:38:31,4645463 MCLauncher.exe 84 CloseFile C:\Users\User\Downloads\desktop.ini SUCCESS 97 12:38:31,4646011 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:31,4646072 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: Name 97 12:38:31,4646186 MCLauncher.exe 84 RegOpenKey HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS Desired Access: Read 97 12:38:31,4646291 MCLauncher.exe 84 RegSetInfoKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 97 12:38:31,4646363 MCLauncher.exe 84 RegQueryKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS Query: HandleTags, HandleTags: 0x400 97 12:38:31,4646422 MCLauncher.exe 84 RegOpenKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{A52BBA46-E9E1-435F-B3D9-28DAA648C0F6} SUCCESS Desired Access: Read 97 12:38:31,4646516 MCLauncher.exe 84 RegCloseKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS 97 12:38:31,4646574 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{A52BBA46-E9E1-435f-B3D9-28DAA648C0F6}\Category SUCCESS Type: REG_DWORD, Length: 4, Data: 4 97 12:38:31,4646729 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{A52BBA46-E9E1-435f-B3D9-28DAA648C0F6}\Name SUCCESS Type: REG_SZ, Length: 18, Data: OneDrive 97 12:38:31,4646870 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{A52BBA46-E9E1-435f-B3D9-28DAA648C0F6}\ParentFolder SUCCESS Type: REG_SZ, Length: 78, Data: {5E6C858F-0E22-4760-9AFE-EA3317B67173} 97 12:38:31,4646998 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{A52BBA46-E9E1-435f-B3D9-28DAA648C0F6}\Description NAME NOT FOUND Length: 144 97 12:38:31,4647106 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{A52BBA46-E9E1-435f-B3D9-28DAA648C0F6}\RelativePath SUCCESS Type: REG_SZ, Length: 18, Data: OneDrive 97 12:38:31,4647233 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{A52BBA46-E9E1-435f-B3D9-28DAA648C0F6}\ParsingName SUCCESS Type: REG_SZ, Length: 94, Data: shell:::{018D5C66-4533-4307-9B53-224DE2ED1FE6} 97 12:38:31,4647361 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{A52BBA46-E9E1-435f-B3D9-28DAA648C0F6}\InfoTip NAME NOT FOUND Length: 144 97 12:38:31,4647472 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{A52BBA46-E9E1-435f-B3D9-28DAA648C0F6}\LocalizedName SUCCESS Type: REG_EXPAND_SZ, Length: 98, Data: @%SystemRoot%\System32\SettingSyncCore.dll,-1024 97 12:38:31,4647596 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{A52BBA46-E9E1-435f-B3D9-28DAA648C0F6}\Icon SUCCESS Type: REG_EXPAND_SZ, Length: 82, Data: %SystemRoot%\system32\imageres.dll,-1040 97 12:38:31,4647721 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{A52BBA46-E9E1-435f-B3D9-28DAA648C0F6}\Security NAME NOT FOUND Length: 144 97 12:38:31,4647829 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{A52BBA46-E9E1-435f-B3D9-28DAA648C0F6}\StreamResource NAME NOT FOUND Length: 144 97 12:38:31,4647931 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{A52BBA46-E9E1-435f-B3D9-28DAA648C0F6}\StreamResourceType NAME NOT FOUND Length: 144 97 12:38:31,4648037 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{A52BBA46-E9E1-435f-B3D9-28DAA648C0F6}\LocalRedirectOnly SUCCESS Type: REG_DWORD, Length: 4, Data: 1 97 12:38:31,4648186 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{A52BBA46-E9E1-435f-B3D9-28DAA648C0F6}\Roamable NAME NOT FOUND Length: 144 97 12:38:31,4648292 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{A52BBA46-E9E1-435f-B3D9-28DAA648C0F6}\PreCreate NAME NOT FOUND Length: 144 97 12:38:31,4648397 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{A52BBA46-E9E1-435f-B3D9-28DAA648C0F6}\Stream NAME NOT FOUND Length: 144 97 12:38:31,4648616 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{A52BBA46-E9E1-435f-B3D9-28DAA648C0F6}\PublishExpandedPath NAME NOT FOUND Length: 144 97 12:38:31,4648724 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{A52BBA46-E9E1-435f-B3D9-28DAA648C0F6}\DefinitionFlags SUCCESS Type: REG_DWORD, Length: 4, Data: 64 97 12:38:31,4648843 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{A52BBA46-E9E1-435f-B3D9-28DAA648C0F6}\Attributes SUCCESS Type: REG_DWORD, Length: 4, Data: 1 97 12:38:31,4648959 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{A52BBA46-E9E1-435f-B3D9-28DAA648C0F6}\FolderTypeID NAME NOT FOUND Length: 144 97 12:38:31,4649067 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{A52BBA46-E9E1-435f-B3D9-28DAA648C0F6}\InitFolderHandler NAME NOT FOUND Length: 144 97 12:38:31,4649209 MCLauncher.exe 84 RegQueryKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{A52BBA46-E9E1-435f-B3D9-28DAA648C0F6} SUCCESS Query: HandleTags, HandleTags: 0x400 97 12:38:31,4649275 MCLauncher.exe 84 RegOpenKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{A52BBA46-E9E1-435f-B3D9-28DAA648C0F6}\PropertyBag NAME NOT FOUND Desired Access: Read 97 12:38:31,4649367 MCLauncher.exe 84 RegCloseKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{A52BBA46-E9E1-435f-B3D9-28DAA648C0F6} SUCCESS 97 12:38:31,4649533 MCLauncher.exe 84 RegQueryKey HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer SUCCESS Query: HandleTags, HandleTags: 0x400 97 12:38:31,4649591 MCLauncher.exe 84 RegOpenKey HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\SessionInfo\1 SUCCESS Desired Access: Query Value 97 12:38:31,4649685 MCLauncher.exe 84 RegQueryKey HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\SessionInfo\1 SUCCESS Query: HandleTags, HandleTags: 0x400 97 12:38:31,4649735 MCLauncher.exe 84 RegOpenKey HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\SessionInfo\1\KnownFolders NAME NOT FOUND Desired Access: Query Value 97 12:38:31,4649804 MCLauncher.exe 84 RegCloseKey HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\SessionInfo\1 SUCCESS 97 12:38:31,4649896 MCLauncher.exe 84 RegOpenKey HKCU SUCCESS Desired Access: Read 97 12:38:31,4649982 MCLauncher.exe 84 RegQueryKey HKCU SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:31,4650029 MCLauncher.exe 84 RegQueryKey HKCU SUCCESS Query: Name 97 12:38:31,4650104 MCLauncher.exe 84 RegOpenKey HKCU\Software\Microsoft\Windows\CurrentVersion\Explorer\User Shell Folders SUCCESS Desired Access: Read 97 12:38:31,4650184 MCLauncher.exe 84 RegSetInfoKey HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\User Shell Folders SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 97 12:38:31,4650231 MCLauncher.exe 84 RegCloseKey HKCU SUCCESS 97 12:38:31,4650278 MCLauncher.exe 84 RegQueryValue HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\User Shell Folders\{A52BBA46-E9E1-435F-B3D9-28DAA648C0F6} NAME NOT FOUND Length: 144 97 12:38:31,4650527 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:31,4650577 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: Name 97 12:38:31,4650674 MCLauncher.exe 84 RegOpenKey HKLM\Software\WOW6432Node\Microsoft\Windows NT\CurrentVersion\ProfileList\S-1-5-21-3477790013-1571897634-1299942168-1000 REPARSE Desired Access: Read 97 12:38:31,4650757 MCLauncher.exe 84 RegOpenKey HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\ProfileList\S-1-5-21-3477790013-1571897634-1299942168-1000 SUCCESS Desired Access: Read 97 12:38:31,4650818 MCLauncher.exe 84 RegSetInfoKey HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\ProfileList\S-1-5-21-3477790013-1571897634-1299942168-1000 SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 97 12:38:31,4650863 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\ProfileList\S-1-5-21-3477790013-1571897634-1299942168-1000\ProfileImagePath SUCCESS Type: REG_EXPAND_SZ, Length: 28, Data: C:\Users\User 97 12:38:31,4650998 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\ProfileList\S-1-5-21-3477790013-1571897634-1299942168-1000\ProfileImagePath SUCCESS Type: REG_EXPAND_SZ, Length: 28, Data: C:\Users\User 97 12:38:31,4651134 MCLauncher.exe 84 RegCloseKey HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\ProfileList\S-1-5-21-3477790013-1571897634-1299942168-1000 SUCCESS 97 12:38:31,4651215 MCLauncher.exe 84 RegCloseKey HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\User Shell Folders SUCCESS 97 12:38:31,4652486 MCLauncher.exe 84 CreateFile C:\Users\User\OneDrive\desktop.ini SUCCESS Desired Access: Generic Read, Disposition: Open, Options: Sequential Access, Synchronous IO Non-Alert, Non-Directory File, Attributes: n/a, ShareMode: Read, Write, Delete, AllocationSize: n/a, OpenResult: Opened 97 12:38:31,4652694 MCLauncher.exe 84 QueryStandardInformationFile C:\Users\User\OneDrive\desktop.ini SUCCESS AllocationSize: 96, EndOfFile: 95, NumberOfLinks: 1, DeletePending: False, Directory: False 97 12:38:31,4652797 MCLauncher.exe 84 ReadFile C:\Users\User\OneDrive\desktop.ini SUCCESS Offset: 0, Length: 95, Priority: Normal 97 12:38:31,4653187 MCLauncher.exe 84 QueryBasicInformationFile C:\Users\User\OneDrive\desktop.ini SUCCESS CreationTime: 19.07.2018 20:26:50, LastAccessTime: 19.07.2018 20:26:50, LastWriteTime: 23.08.2018 20:16:07, ChangeTime: 23.08.2018 20:16:07, FileAttributes: HS 97 12:38:31,4653284 MCLauncher.exe 84 CloseFile C:\Users\User\OneDrive\desktop.ini SUCCESS 97 12:38:31,4653869 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:31,4653933 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: Name 97 12:38:31,4654043 MCLauncher.exe 84 RegOpenKey HKLM\Software\WOW6432Node\Microsoft\Windows NT\CurrentVersion\ProfileList\S-1-5-21-3477790013-1571897634-1299942168-1000 REPARSE Desired Access: Read 97 12:38:31,4654138 MCLauncher.exe 84 RegOpenKey HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\ProfileList\S-1-5-21-3477790013-1571897634-1299942168-1000 SUCCESS Desired Access: Read 97 12:38:31,4654207 MCLauncher.exe 84 RegSetInfoKey HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\ProfileList\S-1-5-21-3477790013-1571897634-1299942168-1000 SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 97 12:38:31,4654257 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\ProfileList\S-1-5-21-3477790013-1571897634-1299942168-1000\ProfileImagePath SUCCESS Type: REG_EXPAND_SZ, Length: 28, Data: C:\Users\User 97 12:38:31,4654415 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\ProfileList\S-1-5-21-3477790013-1571897634-1299942168-1000\ProfileImagePath SUCCESS Type: REG_EXPAND_SZ, Length: 28, Data: C:\Users\User 97 12:38:31,4654564 MCLauncher.exe 84 RegCloseKey HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\ProfileList\S-1-5-21-3477790013-1571897634-1299942168-1000 SUCCESS 97 12:38:31,4654897 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:31,4654952 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: Name 97 12:38:31,4655052 MCLauncher.exe 84 RegOpenKey HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS Desired Access: Read 97 12:38:31,4655146 MCLauncher.exe 84 RegSetInfoKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 97 12:38:31,4655213 MCLauncher.exe 84 RegQueryKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS Query: HandleTags, HandleTags: 0x400 97 12:38:31,4655271 MCLauncher.exe 84 RegOpenKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{F3CE0F7C-4901-4ACC-8648-D5D44B04EF8F} SUCCESS Desired Access: Read 97 12:38:31,4655359 MCLauncher.exe 84 RegCloseKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS 97 12:38:31,4655412 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{f3ce0f7c-4901-4acc-8648-d5d44b04ef8f}\Category SUCCESS Type: REG_DWORD, Length: 4, Data: 1 97 12:38:31,4655551 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{f3ce0f7c-4901-4acc-8648-d5d44b04ef8f}\Name SUCCESS Type: REG_SZ, Length: 34, Data: UsersFilesFolder 97 12:38:31,4655684 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{f3ce0f7c-4901-4acc-8648-d5d44b04ef8f}\ParentFolder NAME NOT FOUND Length: 144 97 12:38:31,4655792 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{f3ce0f7c-4901-4acc-8648-d5d44b04ef8f}\Description NAME NOT FOUND Length: 144 97 12:38:31,4655897 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{f3ce0f7c-4901-4acc-8648-d5d44b04ef8f}\RelativePath NAME NOT FOUND Length: 144 97 12:38:31,4655999 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{f3ce0f7c-4901-4acc-8648-d5d44b04ef8f}\ParsingName SUCCESS Type: REG_SZ, Length: 82, Data: ::{59031a47-3f72-44a7-89c5-5595fe6b30ee} 97 12:38:31,4656124 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{f3ce0f7c-4901-4acc-8648-d5d44b04ef8f}\InfoTip NAME NOT FOUND Length: 144 97 12:38:31,4656229 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{f3ce0f7c-4901-4acc-8648-d5d44b04ef8f}\LocalizedName NAME NOT FOUND Length: 144 97 12:38:31,4656332 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{f3ce0f7c-4901-4acc-8648-d5d44b04ef8f}\Icon NAME NOT FOUND Length: 144 97 12:38:31,4656432 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{f3ce0f7c-4901-4acc-8648-d5d44b04ef8f}\Security NAME NOT FOUND Length: 144 97 12:38:31,4656531 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{f3ce0f7c-4901-4acc-8648-d5d44b04ef8f}\StreamResource NAME NOT FOUND Length: 144 97 12:38:31,4656634 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{f3ce0f7c-4901-4acc-8648-d5d44b04ef8f}\StreamResourceType NAME NOT FOUND Length: 144 97 12:38:31,4656736 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{f3ce0f7c-4901-4acc-8648-d5d44b04ef8f}\LocalRedirectOnly NAME NOT FOUND Length: 144 97 12:38:31,4656839 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{f3ce0f7c-4901-4acc-8648-d5d44b04ef8f}\Roamable NAME NOT FOUND Length: 144 97 12:38:31,4656941 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{f3ce0f7c-4901-4acc-8648-d5d44b04ef8f}\PreCreate NAME NOT FOUND Length: 144 97 12:38:31,4657044 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{f3ce0f7c-4901-4acc-8648-d5d44b04ef8f}\Stream NAME NOT FOUND Length: 144 97 12:38:31,4657146 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{f3ce0f7c-4901-4acc-8648-d5d44b04ef8f}\PublishExpandedPath NAME NOT FOUND Length: 144 97 12:38:31,4657246 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{f3ce0f7c-4901-4acc-8648-d5d44b04ef8f}\DefinitionFlags NAME NOT FOUND Length: 144 97 12:38:31,4657349 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{f3ce0f7c-4901-4acc-8648-d5d44b04ef8f}\Attributes NAME NOT FOUND Length: 144 97 12:38:31,4657454 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{f3ce0f7c-4901-4acc-8648-d5d44b04ef8f}\FolderTypeID NAME NOT FOUND Length: 144 97 12:38:31,4657556 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{f3ce0f7c-4901-4acc-8648-d5d44b04ef8f}\InitFolderHandler NAME NOT FOUND Length: 144 97 12:38:31,4657695 MCLauncher.exe 84 RegQueryKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{f3ce0f7c-4901-4acc-8648-d5d44b04ef8f} SUCCESS Query: HandleTags, HandleTags: 0x400 97 12:38:31,4657756 MCLauncher.exe 84 RegOpenKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{f3ce0f7c-4901-4acc-8648-d5d44b04ef8f}\PropertyBag SUCCESS Desired Access: Read 97 12:38:31,4657850 MCLauncher.exe 84 RegCloseKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{f3ce0f7c-4901-4acc-8648-d5d44b04ef8f} SUCCESS 97 12:38:31,4657961 MCLauncher.exe 84 RegQueryKey HKCU\Software\Classes SUCCESS Query: Name 97 12:38:31,4658027 MCLauncher.exe 84 RegQueryKey HKCU\Software\Classes SUCCESS Query: HandleTags, HandleTags: 0x1 97 12:38:31,4658091 MCLauncher.exe 84 RegQueryKey HKCU\Software\Classes SUCCESS Query: HandleTags, HandleTags: 0x1 97 12:38:31,4658141 MCLauncher.exe 84 RegQueryKey HKCU\Software\Classes SUCCESS Query: Name 97 12:38:31,4658504 MCLauncher.exe 84 RegOpenKey HKCU\Software\Classes\WOW6432Node\CLSID\{59031A47-3F72-44A7-89C5-5595FE6B30EE}\ShellFolder NAME NOT FOUND Desired Access: Query Value 97 12:38:31,4658701 MCLauncher.exe 84 RegOpenKey HKCR\WOW6432Node\CLSID\{59031A47-3F72-44A7-89C5-5595FE6B30EE}\ShellFolder SUCCESS Desired Access: Query Value 97 12:38:31,4658834 MCLauncher.exe 84 RegSetInfoKey HKCR\WOW6432Node\CLSID\{59031a47-3f72-44a7-89c5-5595fe6b30ee}\ShellFolder SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 97 12:38:31,4658886 MCLauncher.exe 84 RegQueryKey HKCR\WOW6432Node\CLSID\{59031a47-3f72-44a7-89c5-5595fe6b30ee}\ShellFolder SUCCESS Query: Name 97 12:38:31,4658950 MCLauncher.exe 84 RegQueryKey HKCR\WOW6432Node\CLSID\{59031a47-3f72-44a7-89c5-5595fe6b30ee}\ShellFolder SUCCESS Query: HandleTags, HandleTags: 0x401 97 12:38:31,4659055 MCLauncher.exe 84 RegOpenKey HKCU\Software\Classes\WOW6432Node\CLSID\{59031a47-3f72-44a7-89c5-5595fe6b30ee}\ShellFolder NAME NOT FOUND Desired Access: Maximum Allowed 97 12:38:31,4659133 MCLauncher.exe 84 RegQueryValue HKCR\WOW6432Node\CLSID\{59031a47-3f72-44a7-89c5-5595fe6b30ee}\ShellFolder\Attributes SUCCESS Type: REG_DWORD, Length: 4, Data: 4035182893 97 12:38:31,4659269 MCLauncher.exe 84 RegQueryKey HKCR\WOW6432Node\CLSID\{59031a47-3f72-44a7-89c5-5595fe6b30ee}\ShellFolder SUCCESS Query: Name 97 12:38:31,4659338 MCLauncher.exe 84 RegQueryKey HKCR\WOW6432Node\CLSID\{59031a47-3f72-44a7-89c5-5595fe6b30ee}\ShellFolder SUCCESS Query: HandleTags, HandleTags: 0x401 97 12:38:31,4659440 MCLauncher.exe 84 RegOpenKey HKCU\Software\Classes\WOW6432Node\CLSID\{59031a47-3f72-44a7-89c5-5595fe6b30ee}\ShellFolder NAME NOT FOUND Desired Access: Maximum Allowed 97 12:38:31,4659523 MCLauncher.exe 84 RegQueryValue HKCR\WOW6432Node\CLSID\{59031a47-3f72-44a7-89c5-5595fe6b30ee}\ShellFolder\CallForAttributes NAME NOT FOUND Length: 144 97 12:38:31,4659632 MCLauncher.exe 84 RegQueryKey HKCR\WOW6432Node\CLSID\{59031a47-3f72-44a7-89c5-5595fe6b30ee}\ShellFolder SUCCESS Query: Name 97 12:38:31,4659698 MCLauncher.exe 84 RegQueryKey HKCR\WOW6432Node\CLSID\{59031a47-3f72-44a7-89c5-5595fe6b30ee}\ShellFolder SUCCESS Query: HandleTags, HandleTags: 0x401 97 12:38:31,4659801 MCLauncher.exe 84 RegOpenKey HKCU\Software\Classes\WOW6432Node\CLSID\{59031a47-3f72-44a7-89c5-5595fe6b30ee}\ShellFolder NAME NOT FOUND Desired Access: Maximum Allowed 97 12:38:31,4659878 MCLauncher.exe 84 RegQueryValue HKCR\WOW6432Node\CLSID\{59031a47-3f72-44a7-89c5-5595fe6b30ee}\ShellFolder\RestrictedAttributes NAME NOT FOUND Length: 144 97 12:38:31,4659983 MCLauncher.exe 84 RegQueryKey HKCR\WOW6432Node\CLSID\{59031a47-3f72-44a7-89c5-5595fe6b30ee}\ShellFolder SUCCESS Query: Name 97 12:38:31,4660050 MCLauncher.exe 84 RegQueryKey HKCR\WOW6432Node\CLSID\{59031a47-3f72-44a7-89c5-5595fe6b30ee}\ShellFolder SUCCESS Query: HandleTags, HandleTags: 0x401 97 12:38:31,4660150 MCLauncher.exe 84 RegOpenKey HKCU\Software\Classes\WOW6432Node\CLSID\{59031a47-3f72-44a7-89c5-5595fe6b30ee}\ShellFolder NAME NOT FOUND Desired Access: Maximum Allowed 97 12:38:31,4660227 MCLauncher.exe 84 RegQueryValue HKCR\WOW6432Node\CLSID\{59031a47-3f72-44a7-89c5-5595fe6b30ee}\ShellFolder\FolderValueFlags SUCCESS Type: REG_DWORD, Length: 4, Data: 5243433 97 12:38:31,4660366 MCLauncher.exe 84 RegCloseKey HKCR\WOW6432Node\CLSID\{59031a47-3f72-44a7-89c5-5595fe6b30ee}\ShellFolder SUCCESS 97 12:38:31,4660463 MCLauncher.exe 84 RegQueryKey HKCU SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:31,4660515 MCLauncher.exe 84 RegQueryKey HKCU SUCCESS Query: Name 97 12:38:31,4660596 MCLauncher.exe 84 RegOpenKey HKCU\Software\Microsoft\Windows\CurrentVersion\Explorer\CLSID\{59031A47-3F72-44A7-89C5-5595FE6B30EE}\ShellFolder NAME NOT FOUND Desired Access: Query Value 97 12:38:31,4660712 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:31,4660759 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: Name 97 12:38:31,4660845 MCLauncher.exe 84 RegOpenKey HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\CLSID\{59031A47-3F72-44A7-89C5-5595FE6B30EE}\ShellFolder NAME NOT FOUND Desired Access: Query Value 97 12:38:31,4660956 MCLauncher.exe 84 RegQueryKey HKCU SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:31,4661000 MCLauncher.exe 84 RegQueryKey HKCU SUCCESS Query: Name 97 12:38:31,4661069 MCLauncher.exe 84 RegOpenKey HKCU\Software\Microsoft\Windows\CurrentVersion\Policies\NonEnum NAME NOT FOUND Desired Access: Query Value 97 12:38:31,4661153 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:31,4661200 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: Name 97 12:38:31,4661272 MCLauncher.exe 84 RegOpenKey HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Policies\NonEnum REPARSE Desired Access: Query Value 97 12:38:31,4661338 MCLauncher.exe 84 RegOpenKey HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\NonEnum SUCCESS Desired Access: Query Value 97 12:38:31,4661405 MCLauncher.exe 84 RegSetInfoKey HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\NonEnum SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 97 12:38:31,4661449 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\NonEnum\{59031A47-3F72-44A7-89C5-5595FE6B30EE} NAME NOT FOUND Length: 144 97 12:38:31,4661582 MCLauncher.exe 84 RegCloseKey HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\NonEnum SUCCESS 97 12:38:31,4661848 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:31,4661901 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: Name 97 12:38:31,4661992 MCLauncher.exe 84 RegOpenKey HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\UsersFiles\NameSpace SUCCESS Desired Access: Query Value 97 12:38:31,4662095 MCLauncher.exe 84 RegSetInfoKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\UsersFiles\NameSpace SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 97 12:38:31,4662142 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\UsersFiles\NameSpace\ValidateRegItems NAME NOT FOUND Length: 144 97 12:38:31,4662266 MCLauncher.exe 84 RegCloseKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\UsersFiles\NameSpace SUCCESS 97 12:38:31,4662336 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:31,4662385 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: Name 97 12:38:31,4662469 MCLauncher.exe 84 RegOpenKey HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\UsersFiles\NameSpace SUCCESS Desired Access: Query Value 97 12:38:31,4662546 MCLauncher.exe 84 RegSetInfoKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\UsersFiles\NameSpace SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 97 12:38:31,4662588 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\UsersFiles\NameSpace\MonitorRegistry NAME NOT FOUND Length: 144 97 12:38:31,4662701 MCLauncher.exe 84 RegCloseKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\UsersFiles\NameSpace SUCCESS 97 12:38:31,4662865 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:31,4662917 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: Name 97 12:38:31,4663003 MCLauncher.exe 84 RegOpenKey HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\UsersFiles\NameSpace\DelegateFolders SUCCESS Desired Access: Query Value 97 12:38:31,4663100 MCLauncher.exe 84 RegSetInfoKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\UsersFiles\NameSpace\DelegateFolders SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 97 12:38:31,4663161 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\UsersFiles\NameSpace\DelegateFolders\StorageDelegateSuppressionPolicy SUCCESS Type: REG_SZ, Length: 78, Data: {92803FB4-7706-4035-ACD7-F63E069D3697} 97 12:38:31,4663297 MCLauncher.exe 84 RegCloseKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\UsersFiles\NameSpace\DelegateFolders SUCCESS 97 12:38:31,4663394 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:31,4663447 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: Name 97 12:38:31,4663530 MCLauncher.exe 84 RegOpenKey HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Policies\Explorer REPARSE Desired Access: Query Value 97 12:38:31,4663605 MCLauncher.exe 84 RegOpenKey HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer SUCCESS Desired Access: Query Value 97 12:38:31,4663663 MCLauncher.exe 84 RegSetInfoKey HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 97 12:38:31,4663710 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer\PreventItemCreationInUsersFilesFolder NAME NOT FOUND Length: 144 97 12:38:31,4663834 MCLauncher.exe 84 RegCloseKey HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer SUCCESS 97 12:38:31,4663901 MCLauncher.exe 84 RegQueryKey HKCU SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:31,4663954 MCLauncher.exe 84 RegQueryKey HKCU SUCCESS Query: Name 97 12:38:31,4664031 MCLauncher.exe 84 RegOpenKey HKCU\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer SUCCESS Desired Access: Query Value 97 12:38:31,4664114 MCLauncher.exe 84 RegSetInfoKey HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 97 12:38:31,4664156 MCLauncher.exe 84 RegQueryValue HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer\PreventItemCreationInUsersFilesFolder NAME NOT FOUND Length: 144 97 12:38:31,4664275 MCLauncher.exe 84 RegCloseKey HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer SUCCESS 97 12:38:31,4664342 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:31,4664391 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: Name 97 12:38:31,4664474 MCLauncher.exe 84 RegOpenKey HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\UsersFiles\NameSpace\DelegateFolders SUCCESS Desired Access: Query Value 97 12:38:31,4664560 MCLauncher.exe 84 RegSetInfoKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\UsersFiles\NameSpace\DelegateFolders SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 97 12:38:31,4664602 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\UsersFiles\NameSpace\DelegateFolders\StorageDelegate SUCCESS Type: REG_SZ, Length: 78, Data: {DFFACDC5-679F-4156-8947-C5C76BC0B67F} 97 12:38:31,4664732 MCLauncher.exe 84 RegCloseKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\UsersFiles\NameSpace\DelegateFolders SUCCESS 97 12:38:31,4665173 MCLauncher.exe 84 RegQueryKey HKCU\Software\Classes SUCCESS Query: Name 97 12:38:31,4665242 MCLauncher.exe 84 RegQueryKey HKCU\Software\Classes SUCCESS Query: HandleTags, HandleTags: 0x1 97 12:38:31,4665314 MCLauncher.exe 84 RegQueryKey HKCU\Software\Classes SUCCESS Query: HandleTags, HandleTags: 0x1 97 12:38:31,4665361 MCLauncher.exe 84 RegQueryKey HKCU\Software\Classes SUCCESS Query: Name 97 12:38:31,4665452 MCLauncher.exe 84 RegOpenKey HKCU\Software\Classes\WOW6432Node\CLSID\{DFFACDC5-679F-4156-8947-C5C76BC0B67F}\Instance NAME NOT FOUND Desired Access: Read 97 12:38:31,4665588 MCLauncher.exe 84 RegOpenKey HKCR\WOW6432Node\CLSID\{DFFACDC5-679F-4156-8947-C5C76BC0B67F}\Instance SUCCESS Desired Access: Read 97 12:38:31,4665699 MCLauncher.exe 84 RegSetInfoKey HKCR\WOW6432Node\CLSID\{DFFACDC5-679F-4156-8947-C5C76BC0B67F}\Instance SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 97 12:38:31,4665749 MCLauncher.exe 84 RegQueryKey HKCR\WOW6432Node\CLSID\{DFFACDC5-679F-4156-8947-C5C76BC0B67F}\Instance SUCCESS Query: Name 97 12:38:31,4665813 MCLauncher.exe 84 RegQueryKey HKCR\WOW6432Node\CLSID\{DFFACDC5-679F-4156-8947-C5C76BC0B67F}\Instance SUCCESS Query: HandleTags, HandleTags: 0x401 97 12:38:31,4665910 MCLauncher.exe 84 RegOpenKey HKCU\Software\Classes\WOW6432Node\CLSID\{DFFACDC5-679F-4156-8947-C5C76BC0B67F}\Instance NAME NOT FOUND Desired Access: Maximum Allowed 97 12:38:31,4665979 MCLauncher.exe 84 RegQueryValue HKCR\WOW6432Node\CLSID\{DFFACDC5-679F-4156-8947-C5C76BC0B67F}\Instance\CLSID SUCCESS Type: REG_SZ, Length: 78, Data: {0E5AAE11-A475-4c5b-AB00-C66DE400274E} 97 12:38:31,4666192 MCLauncher.exe 84 RegQueryKey HKCU\Software\Classes SUCCESS Query: Name 97 12:38:31,4666262 MCLauncher.exe 84 RegQueryKey HKCU\Software\Classes SUCCESS Query: HandleTags, HandleTags: 0x1 97 12:38:31,4666328 MCLauncher.exe 84 RegQueryKey HKCU\Software\Classes SUCCESS Query: HandleTags, HandleTags: 0x1 97 12:38:31,4666378 MCLauncher.exe 84 RegQueryKey HKCU\Software\Classes SUCCESS Query: Name 97 12:38:31,4666464 MCLauncher.exe 84 RegOpenKey HKCU\Software\Classes\WOW6432Node\CLSID\{0E5AAE11-A475-4C5B-AB00-C66DE400274E}\InProcServer32 NAME NOT FOUND Desired Access: Query Value 97 12:38:31,4666572 MCLauncher.exe 84 RegOpenKey HKCR\WOW6432Node\CLSID\{0E5AAE11-A475-4C5B-AB00-C66DE400274E}\InProcServer32 SUCCESS Desired Access: Query Value 97 12:38:31,4666677 MCLauncher.exe 84 RegSetInfoKey HKCR\WOW6432Node\CLSID\{0E5AAE11-A475-4c5b-AB00-C66DE400274E}\InProcServer32 SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 97 12:38:31,4666719 MCLauncher.exe 84 RegQueryKey HKCR\WOW6432Node\CLSID\{0E5AAE11-A475-4c5b-AB00-C66DE400274E}\InProcServer32 SUCCESS Query: Name 97 12:38:31,4666785 MCLauncher.exe 84 RegQueryKey HKCR\WOW6432Node\CLSID\{0E5AAE11-A475-4c5b-AB00-C66DE400274E}\InProcServer32 SUCCESS Query: HandleTags, HandleTags: 0x401 97 12:38:31,4666877 MCLauncher.exe 84 RegOpenKey HKCU\Software\Classes\WOW6432Node\CLSID\{0E5AAE11-A475-4c5b-AB00-C66DE400274E}\InProcServer32 NAME NOT FOUND Desired Access: Maximum Allowed 97 12:38:31,4666943 MCLauncher.exe 84 RegQueryValue HKCR\WOW6432Node\CLSID\{0E5AAE11-A475-4c5b-AB00-C66DE400274E}\InProcServer32\(Default) SUCCESS Type: REG_EXPAND_SZ, Length: 84, Data: %SystemRoot%\system32\Windows.Storage.dll 97 12:38:31,4667018 MCLauncher.exe 84 RegQueryKey HKCR\WOW6432Node\CLSID\{0E5AAE11-A475-4c5b-AB00-C66DE400274E}\InProcServer32 SUCCESS Query: Name 97 12:38:31,4667073 MCLauncher.exe 84 RegQueryKey HKCR\WOW6432Node\CLSID\{0E5AAE11-A475-4c5b-AB00-C66DE400274E}\InProcServer32 SUCCESS Query: HandleTags, HandleTags: 0x401 97 12:38:31,4667156 MCLauncher.exe 84 RegOpenKey HKCU\Software\Classes\WOW6432Node\CLSID\{0E5AAE11-A475-4c5b-AB00-C66DE400274E}\InProcServer32 NAME NOT FOUND Desired Access: Maximum Allowed 97 12:38:31,4667223 MCLauncher.exe 84 RegQueryValue HKCR\WOW6432Node\CLSID\{0E5AAE11-A475-4c5b-AB00-C66DE400274E}\InProcServer32\LoadWithoutCOM NAME NOT FOUND Length: 144 97 12:38:31,4667359 MCLauncher.exe 84 RegCloseKey HKCR\WOW6432Node\CLSID\{0E5AAE11-A475-4c5b-AB00-C66DE400274E}\InProcServer32 SUCCESS 97 12:38:31,4667478 MCLauncher.exe 84 RegQueryKey HKCU\Software\Classes SUCCESS Query: Name 97 12:38:31,4667541 MCLauncher.exe 84 RegQueryKey HKCU\Software\Classes SUCCESS Query: HandleTags, HandleTags: 0x1 97 12:38:31,4667611 MCLauncher.exe 84 RegQueryKey HKCU\Software\Classes SUCCESS Query: HandleTags, HandleTags: 0x1 97 12:38:31,4667661 MCLauncher.exe 84 RegQueryKey HKCU\Software\Classes SUCCESS Query: Name 97 12:38:31,4667747 MCLauncher.exe 84 RegOpenKey HKCU\Software\Classes\WOW6432Node\CLSID\{0E5AAE11-A475-4C5B-AB00-C66DE400274E} NAME NOT FOUND Desired Access: Read 97 12:38:31,4667852 MCLauncher.exe 84 RegOpenKey HKCR\WOW6432Node\CLSID\{0E5AAE11-A475-4C5B-AB00-C66DE400274E} SUCCESS Desired Access: Read 97 12:38:31,4667935 MCLauncher.exe 84 RegSetInfoKey HKCR\WOW6432Node\CLSID\{0E5AAE11-A475-4c5b-AB00-C66DE400274E} SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 97 12:38:31,4668112 MCLauncher.exe 84 RegQueryKey HKCR\WOW6432Node\CLSID\{0E5AAE11-A475-4c5b-AB00-C66DE400274E} SUCCESS Query: Name 97 12:38:31,4668190 MCLauncher.exe 84 RegQueryKey HKCR\WOW6432Node\CLSID\{0E5AAE11-A475-4c5b-AB00-C66DE400274E} SUCCESS Query: HandleTags, HandleTags: 0x401 97 12:38:31,4668295 MCLauncher.exe 84 RegOpenKey HKCU\Software\Classes\WOW6432Node\CLSID\{0E5AAE11-A475-4c5b-AB00-C66DE400274E}\TreatAs NAME NOT FOUND Desired Access: Query Value 97 12:38:31,4668395 MCLauncher.exe 84 RegQueryKey HKCR\WOW6432Node\CLSID\{0E5AAE11-A475-4c5b-AB00-C66DE400274E} SUCCESS Query: HandleTags, HandleTags: 0x401 97 12:38:31,4668450 MCLauncher.exe 84 RegOpenKey HKCR\WOW6432Node\CLSID\{0E5AAE11-A475-4c5b-AB00-C66DE400274E}\TreatAs NAME NOT FOUND Desired Access: Query Value 97 12:38:31,4668520 MCLauncher.exe 84 RegQueryKey HKCR\WOW6432Node\CLSID\{0E5AAE11-A475-4c5b-AB00-C66DE400274E} SUCCESS Query: Name 97 12:38:31,4668592 MCLauncher.exe 84 RegQueryKey HKCR\WOW6432Node\CLSID\{0E5AAE11-A475-4c5b-AB00-C66DE400274E} SUCCESS Query: Name 97 12:38:31,4668647 MCLauncher.exe 84 RegQueryKey HKCR\WOW6432Node\CLSID\{0E5AAE11-A475-4c5b-AB00-C66DE400274E} SUCCESS Query: HandleTags, HandleTags: 0x401 97 12:38:31,4668733 MCLauncher.exe 84 RegOpenKey HKCU\Software\Classes\WOW6432Node\CLSID\{0E5AAE11-A475-4c5b-AB00-C66DE400274E} NAME NOT FOUND Desired Access: Maximum Allowed 97 12:38:31,4668802 MCLauncher.exe 84 RegQueryValue HKCR\WOW6432Node\CLSID\{0E5AAE11-A475-4c5b-AB00-C66DE400274E}\(Default) SUCCESS Type: REG_SZ, Length: 50, Data: Shell File System Folder 97 12:38:31,4668866 MCLauncher.exe 84 RegQueryKey HKCR\WOW6432Node\CLSID\{0E5AAE11-A475-4c5b-AB00-C66DE400274E} SUCCESS Query: Name 97 12:38:31,4668921 MCLauncher.exe 84 RegQueryKey HKCR\WOW6432Node\CLSID\{0E5AAE11-A475-4c5b-AB00-C66DE400274E} SUCCESS Query: HandleTags, HandleTags: 0x401 97 12:38:31,4669004 MCLauncher.exe 84 RegOpenKey HKCU\Software\Classes\WOW6432Node\CLSID\{0E5AAE11-A475-4c5b-AB00-C66DE400274E} NAME NOT FOUND Desired Access: Maximum Allowed 97 12:38:31,4669065 MCLauncher.exe 84 RegQueryValue HKCR\WOW6432Node\CLSID\{0E5AAE11-A475-4c5b-AB00-C66DE400274E}\(Default) SUCCESS Type: REG_SZ, Length: 50, Data: Shell File System Folder 97 12:38:31,4669129 MCLauncher.exe 84 RegQueryKey HKCR\WOW6432Node\CLSID\{0E5AAE11-A475-4c5b-AB00-C66DE400274E} SUCCESS Query: Name 97 12:38:31,4669184 MCLauncher.exe 84 RegQueryKey HKCR\WOW6432Node\CLSID\{0E5AAE11-A475-4c5b-AB00-C66DE400274E} SUCCESS Query: HandleTags, HandleTags: 0x401 97 12:38:31,4669268 MCLauncher.exe 84 RegOpenKey HKCU\Software\Classes\WOW6432Node\CLSID\{0E5AAE11-A475-4c5b-AB00-C66DE400274E}\InprocServer32 NAME NOT FOUND Desired Access: Read 97 12:38:31,4669348 MCLauncher.exe 84 RegQueryKey HKCR\WOW6432Node\CLSID\{0E5AAE11-A475-4c5b-AB00-C66DE400274E} SUCCESS Query: HandleTags, HandleTags: 0x401 97 12:38:31,4669401 MCLauncher.exe 84 RegOpenKey HKCR\WOW6432Node\CLSID\{0E5AAE11-A475-4c5b-AB00-C66DE400274E}\InprocServer32 SUCCESS Desired Access: Read 97 12:38:31,4669473 MCLauncher.exe 84 RegQueryKey HKCR\WOW6432Node\CLSID\{0E5AAE11-A475-4c5b-AB00-C66DE400274E}\InProcServer32 SUCCESS Query: Name 97 12:38:31,4669531 MCLauncher.exe 84 RegQueryKey HKCR\WOW6432Node\CLSID\{0E5AAE11-A475-4c5b-AB00-C66DE400274E}\InProcServer32 SUCCESS Query: HandleTags, HandleTags: 0x401 97 12:38:31,4669611 MCLauncher.exe 84 RegOpenKey HKCU\Software\Classes\WOW6432Node\CLSID\{0E5AAE11-A475-4c5b-AB00-C66DE400274E}\InProcServer32 NAME NOT FOUND Desired Access: Maximum Allowed 97 12:38:31,4669678 MCLauncher.exe 84 RegQueryValue HKCR\WOW6432Node\CLSID\{0E5AAE11-A475-4c5b-AB00-C66DE400274E}\InProcServer32\InprocServer32 NAME NOT FOUND Length: 144 97 12:38:31,4669794 MCLauncher.exe 84 RegQueryKey HKCR\WOW6432Node\CLSID\{0E5AAE11-A475-4c5b-AB00-C66DE400274E}\InProcServer32 SUCCESS Query: Name 97 12:38:31,4669860 MCLauncher.exe 84 RegQueryKey HKCR\WOW6432Node\CLSID\{0E5AAE11-A475-4c5b-AB00-C66DE400274E}\InProcServer32 SUCCESS Query: HandleTags, HandleTags: 0x401 97 12:38:31,4669957 MCLauncher.exe 84 RegOpenKey HKCU\Software\Classes\WOW6432Node\CLSID\{0E5AAE11-A475-4c5b-AB00-C66DE400274E}\InProcServer32 NAME NOT FOUND Desired Access: Maximum Allowed 97 12:38:31,4670035 MCLauncher.exe 84 RegQueryValue HKCR\WOW6432Node\CLSID\{0E5AAE11-A475-4c5b-AB00-C66DE400274E}\InProcServer32\(Default) SUCCESS Type: REG_EXPAND_SZ, Length: 84, Data: %SystemRoot%\system32\Windows.Storage.dll 97 12:38:31,4670096 MCLauncher.exe 84 RegQueryKey HKCR\WOW6432Node\CLSID\{0E5AAE11-A475-4c5b-AB00-C66DE400274E}\InProcServer32 SUCCESS Query: Name 97 12:38:31,4670151 MCLauncher.exe 84 RegQueryKey HKCR\WOW6432Node\CLSID\{0E5AAE11-A475-4c5b-AB00-C66DE400274E}\InProcServer32 SUCCESS Query: HandleTags, HandleTags: 0x401 97 12:38:31,4670229 MCLauncher.exe 84 RegOpenKey HKCU\Software\Classes\WOW6432Node\CLSID\{0E5AAE11-A475-4c5b-AB00-C66DE400274E}\InProcServer32 NAME NOT FOUND Desired Access: Maximum Allowed 97 12:38:31,4670290 MCLauncher.exe 84 RegQueryValue HKCR\WOW6432Node\CLSID\{0E5AAE11-A475-4c5b-AB00-C66DE400274E}\InProcServer32\(Default) SUCCESS Type: REG_EXPAND_SZ, Length: 84, Data: %SystemRoot%\system32\Windows.Storage.dll 97 12:38:31,4670359 MCLauncher.exe 84 RegQueryKey HKCR\WOW6432Node\CLSID\{0E5AAE11-A475-4c5b-AB00-C66DE400274E}\InProcServer32 SUCCESS Query: Name 97 12:38:31,4670415 MCLauncher.exe 84 RegQueryKey HKCR\WOW6432Node\CLSID\{0E5AAE11-A475-4c5b-AB00-C66DE400274E}\InProcServer32 SUCCESS Query: HandleTags, HandleTags: 0x401 97 12:38:31,4670495 MCLauncher.exe 84 RegOpenKey HKCU\Software\Classes\WOW6432Node\CLSID\{0E5AAE11-A475-4c5b-AB00-C66DE400274E}\InProcServer32 NAME NOT FOUND Desired Access: Maximum Allowed 97 12:38:31,4670556 MCLauncher.exe 84 RegQueryValue HKCR\WOW6432Node\CLSID\{0E5AAE11-A475-4c5b-AB00-C66DE400274E}\InProcServer32\(Default) SUCCESS Type: REG_EXPAND_SZ, Length: 84, Data: %SystemRoot%\system32\Windows.Storage.dll 97 12:38:31,4670617 MCLauncher.exe 84 RegQueryKey HKCR\WOW6432Node\CLSID\{0E5AAE11-A475-4c5b-AB00-C66DE400274E}\InProcServer32 SUCCESS Query: Name 97 12:38:31,4670672 MCLauncher.exe 84 RegQueryKey HKCR\WOW6432Node\CLSID\{0E5AAE11-A475-4c5b-AB00-C66DE400274E}\InProcServer32 SUCCESS Query: HandleTags, HandleTags: 0x401 97 12:38:31,4670755 MCLauncher.exe 84 RegOpenKey HKCU\Software\Classes\WOW6432Node\CLSID\{0E5AAE11-A475-4c5b-AB00-C66DE400274E}\InProcServer32 NAME NOT FOUND Desired Access: Maximum Allowed 97 12:38:31,4670816 MCLauncher.exe 84 RegQueryValue HKCR\WOW6432Node\CLSID\{0E5AAE11-A475-4c5b-AB00-C66DE400274E}\InProcServer32\ThreadingModel SUCCESS Type: REG_SZ, Length: 10, Data: Both 97 12:38:31,4670966 MCLauncher.exe 84 RegCloseKey HKCR\WOW6432Node\CLSID\{0E5AAE11-A475-4c5b-AB00-C66DE400274E}\InProcServer32 SUCCESS 97 12:38:31,4671016 MCLauncher.exe 84 RegQueryKey HKCR\WOW6432Node\CLSID\{0E5AAE11-A475-4c5b-AB00-C66DE400274E} SUCCESS Query: Name 97 12:38:31,4671082 MCLauncher.exe 84 RegQueryKey HKCR\WOW6432Node\CLSID\{0E5AAE11-A475-4c5b-AB00-C66DE400274E} SUCCESS Query: HandleTags, HandleTags: 0x401 97 12:38:31,4671185 MCLauncher.exe 84 RegOpenKey HKCU\Software\Classes\WOW6432Node\CLSID\{0E5AAE11-A475-4c5b-AB00-C66DE400274E}\InprocHandler32 NAME NOT FOUND Desired Access: Query Value 97 12:38:31,4671282 MCLauncher.exe 84 RegQueryKey HKCR\WOW6432Node\CLSID\{0E5AAE11-A475-4c5b-AB00-C66DE400274E} SUCCESS Query: HandleTags, HandleTags: 0x401 97 12:38:31,4671334 MCLauncher.exe 84 RegOpenKey HKCR\WOW6432Node\CLSID\{0E5AAE11-A475-4c5b-AB00-C66DE400274E}\InprocHandler32 NAME NOT FOUND Desired Access: Query Value 97 12:38:31,4671401 MCLauncher.exe 84 RegQueryKey HKCR\WOW6432Node\CLSID\{0E5AAE11-A475-4c5b-AB00-C66DE400274E} SUCCESS Query: Name 97 12:38:31,4671456 MCLauncher.exe 84 RegQueryKey HKCR\WOW6432Node\CLSID\{0E5AAE11-A475-4c5b-AB00-C66DE400274E} SUCCESS Query: HandleTags, HandleTags: 0x401 97 12:38:31,4671539 MCLauncher.exe 84 RegOpenKey HKCU\Software\Classes\WOW6432Node\CLSID\{0E5AAE11-A475-4c5b-AB00-C66DE400274E}\InprocHandler NAME NOT FOUND Desired Access: Query Value 97 12:38:31,4671617 MCLauncher.exe 84 RegQueryKey HKCR\WOW6432Node\CLSID\{0E5AAE11-A475-4c5b-AB00-C66DE400274E} SUCCESS Query: HandleTags, HandleTags: 0x401 97 12:38:31,4671670 MCLauncher.exe 84 RegOpenKey HKCR\WOW6432Node\CLSID\{0E5AAE11-A475-4c5b-AB00-C66DE400274E}\InprocHandler NAME NOT FOUND Desired Access: Query Value 97 12:38:31,4671744 MCLauncher.exe 84 RegCloseKey HKCR\WOW6432Node\CLSID\{0E5AAE11-A475-4c5b-AB00-C66DE400274E} SUCCESS 97 12:38:31,4671916 MCLauncher.exe 84 RegQueryKey HKCU\Software\Classes SUCCESS Query: Name 97 12:38:31,4671980 MCLauncher.exe 84 RegQueryKey HKCU\Software\Classes SUCCESS Query: HandleTags, HandleTags: 0x1 97 12:38:31,4672044 MCLauncher.exe 84 RegQueryKey HKCU\Software\Classes SUCCESS Query: HandleTags, HandleTags: 0x1 97 12:38:31,4672094 MCLauncher.exe 84 RegQueryKey HKCU\Software\Classes SUCCESS Query: Name 97 12:38:31,4672174 MCLauncher.exe 84 RegOpenKey HKCU\Software\Classes\WOW6432Node\CLSID\{0E5AAE11-A475-4C5B-AB00-C66DE400274E} NAME NOT FOUND Desired Access: Read 97 12:38:31,4672268 MCLauncher.exe 84 RegOpenKey HKCR\WOW6432Node\CLSID\{0E5AAE11-A475-4C5B-AB00-C66DE400274E} SUCCESS Desired Access: Read 97 12:38:31,4672343 MCLauncher.exe 84 RegSetInfoKey HKCR\WOW6432Node\CLSID\{0E5AAE11-A475-4c5b-AB00-C66DE400274E} SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 97 12:38:31,4672387 MCLauncher.exe 84 RegQueryKey HKCR\WOW6432Node\CLSID\{0E5AAE11-A475-4c5b-AB00-C66DE400274E} SUCCESS Query: Name 97 12:38:31,4672443 MCLauncher.exe 84 RegQueryKey HKCR\WOW6432Node\CLSID\{0E5AAE11-A475-4c5b-AB00-C66DE400274E} SUCCESS Query: HandleTags, HandleTags: 0x401 97 12:38:31,4672529 MCLauncher.exe 84 RegOpenKey HKCU\Software\Classes\WOW6432Node\CLSID\{0E5AAE11-A475-4c5b-AB00-C66DE400274E}\TreatAs NAME NOT FOUND Desired Access: Read 97 12:38:31,4672609 MCLauncher.exe 84 RegQueryKey HKCR\WOW6432Node\CLSID\{0E5AAE11-A475-4c5b-AB00-C66DE400274E} SUCCESS Query: HandleTags, HandleTags: 0x401 97 12:38:31,4672661 MCLauncher.exe 84 RegOpenKey HKCR\WOW6432Node\CLSID\{0E5AAE11-A475-4c5b-AB00-C66DE400274E}\TreatAs NAME NOT FOUND Desired Access: Read 97 12:38:31,4672728 MCLauncher.exe 84 RegCloseKey HKCR\WOW6432Node\CLSID\{0E5AAE11-A475-4c5b-AB00-C66DE400274E} SUCCESS 97 12:38:31,4672919 MCLauncher.exe 84 RegQueryKey HKCR\WOW6432Node\CLSID\{DFFACDC5-679F-4156-8947-C5C76BC0B67F}\Instance SUCCESS Query: Name 97 12:38:31,4672986 MCLauncher.exe 84 RegQueryKey HKCR\WOW6432Node\CLSID\{DFFACDC5-679F-4156-8947-C5C76BC0B67F}\Instance SUCCESS Query: HandleTags, HandleTags: 0x401 97 12:38:31,4673080 MCLauncher.exe 84 RegOpenKey HKCU\Software\Classes\WOW6432Node\CLSID\{DFFACDC5-679F-4156-8947-C5C76BC0B67F}\Instance\InitPropertyBag NAME NOT FOUND Desired Access: Read 97 12:38:31,4673174 MCLauncher.exe 84 RegQueryKey HKCR\WOW6432Node\CLSID\{DFFACDC5-679F-4156-8947-C5C76BC0B67F}\Instance SUCCESS Query: HandleTags, HandleTags: 0x401 97 12:38:31,4673224 MCLauncher.exe 84 RegOpenKey HKCR\WOW6432Node\CLSID\{DFFACDC5-679F-4156-8947-C5C76BC0B67F}\Instance\InitPropertyBag SUCCESS Desired Access: Read 97 12:38:31,4673454 MCLauncher.exe 84 RegQueryKey HKCR\WOW6432Node\CLSID\{DFFACDC5-679F-4156-8947-C5C76BC0B67F}\Instance\InitPropertyBag SUCCESS Query: Name 97 12:38:31,4673523 MCLauncher.exe 84 RegQueryKey HKCR\WOW6432Node\CLSID\{DFFACDC5-679F-4156-8947-C5C76BC0B67F}\Instance\InitPropertyBag SUCCESS Query: HandleTags, HandleTags: 0x401 97 12:38:31,4673620 MCLauncher.exe 84 RegOpenKey HKCU\Software\Classes\WOW6432Node\CLSID\{DFFACDC5-679F-4156-8947-C5C76BC0B67F}\Instance\InitPropertyBag NAME NOT FOUND Desired Access: Maximum Allowed 97 12:38:31,4673706 MCLauncher.exe 84 RegQueryValue HKCR\WOW6432Node\CLSID\{DFFACDC5-679F-4156-8947-C5C76BC0B67F}\Instance\InitPropertyBag\Attributes SUCCESS Type: REG_DWORD, Length: 4, Data: 17 97 12:38:31,4673847 MCLauncher.exe 84 RegQueryKey HKCR\WOW6432Node\CLSID\{DFFACDC5-679F-4156-8947-C5C76BC0B67F}\Instance\InitPropertyBag SUCCESS Query: Name 97 12:38:31,4673917 MCLauncher.exe 84 RegQueryKey HKCR\WOW6432Node\CLSID\{DFFACDC5-679F-4156-8947-C5C76BC0B67F}\Instance\InitPropertyBag SUCCESS Query: HandleTags, HandleTags: 0x401 97 12:38:31,4674016 MCLauncher.exe 84 RegOpenKey HKCU\Software\Classes\WOW6432Node\CLSID\{DFFACDC5-679F-4156-8947-C5C76BC0B67F}\Instance\InitPropertyBag NAME NOT FOUND Desired Access: Maximum Allowed 97 12:38:31,4674097 MCLauncher.exe 84 RegQueryValue HKCR\WOW6432Node\CLSID\{DFFACDC5-679F-4156-8947-C5C76BC0B67F}\Instance\InitPropertyBag\Attributes SUCCESS Type: REG_DWORD, Length: 4, Data: 17 97 12:38:31,4674232 MCLauncher.exe 84 RegQueryKey HKCR\WOW6432Node\CLSID\{DFFACDC5-679F-4156-8947-C5C76BC0B67F}\Instance\InitPropertyBag SUCCESS Query: Name 97 12:38:31,4674299 MCLauncher.exe 84 RegQueryKey HKCR\WOW6432Node\CLSID\{DFFACDC5-679F-4156-8947-C5C76BC0B67F}\Instance\InitPropertyBag SUCCESS Query: HandleTags, HandleTags: 0x401 97 12:38:31,4674396 MCLauncher.exe 84 RegOpenKey HKCU\Software\Classes\WOW6432Node\CLSID\{DFFACDC5-679F-4156-8947-C5C76BC0B67F}\Instance\InitPropertyBag NAME NOT FOUND Desired Access: Maximum Allowed 97 12:38:31,4674476 MCLauncher.exe 84 RegQueryValue HKCR\WOW6432Node\CLSID\{DFFACDC5-679F-4156-8947-C5C76BC0B67F}\Instance\InitPropertyBag\DescriptionID NAME NOT FOUND Length: 144 97 12:38:31,4674598 MCLauncher.exe 84 RegQueryKey HKCR\WOW6432Node\CLSID\{DFFACDC5-679F-4156-8947-C5C76BC0B67F}\Instance\InitPropertyBag SUCCESS Query: Name 97 12:38:31,4674665 MCLauncher.exe 84 RegQueryKey HKCR\WOW6432Node\CLSID\{DFFACDC5-679F-4156-8947-C5C76BC0B67F}\Instance\InitPropertyBag SUCCESS Query: HandleTags, HandleTags: 0x401 97 12:38:31,4674762 MCLauncher.exe 84 RegOpenKey HKCU\Software\Classes\WOW6432Node\CLSID\{DFFACDC5-679F-4156-8947-C5C76BC0B67F}\Instance\InitPropertyBag NAME NOT FOUND Desired Access: Maximum Allowed 97 12:38:31,4674839 MCLauncher.exe 84 RegQueryValue HKCR\WOW6432Node\CLSID\{DFFACDC5-679F-4156-8947-C5C76BC0B67F}\Instance\InitPropertyBag\HelpTopic NAME NOT FOUND Length: 144 97 12:38:31,4674958 MCLauncher.exe 84 RegQueryKey HKCR\WOW6432Node\CLSID\{DFFACDC5-679F-4156-8947-C5C76BC0B67F}\Instance\InitPropertyBag SUCCESS Query: Name 97 12:38:31,4675025 MCLauncher.exe 84 RegQueryKey HKCR\WOW6432Node\CLSID\{DFFACDC5-679F-4156-8947-C5C76BC0B67F}\Instance\InitPropertyBag SUCCESS Query: HandleTags, HandleTags: 0x401 97 12:38:31,4675119 MCLauncher.exe 84 RegOpenKey HKCU\Software\Classes\WOW6432Node\CLSID\{DFFACDC5-679F-4156-8947-C5C76BC0B67F}\Instance\InitPropertyBag NAME NOT FOUND Desired Access: Maximum Allowed 97 12:38:31,4675197 MCLauncher.exe 84 RegQueryValue HKCR\WOW6432Node\CLSID\{DFFACDC5-679F-4156-8947-C5C76BC0B67F}\Instance\InitPropertyBag\AllowChildAliasRegistration NAME NOT FOUND Length: 144 97 12:38:31,4675310 MCLauncher.exe 84 RegQueryKey HKCR\WOW6432Node\CLSID\{DFFACDC5-679F-4156-8947-C5C76BC0B67F}\Instance\InitPropertyBag SUCCESS Query: Name 97 12:38:31,4675379 MCLauncher.exe 84 RegQueryKey HKCR\WOW6432Node\CLSID\{DFFACDC5-679F-4156-8947-C5C76BC0B67F}\Instance\InitPropertyBag SUCCESS Query: HandleTags, HandleTags: 0x401 97 12:38:31,4675476 MCLauncher.exe 84 RegOpenKey HKCU\Software\Classes\WOW6432Node\CLSID\{DFFACDC5-679F-4156-8947-C5C76BC0B67F}\Instance\InitPropertyBag NAME NOT FOUND Desired Access: Maximum Allowed 97 12:38:31,4675554 MCLauncher.exe 84 RegQueryValue HKCR\WOW6432Node\CLSID\{DFFACDC5-679F-4156-8947-C5C76BC0B67F}\Instance\InitPropertyBag\RecursiveSearch NAME NOT FOUND Length: 144 97 12:38:31,4675720 MCLauncher.exe 84 RegQueryKey HKCR\WOW6432Node\CLSID\{DFFACDC5-679F-4156-8947-C5C76BC0B67F}\Instance\InitPropertyBag SUCCESS Query: Name 97 12:38:31,4675789 MCLauncher.exe 84 RegQueryKey HKCR\WOW6432Node\CLSID\{DFFACDC5-679F-4156-8947-C5C76BC0B67F}\Instance\InitPropertyBag SUCCESS Query: HandleTags, HandleTags: 0x401 97 12:38:31,4675886 MCLauncher.exe 84 RegOpenKey HKCU\Software\Classes\WOW6432Node\CLSID\{DFFACDC5-679F-4156-8947-C5C76BC0B67F}\Instance\InitPropertyBag NAME NOT FOUND Desired Access: Maximum Allowed 97 12:38:31,4675967 MCLauncher.exe 84 RegQueryValue HKCR\WOW6432Node\CLSID\{DFFACDC5-679F-4156-8947-C5C76BC0B67F}\Instance\InitPropertyBag\TargetKnownFolder SUCCESS Type: REG_SZ, Length: 78, Data: {5E6C858F-0E22-4760-9AFE-EA3317B67173} 97 12:38:31,4676147 MCLauncher.exe 84 RegQueryKey HKCR\WOW6432Node\CLSID\{DFFACDC5-679F-4156-8947-C5C76BC0B67F}\Instance\InitPropertyBag SUCCESS Query: Name 97 12:38:31,4676213 MCLauncher.exe 84 RegQueryKey HKCR\WOW6432Node\CLSID\{DFFACDC5-679F-4156-8947-C5C76BC0B67F}\Instance\InitPropertyBag SUCCESS Query: HandleTags, HandleTags: 0x401 97 12:38:31,4676310 MCLauncher.exe 84 RegOpenKey HKCU\Software\Classes\WOW6432Node\CLSID\{DFFACDC5-679F-4156-8947-C5C76BC0B67F}\Instance\InitPropertyBag NAME NOT FOUND Desired Access: Maximum Allowed 97 12:38:31,4676391 MCLauncher.exe 84 RegQueryValue HKCR\WOW6432Node\CLSID\{DFFACDC5-679F-4156-8947-C5C76BC0B67F}\Instance\InitPropertyBag\TargetKnownFolder SUCCESS Type: REG_SZ, Length: 78, Data: {5E6C858F-0E22-4760-9AFE-EA3317B67173} 97 12:38:31,4676665 MCLauncher.exe 84 RegQueryKey HKCR\WOW6432Node\CLSID\{DFFACDC5-679F-4156-8947-C5C76BC0B67F}\Instance SUCCESS Query: Name 97 12:38:31,4676740 MCLauncher.exe 84 RegQueryKey HKCR\WOW6432Node\CLSID\{DFFACDC5-679F-4156-8947-C5C76BC0B67F}\Instance SUCCESS Query: HandleTags, HandleTags: 0x401 97 12:38:31,4676842 MCLauncher.exe 84 RegOpenKey HKCU\Software\Classes\WOW6432Node\CLSID\{DFFACDC5-679F-4156-8947-C5C76BC0B67F}\Instance NAME NOT FOUND Desired Access: Notify 97 12:38:31,4676939 MCLauncher.exe 84 RegQueryKey HKCR\WOW6432Node\CLSID\{DFFACDC5-679F-4156-8947-C5C76BC0B67F}\Instance SUCCESS Query: HandleTags, HandleTags: 0x401 97 12:38:31,4676992 MCLauncher.exe 84 RegOpenKey HKCR\WOW6432Node\CLSID\{DFFACDC5-679F-4156-8947-C5C76BC0B67F}\Instance SUCCESS Desired Access: Notify 97 12:38:31,4677086 MCLauncher.exe 84 RegCloseKey HKCR\WOW6432Node\CLSID\{DFFACDC5-679F-4156-8947-C5C76BC0B67F}\Instance SUCCESS 97 12:38:31,4677136 MCLauncher.exe 84 RegCloseKey HKCR\WOW6432Node\CLSID\{DFFACDC5-679F-4156-8947-C5C76BC0B67F}\Instance\InitPropertyBag SUCCESS 97 12:38:31,4679898 MCLauncher.exe 84 CreateFile C:\Users\User SUCCESS Desired Access: Read Attributes, Disposition: Open, Options: Open Reparse Point, Attributes: n/a, ShareMode: Read, Write, Delete, AllocationSize: n/a, OpenResult: Opened 97 12:38:31,4680064 MCLauncher.exe 84 QueryNetworkOpenInformationFile C:\Users\User SUCCESS CreationTime: 19.07.2018 20:06:01, LastAccessTime: 20.07.2018 19:30:20, LastWriteTime: 20.07.2018 19:30:20, ChangeTime: 20.07.2018 19:30:20, AllocationSize: 01.01.1601 3:00:00, EndOfFile: 01.01.1601 3:00:00, FileAttributes: D 97 12:38:31,4680153 MCLauncher.exe 84 CloseFile C:\Users\User SUCCESS 97 12:38:31,4680907 MCLauncher.exe 84 RegQueryKey HKCU\Software\Classes SUCCESS Query: Name 97 12:38:31,4681037 MCLauncher.exe 84 RegQueryKey HKCU\Software\Classes SUCCESS Query: HandleTags, HandleTags: 0x1 97 12:38:31,4681117 MCLauncher.exe 84 RegQueryKey HKCU\Software\Classes SUCCESS Query: HandleTags, HandleTags: 0x1 97 12:38:31,4681170 MCLauncher.exe 84 RegQueryKey HKCU\Software\Classes SUCCESS Query: Name 97 12:38:31,4681281 MCLauncher.exe 84 RegOpenKey HKCU\Software\Classes\WOW6432Node\CLSID\{76765B11-3F95-4AF2-AC9D-EA55D8994F1A} NAME NOT FOUND Desired Access: Read 97 12:38:31,4681416 MCLauncher.exe 84 RegOpenKey HKCR\WOW6432Node\CLSID\{76765B11-3F95-4AF2-AC9D-EA55D8994F1A} SUCCESS Desired Access: Read 97 12:38:31,4681522 MCLauncher.exe 84 RegSetInfoKey HKCR\WOW6432Node\CLSID\{76765b11-3f95-4af2-ac9d-ea55d8994f1a} SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 97 12:38:31,4681572 MCLauncher.exe 84 RegQueryKey HKCR\WOW6432Node\CLSID\{76765b11-3f95-4af2-ac9d-ea55d8994f1a} SUCCESS Query: Name 97 12:38:31,4681638 MCLauncher.exe 84 RegQueryKey HKCR\WOW6432Node\CLSID\{76765b11-3f95-4af2-ac9d-ea55d8994f1a} SUCCESS Query: HandleTags, HandleTags: 0x401 97 12:38:31,4681743 MCLauncher.exe 84 RegOpenKey HKCU\Software\Classes\WOW6432Node\CLSID\{76765b11-3f95-4af2-ac9d-ea55d8994f1a}\TreatAs NAME NOT FOUND Desired Access: Query Value 97 12:38:31,4681832 MCLauncher.exe 84 RegQueryKey HKCR\WOW6432Node\CLSID\{76765b11-3f95-4af2-ac9d-ea55d8994f1a} SUCCESS Query: HandleTags, HandleTags: 0x401 97 12:38:31,4681887 MCLauncher.exe 84 RegOpenKey HKCR\WOW6432Node\CLSID\{76765b11-3f95-4af2-ac9d-ea55d8994f1a}\TreatAs NAME NOT FOUND Desired Access: Query Value 97 12:38:31,4681968 MCLauncher.exe 84 RegQueryKey HKCR\WOW6432Node\CLSID\{76765b11-3f95-4af2-ac9d-ea55d8994f1a} SUCCESS Query: Name 97 12:38:31,4682032 MCLauncher.exe 84 RegQueryKey HKCR\WOW6432Node\CLSID\{76765b11-3f95-4af2-ac9d-ea55d8994f1a} SUCCESS Query: Name 97 12:38:31,4682087 MCLauncher.exe 84 RegQueryKey HKCR\WOW6432Node\CLSID\{76765b11-3f95-4af2-ac9d-ea55d8994f1a} SUCCESS Query: HandleTags, HandleTags: 0x401 97 12:38:31,4682173 MCLauncher.exe 84 RegOpenKey HKCU\Software\Classes\WOW6432Node\CLSID\{76765b11-3f95-4af2-ac9d-ea55d8994f1a} NAME NOT FOUND Desired Access: Maximum Allowed 97 12:38:31,4682245 MCLauncher.exe 84 RegQueryValue HKCR\WOW6432Node\CLSID\{76765b11-3f95-4af2-ac9d-ea55d8994f1a}\(Default) SUCCESS Type: REG_SZ, Length: 70, Data: Property System Both Class Factory 97 12:38:31,4682311 MCLauncher.exe 84 RegQueryKey HKCR\WOW6432Node\CLSID\{76765b11-3f95-4af2-ac9d-ea55d8994f1a} SUCCESS Query: Name 97 12:38:31,4682367 MCLauncher.exe 84 RegQueryKey HKCR\WOW6432Node\CLSID\{76765b11-3f95-4af2-ac9d-ea55d8994f1a} SUCCESS Query: HandleTags, HandleTags: 0x401 97 12:38:31,4682450 MCLauncher.exe 84 RegOpenKey HKCU\Software\Classes\WOW6432Node\CLSID\{76765b11-3f95-4af2-ac9d-ea55d8994f1a} NAME NOT FOUND Desired Access: Maximum Allowed 97 12:38:31,4682511 MCLauncher.exe 84 RegQueryValue HKCR\WOW6432Node\CLSID\{76765b11-3f95-4af2-ac9d-ea55d8994f1a}\(Default) SUCCESS Type: REG_SZ, Length: 70, Data: Property System Both Class Factory 97 12:38:31,4682569 MCLauncher.exe 84 RegQueryKey HKCR\WOW6432Node\CLSID\{76765b11-3f95-4af2-ac9d-ea55d8994f1a} SUCCESS Query: Name 97 12:38:31,4682624 MCLauncher.exe 84 RegQueryKey HKCR\WOW6432Node\CLSID\{76765b11-3f95-4af2-ac9d-ea55d8994f1a} SUCCESS Query: HandleTags, HandleTags: 0x401 97 12:38:31,4682708 MCLauncher.exe 84 RegOpenKey HKCU\Software\Classes\WOW6432Node\CLSID\{76765b11-3f95-4af2-ac9d-ea55d8994f1a}\InprocServer32 NAME NOT FOUND Desired Access: Read 97 12:38:31,4682791 MCLauncher.exe 84 RegQueryKey HKCR\WOW6432Node\CLSID\{76765b11-3f95-4af2-ac9d-ea55d8994f1a} SUCCESS Query: HandleTags, HandleTags: 0x401 97 12:38:31,4682841 MCLauncher.exe 84 RegOpenKey HKCR\WOW6432Node\CLSID\{76765b11-3f95-4af2-ac9d-ea55d8994f1a}\InprocServer32 SUCCESS Desired Access: Read 97 12:38:31,4682918 MCLauncher.exe 84 RegQueryKey HKCR\WOW6432Node\CLSID\{76765b11-3f95-4af2-ac9d-ea55d8994f1a}\InProcServer32 SUCCESS Query: Name 97 12:38:31,4682976 MCLauncher.exe 84 RegQueryKey HKCR\WOW6432Node\CLSID\{76765b11-3f95-4af2-ac9d-ea55d8994f1a}\InProcServer32 SUCCESS Query: HandleTags, HandleTags: 0x401 97 12:38:31,4683057 MCLauncher.exe 84 RegOpenKey HKCU\Software\Classes\WOW6432Node\CLSID\{76765b11-3f95-4af2-ac9d-ea55d8994f1a}\InProcServer32 NAME NOT FOUND Desired Access: Maximum Allowed 97 12:38:31,4683120 MCLauncher.exe 84 RegQueryValue HKCR\WOW6432Node\CLSID\{76765b11-3f95-4af2-ac9d-ea55d8994f1a}\InProcServer32\InprocServer32 NAME NOT FOUND Length: 144 97 12:38:31,4683251 MCLauncher.exe 84 RegQueryKey HKCR\WOW6432Node\CLSID\{76765b11-3f95-4af2-ac9d-ea55d8994f1a}\InProcServer32 SUCCESS Query: Name 97 12:38:31,4683320 MCLauncher.exe 84 RegQueryKey HKCR\WOW6432Node\CLSID\{76765b11-3f95-4af2-ac9d-ea55d8994f1a}\InProcServer32 SUCCESS Query: HandleTags, HandleTags: 0x401 97 12:38:31,4683420 MCLauncher.exe 84 RegOpenKey HKCU\Software\Classes\WOW6432Node\CLSID\{76765b11-3f95-4af2-ac9d-ea55d8994f1a}\InProcServer32 NAME NOT FOUND Desired Access: Maximum Allowed 97 12:38:31,4683497 MCLauncher.exe 84 RegQueryValue HKCR\WOW6432Node\CLSID\{76765b11-3f95-4af2-ac9d-ea55d8994f1a}\InProcServer32\(Default) SUCCESS Type: REG_EXPAND_SZ, Length: 68, Data: %SystemRoot%\system32\propsys.dll 97 12:38:31,4683555 MCLauncher.exe 84 RegQueryKey HKCR\WOW6432Node\CLSID\{76765b11-3f95-4af2-ac9d-ea55d8994f1a}\InProcServer32 SUCCESS Query: Name 97 12:38:31,4683611 MCLauncher.exe 84 RegQueryKey HKCR\WOW6432Node\CLSID\{76765b11-3f95-4af2-ac9d-ea55d8994f1a}\InProcServer32 SUCCESS Query: HandleTags, HandleTags: 0x401 97 12:38:31,4683691 MCLauncher.exe 84 RegOpenKey HKCU\Software\Classes\WOW6432Node\CLSID\{76765b11-3f95-4af2-ac9d-ea55d8994f1a}\InProcServer32 NAME NOT FOUND Desired Access: Maximum Allowed 97 12:38:31,4683752 MCLauncher.exe 84 RegQueryValue HKCR\WOW6432Node\CLSID\{76765b11-3f95-4af2-ac9d-ea55d8994f1a}\InProcServer32\(Default) SUCCESS Type: REG_EXPAND_SZ, Length: 68, Data: %SystemRoot%\system32\propsys.dll 97 12:38:31,4683819 MCLauncher.exe 84 RegQueryKey HKCR\WOW6432Node\CLSID\{76765b11-3f95-4af2-ac9d-ea55d8994f1a}\InProcServer32 SUCCESS Query: Name 97 12:38:31,4683874 MCLauncher.exe 84 RegQueryKey HKCR\WOW6432Node\CLSID\{76765b11-3f95-4af2-ac9d-ea55d8994f1a}\InProcServer32 SUCCESS Query: HandleTags, HandleTags: 0x401 97 12:38:31,4683954 MCLauncher.exe 84 RegOpenKey HKCU\Software\Classes\WOW6432Node\CLSID\{76765b11-3f95-4af2-ac9d-ea55d8994f1a}\InProcServer32 NAME NOT FOUND Desired Access: Maximum Allowed 97 12:38:31,4684012 MCLauncher.exe 84 RegQueryValue HKCR\WOW6432Node\CLSID\{76765b11-3f95-4af2-ac9d-ea55d8994f1a}\InProcServer32\(Default) SUCCESS Type: REG_EXPAND_SZ, Length: 68, Data: %SystemRoot%\system32\propsys.dll 97 12:38:31,4684076 MCLauncher.exe 84 RegQueryKey HKCR\WOW6432Node\CLSID\{76765b11-3f95-4af2-ac9d-ea55d8994f1a}\InProcServer32 SUCCESS Query: Name 97 12:38:31,4684132 MCLauncher.exe 84 RegQueryKey HKCR\WOW6432Node\CLSID\{76765b11-3f95-4af2-ac9d-ea55d8994f1a}\InProcServer32 SUCCESS Query: HandleTags, HandleTags: 0x401 97 12:38:31,4684212 MCLauncher.exe 84 RegOpenKey HKCU\Software\Classes\WOW6432Node\CLSID\{76765b11-3f95-4af2-ac9d-ea55d8994f1a}\InProcServer32 NAME NOT FOUND Desired Access: Maximum Allowed 97 12:38:31,4684273 MCLauncher.exe 84 RegQueryValue HKCR\WOW6432Node\CLSID\{76765b11-3f95-4af2-ac9d-ea55d8994f1a}\InProcServer32\ThreadingModel SUCCESS Type: REG_SZ, Length: 10, Data: Both 97 12:38:31,4684431 MCLauncher.exe 84 RegCloseKey HKCR\WOW6432Node\CLSID\{76765b11-3f95-4af2-ac9d-ea55d8994f1a}\InProcServer32 SUCCESS 97 12:38:31,4684481 MCLauncher.exe 84 RegQueryKey HKCR\WOW6432Node\CLSID\{76765b11-3f95-4af2-ac9d-ea55d8994f1a} SUCCESS Query: Name 97 12:38:31,4684550 MCLauncher.exe 84 RegQueryKey HKCR\WOW6432Node\CLSID\{76765b11-3f95-4af2-ac9d-ea55d8994f1a} SUCCESS Query: HandleTags, HandleTags: 0x401 97 12:38:31,4684652 MCLauncher.exe 84 RegOpenKey HKCU\Software\Classes\WOW6432Node\CLSID\{76765b11-3f95-4af2-ac9d-ea55d8994f1a}\InprocHandler32 NAME NOT FOUND Desired Access: Query Value 97 12:38:31,4684749 MCLauncher.exe 84 RegQueryKey HKCR\WOW6432Node\CLSID\{76765b11-3f95-4af2-ac9d-ea55d8994f1a} SUCCESS Query: HandleTags, HandleTags: 0x401 97 12:38:31,4684802 MCLauncher.exe 84 RegOpenKey HKCR\WOW6432Node\CLSID\{76765b11-3f95-4af2-ac9d-ea55d8994f1a}\InprocHandler32 NAME NOT FOUND Desired Access: Query Value 97 12:38:31,4684871 MCLauncher.exe 84 RegQueryKey HKCR\WOW6432Node\CLSID\{76765b11-3f95-4af2-ac9d-ea55d8994f1a} SUCCESS Query: Name 97 12:38:31,4684927 MCLauncher.exe 84 RegQueryKey HKCR\WOW6432Node\CLSID\{76765b11-3f95-4af2-ac9d-ea55d8994f1a} SUCCESS Query: HandleTags, HandleTags: 0x401 97 12:38:31,4685010 MCLauncher.exe 84 RegOpenKey HKCU\Software\Classes\WOW6432Node\CLSID\{76765b11-3f95-4af2-ac9d-ea55d8994f1a}\InprocHandler NAME NOT FOUND Desired Access: Query Value 97 12:38:31,4685087 MCLauncher.exe 84 RegQueryKey HKCR\WOW6432Node\CLSID\{76765b11-3f95-4af2-ac9d-ea55d8994f1a} SUCCESS Query: HandleTags, HandleTags: 0x401 97 12:38:31,4685137 MCLauncher.exe 84 RegOpenKey HKCR\WOW6432Node\CLSID\{76765b11-3f95-4af2-ac9d-ea55d8994f1a}\InprocHandler NAME NOT FOUND Desired Access: Query Value 97 12:38:31,4685215 MCLauncher.exe 84 RegCloseKey HKCR\WOW6432Node\CLSID\{76765b11-3f95-4af2-ac9d-ea55d8994f1a} SUCCESS 97 12:38:31,4685340 MCLauncher.exe 84 RegQueryKey HKCU\Software\Classes SUCCESS Query: Name 97 12:38:31,4685403 MCLauncher.exe 84 RegQueryKey HKCU\Software\Classes SUCCESS Query: HandleTags, HandleTags: 0x1 97 12:38:31,4685470 MCLauncher.exe 84 RegQueryKey HKCU\Software\Classes SUCCESS Query: HandleTags, HandleTags: 0x1 97 12:38:31,4685517 MCLauncher.exe 84 RegQueryKey HKCU\Software\Classes SUCCESS Query: Name 97 12:38:31,4685603 MCLauncher.exe 84 RegOpenKey HKCU\Software\Classes\WOW6432Node\CLSID\{76765B11-3F95-4AF2-AC9D-EA55D8994F1A} NAME NOT FOUND Desired Access: Read 97 12:38:31,4685694 MCLauncher.exe 84 RegOpenKey HKCR\WOW6432Node\CLSID\{76765B11-3F95-4AF2-AC9D-EA55D8994F1A} SUCCESS Desired Access: Read 97 12:38:31,4685775 MCLauncher.exe 84 RegSetInfoKey HKCR\WOW6432Node\CLSID\{76765b11-3f95-4af2-ac9d-ea55d8994f1a} SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 97 12:38:31,4685819 MCLauncher.exe 84 RegQueryKey HKCR\WOW6432Node\CLSID\{76765b11-3f95-4af2-ac9d-ea55d8994f1a} SUCCESS Query: Name 97 12:38:31,4685874 MCLauncher.exe 84 RegQueryKey HKCR\WOW6432Node\CLSID\{76765b11-3f95-4af2-ac9d-ea55d8994f1a} SUCCESS Query: HandleTags, HandleTags: 0x401 97 12:38:31,4685963 MCLauncher.exe 84 RegOpenKey HKCU\Software\Classes\WOW6432Node\CLSID\{76765b11-3f95-4af2-ac9d-ea55d8994f1a}\TreatAs NAME NOT FOUND Desired Access: Read 97 12:38:31,4686043 MCLauncher.exe 84 RegQueryKey HKCR\WOW6432Node\CLSID\{76765b11-3f95-4af2-ac9d-ea55d8994f1a} SUCCESS Query: HandleTags, HandleTags: 0x401 97 12:38:31,4686096 MCLauncher.exe 84 RegOpenKey HKCR\WOW6432Node\CLSID\{76765b11-3f95-4af2-ac9d-ea55d8994f1a}\TreatAs NAME NOT FOUND Desired Access: Read 97 12:38:31,4686168 MCLauncher.exe 84 RegCloseKey HKCR\WOW6432Node\CLSID\{76765b11-3f95-4af2-ac9d-ea55d8994f1a} SUCCESS 97 12:38:31,4686772 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:31,4686822 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: Name 97 12:38:31,4686905 MCLauncher.exe 84 RegOpenKey HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS Desired Access: Read 97 12:38:31,4686991 MCLauncher.exe 84 RegSetInfoKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 97 12:38:31,4687043 MCLauncher.exe 84 RegEnumKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS Index: 0, Name: {008CA0B1-55B4-4C56-B8A8-4DE4B299D3BE} 97 12:38:31,4687118 MCLauncher.exe 84 RegEnumKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS Index: 1, Name: {00BCFC5A-ED94-4e48-96A1-3F6217F21990} 97 12:38:31,4687174 MCLauncher.exe 84 RegEnumKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS Index: 2, Name: {0139D44E-6AFE-49F2-8690-3DAFCAE6FFB8} 97 12:38:31,4687226 MCLauncher.exe 84 RegEnumKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS Index: 3, Name: {0482af6c-08f1-4c34-8c90-e17ec98b1e17} 97 12:38:31,4687279 MCLauncher.exe 84 RegEnumKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS Index: 4, Name: {054FAE61-4DD8-4787-80B6-090220C4B700} 97 12:38:31,4687332 MCLauncher.exe 84 RegEnumKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS Index: 5, Name: {0762D272-C50A-4BB0-A382-697DCD729B80} 97 12:38:31,4687384 MCLauncher.exe 84 RegEnumKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS Index: 6, Name: {0AC0837C-BBF8-452A-850D-79D08E667CA7} 97 12:38:31,4687434 MCLauncher.exe 84 RegEnumKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS Index: 7, Name: {0D4C3DB6-03A3-462F-A0E6-08924C41B5D4} 97 12:38:31,4687598 MCLauncher.exe 84 RegEnumKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS Index: 8, Name: {0ddd015d-b06c-45d5-8c4c-f59713854639} 97 12:38:31,4687683 MCLauncher.exe 84 RegEnumKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS Index: 9, Name: {0F214138-B1D3-4a90-BBA9-27CBC0C5389A} 97 12:38:31,4687736 MCLauncher.exe 84 RegEnumKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS Index: 10, Name: {10C07CD0-EF91-4567-B850-448B77CB37F9} 97 12:38:31,4687786 MCLauncher.exe 84 RegEnumKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS Index: 11, Name: {1777F761-68AD-4D8A-87BD-30B759FA33DD} 97 12:38:31,4687836 MCLauncher.exe 84 RegEnumKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS Index: 12, Name: {18989B1D-99B5-455B-841C-AB7C74E4DDFC} 97 12:38:31,4687888 MCLauncher.exe 84 RegEnumKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS Index: 13, Name: {190337d1-b8ca-4121-a639-6d472d16972a} 97 12:38:31,4687941 MCLauncher.exe 84 RegEnumKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS Index: 14, Name: {1A6FDBA2-F42D-4358-A798-B74D745926C5} 97 12:38:31,4687991 MCLauncher.exe 84 RegEnumKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS Index: 15, Name: {1AC14E77-02E7-4E5D-B744-2EB1AE5198B7} 97 12:38:31,4688041 MCLauncher.exe 84 RegEnumKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS Index: 16, Name: {1B3EA5DC-B587-4786-B4EF-BD1DC332AEAE} 97 12:38:31,4688094 MCLauncher.exe 84 RegEnumKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS Index: 17, Name: {1C2AC1DC-4358-4B6C-9733-AF21156576F0} 97 12:38:31,4688143 MCLauncher.exe 84 RegEnumKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS Index: 18, Name: {1e87508d-89c2-42f0-8a7e-645a0f50ca58} 97 12:38:31,4688196 MCLauncher.exe 84 RegEnumKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS Index: 19, Name: {2112AB0A-C86A-4ffe-A368-0DE96E47012E} 97 12:38:31,4688246 MCLauncher.exe 84 RegEnumKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS Index: 20, Name: {2400183A-6185-49FB-A2D8-4A392A602BA3} 97 12:38:31,4688299 MCLauncher.exe 84 RegEnumKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS Index: 21, Name: {24D89E24-2F19-4534-9DDE-6A6671FBB8FE} 97 12:38:31,4688351 MCLauncher.exe 84 RegEnumKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS Index: 22, Name: {289A9A43-BE44-4057-A41B-587A76D7E7F9} 97 12:38:31,4688401 MCLauncher.exe 84 RegEnumKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS Index: 23, Name: {2A00375E-224C-49DE-B8D1-440DF7EF3DDC} 97 12:38:31,4688451 MCLauncher.exe 84 RegEnumKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS Index: 24, Name: {2B0F765D-C0E9-4171-908E-08A611B84FF6} 97 12:38:31,4688504 MCLauncher.exe 84 RegEnumKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS Index: 25, Name: {2B20DF75-1EDA-4039-8097-38798227D5B7} 97 12:38:31,4688556 MCLauncher.exe 84 RegEnumKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS Index: 26, Name: {2C36C0AA-5812-4b87-BFD0-4CD0DFB19B39} 97 12:38:31,4688606 MCLauncher.exe 84 RegEnumKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS Index: 27, Name: {2F8B40C2-83ED-48EE-B383-A1F157EC6F9A} 97 12:38:31,4688659 MCLauncher.exe 84 RegEnumKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS Index: 28, Name: {31C0DD25-9439-4F12-BF41-7FF4EDA38722} 97 12:38:31,4688709 MCLauncher.exe 84 RegEnumKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS Index: 29, Name: {3214FAB5-9757-4298-BB61-92A9DEAA44FF} 97 12:38:31,4688758 MCLauncher.exe 84 RegEnumKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS Index: 30, Name: {339719B5-8C47-4894-94C2-D8F77ADD44A6} 97 12:38:31,4688811 MCLauncher.exe 84 RegEnumKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS Index: 31, Name: {33E28130-4E1E-4676-835A-98395C3BC3BB} 97 12:38:31,4688864 MCLauncher.exe 84 RegEnumKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS Index: 32, Name: {352481E8-33BE-4251-BA85-6007CAEDCF9D} 97 12:38:31,4688914 MCLauncher.exe 84 RegEnumKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS Index: 33, Name: {35286a68-3c57-41a1-bbb1-0eae73d76c95} 97 12:38:31,4688963 MCLauncher.exe 84 RegEnumKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS Index: 34, Name: {374DE290-123F-4565-9164-39C4925E467B} 97 12:38:31,4689013 MCLauncher.exe 84 RegEnumKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS Index: 35, Name: {3B193882-D3AD-4eab-965A-69829D1FB59F} 97 12:38:31,4689066 MCLauncher.exe 84 RegEnumKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS Index: 36, Name: {3D644C9B-1FB8-4f30-9B45-F670235F79C0} 97 12:38:31,4689116 MCLauncher.exe 84 RegEnumKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS Index: 37, Name: {3EB685DB-65F9-4CF6-A03A-E3EF65729F3D} 97 12:38:31,4689168 MCLauncher.exe 84 RegEnumKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS Index: 38, Name: {43668BF8-C14E-49B2-97C9-747784D784B7} 97 12:38:31,4689235 MCLauncher.exe 84 RegEnumKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS Index: 39, Name: {48daf80b-e6cf-4f4e-b800-0e69d84ee384} 97 12:38:31,4689285 MCLauncher.exe 84 RegEnumKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS Index: 40, Name: {491E922F-5643-4af4-A7EB-4E7A138D8174} 97 12:38:31,4689337 MCLauncher.exe 84 RegEnumKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS Index: 41, Name: {4BD8D571-6D19-48D3-BE97-422220080E43} 97 12:38:31,4689387 MCLauncher.exe 84 RegEnumKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS Index: 42, Name: {4BFEFB45-347D-4006-A5BE-AC0CB0567192} 97 12:38:31,4689440 MCLauncher.exe 84 RegEnumKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS Index: 43, Name: {4C5C32FF-BB9D-43b0-B5B4-2D72E54EAAA4} 97 12:38:31,4689493 MCLauncher.exe 84 RegEnumKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS Index: 44, Name: {4D9F7874-4E0C-4904-967B-40B0D20C3E4B} 97 12:38:31,4689543 MCLauncher.exe 84 RegEnumKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS Index: 45, Name: {52528A6B-B9E3-4add-B60D-588C2DBA842D} 97 12:38:31,4689592 MCLauncher.exe 84 RegEnumKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS Index: 46, Name: {52a4f021-7b75-48a9-9f6b-4b87a210bc8f} 97 12:38:31,4689642 MCLauncher.exe 84 RegEnumKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS Index: 47, Name: {54EED2E0-E7CA-4fdb-9148-0F4247291CFA} 97 12:38:31,4689698 MCLauncher.exe 84 RegEnumKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS Index: 48, Name: {56784854-C6CB-462B-8169-88E350ACB882} 97 12:38:31,4689748 MCLauncher.exe 84 RegEnumKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS Index: 49, Name: {5cd7aee2-2219-4a67-b85d-6c9ce15660cb} 97 12:38:31,4689797 MCLauncher.exe 84 RegEnumKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS Index: 50, Name: {5CE4A5E9-E4EB-479D-B89F-130C02886155} 97 12:38:31,4689847 MCLauncher.exe 84 RegEnumKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS Index: 51, Name: {5E6C858F-0E22-4760-9AFE-EA3317B67173} 97 12:38:31,4689900 MCLauncher.exe 84 RegEnumKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS Index: 52, Name: {625B53C3-AB48-4EC1-BA1F-A1EF4146FC19} 97 12:38:31,4689950 MCLauncher.exe 84 RegEnumKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS Index: 53, Name: {62AB5D82-FDC1-4DC3-A9DD-070D1D495D97} 97 12:38:31,4690002 MCLauncher.exe 84 RegEnumKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS Index: 54, Name: {69D2CF90-FC33-4FB7-9A0C-EBB0F0FCB43C} 97 12:38:31,4690052 MCLauncher.exe 84 RegEnumKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS Index: 55, Name: {6F0CD92B-2E97-45D1-88FF-B0D186B8DEDD} 97 12:38:31,4690105 MCLauncher.exe 84 RegEnumKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS Index: 56, Name: {724EF170-A42D-4FEF-9F26-B60E846FBA4F} 97 12:38:31,4690155 MCLauncher.exe 84 RegEnumKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS Index: 57, Name: {754AC886-DF64-4CBA-86B5-F7FBF4FBCEF5} 97 12:38:31,4690205 MCLauncher.exe 84 RegEnumKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS Index: 58, Name: {767E6811-49CB-4273-87C2-20F355E1085B} 97 12:38:31,4690257 MCLauncher.exe 84 RegEnumKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS Index: 59, Name: {76FC4E2D-D6AD-4519-A663-37BD56068185} 97 12:38:31,4690307 MCLauncher.exe 84 RegEnumKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS Index: 60, Name: {7b0db17d-9cd2-4a93-9733-46cc89022e7c} 97 12:38:31,4690360 MCLauncher.exe 84 RegEnumKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS Index: 61, Name: {7C5A40EF-A0FB-4BFC-874A-C0F2E0B9FA8E} 97 12:38:31,4690410 MCLauncher.exe 84 RegEnumKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS Index: 62, Name: {7d1d3a04-debb-4115-95cf-2f29da2920da} 97 12:38:31,4690460 MCLauncher.exe 84 RegEnumKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS Index: 63, Name: {7d83ee9b-2244-4e70-b1f5-5393042af1e4} 97 12:38:31,4690509 MCLauncher.exe 84 RegEnumKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS Index: 64, Name: {7E636BFE-DFA9-4D5E-B456-D7B39851D8A9} 97 12:38:31,4690562 MCLauncher.exe 84 RegEnumKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS Index: 65, Name: {82A5EA35-D9CD-47C5-9629-E15D2F714E6E} 97 12:38:31,4690612 MCLauncher.exe 84 RegEnumKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS Index: 66, Name: {82A74AEB-AEB4-465C-A014-D097EE346D63} 97 12:38:31,4690662 MCLauncher.exe 84 RegEnumKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS Index: 67, Name: {8983036C-27C0-404B-8F08-102D10DCFD74} 97 12:38:31,4690714 MCLauncher.exe 84 RegEnumKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS Index: 68, Name: {8AD10C31-2ADB-4296-A8F7-E4701232C972} 97 12:38:31,4690764 MCLauncher.exe 84 RegEnumKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS Index: 69, Name: {905e63b6-c1bf-494e-b29c-65b732d3d21a} 97 12:38:31,4690814 MCLauncher.exe 84 RegEnumKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS Index: 70, Name: {915221FB-9EFE-4bda-8FD7-F78DCA774F87} 97 12:38:31,4690867 MCLauncher.exe 84 RegEnumKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS Index: 71, Name: {9274BD8D-CFD1-41C3-B35E-B13F55A758F4} 97 12:38:31,4690917 MCLauncher.exe 84 RegEnumKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS Index: 72, Name: {98EC0E18-2098-4D44-8644-66979315A281} 97 12:38:31,4690967 MCLauncher.exe 84 RegEnumKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS Index: 73, Name: {9B74B6A3-0DFD-4f11-9E78-5F7800F2E772} 97 12:38:31,4691019 MCLauncher.exe 84 RegEnumKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS Index: 74, Name: {9e3995ab-1f9c-4f13-b827-48b24b6c7174} 97 12:38:31,4691069 MCLauncher.exe 84 RegEnumKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS Index: 75, Name: {9E52AB10-F80D-49DF-ACB8-4330F5687855} 97 12:38:31,4691122 MCLauncher.exe 84 RegEnumKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS Index: 76, Name: {a0c69a99-21c8-4671-8703-7934162fcf1d} 97 12:38:31,4691174 MCLauncher.exe 84 RegEnumKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS Index: 77, Name: {A302545D-DEFF-464b-ABE8-61C8648D939B} 97 12:38:31,4691224 MCLauncher.exe 84 RegEnumKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS Index: 78, Name: {a305ce99-f527-492b-8b1a-7e76fa98d6e4} 97 12:38:31,4691274 MCLauncher.exe 84 RegEnumKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS Index: 79, Name: {A3918781-E5F2-4890-B3D9-A7E54332328C} 97 12:38:31,4691327 MCLauncher.exe 84 RegEnumKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS Index: 80, Name: {A4115719-D62E-491D-AA7C-E74B8BE3B067} 97 12:38:31,4691377 MCLauncher.exe 84 RegEnumKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS Index: 81, Name: {A440879F-87A0-4F7D-B700-0207B966194A} 97 12:38:31,4691429 MCLauncher.exe 84 RegEnumKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS Index: 82, Name: {A520A1A4-1780-4FF6-BD18-167343C5AF16} 97 12:38:31,4691479 MCLauncher.exe 84 RegEnumKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS Index: 83, Name: {A52BBA46-E9E1-435f-B3D9-28DAA648C0F6} 97 12:38:31,4691529 MCLauncher.exe 84 RegEnumKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS Index: 84, Name: {A63293E8-664E-48DB-A079-DF759E0509F7} 97 12:38:31,4691579 MCLauncher.exe 84 RegEnumKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS Index: 85, Name: {A77F5D77-2E2B-44C3-A6A2-ABA601054A51} 97 12:38:31,4691632 MCLauncher.exe 84 RegEnumKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS Index: 86, Name: {A990AE9F-A03B-4e80-94BC-9912D7504104} 97 12:38:31,4691681 MCLauncher.exe 84 RegEnumKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS Index: 87, Name: {AAA8D5A5-F1D6-4259-BAA8-78E7EF60835E} 97 12:38:31,4691734 MCLauncher.exe 84 RegEnumKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS Index: 88, Name: {AB5FB87B-7CE2-4F83-915D-550846C9537B} 97 12:38:31,4691848 MCLauncher.exe 84 RegEnumKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS Index: 89, Name: {AE50C081-EBD2-438A-8655-8A092E34987A} 97 12:38:31,4691900 MCLauncher.exe 84 RegEnumKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS Index: 90, Name: {B4BFCC3A-DB2C-424C-B029-7FE99A87C641} 97 12:38:31,4691950 MCLauncher.exe 84 RegEnumKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS Index: 91, Name: {B6EBFB86-6907-413C-9AF7-4FC2ABF07CC5} 97 12:38:31,4692000 MCLauncher.exe 84 RegEnumKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS Index: 92, Name: {B7534046-3ECB-4C18-BE4E-64CD4CB7D6AC} 97 12:38:31,4692053 MCLauncher.exe 84 RegEnumKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS Index: 93, Name: {b7bede81-df94-4682-a7d8-57a52620b86f} 97 12:38:31,4692105 MCLauncher.exe 84 RegEnumKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS Index: 94, Name: {B88F4DAA-E7BD-49a9-B74D-02885A5DC765} 97 12:38:31,4692155 MCLauncher.exe 84 RegEnumKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS Index: 95, Name: {B94237E7-57AC-4347-9151-B08C6C32D1F7} 97 12:38:31,4692205 MCLauncher.exe 84 RegEnumKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS Index: 96, Name: {B97D20BB-F46A-4C97-BA10-5E3608430854} 97 12:38:31,4692255 MCLauncher.exe 84 RegEnumKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS Index: 97, Name: {bcb5256f-79f6-4cee-b725-dc34e402fd46} 97 12:38:31,4692308 MCLauncher.exe 84 RegEnumKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS Index: 98, Name: {bcbd3057-ca5c-4622-b42d-bc56db0ae516} 97 12:38:31,4692360 MCLauncher.exe 84 RegEnumKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS Index: 99, Name: {bfb9d5e0-c6a9-404c-b2b2-ae6db6af4968} 97 12:38:31,4692410 MCLauncher.exe 84 RegEnumKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS Index: 100, Name: {C1BAE2D0-10DF-4334-BEDD-7AA20B227A9D} 97 12:38:31,4692460 MCLauncher.exe 84 RegEnumKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS Index: 101, Name: {C3F2459E-80D6-45DC-BFEF-1F769F2BE730} 97 12:38:31,4692510 MCLauncher.exe 84 RegEnumKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS Index: 102, Name: {C4AA340D-F20F-4863-AFEF-F87EF2E6BA25} 97 12:38:31,4692562 MCLauncher.exe 84 RegEnumKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS Index: 103, Name: {C5ABBF53-E17F-4121-8900-86626FC2C973} 97 12:38:31,4692612 MCLauncher.exe 84 RegEnumKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS Index: 104, Name: {C870044B-F49E-4126-A9C3-B52A1FF411E8} 97 12:38:31,4692662 MCLauncher.exe 84 RegEnumKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS Index: 105, Name: {CAC52C1A-B53D-4edc-92D7-6B2E8AC19434} 97 12:38:31,4692715 MCLauncher.exe 84 RegEnumKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS Index: 106, Name: {D0384E7D-BAC3-4797-8F14-CBA229B392B5} 97 12:38:31,4692765 MCLauncher.exe 84 RegEnumKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS Index: 107, Name: {D20BEEC4-5CA8-4905-AE3B-BF251EA09B53} 97 12:38:31,4692817 MCLauncher.exe 84 RegEnumKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS Index: 108, Name: {D65231B0-B2F1-4857-A4CE-A8E7C6EA7D27} 97 12:38:31,4692867 MCLauncher.exe 84 RegEnumKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS Index: 109, Name: {D9DC8A3B-B784-432E-A781-5A1130A75963} 97 12:38:31,4692917 MCLauncher.exe 84 RegEnumKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS Index: 110, Name: {DBE8E08E-3053-4BBC-B183-2A7B2B191E59} 97 12:38:31,4692970 MCLauncher.exe 84 RegEnumKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS Index: 111, Name: {de61d971-5ebc-4f02-a3a9-6c82895e5c04} 97 12:38:31,4693020 MCLauncher.exe 84 RegEnumKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS Index: 112, Name: {DE92C1C7-837F-4F69-A3BB-86E631204A23} 97 12:38:31,4693072 MCLauncher.exe 84 RegEnumKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS Index: 113, Name: {DE974D24-D9C6-4D3E-BF91-F4455120B917} 97 12:38:31,4693122 MCLauncher.exe 84 RegEnumKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS Index: 114, Name: {DEBF2536-E1A8-4c59-B6A2-414586476AEA} 97 12:38:31,4693175 MCLauncher.exe 84 RegEnumKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS Index: 115, Name: {df7266ac-9274-4867-8d55-3bd661de872d} 97 12:38:31,4693225 MCLauncher.exe 84 RegEnumKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS Index: 116, Name: {DFDF76A2-C82A-4D63-906A-5644AC457385} 97 12:38:31,4693277 MCLauncher.exe 84 RegEnumKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS Index: 117, Name: {E25B5812-BE88-4bd9-94B0-29233477B6C3} 97 12:38:31,4693327 MCLauncher.exe 84 RegEnumKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS Index: 118, Name: {E555AB60-153B-4D17-9F04-A5FE99FC15EC} 97 12:38:31,4693380 MCLauncher.exe 84 RegEnumKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS Index: 119, Name: {ED4824AF-DCE4-45A8-81E2-FC7965083634} 97 12:38:31,4693430 MCLauncher.exe 84 RegEnumKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS Index: 120, Name: {EDC0FE71-98D8-4F4A-B920-C8DC133CB165} 97 12:38:31,4693482 MCLauncher.exe 84 RegEnumKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS Index: 121, Name: {EE32E446-31CA-4ABA-814F-A5EBD2FD6D5E} 97 12:38:31,4693535 MCLauncher.exe 84 RegEnumKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS Index: 122, Name: {F1B32785-6FBA-4FCF-9D55-7B8E7F157091} 97 12:38:31,4693585 MCLauncher.exe 84 RegEnumKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS Index: 123, Name: {F38BF404-1D43-42F2-9305-67DE0B28FC23} 97 12:38:31,4693637 MCLauncher.exe 84 RegEnumKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS Index: 124, Name: {f3ce0f7c-4901-4acc-8648-d5d44b04ef8f} 97 12:38:31,4693687 MCLauncher.exe 84 RegEnumKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS Index: 125, Name: {f42ee2d3-909f-4907-8871-4c22fc0bf756} 97 12:38:31,4693740 MCLauncher.exe 84 RegEnumKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS Index: 126, Name: {F7F1ED05-9F6D-47A2-AAAE-29D317C6F066} 97 12:38:31,4693790 MCLauncher.exe 84 RegEnumKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS Index: 127, Name: {FD228CB7-AE11-4AE3-864C-16F3910AB8FE} 97 12:38:31,4693842 MCLauncher.exe 84 RegEnumKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS Index: 128, Name: {FDD39AD0-238F-46AF-ADB4-6C85480369C7} 97 12:38:31,4693892 MCLauncher.exe 84 RegEnumKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions NO MORE ENTRIES Index: 129, Length: 288 97 12:38:31,4694042 MCLauncher.exe 84 RegCloseKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS 97 12:38:31,4694230 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:31,4694283 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: Name 97 12:38:31,4694388 MCLauncher.exe 84 RegOpenKey HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS Desired Access: Read 97 12:38:31,4694485 MCLauncher.exe 84 RegSetInfoKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 97 12:38:31,4694554 MCLauncher.exe 84 RegQueryKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS Query: HandleTags, HandleTags: 0x400 97 12:38:31,4694613 MCLauncher.exe 84 RegOpenKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{7D1D3A04-DEBB-4115-95CF-2F29DA2920DA} SUCCESS Desired Access: Read 97 12:38:31,4694699 MCLauncher.exe 84 RegCloseKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS 97 12:38:31,4694754 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{7d1d3a04-debb-4115-95cf-2f29da2920da}\Category SUCCESS Type: REG_DWORD, Length: 4, Data: 4 97 12:38:31,4694912 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{7d1d3a04-debb-4115-95cf-2f29da2920da}\Name SUCCESS Type: REG_SZ, Length: 18, Data: Searches 97 12:38:31,4695050 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{7d1d3a04-debb-4115-95cf-2f29da2920da}\ParentFolder NAME NOT FOUND Length: 144 97 12:38:31,4695167 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{7d1d3a04-debb-4115-95cf-2f29da2920da}\Description NAME NOT FOUND Length: 144 97 12:38:31,4695272 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{7d1d3a04-debb-4115-95cf-2f29da2920da}\RelativePath SUCCESS Type: REG_SZ, Length: 18, Data: Searches 97 12:38:31,4695397 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{7d1d3a04-debb-4115-95cf-2f29da2920da}\ParsingName BUFFER OVERFLOW Length: 144 97 12:38:31,4695508 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{7d1d3a04-debb-4115-95cf-2f29da2920da}\ParsingName SUCCESS Type: REG_SZ, Length: 160, Data: ::{59031a47-3f72-44a7-89c5-5595fe6b30ee}\{7d1d3a04-debb-4115-95cf-2f29da2920da} 97 12:38:31,4695635 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{7d1d3a04-debb-4115-95cf-2f29da2920da}\InfoTip NAME NOT FOUND Length: 144 97 12:38:31,4695740 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{7d1d3a04-debb-4115-95cf-2f29da2920da}\LocalizedName SUCCESS Type: REG_EXPAND_SZ, Length: 82, Data: @%SystemRoot%\system32\shell32.dll,-9031 97 12:38:31,4695868 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{7d1d3a04-debb-4115-95cf-2f29da2920da}\Icon SUCCESS Type: REG_EXPAND_SZ, Length: 78, Data: %SystemRoot%\system32\imageres.dll,-18 97 12:38:31,4695995 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{7d1d3a04-debb-4115-95cf-2f29da2920da}\Security NAME NOT FOUND Length: 144 97 12:38:31,4696131 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{7d1d3a04-debb-4115-95cf-2f29da2920da}\StreamResource NAME NOT FOUND Length: 144 97 12:38:31,4696239 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{7d1d3a04-debb-4115-95cf-2f29da2920da}\StreamResourceType NAME NOT FOUND Length: 144 97 12:38:31,4696341 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{7d1d3a04-debb-4115-95cf-2f29da2920da}\LocalRedirectOnly NAME NOT FOUND Length: 144 97 12:38:31,4696447 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{7d1d3a04-debb-4115-95cf-2f29da2920da}\Roamable NAME NOT FOUND Length: 144 97 12:38:31,4696552 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{7d1d3a04-debb-4115-95cf-2f29da2920da}\PreCreate SUCCESS Type: REG_DWORD, Length: 4, Data: 1 97 12:38:31,4696671 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{7d1d3a04-debb-4115-95cf-2f29da2920da}\Stream NAME NOT FOUND Length: 144 97 12:38:31,4696776 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{7d1d3a04-debb-4115-95cf-2f29da2920da}\PublishExpandedPath SUCCESS Type: REG_DWORD, Length: 4, Data: 1 97 12:38:31,4696896 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{7d1d3a04-debb-4115-95cf-2f29da2920da}\DefinitionFlags NAME NOT FOUND Length: 144 97 12:38:31,4697101 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{7d1d3a04-debb-4115-95cf-2f29da2920da}\Attributes SUCCESS Type: REG_DWORD, Length: 4, Data: 1 97 12:38:31,4697256 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{7d1d3a04-debb-4115-95cf-2f29da2920da}\FolderTypeID SUCCESS Type: REG_SZ, Length: 78, Data: {0b0ba2e3-405f-415e-a6ee-cad625207853} 97 12:38:31,4697392 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{7d1d3a04-debb-4115-95cf-2f29da2920da}\InitFolderHandler NAME NOT FOUND Length: 144 97 12:38:31,4697544 MCLauncher.exe 84 RegQueryKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{7d1d3a04-debb-4115-95cf-2f29da2920da} SUCCESS Query: HandleTags, HandleTags: 0x400 97 12:38:31,4697610 MCLauncher.exe 84 RegOpenKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{7d1d3a04-debb-4115-95cf-2f29da2920da}\PropertyBag NAME NOT FOUND Desired Access: Read 97 12:38:31,4697710 MCLauncher.exe 84 RegCloseKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{7d1d3a04-debb-4115-95cf-2f29da2920da} SUCCESS 97 12:38:31,4697840 MCLauncher.exe 84 RegQueryKey HKCU\Software\Classes SUCCESS Query: Name 97 12:38:31,4697907 MCLauncher.exe 84 RegQueryKey HKCU\Software\Classes SUCCESS Query: HandleTags, HandleTags: 0x1 97 12:38:31,4697973 MCLauncher.exe 84 RegQueryKey HKCU\Software\Classes SUCCESS Query: HandleTags, HandleTags: 0x1 97 12:38:31,4698023 MCLauncher.exe 84 RegQueryKey HKCU\Software\Classes SUCCESS Query: Name 97 12:38:31,4698120 MCLauncher.exe 84 RegOpenKey HKCU\Software\Classes\WOW6432Node\CLSID\{4DF0C730-DF9D-4AE3-9153-AA6B82E9795A} NAME NOT FOUND Desired Access: Read 97 12:38:31,4698234 MCLauncher.exe 84 RegOpenKey HKCR\WOW6432Node\CLSID\{4DF0C730-DF9D-4AE3-9153-AA6B82E9795A} SUCCESS Desired Access: Read 97 12:38:31,4698328 MCLauncher.exe 84 RegSetInfoKey HKCR\WOW6432Node\CLSID\{4df0c730-df9d-4ae3-9153-aa6b82e9795a} SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 97 12:38:31,4698372 MCLauncher.exe 84 RegQueryKey HKCR\WOW6432Node\CLSID\{4df0c730-df9d-4ae3-9153-aa6b82e9795a} SUCCESS Query: Name 97 12:38:31,4698439 MCLauncher.exe 84 RegQueryKey HKCR\WOW6432Node\CLSID\{4df0c730-df9d-4ae3-9153-aa6b82e9795a} SUCCESS Query: HandleTags, HandleTags: 0x401 97 12:38:31,4698541 MCLauncher.exe 84 RegOpenKey HKCU\Software\Classes\WOW6432Node\CLSID\{4df0c730-df9d-4ae3-9153-aa6b82e9795a}\TreatAs NAME NOT FOUND Desired Access: Query Value 97 12:38:31,4698627 MCLauncher.exe 84 RegQueryKey HKCR\WOW6432Node\CLSID\{4df0c730-df9d-4ae3-9153-aa6b82e9795a} SUCCESS Query: HandleTags, HandleTags: 0x401 97 12:38:31,4698680 MCLauncher.exe 84 RegOpenKey HKCR\WOW6432Node\CLSID\{4df0c730-df9d-4ae3-9153-aa6b82e9795a}\TreatAs NAME NOT FOUND Desired Access: Query Value 97 12:38:31,4698744 MCLauncher.exe 84 RegQueryKey HKCR\WOW6432Node\CLSID\{4df0c730-df9d-4ae3-9153-aa6b82e9795a} SUCCESS Query: Name 97 12:38:31,4698807 MCLauncher.exe 84 RegQueryKey HKCR\WOW6432Node\CLSID\{4df0c730-df9d-4ae3-9153-aa6b82e9795a} SUCCESS Query: Name 97 12:38:31,4698860 MCLauncher.exe 84 RegQueryKey HKCR\WOW6432Node\CLSID\{4df0c730-df9d-4ae3-9153-aa6b82e9795a} SUCCESS Query: HandleTags, HandleTags: 0x401 97 12:38:31,4698949 MCLauncher.exe 84 RegOpenKey HKCU\Software\Classes\WOW6432Node\CLSID\{4df0c730-df9d-4ae3-9153-aa6b82e9795a} NAME NOT FOUND Desired Access: Maximum Allowed 97 12:38:31,4699012 MCLauncher.exe 84 RegQueryValue HKCR\WOW6432Node\CLSID\{4df0c730-df9d-4ae3-9153-aa6b82e9795a}\(Default) SUCCESS Type: REG_SZ, Length: 42, Data: Known Folder Manager 97 12:38:31,4699076 MCLauncher.exe 84 RegQueryKey HKCR\WOW6432Node\CLSID\{4df0c730-df9d-4ae3-9153-aa6b82e9795a} SUCCESS Query: Name 97 12:38:31,4699131 MCLauncher.exe 84 RegQueryKey HKCR\WOW6432Node\CLSID\{4df0c730-df9d-4ae3-9153-aa6b82e9795a} SUCCESS Query: HandleTags, HandleTags: 0x401 97 12:38:31,4699215 MCLauncher.exe 84 RegOpenKey HKCU\Software\Classes\WOW6432Node\CLSID\{4df0c730-df9d-4ae3-9153-aa6b82e9795a} NAME NOT FOUND Desired Access: Maximum Allowed 97 12:38:31,4699275 MCLauncher.exe 84 RegQueryValue HKCR\WOW6432Node\CLSID\{4df0c730-df9d-4ae3-9153-aa6b82e9795a}\(Default) SUCCESS Type: REG_SZ, Length: 42, Data: Known Folder Manager 97 12:38:31,4699334 MCLauncher.exe 84 RegQueryKey HKCR\WOW6432Node\CLSID\{4df0c730-df9d-4ae3-9153-aa6b82e9795a} SUCCESS Query: Name 97 12:38:31,4699389 MCLauncher.exe 84 RegQueryKey HKCR\WOW6432Node\CLSID\{4df0c730-df9d-4ae3-9153-aa6b82e9795a} SUCCESS Query: HandleTags, HandleTags: 0x401 97 12:38:31,4699472 MCLauncher.exe 84 RegOpenKey HKCU\Software\Classes\WOW6432Node\CLSID\{4df0c730-df9d-4ae3-9153-aa6b82e9795a}\InprocServer32 NAME NOT FOUND Desired Access: Read 97 12:38:31,4699550 MCLauncher.exe 84 RegQueryKey HKCR\WOW6432Node\CLSID\{4df0c730-df9d-4ae3-9153-aa6b82e9795a} SUCCESS Query: HandleTags, HandleTags: 0x401 97 12:38:31,4699600 MCLauncher.exe 84 RegOpenKey HKCR\WOW6432Node\CLSID\{4df0c730-df9d-4ae3-9153-aa6b82e9795a}\InprocServer32 SUCCESS Desired Access: Read 97 12:38:31,4699683 MCLauncher.exe 84 RegQueryKey HKCR\WOW6432Node\CLSID\{4df0c730-df9d-4ae3-9153-aa6b82e9795a}\InProcServer32 SUCCESS Query: Name 97 12:38:31,4699738 MCLauncher.exe 84 RegQueryKey HKCR\WOW6432Node\CLSID\{4df0c730-df9d-4ae3-9153-aa6b82e9795a}\InProcServer32 SUCCESS Query: HandleTags, HandleTags: 0x401 97 12:38:31,4699821 MCLauncher.exe 84 RegOpenKey HKCU\Software\Classes\WOW6432Node\CLSID\{4df0c730-df9d-4ae3-9153-aa6b82e9795a}\InProcServer32 NAME NOT FOUND Desired Access: Maximum Allowed 97 12:38:31,4699885 MCLauncher.exe 84 RegQueryValue HKCR\WOW6432Node\CLSID\{4df0c730-df9d-4ae3-9153-aa6b82e9795a}\InProcServer32\InprocServer32 NAME NOT FOUND Length: 144 97 12:38:31,4700032 MCLauncher.exe 84 RegQueryKey HKCR\WOW6432Node\CLSID\{4df0c730-df9d-4ae3-9153-aa6b82e9795a}\InProcServer32 SUCCESS Query: Name 97 12:38:31,4700104 MCLauncher.exe 84 RegQueryKey HKCR\WOW6432Node\CLSID\{4df0c730-df9d-4ae3-9153-aa6b82e9795a}\InProcServer32 SUCCESS Query: HandleTags, HandleTags: 0x401 97 12:38:31,4700204 MCLauncher.exe 84 RegOpenKey HKCU\Software\Classes\WOW6432Node\CLSID\{4df0c730-df9d-4ae3-9153-aa6b82e9795a}\InProcServer32 NAME NOT FOUND Desired Access: Maximum Allowed 97 12:38:31,4700281 MCLauncher.exe 84 RegQueryValue HKCR\WOW6432Node\CLSID\{4df0c730-df9d-4ae3-9153-aa6b82e9795a}\InProcServer32\(Default) SUCCESS Type: REG_EXPAND_SZ, Length: 84, Data: %SystemRoot%\system32\windows.storage.dll 97 12:38:31,4700337 MCLauncher.exe 84 RegQueryKey HKCR\WOW6432Node\CLSID\{4df0c730-df9d-4ae3-9153-aa6b82e9795a}\InProcServer32 SUCCESS Query: Name 97 12:38:31,4700392 MCLauncher.exe 84 RegQueryKey HKCR\WOW6432Node\CLSID\{4df0c730-df9d-4ae3-9153-aa6b82e9795a}\InProcServer32 SUCCESS Query: HandleTags, HandleTags: 0x401 97 12:38:31,4700472 MCLauncher.exe 84 RegOpenKey HKCU\Software\Classes\WOW6432Node\CLSID\{4df0c730-df9d-4ae3-9153-aa6b82e9795a}\InProcServer32 NAME NOT FOUND Desired Access: Maximum Allowed 97 12:38:31,4700533 MCLauncher.exe 84 RegQueryValue HKCR\WOW6432Node\CLSID\{4df0c730-df9d-4ae3-9153-aa6b82e9795a}\InProcServer32\(Default) SUCCESS Type: REG_EXPAND_SZ, Length: 84, Data: %SystemRoot%\system32\windows.storage.dll 97 12:38:31,4700600 MCLauncher.exe 84 RegQueryKey HKCR\WOW6432Node\CLSID\{4df0c730-df9d-4ae3-9153-aa6b82e9795a}\InProcServer32 SUCCESS Query: Name 97 12:38:31,4700652 MCLauncher.exe 84 RegQueryKey HKCR\WOW6432Node\CLSID\{4df0c730-df9d-4ae3-9153-aa6b82e9795a}\InProcServer32 SUCCESS Query: HandleTags, HandleTags: 0x401 97 12:38:31,4700736 MCLauncher.exe 84 RegOpenKey HKCU\Software\Classes\WOW6432Node\CLSID\{4df0c730-df9d-4ae3-9153-aa6b82e9795a}\InProcServer32 NAME NOT FOUND Desired Access: Maximum Allowed 97 12:38:31,4700794 MCLauncher.exe 84 RegQueryValue HKCR\WOW6432Node\CLSID\{4df0c730-df9d-4ae3-9153-aa6b82e9795a}\InProcServer32\(Default) SUCCESS Type: REG_EXPAND_SZ, Length: 84, Data: %SystemRoot%\system32\windows.storage.dll 97 12:38:31,4700860 MCLauncher.exe 84 RegQueryKey HKCR\WOW6432Node\CLSID\{4df0c730-df9d-4ae3-9153-aa6b82e9795a}\InProcServer32 SUCCESS Query: Name 97 12:38:31,4700913 MCLauncher.exe 84 RegQueryKey HKCR\WOW6432Node\CLSID\{4df0c730-df9d-4ae3-9153-aa6b82e9795a}\InProcServer32 SUCCESS Query: HandleTags, HandleTags: 0x401 97 12:38:31,4700993 MCLauncher.exe 84 RegOpenKey HKCU\Software\Classes\WOW6432Node\CLSID\{4df0c730-df9d-4ae3-9153-aa6b82e9795a}\InProcServer32 NAME NOT FOUND Desired Access: Maximum Allowed 97 12:38:31,4701054 MCLauncher.exe 84 RegQueryValue HKCR\WOW6432Node\CLSID\{4df0c730-df9d-4ae3-9153-aa6b82e9795a}\InProcServer32\ThreadingModel SUCCESS Type: REG_SZ, Length: 10, Data: Both 97 12:38:31,4701207 MCLauncher.exe 84 RegCloseKey HKCR\WOW6432Node\CLSID\{4df0c730-df9d-4ae3-9153-aa6b82e9795a}\InProcServer32 SUCCESS 97 12:38:31,4701256 MCLauncher.exe 84 RegQueryKey HKCR\WOW6432Node\CLSID\{4df0c730-df9d-4ae3-9153-aa6b82e9795a} SUCCESS Query: Name 97 12:38:31,4701323 MCLauncher.exe 84 RegQueryKey HKCR\WOW6432Node\CLSID\{4df0c730-df9d-4ae3-9153-aa6b82e9795a} SUCCESS Query: HandleTags, HandleTags: 0x401 97 12:38:31,4701423 MCLauncher.exe 84 RegOpenKey HKCU\Software\Classes\WOW6432Node\CLSID\{4df0c730-df9d-4ae3-9153-aa6b82e9795a}\InprocHandler32 NAME NOT FOUND Desired Access: Query Value 97 12:38:31,4701520 MCLauncher.exe 84 RegQueryKey HKCR\WOW6432Node\CLSID\{4df0c730-df9d-4ae3-9153-aa6b82e9795a} SUCCESS Query: HandleTags, HandleTags: 0x401 97 12:38:31,4701572 MCLauncher.exe 84 RegOpenKey HKCR\WOW6432Node\CLSID\{4df0c730-df9d-4ae3-9153-aa6b82e9795a}\InprocHandler32 NAME NOT FOUND Desired Access: Query Value 97 12:38:31,4701633 MCLauncher.exe 84 RegQueryKey HKCR\WOW6432Node\CLSID\{4df0c730-df9d-4ae3-9153-aa6b82e9795a} SUCCESS Query: Name 97 12:38:31,4701689 MCLauncher.exe 84 RegQueryKey HKCR\WOW6432Node\CLSID\{4df0c730-df9d-4ae3-9153-aa6b82e9795a} SUCCESS Query: HandleTags, HandleTags: 0x401 97 12:38:31,4701772 MCLauncher.exe 84 RegOpenKey HKCU\Software\Classes\WOW6432Node\CLSID\{4df0c730-df9d-4ae3-9153-aa6b82e9795a}\InprocHandler NAME NOT FOUND Desired Access: Query Value 97 12:38:31,4701847 MCLauncher.exe 84 RegQueryKey HKCR\WOW6432Node\CLSID\{4df0c730-df9d-4ae3-9153-aa6b82e9795a} SUCCESS Query: HandleTags, HandleTags: 0x401 97 12:38:31,4701899 MCLauncher.exe 84 RegOpenKey HKCR\WOW6432Node\CLSID\{4df0c730-df9d-4ae3-9153-aa6b82e9795a}\InprocHandler NAME NOT FOUND Desired Access: Query Value 97 12:38:31,4701968 MCLauncher.exe 84 RegCloseKey HKCR\WOW6432Node\CLSID\{4df0c730-df9d-4ae3-9153-aa6b82e9795a} SUCCESS 97 12:38:31,4702115 MCLauncher.exe 84 RegQueryKey HKCU\Software\Classes SUCCESS Query: Name 97 12:38:31,4702176 MCLauncher.exe 84 RegQueryKey HKCU\Software\Classes SUCCESS Query: HandleTags, HandleTags: 0x1 97 12:38:31,4702243 MCLauncher.exe 84 RegQueryKey HKCU\Software\Classes SUCCESS Query: HandleTags, HandleTags: 0x1 97 12:38:31,4702290 MCLauncher.exe 84 RegQueryKey HKCU\Software\Classes SUCCESS Query: Name 97 12:38:31,4702373 MCLauncher.exe 84 RegOpenKey HKCU\Software\Classes\WOW6432Node\CLSID\{4DF0C730-DF9D-4AE3-9153-AA6B82E9795A} NAME NOT FOUND Desired Access: Read 97 12:38:31,4702467 MCLauncher.exe 84 RegOpenKey HKCR\WOW6432Node\CLSID\{4DF0C730-DF9D-4AE3-9153-AA6B82E9795A} SUCCESS Desired Access: Read 97 12:38:31,4702548 MCLauncher.exe 84 RegSetInfoKey HKCR\WOW6432Node\CLSID\{4df0c730-df9d-4ae3-9153-aa6b82e9795a} SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 97 12:38:31,4702589 MCLauncher.exe 84 RegQueryKey HKCR\WOW6432Node\CLSID\{4df0c730-df9d-4ae3-9153-aa6b82e9795a} SUCCESS Query: Name 97 12:38:31,4702645 MCLauncher.exe 84 RegQueryKey HKCR\WOW6432Node\CLSID\{4df0c730-df9d-4ae3-9153-aa6b82e9795a} SUCCESS Query: HandleTags, HandleTags: 0x401 97 12:38:31,4702730 MCLauncher.exe 84 RegOpenKey HKCU\Software\Classes\WOW6432Node\CLSID\{4df0c730-df9d-4ae3-9153-aa6b82e9795a}\TreatAs NAME NOT FOUND Desired Access: Read 97 12:38:31,4702811 MCLauncher.exe 84 RegQueryKey HKCR\WOW6432Node\CLSID\{4df0c730-df9d-4ae3-9153-aa6b82e9795a} SUCCESS Query: HandleTags, HandleTags: 0x401 97 12:38:31,4702863 MCLauncher.exe 84 RegOpenKey HKCR\WOW6432Node\CLSID\{4df0c730-df9d-4ae3-9153-aa6b82e9795a}\TreatAs NAME NOT FOUND Desired Access: Read 97 12:38:31,4702933 MCLauncher.exe 84 RegCloseKey HKCR\WOW6432Node\CLSID\{4df0c730-df9d-4ae3-9153-aa6b82e9795a} SUCCESS 97 12:38:31,4703229 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:31,4703285 MCLauncher.exe 84 RegOpenKey HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\AllowedEnumeration NAME NOT FOUND Desired Access: Read 97 12:38:31,4703406 MCLauncher.exe 84 RegQueryKey HKCU SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:31,4703456 MCLauncher.exe 84 RegOpenKey HKCU\Software\Microsoft\Windows\CurrentVersion\Explorer\AllowedEnumeration NAME NOT FOUND Desired Access: Read 97 12:38:31,4703636 MCLauncher.exe 84 RegQueryKey HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer SUCCESS Query: HandleTags, HandleTags: 0x400 97 12:38:31,4703689 MCLauncher.exe 84 RegOpenKey HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\SessionInfo\1 SUCCESS Desired Access: Query Value 97 12:38:31,4703780 MCLauncher.exe 84 RegQueryKey HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\SessionInfo\1 SUCCESS Query: HandleTags, HandleTags: 0x400 97 12:38:31,4703833 MCLauncher.exe 84 RegOpenKey HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\SessionInfo\1\KnownFolders NAME NOT FOUND Desired Access: Query Value 97 12:38:31,4703900 MCLauncher.exe 84 RegCloseKey HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\SessionInfo\1 SUCCESS 97 12:38:31,4703977 MCLauncher.exe 84 RegOpenKey HKCU SUCCESS Desired Access: Read 97 12:38:31,4704060 MCLauncher.exe 84 RegQueryKey HKCU SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:31,4704107 MCLauncher.exe 84 RegQueryKey HKCU SUCCESS Query: Name 97 12:38:31,4704179 MCLauncher.exe 84 RegOpenKey HKCU\Software\Microsoft\Windows\CurrentVersion\Explorer\User Shell Folders SUCCESS Desired Access: Read 97 12:38:31,4704257 MCLauncher.exe 84 RegSetInfoKey HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\User Shell Folders SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 97 12:38:31,4704301 MCLauncher.exe 84 RegCloseKey HKCU SUCCESS 97 12:38:31,4704351 MCLauncher.exe 84 RegQueryValue HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\User Shell Folders\{7D1D3A04-DEBB-4115-95CF-2F29DA2920DA} NAME NOT FOUND Length: 144 97 12:38:31,4704620 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:31,4704673 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: Name 97 12:38:31,4704767 MCLauncher.exe 84 RegOpenKey HKLM\Software\WOW6432Node\Microsoft\Windows NT\CurrentVersion\ProfileList\S-1-5-21-3477790013-1571897634-1299942168-1000 REPARSE Desired Access: Read 97 12:38:31,4704853 MCLauncher.exe 84 RegOpenKey HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\ProfileList\S-1-5-21-3477790013-1571897634-1299942168-1000 SUCCESS Desired Access: Read 97 12:38:31,4704916 MCLauncher.exe 84 RegSetInfoKey HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\ProfileList\S-1-5-21-3477790013-1571897634-1299942168-1000 SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 97 12:38:31,4704961 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\ProfileList\S-1-5-21-3477790013-1571897634-1299942168-1000\ProfileImagePath SUCCESS Type: REG_EXPAND_SZ, Length: 28, Data: C:\Users\User 97 12:38:31,4705105 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\ProfileList\S-1-5-21-3477790013-1571897634-1299942168-1000\ProfileImagePath SUCCESS Type: REG_EXPAND_SZ, Length: 28, Data: C:\Users\User 97 12:38:31,4705241 MCLauncher.exe 84 RegCloseKey HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\ProfileList\S-1-5-21-3477790013-1571897634-1299942168-1000 SUCCESS 97 12:38:31,4705324 MCLauncher.exe 84 RegCloseKey HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\User Shell Folders SUCCESS 97 12:38:31,4705462 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:31,4705512 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: Name 97 12:38:31,4705601 MCLauncher.exe 84 RegOpenKey HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS Desired Access: Read 97 12:38:31,4705687 MCLauncher.exe 84 RegSetInfoKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 97 12:38:31,4705748 MCLauncher.exe 84 RegQueryKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS Query: HandleTags, HandleTags: 0x400 97 12:38:31,4705806 MCLauncher.exe 84 RegOpenKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{F38BF404-1D43-42F2-9305-67DE0B28FC23} SUCCESS Desired Access: Read 97 12:38:31,4705883 MCLauncher.exe 84 RegCloseKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS 97 12:38:31,4705933 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{F38BF404-1D43-42F2-9305-67DE0B28FC23}\Category SUCCESS Type: REG_DWORD, Length: 4, Data: 2 97 12:38:31,4706080 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{F38BF404-1D43-42F2-9305-67DE0B28FC23}\Name SUCCESS Type: REG_SZ, Length: 16, Data: Windows 97 12:38:31,4706210 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{F38BF404-1D43-42F2-9305-67DE0B28FC23}\ParentFolder NAME NOT FOUND Length: 144 97 12:38:31,4706324 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{F38BF404-1D43-42F2-9305-67DE0B28FC23}\Description NAME NOT FOUND Length: 144 97 12:38:31,4706432 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{F38BF404-1D43-42F2-9305-67DE0B28FC23}\RelativePath NAME NOT FOUND Length: 144 97 12:38:31,4706534 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{F38BF404-1D43-42F2-9305-67DE0B28FC23}\ParsingName NAME NOT FOUND Length: 144 97 12:38:31,4706637 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{F38BF404-1D43-42F2-9305-67DE0B28FC23}\InfoTip NAME NOT FOUND Length: 144 97 12:38:31,4712413 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{F38BF404-1D43-42F2-9305-67DE0B28FC23}\LocalizedName NAME NOT FOUND Length: 144 97 12:38:31,4712594 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{F38BF404-1D43-42F2-9305-67DE0B28FC23}\Icon NAME NOT FOUND Length: 144 97 12:38:31,4712707 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{F38BF404-1D43-42F2-9305-67DE0B28FC23}\Security NAME NOT FOUND Length: 144 97 12:38:31,4712810 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{F38BF404-1D43-42F2-9305-67DE0B28FC23}\StreamResource NAME NOT FOUND Length: 144 97 12:38:31,4712918 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{F38BF404-1D43-42F2-9305-67DE0B28FC23}\StreamResourceType NAME NOT FOUND Length: 144 97 12:38:31,4713020 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{F38BF404-1D43-42F2-9305-67DE0B28FC23}\LocalRedirectOnly NAME NOT FOUND Length: 144 97 12:38:31,4713123 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{F38BF404-1D43-42F2-9305-67DE0B28FC23}\Roamable NAME NOT FOUND Length: 144 97 12:38:31,4713225 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{F38BF404-1D43-42F2-9305-67DE0B28FC23}\PreCreate NAME NOT FOUND Length: 144 97 12:38:31,4713328 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{F38BF404-1D43-42F2-9305-67DE0B28FC23}\Stream NAME NOT FOUND Length: 144 97 12:38:31,4713436 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{F38BF404-1D43-42F2-9305-67DE0B28FC23}\PublishExpandedPath NAME NOT FOUND Length: 144 97 12:38:31,4713538 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{F38BF404-1D43-42F2-9305-67DE0B28FC23}\DefinitionFlags NAME NOT FOUND Length: 144 97 12:38:31,4713644 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{F38BF404-1D43-42F2-9305-67DE0B28FC23}\Attributes NAME NOT FOUND Length: 144 97 12:38:31,4713746 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{F38BF404-1D43-42F2-9305-67DE0B28FC23}\FolderTypeID NAME NOT FOUND Length: 144 97 12:38:31,4713851 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{F38BF404-1D43-42F2-9305-67DE0B28FC23}\InitFolderHandler NAME NOT FOUND Length: 144 97 12:38:31,4714004 MCLauncher.exe 84 RegQueryKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{F38BF404-1D43-42F2-9305-67DE0B28FC23} SUCCESS Query: HandleTags, HandleTags: 0x400 97 12:38:31,4714084 MCLauncher.exe 84 RegOpenKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{F38BF404-1D43-42F2-9305-67DE0B28FC23}\PropertyBag SUCCESS Desired Access: Read 97 12:38:31,4714209 MCLauncher.exe 84 RegCloseKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{F38BF404-1D43-42F2-9305-67DE0B28FC23} SUCCESS 97 12:38:31,4714320 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:31,4714372 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: Name 97 12:38:31,4714472 MCLauncher.exe 84 RegOpenKey HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS Desired Access: Read 97 12:38:31,4714561 MCLauncher.exe 84 RegSetInfoKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 97 12:38:31,4714627 MCLauncher.exe 84 RegQueryKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS Query: HandleTags, HandleTags: 0x400 97 12:38:31,4714683 MCLauncher.exe 84 RegOpenKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{F7F1ED05-9F6D-47A2-AAAE-29D317C6F066} SUCCESS Desired Access: Read 97 12:38:31,4714766 MCLauncher.exe 84 RegCloseKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS 97 12:38:31,4714810 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{F7F1ED05-9F6D-47A2-AAAE-29D317C6F066}\Category SUCCESS Type: REG_DWORD, Length: 4, Data: 2 97 12:38:31,4714951 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{F7F1ED05-9F6D-47A2-AAAE-29D317C6F066}\Name SUCCESS Type: REG_SZ, Length: 38, Data: ProgramFilesCommon 97 12:38:31,4715084 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{F7F1ED05-9F6D-47A2-AAAE-29D317C6F066}\ParentFolder NAME NOT FOUND Length: 144 97 12:38:31,4715195 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{F7F1ED05-9F6D-47A2-AAAE-29D317C6F066}\Description NAME NOT FOUND Length: 144 97 12:38:31,4715298 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{F7F1ED05-9F6D-47A2-AAAE-29D317C6F066}\RelativePath NAME NOT FOUND Length: 144 97 12:38:31,4715400 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{F7F1ED05-9F6D-47A2-AAAE-29D317C6F066}\ParsingName NAME NOT FOUND Length: 144 97 12:38:31,4715500 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{F7F1ED05-9F6D-47A2-AAAE-29D317C6F066}\InfoTip NAME NOT FOUND Length: 144 97 12:38:31,4715602 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{F7F1ED05-9F6D-47A2-AAAE-29D317C6F066}\LocalizedName NAME NOT FOUND Length: 144 97 12:38:31,4715705 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{F7F1ED05-9F6D-47A2-AAAE-29D317C6F066}\Icon NAME NOT FOUND Length: 144 97 12:38:31,4715807 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{F7F1ED05-9F6D-47A2-AAAE-29D317C6F066}\Security NAME NOT FOUND Length: 144 97 12:38:31,4715910 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{F7F1ED05-9F6D-47A2-AAAE-29D317C6F066}\StreamResource NAME NOT FOUND Length: 144 97 12:38:31,4716012 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{F7F1ED05-9F6D-47A2-AAAE-29D317C6F066}\StreamResourceType NAME NOT FOUND Length: 144 97 12:38:31,4716115 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{F7F1ED05-9F6D-47A2-AAAE-29D317C6F066}\LocalRedirectOnly NAME NOT FOUND Length: 144 97 12:38:31,4716217 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{F7F1ED05-9F6D-47A2-AAAE-29D317C6F066}\Roamable NAME NOT FOUND Length: 144 97 12:38:31,4716364 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{F7F1ED05-9F6D-47A2-AAAE-29D317C6F066}\PreCreate NAME NOT FOUND Length: 144 97 12:38:31,4716470 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{F7F1ED05-9F6D-47A2-AAAE-29D317C6F066}\Stream NAME NOT FOUND Length: 144 97 12:38:31,4716572 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{F7F1ED05-9F6D-47A2-AAAE-29D317C6F066}\PublishExpandedPath NAME NOT FOUND Length: 144 97 12:38:31,4716675 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{F7F1ED05-9F6D-47A2-AAAE-29D317C6F066}\DefinitionFlags NAME NOT FOUND Length: 144 97 12:38:31,4716935 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{F7F1ED05-9F6D-47A2-AAAE-29D317C6F066}\Attributes NAME NOT FOUND Length: 144 97 12:38:31,4717104 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{F7F1ED05-9F6D-47A2-AAAE-29D317C6F066}\FolderTypeID NAME NOT FOUND Length: 144 97 12:38:31,4717273 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{F7F1ED05-9F6D-47A2-AAAE-29D317C6F066}\InitFolderHandler NAME NOT FOUND Length: 144 97 12:38:31,4717467 MCLauncher.exe 84 RegQueryKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{F7F1ED05-9F6D-47A2-AAAE-29D317C6F066} SUCCESS Query: HandleTags, HandleTags: 0x400 97 12:38:31,4717536 MCLauncher.exe 84 RegOpenKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{F7F1ED05-9F6D-47A2-AAAE-29D317C6F066}\PropertyBag NAME NOT FOUND Desired Access: Read 97 12:38:31,4717633 MCLauncher.exe 84 RegCloseKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{F7F1ED05-9F6D-47A2-AAAE-29D317C6F066} SUCCESS 97 12:38:31,4717733 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:31,4717783 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: Name 97 12:38:31,4717877 MCLauncher.exe 84 RegOpenKey HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS Desired Access: Read 97 12:38:31,4717960 MCLauncher.exe 84 RegSetInfoKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 97 12:38:31,4718027 MCLauncher.exe 84 RegQueryKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS Query: HandleTags, HandleTags: 0x400 97 12:38:31,4718077 MCLauncher.exe 84 RegOpenKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{2112AB0A-C86A-4FFE-A368-0DE96E47012E} SUCCESS Desired Access: Read 97 12:38:31,4718160 MCLauncher.exe 84 RegCloseKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS 97 12:38:31,4718207 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{2112AB0A-C86A-4ffe-A368-0DE96E47012E}\Category SUCCESS Type: REG_DWORD, Length: 4, Data: 4 97 12:38:31,4718345 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{2112AB0A-C86A-4ffe-A368-0DE96E47012E}\Name SUCCESS Type: REG_SZ, Length: 26, Data: MusicLibrary 97 12:38:31,4718478 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{2112AB0A-C86A-4ffe-A368-0DE96E47012E}\ParentFolder SUCCESS Type: REG_SZ, Length: 78, Data: {1B3EA5DC-B587-4786-B4EF-BD1DC332AEAE} 97 12:38:31,4718608 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{2112AB0A-C86A-4ffe-A368-0DE96E47012E}\Description NAME NOT FOUND Length: 144 97 12:38:31,4718717 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{2112AB0A-C86A-4ffe-A368-0DE96E47012E}\RelativePath SUCCESS Type: REG_SZ, Length: 34, Data: Music.library-ms 97 12:38:31,4718844 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{2112AB0A-C86A-4ffe-A368-0DE96E47012E}\ParsingName BUFFER OVERFLOW Length: 144 97 12:38:31,4718952 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{2112AB0A-C86A-4ffe-A368-0DE96E47012E}\ParsingName SUCCESS Type: REG_SZ, Length: 160, Data: ::{031E4825-7B94-4dc3-B131-E946B44C8DD5}\{2112AB0A-C86A-4ffe-A368-0DE96E47012E} 97 12:38:31,4719082 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{2112AB0A-C86A-4ffe-A368-0DE96E47012E}\InfoTip SUCCESS Type: REG_EXPAND_SZ, Length: 84, Data: @%SystemRoot%\system32\shell32.dll,-12689 97 12:38:31,4719207 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{2112AB0A-C86A-4ffe-A368-0DE96E47012E}\LocalizedName SUCCESS Type: REG_EXPAND_SZ, Length: 100, Data: @%SystemRoot%\system32\windows.storage.dll,-34584 97 12:38:31,4719337 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{2112AB0A-C86A-4ffe-A368-0DE96E47012E}\Icon SUCCESS Type: REG_EXPAND_SZ, Length: 82, Data: %SystemRoot%\system32\imageres.dll,-1004 97 12:38:31,4719465 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{2112AB0A-C86A-4ffe-A368-0DE96E47012E}\Security NAME NOT FOUND Length: 144 97 12:38:31,4719573 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{2112AB0A-C86A-4ffe-A368-0DE96E47012E}\StreamResource SUCCESS Type: REG_EXPAND_SZ, Length: 74, Data: %SystemRoot%\system32\shell32.dll,-2 97 12:38:31,4719697 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{2112AB0A-C86A-4ffe-A368-0DE96E47012E}\StreamResourceType SUCCESS Type: REG_SZ, Length: 16, Data: LIBRARY 97 12:38:31,4719828 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{2112AB0A-C86A-4ffe-A368-0DE96E47012E}\LocalRedirectOnly NAME NOT FOUND Length: 144 97 12:38:31,4719936 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{2112AB0A-C86A-4ffe-A368-0DE96E47012E}\Roamable NAME NOT FOUND Length: 144 97 12:38:31,4720041 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{2112AB0A-C86A-4ffe-A368-0DE96E47012E}\PreCreate SUCCESS Type: REG_DWORD, Length: 4, Data: 1 97 12:38:31,4720163 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{2112AB0A-C86A-4ffe-A368-0DE96E47012E}\Stream SUCCESS Type: REG_DWORD, Length: 4, Data: 1 97 12:38:31,4720282 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{2112AB0A-C86A-4ffe-A368-0DE96E47012E}\PublishExpandedPath NAME NOT FOUND Length: 144 97 12:38:31,4720390 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{2112AB0A-C86A-4ffe-A368-0DE96E47012E}\DefinitionFlags NAME NOT FOUND Length: 144 97 12:38:31,4720492 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{2112AB0A-C86A-4ffe-A368-0DE96E47012E}\Attributes NAME NOT FOUND Length: 144 97 12:38:31,4720598 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{2112AB0A-C86A-4ffe-A368-0DE96E47012E}\FolderTypeID NAME NOT FOUND Length: 144 97 12:38:31,4720706 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{2112AB0A-C86A-4ffe-A368-0DE96E47012E}\InitFolderHandler NAME NOT FOUND Length: 144 97 12:38:31,4720844 MCLauncher.exe 84 RegQueryKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{2112AB0A-C86A-4ffe-A368-0DE96E47012E} SUCCESS Query: HandleTags, HandleTags: 0x400 97 12:38:31,4720905 MCLauncher.exe 84 RegOpenKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{2112AB0A-C86A-4ffe-A368-0DE96E47012E}\PropertyBag SUCCESS Desired Access: Read 97 12:38:31,4720997 MCLauncher.exe 84 RegCloseKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{2112AB0A-C86A-4ffe-A368-0DE96E47012E} SUCCESS 97 12:38:31,4721099 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:31,4721149 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: Name 97 12:38:31,4721235 MCLauncher.exe 84 RegOpenKey HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS Desired Access: Read 97 12:38:31,4721313 MCLauncher.exe 84 RegSetInfoKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 97 12:38:31,4721371 MCLauncher.exe 84 RegQueryKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS Query: HandleTags, HandleTags: 0x400 97 12:38:31,4721423 MCLauncher.exe 84 RegOpenKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{48DAF80B-E6CF-4F4E-B800-0E69D84EE384} SUCCESS Desired Access: Read 97 12:38:31,4721498 MCLauncher.exe 84 RegCloseKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS 97 12:38:31,4721542 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{48daf80b-e6cf-4f4e-b800-0e69d84ee384}\Category SUCCESS Type: REG_DWORD, Length: 4, Data: 3 97 12:38:31,4721684 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{48daf80b-e6cf-4f4e-b800-0e69d84ee384}\Name SUCCESS Type: REG_SZ, Length: 32, Data: PublicLibraries 97 12:38:31,4721817 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{48daf80b-e6cf-4f4e-b800-0e69d84ee384}\ParentFolder SUCCESS Type: REG_SZ, Length: 78, Data: {DFDF76A2-C82A-4D63-906A-5644AC457385} 97 12:38:31,4721944 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{48daf80b-e6cf-4f4e-b800-0e69d84ee384}\Description NAME NOT FOUND Length: 144 97 12:38:31,4722050 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{48daf80b-e6cf-4f4e-b800-0e69d84ee384}\RelativePath SUCCESS Type: REG_SZ, Length: 20, Data: Libraries 97 12:38:31,4722174 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{48daf80b-e6cf-4f4e-b800-0e69d84ee384}\ParsingName NAME NOT FOUND Length: 144 97 12:38:31,4722282 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{48daf80b-e6cf-4f4e-b800-0e69d84ee384}\InfoTip NAME NOT FOUND Length: 144 97 12:38:31,4722388 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{48daf80b-e6cf-4f4e-b800-0e69d84ee384}\LocalizedName NAME NOT FOUND Length: 144 97 12:38:31,4722493 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{48daf80b-e6cf-4f4e-b800-0e69d84ee384}\Icon NAME NOT FOUND Length: 144 97 12:38:31,4722595 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{48daf80b-e6cf-4f4e-b800-0e69d84ee384}\Security NAME NOT FOUND Length: 144 97 12:38:31,4722701 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{48daf80b-e6cf-4f4e-b800-0e69d84ee384}\StreamResource NAME NOT FOUND Length: 144 97 12:38:31,4722809 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{48daf80b-e6cf-4f4e-b800-0e69d84ee384}\StreamResourceType NAME NOT FOUND Length: 144 97 12:38:31,4722914 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{48daf80b-e6cf-4f4e-b800-0e69d84ee384}\LocalRedirectOnly NAME NOT FOUND Length: 144 97 12:38:31,4723016 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{48daf80b-e6cf-4f4e-b800-0e69d84ee384}\Roamable NAME NOT FOUND Length: 144 97 12:38:31,4723122 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{48daf80b-e6cf-4f4e-b800-0e69d84ee384}\PreCreate SUCCESS Type: REG_DWORD, Length: 4, Data: 1 97 12:38:31,4723241 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{48daf80b-e6cf-4f4e-b800-0e69d84ee384}\Stream NAME NOT FOUND Length: 144 97 12:38:31,4723346 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{48daf80b-e6cf-4f4e-b800-0e69d84ee384}\PublishExpandedPath NAME NOT FOUND Length: 144 97 12:38:31,4723449 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{48daf80b-e6cf-4f4e-b800-0e69d84ee384}\DefinitionFlags NAME NOT FOUND Length: 144 97 12:38:31,4723554 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{48daf80b-e6cf-4f4e-b800-0e69d84ee384}\Attributes SUCCESS Type: REG_DWORD, Length: 4, Data: 3 97 12:38:31,4723670 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{48daf80b-e6cf-4f4e-b800-0e69d84ee384}\FolderTypeID NAME NOT FOUND Length: 144 97 12:38:31,4723776 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{48daf80b-e6cf-4f4e-b800-0e69d84ee384}\InitFolderHandler NAME NOT FOUND Length: 144 97 12:38:31,4723914 MCLauncher.exe 84 RegQueryKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{48daf80b-e6cf-4f4e-b800-0e69d84ee384} SUCCESS Query: HandleTags, HandleTags: 0x400 97 12:38:31,4723975 MCLauncher.exe 84 RegOpenKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{48daf80b-e6cf-4f4e-b800-0e69d84ee384}\PropertyBag NAME NOT FOUND Desired Access: Read 97 12:38:31,4724055 MCLauncher.exe 84 RegCloseKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{48daf80b-e6cf-4f4e-b800-0e69d84ee384} SUCCESS 97 12:38:31,4724141 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:31,4724191 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: Name 97 12:38:31,4724271 MCLauncher.exe 84 RegOpenKey HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS Desired Access: Read 97 12:38:31,4724346 MCLauncher.exe 84 RegSetInfoKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 97 12:38:31,4724407 MCLauncher.exe 84 RegQueryKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS Query: HandleTags, HandleTags: 0x400 97 12:38:31,4724457 MCLauncher.exe 84 RegOpenKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{C4AA340D-F20F-4863-AFEF-F87EF2E6BA25} SUCCESS Desired Access: Read 97 12:38:31,4724535 MCLauncher.exe 84 RegCloseKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS 97 12:38:31,4724579 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{C4AA340D-F20F-4863-AFEF-F87EF2E6BA25}\Category SUCCESS Type: REG_DWORD, Length: 4, Data: 3 97 12:38:31,4724712 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{C4AA340D-F20F-4863-AFEF-F87EF2E6BA25}\Name SUCCESS Type: REG_SZ, Length: 30, Data: Common Desktop 97 12:38:31,4724842 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{C4AA340D-F20F-4863-AFEF-F87EF2E6BA25}\ParentFolder SUCCESS Type: REG_SZ, Length: 78, Data: {DFDF76A2-C82A-4D63-906A-5644AC457385} 97 12:38:31,4724967 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{C4AA340D-F20F-4863-AFEF-F87EF2E6BA25}\Description NAME NOT FOUND Length: 144 97 12:38:31,4725075 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{C4AA340D-F20F-4863-AFEF-F87EF2E6BA25}\RelativePath SUCCESS Type: REG_SZ, Length: 16, Data: Desktop 97 12:38:31,4725197 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{C4AA340D-F20F-4863-AFEF-F87EF2E6BA25}\ParsingName NAME NOT FOUND Length: 144 97 12:38:31,4725305 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{C4AA340D-F20F-4863-AFEF-F87EF2E6BA25}\InfoTip NAME NOT FOUND Length: 144 97 12:38:31,4725410 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{C4AA340D-F20F-4863-AFEF-F87EF2E6BA25}\LocalizedName SUCCESS Type: REG_EXPAND_SZ, Length: 84, Data: @%SystemRoot%\system32\shell32.dll,-21799 97 12:38:31,4725535 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{C4AA340D-F20F-4863-AFEF-F87EF2E6BA25}\Icon NAME NOT FOUND Length: 144 97 12:38:31,4725640 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{C4AA340D-F20F-4863-AFEF-F87EF2E6BA25}\Security SUCCESS Type: REG_SZ, Length: 116, Data: D:P(A;OICI;FA;;;BA)(A;OICI;0x1200a9;;;IU)(A;OICI;FA;;;SY) 97 12:38:31,4725765 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{C4AA340D-F20F-4863-AFEF-F87EF2E6BA25}\StreamResource NAME NOT FOUND Length: 144 97 12:38:31,4725873 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{C4AA340D-F20F-4863-AFEF-F87EF2E6BA25}\StreamResourceType NAME NOT FOUND Length: 144 97 12:38:31,4726014 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{C4AA340D-F20F-4863-AFEF-F87EF2E6BA25}\LocalRedirectOnly NAME NOT FOUND Length: 144 97 12:38:31,4726119 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{C4AA340D-F20F-4863-AFEF-F87EF2E6BA25}\Roamable NAME NOT FOUND Length: 144 97 12:38:31,4726225 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{C4AA340D-F20F-4863-AFEF-F87EF2E6BA25}\PreCreate SUCCESS Type: REG_DWORD, Length: 4, Data: 1 97 12:38:31,4726344 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{C4AA340D-F20F-4863-AFEF-F87EF2E6BA25}\Stream NAME NOT FOUND Length: 144 97 12:38:31,4726449 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{C4AA340D-F20F-4863-AFEF-F87EF2E6BA25}\PublishExpandedPath NAME NOT FOUND Length: 144 97 12:38:31,4726707 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{C4AA340D-F20F-4863-AFEF-F87EF2E6BA25}\DefinitionFlags NAME NOT FOUND Length: 144 97 12:38:31,4726879 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{C4AA340D-F20F-4863-AFEF-F87EF2E6BA25}\Attributes SUCCESS Type: REG_DWORD, Length: 4, Data: 3 97 12:38:31,4727067 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{C4AA340D-F20F-4863-AFEF-F87EF2E6BA25}\FolderTypeID NAME NOT FOUND Length: 144 97 12:38:31,4727192 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{C4AA340D-F20F-4863-AFEF-F87EF2E6BA25}\InitFolderHandler NAME NOT FOUND Length: 144 97 12:38:31,4727333 MCLauncher.exe 84 RegQueryKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{C4AA340D-F20F-4863-AFEF-F87EF2E6BA25} SUCCESS Query: HandleTags, HandleTags: 0x400 97 12:38:31,4727399 MCLauncher.exe 84 RegOpenKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{C4AA340D-F20F-4863-AFEF-F87EF2E6BA25}\PropertyBag NAME NOT FOUND Desired Access: Read 97 12:38:31,4727491 MCLauncher.exe 84 RegCloseKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{C4AA340D-F20F-4863-AFEF-F87EF2E6BA25} SUCCESS 97 12:38:31,4727591 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:31,4727640 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: Name 97 12:38:31,4727729 MCLauncher.exe 84 RegOpenKey HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS Desired Access: Read 97 12:38:31,4727807 MCLauncher.exe 84 RegSetInfoKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 97 12:38:31,4727868 MCLauncher.exe 84 RegQueryKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS Query: HandleTags, HandleTags: 0x400 97 12:38:31,4727920 MCLauncher.exe 84 RegOpenKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{9E52AB10-F80D-49DF-ACB8-4330F5687855} SUCCESS Desired Access: Read 97 12:38:31,4727995 MCLauncher.exe 84 RegCloseKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS 97 12:38:31,4728039 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{9E52AB10-F80D-49DF-ACB8-4330F5687855}\Category SUCCESS Type: REG_DWORD, Length: 4, Data: 4 97 12:38:31,4728172 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{9E52AB10-F80D-49DF-ACB8-4330F5687855}\Name SUCCESS Type: REG_SZ, Length: 22, Data: CD Burning 97 12:38:31,4728303 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{9E52AB10-F80D-49DF-ACB8-4330F5687855}\ParentFolder SUCCESS Type: REG_SZ, Length: 78, Data: {F1B32785-6FBA-4FCF-9D55-7B8E7F157091} 97 12:38:31,4728427 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{9E52AB10-F80D-49DF-ACB8-4330F5687855}\Description NAME NOT FOUND Length: 144 97 12:38:31,4728533 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{9E52AB10-F80D-49DF-ACB8-4330F5687855}\RelativePath SUCCESS Type: REG_SZ, Length: 56, Data: Microsoft\Windows\Burn\Burn 97 12:38:31,4728660 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{9E52AB10-F80D-49DF-ACB8-4330F5687855}\ParsingName NAME NOT FOUND Length: 144 97 12:38:31,4728768 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{9E52AB10-F80D-49DF-ACB8-4330F5687855}\InfoTip NAME NOT FOUND Length: 144 97 12:38:31,4728907 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{9E52AB10-F80D-49DF-ACB8-4330F5687855}\LocalizedName SUCCESS Type: REG_EXPAND_SZ, Length: 84, Data: @%SystemRoot%\system32\shell32.dll,-21815 97 12:38:31,4729029 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{9E52AB10-F80D-49DF-ACB8-4330F5687855}\Icon NAME NOT FOUND Length: 144 97 12:38:31,4729134 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{9E52AB10-F80D-49DF-ACB8-4330F5687855}\Security NAME NOT FOUND Length: 144 97 12:38:31,4729239 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{9E52AB10-F80D-49DF-ACB8-4330F5687855}\StreamResource NAME NOT FOUND Length: 144 97 12:38:31,4729342 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{9E52AB10-F80D-49DF-ACB8-4330F5687855}\StreamResourceType NAME NOT FOUND Length: 144 97 12:38:31,4729447 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{9E52AB10-F80D-49DF-ACB8-4330F5687855}\LocalRedirectOnly SUCCESS Type: REG_DWORD, Length: 4, Data: 1 97 12:38:31,4729563 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{9E52AB10-F80D-49DF-ACB8-4330F5687855}\Roamable NAME NOT FOUND Length: 144 97 12:38:31,4729669 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{9E52AB10-F80D-49DF-ACB8-4330F5687855}\PreCreate NAME NOT FOUND Length: 144 97 12:38:31,4729771 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{9E52AB10-F80D-49DF-ACB8-4330F5687855}\Stream NAME NOT FOUND Length: 144 97 12:38:31,4729876 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{9E52AB10-F80D-49DF-ACB8-4330F5687855}\PublishExpandedPath NAME NOT FOUND Length: 144 97 12:38:31,4729979 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{9E52AB10-F80D-49DF-ACB8-4330F5687855}\DefinitionFlags NAME NOT FOUND Length: 144 97 12:38:31,4730084 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{9E52AB10-F80D-49DF-ACB8-4330F5687855}\Attributes SUCCESS Type: REG_DWORD, Length: 4, Data: 1 97 12:38:31,4730198 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{9E52AB10-F80D-49DF-ACB8-4330F5687855}\FolderTypeID NAME NOT FOUND Length: 144 97 12:38:31,4730336 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{9E52AB10-F80D-49DF-ACB8-4330F5687855}\InitFolderHandler NAME NOT FOUND Length: 144 97 12:38:31,4730475 MCLauncher.exe 84 RegQueryKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{9E52AB10-F80D-49DF-ACB8-4330F5687855} SUCCESS Query: HandleTags, HandleTags: 0x400 97 12:38:31,4730536 MCLauncher.exe 84 RegOpenKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{9E52AB10-F80D-49DF-ACB8-4330F5687855}\PropertyBag NAME NOT FOUND Desired Access: Read 97 12:38:31,4730619 MCLauncher.exe 84 RegCloseKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{9E52AB10-F80D-49DF-ACB8-4330F5687855} SUCCESS 97 12:38:31,4730710 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:31,4730757 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: Name 97 12:38:31,4730843 MCLauncher.exe 84 RegOpenKey HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS Desired Access: Read 97 12:38:31,4730918 MCLauncher.exe 84 RegSetInfoKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 97 12:38:31,4730976 MCLauncher.exe 84 RegQueryKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS Query: HandleTags, HandleTags: 0x400 97 12:38:31,4731029 MCLauncher.exe 84 RegOpenKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{767E6811-49CB-4273-87C2-20F355E1085B} SUCCESS Desired Access: Read 97 12:38:31,4731106 MCLauncher.exe 84 RegCloseKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS 97 12:38:31,4731148 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{767E6811-49CB-4273-87C2-20F355E1085B}\Category SUCCESS Type: REG_DWORD, Length: 4, Data: 4 97 12:38:31,4731278 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{767E6811-49CB-4273-87C2-20F355E1085B}\Name SUCCESS Type: REG_SZ, Length: 38, Data: OneDriveCameraRoll 97 12:38:31,4731408 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{767E6811-49CB-4273-87C2-20F355E1085B}\ParentFolder SUCCESS Type: REG_SZ, Length: 78, Data: {339719B5-8C47-4894-94C2-D8F77ADD44A6} 97 12:38:31,4731533 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{767E6811-49CB-4273-87C2-20F355E1085B}\Description NAME NOT FOUND Length: 144 97 12:38:31,4731638 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{767E6811-49CB-4273-87C2-20F355E1085B}\RelativePath SUCCESS Type: REG_SZ, Length: 24, Data: Camera Roll 97 12:38:31,4731760 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{767E6811-49CB-4273-87C2-20F355E1085B}\ParsingName NAME NOT FOUND Length: 144 97 12:38:31,4731866 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{767E6811-49CB-4273-87C2-20F355E1085B}\InfoTip NAME NOT FOUND Length: 144 97 12:38:31,4731971 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{767E6811-49CB-4273-87C2-20F355E1085B}\LocalizedName NAME NOT FOUND Length: 144 97 12:38:31,4732073 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{767E6811-49CB-4273-87C2-20F355E1085B}\Icon NAME NOT FOUND Length: 144 97 12:38:31,4732176 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{767E6811-49CB-4273-87C2-20F355E1085B}\Security NAME NOT FOUND Length: 144 97 12:38:31,4732278 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{767E6811-49CB-4273-87C2-20F355E1085B}\StreamResource NAME NOT FOUND Length: 144 97 12:38:31,4732381 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{767E6811-49CB-4273-87C2-20F355E1085B}\StreamResourceType NAME NOT FOUND Length: 144 97 12:38:31,4732483 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{767E6811-49CB-4273-87C2-20F355E1085B}\LocalRedirectOnly NAME NOT FOUND Length: 144 97 12:38:31,4732586 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{767E6811-49CB-4273-87C2-20F355E1085B}\Roamable NAME NOT FOUND Length: 144 97 12:38:31,4732688 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{767E6811-49CB-4273-87C2-20F355E1085B}\PreCreate NAME NOT FOUND Length: 144 97 12:38:31,4732794 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{767E6811-49CB-4273-87C2-20F355E1085B}\Stream NAME NOT FOUND Length: 144 97 12:38:31,4732899 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{767E6811-49CB-4273-87C2-20F355E1085B}\PublishExpandedPath NAME NOT FOUND Length: 144 97 12:38:31,4733002 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{767E6811-49CB-4273-87C2-20F355E1085B}\DefinitionFlags SUCCESS Type: REG_DWORD, Length: 4, Data: 64 97 12:38:31,4733118 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{767E6811-49CB-4273-87C2-20F355E1085B}\Attributes SUCCESS Type: REG_DWORD, Length: 4, Data: 1 97 12:38:31,4733237 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{767E6811-49CB-4273-87C2-20F355E1085B}\FolderTypeID SUCCESS Type: REG_SZ, Length: 78, Data: {b3690e58-e961-423b-b687-386ebfd83239} 97 12:38:31,4733362 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{767E6811-49CB-4273-87C2-20F355E1085B}\InitFolderHandler NAME NOT FOUND Length: 144 97 12:38:31,4733500 MCLauncher.exe 84 RegQueryKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{767E6811-49CB-4273-87C2-20F355E1085B} SUCCESS Query: HandleTags, HandleTags: 0x400 97 12:38:31,4733561 MCLauncher.exe 84 RegOpenKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{767E6811-49CB-4273-87C2-20F355E1085B}\PropertyBag SUCCESS Desired Access: Read 97 12:38:31,4733642 MCLauncher.exe 84 RegCloseKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{767E6811-49CB-4273-87C2-20F355E1085B} SUCCESS 97 12:38:31,4733741 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:31,4733788 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: Name 97 12:38:31,4733871 MCLauncher.exe 84 RegOpenKey HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS Desired Access: Read 97 12:38:31,4733944 MCLauncher.exe 84 RegSetInfoKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 97 12:38:31,4734002 MCLauncher.exe 84 RegQueryKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS Query: HandleTags, HandleTags: 0x400 97 12:38:31,4734054 MCLauncher.exe 84 RegOpenKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{E25B5812-BE88-4BD9-94B0-29233477B6C3} SUCCESS Desired Access: Read 97 12:38:31,4734126 MCLauncher.exe 84 RegCloseKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS 97 12:38:31,4734171 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{E25B5812-BE88-4bd9-94B0-29233477B6C3}\Category SUCCESS Type: REG_DWORD, Length: 4, Data: 4 97 12:38:31,4734298 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{E25B5812-BE88-4bd9-94B0-29233477B6C3}\Name SUCCESS Type: REG_SZ, Length: 42, Data: SavedPicturesLibrary 97 12:38:31,4734428 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{E25B5812-BE88-4bd9-94B0-29233477B6C3}\ParentFolder SUCCESS Type: REG_SZ, Length: 78, Data: {1B3EA5DC-B587-4786-B4EF-BD1DC332AEAE} 97 12:38:31,4734553 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{E25B5812-BE88-4bd9-94B0-29233477B6C3}\Description NAME NOT FOUND Length: 144 97 12:38:31,4734661 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{E25B5812-BE88-4bd9-94B0-29233477B6C3}\RelativePath SUCCESS Type: REG_SZ, Length: 50, Data: SavedPictures.library-ms 97 12:38:31,4734786 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{E25B5812-BE88-4bd9-94B0-29233477B6C3}\ParsingName BUFFER OVERFLOW Length: 144 97 12:38:31,4734894 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{E25B5812-BE88-4bd9-94B0-29233477B6C3}\ParsingName SUCCESS Type: REG_SZ, Length: 160, Data: ::{031E4825-7B94-4dc3-B131-E946B44C8DD5}\{E25B5812-BE88-4bd9-94B0-29233477B6C3} 97 12:38:31,4735021 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{E25B5812-BE88-4bd9-94B0-29233477B6C3}\InfoTip NAME NOT FOUND Length: 144 97 12:38:31,4735132 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{E25B5812-BE88-4bd9-94B0-29233477B6C3}\LocalizedName SUCCESS Type: REG_EXPAND_SZ, Length: 100, Data: @%SystemRoot%\system32\windows.storage.dll,-34583 97 12:38:31,4735257 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{E25B5812-BE88-4bd9-94B0-29233477B6C3}\Icon NAME NOT FOUND Length: 144 97 12:38:31,4735362 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{E25B5812-BE88-4bd9-94B0-29233477B6C3}\Security NAME NOT FOUND Length: 144 97 12:38:31,4735465 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{E25B5812-BE88-4bd9-94B0-29233477B6C3}\StreamResource SUCCESS Type: REG_EXPAND_SZ, Length: 74, Data: %SystemRoot%\system32\shell32.dll,-6 97 12:38:31,4735586 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{E25B5812-BE88-4bd9-94B0-29233477B6C3}\StreamResourceType SUCCESS Type: REG_SZ, Length: 16, Data: LIBRARY 97 12:38:31,4735747 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{E25B5812-BE88-4bd9-94B0-29233477B6C3}\LocalRedirectOnly NAME NOT FOUND Length: 144 97 12:38:31,4735855 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{E25B5812-BE88-4bd9-94B0-29233477B6C3}\Roamable NAME NOT FOUND Length: 144 97 12:38:31,4735958 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{E25B5812-BE88-4bd9-94B0-29233477B6C3}\PreCreate NAME NOT FOUND Length: 144 97 12:38:31,4736063 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{E25B5812-BE88-4bd9-94B0-29233477B6C3}\Stream SUCCESS Type: REG_DWORD, Length: 4, Data: 1 97 12:38:31,4736177 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{E25B5812-BE88-4bd9-94B0-29233477B6C3}\PublishExpandedPath NAME NOT FOUND Length: 144 97 12:38:31,4736384 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{E25B5812-BE88-4bd9-94B0-29233477B6C3}\DefinitionFlags NAME NOT FOUND Length: 144 97 12:38:31,4736501 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{E25B5812-BE88-4bd9-94B0-29233477B6C3}\Attributes NAME NOT FOUND Length: 144 97 12:38:31,4736609 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{E25B5812-BE88-4bd9-94B0-29233477B6C3}\FolderTypeID NAME NOT FOUND Length: 144 97 12:38:31,4736714 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{E25B5812-BE88-4bd9-94B0-29233477B6C3}\InitFolderHandler NAME NOT FOUND Length: 144 97 12:38:31,4736853 MCLauncher.exe 84 RegQueryKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{E25B5812-BE88-4bd9-94B0-29233477B6C3} SUCCESS Query: HandleTags, HandleTags: 0x400 97 12:38:31,4736914 MCLauncher.exe 84 RegOpenKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{E25B5812-BE88-4bd9-94B0-29233477B6C3}\PropertyBag SUCCESS Desired Access: Read 97 12:38:31,4737008 MCLauncher.exe 84 RegCloseKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{E25B5812-BE88-4bd9-94B0-29233477B6C3} SUCCESS 97 12:38:31,4737108 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:31,4737157 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: Name 97 12:38:31,4737243 MCLauncher.exe 84 RegOpenKey HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS Desired Access: Read 97 12:38:31,4737315 MCLauncher.exe 84 RegSetInfoKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 97 12:38:31,4737376 MCLauncher.exe 84 RegQueryKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS Query: HandleTags, HandleTags: 0x400 97 12:38:31,4737426 MCLauncher.exe 84 RegOpenKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{98EC0E18-2098-4D44-8644-66979315A281} SUCCESS Desired Access: Read 97 12:38:31,4737501 MCLauncher.exe 84 RegCloseKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS 97 12:38:31,4737548 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{98EC0E18-2098-4D44-8644-66979315A281}\Category SUCCESS Type: REG_DWORD, Length: 4, Data: 1 97 12:38:31,4737675 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{98EC0E18-2098-4D44-8644-66979315A281}\Name SUCCESS Type: REG_SZ, Length: 22, Data: MAPIFolder 97 12:38:31,4737806 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{98EC0E18-2098-4D44-8644-66979315A281}\ParentFolder NAME NOT FOUND Length: 144 97 12:38:31,4737917 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{98EC0E18-2098-4D44-8644-66979315A281}\Description NAME NOT FOUND Length: 144 97 12:38:31,4738022 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{98EC0E18-2098-4D44-8644-66979315A281}\RelativePath NAME NOT FOUND Length: 144 97 12:38:31,4738124 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{98EC0E18-2098-4D44-8644-66979315A281}\ParsingName SUCCESS Type: REG_SZ, Length: 98, Data: shell:::{89D83576-6BD1-4C86-9454-BEB04E94C819}\* 97 12:38:31,4738252 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{98EC0E18-2098-4D44-8644-66979315A281}\InfoTip NAME NOT FOUND Length: 144 97 12:38:31,4738357 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{98EC0E18-2098-4D44-8644-66979315A281}\LocalizedName NAME NOT FOUND Length: 144 97 12:38:31,4738460 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{98EC0E18-2098-4D44-8644-66979315A281}\Icon NAME NOT FOUND Length: 144 97 12:38:31,4738562 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{98EC0E18-2098-4D44-8644-66979315A281}\Security NAME NOT FOUND Length: 144 97 12:38:31,4738665 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{98EC0E18-2098-4D44-8644-66979315A281}\StreamResource NAME NOT FOUND Length: 144 97 12:38:31,4738767 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{98EC0E18-2098-4D44-8644-66979315A281}\StreamResourceType NAME NOT FOUND Length: 144 97 12:38:31,4738872 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{98EC0E18-2098-4D44-8644-66979315A281}\LocalRedirectOnly NAME NOT FOUND Length: 144 97 12:38:31,4738975 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{98EC0E18-2098-4D44-8644-66979315A281}\Roamable NAME NOT FOUND Length: 144 97 12:38:31,4739077 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{98EC0E18-2098-4D44-8644-66979315A281}\PreCreate NAME NOT FOUND Length: 144 97 12:38:31,4739180 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{98EC0E18-2098-4D44-8644-66979315A281}\Stream NAME NOT FOUND Length: 144 97 12:38:31,4739282 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{98EC0E18-2098-4D44-8644-66979315A281}\PublishExpandedPath NAME NOT FOUND Length: 144 97 12:38:31,4739382 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{98EC0E18-2098-4D44-8644-66979315A281}\DefinitionFlags NAME NOT FOUND Length: 144 97 12:38:31,4739487 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{98EC0E18-2098-4D44-8644-66979315A281}\Attributes NAME NOT FOUND Length: 144 97 12:38:31,4739590 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{98EC0E18-2098-4D44-8644-66979315A281}\FolderTypeID NAME NOT FOUND Length: 144 97 12:38:31,4739692 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{98EC0E18-2098-4D44-8644-66979315A281}\InitFolderHandler NAME NOT FOUND Length: 144 97 12:38:31,4739825 MCLauncher.exe 84 RegQueryKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{98EC0E18-2098-4D44-8644-66979315A281} SUCCESS Query: HandleTags, HandleTags: 0x400 97 12:38:31,4739886 MCLauncher.exe 84 RegOpenKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{98EC0E18-2098-4D44-8644-66979315A281}\PropertyBag NAME NOT FOUND Desired Access: Read 97 12:38:31,4739969 MCLauncher.exe 84 RegCloseKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{98EC0E18-2098-4D44-8644-66979315A281} SUCCESS 97 12:38:31,4740061 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:31,4740111 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: Name 97 12:38:31,4740191 MCLauncher.exe 84 RegOpenKey HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS Desired Access: Read 97 12:38:31,4740266 MCLauncher.exe 84 RegSetInfoKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 97 12:38:31,4740324 MCLauncher.exe 84 RegQueryKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS Query: HandleTags, HandleTags: 0x400 97 12:38:31,4740374 MCLauncher.exe 84 RegOpenKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{A4115719-D62E-491D-AA7C-E74B8BE3B067} SUCCESS Desired Access: Read 97 12:38:31,4740449 MCLauncher.exe 84 RegCloseKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS 97 12:38:31,4740493 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{A4115719-D62E-491D-AA7C-E74B8BE3B067}\Category SUCCESS Type: REG_DWORD, Length: 4, Data: 3 97 12:38:31,4740626 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{A4115719-D62E-491D-AA7C-E74B8BE3B067}\Name SUCCESS Type: REG_SZ, Length: 36, Data: Common Start Menu 97 12:38:31,4740759 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{A4115719-D62E-491D-AA7C-E74B8BE3B067}\ParentFolder SUCCESS Type: REG_SZ, Length: 78, Data: {62AB5D82-FDC1-4DC3-A9DD-070D1D495D97} 97 12:38:31,4740884 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{A4115719-D62E-491D-AA7C-E74B8BE3B067}\Description NAME NOT FOUND Length: 144 97 12:38:31,4740989 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{A4115719-D62E-491D-AA7C-E74B8BE3B067}\RelativePath SUCCESS Type: REG_SZ, Length: 58, Data: Microsoft\Windows\Start Menu 97 12:38:31,4741114 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{A4115719-D62E-491D-AA7C-E74B8BE3B067}\ParsingName NAME NOT FOUND Length: 144 97 12:38:31,4741222 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{A4115719-D62E-491D-AA7C-E74B8BE3B067}\InfoTip NAME NOT FOUND Length: 144 97 12:38:31,4741324 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{A4115719-D62E-491D-AA7C-E74B8BE3B067}\LocalizedName SUCCESS Type: REG_EXPAND_SZ, Length: 84, Data: @%SystemRoot%\system32\shell32.dll,-21786 97 12:38:31,4741449 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{A4115719-D62E-491D-AA7C-E74B8BE3B067}\Icon NAME NOT FOUND Length: 144 97 12:38:31,4741554 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{A4115719-D62E-491D-AA7C-E74B8BE3B067}\Security NAME NOT FOUND Length: 144 97 12:38:31,4741657 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{A4115719-D62E-491D-AA7C-E74B8BE3B067}\StreamResource NAME NOT FOUND Length: 144 97 12:38:31,4741762 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{A4115719-D62E-491D-AA7C-E74B8BE3B067}\StreamResourceType NAME NOT FOUND Length: 144 97 12:38:31,4741865 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{A4115719-D62E-491D-AA7C-E74B8BE3B067}\LocalRedirectOnly NAME NOT FOUND Length: 144 97 12:38:31,4741967 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{A4115719-D62E-491D-AA7C-E74B8BE3B067}\Roamable NAME NOT FOUND Length: 144 97 12:38:31,4742070 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{A4115719-D62E-491D-AA7C-E74B8BE3B067}\PreCreate SUCCESS Type: REG_DWORD, Length: 4, Data: 1 97 12:38:31,4742189 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{A4115719-D62E-491D-AA7C-E74B8BE3B067}\Stream NAME NOT FOUND Length: 144 97 12:38:31,4742291 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{A4115719-D62E-491D-AA7C-E74B8BE3B067}\PublishExpandedPath NAME NOT FOUND Length: 144 97 12:38:31,4742397 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{A4115719-D62E-491D-AA7C-E74B8BE3B067}\DefinitionFlags NAME NOT FOUND Length: 144 97 12:38:31,4742499 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{A4115719-D62E-491D-AA7C-E74B8BE3B067}\Attributes SUCCESS Type: REG_DWORD, Length: 4, Data: 1 97 12:38:31,4742615 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{A4115719-D62E-491D-AA7C-E74B8BE3B067}\FolderTypeID NAME NOT FOUND Length: 144 97 12:38:31,4742718 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{A4115719-D62E-491D-AA7C-E74B8BE3B067}\InitFolderHandler NAME NOT FOUND Length: 144 97 12:38:31,4742854 MCLauncher.exe 84 RegQueryKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{A4115719-D62E-491D-AA7C-E74B8BE3B067} SUCCESS Query: HandleTags, HandleTags: 0x400 97 12:38:31,4742912 MCLauncher.exe 84 RegOpenKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{A4115719-D62E-491D-AA7C-E74B8BE3B067}\PropertyBag NAME NOT FOUND Desired Access: Read 97 12:38:31,4742998 MCLauncher.exe 84 RegCloseKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{A4115719-D62E-491D-AA7C-E74B8BE3B067} SUCCESS 97 12:38:31,4743084 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:31,4743131 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: Name 97 12:38:31,4743217 MCLauncher.exe 84 RegOpenKey HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS Desired Access: Read 97 12:38:31,4743289 MCLauncher.exe 84 RegSetInfoKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 97 12:38:31,4743350 MCLauncher.exe 84 RegQueryKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS Query: HandleTags, HandleTags: 0x400 97 12:38:31,4743399 MCLauncher.exe 84 RegOpenKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{CAC52C1A-B53D-4EDC-92D7-6B2E8AC19434} SUCCESS Desired Access: Read 97 12:38:31,4743471 MCLauncher.exe 84 RegCloseKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS 97 12:38:31,4743516 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{CAC52C1A-B53D-4edc-92D7-6B2E8AC19434}\Category SUCCESS Type: REG_DWORD, Length: 4, Data: 1 97 12:38:31,4743646 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{CAC52C1A-B53D-4edc-92D7-6B2E8AC19434}\Name SUCCESS Type: REG_SZ, Length: 12, Data: Games 97 12:38:31,4743779 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{CAC52C1A-B53D-4edc-92D7-6B2E8AC19434}\ParentFolder NAME NOT FOUND Length: 144 97 12:38:31,4743887 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{CAC52C1A-B53D-4edc-92D7-6B2E8AC19434}\Description NAME NOT FOUND Length: 144 97 12:38:31,4743992 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{CAC52C1A-B53D-4edc-92D7-6B2E8AC19434}\RelativePath NAME NOT FOUND Length: 144 97 12:38:31,4744098 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{CAC52C1A-B53D-4edc-92D7-6B2E8AC19434}\ParsingName SUCCESS Type: REG_SZ, Length: 82, Data: ::{ED228FDF-9EA8-4870-83b1-96b02CFE0D52} 97 12:38:31,4744220 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{CAC52C1A-B53D-4edc-92D7-6B2E8AC19434}\InfoTip NAME NOT FOUND Length: 144 97 12:38:31,4744328 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{CAC52C1A-B53D-4edc-92D7-6B2E8AC19434}\LocalizedName NAME NOT FOUND Length: 144 97 12:38:31,4744427 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{CAC52C1A-B53D-4edc-92D7-6B2E8AC19434}\Icon NAME NOT FOUND Length: 144 97 12:38:31,4744533 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{CAC52C1A-B53D-4edc-92D7-6B2E8AC19434}\Security NAME NOT FOUND Length: 144 97 12:38:31,4744635 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{CAC52C1A-B53D-4edc-92D7-6B2E8AC19434}\StreamResource NAME NOT FOUND Length: 144 97 12:38:31,4744771 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{CAC52C1A-B53D-4edc-92D7-6B2E8AC19434}\StreamResourceType NAME NOT FOUND Length: 144 97 12:38:31,4744876 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{CAC52C1A-B53D-4edc-92D7-6B2E8AC19434}\LocalRedirectOnly NAME NOT FOUND Length: 144 97 12:38:31,4744979 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{CAC52C1A-B53D-4edc-92D7-6B2E8AC19434}\Roamable NAME NOT FOUND Length: 144 97 12:38:31,4745081 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{CAC52C1A-B53D-4edc-92D7-6B2E8AC19434}\PreCreate NAME NOT FOUND Length: 144 97 12:38:31,4745186 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{CAC52C1A-B53D-4edc-92D7-6B2E8AC19434}\Stream NAME NOT FOUND Length: 144 97 12:38:31,4745289 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{CAC52C1A-B53D-4edc-92D7-6B2E8AC19434}\PublishExpandedPath NAME NOT FOUND Length: 144 97 12:38:31,4745391 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{CAC52C1A-B53D-4edc-92D7-6B2E8AC19434}\DefinitionFlags NAME NOT FOUND Length: 144 97 12:38:31,4745494 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{CAC52C1A-B53D-4edc-92D7-6B2E8AC19434}\Attributes NAME NOT FOUND Length: 144 97 12:38:31,4745596 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{CAC52C1A-B53D-4edc-92D7-6B2E8AC19434}\FolderTypeID NAME NOT FOUND Length: 144 97 12:38:31,4745699 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{CAC52C1A-B53D-4edc-92D7-6B2E8AC19434}\InitFolderHandler NAME NOT FOUND Length: 144 97 12:38:31,4745832 MCLauncher.exe 84 RegQueryKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{CAC52C1A-B53D-4edc-92D7-6B2E8AC19434} SUCCESS Query: HandleTags, HandleTags: 0x400 97 12:38:31,4745893 MCLauncher.exe 84 RegOpenKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{CAC52C1A-B53D-4edc-92D7-6B2E8AC19434}\PropertyBag NAME NOT FOUND Desired Access: Read 97 12:38:31,4745971 MCLauncher.exe 84 RegCloseKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{CAC52C1A-B53D-4edc-92D7-6B2E8AC19434} SUCCESS 97 12:38:31,4746325 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:31,4746381 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: Name 97 12:38:31,4746475 MCLauncher.exe 84 RegOpenKey HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS Desired Access: Read 97 12:38:31,4746563 MCLauncher.exe 84 RegSetInfoKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 97 12:38:31,4746627 MCLauncher.exe 84 RegQueryKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS Query: HandleTags, HandleTags: 0x400 97 12:38:31,4746680 MCLauncher.exe 84 RegOpenKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{18989B1D-99B5-455B-841C-AB7C74E4DDFC} SUCCESS Desired Access: Read 97 12:38:31,4746760 MCLauncher.exe 84 RegCloseKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS 97 12:38:31,4746807 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{18989B1D-99B5-455B-841C-AB7C74E4DDFC}\Category SUCCESS Type: REG_DWORD, Length: 4, Data: 4 97 12:38:31,4746946 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{18989B1D-99B5-455B-841C-AB7C74E4DDFC}\Name SUCCESS Type: REG_SZ, Length: 18, Data: My Video 97 12:38:31,4747079 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{18989B1D-99B5-455B-841C-AB7C74E4DDFC}\ParentFolder NAME NOT FOUND Length: 144 97 12:38:31,4747190 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{18989B1D-99B5-455B-841C-AB7C74E4DDFC}\Description NAME NOT FOUND Length: 144 97 12:38:31,4747295 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{18989B1D-99B5-455B-841C-AB7C74E4DDFC}\RelativePath SUCCESS Type: REG_SZ, Length: 14, Data: Videos 97 12:38:31,4747420 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{18989B1D-99B5-455B-841C-AB7C74E4DDFC}\ParsingName BUFFER OVERFLOW Length: 144 97 12:38:31,4747528 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{18989B1D-99B5-455B-841C-AB7C74E4DDFC}\ParsingName SUCCESS Type: REG_SZ, Length: 176, Data: shell:::{20D04FE0-3AEA-1069-A2D8-08002B30309D}\::{A0953C92-50DC-43BF-BE83-3742FED03C9C} 97 12:38:31,4747652 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{18989B1D-99B5-455B-841C-AB7C74E4DDFC}\InfoTip SUCCESS Type: REG_EXPAND_SZ, Length: 84, Data: @%SystemRoot%\system32\shell32.dll,-12690 97 12:38:31,4747777 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{18989B1D-99B5-455B-841C-AB7C74E4DDFC}\LocalizedName SUCCESS Type: REG_EXPAND_SZ, Length: 100, Data: @%SystemRoot%\system32\windows.storage.dll,-21791 97 12:38:31,4747904 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{18989B1D-99B5-455B-841C-AB7C74E4DDFC}\Icon SUCCESS Type: REG_EXPAND_SZ, Length: 80, Data: %SystemRoot%\system32\imageres.dll,-189 97 12:38:31,4748057 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{18989B1D-99B5-455B-841C-AB7C74E4DDFC}\Security NAME NOT FOUND Length: 144 97 12:38:31,4748165 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{18989B1D-99B5-455B-841C-AB7C74E4DDFC}\StreamResource NAME NOT FOUND Length: 144 97 12:38:31,4748270 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{18989B1D-99B5-455B-841C-AB7C74E4DDFC}\StreamResourceType NAME NOT FOUND Length: 144 97 12:38:31,4748373 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{18989B1D-99B5-455B-841C-AB7C74E4DDFC}\LocalRedirectOnly NAME NOT FOUND Length: 144 97 12:38:31,4748478 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{18989B1D-99B5-455B-841C-AB7C74E4DDFC}\Roamable SUCCESS Type: REG_DWORD, Length: 4, Data: 1 97 12:38:31,4748597 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{18989B1D-99B5-455B-841C-AB7C74E4DDFC}\PreCreate SUCCESS Type: REG_DWORD, Length: 4, Data: 1 97 12:38:31,4748716 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{18989B1D-99B5-455B-841C-AB7C74E4DDFC}\Stream NAME NOT FOUND Length: 144 97 12:38:31,4748824 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{18989B1D-99B5-455B-841C-AB7C74E4DDFC}\PublishExpandedPath NAME NOT FOUND Length: 144 97 12:38:31,4748927 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{18989B1D-99B5-455B-841C-AB7C74E4DDFC}\DefinitionFlags NAME NOT FOUND Length: 144 97 12:38:31,4749057 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{18989B1D-99B5-455B-841C-AB7C74E4DDFC}\Attributes SUCCESS Type: REG_DWORD, Length: 4, Data: 1 97 12:38:31,4749176 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{18989B1D-99B5-455B-841C-AB7C74E4DDFC}\FolderTypeID NAME NOT FOUND Length: 144 97 12:38:31,4749281 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{18989B1D-99B5-455B-841C-AB7C74E4DDFC}\InitFolderHandler NAME NOT FOUND Length: 144 97 12:38:31,4749420 MCLauncher.exe 84 RegQueryKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{18989B1D-99B5-455B-841C-AB7C74E4DDFC} SUCCESS Query: HandleTags, HandleTags: 0x400 97 12:38:31,4749481 MCLauncher.exe 84 RegOpenKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{18989B1D-99B5-455B-841C-AB7C74E4DDFC}\PropertyBag SUCCESS Desired Access: Read 97 12:38:31,4749572 MCLauncher.exe 84 RegCloseKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{18989B1D-99B5-455B-841C-AB7C74E4DDFC} SUCCESS 97 12:38:31,4749666 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{18989B1D-99B5-455B-841C-AB7C74E4DDFC}\PropertyBag\ThisPCPolicy SUCCESS Type: REG_SZ, Length: 10, Data: Hide 97 12:38:31,4749799 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{18989B1D-99B5-455B-841C-AB7C74E4DDFC}\PropertyBag\ThisPCPolicy SUCCESS Type: REG_SZ, Length: 10, Data: Hide 97 12:38:31,4750096 MCLauncher.exe 84 RegOpenKey HKCU SUCCESS Desired Access: Read 97 12:38:31,4750207 MCLauncher.exe 84 RegQueryKey HKCU SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:31,4750257 MCLauncher.exe 84 RegQueryKey HKCU SUCCESS Query: Name 97 12:38:31,4750331 MCLauncher.exe 84 RegOpenKey HKCU\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer SUCCESS Desired Access: Query Value 97 12:38:31,4750426 MCLauncher.exe 84 RegSetInfoKey HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 97 12:38:31,4750467 MCLauncher.exe 84 RegQueryValue HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer\DisablePersonalDirChange NAME NOT FOUND Length: 144 97 12:38:31,4750592 MCLauncher.exe 84 RegCloseKey HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer SUCCESS 97 12:38:31,4750689 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:31,4750739 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: Name 97 12:38:31,4750825 MCLauncher.exe 84 RegOpenKey HKLM\Software\WOW6432Node\Microsoft\Windows NT\CurrentVersion\Terminal Server NAME NOT FOUND Desired Access: Read 97 12:38:31,4750935 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:31,4750982 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: Name 97 12:38:31,4751052 MCLauncher.exe 84 RegOpenKey HKLM\Software\WOW6432Node\Microsoft\Windows NT\CurrentVersion\Terminal Server NAME NOT FOUND Desired Access: Read 97 12:38:31,4751179 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:31,4751226 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: Name 97 12:38:31,4751307 MCLauncher.exe 84 RegOpenKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows NT\CurrentVersion\ProfileList\S-1-5-21-3477790013-1571897634-1299942168-1000\fdeploy REPARSE Desired Access: Read 97 12:38:31,4751379 MCLauncher.exe 84 RegOpenKey HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\ProfileList\S-1-5-21-3477790013-1571897634-1299942168-1000\fdeploy NAME NOT FOUND Desired Access: Read 97 12:38:31,4751476 MCLauncher.exe 84 RegQueryKey HKCU SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:31,4751520 MCLauncher.exe 84 RegQueryKey HKCU SUCCESS Query: Name 97 12:38:31,4751592 MCLauncher.exe 84 RegOpenKey HKCU\Software\Microsoft\Windows\CurrentVersion\Explorer\User Shell Folders SUCCESS Desired Access: Write 97 12:38:31,4751678 MCLauncher.exe 84 RegSetInfoKey HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\User Shell Folders SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 97 12:38:31,4751722 MCLauncher.exe 84 RegCloseKey HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\User Shell Folders SUCCESS 97 12:38:31,4751764 MCLauncher.exe 84 RegCloseKey HKCU SUCCESS 97 12:38:31,4751974 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:31,4752024 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: Name 97 12:38:31,4752107 MCLauncher.exe 84 RegOpenKey HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS Desired Access: Read 97 12:38:31,4752190 MCLauncher.exe 84 RegSetInfoKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 97 12:38:31,4752254 MCLauncher.exe 84 RegQueryKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS Query: HandleTags, HandleTags: 0x400 97 12:38:31,4752307 MCLauncher.exe 84 RegOpenKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{52A4F021-7B75-48A9-9F6B-4B87A210BC8F} SUCCESS Desired Access: Read 97 12:38:31,4752384 MCLauncher.exe 84 RegCloseKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS 97 12:38:31,4752434 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{52a4f021-7b75-48a9-9f6b-4b87a210bc8f}\Category SUCCESS Type: REG_DWORD, Length: 4, Data: 4 97 12:38:31,4752576 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{52a4f021-7b75-48a9-9f6b-4b87a210bc8f}\Name SUCCESS Type: REG_SZ, Length: 26, Data: Quick Launch 97 12:38:31,4752709 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{52a4f021-7b75-48a9-9f6b-4b87a210bc8f}\ParentFolder SUCCESS Type: REG_SZ, Length: 78, Data: {3EB685DB-65F9-4CF6-A03A-E3EF65729F3D} 97 12:38:31,4752836 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{52a4f021-7b75-48a9-9f6b-4b87a210bc8f}\Description NAME NOT FOUND Length: 144 97 12:38:31,4752944 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{52a4f021-7b75-48a9-9f6b-4b87a210bc8f}\RelativePath SUCCESS Type: REG_SZ, Length: 82, Data: Microsoft\Internet Explorer\Quick Launch 97 12:38:31,4753066 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{52a4f021-7b75-48a9-9f6b-4b87a210bc8f}\ParsingName NAME NOT FOUND Length: 144 97 12:38:31,4753174 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{52a4f021-7b75-48a9-9f6b-4b87a210bc8f}\InfoTip NAME NOT FOUND Length: 144 97 12:38:31,4753279 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{52a4f021-7b75-48a9-9f6b-4b87a210bc8f}\LocalizedName NAME NOT FOUND Length: 144 97 12:38:31,4753382 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{52a4f021-7b75-48a9-9f6b-4b87a210bc8f}\Icon NAME NOT FOUND Length: 144 97 12:38:31,4753484 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{52a4f021-7b75-48a9-9f6b-4b87a210bc8f}\Security NAME NOT FOUND Length: 144 97 12:38:31,4753587 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{52a4f021-7b75-48a9-9f6b-4b87a210bc8f}\StreamResource NAME NOT FOUND Length: 144 97 12:38:31,4753689 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{52a4f021-7b75-48a9-9f6b-4b87a210bc8f}\StreamResourceType NAME NOT FOUND Length: 144 97 12:38:31,4753792 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{52a4f021-7b75-48a9-9f6b-4b87a210bc8f}\LocalRedirectOnly NAME NOT FOUND Length: 144 97 12:38:31,4753894 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{52a4f021-7b75-48a9-9f6b-4b87a210bc8f}\Roamable NAME NOT FOUND Length: 144 97 12:38:31,4753997 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{52a4f021-7b75-48a9-9f6b-4b87a210bc8f}\PreCreate NAME NOT FOUND Length: 144 97 12:38:31,4754102 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{52a4f021-7b75-48a9-9f6b-4b87a210bc8f}\Stream NAME NOT FOUND Length: 144 97 12:38:31,4754205 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{52a4f021-7b75-48a9-9f6b-4b87a210bc8f}\PublishExpandedPath NAME NOT FOUND Length: 144 97 12:38:31,4754310 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{52a4f021-7b75-48a9-9f6b-4b87a210bc8f}\DefinitionFlags NAME NOT FOUND Length: 144 97 12:38:31,4754412 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{52a4f021-7b75-48a9-9f6b-4b87a210bc8f}\Attributes NAME NOT FOUND Length: 144 97 12:38:31,4754515 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{52a4f021-7b75-48a9-9f6b-4b87a210bc8f}\FolderTypeID NAME NOT FOUND Length: 144 97 12:38:31,4754617 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{52a4f021-7b75-48a9-9f6b-4b87a210bc8f}\InitFolderHandler NAME NOT FOUND Length: 144 97 12:38:31,4754756 MCLauncher.exe 84 RegQueryKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{52a4f021-7b75-48a9-9f6b-4b87a210bc8f} SUCCESS Query: HandleTags, HandleTags: 0x400 97 12:38:31,4754814 MCLauncher.exe 84 RegOpenKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{52a4f021-7b75-48a9-9f6b-4b87a210bc8f}\PropertyBag NAME NOT FOUND Desired Access: Read 97 12:38:31,4754900 MCLauncher.exe 84 RegCloseKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{52a4f021-7b75-48a9-9f6b-4b87a210bc8f} SUCCESS 97 12:38:31,4754989 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:31,4755039 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: Name 97 12:38:31,4755119 MCLauncher.exe 84 RegOpenKey HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS Desired Access: Read 97 12:38:31,4755191 MCLauncher.exe 84 RegSetInfoKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 97 12:38:31,4755252 MCLauncher.exe 84 RegQueryKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS Query: HandleTags, HandleTags: 0x400 97 12:38:31,4755302 MCLauncher.exe 84 RegOpenKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{DE974D24-D9C6-4D3E-BF91-F4455120B917} SUCCESS Desired Access: Read 97 12:38:31,4755377 MCLauncher.exe 84 RegCloseKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS 97 12:38:31,4755421 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{DE974D24-D9C6-4D3E-BF91-F4455120B917}\Category SUCCESS Type: REG_DWORD, Length: 4, Data: 2 97 12:38:31,4755551 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{DE974D24-D9C6-4D3E-BF91-F4455120B917}\Name SUCCESS Type: REG_SZ, Length: 44, Data: ProgramFilesCommonX86 97 12:38:31,4755681 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{DE974D24-D9C6-4D3E-BF91-F4455120B917}\ParentFolder NAME NOT FOUND Length: 144 97 12:38:31,4755889 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{DE974D24-D9C6-4D3E-BF91-F4455120B917}\Description NAME NOT FOUND Length: 144 97 12:38:31,4756005 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{DE974D24-D9C6-4D3E-BF91-F4455120B917}\RelativePath NAME NOT FOUND Length: 144 97 12:38:31,4756111 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{DE974D24-D9C6-4D3E-BF91-F4455120B917}\ParsingName NAME NOT FOUND Length: 144 97 12:38:31,4756213 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{DE974D24-D9C6-4D3E-BF91-F4455120B917}\InfoTip NAME NOT FOUND Length: 144 97 12:38:31,4756319 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{DE974D24-D9C6-4D3E-BF91-F4455120B917}\LocalizedName NAME NOT FOUND Length: 144 97 12:38:31,4756421 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{DE974D24-D9C6-4D3E-BF91-F4455120B917}\Icon NAME NOT FOUND Length: 144 97 12:38:31,4756521 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{DE974D24-D9C6-4D3E-BF91-F4455120B917}\Security NAME NOT FOUND Length: 144 97 12:38:31,4756623 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{DE974D24-D9C6-4D3E-BF91-F4455120B917}\StreamResource NAME NOT FOUND Length: 144 97 12:38:31,4756726 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{DE974D24-D9C6-4D3E-BF91-F4455120B917}\StreamResourceType NAME NOT FOUND Length: 144 97 12:38:31,4756828 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{DE974D24-D9C6-4D3E-BF91-F4455120B917}\LocalRedirectOnly NAME NOT FOUND Length: 144 97 12:38:31,4756931 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{DE974D24-D9C6-4D3E-BF91-F4455120B917}\Roamable NAME NOT FOUND Length: 144 97 12:38:31,4757033 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{DE974D24-D9C6-4D3E-BF91-F4455120B917}\PreCreate NAME NOT FOUND Length: 144 97 12:38:31,4757136 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{DE974D24-D9C6-4D3E-BF91-F4455120B917}\Stream NAME NOT FOUND Length: 144 97 12:38:31,4757261 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{DE974D24-D9C6-4D3E-BF91-F4455120B917}\PublishExpandedPath NAME NOT FOUND Length: 144 97 12:38:31,4757363 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{DE974D24-D9C6-4D3E-BF91-F4455120B917}\DefinitionFlags NAME NOT FOUND Length: 144 97 12:38:31,4757468 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{DE974D24-D9C6-4D3E-BF91-F4455120B917}\Attributes NAME NOT FOUND Length: 144 97 12:38:31,4757571 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{DE974D24-D9C6-4D3E-BF91-F4455120B917}\FolderTypeID NAME NOT FOUND Length: 144 97 12:38:31,4757673 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{DE974D24-D9C6-4D3E-BF91-F4455120B917}\InitFolderHandler NAME NOT FOUND Length: 144 97 12:38:31,4757809 MCLauncher.exe 84 RegQueryKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{DE974D24-D9C6-4D3E-BF91-F4455120B917} SUCCESS Query: HandleTags, HandleTags: 0x400 97 12:38:31,4757870 MCLauncher.exe 84 RegOpenKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{DE974D24-D9C6-4D3E-BF91-F4455120B917}\PropertyBag NAME NOT FOUND Desired Access: Read 97 12:38:31,4757953 MCLauncher.exe 84 RegCloseKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{DE974D24-D9C6-4D3E-BF91-F4455120B917} SUCCESS 97 12:38:31,4758042 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:31,4758089 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: Name 97 12:38:31,4758172 MCLauncher.exe 84 RegOpenKey HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS Desired Access: Read 97 12:38:31,4758244 MCLauncher.exe 84 RegSetInfoKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 97 12:38:31,4758305 MCLauncher.exe 84 RegQueryKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS Query: HandleTags, HandleTags: 0x400 97 12:38:31,4758355 MCLauncher.exe 84 RegOpenKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{24D89E24-2F19-4534-9DDE-6A6671FBB8FE} SUCCESS Desired Access: Read 97 12:38:31,4758430 MCLauncher.exe 84 RegCloseKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS 97 12:38:31,4758471 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{24D89E24-2F19-4534-9DDE-6A6671FBB8FE}\Category SUCCESS Type: REG_DWORD, Length: 4, Data: 4 97 12:38:31,4758604 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{24D89E24-2F19-4534-9DDE-6A6671FBB8FE}\Name SUCCESS Type: REG_SZ, Length: 36, Data: OneDriveDocuments 97 12:38:31,4758734 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{24D89E24-2F19-4534-9DDE-6A6671FBB8FE}\ParentFolder SUCCESS Type: REG_SZ, Length: 78, Data: {A52BBA46-E9E1-435f-B3D9-28DAA648C0F6} 97 12:38:31,4758859 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{24D89E24-2F19-4534-9DDE-6A6671FBB8FE}\Description NAME NOT FOUND Length: 144 97 12:38:31,4758967 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{24D89E24-2F19-4534-9DDE-6A6671FBB8FE}\RelativePath SUCCESS Type: REG_SZ, Length: 20, Data: Documents 97 12:38:31,4759092 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{24D89E24-2F19-4534-9DDE-6A6671FBB8FE}\ParsingName NAME NOT FOUND Length: 144 97 12:38:31,4759197 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{24D89E24-2F19-4534-9DDE-6A6671FBB8FE}\InfoTip NAME NOT FOUND Length: 144 97 12:38:31,4759300 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{24D89E24-2F19-4534-9DDE-6A6671FBB8FE}\LocalizedName NAME NOT FOUND Length: 144 97 12:38:31,4759405 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{24D89E24-2F19-4534-9DDE-6A6671FBB8FE}\Icon NAME NOT FOUND Length: 144 97 12:38:31,4759510 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{24D89E24-2F19-4534-9DDE-6A6671FBB8FE}\Security NAME NOT FOUND Length: 144 97 12:38:31,4759616 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{24D89E24-2F19-4534-9DDE-6A6671FBB8FE}\StreamResource NAME NOT FOUND Length: 144 97 12:38:31,4759718 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{24D89E24-2F19-4534-9DDE-6A6671FBB8FE}\StreamResourceType NAME NOT FOUND Length: 144 97 12:38:31,4759821 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{24D89E24-2F19-4534-9DDE-6A6671FBB8FE}\LocalRedirectOnly NAME NOT FOUND Length: 144 97 12:38:31,4759926 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{24D89E24-2F19-4534-9DDE-6A6671FBB8FE}\Roamable NAME NOT FOUND Length: 144 97 12:38:31,4760028 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{24D89E24-2F19-4534-9DDE-6A6671FBB8FE}\PreCreate NAME NOT FOUND Length: 144 97 12:38:31,4760134 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{24D89E24-2F19-4534-9DDE-6A6671FBB8FE}\Stream NAME NOT FOUND Length: 144 97 12:38:31,4760239 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{24D89E24-2F19-4534-9DDE-6A6671FBB8FE}\PublishExpandedPath NAME NOT FOUND Length: 144 97 12:38:31,4760341 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{24D89E24-2F19-4534-9DDE-6A6671FBB8FE}\DefinitionFlags SUCCESS Type: REG_DWORD, Length: 4, Data: 64 97 12:38:31,4760461 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{24D89E24-2F19-4534-9DDE-6A6671FBB8FE}\Attributes SUCCESS Type: REG_DWORD, Length: 4, Data: 1 97 12:38:31,4760580 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{24D89E24-2F19-4534-9DDE-6A6671FBB8FE}\FolderTypeID SUCCESS Type: REG_SZ, Length: 78, Data: {DD61BD66-70E8-48dd-9655-65C5E1AAC2D1} 97 12:38:31,4760704 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{24D89E24-2F19-4534-9DDE-6A6671FBB8FE}\InitFolderHandler NAME NOT FOUND Length: 144 97 12:38:31,4760843 MCLauncher.exe 84 RegQueryKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{24D89E24-2F19-4534-9DDE-6A6671FBB8FE} SUCCESS Query: HandleTags, HandleTags: 0x400 97 12:38:31,4760901 MCLauncher.exe 84 RegOpenKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{24D89E24-2F19-4534-9DDE-6A6671FBB8FE}\PropertyBag SUCCESS Desired Access: Read 97 12:38:31,4760990 MCLauncher.exe 84 RegCloseKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{24D89E24-2F19-4534-9DDE-6A6671FBB8FE} SUCCESS 97 12:38:31,4761073 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:31,4761120 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: Name 97 12:38:31,4761200 MCLauncher.exe 84 RegOpenKey HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS Desired Access: Read 97 12:38:31,4761272 MCLauncher.exe 84 RegSetInfoKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 97 12:38:31,4761331 MCLauncher.exe 84 RegQueryKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS Query: HandleTags, HandleTags: 0x400 97 12:38:31,4761380 MCLauncher.exe 84 RegOpenKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{31C0DD25-9439-4F12-BF41-7FF4EDA38722} SUCCESS Desired Access: Read 97 12:38:31,4761455 MCLauncher.exe 84 RegCloseKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS 97 12:38:31,4761497 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{31C0DD25-9439-4F12-BF41-7FF4EDA38722}\Category SUCCESS Type: REG_DWORD, Length: 4, Data: 4 97 12:38:31,4761627 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{31C0DD25-9439-4F12-BF41-7FF4EDA38722}\Name SUCCESS Type: REG_SZ, Length: 22, Data: 3D Objects 97 12:38:31,4761760 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{31C0DD25-9439-4F12-BF41-7FF4EDA38722}\ParentFolder SUCCESS Type: REG_SZ, Length: 78, Data: {5E6C858F-0E22-4760-9AFE-EA3317B67173} 97 12:38:31,4761885 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{31C0DD25-9439-4F12-BF41-7FF4EDA38722}\Description NAME NOT FOUND Length: 144 97 12:38:31,4761990 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{31C0DD25-9439-4F12-BF41-7FF4EDA38722}\RelativePath SUCCESS Type: REG_SZ, Length: 22, Data: 3D Objects 97 12:38:31,4762112 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{31C0DD25-9439-4F12-BF41-7FF4EDA38722}\ParsingName NAME NOT FOUND Length: 144 97 12:38:31,4762217 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{31C0DD25-9439-4F12-BF41-7FF4EDA38722}\InfoTip NAME NOT FOUND Length: 144 97 12:38:31,4762322 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{31C0DD25-9439-4F12-BF41-7FF4EDA38722}\LocalizedName SUCCESS Type: REG_EXPAND_SZ, Length: 100, Data: @%SystemRoot%\system32\windows.storage.dll,-21825 97 12:38:31,4762461 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{31C0DD25-9439-4F12-BF41-7FF4EDA38722}\Icon SUCCESS Type: REG_EXPAND_SZ, Length: 80, Data: %SystemRoot%\system32\imageres.dll,-198 97 12:38:31,4762588 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{31C0DD25-9439-4F12-BF41-7FF4EDA38722}\Security NAME NOT FOUND Length: 144 97 12:38:31,4762696 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{31C0DD25-9439-4F12-BF41-7FF4EDA38722}\StreamResource NAME NOT FOUND Length: 144 97 12:38:31,4762802 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{31C0DD25-9439-4F12-BF41-7FF4EDA38722}\StreamResourceType NAME NOT FOUND Length: 144 97 12:38:31,4762907 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{31C0DD25-9439-4F12-BF41-7FF4EDA38722}\LocalRedirectOnly NAME NOT FOUND Length: 144 97 12:38:31,4763009 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{31C0DD25-9439-4F12-BF41-7FF4EDA38722}\Roamable NAME NOT FOUND Length: 144 97 12:38:31,4763115 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{31C0DD25-9439-4F12-BF41-7FF4EDA38722}\PreCreate NAME NOT FOUND Length: 144 97 12:38:31,4763217 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{31C0DD25-9439-4F12-BF41-7FF4EDA38722}\Stream NAME NOT FOUND Length: 144 97 12:38:31,4763323 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{31C0DD25-9439-4F12-BF41-7FF4EDA38722}\PublishExpandedPath NAME NOT FOUND Length: 144 97 12:38:31,4763425 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{31C0DD25-9439-4F12-BF41-7FF4EDA38722}\DefinitionFlags NAME NOT FOUND Length: 144 97 12:38:31,4763528 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{31C0DD25-9439-4F12-BF41-7FF4EDA38722}\Attributes NAME NOT FOUND Length: 144 97 12:38:31,4763636 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{31C0DD25-9439-4F12-BF41-7FF4EDA38722}\FolderTypeID SUCCESS Type: REG_SZ, Length: 78, Data: {b3690e58-e961-423b-b687-386ebfd83239} 97 12:38:31,4763755 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{31C0DD25-9439-4F12-BF41-7FF4EDA38722}\InitFolderHandler NAME NOT FOUND Length: 144 97 12:38:31,4763893 MCLauncher.exe 84 RegQueryKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{31C0DD25-9439-4F12-BF41-7FF4EDA38722} SUCCESS Query: HandleTags, HandleTags: 0x400 97 12:38:31,4763954 MCLauncher.exe 84 RegOpenKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{31C0DD25-9439-4F12-BF41-7FF4EDA38722}\PropertyBag NAME NOT FOUND Desired Access: Read 97 12:38:31,4764040 MCLauncher.exe 84 RegCloseKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{31C0DD25-9439-4F12-BF41-7FF4EDA38722} SUCCESS 97 12:38:31,4764134 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:31,4764187 MCLauncher.exe 84 RegOpenKey HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\AllowedEnumeration NAME NOT FOUND Desired Access: Read 97 12:38:31,4764306 MCLauncher.exe 84 RegQueryKey HKCU SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:31,4764356 MCLauncher.exe 84 RegOpenKey HKCU\Software\Microsoft\Windows\CurrentVersion\Explorer\AllowedEnumeration NAME NOT FOUND Desired Access: Read 97 12:38:31,4764550 MCLauncher.exe 84 RegQueryKey HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer SUCCESS Query: HandleTags, HandleTags: 0x400 97 12:38:31,4764605 MCLauncher.exe 84 RegOpenKey HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\SessionInfo\1 SUCCESS Desired Access: Query Value 97 12:38:31,4764700 MCLauncher.exe 84 RegQueryKey HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\SessionInfo\1 SUCCESS Query: HandleTags, HandleTags: 0x400 97 12:38:31,4764749 MCLauncher.exe 84 RegOpenKey HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\SessionInfo\1\KnownFolders NAME NOT FOUND Desired Access: Query Value 97 12:38:31,4764819 MCLauncher.exe 84 RegCloseKey HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\SessionInfo\1 SUCCESS 97 12:38:31,4764907 MCLauncher.exe 84 RegOpenKey HKCU SUCCESS Desired Access: Read 97 12:38:31,4764988 MCLauncher.exe 84 RegQueryKey HKCU SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:31,4765035 MCLauncher.exe 84 RegQueryKey HKCU SUCCESS Query: Name 97 12:38:31,4765104 MCLauncher.exe 84 RegOpenKey HKCU\Software\Microsoft\Windows\CurrentVersion\Explorer\User Shell Folders SUCCESS Desired Access: Read 97 12:38:31,4765284 MCLauncher.exe 84 RegSetInfoKey HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\User Shell Folders SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 97 12:38:31,4765342 MCLauncher.exe 84 RegCloseKey HKCU SUCCESS 97 12:38:31,4765395 MCLauncher.exe 84 RegQueryValue HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\User Shell Folders\{31C0DD25-9439-4F12-BF41-7FF4EDA38722} NAME NOT FOUND Length: 144 97 12:38:31,4765774 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:31,4765830 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: Name 97 12:38:31,4765924 MCLauncher.exe 84 RegOpenKey HKLM\Software\WOW6432Node\Microsoft\Windows NT\CurrentVersion\ProfileList\S-1-5-21-3477790013-1571897634-1299942168-1000 REPARSE Desired Access: Read 97 12:38:31,4766010 MCLauncher.exe 84 RegOpenKey HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\ProfileList\S-1-5-21-3477790013-1571897634-1299942168-1000 SUCCESS Desired Access: Read 97 12:38:31,4766074 MCLauncher.exe 84 RegSetInfoKey HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\ProfileList\S-1-5-21-3477790013-1571897634-1299942168-1000 SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 97 12:38:31,4766118 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\ProfileList\S-1-5-21-3477790013-1571897634-1299942168-1000\ProfileImagePath SUCCESS Type: REG_EXPAND_SZ, Length: 28, Data: C:\Users\User 97 12:38:31,4766262 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\ProfileList\S-1-5-21-3477790013-1571897634-1299942168-1000\ProfileImagePath SUCCESS Type: REG_EXPAND_SZ, Length: 28, Data: C:\Users\User 97 12:38:31,4766401 MCLauncher.exe 84 RegCloseKey HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\ProfileList\S-1-5-21-3477790013-1571897634-1299942168-1000 SUCCESS 97 12:38:31,4766484 MCLauncher.exe 84 RegCloseKey HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\User Shell Folders SUCCESS 97 12:38:31,4766578 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:31,4766628 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: Name 97 12:38:31,4766716 MCLauncher.exe 84 RegOpenKey HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS Desired Access: Read 97 12:38:31,4766800 MCLauncher.exe 84 RegSetInfoKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 97 12:38:31,4766863 MCLauncher.exe 84 RegQueryKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS Query: HandleTags, HandleTags: 0x400 97 12:38:31,4766919 MCLauncher.exe 84 RegOpenKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{6F0CD92B-2E97-45D1-88FF-B0D186B8DEDD} SUCCESS Desired Access: Read 97 12:38:31,4766994 MCLauncher.exe 84 RegCloseKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS 97 12:38:31,4767041 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{6F0CD92B-2E97-45D1-88FF-B0D186B8DEDD}\Category SUCCESS Type: REG_DWORD, Length: 4, Data: 1 97 12:38:31,4767176 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{6F0CD92B-2E97-45D1-88FF-B0D186B8DEDD}\Name SUCCESS Type: REG_SZ, Length: 36, Data: ConnectionsFolder 97 12:38:31,4767309 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{6F0CD92B-2E97-45D1-88FF-B0D186B8DEDD}\ParentFolder NAME NOT FOUND Length: 144 97 12:38:31,4767420 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{6F0CD92B-2E97-45D1-88FF-B0D186B8DEDD}\Description NAME NOT FOUND Length: 144 97 12:38:31,4767553 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{6F0CD92B-2E97-45D1-88FF-B0D186B8DEDD}\RelativePath NAME NOT FOUND Length: 144 97 12:38:31,4767658 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{6F0CD92B-2E97-45D1-88FF-B0D186B8DEDD}\ParsingName BUFFER OVERFLOW Length: 144 97 12:38:31,4767764 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{6F0CD92B-2E97-45D1-88FF-B0D186B8DEDD}\ParsingName SUCCESS Type: REG_SZ, Length: 168, Data: ::{26EE0668-A00A-44D7-9371-BEB064C98683}\0\::{7007ACC7-3202-11D1-AAD2-00805FC1270E} 97 12:38:31,4767891 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{6F0CD92B-2E97-45D1-88FF-B0D186B8DEDD}\InfoTip NAME NOT FOUND Length: 144 97 12:38:31,4767999 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{6F0CD92B-2E97-45D1-88FF-B0D186B8DEDD}\LocalizedName NAME NOT FOUND Length: 144 97 12:38:31,4768102 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{6F0CD92B-2E97-45D1-88FF-B0D186B8DEDD}\Icon NAME NOT FOUND Length: 144 97 12:38:31,4768204 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{6F0CD92B-2E97-45D1-88FF-B0D186B8DEDD}\Security NAME NOT FOUND Length: 144 97 12:38:31,4768310 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{6F0CD92B-2E97-45D1-88FF-B0D186B8DEDD}\StreamResource NAME NOT FOUND Length: 144 97 12:38:31,4768415 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{6F0CD92B-2E97-45D1-88FF-B0D186B8DEDD}\StreamResourceType NAME NOT FOUND Length: 144 97 12:38:31,4768517 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{6F0CD92B-2E97-45D1-88FF-B0D186B8DEDD}\LocalRedirectOnly NAME NOT FOUND Length: 144 97 12:38:31,4768623 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{6F0CD92B-2E97-45D1-88FF-B0D186B8DEDD}\Roamable NAME NOT FOUND Length: 144 97 12:38:31,4768722 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{6F0CD92B-2E97-45D1-88FF-B0D186B8DEDD}\PreCreate NAME NOT FOUND Length: 144 97 12:38:31,4768825 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{6F0CD92B-2E97-45D1-88FF-B0D186B8DEDD}\Stream NAME NOT FOUND Length: 144 97 12:38:31,4768927 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{6F0CD92B-2E97-45D1-88FF-B0D186B8DEDD}\PublishExpandedPath NAME NOT FOUND Length: 144 97 12:38:31,4769033 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{6F0CD92B-2E97-45D1-88FF-B0D186B8DEDD}\DefinitionFlags NAME NOT FOUND Length: 144 97 12:38:31,4769138 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{6F0CD92B-2E97-45D1-88FF-B0D186B8DEDD}\Attributes NAME NOT FOUND Length: 144 97 12:38:31,4769240 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{6F0CD92B-2E97-45D1-88FF-B0D186B8DEDD}\FolderTypeID NAME NOT FOUND Length: 144 97 12:38:31,4769343 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{6F0CD92B-2E97-45D1-88FF-B0D186B8DEDD}\InitFolderHandler NAME NOT FOUND Length: 144 97 12:38:31,4769479 MCLauncher.exe 84 RegQueryKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{6F0CD92B-2E97-45D1-88FF-B0D186B8DEDD} SUCCESS Query: HandleTags, HandleTags: 0x400 97 12:38:31,4769542 MCLauncher.exe 84 RegOpenKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{6F0CD92B-2E97-45D1-88FF-B0D186B8DEDD}\PropertyBag NAME NOT FOUND Desired Access: Read 97 12:38:31,4769623 MCLauncher.exe 84 RegCloseKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{6F0CD92B-2E97-45D1-88FF-B0D186B8DEDD} SUCCESS 97 12:38:31,4769717 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:31,4769767 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: Name 97 12:38:31,4769850 MCLauncher.exe 84 RegOpenKey HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS Desired Access: Read 97 12:38:31,4769925 MCLauncher.exe 84 RegSetInfoKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 97 12:38:31,4769983 MCLauncher.exe 84 RegQueryKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS Query: HandleTags, HandleTags: 0x400 97 12:38:31,4770144 MCLauncher.exe 84 RegOpenKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{76FC4E2D-D6AD-4519-A663-37BD56068185} SUCCESS Desired Access: Read 97 12:38:31,4770221 MCLauncher.exe 84 RegCloseKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS 97 12:38:31,4770266 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{76FC4E2D-D6AD-4519-A663-37BD56068185}\Category SUCCESS Type: REG_DWORD, Length: 4, Data: 1 97 12:38:31,4770399 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{76FC4E2D-D6AD-4519-A663-37BD56068185}\Name SUCCESS Type: REG_SZ, Length: 30, Data: PrintersFolder 97 12:38:31,4770529 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{76FC4E2D-D6AD-4519-A663-37BD56068185}\ParentFolder NAME NOT FOUND Length: 144 97 12:38:31,4770637 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{76FC4E2D-D6AD-4519-A663-37BD56068185}\Description NAME NOT FOUND Length: 144 97 12:38:31,4770742 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{76FC4E2D-D6AD-4519-A663-37BD56068185}\RelativePath NAME NOT FOUND Length: 144 97 12:38:31,4770845 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{76FC4E2D-D6AD-4519-A663-37BD56068185}\ParsingName BUFFER OVERFLOW Length: 144 97 12:38:31,4770978 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{76FC4E2D-D6AD-4519-A663-37BD56068185}\ParsingName SUCCESS Type: REG_SZ, Length: 164, Data: ::{21EC2020-3AEA-1069-A2DD-08002B30309D}\::{2227A280-3AEA-1069-A2DE-08002B30309D} 97 12:38:31,4771127 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{76FC4E2D-D6AD-4519-A663-37BD56068185}\InfoTip NAME NOT FOUND Length: 144 97 12:38:31,4771235 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{76FC4E2D-D6AD-4519-A663-37BD56068185}\LocalizedName NAME NOT FOUND Length: 144 97 12:38:31,4771338 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{76FC4E2D-D6AD-4519-A663-37BD56068185}\Icon NAME NOT FOUND Length: 144 97 12:38:31,4771443 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{76FC4E2D-D6AD-4519-A663-37BD56068185}\Security NAME NOT FOUND Length: 144 97 12:38:31,4771546 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{76FC4E2D-D6AD-4519-A663-37BD56068185}\StreamResource NAME NOT FOUND Length: 144 97 12:38:31,4771651 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{76FC4E2D-D6AD-4519-A663-37BD56068185}\StreamResourceType NAME NOT FOUND Length: 144 97 12:38:31,4771753 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{76FC4E2D-D6AD-4519-A663-37BD56068185}\LocalRedirectOnly NAME NOT FOUND Length: 144 97 12:38:31,4771856 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{76FC4E2D-D6AD-4519-A663-37BD56068185}\Roamable NAME NOT FOUND Length: 144 97 12:38:31,4771958 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{76FC4E2D-D6AD-4519-A663-37BD56068185}\PreCreate NAME NOT FOUND Length: 144 97 12:38:31,4772064 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{76FC4E2D-D6AD-4519-A663-37BD56068185}\Stream NAME NOT FOUND Length: 144 97 12:38:31,4772166 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{76FC4E2D-D6AD-4519-A663-37BD56068185}\PublishExpandedPath NAME NOT FOUND Length: 144 97 12:38:31,4772271 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{76FC4E2D-D6AD-4519-A663-37BD56068185}\DefinitionFlags NAME NOT FOUND Length: 144 97 12:38:31,4772374 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{76FC4E2D-D6AD-4519-A663-37BD56068185}\Attributes NAME NOT FOUND Length: 144 97 12:38:31,4772479 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{76FC4E2D-D6AD-4519-A663-37BD56068185}\FolderTypeID NAME NOT FOUND Length: 144 97 12:38:31,4772582 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{76FC4E2D-D6AD-4519-A663-37BD56068185}\InitFolderHandler NAME NOT FOUND Length: 144 97 12:38:31,4772718 MCLauncher.exe 84 RegQueryKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{76FC4E2D-D6AD-4519-A663-37BD56068185} SUCCESS Query: HandleTags, HandleTags: 0x400 97 12:38:31,4772778 MCLauncher.exe 84 RegOpenKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{76FC4E2D-D6AD-4519-A663-37BD56068185}\PropertyBag NAME NOT FOUND Desired Access: Read 97 12:38:31,4772859 MCLauncher.exe 84 RegCloseKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{76FC4E2D-D6AD-4519-A663-37BD56068185} SUCCESS 97 12:38:31,4772947 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:31,4772997 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: Name 97 12:38:31,4773078 MCLauncher.exe 84 RegOpenKey HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS Desired Access: Read 97 12:38:31,4773152 MCLauncher.exe 84 RegSetInfoKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 97 12:38:31,4773213 MCLauncher.exe 84 RegQueryKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS Query: HandleTags, HandleTags: 0x400 97 12:38:31,4773263 MCLauncher.exe 84 RegOpenKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{491E922F-5643-4AF4-A7EB-4E7A138D8174} SUCCESS Desired Access: Read 97 12:38:31,4773335 MCLauncher.exe 84 RegCloseKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS 97 12:38:31,4773380 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{491E922F-5643-4af4-A7EB-4E7A138D8174}\Category SUCCESS Type: REG_DWORD, Length: 4, Data: 4 97 12:38:31,4773507 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{491E922F-5643-4af4-A7EB-4E7A138D8174}\Name SUCCESS Type: REG_SZ, Length: 28, Data: VideosLibrary 97 12:38:31,4773640 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{491E922F-5643-4af4-A7EB-4E7A138D8174}\ParentFolder SUCCESS Type: REG_SZ, Length: 78, Data: {1B3EA5DC-B587-4786-B4EF-BD1DC332AEAE} 97 12:38:31,4773768 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{491E922F-5643-4af4-A7EB-4E7A138D8174}\Description NAME NOT FOUND Length: 144 97 12:38:31,4773873 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{491E922F-5643-4af4-A7EB-4E7A138D8174}\RelativePath SUCCESS Type: REG_SZ, Length: 36, Data: Videos.library-ms 97 12:38:31,4773998 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{491E922F-5643-4af4-A7EB-4E7A138D8174}\ParsingName BUFFER OVERFLOW Length: 144 97 12:38:31,4774108 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{491E922F-5643-4af4-A7EB-4E7A138D8174}\ParsingName SUCCESS Type: REG_SZ, Length: 160, Data: ::{031E4825-7B94-4dc3-B131-E946B44C8DD5}\{491E922F-5643-4af4-A7EB-4E7A138D8174} 97 12:38:31,4774233 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{491E922F-5643-4af4-A7EB-4E7A138D8174}\InfoTip SUCCESS Type: REG_EXPAND_SZ, Length: 84, Data: @%SystemRoot%\system32\shell32.dll,-12690 97 12:38:31,4774360 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{491E922F-5643-4af4-A7EB-4E7A138D8174}\LocalizedName SUCCESS Type: REG_EXPAND_SZ, Length: 100, Data: @%SystemRoot%\system32\windows.storage.dll,-34620 97 12:38:31,4774488 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{491E922F-5643-4af4-A7EB-4E7A138D8174}\Icon SUCCESS Type: REG_EXPAND_SZ, Length: 82, Data: %SystemRoot%\system32\imageres.dll,-1005 97 12:38:31,4774613 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{491E922F-5643-4af4-A7EB-4E7A138D8174}\Security NAME NOT FOUND Length: 144 97 12:38:31,4774721 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{491E922F-5643-4af4-A7EB-4E7A138D8174}\StreamResource SUCCESS Type: REG_EXPAND_SZ, Length: 74, Data: %SystemRoot%\system32\shell32.dll,-4 97 12:38:31,4774845 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{491E922F-5643-4af4-A7EB-4E7A138D8174}\StreamResourceType SUCCESS Type: REG_SZ, Length: 16, Data: LIBRARY 97 12:38:31,4774976 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{491E922F-5643-4af4-A7EB-4E7A138D8174}\LocalRedirectOnly NAME NOT FOUND Length: 144 97 12:38:31,4775084 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{491E922F-5643-4af4-A7EB-4E7A138D8174}\Roamable NAME NOT FOUND Length: 144 97 12:38:31,4775189 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{491E922F-5643-4af4-A7EB-4E7A138D8174}\PreCreate SUCCESS Type: REG_DWORD, Length: 4, Data: 1 97 12:38:31,4775399 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{491E922F-5643-4af4-A7EB-4E7A138D8174}\Stream SUCCESS Type: REG_DWORD, Length: 4, Data: 1 97 12:38:31,4775532 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{491E922F-5643-4af4-A7EB-4E7A138D8174}\PublishExpandedPath NAME NOT FOUND Length: 144 97 12:38:31,4775640 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{491E922F-5643-4af4-A7EB-4E7A138D8174}\DefinitionFlags NAME NOT FOUND Length: 144 97 12:38:31,4775746 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{491E922F-5643-4af4-A7EB-4E7A138D8174}\Attributes NAME NOT FOUND Length: 144 97 12:38:31,4775851 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{491E922F-5643-4af4-A7EB-4E7A138D8174}\FolderTypeID NAME NOT FOUND Length: 144 97 12:38:31,4775956 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{491E922F-5643-4af4-A7EB-4E7A138D8174}\InitFolderHandler NAME NOT FOUND Length: 144 97 12:38:31,4776100 MCLauncher.exe 84 RegQueryKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{491E922F-5643-4af4-A7EB-4E7A138D8174} SUCCESS Query: HandleTags, HandleTags: 0x400 97 12:38:31,4776164 MCLauncher.exe 84 RegOpenKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{491E922F-5643-4af4-A7EB-4E7A138D8174}\PropertyBag SUCCESS Desired Access: Read 97 12:38:31,4776253 MCLauncher.exe 84 RegCloseKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{491E922F-5643-4af4-A7EB-4E7A138D8174} SUCCESS 97 12:38:31,4776352 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:31,4776402 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: Name 97 12:38:31,4776488 MCLauncher.exe 84 RegOpenKey HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS Desired Access: Read 97 12:38:31,4776560 MCLauncher.exe 84 RegSetInfoKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 97 12:38:31,4776621 MCLauncher.exe 84 RegQueryKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS Query: HandleTags, HandleTags: 0x400 97 12:38:31,4776671 MCLauncher.exe 84 RegOpenKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{33E28130-4E1E-4676-835A-98395C3BC3BB} SUCCESS Desired Access: Read 97 12:38:31,4776751 MCLauncher.exe 84 RegCloseKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS 97 12:38:31,4776796 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{33E28130-4E1E-4676-835A-98395C3BC3BB}\Category SUCCESS Type: REG_DWORD, Length: 4, Data: 4 97 12:38:31,4776929 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{33E28130-4E1E-4676-835A-98395C3BC3BB}\Name SUCCESS Type: REG_SZ, Length: 24, Data: My Pictures 97 12:38:31,4777062 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{33E28130-4E1E-4676-835A-98395C3BC3BB}\ParentFolder NAME NOT FOUND Length: 144 97 12:38:31,4777173 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{33E28130-4E1E-4676-835A-98395C3BC3BB}\Description NAME NOT FOUND Length: 144 97 12:38:31,4777275 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{33E28130-4E1E-4676-835A-98395C3BC3BB}\RelativePath SUCCESS Type: REG_SZ, Length: 18, Data: Pictures 97 12:38:31,4777403 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{33E28130-4E1E-4676-835A-98395C3BC3BB}\ParsingName BUFFER OVERFLOW Length: 144 97 12:38:31,4777511 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{33E28130-4E1E-4676-835A-98395C3BC3BB}\ParsingName SUCCESS Type: REG_SZ, Length: 176, Data: shell:::{20D04FE0-3AEA-1069-A2D8-08002B30309D}\::{3ADD1653-EB32-4CB0-BBD7-DFA0ABB5ACCA} 97 12:38:31,4777635 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{33E28130-4E1E-4676-835A-98395C3BC3BB}\InfoTip SUCCESS Type: REG_EXPAND_SZ, Length: 84, Data: @%SystemRoot%\system32\shell32.dll,-12688 97 12:38:31,4777763 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{33E28130-4E1E-4676-835A-98395C3BC3BB}\LocalizedName SUCCESS Type: REG_EXPAND_SZ, Length: 100, Data: @%SystemRoot%\system32\windows.storage.dll,-21779 97 12:38:31,4777890 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{33E28130-4E1E-4676-835A-98395C3BC3BB}\Icon SUCCESS Type: REG_EXPAND_SZ, Length: 80, Data: %SystemRoot%\system32\imageres.dll,-113 97 12:38:31,4778015 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{33E28130-4E1E-4676-835A-98395C3BC3BB}\Security NAME NOT FOUND Length: 144 97 12:38:31,4778123 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{33E28130-4E1E-4676-835A-98395C3BC3BB}\StreamResource NAME NOT FOUND Length: 144 97 12:38:31,4778225 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{33E28130-4E1E-4676-835A-98395C3BC3BB}\StreamResourceType NAME NOT FOUND Length: 144 97 12:38:31,4778331 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{33E28130-4E1E-4676-835A-98395C3BC3BB}\LocalRedirectOnly NAME NOT FOUND Length: 144 97 12:38:31,4778461 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{33E28130-4E1E-4676-835A-98395C3BC3BB}\Roamable SUCCESS Type: REG_DWORD, Length: 4, Data: 1 97 12:38:31,4778580 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{33E28130-4E1E-4676-835A-98395C3BC3BB}\PreCreate SUCCESS Type: REG_DWORD, Length: 4, Data: 1 97 12:38:31,4778702 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{33E28130-4E1E-4676-835A-98395C3BC3BB}\Stream NAME NOT FOUND Length: 144 97 12:38:31,4778807 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{33E28130-4E1E-4676-835A-98395C3BC3BB}\PublishExpandedPath NAME NOT FOUND Length: 144 97 12:38:31,4778915 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{33E28130-4E1E-4676-835A-98395C3BC3BB}\DefinitionFlags NAME NOT FOUND Length: 144 97 12:38:31,4779018 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{33E28130-4E1E-4676-835A-98395C3BC3BB}\Attributes SUCCESS Type: REG_DWORD, Length: 4, Data: 1 97 12:38:31,4779137 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{33E28130-4E1E-4676-835A-98395C3BC3BB}\FolderTypeID NAME NOT FOUND Length: 144 97 12:38:31,4779242 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{33E28130-4E1E-4676-835A-98395C3BC3BB}\InitFolderHandler NAME NOT FOUND Length: 144 97 12:38:31,4779378 MCLauncher.exe 84 RegQueryKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{33E28130-4E1E-4676-835A-98395C3BC3BB} SUCCESS Query: HandleTags, HandleTags: 0x400 97 12:38:31,4779439 MCLauncher.exe 84 RegOpenKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{33E28130-4E1E-4676-835A-98395C3BC3BB}\PropertyBag SUCCESS Desired Access: Read 97 12:38:31,4779525 MCLauncher.exe 84 RegCloseKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{33E28130-4E1E-4676-835A-98395C3BC3BB} SUCCESS 97 12:38:31,4779611 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{33E28130-4E1E-4676-835A-98395C3BC3BB}\PropertyBag\ThisPCPolicy SUCCESS Type: REG_SZ, Length: 10, Data: Hide 97 12:38:31,4779738 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{33E28130-4E1E-4676-835A-98395C3BC3BB}\PropertyBag\ThisPCPolicy SUCCESS Type: REG_SZ, Length: 10, Data: Hide 97 12:38:31,4779965 MCLauncher.exe 84 RegOpenKey HKCU SUCCESS Desired Access: Read 97 12:38:31,4780065 MCLauncher.exe 84 RegQueryKey HKCU SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:31,4780112 MCLauncher.exe 84 RegQueryKey HKCU SUCCESS Query: Name 97 12:38:31,4780184 MCLauncher.exe 84 RegOpenKey HKCU\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer SUCCESS Desired Access: Query Value 97 12:38:31,4780267 MCLauncher.exe 84 RegSetInfoKey HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 97 12:38:31,4780309 MCLauncher.exe 84 RegQueryValue HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer\DisablePersonalDirChange NAME NOT FOUND Length: 144 97 12:38:31,4780420 MCLauncher.exe 84 RegCloseKey HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer SUCCESS 97 12:38:31,4780514 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:31,4780564 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: Name 97 12:38:31,4780650 MCLauncher.exe 84 RegOpenKey HKLM\Software\WOW6432Node\Microsoft\Windows NT\CurrentVersion\Terminal Server NAME NOT FOUND Desired Access: Read 97 12:38:31,4780749 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:31,4780794 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: Name 97 12:38:31,4780866 MCLauncher.exe 84 RegOpenKey HKLM\Software\WOW6432Node\Microsoft\Windows NT\CurrentVersion\Terminal Server NAME NOT FOUND Desired Access: Read 97 12:38:31,4780982 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:31,4781029 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: Name 97 12:38:31,4781107 MCLauncher.exe 84 RegOpenKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows NT\CurrentVersion\ProfileList\S-1-5-21-3477790013-1571897634-1299942168-1000\fdeploy REPARSE Desired Access: Read 97 12:38:31,4781179 MCLauncher.exe 84 RegOpenKey HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\ProfileList\S-1-5-21-3477790013-1571897634-1299942168-1000\fdeploy NAME NOT FOUND Desired Access: Read 97 12:38:31,4781267 MCLauncher.exe 84 RegQueryKey HKCU SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:31,4781312 MCLauncher.exe 84 RegQueryKey HKCU SUCCESS Query: Name 97 12:38:31,4781384 MCLauncher.exe 84 RegOpenKey HKCU\Software\Microsoft\Windows\CurrentVersion\Explorer\User Shell Folders SUCCESS Desired Access: Write 97 12:38:31,4781461 MCLauncher.exe 84 RegSetInfoKey HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\User Shell Folders SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 97 12:38:31,4781509 MCLauncher.exe 84 RegCloseKey HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\User Shell Folders SUCCESS 97 12:38:31,4781547 MCLauncher.exe 84 RegCloseKey HKCU SUCCESS 97 12:38:31,4781625 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:31,4781669 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: Name 97 12:38:31,4781747 MCLauncher.exe 84 RegOpenKey HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS Desired Access: Read 97 12:38:31,4781816 MCLauncher.exe 84 RegSetInfoKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 97 12:38:31,4781877 MCLauncher.exe 84 RegQueryKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS Query: HandleTags, HandleTags: 0x400 97 12:38:31,4781927 MCLauncher.exe 84 RegOpenKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{8AD10C31-2ADB-4296-A8F7-E4701232C972} SUCCESS Desired Access: Read 97 12:38:31,4781999 MCLauncher.exe 84 RegCloseKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS 97 12:38:31,4782049 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{8AD10C31-2ADB-4296-A8F7-E4701232C972}\Category SUCCESS Type: REG_DWORD, Length: 4, Data: 2 97 12:38:31,4782187 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{8AD10C31-2ADB-4296-A8F7-E4701232C972}\Name SUCCESS Type: REG_SZ, Length: 24, Data: ResourceDir 97 12:38:31,4782320 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{8AD10C31-2ADB-4296-A8F7-E4701232C972}\ParentFolder NAME NOT FOUND Length: 144 97 12:38:31,4782431 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{8AD10C31-2ADB-4296-A8F7-E4701232C972}\Description NAME NOT FOUND Length: 144 97 12:38:31,4782534 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{8AD10C31-2ADB-4296-A8F7-E4701232C972}\RelativePath NAME NOT FOUND Length: 144 97 12:38:31,4782636 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{8AD10C31-2ADB-4296-A8F7-E4701232C972}\ParsingName NAME NOT FOUND Length: 144 97 12:38:31,4782739 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{8AD10C31-2ADB-4296-A8F7-E4701232C972}\InfoTip NAME NOT FOUND Length: 144 97 12:38:31,4782841 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{8AD10C31-2ADB-4296-A8F7-E4701232C972}\LocalizedName NAME NOT FOUND Length: 144 97 12:38:31,4782944 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{8AD10C31-2ADB-4296-A8F7-E4701232C972}\Icon NAME NOT FOUND Length: 144 97 12:38:31,4783046 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{8AD10C31-2ADB-4296-A8F7-E4701232C972}\Security NAME NOT FOUND Length: 144 97 12:38:31,4783149 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{8AD10C31-2ADB-4296-A8F7-E4701232C972}\StreamResource NAME NOT FOUND Length: 144 97 12:38:31,4783251 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{8AD10C31-2ADB-4296-A8F7-E4701232C972}\StreamResourceType NAME NOT FOUND Length: 144 97 12:38:31,4783354 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{8AD10C31-2ADB-4296-A8F7-E4701232C972}\LocalRedirectOnly NAME NOT FOUND Length: 144 97 12:38:31,4783456 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{8AD10C31-2ADB-4296-A8F7-E4701232C972}\Roamable NAME NOT FOUND Length: 144 97 12:38:31,4783559 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{8AD10C31-2ADB-4296-A8F7-E4701232C972}\PreCreate NAME NOT FOUND Length: 144 97 12:38:31,4783661 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{8AD10C31-2ADB-4296-A8F7-E4701232C972}\Stream NAME NOT FOUND Length: 144 97 12:38:31,4783764 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{8AD10C31-2ADB-4296-A8F7-E4701232C972}\PublishExpandedPath NAME NOT FOUND Length: 144 97 12:38:31,4783866 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{8AD10C31-2ADB-4296-A8F7-E4701232C972}\DefinitionFlags NAME NOT FOUND Length: 144 97 12:38:31,4783969 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{8AD10C31-2ADB-4296-A8F7-E4701232C972}\Attributes NAME NOT FOUND Length: 144 97 12:38:31,4784071 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{8AD10C31-2ADB-4296-A8F7-E4701232C972}\FolderTypeID NAME NOT FOUND Length: 144 97 12:38:31,4784171 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{8AD10C31-2ADB-4296-A8F7-E4701232C972}\InitFolderHandler NAME NOT FOUND Length: 144 97 12:38:31,4784307 MCLauncher.exe 84 RegQueryKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{8AD10C31-2ADB-4296-A8F7-E4701232C972} SUCCESS Query: HandleTags, HandleTags: 0x400 97 12:38:31,4784368 MCLauncher.exe 84 RegOpenKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{8AD10C31-2ADB-4296-A8F7-E4701232C972}\PropertyBag NAME NOT FOUND Desired Access: Read 97 12:38:31,4784448 MCLauncher.exe 84 RegCloseKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{8AD10C31-2ADB-4296-A8F7-E4701232C972} SUCCESS 97 12:38:31,4784537 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:31,4784584 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: Name 97 12:38:31,4784664 MCLauncher.exe 84 RegOpenKey HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS Desired Access: Read 97 12:38:31,4784739 MCLauncher.exe 84 RegSetInfoKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 97 12:38:31,4784800 MCLauncher.exe 84 RegQueryKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS Query: HandleTags, HandleTags: 0x400 97 12:38:31,4784850 MCLauncher.exe 84 RegOpenKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{82A5EA35-D9CD-47C5-9629-E15D2F714E6E} SUCCESS Desired Access: Read 97 12:38:31,4784925 MCLauncher.exe 84 RegCloseKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS 97 12:38:31,4784966 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{82A5EA35-D9CD-47C5-9629-E15D2F714E6E}\Category SUCCESS Type: REG_DWORD, Length: 4, Data: 3 97 12:38:31,4785213 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{82A5EA35-D9CD-47C5-9629-E15D2F714E6E}\Name SUCCESS Type: REG_SZ, Length: 30, Data: Common Startup 97 12:38:31,4785371 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{82A5EA35-D9CD-47C5-9629-E15D2F714E6E}\ParentFolder SUCCESS Type: REG_SZ, Length: 78, Data: {0139D44E-6AFE-49F2-8690-3DAFCAE6FFB8} 97 12:38:31,4785498 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{82A5EA35-D9CD-47C5-9629-E15D2F714E6E}\Description NAME NOT FOUND Length: 144 97 12:38:31,4785606 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{82A5EA35-D9CD-47C5-9629-E15D2F714E6E}\RelativePath SUCCESS Type: REG_SZ, Length: 16, Data: StartUp 97 12:38:31,4785734 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{82A5EA35-D9CD-47C5-9629-E15D2F714E6E}\ParsingName NAME NOT FOUND Length: 144 97 12:38:31,4785842 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{82A5EA35-D9CD-47C5-9629-E15D2F714E6E}\InfoTip NAME NOT FOUND Length: 144 97 12:38:31,4785944 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{82A5EA35-D9CD-47C5-9629-E15D2F714E6E}\LocalizedName SUCCESS Type: REG_EXPAND_SZ, Length: 84, Data: @%SystemRoot%\system32\shell32.dll,-21787 97 12:38:31,4786069 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{82A5EA35-D9CD-47C5-9629-E15D2F714E6E}\Icon NAME NOT FOUND Length: 144 97 12:38:31,4786177 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{82A5EA35-D9CD-47C5-9629-E15D2F714E6E}\Security NAME NOT FOUND Length: 144 97 12:38:31,4786279 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{82A5EA35-D9CD-47C5-9629-E15D2F714E6E}\StreamResource NAME NOT FOUND Length: 144 97 12:38:31,4786385 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{82A5EA35-D9CD-47C5-9629-E15D2F714E6E}\StreamResourceType NAME NOT FOUND Length: 144 97 12:38:31,4786487 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{82A5EA35-D9CD-47C5-9629-E15D2F714E6E}\LocalRedirectOnly NAME NOT FOUND Length: 144 97 12:38:31,4786592 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{82A5EA35-D9CD-47C5-9629-E15D2F714E6E}\Roamable NAME NOT FOUND Length: 144 97 12:38:31,4786695 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{82A5EA35-D9CD-47C5-9629-E15D2F714E6E}\PreCreate SUCCESS Type: REG_DWORD, Length: 4, Data: 1 97 12:38:31,4786839 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{82A5EA35-D9CD-47C5-9629-E15D2F714E6E}\Stream NAME NOT FOUND Length: 144 97 12:38:31,4786947 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{82A5EA35-D9CD-47C5-9629-E15D2F714E6E}\PublishExpandedPath NAME NOT FOUND Length: 144 97 12:38:31,4787052 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{82A5EA35-D9CD-47C5-9629-E15D2F714E6E}\DefinitionFlags NAME NOT FOUND Length: 144 97 12:38:31,4787158 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{82A5EA35-D9CD-47C5-9629-E15D2F714E6E}\Attributes SUCCESS Type: REG_DWORD, Length: 4, Data: 1 97 12:38:31,4787277 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{82A5EA35-D9CD-47C5-9629-E15D2F714E6E}\FolderTypeID NAME NOT FOUND Length: 144 97 12:38:31,4787382 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{82A5EA35-D9CD-47C5-9629-E15D2F714E6E}\InitFolderHandler NAME NOT FOUND Length: 144 97 12:38:31,4787521 MCLauncher.exe 84 RegQueryKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{82A5EA35-D9CD-47C5-9629-E15D2F714E6E} SUCCESS Query: HandleTags, HandleTags: 0x400 97 12:38:31,4787584 MCLauncher.exe 84 RegOpenKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{82A5EA35-D9CD-47C5-9629-E15D2F714E6E}\PropertyBag NAME NOT FOUND Desired Access: Read 97 12:38:31,4787673 MCLauncher.exe 84 RegCloseKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{82A5EA35-D9CD-47C5-9629-E15D2F714E6E} SUCCESS 97 12:38:31,4787781 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:31,4787831 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: Name 97 12:38:31,4787914 MCLauncher.exe 84 RegOpenKey HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS Desired Access: Read 97 12:38:31,4787989 MCLauncher.exe 84 RegSetInfoKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 97 12:38:31,4788050 MCLauncher.exe 84 RegQueryKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS Query: HandleTags, HandleTags: 0x400 97 12:38:31,4788100 MCLauncher.exe 84 RegOpenKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{DEBF2536-E1A8-4C59-B6A2-414586476AEA} SUCCESS Desired Access: Read 97 12:38:31,4788177 MCLauncher.exe 84 RegCloseKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS 97 12:38:31,4788222 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{DEBF2536-E1A8-4c59-B6A2-414586476AEA}\Category SUCCESS Type: REG_DWORD, Length: 4, Data: 3 97 12:38:31,4788352 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{DEBF2536-E1A8-4c59-B6A2-414586476AEA}\Name SUCCESS Type: REG_SZ, Length: 32, Data: PublicGameTasks 97 12:38:31,4788479 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{DEBF2536-E1A8-4c59-B6A2-414586476AEA}\ParentFolder SUCCESS Type: REG_SZ, Length: 78, Data: {62AB5D82-FDC1-4DC3-A9DD-070D1D495D97} 97 12:38:31,4788607 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{DEBF2536-E1A8-4c59-B6A2-414586476AEA}\Description NAME NOT FOUND Length: 144 97 12:38:31,4788715 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{DEBF2536-E1A8-4c59-B6A2-414586476AEA}\RelativePath SUCCESS Type: REG_SZ, Length: 62, Data: Microsoft\Windows\GameExplorer 97 12:38:31,4788837 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{DEBF2536-E1A8-4c59-B6A2-414586476AEA}\ParsingName NAME NOT FOUND Length: 144 97 12:38:31,4788945 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{DEBF2536-E1A8-4c59-B6A2-414586476AEA}\InfoTip NAME NOT FOUND Length: 144 97 12:38:31,4789047 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{DEBF2536-E1A8-4c59-B6A2-414586476AEA}\LocalizedName NAME NOT FOUND Length: 144 97 12:38:31,4789150 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{DEBF2536-E1A8-4c59-B6A2-414586476AEA}\Icon NAME NOT FOUND Length: 144 97 12:38:31,4789344 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{DEBF2536-E1A8-4c59-B6A2-414586476AEA}\Security NAME NOT FOUND Length: 144 97 12:38:31,4789452 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{DEBF2536-E1A8-4c59-B6A2-414586476AEA}\StreamResource NAME NOT FOUND Length: 144 97 12:38:31,4789557 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{DEBF2536-E1A8-4c59-B6A2-414586476AEA}\StreamResourceType NAME NOT FOUND Length: 144 97 12:38:31,4789659 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{DEBF2536-E1A8-4c59-B6A2-414586476AEA}\LocalRedirectOnly SUCCESS Type: REG_DWORD, Length: 4, Data: 1 97 12:38:31,4789779 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{DEBF2536-E1A8-4c59-B6A2-414586476AEA}\Roamable NAME NOT FOUND Length: 144 97 12:38:31,4789881 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{DEBF2536-E1A8-4c59-B6A2-414586476AEA}\PreCreate NAME NOT FOUND Length: 144 97 12:38:31,4789986 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{DEBF2536-E1A8-4c59-B6A2-414586476AEA}\Stream NAME NOT FOUND Length: 144 97 12:38:31,4790092 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{DEBF2536-E1A8-4c59-B6A2-414586476AEA}\PublishExpandedPath NAME NOT FOUND Length: 144 97 12:38:31,4790194 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{DEBF2536-E1A8-4c59-B6A2-414586476AEA}\DefinitionFlags NAME NOT FOUND Length: 144 97 12:38:31,4790297 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{DEBF2536-E1A8-4c59-B6A2-414586476AEA}\Attributes NAME NOT FOUND Length: 144 97 12:38:31,4790399 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{DEBF2536-E1A8-4c59-B6A2-414586476AEA}\FolderTypeID NAME NOT FOUND Length: 144 97 12:38:31,4790502 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{DEBF2536-E1A8-4c59-B6A2-414586476AEA}\InitFolderHandler NAME NOT FOUND Length: 144 97 12:38:31,4790638 MCLauncher.exe 84 RegQueryKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{DEBF2536-E1A8-4c59-B6A2-414586476AEA} SUCCESS Query: HandleTags, HandleTags: 0x400 97 12:38:31,4790701 MCLauncher.exe 84 RegOpenKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{DEBF2536-E1A8-4c59-B6A2-414586476AEA}\PropertyBag NAME NOT FOUND Desired Access: Read 97 12:38:31,4790779 MCLauncher.exe 84 RegCloseKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{DEBF2536-E1A8-4c59-B6A2-414586476AEA} SUCCESS 97 12:38:31,4790867 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:31,4790917 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: Name 97 12:38:31,4790998 MCLauncher.exe 84 RegOpenKey HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS Desired Access: Read 97 12:38:31,4791070 MCLauncher.exe 84 RegSetInfoKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 97 12:38:31,4791131 MCLauncher.exe 84 RegQueryKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS Query: HandleTags, HandleTags: 0x400 97 12:38:31,4791181 MCLauncher.exe 84 RegOpenKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{0F214138-B1D3-4A90-BBA9-27CBC0C5389A} SUCCESS Desired Access: Read 97 12:38:31,4791258 MCLauncher.exe 84 RegCloseKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS 97 12:38:31,4791300 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{0F214138-B1D3-4a90-BBA9-27CBC0C5389A}\Category SUCCESS Type: REG_DWORD, Length: 4, Data: 1 97 12:38:31,4791455 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{0F214138-B1D3-4a90-BBA9-27CBC0C5389A}\Name SUCCESS Type: REG_SZ, Length: 32, Data: SyncSetupFolder 97 12:38:31,4791582 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{0F214138-B1D3-4a90-BBA9-27CBC0C5389A}\ParentFolder NAME NOT FOUND Length: 144 97 12:38:31,4791690 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{0F214138-B1D3-4a90-BBA9-27CBC0C5389A}\Description NAME NOT FOUND Length: 144 97 12:38:31,4791796 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{0F214138-B1D3-4a90-BBA9-27CBC0C5389A}\RelativePath NAME NOT FOUND Length: 144 97 12:38:31,4791898 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{0F214138-B1D3-4a90-BBA9-27CBC0C5389A}\ParsingName BUFFER OVERFLOW Length: 144 97 12:38:31,4792003 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{0F214138-B1D3-4a90-BBA9-27CBC0C5389A}\ParsingName SUCCESS Type: REG_SZ, Length: 252, Data: ::{26EE0668-A00A-44D7-9371-BEB064C98683}\0\::{9C73F5E5-7AE7-4E32-A8E8-8D23B85255BF}\::{F1390A9A-A3F4-4E5D-9C5F-98F3BD8D935C}, 97 12:38:31,4792128 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{0F214138-B1D3-4a90-BBA9-27CBC0C5389A}\InfoTip NAME NOT FOUND Length: 144 97 12:38:31,4792258 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{0F214138-B1D3-4a90-BBA9-27CBC0C5389A}\LocalizedName NAME NOT FOUND Length: 144 97 12:38:31,4792364 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{0F214138-B1D3-4a90-BBA9-27CBC0C5389A}\Icon NAME NOT FOUND Length: 144 97 12:38:31,4792466 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{0F214138-B1D3-4a90-BBA9-27CBC0C5389A}\Security NAME NOT FOUND Length: 144 97 12:38:31,4792569 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{0F214138-B1D3-4a90-BBA9-27CBC0C5389A}\StreamResource NAME NOT FOUND Length: 144 97 12:38:31,4792668 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{0F214138-B1D3-4a90-BBA9-27CBC0C5389A}\StreamResourceType NAME NOT FOUND Length: 144 97 12:38:31,4792771 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{0F214138-B1D3-4a90-BBA9-27CBC0C5389A}\LocalRedirectOnly NAME NOT FOUND Length: 144 97 12:38:31,4792873 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{0F214138-B1D3-4a90-BBA9-27CBC0C5389A}\Roamable NAME NOT FOUND Length: 144 97 12:38:31,4792976 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{0F214138-B1D3-4a90-BBA9-27CBC0C5389A}\PreCreate NAME NOT FOUND Length: 144 97 12:38:31,4793078 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{0F214138-B1D3-4a90-BBA9-27CBC0C5389A}\Stream NAME NOT FOUND Length: 144 97 12:38:31,4793181 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{0F214138-B1D3-4a90-BBA9-27CBC0C5389A}\PublishExpandedPath NAME NOT FOUND Length: 144 97 12:38:31,4793283 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{0F214138-B1D3-4a90-BBA9-27CBC0C5389A}\DefinitionFlags NAME NOT FOUND Length: 144 97 12:38:31,4793386 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{0F214138-B1D3-4a90-BBA9-27CBC0C5389A}\Attributes NAME NOT FOUND Length: 144 97 12:38:31,4793488 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{0F214138-B1D3-4a90-BBA9-27CBC0C5389A}\FolderTypeID NAME NOT FOUND Length: 144 97 12:38:31,4793591 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{0F214138-B1D3-4a90-BBA9-27CBC0C5389A}\InitFolderHandler NAME NOT FOUND Length: 144 97 12:38:31,4793727 MCLauncher.exe 84 RegQueryKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{0F214138-B1D3-4a90-BBA9-27CBC0C5389A} SUCCESS Query: HandleTags, HandleTags: 0x400 97 12:38:31,4793788 MCLauncher.exe 84 RegOpenKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{0F214138-B1D3-4a90-BBA9-27CBC0C5389A}\PropertyBag NAME NOT FOUND Desired Access: Read 97 12:38:31,4793868 MCLauncher.exe 84 RegCloseKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{0F214138-B1D3-4a90-BBA9-27CBC0C5389A} SUCCESS 97 12:38:31,4793959 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:31,4794009 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: Name 97 12:38:31,4794090 MCLauncher.exe 84 RegOpenKey HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS Desired Access: Read 97 12:38:31,4794162 MCLauncher.exe 84 RegSetInfoKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 97 12:38:31,4794223 MCLauncher.exe 84 RegQueryKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS Query: HandleTags, HandleTags: 0x400 97 12:38:31,4794272 MCLauncher.exe 84 RegOpenKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{2400183A-6185-49FB-A2D8-4A392A602BA3} SUCCESS Desired Access: Read 97 12:38:31,4794350 MCLauncher.exe 84 RegCloseKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS 97 12:38:31,4794392 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{2400183A-6185-49FB-A2D8-4A392A602BA3}\Category SUCCESS Type: REG_DWORD, Length: 4, Data: 3 97 12:38:31,4794525 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{2400183A-6185-49FB-A2D8-4A392A602BA3}\Name SUCCESS Type: REG_SZ, Length: 24, Data: CommonVideo 97 12:38:31,4794652 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{2400183A-6185-49FB-A2D8-4A392A602BA3}\ParentFolder SUCCESS Type: REG_SZ, Length: 78, Data: {DFDF76A2-C82A-4D63-906A-5644AC457385} 97 12:38:31,4794779 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{2400183A-6185-49FB-A2D8-4A392A602BA3}\Description NAME NOT FOUND Length: 144 97 12:38:31,4795015 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{2400183A-6185-49FB-A2D8-4A392A602BA3}\RelativePath SUCCESS Type: REG_SZ, Length: 14, Data: Videos 97 12:38:31,4795231 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{2400183A-6185-49FB-A2D8-4A392A602BA3}\ParsingName NAME NOT FOUND Length: 144 97 12:38:31,4795492 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{2400183A-6185-49FB-A2D8-4A392A602BA3}\InfoTip SUCCESS Type: REG_EXPAND_SZ, Length: 84, Data: @%SystemRoot%\system32\shell32.dll,-12690 97 12:38:31,4795644 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{2400183A-6185-49FB-A2D8-4A392A602BA3}\LocalizedName SUCCESS Type: REG_EXPAND_SZ, Length: 84, Data: @%SystemRoot%\system32\shell32.dll,-21804 97 12:38:31,4795852 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{2400183A-6185-49FB-A2D8-4A392A602BA3}\Icon SUCCESS Type: REG_EXPAND_SZ, Length: 76, Data: %SystemRoot%\system32\imageres.dll,-3 97 12:38:31,4795987 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{2400183A-6185-49FB-A2D8-4A392A602BA3}\Security NAME NOT FOUND Length: 144 97 12:38:31,4796096 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{2400183A-6185-49FB-A2D8-4A392A602BA3}\StreamResource NAME NOT FOUND Length: 144 97 12:38:31,4796201 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{2400183A-6185-49FB-A2D8-4A392A602BA3}\StreamResourceType NAME NOT FOUND Length: 144 97 12:38:31,4796309 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{2400183A-6185-49FB-A2D8-4A392A602BA3}\LocalRedirectOnly NAME NOT FOUND Length: 144 97 12:38:31,4796411 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{2400183A-6185-49FB-A2D8-4A392A602BA3}\Roamable NAME NOT FOUND Length: 144 97 12:38:31,4796517 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{2400183A-6185-49FB-A2D8-4A392A602BA3}\PreCreate SUCCESS Type: REG_DWORD, Length: 4, Data: 1 97 12:38:31,4796636 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{2400183A-6185-49FB-A2D8-4A392A602BA3}\Stream NAME NOT FOUND Length: 144 97 12:38:31,4796744 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{2400183A-6185-49FB-A2D8-4A392A602BA3}\PublishExpandedPath NAME NOT FOUND Length: 144 97 12:38:31,4796846 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{2400183A-6185-49FB-A2D8-4A392A602BA3}\DefinitionFlags NAME NOT FOUND Length: 144 97 12:38:31,4796952 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{2400183A-6185-49FB-A2D8-4A392A602BA3}\Attributes SUCCESS Type: REG_DWORD, Length: 4, Data: 1 97 12:38:31,4797068 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{2400183A-6185-49FB-A2D8-4A392A602BA3}\FolderTypeID NAME NOT FOUND Length: 144 97 12:38:31,4797176 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{2400183A-6185-49FB-A2D8-4A392A602BA3}\InitFolderHandler NAME NOT FOUND Length: 144 97 12:38:31,4797331 MCLauncher.exe 84 RegQueryKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{2400183A-6185-49FB-A2D8-4A392A602BA3} SUCCESS Query: HandleTags, HandleTags: 0x400 97 12:38:31,4797398 MCLauncher.exe 84 RegOpenKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{2400183A-6185-49FB-A2D8-4A392A602BA3}\PropertyBag SUCCESS Desired Access: Read 97 12:38:31,4797492 MCLauncher.exe 84 RegCloseKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{2400183A-6185-49FB-A2D8-4A392A602BA3} SUCCESS 97 12:38:31,4797600 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{B4BFCC3A-DB2C-424C-B029-7FE99A87C641}\PropertyBag\ThisPCPolicy NAME NOT FOUND Length: 144 97 12:38:31,4797747 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:31,4797808 MCLauncher.exe 84 RegOpenKey HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\AllowedEnumeration NAME NOT FOUND Desired Access: Read 97 12:38:31,4797927 MCLauncher.exe 84 RegQueryKey HKCU SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:31,4797979 MCLauncher.exe 84 RegOpenKey HKCU\Software\Microsoft\Windows\CurrentVersion\Explorer\AllowedEnumeration NAME NOT FOUND Desired Access: Read 97 12:38:31,4798107 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:31,4798157 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: Name 97 12:38:31,4798243 MCLauncher.exe 84 RegOpenKey HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS Desired Access: Read 97 12:38:31,4798323 MCLauncher.exe 84 RegSetInfoKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 97 12:38:31,4798387 MCLauncher.exe 84 RegQueryKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS Query: HandleTags, HandleTags: 0x400 97 12:38:31,4798437 MCLauncher.exe 84 RegOpenKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{D9DC8A3B-B784-432E-A781-5A1130A75963} SUCCESS Desired Access: Read 97 12:38:31,4798520 MCLauncher.exe 84 RegCloseKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS 97 12:38:31,4798570 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{D9DC8A3B-B784-432E-A781-5A1130A75963}\Category SUCCESS Type: REG_DWORD, Length: 4, Data: 4 97 12:38:31,4798703 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{D9DC8A3B-B784-432E-A781-5A1130A75963}\Name SUCCESS Type: REG_SZ, Length: 16, Data: History 97 12:38:31,4798833 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{D9DC8A3B-B784-432E-A781-5A1130A75963}\ParentFolder SUCCESS Type: REG_SZ, Length: 78, Data: {F1B32785-6FBA-4FCF-9D55-7B8E7F157091} 97 12:38:31,4798960 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{D9DC8A3B-B784-432E-A781-5A1130A75963}\Description NAME NOT FOUND Length: 144 97 12:38:31,4799066 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{D9DC8A3B-B784-432E-A781-5A1130A75963}\RelativePath SUCCESS Type: REG_SZ, Length: 52, Data: Microsoft\Windows\History 97 12:38:31,4799190 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{D9DC8A3B-B784-432E-A781-5A1130A75963}\ParsingName NAME NOT FOUND Length: 144 97 12:38:31,4799298 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{D9DC8A3B-B784-432E-A781-5A1130A75963}\InfoTip NAME NOT FOUND Length: 144 97 12:38:31,4799404 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{D9DC8A3B-B784-432E-A781-5A1130A75963}\LocalizedName NAME NOT FOUND Length: 144 97 12:38:31,4799506 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{D9DC8A3B-B784-432E-A781-5A1130A75963}\Icon NAME NOT FOUND Length: 144 97 12:38:31,4799609 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{D9DC8A3B-B784-432E-A781-5A1130A75963}\Security NAME NOT FOUND Length: 144 97 12:38:31,4799714 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{D9DC8A3B-B784-432E-A781-5A1130A75963}\StreamResource NAME NOT FOUND Length: 144 97 12:38:31,4799816 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{D9DC8A3B-B784-432E-A781-5A1130A75963}\StreamResourceType NAME NOT FOUND Length: 144 97 12:38:31,4799919 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{D9DC8A3B-B784-432E-A781-5A1130A75963}\LocalRedirectOnly SUCCESS Type: REG_DWORD, Length: 4, Data: 1 97 12:38:31,4800038 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{D9DC8A3B-B784-432E-A781-5A1130A75963}\Roamable NAME NOT FOUND Length: 144 97 12:38:31,4800141 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{D9DC8A3B-B784-432E-A781-5A1130A75963}\PreCreate NAME NOT FOUND Length: 144 97 12:38:31,4800243 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{D9DC8A3B-B784-432E-A781-5A1130A75963}\Stream NAME NOT FOUND Length: 144 97 12:38:31,4800370 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{D9DC8A3B-B784-432E-A781-5A1130A75963}\PublishExpandedPath NAME NOT FOUND Length: 144 97 12:38:31,4800476 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{D9DC8A3B-B784-432E-A781-5A1130A75963}\DefinitionFlags NAME NOT FOUND Length: 144 97 12:38:31,4800581 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{D9DC8A3B-B784-432E-A781-5A1130A75963}\Attributes NAME NOT FOUND Length: 144 97 12:38:31,4800684 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{D9DC8A3B-B784-432E-A781-5A1130A75963}\FolderTypeID NAME NOT FOUND Length: 144 97 12:38:31,4800789 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{D9DC8A3B-B784-432E-A781-5A1130A75963}\InitFolderHandler NAME NOT FOUND Length: 144 97 12:38:31,4800925 MCLauncher.exe 84 RegQueryKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{D9DC8A3B-B784-432E-A781-5A1130A75963} SUCCESS Query: HandleTags, HandleTags: 0x400 97 12:38:31,4800988 MCLauncher.exe 84 RegOpenKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{D9DC8A3B-B784-432E-A781-5A1130A75963}\PropertyBag NAME NOT FOUND Desired Access: Read 97 12:38:31,4801069 MCLauncher.exe 84 RegCloseKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{D9DC8A3B-B784-432E-A781-5A1130A75963} SUCCESS 97 12:38:31,4801157 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:31,4801207 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: Name 97 12:38:31,4801290 MCLauncher.exe 84 RegOpenKey HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS Desired Access: Read 97 12:38:31,4801362 MCLauncher.exe 84 RegSetInfoKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 97 12:38:31,4801423 MCLauncher.exe 84 RegQueryKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS Query: HandleTags, HandleTags: 0x400 97 12:38:31,4801476 MCLauncher.exe 84 RegOpenKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{C4900540-2379-4C75-844B-64E6FAF8716B} NAME NOT FOUND Desired Access: Read 97 12:38:31,4801540 MCLauncher.exe 84 RegCloseKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS 97 12:38:31,4801617 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:31,4801664 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: Name 97 12:38:31,4801739 MCLauncher.exe 84 RegOpenKey HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS Desired Access: Read 97 12:38:31,4801803 MCLauncher.exe 84 RegSetInfoKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 97 12:38:31,4801858 MCLauncher.exe 84 RegQueryKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS Query: HandleTags, HandleTags: 0x400 97 12:38:31,4801908 MCLauncher.exe 84 RegOpenKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{289A9A43-BE44-4057-A41B-587A76D7E7F9} SUCCESS Desired Access: Read 97 12:38:31,4801977 MCLauncher.exe 84 RegCloseKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS 97 12:38:31,4802022 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{289A9A43-BE44-4057-A41B-587A76D7E7F9}\Category SUCCESS Type: REG_DWORD, Length: 4, Data: 1 97 12:38:31,4802155 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{289A9A43-BE44-4057-A41B-587A76D7E7F9}\Name SUCCESS Type: REG_SZ, Length: 36, Data: SyncResultsFolder 97 12:38:31,4802285 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{289A9A43-BE44-4057-A41B-587A76D7E7F9}\ParentFolder NAME NOT FOUND Length: 144 97 12:38:31,4802393 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{289A9A43-BE44-4057-A41B-587A76D7E7F9}\Description NAME NOT FOUND Length: 144 97 12:38:31,4802498 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{289A9A43-BE44-4057-A41B-587A76D7E7F9}\RelativePath NAME NOT FOUND Length: 144 97 12:38:31,4802598 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{289A9A43-BE44-4057-A41B-587A76D7E7F9}\ParsingName BUFFER OVERFLOW Length: 144 97 12:38:31,4802703 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{289A9A43-BE44-4057-A41B-587A76D7E7F9}\ParsingName SUCCESS Type: REG_SZ, Length: 252, Data: ::{26EE0668-A00A-44D7-9371-BEB064C98683}\0\::{9C73F5E5-7AE7-4E32-A8E8-8D23B85255BF}\::{BC48B32F-5910-47F5-8570-5074A8A5636A}, 97 12:38:31,4802831 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{289A9A43-BE44-4057-A41B-587A76D7E7F9}\InfoTip NAME NOT FOUND Length: 144 97 12:38:31,4802939 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{289A9A43-BE44-4057-A41B-587A76D7E7F9}\LocalizedName NAME NOT FOUND Length: 144 97 12:38:31,4803041 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{289A9A43-BE44-4057-A41B-587A76D7E7F9}\Icon NAME NOT FOUND Length: 144 97 12:38:31,4803144 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{289A9A43-BE44-4057-A41B-587A76D7E7F9}\Security NAME NOT FOUND Length: 144 97 12:38:31,4803246 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{289A9A43-BE44-4057-A41B-587A76D7E7F9}\StreamResource NAME NOT FOUND Length: 144 97 12:38:31,4803352 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{289A9A43-BE44-4057-A41B-587A76D7E7F9}\StreamResourceType NAME NOT FOUND Length: 144 97 12:38:31,4803454 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{289A9A43-BE44-4057-A41B-587A76D7E7F9}\LocalRedirectOnly NAME NOT FOUND Length: 144 97 12:38:31,4803557 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{289A9A43-BE44-4057-A41B-587A76D7E7F9}\Roamable NAME NOT FOUND Length: 144 97 12:38:31,4803659 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{289A9A43-BE44-4057-A41B-587A76D7E7F9}\PreCreate NAME NOT FOUND Length: 144 97 12:38:31,4803759 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{289A9A43-BE44-4057-A41B-587A76D7E7F9}\Stream NAME NOT FOUND Length: 144 97 12:38:31,4803864 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{289A9A43-BE44-4057-A41B-587A76D7E7F9}\PublishExpandedPath NAME NOT FOUND Length: 144 97 12:38:31,4803967 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{289A9A43-BE44-4057-A41B-587A76D7E7F9}\DefinitionFlags NAME NOT FOUND Length: 144 97 12:38:31,4804069 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{289A9A43-BE44-4057-A41B-587A76D7E7F9}\Attributes NAME NOT FOUND Length: 144 97 12:38:31,4804172 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{289A9A43-BE44-4057-A41B-587A76D7E7F9}\FolderTypeID NAME NOT FOUND Length: 144 97 12:38:31,4804274 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{289A9A43-BE44-4057-A41B-587A76D7E7F9}\InitFolderHandler NAME NOT FOUND Length: 144 97 12:38:31,4804407 MCLauncher.exe 84 RegQueryKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{289A9A43-BE44-4057-A41B-587A76D7E7F9} SUCCESS Query: HandleTags, HandleTags: 0x400 97 12:38:31,4804468 MCLauncher.exe 84 RegOpenKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{289A9A43-BE44-4057-A41B-587A76D7E7F9}\PropertyBag NAME NOT FOUND Desired Access: Read 97 12:38:31,4804554 MCLauncher.exe 84 RegCloseKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{289A9A43-BE44-4057-A41B-587A76D7E7F9} SUCCESS 97 12:38:31,4804787 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:31,4804873 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: Name 97 12:38:31,4805008 MCLauncher.exe 84 RegOpenKey HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS Desired Access: Read 97 12:38:31,4805108 MCLauncher.exe 84 RegSetInfoKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 97 12:38:31,4805183 MCLauncher.exe 84 RegQueryKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS Query: HandleTags, HandleTags: 0x400 97 12:38:31,4805236 MCLauncher.exe 84 RegOpenKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{4BFEFB45-347D-4006-A5BE-AC0CB0567192} SUCCESS Desired Access: Read 97 12:38:31,4805316 MCLauncher.exe 84 RegCloseKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS 97 12:38:31,4805366 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{4BFEFB45-347D-4006-A5BE-AC0CB0567192}\Category SUCCESS Type: REG_DWORD, Length: 4, Data: 1 97 12:38:31,4805504 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{4BFEFB45-347D-4006-A5BE-AC0CB0567192}\Name SUCCESS Type: REG_SZ, Length: 30, Data: ConflictFolder 97 12:38:31,4805635 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{4BFEFB45-347D-4006-A5BE-AC0CB0567192}\ParentFolder NAME NOT FOUND Length: 144 97 12:38:31,4805745 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{4BFEFB45-347D-4006-A5BE-AC0CB0567192}\Description NAME NOT FOUND Length: 144 97 12:38:31,4805848 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{4BFEFB45-347D-4006-A5BE-AC0CB0567192}\RelativePath NAME NOT FOUND Length: 144 97 12:38:31,4805950 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{4BFEFB45-347D-4006-A5BE-AC0CB0567192}\ParsingName BUFFER OVERFLOW Length: 144 97 12:38:31,4806056 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{4BFEFB45-347D-4006-A5BE-AC0CB0567192}\ParsingName SUCCESS Type: REG_SZ, Length: 252, Data: ::{26EE0668-A00A-44D7-9371-BEB064C98683}\0\::{9C73F5E5-7AE7-4E32-A8E8-8D23B85255BF}\::{E413D040-6788-4C22-957E-175D1C513A34}, 97 12:38:31,4806183 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{4BFEFB45-347D-4006-A5BE-AC0CB0567192}\InfoTip NAME NOT FOUND Length: 144 97 12:38:31,4806288 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{4BFEFB45-347D-4006-A5BE-AC0CB0567192}\LocalizedName NAME NOT FOUND Length: 144 97 12:38:31,4806391 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{4BFEFB45-347D-4006-A5BE-AC0CB0567192}\Icon NAME NOT FOUND Length: 144 97 12:38:31,4806496 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{4BFEFB45-347D-4006-A5BE-AC0CB0567192}\Security NAME NOT FOUND Length: 144 97 12:38:31,4806599 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{4BFEFB45-347D-4006-A5BE-AC0CB0567192}\StreamResource NAME NOT FOUND Length: 144 97 12:38:31,4806701 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{4BFEFB45-347D-4006-A5BE-AC0CB0567192}\StreamResourceType NAME NOT FOUND Length: 144 97 12:38:31,4806804 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{4BFEFB45-347D-4006-A5BE-AC0CB0567192}\LocalRedirectOnly NAME NOT FOUND Length: 144 97 12:38:31,4806906 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{4BFEFB45-347D-4006-A5BE-AC0CB0567192}\Roamable NAME NOT FOUND Length: 144 97 12:38:31,4807009 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{4BFEFB45-347D-4006-A5BE-AC0CB0567192}\PreCreate NAME NOT FOUND Length: 144 97 12:38:31,4807139 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{4BFEFB45-347D-4006-A5BE-AC0CB0567192}\Stream NAME NOT FOUND Length: 144 97 12:38:31,4807241 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{4BFEFB45-347D-4006-A5BE-AC0CB0567192}\PublishExpandedPath NAME NOT FOUND Length: 144 97 12:38:31,4807344 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{4BFEFB45-347D-4006-A5BE-AC0CB0567192}\DefinitionFlags NAME NOT FOUND Length: 144 97 12:38:31,4807446 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{4BFEFB45-347D-4006-A5BE-AC0CB0567192}\Attributes NAME NOT FOUND Length: 144 97 12:38:31,4807549 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{4BFEFB45-347D-4006-A5BE-AC0CB0567192}\FolderTypeID NAME NOT FOUND Length: 144 97 12:38:31,4807652 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{4BFEFB45-347D-4006-A5BE-AC0CB0567192}\InitFolderHandler NAME NOT FOUND Length: 144 97 12:38:31,4807787 MCLauncher.exe 84 RegQueryKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{4BFEFB45-347D-4006-A5BE-AC0CB0567192} SUCCESS Query: HandleTags, HandleTags: 0x400 97 12:38:31,4807848 MCLauncher.exe 84 RegOpenKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{4BFEFB45-347D-4006-A5BE-AC0CB0567192}\PropertyBag NAME NOT FOUND Desired Access: Read 97 12:38:31,4807926 MCLauncher.exe 84 RegCloseKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{4BFEFB45-347D-4006-A5BE-AC0CB0567192} SUCCESS 97 12:38:31,4808026 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:31,4808075 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: Name 97 12:38:31,4808159 MCLauncher.exe 84 RegOpenKey HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS Desired Access: Read 97 12:38:31,4808231 MCLauncher.exe 84 RegSetInfoKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 97 12:38:31,4808292 MCLauncher.exe 84 RegQueryKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS Query: HandleTags, HandleTags: 0x400 97 12:38:31,4808341 MCLauncher.exe 84 RegOpenKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{B7534046-3ECB-4C18-BE4E-64CD4CB7D6AC} SUCCESS Desired Access: Read 97 12:38:31,4808413 MCLauncher.exe 84 RegCloseKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS 97 12:38:31,4808458 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{B7534046-3ECB-4C18-BE4E-64CD4CB7D6AC}\Category SUCCESS Type: REG_DWORD, Length: 4, Data: 1 97 12:38:31,4808588 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{B7534046-3ECB-4C18-BE4E-64CD4CB7D6AC}\Name SUCCESS Type: REG_SZ, Length: 34, Data: RecycleBinFolder 97 12:38:31,4808807 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{B7534046-3ECB-4C18-BE4E-64CD4CB7D6AC}\ParentFolder NAME NOT FOUND Length: 144 97 12:38:31,4808923 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{B7534046-3ECB-4C18-BE4E-64CD4CB7D6AC}\Description NAME NOT FOUND Length: 144 97 12:38:31,4809026 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{B7534046-3ECB-4C18-BE4E-64CD4CB7D6AC}\RelativePath NAME NOT FOUND Length: 144 97 12:38:31,4809131 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{B7534046-3ECB-4C18-BE4E-64CD4CB7D6AC}\ParsingName SUCCESS Type: REG_SZ, Length: 82, Data: ::{645FF040-5081-101B-9F08-00AA002F954E} 97 12:38:31,4809256 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{B7534046-3ECB-4C18-BE4E-64CD4CB7D6AC}\InfoTip NAME NOT FOUND Length: 144 97 12:38:31,4809422 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{B7534046-3ECB-4C18-BE4E-64CD4CB7D6AC}\LocalizedName NAME NOT FOUND Length: 144 97 12:38:31,4809533 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{B7534046-3ECB-4C18-BE4E-64CD4CB7D6AC}\Icon NAME NOT FOUND Length: 144 97 12:38:31,4809638 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{B7534046-3ECB-4C18-BE4E-64CD4CB7D6AC}\Security NAME NOT FOUND Length: 144 97 12:38:31,4809741 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{B7534046-3ECB-4C18-BE4E-64CD4CB7D6AC}\StreamResource NAME NOT FOUND Length: 144 97 12:38:31,4809846 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{B7534046-3ECB-4C18-BE4E-64CD4CB7D6AC}\StreamResourceType NAME NOT FOUND Length: 144 97 12:38:31,4809948 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{B7534046-3ECB-4C18-BE4E-64CD4CB7D6AC}\LocalRedirectOnly NAME NOT FOUND Length: 144 97 12:38:31,4810051 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{B7534046-3ECB-4C18-BE4E-64CD4CB7D6AC}\Roamable NAME NOT FOUND Length: 144 97 12:38:31,4810156 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{B7534046-3ECB-4C18-BE4E-64CD4CB7D6AC}\PreCreate NAME NOT FOUND Length: 144 97 12:38:31,4810281 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{B7534046-3ECB-4C18-BE4E-64CD4CB7D6AC}\Stream NAME NOT FOUND Length: 144 97 12:38:31,4810386 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{B7534046-3ECB-4C18-BE4E-64CD4CB7D6AC}\PublishExpandedPath NAME NOT FOUND Length: 144 97 12:38:31,4810491 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{B7534046-3ECB-4C18-BE4E-64CD4CB7D6AC}\DefinitionFlags NAME NOT FOUND Length: 144 97 12:38:31,4810591 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{B7534046-3ECB-4C18-BE4E-64CD4CB7D6AC}\Attributes NAME NOT FOUND Length: 144 97 12:38:31,4810694 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{B7534046-3ECB-4C18-BE4E-64CD4CB7D6AC}\FolderTypeID NAME NOT FOUND Length: 144 97 12:38:31,4810799 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{B7534046-3ECB-4C18-BE4E-64CD4CB7D6AC}\InitFolderHandler NAME NOT FOUND Length: 144 97 12:38:31,4810932 MCLauncher.exe 84 RegQueryKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{B7534046-3ECB-4C18-BE4E-64CD4CB7D6AC} SUCCESS Query: HandleTags, HandleTags: 0x400 97 12:38:31,4810996 MCLauncher.exe 84 RegOpenKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{B7534046-3ECB-4C18-BE4E-64CD4CB7D6AC}\PropertyBag NAME NOT FOUND Desired Access: Read 97 12:38:31,4811073 MCLauncher.exe 84 RegCloseKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{B7534046-3ECB-4C18-BE4E-64CD4CB7D6AC} SUCCESS 97 12:38:31,4811184 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:31,4811237 MCLauncher.exe 84 RegOpenKey HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\AllowedEnumeration NAME NOT FOUND Desired Access: Read 97 12:38:31,4811336 MCLauncher.exe 84 RegQueryKey HKCU SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:31,4811389 MCLauncher.exe 84 RegOpenKey HKCU\Software\Microsoft\Windows\CurrentVersion\Explorer\AllowedEnumeration NAME NOT FOUND Desired Access: Read 97 12:38:31,4811541 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:31,4811594 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: Name 97 12:38:31,4811677 MCLauncher.exe 84 RegOpenKey HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS Desired Access: Read 97 12:38:31,4811752 MCLauncher.exe 84 RegSetInfoKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 97 12:38:31,4811810 MCLauncher.exe 84 RegQueryKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS Query: HandleTags, HandleTags: 0x400 97 12:38:31,4811863 MCLauncher.exe 84 RegOpenKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{EE32E446-31CA-4ABA-814F-A5EBD2FD6D5E} SUCCESS Desired Access: Read 97 12:38:31,4811938 MCLauncher.exe 84 RegCloseKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS 97 12:38:31,4811982 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{EE32E446-31CA-4ABA-814F-A5EBD2FD6D5E}\Category SUCCESS Type: REG_DWORD, Length: 4, Data: 1 97 12:38:31,4812115 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{EE32E446-31CA-4ABA-814F-A5EBD2FD6D5E}\Name SUCCESS Type: REG_SZ, Length: 20, Data: CSCFolder 97 12:38:31,4812245 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{EE32E446-31CA-4ABA-814F-A5EBD2FD6D5E}\ParentFolder NAME NOT FOUND Length: 144 97 12:38:31,4812353 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{EE32E446-31CA-4ABA-814F-A5EBD2FD6D5E}\Description NAME NOT FOUND Length: 144 97 12:38:31,4812456 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{EE32E446-31CA-4ABA-814F-A5EBD2FD6D5E}\RelativePath NAME NOT FOUND Length: 144 97 12:38:31,4812561 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{EE32E446-31CA-4ABA-814F-A5EBD2FD6D5E}\ParsingName SUCCESS Type: REG_SZ, Length: 98, Data: shell:::{BD7A2E7B-21CB-41b2-A086-B309680C6B7E}\* 97 12:38:31,4812686 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{EE32E446-31CA-4ABA-814F-A5EBD2FD6D5E}\InfoTip NAME NOT FOUND Length: 144 97 12:38:31,4812791 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{EE32E446-31CA-4ABA-814F-A5EBD2FD6D5E}\LocalizedName NAME NOT FOUND Length: 144 97 12:38:31,4812918 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{EE32E446-31CA-4ABA-814F-A5EBD2FD6D5E}\Icon NAME NOT FOUND Length: 144 97 12:38:31,4813024 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{EE32E446-31CA-4ABA-814F-A5EBD2FD6D5E}\Security NAME NOT FOUND Length: 144 97 12:38:31,4813126 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{EE32E446-31CA-4ABA-814F-A5EBD2FD6D5E}\StreamResource NAME NOT FOUND Length: 144 97 12:38:31,4813229 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{EE32E446-31CA-4ABA-814F-A5EBD2FD6D5E}\StreamResourceType NAME NOT FOUND Length: 144 97 12:38:31,4813331 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{EE32E446-31CA-4ABA-814F-A5EBD2FD6D5E}\LocalRedirectOnly NAME NOT FOUND Length: 144 97 12:38:31,4813434 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{EE32E446-31CA-4ABA-814F-A5EBD2FD6D5E}\Roamable NAME NOT FOUND Length: 144 97 12:38:31,4813533 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{EE32E446-31CA-4ABA-814F-A5EBD2FD6D5E}\PreCreate NAME NOT FOUND Length: 144 97 12:38:31,4813636 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{EE32E446-31CA-4ABA-814F-A5EBD2FD6D5E}\Stream NAME NOT FOUND Length: 144 97 12:38:31,4813741 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{EE32E446-31CA-4ABA-814F-A5EBD2FD6D5E}\PublishExpandedPath NAME NOT FOUND Length: 144 97 12:38:31,4813844 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{EE32E446-31CA-4ABA-814F-A5EBD2FD6D5E}\DefinitionFlags NAME NOT FOUND Length: 144 97 12:38:31,4813946 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{EE32E446-31CA-4ABA-814F-A5EBD2FD6D5E}\Attributes NAME NOT FOUND Length: 144 97 12:38:31,4814049 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{EE32E446-31CA-4ABA-814F-A5EBD2FD6D5E}\FolderTypeID NAME NOT FOUND Length: 144 97 12:38:31,4814148 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{EE32E446-31CA-4ABA-814F-A5EBD2FD6D5E}\InitFolderHandler NAME NOT FOUND Length: 144 97 12:38:31,4814281 MCLauncher.exe 84 RegQueryKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{EE32E446-31CA-4ABA-814F-A5EBD2FD6D5E} SUCCESS Query: HandleTags, HandleTags: 0x400 97 12:38:31,4814345 MCLauncher.exe 84 RegOpenKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{EE32E446-31CA-4ABA-814F-A5EBD2FD6D5E}\PropertyBag NAME NOT FOUND Desired Access: Read 97 12:38:31,4814692 MCLauncher.exe 84 RegCloseKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{EE32E446-31CA-4ABA-814F-A5EBD2FD6D5E} SUCCESS 97 12:38:31,4814847 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:31,4814921 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: Name 97 12:38:31,4815054 MCLauncher.exe 84 RegOpenKey HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS Desired Access: Read 97 12:38:31,4815174 MCLauncher.exe 84 RegSetInfoKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 97 12:38:31,4815265 MCLauncher.exe 84 RegQueryKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS Query: HandleTags, HandleTags: 0x400 97 12:38:31,4815340 MCLauncher.exe 84 RegOpenKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{C870044B-F49E-4126-A9C3-B52A1FF411E8} SUCCESS Desired Access: Read 97 12:38:31,4815456 MCLauncher.exe 84 RegCloseKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS 97 12:38:31,4815528 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{C870044B-F49E-4126-A9C3-B52A1FF411E8}\Category SUCCESS Type: REG_DWORD, Length: 4, Data: 4 97 12:38:31,4815722 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{C870044B-F49E-4126-A9C3-B52A1FF411E8}\Name SUCCESS Type: REG_SZ, Length: 20, Data: Ringtones 97 12:38:31,4815935 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{C870044B-F49E-4126-A9C3-B52A1FF411E8}\ParentFolder SUCCESS Type: REG_SZ, Length: 78, Data: {F1B32785-6FBA-4FCF-9D55-7B8E7F157091} 97 12:38:31,4816143 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{C870044B-F49E-4126-A9C3-B52A1FF411E8}\Description NAME NOT FOUND Length: 144 97 12:38:31,4816318 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{C870044B-F49E-4126-A9C3-B52A1FF411E8}\RelativePath SUCCESS Type: REG_SZ, Length: 56, Data: Microsoft\Windows\Ringtones 97 12:38:31,4816534 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{C870044B-F49E-4126-A9C3-B52A1FF411E8}\ParsingName NAME NOT FOUND Length: 144 97 12:38:31,4816720 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{C870044B-F49E-4126-A9C3-B52A1FF411E8}\InfoTip NAME NOT FOUND Length: 144 97 12:38:31,4816902 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{C870044B-F49E-4126-A9C3-B52A1FF411E8}\LocalizedName NAME NOT FOUND Length: 144 97 12:38:31,4817049 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{C870044B-F49E-4126-A9C3-B52A1FF411E8}\Icon NAME NOT FOUND Length: 144 97 12:38:31,4817185 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{C870044B-F49E-4126-A9C3-B52A1FF411E8}\Security NAME NOT FOUND Length: 144 97 12:38:31,4817315 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{C870044B-F49E-4126-A9C3-B52A1FF411E8}\StreamResource NAME NOT FOUND Length: 144 97 12:38:31,4817448 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{C870044B-F49E-4126-A9C3-B52A1FF411E8}\StreamResourceType NAME NOT FOUND Length: 144 97 12:38:31,4817578 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{C870044B-F49E-4126-A9C3-B52A1FF411E8}\LocalRedirectOnly NAME NOT FOUND Length: 144 97 12:38:31,4817706 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{C870044B-F49E-4126-A9C3-B52A1FF411E8}\Roamable NAME NOT FOUND Length: 144 97 12:38:31,4817833 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{C870044B-F49E-4126-A9C3-B52A1FF411E8}\PreCreate SUCCESS Type: REG_DWORD, Length: 4, Data: 1 97 12:38:31,4817986 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{C870044B-F49E-4126-A9C3-B52A1FF411E8}\Stream NAME NOT FOUND Length: 144 97 12:38:31,4818116 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{C870044B-F49E-4126-A9C3-B52A1FF411E8}\PublishExpandedPath NAME NOT FOUND Length: 144 97 12:38:31,4818263 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{C870044B-F49E-4126-A9C3-B52A1FF411E8}\DefinitionFlags NAME NOT FOUND Length: 144 97 12:38:31,4818426 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{C870044B-F49E-4126-A9C3-B52A1FF411E8}\Attributes NAME NOT FOUND Length: 144 97 12:38:31,4818562 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{C870044B-F49E-4126-A9C3-B52A1FF411E8}\FolderTypeID NAME NOT FOUND Length: 144 97 12:38:31,4818670 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{C870044B-F49E-4126-A9C3-B52A1FF411E8}\InitFolderHandler NAME NOT FOUND Length: 144 97 12:38:31,4818817 MCLauncher.exe 84 RegQueryKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{C870044B-F49E-4126-A9C3-B52A1FF411E8} SUCCESS Query: HandleTags, HandleTags: 0x400 97 12:38:31,4818886 MCLauncher.exe 84 RegOpenKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{C870044B-F49E-4126-A9C3-B52A1FF411E8}\PropertyBag NAME NOT FOUND Desired Access: Read 97 12:38:31,4818983 MCLauncher.exe 84 RegCloseKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{C870044B-F49E-4126-A9C3-B52A1FF411E8} SUCCESS 97 12:38:31,4819086 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:31,4819135 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: Name 97 12:38:31,4819227 MCLauncher.exe 84 RegOpenKey HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS Desired Access: Read 97 12:38:31,4819310 MCLauncher.exe 84 RegSetInfoKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 97 12:38:31,4819377 MCLauncher.exe 84 RegQueryKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS Query: HandleTags, HandleTags: 0x400 97 12:38:31,4819429 MCLauncher.exe 84 RegOpenKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{0139D44E-6AFE-49F2-8690-3DAFCAE6FFB8} SUCCESS Desired Access: Read 97 12:38:31,4819510 MCLauncher.exe 84 RegCloseKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS 97 12:38:31,4819557 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{0139D44E-6AFE-49F2-8690-3DAFCAE6FFB8}\Category SUCCESS Type: REG_DWORD, Length: 4, Data: 3 97 12:38:31,4819690 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{0139D44E-6AFE-49F2-8690-3DAFCAE6FFB8}\Name SUCCESS Type: REG_SZ, Length: 32, Data: Common Programs 97 12:38:31,4819823 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{0139D44E-6AFE-49F2-8690-3DAFCAE6FFB8}\ParentFolder SUCCESS Type: REG_SZ, Length: 78, Data: {A4115719-D62E-491D-AA7C-E74B8BE3B067} 97 12:38:31,4819950 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{0139D44E-6AFE-49F2-8690-3DAFCAE6FFB8}\Description NAME NOT FOUND Length: 144 97 12:38:31,4820058 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{0139D44E-6AFE-49F2-8690-3DAFCAE6FFB8}\RelativePath SUCCESS Type: REG_SZ, Length: 18, Data: Programs 97 12:38:31,4820183 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{0139D44E-6AFE-49F2-8690-3DAFCAE6FFB8}\ParsingName NAME NOT FOUND Length: 144 97 12:38:31,4820291 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{0139D44E-6AFE-49F2-8690-3DAFCAE6FFB8}\InfoTip NAME NOT FOUND Length: 144 97 12:38:31,4820396 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{0139D44E-6AFE-49F2-8690-3DAFCAE6FFB8}\LocalizedName SUCCESS Type: REG_EXPAND_SZ, Length: 84, Data: @%SystemRoot%\system32\shell32.dll,-21782 97 12:38:31,4820518 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{0139D44E-6AFE-49F2-8690-3DAFCAE6FFB8}\Icon NAME NOT FOUND Length: 144 97 12:38:31,4820623 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{0139D44E-6AFE-49F2-8690-3DAFCAE6FFB8}\Security NAME NOT FOUND Length: 144 97 12:38:31,4820729 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{0139D44E-6AFE-49F2-8690-3DAFCAE6FFB8}\StreamResource NAME NOT FOUND Length: 144 97 12:38:31,4820831 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{0139D44E-6AFE-49F2-8690-3DAFCAE6FFB8}\StreamResourceType NAME NOT FOUND Length: 144 97 12:38:31,4820936 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{0139D44E-6AFE-49F2-8690-3DAFCAE6FFB8}\LocalRedirectOnly NAME NOT FOUND Length: 144 97 12:38:31,4821039 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{0139D44E-6AFE-49F2-8690-3DAFCAE6FFB8}\Roamable NAME NOT FOUND Length: 144 97 12:38:31,4821144 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{0139D44E-6AFE-49F2-8690-3DAFCAE6FFB8}\PreCreate SUCCESS Type: REG_DWORD, Length: 4, Data: 1 97 12:38:31,4821261 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{0139D44E-6AFE-49F2-8690-3DAFCAE6FFB8}\Stream NAME NOT FOUND Length: 144 97 12:38:31,4821366 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{0139D44E-6AFE-49F2-8690-3DAFCAE6FFB8}\PublishExpandedPath NAME NOT FOUND Length: 144 97 12:38:31,4821468 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{0139D44E-6AFE-49F2-8690-3DAFCAE6FFB8}\DefinitionFlags NAME NOT FOUND Length: 144 97 12:38:31,4821596 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{0139D44E-6AFE-49F2-8690-3DAFCAE6FFB8}\Attributes SUCCESS Type: REG_DWORD, Length: 4, Data: 1 97 12:38:31,4821712 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{0139D44E-6AFE-49F2-8690-3DAFCAE6FFB8}\FolderTypeID NAME NOT FOUND Length: 144 97 12:38:31,4821817 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{0139D44E-6AFE-49F2-8690-3DAFCAE6FFB8}\InitFolderHandler NAME NOT FOUND Length: 144 97 12:38:31,4821953 MCLauncher.exe 84 RegQueryKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{0139D44E-6AFE-49F2-8690-3DAFCAE6FFB8} SUCCESS Query: HandleTags, HandleTags: 0x400 97 12:38:31,4822017 MCLauncher.exe 84 RegOpenKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{0139D44E-6AFE-49F2-8690-3DAFCAE6FFB8}\PropertyBag NAME NOT FOUND Desired Access: Read 97 12:38:31,4822097 MCLauncher.exe 84 RegCloseKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{0139D44E-6AFE-49F2-8690-3DAFCAE6FFB8} SUCCESS 97 12:38:31,4822186 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:31,4822236 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: Name 97 12:38:31,4822319 MCLauncher.exe 84 RegOpenKey HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS Desired Access: Read 97 12:38:31,4822396 MCLauncher.exe 84 RegSetInfoKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 97 12:38:31,4822455 MCLauncher.exe 84 RegQueryKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS Query: HandleTags, HandleTags: 0x400 97 12:38:31,4822507 MCLauncher.exe 84 RegOpenKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{C5ABBF53-E17F-4121-8900-86626FC2C973} SUCCESS Desired Access: Read 97 12:38:31,4822582 MCLauncher.exe 84 RegCloseKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS 97 12:38:31,4822626 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{C5ABBF53-E17F-4121-8900-86626FC2C973}\Category SUCCESS Type: REG_DWORD, Length: 4, Data: 4 97 12:38:31,4822754 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{C5ABBF53-E17F-4121-8900-86626FC2C973}\Name SUCCESS Type: REG_SZ, Length: 16, Data: NetHood 97 12:38:31,4822881 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{C5ABBF53-E17F-4121-8900-86626FC2C973}\ParentFolder SUCCESS Type: REG_SZ, Length: 78, Data: {3EB685DB-65F9-4CF6-A03A-E3EF65729F3D} 97 12:38:31,4823006 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{C5ABBF53-E17F-4121-8900-86626FC2C973}\Description NAME NOT FOUND Length: 144 97 12:38:31,4823111 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{C5ABBF53-E17F-4121-8900-86626FC2C973}\RelativePath SUCCESS Type: REG_SZ, Length: 72, Data: Microsoft\Windows\Network Shortcuts 97 12:38:31,4823250 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{C5ABBF53-E17F-4121-8900-86626FC2C973}\ParsingName NAME NOT FOUND Length: 144 97 12:38:31,4823358 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{C5ABBF53-E17F-4121-8900-86626FC2C973}\InfoTip NAME NOT FOUND Length: 144 97 12:38:31,4823463 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{C5ABBF53-E17F-4121-8900-86626FC2C973}\LocalizedName NAME NOT FOUND Length: 144 97 12:38:31,4823568 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{C5ABBF53-E17F-4121-8900-86626FC2C973}\Icon NAME NOT FOUND Length: 144 97 12:38:31,4823671 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{C5ABBF53-E17F-4121-8900-86626FC2C973}\Security NAME NOT FOUND Length: 144 97 12:38:31,4823773 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{C5ABBF53-E17F-4121-8900-86626FC2C973}\StreamResource NAME NOT FOUND Length: 144 97 12:38:31,4823879 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{C5ABBF53-E17F-4121-8900-86626FC2C973}\StreamResourceType NAME NOT FOUND Length: 144 97 12:38:31,4823981 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{C5ABBF53-E17F-4121-8900-86626FC2C973}\LocalRedirectOnly NAME NOT FOUND Length: 144 97 12:38:31,4824084 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{C5ABBF53-E17F-4121-8900-86626FC2C973}\Roamable NAME NOT FOUND Length: 144 97 12:38:31,4824328 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{C5ABBF53-E17F-4121-8900-86626FC2C973}\PreCreate NAME NOT FOUND Length: 144 97 12:38:31,4824497 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{C5ABBF53-E17F-4121-8900-86626FC2C973}\Stream NAME NOT FOUND Length: 144 97 12:38:31,4824663 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{C5ABBF53-E17F-4121-8900-86626FC2C973}\PublishExpandedPath NAME NOT FOUND Length: 144 97 12:38:31,4824826 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{C5ABBF53-E17F-4121-8900-86626FC2C973}\DefinitionFlags NAME NOT FOUND Length: 144 97 12:38:31,4824965 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{C5ABBF53-E17F-4121-8900-86626FC2C973}\Attributes NAME NOT FOUND Length: 144 97 12:38:31,4825076 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{C5ABBF53-E17F-4121-8900-86626FC2C973}\FolderTypeID NAME NOT FOUND Length: 144 97 12:38:31,4825181 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{C5ABBF53-E17F-4121-8900-86626FC2C973}\InitFolderHandler NAME NOT FOUND Length: 144 97 12:38:31,4825322 MCLauncher.exe 84 RegQueryKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{C5ABBF53-E17F-4121-8900-86626FC2C973} SUCCESS Query: HandleTags, HandleTags: 0x400 97 12:38:31,4825389 MCLauncher.exe 84 RegOpenKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{C5ABBF53-E17F-4121-8900-86626FC2C973}\PropertyBag NAME NOT FOUND Desired Access: Read 97 12:38:31,4825480 MCLauncher.exe 84 RegCloseKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{C5ABBF53-E17F-4121-8900-86626FC2C973} SUCCESS 97 12:38:31,4825580 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:31,4825627 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: Name 97 12:38:31,4825716 MCLauncher.exe 84 RegOpenKey HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS Desired Access: Read 97 12:38:31,4825796 MCLauncher.exe 84 RegSetInfoKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 97 12:38:31,4825860 MCLauncher.exe 84 RegQueryKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS Query: HandleTags, HandleTags: 0x400 97 12:38:31,4825910 MCLauncher.exe 84 RegOpenKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{56784854-C6CB-462B-8169-88E350ACB882} SUCCESS Desired Access: Read 97 12:38:31,4825984 MCLauncher.exe 84 RegCloseKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS 97 12:38:31,4826029 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{56784854-C6CB-462B-8169-88E350ACB882}\Category SUCCESS Type: REG_DWORD, Length: 4, Data: 4 97 12:38:31,4826167 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{56784854-C6CB-462B-8169-88E350ACB882}\Name SUCCESS Type: REG_SZ, Length: 18, Data: Contacts 97 12:38:31,4826300 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{56784854-C6CB-462B-8169-88E350ACB882}\ParentFolder NAME NOT FOUND Length: 144 97 12:38:31,4826411 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{56784854-C6CB-462B-8169-88E350ACB882}\Description NAME NOT FOUND Length: 144 97 12:38:31,4826516 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{56784854-C6CB-462B-8169-88E350ACB882}\RelativePath SUCCESS Type: REG_SZ, Length: 18, Data: Contacts 97 12:38:31,4826641 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{56784854-C6CB-462B-8169-88E350ACB882}\ParsingName BUFFER OVERFLOW Length: 144 97 12:38:31,4826752 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{56784854-C6CB-462B-8169-88E350ACB882}\ParsingName SUCCESS Type: REG_SZ, Length: 160, Data: ::{59031a47-3f72-44a7-89c5-5595fe6b30ee}\{56784854-C6CB-462B-8169-88E350ACB882} 97 12:38:31,4826879 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{56784854-C6CB-462B-8169-88E350ACB882}\InfoTip SUCCESS Type: REG_EXPAND_SZ, Length: 98, Data: @%CommonProgramFiles%\system\wab32res.dll,-10200 97 12:38:31,4827007 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{56784854-C6CB-462B-8169-88E350ACB882}\LocalizedName SUCCESS Type: REG_EXPAND_SZ, Length: 98, Data: @%CommonProgramFiles%\system\wab32res.dll,-10100 97 12:38:31,4827131 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{56784854-C6CB-462B-8169-88E350ACB882}\Icon SUCCESS Type: REG_EXPAND_SZ, Length: 80, Data: %SystemRoot%\system32\imageres.dll,-181 97 12:38:31,4827256 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{56784854-C6CB-462B-8169-88E350ACB882}\Security NAME NOT FOUND Length: 144 97 12:38:31,4827389 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{56784854-C6CB-462B-8169-88E350ACB882}\StreamResource NAME NOT FOUND Length: 144 97 12:38:31,4827494 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{56784854-C6CB-462B-8169-88E350ACB882}\StreamResourceType NAME NOT FOUND Length: 144 97 12:38:31,4827600 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{56784854-C6CB-462B-8169-88E350ACB882}\LocalRedirectOnly NAME NOT FOUND Length: 144 97 12:38:31,4827705 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{56784854-C6CB-462B-8169-88E350ACB882}\Roamable SUCCESS Type: REG_DWORD, Length: 4, Data: 1 97 12:38:31,4827821 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{56784854-C6CB-462B-8169-88E350ACB882}\PreCreate SUCCESS Type: REG_DWORD, Length: 4, Data: 1 97 12:38:31,4827940 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{56784854-C6CB-462B-8169-88E350ACB882}\Stream NAME NOT FOUND Length: 144 97 12:38:31,4828046 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{56784854-C6CB-462B-8169-88E350ACB882}\PublishExpandedPath SUCCESS Type: REG_DWORD, Length: 4, Data: 1 97 12:38:31,4828162 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{56784854-C6CB-462B-8169-88E350ACB882}\DefinitionFlags NAME NOT FOUND Length: 144 97 12:38:31,4828267 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{56784854-C6CB-462B-8169-88E350ACB882}\Attributes SUCCESS Type: REG_DWORD, Length: 4, Data: 1 97 12:38:31,4828386 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{56784854-C6CB-462B-8169-88E350ACB882}\FolderTypeID SUCCESS Type: REG_SZ, Length: 78, Data: {de2b70ec-9bf7-4a93-bd3d-243f7881d492} 97 12:38:31,4828508 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{56784854-C6CB-462B-8169-88E350ACB882}\InitFolderHandler NAME NOT FOUND Length: 144 97 12:38:31,4828650 MCLauncher.exe 84 RegQueryKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{56784854-C6CB-462B-8169-88E350ACB882} SUCCESS Query: HandleTags, HandleTags: 0x400 97 12:38:31,4828711 MCLauncher.exe 84 RegOpenKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{56784854-C6CB-462B-8169-88E350ACB882}\PropertyBag SUCCESS Desired Access: Read 97 12:38:31,4828799 MCLauncher.exe 84 RegCloseKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{56784854-C6CB-462B-8169-88E350ACB882} SUCCESS 97 12:38:31,4828891 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{56784854-C6CB-462B-8169-88E350ACB882}\PropertyBag\ThisPCPolicy NAME NOT FOUND Length: 144 97 12:38:31,4829029 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:31,4829090 MCLauncher.exe 84 RegOpenKey HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\AllowedEnumeration NAME NOT FOUND Desired Access: Read 97 12:38:31,4829201 MCLauncher.exe 84 RegQueryKey HKCU SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:31,4829254 MCLauncher.exe 84 RegOpenKey HKCU\Software\Microsoft\Windows\CurrentVersion\Explorer\AllowedEnumeration NAME NOT FOUND Desired Access: Read 97 12:38:31,4829448 MCLauncher.exe 84 RegQueryKey HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer SUCCESS Query: HandleTags, HandleTags: 0x400 97 12:38:31,4829500 MCLauncher.exe 84 RegOpenKey HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\SessionInfo\1 SUCCESS Desired Access: Query Value 97 12:38:31,4829597 MCLauncher.exe 84 RegQueryKey HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\SessionInfo\1 SUCCESS Query: HandleTags, HandleTags: 0x400 97 12:38:31,4829650 MCLauncher.exe 84 RegOpenKey HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\SessionInfo\1\KnownFolders NAME NOT FOUND Desired Access: Query Value 97 12:38:31,4829722 MCLauncher.exe 84 RegCloseKey HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\SessionInfo\1 SUCCESS 97 12:38:31,4829813 MCLauncher.exe 84 RegOpenKey HKCU SUCCESS Desired Access: Read 97 12:38:31,4829991 MCLauncher.exe 84 RegQueryKey HKCU SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:31,4830040 MCLauncher.exe 84 RegQueryKey HKCU SUCCESS Query: Name 97 12:38:31,4830115 MCLauncher.exe 84 RegOpenKey HKCU\Software\Microsoft\Windows\CurrentVersion\Explorer\User Shell Folders SUCCESS Desired Access: Read 97 12:38:31,4830198 MCLauncher.exe 84 RegSetInfoKey HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\User Shell Folders SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 97 12:38:31,4830245 MCLauncher.exe 84 RegCloseKey HKCU SUCCESS 97 12:38:31,4830301 MCLauncher.exe 84 RegQueryValue HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\User Shell Folders\{56784854-C6CB-462B-8169-88E350ACB882} NAME NOT FOUND Length: 144 97 12:38:31,4830561 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:31,4830614 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: Name 97 12:38:31,4830708 MCLauncher.exe 84 RegOpenKey HKLM\Software\WOW6432Node\Microsoft\Windows NT\CurrentVersion\ProfileList\S-1-5-21-3477790013-1571897634-1299942168-1000 REPARSE Desired Access: Read 97 12:38:31,4830794 MCLauncher.exe 84 RegOpenKey HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\ProfileList\S-1-5-21-3477790013-1571897634-1299942168-1000 SUCCESS Desired Access: Read 97 12:38:31,4830855 MCLauncher.exe 84 RegSetInfoKey HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\ProfileList\S-1-5-21-3477790013-1571897634-1299942168-1000 SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 97 12:38:31,4830899 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\ProfileList\S-1-5-21-3477790013-1571897634-1299942168-1000\ProfileImagePath SUCCESS Type: REG_EXPAND_SZ, Length: 28, Data: C:\Users\User 97 12:38:31,4831043 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\ProfileList\S-1-5-21-3477790013-1571897634-1299942168-1000\ProfileImagePath SUCCESS Type: REG_EXPAND_SZ, Length: 28, Data: C:\Users\User 97 12:38:31,4831176 MCLauncher.exe 84 RegCloseKey HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\ProfileList\S-1-5-21-3477790013-1571897634-1299942168-1000 SUCCESS 97 12:38:31,4831259 MCLauncher.exe 84 RegCloseKey HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\User Shell Folders SUCCESS 97 12:38:31,4831356 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:31,4831406 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: Name 97 12:38:31,4831495 MCLauncher.exe 84 RegOpenKey HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS Desired Access: Read 97 12:38:31,4831578 MCLauncher.exe 84 RegSetInfoKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 97 12:38:31,4831642 MCLauncher.exe 84 RegQueryKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS Query: HandleTags, HandleTags: 0x400 97 12:38:31,4831694 MCLauncher.exe 84 RegOpenKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{BCBD3057-CA5C-4622-B42D-BC56DB0AE516} SUCCESS Desired Access: Read 97 12:38:31,4831769 MCLauncher.exe 84 RegCloseKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS 97 12:38:31,4831819 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{bcbd3057-ca5c-4622-b42d-bc56db0ae516}\Category SUCCESS Type: REG_DWORD, Length: 4, Data: 4 97 12:38:31,4831949 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{bcbd3057-ca5c-4622-b42d-bc56db0ae516}\Name SUCCESS Type: REG_SZ, Length: 46, Data: UserProgramFilesCommon 97 12:38:31,4832080 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{bcbd3057-ca5c-4622-b42d-bc56db0ae516}\ParentFolder SUCCESS Type: REG_SZ, Length: 78, Data: {5cd7aee2-2219-4a67-b85d-6c9ce15660cb} 97 12:38:31,4832207 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{bcbd3057-ca5c-4622-b42d-bc56db0ae516}\Description NAME NOT FOUND Length: 144 97 12:38:31,4832315 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{bcbd3057-ca5c-4622-b42d-bc56db0ae516}\RelativePath SUCCESS Type: REG_SZ, Length: 14, Data: Common 97 12:38:31,4832437 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{bcbd3057-ca5c-4622-b42d-bc56db0ae516}\ParsingName NAME NOT FOUND Length: 144 97 12:38:31,4832570 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{bcbd3057-ca5c-4622-b42d-bc56db0ae516}\InfoTip NAME NOT FOUND Length: 144 97 12:38:31,4832675 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{bcbd3057-ca5c-4622-b42d-bc56db0ae516}\LocalizedName NAME NOT FOUND Length: 144 97 12:38:31,4832778 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{bcbd3057-ca5c-4622-b42d-bc56db0ae516}\Icon NAME NOT FOUND Length: 144 97 12:38:31,4832880 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{bcbd3057-ca5c-4622-b42d-bc56db0ae516}\Security NAME NOT FOUND Length: 144 97 12:38:31,4832986 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{bcbd3057-ca5c-4622-b42d-bc56db0ae516}\StreamResource NAME NOT FOUND Length: 144 97 12:38:31,4833088 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{bcbd3057-ca5c-4622-b42d-bc56db0ae516}\StreamResourceType NAME NOT FOUND Length: 144 97 12:38:31,4833193 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{bcbd3057-ca5c-4622-b42d-bc56db0ae516}\LocalRedirectOnly NAME NOT FOUND Length: 144 97 12:38:31,4833296 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{bcbd3057-ca5c-4622-b42d-bc56db0ae516}\Roamable NAME NOT FOUND Length: 144 97 12:38:31,4833398 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{bcbd3057-ca5c-4622-b42d-bc56db0ae516}\PreCreate NAME NOT FOUND Length: 144 97 12:38:31,4833504 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{bcbd3057-ca5c-4622-b42d-bc56db0ae516}\Stream NAME NOT FOUND Length: 144 97 12:38:31,4833606 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{bcbd3057-ca5c-4622-b42d-bc56db0ae516}\PublishExpandedPath NAME NOT FOUND Length: 144 97 12:38:31,4833709 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{bcbd3057-ca5c-4622-b42d-bc56db0ae516}\DefinitionFlags NAME NOT FOUND Length: 144 97 12:38:31,4833811 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{bcbd3057-ca5c-4622-b42d-bc56db0ae516}\Attributes NAME NOT FOUND Length: 144 97 12:38:31,4834024 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{bcbd3057-ca5c-4622-b42d-bc56db0ae516}\FolderTypeID NAME NOT FOUND Length: 144 97 12:38:31,4834207 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{bcbd3057-ca5c-4622-b42d-bc56db0ae516}\InitFolderHandler NAME NOT FOUND Length: 144 97 12:38:31,4834423 MCLauncher.exe 84 RegQueryKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{bcbd3057-ca5c-4622-b42d-bc56db0ae516} SUCCESS Query: HandleTags, HandleTags: 0x400 97 12:38:31,4834515 MCLauncher.exe 84 RegOpenKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{bcbd3057-ca5c-4622-b42d-bc56db0ae516}\PropertyBag NAME NOT FOUND Desired Access: Read 97 12:38:31,4834612 MCLauncher.exe 84 RegCloseKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{bcbd3057-ca5c-4622-b42d-bc56db0ae516} SUCCESS 97 12:38:31,4834714 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:31,4834764 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: Name 97 12:38:31,4834850 MCLauncher.exe 84 RegOpenKey HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS Desired Access: Read 97 12:38:31,4834930 MCLauncher.exe 84 RegSetInfoKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 97 12:38:31,4834994 MCLauncher.exe 84 RegQueryKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS Query: HandleTags, HandleTags: 0x400 97 12:38:31,4835044 MCLauncher.exe 84 RegOpenKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{00BCFC5A-ED94-4E48-96A1-3F6217F21990} SUCCESS Desired Access: Read 97 12:38:31,4835119 MCLauncher.exe 84 RegCloseKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS 97 12:38:31,4835166 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{00BCFC5A-ED94-4e48-96A1-3F6217F21990}\Category SUCCESS Type: REG_DWORD, Length: 4, Data: 4 97 12:38:31,4835304 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{00BCFC5A-ED94-4e48-96A1-3F6217F21990}\Name SUCCESS Type: REG_SZ, Length: 28, Data: Roaming Tiles 97 12:38:31,4835437 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{00BCFC5A-ED94-4e48-96A1-3F6217F21990}\ParentFolder SUCCESS Type: REG_SZ, Length: 78, Data: {F1B32785-6FBA-4FCF-9D55-7B8E7F157091} 97 12:38:31,4835562 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{00BCFC5A-ED94-4e48-96A1-3F6217F21990}\Description NAME NOT FOUND Length: 144 97 12:38:31,4835667 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{00BCFC5A-ED94-4e48-96A1-3F6217F21990}\RelativePath SUCCESS Type: REG_SZ, Length: 62, Data: Microsoft\Windows\RoamingTiles 97 12:38:31,4835789 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{00BCFC5A-ED94-4e48-96A1-3F6217F21990}\ParsingName NAME NOT FOUND Length: 144 97 12:38:31,4835895 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{00BCFC5A-ED94-4e48-96A1-3F6217F21990}\InfoTip NAME NOT FOUND Length: 144 97 12:38:31,4836025 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{00BCFC5A-ED94-4e48-96A1-3F6217F21990}\LocalizedName NAME NOT FOUND Length: 144 97 12:38:31,4836127 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{00BCFC5A-ED94-4e48-96A1-3F6217F21990}\Icon NAME NOT FOUND Length: 144 97 12:38:31,4836230 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{00BCFC5A-ED94-4e48-96A1-3F6217F21990}\Security NAME NOT FOUND Length: 144 97 12:38:31,4836335 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{00BCFC5A-ED94-4e48-96A1-3F6217F21990}\StreamResource NAME NOT FOUND Length: 144 97 12:38:31,4836440 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{00BCFC5A-ED94-4e48-96A1-3F6217F21990}\StreamResourceType NAME NOT FOUND Length: 144 97 12:38:31,4836546 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{00BCFC5A-ED94-4e48-96A1-3F6217F21990}\LocalRedirectOnly NAME NOT FOUND Length: 144 97 12:38:31,4836651 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{00BCFC5A-ED94-4e48-96A1-3F6217F21990}\Roamable NAME NOT FOUND Length: 144 97 12:38:31,4836753 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{00BCFC5A-ED94-4e48-96A1-3F6217F21990}\PreCreate SUCCESS Type: REG_DWORD, Length: 4, Data: 1 97 12:38:31,4836873 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{00BCFC5A-ED94-4e48-96A1-3F6217F21990}\Stream NAME NOT FOUND Length: 144 97 12:38:31,4836978 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{00BCFC5A-ED94-4e48-96A1-3F6217F21990}\PublishExpandedPath SUCCESS Type: REG_DWORD, Length: 4, Data: 1 97 12:38:31,4837094 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{00BCFC5A-ED94-4e48-96A1-3F6217F21990}\DefinitionFlags NAME NOT FOUND Length: 144 97 12:38:31,4837200 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{00BCFC5A-ED94-4e48-96A1-3F6217F21990}\Attributes NAME NOT FOUND Length: 144 97 12:38:31,4837305 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{00BCFC5A-ED94-4e48-96A1-3F6217F21990}\FolderTypeID NAME NOT FOUND Length: 144 97 12:38:31,4837407 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{00BCFC5A-ED94-4e48-96A1-3F6217F21990}\InitFolderHandler NAME NOT FOUND Length: 144 97 12:38:31,4837549 MCLauncher.exe 84 RegQueryKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{00BCFC5A-ED94-4e48-96A1-3F6217F21990} SUCCESS Query: HandleTags, HandleTags: 0x400 97 12:38:31,4837610 MCLauncher.exe 84 RegOpenKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{00BCFC5A-ED94-4e48-96A1-3F6217F21990}\PropertyBag NAME NOT FOUND Desired Access: Read 97 12:38:31,4837693 MCLauncher.exe 84 RegCloseKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{00BCFC5A-ED94-4e48-96A1-3F6217F21990} SUCCESS 97 12:38:31,4837806 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{0ddd015d-b06c-45d5-8c4c-f59713854639}\PropertyBag\ThisPCPolicy SUCCESS Type: REG_SZ, Length: 10, Data: Show 97 12:38:31,4837937 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{0ddd015d-b06c-45d5-8c4c-f59713854639}\PropertyBag\ThisPCPolicy SUCCESS Type: REG_SZ, Length: 10, Data: Show 97 12:38:31,4838072 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{0ddd015d-b06c-45d5-8c4c-f59713854639}\PropertyBag\BaseFolderId SUCCESS Type: REG_SZ, Length: 78, Data: {33E28130-4E1E-4676-835A-98395C3BC3BB} 97 12:38:31,4838194 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{0ddd015d-b06c-45d5-8c4c-f59713854639}\PropertyBag\BaseFolderId SUCCESS Type: REG_SZ, Length: 78, Data: {33E28130-4E1E-4676-835A-98395C3BC3BB} 97 12:38:31,4838513 MCLauncher.exe 84 RegOpenKey HKCU SUCCESS Desired Access: Read 97 12:38:31,4838621 MCLauncher.exe 84 RegQueryKey HKCU SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:31,4838671 MCLauncher.exe 84 RegQueryKey HKCU SUCCESS Query: Name 97 12:38:31,4838746 MCLauncher.exe 84 RegOpenKey HKCU\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer SUCCESS Desired Access: Query Value 97 12:38:31,4838829 MCLauncher.exe 84 RegSetInfoKey HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 97 12:38:31,4838873 MCLauncher.exe 84 RegQueryValue HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer\DisablePersonalDirChange NAME NOT FOUND Length: 144 97 12:38:31,4838989 MCLauncher.exe 84 RegCloseKey HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer SUCCESS 97 12:38:31,4839086 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:31,4839136 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: Name 97 12:38:31,4839225 MCLauncher.exe 84 RegOpenKey HKLM\Software\WOW6432Node\Microsoft\Windows NT\CurrentVersion\Terminal Server NAME NOT FOUND Desired Access: Read 97 12:38:31,4839325 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:31,4839372 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: Name 97 12:38:31,4839444 MCLauncher.exe 84 RegOpenKey HKLM\Software\WOW6432Node\Microsoft\Windows NT\CurrentVersion\Terminal Server NAME NOT FOUND Desired Access: Read 97 12:38:31,4839566 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:31,4839613 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: Name 97 12:38:31,4839693 MCLauncher.exe 84 RegOpenKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows NT\CurrentVersion\ProfileList\S-1-5-21-3477790013-1571897634-1299942168-1000\fdeploy REPARSE Desired Access: Read 97 12:38:31,4839765 MCLauncher.exe 84 RegOpenKey HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\ProfileList\S-1-5-21-3477790013-1571897634-1299942168-1000\fdeploy NAME NOT FOUND Desired Access: Read 97 12:38:31,4839857 MCLauncher.exe 84 RegQueryKey HKCU SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:31,4839904 MCLauncher.exe 84 RegQueryKey HKCU SUCCESS Query: Name 97 12:38:31,4839973 MCLauncher.exe 84 RegOpenKey HKCU\Software\Microsoft\Windows\CurrentVersion\Explorer\User Shell Folders SUCCESS Desired Access: Write 97 12:38:31,4840053 MCLauncher.exe 84 RegSetInfoKey HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\User Shell Folders SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 97 12:38:31,4840100 MCLauncher.exe 84 RegCloseKey HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\User Shell Folders SUCCESS 97 12:38:31,4840142 MCLauncher.exe 84 RegCloseKey HKCU SUCCESS 97 12:38:31,4840217 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:31,4840269 MCLauncher.exe 84 RegOpenKey HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\AllowedEnumeration NAME NOT FOUND Desired Access: Read 97 12:38:31,4840358 MCLauncher.exe 84 RegQueryKey HKCU SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:31,4840411 MCLauncher.exe 84 RegOpenKey HKCU\Software\Microsoft\Windows\CurrentVersion\Explorer\AllowedEnumeration NAME NOT FOUND Desired Access: Read 97 12:38:31,4840533 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:31,4840580 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: Name 97 12:38:31,4840654 MCLauncher.exe 84 RegOpenKey HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS Desired Access: Read 97 12:38:31,4840726 MCLauncher.exe 84 RegSetInfoKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 97 12:38:31,4840787 MCLauncher.exe 84 RegQueryKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS Query: HandleTags, HandleTags: 0x400 97 12:38:31,4840837 MCLauncher.exe 84 RegOpenKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{A302545D-DEFF-464B-ABE8-61C8648D939B} SUCCESS Desired Access: Read 97 12:38:31,4840918 MCLauncher.exe 84 RegCloseKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS 97 12:38:31,4840970 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{A302545D-DEFF-464b-ABE8-61C8648D939B}\Category SUCCESS Type: REG_DWORD, Length: 4, Data: 1 97 12:38:31,4841112 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{A302545D-DEFF-464b-ABE8-61C8648D939B}\Name SUCCESS Type: REG_SZ, Length: 42, Data: UsersLibrariesFolder 97 12:38:31,4841245 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{A302545D-DEFF-464b-ABE8-61C8648D939B}\ParentFolder NAME NOT FOUND Length: 144 97 12:38:31,4841355 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{A302545D-DEFF-464b-ABE8-61C8648D939B}\Description NAME NOT FOUND Length: 144 97 12:38:31,4841461 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{A302545D-DEFF-464b-ABE8-61C8648D939B}\RelativePath NAME NOT FOUND Length: 144 97 12:38:31,4841566 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{A302545D-DEFF-464b-ABE8-61C8648D939B}\ParsingName SUCCESS Type: REG_SZ, Length: 82, Data: ::{031E4825-7B94-4dc3-B131-E946B44C8DD5} 97 12:38:31,4841688 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{A302545D-DEFF-464b-ABE8-61C8648D939B}\InfoTip NAME NOT FOUND Length: 144 97 12:38:31,4841793 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{A302545D-DEFF-464b-ABE8-61C8648D939B}\LocalizedName NAME NOT FOUND Length: 144 97 12:38:31,4841898 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{A302545D-DEFF-464b-ABE8-61C8648D939B}\Icon NAME NOT FOUND Length: 144 97 12:38:31,4842001 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{A302545D-DEFF-464b-ABE8-61C8648D939B}\Security NAME NOT FOUND Length: 144 97 12:38:31,4842103 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{A302545D-DEFF-464b-ABE8-61C8648D939B}\StreamResource NAME NOT FOUND Length: 144 97 12:38:31,4842209 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{A302545D-DEFF-464b-ABE8-61C8648D939B}\StreamResourceType NAME NOT FOUND Length: 144 97 12:38:31,4842311 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{A302545D-DEFF-464b-ABE8-61C8648D939B}\LocalRedirectOnly NAME NOT FOUND Length: 144 97 12:38:31,4842414 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{A302545D-DEFF-464b-ABE8-61C8648D939B}\Roamable NAME NOT FOUND Length: 144 97 12:38:31,4842516 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{A302545D-DEFF-464b-ABE8-61C8648D939B}\PreCreate NAME NOT FOUND Length: 144 97 12:38:31,4842619 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{A302545D-DEFF-464b-ABE8-61C8648D939B}\Stream NAME NOT FOUND Length: 144 97 12:38:31,4842721 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{A302545D-DEFF-464b-ABE8-61C8648D939B}\PublishExpandedPath NAME NOT FOUND Length: 144 97 12:38:31,4842824 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{A302545D-DEFF-464b-ABE8-61C8648D939B}\DefinitionFlags NAME NOT FOUND Length: 144 97 12:38:31,4842929 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{A302545D-DEFF-464b-ABE8-61C8648D939B}\Attributes NAME NOT FOUND Length: 144 97 12:38:31,4843032 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{A302545D-DEFF-464b-ABE8-61C8648D939B}\FolderTypeID NAME NOT FOUND Length: 144 97 12:38:31,4843134 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{A302545D-DEFF-464b-ABE8-61C8648D939B}\InitFolderHandler NAME NOT FOUND Length: 144 97 12:38:31,4843270 MCLauncher.exe 84 RegQueryKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{A302545D-DEFF-464b-ABE8-61C8648D939B} SUCCESS Query: HandleTags, HandleTags: 0x400 97 12:38:31,4843331 MCLauncher.exe 84 RegOpenKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{A302545D-DEFF-464b-ABE8-61C8648D939B}\PropertyBag SUCCESS Desired Access: Read 97 12:38:31,4843417 MCLauncher.exe 84 RegCloseKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{A302545D-DEFF-464b-ABE8-61C8648D939B} SUCCESS 97 12:38:31,4843508 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:31,4843558 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: Name 97 12:38:31,4843638 MCLauncher.exe 84 RegOpenKey HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS Desired Access: Read 97 12:38:31,4843838 MCLauncher.exe 84 RegSetInfoKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 97 12:38:31,4843913 MCLauncher.exe 84 RegQueryKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS Query: HandleTags, HandleTags: 0x400 97 12:38:31,4843971 MCLauncher.exe 84 RegOpenKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{2B0F765D-C0E9-4171-908E-08A611B84FF6} SUCCESS Desired Access: Read 97 12:38:31,4844054 MCLauncher.exe 84 RegCloseKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS 97 12:38:31,4844104 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{2B0F765D-C0E9-4171-908E-08A611B84FF6}\Category SUCCESS Type: REG_DWORD, Length: 4, Data: 4 97 12:38:31,4844234 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{2B0F765D-C0E9-4171-908E-08A611B84FF6}\Name SUCCESS Type: REG_SZ, Length: 16, Data: Cookies 97 12:38:31,4844364 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{2B0F765D-C0E9-4171-908E-08A611B84FF6}\ParentFolder SUCCESS Type: REG_SZ, Length: 78, Data: {F1B32785-6FBA-4FCF-9D55-7B8E7F157091} 97 12:38:31,4844489 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{2B0F765D-C0E9-4171-908E-08A611B84FF6}\Description NAME NOT FOUND Length: 144 97 12:38:31,4844597 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{2B0F765D-C0E9-4171-908E-08A611B84FF6}\RelativePath SUCCESS Type: REG_SZ, Length: 60, Data: Microsoft\Windows\INetCookies 97 12:38:31,4844722 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{2B0F765D-C0E9-4171-908E-08A611B84FF6}\ParsingName NAME NOT FOUND Length: 144 97 12:38:31,4844827 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{2B0F765D-C0E9-4171-908E-08A611B84FF6}\InfoTip NAME NOT FOUND Length: 144 97 12:38:31,4844929 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{2B0F765D-C0E9-4171-908E-08A611B84FF6}\LocalizedName NAME NOT FOUND Length: 144 97 12:38:31,4845035 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{2B0F765D-C0E9-4171-908E-08A611B84FF6}\Icon NAME NOT FOUND Length: 144 97 12:38:31,4845137 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{2B0F765D-C0E9-4171-908E-08A611B84FF6}\Security NAME NOT FOUND Length: 144 97 12:38:31,4845242 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{2B0F765D-C0E9-4171-908E-08A611B84FF6}\StreamResource NAME NOT FOUND Length: 144 97 12:38:31,4845345 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{2B0F765D-C0E9-4171-908E-08A611B84FF6}\StreamResourceType NAME NOT FOUND Length: 144 97 12:38:31,4845472 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{2B0F765D-C0E9-4171-908E-08A611B84FF6}\LocalRedirectOnly NAME NOT FOUND Length: 144 97 12:38:31,4845578 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{2B0F765D-C0E9-4171-908E-08A611B84FF6}\Roamable NAME NOT FOUND Length: 144 97 12:38:31,4845683 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{2B0F765D-C0E9-4171-908E-08A611B84FF6}\PreCreate NAME NOT FOUND Length: 144 97 12:38:31,4845786 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{2B0F765D-C0E9-4171-908E-08A611B84FF6}\Stream NAME NOT FOUND Length: 144 97 12:38:31,4845894 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{2B0F765D-C0E9-4171-908E-08A611B84FF6}\PublishExpandedPath NAME NOT FOUND Length: 144 97 12:38:31,4845996 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{2B0F765D-C0E9-4171-908E-08A611B84FF6}\DefinitionFlags NAME NOT FOUND Length: 144 97 12:38:31,4846101 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{2B0F765D-C0E9-4171-908E-08A611B84FF6}\Attributes NAME NOT FOUND Length: 144 97 12:38:31,4846204 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{2B0F765D-C0E9-4171-908E-08A611B84FF6}\FolderTypeID NAME NOT FOUND Length: 144 97 12:38:31,4846306 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{2B0F765D-C0E9-4171-908E-08A611B84FF6}\InitFolderHandler NAME NOT FOUND Length: 144 97 12:38:31,4846442 MCLauncher.exe 84 RegQueryKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{2B0F765D-C0E9-4171-908E-08A611B84FF6} SUCCESS Query: HandleTags, HandleTags: 0x400 97 12:38:31,4846506 MCLauncher.exe 84 RegOpenKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{2B0F765D-C0E9-4171-908E-08A611B84FF6}\PropertyBag NAME NOT FOUND Desired Access: Read 97 12:38:31,4846586 MCLauncher.exe 84 RegCloseKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{2B0F765D-C0E9-4171-908E-08A611B84FF6} SUCCESS 97 12:38:31,4846678 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:31,4846725 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: Name 97 12:38:31,4846805 MCLauncher.exe 84 RegOpenKey HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS Desired Access: Read 97 12:38:31,4846877 MCLauncher.exe 84 RegSetInfoKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 97 12:38:31,4846935 MCLauncher.exe 84 RegQueryKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS Query: HandleTags, HandleTags: 0x400 97 12:38:31,4846988 MCLauncher.exe 84 RegOpenKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{2A00375E-224C-49DE-B8D1-440DF7EF3DDC} SUCCESS Desired Access: Read 97 12:38:31,4847063 MCLauncher.exe 84 RegCloseKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS 97 12:38:31,4847104 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{2A00375E-224C-49DE-B8D1-440DF7EF3DDC}\Category SUCCESS Type: REG_DWORD, Length: 4, Data: 2 97 12:38:31,4847232 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{2A00375E-224C-49DE-B8D1-440DF7EF3DDC}\Name SUCCESS Type: REG_SZ, Length: 44, Data: LocalizedResourcesDir 97 12:38:31,4847362 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{2A00375E-224C-49DE-B8D1-440DF7EF3DDC}\ParentFolder NAME NOT FOUND Length: 144 97 12:38:31,4847470 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{2A00375E-224C-49DE-B8D1-440DF7EF3DDC}\Description NAME NOT FOUND Length: 144 97 12:38:31,4847573 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{2A00375E-224C-49DE-B8D1-440DF7EF3DDC}\RelativePath NAME NOT FOUND Length: 144 97 12:38:31,4847675 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{2A00375E-224C-49DE-B8D1-440DF7EF3DDC}\ParsingName NAME NOT FOUND Length: 144 97 12:38:31,4847778 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{2A00375E-224C-49DE-B8D1-440DF7EF3DDC}\InfoTip NAME NOT FOUND Length: 144 97 12:38:31,4847880 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{2A00375E-224C-49DE-B8D1-440DF7EF3DDC}\LocalizedName NAME NOT FOUND Length: 144 97 12:38:31,4847985 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{2A00375E-224C-49DE-B8D1-440DF7EF3DDC}\Icon NAME NOT FOUND Length: 144 97 12:38:31,4848085 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{2A00375E-224C-49DE-B8D1-440DF7EF3DDC}\Security NAME NOT FOUND Length: 144 97 12:38:31,4848188 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{2A00375E-224C-49DE-B8D1-440DF7EF3DDC}\StreamResource NAME NOT FOUND Length: 144 97 12:38:31,4848290 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{2A00375E-224C-49DE-B8D1-440DF7EF3DDC}\StreamResourceType NAME NOT FOUND Length: 144 97 12:38:31,4848393 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{2A00375E-224C-49DE-B8D1-440DF7EF3DDC}\LocalRedirectOnly NAME NOT FOUND Length: 144 97 12:38:31,4848492 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{2A00375E-224C-49DE-B8D1-440DF7EF3DDC}\Roamable NAME NOT FOUND Length: 144 97 12:38:31,4848595 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{2A00375E-224C-49DE-B8D1-440DF7EF3DDC}\PreCreate NAME NOT FOUND Length: 144 97 12:38:31,4848697 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{2A00375E-224C-49DE-B8D1-440DF7EF3DDC}\Stream NAME NOT FOUND Length: 144 97 12:38:31,4848800 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{2A00375E-224C-49DE-B8D1-440DF7EF3DDC}\PublishExpandedPath NAME NOT FOUND Length: 144 97 12:38:31,4848902 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{2A00375E-224C-49DE-B8D1-440DF7EF3DDC}\DefinitionFlags NAME NOT FOUND Length: 144 97 12:38:31,4849005 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{2A00375E-224C-49DE-B8D1-440DF7EF3DDC}\Attributes NAME NOT FOUND Length: 144 97 12:38:31,4849107 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{2A00375E-224C-49DE-B8D1-440DF7EF3DDC}\FolderTypeID NAME NOT FOUND Length: 144 97 12:38:31,4849301 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{2A00375E-224C-49DE-B8D1-440DF7EF3DDC}\InitFolderHandler NAME NOT FOUND Length: 144 97 12:38:31,4849440 MCLauncher.exe 84 RegQueryKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{2A00375E-224C-49DE-B8D1-440DF7EF3DDC} SUCCESS Query: HandleTags, HandleTags: 0x400 97 12:38:31,4849501 MCLauncher.exe 84 RegOpenKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{2A00375E-224C-49DE-B8D1-440DF7EF3DDC}\PropertyBag NAME NOT FOUND Desired Access: Read 97 12:38:31,4849581 MCLauncher.exe 84 RegCloseKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{2A00375E-224C-49DE-B8D1-440DF7EF3DDC} SUCCESS 97 12:38:31,4849670 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:31,4849717 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: Name 97 12:38:31,4849800 MCLauncher.exe 84 RegOpenKey HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS Desired Access: Read 97 12:38:31,4849875 MCLauncher.exe 84 RegSetInfoKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 97 12:38:31,4849933 MCLauncher.exe 84 RegQueryKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS Query: HandleTags, HandleTags: 0x400 97 12:38:31,4849983 MCLauncher.exe 84 RegOpenKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{E555AB60-153B-4D17-9F04-A5FE99FC15EC} SUCCESS Desired Access: Read 97 12:38:31,4850055 MCLauncher.exe 84 RegCloseKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS 97 12:38:31,4850099 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{E555AB60-153B-4D17-9F04-A5FE99FC15EC}\Category SUCCESS Type: REG_DWORD, Length: 4, Data: 3 97 12:38:31,4850252 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{E555AB60-153B-4D17-9F04-A5FE99FC15EC}\Name SUCCESS Type: REG_SZ, Length: 32, Data: CommonRingtones 97 12:38:31,4850379 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{E555AB60-153B-4D17-9F04-A5FE99FC15EC}\ParentFolder SUCCESS Type: REG_SZ, Length: 78, Data: {62AB5D82-FDC1-4DC3-A9DD-070D1D495D97} 97 12:38:31,4850504 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{E555AB60-153B-4D17-9F04-A5FE99FC15EC}\Description NAME NOT FOUND Length: 144 97 12:38:31,4850612 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{E555AB60-153B-4D17-9F04-A5FE99FC15EC}\RelativePath SUCCESS Type: REG_SZ, Length: 56, Data: Microsoft\Windows\Ringtones 97 12:38:31,4850736 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{E555AB60-153B-4D17-9F04-A5FE99FC15EC}\ParsingName NAME NOT FOUND Length: 144 97 12:38:31,4850842 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{E555AB60-153B-4D17-9F04-A5FE99FC15EC}\InfoTip NAME NOT FOUND Length: 144 97 12:38:31,4850947 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{E555AB60-153B-4D17-9F04-A5FE99FC15EC}\LocalizedName NAME NOT FOUND Length: 144 97 12:38:31,4851050 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{E555AB60-153B-4D17-9F04-A5FE99FC15EC}\Icon NAME NOT FOUND Length: 144 97 12:38:31,4851152 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{E555AB60-153B-4D17-9F04-A5FE99FC15EC}\Security NAME NOT FOUND Length: 144 97 12:38:31,4851255 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{E555AB60-153B-4D17-9F04-A5FE99FC15EC}\StreamResource NAME NOT FOUND Length: 144 97 12:38:31,4851360 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{E555AB60-153B-4D17-9F04-A5FE99FC15EC}\StreamResourceType NAME NOT FOUND Length: 144 97 12:38:31,4851462 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{E555AB60-153B-4D17-9F04-A5FE99FC15EC}\LocalRedirectOnly NAME NOT FOUND Length: 144 97 12:38:31,4851565 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{E555AB60-153B-4D17-9F04-A5FE99FC15EC}\Roamable NAME NOT FOUND Length: 144 97 12:38:31,4851670 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{E555AB60-153B-4D17-9F04-A5FE99FC15EC}\PreCreate SUCCESS Type: REG_DWORD, Length: 4, Data: 1 97 12:38:31,4851789 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{E555AB60-153B-4D17-9F04-A5FE99FC15EC}\Stream NAME NOT FOUND Length: 144 97 12:38:31,4851892 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{E555AB60-153B-4D17-9F04-A5FE99FC15EC}\PublishExpandedPath NAME NOT FOUND Length: 144 97 12:38:31,4851994 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{E555AB60-153B-4D17-9F04-A5FE99FC15EC}\DefinitionFlags NAME NOT FOUND Length: 144 97 12:38:31,4852097 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{E555AB60-153B-4D17-9F04-A5FE99FC15EC}\Attributes NAME NOT FOUND Length: 144 97 12:38:31,4852199 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{E555AB60-153B-4D17-9F04-A5FE99FC15EC}\FolderTypeID NAME NOT FOUND Length: 144 97 12:38:31,4852302 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{E555AB60-153B-4D17-9F04-A5FE99FC15EC}\InitFolderHandler NAME NOT FOUND Length: 144 97 12:38:31,4852435 MCLauncher.exe 84 RegQueryKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{E555AB60-153B-4D17-9F04-A5FE99FC15EC} SUCCESS Query: HandleTags, HandleTags: 0x400 97 12:38:31,4852496 MCLauncher.exe 84 RegOpenKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{E555AB60-153B-4D17-9F04-A5FE99FC15EC}\PropertyBag NAME NOT FOUND Desired Access: Read 97 12:38:31,4852579 MCLauncher.exe 84 RegCloseKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{E555AB60-153B-4D17-9F04-A5FE99FC15EC} SUCCESS 97 12:38:31,4852662 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:31,4852709 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: Name 97 12:38:31,4852792 MCLauncher.exe 84 RegOpenKey HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS Desired Access: Read 97 12:38:31,4852864 MCLauncher.exe 84 RegSetInfoKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 97 12:38:31,4852922 MCLauncher.exe 84 RegQueryKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS Query: HandleTags, HandleTags: 0x400 97 12:38:31,4852975 MCLauncher.exe 84 RegOpenKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{054FAE61-4DD8-4787-80B6-090220C4B700} SUCCESS Desired Access: Read 97 12:38:31,4853047 MCLauncher.exe 84 RegCloseKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS 97 12:38:31,4853091 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{054FAE61-4DD8-4787-80B6-090220C4B700}\Category SUCCESS Type: REG_DWORD, Length: 4, Data: 4 97 12:38:31,4853244 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{054FAE61-4DD8-4787-80B6-090220C4B700}\Name SUCCESS Type: REG_SZ, Length: 20, Data: GameTasks 97 12:38:31,4853374 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{054FAE61-4DD8-4787-80B6-090220C4B700}\ParentFolder SUCCESS Type: REG_SZ, Length: 78, Data: {F1B32785-6FBA-4FCF-9D55-7B8E7F157091} 97 12:38:31,4853598 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{054FAE61-4DD8-4787-80B6-090220C4B700}\Description NAME NOT FOUND Length: 144 97 12:38:31,4853712 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{054FAE61-4DD8-4787-80B6-090220C4B700}\RelativePath SUCCESS Type: REG_SZ, Length: 62, Data: Microsoft\Windows\GameExplorer 97 12:38:31,4853837 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{054FAE61-4DD8-4787-80B6-090220C4B700}\ParsingName NAME NOT FOUND Length: 144 97 12:38:31,4853942 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{054FAE61-4DD8-4787-80B6-090220C4B700}\InfoTip NAME NOT FOUND Length: 144 97 12:38:31,4854047 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{054FAE61-4DD8-4787-80B6-090220C4B700}\LocalizedName NAME NOT FOUND Length: 144 97 12:38:31,4854150 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{054FAE61-4DD8-4787-80B6-090220C4B700}\Icon NAME NOT FOUND Length: 144 97 12:38:31,4854252 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{054FAE61-4DD8-4787-80B6-090220C4B700}\Security NAME NOT FOUND Length: 144 97 12:38:31,4854355 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{054FAE61-4DD8-4787-80B6-090220C4B700}\StreamResource NAME NOT FOUND Length: 144 97 12:38:31,4854457 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{054FAE61-4DD8-4787-80B6-090220C4B700}\StreamResourceType NAME NOT FOUND Length: 144 97 12:38:31,4854560 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{054FAE61-4DD8-4787-80B6-090220C4B700}\LocalRedirectOnly SUCCESS Type: REG_DWORD, Length: 4, Data: 1 97 12:38:31,4854679 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{054FAE61-4DD8-4787-80B6-090220C4B700}\Roamable NAME NOT FOUND Length: 144 97 12:38:31,4854782 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{054FAE61-4DD8-4787-80B6-090220C4B700}\PreCreate NAME NOT FOUND Length: 144 97 12:38:31,4854884 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{054FAE61-4DD8-4787-80B6-090220C4B700}\Stream NAME NOT FOUND Length: 144 97 12:38:31,4854987 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{054FAE61-4DD8-4787-80B6-090220C4B700}\PublishExpandedPath NAME NOT FOUND Length: 144 97 12:38:31,4855089 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{054FAE61-4DD8-4787-80B6-090220C4B700}\DefinitionFlags NAME NOT FOUND Length: 144 97 12:38:31,4855194 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{054FAE61-4DD8-4787-80B6-090220C4B700}\Attributes NAME NOT FOUND Length: 144 97 12:38:31,4855297 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{054FAE61-4DD8-4787-80B6-090220C4B700}\FolderTypeID NAME NOT FOUND Length: 144 97 12:38:31,4855399 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{054FAE61-4DD8-4787-80B6-090220C4B700}\InitFolderHandler NAME NOT FOUND Length: 144 97 12:38:31,4855535 MCLauncher.exe 84 RegQueryKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{054FAE61-4DD8-4787-80B6-090220C4B700} SUCCESS Query: HandleTags, HandleTags: 0x400 97 12:38:31,4855596 MCLauncher.exe 84 RegOpenKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{054FAE61-4DD8-4787-80B6-090220C4B700}\PropertyBag NAME NOT FOUND Desired Access: Read 97 12:38:31,4855676 MCLauncher.exe 84 RegCloseKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{054FAE61-4DD8-4787-80B6-090220C4B700} SUCCESS 97 12:38:31,4855765 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:31,4855815 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: Name 97 12:38:31,4855895 MCLauncher.exe 84 RegOpenKey HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS Desired Access: Read 97 12:38:31,4855967 MCLauncher.exe 84 RegSetInfoKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 97 12:38:31,4856028 MCLauncher.exe 84 RegQueryKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS Query: HandleTags, HandleTags: 0x400 97 12:38:31,4856078 MCLauncher.exe 84 RegOpenKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{1777F761-68AD-4D8A-87BD-30B759FA33DD} SUCCESS Desired Access: Read 97 12:38:31,4856156 MCLauncher.exe 84 RegCloseKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS 97 12:38:31,4856197 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{1777F761-68AD-4D8A-87BD-30B759FA33DD}\Category SUCCESS Type: REG_DWORD, Length: 4, Data: 4 97 12:38:31,4856327 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{1777F761-68AD-4D8A-87BD-30B759FA33DD}\Name SUCCESS Type: REG_SZ, Length: 20, Data: Favorites 97 12:38:31,4856458 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{1777F761-68AD-4D8A-87BD-30B759FA33DD}\ParentFolder NAME NOT FOUND Length: 144 97 12:38:31,4856569 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{1777F761-68AD-4D8A-87BD-30B759FA33DD}\Description NAME NOT FOUND Length: 144 97 12:38:31,4856674 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{1777F761-68AD-4D8A-87BD-30B759FA33DD}\RelativePath SUCCESS Type: REG_SZ, Length: 20, Data: Favorites 97 12:38:31,4856796 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{1777F761-68AD-4D8A-87BD-30B759FA33DD}\ParsingName NAME NOT FOUND Length: 144 97 12:38:31,4856901 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{1777F761-68AD-4D8A-87BD-30B759FA33DD}\InfoTip NAME NOT FOUND Length: 144 97 12:38:31,4857006 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{1777F761-68AD-4D8A-87BD-30B759FA33DD}\LocalizedName SUCCESS Type: REG_EXPAND_SZ, Length: 84, Data: @%SystemRoot%\system32\shell32.dll,-21796 97 12:38:31,4857131 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{1777F761-68AD-4D8A-87BD-30B759FA33DD}\Icon SUCCESS Type: REG_EXPAND_SZ, Length: 80, Data: %SystemRoot%\system32\imageres.dll,-115 97 12:38:31,4857256 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{1777F761-68AD-4D8A-87BD-30B759FA33DD}\Security NAME NOT FOUND Length: 144 97 12:38:31,4857386 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{1777F761-68AD-4D8A-87BD-30B759FA33DD}\StreamResource NAME NOT FOUND Length: 144 97 12:38:31,4857491 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{1777F761-68AD-4D8A-87BD-30B759FA33DD}\StreamResourceType NAME NOT FOUND Length: 144 97 12:38:31,4857594 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{1777F761-68AD-4D8A-87BD-30B759FA33DD}\LocalRedirectOnly NAME NOT FOUND Length: 144 97 12:38:31,4857699 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{1777F761-68AD-4D8A-87BD-30B759FA33DD}\Roamable SUCCESS Type: REG_DWORD, Length: 4, Data: 1 97 12:38:31,4857815 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{1777F761-68AD-4D8A-87BD-30B759FA33DD}\PreCreate SUCCESS Type: REG_DWORD, Length: 4, Data: 1 97 12:38:31,4857934 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{1777F761-68AD-4D8A-87BD-30B759FA33DD}\Stream NAME NOT FOUND Length: 144 97 12:38:31,4858037 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{1777F761-68AD-4D8A-87BD-30B759FA33DD}\PublishExpandedPath SUCCESS Type: REG_DWORD, Length: 4, Data: 1 97 12:38:31,4858156 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{1777F761-68AD-4D8A-87BD-30B759FA33DD}\DefinitionFlags NAME NOT FOUND Length: 144 97 12:38:31,4858261 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{1777F761-68AD-4D8A-87BD-30B759FA33DD}\Attributes SUCCESS Type: REG_DWORD, Length: 4, Data: 1 97 12:38:31,5002849 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{1777F761-68AD-4D8A-87BD-30B759FA33DD}\FolderTypeID NAME NOT FOUND Length: 144 97 12:38:31,5003200 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{1777F761-68AD-4D8A-87BD-30B759FA33DD}\InitFolderHandler NAME NOT FOUND Length: 144 97 12:38:31,5003425 MCLauncher.exe 84 RegQueryKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{1777F761-68AD-4D8A-87BD-30B759FA33DD} SUCCESS Query: HandleTags, HandleTags: 0x400 97 12:38:31,5003527 MCLauncher.exe 84 RegOpenKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{1777F761-68AD-4D8A-87BD-30B759FA33DD}\PropertyBag NAME NOT FOUND Desired Access: Read 97 12:38:31,5003677 MCLauncher.exe 84 RegCloseKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{1777F761-68AD-4D8A-87BD-30B759FA33DD} SUCCESS 97 12:38:31,5032377 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:31,5032482 MCLauncher.exe 84 RegOpenKey HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\AllowedEnumeration NAME NOT FOUND Desired Access: Read 97 12:38:31,5032710 MCLauncher.exe 84 RegQueryKey HKCU SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:31,5032776 MCLauncher.exe 84 RegOpenKey HKCU\Software\Microsoft\Windows\CurrentVersion\Explorer\AllowedEnumeration NAME NOT FOUND Desired Access: Read 97 12:38:31,5033106 MCLauncher.exe 84 RegQueryKey HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer SUCCESS Query: HandleTags, HandleTags: 0x400 97 12:38:31,5033164 MCLauncher.exe 84 RegOpenKey HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\SessionInfo\1 SUCCESS Desired Access: Query Value 97 12:38:31,5033289 MCLauncher.exe 84 RegQueryKey HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\SessionInfo\1 SUCCESS Query: HandleTags, HandleTags: 0x400 97 12:38:31,5033344 MCLauncher.exe 84 RegOpenKey HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\SessionInfo\1\KnownFolders NAME NOT FOUND Desired Access: Query Value 97 12:38:31,5033441 MCLauncher.exe 84 RegCloseKey HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\SessionInfo\1 SUCCESS 97 12:38:31,5033593 MCLauncher.exe 84 RegOpenKey HKCU SUCCESS Desired Access: Read 97 12:38:31,5033693 MCLauncher.exe 84 RegQueryKey HKCU SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:31,5033743 MCLauncher.exe 84 RegQueryKey HKCU SUCCESS Query: Name 97 12:38:31,5033823 MCLauncher.exe 84 RegOpenKey HKCU\Software\Microsoft\Windows\CurrentVersion\Explorer\User Shell Folders SUCCESS Desired Access: Read 97 12:38:31,5033929 MCLauncher.exe 84 RegSetInfoKey HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\User Shell Folders SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 97 12:38:31,5033984 MCLauncher.exe 84 RegCloseKey HKCU SUCCESS 97 12:38:31,5034048 MCLauncher.exe 84 RegQueryValue HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\User Shell Folders\Favorites SUCCESS Type: REG_EXPAND_SZ, Length: 48, Data: %USERPROFILE%\Favorites 97 12:38:31,5034441 MCLauncher.exe 84 RegCloseKey HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\User Shell Folders SUCCESS 97 12:38:31,5034815 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{35286a68-3c57-41a1-bbb1-0eae73d76c95}\PropertyBag\ThisPCPolicy SUCCESS Type: REG_SZ, Length: 10, Data: Show 97 12:38:31,5034990 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{35286a68-3c57-41a1-bbb1-0eae73d76c95}\PropertyBag\ThisPCPolicy SUCCESS Type: REG_SZ, Length: 10, Data: Show 97 12:38:31,5035153 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{35286a68-3c57-41a1-bbb1-0eae73d76c95}\PropertyBag\BaseFolderId SUCCESS Type: REG_SZ, Length: 78, Data: {18989B1D-99B5-455B-841C-AB7C74E4DDFC} 97 12:38:31,5035284 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{35286a68-3c57-41a1-bbb1-0eae73d76c95}\PropertyBag\BaseFolderId SUCCESS Type: REG_SZ, Length: 78, Data: {18989B1D-99B5-455B-841C-AB7C74E4DDFC} 97 12:38:31,5035566 MCLauncher.exe 84 RegOpenKey HKCU SUCCESS Desired Access: Read 97 12:38:31,5035680 MCLauncher.exe 84 RegQueryKey HKCU SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:31,5035732 MCLauncher.exe 84 RegQueryKey HKCU SUCCESS Query: Name 97 12:38:31,5035810 MCLauncher.exe 84 RegOpenKey HKCU\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer SUCCESS Desired Access: Query Value 97 12:38:31,5035907 MCLauncher.exe 84 RegSetInfoKey HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 97 12:38:31,5035951 MCLauncher.exe 84 RegQueryValue HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer\DisablePersonalDirChange NAME NOT FOUND Length: 144 97 12:38:31,5036079 MCLauncher.exe 84 RegCloseKey HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer SUCCESS 97 12:38:31,5036184 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:31,5036234 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: Name 97 12:38:31,5036331 MCLauncher.exe 84 RegOpenKey HKLM\Software\WOW6432Node\Microsoft\Windows NT\CurrentVersion\Terminal Server NAME NOT FOUND Desired Access: Read 97 12:38:31,5036461 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:31,5036508 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: Name 97 12:38:31,5036580 MCLauncher.exe 84 RegOpenKey HKLM\Software\WOW6432Node\Microsoft\Windows NT\CurrentVersion\Terminal Server NAME NOT FOUND Desired Access: Read 97 12:38:31,5036843 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:31,5036971 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: Name 97 12:38:31,5037087 MCLauncher.exe 84 RegOpenKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows NT\CurrentVersion\ProfileList\S-1-5-21-3477790013-1571897634-1299942168-1000\fdeploy REPARSE Desired Access: Read 97 12:38:31,5037192 MCLauncher.exe 84 RegOpenKey HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\ProfileList\S-1-5-21-3477790013-1571897634-1299942168-1000\fdeploy NAME NOT FOUND Desired Access: Read 97 12:38:31,5037309 MCLauncher.exe 84 RegQueryKey HKCU SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:31,5037359 MCLauncher.exe 84 RegQueryKey HKCU SUCCESS Query: Name 97 12:38:31,5037431 MCLauncher.exe 84 RegOpenKey HKCU\Software\Microsoft\Windows\CurrentVersion\Explorer\User Shell Folders SUCCESS Desired Access: Write 97 12:38:31,5037514 MCLauncher.exe 84 RegSetInfoKey HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\User Shell Folders SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 97 12:38:31,5037566 MCLauncher.exe 84 RegCloseKey HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\User Shell Folders SUCCESS 97 12:38:31,5037608 MCLauncher.exe 84 RegCloseKey HKCU SUCCESS 97 12:38:31,5037691 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:31,5037747 MCLauncher.exe 84 RegOpenKey HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\AllowedEnumeration NAME NOT FOUND Desired Access: Read 97 12:38:31,5037857 MCLauncher.exe 84 RegQueryKey HKCU SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:31,5037910 MCLauncher.exe 84 RegOpenKey HKCU\Software\Microsoft\Windows\CurrentVersion\Explorer\AllowedEnumeration NAME NOT FOUND Desired Access: Read 97 12:38:31,5038032 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:31,5038079 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: Name 97 12:38:31,5038157 MCLauncher.exe 84 RegOpenKey HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS Desired Access: Read 97 12:38:31,5038248 MCLauncher.exe 84 RegSetInfoKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 97 12:38:31,5038320 MCLauncher.exe 84 RegQueryKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS Query: HandleTags, HandleTags: 0x400 97 12:38:31,5038373 MCLauncher.exe 84 RegOpenKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{B250C668-F57D-4EE1-A63C-290EE7D1AA1F} NAME NOT FOUND Desired Access: Read 97 12:38:31,5038456 MCLauncher.exe 84 RegCloseKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS 97 12:38:31,5038550 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:31,5038597 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: Name 97 12:38:31,5038672 MCLauncher.exe 84 RegOpenKey HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS Desired Access: Read 97 12:38:31,5038733 MCLauncher.exe 84 RegSetInfoKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 97 12:38:31,5038791 MCLauncher.exe 84 RegQueryKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS Query: HandleTags, HandleTags: 0x400 97 12:38:31,5038841 MCLauncher.exe 84 RegOpenKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{52528A6B-B9E3-4ADD-B60D-588C2DBA842D} SUCCESS Desired Access: Read 97 12:38:31,5039049 MCLauncher.exe 84 RegCloseKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS 97 12:38:31,5039118 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{52528A6B-B9E3-4add-B60D-588C2DBA842D}\Category SUCCESS Type: REG_DWORD, Length: 4, Data: 1 97 12:38:31,5039345 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{52528A6B-B9E3-4add-B60D-588C2DBA842D}\Name SUCCESS Type: REG_SZ, Length: 32, Data: HomeGroupFolder 97 12:38:31,5039631 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{52528A6B-B9E3-4add-B60D-588C2DBA842D}\ParentFolder NAME NOT FOUND Length: 144 97 12:38:31,5039766 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{52528A6B-B9E3-4add-B60D-588C2DBA842D}\Description NAME NOT FOUND Length: 144 97 12:38:31,5039874 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{52528A6B-B9E3-4add-B60D-588C2DBA842D}\RelativePath NAME NOT FOUND Length: 144 97 12:38:31,5040074 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{52528A6B-B9E3-4add-B60D-588C2DBA842D}\ParsingName SUCCESS Type: REG_SZ, Length: 82, Data: ::{B4FB3F98-C1EA-428d-A78A-D1F5659CBA93} 97 12:38:31,5040204 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{52528A6B-B9E3-4add-B60D-588C2DBA842D}\InfoTip NAME NOT FOUND Length: 144 97 12:38:31,5040315 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{52528A6B-B9E3-4add-B60D-588C2DBA842D}\LocalizedName NAME NOT FOUND Length: 144 97 12:38:31,5040420 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{52528A6B-B9E3-4add-B60D-588C2DBA842D}\Icon SUCCESS Type: REG_EXPAND_SZ, Length: 82, Data: %SystemRoot%\system32\imageres.dll,-1013 97 12:38:31,5040545 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{52528A6B-B9E3-4add-B60D-588C2DBA842D}\Security NAME NOT FOUND Length: 144 97 12:38:31,5040653 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{52528A6B-B9E3-4add-B60D-588C2DBA842D}\StreamResource NAME NOT FOUND Length: 144 97 12:38:31,5040761 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{52528A6B-B9E3-4add-B60D-588C2DBA842D}\StreamResourceType NAME NOT FOUND Length: 144 97 12:38:31,5040866 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{52528A6B-B9E3-4add-B60D-588C2DBA842D}\LocalRedirectOnly NAME NOT FOUND Length: 144 97 12:38:31,5040971 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{52528A6B-B9E3-4add-B60D-588C2DBA842D}\Roamable NAME NOT FOUND Length: 144 97 12:38:31,5041074 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{52528A6B-B9E3-4add-B60D-588C2DBA842D}\PreCreate NAME NOT FOUND Length: 144 97 12:38:31,5041179 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{52528A6B-B9E3-4add-B60D-588C2DBA842D}\Stream NAME NOT FOUND Length: 144 97 12:38:31,5041285 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{52528A6B-B9E3-4add-B60D-588C2DBA842D}\PublishExpandedPath NAME NOT FOUND Length: 144 97 12:38:31,5041387 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{52528A6B-B9E3-4add-B60D-588C2DBA842D}\DefinitionFlags NAME NOT FOUND Length: 144 97 12:38:31,5041495 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{52528A6B-B9E3-4add-B60D-588C2DBA842D}\Attributes NAME NOT FOUND Length: 144 97 12:38:31,5041600 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{52528A6B-B9E3-4add-B60D-588C2DBA842D}\FolderTypeID NAME NOT FOUND Length: 144 97 12:38:31,5041706 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{52528A6B-B9E3-4add-B60D-588C2DBA842D}\InitFolderHandler NAME NOT FOUND Length: 144 97 12:38:31,5041922 MCLauncher.exe 84 RegQueryKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{52528A6B-B9E3-4add-B60D-588C2DBA842D} SUCCESS Query: HandleTags, HandleTags: 0x400 97 12:38:31,5042215 MCLauncher.exe 84 RegOpenKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{52528A6B-B9E3-4add-B60D-588C2DBA842D}\PropertyBag SUCCESS Desired Access: Read 97 12:38:31,5042490 MCLauncher.exe 84 RegCloseKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{52528A6B-B9E3-4add-B60D-588C2DBA842D} SUCCESS 97 12:38:31,5042612 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:31,5042667 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: Name 97 12:38:31,5042756 MCLauncher.exe 84 RegOpenKey HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS Desired Access: Read 97 12:38:31,5042844 MCLauncher.exe 84 RegSetInfoKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 97 12:38:31,5042908 MCLauncher.exe 84 RegQueryKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS Query: HandleTags, HandleTags: 0x400 97 12:38:31,5042961 MCLauncher.exe 84 RegOpenKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{8983036C-27C0-404B-8F08-102D10DCFD74} SUCCESS Desired Access: Read 97 12:38:31,5043044 MCLauncher.exe 84 RegCloseKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS 97 12:38:31,5043091 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{8983036C-27C0-404B-8F08-102D10DCFD74}\Category SUCCESS Type: REG_DWORD, Length: 4, Data: 4 97 12:38:31,5043227 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{8983036C-27C0-404B-8F08-102D10DCFD74}\Name SUCCESS Type: REG_SZ, Length: 14, Data: SendTo 97 12:38:31,5043360 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{8983036C-27C0-404B-8F08-102D10DCFD74}\ParentFolder SUCCESS Type: REG_SZ, Length: 78, Data: {3EB685DB-65F9-4CF6-A03A-E3EF65729F3D} 97 12:38:31,5043490 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{8983036C-27C0-404B-8F08-102D10DCFD74}\Description NAME NOT FOUND Length: 144 97 12:38:31,5043598 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{8983036C-27C0-404B-8F08-102D10DCFD74}\RelativePath SUCCESS Type: REG_SZ, Length: 50, Data: Microsoft\Windows\SendTo 97 12:38:31,5043723 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{8983036C-27C0-404B-8F08-102D10DCFD74}\ParsingName NAME NOT FOUND Length: 144 97 12:38:31,5043831 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{8983036C-27C0-404B-8F08-102D10DCFD74}\InfoTip NAME NOT FOUND Length: 144 97 12:38:31,5043933 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{8983036C-27C0-404B-8F08-102D10DCFD74}\LocalizedName NAME NOT FOUND Length: 144 97 12:38:31,5044036 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{8983036C-27C0-404B-8F08-102D10DCFD74}\Icon NAME NOT FOUND Length: 144 97 12:38:31,5044141 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{8983036C-27C0-404B-8F08-102D10DCFD74}\Security NAME NOT FOUND Length: 144 97 12:38:31,5044244 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{8983036C-27C0-404B-8F08-102D10DCFD74}\StreamResource NAME NOT FOUND Length: 144 97 12:38:31,5044349 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{8983036C-27C0-404B-8F08-102D10DCFD74}\StreamResourceType NAME NOT FOUND Length: 144 97 12:38:31,5044451 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{8983036C-27C0-404B-8F08-102D10DCFD74}\LocalRedirectOnly NAME NOT FOUND Length: 144 97 12:38:31,5044557 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{8983036C-27C0-404B-8F08-102D10DCFD74}\Roamable NAME NOT FOUND Length: 144 97 12:38:31,5044662 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{8983036C-27C0-404B-8F08-102D10DCFD74}\PreCreate NAME NOT FOUND Length: 144 97 12:38:31,5044767 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{8983036C-27C0-404B-8F08-102D10DCFD74}\Stream NAME NOT FOUND Length: 144 97 12:38:31,5044870 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{8983036C-27C0-404B-8F08-102D10DCFD74}\PublishExpandedPath NAME NOT FOUND Length: 144 97 12:38:31,5044975 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{8983036C-27C0-404B-8F08-102D10DCFD74}\DefinitionFlags NAME NOT FOUND Length: 144 97 12:38:31,5045077 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{8983036C-27C0-404B-8F08-102D10DCFD74}\Attributes NAME NOT FOUND Length: 144 97 12:38:31,5045263 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{8983036C-27C0-404B-8F08-102D10DCFD74}\FolderTypeID NAME NOT FOUND Length: 144 97 12:38:31,5045366 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{8983036C-27C0-404B-8F08-102D10DCFD74}\InitFolderHandler NAME NOT FOUND Length: 144 97 12:38:31,5045507 MCLauncher.exe 84 RegQueryKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{8983036C-27C0-404B-8F08-102D10DCFD74} SUCCESS Query: HandleTags, HandleTags: 0x400 97 12:38:31,5045568 MCLauncher.exe 84 RegOpenKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{8983036C-27C0-404B-8F08-102D10DCFD74}\PropertyBag NAME NOT FOUND Desired Access: Read 97 12:38:31,5045648 MCLauncher.exe 84 RegCloseKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{8983036C-27C0-404B-8F08-102D10DCFD74} SUCCESS 97 12:38:31,5045740 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:31,5045789 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: Name 97 12:38:31,5045873 MCLauncher.exe 84 RegOpenKey HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS Desired Access: Read 97 12:38:31,5045947 MCLauncher.exe 84 RegSetInfoKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 97 12:38:31,5046008 MCLauncher.exe 84 RegQueryKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS Query: HandleTags, HandleTags: 0x400 97 12:38:31,5046061 MCLauncher.exe 84 RegOpenKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{0482AF6C-08F1-4C34-8C90-E17EC98B1E17} SUCCESS Desired Access: Read 97 12:38:31,5046139 MCLauncher.exe 84 RegCloseKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS 97 12:38:31,5046183 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{0482af6c-08f1-4c34-8c90-e17ec98b1e17}\Category SUCCESS Type: REG_DWORD, Length: 4, Data: 4 97 12:38:31,5046316 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{0482af6c-08f1-4c34-8c90-e17ec98b1e17}\Name SUCCESS Type: REG_SZ, Length: 44, Data: PublicAccountPictures 97 12:38:31,5046449 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{0482af6c-08f1-4c34-8c90-e17ec98b1e17}\ParentFolder SUCCESS Type: REG_SZ, Length: 78, Data: {DFDF76A2-C82A-4D63-906A-5644AC457385} 97 12:38:31,5046576 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{0482af6c-08f1-4c34-8c90-e17ec98b1e17}\Description NAME NOT FOUND Length: 144 97 12:38:31,5046684 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{0482af6c-08f1-4c34-8c90-e17ec98b1e17}\RelativePath SUCCESS Type: REG_SZ, Length: 32, Data: AccountPictures 97 12:38:31,5046809 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{0482af6c-08f1-4c34-8c90-e17ec98b1e17}\ParsingName NAME NOT FOUND Length: 144 97 12:38:31,5046914 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{0482af6c-08f1-4c34-8c90-e17ec98b1e17}\InfoTip NAME NOT FOUND Length: 144 97 12:38:31,5047022 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{0482af6c-08f1-4c34-8c90-e17ec98b1e17}\LocalizedName SUCCESS Type: REG_SZ, Length: 106, Data: @C:\Windows\SysWOW64\Windows.UI.Immersive.dll,-38304 97 12:38:31,5047147 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{0482af6c-08f1-4c34-8c90-e17ec98b1e17}\Icon NAME NOT FOUND Length: 144 97 12:38:31,5047255 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{0482af6c-08f1-4c34-8c90-e17ec98b1e17}\Security NAME NOT FOUND Length: 144 97 12:38:31,5047358 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{0482af6c-08f1-4c34-8c90-e17ec98b1e17}\StreamResource NAME NOT FOUND Length: 144 97 12:38:31,5047463 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{0482af6c-08f1-4c34-8c90-e17ec98b1e17}\StreamResourceType NAME NOT FOUND Length: 144 97 12:38:31,5047571 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{0482af6c-08f1-4c34-8c90-e17ec98b1e17}\LocalRedirectOnly NAME NOT FOUND Length: 144 97 12:38:31,5047676 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{0482af6c-08f1-4c34-8c90-e17ec98b1e17}\Roamable NAME NOT FOUND Length: 144 97 12:38:31,5047779 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{0482af6c-08f1-4c34-8c90-e17ec98b1e17}\PreCreate SUCCESS Type: REG_DWORD, Length: 4, Data: 1 97 12:38:31,5047898 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{0482af6c-08f1-4c34-8c90-e17ec98b1e17}\Stream NAME NOT FOUND Length: 144 97 12:38:31,5048003 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{0482af6c-08f1-4c34-8c90-e17ec98b1e17}\PublishExpandedPath NAME NOT FOUND Length: 144 97 12:38:31,5048108 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{0482af6c-08f1-4c34-8c90-e17ec98b1e17}\DefinitionFlags NAME NOT FOUND Length: 144 97 12:38:31,5048211 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{0482af6c-08f1-4c34-8c90-e17ec98b1e17}\Attributes SUCCESS Type: REG_DWORD, Length: 4, Data: 3 97 12:38:31,5048333 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{0482af6c-08f1-4c34-8c90-e17ec98b1e17}\FolderTypeID NAME NOT FOUND Length: 144 97 12:38:31,5048438 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{0482af6c-08f1-4c34-8c90-e17ec98b1e17}\InitFolderHandler NAME NOT FOUND Length: 144 97 12:38:31,5048577 MCLauncher.exe 84 RegQueryKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{0482af6c-08f1-4c34-8c90-e17ec98b1e17} SUCCESS Query: HandleTags, HandleTags: 0x400 97 12:38:31,5048638 MCLauncher.exe 84 RegOpenKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{0482af6c-08f1-4c34-8c90-e17ec98b1e17}\PropertyBag NAME NOT FOUND Desired Access: Read 97 12:38:31,5048721 MCLauncher.exe 84 RegCloseKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{0482af6c-08f1-4c34-8c90-e17ec98b1e17} SUCCESS 97 12:38:31,5048815 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:31,5048865 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: Name 97 12:38:31,5048948 MCLauncher.exe 84 RegOpenKey HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS Desired Access: Read 97 12:38:31,5049128 MCLauncher.exe 84 RegSetInfoKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 97 12:38:31,5049255 MCLauncher.exe 84 RegQueryKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS Query: HandleTags, HandleTags: 0x400 97 12:38:31,5049319 MCLauncher.exe 84 RegOpenKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{BCB5256F-79F6-4CEE-B725-DC34E402FD46} SUCCESS Desired Access: Read 97 12:38:31,5049413 MCLauncher.exe 84 RegCloseKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS 97 12:38:31,5049469 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{bcb5256f-79f6-4cee-b725-dc34e402fd46}\Category SUCCESS Type: REG_DWORD, Length: 4, Data: 4 97 12:38:31,5049610 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{bcb5256f-79f6-4cee-b725-dc34e402fd46}\Name SUCCESS Type: REG_SZ, Length: 42, Data: ImplicitAppShortcuts 97 12:38:31,5049743 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{bcb5256f-79f6-4cee-b725-dc34e402fd46}\ParentFolder SUCCESS Type: REG_SZ, Length: 78, Data: {9e3995ab-1f9c-4f13-b827-48b24b6c7174} 97 12:38:31,5049868 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{bcb5256f-79f6-4cee-b725-dc34e402fd46}\Description NAME NOT FOUND Length: 144 97 12:38:31,5049976 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{bcb5256f-79f6-4cee-b725-dc34e402fd46}\RelativePath SUCCESS Type: REG_SZ, Length: 42, Data: ImplicitAppShortcuts 97 12:38:31,5050103 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{bcb5256f-79f6-4cee-b725-dc34e402fd46}\ParsingName NAME NOT FOUND Length: 144 97 12:38:31,5050214 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{bcb5256f-79f6-4cee-b725-dc34e402fd46}\InfoTip NAME NOT FOUND Length: 144 97 12:38:31,5050319 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{bcb5256f-79f6-4cee-b725-dc34e402fd46}\LocalizedName NAME NOT FOUND Length: 144 97 12:38:31,5050427 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{bcb5256f-79f6-4cee-b725-dc34e402fd46}\Icon NAME NOT FOUND Length: 144 97 12:38:31,5050533 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{bcb5256f-79f6-4cee-b725-dc34e402fd46}\Security NAME NOT FOUND Length: 144 97 12:38:31,5050638 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{bcb5256f-79f6-4cee-b725-dc34e402fd46}\StreamResource NAME NOT FOUND Length: 144 97 12:38:31,5050740 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{bcb5256f-79f6-4cee-b725-dc34e402fd46}\StreamResourceType NAME NOT FOUND Length: 144 97 12:38:31,5050849 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{bcb5256f-79f6-4cee-b725-dc34e402fd46}\LocalRedirectOnly NAME NOT FOUND Length: 144 97 12:38:31,5050954 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{bcb5256f-79f6-4cee-b725-dc34e402fd46}\Roamable NAME NOT FOUND Length: 144 97 12:38:31,5051056 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{bcb5256f-79f6-4cee-b725-dc34e402fd46}\PreCreate SUCCESS Type: REG_DWORD, Length: 4, Data: 1 97 12:38:31,5051178 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{bcb5256f-79f6-4cee-b725-dc34e402fd46}\Stream NAME NOT FOUND Length: 144 97 12:38:31,5051284 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{bcb5256f-79f6-4cee-b725-dc34e402fd46}\PublishExpandedPath NAME NOT FOUND Length: 144 97 12:38:31,5051466 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{bcb5256f-79f6-4cee-b725-dc34e402fd46}\DefinitionFlags NAME NOT FOUND Length: 144 97 12:38:31,5051572 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{bcb5256f-79f6-4cee-b725-dc34e402fd46}\Attributes NAME NOT FOUND Length: 144 97 12:38:31,5051680 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{bcb5256f-79f6-4cee-b725-dc34e402fd46}\FolderTypeID NAME NOT FOUND Length: 144 97 12:38:31,5051788 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{bcb5256f-79f6-4cee-b725-dc34e402fd46}\InitFolderHandler NAME NOT FOUND Length: 144 97 12:38:31,5051926 MCLauncher.exe 84 RegQueryKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{bcb5256f-79f6-4cee-b725-dc34e402fd46} SUCCESS Query: HandleTags, HandleTags: 0x400 97 12:38:31,5051990 MCLauncher.exe 84 RegOpenKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{bcb5256f-79f6-4cee-b725-dc34e402fd46}\PropertyBag NAME NOT FOUND Desired Access: Read 97 12:38:31,5052076 MCLauncher.exe 84 RegCloseKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{bcb5256f-79f6-4cee-b725-dc34e402fd46} SUCCESS 97 12:38:31,5052170 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:31,5052220 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: Name 97 12:38:31,5052303 MCLauncher.exe 84 RegOpenKey HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS Desired Access: Read 97 12:38:31,5052378 MCLauncher.exe 84 RegSetInfoKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 97 12:38:31,5052442 MCLauncher.exe 84 RegQueryKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS Query: HandleTags, HandleTags: 0x400 97 12:38:31,5052491 MCLauncher.exe 84 RegOpenKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{724EF170-A42D-4FEF-9F26-B60E846FBA4F} SUCCESS Desired Access: Read 97 12:38:31,5052566 MCLauncher.exe 84 RegCloseKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS 97 12:38:31,5052608 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{724EF170-A42D-4FEF-9F26-B60E846FBA4F}\Category SUCCESS Type: REG_DWORD, Length: 4, Data: 4 97 12:38:31,5052744 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{724EF170-A42D-4FEF-9F26-B60E846FBA4F}\Name SUCCESS Type: REG_SZ, Length: 42, Data: Administrative Tools 97 12:38:31,5052874 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{724EF170-A42D-4FEF-9F26-B60E846FBA4F}\ParentFolder SUCCESS Type: REG_SZ, Length: 78, Data: {A77F5D77-2E2B-44C3-A6A2-ABA601054A51} 97 12:38:31,5052998 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{724EF170-A42D-4FEF-9F26-B60E846FBA4F}\Description NAME NOT FOUND Length: 144 97 12:38:31,5053107 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{724EF170-A42D-4FEF-9F26-B60E846FBA4F}\RelativePath SUCCESS Type: REG_SZ, Length: 42, Data: Administrative Tools 97 12:38:31,5053228 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{724EF170-A42D-4FEF-9F26-B60E846FBA4F}\ParsingName NAME NOT FOUND Length: 144 97 12:38:31,5053337 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{724EF170-A42D-4FEF-9F26-B60E846FBA4F}\InfoTip NAME NOT FOUND Length: 144 97 12:38:31,5053442 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{724EF170-A42D-4FEF-9F26-B60E846FBA4F}\LocalizedName SUCCESS Type: REG_EXPAND_SZ, Length: 84, Data: @%SystemRoot%\system32\shell32.dll,-21762 97 12:38:31,5053566 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{724EF170-A42D-4FEF-9F26-B60E846FBA4F}\Icon NAME NOT FOUND Length: 144 97 12:38:31,5053672 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{724EF170-A42D-4FEF-9F26-B60E846FBA4F}\Security NAME NOT FOUND Length: 144 97 12:38:31,5053777 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{724EF170-A42D-4FEF-9F26-B60E846FBA4F}\StreamResource NAME NOT FOUND Length: 144 97 12:38:31,5053882 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{724EF170-A42D-4FEF-9F26-B60E846FBA4F}\StreamResourceType NAME NOT FOUND Length: 144 97 12:38:31,5053990 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{724EF170-A42D-4FEF-9F26-B60E846FBA4F}\LocalRedirectOnly NAME NOT FOUND Length: 144 97 12:38:31,5054093 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{724EF170-A42D-4FEF-9F26-B60E846FBA4F}\Roamable NAME NOT FOUND Length: 144 97 12:38:31,5054195 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{724EF170-A42D-4FEF-9F26-B60E846FBA4F}\PreCreate SUCCESS Type: REG_DWORD, Length: 4, Data: 1 97 12:38:31,5054312 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{724EF170-A42D-4FEF-9F26-B60E846FBA4F}\Stream NAME NOT FOUND Length: 144 97 12:38:31,5054417 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{724EF170-A42D-4FEF-9F26-B60E846FBA4F}\PublishExpandedPath NAME NOT FOUND Length: 144 97 12:38:31,5054522 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{724EF170-A42D-4FEF-9F26-B60E846FBA4F}\DefinitionFlags NAME NOT FOUND Length: 144 97 12:38:31,5054625 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{724EF170-A42D-4FEF-9F26-B60E846FBA4F}\Attributes SUCCESS Type: REG_DWORD, Length: 4, Data: 1 97 12:38:31,5054741 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{724EF170-A42D-4FEF-9F26-B60E846FBA4F}\FolderTypeID NAME NOT FOUND Length: 144 97 12:38:31,5054846 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{724EF170-A42D-4FEF-9F26-B60E846FBA4F}\InitFolderHandler NAME NOT FOUND Length: 144 97 12:38:31,5054985 MCLauncher.exe 84 RegQueryKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{724EF170-A42D-4FEF-9F26-B60E846FBA4F} SUCCESS Query: HandleTags, HandleTags: 0x400 97 12:38:31,5055046 MCLauncher.exe 84 RegOpenKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{724EF170-A42D-4FEF-9F26-B60E846FBA4F}\PropertyBag NAME NOT FOUND Desired Access: Read 97 12:38:31,5055126 MCLauncher.exe 84 RegCloseKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{724EF170-A42D-4FEF-9F26-B60E846FBA4F} SUCCESS 97 12:38:31,5055218 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:31,5055268 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: Name 97 12:38:31,5055348 MCLauncher.exe 84 RegOpenKey HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS Desired Access: Read 97 12:38:31,5055423 MCLauncher.exe 84 RegSetInfoKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 97 12:38:31,5055481 MCLauncher.exe 84 RegQueryKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS Query: HandleTags, HandleTags: 0x400 97 12:38:31,5055531 MCLauncher.exe 84 RegOpenKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{4BD8D571-6D19-48D3-BE97-422220080E43} SUCCESS Desired Access: Read 97 12:38:31,5055614 MCLauncher.exe 84 RegCloseKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS 97 12:38:31,5055658 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{4BD8D571-6D19-48D3-BE97-422220080E43}\Category SUCCESS Type: REG_DWORD, Length: 4, Data: 4 97 12:38:31,5055788 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{4BD8D571-6D19-48D3-BE97-422220080E43}\Name SUCCESS Type: REG_SZ, Length: 18, Data: My Music 97 12:38:31,5055924 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{4BD8D571-6D19-48D3-BE97-422220080E43}\ParentFolder NAME NOT FOUND Length: 144 97 12:38:31,5056038 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{4BD8D571-6D19-48D3-BE97-422220080E43}\Description NAME NOT FOUND Length: 144 97 12:38:31,5056143 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{4BD8D571-6D19-48D3-BE97-422220080E43}\RelativePath SUCCESS Type: REG_SZ, Length: 12, Data: Music 97 12:38:31,5056268 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{4BD8D571-6D19-48D3-BE97-422220080E43}\ParsingName BUFFER OVERFLOW Length: 144 97 12:38:31,5056434 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{4BD8D571-6D19-48D3-BE97-422220080E43}\ParsingName SUCCESS Type: REG_SZ, Length: 176, Data: shell:::{20D04FE0-3AEA-1069-A2D8-08002B30309D}\::{1CF1260C-4DD0-4EBB-811F-33C572699FDE} 97 12:38:31,5056564 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{4BD8D571-6D19-48D3-BE97-422220080E43}\InfoTip SUCCESS Type: REG_EXPAND_SZ, Length: 84, Data: @%SystemRoot%\system32\shell32.dll,-12689 97 12:38:31,5056689 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{4BD8D571-6D19-48D3-BE97-422220080E43}\LocalizedName SUCCESS Type: REG_EXPAND_SZ, Length: 100, Data: @%SystemRoot%\system32\windows.storage.dll,-21790 97 12:38:31,5056816 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{4BD8D571-6D19-48D3-BE97-422220080E43}\Icon SUCCESS Type: REG_EXPAND_SZ, Length: 80, Data: %SystemRoot%\system32\imageres.dll,-108 97 12:38:31,5056941 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{4BD8D571-6D19-48D3-BE97-422220080E43}\Security NAME NOT FOUND Length: 144 97 12:38:31,5057052 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{4BD8D571-6D19-48D3-BE97-422220080E43}\StreamResource NAME NOT FOUND Length: 144 97 12:38:31,5057154 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{4BD8D571-6D19-48D3-BE97-422220080E43}\StreamResourceType NAME NOT FOUND Length: 144 97 12:38:31,5057260 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{4BD8D571-6D19-48D3-BE97-422220080E43}\LocalRedirectOnly NAME NOT FOUND Length: 144 97 12:38:31,5057362 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{4BD8D571-6D19-48D3-BE97-422220080E43}\Roamable SUCCESS Type: REG_DWORD, Length: 4, Data: 1 97 12:38:31,5057481 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{4BD8D571-6D19-48D3-BE97-422220080E43}\PreCreate SUCCESS Type: REG_DWORD, Length: 4, Data: 1 97 12:38:31,5057600 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{4BD8D571-6D19-48D3-BE97-422220080E43}\Stream NAME NOT FOUND Length: 144 97 12:38:31,5057706 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{4BD8D571-6D19-48D3-BE97-422220080E43}\PublishExpandedPath NAME NOT FOUND Length: 144 97 12:38:31,5057811 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{4BD8D571-6D19-48D3-BE97-422220080E43}\DefinitionFlags NAME NOT FOUND Length: 144 97 12:38:31,5057916 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{4BD8D571-6D19-48D3-BE97-422220080E43}\Attributes SUCCESS Type: REG_DWORD, Length: 4, Data: 1 97 12:38:31,5058035 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{4BD8D571-6D19-48D3-BE97-422220080E43}\FolderTypeID NAME NOT FOUND Length: 144 97 12:38:31,5058141 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{4BD8D571-6D19-48D3-BE97-422220080E43}\InitFolderHandler NAME NOT FOUND Length: 144 97 12:38:31,5058276 MCLauncher.exe 84 RegQueryKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{4BD8D571-6D19-48D3-BE97-422220080E43} SUCCESS Query: HandleTags, HandleTags: 0x400 97 12:38:31,5058337 MCLauncher.exe 84 RegOpenKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{4BD8D571-6D19-48D3-BE97-422220080E43}\PropertyBag SUCCESS Desired Access: Read 97 12:38:31,5058426 MCLauncher.exe 84 RegCloseKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{4BD8D571-6D19-48D3-BE97-422220080E43} SUCCESS 97 12:38:31,5058515 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{4BD8D571-6D19-48D3-BE97-422220080E43}\PropertyBag\ThisPCPolicy SUCCESS Type: REG_SZ, Length: 10, Data: Hide 97 12:38:31,5058648 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{4BD8D571-6D19-48D3-BE97-422220080E43}\PropertyBag\ThisPCPolicy SUCCESS Type: REG_SZ, Length: 10, Data: Hide 97 12:38:31,5059030 MCLauncher.exe 84 RegOpenKey HKCU SUCCESS Desired Access: Read 97 12:38:31,5059182 MCLauncher.exe 84 RegQueryKey HKCU SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:31,5059238 MCLauncher.exe 84 RegQueryKey HKCU SUCCESS Query: Name 97 12:38:31,5059315 MCLauncher.exe 84 RegOpenKey HKCU\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer SUCCESS Desired Access: Query Value 97 12:38:31,5059410 MCLauncher.exe 84 RegSetInfoKey HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 97 12:38:31,5059454 MCLauncher.exe 84 RegQueryValue HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer\DisablePersonalDirChange NAME NOT FOUND Length: 144 97 12:38:31,5059584 MCLauncher.exe 84 RegCloseKey HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer SUCCESS 97 12:38:31,5059681 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:31,5059734 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: Name 97 12:38:31,5059822 MCLauncher.exe 84 RegOpenKey HKLM\Software\WOW6432Node\Microsoft\Windows NT\CurrentVersion\Terminal Server NAME NOT FOUND Desired Access: Read 97 12:38:31,5059925 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:31,5059972 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: Name 97 12:38:31,5060044 MCLauncher.exe 84 RegOpenKey HKLM\Software\WOW6432Node\Microsoft\Windows NT\CurrentVersion\Terminal Server NAME NOT FOUND Desired Access: Read 97 12:38:31,5060169 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:31,5060213 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: Name 97 12:38:31,5060293 MCLauncher.exe 84 RegOpenKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows NT\CurrentVersion\ProfileList\S-1-5-21-3477790013-1571897634-1299942168-1000\fdeploy REPARSE Desired Access: Read 97 12:38:31,5060371 MCLauncher.exe 84 RegOpenKey HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\ProfileList\S-1-5-21-3477790013-1571897634-1299942168-1000\fdeploy NAME NOT FOUND Desired Access: Read 97 12:38:31,5060462 MCLauncher.exe 84 RegQueryKey HKCU SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:31,5060507 MCLauncher.exe 84 RegQueryKey HKCU SUCCESS Query: Name 97 12:38:31,5060576 MCLauncher.exe 84 RegOpenKey HKCU\Software\Microsoft\Windows\CurrentVersion\Explorer\User Shell Folders SUCCESS Desired Access: Write 97 12:38:31,5060662 MCLauncher.exe 84 RegSetInfoKey HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\User Shell Folders SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 97 12:38:31,5060709 MCLauncher.exe 84 RegCloseKey HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\User Shell Folders SUCCESS 97 12:38:31,5060751 MCLauncher.exe 84 RegCloseKey HKCU SUCCESS 97 12:38:31,5060831 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:31,5060875 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: Name 97 12:38:31,5060950 MCLauncher.exe 84 RegOpenKey HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS Desired Access: Read 97 12:38:31,5061022 MCLauncher.exe 84 RegSetInfoKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 97 12:38:31,5061083 MCLauncher.exe 84 RegQueryKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS Query: HandleTags, HandleTags: 0x400 97 12:38:31,5061136 MCLauncher.exe 84 RegOpenKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{DE61D971-5EBC-4F02-A3A9-6C82895E5C04} SUCCESS Desired Access: Read 97 12:38:31,5061210 MCLauncher.exe 84 RegCloseKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS 97 12:38:31,5061260 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{de61d971-5ebc-4f02-a3a9-6c82895e5c04}\Category SUCCESS Type: REG_DWORD, Length: 4, Data: 1 97 12:38:31,5061399 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{de61d971-5ebc-4f02-a3a9-6c82895e5c04}\Name SUCCESS Type: REG_SZ, Length: 42, Data: AddNewProgramsFolder 97 12:38:31,5061535 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{de61d971-5ebc-4f02-a3a9-6c82895e5c04}\ParentFolder NAME NOT FOUND Length: 144 97 12:38:31,5061643 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{de61d971-5ebc-4f02-a3a9-6c82895e5c04}\Description NAME NOT FOUND Length: 144 97 12:38:31,5061748 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{de61d971-5ebc-4f02-a3a9-6c82895e5c04}\RelativePath NAME NOT FOUND Length: 144 97 12:38:31,5061850 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{de61d971-5ebc-4f02-a3a9-6c82895e5c04}\ParsingName BUFFER OVERFLOW Length: 144 97 12:38:31,5061997 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{de61d971-5ebc-4f02-a3a9-6c82895e5c04}\ParsingName SUCCESS Type: REG_SZ, Length: 180, Data: shell:::{26EE0668-A00A-44D7-9371-BEB064C98683}\0\::{15eae92e-f17a-4431-9f28-805e482dafd4} 97 12:38:31,5062125 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{de61d971-5ebc-4f02-a3a9-6c82895e5c04}\InfoTip NAME NOT FOUND Length: 144 97 12:38:31,5062233 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{de61d971-5ebc-4f02-a3a9-6c82895e5c04}\LocalizedName NAME NOT FOUND Length: 144 97 12:38:31,5062335 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{de61d971-5ebc-4f02-a3a9-6c82895e5c04}\Icon NAME NOT FOUND Length: 144 97 12:38:31,5062438 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{de61d971-5ebc-4f02-a3a9-6c82895e5c04}\Security NAME NOT FOUND Length: 144 97 12:38:31,5062540 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{de61d971-5ebc-4f02-a3a9-6c82895e5c04}\StreamResource NAME NOT FOUND Length: 144 97 12:38:31,5062646 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{de61d971-5ebc-4f02-a3a9-6c82895e5c04}\StreamResourceType NAME NOT FOUND Length: 144 97 12:38:31,5062748 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{de61d971-5ebc-4f02-a3a9-6c82895e5c04}\LocalRedirectOnly NAME NOT FOUND Length: 144 97 12:38:31,5062851 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{de61d971-5ebc-4f02-a3a9-6c82895e5c04}\Roamable NAME NOT FOUND Length: 144 97 12:38:31,5062953 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{de61d971-5ebc-4f02-a3a9-6c82895e5c04}\PreCreate NAME NOT FOUND Length: 144 97 12:38:31,5063056 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{de61d971-5ebc-4f02-a3a9-6c82895e5c04}\Stream NAME NOT FOUND Length: 144 97 12:38:31,5063161 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{de61d971-5ebc-4f02-a3a9-6c82895e5c04}\PublishExpandedPath NAME NOT FOUND Length: 144 97 12:38:31,5063263 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{de61d971-5ebc-4f02-a3a9-6c82895e5c04}\DefinitionFlags NAME NOT FOUND Length: 144 97 12:38:31,5063366 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{de61d971-5ebc-4f02-a3a9-6c82895e5c04}\Attributes NAME NOT FOUND Length: 144 97 12:38:31,5063468 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{de61d971-5ebc-4f02-a3a9-6c82895e5c04}\FolderTypeID NAME NOT FOUND Length: 144 97 12:38:31,5063571 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{de61d971-5ebc-4f02-a3a9-6c82895e5c04}\InitFolderHandler NAME NOT FOUND Length: 144 97 12:38:31,5063707 MCLauncher.exe 84 RegQueryKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{de61d971-5ebc-4f02-a3a9-6c82895e5c04} SUCCESS Query: HandleTags, HandleTags: 0x400 97 12:38:31,5063770 MCLauncher.exe 84 RegOpenKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{de61d971-5ebc-4f02-a3a9-6c82895e5c04}\PropertyBag NAME NOT FOUND Desired Access: Read 97 12:38:31,5063851 MCLauncher.exe 84 RegCloseKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{de61d971-5ebc-4f02-a3a9-6c82895e5c04} SUCCESS 97 12:38:31,5063948 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:31,5063998 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: Name 97 12:38:31,5064081 MCLauncher.exe 84 RegOpenKey HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS Desired Access: Read 97 12:38:31,5064153 MCLauncher.exe 84 RegSetInfoKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 97 12:38:31,5064216 MCLauncher.exe 84 RegQueryKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS Query: HandleTags, HandleTags: 0x400 97 12:38:31,5064266 MCLauncher.exe 84 RegOpenKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{EDC0FE71-98D8-4F4A-B920-C8DC133CB165} SUCCESS Desired Access: Read 97 12:38:31,5064341 MCLauncher.exe 84 RegCloseKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS 97 12:38:31,5064385 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{EDC0FE71-98D8-4F4A-B920-C8DC133CB165}\Category SUCCESS Type: REG_DWORD, Length: 4, Data: 4 97 12:38:31,5064516 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{EDC0FE71-98D8-4F4A-B920-C8DC133CB165}\Name SUCCESS Type: REG_SZ, Length: 18, Data: Captures 97 12:38:31,5064646 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{EDC0FE71-98D8-4F4A-B920-C8DC133CB165}\ParentFolder SUCCESS Type: REG_SZ, Length: 78, Data: {18989B1D-99B5-455B-841C-AB7C74E4DDFC} 97 12:38:31,5064771 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{EDC0FE71-98D8-4F4A-B920-C8DC133CB165}\Description NAME NOT FOUND Length: 144 97 12:38:31,5064876 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{EDC0FE71-98D8-4F4A-B920-C8DC133CB165}\RelativePath SUCCESS Type: REG_SZ, Length: 18, Data: Captures 97 12:38:31,5065001 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{EDC0FE71-98D8-4F4A-B920-C8DC133CB165}\ParsingName NAME NOT FOUND Length: 144 97 12:38:31,5065109 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{EDC0FE71-98D8-4F4A-B920-C8DC133CB165}\InfoTip NAME NOT FOUND Length: 144 97 12:38:31,5065211 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{EDC0FE71-98D8-4F4A-B920-C8DC133CB165}\LocalizedName SUCCESS Type: REG_EXPAND_SZ, Length: 100, Data: @%SystemRoot%\system32\windows.storage.dll,-21826 97 12:38:31,5065333 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{EDC0FE71-98D8-4F4A-B920-C8DC133CB165}\Icon NAME NOT FOUND Length: 144 97 12:38:31,5065441 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{EDC0FE71-98D8-4F4A-B920-C8DC133CB165}\Security NAME NOT FOUND Length: 144 97 12:38:31,5065577 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{EDC0FE71-98D8-4F4A-B920-C8DC133CB165}\StreamResource NAME NOT FOUND Length: 144 97 12:38:31,5065682 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{EDC0FE71-98D8-4F4A-B920-C8DC133CB165}\StreamResourceType NAME NOT FOUND Length: 144 97 12:38:31,5065785 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{EDC0FE71-98D8-4F4A-B920-C8DC133CB165}\LocalRedirectOnly NAME NOT FOUND Length: 144 97 12:38:31,5065887 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{EDC0FE71-98D8-4F4A-B920-C8DC133CB165}\Roamable NAME NOT FOUND Length: 144 97 12:38:31,5065990 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{EDC0FE71-98D8-4F4A-B920-C8DC133CB165}\PreCreate NAME NOT FOUND Length: 144 97 12:38:31,5066092 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{EDC0FE71-98D8-4F4A-B920-C8DC133CB165}\Stream NAME NOT FOUND Length: 144 97 12:38:31,5066195 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{EDC0FE71-98D8-4F4A-B920-C8DC133CB165}\PublishExpandedPath NAME NOT FOUND Length: 144 97 12:38:31,5066300 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{EDC0FE71-98D8-4F4A-B920-C8DC133CB165}\DefinitionFlags NAME NOT FOUND Length: 144 97 12:38:31,5066400 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{EDC0FE71-98D8-4F4A-B920-C8DC133CB165}\Attributes NAME NOT FOUND Length: 144 97 12:38:31,5066502 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{EDC0FE71-98D8-4F4A-B920-C8DC133CB165}\FolderTypeID NAME NOT FOUND Length: 144 97 12:38:31,5066605 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{EDC0FE71-98D8-4F4A-B920-C8DC133CB165}\InitFolderHandler NAME NOT FOUND Length: 144 97 12:38:31,5066740 MCLauncher.exe 84 RegQueryKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{EDC0FE71-98D8-4F4A-B920-C8DC133CB165} SUCCESS Query: HandleTags, HandleTags: 0x400 97 12:38:31,5066801 MCLauncher.exe 84 RegOpenKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{EDC0FE71-98D8-4F4A-B920-C8DC133CB165}\PropertyBag NAME NOT FOUND Desired Access: Read 97 12:38:31,5066882 MCLauncher.exe 84 RegCloseKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{EDC0FE71-98D8-4F4A-B920-C8DC133CB165} SUCCESS 97 12:38:31,5066973 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:31,5067020 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: Name 97 12:38:31,5067103 MCLauncher.exe 84 RegOpenKey HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS Desired Access: Read 97 12:38:31,5067178 MCLauncher.exe 84 RegSetInfoKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 97 12:38:31,5067239 MCLauncher.exe 84 RegQueryKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS Query: HandleTags, HandleTags: 0x400 97 12:38:31,5067289 MCLauncher.exe 84 RegOpenKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{0762D272-C50A-4BB0-A382-697DCD729B80} SUCCESS Desired Access: Read 97 12:38:31,5067364 MCLauncher.exe 84 RegCloseKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS 97 12:38:31,5067405 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{0762D272-C50A-4BB0-A382-697DCD729B80}\Category SUCCESS Type: REG_DWORD, Length: 4, Data: 2 97 12:38:31,5067541 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{0762D272-C50A-4BB0-A382-697DCD729B80}\Name SUCCESS Type: REG_SZ, Length: 26, Data: UserProfiles 97 12:38:31,5067677 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{0762D272-C50A-4BB0-A382-697DCD729B80}\ParentFolder NAME NOT FOUND Length: 144 97 12:38:31,5067785 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{0762D272-C50A-4BB0-A382-697DCD729B80}\Description NAME NOT FOUND Length: 144 97 12:38:31,5067887 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{0762D272-C50A-4BB0-A382-697DCD729B80}\RelativePath NAME NOT FOUND Length: 144 97 12:38:31,5067990 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{0762D272-C50A-4BB0-A382-697DCD729B80}\ParsingName NAME NOT FOUND Length: 144 97 12:38:31,5068095 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{0762D272-C50A-4BB0-A382-697DCD729B80}\InfoTip NAME NOT FOUND Length: 144 97 12:38:31,5068198 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{0762D272-C50A-4BB0-A382-697DCD729B80}\LocalizedName SUCCESS Type: REG_EXPAND_SZ, Length: 84, Data: @%SystemRoot%\system32\shell32.dll,-21813 97 12:38:31,5068322 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{0762D272-C50A-4BB0-A382-697DCD729B80}\Icon NAME NOT FOUND Length: 144 97 12:38:31,5068425 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{0762D272-C50A-4BB0-A382-697DCD729B80}\Security BUFFER OVERFLOW Length: 144 97 12:38:31,5068533 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{0762D272-C50A-4BB0-A382-697DCD729B80}\Security SUCCESS Type: REG_SZ, Length: 144, Data: D:P(A;OICI;FA;;;SY)(A;OICI;FA;;;BA)(A;OICI;GXGR;;;BU)(A;OICI;GXGR;;;WD) 97 12:38:31,5068766 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{0762D272-C50A-4BB0-A382-697DCD729B80}\StreamResource NAME NOT FOUND Length: 144 97 12:38:31,5068877 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{0762D272-C50A-4BB0-A382-697DCD729B80}\StreamResourceType NAME NOT FOUND Length: 144 97 12:38:31,5068982 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{0762D272-C50A-4BB0-A382-697DCD729B80}\LocalRedirectOnly NAME NOT FOUND Length: 144 97 12:38:31,5069087 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{0762D272-C50A-4BB0-A382-697DCD729B80}\Roamable NAME NOT FOUND Length: 144 97 12:38:31,5069190 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{0762D272-C50A-4BB0-A382-697DCD729B80}\PreCreate SUCCESS Type: REG_DWORD, Length: 4, Data: 1 97 12:38:31,5069309 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{0762D272-C50A-4BB0-A382-697DCD729B80}\Stream NAME NOT FOUND Length: 144 97 12:38:31,5069414 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{0762D272-C50A-4BB0-A382-697DCD729B80}\PublishExpandedPath NAME NOT FOUND Length: 144 97 12:38:31,5069517 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{0762D272-C50A-4BB0-A382-697DCD729B80}\DefinitionFlags NAME NOT FOUND Length: 144 97 12:38:31,5069622 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{0762D272-C50A-4BB0-A382-697DCD729B80}\Attributes SUCCESS Type: REG_DWORD, Length: 4, Data: 1 97 12:38:31,5069738 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{0762D272-C50A-4BB0-A382-697DCD729B80}\FolderTypeID NAME NOT FOUND Length: 144 97 12:38:31,5069841 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{0762D272-C50A-4BB0-A382-697DCD729B80}\InitFolderHandler NAME NOT FOUND Length: 144 97 12:38:31,5069979 MCLauncher.exe 84 RegQueryKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{0762D272-C50A-4BB0-A382-697DCD729B80} SUCCESS Query: HandleTags, HandleTags: 0x400 97 12:38:31,5070040 MCLauncher.exe 84 RegOpenKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{0762D272-C50A-4BB0-A382-697DCD729B80}\PropertyBag NAME NOT FOUND Desired Access: Read 97 12:38:31,5070126 MCLauncher.exe 84 RegCloseKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{0762D272-C50A-4BB0-A382-697DCD729B80} SUCCESS 97 12:38:31,5070229 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:31,5070278 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: Name 97 12:38:31,5070362 MCLauncher.exe 84 RegOpenKey HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS Desired Access: Read 97 12:38:31,5070436 MCLauncher.exe 84 RegSetInfoKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 97 12:38:31,5070497 MCLauncher.exe 84 RegQueryKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS Query: HandleTags, HandleTags: 0x400 97 12:38:31,5070547 MCLauncher.exe 84 RegOpenKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{4D9F7874-4E0C-4904-967B-40B0D20C3E4B} SUCCESS Desired Access: Read 97 12:38:31,5070622 MCLauncher.exe 84 RegCloseKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS 97 12:38:31,5070666 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{4D9F7874-4E0C-4904-967B-40B0D20C3E4B}\Category SUCCESS Type: REG_DWORD, Length: 4, Data: 1 97 12:38:31,5070794 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{4D9F7874-4E0C-4904-967B-40B0D20C3E4B}\Name SUCCESS Type: REG_SZ, Length: 30, Data: InternetFolder 97 12:38:31,5070921 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{4D9F7874-4E0C-4904-967B-40B0D20C3E4B}\ParentFolder NAME NOT FOUND Length: 144 97 12:38:31,5071032 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{4D9F7874-4E0C-4904-967B-40B0D20C3E4B}\Description NAME NOT FOUND Length: 144 97 12:38:31,5071135 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{4D9F7874-4E0C-4904-967B-40B0D20C3E4B}\RelativePath NAME NOT FOUND Length: 144 97 12:38:31,5071237 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{4D9F7874-4E0C-4904-967B-40B0D20C3E4B}\ParsingName SUCCESS Type: REG_SZ, Length: 82, Data: ::{871C5380-42A0-1069-A2EA-08002B30309D} 97 12:38:31,5071359 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{4D9F7874-4E0C-4904-967B-40B0D20C3E4B}\InfoTip NAME NOT FOUND Length: 144 97 12:38:31,5071467 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{4D9F7874-4E0C-4904-967B-40B0D20C3E4B}\LocalizedName NAME NOT FOUND Length: 144 97 12:38:31,5071570 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{4D9F7874-4E0C-4904-967B-40B0D20C3E4B}\Icon NAME NOT FOUND Length: 144 97 12:38:31,5071669 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{4D9F7874-4E0C-4904-967B-40B0D20C3E4B}\Security NAME NOT FOUND Length: 144 97 12:38:31,5071772 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{4D9F7874-4E0C-4904-967B-40B0D20C3E4B}\StreamResource NAME NOT FOUND Length: 144 97 12:38:31,5071916 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{4D9F7874-4E0C-4904-967B-40B0D20C3E4B}\StreamResourceType NAME NOT FOUND Length: 144 97 12:38:31,5072021 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{4D9F7874-4E0C-4904-967B-40B0D20C3E4B}\LocalRedirectOnly NAME NOT FOUND Length: 144 97 12:38:31,5072121 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{4D9F7874-4E0C-4904-967B-40B0D20C3E4B}\Roamable NAME NOT FOUND Length: 144 97 12:38:31,5072223 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{4D9F7874-4E0C-4904-967B-40B0D20C3E4B}\PreCreate NAME NOT FOUND Length: 144 97 12:38:31,5072323 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{4D9F7874-4E0C-4904-967B-40B0D20C3E4B}\Stream NAME NOT FOUND Length: 144 97 12:38:31,5072426 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{4D9F7874-4E0C-4904-967B-40B0D20C3E4B}\PublishExpandedPath NAME NOT FOUND Length: 144 97 12:38:31,5072528 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{4D9F7874-4E0C-4904-967B-40B0D20C3E4B}\DefinitionFlags NAME NOT FOUND Length: 144 97 12:38:31,5072631 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{4D9F7874-4E0C-4904-967B-40B0D20C3E4B}\Attributes NAME NOT FOUND Length: 144 97 12:38:31,5072730 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{4D9F7874-4E0C-4904-967B-40B0D20C3E4B}\FolderTypeID NAME NOT FOUND Length: 144 97 12:38:31,5072833 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{4D9F7874-4E0C-4904-967B-40B0D20C3E4B}\InitFolderHandler NAME NOT FOUND Length: 144 97 12:38:31,5072966 MCLauncher.exe 84 RegQueryKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{4D9F7874-4E0C-4904-967B-40B0D20C3E4B} SUCCESS Query: HandleTags, HandleTags: 0x400 97 12:38:31,5073027 MCLauncher.exe 84 RegOpenKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{4D9F7874-4E0C-4904-967B-40B0D20C3E4B}\PropertyBag NAME NOT FOUND Desired Access: Read 97 12:38:31,5073110 MCLauncher.exe 84 RegCloseKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{4D9F7874-4E0C-4904-967B-40B0D20C3E4B} SUCCESS 97 12:38:31,5073199 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:31,5073246 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: Name 97 12:38:31,5073329 MCLauncher.exe 84 RegOpenKey HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS Desired Access: Read 97 12:38:31,5073401 MCLauncher.exe 84 RegSetInfoKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 97 12:38:31,5073459 MCLauncher.exe 84 RegQueryKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS Query: HandleTags, HandleTags: 0x400 97 12:38:31,5073509 MCLauncher.exe 84 RegOpenKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{2B20DF75-1EDA-4039-8097-38798227D5B7} SUCCESS Desired Access: Read 97 12:38:31,5073587 MCLauncher.exe 84 RegCloseKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS 97 12:38:31,5073628 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{2B20DF75-1EDA-4039-8097-38798227D5B7}\Category SUCCESS Type: REG_DWORD, Length: 4, Data: 4 97 12:38:31,5073758 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{2B20DF75-1EDA-4039-8097-38798227D5B7}\Name SUCCESS Type: REG_SZ, Length: 36, Data: CameraRollLibrary 97 12:38:31,5073889 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{2B20DF75-1EDA-4039-8097-38798227D5B7}\ParentFolder SUCCESS Type: REG_SZ, Length: 78, Data: {1B3EA5DC-B587-4786-B4EF-BD1DC332AEAE} 97 12:38:31,5074013 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{2B20DF75-1EDA-4039-8097-38798227D5B7}\Description NAME NOT FOUND Length: 144 97 12:38:31,5074118 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{2B20DF75-1EDA-4039-8097-38798227D5B7}\RelativePath SUCCESS Type: REG_SZ, Length: 44, Data: CameraRoll.library-ms 97 12:38:31,5074240 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{2B20DF75-1EDA-4039-8097-38798227D5B7}\ParsingName BUFFER OVERFLOW Length: 144 97 12:38:31,5074346 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{2B20DF75-1EDA-4039-8097-38798227D5B7}\ParsingName SUCCESS Type: REG_SZ, Length: 160, Data: ::{031E4825-7B94-4dc3-B131-E946B44C8DD5}\{2B20DF75-1EDA-4039-8097-38798227D5B7} 97 12:38:31,5074468 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{2B20DF75-1EDA-4039-8097-38798227D5B7}\InfoTip NAME NOT FOUND Length: 144 97 12:38:31,5074576 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{2B20DF75-1EDA-4039-8097-38798227D5B7}\LocalizedName SUCCESS Type: REG_EXPAND_SZ, Length: 100, Data: @%SystemRoot%\system32\windows.storage.dll,-34582 97 12:38:31,5074698 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{2B20DF75-1EDA-4039-8097-38798227D5B7}\Icon NAME NOT FOUND Length: 144 97 12:38:31,5074803 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{2B20DF75-1EDA-4039-8097-38798227D5B7}\Security NAME NOT FOUND Length: 144 97 12:38:31,5074905 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{2B20DF75-1EDA-4039-8097-38798227D5B7}\StreamResource SUCCESS Type: REG_EXPAND_SZ, Length: 74, Data: %SystemRoot%\system32\shell32.dll,-5 97 12:38:31,5075027 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{2B20DF75-1EDA-4039-8097-38798227D5B7}\StreamResourceType SUCCESS Type: REG_SZ, Length: 16, Data: LIBRARY 97 12:38:31,5075155 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{2B20DF75-1EDA-4039-8097-38798227D5B7}\LocalRedirectOnly NAME NOT FOUND Length: 144 97 12:38:31,5075263 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{2B20DF75-1EDA-4039-8097-38798227D5B7}\Roamable NAME NOT FOUND Length: 144 97 12:38:31,5075365 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{2B20DF75-1EDA-4039-8097-38798227D5B7}\PreCreate NAME NOT FOUND Length: 144 97 12:38:31,5075468 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{2B20DF75-1EDA-4039-8097-38798227D5B7}\Stream SUCCESS Type: REG_DWORD, Length: 4, Data: 1 97 12:38:31,5075587 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{2B20DF75-1EDA-4039-8097-38798227D5B7}\PublishExpandedPath NAME NOT FOUND Length: 144 97 12:38:31,5075692 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{2B20DF75-1EDA-4039-8097-38798227D5B7}\DefinitionFlags NAME NOT FOUND Length: 144 97 12:38:31,5075797 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{2B20DF75-1EDA-4039-8097-38798227D5B7}\Attributes NAME NOT FOUND Length: 144 97 12:38:31,5075897 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{2B20DF75-1EDA-4039-8097-38798227D5B7}\FolderTypeID NAME NOT FOUND Length: 144 97 12:38:31,5076000 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{2B20DF75-1EDA-4039-8097-38798227D5B7}\InitFolderHandler NAME NOT FOUND Length: 144 97 12:38:31,5076135 MCLauncher.exe 84 RegQueryKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{2B20DF75-1EDA-4039-8097-38798227D5B7} SUCCESS Query: HandleTags, HandleTags: 0x400 97 12:38:31,5076196 MCLauncher.exe 84 RegOpenKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{2B20DF75-1EDA-4039-8097-38798227D5B7}\PropertyBag SUCCESS Desired Access: Read 97 12:38:31,5076285 MCLauncher.exe 84 RegCloseKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{2B20DF75-1EDA-4039-8097-38798227D5B7} SUCCESS 97 12:38:31,5076379 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:31,5076426 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: Name 97 12:38:31,5076507 MCLauncher.exe 84 RegOpenKey HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS Desired Access: Read 97 12:38:31,5076579 MCLauncher.exe 84 RegSetInfoKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 97 12:38:31,5076640 MCLauncher.exe 84 RegQueryKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS Query: HandleTags, HandleTags: 0x400 97 12:38:31,5076690 MCLauncher.exe 84 RegOpenKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{1AC14E77-02E7-4E5D-B744-2EB1AE5198B7} SUCCESS Desired Access: Read 97 12:38:31,5076762 MCLauncher.exe 84 RegCloseKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS 97 12:38:31,5076803 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{1AC14E77-02E7-4E5D-B744-2EB1AE5198B7}\Category SUCCESS Type: REG_DWORD, Length: 4, Data: 2 97 12:38:31,5076933 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{1AC14E77-02E7-4E5D-B744-2EB1AE5198B7}\Name SUCCESS Type: REG_SZ, Length: 14, Data: System 97 12:38:31,5077061 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{1AC14E77-02E7-4E5D-B744-2EB1AE5198B7}\ParentFolder NAME NOT FOUND Length: 144 97 12:38:31,5077197 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{1AC14E77-02E7-4E5D-B744-2EB1AE5198B7}\Description NAME NOT FOUND Length: 144 97 12:38:31,5077302 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{1AC14E77-02E7-4E5D-B744-2EB1AE5198B7}\RelativePath NAME NOT FOUND Length: 144 97 12:38:31,5077404 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{1AC14E77-02E7-4E5D-B744-2EB1AE5198B7}\ParsingName NAME NOT FOUND Length: 144 97 12:38:31,5077504 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{1AC14E77-02E7-4E5D-B744-2EB1AE5198B7}\InfoTip NAME NOT FOUND Length: 144 97 12:38:31,5077607 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{1AC14E77-02E7-4E5D-B744-2EB1AE5198B7}\LocalizedName NAME NOT FOUND Length: 144 97 12:38:31,5077709 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{1AC14E77-02E7-4E5D-B744-2EB1AE5198B7}\Icon NAME NOT FOUND Length: 144 97 12:38:31,5077812 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{1AC14E77-02E7-4E5D-B744-2EB1AE5198B7}\Security NAME NOT FOUND Length: 144 97 12:38:31,5077914 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{1AC14E77-02E7-4E5D-B744-2EB1AE5198B7}\StreamResource NAME NOT FOUND Length: 144 97 12:38:31,5078017 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{1AC14E77-02E7-4E5D-B744-2EB1AE5198B7}\StreamResourceType NAME NOT FOUND Length: 144 97 12:38:31,5078119 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{1AC14E77-02E7-4E5D-B744-2EB1AE5198B7}\LocalRedirectOnly NAME NOT FOUND Length: 144 97 12:38:31,5078219 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{1AC14E77-02E7-4E5D-B744-2EB1AE5198B7}\Roamable NAME NOT FOUND Length: 144 97 12:38:31,5078418 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{1AC14E77-02E7-4E5D-B744-2EB1AE5198B7}\PreCreate NAME NOT FOUND Length: 144 97 12:38:31,5078585 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{1AC14E77-02E7-4E5D-B744-2EB1AE5198B7}\Stream NAME NOT FOUND Length: 144 97 12:38:31,5078693 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{1AC14E77-02E7-4E5D-B744-2EB1AE5198B7}\PublishExpandedPath NAME NOT FOUND Length: 144 97 12:38:31,5078795 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{1AC14E77-02E7-4E5D-B744-2EB1AE5198B7}\DefinitionFlags NAME NOT FOUND Length: 144 97 12:38:31,5078900 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{1AC14E77-02E7-4E5D-B744-2EB1AE5198B7}\Attributes NAME NOT FOUND Length: 144 97 12:38:31,5079003 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{1AC14E77-02E7-4E5D-B744-2EB1AE5198B7}\FolderTypeID NAME NOT FOUND Length: 144 97 12:38:31,5079105 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{1AC14E77-02E7-4E5D-B744-2EB1AE5198B7}\InitFolderHandler NAME NOT FOUND Length: 144 97 12:38:31,5079241 MCLauncher.exe 84 RegQueryKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{1AC14E77-02E7-4E5D-B744-2EB1AE5198B7} SUCCESS Query: HandleTags, HandleTags: 0x400 97 12:38:31,5079308 MCLauncher.exe 84 RegOpenKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{1AC14E77-02E7-4E5D-B744-2EB1AE5198B7}\PropertyBag SUCCESS Desired Access: Read 97 12:38:31,5079407 MCLauncher.exe 84 RegCloseKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{1AC14E77-02E7-4E5D-B744-2EB1AE5198B7} SUCCESS 97 12:38:31,5079496 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:31,5079546 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: Name 97 12:38:31,5079629 MCLauncher.exe 84 RegOpenKey HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS Desired Access: Read 97 12:38:31,5079701 MCLauncher.exe 84 RegSetInfoKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 97 12:38:31,5079759 MCLauncher.exe 84 RegQueryKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS Query: HandleTags, HandleTags: 0x400 97 12:38:31,5079812 MCLauncher.exe 84 RegOpenKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{A77F5D77-2E2B-44C3-A6A2-ABA601054A51} SUCCESS Desired Access: Read 97 12:38:31,5079890 MCLauncher.exe 84 RegCloseKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS 97 12:38:31,5079931 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{A77F5D77-2E2B-44C3-A6A2-ABA601054A51}\Category SUCCESS Type: REG_DWORD, Length: 4, Data: 4 97 12:38:31,5080061 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{A77F5D77-2E2B-44C3-A6A2-ABA601054A51}\Name SUCCESS Type: REG_SZ, Length: 18, Data: Programs 97 12:38:31,5080189 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{A77F5D77-2E2B-44C3-A6A2-ABA601054A51}\ParentFolder SUCCESS Type: REG_SZ, Length: 78, Data: {625B53C3-AB48-4EC1-BA1F-A1EF4146FC19} 97 12:38:31,5080344 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{A77F5D77-2E2B-44C3-A6A2-ABA601054A51}\Description NAME NOT FOUND Length: 144 97 12:38:31,5080452 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{A77F5D77-2E2B-44C3-A6A2-ABA601054A51}\RelativePath SUCCESS Type: REG_SZ, Length: 18, Data: Programs 97 12:38:31,5080574 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{A77F5D77-2E2B-44C3-A6A2-ABA601054A51}\ParsingName NAME NOT FOUND Length: 144 97 12:38:31,5080682 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{A77F5D77-2E2B-44C3-A6A2-ABA601054A51}\InfoTip NAME NOT FOUND Length: 144 97 12:38:31,5080784 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{A77F5D77-2E2B-44C3-A6A2-ABA601054A51}\LocalizedName SUCCESS Type: REG_EXPAND_SZ, Length: 84, Data: @%SystemRoot%\system32\shell32.dll,-21782 97 12:38:31,5080906 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{A77F5D77-2E2B-44C3-A6A2-ABA601054A51}\Icon NAME NOT FOUND Length: 144 97 12:38:31,5081012 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{A77F5D77-2E2B-44C3-A6A2-ABA601054A51}\Security NAME NOT FOUND Length: 144 97 12:38:31,5081111 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{A77F5D77-2E2B-44C3-A6A2-ABA601054A51}\StreamResource NAME NOT FOUND Length: 144 97 12:38:31,5081217 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{A77F5D77-2E2B-44C3-A6A2-ABA601054A51}\StreamResourceType NAME NOT FOUND Length: 144 97 12:38:31,5081319 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{A77F5D77-2E2B-44C3-A6A2-ABA601054A51}\LocalRedirectOnly NAME NOT FOUND Length: 144 97 12:38:31,5081422 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{A77F5D77-2E2B-44C3-A6A2-ABA601054A51}\Roamable NAME NOT FOUND Length: 144 97 12:38:31,5081524 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{A77F5D77-2E2B-44C3-A6A2-ABA601054A51}\PreCreate SUCCESS Type: REG_DWORD, Length: 4, Data: 1 97 12:38:31,5081641 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{A77F5D77-2E2B-44C3-A6A2-ABA601054A51}\Stream NAME NOT FOUND Length: 144 97 12:38:31,5081746 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{A77F5D77-2E2B-44C3-A6A2-ABA601054A51}\PublishExpandedPath NAME NOT FOUND Length: 144 97 12:38:31,5081848 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{A77F5D77-2E2B-44C3-A6A2-ABA601054A51}\DefinitionFlags NAME NOT FOUND Length: 144 97 12:38:31,5081951 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{A77F5D77-2E2B-44C3-A6A2-ABA601054A51}\Attributes SUCCESS Type: REG_DWORD, Length: 4, Data: 1 97 12:38:31,5082067 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{A77F5D77-2E2B-44C3-A6A2-ABA601054A51}\FolderTypeID NAME NOT FOUND Length: 144 97 12:38:31,5082170 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{A77F5D77-2E2B-44C3-A6A2-ABA601054A51}\InitFolderHandler NAME NOT FOUND Length: 144 97 12:38:31,5082303 MCLauncher.exe 84 RegQueryKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{A77F5D77-2E2B-44C3-A6A2-ABA601054A51} SUCCESS Query: HandleTags, HandleTags: 0x400 97 12:38:31,5082366 MCLauncher.exe 84 RegOpenKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{A77F5D77-2E2B-44C3-A6A2-ABA601054A51}\PropertyBag NAME NOT FOUND Desired Access: Read 97 12:38:31,5082450 MCLauncher.exe 84 RegCloseKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{A77F5D77-2E2B-44C3-A6A2-ABA601054A51} SUCCESS 97 12:38:31,5082538 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:31,5082585 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: Name 97 12:38:31,5082666 MCLauncher.exe 84 RegOpenKey HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS Desired Access: Read 97 12:38:31,5082740 MCLauncher.exe 84 RegSetInfoKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 97 12:38:31,5082801 MCLauncher.exe 84 RegQueryKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS Query: HandleTags, HandleTags: 0x400 97 12:38:31,5082851 MCLauncher.exe 84 RegOpenKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{AB5FB87B-7CE2-4F83-915D-550846C9537B} SUCCESS Desired Access: Read 97 12:38:31,5082921 MCLauncher.exe 84 RegCloseKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS 97 12:38:31,5082965 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{AB5FB87B-7CE2-4F83-915D-550846C9537B}\Category SUCCESS Type: REG_DWORD, Length: 4, Data: 4 97 12:38:31,5083092 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{AB5FB87B-7CE2-4F83-915D-550846C9537B}\Name SUCCESS Type: REG_SZ, Length: 24, Data: Camera Roll 97 12:38:31,5083223 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{AB5FB87B-7CE2-4F83-915D-550846C9537B}\ParentFolder SUCCESS Type: REG_SZ, Length: 78, Data: {33E28130-4E1E-4676-835A-98395C3BC3BB} 97 12:38:31,5083347 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{AB5FB87B-7CE2-4F83-915D-550846C9537B}\Description NAME NOT FOUND Length: 144 97 12:38:31,5083452 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{AB5FB87B-7CE2-4F83-915D-550846C9537B}\RelativePath SUCCESS Type: REG_SZ, Length: 24, Data: Camera Roll 97 12:38:31,5083574 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{AB5FB87B-7CE2-4F83-915D-550846C9537B}\ParsingName NAME NOT FOUND Length: 144 97 12:38:31,5083680 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{AB5FB87B-7CE2-4F83-915D-550846C9537B}\InfoTip NAME NOT FOUND Length: 144 97 12:38:31,5083782 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{AB5FB87B-7CE2-4F83-915D-550846C9537B}\LocalizedName SUCCESS Type: REG_EXPAND_SZ, Length: 100, Data: @%SystemRoot%\system32\windows.storage.dll,-21824 97 12:38:31,5083907 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{AB5FB87B-7CE2-4F83-915D-550846C9537B}\Icon NAME NOT FOUND Length: 144 97 12:38:31,5084012 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{AB5FB87B-7CE2-4F83-915D-550846C9537B}\Security NAME NOT FOUND Length: 144 97 12:38:31,5084115 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{AB5FB87B-7CE2-4F83-915D-550846C9537B}\StreamResource NAME NOT FOUND Length: 144 97 12:38:31,5084217 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{AB5FB87B-7CE2-4F83-915D-550846C9537B}\StreamResourceType NAME NOT FOUND Length: 144 97 12:38:31,5084320 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{AB5FB87B-7CE2-4F83-915D-550846C9537B}\LocalRedirectOnly NAME NOT FOUND Length: 144 97 12:38:31,5084422 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{AB5FB87B-7CE2-4F83-915D-550846C9537B}\Roamable NAME NOT FOUND Length: 144 97 12:38:31,5084522 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{AB5FB87B-7CE2-4F83-915D-550846C9537B}\PreCreate NAME NOT FOUND Length: 144 97 12:38:31,5084624 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{AB5FB87B-7CE2-4F83-915D-550846C9537B}\Stream NAME NOT FOUND Length: 144 97 12:38:31,5084752 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{AB5FB87B-7CE2-4F83-915D-550846C9537B}\PublishExpandedPath NAME NOT FOUND Length: 144 97 12:38:31,5084854 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{AB5FB87B-7CE2-4F83-915D-550846C9537B}\DefinitionFlags NAME NOT FOUND Length: 144 97 12:38:31,5084957 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{AB5FB87B-7CE2-4F83-915D-550846C9537B}\Attributes NAME NOT FOUND Length: 144 97 12:38:31,5085059 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{AB5FB87B-7CE2-4F83-915D-550846C9537B}\FolderTypeID NAME NOT FOUND Length: 144 97 12:38:31,5085162 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{AB5FB87B-7CE2-4F83-915D-550846C9537B}\InitFolderHandler SUCCESS Type: REG_SZ, Length: 78, Data: {B26388EA-AD62-430f-AF5C-CFA63BFE94A6} 97 12:38:31,5085312 MCLauncher.exe 84 RegQueryKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{AB5FB87B-7CE2-4F83-915D-550846C9537B} SUCCESS Query: HandleTags, HandleTags: 0x400 97 12:38:31,5085372 MCLauncher.exe 84 RegOpenKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{AB5FB87B-7CE2-4F83-915D-550846C9537B}\PropertyBag NAME NOT FOUND Desired Access: Read 97 12:38:31,5085456 MCLauncher.exe 84 RegCloseKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{AB5FB87B-7CE2-4F83-915D-550846C9537B} SUCCESS 97 12:38:31,5085555 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:31,5085605 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: Name 97 12:38:31,5085688 MCLauncher.exe 84 RegOpenKey HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS Desired Access: Read 97 12:38:31,5085760 MCLauncher.exe 84 RegSetInfoKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 97 12:38:31,5085819 MCLauncher.exe 84 RegQueryKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS Query: HandleTags, HandleTags: 0x400 97 12:38:31,5085871 MCLauncher.exe 84 RegOpenKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{0AC0837C-BBF8-452A-850D-79D08E667CA7} SUCCESS Desired Access: Read 97 12:38:31,5085940 MCLauncher.exe 84 RegCloseKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS 97 12:38:31,5085985 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{0AC0837C-BBF8-452A-850D-79D08E667CA7}\Category SUCCESS Type: REG_DWORD, Length: 4, Data: 1 97 12:38:31,5086112 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{0AC0837C-BBF8-452A-850D-79D08E667CA7}\Name SUCCESS Type: REG_SZ, Length: 34, Data: MyComputerFolder 97 12:38:31,5086240 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{0AC0837C-BBF8-452A-850D-79D08E667CA7}\ParentFolder NAME NOT FOUND Length: 144 97 12:38:31,5086345 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{0AC0837C-BBF8-452A-850D-79D08E667CA7}\Description NAME NOT FOUND Length: 144 97 12:38:31,5086447 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{0AC0837C-BBF8-452A-850D-79D08E667CA7}\RelativePath NAME NOT FOUND Length: 144 97 12:38:31,5086553 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{0AC0837C-BBF8-452A-850D-79D08E667CA7}\ParsingName SUCCESS Type: REG_SZ, Length: 82, Data: ::{20D04FE0-3AEA-1069-A2D8-08002B30309D} 97 12:38:31,5086675 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{0AC0837C-BBF8-452A-850D-79D08E667CA7}\InfoTip NAME NOT FOUND Length: 144 97 12:38:31,5086780 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{0AC0837C-BBF8-452A-850D-79D08E667CA7}\LocalizedName NAME NOT FOUND Length: 144 97 12:38:31,5086882 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{0AC0837C-BBF8-452A-850D-79D08E667CA7}\Icon NAME NOT FOUND Length: 144 97 12:38:31,5086985 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{0AC0837C-BBF8-452A-850D-79D08E667CA7}\Security NAME NOT FOUND Length: 144 97 12:38:31,5087087 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{0AC0837C-BBF8-452A-850D-79D08E667CA7}\StreamResource NAME NOT FOUND Length: 144 97 12:38:31,5087190 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{0AC0837C-BBF8-452A-850D-79D08E667CA7}\StreamResourceType NAME NOT FOUND Length: 144 97 12:38:31,5087292 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{0AC0837C-BBF8-452A-850D-79D08E667CA7}\LocalRedirectOnly NAME NOT FOUND Length: 144 97 12:38:31,5087392 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{0AC0837C-BBF8-452A-850D-79D08E667CA7}\Roamable NAME NOT FOUND Length: 144 97 12:38:31,5087495 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{0AC0837C-BBF8-452A-850D-79D08E667CA7}\PreCreate NAME NOT FOUND Length: 144 97 12:38:31,5087597 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{0AC0837C-BBF8-452A-850D-79D08E667CA7}\Stream NAME NOT FOUND Length: 144 97 12:38:31,5087697 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{0AC0837C-BBF8-452A-850D-79D08E667CA7}\PublishExpandedPath NAME NOT FOUND Length: 144 97 12:38:31,5087800 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{0AC0837C-BBF8-452A-850D-79D08E667CA7}\DefinitionFlags NAME NOT FOUND Length: 144 97 12:38:31,5087902 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{0AC0837C-BBF8-452A-850D-79D08E667CA7}\Attributes NAME NOT FOUND Length: 144 97 12:38:31,5088005 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{0AC0837C-BBF8-452A-850D-79D08E667CA7}\FolderTypeID NAME NOT FOUND Length: 144 97 12:38:31,5088104 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{0AC0837C-BBF8-452A-850D-79D08E667CA7}\InitFolderHandler NAME NOT FOUND Length: 144 97 12:38:31,5088237 MCLauncher.exe 84 RegQueryKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{0AC0837C-BBF8-452A-850D-79D08E667CA7} SUCCESS Query: HandleTags, HandleTags: 0x400 97 12:38:31,5088295 MCLauncher.exe 84 RegOpenKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{0AC0837C-BBF8-452A-850D-79D08E667CA7}\PropertyBag NAME NOT FOUND Desired Access: Read 97 12:38:31,5088559 MCLauncher.exe 84 RegCloseKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{0AC0837C-BBF8-452A-850D-79D08E667CA7} SUCCESS 97 12:38:31,5088667 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:31,5088717 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: Name 97 12:38:31,5088805 MCLauncher.exe 84 RegOpenKey HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS Desired Access: Read 97 12:38:31,5088888 MCLauncher.exe 84 RegSetInfoKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 97 12:38:31,5088949 MCLauncher.exe 84 RegQueryKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS Query: HandleTags, HandleTags: 0x400 97 12:38:31,5089002 MCLauncher.exe 84 RegOpenKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{D0384E7D-BAC3-4797-8F14-CBA229B392B5} SUCCESS Desired Access: Read 97 12:38:31,5089074 MCLauncher.exe 84 RegCloseKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS 97 12:38:31,5089124 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{D0384E7D-BAC3-4797-8F14-CBA229B392B5}\Category SUCCESS Type: REG_DWORD, Length: 4, Data: 3 97 12:38:31,5089251 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{D0384E7D-BAC3-4797-8F14-CBA229B392B5}\Name SUCCESS Type: REG_SZ, Length: 56, Data: Common Administrative Tools 97 12:38:31,5089384 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{D0384E7D-BAC3-4797-8F14-CBA229B392B5}\ParentFolder SUCCESS Type: REG_SZ, Length: 78, Data: {0139D44E-6AFE-49F2-8690-3DAFCAE6FFB8} 97 12:38:31,5089509 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{D0384E7D-BAC3-4797-8F14-CBA229B392B5}\Description NAME NOT FOUND Length: 144 97 12:38:31,5089614 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{D0384E7D-BAC3-4797-8F14-CBA229B392B5}\RelativePath SUCCESS Type: REG_SZ, Length: 42, Data: Administrative Tools 97 12:38:31,5089739 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{D0384E7D-BAC3-4797-8F14-CBA229B392B5}\ParsingName NAME NOT FOUND Length: 144 97 12:38:31,5089847 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{D0384E7D-BAC3-4797-8F14-CBA229B392B5}\InfoTip NAME NOT FOUND Length: 144 97 12:38:31,5089952 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{D0384E7D-BAC3-4797-8F14-CBA229B392B5}\LocalizedName SUCCESS Type: REG_EXPAND_SZ, Length: 84, Data: @%SystemRoot%\system32\shell32.dll,-21762 97 12:38:31,5090074 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{D0384E7D-BAC3-4797-8F14-CBA229B392B5}\Icon NAME NOT FOUND Length: 144 97 12:38:31,5090182 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{D0384E7D-BAC3-4797-8F14-CBA229B392B5}\Security NAME NOT FOUND Length: 144 97 12:38:31,5090285 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{D0384E7D-BAC3-4797-8F14-CBA229B392B5}\StreamResource NAME NOT FOUND Length: 144 97 12:38:31,5090390 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{D0384E7D-BAC3-4797-8F14-CBA229B392B5}\StreamResourceType NAME NOT FOUND Length: 144 97 12:38:31,5090495 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{D0384E7D-BAC3-4797-8F14-CBA229B392B5}\LocalRedirectOnly NAME NOT FOUND Length: 144 97 12:38:31,5090601 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{D0384E7D-BAC3-4797-8F14-CBA229B392B5}\Roamable NAME NOT FOUND Length: 144 97 12:38:31,5090731 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{D0384E7D-BAC3-4797-8F14-CBA229B392B5}\PreCreate SUCCESS Type: REG_DWORD, Length: 4, Data: 1 97 12:38:31,5090850 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{D0384E7D-BAC3-4797-8F14-CBA229B392B5}\Stream NAME NOT FOUND Length: 144 97 12:38:31,5090955 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{D0384E7D-BAC3-4797-8F14-CBA229B392B5}\PublishExpandedPath NAME NOT FOUND Length: 144 97 12:38:31,5091060 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{D0384E7D-BAC3-4797-8F14-CBA229B392B5}\DefinitionFlags NAME NOT FOUND Length: 144 97 12:38:31,5091166 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{D0384E7D-BAC3-4797-8F14-CBA229B392B5}\Attributes SUCCESS Type: REG_DWORD, Length: 4, Data: 1 97 12:38:31,5091282 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{D0384E7D-BAC3-4797-8F14-CBA229B392B5}\FolderTypeID NAME NOT FOUND Length: 144 97 12:38:31,5091387 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{D0384E7D-BAC3-4797-8F14-CBA229B392B5}\InitFolderHandler NAME NOT FOUND Length: 144 97 12:38:31,5091520 MCLauncher.exe 84 RegQueryKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{D0384E7D-BAC3-4797-8F14-CBA229B392B5} SUCCESS Query: HandleTags, HandleTags: 0x400 97 12:38:31,5091584 MCLauncher.exe 84 RegOpenKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{D0384E7D-BAC3-4797-8F14-CBA229B392B5}\PropertyBag NAME NOT FOUND Desired Access: Read 97 12:38:31,5091667 MCLauncher.exe 84 RegCloseKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{D0384E7D-BAC3-4797-8F14-CBA229B392B5} SUCCESS 97 12:38:31,5091756 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:31,5091803 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: Name 97 12:38:31,5091883 MCLauncher.exe 84 RegOpenKey HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS Desired Access: Read 97 12:38:31,5091955 MCLauncher.exe 84 RegSetInfoKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 97 12:38:31,5092014 MCLauncher.exe 84 RegQueryKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS Query: HandleTags, HandleTags: 0x400 97 12:38:31,5092063 MCLauncher.exe 84 RegOpenKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{7B0DB17D-9CD2-4A93-9733-46CC89022E7C} SUCCESS Desired Access: Read 97 12:38:31,5092138 MCLauncher.exe 84 RegCloseKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS 97 12:38:31,5092180 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{7b0db17d-9cd2-4a93-9733-46cc89022e7c}\Category SUCCESS Type: REG_DWORD, Length: 4, Data: 4 97 12:38:31,5092310 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{7b0db17d-9cd2-4a93-9733-46cc89022e7c}\Name SUCCESS Type: REG_SZ, Length: 34, Data: DocumentsLibrary 97 12:38:31,5092437 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{7b0db17d-9cd2-4a93-9733-46cc89022e7c}\ParentFolder SUCCESS Type: REG_SZ, Length: 78, Data: {1B3EA5DC-B587-4786-B4EF-BD1DC332AEAE} 97 12:38:31,5092562 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{7b0db17d-9cd2-4a93-9733-46cc89022e7c}\Description NAME NOT FOUND Length: 144 97 12:38:31,5092670 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{7b0db17d-9cd2-4a93-9733-46cc89022e7c}\RelativePath SUCCESS Type: REG_SZ, Length: 42, Data: Documents.library-ms 97 12:38:31,5092792 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{7b0db17d-9cd2-4a93-9733-46cc89022e7c}\ParsingName BUFFER OVERFLOW Length: 144 97 12:38:31,5092900 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{7b0db17d-9cd2-4a93-9733-46cc89022e7c}\ParsingName SUCCESS Type: REG_SZ, Length: 160, Data: ::{031E4825-7B94-4dc3-B131-E946B44C8DD5}\{7b0db17d-9cd2-4a93-9733-46cc89022e7c} 97 12:38:31,5093025 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{7b0db17d-9cd2-4a93-9733-46cc89022e7c}\InfoTip NAME NOT FOUND Length: 144 97 12:38:31,5093133 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{7b0db17d-9cd2-4a93-9733-46cc89022e7c}\LocalizedName SUCCESS Type: REG_EXPAND_SZ, Length: 100, Data: @%SystemRoot%\system32\windows.storage.dll,-34575 97 12:38:31,5093258 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{7b0db17d-9cd2-4a93-9733-46cc89022e7c}\Icon SUCCESS Type: REG_EXPAND_SZ, Length: 82, Data: %SystemRoot%\system32\imageres.dll,-1002 97 12:38:31,5093379 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{7b0db17d-9cd2-4a93-9733-46cc89022e7c}\Security NAME NOT FOUND Length: 144 97 12:38:31,5093487 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{7b0db17d-9cd2-4a93-9733-46cc89022e7c}\StreamResource SUCCESS Type: REG_EXPAND_SZ, Length: 74, Data: %SystemRoot%\system32\shell32.dll,-1 97 12:38:31,5093609 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{7b0db17d-9cd2-4a93-9733-46cc89022e7c}\StreamResourceType SUCCESS Type: REG_SZ, Length: 16, Data: LIBRARY 97 12:38:31,5093737 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{7b0db17d-9cd2-4a93-9733-46cc89022e7c}\LocalRedirectOnly NAME NOT FOUND Length: 144 97 12:38:31,5093842 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{7b0db17d-9cd2-4a93-9733-46cc89022e7c}\Roamable NAME NOT FOUND Length: 144 97 12:38:31,5093947 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{7b0db17d-9cd2-4a93-9733-46cc89022e7c}\PreCreate SUCCESS Type: REG_DWORD, Length: 4, Data: 1 97 12:38:31,5094064 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{7b0db17d-9cd2-4a93-9733-46cc89022e7c}\Stream SUCCESS Type: REG_DWORD, Length: 4, Data: 1 97 12:38:31,5094183 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{7b0db17d-9cd2-4a93-9733-46cc89022e7c}\PublishExpandedPath NAME NOT FOUND Length: 144 97 12:38:31,5094288 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{7b0db17d-9cd2-4a93-9733-46cc89022e7c}\DefinitionFlags NAME NOT FOUND Length: 144 97 12:38:31,5094393 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{7b0db17d-9cd2-4a93-9733-46cc89022e7c}\Attributes NAME NOT FOUND Length: 144 97 12:38:31,5094496 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{7b0db17d-9cd2-4a93-9733-46cc89022e7c}\FolderTypeID NAME NOT FOUND Length: 144 97 12:38:31,5094623 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{7b0db17d-9cd2-4a93-9733-46cc89022e7c}\InitFolderHandler NAME NOT FOUND Length: 144 97 12:38:31,5094762 MCLauncher.exe 84 RegQueryKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{7b0db17d-9cd2-4a93-9733-46cc89022e7c} SUCCESS Query: HandleTags, HandleTags: 0x400 97 12:38:31,5094826 MCLauncher.exe 84 RegOpenKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{7b0db17d-9cd2-4a93-9733-46cc89022e7c}\PropertyBag SUCCESS Desired Access: Read 97 12:38:31,5094914 MCLauncher.exe 84 RegCloseKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{7b0db17d-9cd2-4a93-9733-46cc89022e7c} SUCCESS 97 12:38:31,5095014 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:31,5095061 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: Name 97 12:38:31,5095144 MCLauncher.exe 84 RegOpenKey HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS Desired Access: Read 97 12:38:31,5095214 MCLauncher.exe 84 RegSetInfoKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 97 12:38:31,5095274 MCLauncher.exe 84 RegQueryKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS Query: HandleTags, HandleTags: 0x400 97 12:38:31,5095324 MCLauncher.exe 84 RegOpenKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{A3918781-E5F2-4890-B3D9-A7E54332328C} SUCCESS Desired Access: Read 97 12:38:31,5095402 MCLauncher.exe 84 RegCloseKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS 97 12:38:31,5095443 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{A3918781-E5F2-4890-B3D9-A7E54332328C}\Category SUCCESS Type: REG_DWORD, Length: 4, Data: 4 97 12:38:31,5095576 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{A3918781-E5F2-4890-B3D9-A7E54332328C}\Name SUCCESS Type: REG_SZ, Length: 44, Data: Application Shortcuts 97 12:38:31,5095707 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{A3918781-E5F2-4890-B3D9-A7E54332328C}\ParentFolder SUCCESS Type: REG_SZ, Length: 78, Data: {F1B32785-6FBA-4FCF-9D55-7B8E7F157091} 97 12:38:31,5095831 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{A3918781-E5F2-4890-B3D9-A7E54332328C}\Description NAME NOT FOUND Length: 144 97 12:38:31,5095937 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{A3918781-E5F2-4890-B3D9-A7E54332328C}\RelativePath SUCCESS Type: REG_SZ, Length: 80, Data: Microsoft\Windows\Application Shortcuts 97 12:38:31,5096059 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{A3918781-E5F2-4890-B3D9-A7E54332328C}\ParsingName NAME NOT FOUND Length: 144 97 12:38:31,5096164 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{A3918781-E5F2-4890-B3D9-A7E54332328C}\InfoTip NAME NOT FOUND Length: 144 97 12:38:31,5096266 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{A3918781-E5F2-4890-B3D9-A7E54332328C}\LocalizedName SUCCESS Type: REG_EXPAND_SZ, Length: 84, Data: @%SystemRoot%\system32\shell32.dll,-50704 97 12:38:31,5096391 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{A3918781-E5F2-4890-B3D9-A7E54332328C}\Icon NAME NOT FOUND Length: 144 97 12:38:31,5096496 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{A3918781-E5F2-4890-B3D9-A7E54332328C}\Security NAME NOT FOUND Length: 144 97 12:38:31,5096599 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{A3918781-E5F2-4890-B3D9-A7E54332328C}\StreamResource NAME NOT FOUND Length: 144 97 12:38:31,5096704 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{A3918781-E5F2-4890-B3D9-A7E54332328C}\StreamResourceType NAME NOT FOUND Length: 144 97 12:38:31,5096807 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{A3918781-E5F2-4890-B3D9-A7E54332328C}\LocalRedirectOnly NAME NOT FOUND Length: 144 97 12:38:31,5096909 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{A3918781-E5F2-4890-B3D9-A7E54332328C}\Roamable NAME NOT FOUND Length: 144 97 12:38:31,5097012 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{A3918781-E5F2-4890-B3D9-A7E54332328C}\PreCreate SUCCESS Type: REG_DWORD, Length: 4, Data: 1 97 12:38:31,5097128 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{A3918781-E5F2-4890-B3D9-A7E54332328C}\Stream NAME NOT FOUND Length: 144 97 12:38:31,5097236 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{A3918781-E5F2-4890-B3D9-A7E54332328C}\PublishExpandedPath NAME NOT FOUND Length: 144 97 12:38:31,5097341 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{A3918781-E5F2-4890-B3D9-A7E54332328C}\DefinitionFlags NAME NOT FOUND Length: 144 97 12:38:31,5097444 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{A3918781-E5F2-4890-B3D9-A7E54332328C}\Attributes SUCCESS Type: REG_DWORD, Length: 4, Data: 1 97 12:38:31,5097557 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{A3918781-E5F2-4890-B3D9-A7E54332328C}\FolderTypeID NAME NOT FOUND Length: 144 97 12:38:31,5097663 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{A3918781-E5F2-4890-B3D9-A7E54332328C}\InitFolderHandler NAME NOT FOUND Length: 144 97 12:38:31,5097798 MCLauncher.exe 84 RegQueryKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{A3918781-E5F2-4890-B3D9-A7E54332328C} SUCCESS Query: HandleTags, HandleTags: 0x400 97 12:38:31,5097859 MCLauncher.exe 84 RegOpenKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{A3918781-E5F2-4890-B3D9-A7E54332328C}\PropertyBag NAME NOT FOUND Desired Access: Read 97 12:38:31,5097943 MCLauncher.exe 84 RegCloseKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{A3918781-E5F2-4890-B3D9-A7E54332328C} SUCCESS 97 12:38:31,5098031 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:31,5098078 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: Name 97 12:38:31,5098159 MCLauncher.exe 84 RegOpenKey HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS Desired Access: Read 97 12:38:31,5098231 MCLauncher.exe 84 RegSetInfoKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 97 12:38:31,5098292 MCLauncher.exe 84 RegQueryKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS Query: HandleTags, HandleTags: 0x400 97 12:38:31,5098341 MCLauncher.exe 84 RegOpenKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{AE50C081-EBD2-438A-8655-8A092E34987A} SUCCESS Desired Access: Read 97 12:38:31,5098411 MCLauncher.exe 84 RegCloseKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS 97 12:38:31,5098580 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{AE50C081-EBD2-438A-8655-8A092E34987A}\Category SUCCESS Type: REG_DWORD, Length: 4, Data: 4 97 12:38:31,5098713 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{AE50C081-EBD2-438A-8655-8A092E34987A}\Name SUCCESS Type: REG_SZ, Length: 14, Data: Recent 97 12:38:31,5098868 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{AE50C081-EBD2-438A-8655-8A092E34987A}\ParentFolder SUCCESS Type: REG_SZ, Length: 78, Data: {3EB685DB-65F9-4CF6-A03A-E3EF65729F3D} 97 12:38:31,5098995 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{AE50C081-EBD2-438A-8655-8A092E34987A}\Description NAME NOT FOUND Length: 144 97 12:38:31,5099101 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{AE50C081-EBD2-438A-8655-8A092E34987A}\RelativePath SUCCESS Type: REG_SZ, Length: 50, Data: Microsoft\Windows\Recent 97 12:38:31,5099225 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{AE50C081-EBD2-438A-8655-8A092E34987A}\ParsingName NAME NOT FOUND Length: 144 97 12:38:31,5099331 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{AE50C081-EBD2-438A-8655-8A092E34987A}\InfoTip SUCCESS Type: REG_SZ, Length: 40, Data: @shell32,dll,-12692 97 12:38:31,5099452 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{AE50C081-EBD2-438A-8655-8A092E34987A}\LocalizedName SUCCESS Type: REG_EXPAND_SZ, Length: 84, Data: @%SystemRoot%\system32\shell32.dll,-21797 97 12:38:31,5099577 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{AE50C081-EBD2-438A-8655-8A092E34987A}\Icon SUCCESS Type: REG_EXPAND_SZ, Length: 80, Data: %SystemRoot%\system32\imageres.dll,-117 97 12:38:31,5099702 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{AE50C081-EBD2-438A-8655-8A092E34987A}\Security NAME NOT FOUND Length: 144 97 12:38:31,5099810 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{AE50C081-EBD2-438A-8655-8A092E34987A}\StreamResource NAME NOT FOUND Length: 144 97 12:38:31,5099912 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{AE50C081-EBD2-438A-8655-8A092E34987A}\StreamResourceType NAME NOT FOUND Length: 144 97 12:38:31,5100018 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{AE50C081-EBD2-438A-8655-8A092E34987A}\LocalRedirectOnly NAME NOT FOUND Length: 144 97 12:38:31,5100123 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{AE50C081-EBD2-438A-8655-8A092E34987A}\Roamable NAME NOT FOUND Length: 144 97 12:38:31,5100225 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{AE50C081-EBD2-438A-8655-8A092E34987A}\PreCreate SUCCESS Type: REG_DWORD, Length: 4, Data: 1 97 12:38:31,5100342 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{AE50C081-EBD2-438A-8655-8A092E34987A}\Stream NAME NOT FOUND Length: 144 97 12:38:31,5100447 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{AE50C081-EBD2-438A-8655-8A092E34987A}\PublishExpandedPath NAME NOT FOUND Length: 144 97 12:38:31,5100550 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{AE50C081-EBD2-438A-8655-8A092E34987A}\DefinitionFlags NAME NOT FOUND Length: 144 97 12:38:31,5100655 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{AE50C081-EBD2-438A-8655-8A092E34987A}\Attributes SUCCESS Type: REG_DWORD, Length: 4, Data: 1 97 12:38:31,5100771 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{AE50C081-EBD2-438A-8655-8A092E34987A}\FolderTypeID NAME NOT FOUND Length: 144 97 12:38:31,5100877 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{AE50C081-EBD2-438A-8655-8A092E34987A}\InitFolderHandler NAME NOT FOUND Length: 144 97 12:38:31,5101010 MCLauncher.exe 84 RegQueryKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{AE50C081-EBD2-438A-8655-8A092E34987A} SUCCESS Query: HandleTags, HandleTags: 0x400 97 12:38:31,5101073 MCLauncher.exe 84 RegOpenKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{AE50C081-EBD2-438A-8655-8A092E34987A}\PropertyBag NAME NOT FOUND Desired Access: Read 97 12:38:31,5101151 MCLauncher.exe 84 RegCloseKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{AE50C081-EBD2-438A-8655-8A092E34987A} SUCCESS 97 12:38:31,5101378 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:31,5101428 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: Name 97 12:38:31,5101511 MCLauncher.exe 84 RegOpenKey HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS Desired Access: Read 97 12:38:31,5101586 MCLauncher.exe 84 RegSetInfoKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 97 12:38:31,5101647 MCLauncher.exe 84 RegQueryKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS Query: HandleTags, HandleTags: 0x400 97 12:38:31,5101699 MCLauncher.exe 84 RegOpenKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{B7BEDE81-DF94-4682-A7D8-57A52620B86F} SUCCESS Desired Access: Read 97 12:38:31,5101771 MCLauncher.exe 84 RegCloseKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS 97 12:38:31,5101813 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{b7bede81-df94-4682-a7d8-57a52620b86f}\Category SUCCESS Type: REG_DWORD, Length: 4, Data: 4 97 12:38:31,5101946 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{b7bede81-df94-4682-a7d8-57a52620b86f}\Name SUCCESS Type: REG_SZ, Length: 24, Data: Screenshots 97 12:38:31,5102073 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{b7bede81-df94-4682-a7d8-57a52620b86f}\ParentFolder SUCCESS Type: REG_SZ, Length: 78, Data: {33E28130-4E1E-4676-835A-98395C3BC3BB} 97 12:38:31,5102198 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{b7bede81-df94-4682-a7d8-57a52620b86f}\Description NAME NOT FOUND Length: 144 97 12:38:31,5102303 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{b7bede81-df94-4682-a7d8-57a52620b86f}\RelativePath SUCCESS Type: REG_SZ, Length: 24, Data: Screenshots 97 12:38:31,5102425 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{b7bede81-df94-4682-a7d8-57a52620b86f}\ParsingName NAME NOT FOUND Length: 144 97 12:38:31,5102531 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{b7bede81-df94-4682-a7d8-57a52620b86f}\InfoTip NAME NOT FOUND Length: 144 97 12:38:31,5102633 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{b7bede81-df94-4682-a7d8-57a52620b86f}\LocalizedName SUCCESS Type: REG_EXPAND_SZ, Length: 100, Data: @%SystemRoot%\system32\windows.storage.dll,-21823 97 12:38:31,5102755 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{b7bede81-df94-4682-a7d8-57a52620b86f}\Icon NAME NOT FOUND Length: 144 97 12:38:31,5102858 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{b7bede81-df94-4682-a7d8-57a52620b86f}\Security NAME NOT FOUND Length: 144 97 12:38:31,5102963 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{b7bede81-df94-4682-a7d8-57a52620b86f}\StreamResource NAME NOT FOUND Length: 144 97 12:38:31,5103065 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{b7bede81-df94-4682-a7d8-57a52620b86f}\StreamResourceType NAME NOT FOUND Length: 144 97 12:38:31,5103171 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{b7bede81-df94-4682-a7d8-57a52620b86f}\LocalRedirectOnly NAME NOT FOUND Length: 144 97 12:38:31,5103273 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{b7bede81-df94-4682-a7d8-57a52620b86f}\Roamable NAME NOT FOUND Length: 144 97 12:38:31,5103373 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{b7bede81-df94-4682-a7d8-57a52620b86f}\PreCreate NAME NOT FOUND Length: 144 97 12:38:31,5103500 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{b7bede81-df94-4682-a7d8-57a52620b86f}\Stream NAME NOT FOUND Length: 144 97 12:38:31,5103603 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{b7bede81-df94-4682-a7d8-57a52620b86f}\PublishExpandedPath NAME NOT FOUND Length: 144 97 12:38:31,5103708 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{b7bede81-df94-4682-a7d8-57a52620b86f}\DefinitionFlags NAME NOT FOUND Length: 144 97 12:38:31,5103811 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{b7bede81-df94-4682-a7d8-57a52620b86f}\Attributes NAME NOT FOUND Length: 144 97 12:38:31,5103910 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{b7bede81-df94-4682-a7d8-57a52620b86f}\FolderTypeID NAME NOT FOUND Length: 144 97 12:38:31,5104013 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{b7bede81-df94-4682-a7d8-57a52620b86f}\InitFolderHandler NAME NOT FOUND Length: 144 97 12:38:31,5104146 MCLauncher.exe 84 RegQueryKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{b7bede81-df94-4682-a7d8-57a52620b86f} SUCCESS Query: HandleTags, HandleTags: 0x400 97 12:38:31,5104207 MCLauncher.exe 84 RegOpenKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{b7bede81-df94-4682-a7d8-57a52620b86f}\PropertyBag NAME NOT FOUND Desired Access: Read 97 12:38:31,5104284 MCLauncher.exe 84 RegCloseKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{b7bede81-df94-4682-a7d8-57a52620b86f} SUCCESS 97 12:38:31,5104373 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:31,5104420 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: Name 97 12:38:31,5104503 MCLauncher.exe 84 RegOpenKey HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS Desired Access: Read 97 12:38:31,5104575 MCLauncher.exe 84 RegSetInfoKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 97 12:38:31,5104636 MCLauncher.exe 84 RegQueryKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS Query: HandleTags, HandleTags: 0x400 97 12:38:31,5104686 MCLauncher.exe 84 RegOpenKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{3B193882-D3AD-4EAB-965A-69829D1FB59F} SUCCESS Desired Access: Read 97 12:38:31,5104761 MCLauncher.exe 84 RegCloseKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS 97 12:38:31,5104802 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{3B193882-D3AD-4eab-965A-69829D1FB59F}\Category SUCCESS Type: REG_DWORD, Length: 4, Data: 4 97 12:38:31,5104933 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{3B193882-D3AD-4eab-965A-69829D1FB59F}\Name SUCCESS Type: REG_SZ, Length: 28, Data: SavedPictures 97 12:38:31,5105063 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{3B193882-D3AD-4eab-965A-69829D1FB59F}\ParentFolder SUCCESS Type: REG_SZ, Length: 78, Data: {33E28130-4E1E-4676-835A-98395C3BC3BB} 97 12:38:31,5105185 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{3B193882-D3AD-4eab-965A-69829D1FB59F}\Description NAME NOT FOUND Length: 144 97 12:38:31,5105290 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{3B193882-D3AD-4eab-965A-69829D1FB59F}\RelativePath SUCCESS Type: REG_SZ, Length: 30, Data: Saved Pictures 97 12:38:31,5105412 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{3B193882-D3AD-4eab-965A-69829D1FB59F}\ParsingName NAME NOT FOUND Length: 144 97 12:38:31,5105520 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{3B193882-D3AD-4eab-965A-69829D1FB59F}\InfoTip NAME NOT FOUND Length: 144 97 12:38:31,5105623 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{3B193882-D3AD-4eab-965A-69829D1FB59F}\LocalizedName SUCCESS Type: REG_EXPAND_SZ, Length: 100, Data: @%SystemRoot%\system32\windows.storage.dll,-34583 97 12:38:31,5105747 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{3B193882-D3AD-4eab-965A-69829D1FB59F}\Icon NAME NOT FOUND Length: 144 97 12:38:31,5105850 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{3B193882-D3AD-4eab-965A-69829D1FB59F}\Security NAME NOT FOUND Length: 144 97 12:38:31,5105955 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{3B193882-D3AD-4eab-965A-69829D1FB59F}\StreamResource NAME NOT FOUND Length: 144 97 12:38:31,5106063 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{3B193882-D3AD-4eab-965A-69829D1FB59F}\StreamResourceType NAME NOT FOUND Length: 144 97 12:38:31,5106166 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{3B193882-D3AD-4eab-965A-69829D1FB59F}\LocalRedirectOnly NAME NOT FOUND Length: 144 97 12:38:31,5106268 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{3B193882-D3AD-4eab-965A-69829D1FB59F}\Roamable NAME NOT FOUND Length: 144 97 12:38:31,5106371 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{3B193882-D3AD-4eab-965A-69829D1FB59F}\PreCreate NAME NOT FOUND Length: 144 97 12:38:31,5106470 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{3B193882-D3AD-4eab-965A-69829D1FB59F}\Stream NAME NOT FOUND Length: 144 97 12:38:31,5106576 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{3B193882-D3AD-4eab-965A-69829D1FB59F}\PublishExpandedPath NAME NOT FOUND Length: 144 97 12:38:31,5106678 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{3B193882-D3AD-4eab-965A-69829D1FB59F}\DefinitionFlags NAME NOT FOUND Length: 144 97 12:38:31,5106781 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{3B193882-D3AD-4eab-965A-69829D1FB59F}\Attributes NAME NOT FOUND Length: 144 97 12:38:31,5106883 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{3B193882-D3AD-4eab-965A-69829D1FB59F}\FolderTypeID NAME NOT FOUND Length: 144 97 12:38:31,5106983 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{3B193882-D3AD-4eab-965A-69829D1FB59F}\InitFolderHandler NAME NOT FOUND Length: 144 97 12:38:31,5107116 MCLauncher.exe 84 RegQueryKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{3B193882-D3AD-4eab-965A-69829D1FB59F} SUCCESS Query: HandleTags, HandleTags: 0x400 97 12:38:31,5107180 MCLauncher.exe 84 RegOpenKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{3B193882-D3AD-4eab-965A-69829D1FB59F}\PropertyBag NAME NOT FOUND Desired Access: Read 97 12:38:31,5107254 MCLauncher.exe 84 RegCloseKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{3B193882-D3AD-4eab-965A-69829D1FB59F} SUCCESS 97 12:38:31,5107354 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:31,5107401 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: Name 97 12:38:31,5107482 MCLauncher.exe 84 RegOpenKey HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS Desired Access: Read 97 12:38:31,5107556 MCLauncher.exe 84 RegSetInfoKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 97 12:38:31,5107615 MCLauncher.exe 84 RegQueryKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS Query: HandleTags, HandleTags: 0x400 97 12:38:31,5107664 MCLauncher.exe 84 RegOpenKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{F1B32785-6FBA-4FCF-9D55-7B8E7F157091} SUCCESS Desired Access: Read 97 12:38:31,5107739 MCLauncher.exe 84 RegCloseKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS 97 12:38:31,5107784 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{F1B32785-6FBA-4FCF-9D55-7B8E7F157091}\Category SUCCESS Type: REG_DWORD, Length: 4, Data: 4 97 12:38:31,5107911 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{F1B32785-6FBA-4FCF-9D55-7B8E7F157091}\Name SUCCESS Type: REG_SZ, Length: 28, Data: Local AppData 97 12:38:31,5108038 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{F1B32785-6FBA-4FCF-9D55-7B8E7F157091}\ParentFolder NAME NOT FOUND Length: 144 97 12:38:31,5108241 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{F1B32785-6FBA-4FCF-9D55-7B8E7F157091}\Description NAME NOT FOUND Length: 144 97 12:38:31,5108435 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{F1B32785-6FBA-4FCF-9D55-7B8E7F157091}\RelativePath SUCCESS Type: REG_SZ, Length: 28, Data: AppData\Local 97 12:38:31,5108629 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{F1B32785-6FBA-4FCF-9D55-7B8E7F157091}\ParsingName NAME NOT FOUND Length: 144 97 12:38:31,5108784 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{F1B32785-6FBA-4FCF-9D55-7B8E7F157091}\InfoTip NAME NOT FOUND Length: 144 97 12:38:31,5108895 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{F1B32785-6FBA-4FCF-9D55-7B8E7F157091}\LocalizedName NAME NOT FOUND Length: 144 97 12:38:31,5109000 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{F1B32785-6FBA-4FCF-9D55-7B8E7F157091}\Icon NAME NOT FOUND Length: 144 97 12:38:31,5109102 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{F1B32785-6FBA-4FCF-9D55-7B8E7F157091}\Security NAME NOT FOUND Length: 144 97 12:38:31,5109205 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{F1B32785-6FBA-4FCF-9D55-7B8E7F157091}\StreamResource NAME NOT FOUND Length: 144 97 12:38:31,5109310 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{F1B32785-6FBA-4FCF-9D55-7B8E7F157091}\StreamResourceType NAME NOT FOUND Length: 144 97 12:38:31,5109413 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{F1B32785-6FBA-4FCF-9D55-7B8E7F157091}\LocalRedirectOnly SUCCESS Type: REG_DWORD, Length: 4, Data: 1 97 12:38:31,5109557 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{F1B32785-6FBA-4FCF-9D55-7B8E7F157091}\Roamable NAME NOT FOUND Length: 144 97 12:38:31,5109665 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{F1B32785-6FBA-4FCF-9D55-7B8E7F157091}\PreCreate NAME NOT FOUND Length: 144 97 12:38:31,5109767 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{F1B32785-6FBA-4FCF-9D55-7B8E7F157091}\Stream NAME NOT FOUND Length: 144 97 12:38:31,5109873 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{F1B32785-6FBA-4FCF-9D55-7B8E7F157091}\PublishExpandedPath SUCCESS Type: REG_DWORD, Length: 4, Data: 1 97 12:38:31,5109989 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{F1B32785-6FBA-4FCF-9D55-7B8E7F157091}\DefinitionFlags NAME NOT FOUND Length: 144 97 12:38:31,5110094 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{F1B32785-6FBA-4FCF-9D55-7B8E7F157091}\Attributes NAME NOT FOUND Length: 144 97 12:38:31,5110197 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{F1B32785-6FBA-4FCF-9D55-7B8E7F157091}\FolderTypeID NAME NOT FOUND Length: 144 97 12:38:31,5110299 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{F1B32785-6FBA-4FCF-9D55-7B8E7F157091}\InitFolderHandler NAME NOT FOUND Length: 144 97 12:38:31,5110438 MCLauncher.exe 84 RegQueryKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{F1B32785-6FBA-4FCF-9D55-7B8E7F157091} SUCCESS Query: HandleTags, HandleTags: 0x400 97 12:38:31,5110504 MCLauncher.exe 84 RegOpenKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{F1B32785-6FBA-4FCF-9D55-7B8E7F157091}\PropertyBag NAME NOT FOUND Desired Access: Read 97 12:38:31,5110596 MCLauncher.exe 84 RegCloseKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{F1B32785-6FBA-4FCF-9D55-7B8E7F157091} SUCCESS 97 12:38:31,5110693 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:31,5110740 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: Name 97 12:38:31,5110826 MCLauncher.exe 84 RegOpenKey HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS Desired Access: Read 97 12:38:31,5110903 MCLauncher.exe 84 RegSetInfoKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 97 12:38:31,5110964 MCLauncher.exe 84 RegQueryKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS Query: HandleTags, HandleTags: 0x400 97 12:38:31,5111017 MCLauncher.exe 84 RegOpenKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{754AC886-DF64-4CBA-86B5-F7FBF4FBCEF5} SUCCESS Desired Access: Read 97 12:38:31,5111092 MCLauncher.exe 84 RegCloseKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS 97 12:38:31,5111133 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{754AC886-DF64-4CBA-86B5-F7FBF4FBCEF5}\Category SUCCESS Type: REG_DWORD, Length: 4, Data: 4 97 12:38:31,5111263 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{754AC886-DF64-4CBA-86B5-F7FBF4FBCEF5}\Name SUCCESS Type: REG_SZ, Length: 40, Data: ThisPCDesktopFolder 97 12:38:31,5111394 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{754AC886-DF64-4CBA-86B5-F7FBF4FBCEF5}\ParentFolder NAME NOT FOUND Length: 144 97 12:38:31,5111504 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{754AC886-DF64-4CBA-86B5-F7FBF4FBCEF5}\Description NAME NOT FOUND Length: 144 97 12:38:31,5111607 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{754AC886-DF64-4CBA-86B5-F7FBF4FBCEF5}\RelativePath SUCCESS Type: REG_SZ, Length: 16, Data: Desktop 97 12:38:31,5111732 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{754AC886-DF64-4CBA-86B5-F7FBF4FBCEF5}\ParsingName BUFFER OVERFLOW Length: 144 97 12:38:31,5111840 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{754AC886-DF64-4CBA-86B5-F7FBF4FBCEF5}\ParsingName SUCCESS Type: REG_SZ, Length: 176, Data: shell:::{20D04FE0-3AEA-1069-A2D8-08002B30309D}\::{B4BFCC3A-DB2C-424C-B029-7FE99A87C641} 97 12:38:31,5111967 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{754AC886-DF64-4CBA-86B5-F7FBF4FBCEF5}\InfoTip NAME NOT FOUND Length: 144 97 12:38:31,5112075 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{754AC886-DF64-4CBA-86B5-F7FBF4FBCEF5}\LocalizedName SUCCESS Type: REG_EXPAND_SZ, Length: 84, Data: @%SystemRoot%\system32\shell32.dll,-21769 97 12:38:31,5112200 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{754AC886-DF64-4CBA-86B5-F7FBF4FBCEF5}\Icon SUCCESS Type: REG_EXPAND_SZ, Length: 80, Data: %SystemRoot%\system32\imageres.dll,-183 97 12:38:31,5112336 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{754AC886-DF64-4CBA-86B5-F7FBF4FBCEF5}\Security NAME NOT FOUND Length: 144 97 12:38:31,5112444 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{754AC886-DF64-4CBA-86B5-F7FBF4FBCEF5}\StreamResource NAME NOT FOUND Length: 144 97 12:38:31,5112549 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{754AC886-DF64-4CBA-86B5-F7FBF4FBCEF5}\StreamResourceType NAME NOT FOUND Length: 144 97 12:38:31,5112654 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{754AC886-DF64-4CBA-86B5-F7FBF4FBCEF5}\LocalRedirectOnly NAME NOT FOUND Length: 144 97 12:38:31,5112759 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{754AC886-DF64-4CBA-86B5-F7FBF4FBCEF5}\Roamable SUCCESS Type: REG_DWORD, Length: 4, Data: 1 97 12:38:31,5112876 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{754AC886-DF64-4CBA-86B5-F7FBF4FBCEF5}\PreCreate SUCCESS Type: REG_DWORD, Length: 4, Data: 1 97 12:38:31,5112992 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{754AC886-DF64-4CBA-86B5-F7FBF4FBCEF5}\Stream NAME NOT FOUND Length: 144 97 12:38:31,5113097 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{754AC886-DF64-4CBA-86B5-F7FBF4FBCEF5}\PublishExpandedPath NAME NOT FOUND Length: 144 97 12:38:31,5113203 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{754AC886-DF64-4CBA-86B5-F7FBF4FBCEF5}\DefinitionFlags NAME NOT FOUND Length: 144 97 12:38:31,5113305 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{754AC886-DF64-4CBA-86B5-F7FBF4FBCEF5}\Attributes SUCCESS Type: REG_DWORD, Length: 4, Data: 1 97 12:38:31,5113424 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{754AC886-DF64-4CBA-86B5-F7FBF4FBCEF5}\FolderTypeID NAME NOT FOUND Length: 144 97 12:38:31,5113530 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{754AC886-DF64-4CBA-86B5-F7FBF4FBCEF5}\InitFolderHandler NAME NOT FOUND Length: 144 97 12:38:31,5113665 MCLauncher.exe 84 RegQueryKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{754AC886-DF64-4CBA-86B5-F7FBF4FBCEF5} SUCCESS Query: HandleTags, HandleTags: 0x400 97 12:38:31,5113726 MCLauncher.exe 84 RegOpenKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{754AC886-DF64-4CBA-86B5-F7FBF4FBCEF5}\PropertyBag NAME NOT FOUND Desired Access: Read 97 12:38:31,5113807 MCLauncher.exe 84 RegCloseKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{754AC886-DF64-4CBA-86B5-F7FBF4FBCEF5} SUCCESS 97 12:38:31,5113906 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:31,5113962 MCLauncher.exe 84 RegOpenKey HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\AllowedEnumeration NAME NOT FOUND Desired Access: Read 97 12:38:31,5114076 MCLauncher.exe 84 RegQueryKey HKCU SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:31,5114128 MCLauncher.exe 84 RegOpenKey HKCU\Software\Microsoft\Windows\CurrentVersion\Explorer\AllowedEnumeration NAME NOT FOUND Desired Access: Read 97 12:38:31,5114344 MCLauncher.exe 84 RegQueryKey HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer SUCCESS Query: HandleTags, HandleTags: 0x400 97 12:38:31,5114400 MCLauncher.exe 84 RegOpenKey HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\SessionInfo\1 SUCCESS Desired Access: Query Value 97 12:38:31,5114499 MCLauncher.exe 84 RegQueryKey HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\SessionInfo\1 SUCCESS Query: HandleTags, HandleTags: 0x400 97 12:38:31,5114549 MCLauncher.exe 84 RegOpenKey HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\SessionInfo\1\KnownFolders NAME NOT FOUND Desired Access: Query Value 97 12:38:31,5114619 MCLauncher.exe 84 RegCloseKey HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\SessionInfo\1 SUCCESS 97 12:38:31,5114707 MCLauncher.exe 84 RegOpenKey HKCU SUCCESS Desired Access: Read 97 12:38:31,5114790 MCLauncher.exe 84 RegQueryKey HKCU SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:31,5114837 MCLauncher.exe 84 RegQueryKey HKCU SUCCESS Query: Name 97 12:38:31,5114909 MCLauncher.exe 84 RegOpenKey HKCU\Software\Microsoft\Windows\CurrentVersion\Explorer\User Shell Folders SUCCESS Desired Access: Read 97 12:38:31,5114987 MCLauncher.exe 84 RegSetInfoKey HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\User Shell Folders SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 97 12:38:31,5115034 MCLauncher.exe 84 RegCloseKey HKCU SUCCESS 97 12:38:31,5115087 MCLauncher.exe 84 RegQueryValue HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\User Shell Folders\{754AC886-DF64-4CBA-86B5-F7FBF4FBCEF5} NAME NOT FOUND Length: 144 97 12:38:31,5115367 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:31,5115419 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: Name 97 12:38:31,5115513 MCLauncher.exe 84 RegOpenKey HKLM\Software\WOW6432Node\Microsoft\Windows NT\CurrentVersion\ProfileList\S-1-5-21-3477790013-1571897634-1299942168-1000 REPARSE Desired Access: Read 97 12:38:31,5115599 MCLauncher.exe 84 RegOpenKey HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\ProfileList\S-1-5-21-3477790013-1571897634-1299942168-1000 SUCCESS Desired Access: Read 97 12:38:31,5115666 MCLauncher.exe 84 RegSetInfoKey HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\ProfileList\S-1-5-21-3477790013-1571897634-1299942168-1000 SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 97 12:38:31,5115707 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\ProfileList\S-1-5-21-3477790013-1571897634-1299942168-1000\ProfileImagePath SUCCESS Type: REG_EXPAND_SZ, Length: 28, Data: C:\Users\User 97 12:38:31,5115860 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\ProfileList\S-1-5-21-3477790013-1571897634-1299942168-1000\ProfileImagePath SUCCESS Type: REG_EXPAND_SZ, Length: 28, Data: C:\Users\User 97 12:38:31,5115990 MCLauncher.exe 84 RegCloseKey HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\ProfileList\S-1-5-21-3477790013-1571897634-1299942168-1000 SUCCESS 97 12:38:31,5116073 MCLauncher.exe 84 RegCloseKey HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\User Shell Folders SUCCESS 97 12:38:31,5116173 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:31,5116223 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: Name 97 12:38:31,5116309 MCLauncher.exe 84 RegOpenKey HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS Desired Access: Read 97 12:38:31,5116392 MCLauncher.exe 84 RegSetInfoKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 97 12:38:31,5116455 MCLauncher.exe 84 RegQueryKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS Query: HandleTags, HandleTags: 0x400 97 12:38:31,5116508 MCLauncher.exe 84 RegOpenKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{B6EBFB86-6907-413C-9AF7-4FC2ABF07CC5} SUCCESS Desired Access: Read 97 12:38:31,5116588 MCLauncher.exe 84 RegCloseKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS 97 12:38:31,5116633 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{B6EBFB86-6907-413C-9AF7-4FC2ABF07CC5}\Category SUCCESS Type: REG_DWORD, Length: 4, Data: 3 97 12:38:31,5116763 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{B6EBFB86-6907-413C-9AF7-4FC2ABF07CC5}\Name SUCCESS Type: REG_SZ, Length: 30, Data: CommonPictures 97 12:38:31,5116918 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{B6EBFB86-6907-413C-9AF7-4FC2ABF07CC5}\ParentFolder SUCCESS Type: REG_SZ, Length: 78, Data: {DFDF76A2-C82A-4D63-906A-5644AC457385} 97 12:38:31,5117043 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{B6EBFB86-6907-413C-9AF7-4FC2ABF07CC5}\Description NAME NOT FOUND Length: 144 97 12:38:31,5117151 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{B6EBFB86-6907-413C-9AF7-4FC2ABF07CC5}\RelativePath SUCCESS Type: REG_SZ, Length: 18, Data: Pictures 97 12:38:31,5117275 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{B6EBFB86-6907-413C-9AF7-4FC2ABF07CC5}\ParsingName NAME NOT FOUND Length: 144 97 12:38:31,5117381 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{B6EBFB86-6907-413C-9AF7-4FC2ABF07CC5}\InfoTip SUCCESS Type: REG_EXPAND_SZ, Length: 84, Data: @%SystemRoot%\system32\shell32.dll,-12688 97 12:38:31,5117505 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{B6EBFB86-6907-413C-9AF7-4FC2ABF07CC5}\LocalizedName SUCCESS Type: REG_EXPAND_SZ, Length: 84, Data: @%SystemRoot%\system32\shell32.dll,-21802 97 12:38:31,5117627 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{B6EBFB86-6907-413C-9AF7-4FC2ABF07CC5}\Icon SUCCESS Type: REG_EXPAND_SZ, Length: 76, Data: %SystemRoot%\system32\imageres.dll,-3 97 12:38:31,5117968 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{B6EBFB86-6907-413C-9AF7-4FC2ABF07CC5}\Security NAME NOT FOUND Length: 144 97 12:38:31,5118079 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{B6EBFB86-6907-413C-9AF7-4FC2ABF07CC5}\StreamResource NAME NOT FOUND Length: 144 97 12:38:31,5118184 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{B6EBFB86-6907-413C-9AF7-4FC2ABF07CC5}\StreamResourceType NAME NOT FOUND Length: 144 97 12:38:31,5118290 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{B6EBFB86-6907-413C-9AF7-4FC2ABF07CC5}\LocalRedirectOnly NAME NOT FOUND Length: 144 97 12:38:31,5118398 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{B6EBFB86-6907-413C-9AF7-4FC2ABF07CC5}\Roamable NAME NOT FOUND Length: 144 97 12:38:31,5118500 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{B6EBFB86-6907-413C-9AF7-4FC2ABF07CC5}\PreCreate SUCCESS Type: REG_DWORD, Length: 4, Data: 1 97 12:38:31,5118619 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{B6EBFB86-6907-413C-9AF7-4FC2ABF07CC5}\Stream NAME NOT FOUND Length: 144 97 12:38:31,5118725 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{B6EBFB86-6907-413C-9AF7-4FC2ABF07CC5}\PublishExpandedPath NAME NOT FOUND Length: 144 97 12:38:31,5118830 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{B6EBFB86-6907-413C-9AF7-4FC2ABF07CC5}\DefinitionFlags NAME NOT FOUND Length: 144 97 12:38:31,5118932 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{B6EBFB86-6907-413C-9AF7-4FC2ABF07CC5}\Attributes SUCCESS Type: REG_DWORD, Length: 4, Data: 1 97 12:38:31,5119051 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{B6EBFB86-6907-413C-9AF7-4FC2ABF07CC5}\FolderTypeID NAME NOT FOUND Length: 144 97 12:38:31,5119157 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{B6EBFB86-6907-413C-9AF7-4FC2ABF07CC5}\InitFolderHandler NAME NOT FOUND Length: 144 97 12:38:31,5119295 MCLauncher.exe 84 RegQueryKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{B6EBFB86-6907-413C-9AF7-4FC2ABF07CC5} SUCCESS Query: HandleTags, HandleTags: 0x400 97 12:38:31,5119356 MCLauncher.exe 84 RegOpenKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{B6EBFB86-6907-413C-9AF7-4FC2ABF07CC5}\PropertyBag SUCCESS Desired Access: Read 97 12:38:31,5119445 MCLauncher.exe 84 RegCloseKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{B6EBFB86-6907-413C-9AF7-4FC2ABF07CC5} SUCCESS 97 12:38:31,5119542 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:31,5119594 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: Name 97 12:38:31,5119680 MCLauncher.exe 84 RegOpenKey HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS Desired Access: Read 97 12:38:31,5119752 MCLauncher.exe 84 RegSetInfoKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 97 12:38:31,5119813 MCLauncher.exe 84 RegQueryKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS Query: HandleTags, HandleTags: 0x400 97 12:38:31,5119863 MCLauncher.exe 84 RegOpenKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{1E87508D-89C2-42F0-8A7E-645A0F50CA58} SUCCESS Desired Access: Read 97 12:38:31,5119944 MCLauncher.exe 84 RegCloseKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS 97 12:38:31,5119991 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{1e87508d-89c2-42f0-8a7e-645a0f50ca58}\Category SUCCESS Type: REG_DWORD, Length: 4, Data: 1 97 12:38:31,5120121 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{1e87508d-89c2-42f0-8a7e-645a0f50ca58}\Name SUCCESS Type: REG_SZ, Length: 22, Data: AppsFolder 97 12:38:31,5120251 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{1e87508d-89c2-42f0-8a7e-645a0f50ca58}\ParentFolder NAME NOT FOUND Length: 144 97 12:38:31,5120362 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{1e87508d-89c2-42f0-8a7e-645a0f50ca58}\Description NAME NOT FOUND Length: 144 97 12:38:31,5120464 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{1e87508d-89c2-42f0-8a7e-645a0f50ca58}\RelativePath NAME NOT FOUND Length: 144 97 12:38:31,5120567 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{1e87508d-89c2-42f0-8a7e-645a0f50ca58}\ParsingName SUCCESS Type: REG_SZ, Length: 94, Data: shell:::{4234d49b-0245-4df3-b780-3893943456e1} 97 12:38:31,5121318 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{1e87508d-89c2-42f0-8a7e-645a0f50ca58}\InfoTip NAME NOT FOUND Length: 144 97 12:38:31,5152467 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{1e87508d-89c2-42f0-8a7e-645a0f50ca58}\LocalizedName NAME NOT FOUND Length: 144 97 12:38:31,5152603 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{1e87508d-89c2-42f0-8a7e-645a0f50ca58}\Icon NAME NOT FOUND Length: 144 97 12:38:31,5152714 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{1e87508d-89c2-42f0-8a7e-645a0f50ca58}\Security NAME NOT FOUND Length: 144 97 12:38:31,5152825 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{1e87508d-89c2-42f0-8a7e-645a0f50ca58}\StreamResource NAME NOT FOUND Length: 144 97 12:38:31,5152930 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{1e87508d-89c2-42f0-8a7e-645a0f50ca58}\StreamResourceType NAME NOT FOUND Length: 144 97 12:38:31,5153035 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{1e87508d-89c2-42f0-8a7e-645a0f50ca58}\LocalRedirectOnly NAME NOT FOUND Length: 144 97 12:38:31,5153140 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{1e87508d-89c2-42f0-8a7e-645a0f50ca58}\Roamable NAME NOT FOUND Length: 144 97 12:38:31,5153246 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{1e87508d-89c2-42f0-8a7e-645a0f50ca58}\PreCreate NAME NOT FOUND Length: 144 97 12:38:31,5153348 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{1e87508d-89c2-42f0-8a7e-645a0f50ca58}\Stream NAME NOT FOUND Length: 144 97 12:38:31,5153451 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{1e87508d-89c2-42f0-8a7e-645a0f50ca58}\PublishExpandedPath NAME NOT FOUND Length: 144 97 12:38:31,5153559 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{1e87508d-89c2-42f0-8a7e-645a0f50ca58}\DefinitionFlags NAME NOT FOUND Length: 144 97 12:38:31,5153661 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{1e87508d-89c2-42f0-8a7e-645a0f50ca58}\Attributes NAME NOT FOUND Length: 144 97 12:38:31,5153767 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{1e87508d-89c2-42f0-8a7e-645a0f50ca58}\FolderTypeID NAME NOT FOUND Length: 144 97 12:38:31,5153869 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{1e87508d-89c2-42f0-8a7e-645a0f50ca58}\InitFolderHandler NAME NOT FOUND Length: 144 97 12:38:31,5154038 MCLauncher.exe 84 RegQueryKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{1e87508d-89c2-42f0-8a7e-645a0f50ca58} SUCCESS Query: HandleTags, HandleTags: 0x400 97 12:38:31,5154124 MCLauncher.exe 84 RegOpenKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{1e87508d-89c2-42f0-8a7e-645a0f50ca58}\PropertyBag NAME NOT FOUND Desired Access: Read 97 12:38:31,5154249 MCLauncher.exe 84 RegCloseKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{1e87508d-89c2-42f0-8a7e-645a0f50ca58} SUCCESS 97 12:38:31,5154398 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:31,5154451 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: Name 97 12:38:31,5154559 MCLauncher.exe 84 RegOpenKey HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS Desired Access: Read 97 12:38:31,5154659 MCLauncher.exe 84 RegSetInfoKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 97 12:38:31,5154725 MCLauncher.exe 84 RegQueryKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS Query: HandleTags, HandleTags: 0x400 97 12:38:31,5154781 MCLauncher.exe 84 RegOpenKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{9274BD8D-CFD1-41C3-B35E-B13F55A758F4} SUCCESS Desired Access: Read 97 12:38:31,5154869 MCLauncher.exe 84 RegCloseKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS 97 12:38:31,5154919 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{9274BD8D-CFD1-41C3-B35E-B13F55A758F4}\Category SUCCESS Type: REG_DWORD, Length: 4, Data: 4 97 12:38:31,5155060 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{9274BD8D-CFD1-41C3-B35E-B13F55A758F4}\Name SUCCESS Type: REG_SZ, Length: 20, Data: PrintHood 97 12:38:31,5155193 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{9274BD8D-CFD1-41C3-B35E-B13F55A758F4}\ParentFolder SUCCESS Type: REG_SZ, Length: 78, Data: {3EB685DB-65F9-4CF6-A03A-E3EF65729F3D} 97 12:38:31,5155326 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{9274BD8D-CFD1-41C3-B35E-B13F55A758F4}\Description NAME NOT FOUND Length: 144 97 12:38:31,5155434 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{9274BD8D-CFD1-41C3-B35E-B13F55A758F4}\RelativePath SUCCESS Type: REG_SZ, Length: 72, Data: Microsoft\Windows\Printer Shortcuts 97 12:38:31,5155559 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{9274BD8D-CFD1-41C3-B35E-B13F55A758F4}\ParsingName NAME NOT FOUND Length: 144 97 12:38:31,5155664 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{9274BD8D-CFD1-41C3-B35E-B13F55A758F4}\InfoTip NAME NOT FOUND Length: 144 97 12:38:31,5155767 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{9274BD8D-CFD1-41C3-B35E-B13F55A758F4}\LocalizedName NAME NOT FOUND Length: 144 97 12:38:31,5155872 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{9274BD8D-CFD1-41C3-B35E-B13F55A758F4}\Icon NAME NOT FOUND Length: 144 97 12:38:31,5155977 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{9274BD8D-CFD1-41C3-B35E-B13F55A758F4}\Security NAME NOT FOUND Length: 144 97 12:38:31,5156080 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{9274BD8D-CFD1-41C3-B35E-B13F55A758F4}\StreamResource NAME NOT FOUND Length: 144 97 12:38:31,5156182 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{9274BD8D-CFD1-41C3-B35E-B13F55A758F4}\StreamResourceType NAME NOT FOUND Length: 144 97 12:38:31,5156285 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{9274BD8D-CFD1-41C3-B35E-B13F55A758F4}\LocalRedirectOnly NAME NOT FOUND Length: 144 97 12:38:31,5156390 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{9274BD8D-CFD1-41C3-B35E-B13F55A758F4}\Roamable NAME NOT FOUND Length: 144 97 12:38:31,5156493 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{9274BD8D-CFD1-41C3-B35E-B13F55A758F4}\PreCreate NAME NOT FOUND Length: 144 97 12:38:31,5156598 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{9274BD8D-CFD1-41C3-B35E-B13F55A758F4}\Stream NAME NOT FOUND Length: 144 97 12:38:31,5156847 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{9274BD8D-CFD1-41C3-B35E-B13F55A758F4}\PublishExpandedPath NAME NOT FOUND Length: 144 97 12:38:31,5156989 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{9274BD8D-CFD1-41C3-B35E-B13F55A758F4}\DefinitionFlags NAME NOT FOUND Length: 144 97 12:38:31,5157097 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{9274BD8D-CFD1-41C3-B35E-B13F55A758F4}\Attributes NAME NOT FOUND Length: 144 97 12:38:31,5157202 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{9274BD8D-CFD1-41C3-B35E-B13F55A758F4}\FolderTypeID NAME NOT FOUND Length: 144 97 12:38:31,5157305 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{9274BD8D-CFD1-41C3-B35E-B13F55A758F4}\InitFolderHandler NAME NOT FOUND Length: 144 97 12:38:31,5157446 MCLauncher.exe 84 RegQueryKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{9274BD8D-CFD1-41C3-B35E-B13F55A758F4} SUCCESS Query: HandleTags, HandleTags: 0x400 97 12:38:31,5157515 MCLauncher.exe 84 RegOpenKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{9274BD8D-CFD1-41C3-B35E-B13F55A758F4}\PropertyBag NAME NOT FOUND Desired Access: Read 97 12:38:31,5157612 MCLauncher.exe 84 RegCloseKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{9274BD8D-CFD1-41C3-B35E-B13F55A758F4} SUCCESS 97 12:38:31,5157715 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:31,5157764 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: Name 97 12:38:31,5157859 MCLauncher.exe 84 RegOpenKey HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS Desired Access: Read 97 12:38:31,5157942 MCLauncher.exe 84 RegSetInfoKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 97 12:38:31,5158006 MCLauncher.exe 84 RegQueryKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS Query: HandleTags, HandleTags: 0x400 97 12:38:31,5158058 MCLauncher.exe 84 RegOpenKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{DBE8E08E-3053-4BBC-B183-2A7B2B191E59} SUCCESS Desired Access: Read 97 12:38:31,5158136 MCLauncher.exe 84 RegCloseKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS 97 12:38:31,5158183 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{DBE8E08E-3053-4BBC-B183-2A7B2B191E59}\Category SUCCESS Type: REG_DWORD, Length: 4, Data: 4 97 12:38:31,5158313 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{DBE8E08E-3053-4BBC-B183-2A7B2B191E59}\Name SUCCESS Type: REG_SZ, Length: 36, Data: Development Files 97 12:38:31,5158446 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{DBE8E08E-3053-4BBC-B183-2A7B2B191E59}\ParentFolder SUCCESS Type: REG_SZ, Length: 78, Data: {F1B32785-6FBA-4FCF-9D55-7B8E7F157091} 97 12:38:31,5158618 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{DBE8E08E-3053-4BBC-B183-2A7B2B191E59}\Description NAME NOT FOUND Length: 144 97 12:38:31,5158726 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{DBE8E08E-3053-4BBC-B183-2A7B2B191E59}\RelativePath SUCCESS Type: REG_SZ, Length: 34, Data: DevelopmentFiles 97 12:38:31,5158856 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{DBE8E08E-3053-4BBC-B183-2A7B2B191E59}\ParsingName NAME NOT FOUND Length: 144 97 12:38:31,5158961 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{DBE8E08E-3053-4BBC-B183-2A7B2B191E59}\InfoTip NAME NOT FOUND Length: 144 97 12:38:31,5159067 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{DBE8E08E-3053-4BBC-B183-2A7B2B191E59}\LocalizedName NAME NOT FOUND Length: 144 97 12:38:31,5159169 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{DBE8E08E-3053-4BBC-B183-2A7B2B191E59}\Icon NAME NOT FOUND Length: 144 97 12:38:31,5159272 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{DBE8E08E-3053-4BBC-B183-2A7B2B191E59}\Security NAME NOT FOUND Length: 144 97 12:38:31,5159377 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{DBE8E08E-3053-4BBC-B183-2A7B2B191E59}\StreamResource NAME NOT FOUND Length: 144 97 12:38:31,5159479 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{DBE8E08E-3053-4BBC-B183-2A7B2B191E59}\StreamResourceType NAME NOT FOUND Length: 144 97 12:38:31,5159585 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{DBE8E08E-3053-4BBC-B183-2A7B2B191E59}\LocalRedirectOnly NAME NOT FOUND Length: 144 97 12:38:31,5159690 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{DBE8E08E-3053-4BBC-B183-2A7B2B191E59}\Roamable NAME NOT FOUND Length: 144 97 12:38:31,5159793 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{DBE8E08E-3053-4BBC-B183-2A7B2B191E59}\PreCreate NAME NOT FOUND Length: 144 97 12:38:31,5159895 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{DBE8E08E-3053-4BBC-B183-2A7B2B191E59}\Stream NAME NOT FOUND Length: 144 97 12:38:31,5160000 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{DBE8E08E-3053-4BBC-B183-2A7B2B191E59}\PublishExpandedPath NAME NOT FOUND Length: 144 97 12:38:31,5160106 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{DBE8E08E-3053-4BBC-B183-2A7B2B191E59}\DefinitionFlags NAME NOT FOUND Length: 144 97 12:38:31,5160211 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{DBE8E08E-3053-4BBC-B183-2A7B2B191E59}\Attributes NAME NOT FOUND Length: 144 97 12:38:31,5160313 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{DBE8E08E-3053-4BBC-B183-2A7B2B191E59}\FolderTypeID NAME NOT FOUND Length: 144 97 12:38:31,5160419 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{DBE8E08E-3053-4BBC-B183-2A7B2B191E59}\InitFolderHandler NAME NOT FOUND Length: 144 97 12:38:31,5160554 MCLauncher.exe 84 RegQueryKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{DBE8E08E-3053-4BBC-B183-2A7B2B191E59} SUCCESS Query: HandleTags, HandleTags: 0x400 97 12:38:31,5160618 MCLauncher.exe 84 RegOpenKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{DBE8E08E-3053-4BBC-B183-2A7B2B191E59}\PropertyBag NAME NOT FOUND Desired Access: Read 97 12:38:31,5160698 MCLauncher.exe 84 RegCloseKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{DBE8E08E-3053-4BBC-B183-2A7B2B191E59} SUCCESS 97 12:38:31,5160815 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:31,5160862 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: Name 97 12:38:31,5160948 MCLauncher.exe 84 RegOpenKey HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS Desired Access: Read 97 12:38:31,5161025 MCLauncher.exe 84 RegSetInfoKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 97 12:38:31,5161086 MCLauncher.exe 84 RegQueryKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS Query: HandleTags, HandleTags: 0x400 97 12:38:31,5161136 MCLauncher.exe 84 RegOpenKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{69D2CF90-FC33-4FB7-9A0C-EBB0F0FCB43C} SUCCESS Desired Access: Read 97 12:38:31,5161211 MCLauncher.exe 84 RegCloseKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS 97 12:38:31,5161255 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{69D2CF90-FC33-4FB7-9A0C-EBB0F0FCB43C}\Category SUCCESS Type: REG_DWORD, Length: 4, Data: 4 97 12:38:31,5161391 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{69D2CF90-FC33-4FB7-9A0C-EBB0F0FCB43C}\Name SUCCESS Type: REG_SZ, Length: 24, Data: PhotoAlbums 97 12:38:31,5161521 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{69D2CF90-FC33-4FB7-9A0C-EBB0F0FCB43C}\ParentFolder SUCCESS Type: REG_SZ, Length: 78, Data: {33E28130-4E1E-4676-835A-98395C3BC3BB} 97 12:38:31,5161649 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{69D2CF90-FC33-4FB7-9A0C-EBB0F0FCB43C}\Description NAME NOT FOUND Length: 144 97 12:38:31,5161757 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{69D2CF90-FC33-4FB7-9A0C-EBB0F0FCB43C}\RelativePath SUCCESS Type: REG_SZ, Length: 24, Data: Slide Shows 97 12:38:31,5161879 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{69D2CF90-FC33-4FB7-9A0C-EBB0F0FCB43C}\ParsingName NAME NOT FOUND Length: 144 97 12:38:31,5161987 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{69D2CF90-FC33-4FB7-9A0C-EBB0F0FCB43C}\InfoTip NAME NOT FOUND Length: 144 97 12:38:31,5162089 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{69D2CF90-FC33-4FB7-9A0C-EBB0F0FCB43C}\LocalizedName SUCCESS Type: REG_EXPAND_SZ, Length: 84, Data: @%SystemRoot%\system32\shell32.dll,-21819 97 12:38:31,5162214 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{69D2CF90-FC33-4FB7-9A0C-EBB0F0FCB43C}\Icon NAME NOT FOUND Length: 144 97 12:38:31,5162319 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{69D2CF90-FC33-4FB7-9A0C-EBB0F0FCB43C}\Security NAME NOT FOUND Length: 144 97 12:38:31,5162422 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{69D2CF90-FC33-4FB7-9A0C-EBB0F0FCB43C}\StreamResource NAME NOT FOUND Length: 144 97 12:38:31,5162535 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{69D2CF90-FC33-4FB7-9A0C-EBB0F0FCB43C}\StreamResourceType NAME NOT FOUND Length: 144 97 12:38:31,5162641 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{69D2CF90-FC33-4FB7-9A0C-EBB0F0FCB43C}\LocalRedirectOnly NAME NOT FOUND Length: 144 97 12:38:31,5162743 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{69D2CF90-FC33-4FB7-9A0C-EBB0F0FCB43C}\Roamable NAME NOT FOUND Length: 144 97 12:38:31,5162848 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{69D2CF90-FC33-4FB7-9A0C-EBB0F0FCB43C}\PreCreate NAME NOT FOUND Length: 144 97 12:38:31,5162954 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{69D2CF90-FC33-4FB7-9A0C-EBB0F0FCB43C}\Stream NAME NOT FOUND Length: 144 97 12:38:31,5163056 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{69D2CF90-FC33-4FB7-9A0C-EBB0F0FCB43C}\PublishExpandedPath NAME NOT FOUND Length: 144 97 12:38:31,5163162 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{69D2CF90-FC33-4FB7-9A0C-EBB0F0FCB43C}\DefinitionFlags NAME NOT FOUND Length: 144 97 12:38:31,5163264 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{69D2CF90-FC33-4FB7-9A0C-EBB0F0FCB43C}\Attributes SUCCESS Type: REG_DWORD, Length: 4, Data: 1 97 12:38:31,5163380 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{69D2CF90-FC33-4FB7-9A0C-EBB0F0FCB43C}\FolderTypeID NAME NOT FOUND Length: 144 97 12:38:31,5163488 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{69D2CF90-FC33-4FB7-9A0C-EBB0F0FCB43C}\InitFolderHandler NAME NOT FOUND Length: 144 97 12:38:31,5163621 MCLauncher.exe 84 RegQueryKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{69D2CF90-FC33-4FB7-9A0C-EBB0F0FCB43C} SUCCESS Query: HandleTags, HandleTags: 0x400 97 12:38:31,5163685 MCLauncher.exe 84 RegOpenKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{69D2CF90-FC33-4FB7-9A0C-EBB0F0FCB43C}\PropertyBag NAME NOT FOUND Desired Access: Read 97 12:38:31,5163774 MCLauncher.exe 84 RegCloseKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{69D2CF90-FC33-4FB7-9A0C-EBB0F0FCB43C} SUCCESS 97 12:38:31,5163865 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:31,5163912 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: Name 97 12:38:31,5163995 MCLauncher.exe 84 RegOpenKey HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS Desired Access: Read 97 12:38:31,5164073 MCLauncher.exe 84 RegSetInfoKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 97 12:38:31,5164131 MCLauncher.exe 84 RegQueryKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS Query: HandleTags, HandleTags: 0x400 97 12:38:31,5164184 MCLauncher.exe 84 RegOpenKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{374DE290-123F-4565-9164-39C4925E467B} SUCCESS Desired Access: Read 97 12:38:31,5164267 MCLauncher.exe 84 RegCloseKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS 97 12:38:31,5164311 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{374DE290-123F-4565-9164-39C4925E467B}\Category SUCCESS Type: REG_DWORD, Length: 4, Data: 4 97 12:38:31,5164442 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{374DE290-123F-4565-9164-39C4925E467B}\Name SUCCESS Type: REG_SZ, Length: 20, Data: Downloads 97 12:38:31,5164575 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{374DE290-123F-4565-9164-39C4925E467B}\ParentFolder NAME NOT FOUND Length: 144 97 12:38:31,5164685 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{374DE290-123F-4565-9164-39C4925E467B}\Description NAME NOT FOUND Length: 144 97 12:38:31,5164838 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{374DE290-123F-4565-9164-39C4925E467B}\RelativePath SUCCESS Type: REG_SZ, Length: 20, Data: Downloads 97 12:38:31,5164962 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{374DE290-123F-4565-9164-39C4925E467B}\ParsingName BUFFER OVERFLOW Length: 144 97 12:38:31,5165070 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{374DE290-123F-4565-9164-39C4925E467B}\ParsingName SUCCESS Type: REG_SZ, Length: 176, Data: shell:::{20D04FE0-3AEA-1069-A2D8-08002B30309D}\::{374DE290-123F-4565-9164-39C4925E467B} 97 12:38:31,5165195 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{374DE290-123F-4565-9164-39C4925E467B}\InfoTip NAME NOT FOUND Length: 144 97 12:38:31,5165303 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{374DE290-123F-4565-9164-39C4925E467B}\LocalizedName SUCCESS Type: REG_EXPAND_SZ, Length: 100, Data: @%SystemRoot%\system32\windows.storage.dll,-21798 97 12:38:31,5165428 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{374DE290-123F-4565-9164-39C4925E467B}\Icon SUCCESS Type: REG_EXPAND_SZ, Length: 80, Data: %SystemRoot%\system32\imageres.dll,-184 97 12:38:31,5165553 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{374DE290-123F-4565-9164-39C4925E467B}\Security NAME NOT FOUND Length: 144 97 12:38:31,5165661 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{374DE290-123F-4565-9164-39C4925E467B}\StreamResource NAME NOT FOUND Length: 144 97 12:38:31,5165763 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{374DE290-123F-4565-9164-39C4925E467B}\StreamResourceType NAME NOT FOUND Length: 144 97 12:38:31,5165868 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{374DE290-123F-4565-9164-39C4925E467B}\LocalRedirectOnly NAME NOT FOUND Length: 144 97 12:38:31,5165974 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{374DE290-123F-4565-9164-39C4925E467B}\Roamable SUCCESS Type: REG_DWORD, Length: 4, Data: 1 97 12:38:31,5166093 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{374DE290-123F-4565-9164-39C4925E467B}\PreCreate SUCCESS Type: REG_DWORD, Length: 4, Data: 1 97 12:38:31,5166212 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{374DE290-123F-4565-9164-39C4925E467B}\Stream NAME NOT FOUND Length: 144 97 12:38:31,5166317 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{374DE290-123F-4565-9164-39C4925E467B}\PublishExpandedPath SUCCESS Type: REG_DWORD, Length: 4, Data: 1 97 12:38:31,5167877 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{374DE290-123F-4565-9164-39C4925E467B}\DefinitionFlags NAME NOT FOUND Length: 144 97 12:38:31,5168027 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{374DE290-123F-4565-9164-39C4925E467B}\Attributes SUCCESS Type: REG_DWORD, Length: 4, Data: 1 97 12:38:31,5168151 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{374DE290-123F-4565-9164-39C4925E467B}\FolderTypeID NAME NOT FOUND Length: 144 97 12:38:31,5168259 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{374DE290-123F-4565-9164-39C4925E467B}\InitFolderHandler NAME NOT FOUND Length: 144 97 12:38:31,5168406 MCLauncher.exe 84 RegQueryKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{374DE290-123F-4565-9164-39C4925E467B} SUCCESS Query: HandleTags, HandleTags: 0x400 97 12:38:31,5168478 MCLauncher.exe 84 RegOpenKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{374DE290-123F-4565-9164-39C4925E467B}\PropertyBag SUCCESS Desired Access: Read 97 12:38:31,5168584 MCLauncher.exe 84 RegCloseKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{374DE290-123F-4565-9164-39C4925E467B} SUCCESS 97 12:38:31,5168686 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{374DE290-123F-4565-9164-39C4925E467B}\PropertyBag\ThisPCPolicy SUCCESS Type: REG_SZ, Length: 10, Data: Hide 97 12:38:31,5168822 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{374DE290-123F-4565-9164-39C4925E467B}\PropertyBag\ThisPCPolicy SUCCESS Type: REG_SZ, Length: 10, Data: Hide 97 12:38:31,5169096 MCLauncher.exe 84 RegOpenKey HKCU SUCCESS Desired Access: Read 97 12:38:31,5169218 MCLauncher.exe 84 RegQueryKey HKCU SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:31,5169268 MCLauncher.exe 84 RegQueryKey HKCU SUCCESS Query: Name 97 12:38:31,5169345 MCLauncher.exe 84 RegOpenKey HKCU\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer SUCCESS Desired Access: Query Value 97 12:38:31,5169445 MCLauncher.exe 84 RegSetInfoKey HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 97 12:38:31,5169489 MCLauncher.exe 84 RegQueryValue HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer\DisablePersonalDirChange NAME NOT FOUND Length: 144 97 12:38:31,5169614 MCLauncher.exe 84 RegCloseKey HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer SUCCESS 97 12:38:31,5169717 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:31,5169769 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: Name 97 12:38:31,5169858 MCLauncher.exe 84 RegOpenKey HKLM\Software\WOW6432Node\Microsoft\Windows NT\CurrentVersion\Terminal Server NAME NOT FOUND Desired Access: Read 97 12:38:31,5169969 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:31,5170016 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: Name 97 12:38:31,5170088 MCLauncher.exe 84 RegOpenKey HKLM\Software\WOW6432Node\Microsoft\Windows NT\CurrentVersion\Terminal Server NAME NOT FOUND Desired Access: Read 97 12:38:31,5170218 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:31,5170265 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: Name 97 12:38:31,5170346 MCLauncher.exe 84 RegOpenKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows NT\CurrentVersion\ProfileList\S-1-5-21-3477790013-1571897634-1299942168-1000\fdeploy REPARSE Desired Access: Read 97 12:38:31,5170426 MCLauncher.exe 84 RegOpenKey HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\ProfileList\S-1-5-21-3477790013-1571897634-1299942168-1000\fdeploy NAME NOT FOUND Desired Access: Read 97 12:38:31,5170528 MCLauncher.exe 84 RegQueryKey HKCU SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:31,5170576 MCLauncher.exe 84 RegQueryKey HKCU SUCCESS Query: Name 97 12:38:31,5170645 MCLauncher.exe 84 RegOpenKey HKCU\Software\Microsoft\Windows\CurrentVersion\Explorer\User Shell Folders SUCCESS Desired Access: Write 97 12:38:31,5170736 MCLauncher.exe 84 RegSetInfoKey HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\User Shell Folders SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 97 12:38:31,5170783 MCLauncher.exe 84 RegCloseKey HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\User Shell Folders SUCCESS 97 12:38:31,5170825 MCLauncher.exe 84 RegCloseKey HKCU SUCCESS 97 12:38:31,5170908 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:31,5170952 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: Name 97 12:38:31,5171027 MCLauncher.exe 84 RegOpenKey HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS Desired Access: Read 97 12:38:31,5171099 MCLauncher.exe 84 RegSetInfoKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 97 12:38:31,5171160 MCLauncher.exe 84 RegQueryKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS Query: HandleTags, HandleTags: 0x400 97 12:38:31,5171213 MCLauncher.exe 84 RegOpenKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{859EAD94-2E85-48AD-A71A-0969CB56A6CD} NAME NOT FOUND Desired Access: Read 97 12:38:31,5171282 MCLauncher.exe 84 RegCloseKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS 97 12:38:31,5171401 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{a0c69a99-21c8-4671-8703-7934162fcf1d}\PropertyBag\ThisPCPolicy SUCCESS Type: REG_SZ, Length: 10, Data: Show 97 12:38:31,5171540 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{a0c69a99-21c8-4671-8703-7934162fcf1d}\PropertyBag\ThisPCPolicy SUCCESS Type: REG_SZ, Length: 10, Data: Show 97 12:38:31,5171673 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{a0c69a99-21c8-4671-8703-7934162fcf1d}\PropertyBag\BaseFolderId SUCCESS Type: REG_SZ, Length: 78, Data: {4BD8D571-6D19-48D3-BE97-422220080E43} 97 12:38:31,5171792 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{a0c69a99-21c8-4671-8703-7934162fcf1d}\PropertyBag\BaseFolderId SUCCESS Type: REG_SZ, Length: 78, Data: {4BD8D571-6D19-48D3-BE97-422220080E43} 97 12:38:31,5172025 MCLauncher.exe 84 RegOpenKey HKCU SUCCESS Desired Access: Read 97 12:38:31,5172124 MCLauncher.exe 84 RegQueryKey HKCU SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:31,5172171 MCLauncher.exe 84 RegQueryKey HKCU SUCCESS Query: Name 97 12:38:31,5172243 MCLauncher.exe 84 RegOpenKey HKCU\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer SUCCESS Desired Access: Query Value 97 12:38:31,5172324 MCLauncher.exe 84 RegSetInfoKey HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 97 12:38:31,5172363 MCLauncher.exe 84 RegQueryValue HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer\DisablePersonalDirChange NAME NOT FOUND Length: 144 97 12:38:31,5172515 MCLauncher.exe 84 RegCloseKey HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer SUCCESS 97 12:38:31,5172604 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:31,5172653 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: Name 97 12:38:31,5172737 MCLauncher.exe 84 RegOpenKey HKLM\Software\WOW6432Node\Microsoft\Windows NT\CurrentVersion\Terminal Server NAME NOT FOUND Desired Access: Read 97 12:38:31,5172834 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:31,5172878 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: Name 97 12:38:31,5172947 MCLauncher.exe 84 RegOpenKey HKLM\Software\WOW6432Node\Microsoft\Windows NT\CurrentVersion\Terminal Server NAME NOT FOUND Desired Access: Read 97 12:38:31,5173061 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:31,5173105 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: Name 97 12:38:31,5173183 MCLauncher.exe 84 RegOpenKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows NT\CurrentVersion\ProfileList\S-1-5-21-3477790013-1571897634-1299942168-1000\fdeploy REPARSE Desired Access: Read 97 12:38:31,5173252 MCLauncher.exe 84 RegOpenKey HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\ProfileList\S-1-5-21-3477790013-1571897634-1299942168-1000\fdeploy NAME NOT FOUND Desired Access: Read 97 12:38:31,5173335 MCLauncher.exe 84 RegQueryKey HKCU SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:31,5173379 MCLauncher.exe 84 RegQueryKey HKCU SUCCESS Query: Name 97 12:38:31,5173449 MCLauncher.exe 84 RegOpenKey HKCU\Software\Microsoft\Windows\CurrentVersion\Explorer\User Shell Folders SUCCESS Desired Access: Write 97 12:38:31,5173532 MCLauncher.exe 84 RegSetInfoKey HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\User Shell Folders SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 97 12:38:31,5173576 MCLauncher.exe 84 RegCloseKey HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\User Shell Folders SUCCESS 97 12:38:31,5173618 MCLauncher.exe 84 RegCloseKey HKCU SUCCESS 97 12:38:31,5173690 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:31,5173742 MCLauncher.exe 84 RegOpenKey HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\AllowedEnumeration NAME NOT FOUND Desired Access: Read 97 12:38:31,5173853 MCLauncher.exe 84 RegQueryKey HKCU SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:31,5173906 MCLauncher.exe 84 RegOpenKey HKCU\Software\Microsoft\Windows\CurrentVersion\Explorer\AllowedEnumeration NAME NOT FOUND Desired Access: Read 97 12:38:31,5174044 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:31,5174089 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: Name 97 12:38:31,5174163 MCLauncher.exe 84 RegOpenKey HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS Desired Access: Read 97 12:38:31,5174233 MCLauncher.exe 84 RegSetInfoKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 97 12:38:31,5174294 MCLauncher.exe 84 RegQueryKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS Query: HandleTags, HandleTags: 0x400 97 12:38:31,5174344 MCLauncher.exe 84 RegOpenKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{A305CE99-F527-492B-8B1A-7E76FA98D6E4} SUCCESS Desired Access: Read 97 12:38:31,5174418 MCLauncher.exe 84 RegCloseKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS 97 12:38:31,5174468 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{a305ce99-f527-492b-8b1a-7e76fa98d6e4}\Category SUCCESS Type: REG_DWORD, Length: 4, Data: 1 97 12:38:31,5174615 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{a305ce99-f527-492b-8b1a-7e76fa98d6e4}\Name SUCCESS Type: REG_SZ, Length: 34, Data: AppUpdatesFolder 97 12:38:31,5174751 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{a305ce99-f527-492b-8b1a-7e76fa98d6e4}\ParentFolder NAME NOT FOUND Length: 144 97 12:38:31,5174864 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{a305ce99-f527-492b-8b1a-7e76fa98d6e4}\Description NAME NOT FOUND Length: 144 97 12:38:31,5174970 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{a305ce99-f527-492b-8b1a-7e76fa98d6e4}\RelativePath NAME NOT FOUND Length: 144 97 12:38:31,5175072 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{a305ce99-f527-492b-8b1a-7e76fa98d6e4}\ParsingName BUFFER OVERFLOW Length: 144 97 12:38:31,5175180 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{a305ce99-f527-492b-8b1a-7e76fa98d6e4}\ParsingName SUCCESS Type: REG_SZ, Length: 250, Data: ::{26EE0668-A00A-44D7-9371-BEB064C98683}\0\::{7b81be6a-ce2b-4676-a29e-eb907a5126c5}\::{d450a8a1-9568-45c7-9c0e-b4f9fb4537bd} 97 12:38:31,5175302 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{a305ce99-f527-492b-8b1a-7e76fa98d6e4}\InfoTip NAME NOT FOUND Length: 144 97 12:38:31,5175410 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{a305ce99-f527-492b-8b1a-7e76fa98d6e4}\LocalizedName NAME NOT FOUND Length: 144 97 12:38:31,5175513 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{a305ce99-f527-492b-8b1a-7e76fa98d6e4}\Icon NAME NOT FOUND Length: 144 97 12:38:31,5175615 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{a305ce99-f527-492b-8b1a-7e76fa98d6e4}\Security NAME NOT FOUND Length: 144 97 12:38:31,5175718 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{a305ce99-f527-492b-8b1a-7e76fa98d6e4}\StreamResource NAME NOT FOUND Length: 144 97 12:38:31,5175823 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{a305ce99-f527-492b-8b1a-7e76fa98d6e4}\StreamResourceType NAME NOT FOUND Length: 144 97 12:38:31,5175925 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{a305ce99-f527-492b-8b1a-7e76fa98d6e4}\LocalRedirectOnly NAME NOT FOUND Length: 144 97 12:38:31,5176031 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{a305ce99-f527-492b-8b1a-7e76fa98d6e4}\Roamable NAME NOT FOUND Length: 144 97 12:38:31,5176131 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{a305ce99-f527-492b-8b1a-7e76fa98d6e4}\PreCreate NAME NOT FOUND Length: 144 97 12:38:31,5176341 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{a305ce99-f527-492b-8b1a-7e76fa98d6e4}\Stream NAME NOT FOUND Length: 144 97 12:38:31,5176457 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{a305ce99-f527-492b-8b1a-7e76fa98d6e4}\PublishExpandedPath NAME NOT FOUND Length: 144 97 12:38:31,5176588 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{a305ce99-f527-492b-8b1a-7e76fa98d6e4}\DefinitionFlags NAME NOT FOUND Length: 144 97 12:38:31,5176690 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{a305ce99-f527-492b-8b1a-7e76fa98d6e4}\Attributes NAME NOT FOUND Length: 144 97 12:38:31,5176793 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{a305ce99-f527-492b-8b1a-7e76fa98d6e4}\FolderTypeID NAME NOT FOUND Length: 144 97 12:38:31,5176895 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{a305ce99-f527-492b-8b1a-7e76fa98d6e4}\InitFolderHandler NAME NOT FOUND Length: 144 97 12:38:31,5177036 MCLauncher.exe 84 RegQueryKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{a305ce99-f527-492b-8b1a-7e76fa98d6e4} SUCCESS Query: HandleTags, HandleTags: 0x400 97 12:38:31,5177100 MCLauncher.exe 84 RegOpenKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{a305ce99-f527-492b-8b1a-7e76fa98d6e4}\PropertyBag NAME NOT FOUND Desired Access: Read 97 12:38:31,5177186 MCLauncher.exe 84 RegCloseKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{a305ce99-f527-492b-8b1a-7e76fa98d6e4} SUCCESS 97 12:38:31,5177286 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:31,5177333 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: Name 97 12:38:31,5177419 MCLauncher.exe 84 RegOpenKey HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS Desired Access: Read 97 12:38:31,5177494 MCLauncher.exe 84 RegSetInfoKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 97 12:38:31,5177557 MCLauncher.exe 84 RegQueryKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS Query: HandleTags, HandleTags: 0x400 97 12:38:31,5177607 MCLauncher.exe 84 RegOpenKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{3D644C9B-1FB8-4F30-9B45-F670235F79C0} SUCCESS Desired Access: Read 97 12:38:31,5177685 MCLauncher.exe 84 RegCloseKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS 97 12:38:31,5177729 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{3D644C9B-1FB8-4f30-9B45-F670235F79C0}\Category SUCCESS Type: REG_DWORD, Length: 4, Data: 3 97 12:38:31,5177862 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{3D644C9B-1FB8-4f30-9B45-F670235F79C0}\Name SUCCESS Type: REG_SZ, Length: 32, Data: CommonDownloads 97 12:38:31,5177990 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{3D644C9B-1FB8-4f30-9B45-F670235F79C0}\ParentFolder SUCCESS Type: REG_SZ, Length: 78, Data: {DFDF76A2-C82A-4D63-906A-5644AC457385} 97 12:38:31,5178114 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{3D644C9B-1FB8-4f30-9B45-F670235F79C0}\Description NAME NOT FOUND Length: 144 97 12:38:31,5178220 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{3D644C9B-1FB8-4f30-9B45-F670235F79C0}\RelativePath SUCCESS Type: REG_SZ, Length: 20, Data: Downloads 97 12:38:31,5178344 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{3D644C9B-1FB8-4f30-9B45-F670235F79C0}\ParsingName NAME NOT FOUND Length: 144 97 12:38:31,5178449 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{3D644C9B-1FB8-4f30-9B45-F670235F79C0}\InfoTip NAME NOT FOUND Length: 144 97 12:38:31,5178552 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{3D644C9B-1FB8-4f30-9B45-F670235F79C0}\LocalizedName SUCCESS Type: REG_EXPAND_SZ, Length: 84, Data: @%SystemRoot%\system32\shell32.dll,-21808 97 12:38:31,5178674 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{3D644C9B-1FB8-4f30-9B45-F670235F79C0}\Icon NAME NOT FOUND Length: 144 97 12:38:31,5178779 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{3D644C9B-1FB8-4f30-9B45-F670235F79C0}\Security NAME NOT FOUND Length: 144 97 12:38:31,5178882 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{3D644C9B-1FB8-4f30-9B45-F670235F79C0}\StreamResource NAME NOT FOUND Length: 144 97 12:38:31,5178984 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{3D644C9B-1FB8-4f30-9B45-F670235F79C0}\StreamResourceType NAME NOT FOUND Length: 144 97 12:38:31,5179089 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{3D644C9B-1FB8-4f30-9B45-F670235F79C0}\LocalRedirectOnly NAME NOT FOUND Length: 144 97 12:38:31,5179192 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{3D644C9B-1FB8-4f30-9B45-F670235F79C0}\Roamable NAME NOT FOUND Length: 144 97 12:38:31,5179297 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{3D644C9B-1FB8-4f30-9B45-F670235F79C0}\PreCreate SUCCESS Type: REG_DWORD, Length: 4, Data: 1 97 12:38:31,5179414 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{3D644C9B-1FB8-4f30-9B45-F670235F79C0}\Stream NAME NOT FOUND Length: 144 97 12:38:31,5179519 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{3D644C9B-1FB8-4f30-9B45-F670235F79C0}\PublishExpandedPath NAME NOT FOUND Length: 144 97 12:38:31,5179621 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{3D644C9B-1FB8-4f30-9B45-F670235F79C0}\DefinitionFlags NAME NOT FOUND Length: 144 97 12:38:31,5179727 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{3D644C9B-1FB8-4f30-9B45-F670235F79C0}\Attributes SUCCESS Type: REG_DWORD, Length: 4, Data: 1 97 12:38:31,5179843 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{3D644C9B-1FB8-4f30-9B45-F670235F79C0}\FolderTypeID NAME NOT FOUND Length: 144 97 12:38:31,5179946 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{3D644C9B-1FB8-4f30-9B45-F670235F79C0}\InitFolderHandler NAME NOT FOUND Length: 144 97 12:38:31,5180081 MCLauncher.exe 84 RegQueryKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{3D644C9B-1FB8-4f30-9B45-F670235F79C0} SUCCESS Query: HandleTags, HandleTags: 0x400 97 12:38:31,5180145 MCLauncher.exe 84 RegOpenKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{3D644C9B-1FB8-4f30-9B45-F670235F79C0}\PropertyBag NAME NOT FOUND Desired Access: Read 97 12:38:31,5180228 MCLauncher.exe 84 RegCloseKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{3D644C9B-1FB8-4f30-9B45-F670235F79C0} SUCCESS 97 12:38:31,5180339 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{7d83ee9b-2244-4e70-b1f5-5393042af1e4}\PropertyBag\ThisPCPolicy SUCCESS Type: REG_SZ, Length: 10, Data: Show 97 12:38:31,5180464 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{7d83ee9b-2244-4e70-b1f5-5393042af1e4}\PropertyBag\ThisPCPolicy SUCCESS Type: REG_SZ, Length: 10, Data: Show 97 12:38:31,5180594 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{7d83ee9b-2244-4e70-b1f5-5393042af1e4}\PropertyBag\BaseFolderId SUCCESS Type: REG_SZ, Length: 78, Data: {374DE290-123F-4565-9164-39C4925E467B} 97 12:38:31,5180713 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{7d83ee9b-2244-4e70-b1f5-5393042af1e4}\PropertyBag\BaseFolderId SUCCESS Type: REG_SZ, Length: 78, Data: {374DE290-123F-4565-9164-39C4925E467B} 97 12:38:31,5180949 MCLauncher.exe 84 RegOpenKey HKCU SUCCESS Desired Access: Read 97 12:38:31,5181048 MCLauncher.exe 84 RegQueryKey HKCU SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:31,5181098 MCLauncher.exe 84 RegQueryKey HKCU SUCCESS Query: Name 97 12:38:31,5181170 MCLauncher.exe 84 RegOpenKey HKCU\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer SUCCESS Desired Access: Query Value 97 12:38:31,5181251 MCLauncher.exe 84 RegSetInfoKey HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 97 12:38:31,5181292 MCLauncher.exe 84 RegQueryValue HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer\DisablePersonalDirChange NAME NOT FOUND Length: 144 97 12:38:31,5181406 MCLauncher.exe 84 RegCloseKey HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer SUCCESS 97 12:38:31,5181497 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:31,5181547 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: Name 97 12:38:31,5181633 MCLauncher.exe 84 RegOpenKey HKLM\Software\WOW6432Node\Microsoft\Windows NT\CurrentVersion\Terminal Server NAME NOT FOUND Desired Access: Read 97 12:38:31,5181730 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:31,5181774 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: Name 97 12:38:31,5181843 MCLauncher.exe 84 RegOpenKey HKLM\Software\WOW6432Node\Microsoft\Windows NT\CurrentVersion\Terminal Server NAME NOT FOUND Desired Access: Read 97 12:38:31,5182026 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:31,5182071 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: Name 97 12:38:31,5182151 MCLauncher.exe 84 RegOpenKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows NT\CurrentVersion\ProfileList\S-1-5-21-3477790013-1571897634-1299942168-1000\fdeploy REPARSE Desired Access: Read 97 12:38:31,5182223 MCLauncher.exe 84 RegOpenKey HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\ProfileList\S-1-5-21-3477790013-1571897634-1299942168-1000\fdeploy NAME NOT FOUND Desired Access: Read 97 12:38:31,5182312 MCLauncher.exe 84 RegQueryKey HKCU SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:31,5182359 MCLauncher.exe 84 RegQueryKey HKCU SUCCESS Query: Name 97 12:38:31,5182428 MCLauncher.exe 84 RegOpenKey HKCU\Software\Microsoft\Windows\CurrentVersion\Explorer\User Shell Folders SUCCESS Desired Access: Write 97 12:38:31,5182508 MCLauncher.exe 84 RegSetInfoKey HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\User Shell Folders SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 97 12:38:31,5182558 MCLauncher.exe 84 RegCloseKey HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\User Shell Folders SUCCESS 97 12:38:31,5182597 MCLauncher.exe 84 RegCloseKey HKCU SUCCESS 97 12:38:31,5182669 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:31,5182722 MCLauncher.exe 84 RegOpenKey HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\AllowedEnumeration NAME NOT FOUND Desired Access: Read 97 12:38:31,5182813 MCLauncher.exe 84 RegQueryKey HKCU SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:31,5182863 MCLauncher.exe 84 RegOpenKey HKCU\Software\Microsoft\Windows\CurrentVersion\Explorer\AllowedEnumeration NAME NOT FOUND Desired Access: Read 97 12:38:31,5182985 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:31,5183029 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: Name 97 12:38:31,5183104 MCLauncher.exe 84 RegOpenKey HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS Desired Access: Read 97 12:38:31,5183176 MCLauncher.exe 84 RegSetInfoKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 97 12:38:31,5183237 MCLauncher.exe 84 RegQueryKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS Query: HandleTags, HandleTags: 0x400 97 12:38:31,5183287 MCLauncher.exe 84 RegOpenKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{C3F2459E-80D6-45DC-BFEF-1F769F2BE730} SUCCESS Desired Access: Read 97 12:38:31,5183359 MCLauncher.exe 84 RegCloseKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS 97 12:38:31,5183412 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{C3F2459E-80D6-45DC-BFEF-1F769F2BE730}\Category SUCCESS Type: REG_DWORD, Length: 4, Data: 4 97 12:38:31,5183553 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{C3F2459E-80D6-45DC-BFEF-1F769F2BE730}\Name SUCCESS Type: REG_SZ, Length: 28, Data: OneDriveMusic 97 12:38:31,5183686 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{C3F2459E-80D6-45DC-BFEF-1F769F2BE730}\ParentFolder SUCCESS Type: REG_SZ, Length: 78, Data: {A52BBA46-E9E1-435f-B3D9-28DAA648C0F6} 97 12:38:31,5183811 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{C3F2459E-80D6-45DC-BFEF-1F769F2BE730}\Description NAME NOT FOUND Length: 144 97 12:38:31,5183919 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{C3F2459E-80D6-45DC-BFEF-1F769F2BE730}\RelativePath SUCCESS Type: REG_SZ, Length: 12, Data: Music 97 12:38:31,5184040 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{C3F2459E-80D6-45DC-BFEF-1F769F2BE730}\ParsingName NAME NOT FOUND Length: 144 97 12:38:31,5184149 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{C3F2459E-80D6-45DC-BFEF-1F769F2BE730}\InfoTip NAME NOT FOUND Length: 144 97 12:38:31,5184254 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{C3F2459E-80D6-45DC-BFEF-1F769F2BE730}\LocalizedName NAME NOT FOUND Length: 144 97 12:38:31,5184356 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{C3F2459E-80D6-45DC-BFEF-1F769F2BE730}\Icon NAME NOT FOUND Length: 144 97 12:38:31,5184459 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{C3F2459E-80D6-45DC-BFEF-1F769F2BE730}\Security NAME NOT FOUND Length: 144 97 12:38:31,5184586 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{C3F2459E-80D6-45DC-BFEF-1F769F2BE730}\StreamResource NAME NOT FOUND Length: 144 97 12:38:31,5184692 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{C3F2459E-80D6-45DC-BFEF-1F769F2BE730}\StreamResourceType NAME NOT FOUND Length: 144 97 12:38:31,5184794 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{C3F2459E-80D6-45DC-BFEF-1F769F2BE730}\LocalRedirectOnly NAME NOT FOUND Length: 144 97 12:38:31,5184897 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{C3F2459E-80D6-45DC-BFEF-1F769F2BE730}\Roamable NAME NOT FOUND Length: 144 97 12:38:31,5184999 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{C3F2459E-80D6-45DC-BFEF-1F769F2BE730}\PreCreate NAME NOT FOUND Length: 144 97 12:38:31,5185102 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{C3F2459E-80D6-45DC-BFEF-1F769F2BE730}\Stream NAME NOT FOUND Length: 144 97 12:38:31,5185207 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{C3F2459E-80D6-45DC-BFEF-1F769F2BE730}\PublishExpandedPath NAME NOT FOUND Length: 144 97 12:38:31,5185307 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{C3F2459E-80D6-45DC-BFEF-1F769F2BE730}\DefinitionFlags SUCCESS Type: REG_DWORD, Length: 4, Data: 64 97 12:38:31,5185426 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{C3F2459E-80D6-45DC-BFEF-1F769F2BE730}\Attributes SUCCESS Type: REG_DWORD, Length: 4, Data: 1 97 12:38:31,5185542 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{C3F2459E-80D6-45DC-BFEF-1F769F2BE730}\FolderTypeID SUCCESS Type: REG_SZ, Length: 78, Data: {672ECD7E-AF04-4399-875C-0290845B6247} 97 12:38:31,5185664 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{C3F2459E-80D6-45DC-BFEF-1F769F2BE730}\InitFolderHandler NAME NOT FOUND Length: 144 97 12:38:31,5185803 MCLauncher.exe 84 RegQueryKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{C3F2459E-80D6-45DC-BFEF-1F769F2BE730} SUCCESS Query: HandleTags, HandleTags: 0x400 97 12:38:31,5185863 MCLauncher.exe 84 RegOpenKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{C3F2459E-80D6-45DC-BFEF-1F769F2BE730}\PropertyBag SUCCESS Desired Access: Read 97 12:38:31,5185947 MCLauncher.exe 84 RegCloseKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{C3F2459E-80D6-45DC-BFEF-1F769F2BE730} SUCCESS 97 12:38:31,5186110 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:31,5186160 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: Name 97 12:38:31,5186243 MCLauncher.exe 84 RegOpenKey HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS Desired Access: Read 97 12:38:31,5186451 MCLauncher.exe 84 RegSetInfoKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 97 12:38:31,5186528 MCLauncher.exe 84 RegQueryKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS Query: HandleTags, HandleTags: 0x400 97 12:38:31,5186587 MCLauncher.exe 84 RegOpenKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{A440879F-87A0-4F7D-B700-0207B966194A} SUCCESS Desired Access: Read 97 12:38:31,5186675 MCLauncher.exe 84 RegCloseKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS 97 12:38:31,5186725 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{A440879F-87A0-4F7D-B700-0207B966194A}\Category SUCCESS Type: REG_DWORD, Length: 4, Data: 3 97 12:38:31,5186858 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{A440879F-87A0-4F7D-B700-0207B966194A}\Name SUCCESS Type: REG_SZ, Length: 50, Data: Common Start Menu Places 97 12:38:31,5186988 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{A440879F-87A0-4F7D-B700-0207B966194A}\ParentFolder SUCCESS Type: REG_SZ, Length: 78, Data: {62AB5D82-FDC1-4DC3-A9DD-070D1D495D97} 97 12:38:31,5187113 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{A440879F-87A0-4F7D-B700-0207B966194A}\Description NAME NOT FOUND Length: 144 97 12:38:31,5187221 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{A440879F-87A0-4F7D-B700-0207B966194A}\RelativePath SUCCESS Type: REG_SZ, Length: 72, Data: Microsoft\Windows\Start Menu Places 97 12:38:31,5187343 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{A440879F-87A0-4F7D-B700-0207B966194A}\ParsingName NAME NOT FOUND Length: 144 97 12:38:31,5187448 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{A440879F-87A0-4F7D-B700-0207B966194A}\InfoTip NAME NOT FOUND Length: 144 97 12:38:31,5187554 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{A440879F-87A0-4F7D-B700-0207B966194A}\LocalizedName SUCCESS Type: REG_EXPAND_SZ, Length: 84, Data: @%SystemRoot%\system32\shell32.dll,-21786 97 12:38:31,5187675 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{A440879F-87A0-4F7D-B700-0207B966194A}\Icon NAME NOT FOUND Length: 144 97 12:38:31,5187786 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{A440879F-87A0-4F7D-B700-0207B966194A}\Security NAME NOT FOUND Length: 144 97 12:38:31,5187889 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{A440879F-87A0-4F7D-B700-0207B966194A}\StreamResource NAME NOT FOUND Length: 144 97 12:38:31,5187991 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{A440879F-87A0-4F7D-B700-0207B966194A}\StreamResourceType NAME NOT FOUND Length: 144 97 12:38:31,5188097 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{A440879F-87A0-4F7D-B700-0207B966194A}\LocalRedirectOnly NAME NOT FOUND Length: 144 97 12:38:31,5188199 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{A440879F-87A0-4F7D-B700-0207B966194A}\Roamable NAME NOT FOUND Length: 144 97 12:38:31,5188302 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{A440879F-87A0-4F7D-B700-0207B966194A}\PreCreate SUCCESS Type: REG_DWORD, Length: 4, Data: 1 97 12:38:31,5188418 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{A440879F-87A0-4F7D-B700-0207B966194A}\Stream NAME NOT FOUND Length: 144 97 12:38:31,5188523 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{A440879F-87A0-4F7D-B700-0207B966194A}\PublishExpandedPath NAME NOT FOUND Length: 144 97 12:38:31,5188629 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{A440879F-87A0-4F7D-B700-0207B966194A}\DefinitionFlags NAME NOT FOUND Length: 144 97 12:38:31,5188731 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{A440879F-87A0-4F7D-B700-0207B966194A}\Attributes SUCCESS Type: REG_DWORD, Length: 4, Data: 1 97 12:38:31,5188847 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{A440879F-87A0-4F7D-B700-0207B966194A}\FolderTypeID NAME NOT FOUND Length: 144 97 12:38:31,5188950 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{A440879F-87A0-4F7D-B700-0207B966194A}\InitFolderHandler NAME NOT FOUND Length: 144 97 12:38:31,5189088 MCLauncher.exe 84 RegQueryKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{A440879F-87A0-4F7D-B700-0207B966194A} SUCCESS Query: HandleTags, HandleTags: 0x400 97 12:38:31,5189149 MCLauncher.exe 84 RegOpenKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{A440879F-87A0-4F7D-B700-0207B966194A}\PropertyBag NAME NOT FOUND Desired Access: Read 97 12:38:31,5189230 MCLauncher.exe 84 RegCloseKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{A440879F-87A0-4F7D-B700-0207B966194A} SUCCESS 97 12:38:31,5189321 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:31,5189368 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: Name 97 12:38:31,5189449 MCLauncher.exe 84 RegOpenKey HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS Desired Access: Read 97 12:38:31,5189523 MCLauncher.exe 84 RegSetInfoKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 97 12:38:31,5189584 MCLauncher.exe 84 RegQueryKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS Query: HandleTags, HandleTags: 0x400 97 12:38:31,5189637 MCLauncher.exe 84 RegOpenKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{A990AE9F-A03B-4E80-94BC-9912D7504104} SUCCESS Desired Access: Read 97 12:38:31,5189709 MCLauncher.exe 84 RegCloseKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS 97 12:38:31,5189753 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{A990AE9F-A03B-4e80-94BC-9912D7504104}\Category SUCCESS Type: REG_DWORD, Length: 4, Data: 4 97 12:38:31,5189884 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{A990AE9F-A03B-4e80-94BC-9912D7504104}\Name SUCCESS Type: REG_SZ, Length: 32, Data: PicturesLibrary 97 12:38:31,5190011 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{A990AE9F-A03B-4e80-94BC-9912D7504104}\ParentFolder SUCCESS Type: REG_SZ, Length: 78, Data: {1B3EA5DC-B587-4786-B4EF-BD1DC332AEAE} 97 12:38:31,5190138 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{A990AE9F-A03B-4e80-94BC-9912D7504104}\Description NAME NOT FOUND Length: 144 97 12:38:31,5190244 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{A990AE9F-A03B-4e80-94BC-9912D7504104}\RelativePath SUCCESS Type: REG_SZ, Length: 40, Data: Pictures.library-ms 97 12:38:31,5190366 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{A990AE9F-A03B-4e80-94BC-9912D7504104}\ParsingName BUFFER OVERFLOW Length: 144 97 12:38:31,5190474 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{A990AE9F-A03B-4e80-94BC-9912D7504104}\ParsingName SUCCESS Type: REG_SZ, Length: 160, Data: ::{031E4825-7B94-4dc3-B131-E946B44C8DD5}\{A990AE9F-A03B-4e80-94BC-9912D7504104} 97 12:38:31,5190629 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{A990AE9F-A03B-4e80-94BC-9912D7504104}\InfoTip SUCCESS Type: REG_EXPAND_SZ, Length: 84, Data: @%SystemRoot%\system32\shell32.dll,-12688 97 12:38:31,5190756 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{A990AE9F-A03B-4e80-94BC-9912D7504104}\LocalizedName SUCCESS Type: REG_EXPAND_SZ, Length: 100, Data: @%SystemRoot%\system32\windows.storage.dll,-34595 97 12:38:31,5190881 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{A990AE9F-A03B-4e80-94BC-9912D7504104}\Icon SUCCESS Type: REG_EXPAND_SZ, Length: 82, Data: %SystemRoot%\system32\imageres.dll,-1003 97 12:38:31,5191006 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{A990AE9F-A03B-4e80-94BC-9912D7504104}\Security NAME NOT FOUND Length: 144 97 12:38:31,5191114 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{A990AE9F-A03B-4e80-94BC-9912D7504104}\StreamResource SUCCESS Type: REG_EXPAND_SZ, Length: 74, Data: %SystemRoot%\system32\shell32.dll,-3 97 12:38:31,5191236 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{A990AE9F-A03B-4e80-94BC-9912D7504104}\StreamResourceType SUCCESS Type: REG_SZ, Length: 16, Data: LIBRARY 97 12:38:31,5191360 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{A990AE9F-A03B-4e80-94BC-9912D7504104}\LocalRedirectOnly NAME NOT FOUND Length: 144 97 12:38:31,5191468 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{A990AE9F-A03B-4e80-94BC-9912D7504104}\Roamable NAME NOT FOUND Length: 144 97 12:38:31,5191574 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{A990AE9F-A03B-4e80-94BC-9912D7504104}\PreCreate SUCCESS Type: REG_DWORD, Length: 4, Data: 1 97 12:38:31,5191690 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{A990AE9F-A03B-4e80-94BC-9912D7504104}\Stream SUCCESS Type: REG_DWORD, Length: 4, Data: 1 97 12:38:31,5191806 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{A990AE9F-A03B-4e80-94BC-9912D7504104}\PublishExpandedPath NAME NOT FOUND Length: 144 97 12:38:31,5191912 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{A990AE9F-A03B-4e80-94BC-9912D7504104}\DefinitionFlags NAME NOT FOUND Length: 144 97 12:38:31,5192017 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{A990AE9F-A03B-4e80-94BC-9912D7504104}\Attributes NAME NOT FOUND Length: 144 97 12:38:31,5192119 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{A990AE9F-A03B-4e80-94BC-9912D7504104}\FolderTypeID NAME NOT FOUND Length: 144 97 12:38:31,5192225 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{A990AE9F-A03B-4e80-94BC-9912D7504104}\InitFolderHandler NAME NOT FOUND Length: 144 97 12:38:31,5192360 MCLauncher.exe 84 RegQueryKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{A990AE9F-A03B-4e80-94BC-9912D7504104} SUCCESS Query: HandleTags, HandleTags: 0x400 97 12:38:31,5192421 MCLauncher.exe 84 RegOpenKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{A990AE9F-A03B-4e80-94BC-9912D7504104}\PropertyBag SUCCESS Desired Access: Read 97 12:38:31,5192510 MCLauncher.exe 84 RegCloseKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{A990AE9F-A03B-4e80-94BC-9912D7504104} SUCCESS 97 12:38:31,5192607 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:31,5192654 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: Name 97 12:38:31,5192737 MCLauncher.exe 84 RegOpenKey HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS Desired Access: Read 97 12:38:31,5192809 MCLauncher.exe 84 RegSetInfoKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 97 12:38:31,5192870 MCLauncher.exe 84 RegQueryKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS Query: HandleTags, HandleTags: 0x400 97 12:38:31,5192920 MCLauncher.exe 84 RegOpenKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{DFDF76A2-C82A-4D63-906A-5644AC457385} SUCCESS Desired Access: Read 97 12:38:31,5192995 MCLauncher.exe 84 RegCloseKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS 97 12:38:31,5193039 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{DFDF76A2-C82A-4D63-906A-5644AC457385}\Category SUCCESS Type: REG_DWORD, Length: 4, Data: 2 97 12:38:31,5193169 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{DFDF76A2-C82A-4D63-906A-5644AC457385}\Name SUCCESS Type: REG_SZ, Length: 14, Data: Public 97 12:38:31,5193300 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{DFDF76A2-C82A-4D63-906A-5644AC457385}\ParentFolder NAME NOT FOUND Length: 144 97 12:38:31,5193410 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{DFDF76A2-C82A-4D63-906A-5644AC457385}\Description NAME NOT FOUND Length: 144 97 12:38:31,5193519 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{DFDF76A2-C82A-4D63-906A-5644AC457385}\RelativePath NAME NOT FOUND Length: 144 97 12:38:31,5193785 MCLauncher.exe 84 RegOpenKey HKLM\SYSTEM\CurrentControlSet\Control\Session Manager REPARSE Desired Access: Query Value, Enumerate Sub Keys 97 12:38:31,5193873 MCLauncher.exe 84 RegOpenKey HKLM\System\CurrentControlSet\Control\Session Manager SUCCESS Desired Access: Query Value, Enumerate Sub Keys 97 12:38:31,5193951 MCLauncher.exe 84 RegQueryValue HKLM\System\CurrentControlSet\Control\Session Manager\ResourcePolicies NAME NOT FOUND Length: 24 97 12:38:31,5194084 MCLauncher.exe 84 RegCloseKey HKLM\System\CurrentControlSet\Control\Session Manager SUCCESS 97 12:38:31,5194294 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{DFDF76A2-C82A-4D63-906A-5644AC457385}\ParsingName NAME NOT FOUND Length: 144 97 12:38:31,5194535 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{DFDF76A2-C82A-4D63-906A-5644AC457385}\InfoTip NAME NOT FOUND Length: 144 97 12:38:31,5194652 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{DFDF76A2-C82A-4D63-906A-5644AC457385}\LocalizedName SUCCESS Type: REG_EXPAND_SZ, Length: 84, Data: @%SystemRoot%\system32\shell32.dll,-21816 97 12:38:31,5194779 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{DFDF76A2-C82A-4D63-906A-5644AC457385}\Icon NAME NOT FOUND Length: 144 97 12:38:31,5194884 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{DFDF76A2-C82A-4D63-906A-5644AC457385}\Security BUFFER OVERFLOW Length: 144 97 12:38:31,5195009 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{DFDF76A2-C82A-4D63-906A-5644AC457385}\Security SUCCESS Type: REG_SZ, Length: 384, Data: D:PAI(A;OICI;FA;;;BA)(A;OICIIO;FA;;;CO)(A;OICI;FA;;;SY)(A;OICIIO;0x1301ff;;;IU)(A;;0x1200af;;;IU)(A;OICIIO;0x1301ff;;;SU)(A;;0x1200af;;;SU)(A;OICIIO;0x1301ff;;;S-1-5-3)(A;;0x1200af;;;S-1-5-3) 97 12:38:31,5195137 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{DFDF76A2-C82A-4D63-906A-5644AC457385}\StreamResource NAME NOT FOUND Length: 144 97 12:38:31,5195242 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{DFDF76A2-C82A-4D63-906A-5644AC457385}\StreamResourceType NAME NOT FOUND Length: 144 97 12:38:31,5195369 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{DFDF76A2-C82A-4D63-906A-5644AC457385}\LocalRedirectOnly NAME NOT FOUND Length: 144 97 12:38:31,5195475 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{DFDF76A2-C82A-4D63-906A-5644AC457385}\Roamable NAME NOT FOUND Length: 144 97 12:38:31,5195577 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{DFDF76A2-C82A-4D63-906A-5644AC457385}\PreCreate SUCCESS Type: REG_DWORD, Length: 4, Data: 1 97 12:38:31,5195693 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{DFDF76A2-C82A-4D63-906A-5644AC457385}\Stream NAME NOT FOUND Length: 144 97 12:38:31,5195926 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{DFDF76A2-C82A-4D63-906A-5644AC457385}\PublishExpandedPath NAME NOT FOUND Length: 144 97 12:38:31,5196034 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{DFDF76A2-C82A-4D63-906A-5644AC457385}\DefinitionFlags NAME NOT FOUND Length: 144 97 12:38:31,5196140 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{DFDF76A2-C82A-4D63-906A-5644AC457385}\Attributes SUCCESS Type: REG_DWORD, Length: 4, Data: 1 97 12:38:31,5196256 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{DFDF76A2-C82A-4D63-906A-5644AC457385}\FolderTypeID NAME NOT FOUND Length: 144 97 12:38:31,5196358 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{DFDF76A2-C82A-4D63-906A-5644AC457385}\InitFolderHandler NAME NOT FOUND Length: 144 97 12:38:31,5196500 MCLauncher.exe 84 RegQueryKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{DFDF76A2-C82A-4D63-906A-5644AC457385} SUCCESS Query: HandleTags, HandleTags: 0x400 97 12:38:31,5196563 MCLauncher.exe 84 RegOpenKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{DFDF76A2-C82A-4D63-906A-5644AC457385}\PropertyBag NAME NOT FOUND Desired Access: Read 97 12:38:31,5196655 MCLauncher.exe 84 RegCloseKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{DFDF76A2-C82A-4D63-906A-5644AC457385} SUCCESS 97 12:38:31,5196760 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:31,5196813 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: Name 97 12:38:31,5196943 MCLauncher.exe 84 RegOpenKey HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS Desired Access: Read 97 12:38:31,5197029 MCLauncher.exe 84 RegSetInfoKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 97 12:38:31,5197093 MCLauncher.exe 84 RegQueryKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS Query: HandleTags, HandleTags: 0x400 97 12:38:31,5197145 MCLauncher.exe 84 RegOpenKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{1A6FDBA2-F42D-4358-A798-B74D745926C5} SUCCESS Desired Access: Read 97 12:38:31,5197220 MCLauncher.exe 84 RegCloseKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS 97 12:38:31,5197264 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{1A6FDBA2-F42D-4358-A798-B74D745926C5}\Category SUCCESS Type: REG_DWORD, Length: 4, Data: 3 97 12:38:31,5197395 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{1A6FDBA2-F42D-4358-A798-B74D745926C5}\Name SUCCESS Type: REG_SZ, Length: 36, Data: RecordedTVLibrary 97 12:38:31,5197528 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{1A6FDBA2-F42D-4358-A798-B74D745926C5}\ParentFolder SUCCESS Type: REG_SZ, Length: 78, Data: {48daf80b-e6cf-4f4e-b800-0e69d84ee384} 97 12:38:31,5197652 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{1A6FDBA2-F42D-4358-A798-B74D745926C5}\Description NAME NOT FOUND Length: 144 97 12:38:31,5197758 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{1A6FDBA2-F42D-4358-A798-B74D745926C5}\RelativePath SUCCESS Type: REG_SZ, Length: 44, Data: RecordedTV.library-ms 97 12:38:31,5197882 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{1A6FDBA2-F42D-4358-A798-B74D745926C5}\ParsingName NAME NOT FOUND Length: 144 97 12:38:31,5197987 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{1A6FDBA2-F42D-4358-A798-B74D745926C5}\InfoTip NAME NOT FOUND Length: 144 97 12:38:31,5198090 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{1A6FDBA2-F42D-4358-A798-B74D745926C5}\LocalizedName SUCCESS Type: REG_EXPAND_SZ, Length: 84, Data: @%SystemRoot%\system32\shell32.dll,-34615 97 12:38:31,5198212 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{1A6FDBA2-F42D-4358-A798-B74D745926C5}\Icon SUCCESS Type: REG_EXPAND_SZ, Length: 82, Data: %SystemRoot%\system32\imageres.dll,-1008 97 12:38:31,5198334 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{1A6FDBA2-F42D-4358-A798-B74D745926C5}\Security NAME NOT FOUND Length: 144 97 12:38:31,5198439 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{1A6FDBA2-F42D-4358-A798-B74D745926C5}\StreamResource SUCCESS Type: REG_EXPAND_SZ, Length: 74, Data: %SystemRoot%\system32\shell32.dll,-8 97 12:38:31,5198561 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{1A6FDBA2-F42D-4358-A798-B74D745926C5}\StreamResourceType SUCCESS Type: REG_SZ, Length: 16, Data: LIBRARY 97 12:38:31,5198686 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{1A6FDBA2-F42D-4358-A798-B74D745926C5}\LocalRedirectOnly NAME NOT FOUND Length: 144 97 12:38:31,5198819 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{1A6FDBA2-F42D-4358-A798-B74D745926C5}\Roamable NAME NOT FOUND Length: 144 97 12:38:31,5198924 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{1A6FDBA2-F42D-4358-A798-B74D745926C5}\PreCreate SUCCESS Type: REG_DWORD, Length: 4, Data: 1 97 12:38:31,5199040 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{1A6FDBA2-F42D-4358-A798-B74D745926C5}\Stream SUCCESS Type: REG_DWORD, Length: 4, Data: 1 97 12:38:31,5199157 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{1A6FDBA2-F42D-4358-A798-B74D745926C5}\PublishExpandedPath NAME NOT FOUND Length: 144 97 12:38:31,5199262 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{1A6FDBA2-F42D-4358-A798-B74D745926C5}\DefinitionFlags NAME NOT FOUND Length: 144 97 12:38:31,5199364 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{1A6FDBA2-F42D-4358-A798-B74D745926C5}\Attributes NAME NOT FOUND Length: 144 97 12:38:31,5199467 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{1A6FDBA2-F42D-4358-A798-B74D745926C5}\FolderTypeID NAME NOT FOUND Length: 144 97 12:38:31,5199569 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{1A6FDBA2-F42D-4358-A798-B74D745926C5}\InitFolderHandler NAME NOT FOUND Length: 144 97 12:38:31,5199705 MCLauncher.exe 84 RegQueryKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{1A6FDBA2-F42D-4358-A798-B74D745926C5} SUCCESS Query: HandleTags, HandleTags: 0x400 97 12:38:31,5199766 MCLauncher.exe 84 RegOpenKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{1A6FDBA2-F42D-4358-A798-B74D745926C5}\PropertyBag NAME NOT FOUND Desired Access: Read 97 12:38:31,5199852 MCLauncher.exe 84 RegCloseKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{1A6FDBA2-F42D-4358-A798-B74D745926C5} SUCCESS 97 12:38:31,5199946 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:31,5199996 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: Name 97 12:38:31,5200079 MCLauncher.exe 84 RegOpenKey HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS Desired Access: Read 97 12:38:31,5200154 MCLauncher.exe 84 RegSetInfoKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 97 12:38:31,5200215 MCLauncher.exe 84 RegQueryKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS Query: HandleTags, HandleTags: 0x400 97 12:38:31,5200265 MCLauncher.exe 84 RegOpenKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{9B74B6A3-0DFD-4F11-9E78-5F7800F2E772} SUCCESS Desired Access: Read 97 12:38:31,5200337 MCLauncher.exe 84 RegCloseKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS 97 12:38:31,5200381 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{9B74B6A3-0DFD-4f11-9E78-5F7800F2E772}\Category SUCCESS Type: REG_DWORD, Length: 4, Data: 1 97 12:38:31,5200509 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{9B74B6A3-0DFD-4f11-9E78-5F7800F2E772}\Name SUCCESS Type: REG_SZ, Length: 54, Data: HomeGroupCurrentUserFolder 97 12:38:31,5200636 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{9B74B6A3-0DFD-4f11-9E78-5F7800F2E772}\ParentFolder NAME NOT FOUND Length: 144 97 12:38:31,5200744 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{9B74B6A3-0DFD-4f11-9E78-5F7800F2E772}\Description NAME NOT FOUND Length: 144 97 12:38:31,5200847 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{9B74B6A3-0DFD-4f11-9E78-5F7800F2E772}\RelativePath NAME NOT FOUND Length: 144 97 12:38:31,5200949 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{9B74B6A3-0DFD-4f11-9E78-5F7800F2E772}\ParsingName SUCCESS Type: REG_SZ, Length: 110, Data: ::{B4FB3F98-C1EA-428d-A78A-D1F5659CBA93}\$CurrentUser$ 97 12:38:31,5201074 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{9B74B6A3-0DFD-4f11-9E78-5F7800F2E772}\InfoTip NAME NOT FOUND Length: 144 97 12:38:31,5201179 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{9B74B6A3-0DFD-4f11-9E78-5F7800F2E772}\LocalizedName NAME NOT FOUND Length: 144 97 12:38:31,5201282 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{9B74B6A3-0DFD-4f11-9E78-5F7800F2E772}\Icon NAME NOT FOUND Length: 144 97 12:38:31,5201384 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{9B74B6A3-0DFD-4f11-9E78-5F7800F2E772}\Security NAME NOT FOUND Length: 144 97 12:38:31,5201487 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{9B74B6A3-0DFD-4f11-9E78-5F7800F2E772}\StreamResource NAME NOT FOUND Length: 144 97 12:38:31,5201589 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{9B74B6A3-0DFD-4f11-9E78-5F7800F2E772}\StreamResourceType NAME NOT FOUND Length: 144 97 12:38:31,5201692 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{9B74B6A3-0DFD-4f11-9E78-5F7800F2E772}\LocalRedirectOnly NAME NOT FOUND Length: 144 97 12:38:31,5201794 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{9B74B6A3-0DFD-4f11-9E78-5F7800F2E772}\Roamable NAME NOT FOUND Length: 144 97 12:38:31,5201894 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{9B74B6A3-0DFD-4f11-9E78-5F7800F2E772}\PreCreate NAME NOT FOUND Length: 144 97 12:38:31,5201994 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{9B74B6A3-0DFD-4f11-9E78-5F7800F2E772}\Stream NAME NOT FOUND Length: 144 97 12:38:31,5202096 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{9B74B6A3-0DFD-4f11-9E78-5F7800F2E772}\PublishExpandedPath NAME NOT FOUND Length: 144 97 12:38:31,5202199 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{9B74B6A3-0DFD-4f11-9E78-5F7800F2E772}\DefinitionFlags NAME NOT FOUND Length: 144 97 12:38:31,5202301 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{9B74B6A3-0DFD-4f11-9E78-5F7800F2E772}\Attributes NAME NOT FOUND Length: 144 97 12:38:31,5202404 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{9B74B6A3-0DFD-4f11-9E78-5F7800F2E772}\FolderTypeID NAME NOT FOUND Length: 144 97 12:38:31,5202503 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{9B74B6A3-0DFD-4f11-9E78-5F7800F2E772}\InitFolderHandler NAME NOT FOUND Length: 144 97 12:38:31,5202639 MCLauncher.exe 84 RegQueryKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{9B74B6A3-0DFD-4f11-9E78-5F7800F2E772} SUCCESS Query: HandleTags, HandleTags: 0x400 97 12:38:31,5202700 MCLauncher.exe 84 RegOpenKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{9B74B6A3-0DFD-4f11-9E78-5F7800F2E772}\PropertyBag SUCCESS Desired Access: Read 97 12:38:31,5202789 MCLauncher.exe 84 RegCloseKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{9B74B6A3-0DFD-4f11-9E78-5F7800F2E772} SUCCESS 97 12:38:31,5202878 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:31,5202927 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: Name 97 12:38:31,5203008 MCLauncher.exe 84 RegOpenKey HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS Desired Access: Read 97 12:38:31,5203080 MCLauncher.exe 84 RegSetInfoKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 97 12:38:31,5203141 MCLauncher.exe 84 RegQueryKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS Query: HandleTags, HandleTags: 0x400 97 12:38:31,5203191 MCLauncher.exe 84 RegOpenKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{A520A1A4-1780-4FF6-BD18-167343C5AF16} SUCCESS Desired Access: Read 97 12:38:31,5203263 MCLauncher.exe 84 RegCloseKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS 97 12:38:31,5203304 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{A520A1A4-1780-4FF6-BD18-167343C5AF16}\Category SUCCESS Type: REG_DWORD, Length: 4, Data: 4 97 12:38:31,5203434 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{A520A1A4-1780-4FF6-BD18-167343C5AF16}\Name SUCCESS Type: REG_SZ, Length: 32, Data: LocalAppDataLow 97 12:38:31,5203565 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{A520A1A4-1780-4FF6-BD18-167343C5AF16}\ParentFolder NAME NOT FOUND Length: 144 97 12:38:31,5203673 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{A520A1A4-1780-4FF6-BD18-167343C5AF16}\Description NAME NOT FOUND Length: 144 97 12:38:31,5203775 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{A520A1A4-1780-4FF6-BD18-167343C5AF16}\RelativePath SUCCESS Type: REG_SZ, Length: 34, Data: AppData\LocalLow 97 12:38:31,5203897 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{A520A1A4-1780-4FF6-BD18-167343C5AF16}\ParsingName NAME NOT FOUND Length: 144 97 12:38:31,5204002 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{A520A1A4-1780-4FF6-BD18-167343C5AF16}\InfoTip NAME NOT FOUND Length: 144 97 12:38:31,5204133 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{A520A1A4-1780-4FF6-BD18-167343C5AF16}\LocalizedName NAME NOT FOUND Length: 144 97 12:38:31,5204235 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{A520A1A4-1780-4FF6-BD18-167343C5AF16}\Icon NAME NOT FOUND Length: 144 97 12:38:31,5204338 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{A520A1A4-1780-4FF6-BD18-167343C5AF16}\Security SUCCESS Type: REG_SZ, Length: 40, Data: S:(ML;OICI;NW;;;LW) 97 12:38:31,5204459 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{A520A1A4-1780-4FF6-BD18-167343C5AF16}\StreamResource NAME NOT FOUND Length: 144 97 12:38:31,5204565 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{A520A1A4-1780-4FF6-BD18-167343C5AF16}\StreamResourceType NAME NOT FOUND Length: 144 97 12:38:31,5204670 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{A520A1A4-1780-4FF6-BD18-167343C5AF16}\LocalRedirectOnly SUCCESS Type: REG_DWORD, Length: 4, Data: 1 97 12:38:31,5204784 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{A520A1A4-1780-4FF6-BD18-167343C5AF16}\Roamable NAME NOT FOUND Length: 144 97 12:38:31,5204889 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{A520A1A4-1780-4FF6-BD18-167343C5AF16}\PreCreate SUCCESS Type: REG_DWORD, Length: 4, Data: 1 97 12:38:31,5205005 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{A520A1A4-1780-4FF6-BD18-167343C5AF16}\Stream NAME NOT FOUND Length: 144 97 12:38:31,5205108 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{A520A1A4-1780-4FF6-BD18-167343C5AF16}\PublishExpandedPath SUCCESS Type: REG_DWORD, Length: 4, Data: 1 97 12:38:31,5205227 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{A520A1A4-1780-4FF6-BD18-167343C5AF16}\DefinitionFlags NAME NOT FOUND Length: 144 97 12:38:31,5205332 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{A520A1A4-1780-4FF6-BD18-167343C5AF16}\Attributes SUCCESS Type: REG_DWORD, Length: 4, Data: 8192 97 12:38:31,5205446 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{A520A1A4-1780-4FF6-BD18-167343C5AF16}\FolderTypeID NAME NOT FOUND Length: 144 97 12:38:31,5205551 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{A520A1A4-1780-4FF6-BD18-167343C5AF16}\InitFolderHandler NAME NOT FOUND Length: 144 97 12:38:31,5205684 MCLauncher.exe 84 RegQueryKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{A520A1A4-1780-4FF6-BD18-167343C5AF16} SUCCESS Query: HandleTags, HandleTags: 0x400 97 12:38:31,5205864 MCLauncher.exe 84 RegOpenKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{A520A1A4-1780-4FF6-BD18-167343C5AF16}\PropertyBag NAME NOT FOUND Desired Access: Read 97 12:38:31,5206039 MCLauncher.exe 84 RegCloseKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{A520A1A4-1780-4FF6-BD18-167343C5AF16} SUCCESS 97 12:38:31,5206177 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:31,5206233 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: Name 97 12:38:31,5206327 MCLauncher.exe 84 RegOpenKey HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS Desired Access: Read 97 12:38:31,5206407 MCLauncher.exe 84 RegSetInfoKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 97 12:38:31,5206471 MCLauncher.exe 84 RegQueryKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS Query: HandleTags, HandleTags: 0x400 97 12:38:31,5206524 MCLauncher.exe 84 RegOpenKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{AAA8D5A5-F1D6-4259-BAA8-78E7EF60835E} SUCCESS Desired Access: Read 97 12:38:31,5206598 MCLauncher.exe 84 RegCloseKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS 97 12:38:31,5206648 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{AAA8D5A5-F1D6-4259-BAA8-78E7EF60835E}\Category SUCCESS Type: REG_DWORD, Length: 4, Data: 4 97 12:38:31,5206781 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{AAA8D5A5-F1D6-4259-BAA8-78E7EF60835E}\Name SUCCESS Type: REG_SZ, Length: 38, Data: Roamed Tile Images 97 12:38:31,5206917 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{AAA8D5A5-F1D6-4259-BAA8-78E7EF60835E}\ParentFolder SUCCESS Type: REG_SZ, Length: 78, Data: {F1B32785-6FBA-4FCF-9D55-7B8E7F157091} 97 12:38:31,5207042 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{AAA8D5A5-F1D6-4259-BAA8-78E7EF60835E}\Description NAME NOT FOUND Length: 144 97 12:38:31,5207147 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{AAA8D5A5-F1D6-4259-BAA8-78E7EF60835E}\RelativePath SUCCESS Type: REG_SZ, Length: 70, Data: Microsoft\Windows\RoamedTileImages 97 12:38:31,5207269 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{AAA8D5A5-F1D6-4259-BAA8-78E7EF60835E}\ParsingName NAME NOT FOUND Length: 144 97 12:38:31,5207374 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{AAA8D5A5-F1D6-4259-BAA8-78E7EF60835E}\InfoTip NAME NOT FOUND Length: 144 97 12:38:31,5207477 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{AAA8D5A5-F1D6-4259-BAA8-78E7EF60835E}\LocalizedName NAME NOT FOUND Length: 144 97 12:38:31,5207576 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{AAA8D5A5-F1D6-4259-BAA8-78E7EF60835E}\Icon NAME NOT FOUND Length: 144 97 12:38:31,5207679 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{AAA8D5A5-F1D6-4259-BAA8-78E7EF60835E}\Security NAME NOT FOUND Length: 144 97 12:38:31,5207781 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{AAA8D5A5-F1D6-4259-BAA8-78E7EF60835E}\StreamResource NAME NOT FOUND Length: 144 97 12:38:31,5207884 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{AAA8D5A5-F1D6-4259-BAA8-78E7EF60835E}\StreamResourceType NAME NOT FOUND Length: 144 97 12:38:31,5207984 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{AAA8D5A5-F1D6-4259-BAA8-78E7EF60835E}\LocalRedirectOnly NAME NOT FOUND Length: 144 97 12:38:31,5208083 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{AAA8D5A5-F1D6-4259-BAA8-78E7EF60835E}\Roamable NAME NOT FOUND Length: 144 97 12:38:31,5208183 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{AAA8D5A5-F1D6-4259-BAA8-78E7EF60835E}\PreCreate NAME NOT FOUND Length: 144 97 12:38:31,5208286 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{AAA8D5A5-F1D6-4259-BAA8-78E7EF60835E}\Stream NAME NOT FOUND Length: 144 97 12:38:31,5208388 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{AAA8D5A5-F1D6-4259-BAA8-78E7EF60835E}\PublishExpandedPath NAME NOT FOUND Length: 144 97 12:38:31,5208488 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{AAA8D5A5-F1D6-4259-BAA8-78E7EF60835E}\DefinitionFlags NAME NOT FOUND Length: 144 97 12:38:31,5208590 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{AAA8D5A5-F1D6-4259-BAA8-78E7EF60835E}\Attributes NAME NOT FOUND Length: 144 97 12:38:31,5208690 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{AAA8D5A5-F1D6-4259-BAA8-78E7EF60835E}\FolderTypeID NAME NOT FOUND Length: 144 97 12:38:31,5208793 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{AAA8D5A5-F1D6-4259-BAA8-78E7EF60835E}\InitFolderHandler NAME NOT FOUND Length: 144 97 12:38:31,5208926 MCLauncher.exe 84 RegQueryKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{AAA8D5A5-F1D6-4259-BAA8-78E7EF60835E} SUCCESS Query: HandleTags, HandleTags: 0x400 97 12:38:31,5208987 MCLauncher.exe 84 RegOpenKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{AAA8D5A5-F1D6-4259-BAA8-78E7EF60835E}\PropertyBag NAME NOT FOUND Desired Access: Read 97 12:38:31,5209064 MCLauncher.exe 84 RegCloseKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{AAA8D5A5-F1D6-4259-BAA8-78E7EF60835E} SUCCESS 97 12:38:31,5209156 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:31,5209205 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: Name 97 12:38:31,5209289 MCLauncher.exe 84 RegOpenKey HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS Desired Access: Read 97 12:38:31,5209363 MCLauncher.exe 84 RegSetInfoKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 97 12:38:31,5209424 MCLauncher.exe 84 RegQueryKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS Query: HandleTags, HandleTags: 0x400 97 12:38:31,5209474 MCLauncher.exe 84 RegOpenKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{B88F4DAA-E7BD-49A9-B74D-02885A5DC765} SUCCESS Desired Access: Read 97 12:38:31,5209549 MCLauncher.exe 84 RegCloseKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS 97 12:38:31,5209591 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{B88F4DAA-E7BD-49a9-B74D-02885A5DC765}\Category SUCCESS Type: REG_DWORD, Length: 4, Data: 2 97 12:38:31,5209718 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{B88F4DAA-E7BD-49a9-B74D-02885A5DC765}\Name SUCCESS Type: REG_SZ, Length: 22, Data: CryptoKeys 97 12:38:31,5209851 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{B88F4DAA-E7BD-49a9-B74D-02885A5DC765}\ParentFolder NAME NOT FOUND Length: 144 97 12:38:31,5209956 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{B88F4DAA-E7BD-49a9-B74D-02885A5DC765}\Description NAME NOT FOUND Length: 144 97 12:38:31,5210059 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{B88F4DAA-E7BD-49a9-B74D-02885A5DC765}\RelativePath NAME NOT FOUND Length: 144 97 12:38:31,5210159 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{B88F4DAA-E7BD-49a9-B74D-02885A5DC765}\ParsingName NAME NOT FOUND Length: 144 97 12:38:31,5210261 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{B88F4DAA-E7BD-49a9-B74D-02885A5DC765}\InfoTip NAME NOT FOUND Length: 144 97 12:38:31,5210364 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{B88F4DAA-E7BD-49a9-B74D-02885A5DC765}\LocalizedName NAME NOT FOUND Length: 144 97 12:38:31,5210463 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{B88F4DAA-E7BD-49a9-B74D-02885A5DC765}\Icon NAME NOT FOUND Length: 144 97 12:38:31,5210563 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{B88F4DAA-E7BD-49a9-B74D-02885A5DC765}\Security NAME NOT FOUND Length: 144 97 12:38:31,5210666 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{B88F4DAA-E7BD-49a9-B74D-02885A5DC765}\StreamResource NAME NOT FOUND Length: 144 97 12:38:31,5210765 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{B88F4DAA-E7BD-49a9-B74D-02885A5DC765}\StreamResourceType NAME NOT FOUND Length: 144 97 12:38:31,5210871 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{B88F4DAA-E7BD-49a9-B74D-02885A5DC765}\LocalRedirectOnly NAME NOT FOUND Length: 144 97 12:38:31,5210970 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{B88F4DAA-E7BD-49a9-B74D-02885A5DC765}\Roamable NAME NOT FOUND Length: 144 97 12:38:31,5211070 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{B88F4DAA-E7BD-49a9-B74D-02885A5DC765}\PreCreate NAME NOT FOUND Length: 144 97 12:38:31,5211170 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{B88F4DAA-E7BD-49a9-B74D-02885A5DC765}\Stream NAME NOT FOUND Length: 144 97 12:38:31,5211308 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{B88F4DAA-E7BD-49a9-B74D-02885A5DC765}\PublishExpandedPath NAME NOT FOUND Length: 144 97 12:38:31,5211411 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{B88F4DAA-E7BD-49a9-B74D-02885A5DC765}\DefinitionFlags NAME NOT FOUND Length: 144 97 12:38:31,5211513 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{B88F4DAA-E7BD-49a9-B74D-02885A5DC765}\Attributes NAME NOT FOUND Length: 144 97 12:38:31,5211613 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{B88F4DAA-E7BD-49a9-B74D-02885A5DC765}\FolderTypeID NAME NOT FOUND Length: 144 97 12:38:31,5211716 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{B88F4DAA-E7BD-49a9-B74D-02885A5DC765}\InitFolderHandler NAME NOT FOUND Length: 144 97 12:38:31,5211849 MCLauncher.exe 84 RegQueryKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{B88F4DAA-E7BD-49a9-B74D-02885A5DC765} SUCCESS Query: HandleTags, HandleTags: 0x400 97 12:38:31,5211910 MCLauncher.exe 84 RegOpenKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{B88F4DAA-E7BD-49a9-B74D-02885A5DC765}\PropertyBag NAME NOT FOUND Desired Access: Read 97 12:38:31,5211990 MCLauncher.exe 84 RegCloseKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{B88F4DAA-E7BD-49a9-B74D-02885A5DC765} SUCCESS 97 12:38:31,5212076 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:31,5212123 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: Name 97 12:38:31,5212206 MCLauncher.exe 84 RegOpenKey HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS Desired Access: Read 97 12:38:31,5212278 MCLauncher.exe 84 RegSetInfoKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 97 12:38:31,5212339 MCLauncher.exe 84 RegQueryKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS Query: HandleTags, HandleTags: 0x400 97 12:38:31,5212389 MCLauncher.exe 84 RegOpenKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{2C36C0AA-5812-4B87-BFD0-4CD0DFB19B39} SUCCESS Desired Access: Read 97 12:38:31,5212458 MCLauncher.exe 84 RegCloseKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS 97 12:38:31,5212502 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{2C36C0AA-5812-4b87-BFD0-4CD0DFB19B39}\Category SUCCESS Type: REG_DWORD, Length: 4, Data: 4 97 12:38:31,5212633 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{2C36C0AA-5812-4b87-BFD0-4CD0DFB19B39}\Name SUCCESS Type: REG_SZ, Length: 32, Data: Original Images 97 12:38:31,5212760 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{2C36C0AA-5812-4b87-BFD0-4CD0DFB19B39}\ParentFolder SUCCESS Type: REG_SZ, Length: 78, Data: {F1B32785-6FBA-4FCF-9D55-7B8E7F157091} 97 12:38:31,5212885 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{2C36C0AA-5812-4b87-BFD0-4CD0DFB19B39}\Description NAME NOT FOUND Length: 144 97 12:38:31,5212987 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{2C36C0AA-5812-4b87-BFD0-4CD0DFB19B39}\RelativePath SUCCESS Type: REG_SZ, Length: 96, Data: Microsoft\Windows Photo Gallery\Original Images 97 12:38:31,5213112 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{2C36C0AA-5812-4b87-BFD0-4CD0DFB19B39}\ParsingName NAME NOT FOUND Length: 144 97 12:38:31,5213217 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{2C36C0AA-5812-4b87-BFD0-4CD0DFB19B39}\InfoTip NAME NOT FOUND Length: 144 97 12:38:31,5213317 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{2C36C0AA-5812-4b87-BFD0-4CD0DFB19B39}\LocalizedName NAME NOT FOUND Length: 144 97 12:38:31,5213419 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{2C36C0AA-5812-4b87-BFD0-4CD0DFB19B39}\Icon NAME NOT FOUND Length: 144 97 12:38:31,5213522 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{2C36C0AA-5812-4b87-BFD0-4CD0DFB19B39}\Security NAME NOT FOUND Length: 144 97 12:38:31,5213625 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{2C36C0AA-5812-4b87-BFD0-4CD0DFB19B39}\StreamResource NAME NOT FOUND Length: 144 97 12:38:31,5213724 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{2C36C0AA-5812-4b87-BFD0-4CD0DFB19B39}\StreamResourceType NAME NOT FOUND Length: 144 97 12:38:31,5213827 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{2C36C0AA-5812-4b87-BFD0-4CD0DFB19B39}\LocalRedirectOnly NAME NOT FOUND Length: 144 97 12:38:31,5213927 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{2C36C0AA-5812-4b87-BFD0-4CD0DFB19B39}\Roamable NAME NOT FOUND Length: 144 97 12:38:31,5214029 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{2C36C0AA-5812-4b87-BFD0-4CD0DFB19B39}\PreCreate NAME NOT FOUND Length: 144 97 12:38:31,5214129 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{2C36C0AA-5812-4b87-BFD0-4CD0DFB19B39}\Stream NAME NOT FOUND Length: 144 97 12:38:31,5214231 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{2C36C0AA-5812-4b87-BFD0-4CD0DFB19B39}\PublishExpandedPath NAME NOT FOUND Length: 144 97 12:38:31,5214334 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{2C36C0AA-5812-4b87-BFD0-4CD0DFB19B39}\DefinitionFlags NAME NOT FOUND Length: 144 97 12:38:31,5214434 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{2C36C0AA-5812-4b87-BFD0-4CD0DFB19B39}\Attributes NAME NOT FOUND Length: 144 97 12:38:31,5214533 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{2C36C0AA-5812-4b87-BFD0-4CD0DFB19B39}\FolderTypeID NAME NOT FOUND Length: 144 97 12:38:31,5214666 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{2C36C0AA-5812-4b87-BFD0-4CD0DFB19B39}\InitFolderHandler NAME NOT FOUND Length: 144 97 12:38:31,5214802 MCLauncher.exe 84 RegQueryKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{2C36C0AA-5812-4b87-BFD0-4CD0DFB19B39} SUCCESS Query: HandleTags, HandleTags: 0x400 97 12:38:31,5214863 MCLauncher.exe 84 RegOpenKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{2C36C0AA-5812-4b87-BFD0-4CD0DFB19B39}\PropertyBag NAME NOT FOUND Desired Access: Read 97 12:38:31,5214938 MCLauncher.exe 84 RegCloseKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{2C36C0AA-5812-4b87-BFD0-4CD0DFB19B39} SUCCESS 97 12:38:31,5215029 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:31,5215079 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: Name 97 12:38:31,5215159 MCLauncher.exe 84 RegOpenKey HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS Desired Access: Read 97 12:38:31,5215234 MCLauncher.exe 84 RegSetInfoKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 97 12:38:31,5215295 MCLauncher.exe 84 RegQueryKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS Query: HandleTags, HandleTags: 0x400 97 12:38:31,5215345 MCLauncher.exe 84 RegOpenKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{9E3995AB-1F9C-4F13-B827-48B24B6C7174} SUCCESS Desired Access: Read 97 12:38:31,5215417 MCLauncher.exe 84 RegCloseKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS 97 12:38:31,5215459 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{9e3995ab-1f9c-4f13-b827-48b24b6c7174}\Category SUCCESS Type: REG_DWORD, Length: 4, Data: 4 97 12:38:31,5215705 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{9e3995ab-1f9c-4f13-b827-48b24b6c7174}\Name SUCCESS Type: REG_SZ, Length: 24, Data: User Pinned 97 12:38:31,5215844 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{9e3995ab-1f9c-4f13-b827-48b24b6c7174}\ParentFolder SUCCESS Type: REG_SZ, Length: 78, Data: {52a4f021-7b75-48a9-9f6b-4b87a210bc8f} 97 12:38:31,5215971 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{9e3995ab-1f9c-4f13-b827-48b24b6c7174}\Description NAME NOT FOUND Length: 144 97 12:38:31,5216076 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{9e3995ab-1f9c-4f13-b827-48b24b6c7174}\RelativePath SUCCESS Type: REG_SZ, Length: 24, Data: User Pinned 97 12:38:31,5216198 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{9e3995ab-1f9c-4f13-b827-48b24b6c7174}\ParsingName NAME NOT FOUND Length: 144 97 12:38:31,5216304 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{9e3995ab-1f9c-4f13-b827-48b24b6c7174}\InfoTip NAME NOT FOUND Length: 144 97 12:38:31,5216406 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{9e3995ab-1f9c-4f13-b827-48b24b6c7174}\LocalizedName NAME NOT FOUND Length: 144 97 12:38:31,5216509 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{9e3995ab-1f9c-4f13-b827-48b24b6c7174}\Icon NAME NOT FOUND Length: 144 97 12:38:31,5216639 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{9e3995ab-1f9c-4f13-b827-48b24b6c7174}\Security NAME NOT FOUND Length: 144 97 12:38:31,5216744 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{9e3995ab-1f9c-4f13-b827-48b24b6c7174}\StreamResource NAME NOT FOUND Length: 144 97 12:38:31,5216847 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{9e3995ab-1f9c-4f13-b827-48b24b6c7174}\StreamResourceType NAME NOT FOUND Length: 144 97 12:38:31,5216946 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{9e3995ab-1f9c-4f13-b827-48b24b6c7174}\LocalRedirectOnly NAME NOT FOUND Length: 144 97 12:38:31,5217049 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{9e3995ab-1f9c-4f13-b827-48b24b6c7174}\Roamable NAME NOT FOUND Length: 144 97 12:38:31,5217151 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{9e3995ab-1f9c-4f13-b827-48b24b6c7174}\PreCreate SUCCESS Type: REG_DWORD, Length: 4, Data: 1 97 12:38:31,5217268 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{9e3995ab-1f9c-4f13-b827-48b24b6c7174}\Stream NAME NOT FOUND Length: 144 97 12:38:31,5217370 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{9e3995ab-1f9c-4f13-b827-48b24b6c7174}\PublishExpandedPath NAME NOT FOUND Length: 144 97 12:38:31,5217473 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{9e3995ab-1f9c-4f13-b827-48b24b6c7174}\DefinitionFlags NAME NOT FOUND Length: 144 97 12:38:31,5217575 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{9e3995ab-1f9c-4f13-b827-48b24b6c7174}\Attributes SUCCESS Type: REG_DWORD, Length: 4, Data: 2 97 12:38:31,5217692 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{9e3995ab-1f9c-4f13-b827-48b24b6c7174}\FolderTypeID NAME NOT FOUND Length: 144 97 12:38:31,5217794 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{9e3995ab-1f9c-4f13-b827-48b24b6c7174}\InitFolderHandler NAME NOT FOUND Length: 144 97 12:38:31,5217930 MCLauncher.exe 84 RegQueryKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{9e3995ab-1f9c-4f13-b827-48b24b6c7174} SUCCESS Query: HandleTags, HandleTags: 0x400 97 12:38:31,5217994 MCLauncher.exe 84 RegOpenKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{9e3995ab-1f9c-4f13-b827-48b24b6c7174}\PropertyBag NAME NOT FOUND Desired Access: Read 97 12:38:31,5218077 MCLauncher.exe 84 RegCloseKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{9e3995ab-1f9c-4f13-b827-48b24b6c7174} SUCCESS 97 12:38:31,5218168 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:31,5218218 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: Name 97 12:38:31,5218298 MCLauncher.exe 84 RegOpenKey HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS Desired Access: Read 97 12:38:31,5218373 MCLauncher.exe 84 RegSetInfoKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 97 12:38:31,5218434 MCLauncher.exe 84 RegQueryKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS Query: HandleTags, HandleTags: 0x400 97 12:38:31,5218484 MCLauncher.exe 84 RegOpenKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{DF7266AC-9274-4867-8D55-3BD661DE872D} SUCCESS Desired Access: Read 97 12:38:31,5218556 MCLauncher.exe 84 RegCloseKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS 97 12:38:31,5218600 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{df7266ac-9274-4867-8d55-3bd661de872d}\Category SUCCESS Type: REG_DWORD, Length: 4, Data: 1 97 12:38:31,5218728 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{df7266ac-9274-4867-8d55-3bd661de872d}\Name SUCCESS Type: REG_SZ, Length: 54, Data: ChangeRemoveProgramsFolder 97 12:38:31,5218855 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{df7266ac-9274-4867-8d55-3bd661de872d}\ParentFolder NAME NOT FOUND Length: 144 97 12:38:31,5218963 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{df7266ac-9274-4867-8d55-3bd661de872d}\Description NAME NOT FOUND Length: 144 97 12:38:31,5219066 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{df7266ac-9274-4867-8d55-3bd661de872d}\RelativePath NAME NOT FOUND Length: 144 97 12:38:31,5219166 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{df7266ac-9274-4867-8d55-3bd661de872d}\ParsingName BUFFER OVERFLOW Length: 144 97 12:38:31,5219271 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{df7266ac-9274-4867-8d55-3bd661de872d}\ParsingName SUCCESS Type: REG_SZ, Length: 168, Data: ::{26EE0668-A00A-44D7-9371-BEB064C98683}\0\::{7b81be6a-ce2b-4676-a29e-eb907a5126c5} 97 12:38:31,5219396 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{df7266ac-9274-4867-8d55-3bd661de872d}\InfoTip NAME NOT FOUND Length: 144 97 12:38:31,5219498 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{df7266ac-9274-4867-8d55-3bd661de872d}\LocalizedName NAME NOT FOUND Length: 144 97 12:38:31,5219601 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{df7266ac-9274-4867-8d55-3bd661de872d}\Icon NAME NOT FOUND Length: 144 97 12:38:31,5219703 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{df7266ac-9274-4867-8d55-3bd661de872d}\Security NAME NOT FOUND Length: 144 97 12:38:31,5219803 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{df7266ac-9274-4867-8d55-3bd661de872d}\StreamResource NAME NOT FOUND Length: 144 97 12:38:31,5219903 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{df7266ac-9274-4867-8d55-3bd661de872d}\StreamResourceType NAME NOT FOUND Length: 144 97 12:38:31,5220005 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{df7266ac-9274-4867-8d55-3bd661de872d}\LocalRedirectOnly NAME NOT FOUND Length: 144 97 12:38:31,5220105 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{df7266ac-9274-4867-8d55-3bd661de872d}\Roamable NAME NOT FOUND Length: 144 97 12:38:31,5220207 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{df7266ac-9274-4867-8d55-3bd661de872d}\PreCreate NAME NOT FOUND Length: 144 97 12:38:31,5220307 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{df7266ac-9274-4867-8d55-3bd661de872d}\Stream NAME NOT FOUND Length: 144 97 12:38:31,5220410 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{df7266ac-9274-4867-8d55-3bd661de872d}\PublishExpandedPath NAME NOT FOUND Length: 144 97 12:38:31,5220509 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{df7266ac-9274-4867-8d55-3bd661de872d}\DefinitionFlags NAME NOT FOUND Length: 144 97 12:38:31,5220609 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{df7266ac-9274-4867-8d55-3bd661de872d}\Attributes NAME NOT FOUND Length: 144 97 12:38:31,5220712 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{df7266ac-9274-4867-8d55-3bd661de872d}\FolderTypeID NAME NOT FOUND Length: 144 97 12:38:31,5220811 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{df7266ac-9274-4867-8d55-3bd661de872d}\InitFolderHandler NAME NOT FOUND Length: 144 97 12:38:31,5220944 MCLauncher.exe 84 RegQueryKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{df7266ac-9274-4867-8d55-3bd661de872d} SUCCESS Query: HandleTags, HandleTags: 0x400 97 12:38:31,5221005 MCLauncher.exe 84 RegOpenKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{df7266ac-9274-4867-8d55-3bd661de872d}\PropertyBag NAME NOT FOUND Desired Access: Read 97 12:38:31,5221080 MCLauncher.exe 84 RegCloseKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{df7266ac-9274-4867-8d55-3bd661de872d} SUCCESS 97 12:38:31,5221172 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:31,5221219 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: Name 97 12:38:31,5221302 MCLauncher.exe 84 RegOpenKey HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS Desired Access: Read 97 12:38:31,5221374 MCLauncher.exe 84 RegSetInfoKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 97 12:38:31,5221432 MCLauncher.exe 84 RegQueryKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS Query: HandleTags, HandleTags: 0x400 97 12:38:31,5221485 MCLauncher.exe 84 RegOpenKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{ED4824AF-DCE4-45A8-81E2-FC7965083634} SUCCESS Desired Access: Read 97 12:38:31,5221557 MCLauncher.exe 84 RegCloseKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS 97 12:38:31,5221601 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{ED4824AF-DCE4-45A8-81E2-FC7965083634}\Category SUCCESS Type: REG_DWORD, Length: 4, Data: 3 97 12:38:31,5221728 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{ED4824AF-DCE4-45A8-81E2-FC7965083634}\Name SUCCESS Type: REG_SZ, Length: 34, Data: Common Documents 97 12:38:31,5221886 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{ED4824AF-DCE4-45A8-81E2-FC7965083634}\ParentFolder SUCCESS Type: REG_SZ, Length: 78, Data: {DFDF76A2-C82A-4D63-906A-5644AC457385} 97 12:38:31,5222011 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{ED4824AF-DCE4-45A8-81E2-FC7965083634}\Description NAME NOT FOUND Length: 144 97 12:38:31,5222116 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{ED4824AF-DCE4-45A8-81E2-FC7965083634}\RelativePath SUCCESS Type: REG_SZ, Length: 20, Data: Documents 97 12:38:31,5222235 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{ED4824AF-DCE4-45A8-81E2-FC7965083634}\ParsingName NAME NOT FOUND Length: 144 97 12:38:31,5222341 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{ED4824AF-DCE4-45A8-81E2-FC7965083634}\InfoTip NAME NOT FOUND Length: 144 97 12:38:31,5222440 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{ED4824AF-DCE4-45A8-81E2-FC7965083634}\LocalizedName SUCCESS Type: REG_EXPAND_SZ, Length: 84, Data: @%SystemRoot%\system32\shell32.dll,-21801 97 12:38:31,5222562 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{ED4824AF-DCE4-45A8-81E2-FC7965083634}\Icon SUCCESS Type: REG_EXPAND_SZ, Length: 76, Data: %SystemRoot%\system32\imageres.dll,-3 97 12:38:31,5222684 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{ED4824AF-DCE4-45A8-81E2-FC7965083634}\Security NAME NOT FOUND Length: 144 97 12:38:31,5222787 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{ED4824AF-DCE4-45A8-81E2-FC7965083634}\StreamResource NAME NOT FOUND Length: 144 97 12:38:31,5222889 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{ED4824AF-DCE4-45A8-81E2-FC7965083634}\StreamResourceType NAME NOT FOUND Length: 144 97 12:38:31,5222992 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{ED4824AF-DCE4-45A8-81E2-FC7965083634}\LocalRedirectOnly NAME NOT FOUND Length: 144 97 12:38:31,5223094 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{ED4824AF-DCE4-45A8-81E2-FC7965083634}\Roamable NAME NOT FOUND Length: 144 97 12:38:31,5223194 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{ED4824AF-DCE4-45A8-81E2-FC7965083634}\PreCreate SUCCESS Type: REG_DWORD, Length: 4, Data: 1 97 12:38:31,5223308 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{ED4824AF-DCE4-45A8-81E2-FC7965083634}\Stream NAME NOT FOUND Length: 144 97 12:38:31,5223410 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{ED4824AF-DCE4-45A8-81E2-FC7965083634}\PublishExpandedPath NAME NOT FOUND Length: 144 97 12:38:31,5223513 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{ED4824AF-DCE4-45A8-81E2-FC7965083634}\DefinitionFlags NAME NOT FOUND Length: 144 97 12:38:31,5223612 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{ED4824AF-DCE4-45A8-81E2-FC7965083634}\Attributes SUCCESS Type: REG_DWORD, Length: 4, Data: 1 97 12:38:31,5223726 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{ED4824AF-DCE4-45A8-81E2-FC7965083634}\FolderTypeID NAME NOT FOUND Length: 144 97 12:38:31,5223831 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{ED4824AF-DCE4-45A8-81E2-FC7965083634}\InitFolderHandler NAME NOT FOUND Length: 144 97 12:38:31,5223961 MCLauncher.exe 84 RegQueryKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{ED4824AF-DCE4-45A8-81E2-FC7965083634} SUCCESS Query: HandleTags, HandleTags: 0x400 97 12:38:31,5224022 MCLauncher.exe 84 RegOpenKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{ED4824AF-DCE4-45A8-81E2-FC7965083634}\PropertyBag SUCCESS Desired Access: Read 97 12:38:31,5224106 MCLauncher.exe 84 RegCloseKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{ED4824AF-DCE4-45A8-81E2-FC7965083634} SUCCESS 97 12:38:31,5224197 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:31,5224244 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: Name 97 12:38:31,5224324 MCLauncher.exe 84 RegOpenKey HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS Desired Access: Read 97 12:38:31,5224396 MCLauncher.exe 84 RegSetInfoKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 97 12:38:31,5224455 MCLauncher.exe 84 RegQueryKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS Query: HandleTags, HandleTags: 0x400 97 12:38:31,5224507 MCLauncher.exe 84 RegOpenKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{D65231B0-B2F1-4857-A4CE-A8E7C6EA7D27} SUCCESS Desired Access: Read 97 12:38:31,5224585 MCLauncher.exe 84 RegCloseKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS 97 12:38:31,5224629 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{D65231B0-B2F1-4857-A4CE-A8E7C6EA7D27}\Category SUCCESS Type: REG_DWORD, Length: 4, Data: 2 97 12:38:31,5224757 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{D65231B0-B2F1-4857-A4CE-A8E7C6EA7D27}\Name SUCCESS Type: REG_SZ, Length: 20, Data: SystemX86 97 12:38:31,5224884 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{D65231B0-B2F1-4857-A4CE-A8E7C6EA7D27}\ParentFolder NAME NOT FOUND Length: 144 97 12:38:31,5224992 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{D65231B0-B2F1-4857-A4CE-A8E7C6EA7D27}\Description NAME NOT FOUND Length: 144 97 12:38:31,5225095 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{D65231B0-B2F1-4857-A4CE-A8E7C6EA7D27}\RelativePath NAME NOT FOUND Length: 144 97 12:38:31,5225194 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{D65231B0-B2F1-4857-A4CE-A8E7C6EA7D27}\ParsingName NAME NOT FOUND Length: 144 97 12:38:31,5225391 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{D65231B0-B2F1-4857-A4CE-A8E7C6EA7D27}\InfoTip NAME NOT FOUND Length: 144 97 12:38:31,5225507 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{D65231B0-B2F1-4857-A4CE-A8E7C6EA7D27}\LocalizedName NAME NOT FOUND Length: 144 97 12:38:31,5225610 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{D65231B0-B2F1-4857-A4CE-A8E7C6EA7D27}\Icon NAME NOT FOUND Length: 144 97 12:38:31,5225710 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{D65231B0-B2F1-4857-A4CE-A8E7C6EA7D27}\Security NAME NOT FOUND Length: 144 97 12:38:31,5225812 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{D65231B0-B2F1-4857-A4CE-A8E7C6EA7D27}\StreamResource NAME NOT FOUND Length: 144 97 12:38:31,5225915 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{D65231B0-B2F1-4857-A4CE-A8E7C6EA7D27}\StreamResourceType NAME NOT FOUND Length: 144 97 12:38:31,5226017 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{D65231B0-B2F1-4857-A4CE-A8E7C6EA7D27}\LocalRedirectOnly NAME NOT FOUND Length: 144 97 12:38:31,5226117 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{D65231B0-B2F1-4857-A4CE-A8E7C6EA7D27}\Roamable NAME NOT FOUND Length: 144 97 12:38:31,5226217 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{D65231B0-B2F1-4857-A4CE-A8E7C6EA7D27}\PreCreate NAME NOT FOUND Length: 144 97 12:38:31,5226319 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{D65231B0-B2F1-4857-A4CE-A8E7C6EA7D27}\Stream NAME NOT FOUND Length: 144 97 12:38:31,5226419 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{D65231B0-B2F1-4857-A4CE-A8E7C6EA7D27}\PublishExpandedPath NAME NOT FOUND Length: 144 97 12:38:31,5226521 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{D65231B0-B2F1-4857-A4CE-A8E7C6EA7D27}\DefinitionFlags NAME NOT FOUND Length: 144 97 12:38:31,5226624 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{D65231B0-B2F1-4857-A4CE-A8E7C6EA7D27}\Attributes NAME NOT FOUND Length: 144 97 12:38:31,5226724 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{D65231B0-B2F1-4857-A4CE-A8E7C6EA7D27}\FolderTypeID NAME NOT FOUND Length: 144 97 12:38:31,5226826 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{D65231B0-B2F1-4857-A4CE-A8E7C6EA7D27}\InitFolderHandler NAME NOT FOUND Length: 144 97 12:38:31,5226956 MCLauncher.exe 84 RegQueryKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{D65231B0-B2F1-4857-A4CE-A8E7C6EA7D27} SUCCESS Query: HandleTags, HandleTags: 0x400 97 12:38:31,5227017 MCLauncher.exe 84 RegOpenKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{D65231B0-B2F1-4857-A4CE-A8E7C6EA7D27}\PropertyBag SUCCESS Desired Access: Read 97 12:38:31,5227109 MCLauncher.exe 84 RegCloseKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{D65231B0-B2F1-4857-A4CE-A8E7C6EA7D27} SUCCESS 97 12:38:31,5227195 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:31,5227245 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: Name 97 12:38:31,5227325 MCLauncher.exe 84 RegOpenKey HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS Desired Access: Read 97 12:38:31,5227394 MCLauncher.exe 84 RegSetInfoKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 97 12:38:31,5227452 MCLauncher.exe 84 RegQueryKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS Query: HandleTags, HandleTags: 0x400 97 12:38:31,5227502 MCLauncher.exe 84 RegOpenKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{008CA0B1-55B4-4C56-B8A8-4DE4B299D3BE} SUCCESS Desired Access: Read 97 12:38:31,5227580 MCLauncher.exe 84 RegCloseKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS 97 12:38:31,5227624 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{008CA0B1-55B4-4C56-B8A8-4DE4B299D3BE}\Category SUCCESS Type: REG_DWORD, Length: 4, Data: 4 97 12:38:31,5227754 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{008CA0B1-55B4-4C56-B8A8-4DE4B299D3BE}\Name SUCCESS Type: REG_SZ, Length: 32, Data: AccountPictures 97 12:38:31,5227885 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{008CA0B1-55B4-4C56-B8A8-4DE4B299D3BE}\ParentFolder SUCCESS Type: REG_SZ, Length: 78, Data: {3EB685DB-65F9-4CF6-A03A-E3EF65729F3D} 97 12:38:31,5228009 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{008CA0B1-55B4-4C56-B8A8-4DE4B299D3BE}\Description NAME NOT FOUND Length: 144 97 12:38:31,5228115 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{008CA0B1-55B4-4C56-B8A8-4DE4B299D3BE}\RelativePath SUCCESS Type: REG_SZ, Length: 68, Data: Microsoft\Windows\AccountPictures 97 12:38:31,5228236 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{008CA0B1-55B4-4C56-B8A8-4DE4B299D3BE}\ParsingName NAME NOT FOUND Length: 144 97 12:38:31,5228342 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{008CA0B1-55B4-4C56-B8A8-4DE4B299D3BE}\InfoTip NAME NOT FOUND Length: 144 97 12:38:31,5228444 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{008CA0B1-55B4-4C56-B8A8-4DE4B299D3BE}\LocalizedName SUCCESS Type: REG_SZ, Length: 106, Data: @C:\Windows\SysWOW64\Windows.UI.Immersive.dll,-38305 97 12:38:31,5228566 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{008CA0B1-55B4-4C56-B8A8-4DE4B299D3BE}\Icon NAME NOT FOUND Length: 144 97 12:38:31,5228671 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{008CA0B1-55B4-4C56-B8A8-4DE4B299D3BE}\Security NAME NOT FOUND Length: 144 97 12:38:31,5228774 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{008CA0B1-55B4-4C56-B8A8-4DE4B299D3BE}\StreamResource NAME NOT FOUND Length: 144 97 12:38:31,5228876 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{008CA0B1-55B4-4C56-B8A8-4DE4B299D3BE}\StreamResourceType NAME NOT FOUND Length: 144 97 12:38:31,5228979 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{008CA0B1-55B4-4C56-B8A8-4DE4B299D3BE}\LocalRedirectOnly NAME NOT FOUND Length: 144 97 12:38:31,5229079 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{008CA0B1-55B4-4C56-B8A8-4DE4B299D3BE}\Roamable SUCCESS Type: REG_DWORD, Length: 4, Data: 1 97 12:38:31,5229195 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{008CA0B1-55B4-4C56-B8A8-4DE4B299D3BE}\PreCreate SUCCESS Type: REG_DWORD, Length: 4, Data: 1 97 12:38:31,5229336 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{008CA0B1-55B4-4C56-B8A8-4DE4B299D3BE}\Stream NAME NOT FOUND Length: 144 97 12:38:31,5229442 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{008CA0B1-55B4-4C56-B8A8-4DE4B299D3BE}\PublishExpandedPath NAME NOT FOUND Length: 144 97 12:38:31,5229544 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{008CA0B1-55B4-4C56-B8A8-4DE4B299D3BE}\DefinitionFlags NAME NOT FOUND Length: 144 97 12:38:31,5229647 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{008CA0B1-55B4-4C56-B8A8-4DE4B299D3BE}\Attributes SUCCESS Type: REG_DWORD, Length: 4, Data: 1 97 12:38:31,5229760 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{008CA0B1-55B4-4C56-B8A8-4DE4B299D3BE}\FolderTypeID NAME NOT FOUND Length: 144 97 12:38:31,5229863 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{008CA0B1-55B4-4C56-B8A8-4DE4B299D3BE}\InitFolderHandler NAME NOT FOUND Length: 144 97 12:38:31,5229996 MCLauncher.exe 84 RegQueryKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{008CA0B1-55B4-4C56-B8A8-4DE4B299D3BE} SUCCESS Query: HandleTags, HandleTags: 0x400 97 12:38:31,5230057 MCLauncher.exe 84 RegOpenKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{008CA0B1-55B4-4C56-B8A8-4DE4B299D3BE}\PropertyBag NAME NOT FOUND Desired Access: Read 97 12:38:31,5230151 MCLauncher.exe 84 RegCloseKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{008CA0B1-55B4-4C56-B8A8-4DE4B299D3BE} SUCCESS 97 12:38:31,5230240 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:31,5230287 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: Name 97 12:38:31,5230370 MCLauncher.exe 84 RegOpenKey HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS Desired Access: Read 97 12:38:31,5230442 MCLauncher.exe 84 RegSetInfoKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 97 12:38:31,5230503 MCLauncher.exe 84 RegQueryKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS Query: HandleTags, HandleTags: 0x400 97 12:38:31,5230553 MCLauncher.exe 84 RegOpenKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{339719B5-8C47-4894-94C2-D8F77ADD44A6} SUCCESS Desired Access: Read 97 12:38:31,5230625 MCLauncher.exe 84 RegCloseKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS 97 12:38:31,5230669 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{339719B5-8C47-4894-94C2-D8F77ADD44A6}\Category SUCCESS Type: REG_DWORD, Length: 4, Data: 4 97 12:38:31,5230796 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{339719B5-8C47-4894-94C2-D8F77ADD44A6}\Name SUCCESS Type: REG_SZ, Length: 34, Data: OneDrivePictures 97 12:38:31,5230927 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{339719B5-8C47-4894-94C2-D8F77ADD44A6}\ParentFolder SUCCESS Type: REG_SZ, Length: 78, Data: {A52BBA46-E9E1-435f-B3D9-28DAA648C0F6} 97 12:38:31,5231051 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{339719B5-8C47-4894-94C2-D8F77ADD44A6}\Description NAME NOT FOUND Length: 144 97 12:38:31,5231154 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{339719B5-8C47-4894-94C2-D8F77ADD44A6}\RelativePath SUCCESS Type: REG_SZ, Length: 18, Data: Pictures 97 12:38:31,5231279 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{339719B5-8C47-4894-94C2-D8F77ADD44A6}\ParsingName NAME NOT FOUND Length: 144 97 12:38:31,5231381 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{339719B5-8C47-4894-94C2-D8F77ADD44A6}\InfoTip NAME NOT FOUND Length: 144 97 12:38:31,5231484 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{339719B5-8C47-4894-94C2-D8F77ADD44A6}\LocalizedName NAME NOT FOUND Length: 144 97 12:38:31,5231583 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{339719B5-8C47-4894-94C2-D8F77ADD44A6}\Icon NAME NOT FOUND Length: 144 97 12:38:31,5231686 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{339719B5-8C47-4894-94C2-D8F77ADD44A6}\Security NAME NOT FOUND Length: 144 97 12:38:31,5231786 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{339719B5-8C47-4894-94C2-D8F77ADD44A6}\StreamResource NAME NOT FOUND Length: 144 97 12:38:31,5231888 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{339719B5-8C47-4894-94C2-D8F77ADD44A6}\StreamResourceType NAME NOT FOUND Length: 144 97 12:38:31,5231988 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{339719B5-8C47-4894-94C2-D8F77ADD44A6}\LocalRedirectOnly NAME NOT FOUND Length: 144 97 12:38:31,5232090 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{339719B5-8C47-4894-94C2-D8F77ADD44A6}\Roamable NAME NOT FOUND Length: 144 97 12:38:31,5232190 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{339719B5-8C47-4894-94C2-D8F77ADD44A6}\PreCreate NAME NOT FOUND Length: 144 97 12:38:31,5232293 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{339719B5-8C47-4894-94C2-D8F77ADD44A6}\Stream NAME NOT FOUND Length: 144 97 12:38:31,5232392 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{339719B5-8C47-4894-94C2-D8F77ADD44A6}\PublishExpandedPath NAME NOT FOUND Length: 144 97 12:38:31,5232495 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{339719B5-8C47-4894-94C2-D8F77ADD44A6}\DefinitionFlags SUCCESS Type: REG_DWORD, Length: 4, Data: 64 97 12:38:31,5232608 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{339719B5-8C47-4894-94C2-D8F77ADD44A6}\Attributes SUCCESS Type: REG_DWORD, Length: 4, Data: 1 97 12:38:31,5232747 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{339719B5-8C47-4894-94C2-D8F77ADD44A6}\FolderTypeID SUCCESS Type: REG_SZ, Length: 78, Data: {71D642A9-F2B1-42cd-AD92-EB9300C7CC0A} 97 12:38:31,5232872 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{339719B5-8C47-4894-94C2-D8F77ADD44A6}\InitFolderHandler NAME NOT FOUND Length: 144 97 12:38:31,5233007 MCLauncher.exe 84 RegQueryKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{339719B5-8C47-4894-94C2-D8F77ADD44A6} SUCCESS Query: HandleTags, HandleTags: 0x400 97 12:38:31,5233068 MCLauncher.exe 84 RegOpenKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{339719B5-8C47-4894-94C2-D8F77ADD44A6}\PropertyBag SUCCESS Desired Access: Read 97 12:38:31,5233151 MCLauncher.exe 84 RegCloseKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{339719B5-8C47-4894-94C2-D8F77ADD44A6} SUCCESS 97 12:38:31,5233240 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:31,5233287 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: Name 97 12:38:31,5233368 MCLauncher.exe 84 RegOpenKey HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS Desired Access: Read 97 12:38:31,5233437 MCLauncher.exe 84 RegSetInfoKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 97 12:38:31,5233498 MCLauncher.exe 84 RegQueryKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS Query: HandleTags, HandleTags: 0x400 97 12:38:31,5233548 MCLauncher.exe 84 RegOpenKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{3214FAB5-9757-4298-BB61-92A9DEAA44FF} SUCCESS Desired Access: Read 97 12:38:31,5233622 MCLauncher.exe 84 RegCloseKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS 97 12:38:31,5233664 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{3214FAB5-9757-4298-BB61-92A9DEAA44FF}\Category SUCCESS Type: REG_DWORD, Length: 4, Data: 3 97 12:38:31,5233791 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{3214FAB5-9757-4298-BB61-92A9DEAA44FF}\Name SUCCESS Type: REG_SZ, Length: 24, Data: CommonMusic 97 12:38:31,5233922 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{3214FAB5-9757-4298-BB61-92A9DEAA44FF}\ParentFolder SUCCESS Type: REG_SZ, Length: 78, Data: {DFDF76A2-C82A-4D63-906A-5644AC457385} 97 12:38:31,5234044 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{3214FAB5-9757-4298-BB61-92A9DEAA44FF}\Description NAME NOT FOUND Length: 144 97 12:38:31,5234149 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{3214FAB5-9757-4298-BB61-92A9DEAA44FF}\RelativePath SUCCESS Type: REG_SZ, Length: 12, Data: Music 97 12:38:31,5234273 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{3214FAB5-9757-4298-BB61-92A9DEAA44FF}\ParsingName NAME NOT FOUND Length: 144 97 12:38:31,5234379 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{3214FAB5-9757-4298-BB61-92A9DEAA44FF}\InfoTip SUCCESS Type: REG_EXPAND_SZ, Length: 84, Data: @%SystemRoot%\system32\shell32.dll,-12689 97 12:38:31,5234503 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{3214FAB5-9757-4298-BB61-92A9DEAA44FF}\LocalizedName SUCCESS Type: REG_EXPAND_SZ, Length: 84, Data: @%SystemRoot%\system32\shell32.dll,-21803 97 12:38:31,5234628 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{3214FAB5-9757-4298-BB61-92A9DEAA44FF}\Icon SUCCESS Type: REG_EXPAND_SZ, Length: 76, Data: %SystemRoot%\system32\imageres.dll,-3 97 12:38:31,5234750 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{3214FAB5-9757-4298-BB61-92A9DEAA44FF}\Security NAME NOT FOUND Length: 144 97 12:38:31,5235022 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{3214FAB5-9757-4298-BB61-92A9DEAA44FF}\StreamResource NAME NOT FOUND Length: 144 97 12:38:31,5295328 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{3214FAB5-9757-4298-BB61-92A9DEAA44FF}\StreamResourceType NAME NOT FOUND Length: 144 97 12:38:31,5295508 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{3214FAB5-9757-4298-BB61-92A9DEAA44FF}\LocalRedirectOnly NAME NOT FOUND Length: 144 97 12:38:31,5295625 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{3214FAB5-9757-4298-BB61-92A9DEAA44FF}\Roamable NAME NOT FOUND Length: 144 97 12:38:31,5295736 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{3214FAB5-9757-4298-BB61-92A9DEAA44FF}\PreCreate SUCCESS Type: REG_DWORD, Length: 4, Data: 1 97 12:38:31,5295860 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{3214FAB5-9757-4298-BB61-92A9DEAA44FF}\Stream NAME NOT FOUND Length: 144 97 12:38:31,5295971 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{3214FAB5-9757-4298-BB61-92A9DEAA44FF}\PublishExpandedPath NAME NOT FOUND Length: 144 97 12:38:31,5296074 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{3214FAB5-9757-4298-BB61-92A9DEAA44FF}\DefinitionFlags NAME NOT FOUND Length: 144 97 12:38:31,5296179 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{3214FAB5-9757-4298-BB61-92A9DEAA44FF}\Attributes SUCCESS Type: REG_DWORD, Length: 4, Data: 1 97 12:38:31,5296295 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{3214FAB5-9757-4298-BB61-92A9DEAA44FF}\FolderTypeID NAME NOT FOUND Length: 144 97 12:38:31,5296403 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{3214FAB5-9757-4298-BB61-92A9DEAA44FF}\InitFolderHandler NAME NOT FOUND Length: 144 97 12:38:31,5296567 MCLauncher.exe 84 RegQueryKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{3214FAB5-9757-4298-BB61-92A9DEAA44FF} SUCCESS Query: HandleTags, HandleTags: 0x400 97 12:38:31,5296650 MCLauncher.exe 84 RegOpenKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{3214FAB5-9757-4298-BB61-92A9DEAA44FF}\PropertyBag SUCCESS Desired Access: Read 97 12:38:31,5296786 MCLauncher.exe 84 RegCloseKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{3214FAB5-9757-4298-BB61-92A9DEAA44FF} SUCCESS 97 12:38:31,5296927 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:31,5296985 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: Name 97 12:38:31,5297093 MCLauncher.exe 84 RegOpenKey HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS Desired Access: Read 97 12:38:31,5297190 MCLauncher.exe 84 RegSetInfoKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 97 12:38:31,5297262 MCLauncher.exe 84 RegQueryKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS Query: HandleTags, HandleTags: 0x400 97 12:38:31,5297318 MCLauncher.exe 84 RegOpenKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{0D4C3DB6-03A3-462F-A0E6-08924C41B5D4} SUCCESS Desired Access: Read 97 12:38:31,5297403 MCLauncher.exe 84 RegCloseKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS 97 12:38:31,5297453 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{0D4C3DB6-03A3-462F-A0E6-08924C41B5D4}\Category SUCCESS Type: REG_DWORD, Length: 4, Data: 4 97 12:38:31,5297589 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{0D4C3DB6-03A3-462F-A0E6-08924C41B5D4}\Name SUCCESS Type: REG_SZ, Length: 40, Data: SearchHistoryFolder 97 12:38:31,5297722 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{0D4C3DB6-03A3-462F-A0E6-08924C41B5D4}\ParentFolder SUCCESS Type: REG_SZ, Length: 78, Data: {F1B32785-6FBA-4FCF-9D55-7B8E7F157091} 97 12:38:31,5297847 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{0D4C3DB6-03A3-462F-A0E6-08924C41B5D4}\Description NAME NOT FOUND Length: 144 97 12:38:31,5297955 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{0D4C3DB6-03A3-462F-A0E6-08924C41B5D4}\RelativePath SUCCESS Type: REG_SZ, Length: 84, Data: Microsoft\Windows\ConnectedSearch\History 97 12:38:31,5298080 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{0D4C3DB6-03A3-462F-A0E6-08924C41B5D4}\ParsingName NAME NOT FOUND Length: 144 97 12:38:31,5298188 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{0D4C3DB6-03A3-462F-A0E6-08924C41B5D4}\InfoTip NAME NOT FOUND Length: 144 97 12:38:31,5298287 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{0D4C3DB6-03A3-462F-A0E6-08924C41B5D4}\LocalizedName NAME NOT FOUND Length: 144 97 12:38:31,5298390 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{0D4C3DB6-03A3-462F-A0E6-08924C41B5D4}\Icon NAME NOT FOUND Length: 144 97 12:38:31,5298490 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{0D4C3DB6-03A3-462F-A0E6-08924C41B5D4}\Security NAME NOT FOUND Length: 144 97 12:38:31,5298592 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{0D4C3DB6-03A3-462F-A0E6-08924C41B5D4}\StreamResource NAME NOT FOUND Length: 144 97 12:38:31,5298697 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{0D4C3DB6-03A3-462F-A0E6-08924C41B5D4}\StreamResourceType NAME NOT FOUND Length: 144 97 12:38:31,5298797 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{0D4C3DB6-03A3-462F-A0E6-08924C41B5D4}\LocalRedirectOnly NAME NOT FOUND Length: 144 97 12:38:31,5298900 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{0D4C3DB6-03A3-462F-A0E6-08924C41B5D4}\Roamable NAME NOT FOUND Length: 144 97 12:38:31,5299002 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{0D4C3DB6-03A3-462F-A0E6-08924C41B5D4}\PreCreate NAME NOT FOUND Length: 144 97 12:38:31,5299105 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{0D4C3DB6-03A3-462F-A0E6-08924C41B5D4}\Stream NAME NOT FOUND Length: 144 97 12:38:31,5299318 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{0D4C3DB6-03A3-462F-A0E6-08924C41B5D4}\PublishExpandedPath NAME NOT FOUND Length: 144 97 12:38:31,5299434 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{0D4C3DB6-03A3-462F-A0E6-08924C41B5D4}\DefinitionFlags NAME NOT FOUND Length: 144 97 12:38:31,5299537 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{0D4C3DB6-03A3-462F-A0E6-08924C41B5D4}\Attributes NAME NOT FOUND Length: 144 97 12:38:31,5299639 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{0D4C3DB6-03A3-462F-A0E6-08924C41B5D4}\FolderTypeID NAME NOT FOUND Length: 144 97 12:38:31,5299742 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{0D4C3DB6-03A3-462F-A0E6-08924C41B5D4}\InitFolderHandler NAME NOT FOUND Length: 144 97 12:38:31,5299927 MCLauncher.exe 84 RegQueryKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{0D4C3DB6-03A3-462F-A0E6-08924C41B5D4} SUCCESS Query: HandleTags, HandleTags: 0x400 97 12:38:31,5299997 MCLauncher.exe 84 RegOpenKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{0D4C3DB6-03A3-462F-A0E6-08924C41B5D4}\PropertyBag NAME NOT FOUND Desired Access: Read 97 12:38:31,5300088 MCLauncher.exe 84 RegCloseKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{0D4C3DB6-03A3-462F-A0E6-08924C41B5D4} SUCCESS 97 12:38:31,5300188 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:31,5300241 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: Name 97 12:38:31,5300329 MCLauncher.exe 84 RegOpenKey HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS Desired Access: Read 97 12:38:31,5300418 MCLauncher.exe 84 RegSetInfoKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 97 12:38:31,5300482 MCLauncher.exe 84 RegQueryKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS Query: HandleTags, HandleTags: 0x400 97 12:38:31,5300534 MCLauncher.exe 84 RegOpenKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{905E63B6-C1BF-494E-B29C-65B732D3D21A} SUCCESS Desired Access: Read 97 12:38:31,5300609 MCLauncher.exe 84 RegCloseKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS 97 12:38:31,5300656 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{905e63b6-c1bf-494e-b29c-65b732d3d21a}\Category SUCCESS Type: REG_DWORD, Length: 4, Data: 2 97 12:38:31,5300786 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{905e63b6-c1bf-494e-b29c-65b732d3d21a}\Name SUCCESS Type: REG_SZ, Length: 26, Data: ProgramFiles 97 12:38:31,5300922 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{905e63b6-c1bf-494e-b29c-65b732d3d21a}\ParentFolder NAME NOT FOUND Length: 144 97 12:38:31,5301030 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{905e63b6-c1bf-494e-b29c-65b732d3d21a}\Description NAME NOT FOUND Length: 144 97 12:38:31,5301135 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{905e63b6-c1bf-494e-b29c-65b732d3d21a}\RelativePath NAME NOT FOUND Length: 144 97 12:38:31,5301238 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{905e63b6-c1bf-494e-b29c-65b732d3d21a}\ParsingName NAME NOT FOUND Length: 144 97 12:38:31,5301340 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{905e63b6-c1bf-494e-b29c-65b732d3d21a}\InfoTip NAME NOT FOUND Length: 144 97 12:38:31,5301446 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{905e63b6-c1bf-494e-b29c-65b732d3d21a}\LocalizedName SUCCESS Type: REG_EXPAND_SZ, Length: 84, Data: @%SystemRoot%\system32\shell32.dll,-21781 97 12:38:31,5301568 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{905e63b6-c1bf-494e-b29c-65b732d3d21a}\Icon NAME NOT FOUND Length: 144 97 12:38:31,5301676 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{905e63b6-c1bf-494e-b29c-65b732d3d21a}\Security NAME NOT FOUND Length: 144 97 12:38:31,5301778 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{905e63b6-c1bf-494e-b29c-65b732d3d21a}\StreamResource NAME NOT FOUND Length: 144 97 12:38:31,5301881 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{905e63b6-c1bf-494e-b29c-65b732d3d21a}\StreamResourceType NAME NOT FOUND Length: 144 97 12:38:31,5301983 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{905e63b6-c1bf-494e-b29c-65b732d3d21a}\LocalRedirectOnly NAME NOT FOUND Length: 144 97 12:38:31,5302086 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{905e63b6-c1bf-494e-b29c-65b732d3d21a}\Roamable NAME NOT FOUND Length: 144 97 12:38:31,5302188 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{905e63b6-c1bf-494e-b29c-65b732d3d21a}\PreCreate SUCCESS Type: REG_DWORD, Length: 4, Data: 1 97 12:38:31,5302307 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{905e63b6-c1bf-494e-b29c-65b732d3d21a}\Stream NAME NOT FOUND Length: 144 97 12:38:31,5302410 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{905e63b6-c1bf-494e-b29c-65b732d3d21a}\PublishExpandedPath NAME NOT FOUND Length: 144 97 12:38:31,5302512 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{905e63b6-c1bf-494e-b29c-65b732d3d21a}\DefinitionFlags NAME NOT FOUND Length: 144 97 12:38:31,5302618 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{905e63b6-c1bf-494e-b29c-65b732d3d21a}\Attributes SUCCESS Type: REG_DWORD, Length: 4, Data: 1 97 12:38:31,5302731 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{905e63b6-c1bf-494e-b29c-65b732d3d21a}\FolderTypeID NAME NOT FOUND Length: 144 97 12:38:31,5302834 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{905e63b6-c1bf-494e-b29c-65b732d3d21a}\InitFolderHandler NAME NOT FOUND Length: 144 97 12:38:31,5302970 MCLauncher.exe 84 RegQueryKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{905e63b6-c1bf-494e-b29c-65b732d3d21a} SUCCESS Query: HandleTags, HandleTags: 0x400 97 12:38:31,5303033 MCLauncher.exe 84 RegOpenKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{905e63b6-c1bf-494e-b29c-65b732d3d21a}\PropertyBag SUCCESS Desired Access: Read 97 12:38:31,5303125 MCLauncher.exe 84 RegCloseKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{905e63b6-c1bf-494e-b29c-65b732d3d21a} SUCCESS 97 12:38:31,5303216 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:31,5303266 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: Name 97 12:38:31,5303352 MCLauncher.exe 84 RegOpenKey HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS Desired Access: Read 97 12:38:31,5303427 MCLauncher.exe 84 RegSetInfoKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 97 12:38:31,5303488 MCLauncher.exe 84 RegQueryKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS Query: HandleTags, HandleTags: 0x400 97 12:38:31,5303540 MCLauncher.exe 84 RegOpenKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{FD228CB7-AE11-4AE3-864C-16F3910AB8FE} SUCCESS Desired Access: Read 97 12:38:31,5303615 MCLauncher.exe 84 RegCloseKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS 97 12:38:31,5303662 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{FD228CB7-AE11-4AE3-864C-16F3910AB8FE}\Category SUCCESS Type: REG_DWORD, Length: 4, Data: 2 97 12:38:31,5303792 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{FD228CB7-AE11-4AE3-864C-16F3910AB8FE}\Name SUCCESS Type: REG_SZ, Length: 12, Data: Fonts 97 12:38:31,5303923 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{FD228CB7-AE11-4AE3-864C-16F3910AB8FE}\ParentFolder SUCCESS Type: REG_SZ, Length: 78, Data: {F38BF404-1D43-42F2-9305-67DE0B28FC23} 97 12:38:31,5304047 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{FD228CB7-AE11-4AE3-864C-16F3910AB8FE}\Description NAME NOT FOUND Length: 144 97 12:38:31,5304200 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{FD228CB7-AE11-4AE3-864C-16F3910AB8FE}\RelativePath NAME NOT FOUND Length: 144 97 12:38:31,5304302 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{FD228CB7-AE11-4AE3-864C-16F3910AB8FE}\ParsingName NAME NOT FOUND Length: 144 97 12:38:31,5304405 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{FD228CB7-AE11-4AE3-864C-16F3910AB8FE}\InfoTip NAME NOT FOUND Length: 144 97 12:38:31,5304507 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{FD228CB7-AE11-4AE3-864C-16F3910AB8FE}\LocalizedName NAME NOT FOUND Length: 144 97 12:38:31,5304607 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{FD228CB7-AE11-4AE3-864C-16F3910AB8FE}\Icon NAME NOT FOUND Length: 144 97 12:38:31,5304707 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{FD228CB7-AE11-4AE3-864C-16F3910AB8FE}\Security NAME NOT FOUND Length: 144 97 12:38:31,5304809 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{FD228CB7-AE11-4AE3-864C-16F3910AB8FE}\StreamResource NAME NOT FOUND Length: 144 97 12:38:31,5304909 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{FD228CB7-AE11-4AE3-864C-16F3910AB8FE}\StreamResourceType NAME NOT FOUND Length: 144 97 12:38:31,5305011 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{FD228CB7-AE11-4AE3-864C-16F3910AB8FE}\LocalRedirectOnly NAME NOT FOUND Length: 144 97 12:38:31,5305111 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{FD228CB7-AE11-4AE3-864C-16F3910AB8FE}\Roamable NAME NOT FOUND Length: 144 97 12:38:31,5305208 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{FD228CB7-AE11-4AE3-864C-16F3910AB8FE}\PreCreate NAME NOT FOUND Length: 144 97 12:38:31,5305311 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{FD228CB7-AE11-4AE3-864C-16F3910AB8FE}\Stream NAME NOT FOUND Length: 144 97 12:38:31,5305410 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{FD228CB7-AE11-4AE3-864C-16F3910AB8FE}\PublishExpandedPath NAME NOT FOUND Length: 144 97 12:38:31,5305513 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{FD228CB7-AE11-4AE3-864C-16F3910AB8FE}\DefinitionFlags NAME NOT FOUND Length: 144 97 12:38:31,5305613 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{FD228CB7-AE11-4AE3-864C-16F3910AB8FE}\Attributes NAME NOT FOUND Length: 144 97 12:38:31,5305751 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{FD228CB7-AE11-4AE3-864C-16F3910AB8FE}\FolderTypeID NAME NOT FOUND Length: 144 97 12:38:31,5305854 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{FD228CB7-AE11-4AE3-864C-16F3910AB8FE}\InitFolderHandler NAME NOT FOUND Length: 144 97 12:38:31,5305989 MCLauncher.exe 84 RegQueryKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{FD228CB7-AE11-4AE3-864C-16F3910AB8FE} SUCCESS Query: HandleTags, HandleTags: 0x400 97 12:38:31,5306053 MCLauncher.exe 84 RegOpenKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{FD228CB7-AE11-4AE3-864C-16F3910AB8FE}\PropertyBag SUCCESS Desired Access: Read 97 12:38:31,5306139 MCLauncher.exe 84 RegCloseKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{FD228CB7-AE11-4AE3-864C-16F3910AB8FE} SUCCESS 97 12:38:31,5306225 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:31,5306275 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: Name 97 12:38:31,5306355 MCLauncher.exe 84 RegOpenKey HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS Desired Access: Read 97 12:38:31,5306430 MCLauncher.exe 84 RegSetInfoKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 97 12:38:31,5306491 MCLauncher.exe 84 RegQueryKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS Query: HandleTags, HandleTags: 0x400 97 12:38:31,5306541 MCLauncher.exe 84 RegOpenKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{B97D20BB-F46A-4C97-BA10-5E3608430854} SUCCESS Desired Access: Read 97 12:38:31,5306621 MCLauncher.exe 84 RegCloseKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS 97 12:38:31,5306668 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{B97D20BB-F46A-4C97-BA10-5E3608430854}\Category SUCCESS Type: REG_DWORD, Length: 4, Data: 4 97 12:38:31,5306796 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{B97D20BB-F46A-4C97-BA10-5E3608430854}\Name SUCCESS Type: REG_SZ, Length: 16, Data: Startup 97 12:38:31,5306926 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{B97D20BB-F46A-4C97-BA10-5E3608430854}\ParentFolder SUCCESS Type: REG_SZ, Length: 78, Data: {A77F5D77-2E2B-44C3-A6A2-ABA601054A51} 97 12:38:31,5307051 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{B97D20BB-F46A-4C97-BA10-5E3608430854}\Description NAME NOT FOUND Length: 144 97 12:38:31,5307156 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{B97D20BB-F46A-4C97-BA10-5E3608430854}\RelativePath SUCCESS Type: REG_SZ, Length: 16, Data: StartUp 97 12:38:31,5307278 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{B97D20BB-F46A-4C97-BA10-5E3608430854}\ParsingName NAME NOT FOUND Length: 144 97 12:38:31,5307383 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{B97D20BB-F46A-4C97-BA10-5E3608430854}\InfoTip NAME NOT FOUND Length: 144 97 12:38:31,5307486 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{B97D20BB-F46A-4C97-BA10-5E3608430854}\LocalizedName SUCCESS Type: REG_EXPAND_SZ, Length: 84, Data: @%SystemRoot%\system32\shell32.dll,-21787 97 12:38:31,5307607 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{B97D20BB-F46A-4C97-BA10-5E3608430854}\Icon NAME NOT FOUND Length: 144 97 12:38:31,5307713 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{B97D20BB-F46A-4C97-BA10-5E3608430854}\Security NAME NOT FOUND Length: 144 97 12:38:31,5307815 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{B97D20BB-F46A-4C97-BA10-5E3608430854}\StreamResource NAME NOT FOUND Length: 144 97 12:38:31,5307921 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{B97D20BB-F46A-4C97-BA10-5E3608430854}\StreamResourceType NAME NOT FOUND Length: 144 97 12:38:31,5308023 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{B97D20BB-F46A-4C97-BA10-5E3608430854}\LocalRedirectOnly NAME NOT FOUND Length: 144 97 12:38:31,5308126 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{B97D20BB-F46A-4C97-BA10-5E3608430854}\Roamable NAME NOT FOUND Length: 144 97 12:38:31,5308228 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{B97D20BB-F46A-4C97-BA10-5E3608430854}\PreCreate SUCCESS Type: REG_DWORD, Length: 4, Data: 1 97 12:38:31,5308344 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{B97D20BB-F46A-4C97-BA10-5E3608430854}\Stream NAME NOT FOUND Length: 144 97 12:38:31,5308450 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{B97D20BB-F46A-4C97-BA10-5E3608430854}\PublishExpandedPath NAME NOT FOUND Length: 144 97 12:38:31,5308552 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{B97D20BB-F46A-4C97-BA10-5E3608430854}\DefinitionFlags NAME NOT FOUND Length: 144 97 12:38:31,5308655 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{B97D20BB-F46A-4C97-BA10-5E3608430854}\Attributes SUCCESS Type: REG_DWORD, Length: 4, Data: 1 97 12:38:31,5308768 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{B97D20BB-F46A-4C97-BA10-5E3608430854}\FolderTypeID NAME NOT FOUND Length: 144 97 12:38:31,5308871 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{B97D20BB-F46A-4C97-BA10-5E3608430854}\InitFolderHandler NAME NOT FOUND Length: 144 97 12:38:31,5309104 MCLauncher.exe 84 RegQueryKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{B97D20BB-F46A-4C97-BA10-5E3608430854} SUCCESS Query: HandleTags, HandleTags: 0x400 97 12:38:31,5309167 MCLauncher.exe 84 RegOpenKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{B97D20BB-F46A-4C97-BA10-5E3608430854}\PropertyBag NAME NOT FOUND Desired Access: Read 97 12:38:31,5309267 MCLauncher.exe 84 RegCloseKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{B97D20BB-F46A-4C97-BA10-5E3608430854} SUCCESS 97 12:38:31,5309361 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:31,5309414 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: Name 97 12:38:31,5309497 MCLauncher.exe 84 RegOpenKey HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS Desired Access: Read 97 12:38:31,5309575 MCLauncher.exe 84 RegSetInfoKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 97 12:38:31,5309636 MCLauncher.exe 84 RegQueryKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS Query: HandleTags, HandleTags: 0x400 97 12:38:31,5309685 MCLauncher.exe 84 RegOpenKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{2F8B40C2-83ED-48EE-B383-A1F157EC6F9A} SUCCESS Desired Access: Read 97 12:38:31,5309757 MCLauncher.exe 84 RegCloseKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS 97 12:38:31,5309805 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{2F8B40C2-83ED-48EE-B383-A1F157EC6F9A}\Category SUCCESS Type: REG_DWORD, Length: 4, Data: 4 97 12:38:31,5309935 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{2F8B40C2-83ED-48EE-B383-A1F157EC6F9A}\Name SUCCESS Type: REG_SZ, Length: 30, Data: Recorded Calls 97 12:38:31,5310065 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{2F8B40C2-83ED-48EE-B383-A1F157EC6F9A}\ParentFolder SUCCESS Type: REG_SZ, Length: 78, Data: {5E6C858F-0E22-4760-9AFE-EA3317B67173} 97 12:38:31,5310190 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{2F8B40C2-83ED-48EE-B383-A1F157EC6F9A}\Description NAME NOT FOUND Length: 144 97 12:38:31,5310292 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{2F8B40C2-83ED-48EE-B383-A1F157EC6F9A}\RelativePath SUCCESS Type: REG_SZ, Length: 30, Data: Recorded Calls 97 12:38:31,5310420 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{2F8B40C2-83ED-48EE-B383-A1F157EC6F9A}\ParsingName NAME NOT FOUND Length: 144 97 12:38:31,5310522 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{2F8B40C2-83ED-48EE-B383-A1F157EC6F9A}\InfoTip NAME NOT FOUND Length: 144 97 12:38:31,5310625 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{2F8B40C2-83ED-48EE-B383-A1F157EC6F9A}\LocalizedName SUCCESS Type: REG_EXPAND_SZ, Length: 100, Data: @%SystemRoot%\system32\windows.storage.dll,-21827 97 12:38:31,5310749 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{2F8B40C2-83ED-48EE-B383-A1F157EC6F9A}\Icon NAME NOT FOUND Length: 144 97 12:38:31,5310855 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{2F8B40C2-83ED-48EE-B383-A1F157EC6F9A}\Security NAME NOT FOUND Length: 144 97 12:38:31,5310954 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{2F8B40C2-83ED-48EE-B383-A1F157EC6F9A}\StreamResource NAME NOT FOUND Length: 144 97 12:38:31,5311057 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{2F8B40C2-83ED-48EE-B383-A1F157EC6F9A}\StreamResourceType NAME NOT FOUND Length: 144 97 12:38:31,5311159 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{2F8B40C2-83ED-48EE-B383-A1F157EC6F9A}\LocalRedirectOnly NAME NOT FOUND Length: 144 97 12:38:31,5311292 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{2F8B40C2-83ED-48EE-B383-A1F157EC6F9A}\Roamable NAME NOT FOUND Length: 144 97 12:38:31,5311395 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{2F8B40C2-83ED-48EE-B383-A1F157EC6F9A}\PreCreate NAME NOT FOUND Length: 144 97 12:38:31,5311497 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{2F8B40C2-83ED-48EE-B383-A1F157EC6F9A}\Stream NAME NOT FOUND Length: 144 97 12:38:31,5311600 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{2F8B40C2-83ED-48EE-B383-A1F157EC6F9A}\PublishExpandedPath NAME NOT FOUND Length: 144 97 12:38:31,5311702 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{2F8B40C2-83ED-48EE-B383-A1F157EC6F9A}\DefinitionFlags NAME NOT FOUND Length: 144 97 12:38:31,5311805 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{2F8B40C2-83ED-48EE-B383-A1F157EC6F9A}\Attributes NAME NOT FOUND Length: 144 97 12:38:31,5311907 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{2F8B40C2-83ED-48EE-B383-A1F157EC6F9A}\FolderTypeID NAME NOT FOUND Length: 144 97 12:38:31,5312010 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{2F8B40C2-83ED-48EE-B383-A1F157EC6F9A}\InitFolderHandler NAME NOT FOUND Length: 144 97 12:38:31,5312143 MCLauncher.exe 84 RegQueryKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{2F8B40C2-83ED-48EE-B383-A1F157EC6F9A} SUCCESS Query: HandleTags, HandleTags: 0x400 97 12:38:31,5312204 MCLauncher.exe 84 RegOpenKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{2F8B40C2-83ED-48EE-B383-A1F157EC6F9A}\PropertyBag NAME NOT FOUND Desired Access: Read 97 12:38:31,5312287 MCLauncher.exe 84 RegCloseKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{2F8B40C2-83ED-48EE-B383-A1F157EC6F9A} SUCCESS 97 12:38:31,5312387 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:31,5312439 MCLauncher.exe 84 RegOpenKey HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\AllowedEnumeration NAME NOT FOUND Desired Access: Read 97 12:38:31,5312572 MCLauncher.exe 84 RegQueryKey HKCU SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:31,5312628 MCLauncher.exe 84 RegOpenKey HKCU\Software\Microsoft\Windows\CurrentVersion\Explorer\AllowedEnumeration NAME NOT FOUND Desired Access: Read 97 12:38:31,5312902 MCLauncher.exe 84 RegQueryKey HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer SUCCESS Query: HandleTags, HandleTags: 0x400 97 12:38:31,5312957 MCLauncher.exe 84 RegOpenKey HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\SessionInfo\1 SUCCESS Desired Access: Query Value 97 12:38:31,5313063 MCLauncher.exe 84 RegQueryKey HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\SessionInfo\1 SUCCESS Query: HandleTags, HandleTags: 0x400 97 12:38:31,5313113 MCLauncher.exe 84 RegOpenKey HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\SessionInfo\1\KnownFolders NAME NOT FOUND Desired Access: Query Value 97 12:38:31,5313182 MCLauncher.exe 84 RegCloseKey HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\SessionInfo\1 SUCCESS 97 12:38:31,5313301 MCLauncher.exe 84 RegOpenKey HKCU SUCCESS Desired Access: Read 97 12:38:31,5313392 MCLauncher.exe 84 RegQueryKey HKCU SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:31,5313439 MCLauncher.exe 84 RegQueryKey HKCU SUCCESS Query: Name 97 12:38:31,5313512 MCLauncher.exe 84 RegOpenKey HKCU\Software\Microsoft\Windows\CurrentVersion\Explorer\User Shell Folders SUCCESS Desired Access: Read 97 12:38:31,5313597 MCLauncher.exe 84 RegSetInfoKey HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\User Shell Folders SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 97 12:38:31,5313645 MCLauncher.exe 84 RegCloseKey HKCU SUCCESS 97 12:38:31,5313694 MCLauncher.exe 84 RegQueryValue HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\User Shell Folders\{2F8B40C2-83ED-48EE-B383-A1F157EC6F9A} NAME NOT FOUND Length: 144 97 12:38:31,5314019 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:31,5314071 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: Name 97 12:38:31,5314165 MCLauncher.exe 84 RegOpenKey HKLM\Software\WOW6432Node\Microsoft\Windows NT\CurrentVersion\ProfileList\S-1-5-21-3477790013-1571897634-1299942168-1000 REPARSE Desired Access: Read 97 12:38:31,5314273 MCLauncher.exe 84 RegOpenKey HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\ProfileList\S-1-5-21-3477790013-1571897634-1299942168-1000 SUCCESS Desired Access: Read 97 12:38:31,5314343 MCLauncher.exe 84 RegSetInfoKey HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\ProfileList\S-1-5-21-3477790013-1571897634-1299942168-1000 SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 97 12:38:31,5314384 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\ProfileList\S-1-5-21-3477790013-1571897634-1299942168-1000\ProfileImagePath SUCCESS Type: REG_EXPAND_SZ, Length: 28, Data: C:\Users\User 97 12:38:31,5314539 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\ProfileList\S-1-5-21-3477790013-1571897634-1299942168-1000\ProfileImagePath SUCCESS Type: REG_EXPAND_SZ, Length: 28, Data: C:\Users\User 97 12:38:31,5314670 MCLauncher.exe 84 RegCloseKey HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\ProfileList\S-1-5-21-3477790013-1571897634-1299942168-1000 SUCCESS 97 12:38:31,5314758 MCLauncher.exe 84 RegCloseKey HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\User Shell Folders SUCCESS 97 12:38:31,5314861 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:31,5314913 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: Name 97 12:38:31,5314999 MCLauncher.exe 84 RegOpenKey HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS Desired Access: Read 97 12:38:31,5315085 MCLauncher.exe 84 RegSetInfoKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 97 12:38:31,5315149 MCLauncher.exe 84 RegQueryKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS Query: HandleTags, HandleTags: 0x400 97 12:38:31,5315202 MCLauncher.exe 84 RegOpenKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{625B53C3-AB48-4EC1-BA1F-A1EF4146FC19} SUCCESS Desired Access: Read 97 12:38:31,5315274 MCLauncher.exe 84 RegCloseKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS 97 12:38:31,5315321 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{625B53C3-AB48-4EC1-BA1F-A1EF4146FC19}\Category SUCCESS Type: REG_DWORD, Length: 4, Data: 4 97 12:38:31,5315454 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{625B53C3-AB48-4EC1-BA1F-A1EF4146FC19}\Name SUCCESS Type: REG_SZ, Length: 22, Data: Start Menu 97 12:38:31,5315584 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{625B53C3-AB48-4EC1-BA1F-A1EF4146FC19}\ParentFolder SUCCESS Type: REG_SZ, Length: 78, Data: {3EB685DB-65F9-4CF6-A03A-E3EF65729F3D} 97 12:38:31,5315709 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{625B53C3-AB48-4EC1-BA1F-A1EF4146FC19}\Description NAME NOT FOUND Length: 144 97 12:38:31,5315811 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{625B53C3-AB48-4EC1-BA1F-A1EF4146FC19}\RelativePath SUCCESS Type: REG_SZ, Length: 58, Data: Microsoft\Windows\Start Menu 97 12:38:31,5315936 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{625B53C3-AB48-4EC1-BA1F-A1EF4146FC19}\ParsingName NAME NOT FOUND Length: 144 97 12:38:31,5316038 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{625B53C3-AB48-4EC1-BA1F-A1EF4146FC19}\InfoTip NAME NOT FOUND Length: 144 97 12:38:31,5316141 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{625B53C3-AB48-4EC1-BA1F-A1EF4146FC19}\LocalizedName SUCCESS Type: REG_EXPAND_SZ, Length: 84, Data: @%SystemRoot%\system32\shell32.dll,-21786 97 12:38:31,5316263 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{625B53C3-AB48-4EC1-BA1F-A1EF4146FC19}\Icon NAME NOT FOUND Length: 144 97 12:38:31,5316371 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{625B53C3-AB48-4EC1-BA1F-A1EF4146FC19}\Security NAME NOT FOUND Length: 144 97 12:38:31,5316470 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{625B53C3-AB48-4EC1-BA1F-A1EF4146FC19}\StreamResource NAME NOT FOUND Length: 144 97 12:38:31,5316576 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{625B53C3-AB48-4EC1-BA1F-A1EF4146FC19}\StreamResourceType NAME NOT FOUND Length: 144 97 12:38:31,5316676 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{625B53C3-AB48-4EC1-BA1F-A1EF4146FC19}\LocalRedirectOnly NAME NOT FOUND Length: 144 97 12:38:31,5316775 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{625B53C3-AB48-4EC1-BA1F-A1EF4146FC19}\Roamable NAME NOT FOUND Length: 144 97 12:38:31,5316878 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{625B53C3-AB48-4EC1-BA1F-A1EF4146FC19}\PreCreate SUCCESS Type: REG_DWORD, Length: 4, Data: 1 97 12:38:31,5316994 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{625B53C3-AB48-4EC1-BA1F-A1EF4146FC19}\Stream NAME NOT FOUND Length: 144 97 12:38:31,5317097 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{625B53C3-AB48-4EC1-BA1F-A1EF4146FC19}\PublishExpandedPath NAME NOT FOUND Length: 144 97 12:38:31,5317202 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{625B53C3-AB48-4EC1-BA1F-A1EF4146FC19}\DefinitionFlags NAME NOT FOUND Length: 144 97 12:38:31,5317302 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{625B53C3-AB48-4EC1-BA1F-A1EF4146FC19}\Attributes SUCCESS Type: REG_DWORD, Length: 4, Data: 1 97 12:38:31,5317421 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{625B53C3-AB48-4EC1-BA1F-A1EF4146FC19}\FolderTypeID NAME NOT FOUND Length: 144 97 12:38:31,5317526 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{625B53C3-AB48-4EC1-BA1F-A1EF4146FC19}\InitFolderHandler NAME NOT FOUND Length: 144 97 12:38:31,5317662 MCLauncher.exe 84 RegQueryKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{625B53C3-AB48-4EC1-BA1F-A1EF4146FC19} SUCCESS Query: HandleTags, HandleTags: 0x400 97 12:38:31,5317723 MCLauncher.exe 84 RegOpenKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{625B53C3-AB48-4EC1-BA1F-A1EF4146FC19}\PropertyBag NAME NOT FOUND Desired Access: Read 97 12:38:31,5317806 MCLauncher.exe 84 RegCloseKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{625B53C3-AB48-4EC1-BA1F-A1EF4146FC19} SUCCESS 97 12:38:31,5317922 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:31,5317972 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: Name 97 12:38:31,5318058 MCLauncher.exe 84 RegOpenKey HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS Desired Access: Read 97 12:38:31,5318133 MCLauncher.exe 84 RegSetInfoKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 97 12:38:31,5318197 MCLauncher.exe 84 RegQueryKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS Query: HandleTags, HandleTags: 0x400 97 12:38:31,5318246 MCLauncher.exe 84 RegOpenKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{D20BEEC4-5CA8-4905-AE3B-BF251EA09B53} SUCCESS Desired Access: Read 97 12:38:31,5318318 MCLauncher.exe 84 RegCloseKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS 97 12:38:31,5318363 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{D20BEEC4-5CA8-4905-AE3B-BF251EA09B53}\Category SUCCESS Type: REG_DWORD, Length: 4, Data: 1 97 12:38:31,5318496 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{D20BEEC4-5CA8-4905-AE3B-BF251EA09B53}\Name SUCCESS Type: REG_SZ, Length: 40, Data: NetworkPlacesFolder 97 12:38:31,5318634 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{D20BEEC4-5CA8-4905-AE3B-BF251EA09B53}\ParentFolder NAME NOT FOUND Length: 144 97 12:38:31,5318886 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{D20BEEC4-5CA8-4905-AE3B-BF251EA09B53}\Description NAME NOT FOUND Length: 144 97 12:38:31,5319014 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{D20BEEC4-5CA8-4905-AE3B-BF251EA09B53}\RelativePath NAME NOT FOUND Length: 144 97 12:38:31,5319163 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{D20BEEC4-5CA8-4905-AE3B-BF251EA09B53}\ParsingName SUCCESS Type: REG_SZ, Length: 82, Data: ::{F02C1A0D-BE21-4350-88B0-7367FC96EF3C} 97 12:38:31,5319302 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{D20BEEC4-5CA8-4905-AE3B-BF251EA09B53}\InfoTip NAME NOT FOUND Length: 144 97 12:38:31,5319410 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{D20BEEC4-5CA8-4905-AE3B-BF251EA09B53}\LocalizedName NAME NOT FOUND Length: 144 97 12:38:31,5319513 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{D20BEEC4-5CA8-4905-AE3B-BF251EA09B53}\Icon NAME NOT FOUND Length: 144 97 12:38:31,5319615 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{D20BEEC4-5CA8-4905-AE3B-BF251EA09B53}\Security NAME NOT FOUND Length: 144 97 12:38:31,5319715 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{D20BEEC4-5CA8-4905-AE3B-BF251EA09B53}\StreamResource NAME NOT FOUND Length: 144 97 12:38:31,5319817 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{D20BEEC4-5CA8-4905-AE3B-BF251EA09B53}\StreamResourceType NAME NOT FOUND Length: 144 97 12:38:31,5319923 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{D20BEEC4-5CA8-4905-AE3B-BF251EA09B53}\LocalRedirectOnly NAME NOT FOUND Length: 144 97 12:38:31,5320025 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{D20BEEC4-5CA8-4905-AE3B-BF251EA09B53}\Roamable NAME NOT FOUND Length: 144 97 12:38:31,5320125 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{D20BEEC4-5CA8-4905-AE3B-BF251EA09B53}\PreCreate NAME NOT FOUND Length: 144 97 12:38:31,5320227 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{D20BEEC4-5CA8-4905-AE3B-BF251EA09B53}\Stream NAME NOT FOUND Length: 144 97 12:38:31,5320327 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{D20BEEC4-5CA8-4905-AE3B-BF251EA09B53}\PublishExpandedPath NAME NOT FOUND Length: 144 97 12:38:31,5320430 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{D20BEEC4-5CA8-4905-AE3B-BF251EA09B53}\DefinitionFlags NAME NOT FOUND Length: 144 97 12:38:31,5320532 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{D20BEEC4-5CA8-4905-AE3B-BF251EA09B53}\Attributes NAME NOT FOUND Length: 144 97 12:38:31,5320662 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{D20BEEC4-5CA8-4905-AE3B-BF251EA09B53}\FolderTypeID NAME NOT FOUND Length: 144 97 12:38:31,5320765 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{D20BEEC4-5CA8-4905-AE3B-BF251EA09B53}\InitFolderHandler NAME NOT FOUND Length: 144 97 12:38:31,5320903 MCLauncher.exe 84 RegQueryKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{D20BEEC4-5CA8-4905-AE3B-BF251EA09B53} SUCCESS Query: HandleTags, HandleTags: 0x400 97 12:38:31,5320967 MCLauncher.exe 84 RegOpenKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{D20BEEC4-5CA8-4905-AE3B-BF251EA09B53}\PropertyBag NAME NOT FOUND Desired Access: Read 97 12:38:31,5321059 MCLauncher.exe 84 RegCloseKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{D20BEEC4-5CA8-4905-AE3B-BF251EA09B53} SUCCESS 97 12:38:31,5321156 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:31,5321205 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: Name 97 12:38:31,5321291 MCLauncher.exe 84 RegOpenKey HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS Desired Access: Read 97 12:38:31,5321372 MCLauncher.exe 84 RegSetInfoKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 97 12:38:31,5321433 MCLauncher.exe 84 RegQueryKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS Query: HandleTags, HandleTags: 0x400 97 12:38:31,5321482 MCLauncher.exe 84 RegOpenKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{DE92C1C7-837F-4F69-A3BB-86E631204A23} SUCCESS Desired Access: Read 97 12:38:31,5321557 MCLauncher.exe 84 RegCloseKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS 97 12:38:31,5321599 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{DE92C1C7-837F-4F69-A3BB-86E631204A23}\Category SUCCESS Type: REG_DWORD, Length: 4, Data: 4 97 12:38:31,5321732 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{DE92C1C7-837F-4F69-A3BB-86E631204A23}\Name SUCCESS Type: REG_SZ, Length: 20, Data: Playlists 97 12:38:31,5321859 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{DE92C1C7-837F-4F69-A3BB-86E631204A23}\ParentFolder SUCCESS Type: REG_SZ, Length: 78, Data: {4BD8D571-6D19-48D3-BE97-422220080E43} 97 12:38:31,5321984 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{DE92C1C7-837F-4F69-A3BB-86E631204A23}\Description NAME NOT FOUND Length: 144 97 12:38:31,5322089 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{DE92C1C7-837F-4F69-A3BB-86E631204A23}\RelativePath SUCCESS Type: REG_SZ, Length: 20, Data: Playlists 97 12:38:31,5322211 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{DE92C1C7-837F-4F69-A3BB-86E631204A23}\ParsingName NAME NOT FOUND Length: 144 97 12:38:31,5322319 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{DE92C1C7-837F-4F69-A3BB-86E631204A23}\InfoTip NAME NOT FOUND Length: 144 97 12:38:31,5322422 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{DE92C1C7-837F-4F69-A3BB-86E631204A23}\LocalizedName SUCCESS Type: REG_EXPAND_SZ, Length: 100, Data: @%SystemRoot%\system32\windows.storage.dll,-21818 97 12:38:31,5322544 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{DE92C1C7-837F-4F69-A3BB-86E631204A23}\Icon NAME NOT FOUND Length: 144 97 12:38:31,5322646 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{DE92C1C7-837F-4F69-A3BB-86E631204A23}\Security NAME NOT FOUND Length: 144 97 12:38:31,5322749 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{DE92C1C7-837F-4F69-A3BB-86E631204A23}\StreamResource NAME NOT FOUND Length: 144 97 12:38:31,5322848 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{DE92C1C7-837F-4F69-A3BB-86E631204A23}\StreamResourceType NAME NOT FOUND Length: 144 97 12:38:31,5322951 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{DE92C1C7-837F-4F69-A3BB-86E631204A23}\LocalRedirectOnly NAME NOT FOUND Length: 144 97 12:38:31,5323051 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{DE92C1C7-837F-4F69-A3BB-86E631204A23}\Roamable NAME NOT FOUND Length: 144 97 12:38:31,5323156 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{DE92C1C7-837F-4F69-A3BB-86E631204A23}\PreCreate NAME NOT FOUND Length: 144 97 12:38:31,5323258 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{DE92C1C7-837F-4F69-A3BB-86E631204A23}\Stream NAME NOT FOUND Length: 144 97 12:38:31,5323358 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{DE92C1C7-837F-4F69-A3BB-86E631204A23}\PublishExpandedPath NAME NOT FOUND Length: 144 97 12:38:31,5323461 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{DE92C1C7-837F-4F69-A3BB-86E631204A23}\DefinitionFlags NAME NOT FOUND Length: 144 97 12:38:31,5323563 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{DE92C1C7-837F-4F69-A3BB-86E631204A23}\Attributes SUCCESS Type: REG_DWORD, Length: 4, Data: 1 97 12:38:31,5327342 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{DE92C1C7-837F-4F69-A3BB-86E631204A23}\FolderTypeID NAME NOT FOUND Length: 144 97 12:38:31,5327506 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{DE92C1C7-837F-4F69-A3BB-86E631204A23}\InitFolderHandler NAME NOT FOUND Length: 144 97 12:38:31,5327661 MCLauncher.exe 84 RegQueryKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{DE92C1C7-837F-4F69-A3BB-86E631204A23} SUCCESS Query: HandleTags, HandleTags: 0x400 97 12:38:31,5327736 MCLauncher.exe 84 RegOpenKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{DE92C1C7-837F-4F69-A3BB-86E631204A23}\PropertyBag SUCCESS Desired Access: Read 97 12:38:31,5327849 MCLauncher.exe 84 RegCloseKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{DE92C1C7-837F-4F69-A3BB-86E631204A23} SUCCESS 97 12:38:31,5327957 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:31,5328010 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: Name 97 12:38:31,5328110 MCLauncher.exe 84 RegOpenKey HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS Desired Access: Read 97 12:38:31,5328309 MCLauncher.exe 84 RegSetInfoKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 97 12:38:31,5328431 MCLauncher.exe 84 RegQueryKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS Query: HandleTags, HandleTags: 0x400 97 12:38:31,5328497 MCLauncher.exe 84 RegOpenKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{10C07CD0-EF91-4567-B850-448B77CB37F9} SUCCESS Desired Access: Read 97 12:38:31,5328592 MCLauncher.exe 84 RegCloseKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS 97 12:38:31,5328647 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{10C07CD0-EF91-4567-B850-448B77CB37F9}\Category SUCCESS Type: REG_DWORD, Length: 4, Data: 2 97 12:38:31,5328824 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{10C07CD0-EF91-4567-B850-448B77CB37F9}\Name SUCCESS Type: REG_SZ, Length: 20, Data: DpapiKeys 97 12:38:31,5328957 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{10C07CD0-EF91-4567-B850-448B77CB37F9}\ParentFolder NAME NOT FOUND Length: 144 97 12:38:31,5329065 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{10C07CD0-EF91-4567-B850-448B77CB37F9}\Description NAME NOT FOUND Length: 144 97 12:38:31,5329168 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{10C07CD0-EF91-4567-B850-448B77CB37F9}\RelativePath NAME NOT FOUND Length: 144 97 12:38:31,5329270 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{10C07CD0-EF91-4567-B850-448B77CB37F9}\ParsingName NAME NOT FOUND Length: 144 97 12:38:31,5329370 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{10C07CD0-EF91-4567-B850-448B77CB37F9}\InfoTip NAME NOT FOUND Length: 144 97 12:38:31,5329475 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{10C07CD0-EF91-4567-B850-448B77CB37F9}\LocalizedName NAME NOT FOUND Length: 144 97 12:38:31,5329578 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{10C07CD0-EF91-4567-B850-448B77CB37F9}\Icon NAME NOT FOUND Length: 144 97 12:38:31,5329678 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{10C07CD0-EF91-4567-B850-448B77CB37F9}\Security NAME NOT FOUND Length: 144 97 12:38:31,5329777 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{10C07CD0-EF91-4567-B850-448B77CB37F9}\StreamResource NAME NOT FOUND Length: 144 97 12:38:31,5329880 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{10C07CD0-EF91-4567-B850-448B77CB37F9}\StreamResourceType NAME NOT FOUND Length: 144 97 12:38:31,5329983 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{10C07CD0-EF91-4567-B850-448B77CB37F9}\LocalRedirectOnly NAME NOT FOUND Length: 144 97 12:38:31,5330082 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{10C07CD0-EF91-4567-B850-448B77CB37F9}\Roamable NAME NOT FOUND Length: 144 97 12:38:31,5330182 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{10C07CD0-EF91-4567-B850-448B77CB37F9}\PreCreate NAME NOT FOUND Length: 144 97 12:38:31,5330282 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{10C07CD0-EF91-4567-B850-448B77CB37F9}\Stream NAME NOT FOUND Length: 144 97 12:38:31,5330384 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{10C07CD0-EF91-4567-B850-448B77CB37F9}\PublishExpandedPath NAME NOT FOUND Length: 144 97 12:38:31,5330487 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{10C07CD0-EF91-4567-B850-448B77CB37F9}\DefinitionFlags NAME NOT FOUND Length: 144 97 12:38:31,5330586 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{10C07CD0-EF91-4567-B850-448B77CB37F9}\Attributes NAME NOT FOUND Length: 144 97 12:38:31,5330686 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{10C07CD0-EF91-4567-B850-448B77CB37F9}\FolderTypeID NAME NOT FOUND Length: 144 97 12:38:31,5330816 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{10C07CD0-EF91-4567-B850-448B77CB37F9}\InitFolderHandler NAME NOT FOUND Length: 144 97 12:38:31,5330955 MCLauncher.exe 84 RegQueryKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{10C07CD0-EF91-4567-B850-448B77CB37F9} SUCCESS Query: HandleTags, HandleTags: 0x400 97 12:38:31,5331016 MCLauncher.exe 84 RegOpenKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{10C07CD0-EF91-4567-B850-448B77CB37F9}\PropertyBag NAME NOT FOUND Desired Access: Read 97 12:38:31,5331105 MCLauncher.exe 84 RegCloseKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{10C07CD0-EF91-4567-B850-448B77CB37F9} SUCCESS 97 12:38:31,5331196 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:31,5331246 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: Name 97 12:38:31,5331335 MCLauncher.exe 84 RegOpenKey HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS Desired Access: Read 97 12:38:31,5331415 MCLauncher.exe 84 RegSetInfoKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 97 12:38:31,5331476 MCLauncher.exe 84 RegQueryKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS Query: HandleTags, HandleTags: 0x400 97 12:38:31,5331526 MCLauncher.exe 84 RegOpenKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{FDD39AD0-238F-46AF-ADB4-6C85480369C7} SUCCESS Desired Access: Read 97 12:38:31,5331601 MCLauncher.exe 84 RegCloseKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS 97 12:38:31,5331648 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{FDD39AD0-238F-46AF-ADB4-6C85480369C7}\Category SUCCESS Type: REG_DWORD, Length: 4, Data: 4 97 12:38:31,5331778 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{FDD39AD0-238F-46AF-ADB4-6C85480369C7}\Name SUCCESS Type: REG_SZ, Length: 18, Data: Personal 97 12:38:31,5331908 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{FDD39AD0-238F-46AF-ADB4-6C85480369C7}\ParentFolder NAME NOT FOUND Length: 144 97 12:38:31,5332019 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{FDD39AD0-238F-46AF-ADB4-6C85480369C7}\Description NAME NOT FOUND Length: 144 97 12:38:31,5332124 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{FDD39AD0-238F-46AF-ADB4-6C85480369C7}\RelativePath SUCCESS Type: REG_SZ, Length: 20, Data: Documents 97 12:38:31,5332246 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{FDD39AD0-238F-46AF-ADB4-6C85480369C7}\ParsingName BUFFER OVERFLOW Length: 144 97 12:38:31,5332357 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{FDD39AD0-238F-46AF-ADB4-6C85480369C7}\ParsingName SUCCESS Type: REG_SZ, Length: 176, Data: shell:::{20D04FE0-3AEA-1069-A2D8-08002B30309D}\::{A8CDFF1C-4878-43be-B5FD-F8091C1C60D0} 97 12:38:31,5332487 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{FDD39AD0-238F-46AF-ADB4-6C85480369C7}\InfoTip NAME NOT FOUND Length: 144 97 12:38:31,5332592 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{FDD39AD0-238F-46AF-ADB4-6C85480369C7}\LocalizedName SUCCESS Type: REG_EXPAND_SZ, Length: 100, Data: @%SystemRoot%\system32\windows.storage.dll,-21770 97 12:38:31,5332717 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{FDD39AD0-238F-46AF-ADB4-6C85480369C7}\Icon SUCCESS Type: REG_EXPAND_SZ, Length: 80, Data: %SystemRoot%\system32\imageres.dll,-112 97 12:38:31,5332842 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{FDD39AD0-238F-46AF-ADB4-6C85480369C7}\Security NAME NOT FOUND Length: 144 97 12:38:31,5332947 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{FDD39AD0-238F-46AF-ADB4-6C85480369C7}\StreamResource NAME NOT FOUND Length: 144 97 12:38:31,5333050 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{FDD39AD0-238F-46AF-ADB4-6C85480369C7}\StreamResourceType NAME NOT FOUND Length: 144 97 12:38:31,5333155 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{FDD39AD0-238F-46AF-ADB4-6C85480369C7}\LocalRedirectOnly NAME NOT FOUND Length: 144 97 12:38:31,5333257 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{FDD39AD0-238F-46AF-ADB4-6C85480369C7}\Roamable SUCCESS Type: REG_DWORD, Length: 4, Data: 1 97 12:38:31,5333374 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{FDD39AD0-238F-46AF-ADB4-6C85480369C7}\PreCreate SUCCESS Type: REG_DWORD, Length: 4, Data: 1 97 12:38:31,5333493 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{FDD39AD0-238F-46AF-ADB4-6C85480369C7}\Stream NAME NOT FOUND Length: 144 97 12:38:31,5333598 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{FDD39AD0-238F-46AF-ADB4-6C85480369C7}\PublishExpandedPath NAME NOT FOUND Length: 144 97 12:38:31,5333703 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{FDD39AD0-238F-46AF-ADB4-6C85480369C7}\DefinitionFlags NAME NOT FOUND Length: 144 97 12:38:31,5333806 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{FDD39AD0-238F-46AF-ADB4-6C85480369C7}\Attributes SUCCESS Type: REG_DWORD, Length: 4, Data: 1 97 12:38:31,5333922 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{FDD39AD0-238F-46AF-ADB4-6C85480369C7}\FolderTypeID NAME NOT FOUND Length: 144 97 12:38:31,5334028 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{FDD39AD0-238F-46AF-ADB4-6C85480369C7}\InitFolderHandler NAME NOT FOUND Length: 144 97 12:38:31,5334166 MCLauncher.exe 84 RegQueryKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{FDD39AD0-238F-46AF-ADB4-6C85480369C7} SUCCESS Query: HandleTags, HandleTags: 0x400 97 12:38:31,5334227 MCLauncher.exe 84 RegOpenKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{FDD39AD0-238F-46AF-ADB4-6C85480369C7}\PropertyBag SUCCESS Desired Access: Read 97 12:38:31,5334313 MCLauncher.exe 84 RegCloseKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{FDD39AD0-238F-46AF-ADB4-6C85480369C7} SUCCESS 97 12:38:31,5334421 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{FDD39AD0-238F-46AF-ADB4-6C85480369C7}\PropertyBag\ThisPCPolicy SUCCESS Type: REG_SZ, Length: 10, Data: Hide 97 12:38:31,5334557 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{FDD39AD0-238F-46AF-ADB4-6C85480369C7}\PropertyBag\ThisPCPolicy SUCCESS Type: REG_SZ, Length: 10, Data: Hide 97 12:38:31,5334817 MCLauncher.exe 84 RegOpenKey HKCU SUCCESS Desired Access: Read 97 12:38:31,5334925 MCLauncher.exe 84 RegQueryKey HKCU SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:31,5334975 MCLauncher.exe 84 RegQueryKey HKCU SUCCESS Query: Name 97 12:38:31,5335047 MCLauncher.exe 84 RegOpenKey HKCU\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer SUCCESS Desired Access: Query Value 97 12:38:31,5335144 MCLauncher.exe 84 RegSetInfoKey HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 97 12:38:31,5335186 MCLauncher.exe 84 RegQueryValue HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer\DisablePersonalDirChange NAME NOT FOUND Length: 144 97 12:38:31,5335305 MCLauncher.exe 84 RegCloseKey HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer SUCCESS 97 12:38:31,5335407 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:31,5335457 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: Name 97 12:38:31,5335546 MCLauncher.exe 84 RegOpenKey HKLM\Software\WOW6432Node\Microsoft\Windows NT\CurrentVersion\Terminal Server NAME NOT FOUND Desired Access: Read 97 12:38:31,5335654 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:31,5335701 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: Name 97 12:38:31,5335770 MCLauncher.exe 84 RegOpenKey HKLM\Software\WOW6432Node\Microsoft\Windows NT\CurrentVersion\Terminal Server NAME NOT FOUND Desired Access: Read 97 12:38:31,5335903 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:31,5335948 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: Name 97 12:38:31,5336028 MCLauncher.exe 84 RegOpenKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows NT\CurrentVersion\ProfileList\S-1-5-21-3477790013-1571897634-1299942168-1000\fdeploy REPARSE Desired Access: Read 97 12:38:31,5336103 MCLauncher.exe 84 RegOpenKey HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\ProfileList\S-1-5-21-3477790013-1571897634-1299942168-1000\fdeploy NAME NOT FOUND Desired Access: Read 97 12:38:31,5336197 MCLauncher.exe 84 RegQueryKey HKCU SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:31,5336244 MCLauncher.exe 84 RegQueryKey HKCU SUCCESS Query: Name 97 12:38:31,5336313 MCLauncher.exe 84 RegOpenKey HKCU\Software\Microsoft\Windows\CurrentVersion\Explorer\User Shell Folders SUCCESS Desired Access: Write 97 12:38:31,5336396 MCLauncher.exe 84 RegSetInfoKey HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\User Shell Folders SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 97 12:38:31,5336443 MCLauncher.exe 84 RegCloseKey HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\User Shell Folders SUCCESS 97 12:38:31,5336485 MCLauncher.exe 84 RegCloseKey HKCU SUCCESS 97 12:38:31,5336563 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:31,5336610 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: Name 97 12:38:31,5336684 MCLauncher.exe 84 RegOpenKey HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS Desired Access: Read 97 12:38:31,5336757 MCLauncher.exe 84 RegSetInfoKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 97 12:38:31,5336817 MCLauncher.exe 84 RegQueryKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS Query: HandleTags, HandleTags: 0x400 97 12:38:31,5336870 MCLauncher.exe 84 RegOpenKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{C1BAE2D0-10DF-4334-BEDD-7AA20B227A9D} SUCCESS Desired Access: Read 97 12:38:31,5336945 MCLauncher.exe 84 RegCloseKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS 97 12:38:31,5336992 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{C1BAE2D0-10DF-4334-BEDD-7AA20B227A9D}\Category SUCCESS Type: REG_DWORD, Length: 4, Data: 3 97 12:38:31,5337128 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{C1BAE2D0-10DF-4334-BEDD-7AA20B227A9D}\Name SUCCESS Type: REG_SZ, Length: 20, Data: OEM Links 97 12:38:31,5337264 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{C1BAE2D0-10DF-4334-BEDD-7AA20B227A9D}\ParentFolder SUCCESS Type: REG_SZ, Length: 78, Data: {62AB5D82-FDC1-4DC3-A9DD-070D1D495D97} 97 12:38:31,5337388 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{C1BAE2D0-10DF-4334-BEDD-7AA20B227A9D}\Description NAME NOT FOUND Length: 144 97 12:38:31,5337493 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{C1BAE2D0-10DF-4334-BEDD-7AA20B227A9D}\RelativePath SUCCESS Type: REG_SZ, Length: 20, Data: OEM Links 97 12:38:31,5337615 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{C1BAE2D0-10DF-4334-BEDD-7AA20B227A9D}\ParsingName NAME NOT FOUND Length: 144 97 12:38:31,5337723 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{C1BAE2D0-10DF-4334-BEDD-7AA20B227A9D}\InfoTip NAME NOT FOUND Length: 144 97 12:38:31,5337826 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{C1BAE2D0-10DF-4334-BEDD-7AA20B227A9D}\LocalizedName NAME NOT FOUND Length: 144 97 12:38:31,5337926 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{C1BAE2D0-10DF-4334-BEDD-7AA20B227A9D}\Icon NAME NOT FOUND Length: 144 97 12:38:31,5338028 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{C1BAE2D0-10DF-4334-BEDD-7AA20B227A9D}\Security NAME NOT FOUND Length: 144 97 12:38:31,5338131 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{C1BAE2D0-10DF-4334-BEDD-7AA20B227A9D}\StreamResource NAME NOT FOUND Length: 144 97 12:38:31,5338355 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{C1BAE2D0-10DF-4334-BEDD-7AA20B227A9D}\StreamResourceType NAME NOT FOUND Length: 144 97 12:38:31,5338469 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{C1BAE2D0-10DF-4334-BEDD-7AA20B227A9D}\LocalRedirectOnly NAME NOT FOUND Length: 144 97 12:38:31,5338571 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{C1BAE2D0-10DF-4334-BEDD-7AA20B227A9D}\Roamable NAME NOT FOUND Length: 144 97 12:38:31,5338701 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{C1BAE2D0-10DF-4334-BEDD-7AA20B227A9D}\PreCreate NAME NOT FOUND Length: 144 97 12:38:31,5338807 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{C1BAE2D0-10DF-4334-BEDD-7AA20B227A9D}\Stream NAME NOT FOUND Length: 144 97 12:38:31,5338906 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{C1BAE2D0-10DF-4334-BEDD-7AA20B227A9D}\PublishExpandedPath NAME NOT FOUND Length: 144 97 12:38:31,5339009 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{C1BAE2D0-10DF-4334-BEDD-7AA20B227A9D}\DefinitionFlags NAME NOT FOUND Length: 144 97 12:38:31,5339112 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{C1BAE2D0-10DF-4334-BEDD-7AA20B227A9D}\Attributes NAME NOT FOUND Length: 144 97 12:38:31,5339214 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{C1BAE2D0-10DF-4334-BEDD-7AA20B227A9D}\FolderTypeID NAME NOT FOUND Length: 144 97 12:38:31,5339317 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{C1BAE2D0-10DF-4334-BEDD-7AA20B227A9D}\InitFolderHandler NAME NOT FOUND Length: 144 97 12:38:31,5339455 MCLauncher.exe 84 RegQueryKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{C1BAE2D0-10DF-4334-BEDD-7AA20B227A9D} SUCCESS Query: HandleTags, HandleTags: 0x400 97 12:38:31,5339519 MCLauncher.exe 84 RegOpenKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{C1BAE2D0-10DF-4334-BEDD-7AA20B227A9D}\PropertyBag NAME NOT FOUND Desired Access: Read 97 12:38:31,5339599 MCLauncher.exe 84 RegCloseKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{C1BAE2D0-10DF-4334-BEDD-7AA20B227A9D} SUCCESS 97 12:38:31,5339796 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:31,5339846 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: Name 97 12:38:31,5339934 MCLauncher.exe 84 RegOpenKey HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS Desired Access: Read 97 12:38:31,5340012 MCLauncher.exe 84 RegSetInfoKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 97 12:38:31,5340076 MCLauncher.exe 84 RegQueryKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS Query: HandleTags, HandleTags: 0x400 97 12:38:31,5340128 MCLauncher.exe 84 RegOpenKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{190337D1-B8CA-4121-A639-6D472D16972A} SUCCESS Desired Access: Read 97 12:38:31,5340203 MCLauncher.exe 84 RegCloseKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS 97 12:38:31,5340250 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{190337d1-b8ca-4121-a639-6d472d16972a}\Category SUCCESS Type: REG_DWORD, Length: 4, Data: 1 97 12:38:31,5340383 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{190337d1-b8ca-4121-a639-6d472d16972a}\Name SUCCESS Type: REG_SZ, Length: 34, Data: SearchHomeFolder 97 12:38:31,5340516 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{190337d1-b8ca-4121-a639-6d472d16972a}\ParentFolder NAME NOT FOUND Length: 144 97 12:38:31,5340627 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{190337d1-b8ca-4121-a639-6d472d16972a}\Description NAME NOT FOUND Length: 144 97 12:38:31,5340730 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{190337d1-b8ca-4121-a639-6d472d16972a}\RelativePath NAME NOT FOUND Length: 144 97 12:38:31,5340832 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{190337d1-b8ca-4121-a639-6d472d16972a}\ParsingName SUCCESS Type: REG_SZ, Length: 82, Data: ::{9343812e-1c37-4a49-a12e-4b2d810d956b} 97 12:38:31,5340954 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{190337d1-b8ca-4121-a639-6d472d16972a}\InfoTip NAME NOT FOUND Length: 144 97 12:38:31,5341056 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{190337d1-b8ca-4121-a639-6d472d16972a}\LocalizedName NAME NOT FOUND Length: 144 97 12:38:31,5341159 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{190337d1-b8ca-4121-a639-6d472d16972a}\Icon NAME NOT FOUND Length: 144 97 12:38:31,5341259 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{190337d1-b8ca-4121-a639-6d472d16972a}\Security NAME NOT FOUND Length: 144 97 12:38:31,5341361 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{190337d1-b8ca-4121-a639-6d472d16972a}\StreamResource NAME NOT FOUND Length: 144 97 12:38:31,5341466 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{190337d1-b8ca-4121-a639-6d472d16972a}\StreamResourceType NAME NOT FOUND Length: 144 97 12:38:31,5341569 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{190337d1-b8ca-4121-a639-6d472d16972a}\LocalRedirectOnly NAME NOT FOUND Length: 144 97 12:38:31,5341669 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{190337d1-b8ca-4121-a639-6d472d16972a}\Roamable NAME NOT FOUND Length: 144 97 12:38:31,5341768 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{190337d1-b8ca-4121-a639-6d472d16972a}\PreCreate NAME NOT FOUND Length: 144 97 12:38:31,5341871 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{190337d1-b8ca-4121-a639-6d472d16972a}\Stream NAME NOT FOUND Length: 144 97 12:38:31,5341973 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{190337d1-b8ca-4121-a639-6d472d16972a}\PublishExpandedPath NAME NOT FOUND Length: 144 97 12:38:31,5342076 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{190337d1-b8ca-4121-a639-6d472d16972a}\DefinitionFlags NAME NOT FOUND Length: 144 97 12:38:31,5342179 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{190337d1-b8ca-4121-a639-6d472d16972a}\Attributes NAME NOT FOUND Length: 144 97 12:38:31,5342278 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{190337d1-b8ca-4121-a639-6d472d16972a}\FolderTypeID NAME NOT FOUND Length: 144 97 12:38:31,5342378 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{190337d1-b8ca-4121-a639-6d472d16972a}\InitFolderHandler NAME NOT FOUND Length: 144 97 12:38:31,5342517 MCLauncher.exe 84 RegQueryKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{190337d1-b8ca-4121-a639-6d472d16972a} SUCCESS Query: HandleTags, HandleTags: 0x400 97 12:38:31,5342577 MCLauncher.exe 84 RegOpenKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{190337d1-b8ca-4121-a639-6d472d16972a}\PropertyBag NAME NOT FOUND Desired Access: Read 97 12:38:31,5342663 MCLauncher.exe 84 RegCloseKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{190337d1-b8ca-4121-a639-6d472d16972a} SUCCESS 97 12:38:31,5342782 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{f42ee2d3-909f-4907-8871-4c22fc0bf756}\PropertyBag\ThisPCPolicy SUCCESS Type: REG_SZ, Length: 10, Data: Show 97 12:38:31,5342913 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{f42ee2d3-909f-4907-8871-4c22fc0bf756}\PropertyBag\ThisPCPolicy SUCCESS Type: REG_SZ, Length: 10, Data: Show 97 12:38:31,5343043 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{f42ee2d3-909f-4907-8871-4c22fc0bf756}\PropertyBag\BaseFolderId SUCCESS Type: REG_SZ, Length: 78, Data: {FDD39AD0-238F-46AF-ADB4-6C85480369C7} 97 12:38:31,5343165 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{f42ee2d3-909f-4907-8871-4c22fc0bf756}\PropertyBag\BaseFolderId SUCCESS Type: REG_SZ, Length: 78, Data: {FDD39AD0-238F-46AF-ADB4-6C85480369C7} 97 12:38:31,5343403 MCLauncher.exe 84 RegOpenKey HKCU SUCCESS Desired Access: Read 97 12:38:31,5343508 MCLauncher.exe 84 RegQueryKey HKCU SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:31,5343555 MCLauncher.exe 84 RegQueryKey HKCU SUCCESS Query: Name 97 12:38:31,5343628 MCLauncher.exe 84 RegOpenKey HKCU\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer SUCCESS Desired Access: Query Value 97 12:38:31,5343711 MCLauncher.exe 84 RegSetInfoKey HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 97 12:38:31,5343752 MCLauncher.exe 84 RegQueryValue HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer\DisablePersonalDirChange NAME NOT FOUND Length: 144 97 12:38:31,5343866 MCLauncher.exe 84 RegCloseKey HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer SUCCESS 97 12:38:31,5343954 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:31,5344007 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: Name 97 12:38:31,5344096 MCLauncher.exe 84 RegOpenKey HKLM\Software\WOW6432Node\Microsoft\Windows NT\CurrentVersion\Terminal Server NAME NOT FOUND Desired Access: Read 97 12:38:31,5344193 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:31,5344240 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: Name 97 12:38:31,5344309 MCLauncher.exe 84 RegOpenKey HKLM\Software\WOW6432Node\Microsoft\Windows NT\CurrentVersion\Terminal Server NAME NOT FOUND Desired Access: Read 97 12:38:31,5344431 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:31,5344475 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: Name 97 12:38:31,5344556 MCLauncher.exe 84 RegOpenKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows NT\CurrentVersion\ProfileList\S-1-5-21-3477790013-1571897634-1299942168-1000\fdeploy REPARSE Desired Access: Read 97 12:38:31,5344628 MCLauncher.exe 84 RegOpenKey HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\ProfileList\S-1-5-21-3477790013-1571897634-1299942168-1000\fdeploy NAME NOT FOUND Desired Access: Read 97 12:38:31,5344716 MCLauncher.exe 84 RegQueryKey HKCU SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:31,5344763 MCLauncher.exe 84 RegQueryKey HKCU SUCCESS Query: Name 97 12:38:31,5344833 MCLauncher.exe 84 RegOpenKey HKCU\Software\Microsoft\Windows\CurrentVersion\Explorer\User Shell Folders SUCCESS Desired Access: Write 97 12:38:31,5344916 MCLauncher.exe 84 RegSetInfoKey HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\User Shell Folders SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 97 12:38:31,5344963 MCLauncher.exe 84 RegCloseKey HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\User Shell Folders SUCCESS 97 12:38:31,5345002 MCLauncher.exe 84 RegCloseKey HKCU SUCCESS 97 12:38:31,5345077 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:31,5345129 MCLauncher.exe 84 RegOpenKey HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\AllowedEnumeration NAME NOT FOUND Desired Access: Read 97 12:38:31,5345232 MCLauncher.exe 84 RegQueryKey HKCU SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:31,5345282 MCLauncher.exe 84 RegOpenKey HKCU\Software\Microsoft\Windows\CurrentVersion\Explorer\AllowedEnumeration NAME NOT FOUND Desired Access: Read 97 12:38:31,5345451 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:31,5345495 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: Name 97 12:38:31,5345572 MCLauncher.exe 84 RegOpenKey HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS Desired Access: Read 97 12:38:31,5345644 MCLauncher.exe 84 RegSetInfoKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 97 12:38:31,5345708 MCLauncher.exe 84 RegQueryKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS Query: HandleTags, HandleTags: 0x400 97 12:38:31,5345758 MCLauncher.exe 84 RegOpenKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{1C2AC1DC-4358-4B6C-9733-AF21156576F0} SUCCESS Desired Access: Read 97 12:38:31,5345836 MCLauncher.exe 84 RegCloseKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS 97 12:38:31,5345886 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{1C2AC1DC-4358-4B6C-9733-AF21156576F0}\Category SUCCESS Type: REG_DWORD, Length: 4, Data: 1 97 12:38:31,5346024 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{1C2AC1DC-4358-4B6C-9733-AF21156576F0}\Name SUCCESS Type: REG_SZ, Length: 34, Data: ThisDeviceFolder 97 12:38:31,5346154 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{1C2AC1DC-4358-4B6C-9733-AF21156576F0}\ParentFolder NAME NOT FOUND Length: 144 97 12:38:31,5346265 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{1C2AC1DC-4358-4B6C-9733-AF21156576F0}\Description NAME NOT FOUND Length: 144 97 12:38:31,5346368 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{1C2AC1DC-4358-4B6C-9733-AF21156576F0}\RelativePath NAME NOT FOUND Length: 144 97 12:38:31,5346470 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{1C2AC1DC-4358-4B6C-9733-AF21156576F0}\ParsingName SUCCESS Type: REG_SZ, Length: 82, Data: ::{5b934b42-522b-4c34-bbfe-37a3ef7b9c90} 97 12:38:31,5346622 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{1C2AC1DC-4358-4B6C-9733-AF21156576F0}\InfoTip NAME NOT FOUND Length: 144 97 12:38:31,5346728 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{1C2AC1DC-4358-4B6C-9733-AF21156576F0}\LocalizedName NAME NOT FOUND Length: 144 97 12:38:31,5346830 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{1C2AC1DC-4358-4B6C-9733-AF21156576F0}\Icon NAME NOT FOUND Length: 144 97 12:38:31,5346930 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{1C2AC1DC-4358-4B6C-9733-AF21156576F0}\Security NAME NOT FOUND Length: 144 97 12:38:31,5347030 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{1C2AC1DC-4358-4B6C-9733-AF21156576F0}\StreamResource NAME NOT FOUND Length: 144 97 12:38:31,5347135 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{1C2AC1DC-4358-4B6C-9733-AF21156576F0}\StreamResourceType NAME NOT FOUND Length: 144 97 12:38:31,5347238 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{1C2AC1DC-4358-4B6C-9733-AF21156576F0}\LocalRedirectOnly NAME NOT FOUND Length: 144 97 12:38:31,5347337 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{1C2AC1DC-4358-4B6C-9733-AF21156576F0}\Roamable NAME NOT FOUND Length: 144 97 12:38:31,5347440 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{1C2AC1DC-4358-4B6C-9733-AF21156576F0}\PreCreate NAME NOT FOUND Length: 144 97 12:38:31,5347542 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{1C2AC1DC-4358-4B6C-9733-AF21156576F0}\Stream NAME NOT FOUND Length: 144 97 12:38:31,5347642 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{1C2AC1DC-4358-4B6C-9733-AF21156576F0}\PublishExpandedPath NAME NOT FOUND Length: 144 97 12:38:31,5347745 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{1C2AC1DC-4358-4B6C-9733-AF21156576F0}\DefinitionFlags NAME NOT FOUND Length: 144 97 12:38:31,5347847 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{1C2AC1DC-4358-4B6C-9733-AF21156576F0}\Attributes NAME NOT FOUND Length: 144 97 12:38:31,5348035 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{1C2AC1DC-4358-4B6C-9733-AF21156576F0}\FolderTypeID NAME NOT FOUND Length: 144 97 12:38:31,5348163 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{1C2AC1DC-4358-4B6C-9733-AF21156576F0}\InitFolderHandler NAME NOT FOUND Length: 144 97 12:38:31,5348301 MCLauncher.exe 84 RegQueryKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{1C2AC1DC-4358-4B6C-9733-AF21156576F0} SUCCESS Query: HandleTags, HandleTags: 0x400 97 12:38:31,5348362 MCLauncher.exe 84 RegOpenKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{1C2AC1DC-4358-4B6C-9733-AF21156576F0}\PropertyBag NAME NOT FOUND Desired Access: Read 97 12:38:31,5348448 MCLauncher.exe 84 RegCloseKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{1C2AC1DC-4358-4B6C-9733-AF21156576F0} SUCCESS 97 12:38:31,5348540 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:31,5348590 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: Name 97 12:38:31,5348673 MCLauncher.exe 84 RegOpenKey HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS Desired Access: Read 97 12:38:31,5348750 MCLauncher.exe 84 RegSetInfoKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 97 12:38:31,5348811 MCLauncher.exe 84 RegQueryKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS Query: HandleTags, HandleTags: 0x400 97 12:38:31,5348861 MCLauncher.exe 84 RegOpenKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{54EED2E0-E7CA-4FDB-9148-0F4247291CFA} SUCCESS Desired Access: Read 97 12:38:31,5348936 MCLauncher.exe 84 RegCloseKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS 97 12:38:31,5348980 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{54EED2E0-E7CA-4fdb-9148-0F4247291CFA}\Category SUCCESS Type: REG_DWORD, Length: 4, Data: 2 97 12:38:31,5349113 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{54EED2E0-E7CA-4fdb-9148-0F4247291CFA}\Name SUCCESS Type: REG_SZ, Length: 38, Data: SystemCertificates 97 12:38:31,5349241 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{54EED2E0-E7CA-4fdb-9148-0F4247291CFA}\ParentFolder NAME NOT FOUND Length: 144 97 12:38:31,5349349 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{54EED2E0-E7CA-4fdb-9148-0F4247291CFA}\Description NAME NOT FOUND Length: 144 97 12:38:31,5349448 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{54EED2E0-E7CA-4fdb-9148-0F4247291CFA}\RelativePath NAME NOT FOUND Length: 144 97 12:38:31,5349551 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{54EED2E0-E7CA-4fdb-9148-0F4247291CFA}\ParsingName NAME NOT FOUND Length: 144 97 12:38:31,5349651 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{54EED2E0-E7CA-4fdb-9148-0F4247291CFA}\InfoTip NAME NOT FOUND Length: 144 97 12:38:31,5349753 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{54EED2E0-E7CA-4fdb-9148-0F4247291CFA}\LocalizedName NAME NOT FOUND Length: 144 97 12:38:31,5349853 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{54EED2E0-E7CA-4fdb-9148-0F4247291CFA}\Icon NAME NOT FOUND Length: 144 97 12:38:31,5349955 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{54EED2E0-E7CA-4fdb-9148-0F4247291CFA}\Security NAME NOT FOUND Length: 144 97 12:38:31,5350055 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{54EED2E0-E7CA-4fdb-9148-0F4247291CFA}\StreamResource NAME NOT FOUND Length: 144 97 12:38:31,5350158 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{54EED2E0-E7CA-4fdb-9148-0F4247291CFA}\StreamResourceType NAME NOT FOUND Length: 144 97 12:38:31,5350257 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{54EED2E0-E7CA-4fdb-9148-0F4247291CFA}\LocalRedirectOnly NAME NOT FOUND Length: 144 97 12:38:31,5350360 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{54EED2E0-E7CA-4fdb-9148-0F4247291CFA}\Roamable NAME NOT FOUND Length: 144 97 12:38:31,5350493 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{54EED2E0-E7CA-4fdb-9148-0F4247291CFA}\PreCreate NAME NOT FOUND Length: 144 97 12:38:31,5350593 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{54EED2E0-E7CA-4fdb-9148-0F4247291CFA}\Stream NAME NOT FOUND Length: 144 97 12:38:31,5350695 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{54EED2E0-E7CA-4fdb-9148-0F4247291CFA}\PublishExpandedPath NAME NOT FOUND Length: 144 97 12:38:31,5350795 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{54EED2E0-E7CA-4fdb-9148-0F4247291CFA}\DefinitionFlags NAME NOT FOUND Length: 144 97 12:38:31,5350895 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{54EED2E0-E7CA-4fdb-9148-0F4247291CFA}\Attributes NAME NOT FOUND Length: 144 97 12:38:31,5350994 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{54EED2E0-E7CA-4fdb-9148-0F4247291CFA}\FolderTypeID NAME NOT FOUND Length: 144 97 12:38:31,5351094 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{54EED2E0-E7CA-4fdb-9148-0F4247291CFA}\InitFolderHandler NAME NOT FOUND Length: 144 97 12:38:31,5351224 MCLauncher.exe 84 RegQueryKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{54EED2E0-E7CA-4fdb-9148-0F4247291CFA} SUCCESS Query: HandleTags, HandleTags: 0x400 97 12:38:31,5351285 MCLauncher.exe 84 RegOpenKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{54EED2E0-E7CA-4fdb-9148-0F4247291CFA}\PropertyBag NAME NOT FOUND Desired Access: Read 97 12:38:31,5351366 MCLauncher.exe 84 RegCloseKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{54EED2E0-E7CA-4fdb-9148-0F4247291CFA} SUCCESS 97 12:38:31,5351452 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:31,5351501 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: Name 97 12:38:31,5351582 MCLauncher.exe 84 RegOpenKey HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS Desired Access: Read 97 12:38:31,5351657 MCLauncher.exe 84 RegSetInfoKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 97 12:38:31,5351715 MCLauncher.exe 84 RegQueryKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS Query: HandleTags, HandleTags: 0x400 97 12:38:31,5351767 MCLauncher.exe 84 RegOpenKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{BFB9D5E0-C6A9-404C-B2B2-AE6DB6AF4968} SUCCESS Desired Access: Read 97 12:38:31,5351839 MCLauncher.exe 84 RegCloseKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS 97 12:38:31,5351881 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{bfb9d5e0-c6a9-404c-b2b2-ae6db6af4968}\Category SUCCESS Type: REG_DWORD, Length: 4, Data: 4 97 12:38:31,5352008 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{bfb9d5e0-c6a9-404c-b2b2-ae6db6af4968}\Name SUCCESS Type: REG_SZ, Length: 12, Data: Links 97 12:38:31,5352139 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{bfb9d5e0-c6a9-404c-b2b2-ae6db6af4968}\ParentFolder NAME NOT FOUND Length: 144 97 12:38:31,5352247 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{bfb9d5e0-c6a9-404c-b2b2-ae6db6af4968}\Description NAME NOT FOUND Length: 144 97 12:38:31,5352352 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{bfb9d5e0-c6a9-404c-b2b2-ae6db6af4968}\RelativePath SUCCESS Type: REG_SZ, Length: 12, Data: Links 97 12:38:31,5352474 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{bfb9d5e0-c6a9-404c-b2b2-ae6db6af4968}\ParsingName BUFFER OVERFLOW Length: 144 97 12:38:31,5352582 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{bfb9d5e0-c6a9-404c-b2b2-ae6db6af4968}\ParsingName SUCCESS Type: REG_SZ, Length: 160, Data: ::{59031a47-3f72-44a7-89c5-5595fe6b30ee}\{bfb9d5e0-c6a9-404c-b2b2-ae6db6af4968} 97 12:38:31,5352709 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{bfb9d5e0-c6a9-404c-b2b2-ae6db6af4968}\InfoTip NAME NOT FOUND Length: 144 97 12:38:31,5352815 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{bfb9d5e0-c6a9-404c-b2b2-ae6db6af4968}\LocalizedName SUCCESS Type: REG_EXPAND_SZ, Length: 84, Data: @%SystemRoot%\system32\shell32.dll,-21810 97 12:38:31,5352939 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{bfb9d5e0-c6a9-404c-b2b2-ae6db6af4968}\Icon SUCCESS Type: REG_EXPAND_SZ, Length: 80, Data: %SystemRoot%\system32\imageres.dll,-185 97 12:38:31,5353064 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{bfb9d5e0-c6a9-404c-b2b2-ae6db6af4968}\Security NAME NOT FOUND Length: 144 97 12:38:31,5353197 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{bfb9d5e0-c6a9-404c-b2b2-ae6db6af4968}\StreamResource NAME NOT FOUND Length: 144 97 12:38:31,5353302 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{bfb9d5e0-c6a9-404c-b2b2-ae6db6af4968}\StreamResourceType NAME NOT FOUND Length: 144 97 12:38:31,5353408 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{bfb9d5e0-c6a9-404c-b2b2-ae6db6af4968}\LocalRedirectOnly NAME NOT FOUND Length: 144 97 12:38:31,5353507 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{bfb9d5e0-c6a9-404c-b2b2-ae6db6af4968}\Roamable SUCCESS Type: REG_DWORD, Length: 4, Data: 1 97 12:38:31,5353626 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{bfb9d5e0-c6a9-404c-b2b2-ae6db6af4968}\PreCreate SUCCESS Type: REG_DWORD, Length: 4, Data: 1 97 12:38:31,5353743 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{bfb9d5e0-c6a9-404c-b2b2-ae6db6af4968}\Stream NAME NOT FOUND Length: 144 97 12:38:31,5353848 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{bfb9d5e0-c6a9-404c-b2b2-ae6db6af4968}\PublishExpandedPath SUCCESS Type: REG_DWORD, Length: 4, Data: 1 97 12:38:31,5353967 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{bfb9d5e0-c6a9-404c-b2b2-ae6db6af4968}\DefinitionFlags NAME NOT FOUND Length: 144 97 12:38:31,5354073 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{bfb9d5e0-c6a9-404c-b2b2-ae6db6af4968}\Attributes SUCCESS Type: REG_DWORD, Length: 4, Data: 1 97 12:38:31,5354189 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{bfb9d5e0-c6a9-404c-b2b2-ae6db6af4968}\FolderTypeID NAME NOT FOUND Length: 144 97 12:38:31,5354294 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{bfb9d5e0-c6a9-404c-b2b2-ae6db6af4968}\InitFolderHandler NAME NOT FOUND Length: 144 97 12:38:31,5354430 MCLauncher.exe 84 RegQueryKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{bfb9d5e0-c6a9-404c-b2b2-ae6db6af4968} SUCCESS Query: HandleTags, HandleTags: 0x400 97 12:38:31,5354491 MCLauncher.exe 84 RegOpenKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{bfb9d5e0-c6a9-404c-b2b2-ae6db6af4968}\PropertyBag NAME NOT FOUND Desired Access: Read 97 12:38:31,5354574 MCLauncher.exe 84 RegCloseKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{bfb9d5e0-c6a9-404c-b2b2-ae6db6af4968} SUCCESS 97 12:38:31,5354671 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:31,5354724 MCLauncher.exe 84 RegOpenKey HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\AllowedEnumeration NAME NOT FOUND Desired Access: Read 97 12:38:31,5354821 MCLauncher.exe 84 RegQueryKey HKCU SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:31,5354870 MCLauncher.exe 84 RegOpenKey HKCU\Software\Microsoft\Windows\CurrentVersion\Explorer\AllowedEnumeration NAME NOT FOUND Desired Access: Read 97 12:38:31,5355053 MCLauncher.exe 84 RegQueryKey HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer SUCCESS Query: HandleTags, HandleTags: 0x400 97 12:38:31,5355106 MCLauncher.exe 84 RegOpenKey HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\SessionInfo\1 SUCCESS Desired Access: Query Value 97 12:38:31,5355200 MCLauncher.exe 84 RegQueryKey HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\SessionInfo\1 SUCCESS Query: HandleTags, HandleTags: 0x400 97 12:38:31,5355250 MCLauncher.exe 84 RegOpenKey HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\SessionInfo\1\KnownFolders NAME NOT FOUND Desired Access: Query Value 97 12:38:31,5355317 MCLauncher.exe 84 RegCloseKey HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\SessionInfo\1 SUCCESS 97 12:38:31,5355402 MCLauncher.exe 84 RegOpenKey HKCU SUCCESS Desired Access: Read 97 12:38:31,5355483 MCLauncher.exe 84 RegQueryKey HKCU SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:31,5355530 MCLauncher.exe 84 RegQueryKey HKCU SUCCESS Query: Name 97 12:38:31,5355599 MCLauncher.exe 84 RegOpenKey HKCU\Software\Microsoft\Windows\CurrentVersion\Explorer\User Shell Folders SUCCESS Desired Access: Read 97 12:38:31,5355677 MCLauncher.exe 84 RegSetInfoKey HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\User Shell Folders SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 97 12:38:31,5355721 MCLauncher.exe 84 RegCloseKey HKCU SUCCESS 97 12:38:31,5355771 MCLauncher.exe 84 RegQueryValue HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\User Shell Folders\{BFB9D5E0-C6A9-404C-B2B2-AE6DB6AF4968} NAME NOT FOUND Length: 144 97 12:38:31,5356023 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:31,5356073 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: Name 97 12:38:31,5356164 MCLauncher.exe 84 RegOpenKey HKLM\Software\WOW6432Node\Microsoft\Windows NT\CurrentVersion\ProfileList\S-1-5-21-3477790013-1571897634-1299942168-1000 REPARSE Desired Access: Read 97 12:38:31,5356247 MCLauncher.exe 84 RegOpenKey HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\ProfileList\S-1-5-21-3477790013-1571897634-1299942168-1000 SUCCESS Desired Access: Read 97 12:38:31,5356311 MCLauncher.exe 84 RegSetInfoKey HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\ProfileList\S-1-5-21-3477790013-1571897634-1299942168-1000 SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 97 12:38:31,5356350 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\ProfileList\S-1-5-21-3477790013-1571897634-1299942168-1000\ProfileImagePath SUCCESS Type: REG_EXPAND_SZ, Length: 28, Data: C:\Users\User 97 12:38:31,5356486 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\ProfileList\S-1-5-21-3477790013-1571897634-1299942168-1000\ProfileImagePath SUCCESS Type: REG_EXPAND_SZ, Length: 28, Data: C:\Users\User 97 12:38:31,5356619 MCLauncher.exe 84 RegCloseKey HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\ProfileList\S-1-5-21-3477790013-1571897634-1299942168-1000 SUCCESS 97 12:38:31,5356702 MCLauncher.exe 84 RegCloseKey HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\User Shell Folders SUCCESS 97 12:38:31,5356799 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:31,5356849 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: Name 97 12:38:31,5356935 MCLauncher.exe 84 RegOpenKey HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS Desired Access: Read 97 12:38:31,5357018 MCLauncher.exe 84 RegSetInfoKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 97 12:38:31,5357081 MCLauncher.exe 84 RegQueryKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS Query: HandleTags, HandleTags: 0x400 97 12:38:31,5357134 MCLauncher.exe 84 RegOpenKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{5CD7AEE2-2219-4A67-B85D-6C9CE15660CB} SUCCESS Desired Access: Read 97 12:38:31,5357212 MCLauncher.exe 84 RegCloseKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS 97 12:38:31,5357256 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{5cd7aee2-2219-4a67-b85d-6c9ce15660cb}\Category SUCCESS Type: REG_DWORD, Length: 4, Data: 4 97 12:38:31,5357383 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{5cd7aee2-2219-4a67-b85d-6c9ce15660cb}\Name SUCCESS Type: REG_SZ, Length: 34, Data: UserProgramFiles 97 12:38:31,5357514 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{5cd7aee2-2219-4a67-b85d-6c9ce15660cb}\ParentFolder SUCCESS Type: REG_SZ, Length: 78, Data: {F1B32785-6FBA-4FCF-9D55-7B8E7F157091} 97 12:38:31,5357638 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{5cd7aee2-2219-4a67-b85d-6c9ce15660cb}\Description NAME NOT FOUND Length: 144 97 12:38:31,5358530 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{5cd7aee2-2219-4a67-b85d-6c9ce15660cb}\RelativePath SUCCESS Type: REG_SZ, Length: 18, Data: Programs 97 12:38:31,5358697 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{5cd7aee2-2219-4a67-b85d-6c9ce15660cb}\ParsingName NAME NOT FOUND Length: 144 97 12:38:31,5358805 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{5cd7aee2-2219-4a67-b85d-6c9ce15660cb}\InfoTip NAME NOT FOUND Length: 144 97 12:38:31,5358910 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{5cd7aee2-2219-4a67-b85d-6c9ce15660cb}\LocalizedName NAME NOT FOUND Length: 144 97 12:38:31,5359012 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{5cd7aee2-2219-4a67-b85d-6c9ce15660cb}\Icon NAME NOT FOUND Length: 144 97 12:38:31,5359112 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{5cd7aee2-2219-4a67-b85d-6c9ce15660cb}\Security NAME NOT FOUND Length: 144 97 12:38:31,5359215 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{5cd7aee2-2219-4a67-b85d-6c9ce15660cb}\StreamResource NAME NOT FOUND Length: 144 97 12:38:31,5359317 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{5cd7aee2-2219-4a67-b85d-6c9ce15660cb}\StreamResourceType NAME NOT FOUND Length: 144 97 12:38:31,5359420 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{5cd7aee2-2219-4a67-b85d-6c9ce15660cb}\LocalRedirectOnly NAME NOT FOUND Length: 144 97 12:38:31,5359522 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{5cd7aee2-2219-4a67-b85d-6c9ce15660cb}\Roamable NAME NOT FOUND Length: 144 97 12:38:31,5359625 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{5cd7aee2-2219-4a67-b85d-6c9ce15660cb}\PreCreate NAME NOT FOUND Length: 144 97 12:38:31,5359727 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{5cd7aee2-2219-4a67-b85d-6c9ce15660cb}\Stream NAME NOT FOUND Length: 144 97 12:38:31,5359830 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{5cd7aee2-2219-4a67-b85d-6c9ce15660cb}\PublishExpandedPath NAME NOT FOUND Length: 144 97 12:38:31,5359932 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{5cd7aee2-2219-4a67-b85d-6c9ce15660cb}\DefinitionFlags NAME NOT FOUND Length: 144 97 12:38:31,5360035 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{5cd7aee2-2219-4a67-b85d-6c9ce15660cb}\Attributes NAME NOT FOUND Length: 144 97 12:38:31,5360137 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{5cd7aee2-2219-4a67-b85d-6c9ce15660cb}\FolderTypeID NAME NOT FOUND Length: 144 97 12:38:31,5360240 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{5cd7aee2-2219-4a67-b85d-6c9ce15660cb}\InitFolderHandler NAME NOT FOUND Length: 144 97 12:38:31,5360387 MCLauncher.exe 84 RegQueryKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{5cd7aee2-2219-4a67-b85d-6c9ce15660cb} SUCCESS Query: HandleTags, HandleTags: 0x400 97 12:38:31,5360450 MCLauncher.exe 84 RegOpenKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{5cd7aee2-2219-4a67-b85d-6c9ce15660cb}\PropertyBag NAME NOT FOUND Desired Access: Read 97 12:38:31,5360542 MCLauncher.exe 84 RegCloseKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{5cd7aee2-2219-4a67-b85d-6c9ce15660cb} SUCCESS 97 12:38:31,5360647 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:31,5360700 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: Name 97 12:38:31,5360788 MCLauncher.exe 84 RegOpenKey HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS Desired Access: Read 97 12:38:31,5360869 MCLauncher.exe 84 RegSetInfoKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 97 12:38:31,5360930 MCLauncher.exe 84 RegQueryKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS Query: HandleTags, HandleTags: 0x400 97 12:38:31,5360980 MCLauncher.exe 84 RegOpenKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{B94237E7-57AC-4347-9151-B08C6C32D1F7} SUCCESS Desired Access: Read 97 12:38:31,5361054 MCLauncher.exe 84 RegCloseKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS 97 12:38:31,5361096 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{B94237E7-57AC-4347-9151-B08C6C32D1F7}\Category SUCCESS Type: REG_DWORD, Length: 4, Data: 3 97 12:38:31,5361232 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{B94237E7-57AC-4347-9151-B08C6C32D1F7}\Name SUCCESS Type: REG_SZ, Length: 34, Data: Common Templates 97 12:38:31,5361362 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{B94237E7-57AC-4347-9151-B08C6C32D1F7}\ParentFolder SUCCESS Type: REG_SZ, Length: 78, Data: {62AB5D82-FDC1-4DC3-A9DD-070D1D495D97} 97 12:38:31,5361484 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{B94237E7-57AC-4347-9151-B08C6C32D1F7}\Description NAME NOT FOUND Length: 144 97 12:38:31,5361589 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{B94237E7-57AC-4347-9151-B08C6C32D1F7}\RelativePath SUCCESS Type: REG_SZ, Length: 56, Data: Microsoft\Windows\Templates 97 12:38:31,5361736 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{B94237E7-57AC-4347-9151-B08C6C32D1F7}\ParsingName NAME NOT FOUND Length: 144 97 12:38:31,5361841 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{B94237E7-57AC-4347-9151-B08C6C32D1F7}\InfoTip NAME NOT FOUND Length: 144 97 12:38:31,5361941 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{B94237E7-57AC-4347-9151-B08C6C32D1F7}\LocalizedName NAME NOT FOUND Length: 144 97 12:38:31,5362043 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{B94237E7-57AC-4347-9151-B08C6C32D1F7}\Icon NAME NOT FOUND Length: 144 97 12:38:31,5362143 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{B94237E7-57AC-4347-9151-B08C6C32D1F7}\Security NAME NOT FOUND Length: 144 97 12:38:31,5362246 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{B94237E7-57AC-4347-9151-B08C6C32D1F7}\StreamResource NAME NOT FOUND Length: 144 97 12:38:31,5362345 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{B94237E7-57AC-4347-9151-B08C6C32D1F7}\StreamResourceType NAME NOT FOUND Length: 144 97 12:38:31,5362445 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{B94237E7-57AC-4347-9151-B08C6C32D1F7}\LocalRedirectOnly NAME NOT FOUND Length: 144 97 12:38:31,5362545 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{B94237E7-57AC-4347-9151-B08C6C32D1F7}\Roamable NAME NOT FOUND Length: 144 97 12:38:31,5362645 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{B94237E7-57AC-4347-9151-B08C6C32D1F7}\PreCreate NAME NOT FOUND Length: 144 97 12:38:31,5362744 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{B94237E7-57AC-4347-9151-B08C6C32D1F7}\Stream NAME NOT FOUND Length: 144 97 12:38:31,5362844 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{B94237E7-57AC-4347-9151-B08C6C32D1F7}\PublishExpandedPath NAME NOT FOUND Length: 144 97 12:38:31,5362947 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{B94237E7-57AC-4347-9151-B08C6C32D1F7}\DefinitionFlags NAME NOT FOUND Length: 144 97 12:38:31,5363046 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{B94237E7-57AC-4347-9151-B08C6C32D1F7}\Attributes NAME NOT FOUND Length: 144 97 12:38:31,5363146 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{B94237E7-57AC-4347-9151-B08C6C32D1F7}\FolderTypeID NAME NOT FOUND Length: 144 97 12:38:31,5363249 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{B94237E7-57AC-4347-9151-B08C6C32D1F7}\InitFolderHandler NAME NOT FOUND Length: 144 97 12:38:31,5363387 MCLauncher.exe 84 RegQueryKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{B94237E7-57AC-4347-9151-B08C6C32D1F7} SUCCESS Query: HandleTags, HandleTags: 0x400 97 12:38:31,5363448 MCLauncher.exe 84 RegOpenKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{B94237E7-57AC-4347-9151-B08C6C32D1F7}\PropertyBag NAME NOT FOUND Desired Access: Read 97 12:38:31,5363531 MCLauncher.exe 84 RegCloseKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{B94237E7-57AC-4347-9151-B08C6C32D1F7} SUCCESS 97 12:38:31,5363620 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:31,5363670 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: Name 97 12:38:31,5363750 MCLauncher.exe 84 RegOpenKey HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS Desired Access: Read 97 12:38:31,5363828 MCLauncher.exe 84 RegSetInfoKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 97 12:38:31,5363886 MCLauncher.exe 84 RegQueryKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS Query: HandleTags, HandleTags: 0x400 97 12:38:31,5363938 MCLauncher.exe 84 RegOpenKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{352481E8-33BE-4251-BA85-6007CAEDCF9D} SUCCESS Desired Access: Read 97 12:38:31,5364013 MCLauncher.exe 84 RegCloseKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS 97 12:38:31,5364055 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{352481E8-33BE-4251-BA85-6007CAEDCF9D}\Category SUCCESS Type: REG_DWORD, Length: 4, Data: 4 97 12:38:31,5364185 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{352481E8-33BE-4251-BA85-6007CAEDCF9D}\Name SUCCESS Type: REG_SZ, Length: 12, Data: Cache 97 12:38:31,5364315 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{352481E8-33BE-4251-BA85-6007CAEDCF9D}\ParentFolder SUCCESS Type: REG_SZ, Length: 78, Data: {F1B32785-6FBA-4FCF-9D55-7B8E7F157091} 97 12:38:31,5364440 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{352481E8-33BE-4251-BA85-6007CAEDCF9D}\Description NAME NOT FOUND Length: 144 97 12:38:31,5364542 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{352481E8-33BE-4251-BA85-6007CAEDCF9D}\RelativePath SUCCESS Type: REG_SZ, Length: 56, Data: Microsoft\Windows\INetCache 97 12:38:31,5364664 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{352481E8-33BE-4251-BA85-6007CAEDCF9D}\ParsingName NAME NOT FOUND Length: 144 97 12:38:31,5364772 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{352481E8-33BE-4251-BA85-6007CAEDCF9D}\InfoTip NAME NOT FOUND Length: 144 97 12:38:31,5364872 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{352481E8-33BE-4251-BA85-6007CAEDCF9D}\LocalizedName NAME NOT FOUND Length: 144 97 12:38:31,5364972 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{352481E8-33BE-4251-BA85-6007CAEDCF9D}\Icon NAME NOT FOUND Length: 144 97 12:38:31,5365074 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{352481E8-33BE-4251-BA85-6007CAEDCF9D}\Security NAME NOT FOUND Length: 144 97 12:38:31,5365177 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{352481E8-33BE-4251-BA85-6007CAEDCF9D}\StreamResource NAME NOT FOUND Length: 144 97 12:38:31,5365277 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{352481E8-33BE-4251-BA85-6007CAEDCF9D}\StreamResourceType NAME NOT FOUND Length: 144 97 12:38:31,5365379 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{352481E8-33BE-4251-BA85-6007CAEDCF9D}\LocalRedirectOnly SUCCESS Type: REG_DWORD, Length: 4, Data: 1 97 12:38:31,5365496 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{352481E8-33BE-4251-BA85-6007CAEDCF9D}\Roamable NAME NOT FOUND Length: 144 97 12:38:31,5365598 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{352481E8-33BE-4251-BA85-6007CAEDCF9D}\PreCreate NAME NOT FOUND Length: 144 97 12:38:31,5365701 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{352481E8-33BE-4251-BA85-6007CAEDCF9D}\Stream NAME NOT FOUND Length: 144 97 12:38:31,5365800 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{352481E8-33BE-4251-BA85-6007CAEDCF9D}\PublishExpandedPath NAME NOT FOUND Length: 144 97 12:38:31,5365900 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{352481E8-33BE-4251-BA85-6007CAEDCF9D}\DefinitionFlags NAME NOT FOUND Length: 144 97 12:38:31,5366003 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{352481E8-33BE-4251-BA85-6007CAEDCF9D}\Attributes NAME NOT FOUND Length: 144 97 12:38:31,5366102 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{352481E8-33BE-4251-BA85-6007CAEDCF9D}\FolderTypeID NAME NOT FOUND Length: 144 97 12:38:31,5366205 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{352481E8-33BE-4251-BA85-6007CAEDCF9D}\InitFolderHandler NAME NOT FOUND Length: 144 97 12:38:31,5366343 MCLauncher.exe 84 RegQueryKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{352481E8-33BE-4251-BA85-6007CAEDCF9D} SUCCESS Query: HandleTags, HandleTags: 0x400 97 12:38:31,5366404 MCLauncher.exe 84 RegOpenKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{352481E8-33BE-4251-BA85-6007CAEDCF9D}\PropertyBag NAME NOT FOUND Desired Access: Read 97 12:38:31,5366490 MCLauncher.exe 84 RegCloseKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{352481E8-33BE-4251-BA85-6007CAEDCF9D} SUCCESS 97 12:38:31,5366573 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:31,5366623 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: Name 97 12:38:31,5366704 MCLauncher.exe 84 RegOpenKey HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS Desired Access: Read 97 12:38:31,5366776 MCLauncher.exe 84 RegSetInfoKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 97 12:38:31,5366837 MCLauncher.exe 84 RegQueryKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS Query: HandleTags, HandleTags: 0x400 97 12:38:31,5366886 MCLauncher.exe 84 RegOpenKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{A63293E8-664E-48DB-A079-DF759E0509F7} SUCCESS Desired Access: Read 97 12:38:31,5366958 MCLauncher.exe 84 RegCloseKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS 97 12:38:31,5367003 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{A63293E8-664E-48DB-A079-DF759E0509F7}\Category SUCCESS Type: REG_DWORD, Length: 4, Data: 4 97 12:38:31,5367136 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{A63293E8-664E-48DB-A079-DF759E0509F7}\Name SUCCESS Type: REG_SZ, Length: 20, Data: Templates 97 12:38:31,5367271 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{A63293E8-664E-48DB-A079-DF759E0509F7}\ParentFolder SUCCESS Type: REG_SZ, Length: 78, Data: {3EB685DB-65F9-4CF6-A03A-E3EF65729F3D} 97 12:38:31,5367396 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{A63293E8-664E-48DB-A079-DF759E0509F7}\Description NAME NOT FOUND Length: 144 97 12:38:31,5367593 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{A63293E8-664E-48DB-A079-DF759E0509F7}\RelativePath SUCCESS Type: REG_SZ, Length: 56, Data: Microsoft\Windows\Templates 97 12:38:31,5367806 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{A63293E8-664E-48DB-A079-DF759E0509F7}\ParsingName NAME NOT FOUND Length: 144 97 12:38:31,5367961 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{A63293E8-664E-48DB-A079-DF759E0509F7}\InfoTip NAME NOT FOUND Length: 144 97 12:38:31,5368072 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{A63293E8-664E-48DB-A079-DF759E0509F7}\LocalizedName NAME NOT FOUND Length: 144 97 12:38:31,5368175 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{A63293E8-664E-48DB-A079-DF759E0509F7}\Icon NAME NOT FOUND Length: 144 97 12:38:31,5368277 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{A63293E8-664E-48DB-A079-DF759E0509F7}\Security NAME NOT FOUND Length: 144 97 12:38:31,5368405 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{A63293E8-664E-48DB-A079-DF759E0509F7}\StreamResource NAME NOT FOUND Length: 144 97 12:38:31,5368510 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{A63293E8-664E-48DB-A079-DF759E0509F7}\StreamResourceType NAME NOT FOUND Length: 144 97 12:38:31,5368612 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{A63293E8-664E-48DB-A079-DF759E0509F7}\LocalRedirectOnly NAME NOT FOUND Length: 144 97 12:38:31,5368715 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{A63293E8-664E-48DB-A079-DF759E0509F7}\Roamable NAME NOT FOUND Length: 144 97 12:38:31,5368812 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{A63293E8-664E-48DB-A079-DF759E0509F7}\PreCreate NAME NOT FOUND Length: 144 97 12:38:31,5368914 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{A63293E8-664E-48DB-A079-DF759E0509F7}\Stream NAME NOT FOUND Length: 144 97 12:38:31,5369017 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{A63293E8-664E-48DB-A079-DF759E0509F7}\PublishExpandedPath NAME NOT FOUND Length: 144 97 12:38:31,5369117 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{A63293E8-664E-48DB-A079-DF759E0509F7}\DefinitionFlags NAME NOT FOUND Length: 144 97 12:38:31,5369216 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{A63293E8-664E-48DB-A079-DF759E0509F7}\Attributes NAME NOT FOUND Length: 144 97 12:38:31,5369319 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{A63293E8-664E-48DB-A079-DF759E0509F7}\FolderTypeID NAME NOT FOUND Length: 144 97 12:38:31,5369419 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{A63293E8-664E-48DB-A079-DF759E0509F7}\InitFolderHandler NAME NOT FOUND Length: 144 97 12:38:31,5369560 MCLauncher.exe 84 RegQueryKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{A63293E8-664E-48DB-A079-DF759E0509F7} SUCCESS Query: HandleTags, HandleTags: 0x400 97 12:38:31,5369624 MCLauncher.exe 84 RegOpenKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{A63293E8-664E-48DB-A079-DF759E0509F7}\PropertyBag NAME NOT FOUND Desired Access: Read 97 12:38:31,5369712 MCLauncher.exe 84 RegCloseKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{A63293E8-664E-48DB-A079-DF759E0509F7} SUCCESS 97 12:38:31,5369807 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:31,5369859 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: Name 97 12:38:31,5369945 MCLauncher.exe 84 RegOpenKey HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS Desired Access: Read 97 12:38:31,5370023 MCLauncher.exe 84 RegSetInfoKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 97 12:38:31,5370084 MCLauncher.exe 84 RegQueryKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS Query: HandleTags, HandleTags: 0x400 97 12:38:31,5370136 MCLauncher.exe 84 RegOpenKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{5CE4A5E9-E4EB-479D-B89F-130C02886155} SUCCESS Desired Access: Read 97 12:38:31,5370211 MCLauncher.exe 84 RegCloseKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS 97 12:38:31,5370253 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{5CE4A5E9-E4EB-479D-B89F-130C02886155}\Category SUCCESS Type: REG_DWORD, Length: 4, Data: 3 97 12:38:31,5370386 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{5CE4A5E9-E4EB-479D-B89F-130C02886155}\Name SUCCESS Type: REG_SZ, Length: 44, Data: Device Metadata Store 97 12:38:31,5370516 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{5CE4A5E9-E4EB-479D-B89F-130C02886155}\ParentFolder SUCCESS Type: REG_SZ, Length: 78, Data: {62AB5D82-FDC1-4DC3-A9DD-070D1D495D97} 97 12:38:31,5370638 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{5CE4A5E9-E4EB-479D-B89F-130C02886155}\Description NAME NOT FOUND Length: 144 97 12:38:31,5370743 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{5CE4A5E9-E4EB-479D-B89F-130C02886155}\RelativePath SUCCESS Type: REG_SZ, Length: 76, Data: Microsoft\Windows\DeviceMetadataStore 97 12:38:31,5370865 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{5CE4A5E9-E4EB-479D-B89F-130C02886155}\ParsingName NAME NOT FOUND Length: 144 97 12:38:31,5370970 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{5CE4A5E9-E4EB-479D-B89F-130C02886155}\InfoTip NAME NOT FOUND Length: 144 97 12:38:31,5371073 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{5CE4A5E9-E4EB-479D-B89F-130C02886155}\LocalizedName NAME NOT FOUND Length: 144 97 12:38:31,5371175 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{5CE4A5E9-E4EB-479D-B89F-130C02886155}\Icon NAME NOT FOUND Length: 144 97 12:38:31,5371278 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{5CE4A5E9-E4EB-479D-B89F-130C02886155}\Security NAME NOT FOUND Length: 144 97 12:38:31,5371380 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{5CE4A5E9-E4EB-479D-B89F-130C02886155}\StreamResource NAME NOT FOUND Length: 144 97 12:38:31,5371483 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{5CE4A5E9-E4EB-479D-B89F-130C02886155}\StreamResourceType NAME NOT FOUND Length: 144 97 12:38:31,5371585 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{5CE4A5E9-E4EB-479D-B89F-130C02886155}\LocalRedirectOnly NAME NOT FOUND Length: 144 97 12:38:31,5371685 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{5CE4A5E9-E4EB-479D-B89F-130C02886155}\Roamable NAME NOT FOUND Length: 144 97 12:38:31,5371787 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{5CE4A5E9-E4EB-479D-B89F-130C02886155}\PreCreate NAME NOT FOUND Length: 144 97 12:38:31,5371887 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{5CE4A5E9-E4EB-479D-B89F-130C02886155}\Stream NAME NOT FOUND Length: 144 97 12:38:31,5371987 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{5CE4A5E9-E4EB-479D-B89F-130C02886155}\PublishExpandedPath NAME NOT FOUND Length: 144 97 12:38:31,5372089 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{5CE4A5E9-E4EB-479D-B89F-130C02886155}\DefinitionFlags NAME NOT FOUND Length: 144 97 12:38:31,5372220 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{5CE4A5E9-E4EB-479D-B89F-130C02886155}\Attributes NAME NOT FOUND Length: 144 97 12:38:31,5372319 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{5CE4A5E9-E4EB-479D-B89F-130C02886155}\FolderTypeID NAME NOT FOUND Length: 144 97 12:38:31,5372422 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{5CE4A5E9-E4EB-479D-B89F-130C02886155}\InitFolderHandler NAME NOT FOUND Length: 144 97 12:38:31,5372552 MCLauncher.exe 84 RegQueryKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{5CE4A5E9-E4EB-479D-B89F-130C02886155} SUCCESS Query: HandleTags, HandleTags: 0x400 97 12:38:31,5372616 MCLauncher.exe 84 RegOpenKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{5CE4A5E9-E4EB-479D-B89F-130C02886155}\PropertyBag NAME NOT FOUND Desired Access: Read 97 12:38:31,5372693 MCLauncher.exe 84 RegCloseKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{5CE4A5E9-E4EB-479D-B89F-130C02886155} SUCCESS 97 12:38:31,5372785 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:31,5372832 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: Name 97 12:38:31,5372915 MCLauncher.exe 84 RegOpenKey HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS Desired Access: Read 97 12:38:31,5372987 MCLauncher.exe 84 RegSetInfoKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 97 12:38:31,5373045 MCLauncher.exe 84 RegQueryKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS Query: HandleTags, HandleTags: 0x400 97 12:38:31,5373098 MCLauncher.exe 84 RegOpenKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{82A74AEB-AEB4-465C-A014-D097EE346D63} SUCCESS Desired Access: Read 97 12:38:31,5373173 MCLauncher.exe 84 RegCloseKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS 97 12:38:31,5373214 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{82A74AEB-AEB4-465C-A014-D097EE346D63}\Category SUCCESS Type: REG_DWORD, Length: 4, Data: 1 97 12:38:31,5373347 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{82A74AEB-AEB4-465C-A014-D097EE346D63}\Name SUCCESS Type: REG_SZ, Length: 38, Data: ControlPanelFolder 97 12:38:31,5373478 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{82A74AEB-AEB4-465C-A014-D097EE346D63}\ParentFolder NAME NOT FOUND Length: 144 97 12:38:31,5373613 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{82A74AEB-AEB4-465C-A014-D097EE346D63}\Description NAME NOT FOUND Length: 144 97 12:38:31,5373719 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{82A74AEB-AEB4-465C-A014-D097EE346D63}\RelativePath NAME NOT FOUND Length: 144 97 12:38:31,5373818 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{82A74AEB-AEB4-465C-A014-D097EE346D63}\ParsingName SUCCESS Type: REG_SZ, Length: 86, Data: ::{26EE0668-A00A-44D7-9371-BEB064C98683}\0 97 12:38:31,5373943 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{82A74AEB-AEB4-465C-A014-D097EE346D63}\InfoTip NAME NOT FOUND Length: 144 97 12:38:31,5374048 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{82A74AEB-AEB4-465C-A014-D097EE346D63}\LocalizedName NAME NOT FOUND Length: 144 97 12:38:31,5374148 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{82A74AEB-AEB4-465C-A014-D097EE346D63}\Icon NAME NOT FOUND Length: 144 97 12:38:31,5374248 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{82A74AEB-AEB4-465C-A014-D097EE346D63}\Security NAME NOT FOUND Length: 144 97 12:38:31,5374350 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{82A74AEB-AEB4-465C-A014-D097EE346D63}\StreamResource NAME NOT FOUND Length: 144 97 12:38:31,5374450 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{82A74AEB-AEB4-465C-A014-D097EE346D63}\StreamResourceType NAME NOT FOUND Length: 144 97 12:38:31,5374553 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{82A74AEB-AEB4-465C-A014-D097EE346D63}\LocalRedirectOnly NAME NOT FOUND Length: 144 97 12:38:31,5374652 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{82A74AEB-AEB4-465C-A014-D097EE346D63}\Roamable NAME NOT FOUND Length: 144 97 12:38:31,5374755 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{82A74AEB-AEB4-465C-A014-D097EE346D63}\PreCreate NAME NOT FOUND Length: 144 97 12:38:31,5374855 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{82A74AEB-AEB4-465C-A014-D097EE346D63}\Stream NAME NOT FOUND Length: 144 97 12:38:31,5374957 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{82A74AEB-AEB4-465C-A014-D097EE346D63}\PublishExpandedPath NAME NOT FOUND Length: 144 97 12:38:31,5375057 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{82A74AEB-AEB4-465C-A014-D097EE346D63}\DefinitionFlags NAME NOT FOUND Length: 144 97 12:38:31,5375159 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{82A74AEB-AEB4-465C-A014-D097EE346D63}\Attributes NAME NOT FOUND Length: 144 97 12:38:31,5375256 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{82A74AEB-AEB4-465C-A014-D097EE346D63}\FolderTypeID NAME NOT FOUND Length: 144 97 12:38:31,5375359 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{82A74AEB-AEB4-465C-A014-D097EE346D63}\InitFolderHandler NAME NOT FOUND Length: 144 97 12:38:31,5375489 MCLauncher.exe 84 RegQueryKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{82A74AEB-AEB4-465C-A014-D097EE346D63} SUCCESS Query: HandleTags, HandleTags: 0x400 97 12:38:31,5375553 MCLauncher.exe 84 RegOpenKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{82A74AEB-AEB4-465C-A014-D097EE346D63}\PropertyBag NAME NOT FOUND Desired Access: Read 97 12:38:31,5470971 MCLauncher.exe 84 RegCloseKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{82A74AEB-AEB4-465C-A014-D097EE346D63} SUCCESS 97 12:38:31,5471248 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:31,5471337 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: Name 97 12:38:31,5471478 MCLauncher.exe 84 RegOpenKey HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS Desired Access: Read 97 12:38:31,5471638 MCLauncher.exe 84 RegSetInfoKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 97 12:38:31,5471724 MCLauncher.exe 84 RegQueryKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS Query: HandleTags, HandleTags: 0x400 97 12:38:31,5471785 MCLauncher.exe 84 RegOpenKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{7C5A40EF-A0FB-4BFC-874A-C0F2E0B9FA8E} SUCCESS Desired Access: Read 97 12:38:31,5471891 MCLauncher.exe 84 RegCloseKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS 97 12:38:31,5471957 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{7C5A40EF-A0FB-4BFC-874A-C0F2E0B9FA8E}\Category SUCCESS Type: REG_DWORD, Length: 4, Data: 2 97 12:38:31,5472132 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{7C5A40EF-A0FB-4BFC-874A-C0F2E0B9FA8E}\Name SUCCESS Type: REG_SZ, Length: 32, Data: ProgramFilesX86 97 12:38:31,5472278 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{7C5A40EF-A0FB-4BFC-874A-C0F2E0B9FA8E}\ParentFolder NAME NOT FOUND Length: 144 97 12:38:31,5472395 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{7C5A40EF-A0FB-4BFC-874A-C0F2E0B9FA8E}\Description NAME NOT FOUND Length: 144 97 12:38:31,5472503 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{7C5A40EF-A0FB-4BFC-874A-C0F2E0B9FA8E}\RelativePath NAME NOT FOUND Length: 144 97 12:38:31,5472603 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{7C5A40EF-A0FB-4BFC-874A-C0F2E0B9FA8E}\ParsingName NAME NOT FOUND Length: 144 97 12:38:31,5472708 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{7C5A40EF-A0FB-4BFC-874A-C0F2E0B9FA8E}\InfoTip NAME NOT FOUND Length: 144 97 12:38:31,5472810 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{7C5A40EF-A0FB-4BFC-874A-C0F2E0B9FA8E}\LocalizedName SUCCESS Type: REG_EXPAND_SZ, Length: 84, Data: @%SystemRoot%\system32\shell32.dll,-21817 97 12:38:31,5472935 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{7C5A40EF-A0FB-4BFC-874A-C0F2E0B9FA8E}\Icon NAME NOT FOUND Length: 144 97 12:38:31,5473038 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{7C5A40EF-A0FB-4BFC-874A-C0F2E0B9FA8E}\Security NAME NOT FOUND Length: 144 97 12:38:31,5473143 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{7C5A40EF-A0FB-4BFC-874A-C0F2E0B9FA8E}\StreamResource NAME NOT FOUND Length: 144 97 12:38:31,5473248 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{7C5A40EF-A0FB-4BFC-874A-C0F2E0B9FA8E}\StreamResourceType NAME NOT FOUND Length: 144 97 12:38:31,5473351 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{7C5A40EF-A0FB-4BFC-874A-C0F2E0B9FA8E}\LocalRedirectOnly NAME NOT FOUND Length: 144 97 12:38:31,5473453 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{7C5A40EF-A0FB-4BFC-874A-C0F2E0B9FA8E}\Roamable NAME NOT FOUND Length: 144 97 12:38:31,5473556 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{7C5A40EF-A0FB-4BFC-874A-C0F2E0B9FA8E}\PreCreate SUCCESS Type: REG_DWORD, Length: 4, Data: 1 97 12:38:31,5473675 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{7C5A40EF-A0FB-4BFC-874A-C0F2E0B9FA8E}\Stream NAME NOT FOUND Length: 144 97 12:38:31,5473777 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{7C5A40EF-A0FB-4BFC-874A-C0F2E0B9FA8E}\PublishExpandedPath NAME NOT FOUND Length: 144 97 12:38:31,5473883 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{7C5A40EF-A0FB-4BFC-874A-C0F2E0B9FA8E}\DefinitionFlags NAME NOT FOUND Length: 144 97 12:38:31,5473988 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{7C5A40EF-A0FB-4BFC-874A-C0F2E0B9FA8E}\Attributes SUCCESS Type: REG_DWORD, Length: 4, Data: 1 97 12:38:31,5474102 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{7C5A40EF-A0FB-4BFC-874A-C0F2E0B9FA8E}\FolderTypeID NAME NOT FOUND Length: 144 97 12:38:31,5474207 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{7C5A40EF-A0FB-4BFC-874A-C0F2E0B9FA8E}\InitFolderHandler NAME NOT FOUND Length: 144 97 12:38:31,5474351 MCLauncher.exe 84 RegQueryKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{7C5A40EF-A0FB-4BFC-874A-C0F2E0B9FA8E} SUCCESS Query: HandleTags, HandleTags: 0x400 97 12:38:31,5474417 MCLauncher.exe 84 RegOpenKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{7C5A40EF-A0FB-4BFC-874A-C0F2E0B9FA8E}\PropertyBag SUCCESS Desired Access: Read 97 12:38:31,5474523 MCLauncher.exe 84 RegCloseKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{7C5A40EF-A0FB-4BFC-874A-C0F2E0B9FA8E} SUCCESS 97 12:38:31,5474805 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:31,5474869 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: Name 97 12:38:31,5474971 MCLauncher.exe 84 RegOpenKey HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS Desired Access: Read 97 12:38:31,5475068 MCLauncher.exe 84 RegSetInfoKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 97 12:38:31,5475140 MCLauncher.exe 84 RegQueryKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS Query: HandleTags, HandleTags: 0x400 97 12:38:31,5475196 MCLauncher.exe 84 RegOpenKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{43668BF8-C14E-49B2-97C9-747784D784B7} SUCCESS Desired Access: Read 97 12:38:31,5475287 MCLauncher.exe 84 RegCloseKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS 97 12:38:31,5475340 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{43668BF8-C14E-49B2-97C9-747784D784B7}\Category SUCCESS Type: REG_DWORD, Length: 4, Data: 1 97 12:38:31,5475545 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{43668BF8-C14E-49B2-97C9-747784D784B7}\Name SUCCESS Type: REG_SZ, Length: 34, Data: SyncCenterFolder 97 12:38:31,5475678 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{43668BF8-C14E-49B2-97C9-747784D784B7}\ParentFolder NAME NOT FOUND Length: 144 97 12:38:31,5475786 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{43668BF8-C14E-49B2-97C9-747784D784B7}\Description NAME NOT FOUND Length: 144 97 12:38:31,5475891 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{43668BF8-C14E-49B2-97C9-747784D784B7}\RelativePath NAME NOT FOUND Length: 144 97 12:38:31,5475994 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{43668BF8-C14E-49B2-97C9-747784D784B7}\ParsingName BUFFER OVERFLOW Length: 144 97 12:38:31,5476107 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{43668BF8-C14E-49B2-97C9-747784D784B7}\ParsingName SUCCESS Type: REG_SZ, Length: 168, Data: ::{26EE0668-A00A-44D7-9371-BEB064C98683}\0\::{9C73F5E5-7AE7-4E32-A8E8-8D23B85255BF} 97 12:38:31,5476238 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{43668BF8-C14E-49B2-97C9-747784D784B7}\InfoTip NAME NOT FOUND Length: 144 97 12:38:31,5476343 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{43668BF8-C14E-49B2-97C9-747784D784B7}\LocalizedName NAME NOT FOUND Length: 144 97 12:38:31,5476445 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{43668BF8-C14E-49B2-97C9-747784D784B7}\Icon NAME NOT FOUND Length: 144 97 12:38:31,5476548 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{43668BF8-C14E-49B2-97C9-747784D784B7}\Security NAME NOT FOUND Length: 144 97 12:38:31,5476653 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{43668BF8-C14E-49B2-97C9-747784D784B7}\StreamResource NAME NOT FOUND Length: 144 97 12:38:31,5476756 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{43668BF8-C14E-49B2-97C9-747784D784B7}\StreamResourceType NAME NOT FOUND Length: 144 97 12:38:31,5476858 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{43668BF8-C14E-49B2-97C9-747784D784B7}\LocalRedirectOnly NAME NOT FOUND Length: 144 97 12:38:31,5476964 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{43668BF8-C14E-49B2-97C9-747784D784B7}\Roamable NAME NOT FOUND Length: 144 97 12:38:31,5477063 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{43668BF8-C14E-49B2-97C9-747784D784B7}\PreCreate NAME NOT FOUND Length: 144 97 12:38:31,5477163 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{43668BF8-C14E-49B2-97C9-747784D784B7}\Stream NAME NOT FOUND Length: 144 97 12:38:31,5477266 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{43668BF8-C14E-49B2-97C9-747784D784B7}\PublishExpandedPath NAME NOT FOUND Length: 144 97 12:38:31,5477368 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{43668BF8-C14E-49B2-97C9-747784D784B7}\DefinitionFlags NAME NOT FOUND Length: 144 97 12:38:31,5477471 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{43668BF8-C14E-49B2-97C9-747784D784B7}\Attributes NAME NOT FOUND Length: 144 97 12:38:31,5477576 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{43668BF8-C14E-49B2-97C9-747784D784B7}\FolderTypeID NAME NOT FOUND Length: 144 97 12:38:31,5477676 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{43668BF8-C14E-49B2-97C9-747784D784B7}\InitFolderHandler NAME NOT FOUND Length: 144 97 12:38:31,5477814 MCLauncher.exe 84 RegQueryKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{43668BF8-C14E-49B2-97C9-747784D784B7} SUCCESS Query: HandleTags, HandleTags: 0x400 97 12:38:31,5477881 MCLauncher.exe 84 RegOpenKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{43668BF8-C14E-49B2-97C9-747784D784B7}\PropertyBag NAME NOT FOUND Desired Access: Read 97 12:38:31,5477969 MCLauncher.exe 84 RegCloseKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{43668BF8-C14E-49B2-97C9-747784D784B7} SUCCESS 97 12:38:31,5478069 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:31,5478116 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: Name 97 12:38:31,5478205 MCLauncher.exe 84 RegOpenKey HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS Desired Access: Read 97 12:38:31,5478282 MCLauncher.exe 84 RegSetInfoKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 97 12:38:31,5478346 MCLauncher.exe 84 RegQueryKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS Query: HandleTags, HandleTags: 0x400 97 12:38:31,5478396 MCLauncher.exe 84 RegOpenKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{915221FB-9EFE-4BDA-8FD7-F78DCA774F87} SUCCESS Desired Access: Read 97 12:38:31,5478473 MCLauncher.exe 84 RegCloseKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS 97 12:38:31,5478518 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{915221FB-9EFE-4bda-8FD7-F78DCA774F87}\Category SUCCESS Type: REG_DWORD, Length: 4, Data: 2 97 12:38:31,5478651 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{915221FB-9EFE-4bda-8FD7-F78DCA774F87}\Name SUCCESS Type: REG_SZ, Length: 36, Data: CredentialManager 97 12:38:31,5478781 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{915221FB-9EFE-4bda-8FD7-F78DCA774F87}\ParentFolder NAME NOT FOUND Length: 144 97 12:38:31,5478886 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{915221FB-9EFE-4bda-8FD7-F78DCA774F87}\Description NAME NOT FOUND Length: 144 97 12:38:31,5478989 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{915221FB-9EFE-4bda-8FD7-F78DCA774F87}\RelativePath NAME NOT FOUND Length: 144 97 12:38:31,5479091 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{915221FB-9EFE-4bda-8FD7-F78DCA774F87}\ParsingName NAME NOT FOUND Length: 144 97 12:38:31,5479194 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{915221FB-9EFE-4bda-8FD7-F78DCA774F87}\InfoTip NAME NOT FOUND Length: 144 97 12:38:31,5479296 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{915221FB-9EFE-4bda-8FD7-F78DCA774F87}\LocalizedName NAME NOT FOUND Length: 144 97 12:38:31,5479399 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{915221FB-9EFE-4bda-8FD7-F78DCA774F87}\Icon NAME NOT FOUND Length: 144 97 12:38:31,5479499 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{915221FB-9EFE-4bda-8FD7-F78DCA774F87}\Security NAME NOT FOUND Length: 144 97 12:38:31,5479598 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{915221FB-9EFE-4bda-8FD7-F78DCA774F87}\StreamResource NAME NOT FOUND Length: 144 97 12:38:31,5479753 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{915221FB-9EFE-4bda-8FD7-F78DCA774F87}\StreamResourceType NAME NOT FOUND Length: 144 97 12:38:31,5480344 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{915221FB-9EFE-4bda-8FD7-F78DCA774F87}\LocalRedirectOnly NAME NOT FOUND Length: 144 97 12:38:31,5480485 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{915221FB-9EFE-4bda-8FD7-F78DCA774F87}\Roamable NAME NOT FOUND Length: 144 97 12:38:31,5480587 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{915221FB-9EFE-4bda-8FD7-F78DCA774F87}\PreCreate NAME NOT FOUND Length: 144 97 12:38:31,5480690 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{915221FB-9EFE-4bda-8FD7-F78DCA774F87}\Stream NAME NOT FOUND Length: 144 97 12:38:31,5480851 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{915221FB-9EFE-4bda-8FD7-F78DCA774F87}\PublishExpandedPath NAME NOT FOUND Length: 144 97 12:38:31,5480953 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{915221FB-9EFE-4bda-8FD7-F78DCA774F87}\DefinitionFlags NAME NOT FOUND Length: 144 97 12:38:31,5481056 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{915221FB-9EFE-4bda-8FD7-F78DCA774F87}\Attributes NAME NOT FOUND Length: 144 97 12:38:31,5481155 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{915221FB-9EFE-4bda-8FD7-F78DCA774F87}\FolderTypeID NAME NOT FOUND Length: 144 97 12:38:31,5481258 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{915221FB-9EFE-4bda-8FD7-F78DCA774F87}\InitFolderHandler NAME NOT FOUND Length: 144 97 12:38:31,5481399 MCLauncher.exe 84 RegQueryKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{915221FB-9EFE-4bda-8FD7-F78DCA774F87} SUCCESS Query: HandleTags, HandleTags: 0x400 97 12:38:31,5481463 MCLauncher.exe 84 RegOpenKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{915221FB-9EFE-4bda-8FD7-F78DCA774F87}\PropertyBag NAME NOT FOUND Desired Access: Read 97 12:38:31,5481557 MCLauncher.exe 84 RegCloseKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{915221FB-9EFE-4bda-8FD7-F78DCA774F87} SUCCESS 97 12:38:31,5481649 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:31,5481701 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: Name 97 12:38:31,5481787 MCLauncher.exe 84 RegOpenKey HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS Desired Access: Read 97 12:38:31,5481865 MCLauncher.exe 84 RegSetInfoKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 97 12:38:31,5481928 MCLauncher.exe 84 RegQueryKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS Query: HandleTags, HandleTags: 0x400 97 12:38:31,5481978 MCLauncher.exe 84 RegOpenKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{7E636BFE-DFA9-4D5E-B456-D7B39851D8A9} SUCCESS Desired Access: Read 97 12:38:31,5482056 MCLauncher.exe 84 RegCloseKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS 97 12:38:31,5482097 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{7E636BFE-DFA9-4D5E-B456-D7B39851D8A9}\Category SUCCESS Type: REG_DWORD, Length: 4, Data: 4 97 12:38:31,5482233 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{7E636BFE-DFA9-4D5E-B456-D7B39851D8A9}\Name SUCCESS Type: REG_SZ, Length: 44, Data: SearchTemplatesFolder 97 12:38:31,5482361 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{7E636BFE-DFA9-4D5E-B456-D7B39851D8A9}\ParentFolder SUCCESS Type: REG_SZ, Length: 78, Data: {F1B32785-6FBA-4FCF-9D55-7B8E7F157091} 97 12:38:31,5482488 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{7E636BFE-DFA9-4D5E-B456-D7B39851D8A9}\Description NAME NOT FOUND Length: 144 97 12:38:31,5482593 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{7E636BFE-DFA9-4D5E-B456-D7B39851D8A9}\RelativePath SUCCESS Type: REG_SZ, Length: 88, Data: Microsoft\Windows\ConnectedSearch\Templates 97 12:38:31,5482715 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{7E636BFE-DFA9-4D5E-B456-D7B39851D8A9}\ParsingName NAME NOT FOUND Length: 144 97 12:38:31,5482820 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{7E636BFE-DFA9-4D5E-B456-D7B39851D8A9}\InfoTip NAME NOT FOUND Length: 144 97 12:38:31,5482923 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{7E636BFE-DFA9-4D5E-B456-D7B39851D8A9}\LocalizedName NAME NOT FOUND Length: 144 97 12:38:31,5483023 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{7E636BFE-DFA9-4D5E-B456-D7B39851D8A9}\Icon NAME NOT FOUND Length: 144 97 12:38:31,5483125 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{7E636BFE-DFA9-4D5E-B456-D7B39851D8A9}\Security NAME NOT FOUND Length: 144 97 12:38:31,5483225 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{7E636BFE-DFA9-4D5E-B456-D7B39851D8A9}\StreamResource NAME NOT FOUND Length: 144 97 12:38:31,5483327 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{7E636BFE-DFA9-4D5E-B456-D7B39851D8A9}\StreamResourceType NAME NOT FOUND Length: 144 97 12:38:31,5483427 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{7E636BFE-DFA9-4D5E-B456-D7B39851D8A9}\LocalRedirectOnly NAME NOT FOUND Length: 144 97 12:38:31,5483530 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{7E636BFE-DFA9-4D5E-B456-D7B39851D8A9}\Roamable NAME NOT FOUND Length: 144 97 12:38:31,5483632 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{7E636BFE-DFA9-4D5E-B456-D7B39851D8A9}\PreCreate NAME NOT FOUND Length: 144 97 12:38:31,5483732 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{7E636BFE-DFA9-4D5E-B456-D7B39851D8A9}\Stream NAME NOT FOUND Length: 144 97 12:38:31,5483832 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{7E636BFE-DFA9-4D5E-B456-D7B39851D8A9}\PublishExpandedPath NAME NOT FOUND Length: 144 97 12:38:31,5483934 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{7E636BFE-DFA9-4D5E-B456-D7B39851D8A9}\DefinitionFlags NAME NOT FOUND Length: 144 97 12:38:31,5484037 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{7E636BFE-DFA9-4D5E-B456-D7B39851D8A9}\Attributes NAME NOT FOUND Length: 144 97 12:38:31,5484136 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{7E636BFE-DFA9-4D5E-B456-D7B39851D8A9}\FolderTypeID NAME NOT FOUND Length: 144 97 12:38:31,5484239 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{7E636BFE-DFA9-4D5E-B456-D7B39851D8A9}\InitFolderHandler NAME NOT FOUND Length: 144 97 12:38:31,5484375 MCLauncher.exe 84 RegQueryKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{7E636BFE-DFA9-4D5E-B456-D7B39851D8A9} SUCCESS Query: HandleTags, HandleTags: 0x400 97 12:38:31,5484436 MCLauncher.exe 84 RegOpenKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{7E636BFE-DFA9-4D5E-B456-D7B39851D8A9}\PropertyBag NAME NOT FOUND Desired Access: Read 97 12:38:31,5484513 MCLauncher.exe 84 RegCloseKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{7E636BFE-DFA9-4D5E-B456-D7B39851D8A9} SUCCESS 97 12:38:31,5484707 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:31,5484779 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: Name 97 12:38:31,5484876 MCLauncher.exe 84 RegOpenKey HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS Desired Access: Read 97 12:38:31,5484968 MCLauncher.exe 84 RegSetInfoKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 97 12:38:31,5485040 MCLauncher.exe 84 RegQueryKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS Query: HandleTags, HandleTags: 0x400 97 12:38:31,5485092 MCLauncher.exe 84 RegOpenKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{4C5C32FF-BB9D-43B0-B5B4-2D72E54EAAA4} SUCCESS Desired Access: Read 97 12:38:31,5485181 MCLauncher.exe 84 RegCloseKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS 97 12:38:31,5485234 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{4C5C32FF-BB9D-43b0-B5B4-2D72E54EAAA4}\Category SUCCESS Type: REG_DWORD, Length: 4, Data: 4 97 12:38:31,5485367 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{4C5C32FF-BB9D-43b0-B5B4-2D72E54EAAA4}\Name SUCCESS Type: REG_SZ, Length: 22, Data: SavedGames 97 12:38:31,5485497 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{4C5C32FF-BB9D-43b0-B5B4-2D72E54EAAA4}\ParentFolder NAME NOT FOUND Length: 144 97 12:38:31,5485605 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{4C5C32FF-BB9D-43b0-B5B4-2D72E54EAAA4}\Description NAME NOT FOUND Length: 144 97 12:38:31,5485710 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{4C5C32FF-BB9D-43b0-B5B4-2D72E54EAAA4}\RelativePath SUCCESS Type: REG_SZ, Length: 24, Data: Saved Games 97 12:38:31,5485832 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{4C5C32FF-BB9D-43b0-B5B4-2D72E54EAAA4}\ParsingName BUFFER OVERFLOW Length: 144 97 12:38:31,5485943 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{4C5C32FF-BB9D-43b0-B5B4-2D72E54EAAA4}\ParsingName SUCCESS Type: REG_SZ, Length: 160, Data: ::{59031a47-3f72-44a7-89c5-5595fe6b30ee}\{4C5C32FF-BB9D-43b0-B5B4-2D72E54EAAA4} 97 12:38:31,5486070 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{4C5C32FF-BB9D-43b0-B5B4-2D72E54EAAA4}\InfoTip NAME NOT FOUND Length: 144 97 12:38:31,5486178 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{4C5C32FF-BB9D-43b0-B5B4-2D72E54EAAA4}\LocalizedName SUCCESS Type: REG_EXPAND_SZ, Length: 84, Data: @%SystemRoot%\system32\shell32.dll,-21814 97 12:38:31,5486314 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{4C5C32FF-BB9D-43b0-B5B4-2D72E54EAAA4}\Icon SUCCESS Type: REG_EXPAND_SZ, Length: 80, Data: %SystemRoot%\system32\imageres.dll,-186 97 12:38:31,5486442 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{4C5C32FF-BB9D-43b0-B5B4-2D72E54EAAA4}\Security NAME NOT FOUND Length: 144 97 12:38:31,5486544 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{4C5C32FF-BB9D-43b0-B5B4-2D72E54EAAA4}\StreamResource NAME NOT FOUND Length: 144 97 12:38:31,5486649 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{4C5C32FF-BB9D-43b0-B5B4-2D72E54EAAA4}\StreamResourceType NAME NOT FOUND Length: 144 97 12:38:31,5486805 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{4C5C32FF-BB9D-43b0-B5B4-2D72E54EAAA4}\LocalRedirectOnly NAME NOT FOUND Length: 144 97 12:38:31,5486913 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{4C5C32FF-BB9D-43b0-B5B4-2D72E54EAAA4}\Roamable SUCCESS Type: REG_DWORD, Length: 4, Data: 1 97 12:38:31,5487029 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{4C5C32FF-BB9D-43b0-B5B4-2D72E54EAAA4}\PreCreate SUCCESS Type: REG_DWORD, Length: 4, Data: 1 97 12:38:31,5487148 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{4C5C32FF-BB9D-43b0-B5B4-2D72E54EAAA4}\Stream NAME NOT FOUND Length: 144 97 12:38:31,5487253 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{4C5C32FF-BB9D-43b0-B5B4-2D72E54EAAA4}\PublishExpandedPath SUCCESS Type: REG_DWORD, Length: 4, Data: 1 97 12:38:31,5487370 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{4C5C32FF-BB9D-43b0-B5B4-2D72E54EAAA4}\DefinitionFlags NAME NOT FOUND Length: 144 97 12:38:31,5487475 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{4C5C32FF-BB9D-43b0-B5B4-2D72E54EAAA4}\Attributes SUCCESS Type: REG_DWORD, Length: 4, Data: 1 97 12:38:31,5487589 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{4C5C32FF-BB9D-43b0-B5B4-2D72E54EAAA4}\FolderTypeID NAME NOT FOUND Length: 144 97 12:38:31,5487694 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{4C5C32FF-BB9D-43b0-B5B4-2D72E54EAAA4}\InitFolderHandler NAME NOT FOUND Length: 144 97 12:38:31,5487830 MCLauncher.exe 84 RegQueryKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{4C5C32FF-BB9D-43b0-B5B4-2D72E54EAAA4} SUCCESS Query: HandleTags, HandleTags: 0x400 97 12:38:31,5487891 MCLauncher.exe 84 RegOpenKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{4C5C32FF-BB9D-43b0-B5B4-2D72E54EAAA4}\PropertyBag NAME NOT FOUND Desired Access: Read 97 12:38:31,5487974 MCLauncher.exe 84 RegCloseKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{4C5C32FF-BB9D-43b0-B5B4-2D72E54EAAA4} SUCCESS 97 12:38:31,5488087 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:31,5488140 MCLauncher.exe 84 RegOpenKey HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\AllowedEnumeration NAME NOT FOUND Desired Access: Read 97 12:38:31,5488278 MCLauncher.exe 84 RegQueryKey HKCU SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:31,5488334 MCLauncher.exe 84 RegOpenKey HKCU\Software\Microsoft\Windows\CurrentVersion\Explorer\AllowedEnumeration NAME NOT FOUND Desired Access: Read 97 12:38:31,5488605 MCLauncher.exe 84 RegQueryKey HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer SUCCESS Query: HandleTags, HandleTags: 0x400 97 12:38:31,5488661 MCLauncher.exe 84 RegOpenKey HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\SessionInfo\1 SUCCESS Desired Access: Query Value 97 12:38:31,5488769 MCLauncher.exe 84 RegQueryKey HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\SessionInfo\1 SUCCESS Query: HandleTags, HandleTags: 0x400 97 12:38:31,5488822 MCLauncher.exe 84 RegOpenKey HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\SessionInfo\1\KnownFolders NAME NOT FOUND Desired Access: Query Value 97 12:38:31,5488891 MCLauncher.exe 84 RegCloseKey HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\SessionInfo\1 SUCCESS 97 12:38:31,5488996 MCLauncher.exe 84 RegOpenKey HKCU SUCCESS Desired Access: Read 97 12:38:31,5489082 MCLauncher.exe 84 RegQueryKey HKCU SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:31,5489129 MCLauncher.exe 84 RegQueryKey HKCU SUCCESS Query: Name 97 12:38:31,5489204 MCLauncher.exe 84 RegOpenKey HKCU\Software\Microsoft\Windows\CurrentVersion\Explorer\User Shell Folders SUCCESS Desired Access: Read 97 12:38:31,5489295 MCLauncher.exe 84 RegSetInfoKey HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\User Shell Folders SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 97 12:38:31,5489340 MCLauncher.exe 84 RegCloseKey HKCU SUCCESS 97 12:38:31,5489389 MCLauncher.exe 84 RegQueryValue HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\User Shell Folders\{4C5C32FF-BB9D-43B0-B5B4-2D72E54EAAA4} NAME NOT FOUND Length: 144 97 12:38:31,5489705 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:31,5489758 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: Name 97 12:38:31,5489852 MCLauncher.exe 84 RegOpenKey HKLM\Software\WOW6432Node\Microsoft\Windows NT\CurrentVersion\ProfileList\S-1-5-21-3477790013-1571897634-1299942168-1000 REPARSE Desired Access: Read 97 12:38:31,5489957 MCLauncher.exe 84 RegOpenKey HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\ProfileList\S-1-5-21-3477790013-1571897634-1299942168-1000 SUCCESS Desired Access: Read 97 12:38:31,5490029 MCLauncher.exe 84 RegSetInfoKey HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\ProfileList\S-1-5-21-3477790013-1571897634-1299942168-1000 SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 97 12:38:31,5490071 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\ProfileList\S-1-5-21-3477790013-1571897634-1299942168-1000\ProfileImagePath SUCCESS Type: REG_EXPAND_SZ, Length: 28, Data: C:\Users\User 97 12:38:31,5490223 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\ProfileList\S-1-5-21-3477790013-1571897634-1299942168-1000\ProfileImagePath SUCCESS Type: REG_EXPAND_SZ, Length: 28, Data: C:\Users\User 97 12:38:31,5490359 MCLauncher.exe 84 RegCloseKey HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\ProfileList\S-1-5-21-3477790013-1571897634-1299942168-1000 SUCCESS 97 12:38:31,5490445 MCLauncher.exe 84 RegCloseKey HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\User Shell Folders SUCCESS 97 12:38:31,5492227 MCLauncher.exe 84 CreateFile C:\Users\User\Searches\desktop.ini SUCCESS Desired Access: Generic Read, Disposition: Open, Options: Sequential Access, Synchronous IO Non-Alert, Non-Directory File, Attributes: n/a, ShareMode: Read, Write, Delete, AllocationSize: n/a, OpenResult: Opened 97 12:38:31,5492476 MCLauncher.exe 84 QueryStandardInformationFile C:\Users\User\Searches\desktop.ini SUCCESS AllocationSize: 528, EndOfFile: 524, NumberOfLinks: 1, DeletePending: False, Directory: False 97 12:38:31,5492589 MCLauncher.exe 84 ReadFile C:\Users\User\Searches\desktop.ini SUCCESS Offset: 0, Length: 524, Priority: Normal 97 12:38:31,5493083 MCLauncher.exe 84 QueryBasicInformationFile C:\Users\User\Searches\desktop.ini SUCCESS CreationTime: 19.07.2018 20:08:15, LastAccessTime: 19.07.2018 20:08:15, LastWriteTime: 20.07.2018 19:29:33, ChangeTime: 20.07.2018 19:29:33, FileAttributes: HSA 97 12:38:31,5493182 MCLauncher.exe 84 CloseFile C:\Users\User\Searches\desktop.ini SUCCESS 97 12:38:31,5495404 MCLauncher.exe 84 CreateFile C:\Users\User\Contacts\desktop.ini SUCCESS Desired Access: Generic Read, Disposition: Open, Options: Sequential Access, Synchronous IO Non-Alert, Non-Directory File, Attributes: n/a, ShareMode: Read, Write, Delete, AllocationSize: n/a, OpenResult: Opened 97 12:38:31,5495620 MCLauncher.exe 84 QueryStandardInformationFile C:\Users\User\Contacts\desktop.ini SUCCESS AllocationSize: 416, EndOfFile: 412, NumberOfLinks: 1, DeletePending: False, Directory: False 97 12:38:31,5495720 MCLauncher.exe 84 ReadFile C:\Users\User\Contacts\desktop.ini SUCCESS Offset: 0, Length: 412, Priority: Normal 97 12:38:31,5496103 MCLauncher.exe 84 QueryBasicInformationFile C:\Users\User\Contacts\desktop.ini SUCCESS CreationTime: 19.07.2018 20:08:14, LastAccessTime: 19.07.2018 20:08:14, LastWriteTime: 20.07.2018 19:29:33, ChangeTime: 20.07.2018 19:29:33, FileAttributes: HSA 97 12:38:31,5496200 MCLauncher.exe 84 CloseFile C:\Users\User\Contacts\desktop.ini SUCCESS 97 12:38:31,5497757 MCLauncher.exe 84 CreateFile C:\Users\User\Favorites\desktop.ini SUCCESS Desired Access: Generic Read, Disposition: Open, Options: Sequential Access, Synchronous IO Non-Alert, Non-Directory File, Attributes: n/a, ShareMode: Read, Write, Delete, AllocationSize: n/a, OpenResult: Opened 97 12:38:31,5497967 MCLauncher.exe 84 QueryStandardInformationFile C:\Users\User\Favorites\desktop.ini SUCCESS AllocationSize: 408, EndOfFile: 402, NumberOfLinks: 1, DeletePending: False, Directory: False 97 12:38:31,5498064 MCLauncher.exe 84 ReadFile C:\Users\User\Favorites\desktop.ini SUCCESS Offset: 0, Length: 402, Priority: Normal 97 12:38:31,5498466 MCLauncher.exe 84 QueryBasicInformationFile C:\Users\User\Favorites\desktop.ini SUCCESS CreationTime: 19.07.2018 20:08:14, LastAccessTime: 19.07.2018 20:08:14, LastWriteTime: 20.07.2018 19:29:33, ChangeTime: 20.07.2018 19:29:33, FileAttributes: HSA 97 12:38:31,5498560 MCLauncher.exe 84 CloseFile C:\Users\User\Favorites\desktop.ini SUCCESS 97 12:38:31,5500547 MCLauncher.exe 84 CreateFile C:\Users\User\Links\desktop.ini SUCCESS Desired Access: Generic Read, Disposition: Open, Options: Sequential Access, Synchronous IO Non-Alert, Non-Directory File, Attributes: n/a, ShareMode: Read, Write, Delete, AllocationSize: n/a, OpenResult: Opened 97 12:38:31,5500760 MCLauncher.exe 84 QueryStandardInformationFile C:\Users\User\Links\desktop.ini SUCCESS AllocationSize: 504, EndOfFile: 504, NumberOfLinks: 1, DeletePending: False, Directory: False 97 12:38:31,5500857 MCLauncher.exe 84 ReadFile C:\Users\User\Links\desktop.ini SUCCESS Offset: 0, Length: 504, Priority: Normal 97 12:38:31,5501320 MCLauncher.exe 84 QueryBasicInformationFile C:\Users\User\Links\desktop.ini SUCCESS CreationTime: 19.07.2018 20:08:16, LastAccessTime: 19.07.2018 20:08:16, LastWriteTime: 20.07.2018 19:29:34, ChangeTime: 20.07.2018 19:29:34, FileAttributes: HS 97 12:38:31,5501416 MCLauncher.exe 84 CloseFile C:\Users\User\Links\desktop.ini SUCCESS 97 12:38:31,5502863 MCLauncher.exe 84 CreateFile C:\Users\User\Saved Games\desktop.ini SUCCESS Desired Access: Generic Read, Disposition: Open, Options: Sequential Access, Synchronous IO Non-Alert, Non-Directory File, Attributes: n/a, ShareMode: Read, Write, Delete, AllocationSize: n/a, OpenResult: Opened 97 12:38:31,5503073 MCLauncher.exe 84 QueryStandardInformationFile C:\Users\User\Saved Games\desktop.ini SUCCESS AllocationSize: 288, EndOfFile: 282, NumberOfLinks: 1, DeletePending: False, Directory: False 97 12:38:31,5503170 MCLauncher.exe 84 ReadFile C:\Users\User\Saved Games\desktop.ini SUCCESS Offset: 0, Length: 282, Priority: Normal 97 12:38:31,5503519 MCLauncher.exe 84 QueryBasicInformationFile C:\Users\User\Saved Games\desktop.ini SUCCESS CreationTime: 19.07.2018 20:08:16, LastAccessTime: 19.07.2018 20:08:16, LastWriteTime: 20.07.2018 19:29:33, ChangeTime: 20.07.2018 19:29:33, FileAttributes: HSA 97 12:38:31,5503616 MCLauncher.exe 84 CloseFile C:\Users\User\Saved Games\desktop.ini SUCCESS 97 12:38:31,5504054 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:31,5504121 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: Name 97 12:38:31,5504395 MCLauncher.exe 84 RegOpenKey HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\UsersFiles\NameSpace SUCCESS Desired Access: Read 97 12:38:31,5504539 MCLauncher.exe 84 RegSetInfoKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\UsersFiles\NameSpace SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 97 12:38:31,5504603 MCLauncher.exe 84 RegEnumKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\UsersFiles\NameSpace SUCCESS Index: 0, Name: DelegateFolders 97 12:38:31,5504700 MCLauncher.exe 84 RegQueryKey HKCU\Software\Classes SUCCESS Query: Name 97 12:38:31,5504774 MCLauncher.exe 84 RegQueryKey HKCU\Software\Classes SUCCESS Query: HandleTags, HandleTags: 0x1 97 12:38:31,5504849 MCLauncher.exe 84 RegQueryKey HKCU\Software\Classes SUCCESS Query: HandleTags, HandleTags: 0x1 97 12:38:31,5504896 MCLauncher.exe 84 RegQueryKey HKCU\Software\Classes SUCCESS Query: Name 97 12:38:31,5504977 MCLauncher.exe 84 RegOpenKey HKCU\Software\Classes\DelegateFolders NAME NOT FOUND Desired Access: Read 97 12:38:31,5505093 MCLauncher.exe 84 RegOpenKey HKCR\DelegateFolders NAME NOT FOUND Desired Access: Read 97 12:38:31,5505287 MCLauncher.exe 84 RegQueryKey HKCU\Software\Classes SUCCESS Query: Name 97 12:38:31,5505362 MCLauncher.exe 84 RegQueryKey HKCU\Software\Classes SUCCESS Query: HandleTags, HandleTags: 0x1 97 12:38:31,5505417 MCLauncher.exe 84 RegOpenKey HKCU\Software\Classes\DelegateFolders NAME NOT FOUND Desired Access: Read 97 12:38:31,5505484 MCLauncher.exe 84 RegOpenKey HKCR\DelegateFolders NAME NOT FOUND Desired Access: Read 97 12:38:31,5505614 MCLauncher.exe 84 RegQueryKey HKCU\Software\Classes SUCCESS Query: Name 97 12:38:31,5505667 MCLauncher.exe 84 RegQueryKey HKCU\Software\Classes SUCCESS Query: HandleTags, HandleTags: 0x1 97 12:38:31,5505730 MCLauncher.exe 84 RegQueryKey HKCU\Software\Classes SUCCESS Query: HandleTags, HandleTags: 0x1 97 12:38:31,5505777 MCLauncher.exe 84 RegQueryKey HKCU\Software\Classes SUCCESS Query: Name 97 12:38:31,5505841 MCLauncher.exe 84 RegOpenKey HKCU\Software\Classes\DelegateFolders NAME NOT FOUND Desired Access: Maximum Allowed 97 12:38:31,5505916 MCLauncher.exe 84 RegOpenKey HKCR\DelegateFolders NAME NOT FOUND Desired Access: Maximum Allowed 97 12:38:31,5505977 MCLauncher.exe 84 RegQueryKey HKCU\Software\Classes SUCCESS Query: Name 97 12:38:31,5506046 MCLauncher.exe 84 RegQueryKey HKCU\Software\Classes SUCCESS Query: HandleTags, HandleTags: 0x1 97 12:38:31,5506096 MCLauncher.exe 84 RegOpenKey HKCU\Software\Classes\DelegateFolders NAME NOT FOUND Desired Access: Maximum Allowed 97 12:38:31,5506157 MCLauncher.exe 84 RegOpenKey HKCR\DelegateFolders NAME NOT FOUND Desired Access: Maximum Allowed 97 12:38:31,5506223 MCLauncher.exe 84 RegEnumKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\UsersFiles\NameSpace NO MORE ENTRIES Index: 1, Length: 288 97 12:38:31,5506295 MCLauncher.exe 84 RegCloseKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\UsersFiles\NameSpace SUCCESS 97 12:38:31,5506367 MCLauncher.exe 84 RegQueryKey HKCU SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:31,5506415 MCLauncher.exe 84 RegQueryKey HKCU SUCCESS Query: Name 97 12:38:31,5506487 MCLauncher.exe 84 RegOpenKey HKCU\Software\Microsoft\Windows\CurrentVersion\Explorer\UsersFiles\NameSpace NAME NOT FOUND Desired Access: Read 97 12:38:31,5506603 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:31,5506647 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: Name 97 12:38:31,5506730 MCLauncher.exe 84 RegOpenKey HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\UsersFiles\NameSpace\DelegateFolders SUCCESS Desired Access: Read 97 12:38:31,5506819 MCLauncher.exe 84 RegSetInfoKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\UsersFiles\NameSpace\DelegateFolders SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 97 12:38:31,5506861 MCLauncher.exe 84 RegEnumKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\UsersFiles\NameSpace\DelegateFolders SUCCESS Index: 0, Name: {DFFACDC5-679F-4156-8947-C5C76BC0B67F} 97 12:38:31,5506922 MCLauncher.exe 84 RegEnumKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\UsersFiles\NameSpace\DelegateFolders NO MORE ENTRIES Index: 1, Length: 288 97 12:38:31,5506971 MCLauncher.exe 84 RegCloseKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\UsersFiles\NameSpace\DelegateFolders SUCCESS 97 12:38:31,5507032 MCLauncher.exe 84 RegQueryKey HKCU SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:31,5507080 MCLauncher.exe 84 RegQueryKey HKCU SUCCESS Query: Name 97 12:38:31,5507152 MCLauncher.exe 84 RegOpenKey HKCU\Software\Microsoft\Windows\CurrentVersion\Explorer\UsersFiles\NameSpace\DelegateFolders NAME NOT FOUND Desired Access: Read 97 12:38:31,5507257 MCLauncher.exe 84 RegQueryKey HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer SUCCESS Query: HandleTags, HandleTags: 0x400 97 12:38:31,5507309 MCLauncher.exe 84 RegOpenKey HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\SessionInfo\1 SUCCESS Desired Access: Query Value 97 12:38:31,5507401 MCLauncher.exe 84 RegQueryKey HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\SessionInfo\1 SUCCESS Query: HandleTags, HandleTags: 0x400 97 12:38:31,5507454 MCLauncher.exe 84 RegOpenKey HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\SessionInfo\1\UsersFiles\NameSpace NAME NOT FOUND Desired Access: Read 97 12:38:31,5507537 MCLauncher.exe 84 RegQueryKey HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\SessionInfo\1 SUCCESS Query: HandleTags, HandleTags: 0x400 97 12:38:31,5507589 MCLauncher.exe 84 RegOpenKey HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\SessionInfo\1\UsersFiles\NameSpace\DelegateFolders NAME NOT FOUND Desired Access: Read 97 12:38:31,5507656 MCLauncher.exe 84 RegCloseKey HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\SessionInfo\1 SUCCESS 97 12:38:31,5507756 MCLauncher.exe 84 RegQueryKey HKCU\Software\Classes SUCCESS Query: Name 97 12:38:31,5507814 MCLauncher.exe 84 RegQueryKey HKCU\Software\Classes SUCCESS Query: HandleTags, HandleTags: 0x1 97 12:38:31,5507877 MCLauncher.exe 84 RegQueryKey HKCU\Software\Classes SUCCESS Query: HandleTags, HandleTags: 0x1 97 12:38:31,5507922 MCLauncher.exe 84 RegQueryKey HKCU\Software\Classes SUCCESS Query: Name 97 12:38:31,5508010 MCLauncher.exe 84 RegOpenKey HKCU\Software\Classes\WOW6432Node\CLSID\{DFFACDC5-679F-4156-8947-C5C76BC0B67F}\ShellFolder NAME NOT FOUND Desired Access: Query Value 97 12:38:31,5508163 MCLauncher.exe 84 RegOpenKey HKCR\WOW6432Node\CLSID\{DFFACDC5-679F-4156-8947-C5C76BC0B67F}\ShellFolder SUCCESS Desired Access: Query Value 97 12:38:31,5508276 MCLauncher.exe 84 RegSetInfoKey HKCR\WOW6432Node\CLSID\{DFFACDC5-679F-4156-8947-C5C76BC0B67F}\ShellFolder SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 97 12:38:31,5508321 MCLauncher.exe 84 RegQueryKey HKCR\WOW6432Node\CLSID\{DFFACDC5-679F-4156-8947-C5C76BC0B67F}\ShellFolder SUCCESS Query: Name 97 12:38:31,5508387 MCLauncher.exe 84 RegQueryKey HKCR\WOW6432Node\CLSID\{DFFACDC5-679F-4156-8947-C5C76BC0B67F}\ShellFolder SUCCESS Query: HandleTags, HandleTags: 0x401 97 12:38:31,5508490 MCLauncher.exe 84 RegOpenKey HKCU\Software\Classes\WOW6432Node\CLSID\{DFFACDC5-679F-4156-8947-C5C76BC0B67F}\ShellFolder NAME NOT FOUND Desired Access: Maximum Allowed 97 12:38:31,5508562 MCLauncher.exe 84 RegQueryValue HKCR\WOW6432Node\CLSID\{DFFACDC5-679F-4156-8947-C5C76BC0B67F}\ShellFolder\Attributes NAME NOT FOUND Length: 144 97 12:38:31,5508700 MCLauncher.exe 84 RegQueryKey HKCR\WOW6432Node\CLSID\{DFFACDC5-679F-4156-8947-C5C76BC0B67F}\ShellFolder SUCCESS Query: Name 97 12:38:31,5508770 MCLauncher.exe 84 RegQueryKey HKCR\WOW6432Node\CLSID\{DFFACDC5-679F-4156-8947-C5C76BC0B67F}\ShellFolder SUCCESS Query: HandleTags, HandleTags: 0x401 97 12:38:31,5508875 MCLauncher.exe 84 RegOpenKey HKCU\Software\Classes\WOW6432Node\CLSID\{DFFACDC5-679F-4156-8947-C5C76BC0B67F}\ShellFolder NAME NOT FOUND Desired Access: Maximum Allowed 97 12:38:31,5508958 MCLauncher.exe 84 RegQueryValue HKCR\WOW6432Node\CLSID\{DFFACDC5-679F-4156-8947-C5C76BC0B67F}\ShellFolder\CallForAttributes NAME NOT FOUND Length: 144 97 12:38:31,5509069 MCLauncher.exe 84 RegQueryKey HKCR\WOW6432Node\CLSID\{DFFACDC5-679F-4156-8947-C5C76BC0B67F}\ShellFolder SUCCESS Query: Name 97 12:38:31,5509135 MCLauncher.exe 84 RegQueryKey HKCR\WOW6432Node\CLSID\{DFFACDC5-679F-4156-8947-C5C76BC0B67F}\ShellFolder SUCCESS Query: HandleTags, HandleTags: 0x401 97 12:38:31,5509235 MCLauncher.exe 84 RegOpenKey HKCU\Software\Classes\WOW6432Node\CLSID\{DFFACDC5-679F-4156-8947-C5C76BC0B67F}\ShellFolder NAME NOT FOUND Desired Access: Maximum Allowed 97 12:38:31,5509313 MCLauncher.exe 84 RegQueryValue HKCR\WOW6432Node\CLSID\{DFFACDC5-679F-4156-8947-C5C76BC0B67F}\ShellFolder\RestrictedAttributes NAME NOT FOUND Length: 144 97 12:38:31,5509421 MCLauncher.exe 84 RegQueryKey HKCR\WOW6432Node\CLSID\{DFFACDC5-679F-4156-8947-C5C76BC0B67F}\ShellFolder SUCCESS Query: Name 97 12:38:31,5509487 MCLauncher.exe 84 RegQueryKey HKCR\WOW6432Node\CLSID\{DFFACDC5-679F-4156-8947-C5C76BC0B67F}\ShellFolder SUCCESS Query: HandleTags, HandleTags: 0x401 97 12:38:31,5509584 MCLauncher.exe 84 RegOpenKey HKCU\Software\Classes\WOW6432Node\CLSID\{DFFACDC5-679F-4156-8947-C5C76BC0B67F}\ShellFolder NAME NOT FOUND Desired Access: Maximum Allowed 97 12:38:31,5509662 MCLauncher.exe 84 RegQueryValue HKCR\WOW6432Node\CLSID\{DFFACDC5-679F-4156-8947-C5C76BC0B67F}\ShellFolder\FolderValueFlags SUCCESS Type: REG_DWORD, Length: 4, Data: 1080 97 12:38:31,5509806 MCLauncher.exe 84 RegCloseKey HKCR\WOW6432Node\CLSID\{DFFACDC5-679F-4156-8947-C5C76BC0B67F}\ShellFolder SUCCESS 97 12:38:31,5509897 MCLauncher.exe 84 RegQueryKey HKCU SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:31,5509950 MCLauncher.exe 84 RegQueryKey HKCU SUCCESS Query: Name 97 12:38:31,5510027 MCLauncher.exe 84 RegOpenKey HKCU\Software\Microsoft\Windows\CurrentVersion\Explorer\CLSID\{DFFACDC5-679F-4156-8947-C5C76BC0B67F}\ShellFolder NAME NOT FOUND Desired Access: Query Value 97 12:38:31,5510135 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:31,5510183 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: Name 97 12:38:31,5510266 MCLauncher.exe 84 RegOpenKey HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\CLSID\{DFFACDC5-679F-4156-8947-C5C76BC0B67F}\ShellFolder NAME NOT FOUND Desired Access: Query Value 97 12:38:31,5510371 MCLauncher.exe 84 RegQueryKey HKCU SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:31,5510418 MCLauncher.exe 84 RegQueryKey HKCU SUCCESS Query: Name 97 12:38:31,5510482 MCLauncher.exe 84 RegOpenKey HKCU\Software\Microsoft\Windows\CurrentVersion\Policies\NonEnum NAME NOT FOUND Desired Access: Query Value 97 12:38:31,5510570 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:31,5510615 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: Name 97 12:38:31,5510687 MCLauncher.exe 84 RegOpenKey HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Policies\NonEnum REPARSE Desired Access: Query Value 97 12:38:31,5510759 MCLauncher.exe 84 RegOpenKey HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\NonEnum SUCCESS Desired Access: Query Value 97 12:38:31,5510828 MCLauncher.exe 84 RegSetInfoKey HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\NonEnum SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 97 12:38:31,5510875 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\NonEnum\{DFFACDC5-679F-4156-8947-C5C76BC0B67F} NAME NOT FOUND Length: 144 97 12:38:31,5511016 MCLauncher.exe 84 RegCloseKey HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\NonEnum SUCCESS 97 12:38:31,5513324 MCLauncher.exe 84 CreateFile C:\Users\User SUCCESS Desired Access: Read Attributes, Disposition: Open, Options: Open Reparse Point, Attributes: n/a, ShareMode: Read, Write, Delete, AllocationSize: n/a, OpenResult: Opened 97 12:38:31,5513488 MCLauncher.exe 84 QueryBasicInformationFile C:\Users\User SUCCESS CreationTime: 19.07.2018 20:06:01, LastAccessTime: 20.07.2018 19:30:20, LastWriteTime: 20.07.2018 19:30:20, ChangeTime: 20.07.2018 19:30:20, FileAttributes: D 97 12:38:31,5513568 MCLauncher.exe 84 CloseFile C:\Users\User SUCCESS 97 12:38:31,5514707 MCLauncher.exe 84 RegQueryKey HKCU SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:31,5514776 MCLauncher.exe 84 RegQueryKey HKCU SUCCESS Query: Name 97 12:38:31,5514876 MCLauncher.exe 84 RegOpenKey HKCU\Software\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\CPC\Volume SUCCESS Desired Access: Read 97 12:38:31,5515006 MCLauncher.exe 84 RegSetInfoKey HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\CPC\Volume SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 97 12:38:31,5515081 MCLauncher.exe 84 RegQueryKey HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\CPC\Volume SUCCESS Query: HandleTags, HandleTags: 0x400 97 12:38:31,5515139 MCLauncher.exe 84 RegOpenKey HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\CPC\Volume\{110924bd-0000-0000-0000-501f00000000}\ SUCCESS Desired Access: Read 97 12:38:31,5515239 MCLauncher.exe 84 RegCloseKey HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\CPC\Volume SUCCESS 97 12:38:31,5515291 MCLauncher.exe 84 RegQueryValue HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\CPC\Volume\{110924bd-0000-0000-0000-501f00000000}\Data BUFFER OVERFLOW Length: 144 97 12:38:31,5515485 MCLauncher.exe 84 RegQueryValue HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\CPC\Volume\{110924bd-0000-0000-0000-501f00000000}\Data SUCCESS Type: REG_BINARY, Length: 1 370, Data: D6 0D 00 00 0D F0 AD BA 41 00 00 00 08 00 00 00 97 12:38:31,5515641 MCLauncher.exe 84 RegCloseKey HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\CPC\Volume\{110924bd-0000-0000-0000-501f00000000} SUCCESS 97 12:38:31,5515718 MCLauncher.exe 84 RegQueryKey HKCU SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:31,5515771 MCLauncher.exe 84 RegQueryKey HKCU SUCCESS Query: Name 97 12:38:31,5515857 MCLauncher.exe 84 RegOpenKey HKCU\Software\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\CPC\Volume SUCCESS Desired Access: Read 97 12:38:31,5515948 MCLauncher.exe 84 RegSetInfoKey HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\CPC\Volume SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 97 12:38:31,5516009 MCLauncher.exe 84 RegQueryKey HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\CPC\Volume SUCCESS Query: HandleTags, HandleTags: 0x400 97 12:38:31,5516064 MCLauncher.exe 84 RegOpenKey HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\CPC\Volume\{110924bd-0000-0000-0000-501f00000000}\ SUCCESS Desired Access: Read 97 12:38:31,5516139 MCLauncher.exe 84 RegCloseKey HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\CPC\Volume SUCCESS 97 12:38:31,5516181 MCLauncher.exe 84 RegQueryValue HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\CPC\Volume\{110924bd-0000-0000-0000-501f00000000}\Generation SUCCESS Type: REG_DWORD, Length: 4, Data: 1 97 12:38:31,5516317 MCLauncher.exe 84 RegCloseKey HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\CPC\Volume\{110924bd-0000-0000-0000-501f00000000} SUCCESS 97 12:38:31,5516896 MCLauncher.exe 84 Thread Create SUCCESS Thread ID: 10668 97 12:38:31,5517078 MCLauncher.exe 84 RegQueryKey HKCU SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:31,5517137 MCLauncher.exe 84 RegQueryKey HKCU SUCCESS Query: Name 97 12:38:31,5517220 MCLauncher.exe 84 RegOpenKey HKCU\Software\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\CPC\Volume SUCCESS Desired Access: Read 97 12:38:31,5517317 MCLauncher.exe 84 RegSetInfoKey HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\CPC\Volume SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 97 12:38:31,5517383 MCLauncher.exe 84 RegQueryKey HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\CPC\Volume SUCCESS Query: HandleTags, HandleTags: 0x400 97 12:38:31,5517439 MCLauncher.exe 84 RegOpenKey HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\CPC\Volume\{110924bd-0000-0000-0000-501f00000000}\ SUCCESS Desired Access: Read 97 12:38:31,5517516 MCLauncher.exe 84 RegCloseKey HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\CPC\Volume SUCCESS 97 12:38:31,5517566 MCLauncher.exe 84 RegQueryValue HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\CPC\Volume\{110924bd-0000-0000-0000-501f00000000}\Generation SUCCESS Type: REG_DWORD, Length: 4, Data: 1 97 12:38:31,5517707 MCLauncher.exe 84 RegCloseKey HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\CPC\Volume\{110924bd-0000-0000-0000-501f00000000} SUCCESS 97 12:38:31,5517982 MCLauncher.exe 84 CreateFile C:\ SUCCESS Desired Access: Read Data/List Directory, Read Attributes, Synchronize, Disposition: Open, Options: Synchronous IO Non-Alert, Attributes: n/a, ShareMode: Read, Write, Delete, AllocationSize: n/a, OpenResult: Opened 97 12:38:31,5518214 MCLauncher.exe 84 QueryRemoteProtocolInformation C:\ INVALID PARAMETER 97 12:38:31,5518314 MCLauncher.exe 84 QueryDirectory C:\Users SUCCESS Filter: Users, 1: Users 97 12:38:31,5518494 MCLauncher.exe 84 CloseFile C:\ SUCCESS 97 12:38:31,5519533 MCLauncher.exe 84 CreateFile C:\Users\desktop.ini SUCCESS Desired Access: Generic Read, Disposition: Open, Options: Sequential Access, Synchronous IO Non-Alert, Non-Directory File, Attributes: n/a, ShareMode: Read, Write, Delete, AllocationSize: n/a, OpenResult: Opened 97 12:38:31,5519741 MCLauncher.exe 84 QueryStandardInformationFile C:\Users\desktop.ini SUCCESS AllocationSize: 176, EndOfFile: 174, NumberOfLinks: 1, DeletePending: False, Directory: False 97 12:38:31,5519838 MCLauncher.exe 84 ReadFile C:\Users\desktop.ini SUCCESS Offset: 0, Length: 174, Priority: Normal 97 12:38:31,5520143 MCLauncher.exe 84 QueryBasicInformationFile C:\Users\desktop.ini SUCCESS CreationTime: 16.07.2016 14:47:50, LastAccessTime: 16.07.2016 14:45:35, LastWriteTime: 16.07.2016 14:45:35, ChangeTime: 19.07.2018 19:43:16, FileAttributes: HSA 97 12:38:31,5520234 MCLauncher.exe 84 CloseFile C:\Users\desktop.ini SUCCESS 97 12:38:31,5521500 MCLauncher.exe 84 CreateFile C:\Users SUCCESS Desired Access: Read Data/List Directory, Read Attributes, Synchronize, Disposition: Open, Options: Synchronous IO Non-Alert, Attributes: n/a, ShareMode: Read, Write, Delete, AllocationSize: n/a, OpenResult: Opened 97 12:38:31,5521694 MCLauncher.exe 84 QueryRemoteProtocolInformation C:\Users INVALID PARAMETER 97 12:38:31,5521780 MCLauncher.exe 84 QueryDirectory C:\Users\User SUCCESS Filter: User, 1: User 97 12:38:31,5521927 MCLauncher.exe 84 CloseFile C:\Users SUCCESS 97 12:38:31,5524127 MCLauncher.exe 84 RegQueryKey HKCU\Software\Classes SUCCESS Query: Name 97 12:38:31,5524221 MCLauncher.exe 84 RegQueryKey HKCU\Software\Classes SUCCESS Query: HandleTags, HandleTags: 0x1 97 12:38:31,5524304 MCLauncher.exe 84 RegQueryKey HKCU\Software\Classes SUCCESS Query: HandleTags, HandleTags: 0x1 97 12:38:31,5524359 MCLauncher.exe 84 RegQueryKey HKCU\Software\Classes SUCCESS Query: Name 97 12:38:31,5524479 MCLauncher.exe 84 RegOpenKey HKCU\Software\Classes\WOW6432Node\CLSID\{F324E4F9-8496-40B2-A1FF-9617C1C9AFFE}\Instance NAME NOT FOUND Desired Access: Read 97 12:38:31,5524612 MCLauncher.exe 84 RegOpenKey HKCR\WOW6432Node\CLSID\{F324E4F9-8496-40B2-A1FF-9617C1C9AFFE}\Instance NAME NOT FOUND Desired Access: Read 97 12:38:31,5525734 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:31,5525792 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: Name 97 12:38:31,5525881 MCLauncher.exe 84 RegOpenKey HKLM\Software\WOW6432Node\Microsoft\Rpc REPARSE Desired Access: Read 97 12:38:31,5525977 MCLauncher.exe 84 RegOpenKey HKLM\SOFTWARE\Microsoft\Rpc SUCCESS Desired Access: Read 97 12:38:31,5526050 MCLauncher.exe 84 RegSetInfoKey HKLM\SOFTWARE\Microsoft\Rpc SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 97 12:38:31,5526113 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\Microsoft\Rpc\MaxRpcSize NAME NOT FOUND Length: 144 97 12:38:31,5526285 MCLauncher.exe 84 RegCloseKey HKLM\SOFTWARE\Microsoft\Rpc SUCCESS 97 12:38:31,5526548 MCLauncher.exe 84 RegOpenKey HKLM\System\CurrentControlSet\Control\ComputerName\ActiveComputerName REPARSE Desired Access: Read 97 12:38:31,5526634 MCLauncher.exe 84 RegOpenKey HKLM\System\CurrentControlSet\Control\ComputerName\ActiveComputerName SUCCESS Desired Access: Read 97 12:38:31,5526734 MCLauncher.exe 84 RegSetInfoKey HKLM\System\CurrentControlSet\Control\ComputerName\ActiveComputerName SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 97 12:38:31,5526778 MCLauncher.exe 84 RegQueryValue HKLM\System\CurrentControlSet\Control\ComputerName\ActiveComputerName\ComputerName SUCCESS Type: REG_SZ, Length: 32, Data: WIN-0UOTFKKVN1S 97 12:38:31,5526925 MCLauncher.exe 84 RegCloseKey HKLM\System\CurrentControlSet\Control\ComputerName\ActiveComputerName SUCCESS 97 12:38:31,5527000 MCLauncher.exe 84 RegOpenKey HKLM\System\Setup SUCCESS Desired Access: Read 97 12:38:31,5527069 MCLauncher.exe 84 RegSetInfoKey HKLM\SYSTEM\Setup SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 97 12:38:31,5527111 MCLauncher.exe 84 RegQueryValue HKLM\SYSTEM\Setup\OOBEInProgress SUCCESS Type: REG_DWORD, Length: 4, Data: 0 97 12:38:31,5527249 MCLauncher.exe 84 RegCloseKey HKLM\SYSTEM\Setup SUCCESS 97 12:38:31,5527318 MCLauncher.exe 84 RegOpenKey HKLM\System\Setup SUCCESS Desired Access: Read 97 12:38:31,5527377 MCLauncher.exe 84 RegSetInfoKey HKLM\SYSTEM\Setup SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 97 12:38:31,5527418 MCLauncher.exe 84 RegQueryValue HKLM\SYSTEM\Setup\SystemSetupInProgress SUCCESS Type: REG_DWORD, Length: 4, Data: 0 97 12:38:31,5527540 MCLauncher.exe 84 RegCloseKey HKLM\SYSTEM\Setup SUCCESS 97 12:38:31,5527656 MCLauncher.exe 84 RegQueryKey HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options SUCCESS Query: HandleTags, HandleTags: 0x400 97 12:38:31,5527720 MCLauncher.exe 84 RegOpenKey HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\MCLauncher.exe NAME NOT FOUND Desired Access: Query Value, Enumerate Sub Keys 97 12:38:31,5528119 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:31,5528172 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: Name 97 12:38:31,5528255 MCLauncher.exe 84 RegOpenKey HKLM\Software\WOW6432Node\Policies\Microsoft\Windows NT\Rpc REPARSE Desired Access: Read 97 12:38:31,5528327 MCLauncher.exe 84 RegOpenKey HKLM\SOFTWARE\Policies\Microsoft\Windows NT\Rpc NAME NOT FOUND Desired Access: Read 97 12:38:31,5528743 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:31,5528795 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: Name 97 12:38:31,5528867 MCLauncher.exe 84 RegOpenKey HKLM\Software\WOW6432Node\Microsoft\Rpc REPARSE Desired Access: Query Value 97 12:38:31,5528934 MCLauncher.exe 84 RegOpenKey HKLM\SOFTWARE\Microsoft\Rpc SUCCESS Desired Access: Query Value 97 12:38:31,5528989 MCLauncher.exe 84 RegSetInfoKey HKLM\SOFTWARE\Microsoft\Rpc SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 97 12:38:31,5529036 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\Microsoft\Rpc\IdleTimerWindow NAME NOT FOUND Length: 144 97 12:38:31,5529175 MCLauncher.exe 84 RegCloseKey HKLM\SOFTWARE\Microsoft\Rpc SUCCESS 97 12:38:31,5531990 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:31,5532062 MCLauncher.exe 84 RegOpenKey HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\SyncRootManager SUCCESS Desired Access: Read 97 12:38:31,5532178 MCLauncher.exe 84 RegSetInfoKey HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\SyncRootManager SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 97 12:38:31,5532256 MCLauncher.exe 84 RegQueryKey HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\SyncRootManager SUCCESS Query: HandleTags, HandleTags: 0x100 97 12:38:31,5532322 MCLauncher.exe 84 RegCreateKey HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\SyncRootManager SUCCESS Desired Access: Notify, Disposition: REG_OPENED_EXISTING_KEY 97 12:38:31,5533322 MCLauncher.exe 84 RegQueryKey HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\SyncRootManager SUCCESS Query: Cached, SubKeys: 0, Values: 0 97 12:38:31,5533447 MCLauncher.exe 84 RegCloseKey HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\SyncRootManager SUCCESS 97 12:38:31,5533652 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:31,5533705 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: Name 97 12:38:31,5533804 MCLauncher.exe 84 RegOpenKey HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\KindMap REPARSE Desired Access: Read 97 12:38:31,5533899 MCLauncher.exe 84 RegOpenKey HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\KindMap SUCCESS Desired Access: Read 97 12:38:31,5533959 MCLauncher.exe 84 RegSetInfoKey HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\KindMap SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 97 12:38:31,5534009 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\KindMap\.exe SUCCESS Type: REG_SZ, Length: 16, Data: program 97 12:38:31,5534198 MCLauncher.exe 84 RegCloseKey HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\KindMap SUCCESS 97 12:38:31,5534245 MCLauncher.exe 84 RegQueryKey HKCU\Software\Classes SUCCESS Query: Name 97 12:38:31,5534309 MCLauncher.exe 84 RegQueryKey HKCU\Software\Classes SUCCESS Query: HandleTags, HandleTags: 0x1 97 12:38:31,5534378 MCLauncher.exe 84 RegQueryKey HKCU\Software\Classes SUCCESS Query: HandleTags, HandleTags: 0x1 97 12:38:31,5534428 MCLauncher.exe 84 RegQueryKey HKCU\Software\Classes SUCCESS Query: Name 97 12:38:31,5534505 MCLauncher.exe 84 RegOpenKey HKCU\Software\Classes\.exe NAME NOT FOUND Desired Access: Read 97 12:38:31,5534608 MCLauncher.exe 84 RegOpenKey HKCR\.exe SUCCESS Desired Access: Read 97 12:38:31,5534683 MCLauncher.exe 84 RegSetInfoKey HKCR\.exe SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 97 12:38:31,5534727 MCLauncher.exe 84 RegQueryKey HKCR\.exe SUCCESS Query: Name 97 12:38:31,5534791 MCLauncher.exe 84 RegQueryKey HKCR\.exe SUCCESS Query: HandleTags, HandleTags: 0x401 97 12:38:31,5534885 MCLauncher.exe 84 RegOpenKey HKCU\Software\Classes\.exe NAME NOT FOUND Desired Access: Maximum Allowed 97 12:38:31,5534951 MCLauncher.exe 84 RegQueryValue HKCR\.exe\Content Type SUCCESS Type: REG_SZ, Length: 50, Data: application/x-msdownload 97 12:38:31,5535104 MCLauncher.exe 84 RegCloseKey HKCR\.exe SUCCESS 97 12:38:31,5535433 MCLauncher.exe 84 RegQueryKey HKCU\Software\Classes SUCCESS Query: Name 97 12:38:31,5535503 MCLauncher.exe 84 RegQueryKey HKCU\Software\Classes SUCCESS Query: HandleTags, HandleTags: 0x1 97 12:38:31,5535575 MCLauncher.exe 84 RegQueryKey HKCU\Software\Classes SUCCESS Query: HandleTags, HandleTags: 0x1 97 12:38:31,5535622 MCLauncher.exe 84 RegQueryKey HKCU\Software\Classes SUCCESS Query: Name 97 12:38:31,5535699 MCLauncher.exe 84 RegOpenKey HKCU\Software\Classes\.exe NAME NOT FOUND Desired Access: Read 97 12:38:31,5535791 MCLauncher.exe 84 RegOpenKey HKCR\.exe SUCCESS Desired Access: Read 97 12:38:31,5535863 MCLauncher.exe 84 RegSetInfoKey HKCR\.exe SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 97 12:38:31,5535918 MCLauncher.exe 84 RegQueryKey HKCR\.exe SUCCESS Query: Name 97 12:38:31,5535976 MCLauncher.exe 84 RegQueryKey HKCR\.exe SUCCESS Query: HandleTags, HandleTags: 0x401 97 12:38:31,5536062 MCLauncher.exe 84 RegOpenKey HKCU\Software\Classes\.exe NAME NOT FOUND Desired Access: Maximum Allowed 97 12:38:31,5536123 MCLauncher.exe 84 RegQueryValue HKCR\.exe\(Default) SUCCESS Type: REG_SZ, Length: 16, Data: exefile 97 12:38:31,5536209 MCLauncher.exe 84 RegQueryKey HKCU\Software\Classes SUCCESS Query: Name 97 12:38:31,5536265 MCLauncher.exe 84 RegQueryKey HKCU\Software\Classes SUCCESS Query: HandleTags, HandleTags: 0x1 97 12:38:31,5536328 MCLauncher.exe 84 RegQueryKey HKCU\Software\Classes SUCCESS Query: HandleTags, HandleTags: 0x1 97 12:38:31,5536375 MCLauncher.exe 84 RegQueryKey HKCU\Software\Classes SUCCESS Query: Name 97 12:38:31,5536439 MCLauncher.exe 84 RegOpenKey HKCU\Software\Classes\exefile NAME NOT FOUND Desired Access: Read 97 12:38:31,5536514 MCLauncher.exe 84 RegOpenKey HKCR\exefile SUCCESS Desired Access: Read 97 12:38:31,5536580 MCLauncher.exe 84 RegSetInfoKey HKCR\exefile SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 97 12:38:31,5536622 MCLauncher.exe 84 RegQueryKey HKCR\exefile SUCCESS Query: Name 97 12:38:31,5536677 MCLauncher.exe 84 RegQueryKey HKCR\exefile SUCCESS Query: HandleTags, HandleTags: 0x401 97 12:38:31,5536755 MCLauncher.exe 84 RegOpenKey HKCU\Software\Classes\exefile\CurVer NAME NOT FOUND Desired Access: Query Value 97 12:38:31,5536830 MCLauncher.exe 84 RegQueryKey HKCR\exefile SUCCESS Query: HandleTags, HandleTags: 0x401 97 12:38:31,5536880 MCLauncher.exe 84 RegOpenKey HKCR\exefile\CurVer NAME NOT FOUND Desired Access: Query Value 97 12:38:31,5536949 MCLauncher.exe 84 RegQueryKey HKCR\exefile SUCCESS Query: Name 97 12:38:31,5537002 MCLauncher.exe 84 RegQueryKey HKCR\exefile SUCCESS Query: HandleTags, HandleTags: 0x401 97 12:38:31,5537076 MCLauncher.exe 84 RegOpenKey HKCU\Software\Classes\exefile NAME NOT FOUND Desired Access: Read 97 12:38:31,5537146 MCLauncher.exe 84 RegQueryKey HKCR\exefile SUCCESS Query: HandleTags, HandleTags: 0x401 97 12:38:31,5537195 MCLauncher.exe 84 RegOpenKey HKCR\exefile SUCCESS Desired Access: Read 97 12:38:31,5537276 MCLauncher.exe 84 RegCloseKey HKCR\exefile SUCCESS 97 12:38:31,5537323 MCLauncher.exe 84 RegQueryKey HKCR\exefile SUCCESS Query: Name 97 12:38:31,5537376 MCLauncher.exe 84 RegQueryKey HKCR\exefile SUCCESS Query: HandleTags, HandleTags: 0x401 97 12:38:31,5537450 MCLauncher.exe 84 RegOpenKey HKCU\Software\Classes\exefile NAME NOT FOUND Desired Access: Maximum Allowed 97 12:38:31,5537506 MCLauncher.exe 84 RegQueryValue HKCR\exefile\IsShortcut NAME NOT FOUND Length: 144 97 12:38:31,5537733 MCLauncher.exe 84 RegQueryKey HKCR\exefile SUCCESS Query: Name 97 12:38:31,5537794 MCLauncher.exe 84 RegQueryKey HKCR\exefile SUCCESS Query: HandleTags, HandleTags: 0x401 97 12:38:31,5537888 MCLauncher.exe 84 RegOpenKey HKCU\Software\Classes\exefile NAME NOT FOUND Desired Access: Maximum Allowed 97 12:38:31,5537955 MCLauncher.exe 84 RegQueryValue HKCR\exefile\NoStaticDefaultVerb NAME NOT FOUND Length: 144 97 12:38:31,5538077 MCLauncher.exe 84 RegQueryKey HKCR\exefile SUCCESS Query: Name 97 12:38:31,5538135 MCLauncher.exe 84 RegQueryKey HKCR\exefile SUCCESS Query: HandleTags, HandleTags: 0x401 97 12:38:31,5538226 MCLauncher.exe 84 RegOpenKey HKCU\Software\Classes\exefile\shell NAME NOT FOUND Desired Access: Read 97 12:38:31,5538306 MCLauncher.exe 84 RegQueryKey HKCR\exefile SUCCESS Query: HandleTags, HandleTags: 0x401 97 12:38:31,5538359 MCLauncher.exe 84 RegOpenKey HKCR\exefile\shell SUCCESS Desired Access: Read 97 12:38:31,5538428 MCLauncher.exe 84 RegQueryKey HKCR\exefile\shell SUCCESS Query: Name 97 12:38:31,5538484 MCLauncher.exe 84 RegQueryKey HKCR\exefile\shell SUCCESS Query: HandleTags, HandleTags: 0x401 97 12:38:31,5538559 MCLauncher.exe 84 RegOpenKey HKCU\Software\Classes\exefile\shell NAME NOT FOUND Desired Access: Maximum Allowed 97 12:38:31,5538611 MCLauncher.exe 84 RegQueryValue HKCR\exefile\shell\(Default) NAME NOT FOUND Length: 144 97 12:38:31,5538661 MCLauncher.exe 84 RegQueryKey HKCR\exefile\shell SUCCESS Query: Name 97 12:38:31,5538714 MCLauncher.exe 84 RegQueryKey HKCR\exefile\shell SUCCESS Query: HandleTags, HandleTags: 0x401 97 12:38:31,5538789 MCLauncher.exe 84 RegOpenKey HKCU\Software\Classes\exefile\shell\open NAME NOT FOUND Desired Access: Read 97 12:38:31,5538858 MCLauncher.exe 84 RegQueryKey HKCR\exefile\shell SUCCESS Query: HandleTags, HandleTags: 0x401 97 12:38:31,5538910 MCLauncher.exe 84 RegOpenKey HKCR\exefile\shell\open SUCCESS Desired Access: Read 97 12:38:31,5538983 MCLauncher.exe 84 RegQueryKey HKCR\exefile\shell\open SUCCESS Query: Name 97 12:38:31,5539041 MCLauncher.exe 84 RegQueryKey HKCR\exefile\shell\open SUCCESS Query: HandleTags, HandleTags: 0x401 97 12:38:31,5539113 MCLauncher.exe 84 RegOpenKey HKCU\Software\Classes\exefile\shell\open NAME NOT FOUND Desired Access: Maximum Allowed 97 12:38:31,5539165 MCLauncher.exe 84 RegQueryValue HKCR\exefile\shell\open\NeverDefault NAME NOT FOUND Length: 144 97 12:38:31,5539296 MCLauncher.exe 84 RegCloseKey HKCR\exefile\shell SUCCESS 97 12:38:31,5539775 MCLauncher.exe 84 RegQueryValue HKLM\System\CurrentControlSet\Control\WMI\Security\bf4c9654-66d1-5720-7b51-d2ae226735ea NAME NOT FOUND Length: 524 97 12:38:31,5540470 MCLauncher.exe 84 RegQueryKey HKCR\exefile\shell\open SUCCESS Query: Name 97 12:38:31,5540537 MCLauncher.exe 84 RegQueryKey HKCR\exefile\shell\open SUCCESS Query: HandleTags, HandleTags: 0x401 97 12:38:31,5540637 MCLauncher.exe 84 RegOpenKey HKCU\Software\Classes\exefile\shell\open NAME NOT FOUND Desired Access: Read 97 12:38:31,5540725 MCLauncher.exe 84 RegQueryKey HKCR\exefile\shell\open SUCCESS Query: HandleTags, HandleTags: 0x401 97 12:38:31,5540775 MCLauncher.exe 84 RegOpenKey HKCR\exefile\shell\open SUCCESS Desired Access: Read 97 12:38:31,5540850 MCLauncher.exe 84 RegQueryKey HKCR\exefile\shell\open SUCCESS Query: Name 97 12:38:31,5540903 MCLauncher.exe 84 RegQueryKey HKCR\exefile\shell\open SUCCESS Query: HandleTags, HandleTags: 0x401 97 12:38:31,5540977 MCLauncher.exe 84 RegOpenKey HKCU\Software\Classes\exefile\shell\open NAME NOT FOUND Desired Access: Read 97 12:38:31,5541047 MCLauncher.exe 84 RegQueryKey HKCR\exefile\shell\open SUCCESS Query: HandleTags, HandleTags: 0x401 97 12:38:31,5541096 MCLauncher.exe 84 RegOpenKey HKCR\exefile\shell\open SUCCESS Desired Access: Read 97 12:38:31,5541202 MCLauncher.exe 84 RegCloseKey HKCR\exefile\shell\open SUCCESS 97 12:38:31,5541761 MCLauncher.exe 84 RegQueryValue HKLM\System\CurrentControlSet\Control\WMI\Security\e305fb0f-da8e-52b5-a918-7a4f17a2531a NAME NOT FOUND Length: 524 97 12:38:31,5542177 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:31,5542227 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: Name 97 12:38:31,5542315 MCLauncher.exe 84 RegOpenKey HKLM\Software\WOW6432Node\Policies\Microsoft\Windows\Explorer REPARSE Desired Access: Query Value 97 12:38:31,5542390 MCLauncher.exe 84 RegOpenKey HKLM\SOFTWARE\Policies\Microsoft\Windows\Explorer NAME NOT FOUND Desired Access: Query Value 97 12:38:31,5542493 MCLauncher.exe 84 RegQueryKey HKCU SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:31,5542540 MCLauncher.exe 84 RegQueryKey HKCU SUCCESS Query: Name 97 12:38:31,5542612 MCLauncher.exe 84 RegOpenKey HKCU\Software\Policies\Microsoft\Windows\Explorer NAME NOT FOUND Desired Access: Query Value 97 12:38:31,5545640 MCLauncher.exe 84 CreateFile C:\Windows\SysWOW64\edputil.dll SUCCESS Desired Access: Read Attributes, Disposition: Open, Options: Open Reparse Point, Attributes: n/a, ShareMode: Read, Write, Delete, AllocationSize: n/a, OpenResult: Opened 97 12:38:31,5545950 MCLauncher.exe 84 QueryBasicInformationFile C:\Windows\SysWOW64\edputil.dll SUCCESS CreationTime: 20.07.2018 1:33:41, LastAccessTime: 20.07.2018 1:33:41, LastWriteTime: 03.06.2017 12:28:56, ChangeTime: 20.07.2018 19:25:40, FileAttributes: A 97 12:38:31,5546042 MCLauncher.exe 84 CloseFile C:\Windows\SysWOW64\edputil.dll SUCCESS 97 12:38:31,5547042 MCLauncher.exe 84 CreateFile C:\Windows\SysWOW64\edputil.dll SUCCESS Desired Access: Read Data/List Directory, Execute/Traverse, Synchronize, Disposition: Open, Options: Synchronous IO Non-Alert, Non-Directory File, Attributes: n/a, ShareMode: Read, Delete, AllocationSize: n/a, OpenResult: Opened 97 12:38:31,5547330 MCLauncher.exe 84 CreateFileMapping C:\Windows\SysWOW64\edputil.dll FILE LOCKED WITH ONLY READERS SyncType: SyncTypeCreateSection, PageProtection: PAGE_EXECUTE|PAGE_NOCACHE 97 12:38:31,5547496 MCLauncher.exe 84 QueryNameInformationFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Name: \Users\User\Downloads\MCLauncher.exe 97 12:38:31,5548438 MCLauncher.exe 84 CreateFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Desired Access: Synchronize, Disposition: Open, Options: Synchronous IO Non-Alert, Attributes: N, ShareMode: Read, Write, Delete, AllocationSize: n/a, OpenResult: Opened 97 12:38:31,5548638 MCLauncher.exe 84 CloseFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS 97 12:38:31,5548937 MCLauncher.exe 84 QueryNameInformationFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Name: \Users\User\Downloads\MCLauncher.exe 97 12:38:31,5549796 MCLauncher.exe 84 CreateFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Desired Access: Synchronize, Disposition: Open, Options: Synchronous IO Non-Alert, Attributes: N, ShareMode: Read, Write, Delete, AllocationSize: n/a, OpenResult: Opened 97 12:38:31,5549968 MCLauncher.exe 84 CloseFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS 97 12:38:31,5550685 MCLauncher.exe 84 CreateFileMapping C:\Windows\SysWOW64\edputil.dll SUCCESS SyncType: SyncTypeOther 97 12:38:31,5551275 MCLauncher.exe 84 Load Image C:\Windows\SysWOW64\edputil.dll SUCCESS Image Base: 0x627d0000, Image Size: 0x3d000 97 12:38:31,5551979 MCLauncher.exe 84 CloseFile C:\Windows\SysWOW64\edputil.dll SUCCESS 97 12:38:31,5553896 MCLauncher.exe 84 CreateFile C:\Windows\SysWOW64\edputil.dll SUCCESS Desired Access: Read Control, Disposition: Open, Options: , Attributes: n/a, ShareMode: Read, Delete, AllocationSize: n/a, OpenResult: Opened 97 12:38:31,5554179 MCLauncher.exe 84 QuerySecurityFile C:\Windows\SysWOW64\edputil.dll BUFFER OVERFLOW Information: Owner 97 12:38:31,5554262 MCLauncher.exe 84 QuerySecurityFile C:\Windows\SysWOW64\edputil.dll SUCCESS Information: Owner 97 12:38:31,5554331 MCLauncher.exe 84 CloseFile C:\Windows\SysWOW64\edputil.dll SUCCESS 97 12:38:31,5554999 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:31,5555066 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: Name 97 12:38:31,5555179 MCLauncher.exe 84 RegOpenKey HKLM\Software\WOW6432Node\Policies\Microsoft\Windows\Explorer REPARSE Desired Access: Query Value 97 12:38:31,5555265 MCLauncher.exe 84 RegOpenKey HKLM\SOFTWARE\Policies\Microsoft\Windows\Explorer NAME NOT FOUND Desired Access: Query Value 97 12:38:31,5555370 MCLauncher.exe 84 RegQueryKey HKCU SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:31,5555417 MCLauncher.exe 84 RegQueryKey HKCU SUCCESS Query: Name 97 12:38:31,5555495 MCLauncher.exe 84 RegOpenKey HKCU\Software\Policies\Microsoft\Windows\Explorer NAME NOT FOUND Desired Access: Query Value 97 12:38:31,5555900 MCLauncher.exe 84 RegQueryKey HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer SUCCESS Query: HandleTags, HandleTags: 0x400 97 12:38:31,5555961 MCLauncher.exe 84 RegOpenKey HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\SessionInfo\1 SUCCESS Desired Access: Query Value 97 12:38:31,5556080 MCLauncher.exe 84 RegQueryKey HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\SessionInfo\1 SUCCESS Query: HandleTags, HandleTags: 0x400 97 12:38:31,5556132 MCLauncher.exe 84 RegOpenKey HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\SessionInfo\1\KnownFolders NAME NOT FOUND Desired Access: Query Value 97 12:38:31,5556221 MCLauncher.exe 84 RegCloseKey HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\SessionInfo\1 SUCCESS 97 12:38:31,5556312 MCLauncher.exe 84 RegOpenKey HKCU SUCCESS Desired Access: Read 97 12:38:31,5556407 MCLauncher.exe 84 RegQueryKey HKCU SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:31,5556454 MCLauncher.exe 84 RegQueryKey HKCU SUCCESS Query: Name 97 12:38:31,5556528 MCLauncher.exe 84 RegOpenKey HKCU\Software\Microsoft\Windows\CurrentVersion\Explorer\User Shell Folders SUCCESS Desired Access: Read 97 12:38:31,5556625 MCLauncher.exe 84 RegSetInfoKey HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\User Shell Folders SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 97 12:38:31,5556678 MCLauncher.exe 84 RegCloseKey HKCU SUCCESS 97 12:38:31,5556731 MCLauncher.exe 84 RegQueryValue HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\User Shell Folders\Start Menu SUCCESS Type: REG_EXPAND_SZ, Length: 118, Data: %USERPROFILE%\AppData\Roaming\Microsoft\Windows\Start Menu 97 12:38:31,5557127 MCLauncher.exe 84 RegCloseKey HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\User Shell Folders SUCCESS 97 12:38:31,5557304 MCLauncher.exe 84 RegQueryKey HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer SUCCESS Query: HandleTags, HandleTags: 0x400 97 12:38:31,5557368 MCLauncher.exe 84 RegOpenKey HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\SessionInfo\1 SUCCESS Desired Access: Query Value 97 12:38:31,5557462 MCLauncher.exe 84 RegQueryKey HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\SessionInfo\1 SUCCESS Query: HandleTags, HandleTags: 0x400 97 12:38:31,5557515 MCLauncher.exe 84 RegOpenKey HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\SessionInfo\1\KnownFolders NAME NOT FOUND Desired Access: Query Value 97 12:38:31,5557584 MCLauncher.exe 84 RegCloseKey HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\SessionInfo\1 SUCCESS 97 12:38:31,5557645 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:31,5557695 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: Name 97 12:38:31,5557784 MCLauncher.exe 84 RegOpenKey HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\User Shell Folders SUCCESS Desired Access: Read 97 12:38:31,5557892 MCLauncher.exe 84 RegSetInfoKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\User Shell Folders SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 97 12:38:31,5557939 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\User Shell Folders\Common Start Menu SUCCESS Type: REG_EXPAND_SZ, Length: 86, Data: %ProgramData%\Microsoft\Windows\Start Menu 97 12:38:31,5558249 MCLauncher.exe 84 RegCloseKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\User Shell Folders SUCCESS 97 12:38:31,5558404 MCLauncher.exe 84 RegQueryKey HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer SUCCESS Query: HandleTags, HandleTags: 0x400 97 12:38:31,5558465 MCLauncher.exe 84 RegOpenKey HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\SessionInfo\1 SUCCESS Desired Access: Query Value 97 12:38:31,5558557 MCLauncher.exe 84 RegQueryKey HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\SessionInfo\1 SUCCESS Query: HandleTags, HandleTags: 0x400 97 12:38:31,5558609 MCLauncher.exe 84 RegOpenKey HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\SessionInfo\1\KnownFolders NAME NOT FOUND Desired Access: Query Value 97 12:38:31,5558676 MCLauncher.exe 84 RegCloseKey HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\SessionInfo\1 SUCCESS 97 12:38:31,5558759 MCLauncher.exe 84 RegOpenKey HKCU SUCCESS Desired Access: Read 97 12:38:31,5558842 MCLauncher.exe 84 RegQueryKey HKCU SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:31,5558892 MCLauncher.exe 84 RegQueryKey HKCU SUCCESS Query: Name 97 12:38:31,5558961 MCLauncher.exe 84 RegOpenKey HKCU\Software\Microsoft\Windows\CurrentVersion\Explorer\User Shell Folders SUCCESS Desired Access: Read 97 12:38:31,5559039 MCLauncher.exe 84 RegSetInfoKey HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\User Shell Folders SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 97 12:38:31,5559083 MCLauncher.exe 84 RegCloseKey HKCU SUCCESS 97 12:38:31,5559141 MCLauncher.exe 84 RegQueryValue HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\User Shell Folders\Recent SUCCESS Type: REG_EXPAND_SZ, Length: 110, Data: %USERPROFILE%\AppData\Roaming\Microsoft\Windows\Recent 97 12:38:31,5559487 MCLauncher.exe 84 RegCloseKey HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\User Shell Folders SUCCESS 97 12:38:31,5559745 MCLauncher.exe 84 RegQueryKey HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer SUCCESS Query: HandleTags, HandleTags: 0x400 97 12:38:31,5559809 MCLauncher.exe 84 RegOpenKey HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\SessionInfo\1 SUCCESS Desired Access: Query Value 97 12:38:31,5559900 MCLauncher.exe 84 RegQueryKey HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\SessionInfo\1 SUCCESS Query: HandleTags, HandleTags: 0x400 97 12:38:31,5559953 MCLauncher.exe 84 RegOpenKey HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\SessionInfo\1\KnownFolders NAME NOT FOUND Desired Access: Query Value 97 12:38:31,5560019 MCLauncher.exe 84 RegCloseKey HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\SessionInfo\1 SUCCESS 97 12:38:31,5560102 MCLauncher.exe 84 RegOpenKey HKCU SUCCESS Desired Access: Read 97 12:38:31,5560183 MCLauncher.exe 84 RegQueryKey HKCU SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:31,5560227 MCLauncher.exe 84 RegQueryKey HKCU SUCCESS Query: Name 97 12:38:31,5560296 MCLauncher.exe 84 RegOpenKey HKCU\Software\Microsoft\Windows\CurrentVersion\Explorer\User Shell Folders SUCCESS Desired Access: Read 97 12:38:31,5560371 MCLauncher.exe 84 RegSetInfoKey HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\User Shell Folders SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 97 12:38:31,5560416 MCLauncher.exe 84 RegCloseKey HKCU SUCCESS 97 12:38:31,5560460 MCLauncher.exe 84 RegQueryValue HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\User Shell Folders\Personal SUCCESS Type: REG_EXPAND_SZ, Length: 48, Data: %USERPROFILE%\Documents 97 12:38:31,5560706 MCLauncher.exe 84 RegCloseKey HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\User Shell Folders SUCCESS 97 12:38:31,5561033 MCLauncher.exe 84 RegOpenKey HKLM\Software\WOW6432Node\Microsoft\Rpc\Extensions REPARSE Desired Access: Read 97 12:38:31,5561117 MCLauncher.exe 84 RegOpenKey HKLM\SOFTWARE\Microsoft\Rpc\Extensions SUCCESS Desired Access: Read 97 12:38:31,5561205 MCLauncher.exe 84 RegSetInfoKey HKLM\SOFTWARE\Microsoft\Rpc\Extensions SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 97 12:38:31,5561252 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\Microsoft\Rpc\Extensions\NdrOleExtDLL SUCCESS Type: REG_EXPAND_SZ, Length: 24, Data: combase.dll 97 12:38:31,5561394 MCLauncher.exe 84 RegCloseKey HKLM\SOFTWARE\Microsoft\Rpc\Extensions SUCCESS 97 12:38:31,5561804 MCLauncher.exe 84 RegOpenKey HKCU SUCCESS Desired Access: Read 97 12:38:31,5561873 MCLauncher.exe 84 RegSetInfoKey HKCU SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 97 12:38:31,5561945 MCLauncher.exe 84 RegQueryKey HKCU SUCCESS Query: HandleTags, HandleTags: 0x100 97 12:38:31,5562000 MCLauncher.exe 84 RegOpenKey HKCU\Software\Classes\Local Settings REPARSE Desired Access: Read 97 12:38:31,5562072 MCLauncher.exe 84 RegOpenKey HKCU\Software\Classes\Local Settings SUCCESS Desired Access: Read 97 12:38:31,5562142 MCLauncher.exe 84 RegCloseKey HKCU SUCCESS 97 12:38:31,5562189 MCLauncher.exe 84 RegCloseKey HKCU\Software\Classes\Local Settings SUCCESS 97 12:38:31,5627521 MCLauncher.exe 84 RegOpenKey HKLM\System\CurrentControlSet\Control\DeviceClasses\{53f5630d-b6bf-11d0-94f2-00a0c91efb8b} SUCCESS Desired Access: All Access 97 12:38:31,5627740 MCLauncher.exe 84 RegOpenKey HKLM\System\CurrentControlSet\Control\DeviceClasses\{53f5630d-b6bf-11d0-94f2-00a0c91efb8b}\Properties NAME NOT FOUND Desired Access: Query Value 97 12:38:31,5628089 MCLauncher.exe 84 RegCloseKey HKLM\System\CurrentControlSet\Control\DeviceClasses\{53f5630d-b6bf-11d0-94f2-00a0c91efb8b} SUCCESS 97 12:38:31,5628311 MCLauncher.exe 84 RegOpenKey HKLM\System\CurrentControlSet\Control\DeviceClasses\{53f5630d-b6bf-11d0-94f2-00a0c91efb8b} SUCCESS Desired Access: All Access 97 12:38:31,5628413 MCLauncher.exe 84 RegOpenKey HKLM\System\CurrentControlSet\Control\DeviceClasses\{53f5630d-b6bf-11d0-94f2-00a0c91efb8b}\Properties NAME NOT FOUND Desired Access: Query Value 97 12:38:31,5628638 MCLauncher.exe 84 RegCloseKey HKLM\System\CurrentControlSet\Control\DeviceClasses\{53f5630d-b6bf-11d0-94f2-00a0c91efb8b} SUCCESS 97 12:38:31,5629882 MCLauncher.exe 84 RegOpenKey HKLM\SOFTWARE\Policies\Microsoft\Windows\Appx SUCCESS Desired Access: Read 97 12:38:31,5630081 MCLauncher.exe 84 RegSetInfoKey HKLM\SOFTWARE\Policies\Microsoft\Windows\Appx SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 97 12:38:31,5630151 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\Policies\Microsoft\Windows\Appx\AllowDevelopmentWithoutDevLicense SUCCESS Type: REG_DWORD, Length: 4, Data: 65535 97 12:38:31,5630441 MCLauncher.exe 84 RegCloseKey HKLM\SOFTWARE\Policies\Microsoft\Windows\Appx SUCCESS 97 12:38:31,5630514 MCLauncher.exe 84 RegOpenKey HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\AppModelUnlock SUCCESS Desired Access: Read 97 12:38:31,5630663 MCLauncher.exe 84 RegSetInfoKey HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\AppModelUnlock SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 97 12:38:31,5630713 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\AppModelUnlock\AllowDevelopmentWithoutDevLicense NAME NOT FOUND Length: 24 97 12:38:31,5630838 MCLauncher.exe 84 RegCloseKey HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\AppModelUnlock SUCCESS 97 12:38:31,5632974 MCLauncher.exe 84 RegQueryKey HKCU\Software\Classes SUCCESS Query: Name 97 12:38:31,5633079 MCLauncher.exe 84 RegQueryKey HKCU\Software\Classes SUCCESS Query: HandleTags, HandleTags: 0x1 97 12:38:31,5633162 MCLauncher.exe 84 RegQueryKey HKCU\Software\Classes SUCCESS Query: HandleTags, HandleTags: 0x1 97 12:38:31,5633220 MCLauncher.exe 84 RegQueryKey HKCU\Software\Classes SUCCESS Query: Name 97 12:38:31,5633320 MCLauncher.exe 84 RegOpenKey HKCU\Software\Classes\AppID\MCLauncher.exe NAME NOT FOUND Desired Access: Read 97 12:38:31,5633459 MCLauncher.exe 84 RegOpenKey HKCR\AppID\MCLauncher.exe NAME NOT FOUND Desired Access: Read 97 12:38:31,5633572 MCLauncher.exe 84 RegQueryKey HKCU\Software\Classes SUCCESS Query: Name 97 12:38:31,5633647 MCLauncher.exe 84 RegQueryKey HKCU\Software\Classes SUCCESS Query: HandleTags, HandleTags: 0x1 97 12:38:31,5633700 MCLauncher.exe 84 RegOpenKey HKCU\Software\Classes\AppID\MCLauncher.exe NAME NOT FOUND Desired Access: Read 97 12:38:31,5633772 MCLauncher.exe 84 RegOpenKey HKCR\AppID\MCLauncher.exe NAME NOT FOUND Desired Access: Read 97 12:38:31,5633860 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:31,5633905 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: Name 97 12:38:31,5633982 MCLauncher.exe 84 RegOpenKey HKLM\Software\WOW6432Node\Microsoft\OLE\AppCompat REPARSE Desired Access: Read 97 12:38:31,5634071 MCLauncher.exe 84 RegOpenKey HKLM\SOFTWARE\Microsoft\Ole\AppCompat SUCCESS Desired Access: Read 97 12:38:31,5634168 MCLauncher.exe 84 RegSetInfoKey HKLM\SOFTWARE\Microsoft\Ole\AppCompat SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 97 12:38:31,5634218 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\Microsoft\Ole\AppCompat\RaiseDefaultAuthnLevel NAME NOT FOUND Length: 144 97 12:38:31,5634367 MCLauncher.exe 84 RegCloseKey HKLM\SOFTWARE\Microsoft\Ole\AppCompat SUCCESS 97 12:38:31,5634437 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:31,5634489 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: Name 97 12:38:31,5634572 MCLauncher.exe 84 RegOpenKey HKLM\SOFTWARE\WOW6432Node\Microsoft\OLE REPARSE Desired Access: Read 97 12:38:31,5634647 MCLauncher.exe 84 RegOpenKey HKLM\SOFTWARE\Microsoft\Ole SUCCESS Desired Access: Read 97 12:38:31,5634705 MCLauncher.exe 84 RegSetInfoKey HKLM\SOFTWARE\Microsoft\Ole SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 97 12:38:31,5634755 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\Microsoft\Ole\DefaultAccessPermission NAME NOT FOUND Length: 144 97 12:38:31,5637681 MCLauncher.exe 84 CreateFile C:\Windows\SysWOW64\rpcss.dll NAME NOT FOUND Desired Access: Read Attributes, Disposition: Open, Options: Open Reparse Point, Attributes: n/a, ShareMode: Read, Write, Delete, AllocationSize: n/a 97 12:38:31,5638368 MCLauncher.exe 84 RegCloseKey HKLM\SOFTWARE\Microsoft\Ole SUCCESS 97 12:38:31,5639839 MCLauncher.exe 84 RegOpenKey HKLM\System\CurrentControlSet\Control\Lsa REPARSE Desired Access: Query Value 97 12:38:31,5639945 MCLauncher.exe 84 RegOpenKey HKLM\System\CurrentControlSet\Control\Lsa SUCCESS Desired Access: Query Value 97 12:38:31,5640033 MCLauncher.exe 84 RegQueryValue HKLM\System\CurrentControlSet\Control\Lsa\AnonymousAppContainerImpersonationLevelCheck NAME NOT FOUND Length: 80 97 12:38:31,5640144 MCLauncher.exe 84 RegCloseKey HKLM\System\CurrentControlSet\Control\Lsa SUCCESS 97 12:38:31,5640205 MCLauncher.exe 84 RegOpenKey HKLM\System\CurrentControlSet\Control\Lsa REPARSE Desired Access: Query Value 97 12:38:31,5640266 MCLauncher.exe 84 RegOpenKey HKLM\System\CurrentControlSet\Control\Lsa SUCCESS Desired Access: Query Value 97 12:38:31,5640321 MCLauncher.exe 84 RegQueryValue HKLM\System\CurrentControlSet\Control\Lsa\EveryoneIncludesAnonymous SUCCESS Type: REG_DWORD, Length: 4, Data: 0 97 12:38:31,5640413 MCLauncher.exe 84 RegCloseKey HKLM\System\CurrentControlSet\Control\Lsa SUCCESS 97 12:38:31,5644837 MCLauncher.exe 84 RegQueryKey HKCU\Software\Classes SUCCESS Query: Name 97 12:38:31,5644932 MCLauncher.exe 84 RegQueryKey HKCU\Software\Classes SUCCESS Query: HandleTags, HandleTags: 0x1 97 12:38:31,5645009 MCLauncher.exe 84 RegQueryKey HKCU\Software\Classes SUCCESS Query: HandleTags, HandleTags: 0x1 97 12:38:31,5645064 MCLauncher.exe 84 RegQueryKey HKCU\Software\Classes SUCCESS Query: Name 97 12:38:31,5645175 MCLauncher.exe 84 RegOpenKey HKCU\Software\Classes\WOW6432Node\Interface\{00000134-0000-0000-C000-000000000046} NAME NOT FOUND Desired Access: Read 97 12:38:31,5645317 MCLauncher.exe 84 RegOpenKey HKCR\WOW6432Node\Interface\{00000134-0000-0000-C000-000000000046} SUCCESS Desired Access: Read 97 12:38:31,5645441 MCLauncher.exe 84 RegSetInfoKey HKCR\WOW6432Node\Interface\{00000134-0000-0000-C000-000000000046} SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 97 12:38:31,5645491 MCLauncher.exe 84 RegQueryKey HKCR\WOW6432Node\Interface\{00000134-0000-0000-C000-000000000046} SUCCESS Query: Name 97 12:38:31,5645552 MCLauncher.exe 84 RegQueryKey HKCR\WOW6432Node\Interface\{00000134-0000-0000-C000-000000000046} SUCCESS Query: HandleTags, HandleTags: 0x401 97 12:38:31,5645727 MCLauncher.exe 84 RegOpenKey HKCU\Software\Classes\WOW6432Node\Interface\{00000134-0000-0000-C000-000000000046}\ProxyStubClsid32 NAME NOT FOUND Desired Access: Read 97 12:38:31,5645821 MCLauncher.exe 84 RegQueryKey HKCR\WOW6432Node\Interface\{00000134-0000-0000-C000-000000000046} SUCCESS Query: HandleTags, HandleTags: 0x401 97 12:38:31,5645879 MCLauncher.exe 84 RegOpenKey HKCR\WOW6432Node\Interface\{00000134-0000-0000-C000-000000000046}\ProxyStubClsid32 SUCCESS Desired Access: Read 97 12:38:31,5645973 MCLauncher.exe 84 RegQueryKey HKCR\WOW6432Node\Interface\{00000134-0000-0000-C000-000000000046}\ProxyStubClsid32 SUCCESS Query: Name 97 12:38:31,5646037 MCLauncher.exe 84 RegQueryKey HKCR\WOW6432Node\Interface\{00000134-0000-0000-C000-000000000046}\ProxyStubClsid32 SUCCESS Query: HandleTags, HandleTags: 0x401 97 12:38:31,5646123 MCLauncher.exe 84 RegOpenKey HKCU\Software\Classes\WOW6432Node\Interface\{00000134-0000-0000-C000-000000000046}\ProxyStubClsid32 NAME NOT FOUND Desired Access: Maximum Allowed 97 12:38:31,5646195 MCLauncher.exe 84 RegQueryValue HKCR\WOW6432Node\Interface\{00000134-0000-0000-C000-000000000046}\ProxyStubClsid32\(Default) SUCCESS Type: REG_SZ, Length: 78, Data: {00000320-0000-0000-C000-000000000046} 97 12:38:31,5646286 MCLauncher.exe 84 RegCloseKey HKCR\WOW6432Node\Interface\{00000134-0000-0000-C000-000000000046}\ProxyStubClsid32 SUCCESS 97 12:38:31,5646336 MCLauncher.exe 84 RegCloseKey HKCR\WOW6432Node\Interface\{00000134-0000-0000-C000-000000000046} SUCCESS 97 12:38:31,5646497 MCLauncher.exe 84 RegOpenKey HKCU SUCCESS Desired Access: Read 97 12:38:31,5646580 MCLauncher.exe 84 RegSetInfoKey HKCU SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 97 12:38:31,5646646 MCLauncher.exe 84 RegQueryKey HKCU SUCCESS Query: HandleTags, HandleTags: 0x100 97 12:38:31,5646702 MCLauncher.exe 84 RegOpenKey HKCU\Software\Classes\Local Settings REPARSE Desired Access: Read 97 12:38:31,5646771 MCLauncher.exe 84 RegOpenKey HKCU\Software\Classes\Local Settings SUCCESS Desired Access: Read 97 12:38:31,5646843 MCLauncher.exe 84 RegCloseKey HKCU SUCCESS 97 12:38:31,5646890 MCLauncher.exe 84 RegCloseKey HKCU\Software\Classes\Local Settings SUCCESS 97 12:38:31,5649229 MCLauncher.exe 84 Thread Create SUCCESS Thread ID: 10168 97 12:38:31,5698065 MCLauncher.exe 84 Thread Create SUCCESS Thread ID: 9824 97 12:38:31,5699065 MCLauncher.exe 84 Thread Create SUCCESS Thread ID: 13060 97 12:38:31,5700057 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:31,5700152 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: Name 97 12:38:31,5700293 MCLauncher.exe 84 RegOpenKey HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\PropertySystem\SystemPropertyHandlers SUCCESS Desired Access: Query Value 97 12:38:31,5700484 MCLauncher.exe 84 RegSetInfoKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\PropertySystem\SystemPropertyHandlers SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 97 12:38:31,5700551 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\PropertySystem\SystemPropertyHandlers\.exe NAME NOT FOUND Length: 144 97 12:38:31,5700753 MCLauncher.exe 84 RegCloseKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\PropertySystem\SystemPropertyHandlers SUCCESS 97 12:38:31,5700850 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:31,5700902 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: Name 97 12:38:31,5701002 MCLauncher.exe 84 RegOpenKey HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\PropertySystem\PropertyHandlers\.exe SUCCESS Desired Access: Query Value 97 12:38:31,5701118 MCLauncher.exe 84 RegSetInfoKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\PropertySystem\PropertyHandlers\.exe SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 97 12:38:31,5701166 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\PropertySystem\PropertyHandlers\.exe\(Default) SUCCESS Type: REG_SZ, Length: 78, Data: {66742402-F9B9-11D1-A202-0000F81FEDEE} 97 12:38:31,5701249 MCLauncher.exe 84 RegCloseKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\PropertySystem\PropertyHandlers\.exe SUCCESS 97 12:38:31,5701329 MCLauncher.exe 84 RegQueryKey HKCU\Software\Classes SUCCESS Query: Name 97 12:38:31,5701401 MCLauncher.exe 84 RegQueryKey HKCU\Software\Classes SUCCESS Query: HandleTags, HandleTags: 0x1 97 12:38:31,5701468 MCLauncher.exe 84 RegQueryKey HKCU\Software\Classes SUCCESS Query: HandleTags, HandleTags: 0x1 97 12:38:31,5701512 MCLauncher.exe 84 RegQueryKey HKCU\Software\Classes SUCCESS Query: Name 97 12:38:31,5701612 MCLauncher.exe 84 RegOpenKey HKCU\Software\Classes\WOW6432Node\CLSID\{66742402-F9B9-11D1-A202-0000F81FEDEE}\OverrideFileSystemProperties NAME NOT FOUND Desired Access: Read 97 12:38:31,5701789 MCLauncher.exe 84 RegOpenKey HKCR\WOW6432Node\CLSID\{66742402-F9B9-11D1-A202-0000F81FEDEE}\OverrideFileSystemProperties NAME NOT FOUND Desired Access: Read 97 12:38:31,5701922 MCLauncher.exe 84 RegQueryKey HKCU\Software\Classes SUCCESS Query: Name 97 12:38:31,5701980 MCLauncher.exe 84 RegQueryKey HKCU\Software\Classes SUCCESS Query: HandleTags, HandleTags: 0x1 97 12:38:31,5702044 MCLauncher.exe 84 RegQueryKey HKCU\Software\Classes SUCCESS Query: HandleTags, HandleTags: 0x1 97 12:38:31,5702091 MCLauncher.exe 84 RegQueryKey HKCU\Software\Classes SUCCESS Query: Name 97 12:38:31,5702177 MCLauncher.exe 84 RegOpenKey HKCU\Software\Classes\WOW6432Node\CLSID\{66742402-F9B9-11D1-A202-0000F81FEDEE} NAME NOT FOUND Desired Access: Read 97 12:38:31,5702271 MCLauncher.exe 84 RegOpenKey HKCR\WOW6432Node\CLSID\{66742402-F9B9-11D1-A202-0000F81FEDEE} SUCCESS Desired Access: Read 97 12:38:31,5702346 MCLauncher.exe 84 RegSetInfoKey HKCR\WOW6432Node\CLSID\{66742402-F9B9-11D1-A202-0000F81FEDEE} SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 97 12:38:31,5702390 MCLauncher.exe 84 RegQueryKey HKCR\WOW6432Node\CLSID\{66742402-F9B9-11D1-A202-0000F81FEDEE} SUCCESS Query: Name 97 12:38:31,5702454 MCLauncher.exe 84 RegQueryKey HKCR\WOW6432Node\CLSID\{66742402-F9B9-11D1-A202-0000F81FEDEE} SUCCESS Query: HandleTags, HandleTags: 0x401 97 12:38:31,5702562 MCLauncher.exe 84 RegOpenKey HKCU\Software\Classes\WOW6432Node\CLSID\{66742402-F9B9-11D1-A202-0000F81FEDEE} NAME NOT FOUND Desired Access: Maximum Allowed 97 12:38:31,5702631 MCLauncher.exe 84 RegQueryValue HKCR\WOW6432Node\CLSID\{66742402-F9B9-11D1-A202-0000F81FEDEE}\DisableProcessIsolation SUCCESS Type: REG_DWORD, Length: 4, Data: 1 97 12:38:31,5702786 MCLauncher.exe 84 RegQueryKey HKCR\WOW6432Node\CLSID\{66742402-F9B9-11D1-A202-0000F81FEDEE} SUCCESS Query: Name 97 12:38:31,5702853 MCLauncher.exe 84 RegQueryKey HKCR\WOW6432Node\CLSID\{66742402-F9B9-11D1-A202-0000F81FEDEE} SUCCESS Query: HandleTags, HandleTags: 0x401 97 12:38:31,5702953 MCLauncher.exe 84 RegOpenKey HKCU\Software\Classes\WOW6432Node\CLSID\{66742402-F9B9-11D1-A202-0000F81FEDEE} NAME NOT FOUND Desired Access: Maximum Allowed 97 12:38:31,5703030 MCLauncher.exe 84 RegQueryValue HKCR\WOW6432Node\CLSID\{66742402-F9B9-11D1-A202-0000F81FEDEE}\NoOplock NAME NOT FOUND Length: 144 97 12:38:31,5703163 MCLauncher.exe 84 RegQueryKey HKCU\Software\Classes SUCCESS Query: Name 97 12:38:31,5703227 MCLauncher.exe 84 RegQueryKey HKCU\Software\Classes SUCCESS Query: HandleTags, HandleTags: 0x1 97 12:38:31,5703296 MCLauncher.exe 84 RegQueryKey HKCU\Software\Classes SUCCESS Query: HandleTags, HandleTags: 0x1 97 12:38:31,5703343 MCLauncher.exe 84 RegQueryKey HKCU\Software\Classes SUCCESS Query: Name 97 12:38:31,5703418 MCLauncher.exe 84 RegOpenKey HKCU\Software\Classes\ExplorerCLSIDFlags\{66742402-F9B9-11D1-A202-0000F81FEDEE} NAME NOT FOUND Desired Access: Read 97 12:38:31,5703521 MCLauncher.exe 84 RegOpenKey HKCR\ExplorerCLSIDFlags\{66742402-F9B9-11D1-A202-0000F81FEDEE} NAME NOT FOUND Desired Access: Read 97 12:38:31,5703623 MCLauncher.exe 84 RegQueryKey HKCR\WOW6432Node\CLSID\{66742402-F9B9-11D1-A202-0000F81FEDEE} SUCCESS Query: Name 97 12:38:31,5703684 MCLauncher.exe 84 RegQueryKey HKCR\WOW6432Node\CLSID\{66742402-F9B9-11D1-A202-0000F81FEDEE} SUCCESS Query: HandleTags, HandleTags: 0x401 97 12:38:31,5703770 MCLauncher.exe 84 RegOpenKey HKCU\Software\Classes\WOW6432Node\CLSID\{66742402-F9B9-11D1-A202-0000F81FEDEE} NAME NOT FOUND Desired Access: Maximum Allowed 97 12:38:31,5703845 MCLauncher.exe 84 RegQueryValue HKCR\WOW6432Node\CLSID\{66742402-F9B9-11D1-A202-0000F81FEDEE}\UseInProcHandlerCache NAME NOT FOUND Length: 144 97 12:38:31,5703958 MCLauncher.exe 84 RegQueryKey HKCR\WOW6432Node\CLSID\{66742402-F9B9-11D1-A202-0000F81FEDEE} SUCCESS Query: Name 97 12:38:31,5704025 MCLauncher.exe 84 RegQueryKey HKCR\WOW6432Node\CLSID\{66742402-F9B9-11D1-A202-0000F81FEDEE} SUCCESS Query: HandleTags, HandleTags: 0x401 97 12:38:31,5704119 MCLauncher.exe 84 RegOpenKey HKCU\Software\Classes\WOW6432Node\CLSID\{66742402-F9B9-11D1-A202-0000F81FEDEE} NAME NOT FOUND Desired Access: Maximum Allowed 97 12:38:31,5704197 MCLauncher.exe 84 RegQueryValue HKCR\WOW6432Node\CLSID\{66742402-F9B9-11D1-A202-0000F81FEDEE}\UseOutOfProcHandlerCache NAME NOT FOUND Length: 144 97 12:38:31,5704330 MCLauncher.exe 84 RegCloseKey HKCR\WOW6432Node\CLSID\{66742402-F9B9-11D1-A202-0000F81FEDEE} SUCCESS 97 12:38:31,5704759 MCLauncher.exe 84 RegQueryKey HKCU\Software\Classes SUCCESS Query: Name 97 12:38:31,5704828 MCLauncher.exe 84 RegQueryKey HKCU\Software\Classes SUCCESS Query: HandleTags, HandleTags: 0x1 97 12:38:31,5704903 MCLauncher.exe 84 RegQueryKey HKCU\Software\Classes SUCCESS Query: HandleTags, HandleTags: 0x1 97 12:38:31,5704950 MCLauncher.exe 84 RegQueryKey HKCU\Software\Classes SUCCESS Query: Name 97 12:38:31,5705044 MCLauncher.exe 84 RegOpenKey HKCU\Software\Classes\WOW6432Node\CLSID\{F324E4F9-8496-40B2-A1FF-9617C1C9AFFE}\Instance NAME NOT FOUND Desired Access: Read 97 12:38:31,5705161 MCLauncher.exe 84 RegOpenKey HKCR\WOW6432Node\CLSID\{F324E4F9-8496-40B2-A1FF-9617C1C9AFFE}\Instance NAME NOT FOUND Desired Access: Read 97 12:38:31,5705704 MCLauncher.exe 84 RegQueryKey HKCR\exefile SUCCESS Query: Name 97 12:38:31,5705770 MCLauncher.exe 84 RegQueryKey HKCR\exefile SUCCESS Query: HandleTags, HandleTags: 0x401 97 12:38:31,5705862 MCLauncher.exe 84 RegOpenKey HKCU\Software\Classes\exefile NAME NOT FOUND Desired Access: Maximum Allowed 97 12:38:31,5705931 MCLauncher.exe 84 RegQueryValue HKCR\exefile\AppUserModelID NAME NOT FOUND Length: 144 97 12:38:31,5706064 MCLauncher.exe 84 RegQueryKey HKCR\exefile SUCCESS Query: Name 97 12:38:31,5706128 MCLauncher.exe 84 RegQueryKey HKCR\exefile SUCCESS Query: HandleTags, HandleTags: 0x401 97 12:38:31,5706219 MCLauncher.exe 84 RegOpenKey HKCU\Software\Classes\exefile\Application NAME NOT FOUND Desired Access: Query Value 97 12:38:31,5706305 MCLauncher.exe 84 RegQueryKey HKCR\exefile SUCCESS Query: HandleTags, HandleTags: 0x401 97 12:38:31,5706358 MCLauncher.exe 84 RegOpenKey HKCR\exefile\Application NAME NOT FOUND Desired Access: Query Value 97 12:38:31,5707236 MCLauncher.exe 84 RegQueryValue HKLM\System\CurrentControlSet\Control\{7746D80F-97E0-4E26-9543-26B41FC22F79}\{59AEE675-B203-4D61-9A1F-04518A20F359}\4B00650072006E0065006C002D004F006E00650043006F00720065002D00440065007600690063006500460061006D0069006C007900490044000000 NAME NOT FOUND Length: 0 97 12:38:31,5707577 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:31,5707635 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: Name 97 12:38:31,5707729 MCLauncher.exe 84 RegOpenKey HKLM\Software\WOW6432Node\Policies\Microsoft\Windows\CurrentVersion\Internet Settings REPARSE Desired Access: Read 97 12:38:31,5707812 MCLauncher.exe 84 RegOpenKey HKLM\SOFTWARE\Policies\Microsoft\Windows\CurrentVersion\Internet Settings SUCCESS Desired Access: Read 97 12:38:31,5707923 MCLauncher.exe 84 RegSetInfoKey HKLM\SOFTWARE\Policies\Microsoft\Windows\CurrentVersion\Internet Settings SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 97 12:38:31,5708001 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\CreateUriCacheSize NAME NOT FOUND Length: 144 97 12:38:31,5708192 MCLauncher.exe 84 RegQueryKey HKCU SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:31,5708244 MCLauncher.exe 84 RegQueryKey HKCU SUCCESS Query: Name 97 12:38:31,5708327 MCLauncher.exe 84 RegOpenKey HKCU\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings SUCCESS Desired Access: Read 97 12:38:31,5708441 MCLauncher.exe 84 RegSetInfoKey HKCU\SOFTWARE\Policies\Microsoft\Windows\CurrentVersion\Internet Settings SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 97 12:38:31,5708488 MCLauncher.exe 84 RegQueryValue HKCU\SOFTWARE\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\CreateUriCacheSize NAME NOT FOUND Length: 144 97 12:38:31,5708643 MCLauncher.exe 84 RegQueryKey HKCU SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:31,5708693 MCLauncher.exe 84 RegQueryKey HKCU SUCCESS Query: Name 97 12:38:31,5708771 MCLauncher.exe 84 RegOpenKey HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings SUCCESS Desired Access: Read 97 12:38:31,5709073 MCLauncher.exe 84 RegSetInfoKey HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 97 12:38:31,5709148 MCLauncher.exe 84 RegQueryValue HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\CreateUriCacheSize NAME NOT FOUND Length: 144 97 12:38:31,5709328 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:31,5709383 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: Name 97 12:38:31,5709474 MCLauncher.exe 84 RegOpenKey HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Internet Settings SUCCESS Desired Access: Read 97 12:38:31,5709580 MCLauncher.exe 84 RegSetInfoKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Internet Settings SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 97 12:38:31,5709643 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Internet Settings\CreateUriCacheSize NAME NOT FOUND Length: 144 97 12:38:31,5711674 MCLauncher.exe 84 CreateFile C:\Windows SUCCESS Desired Access: Synchronize, Disposition: Open, Options: Directory, Synchronous IO Non-Alert, Open For Free Space Query, Attributes: n/a, ShareMode: None, AllocationSize: n/a, OpenResult: Opened 97 12:38:31,5711949 MCLauncher.exe 84 QuerySizeInformationVolume C:\Windows SUCCESS TotalAllocationUnits: 12 978 687, AvailableAllocationUnits: 3 547 468, SectorsPerAllocationUnit: 8, BytesPerSector: 512 97 12:38:31,5712048 MCLauncher.exe 84 CloseFile C:\Windows SUCCESS 97 12:38:31,5712425 MCLauncher.exe 84 RegQueryKey HKCU SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:31,5712486 MCLauncher.exe 84 RegQueryKey HKCU SUCCESS Query: Name 97 12:38:31,5712575 MCLauncher.exe 84 RegOpenKey HKCU\Software\Microsoft\Internet Explorer\Main SUCCESS Desired Access: Read 97 12:38:31,5712686 MCLauncher.exe 84 RegSetInfoKey HKCU\SOFTWARE\Microsoft\Internet Explorer\Main SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 97 12:38:31,5712744 MCLauncher.exe 84 RegQueryValue HKCU\SOFTWARE\Microsoft\Internet Explorer\Main\FrameTabWindow NAME NOT FOUND Length: 144 97 12:38:31,5712927 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:31,5712979 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: Name 97 12:38:31,5713071 MCLauncher.exe 84 RegOpenKey HKLM\Software\WOW6432Node\Microsoft\Internet Explorer\Main SUCCESS Desired Access: Read 97 12:38:31,5713173 MCLauncher.exe 84 RegSetInfoKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Internet Explorer\Main SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 97 12:38:31,5713226 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Internet Explorer\Main\FrameTabWindow NAME NOT FOUND Length: 144 97 12:38:31,5713428 MCLauncher.exe 84 RegQueryValue HKCU\SOFTWARE\Microsoft\Internet Explorer\Main\FrameMerging NAME NOT FOUND Length: 144 97 12:38:31,5713553 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Internet Explorer\Main\FrameMerging NAME NOT FOUND Length: 144 97 12:38:31,5713780 MCLauncher.exe 84 RegQueryValue HKCU\SOFTWARE\Microsoft\Internet Explorer\Main\SessionMerging NAME NOT FOUND Length: 144 97 12:38:31,5713902 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Internet Explorer\Main\SessionMerging NAME NOT FOUND Length: 144 97 12:38:31,5714049 MCLauncher.exe 84 RegQueryValue HKCU\SOFTWARE\Microsoft\Internet Explorer\Main\AdminTabProcs NAME NOT FOUND Length: 144 97 12:38:31,5714165 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Internet Explorer\Main\AdminTabProcs NAME NOT FOUND Length: 144 97 12:38:31,5714495 MCLauncher.exe 84 RegQueryKey HKCU SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:31,5714547 MCLauncher.exe 84 RegQueryKey HKCU SUCCESS Query: Name 97 12:38:31,5714628 MCLauncher.exe 84 RegOpenKey HKCU\Software\Microsoft\Internet Explorer\Security SUCCESS Desired Access: Read 97 12:38:31,5714727 MCLauncher.exe 84 RegSetInfoKey HKCU\SOFTWARE\Microsoft\Internet Explorer\Security SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 97 12:38:31,5714775 MCLauncher.exe 84 RegQueryValue HKCU\SOFTWARE\Microsoft\Internet Explorer\Security\RunBinaryControlHostProcessInSeparateAppContainer NAME NOT FOUND Length: 144 97 12:38:31,5714924 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:31,5714977 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: Name 97 12:38:31,5715065 MCLauncher.exe 84 RegOpenKey HKLM\Software\WOW6432Node\Microsoft\Internet Explorer\Security SUCCESS Desired Access: Read 97 12:38:31,5715160 MCLauncher.exe 84 RegSetInfoKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Internet Explorer\Security SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 97 12:38:31,5715210 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Internet Explorer\Security\RunBinaryControlHostProcessInSeparateAppContainer NAME NOT FOUND Length: 144 97 12:38:31,5715370 MCLauncher.exe 84 RegQueryValue HKCU\SOFTWARE\Microsoft\Internet Explorer\Security\RunBinaryControlHostProcessInDungeonAppContainer NAME NOT FOUND Length: 144 97 12:38:31,5715586 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Internet Explorer\Security\RunBinaryControlHostProcessInDungeonAppContainer NAME NOT FOUND Length: 144 97 12:38:31,5715830 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:31,5715883 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: Name 97 12:38:31,5715966 MCLauncher.exe 84 RegOpenKey HKLM\Software\WOW6432Node\Policies\Microsoft\Internet Explorer\Main REPARSE Desired Access: Read 97 12:38:31,5716041 MCLauncher.exe 84 RegOpenKey HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer\Main NAME NOT FOUND Desired Access: Read 97 12:38:31,5716212 MCLauncher.exe 84 RegQueryKey HKCU SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:31,5716260 MCLauncher.exe 84 RegQueryKey HKCU SUCCESS Query: Name 97 12:38:31,5716332 MCLauncher.exe 84 RegOpenKey HKCU\Software\Policies\Microsoft\Internet Explorer\Main NAME NOT FOUND Desired Access: Read 97 12:38:31,5716459 MCLauncher.exe 84 RegQueryValue HKCU\SOFTWARE\Microsoft\Internet Explorer\Main\TabProcGrowth NAME NOT FOUND Length: 144 97 12:38:31,5716589 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Internet Explorer\Main\TabProcGrowth NAME NOT FOUND Length: 144 97 12:38:31,5716828 MCLauncher.exe 84 RegQueryValue HKCU\SOFTWARE\Microsoft\Internet Explorer\Main\TabProcGrowth NAME NOT FOUND Length: 144 97 12:38:31,5716947 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Internet Explorer\Main\TabProcGrowth NAME NOT FOUND Length: 144 97 12:38:31,5717107 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\EnablePunycode NAME NOT FOUND Length: 144 97 12:38:31,5717229 MCLauncher.exe 84 RegQueryValue HKCU\SOFTWARE\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\EnablePunycode NAME NOT FOUND Length: 144 97 12:38:31,5717346 MCLauncher.exe 84 RegQueryValue HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\EnablePunycode NAME NOT FOUND Length: 144 97 12:38:31,5717465 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Internet Settings\EnablePunycode SUCCESS Type: REG_DWORD, Length: 4, Data: 1 97 12:38:31,5717803 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:31,5717853 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: Name 97 12:38:31,5717944 MCLauncher.exe 84 RegOpenKey HKLM\Software\WOW6432Node\Policies\Microsoft\Windows\CurrentVersion\Internet Settings REPARSE Desired Access: Query Value 97 12:38:31,5718016 MCLauncher.exe 84 RegOpenKey HKLM\SOFTWARE\Policies\Microsoft\Windows\CurrentVersion\Internet Settings SUCCESS Desired Access: Query Value 97 12:38:31,5718096 MCLauncher.exe 84 RegSetInfoKey HKLM\SOFTWARE\Policies\Microsoft\Windows\CurrentVersion\Internet Settings SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 97 12:38:31,5718144 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Security_HKLM_only NAME NOT FOUND Length: 144 97 12:38:31,5718279 MCLauncher.exe 84 RegCloseKey HKLM\SOFTWARE\Policies\Microsoft\Windows\CurrentVersion\Internet Settings SUCCESS 97 12:38:31,5718351 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:31,5718401 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: Name 97 12:38:31,5718484 MCLauncher.exe 84 RegOpenKey HKLM\Software\WOW6432Node\Policies\Microsoft\Internet Explorer\Main\FeatureControl REPARSE Desired Access: Query Value 97 12:38:31,5718551 MCLauncher.exe 84 RegOpenKey HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer\Main\FeatureControl NAME NOT FOUND Desired Access: Query Value 97 12:38:31,5718634 MCLauncher.exe 84 RegQueryKey HKCU SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:31,5718681 MCLauncher.exe 84 RegQueryKey HKCU SUCCESS Query: Name 97 12:38:31,5718748 MCLauncher.exe 84 RegOpenKey HKCU\Software\Policies\Microsoft\Internet Explorer\Main\FeatureControl NAME NOT FOUND Desired Access: Query Value 97 12:38:31,5718831 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:31,5719036 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: Name 97 12:38:31,5719177 MCLauncher.exe 84 RegOpenKey HKLM\Software\WOW6432Node\Microsoft\Internet Explorer\Main\FeatureControl SUCCESS Desired Access: Query Value 97 12:38:31,5719296 MCLauncher.exe 84 RegSetInfoKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Internet Explorer\Main\FeatureControl SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 97 12:38:31,5719371 MCLauncher.exe 84 RegQueryKey HKCU SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:31,5719418 MCLauncher.exe 84 RegQueryKey HKCU SUCCESS Query: Name 97 12:38:31,5719487 MCLauncher.exe 84 RegOpenKey HKCU\Software\Microsoft\Internet Explorer\Main\FeatureControl SUCCESS Desired Access: Query Value 97 12:38:31,5719573 MCLauncher.exe 84 RegSetInfoKey HKCU\SOFTWARE\Microsoft\Internet Explorer\Main\FeatureControl SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 97 12:38:31,5719662 MCLauncher.exe 84 RegQueryKey HKCU\SOFTWARE\Microsoft\Internet Explorer\Main\FeatureControl SUCCESS Query: HandleTags, HandleTags: 0x400 97 12:38:31,5719717 MCLauncher.exe 84 RegOpenKey HKCU\SOFTWARE\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_ALLOW_REVERSE_SOLIDUS_IN_USERINFO_KB932562 NAME NOT FOUND Desired Access: Query Value 97 12:38:31,5719803 MCLauncher.exe 84 RegQueryKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Internet Explorer\Main\FeatureControl SUCCESS Query: HandleTags, HandleTags: 0x400 97 12:38:31,5719859 MCLauncher.exe 84 RegOpenKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_ALLOW_REVERSE_SOLIDUS_IN_USERINFO_KB932562 NAME NOT FOUND Desired Access: Query Value 97 12:38:31,5720316 MCLauncher.exe 84 RegQueryKey HKCU\SOFTWARE\Microsoft\Internet Explorer\Main\FeatureControl SUCCESS Query: HandleTags, HandleTags: 0x400 97 12:38:31,5720374 MCLauncher.exe 84 RegOpenKey HKCU\SOFTWARE\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_USE_IETLDLIST_FOR_DOMAIN_DETERMINATION NAME NOT FOUND Desired Access: Query Value 97 12:38:31,5720454 MCLauncher.exe 84 RegQueryKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Internet Explorer\Main\FeatureControl SUCCESS Query: HandleTags, HandleTags: 0x400 97 12:38:31,5720507 MCLauncher.exe 84 RegOpenKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_USE_IETLDLIST_FOR_DOMAIN_DETERMINATION NAME NOT FOUND Desired Access: Query Value 97 12:38:31,5720776 MCLauncher.exe 84 RegQueryKey HKCU\SOFTWARE\Microsoft\Internet Explorer\Main\FeatureControl SUCCESS Query: HandleTags, HandleTags: 0x400 97 12:38:31,5720831 MCLauncher.exe 84 RegOpenKey HKCU\SOFTWARE\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_URI_DISABLECACHE NAME NOT FOUND Desired Access: Query Value 97 12:38:31,5720909 MCLauncher.exe 84 RegQueryKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Internet Explorer\Main\FeatureControl SUCCESS Query: HandleTags, HandleTags: 0x400 97 12:38:31,5720961 MCLauncher.exe 84 RegOpenKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_URI_DISABLECACHE NAME NOT FOUND Desired Access: Query Value 97 12:38:31,5721485 MCLauncher.exe 84 RegQueryKey HKCR\exefile\shell\open SUCCESS Query: Name 97 12:38:31,5721568 MCLauncher.exe 84 RegQueryKey HKCR\exefile\shell\open SUCCESS Query: HandleTags, HandleTags: 0x401 97 12:38:31,5721679 MCLauncher.exe 84 RegOpenKey HKCU\Software\Classes\exefile\shell\open NAME NOT FOUND Desired Access: Maximum Allowed 97 12:38:31,5721759 MCLauncher.exe 84 RegQueryValue HKCR\exefile\shell\open\NoSmartScreen NAME NOT FOUND Length: 144 97 12:38:31,5722172 MCLauncher.exe 84 RegQueryKey HKCU\Software\Classes SUCCESS Query: Name 97 12:38:31,5722244 MCLauncher.exe 84 RegQueryKey HKCU\Software\Classes SUCCESS Query: HandleTags, HandleTags: 0x1 97 12:38:31,5722316 MCLauncher.exe 84 RegQueryKey HKCU\Software\Classes SUCCESS Query: HandleTags, HandleTags: 0x1 97 12:38:31,5722363 MCLauncher.exe 84 RegQueryKey HKCU\Software\Classes SUCCESS Query: Name 97 12:38:31,5722460 MCLauncher.exe 84 RegOpenKey HKCU\Software\Classes\WOW6432Node\CLSID\{7B8A2D94-0AC9-11D1-896C-00C04FB6BFC4} NAME NOT FOUND Desired Access: Read 97 12:38:31,5722588 MCLauncher.exe 84 RegOpenKey HKCR\WOW6432Node\CLSID\{7B8A2D94-0AC9-11D1-896C-00C04FB6BFC4} SUCCESS Desired Access: Read 97 12:38:31,5722690 MCLauncher.exe 84 RegSetInfoKey HKCR\WOW6432Node\CLSID\{7b8a2d94-0ac9-11d1-896c-00c04Fb6bfc4} SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 97 12:38:31,5722734 MCLauncher.exe 84 RegQueryKey HKCR\WOW6432Node\CLSID\{7b8a2d94-0ac9-11d1-896c-00c04Fb6bfc4} SUCCESS Query: Name 97 12:38:31,5722798 MCLauncher.exe 84 RegQueryKey HKCR\WOW6432Node\CLSID\{7b8a2d94-0ac9-11d1-896c-00c04Fb6bfc4} SUCCESS Query: HandleTags, HandleTags: 0x401 97 12:38:31,5722898 MCLauncher.exe 84 RegOpenKey HKCU\Software\Classes\WOW6432Node\CLSID\{7b8a2d94-0ac9-11d1-896c-00c04Fb6bfc4}\TreatAs NAME NOT FOUND Desired Access: Query Value 97 12:38:31,5722984 MCLauncher.exe 84 RegQueryKey HKCR\WOW6432Node\CLSID\{7b8a2d94-0ac9-11d1-896c-00c04Fb6bfc4} SUCCESS Query: HandleTags, HandleTags: 0x401 97 12:38:31,5723036 MCLauncher.exe 84 RegOpenKey HKCR\WOW6432Node\CLSID\{7b8a2d94-0ac9-11d1-896c-00c04Fb6bfc4}\TreatAs NAME NOT FOUND Desired Access: Query Value 97 12:38:31,5723106 MCLauncher.exe 84 RegQueryKey HKCR\WOW6432Node\CLSID\{7b8a2d94-0ac9-11d1-896c-00c04Fb6bfc4} SUCCESS Query: Name 97 12:38:31,5723183 MCLauncher.exe 84 RegQueryKey HKCR\WOW6432Node\CLSID\{7b8a2d94-0ac9-11d1-896c-00c04Fb6bfc4} SUCCESS Query: Name 97 12:38:31,5723239 MCLauncher.exe 84 RegQueryKey HKCR\WOW6432Node\CLSID\{7b8a2d94-0ac9-11d1-896c-00c04Fb6bfc4} SUCCESS Query: HandleTags, HandleTags: 0x401 97 12:38:31,5723325 MCLauncher.exe 84 RegOpenKey HKCU\Software\Classes\WOW6432Node\CLSID\{7b8a2d94-0ac9-11d1-896c-00c04Fb6bfc4} NAME NOT FOUND Desired Access: Maximum Allowed 97 12:38:31,5723391 MCLauncher.exe 84 RegQueryValue HKCR\WOW6432Node\CLSID\{7b8a2d94-0ac9-11d1-896c-00c04Fb6bfc4}\(Default) SUCCESS Type: REG_SZ, Length: 34, Data: Security Manager 97 12:38:31,5723452 MCLauncher.exe 84 RegQueryKey HKCR\WOW6432Node\CLSID\{7b8a2d94-0ac9-11d1-896c-00c04Fb6bfc4} SUCCESS Query: Name 97 12:38:31,5723507 MCLauncher.exe 84 RegQueryKey HKCR\WOW6432Node\CLSID\{7b8a2d94-0ac9-11d1-896c-00c04Fb6bfc4} SUCCESS Query: HandleTags, HandleTags: 0x401 97 12:38:31,5723588 MCLauncher.exe 84 RegOpenKey HKCU\Software\Classes\WOW6432Node\CLSID\{7b8a2d94-0ac9-11d1-896c-00c04Fb6bfc4} NAME NOT FOUND Desired Access: Maximum Allowed 97 12:38:31,5723649 MCLauncher.exe 84 RegQueryValue HKCR\WOW6432Node\CLSID\{7b8a2d94-0ac9-11d1-896c-00c04Fb6bfc4}\(Default) SUCCESS Type: REG_SZ, Length: 34, Data: Security Manager 97 12:38:31,5723710 MCLauncher.exe 84 RegQueryKey HKCR\WOW6432Node\CLSID\{7b8a2d94-0ac9-11d1-896c-00c04Fb6bfc4} SUCCESS Query: Name 97 12:38:31,5723762 MCLauncher.exe 84 RegQueryKey HKCR\WOW6432Node\CLSID\{7b8a2d94-0ac9-11d1-896c-00c04Fb6bfc4} SUCCESS Query: HandleTags, HandleTags: 0x401 97 12:38:31,5723843 MCLauncher.exe 84 RegOpenKey HKCU\Software\Classes\WOW6432Node\CLSID\{7b8a2d94-0ac9-11d1-896c-00c04Fb6bfc4}\InprocServer32 NAME NOT FOUND Desired Access: Read 97 12:38:31,5723923 MCLauncher.exe 84 RegQueryKey HKCR\WOW6432Node\CLSID\{7b8a2d94-0ac9-11d1-896c-00c04Fb6bfc4} SUCCESS Query: HandleTags, HandleTags: 0x401 97 12:38:31,5723973 MCLauncher.exe 84 RegOpenKey HKCR\WOW6432Node\CLSID\{7b8a2d94-0ac9-11d1-896c-00c04Fb6bfc4}\InprocServer32 SUCCESS Desired Access: Read 97 12:38:31,5724056 MCLauncher.exe 84 RegQueryKey HKCR\WOW6432Node\CLSID\{7b8a2d94-0ac9-11d1-896c-00c04Fb6bfc4}\InprocServer32 SUCCESS Query: Name 97 12:38:31,5724117 MCLauncher.exe 84 RegQueryKey HKCR\WOW6432Node\CLSID\{7b8a2d94-0ac9-11d1-896c-00c04Fb6bfc4}\InprocServer32 SUCCESS Query: HandleTags, HandleTags: 0x401 97 12:38:31,5724194 MCLauncher.exe 84 RegOpenKey HKCU\Software\Classes\WOW6432Node\CLSID\{7b8a2d94-0ac9-11d1-896c-00c04Fb6bfc4}\InprocServer32 NAME NOT FOUND Desired Access: Maximum Allowed 97 12:38:31,5724258 MCLauncher.exe 84 RegQueryValue HKCR\WOW6432Node\CLSID\{7b8a2d94-0ac9-11d1-896c-00c04Fb6bfc4}\InprocServer32\InprocServer32 NAME NOT FOUND Length: 144 97 12:38:31,5724380 MCLauncher.exe 84 RegQueryKey HKCR\WOW6432Node\CLSID\{7b8a2d94-0ac9-11d1-896c-00c04Fb6bfc4}\InprocServer32 SUCCESS Query: Name 97 12:38:31,5724447 MCLauncher.exe 84 RegQueryKey HKCR\WOW6432Node\CLSID\{7b8a2d94-0ac9-11d1-896c-00c04Fb6bfc4}\InprocServer32 SUCCESS Query: HandleTags, HandleTags: 0x401 97 12:38:31,5724546 MCLauncher.exe 84 RegOpenKey HKCU\Software\Classes\WOW6432Node\CLSID\{7b8a2d94-0ac9-11d1-896c-00c04Fb6bfc4}\InprocServer32 NAME NOT FOUND Desired Access: Maximum Allowed 97 12:38:31,5724624 MCLauncher.exe 84 RegQueryValue HKCR\WOW6432Node\CLSID\{7b8a2d94-0ac9-11d1-896c-00c04Fb6bfc4}\InprocServer32\(Default) SUCCESS Type: REG_SZ, Length: 62, Data: C:\Windows\SysWOW64\urlmon.dll 97 12:38:31,5724679 MCLauncher.exe 84 RegQueryKey HKCR\WOW6432Node\CLSID\{7b8a2d94-0ac9-11d1-896c-00c04Fb6bfc4}\InprocServer32 SUCCESS Query: Name 97 12:38:31,5724735 MCLauncher.exe 84 RegQueryKey HKCR\WOW6432Node\CLSID\{7b8a2d94-0ac9-11d1-896c-00c04Fb6bfc4}\InprocServer32 SUCCESS Query: HandleTags, HandleTags: 0x401 97 12:38:31,5724815 MCLauncher.exe 84 RegOpenKey HKCU\Software\Classes\WOW6432Node\CLSID\{7b8a2d94-0ac9-11d1-896c-00c04Fb6bfc4}\InprocServer32 NAME NOT FOUND Desired Access: Maximum Allowed 97 12:38:31,5724873 MCLauncher.exe 84 RegQueryValue HKCR\WOW6432Node\CLSID\{7b8a2d94-0ac9-11d1-896c-00c04Fb6bfc4}\InprocServer32\(Default) SUCCESS Type: REG_SZ, Length: 62, Data: C:\Windows\SysWOW64\urlmon.dll 97 12:38:31,5724931 MCLauncher.exe 84 RegQueryKey HKCR\WOW6432Node\CLSID\{7b8a2d94-0ac9-11d1-896c-00c04Fb6bfc4}\InprocServer32 SUCCESS Query: Name 97 12:38:31,5724987 MCLauncher.exe 84 RegQueryKey HKCR\WOW6432Node\CLSID\{7b8a2d94-0ac9-11d1-896c-00c04Fb6bfc4}\InprocServer32 SUCCESS Query: HandleTags, HandleTags: 0x401 97 12:38:31,5725064 MCLauncher.exe 84 RegOpenKey HKCU\Software\Classes\WOW6432Node\CLSID\{7b8a2d94-0ac9-11d1-896c-00c04Fb6bfc4}\InprocServer32 NAME NOT FOUND Desired Access: Maximum Allowed 97 12:38:31,5725125 MCLauncher.exe 84 RegQueryValue HKCR\WOW6432Node\CLSID\{7b8a2d94-0ac9-11d1-896c-00c04Fb6bfc4}\InprocServer32\ThreadingModel SUCCESS Type: REG_SZ, Length: 10, Data: Both 97 12:38:31,5725286 MCLauncher.exe 84 RegCloseKey HKCR\WOW6432Node\CLSID\{7b8a2d94-0ac9-11d1-896c-00c04Fb6bfc4}\InprocServer32 SUCCESS 97 12:38:31,5725339 MCLauncher.exe 84 RegQueryKey HKCR\WOW6432Node\CLSID\{7b8a2d94-0ac9-11d1-896c-00c04Fb6bfc4} SUCCESS Query: Name 97 12:38:31,5725408 MCLauncher.exe 84 RegQueryKey HKCR\WOW6432Node\CLSID\{7b8a2d94-0ac9-11d1-896c-00c04Fb6bfc4} SUCCESS Query: HandleTags, HandleTags: 0x401 97 12:38:31,5725505 MCLauncher.exe 84 RegOpenKey HKCU\Software\Classes\WOW6432Node\CLSID\{7b8a2d94-0ac9-11d1-896c-00c04Fb6bfc4}\InprocHandler32 NAME NOT FOUND Desired Access: Query Value 97 12:38:31,5725602 MCLauncher.exe 84 RegQueryKey HKCR\WOW6432Node\CLSID\{7b8a2d94-0ac9-11d1-896c-00c04Fb6bfc4} SUCCESS Query: HandleTags, HandleTags: 0x401 97 12:38:31,5725655 MCLauncher.exe 84 RegOpenKey HKCR\WOW6432Node\CLSID\{7b8a2d94-0ac9-11d1-896c-00c04Fb6bfc4}\InprocHandler32 NAME NOT FOUND Desired Access: Query Value 97 12:38:31,5725721 MCLauncher.exe 84 RegQueryKey HKCR\WOW6432Node\CLSID\{7b8a2d94-0ac9-11d1-896c-00c04Fb6bfc4} SUCCESS Query: Name 97 12:38:31,5725774 MCLauncher.exe 84 RegQueryKey HKCR\WOW6432Node\CLSID\{7b8a2d94-0ac9-11d1-896c-00c04Fb6bfc4} SUCCESS Query: HandleTags, HandleTags: 0x401 97 12:38:31,5725857 MCLauncher.exe 84 RegOpenKey HKCU\Software\Classes\WOW6432Node\CLSID\{7b8a2d94-0ac9-11d1-896c-00c04Fb6bfc4}\InprocHandler NAME NOT FOUND Desired Access: Query Value 97 12:38:31,5725932 MCLauncher.exe 84 RegQueryKey HKCR\WOW6432Node\CLSID\{7b8a2d94-0ac9-11d1-896c-00c04Fb6bfc4} SUCCESS Query: HandleTags, HandleTags: 0x401 97 12:38:31,5725984 MCLauncher.exe 84 RegOpenKey HKCR\WOW6432Node\CLSID\{7b8a2d94-0ac9-11d1-896c-00c04Fb6bfc4}\InprocHandler NAME NOT FOUND Desired Access: Query Value 97 12:38:31,5726067 MCLauncher.exe 84 RegCloseKey HKCR\WOW6432Node\CLSID\{7b8a2d94-0ac9-11d1-896c-00c04Fb6bfc4} SUCCESS 97 12:38:31,5726247 MCLauncher.exe 84 RegQueryKey HKCU\Software\Classes SUCCESS Query: Name 97 12:38:31,5726311 MCLauncher.exe 84 RegQueryKey HKCU\Software\Classes SUCCESS Query: HandleTags, HandleTags: 0x1 97 12:38:31,5726378 MCLauncher.exe 84 RegQueryKey HKCU\Software\Classes SUCCESS Query: HandleTags, HandleTags: 0x1 97 12:38:31,5726425 MCLauncher.exe 84 RegQueryKey HKCU\Software\Classes SUCCESS Query: Name 97 12:38:31,5726505 MCLauncher.exe 84 RegOpenKey HKCU\Software\Classes\WOW6432Node\CLSID\{7B8A2D94-0AC9-11D1-896C-00C04FB6BFC4} NAME NOT FOUND Desired Access: Read 97 12:38:31,5726599 MCLauncher.exe 84 RegOpenKey HKCR\WOW6432Node\CLSID\{7B8A2D94-0AC9-11D1-896C-00C04FB6BFC4} SUCCESS Desired Access: Read 97 12:38:31,5726677 MCLauncher.exe 84 RegSetInfoKey HKCR\WOW6432Node\CLSID\{7b8a2d94-0ac9-11d1-896c-00c04Fb6bfc4} SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 97 12:38:31,5726718 MCLauncher.exe 84 RegQueryKey HKCR\WOW6432Node\CLSID\{7b8a2d94-0ac9-11d1-896c-00c04Fb6bfc4} SUCCESS Query: Name 97 12:38:31,5726777 MCLauncher.exe 84 RegQueryKey HKCR\WOW6432Node\CLSID\{7b8a2d94-0ac9-11d1-896c-00c04Fb6bfc4} SUCCESS Query: HandleTags, HandleTags: 0x401 97 12:38:31,5726865 MCLauncher.exe 84 RegOpenKey HKCU\Software\Classes\WOW6432Node\CLSID\{7b8a2d94-0ac9-11d1-896c-00c04Fb6bfc4}\TreatAs NAME NOT FOUND Desired Access: Read 97 12:38:31,5726943 MCLauncher.exe 84 RegQueryKey HKCR\WOW6432Node\CLSID\{7b8a2d94-0ac9-11d1-896c-00c04Fb6bfc4} SUCCESS Query: HandleTags, HandleTags: 0x401 97 12:38:31,5726996 MCLauncher.exe 84 RegOpenKey HKCR\WOW6432Node\CLSID\{7b8a2d94-0ac9-11d1-896c-00c04Fb6bfc4}\TreatAs NAME NOT FOUND Desired Access: Read 97 12:38:31,5727065 MCLauncher.exe 84 RegCloseKey HKCR\WOW6432Node\CLSID\{7b8a2d94-0ac9-11d1-896c-00c04Fb6bfc4} SUCCESS 97 12:38:31,5727320 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:31,5727370 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: Name 97 12:38:31,5727450 MCLauncher.exe 84 RegOpenKey HKLM\Software\WOW6432Node\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\ REPARSE Desired Access: Query Value 97 12:38:31,5727516 MCLauncher.exe 84 RegOpenKey HKLM\SOFTWARE\Policies\Microsoft\Windows\CurrentVersion\Internet Settings SUCCESS Desired Access: Query Value 97 12:38:31,5727591 MCLauncher.exe 84 RegSetInfoKey HKLM\SOFTWARE\Policies\Microsoft\Windows\CurrentVersion\Internet Settings SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 97 12:38:31,5727638 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Security_HKLM_only NAME NOT FOUND Length: 144 97 12:38:31,5727777 MCLauncher.exe 84 RegCloseKey HKLM\SOFTWARE\Policies\Microsoft\Windows\CurrentVersion\Internet Settings SUCCESS 97 12:38:31,5727926 MCLauncher.exe 84 RegQueryKey HKCU\SOFTWARE\Microsoft\Internet Explorer\Main\FeatureControl SUCCESS Query: HandleTags, HandleTags: 0x400 97 12:38:31,5727990 MCLauncher.exe 84 RegOpenKey HKCU\SOFTWARE\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_IGNORE_POLICIES_ZONEMAP_IF_ESC_ENABLED_KB918915 NAME NOT FOUND Desired Access: Query Value 97 12:38:31,5728087 MCLauncher.exe 84 RegQueryKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Internet Explorer\Main\FeatureControl SUCCESS Query: HandleTags, HandleTags: 0x400 97 12:38:31,5728140 MCLauncher.exe 84 RegOpenKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_IGNORE_POLICIES_ZONEMAP_IF_ESC_ENABLED_KB918915 NAME NOT FOUND Desired Access: Query Value 97 12:38:31,5728256 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:31,5728306 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: Name 97 12:38:31,5728389 MCLauncher.exe 84 RegOpenKey HKLM\Software\WOW6432Node\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\ REPARSE Desired Access: Read 97 12:38:31,5728456 MCLauncher.exe 84 RegOpenKey HKLM\SOFTWARE\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains NAME NOT FOUND Desired Access: Read 97 12:38:31,5728555 MCLauncher.exe 84 RegQueryKey HKCU SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:31,5728602 MCLauncher.exe 84 RegQueryKey HKCU SUCCESS Query: Name 97 12:38:31,5728852 MCLauncher.exe 84 RegOpenKey HKCU\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\ NAME NOT FOUND Desired Access: Read 97 12:38:31,5728974 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:31,5729024 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: Name 97 12:38:31,5729101 MCLauncher.exe 84 RegOpenKey HKLM\Software\WOW6432Node\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\ REPARSE Desired Access: Read 97 12:38:31,5729168 MCLauncher.exe 84 RegOpenKey HKLM\SOFTWARE\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains NAME NOT FOUND Desired Access: Read 97 12:38:31,5729256 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:31,5729301 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: Name 97 12:38:31,5729364 MCLauncher.exe 84 RegOpenKey HKLM\ZoneMap\Ranges\ NAME NOT FOUND Desired Access: Read 97 12:38:31,5729445 MCLauncher.exe 84 RegQueryKey HKCU SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:31,5729492 MCLauncher.exe 84 RegQueryKey HKCU SUCCESS Query: Name 97 12:38:31,5729558 MCLauncher.exe 84 RegOpenKey HKCU\ZoneMap\Ranges\ NAME NOT FOUND Desired Access: Read 97 12:38:31,5729639 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:31,5729683 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: Name 97 12:38:31,5729741 MCLauncher.exe 84 RegOpenKey HKLM\ZoneMap\Ranges\ NAME NOT FOUND Desired Access: Read 97 12:38:31,5729954 MCLauncher.exe 84 RegQueryValue HKLM\System\CurrentControlSet\Control\{7746D80F-97E0-4E26-9543-26B41FC22F79}\{59AEE675-B203-4D61-9A1F-04518A20F359}\4B00650072006E0065006C002D004F006E00650043006F00720065002D00440065007600690063006500460061006D0069006C007900490044000000 NAME NOT FOUND Length: 0 97 12:38:31,5730076 MCLauncher.exe 84 RegQueryKey HKCU\SOFTWARE\Microsoft\Internet Explorer\Main\FeatureControl SUCCESS Query: HandleTags, HandleTags: 0x400 97 12:38:31,5730135 MCLauncher.exe 84 RegOpenKey HKCU\SOFTWARE\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_ZONES_CHECK_ZONEMAP_POLICY_KB941001 NAME NOT FOUND Desired Access: Query Value 97 12:38:31,5730218 MCLauncher.exe 84 RegQueryKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Internet Explorer\Main\FeatureControl SUCCESS Query: HandleTags, HandleTags: 0x400 97 12:38:31,5730270 MCLauncher.exe 84 RegOpenKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_ZONES_CHECK_ZONEMAP_POLICY_KB941001 NAME NOT FOUND Desired Access: Query Value 97 12:38:31,5730370 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:31,5730417 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: Name 97 12:38:31,5730486 MCLauncher.exe 84 RegOpenKey HKLM\Software\WOW6432Node\Policies REPARSE Desired Access: Read 97 12:38:31,5730542 MCLauncher.exe 84 RegOpenKey HKLM\SOFTWARE\Policies SUCCESS Desired Access: Read 97 12:38:31,5730608 MCLauncher.exe 84 RegSetInfoKey HKLM\SOFTWARE\Policies SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 97 12:38:31,5730669 MCLauncher.exe 84 RegQueryKey HKCU SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:31,5730716 MCLauncher.exe 84 RegQueryKey HKCU SUCCESS Query: Name 97 12:38:31,5730780 MCLauncher.exe 84 RegOpenKey HKCU\Software\Policies SUCCESS Desired Access: Read 97 12:38:31,5730852 MCLauncher.exe 84 RegSetInfoKey HKCU\SOFTWARE\Policies SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 97 12:38:31,5730908 MCLauncher.exe 84 RegQueryKey HKCU SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:31,5730952 MCLauncher.exe 84 RegQueryKey HKCU SUCCESS Query: Name 97 12:38:31,5731016 MCLauncher.exe 84 RegOpenKey HKCU\Software SUCCESS Desired Access: Read 97 12:38:31,5731093 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:31,5731137 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: Name 97 12:38:31,5731201 MCLauncher.exe 84 RegOpenKey HKLM\Software\WOW6432Node SUCCESS Desired Access: Read 97 12:38:31,5731331 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:31,5731379 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: Name 97 12:38:31,5731451 MCLauncher.exe 84 RegOpenKey HKLM\Software\WOW6432Node\Policies\Microsoft\Windows\CurrentVersion\Internet Settings REPARSE Desired Access: Query Value 97 12:38:31,5731509 MCLauncher.exe 84 RegOpenKey HKLM\SOFTWARE\Policies\Microsoft\Windows\CurrentVersion\Internet Settings SUCCESS Desired Access: Query Value 97 12:38:31,5731572 MCLauncher.exe 84 RegSetInfoKey HKLM\SOFTWARE\Policies\Microsoft\Windows\CurrentVersion\Internet Settings SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 97 12:38:31,5731614 MCLauncher.exe 84 RegQueryKey HKLM\SOFTWARE\Policies\Microsoft\Windows\CurrentVersion\Internet Settings SUCCESS Query: Cached, SubKeys: 1, Values: 0 97 12:38:31,5731686 MCLauncher.exe 84 RegCloseKey HKLM\SOFTWARE\Policies\Microsoft\Windows\CurrentVersion\Internet Settings SUCCESS 97 12:38:31,5731747 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:31,5731794 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: Name 97 12:38:31,5731866 MCLauncher.exe 84 RegOpenKey HKLM\Software\WOW6432Node\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap REPARSE Desired Access: Query Value 97 12:38:31,5731924 MCLauncher.exe 84 RegOpenKey HKLM\SOFTWARE\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap NAME NOT FOUND Desired Access: Query Value 97 12:38:31,5732021 MCLauncher.exe 84 RegQueryKey HKCU SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:31,5732068 MCLauncher.exe 84 RegQueryKey HKCU SUCCESS Query: Name 97 12:38:31,5732132 MCLauncher.exe 84 RegOpenKey HKCU\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings SUCCESS Desired Access: Query Value 97 12:38:31,5732201 MCLauncher.exe 84 RegSetInfoKey HKCU\SOFTWARE\Policies\Microsoft\Windows\CurrentVersion\Internet Settings SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 97 12:38:31,5732240 MCLauncher.exe 84 RegQueryKey HKCU\SOFTWARE\Policies\Microsoft\Windows\CurrentVersion\Internet Settings SUCCESS Query: Cached, SubKeys: 2, Values: 0 97 12:38:31,5732298 MCLauncher.exe 84 RegCloseKey HKCU\SOFTWARE\Policies\Microsoft\Windows\CurrentVersion\Internet Settings SUCCESS 97 12:38:31,5732359 MCLauncher.exe 84 RegQueryKey HKCU SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:31,5732404 MCLauncher.exe 84 RegQueryKey HKCU SUCCESS Query: Name 97 12:38:31,5732470 MCLauncher.exe 84 RegOpenKey HKCU\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap NAME NOT FOUND Desired Access: Query Value 97 12:38:31,5732570 MCLauncher.exe 84 RegQueryKey HKCU SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:31,5732617 MCLauncher.exe 84 RegQueryKey HKCU SUCCESS Query: Name 97 12:38:31,5732695 MCLauncher.exe 84 RegCreateKey HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\ SUCCESS Desired Access: Read/Write, Disposition: REG_OPENED_EXISTING_KEY 97 12:38:31,5732888 MCLauncher.exe 84 RegSetInfoKey HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 97 12:38:31,5733021 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:31,5733071 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: Name 97 12:38:31,5733157 MCLauncher.exe 84 RegOpenKey HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\ SUCCESS Desired Access: Read 97 12:38:31,5733257 MCLauncher.exe 84 RegSetInfoKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 97 12:38:31,5733321 MCLauncher.exe 84 RegQueryKey HKCU SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:31,5733368 MCLauncher.exe 84 RegQueryKey HKCU SUCCESS Query: Name 97 12:38:31,5733437 MCLauncher.exe 84 RegOpenKey HKCU\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\ NAME NOT FOUND Desired Access: Read 97 12:38:31,5733526 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:31,5733570 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: Name 97 12:38:31,5733645 MCLauncher.exe 84 RegOpenKey HKLM\Software\WOW6432Node\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\ REPARSE Desired Access: Read 97 12:38:31,5733703 MCLauncher.exe 84 RegOpenKey HKLM\SOFTWARE\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap NAME NOT FOUND Desired Access: Read 97 12:38:31,5733786 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:31,5733833 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: Name 97 12:38:31,5733903 MCLauncher.exe 84 RegOpenKey HKLM\Software\WOW6432Node\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\ REPARSE Desired Access: Read 97 12:38:31,5733955 MCLauncher.exe 84 RegOpenKey HKLM\SOFTWARE\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap NAME NOT FOUND Desired Access: Read 97 12:38:31,5734185 MCLauncher.exe 84 RegQueryKey HKCU\SOFTWARE\Microsoft\Internet Explorer\Main\FeatureControl SUCCESS Query: HandleTags, HandleTags: 0x400 97 12:38:31,5734241 MCLauncher.exe 84 RegOpenKey HKCU\SOFTWARE\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_INITIALIZE_URLACTION_SHELLEXECUTE_TO_ALLOW_KB936610 NAME NOT FOUND Desired Access: Query Value 97 12:38:31,5734324 MCLauncher.exe 84 RegQueryKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Internet Explorer\Main\FeatureControl SUCCESS Query: HandleTags, HandleTags: 0x400 97 12:38:31,5734376 MCLauncher.exe 84 RegOpenKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_INITIALIZE_URLACTION_SHELLEXECUTE_TO_ALLOW_KB936610 NAME NOT FOUND Desired Access: Query Value 97 12:38:31,5734623 MCLauncher.exe 84 RegQueryKey HKCU\SOFTWARE\Microsoft\Internet Explorer\Main\FeatureControl SUCCESS Query: HandleTags, HandleTags: 0x400 97 12:38:31,5734678 MCLauncher.exe 84 RegOpenKey HKCU\SOFTWARE\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_LOCALMACHINE_LOCKDOWN NAME NOT FOUND Desired Access: Query Value 97 12:38:31,5734756 MCLauncher.exe 84 RegQueryKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Internet Explorer\Main\FeatureControl SUCCESS Query: HandleTags, HandleTags: 0x400 97 12:38:31,5734808 MCLauncher.exe 84 RegOpenKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_LOCALMACHINE_LOCKDOWN SUCCESS Desired Access: Query Value 97 12:38:31,5734900 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_LOCALMACHINE_LOCKDOWN\MCLauncher.exe NAME NOT FOUND Length: 144 97 12:38:31,5735074 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_LOCALMACHINE_LOCKDOWN\* NAME NOT FOUND Length: 144 97 12:38:31,5735216 MCLauncher.exe 84 RegCloseKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_LOCALMACHINE_LOCKDOWN SUCCESS 97 12:38:31,5735304 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:31,5735357 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: Name 97 12:38:31,5735440 MCLauncher.exe 84 RegOpenKey HKLM\Software\WOW6432Node\Policies\Microsoft\Internet Explorer REPARSE Desired Access: Query Value 97 12:38:31,5735507 MCLauncher.exe 84 RegOpenKey HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer NAME NOT FOUND Desired Access: Query Value 97 12:38:31,5735587 MCLauncher.exe 84 RegQueryKey HKCU SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:31,5735634 MCLauncher.exe 84 RegQueryKey HKCU SUCCESS Query: Name 97 12:38:31,5735703 MCLauncher.exe 84 RegOpenKey HKCU\Software\Policies\Microsoft\Internet Explorer NAME NOT FOUND Desired Access: Query Value 97 12:38:31,5735789 MCLauncher.exe 84 RegQueryKey HKCU\SOFTWARE SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:31,5735836 MCLauncher.exe 84 RegQueryKey HKCU\SOFTWARE SUCCESS Query: Name 97 12:38:31,5735903 MCLauncher.exe 84 RegOpenKey HKCU\SOFTWARE\Microsoft\Internet Explorer\Security SUCCESS Desired Access: Read 97 12:38:31,5735980 MCLauncher.exe 84 RegSetInfoKey HKCU\SOFTWARE\Microsoft\Internet Explorer\Security SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 97 12:38:31,5736022 MCLauncher.exe 84 RegQueryValue HKCU\SOFTWARE\Microsoft\Internet Explorer\Security\DisableSecuritySettingsCheck NAME NOT FOUND Length: 144 97 12:38:31,5736147 MCLauncher.exe 84 RegCloseKey HKCU\SOFTWARE\Microsoft\Internet Explorer\Security SUCCESS 97 12:38:31,5736219 MCLauncher.exe 84 RegQueryKey HKLM\SOFTWARE\WOW6432Node SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:31,5736269 MCLauncher.exe 84 RegQueryKey HKLM\SOFTWARE\WOW6432Node SUCCESS Query: Name 97 12:38:31,5736349 MCLauncher.exe 84 RegOpenKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Internet Explorer\Security SUCCESS Desired Access: Read 97 12:38:31,5736426 MCLauncher.exe 84 RegSetInfoKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Internet Explorer\Security SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 97 12:38:31,5736465 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Internet Explorer\Security\DisableSecuritySettingsCheck NAME NOT FOUND Length: 144 97 12:38:31,5736579 MCLauncher.exe 84 RegCloseKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Internet Explorer\Security SUCCESS 97 12:38:31,5739538 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:31,5739602 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: Name 97 12:38:31,5739682 MCLauncher.exe 84 RegOpenKey HKLM\System\Setup SUCCESS Desired Access: Read 97 12:38:31,5739773 MCLauncher.exe 84 RegSetInfoKey HKLM\SYSTEM\Setup SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 97 12:38:31,5739820 MCLauncher.exe 84 RegQueryValue HKLM\SYSTEM\Setup\SystemSetupInProgress SUCCESS Type: REG_DWORD, Length: 4, Data: 0 97 12:38:31,5739989 MCLauncher.exe 84 RegCloseKey HKLM\SYSTEM\Setup SUCCESS 97 12:38:31,5740061 MCLauncher.exe 84 RegQueryKey HKCU SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:31,5740111 MCLauncher.exe 84 RegQueryKey HKCU SUCCESS Query: Name 97 12:38:31,5740194 MCLauncher.exe 84 RegOpenKey HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\ SUCCESS Desired Access: Read 97 12:38:31,5740294 MCLauncher.exe 84 RegSetInfoKey HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Zones SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 97 12:38:31,5740352 MCLauncher.exe 84 RegQueryKey HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Zones SUCCESS Query: HandleTags, HandleTags: 0x400 97 12:38:31,5740405 MCLauncher.exe 84 RegOpenKey HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\0 SUCCESS Desired Access: Read 97 12:38:31,5740488 MCLauncher.exe 84 RegCloseKey HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\0 SUCCESS 97 12:38:31,5740544 MCLauncher.exe 84 RegQueryKey HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Zones SUCCESS Query: HandleTags, HandleTags: 0x400 97 12:38:31,5740593 MCLauncher.exe 84 RegOpenKey HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\1 SUCCESS Desired Access: Read 97 12:38:31,5740665 MCLauncher.exe 84 RegCloseKey HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\1 SUCCESS 97 12:38:31,5740718 MCLauncher.exe 84 RegQueryKey HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Zones SUCCESS Query: HandleTags, HandleTags: 0x400 97 12:38:31,5740768 MCLauncher.exe 84 RegOpenKey HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\2 SUCCESS Desired Access: Read 97 12:38:31,5740840 MCLauncher.exe 84 RegCloseKey HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\2 SUCCESS 97 12:38:31,5740893 MCLauncher.exe 84 RegQueryKey HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Zones SUCCESS Query: HandleTags, HandleTags: 0x400 97 12:38:31,5740940 MCLauncher.exe 84 RegOpenKey HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\3 SUCCESS Desired Access: Read 97 12:38:31,5741015 MCLauncher.exe 84 RegCloseKey HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\3 SUCCESS 97 12:38:31,5741067 MCLauncher.exe 84 RegQueryKey HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Zones SUCCESS Query: HandleTags, HandleTags: 0x400 97 12:38:31,5741114 MCLauncher.exe 84 RegOpenKey HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\4 SUCCESS Desired Access: Read 97 12:38:31,5741192 MCLauncher.exe 84 RegCloseKey HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\4 SUCCESS 97 12:38:31,5741228 MCLauncher.exe 84 RegCloseKey HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Zones SUCCESS 97 12:38:31,5741297 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:31,5741344 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: Name 97 12:38:31,5741427 MCLauncher.exe 84 RegOpenKey HKLM\Software\WOW6432Node\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\ REPARSE Desired Access: Read 97 12:38:31,5741497 MCLauncher.exe 84 RegOpenKey HKLM\SOFTWARE\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones NAME NOT FOUND Desired Access: Read 97 12:38:31,5741599 MCLauncher.exe 84 RegQueryKey HKCU SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:31,5741649 MCLauncher.exe 84 RegQueryKey HKCU SUCCESS Query: Name 97 12:38:31,5741718 MCLauncher.exe 84 RegOpenKey HKCU\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\ NAME NOT FOUND Desired Access: Read 97 12:38:31,5741801 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:31,5741848 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: Name 97 12:38:31,5741921 MCLauncher.exe 84 RegOpenKey HKLM\Software\WOW6432Node\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\ REPARSE Desired Access: Read 97 12:38:31,5741976 MCLauncher.exe 84 RegOpenKey HKLM\SOFTWARE\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones NAME NOT FOUND Desired Access: Read 97 12:38:31,5742051 MCLauncher.exe 84 RegQueryKey HKCU SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:31,5742098 MCLauncher.exe 84 RegQueryKey HKCU SUCCESS Query: Name 97 12:38:31,5742164 MCLauncher.exe 84 RegOpenKey HKCU\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\ NAME NOT FOUND Desired Access: Read 97 12:38:31,5742242 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:31,5742286 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: Name 97 12:38:31,5742358 MCLauncher.exe 84 RegOpenKey HKLM\Software\WOW6432Node\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\ REPARSE Desired Access: Read 97 12:38:31,5742411 MCLauncher.exe 84 RegOpenKey HKLM\SOFTWARE\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones NAME NOT FOUND Desired Access: Read 97 12:38:31,5742486 MCLauncher.exe 84 RegQueryKey HKCU SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:31,5742533 MCLauncher.exe 84 RegQueryKey HKCU SUCCESS Query: Name 97 12:38:31,5742597 MCLauncher.exe 84 RegOpenKey HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\ SUCCESS Desired Access: Read 97 12:38:31,5742663 MCLauncher.exe 84 RegSetInfoKey HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Zones SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 97 12:38:31,5742754 MCLauncher.exe 84 RegEnumKey HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Zones SUCCESS Index: 0, Name: 0 97 12:38:31,5742979 MCLauncher.exe 84 RegQueryKey HKCU SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:31,5743029 MCLauncher.exe 84 RegQueryKey HKCU SUCCESS Query: Name 97 12:38:31,5743095 MCLauncher.exe 84 RegOpenKey HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\0 SUCCESS Desired Access: Read 97 12:38:31,5743170 MCLauncher.exe 84 RegSetInfoKey HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\0 SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 97 12:38:31,5743237 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:31,5743284 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: Name 97 12:38:31,5743356 MCLauncher.exe 84 RegOpenKey HKLM\Software\WOW6432Node\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\0 REPARSE Desired Access: Read 97 12:38:31,5743414 MCLauncher.exe 84 RegOpenKey HKLM\SOFTWARE\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\0 NAME NOT FOUND Desired Access: Read 97 12:38:31,5743491 MCLauncher.exe 84 RegQueryKey HKCU SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:31,5743539 MCLauncher.exe 84 RegQueryKey HKCU SUCCESS Query: Name 97 12:38:31,5743605 MCLauncher.exe 84 RegOpenKey HKCU\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\0 NAME NOT FOUND Desired Access: Read 97 12:38:31,5743683 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:31,5743730 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: Name 97 12:38:31,5743799 MCLauncher.exe 84 RegOpenKey HKLM\Software\WOW6432Node\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\0 REPARSE Desired Access: Read 97 12:38:31,5743852 MCLauncher.exe 84 RegOpenKey HKLM\SOFTWARE\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\0 NAME NOT FOUND Desired Access: Read 97 12:38:31,5743929 MCLauncher.exe 84 RegQueryKey HKCU SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:31,5743976 MCLauncher.exe 84 RegQueryKey HKCU SUCCESS Query: Name 97 12:38:31,5744040 MCLauncher.exe 84 RegOpenKey HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\0 SUCCESS Desired Access: Read 97 12:38:31,5744115 MCLauncher.exe 84 RegSetInfoKey HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\0 SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 97 12:38:31,5744156 MCLauncher.exe 84 RegQueryValue HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\0\Flags SUCCESS Type: REG_DWORD, Length: 4, Data: 33 97 12:38:31,5744328 MCLauncher.exe 84 RegCloseKey HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\0 SUCCESS 97 12:38:31,5744375 MCLauncher.exe 84 RegCloseKey HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\0 SUCCESS 97 12:38:31,5744431 MCLauncher.exe 84 RegEnumKey HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Zones SUCCESS Index: 1, Name: 1 97 12:38:31,5744528 MCLauncher.exe 84 RegQueryKey HKCU SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:31,5744577 MCLauncher.exe 84 RegQueryKey HKCU SUCCESS Query: Name 97 12:38:31,5744650 MCLauncher.exe 84 RegOpenKey HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\1 SUCCESS Desired Access: Read 97 12:38:31,5744735 MCLauncher.exe 84 RegSetInfoKey HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\1 SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 97 12:38:31,5744799 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:31,5744846 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: Name 97 12:38:31,5744921 MCLauncher.exe 84 RegOpenKey HKLM\Software\WOW6432Node\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\1 REPARSE Desired Access: Read 97 12:38:31,5744982 MCLauncher.exe 84 RegOpenKey HKLM\SOFTWARE\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\1 NAME NOT FOUND Desired Access: Read 97 12:38:31,5745071 MCLauncher.exe 84 RegQueryKey HKCU SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:31,5745115 MCLauncher.exe 84 RegQueryKey HKCU SUCCESS Query: Name 97 12:38:31,5745181 MCLauncher.exe 84 RegOpenKey HKCU\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\1 NAME NOT FOUND Desired Access: Read 97 12:38:31,5745262 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:31,5745306 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: Name 97 12:38:31,5745378 MCLauncher.exe 84 RegOpenKey HKLM\Software\WOW6432Node\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\1 REPARSE Desired Access: Read 97 12:38:31,5745431 MCLauncher.exe 84 RegOpenKey HKLM\SOFTWARE\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\1 NAME NOT FOUND Desired Access: Read 97 12:38:31,5745506 MCLauncher.exe 84 RegQueryKey HKCU SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:31,5745553 MCLauncher.exe 84 RegQueryKey HKCU SUCCESS Query: Name 97 12:38:31,5745616 MCLauncher.exe 84 RegOpenKey HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\1 SUCCESS Desired Access: Read 97 12:38:31,5745683 MCLauncher.exe 84 RegSetInfoKey HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\1 SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 97 12:38:31,5745724 MCLauncher.exe 84 RegQueryValue HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\1\Flags SUCCESS Type: REG_DWORD, Length: 4, Data: 219 97 12:38:31,5745985 MCLauncher.exe 84 RegQueryKey HKCU SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:31,5746035 MCLauncher.exe 84 RegQueryKey HKCU SUCCESS Query: Name 97 12:38:31,5746110 MCLauncher.exe 84 RegOpenKey HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\ SUCCESS Desired Access: Read/Write 97 12:38:31,5746198 MCLauncher.exe 84 RegSetInfoKey HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 97 12:38:31,5746298 MCLauncher.exe 84 RegSetValue HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\ProxyBypass SUCCESS Type: REG_DWORD, Length: 4, Data: 1 97 12:38:31,5746711 MCLauncher.exe 84 RegSetValue HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\IntranetName SUCCESS Type: REG_DWORD, Length: 4, Data: 1 97 12:38:31,5746980 MCLauncher.exe 84 RegSetValue HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\UNCAsIntranet SUCCESS Type: REG_DWORD, Length: 4, Data: 1 97 12:38:31,5747226 MCLauncher.exe 84 RegSetValue HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\AutoDetect SUCCESS Type: REG_DWORD, Length: 4, Data: 0 97 12:38:31,5747473 MCLauncher.exe 84 RegCloseKey HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap SUCCESS 97 12:38:31,5747525 MCLauncher.exe 84 RegCloseKey HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\1 SUCCESS 97 12:38:31,5747564 MCLauncher.exe 84 RegCloseKey HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\1 SUCCESS 97 12:38:31,5747617 MCLauncher.exe 84 RegEnumKey HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Zones SUCCESS Index: 2, Name: 2 97 12:38:31,5747719 MCLauncher.exe 84 RegQueryKey HKCU SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:31,5747772 MCLauncher.exe 84 RegQueryKey HKCU SUCCESS Query: Name 97 12:38:31,5747852 MCLauncher.exe 84 RegOpenKey HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\2 SUCCESS Desired Access: Read 97 12:38:31,5748110 MCLauncher.exe 84 RegSetInfoKey HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\2 SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 97 12:38:31,5748199 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:31,5748251 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: Name 97 12:38:31,5748340 MCLauncher.exe 84 RegOpenKey HKLM\Software\WOW6432Node\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\2 REPARSE Desired Access: Read 97 12:38:31,5748409 MCLauncher.exe 84 RegOpenKey HKLM\SOFTWARE\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\2 NAME NOT FOUND Desired Access: Read 97 12:38:31,5748503 MCLauncher.exe 84 RegQueryKey HKCU SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:31,5748550 MCLauncher.exe 84 RegQueryKey HKCU SUCCESS Query: Name 97 12:38:31,5748617 MCLauncher.exe 84 RegOpenKey HKCU\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\2 NAME NOT FOUND Desired Access: Read 97 12:38:31,5748700 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:31,5748747 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: Name 97 12:38:31,5748819 MCLauncher.exe 84 RegOpenKey HKLM\Software\WOW6432Node\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\2 REPARSE Desired Access: Read 97 12:38:31,5748872 MCLauncher.exe 84 RegOpenKey HKLM\SOFTWARE\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\2 NAME NOT FOUND Desired Access: Read 97 12:38:31,5748963 MCLauncher.exe 84 RegQueryKey HKCU SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:31,5749008 MCLauncher.exe 84 RegQueryKey HKCU SUCCESS Query: Name 97 12:38:31,5749074 MCLauncher.exe 84 RegOpenKey HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\2 SUCCESS Desired Access: Read 97 12:38:31,5749143 MCLauncher.exe 84 RegSetInfoKey HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\2 SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 97 12:38:31,5749185 MCLauncher.exe 84 RegQueryValue HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\2\Flags SUCCESS Type: REG_DWORD, Length: 4, Data: 71 97 12:38:31,5749340 MCLauncher.exe 84 RegCloseKey HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\2 SUCCESS 97 12:38:31,5749387 MCLauncher.exe 84 RegCloseKey HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\2 SUCCESS 97 12:38:31,5749440 MCLauncher.exe 84 RegEnumKey HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Zones SUCCESS Index: 3, Name: 3 97 12:38:31,5749534 MCLauncher.exe 84 RegQueryKey HKCU SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:31,5749584 MCLauncher.exe 84 RegQueryKey HKCU SUCCESS Query: Name 97 12:38:31,5749659 MCLauncher.exe 84 RegOpenKey HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\3 SUCCESS Desired Access: Read 97 12:38:31,5749742 MCLauncher.exe 84 RegSetInfoKey HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\3 SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 97 12:38:31,5749806 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:31,5749853 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: Name 97 12:38:31,5749930 MCLauncher.exe 84 RegOpenKey HKLM\Software\WOW6432Node\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\3 REPARSE Desired Access: Read 97 12:38:31,5749991 MCLauncher.exe 84 RegOpenKey HKLM\SOFTWARE\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\3 NAME NOT FOUND Desired Access: Read 97 12:38:31,5750080 MCLauncher.exe 84 RegQueryKey HKCU SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:31,5750124 MCLauncher.exe 84 RegQueryKey HKCU SUCCESS Query: Name 97 12:38:31,5750191 MCLauncher.exe 84 RegOpenKey HKCU\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\3 NAME NOT FOUND Desired Access: Read 97 12:38:31,5750271 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:31,5750315 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: Name 97 12:38:31,5750385 MCLauncher.exe 84 RegOpenKey HKLM\Software\WOW6432Node\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\3 REPARSE Desired Access: Read 97 12:38:31,5750440 MCLauncher.exe 84 RegOpenKey HKLM\SOFTWARE\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\3 NAME NOT FOUND Desired Access: Read 97 12:38:31,5750515 MCLauncher.exe 84 RegQueryKey HKCU SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:31,5750562 MCLauncher.exe 84 RegQueryKey HKCU SUCCESS Query: Name 97 12:38:31,5750626 MCLauncher.exe 84 RegOpenKey HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\3 SUCCESS Desired Access: Read 97 12:38:31,5750692 MCLauncher.exe 84 RegSetInfoKey HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\3 SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 97 12:38:31,5750731 MCLauncher.exe 84 RegQueryValue HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\3\Flags SUCCESS Type: REG_DWORD, Length: 4, Data: 1 97 12:38:31,5750878 MCLauncher.exe 84 RegCloseKey HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\3 SUCCESS 97 12:38:31,5750922 MCLauncher.exe 84 RegCloseKey HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\3 SUCCESS 97 12:38:31,5750972 MCLauncher.exe 84 RegEnumKey HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Zones SUCCESS Index: 4, Name: 4 97 12:38:31,5751063 MCLauncher.exe 84 RegQueryKey HKCU SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:31,5751113 MCLauncher.exe 84 RegQueryKey HKCU SUCCESS Query: Name 97 12:38:31,5751185 MCLauncher.exe 84 RegOpenKey HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\4 SUCCESS Desired Access: Read 97 12:38:31,5751268 MCLauncher.exe 84 RegSetInfoKey HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\4 SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 97 12:38:31,5751335 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:31,5751379 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: Name 97 12:38:31,5751454 MCLauncher.exe 84 RegOpenKey HKLM\Software\WOW6432Node\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\4 REPARSE Desired Access: Read 97 12:38:31,5751515 MCLauncher.exe 84 RegOpenKey HKLM\SOFTWARE\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\4 NAME NOT FOUND Desired Access: Read 97 12:38:31,5751601 MCLauncher.exe 84 RegQueryKey HKCU SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:31,5751648 MCLauncher.exe 84 RegQueryKey HKCU SUCCESS Query: Name 97 12:38:31,5751712 MCLauncher.exe 84 RegOpenKey HKCU\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\4 NAME NOT FOUND Desired Access: Read 97 12:38:31,5751795 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:31,5751839 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: Name 97 12:38:31,5751908 MCLauncher.exe 84 RegOpenKey HKLM\Software\WOW6432Node\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\4 REPARSE Desired Access: Read 97 12:38:31,5751964 MCLauncher.exe 84 RegOpenKey HKLM\SOFTWARE\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\4 NAME NOT FOUND Desired Access: Read 97 12:38:31,5752039 MCLauncher.exe 84 RegQueryKey HKCU SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:31,5752086 MCLauncher.exe 84 RegQueryKey HKCU SUCCESS Query: Name 97 12:38:31,5752147 MCLauncher.exe 84 RegOpenKey HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\4 SUCCESS Desired Access: Read 97 12:38:31,5752213 MCLauncher.exe 84 RegSetInfoKey HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\4 SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 97 12:38:31,5752255 MCLauncher.exe 84 RegQueryValue HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\4\Flags SUCCESS Type: REG_DWORD, Length: 4, Data: 3 97 12:38:31,5752396 MCLauncher.exe 84 RegCloseKey HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\4 SUCCESS 97 12:38:31,5752440 MCLauncher.exe 84 RegCloseKey HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\4 SUCCESS 97 12:38:31,5752490 MCLauncher.exe 84 RegEnumKey HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Zones NO MORE ENTRIES Index: 5, Length: 288 97 12:38:31,5752540 MCLauncher.exe 84 RegCloseKey HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Zones SUCCESS 97 12:38:31,5752623 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:31,5752673 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: Name 97 12:38:31,5752756 MCLauncher.exe 84 RegOpenKey HKLM\Software\WOW6432Node\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Lockdown_Zones\ REPARSE Desired Access: Read 97 12:38:31,5752837 MCLauncher.exe 84 RegOpenKey HKLM\SOFTWARE\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Lockdown_Zones NAME NOT FOUND Desired Access: Read 97 12:38:31,5752956 MCLauncher.exe 84 RegQueryKey HKCU SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:31,5753003 MCLauncher.exe 84 RegQueryKey HKCU SUCCESS Query: Name 97 12:38:31,5753072 MCLauncher.exe 84 RegOpenKey HKCU\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Lockdown_Zones\ NAME NOT FOUND Desired Access: Read 97 12:38:31,5753161 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:31,5753205 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: Name 97 12:38:31,5753277 MCLauncher.exe 84 RegOpenKey HKLM\Software\WOW6432Node\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Lockdown_Zones\ REPARSE Desired Access: Read 97 12:38:31,5753332 MCLauncher.exe 84 RegOpenKey HKLM\SOFTWARE\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Lockdown_Zones NAME NOT FOUND Desired Access: Read 97 12:38:31,5753410 MCLauncher.exe 84 RegQueryKey HKCU SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:31,5753454 MCLauncher.exe 84 RegQueryKey HKCU SUCCESS Query: Name 97 12:38:31,5753518 MCLauncher.exe 84 RegOpenKey HKCU\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Lockdown_Zones\ NAME NOT FOUND Desired Access: Read 97 12:38:31,5753596 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:31,5753640 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: Name 97 12:38:31,5753712 MCLauncher.exe 84 RegOpenKey HKLM\Software\WOW6432Node\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Lockdown_Zones\ REPARSE Desired Access: Read 97 12:38:31,5753765 MCLauncher.exe 84 RegOpenKey HKLM\SOFTWARE\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Lockdown_Zones NAME NOT FOUND Desired Access: Read 97 12:38:31,5753839 MCLauncher.exe 84 RegQueryKey HKCU SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:31,5753884 MCLauncher.exe 84 RegQueryKey HKCU SUCCESS Query: Name 97 12:38:31,5753950 MCLauncher.exe 84 RegOpenKey HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings\Lockdown_Zones\ SUCCESS Desired Access: Read 97 12:38:31,5754036 MCLauncher.exe 84 RegSetInfoKey HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Lockdown_Zones SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 97 12:38:31,5754078 MCLauncher.exe 84 RegEnumKey HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Lockdown_Zones SUCCESS Index: 0, Name: 0 97 12:38:31,5754280 MCLauncher.exe 84 RegQueryKey HKCU SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:31,5754327 MCLauncher.exe 84 RegQueryKey HKCU SUCCESS Query: Name 97 12:38:31,5754391 MCLauncher.exe 84 RegOpenKey HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings\Lockdown_Zones\0 SUCCESS Desired Access: Read 97 12:38:31,5754471 MCLauncher.exe 84 RegSetInfoKey HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Lockdown_Zones\0 SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 97 12:38:31,5754538 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:31,5754582 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: Name 97 12:38:31,5754657 MCLauncher.exe 84 RegOpenKey HKLM\Software\WOW6432Node\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Lockdown_Zones\0 REPARSE Desired Access: Read 97 12:38:31,5754712 MCLauncher.exe 84 RegOpenKey HKLM\SOFTWARE\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Lockdown_Zones\0 NAME NOT FOUND Desired Access: Read 97 12:38:31,5754817 MCLauncher.exe 84 RegQueryKey HKCU SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:31,5754876 MCLauncher.exe 84 RegQueryKey HKCU SUCCESS Query: Name 97 12:38:31,5754945 MCLauncher.exe 84 RegOpenKey HKCU\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Lockdown_Zones\0 NAME NOT FOUND Desired Access: Read 97 12:38:31,5755025 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:31,5755072 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: Name 97 12:38:31,5755144 MCLauncher.exe 84 RegOpenKey HKLM\Software\WOW6432Node\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Lockdown_Zones\0 REPARSE Desired Access: Read 97 12:38:31,5755200 MCLauncher.exe 84 RegOpenKey HKLM\SOFTWARE\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Lockdown_Zones\0 NAME NOT FOUND Desired Access: Read 97 12:38:31,5755277 MCLauncher.exe 84 RegQueryKey HKCU SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:31,5755322 MCLauncher.exe 84 RegQueryKey HKCU SUCCESS Query: Name 97 12:38:31,5755385 MCLauncher.exe 84 RegOpenKey HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\0 SUCCESS Desired Access: Read 97 12:38:31,5755455 MCLauncher.exe 84 RegSetInfoKey HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\0 SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 97 12:38:31,5755499 MCLauncher.exe 84 RegQueryValue HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\0\Flags SUCCESS Type: REG_DWORD, Length: 4, Data: 33 97 12:38:31,5755657 MCLauncher.exe 84 RegCloseKey HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\0 SUCCESS 97 12:38:31,5755710 MCLauncher.exe 84 RegCloseKey HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Lockdown_Zones\0 SUCCESS 97 12:38:31,5755759 MCLauncher.exe 84 RegEnumKey HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Lockdown_Zones SUCCESS Index: 1, Name: 1 97 12:38:31,5755856 MCLauncher.exe 84 RegQueryKey HKCU SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:31,5755906 MCLauncher.exe 84 RegQueryKey HKCU SUCCESS Query: Name 97 12:38:31,5755984 MCLauncher.exe 84 RegOpenKey HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings\Lockdown_Zones\1 SUCCESS Desired Access: Read 97 12:38:31,5756073 MCLauncher.exe 84 RegSetInfoKey HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Lockdown_Zones\1 SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 97 12:38:31,5756139 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:31,5756186 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: Name 97 12:38:31,5756264 MCLauncher.exe 84 RegOpenKey HKLM\Software\WOW6432Node\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Lockdown_Zones\1 REPARSE Desired Access: Read 97 12:38:31,5756325 MCLauncher.exe 84 RegOpenKey HKLM\SOFTWARE\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Lockdown_Zones\1 NAME NOT FOUND Desired Access: Read 97 12:38:31,5756413 MCLauncher.exe 84 RegQueryKey HKCU SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:31,5756460 MCLauncher.exe 84 RegQueryKey HKCU SUCCESS Query: Name 97 12:38:31,5756527 MCLauncher.exe 84 RegOpenKey HKCU\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Lockdown_Zones\1 NAME NOT FOUND Desired Access: Read 97 12:38:31,5756610 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:31,5756654 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: Name 97 12:38:31,5756724 MCLauncher.exe 84 RegOpenKey HKLM\Software\WOW6432Node\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Lockdown_Zones\1 REPARSE Desired Access: Read 97 12:38:31,5756776 MCLauncher.exe 84 RegOpenKey HKLM\SOFTWARE\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Lockdown_Zones\1 NAME NOT FOUND Desired Access: Read 97 12:38:31,5756854 MCLauncher.exe 84 RegQueryKey HKCU SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:31,5756901 MCLauncher.exe 84 RegQueryKey HKCU SUCCESS Query: Name 97 12:38:31,5756965 MCLauncher.exe 84 RegOpenKey HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\1 SUCCESS Desired Access: Read 97 12:38:31,5757034 MCLauncher.exe 84 RegSetInfoKey HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\1 SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 97 12:38:31,5757075 MCLauncher.exe 84 RegQueryValue HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\1\Flags SUCCESS Type: REG_DWORD, Length: 4, Data: 219 97 12:38:31,5757242 MCLauncher.exe 84 RegQueryKey HKCU SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:31,5757294 MCLauncher.exe 84 RegQueryKey HKCU SUCCESS Query: Name 97 12:38:31,5757366 MCLauncher.exe 84 RegOpenKey HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\ SUCCESS Desired Access: Read/Write 97 12:38:31,5757450 MCLauncher.exe 84 RegSetInfoKey HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 97 12:38:31,5757510 MCLauncher.exe 84 RegSetValue HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\ProxyBypass SUCCESS Type: REG_DWORD, Length: 4, Data: 1 97 12:38:31,5758045 MCLauncher.exe 84 RegSetValue HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\IntranetName SUCCESS Type: REG_DWORD, Length: 4, Data: 1 97 12:38:31,5758400 MCLauncher.exe 84 RegSetValue HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\UNCAsIntranet SUCCESS Type: REG_DWORD, Length: 4, Data: 1 97 12:38:31,5758768 MCLauncher.exe 84 RegSetValue HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\AutoDetect SUCCESS Type: REG_DWORD, Length: 4, Data: 0 97 12:38:31,5759267 MCLauncher.exe 84 RegCloseKey HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap SUCCESS 97 12:38:31,5759353 MCLauncher.exe 84 RegCloseKey HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\1 SUCCESS 97 12:38:31,5759428 MCLauncher.exe 84 RegCloseKey HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Lockdown_Zones\1 SUCCESS 97 12:38:31,5759508 MCLauncher.exe 84 RegEnumKey HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Lockdown_Zones SUCCESS Index: 2, Name: 2 97 12:38:31,5759666 MCLauncher.exe 84 RegQueryKey HKCU SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:31,5759752 MCLauncher.exe 84 RegQueryKey HKCU SUCCESS Query: Name 97 12:38:31,5759885 MCLauncher.exe 84 RegOpenKey HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings\Lockdown_Zones\2 SUCCESS Desired Access: Read 97 12:38:31,5760032 MCLauncher.exe 84 RegSetInfoKey HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Lockdown_Zones\2 SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 97 12:38:31,5760140 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:31,5760217 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: Name 97 12:38:31,5760350 MCLauncher.exe 84 RegOpenKey HKLM\Software\WOW6432Node\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Lockdown_Zones\2 REPARSE Desired Access: Read 97 12:38:31,5760456 MCLauncher.exe 84 RegOpenKey HKLM\SOFTWARE\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Lockdown_Zones\2 NAME NOT FOUND Desired Access: Read 97 12:38:31,5760594 MCLauncher.exe 84 RegQueryKey HKCU SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:31,5760672 MCLauncher.exe 84 RegQueryKey HKCU SUCCESS Query: Name 97 12:38:31,5760782 MCLauncher.exe 84 RegOpenKey HKCU\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Lockdown_Zones\2 NAME NOT FOUND Desired Access: Read 97 12:38:31,5760913 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:31,5760985 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: Name 97 12:38:31,5761107 MCLauncher.exe 84 RegOpenKey HKLM\Software\WOW6432Node\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Lockdown_Zones\2 REPARSE Desired Access: Read 97 12:38:31,5761193 MCLauncher.exe 84 RegOpenKey HKLM\SOFTWARE\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Lockdown_Zones\2 NAME NOT FOUND Desired Access: Read 97 12:38:31,5761314 MCLauncher.exe 84 RegQueryKey HKCU SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:31,5761395 MCLauncher.exe 84 RegQueryKey HKCU SUCCESS Query: Name 97 12:38:31,5761506 MCLauncher.exe 84 RegOpenKey HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\2 SUCCESS Desired Access: Read 97 12:38:31,5761622 MCLauncher.exe 84 RegSetInfoKey HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\2 SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 97 12:38:31,5761691 MCLauncher.exe 84 RegQueryValue HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\2\Flags SUCCESS Type: REG_DWORD, Length: 4, Data: 71 97 12:38:31,5761905 MCLauncher.exe 84 RegCloseKey HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\2 SUCCESS 97 12:38:31,5761982 MCLauncher.exe 84 RegCloseKey HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Lockdown_Zones\2 SUCCESS 97 12:38:31,5762062 MCLauncher.exe 84 RegEnumKey HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Lockdown_Zones SUCCESS Index: 3, Name: 3 97 12:38:31,5762204 MCLauncher.exe 84 RegQueryKey HKCU SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:31,5762287 MCLauncher.exe 84 RegQueryKey HKCU SUCCESS Query: Name 97 12:38:31,5762406 MCLauncher.exe 84 RegOpenKey HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings\Lockdown_Zones\3 SUCCESS Desired Access: Read 97 12:38:31,5762547 MCLauncher.exe 84 RegSetInfoKey HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Lockdown_Zones\3 SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 97 12:38:31,5762647 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:31,5762725 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: Name 97 12:38:31,5762852 MCLauncher.exe 84 RegOpenKey HKLM\Software\WOW6432Node\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Lockdown_Zones\3 REPARSE Desired Access: Read 97 12:38:31,5762946 MCLauncher.exe 84 RegOpenKey HKLM\SOFTWARE\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Lockdown_Zones\3 NAME NOT FOUND Desired Access: Read 97 12:38:31,5763077 MCLauncher.exe 84 RegQueryKey HKCU SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:31,5763151 MCLauncher.exe 84 RegQueryKey HKCU SUCCESS Query: Name 97 12:38:31,5763259 MCLauncher.exe 84 RegOpenKey HKCU\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Lockdown_Zones\3 NAME NOT FOUND Desired Access: Read 97 12:38:31,5763387 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:31,5763462 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: Name 97 12:38:31,5763581 MCLauncher.exe 84 RegOpenKey HKLM\Software\WOW6432Node\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Lockdown_Zones\3 REPARSE Desired Access: Read 97 12:38:31,5763667 MCLauncher.exe 84 RegOpenKey HKLM\SOFTWARE\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Lockdown_Zones\3 NAME NOT FOUND Desired Access: Read 97 12:38:31,5763794 MCLauncher.exe 84 RegQueryKey HKCU SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:31,5763869 MCLauncher.exe 84 RegQueryKey HKCU SUCCESS Query: Name 97 12:38:31,5763974 MCLauncher.exe 84 RegOpenKey HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\3 SUCCESS Desired Access: Read 97 12:38:31,5764093 MCLauncher.exe 84 RegSetInfoKey HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\3 SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 97 12:38:31,5764157 MCLauncher.exe 84 RegQueryValue HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\3\Flags SUCCESS Type: REG_DWORD, Length: 4, Data: 1 97 12:38:31,5764365 MCLauncher.exe 84 RegCloseKey HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\3 SUCCESS 97 12:38:31,5764442 MCLauncher.exe 84 RegCloseKey HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Lockdown_Zones\3 SUCCESS 97 12:38:31,5764520 MCLauncher.exe 84 RegEnumKey HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Lockdown_Zones SUCCESS Index: 4, Name: 4 97 12:38:31,5764661 MCLauncher.exe 84 RegQueryKey HKCU SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:31,5764742 MCLauncher.exe 84 RegQueryKey HKCU SUCCESS Query: Name 97 12:38:31,5764861 MCLauncher.exe 84 RegOpenKey HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings\Lockdown_Zones\4 SUCCESS Desired Access: Read 97 12:38:31,5764999 MCLauncher.exe 84 RegSetInfoKey HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Lockdown_Zones\4 SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 97 12:38:31,5765099 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:31,5765177 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: Name 97 12:38:31,5765301 MCLauncher.exe 84 RegOpenKey HKLM\Software\WOW6432Node\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Lockdown_Zones\4 REPARSE Desired Access: Read 97 12:38:31,5765401 MCLauncher.exe 84 RegOpenKey HKLM\SOFTWARE\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Lockdown_Zones\4 NAME NOT FOUND Desired Access: Read 97 12:38:31,5765528 MCLauncher.exe 84 RegQueryKey HKCU SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:31,5765603 MCLauncher.exe 84 RegQueryKey HKCU SUCCESS Query: Name 97 12:38:31,5765717 MCLauncher.exe 84 RegOpenKey HKCU\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Lockdown_Zones\4 NAME NOT FOUND Desired Access: Read 97 12:38:31,5765839 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:31,5765914 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: Name 97 12:38:31,5766035 MCLauncher.exe 84 RegOpenKey HKLM\Software\WOW6432Node\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Lockdown_Zones\4 REPARSE Desired Access: Read 97 12:38:31,5766119 MCLauncher.exe 84 RegOpenKey HKLM\SOFTWARE\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Lockdown_Zones\4 NAME NOT FOUND Desired Access: Read 97 12:38:31,5766238 MCLauncher.exe 84 RegQueryKey HKCU SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:31,5766313 MCLauncher.exe 84 RegQueryKey HKCU SUCCESS Query: Name 97 12:38:31,5766418 MCLauncher.exe 84 RegOpenKey HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\4 SUCCESS Desired Access: Read 97 12:38:31,5766526 MCLauncher.exe 84 RegSetInfoKey HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\4 SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 97 12:38:31,5766592 MCLauncher.exe 84 RegQueryValue HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\4\Flags SUCCESS Type: REG_DWORD, Length: 4, Data: 3 97 12:38:31,5766922 MCLauncher.exe 84 RegCloseKey HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\4 SUCCESS 97 12:38:31,5767005 MCLauncher.exe 84 RegCloseKey HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Lockdown_Zones\4 SUCCESS 97 12:38:31,5767080 MCLauncher.exe 84 RegEnumKey HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Lockdown_Zones NO MORE ENTRIES Index: 5, Length: 288 97 12:38:31,5767160 MCLauncher.exe 84 RegCloseKey HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Lockdown_Zones SUCCESS 97 12:38:31,5768274 MCLauncher.exe 84 RegQueryKey HKCU\SOFTWARE\Microsoft\Internet Explorer\Main\FeatureControl SUCCESS Query: HandleTags, HandleTags: 0x400 97 12:38:31,5768382 MCLauncher.exe 84 RegOpenKey HKCU\SOFTWARE\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_ZONES_DEFAULT_DRIVE_INTRANET_KB941000 NAME NOT FOUND Desired Access: Query Value 97 12:38:31,5768559 MCLauncher.exe 84 RegQueryKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Internet Explorer\Main\FeatureControl SUCCESS Query: HandleTags, HandleTags: 0x400 97 12:38:31,5768648 MCLauncher.exe 84 RegOpenKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_ZONES_DEFAULT_DRIVE_INTRANET_KB941000 NAME NOT FOUND Desired Access: Query Value 97 12:38:31,5769075 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\SpecialFoldersCacheSize NAME NOT FOUND Length: 144 97 12:38:31,5769294 MCLauncher.exe 84 RegQueryValue HKCU\SOFTWARE\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\SpecialFoldersCacheSize NAME NOT FOUND Length: 144 97 12:38:31,5769482 MCLauncher.exe 84 RegQueryValue HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\SpecialFoldersCacheSize NAME NOT FOUND Length: 144 97 12:38:31,5769684 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Internet Settings\SpecialFoldersCacheSize NAME NOT FOUND Length: 144 97 12:38:31,5770233 MCLauncher.exe 84 RegQueryKey HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer SUCCESS Query: HandleTags, HandleTags: 0x400 97 12:38:31,5770302 MCLauncher.exe 84 RegOpenKey HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\SessionInfo\1 SUCCESS Desired Access: Query Value 97 12:38:31,5770430 MCLauncher.exe 84 RegQueryKey HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\SessionInfo\1 SUCCESS Query: HandleTags, HandleTags: 0x400 97 12:38:31,5770485 MCLauncher.exe 84 RegOpenKey HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\SessionInfo\1\KnownFolders NAME NOT FOUND Desired Access: Query Value 97 12:38:31,5770568 MCLauncher.exe 84 RegCloseKey HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\SessionInfo\1 SUCCESS 97 12:38:31,5770676 MCLauncher.exe 84 RegOpenKey HKCU SUCCESS Desired Access: Read 97 12:38:31,5770776 MCLauncher.exe 84 RegQueryKey HKCU SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:31,5770826 MCLauncher.exe 84 RegQueryKey HKCU SUCCESS Query: Name 97 12:38:31,5770895 MCLauncher.exe 84 RegOpenKey HKCU\Software\Microsoft\Windows\CurrentVersion\Explorer\User Shell Folders SUCCESS Desired Access: Read 97 12:38:31,5770986 MCLauncher.exe 84 RegSetInfoKey HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\User Shell Folders SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 97 12:38:31,5771034 MCLauncher.exe 84 RegCloseKey HKCU SUCCESS 97 12:38:31,5771086 MCLauncher.exe 84 RegQueryValue HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\User Shell Folders\Cache SUCCESS Type: REG_EXPAND_SZ, Length: 112, Data: %USERPROFILE%\AppData\Local\Microsoft\Windows\INetCache 97 12:38:31,5771480 MCLauncher.exe 84 RegCloseKey HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\User Shell Folders SUCCESS 97 12:38:31,5774322 MCLauncher.exe 84 CreateFile C:\Users\User\AppData\Local\Microsoft\Windows\INetCache SUCCESS Desired Access: Read Attributes, Disposition: Open, Options: Open Reparse Point, Attributes: n/a, ShareMode: Read, Write, Delete, AllocationSize: n/a, OpenResult: Opened 97 12:38:31,5774555 MCLauncher.exe 84 QueryBasicInformationFile C:\Users\User\AppData\Local\Microsoft\Windows\INetCache SUCCESS CreationTime: 19.07.2018 20:06:02, LastAccessTime: 23.08.2018 15:25:53, LastWriteTime: 23.08.2018 15:25:53, ChangeTime: 23.08.2018 15:25:53, FileAttributes: HSDNCI 97 12:38:31,5774649 MCLauncher.exe 84 CloseFile C:\Users\User\AppData\Local\Microsoft\Windows\INetCache SUCCESS 97 12:38:31,5775018 MCLauncher.exe 84 RegQueryKey HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer SUCCESS Query: HandleTags, HandleTags: 0x400 97 12:38:31,5775092 MCLauncher.exe 84 RegOpenKey HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\SessionInfo\1 SUCCESS Desired Access: Query Value 97 12:38:31,5775203 MCLauncher.exe 84 RegQueryKey HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\SessionInfo\1 SUCCESS Query: HandleTags, HandleTags: 0x400 97 12:38:31,5775259 MCLauncher.exe 84 RegOpenKey HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\SessionInfo\1\KnownFolders NAME NOT FOUND Desired Access: Query Value 97 12:38:31,5775345 MCLauncher.exe 84 RegCloseKey HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\SessionInfo\1 SUCCESS 97 12:38:31,5775442 MCLauncher.exe 84 RegOpenKey HKCU SUCCESS Desired Access: Read 97 12:38:31,5775533 MCLauncher.exe 84 RegQueryKey HKCU SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:31,5775580 MCLauncher.exe 84 RegQueryKey HKCU SUCCESS Query: Name 97 12:38:31,5775658 MCLauncher.exe 84 RegOpenKey HKCU\Software\Microsoft\Windows\CurrentVersion\Explorer\User Shell Folders SUCCESS Desired Access: Read 97 12:38:31,5775741 MCLauncher.exe 84 RegSetInfoKey HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\User Shell Folders SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 97 12:38:31,5775791 MCLauncher.exe 84 RegCloseKey HKCU SUCCESS 97 12:38:31,5775840 MCLauncher.exe 84 RegQueryValue HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\User Shell Folders\Cookies SUCCESS Type: REG_EXPAND_SZ, Length: 116, Data: %USERPROFILE%\AppData\Local\Microsoft\Windows\INetCookies 97 12:38:31,5776220 MCLauncher.exe 84 RegCloseKey HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\User Shell Folders SUCCESS 97 12:38:31,5778855 MCLauncher.exe 84 CreateFile C:\Users\User\AppData\Local\Microsoft\Windows\INetCookies SUCCESS Desired Access: Read Attributes, Disposition: Open, Options: Open Reparse Point, Attributes: n/a, ShareMode: Read, Write, Delete, AllocationSize: n/a, OpenResult: Opened 97 12:38:31,5779049 MCLauncher.exe 84 QueryBasicInformationFile C:\Users\User\AppData\Local\Microsoft\Windows\INetCookies SUCCESS CreationTime: 19.07.2018 20:06:02, LastAccessTime: 20.07.2018 2:51:59, LastWriteTime: 20.07.2018 2:51:59, ChangeTime: 20.07.2018 2:51:59, FileAttributes: HSDNCI 97 12:38:31,5779129 MCLauncher.exe 84 CloseFile C:\Users\User\AppData\Local\Microsoft\Windows\INetCookies SUCCESS 97 12:38:31,5781886 MCLauncher.exe 84 CreateFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Desired Access: Read Attributes, Disposition: Open, Options: Open Reparse Point, Attributes: n/a, ShareMode: Read, Write, Delete, AllocationSize: n/a, OpenResult: Opened 97 12:38:31,5782058 MCLauncher.exe 84 QueryBasicInformationFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS CreationTime: 24.08.2018 12:30:11, LastAccessTime: 24.08.2018 12:30:11, LastWriteTime: 24.08.2018 12:38:31, ChangeTime: 24.08.2018 12:38:31, FileAttributes: A 97 12:38:31,5782132 MCLauncher.exe 84 CloseFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS 97 12:38:31,5782423 MCLauncher.exe 84 CreateFile C:\ SUCCESS Desired Access: Read Data/List Directory, Synchronize, Disposition: Open, Options: Directory, Synchronous IO Non-Alert, Attributes: n/a, ShareMode: Read, Write, Delete, AllocationSize: n/a, OpenResult: Opened 97 12:38:31,5782615 MCLauncher.exe 84 QueryDirectory C:\Users SUCCESS Filter: Users, 1: Users 97 12:38:31,5782811 MCLauncher.exe 84 CloseFile C:\ SUCCESS 97 12:38:31,5783742 MCLauncher.exe 84 CreateFile C:\Users SUCCESS Desired Access: Read Data/List Directory, Synchronize, Disposition: Open, Options: Directory, Synchronous IO Non-Alert, Attributes: n/a, ShareMode: Read, Write, Delete, AllocationSize: n/a, OpenResult: Opened 97 12:38:31,5783939 MCLauncher.exe 84 QueryDirectory C:\Users\User SUCCESS Filter: User, 1: User 97 12:38:31,5784169 MCLauncher.exe 84 CloseFile C:\Users SUCCESS 97 12:38:31,5785083 MCLauncher.exe 84 CreateFile C:\Users\User SUCCESS Desired Access: Read Data/List Directory, Synchronize, Disposition: Open, Options: Directory, Synchronous IO Non-Alert, Attributes: n/a, ShareMode: Read, Write, Delete, AllocationSize: n/a, OpenResult: Opened 97 12:38:31,5785269 MCLauncher.exe 84 QueryDirectory C:\Users\User\AppData SUCCESS Filter: AppData, 1: AppData 97 12:38:31,5785429 MCLauncher.exe 84 CloseFile C:\Users\User SUCCESS 97 12:38:31,5786477 MCLauncher.exe 84 CreateFile C:\Users\User\AppData SUCCESS Desired Access: Read Data/List Directory, Synchronize, Disposition: Open, Options: Directory, Synchronous IO Non-Alert, Attributes: n/a, ShareMode: Read, Write, Delete, AllocationSize: n/a, OpenResult: Opened 97 12:38:31,5786668 MCLauncher.exe 84 QueryDirectory C:\Users\User\AppData\Roaming SUCCESS Filter: Roaming, 1: Roaming 97 12:38:31,5786809 MCLauncher.exe 84 CloseFile C:\Users\User\AppData SUCCESS 97 12:38:31,5789882 MCLauncher.exe 84 CreateFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Desired Access: Read Attributes, Disposition: Open, Options: Open Reparse Point, Attributes: n/a, ShareMode: Read, Write, Delete, AllocationSize: n/a, OpenResult: Opened 97 12:38:31,5790031 MCLauncher.exe 84 QueryBasicInformationFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS CreationTime: 24.08.2018 12:30:11, LastAccessTime: 24.08.2018 12:30:11, LastWriteTime: 24.08.2018 12:38:31, ChangeTime: 24.08.2018 12:38:31, FileAttributes: A 97 12:38:31,5790106 MCLauncher.exe 84 CloseFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS 97 12:38:31,5792314 MCLauncher.exe 84 CreateFile C:\Users\User\AppData\Roaming\MCLauncher SUCCESS Desired Access: Read Attributes, Disposition: Open, Options: Open Reparse Point, Attributes: n/a, ShareMode: Read, Write, Delete, AllocationSize: n/a, OpenResult: Opened 97 12:38:31,5792461 MCLauncher.exe 84 QueryBasicInformationFile C:\Users\User\AppData\Roaming\MCLauncher SUCCESS CreationTime: 24.08.2018 12:30:11, LastAccessTime: 24.08.2018 12:30:32, LastWriteTime: 24.08.2018 12:30:32, ChangeTime: 24.08.2018 12:30:32, FileAttributes: D 97 12:38:31,5792533 MCLauncher.exe 84 CloseFile C:\Users\User\AppData\Roaming\MCLauncher SUCCESS 97 12:38:31,5794578 MCLauncher.exe 84 CreateFile C:\Users\User\AppData\Roaming SUCCESS Desired Access: Read Attributes, Disposition: Open, Options: Open Reparse Point, Attributes: n/a, ShareMode: Read, Write, Delete, AllocationSize: n/a, OpenResult: Opened 97 12:38:31,5794719 MCLauncher.exe 84 QueryBasicInformationFile C:\Users\User\AppData\Roaming SUCCESS CreationTime: 19.07.2018 20:06:02, LastAccessTime: 24.08.2018 12:31:43, LastWriteTime: 24.08.2018 12:31:43, ChangeTime: 24.08.2018 12:31:43, FileAttributes: D 97 12:38:31,5794791 MCLauncher.exe 84 CloseFile C:\Users\User\AppData\Roaming SUCCESS 97 12:38:31,5796864 MCLauncher.exe 84 CreateFile C:\Users\User\AppData SUCCESS Desired Access: Read Attributes, Disposition: Open, Options: Open Reparse Point, Attributes: n/a, ShareMode: Read, Write, Delete, AllocationSize: n/a, OpenResult: Opened 97 12:38:31,5797141 MCLauncher.exe 84 QueryBasicInformationFile C:\Users\User\AppData SUCCESS CreationTime: 19.07.2018 20:06:02, LastAccessTime: 19.07.2018 20:06:03, LastWriteTime: 19.07.2018 20:06:03, ChangeTime: 19.07.2018 20:06:03, FileAttributes: HD 97 12:38:31,5797221 MCLauncher.exe 84 CloseFile C:\Users\User\AppData SUCCESS 97 12:38:31,5799318 MCLauncher.exe 84 CreateFile C:\Users\User SUCCESS Desired Access: Read Attributes, Disposition: Open, Options: Open Reparse Point, Attributes: n/a, ShareMode: Read, Write, Delete, AllocationSize: n/a, OpenResult: Opened 97 12:38:31,5799451 MCLauncher.exe 84 QueryBasicInformationFile C:\Users\User SUCCESS CreationTime: 19.07.2018 20:06:01, LastAccessTime: 20.07.2018 19:30:20, LastWriteTime: 20.07.2018 19:30:20, ChangeTime: 20.07.2018 19:30:20, FileAttributes: D 97 12:38:31,5799523 MCLauncher.exe 84 CloseFile C:\Users\User SUCCESS 97 12:38:31,5801632 MCLauncher.exe 84 CreateFile C:\Users SUCCESS Desired Access: Read Attributes, Disposition: Open, Options: Open Reparse Point, Attributes: n/a, ShareMode: Read, Write, Delete, AllocationSize: n/a, OpenResult: Opened 97 12:38:31,5801770 MCLauncher.exe 84 QueryBasicInformationFile C:\Users SUCCESS CreationTime: 16.07.2016 9:04:24, LastAccessTime: 24.08.2018 12:33:31, LastWriteTime: 24.08.2018 12:33:31, ChangeTime: 24.08.2018 12:33:31, FileAttributes: RD 97 12:38:31,5801839 MCLauncher.exe 84 CloseFile C:\Users SUCCESS 97 12:38:31,5802837 MCLauncher.exe 84 Thread Create SUCCESS Thread ID: 12152 97 12:38:31,5805638 MCLauncher.exe 84 CreateFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Desired Access: Read Attributes, Read Control, Synchronize, Disposition: Open, Options: Synchronous IO Non-Alert, Non-Directory File, Disallow Exclusive, Attributes: n/a, ShareMode: Read, Write, AllocationSize: n/a, OpenResult: Opened 97 12:38:31,5805840 MCLauncher.exe 84 QuerySecurityFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe BUFFER OVERFLOW Information: Label 97 12:38:31,5805920 MCLauncher.exe 84 QuerySecurityFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Information: Label 97 12:38:31,5806031 MCLauncher.exe 84 CloseFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS 97 12:38:31,5808575 MCLauncher.exe 84 CreateFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Desired Access: Read Attributes, Disposition: Open, Options: Open Reparse Point, Attributes: n/a, ShareMode: Read, Write, Delete, AllocationSize: n/a, OpenResult: Opened 97 12:38:31,5808722 MCLauncher.exe 84 QueryBasicInformationFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS CreationTime: 24.08.2018 12:30:11, LastAccessTime: 24.08.2018 12:30:11, LastWriteTime: 24.08.2018 12:38:31, ChangeTime: 24.08.2018 12:38:31, FileAttributes: A 97 12:38:31,5808796 MCLauncher.exe 84 CloseFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS 97 12:38:31,5810960 MCLauncher.exe 84 CreateFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Desired Access: Read Attributes, Disposition: Open, Options: Open Reparse Point, Attributes: n/a, ShareMode: Read, Write, Delete, AllocationSize: n/a, OpenResult: Opened 97 12:38:31,5811096 MCLauncher.exe 84 QueryBasicInformationFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS CreationTime: 24.08.2018 12:30:11, LastAccessTime: 24.08.2018 12:30:11, LastWriteTime: 24.08.2018 12:38:31, ChangeTime: 24.08.2018 12:38:31, FileAttributes: A 97 12:38:31,5811165 MCLauncher.exe 84 CloseFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS 97 12:38:31,5813337 MCLauncher.exe 84 CreateFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe:Zone.Identifier NAME NOT FOUND Desired Access: Read Attributes, Disposition: Open, Options: Open Reparse Point, Attributes: n/a, ShareMode: Read, Write, Delete, AllocationSize: n/a 97 12:38:31,5813817 MCLauncher.exe 84 RegQueryKey HKCU\SOFTWARE\Microsoft\Internet Explorer\Main\FeatureControl SUCCESS Query: HandleTags, HandleTags: 0x400 97 12:38:31,5813905 MCLauncher.exe 84 RegOpenKey HKCU\SOFTWARE\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_PROTOCOL_LOCKDOWN NAME NOT FOUND Desired Access: Query Value 97 12:38:31,5814047 MCLauncher.exe 84 RegQueryKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Internet Explorer\Main\FeatureControl SUCCESS Query: HandleTags, HandleTags: 0x400 97 12:38:31,5814107 MCLauncher.exe 84 RegOpenKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_PROTOCOL_LOCKDOWN SUCCESS Desired Access: Query Value 97 12:38:31,5814216 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_PROTOCOL_LOCKDOWN\MCLauncher.exe NAME NOT FOUND Length: 144 97 12:38:31,5814396 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_PROTOCOL_LOCKDOWN\* NAME NOT FOUND Length: 144 97 12:38:31,5814545 MCLauncher.exe 84 RegCloseKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_PROTOCOL_LOCKDOWN SUCCESS 97 12:38:31,5814667 MCLauncher.exe 84 RegQueryKey HKCU SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:31,5814725 MCLauncher.exe 84 RegQueryKey HKCU SUCCESS Query: Name 97 12:38:31,5814822 MCLauncher.exe 84 RegOpenKey HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\0 SUCCESS Desired Access: Read 97 12:38:31,5814933 MCLauncher.exe 84 RegSetInfoKey HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\0 SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 97 12:38:31,5814983 MCLauncher.exe 84 RegQueryValue HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\0\1806 NAME NOT FOUND Length: 144 97 12:38:31,5815138 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:31,5815188 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: Name 97 12:38:31,5815288 MCLauncher.exe 84 RegOpenKey HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\0 SUCCESS Desired Access: Read 97 12:38:31,5815421 MCLauncher.exe 84 RegSetInfoKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\0 SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 97 12:38:31,5815465 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\0\1806 SUCCESS Type: REG_DWORD, Length: 4, Data: 0 97 12:38:31,5815626 MCLauncher.exe 84 RegCloseKey HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\0 SUCCESS 97 12:38:31,5815673 MCLauncher.exe 84 RegCloseKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\0 SUCCESS 97 12:38:31,5815817 MCLauncher.exe 84 RegQueryKey HKCR\exefile\shell\open SUCCESS Query: Name 97 12:38:31,5815897 MCLauncher.exe 84 RegQueryKey HKCR\exefile\shell\open SUCCESS Query: HandleTags, HandleTags: 0x401 97 12:38:31,5816014 MCLauncher.exe 84 RegOpenKey HKCU\Software\Classes\exefile\shell\open\command NAME NOT FOUND Desired Access: Query Value 97 12:38:31,5816124 MCLauncher.exe 84 RegQueryKey HKCR\exefile\shell\open SUCCESS Query: HandleTags, HandleTags: 0x401 97 12:38:31,5816177 MCLauncher.exe 84 RegOpenKey HKCR\exefile\shell\open\command SUCCESS Desired Access: Query Value 97 12:38:31,5816257 MCLauncher.exe 84 RegQueryKey HKCR\exefile\shell\open\command SUCCESS Query: Name 97 12:38:31,5816313 MCLauncher.exe 84 RegQueryKey HKCR\exefile\shell\open\command SUCCESS Query: HandleTags, HandleTags: 0x401 97 12:38:31,5816390 MCLauncher.exe 84 RegOpenKey HKCU\Software\Classes\exefile\shell\open\command NAME NOT FOUND Desired Access: Maximum Allowed 97 12:38:31,5816565 MCLauncher.exe 84 RegQueryValue HKCR\exefile\shell\open\command\DelegateExecute NAME NOT FOUND Length: 144 97 12:38:31,5816878 MCLauncher.exe 84 RegCloseKey HKCR\exefile\shell\open\command SUCCESS 97 12:38:31,5816967 MCLauncher.exe 84 RegQueryKey HKCR\exefile\shell\open SUCCESS Query: Name 97 12:38:31,5817064 MCLauncher.exe 84 RegQueryKey HKCR\exefile\shell\open SUCCESS Query: HandleTags, HandleTags: 0x401 97 12:38:31,5817191 MCLauncher.exe 84 RegOpenKey HKCU\Software\Classes\exefile\shell\open\DropTarget NAME NOT FOUND Desired Access: Query Value 97 12:38:31,5817288 MCLauncher.exe 84 RegQueryKey HKCR\exefile\shell\open SUCCESS Query: HandleTags, HandleTags: 0x401 97 12:38:31,5817341 MCLauncher.exe 84 RegOpenKey HKCR\exefile\shell\open\DropTarget NAME NOT FOUND Desired Access: Query Value 97 12:38:31,5818712 MCLauncher.exe 84 RegOpenKey HKLM\Software\WOW6432Node\Policies\Microsoft\Windows\Safer\CodeIdentifiers REPARSE Desired Access: Read 97 12:38:31,5818804 MCLauncher.exe 84 RegOpenKey HKLM\SOFTWARE\Policies\Microsoft\Windows\Safer\CodeIdentifiers SUCCESS Desired Access: Read 97 12:38:31,5818912 MCLauncher.exe 84 RegSetInfoKey HKLM\SOFTWARE\Policies\Microsoft\Windows\safer\codeidentifiers SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 97 12:38:31,5818964 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\Policies\Microsoft\Windows\safer\codeidentifiers\TransparentEnabled NAME NOT FOUND Length: 524 97 12:38:31,5819119 MCLauncher.exe 84 RegCloseKey HKLM\SOFTWARE\Policies\Microsoft\Windows\safer\codeidentifiers SUCCESS 97 12:38:31,5819183 MCLauncher.exe 84 RegQueryKey HKCR\exefile\shell\open SUCCESS Query: Name 97 12:38:31,5819252 MCLauncher.exe 84 RegQueryKey HKCR\exefile\shell\open SUCCESS Query: HandleTags, HandleTags: 0x401 97 12:38:31,5819358 MCLauncher.exe 84 RegOpenKey HKCU\Software\Classes\exefile\shell\open\command NAME NOT FOUND Desired Access: Query Value 97 12:38:31,5819449 MCLauncher.exe 84 RegQueryKey HKCR\exefile\shell\open SUCCESS Query: HandleTags, HandleTags: 0x401 97 12:38:31,5819502 MCLauncher.exe 84 RegOpenKey HKCR\exefile\shell\open\command SUCCESS Desired Access: Query Value 97 12:38:31,5819574 MCLauncher.exe 84 RegQueryKey HKCR\exefile\shell\open\command SUCCESS Query: Name 97 12:38:31,5819629 MCLauncher.exe 84 RegQueryKey HKCR\exefile\shell\open\command SUCCESS Query: HandleTags, HandleTags: 0x401 97 12:38:31,5819707 MCLauncher.exe 84 RegOpenKey HKCU\Software\Classes\exefile\shell\open\command NAME NOT FOUND Desired Access: Maximum Allowed 97 12:38:31,5819765 MCLauncher.exe 84 RegQueryValue HKCR\exefile\shell\open\command\command NAME NOT FOUND Length: 144 97 12:38:31,5819895 MCLauncher.exe 84 RegCloseKey HKCR\exefile\shell\open\command SUCCESS 97 12:38:31,5819948 MCLauncher.exe 84 RegQueryKey HKCR\exefile\shell\open SUCCESS Query: Name 97 12:38:31,5820009 MCLauncher.exe 84 RegQueryKey HKCR\exefile\shell\open SUCCESS Query: HandleTags, HandleTags: 0x401 97 12:38:31,5820103 MCLauncher.exe 84 RegOpenKey HKCU\Software\Classes\exefile\shell\open\command NAME NOT FOUND Desired Access: Query Value 97 12:38:31,5820186 MCLauncher.exe 84 RegQueryKey HKCR\exefile\shell\open SUCCESS Query: HandleTags, HandleTags: 0x401 97 12:38:31,5820236 MCLauncher.exe 84 RegOpenKey HKCR\exefile\shell\open\command SUCCESS Desired Access: Query Value 97 12:38:31,5820300 MCLauncher.exe 84 RegQueryKey HKCR\exefile\shell\open\command SUCCESS Query: Name 97 12:38:31,5820355 MCLauncher.exe 84 RegQueryKey HKCR\exefile\shell\open\command SUCCESS Query: HandleTags, HandleTags: 0x401 97 12:38:31,5820430 MCLauncher.exe 84 RegOpenKey HKCU\Software\Classes\exefile\shell\open\command NAME NOT FOUND Desired Access: Maximum Allowed 97 12:38:31,5820488 MCLauncher.exe 84 RegQueryValue HKCR\exefile\shell\open\command\(Default) SUCCESS Type: REG_SZ, Length: 16, Data: "%1" %* 97 12:38:31,5820555 MCLauncher.exe 84 RegCloseKey HKCR\exefile\shell\open\command SUCCESS 97 12:38:31,5820771 MCLauncher.exe 84 RegQueryKey HKCU\Software\Classes SUCCESS Query: Name 97 12:38:31,5820832 MCLauncher.exe 84 RegQueryKey HKCU\Software\Classes SUCCESS Query: HandleTags, HandleTags: 0x1 97 12:38:31,5820898 MCLauncher.exe 84 RegQueryKey HKCU\Software\Classes SUCCESS Query: HandleTags, HandleTags: 0x1 97 12:38:31,5820945 MCLauncher.exe 84 RegQueryKey HKCU\Software\Classes SUCCESS Query: Name 97 12:38:31,5821034 MCLauncher.exe 84 RegOpenKey HKCU\Software\Classes\WOW6432Node\CLSID\{CDC82860-468D-4D4E-B7E7-C298FF23AB2C} NAME NOT FOUND Desired Access: Read 97 12:38:31,5821183 MCLauncher.exe 84 RegOpenKey HKCR\WOW6432Node\CLSID\{CDC82860-468D-4D4E-B7E7-C298FF23AB2C} SUCCESS Desired Access: Read 97 12:38:31,5821300 MCLauncher.exe 84 RegSetInfoKey HKCR\WOW6432Node\CLSID\{CDC82860-468D-4d4e-B7E7-C298FF23AB2C} SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 97 12:38:31,5821341 MCLauncher.exe 84 RegQueryKey HKCR\WOW6432Node\CLSID\{CDC82860-468D-4d4e-B7E7-C298FF23AB2C} SUCCESS Query: Name 97 12:38:31,5821408 MCLauncher.exe 84 RegQueryKey HKCR\WOW6432Node\CLSID\{CDC82860-468D-4d4e-B7E7-C298FF23AB2C} SUCCESS Query: HandleTags, HandleTags: 0x401 97 12:38:31,5821499 MCLauncher.exe 84 RegOpenKey HKCU\Software\Classes\WOW6432Node\CLSID\{CDC82860-468D-4d4e-B7E7-C298FF23AB2C}\TreatAs NAME NOT FOUND Desired Access: Query Value 97 12:38:31,5821582 MCLauncher.exe 84 RegQueryKey HKCR\WOW6432Node\CLSID\{CDC82860-468D-4d4e-B7E7-C298FF23AB2C} SUCCESS Query: HandleTags, HandleTags: 0x401 97 12:38:31,5821635 MCLauncher.exe 84 RegOpenKey HKCR\WOW6432Node\CLSID\{CDC82860-468D-4d4e-B7E7-C298FF23AB2C}\TreatAs NAME NOT FOUND Desired Access: Query Value 97 12:38:31,5821704 MCLauncher.exe 84 RegQueryKey HKCR\WOW6432Node\CLSID\{CDC82860-468D-4d4e-B7E7-C298FF23AB2C} SUCCESS Query: Name 97 12:38:31,5821782 MCLauncher.exe 84 RegQueryKey HKCR\WOW6432Node\CLSID\{CDC82860-468D-4d4e-B7E7-C298FF23AB2C} SUCCESS Query: Name 97 12:38:31,5821837 MCLauncher.exe 84 RegQueryKey HKCR\WOW6432Node\CLSID\{CDC82860-468D-4d4e-B7E7-C298FF23AB2C} SUCCESS Query: HandleTags, HandleTags: 0x401 97 12:38:31,5821920 MCLauncher.exe 84 RegOpenKey HKCU\Software\Classes\WOW6432Node\CLSID\{CDC82860-468D-4d4e-B7E7-C298FF23AB2C} NAME NOT FOUND Desired Access: Maximum Allowed 97 12:38:31,5821987 MCLauncher.exe 84 RegQueryValue HKCR\WOW6432Node\CLSID\{CDC82860-468D-4d4e-B7E7-C298FF23AB2C}\(Default) SUCCESS Type: REG_SZ, Length: 76, Data: ShellItemArray Shell Namespace helper 97 12:38:31,5822048 MCLauncher.exe 84 RegQueryKey HKCR\WOW6432Node\CLSID\{CDC82860-468D-4d4e-B7E7-C298FF23AB2C} SUCCESS Query: Name 97 12:38:31,5822103 MCLauncher.exe 84 RegQueryKey HKCR\WOW6432Node\CLSID\{CDC82860-468D-4d4e-B7E7-C298FF23AB2C} SUCCESS Query: HandleTags, HandleTags: 0x401 97 12:38:31,5822181 MCLauncher.exe 84 RegOpenKey HKCU\Software\Classes\WOW6432Node\CLSID\{CDC82860-468D-4d4e-B7E7-C298FF23AB2C} NAME NOT FOUND Desired Access: Maximum Allowed 97 12:38:31,5822242 MCLauncher.exe 84 RegQueryValue HKCR\WOW6432Node\CLSID\{CDC82860-468D-4d4e-B7E7-C298FF23AB2C}\(Default) SUCCESS Type: REG_SZ, Length: 76, Data: ShellItemArray Shell Namespace helper 97 12:38:31,5822303 MCLauncher.exe 84 RegQueryKey HKCR\WOW6432Node\CLSID\{CDC82860-468D-4d4e-B7E7-C298FF23AB2C} SUCCESS Query: Name 97 12:38:31,5822361 MCLauncher.exe 84 RegQueryKey HKCR\WOW6432Node\CLSID\{CDC82860-468D-4d4e-B7E7-C298FF23AB2C} SUCCESS Query: HandleTags, HandleTags: 0x401 97 12:38:31,5822441 MCLauncher.exe 84 RegOpenKey HKCU\Software\Classes\WOW6432Node\CLSID\{CDC82860-468D-4d4e-B7E7-C298FF23AB2C}\InprocServer32 NAME NOT FOUND Desired Access: Read 97 12:38:31,5822522 MCLauncher.exe 84 RegQueryKey HKCR\WOW6432Node\CLSID\{CDC82860-468D-4d4e-B7E7-C298FF23AB2C} SUCCESS Query: HandleTags, HandleTags: 0x401 97 12:38:31,5822572 MCLauncher.exe 84 RegOpenKey HKCR\WOW6432Node\CLSID\{CDC82860-468D-4d4e-B7E7-C298FF23AB2C}\InprocServer32 SUCCESS Desired Access: Read 97 12:38:31,5822652 MCLauncher.exe 84 RegQueryKey HKCR\WOW6432Node\CLSID\{CDC82860-468D-4d4e-B7E7-C298FF23AB2C}\InProcServer32 SUCCESS Query: Name 97 12:38:31,5822716 MCLauncher.exe 84 RegQueryKey HKCR\WOW6432Node\CLSID\{CDC82860-468D-4d4e-B7E7-C298FF23AB2C}\InProcServer32 SUCCESS Query: HandleTags, HandleTags: 0x401 97 12:38:31,5822796 MCLauncher.exe 84 RegOpenKey HKCU\Software\Classes\WOW6432Node\CLSID\{CDC82860-468D-4d4e-B7E7-C298FF23AB2C}\InProcServer32 NAME NOT FOUND Desired Access: Maximum Allowed 97 12:38:31,5822862 MCLauncher.exe 84 RegQueryValue HKCR\WOW6432Node\CLSID\{CDC82860-468D-4d4e-B7E7-C298FF23AB2C}\InProcServer32\InprocServer32 NAME NOT FOUND Length: 144 97 12:38:31,5822987 MCLauncher.exe 84 RegQueryKey HKCR\WOW6432Node\CLSID\{CDC82860-468D-4d4e-B7E7-C298FF23AB2C}\InProcServer32 SUCCESS Query: Name 97 12:38:31,5823054 MCLauncher.exe 84 RegQueryKey HKCR\WOW6432Node\CLSID\{CDC82860-468D-4d4e-B7E7-C298FF23AB2C}\InProcServer32 SUCCESS Query: HandleTags, HandleTags: 0x401 97 12:38:31,5823151 MCLauncher.exe 84 RegOpenKey HKCU\Software\Classes\WOW6432Node\CLSID\{CDC82860-468D-4d4e-B7E7-C298FF23AB2C}\InProcServer32 NAME NOT FOUND Desired Access: Maximum Allowed 97 12:38:31,5823228 MCLauncher.exe 84 RegQueryValue HKCR\WOW6432Node\CLSID\{CDC82860-468D-4d4e-B7E7-C298FF23AB2C}\InProcServer32\(Default) SUCCESS Type: REG_EXPAND_SZ, Length: 84, Data: %SystemRoot%\system32\windows.storage.dll 97 12:38:31,5823284 MCLauncher.exe 84 RegQueryKey HKCR\WOW6432Node\CLSID\{CDC82860-468D-4d4e-B7E7-C298FF23AB2C}\InProcServer32 SUCCESS Query: Name 97 12:38:31,5823342 MCLauncher.exe 84 RegQueryKey HKCR\WOW6432Node\CLSID\{CDC82860-468D-4d4e-B7E7-C298FF23AB2C}\InProcServer32 SUCCESS Query: HandleTags, HandleTags: 0x401 97 12:38:31,5823419 MCLauncher.exe 84 RegOpenKey HKCU\Software\Classes\WOW6432Node\CLSID\{CDC82860-468D-4d4e-B7E7-C298FF23AB2C}\InProcServer32 NAME NOT FOUND Desired Access: Maximum Allowed 97 12:38:31,5823480 MCLauncher.exe 84 RegQueryValue HKCR\WOW6432Node\CLSID\{CDC82860-468D-4d4e-B7E7-C298FF23AB2C}\InProcServer32\(Default) SUCCESS Type: REG_EXPAND_SZ, Length: 84, Data: %SystemRoot%\system32\windows.storage.dll 97 12:38:31,5823547 MCLauncher.exe 84 RegQueryKey HKCR\WOW6432Node\CLSID\{CDC82860-468D-4d4e-B7E7-C298FF23AB2C}\InProcServer32 SUCCESS Query: Name 97 12:38:31,5823602 MCLauncher.exe 84 RegQueryKey HKCR\WOW6432Node\CLSID\{CDC82860-468D-4d4e-B7E7-C298FF23AB2C}\InProcServer32 SUCCESS Query: HandleTags, HandleTags: 0x401 97 12:38:31,5823680 MCLauncher.exe 84 RegOpenKey HKCU\Software\Classes\WOW6432Node\CLSID\{CDC82860-468D-4d4e-B7E7-C298FF23AB2C}\InProcServer32 NAME NOT FOUND Desired Access: Maximum Allowed 97 12:38:31,5823741 MCLauncher.exe 84 RegQueryValue HKCR\WOW6432Node\CLSID\{CDC82860-468D-4d4e-B7E7-C298FF23AB2C}\InProcServer32\(Default) SUCCESS Type: REG_EXPAND_SZ, Length: 84, Data: %SystemRoot%\system32\windows.storage.dll 97 12:38:31,5823804 MCLauncher.exe 84 RegQueryKey HKCR\WOW6432Node\CLSID\{CDC82860-468D-4d4e-B7E7-C298FF23AB2C}\InProcServer32 SUCCESS Query: Name 97 12:38:31,5823860 MCLauncher.exe 84 RegQueryKey HKCR\WOW6432Node\CLSID\{CDC82860-468D-4d4e-B7E7-C298FF23AB2C}\InProcServer32 SUCCESS Query: HandleTags, HandleTags: 0x401 97 12:38:31,5823940 MCLauncher.exe 84 RegOpenKey HKCU\Software\Classes\WOW6432Node\CLSID\{CDC82860-468D-4d4e-B7E7-C298FF23AB2C}\InProcServer32 NAME NOT FOUND Desired Access: Maximum Allowed 97 12:38:31,5824004 MCLauncher.exe 84 RegQueryValue HKCR\WOW6432Node\CLSID\{CDC82860-468D-4d4e-B7E7-C298FF23AB2C}\InProcServer32\ThreadingModel SUCCESS Type: REG_SZ, Length: 10, Data: Both 97 12:38:31,5824154 MCLauncher.exe 84 RegCloseKey HKCR\WOW6432Node\CLSID\{CDC82860-468D-4d4e-B7E7-C298FF23AB2C}\InProcServer32 SUCCESS 97 12:38:31,5824201 MCLauncher.exe 84 RegQueryKey HKCR\WOW6432Node\CLSID\{CDC82860-468D-4d4e-B7E7-C298FF23AB2C} SUCCESS Query: Name 97 12:38:31,5824270 MCLauncher.exe 84 RegQueryKey HKCR\WOW6432Node\CLSID\{CDC82860-468D-4d4e-B7E7-C298FF23AB2C} SUCCESS Query: HandleTags, HandleTags: 0x401 97 12:38:31,5824370 MCLauncher.exe 84 RegOpenKey HKCU\Software\Classes\WOW6432Node\CLSID\{CDC82860-468D-4d4e-B7E7-C298FF23AB2C}\InprocHandler32 NAME NOT FOUND Desired Access: Query Value 97 12:38:31,5824467 MCLauncher.exe 84 RegQueryKey HKCR\WOW6432Node\CLSID\{CDC82860-468D-4d4e-B7E7-C298FF23AB2C} SUCCESS Query: HandleTags, HandleTags: 0x401 97 12:38:31,5824522 MCLauncher.exe 84 RegOpenKey HKCR\WOW6432Node\CLSID\{CDC82860-468D-4d4e-B7E7-C298FF23AB2C}\InprocHandler32 NAME NOT FOUND Desired Access: Query Value 97 12:38:31,5824586 MCLauncher.exe 84 RegQueryKey HKCR\WOW6432Node\CLSID\{CDC82860-468D-4d4e-B7E7-C298FF23AB2C} SUCCESS Query: Name 97 12:38:31,5824638 MCLauncher.exe 84 RegQueryKey HKCR\WOW6432Node\CLSID\{CDC82860-468D-4d4e-B7E7-C298FF23AB2C} SUCCESS Query: HandleTags, HandleTags: 0x401 97 12:38:31,5824719 MCLauncher.exe 84 RegOpenKey HKCU\Software\Classes\WOW6432Node\CLSID\{CDC82860-468D-4d4e-B7E7-C298FF23AB2C}\InprocHandler NAME NOT FOUND Desired Access: Query Value 97 12:38:31,5824799 MCLauncher.exe 84 RegQueryKey HKCR\WOW6432Node\CLSID\{CDC82860-468D-4d4e-B7E7-C298FF23AB2C} SUCCESS Query: HandleTags, HandleTags: 0x401 97 12:38:31,5824852 MCLauncher.exe 84 RegOpenKey HKCR\WOW6432Node\CLSID\{CDC82860-468D-4d4e-B7E7-C298FF23AB2C}\InprocHandler NAME NOT FOUND Desired Access: Query Value 97 12:38:31,5824927 MCLauncher.exe 84 RegCloseKey HKCR\WOW6432Node\CLSID\{CDC82860-468D-4d4e-B7E7-C298FF23AB2C} SUCCESS 97 12:38:31,5825118 MCLauncher.exe 84 RegQueryKey HKCU\Software\Classes SUCCESS Query: Name 97 12:38:31,5825179 MCLauncher.exe 84 RegQueryKey HKCU\Software\Classes SUCCESS Query: HandleTags, HandleTags: 0x1 97 12:38:31,5825242 MCLauncher.exe 84 RegQueryKey HKCU\Software\Classes SUCCESS Query: HandleTags, HandleTags: 0x1 97 12:38:31,5825292 MCLauncher.exe 84 RegQueryKey HKCU\Software\Classes SUCCESS Query: Name 97 12:38:31,5825373 MCLauncher.exe 84 RegOpenKey HKCU\Software\Classes\WOW6432Node\CLSID\{CDC82860-468D-4D4E-B7E7-C298FF23AB2C} NAME NOT FOUND Desired Access: Read 97 12:38:31,5825467 MCLauncher.exe 84 RegOpenKey HKCR\WOW6432Node\CLSID\{CDC82860-468D-4D4E-B7E7-C298FF23AB2C} SUCCESS Desired Access: Read 97 12:38:31,5825544 MCLauncher.exe 84 RegSetInfoKey HKCR\WOW6432Node\CLSID\{CDC82860-468D-4d4e-B7E7-C298FF23AB2C} SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 97 12:38:31,5825589 MCLauncher.exe 84 RegQueryKey HKCR\WOW6432Node\CLSID\{CDC82860-468D-4d4e-B7E7-C298FF23AB2C} SUCCESS Query: Name 97 12:38:31,5825644 MCLauncher.exe 84 RegQueryKey HKCR\WOW6432Node\CLSID\{CDC82860-468D-4d4e-B7E7-C298FF23AB2C} SUCCESS Query: HandleTags, HandleTags: 0x401 97 12:38:31,5825733 MCLauncher.exe 84 RegOpenKey HKCU\Software\Classes\WOW6432Node\CLSID\{CDC82860-468D-4d4e-B7E7-C298FF23AB2C}\TreatAs NAME NOT FOUND Desired Access: Read 97 12:38:31,5825813 MCLauncher.exe 84 RegQueryKey HKCR\WOW6432Node\CLSID\{CDC82860-468D-4d4e-B7E7-C298FF23AB2C} SUCCESS Query: HandleTags, HandleTags: 0x401 97 12:38:31,5825866 MCLauncher.exe 84 RegOpenKey HKCR\WOW6432Node\CLSID\{CDC82860-468D-4d4e-B7E7-C298FF23AB2C}\TreatAs NAME NOT FOUND Desired Access: Read 97 12:38:31,5825932 MCLauncher.exe 84 RegCloseKey HKCR\WOW6432Node\CLSID\{CDC82860-468D-4d4e-B7E7-C298FF23AB2C} SUCCESS 97 12:38:31,5826791 MCLauncher.exe 84 RegOpenKey HKLM\Software\WOW6432Node\Policies\Microsoft\MUI\Settings REPARSE Desired Access: Read 97 12:38:31,5826877 MCLauncher.exe 84 RegOpenKey HKLM\SOFTWARE\Policies\Microsoft\MUI\Settings NAME NOT FOUND Desired Access: Read 97 12:38:31,5826988 MCLauncher.exe 84 RegOpenKey HKCU SUCCESS Desired Access: Maximum Allowed, Granted Access: All Access 97 12:38:31,5827093 MCLauncher.exe 84 RegQueryKey HKCU SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:31,5827146 MCLauncher.exe 84 RegQueryKey HKCU SUCCESS Query: Name 97 12:38:31,5827218 MCLauncher.exe 84 RegOpenKey HKCU\Software\Policies\Microsoft\Control Panel\Desktop NAME NOT FOUND Desired Access: Read 97 12:38:31,5827312 MCLauncher.exe 84 RegQueryKey HKCU SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:31,5827362 MCLauncher.exe 84 RegQueryKey HKCU SUCCESS Query: Name 97 12:38:31,5827426 MCLauncher.exe 84 RegOpenKey HKCU\Control Panel\Desktop SUCCESS Desired Access: Read 97 12:38:31,5827509 MCLauncher.exe 84 RegSetInfoKey HKCU\Control Panel\Desktop SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 97 12:38:31,5827559 MCLauncher.exe 84 RegQueryValue HKCU\Control Panel\Desktop\PreferredUILanguages NAME NOT FOUND Length: 12 97 12:38:31,5827714 MCLauncher.exe 84 RegCloseKey HKCU\Control Panel\Desktop SUCCESS 97 12:38:31,5827761 MCLauncher.exe 84 RegCloseKey HKCU SUCCESS 97 12:38:31,5827844 MCLauncher.exe 84 RegOpenKey HKLM\Software\WOW6432Node\Policies\Microsoft\MUI\Settings REPARSE Desired Access: Read 97 12:38:31,5827910 MCLauncher.exe 84 RegOpenKey HKLM\SOFTWARE\Policies\Microsoft\MUI\Settings NAME NOT FOUND Desired Access: Read 97 12:38:31,5827996 MCLauncher.exe 84 RegOpenKey HKCU SUCCESS Desired Access: Maximum Allowed, Granted Access: All Access 97 12:38:31,5828082 MCLauncher.exe 84 RegQueryKey HKCU SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:31,5828132 MCLauncher.exe 84 RegQueryKey HKCU SUCCESS Query: Name 97 12:38:31,5828199 MCLauncher.exe 84 RegOpenKey HKCU\Software\Policies\Microsoft\Control Panel\Desktop NAME NOT FOUND Desired Access: Read 97 12:38:31,5828282 MCLauncher.exe 84 RegQueryKey HKCU SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:31,5828329 MCLauncher.exe 84 RegQueryKey HKCU SUCCESS Query: Name 97 12:38:31,5828390 MCLauncher.exe 84 RegOpenKey HKCU\Control Panel\Desktop\LanguageConfiguration SUCCESS Desired Access: Read 97 12:38:31,5828467 MCLauncher.exe 84 RegSetInfoKey HKCU\Control Panel\Desktop\LanguageConfiguration SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 97 12:38:31,5828514 MCLauncher.exe 84 RegEnumValue HKCU\Control Panel\Desktop\LanguageConfiguration NO MORE ENTRIES Index: 0, Length: 512 97 12:38:31,5828575 MCLauncher.exe 84 RegCloseKey HKCU\Control Panel\Desktop\LanguageConfiguration SUCCESS 97 12:38:31,5828614 MCLauncher.exe 84 RegCloseKey HKCU SUCCESS 97 12:38:31,5829210 MCLauncher.exe 84 RegQueryKey HKCU\Software\Classes SUCCESS Query: Name 97 12:38:31,5829276 MCLauncher.exe 84 RegQueryKey HKCU\Software\Classes SUCCESS Query: HandleTags, HandleTags: 0x1 97 12:38:31,5829346 MCLauncher.exe 84 RegQueryKey HKCU\Software\Classes SUCCESS Query: HandleTags, HandleTags: 0x1 97 12:38:31,5829390 MCLauncher.exe 84 RegQueryKey HKCU\Software\Classes SUCCESS Query: Name 97 12:38:31,5829465 MCLauncher.exe 84 RegOpenKey HKCU\Software\Classes\.exe NAME NOT FOUND Desired Access: Read 97 12:38:31,5829556 MCLauncher.exe 84 RegOpenKey HKCR\.exe SUCCESS Desired Access: Read 97 12:38:31,5829631 MCLauncher.exe 84 RegSetInfoKey HKCR\.exe SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 97 12:38:31,5829689 MCLauncher.exe 84 RegQueryKey HKCR\.exe SUCCESS Query: Name 97 12:38:31,5829747 MCLauncher.exe 84 RegQueryKey HKCR\.exe SUCCESS Query: HandleTags, HandleTags: 0x401 97 12:38:31,5829828 MCLauncher.exe 84 RegOpenKey HKCU\Software\Classes\.exe NAME NOT FOUND Desired Access: Maximum Allowed 97 12:38:31,5829894 MCLauncher.exe 84 RegQueryValue HKCR\.exe\(Default) SUCCESS Type: REG_SZ, Length: 16, Data: exefile 97 12:38:31,5829986 MCLauncher.exe 84 RegQueryKey HKCU\Software\Classes SUCCESS Query: Name 97 12:38:31,5830041 MCLauncher.exe 84 RegQueryKey HKCU\Software\Classes SUCCESS Query: HandleTags, HandleTags: 0x1 97 12:38:31,5830105 MCLauncher.exe 84 RegQueryKey HKCU\Software\Classes SUCCESS Query: HandleTags, HandleTags: 0x1 97 12:38:31,5830149 MCLauncher.exe 84 RegQueryKey HKCU\Software\Classes SUCCESS Query: Name 97 12:38:31,5830213 MCLauncher.exe 84 RegOpenKey HKCU\Software\Classes\exefile NAME NOT FOUND Desired Access: Read 97 12:38:31,5830288 MCLauncher.exe 84 RegOpenKey HKCR\exefile SUCCESS Desired Access: Read 97 12:38:31,5830354 MCLauncher.exe 84 RegSetInfoKey HKCR\exefile SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 97 12:38:31,5830393 MCLauncher.exe 84 RegQueryKey HKCR\exefile SUCCESS Query: Name 97 12:38:31,5830448 MCLauncher.exe 84 RegQueryKey HKCR\exefile SUCCESS Query: HandleTags, HandleTags: 0x401 97 12:38:31,5830526 MCLauncher.exe 84 RegOpenKey HKCU\Software\Classes\exefile\CurVer NAME NOT FOUND Desired Access: Query Value 97 12:38:31,5830598 MCLauncher.exe 84 RegQueryKey HKCR\exefile SUCCESS Query: HandleTags, HandleTags: 0x401 97 12:38:31,5830648 MCLauncher.exe 84 RegOpenKey HKCR\exefile\CurVer NAME NOT FOUND Desired Access: Query Value 97 12:38:31,5830714 MCLauncher.exe 84 RegQueryKey HKCR\exefile SUCCESS Query: Name 97 12:38:31,5830764 MCLauncher.exe 84 RegQueryKey HKCR\exefile SUCCESS Query: HandleTags, HandleTags: 0x401 97 12:38:31,5830836 MCLauncher.exe 84 RegOpenKey HKCU\Software\Classes\exefile NAME NOT FOUND Desired Access: Read 97 12:38:31,5830908 MCLauncher.exe 84 RegQueryKey HKCR\exefile SUCCESS Query: HandleTags, HandleTags: 0x401 97 12:38:31,5830958 MCLauncher.exe 84 RegOpenKey HKCR\exefile SUCCESS Desired Access: Read 97 12:38:31,5831030 MCLauncher.exe 84 RegCloseKey HKCR\exefile SUCCESS 97 12:38:31,5831080 MCLauncher.exe 84 RegQueryKey HKCR\exefile SUCCESS Query: Name 97 12:38:31,5831133 MCLauncher.exe 84 RegQueryKey HKCR\exefile SUCCESS Query: HandleTags, HandleTags: 0x401 97 12:38:31,5831205 MCLauncher.exe 84 RegOpenKey HKCU\Software\Classes\exefile\Progid NAME NOT FOUND Desired Access: Query Value 97 12:38:31,5831274 MCLauncher.exe 84 RegQueryKey HKCR\exefile SUCCESS Query: HandleTags, HandleTags: 0x401 97 12:38:31,5831324 MCLauncher.exe 84 RegOpenKey HKCR\exefile\Progid NAME NOT FOUND Desired Access: Query Value 97 12:38:31,5831423 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:31,5831471 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: Name 97 12:38:31,5831551 MCLauncher.exe 84 RegOpenKey HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\ShellCompatibility\ProgIDs\exefile NAME NOT FOUND Desired Access: Query Value 97 12:38:31,5831662 MCLauncher.exe 84 RegCloseKey HKCR\.exe SUCCESS 97 12:38:31,5831709 MCLauncher.exe 84 RegCloseKey HKCR\exefile SUCCESS 97 12:38:31,5831806 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:31,5831853 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: Name 97 12:38:31,5831928 MCLauncher.exe 84 RegOpenKey HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Policies\Explorer REPARSE Desired Access: Query Value 97 12:38:31,5832000 MCLauncher.exe 84 RegOpenKey HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer SUCCESS Desired Access: Query Value 97 12:38:31,5832066 MCLauncher.exe 84 RegSetInfoKey HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 97 12:38:31,5832111 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer\InheritConsoleHandles NAME NOT FOUND Length: 144 97 12:38:31,5832255 MCLauncher.exe 84 RegCloseKey HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer SUCCESS 97 12:38:31,5832324 MCLauncher.exe 84 RegQueryKey HKCU SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:31,5832374 MCLauncher.exe 84 RegQueryKey HKCU SUCCESS Query: Name 97 12:38:31,5832451 MCLauncher.exe 84 RegOpenKey HKCU\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer SUCCESS Desired Access: Query Value 97 12:38:31,5832546 MCLauncher.exe 84 RegSetInfoKey HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 97 12:38:31,5832587 MCLauncher.exe 84 RegQueryValue HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer\InheritConsoleHandles NAME NOT FOUND Length: 144 97 12:38:31,5832706 MCLauncher.exe 84 RegCloseKey HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer SUCCESS 97 12:38:31,5832759 MCLauncher.exe 84 RegQueryKey HKCR\exefile\shell\open SUCCESS Query: Name 97 12:38:31,5832825 MCLauncher.exe 84 RegQueryKey HKCR\exefile\shell\open SUCCESS Query: HandleTags, HandleTags: 0x401 97 12:38:31,5832922 MCLauncher.exe 84 RegOpenKey HKCU\Software\Classes\exefile\shell\open\ddeexec NAME NOT FOUND Desired Access: Query Value 97 12:38:31,5833008 MCLauncher.exe 84 RegQueryKey HKCR\exefile\shell\open SUCCESS Query: HandleTags, HandleTags: 0x401 97 12:38:31,5833061 MCLauncher.exe 84 RegOpenKey HKCR\exefile\shell\open\ddeexec NAME NOT FOUND Desired Access: Query Value 97 12:38:31,5833446 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:31,5833499 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: Name 97 12:38:31,5833582 MCLauncher.exe 84 RegOpenKey HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Policies\Explorer REPARSE Desired Access: Query Value 97 12:38:31,5833657 MCLauncher.exe 84 RegOpenKey HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer SUCCESS Desired Access: Query Value 97 12:38:31,5833720 MCLauncher.exe 84 RegSetInfoKey HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 97 12:38:31,5833767 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer\RestrictRun NAME NOT FOUND Length: 144 97 12:38:31,5833898 MCLauncher.exe 84 RegCloseKey HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer SUCCESS 97 12:38:31,5833967 MCLauncher.exe 84 RegQueryKey HKCU SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:31,5834019 MCLauncher.exe 84 RegQueryKey HKCU SUCCESS Query: Name 97 12:38:31,5834094 MCLauncher.exe 84 RegOpenKey HKCU\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer SUCCESS Desired Access: Query Value 97 12:38:31,5834175 MCLauncher.exe 84 RegSetInfoKey HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 97 12:38:31,5834219 MCLauncher.exe 84 RegQueryValue HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer\RestrictRun NAME NOT FOUND Length: 144 97 12:38:31,5834335 MCLauncher.exe 84 RegCloseKey HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer SUCCESS 97 12:38:31,5834410 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:31,5834463 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: Name 97 12:38:31,5834546 MCLauncher.exe 84 RegOpenKey HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Policies\Explorer REPARSE Desired Access: Query Value 97 12:38:31,5834615 MCLauncher.exe 84 RegOpenKey HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer SUCCESS Desired Access: Query Value 97 12:38:31,5834673 MCLauncher.exe 84 RegSetInfoKey HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 97 12:38:31,5834715 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer\DisallowRun NAME NOT FOUND Length: 144 97 12:38:31,5834834 MCLauncher.exe 84 RegCloseKey HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer SUCCESS 97 12:38:31,5834898 MCLauncher.exe 84 RegQueryKey HKCU SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:31,5834948 MCLauncher.exe 84 RegQueryKey HKCU SUCCESS Query: Name 97 12:38:31,5835022 MCLauncher.exe 84 RegOpenKey HKCU\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer SUCCESS Desired Access: Query Value 97 12:38:31,5835100 MCLauncher.exe 84 RegSetInfoKey HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 97 12:38:31,5835142 MCLauncher.exe 84 RegQueryValue HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer\DisallowRun NAME NOT FOUND Length: 144 97 12:38:31,5835252 MCLauncher.exe 84 RegCloseKey HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer SUCCESS 97 12:38:31,5835391 MCLauncher.exe 84 RegQueryKey HKCU SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:31,5835444 MCLauncher.exe 84 RegQueryKey HKCU SUCCESS Query: Name 97 12:38:31,5835516 MCLauncher.exe 84 RegOpenKey HKCU\Software\Microsoft\Windows\CurrentVersion\App Paths\MCLauncher.exe NAME NOT FOUND Desired Access: Read 97 12:38:31,5835637 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:31,5835682 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: Name 97 12:38:31,5835895 MCLauncher.exe 84 RegOpenKey HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\App Paths\MCLauncher.exe REPARSE Desired Access: Read 97 12:38:31,5835984 MCLauncher.exe 84 RegOpenKey HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Paths\MCLauncher.exe NAME NOT FOUND Desired Access: Read 97 12:38:31,5836205 MCLauncher.exe 84 RegQueryKey HKCR\exefile\shell\open SUCCESS Query: Name 97 12:38:31,5836280 MCLauncher.exe 84 RegQueryKey HKCR\exefile\shell\open SUCCESS Query: HandleTags, HandleTags: 0x401 97 12:38:31,5836380 MCLauncher.exe 84 RegOpenKey HKCU\Software\Classes\exefile\shell\open NAME NOT FOUND Desired Access: Maximum Allowed 97 12:38:31,5836449 MCLauncher.exe 84 RegQueryValue HKCR\exefile\shell\open\SetWorkingDirectoryFromTarget NAME NOT FOUND Length: 144 97 12:38:31,5836577 MCLauncher.exe 84 RegQueryKey HKCR\exefile\shell\open SUCCESS Query: Name 97 12:38:31,5836638 MCLauncher.exe 84 RegQueryKey HKCR\exefile\shell\open SUCCESS Query: HandleTags, HandleTags: 0x401 97 12:38:31,5836729 MCLauncher.exe 84 RegOpenKey HKCU\Software\Classes\exefile\shell\open NAME NOT FOUND Desired Access: Maximum Allowed 97 12:38:31,5836790 MCLauncher.exe 84 RegQueryValue HKCR\exefile\shell\open\NoWorkingDirectory NAME NOT FOUND Length: 144 97 12:38:31,5899025 MCLauncher.exe 84 RegQueryKey HKCU SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:31,5899122 MCLauncher.exe 84 RegQueryKey HKCU SUCCESS Query: Name 97 12:38:31,5899247 MCLauncher.exe 84 RegOpenKey HKCU\Software\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\CPC\Volume SUCCESS Desired Access: Read 97 12:38:31,5899432 MCLauncher.exe 84 RegSetInfoKey HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\CPC\Volume SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 97 12:38:31,5899518 MCLauncher.exe 84 RegQueryKey HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\CPC\Volume SUCCESS Query: HandleTags, HandleTags: 0x400 97 12:38:31,5899582 MCLauncher.exe 84 RegOpenKey HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\CPC\Volume\{110924bd-0000-0000-0000-100000000000}\ SUCCESS Desired Access: Read 97 12:38:31,5899696 MCLauncher.exe 84 RegCloseKey HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\CPC\Volume SUCCESS 97 12:38:31,5899773 MCLauncher.exe 84 RegQueryValue HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\CPC\Volume\{110924bd-0000-0000-0000-100000000000}\Data BUFFER OVERFLOW Length: 144 97 12:38:31,5899923 MCLauncher.exe 84 RegQueryValue HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\CPC\Volume\{110924bd-0000-0000-0000-100000000000}\Data SUCCESS Type: REG_BINARY, Length: 1 370, Data: D6 0D 00 00 0D F0 AD BA 01 00 00 00 08 00 00 00 97 12:38:31,5900075 MCLauncher.exe 84 RegCloseKey HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\CPC\Volume\{110924bd-0000-0000-0000-100000000000} SUCCESS 97 12:38:31,5900153 MCLauncher.exe 84 RegQueryKey HKCU SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:31,5900203 MCLauncher.exe 84 RegQueryKey HKCU SUCCESS Query: Name 97 12:38:31,5900289 MCLauncher.exe 84 RegOpenKey HKCU\Software\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\CPC\Volume SUCCESS Desired Access: Read 97 12:38:31,5900383 MCLauncher.exe 84 RegSetInfoKey HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\CPC\Volume SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 97 12:38:31,5900446 MCLauncher.exe 84 RegQueryKey HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\CPC\Volume SUCCESS Query: HandleTags, HandleTags: 0x400 97 12:38:31,5900499 MCLauncher.exe 84 RegOpenKey HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\CPC\Volume\{110924bd-0000-0000-0000-100000000000}\ SUCCESS Desired Access: Read 97 12:38:31,5900574 MCLauncher.exe 84 RegCloseKey HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\CPC\Volume SUCCESS 97 12:38:31,5900618 MCLauncher.exe 84 RegQueryValue HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\CPC\Volume\{110924bd-0000-0000-0000-100000000000}\Generation SUCCESS Type: REG_DWORD, Length: 4, Data: 1 97 12:38:31,5900757 MCLauncher.exe 84 RegCloseKey HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\CPC\Volume\{110924bd-0000-0000-0000-100000000000} SUCCESS 97 12:38:31,5901596 MCLauncher.exe 84 RegQueryKey HKCU SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:31,5901654 MCLauncher.exe 84 RegQueryKey HKCU SUCCESS Query: Name 97 12:38:31,5901740 MCLauncher.exe 84 RegOpenKey HKCU\Software\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\CPC\Volume SUCCESS Desired Access: Read 97 12:38:31,5901840 MCLauncher.exe 84 RegSetInfoKey HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\CPC\Volume SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 97 12:38:31,5901904 MCLauncher.exe 84 RegQueryKey HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\CPC\Volume SUCCESS Query: HandleTags, HandleTags: 0x400 97 12:38:31,5901956 MCLauncher.exe 84 RegOpenKey HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\CPC\Volume\{110924bd-0000-0000-0000-501f00000000}\ SUCCESS Desired Access: Read 97 12:38:31,5902040 MCLauncher.exe 84 RegCloseKey HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\CPC\Volume SUCCESS 97 12:38:31,5902087 MCLauncher.exe 84 RegQueryValue HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\CPC\Volume\{110924bd-0000-0000-0000-501f00000000}\Data BUFFER OVERFLOW Length: 144 97 12:38:31,5902211 MCLauncher.exe 84 RegQueryValue HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\CPC\Volume\{110924bd-0000-0000-0000-501f00000000}\Data SUCCESS Type: REG_BINARY, Length: 1 370, Data: D6 0D 00 00 0D F0 AD BA 41 00 00 00 08 00 00 00 97 12:38:31,5902350 MCLauncher.exe 84 RegCloseKey HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\CPC\Volume\{110924bd-0000-0000-0000-501f00000000} SUCCESS 97 12:38:31,5902419 MCLauncher.exe 84 RegQueryKey HKCU SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:31,5902469 MCLauncher.exe 84 RegQueryKey HKCU SUCCESS Query: Name 97 12:38:31,5902547 MCLauncher.exe 84 RegOpenKey HKCU\Software\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\CPC\Volume SUCCESS Desired Access: Read 97 12:38:31,5902632 MCLauncher.exe 84 RegSetInfoKey HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\CPC\Volume SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 97 12:38:31,5902693 MCLauncher.exe 84 RegQueryKey HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\CPC\Volume SUCCESS Query: HandleTags, HandleTags: 0x400 97 12:38:31,5902746 MCLauncher.exe 84 RegOpenKey HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\CPC\Volume\{110924bd-0000-0000-0000-501f00000000}\ SUCCESS Desired Access: Read 97 12:38:31,5902815 MCLauncher.exe 84 RegCloseKey HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\CPC\Volume SUCCESS 97 12:38:31,5902857 MCLauncher.exe 84 RegQueryValue HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\CPC\Volume\{110924bd-0000-0000-0000-501f00000000}\Generation SUCCESS Type: REG_DWORD, Length: 4, Data: 1 97 12:38:31,5902987 MCLauncher.exe 84 RegCloseKey HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\CPC\Volume\{110924bd-0000-0000-0000-501f00000000} SUCCESS 97 12:38:31,5903957 MCLauncher.exe 84 RegQueryKey HKCU SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:31,5904012 MCLauncher.exe 84 RegQueryKey HKCU SUCCESS Query: Name 97 12:38:31,5904098 MCLauncher.exe 84 RegOpenKey HKCU\Software\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\CPC\Volume SUCCESS Desired Access: Read 97 12:38:31,5904195 MCLauncher.exe 84 RegSetInfoKey HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\CPC\Volume SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 97 12:38:31,5904256 MCLauncher.exe 84 RegQueryKey HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\CPC\Volume SUCCESS Query: HandleTags, HandleTags: 0x400 97 12:38:31,5904311 MCLauncher.exe 84 RegOpenKey HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\CPC\Volume\{24d09a14-8b74-11e8-8e46-806e6f6e6963}\ SUCCESS Desired Access: Read 97 12:38:31,5904561 MCLauncher.exe 84 RegCloseKey HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\CPC\Volume SUCCESS 97 12:38:31,5904627 MCLauncher.exe 84 RegQueryValue HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\CPC\Volume\{24d09a14-8b74-11e8-8e46-806e6f6e6963}\Data BUFFER OVERFLOW Length: 144 97 12:38:31,5904805 MCLauncher.exe 84 RegQueryValue HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\CPC\Volume\{24d09a14-8b74-11e8-8e46-806e6f6e6963}\Data SUCCESS Type: REG_BINARY, Length: 3 542, Data: D6 0D 00 00 00 00 00 00 01 00 00 00 10 00 00 00 97 12:38:31,5904951 MCLauncher.exe 84 RegCloseKey HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\CPC\Volume\{24d09a14-8b74-11e8-8e46-806e6f6e6963} SUCCESS 97 12:38:31,5905023 MCLauncher.exe 84 RegQueryKey HKCU SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:31,5905076 MCLauncher.exe 84 RegQueryKey HKCU SUCCESS Query: Name 97 12:38:31,5905154 MCLauncher.exe 84 RegOpenKey HKCU\Software\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\CPC\Volume SUCCESS Desired Access: Read 97 12:38:31,5905240 MCLauncher.exe 84 RegSetInfoKey HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\CPC\Volume SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 97 12:38:31,5905300 MCLauncher.exe 84 RegQueryKey HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\CPC\Volume SUCCESS Query: HandleTags, HandleTags: 0x400 97 12:38:31,5905353 MCLauncher.exe 84 RegOpenKey HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\CPC\Volume\{24d09a14-8b74-11e8-8e46-806e6f6e6963}\ SUCCESS Desired Access: Read 97 12:38:31,5905422 MCLauncher.exe 84 RegCloseKey HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\CPC\Volume SUCCESS 97 12:38:31,5905464 MCLauncher.exe 84 RegQueryValue HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\CPC\Volume\{24d09a14-8b74-11e8-8e46-806e6f6e6963}\Generation SUCCESS Type: REG_DWORD, Length: 4, Data: 2 97 12:38:31,5905594 MCLauncher.exe 84 RegCloseKey HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\CPC\Volume\{24d09a14-8b74-11e8-8e46-806e6f6e6963} SUCCESS 97 12:38:31,5907462 MCLauncher.exe 84 RegQueryKey HKCU SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:31,5907522 MCLauncher.exe 84 RegQueryKey HKCU SUCCESS Query: Name 97 12:38:31,5907611 MCLauncher.exe 84 RegOpenKey HKCU\Software\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\CPC\Volume SUCCESS Desired Access: Read 97 12:38:31,5907711 MCLauncher.exe 84 RegSetInfoKey HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\CPC\Volume SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 97 12:38:31,5907777 MCLauncher.exe 84 RegQueryKey HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\CPC\Volume SUCCESS Query: HandleTags, HandleTags: 0x400 97 12:38:31,5907833 MCLauncher.exe 84 RegOpenKey HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\CPC\Volume\{110924bd-0000-0000-0000-501f00000000}\ SUCCESS Desired Access: Read 97 12:38:31,5907913 MCLauncher.exe 84 RegCloseKey HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\CPC\Volume SUCCESS 97 12:38:31,5907957 MCLauncher.exe 84 RegQueryValue HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\CPC\Volume\{110924bd-0000-0000-0000-501f00000000}\Generation SUCCESS Type: REG_DWORD, Length: 4, Data: 1 97 12:38:31,5908099 MCLauncher.exe 84 RegCloseKey HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\CPC\Volume\{110924bd-0000-0000-0000-501f00000000} SUCCESS 97 12:38:31,5911130 MCLauncher.exe 84 CreateFile C:\Users\User\AppData\Roaming\MCLauncher SUCCESS Desired Access: Read Attributes, Disposition: Open, Options: Open Reparse Point, Attributes: n/a, ShareMode: Read, Write, Delete, AllocationSize: n/a, OpenResult: Opened 97 12:38:31,5911343 MCLauncher.exe 84 QueryBasicInformationFile C:\Users\User\AppData\Roaming\MCLauncher SUCCESS CreationTime: 24.08.2018 12:30:11, LastAccessTime: 24.08.2018 12:30:32, LastWriteTime: 24.08.2018 12:30:32, ChangeTime: 24.08.2018 12:30:32, FileAttributes: D 97 12:38:31,5911437 MCLauncher.exe 84 CloseFile C:\Users\User\AppData\Roaming\MCLauncher SUCCESS 97 12:38:31,5912529 MCLauncher.exe 84 CreateFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Desired Access: Read Data/List Directory, Execute/Traverse, Read Attributes, Synchronize, Disposition: Open, Options: Synchronous IO Non-Alert, Non-Directory File, Attributes: N, ShareMode: Read, Delete, AllocationSize: n/a, OpenResult: Opened 97 12:38:31,5913263 MCLauncher.exe 84 WriteFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 0, Length: 1 048 576, I/O Flags: Non-cached, Paging I/O, Synchronous Paging I/O, Priority: Normal 97 12:38:31,5919561 MCLauncher.exe 84 WriteFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 1 048 576, Length: 1 048 576, I/O Flags: Non-cached, Paging I/O, Synchronous Paging I/O, Priority: Normal 97 12:38:31,5924589 MCLauncher.exe 84 WriteFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 2 097 152, Length: 1 048 576, I/O Flags: Non-cached, Paging I/O, Synchronous Paging I/O, Priority: Normal 97 12:38:31,5929762 MCLauncher.exe 84 WriteFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 3 145 728, Length: 1 048 576, I/O Flags: Non-cached, Paging I/O, Synchronous Paging I/O, Priority: Normal 97 12:38:31,5935630 MCLauncher.exe 84 WriteFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 4 194 304, Length: 1 048 576, I/O Flags: Non-cached, Paging I/O, Synchronous Paging I/O, Priority: Normal 97 12:38:31,6024138 MCLauncher.exe 84 WriteFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 5 242 880, Length: 1 048 576, I/O Flags: Non-cached, Paging I/O, Synchronous Paging I/O, Priority: Normal 97 12:38:31,6029036 MCLauncher.exe 84 WriteFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 6 291 456, Length: 1 048 576, I/O Flags: Non-cached, Paging I/O, Synchronous Paging I/O, Priority: Normal 97 12:38:31,6033832 MCLauncher.exe 84 WriteFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 7 340 032, Length: 1 048 576, I/O Flags: Non-cached, Paging I/O, Synchronous Paging I/O, Priority: Normal 97 12:38:31,6190037 MCLauncher.exe 84 WriteFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 8 388 608, Length: 1 048 576, I/O Flags: Non-cached, Paging I/O, Synchronous Paging I/O, Priority: Normal 97 12:38:31,6195317 MCLauncher.exe 84 WriteFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 9 437 184, Length: 1 048 576, I/O Flags: Non-cached, Paging I/O, Synchronous Paging I/O, Priority: Normal 97 12:38:31,6200157 MCLauncher.exe 84 WriteFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 10 485 760, Length: 1 048 576, I/O Flags: Non-cached, Paging I/O, Synchronous Paging I/O, Priority: Normal 97 12:38:31,6205909 MCLauncher.exe 84 WriteFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 11 534 336, Length: 1 048 576, I/O Flags: Non-cached, Paging I/O, Synchronous Paging I/O, Priority: Normal 97 12:38:31,6210447 MCLauncher.exe 84 WriteFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 12 582 912, Length: 1 048 576, I/O Flags: Non-cached, Paging I/O, Synchronous Paging I/O, Priority: Normal 97 12:38:31,6962466 MCLauncher.exe 84 WriteFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 13 631 488, Length: 1 048 576, I/O Flags: Non-cached, Paging I/O, Synchronous Paging I/O, Priority: Normal 97 12:38:31,6968182 MCLauncher.exe 84 WriteFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 14 680 064, Length: 1 048 576, I/O Flags: Non-cached, Paging I/O, Synchronous Paging I/O, Priority: Normal 97 12:38:31,6972869 MCLauncher.exe 84 WriteFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 15 728 640, Length: 1 048 576, I/O Flags: Non-cached, Paging I/O, Synchronous Paging I/O, Priority: Normal 97 12:38:31,6976914 MCLauncher.exe 84 WriteFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 240 064, Length: 4 096, I/O Flags: Non-cached, Paging I/O, Synchronous Paging I/O, Priority: Normal 97 12:38:31,6977505 MCLauncher.exe 84 SetEndOfFileInformationFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS EndOfFile: 17 240 149 97 12:38:31,6977917 MCLauncher.exe 84 CreateFileMapping C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS SyncType: SyncTypeOther 97 12:38:31,6978297 MCLauncher.exe 84 CreateFileMapping C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe FILE LOCKED WITH ONLY READERS SyncType: SyncTypeCreateSection, PageProtection: PAGE_EXECUTE|PAGE_NOCACHE 97 12:38:31,6978502 MCLauncher.exe 84 QueryNameInformationFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Name: \Users\User\Downloads\MCLauncher.exe 97 12:38:31,6979876 MCLauncher.exe 84 CreateFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Desired Access: Synchronize, Disposition: Open, Options: Synchronous IO Non-Alert, Attributes: N, ShareMode: Read, Write, Delete, AllocationSize: n/a, OpenResult: Opened 97 12:38:31,6980114 MCLauncher.exe 84 CloseFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS 97 12:38:31,6980433 MCLauncher.exe 84 QueryNameInformationFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Name: \Users\User\Downloads\MCLauncher.exe 97 12:38:31,6981336 MCLauncher.exe 84 CreateFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Desired Access: Synchronize, Disposition: Open, Options: Synchronous IO Non-Alert, Attributes: N, ShareMode: Read, Write, Delete, AllocationSize: n/a, OpenResult: Opened 97 12:38:31,6981511 MCLauncher.exe 84 CloseFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS 97 12:38:31,6982309 MCLauncher.exe 84 QueryStandardInformationFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS AllocationSize: 17 244 160, EndOfFile: 17 240 149, NumberOfLinks: 1, DeletePending: False, Directory: False 97 12:38:31,6985093 MCLauncher.exe 84 CreateFileMapping C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS SyncType: SyncTypeOther 97 12:38:31,6985331 MCLauncher.exe 84 RegOpenKey HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\MCLauncher.exe NAME NOT FOUND Desired Access: Query Value, Enumerate Sub Keys 97 12:38:31,6985589 MCLauncher.exe 84 QuerySecurityFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Information: Label 97 12:38:31,6985852 MCLauncher.exe 84 QuerySecurityFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Information: Owner, Group, DACL, SACL, Label, Process Trust Label 97 12:38:31,6985941 MCLauncher.exe 84 QueryNameInformationFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Name: \Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe 97 12:38:31,6988867 MCLauncher.exe 84 QueryNameInformationFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Name: \Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe 97 12:38:31,6989014 MCLauncher.exe 84 QueryNameInformationFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Name: \Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe 97 12:38:31,6989274 MCLauncher.exe 84 QueryNameInformationFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Name: \Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe 97 12:38:31,6989512 MCLauncher.exe 84 QueryNameInformationFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Name: \Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe 97 12:38:31,6990532 MCLauncher.exe 84 CreateFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Desired Access: Synchronize, Disposition: Open, Options: Synchronous IO Non-Alert, Attributes: N, ShareMode: Read, Write, Delete, AllocationSize: n/a, OpenResult: Opened 97 12:38:31,6990731 MCLauncher.exe 84 CloseFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS 97 12:38:31,6991086 MCLauncher.exe 84 QueryNameInformationFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Name: \Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe 97 12:38:31,6991360 MCLauncher.exe 84 QueryNameInformationFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Name: \Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe 97 12:38:31,6992236 MCLauncher.exe 84 CreateFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Desired Access: Synchronize, Disposition: Open, Options: Synchronous IO Non-Alert, Attributes: N, ShareMode: Read, Write, Delete, AllocationSize: n/a, OpenResult: Opened 97 12:38:31,6992407 MCLauncher.exe 84 CloseFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS 97 12:38:31,6992709 MCLauncher.exe 84 QueryNameInformationFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Name: \Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe 97 12:38:31,6993543 MCLauncher.exe 84 CreateFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Desired Access: Synchronize, Disposition: Open, Options: Synchronous IO Non-Alert, Attributes: N, ShareMode: Read, Write, Delete, AllocationSize: n/a, OpenResult: Opened 97 12:38:31,6993710 MCLauncher.exe 84 CloseFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS 97 12:38:31,6993978 MCLauncher.exe 84 QueryNameInformationFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Name: \Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe 97 12:38:31,6994289 MCLauncher.exe 84 QueryNameInformationFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Name: \Users\User\Downloads\MCLauncher.exe 97 12:38:31,6995275 MCLauncher.exe 84 CreateFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Desired Access: Synchronize, Disposition: Open, Options: Synchronous IO Non-Alert, Attributes: N, ShareMode: Read, Write, Delete, AllocationSize: n/a, OpenResult: Opened 97 12:38:31,6995444 MCLauncher.exe 84 CloseFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS 97 12:38:32,5310663 MCLauncher.exe 84 Process Create C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS PID: 6080, Command line: "C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe" 98 12:38:32,5310719 MCLauncher.exe 6080 Process Start SUCCESS Parent PID: 84, Command line: "C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe" , Current directory: C:\Users\User\AppData\Roaming\MCLauncher\, Environment: =::=::\ =C:=C:\Users\User\AppData\Roaming\MCLauncher ALLUSERSPROFILE=C:\ProgramData APPDATA=C:\Users\User\AppData\Roaming CommonProgramFiles=C:\Program Files (x86)\Common Files CommonProgramFiles(x86)=C:\Program Files (x86)\Common Files CommonProgramW6432=C:\Program Files\Common Files COMPUTERNAME=WIN-0UOTFKKVN1S ComSpec=C:\Windows\system32\cmd.exe FPS_BROWSER_APP_PROFILE_STRING=Internet Explorer FPS_BROWSER_USER_PROFILE_STRING=Default HOMEDRIVE=C: HOMEPATH=\Users\User LOCALAPPDATA=C:\Users\User\AppData\Local LOGONSERVER=\\WIN-0UOTFKKVN1S NUMBER_OF_PROCESSORS=1 OneDrive=C:\Users\User\OneDrive OS=Windows_NT Path=C:\Program Files (x86)\Common Files\Oracle\Java\javapath;C:\Windows\system32;C:\Windows;C:\Windows\System32\Wbem;C:\Windows\System32\WindowsPowerShell\v1.0\;C:\Users\User\AppData\Local\Microsoft\WindowsApps; PATHEXT=.COM;.EXE;.BAT;.CMD;.VBS;.VBE;.JS;.JSE;.WSF;.WSH;.MSC PROCESSOR_ARCHITECTURE=x86 PROCESSOR_ARCHITEW6432=AMD64 PROCESSOR_IDENTIFIER=Intel64 Family 6 Model 158 Stepping 10, GenuineIntel PROCESSOR_LEVEL=6 PROCESSOR_REVISION=9e0a ProgramData=C:\ProgramData ProgramFiles=C:\Program Files (x86) ProgramFiles(x86)=C:\Program Files (x86) ProgramW6432=C:\Program Files PSModulePath=C:\Program Files\WindowsPowerShell\Modules;C:\Windows\system32\WindowsPowerShell\v1.0\Modules PUBLIC=C:\Users\Public SESSIONNAME=Console SystemDrive=C: SystemRoot=C:\Windows TEMP=C:\Users\User\AppData\Local\Temp TMP=C:\Users\User\AppData\Local\Temp USERDOMAIN=WIN-0UOTFKKVN1S USERDOMAIN_ROAMINGPROFILE=WIN-0UOTFKKVN1S USERNAME=User USERPROFILE=C:\Users\User windir=C:\Windows __COMPAT_LAYER=ElevateCreateProcess 98 12:38:32,7039150 MCLauncher.exe 6080 Thread Create SUCCESS Thread ID: 12028 97 12:38:32,7039723 MCLauncher.exe 84 RegOpenKey HKLM\System\CurrentControlSet\Control\Session Manager\AppCertDlls REPARSE Desired Access: Query Value 97 12:38:32,7039903 MCLauncher.exe 84 RegOpenKey HKLM\System\CurrentControlSet\Control\Session Manager\AppCertDlls NAME NOT FOUND Desired Access: Query Value 97 12:38:32,7040089 MCLauncher.exe 84 RegOpenKey HKLM\System\CurrentControlSet\Control\SafeBoot\Option REPARSE Desired Access: Query Value, Set Value 97 12:38:32,7040150 MCLauncher.exe 84 RegOpenKey HKLM\System\CurrentControlSet\Control\SafeBoot\Option NAME NOT FOUND Desired Access: Query Value, Set Value 97 12:38:32,7040255 MCLauncher.exe 84 RegOpenKey HKLM\Software\WOW6432Node\Policies\Microsoft\Windows\Safer\CodeIdentifiers REPARSE Desired Access: Query Value 97 12:38:32,7040349 MCLauncher.exe 84 RegOpenKey HKLM\SOFTWARE\Policies\Microsoft\Windows\Safer\CodeIdentifiers SUCCESS Desired Access: Query Value 97 12:38:32,7040482 MCLauncher.exe 84 RegSetInfoKey HKLM\SOFTWARE\Policies\Microsoft\Windows\safer\codeidentifiers SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 97 12:38:32,7040540 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\Policies\Microsoft\Windows\safer\codeidentifiers\TransparentEnabled NAME NOT FOUND Length: 80 97 12:38:32,7040726 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\Policies\Microsoft\Windows\safer\codeidentifiers\AuthenticodeEnabled SUCCESS Type: REG_DWORD, Length: 4, Data: 0 97 12:38:32,7040898 MCLauncher.exe 84 RegCloseKey HKLM\SOFTWARE\Policies\Microsoft\Windows\safer\codeidentifiers SUCCESS 97 12:38:32,7041042 MCLauncher.exe 84 RegOpenKey HKCU\Software\Policies\Microsoft\Windows\Safer\CodeIdentifiers NAME NOT FOUND Desired Access: Query Value 97 12:38:32,7041560 MCLauncher.exe 84 RegOpenKey HKCU\Software\Microsoft\Windows\CurrentVersion\Explorer\Shell Folders SUCCESS Desired Access: Query Value 97 12:38:32,7041665 MCLauncher.exe 84 RegSetInfoKey HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Shell Folders SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 97 12:38:32,7041715 MCLauncher.exe 84 RegQueryValue HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Shell Folders\Cache SUCCESS Type: REG_SZ, Length: 112, Data: C:\Users\User\AppData\Local\Microsoft\Windows\INetCache 97 12:38:32,7041915 MCLauncher.exe 84 RegCloseKey HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Shell Folders SUCCESS 97 12:38:32,7042020 MCLauncher.exe 84 RegOpenKey HKCU\Software\Microsoft\Windows NT\CurrentVersion SUCCESS Desired Access: Enumerate Sub Keys 97 12:38:32,7042117 MCLauncher.exe 84 RegSetInfoKey HKCU\SOFTWARE\Microsoft\Windows NT\CurrentVersion SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 97 12:38:32,7042197 MCLauncher.exe 84 RegQueryKey HKCU\SOFTWARE\Microsoft\Windows NT\CurrentVersion SUCCESS Query: HandleTags, HandleTags: 0x400 97 12:38:32,7042264 MCLauncher.exe 84 RegOpenKey HKCU\SOFTWARE\Microsoft\Windows NT\CurrentVersion\AppCompatFlags\Layers SUCCESS Desired Access: Query Value 97 12:38:32,7042352 MCLauncher.exe 84 RegSetInfoKey HKCU\SOFTWARE\Microsoft\Windows NT\CurrentVersion\AppCompatFlags\Layers SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 97 12:38:32,7042402 MCLauncher.exe 84 RegQueryValue HKCU\SOFTWARE\Microsoft\Windows NT\CurrentVersion\AppCompatFlags\Layers\C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe NAME NOT FOUND Length: 16 97 12:38:32,7042538 MCLauncher.exe 84 RegCloseKey HKCU\SOFTWARE\Microsoft\Windows NT\CurrentVersion\AppCompatFlags\Layers SUCCESS 97 12:38:32,7042859 MCLauncher.exe 84 QuerySecurityFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Information: Owner, Group, DACL, SACL, Label, Process Trust Label 97 12:38:32,7044544 MCLauncher.exe 84 CreateFile C:\Windows\AppPatch\sysmain.sdb SUCCESS Desired Access: Generic Read, Disposition: Open, Options: Synchronous IO Non-Alert, Non-Directory File, Attributes: N, ShareMode: Read, AllocationSize: n/a, OpenResult: Opened 97 12:38:32,7044921 MCLauncher.exe 84 QueryBasicInformationFile C:\Windows\AppPatch\sysmain.sdb SUCCESS CreationTime: 20.07.2018 1:33:29, LastAccessTime: 20.07.2018 1:33:29, LastWriteTime: 18.09.2017 4:09:15, ChangeTime: 20.07.2018 19:23:27, FileAttributes: A 97 12:38:32,7045034 MCLauncher.exe 84 CloseFile C:\Windows\AppPatch\sysmain.sdb SUCCESS 97 12:38:32,7046120 MCLauncher.exe 84 CreateFile C:\Windows\AppPatch\apppatch64\sysmain.sdb SUCCESS Desired Access: Generic Read, Disposition: Open, Options: Synchronous IO Non-Alert, Non-Directory File, Attributes: N, ShareMode: Read, AllocationSize: n/a, OpenResult: Opened 97 12:38:32,7046392 MCLauncher.exe 84 QueryBasicInformationFile C:\Windows\AppPatch\apppatch64\sysmain.sdb SUCCESS CreationTime: 20.07.2018 1:21:40, LastAccessTime: 20.07.2018 1:21:40, LastWriteTime: 18.09.2017 4:15:39, ChangeTime: 20.07.2018 19:23:27, FileAttributes: A 97 12:38:32,7046489 MCLauncher.exe 84 CloseFile C:\Windows\AppPatch\apppatch64\sysmain.sdb SUCCESS 97 12:38:32,7046733 MCLauncher.exe 84 QueryBasicInformationFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS CreationTime: 24.08.2018 12:30:11, LastAccessTime: 24.08.2018 12:30:11, LastWriteTime: 24.08.2018 12:38:31, ChangeTime: 24.08.2018 12:38:31, FileAttributes: A 97 12:38:32,7047115 MCLauncher.exe 84 QueryBasicInformationFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS CreationTime: 24.08.2018 12:30:11, LastAccessTime: 24.08.2018 12:30:11, LastWriteTime: 24.08.2018 12:38:31, ChangeTime: 24.08.2018 12:38:31, FileAttributes: A 97 12:38:32,7047289 MCLauncher.exe 84 QueryNameInformationFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Name: \Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe 97 12:38:32,7048835 MCLauncher.exe 84 CreateFile C:\Windows\AppPatch\sysmain.sdb SUCCESS Desired Access: Generic Read, Disposition: Open, Options: Synchronous IO Non-Alert, Non-Directory File, Attributes: N, ShareMode: Read, AllocationSize: n/a, OpenResult: Opened 97 12:38:32,7049090 MCLauncher.exe 84 QueryStandardInformationFile C:\Windows\AppPatch\sysmain.sdb SUCCESS AllocationSize: 3 866 624, EndOfFile: 3 863 594, NumberOfLinks: 2, DeletePending: False, Directory: False 97 12:38:32,7049182 MCLauncher.exe 84 QueryStandardInformationFile C:\Windows\AppPatch\sysmain.sdb SUCCESS AllocationSize: 3 866 624, EndOfFile: 3 863 594, NumberOfLinks: 2, DeletePending: False, Directory: False 97 12:38:32,7049284 MCLauncher.exe 84 CreateFileMapping C:\Windows\AppPatch\sysmain.sdb FILE LOCKED WITH ONLY READERS SyncType: SyncTypeCreateSection, PageProtection: PAGE_EXECUTE_READ|PAGE_NOCACHE 97 12:38:32,7049464 MCLauncher.exe 84 QueryNameInformationFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Name: \Users\User\Downloads\MCLauncher.exe 97 12:38:32,7050434 MCLauncher.exe 84 CreateFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Desired Access: Synchronize, Disposition: Open, Options: Synchronous IO Non-Alert, Attributes: N, ShareMode: Read, Write, Delete, AllocationSize: n/a, OpenResult: Opened 97 12:38:32,7050631 MCLauncher.exe 84 CloseFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS 97 12:38:32,7050947 MCLauncher.exe 84 QueryNameInformationFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Name: \Users\User\Downloads\MCLauncher.exe 97 12:38:32,7051825 MCLauncher.exe 84 CreateFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Desired Access: Synchronize, Disposition: Open, Options: Synchronous IO Non-Alert, Attributes: N, ShareMode: Read, Write, Delete, AllocationSize: n/a, OpenResult: Opened 97 12:38:32,7051999 MCLauncher.exe 84 CloseFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS 97 12:38:32,7052290 MCLauncher.exe 84 QueryStandardInformationFile C:\Windows\AppPatch\sysmain.sdb SUCCESS AllocationSize: 3 866 624, EndOfFile: 3 863 594, NumberOfLinks: 2, DeletePending: False, Directory: False 97 12:38:32,7052562 MCLauncher.exe 84 CreateFileMapping C:\Windows\AppPatch\sysmain.sdb SUCCESS SyncType: SyncTypeOther 97 12:38:32,7053598 MCLauncher.exe 84 QueryStandardInformationFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS AllocationSize: 17 244 160, EndOfFile: 17 240 149, NumberOfLinks: 1, DeletePending: False, Directory: False 97 12:38:32,7054077 MCLauncher.exe 84 RegOpenKey HKLM\Software\Microsoft\Windows NT\CurrentVersion\AppCompatFlags\Layers NAME NOT FOUND Desired Access: Read 97 12:38:32,7054266 MCLauncher.exe 84 RegOpenKey HKCU\Software\Microsoft\Windows NT\CurrentVersion\AppCompatFlags\Layers SUCCESS Desired Access: Read 97 12:38:32,7054365 MCLauncher.exe 84 RegQueryValue HKCU\SOFTWARE\Microsoft\Windows NT\CurrentVersion\AppCompatFlags\Layers\C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe NAME NOT FOUND Length: 1 024 97 12:38:32,7054465 MCLauncher.exe 84 RegCloseKey HKCU\SOFTWARE\Microsoft\Windows NT\CurrentVersion\AppCompatFlags\Layers SUCCESS 97 12:38:32,7054546 MCLauncher.exe 84 RegOpenKey HKLM\Software\Microsoft\Windows NT\CurrentVersion\AppCompatFlags\Custom\MCLauncher.exe NAME NOT FOUND Desired Access: Read 97 12:38:32,7054834 MCLauncher.exe 84 QueryStandardInformationFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS AllocationSize: 17 244 160, EndOfFile: 17 240 149, NumberOfLinks: 1, DeletePending: False, Directory: False 97 12:38:32,7054947 MCLauncher.exe 84 CreateFileMapping C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe FILE LOCKED WITH ONLY READERS SyncType: SyncTypeCreateSection, PageProtection: PAGE_EXECUTE|PAGE_NOCACHE 97 12:38:32,7055089 MCLauncher.exe 84 QueryNameInformationFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Name: \Users\User\Downloads\MCLauncher.exe 97 12:38:32,7056072 MCLauncher.exe 84 CreateFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Desired Access: Synchronize, Disposition: Open, Options: Synchronous IO Non-Alert, Attributes: N, ShareMode: Read, Write, Delete, AllocationSize: n/a, OpenResult: Opened 97 12:38:32,7056269 MCLauncher.exe 84 CloseFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS 97 12:38:32,7056590 MCLauncher.exe 84 QueryNameInformationFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Name: \Users\User\Downloads\MCLauncher.exe 97 12:38:32,7057674 MCLauncher.exe 84 CreateFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Desired Access: Synchronize, Disposition: Open, Options: Synchronous IO Non-Alert, Attributes: N, ShareMode: Read, Write, Delete, AllocationSize: n/a, OpenResult: Opened 97 12:38:32,7057887 MCLauncher.exe 84 CloseFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS 97 12:38:32,7058192 MCLauncher.exe 84 QueryStandardInformationFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS AllocationSize: 17 244 160, EndOfFile: 17 240 149, NumberOfLinks: 1, DeletePending: False, Directory: False 97 12:38:32,7058355 MCLauncher.exe 84 CreateFileMapping C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS SyncType: SyncTypeOther 97 12:38:32,7071898 MCLauncher.exe 84 RegOpenKey HKLM\Software\Microsoft\Windows NT\CurrentVersion\AppCompatFlags SUCCESS Desired Access: Read 97 12:38:32,7072166 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\AppCompatFlags\{82cd83da-d86b-4add-9ee3-92bcc3d5d6c0} NAME NOT FOUND Length: 20 97 12:38:32,7072305 MCLauncher.exe 84 RegCloseKey HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\AppCompatFlags SUCCESS 97 12:38:32,7072410 MCLauncher.exe 84 RegOpenKey HKCU\Software\Microsoft\Windows NT\CurrentVersion\AppCompatFlags SUCCESS Desired Access: Read 97 12:38:32,7072515 MCLauncher.exe 84 RegQueryValue HKCU\SOFTWARE\Microsoft\Windows NT\CurrentVersion\AppCompatFlags\{82cd83da-d86b-4add-9ee3-92bcc3d5d6c0} NAME NOT FOUND Length: 20 97 12:38:32,7072601 MCLauncher.exe 84 RegCloseKey HKCU\SOFTWARE\Microsoft\Windows NT\CurrentVersion\AppCompatFlags SUCCESS 97 12:38:32,7072975 MCLauncher.exe 84 ReadFile C:\Windows\AppPatch\sysmain.sdb SUCCESS Offset: 299 008, Length: 32 768, I/O Flags: Non-cached, Paging I/O, Synchronous Paging I/O, Priority: Normal 97 12:38:32,7493109 MCLauncher.exe 84 ReadFile C:\Windows\AppPatch\sysmain.sdb SUCCESS Offset: 2 363 392, Length: 32 768, I/O Flags: Non-cached, Paging I/O, Synchronous Paging I/O, Priority: Normal 97 12:38:32,7619729 MCLauncher.exe 84 RegOpenKey HKLM\Software\Microsoft\Windows NT\CurrentVersion\AppCompatFlags SUCCESS Desired Access: Read 97 12:38:32,7620009 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\AppCompatFlags\{82cd83da-d86b-4add-9ee3-92bcc3d5d6c0} NAME NOT FOUND Length: 20 97 12:38:32,7620180 MCLauncher.exe 84 RegCloseKey HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\AppCompatFlags SUCCESS 97 12:38:32,7620322 MCLauncher.exe 84 RegOpenKey HKCU\Software\Microsoft\Windows NT\CurrentVersion\AppCompatFlags SUCCESS Desired Access: Read 97 12:38:32,7620452 MCLauncher.exe 84 RegQueryValue HKCU\SOFTWARE\Microsoft\Windows NT\CurrentVersion\AppCompatFlags\{82cd83da-d86b-4add-9ee3-92bcc3d5d6c0} NAME NOT FOUND Length: 20 97 12:38:32,7620538 MCLauncher.exe 84 RegCloseKey HKCU\SOFTWARE\Microsoft\Windows NT\CurrentVersion\AppCompatFlags SUCCESS 97 12:38:32,7621812 MCLauncher.exe 84 CloseFile C:\Windows\AppPatch\sysmain.sdb SUCCESS 97 12:38:32,7623126 MCLauncher.exe 84 RegOpenKey HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\SideBySide SUCCESS Desired Access: Read 97 12:38:32,7623308 MCLauncher.exe 84 RegSetInfoKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\SideBySide SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 97 12:38:32,7623369 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\SideBySide\PreferExternalManifest NAME NOT FOUND Length: 20 97 12:38:32,7623547 MCLauncher.exe 84 RegCloseKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\SideBySide SUCCESS 97 12:38:32,7708941 MCLauncher.exe 84 RegQueryValue HKLM\System\CurrentControlSet\Control\{7746D80F-97E0-4E26-9543-26B41FC22F79}\{59AEE675-B203-4D61-9A1F-04518A20F359}\4B00650072006E0065006C002D004F006E00650043006F00720065002D00440065007600690063006500460061006D0069006C007900490044000000 NAME NOT FOUND Length: 0 97 12:38:32,7710146 MCLauncher.exe 84 CreateFile C:\Windows\AppPatch\sysmain.sdb SUCCESS Desired Access: Generic Read, Disposition: Open, Options: Synchronous IO Non-Alert, Non-Directory File, Attributes: N, ShareMode: Read, AllocationSize: n/a, OpenResult: Opened 97 12:38:32,7710517 MCLauncher.exe 84 QueryStandardInformationFile C:\Windows\AppPatch\sysmain.sdb SUCCESS AllocationSize: 3 866 624, EndOfFile: 3 863 594, NumberOfLinks: 2, DeletePending: False, Directory: False 97 12:38:32,7710617 MCLauncher.exe 84 QueryStandardInformationFile C:\Windows\AppPatch\sysmain.sdb SUCCESS AllocationSize: 3 866 624, EndOfFile: 3 863 594, NumberOfLinks: 2, DeletePending: False, Directory: False 97 12:38:32,7710720 MCLauncher.exe 84 CreateFileMapping C:\Windows\AppPatch\sysmain.sdb FILE LOCKED WITH ONLY READERS SyncType: SyncTypeCreateSection, PageProtection: PAGE_EXECUTE|PAGE_NOCACHE 97 12:38:32,7710894 MCLauncher.exe 84 QueryNameInformationFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Name: \Users\User\Downloads\MCLauncher.exe 97 12:38:32,7711875 MCLauncher.exe 84 CreateFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Desired Access: Synchronize, Disposition: Open, Options: Synchronous IO Non-Alert, Attributes: N, ShareMode: Read, Write, Delete, AllocationSize: n/a, OpenResult: Opened 97 12:38:32,7712077 MCLauncher.exe 84 CloseFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS 97 12:38:32,7712393 MCLauncher.exe 84 QueryNameInformationFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Name: \Users\User\Downloads\MCLauncher.exe 97 12:38:32,7713260 MCLauncher.exe 84 CreateFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Desired Access: Synchronize, Disposition: Open, Options: Synchronous IO Non-Alert, Attributes: N, ShareMode: Read, Write, Delete, AllocationSize: n/a, OpenResult: Opened 97 12:38:32,7713432 MCLauncher.exe 84 CloseFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS 97 12:38:32,7714302 MCLauncher.exe 84 QueryStandardInformationFile C:\Windows\AppPatch\sysmain.sdb SUCCESS AllocationSize: 3 866 624, EndOfFile: 3 863 594, NumberOfLinks: 2, DeletePending: False, Directory: False 97 12:38:32,7714460 MCLauncher.exe 84 CreateFileMapping C:\Windows\AppPatch\sysmain.sdb SUCCESS SyncType: SyncTypeOther 97 12:38:32,7714837 MCLauncher.exe 84 CloseFile C:\Windows\AppPatch\sysmain.sdb SUCCESS 97 12:38:32,7715837 MCLauncher.exe 84 CloseFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS 97 12:38:32,7716128 MCLauncher.exe 84 RegQueryKey HKCU\Software\Classes SUCCESS Query: Name 97 12:38:32,7716230 MCLauncher.exe 84 RegQueryKey HKCU\Software\Classes SUCCESS Query: HandleTags, HandleTags: 0x1 97 12:38:32,7716322 MCLauncher.exe 84 RegQueryKey HKCU\Software\Classes SUCCESS Query: HandleTags, HandleTags: 0x1 97 12:38:32,7716385 MCLauncher.exe 84 RegQueryKey HKCU\Software\Classes SUCCESS Query: Name 97 12:38:32,7716679 MCLauncher.exe 84 RegOpenKey HKCU\Software\Classes\Applications\MCLauncher.exe NAME NOT FOUND Desired Access: Read 97 12:38:32,7716879 MCLauncher.exe 84 RegOpenKey HKCR\Applications\MCLauncher.exe NAME NOT FOUND Desired Access: Read 97 12:38:32,7718020 MCLauncher.exe 84 RegQueryKey HKCU\Software\Classes SUCCESS Query: Name 97 12:38:32,7718098 MCLauncher.exe 84 RegQueryKey HKCU\Software\Classes SUCCESS Query: HandleTags, HandleTags: 0x1 97 12:38:32,7718172 MCLauncher.exe 84 RegQueryKey HKCU\Software\Classes SUCCESS Query: HandleTags, HandleTags: 0x1 97 12:38:32,7718222 MCLauncher.exe 84 RegQueryKey HKCU\Software\Classes SUCCESS Query: Name 97 12:38:32,7718305 MCLauncher.exe 84 RegOpenKey HKCU\Software\Classes\Applications\MCLauncher.exe NAME NOT FOUND Desired Access: Read 97 12:38:32,7718405 MCLauncher.exe 84 RegOpenKey HKCR\Applications\MCLauncher.exe NAME NOT FOUND Desired Access: Read 97 12:38:32,7718521 MCLauncher.exe 84 RegQueryKey HKCR\exefile SUCCESS Query: Name 97 12:38:32,7718588 MCLauncher.exe 84 RegQueryKey HKCR\exefile SUCCESS Query: HandleTags, HandleTags: 0x401 97 12:38:32,7718693 MCLauncher.exe 84 RegOpenKey HKCU\Software\Classes\exefile NAME NOT FOUND Desired Access: Maximum Allowed 97 12:38:32,7718776 MCLauncher.exe 84 RegQueryValue HKCR\exefile\AppUserModelID NAME NOT FOUND Length: 144 97 12:38:32,7718934 MCLauncher.exe 84 RegQueryKey HKCR\exefile SUCCESS Query: Name 97 12:38:32,7718998 MCLauncher.exe 84 RegQueryKey HKCR\exefile SUCCESS Query: HandleTags, HandleTags: 0x401 97 12:38:32,7719095 MCLauncher.exe 84 RegOpenKey HKCU\Software\Classes\exefile\Application NAME NOT FOUND Desired Access: Query Value 97 12:38:32,7719181 MCLauncher.exe 84 RegQueryKey HKCR\exefile SUCCESS Query: HandleTags, HandleTags: 0x401 97 12:38:32,7719234 MCLauncher.exe 84 RegOpenKey HKCR\exefile\Application NAME NOT FOUND Desired Access: Query Value 97 12:38:32,7719308 MCLauncher.exe 84 RegQueryKey HKCR\exefile\shell\open SUCCESS Query: Name 97 12:38:32,7719369 MCLauncher.exe 84 RegQueryKey HKCR\exefile\shell\open SUCCESS Query: HandleTags, HandleTags: 0x401 97 12:38:32,7719447 MCLauncher.exe 84 RegOpenKey HKCU\Software\Classes\exefile\shell\open NAME NOT FOUND Desired Access: Maximum Allowed 97 12:38:32,7719508 MCLauncher.exe 84 RegQueryValue HKCR\exefile\shell\open\FriendlyAppName NAME NOT FOUND Length: 144 97 12:38:32,7719638 MCLauncher.exe 84 RegQueryKey HKCR\exefile SUCCESS Query: Name 97 12:38:32,7719696 MCLauncher.exe 84 RegQueryKey HKCR\exefile SUCCESS Query: HandleTags, HandleTags: 0x401 97 12:38:32,7719788 MCLauncher.exe 84 RegOpenKey HKCU\Software\Classes\exefile\Application NAME NOT FOUND Desired Access: Query Value 97 12:38:32,7719868 MCLauncher.exe 84 RegQueryKey HKCR\exefile SUCCESS Query: HandleTags, HandleTags: 0x401 97 12:38:32,7719918 MCLauncher.exe 84 RegOpenKey HKCR\exefile\Application NAME NOT FOUND Desired Access: Query Value 97 12:38:32,7719984 MCLauncher.exe 84 RegQueryKey HKCR\exefile\shell\open SUCCESS Query: Name 97 12:38:32,7720040 MCLauncher.exe 84 RegQueryKey HKCR\exefile\shell\open SUCCESS Query: HandleTags, HandleTags: 0x401 97 12:38:32,7720115 MCLauncher.exe 84 RegOpenKey HKCU\Software\Classes\exefile\shell\open\command NAME NOT FOUND Desired Access: Query Value 97 12:38:32,7720187 MCLauncher.exe 84 RegQueryKey HKCR\exefile\shell\open SUCCESS Query: HandleTags, HandleTags: 0x401 97 12:38:32,7720239 MCLauncher.exe 84 RegOpenKey HKCR\exefile\shell\open\command SUCCESS Desired Access: Query Value 97 12:38:32,7720317 MCLauncher.exe 84 RegQueryKey HKCR\exefile\shell\open\command SUCCESS Query: Name 97 12:38:32,7720369 MCLauncher.exe 84 RegQueryKey HKCR\exefile\shell\open\command SUCCESS Query: HandleTags, HandleTags: 0x401 97 12:38:32,7720444 MCLauncher.exe 84 RegOpenKey HKCU\Software\Classes\exefile\shell\open\command NAME NOT FOUND Desired Access: Maximum Allowed 97 12:38:32,7720500 MCLauncher.exe 84 RegQueryValue HKCR\exefile\shell\open\command\(Default) SUCCESS Type: REG_SZ, Length: 16, Data: "%1" %* 97 12:38:32,7720594 MCLauncher.exe 84 RegCloseKey HKCR\exefile\shell\open\command SUCCESS 97 12:38:32,7720738 MCLauncher.exe 84 RegQueryKey HKCU\Software\Classes SUCCESS Query: Name 97 12:38:32,7720799 MCLauncher.exe 84 RegQueryKey HKCU\Software\Classes SUCCESS Query: HandleTags, HandleTags: 0x1 97 12:38:32,7720863 MCLauncher.exe 84 RegQueryKey HKCU\Software\Classes SUCCESS Query: HandleTags, HandleTags: 0x1 97 12:38:32,7720910 MCLauncher.exe 84 RegQueryKey HKCU\Software\Classes SUCCESS Query: Name 97 12:38:32,7720976 MCLauncher.exe 84 RegOpenKey HKCU\Software\Classes\Applications\%1.exe NAME NOT FOUND Desired Access: Read 97 12:38:32,7721059 MCLauncher.exe 84 RegOpenKey HKCR\Applications\%1.exe NAME NOT FOUND Desired Access: Read 97 12:38:32,7721234 MCLauncher.exe 84 RegQueryKey HKCR\exefile\shell\open SUCCESS Query: Name 97 12:38:32,7721289 MCLauncher.exe 84 RegQueryKey HKCR\exefile\shell\open SUCCESS Query: HandleTags, HandleTags: 0x401 97 12:38:32,7721370 MCLauncher.exe 84 RegOpenKey HKCU\Software\Classes\exefile\shell\open\command NAME NOT FOUND Desired Access: Query Value 97 12:38:32,7721442 MCLauncher.exe 84 RegQueryKey HKCR\exefile\shell\open SUCCESS Query: HandleTags, HandleTags: 0x401 97 12:38:32,7721494 MCLauncher.exe 84 RegOpenKey HKCR\exefile\shell\open\command SUCCESS Desired Access: Query Value 97 12:38:32,7721558 MCLauncher.exe 84 RegQueryKey HKCR\exefile\shell\open\command SUCCESS Query: Name 97 12:38:32,7721611 MCLauncher.exe 84 RegQueryKey HKCR\exefile\shell\open\command SUCCESS Query: HandleTags, HandleTags: 0x401 97 12:38:32,7721685 MCLauncher.exe 84 RegOpenKey HKCU\Software\Classes\exefile\shell\open\command NAME NOT FOUND Desired Access: Maximum Allowed 97 12:38:32,7721741 MCLauncher.exe 84 RegQueryValue HKCR\exefile\shell\open\command\DelegateExecute NAME NOT FOUND Length: 144 97 12:38:32,7721885 MCLauncher.exe 84 RegCloseKey HKCR\exefile\shell\open\command SUCCESS 97 12:38:32,7721938 MCLauncher.exe 84 RegQueryKey HKCR\exefile\shell\open SUCCESS Query: Name 97 12:38:32,7721999 MCLauncher.exe 84 RegQueryKey HKCR\exefile\shell\open SUCCESS Query: HandleTags, HandleTags: 0x401 97 12:38:32,7722093 MCLauncher.exe 84 RegOpenKey HKCU\Software\Classes\exefile\shell\open\DropTarget NAME NOT FOUND Desired Access: Query Value 97 12:38:32,7722173 MCLauncher.exe 84 RegQueryKey HKCR\exefile\shell\open SUCCESS Query: HandleTags, HandleTags: 0x401 97 12:38:32,7722226 MCLauncher.exe 84 RegOpenKey HKCR\exefile\shell\open\DropTarget NAME NOT FOUND Desired Access: Query Value 97 12:38:32,7722287 MCLauncher.exe 84 RegQueryKey HKCR\exefile\shell\open SUCCESS Query: Name 97 12:38:32,7722339 MCLauncher.exe 84 RegQueryKey HKCR\exefile\shell\open SUCCESS Query: HandleTags, HandleTags: 0x401 97 12:38:32,7722411 MCLauncher.exe 84 RegOpenKey HKCU\Software\Classes\exefile\shell\open\command NAME NOT FOUND Desired Access: Query Value 97 12:38:32,7722481 MCLauncher.exe 84 RegQueryKey HKCR\exefile\shell\open SUCCESS Query: HandleTags, HandleTags: 0x401 97 12:38:32,7722530 MCLauncher.exe 84 RegOpenKey HKCR\exefile\shell\open\command SUCCESS Desired Access: Query Value 97 12:38:32,7722594 MCLauncher.exe 84 RegQueryKey HKCR\exefile\shell\open\command SUCCESS Query: Name 97 12:38:32,7722647 MCLauncher.exe 84 RegQueryKey HKCR\exefile\shell\open\command SUCCESS Query: HandleTags, HandleTags: 0x401 97 12:38:32,7722719 MCLauncher.exe 84 RegOpenKey HKCU\Software\Classes\exefile\shell\open\command NAME NOT FOUND Desired Access: Maximum Allowed 97 12:38:32,7722774 MCLauncher.exe 84 RegQueryValue HKCR\exefile\shell\open\command\(Default) SUCCESS Type: REG_SZ, Length: 16, Data: "%1" %* 97 12:38:32,7722838 MCLauncher.exe 84 RegCloseKey HKCR\exefile\shell\open\command SUCCESS 97 12:38:32,7722946 MCLauncher.exe 84 RegQueryKey HKCU SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:32,7722996 MCLauncher.exe 84 RegQueryKey HKCU SUCCESS Query: Name 97 12:38:32,7723068 MCLauncher.exe 84 RegOpenKey HKCU\Software\Microsoft\Windows\CurrentVersion\App Paths\%1.exe NAME NOT FOUND Desired Access: Read 97 12:38:32,7723204 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 97 12:38:32,7723251 MCLauncher.exe 84 RegQueryKey HKLM SUCCESS Query: Name 97 12:38:32,7723328 MCLauncher.exe 84 RegOpenKey HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\App Paths\%1.exe REPARSE Desired Access: Read 97 12:38:32,7723425 MCLauncher.exe 84 RegOpenKey HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Paths\%1.exe NAME NOT FOUND Desired Access: Read 97 12:38:32,7723511 MCLauncher.exe 84 RegQueryKey HKCR\exefile SUCCESS Query: Name 97 12:38:32,7723564 MCLauncher.exe 84 RegQueryKey HKCR\exefile SUCCESS Query: HandleTags, HandleTags: 0x401 97 12:38:32,7723641 MCLauncher.exe 84 RegOpenKey HKCU\Software\Classes\exefile\Progid NAME NOT FOUND Desired Access: Query Value 97 12:38:32,7723714 MCLauncher.exe 84 RegQueryKey HKCR\exefile SUCCESS Query: HandleTags, HandleTags: 0x401 97 12:38:32,7723763 MCLauncher.exe 84 RegOpenKey HKCR\exefile\Progid NAME NOT FOUND Desired Access: Query Value 97 12:38:32,7724035 MCLauncher.exe 84 RegCloseKey HKCR\exefile\shell\open SUCCESS 97 12:38:32,7724301 MCLauncher.exe 84 RegQueryKey HKCU\Software\Classes SUCCESS Query: Name 97 12:38:32,7724365 MCLauncher.exe 84 RegQueryKey HKCU\Software\Classes SUCCESS Query: HandleTags, HandleTags: 0x1 97 12:38:32,7724428 MCLauncher.exe 84 RegQueryKey HKCU\Software\Classes SUCCESS Query: HandleTags, HandleTags: 0x1 97 12:38:32,7724475 MCLauncher.exe 84 RegQueryKey HKCU\Software\Classes SUCCESS Query: Name 97 12:38:32,7724564 MCLauncher.exe 84 RegOpenKey HKCU\Software\Classes\WOW6432Node\CLSID\{9AC9FBE1-E0A2-4AD6-B4EE-E212013EA917} NAME NOT FOUND Desired Access: Read 97 12:38:32,7724719 MCLauncher.exe 84 RegOpenKey HKCR\WOW6432Node\CLSID\{9AC9FBE1-E0A2-4AD6-B4EE-E212013EA917} SUCCESS Desired Access: Read 97 12:38:32,7724838 MCLauncher.exe 84 RegSetInfoKey HKCR\WOW6432Node\CLSID\{9ac9fbe1-e0a2-4ad6-b4ee-e212013ea917} SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 97 12:38:32,7724885 MCLauncher.exe 84 RegQueryKey HKCR\WOW6432Node\CLSID\{9ac9fbe1-e0a2-4ad6-b4ee-e212013ea917} SUCCESS Query: Name 97 12:38:32,7724944 MCLauncher.exe 84 RegQueryKey HKCR\WOW6432Node\CLSID\{9ac9fbe1-e0a2-4ad6-b4ee-e212013ea917} SUCCESS Query: HandleTags, HandleTags: 0x401 97 12:38:32,7725035 MCLauncher.exe 84 RegOpenKey HKCU\Software\Classes\WOW6432Node\CLSID\{9ac9fbe1-e0a2-4ad6-b4ee-e212013ea917}\TreatAs NAME NOT FOUND Desired Access: Query Value 97 12:38:32,7725121 MCLauncher.exe 84 RegQueryKey HKCR\WOW6432Node\CLSID\{9ac9fbe1-e0a2-4ad6-b4ee-e212013ea917} SUCCESS Query: HandleTags, HandleTags: 0x401 97 12:38:32,7725174 MCLauncher.exe 84 RegOpenKey HKCR\WOW6432Node\CLSID\{9ac9fbe1-e0a2-4ad6-b4ee-e212013ea917}\TreatAs NAME NOT FOUND Desired Access: Query Value 97 12:38:32,7725251 MCLauncher.exe 84 RegQueryKey HKCR\WOW6432Node\CLSID\{9ac9fbe1-e0a2-4ad6-b4ee-e212013ea917} SUCCESS Query: Name 97 12:38:32,7725345 MCLauncher.exe 84 RegQueryKey HKCR\WOW6432Node\CLSID\{9ac9fbe1-e0a2-4ad6-b4ee-e212013ea917} SUCCESS Query: Name 97 12:38:32,7725401 MCLauncher.exe 84 RegQueryKey HKCR\WOW6432Node\CLSID\{9ac9fbe1-e0a2-4ad6-b4ee-e212013ea917} SUCCESS Query: HandleTags, HandleTags: 0x401 97 12:38:32,7725484 MCLauncher.exe 84 RegOpenKey HKCU\Software\Classes\WOW6432Node\CLSID\{9ac9fbe1-e0a2-4ad6-b4ee-e212013ea917} NAME NOT FOUND Desired Access: Maximum Allowed 97 12:38:32,7725550 MCLauncher.exe 84 RegQueryValue HKCR\WOW6432Node\CLSID\{9ac9fbe1-e0a2-4ad6-b4ee-e212013ea917}\(Default) SUCCESS Type: REG_SZ, Length: 66, Data: ShellItem Shell Namespace helper 97 12:38:32,7725614 MCLauncher.exe 84 RegQueryKey HKCR\WOW6432Node\CLSID\{9ac9fbe1-e0a2-4ad6-b4ee-e212013ea917} SUCCESS Query: Name 97 12:38:32,7725670 MCLauncher.exe 84 RegQueryKey HKCR\WOW6432Node\CLSID\{9ac9fbe1-e0a2-4ad6-b4ee-e212013ea917} SUCCESS Query: HandleTags, HandleTags: 0x401 97 12:38:32,7725750 MCLauncher.exe 84 RegOpenKey HKCU\Software\Classes\WOW6432Node\CLSID\{9ac9fbe1-e0a2-4ad6-b4ee-e212013ea917} NAME NOT FOUND Desired Access: Maximum Allowed 97 12:38:32,7725811 MCLauncher.exe 84 RegQueryValue HKCR\WOW6432Node\CLSID\{9ac9fbe1-e0a2-4ad6-b4ee-e212013ea917}\(Default) SUCCESS Type: REG_SZ, Length: 66, Data: ShellItem Shell Namespace helper 97 12:38:32,7725869 MCLauncher.exe 84 RegQueryKey HKCR\WOW6432Node\CLSID\{9ac9fbe1-e0a2-4ad6-b4ee-e212013ea917} SUCCESS Query: Name 97 12:38:32,7725927 MCLauncher.exe 84 RegQueryKey HKCR\WOW6432Node\CLSID\{9ac9fbe1-e0a2-4ad6-b4ee-e212013ea917} SUCCESS Query: HandleTags, HandleTags: 0x401 97 12:38:32,7726010 MCLauncher.exe 84 RegOpenKey HKCU\Software\Classes\WOW6432Node\CLSID\{9ac9fbe1-e0a2-4ad6-b4ee-e212013ea917}\InprocServer32 NAME NOT FOUND Desired Access: Read 97 12:38:32,7726091 MCLauncher.exe 84 RegQueryKey HKCR\WOW6432Node\CLSID\{9ac9fbe1-e0a2-4ad6-b4ee-e212013ea917} SUCCESS Query: HandleTags, HandleTags: 0x401 97 12:38:32,7726141 MCLauncher.exe 84 RegOpenKey HKCR\WOW6432Node\CLSID\{9ac9fbe1-e0a2-4ad6-b4ee-e212013ea917}\InprocServer32 SUCCESS Desired Access: Read 97 12:38:32,7726373 MCLauncher.exe 84 RegQueryKey HKCR\WOW6432Node\CLSID\{9ac9fbe1-e0a2-4ad6-b4ee-e212013ea917}\InProcServer32 SUCCESS Query: Name 97 12:38:32,7726440 MCLauncher.exe 84 RegQueryKey HKCR\WOW6432Node\CLSID\{9ac9fbe1-e0a2-4ad6-b4ee-e212013ea917}\InProcServer32 SUCCESS Query: HandleTags, HandleTags: 0x401 97 12:38:32,7726537 MCLauncher.exe 84 RegOpenKey HKCU\Software\Classes\WOW6432Node\CLSID\{9ac9fbe1-e0a2-4ad6-b4ee-e212013ea917}\InProcServer32 NAME NOT FOUND Desired Access: Maximum Allowed 97 12:38:32,7726620 MCLauncher.exe 84 RegQueryValue HKCR\WOW6432Node\CLSID\{9ac9fbe1-e0a2-4ad6-b4ee-e212013ea917}\InProcServer32\InprocServer32 NAME NOT FOUND Length: 144 97 12:38:32,7726744 MCLauncher.exe 84 RegQueryKey HKCR\WOW6432Node\CLSID\{9ac9fbe1-e0a2-4ad6-b4ee-e212013ea917}\InProcServer32 SUCCESS Query: Name 97 12:38:32,7726811 MCLauncher.exe 84 RegQueryKey HKCR\WOW6432Node\CLSID\{9ac9fbe1-e0a2-4ad6-b4ee-e212013ea917}\InProcServer32 SUCCESS Query: HandleTags, HandleTags: 0x401 97 12:38:32,7726911 MCLauncher.exe 84 RegOpenKey HKCU\Software\Classes\WOW6432Node\CLSID\{9ac9fbe1-e0a2-4ad6-b4ee-e212013ea917}\InProcServer32 NAME NOT FOUND Desired Access: Maximum Allowed 97 12:38:32,7726991 MCLauncher.exe 84 RegQueryValue HKCR\WOW6432Node\CLSID\{9ac9fbe1-e0a2-4ad6-b4ee-e212013ea917}\InProcServer32\(Default) SUCCESS Type: REG_EXPAND_SZ, Length: 84, Data: %SystemRoot%\system32\windows.storage.dll 97 12:38:32,7727046 MCLauncher.exe 84 RegQueryKey HKCR\WOW6432Node\CLSID\{9ac9fbe1-e0a2-4ad6-b4ee-e212013ea917}\InProcServer32 SUCCESS Query: Name 97 12:38:32,7727102 MCLauncher.exe 84 RegQueryKey HKCR\WOW6432Node\CLSID\{9ac9fbe1-e0a2-4ad6-b4ee-e212013ea917}\InProcServer32 SUCCESS Query: HandleTags, HandleTags: 0x401 97 12:38:32,7727182 MCLauncher.exe 84 RegOpenKey HKCU\Software\Classes\WOW6432Node\CLSID\{9ac9fbe1-e0a2-4ad6-b4ee-e212013ea917}\InProcServer32 NAME NOT FOUND Desired Access: Maximum Allowed 97 12:38:32,7727246 MCLauncher.exe 84 RegQueryValue HKCR\WOW6432Node\CLSID\{9ac9fbe1-e0a2-4ad6-b4ee-e212013ea917}\InProcServer32\(Default) SUCCESS Type: REG_EXPAND_SZ, Length: 84, Data: %SystemRoot%\system32\windows.storage.dll 97 12:38:32,7727310 MCLauncher.exe 84 RegQueryKey HKCR\WOW6432Node\CLSID\{9ac9fbe1-e0a2-4ad6-b4ee-e212013ea917}\InProcServer32 SUCCESS Query: Name 97 12:38:32,7727365 MCLauncher.exe 84 RegQueryKey HKCR\WOW6432Node\CLSID\{9ac9fbe1-e0a2-4ad6-b4ee-e212013ea917}\InProcServer32 SUCCESS Query: HandleTags, HandleTags: 0x401 97 12:38:32,7727443 MCLauncher.exe 84 RegOpenKey HKCU\Software\Classes\WOW6432Node\CLSID\{9ac9fbe1-e0a2-4ad6-b4ee-e212013ea917}\InProcServer32 NAME NOT FOUND Desired Access: Maximum Allowed 97 12:38:32,7727504 MCLauncher.exe 84 RegQueryValue HKCR\WOW6432Node\CLSID\{9ac9fbe1-e0a2-4ad6-b4ee-e212013ea917}\InProcServer32\(Default) SUCCESS Type: REG_EXPAND_SZ, Length: 84, Data: %SystemRoot%\system32\windows.storage.dll 97 12:38:32,7727567 MCLauncher.exe 84 RegQueryKey HKCR\WOW6432Node\CLSID\{9ac9fbe1-e0a2-4ad6-b4ee-e212013ea917}\InProcServer32 SUCCESS Query: Name 97 12:38:32,7727623 MCLauncher.exe 84 RegQueryKey HKCR\WOW6432Node\CLSID\{9ac9fbe1-e0a2-4ad6-b4ee-e212013ea917}\InProcServer32 SUCCESS Query: HandleTags, HandleTags: 0x401 97 12:38:32,7727700 MCLauncher.exe 84 RegOpenKey HKCU\Software\Classes\WOW6432Node\CLSID\{9ac9fbe1-e0a2-4ad6-b4ee-e212013ea917}\InProcServer32 NAME NOT FOUND Desired Access: Maximum Allowed 97 12:38:32,7727764 MCLauncher.exe 84 RegQueryValue HKCR\WOW6432Node\CLSID\{9ac9fbe1-e0a2-4ad6-b4ee-e212013ea917}\InProcServer32\ThreadingModel SUCCESS Type: REG_SZ, Length: 10, Data: Both 97 12:38:32,7727922 MCLauncher.exe 84 RegCloseKey HKCR\WOW6432Node\CLSID\{9ac9fbe1-e0a2-4ad6-b4ee-e212013ea917}\InProcServer32 SUCCESS 97 12:38:32,7727972 MCLauncher.exe 84 RegQueryKey HKCR\WOW6432Node\CLSID\{9ac9fbe1-e0a2-4ad6-b4ee-e212013ea917} SUCCESS Query: Name 97 12:38:32,7728038 MCLauncher.exe 84 RegQueryKey HKCR\WOW6432Node\CLSID\{9ac9fbe1-e0a2-4ad6-b4ee-e212013ea917} SUCCESS Query: HandleTags, HandleTags: 0x401 97 12:38:32,7728138 MCLauncher.exe 84 RegOpenKey HKCU\Software\Classes\WOW6432Node\CLSID\{9ac9fbe1-e0a2-4ad6-b4ee-e212013ea917}\InprocHandler32 NAME NOT FOUND Desired Access: Query Value 97 12:38:32,7728238 MCLauncher.exe 84 RegQueryKey HKCR\WOW6432Node\CLSID\{9ac9fbe1-e0a2-4ad6-b4ee-e212013ea917} SUCCESS Query: HandleTags, HandleTags: 0x401 97 12:38:32,7728290 MCLauncher.exe 84 RegOpenKey HKCR\WOW6432Node\CLSID\{9ac9fbe1-e0a2-4ad6-b4ee-e212013ea917}\InprocHandler32 NAME NOT FOUND Desired Access: Query Value 97 12:38:32,7728357 MCLauncher.exe 84 RegQueryKey HKCR\WOW6432Node\CLSID\{9ac9fbe1-e0a2-4ad6-b4ee-e212013ea917} SUCCESS Query: Name 97 12:38:32,7728412 MCLauncher.exe 84 RegQueryKey HKCR\WOW6432Node\CLSID\{9ac9fbe1-e0a2-4ad6-b4ee-e212013ea917} SUCCESS Query: HandleTags, HandleTags: 0x401 97 12:38:32,7728493 MCLauncher.exe 84 RegOpenKey HKCU\Software\Classes\WOW6432Node\CLSID\{9ac9fbe1-e0a2-4ad6-b4ee-e212013ea917}\InprocHandler NAME NOT FOUND Desired Access: Query Value 97 12:38:32,7728570 MCLauncher.exe 84 RegQueryKey HKCR\WOW6432Node\CLSID\{9ac9fbe1-e0a2-4ad6-b4ee-e212013ea917} SUCCESS Query: HandleTags, HandleTags: 0x401 97 12:38:32,7728623 MCLauncher.exe 84 RegOpenKey HKCR\WOW6432Node\CLSID\{9ac9fbe1-e0a2-4ad6-b4ee-e212013ea917}\InprocHandler NAME NOT FOUND Desired Access: Query Value 97 12:38:32,7728701 MCLauncher.exe 84 RegCloseKey HKCR\WOW6432Node\CLSID\{9ac9fbe1-e0a2-4ad6-b4ee-e212013ea917} SUCCESS 97 12:38:32,7728897 MCLauncher.exe 84 RegQueryKey HKCU\Software\Classes SUCCESS Query: Name 97 12:38:32,7728958 MCLauncher.exe 84 RegQueryKey HKCU\Software\Classes SUCCESS Query: HandleTags, HandleTags: 0x1 97 12:38:32,7729025 MCLauncher.exe 84 RegQueryKey HKCU\Software\Classes SUCCESS Query: HandleTags, HandleTags: 0x1 97 12:38:32,7729072 MCLauncher.exe 84 RegQueryKey HKCU\Software\Classes SUCCESS Query: Name 97 12:38:32,7729155 MCLauncher.exe 84 RegOpenKey HKCU\Software\Classes\WOW6432Node\CLSID\{9AC9FBE1-E0A2-4AD6-B4EE-E212013EA917} NAME NOT FOUND Desired Access: Read 97 12:38:32,7729246 MCLauncher.exe 84 RegOpenKey HKCR\WOW6432Node\CLSID\{9AC9FBE1-E0A2-4AD6-B4EE-E212013EA917} SUCCESS Desired Access: Read 97 12:38:32,7729327 MCLauncher.exe 84 RegSetInfoKey HKCR\WOW6432Node\CLSID\{9ac9fbe1-e0a2-4ad6-b4ee-e212013ea917} SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 97 12:38:32,7729371 MCLauncher.exe 84 RegQueryKey HKCR\WOW6432Node\CLSID\{9ac9fbe1-e0a2-4ad6-b4ee-e212013ea917} SUCCESS Query: Name 97 12:38:32,7729429 MCLauncher.exe 84 RegQueryKey HKCR\WOW6432Node\CLSID\{9ac9fbe1-e0a2-4ad6-b4ee-e212013ea917} SUCCESS Query: HandleTags, HandleTags: 0x401 97 12:38:32,7729515 MCLauncher.exe 84 RegOpenKey HKCU\Software\Classes\WOW6432Node\CLSID\{9ac9fbe1-e0a2-4ad6-b4ee-e212013ea917}\TreatAs NAME NOT FOUND Desired Access: Read 97 12:38:32,7729595 MCLauncher.exe 84 RegQueryKey HKCR\WOW6432Node\CLSID\{9ac9fbe1-e0a2-4ad6-b4ee-e212013ea917} SUCCESS Query: HandleTags, HandleTags: 0x401 97 12:38:32,7729645 MCLauncher.exe 84 RegOpenKey HKCR\WOW6432Node\CLSID\{9ac9fbe1-e0a2-4ad6-b4ee-e212013ea917}\TreatAs NAME NOT FOUND Desired Access: Read 97 12:38:32,7729715 MCLauncher.exe 84 RegCloseKey HKCR\WOW6432Node\CLSID\{9ac9fbe1-e0a2-4ad6-b4ee-e212013ea917} SUCCESS 97 12:38:32,7730019 MCLauncher.exe 84 RegCloseKey HKCR\.exe SUCCESS 97 12:38:32,7730066 MCLauncher.exe 84 RegCloseKey HKCR\exefile SUCCESS 97 12:38:32,7730113 MCLauncher.exe 84 RegCloseKey HKCR\exefile\shell\open SUCCESS 98 12:38:32,7806606 MCLauncher.exe 6080 Load Image C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Image Base: 0x400000, Image Size: 0x2b3000 98 12:38:32,7807116 MCLauncher.exe 6080 Load Image C:\Windows\System32\ntdll.dll SUCCESS Image Base: 0x7ffad0270000, Image Size: 0x1d2000 98 12:38:32,7807387 MCLauncher.exe 6080 Load Image C:\Windows\SysWOW64\ntdll.dll SUCCESS Image Base: 0x77d20000, Image Size: 0x183000 98 12:38:32,7808775 MCLauncher.exe 6080 CreateFile C:\Windows\Prefetch\MCLAUNCHER.EXE-A65AC714.pf SUCCESS Desired Access: Generic Read, Disposition: Open, Options: Synchronous IO Non-Alert, Attributes: n/a, ShareMode: None, AllocationSize: n/a, OpenResult: Opened 98 12:38:32,7809279 MCLauncher.exe 6080 QueryStandardInformationFile C:\Windows\Prefetch\MCLAUNCHER.EXE-A65AC714.pf SUCCESS AllocationSize: 16 384, EndOfFile: 15 519, NumberOfLinks: 1, DeletePending: False, Directory: False 98 12:38:32,7809437 MCLauncher.exe 6080 ReadFile C:\Windows\Prefetch\MCLAUNCHER.EXE-A65AC714.pf SUCCESS Offset: 0, Length: 15 519, Priority: Normal 98 12:38:32,7809695 MCLauncher.exe 6080 ReadFile C:\Windows\Prefetch\MCLAUNCHER.EXE-A65AC714.pf SUCCESS Offset: 0, Length: 15 519, I/O Flags: Non-cached, Paging I/O, Priority: Normal 97 12:38:32,7810382 MCLauncher.exe 84 RegCloseKey HKLM\System\CurrentControlSet\Services\WinSock2\Parameters\Protocol_Catalog9 SUCCESS 97 12:38:32,7821567 MCLauncher.exe 84 RegCloseKey HKLM\System\CurrentControlSet\Services\WinSock2\Parameters\NameSpace_Catalog5 SUCCESS 97 12:38:32,7821983 MCLauncher.exe 84 ReadFile C:\Windows\WinSxS\x86_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.9247_none_5090cb78bcba4a35\msvcr90.dll SUCCESS Offset: 553 984, Length: 24 576, I/O Flags: Non-cached, Paging I/O, Synchronous Paging I/O, Priority: Normal 98 12:38:32,7963946 MCLauncher.exe 6080 CloseFile C:\Windows\Prefetch\MCLAUNCHER.EXE-A65AC714.pf SUCCESS 97 12:38:32,8021214 MCLauncher.exe 84 ReadFile C:\Windows\SysWOW64\edputil.dll SUCCESS Offset: 17 408, Length: 32 768, I/O Flags: Non-cached, Paging I/O, Synchronous Paging I/O, Priority: Normal 97 12:38:32,8071266 MCLauncher.exe 84 Thread Exit SUCCESS Thread ID: 12152, User Time: 0.0000000, Kernel Time: 0.0000000 97 12:38:32,8071951 MCLauncher.exe 84 Thread Exit SUCCESS Thread ID: 13060, User Time: 0.0000000, Kernel Time: 0.0000000 97 12:38:32,8072300 MCLauncher.exe 84 Thread Exit SUCCESS Thread ID: 9824, User Time: 0.0000000, Kernel Time: 0.0000000 97 12:38:32,8072624 MCLauncher.exe 84 Thread Exit SUCCESS Thread ID: 10168, User Time: 0.0000000, Kernel Time: 0.0000000 97 12:38:32,8072926 MCLauncher.exe 84 Thread Exit SUCCESS Thread ID: 10668, User Time: 0.0000000, Kernel Time: 0.0000000 97 12:38:32,8073106 MCLauncher.exe 84 Thread Exit SUCCESS Thread ID: 12960, User Time: 0.0000000, Kernel Time: 0.0000000 97 12:38:32,8484953 MCLauncher.exe 84 RegCloseKey HKLM\SOFTWARE\Policies SUCCESS 97 12:38:32,8485030 MCLauncher.exe 84 RegCloseKey HKCU\SOFTWARE\Policies SUCCESS 97 12:38:32,8485083 MCLauncher.exe 84 RegCloseKey HKCU\SOFTWARE SUCCESS 97 12:38:32,8485127 MCLauncher.exe 84 RegCloseKey HKLM\SOFTWARE\WOW6432Node SUCCESS 97 12:38:32,8485324 MCLauncher.exe 84 RegCloseKey HKLM\SOFTWARE\Policies\Microsoft\Windows\CurrentVersion\Internet Settings SUCCESS 97 12:38:32,8485374 MCLauncher.exe 84 RegCloseKey HKCU\SOFTWARE\Policies\Microsoft\Windows\CurrentVersion\Internet Settings SUCCESS 97 12:38:32,8485424 MCLauncher.exe 84 RegCloseKey HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings SUCCESS 97 12:38:32,8485476 MCLauncher.exe 84 RegCloseKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Internet Settings SUCCESS 97 12:38:32,8485523 MCLauncher.exe 84 RegCloseKey HKCU\SOFTWARE\Microsoft\Internet Explorer\Main SUCCESS 97 12:38:32,8485571 MCLauncher.exe 84 RegCloseKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Internet Explorer\Main SUCCESS 97 12:38:32,8485615 MCLauncher.exe 84 RegCloseKey HKCU\SOFTWARE\Microsoft\Internet Explorer\Security SUCCESS 97 12:38:32,8485659 MCLauncher.exe 84 RegCloseKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Internet Explorer\Security SUCCESS 97 12:38:32,8485717 MCLauncher.exe 84 RegCloseKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Internet Explorer\Main\FeatureControl SUCCESS 97 12:38:32,8485767 MCLauncher.exe 84 RegCloseKey HKCU\SOFTWARE\Microsoft\Internet Explorer\Main\FeatureControl SUCCESS 97 12:38:32,8488327 MCLauncher.exe 84 ReadFile C:\Windows\SysWOW64\comdlg32.dll SUCCESS Offset: 13 312, Length: 32 768, I/O Flags: Non-cached, Paging I/O, Synchronous Paging I/O, Priority: Normal 97 12:38:32,8683042 MCLauncher.exe 84 ReadFile C:\Windows\WinSxS\x86_microsoft.windows.common-controls_6595b64144ccf1df_5.82.14393.447_none_5507ded2cb4f7f4c\comctl32.dll SUCCESS Offset: 107 520, Length: 32 768, I/O Flags: Non-cached, Paging I/O, Synchronous Paging I/O, Priority: Normal 97 12:38:32,8996853 MCLauncher.exe 84 ReadFile C:\Windows\WinSxS\x86_microsoft.windows.common-controls_6595b64144ccf1df_5.82.14393.447_none_5507ded2cb4f7f4c\comctl32.dll SUCCESS Offset: 103 424, Length: 4 096, I/O Flags: Non-cached, Paging I/O, Synchronous Paging I/O, Priority: Normal 97 12:38:32,9057808 MCLauncher.exe 84 ReadFile C:\Windows\WinSxS\x86_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.9247_none_5090cb78bcba4a35\msvcp90.dll SUCCESS Offset: 136 192, Length: 32 768, I/O Flags: Non-cached, Paging I/O, Synchronous Paging I/O, Priority: Normal 97 12:38:32,9276164 MCLauncher.exe 84 RegOpenKey HKLM\Software\WOW6432Node\Microsoft\Windows NT\CurrentVersion\GRE_Initialize REPARSE Desired Access: Read 97 12:38:32,9276408 MCLauncher.exe 84 RegOpenKey HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\GRE_Initialize SUCCESS Desired Access: Read 97 12:38:32,9276505 MCLauncher.exe 84 RegSetInfoKey HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\GRE_Initialize SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 97 12:38:32,9276574 MCLauncher.exe 84 RegQueryValue HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\GRE_Initialize\DisableMetaFiles NAME NOT FOUND Length: 20 97 12:38:32,9276787 MCLauncher.exe 84 RegCloseKey HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\GRE_Initialize SUCCESS 97 12:38:32,9277311 MCLauncher.exe 84 Thread Exit SUCCESS Thread ID: 2340, User Time: 0.2656250, Kernel Time: 0.3281250 98 12:38:32,9281262 MCLauncher.exe 6080 RegOpenKey HKLM\SYSTEM\CurrentControlSet\Control\Session Manager\Segment Heap REPARSE Desired Access: Query Value 98 12:38:32,9281375 MCLauncher.exe 6080 RegOpenKey HKLM\System\CurrentControlSet\Control\Session Manager\Segment Heap NAME NOT FOUND Desired Access: Query Value 98 12:38:32,9284528 MCLauncher.exe 6080 CreateFile C:\Windows SUCCESS Desired Access: Execute/Traverse, Synchronize, Disposition: Open, Options: Directory, Synchronous IO Non-Alert, Attributes: n/a, ShareMode: Read, Write, AllocationSize: n/a, OpenResult: Opened 98 12:38:32,9285523 MCLauncher.exe 6080 Load Image C:\Windows\System32\wow64.dll SUCCESS Image Base: 0x5c020000, Image Size: 0x52000 98 12:38:32,9286235 MCLauncher.exe 6080 Load Image C:\Windows\System32\wow64win.dll SUCCESS Image Base: 0x5c080000, Image Size: 0x77000 98 12:38:32,9289983 MCLauncher.exe 6080 CreateFile C:\Windows\System32\wow64log.dll NAME NOT FOUND Desired Access: Read Attributes, Disposition: Open, Options: Open Reparse Point, Attributes: n/a, ShareMode: Read, Write, Delete, AllocationSize: n/a 98 12:38:32,9291022 MCLauncher.exe 6080 Load Image C:\Windows\System32\kernel32.dll SUCCESS Image Base: 0x750000, Image Size: 0xac000 98 12:38:32,9291654 MCLauncher.exe 6080 Load Image C:\Windows\SysWOW64\kernel32.dll SUCCESS Image Base: 0x755e0000, Image Size: 0xe0000 98 12:38:32,9292155 MCLauncher.exe 6080 Load Image C:\Windows\System32\kernel32.dll SUCCESS Image Base: 0x750000, Image Size: 0xac000 98 12:38:32,9292604 MCLauncher.exe 6080 Load Image C:\Windows\System32\user32.dll SUCCESS Image Base: 0x750000, Image Size: 0x165000 98 12:38:32,9293674 MCLauncher.exe 6080 CreateFile C:\Windows SUCCESS Desired Access: Read Attributes, Synchronize, Disposition: Open, Options: Synchronous IO Non-Alert, Attributes: n/a, ShareMode: Read, Write, Delete, AllocationSize: n/a, OpenResult: Opened 98 12:38:32,9293956 MCLauncher.exe 6080 QueryNameInformationFile C:\Windows SUCCESS Name: \Windows 98 12:38:32,9294184 MCLauncher.exe 6080 CloseFile C:\Windows SUCCESS 98 12:38:32,9294474 MCLauncher.exe 6080 RegOpenKey HKLM\Software\Microsoft\Wow64\x86 SUCCESS Desired Access: Read 98 12:38:32,9294605 MCLauncher.exe 6080 RegQueryValue HKLM\SOFTWARE\Microsoft\Wow64\x86\MCLauncher.exe NAME NOT FOUND Length: 520 98 12:38:32,9294749 MCLauncher.exe 6080 RegQueryValue HKLM\SOFTWARE\Microsoft\Wow64\x86\(Default) SUCCESS Type: REG_SZ, Length: 26, Data: wow64cpu.dll 98 12:38:32,9294835 MCLauncher.exe 6080 RegCloseKey HKLM\SOFTWARE\Microsoft\Wow64\x86 SUCCESS 98 12:38:32,9295328 MCLauncher.exe 6080 Load Image C:\Windows\System32\wow64cpu.dll SUCCESS Image Base: 0x5c100000, Image Size: 0xa000 98 12:38:32,9297065 MCLauncher.exe 6080 RegOpenKey HKLM\SYSTEM\CurrentControlSet\Control\Session Manager\Segment Heap REPARSE Desired Access: Query Value 98 12:38:32,9297165 MCLauncher.exe 6080 RegOpenKey HKLM\System\CurrentControlSet\Control\Session Manager\Segment Heap NAME NOT FOUND Desired Access: Query Value 98 12:38:32,9299758 MCLauncher.exe 6080 CreateFile C:\Users\User\AppData\Roaming\MCLauncher SUCCESS Desired Access: Execute/Traverse, Synchronize, Disposition: Open, Options: Directory, Synchronous IO Non-Alert, Attributes: n/a, ShareMode: Read, Write, AllocationSize: n/a, OpenResult: Opened 98 12:38:32,9300572 MCLauncher.exe 6080 Load Image C:\Windows\SysWOW64\kernel32.dll SUCCESS Image Base: 0x755e0000, Image Size: 0xe0000 98 12:38:32,9301509 MCLauncher.exe 6080 Load Image C:\Windows\SysWOW64\KernelBase.dll SUCCESS Image Base: 0x751e0000, Image Size: 0x1a1000 98 12:38:32,9305485 MCLauncher.exe 6080 RegQueryValue HKLM\System\CurrentControlSet\Control\WMI\Security\05f95efe-7f75-49c7-a994-60a55cc09571 NAME NOT FOUND Length: 524 98 12:38:32,9306978 MCLauncher.exe 6080 RegOpenKey HKLM\System\CurrentControlSet\Control\SafeBoot\Option REPARSE Desired Access: Query Value, Set Value 98 12:38:32,9307219 MCLauncher.exe 6080 RegOpenKey HKLM\System\CurrentControlSet\Control\SafeBoot\Option NAME NOT FOUND Desired Access: Query Value, Set Value 98 12:38:32,9307333 MCLauncher.exe 6080 RegOpenKey HKLM\System\CurrentControlSet\Control\Srp\GP\DLL REPARSE Desired Access: Read 98 12:38:32,9307391 MCLauncher.exe 6080 RegOpenKey HKLM\System\CurrentControlSet\Control\Srp\GP\DLL NAME NOT FOUND Desired Access: Read 98 12:38:32,9307491 MCLauncher.exe 6080 RegOpenKey HKLM\Software\WOW6432Node\Policies\Microsoft\Windows\Safer\CodeIdentifiers REPARSE Desired Access: Query Value 98 12:38:32,9307565 MCLauncher.exe 6080 RegOpenKey HKLM\SOFTWARE\Policies\Microsoft\Windows\Safer\CodeIdentifiers SUCCESS Desired Access: Query Value 98 12:38:32,9307682 MCLauncher.exe 6080 RegSetInfoKey HKLM\SOFTWARE\Policies\Microsoft\Windows\safer\codeidentifiers SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 98 12:38:32,9307734 MCLauncher.exe 6080 RegQueryValue HKLM\SOFTWARE\Policies\Microsoft\Windows\safer\codeidentifiers\TransparentEnabled NAME NOT FOUND Length: 80 98 12:38:32,9307906 MCLauncher.exe 6080 RegCloseKey HKLM\SOFTWARE\Policies\Microsoft\Windows\safer\codeidentifiers SUCCESS 98 12:38:32,9308072 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Policies\Microsoft\Windows\Safer\CodeIdentifiers NAME NOT FOUND Desired Access: Query Value 98 12:38:32,9310799 MCLauncher.exe 6080 CreateFile C:\Windows\SysWOW64\apphelp.dll SUCCESS Desired Access: Read Attributes, Disposition: Open, Options: Open Reparse Point, Attributes: n/a, ShareMode: Read, Write, Delete, AllocationSize: n/a, OpenResult: Opened 98 12:38:32,9311065 MCLauncher.exe 6080 QueryBasicInformationFile C:\Windows\SysWOW64\apphelp.dll SUCCESS CreationTime: 16.07.2016 14:42:45, LastAccessTime: 16.07.2016 14:42:45, LastWriteTime: 16.07.2016 14:42:45, ChangeTime: 19.07.2018 19:32:46, FileAttributes: A 98 12:38:32,9311156 MCLauncher.exe 6080 CloseFile C:\Windows\SysWOW64\apphelp.dll SUCCESS 98 12:38:32,9312145 MCLauncher.exe 6080 CreateFile C:\Windows\SysWOW64\apphelp.dll SUCCESS Desired Access: Read Data/List Directory, Execute/Traverse, Synchronize, Disposition: Open, Options: Synchronous IO Non-Alert, Non-Directory File, Attributes: n/a, ShareMode: Read, Delete, AllocationSize: n/a, OpenResult: Opened 98 12:38:32,9312436 MCLauncher.exe 6080 CreateFileMapping C:\Windows\SysWOW64\apphelp.dll FILE LOCKED WITH ONLY READERS SyncType: SyncTypeCreateSection, PageProtection: PAGE_EXECUTE|PAGE_NOCACHE 98 12:38:32,9312605 MCLauncher.exe 6080 QueryNameInformationFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Name: \Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe 98 12:38:32,9313511 MCLauncher.exe 6080 CreateFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Desired Access: Synchronize, Disposition: Open, Options: Synchronous IO Non-Alert, Attributes: N, ShareMode: Read, Write, Delete, AllocationSize: n/a, OpenResult: Opened 98 12:38:32,9313702 MCLauncher.exe 6080 CloseFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS 98 12:38:32,9314018 MCLauncher.exe 6080 QueryNameInformationFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Name: \Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe 98 12:38:32,9314855 MCLauncher.exe 6080 CreateFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Desired Access: Synchronize, Disposition: Open, Options: Synchronous IO Non-Alert, Attributes: N, ShareMode: Read, Write, Delete, AllocationSize: n/a, OpenResult: Opened 98 12:38:32,9315021 MCLauncher.exe 6080 CloseFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS 98 12:38:32,9315298 MCLauncher.exe 6080 QueryNameInformationFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Name: \Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe 98 12:38:32,9316113 MCLauncher.exe 6080 CreateFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Desired Access: Synchronize, Disposition: Open, Options: Synchronous IO Non-Alert, Attributes: N, ShareMode: Read, Write, Delete, AllocationSize: n/a, OpenResult: Opened 98 12:38:32,9316273 MCLauncher.exe 6080 CloseFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS 98 12:38:32,9316963 MCLauncher.exe 6080 CreateFileMapping C:\Windows\SysWOW64\apphelp.dll SUCCESS SyncType: SyncTypeOther 98 12:38:32,9317462 MCLauncher.exe 6080 Load Image C:\Windows\SysWOW64\apphelp.dll SUCCESS Image Base: 0x74730000, Image Size: 0x92000 98 12:38:32,9318559 MCLauncher.exe 6080 CloseFile C:\Windows\SysWOW64\apphelp.dll SUCCESS 98 12:38:32,9318997 MCLauncher.exe 6080 RegQueryValue HKLM\System\CurrentControlSet\Control\WMI\Security\8ccca27d-f1d8-4dda-b5dd-339aee937731 NAME NOT FOUND Length: 524 98 12:38:32,9319717 MCLauncher.exe 6080 RegOpenKey HKLM\Software\WOW6432Node\Microsoft\Windows NT\CurrentVersion\AppCompatFlags SUCCESS Desired Access: Query Value 98 12:38:32,9319864 MCLauncher.exe 6080 RegSetInfoKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows NT\CurrentVersion\AppCompatFlags SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 98 12:38:32,9319933 MCLauncher.exe 6080 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows NT\CurrentVersion\AppCompatFlags\LogFlags NAME NOT FOUND Length: 20 98 12:38:32,9320108 MCLauncher.exe 6080 RegCloseKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows NT\CurrentVersion\AppCompatFlags SUCCESS 98 12:38:32,9320745 MCLauncher.exe 6080 RegOpenKey HKLM\Software\WOW6432Node\Microsoft\Windows NT\CurrentVersion\AppCompatFlags SUCCESS Desired Access: Query Value 98 12:38:32,9320847 MCLauncher.exe 6080 RegSetInfoKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows NT\CurrentVersion\AppCompatFlags SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 98 12:38:32,9320900 MCLauncher.exe 6080 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows NT\CurrentVersion\AppCompatFlags\ShowDebugInfo NAME NOT FOUND Length: 20 98 12:38:32,9321036 MCLauncher.exe 6080 RegCloseKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows NT\CurrentVersion\AppCompatFlags SUCCESS 98 12:38:32,9321219 MCLauncher.exe 6080 RegOpenKey HKLM\SYSTEM\CurrentControlSet\Control\Session Manager REPARSE Desired Access: Query Value, Enumerate Sub Keys 98 12:38:32,9321291 MCLauncher.exe 6080 RegOpenKey HKLM\System\CurrentControlSet\Control\Session Manager SUCCESS Desired Access: Query Value, Enumerate Sub Keys 98 12:38:32,9321360 MCLauncher.exe 6080 RegSetInfoKey HKLM\System\CurrentControlSet\Control\Session Manager SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 98 12:38:32,9321404 MCLauncher.exe 6080 RegQueryValue HKLM\System\CurrentControlSet\Control\Session Manager\ResourcePolicies NAME NOT FOUND Length: 24 98 12:38:32,9321543 MCLauncher.exe 6080 RegCloseKey HKLM\System\CurrentControlSet\Control\Session Manager SUCCESS 98 12:38:32,9322862 MCLauncher.exe 6080 CreateFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Desired Access: Read Control, Disposition: Open, Options: , Attributes: n/a, ShareMode: Read, Delete, AllocationSize: n/a, OpenResult: Opened 98 12:38:32,9323058 MCLauncher.exe 6080 QuerySecurityFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe BUFFER OVERFLOW Information: Owner 98 12:38:32,9323139 MCLauncher.exe 6080 QuerySecurityFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Information: Owner 98 12:38:32,9323211 MCLauncher.exe 6080 CloseFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS 98 12:38:32,9324241 MCLauncher.exe 6080 CreateFile C:\Windows\SysWOW64\ntdll.dll SUCCESS Desired Access: Read Control, Disposition: Open, Options: , Attributes: n/a, ShareMode: Read, Delete, AllocationSize: n/a, OpenResult: Opened 98 12:38:32,9324516 MCLauncher.exe 6080 QuerySecurityFile C:\Windows\SysWOW64\ntdll.dll BUFFER OVERFLOW Information: Owner 98 12:38:32,9324590 MCLauncher.exe 6080 QuerySecurityFile C:\Windows\SysWOW64\ntdll.dll SUCCESS Information: Owner 98 12:38:32,9324654 MCLauncher.exe 6080 CloseFile C:\Windows\SysWOW64\ntdll.dll SUCCESS 98 12:38:32,9325640 MCLauncher.exe 6080 CreateFile C:\Windows\SysWOW64\kernel32.dll SUCCESS Desired Access: Read Control, Disposition: Open, Options: , Attributes: n/a, ShareMode: Read, Delete, AllocationSize: n/a, OpenResult: Opened 98 12:38:32,9325898 MCLauncher.exe 6080 QuerySecurityFile C:\Windows\SysWOW64\kernel32.dll BUFFER OVERFLOW Information: Owner 98 12:38:32,9325970 MCLauncher.exe 6080 QuerySecurityFile C:\Windows\SysWOW64\kernel32.dll SUCCESS Information: Owner 98 12:38:32,9326034 MCLauncher.exe 6080 CloseFile C:\Windows\SysWOW64\kernel32.dll SUCCESS 98 12:38:32,9327004 MCLauncher.exe 6080 CreateFile C:\Windows\SysWOW64\KernelBase.dll SUCCESS Desired Access: Read Control, Disposition: Open, Options: , Attributes: n/a, ShareMode: Read, Delete, AllocationSize: n/a, OpenResult: Opened 98 12:38:32,9327192 MCLauncher.exe 6080 QuerySecurityFile C:\Windows\SysWOW64\KernelBase.dll BUFFER OVERFLOW Information: Owner 98 12:38:32,9327261 MCLauncher.exe 6080 QuerySecurityFile C:\Windows\SysWOW64\KernelBase.dll SUCCESS Information: Owner 98 12:38:32,9327322 MCLauncher.exe 6080 CloseFile C:\Windows\SysWOW64\KernelBase.dll SUCCESS 98 12:38:32,9328328 MCLauncher.exe 6080 CreateFile C:\Windows\AppPatch\sysmain.sdb SUCCESS Desired Access: Generic Read, Disposition: Open, Options: Synchronous IO Non-Alert, Non-Directory File, Attributes: N, ShareMode: Read, AllocationSize: n/a, OpenResult: Opened 98 12:38:32,9328624 MCLauncher.exe 6080 QueryStandardInformationFile C:\Windows\AppPatch\sysmain.sdb SUCCESS AllocationSize: 3 866 624, EndOfFile: 3 863 594, NumberOfLinks: 2, DeletePending: False, Directory: False 98 12:38:32,9328710 MCLauncher.exe 6080 QueryStandardInformationFile C:\Windows\AppPatch\sysmain.sdb SUCCESS AllocationSize: 3 866 624, EndOfFile: 3 863 594, NumberOfLinks: 2, DeletePending: False, Directory: False 98 12:38:32,9328799 MCLauncher.exe 6080 CreateFileMapping C:\Windows\AppPatch\sysmain.sdb FILE LOCKED WITH ONLY READERS SyncType: SyncTypeCreateSection, PageProtection: PAGE_EXECUTE|PAGE_NOCACHE 98 12:38:32,9328915 MCLauncher.exe 6080 QueryNameInformationFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Name: \Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe 98 12:38:32,9329893 MCLauncher.exe 6080 CreateFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Desired Access: Synchronize, Disposition: Open, Options: Synchronous IO Non-Alert, Attributes: N, ShareMode: Read, Write, Delete, AllocationSize: n/a, OpenResult: Opened 98 12:38:32,9330073 MCLauncher.exe 6080 CloseFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS 98 12:38:32,9330348 MCLauncher.exe 6080 QueryNameInformationFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Name: \Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe 98 12:38:32,9331179 MCLauncher.exe 6080 CreateFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Desired Access: Synchronize, Disposition: Open, Options: Synchronous IO Non-Alert, Attributes: N, ShareMode: Read, Write, Delete, AllocationSize: n/a, OpenResult: Opened 98 12:38:32,9331348 MCLauncher.exe 6080 CloseFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS 98 12:38:32,9331907 MCLauncher.exe 6080 QueryStandardInformationFile C:\Windows\AppPatch\sysmain.sdb SUCCESS AllocationSize: 3 866 624, EndOfFile: 3 863 594, NumberOfLinks: 2, DeletePending: False, Directory: False 98 12:38:32,9332057 MCLauncher.exe 6080 CreateFileMapping C:\Windows\AppPatch\sysmain.sdb SUCCESS SyncType: SyncTypeOther 98 12:38:32,9333933 MCLauncher.exe 6080 CreateFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Desired Access: Generic Read, Disposition: Open, Options: Synchronous IO Non-Alert, Non-Directory File, Attributes: N, ShareMode: Read, AllocationSize: n/a, OpenResult: Opened 98 12:38:32,9334213 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Microsoft\Windows\CurrentVersion\Explorer\Shell Folders SUCCESS Desired Access: Query Value 98 12:38:32,9334351 MCLauncher.exe 6080 RegSetInfoKey HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Shell Folders SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 98 12:38:32,9334409 MCLauncher.exe 6080 RegQueryValue HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Shell Folders\Cache SUCCESS Type: REG_SZ, Length: 112, Data: C:\Users\User\AppData\Local\Microsoft\Windows\INetCache 98 12:38:32,9334609 MCLauncher.exe 6080 RegCloseKey HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Shell Folders SUCCESS 98 12:38:32,9334739 MCLauncher.exe 6080 QuerySecurityFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Information: Owner, Group, DACL, SACL, Label, Process Trust Label 98 12:38:32,9335653 MCLauncher.exe 6080 CreateFile C:\Windows\AppPatch\sysmain.sdb SUCCESS Desired Access: Generic Read, Disposition: Open, Options: Synchronous IO Non-Alert, Non-Directory File, Attributes: N, ShareMode: Read, AllocationSize: n/a, OpenResult: Opened 98 12:38:32,9335916 MCLauncher.exe 6080 QueryBasicInformationFile C:\Windows\AppPatch\sysmain.sdb SUCCESS CreationTime: 20.07.2018 1:33:29, LastAccessTime: 20.07.2018 1:33:29, LastWriteTime: 18.09.2017 4:09:15, ChangeTime: 20.07.2018 19:23:27, FileAttributes: A 98 12:38:32,9336019 MCLauncher.exe 6080 CloseFile C:\Windows\AppPatch\sysmain.sdb SUCCESS 98 12:38:32,9337019 MCLauncher.exe 6080 CreateFile C:\Windows\AppPatch\apppatch64\sysmain.sdb SUCCESS Desired Access: Generic Read, Disposition: Open, Options: Synchronous IO Non-Alert, Non-Directory File, Attributes: N, ShareMode: Read, AllocationSize: n/a, OpenResult: Opened 98 12:38:32,9337274 MCLauncher.exe 6080 QueryBasicInformationFile C:\Windows\AppPatch\apppatch64\sysmain.sdb SUCCESS CreationTime: 20.07.2018 1:21:40, LastAccessTime: 20.07.2018 1:21:40, LastWriteTime: 18.09.2017 4:15:39, ChangeTime: 20.07.2018 19:23:27, FileAttributes: A 98 12:38:32,9337368 MCLauncher.exe 6080 CloseFile C:\Windows\AppPatch\apppatch64\sysmain.sdb SUCCESS 98 12:38:32,9337595 MCLauncher.exe 6080 QueryBasicInformationFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS CreationTime: 24.08.2018 12:30:11, LastAccessTime: 24.08.2018 12:30:11, LastWriteTime: 24.08.2018 12:38:31, ChangeTime: 24.08.2018 12:38:31, FileAttributes: A 98 12:38:32,9337861 MCLauncher.exe 6080 CloseFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS 98 12:38:32,9338945 MCLauncher.exe 6080 CreateFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Desired Access: Generic Read, Disposition: Open, Options: Synchronous IO Non-Alert, Non-Directory File, Attributes: N, ShareMode: Read, AllocationSize: n/a, OpenResult: Opened 98 12:38:32,9339233 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Microsoft\Windows\CurrentVersion\Explorer\Shell Folders SUCCESS Desired Access: Query Value 98 12:38:32,9339346 MCLauncher.exe 6080 RegSetInfoKey HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Shell Folders SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 98 12:38:32,9339402 MCLauncher.exe 6080 RegQueryValue HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Shell Folders\Cache SUCCESS Type: REG_SZ, Length: 112, Data: C:\Users\User\AppData\Local\Microsoft\Windows\INetCache 98 12:38:32,9339585 MCLauncher.exe 6080 RegCloseKey HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Shell Folders SUCCESS 98 12:38:32,9339715 MCLauncher.exe 6080 QuerySecurityFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Information: Owner, Group, DACL, SACL, Label, Process Trust Label 98 12:38:32,9339817 MCLauncher.exe 6080 QueryBasicInformationFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS CreationTime: 24.08.2018 12:30:11, LastAccessTime: 24.08.2018 12:30:11, LastWriteTime: 24.08.2018 12:38:31, ChangeTime: 24.08.2018 12:38:31, FileAttributes: A 98 12:38:32,9340017 MCLauncher.exe 6080 CloseFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS 98 12:38:32,9341740 MCLauncher.exe 6080 CloseFile C:\Windows\AppPatch\sysmain.sdb SUCCESS 98 12:38:32,9344331 MCLauncher.exe 6080 CreateFile C:\Windows\AppPatch\AcLayers.dll SUCCESS Desired Access: Read Attributes, Disposition: Open, Options: Open Reparse Point, Attributes: n/a, ShareMode: Read, Write, Delete, AllocationSize: n/a, OpenResult: Opened 98 12:38:32,9344583 MCLauncher.exe 6080 QueryBasicInformationFile C:\Windows\AppPatch\AcLayers.dll SUCCESS CreationTime: 20.07.2018 1:33:29, LastAccessTime: 20.07.2018 1:33:29, LastWriteTime: 04.03.2017 9:24:10, ChangeTime: 20.07.2018 19:24:49, FileAttributes: A 98 12:38:32,9344660 MCLauncher.exe 6080 CloseFile C:\Windows\AppPatch\AcLayers.dll SUCCESS 98 12:38:32,9345561 MCLauncher.exe 6080 CreateFile C:\Windows\AppPatch\AcLayers.dll SUCCESS Desired Access: Read Data/List Directory, Execute/Traverse, Synchronize, Disposition: Open, Options: Synchronous IO Non-Alert, Non-Directory File, Attributes: n/a, ShareMode: Read, Delete, AllocationSize: n/a, OpenResult: Opened 98 12:38:32,9345830 MCLauncher.exe 6080 CreateFileMapping C:\Windows\AppPatch\AcLayers.dll FILE LOCKED WITH ONLY READERS SyncType: SyncTypeCreateSection, PageProtection: PAGE_EXECUTE|PAGE_NOCACHE 98 12:38:32,9345951 MCLauncher.exe 6080 QueryNameInformationFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Name: \Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe 98 12:38:32,9346808 MCLauncher.exe 6080 CreateFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Desired Access: Synchronize, Disposition: Open, Options: Synchronous IO Non-Alert, Attributes: N, ShareMode: Read, Write, Delete, AllocationSize: n/a, OpenResult: Opened 98 12:38:32,9346988 MCLauncher.exe 6080 CloseFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS 98 12:38:32,9347267 MCLauncher.exe 6080 QueryNameInformationFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Name: \Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe 98 12:38:32,9348099 MCLauncher.exe 6080 CreateFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Desired Access: Synchronize, Disposition: Open, Options: Synchronous IO Non-Alert, Attributes: N, ShareMode: Read, Write, Delete, AllocationSize: n/a, OpenResult: Opened 98 12:38:32,9348265 MCLauncher.exe 6080 CloseFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS 98 12:38:32,9349121 MCLauncher.exe 6080 CreateFileMapping C:\Windows\AppPatch\AcLayers.dll SUCCESS SyncType: SyncTypeOther 98 12:38:32,9349562 MCLauncher.exe 6080 Load Image C:\Windows\AppPatch\AcLayers.dll SUCCESS Image Base: 0x6b830000, Image Size: 0x277000 98 12:38:32,9350362 MCLauncher.exe 6080 Load Image C:\Windows\SysWOW64\msvcrt.dll SUCCESS Image Base: 0x74da0000, Image Size: 0xbe000 98 12:38:32,9351257 MCLauncher.exe 6080 Load Image C:\Windows\SysWOW64\user32.dll SUCCESS Image Base: 0x77560000, Image Size: 0x15f000 98 12:38:32,9352041 MCLauncher.exe 6080 Load Image C:\Windows\SysWOW64\win32u.dll SUCCESS Image Base: 0x774d0000, Image Size: 0x15000 98 12:38:32,9352931 MCLauncher.exe 6080 Load Image C:\Windows\SysWOW64\gdi32.dll SUCCESS Image Base: 0x77bb0000, Image Size: 0x2b000 98 12:38:32,9353720 MCLauncher.exe 6080 Load Image C:\Windows\SysWOW64\gdi32full.dll SUCCESS Image Base: 0x74c30000, Image Size: 0x15a000 98 12:38:32,9354665 MCLauncher.exe 6080 Load Image C:\Windows\SysWOW64\shell32.dll SUCCESS Image Base: 0x75ce0000, Image Size: 0x13d9000 98 12:38:32,9355632 MCLauncher.exe 6080 Load Image C:\Windows\SysWOW64\cfgmgr32.dll SUCCESS Image Base: 0x77cd0000, Image Size: 0x36000 98 12:38:32,9356607 MCLauncher.exe 6080 Load Image C:\Windows\SysWOW64\windows.storage.dll SUCCESS Image Base: 0x756c0000, Image Size: 0x56e000 98 12:38:32,9357408 MCLauncher.exe 6080 Load Image C:\Windows\SysWOW64\combase.dll SUCCESS Image Base: 0x74910000, Image Size: 0x212000 98 12:38:32,9358136 MCLauncher.exe 6080 Load Image C:\Windows\SysWOW64\ucrtbase.dll SUCCESS Image Base: 0x74830000, Image Size: 0xe0000 98 12:38:32,9359203 MCLauncher.exe 6080 Load Image C:\Windows\SysWOW64\rpcrt4.dll SUCCESS Image Base: 0x74b60000, Image Size: 0xc1000 98 12:38:32,9360034 MCLauncher.exe 6080 Load Image C:\Windows\SysWOW64\sspicli.dll SUCCESS Image Base: 0x747e0000, Image Size: 0x1f000 98 12:38:32,9360685 MCLauncher.exe 6080 Load Image C:\Windows\SysWOW64\cryptbase.dll SUCCESS Image Base: 0x747d0000, Image Size: 0xa000 98 12:38:32,9361361 MCLauncher.exe 6080 Load Image C:\Windows\SysWOW64\bcryptprimitives.dll SUCCESS Image Base: 0x776c0000, Image Size: 0x5a000 98 12:38:32,9362062 MCLauncher.exe 6080 Load Image C:\Windows\SysWOW64\sechost.dll SUCCESS Image Base: 0x75390000, Image Size: 0x41000 98 12:38:32,9363162 MCLauncher.exe 6080 Load Image C:\Windows\SysWOW64\powrprof.dll SUCCESS Image Base: 0x75040000, Image Size: 0x45000 98 12:38:32,9363985 MCLauncher.exe 6080 Load Image C:\Windows\SysWOW64\advapi32.dll SUCCESS Image Base: 0x75560000, Image Size: 0x77000 98 12:38:32,9364960 MCLauncher.exe 6080 Load Image C:\Windows\SysWOW64\shlwapi.dll SUCCESS Image Base: 0x75c90000, Image Size: 0x46000 98 12:38:32,9365891 MCLauncher.exe 6080 Load Image C:\Windows\SysWOW64\kernel.appcore.dll SUCCESS Image Base: 0x74b30000, Image Size: 0xd000 98 12:38:32,9366695 MCLauncher.exe 6080 Load Image C:\Windows\SysWOW64\SHCore.dll SUCCESS Image Base: 0x74e60000, Image Size: 0x88000 98 12:38:32,9367584 MCLauncher.exe 6080 Load Image C:\Windows\SysWOW64\profapi.dll SUCCESS Image Base: 0x774f0000, Image Size: 0xf000 98 12:38:32,9368545 MCLauncher.exe 6080 Load Image C:\Windows\SysWOW64\oleaut32.dll SUCCESS Image Base: 0x77800000, Image Size: 0x94000 98 12:38:32,9369244 MCLauncher.exe 6080 Load Image C:\Windows\SysWOW64\msvcp_win.dll SUCCESS Image Base: 0x77780000, Image Size: 0x7b000 98 12:38:32,9370252 MCLauncher.exe 6080 Load Image C:\Windows\SysWOW64\setupapi.dll SUCCESS Image Base: 0x770c0000, Image Size: 0x40b000 98 12:38:32,9370934 MCLauncher.exe 6080 CloseFile C:\Windows\AppPatch\AcLayers.dll SUCCESS 98 12:38:32,9383634 MCLauncher.exe 6080 CreateFile C:\Windows\SysWOW64\mpr.dll SUCCESS Desired Access: Read Attributes, Disposition: Open, Options: Open Reparse Point, Attributes: n/a, ShareMode: Read, Write, Delete, AllocationSize: n/a, OpenResult: Opened 98 12:38:32,9383919 MCLauncher.exe 6080 QueryBasicInformationFile C:\Windows\SysWOW64\mpr.dll SUCCESS CreationTime: 20.07.2018 1:34:06, LastAccessTime: 20.07.2018 1:34:06, LastWriteTime: 08.08.2017 8:16:23, ChangeTime: 20.07.2018 19:25:15, FileAttributes: A 98 12:38:32,9384011 MCLauncher.exe 6080 CloseFile C:\Windows\SysWOW64\mpr.dll SUCCESS 98 12:38:32,9385005 MCLauncher.exe 6080 CreateFile C:\Windows\SysWOW64\mpr.dll SUCCESS Desired Access: Read Data/List Directory, Execute/Traverse, Synchronize, Disposition: Open, Options: Synchronous IO Non-Alert, Non-Directory File, Attributes: n/a, ShareMode: Read, Delete, AllocationSize: n/a, OpenResult: Opened 98 12:38:32,9385288 MCLauncher.exe 6080 CreateFileMapping C:\Windows\SysWOW64\mpr.dll FILE LOCKED WITH ONLY READERS SyncType: SyncTypeCreateSection, PageProtection: PAGE_EXECUTE|PAGE_NOCACHE 98 12:38:32,9385457 MCLauncher.exe 6080 QueryNameInformationFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Name: \Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe 98 12:38:32,9386440 MCLauncher.exe 6080 CreateFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Desired Access: Synchronize, Disposition: Open, Options: Synchronous IO Non-Alert, Attributes: N, ShareMode: Read, Write, Delete, AllocationSize: n/a, OpenResult: Opened 98 12:38:32,9386626 MCLauncher.exe 6080 CloseFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS 98 12:38:32,9386911 MCLauncher.exe 6080 QueryNameInformationFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Name: \Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe 98 12:38:32,9388122 MCLauncher.exe 6080 CreateFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Desired Access: Synchronize, Disposition: Open, Options: Synchronous IO Non-Alert, Attributes: N, ShareMode: Read, Write, Delete, AllocationSize: n/a, OpenResult: Opened 98 12:38:32,9388322 MCLauncher.exe 6080 CloseFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS 98 12:38:32,9389042 MCLauncher.exe 6080 CreateFileMapping C:\Windows\SysWOW64\mpr.dll SUCCESS SyncType: SyncTypeOther 98 12:38:32,9389543 MCLauncher.exe 6080 Load Image C:\Windows\SysWOW64\mpr.dll SUCCESS Image Base: 0x74710000, Image Size: 0x16000 98 12:38:32,9390086 MCLauncher.exe 6080 CloseFile C:\Windows\SysWOW64\mpr.dll SUCCESS 98 12:38:32,9393137 MCLauncher.exe 6080 CreateFile C:\Windows\SysWOW64\sfc.dll SUCCESS Desired Access: Read Attributes, Disposition: Open, Options: Open Reparse Point, Attributes: n/a, ShareMode: Read, Write, Delete, AllocationSize: n/a, OpenResult: Opened 98 12:38:32,9393395 MCLauncher.exe 6080 QueryBasicInformationFile C:\Windows\SysWOW64\sfc.dll SUCCESS CreationTime: 16.07.2016 14:42:45, LastAccessTime: 16.07.2016 14:42:45, LastWriteTime: 16.07.2016 14:42:45, ChangeTime: 19.07.2018 19:38:51, FileAttributes: A 98 12:38:32,9393475 MCLauncher.exe 6080 CloseFile C:\Windows\SysWOW64\sfc.dll SUCCESS 98 12:38:32,9394442 MCLauncher.exe 6080 CreateFile C:\Windows\SysWOW64\sfc.dll SUCCESS Desired Access: Read Data/List Directory, Execute/Traverse, Synchronize, Disposition: Open, Options: Synchronous IO Non-Alert, Non-Directory File, Attributes: n/a, ShareMode: Read, Delete, AllocationSize: n/a, OpenResult: Opened 98 12:38:32,9394711 MCLauncher.exe 6080 CreateFileMapping C:\Windows\SysWOW64\sfc.dll FILE LOCKED WITH ONLY READERS SyncType: SyncTypeCreateSection, PageProtection: PAGE_EXECUTE|PAGE_NOCACHE 98 12:38:32,9394830 MCLauncher.exe 6080 QueryNameInformationFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Name: \Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe 98 12:38:32,9395683 MCLauncher.exe 6080 CreateFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Desired Access: Synchronize, Disposition: Open, Options: Synchronous IO Non-Alert, Attributes: N, ShareMode: Read, Write, Delete, AllocationSize: n/a, OpenResult: Opened 98 12:38:32,9395863 MCLauncher.exe 6080 CloseFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS 98 12:38:32,9396140 MCLauncher.exe 6080 QueryNameInformationFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Name: \Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe 98 12:38:32,9396971 MCLauncher.exe 6080 CreateFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Desired Access: Synchronize, Disposition: Open, Options: Synchronous IO Non-Alert, Attributes: N, ShareMode: Read, Write, Delete, AllocationSize: n/a, OpenResult: Opened 98 12:38:32,9397135 MCLauncher.exe 6080 CloseFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS 98 12:38:32,9397913 MCLauncher.exe 6080 CreateFileMapping C:\Windows\SysWOW64\sfc.dll SUCCESS SyncType: SyncTypeOther 98 12:38:32,9398434 MCLauncher.exe 6080 Load Image C:\Windows\SysWOW64\sfc.dll SUCCESS Image Base: 0x66680000, Image Size: 0x3000 98 12:38:32,9398675 MCLauncher.exe 6080 CloseFile C:\Windows\SysWOW64\sfc.dll SUCCESS 98 12:38:32,9401080 MCLauncher.exe 6080 CreateFile C:\Windows\SysWOW64\winspool.drv SUCCESS Desired Access: Read Attributes, Disposition: Open, Options: Open Reparse Point, Attributes: n/a, ShareMode: Read, Write, Delete, AllocationSize: n/a, OpenResult: Opened 98 12:38:32,9401329 MCLauncher.exe 6080 QueryBasicInformationFile C:\Windows\SysWOW64\winspool.drv SUCCESS CreationTime: 20.07.2018 1:35:14, LastAccessTime: 20.07.2018 1:35:14, LastWriteTime: 13.02.2018 0:51:43, ChangeTime: 20.07.2018 19:23:48, FileAttributes: A 98 12:38:32,9401407 MCLauncher.exe 6080 CloseFile C:\Windows\SysWOW64\winspool.drv SUCCESS 98 12:38:32,9402360 MCLauncher.exe 6080 CreateFile C:\Windows\SysWOW64\winspool.drv SUCCESS Desired Access: Read Data/List Directory, Execute/Traverse, Synchronize, Disposition: Open, Options: Synchronous IO Non-Alert, Non-Directory File, Attributes: n/a, ShareMode: Read, Delete, AllocationSize: n/a, OpenResult: Opened 98 12:38:32,9402623 MCLauncher.exe 6080 CreateFileMapping C:\Windows\SysWOW64\winspool.drv FILE LOCKED WITH ONLY READERS SyncType: SyncTypeCreateSection, PageProtection: PAGE_EXECUTE|PAGE_NOCACHE 98 12:38:32,9402737 MCLauncher.exe 6080 QueryNameInformationFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Name: \Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe 98 12:38:32,9403571 MCLauncher.exe 6080 CreateFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Desired Access: Synchronize, Disposition: Open, Options: Synchronous IO Non-Alert, Attributes: N, ShareMode: Read, Write, Delete, AllocationSize: n/a, OpenResult: Opened 98 12:38:32,9403748 MCLauncher.exe 6080 CloseFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS 98 12:38:32,9404020 MCLauncher.exe 6080 QueryNameInformationFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Name: \Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe 98 12:38:32,9404842 MCLauncher.exe 6080 CreateFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Desired Access: Synchronize, Disposition: Open, Options: Synchronous IO Non-Alert, Attributes: N, ShareMode: Read, Write, Delete, AllocationSize: n/a, OpenResult: Opened 98 12:38:32,9405009 MCLauncher.exe 6080 CloseFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS 98 12:38:32,9405635 MCLauncher.exe 6080 CreateFileMapping C:\Windows\SysWOW64\winspool.drv SUCCESS SyncType: SyncTypeOther 98 12:38:32,9406131 MCLauncher.exe 6080 Load Image C:\Windows\SysWOW64\winspool.drv SUCCESS Image Base: 0x700d0000, Image Size: 0x6a000 98 12:38:32,9406754 MCLauncher.exe 6080 CloseFile C:\Windows\SysWOW64\winspool.drv SUCCESS 98 12:38:32,9409926 MCLauncher.exe 6080 CreateFile C:\Windows\SysWOW64\bcrypt.dll SUCCESS Desired Access: Read Attributes, Disposition: Open, Options: Open Reparse Point, Attributes: n/a, ShareMode: Read, Write, Delete, AllocationSize: n/a, OpenResult: Opened 98 12:38:32,9410179 MCLauncher.exe 6080 QueryBasicInformationFile C:\Windows\SysWOW64\bcrypt.dll SUCCESS CreationTime: 20.07.2018 1:33:32, LastAccessTime: 20.07.2018 1:33:32, LastWriteTime: 09.12.2016 13:00:58, ChangeTime: 20.07.2018 19:44:33, FileAttributes: A 98 12:38:32,9410256 MCLauncher.exe 6080 CloseFile C:\Windows\SysWOW64\bcrypt.dll SUCCESS 98 12:38:32,9411218 MCLauncher.exe 6080 CreateFile C:\Windows\SysWOW64\bcrypt.dll SUCCESS Desired Access: Read Data/List Directory, Execute/Traverse, Synchronize, Disposition: Open, Options: Synchronous IO Non-Alert, Non-Directory File, Attributes: n/a, ShareMode: Read, Delete, AllocationSize: n/a, OpenResult: Opened 98 12:38:32,9411486 MCLauncher.exe 6080 CreateFileMapping C:\Windows\SysWOW64\bcrypt.dll FILE LOCKED WITH ONLY READERS SyncType: SyncTypeCreateSection, PageProtection: PAGE_EXECUTE|PAGE_NOCACHE 98 12:38:32,9411603 MCLauncher.exe 6080 QueryNameInformationFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Name: \Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe 98 12:38:32,9412439 MCLauncher.exe 6080 CreateFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Desired Access: Synchronize, Disposition: Open, Options: Synchronous IO Non-Alert, Attributes: N, ShareMode: Read, Write, Delete, AllocationSize: n/a, OpenResult: Opened 98 12:38:32,9412617 MCLauncher.exe 6080 CloseFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS 98 12:38:32,9412894 MCLauncher.exe 6080 QueryNameInformationFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Name: \Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe 98 12:38:32,9413714 MCLauncher.exe 6080 CreateFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Desired Access: Synchronize, Disposition: Open, Options: Synchronous IO Non-Alert, Attributes: N, ShareMode: Read, Write, Delete, AllocationSize: n/a, OpenResult: Opened 98 12:38:32,9413877 MCLauncher.exe 6080 CloseFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS 98 12:38:32,9414515 MCLauncher.exe 6080 CreateFileMapping C:\Windows\SysWOW64\bcrypt.dll SUCCESS SyncType: SyncTypeOther 98 12:38:32,9415027 MCLauncher.exe 6080 Load Image C:\Windows\SysWOW64\bcrypt.dll SUCCESS Image Base: 0x74190000, Image Size: 0x1b000 98 12:38:32,9415459 MCLauncher.exe 6080 CloseFile C:\Windows\SysWOW64\bcrypt.dll SUCCESS 98 12:38:32,9418039 MCLauncher.exe 6080 CreateFile C:\Windows\SysWOW64\sfc_os.dll SUCCESS Desired Access: Read Attributes, Disposition: Open, Options: Open Reparse Point, Attributes: n/a, ShareMode: Read, Write, Delete, AllocationSize: n/a, OpenResult: Opened 98 12:38:32,9418288 MCLauncher.exe 6080 QueryBasicInformationFile C:\Windows\SysWOW64\sfc_os.dll SUCCESS CreationTime: 16.07.2016 14:42:45, LastAccessTime: 16.07.2016 14:42:45, LastWriteTime: 16.07.2016 14:42:45, ChangeTime: 19.07.2018 19:38:51, FileAttributes: A 98 12:38:32,9418366 MCLauncher.exe 6080 CloseFile C:\Windows\SysWOW64\sfc_os.dll SUCCESS 98 12:38:32,9419330 MCLauncher.exe 6080 CreateFile C:\Windows\SysWOW64\sfc_os.dll SUCCESS Desired Access: Read Data/List Directory, Execute/Traverse, Synchronize, Disposition: Open, Options: Synchronous IO Non-Alert, Non-Directory File, Attributes: n/a, ShareMode: Read, Delete, AllocationSize: n/a, OpenResult: Opened 98 12:38:32,9419596 MCLauncher.exe 6080 CreateFileMapping C:\Windows\SysWOW64\sfc_os.dll FILE LOCKED WITH ONLY READERS SyncType: SyncTypeCreateSection, PageProtection: PAGE_EXECUTE|PAGE_NOCACHE 98 12:38:32,9419709 MCLauncher.exe 6080 QueryNameInformationFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Name: \Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe 98 12:38:32,9420546 MCLauncher.exe 6080 CreateFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Desired Access: Synchronize, Disposition: Open, Options: Synchronous IO Non-Alert, Attributes: N, ShareMode: Read, Write, Delete, AllocationSize: n/a, OpenResult: Opened 98 12:38:32,9420721 MCLauncher.exe 6080 CloseFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS 98 12:38:32,9420998 MCLauncher.exe 6080 QueryNameInformationFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Name: \Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe 98 12:38:32,9421820 MCLauncher.exe 6080 CreateFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Desired Access: Synchronize, Disposition: Open, Options: Synchronous IO Non-Alert, Attributes: N, ShareMode: Read, Write, Delete, AllocationSize: n/a, OpenResult: Opened 98 12:38:32,9421981 MCLauncher.exe 6080 CloseFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS 98 12:38:32,9422613 MCLauncher.exe 6080 CreateFileMapping C:\Windows\SysWOW64\sfc_os.dll SUCCESS SyncType: SyncTypeOther 98 12:38:32,9423112 MCLauncher.exe 6080 Load Image C:\Windows\SysWOW64\sfc_os.dll SUCCESS Image Base: 0x67690000, Image Size: 0xf000 98 12:38:32,9423563 MCLauncher.exe 6080 CloseFile C:\Windows\SysWOW64\sfc_os.dll SUCCESS 98 12:38:32,9427813 MCLauncher.exe 6080 CreateFile C:\Windows\AppPatch\AcLayers.dll SUCCESS Desired Access: Read Attributes, Disposition: Open, Options: Open Reparse Point, Attributes: n/a, ShareMode: Read, Write, Delete, AllocationSize: n/a, OpenResult: Opened 98 12:38:32,9428068 MCLauncher.exe 6080 QueryBasicInformationFile C:\Windows\AppPatch\AcLayers.dll SUCCESS CreationTime: 20.07.2018 1:33:29, LastAccessTime: 20.07.2018 1:33:29, LastWriteTime: 04.03.2017 9:24:10, ChangeTime: 20.07.2018 19:24:49, FileAttributes: A 98 12:38:32,9428151 MCLauncher.exe 6080 CloseFile C:\Windows\AppPatch\AcLayers.dll SUCCESS 98 12:38:32,9430329 MCLauncher.exe 6080 CreateFile C:\Windows\AppPatch\AcLayers.dll SUCCESS Desired Access: Read Attributes, Disposition: Open, Options: Open Reparse Point, Attributes: n/a, ShareMode: Read, Write, Delete, AllocationSize: n/a, OpenResult: Opened 98 12:38:32,9430553 MCLauncher.exe 6080 QueryBasicInformationFile C:\Windows\AppPatch\AcLayers.dll SUCCESS CreationTime: 20.07.2018 1:33:29, LastAccessTime: 20.07.2018 1:33:29, LastWriteTime: 04.03.2017 9:24:10, ChangeTime: 20.07.2018 19:24:49, FileAttributes: A 98 12:38:32,9430628 MCLauncher.exe 6080 CloseFile C:\Windows\AppPatch\AcLayers.dll SUCCESS 98 12:38:32,9431603 MCLauncher.exe 6080 RegQueryValue HKLM\System\CurrentControlSet\Control\{7746D80F-97E0-4E26-9543-26B41FC22F79}\{59AEE675-B203-4D61-9A1F-04518A20F359}\570069006E0064006F00770073004500780063006C007500640065006400500072006F00630073000000 NAME NOT FOUND Length: 0 98 12:38:32,9431714 MCLauncher.exe 6080 RegQueryValue HKLM\System\CurrentControlSet\Control\{7746D80F-97E0-4E26-9543-26B41FC22F79}\{59AEE675-B203-4D61-9A1F-04518A20F359}\570069006E0064006F00770073004500780063006C007500640065006400500072006F00630073000000 NAME NOT FOUND Length: 0 98 12:38:32,9431775 MCLauncher.exe 6080 RegQueryValue HKLM\System\CurrentControlSet\Control\{7746D80F-97E0-4E26-9543-26B41FC22F79}\{59AEE675-B203-4D61-9A1F-04518A20F359}\4B00650072006E0065006C002D004D00550049002D004E0075006D006200650072002D0041006C006C006F007700650064000000 NAME NOT FOUND Length: 0 98 12:38:32,9431833 MCLauncher.exe 6080 RegQueryValue HKLM\System\CurrentControlSet\Control\{7746D80F-97E0-4E26-9543-26B41FC22F79}\{59AEE675-B203-4D61-9A1F-04518A20F359}\4B00650072006E0065006C002D004D00550049002D004E0075006D006200650072002D0041006C006C006F007700650064000000 NAME NOT FOUND Length: 0 98 12:38:32,9431894 MCLauncher.exe 6080 RegQueryValue HKLM\System\CurrentControlSet\Control\{7746D80F-97E0-4E26-9543-26B41FC22F79}\{59AEE675-B203-4D61-9A1F-04518A20F359}\4B00650072006E0065006C002D004D00550049002D004C0061006E00670075006100670065002D0041006C006C006F007700650064000000 NAME NOT FOUND Length: 0 98 12:38:32,9431947 MCLauncher.exe 6080 RegQueryValue HKLM\System\CurrentControlSet\Control\{7746D80F-97E0-4E26-9543-26B41FC22F79}\{59AEE675-B203-4D61-9A1F-04518A20F359}\4B00650072006E0065006C002D004D00550049002D004C0061006E00670075006100670065002D0041006C006C006F007700650064000000 NAME NOT FOUND Length: 0 98 12:38:32,9432094 MCLauncher.exe 6080 RegOpenKey HKLM\SYSTEM\CurrentControlSet\Control\Nls\CustomLocale REPARSE Desired Access: Query Value 98 12:38:32,9432191 MCLauncher.exe 6080 RegOpenKey HKLM\System\CurrentControlSet\Control\Nls\CustomLocale SUCCESS Desired Access: Query Value 98 12:38:32,9432293 MCLauncher.exe 6080 RegSetInfoKey HKLM\System\CurrentControlSet\Control\Nls\CustomLocale SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 98 12:38:32,9432343 MCLauncher.exe 6080 RegQueryValue HKLM\System\CurrentControlSet\Control\Nls\CustomLocale\EMPTY NAME NOT FOUND Length: 120 98 12:38:32,9432520 MCLauncher.exe 6080 RegQueryValue HKLM\System\CurrentControlSet\Control\{7746D80F-97E0-4E26-9543-26B41FC22F79}\{59AEE675-B203-4D61-9A1F-04518A20F359}\4B00650072006E0065006C002D004D00550049002D004C0061006E00670075006100670065002D0044006900730061006C006C006F007700650064000000 NAME NOT FOUND Length: 0 98 12:38:32,9432587 MCLauncher.exe 6080 RegQueryValue HKLM\System\CurrentControlSet\Control\{7746D80F-97E0-4E26-9543-26B41FC22F79}\{59AEE675-B203-4D61-9A1F-04518A20F359}\4B00650072006E0065006C002D004D00550049002D004C0061006E00670075006100670065002D0044006900730061006C006C006F007700650064000000 NAME NOT FOUND Length: 0 98 12:38:32,9432645 MCLauncher.exe 6080 RegQueryValue HKLM\System\CurrentControlSet\Control\Nls\CustomLocale\EMPTY NAME NOT FOUND Length: 120 98 12:38:32,9432770 MCLauncher.exe 6080 RegQueryValue HKLM\System\CurrentControlSet\Control\{7746D80F-97E0-4E26-9543-26B41FC22F79}\{59AEE675-B203-4D61-9A1F-04518A20F359}\4B00650072006E0065006C002D004D00550049002D004C0061006E00670075006100670065002D0053004B0055000000 NAME NOT FOUND Length: 0 98 12:38:32,9432836 MCLauncher.exe 6080 RegQueryValue HKLM\System\CurrentControlSet\Control\{7746D80F-97E0-4E26-9543-26B41FC22F79}\{59AEE675-B203-4D61-9A1F-04518A20F359}\4B00650072006E0065006C002D004D00550049002D004C0061006E00670075006100670065002D0053004B0055000000 NAME NOT FOUND Length: 0 98 12:38:32,9433282 MCLauncher.exe 6080 RegOpenKey HKLM\System\CurrentControlSet\Control\NLS\Language REPARSE Desired Access: Read 98 12:38:32,9433352 MCLauncher.exe 6080 RegOpenKey HKLM\System\CurrentControlSet\Control\NLS\Language SUCCESS Desired Access: Read 98 12:38:32,9433429 MCLauncher.exe 6080 RegSetInfoKey HKLM\System\CurrentControlSet\Control\Nls\Language SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 98 12:38:32,9433476 MCLauncher.exe 6080 RegQueryValue HKLM\System\CurrentControlSet\Control\Nls\Language\InstallLanguageFallback BUFFER OVERFLOW Length: 16 98 12:38:32,9433662 MCLauncher.exe 6080 RegCloseKey HKLM\System\CurrentControlSet\Control\Nls\Language SUCCESS 98 12:38:32,9433753 MCLauncher.exe 6080 RegOpenKey HKLM\System\CurrentControlSet\Control\MUI\UILanguages REPARSE Desired Access: Read 98 12:38:32,9433817 MCLauncher.exe 6080 RegOpenKey HKLM\System\CurrentControlSet\Control\MUI\UILanguages SUCCESS Desired Access: Read 98 12:38:32,9433889 MCLauncher.exe 6080 RegSetInfoKey HKLM\System\CurrentControlSet\Control\MUI\UILanguages SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 98 12:38:32,9433939 MCLauncher.exe 6080 RegEnumKey HKLM\System\CurrentControlSet\Control\MUI\UILanguages SUCCESS Index: 0, Name: en-US 98 12:38:32,9434044 MCLauncher.exe 6080 RegQueryKey HKLM\System\CurrentControlSet\Control\MUI\UILanguages SUCCESS Query: HandleTags, HandleTags: 0x400 98 12:38:32,9434108 MCLauncher.exe 6080 RegOpenKey HKLM\System\CurrentControlSet\Control\MUI\UILanguages\en-US SUCCESS Desired Access: Read 98 12:38:32,9434188 MCLauncher.exe 6080 RegQueryValue HKLM\System\CurrentControlSet\Control\MUI\UILanguages\en-US\Type SUCCESS Type: REG_DWORD, Length: 4, Data: 273 98 12:38:32,9434449 MCLauncher.exe 6080 RegQueryValue HKLM\System\CurrentControlSet\Control\MUI\UILanguages\en-US\AlternateCodePage NAME NOT FOUND Length: 12 98 12:38:32,9434576 MCLauncher.exe 6080 RegCloseKey HKLM\System\CurrentControlSet\Control\MUI\UILanguages\en-US SUCCESS 98 12:38:32,9434623 MCLauncher.exe 6080 RegEnumKey HKLM\System\CurrentControlSet\Control\MUI\UILanguages SUCCESS Index: 1, Name: ru-RU 98 12:38:32,9434712 MCLauncher.exe 6080 RegQueryKey HKLM\System\CurrentControlSet\Control\MUI\UILanguages SUCCESS Query: HandleTags, HandleTags: 0x400 98 12:38:32,9434773 MCLauncher.exe 6080 RegOpenKey HKLM\System\CurrentControlSet\Control\MUI\UILanguages\ru-RU SUCCESS Desired Access: Read 98 12:38:32,9434850 MCLauncher.exe 6080 RegQueryValue HKLM\System\CurrentControlSet\Control\MUI\UILanguages\ru-RU\Type SUCCESS Type: REG_DWORD, Length: 4, Data: 146 98 12:38:32,9435064 MCLauncher.exe 6080 RegQueryValue HKLM\System\CurrentControlSet\Control\MUI\UILanguages\ru-RU\DefaultFallback SUCCESS Type: REG_SZ, Length: 12, Data: en-US 98 12:38:32,9435188 MCLauncher.exe 6080 RegQueryValue HKLM\System\CurrentControlSet\Control\MUI\UILanguages\ru-RU\en-US SUCCESS Type: REG_MULTI_SZ, Length: 4, Data: 98 12:38:32,9435321 MCLauncher.exe 6080 RegEnumValue HKLM\System\CurrentControlSet\Control\MUI\UILanguages\ru-RU SUCCESS Index: 0, Name: DefaultFallback, Type: REG_SZ, Length: 12, Data: en-US 98 12:38:32,9435380 MCLauncher.exe 6080 RegEnumValue HKLM\System\CurrentControlSet\Control\MUI\UILanguages\ru-RU SUCCESS Index: 1, Name: en-US, Type: REG_MULTI_SZ, Length: 4, Data: 98 12:38:32,9435429 MCLauncher.exe 6080 RegEnumValue HKLM\System\CurrentControlSet\Control\MUI\UILanguages\ru-RU SUCCESS Index: 2, Name: LCID, Type: REG_DWORD, Length: 4, Data: 1049 98 12:38:32,9435477 MCLauncher.exe 6080 RegEnumValue HKLM\System\CurrentControlSet\Control\MUI\UILanguages\ru-RU SUCCESS Index: 3, Name: Type, Type: REG_DWORD, Length: 4, Data: 146 98 12:38:32,9435524 MCLauncher.exe 6080 RegEnumValue HKLM\System\CurrentControlSet\Control\MUI\UILanguages\ru-RU NO MORE ENTRIES Index: 4, Length: 512 98 12:38:32,9435568 MCLauncher.exe 6080 RegQueryValue HKLM\System\CurrentControlSet\Control\MUI\UILanguages\ru-RU\AlternateCodePage NAME NOT FOUND Length: 12 98 12:38:32,9435707 MCLauncher.exe 6080 RegCloseKey HKLM\System\CurrentControlSet\Control\MUI\UILanguages\ru-RU SUCCESS 98 12:38:32,9435754 MCLauncher.exe 6080 RegEnumKey HKLM\System\CurrentControlSet\Control\MUI\UILanguages NO MORE ENTRIES Index: 2, Length: 512 98 12:38:32,9435798 MCLauncher.exe 6080 RegCloseKey HKLM\System\CurrentControlSet\Control\MUI\UILanguages SUCCESS 98 12:38:32,9435887 MCLauncher.exe 6080 RegOpenKey HKLM\System\CurrentControlSet\Control\MUI\UILanguages\PendingDelete REPARSE Desired Access: Read 98 12:38:32,9435953 MCLauncher.exe 6080 RegOpenKey HKLM\System\CurrentControlSet\Control\MUI\UILanguages\PendingDelete NAME NOT FOUND Desired Access: Read 98 12:38:32,9436061 MCLauncher.exe 6080 RegOpenKey HKLM\Software\WOW6432Node\Policies\Microsoft\MUI\Settings REPARSE Desired Access: Read 98 12:38:32,9436139 MCLauncher.exe 6080 RegOpenKey HKLM\SOFTWARE\Policies\Microsoft\MUI\Settings NAME NOT FOUND Desired Access: Read 98 12:38:32,9436261 MCLauncher.exe 6080 RegOpenKey HKCU SUCCESS Desired Access: Maximum Allowed, Granted Access: All Access 98 12:38:32,9436371 MCLauncher.exe 6080 RegQueryKey HKCU SUCCESS Query: HandleTags, HandleTags: 0x0 98 12:38:32,9436424 MCLauncher.exe 6080 RegQueryKey HKCU SUCCESS Query: Name 98 12:38:32,9436654 MCLauncher.exe 6080 RegOpenKey HKCU\Control Panel\Desktop\MuiCached\MachineLanguageConfiguration NAME NOT FOUND Desired Access: Read 98 12:38:32,9436793 MCLauncher.exe 6080 RegOpenKey HKLM\System\CurrentControlSet\Control\MUI\Settings\LanguageConfiguration REPARSE Desired Access: Read 98 12:38:32,9436848 MCLauncher.exe 6080 RegOpenKey HKLM\System\CurrentControlSet\Control\MUI\Settings\LanguageConfiguration SUCCESS Desired Access: Read 98 12:38:32,9436926 MCLauncher.exe 6080 RegSetInfoKey HKLM\System\CurrentControlSet\Control\MUI\Settings\LanguageConfiguration SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 98 12:38:32,9436970 MCLauncher.exe 6080 RegEnumValue HKLM\System\CurrentControlSet\Control\MUI\Settings\LanguageConfiguration NO MORE ENTRIES Index: 0, Length: 512 98 12:38:32,9437028 MCLauncher.exe 6080 RegCloseKey HKLM\System\CurrentControlSet\Control\MUI\Settings\LanguageConfiguration SUCCESS 98 12:38:32,9437072 MCLauncher.exe 6080 RegCloseKey HKCU SUCCESS 98 12:38:32,9437139 MCLauncher.exe 6080 RegOpenKey HKLM\Software\WOW6432Node\Policies\Microsoft\MUI\Settings REPARSE Desired Access: Read 98 12:38:32,9437200 MCLauncher.exe 6080 RegOpenKey HKLM\SOFTWARE\Policies\Microsoft\MUI\Settings NAME NOT FOUND Desired Access: Read 98 12:38:32,9437286 MCLauncher.exe 6080 RegOpenKey HKCU SUCCESS Desired Access: Maximum Allowed, Granted Access: All Access 98 12:38:32,9437369 MCLauncher.exe 6080 RegQueryKey HKCU SUCCESS Query: HandleTags, HandleTags: 0x0 98 12:38:32,9437419 MCLauncher.exe 6080 RegQueryKey HKCU SUCCESS Query: Name 98 12:38:32,9437485 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Policies\Microsoft\Control Panel\Desktop NAME NOT FOUND Desired Access: Read 98 12:38:32,9437585 MCLauncher.exe 6080 RegQueryKey HKCU SUCCESS Query: HandleTags, HandleTags: 0x0 98 12:38:32,9437629 MCLauncher.exe 6080 RegQueryKey HKCU SUCCESS Query: Name 98 12:38:32,9437693 MCLauncher.exe 6080 RegOpenKey HKCU\Control Panel\Desktop\LanguageConfiguration SUCCESS Desired Access: Read 98 12:38:32,9437768 MCLauncher.exe 6080 RegSetInfoKey HKCU\Control Panel\Desktop\LanguageConfiguration SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 98 12:38:32,9437807 MCLauncher.exe 6080 RegEnumValue HKCU\Control Panel\Desktop\LanguageConfiguration NO MORE ENTRIES Index: 0, Length: 512 98 12:38:32,9437854 MCLauncher.exe 6080 RegCloseKey HKCU\Control Panel\Desktop\LanguageConfiguration SUCCESS 98 12:38:32,9437893 MCLauncher.exe 6080 RegCloseKey HKCU SUCCESS 98 12:38:32,9437956 MCLauncher.exe 6080 RegOpenKey HKLM\Software\WOW6432Node\Policies\Microsoft\MUI\Settings REPARSE Desired Access: Read 98 12:38:32,9438012 MCLauncher.exe 6080 RegOpenKey HKLM\SOFTWARE\Policies\Microsoft\MUI\Settings NAME NOT FOUND Desired Access: Read 98 12:38:32,9438089 MCLauncher.exe 6080 RegOpenKey HKCU SUCCESS Desired Access: Maximum Allowed, Granted Access: All Access 98 12:38:32,9438164 MCLauncher.exe 6080 RegQueryKey HKCU SUCCESS Query: HandleTags, HandleTags: 0x0 98 12:38:32,9438211 MCLauncher.exe 6080 RegQueryKey HKCU SUCCESS Query: Name 98 12:38:32,9438275 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Policies\Microsoft\Control Panel\Desktop NAME NOT FOUND Desired Access: Read 98 12:38:32,9438352 MCLauncher.exe 6080 RegQueryKey HKCU SUCCESS Query: HandleTags, HandleTags: 0x0 98 12:38:32,9438397 MCLauncher.exe 6080 RegQueryKey HKCU SUCCESS Query: Name 98 12:38:32,9438460 MCLauncher.exe 6080 RegOpenKey HKCU\Control Panel\Desktop SUCCESS Desired Access: Read 98 12:38:32,9438524 MCLauncher.exe 6080 RegSetInfoKey HKCU\Control Panel\Desktop SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 98 12:38:32,9438566 MCLauncher.exe 6080 RegQueryValue HKCU\Control Panel\Desktop\PreferredUILanguages NAME NOT FOUND Length: 12 98 12:38:32,9438713 MCLauncher.exe 6080 RegCloseKey HKCU\Control Panel\Desktop SUCCESS 98 12:38:32,9438754 MCLauncher.exe 6080 RegCloseKey HKCU SUCCESS 98 12:38:32,9438832 MCLauncher.exe 6080 RegOpenKey HKLM\Software\WOW6432Node\Policies\Microsoft\MUI\Settings REPARSE Desired Access: Read 98 12:38:32,9438895 MCLauncher.exe 6080 RegOpenKey HKLM\SOFTWARE\Policies\Microsoft\MUI\Settings NAME NOT FOUND Desired Access: Read 98 12:38:32,9438979 MCLauncher.exe 6080 RegOpenKey HKCU SUCCESS Desired Access: Maximum Allowed, Granted Access: All Access 98 12:38:32,9439062 MCLauncher.exe 6080 RegQueryKey HKCU SUCCESS Query: HandleTags, HandleTags: 0x0 98 12:38:32,9439112 MCLauncher.exe 6080 RegQueryKey HKCU SUCCESS Query: Name 98 12:38:32,9439175 MCLauncher.exe 6080 RegOpenKey HKCU\Control Panel\Desktop\MuiCached SUCCESS Desired Access: Read 98 12:38:32,9439253 MCLauncher.exe 6080 RegSetInfoKey HKCU\Control Panel\Desktop\MuiCached SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 98 12:38:32,9439294 MCLauncher.exe 6080 RegQueryValue HKCU\Control Panel\Desktop\MuiCached\MachinePreferredUILanguages BUFFER OVERFLOW Length: 12 98 12:38:32,9439408 MCLauncher.exe 6080 RegQueryValue HKCU\Control Panel\Desktop\MuiCached\MachinePreferredUILanguages SUCCESS Type: REG_MULTI_SZ, Length: 12, Data: ru-RU 98 12:38:32,9439544 MCLauncher.exe 6080 RegCloseKey HKCU\Control Panel\Desktop\MuiCached SUCCESS 98 12:38:32,9439588 MCLauncher.exe 6080 RegCloseKey HKCU SUCCESS 98 12:38:32,9439691 MCLauncher.exe 6080 RegOpenKey HKLM\Software\WOW6432Node\Policies\Microsoft\MUI\Settings REPARSE Desired Access: Read 98 12:38:32,9439757 MCLauncher.exe 6080 RegOpenKey HKLM\SOFTWARE\Policies\Microsoft\MUI\Settings NAME NOT FOUND Desired Access: Read 98 12:38:32,9439840 MCLauncher.exe 6080 RegOpenKey HKCU SUCCESS Desired Access: Maximum Allowed, Granted Access: All Access 98 12:38:32,9439923 MCLauncher.exe 6080 RegQueryKey HKCU SUCCESS Query: HandleTags, HandleTags: 0x0 98 12:38:32,9439973 MCLauncher.exe 6080 RegQueryKey HKCU SUCCESS Query: Name 98 12:38:32,9440037 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Policies\Microsoft\Control Panel\Desktop NAME NOT FOUND Desired Access: Read 98 12:38:32,9440117 MCLauncher.exe 6080 RegQueryKey HKCU SUCCESS Query: HandleTags, HandleTags: 0x0 98 12:38:32,9440162 MCLauncher.exe 6080 RegQueryKey HKCU SUCCESS Query: Name 98 12:38:32,9440225 MCLauncher.exe 6080 RegOpenKey HKCU\Control Panel\Desktop SUCCESS Desired Access: Read 98 12:38:32,9440289 MCLauncher.exe 6080 RegSetInfoKey HKCU\Control Panel\Desktop SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 98 12:38:32,9440328 MCLauncher.exe 6080 RegQueryValue HKCU\Control Panel\Desktop\PreferredUILanguages NAME NOT FOUND Length: 12 98 12:38:32,9440453 MCLauncher.exe 6080 RegCloseKey HKCU\Control Panel\Desktop SUCCESS 98 12:38:32,9440494 MCLauncher.exe 6080 RegCloseKey HKCU SUCCESS 98 12:38:32,9440574 MCLauncher.exe 6080 RegOpenKey HKLM\Software\WOW6432Node\Policies\Microsoft\MUI\Settings REPARSE Desired Access: Read 98 12:38:32,9440638 MCLauncher.exe 6080 RegOpenKey HKLM\SOFTWARE\Policies\Microsoft\MUI\Settings NAME NOT FOUND Desired Access: Read 98 12:38:32,9440721 MCLauncher.exe 6080 RegOpenKey HKCU SUCCESS Desired Access: Maximum Allowed, Granted Access: All Access 98 12:38:32,9440802 MCLauncher.exe 6080 RegQueryKey HKCU SUCCESS Query: HandleTags, HandleTags: 0x0 98 12:38:32,9440851 MCLauncher.exe 6080 RegQueryKey HKCU SUCCESS Query: Name 98 12:38:32,9440915 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Policies\Microsoft\Control Panel\Desktop NAME NOT FOUND Desired Access: Read 98 12:38:32,9440996 MCLauncher.exe 6080 RegQueryKey HKCU SUCCESS Query: HandleTags, HandleTags: 0x0 98 12:38:32,9441043 MCLauncher.exe 6080 RegQueryKey HKCU SUCCESS Query: Name 98 12:38:32,9441104 MCLauncher.exe 6080 RegOpenKey HKCU\Control Panel\Desktop\LanguageConfiguration SUCCESS Desired Access: Read 98 12:38:32,9441170 MCLauncher.exe 6080 RegSetInfoKey HKCU\Control Panel\Desktop\LanguageConfiguration SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 98 12:38:32,9441212 MCLauncher.exe 6080 RegEnumValue HKCU\Control Panel\Desktop\LanguageConfiguration NO MORE ENTRIES Index: 0, Length: 512 98 12:38:32,9441259 MCLauncher.exe 6080 RegCloseKey HKCU\Control Panel\Desktop\LanguageConfiguration SUCCESS 98 12:38:32,9441298 MCLauncher.exe 6080 RegCloseKey HKCU SUCCESS 98 12:38:32,9443425 MCLauncher.exe 6080 CreateFile C:\Windows\SysWOW64\msvcrt.dll SUCCESS Desired Access: Read Control, Disposition: Open, Options: , Attributes: n/a, ShareMode: Read, Delete, AllocationSize: n/a, OpenResult: Opened 98 12:38:32,9443730 MCLauncher.exe 6080 QuerySecurityFile C:\Windows\SysWOW64\msvcrt.dll BUFFER OVERFLOW Information: Owner 98 12:38:32,9443819 MCLauncher.exe 6080 QuerySecurityFile C:\Windows\SysWOW64\msvcrt.dll SUCCESS Information: Owner 98 12:38:32,9443888 MCLauncher.exe 6080 CloseFile C:\Windows\SysWOW64\msvcrt.dll SUCCESS 98 12:38:32,9445096 MCLauncher.exe 6080 CreateFile C:\Windows\SysWOW64\win32u.dll SUCCESS Desired Access: Read Control, Disposition: Open, Options: , Attributes: n/a, ShareMode: Read, Delete, AllocationSize: n/a, OpenResult: Opened 98 12:38:32,9445373 MCLauncher.exe 6080 QuerySecurityFile C:\Windows\SysWOW64\win32u.dll BUFFER OVERFLOW Information: Owner 98 12:38:32,9445448 MCLauncher.exe 6080 QuerySecurityFile C:\Windows\SysWOW64\win32u.dll SUCCESS Information: Owner 98 12:38:32,9445514 MCLauncher.exe 6080 CloseFile C:\Windows\SysWOW64\win32u.dll SUCCESS 98 12:38:32,9446650 MCLauncher.exe 6080 CreateFile C:\Windows\SysWOW64\gdi32full.dll SUCCESS Desired Access: Read Control, Disposition: Open, Options: , Attributes: n/a, ShareMode: Read, Delete, AllocationSize: n/a, OpenResult: Opened 98 12:38:32,9446844 MCLauncher.exe 6080 QuerySecurityFile C:\Windows\SysWOW64\gdi32full.dll BUFFER OVERFLOW Information: Owner 98 12:38:32,9446913 MCLauncher.exe 6080 QuerySecurityFile C:\Windows\SysWOW64\gdi32full.dll SUCCESS Information: Owner 98 12:38:32,9446977 MCLauncher.exe 6080 CloseFile C:\Windows\SysWOW64\gdi32full.dll SUCCESS 98 12:38:32,9448188 MCLauncher.exe 6080 CreateFile C:\Windows\SysWOW64\gdi32.dll SUCCESS Desired Access: Read Control, Disposition: Open, Options: , Attributes: n/a, ShareMode: Read, Delete, AllocationSize: n/a, OpenResult: Opened 98 12:38:32,9448446 MCLauncher.exe 6080 QuerySecurityFile C:\Windows\SysWOW64\gdi32.dll BUFFER OVERFLOW Information: Owner 98 12:38:32,9448518 MCLauncher.exe 6080 QuerySecurityFile C:\Windows\SysWOW64\gdi32.dll SUCCESS Information: Owner 98 12:38:32,9448579 MCLauncher.exe 6080 CloseFile C:\Windows\SysWOW64\gdi32.dll SUCCESS 98 12:38:32,9449609 MCLauncher.exe 6080 CreateFile C:\Windows\SysWOW64\user32.dll SUCCESS Desired Access: Read Control, Disposition: Open, Options: , Attributes: n/a, ShareMode: Read, Delete, AllocationSize: n/a, OpenResult: Opened 98 12:38:32,9449867 MCLauncher.exe 6080 QuerySecurityFile C:\Windows\SysWOW64\user32.dll BUFFER OVERFLOW Information: Owner 98 12:38:32,9449936 MCLauncher.exe 6080 QuerySecurityFile C:\Windows\SysWOW64\user32.dll SUCCESS Information: Owner 98 12:38:32,9449997 MCLauncher.exe 6080 CloseFile C:\Windows\SysWOW64\user32.dll SUCCESS 98 12:38:32,9451238 MCLauncher.exe 6080 CreateFile C:\Windows\SysWOW64\cfgmgr32.dll SUCCESS Desired Access: Read Control, Disposition: Open, Options: , Attributes: n/a, ShareMode: Read, Delete, AllocationSize: n/a, OpenResult: Opened 98 12:38:32,9451499 MCLauncher.exe 6080 QuerySecurityFile C:\Windows\SysWOW64\cfgmgr32.dll BUFFER OVERFLOW Information: Owner 98 12:38:32,9451568 MCLauncher.exe 6080 QuerySecurityFile C:\Windows\SysWOW64\cfgmgr32.dll SUCCESS Information: Owner 98 12:38:32,9451629 MCLauncher.exe 6080 CloseFile C:\Windows\SysWOW64\cfgmgr32.dll SUCCESS 98 12:38:32,9452712 MCLauncher.exe 6080 CreateFile C:\Windows\SysWOW64\ucrtbase.dll SUCCESS Desired Access: Read Control, Disposition: Open, Options: , Attributes: n/a, ShareMode: Read, Delete, AllocationSize: n/a, OpenResult: Opened 98 12:38:32,9452964 MCLauncher.exe 6080 QuerySecurityFile C:\Windows\SysWOW64\ucrtbase.dll BUFFER OVERFLOW Information: Owner 98 12:38:32,9453036 MCLauncher.exe 6080 QuerySecurityFile C:\Windows\SysWOW64\ucrtbase.dll SUCCESS Information: Owner 98 12:38:32,9453100 MCLauncher.exe 6080 CloseFile C:\Windows\SysWOW64\ucrtbase.dll SUCCESS 98 12:38:32,9454111 MCLauncher.exe 6080 CreateFile C:\Windows\SysWOW64\bcryptprimitives.dll SUCCESS Desired Access: Read Control, Disposition: Open, Options: , Attributes: n/a, ShareMode: Read, Delete, AllocationSize: n/a, OpenResult: Opened 98 12:38:32,9454300 MCLauncher.exe 6080 QuerySecurityFile C:\Windows\SysWOW64\bcryptprimitives.dll BUFFER OVERFLOW Information: Owner 98 12:38:32,9454366 MCLauncher.exe 6080 QuerySecurityFile C:\Windows\SysWOW64\bcryptprimitives.dll SUCCESS Information: Owner 98 12:38:32,9454430 MCLauncher.exe 6080 CloseFile C:\Windows\SysWOW64\bcryptprimitives.dll SUCCESS 98 12:38:32,9455474 MCLauncher.exe 6080 CreateFile C:\Windows\SysWOW64\cryptbase.dll SUCCESS Desired Access: Read Control, Disposition: Open, Options: , Attributes: n/a, ShareMode: Read, Delete, AllocationSize: n/a, OpenResult: Opened 98 12:38:32,9455657 MCLauncher.exe 6080 QuerySecurityFile C:\Windows\SysWOW64\cryptbase.dll BUFFER OVERFLOW Information: Owner 98 12:38:32,9455724 MCLauncher.exe 6080 QuerySecurityFile C:\Windows\SysWOW64\cryptbase.dll SUCCESS Information: Owner 98 12:38:32,9455785 MCLauncher.exe 6080 CloseFile C:\Windows\SysWOW64\cryptbase.dll SUCCESS 98 12:38:32,9456935 MCLauncher.exe 6080 CreateFile C:\Windows\SysWOW64\sechost.dll SUCCESS Desired Access: Read Control, Disposition: Open, Options: , Attributes: n/a, ShareMode: Read, Delete, AllocationSize: n/a, OpenResult: Opened 98 12:38:32,9457198 MCLauncher.exe 6080 QuerySecurityFile C:\Windows\SysWOW64\sechost.dll BUFFER OVERFLOW Information: Owner 98 12:38:32,9457267 MCLauncher.exe 6080 QuerySecurityFile C:\Windows\SysWOW64\sechost.dll SUCCESS Information: Owner 98 12:38:32,9457328 MCLauncher.exe 6080 CloseFile C:\Windows\SysWOW64\sechost.dll SUCCESS 98 12:38:32,9458361 MCLauncher.exe 6080 CreateFile C:\Windows\SysWOW64\sspicli.dll SUCCESS Desired Access: Read Control, Disposition: Open, Options: , Attributes: n/a, ShareMode: Read, Delete, AllocationSize: n/a, OpenResult: Opened 98 12:38:32,9458611 MCLauncher.exe 6080 QuerySecurityFile C:\Windows\SysWOW64\sspicli.dll BUFFER OVERFLOW Information: Owner 98 12:38:32,9458680 MCLauncher.exe 6080 QuerySecurityFile C:\Windows\SysWOW64\sspicli.dll SUCCESS Information: Owner 98 12:38:32,9458738 MCLauncher.exe 6080 CloseFile C:\Windows\SysWOW64\sspicli.dll SUCCESS 98 12:38:32,9459727 MCLauncher.exe 6080 CreateFile C:\Windows\SysWOW64\rpcrt4.dll SUCCESS Desired Access: Read Control, Disposition: Open, Options: , Attributes: n/a, ShareMode: Read, Delete, AllocationSize: n/a, OpenResult: Opened 98 12:38:32,9459974 MCLauncher.exe 6080 QuerySecurityFile C:\Windows\SysWOW64\rpcrt4.dll BUFFER OVERFLOW Information: Owner 98 12:38:32,9460043 MCLauncher.exe 6080 QuerySecurityFile C:\Windows\SysWOW64\rpcrt4.dll SUCCESS Information: Owner 98 12:38:32,9460104 MCLauncher.exe 6080 CloseFile C:\Windows\SysWOW64\rpcrt4.dll SUCCESS 98 12:38:32,9461140 MCLauncher.exe 6080 CreateFile C:\Windows\SysWOW64\combase.dll SUCCESS Desired Access: Read Control, Disposition: Open, Options: , Attributes: n/a, ShareMode: Read, Delete, AllocationSize: n/a, OpenResult: Opened 98 12:38:32,9461384 MCLauncher.exe 6080 QuerySecurityFile C:\Windows\SysWOW64\combase.dll BUFFER OVERFLOW Information: Owner 98 12:38:32,9461453 MCLauncher.exe 6080 QuerySecurityFile C:\Windows\SysWOW64\combase.dll SUCCESS Information: Owner 98 12:38:32,9461514 MCLauncher.exe 6080 CloseFile C:\Windows\SysWOW64\combase.dll SUCCESS 98 12:38:32,9462584 MCLauncher.exe 6080 CreateFile C:\Windows\SysWOW64\powrprof.dll SUCCESS Desired Access: Read Control, Disposition: Open, Options: , Attributes: n/a, ShareMode: Read, Delete, AllocationSize: n/a, OpenResult: Opened 98 12:38:32,9462836 MCLauncher.exe 6080 QuerySecurityFile C:\Windows\SysWOW64\powrprof.dll BUFFER OVERFLOW Information: Owner 98 12:38:32,9462908 MCLauncher.exe 6080 QuerySecurityFile C:\Windows\SysWOW64\powrprof.dll SUCCESS Information: Owner 98 12:38:32,9462969 MCLauncher.exe 6080 CloseFile C:\Windows\SysWOW64\powrprof.dll SUCCESS 98 12:38:32,9463963 MCLauncher.exe 6080 CreateFile C:\Windows\SysWOW64\advapi32.dll SUCCESS Desired Access: Read Control, Disposition: Open, Options: , Attributes: n/a, ShareMode: Read, Delete, AllocationSize: n/a, OpenResult: Opened 98 12:38:32,9464216 MCLauncher.exe 6080 QuerySecurityFile C:\Windows\SysWOW64\advapi32.dll BUFFER OVERFLOW Information: Owner 98 12:38:32,9464285 MCLauncher.exe 6080 QuerySecurityFile C:\Windows\SysWOW64\advapi32.dll SUCCESS Information: Owner 98 12:38:32,9464346 MCLauncher.exe 6080 CloseFile C:\Windows\SysWOW64\advapi32.dll SUCCESS 98 12:38:32,9465437 MCLauncher.exe 6080 CreateFile C:\Windows\SysWOW64\shlwapi.dll SUCCESS Desired Access: Read Control, Disposition: Open, Options: , Attributes: n/a, ShareMode: Read, Delete, AllocationSize: n/a, OpenResult: Opened 98 12:38:32,9465687 MCLauncher.exe 6080 QuerySecurityFile C:\Windows\SysWOW64\shlwapi.dll BUFFER OVERFLOW Information: Owner 98 12:38:32,9465900 MCLauncher.exe 6080 QuerySecurityFile C:\Windows\SysWOW64\shlwapi.dll SUCCESS Information: Owner 98 12:38:32,9465983 MCLauncher.exe 6080 CloseFile C:\Windows\SysWOW64\shlwapi.dll SUCCESS 98 12:38:32,9467116 MCLauncher.exe 6080 CreateFile C:\Windows\SysWOW64\kernel.appcore.dll SUCCESS Desired Access: Read Control, Disposition: Open, Options: , Attributes: n/a, ShareMode: Read, Delete, AllocationSize: n/a, OpenResult: Opened 98 12:38:32,9467305 MCLauncher.exe 6080 QuerySecurityFile C:\Windows\SysWOW64\kernel.appcore.dll BUFFER OVERFLOW Information: Owner 98 12:38:32,9467371 MCLauncher.exe 6080 QuerySecurityFile C:\Windows\SysWOW64\kernel.appcore.dll SUCCESS Information: Owner 98 12:38:32,9467432 MCLauncher.exe 6080 CloseFile C:\Windows\SysWOW64\kernel.appcore.dll SUCCESS 98 12:38:32,9468452 MCLauncher.exe 6080 CreateFile C:\Windows\SysWOW64\SHCore.dll SUCCESS Desired Access: Read Control, Disposition: Open, Options: , Attributes: n/a, ShareMode: Read, Delete, AllocationSize: n/a, OpenResult: Opened 98 12:38:32,9468698 MCLauncher.exe 6080 QuerySecurityFile C:\Windows\SysWOW64\SHCore.dll BUFFER OVERFLOW Information: Owner 98 12:38:32,9468768 MCLauncher.exe 6080 QuerySecurityFile C:\Windows\SysWOW64\SHCore.dll SUCCESS Information: Owner 98 12:38:32,9468829 MCLauncher.exe 6080 CloseFile C:\Windows\SysWOW64\SHCore.dll SUCCESS 98 12:38:32,9469834 MCLauncher.exe 6080 CreateFile C:\Windows\SysWOW64\profapi.dll SUCCESS Desired Access: Read Control, Disposition: Open, Options: , Attributes: n/a, ShareMode: Read, Delete, AllocationSize: n/a, OpenResult: Opened 98 12:38:32,9470084 MCLauncher.exe 6080 QuerySecurityFile C:\Windows\SysWOW64\profapi.dll BUFFER OVERFLOW Information: Owner 98 12:38:32,9470150 MCLauncher.exe 6080 QuerySecurityFile C:\Windows\SysWOW64\profapi.dll SUCCESS Information: Owner 98 12:38:32,9470211 MCLauncher.exe 6080 CloseFile C:\Windows\SysWOW64\profapi.dll SUCCESS 98 12:38:32,9471197 MCLauncher.exe 6080 CreateFile C:\Windows\SysWOW64\windows.storage.dll SUCCESS Desired Access: Read Control, Disposition: Open, Options: , Attributes: n/a, ShareMode: Read, Delete, AllocationSize: n/a, OpenResult: Opened 98 12:38:32,9471380 MCLauncher.exe 6080 QuerySecurityFile C:\Windows\SysWOW64\windows.storage.dll BUFFER OVERFLOW Information: Owner 98 12:38:32,9471447 MCLauncher.exe 6080 QuerySecurityFile C:\Windows\SysWOW64\windows.storage.dll SUCCESS Information: Owner 98 12:38:32,9471508 MCLauncher.exe 6080 CloseFile C:\Windows\SysWOW64\windows.storage.dll SUCCESS 98 12:38:32,9472655 MCLauncher.exe 6080 CreateFile C:\Windows\SysWOW64\shell32.dll SUCCESS Desired Access: Read Control, Disposition: Open, Options: , Attributes: n/a, ShareMode: Read, Delete, AllocationSize: n/a, OpenResult: Opened 98 12:38:32,9472904 MCLauncher.exe 6080 QuerySecurityFile C:\Windows\SysWOW64\shell32.dll BUFFER OVERFLOW Information: Owner 98 12:38:32,9472973 MCLauncher.exe 6080 QuerySecurityFile C:\Windows\SysWOW64\shell32.dll SUCCESS Information: Owner 98 12:38:32,9473034 MCLauncher.exe 6080 CloseFile C:\Windows\SysWOW64\shell32.dll SUCCESS 98 12:38:32,9474281 MCLauncher.exe 6080 CreateFile C:\Windows\SysWOW64\msvcp_win.dll SUCCESS Desired Access: Read Control, Disposition: Open, Options: , Attributes: n/a, ShareMode: Read, Delete, AllocationSize: n/a, OpenResult: Opened 98 12:38:32,9474467 MCLauncher.exe 6080 QuerySecurityFile C:\Windows\SysWOW64\msvcp_win.dll BUFFER OVERFLOW Information: Owner 98 12:38:32,9474533 MCLauncher.exe 6080 QuerySecurityFile C:\Windows\SysWOW64\msvcp_win.dll SUCCESS Information: Owner 98 12:38:32,9474597 MCLauncher.exe 6080 CloseFile C:\Windows\SysWOW64\msvcp_win.dll SUCCESS 98 12:38:32,9475788 MCLauncher.exe 6080 CreateFile C:\Windows\SysWOW64\oleaut32.dll SUCCESS Desired Access: Read Control, Disposition: Open, Options: , Attributes: n/a, ShareMode: Read, Delete, AllocationSize: n/a, OpenResult: Opened 98 12:38:32,9476079 MCLauncher.exe 6080 QuerySecurityFile C:\Windows\SysWOW64\oleaut32.dll BUFFER OVERFLOW Information: Owner 98 12:38:32,9476151 MCLauncher.exe 6080 QuerySecurityFile C:\Windows\SysWOW64\oleaut32.dll SUCCESS Information: Owner 98 12:38:32,9476215 MCLauncher.exe 6080 CloseFile C:\Windows\SysWOW64\oleaut32.dll SUCCESS 98 12:38:32,9477268 MCLauncher.exe 6080 CreateFile C:\Windows\SysWOW64\mpr.dll SUCCESS Desired Access: Read Control, Disposition: Open, Options: , Attributes: n/a, ShareMode: Read, Delete, AllocationSize: n/a, OpenResult: Opened 98 12:38:32,9477512 MCLauncher.exe 6080 QuerySecurityFile C:\Windows\SysWOW64\mpr.dll BUFFER OVERFLOW Information: Owner 98 12:38:32,9477584 MCLauncher.exe 6080 QuerySecurityFile C:\Windows\SysWOW64\mpr.dll SUCCESS Information: Owner 98 12:38:32,9477642 MCLauncher.exe 6080 CloseFile C:\Windows\SysWOW64\mpr.dll SUCCESS 98 12:38:32,9478634 MCLauncher.exe 6080 CreateFile C:\Windows\SysWOW64\setupapi.dll SUCCESS Desired Access: Read Control, Disposition: Open, Options: , Attributes: n/a, ShareMode: Read, Delete, AllocationSize: n/a, OpenResult: Opened 98 12:38:32,9478883 MCLauncher.exe 6080 QuerySecurityFile C:\Windows\SysWOW64\setupapi.dll BUFFER OVERFLOW Information: Owner 98 12:38:32,9478952 MCLauncher.exe 6080 QuerySecurityFile C:\Windows\SysWOW64\setupapi.dll SUCCESS Information: Owner 98 12:38:32,9479013 MCLauncher.exe 6080 CloseFile C:\Windows\SysWOW64\setupapi.dll SUCCESS 98 12:38:32,9480063 MCLauncher.exe 6080 CreateFile C:\Windows\SysWOW64\sfc.dll SUCCESS Desired Access: Read Control, Disposition: Open, Options: , Attributes: n/a, ShareMode: Read, Delete, AllocationSize: n/a, OpenResult: Opened 98 12:38:32,9480296 MCLauncher.exe 6080 QuerySecurityFile C:\Windows\SysWOW64\sfc.dll BUFFER OVERFLOW Information: Owner 98 12:38:32,9480365 MCLauncher.exe 6080 QuerySecurityFile C:\Windows\SysWOW64\sfc.dll SUCCESS Information: Owner 98 12:38:32,9480426 MCLauncher.exe 6080 CloseFile C:\Windows\SysWOW64\sfc.dll SUCCESS 98 12:38:32,9481376 MCLauncher.exe 6080 CreateFile C:\Windows\SysWOW64\bcrypt.dll SUCCESS Desired Access: Read Control, Disposition: Open, Options: , Attributes: n/a, ShareMode: Read, Delete, AllocationSize: n/a, OpenResult: Opened 98 12:38:32,9481615 MCLauncher.exe 6080 QuerySecurityFile C:\Windows\SysWOW64\bcrypt.dll BUFFER OVERFLOW Information: Owner 98 12:38:32,9481684 MCLauncher.exe 6080 QuerySecurityFile C:\Windows\SysWOW64\bcrypt.dll SUCCESS Information: Owner 98 12:38:32,9481745 MCLauncher.exe 6080 CloseFile C:\Windows\SysWOW64\bcrypt.dll SUCCESS 98 12:38:32,9482723 MCLauncher.exe 6080 CreateFile C:\Windows\SysWOW64\winspool.drv SUCCESS Desired Access: Read Control, Disposition: Open, Options: , Attributes: n/a, ShareMode: Read, Delete, AllocationSize: n/a, OpenResult: Opened 98 12:38:32,9482961 MCLauncher.exe 6080 QuerySecurityFile C:\Windows\SysWOW64\winspool.drv BUFFER OVERFLOW Information: Owner 98 12:38:32,9483030 MCLauncher.exe 6080 QuerySecurityFile C:\Windows\SysWOW64\winspool.drv SUCCESS Information: Owner 98 12:38:32,9483091 MCLauncher.exe 6080 CloseFile C:\Windows\SysWOW64\winspool.drv SUCCESS 98 12:38:32,9484108 MCLauncher.exe 6080 CreateFile C:\Windows\SysWOW64\sfc_os.dll SUCCESS Desired Access: Read Control, Disposition: Open, Options: , Attributes: n/a, ShareMode: Read, Delete, AllocationSize: n/a, OpenResult: Opened 98 12:38:32,9484347 MCLauncher.exe 6080 QuerySecurityFile C:\Windows\SysWOW64\sfc_os.dll BUFFER OVERFLOW Information: Owner 98 12:38:32,9484416 MCLauncher.exe 6080 QuerySecurityFile C:\Windows\SysWOW64\sfc_os.dll SUCCESS Information: Owner 98 12:38:32,9484477 MCLauncher.exe 6080 CloseFile C:\Windows\SysWOW64\sfc_os.dll SUCCESS 98 12:38:32,9485269 MCLauncher.exe 6080 RegOpenKey HKLM\System\CurrentControlSet\Control\Nls\Sorting\Versions REPARSE Desired Access: Read 98 12:38:32,9485366 MCLauncher.exe 6080 RegOpenKey HKLM\System\CurrentControlSet\Control\Nls\Sorting\Versions SUCCESS Desired Access: Read 98 12:38:32,9485457 MCLauncher.exe 6080 RegSetInfoKey HKLM\System\CurrentControlSet\Control\Nls\Sorting\Versions SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 98 12:38:32,9485516 MCLauncher.exe 6080 RegQueryValue HKLM\System\CurrentControlSet\Control\Nls\Sorting\Versions\(Default) SUCCESS Type: REG_SZ, Length: 18, Data: 0006020E 98 12:38:32,9490179 MCLauncher.exe 6080 CreateFile C:\Windows\SysWOW64\imm32.dll SUCCESS Desired Access: Read Attributes, Disposition: Open, Options: Open Reparse Point, Attributes: n/a, ShareMode: Read, Write, Delete, AllocationSize: n/a, OpenResult: Opened 98 12:38:32,9490442 MCLauncher.exe 6080 QueryBasicInformationFile C:\Windows\SysWOW64\imm32.dll SUCCESS CreationTime: 16.07.2016 14:42:49, LastAccessTime: 16.07.2016 14:42:49, LastWriteTime: 16.07.2016 14:42:49, ChangeTime: 20.07.2018 19:26:58, FileAttributes: A 98 12:38:32,9490530 MCLauncher.exe 6080 CloseFile C:\Windows\SysWOW64\imm32.dll SUCCESS 98 12:38:32,9491558 MCLauncher.exe 6080 CreateFile C:\Windows\SysWOW64\imm32.dll SUCCESS Desired Access: Read Data/List Directory, Synchronize, Disposition: Open, Options: Synchronous IO Non-Alert, Non-Directory File, Attributes: n/a, ShareMode: Read, Delete, AllocationSize: n/a, OpenResult: Opened 98 12:38:32,9491846 MCLauncher.exe 6080 CreateFileMapping C:\Windows\SysWOW64\imm32.dll FILE LOCKED WITH ONLY READERS SyncType: SyncTypeCreateSection, PageProtection: PAGE_EXECUTE|PAGE_NOCACHE 98 12:38:32,9491974 MCLauncher.exe 6080 QueryNameInformationFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Name: \Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe 98 12:38:32,9492835 MCLauncher.exe 6080 CreateFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Desired Access: Synchronize, Disposition: Open, Options: Synchronous IO Non-Alert, Attributes: N, ShareMode: Read, Write, Delete, AllocationSize: n/a, OpenResult: Opened 98 12:38:32,9493016 MCLauncher.exe 6080 CloseFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS 98 12:38:32,9493298 MCLauncher.exe 6080 QueryNameInformationFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Name: \Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe 98 12:38:32,9494121 MCLauncher.exe 6080 CreateFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Desired Access: Synchronize, Disposition: Open, Options: Synchronous IO Non-Alert, Attributes: N, ShareMode: Read, Write, Delete, AllocationSize: n/a, OpenResult: Opened 98 12:38:32,9494287 MCLauncher.exe 6080 CloseFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS 98 12:38:32,9495226 MCLauncher.exe 6080 QueryStandardInformationFile C:\Windows\SysWOW64\imm32.dll SUCCESS AllocationSize: 147 456, EndOfFile: 144 632, NumberOfLinks: 2, DeletePending: False, Directory: False 98 12:38:32,9495429 MCLauncher.exe 6080 CreateFileMapping C:\Windows\SysWOW64\imm32.dll SUCCESS SyncType: SyncTypeOther 98 12:38:32,9496011 MCLauncher.exe 6080 CloseFile C:\Windows\SysWOW64\imm32.dll SUCCESS 98 12:38:32,9496759 MCLauncher.exe 6080 Load Image C:\Windows\SysWOW64\imm32.dll SUCCESS Image Base: 0x74800000, Image Size: 0x25000 98 12:38:32,9498640 MCLauncher.exe 6080 CreateFile C:\Windows\SysWOW64\imm32.dll SUCCESS Desired Access: Read Control, Disposition: Open, Options: , Attributes: n/a, ShareMode: Read, Delete, AllocationSize: n/a, OpenResult: Opened 98 12:38:32,9498928 MCLauncher.exe 6080 QuerySecurityFile C:\Windows\SysWOW64\imm32.dll BUFFER OVERFLOW Information: Owner 98 12:38:32,9499014 MCLauncher.exe 6080 QuerySecurityFile C:\Windows\SysWOW64\imm32.dll SUCCESS Information: Owner 98 12:38:32,9499089 MCLauncher.exe 6080 CloseFile C:\Windows\SysWOW64\imm32.dll SUCCESS 98 12:38:32,9501607 MCLauncher.exe 6080 CreateFile C:\Windows\SysWOW64\imm32.dll SUCCESS Desired Access: Read Attributes, Disposition: Open, Options: Open Reparse Point, Attributes: n/a, ShareMode: Read, Write, Delete, AllocationSize: n/a, OpenResult: Opened 98 12:38:32,9501845 MCLauncher.exe 6080 QueryBasicInformationFile C:\Windows\SysWOW64\imm32.dll SUCCESS CreationTime: 16.07.2016 14:42:49, LastAccessTime: 16.07.2016 14:42:49, LastWriteTime: 16.07.2016 14:42:49, ChangeTime: 20.07.2018 19:26:58, FileAttributes: A 98 12:38:32,9501926 MCLauncher.exe 6080 CloseFile C:\Windows\SysWOW64\imm32.dll SUCCESS 98 12:38:32,9504472 MCLauncher.exe 6080 CreateFile C:\Windows\SysWOW64\imm32.dll SUCCESS Desired Access: Read Attributes, Disposition: Open, Options: Open Reparse Point, Attributes: n/a, ShareMode: Read, Write, Delete, AllocationSize: n/a, OpenResult: Opened 98 12:38:32,9504912 MCLauncher.exe 6080 QueryBasicInformationFile C:\Windows\SysWOW64\imm32.dll SUCCESS CreationTime: 16.07.2016 14:42:49, LastAccessTime: 16.07.2016 14:42:49, LastWriteTime: 16.07.2016 14:42:49, ChangeTime: 20.07.2018 19:26:58, FileAttributes: A 98 12:38:32,9504998 MCLauncher.exe 6080 CloseFile C:\Windows\SysWOW64\imm32.dll SUCCESS 98 12:38:32,9505417 MCLauncher.exe 6080 RegQueryValue HKLM\System\CurrentControlSet\Control\WMI\Security\f25bcd2e-2690-55dc-3bc4-07b65b1b41c9 NAME NOT FOUND Length: 524 98 12:38:32,9505885 MCLauncher.exe 6080 RegOpenKey HKLM\Software\WOW6432Node\Microsoft\Windows NT\CurrentVersion\GRE_Initialize REPARSE Desired Access: Read 98 12:38:32,9506026 MCLauncher.exe 6080 RegOpenKey HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\GRE_Initialize SUCCESS Desired Access: Read 98 12:38:32,9506106 MCLauncher.exe 6080 RegSetInfoKey HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\GRE_Initialize SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 98 12:38:32,9506170 MCLauncher.exe 6080 RegQueryValue HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\GRE_Initialize\DisableMetaFiles NAME NOT FOUND Length: 20 98 12:38:32,9506353 MCLauncher.exe 6080 RegCloseKey HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\GRE_Initialize SUCCESS 98 12:38:32,9507852 MCLauncher.exe 6080 RegOpenKey HKLM\Software\Wow6432Node\Microsoft\Windows NT\CurrentVersion\Compatibility32 SUCCESS Desired Access: Read 98 12:38:32,9507993 MCLauncher.exe 6080 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows NT\CurrentVersion\Compatibility32\MCLauncher NAME NOT FOUND Length: 172 98 12:38:32,9508107 MCLauncher.exe 6080 RegCloseKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows NT\CurrentVersion\Compatibility32 SUCCESS 98 12:38:32,9508190 MCLauncher.exe 6080 RegOpenKey HKLM\Software\Wow6432Node\Microsoft\Windows NT\CurrentVersion\IME Compatibility NAME NOT FOUND Desired Access: Read 98 12:38:32,9511922 MCLauncher.exe 6080 RegOpenKey HKLM SUCCESS Desired Access: Maximum Allowed, Granted Access: Read 98 12:38:32,9512091 MCLauncher.exe 6080 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 98 12:38:32,9512168 MCLauncher.exe 6080 RegQueryKey HKLM SUCCESS Query: Name 98 12:38:32,9512279 MCLauncher.exe 6080 RegOpenKey HKLM\Software\WOW6432Node\Microsoft\Windows NT\CurrentVersion\Windows SUCCESS Desired Access: Read 98 12:38:32,9512398 MCLauncher.exe 6080 RegSetInfoKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows NT\CurrentVersion\Windows SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 98 12:38:32,9512479 MCLauncher.exe 6080 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows NT\CurrentVersion\Windows\LoadAppInit_DLLs SUCCESS Type: REG_DWORD, Length: 4, Data: 0 98 12:38:32,9512720 MCLauncher.exe 6080 RegCloseKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows NT\CurrentVersion\Windows SUCCESS 98 12:38:32,9521015 MCLauncher.exe 6080 RegOpenKey HKLM\Software\WOW6432Node\Microsoft\Windows NT\CurrentVersion\Image File Execution Options REPARSE Desired Access: Query Value, Enumerate Sub Keys 98 12:38:32,9521153 MCLauncher.exe 6080 RegOpenKey HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options SUCCESS Desired Access: Query Value, Enumerate Sub Keys 98 12:38:32,9521237 MCLauncher.exe 6080 RegSetInfoKey HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 98 12:38:32,9521342 MCLauncher.exe 6080 RegQueryKey HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options SUCCESS Query: HandleTags, HandleTags: 0x400 98 12:38:32,9521411 MCLauncher.exe 6080 RegOpenKey HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\MCLauncher.exe NAME NOT FOUND Desired Access: Query Value, Enumerate Sub Keys 98 12:38:32,9522830 MCLauncher.exe 6080 RegOpenKey HKLM\System\CurrentControlSet\Control\Lsa\FipsAlgorithmPolicy REPARSE Desired Access: Query Value 98 12:38:32,9522904 MCLauncher.exe 6080 RegOpenKey HKLM\System\CurrentControlSet\Control\Lsa\FipsAlgorithmPolicy SUCCESS Desired Access: Query Value 98 12:38:32,9522990 MCLauncher.exe 6080 RegSetInfoKey HKLM\System\CurrentControlSet\Control\Lsa\FipsAlgorithmPolicy SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 98 12:38:32,9523043 MCLauncher.exe 6080 RegQueryValue HKLM\System\CurrentControlSet\Control\Lsa\FipsAlgorithmPolicy\Enabled SUCCESS Type: REG_DWORD, Length: 4, Data: 0 98 12:38:32,9523229 MCLauncher.exe 6080 RegOpenKey HKLM\System\CurrentControlSet\Control\Lsa REPARSE Desired Access: Query Value 98 12:38:32,9523292 MCLauncher.exe 6080 RegOpenKey HKLM\System\CurrentControlSet\Control\Lsa SUCCESS Desired Access: Query Value 98 12:38:32,9523362 MCLauncher.exe 6080 RegSetInfoKey HKLM\System\CurrentControlSet\Control\Lsa SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 98 12:38:32,9523409 MCLauncher.exe 6080 RegQueryValue HKLM\System\CurrentControlSet\Control\Lsa\FipsAlgorithmPolicy NAME NOT FOUND Length: 20 98 12:38:32,9523536 MCLauncher.exe 6080 RegQueryValue HKLM\System\CurrentControlSet\Control\Lsa\FipsAlgorithmPolicy\MDMEnabled SUCCESS Type: REG_DWORD, Length: 4, Data: 0 98 12:38:32,9523705 MCLauncher.exe 6080 RegCloseKey HKLM\System\CurrentControlSet\Control\Lsa\FipsAlgorithmPolicy SUCCESS 98 12:38:32,9523758 MCLauncher.exe 6080 RegCloseKey HKLM\System\CurrentControlSet\Control\Lsa SUCCESS 98 12:38:32,9523835 MCLauncher.exe 6080 RegOpenKey HKLM\SYSTEM\CurrentControlSet\Policies\Microsoft\Cryptography\Configuration REPARSE Desired Access: Query Value 98 12:38:32,9523902 MCLauncher.exe 6080 RegOpenKey HKLM\System\CurrentControlSet\Policies\Microsoft\Cryptography\Configuration NAME NOT FOUND Desired Access: Query Value 98 12:38:32,9525071 MCLauncher.exe 6080 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 98 12:38:32,9525135 MCLauncher.exe 6080 RegQueryKey HKLM SUCCESS Query: Name 98 12:38:32,9525229 MCLauncher.exe 6080 RegOpenKey HKLM\SOFTWARE\WOW6432Node\Microsoft\OLE REPARSE Desired Access: Read 98 12:38:32,9525318 MCLauncher.exe 6080 RegOpenKey HKLM\SOFTWARE\Microsoft\Ole SUCCESS Desired Access: Read 98 12:38:32,9525381 MCLauncher.exe 6080 RegSetInfoKey HKLM\SOFTWARE\Microsoft\Ole SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 98 12:38:32,9525434 MCLauncher.exe 6080 RegQueryValue HKLM\SOFTWARE\Microsoft\Ole\PageAllocatorUseSystemHeap NAME NOT FOUND Length: 144 98 12:38:32,9525597 MCLauncher.exe 6080 RegCloseKey HKLM\SOFTWARE\Microsoft\Ole SUCCESS 98 12:38:32,9525667 MCLauncher.exe 6080 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 98 12:38:32,9525719 MCLauncher.exe 6080 RegQueryKey HKLM SUCCESS Query: Name 98 12:38:32,9525802 MCLauncher.exe 6080 RegOpenKey HKLM\SOFTWARE\WOW6432Node\Microsoft\OLE REPARSE Desired Access: Read 98 12:38:32,9525869 MCLauncher.exe 6080 RegOpenKey HKLM\SOFTWARE\Microsoft\Ole SUCCESS Desired Access: Read 98 12:38:32,9525924 MCLauncher.exe 6080 RegSetInfoKey HKLM\SOFTWARE\Microsoft\Ole SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 98 12:38:32,9525969 MCLauncher.exe 6080 RegQueryValue HKLM\SOFTWARE\Microsoft\Ole\PageAllocatorSystemHeapIsPrivate NAME NOT FOUND Length: 144 98 12:38:32,9526093 MCLauncher.exe 6080 RegCloseKey HKLM\SOFTWARE\Microsoft\Ole SUCCESS 98 12:38:32,9526157 MCLauncher.exe 6080 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 98 12:38:32,9526210 MCLauncher.exe 6080 RegQueryKey HKLM SUCCESS Query: Name 98 12:38:32,9526287 MCLauncher.exe 6080 RegOpenKey HKLM\SOFTWARE\WOW6432Node\Microsoft\OLE REPARSE Desired Access: Read 98 12:38:32,9526354 MCLauncher.exe 6080 RegOpenKey HKLM\SOFTWARE\Microsoft\Ole SUCCESS Desired Access: Read 98 12:38:32,9526406 MCLauncher.exe 6080 RegSetInfoKey HKLM\SOFTWARE\Microsoft\Ole SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 98 12:38:32,9526445 MCLauncher.exe 6080 RegQueryValue HKLM\SOFTWARE\Microsoft\Ole\AggressiveMTATesting NAME NOT FOUND Length: 144 98 12:38:32,9526562 MCLauncher.exe 6080 RegCloseKey HKLM\SOFTWARE\Microsoft\Ole SUCCESS 98 12:38:32,9526927 MCLauncher.exe 6080 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 98 12:38:32,9526980 MCLauncher.exe 6080 RegQueryKey HKLM SUCCESS Query: Name 98 12:38:32,9527066 MCLauncher.exe 6080 RegOpenKey HKLM\Software\WOW6432Node\Microsoft\OLE\Tracing REPARSE Desired Access: Read 98 12:38:32,9527135 MCLauncher.exe 6080 RegOpenKey HKLM\SOFTWARE\Microsoft\Ole\Tracing NAME NOT FOUND Desired Access: Read 98 12:38:32,9527551 MCLauncher.exe 6080 RegQueryValue HKLM\System\CurrentControlSet\Control\WMI\Security\1aff6089-e863-4d36-bdfd-3581f07440be NAME NOT FOUND Length: 524 98 12:38:32,9530343 MCLauncher.exe 6080 RegQueryValue HKLM\System\CurrentControlSet\Control\WMI\Security\30336ed4-e327-447c-9de0-51b652c86108 NAME NOT FOUND Length: 524 98 12:38:32,9530670 MCLauncher.exe 6080 RegQueryValue HKLM\System\CurrentControlSet\Control\WMI\Security\b87cf16b-0bf8-4492-a510-d5f59626b033 NAME NOT FOUND Length: 524 98 12:38:32,9531925 MCLauncher.exe 6080 RegQueryValue HKLM\System\CurrentControlSet\Control\WMI\Security\30336ed4-e327-447c-9de0-51b652c86108 NAME NOT FOUND Length: 524 98 12:38:32,9532164 MCLauncher.exe 6080 RegQueryValue HKLM\System\CurrentControlSet\Control\WMI\Security\b87cf16b-0bf8-4492-a510-d5f59626b033 NAME NOT FOUND Length: 524 98 12:38:32,9535932 MCLauncher.exe 6080 CreateFile C:\Windows\SysWOW64\ole32.dll SUCCESS Desired Access: Read Attributes, Disposition: Open, Options: Open Reparse Point, Attributes: n/a, ShareMode: Read, Write, Delete, AllocationSize: n/a, OpenResult: Opened 98 12:38:32,9536228 MCLauncher.exe 6080 QueryBasicInformationFile C:\Windows\SysWOW64\ole32.dll SUCCESS CreationTime: 20.07.2018 1:33:33, LastAccessTime: 20.07.2018 1:33:33, LastWriteTime: 22.03.2018 6:29:36, ChangeTime: 20.07.2018 19:26:57, FileAttributes: A 98 12:38:32,9536319 MCLauncher.exe 6080 CloseFile C:\Windows\SysWOW64\ole32.dll SUCCESS 98 12:38:32,9537317 MCLauncher.exe 6080 CreateFile C:\Windows\SysWOW64\ole32.dll SUCCESS Desired Access: Read Data/List Directory, Synchronize, Disposition: Open, Options: Synchronous IO Non-Alert, Non-Directory File, Attributes: n/a, ShareMode: Read, Delete, AllocationSize: n/a, OpenResult: Opened 98 12:38:32,9537611 MCLauncher.exe 6080 CreateFileMapping C:\Windows\SysWOW64\ole32.dll FILE LOCKED WITH ONLY READERS SyncType: SyncTypeCreateSection, PageProtection: PAGE_EXECUTE|PAGE_NOCACHE 98 12:38:32,9537771 MCLauncher.exe 6080 QueryNameInformationFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Name: \Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe 98 12:38:32,9538683 MCLauncher.exe 6080 CreateFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Desired Access: Synchronize, Disposition: Open, Options: Synchronous IO Non-Alert, Attributes: N, ShareMode: Read, Write, Delete, AllocationSize: n/a, OpenResult: Opened 98 12:38:32,9538874 MCLauncher.exe 6080 CloseFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS 98 12:38:32,9539170 MCLauncher.exe 6080 QueryNameInformationFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Name: \Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe 98 12:38:32,9540029 MCLauncher.exe 6080 CreateFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Desired Access: Synchronize, Disposition: Open, Options: Synchronous IO Non-Alert, Attributes: N, ShareMode: Read, Write, Delete, AllocationSize: n/a, OpenResult: Opened 98 12:38:32,9540204 MCLauncher.exe 6080 CloseFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS 98 12:38:32,9540819 MCLauncher.exe 6080 QueryStandardInformationFile C:\Windows\SysWOW64\ole32.dll SUCCESS AllocationSize: 966 656, EndOfFile: 962 760, NumberOfLinks: 2, DeletePending: False, Directory: False 98 12:38:32,9540977 MCLauncher.exe 6080 CreateFileMapping C:\Windows\SysWOW64\ole32.dll SUCCESS SyncType: SyncTypeOther 98 12:38:32,9541478 MCLauncher.exe 6080 CloseFile C:\Windows\SysWOW64\ole32.dll SUCCESS 98 12:38:32,9541880 MCLauncher.exe 6080 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 98 12:38:32,9541946 MCLauncher.exe 6080 RegQueryKey HKLM SUCCESS Query: Name 98 12:38:32,9542057 MCLauncher.exe 6080 RegOpenKey HKLM\SOFTWARE\WOW6432Node\Microsoft\OLEAUT NAME NOT FOUND Desired Access: Query Value 98 12:38:32,9542478 MCLauncher.exe 6080 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 98 12:38:32,9542534 MCLauncher.exe 6080 RegQueryKey HKLM SUCCESS Query: Name 98 12:38:32,9542617 MCLauncher.exe 6080 RegOpenKey HKLM\system\CurrentControlSet\control\NetworkProvider\HwOrder REPARSE Desired Access: Read 98 12:38:32,9542703 MCLauncher.exe 6080 RegOpenKey HKLM\System\CurrentControlSet\control\NetworkProvider\HwOrder SUCCESS Desired Access: Read 98 12:38:32,9542794 MCLauncher.exe 6080 RegSetInfoKey HKLM\System\CurrentControlSet\Control\NetworkProvider\HwOrder SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 98 12:38:32,9543467 MCLauncher.exe 6080 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 98 12:38:32,9543523 MCLauncher.exe 6080 RegQueryKey HKLM SUCCESS Query: Name 98 12:38:32,9543750 MCLauncher.exe 6080 RegOpenKey HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Setup REPARSE Desired Access: Read 98 12:38:32,9543855 MCLauncher.exe 6080 RegOpenKey HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Setup SUCCESS Desired Access: Read 98 12:38:32,9543925 MCLauncher.exe 6080 RegSetInfoKey HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Setup SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 98 12:38:32,9543983 MCLauncher.exe 6080 RegQueryValue HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Setup\SourcePath NAME NOT FOUND Length: 16 98 12:38:32,9544149 MCLauncher.exe 6080 RegCloseKey HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Setup SUCCESS 98 12:38:32,9544648 MCLauncher.exe 6080 RegQueryValue HKLM\System\CurrentControlSet\Control\WMI\Security\f3a71a4b-6118-4257-8ccb-39a33ba059d4 NAME NOT FOUND Length: 524 98 12:38:32,9545432 MCLauncher.exe 6080 RegQueryValue HKLM\System\CurrentControlSet\Control\WMI\Security\c69cb70a-3133-4cca-ab0e-046848effcda NAME NOT FOUND Length: 524 98 12:38:32,9547537 MCLauncher.exe 6080 RegOpenKey HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\SideBySide\AssemblyStorageRoots NAME NOT FOUND Desired Access: Enumerate Sub Keys 97 12:38:32,9555420 MCLauncher.exe 84 QueryNameInformationFile C:\Windows\System32\wow64.dll SUCCESS Name: \Windows\System32\wow64.dll 97 12:38:32,9555583 MCLauncher.exe 84 QueryNameInformationFile C:\Windows\System32\wow64win.dll SUCCESS Name: \Windows\System32\wow64win.dll 97 12:38:32,9555683 MCLauncher.exe 84 QueryNameInformationFile C:\Windows\System32\wow64cpu.dll SUCCESS Name: \Windows\System32\wow64cpu.dll 97 12:38:32,9555819 MCLauncher.exe 84 QueryNameInformationFile C:\Windows\SysWOW64\edputil.dll SUCCESS Name: \Windows\SysWOW64\edputil.dll 97 12:38:32,9555918 MCLauncher.exe 84 QueryNameInformationFile C:\Windows\SysWOW64\sfc.dll SUCCESS Name: \Windows\SysWOW64\sfc.dll 97 12:38:32,9556010 MCLauncher.exe 84 QueryNameInformationFile C:\Windows\SysWOW64\sfc_os.dll SUCCESS Name: \Windows\SysWOW64\sfc_os.dll 97 12:38:32,9556104 MCLauncher.exe 84 QueryNameInformationFile C:\Windows\AppPatch\AcLayers.dll SUCCESS Name: \Windows\AppPatch\AcLayers.dll 97 12:38:32,9556243 MCLauncher.exe 84 QueryNameInformationFile C:\Windows\SysWOW64\winspool.drv SUCCESS Name: \Windows\SysWOW64\winspool.drv 97 12:38:32,9556340 MCLauncher.exe 84 QueryNameInformationFile C:\Windows\SysWOW64\netutils.dll SUCCESS Name: \Windows\SysWOW64\netutils.dll 97 12:38:32,9556431 MCLauncher.exe 84 QueryNameInformationFile C:\Windows\SysWOW64\wkscli.dll SUCCESS Name: \Windows\SysWOW64\wkscli.dll 97 12:38:32,9556522 MCLauncher.exe 84 QueryNameInformationFile C:\Windows\SysWOW64\netapi32.dll SUCCESS Name: \Windows\SysWOW64\netapi32.dll 97 12:38:32,9556617 MCLauncher.exe 84 QueryNameInformationFile C:\Windows\SysWOW64\iertutil.dll SUCCESS Name: \Windows\SysWOW64\iertutil.dll 97 12:38:32,9556711 MCLauncher.exe 84 QueryNameInformationFile C:\Windows\SysWOW64\propsys.dll SUCCESS Name: \Windows\SysWOW64\propsys.dll 97 12:38:32,9556802 MCLauncher.exe 84 QueryNameInformationFile C:\Windows\SysWOW64\urlmon.dll SUCCESS Name: \Windows\SysWOW64\urlmon.dll 97 12:38:32,9556894 MCLauncher.exe 84 QueryNameInformationFile C:\Windows\SysWOW64\secur32.dll SUCCESS Name: \Windows\SysWOW64\secur32.dll 97 12:38:32,9556985 MCLauncher.exe 84 QueryNameInformationFile C:\Windows\SysWOW64\rsaenh.dll SUCCESS Name: \Windows\SysWOW64\rsaenh.dll 97 12:38:32,9557076 MCLauncher.exe 84 QueryNameInformationFile C:\Windows\SysWOW64\uxtheme.dll SUCCESS Name: \Windows\SysWOW64\uxtheme.dll 97 12:38:32,9557168 MCLauncher.exe 84 QueryNameInformationFile C:\Windows\SysWOW64\bcrypt.dll SUCCESS Name: \Windows\SysWOW64\bcrypt.dll 97 12:38:32,9557257 MCLauncher.exe 84 QueryNameInformationFile C:\Windows\SysWOW64\cryptsp.dll SUCCESS Name: \Windows\SysWOW64\cryptsp.dll 97 12:38:32,9557348 MCLauncher.exe 84 QueryNameInformationFile C:\Windows\SysWOW64\winmmbase.dll SUCCESS Name: \Windows\SysWOW64\winmmbase.dll 97 12:38:32,9557442 MCLauncher.exe 84 QueryNameInformationFile C:\Windows\SysWOW64\winmm.dll SUCCESS Name: \Windows\SysWOW64\winmm.dll 97 12:38:32,9557534 MCLauncher.exe 84 QueryNameInformationFile C:\Windows\SysWOW64\version.dll SUCCESS Name: \Windows\SysWOW64\version.dll 97 12:38:32,9557625 MCLauncher.exe 84 QueryNameInformationFile C:\Windows\SysWOW64\mpr.dll SUCCESS Name: \Windows\SysWOW64\mpr.dll 97 12:38:32,9557716 MCLauncher.exe 84 QueryNameInformationFile C:\Windows\SysWOW64\apphelp.dll SUCCESS Name: \Windows\SysWOW64\apphelp.dll 97 12:38:32,9557802 MCLauncher.exe 84 QueryNameInformationFile C:\Windows\SysWOW64\cryptbase.dll SUCCESS Name: \Windows\SysWOW64\cryptbase.dll 97 12:38:32,9557888 MCLauncher.exe 84 QueryNameInformationFile C:\Windows\SysWOW64\sspicli.dll SUCCESS Name: \Windows\SysWOW64\sspicli.dll 97 12:38:32,9557974 MCLauncher.exe 84 QueryNameInformationFile C:\Windows\SysWOW64\imm32.dll SUCCESS Name: \Windows\SysWOW64\imm32.dll 97 12:38:32,9558063 MCLauncher.exe 84 QueryNameInformationFile C:\Windows\SysWOW64\ucrtbase.dll SUCCESS Name: \Windows\SysWOW64\ucrtbase.dll 97 12:38:32,9558146 MCLauncher.exe 84 QueryNameInformationFile C:\Windows\SysWOW64\combase.dll SUCCESS Name: \Windows\SysWOW64\combase.dll 97 12:38:32,9558229 MCLauncher.exe 84 QueryNameInformationFile C:\Windows\SysWOW64\kernel.appcore.dll SUCCESS Name: \Windows\SysWOW64\kernel.appcore.dll 97 12:38:32,9558315 MCLauncher.exe 84 QueryNameInformationFile C:\Windows\SysWOW64\rpcrt4.dll SUCCESS Name: \Windows\SysWOW64\rpcrt4.dll 97 12:38:32,9558401 MCLauncher.exe 84 QueryNameInformationFile C:\Windows\SysWOW64\gdi32full.dll SUCCESS Name: \Windows\SysWOW64\gdi32full.dll 97 12:38:32,9558492 MCLauncher.exe 84 QueryNameInformationFile C:\Windows\SysWOW64\psapi.dll SUCCESS Name: \Windows\SysWOW64\psapi.dll 97 12:38:32,9558575 MCLauncher.exe 84 QueryNameInformationFile C:\Windows\SysWOW64\msvcrt.dll SUCCESS Name: \Windows\SysWOW64\msvcrt.dll 97 12:38:32,9558658 MCLauncher.exe 84 QueryNameInformationFile C:\Windows\SysWOW64\SHCore.dll SUCCESS Name: \Windows\SysWOW64\SHCore.dll 97 12:38:32,9558744 MCLauncher.exe 84 QueryNameInformationFile C:\Windows\SysWOW64\clbcatq.dll SUCCESS Name: \Windows\SysWOW64\clbcatq.dll 97 12:38:32,9558827 MCLauncher.exe 84 QueryNameInformationFile C:\Windows\SysWOW64\ws2_32.dll SUCCESS Name: \Windows\SysWOW64\ws2_32.dll 97 12:38:32,9558913 MCLauncher.exe 84 QueryNameInformationFile C:\Windows\SysWOW64\powrprof.dll SUCCESS Name: \Windows\SysWOW64\powrprof.dll 97 12:38:32,9558999 MCLauncher.exe 84 QueryNameInformationFile C:\Windows\SysWOW64\msasn1.dll SUCCESS Name: \Windows\SysWOW64\msasn1.dll 97 12:38:32,9559085 MCLauncher.exe 84 QueryNameInformationFile C:\Windows\SysWOW64\KernelBase.dll SUCCESS Name: \Windows\SysWOW64\KernelBase.dll 97 12:38:32,9559171 MCLauncher.exe 84 QueryNameInformationFile C:\Windows\SysWOW64\sechost.dll SUCCESS Name: \Windows\SysWOW64\sechost.dll 97 12:38:32,9559251 MCLauncher.exe 84 QueryNameInformationFile C:\Windows\SysWOW64\crypt32.dll SUCCESS Name: \Windows\SysWOW64\crypt32.dll 97 12:38:32,9559334 MCLauncher.exe 84 QueryNameInformationFile C:\Windows\SysWOW64\advapi32.dll SUCCESS Name: \Windows\SysWOW64\advapi32.dll 97 12:38:32,9559418 MCLauncher.exe 84 QueryNameInformationFile C:\Windows\SysWOW64\kernel32.dll SUCCESS Name: \Windows\SysWOW64\kernel32.dll 97 12:38:32,9559503 MCLauncher.exe 84 QueryNameInformationFile C:\Windows\SysWOW64\windows.storage.dll SUCCESS Name: \Windows\SysWOW64\windows.storage.dll 97 12:38:32,9559587 MCLauncher.exe 84 QueryNameInformationFile C:\Windows\SysWOW64\shlwapi.dll SUCCESS Name: \Windows\SysWOW64\shlwapi.dll 97 12:38:32,9559672 MCLauncher.exe 84 QueryNameInformationFile C:\Windows\SysWOW64\shell32.dll SUCCESS Name: \Windows\SysWOW64\shell32.dll 97 12:38:32,9559756 MCLauncher.exe 84 QueryNameInformationFile C:\Windows\SysWOW64\setupapi.dll SUCCESS Name: \Windows\SysWOW64\setupapi.dll 97 12:38:32,9559842 MCLauncher.exe 84 QueryNameInformationFile C:\Windows\SysWOW64\win32u.dll SUCCESS Name: \Windows\SysWOW64\win32u.dll 97 12:38:32,9559927 MCLauncher.exe 84 QueryNameInformationFile C:\Windows\SysWOW64\profapi.dll SUCCESS Name: \Windows\SysWOW64\profapi.dll 97 12:38:32,9560011 MCLauncher.exe 84 QueryNameInformationFile C:\Windows\SysWOW64\user32.dll SUCCESS Name: \Windows\SysWOW64\user32.dll 97 12:38:32,9560091 MCLauncher.exe 84 QueryNameInformationFile C:\Windows\SysWOW64\bcryptprimitives.dll SUCCESS Name: \Windows\SysWOW64\bcryptprimitives.dll 97 12:38:32,9560174 MCLauncher.exe 84 QueryNameInformationFile C:\Windows\SysWOW64\msvcp_win.dll SUCCESS Name: \Windows\SysWOW64\msvcp_win.dll 97 12:38:32,9560260 MCLauncher.exe 84 QueryNameInformationFile C:\Windows\SysWOW64\oleaut32.dll SUCCESS Name: \Windows\SysWOW64\oleaut32.dll 97 12:38:32,9560343 MCLauncher.exe 84 QueryNameInformationFile C:\Windows\SysWOW64\ole32.dll SUCCESS Name: \Windows\SysWOW64\ole32.dll 97 12:38:32,9560426 MCLauncher.exe 84 QueryNameInformationFile C:\Windows\SysWOW64\gdi32.dll SUCCESS Name: \Windows\SysWOW64\gdi32.dll 97 12:38:32,9560506 MCLauncher.exe 84 QueryNameInformationFile C:\Windows\SysWOW64\comdlg32.dll SUCCESS Name: \Windows\SysWOW64\comdlg32.dll 97 12:38:32,9560592 MCLauncher.exe 84 QueryNameInformationFile C:\Windows\SysWOW64\cfgmgr32.dll SUCCESS Name: \Windows\SysWOW64\cfgmgr32.dll 97 12:38:32,9560681 MCLauncher.exe 84 QueryNameInformationFile C:\Windows\SysWOW64\ntdll.dll SUCCESS Name: \Windows\SysWOW64\ntdll.dll 97 12:38:32,9560772 MCLauncher.exe 84 QueryNameInformationFile C:\Windows\System32\ntdll.dll SUCCESS Name: \Windows\System32\ntdll.dll 97 12:38:32,9561094 MCLauncher.exe 84 Process Exit SUCCESS Exit Status: 0, User Time: 0.2656250 seconds, Kernel Time: 0.3281250 seconds, Private Bytes: 81 195 008, Peak Private Bytes: 98 897 920, Working Set: 90 238 976, Peak Working Set: 104 038 400 97 12:38:32,9561620 MCLauncher.exe 84 QueryNameInformationFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Name: \Users\User\Downloads\MCLauncher.exe 97 12:38:32,9562681 MCLauncher.exe 84 CreateFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Desired Access: Synchronize, Disposition: Open, Options: Synchronous IO Non-Alert, Attributes: N, ShareMode: Read, Write, Delete, AllocationSize: n/a, OpenResult: Opened 97 12:38:32,9562886 MCLauncher.exe 84 CloseFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS 97 12:38:32,9563512 MCLauncher.exe 84 QueryNameInformationFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Name: \Users\User\Downloads\MCLauncher.exe 97 12:38:32,9564435 MCLauncher.exe 84 CreateFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS Desired Access: Synchronize, Disposition: Open, Options: Synchronous IO Non-Alert, Attributes: N, ShareMode: Read, Write, Delete, AllocationSize: n/a, OpenResult: Opened 97 12:38:32,9564612 MCLauncher.exe 84 CloseFile C:\Users\User\Downloads\MCLauncher.exe SUCCESS 98 12:38:32,9566336 MCLauncher.exe 6080 CreateFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe.Local NAME NOT FOUND Desired Access: Read Attributes, Disposition: Open, Options: Open Reparse Point, Attributes: n/a, ShareMode: Read, Write, Delete, AllocationSize: n/a 98 12:38:32,9567497 MCLauncher.exe 6080 CreateFile C:\Windows\WinSxS\x86_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.9247_none_5090cb78bcba4a35 SUCCESS Desired Access: Execute/Traverse, Synchronize, Disposition: Open, Options: Directory, Synchronous IO Non-Alert, Attributes: n/a, ShareMode: Read, Write, AllocationSize: n/a, OpenResult: Opened 98 12:38:32,9567979 MCLauncher.exe 6080 Thread Create SUCCESS Thread ID: 3432 98 12:38:32,9570383 MCLauncher.exe 6080 CreateFile C:\Windows\WinSxS\x86_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.9247_none_5090cb78bcba4a35\msvcr90.dll SUCCESS Desired Access: Read Attributes, Disposition: Open, Options: Open Reparse Point, Attributes: n/a, ShareMode: Read, Write, Delete, AllocationSize: n/a, OpenResult: Opened 98 12:38:32,9570566 MCLauncher.exe 6080 QueryBasicInformationFile C:\Windows\WinSxS\x86_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.9247_none_5090cb78bcba4a35\msvcr90.dll SUCCESS CreationTime: 16.07.2016 14:43:08, LastAccessTime: 16.07.2016 14:43:08, LastWriteTime: 16.07.2016 14:43:08, ChangeTime: 19.07.2018 19:37:26, FileAttributes: A 98 12:38:32,9570652 MCLauncher.exe 6080 CloseFile C:\Windows\WinSxS\x86_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.9247_none_5090cb78bcba4a35\msvcr90.dll SUCCESS 98 12:38:32,9571614 MCLauncher.exe 6080 CreateFile C:\Windows\WinSxS\x86_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.9247_none_5090cb78bcba4a35\msvcr90.dll SUCCESS Desired Access: Read Data/List Directory, Execute/Traverse, Synchronize, Disposition: Open, Options: Synchronous IO Non-Alert, Non-Directory File, Attributes: n/a, ShareMode: Read, Delete, AllocationSize: n/a, OpenResult: Opened 98 12:38:32,9571810 MCLauncher.exe 6080 CreateFileMapping C:\Windows\WinSxS\x86_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.9247_none_5090cb78bcba4a35\msvcr90.dll FILE LOCKED WITH ONLY READERS SyncType: SyncTypeCreateSection, PageProtection: PAGE_EXECUTE|PAGE_NOCACHE 98 12:38:32,9572018 MCLauncher.exe 6080 QueryNameInformationFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Name: \Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe 98 12:38:32,9572993 MCLauncher.exe 6080 CreateFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Desired Access: Synchronize, Disposition: Open, Options: Synchronous IO Non-Alert, Attributes: N, ShareMode: Read, Write, Delete, AllocationSize: n/a, OpenResult: Opened 98 12:38:32,9573209 MCLauncher.exe 6080 CloseFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS 98 12:38:32,9573503 MCLauncher.exe 6080 QueryNameInformationFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Name: \Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe 98 12:38:32,9574351 MCLauncher.exe 6080 CreateFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Desired Access: Synchronize, Disposition: Open, Options: Synchronous IO Non-Alert, Attributes: N, ShareMode: Read, Write, Delete, AllocationSize: n/a, OpenResult: Opened 98 12:38:32,9574523 MCLauncher.exe 6080 CloseFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS 98 12:38:32,9575224 MCLauncher.exe 6080 CreateFileMapping C:\Windows\WinSxS\x86_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.9247_none_5090cb78bcba4a35\msvcr90.dll SUCCESS SyncType: SyncTypeOther 98 12:38:32,9575672 MCLauncher.exe 6080 Load Image C:\Windows\WinSxS\x86_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.9247_none_5090cb78bcba4a35\msvcr90.dll SUCCESS Image Base: 0x613d0000, Image Size: 0xa3000 98 12:38:32,9576099 MCLauncher.exe 6080 CloseFile C:\Windows\WinSxS\x86_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.9247_none_5090cb78bcba4a35\msvcr90.dll SUCCESS 98 12:38:32,9577127 MCLauncher.exe 6080 RegQueryKey HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options SUCCESS Query: HandleTags, HandleTags: 0x400 98 12:38:32,9577216 MCLauncher.exe 6080 RegOpenKey HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\DllNXOptions SUCCESS Desired Access: Query Value, Enumerate Sub Keys 98 12:38:32,9577324 MCLauncher.exe 6080 RegQueryValue HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\DllNXOptions\UseFilter NAME NOT FOUND Length: 544 98 12:38:32,9577468 MCLauncher.exe 6080 RegQueryValue HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\DllNXOptions\MCLauncher.exe NAME NOT FOUND Length: 1 024 98 12:38:32,9581466 MCLauncher.exe 6080 CreateFile C:\Windows\WinSxS\x86_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.9247_none_5090cb78bcba4a35\msvcr90.dll SUCCESS Desired Access: Read Attributes, Disposition: Open, Options: Open Reparse Point, Attributes: n/a, ShareMode: Read, Write, Delete, AllocationSize: n/a, OpenResult: Opened 98 12:38:32,9581632 MCLauncher.exe 6080 QueryBasicInformationFile C:\Windows\WinSxS\x86_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.9247_none_5090cb78bcba4a35\msvcr90.dll SUCCESS CreationTime: 16.07.2016 14:43:08, LastAccessTime: 16.07.2016 14:43:08, LastWriteTime: 16.07.2016 14:43:08, ChangeTime: 19.07.2018 19:37:26, FileAttributes: A 98 12:38:32,9581718 MCLauncher.exe 6080 CloseFile C:\Windows\WinSxS\x86_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.9247_none_5090cb78bcba4a35\msvcr90.dll SUCCESS 98 12:38:32,9582012 MCLauncher.exe 6080 CreateFile C:\ SUCCESS Desired Access: Read Data/List Directory, Synchronize, Disposition: Open, Options: Directory, Synchronous IO Non-Alert, Attributes: n/a, ShareMode: Read, Write, Delete, AllocationSize: n/a, OpenResult: Opened 98 12:38:32,9582192 MCLauncher.exe 6080 QueryDirectory C:\Windows SUCCESS Filter: Windows, 1: Windows 98 12:38:32,9582374 MCLauncher.exe 6080 CloseFile C:\ SUCCESS 98 12:38:32,9583483 MCLauncher.exe 6080 CreateFile C:\Windows SUCCESS Desired Access: Read Data/List Directory, Synchronize, Disposition: Open, Options: Directory, Synchronous IO Non-Alert, Attributes: n/a, ShareMode: Read, Write, Delete, AllocationSize: n/a, OpenResult: Opened 98 12:38:32,9583699 MCLauncher.exe 6080 QueryDirectory C:\Windows\WinSxS SUCCESS Filter: WinSxS, 1: WinSxS 98 12:38:32,9583876 MCLauncher.exe 6080 CloseFile C:\Windows SUCCESS 98 12:38:32,9584979 MCLauncher.exe 6080 CreateFile C:\Windows\WinSxS\x86_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.9247_none_5090cb78bcba4a35 SUCCESS Desired Access: Read Data/List Directory, Synchronize, Disposition: Open, Options: Directory, Synchronous IO Non-Alert, Attributes: n/a, ShareMode: Read, Write, Delete, AllocationSize: n/a, OpenResult: Opened 98 12:38:32,9585167 MCLauncher.exe 6080 QueryDirectory C:\Windows\WinSxS\x86_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.9247_none_5090cb78bcba4a35\MSVCR90.dll SUCCESS Filter: MSVCR90.dll, 1: msvcr90.dll 98 12:38:32,9585317 MCLauncher.exe 6080 CloseFile C:\Windows\WinSxS\x86_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.9247_none_5090cb78bcba4a35 SUCCESS 98 12:38:32,9667672 MCLauncher.exe 6080 QueryNameInformationFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Name: \Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe 98 12:38:32,9680702 MCLauncher.exe 6080 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 98 12:38:32,9680812 MCLauncher.exe 6080 RegQueryKey HKLM SUCCESS Query: Name 98 12:38:32,9680965 MCLauncher.exe 6080 RegOpenKey HKLM\Software\WOW6432Node\Python\PythonCore\MCLauncher\PythonPath NAME NOT FOUND Desired Access: Read 98 12:38:32,9681198 MCLauncher.exe 6080 RegOpenKey HKCU SUCCESS Desired Access: Maximum Allowed, Granted Access: All Access 98 12:38:32,9681344 MCLauncher.exe 6080 RegQueryKey HKCU SUCCESS Query: HandleTags, HandleTags: 0x0 98 12:38:32,9681394 MCLauncher.exe 6080 RegQueryKey HKCU SUCCESS Query: Name 98 12:38:32,9681472 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Python\PythonCore\MCLauncher\PythonPath NAME NOT FOUND Desired Access: Read 98 12:38:32,9682250 MCLauncher.exe 6080 RegOpenKey HKLM\SYSTEM\CurrentControlSet\Control\Session Manager REPARSE Desired Access: Query Value, Enumerate Sub Keys 98 12:38:32,9682342 MCLauncher.exe 6080 RegOpenKey HKLM\System\CurrentControlSet\Control\Session Manager SUCCESS Desired Access: Query Value, Enumerate Sub Keys 98 12:38:32,9682439 MCLauncher.exe 6080 RegSetInfoKey HKLM\System\CurrentControlSet\Control\Session Manager SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 98 12:38:32,9682491 MCLauncher.exe 6080 RegQueryValue HKLM\System\CurrentControlSet\Control\Session Manager\ResourcePolicies NAME NOT FOUND Length: 24 98 12:38:32,9682699 MCLauncher.exe 6080 RegCloseKey HKLM\System\CurrentControlSet\Control\Session Manager SUCCESS 98 12:38:32,9693335 MCLauncher.exe 6080 CreateFile C:\Users\User\AppData\Roaming\MCLauncher\zlib.pyd NAME NOT FOUND Desired Access: Read Attributes, Disposition: Open, Options: Open Reparse Point, Attributes: n/a, ShareMode: Read, Write, Delete, AllocationSize: n/a 98 12:38:32,9694444 MCLauncher.exe 6080 CreateFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Desired Access: Generic Read, Disposition: Open, Options: Synchronous IO Non-Alert, Non-Directory File, Attributes: N, ShareMode: Read, AllocationSize: n/a, OpenResult: Opened 98 12:38:32,9694690 MCLauncher.exe 6080 QueryStandardInformationFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS AllocationSize: 17 244 160, EndOfFile: 17 240 149, NumberOfLinks: 1, DeletePending: False, Directory: False 98 12:38:32,9694829 MCLauncher.exe 6080 CreateFileMapping C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe FILE LOCKED WITH ONLY READERS SyncType: SyncTypeCreateSection, PageProtection: PAGE_EXECUTE|PAGE_NOCACHE 98 12:38:32,9694989 MCLauncher.exe 6080 QueryNameInformationFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Name: \Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe 98 12:38:32,9695865 MCLauncher.exe 6080 CreateFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Desired Access: Synchronize, Disposition: Open, Options: Synchronous IO Non-Alert, Attributes: N, ShareMode: Read, Write, Delete, AllocationSize: n/a, OpenResult: Opened 98 12:38:32,9696056 MCLauncher.exe 6080 CloseFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS 98 12:38:32,9696375 MCLauncher.exe 6080 QueryNameInformationFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Name: \Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe 98 12:38:32,9697217 MCLauncher.exe 6080 CreateFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Desired Access: Synchronize, Disposition: Open, Options: Synchronous IO Non-Alert, Attributes: N, ShareMode: Read, Write, Delete, AllocationSize: n/a, OpenResult: Opened 98 12:38:32,9697394 MCLauncher.exe 6080 CloseFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS 98 12:38:32,9697724 MCLauncher.exe 6080 QueryStandardInformationFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS AllocationSize: 17 244 160, EndOfFile: 17 240 149, NumberOfLinks: 1, DeletePending: False, Directory: False 98 12:38:32,9697865 MCLauncher.exe 6080 CreateFileMapping C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS SyncType: SyncTypeOther 98 12:38:32,9698001 MCLauncher.exe 6080 CloseFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS 98 12:38:32,9699572 MCLauncher.exe 6080 RegQueryKey HKCU SUCCESS Query: HandleTags, HandleTags: 0x0 98 12:38:32,9699641 MCLauncher.exe 6080 RegQueryKey HKCU SUCCESS Query: Name 98 12:38:32,9699907 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Python\PythonCore\MCLauncher\Modules\linecache NAME NOT FOUND Desired Access: Query Value 98 12:38:32,9700087 MCLauncher.exe 6080 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 98 12:38:32,9700140 MCLauncher.exe 6080 RegQueryKey HKLM SUCCESS Query: Name 98 12:38:32,9700234 MCLauncher.exe 6080 RegOpenKey HKLM\Software\WOW6432Node\Python\PythonCore\MCLauncher\Modules\linecache NAME NOT FOUND Desired Access: Query Value 98 12:38:32,9702035 MCLauncher.exe 6080 CreateFile C:\Users\User\AppData\Roaming\MCLauncher SUCCESS Desired Access: Read Data/List Directory, Synchronize, Disposition: Open, Options: Directory, Synchronous IO Non-Alert, Attributes: n/a, ShareMode: Read, Write, Delete, AllocationSize: n/a, OpenResult: Opened 98 12:38:32,9702254 MCLauncher.exe 6080 QueryDirectory C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Filter: MCLauncher.exe, 1: MCLauncher.exe 98 12:38:32,9705077 MCLauncher.exe 6080 CreateFile C:\Windows\SysWOW64\tzres.dll SUCCESS Desired Access: Read Attributes, Disposition: Open, Options: Open Reparse Point, Attributes: n/a, ShareMode: Read, Write, Delete, AllocationSize: n/a, OpenResult: Opened 98 12:38:32,9705390 MCLauncher.exe 6080 QueryBasicInformationFile C:\Windows\SysWOW64\tzres.dll SUCCESS CreationTime: 20.07.2018 1:33:47, LastAccessTime: 20.07.2018 1:33:47, LastWriteTime: 30.03.2018 6:12:25, ChangeTime: 20.07.2018 19:25:55, FileAttributes: A 98 12:38:32,9705476 MCLauncher.exe 6080 CloseFile C:\Windows\SysWOW64\tzres.dll SUCCESS 98 12:38:32,9706479 MCLauncher.exe 6080 CreateFile C:\Windows\SysWOW64\tzres.dll SUCCESS Desired Access: Generic Read, Disposition: Open, Options: Synchronous IO Non-Alert, Non-Directory File, Attributes: n/a, ShareMode: Read, Delete, AllocationSize: n/a, OpenResult: Opened 98 12:38:32,9706773 MCLauncher.exe 6080 CreateFileMapping C:\Windows\SysWOW64\tzres.dll FILE LOCKED WITH ONLY READERS SyncType: SyncTypeCreateSection, PageProtection: PAGE_EXECUTE|PAGE_NOCACHE 98 12:38:32,9706911 MCLauncher.exe 6080 QueryNameInformationFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Name: \Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe 98 12:38:32,9707778 MCLauncher.exe 6080 CreateFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Desired Access: Synchronize, Disposition: Open, Options: Synchronous IO Non-Alert, Attributes: N, ShareMode: Read, Write, Delete, AllocationSize: n/a, OpenResult: Opened 98 12:38:32,9707961 MCLauncher.exe 6080 CloseFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS 98 12:38:32,9708252 MCLauncher.exe 6080 QueryNameInformationFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Name: \Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe 98 12:38:32,9709097 MCLauncher.exe 6080 CreateFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Desired Access: Synchronize, Disposition: Open, Options: Synchronous IO Non-Alert, Attributes: N, ShareMode: Read, Write, Delete, AllocationSize: n/a, OpenResult: Opened 98 12:38:32,9709266 MCLauncher.exe 6080 CloseFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS 98 12:38:33,0211829 MCLauncher.exe 6080 CreateFileMapping C:\Windows\SysWOW64\tzres.dll SUCCESS SyncType: SyncTypeOther 98 12:38:33,0212220 MCLauncher.exe 6080 CloseFile C:\Windows\SysWOW64\tzres.dll SUCCESS 98 12:38:33,0213818 MCLauncher.exe 6080 CreateFile C:\Windows\SysWOW64\ru-RU\tzres.dll.mui SUCCESS Desired Access: Generic Read, Disposition: Open, Options: , Attributes: n/a, ShareMode: Read, Delete, AllocationSize: n/a, OpenResult: Opened 98 12:38:33,0214068 MCLauncher.exe 6080 CreateFileMapping C:\Windows\SysWOW64\ru-RU\tzres.dll.mui FILE LOCKED WITH ONLY READERS SyncType: SyncTypeCreateSection, PageProtection: PAGE_EXECUTE|PAGE_NOCACHE 98 12:38:33,0214215 MCLauncher.exe 6080 QueryNameInformationFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Name: \Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe 98 12:38:33,0215157 MCLauncher.exe 6080 CreateFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Desired Access: Synchronize, Disposition: Open, Options: Synchronous IO Non-Alert, Attributes: N, ShareMode: Read, Write, Delete, AllocationSize: n/a, OpenResult: Opened 98 12:38:33,0215351 MCLauncher.exe 6080 CloseFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS 98 12:38:33,0215655 MCLauncher.exe 6080 QueryNameInformationFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Name: \Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe 98 12:38:33,0216517 MCLauncher.exe 6080 CreateFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Desired Access: Synchronize, Disposition: Open, Options: Synchronous IO Non-Alert, Attributes: N, ShareMode: Read, Write, Delete, AllocationSize: n/a, OpenResult: Opened 98 12:38:33,0216694 MCLauncher.exe 6080 CloseFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS 98 12:38:33,0217501 MCLauncher.exe 6080 QueryStandardInformationFile C:\Windows\SysWOW64\ru-RU\tzres.dll.mui SUCCESS AllocationSize: 45 056, EndOfFile: 41 984, NumberOfLinks: 2, DeletePending: False, Directory: False 98 12:38:33,0217664 MCLauncher.exe 6080 CreateFileMapping C:\Windows\SysWOW64\ru-RU\tzres.dll.mui SUCCESS SyncType: SyncTypeOther 98 12:38:33,0218262 MCLauncher.exe 6080 CloseFile C:\Windows\SysWOW64\ru-RU\tzres.dll.mui SUCCESS 98 12:38:33,0221014 MCLauncher.exe 6080 CreateFile C:\Windows\SysWOW64\tzres.dll SUCCESS Desired Access: Read Attributes, Disposition: Open, Options: Open Reparse Point, Attributes: n/a, ShareMode: Read, Write, Delete, AllocationSize: n/a, OpenResult: Opened 98 12:38:33,0221288 MCLauncher.exe 6080 QueryBasicInformationFile C:\Windows\SysWOW64\tzres.dll SUCCESS CreationTime: 20.07.2018 1:33:47, LastAccessTime: 20.07.2018 1:33:47, LastWriteTime: 30.03.2018 6:12:25, ChangeTime: 20.07.2018 19:25:55, FileAttributes: A 98 12:38:33,0221385 MCLauncher.exe 6080 CloseFile C:\Windows\SysWOW64\tzres.dll SUCCESS 98 12:38:33,0222440 MCLauncher.exe 6080 CreateFile C:\Windows\SysWOW64\tzres.dll SUCCESS Desired Access: Generic Read, Disposition: Open, Options: Synchronous IO Non-Alert, Non-Directory File, Attributes: n/a, ShareMode: Read, Delete, AllocationSize: n/a, OpenResult: Opened 98 12:38:33,0222740 MCLauncher.exe 6080 CreateFileMapping C:\Windows\SysWOW64\tzres.dll FILE LOCKED WITH ONLY READERS SyncType: SyncTypeCreateSection, PageProtection: PAGE_EXECUTE|PAGE_NOCACHE 98 12:38:33,0222875 MCLauncher.exe 6080 QueryNameInformationFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Name: \Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe 98 12:38:33,0223779 MCLauncher.exe 6080 CreateFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Desired Access: Synchronize, Disposition: Open, Options: Synchronous IO Non-Alert, Attributes: N, ShareMode: Read, Write, Delete, AllocationSize: n/a, OpenResult: Opened 98 12:38:33,0223973 MCLauncher.exe 6080 CloseFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS 98 12:38:33,0224305 MCLauncher.exe 6080 QueryNameInformationFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Name: \Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe 98 12:38:33,0225214 MCLauncher.exe 6080 CreateFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Desired Access: Synchronize, Disposition: Open, Options: Synchronous IO Non-Alert, Attributes: N, ShareMode: Read, Write, Delete, AllocationSize: n/a, OpenResult: Opened 98 12:38:33,0225399 MCLauncher.exe 6080 CloseFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS 98 12:38:33,0226098 MCLauncher.exe 6080 CreateFileMapping C:\Windows\SysWOW64\tzres.dll SUCCESS SyncType: SyncTypeOther 98 12:38:33,0226336 MCLauncher.exe 6080 CloseFile C:\Windows\SysWOW64\tzres.dll SUCCESS 98 12:38:33,0227619 MCLauncher.exe 6080 CreateFile C:\Windows\SysWOW64\ru-RU\tzres.dll.mui SUCCESS Desired Access: Generic Read, Disposition: Open, Options: , Attributes: n/a, ShareMode: Read, Delete, AllocationSize: n/a, OpenResult: Opened 98 12:38:33,0227846 MCLauncher.exe 6080 CreateFileMapping C:\Windows\SysWOW64\ru-RU\tzres.dll.mui FILE LOCKED WITH ONLY READERS SyncType: SyncTypeCreateSection, PageProtection: PAGE_EXECUTE|PAGE_NOCACHE 98 12:38:33,0227968 MCLauncher.exe 6080 QueryNameInformationFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Name: \Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe 98 12:38:33,0228824 MCLauncher.exe 6080 CreateFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Desired Access: Synchronize, Disposition: Open, Options: Synchronous IO Non-Alert, Attributes: N, ShareMode: Read, Write, Delete, AllocationSize: n/a, OpenResult: Opened 98 12:38:33,0229001 MCLauncher.exe 6080 CloseFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS 98 12:38:33,0229281 MCLauncher.exe 6080 QueryNameInformationFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Name: \Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe 98 12:38:33,0230118 MCLauncher.exe 6080 CreateFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Desired Access: Synchronize, Disposition: Open, Options: Synchronous IO Non-Alert, Attributes: N, ShareMode: Read, Write, Delete, AllocationSize: n/a, OpenResult: Opened 98 12:38:33,0230287 MCLauncher.exe 6080 CloseFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS 98 12:38:33,0230857 MCLauncher.exe 6080 QueryStandardInformationFile C:\Windows\SysWOW64\ru-RU\tzres.dll.mui SUCCESS AllocationSize: 45 056, EndOfFile: 41 984, NumberOfLinks: 2, DeletePending: False, Directory: False 98 12:38:33,0231007 MCLauncher.exe 6080 CreateFileMapping C:\Windows\SysWOW64\ru-RU\tzres.dll.mui SUCCESS SyncType: SyncTypeOther 98 12:38:33,0231412 MCLauncher.exe 6080 CloseFile C:\Windows\SysWOW64\ru-RU\tzres.dll.mui SUCCESS 98 12:38:33,0231744 MCLauncher.exe 6080 CloseFile C:\Users\User\AppData\Roaming\MCLauncher SUCCESS 98 12:38:33,0232999 MCLauncher.exe 6080 CreateFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Desired Access: Generic Read, Disposition: Open, Options: Synchronous IO Non-Alert, Non-Directory File, Attributes: N, ShareMode: Read, Write, AllocationSize: n/a, OpenResult: Opened 98 12:38:33,0233265 MCLauncher.exe 6080 QueryStandardInformationFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS AllocationSize: 17 244 160, EndOfFile: 17 240 149, NumberOfLinks: 1, DeletePending: False, Directory: False 98 12:38:33,0233448 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 240 127, Length: 22, Priority: Normal 98 12:38:33,0233700 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 222 394, Length: 512 98 12:38:33,0233794 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 222 404, Length: 512 98 12:38:33,0233866 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 222 436, Length: 512 98 12:38:33,0233977 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 222 450, Length: 512 98 12:38:33,0234041 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 222 460, Length: 512 98 12:38:33,0234110 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 222 492, Length: 512 98 12:38:33,0234188 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 222 508, Length: 512 98 12:38:33,0234251 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 222 518, Length: 512 98 12:38:33,0234321 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 222 550, Length: 512 98 12:38:33,0234393 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 222 566, Length: 512 98 12:38:33,0234454 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 222 576, Length: 512 98 12:38:33,0234520 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 222 608, Length: 512 98 12:38:33,0234595 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 222 626, Length: 512 98 12:38:33,0234659 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 222 636, Length: 512 98 12:38:33,0234725 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 222 668, Length: 512 98 12:38:33,0234794 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 222 683, Length: 512 98 12:38:33,0234858 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 222 693, Length: 512 98 12:38:33,0234925 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 222 725, Length: 512 98 12:38:33,0235010 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 222 745, Length: 512 98 12:38:33,0235074 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 222 755, Length: 512 98 12:38:33,0235143 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 222 787, Length: 512 98 12:38:33,0235213 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 222 804, Length: 512 98 12:38:33,0235276 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 222 814, Length: 512 98 12:38:33,0235346 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 222 846, Length: 512 98 12:38:33,0235423 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 222 870, Length: 512 98 12:38:33,0235487 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 222 880, Length: 512 98 12:38:33,0235553 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 222 912, Length: 512 98 12:38:33,0235626 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 222 931, Length: 512 98 12:38:33,0235689 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 222 941, Length: 512 98 12:38:33,0235756 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 222 973, Length: 512 98 12:38:33,0235833 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 222 984, Length: 512 98 12:38:33,0235894 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 222 994, Length: 512 98 12:38:33,0235961 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 223 026, Length: 512 98 12:38:33,0236033 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 223 040, Length: 512 98 12:38:33,0236094 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 223 050, Length: 512 98 12:38:33,0236160 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 223 082, Length: 512 98 12:38:33,0236232 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 223 096, Length: 512 98 12:38:33,0236293 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 223 106, Length: 512 98 12:38:33,0236362 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 223 138, Length: 512 98 12:38:33,0236432 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 223 149, Length: 512 98 12:38:33,0236731 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 223 159, Length: 512 98 12:38:33,0236897 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 223 191, Length: 512 98 12:38:33,0237033 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 223 207, Length: 512 98 12:38:33,0237127 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 223 217, Length: 512 98 12:38:33,0237221 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 223 249, Length: 512 98 12:38:33,0237324 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 223 260, Length: 512 98 12:38:33,0237418 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 223 270, Length: 512 98 12:38:33,0237523 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 223 302, Length: 512 98 12:38:33,0237631 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 223 316, Length: 512 98 12:38:33,0237695 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 223 326, Length: 512 98 12:38:33,0237764 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 223 358, Length: 512 98 12:38:33,0237836 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 223 377, Length: 512 98 12:38:33,0237900 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 223 387, Length: 512 98 12:38:33,0237969 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 223 419, Length: 512 98 12:38:33,0238041 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 223 437, Length: 512 98 12:38:33,0238105 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 223 447, Length: 512 98 12:38:33,0238172 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 223 479, Length: 512 98 12:38:33,0238244 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 223 491, Length: 512 98 12:38:33,0238307 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 223 501, Length: 512 98 12:38:33,0238377 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 223 533, Length: 512 98 12:38:33,0238446 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 223 549, Length: 512 98 12:38:33,0238510 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 223 559, Length: 512 98 12:38:33,0238576 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 223 591, Length: 512 98 12:38:33,0238648 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 223 614, Length: 512 98 12:38:33,0238715 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 223 624, Length: 512 98 12:38:33,0238781 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 223 656, Length: 512 98 12:38:33,0238870 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 223 678, Length: 512 98 12:38:33,0238934 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 223 688, Length: 512 98 12:38:33,0239003 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 223 720, Length: 512 98 12:38:33,0239075 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 223 743, Length: 512 98 12:38:33,0239139 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 223 753, Length: 512 98 12:38:33,0239205 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 223 785, Length: 512 98 12:38:33,0239285 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 223 800, Length: 512 98 12:38:33,0239346 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 223 810, Length: 512 98 12:38:33,0239413 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 223 842, Length: 512 98 12:38:33,0239482 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 223 853, Length: 512 98 12:38:33,0239546 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 223 863, Length: 512 98 12:38:33,0239612 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 223 895, Length: 512 98 12:38:33,0239690 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 223 921, Length: 512 98 12:38:33,0239754 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 223 931, Length: 512 98 12:38:33,0239820 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 223 963, Length: 512 98 12:38:33,0239898 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 223 986, Length: 512 98 12:38:33,0239959 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 223 996, Length: 512 98 12:38:33,0240025 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 224 028, Length: 512 98 12:38:33,0240100 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 224 052, Length: 512 98 12:38:33,0240164 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 224 062, Length: 512 98 12:38:33,0240230 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 224 094, Length: 512 98 12:38:33,0240302 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 224 115, Length: 512 98 12:38:33,0240366 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 224 125, Length: 512 98 12:38:33,0240432 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 224 157, Length: 512 98 12:38:33,0240504 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 224 180, Length: 512 98 12:38:33,0240565 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 224 190, Length: 512 98 12:38:33,0240632 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 224 222, Length: 512 98 12:38:33,0240704 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 224 249, Length: 512 98 12:38:33,0240768 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 224 259, Length: 512 98 12:38:33,0240834 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 224 291, Length: 512 98 12:38:33,0240906 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 224 318, Length: 512 98 12:38:33,0240970 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 224 328, Length: 512 98 12:38:33,0241036 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 224 360, Length: 512 98 12:38:33,0241108 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 224 375, Length: 512 98 12:38:33,0241169 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 224 385, Length: 512 98 12:38:33,0241236 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 224 417, Length: 512 98 12:38:33,0241308 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 224 437, Length: 512 98 12:38:33,0241369 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 224 447, Length: 512 98 12:38:33,0241435 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 224 479, Length: 512 98 12:38:33,0241510 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 224 505, Length: 512 98 12:38:33,0241571 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 224 515, Length: 512 98 12:38:33,0241640 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 224 547, Length: 512 98 12:38:33,0241712 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 224 572, Length: 512 98 12:38:33,0241773 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 224 582, Length: 512 98 12:38:33,0241840 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 224 614, Length: 512 98 12:38:33,0241912 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 224 637, Length: 512 98 12:38:33,0241976 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 224 647, Length: 512 98 12:38:33,0242042 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 224 679, Length: 512 98 12:38:33,0242122 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 224 709, Length: 512 98 12:38:33,0242186 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 224 719, Length: 512 98 12:38:33,0242253 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 224 751, Length: 512 98 12:38:33,0242328 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 224 773, Length: 512 98 12:38:33,0242388 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 224 783, Length: 512 98 12:38:33,0242455 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 224 815, Length: 512 98 12:38:33,0242527 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 224 842, Length: 512 98 12:38:33,0242591 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 224 852, Length: 512 98 12:38:33,0242657 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 224 884, Length: 512 98 12:38:33,0242729 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 224 911, Length: 512 98 12:38:33,0242793 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 224 921, Length: 512 98 12:38:33,0242857 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 224 953, Length: 512 98 12:38:33,0242931 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 224 978, Length: 512 98 12:38:33,0242992 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 224 988, Length: 512 98 12:38:33,0243059 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 225 020, Length: 512 98 12:38:33,0243134 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 225 043, Length: 512 98 12:38:33,0243195 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 225 053, Length: 512 98 12:38:33,0243264 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 225 085, Length: 512 98 12:38:33,0243336 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 225 109, Length: 512 98 12:38:33,0243397 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 225 119, Length: 512 98 12:38:33,0243463 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 225 151, Length: 512 98 12:38:33,0243535 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 225 175, Length: 512 98 12:38:33,0243596 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 225 185, Length: 512 98 12:38:33,0243663 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 225 217, Length: 512 98 12:38:33,0243738 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 225 241, Length: 512 98 12:38:33,0243801 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 225 251, Length: 512 98 12:38:33,0243868 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 225 283, Length: 512 98 12:38:33,0243940 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 225 307, Length: 512 98 12:38:33,0244001 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 225 317, Length: 512 98 12:38:33,0244067 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 225 349, Length: 512 98 12:38:33,0244139 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 225 373, Length: 512 98 12:38:33,0244200 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 225 383, Length: 512 98 12:38:33,0244267 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 225 415, Length: 512 98 12:38:33,0244339 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 225 439, Length: 512 98 12:38:33,0244403 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 225 449, Length: 512 98 12:38:33,0244469 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 225 481, Length: 512 98 12:38:33,0244544 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 225 505, Length: 512 98 12:38:33,0244605 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 225 515, Length: 512 98 12:38:33,0244671 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 225 547, Length: 512 98 12:38:33,0244771 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 225 571, Length: 512 98 12:38:33,0244835 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 225 581, Length: 512 98 12:38:33,0244901 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 225 613, Length: 512 98 12:38:33,0244979 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 225 637, Length: 512 98 12:38:33,0245043 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 225 647, Length: 512 98 12:38:33,0245106 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 225 679, Length: 512 98 12:38:33,0245181 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 225 703, Length: 512 98 12:38:33,0245242 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 225 713, Length: 512 98 12:38:33,0245309 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 225 745, Length: 512 98 12:38:33,0245381 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 225 769, Length: 512 98 12:38:33,0245444 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 225 779, Length: 512 98 12:38:33,0245511 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 225 811, Length: 512 98 12:38:33,0245583 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 225 835, Length: 512 98 12:38:33,0245647 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 225 845, Length: 512 98 12:38:33,0245713 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 225 877, Length: 512 98 12:38:33,0245785 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 225 900, Length: 512 98 12:38:33,0245846 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 225 910, Length: 512 98 12:38:33,0245915 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 225 942, Length: 512 98 12:38:33,0245987 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 225 965, Length: 512 98 12:38:33,0246048 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 225 975, Length: 512 98 12:38:33,0246118 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 226 007, Length: 512 98 12:38:33,0246190 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 226 030, Length: 512 98 12:38:33,0246436 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 226 040, Length: 512 98 12:38:33,0246605 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 226 072, Length: 512 98 12:38:33,0247503 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 226 095, Length: 512 98 12:38:33,0247594 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 226 105, Length: 512 98 12:38:33,0247672 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 226 137, Length: 512 98 12:38:33,0247747 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 226 160, Length: 512 98 12:38:33,0247810 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 226 170, Length: 512 98 12:38:33,0247877 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 226 202, Length: 512 98 12:38:33,0247955 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 226 225, Length: 512 98 12:38:33,0248015 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 226 235, Length: 512 98 12:38:33,0248085 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 226 267, Length: 512 98 12:38:33,0248157 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 226 290, Length: 512 98 12:38:33,0248218 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 226 300, Length: 512 98 12:38:33,0248284 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 226 332, Length: 512 98 12:38:33,0248356 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 226 355, Length: 512 98 12:38:33,0248420 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 226 365, Length: 512 98 12:38:33,0248486 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 226 397, Length: 512 98 12:38:33,0248559 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 226 420, Length: 512 98 12:38:33,0248622 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 226 430, Length: 512 98 12:38:33,0248689 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 226 462, Length: 512 98 12:38:33,0248769 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 226 485, Length: 512 98 12:38:33,0248830 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 226 495, Length: 512 98 12:38:33,0248897 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 226 527, Length: 512 98 12:38:33,0248971 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 226 550, Length: 512 98 12:38:33,0249035 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 226 560, Length: 512 98 12:38:33,0249102 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 226 592, Length: 512 98 12:38:33,0249174 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 226 615, Length: 512 98 12:38:33,0249237 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 226 625, Length: 512 98 12:38:33,0249304 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 226 657, Length: 512 98 12:38:33,0249376 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 226 680, Length: 512 98 12:38:33,0249437 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 226 690, Length: 512 98 12:38:33,0249503 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 226 722, Length: 512 98 12:38:33,0249578 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 226 745, Length: 512 98 12:38:33,0249639 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 226 755, Length: 512 98 12:38:33,0249706 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 226 787, Length: 512 98 12:38:33,0249783 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 226 810, Length: 512 98 12:38:33,0249844 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 226 820, Length: 512 98 12:38:33,0249911 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 226 852, Length: 512 98 12:38:33,0249985 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 226 875, Length: 512 98 12:38:33,0250046 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 226 885, Length: 512 98 12:38:33,0250113 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 226 917, Length: 512 98 12:38:33,0250188 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 226 940, Length: 512 98 12:38:33,0250249 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 226 950, Length: 512 98 12:38:33,0250315 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 226 982, Length: 512 98 12:38:33,0250390 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 227 005, Length: 512 98 12:38:33,0250451 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 227 015, Length: 512 98 12:38:33,0250517 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 227 047, Length: 512 98 12:38:33,0250589 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 227 070, Length: 512 98 12:38:33,0250653 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 227 080, Length: 512 98 12:38:33,0250720 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 227 112, Length: 512 98 12:38:33,0250792 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 227 135, Length: 512 98 12:38:33,0250853 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 227 145, Length: 512 98 12:38:33,0250919 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 227 177, Length: 512 98 12:38:33,0250991 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 227 200, Length: 512 98 12:38:33,0251052 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 227 210, Length: 512 98 12:38:33,0251119 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 227 242, Length: 512 98 12:38:33,0251207 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 227 265, Length: 512 98 12:38:33,0251290 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 227 275, Length: 512 98 12:38:33,0251357 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 227 307, Length: 512 98 12:38:33,0251434 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 227 330, Length: 512 98 12:38:33,0251498 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 227 340, Length: 512 98 12:38:33,0251565 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 227 372, Length: 512 98 12:38:33,0251642 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 227 395, Length: 512 98 12:38:33,0251703 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 227 405, Length: 512 98 12:38:33,0251772 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 227 437, Length: 512 98 12:38:33,0251844 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 227 460, Length: 512 98 12:38:33,0251911 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 227 470, Length: 512 98 12:38:33,0251977 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 227 502, Length: 512 98 12:38:33,0252058 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 227 532, Length: 512 98 12:38:33,0252121 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 227 542, Length: 512 98 12:38:33,0252188 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 227 574, Length: 512 98 12:38:33,0252266 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 227 604, Length: 512 98 12:38:33,0252326 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 227 614, Length: 512 98 12:38:33,0252396 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 227 646, Length: 512 98 12:38:33,0252468 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 227 670, Length: 512 98 12:38:33,0252531 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 227 680, Length: 512 98 12:38:33,0252598 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 227 712, Length: 512 98 12:38:33,0252670 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 227 736, Length: 512 98 12:38:33,0252731 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 227 746, Length: 512 98 12:38:33,0252797 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 227 778, Length: 512 98 12:38:33,0252872 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 227 803, Length: 512 98 12:38:33,0252933 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 227 813, Length: 512 98 12:38:33,0253002 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 227 845, Length: 512 98 12:38:33,0253160 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 227 869, Length: 512 98 12:38:33,0253224 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 227 879, Length: 512 98 12:38:33,0253293 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 227 911, Length: 512 98 12:38:33,0253365 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 227 932, Length: 512 98 12:38:33,0253426 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 227 942, Length: 512 98 12:38:33,0253493 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 227 974, Length: 512 98 12:38:33,0253568 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 228 001, Length: 512 98 12:38:33,0253631 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 228 011, Length: 512 98 12:38:33,0253698 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 228 043, Length: 512 98 12:38:33,0253770 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 228 070, Length: 512 98 12:38:33,0253831 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 228 080, Length: 512 98 12:38:33,0253897 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 228 112, Length: 512 98 12:38:33,0253969 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 228 132, Length: 512 98 12:38:33,0254030 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 228 142, Length: 512 98 12:38:33,0254102 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 228 174, Length: 512 98 12:38:33,0254174 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 228 196, Length: 512 98 12:38:33,0254238 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 228 206, Length: 512 98 12:38:33,0254305 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 228 238, Length: 512 98 12:38:33,0254377 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 228 266, Length: 512 98 12:38:33,0254440 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 228 276, Length: 512 98 12:38:33,0254507 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 228 308, Length: 512 98 12:38:33,0254584 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 228 338, Length: 512 98 12:38:33,0254645 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 228 348, Length: 512 98 12:38:33,0254712 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 228 380, Length: 512 98 12:38:33,0254789 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 228 410, Length: 512 98 12:38:33,0254850 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 228 420, Length: 512 98 12:38:33,0254917 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 228 452, Length: 512 98 12:38:33,0254995 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 228 485, Length: 512 98 12:38:33,0255058 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 228 495, Length: 512 98 12:38:33,0255125 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 228 527, Length: 512 98 12:38:33,0255200 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 228 557, Length: 512 98 12:38:33,0255260 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 228 567, Length: 512 98 12:38:33,0255327 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 228 599, Length: 512 98 12:38:33,0255402 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 228 631, Length: 512 98 12:38:33,0255466 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 228 641, Length: 512 98 12:38:33,0255532 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 228 673, Length: 512 98 12:38:33,0255604 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 228 701, Length: 512 98 12:38:33,0255665 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 228 711, Length: 512 98 12:38:33,0255731 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 228 743, Length: 512 98 12:38:33,0255806 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 228 770, Length: 512 98 12:38:33,0255867 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 228 780, Length: 512 98 12:38:33,0255937 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 228 812, Length: 512 98 12:38:33,0256250 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 228 840, Length: 512 98 12:38:33,0256399 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 228 850, Length: 512 98 12:38:33,0256502 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 228 882, Length: 512 98 12:38:33,0256632 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 228 910, Length: 512 98 12:38:33,0256732 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 228 920, Length: 512 98 12:38:33,0256834 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 228 952, Length: 512 98 12:38:33,0256951 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 228 980, Length: 512 98 12:38:33,0257020 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 228 990, Length: 512 98 12:38:33,0257089 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 229 022, Length: 512 98 12:38:33,0257164 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 229 050, Length: 512 98 12:38:33,0257225 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 229 060, Length: 512 98 12:38:33,0257294 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 229 092, Length: 512 98 12:38:33,0257369 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 229 120, Length: 512 98 12:38:33,0257430 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 229 130, Length: 512 98 12:38:33,0257496 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 229 162, Length: 512 98 12:38:33,0257571 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 229 190, Length: 512 98 12:38:33,0257635 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 229 200, Length: 512 98 12:38:33,0257701 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 229 232, Length: 512 98 12:38:33,0257784 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 229 259, Length: 512 98 12:38:33,0257845 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 229 269, Length: 512 98 12:38:33,0257912 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 229 301, Length: 512 98 12:38:33,0257987 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 229 328, Length: 512 98 12:38:33,0258048 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 229 338, Length: 512 98 12:38:33,0258114 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 229 370, Length: 512 98 12:38:33,0258189 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 229 397, Length: 512 98 12:38:33,0258253 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 229 407, Length: 512 98 12:38:33,0258319 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 229 439, Length: 512 98 12:38:33,0258394 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 229 466, Length: 512 98 12:38:33,0258455 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 229 476, Length: 512 98 12:38:33,0258521 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 229 508, Length: 512 98 12:38:33,0258593 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 229 535, Length: 512 98 12:38:33,0258657 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 229 545, Length: 512 98 12:38:33,0258724 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 229 577, Length: 512 98 12:38:33,0258796 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 229 604, Length: 512 98 12:38:33,0258865 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 229 614, Length: 512 98 12:38:33,0258931 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 229 646, Length: 512 98 12:38:33,0259004 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 229 673, Length: 512 98 12:38:33,0259067 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 229 683, Length: 512 98 12:38:33,0259134 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 229 715, Length: 512 98 12:38:33,0259209 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 229 742, Length: 512 98 12:38:33,0259269 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 229 752, Length: 512 98 12:38:33,0259336 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 229 784, Length: 512 98 12:38:33,0259430 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 229 807, Length: 512 98 12:38:33,0259491 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 229 817, Length: 512 98 12:38:33,0259560 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 229 849, Length: 512 98 12:38:33,0259632 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 229 873, Length: 512 98 12:38:33,0259693 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 229 883, Length: 512 98 12:38:33,0259760 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 229 915, Length: 512 98 12:38:33,0259832 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 229 939, Length: 512 98 12:38:33,0259893 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 229 949, Length: 512 98 12:38:33,0259959 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 229 981, Length: 512 98 12:38:33,0260034 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 230 006, Length: 512 98 12:38:33,0260095 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 230 016, Length: 512 98 12:38:33,0260162 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 230 048, Length: 512 98 12:38:33,0260234 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 230 076, Length: 512 98 12:38:33,0260297 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 230 086, Length: 512 98 12:38:33,0260364 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 230 118, Length: 512 98 12:38:33,0260439 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 230 148, Length: 512 98 12:38:33,0260500 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 230 158, Length: 512 98 12:38:33,0260566 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 230 190, Length: 512 98 12:38:33,0260644 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 230 220, Length: 512 98 12:38:33,0260705 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 230 230, Length: 512 98 12:38:33,0260774 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 230 262, Length: 512 98 12:38:33,0260849 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 230 292, Length: 512 98 12:38:33,0260910 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 230 302, Length: 512 98 12:38:33,0260979 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 230 334, Length: 512 98 12:38:33,0261054 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 230 361, Length: 512 98 12:38:33,0261117 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 230 371, Length: 512 98 12:38:33,0261184 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 230 403, Length: 512 98 12:38:33,0261256 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 230 430, Length: 512 98 12:38:33,0261317 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 230 440, Length: 512 98 12:38:33,0261383 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 230 472, Length: 512 98 12:38:33,0261461 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 230 501, Length: 512 98 12:38:33,0261522 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 230 511, Length: 512 98 12:38:33,0261588 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 230 543, Length: 512 98 12:38:33,0261663 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 230 571, Length: 512 98 12:38:33,0261724 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 230 581, Length: 512 98 12:38:33,0261791 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 230 613, Length: 512 98 12:38:33,0261866 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 230 640, Length: 512 98 12:38:33,0261926 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 230 650, Length: 512 98 12:38:33,0261993 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 230 682, Length: 512 98 12:38:33,0262071 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 230 712, Length: 512 98 12:38:33,0262134 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 230 722, Length: 512 98 12:38:33,0262201 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 230 754, Length: 512 98 12:38:33,0262273 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 230 783, Length: 512 98 12:38:33,0262337 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 230 793, Length: 512 98 12:38:33,0262403 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 230 825, Length: 512 98 12:38:33,0262475 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 230 847, Length: 512 98 12:38:33,0262539 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 230 857, Length: 512 98 12:38:33,0262605 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 230 889, Length: 512 98 12:38:33,0262677 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 230 913, Length: 512 98 12:38:33,0262741 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 230 923, Length: 512 98 12:38:33,0262807 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 230 955, Length: 512 98 12:38:33,0262880 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 230 980, Length: 512 98 12:38:33,0262943 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 230 990, Length: 512 98 12:38:33,0263010 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 231 022, Length: 512 98 12:38:33,0263087 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 231 048, Length: 512 98 12:38:33,0263148 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 231 058, Length: 512 98 12:38:33,0263215 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 231 090, Length: 512 98 12:38:33,0263290 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 231 120, Length: 512 98 12:38:33,0263351 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 231 130, Length: 512 98 12:38:33,0263417 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 231 162, Length: 512 98 12:38:33,0263500 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 231 198, Length: 512 98 12:38:33,0263561 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 231 208, Length: 512 98 12:38:33,0263628 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 231 240, Length: 512 98 12:38:33,0263700 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 231 264, Length: 512 98 12:38:33,0263761 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 231 274, Length: 512 98 12:38:33,0263827 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 231 306, Length: 512 98 12:38:33,0263902 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 231 333, Length: 512 98 12:38:33,0263963 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 231 343, Length: 512 98 12:38:33,0264029 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 231 375, Length: 512 98 12:38:33,0264124 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 231 407, Length: 512 98 12:38:33,0264187 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 231 417, Length: 512 98 12:38:33,0264254 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 231 449, Length: 512 98 12:38:33,0264329 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 231 481, Length: 512 98 12:38:33,0264389 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 231 491, Length: 512 98 12:38:33,0264459 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 231 523, Length: 512 98 12:38:33,0264534 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 231 554, Length: 512 98 12:38:33,0264597 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 231 564, Length: 512 98 12:38:33,0264664 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 231 596, Length: 512 98 12:38:33,0264739 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 231 621, Length: 512 98 12:38:33,0264800 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 231 631, Length: 512 98 12:38:33,0264866 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 231 663, Length: 512 98 12:38:33,0264941 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 231 690, Length: 512 98 12:38:33,0265005 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 231 700, Length: 512 98 12:38:33,0265071 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 231 732, Length: 512 98 12:38:33,0265146 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 231 764, Length: 512 98 12:38:33,0265215 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 231 774, Length: 512 98 12:38:33,0265282 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 231 806, Length: 512 98 12:38:33,0265359 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 231 840, Length: 512 98 12:38:33,0265420 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 231 850, Length: 512 98 12:38:33,0265487 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 231 882, Length: 512 98 12:38:33,0265561 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 231 906, Length: 512 98 12:38:33,0265625 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 231 916, Length: 512 98 12:38:33,0265692 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 231 948, Length: 512 98 12:38:33,0265947 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 231 975, Length: 512 98 12:38:33,0266121 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 231 985, Length: 512 98 12:38:33,0266237 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 232 017, Length: 512 98 12:38:33,0266390 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 232 044, Length: 512 98 12:38:33,0266481 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 232 054, Length: 512 98 12:38:33,0266573 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 232 086, Length: 512 98 12:38:33,0266697 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 232 110, Length: 512 98 12:38:33,0266761 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 232 120, Length: 512 98 12:38:33,0266830 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 232 152, Length: 512 98 12:38:33,0266905 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 232 179, Length: 512 98 12:38:33,0266966 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 232 189, Length: 512 98 12:38:33,0267035 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 232 221, Length: 512 98 12:38:33,0267107 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 232 248, Length: 512 98 12:38:33,0267171 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 232 258, Length: 512 98 12:38:33,0267238 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 232 290, Length: 512 98 12:38:33,0267312 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 232 313, Length: 512 98 12:38:33,0267373 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 232 323, Length: 512 98 12:38:33,0267440 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 232 355, Length: 512 98 12:38:33,0267515 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 232 378, Length: 512 98 12:38:33,0267576 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 232 388, Length: 512 98 12:38:33,0267642 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 232 420, Length: 512 98 12:38:33,0267717 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 232 447, Length: 512 98 12:38:33,0267781 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 232 457, Length: 512 98 12:38:33,0267855 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 232 489, Length: 512 98 12:38:33,0267955 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 232 515, Length: 512 98 12:38:33,0268019 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 232 525, Length: 512 98 12:38:33,0268085 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 232 557, Length: 512 98 12:38:33,0268160 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 232 585, Length: 512 98 12:38:33,0268224 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 232 595, Length: 512 98 12:38:33,0268290 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 232 627, Length: 512 98 12:38:33,0268360 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 232 642, Length: 512 98 12:38:33,0268423 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 232 652, Length: 512 98 12:38:33,0268490 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 232 684, Length: 512 98 12:38:33,0268562 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 232 701, Length: 512 98 12:38:33,0268623 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 232 711, Length: 512 98 12:38:33,0268689 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 232 743, Length: 512 98 12:38:33,0268761 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 232 762, Length: 512 98 12:38:33,0268825 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 232 772, Length: 512 98 12:38:33,0268892 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 232 804, Length: 512 98 12:38:33,0268961 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 232 818, Length: 512 98 12:38:33,0269025 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 232 828, Length: 512 98 12:38:33,0269091 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 232 860, Length: 512 98 12:38:33,0269160 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 232 875, Length: 512 98 12:38:33,0269224 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 232 885, Length: 512 98 12:38:33,0269291 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 232 917, Length: 512 98 12:38:33,0269360 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 232 929, Length: 512 98 12:38:33,0269421 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 232 939, Length: 512 98 12:38:33,0269487 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 232 971, Length: 512 98 12:38:33,0269562 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 232 983, Length: 512 98 12:38:33,0269623 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 232 993, Length: 512 98 12:38:33,0269692 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 233 025, Length: 512 98 12:38:33,0269762 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 233 040, Length: 512 98 12:38:33,0269823 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 233 050, Length: 512 98 12:38:33,0269889 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 233 082, Length: 512 98 12:38:33,0269964 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 233 095, Length: 512 98 12:38:33,0270025 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 233 105, Length: 512 98 12:38:33,0270091 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 233 137, Length: 512 98 12:38:33,0270163 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 233 152, Length: 512 98 12:38:33,0270227 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 233 162, Length: 512 98 12:38:33,0270294 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 233 194, Length: 512 98 12:38:33,0270360 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 233 204, Length: 512 98 12:38:33,0270424 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 233 214, Length: 512 98 12:38:33,0270490 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 233 246, Length: 512 98 12:38:33,0270562 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 233 267, Length: 512 98 12:38:33,0270626 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 233 277, Length: 512 98 12:38:33,0270695 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 233 309, Length: 512 98 12:38:33,0270767 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 233 329, Length: 512 98 12:38:33,0270831 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 233 339, Length: 512 98 12:38:33,0270898 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 233 371, Length: 512 98 12:38:33,0270970 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 233 391, Length: 512 98 12:38:33,0271031 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 233 401, Length: 512 98 12:38:33,0271097 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 233 433, Length: 512 98 12:38:33,0271169 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 233 453, Length: 512 98 12:38:33,0271230 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 233 463, Length: 512 98 12:38:33,0271299 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 233 495, Length: 512 98 12:38:33,0271369 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 233 510, Length: 512 98 12:38:33,0271429 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 233 520, Length: 512 98 12:38:33,0271496 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 233 552, Length: 512 98 12:38:33,0271568 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 233 569, Length: 512 98 12:38:33,0271629 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 233 579, Length: 512 98 12:38:33,0271698 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 233 611, Length: 512 98 12:38:33,0271767 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 233 625, Length: 512 98 12:38:33,0271831 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 233 635, Length: 512 98 12:38:33,0271898 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 233 667, Length: 512 98 12:38:33,0271973 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 233 691, Length: 512 98 12:38:33,0272039 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 233 701, Length: 512 98 12:38:33,0272105 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 233 733, Length: 512 98 12:38:33,0272175 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 233 747, Length: 512 98 12:38:33,0272236 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 233 757, Length: 512 98 12:38:33,0272305 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 233 789, Length: 512 98 12:38:33,0272380 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 233 803, Length: 512 98 12:38:33,0272444 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 233 813, Length: 512 98 12:38:33,0272510 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 233 845, Length: 512 98 12:38:33,0272582 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 233 861, Length: 512 98 12:38:33,0272643 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 233 871, Length: 512 98 12:38:33,0272709 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 233 903, Length: 512 98 12:38:33,0272790 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 233 913, Length: 512 98 12:38:33,0272854 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 233 923, Length: 512 98 12:38:33,0272920 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 233 955, Length: 512 98 12:38:33,0272992 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 233 973, Length: 512 98 12:38:33,0273053 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 233 983, Length: 512 98 12:38:33,0273120 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 234 015, Length: 512 98 12:38:33,0273189 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 234 026, Length: 512 98 12:38:33,0273250 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 234 036, Length: 512 98 12:38:33,0273319 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 234 068, Length: 512 98 12:38:33,0273385 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 234 082, Length: 512 98 12:38:33,0273449 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 234 092, Length: 512 98 12:38:33,0273518 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 234 124, Length: 512 98 12:38:33,0273588 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 234 140, Length: 512 98 12:38:33,0273649 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 234 150, Length: 512 98 12:38:33,0273715 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 234 182, Length: 512 98 12:38:33,0273784 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 234 198, Length: 512 98 12:38:33,0273845 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 234 208, Length: 512 98 12:38:33,0273915 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 234 240, Length: 512 98 12:38:33,0273984 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 234 257, Length: 512 98 12:38:33,0274048 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 234 267, Length: 512 98 12:38:33,0274120 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 234 299, Length: 512 98 12:38:33,0274189 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 234 313, Length: 512 98 12:38:33,0274253 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 234 323, Length: 512 98 12:38:33,0274316 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 234 355, Length: 512 98 12:38:33,0274388 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 234 373, Length: 512 98 12:38:33,0274449 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 234 383, Length: 512 98 12:38:33,0274516 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 234 415, Length: 512 98 12:38:33,0274588 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 234 429, Length: 512 98 12:38:33,0274649 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 234 439, Length: 512 98 12:38:33,0274715 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 234 471, Length: 512 98 12:38:33,0274785 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 234 485, Length: 512 98 12:38:33,0274848 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 234 495, Length: 512 98 12:38:33,0274915 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 234 527, Length: 512 98 12:38:33,0275042 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 234 537, Length: 512 98 12:38:33,0275109 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 234 547, Length: 512 98 12:38:33,0275175 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 234 579, Length: 512 98 12:38:33,0275245 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 234 591, Length: 512 98 12:38:33,0275308 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 234 601, Length: 512 98 12:38:33,0275375 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 234 633, Length: 512 98 12:38:33,0275444 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 234 646, Length: 512 98 12:38:33,0275508 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 234 656, Length: 512 98 12:38:33,0275799 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 234 688, Length: 512 98 12:38:33,0275885 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 234 702, Length: 512 98 12:38:33,0275945 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 234 712, Length: 512 98 12:38:33,0276015 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 234 744, Length: 512 98 12:38:33,0276090 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 234 767, Length: 512 98 12:38:33,0276151 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 234 777, Length: 512 98 12:38:33,0276220 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 234 809, Length: 512 98 12:38:33,0276292 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 234 830, Length: 512 98 12:38:33,0276353 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 234 840, Length: 512 98 12:38:33,0276422 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 234 872, Length: 512 98 12:38:33,0276505 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 234 894, Length: 512 98 12:38:33,0276569 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 234 904, Length: 512 98 12:38:33,0276635 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 234 936, Length: 512 98 12:38:33,0276713 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 234 966, Length: 512 98 12:38:33,0276774 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 234 976, Length: 512 98 12:38:33,0276843 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 235 008, Length: 512 98 12:38:33,0276915 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 235 034, Length: 512 98 12:38:33,0276979 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 235 044, Length: 512 98 12:38:33,0277045 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 235 076, Length: 512 98 12:38:33,0277120 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 235 104, Length: 512 98 12:38:33,0277184 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 235 114, Length: 512 98 12:38:33,0277250 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 235 146, Length: 512 98 12:38:33,0277322 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 235 172, Length: 512 98 12:38:33,0277386 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 235 182, Length: 512 98 12:38:33,0277453 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 235 214, Length: 512 98 12:38:33,0277525 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 235 238, Length: 512 98 12:38:33,0277588 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 235 248, Length: 512 98 12:38:33,0277655 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 235 280, Length: 512 98 12:38:33,0277730 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 235 304, Length: 512 98 12:38:33,0277793 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 235 314, Length: 512 98 12:38:33,0277860 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 235 346, Length: 512 98 12:38:33,0277932 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 235 370, Length: 512 98 12:38:33,0277996 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 235 380, Length: 512 98 12:38:33,0278062 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 235 412, Length: 512 98 12:38:33,0278137 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 235 436, Length: 512 98 12:38:33,0278198 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 235 446, Length: 512 98 12:38:33,0278264 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 235 478, Length: 512 98 12:38:33,0278361 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 235 494, Length: 512 98 12:38:33,0278425 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 235 504, Length: 512 98 12:38:33,0278492 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 235 536, Length: 512 98 12:38:33,0278564 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 235 552, Length: 512 98 12:38:33,0278630 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 235 562, Length: 512 98 12:38:33,0278697 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 235 594, Length: 512 98 12:38:33,0278766 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 235 610, Length: 512 98 12:38:33,0278830 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 235 620, Length: 512 98 12:38:33,0278899 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 235 652, Length: 512 98 12:38:33,0278971 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 235 677, Length: 512 98 12:38:33,0279035 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 235 687, Length: 512 98 12:38:33,0279101 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 235 719, Length: 512 98 12:38:33,0279182 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 235 755, Length: 512 98 12:38:33,0279242 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 235 765, Length: 512 98 12:38:33,0279312 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 235 797, Length: 512 98 12:38:33,0279387 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 235 829, Length: 512 98 12:38:33,0279450 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 235 839, Length: 512 98 12:38:33,0279517 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 235 871, Length: 512 98 12:38:33,0279592 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 235 900, Length: 512 98 12:38:33,0279655 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 235 910, Length: 512 98 12:38:33,0279722 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 235 942, Length: 512 98 12:38:33,0279797 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 235 973, Length: 512 98 12:38:33,0279860 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 235 983, Length: 512 98 12:38:33,0279927 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 236 015, Length: 512 98 12:38:33,0280002 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 236 047, Length: 512 98 12:38:33,0280065 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 236 057, Length: 512 98 12:38:33,0280132 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 236 089, Length: 512 98 12:38:33,0280207 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 236 118, Length: 512 98 12:38:33,0280268 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 236 128, Length: 512 98 12:38:33,0280334 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 236 160, Length: 512 98 12:38:33,0280409 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 236 190, Length: 512 98 12:38:33,0280470 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 236 200, Length: 512 98 12:38:33,0280539 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 236 232, Length: 512 98 12:38:33,0280617 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 236 265, Length: 512 98 12:38:33,0280678 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 236 275, Length: 512 98 12:38:33,0280750 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 236 307, Length: 512 98 12:38:33,0280824 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 236 335, Length: 512 98 12:38:33,0280888 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 236 345, Length: 512 98 12:38:33,0280952 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 236 377, Length: 512 98 12:38:33,0281029 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 236 409, Length: 512 98 12:38:33,0281090 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 236 419, Length: 512 98 12:38:33,0281160 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 236 451, Length: 512 98 12:38:33,0281234 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 236 473, Length: 512 98 12:38:33,0281295 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 236 483, Length: 512 98 12:38:33,0281362 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 236 515, Length: 512 98 12:38:33,0281431 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 236 529, Length: 512 98 12:38:33,0281495 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 236 539, Length: 512 98 12:38:33,0281561 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 236 571, Length: 512 98 12:38:33,0281631 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 236 582, Length: 512 98 12:38:33,0281692 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 236 592, Length: 512 98 12:38:33,0281758 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 236 624, Length: 512 98 12:38:33,0281830 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 236 643, Length: 512 98 12:38:33,0281894 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 236 653, Length: 512 98 12:38:33,0281960 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 236 685, Length: 512 98 12:38:33,0282032 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 236 706, Length: 512 98 12:38:33,0282093 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 236 716, Length: 512 98 12:38:33,0282160 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 236 748, Length: 512 98 12:38:33,0282232 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 236 765, Length: 512 98 12:38:33,0282293 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 236 775, Length: 512 98 12:38:33,0282362 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 236 807, Length: 512 98 12:38:33,0282429 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 236 818, Length: 512 98 12:38:33,0282492 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 236 828, Length: 512 98 12:38:33,0282559 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 236 860, Length: 512 98 12:38:33,0282628 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 236 872, Length: 512 98 12:38:33,0282692 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 236 882, Length: 512 98 12:38:33,0282758 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 236 914, Length: 512 98 12:38:33,0282830 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 236 928, Length: 512 98 12:38:33,0282897 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 236 938, Length: 512 98 12:38:33,0282963 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 236 970, Length: 512 98 12:38:33,0283035 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 236 988, Length: 512 98 12:38:33,0283096 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 236 998, Length: 512 98 12:38:33,0283163 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 237 030, Length: 512 98 12:38:33,0283249 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 237 044, Length: 512 98 12:38:33,0283312 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 237 054, Length: 512 98 12:38:33,0283379 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 237 086, Length: 512 98 12:38:33,0283451 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 237 104, Length: 512 98 12:38:33,0283512 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 237 114, Length: 512 98 12:38:33,0283581 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 237 146, Length: 512 98 12:38:33,0283650 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 237 161, Length: 512 98 12:38:33,0283711 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 237 171, Length: 512 98 12:38:33,0283778 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 237 203, Length: 512 98 12:38:33,0283847 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 237 219, Length: 512 98 12:38:33,0283911 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 237 229, Length: 512 98 12:38:33,0283977 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 237 261, Length: 512 98 12:38:33,0284049 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 237 277, Length: 512 98 12:38:33,0284113 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 237 287, Length: 512 98 12:38:33,0284180 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 237 319, Length: 512 98 12:38:33,0284249 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 237 336, Length: 512 98 12:38:33,0284310 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 237 346, Length: 512 98 12:38:33,0284376 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 237 378, Length: 512 98 12:38:33,0284446 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 237 391, Length: 512 98 12:38:33,0284507 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 237 401, Length: 512 98 12:38:33,0284576 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 237 433, Length: 512 98 12:38:33,0284645 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 237 449, Length: 512 98 12:38:33,0284709 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 237 459, Length: 512 98 12:38:33,0284775 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 237 491, Length: 512 98 12:38:33,0284845 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 237 508, Length: 512 98 12:38:33,0284911 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 237 518, Length: 512 98 12:38:33,0284978 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 237 550, Length: 512 98 12:38:33,0285047 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 237 563, Length: 512 98 12:38:33,0285111 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 237 573, Length: 512 98 12:38:33,0285177 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 237 605, Length: 512 98 12:38:33,0285249 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 237 630, Length: 512 98 12:38:33,0285465 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 237 640, Length: 512 98 12:38:33,0285557 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 237 672, Length: 512 98 12:38:33,0285640 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 237 693, Length: 512 98 12:38:33,0285701 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 237 703, Length: 512 98 12:38:33,0285767 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 237 735, Length: 512 98 12:38:33,0285870 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 237 758, Length: 512 98 12:38:33,0285936 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 237 768, Length: 512 98 12:38:33,0286003 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 237 800, Length: 512 98 12:38:33,0286089 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 237 821, Length: 512 98 12:38:33,0286149 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 237 831, Length: 512 98 12:38:33,0286216 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 237 863, Length: 512 98 12:38:33,0286288 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 237 886, Length: 512 98 12:38:33,0286352 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 237 896, Length: 512 98 12:38:33,0286418 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 237 928, Length: 512 98 12:38:33,0286490 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 237 951, Length: 512 98 12:38:33,0286554 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 237 961, Length: 512 98 12:38:33,0286620 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 237 993, Length: 512 98 12:38:33,0286693 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 238 017, Length: 512 98 12:38:33,0286756 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 238 027, Length: 512 98 12:38:33,0286823 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 238 059, Length: 512 98 12:38:33,0286895 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 238 081, Length: 512 98 12:38:33,0286958 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 238 091, Length: 512 98 12:38:33,0287025 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 238 123, Length: 512 98 12:38:33,0287103 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 238 144, Length: 512 98 12:38:33,0287166 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 238 154, Length: 512 98 12:38:33,0287238 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 238 186, Length: 512 98 12:38:33,0287308 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 238 202, Length: 512 98 12:38:33,0287369 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 238 212, Length: 512 98 12:38:33,0287435 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 238 244, Length: 512 98 12:38:33,0287507 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 238 259, Length: 512 98 12:38:33,0287568 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 238 269, Length: 512 98 12:38:33,0287637 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 238 301, Length: 512 98 12:38:33,0287709 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 238 319, Length: 512 98 12:38:33,0287770 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 238 329, Length: 512 98 12:38:33,0287837 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 238 361, Length: 512 98 12:38:33,0287909 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 238 381, Length: 512 98 12:38:33,0287970 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 238 391, Length: 512 98 12:38:33,0288039 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 238 423, Length: 512 98 12:38:33,0288114 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 238 451, Length: 512 98 12:38:33,0288178 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 238 461, Length: 512 98 12:38:33,0288244 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 238 493, Length: 512 98 12:38:33,0288319 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 238 518, Length: 512 98 12:38:33,0288380 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 238 528, Length: 512 98 12:38:33,0288446 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 238 560, Length: 512 98 12:38:33,0288518 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 238 575, Length: 512 98 12:38:33,0288579 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 238 585, Length: 512 98 12:38:33,0288646 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 238 617, Length: 512 98 12:38:33,0288715 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 238 632, Length: 512 98 12:38:33,0288779 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 238 642, Length: 512 98 12:38:33,0288845 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 238 674, Length: 512 98 12:38:33,0288914 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 238 690, Length: 512 98 12:38:33,0288978 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 238 700, Length: 512 98 12:38:33,0289045 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 238 732, Length: 512 98 12:38:33,0289114 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 238 747, Length: 512 98 12:38:33,0289178 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 238 757, Length: 512 98 12:38:33,0289247 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 238 789, Length: 512 98 12:38:33,0289322 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 238 805, Length: 512 98 12:38:33,0289383 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 238 815, Length: 512 98 12:38:33,0289449 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 238 847, Length: 512 98 12:38:33,0289521 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 238 862, Length: 512 98 12:38:33,0289582 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 238 872, Length: 512 98 12:38:33,0289649 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 238 904, Length: 512 98 12:38:33,0289718 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 238 916, Length: 512 98 12:38:33,0289782 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 238 926, Length: 512 98 12:38:33,0289848 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 238 958, Length: 512 98 12:38:33,0289920 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 238 969, Length: 512 98 12:38:33,0289981 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 238 979, Length: 512 98 12:38:33,0290048 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 239 011, Length: 512 98 12:38:33,0290120 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 239 026, Length: 512 98 12:38:33,0290181 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 239 036, Length: 512 98 12:38:33,0290247 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 239 068, Length: 512 98 12:38:33,0290316 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 239 082, Length: 512 98 12:38:33,0290380 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 239 092, Length: 512 98 12:38:33,0290447 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 239 124, Length: 512 98 12:38:33,0290519 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 239 143, Length: 512 98 12:38:33,0290580 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 239 153, Length: 512 98 12:38:33,0290646 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 239 185, Length: 512 98 12:38:33,0290718 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 239 206, Length: 512 98 12:38:33,0290782 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 239 216, Length: 512 98 12:38:33,0290848 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 239 248, Length: 512 98 12:38:33,0290920 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 239 268, Length: 512 98 12:38:33,0290981 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 239 278, Length: 512 98 12:38:33,0291051 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 239 310, Length: 512 98 12:38:33,0291123 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 239 334, Length: 512 98 12:38:33,0291184 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 239 344, Length: 512 98 12:38:33,0291250 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 239 376, Length: 512 98 12:38:33,0291322 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 239 399, Length: 512 98 12:38:33,0291389 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 239 409, Length: 512 98 12:38:33,0291455 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 239 441, Length: 512 98 12:38:33,0291527 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 239 456, Length: 512 98 12:38:33,0291591 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 239 466, Length: 512 98 12:38:33,0291657 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 239 498, Length: 512 98 12:38:33,0291729 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 239 521, Length: 512 98 12:38:33,0291790 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 239 531, Length: 512 98 12:38:33,0291860 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 239 563, Length: 512 98 12:38:33,0291932 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 239 579, Length: 512 98 12:38:33,0291995 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 239 589, Length: 512 98 12:38:33,0292062 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 239 621, Length: 512 98 12:38:33,0292134 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 239 638, Length: 511 98 12:38:33,0292200 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 239 648, Length: 501 98 12:38:33,0292272 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 239 680, Length: 469 98 12:38:33,0292344 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 239 698, Length: 451 98 12:38:33,0292411 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 239 708, Length: 441 98 12:38:33,0292480 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 239 740, Length: 409 98 12:38:33,0292552 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 239 755, Length: 394 98 12:38:33,0292616 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 239 765, Length: 384 98 12:38:33,0292688 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 239 797, Length: 352 98 12:38:33,0292763 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 239 817, Length: 332 98 12:38:33,0292827 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 239 827, Length: 322 98 12:38:33,0292899 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 239 859, Length: 290 98 12:38:33,0292971 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 239 873, Length: 276 98 12:38:33,0293034 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 239 883, Length: 266 98 12:38:33,0293104 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 239 915, Length: 234 98 12:38:33,0293178 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 239 939, Length: 210 98 12:38:33,0293242 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 239 949, Length: 200 98 12:38:33,0293311 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 239 981, Length: 168 98 12:38:33,0293389 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 240 007, Length: 142 98 12:38:33,0293453 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 240 017, Length: 132 98 12:38:33,0293525 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 240 049, Length: 100 98 12:38:33,0293600 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 240 066, Length: 83 98 12:38:33,0293663 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 240 076, Length: 73 98 12:38:33,0293732 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 240 108, Length: 41 98 12:38:33,0293807 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 240 127, Length: 22 98 12:38:33,0293913 MCLauncher.exe 6080 CloseFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS 98 12:38:33,0295567 MCLauncher.exe 6080 CreateFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Desired Access: Generic Read, Disposition: Open, Options: Synchronous IO Non-Alert, Non-Directory File, Attributes: N, ShareMode: Read, Write, AllocationSize: n/a, OpenResult: Opened 98 12:38:33,0295891 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 2 131 729, Length: 4 096, Priority: Normal 98 12:38:33,0296079 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 2 131 755, Length: 512 98 12:38:33,0296162 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 2 131 772, Length: 1 024 98 12:38:33,0296223 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 2 132 796, Length: 512 98 12:38:33,0296309 MCLauncher.exe 6080 CloseFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS 98 12:38:33,0297717 MCLauncher.exe 6080 RegQueryKey HKCU SUCCESS Query: HandleTags, HandleTags: 0x0 98 12:38:33,0297800 MCLauncher.exe 6080 RegQueryKey HKCU SUCCESS Query: Name 98 12:38:33,0297924 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Python\PythonCore\MCLauncher\Modules\os NAME NOT FOUND Desired Access: Query Value 98 12:38:33,0298102 MCLauncher.exe 6080 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 98 12:38:33,0298149 MCLauncher.exe 6080 RegQueryKey HKLM SUCCESS Query: Name 98 12:38:33,0298249 MCLauncher.exe 6080 RegOpenKey HKLM\Software\WOW6432Node\Python\PythonCore\MCLauncher\Modules\os NAME NOT FOUND Desired Access: Query Value 98 12:38:33,0299360 MCLauncher.exe 6080 CreateFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Desired Access: Generic Read, Disposition: Open, Options: Synchronous IO Non-Alert, Non-Directory File, Attributes: N, ShareMode: Read, Write, AllocationSize: n/a, OpenResult: Opened 98 12:38:33,0299598 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 2 183 461, Length: 4 096, Priority: Normal 98 12:38:33,0299745 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 2 183 487, Length: 512 98 12:38:33,0299830 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 2 183 497, Length: 5 120 98 12:38:33,0299894 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 2 188 617, Length: 512 98 12:38:33,0299977 MCLauncher.exe 6080 CloseFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS 98 12:38:33,0302554 MCLauncher.exe 6080 RegQueryKey HKCU SUCCESS Query: HandleTags, HandleTags: 0x0 98 12:38:33,0302629 MCLauncher.exe 6080 RegQueryKey HKCU SUCCESS Query: Name 98 12:38:33,0302731 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Python\PythonCore\MCLauncher\Modules\ntpath NAME NOT FOUND Desired Access: Query Value 98 12:38:33,0302856 MCLauncher.exe 6080 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 98 12:38:33,0302903 MCLauncher.exe 6080 RegQueryKey HKLM SUCCESS Query: Name 98 12:38:33,0302994 MCLauncher.exe 6080 RegOpenKey HKLM\Software\WOW6432Node\Python\PythonCore\MCLauncher\Modules\ntpath NAME NOT FOUND Desired Access: Query Value 98 12:38:33,0304061 MCLauncher.exe 6080 CreateFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Desired Access: Generic Read, Disposition: Open, Options: Synchronous IO Non-Alert, Non-Directory File, Attributes: N, ShareMode: Read, Write, AllocationSize: n/a, OpenResult: Opened 98 12:38:33,0304299 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 2 162 672, Length: 4 096, Priority: Normal 98 12:38:33,0304443 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 2 162 698, Length: 512 98 12:38:33,0304582 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 2 162 712, Length: 4 096 98 12:38:33,0304660 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 2 166 808, Length: 512 98 12:38:33,0304743 MCLauncher.exe 6080 CloseFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS 98 12:38:33,0306538 MCLauncher.exe 6080 RegQueryKey HKCU SUCCESS Query: HandleTags, HandleTags: 0x0 98 12:38:33,0306607 MCLauncher.exe 6080 RegQueryKey HKCU SUCCESS Query: Name 98 12:38:33,0306710 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Python\PythonCore\MCLauncher\Modules\stat NAME NOT FOUND Desired Access: Query Value 98 12:38:33,0306829 MCLauncher.exe 6080 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 98 12:38:33,0306876 MCLauncher.exe 6080 RegQueryKey HKLM SUCCESS Query: Name 98 12:38:33,0306965 MCLauncher.exe 6080 RegOpenKey HKLM\Software\WOW6432Node\Python\PythonCore\MCLauncher\Modules\stat NAME NOT FOUND Desired Access: Query Value 98 12:38:33,0308164 MCLauncher.exe 6080 CreateFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Desired Access: Generic Read, Disposition: Open, Options: Synchronous IO Non-Alert, Non-Directory File, Attributes: N, ShareMode: Read, Write, AllocationSize: n/a, OpenResult: Opened 98 12:38:33,0308519 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 2 469 343, Length: 4 096, Priority: Normal 98 12:38:33,0308688 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 2 469 369, Length: 512 98 12:38:33,0308777 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 2 469 381, Length: 512 98 12:38:33,0308835 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 2 469 893, Length: 512 98 12:38:33,0308918 MCLauncher.exe 6080 CloseFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS 98 12:38:33,0310539 MCLauncher.exe 6080 RegQueryKey HKCU SUCCESS Query: HandleTags, HandleTags: 0x0 98 12:38:33,0310608 MCLauncher.exe 6080 RegQueryKey HKCU SUCCESS Query: Name 98 12:38:33,0310710 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Python\PythonCore\MCLauncher\Modules\genericpath NAME NOT FOUND Desired Access: Query Value 98 12:38:33,0310827 MCLauncher.exe 6080 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 98 12:38:33,0310874 MCLauncher.exe 6080 RegQueryKey HKLM SUCCESS Query: Name 98 12:38:33,0310965 MCLauncher.exe 6080 RegOpenKey HKLM\Software\WOW6432Node\Python\PythonCore\MCLauncher\Modules\genericpath NAME NOT FOUND Desired Access: Query Value 98 12:38:33,0312154 MCLauncher.exe 6080 CreateFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Desired Access: Generic Read, Disposition: Open, Options: Synchronous IO Non-Alert, Non-Directory File, Attributes: N, ShareMode: Read, Write, AllocationSize: n/a, OpenResult: Opened 98 12:38:33,0312492 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 2 087 485, Length: 4 096, Priority: Normal 98 12:38:33,0312697 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 2 087 511, Length: 512 98 12:38:33,0312788 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 2 087 530, Length: 512 98 12:38:33,0312847 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 2 088 042, Length: 512 98 12:38:33,0312930 MCLauncher.exe 6080 CloseFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS 98 12:38:33,0313700 MCLauncher.exe 6080 RegQueryKey HKCU SUCCESS Query: HandleTags, HandleTags: 0x0 98 12:38:33,0313766 MCLauncher.exe 6080 RegQueryKey HKCU SUCCESS Query: Name 98 12:38:33,0313866 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Python\PythonCore\MCLauncher\Modules\warnings NAME NOT FOUND Desired Access: Query Value 98 12:38:33,0313988 MCLauncher.exe 6080 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 98 12:38:33,0314035 MCLauncher.exe 6080 RegQueryKey HKLM SUCCESS Query: Name 98 12:38:33,0314124 MCLauncher.exe 6080 RegOpenKey HKLM\Software\WOW6432Node\Python\PythonCore\MCLauncher\Modules\warnings NAME NOT FOUND Desired Access: Query Value 98 12:38:33,0315623 MCLauncher.exe 6080 CreateFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Desired Access: Generic Read, Disposition: Open, Options: Synchronous IO Non-Alert, Non-Directory File, Attributes: N, ShareMode: Read, Write, AllocationSize: n/a, OpenResult: Opened 98 12:38:33,0315994 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 2 569 927, Length: 4 096, Priority: Normal 98 12:38:33,0316155 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 2 569 953, Length: 512 98 12:38:33,0316241 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 2 569 969, Length: 4 096 98 12:38:33,0316301 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 2 574 065, Length: 512 98 12:38:33,0316385 MCLauncher.exe 6080 CloseFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS 98 12:38:33,0317823 MCLauncher.exe 6080 RegQueryKey HKCU SUCCESS Query: HandleTags, HandleTags: 0x0 98 12:38:33,0317889 MCLauncher.exe 6080 RegQueryKey HKCU SUCCESS Query: Name 98 12:38:33,0317992 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Python\PythonCore\MCLauncher\Modules\types NAME NOT FOUND Desired Access: Query Value 98 12:38:33,0318113 MCLauncher.exe 6080 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 98 12:38:33,0318158 MCLauncher.exe 6080 RegQueryKey HKLM SUCCESS Query: Name 98 12:38:33,0318246 MCLauncher.exe 6080 RegOpenKey HKLM\Software\WOW6432Node\Python\PythonCore\MCLauncher\Modules\types NAME NOT FOUND Desired Access: Query Value 98 12:38:33,0319316 MCLauncher.exe 6080 CreateFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Desired Access: Generic Read, Disposition: Open, Options: Synchronous IO Non-Alert, Non-Directory File, Attributes: N, ShareMode: Read, Write, AllocationSize: n/a, OpenResult: Opened 98 12:38:33,0319551 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 2 539 979, Length: 4 096, Priority: Normal 98 12:38:33,0319695 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 2 540 005, Length: 512 98 12:38:33,0319787 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 2 540 018, Length: 1 024 98 12:38:33,0319845 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 2 541 042, Length: 512 98 12:38:33,0319928 MCLauncher.exe 6080 CloseFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS 98 12:38:33,0322291 MCLauncher.exe 6080 RegQueryKey HKCU SUCCESS Query: HandleTags, HandleTags: 0x0 98 12:38:33,0322361 MCLauncher.exe 6080 RegQueryKey HKCU SUCCESS Query: Name 98 12:38:33,0322466 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Python\PythonCore\MCLauncher\Modules\UserDict NAME NOT FOUND Desired Access: Query Value 98 12:38:33,0322585 MCLauncher.exe 6080 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 98 12:38:33,0322632 MCLauncher.exe 6080 RegQueryKey HKLM SUCCESS Query: Name 98 12:38:33,0322749 MCLauncher.exe 6080 RegOpenKey HKLM\Software\WOW6432Node\Python\PythonCore\MCLauncher\Modules\UserDict NAME NOT FOUND Desired Access: Query Value 98 12:38:33,0323826 MCLauncher.exe 6080 CreateFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Desired Access: Generic Read, Disposition: Open, Options: Synchronous IO Non-Alert, Non-Directory File, Attributes: N, ShareMode: Read, Write, AllocationSize: n/a, OpenResult: Opened 98 12:38:33,0324065 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 1 792 187, Length: 4 096, Priority: Normal 98 12:38:33,0324231 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 1 792 213, Length: 512 98 12:38:33,0357231 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 1 792 229, Length: 2 560 98 12:38:33,0357422 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 1 794 789, Length: 512 98 12:38:33,0357533 MCLauncher.exe 6080 CloseFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS 98 12:38:33,0358902 MCLauncher.exe 6080 RegQueryKey HKCU SUCCESS Query: HandleTags, HandleTags: 0x0 98 12:38:33,0358982 MCLauncher.exe 6080 RegQueryKey HKCU SUCCESS Query: Name 98 12:38:33,0359093 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Python\PythonCore\MCLauncher\Modules\_abcoll NAME NOT FOUND Desired Access: Query Value 98 12:38:33,0359240 MCLauncher.exe 6080 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 98 12:38:33,0359287 MCLauncher.exe 6080 RegQueryKey HKLM SUCCESS Query: Name 98 12:38:33,0359378 MCLauncher.exe 6080 RegOpenKey HKLM\Software\WOW6432Node\Python\PythonCore\MCLauncher\Modules\_abcoll NAME NOT FOUND Desired Access: Query Value 98 12:38:33,0360489 MCLauncher.exe 6080 CreateFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Desired Access: Generic Read, Disposition: Open, Options: Synchronous IO Non-Alert, Non-Directory File, Attributes: N, ShareMode: Read, Write, AllocationSize: n/a, OpenResult: Opened 98 12:38:33,0360744 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 1 795 741, Length: 4 096, Priority: Normal 98 12:38:33,0360896 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 1 795 767, Length: 512 98 12:38:33,0360985 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 1 795 782, Length: 5 120 98 12:38:33,0361046 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 1 800 902, Length: 512 98 12:38:33,0361129 MCLauncher.exe 6080 CloseFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS 98 12:38:33,0363240 MCLauncher.exe 6080 RegQueryKey HKCU SUCCESS Query: HandleTags, HandleTags: 0x0 98 12:38:33,0363310 MCLauncher.exe 6080 RegQueryKey HKCU SUCCESS Query: Name 98 12:38:33,0363614 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Python\PythonCore\MCLauncher\Modules\abc NAME NOT FOUND Desired Access: Query Value 98 12:38:33,0363761 MCLauncher.exe 6080 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 98 12:38:33,0363814 MCLauncher.exe 6080 RegQueryKey HKLM SUCCESS Query: Name 98 12:38:33,0363900 MCLauncher.exe 6080 RegOpenKey HKLM\Software\WOW6432Node\Python\PythonCore\MCLauncher\Modules\abc NAME NOT FOUND Desired Access: Query Value 98 12:38:33,0364997 MCLauncher.exe 6080 CreateFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Desired Access: Generic Read, Disposition: Open, Options: Synchronous IO Non-Alert, Non-Directory File, Attributes: N, ShareMode: Read, Write, AllocationSize: n/a, OpenResult: Opened 98 12:38:33,0365257 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 1 814 511, Length: 4 096, Priority: Normal 98 12:38:33,0365401 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 1 814 537, Length: 512 98 12:38:33,0365484 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 1 814 548, Length: 1 536 98 12:38:33,0365543 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 1 816 084, Length: 512 98 12:38:33,0365626 MCLauncher.exe 6080 CloseFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS 98 12:38:33,0366548 MCLauncher.exe 6080 RegQueryKey HKCU SUCCESS Query: HandleTags, HandleTags: 0x0 98 12:38:33,0366609 MCLauncher.exe 6080 RegQueryKey HKCU SUCCESS Query: Name 98 12:38:33,0366709 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Python\PythonCore\MCLauncher\Modules\_weakrefset NAME NOT FOUND Desired Access: Query Value 98 12:38:33,0366823 MCLauncher.exe 6080 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 98 12:38:33,0366870 MCLauncher.exe 6080 RegQueryKey HKLM SUCCESS Query: Name 98 12:38:33,0366961 MCLauncher.exe 6080 RegOpenKey HKLM\Software\WOW6432Node\Python\PythonCore\MCLauncher\Modules\_weakrefset NAME NOT FOUND Desired Access: Query Value 98 12:38:33,0367997 MCLauncher.exe 6080 CreateFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Desired Access: Generic Read, Disposition: Open, Options: Synchronous IO Non-Alert, Non-Directory File, Attributes: N, ShareMode: Read, Write, AllocationSize: n/a, OpenResult: Opened 98 12:38:33,0368230 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 1 811 950, Length: 4 096, Priority: Normal 98 12:38:33,0368349 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 1 811 976, Length: 512 98 12:38:33,0368432 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 1 811 995, Length: 2 048 98 12:38:33,0368493 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 1 814 043, Length: 512 98 12:38:33,0368574 MCLauncher.exe 6080 CloseFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS 98 12:38:33,0376564 MCLauncher.exe 6080 RegQueryKey HKCU SUCCESS Query: HandleTags, HandleTags: 0x0 98 12:38:33,0376647 MCLauncher.exe 6080 RegQueryKey HKCU SUCCESS Query: Name 98 12:38:33,0376758 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Python\PythonCore\MCLauncher\Modules\copy_reg NAME NOT FOUND Desired Access: Query Value 98 12:38:33,0376883 MCLauncher.exe 6080 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 98 12:38:33,0376932 MCLauncher.exe 6080 RegQueryKey HKLM SUCCESS Query: Name 98 12:38:33,0377029 MCLauncher.exe 6080 RegOpenKey HKLM\Software\WOW6432Node\Python\PythonCore\MCLauncher\Modules\copy_reg NAME NOT FOUND Desired Access: Query Value 98 12:38:33,0378174 MCLauncher.exe 6080 CreateFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Desired Access: Generic Read, Disposition: Open, Options: Synchronous IO Non-Alert, Non-Directory File, Attributes: N, ShareMode: Read, Write, AllocationSize: n/a, OpenResult: Opened 98 12:38:33,0378420 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 1 855 680, Length: 4 096, Priority: Normal 98 12:38:33,0378581 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 1 855 706, Length: 512 98 12:38:33,0378670 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 1 855 722, Length: 1 536 98 12:38:33,0378731 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 1 857 258, Length: 512 98 12:38:33,0378816 MCLauncher.exe 6080 CloseFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS 98 12:38:33,0379900 MCLauncher.exe 6080 RegQueryKey HKCU SUCCESS Query: HandleTags, HandleTags: 0x0 98 12:38:33,0379961 MCLauncher.exe 6080 RegQueryKey HKCU SUCCESS Query: Name 98 12:38:33,0380063 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Python\PythonCore\MCLauncher\Modules\zipextimporter NAME NOT FOUND Desired Access: Query Value 98 12:38:33,0380182 MCLauncher.exe 6080 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 98 12:38:33,0380229 MCLauncher.exe 6080 RegQueryKey HKLM SUCCESS Query: Name 98 12:38:33,0380318 MCLauncher.exe 6080 RegOpenKey HKLM\Software\WOW6432Node\Python\PythonCore\MCLauncher\Modules\zipextimporter NAME NOT FOUND Desired Access: Query Value 98 12:38:33,0381374 MCLauncher.exe 6080 CreateFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Desired Access: Generic Read, Disposition: Open, Options: Synchronous IO Non-Alert, Non-Directory File, Attributes: N, ShareMode: Read, Write, AllocationSize: n/a, OpenResult: Opened 98 12:38:33,0381606 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 2 435 931, Length: 4 096, Priority: Normal 98 12:38:33,0381756 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 2 435 957, Length: 512 98 12:38:33,0381839 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 2 435 979, Length: 1 024 98 12:38:33,0381900 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 2 437 003, Length: 512 98 12:38:33,0381980 MCLauncher.exe 6080 CloseFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS 98 12:38:33,0506647 MCLauncher.exe 6080 RegQueryKey HKCU SUCCESS Query: HandleTags, HandleTags: 0x0 98 12:38:33,0506755 MCLauncher.exe 6080 RegQueryKey HKCU SUCCESS Query: Name 98 12:38:33,0506910 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Python\PythonCore\MCLauncher\Modules\encodings NAME NOT FOUND Desired Access: Query Value 98 12:38:33,0507104 MCLauncher.exe 6080 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 98 12:38:33,0507154 MCLauncher.exe 6080 RegQueryKey HKLM SUCCESS Query: Name 98 12:38:33,0507257 MCLauncher.exe 6080 RegOpenKey HKLM\Software\WOW6432Node\Python\PythonCore\MCLauncher\Modules\encodings NAME NOT FOUND Desired Access: Query Value 98 12:38:33,0508905 MCLauncher.exe 6080 CreateFile C:\Users\User\AppData\Roaming\MCLauncher SUCCESS Desired Access: Read Data/List Directory, Synchronize, Disposition: Open, Options: Directory, Synchronous IO Non-Alert, Attributes: n/a, ShareMode: Read, Write, Delete, AllocationSize: n/a, OpenResult: Opened 98 12:38:33,0509193 MCLauncher.exe 6080 QueryDirectory C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Filter: MCLauncher.exe, 1: MCLauncher.exe 98 12:38:33,0509473 MCLauncher.exe 6080 CloseFile C:\Users\User\AppData\Roaming\MCLauncher SUCCESS 98 12:38:33,0511221 MCLauncher.exe 6080 CreateFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Desired Access: Generic Read, Disposition: Open, Options: Synchronous IO Non-Alert, Non-Directory File, Attributes: N, ShareMode: Read, Write, AllocationSize: n/a, OpenResult: Opened 98 12:38:33,0511507 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 1 911 751, Length: 4 096, Priority: Normal 98 12:38:33,0511701 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 1 911 777, Length: 512 98 12:38:33,0511792 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 1 911 803, Length: 1 024 98 12:38:33,0511856 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 1 912 827, Length: 512 98 12:38:33,0511942 MCLauncher.exe 6080 CloseFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS 98 12:38:33,0513543 MCLauncher.exe 6080 CreateFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe NOT A DIRECTORY Desired Access: Read Data/List Directory, Synchronize, Disposition: Open, Options: Directory, Synchronous IO Non-Alert, Attributes: n/a, ShareMode: Read, Write, Delete, AllocationSize: n/a 98 12:38:33,0514424 MCLauncher.exe 6080 CreateFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe NOT A DIRECTORY Desired Access: Read Data/List Directory, Synchronize, Disposition: Open, Options: Directory, Synchronous IO Non-Alert, Attributes: n/a, ShareMode: Read, Write, Delete, AllocationSize: n/a 98 12:38:33,0515352 MCLauncher.exe 6080 CreateFile C:\Users\User\AppData\Roaming\MCLauncher SUCCESS Desired Access: Read Data/List Directory, Synchronize, Disposition: Open, Options: Directory, Synchronous IO Non-Alert, Attributes: n/a, ShareMode: Read, Write, Delete, AllocationSize: n/a, OpenResult: Opened 98 12:38:33,0515544 MCLauncher.exe 6080 QueryDirectory C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Filter: MCLauncher.exe, 1: MCLauncher.exe 98 12:38:33,0515729 MCLauncher.exe 6080 CloseFile C:\Users\User\AppData\Roaming\MCLauncher SUCCESS 98 12:38:33,0516125 MCLauncher.exe 6080 RegQueryKey HKCU SUCCESS Query: HandleTags, HandleTags: 0x0 98 12:38:33,0516189 MCLauncher.exe 6080 RegQueryKey HKCU SUCCESS Query: Name 98 12:38:33,0516292 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Python\PythonCore\MCLauncher\Modules\codecs NAME NOT FOUND Desired Access: Query Value 98 12:38:33,0516411 MCLauncher.exe 6080 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 98 12:38:33,0516458 MCLauncher.exe 6080 RegQueryKey HKLM SUCCESS Query: Name 98 12:38:33,0516544 MCLauncher.exe 6080 RegOpenKey HKLM\Software\WOW6432Node\Python\PythonCore\MCLauncher\Modules\codecs NAME NOT FOUND Desired Access: Query Value 98 12:38:33,0517555 MCLauncher.exe 6080 CreateFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Desired Access: Generic Read, Disposition: Open, Options: Synchronous IO Non-Alert, Non-Directory File, Attributes: N, ShareMode: Read, Write, AllocationSize: n/a, OpenResult: Opened 98 12:38:33,0517779 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 1 838 198, Length: 4 096, Priority: Normal 98 12:38:33,0517932 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 1 838 224, Length: 512 98 12:38:33,0518051 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 1 838 238, Length: 5 632 98 12:38:33,0518123 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 1 843 870, Length: 512 98 12:38:33,0518206 MCLauncher.exe 6080 CloseFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS 98 12:38:33,0523514 MCLauncher.exe 6080 CreateFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Desired Access: Generic Read, Disposition: Open, Options: Synchronous IO Non-Alert, Non-Directory File, Attributes: N, ShareMode: Read, Write, AllocationSize: n/a, OpenResult: Opened 98 12:38:33,0523769 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 1 913 209, Length: 4 096, Priority: Normal 98 12:38:33,0523919 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 1 913 235, Length: 512 98 12:38:33,0524008 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 1 913 260, Length: 2 560 98 12:38:33,0524071 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 1 915 820, Length: 512 98 12:38:33,0524157 MCLauncher.exe 6080 CloseFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS 98 12:38:33,0526789 MCLauncher.exe 6080 CreateFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Desired Access: Generic Read, Disposition: Open, Options: Synchronous IO Non-Alert, Non-Directory File, Attributes: N, ShareMode: Read, Write, AllocationSize: n/a, OpenResult: Opened 98 12:38:33,0527030 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 2 080 354, Length: 4 096, Priority: Normal 98 12:38:33,0527180 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 2 080 380, Length: 512 98 12:38:33,0527266 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 2 080 403, Length: 512 98 12:38:33,0527327 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 2 080 915, Length: 512 98 12:38:33,0527413 MCLauncher.exe 6080 CloseFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS 98 12:38:33,0534782 MCLauncher.exe 6080 CreateFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Desired Access: Generic Read, Disposition: Open, Options: Synchronous IO Non-Alert, Non-Directory File, Attributes: N, ShareMode: Read, Write, AllocationSize: n/a, OpenResult: Opened 98 12:38:33,0535037 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 2 078 280, Length: 4 096, Priority: Normal 98 12:38:33,0535170 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 2 078 306, Length: 512 98 12:38:33,0535256 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 2 078 333, Length: 512 98 12:38:33,0535317 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 2 078 845, Length: 512 98 12:38:33,0535400 MCLauncher.exe 6080 CloseFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS 98 12:38:33,0542980 MCLauncher.exe 6080 RegQueryKey HKCU SUCCESS Query: HandleTags, HandleTags: 0x0 98 12:38:33,0543069 MCLauncher.exe 6080 RegQueryKey HKCU SUCCESS Query: Name 98 12:38:33,0543188 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Python\PythonCore\MCLauncher\Modules\random NAME NOT FOUND Desired Access: Query Value 98 12:38:33,0543327 MCLauncher.exe 6080 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 98 12:38:33,0543374 MCLauncher.exe 6080 RegQueryKey HKLM SUCCESS Query: Name 98 12:38:33,0543465 MCLauncher.exe 6080 RegOpenKey HKLM\Software\WOW6432Node\Python\PythonCore\MCLauncher\Modules\random NAME NOT FOUND Desired Access: Query Value 98 12:38:33,0544668 MCLauncher.exe 6080 CreateFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Desired Access: Generic Read, Disposition: Open, Options: Synchronous IO Non-Alert, Non-Directory File, Attributes: N, ShareMode: Read, Write, AllocationSize: n/a, OpenResult: Opened 98 12:38:33,0544914 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 2 245 504, Length: 4 096, Priority: Normal 98 12:38:33,0545078 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 2 245 530, Length: 512 98 12:38:33,0545183 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 2 245 544, Length: 6 656 98 12:38:33,0545247 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 2 252 200, Length: 512 98 12:38:33,0545333 MCLauncher.exe 6080 CloseFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS 98 12:38:33,0547109 MCLauncher.exe 6080 RegQueryKey HKCU SUCCESS Query: HandleTags, HandleTags: 0x0 98 12:38:33,0547172 MCLauncher.exe 6080 RegQueryKey HKCU SUCCESS Query: Name 98 12:38:33,0547275 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Python\PythonCore\MCLauncher\Modules\__future__ NAME NOT FOUND Desired Access: Query Value 98 12:38:33,0547394 MCLauncher.exe 6080 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 98 12:38:33,0547441 MCLauncher.exe 6080 RegQueryKey HKLM SUCCESS Query: Name 98 12:38:33,0547532 MCLauncher.exe 6080 RegOpenKey HKLM\Software\WOW6432Node\Python\PythonCore\MCLauncher\Modules\__future__ NAME NOT FOUND Desired Access: Query Value 98 12:38:33,0548632 MCLauncher.exe 6080 CreateFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Desired Access: Generic Read, Disposition: Open, Options: Synchronous IO Non-Alert, Non-Directory File, Attributes: N, ShareMode: Read, Write, AllocationSize: n/a, OpenResult: Opened 98 12:38:33,0549053 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 1 794 803, Length: 4 096, Priority: Normal 98 12:38:33,0549200 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 1 794 829, Length: 512 98 12:38:33,0549286 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 1 794 847, Length: 512 98 12:38:33,0549347 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 1 795 359, Length: 512 98 12:38:33,0549433 MCLauncher.exe 6080 CloseFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS 98 12:38:33,0550649 MCLauncher.exe 6080 RegQueryKey HKCU SUCCESS Query: HandleTags, HandleTags: 0x0 98 12:38:33,0550713 MCLauncher.exe 6080 RegQueryKey HKCU SUCCESS Query: Name 98 12:38:33,0550813 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Python\PythonCore\MCLauncher\Modules\hashlib NAME NOT FOUND Desired Access: Query Value 98 12:38:33,0550932 MCLauncher.exe 6080 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 98 12:38:33,0550979 MCLauncher.exe 6080 RegQueryKey HKLM SUCCESS Query: Name 98 12:38:33,0551068 MCLauncher.exe 6080 RegOpenKey HKLM\Software\WOW6432Node\Python\PythonCore\MCLauncher\Modules\hashlib NAME NOT FOUND Desired Access: Query Value 98 12:38:33,0552170 MCLauncher.exe 6080 CreateFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Desired Access: Generic Read, Disposition: Open, Options: Synchronous IO Non-Alert, Non-Directory File, Attributes: N, ShareMode: Read, Write, AllocationSize: n/a, OpenResult: Opened 98 12:38:33,0552406 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 2 102 055, Length: 4 096, Priority: Normal 98 12:38:33,0552553 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 2 102 081, Length: 512 98 12:38:33,0552639 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 2 102 096, Length: 2 560 98 12:38:33,0552700 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 2 104 656, Length: 512 98 12:38:33,0552783 MCLauncher.exe 6080 CloseFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS 98 12:38:33,0554284 MCLauncher.exe 6080 RegQueryKey HKCU SUCCESS Query: HandleTags, HandleTags: 0x0 98 12:38:33,0554348 MCLauncher.exe 6080 RegQueryKey HKCU SUCCESS Query: Name 98 12:38:33,0554448 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Python\PythonCore\MCLauncher\Modules\_hashlib NAME NOT FOUND Desired Access: Query Value 98 12:38:33,0554567 MCLauncher.exe 6080 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 98 12:38:33,0554614 MCLauncher.exe 6080 RegQueryKey HKLM SUCCESS Query: Name 98 12:38:33,0554703 MCLauncher.exe 6080 RegOpenKey HKLM\Software\WOW6432Node\Python\PythonCore\MCLauncher\Modules\_hashlib NAME NOT FOUND Desired Access: Query Value 98 12:38:33,0555883 MCLauncher.exe 6080 CreateFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Desired Access: Generic Read, Disposition: Open, Options: Synchronous IO Non-Alert, Non-Directory File, Attributes: N, ShareMode: Read, Write, AllocationSize: n/a, OpenResult: Opened 98 12:38:33,0556118 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 2 786 760, Length: 4 096, Priority: Normal 98 12:38:33,0556296 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 2 786 786, Length: 512 98 12:38:33,0557119 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 2 786 802, Length: 381 952 98 12:38:33,0558310 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 3 168 754, Length: 512 98 12:38:33,0558424 MCLauncher.exe 6080 CloseFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS 98 12:38:33,0615854 MCLauncher.exe 6080 CreateFile C:\Windows\SysWOW64\cryptsp.dll SUCCESS Desired Access: Read Attributes, Disposition: Open, Options: Open Reparse Point, Attributes: n/a, ShareMode: Read, Write, Delete, AllocationSize: n/a, OpenResult: Opened 98 12:38:33,0616204 MCLauncher.exe 6080 QueryBasicInformationFile C:\Windows\SysWOW64\cryptsp.dll SUCCESS CreationTime: 16.07.2016 14:42:55, LastAccessTime: 16.07.2016 14:42:55, LastWriteTime: 16.07.2016 14:42:55, ChangeTime: 20.07.2018 19:44:33, FileAttributes: A 98 12:38:33,0616309 MCLauncher.exe 6080 CloseFile C:\Windows\SysWOW64\cryptsp.dll SUCCESS 98 12:38:33,0617564 MCLauncher.exe 6080 CreateFile C:\Windows\SysWOW64\cryptsp.dll SUCCESS Desired Access: Read Data/List Directory, Execute/Traverse, Synchronize, Disposition: Open, Options: Synchronous IO Non-Alert, Non-Directory File, Attributes: n/a, ShareMode: Read, Delete, AllocationSize: n/a, OpenResult: Opened 98 12:38:33,0617874 MCLauncher.exe 6080 CreateFileMapping C:\Windows\SysWOW64\cryptsp.dll FILE LOCKED WITH ONLY READERS SyncType: SyncTypeCreateSection, PageProtection: PAGE_EXECUTE|PAGE_NOCACHE 98 12:38:33,0618060 MCLauncher.exe 6080 QueryNameInformationFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Name: \Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe 98 12:38:33,0619088 MCLauncher.exe 6080 CreateFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Desired Access: Synchronize, Disposition: Open, Options: Synchronous IO Non-Alert, Attributes: N, ShareMode: Read, Write, Delete, AllocationSize: n/a, OpenResult: Opened 98 12:38:33,0619293 MCLauncher.exe 6080 CloseFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS 98 12:38:33,0619598 MCLauncher.exe 6080 QueryNameInformationFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Name: \Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe 98 12:38:33,0620443 MCLauncher.exe 6080 CreateFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Desired Access: Synchronize, Disposition: Open, Options: Synchronous IO Non-Alert, Attributes: N, ShareMode: Read, Write, Delete, AllocationSize: n/a, OpenResult: Opened 98 12:38:33,0620617 MCLauncher.exe 6080 CloseFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS 98 12:38:33,0898925 MCLauncher.exe 6080 CreateFileMapping C:\Windows\SysWOW64\cryptsp.dll SUCCESS SyncType: SyncTypeOther 98 12:38:33,0899582 MCLauncher.exe 6080 Load Image C:\Windows\SysWOW64\cryptsp.dll SUCCESS Image Base: 0x741b0000, Image Size: 0x13000 98 12:38:33,0900471 MCLauncher.exe 6080 CloseFile C:\Windows\SysWOW64\cryptsp.dll SUCCESS 98 12:38:33,0902076 MCLauncher.exe 6080 CreateFile C:\Windows\SysWOW64\cryptsp.dll SUCCESS Desired Access: Read Control, Disposition: Open, Options: , Attributes: n/a, ShareMode: Read, Delete, AllocationSize: n/a, OpenResult: Opened 98 12:38:33,0902369 MCLauncher.exe 6080 QuerySecurityFile C:\Windows\SysWOW64\cryptsp.dll BUFFER OVERFLOW Information: Owner 98 12:38:33,0902452 MCLauncher.exe 6080 QuerySecurityFile C:\Windows\SysWOW64\cryptsp.dll SUCCESS Information: Owner 98 12:38:33,0902527 MCLauncher.exe 6080 CloseFile C:\Windows\SysWOW64\cryptsp.dll SUCCESS 98 12:38:33,0903259 MCLauncher.exe 6080 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 98 12:38:33,0903333 MCLauncher.exe 6080 RegQueryKey HKLM SUCCESS Query: Name 98 12:38:33,0903464 MCLauncher.exe 6080 RegOpenKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Cryptography\Defaults\Provider Types\Type 001 SUCCESS Desired Access: Read 98 12:38:33,0903644 MCLauncher.exe 6080 RegSetInfoKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Cryptography\Defaults\Provider Types\Type 001 SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 98 12:38:33,0903713 MCLauncher.exe 6080 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Cryptography\Defaults\Provider Types\Type 001\Name SUCCESS Type: REG_SZ, Length: 80, Data: Microsoft Strong Cryptographic Provider 98 12:38:33,0903904 MCLauncher.exe 6080 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Cryptography\Defaults\Provider Types\Type 001\Name SUCCESS Type: REG_SZ, Length: 80, Data: Microsoft Strong Cryptographic Provider 98 12:38:33,0904054 MCLauncher.exe 6080 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Cryptography\Defaults\Provider Types\Type 001\Name SUCCESS Type: REG_SZ, Length: 80, Data: Microsoft Strong Cryptographic Provider 98 12:38:33,0904181 MCLauncher.exe 6080 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Cryptography\Defaults\Provider Types\Type 001\Name SUCCESS Type: REG_SZ, Length: 80, Data: Microsoft Strong Cryptographic Provider 98 12:38:33,0904336 MCLauncher.exe 6080 RegCloseKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Cryptography\Defaults\Provider Types\Type 001 SUCCESS 98 12:38:33,0904419 MCLauncher.exe 6080 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 98 12:38:33,0904472 MCLauncher.exe 6080 RegQueryKey HKLM SUCCESS Query: Name 98 12:38:33,0904572 MCLauncher.exe 6080 RegOpenKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Cryptography\Defaults\Provider\Microsoft Strong Cryptographic Provider SUCCESS Desired Access: Read 98 12:38:33,0904677 MCLauncher.exe 6080 RegSetInfoKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Cryptography\Defaults\Provider\Microsoft Strong Cryptographic Provider SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 98 12:38:33,0904733 MCLauncher.exe 6080 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Cryptography\Defaults\Provider\Microsoft Strong Cryptographic Provider\Type SUCCESS Type: REG_DWORD, Length: 4, Data: 1 98 12:38:33,0904871 MCLauncher.exe 6080 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Cryptography\Defaults\Provider\Microsoft Strong Cryptographic Provider\Image Path SUCCESS Type: REG_SZ, Length: 66, Data: %SystemRoot%\system32\rsaenh.dll 98 12:38:33,0904998 MCLauncher.exe 6080 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Cryptography\Defaults\Provider\Microsoft Strong Cryptographic Provider\Image Path SUCCESS Type: REG_SZ, Length: 66, Data: %SystemRoot%\system32\rsaenh.dll 98 12:38:33,0905126 MCLauncher.exe 6080 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Cryptography\Defaults\Provider\Microsoft Strong Cryptographic Provider\Image Path SUCCESS Type: REG_SZ, Length: 66, Data: %SystemRoot%\system32\rsaenh.dll 98 12:38:33,0905248 MCLauncher.exe 6080 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Cryptography\Defaults\Provider\Microsoft Strong Cryptographic Provider\Image Path SUCCESS Type: REG_SZ, Length: 66, Data: %SystemRoot%\system32\rsaenh.dll 98 12:38:33,0907916 MCLauncher.exe 6080 CreateFile C:\Windows\SysWOW64\rsaenh.dll SUCCESS Desired Access: Read Attributes, Disposition: Open, Options: Open Reparse Point, Attributes: n/a, ShareMode: Read, Write, Delete, AllocationSize: n/a, OpenResult: Opened 98 12:38:33,0908179 MCLauncher.exe 6080 QueryBasicInformationFile C:\Windows\SysWOW64\rsaenh.dll SUCCESS CreationTime: 16.07.2016 14:42:55, LastAccessTime: 16.07.2016 14:42:55, LastWriteTime: 16.07.2016 14:42:55, ChangeTime: 19.07.2018 19:38:42, FileAttributes: A 98 12:38:33,0908262 MCLauncher.exe 6080 CloseFile C:\Windows\SysWOW64\rsaenh.dll SUCCESS 98 12:38:33,0909232 MCLauncher.exe 6080 CreateFile C:\Windows\SysWOW64\rsaenh.dll SUCCESS Desired Access: Read Data/List Directory, Execute/Traverse, Synchronize, Disposition: Open, Options: Synchronous IO Non-Alert, Non-Directory File, Attributes: n/a, ShareMode: Read, Delete, AllocationSize: n/a, OpenResult: Opened 98 12:38:33,0909503 MCLauncher.exe 6080 CreateFileMapping C:\Windows\SysWOW64\rsaenh.dll FILE LOCKED WITH ONLY READERS SyncType: SyncTypeCreateSection, PageProtection: PAGE_EXECUTE|PAGE_NOCACHE 98 12:38:33,0909645 MCLauncher.exe 6080 QueryNameInformationFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Name: \Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe 98 12:38:33,0910872 MCLauncher.exe 6080 CreateFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Desired Access: Synchronize, Disposition: Open, Options: Synchronous IO Non-Alert, Attributes: N, ShareMode: Read, Write, Delete, AllocationSize: n/a, OpenResult: Opened 98 12:38:33,0911072 MCLauncher.exe 6080 CloseFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS 98 12:38:33,0911368 MCLauncher.exe 6080 QueryNameInformationFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Name: \Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe 98 12:38:33,0912221 MCLauncher.exe 6080 CreateFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Desired Access: Synchronize, Disposition: Open, Options: Synchronous IO Non-Alert, Attributes: N, ShareMode: Read, Write, Delete, AllocationSize: n/a, OpenResult: Opened 98 12:38:33,0912393 MCLauncher.exe 6080 CloseFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS 98 12:38:33,0913047 MCLauncher.exe 6080 CreateFileMapping C:\Windows\SysWOW64\rsaenh.dll SUCCESS SyncType: SyncTypeOther 98 12:38:33,0913562 MCLauncher.exe 6080 Load Image C:\Windows\SysWOW64\rsaenh.dll SUCCESS Image Base: 0x74060000, Image Size: 0x2f000 98 12:38:33,0914452 MCLauncher.exe 6080 CloseFile C:\Windows\SysWOW64\rsaenh.dll SUCCESS 98 12:38:33,0915604 MCLauncher.exe 6080 CreateFile C:\Windows\SysWOW64\rsaenh.dll SUCCESS Desired Access: Read Control, Disposition: Open, Options: , Attributes: n/a, ShareMode: Read, Delete, AllocationSize: n/a, OpenResult: Opened 98 12:38:33,0915876 MCLauncher.exe 6080 QuerySecurityFile C:\Windows\SysWOW64\rsaenh.dll BUFFER OVERFLOW Information: Owner 98 12:38:33,0915953 MCLauncher.exe 6080 QuerySecurityFile C:\Windows\SysWOW64\rsaenh.dll SUCCESS Information: Owner 98 12:38:33,0916020 MCLauncher.exe 6080 CloseFile C:\Windows\SysWOW64\rsaenh.dll SUCCESS 98 12:38:33,0916649 MCLauncher.exe 6080 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 98 12:38:33,0916732 MCLauncher.exe 6080 RegOpenKey HKLM\Software\Policies\Microsoft\Cryptography SUCCESS Desired Access: Read 98 12:38:33,0916859 MCLauncher.exe 6080 RegSetInfoKey HKLM\SOFTWARE\Policies\Microsoft\Cryptography SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 98 12:38:33,0916923 MCLauncher.exe 6080 RegQueryValue HKLM\SOFTWARE\Policies\Microsoft\Cryptography\PrivKeyCacheMaxItems NAME NOT FOUND Length: 144 98 12:38:33,0917142 MCLauncher.exe 6080 RegQueryValue HKLM\SOFTWARE\Policies\Microsoft\Cryptography\PrivKeyCachePurgeIntervalSeconds NAME NOT FOUND Length: 144 98 12:38:33,0917258 MCLauncher.exe 6080 RegQueryValue HKLM\SOFTWARE\Policies\Microsoft\Cryptography\PrivateKeyLifetimeSeconds NAME NOT FOUND Length: 144 98 12:38:33,0917383 MCLauncher.exe 6080 RegCloseKey HKLM\SOFTWARE\Policies\Microsoft\Cryptography SUCCESS 98 12:38:33,0917519 MCLauncher.exe 6080 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 98 12:38:33,0917585 MCLauncher.exe 6080 RegOpenKey HKLM\Software\Microsoft\Cryptography SUCCESS Desired Access: Read 98 12:38:33,0917679 MCLauncher.exe 6080 RegSetInfoKey HKLM\SOFTWARE\Microsoft\Cryptography SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 98 12:38:33,0917726 MCLauncher.exe 6080 RegQueryValue HKLM\SOFTWARE\Microsoft\Cryptography\MachineGuid SUCCESS Type: REG_SZ, Length: 74, Data: 89c16905-77a2-4a80-ba7d-623b3fd0da77 98 12:38:33,0917876 MCLauncher.exe 6080 RegQueryValue HKLM\SOFTWARE\Microsoft\Cryptography\MachineGuid SUCCESS Type: REG_SZ, Length: 74, Data: 89c16905-77a2-4a80-ba7d-623b3fd0da77 98 12:38:33,0918003 MCLauncher.exe 6080 RegQueryValue HKLM\SOFTWARE\Microsoft\Cryptography\MachineGuid SUCCESS Type: REG_SZ, Length: 74, Data: 89c16905-77a2-4a80-ba7d-623b3fd0da77 98 12:38:33,0918120 MCLauncher.exe 6080 RegQueryValue HKLM\SOFTWARE\Microsoft\Cryptography\MachineGuid SUCCESS Type: REG_SZ, Length: 74, Data: 89c16905-77a2-4a80-ba7d-623b3fd0da77 98 12:38:33,0918305 MCLauncher.exe 6080 RegCloseKey HKLM\SOFTWARE\Microsoft\Cryptography SUCCESS 98 12:38:33,0918389 MCLauncher.exe 6080 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 98 12:38:33,0918444 MCLauncher.exe 6080 RegQueryKey HKLM SUCCESS Query: Name 98 12:38:33,0918544 MCLauncher.exe 6080 RegOpenKey HKLM\Software\WOW6432Node\Microsoft\Cryptography\Offload NAME NOT FOUND Desired Access: Read 98 12:38:33,0919084 MCLauncher.exe 6080 RegQueryValue HKLM\System\CurrentControlSet\Control\Nls\Sorting\Versions\000602xx SUCCESS Type: REG_SZ, Length: 26, Data: kernel32.dll 98 12:38:33,0920497 MCLauncher.exe 6080 CreateFile C:\Windows\Globalization\Sorting\SortDefault.nls SUCCESS Desired Access: Generic Read, Disposition: Open, Options: Synchronous IO Non-Alert, Non-Directory File, Attributes: N, ShareMode: Read, AllocationSize: n/a, OpenResult: Opened 98 12:38:33,0920738 MCLauncher.exe 6080 CreateFileMapping C:\Windows\Globalization\Sorting\SortDefault.nls FILE LOCKED WITH ONLY READERS SyncType: SyncTypeCreateSection, PageProtection: PAGE_EXECUTE|PAGE_NOCACHE 98 12:38:33,0920863 MCLauncher.exe 6080 QueryNameInformationFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Name: \Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe 98 12:38:33,0921749 MCLauncher.exe 6080 CreateFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Desired Access: Synchronize, Disposition: Open, Options: Synchronous IO Non-Alert, Attributes: N, ShareMode: Read, Write, Delete, AllocationSize: n/a, OpenResult: Opened 98 12:38:33,0921938 MCLauncher.exe 6080 CloseFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS 98 12:38:33,0922223 MCLauncher.exe 6080 QueryNameInformationFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Name: \Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe 98 12:38:33,0923071 MCLauncher.exe 6080 CreateFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Desired Access: Synchronize, Disposition: Open, Options: Synchronous IO Non-Alert, Attributes: N, ShareMode: Read, Write, Delete, AllocationSize: n/a, OpenResult: Opened 98 12:38:33,0923243 MCLauncher.exe 6080 CloseFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS 98 12:38:33,0923824 MCLauncher.exe 6080 QueryStandardInformationFile C:\Windows\Globalization\Sorting\SortDefault.nls SUCCESS AllocationSize: 3 371 008, EndOfFile: 3 368 788, NumberOfLinks: 2, DeletePending: False, Directory: False 98 12:38:33,0923971 MCLauncher.exe 6080 CreateFileMapping C:\Windows\Globalization\Sorting\SortDefault.nls SUCCESS SyncType: SyncTypeOther 98 12:38:33,0924212 MCLauncher.exe 6080 CloseFile C:\Windows\Globalization\Sorting\SortDefault.nls SUCCESS 98 12:38:33,0924794 MCLauncher.exe 6080 RegOpenKey HKLM\System\CurrentControlSet\Control\Nls\Sorting\Ids REPARSE Desired Access: Read 98 12:38:33,0924894 MCLauncher.exe 6080 RegOpenKey HKLM\System\CurrentControlSet\Control\Nls\Sorting\Ids SUCCESS Desired Access: Read 98 12:38:33,0924991 MCLauncher.exe 6080 RegSetInfoKey HKLM\System\CurrentControlSet\Control\Nls\Sorting\Ids SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 98 12:38:33,0925501 MCLauncher.exe 6080 RegCloseKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Cryptography\Defaults\Provider\Microsoft Strong Cryptographic Provider SUCCESS 98 12:38:33,0933934 MCLauncher.exe 6080 RegQueryKey HKCU SUCCESS Query: HandleTags, HandleTags: 0x0 98 12:38:33,0934009 MCLauncher.exe 6080 RegQueryKey HKCU SUCCESS Query: Name 98 12:38:33,0934112 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Python\PythonCore\MCLauncher\Modules\zipfile NAME NOT FOUND Desired Access: Query Value 98 12:38:33,0934253 MCLauncher.exe 6080 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 98 12:38:33,0934300 MCLauncher.exe 6080 RegQueryKey HKLM SUCCESS Query: Name 98 12:38:33,0934386 MCLauncher.exe 6080 RegOpenKey HKLM\Software\WOW6432Node\Python\PythonCore\MCLauncher\Modules\zipfile NAME NOT FOUND Desired Access: Query Value 98 12:38:33,0935671 MCLauncher.exe 6080 CreateFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Desired Access: Generic Read, Disposition: Open, Options: Synchronous IO Non-Alert, Non-Directory File, Attributes: N, ShareMode: Read, Write, AllocationSize: n/a, OpenResult: Opened 98 12:38:33,0935959 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 2 585 497, Length: 4 096, Priority: Normal 98 12:38:33,0936192 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 2 585 523, Length: 512 98 12:38:33,0936320 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 2 585 538, Length: 15 360 98 12:38:33,0936408 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 2 600 898, Length: 512 98 12:38:33,0936508 MCLauncher.exe 6080 CloseFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS 98 12:38:33,0940373 MCLauncher.exe 6080 RegQueryKey HKCU SUCCESS Query: HandleTags, HandleTags: 0x0 98 12:38:33,0940451 MCLauncher.exe 6080 RegQueryKey HKCU SUCCESS Query: Name 98 12:38:33,0940556 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Python\PythonCore\MCLauncher\Modules\struct NAME NOT FOUND Desired Access: Query Value 98 12:38:33,0940681 MCLauncher.exe 6080 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 98 12:38:33,0940728 MCLauncher.exe 6080 RegQueryKey HKLM SUCCESS Query: Name 98 12:38:33,0940819 MCLauncher.exe 6080 RegOpenKey HKLM\Software\WOW6432Node\Python\PythonCore\MCLauncher\Modules\struct NAME NOT FOUND Desired Access: Query Value 98 12:38:33,0941961 MCLauncher.exe 6080 CreateFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Desired Access: Generic Read, Disposition: Open, Options: Synchronous IO Non-Alert, Non-Directory File, Attributes: N, ShareMode: Read, Write, AllocationSize: n/a, OpenResult: Opened 98 12:38:33,0942204 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 2 480 378, Length: 4 096, Priority: Normal 98 12:38:33,0942357 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 2 480 404, Length: 512 98 12:38:33,0942440 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 2 480 418, Length: 512 98 12:38:33,0942528 MCLauncher.exe 6080 CloseFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS 98 12:38:33,0943662 MCLauncher.exe 6080 RegQueryKey HKCU SUCCESS Query: HandleTags, HandleTags: 0x0 98 12:38:33,0943728 MCLauncher.exe 6080 RegQueryKey HKCU SUCCESS Query: Name 98 12:38:33,0943825 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Python\PythonCore\MCLauncher\Modules\shutil NAME NOT FOUND Desired Access: Query Value 98 12:38:33,0943939 MCLauncher.exe 6080 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 98 12:38:33,0943986 MCLauncher.exe 6080 RegQueryKey HKLM SUCCESS Query: Name 98 12:38:33,0944074 MCLauncher.exe 6080 RegOpenKey HKLM\Software\WOW6432Node\Python\PythonCore\MCLauncher\Modules\shutil NAME NOT FOUND Desired Access: Query Value 98 12:38:33,0945149 MCLauncher.exe 6080 CreateFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Desired Access: Generic Read, Disposition: Open, Options: Synchronous IO Non-Alert, Non-Directory File, Attributes: N, ShareMode: Read, Write, AllocationSize: n/a, OpenResult: Opened 98 12:38:33,0945385 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 2 260 406, Length: 4 096, Priority: Normal 98 12:38:33,0945554 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 2 260 432, Length: 512 98 12:38:33,0945640 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 2 260 446, Length: 5 120 98 12:38:33,0945715 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 2 265 566, Length: 512 98 12:38:33,0945798 MCLauncher.exe 6080 CloseFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS 98 12:38:33,0947319 MCLauncher.exe 6080 RegQueryKey HKCU SUCCESS Query: HandleTags, HandleTags: 0x0 98 12:38:33,0947385 MCLauncher.exe 6080 RegQueryKey HKCU SUCCESS Query: Name 98 12:38:33,0947482 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Python\PythonCore\MCLauncher\Modules\fnmatch NAME NOT FOUND Desired Access: Query Value 98 12:38:33,0947599 MCLauncher.exe 6080 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 98 12:38:33,0947679 MCLauncher.exe 6080 RegQueryKey HKLM SUCCESS Query: Name 98 12:38:33,0947768 MCLauncher.exe 6080 RegOpenKey HKLM\Software\WOW6432Node\Python\PythonCore\MCLauncher\Modules\fnmatch NAME NOT FOUND Desired Access: Query Value 98 12:38:33,0948851 MCLauncher.exe 6080 CreateFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Desired Access: Generic Read, Disposition: Open, Options: Synchronous IO Non-Alert, Non-Directory File, Attributes: N, ShareMode: Read, Write, AllocationSize: n/a, OpenResult: Opened 98 12:38:33,0949422 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 2 084 943, Length: 4 096, Priority: Normal 98 12:38:33,0949605 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 2 084 969, Length: 512 98 12:38:33,0949690 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 2 084 984, Length: 1 024 98 12:38:33,0949749 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 2 086 008, Length: 512 98 12:38:33,0949832 MCLauncher.exe 6080 CloseFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS 98 12:38:33,0950455 MCLauncher.exe 6080 RegQueryKey HKCU SUCCESS Query: HandleTags, HandleTags: 0x0 98 12:38:33,0950519 MCLauncher.exe 6080 RegQueryKey HKCU SUCCESS Query: Name 98 12:38:33,0950616 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Python\PythonCore\MCLauncher\Modules\re NAME NOT FOUND Desired Access: Query Value 98 12:38:33,0950735 MCLauncher.exe 6080 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 98 12:38:33,0950779 MCLauncher.exe 6080 RegQueryKey HKLM SUCCESS Query: Name 98 12:38:33,0950865 MCLauncher.exe 6080 RegOpenKey HKLM\Software\WOW6432Node\Python\PythonCore\MCLauncher\Modules\re NAME NOT FOUND Desired Access: Query Value 98 12:38:33,0951937 MCLauncher.exe 6080 CreateFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Desired Access: Generic Read, Disposition: Open, Options: Synchronous IO Non-Alert, Non-Directory File, Attributes: N, ShareMode: Read, Write, AllocationSize: n/a, OpenResult: Opened 98 12:38:33,0952165 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 2 252 457, Length: 4 096, Priority: Normal 98 12:38:33,0952309 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 2 252 483, Length: 512 98 12:38:33,0952392 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 2 252 493, Length: 2 560 98 12:38:33,0952453 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 2 255 053, Length: 512 98 12:38:33,0952533 MCLauncher.exe 6080 CloseFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS 98 12:38:33,0953528 MCLauncher.exe 6080 RegQueryKey HKCU SUCCESS Query: HandleTags, HandleTags: 0x0 98 12:38:33,0953589 MCLauncher.exe 6080 RegQueryKey HKCU SUCCESS Query: Name 98 12:38:33,0953686 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Python\PythonCore\MCLauncher\Modules\sre_compile NAME NOT FOUND Desired Access: Query Value 98 12:38:33,0953802 MCLauncher.exe 6080 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 98 12:38:33,0953849 MCLauncher.exe 6080 RegQueryKey HKLM SUCCESS Query: Name 98 12:38:33,0953935 MCLauncher.exe 6080 RegOpenKey HKLM\Software\WOW6432Node\Python\PythonCore\MCLauncher\Modules\sre_compile NAME NOT FOUND Desired Access: Query Value 98 12:38:33,0954993 MCLauncher.exe 6080 CreateFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Desired Access: Generic Read, Disposition: Open, Options: Synchronous IO Non-Alert, Non-Directory File, Attributes: N, ShareMode: Read, Write, AllocationSize: n/a, OpenResult: Opened 98 12:38:33,0955220 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 2 443 297, Length: 4 096, Priority: Normal 98 12:38:33,0955362 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 2 443 323, Length: 512 98 12:38:33,0955445 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 2 443 342, Length: 5 120 98 12:38:33,0955506 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 2 448 462, Length: 512 98 12:38:33,0955592 MCLauncher.exe 6080 CloseFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS 98 12:38:33,1079439 MCLauncher.exe 6080 RegQueryKey HKCU SUCCESS Query: HandleTags, HandleTags: 0x0 98 12:38:33,1079519 MCLauncher.exe 6080 RegQueryKey HKCU SUCCESS Query: Name 98 12:38:33,1079641 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Python\PythonCore\MCLauncher\Modules\sre_parse NAME NOT FOUND Desired Access: Query Value 98 12:38:33,1079799 MCLauncher.exe 6080 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 98 12:38:33,1079846 MCLauncher.exe 6080 RegQueryKey HKLM SUCCESS Query: Name 98 12:38:33,1079943 MCLauncher.exe 6080 RegOpenKey HKLM\Software\WOW6432Node\Python\PythonCore\MCLauncher\Modules\sre_parse NAME NOT FOUND Desired Access: Query Value 98 12:38:33,1081223 MCLauncher.exe 6080 CreateFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Desired Access: Generic Read, Disposition: Open, Options: Synchronous IO Non-Alert, Non-Directory File, Attributes: N, ShareMode: Read, Write, AllocationSize: n/a, OpenResult: Opened 98 12:38:33,1081514 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 2 451 419, Length: 4 096, Priority: Normal 98 12:38:33,1081710 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 2 451 445, Length: 512 98 12:38:33,1081807 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 2 451 462, Length: 7 680 98 12:38:33,1081882 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 2 459 142, Length: 512 98 12:38:33,1081974 MCLauncher.exe 6080 CloseFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS 98 12:38:33,1083977 MCLauncher.exe 6080 RegQueryKey HKCU SUCCESS Query: HandleTags, HandleTags: 0x0 98 12:38:33,1084043 MCLauncher.exe 6080 RegQueryKey HKCU SUCCESS Query: Name 98 12:38:33,1084148 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Python\PythonCore\MCLauncher\Modules\sre_constants NAME NOT FOUND Desired Access: Query Value 98 12:38:33,1084270 MCLauncher.exe 6080 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 98 12:38:33,1084317 MCLauncher.exe 6080 RegQueryKey HKLM SUCCESS Query: Name 98 12:38:33,1084409 MCLauncher.exe 6080 RegOpenKey HKLM\Software\WOW6432Node\Python\PythonCore\MCLauncher\Modules\sre_constants NAME NOT FOUND Desired Access: Query Value 98 12:38:33,1085520 MCLauncher.exe 6080 CreateFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Desired Access: Generic Read, Disposition: Open, Options: Synchronous IO Non-Alert, Non-Directory File, Attributes: N, ShareMode: Read, Write, AllocationSize: n/a, OpenResult: Opened 98 12:38:33,1085999 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 2 448 705, Length: 4 096, Priority: Normal 98 12:38:33,1086152 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 2 448 731, Length: 512 98 12:38:33,1086237 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 2 448 752, Length: 2 560 98 12:38:33,1086298 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 2 451 312, Length: 512 98 12:38:33,1086382 MCLauncher.exe 6080 CloseFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS 98 12:38:33,1090133 MCLauncher.exe 6080 RegQueryKey HKCU SUCCESS Query: HandleTags, HandleTags: 0x0 98 12:38:33,1090210 MCLauncher.exe 6080 RegQueryKey HKCU SUCCESS Query: Name 98 12:38:33,1090321 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Python\PythonCore\MCLauncher\Modules\collections NAME NOT FOUND Desired Access: Query Value 98 12:38:33,1090446 MCLauncher.exe 6080 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 98 12:38:33,1090496 MCLauncher.exe 6080 RegQueryKey HKLM SUCCESS Query: Name 98 12:38:33,1090590 MCLauncher.exe 6080 RegOpenKey HKLM\Software\WOW6432Node\Python\PythonCore\MCLauncher\Modules\collections NAME NOT FOUND Desired Access: Query Value 98 12:38:33,1091726 MCLauncher.exe 6080 CreateFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Desired Access: Generic Read, Disposition: Open, Options: Synchronous IO Non-Alert, Non-Directory File, Attributes: N, ShareMode: Read, Write, AllocationSize: n/a, OpenResult: Opened 98 12:38:33,1091964 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 1 844 022, Length: 4 096, Priority: Normal 98 12:38:33,1092122 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 1 844 048, Length: 512 98 12:38:33,1092236 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 1 844 067, Length: 6 144 98 12:38:33,1092299 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 1 850 211, Length: 512 98 12:38:33,1092383 MCLauncher.exe 6080 CloseFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS 98 12:38:33,1095015 MCLauncher.exe 6080 RegQueryKey HKCU SUCCESS Query: HandleTags, HandleTags: 0x0 98 12:38:33,1095087 MCLauncher.exe 6080 RegQueryKey HKCU SUCCESS Query: Name 98 12:38:33,1095192 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Python\PythonCore\MCLauncher\Modules\keyword NAME NOT FOUND Desired Access: Query Value 98 12:38:33,1095311 MCLauncher.exe 6080 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 98 12:38:33,1095558 MCLauncher.exe 6080 RegQueryKey HKLM SUCCESS Query: Name 98 12:38:33,1095738 MCLauncher.exe 6080 RegOpenKey HKLM\Software\WOW6432Node\Python\PythonCore\MCLauncher\Modules\keyword NAME NOT FOUND Desired Access: Query Value 98 12:38:33,1097023 MCLauncher.exe 6080 CreateFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Desired Access: Generic Read, Disposition: Open, Options: Synchronous IO Non-Alert, Non-Directory File, Attributes: N, ShareMode: Read, Write, AllocationSize: n/a, OpenResult: Opened 98 12:38:33,1097267 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 2 130 664, Length: 4 096, Priority: Normal 98 12:38:33,1097425 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 2 130 690, Length: 512 98 12:38:33,1097516 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 2 130 705, Length: 1 024 98 12:38:33,1097602 MCLauncher.exe 6080 CloseFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS 98 12:38:33,1098334 MCLauncher.exe 6080 RegQueryKey HKCU SUCCESS Query: HandleTags, HandleTags: 0x0 98 12:38:33,1098397 MCLauncher.exe 6080 RegQueryKey HKCU SUCCESS Query: Name 98 12:38:33,1098497 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Python\PythonCore\MCLauncher\Modules\heapq NAME NOT FOUND Desired Access: Query Value 98 12:38:33,1098616 MCLauncher.exe 6080 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 98 12:38:33,1098661 MCLauncher.exe 6080 RegQueryKey HKLM SUCCESS Query: Name 98 12:38:33,1098749 MCLauncher.exe 6080 RegOpenKey HKLM\Software\WOW6432Node\Python\PythonCore\MCLauncher\Modules\heapq NAME NOT FOUND Desired Access: Query Value 98 12:38:33,1099822 MCLauncher.exe 6080 CreateFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Desired Access: Generic Read, Disposition: Open, Options: Synchronous IO Non-Alert, Non-Directory File, Attributes: N, ShareMode: Read, Write, AllocationSize: n/a, OpenResult: Opened 98 12:38:33,1100049 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 2 105 120, Length: 4 096, Priority: Normal 98 12:38:33,1100190 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 2 105 146, Length: 512 98 12:38:33,1100279 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 2 105 159, Length: 4 608 98 12:38:33,1100353 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 2 109 767, Length: 512 98 12:38:33,1100434 MCLauncher.exe 6080 CloseFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS 98 12:38:33,1103736 MCLauncher.exe 6080 RegQueryKey HKCU SUCCESS Query: HandleTags, HandleTags: 0x0 98 12:38:33,1103808 MCLauncher.exe 6080 RegQueryKey HKCU SUCCESS Query: Name 98 12:38:33,1103916 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Python\PythonCore\MCLauncher\Modules\pwd NAME NOT FOUND Desired Access: Query Value 98 12:38:33,1104047 MCLauncher.exe 6080 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 98 12:38:33,1104094 MCLauncher.exe 6080 RegQueryKey HKLM SUCCESS Query: Name 98 12:38:33,1104185 MCLauncher.exe 6080 RegOpenKey HKLM\Software\WOW6432Node\Python\PythonCore\MCLauncher\Modules\pwd NAME NOT FOUND Desired Access: Query Value 98 12:38:33,1104435 MCLauncher.exe 6080 RegQueryKey HKCU SUCCESS Query: HandleTags, HandleTags: 0x0 98 12:38:33,1104484 MCLauncher.exe 6080 RegQueryKey HKCU SUCCESS Query: Name 98 12:38:33,1104562 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Python\PythonCore\MCLauncher\Modules\grp NAME NOT FOUND Desired Access: Query Value 98 12:38:33,1104648 MCLauncher.exe 6080 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 98 12:38:33,1104695 MCLauncher.exe 6080 RegQueryKey HKLM SUCCESS Query: Name 98 12:38:33,1104770 MCLauncher.exe 6080 RegOpenKey HKLM\Software\WOW6432Node\Python\PythonCore\MCLauncher\Modules\grp NAME NOT FOUND Desired Access: Query Value 98 12:38:33,1109530 MCLauncher.exe 6080 RegQueryKey HKCU SUCCESS Query: HandleTags, HandleTags: 0x0 98 12:38:33,1109604 MCLauncher.exe 6080 RegQueryKey HKCU SUCCESS Query: Name 98 12:38:33,1109710 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Python\PythonCore\MCLauncher\Modules\io NAME NOT FOUND Desired Access: Query Value 98 12:38:33,1109829 MCLauncher.exe 6080 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 98 12:38:33,1109879 MCLauncher.exe 6080 RegQueryKey HKLM SUCCESS Query: Name 98 12:38:33,1109967 MCLauncher.exe 6080 RegOpenKey HKLM\Software\WOW6432Node\Python\PythonCore\MCLauncher\Modules\io NAME NOT FOUND Desired Access: Query Value 98 12:38:33,1111159 MCLauncher.exe 6080 CreateFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Desired Access: Generic Read, Disposition: Open, Options: Synchronous IO Non-Alert, Non-Directory File, Attributes: N, ShareMode: Read, Write, AllocationSize: n/a, OpenResult: Opened 98 12:38:33,1111408 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 2 119 812, Length: 4 096, Priority: Normal 98 12:38:33,1111563 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 2 119 838, Length: 512 98 12:38:33,1111655 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 2 119 848, Length: 512 98 12:38:33,1111713 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 2 120 360, Length: 512 98 12:38:33,1111796 MCLauncher.exe 6080 CloseFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS 98 12:38:33,1115442 MCLauncher.exe 6080 RegQueryKey HKCU SUCCESS Query: HandleTags, HandleTags: 0x0 98 12:38:33,1115522 MCLauncher.exe 6080 RegQueryKey HKCU SUCCESS Query: Name 98 12:38:33,1115633 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Python\PythonCore\MCLauncher\Modules\string NAME NOT FOUND Desired Access: Query Value 98 12:38:33,1115758 MCLauncher.exe 6080 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 98 12:38:33,1115808 MCLauncher.exe 6080 RegQueryKey HKLM SUCCESS Query: Name 98 12:38:33,1115899 MCLauncher.exe 6080 RegOpenKey HKLM\Software\WOW6432Node\Python\PythonCore\MCLauncher\Modules\string NAME NOT FOUND Desired Access: Query Value 98 12:38:33,1117060 MCLauncher.exe 6080 CreateFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Desired Access: Generic Read, Disposition: Open, Options: Synchronous IO Non-Alert, Non-Directory File, Attributes: N, ShareMode: Read, Write, AllocationSize: n/a, OpenResult: Opened 98 12:38:33,1117301 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 2 470 224, Length: 4 096, Priority: Normal 98 12:38:33,1117453 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 2 470 250, Length: 512 98 12:38:33,1117545 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 2 470 264, Length: 4 096 98 12:38:33,1117606 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 2 474 360, Length: 512 98 12:38:33,1117692 MCLauncher.exe 6080 CloseFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS 98 12:38:33,1132184 MCLauncher.exe 6080 RegQueryKey HKCU SUCCESS Query: HandleTags, HandleTags: 0x0 98 12:38:33,1132265 MCLauncher.exe 6080 RegQueryKey HKCU SUCCESS Query: Name 98 12:38:33,1132378 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Python\PythonCore\MCLauncher\Modules\tempfile NAME NOT FOUND Desired Access: Query Value 98 12:38:33,1132503 MCLauncher.exe 6080 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 98 12:38:33,1132556 MCLauncher.exe 6080 RegQueryKey HKLM SUCCESS Query: Name 98 12:38:33,1132647 MCLauncher.exe 6080 RegOpenKey HKLM\Software\WOW6432Node\Python\PythonCore\MCLauncher\Modules\tempfile NAME NOT FOUND Desired Access: Query Value 98 12:38:33,1133825 MCLauncher.exe 6080 CreateFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Desired Access: Generic Read, Disposition: Open, Options: Synchronous IO Non-Alert, Non-Directory File, Attributes: N, ShareMode: Read, Write, AllocationSize: n/a, OpenResult: Opened 98 12:38:33,1134068 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 2 513 636, Length: 4 096, Priority: Normal 98 12:38:33,1134224 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 2 513 662, Length: 512 98 12:38:33,1134384 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 2 513 678, Length: 5 120 98 12:38:33,1134645 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 2 518 798, Length: 512 98 12:38:33,1134758 MCLauncher.exe 6080 CloseFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS 98 12:38:33,1136465 MCLauncher.exe 6080 RegQueryKey HKCU SUCCESS Query: HandleTags, HandleTags: 0x0 98 12:38:33,1136531 MCLauncher.exe 6080 RegQueryKey HKCU SUCCESS Query: Name 98 12:38:33,1136637 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Python\PythonCore\MCLauncher\Modules\fcntl NAME NOT FOUND Desired Access: Query Value 98 12:38:33,1136759 MCLauncher.exe 6080 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 98 12:38:33,1136809 MCLauncher.exe 6080 RegQueryKey HKLM SUCCESS Query: Name 98 12:38:33,1136894 MCLauncher.exe 6080 RegOpenKey HKLM\Software\WOW6432Node\Python\PythonCore\MCLauncher\Modules\fcntl NAME NOT FOUND Desired Access: Query Value 98 12:38:33,1137371 MCLauncher.exe 6080 RegQueryKey HKCU SUCCESS Query: HandleTags, HandleTags: 0x0 98 12:38:33,1137421 MCLauncher.exe 6080 RegQueryKey HKCU SUCCESS Query: Name 98 12:38:33,1137498 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Python\PythonCore\MCLauncher\Modules\PySide NAME NOT FOUND Desired Access: Query Value 98 12:38:33,1137584 MCLauncher.exe 6080 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 98 12:38:33,1137631 MCLauncher.exe 6080 RegQueryKey HKLM SUCCESS Query: Name 98 12:38:33,1137706 MCLauncher.exe 6080 RegOpenKey HKLM\Software\WOW6432Node\Python\PythonCore\MCLauncher\Modules\PySide NAME NOT FOUND Desired Access: Query Value 98 12:38:33,1138809 MCLauncher.exe 6080 CreateFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Desired Access: Generic Read, Disposition: Open, Options: Synchronous IO Non-Alert, Non-Directory File, Attributes: N, ShareMode: Read, Write, AllocationSize: n/a, OpenResult: Opened 98 12:38:33,1139042 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 2 266 074, Length: 4 096, Priority: Normal 98 12:38:33,1139188 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 2 266 100, Length: 512 98 12:38:33,1139277 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 2 266 123, Length: 512 98 12:38:33,1139335 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 2 266 635, Length: 512 98 12:38:33,1139418 MCLauncher.exe 6080 CloseFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS 98 12:38:33,1140823 MCLauncher.exe 6080 CreateFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe NOT A DIRECTORY Desired Access: Read Data/List Directory, Synchronize, Disposition: Open, Options: Directory, Synchronous IO Non-Alert, Attributes: n/a, ShareMode: Read, Write, Delete, AllocationSize: n/a 98 12:38:33,1141701 MCLauncher.exe 6080 CreateFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe NOT A DIRECTORY Desired Access: Read Data/List Directory, Synchronize, Disposition: Open, Options: Directory, Synchronous IO Non-Alert, Attributes: n/a, ShareMode: Read, Write, Delete, AllocationSize: n/a 98 12:38:33,1142660 MCLauncher.exe 6080 CreateFile C:\Users\User\AppData\Roaming\MCLauncher SUCCESS Desired Access: Read Data/List Directory, Synchronize, Disposition: Open, Options: Directory, Synchronous IO Non-Alert, Attributes: n/a, ShareMode: Read, Write, Delete, AllocationSize: n/a, OpenResult: Opened 98 12:38:33,1142862 MCLauncher.exe 6080 QueryDirectory C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Filter: MCLauncher.exe, 1: MCLauncher.exe 98 12:38:33,1143081 MCLauncher.exe 6080 CloseFile C:\Users\User\AppData\Roaming\MCLauncher SUCCESS 98 12:38:33,1144466 MCLauncher.exe 6080 CreateFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Desired Access: Generic Read, Disposition: Open, Options: Synchronous IO Non-Alert, Non-Directory File, Attributes: N, ShareMode: Read, Write, AllocationSize: n/a, OpenResult: Opened 98 12:38:33,1144694 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 2 266 883, Length: 4 096, Priority: Normal 98 12:38:33,1144829 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 2 266 909, Length: 512 98 12:38:33,1144915 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 2 266 930, Length: 2 560 98 12:38:33,1144976 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 2 269 490, Length: 512 98 12:38:33,1145054 MCLauncher.exe 6080 CloseFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS 98 12:38:33,1146173 MCLauncher.exe 6080 RegQueryKey HKCU SUCCESS Query: HandleTags, HandleTags: 0x0 98 12:38:33,1146237 MCLauncher.exe 6080 RegQueryKey HKCU SUCCESS Query: Name 98 12:38:33,1146339 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Python\PythonCore\MCLauncher\Modules\ctypes NAME NOT FOUND Desired Access: Query Value 98 12:38:33,1146458 MCLauncher.exe 6080 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 98 12:38:33,1146505 MCLauncher.exe 6080 RegQueryKey HKLM SUCCESS Query: Name 98 12:38:33,1146594 MCLauncher.exe 6080 RegOpenKey HKLM\Software\WOW6432Node\Python\PythonCore\MCLauncher\Modules\ctypes NAME NOT FOUND Desired Access: Query Value 98 12:38:33,1147647 MCLauncher.exe 6080 CreateFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Desired Access: Generic Read, Disposition: Open, Options: Synchronous IO Non-Alert, Non-Directory File, Attributes: N, ShareMode: Read, Write, AllocationSize: n/a, OpenResult: Opened 98 12:38:33,1147874 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 1 857 725, Length: 4 096, Priority: Normal 98 12:38:33,1148027 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 1 857 751, Length: 512 98 12:38:33,1148112 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 1 857 774, Length: 5 632 98 12:38:33,1148173 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 1 863 406, Length: 512 98 12:38:33,1148268 MCLauncher.exe 6080 CloseFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS 98 12:38:33,1157125 MCLauncher.exe 6080 CreateFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe NOT A DIRECTORY Desired Access: Read Data/List Directory, Synchronize, Disposition: Open, Options: Directory, Synchronous IO Non-Alert, Attributes: n/a, ShareMode: Read, Write, Delete, AllocationSize: n/a 98 12:38:33,1158034 MCLauncher.exe 6080 CreateFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe NOT A DIRECTORY Desired Access: Read Data/List Directory, Synchronize, Disposition: Open, Options: Directory, Synchronous IO Non-Alert, Attributes: n/a, ShareMode: Read, Write, Delete, AllocationSize: n/a 98 12:38:33,1158979 MCLauncher.exe 6080 CreateFile C:\Users\User\AppData\Roaming\MCLauncher SUCCESS Desired Access: Read Data/List Directory, Synchronize, Disposition: Open, Options: Directory, Synchronous IO Non-Alert, Attributes: n/a, ShareMode: Read, Write, Delete, AllocationSize: n/a, OpenResult: Opened 98 12:38:33,1159181 MCLauncher.exe 6080 QueryDirectory C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Filter: MCLauncher.exe, 1: MCLauncher.exe 98 12:38:33,1159369 MCLauncher.exe 6080 CloseFile C:\Users\User\AppData\Roaming\MCLauncher SUCCESS 98 12:38:33,1159837 MCLauncher.exe 6080 RegQueryKey HKCU SUCCESS Query: HandleTags, HandleTags: 0x0 98 12:38:33,1159904 MCLauncher.exe 6080 RegQueryKey HKCU SUCCESS Query: Name 98 12:38:33,1160006 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Python\PythonCore\MCLauncher\Modules\_ctypes NAME NOT FOUND Desired Access: Query Value 98 12:38:33,1160128 MCLauncher.exe 6080 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 98 12:38:33,1160175 MCLauncher.exe 6080 RegQueryKey HKLM SUCCESS Query: Name 98 12:38:33,1160264 MCLauncher.exe 6080 RegOpenKey HKLM\Software\WOW6432Node\Python\PythonCore\MCLauncher\Modules\_ctypes NAME NOT FOUND Desired Access: Query Value 98 12:38:33,1161353 MCLauncher.exe 6080 CreateFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Desired Access: Generic Read, Disposition: Open, Options: Synchronous IO Non-Alert, Non-Directory File, Attributes: N, ShareMode: Read, Write, AllocationSize: n/a, OpenResult: Opened 98 12:38:33,1161583 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 2 746 184, Length: 4 096, Priority: Normal 98 12:38:33,1161760 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 2 746 210, Length: 512 98 12:38:33,1161849 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 2 746 225, Length: 40 448 98 12:38:33,1161982 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 2 786 673, Length: 512 98 12:38:33,1162065 MCLauncher.exe 6080 CloseFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS 98 12:38:33,1168008 MCLauncher.exe 6080 Load Image C:\Windows\SysWOW64\ole32.dll SUCCESS Image Base: 0x77ac0000, Image Size: 0xec000 98 12:38:33,1170886 MCLauncher.exe 6080 CreateFile C:\Windows\SysWOW64\ole32.dll SUCCESS Desired Access: Read Control, Disposition: Open, Options: , Attributes: n/a, ShareMode: Read, Delete, AllocationSize: n/a, OpenResult: Opened 98 12:38:33,1171205 MCLauncher.exe 6080 QuerySecurityFile C:\Windows\SysWOW64\ole32.dll BUFFER OVERFLOW Information: Owner 98 12:38:33,1171296 MCLauncher.exe 6080 QuerySecurityFile C:\Windows\SysWOW64\ole32.dll SUCCESS Information: Owner 98 12:38:33,1171377 MCLauncher.exe 6080 CloseFile C:\Windows\SysWOW64\ole32.dll SUCCESS 98 12:38:33,1172208 MCLauncher.exe 6080 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 98 12:38:33,1172277 MCLauncher.exe 6080 RegQueryKey HKLM SUCCESS Query: Name 98 12:38:33,1172391 MCLauncher.exe 6080 RegOpenKey HKLM\Software\WOW6432Node\Microsoft\OLE\Tracing REPARSE Desired Access: Read 98 12:38:33,1172507 MCLauncher.exe 6080 RegOpenKey HKLM\SOFTWARE\Microsoft\Ole\Tracing NAME NOT FOUND Desired Access: Read 98 12:38:33,1172890 MCLauncher.exe 6080 RegQueryValue HKLM\System\CurrentControlSet\Control\WMI\Security\1aff6089-e863-4d36-bdfd-3581f07440be NAME NOT FOUND Length: 524 98 12:38:33,1175746 MCLauncher.exe 6080 CreateFile C:\Windows\SysWOW64\oleaut32.dll SUCCESS Desired Access: Read Attributes, Disposition: Open, Options: Open Reparse Point, Attributes: n/a, ShareMode: Read, Write, Delete, AllocationSize: n/a, OpenResult: Opened 98 12:38:33,1176012 MCLauncher.exe 6080 QueryBasicInformationFile C:\Windows\SysWOW64\oleaut32.dll SUCCESS CreationTime: 20.07.2018 1:34:14, LastAccessTime: 20.07.2018 1:34:14, LastWriteTime: 21.06.2017 10:42:23, ChangeTime: 20.07.2018 19:26:57, FileAttributes: A 98 12:38:33,1176101 MCLauncher.exe 6080 CloseFile C:\Windows\SysWOW64\oleaut32.dll SUCCESS 98 12:38:33,1184792 MCLauncher.exe 6080 CreateFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Desired Access: Generic Read, Disposition: Open, Options: Synchronous IO Non-Alert, Non-Directory File, Attributes: N, ShareMode: Read, Write, AllocationSize: n/a, OpenResult: Opened 98 12:38:33,1185047 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 1 863 896, Length: 4 096, Priority: Normal 98 12:38:33,1185202 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 1 863 922, Length: 512 98 12:38:33,1185296 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 1 863 944, Length: 512 98 12:38:33,1185357 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 1 864 456, Length: 512 98 12:38:33,1185443 MCLauncher.exe 6080 CloseFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS 98 12:38:33,1188829 MCLauncher.exe 6080 CreateFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Desired Access: Generic Read, Disposition: Open, Options: Synchronous IO Non-Alert, Non-Directory File, Attributes: N, ShareMode: Read, Write, AllocationSize: n/a, OpenResult: Opened 98 12:38:33,1189078 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 1 864 828, Length: 4 096, Priority: Normal 98 12:38:33,1189208 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 1 864 854, Length: 512 98 12:38:33,1189300 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 1 864 877, Length: 2 048 98 12:38:33,1189360 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 1 866 925, Length: 512 98 12:38:33,1189444 MCLauncher.exe 6080 CloseFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS 98 12:38:33,1194323 MCLauncher.exe 6080 CreateFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Desired Access: Generic Read, Disposition: Open, Options: Synchronous IO Non-Alert, Non-Directory File, Attributes: N, ShareMode: Read, Write, AllocationSize: n/a, OpenResult: Opened 98 12:38:33,1194569 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 4 138 307, Length: 4 096, Priority: Normal 98 12:38:33,1194752 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 4 138 333, Length: 512 98 12:38:33,1195758 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 4 138 354, Length: 514 560 98 12:38:33,1197057 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 4 652 914, Length: 512 98 12:38:33,1197176 MCLauncher.exe 6080 CloseFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS 98 12:38:33,1271605 MCLauncher.exe 6080 CreateFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Desired Access: Generic Read, Disposition: Open, Options: Synchronous IO Non-Alert, Non-Directory File, Attributes: N, ShareMode: Read, Write, AllocationSize: n/a, OpenResult: Opened 98 12:38:33,1271981 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 12 024 727, Length: 4 096, Priority: Normal 98 12:38:33,1272211 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 12 024 753, Length: 512 98 12:38:33,1272466 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 12 024 777, Length: 47 104 98 12:38:33,1272641 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 12 071 881, Length: 512 98 12:38:33,1272735 MCLauncher.exe 6080 CloseFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS 98 12:38:33,1281371 MCLauncher.exe 6080 CreateFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Desired Access: Generic Read, Disposition: Open, Options: Synchronous IO Non-Alert, Non-Directory File, Attributes: N, ShareMode: Read, Write, AllocationSize: n/a, OpenResult: Opened 98 12:38:33,1281692 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 12 072 256, Length: 4 096, Priority: Normal 98 12:38:33,1281878 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 12 072 282, Length: 512 98 12:38:33,1282111 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 12 072 308, Length: 44 544 98 12:38:33,1282293 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 12 116 852, Length: 512 98 12:38:33,1282413 MCLauncher.exe 6080 CloseFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS 98 12:38:33,1293032 MCLauncher.exe 6080 CreateFile C:\Windows\WinSxS\x86_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.9247_none_5090cb78bcba4a35\msvcp90.dll SUCCESS Desired Access: Read Attributes, Disposition: Open, Options: Open Reparse Point, Attributes: n/a, ShareMode: Read, Write, Delete, AllocationSize: n/a, OpenResult: Opened 98 12:38:33,1293237 MCLauncher.exe 6080 QueryBasicInformationFile C:\Windows\WinSxS\x86_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.9247_none_5090cb78bcba4a35\msvcp90.dll SUCCESS CreationTime: 16.07.2016 14:43:08, LastAccessTime: 16.07.2016 14:43:08, LastWriteTime: 16.07.2016 14:43:08, ChangeTime: 19.07.2018 19:37:26, FileAttributes: A 98 12:38:33,1293331 MCLauncher.exe 6080 CloseFile C:\Windows\WinSxS\x86_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.9247_none_5090cb78bcba4a35\msvcp90.dll SUCCESS 98 12:38:33,1294440 MCLauncher.exe 6080 CreateFile C:\Windows\WinSxS\x86_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.9247_none_5090cb78bcba4a35\msvcp90.dll SUCCESS Desired Access: Read Data/List Directory, Execute/Traverse, Synchronize, Disposition: Open, Options: Synchronous IO Non-Alert, Non-Directory File, Attributes: n/a, ShareMode: Read, Delete, AllocationSize: n/a, OpenResult: Opened 98 12:38:33,1294672 MCLauncher.exe 6080 CreateFileMapping C:\Windows\WinSxS\x86_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.9247_none_5090cb78bcba4a35\msvcp90.dll FILE LOCKED WITH ONLY READERS SyncType: SyncTypeCreateSection, PageProtection: PAGE_EXECUTE|PAGE_NOCACHE 98 12:38:33,1294861 MCLauncher.exe 6080 QueryNameInformationFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Name: \Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe 98 12:38:33,1295753 MCLauncher.exe 6080 CreateFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Desired Access: Synchronize, Disposition: Open, Options: Synchronous IO Non-Alert, Attributes: N, ShareMode: Read, Write, Delete, AllocationSize: n/a, OpenResult: Opened 98 12:38:33,1295944 MCLauncher.exe 6080 CloseFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS 98 12:38:33,1296246 MCLauncher.exe 6080 QueryNameInformationFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Name: \Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe 98 12:38:33,1297099 MCLauncher.exe 6080 CreateFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Desired Access: Synchronize, Disposition: Open, Options: Synchronous IO Non-Alert, Attributes: N, ShareMode: Read, Write, Delete, AllocationSize: n/a, OpenResult: Opened 98 12:38:33,1297268 MCLauncher.exe 6080 CloseFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS 98 12:38:33,1298099 MCLauncher.exe 6080 CreateFileMapping C:\Windows\WinSxS\x86_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.9247_none_5090cb78bcba4a35\msvcp90.dll SUCCESS SyncType: SyncTypeOther 98 12:38:33,1298623 MCLauncher.exe 6080 Load Image C:\Windows\WinSxS\x86_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.9247_none_5090cb78bcba4a35\msvcp90.dll SUCCESS Image Base: 0x6d180000, Image Size: 0x8e000 98 12:38:33,1299432 MCLauncher.exe 6080 CloseFile C:\Windows\WinSxS\x86_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.9247_none_5090cb78bcba4a35\msvcp90.dll SUCCESS 98 12:38:33,1304206 MCLauncher.exe 6080 CreateFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Desired Access: Generic Read, Disposition: Open, Options: Synchronous IO Non-Alert, Non-Directory File, Attributes: N, ShareMode: Read, Write, AllocationSize: n/a, OpenResult: Opened 98 12:38:33,1304452 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 7 318 446, Length: 4 096, Priority: Normal 98 12:38:33,1304638 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 7 318 472, Length: 512 98 12:38:33,1306605 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 7 318 487, Length: 1 030 144 98 12:38:33,1308982 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 8 348 631, Length: 512 98 12:38:33,1309085 MCLauncher.exe 6080 CloseFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS 98 12:38:33,1750596 MCLauncher.exe 6080 Load Image C:\Windows\SysWOW64\ws2_32.dll SUCCESS Image Base: 0x74fd0000, Image Size: 0x63000 98 12:38:33,1753028 MCLauncher.exe 6080 CreateFile C:\Windows\SysWOW64\ws2_32.dll SUCCESS Desired Access: Read Control, Disposition: Open, Options: , Attributes: n/a, ShareMode: Read, Delete, AllocationSize: n/a, OpenResult: Opened 98 12:38:33,1753350 MCLauncher.exe 6080 QuerySecurityFile C:\Windows\SysWOW64\ws2_32.dll BUFFER OVERFLOW Information: Owner 98 12:38:33,1753447 MCLauncher.exe 6080 QuerySecurityFile C:\Windows\SysWOW64\ws2_32.dll SUCCESS Information: Owner 98 12:38:33,1753524 MCLauncher.exe 6080 CloseFile C:\Windows\SysWOW64\ws2_32.dll SUCCESS 98 12:38:33,1754239 MCLauncher.exe 6080 RegQueryValue HKLM\System\CurrentControlSet\Control\WMI\Security\d0f1a5c6-fc43-48ae-99bf-efb1c38be9d1 NAME NOT FOUND Length: 524 98 12:38:33,1758835 MCLauncher.exe 6080 CreateFile C:\Windows\SysWOW64\version.dll SUCCESS Desired Access: Read Attributes, Disposition: Open, Options: Open Reparse Point, Attributes: n/a, ShareMode: Read, Write, Delete, AllocationSize: n/a, OpenResult: Opened 98 12:38:33,1759273 MCLauncher.exe 6080 QueryBasicInformationFile C:\Windows\SysWOW64\version.dll SUCCESS CreationTime: 16.07.2016 14:43:04, LastAccessTime: 16.07.2016 14:43:04, LastWriteTime: 16.07.2016 14:43:04, ChangeTime: 20.07.2018 19:29:06, FileAttributes: A 98 12:38:33,1759428 MCLauncher.exe 6080 CloseFile C:\Windows\SysWOW64\version.dll SUCCESS 98 12:38:33,1760802 MCLauncher.exe 6080 CreateFile C:\Windows\SysWOW64\version.dll SUCCESS Desired Access: Read Data/List Directory, Execute/Traverse, Synchronize, Disposition: Open, Options: Synchronous IO Non-Alert, Non-Directory File, Attributes: n/a, ShareMode: Read, Delete, AllocationSize: n/a, OpenResult: Opened 98 12:38:33,1761102 MCLauncher.exe 6080 CreateFileMapping C:\Windows\SysWOW64\version.dll FILE LOCKED WITH ONLY READERS SyncType: SyncTypeCreateSection, PageProtection: PAGE_EXECUTE|PAGE_NOCACHE 98 12:38:33,1761268 MCLauncher.exe 6080 QueryNameInformationFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Name: \Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe 98 12:38:33,1762202 MCLauncher.exe 6080 CreateFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Desired Access: Synchronize, Disposition: Open, Options: Synchronous IO Non-Alert, Attributes: N, ShareMode: Read, Write, Delete, AllocationSize: n/a, OpenResult: Opened 98 12:38:33,1762396 MCLauncher.exe 6080 CloseFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS 98 12:38:33,1762695 MCLauncher.exe 6080 QueryNameInformationFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Name: \Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe 98 12:38:33,1763545 MCLauncher.exe 6080 CreateFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Desired Access: Synchronize, Disposition: Open, Options: Synchronous IO Non-Alert, Attributes: N, ShareMode: Read, Write, Delete, AllocationSize: n/a, OpenResult: Opened 98 12:38:33,1763717 MCLauncher.exe 6080 CloseFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS 98 12:38:33,1764590 MCLauncher.exe 6080 CreateFileMapping C:\Windows\SysWOW64\version.dll SUCCESS SyncType: SyncTypeOther 98 12:38:33,1765102 MCLauncher.exe 6080 Load Image C:\Windows\SysWOW64\version.dll SUCCESS Image Base: 0x746e0000, Image Size: 0x8000 98 12:38:33,1765756 MCLauncher.exe 6080 CloseFile C:\Windows\SysWOW64\version.dll SUCCESS 98 12:38:33,1766909 MCLauncher.exe 6080 CreateFile C:\Windows\SysWOW64\version.dll SUCCESS Desired Access: Read Control, Disposition: Open, Options: , Attributes: n/a, ShareMode: Read, Delete, AllocationSize: n/a, OpenResult: Opened 98 12:38:33,1767180 MCLauncher.exe 6080 QuerySecurityFile C:\Windows\SysWOW64\version.dll BUFFER OVERFLOW Information: Owner 98 12:38:33,1767255 MCLauncher.exe 6080 QuerySecurityFile C:\Windows\SysWOW64\version.dll SUCCESS Information: Owner 98 12:38:33,1767324 MCLauncher.exe 6080 CloseFile C:\Windows\SysWOW64\version.dll SUCCESS 98 12:38:33,1767759 MCLauncher.exe 6080 RegOpenKey HKLM\System\CurrentControlSet\Control\Session Manager REPARSE Desired Access: Query Value 98 12:38:33,1767873 MCLauncher.exe 6080 RegOpenKey HKLM\System\CurrentControlSet\Control\Session Manager SUCCESS Desired Access: Query Value 98 12:38:33,1767973 MCLauncher.exe 6080 RegSetInfoKey HKLM\System\CurrentControlSet\Control\Session Manager SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 98 12:38:33,1768028 MCLauncher.exe 6080 RegQueryValue HKLM\System\CurrentControlSet\Control\Session Manager\SafeDllSearchMode NAME NOT FOUND Length: 16 98 12:38:33,1769433 MCLauncher.exe 6080 CreateFile C:\Windows\SysWOW64\ru-RU\kernel32.dll.mui SUCCESS Desired Access: Generic Read, Disposition: Open, Options: , Attributes: n/a, ShareMode: Read, Delete, AllocationSize: n/a, OpenResult: Opened 98 12:38:33,1769696 MCLauncher.exe 6080 CreateFileMapping C:\Windows\SysWOW64\ru-RU\kernel32.dll.mui FILE LOCKED WITH ONLY READERS SyncType: SyncTypeCreateSection, PageProtection: PAGE_EXECUTE|PAGE_NOCACHE 98 12:38:33,1769826 MCLauncher.exe 6080 QueryNameInformationFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Name: \Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe 98 12:38:33,1770702 MCLauncher.exe 6080 CreateFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Desired Access: Synchronize, Disposition: Open, Options: Synchronous IO Non-Alert, Attributes: N, ShareMode: Read, Write, Delete, AllocationSize: n/a, OpenResult: Opened 98 12:38:33,1770887 MCLauncher.exe 6080 CloseFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS 98 12:38:33,1771173 MCLauncher.exe 6080 QueryNameInformationFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Name: \Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe 98 12:38:33,1772018 MCLauncher.exe 6080 CreateFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Desired Access: Synchronize, Disposition: Open, Options: Synchronous IO Non-Alert, Attributes: N, ShareMode: Read, Write, Delete, AllocationSize: n/a, OpenResult: Opened 98 12:38:33,1772189 MCLauncher.exe 6080 CloseFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS 98 12:38:33,1772771 MCLauncher.exe 6080 QueryStandardInformationFile C:\Windows\SysWOW64\ru-RU\kernel32.dll.mui SUCCESS AllocationSize: 958 464, EndOfFile: 957 440, NumberOfLinks: 2, DeletePending: False, Directory: False 98 12:38:33,1772926 MCLauncher.exe 6080 CreateFileMapping C:\Windows\SysWOW64\ru-RU\kernel32.dll.mui SUCCESS SyncType: SyncTypeOther 98 12:38:33,1773564 MCLauncher.exe 6080 RegQueryValue HKLM\System\CurrentControlSet\Control\WMI\Security\540dc156-e9d6-42dc-a225-29794149a495 NAME NOT FOUND Length: 524 98 12:38:33,1774952 MCLauncher.exe 6080 CreateFile C:\Users\User\AppData\Roaming\MCLauncher\kernel32.dll NAME NOT FOUND Desired Access: Generic Read, Disposition: Open, Options: , Attributes: n/a, ShareMode: Read, AllocationSize: n/a 98 12:38:33,1933547 MCLauncher.exe 6080 RegQueryKey HKCU SUCCESS Query: HandleTags, HandleTags: 0x0 98 12:38:33,1933647 MCLauncher.exe 6080 RegQueryKey HKCU SUCCESS Query: Name 98 12:38:33,1933777 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Python\PythonCore\MCLauncher\Modules\atexit NAME NOT FOUND Desired Access: Query Value 98 12:38:33,1933949 MCLauncher.exe 6080 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 98 12:38:33,1934001 MCLauncher.exe 6080 RegQueryKey HKLM SUCCESS Query: Name 98 12:38:33,1934104 MCLauncher.exe 6080 RegOpenKey HKLM\Software\WOW6432Node\Python\PythonCore\MCLauncher\Modules\atexit NAME NOT FOUND Desired Access: Query Value 98 12:38:33,1935749 MCLauncher.exe 6080 CreateFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Desired Access: Generic Read, Disposition: Open, Options: Synchronous IO Non-Alert, Non-Directory File, Attributes: N, ShareMode: Read, Write, AllocationSize: n/a, OpenResult: Opened 98 12:38:33,1936320 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 1 816 273, Length: 4 096, Priority: Normal 98 12:38:33,1936567 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 1 816 299, Length: 512 98 12:38:33,1936658 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 1 816 313, Length: 512 98 12:38:33,1936716 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 1 816 825, Length: 512 98 12:38:33,1936805 MCLauncher.exe 6080 CloseFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS 98 12:38:33,1940955 MCLauncher.exe 6080 CreateFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe\PySide PATH NOT FOUND Desired Access: Read Attributes, Disposition: Open, Options: Open Reparse Point, Attributes: n/a, ShareMode: Read, Write, Delete, AllocationSize: n/a 98 12:38:33,1942255 MCLauncher.exe 6080 CreateFile C:\Windows\SysWOW64\ru-RU\KernelBase.dll.mui SUCCESS Desired Access: Generic Read, Disposition: Open, Options: , Attributes: n/a, ShareMode: Read, Delete, AllocationSize: n/a, OpenResult: Opened 98 12:38:33,1942529 MCLauncher.exe 6080 CreateFileMapping C:\Windows\SysWOW64\ru-RU\KernelBase.dll.mui FILE LOCKED WITH ONLY READERS SyncType: SyncTypeCreateSection, PageProtection: PAGE_EXECUTE|PAGE_NOCACHE 98 12:38:33,1942679 MCLauncher.exe 6080 QueryNameInformationFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Name: \Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe 98 12:38:33,1943590 MCLauncher.exe 6080 CreateFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Desired Access: Synchronize, Disposition: Open, Options: Synchronous IO Non-Alert, Attributes: N, ShareMode: Read, Write, Delete, AllocationSize: n/a, OpenResult: Opened 98 12:38:33,1943779 MCLauncher.exe 6080 CloseFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS 98 12:38:33,1944078 MCLauncher.exe 6080 QueryNameInformationFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Name: \Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe 98 12:38:33,1945108 MCLauncher.exe 6080 CreateFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Desired Access: Synchronize, Disposition: Open, Options: Synchronous IO Non-Alert, Attributes: N, ShareMode: Read, Write, Delete, AllocationSize: n/a, OpenResult: Opened 98 12:38:33,1945286 MCLauncher.exe 6080 CloseFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS 98 12:38:33,1945901 MCLauncher.exe 6080 QueryStandardInformationFile C:\Windows\SysWOW64\ru-RU\KernelBase.dll.mui SUCCESS AllocationSize: 958 464, EndOfFile: 957 952, NumberOfLinks: 2, DeletePending: False, Directory: False 98 12:38:33,1946062 MCLauncher.exe 6080 CreateFileMapping C:\Windows\SysWOW64\ru-RU\KernelBase.dll.mui SUCCESS SyncType: SyncTypeOther 98 12:38:33,1947771 MCLauncher.exe 6080 CreateFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Desired Access: Generic Read, Disposition: Open, Options: Synchronous IO Non-Alert, Non-Directory File, Attributes: N, ShareMode: Read, Write, AllocationSize: n/a, OpenResult: Opened 98 12:38:33,1948004 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 6 517 646, Length: 4 096, Priority: Normal 98 12:38:33,1948220 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 6 517 672, Length: 512 98 12:38:33,1948605 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 6 517 695, Length: 111 616 98 12:38:33,1948876 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 6 629 311, Length: 512 98 12:38:33,1948965 MCLauncher.exe 6080 CloseFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS 98 12:38:33,1968054 MCLauncher.exe 6080 CreateFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Desired Access: Generic Read, Disposition: Open, Options: Synchronous IO Non-Alert, Non-Directory File, Attributes: N, ShareMode: Read, Write, AllocationSize: n/a, OpenResult: Opened 98 12:38:33,1968304 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 12 117 325, Length: 4 096, Priority: Normal 98 12:38:33,1968459 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 12 117 351, Length: 512 98 12:38:33,1981957 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 12 117 368, Length: 4 961 280 98 12:38:33,1994048 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 078 648, Length: 512 98 12:38:33,1994186 MCLauncher.exe 6080 CloseFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS 97 12:38:33,2056540 MCLauncher.exe 84 CloseFile C:\Windows SUCCESS 97 12:38:33,2589895 MCLauncher.exe 84 RegCloseKey HKLM\System\CurrentControlSet\Control\Nls\Sorting\Versions SUCCESS 97 12:38:33,2589984 MCLauncher.exe 84 RegCloseKey HKLM\System\CurrentControlSet\Control\Nls\CustomLocale SUCCESS 97 12:38:33,2590070 MCLauncher.exe 84 RegCloseKey HKLM SUCCESS 97 12:38:33,2590109 MCLauncher.exe 84 RegCloseKey HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options SUCCESS 97 12:38:33,2590175 MCLauncher.exe 84 RegCloseKey HKLM\System\CurrentControlSet\Control\NetworkProvider\HwOrder SUCCESS 97 12:38:33,2590533 MCLauncher.exe 84 CloseFile C:\Windows\WinSxS\x86_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.9247_none_5090cb78bcba4a35 SUCCESS 97 12:38:33,2590752 MCLauncher.exe 84 RegCloseKey HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\DllNXOptions SUCCESS 97 12:38:33,2590793 MCLauncher.exe 84 RegCloseKey HKCU SUCCESS 97 12:38:33,2590846 MCLauncher.exe 84 RegCloseKey HKLM\System\CurrentControlSet\Control\Nls\Sorting\Ids SUCCESS 97 12:38:33,2590882 MCLauncher.exe 84 RegCloseKey HKLM\System\CurrentControlSet\Control\Session Manager SUCCESS 97 12:38:33,2590937 MCLauncher.exe 84 CloseFile C:\Windows\SysWOW64\ru-RU\kernel32.dll.mui SUCCESS 97 12:38:33,2591150 MCLauncher.exe 84 CloseFile C:\Windows\SysWOW64\ru-RU\KernelBase.dll.mui SUCCESS 97 12:38:33,2591306 MCLauncher.exe 84 CloseFile C:\Windows\WinSxS\x86_microsoft.windows.common-controls_6595b64144ccf1df_5.82.14393.447_none_5507ded2cb4f7f4c SUCCESS 98 12:38:33,2981658 MCLauncher.exe 6080 CreateFile C:\Users\User\AppData\Roaming\MCLauncher\WINMM.dll NAME NOT FOUND Desired Access: Read Attributes, Disposition: Open, Options: Open Reparse Point, Attributes: n/a, ShareMode: Read, Write, Delete, AllocationSize: n/a 98 12:38:33,2984130 MCLauncher.exe 6080 CreateFile C:\Windows\SysWOW64\winmm.dll SUCCESS Desired Access: Read Attributes, Disposition: Open, Options: Open Reparse Point, Attributes: n/a, ShareMode: Read, Write, Delete, AllocationSize: n/a, OpenResult: Opened 98 12:38:33,2984601 MCLauncher.exe 6080 QueryBasicInformationFile C:\Windows\SysWOW64\winmm.dll SUCCESS CreationTime: 16.07.2016 14:42:49, LastAccessTime: 16.07.2016 14:42:49, LastWriteTime: 16.07.2016 14:42:49, ChangeTime: 19.07.2018 19:41:04, FileAttributes: A 98 12:38:33,2984703 MCLauncher.exe 6080 CloseFile C:\Windows\SysWOW64\winmm.dll SUCCESS 98 12:38:33,2985770 MCLauncher.exe 6080 CreateFile C:\Windows\SysWOW64\winmm.dll SUCCESS Desired Access: Read Data/List Directory, Execute/Traverse, Synchronize, Disposition: Open, Options: Synchronous IO Non-Alert, Non-Directory File, Attributes: n/a, ShareMode: Read, Delete, AllocationSize: n/a, OpenResult: Opened 98 12:38:33,2986072 MCLauncher.exe 6080 CreateFileMapping C:\Windows\SysWOW64\winmm.dll FILE LOCKED WITH ONLY READERS SyncType: SyncTypeCreateSection, PageProtection: PAGE_EXECUTE|PAGE_NOCACHE 98 12:38:33,2986257 MCLauncher.exe 6080 QueryNameInformationFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Name: \Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe 98 12:38:33,2987152 MCLauncher.exe 6080 CreateFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Desired Access: Synchronize, Disposition: Open, Options: Synchronous IO Non-Alert, Attributes: N, ShareMode: Read, Write, Delete, AllocationSize: n/a, OpenResult: Opened 98 12:38:33,2987357 MCLauncher.exe 6080 CloseFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS 98 12:38:33,2987665 MCLauncher.exe 6080 QueryNameInformationFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Name: \Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe 98 12:38:33,2988518 MCLauncher.exe 6080 CreateFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Desired Access: Synchronize, Disposition: Open, Options: Synchronous IO Non-Alert, Attributes: N, ShareMode: Read, Write, Delete, AllocationSize: n/a, OpenResult: Opened 98 12:38:33,2988693 MCLauncher.exe 6080 CloseFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS 98 12:38:33,2989510 MCLauncher.exe 6080 CreateFileMapping C:\Windows\SysWOW64\winmm.dll SUCCESS SyncType: SyncTypeOther 98 12:38:33,2990161 MCLauncher.exe 6080 Load Image C:\Windows\SysWOW64\winmm.dll SUCCESS Image Base: 0x74230000, Image Size: 0x24000 98 12:38:33,2991003 MCLauncher.exe 6080 CloseFile C:\Windows\SysWOW64\winmm.dll SUCCESS 98 12:38:33,2993336 MCLauncher.exe 6080 CreateFile C:\Users\User\AppData\Roaming\MCLauncher\WINMMBASE.dll NAME NOT FOUND Desired Access: Read Attributes, Disposition: Open, Options: Open Reparse Point, Attributes: n/a, ShareMode: Read, Write, Delete, AllocationSize: n/a 98 12:38:33,2996425 MCLauncher.exe 6080 CreateFile C:\Windows\SysWOW64\winmmbase.dll SUCCESS Desired Access: Read Attributes, Disposition: Open, Options: Open Reparse Point, Attributes: n/a, ShareMode: Read, Write, Delete, AllocationSize: n/a, OpenResult: Opened 98 12:38:33,2996619 MCLauncher.exe 6080 QueryBasicInformationFile C:\Windows\SysWOW64\winmmbase.dll SUCCESS CreationTime: 16.07.2016 14:42:49, LastAccessTime: 16.07.2016 14:42:49, LastWriteTime: 16.07.2016 14:42:49, ChangeTime: 19.07.2018 19:41:04, FileAttributes: A 98 12:38:33,2996702 MCLauncher.exe 6080 CloseFile C:\Windows\SysWOW64\winmmbase.dll SUCCESS 98 12:38:33,2997703 MCLauncher.exe 6080 CreateFile C:\Windows\SysWOW64\winmmbase.dll SUCCESS Desired Access: Read Data/List Directory, Execute/Traverse, Synchronize, Disposition: Open, Options: Synchronous IO Non-Alert, Non-Directory File, Attributes: n/a, ShareMode: Read, Delete, AllocationSize: n/a, OpenResult: Opened 98 12:38:33,2997908 MCLauncher.exe 6080 CreateFileMapping C:\Windows\SysWOW64\winmmbase.dll FILE LOCKED WITH ONLY READERS SyncType: SyncTypeCreateSection, PageProtection: PAGE_EXECUTE|PAGE_NOCACHE 98 12:38:33,2998024 MCLauncher.exe 6080 QueryNameInformationFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Name: \Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe 98 12:38:33,2998897 MCLauncher.exe 6080 CreateFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Desired Access: Synchronize, Disposition: Open, Options: Synchronous IO Non-Alert, Attributes: N, ShareMode: Read, Write, Delete, AllocationSize: n/a, OpenResult: Opened 98 12:38:33,2999082 MCLauncher.exe 6080 CloseFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS 98 12:38:33,2999368 MCLauncher.exe 6080 QueryNameInformationFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Name: \Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe 98 12:38:33,3000207 MCLauncher.exe 6080 CreateFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Desired Access: Synchronize, Disposition: Open, Options: Synchronous IO Non-Alert, Attributes: N, ShareMode: Read, Write, Delete, AllocationSize: n/a, OpenResult: Opened 98 12:38:33,3000379 MCLauncher.exe 6080 CloseFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS 97 12:38:33,3021579 MCLauncher.exe 84 CloseFile C:\Users\User\AppData\Roaming\MCLauncher SUCCESS 97 12:38:33,3021757 MCLauncher.exe 84 RegCloseKey HKCU\Software\Classes SUCCESS 97 12:38:33,3021826 MCLauncher.exe 84 RegCloseKey HKCU\Software\Classes SUCCESS 97 12:38:33,3021862 MCLauncher.exe 84 RegCloseKey HKCU\Software\Classes SUCCESS 97 12:38:33,3021901 MCLauncher.exe 84 RegCloseKey HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer SUCCESS 97 12:38:33,3021939 MCLauncher.exe 84 RegCloseKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{f42ee2d3-909f-4907-8871-4c22fc0bf756}\PropertyBag SUCCESS 97 12:38:33,3021973 MCLauncher.exe 84 RegCloseKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{B4BFCC3A-DB2C-424C-B029-7FE99A87C641}\PropertyBag SUCCESS 97 12:38:33,3022059 MCLauncher.exe 84 RegCloseKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{E25B5812-BE88-4bd9-94B0-29233477B6C3}\PropertyBag SUCCESS 97 12:38:33,3022092 MCLauncher.exe 84 RegCloseKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{a0c69a99-21c8-4671-8703-7934162fcf1d}\PropertyBag SUCCESS 97 12:38:33,3022122 MCLauncher.exe 84 RegCloseKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{0ddd015d-b06c-45d5-8c4c-f59713854639}\PropertyBag SUCCESS 97 12:38:33,3022164 MCLauncher.exe 84 RegCloseKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{f3ce0f7c-4901-4acc-8648-d5d44b04ef8f}\PropertyBag SUCCESS 97 12:38:33,3022192 MCLauncher.exe 84 RegCloseKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{35286a68-3c57-41a1-bbb1-0eae73d76c95}\PropertyBag SUCCESS 97 12:38:33,3022222 MCLauncher.exe 84 RegCloseKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{7d83ee9b-2244-4e70-b1f5-5393042af1e4}\PropertyBag SUCCESS 97 12:38:33,3022264 MCLauncher.exe 84 RegCloseKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{2112AB0A-C86A-4ffe-A368-0DE96E47012E}\PropertyBag SUCCESS 97 12:38:33,3022300 MCLauncher.exe 84 RegCloseKey HKCR\WOW6432Node\CLSID\{DFFACDC5-679F-4156-8947-C5C76BC0B67F}\Instance SUCCESS 97 12:38:33,3022338 MCLauncher.exe 84 RegCloseKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{F38BF404-1D43-42F2-9305-67DE0B28FC23}\PropertyBag SUCCESS 97 12:38:33,3022380 MCLauncher.exe 84 RegCloseKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{767E6811-49CB-4273-87C2-20F355E1085B}\PropertyBag SUCCESS 97 12:38:33,3022416 MCLauncher.exe 84 RegCloseKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{24D89E24-2F19-4534-9DDE-6A6671FBB8FE}\PropertyBag SUCCESS 97 12:38:33,3022449 MCLauncher.exe 84 RegCloseKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{18989B1D-99B5-455B-841C-AB7C74E4DDFC}\PropertyBag SUCCESS 97 12:38:33,3022485 MCLauncher.exe 84 RegCloseKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{2400183A-6185-49FB-A2D8-4A392A602BA3}\PropertyBag SUCCESS 97 12:38:33,3022518 MCLauncher.exe 84 RegCloseKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{33E28130-4E1E-4676-835A-98395C3BC3BB}\PropertyBag SUCCESS 97 12:38:33,3022563 MCLauncher.exe 84 RegCloseKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{491E922F-5643-4af4-A7EB-4E7A138D8174}\PropertyBag SUCCESS 97 12:38:33,3022593 MCLauncher.exe 84 RegCloseKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{56784854-C6CB-462B-8169-88E350ACB882}\PropertyBag SUCCESS 97 12:38:33,3022629 MCLauncher.exe 84 RegCloseKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{2B20DF75-1EDA-4039-8097-38798227D5B7}\PropertyBag SUCCESS 97 12:38:33,3022660 MCLauncher.exe 84 RegCloseKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{4BD8D571-6D19-48D3-BE97-422220080E43}\PropertyBag SUCCESS 97 12:38:33,3022701 MCLauncher.exe 84 RegCloseKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{A302545D-DEFF-464b-ABE8-61C8648D939B}\PropertyBag SUCCESS 97 12:38:33,3022743 MCLauncher.exe 84 RegCloseKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{52528A6B-B9E3-4add-B60D-588C2DBA842D}\PropertyBag SUCCESS 97 12:38:33,3022782 MCLauncher.exe 84 RegCloseKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{1AC14E77-02E7-4E5D-B744-2EB1AE5198B7}\PropertyBag SUCCESS 97 12:38:33,3022823 MCLauncher.exe 84 RegCloseKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{7b0db17d-9cd2-4a93-9733-46cc89022e7c}\PropertyBag SUCCESS 97 12:38:33,3022851 MCLauncher.exe 84 RegCloseKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{374DE290-123F-4565-9164-39C4925E467B}\PropertyBag SUCCESS 97 12:38:33,3022898 MCLauncher.exe 84 RegCloseKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{C3F2459E-80D6-45DC-BFEF-1F769F2BE730}\PropertyBag SUCCESS 97 12:38:33,3022940 MCLauncher.exe 84 RegCloseKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{B6EBFB86-6907-413C-9AF7-4FC2ABF07CC5}\PropertyBag SUCCESS 97 12:38:33,3022978 MCLauncher.exe 84 RegCloseKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{9B74B6A3-0DFD-4f11-9E78-5F7800F2E772}\PropertyBag SUCCESS 97 12:38:33,3023014 MCLauncher.exe 84 RegCloseKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{A990AE9F-A03B-4e80-94BC-9912D7504104}\PropertyBag SUCCESS 97 12:38:33,3023053 MCLauncher.exe 84 RegCloseKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{ED4824AF-DCE4-45A8-81E2-FC7965083634}\PropertyBag SUCCESS 97 12:38:33,3023095 MCLauncher.exe 84 RegCloseKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{D65231B0-B2F1-4857-A4CE-A8E7C6EA7D27}\PropertyBag SUCCESS 97 12:38:33,3023136 MCLauncher.exe 84 RegCloseKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{3214FAB5-9757-4298-BB61-92A9DEAA44FF}\PropertyBag SUCCESS 97 12:38:33,3023316 MCLauncher.exe 84 RegCloseKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{339719B5-8C47-4894-94C2-D8F77ADD44A6}\PropertyBag SUCCESS 97 12:38:33,3023405 MCLauncher.exe 84 RegCloseKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{FD228CB7-AE11-4AE3-864C-16F3910AB8FE}\PropertyBag SUCCESS 97 12:38:33,3023460 MCLauncher.exe 84 RegCloseKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{905e63b6-c1bf-494e-b29c-65b732d3d21a}\PropertyBag SUCCESS 97 12:38:33,3023505 MCLauncher.exe 84 RegCloseKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{FDD39AD0-238F-46AF-ADB4-6C85480369C7}\PropertyBag SUCCESS 97 12:38:33,3023566 MCLauncher.exe 84 RegCloseKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{DE92C1C7-837F-4F69-A3BB-86E631204A23}\PropertyBag SUCCESS 97 12:38:33,3023629 MCLauncher.exe 84 RegCloseKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{7C5A40EF-A0FB-4BFC-874A-C0F2E0B9FA8E}\PropertyBag SUCCESS 97 12:38:33,3024333 MCLauncher.exe 84 RegCloseKey HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\SyncRootManager SUCCESS 97 12:38:33,3024519 MCLauncher.exe 84 RegCloseKey HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap SUCCESS 97 12:38:33,3024555 MCLauncher.exe 84 RegCloseKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap SUCCESS 97 12:38:33,3024848 MCLauncher.exe 84 RegCloseKey HKCU\SOFTWARE\Microsoft\Windows NT\CurrentVersion SUCCESS 98 12:38:33,3097479 MCLauncher.exe 6080 CreateFileMapping C:\Windows\SysWOW64\winmmbase.dll SUCCESS SyncType: SyncTypeOther 98 12:38:33,3098293 MCLauncher.exe 6080 Load Image C:\Windows\SysWOW64\winmmbase.dll SUCCESS Image Base: 0x741f0000, Image Size: 0x23000 98 12:38:33,3099022 MCLauncher.exe 6080 CloseFile C:\Windows\SysWOW64\winmmbase.dll SUCCESS 98 12:38:33,3101662 MCLauncher.exe 6080 CreateFile C:\Windows\SysWOW64\winmmbase.dll SUCCESS Desired Access: Read Control, Disposition: Open, Options: , Attributes: n/a, ShareMode: Read, Delete, AllocationSize: n/a, OpenResult: Opened 98 12:38:33,3101928 MCLauncher.exe 6080 QuerySecurityFile C:\Windows\SysWOW64\winmmbase.dll BUFFER OVERFLOW Information: Owner 98 12:38:33,3102017 MCLauncher.exe 6080 QuerySecurityFile C:\Windows\SysWOW64\winmmbase.dll SUCCESS Information: Owner 98 12:38:33,3102094 MCLauncher.exe 6080 CloseFile C:\Windows\SysWOW64\winmmbase.dll SUCCESS 98 12:38:33,3103283 MCLauncher.exe 6080 CreateFile C:\Windows\SysWOW64\winmm.dll SUCCESS Desired Access: Read Control, Disposition: Open, Options: , Attributes: n/a, ShareMode: Read, Delete, AllocationSize: n/a, OpenResult: Opened 98 12:38:33,3103574 MCLauncher.exe 6080 QuerySecurityFile C:\Windows\SysWOW64\winmm.dll BUFFER OVERFLOW Information: Owner 98 12:38:33,3103646 MCLauncher.exe 6080 QuerySecurityFile C:\Windows\SysWOW64\winmm.dll SUCCESS Information: Owner 98 12:38:33,3103710 MCLauncher.exe 6080 CloseFile C:\Windows\SysWOW64\winmm.dll SUCCESS 98 12:38:33,3105713 MCLauncher.exe 6080 CreateFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Desired Access: Generic Read, Disposition: Open, Options: Synchronous IO Non-Alert, Non-Directory File, Attributes: N, ShareMode: Read, Write, AllocationSize: n/a, OpenResult: Opened 98 12:38:33,3105995 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 8 391 896, Length: 4 096, Priority: Normal 98 12:38:33,3106231 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 8 391 922, Length: 512 98 12:38:33,3115271 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 8 391 936, Length: 3 632 640 98 12:38:33,3123461 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 12 024 576, Length: 512 98 12:38:33,3123583 MCLauncher.exe 6080 CloseFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS 98 12:38:33,3704572 MCLauncher.exe 6080 Load Image C:\Windows\SysWOW64\comdlg32.dll SUCCESS Image Base: 0x77be0000, Image Size: 0xe5000 98 12:38:33,3705498 MCLauncher.exe 6080 RegOpenKey HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\SideBySide\AssemblyStorageRoots NAME NOT FOUND Desired Access: Enumerate Sub Keys 98 12:38:33,3708675 MCLauncher.exe 6080 CreateFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe.Local NAME NOT FOUND Desired Access: Read Attributes, Disposition: Open, Options: Open Reparse Point, Attributes: n/a, ShareMode: Read, Write, Delete, AllocationSize: n/a 98 12:38:33,3709939 MCLauncher.exe 6080 CreateFile C:\Windows\WinSxS\x86_microsoft.windows.common-controls_6595b64144ccf1df_5.82.14393.447_none_5507ded2cb4f7f4c SUCCESS Desired Access: Execute/Traverse, Synchronize, Disposition: Open, Options: Directory, Synchronous IO Non-Alert, Attributes: n/a, ShareMode: Read, Write, AllocationSize: n/a, OpenResult: Opened 98 12:38:33,3712624 MCLauncher.exe 6080 CreateFile C:\Windows\WinSxS\x86_microsoft.windows.common-controls_6595b64144ccf1df_5.82.14393.447_none_5507ded2cb4f7f4c\comctl32.dll SUCCESS Desired Access: Read Attributes, Disposition: Open, Options: Open Reparse Point, Attributes: n/a, ShareMode: Read, Write, Delete, AllocationSize: n/a, OpenResult: Opened 98 12:38:33,3712820 MCLauncher.exe 6080 QueryBasicInformationFile C:\Windows\WinSxS\x86_microsoft.windows.common-controls_6595b64144ccf1df_5.82.14393.447_none_5507ded2cb4f7f4c\comctl32.dll SUCCESS CreationTime: 20.07.2018 1:35:27, LastAccessTime: 20.07.2018 1:35:27, LastWriteTime: 02.11.2016 14:04:46, ChangeTime: 20.07.2018 2:17:47, FileAttributes: A 98 12:38:33,3712917 MCLauncher.exe 6080 CloseFile C:\Windows\WinSxS\x86_microsoft.windows.common-controls_6595b64144ccf1df_5.82.14393.447_none_5507ded2cb4f7f4c\comctl32.dll SUCCESS 98 12:38:33,3714023 MCLauncher.exe 6080 CreateFile C:\Windows\WinSxS\x86_microsoft.windows.common-controls_6595b64144ccf1df_5.82.14393.447_none_5507ded2cb4f7f4c\comctl32.dll SUCCESS Desired Access: Read Data/List Directory, Execute/Traverse, Synchronize, Disposition: Open, Options: Synchronous IO Non-Alert, Non-Directory File, Attributes: n/a, ShareMode: Read, Delete, AllocationSize: n/a, OpenResult: Opened 98 12:38:33,3714236 MCLauncher.exe 6080 CreateFileMapping C:\Windows\WinSxS\x86_microsoft.windows.common-controls_6595b64144ccf1df_5.82.14393.447_none_5507ded2cb4f7f4c\comctl32.dll FILE LOCKED WITH ONLY READERS SyncType: SyncTypeCreateSection, PageProtection: PAGE_EXECUTE|PAGE_NOCACHE 98 12:38:33,3714438 MCLauncher.exe 6080 QueryNameInformationFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Name: \Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe 98 12:38:33,3715328 MCLauncher.exe 6080 CreateFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Desired Access: Synchronize, Disposition: Open, Options: Synchronous IO Non-Alert, Attributes: N, ShareMode: Read, Write, Delete, AllocationSize: n/a, OpenResult: Opened 98 12:38:33,3715527 MCLauncher.exe 6080 CloseFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS 98 12:38:33,3715832 MCLauncher.exe 6080 QueryNameInformationFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Name: \Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe 98 12:38:33,3716846 MCLauncher.exe 6080 CreateFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Desired Access: Synchronize, Disposition: Open, Options: Synchronous IO Non-Alert, Attributes: N, ShareMode: Read, Write, Delete, AllocationSize: n/a, OpenResult: Opened 98 12:38:33,3717020 MCLauncher.exe 6080 CloseFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS 98 12:38:33,3717791 MCLauncher.exe 6080 CreateFileMapping C:\Windows\WinSxS\x86_microsoft.windows.common-controls_6595b64144ccf1df_5.82.14393.447_none_5507ded2cb4f7f4c\comctl32.dll SUCCESS SyncType: SyncTypeOther 98 12:38:33,3718253 MCLauncher.exe 6080 Load Image C:\Windows\WinSxS\x86_microsoft.windows.common-controls_6595b64144ccf1df_5.82.14393.447_none_5507ded2cb4f7f4c\comctl32.dll SUCCESS Image Base: 0x6dcd0000, Image Size: 0x94000 98 12:38:33,3718716 MCLauncher.exe 6080 CloseFile C:\Windows\WinSxS\x86_microsoft.windows.common-controls_6595b64144ccf1df_5.82.14393.447_none_5507ded2cb4f7f4c\comctl32.dll SUCCESS 98 12:38:33,3721387 MCLauncher.exe 6080 CreateFile C:\Windows\SysWOW64\comdlg32.dll SUCCESS Desired Access: Read Control, Disposition: Open, Options: , Attributes: n/a, ShareMode: Read, Delete, AllocationSize: n/a, OpenResult: Opened 98 12:38:33,3721705 MCLauncher.exe 6080 QuerySecurityFile C:\Windows\SysWOW64\comdlg32.dll BUFFER OVERFLOW Information: Owner 98 12:38:33,3721791 MCLauncher.exe 6080 QuerySecurityFile C:\Windows\SysWOW64\comdlg32.dll SUCCESS Information: Owner 98 12:38:33,3721866 MCLauncher.exe 6080 CloseFile C:\Windows\SysWOW64\comdlg32.dll SUCCESS 98 12:38:33,3723645 MCLauncher.exe 6080 RegOpenKey HKCU SUCCESS Desired Access: Read 98 12:38:33,3724030 MCLauncher.exe 6080 RegCloseKey HKCU SUCCESS 98 12:38:33,3783348 MCLauncher.exe 6080 CreateFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Desired Access: Generic Read, Disposition: Open, Options: Synchronous IO Non-Alert, Non-Directory File, Attributes: N, ShareMode: Read, Write, AllocationSize: n/a, OpenResult: Opened 98 12:38:33,3783699 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 6 927 812, Length: 4 096, Priority: Normal 98 12:38:33,3783949 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 6 927 838, Length: 512 98 12:38:33,3785279 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 6 927 856, Length: 390 144 98 12:38:33,3786204 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 7 318 000, Length: 512 98 12:38:33,3786315 MCLauncher.exe 6080 CloseFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS 98 12:38:33,3862372 MCLauncher.exe 6080 CreateFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Desired Access: Generic Read, Disposition: Open, Options: Synchronous IO Non-Alert, Non-Directory File, Attributes: N, ShareMode: Read, Write, AllocationSize: n/a, OpenResult: Opened 98 12:38:33,3862871 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 4 653 138, Length: 4 096, Priority: Normal 98 12:38:33,3863123 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 4 657 152, Length: 4 096, I/O Flags: Non-cached, Paging I/O, Priority: Normal 98 12:38:33,4003718 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 4 653 164, Length: 512 98 12:38:33,4008023 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 4 653 184, Length: 1 690 624 98 12:38:33,4008949 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 4 661 248, Length: 16 384, I/O Flags: Non-cached, Paging I/O, Priority: Normal 98 12:38:33,4195158 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 6 343 808, Length: 512 98 12:38:33,4195538 MCLauncher.exe 6080 CloseFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS 98 12:38:33,4693225 MCLauncher.exe 6080 CreateFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Desired Access: Generic Read, Disposition: Open, Options: Synchronous IO Non-Alert, Non-Directory File, Attributes: N, ShareMode: Read, Write, AllocationSize: n/a, OpenResult: Opened 98 12:38:33,4693624 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 6 343 973, Length: 4 096, Priority: Normal 98 12:38:33,4693842 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 6 343 999, Length: 512 98 12:38:33,4694363 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 6 344 023, Length: 173 568 98 12:38:33,4694743 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 6 517 591, Length: 512 98 12:38:33,4694840 MCLauncher.exe 6080 CloseFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS 98 12:38:33,4763458 MCLauncher.exe 6080 RegQueryKey HKCU SUCCESS Query: HandleTags, HandleTags: 0x0 98 12:38:33,4763594 MCLauncher.exe 6080 RegQueryKey HKCU SUCCESS Query: Name 98 12:38:33,4763760 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Python\PythonCore\MCLauncher\Modules\platform NAME NOT FOUND Desired Access: Query Value 98 12:38:33,4763957 MCLauncher.exe 6080 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 98 12:38:33,4764010 MCLauncher.exe 6080 RegQueryKey HKLM SUCCESS Query: Name 98 12:38:33,4764118 MCLauncher.exe 6080 RegOpenKey HKLM\Software\WOW6432Node\Python\PythonCore\MCLauncher\Modules\platform NAME NOT FOUND Desired Access: Query Value 98 12:38:33,4769252 MCLauncher.exe 6080 CreateFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Desired Access: Generic Read, Disposition: Open, Options: Synchronous IO Non-Alert, Non-Directory File, Attributes: N, ShareMode: Read, Write, AllocationSize: n/a, OpenResult: Opened 98 12:38:33,4769601 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 2 216 758, Length: 4 096, Priority: Normal 98 12:38:33,4769833 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 2 215 936, Length: 8 192, I/O Flags: Non-cached, Paging I/O, Priority: Normal 98 12:38:33,4857089 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 2 216 784, Length: 512 98 12:38:33,4857305 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 2 216 800, Length: 11 264 98 12:38:33,4857455 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 2 224 128, Length: 4 096, I/O Flags: Non-cached, Paging I/O, Priority: Normal 98 12:38:33,4861295 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 2 228 064, Length: 512 98 12:38:33,4900914 MCLauncher.exe 6080 CloseFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS 98 12:38:33,4924192 MCLauncher.exe 6080 RegQueryKey HKCU SUCCESS Query: HandleTags, HandleTags: 0x0 98 12:38:33,4924298 MCLauncher.exe 6080 RegQueryKey HKCU SUCCESS Query: Name 98 12:38:33,4924458 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Python\PythonCore\MCLauncher\Modules\json NAME NOT FOUND Desired Access: Query Value 98 12:38:33,4924661 MCLauncher.exe 6080 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 98 12:38:33,4924710 MCLauncher.exe 6080 RegQueryKey HKLM SUCCESS Query: Name 98 12:38:33,4924819 MCLauncher.exe 6080 RegOpenKey HKLM\Software\WOW6432Node\Python\PythonCore\MCLauncher\Modules\json NAME NOT FOUND Desired Access: Query Value 98 12:38:33,4926442 MCLauncher.exe 6080 CreateFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Desired Access: Generic Read, Disposition: Open, Options: Synchronous IO Non-Alert, Non-Directory File, Attributes: N, ShareMode: Read, Write, AllocationSize: n/a, OpenResult: Opened 98 12:38:33,4926869 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 2 120 850, Length: 4 096, Priority: Normal 98 12:38:33,4927057 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 2 120 876, Length: 512 98 12:38:33,4927151 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 2 120 897, Length: 1 024 98 12:38:33,4927212 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 2 121 921, Length: 512 98 12:38:33,4927295 MCLauncher.exe 6080 CloseFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS 98 12:38:33,4928875 MCLauncher.exe 6080 CreateFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe NOT A DIRECTORY Desired Access: Read Data/List Directory, Synchronize, Disposition: Open, Options: Directory, Synchronous IO Non-Alert, Attributes: n/a, ShareMode: Read, Write, Delete, AllocationSize: n/a 98 12:38:33,4929764 MCLauncher.exe 6080 CreateFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe NOT A DIRECTORY Desired Access: Read Data/List Directory, Synchronize, Disposition: Open, Options: Directory, Synchronous IO Non-Alert, Attributes: n/a, ShareMode: Read, Write, Delete, AllocationSize: n/a 98 12:38:33,4930731 MCLauncher.exe 6080 CreateFile C:\Users\User\AppData\Roaming\MCLauncher SUCCESS Desired Access: Read Data/List Directory, Synchronize, Disposition: Open, Options: Directory, Synchronous IO Non-Alert, Attributes: n/a, ShareMode: Read, Write, Delete, AllocationSize: n/a, OpenResult: Opened 98 12:38:33,4930933 MCLauncher.exe 6080 QueryDirectory C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Filter: MCLauncher.exe, 1: MCLauncher.exe 98 12:38:33,4931152 MCLauncher.exe 6080 CloseFile C:\Users\User\AppData\Roaming\MCLauncher SUCCESS 98 12:38:33,4932274 MCLauncher.exe 6080 CreateFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Desired Access: Generic Read, Disposition: Open, Options: Synchronous IO Non-Alert, Non-Directory File, Attributes: N, ShareMode: Read, Write, AllocationSize: n/a, OpenResult: Opened 98 12:38:33,4932493 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 2 122 095, Length: 4 096, Priority: Normal 98 12:38:33,4932645 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 2 125 824, Length: 4 096, I/O Flags: Non-cached, Paging I/O, Priority: Normal 98 12:38:33,4935843 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 2 122 121, Length: 512 98 12:38:33,4935970 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 2 122 141, Length: 3 072 98 12:38:33,4936042 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 2 125 213, Length: 512 98 12:38:33,4936757 MCLauncher.exe 6080 CloseFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS 98 12:38:33,4943597 MCLauncher.exe 6080 CreateFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Desired Access: Generic Read, Disposition: Open, Options: Synchronous IO Non-Alert, Non-Directory File, Attributes: N, ShareMode: Read, Write, AllocationSize: n/a, OpenResult: Opened 98 12:38:33,4943849 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 2 129 490, Length: 4 096, Priority: Normal 98 12:38:33,4943982 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 2 129 516, Length: 512 98 12:38:33,4944071 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 2 129 536, Length: 1 024 98 12:38:33,4944135 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 2 130 560, Length: 512 98 12:38:33,4944218 MCLauncher.exe 6080 CloseFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS 98 12:38:33,4948704 MCLauncher.exe 6080 CreateFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Desired Access: Generic Read, Disposition: Open, Options: Synchronous IO Non-Alert, Non-Directory File, Attributes: N, ShareMode: Read, Write, AllocationSize: n/a, OpenResult: Opened 98 12:38:33,4948950 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 2 008 931, Length: 4 096, Priority: Normal 98 12:38:33,4949127 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 2 007 040, Length: 8 192, I/O Flags: Non-cached, Paging I/O, Priority: Normal 98 12:38:33,4953123 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 2 008 957, Length: 512 98 12:38:33,4953247 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 2 008 984, Length: 512 98 12:38:33,4953314 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 2 009 496, Length: 512 98 12:38:33,4953884 MCLauncher.exe 6080 CloseFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS 98 12:38:33,4962861 MCLauncher.exe 6080 CreateFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Desired Access: Generic Read, Disposition: Open, Options: Synchronous IO Non-Alert, Non-Directory File, Attributes: N, ShareMode: Read, Write, AllocationSize: n/a, OpenResult: Opened 98 12:38:33,4963124 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 2 125 702, Length: 4 096, Priority: Normal 98 12:38:33,4963266 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 2 125 728, Length: 512 98 12:38:33,4963360 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 2 125 748, Length: 3 584 98 12:38:33,4963424 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 2 129 332, Length: 512 98 12:38:33,4963509 MCLauncher.exe 6080 CloseFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS 98 12:38:33,4967870 MCLauncher.exe 6080 RegQueryKey HKCU SUCCESS Query: HandleTags, HandleTags: 0x0 98 12:38:33,4967959 MCLauncher.exe 6080 RegQueryKey HKCU SUCCESS Query: Name 98 12:38:33,4968078 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Python\PythonCore\MCLauncher\Modules\threading NAME NOT FOUND Desired Access: Query Value 98 12:38:33,4968236 MCLauncher.exe 6080 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 98 12:38:33,4968286 MCLauncher.exe 6080 RegQueryKey HKLM SUCCESS Query: Name 98 12:38:33,4968386 MCLauncher.exe 6080 RegOpenKey HKLM\Software\WOW6432Node\Python\PythonCore\MCLauncher\Modules\threading NAME NOT FOUND Desired Access: Query Value 98 12:38:33,4969596 MCLauncher.exe 6080 CreateFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Desired Access: Generic Read, Disposition: Open, Options: Synchronous IO Non-Alert, Non-Directory File, Attributes: N, ShareMode: Read, Write, AllocationSize: n/a, OpenResult: Opened 98 12:38:33,4969837 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 2 521 546, Length: 4 096, Priority: Normal 98 12:38:33,4969998 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 2 523 136, Length: 4 096, I/O Flags: Non-cached, Paging I/O, Priority: Normal 98 12:38:33,4972760 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 2 521 572, Length: 512 98 12:38:33,4972904 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 2 521 589, Length: 8 192 98 12:38:33,4973021 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 2 527 232, Length: 4 096, I/O Flags: Non-cached, Paging I/O, Priority: Normal 98 12:38:33,4975747 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 2 529 781, Length: 512 98 12:38:33,4976381 MCLauncher.exe 6080 CloseFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS 98 12:38:33,4983227 MCLauncher.exe 6080 RegQueryKey HKCU SUCCESS Query: HandleTags, HandleTags: 0x0 98 12:38:33,4983305 MCLauncher.exe 6080 RegQueryKey HKCU SUCCESS Query: Name 98 12:38:33,4983416 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Python\PythonCore\MCLauncher\Modules\traceback NAME NOT FOUND Desired Access: Query Value 98 12:38:33,4983549 MCLauncher.exe 6080 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 98 12:38:33,4983596 MCLauncher.exe 6080 RegQueryKey HKLM SUCCESS Query: Name 98 12:38:33,4983693 MCLauncher.exe 6080 RegOpenKey HKLM\Software\WOW6432Node\Python\PythonCore\MCLauncher\Modules\traceback NAME NOT FOUND Desired Access: Query Value 98 12:38:33,4984901 MCLauncher.exe 6080 CreateFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Desired Access: Generic Read, Disposition: Open, Options: Synchronous IO Non-Alert, Non-Directory File, Attributes: N, ShareMode: Read, Write, AllocationSize: n/a, OpenResult: Opened 98 12:38:33,4985283 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 2 536 990, Length: 4 096, Priority: Normal 98 12:38:33,4985472 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 2 537 016, Length: 512 98 12:38:33,4985563 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 2 537 033, Length: 2 560 98 12:38:33,4985627 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 2 539 593, Length: 512 98 12:38:33,4985713 MCLauncher.exe 6080 CloseFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS 98 12:38:33,4990146 MCLauncher.exe 6080 RegQueryKey HKCU SUCCESS Query: HandleTags, HandleTags: 0x0 98 12:38:33,4990223 MCLauncher.exe 6080 RegQueryKey HKCU SUCCESS Query: Name 98 12:38:33,4990334 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Python\PythonCore\MCLauncher\Modules\socket NAME NOT FOUND Desired Access: Query Value 98 12:38:33,4990459 MCLauncher.exe 6080 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 98 12:38:33,4990509 MCLauncher.exe 6080 RegQueryKey HKLM SUCCESS Query: Name 98 12:38:33,4990597 MCLauncher.exe 6080 RegOpenKey HKLM\Software\WOW6432Node\Python\PythonCore\MCLauncher\Modules\socket NAME NOT FOUND Desired Access: Query Value 98 12:38:33,4991769 MCLauncher.exe 6080 CreateFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Desired Access: Generic Read, Disposition: Open, Options: Synchronous IO Non-Alert, Non-Directory File, Attributes: N, ShareMode: Read, Write, AllocationSize: n/a, OpenResult: Opened 98 12:38:33,4992010 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 2 437 379, Length: 4 096, Priority: Normal 98 12:38:33,4992163 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 2 437 405, Length: 512 98 12:38:33,4992282 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 2 437 419, Length: 5 120 98 12:38:33,4992345 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 2 442 539, Length: 512 98 12:38:33,4992431 MCLauncher.exe 6080 CloseFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS 98 12:38:33,4994102 MCLauncher.exe 6080 RegQueryKey HKCU SUCCESS Query: HandleTags, HandleTags: 0x0 98 12:38:33,4994171 MCLauncher.exe 6080 RegQueryKey HKCU SUCCESS Query: Name 98 12:38:33,4994271 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Python\PythonCore\MCLauncher\Modules\_socket NAME NOT FOUND Desired Access: Query Value 98 12:38:33,4994387 MCLauncher.exe 6080 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 98 12:38:33,4994434 MCLauncher.exe 6080 RegQueryKey HKLM SUCCESS Query: Name 98 12:38:33,4994520 MCLauncher.exe 6080 RegOpenKey HKLM\Software\WOW6432Node\Python\PythonCore\MCLauncher\Modules\_socket NAME NOT FOUND Desired Access: Query Value 98 12:38:33,4995914 MCLauncher.exe 6080 CreateFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Desired Access: Generic Read, Disposition: Open, Options: Synchronous IO Non-Alert, Non-Directory File, Attributes: N, ShareMode: Read, Write, AllocationSize: n/a, OpenResult: Opened 98 12:38:33,4996147 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 3 169 073, Length: 4 096, Priority: Normal 98 12:38:33,4996712 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 3 170 304, Length: 4 096, I/O Flags: Non-cached, Paging I/O, Priority: Normal 98 12:38:33,4999795 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 3 169 099, Length: 512 98 12:38:33,4999926 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 3 169 114, Length: 20 992 98 12:38:33,5000050 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 3 174 400, Length: 16 384, I/O Flags: Non-cached, Paging I/O, Priority: Normal 98 12:38:33,5002984 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 3 190 106, Length: 512 98 12:38:33,5003619 MCLauncher.exe 6080 CloseFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS 98 12:38:33,5011318 MCLauncher.exe 6080 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 98 12:38:33,5011410 MCLauncher.exe 6080 RegQueryKey HKLM SUCCESS Query: Name 98 12:38:33,5011515 MCLauncher.exe 6080 RegOpenKey HKLM\System\CurrentControlSet\Services\WinSock2\Parameters REPARSE Desired Access: All Access 98 12:38:33,5011640 MCLauncher.exe 6080 RegOpenKey HKLM\System\CurrentControlSet\Services\WinSock2\Parameters ACCESS DENIED Desired Access: All Access 98 12:38:33,5011795 MCLauncher.exe 6080 QuerySecurityFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe BUFFER OVERFLOW Information: Owner 98 12:38:33,5011892 MCLauncher.exe 6080 QuerySecurityFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Information: Owner 98 12:38:33,5014067 MCLauncher.exe 6080 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 98 12:38:33,5014130 MCLauncher.exe 6080 RegQueryKey HKLM SUCCESS Query: Name 98 12:38:33,5014327 MCLauncher.exe 6080 RegOpenKey HKLM\System\CurrentControlSet\Services\WinSock2\Parameters REPARSE Desired Access: Read 98 12:38:33,5014438 MCLauncher.exe 6080 RegOpenKey HKLM\System\CurrentControlSet\Services\WinSock2\Parameters SUCCESS Desired Access: Read 98 12:38:33,5014540 MCLauncher.exe 6080 RegSetInfoKey HKLM\System\CurrentControlSet\Services\WinSock2\Parameters SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 98 12:38:33,5014607 MCLauncher.exe 6080 RegQueryValue HKLM\System\CurrentControlSet\Services\WinSock2\Parameters\WinSock_Registry_Version SUCCESS Type: REG_SZ, Length: 8, Data: 2.0 98 12:38:33,5014787 MCLauncher.exe 6080 RegQueryValue HKLM\System\CurrentControlSet\Services\WinSock2\Parameters\WinSock_Registry_Version SUCCESS Type: REG_SZ, Length: 8, Data: 2.0 98 12:38:33,5014959 MCLauncher.exe 6080 RegQueryKey HKLM\System\CurrentControlSet\Services\WinSock2\Parameters SUCCESS Query: HandleTags, HandleTags: 0x400 98 12:38:33,5015025 MCLauncher.exe 6080 RegOpenKey HKLM\System\CurrentControlSet\Services\WinSock2\Parameters\AppId_Catalog SUCCESS Desired Access: Read 98 12:38:33,5015255 MCLauncher.exe 6080 RegQueryKey HKLM\System\CurrentControlSet\Services\WinSock2\Parameters\AppId_Catalog SUCCESS Query: HandleTags, HandleTags: 0x400 98 12:38:33,5015311 MCLauncher.exe 6080 RegOpenKey HKLM\System\CurrentControlSet\Services\WinSock2\Parameters\AppId_Catalog\3862E438 NAME NOT FOUND Desired Access: Read 98 12:38:33,5015408 MCLauncher.exe 6080 RegCloseKey HKLM\System\CurrentControlSet\Services\WinSock2\Parameters\AppId_Catalog SUCCESS 98 12:38:33,5015496 MCLauncher.exe 6080 RegQueryValue HKLM\System\CurrentControlSet\Services\WinSock2\Parameters\NameSpace_Callout SUCCESS Type: REG_EXPAND_SZ, Length: 70, Data: %SystemRoot%\System32\fwpuclnt.dll 98 12:38:33,5015632 MCLauncher.exe 6080 RegQueryValue HKLM\System\CurrentControlSet\Services\WinSock2\Parameters\NameSpace_Callout SUCCESS Type: REG_EXPAND_SZ, Length: 70, Data: %SystemRoot%\System32\fwpuclnt.dll 98 12:38:33,5015945 MCLauncher.exe 6080 RegQueryKey HKLM\System\CurrentControlSet\Services\WinSock2\Parameters SUCCESS Query: HandleTags, HandleTags: 0x400 98 12:38:33,5016006 MCLauncher.exe 6080 RegOpenKey HKLM\System\CurrentControlSet\Services\WinSock2\Parameters\Protocol_Catalog9 SUCCESS Desired Access: Maximum Allowed, Granted Access: Read 98 12:38:33,5016103 MCLauncher.exe 6080 RegQueryValue HKLM\System\CurrentControlSet\Services\WinSock2\Parameters\Protocol_Catalog9\Serial_Access_Num SUCCESS Type: REG_DWORD, Length: 4, Data: 10 98 12:38:33,5016629 MCLauncher.exe 6080 RegQueryValue HKLM\System\CurrentControlSet\Services\WinSock2\Parameters\Protocol_Catalog9\Serial_Access_Num SUCCESS Type: REG_DWORD, Length: 4, Data: 10 98 12:38:33,5016793 MCLauncher.exe 6080 RegQueryKey HKLM\System\CurrentControlSet\Services\WinSock2\Parameters\Protocol_Catalog9 SUCCESS Query: HandleTags, HandleTags: 0x400 98 12:38:33,5016851 MCLauncher.exe 6080 RegOpenKey HKLM\System\CurrentControlSet\Services\WinSock2\Parameters\Protocol_Catalog9\0000000A NAME NOT FOUND Desired Access: Read 98 12:38:33,5016931 MCLauncher.exe 6080 RegQueryValue HKLM\System\CurrentControlSet\Services\WinSock2\Parameters\Protocol_Catalog9\Next_Catalog_Entry_ID SUCCESS Type: REG_DWORD, Length: 4, Data: 1013 98 12:38:33,5017056 MCLauncher.exe 6080 RegQueryValue HKLM\System\CurrentControlSet\Services\WinSock2\Parameters\Protocol_Catalog9\Num_Catalog_Entries SUCCESS Type: REG_DWORD, Length: 4, Data: 12 98 12:38:33,5017203 MCLauncher.exe 6080 RegQueryKey HKLM\System\CurrentControlSet\Services\WinSock2\Parameters\Protocol_Catalog9 SUCCESS Query: HandleTags, HandleTags: 0x400 98 12:38:33,5017261 MCLauncher.exe 6080 RegOpenKey HKLM\System\CurrentControlSet\Services\WinSock2\Parameters\Protocol_Catalog9\Catalog_Entries SUCCESS Desired Access: Maximum Allowed, Granted Access: Read 98 12:38:33,5017372 MCLauncher.exe 6080 RegQueryKey HKLM\System\CurrentControlSet\Services\WinSock2\Parameters\Protocol_Catalog9\Catalog_Entries SUCCESS Query: HandleTags, HandleTags: 0x400 98 12:38:33,5017422 MCLauncher.exe 6080 RegOpenKey HKLM\System\CurrentControlSet\Services\WinSock2\Parameters\Protocol_Catalog9\Catalog_Entries\000000000001 SUCCESS Desired Access: Read 98 12:38:33,5017502 MCLauncher.exe 6080 RegQueryValue HKLM\System\CurrentControlSet\Services\WinSock2\Parameters\Protocol_Catalog9\Catalog_Entries\000000000001\PackedCatalogItem BUFFER OVERFLOW Length: 144 98 12:38:33,5017613 MCLauncher.exe 6080 RegQueryValue HKLM\System\CurrentControlSet\Services\WinSock2\Parameters\Protocol_Catalog9\Catalog_Entries\000000000001\PackedCatalogItem SUCCESS Type: REG_BINARY, Length: 888, Data: 25 53 79 73 74 65 6D 52 6F 6F 74 25 5C 73 79 73 98 12:38:33,5017760 MCLauncher.exe 6080 RegCloseKey HKLM\System\CurrentControlSet\Services\WinSock2\Parameters\Protocol_Catalog9\Catalog_Entries\000000000001 SUCCESS 98 12:38:33,5017840 MCLauncher.exe 6080 RegQueryKey HKLM\System\CurrentControlSet\Services\WinSock2\Parameters\Protocol_Catalog9\Catalog_Entries SUCCESS Query: HandleTags, HandleTags: 0x400 98 12:38:33,5017898 MCLauncher.exe 6080 RegOpenKey HKLM\System\CurrentControlSet\Services\WinSock2\Parameters\Protocol_Catalog9\Catalog_Entries\000000000002 SUCCESS Desired Access: Read 98 12:38:33,5017976 MCLauncher.exe 6080 RegQueryValue HKLM\System\CurrentControlSet\Services\WinSock2\Parameters\Protocol_Catalog9\Catalog_Entries\000000000002\PackedCatalogItem BUFFER OVERFLOW Length: 144 98 12:38:33,5018081 MCLauncher.exe 6080 RegQueryValue HKLM\System\CurrentControlSet\Services\WinSock2\Parameters\Protocol_Catalog9\Catalog_Entries\000000000002\PackedCatalogItem SUCCESS Type: REG_BINARY, Length: 888, Data: 25 53 79 73 74 65 6D 52 6F 6F 74 25 5C 73 79 73 98 12:38:33,5018217 MCLauncher.exe 6080 RegCloseKey HKLM\System\CurrentControlSet\Services\WinSock2\Parameters\Protocol_Catalog9\Catalog_Entries\000000000002 SUCCESS 98 12:38:33,5018292 MCLauncher.exe 6080 RegQueryKey HKLM\System\CurrentControlSet\Services\WinSock2\Parameters\Protocol_Catalog9\Catalog_Entries SUCCESS Query: HandleTags, HandleTags: 0x400 98 12:38:33,5018350 MCLauncher.exe 6080 RegOpenKey HKLM\System\CurrentControlSet\Services\WinSock2\Parameters\Protocol_Catalog9\Catalog_Entries\000000000003 SUCCESS Desired Access: Read 98 12:38:33,5018427 MCLauncher.exe 6080 RegQueryValue HKLM\System\CurrentControlSet\Services\WinSock2\Parameters\Protocol_Catalog9\Catalog_Entries\000000000003\PackedCatalogItem BUFFER OVERFLOW Length: 144 98 12:38:33,5018585 MCLauncher.exe 6080 RegQueryValue HKLM\System\CurrentControlSet\Services\WinSock2\Parameters\Protocol_Catalog9\Catalog_Entries\000000000003\PackedCatalogItem SUCCESS Type: REG_BINARY, Length: 888, Data: 25 53 79 73 74 65 6D 52 6F 6F 74 25 5C 73 79 73 98 12:38:33,5018721 MCLauncher.exe 6080 RegCloseKey HKLM\System\CurrentControlSet\Services\WinSock2\Parameters\Protocol_Catalog9\Catalog_Entries\000000000003 SUCCESS 98 12:38:33,5018799 MCLauncher.exe 6080 RegQueryKey HKLM\System\CurrentControlSet\Services\WinSock2\Parameters\Protocol_Catalog9\Catalog_Entries SUCCESS Query: HandleTags, HandleTags: 0x400 98 12:38:33,5018854 MCLauncher.exe 6080 RegOpenKey HKLM\System\CurrentControlSet\Services\WinSock2\Parameters\Protocol_Catalog9\Catalog_Entries\000000000004 SUCCESS Desired Access: Read 98 12:38:33,5018934 MCLauncher.exe 6080 RegQueryValue HKLM\System\CurrentControlSet\Services\WinSock2\Parameters\Protocol_Catalog9\Catalog_Entries\000000000004\PackedCatalogItem BUFFER OVERFLOW Length: 144 98 12:38:33,5019034 MCLauncher.exe 6080 RegQueryValue HKLM\System\CurrentControlSet\Services\WinSock2\Parameters\Protocol_Catalog9\Catalog_Entries\000000000004\PackedCatalogItem SUCCESS Type: REG_BINARY, Length: 888, Data: 25 53 79 73 74 65 6D 52 6F 6F 74 25 5C 73 79 73 98 12:38:33,5019164 MCLauncher.exe 6080 RegCloseKey HKLM\System\CurrentControlSet\Services\WinSock2\Parameters\Protocol_Catalog9\Catalog_Entries\000000000004 SUCCESS 98 12:38:33,5021572 MCLauncher.exe 6080 RegQueryKey HKLM\System\CurrentControlSet\Services\WinSock2\Parameters\Protocol_Catalog9\Catalog_Entries SUCCESS Query: HandleTags, HandleTags: 0x400 98 12:38:33,5021641 MCLauncher.exe 6080 RegOpenKey HKLM\System\CurrentControlSet\Services\WinSock2\Parameters\Protocol_Catalog9\Catalog_Entries\000000000005 SUCCESS Desired Access: Read 98 12:38:33,5021733 MCLauncher.exe 6080 RegQueryValue HKLM\System\CurrentControlSet\Services\WinSock2\Parameters\Protocol_Catalog9\Catalog_Entries\000000000005\PackedCatalogItem BUFFER OVERFLOW Length: 144 98 12:38:33,5021852 MCLauncher.exe 6080 RegQueryValue HKLM\System\CurrentControlSet\Services\WinSock2\Parameters\Protocol_Catalog9\Catalog_Entries\000000000005\PackedCatalogItem SUCCESS Type: REG_BINARY, Length: 888, Data: 25 53 79 73 74 65 6D 52 6F 6F 74 25 5C 73 79 73 98 12:38:33,5021999 MCLauncher.exe 6080 RegCloseKey HKLM\System\CurrentControlSet\Services\WinSock2\Parameters\Protocol_Catalog9\Catalog_Entries\000000000005 SUCCESS 98 12:38:33,5022076 MCLauncher.exe 6080 RegQueryKey HKLM\System\CurrentControlSet\Services\WinSock2\Parameters\Protocol_Catalog9\Catalog_Entries SUCCESS Query: HandleTags, HandleTags: 0x400 98 12:38:33,5022134 MCLauncher.exe 6080 RegOpenKey HKLM\System\CurrentControlSet\Services\WinSock2\Parameters\Protocol_Catalog9\Catalog_Entries\000000000006 SUCCESS Desired Access: Read 98 12:38:33,5022218 MCLauncher.exe 6080 RegQueryValue HKLM\System\CurrentControlSet\Services\WinSock2\Parameters\Protocol_Catalog9\Catalog_Entries\000000000006\PackedCatalogItem BUFFER OVERFLOW Length: 144 98 12:38:33,5022326 MCLauncher.exe 6080 RegQueryValue HKLM\System\CurrentControlSet\Services\WinSock2\Parameters\Protocol_Catalog9\Catalog_Entries\000000000006\PackedCatalogItem SUCCESS Type: REG_BINARY, Length: 888, Data: 25 53 79 73 74 65 6D 52 6F 6F 74 25 5C 73 79 73 98 12:38:33,5022453 MCLauncher.exe 6080 RegCloseKey HKLM\System\CurrentControlSet\Services\WinSock2\Parameters\Protocol_Catalog9\Catalog_Entries\000000000006 SUCCESS 98 12:38:33,5022528 MCLauncher.exe 6080 RegQueryKey HKLM\System\CurrentControlSet\Services\WinSock2\Parameters\Protocol_Catalog9\Catalog_Entries SUCCESS Query: HandleTags, HandleTags: 0x400 98 12:38:33,5022586 MCLauncher.exe 6080 RegOpenKey HKLM\System\CurrentControlSet\Services\WinSock2\Parameters\Protocol_Catalog9\Catalog_Entries\000000000007 SUCCESS Desired Access: Read 98 12:38:33,5022700 MCLauncher.exe 6080 RegQueryValue HKLM\System\CurrentControlSet\Services\WinSock2\Parameters\Protocol_Catalog9\Catalog_Entries\000000000007\PackedCatalogItem BUFFER OVERFLOW Length: 144 98 12:38:33,5022808 MCLauncher.exe 6080 RegQueryValue HKLM\System\CurrentControlSet\Services\WinSock2\Parameters\Protocol_Catalog9\Catalog_Entries\000000000007\PackedCatalogItem SUCCESS Type: REG_BINARY, Length: 888, Data: 25 53 79 73 74 65 6D 52 6F 6F 74 25 5C 73 79 73 98 12:38:33,5022941 MCLauncher.exe 6080 RegCloseKey HKLM\System\CurrentControlSet\Services\WinSock2\Parameters\Protocol_Catalog9\Catalog_Entries\000000000007 SUCCESS 98 12:38:33,5023015 MCLauncher.exe 6080 RegQueryKey HKLM\System\CurrentControlSet\Services\WinSock2\Parameters\Protocol_Catalog9\Catalog_Entries SUCCESS Query: HandleTags, HandleTags: 0x400 98 12:38:33,5023071 MCLauncher.exe 6080 RegOpenKey HKLM\System\CurrentControlSet\Services\WinSock2\Parameters\Protocol_Catalog9\Catalog_Entries\000000000008 SUCCESS Desired Access: Read 98 12:38:33,5023148 MCLauncher.exe 6080 RegQueryValue HKLM\System\CurrentControlSet\Services\WinSock2\Parameters\Protocol_Catalog9\Catalog_Entries\000000000008\PackedCatalogItem BUFFER OVERFLOW Length: 144 98 12:38:33,5023337 MCLauncher.exe 6080 RegQueryValue HKLM\System\CurrentControlSet\Services\WinSock2\Parameters\Protocol_Catalog9\Catalog_Entries\000000000008\PackedCatalogItem SUCCESS Type: REG_BINARY, Length: 888, Data: 25 53 79 73 74 65 6D 52 6F 6F 74 25 5C 73 79 73 98 12:38:33,5023464 MCLauncher.exe 6080 RegCloseKey HKLM\System\CurrentControlSet\Services\WinSock2\Parameters\Protocol_Catalog9\Catalog_Entries\000000000008 SUCCESS 98 12:38:33,5023539 MCLauncher.exe 6080 RegQueryKey HKLM\System\CurrentControlSet\Services\WinSock2\Parameters\Protocol_Catalog9\Catalog_Entries SUCCESS Query: HandleTags, HandleTags: 0x400 98 12:38:33,5023595 MCLauncher.exe 6080 RegOpenKey HKLM\System\CurrentControlSet\Services\WinSock2\Parameters\Protocol_Catalog9\Catalog_Entries\000000000009 SUCCESS Desired Access: Read 98 12:38:33,5023672 MCLauncher.exe 6080 RegQueryValue HKLM\System\CurrentControlSet\Services\WinSock2\Parameters\Protocol_Catalog9\Catalog_Entries\000000000009\PackedCatalogItem BUFFER OVERFLOW Length: 144 98 12:38:33,5023775 MCLauncher.exe 6080 RegQueryValue HKLM\System\CurrentControlSet\Services\WinSock2\Parameters\Protocol_Catalog9\Catalog_Entries\000000000009\PackedCatalogItem SUCCESS Type: REG_BINARY, Length: 888, Data: 25 53 79 73 74 65 6D 52 6F 6F 74 25 5C 73 79 73 98 12:38:33,5023902 MCLauncher.exe 6080 RegCloseKey HKLM\System\CurrentControlSet\Services\WinSock2\Parameters\Protocol_Catalog9\Catalog_Entries\000000000009 SUCCESS 98 12:38:33,5024104 MCLauncher.exe 6080 RegQueryKey HKLM\System\CurrentControlSet\Services\WinSock2\Parameters\Protocol_Catalog9\Catalog_Entries SUCCESS Query: HandleTags, HandleTags: 0x400 98 12:38:33,5024182 MCLauncher.exe 6080 RegOpenKey HKLM\System\CurrentControlSet\Services\WinSock2\Parameters\Protocol_Catalog9\Catalog_Entries\000000000010 SUCCESS Desired Access: Read 98 12:38:33,5024284 MCLauncher.exe 6080 RegQueryValue HKLM\System\CurrentControlSet\Services\WinSock2\Parameters\Protocol_Catalog9\Catalog_Entries\000000000010\PackedCatalogItem BUFFER OVERFLOW Length: 144 98 12:38:33,5024426 MCLauncher.exe 6080 RegQueryValue HKLM\System\CurrentControlSet\Services\WinSock2\Parameters\Protocol_Catalog9\Catalog_Entries\000000000010\PackedCatalogItem SUCCESS Type: REG_BINARY, Length: 888, Data: 25 53 79 73 74 65 6D 52 6F 6F 74 25 5C 73 79 73 98 12:38:33,5024714 MCLauncher.exe 6080 RegCloseKey HKLM\System\CurrentControlSet\Services\WinSock2\Parameters\Protocol_Catalog9\Catalog_Entries\000000000010 SUCCESS 98 12:38:33,5024797 MCLauncher.exe 6080 RegQueryKey HKLM\System\CurrentControlSet\Services\WinSock2\Parameters\Protocol_Catalog9\Catalog_Entries SUCCESS Query: HandleTags, HandleTags: 0x400 98 12:38:33,5024855 MCLauncher.exe 6080 RegOpenKey HKLM\System\CurrentControlSet\Services\WinSock2\Parameters\Protocol_Catalog9\Catalog_Entries\000000000011 SUCCESS Desired Access: Read 98 12:38:33,5024938 MCLauncher.exe 6080 RegQueryValue HKLM\System\CurrentControlSet\Services\WinSock2\Parameters\Protocol_Catalog9\Catalog_Entries\000000000011\PackedCatalogItem BUFFER OVERFLOW Length: 144 98 12:38:33,5025049 MCLauncher.exe 6080 RegQueryValue HKLM\System\CurrentControlSet\Services\WinSock2\Parameters\Protocol_Catalog9\Catalog_Entries\000000000011\PackedCatalogItem SUCCESS Type: REG_BINARY, Length: 888, Data: 25 53 79 73 74 65 6D 52 6F 6F 74 25 5C 73 79 73 98 12:38:33,5025174 MCLauncher.exe 6080 RegCloseKey HKLM\System\CurrentControlSet\Services\WinSock2\Parameters\Protocol_Catalog9\Catalog_Entries\000000000011 SUCCESS 98 12:38:33,5025249 MCLauncher.exe 6080 RegQueryKey HKLM\System\CurrentControlSet\Services\WinSock2\Parameters\Protocol_Catalog9\Catalog_Entries SUCCESS Query: HandleTags, HandleTags: 0x400 98 12:38:33,5025307 MCLauncher.exe 6080 RegOpenKey HKLM\System\CurrentControlSet\Services\WinSock2\Parameters\Protocol_Catalog9\Catalog_Entries\000000000012 SUCCESS Desired Access: Read 98 12:38:33,5025387 MCLauncher.exe 6080 RegQueryValue HKLM\System\CurrentControlSet\Services\WinSock2\Parameters\Protocol_Catalog9\Catalog_Entries\000000000012\PackedCatalogItem BUFFER OVERFLOW Length: 144 98 12:38:33,5025487 MCLauncher.exe 6080 RegQueryValue HKLM\System\CurrentControlSet\Services\WinSock2\Parameters\Protocol_Catalog9\Catalog_Entries\000000000012\PackedCatalogItem SUCCESS Type: REG_BINARY, Length: 888, Data: 25 53 79 73 74 65 6D 52 6F 6F 74 25 5C 73 79 73 98 12:38:33,5025614 MCLauncher.exe 6080 RegCloseKey HKLM\System\CurrentControlSet\Services\WinSock2\Parameters\Protocol_Catalog9\Catalog_Entries\000000000012 SUCCESS 98 12:38:33,5025659 MCLauncher.exe 6080 RegCloseKey HKLM\System\CurrentControlSet\Services\WinSock2\Parameters\Protocol_Catalog9\Catalog_Entries SUCCESS 98 12:38:33,5025805 MCLauncher.exe 6080 RegQueryKey HKLM\System\CurrentControlSet\Services\WinSock2\Parameters SUCCESS Query: HandleTags, HandleTags: 0x400 98 12:38:33,5025866 MCLauncher.exe 6080 RegOpenKey HKLM\System\CurrentControlSet\Services\WinSock2\Parameters\NameSpace_Catalog5 SUCCESS Desired Access: Maximum Allowed, Granted Access: Read 98 12:38:33,5025952 MCLauncher.exe 6080 RegQueryValue HKLM\System\CurrentControlSet\Services\WinSock2\Parameters\NameSpace_Catalog5\Serial_Access_Num SUCCESS Type: REG_DWORD, Length: 4, Data: 20 98 12:38:33,5026318 MCLauncher.exe 6080 RegQueryValue HKLM\System\CurrentControlSet\Services\WinSock2\Parameters\NameSpace_Catalog5\Serial_Access_Num SUCCESS Type: REG_DWORD, Length: 4, Data: 20 98 12:38:33,5026476 MCLauncher.exe 6080 RegQueryKey HKLM\System\CurrentControlSet\Services\WinSock2\Parameters\NameSpace_Catalog5 SUCCESS Query: HandleTags, HandleTags: 0x400 98 12:38:33,5026534 MCLauncher.exe 6080 RegOpenKey HKLM\System\CurrentControlSet\Services\WinSock2\Parameters\NameSpace_Catalog5\00000014 NAME NOT FOUND Desired Access: Read 98 12:38:33,5026612 MCLauncher.exe 6080 RegQueryValue HKLM\System\CurrentControlSet\Services\WinSock2\Parameters\NameSpace_Catalog5\Num_Catalog_Entries SUCCESS Type: REG_DWORD, Length: 4, Data: 6 98 12:38:33,5026756 MCLauncher.exe 6080 RegQueryKey HKLM\System\CurrentControlSet\Services\WinSock2\Parameters\NameSpace_Catalog5 SUCCESS Query: HandleTags, HandleTags: 0x400 98 12:38:33,5026811 MCLauncher.exe 6080 RegOpenKey HKLM\System\CurrentControlSet\Services\WinSock2\Parameters\NameSpace_Catalog5\Catalog_Entries SUCCESS Desired Access: Maximum Allowed, Granted Access: Read 98 12:38:33,5026916 MCLauncher.exe 6080 RegQueryKey HKLM\System\CurrentControlSet\Services\WinSock2\Parameters\NameSpace_Catalog5\Catalog_Entries SUCCESS Query: HandleTags, HandleTags: 0x400 98 12:38:33,5026966 MCLauncher.exe 6080 RegOpenKey HKLM\System\CurrentControlSet\Services\WinSock2\Parameters\NameSpace_Catalog5\Catalog_Entries\000000000001 SUCCESS Desired Access: Read 98 12:38:33,5027041 MCLauncher.exe 6080 RegQueryValue HKLM\System\CurrentControlSet\Services\WinSock2\Parameters\NameSpace_Catalog5\Catalog_Entries\000000000001\LibraryPath SUCCESS Type: REG_SZ, Length: 68, Data: %SystemRoot%\system32\napinsp.dll 98 12:38:33,5027171 MCLauncher.exe 6080 RegQueryValue HKLM\System\CurrentControlSet\Services\WinSock2\Parameters\NameSpace_Catalog5\Catalog_Entries\000000000001\LibraryPath SUCCESS Type: REG_SZ, Length: 68, Data: %SystemRoot%\system32\napinsp.dll 98 12:38:33,5027382 MCLauncher.exe 6080 RegQueryValue HKLM\System\CurrentControlSet\Services\WinSock2\Parameters\NameSpace_Catalog5\Catalog_Entries\000000000001\DisplayString SUCCESS Type: REG_SZ, Length: 82, Data: @%SystemRoot%\system32\napinsp.dll,-1000 98 12:38:33,5027509 MCLauncher.exe 6080 RegQueryValue HKLM\System\CurrentControlSet\Services\WinSock2\Parameters\NameSpace_Catalog5\Catalog_Entries\000000000001\DisplayString SUCCESS Type: REG_SZ, Length: 82, Data: @%SystemRoot%\system32\napinsp.dll,-1000 98 12:38:33,5027634 MCLauncher.exe 6080 RegQueryValue HKLM\System\CurrentControlSet\Services\WinSock2\Parameters\NameSpace_Catalog5\Catalog_Entries\000000000001\DisplayString SUCCESS Type: REG_SZ, Length: 82, Data: @%SystemRoot%\system32\napinsp.dll,-1000 98 12:38:33,5027756 MCLauncher.exe 6080 RegQueryValue HKLM\System\CurrentControlSet\Services\WinSock2\Parameters\NameSpace_Catalog5\Catalog_Entries\000000000001\DisplayString SUCCESS Type: REG_SZ, Length: 82, Data: @%SystemRoot%\system32\napinsp.dll,-1000 98 12:38:33,5027883 MCLauncher.exe 6080 RegQueryValue HKLM\System\CurrentControlSet\Services\WinSock2\Parameters\NameSpace_Catalog5\Catalog_Entries\000000000001\ProviderId SUCCESS Type: REG_BINARY, Length: 16, Data: A2 CB 4A 96 BC B2 EB 40 8C 6A A6 DB 40 16 1C AE 98 12:38:33,5028008 MCLauncher.exe 6080 RegQueryValue HKLM\System\CurrentControlSet\Services\WinSock2\Parameters\NameSpace_Catalog5\Catalog_Entries\000000000001\AddressFamily NAME NOT FOUND Length: 144 98 12:38:33,5028119 MCLauncher.exe 6080 RegQueryValue HKLM\System\CurrentControlSet\Services\WinSock2\Parameters\NameSpace_Catalog5\Catalog_Entries\000000000001\SupportedNameSpace SUCCESS Type: REG_DWORD, Length: 4, Data: 37 98 12:38:33,5028244 MCLauncher.exe 6080 RegQueryValue HKLM\System\CurrentControlSet\Services\WinSock2\Parameters\NameSpace_Catalog5\Catalog_Entries\000000000001\Enabled SUCCESS Type: REG_DWORD, Length: 4, Data: 1 98 12:38:33,5028363 MCLauncher.exe 6080 RegQueryValue HKLM\System\CurrentControlSet\Services\WinSock2\Parameters\NameSpace_Catalog5\Catalog_Entries\000000000001\Version SUCCESS Type: REG_DWORD, Length: 4, Data: 0 98 12:38:33,5028487 MCLauncher.exe 6080 RegQueryValue HKLM\System\CurrentControlSet\Services\WinSock2\Parameters\NameSpace_Catalog5\Catalog_Entries\000000000001\StoresServiceClassInfo SUCCESS Type: REG_DWORD, Length: 4, Data: 0 98 12:38:33,5028609 MCLauncher.exe 6080 RegQueryValue HKLM\System\CurrentControlSet\Services\WinSock2\Parameters\NameSpace_Catalog5\Catalog_Entries\000000000001\ProviderInfo SUCCESS Type: REG_BINARY, Length: 0 98 12:38:33,5028734 MCLauncher.exe 6080 RegQueryValue HKLM\System\CurrentControlSet\Services\WinSock2\Parameters\NameSpace_Catalog5\Catalog_Entries\000000000001\ProviderInfo SUCCESS Type: REG_BINARY, Length: 0 98 12:38:33,5028864 MCLauncher.exe 6080 RegCloseKey HKLM\System\CurrentControlSet\Services\WinSock2\Parameters\NameSpace_Catalog5\Catalog_Entries\000000000001 SUCCESS 98 12:38:33,5028942 MCLauncher.exe 6080 RegQueryKey HKLM\System\CurrentControlSet\Services\WinSock2\Parameters\NameSpace_Catalog5\Catalog_Entries SUCCESS Query: HandleTags, HandleTags: 0x400 98 12:38:33,5029000 MCLauncher.exe 6080 RegOpenKey HKLM\System\CurrentControlSet\Services\WinSock2\Parameters\NameSpace_Catalog5\Catalog_Entries\000000000002 SUCCESS Desired Access: Read 98 12:38:33,5029083 MCLauncher.exe 6080 RegQueryValue HKLM\System\CurrentControlSet\Services\WinSock2\Parameters\NameSpace_Catalog5\Catalog_Entries\000000000002\LibraryPath SUCCESS Type: REG_SZ, Length: 68, Data: %SystemRoot%\system32\pnrpnsp.dll 98 12:38:33,5029208 MCLauncher.exe 6080 RegQueryValue HKLM\System\CurrentControlSet\Services\WinSock2\Parameters\NameSpace_Catalog5\Catalog_Entries\000000000002\LibraryPath SUCCESS Type: REG_SZ, Length: 68, Data: %SystemRoot%\system32\pnrpnsp.dll 98 12:38:33,5029330 MCLauncher.exe 6080 RegQueryValue HKLM\System\CurrentControlSet\Services\WinSock2\Parameters\NameSpace_Catalog5\Catalog_Entries\000000000002\DisplayString SUCCESS Type: REG_SZ, Length: 82, Data: @%SystemRoot%\system32\pnrpnsp.dll,-1000 98 12:38:33,5029452 MCLauncher.exe 6080 RegQueryValue HKLM\System\CurrentControlSet\Services\WinSock2\Parameters\NameSpace_Catalog5\Catalog_Entries\000000000002\DisplayString SUCCESS Type: REG_SZ, Length: 82, Data: @%SystemRoot%\system32\pnrpnsp.dll,-1000 98 12:38:33,5029576 MCLauncher.exe 6080 RegQueryValue HKLM\System\CurrentControlSet\Services\WinSock2\Parameters\NameSpace_Catalog5\Catalog_Entries\000000000002\DisplayString SUCCESS Type: REG_SZ, Length: 82, Data: @%SystemRoot%\system32\pnrpnsp.dll,-1000 98 12:38:33,5029695 MCLauncher.exe 6080 RegQueryValue HKLM\System\CurrentControlSet\Services\WinSock2\Parameters\NameSpace_Catalog5\Catalog_Entries\000000000002\DisplayString SUCCESS Type: REG_SZ, Length: 82, Data: @%SystemRoot%\system32\pnrpnsp.dll,-1000 98 12:38:33,5029823 MCLauncher.exe 6080 RegQueryValue HKLM\System\CurrentControlSet\Services\WinSock2\Parameters\NameSpace_Catalog5\Catalog_Entries\000000000002\ProviderId SUCCESS Type: REG_BINARY, Length: 16, Data: CE 89 FE 03 6D 76 76 49 B9 C1 BB 9B C4 2C 7B 4D 98 12:38:33,5029942 MCLauncher.exe 6080 RegQueryValue HKLM\System\CurrentControlSet\Services\WinSock2\Parameters\NameSpace_Catalog5\Catalog_Entries\000000000002\AddressFamily NAME NOT FOUND Length: 144 98 12:38:33,5030050 MCLauncher.exe 6080 RegQueryValue HKLM\System\CurrentControlSet\Services\WinSock2\Parameters\NameSpace_Catalog5\Catalog_Entries\000000000002\SupportedNameSpace SUCCESS Type: REG_DWORD, Length: 4, Data: 39 98 12:38:33,5030183 MCLauncher.exe 6080 RegQueryValue HKLM\System\CurrentControlSet\Services\WinSock2\Parameters\NameSpace_Catalog5\Catalog_Entries\000000000002\Enabled SUCCESS Type: REG_DWORD, Length: 4, Data: 1 98 12:38:33,5030305 MCLauncher.exe 6080 RegQueryValue HKLM\System\CurrentControlSet\Services\WinSock2\Parameters\NameSpace_Catalog5\Catalog_Entries\000000000002\Version SUCCESS Type: REG_DWORD, Length: 4, Data: 0 98 12:38:33,5030427 MCLauncher.exe 6080 RegQueryValue HKLM\System\CurrentControlSet\Services\WinSock2\Parameters\NameSpace_Catalog5\Catalog_Entries\000000000002\StoresServiceClassInfo SUCCESS Type: REG_DWORD, Length: 4, Data: 0 98 12:38:33,5030546 MCLauncher.exe 6080 RegQueryValue HKLM\System\CurrentControlSet\Services\WinSock2\Parameters\NameSpace_Catalog5\Catalog_Entries\000000000002\ProviderInfo SUCCESS Type: REG_BINARY, Length: 0 98 12:38:33,5030668 MCLauncher.exe 6080 RegQueryValue HKLM\System\CurrentControlSet\Services\WinSock2\Parameters\NameSpace_Catalog5\Catalog_Entries\000000000002\ProviderInfo SUCCESS Type: REG_BINARY, Length: 0 98 12:38:33,5030798 MCLauncher.exe 6080 RegCloseKey HKLM\System\CurrentControlSet\Services\WinSock2\Parameters\NameSpace_Catalog5\Catalog_Entries\000000000002 SUCCESS 98 12:38:33,5030876 MCLauncher.exe 6080 RegQueryKey HKLM\System\CurrentControlSet\Services\WinSock2\Parameters\NameSpace_Catalog5\Catalog_Entries SUCCESS Query: HandleTags, HandleTags: 0x400 98 12:38:33,5030934 MCLauncher.exe 6080 RegOpenKey HKLM\System\CurrentControlSet\Services\WinSock2\Parameters\NameSpace_Catalog5\Catalog_Entries\000000000003 SUCCESS Desired Access: Read 98 12:38:33,5031011 MCLauncher.exe 6080 RegQueryValue HKLM\System\CurrentControlSet\Services\WinSock2\Parameters\NameSpace_Catalog5\Catalog_Entries\000000000003\LibraryPath SUCCESS Type: REG_SZ, Length: 68, Data: %SystemRoot%\system32\pnrpnsp.dll 98 12:38:33,5031133 MCLauncher.exe 6080 RegQueryValue HKLM\System\CurrentControlSet\Services\WinSock2\Parameters\NameSpace_Catalog5\Catalog_Entries\000000000003\LibraryPath SUCCESS Type: REG_SZ, Length: 68, Data: %SystemRoot%\system32\pnrpnsp.dll 98 12:38:33,5031255 MCLauncher.exe 6080 RegQueryValue HKLM\System\CurrentControlSet\Services\WinSock2\Parameters\NameSpace_Catalog5\Catalog_Entries\000000000003\DisplayString SUCCESS Type: REG_SZ, Length: 82, Data: @%SystemRoot%\system32\pnrpnsp.dll,-1001 98 12:38:33,5031377 MCLauncher.exe 6080 RegQueryValue HKLM\System\CurrentControlSet\Services\WinSock2\Parameters\NameSpace_Catalog5\Catalog_Entries\000000000003\DisplayString SUCCESS Type: REG_SZ, Length: 82, Data: @%SystemRoot%\system32\pnrpnsp.dll,-1001 98 12:38:33,5031499 MCLauncher.exe 6080 RegQueryValue HKLM\System\CurrentControlSet\Services\WinSock2\Parameters\NameSpace_Catalog5\Catalog_Entries\000000000003\DisplayString SUCCESS Type: REG_SZ, Length: 82, Data: @%SystemRoot%\system32\pnrpnsp.dll,-1001 98 12:38:33,5031618 MCLauncher.exe 6080 RegQueryValue HKLM\System\CurrentControlSet\Services\WinSock2\Parameters\NameSpace_Catalog5\Catalog_Entries\000000000003\DisplayString SUCCESS Type: REG_SZ, Length: 82, Data: @%SystemRoot%\system32\pnrpnsp.dll,-1001 98 12:38:33,5031740 MCLauncher.exe 6080 RegQueryValue HKLM\System\CurrentControlSet\Services\WinSock2\Parameters\NameSpace_Catalog5\Catalog_Entries\000000000003\ProviderId SUCCESS Type: REG_BINARY, Length: 16, Data: CD 89 FE 03 6D 76 76 49 B9 C1 BB 9B C4 2C 7B 4D 98 12:38:33,5031867 MCLauncher.exe 6080 RegQueryValue HKLM\System\CurrentControlSet\Services\WinSock2\Parameters\NameSpace_Catalog5\Catalog_Entries\000000000003\AddressFamily NAME NOT FOUND Length: 144 98 12:38:33,5031975 MCLauncher.exe 6080 RegQueryValue HKLM\System\CurrentControlSet\Services\WinSock2\Parameters\NameSpace_Catalog5\Catalog_Entries\000000000003\SupportedNameSpace SUCCESS Type: REG_DWORD, Length: 4, Data: 38 98 12:38:33,5032095 MCLauncher.exe 6080 RegQueryValue HKLM\System\CurrentControlSet\Services\WinSock2\Parameters\NameSpace_Catalog5\Catalog_Entries\000000000003\Enabled SUCCESS Type: REG_DWORD, Length: 4, Data: 1 98 12:38:33,5032211 MCLauncher.exe 6080 RegQueryValue HKLM\System\CurrentControlSet\Services\WinSock2\Parameters\NameSpace_Catalog5\Catalog_Entries\000000000003\Version SUCCESS Type: REG_DWORD, Length: 4, Data: 0 98 12:38:33,5032333 MCLauncher.exe 6080 RegQueryValue HKLM\System\CurrentControlSet\Services\WinSock2\Parameters\NameSpace_Catalog5\Catalog_Entries\000000000003\StoresServiceClassInfo SUCCESS Type: REG_DWORD, Length: 4, Data: 0 98 12:38:33,5032452 MCLauncher.exe 6080 RegQueryValue HKLM\System\CurrentControlSet\Services\WinSock2\Parameters\NameSpace_Catalog5\Catalog_Entries\000000000003\ProviderInfo SUCCESS Type: REG_BINARY, Length: 0 98 12:38:33,5032588 MCLauncher.exe 6080 RegQueryValue HKLM\System\CurrentControlSet\Services\WinSock2\Parameters\NameSpace_Catalog5\Catalog_Entries\000000000003\ProviderInfo SUCCESS Type: REG_BINARY, Length: 0 98 12:38:33,5032715 MCLauncher.exe 6080 RegCloseKey HKLM\System\CurrentControlSet\Services\WinSock2\Parameters\NameSpace_Catalog5\Catalog_Entries\000000000003 SUCCESS 98 12:38:33,5032826 MCLauncher.exe 6080 RegQueryKey HKLM\System\CurrentControlSet\Services\WinSock2\Parameters\NameSpace_Catalog5\Catalog_Entries SUCCESS Query: HandleTags, HandleTags: 0x400 98 12:38:33,5032887 MCLauncher.exe 6080 RegOpenKey HKLM\System\CurrentControlSet\Services\WinSock2\Parameters\NameSpace_Catalog5\Catalog_Entries\000000000004 SUCCESS Desired Access: Read 98 12:38:33,5032967 MCLauncher.exe 6080 RegQueryValue HKLM\System\CurrentControlSet\Services\WinSock2\Parameters\NameSpace_Catalog5\Catalog_Entries\000000000004\LibraryPath SUCCESS Type: REG_SZ, Length: 66, Data: %SystemRoot%\system32\NLAapi.dll 98 12:38:33,5033098 MCLauncher.exe 6080 RegQueryValue HKLM\System\CurrentControlSet\Services\WinSock2\Parameters\NameSpace_Catalog5\Catalog_Entries\000000000004\LibraryPath SUCCESS Type: REG_SZ, Length: 66, Data: %SystemRoot%\system32\NLAapi.dll 98 12:38:33,5033228 MCLauncher.exe 6080 RegQueryValue HKLM\System\CurrentControlSet\Services\WinSock2\Parameters\NameSpace_Catalog5\Catalog_Entries\000000000004\DisplayString SUCCESS Type: REG_SZ, Length: 80, Data: @%SystemRoot%\system32\nlasvc.dll,-1000 98 12:38:33,5033350 MCLauncher.exe 6080 RegQueryValue HKLM\System\CurrentControlSet\Services\WinSock2\Parameters\NameSpace_Catalog5\Catalog_Entries\000000000004\DisplayString SUCCESS Type: REG_SZ, Length: 80, Data: @%SystemRoot%\system32\nlasvc.dll,-1000 98 12:38:33,5033480 MCLauncher.exe 6080 RegQueryValue HKLM\System\CurrentControlSet\Services\WinSock2\Parameters\NameSpace_Catalog5\Catalog_Entries\000000000004\DisplayString SUCCESS Type: REG_SZ, Length: 80, Data: @%SystemRoot%\system32\nlasvc.dll,-1000 98 12:38:33,5033599 MCLauncher.exe 6080 RegQueryValue HKLM\System\CurrentControlSet\Services\WinSock2\Parameters\NameSpace_Catalog5\Catalog_Entries\000000000004\DisplayString SUCCESS Type: REG_SZ, Length: 80, Data: @%SystemRoot%\system32\nlasvc.dll,-1000 98 12:38:33,5033807 MCLauncher.exe 6080 RegQueryValue HKLM\System\CurrentControlSet\Services\WinSock2\Parameters\NameSpace_Catalog5\Catalog_Entries\000000000004\ProviderId SUCCESS Type: REG_BINARY, Length: 16, Data: 3A 24 42 66 A8 3B A6 4A BA A5 2E 0B D7 1F DD 83 98 12:38:33,5033954 MCLauncher.exe 6080 RegQueryValue HKLM\System\CurrentControlSet\Services\WinSock2\Parameters\NameSpace_Catalog5\Catalog_Entries\000000000004\AddressFamily NAME NOT FOUND Length: 144 98 12:38:33,5034064 MCLauncher.exe 6080 RegQueryValue HKLM\System\CurrentControlSet\Services\WinSock2\Parameters\NameSpace_Catalog5\Catalog_Entries\000000000004\SupportedNameSpace SUCCESS Type: REG_DWORD, Length: 4, Data: 15 98 12:38:33,5034186 MCLauncher.exe 6080 RegQueryValue HKLM\System\CurrentControlSet\Services\WinSock2\Parameters\NameSpace_Catalog5\Catalog_Entries\000000000004\Enabled SUCCESS Type: REG_DWORD, Length: 4, Data: 1 98 12:38:33,5034311 MCLauncher.exe 6080 RegQueryValue HKLM\System\CurrentControlSet\Services\WinSock2\Parameters\NameSpace_Catalog5\Catalog_Entries\000000000004\Version SUCCESS Type: REG_DWORD, Length: 4, Data: 0 98 12:38:33,5034433 MCLauncher.exe 6080 RegQueryValue HKLM\System\CurrentControlSet\Services\WinSock2\Parameters\NameSpace_Catalog5\Catalog_Entries\000000000004\StoresServiceClassInfo SUCCESS Type: REG_DWORD, Length: 4, Data: 0 98 12:38:33,5034552 MCLauncher.exe 6080 RegQueryValue HKLM\System\CurrentControlSet\Services\WinSock2\Parameters\NameSpace_Catalog5\Catalog_Entries\000000000004\ProviderInfo SUCCESS Type: REG_BINARY, Length: 0 98 12:38:33,5034674 MCLauncher.exe 6080 RegQueryValue HKLM\System\CurrentControlSet\Services\WinSock2\Parameters\NameSpace_Catalog5\Catalog_Entries\000000000004\ProviderInfo SUCCESS Type: REG_BINARY, Length: 0 98 12:38:33,5034801 MCLauncher.exe 6080 RegCloseKey HKLM\System\CurrentControlSet\Services\WinSock2\Parameters\NameSpace_Catalog5\Catalog_Entries\000000000004 SUCCESS 98 12:38:33,5034882 MCLauncher.exe 6080 RegQueryKey HKLM\System\CurrentControlSet\Services\WinSock2\Parameters\NameSpace_Catalog5\Catalog_Entries SUCCESS Query: HandleTags, HandleTags: 0x400 98 12:38:33,5034943 MCLauncher.exe 6080 RegOpenKey HKLM\System\CurrentControlSet\Services\WinSock2\Parameters\NameSpace_Catalog5\Catalog_Entries\000000000005 SUCCESS Desired Access: Read 98 12:38:33,5035020 MCLauncher.exe 6080 RegQueryValue HKLM\System\CurrentControlSet\Services\WinSock2\Parameters\NameSpace_Catalog5\Catalog_Entries\000000000005\LibraryPath SUCCESS Type: REG_SZ, Length: 68, Data: %SystemRoot%\System32\mswsock.dll 98 12:38:33,5035148 MCLauncher.exe 6080 RegQueryValue HKLM\System\CurrentControlSet\Services\WinSock2\Parameters\NameSpace_Catalog5\Catalog_Entries\000000000005\LibraryPath SUCCESS Type: REG_SZ, Length: 68, Data: %SystemRoot%\System32\mswsock.dll 98 12:38:33,5035272 MCLauncher.exe 6080 RegQueryValue HKLM\System\CurrentControlSet\Services\WinSock2\Parameters\NameSpace_Catalog5\Catalog_Entries\000000000005\DisplayString SUCCESS Type: REG_SZ, Length: 86, Data: @%SystemRoot%\system32\wshtcpip.dll,-60103 98 12:38:33,5035397 MCLauncher.exe 6080 RegQueryValue HKLM\System\CurrentControlSet\Services\WinSock2\Parameters\NameSpace_Catalog5\Catalog_Entries\000000000005\DisplayString SUCCESS Type: REG_SZ, Length: 86, Data: @%SystemRoot%\system32\wshtcpip.dll,-60103 98 12:38:33,5035525 MCLauncher.exe 6080 RegQueryValue HKLM\System\CurrentControlSet\Services\WinSock2\Parameters\NameSpace_Catalog5\Catalog_Entries\000000000005\DisplayString SUCCESS Type: REG_SZ, Length: 86, Data: @%SystemRoot%\system32\wshtcpip.dll,-60103 98 12:38:33,5035646 MCLauncher.exe 6080 RegQueryValue HKLM\System\CurrentControlSet\Services\WinSock2\Parameters\NameSpace_Catalog5\Catalog_Entries\000000000005\DisplayString SUCCESS Type: REG_SZ, Length: 86, Data: @%SystemRoot%\system32\wshtcpip.dll,-60103 98 12:38:33,5035774 MCLauncher.exe 6080 RegQueryValue HKLM\System\CurrentControlSet\Services\WinSock2\Parameters\NameSpace_Catalog5\Catalog_Entries\000000000005\ProviderId SUCCESS Type: REG_BINARY, Length: 16, Data: 40 9D 05 22 9E 7E CF 11 AE 5A 00 AA 00 A7 11 2B 98 12:38:33,5035896 MCLauncher.exe 6080 RegQueryValue HKLM\System\CurrentControlSet\Services\WinSock2\Parameters\NameSpace_Catalog5\Catalog_Entries\000000000005\AddressFamily NAME NOT FOUND Length: 144 98 12:38:33,5036004 MCLauncher.exe 6080 RegQueryValue HKLM\System\CurrentControlSet\Services\WinSock2\Parameters\NameSpace_Catalog5\Catalog_Entries\000000000005\SupportedNameSpace SUCCESS Type: REG_DWORD, Length: 4, Data: 12 98 12:38:33,5036126 MCLauncher.exe 6080 RegQueryValue HKLM\System\CurrentControlSet\Services\WinSock2\Parameters\NameSpace_Catalog5\Catalog_Entries\000000000005\Enabled SUCCESS Type: REG_DWORD, Length: 4, Data: 1 98 12:38:33,5036248 MCLauncher.exe 6080 RegQueryValue HKLM\System\CurrentControlSet\Services\WinSock2\Parameters\NameSpace_Catalog5\Catalog_Entries\000000000005\Version SUCCESS Type: REG_DWORD, Length: 4, Data: 0 98 12:38:33,5036367 MCLauncher.exe 6080 RegQueryValue HKLM\System\CurrentControlSet\Services\WinSock2\Parameters\NameSpace_Catalog5\Catalog_Entries\000000000005\StoresServiceClassInfo SUCCESS Type: REG_DWORD, Length: 4, Data: 0 98 12:38:33,5036489 MCLauncher.exe 6080 RegQueryValue HKLM\System\CurrentControlSet\Services\WinSock2\Parameters\NameSpace_Catalog5\Catalog_Entries\000000000005\ProviderInfo SUCCESS Type: REG_BINARY, Length: 0 98 12:38:33,5036611 MCLauncher.exe 6080 RegQueryValue HKLM\System\CurrentControlSet\Services\WinSock2\Parameters\NameSpace_Catalog5\Catalog_Entries\000000000005\ProviderInfo SUCCESS Type: REG_BINARY, Length: 0 98 12:38:33,5036738 MCLauncher.exe 6080 RegCloseKey HKLM\System\CurrentControlSet\Services\WinSock2\Parameters\NameSpace_Catalog5\Catalog_Entries\000000000005 SUCCESS 98 12:38:33,5036813 MCLauncher.exe 6080 RegQueryKey HKLM\System\CurrentControlSet\Services\WinSock2\Parameters\NameSpace_Catalog5\Catalog_Entries SUCCESS Query: HandleTags, HandleTags: 0x400 98 12:38:33,5036874 MCLauncher.exe 6080 RegOpenKey HKLM\System\CurrentControlSet\Services\WinSock2\Parameters\NameSpace_Catalog5\Catalog_Entries\000000000006 SUCCESS Desired Access: Read 98 12:38:33,5036951 MCLauncher.exe 6080 RegQueryValue HKLM\System\CurrentControlSet\Services\WinSock2\Parameters\NameSpace_Catalog5\Catalog_Entries\000000000006\LibraryPath SUCCESS Type: REG_SZ, Length: 66, Data: %SystemRoot%\System32\winrnr.dll 98 12:38:33,5037137 MCLauncher.exe 6080 RegQueryValue HKLM\System\CurrentControlSet\Services\WinSock2\Parameters\NameSpace_Catalog5\Catalog_Entries\000000000006\LibraryPath SUCCESS Type: REG_SZ, Length: 66, Data: %SystemRoot%\System32\winrnr.dll 98 12:38:33,5037264 MCLauncher.exe 6080 RegQueryValue HKLM\System\CurrentControlSet\Services\WinSock2\Parameters\NameSpace_Catalog5\Catalog_Entries\000000000006\DisplayString SUCCESS Type: REG_SZ, Length: 80, Data: @%SystemRoot%\System32\winrnr.dll,-1000 98 12:38:33,5037389 MCLauncher.exe 6080 RegQueryValue HKLM\System\CurrentControlSet\Services\WinSock2\Parameters\NameSpace_Catalog5\Catalog_Entries\000000000006\DisplayString SUCCESS Type: REG_SZ, Length: 80, Data: @%SystemRoot%\System32\winrnr.dll,-1000 98 12:38:33,5037517 MCLauncher.exe 6080 RegQueryValue HKLM\System\CurrentControlSet\Services\WinSock2\Parameters\NameSpace_Catalog5\Catalog_Entries\000000000006\DisplayString SUCCESS Type: REG_SZ, Length: 80, Data: @%SystemRoot%\System32\winrnr.dll,-1000 98 12:38:33,5037636 MCLauncher.exe 6080 RegQueryValue HKLM\System\CurrentControlSet\Services\WinSock2\Parameters\NameSpace_Catalog5\Catalog_Entries\000000000006\DisplayString SUCCESS Type: REG_SZ, Length: 80, Data: @%SystemRoot%\System32\winrnr.dll,-1000 98 12:38:33,5037760 MCLauncher.exe 6080 RegQueryValue HKLM\System\CurrentControlSet\Services\WinSock2\Parameters\NameSpace_Catalog5\Catalog_Entries\000000000006\ProviderId SUCCESS Type: REG_BINARY, Length: 16, Data: EE 37 26 3B 80 E5 CF 11 A5 55 00 C0 4F D8 D4 AC 98 12:38:33,5037885 MCLauncher.exe 6080 RegQueryValue HKLM\System\CurrentControlSet\Services\WinSock2\Parameters\NameSpace_Catalog5\Catalog_Entries\000000000006\AddressFamily NAME NOT FOUND Length: 144 98 12:38:33,5037993 MCLauncher.exe 6080 RegQueryValue HKLM\System\CurrentControlSet\Services\WinSock2\Parameters\NameSpace_Catalog5\Catalog_Entries\000000000006\SupportedNameSpace SUCCESS Type: REG_DWORD, Length: 4, Data: 32 98 12:38:33,5038112 MCLauncher.exe 6080 RegQueryValue HKLM\System\CurrentControlSet\Services\WinSock2\Parameters\NameSpace_Catalog5\Catalog_Entries\000000000006\Enabled SUCCESS Type: REG_DWORD, Length: 4, Data: 1 98 12:38:33,5038234 MCLauncher.exe 6080 RegQueryValue HKLM\System\CurrentControlSet\Services\WinSock2\Parameters\NameSpace_Catalog5\Catalog_Entries\000000000006\Version SUCCESS Type: REG_DWORD, Length: 4, Data: 0 98 12:38:33,5038359 MCLauncher.exe 6080 RegQueryValue HKLM\System\CurrentControlSet\Services\WinSock2\Parameters\NameSpace_Catalog5\Catalog_Entries\000000000006\StoresServiceClassInfo SUCCESS Type: REG_DWORD, Length: 4, Data: 0 98 12:38:33,5038481 MCLauncher.exe 6080 RegQueryValue HKLM\System\CurrentControlSet\Services\WinSock2\Parameters\NameSpace_Catalog5\Catalog_Entries\000000000006\ProviderInfo SUCCESS Type: REG_BINARY, Length: 0 98 12:38:33,5038600 MCLauncher.exe 6080 RegQueryValue HKLM\System\CurrentControlSet\Services\WinSock2\Parameters\NameSpace_Catalog5\Catalog_Entries\000000000006\ProviderInfo SUCCESS Type: REG_BINARY, Length: 0 98 12:38:33,5038725 MCLauncher.exe 6080 RegCloseKey HKLM\System\CurrentControlSet\Services\WinSock2\Parameters\NameSpace_Catalog5\Catalog_Entries\000000000006 SUCCESS 98 12:38:33,5038766 MCLauncher.exe 6080 RegCloseKey HKLM\System\CurrentControlSet\Services\WinSock2\Parameters\NameSpace_Catalog5\Catalog_Entries SUCCESS 98 12:38:33,5038816 MCLauncher.exe 6080 RegCloseKey HKLM\System\CurrentControlSet\Services\WinSock2\Parameters SUCCESS 98 12:38:33,5038930 MCLauncher.exe 6080 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 98 12:38:33,5038982 MCLauncher.exe 6080 RegQueryKey HKLM SUCCESS Query: Name 98 12:38:33,5039065 MCLauncher.exe 6080 RegOpenKey HKLM\System\CurrentControlSet\Services\Winsock2\Parameters REPARSE Desired Access: Query Value 98 12:38:33,5039143 MCLauncher.exe 6080 RegOpenKey HKLM\System\CurrentControlSet\Services\Winsock2\Parameters SUCCESS Desired Access: Query Value 98 12:38:33,5039218 MCLauncher.exe 6080 RegSetInfoKey HKLM\System\CurrentControlSet\Services\WinSock2\Parameters SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 98 12:38:33,5039268 MCLauncher.exe 6080 RegQueryValue HKLM\System\CurrentControlSet\Services\WinSock2\Parameters\Ws2_32NumHandleBuckets NAME NOT FOUND Length: 144 98 12:38:33,5039392 MCLauncher.exe 6080 RegCloseKey HKLM\System\CurrentControlSet\Services\WinSock2\Parameters SUCCESS 98 12:38:33,5041118 MCLauncher.exe 6080 RegQueryKey HKCU SUCCESS Query: HandleTags, HandleTags: 0x0 98 12:38:33,5041177 MCLauncher.exe 6080 RegQueryKey HKCU SUCCESS Query: Name 98 12:38:33,5041273 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Python\PythonCore\MCLauncher\Modules\functools NAME NOT FOUND Desired Access: Query Value 98 12:38:33,5041393 MCLauncher.exe 6080 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 98 12:38:33,5041437 MCLauncher.exe 6080 RegQueryKey HKLM SUCCESS Query: Name 98 12:38:33,5041526 MCLauncher.exe 6080 RegOpenKey HKLM\Software\WOW6432Node\Python\PythonCore\MCLauncher\Modules\functools NAME NOT FOUND Desired Access: Query Value 98 12:38:33,5042966 MCLauncher.exe 6080 CreateFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Desired Access: Generic Read, Disposition: Open, Options: Synchronous IO Non-Alert, Non-Directory File, Attributes: N, ShareMode: Read, Write, AllocationSize: n/a, OpenResult: Opened 98 12:38:33,5043249 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 2 086 051, Length: 4 096, Priority: Normal 98 12:38:33,5043454 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 2 086 077, Length: 512 98 12:38:33,5043728 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 2 086 094, Length: 1 024 98 12:38:33,5043806 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 2 087 118, Length: 512 98 12:38:33,5043894 MCLauncher.exe 6080 CloseFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS 98 12:38:33,5045161 MCLauncher.exe 6080 RegQueryKey HKCU SUCCESS Query: HandleTags, HandleTags: 0x0 98 12:38:33,5045224 MCLauncher.exe 6080 RegQueryKey HKCU SUCCESS Query: Name 98 12:38:33,5045327 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Python\PythonCore\MCLauncher\Modules\_ssl NAME NOT FOUND Desired Access: Query Value 98 12:38:33,5045454 MCLauncher.exe 6080 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 98 12:38:33,5045501 MCLauncher.exe 6080 RegQueryKey HKLM SUCCESS Query: Name 98 12:38:33,5045590 MCLauncher.exe 6080 RegOpenKey HKLM\Software\WOW6432Node\Python\PythonCore\MCLauncher\Modules\_ssl NAME NOT FOUND Desired Access: Query Value 98 12:38:33,5046856 MCLauncher.exe 6080 CreateFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Desired Access: Generic Read, Disposition: Open, Options: Synchronous IO Non-Alert, Non-Directory File, Attributes: N, ShareMode: Read, Write, AllocationSize: n/a, OpenResult: Opened 98 12:38:33,5047092 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 3 190 545, Length: 4 096, Priority: Normal 98 12:38:33,5047216 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 3 190 571, Length: 512 98 12:38:33,5048491 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 3 190 583, Length: 590 848 98 12:38:33,5048895 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 3 276 800, Length: 507 904, I/O Flags: Non-cached, Paging I/O, Priority: Normal 98 12:38:33,5154983 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 3 781 431, Length: 512 98 12:38:33,5155858 MCLauncher.exe 6080 CloseFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS 98 12:38:33,5227735 MCLauncher.exe 6080 Load Image C:\Windows\SysWOW64\crypt32.dll SUCCESS Image Base: 0x753e0000, Image Size: 0x17d000 98 12:38:33,5228888 MCLauncher.exe 6080 Load Image C:\Windows\SysWOW64\msasn1.dll SUCCESS Image Base: 0x751d0000, Image Size: 0xe000 98 12:38:33,5231761 MCLauncher.exe 6080 CreateFile C:\Windows\SysWOW64\msasn1.dll SUCCESS Desired Access: Read Control, Disposition: Open, Options: , Attributes: n/a, ShareMode: Read, Delete, AllocationSize: n/a, OpenResult: Opened 98 12:38:33,5232110 MCLauncher.exe 6080 QuerySecurityFile C:\Windows\SysWOW64\msasn1.dll BUFFER OVERFLOW Information: Owner 98 12:38:33,5232204 MCLauncher.exe 6080 QuerySecurityFile C:\Windows\SysWOW64\msasn1.dll SUCCESS Information: Owner 98 12:38:33,5232284 MCLauncher.exe 6080 CloseFile C:\Windows\SysWOW64\msasn1.dll SUCCESS 98 12:38:33,5233453 MCLauncher.exe 6080 CreateFile C:\Windows\SysWOW64\crypt32.dll SUCCESS Desired Access: Read Control, Disposition: Open, Options: , Attributes: n/a, ShareMode: Read, Delete, AllocationSize: n/a, OpenResult: Opened 98 12:38:33,5233728 MCLauncher.exe 6080 QuerySecurityFile C:\Windows\SysWOW64\crypt32.dll BUFFER OVERFLOW Information: Owner 98 12:38:33,5233803 MCLauncher.exe 6080 QuerySecurityFile C:\Windows\SysWOW64\crypt32.dll SUCCESS Information: Owner 98 12:38:33,5233869 MCLauncher.exe 6080 CloseFile C:\Windows\SysWOW64\crypt32.dll SUCCESS 98 12:38:33,5250454 MCLauncher.exe 6080 RegQueryKey HKCU SUCCESS Query: HandleTags, HandleTags: 0x0 98 12:38:33,5250553 MCLauncher.exe 6080 RegQueryKey HKCU SUCCESS Query: Name 98 12:38:33,5250689 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Python\PythonCore\MCLauncher\Modules\subprocess NAME NOT FOUND Desired Access: Query Value 98 12:38:33,5250872 MCLauncher.exe 6080 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 98 12:38:33,5250922 MCLauncher.exe 6080 RegQueryKey HKLM SUCCESS Query: Name 98 12:38:33,5251027 MCLauncher.exe 6080 RegOpenKey HKLM\Software\WOW6432Node\Python\PythonCore\MCLauncher\Modules\subprocess NAME NOT FOUND Desired Access: Query Value 98 12:38:33,5252335 MCLauncher.exe 6080 CreateFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Desired Access: Generic Read, Disposition: Open, Options: Synchronous IO Non-Alert, Non-Directory File, Attributes: N, ShareMode: Read, Write, AllocationSize: n/a, OpenResult: Opened 98 12:38:33,5252626 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 2 480 566, Length: 4 096, Priority: Normal 98 12:38:33,5252856 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 2 480 592, Length: 512 98 12:38:33,5252950 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 2 480 610, Length: 10 240 98 12:38:33,5253086 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 2 486 272, Length: 8 192, I/O Flags: Non-cached, Paging I/O, Priority: Normal 98 12:38:33,5257330 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 2 490 850, Length: 512 98 12:38:33,5257901 MCLauncher.exe 6080 CloseFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS 98 12:38:33,5265850 MCLauncher.exe 6080 RegQueryKey HKCU SUCCESS Query: HandleTags, HandleTags: 0x0 98 12:38:33,5265933 MCLauncher.exe 6080 RegQueryKey HKCU SUCCESS Query: Name 98 12:38:33,5266049 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Python\PythonCore\MCLauncher\Modules\win32com NAME NOT FOUND Desired Access: Query Value 98 12:38:33,5266188 MCLauncher.exe 6080 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 98 12:38:33,5266237 MCLauncher.exe 6080 RegQueryKey HKLM SUCCESS Query: Name 98 12:38:33,5266332 MCLauncher.exe 6080 RegOpenKey HKLM\Software\WOW6432Node\Python\PythonCore\MCLauncher\Modules\win32com NAME NOT FOUND Desired Access: Query Value 98 12:38:33,5267576 MCLauncher.exe 6080 CreateFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Desired Access: Generic Read, Disposition: Open, Options: Synchronous IO Non-Alert, Non-Directory File, Attributes: N, ShareMode: Read, Write, AllocationSize: n/a, OpenResult: Opened 98 12:38:33,5267833 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 2 385 857, Length: 4 096, Priority: Normal 98 12:38:33,5268149 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 2 383 872, Length: 8 192, I/O Flags: Non-cached, Paging I/O, Priority: Normal 98 12:38:33,5271114 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 2 385 883, Length: 512 98 12:38:33,5271247 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 2 385 908, Length: 1 024 98 12:38:33,5271316 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 2 386 932, Length: 512 98 12:38:33,5271892 MCLauncher.exe 6080 CloseFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS 98 12:38:33,5277500 MCLauncher.exe 6080 CreateFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe NOT A DIRECTORY Desired Access: Read Data/List Directory, Synchronize, Disposition: Open, Options: Directory, Synchronous IO Non-Alert, Attributes: n/a, ShareMode: Read, Write, Delete, AllocationSize: n/a 98 12:38:33,5278622 MCLauncher.exe 6080 CreateFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe NOT A DIRECTORY Desired Access: Read Data/List Directory, Synchronize, Disposition: Open, Options: Directory, Synchronous IO Non-Alert, Attributes: n/a, ShareMode: Read, Write, Delete, AllocationSize: n/a 98 12:38:33,5279611 MCLauncher.exe 6080 CreateFile C:\Users\User\AppData\Roaming\MCLauncher SUCCESS Desired Access: Read Data/List Directory, Synchronize, Disposition: Open, Options: Directory, Synchronous IO Non-Alert, Attributes: n/a, ShareMode: Read, Write, Delete, AllocationSize: n/a, OpenResult: Opened 98 12:38:33,5279816 MCLauncher.exe 6080 QueryDirectory C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Filter: MCLauncher.exe, 1: MCLauncher.exe 98 12:38:33,5280038 MCLauncher.exe 6080 CloseFile C:\Users\User\AppData\Roaming\MCLauncher SUCCESS 98 12:38:33,5280423 MCLauncher.exe 6080 RegQueryKey HKCU SUCCESS Query: HandleTags, HandleTags: 0x0 98 12:38:33,5280489 MCLauncher.exe 6080 RegQueryKey HKCU SUCCESS Query: Name 98 12:38:33,5280594 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Python\PythonCore\MCLauncher\Modules\win32api NAME NOT FOUND Desired Access: Query Value 98 12:38:33,5280716 MCLauncher.exe 6080 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 98 12:38:33,5280764 MCLauncher.exe 6080 RegQueryKey HKLM SUCCESS Query: Name 98 12:38:33,5280852 MCLauncher.exe 6080 RegOpenKey HKLM\Software\WOW6432Node\Python\PythonCore\MCLauncher\Modules\win32api NAME NOT FOUND Desired Access: Query Value 98 12:38:33,5282057 MCLauncher.exe 6080 CreateFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Desired Access: Generic Read, Disposition: Open, Options: Synchronous IO Non-Alert, Non-Directory File, Attributes: N, ShareMode: Read, Write, AllocationSize: n/a, OpenResult: Opened 98 12:38:33,5282287 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 6 876 773, Length: 4 096, Priority: Normal 98 12:38:33,5282437 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 6 876 799, Length: 512 98 12:38:33,5282526 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 6 876 815, Length: 39 936 98 12:38:33,5282650 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 6 916 751, Length: 512 98 12:38:33,5282733 MCLauncher.exe 6080 CloseFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS 98 12:38:33,5289111 MCLauncher.exe 6080 CreateFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Desired Access: Generic Read, Disposition: Open, Options: Synchronous IO Non-Alert, Non-Directory File, Attributes: N, ShareMode: Read, Write, AllocationSize: n/a, OpenResult: Opened 98 12:38:33,5289355 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 8 348 909, Length: 4 096, Priority: Normal 98 12:38:33,5289521 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 8 348 935, Length: 512 98 12:38:33,5289615 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 8 348 955, Length: 42 496 98 12:38:33,5290873 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 8 391 451, Length: 512 98 12:38:33,5290973 MCLauncher.exe 6080 CloseFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS 98 12:38:33,5306109 MCLauncher.exe 6080 CreateFile C:\Users\User\AppData\Roaming\MCLauncher\secur32.dll NAME NOT FOUND Desired Access: Read Attributes, Disposition: Open, Options: Open Reparse Point, Attributes: n/a, ShareMode: Read, Write, Delete, AllocationSize: n/a 98 12:38:33,5308585 MCLauncher.exe 6080 CreateFile C:\Windows\SysWOW64\secur32.dll SUCCESS Desired Access: Read Attributes, Disposition: Open, Options: Open Reparse Point, Attributes: n/a, ShareMode: Read, Write, Delete, AllocationSize: n/a, OpenResult: Opened 98 12:38:33,5308879 MCLauncher.exe 6080 QueryBasicInformationFile C:\Windows\SysWOW64\secur32.dll SUCCESS CreationTime: 16.07.2016 14:43:01, LastAccessTime: 16.07.2016 14:43:01, LastWriteTime: 16.07.2016 14:43:01, ChangeTime: 19.07.2018 19:38:51, FileAttributes: A 98 12:38:33,5308973 MCLauncher.exe 6080 CloseFile C:\Windows\SysWOW64\secur32.dll SUCCESS 98 12:38:33,5309976 MCLauncher.exe 6080 CreateFile C:\Windows\SysWOW64\secur32.dll SUCCESS Desired Access: Read Data/List Directory, Execute/Traverse, Synchronize, Disposition: Open, Options: Synchronous IO Non-Alert, Non-Directory File, Attributes: n/a, ShareMode: Read, Delete, AllocationSize: n/a, OpenResult: Opened 98 12:38:33,5310276 MCLauncher.exe 6080 CreateFileMapping C:\Windows\SysWOW64\secur32.dll FILE LOCKED WITH ONLY READERS SyncType: SyncTypeCreateSection, PageProtection: PAGE_EXECUTE|PAGE_NOCACHE 98 12:38:33,5310453 MCLauncher.exe 6080 QueryNameInformationFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Name: \Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe 98 12:38:33,5311328 MCLauncher.exe 6080 CreateFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Desired Access: Synchronize, Disposition: Open, Options: Synchronous IO Non-Alert, Attributes: N, ShareMode: Read, Write, Delete, AllocationSize: n/a, OpenResult: Opened 98 12:38:33,5311517 MCLauncher.exe 6080 CloseFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS 98 12:38:33,5311819 MCLauncher.exe 6080 QueryNameInformationFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Name: \Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe 98 12:38:33,5312664 MCLauncher.exe 6080 CreateFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Desired Access: Synchronize, Disposition: Open, Options: Synchronous IO Non-Alert, Attributes: N, ShareMode: Read, Write, Delete, AllocationSize: n/a, OpenResult: Opened 98 12:38:33,5312836 MCLauncher.exe 6080 CloseFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS 98 12:38:33,5313586 MCLauncher.exe 6080 CreateFileMapping C:\Windows\SysWOW64\secur32.dll SUCCESS SyncType: SyncTypeOther 98 12:38:33,5314174 MCLauncher.exe 6080 Load Image C:\Windows\SysWOW64\secur32.dll SUCCESS Image Base: 0x73ae0000, Image Size: 0xa000 98 12:38:33,5314897 MCLauncher.exe 6080 CloseFile C:\Windows\SysWOW64\secur32.dll SUCCESS 98 12:38:33,5316055 MCLauncher.exe 6080 CreateFile C:\Windows\SysWOW64\secur32.dll SUCCESS Desired Access: Read Control, Disposition: Open, Options: , Attributes: n/a, ShareMode: Read, Delete, AllocationSize: n/a, OpenResult: Opened 98 12:38:33,5316329 MCLauncher.exe 6080 QuerySecurityFile C:\Windows\SysWOW64\secur32.dll BUFFER OVERFLOW Information: Owner 98 12:38:33,5316410 MCLauncher.exe 6080 QuerySecurityFile C:\Windows\SysWOW64\secur32.dll SUCCESS Information: Owner 98 12:38:33,5316479 MCLauncher.exe 6080 CloseFile C:\Windows\SysWOW64\secur32.dll SUCCESS 98 12:38:33,5317509 MCLauncher.exe 6080 RegQueryKey HKCU SUCCESS Query: HandleTags, HandleTags: 0x0 98 12:38:33,5317581 MCLauncher.exe 6080 RegQueryKey HKCU SUCCESS Query: Name 98 12:38:33,5317690 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Python\PythonCore\MCLauncher\Modules\pythoncom NAME NOT FOUND Desired Access: Query Value 98 12:38:33,5317820 MCLauncher.exe 6080 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 98 12:38:33,5317870 MCLauncher.exe 6080 RegQueryKey HKLM SUCCESS Query: Name 98 12:38:33,5317958 MCLauncher.exe 6080 RegOpenKey HKLM\Software\WOW6432Node\Python\PythonCore\MCLauncher\Modules\pythoncom NAME NOT FOUND Desired Access: Query Value 98 12:38:33,5319186 MCLauncher.exe 6080 CreateFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Desired Access: Generic Read, Disposition: Open, Options: Synchronous IO Non-Alert, Non-Directory File, Attributes: N, ShareMode: Read, Write, AllocationSize: n/a, OpenResult: Opened 98 12:38:33,5319418 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 079 147, Length: 4 096, Priority: Normal 98 12:38:33,5319576 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 079 173, Length: 512 98 12:38:33,5319673 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 079 192, Length: 142 848 98 12:38:33,5319961 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 17 222 040, Length: 512 98 12:38:33,5320050 MCLauncher.exe 6080 CloseFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS 98 12:38:33,5347512 MCLauncher.exe 6080 CreateFile C:\Windows\SysWOW64\rpcss.dll NAME NOT FOUND Desired Access: Read Attributes, Disposition: Open, Options: Open Reparse Point, Attributes: n/a, ShareMode: Read, Write, Delete, AllocationSize: n/a 98 12:38:33,5352191 MCLauncher.exe 6080 CreateFile C:\Windows\SysWOW64\uxtheme.dll SUCCESS Desired Access: Read Attributes, Disposition: Open, Options: Open Reparse Point, Attributes: n/a, ShareMode: Read, Write, Delete, AllocationSize: n/a, OpenResult: Opened 98 12:38:33,5352507 MCLauncher.exe 6080 QueryBasicInformationFile C:\Windows\SysWOW64\uxtheme.dll SUCCESS CreationTime: 16.07.2016 14:43:04, LastAccessTime: 16.07.2016 14:43:04, LastWriteTime: 16.07.2016 14:43:04, ChangeTime: 19.07.2018 19:40:16, FileAttributes: A 98 12:38:33,5352615 MCLauncher.exe 6080 CloseFile C:\Windows\SysWOW64\uxtheme.dll SUCCESS 98 12:38:33,5353660 MCLauncher.exe 6080 CreateFile C:\Windows\SysWOW64\uxtheme.dll SUCCESS Desired Access: Read Data/List Directory, Execute/Traverse, Synchronize, Disposition: Open, Options: Synchronous IO Non-Alert, Non-Directory File, Attributes: n/a, ShareMode: Read, Delete, AllocationSize: n/a, OpenResult: Opened 98 12:38:33,5353956 MCLauncher.exe 6080 CreateFileMapping C:\Windows\SysWOW64\uxtheme.dll FILE LOCKED WITH ONLY READERS SyncType: SyncTypeCreateSection, PageProtection: PAGE_EXECUTE|PAGE_NOCACHE 98 12:38:33,5354131 MCLauncher.exe 6080 QueryNameInformationFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Name: \Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe 98 12:38:33,5355150 MCLauncher.exe 6080 CreateFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Desired Access: Synchronize, Disposition: Open, Options: Synchronous IO Non-Alert, Attributes: N, ShareMode: Read, Write, Delete, AllocationSize: n/a, OpenResult: Opened 98 12:38:33,5355361 MCLauncher.exe 6080 CloseFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS 98 12:38:33,5355693 MCLauncher.exe 6080 QueryNameInformationFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Name: \Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe 98 12:38:33,5357478 MCLauncher.exe 6080 CreateFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Desired Access: Synchronize, Disposition: Open, Options: Synchronous IO Non-Alert, Attributes: N, ShareMode: Read, Write, Delete, AllocationSize: n/a, OpenResult: Opened 98 12:38:33,5357663 MCLauncher.exe 6080 CloseFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS 98 12:38:33,5358525 MCLauncher.exe 6080 CreateFileMapping C:\Windows\SysWOW64\uxtheme.dll SUCCESS SyncType: SyncTypeOther 98 12:38:33,5359123 MCLauncher.exe 6080 Load Image C:\Windows\SysWOW64\uxtheme.dll SUCCESS Image Base: 0x74110000, Image Size: 0x75000 98 12:38:33,5360406 MCLauncher.exe 6080 CloseFile C:\Windows\SysWOW64\uxtheme.dll SUCCESS 98 12:38:33,5361608 MCLauncher.exe 6080 CreateFile C:\Windows\SysWOW64\uxtheme.dll SUCCESS Desired Access: Read Control, Disposition: Open, Options: , Attributes: n/a, ShareMode: Read, Delete, AllocationSize: n/a, OpenResult: Opened 98 12:38:33,5361905 MCLauncher.exe 6080 QuerySecurityFile C:\Windows\SysWOW64\uxtheme.dll BUFFER OVERFLOW Information: Owner 98 12:38:33,5361996 MCLauncher.exe 6080 QuerySecurityFile C:\Windows\SysWOW64\uxtheme.dll SUCCESS Information: Owner 98 12:38:33,5362077 MCLauncher.exe 6080 CloseFile C:\Windows\SysWOW64\uxtheme.dll SUCCESS 98 12:38:33,5402247 MCLauncher.exe 6080 CreateFile C:\Program Files (x86)\360\Total Security\safemon\safemon.dll SUCCESS Desired Access: Read Attributes, Disposition: Open, Options: Open Reparse Point, Attributes: n/a, ShareMode: Read, Write, Delete, AllocationSize: n/a, OpenResult: Opened 98 12:38:33,5402474 MCLauncher.exe 6080 QueryBasicInformationFile C:\Program Files (x86)\360\Total Security\safemon\safemon.dll SUCCESS CreationTime: 20.07.2018 20:11:59, LastAccessTime: 20.07.2018 20:11:59, LastWriteTime: 20.07.2018 13:54:12, ChangeTime: 20.07.2018 20:09:33, FileAttributes: A 98 12:38:33,5402582 MCLauncher.exe 6080 CloseFile C:\Program Files (x86)\360\Total Security\safemon\safemon.dll SUCCESS 98 12:38:33,5403577 MCLauncher.exe 6080 CreateFile C:\Program Files (x86)\360\Total Security\safemon\safemon.dll SUCCESS Desired Access: Read Data/List Directory, Execute/Traverse, Synchronize, Disposition: Open, Options: Synchronous IO Non-Alert, Non-Directory File, Attributes: n/a, ShareMode: Read, Delete, AllocationSize: n/a, OpenResult: Opened 98 12:38:33,5403796 MCLauncher.exe 6080 CreateFileMapping C:\Program Files (x86)\360\Total Security\safemon\safemon.dll FILE LOCKED WITH ONLY READERS SyncType: SyncTypeCreateSection, PageProtection: PAGE_EXECUTE|PAGE_NOCACHE 98 12:38:33,5403965 MCLauncher.exe 6080 QueryNameInformationFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Name: \Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe 98 12:38:33,5405023 MCLauncher.exe 6080 CreateFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Desired Access: Synchronize, Disposition: Open, Options: Synchronous IO Non-Alert, Attributes: N, ShareMode: Read, Write, Delete, AllocationSize: n/a, OpenResult: Opened 98 12:38:33,5405245 MCLauncher.exe 6080 CloseFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS 98 12:38:33,5405572 MCLauncher.exe 6080 QueryNameInformationFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Name: \Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe 98 12:38:33,5406453 MCLauncher.exe 6080 CreateFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Desired Access: Synchronize, Disposition: Open, Options: Synchronous IO Non-Alert, Attributes: N, ShareMode: Read, Write, Delete, AllocationSize: n/a, OpenResult: Opened 98 12:38:33,5406627 MCLauncher.exe 6080 CloseFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS 98 12:38:33,5407514 MCLauncher.exe 6080 CreateFileMapping C:\Program Files (x86)\360\Total Security\safemon\safemon.dll SUCCESS SyncType: SyncTypeOther 98 12:38:33,5408057 MCLauncher.exe 6080 Load Image C:\Program Files (x86)\360\Total Security\safemon\safemon.dll SUCCESS Image Base: 0x60750000, Image Size: 0x17c000 98 12:38:33,5408556 MCLauncher.exe 6080 RegOpenKey HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\SideBySide SUCCESS Desired Access: Read 98 12:38:33,5408750 MCLauncher.exe 6080 RegSetInfoKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\SideBySide SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 98 12:38:33,5408866 MCLauncher.exe 6080 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\SideBySide\PreferExternalManifest NAME NOT FOUND Length: 20 98 12:38:33,5409079 MCLauncher.exe 6080 RegCloseKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\SideBySide SUCCESS 98 12:38:33,5410054 MCLauncher.exe 6080 CreateFile C:\Program Files (x86)\360\Total Security\safemon\safemon.dll SUCCESS Desired Access: Generic Read, Disposition: Open, Options: Synchronous IO Non-Alert, Non-Directory File, Attributes: n/a, ShareMode: Read, Delete, AllocationSize: n/a, OpenResult: Opened 98 12:38:33,5410279 MCLauncher.exe 6080 QueryBasicInformationFile C:\Program Files (x86)\360\Total Security\safemon\safemon.dll SUCCESS CreationTime: 20.07.2018 20:11:59, LastAccessTime: 20.07.2018 20:11:59, LastWriteTime: 20.07.2018 13:54:12, ChangeTime: 20.07.2018 20:09:33, FileAttributes: A 98 12:38:33,5411052 MCLauncher.exe 6080 CloseFile C:\Program Files (x86)\360\Total Security\safemon\safemon.dll SUCCESS 98 12:38:33,5412052 MCLauncher.exe 6080 Load Image C:\Windows\SysWOW64\psapi.dll SUCCESS Image Base: 0x74d90000, Image Size: 0x6000 98 12:38:33,5412562 MCLauncher.exe 6080 CloseFile C:\Program Files (x86)\360\Total Security\safemon\safemon.dll SUCCESS 98 12:38:33,5415507 MCLauncher.exe 6080 CreateFile C:\Program Files (x86)\360\Total Security\safemon\NETAPI32.dll NAME NOT FOUND Desired Access: Read Attributes, Disposition: Open, Options: Open Reparse Point, Attributes: n/a, ShareMode: Read, Write, Delete, AllocationSize: n/a 98 12:38:33,5417879 MCLauncher.exe 6080 CreateFile C:\Windows\SysWOW64\netapi32.dll SUCCESS Desired Access: Read Attributes, Disposition: Open, Options: Open Reparse Point, Attributes: n/a, ShareMode: Read, Write, Delete, AllocationSize: n/a, OpenResult: Opened 98 12:38:33,5418167 MCLauncher.exe 6080 QueryBasicInformationFile C:\Windows\SysWOW64\netapi32.dll SUCCESS CreationTime: 16.07.2016 14:42:49, LastAccessTime: 16.07.2016 14:42:49, LastWriteTime: 16.07.2016 14:42:49, ChangeTime: 19.07.2018 19:37:31, FileAttributes: A 98 12:38:33,5418261 MCLauncher.exe 6080 CloseFile C:\Windows\SysWOW64\netapi32.dll SUCCESS 98 12:38:33,5419269 MCLauncher.exe 6080 CreateFile C:\Windows\SysWOW64\netapi32.dll SUCCESS Desired Access: Read Data/List Directory, Execute/Traverse, Synchronize, Disposition: Open, Options: Synchronous IO Non-Alert, Non-Directory File, Attributes: n/a, ShareMode: Read, Delete, AllocationSize: n/a, OpenResult: Opened 98 12:38:33,5419560 MCLauncher.exe 6080 CreateFileMapping C:\Windows\SysWOW64\netapi32.dll FILE LOCKED WITH ONLY READERS SyncType: SyncTypeCreateSection, PageProtection: PAGE_EXECUTE|PAGE_NOCACHE 98 12:38:33,5419693 MCLauncher.exe 6080 QueryNameInformationFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Name: \Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe 98 12:38:33,5420580 MCLauncher.exe 6080 CreateFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Desired Access: Synchronize, Disposition: Open, Options: Synchronous IO Non-Alert, Attributes: N, ShareMode: Read, Write, Delete, AllocationSize: n/a, OpenResult: Opened 98 12:38:33,5420768 MCLauncher.exe 6080 CloseFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS 98 12:38:33,5421079 MCLauncher.exe 6080 QueryNameInformationFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Name: \Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe 98 12:38:33,5421943 MCLauncher.exe 6080 CreateFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Desired Access: Synchronize, Disposition: Open, Options: Synchronous IO Non-Alert, Attributes: N, ShareMode: Read, Write, Delete, AllocationSize: n/a, OpenResult: Opened 98 12:38:33,5422117 MCLauncher.exe 6080 CloseFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS 98 12:38:33,5422821 MCLauncher.exe 6080 CreateFileMapping C:\Windows\SysWOW64\netapi32.dll SUCCESS SyncType: SyncTypeOther 98 12:38:33,5423397 MCLauncher.exe 6080 Load Image C:\Windows\SysWOW64\netapi32.dll SUCCESS Image Base: 0x71140000, Image Size: 0x13000 98 12:38:33,5423965 MCLauncher.exe 6080 CloseFile C:\Windows\SysWOW64\netapi32.dll SUCCESS 98 12:38:33,5427548 MCLauncher.exe 6080 CreateFile C:\Program Files (x86)\360\Total Security\safemon\NETUTILS.DLL NAME NOT FOUND Desired Access: Read Attributes, Disposition: Open, Options: Open Reparse Point, Attributes: n/a, ShareMode: Read, Write, Delete, AllocationSize: n/a 98 12:38:33,5429892 MCLauncher.exe 6080 CreateFile C:\Windows\SysWOW64\netutils.dll SUCCESS Desired Access: Read Attributes, Disposition: Open, Options: Open Reparse Point, Attributes: n/a, ShareMode: Read, Write, Delete, AllocationSize: n/a, OpenResult: Opened 98 12:38:33,5430160 MCLauncher.exe 6080 QueryBasicInformationFile C:\Windows\SysWOW64\netutils.dll SUCCESS CreationTime: 16.07.2016 14:42:55, LastAccessTime: 16.07.2016 14:42:55, LastWriteTime: 16.07.2016 14:42:55, ChangeTime: 19.07.2018 19:37:42, FileAttributes: A 98 12:38:33,5430260 MCLauncher.exe 6080 CloseFile C:\Windows\SysWOW64\netutils.dll SUCCESS 98 12:38:33,5431269 MCLauncher.exe 6080 CreateFile C:\Windows\SysWOW64\netutils.dll SUCCESS Desired Access: Read Data/List Directory, Execute/Traverse, Synchronize, Disposition: Open, Options: Synchronous IO Non-Alert, Non-Directory File, Attributes: n/a, ShareMode: Read, Delete, AllocationSize: n/a, OpenResult: Opened 98 12:38:33,5431557 MCLauncher.exe 6080 CreateFileMapping C:\Windows\SysWOW64\netutils.dll FILE LOCKED WITH ONLY READERS SyncType: SyncTypeCreateSection, PageProtection: PAGE_EXECUTE|PAGE_NOCACHE 98 12:38:33,5431687 MCLauncher.exe 6080 QueryNameInformationFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Name: \Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe 98 12:38:33,5432568 MCLauncher.exe 6080 CreateFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Desired Access: Synchronize, Disposition: Open, Options: Synchronous IO Non-Alert, Attributes: N, ShareMode: Read, Write, Delete, AllocationSize: n/a, OpenResult: Opened 98 12:38:33,5432756 MCLauncher.exe 6080 CloseFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS 98 12:38:33,5433067 MCLauncher.exe 6080 QueryNameInformationFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Name: \Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe 98 12:38:33,5434067 MCLauncher.exe 6080 CreateFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Desired Access: Synchronize, Disposition: Open, Options: Synchronous IO Non-Alert, Attributes: N, ShareMode: Read, Write, Delete, AllocationSize: n/a, OpenResult: Opened 98 12:38:33,5434327 MCLauncher.exe 6080 CloseFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS 98 12:38:33,5435053 MCLauncher.exe 6080 CreateFileMapping C:\Windows\SysWOW64\netutils.dll SUCCESS SyncType: SyncTypeOther 98 12:38:33,5435621 MCLauncher.exe 6080 Load Image C:\Windows\SysWOW64\netutils.dll SUCCESS Image Base: 0x70ca0000, Image Size: 0xb000 98 12:38:33,5436109 MCLauncher.exe 6080 CloseFile C:\Windows\SysWOW64\netutils.dll SUCCESS 98 12:38:33,5438796 MCLauncher.exe 6080 CreateFile C:\Program Files (x86)\360\Total Security\safemon\WKSCLI.DLL NAME NOT FOUND Desired Access: Read Attributes, Disposition: Open, Options: Open Reparse Point, Attributes: n/a, ShareMode: Read, Write, Delete, AllocationSize: n/a 98 12:38:33,5441126 MCLauncher.exe 6080 CreateFile C:\Windows\SysWOW64\wkscli.dll SUCCESS Desired Access: Read Attributes, Disposition: Open, Options: Open Reparse Point, Attributes: n/a, ShareMode: Read, Write, Delete, AllocationSize: n/a, OpenResult: Opened 98 12:38:33,5441392 MCLauncher.exe 6080 QueryBasicInformationFile C:\Windows\SysWOW64\wkscli.dll SUCCESS CreationTime: 16.07.2016 14:42:55, LastAccessTime: 16.07.2016 14:42:55, LastWriteTime: 16.07.2016 14:42:55, ChangeTime: 19.07.2018 19:41:08, FileAttributes: A 98 12:38:33,5441486 MCLauncher.exe 6080 CloseFile C:\Windows\SysWOW64\wkscli.dll SUCCESS 98 12:38:33,5442481 MCLauncher.exe 6080 CreateFile C:\Windows\SysWOW64\wkscli.dll SUCCESS Desired Access: Read Data/List Directory, Execute/Traverse, Synchronize, Disposition: Open, Options: Synchronous IO Non-Alert, Non-Directory File, Attributes: n/a, ShareMode: Read, Delete, AllocationSize: n/a, OpenResult: Opened 98 12:38:33,5442764 MCLauncher.exe 6080 CreateFileMapping C:\Windows\SysWOW64\wkscli.dll FILE LOCKED WITH ONLY READERS SyncType: SyncTypeCreateSection, PageProtection: PAGE_EXECUTE|PAGE_NOCACHE 98 12:38:33,5442894 MCLauncher.exe 6080 QueryNameInformationFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Name: \Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe 98 12:38:33,5443894 MCLauncher.exe 6080 CreateFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Desired Access: Synchronize, Disposition: Open, Options: Synchronous IO Non-Alert, Attributes: N, ShareMode: Read, Write, Delete, AllocationSize: n/a, OpenResult: Opened 98 12:38:33,5444085 MCLauncher.exe 6080 CloseFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS 98 12:38:33,5444398 MCLauncher.exe 6080 QueryNameInformationFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Name: \Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe 98 12:38:33,5445274 MCLauncher.exe 6080 CreateFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Desired Access: Synchronize, Disposition: Open, Options: Synchronous IO Non-Alert, Attributes: N, ShareMode: Read, Write, Delete, AllocationSize: n/a, OpenResult: Opened 98 12:38:33,5445446 MCLauncher.exe 6080 CloseFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS 98 12:38:33,5446135 MCLauncher.exe 6080 CreateFileMapping C:\Windows\SysWOW64\wkscli.dll SUCCESS SyncType: SyncTypeOther 98 12:38:33,5446667 MCLauncher.exe 6080 Load Image C:\Windows\SysWOW64\wkscli.dll SUCCESS Image Base: 0x70cb0000, Image Size: 0x10000 98 12:38:33,5447177 MCLauncher.exe 6080 CloseFile C:\Windows\SysWOW64\wkscli.dll SUCCESS 98 12:38:33,5448637 MCLauncher.exe 6080 CreateFile C:\Windows\SysWOW64\psapi.dll SUCCESS Desired Access: Read Control, Disposition: Open, Options: , Attributes: n/a, ShareMode: Read, Delete, AllocationSize: n/a, OpenResult: Opened 98 12:38:33,5448937 MCLauncher.exe 6080 QuerySecurityFile C:\Windows\SysWOW64\psapi.dll BUFFER OVERFLOW Information: Owner 98 12:38:33,5449033 MCLauncher.exe 6080 QuerySecurityFile C:\Windows\SysWOW64\psapi.dll SUCCESS Information: Owner 98 12:38:33,5449117 MCLauncher.exe 6080 CloseFile C:\Windows\SysWOW64\psapi.dll SUCCESS 98 12:38:33,5450233 MCLauncher.exe 6080 CreateFile C:\Windows\SysWOW64\netapi32.dll SUCCESS Desired Access: Read Control, Disposition: Open, Options: , Attributes: n/a, ShareMode: Read, Delete, AllocationSize: n/a, OpenResult: Opened 98 12:38:33,5450505 MCLauncher.exe 6080 QuerySecurityFile C:\Windows\SysWOW64\netapi32.dll BUFFER OVERFLOW Information: Owner 98 12:38:33,5450585 MCLauncher.exe 6080 QuerySecurityFile C:\Windows\SysWOW64\netapi32.dll SUCCESS Information: Owner 98 12:38:33,5450660 MCLauncher.exe 6080 CloseFile C:\Windows\SysWOW64\netapi32.dll SUCCESS 98 12:38:33,5451724 MCLauncher.exe 6080 CreateFile C:\Windows\SysWOW64\netutils.dll SUCCESS Desired Access: Read Control, Disposition: Open, Options: , Attributes: n/a, ShareMode: Read, Delete, AllocationSize: n/a, OpenResult: Opened 98 12:38:33,5451979 MCLauncher.exe 6080 QuerySecurityFile C:\Windows\SysWOW64\netutils.dll BUFFER OVERFLOW Information: Owner 98 12:38:33,5452056 MCLauncher.exe 6080 QuerySecurityFile C:\Windows\SysWOW64\netutils.dll SUCCESS Information: Owner 98 12:38:33,5452128 MCLauncher.exe 6080 CloseFile C:\Windows\SysWOW64\netutils.dll SUCCESS 98 12:38:33,5453162 MCLauncher.exe 6080 CreateFile C:\Windows\SysWOW64\wkscli.dll SUCCESS Desired Access: Read Control, Disposition: Open, Options: , Attributes: n/a, ShareMode: Read, Delete, AllocationSize: n/a, OpenResult: Opened 98 12:38:33,5453536 MCLauncher.exe 6080 QuerySecurityFile C:\Windows\SysWOW64\wkscli.dll BUFFER OVERFLOW Information: Owner 98 12:38:33,5453655 MCLauncher.exe 6080 QuerySecurityFile C:\Windows\SysWOW64\wkscli.dll SUCCESS Information: Owner 98 12:38:33,5453727 MCLauncher.exe 6080 CloseFile C:\Windows\SysWOW64\wkscli.dll SUCCESS 98 12:38:33,5454824 MCLauncher.exe 6080 CreateFile C:\Program Files (x86)\360\Total Security\safemon\safemon.dll SUCCESS Desired Access: Read Control, Disposition: Open, Options: , Attributes: n/a, ShareMode: Read, Delete, AllocationSize: n/a, OpenResult: Opened 98 12:38:33,5455010 MCLauncher.exe 6080 QuerySecurityFile C:\Program Files (x86)\360\Total Security\safemon\safemon.dll BUFFER OVERFLOW Information: Owner 98 12:38:33,5455087 MCLauncher.exe 6080 QuerySecurityFile C:\Program Files (x86)\360\Total Security\safemon\safemon.dll SUCCESS Information: Owner 98 12:38:33,5455159 MCLauncher.exe 6080 CloseFile C:\Program Files (x86)\360\Total Security\safemon\safemon.dll SUCCESS 98 12:38:33,5466729 MCLauncher.exe 6080 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 98 12:38:33,5466829 MCLauncher.exe 6080 RegQueryKey HKLM SUCCESS Query: Name 98 12:38:33,5466965 MCLauncher.exe 6080 RegOpenKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\App Paths\360safe.exe REPARSE Desired Access: Query Value 98 12:38:33,5467106 MCLauncher.exe 6080 RegOpenKey HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Paths\360safe.exe SUCCESS Desired Access: Query Value 98 12:38:33,5467208 MCLauncher.exe 6080 RegSetInfoKey HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Paths\360safe.exe SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 98 12:38:33,5467294 MCLauncher.exe 6080 RegQueryValue HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Paths\360safe.exe\Path SUCCESS Type: REG_SZ, Length: 84, Data: C:\Program Files (x86)\360\Total Security 98 12:38:33,5467530 MCLauncher.exe 6080 RegCloseKey HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Paths\360safe.exe SUCCESS 98 12:38:33,5469868 MCLauncher.exe 6080 CreateFile C:\Program Files (x86)\360\Total Security SUCCESS Desired Access: Read Attributes, Disposition: Open, Options: Open Reparse Point, Attributes: n/a, ShareMode: Read, Write, Delete, AllocationSize: n/a, OpenResult: Opened 98 12:38:33,5470045 MCLauncher.exe 6080 QueryBasicInformationFile C:\Program Files (x86)\360\Total Security SUCCESS CreationTime: 20.07.2018 20:11:30, LastAccessTime: 23.08.2018 15:02:29, LastWriteTime: 23.08.2018 15:02:29, ChangeTime: 23.08.2018 15:02:29, FileAttributes: DA 98 12:38:33,5470134 MCLauncher.exe 6080 CloseFile C:\Program Files (x86)\360\Total Security SUCCESS 98 12:38:33,5472547 MCLauncher.exe 6080 CreateFile C:\Program Files (x86)\360\Total Security\config.ini SUCCESS Desired Access: Read Attributes, Disposition: Open, Options: Open Reparse Point, Attributes: n/a, ShareMode: Read, Write, Delete, AllocationSize: n/a, OpenResult: Opened 98 12:38:33,5472722 MCLauncher.exe 6080 QueryBasicInformationFile C:\Program Files (x86)\360\Total Security\config.ini SUCCESS CreationTime: 20.07.2018 20:11:30, LastAccessTime: 20.07.2018 20:11:30, LastWriteTime: 20.07.2018 20:11:30, ChangeTime: 20.07.2018 20:11:30, FileAttributes: A 98 12:38:33,5472805 MCLauncher.exe 6080 CloseFile C:\Program Files (x86)\360\Total Security\config.ini SUCCESS 98 12:38:33,5474024 MCLauncher.exe 6080 CreateFile C:\Program Files (x86)\360\Total Security\config.ini SUCCESS Desired Access: Generic Read, Disposition: Open, Options: Synchronous IO Non-Alert, Non-Directory File, Attributes: n/a, ShareMode: Read, Write, Delete, AllocationSize: n/a, OpenResult: Opened 98 12:38:33,5474271 MCLauncher.exe 6080 LockFile C:\Program Files (x86)\360\Total Security\config.ini SUCCESS Exclusive: False, Offset: 0, Length: 4 294 967 295, Fail Immediately: False 98 12:38:33,5474365 MCLauncher.exe 6080 QueryStandardInformationFile C:\Program Files (x86)\360\Total Security\config.ini SUCCESS AllocationSize: 152, EndOfFile: 146, NumberOfLinks: 1, DeletePending: False, Directory: False 98 12:38:33,5474567 MCLauncher.exe 6080 ReadFile C:\Program Files (x86)\360\Total Security\config.ini SUCCESS Offset: 0, Length: 146, Priority: Normal 98 12:38:33,5475099 MCLauncher.exe 6080 UnlockFileSingle C:\Program Files (x86)\360\Total Security\config.ini SUCCESS Offset: 0, Length: 4 294 967 295 98 12:38:33,5475196 MCLauncher.exe 6080 CloseFile C:\Program Files (x86)\360\Total Security\config.ini SUCCESS 98 12:38:33,5477490 MCLauncher.exe 6080 CreateFile C:\Program Files (x86)\360\Total Security\i18n\ru\safemon\wd.ini SUCCESS Desired Access: Read Attributes, Disposition: Open, Options: Open Reparse Point, Attributes: n/a, ShareMode: Read, Write, Delete, AllocationSize: n/a, OpenResult: Opened 98 12:38:33,5477673 MCLauncher.exe 6080 QueryBasicInformationFile C:\Program Files (x86)\360\Total Security\i18n\ru\safemon\wd.ini SUCCESS CreationTime: 20.07.2018 20:11:36, LastAccessTime: 20.07.2018 20:11:36, LastWriteTime: 20.07.2018 13:54:11, ChangeTime: 20.07.2018 20:09:20, FileAttributes: A 98 12:38:33,5477756 MCLauncher.exe 6080 CloseFile C:\Program Files (x86)\360\Total Security\i18n\ru\safemon\wd.ini SUCCESS 98 12:38:33,5479964 MCLauncher.exe 6080 CreateFile C:\Program Files (x86)\360\Total Security\i18n\ru\safemon\wd.ini SUCCESS Desired Access: Read Attributes, Disposition: Open, Options: Open Reparse Point, Attributes: n/a, ShareMode: Read, Write, Delete, AllocationSize: n/a, OpenResult: Opened 98 12:38:33,5480114 MCLauncher.exe 6080 QueryBasicInformationFile C:\Program Files (x86)\360\Total Security\i18n\ru\safemon\wd.ini SUCCESS CreationTime: 20.07.2018 20:11:36, LastAccessTime: 20.07.2018 20:11:36, LastWriteTime: 20.07.2018 13:54:11, ChangeTime: 20.07.2018 20:09:20, FileAttributes: A 98 12:38:33,5480194 MCLauncher.exe 6080 CloseFile C:\Program Files (x86)\360\Total Security\i18n\ru\safemon\wd.ini SUCCESS 98 12:38:33,5481252 MCLauncher.exe 6080 CreateFile C:\Program Files (x86)\360\Total Security\i18n\ru\safemon\wd.ini SUCCESS Desired Access: Generic Read, Disposition: Open, Options: Synchronous IO Non-Alert, Non-Directory File, Attributes: n/a, ShareMode: Read, Write, Delete, AllocationSize: n/a, OpenResult: Opened 98 12:38:33,5481446 MCLauncher.exe 6080 LockFile C:\Program Files (x86)\360\Total Security\i18n\ru\safemon\wd.ini SUCCESS Exclusive: False, Offset: 0, Length: 4 294 967 295, Fail Immediately: False 98 12:38:33,5481527 MCLauncher.exe 6080 QueryStandardInformationFile C:\Program Files (x86)\360\Total Security\i18n\ru\safemon\wd.ini SUCCESS AllocationSize: 12 288, EndOfFile: 8 350, NumberOfLinks: 1, DeletePending: False, Directory: False 98 12:38:33,5481701 MCLauncher.exe 6080 ReadFile C:\Program Files (x86)\360\Total Security\i18n\ru\safemon\wd.ini SUCCESS Offset: 0, Length: 8 350, Priority: Normal 98 12:38:33,5482167 MCLauncher.exe 6080 UnlockFileSingle C:\Program Files (x86)\360\Total Security\i18n\ru\safemon\wd.ini SUCCESS Offset: 0, Length: 4 294 967 295 98 12:38:33,5482264 MCLauncher.exe 6080 CloseFile C:\Program Files (x86)\360\Total Security\i18n\ru\safemon\wd.ini SUCCESS 98 12:38:33,5482845 MCLauncher.exe 6080 RegOpenKey HKLM\System\CurrentControlSet\Control\Nls\CustomLocale REPARSE Desired Access: Read 98 12:38:33,5483023 MCLauncher.exe 6080 RegOpenKey HKLM\System\CurrentControlSet\Control\Nls\CustomLocale SUCCESS Desired Access: Read 98 12:38:33,5483170 MCLauncher.exe 6080 RegSetInfoKey HKLM\System\CurrentControlSet\Control\Nls\CustomLocale SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 98 12:38:33,5483244 MCLauncher.exe 6080 RegQueryValue HKLM\System\CurrentControlSet\Control\Nls\CustomLocale\ru-RU NAME NOT FOUND Length: 532 98 12:38:33,5483430 MCLauncher.exe 6080 RegCloseKey HKLM\System\CurrentControlSet\Control\Nls\CustomLocale SUCCESS 98 12:38:33,5483530 MCLauncher.exe 6080 RegOpenKey HKLM\System\CurrentControlSet\Control\Nls\ExtendedLocale REPARSE Desired Access: Read 98 12:38:33,5483605 MCLauncher.exe 6080 RegOpenKey HKLM\System\CurrentControlSet\Control\Nls\ExtendedLocale SUCCESS Desired Access: Read 98 12:38:33,5483688 MCLauncher.exe 6080 RegSetInfoKey HKLM\System\CurrentControlSet\Control\Nls\ExtendedLocale SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 98 12:38:33,5483743 MCLauncher.exe 6080 RegQueryValue HKLM\System\CurrentControlSet\Control\Nls\ExtendedLocale\ru-RU NAME NOT FOUND Length: 532 98 12:38:33,5483879 MCLauncher.exe 6080 RegCloseKey HKLM\System\CurrentControlSet\Control\Nls\ExtendedLocale SUCCESS 98 12:38:33,5483959 MCLauncher.exe 6080 RegQueryValue HKLM\System\CurrentControlSet\Control\Nls\Sorting\Ids\ru-RU NAME NOT FOUND Length: 90 98 12:38:33,5484109 MCLauncher.exe 6080 RegQueryValue HKLM\System\CurrentControlSet\Control\Nls\Sorting\Ids\ru SUCCESS Type: REG_SZ, Length: 78, Data: {0000004A-57EE-1E5C-00B4-D0000BB1E11E} 98 12:38:33,5490135 MCLauncher.exe 6080 CreateFile C:\Program Files (x86)\360\Total Security\config.ini SUCCESS Desired Access: Read Attributes, Disposition: Open, Options: Open Reparse Point, Attributes: n/a, ShareMode: Read, Write, Delete, AllocationSize: n/a, OpenResult: Opened 98 12:38:33,5490315 MCLauncher.exe 6080 QueryBasicInformationFile C:\Program Files (x86)\360\Total Security\config.ini SUCCESS CreationTime: 20.07.2018 20:11:30, LastAccessTime: 20.07.2018 20:11:30, LastWriteTime: 20.07.2018 20:11:30, ChangeTime: 20.07.2018 20:11:30, FileAttributes: A 98 12:38:33,5490412 MCLauncher.exe 6080 CloseFile C:\Program Files (x86)\360\Total Security\config.ini SUCCESS 98 12:38:33,5491454 MCLauncher.exe 6080 CreateFile C:\Program Files (x86)\360\Total Security\config.ini SUCCESS Desired Access: Generic Read, Disposition: Open, Options: Synchronous IO Non-Alert, Non-Directory File, Attributes: n/a, ShareMode: Read, Write, Delete, AllocationSize: n/a, OpenResult: Opened 98 12:38:33,5491661 MCLauncher.exe 6080 LockFile C:\Program Files (x86)\360\Total Security\config.ini SUCCESS Exclusive: False, Offset: 0, Length: 4 294 967 295, Fail Immediately: False 98 12:38:33,5491756 MCLauncher.exe 6080 QueryStandardInformationFile C:\Program Files (x86)\360\Total Security\config.ini SUCCESS AllocationSize: 152, EndOfFile: 146, NumberOfLinks: 1, DeletePending: False, Directory: False 98 12:38:33,5491994 MCLauncher.exe 6080 ReadFile C:\Program Files (x86)\360\Total Security\config.ini SUCCESS Offset: 0, Length: 146, Priority: Normal 98 12:38:33,5492287 MCLauncher.exe 6080 UnlockFileSingle C:\Program Files (x86)\360\Total Security\config.ini SUCCESS Offset: 0, Length: 4 294 967 295 98 12:38:33,5492384 MCLauncher.exe 6080 CloseFile C:\Program Files (x86)\360\Total Security\config.ini SUCCESS 98 12:38:33,5495003 MCLauncher.exe 6080 CreateFile C:\Program Files (x86)\360\Total Security\i18n\ru\safemon\wdk.ini SUCCESS Desired Access: Read Attributes, Disposition: Open, Options: Open Reparse Point, Attributes: n/a, ShareMode: Read, Write, Delete, AllocationSize: n/a, OpenResult: Opened 98 12:38:33,5495180 MCLauncher.exe 6080 QueryBasicInformationFile C:\Program Files (x86)\360\Total Security\i18n\ru\safemon\wdk.ini SUCCESS CreationTime: 20.07.2018 20:11:36, LastAccessTime: 20.07.2018 20:11:36, LastWriteTime: 20.07.2018 13:54:11, ChangeTime: 20.07.2018 20:09:20, FileAttributes: A 98 12:38:33,5495269 MCLauncher.exe 6080 CloseFile C:\Program Files (x86)\360\Total Security\i18n\ru\safemon\wdk.ini SUCCESS 98 12:38:33,5497491 MCLauncher.exe 6080 CreateFile C:\Program Files (x86)\360\Total Security\i18n\ru\safemon\wdk.ini SUCCESS Desired Access: Read Attributes, Disposition: Open, Options: Open Reparse Point, Attributes: n/a, ShareMode: Read, Write, Delete, AllocationSize: n/a, OpenResult: Opened 98 12:38:33,5497643 MCLauncher.exe 6080 QueryBasicInformationFile C:\Program Files (x86)\360\Total Security\i18n\ru\safemon\wdk.ini SUCCESS CreationTime: 20.07.2018 20:11:36, LastAccessTime: 20.07.2018 20:11:36, LastWriteTime: 20.07.2018 13:54:11, ChangeTime: 20.07.2018 20:09:20, FileAttributes: A 98 12:38:33,5497726 MCLauncher.exe 6080 CloseFile C:\Program Files (x86)\360\Total Security\i18n\ru\safemon\wdk.ini SUCCESS 98 12:38:33,5498704 MCLauncher.exe 6080 CreateFile C:\Program Files (x86)\360\Total Security\i18n\ru\safemon\wdk.ini SUCCESS Desired Access: Generic Read, Disposition: Open, Options: Synchronous IO Non-Alert, Non-Directory File, Attributes: n/a, ShareMode: Read, Write, Delete, AllocationSize: n/a, OpenResult: Opened 98 12:38:33,5498895 MCLauncher.exe 6080 LockFile C:\Program Files (x86)\360\Total Security\i18n\ru\safemon\wdk.ini SUCCESS Exclusive: False, Offset: 0, Length: 4 294 967 295, Fail Immediately: False 98 12:38:33,5498976 MCLauncher.exe 6080 QueryStandardInformationFile C:\Program Files (x86)\360\Total Security\i18n\ru\safemon\wdk.ini SUCCESS AllocationSize: 4 096, EndOfFile: 3 052, NumberOfLinks: 1, DeletePending: False, Directory: False 98 12:38:33,5499153 MCLauncher.exe 6080 ReadFile C:\Program Files (x86)\360\Total Security\i18n\ru\safemon\wdk.ini SUCCESS Offset: 0, Length: 3 052, Priority: Normal 98 12:38:33,5499607 MCLauncher.exe 6080 UnlockFileSingle C:\Program Files (x86)\360\Total Security\i18n\ru\safemon\wdk.ini SUCCESS Offset: 0, Length: 4 294 967 295 98 12:38:33,5499699 MCLauncher.exe 6080 CloseFile C:\Program Files (x86)\360\Total Security\i18n\ru\safemon\wdk.ini SUCCESS 98 12:38:33,5500693 MCLauncher.exe 6080 CreateFile C:\Program Files (x86)\360\Total Security\i18n\ru\safemon\wdk.ini SUCCESS Desired Access: Generic Read, Disposition: Open, Options: Synchronous IO Non-Alert, Non-Directory File, Attributes: n/a, ShareMode: Read, Write, Delete, AllocationSize: n/a, OpenResult: Opened 98 12:38:33,5500887 MCLauncher.exe 6080 LockFile C:\Program Files (x86)\360\Total Security\i18n\ru\safemon\wdk.ini SUCCESS Exclusive: False, Offset: 0, Length: 4 294 967 295, Fail Immediately: False 98 12:38:33,5500965 MCLauncher.exe 6080 QueryStandardInformationFile C:\Program Files (x86)\360\Total Security\i18n\ru\safemon\wdk.ini SUCCESS AllocationSize: 4 096, EndOfFile: 3 052, NumberOfLinks: 1, DeletePending: False, Directory: False 98 12:38:33,5501137 MCLauncher.exe 6080 ReadFile C:\Program Files (x86)\360\Total Security\i18n\ru\safemon\wdk.ini SUCCESS Offset: 0, Length: 3 052, Priority: Normal 98 12:38:33,5501392 MCLauncher.exe 6080 UnlockFileSingle C:\Program Files (x86)\360\Total Security\i18n\ru\safemon\wdk.ini SUCCESS Offset: 0, Length: 4 294 967 295 98 12:38:33,5501483 MCLauncher.exe 6080 CloseFile C:\Program Files (x86)\360\Total Security\i18n\ru\safemon\wdk.ini SUCCESS 98 12:38:33,5505558 MCLauncher.exe 6080 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 98 12:38:33,5505644 MCLauncher.exe 6080 RegQueryKey HKLM SUCCESS Query: Name 98 12:38:33,5505780 MCLauncher.exe 6080 RegOpenKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\App Paths\360safe.exe REPARSE Desired Access: Query Value 98 12:38:33,5505899 MCLauncher.exe 6080 RegOpenKey HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Paths\360safe.exe SUCCESS Desired Access: Query Value 98 12:38:33,5505991 MCLauncher.exe 6080 RegSetInfoKey HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Paths\360safe.exe SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 98 12:38:33,5506057 MCLauncher.exe 6080 RegQueryValue HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Paths\360safe.exe\Path SUCCESS Type: REG_SZ, Length: 84, Data: C:\Program Files (x86)\360\Total Security 98 12:38:33,5506262 MCLauncher.exe 6080 RegCloseKey HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Paths\360safe.exe SUCCESS 98 12:38:33,5507587 MCLauncher.exe 6080 CreateFile C:\Program Files (x86)\360\Total Security\safemon\wd.ini SUCCESS Desired Access: Generic Read, Disposition: Open, Options: Synchronous IO Non-Alert, Non-Directory File, Attributes: n/a, ShareMode: Read, Write, Delete, AllocationSize: n/a, OpenResult: Opened 98 12:38:33,5507811 MCLauncher.exe 6080 LockFile C:\Program Files (x86)\360\Total Security\safemon\wd.ini SUCCESS Exclusive: False, Offset: 0, Length: 4 294 967 295, Fail Immediately: False 98 12:38:33,5507897 MCLauncher.exe 6080 QueryStandardInformationFile C:\Program Files (x86)\360\Total Security\safemon\wd.ini SUCCESS AllocationSize: 12 288, EndOfFile: 8 350, NumberOfLinks: 1, DeletePending: False, Directory: False 98 12:38:33,5508088 MCLauncher.exe 6080 ReadFile C:\Program Files (x86)\360\Total Security\safemon\wd.ini SUCCESS Offset: 0, Length: 8 350, Priority: Normal 98 12:38:33,5508606 MCLauncher.exe 6080 UnlockFileSingle C:\Program Files (x86)\360\Total Security\safemon\wd.ini SUCCESS Offset: 0, Length: 4 294 967 295 98 12:38:33,5508703 MCLauncher.exe 6080 CloseFile C:\Program Files (x86)\360\Total Security\safemon\wd.ini SUCCESS 98 12:38:33,5509764 MCLauncher.exe 6080 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 98 12:38:33,5509842 MCLauncher.exe 6080 RegQueryKey HKLM SUCCESS Query: Name 98 12:38:33,5509961 MCLauncher.exe 6080 RegOpenKey HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS Desired Access: Read 98 12:38:33,5510097 MCLauncher.exe 6080 RegSetInfoKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 98 12:38:33,5510449 MCLauncher.exe 6080 RegQueryKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS Query: HandleTags, HandleTags: 0x400 98 12:38:33,5510529 MCLauncher.exe 6080 RegOpenKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{62AB5D82-FDC1-4DC3-A9DD-070D1D495D97} SUCCESS Desired Access: Read 98 12:38:33,5510662 MCLauncher.exe 6080 RegCloseKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS 98 12:38:33,5510728 MCLauncher.exe 6080 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{62AB5D82-FDC1-4DC3-A9DD-070D1D495D97}\Category SUCCESS Type: REG_DWORD, Length: 4, Data: 2 98 12:38:33,5510908 MCLauncher.exe 6080 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{62AB5D82-FDC1-4DC3-A9DD-070D1D495D97}\Name SUCCESS Type: REG_SZ, Length: 30, Data: Common AppData 98 12:38:33,5511094 MCLauncher.exe 6080 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{62AB5D82-FDC1-4DC3-A9DD-070D1D495D97}\ParentFolder NAME NOT FOUND Length: 144 98 12:38:33,5511235 MCLauncher.exe 6080 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{62AB5D82-FDC1-4DC3-A9DD-070D1D495D97}\Description NAME NOT FOUND Length: 144 98 12:38:33,5511357 MCLauncher.exe 6080 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{62AB5D82-FDC1-4DC3-A9DD-070D1D495D97}\RelativePath NAME NOT FOUND Length: 144 98 12:38:33,5511476 MCLauncher.exe 6080 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{62AB5D82-FDC1-4DC3-A9DD-070D1D495D97}\ParsingName NAME NOT FOUND Length: 144 98 12:38:33,5511598 MCLauncher.exe 6080 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{62AB5D82-FDC1-4DC3-A9DD-070D1D495D97}\InfoTip NAME NOT FOUND Length: 144 98 12:38:33,5511720 MCLauncher.exe 6080 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{62AB5D82-FDC1-4DC3-A9DD-070D1D495D97}\LocalizedName NAME NOT FOUND Length: 144 98 12:38:33,5511839 MCLauncher.exe 6080 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{62AB5D82-FDC1-4DC3-A9DD-070D1D495D97}\Icon NAME NOT FOUND Length: 144 98 12:38:33,5511958 MCLauncher.exe 6080 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{62AB5D82-FDC1-4DC3-A9DD-070D1D495D97}\Security NAME NOT FOUND Length: 144 98 12:38:33,5512075 MCLauncher.exe 6080 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{62AB5D82-FDC1-4DC3-A9DD-070D1D495D97}\StreamResource NAME NOT FOUND Length: 144 98 12:38:33,5512197 MCLauncher.exe 6080 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{62AB5D82-FDC1-4DC3-A9DD-070D1D495D97}\StreamResourceType NAME NOT FOUND Length: 144 98 12:38:33,5512460 MCLauncher.exe 6080 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{62AB5D82-FDC1-4DC3-A9DD-070D1D495D97}\LocalRedirectOnly NAME NOT FOUND Length: 144 98 12:38:33,5512593 MCLauncher.exe 6080 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{62AB5D82-FDC1-4DC3-A9DD-070D1D495D97}\Roamable NAME NOT FOUND Length: 144 98 12:38:33,5512712 MCLauncher.exe 6080 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{62AB5D82-FDC1-4DC3-A9DD-070D1D495D97}\PreCreate NAME NOT FOUND Length: 144 98 12:38:33,5512839 MCLauncher.exe 6080 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{62AB5D82-FDC1-4DC3-A9DD-070D1D495D97}\Stream NAME NOT FOUND Length: 144 98 12:38:33,5512964 MCLauncher.exe 6080 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{62AB5D82-FDC1-4DC3-A9DD-070D1D495D97}\PublishExpandedPath NAME NOT FOUND Length: 144 98 12:38:33,5513086 MCLauncher.exe 6080 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{62AB5D82-FDC1-4DC3-A9DD-070D1D495D97}\DefinitionFlags NAME NOT FOUND Length: 144 98 12:38:33,5513205 MCLauncher.exe 6080 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{62AB5D82-FDC1-4DC3-A9DD-070D1D495D97}\Attributes NAME NOT FOUND Length: 144 98 12:38:33,5513388 MCLauncher.exe 6080 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{62AB5D82-FDC1-4DC3-A9DD-070D1D495D97}\FolderTypeID NAME NOT FOUND Length: 144 98 12:38:33,5513510 MCLauncher.exe 6080 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{62AB5D82-FDC1-4DC3-A9DD-070D1D495D97}\InitFolderHandler NAME NOT FOUND Length: 144 98 12:38:33,5513712 MCLauncher.exe 6080 RegQueryKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{62AB5D82-FDC1-4DC3-A9DD-070D1D495D97} SUCCESS Query: HandleTags, HandleTags: 0x400 98 12:38:33,5513793 MCLauncher.exe 6080 RegOpenKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{62AB5D82-FDC1-4DC3-A9DD-070D1D495D97}\PropertyBag NAME NOT FOUND Desired Access: Read 98 12:38:33,5513901 MCLauncher.exe 6080 RegCloseKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{62AB5D82-FDC1-4DC3-A9DD-070D1D495D97} SUCCESS 98 12:38:33,5514108 MCLauncher.exe 6080 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 98 12:38:33,5514169 MCLauncher.exe 6080 RegQueryKey HKLM SUCCESS Query: Name 98 12:38:33,5514272 MCLauncher.exe 6080 RegOpenKey HKLM\Software\WOW6432Node\Microsoft\Windows NT\CurrentVersion\ProfileList REPARSE Desired Access: Read 98 12:38:33,5514385 MCLauncher.exe 6080 RegOpenKey HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\ProfileList SUCCESS Desired Access: Read 98 12:38:33,5514463 MCLauncher.exe 6080 RegSetInfoKey HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\ProfileList SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 98 12:38:33,5514521 MCLauncher.exe 6080 RegQueryValue HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\ProfileList\ProgramData SUCCESS Type: REG_EXPAND_SZ, Length: 52, Data: %SystemDrive%\ProgramData 98 12:38:33,5514676 MCLauncher.exe 6080 RegQueryValue HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\ProfileList\ProgramData SUCCESS Type: REG_EXPAND_SZ, Length: 52, Data: %SystemDrive%\ProgramData 98 12:38:33,5514862 MCLauncher.exe 6080 RegCloseKey HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\ProfileList SUCCESS 98 12:38:33,5515161 MCLauncher.exe 6080 RegOpenKey HKLM\System\CurrentControlSet\Control\FileSystem\ REPARSE Desired Access: Read 98 12:38:33,5515250 MCLauncher.exe 6080 RegOpenKey HKLM\System\CurrentControlSet\Control\FileSystem SUCCESS Desired Access: Read 98 12:38:33,5515336 MCLauncher.exe 6080 RegSetInfoKey HKLM\System\CurrentControlSet\Control\FileSystem SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 98 12:38:33,5515388 MCLauncher.exe 6080 RegQueryValue HKLM\System\CurrentControlSet\Control\FileSystem\LongPathsEnabled SUCCESS Type: REG_DWORD, Length: 4, Data: 0 98 12:38:33,5515546 MCLauncher.exe 6080 RegCloseKey HKLM\System\CurrentControlSet\Control\FileSystem SUCCESS 98 12:38:33,5516602 MCLauncher.exe 6080 CreateFile C:\ProgramData NAME COLLISION Desired Access: Read Data/List Directory, Synchronize, Disposition: Create, Options: Directory, Synchronous IO Non-Alert, Open Reparse Point, Attributes: N, ShareMode: Read, Write, AllocationSize: 0 98 12:38:33,5520902 MCLauncher.exe 6080 CreateFile C:\ProgramData SUCCESS Desired Access: Read Attributes, Disposition: Open, Options: Open Reparse Point, Attributes: n/a, ShareMode: Read, Write, Delete, AllocationSize: n/a, OpenResult: Opened 98 12:38:33,5521176 MCLauncher.exe 6080 QueryBasicInformationFile C:\ProgramData SUCCESS CreationTime: 16.07.2016 14:47:48, LastAccessTime: 20.07.2018 20:20:30, LastWriteTime: 20.07.2018 20:20:30, ChangeTime: 20.07.2018 20:20:30, FileAttributes: HDNCI 98 12:38:33,5521265 MCLauncher.exe 6080 CloseFile C:\ProgramData SUCCESS 98 12:38:33,5521553 MCLauncher.exe 6080 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 98 12:38:33,5521625 MCLauncher.exe 6080 RegQueryKey HKLM SUCCESS Query: Name 98 12:38:33,5521747 MCLauncher.exe 6080 RegOpenKey HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\KnownFolderSettings NAME NOT FOUND Desired Access: Query Value 98 12:38:33,5521883 MCLauncher.exe 6080 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 98 12:38:33,5521941 MCLauncher.exe 6080 RegQueryKey HKLM SUCCESS Query: Name 98 12:38:33,5522151 MCLauncher.exe 6080 RegOpenKey HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\KnownFolderSettings NAME NOT FOUND Desired Access: Query Value 98 12:38:33,5533536 MCLauncher.exe 6080 CreateFile C:\Users\User\AppData\Roaming\MCLauncher\urlmon.dll NAME NOT FOUND Desired Access: Read Attributes, Disposition: Open, Options: Open Reparse Point, Attributes: n/a, ShareMode: Read, Write, Delete, AllocationSize: n/a 98 12:38:33,5535949 MCLauncher.exe 6080 CreateFile C:\Windows\SysWOW64\urlmon.dll SUCCESS Desired Access: Read Attributes, Disposition: Open, Options: Open Reparse Point, Attributes: n/a, ShareMode: Read, Write, Delete, AllocationSize: n/a, OpenResult: Opened 98 12:38:33,5536248 MCLauncher.exe 6080 QueryBasicInformationFile C:\Windows\SysWOW64\urlmon.dll SUCCESS CreationTime: 20.07.2018 1:34:59, LastAccessTime: 20.07.2018 1:34:59, LastWriteTime: 30.03.2018 5:58:40, ChangeTime: 20.07.2018 19:24:44, FileAttributes: A 98 12:38:33,5536337 MCLauncher.exe 6080 CloseFile C:\Windows\SysWOW64\urlmon.dll SUCCESS 98 12:38:33,5537334 MCLauncher.exe 6080 CreateFile C:\Windows\SysWOW64\urlmon.dll SUCCESS Desired Access: Read Data/List Directory, Execute/Traverse, Synchronize, Disposition: Open, Options: Synchronous IO Non-Alert, Non-Directory File, Attributes: n/a, ShareMode: Read, Delete, AllocationSize: n/a, OpenResult: Opened 98 12:38:33,5537633 MCLauncher.exe 6080 CreateFileMapping C:\Windows\SysWOW64\urlmon.dll FILE LOCKED WITH ONLY READERS SyncType: SyncTypeCreateSection, PageProtection: PAGE_EXECUTE|PAGE_NOCACHE 98 12:38:33,5537802 MCLauncher.exe 6080 QueryNameInformationFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Name: \Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe 98 12:38:33,5538669 MCLauncher.exe 6080 CreateFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Desired Access: Synchronize, Disposition: Open, Options: Synchronous IO Non-Alert, Attributes: N, ShareMode: Read, Write, Delete, AllocationSize: n/a, OpenResult: Opened 98 12:38:33,5538866 MCLauncher.exe 6080 CloseFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS 98 12:38:33,5539168 MCLauncher.exe 6080 QueryNameInformationFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Name: \Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe 98 12:38:33,5540008 MCLauncher.exe 6080 CreateFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Desired Access: Synchronize, Disposition: Open, Options: Synchronous IO Non-Alert, Attributes: N, ShareMode: Read, Write, Delete, AllocationSize: n/a, OpenResult: Opened 98 12:38:33,5540177 MCLauncher.exe 6080 CloseFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS 98 12:38:33,5540958 MCLauncher.exe 6080 CreateFileMapping C:\Windows\SysWOW64\urlmon.dll SUCCESS SyncType: SyncTypeOther 98 12:38:33,5541570 MCLauncher.exe 6080 Load Image C:\Windows\SysWOW64\urlmon.dll SUCCESS Image Base: 0x72cc0000, Image Size: 0x195000 98 12:38:33,5542617 MCLauncher.exe 6080 CloseFile C:\Windows\SysWOW64\urlmon.dll SUCCESS 98 12:38:33,5544945 MCLauncher.exe 6080 CreateFile C:\Users\User\AppData\Roaming\MCLauncher\iertutil.dll NAME NOT FOUND Desired Access: Read Attributes, Disposition: Open, Options: Open Reparse Point, Attributes: n/a, ShareMode: Read, Write, Delete, AllocationSize: n/a 98 12:38:33,5547197 MCLauncher.exe 6080 CreateFile C:\Windows\SysWOW64\iertutil.dll SUCCESS Desired Access: Read Attributes, Disposition: Open, Options: Open Reparse Point, Attributes: n/a, ShareMode: Read, Write, Delete, AllocationSize: n/a, OpenResult: Opened 98 12:38:33,5547452 MCLauncher.exe 6080 QueryBasicInformationFile C:\Windows\SysWOW64\iertutil.dll SUCCESS CreationTime: 20.07.2018 1:35:05, LastAccessTime: 20.07.2018 1:35:05, LastWriteTime: 30.03.2018 6:32:00, ChangeTime: 20.07.2018 19:25:12, FileAttributes: A 98 12:38:33,5547535 MCLauncher.exe 6080 CloseFile C:\Windows\SysWOW64\iertutil.dll SUCCESS 98 12:38:33,5548499 MCLauncher.exe 6080 CreateFile C:\Windows\SysWOW64\iertutil.dll SUCCESS Desired Access: Read Data/List Directory, Execute/Traverse, Synchronize, Disposition: Open, Options: Synchronous IO Non-Alert, Non-Directory File, Attributes: n/a, ShareMode: Read, Delete, AllocationSize: n/a, OpenResult: Opened 98 12:38:33,5548768 MCLauncher.exe 6080 CreateFileMapping C:\Windows\SysWOW64\iertutil.dll FILE LOCKED WITH ONLY READERS SyncType: SyncTypeCreateSection, PageProtection: PAGE_EXECUTE|PAGE_NOCACHE 98 12:38:33,5548887 MCLauncher.exe 6080 QueryNameInformationFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Name: \Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe 98 12:38:33,5549730 MCLauncher.exe 6080 CreateFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Desired Access: Synchronize, Disposition: Open, Options: Synchronous IO Non-Alert, Attributes: N, ShareMode: Read, Write, Delete, AllocationSize: n/a, OpenResult: Opened 98 12:38:33,5549910 MCLauncher.exe 6080 CloseFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS 98 12:38:33,5550189 MCLauncher.exe 6080 QueryNameInformationFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Name: \Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe 98 12:38:33,5551015 MCLauncher.exe 6080 CreateFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Desired Access: Synchronize, Disposition: Open, Options: Synchronous IO Non-Alert, Attributes: N, ShareMode: Read, Write, Delete, AllocationSize: n/a, OpenResult: Opened 98 12:38:33,5551181 MCLauncher.exe 6080 CloseFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS 98 12:38:33,5551932 MCLauncher.exe 6080 CreateFileMapping C:\Windows\SysWOW64\iertutil.dll SUCCESS SyncType: SyncTypeOther 98 12:38:33,5552456 MCLauncher.exe 6080 Load Image C:\Windows\SysWOW64\iertutil.dll SUCCESS Image Base: 0x725e0000, Image Size: 0x22b000 98 12:38:33,5553173 MCLauncher.exe 6080 CloseFile C:\Windows\SysWOW64\iertutil.dll SUCCESS 98 12:38:33,5555913 MCLauncher.exe 6080 CreateFile C:\Windows\SysWOW64\iertutil.dll SUCCESS Desired Access: Read Control, Disposition: Open, Options: , Attributes: n/a, ShareMode: Read, Delete, AllocationSize: n/a, OpenResult: Opened 98 12:38:33,5556207 MCLauncher.exe 6080 QuerySecurityFile C:\Windows\SysWOW64\iertutil.dll BUFFER OVERFLOW Information: Owner 98 12:38:33,5556296 MCLauncher.exe 6080 QuerySecurityFile C:\Windows\SysWOW64\iertutil.dll SUCCESS Information: Owner 98 12:38:33,5556371 MCLauncher.exe 6080 CloseFile C:\Windows\SysWOW64\iertutil.dll SUCCESS 98 12:38:33,5557559 MCLauncher.exe 6080 CreateFile C:\Windows\SysWOW64\urlmon.dll SUCCESS Desired Access: Read Control, Disposition: Open, Options: , Attributes: n/a, ShareMode: Read, Delete, AllocationSize: n/a, OpenResult: Opened 98 12:38:33,5557817 MCLauncher.exe 6080 QuerySecurityFile C:\Windows\SysWOW64\urlmon.dll BUFFER OVERFLOW Information: Owner 98 12:38:33,5557889 MCLauncher.exe 6080 QuerySecurityFile C:\Windows\SysWOW64\urlmon.dll SUCCESS Information: Owner 98 12:38:33,5557955 MCLauncher.exe 6080 CloseFile C:\Windows\SysWOW64\urlmon.dll SUCCESS 98 12:38:33,5558991 MCLauncher.exe 6080 RegQueryValue HKLM\System\CurrentControlSet\Control\WMI\Security\0bca4784-8257-51a0-d9ec-24fe1fe4c90d NAME NOT FOUND Length: 524 98 12:38:33,5559856 MCLauncher.exe 6080 RegQueryValue HKLM\System\CurrentControlSet\Control\WMI\Security\ff32ada1-5a4b-583c-889e-a3c027b201f5 NAME NOT FOUND Length: 524 98 12:38:33,5562762 MCLauncher.exe 6080 CreateFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Desired Access: Generic Read, Disposition: Open, Options: Synchronous IO Non-Alert, Non-Directory File, Attributes: N, ShareMode: Read, Write, AllocationSize: n/a, OpenResult: Opened 98 12:38:33,5563034 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 2 435 714, Length: 4 096, Priority: Normal 98 12:38:33,5563253 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 2 435 740, Length: 512 98 12:38:33,5563341 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 2 435 772, Length: 512 98 12:38:33,5563430 MCLauncher.exe 6080 CloseFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS 98 12:38:33,5564161 MCLauncher.exe 6080 CreateFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe\win32com\ PATH NOT FOUND Desired Access: Read Data/List Directory, Synchronize, Disposition: Open, Options: Directory, Synchronous IO Non-Alert, Attributes: n/a, ShareMode: Read, Write, Delete, AllocationSize: n/a 98 12:38:33,5565098 MCLauncher.exe 6080 CreateFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe NOT A DIRECTORY Desired Access: Read Data/List Directory, Synchronize, Disposition: Open, Options: Directory, Synchronous IO Non-Alert, Attributes: n/a, ShareMode: Read, Write, Delete, AllocationSize: n/a 98 12:38:33,5565943 MCLauncher.exe 6080 CreateFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe NOT A DIRECTORY Desired Access: Read Data/List Directory, Synchronize, Disposition: Open, Options: Directory, Synchronous IO Non-Alert, Attributes: n/a, ShareMode: Read, Write, Delete, AllocationSize: n/a 98 12:38:33,5566877 MCLauncher.exe 6080 CreateFile C:\Users\User\AppData\Roaming\MCLauncher SUCCESS Desired Access: Read Data/List Directory, Synchronize, Disposition: Open, Options: Directory, Synchronous IO Non-Alert, Attributes: n/a, ShareMode: Read, Write, Delete, AllocationSize: n/a, OpenResult: Opened 98 12:38:33,5567068 MCLauncher.exe 6080 QueryDirectory C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Filter: MCLauncher.exe, 1: MCLauncher.exe 98 12:38:33,5567275 MCLauncher.exe 6080 CloseFile C:\Users\User\AppData\Roaming\MCLauncher SUCCESS 98 12:38:33,5568686 MCLauncher.exe 6080 CreateFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Desired Access: Generic Read, Disposition: Open, Options: Synchronous IO Non-Alert, Non-Directory File, Attributes: N, ShareMode: Read, Write, AllocationSize: n/a, OpenResult: Opened 98 12:38:33,5568905 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 2 387 475, Length: 4 096, Priority: Normal 98 12:38:33,5569051 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 2 387 501, Length: 512 98 12:38:33,5569143 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 2 387 533, Length: 5 120 98 12:38:33,5569215 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 2 392 653, Length: 512 98 12:38:33,5569292 MCLauncher.exe 6080 CloseFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS 98 12:38:33,5571368 MCLauncher.exe 6080 CreateFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe\win32com\ PATH NOT FOUND Desired Access: Read Data/List Directory, Synchronize, Disposition: Open, Options: Directory, Synchronous IO Non-Alert, Attributes: n/a, ShareMode: Read, Write, Delete, AllocationSize: n/a 98 12:38:33,5572329 MCLauncher.exe 6080 CreateFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe NOT A DIRECTORY Desired Access: Read Data/List Directory, Synchronize, Disposition: Open, Options: Directory, Synchronous IO Non-Alert, Attributes: n/a, ShareMode: Read, Write, Delete, AllocationSize: n/a 98 12:38:33,5573182 MCLauncher.exe 6080 CreateFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe NOT A DIRECTORY Desired Access: Read Data/List Directory, Synchronize, Disposition: Open, Options: Directory, Synchronous IO Non-Alert, Attributes: n/a, ShareMode: Read, Write, Delete, AllocationSize: n/a 98 12:38:33,5574086 MCLauncher.exe 6080 CreateFile C:\Users\User\AppData\Roaming\MCLauncher SUCCESS Desired Access: Read Data/List Directory, Synchronize, Disposition: Open, Options: Directory, Synchronous IO Non-Alert, Attributes: n/a, ShareMode: Read, Write, Delete, AllocationSize: n/a, OpenResult: Opened 98 12:38:33,5574277 MCLauncher.exe 6080 QueryDirectory C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Filter: MCLauncher.exe, 1: MCLauncher.exe 98 12:38:33,5574460 MCLauncher.exe 6080 CloseFile C:\Users\User\AppData\Roaming\MCLauncher SUCCESS 98 12:38:33,5575620 MCLauncher.exe 6080 CreateFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Desired Access: Generic Read, Disposition: Open, Options: Synchronous IO Non-Alert, Non-Directory File, Attributes: N, ShareMode: Read, Write, AllocationSize: n/a, OpenResult: Opened 98 12:38:33,5575839 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 2 400 491, Length: 4 096, Priority: Normal 98 12:38:33,5575986 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 2 400 517, Length: 512 98 12:38:33,5576072 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 2 400 548, Length: 6 656 98 12:38:33,5576138 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 2 407 204, Length: 512 98 12:38:33,5576216 MCLauncher.exe 6080 CloseFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS 98 12:38:33,5578305 MCLauncher.exe 6080 RegQueryKey HKCU SUCCESS Query: HandleTags, HandleTags: 0x0 98 12:38:33,5578391 MCLauncher.exe 6080 RegQueryKey HKCU SUCCESS Query: Name 98 12:38:33,5578505 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Python\PythonCore\MCLauncher\Modules\winerror NAME NOT FOUND Desired Access: Query Value 98 12:38:33,5578657 MCLauncher.exe 6080 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 98 12:38:33,5578704 MCLauncher.exe 6080 RegQueryKey HKLM SUCCESS Query: Name 98 12:38:33,5578801 MCLauncher.exe 6080 RegOpenKey HKLM\Software\WOW6432Node\Python\PythonCore\MCLauncher\Modules\winerror NAME NOT FOUND Desired Access: Query Value 98 12:38:33,5579904 MCLauncher.exe 6080 CreateFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Desired Access: Generic Read, Disposition: Open, Options: Synchronous IO Non-Alert, Non-Directory File, Attributes: N, ShareMode: Read, Write, AllocationSize: n/a, OpenResult: Opened 98 12:38:33,5580134 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 2 347 472, Length: 4 096, Priority: Normal 98 12:38:33,5580305 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 2 347 498, Length: 512 98 12:38:33,5580394 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 2 347 514, Length: 37 888 98 12:38:33,5580674 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 2 359 296, Length: 24 576, I/O Flags: Non-cached, Paging I/O, Priority: Normal 98 12:38:33,5644621 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 2 385 402, Length: 512 98 12:38:33,5644937 MCLauncher.exe 6080 CloseFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS 98 12:38:33,5654930 MCLauncher.exe 6080 CreateFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Desired Access: Generic Read, Disposition: Open, Options: Synchronous IO Non-Alert, Non-Directory File, Attributes: N, ShareMode: Read, Write, AllocationSize: n/a, OpenResult: Opened 98 12:38:33,5655194 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 2 392 977, Length: 4 096, Priority: Normal 98 12:38:33,5655343 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 2 393 003, Length: 512 98 12:38:33,5655432 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 2 393 032, Length: 7 168 98 12:38:33,5655496 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 2 400 200, Length: 512 98 12:38:33,5655593 MCLauncher.exe 6080 CloseFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS 98 12:38:33,5657715 MCLauncher.exe 6080 RegQueryKey HKCU SUCCESS Query: HandleTags, HandleTags: 0x0 98 12:38:33,5657790 MCLauncher.exe 6080 RegQueryKey HKCU SUCCESS Query: Name 98 12:38:33,5657901 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Python\PythonCore\MCLauncher\Modules\pywintypes NAME NOT FOUND Desired Access: Query Value 98 12:38:33,5658045 MCLauncher.exe 6080 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 98 12:38:33,5658092 MCLauncher.exe 6080 RegQueryKey HKLM SUCCESS Query: Name 98 12:38:33,5658186 MCLauncher.exe 6080 RegOpenKey HKLM\Software\WOW6432Node\Python\PythonCore\MCLauncher\Modules\pywintypes NAME NOT FOUND Desired Access: Query Value 98 12:38:33,5659621 MCLauncher.exe 6080 CreateFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Desired Access: Generic Read, Disposition: Open, Options: Synchronous IO Non-Alert, Non-Directory File, Attributes: N, ShareMode: Read, Write, AllocationSize: n/a, OpenResult: Opened 98 12:38:33,5659862 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 8 348 909, Length: 4 096, Priority: Normal 98 12:38:33,5660045 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 8 348 935, Length: 512 98 12:38:33,5660170 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 8 348 955, Length: 42 496 98 12:38:33,5660430 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 8 391 451, Length: 512 98 12:38:33,5660516 MCLauncher.exe 6080 CloseFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS 98 12:38:33,5669958 MCLauncher.exe 6080 CreateFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Desired Access: Generic Read, Disposition: Open, Options: Synchronous IO Non-Alert, Non-Directory File, Attributes: N, ShareMode: Read, Write, AllocationSize: n/a, OpenResult: Opened 98 12:38:33,5670202 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 2 407 375, Length: 4 096, Priority: Normal 98 12:38:33,5670368 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 2 407 401, Length: 512 98 12:38:33,5670459 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 2 407 433, Length: 6 144 98 12:38:33,5670531 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 2 413 577, Length: 512 98 12:38:33,5670617 MCLauncher.exe 6080 CloseFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS 98 12:38:33,5672332 MCLauncher.exe 6080 RegQueryKey HKCU SUCCESS Query: HandleTags, HandleTags: 0x0 98 12:38:33,5672402 MCLauncher.exe 6080 RegQueryKey HKCU SUCCESS Query: Name 98 12:38:33,5672512 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Python\PythonCore\MCLauncher\Modules\glob NAME NOT FOUND Desired Access: Query Value 98 12:38:33,5672640 MCLauncher.exe 6080 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 98 12:38:33,5672687 MCLauncher.exe 6080 RegQueryKey HKLM SUCCESS Query: Name 98 12:38:33,5672776 MCLauncher.exe 6080 RegOpenKey HKLM\Software\WOW6432Node\Python\PythonCore\MCLauncher\Modules\glob NAME NOT FOUND Desired Access: Query Value 98 12:38:33,5673937 MCLauncher.exe 6080 CreateFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Desired Access: Generic Read, Disposition: Open, Options: Synchronous IO Non-Alert, Non-Directory File, Attributes: N, ShareMode: Read, Write, AllocationSize: n/a, OpenResult: Opened 98 12:38:33,5674166 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 2 095 792, Length: 4 096, Priority: Normal 98 12:38:33,5674377 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 2 097 152, Length: 4 096, I/O Flags: Non-cached, Paging I/O, Priority: Normal 98 12:38:33,5779794 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 2 095 818, Length: 512 98 12:38:33,5780024 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 2 095 830, Length: 1 024 98 12:38:33,5780093 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 2 096 854, Length: 512 98 12:38:33,5781027 MCLauncher.exe 6080 CloseFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS 98 12:38:33,5924969 MCLauncher.exe 6080 CreateFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Desired Access: Generic Read, Disposition: Open, Options: Synchronous IO Non-Alert, Non-Directory File, Attributes: N, ShareMode: Read, Write, AllocationSize: n/a, OpenResult: Opened 98 12:38:33,5925282 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 2 387 081, Length: 4 096, Priority: Normal 98 12:38:33,5925476 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 2 387 107, Length: 512 98 12:38:33,5925564 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 2 387 143, Length: 512 98 12:38:33,5925653 MCLauncher.exe 6080 CloseFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS 98 12:38:33,5929221 MCLauncher.exe 6080 RegQueryKey HKCU SUCCESS Query: HandleTags, HandleTags: 0x0 98 12:38:33,5929310 MCLauncher.exe 6080 RegQueryKey HKCU SUCCESS Query: Name 98 12:38:33,5929438 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Python\PythonCore\MCLauncher\Modules\helpers NAME NOT FOUND Desired Access: Query Value 98 12:38:33,5929607 MCLauncher.exe 6080 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 98 12:38:33,5929656 MCLauncher.exe 6080 RegQueryKey HKLM SUCCESS Query: Name 98 12:38:33,5929756 MCLauncher.exe 6080 RegOpenKey HKLM\Software\WOW6432Node\Python\PythonCore\MCLauncher\Modules\helpers NAME NOT FOUND Desired Access: Query Value 98 12:38:33,5931025 MCLauncher.exe 6080 CreateFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Desired Access: Generic Read, Disposition: Open, Options: Synchronous IO Non-Alert, Non-Directory File, Attributes: N, ShareMode: Read, Write, AllocationSize: n/a, OpenResult: Opened 98 12:38:33,5931272 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 2 601 095, Length: 4 096, Priority: Normal 98 12:38:33,5931430 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 2 601 121, Length: 512 98 12:38:33,5931726 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 2 601 136, Length: 93 184 98 12:38:33,5931956 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 2 621 440, Length: 73 728, I/O Flags: Non-cached, Paging I/O, Priority: Normal 98 12:38:33,6001342 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 2 694 320, Length: 512 98 12:38:33,6002165 MCLauncher.exe 6080 CloseFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS 98 12:38:33,6023772 MCLauncher.exe 6080 CreateFile C:\Users\User\OneDrive\Desktop NAME NOT FOUND Desired Access: Read Attributes, Disposition: Open, Options: Open Reparse Point, Attributes: n/a, ShareMode: Read, Write, Delete, AllocationSize: n/a 98 12:38:33,6024853 MCLauncher.exe 6080 CreateFile C:\Users\User\Desktop SUCCESS Desired Access: Read Data/List Directory, Synchronize, Disposition: Open, Options: Directory, Synchronous IO Non-Alert, Attributes: n/a, ShareMode: Read, Write, Delete, AllocationSize: n/a, OpenResult: Opened 98 12:38:33,6025102 MCLauncher.exe 6080 QueryDirectory C:\Users\User\Desktop\* SUCCESS Filter: *, 1: . 98 12:38:33,6025393 MCLauncher.exe 6080 QueryDirectory C:\Users\User\Desktop SUCCESS 0: .., 1: desktop.ini, 2: MCLauncher.lnk, 3: ProcessMonitor.zip, 4: Uninstall Tool.lnk, 5: Yandex.lnk, 6: µTorrent.lnk, 7: Помощник по обновлению до Windows 10.lnk 98 12:38:33,6025590 MCLauncher.exe 6080 QueryDirectory C:\Users\User\Desktop NO MORE FILES 98 12:38:33,6025681 MCLauncher.exe 6080 CloseFile C:\Users\User\Desktop SUCCESS 98 12:38:33,6026715 MCLauncher.exe 6080 CreateFile C:\Users\User\Desktop SUCCESS Desired Access: Read Data/List Directory, Synchronize, Disposition: Open, Options: Directory, Synchronous IO Non-Alert, Attributes: n/a, ShareMode: Read, Write, Delete, AllocationSize: n/a, OpenResult: Opened 98 12:38:33,6026906 MCLauncher.exe 6080 QueryDirectory C:\Users\User\Desktop\* SUCCESS Filter: *, 1: . 98 12:38:33,6027072 MCLauncher.exe 6080 QueryDirectory C:\Users\User\Desktop SUCCESS 0: .., 1: desktop.ini, 2: MCLauncher.lnk, 3: ProcessMonitor.zip, 4: Uninstall Tool.lnk, 5: Yandex.lnk, 6: µTorrent.lnk, 7: Помощник по обновлению до Windows 10.lnk 98 12:38:33,6027236 MCLauncher.exe 6080 QueryDirectory C:\Users\User\Desktop NO MORE FILES 98 12:38:33,6027316 MCLauncher.exe 6080 CloseFile C:\Users\User\Desktop SUCCESS 98 12:38:33,6030081 MCLauncher.exe 6080 CreateFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Desired Access: Read Attributes, Disposition: Open, Options: Open Reparse Point, Attributes: n/a, ShareMode: Read, Write, Delete, AllocationSize: n/a, OpenResult: Opened 98 12:38:33,6030258 MCLauncher.exe 6080 QueryNetworkOpenInformationFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS CreationTime: 24.08.2018 12:30:11, LastAccessTime: 24.08.2018 12:30:11, LastWriteTime: 24.08.2018 12:38:31, ChangeTime: 24.08.2018 12:38:31, AllocationSize: 01.01.1601 3:00:01, EndOfFile: 01.01.1601 3:00:01, FileAttributes: A 98 12:38:33,6030341 MCLauncher.exe 6080 CloseFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS 98 12:38:33,6032710 MCLauncher.exe 6080 CreateFile C:\Users\User\AppData\Roaming\MCLauncher SUCCESS Desired Access: Read Attributes, Disposition: Open, Options: Open Reparse Point, Attributes: n/a, ShareMode: Read, Write, Delete, AllocationSize: n/a, OpenResult: Opened 98 12:38:33,6032865 MCLauncher.exe 6080 QueryNetworkOpenInformationFile C:\Users\User\AppData\Roaming\MCLauncher SUCCESS CreationTime: 24.08.2018 12:30:11, LastAccessTime: 24.08.2018 12:30:32, LastWriteTime: 24.08.2018 12:30:32, ChangeTime: 24.08.2018 12:30:32, AllocationSize: 01.01.1601 3:00:00, EndOfFile: 01.01.1601 3:00:00, FileAttributes: D 98 12:38:33,6032943 MCLauncher.exe 6080 CloseFile C:\Users\User\AppData\Roaming\MCLauncher SUCCESS 98 12:38:33,6034065 MCLauncher.exe 6080 CreateFile C:\Users\User\AppData\Roaming\MCLauncher SUCCESS Desired Access: Execute/Traverse, Synchronize, Disposition: Open, Options: Directory, Synchronous IO Non-Alert, Attributes: n/a, ShareMode: Read, Write, AllocationSize: n/a, OpenResult: Opened 98 12:38:33,6034276 MCLauncher.exe 6080 CloseFile C:\Users\User\AppData\Roaming\MCLauncher SUCCESS 98 12:38:33,6035096 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Classes SUCCESS Desired Access: Maximum Allowed, Granted Access: All Access 98 12:38:33,6035267 MCLauncher.exe 6080 RegSetInfoKey HKCU\Software\Classes SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 98 12:38:33,6035348 MCLauncher.exe 6080 RegQueryKey HKCU\Software\Classes SUCCESS Query: Name 98 12:38:33,6035436 MCLauncher.exe 6080 RegQueryKey HKCU\Software\Classes SUCCESS Query: HandleTags, HandleTags: 0x1 98 12:38:33,6035520 MCLauncher.exe 6080 RegQueryKey HKCU\Software\Classes SUCCESS Query: HandleTags, HandleTags: 0x1 98 12:38:33,6035567 MCLauncher.exe 6080 RegQueryKey HKCU\Software\Classes SUCCESS Query: Name 98 12:38:33,6035653 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Classes\wscript.shell NAME NOT FOUND Desired Access: Read 98 12:38:33,6035774 MCLauncher.exe 6080 RegOpenKey HKCR\wscript.shell SUCCESS Desired Access: Read 98 12:38:33,6035979 MCLauncher.exe 6080 RegSetInfoKey HKCR\WScript.Shell SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 98 12:38:33,6036052 MCLauncher.exe 6080 RegQueryKey HKCR\WScript.Shell SUCCESS Query: Name 98 12:38:33,6036112 MCLauncher.exe 6080 RegQueryKey HKCR\WScript.Shell SUCCESS Query: HandleTags, HandleTags: 0x401 98 12:38:33,6036212 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Classes\WScript.Shell\CLSID NAME NOT FOUND Desired Access: Read 98 12:38:33,6036298 MCLauncher.exe 6080 RegQueryKey HKCR\WScript.Shell SUCCESS Query: HandleTags, HandleTags: 0x401 98 12:38:33,6036351 MCLauncher.exe 6080 RegOpenKey HKCR\WScript.Shell\CLSID SUCCESS Desired Access: Read 98 12:38:33,6036456 MCLauncher.exe 6080 RegQueryKey HKCR\WScript.Shell\CLSID SUCCESS Query: Name 98 12:38:33,6036511 MCLauncher.exe 6080 RegQueryKey HKCR\WScript.Shell\CLSID SUCCESS Query: HandleTags, HandleTags: 0x401 98 12:38:33,6036589 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Classes\WScript.Shell\CLSID NAME NOT FOUND Desired Access: Maximum Allowed 98 12:38:33,6036656 MCLauncher.exe 6080 RegQueryValue HKCR\WScript.Shell\CLSID\(Default) SUCCESS Type: REG_SZ, Length: 78, Data: {72C24DD5-D70A-438B-8A42-98424B88AFB8} 98 12:38:33,6036761 MCLauncher.exe 6080 RegCloseKey HKCR\WScript.Shell\CLSID SUCCESS 98 12:38:33,6036811 MCLauncher.exe 6080 RegCloseKey HKCR\WScript.Shell SUCCESS 98 12:38:33,6040177 MCLauncher.exe 6080 CreateFile C:\Windows\SysWOW64\sxs.dll SUCCESS Desired Access: Read Attributes, Disposition: Open, Options: Open Reparse Point, Attributes: n/a, ShareMode: Read, Write, Delete, AllocationSize: n/a, OpenResult: Opened 98 12:38:33,6040493 MCLauncher.exe 6080 QueryBasicInformationFile C:\Windows\SysWOW64\sxs.dll SUCCESS CreationTime: 16.07.2016 14:42:56, LastAccessTime: 16.07.2016 14:42:56, LastWriteTime: 16.07.2016 14:42:56, ChangeTime: 20.07.2018 19:29:04, FileAttributes: A 98 12:38:33,6040581 MCLauncher.exe 6080 CloseFile C:\Windows\SysWOW64\sxs.dll SUCCESS 98 12:38:33,6041601 MCLauncher.exe 6080 CreateFile C:\Windows\SysWOW64\sxs.dll SUCCESS Desired Access: Read Data/List Directory, Execute/Traverse, Synchronize, Disposition: Open, Options: Synchronous IO Non-Alert, Non-Directory File, Attributes: n/a, ShareMode: Read, Delete, AllocationSize: n/a, OpenResult: Opened 98 12:38:33,6041897 MCLauncher.exe 6080 CreateFileMapping C:\Windows\SysWOW64\sxs.dll FILE LOCKED WITH ONLY READERS SyncType: SyncTypeCreateSection, PageProtection: PAGE_EXECUTE|PAGE_NOCACHE 98 12:38:33,6042069 MCLauncher.exe 6080 QueryNameInformationFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Name: \Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe 98 12:38:33,6042961 MCLauncher.exe 6080 CreateFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Desired Access: Synchronize, Disposition: Open, Options: Synchronous IO Non-Alert, Attributes: N, ShareMode: Read, Write, Delete, AllocationSize: n/a, OpenResult: Opened 98 12:38:33,6043158 MCLauncher.exe 6080 CloseFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS 98 12:38:33,6043452 MCLauncher.exe 6080 QueryNameInformationFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Name: \Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe 98 12:38:33,6044305 MCLauncher.exe 6080 CreateFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Desired Access: Synchronize, Disposition: Open, Options: Synchronous IO Non-Alert, Attributes: N, ShareMode: Read, Write, Delete, AllocationSize: n/a, OpenResult: Opened 98 12:38:33,6044480 MCLauncher.exe 6080 CloseFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS 98 12:38:33,6045244 MCLauncher.exe 6080 CreateFileMapping C:\Windows\SysWOW64\sxs.dll SUCCESS SyncType: SyncTypeOther 98 12:38:33,6045859 MCLauncher.exe 6080 Load Image C:\Windows\SysWOW64\sxs.dll SUCCESS Image Base: 0x6cda0000, Image Size: 0x81000 98 12:38:33,6046524 MCLauncher.exe 6080 CloseFile C:\Windows\SysWOW64\sxs.dll SUCCESS 98 12:38:33,6048189 MCLauncher.exe 6080 CreateFile C:\Windows\SysWOW64\sxs.dll SUCCESS Desired Access: Read Control, Disposition: Open, Options: , Attributes: n/a, ShareMode: Read, Delete, AllocationSize: n/a, OpenResult: Opened 98 12:38:33,6048475 MCLauncher.exe 6080 QuerySecurityFile C:\Windows\SysWOW64\sxs.dll BUFFER OVERFLOW Information: Owner 98 12:38:33,6048555 MCLauncher.exe 6080 QuerySecurityFile C:\Windows\SysWOW64\sxs.dll SUCCESS Information: Owner 98 12:38:33,6048627 MCLauncher.exe 6080 CloseFile C:\Windows\SysWOW64\sxs.dll SUCCESS 98 12:38:33,6050780 MCLauncher.exe 6080 RegQueryKey HKCU\Software\Classes SUCCESS Query: Name 98 12:38:33,6050957 MCLauncher.exe 6080 RegQueryKey HKCU\Software\Classes SUCCESS Query: HandleTags, HandleTags: 0x1 98 12:38:33,6051040 MCLauncher.exe 6080 RegQueryKey HKCU\Software\Classes SUCCESS Query: HandleTags, HandleTags: 0x1 98 12:38:33,6051098 MCLauncher.exe 6080 RegQueryKey HKCU\Software\Classes SUCCESS Query: Name 98 12:38:33,6051198 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Classes\wscript.shell NAME NOT FOUND Desired Access: Read 98 12:38:33,6051326 MCLauncher.exe 6080 RegOpenKey HKCR\wscript.shell SUCCESS Desired Access: Read 98 12:38:33,6051423 MCLauncher.exe 6080 RegSetInfoKey HKCR\WScript.Shell SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 98 12:38:33,6051472 MCLauncher.exe 6080 RegQueryKey HKCR\WScript.Shell SUCCESS Query: Name 98 12:38:33,6051539 MCLauncher.exe 6080 RegQueryKey HKCR\WScript.Shell SUCCESS Query: HandleTags, HandleTags: 0x401 98 12:38:33,6051641 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Classes\WScript.Shell\CLSID NAME NOT FOUND Desired Access: Read 98 12:38:33,6051722 MCLauncher.exe 6080 RegQueryKey HKCR\WScript.Shell SUCCESS Query: HandleTags, HandleTags: 0x401 98 12:38:33,6051777 MCLauncher.exe 6080 RegOpenKey HKCR\WScript.Shell\CLSID SUCCESS Desired Access: Read 98 12:38:33,6051849 MCLauncher.exe 6080 RegQueryKey HKCR\WScript.Shell\CLSID SUCCESS Query: Name 98 12:38:33,6051907 MCLauncher.exe 6080 RegQueryKey HKCR\WScript.Shell\CLSID SUCCESS Query: HandleTags, HandleTags: 0x401 98 12:38:33,6051988 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Classes\WScript.Shell\CLSID NAME NOT FOUND Desired Access: Maximum Allowed 98 12:38:33,6052049 MCLauncher.exe 6080 RegQueryValue HKCR\WScript.Shell\CLSID\(Default) SUCCESS Type: REG_SZ, Length: 78, Data: {72C24DD5-D70A-438B-8A42-98424B88AFB8} 98 12:38:33,6052143 MCLauncher.exe 6080 RegCloseKey HKCR\WScript.Shell\CLSID SUCCESS 98 12:38:33,6052193 MCLauncher.exe 6080 RegCloseKey HKCR\WScript.Shell SUCCESS 98 12:38:33,6052539 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Classes SUCCESS Desired Access: Maximum Allowed, Granted Access: All Access 98 12:38:33,6052619 MCLauncher.exe 6080 RegSetInfoKey HKCU\Software\Classes SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 98 12:38:33,6053107 MCLauncher.exe 6080 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 98 12:38:33,6053168 MCLauncher.exe 6080 RegOpenKey HKLM\Software\Microsoft\COM3 SUCCESS Desired Access: Read 98 12:38:33,6053262 MCLauncher.exe 6080 RegSetInfoKey HKLM\SOFTWARE\Microsoft\COM3 SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 98 12:38:33,6053307 MCLauncher.exe 6080 RegQueryValue HKLM\SOFTWARE\Microsoft\COM3\Com+Enabled SUCCESS Type: REG_DWORD, Length: 4, Data: 1 98 12:38:33,6053484 MCLauncher.exe 6080 RegCloseKey HKLM\SOFTWARE\Microsoft\COM3 SUCCESS 98 12:38:33,6054082 MCLauncher.exe 6080 Load Image C:\Windows\SysWOW64\clbcatq.dll SUCCESS Image Base: 0x74ef0000, Image Size: 0x84000 98 12:38:33,6056113 MCLauncher.exe 6080 CreateFile C:\Windows\SysWOW64\clbcatq.dll SUCCESS Desired Access: Read Control, Disposition: Open, Options: , Attributes: n/a, ShareMode: Read, Delete, AllocationSize: n/a, OpenResult: Opened 98 12:38:33,6056404 MCLauncher.exe 6080 QuerySecurityFile C:\Windows\SysWOW64\clbcatq.dll BUFFER OVERFLOW Information: Owner 98 12:38:33,6056487 MCLauncher.exe 6080 QuerySecurityFile C:\Windows\SysWOW64\clbcatq.dll SUCCESS Information: Owner 98 12:38:33,6056559 MCLauncher.exe 6080 CloseFile C:\Windows\SysWOW64\clbcatq.dll SUCCESS 98 12:38:33,6057895 MCLauncher.exe 6080 RegQueryKey HKCU\Software\Classes SUCCESS Query: Name 98 12:38:33,6057989 MCLauncher.exe 6080 RegQueryKey HKCU\Software\Classes SUCCESS Query: HandleTags, HandleTags: 0x1 98 12:38:33,6058064 MCLauncher.exe 6080 RegQueryKey HKCU\Software\Classes SUCCESS Query: HandleTags, HandleTags: 0x1 98 12:38:33,6058116 MCLauncher.exe 6080 RegQueryKey HKCU\Software\Classes SUCCESS Query: Name 98 12:38:33,6058235 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Classes\WOW6432Node\CLSID\{72C24DD5-D70A-438B-8A42-98424B88AFB8} NAME NOT FOUND Desired Access: Read 98 12:38:33,6058415 MCLauncher.exe 6080 RegOpenKey HKCR\WOW6432Node\CLSID\{72C24DD5-D70A-438B-8A42-98424B88AFB8} SUCCESS Desired Access: Read 98 12:38:33,6058634 MCLauncher.exe 6080 RegSetInfoKey HKCR\WOW6432Node\CLSID\{72C24DD5-D70A-438B-8A42-98424B88AFB8} SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 98 12:38:33,6058684 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{72C24DD5-D70A-438B-8A42-98424B88AFB8} SUCCESS Query: Name 98 12:38:33,6058748 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{72C24DD5-D70A-438B-8A42-98424B88AFB8} SUCCESS Query: HandleTags, HandleTags: 0x401 98 12:38:33,6059000 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Classes\WOW6432Node\CLSID\{72C24DD5-D70A-438B-8A42-98424B88AFB8}\TreatAs NAME NOT FOUND Desired Access: Query Value 98 12:38:33,6059177 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{72C24DD5-D70A-438B-8A42-98424B88AFB8} SUCCESS Query: HandleTags, HandleTags: 0x401 98 12:38:33,6059241 MCLauncher.exe 6080 RegOpenKey HKCR\WOW6432Node\CLSID\{72C24DD5-D70A-438B-8A42-98424B88AFB8}\TreatAs NAME NOT FOUND Desired Access: Query Value 98 12:38:33,6059324 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{72C24DD5-D70A-438B-8A42-98424B88AFB8} SUCCESS Query: Name 98 12:38:33,6059446 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{72C24DD5-D70A-438B-8A42-98424B88AFB8} SUCCESS Query: Name 98 12:38:33,6059504 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{72C24DD5-D70A-438B-8A42-98424B88AFB8} SUCCESS Query: HandleTags, HandleTags: 0x401 98 12:38:33,6059610 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Classes\WOW6432Node\CLSID\{72C24DD5-D70A-438B-8A42-98424B88AFB8} NAME NOT FOUND Desired Access: Maximum Allowed 98 12:38:33,6059684 MCLauncher.exe 6080 RegQueryValue HKCR\WOW6432Node\CLSID\{72C24DD5-D70A-438B-8A42-98424B88AFB8}\(Default) SUCCESS Type: REG_SZ, Length: 66, Data: Windows Script Host Shell Object 98 12:38:33,6059754 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{72C24DD5-D70A-438B-8A42-98424B88AFB8} SUCCESS Query: Name 98 12:38:33,6059806 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{72C24DD5-D70A-438B-8A42-98424B88AFB8} SUCCESS Query: HandleTags, HandleTags: 0x401 98 12:38:33,6059892 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Classes\WOW6432Node\CLSID\{72C24DD5-D70A-438B-8A42-98424B88AFB8} NAME NOT FOUND Desired Access: Maximum Allowed 98 12:38:33,6059956 MCLauncher.exe 6080 RegQueryValue HKCR\WOW6432Node\CLSID\{72C24DD5-D70A-438B-8A42-98424B88AFB8}\(Default) SUCCESS Type: REG_SZ, Length: 66, Data: Windows Script Host Shell Object 98 12:38:33,6060017 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{72C24DD5-D70A-438B-8A42-98424B88AFB8} SUCCESS Query: Name 98 12:38:33,6060072 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{72C24DD5-D70A-438B-8A42-98424B88AFB8} SUCCESS Query: HandleTags, HandleTags: 0x401 98 12:38:33,6060158 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Classes\WOW6432Node\CLSID\{72C24DD5-D70A-438B-8A42-98424B88AFB8}\InprocServer32 NAME NOT FOUND Desired Access: Read 98 12:38:33,6060241 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{72C24DD5-D70A-438B-8A42-98424B88AFB8} SUCCESS Query: HandleTags, HandleTags: 0x401 98 12:38:33,6060294 MCLauncher.exe 6080 RegOpenKey HKCR\WOW6432Node\CLSID\{72C24DD5-D70A-438B-8A42-98424B88AFB8}\InprocServer32 SUCCESS Desired Access: Read 98 12:38:33,6060405 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{72C24DD5-D70A-438B-8A42-98424B88AFB8}\InProcServer32 SUCCESS Query: Name 98 12:38:33,6060463 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{72C24DD5-D70A-438B-8A42-98424B88AFB8}\InProcServer32 SUCCESS Query: HandleTags, HandleTags: 0x401 98 12:38:33,6060543 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Classes\WOW6432Node\CLSID\{72C24DD5-D70A-438B-8A42-98424B88AFB8}\InProcServer32 NAME NOT FOUND Desired Access: Maximum Allowed 98 12:38:33,6060610 MCLauncher.exe 6080 RegQueryValue HKCR\WOW6432Node\CLSID\{72C24DD5-D70A-438B-8A42-98424B88AFB8}\InProcServer32\InprocServer32 NAME NOT FOUND Length: 144 98 12:38:33,6060748 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{72C24DD5-D70A-438B-8A42-98424B88AFB8}\InProcServer32 SUCCESS Query: Name 98 12:38:33,6060818 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{72C24DD5-D70A-438B-8A42-98424B88AFB8}\InProcServer32 SUCCESS Query: HandleTags, HandleTags: 0x401 98 12:38:33,6060915 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Classes\WOW6432Node\CLSID\{72C24DD5-D70A-438B-8A42-98424B88AFB8}\InProcServer32 NAME NOT FOUND Desired Access: Maximum Allowed 98 12:38:33,6060992 MCLauncher.exe 6080 RegQueryValue HKCR\WOW6432Node\CLSID\{72C24DD5-D70A-438B-8A42-98424B88AFB8}\InProcServer32\(Default) SUCCESS Type: REG_SZ, Length: 60, Data: C:\Windows\SysWOW64\wshom.ocx 98 12:38:33,6061053 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{72C24DD5-D70A-438B-8A42-98424B88AFB8}\InProcServer32 SUCCESS Query: Name 98 12:38:33,6061106 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{72C24DD5-D70A-438B-8A42-98424B88AFB8}\InProcServer32 SUCCESS Query: HandleTags, HandleTags: 0x401 98 12:38:33,6061189 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Classes\WOW6432Node\CLSID\{72C24DD5-D70A-438B-8A42-98424B88AFB8}\InProcServer32 NAME NOT FOUND Desired Access: Maximum Allowed 98 12:38:33,6061253 MCLauncher.exe 6080 RegQueryValue HKCR\WOW6432Node\CLSID\{72C24DD5-D70A-438B-8A42-98424B88AFB8}\InProcServer32\(Default) SUCCESS Type: REG_SZ, Length: 60, Data: C:\Windows\SysWOW64\wshom.ocx 98 12:38:33,6061311 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{72C24DD5-D70A-438B-8A42-98424B88AFB8}\InProcServer32 SUCCESS Query: Name 98 12:38:33,6061366 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{72C24DD5-D70A-438B-8A42-98424B88AFB8}\InProcServer32 SUCCESS Query: HandleTags, HandleTags: 0x401 98 12:38:33,6061444 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Classes\WOW6432Node\CLSID\{72C24DD5-D70A-438B-8A42-98424B88AFB8}\InProcServer32 NAME NOT FOUND Desired Access: Maximum Allowed 98 12:38:33,6061507 MCLauncher.exe 6080 RegQueryValue HKCR\WOW6432Node\CLSID\{72C24DD5-D70A-438B-8A42-98424B88AFB8}\InProcServer32\ThreadingModel SUCCESS Type: REG_SZ, Length: 20, Data: Apartment 98 12:38:33,6061671 MCLauncher.exe 6080 RegCloseKey HKCR\WOW6432Node\CLSID\{72C24DD5-D70A-438B-8A42-98424B88AFB8}\InProcServer32 SUCCESS 98 12:38:33,6061724 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{72C24DD5-D70A-438B-8A42-98424B88AFB8} SUCCESS Query: Name 98 12:38:33,6061793 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{72C24DD5-D70A-438B-8A42-98424B88AFB8} SUCCESS Query: HandleTags, HandleTags: 0x401 98 12:38:33,6061895 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Classes\WOW6432Node\CLSID\{72C24DD5-D70A-438B-8A42-98424B88AFB8}\InprocHandler32 NAME NOT FOUND Desired Access: Query Value 98 12:38:33,6061995 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{72C24DD5-D70A-438B-8A42-98424B88AFB8} SUCCESS Query: HandleTags, HandleTags: 0x401 98 12:38:33,6062048 MCLauncher.exe 6080 RegOpenKey HKCR\WOW6432Node\CLSID\{72C24DD5-D70A-438B-8A42-98424B88AFB8}\InprocHandler32 NAME NOT FOUND Desired Access: Query Value 98 12:38:33,6062120 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{72C24DD5-D70A-438B-8A42-98424B88AFB8} SUCCESS Query: Name 98 12:38:33,6062175 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{72C24DD5-D70A-438B-8A42-98424B88AFB8} SUCCESS Query: HandleTags, HandleTags: 0x401 98 12:38:33,6062258 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Classes\WOW6432Node\CLSID\{72C24DD5-D70A-438B-8A42-98424B88AFB8}\InprocHandler NAME NOT FOUND Desired Access: Query Value 98 12:38:33,6062336 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{72C24DD5-D70A-438B-8A42-98424B88AFB8} SUCCESS Query: HandleTags, HandleTags: 0x401 98 12:38:33,6062386 MCLauncher.exe 6080 RegOpenKey HKCR\WOW6432Node\CLSID\{72C24DD5-D70A-438B-8A42-98424B88AFB8}\InprocHandler NAME NOT FOUND Desired Access: Query Value 98 12:38:33,6062491 MCLauncher.exe 6080 RegOpenKey HKCU SUCCESS Desired Access: Read 98 12:38:33,6062574 MCLauncher.exe 6080 RegSetInfoKey HKCU SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 98 12:38:33,6062635 MCLauncher.exe 6080 RegQueryKey HKCU SUCCESS Query: HandleTags, HandleTags: 0x100 98 12:38:33,6062690 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Classes\Local Settings REPARSE Desired Access: Read 98 12:38:33,6062765 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Classes\Local Settings SUCCESS Desired Access: Read 98 12:38:33,6062843 MCLauncher.exe 6080 RegCloseKey HKCU SUCCESS 98 12:38:33,6062940 MCLauncher.exe 6080 RegQueryKey HKCU\Software\Classes\Local Settings SUCCESS Query: HandleTags, HandleTags: 0x0 98 12:38:33,6062990 MCLauncher.exe 6080 RegQueryKey HKCU\Software\Classes\Local Settings SUCCESS Query: Name 98 12:38:33,6063064 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Classes\Local Settings\Software\Microsoft\Ole\FeatureDevelopmentProperties NAME NOT FOUND Desired Access: Read 98 12:38:33,6063148 MCLauncher.exe 6080 RegCloseKey HKCU\Software\Classes\Local Settings SUCCESS 98 12:38:33,6063211 MCLauncher.exe 6080 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 98 12:38:33,6063261 MCLauncher.exe 6080 RegOpenKey HKLM\Software\Microsoft\Ole\FeatureDevelopmentProperties NAME NOT FOUND Desired Access: Read 98 12:38:33,6063355 MCLauncher.exe 6080 RegCloseKey HKCR\WOW6432Node\CLSID\{72C24DD5-D70A-438B-8A42-98424B88AFB8} SUCCESS 98 12:38:33,6063433 MCLauncher.exe 6080 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 98 12:38:33,6063480 MCLauncher.exe 6080 RegQueryKey HKLM SUCCESS Query: Name 98 12:38:33,6063555 MCLauncher.exe 6080 RegOpenKey HKLM\Software\WOW6432Node\Microsoft\OLE REPARSE Desired Access: Read 98 12:38:33,6063635 MCLauncher.exe 6080 RegOpenKey HKLM\SOFTWARE\Microsoft\Ole SUCCESS Desired Access: Read 98 12:38:33,6063688 MCLauncher.exe 6080 RegSetInfoKey HKLM\SOFTWARE\Microsoft\Ole SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 98 12:38:33,6063732 MCLauncher.exe 6080 RegQueryValue HKLM\SOFTWARE\Microsoft\Ole\MaxSxSHashCount NAME NOT FOUND Length: 144 98 12:38:33,6063868 MCLauncher.exe 6080 RegCloseKey HKLM\SOFTWARE\Microsoft\Ole SUCCESS 98 12:38:33,6064289 MCLauncher.exe 6080 RegQueryKey HKCU\Software\Classes SUCCESS Query: Name 98 12:38:33,6064361 MCLauncher.exe 6080 RegQueryKey HKCU\Software\Classes SUCCESS Query: HandleTags, HandleTags: 0x1 98 12:38:33,6064436 MCLauncher.exe 6080 RegQueryKey HKCU\Software\Classes SUCCESS Query: HandleTags, HandleTags: 0x1 98 12:38:33,6064483 MCLauncher.exe 6080 RegQueryKey HKCU\Software\Classes SUCCESS Query: Name 98 12:38:33,6064577 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Classes\WOW6432Node\CLSID\{72C24DD5-D70A-438B-8A42-98424B88AFB8} NAME NOT FOUND Desired Access: Read 98 12:38:33,6064694 MCLauncher.exe 6080 RegOpenKey HKCR\WOW6432Node\CLSID\{72C24DD5-D70A-438B-8A42-98424B88AFB8} SUCCESS Desired Access: Read 98 12:38:33,6064777 MCLauncher.exe 6080 RegSetInfoKey HKCR\WOW6432Node\CLSID\{72C24DD5-D70A-438B-8A42-98424B88AFB8} SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 98 12:38:33,6064824 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{72C24DD5-D70A-438B-8A42-98424B88AFB8} SUCCESS Query: Name 98 12:38:33,6064885 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{72C24DD5-D70A-438B-8A42-98424B88AFB8} SUCCESS Query: HandleTags, HandleTags: 0x401 98 12:38:33,6064979 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Classes\WOW6432Node\CLSID\{72C24DD5-D70A-438B-8A42-98424B88AFB8}\TreatAs NAME NOT FOUND Desired Access: Read 98 12:38:33,6065062 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{72C24DD5-D70A-438B-8A42-98424B88AFB8} SUCCESS Query: HandleTags, HandleTags: 0x401 98 12:38:33,6065115 MCLauncher.exe 6080 RegOpenKey HKCR\WOW6432Node\CLSID\{72C24DD5-D70A-438B-8A42-98424B88AFB8}\TreatAs NAME NOT FOUND Desired Access: Read 98 12:38:33,6065187 MCLauncher.exe 6080 RegCloseKey HKCR\WOW6432Node\CLSID\{72C24DD5-D70A-438B-8A42-98424B88AFB8} SUCCESS 98 12:38:33,6067802 MCLauncher.exe 6080 CreateFile C:\Windows\SysWOW64\wshom.ocx SUCCESS Desired Access: Read Attributes, Disposition: Open, Options: Open Reparse Point, Attributes: n/a, ShareMode: Read, Write, Delete, AllocationSize: n/a, OpenResult: Opened 98 12:38:33,6068082 MCLauncher.exe 6080 QueryBasicInformationFile C:\Windows\SysWOW64\wshom.ocx SUCCESS CreationTime: 16.07.2016 14:43:02, LastAccessTime: 16.07.2016 14:43:02, LastWriteTime: 16.07.2016 14:43:02, ChangeTime: 20.07.2018 2:17:50, FileAttributes: A 98 12:38:33,6068173 MCLauncher.exe 6080 CloseFile C:\Windows\SysWOW64\wshom.ocx SUCCESS 98 12:38:33,6069354 MCLauncher.exe 6080 CreateFile C:\Windows\SysWOW64\wshom.ocx SUCCESS Desired Access: Read Data/List Directory, Execute/Traverse, Synchronize, Disposition: Open, Options: Synchronous IO Non-Alert, Non-Directory File, Attributes: n/a, ShareMode: Read, Delete, AllocationSize: n/a, OpenResult: Opened 98 12:38:33,6069653 MCLauncher.exe 6080 CreateFileMapping C:\Windows\SysWOW64\wshom.ocx FILE LOCKED WITH ONLY READERS SyncType: SyncTypeCreateSection, PageProtection: PAGE_EXECUTE|PAGE_NOCACHE 98 12:38:33,6069814 MCLauncher.exe 6080 QueryNameInformationFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Name: \Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe 98 12:38:33,6070733 MCLauncher.exe 6080 CreateFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Desired Access: Synchronize, Disposition: Open, Options: Synchronous IO Non-Alert, Attributes: N, ShareMode: Read, Write, Delete, AllocationSize: n/a, OpenResult: Opened 98 12:38:33,6070938 MCLauncher.exe 6080 CloseFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS 98 12:38:33,6071249 MCLauncher.exe 6080 QueryNameInformationFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Name: \Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe 98 12:38:33,6072113 MCLauncher.exe 6080 CreateFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Desired Access: Synchronize, Disposition: Open, Options: Synchronous IO Non-Alert, Attributes: N, ShareMode: Read, Write, Delete, AllocationSize: n/a, OpenResult: Opened 98 12:38:33,6072288 MCLauncher.exe 6080 CloseFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS 98 12:38:33,6073349 MCLauncher.exe 6080 CreateFileMapping C:\Windows\SysWOW64\wshom.ocx SUCCESS SyncType: SyncTypeOther 98 12:38:33,6073867 MCLauncher.exe 6080 Load Image C:\Windows\SysWOW64\wshom.ocx SUCCESS Image Base: 0x70e90000, Image Size: 0x24000 98 12:38:33,6074413 MCLauncher.exe 6080 CloseFile C:\Windows\SysWOW64\wshom.ocx SUCCESS 98 12:38:33,6076942 MCLauncher.exe 6080 CreateFile C:\Windows\SysWOW64\scrrun.dll SUCCESS Desired Access: Read Attributes, Disposition: Open, Options: Open Reparse Point, Attributes: n/a, ShareMode: Read, Write, Delete, AllocationSize: n/a, OpenResult: Opened 98 12:38:33,6077214 MCLauncher.exe 6080 QueryBasicInformationFile C:\Windows\SysWOW64\scrrun.dll SUCCESS CreationTime: 16.07.2016 14:43:02, LastAccessTime: 16.07.2016 14:43:02, LastWriteTime: 16.07.2016 14:43:02, ChangeTime: 20.07.2018 2:17:50, FileAttributes: A 98 12:38:33,6077297 MCLauncher.exe 6080 CloseFile C:\Windows\SysWOW64\scrrun.dll SUCCESS 98 12:38:33,6078294 MCLauncher.exe 6080 CreateFile C:\Windows\SysWOW64\scrrun.dll SUCCESS Desired Access: Read Data/List Directory, Execute/Traverse, Synchronize, Disposition: Open, Options: Synchronous IO Non-Alert, Non-Directory File, Attributes: n/a, ShareMode: Read, Delete, AllocationSize: n/a, OpenResult: Opened 98 12:38:33,6078746 MCLauncher.exe 6080 CreateFileMapping C:\Windows\SysWOW64\scrrun.dll FILE LOCKED WITH ONLY READERS SyncType: SyncTypeCreateSection, PageProtection: PAGE_EXECUTE|PAGE_NOCACHE 98 12:38:33,6078876 MCLauncher.exe 6080 QueryNameInformationFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Name: \Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe 98 12:38:33,6079763 MCLauncher.exe 6080 CreateFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Desired Access: Synchronize, Disposition: Open, Options: Synchronous IO Non-Alert, Attributes: N, ShareMode: Read, Write, Delete, AllocationSize: n/a, OpenResult: Opened 98 12:38:33,6079948 MCLauncher.exe 6080 CloseFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS 98 12:38:33,6080236 MCLauncher.exe 6080 QueryNameInformationFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Name: \Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe 98 12:38:33,6081173 MCLauncher.exe 6080 CreateFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Desired Access: Synchronize, Disposition: Open, Options: Synchronous IO Non-Alert, Attributes: N, ShareMode: Read, Write, Delete, AllocationSize: n/a, OpenResult: Opened 98 12:38:33,6081347 MCLauncher.exe 6080 CloseFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS 98 12:38:33,6082328 MCLauncher.exe 6080 CreateFileMapping C:\Windows\SysWOW64\scrrun.dll SUCCESS SyncType: SyncTypeOther 98 12:38:33,6082794 MCLauncher.exe 6080 Load Image C:\Windows\SysWOW64\scrrun.dll SUCCESS Image Base: 0x6dca0000, Image Size: 0x2b000 98 12:38:33,6083223 MCLauncher.exe 6080 CloseFile C:\Windows\SysWOW64\scrrun.dll SUCCESS 98 12:38:33,6084894 MCLauncher.exe 6080 CreateFile C:\Windows\SysWOW64\scrrun.dll SUCCESS Desired Access: Read Control, Disposition: Open, Options: , Attributes: n/a, ShareMode: Read, Delete, AllocationSize: n/a, OpenResult: Opened 98 12:38:33,6085179 MCLauncher.exe 6080 QuerySecurityFile C:\Windows\SysWOW64\scrrun.dll BUFFER OVERFLOW Information: Owner 98 12:38:33,6085276 MCLauncher.exe 6080 QuerySecurityFile C:\Windows\SysWOW64\scrrun.dll SUCCESS Information: Owner 98 12:38:33,6085345 MCLauncher.exe 6080 CloseFile C:\Windows\SysWOW64\scrrun.dll SUCCESS 98 12:38:33,6086492 MCLauncher.exe 6080 CreateFile C:\Windows\SysWOW64\wshom.ocx SUCCESS Desired Access: Read Control, Disposition: Open, Options: , Attributes: n/a, ShareMode: Read, Delete, AllocationSize: n/a, OpenResult: Opened 98 12:38:33,6086756 MCLauncher.exe 6080 QuerySecurityFile C:\Windows\SysWOW64\wshom.ocx BUFFER OVERFLOW Information: Owner 98 12:38:33,6086839 MCLauncher.exe 6080 QuerySecurityFile C:\Windows\SysWOW64\wshom.ocx SUCCESS Information: Owner 98 12:38:33,6086905 MCLauncher.exe 6080 CloseFile C:\Windows\SysWOW64\wshom.ocx SUCCESS 98 12:38:33,6087734 MCLauncher.exe 6080 RegOpenKey HKLM\SYSTEM\CurrentControlSet\Control\Session Manager REPARSE Desired Access: Query Value, Enumerate Sub Keys 98 12:38:33,6087847 MCLauncher.exe 6080 RegOpenKey HKLM\System\CurrentControlSet\Control\Session Manager SUCCESS Desired Access: Query Value, Enumerate Sub Keys 98 12:38:33,6087936 MCLauncher.exe 6080 RegSetInfoKey HKLM\System\CurrentControlSet\Control\Session Manager SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 98 12:38:33,6087991 MCLauncher.exe 6080 RegQueryValue HKLM\System\CurrentControlSet\Control\Session Manager\ResourcePolicies NAME NOT FOUND Length: 24 98 12:38:33,6088324 MCLauncher.exe 6080 RegCloseKey HKLM\System\CurrentControlSet\Control\Session Manager SUCCESS 98 12:38:33,6089199 MCLauncher.exe 6080 RegOpenKey HKLM\Software\WOW6432Node\Microsoft\Rpc\Extensions REPARSE Desired Access: Read 98 12:38:33,6089316 MCLauncher.exe 6080 RegOpenKey HKLM\SOFTWARE\Microsoft\Rpc\Extensions SUCCESS Desired Access: Read 98 12:38:33,6089401 MCLauncher.exe 6080 RegSetInfoKey HKLM\SOFTWARE\Microsoft\Rpc\Extensions SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 98 12:38:33,6089457 MCLauncher.exe 6080 RegQueryValue HKLM\SOFTWARE\Microsoft\Rpc\Extensions\NdrOleExtDLL SUCCESS Type: REG_EXPAND_SZ, Length: 24, Data: combase.dll 98 12:38:33,6089631 MCLauncher.exe 6080 RegCloseKey HKLM\SOFTWARE\Microsoft\Rpc\Extensions SUCCESS 98 12:38:33,6089933 MCLauncher.exe 6080 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 98 12:38:33,6089994 MCLauncher.exe 6080 RegQueryKey HKLM SUCCESS Query: Name 98 12:38:33,6090083 MCLauncher.exe 6080 RegOpenKey HKLM\Software\WOW6432Node\Microsoft\Rpc REPARSE Desired Access: Read 98 12:38:33,6090163 MCLauncher.exe 6080 RegOpenKey HKLM\SOFTWARE\Microsoft\Rpc SUCCESS Desired Access: Read 98 12:38:33,6090224 MCLauncher.exe 6080 RegSetInfoKey HKLM\SOFTWARE\Microsoft\Rpc SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 98 12:38:33,6090285 MCLauncher.exe 6080 RegQueryValue HKLM\SOFTWARE\Microsoft\Rpc\MaxRpcSize NAME NOT FOUND Length: 144 98 12:38:33,6090432 MCLauncher.exe 6080 RegCloseKey HKLM\SOFTWARE\Microsoft\Rpc SUCCESS 98 12:38:33,6090701 MCLauncher.exe 6080 RegOpenKey HKLM\System\CurrentControlSet\Control\ComputerName\ActiveComputerName REPARSE Desired Access: Read 98 12:38:33,6090773 MCLauncher.exe 6080 RegOpenKey HKLM\System\CurrentControlSet\Control\ComputerName\ActiveComputerName SUCCESS Desired Access: Read 98 12:38:33,6090848 MCLauncher.exe 6080 RegSetInfoKey HKLM\System\CurrentControlSet\Control\ComputerName\ActiveComputerName SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 98 12:38:33,6090889 MCLauncher.exe 6080 RegQueryValue HKLM\System\CurrentControlSet\Control\ComputerName\ActiveComputerName\ComputerName SUCCESS Type: REG_SZ, Length: 32, Data: WIN-0UOTFKKVN1S 98 12:38:33,6091039 MCLauncher.exe 6080 RegCloseKey HKLM\System\CurrentControlSet\Control\ComputerName\ActiveComputerName SUCCESS 98 12:38:33,6091114 MCLauncher.exe 6080 RegOpenKey HKLM\System\Setup SUCCESS Desired Access: Read 98 12:38:33,6091183 MCLauncher.exe 6080 RegSetInfoKey HKLM\SYSTEM\Setup SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 98 12:38:33,6091222 MCLauncher.exe 6080 RegQueryValue HKLM\SYSTEM\Setup\OOBEInProgress SUCCESS Type: REG_DWORD, Length: 4, Data: 0 98 12:38:33,6091360 MCLauncher.exe 6080 RegCloseKey HKLM\SYSTEM\Setup SUCCESS 98 12:38:33,6091424 MCLauncher.exe 6080 RegOpenKey HKLM\System\Setup SUCCESS Desired Access: Read 98 12:38:33,6091482 MCLauncher.exe 6080 RegSetInfoKey HKLM\SYSTEM\Setup SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 98 12:38:33,6091521 MCLauncher.exe 6080 RegQueryValue HKLM\SYSTEM\Setup\SystemSetupInProgress SUCCESS Type: REG_DWORD, Length: 4, Data: 0 98 12:38:33,6091648 MCLauncher.exe 6080 RegCloseKey HKLM\SYSTEM\Setup SUCCESS 98 12:38:33,6091770 MCLauncher.exe 6080 RegQueryKey HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options SUCCESS Query: HandleTags, HandleTags: 0x400 98 12:38:33,6091837 MCLauncher.exe 6080 RegOpenKey HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\MCLauncher.exe NAME NOT FOUND Desired Access: Query Value, Enumerate Sub Keys 98 12:38:33,6092275 MCLauncher.exe 6080 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 98 12:38:33,6092327 MCLauncher.exe 6080 RegQueryKey HKLM SUCCESS Query: Name 98 12:38:33,6092416 MCLauncher.exe 6080 RegOpenKey HKLM\Software\WOW6432Node\Policies\Microsoft\Windows NT\Rpc REPARSE Desired Access: Read 98 12:38:33,6092488 MCLauncher.exe 6080 RegOpenKey HKLM\SOFTWARE\Policies\Microsoft\Windows NT\Rpc NAME NOT FOUND Desired Access: Read 98 12:38:33,6092909 MCLauncher.exe 6080 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 98 12:38:33,6092959 MCLauncher.exe 6080 RegQueryKey HKLM SUCCESS Query: Name 98 12:38:33,6093036 MCLauncher.exe 6080 RegOpenKey HKLM\Software\WOW6432Node\Microsoft\Rpc REPARSE Desired Access: Query Value 98 12:38:33,6093103 MCLauncher.exe 6080 RegOpenKey HKLM\SOFTWARE\Microsoft\Rpc SUCCESS Desired Access: Query Value 98 12:38:33,6093158 MCLauncher.exe 6080 RegSetInfoKey HKLM\SOFTWARE\Microsoft\Rpc SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 98 12:38:33,6093203 MCLauncher.exe 6080 RegQueryValue HKLM\SOFTWARE\Microsoft\Rpc\IdleTimerWindow NAME NOT FOUND Length: 144 98 12:38:33,6093338 MCLauncher.exe 6080 RegCloseKey HKLM\SOFTWARE\Microsoft\Rpc SUCCESS 98 12:38:33,6093657 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Classes SUCCESS Desired Access: Maximum Allowed, Granted Access: All Access 98 12:38:33,6093740 MCLauncher.exe 6080 RegSetInfoKey HKCU\Software\Classes SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 98 12:38:33,6093793 MCLauncher.exe 6080 RegQueryKey HKCU\Software\Classes SUCCESS Query: Name 98 12:38:33,6093859 MCLauncher.exe 6080 RegQueryKey HKCU\Software\Classes SUCCESS Query: HandleTags, HandleTags: 0x1 98 12:38:33,6093929 MCLauncher.exe 6080 RegQueryKey HKCU\Software\Classes SUCCESS Query: HandleTags, HandleTags: 0x1 98 12:38:33,6093973 MCLauncher.exe 6080 RegQueryKey HKCU\Software\Classes SUCCESS Query: Name 98 12:38:33,6094045 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Classes\TypeLib SUCCESS Desired Access: Maximum Allowed, Granted Access: All Access 98 12:38:33,6094128 MCLauncher.exe 6080 RegSetInfoKey HKCU\Software\Classes\TypeLib SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 98 12:38:33,6094178 MCLauncher.exe 6080 RegCloseKey HKCU\Software\Classes SUCCESS 98 12:38:33,6094217 MCLauncher.exe 6080 RegQueryKey HKCU\Software\Classes\TypeLib SUCCESS Query: Name 98 12:38:33,6094278 MCLauncher.exe 6080 RegQueryKey HKCU\Software\Classes\TypeLib SUCCESS Query: HandleTags, HandleTags: 0x401 98 12:38:33,6094341 MCLauncher.exe 6080 RegQueryKey HKCU\Software\Classes\TypeLib SUCCESS Query: HandleTags, HandleTags: 0x401 98 12:38:33,6094394 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Classes\TypeLib\{F935DC20-1CF0-11D0-ADB9-00C04FD58A0B} NAME NOT FOUND Desired Access: Maximum Allowed 98 12:38:33,6094485 MCLauncher.exe 6080 RegOpenKey HKCR\TypeLib\{F935DC20-1CF0-11D0-ADB9-00C04FD58A0B} SUCCESS Desired Access: Maximum Allowed, Granted Access: Read 98 12:38:33,6094632 MCLauncher.exe 6080 RegSetInfoKey HKCR\TypeLib\{F935DC20-1CF0-11D0-ADB9-00C04FD58A0B} SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 98 12:38:33,6094685 MCLauncher.exe 6080 RegQueryKey HKCR\TypeLib\{F935DC20-1CF0-11D0-ADB9-00C04FD58A0B} SUCCESS Query: Name 98 12:38:33,6094746 MCLauncher.exe 6080 RegQueryKey HKCR\TypeLib\{F935DC20-1CF0-11D0-ADB9-00C04FD58A0B} SUCCESS Query: HandleTags, HandleTags: 0x401 98 12:38:33,6094837 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Classes\TypeLib\{F935DC20-1CF0-11D0-ADB9-00C04FD58A0B}\1.0 NAME NOT FOUND Desired Access: Maximum Allowed 98 12:38:33,6094918 MCLauncher.exe 6080 RegQueryKey HKCR\TypeLib\{F935DC20-1CF0-11D0-ADB9-00C04FD58A0B} SUCCESS Query: HandleTags, HandleTags: 0x401 98 12:38:33,6094967 MCLauncher.exe 6080 RegOpenKey HKCR\TypeLib\{F935DC20-1CF0-11D0-ADB9-00C04FD58A0B}\1.0 SUCCESS Desired Access: Maximum Allowed, Granted Access: Read 98 12:38:33,6095062 MCLauncher.exe 6080 RegQueryKey HKCR\TypeLib\{F935DC20-1CF0-11D0-ADB9-00C04FD58A0B}\1.0 SUCCESS Query: Name 98 12:38:33,6095123 MCLauncher.exe 6080 RegQueryKey HKCR\TypeLib\{F935DC20-1CF0-11D0-ADB9-00C04FD58A0B}\1.0 SUCCESS Query: HandleTags, HandleTags: 0x401 98 12:38:33,6095206 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Classes\TypeLib\{F935DC20-1CF0-11D0-ADB9-00C04FD58A0B}\1.0\419 NAME NOT FOUND Desired Access: Maximum Allowed 98 12:38:33,6095281 MCLauncher.exe 6080 RegQueryKey HKCR\TypeLib\{F935DC20-1CF0-11D0-ADB9-00C04FD58A0B}\1.0 SUCCESS Query: HandleTags, HandleTags: 0x401 98 12:38:33,6095330 MCLauncher.exe 6080 RegOpenKey HKCR\TypeLib\{F935DC20-1CF0-11D0-ADB9-00C04FD58A0B}\1.0\419 NAME NOT FOUND Desired Access: Maximum Allowed 98 12:38:33,6095397 MCLauncher.exe 6080 RegQueryKey HKCR\TypeLib\{F935DC20-1CF0-11D0-ADB9-00C04FD58A0B}\1.0 SUCCESS Query: Name 98 12:38:33,6095450 MCLauncher.exe 6080 RegQueryKey HKCR\TypeLib\{F935DC20-1CF0-11D0-ADB9-00C04FD58A0B}\1.0 SUCCESS Query: HandleTags, HandleTags: 0x401 98 12:38:33,6095527 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Classes\TypeLib\{F935DC20-1CF0-11D0-ADB9-00C04FD58A0B}\1.0\19 NAME NOT FOUND Desired Access: Maximum Allowed 98 12:38:33,6095596 MCLauncher.exe 6080 RegQueryKey HKCR\TypeLib\{F935DC20-1CF0-11D0-ADB9-00C04FD58A0B}\1.0 SUCCESS Query: HandleTags, HandleTags: 0x401 98 12:38:33,6095646 MCLauncher.exe 6080 RegOpenKey HKCR\TypeLib\{F935DC20-1CF0-11D0-ADB9-00C04FD58A0B}\1.0\19 NAME NOT FOUND Desired Access: Maximum Allowed 98 12:38:33,6095707 MCLauncher.exe 6080 RegQueryKey HKCR\TypeLib\{F935DC20-1CF0-11D0-ADB9-00C04FD58A0B}\1.0 SUCCESS Query: Name 98 12:38:33,6095760 MCLauncher.exe 6080 RegQueryKey HKCR\TypeLib\{F935DC20-1CF0-11D0-ADB9-00C04FD58A0B}\1.0 SUCCESS Query: HandleTags, HandleTags: 0x401 98 12:38:33,6095835 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Classes\TypeLib\{F935DC20-1CF0-11D0-ADB9-00C04FD58A0B}\1.0\0 NAME NOT FOUND Desired Access: Maximum Allowed 98 12:38:33,6095904 MCLauncher.exe 6080 RegQueryKey HKCR\TypeLib\{F935DC20-1CF0-11D0-ADB9-00C04FD58A0B}\1.0 SUCCESS Query: HandleTags, HandleTags: 0x401 98 12:38:33,6095954 MCLauncher.exe 6080 RegOpenKey HKCR\TypeLib\{F935DC20-1CF0-11D0-ADB9-00C04FD58A0B}\1.0\0 SUCCESS Desired Access: Maximum Allowed, Granted Access: Read 98 12:38:33,6096037 MCLauncher.exe 6080 RegQueryKey HKCR\TypeLib\{F935DC20-1CF0-11D0-ADB9-00C04FD58A0B}\1.0\0 SUCCESS Query: Name 98 12:38:33,6096092 MCLauncher.exe 6080 RegQueryKey HKCR\TypeLib\{F935DC20-1CF0-11D0-ADB9-00C04FD58A0B}\1.0\0 SUCCESS Query: HandleTags, HandleTags: 0x401 98 12:38:33,6096173 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Classes\TypeLib\{F935DC20-1CF0-11D0-ADB9-00C04FD58A0B}\1.0\0\win32 NAME NOT FOUND Desired Access: Maximum Allowed 98 12:38:33,6096245 MCLauncher.exe 6080 RegQueryKey HKCR\TypeLib\{F935DC20-1CF0-11D0-ADB9-00C04FD58A0B}\1.0\0 SUCCESS Query: HandleTags, HandleTags: 0x401 98 12:38:33,6096295 MCLauncher.exe 6080 RegOpenKey HKCR\TypeLib\{F935DC20-1CF0-11D0-ADB9-00C04FD58A0B}\1.0\0\win32 SUCCESS Desired Access: Maximum Allowed, Granted Access: Read 98 12:38:33,6096392 MCLauncher.exe 6080 RegCloseKey HKCR\TypeLib\{F935DC20-1CF0-11D0-ADB9-00C04FD58A0B}\1.0\0\win32 SUCCESS 98 12:38:33,6096436 MCLauncher.exe 6080 RegCloseKey HKCR\TypeLib\{F935DC20-1CF0-11D0-ADB9-00C04FD58A0B}\1.0\0 SUCCESS 98 12:38:33,6096472 MCLauncher.exe 6080 RegQueryKey HKCR\TypeLib\{F935DC20-1CF0-11D0-ADB9-00C04FD58A0B}\1.0 SUCCESS Query: Name 98 12:38:33,6096525 MCLauncher.exe 6080 RegQueryKey HKCR\TypeLib\{F935DC20-1CF0-11D0-ADB9-00C04FD58A0B}\1.0 SUCCESS Query: HandleTags, HandleTags: 0x401 98 12:38:33,6096605 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Classes\TypeLib\{F935DC20-1CF0-11D0-ADB9-00C04FD58A0B}\1.0\0 NAME NOT FOUND Desired Access: Maximum Allowed 98 12:38:33,6096677 MCLauncher.exe 6080 RegQueryKey HKCR\TypeLib\{F935DC20-1CF0-11D0-ADB9-00C04FD58A0B}\1.0 SUCCESS Query: HandleTags, HandleTags: 0x401 98 12:38:33,6096727 MCLauncher.exe 6080 RegOpenKey HKCR\TypeLib\{F935DC20-1CF0-11D0-ADB9-00C04FD58A0B}\1.0\0 SUCCESS Desired Access: Maximum Allowed, Granted Access: Read 98 12:38:33,6096788 MCLauncher.exe 6080 RegQueryKey HKCR\TypeLib\{F935DC20-1CF0-11D0-ADB9-00C04FD58A0B}\1.0\0 SUCCESS Query: Name 98 12:38:33,6096840 MCLauncher.exe 6080 RegQueryKey HKCR\TypeLib\{F935DC20-1CF0-11D0-ADB9-00C04FD58A0B}\1.0\0 SUCCESS Query: HandleTags, HandleTags: 0x401 98 12:38:33,6096915 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Classes\TypeLib\{F935DC20-1CF0-11D0-ADB9-00C04FD58A0B}\1.0\0\win32 NAME NOT FOUND Desired Access: Query Value 98 12:38:33,6096987 MCLauncher.exe 6080 RegQueryKey HKCR\TypeLib\{F935DC20-1CF0-11D0-ADB9-00C04FD58A0B}\1.0\0 SUCCESS Query: HandleTags, HandleTags: 0x401 98 12:38:33,6097040 MCLauncher.exe 6080 RegOpenKey HKCR\TypeLib\{F935DC20-1CF0-11D0-ADB9-00C04FD58A0B}\1.0\0\win32 SUCCESS Desired Access: Query Value 98 12:38:33,6097101 MCLauncher.exe 6080 RegQueryKey HKCR\TypeLib\{F935DC20-1CF0-11D0-ADB9-00C04FD58A0B}\1.0\0\win32 SUCCESS Query: Name 98 12:38:33,6097156 MCLauncher.exe 6080 RegQueryKey HKCR\TypeLib\{F935DC20-1CF0-11D0-ADB9-00C04FD58A0B}\1.0\0\win32 SUCCESS Query: HandleTags, HandleTags: 0x401 98 12:38:33,6097234 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Classes\TypeLib\{F935DC20-1CF0-11D0-ADB9-00C04FD58A0B}\1.0\0\win32 NAME NOT FOUND Desired Access: Maximum Allowed 98 12:38:33,6097292 MCLauncher.exe 6080 RegQueryValue HKCR\TypeLib\{F935DC20-1CF0-11D0-ADB9-00C04FD58A0B}\1.0\0\win32\(Default) SUCCESS Type: REG_SZ, Length: 60, Data: C:\Windows\SysWOW64\wshom.ocx 98 12:38:33,6097358 MCLauncher.exe 6080 RegCloseKey HKCR\TypeLib\{F935DC20-1CF0-11D0-ADB9-00C04FD58A0B}\1.0\0\win32 SUCCESS 98 12:38:33,6098904 MCLauncher.exe 6080 CreateFile C:\Windows\SysWOW64\wshom.ocx SUCCESS Desired Access: Generic Read, Disposition: Open, Options: Synchronous IO Non-Alert, Non-Directory File, Random Access, Attributes: n/a, ShareMode: Read, Delete, AllocationSize: n/a, OpenResult: Opened 98 12:38:33,6099267 MCLauncher.exe 6080 ReadFile C:\Windows\SysWOW64\wshom.ocx SUCCESS Offset: 0, Length: 64, Priority: Normal 98 12:38:33,6099525 MCLauncher.exe 6080 ReadFile C:\Windows\SysWOW64\wshom.ocx SUCCESS Offset: 248, Length: 4 98 12:38:33,6099603 MCLauncher.exe 6080 ReadFile C:\Windows\SysWOW64\wshom.ocx SUCCESS Offset: 252, Length: 20 98 12:38:33,6099669 MCLauncher.exe 6080 ReadFile C:\Windows\SysWOW64\wshom.ocx SUCCESS Offset: 496, Length: 40 98 12:38:33,6099747 MCLauncher.exe 6080 ReadFile C:\Windows\SysWOW64\wshom.ocx SUCCESS Offset: 536, Length: 40 98 12:38:33,6099805 MCLauncher.exe 6080 ReadFile C:\Windows\SysWOW64\wshom.ocx SUCCESS Offset: 576, Length: 40 98 12:38:33,6099863 MCLauncher.exe 6080 ReadFile C:\Windows\SysWOW64\wshom.ocx SUCCESS Offset: 616, Length: 40 98 12:38:33,6099918 MCLauncher.exe 6080 ReadFile C:\Windows\SysWOW64\wshom.ocx SUCCESS Offset: 656, Length: 40 98 12:38:33,6099991 MCLauncher.exe 6080 ReadFile C:\Windows\SysWOW64\wshom.ocx SUCCESS Offset: 86 528, Length: 16 98 12:38:33,6100060 MCLauncher.exe 6080 ReadFile C:\Windows\SysWOW64\wshom.ocx SUCCESS Offset: 86 544, Length: 8 98 12:38:33,6100126 MCLauncher.exe 6080 ReadFile C:\Windows\SysWOW64\wshom.ocx SUCCESS Offset: 87 904, Length: 2 98 12:38:33,6100190 MCLauncher.exe 6080 ReadFile C:\Windows\SysWOW64\wshom.ocx SUCCESS Offset: 86 552, Length: 8 98 12:38:33,6100254 MCLauncher.exe 6080 ReadFile C:\Windows\SysWOW64\wshom.ocx SUCCESS Offset: 87 888, Length: 2 98 12:38:33,6100309 MCLauncher.exe 6080 ReadFile C:\Windows\SysWOW64\wshom.ocx SUCCESS Offset: 87 890, Length: 14 98 12:38:33,6100381 MCLauncher.exe 6080 ReadFile C:\Windows\SysWOW64\wshom.ocx SUCCESS Offset: 86 600, Length: 16 98 12:38:33,6100445 MCLauncher.exe 6080 ReadFile C:\Windows\SysWOW64\wshom.ocx SUCCESS Offset: 86 616, Length: 8 98 12:38:33,6100514 MCLauncher.exe 6080 ReadFile C:\Windows\SysWOW64\wshom.ocx SUCCESS Offset: 86 872, Length: 16 98 12:38:33,6100570 MCLauncher.exe 6080 ReadFile C:\Windows\SysWOW64\wshom.ocx SUCCESS Offset: 86 888, Length: 8 98 12:38:33,6100636 MCLauncher.exe 6080 ReadFile C:\Windows\SysWOW64\wshom.ocx SUCCESS Offset: 87 488, Length: 16 98 12:38:33,6100703 MCLauncher.exe 6080 QueryStandardInformationFile C:\Windows\SysWOW64\wshom.ocx SUCCESS AllocationSize: 126 976, EndOfFile: 125 952, NumberOfLinks: 3, DeletePending: False, Directory: False 98 12:38:33,6100802 MCLauncher.exe 6080 CreateFileMapping C:\Windows\SysWOW64\wshom.ocx FILE LOCKED WITH ONLY READERS SyncType: SyncTypeCreateSection, PageProtection: PAGE_EXECUTE|PAGE_NOCACHE 98 12:38:33,6100933 MCLauncher.exe 6080 QueryNameInformationFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Name: \Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe 98 12:38:33,6101869 MCLauncher.exe 6080 CreateFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Desired Access: Synchronize, Disposition: Open, Options: Synchronous IO Non-Alert, Attributes: N, ShareMode: Read, Write, Delete, AllocationSize: n/a, OpenResult: Opened 98 12:38:33,6102063 MCLauncher.exe 6080 CloseFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS 98 12:38:33,6102359 MCLauncher.exe 6080 QueryNameInformationFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Name: \Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe 98 12:38:33,6103215 MCLauncher.exe 6080 CreateFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Desired Access: Synchronize, Disposition: Open, Options: Synchronous IO Non-Alert, Attributes: N, ShareMode: Read, Write, Delete, AllocationSize: n/a, OpenResult: Opened 98 12:38:33,6103387 MCLauncher.exe 6080 CloseFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS 98 12:38:33,6104199 MCLauncher.exe 6080 QueryStandardInformationFile C:\Windows\SysWOW64\wshom.ocx SUCCESS AllocationSize: 126 976, EndOfFile: 125 952, NumberOfLinks: 3, DeletePending: False, Directory: False 98 12:38:33,6107393 MCLauncher.exe 6080 CreateFileMapping C:\Windows\SysWOW64\wshom.ocx SUCCESS SyncType: SyncTypeOther 98 12:38:33,6107889 MCLauncher.exe 6080 RegCloseKey HKCR\TypeLib\{F935DC20-1CF0-11D0-ADB9-00C04FD58A0B}\1.0\0 SUCCESS 98 12:38:33,6108222 MCLauncher.exe 6080 RegCloseKey HKCR\TypeLib\{F935DC20-1CF0-11D0-ADB9-00C04FD58A0B}\1.0 SUCCESS 98 12:38:33,6108266 MCLauncher.exe 6080 RegCloseKey HKCR\TypeLib\{F935DC20-1CF0-11D0-ADB9-00C04FD58A0B} SUCCESS 98 12:38:33,6108305 MCLauncher.exe 6080 RegCloseKey HKCU\Software\Classes\TypeLib SUCCESS 98 12:38:33,6109408 MCLauncher.exe 6080 RegOpenKey HKLM\System\CurrentControlSet\Control\Nls\CustomLocale REPARSE Desired Access: Read 98 12:38:33,6109499 MCLauncher.exe 6080 RegOpenKey HKLM\System\CurrentControlSet\Control\Nls\CustomLocale SUCCESS Desired Access: Read 98 12:38:33,6109591 MCLauncher.exe 6080 RegSetInfoKey HKLM\System\CurrentControlSet\Control\Nls\CustomLocale SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 98 12:38:33,6109646 MCLauncher.exe 6080 RegQueryValue HKLM\System\CurrentControlSet\Control\Nls\CustomLocale\en-US NAME NOT FOUND Length: 532 98 12:38:33,6109796 MCLauncher.exe 6080 RegCloseKey HKLM\System\CurrentControlSet\Control\Nls\CustomLocale SUCCESS 98 12:38:33,6109879 MCLauncher.exe 6080 RegOpenKey HKLM\System\CurrentControlSet\Control\Nls\ExtendedLocale REPARSE Desired Access: Read 98 12:38:33,6109942 MCLauncher.exe 6080 RegOpenKey HKLM\System\CurrentControlSet\Control\Nls\ExtendedLocale SUCCESS Desired Access: Read 98 12:38:33,6110012 MCLauncher.exe 6080 RegSetInfoKey HKLM\System\CurrentControlSet\Control\Nls\ExtendedLocale SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 98 12:38:33,6110056 MCLauncher.exe 6080 RegQueryValue HKLM\System\CurrentControlSet\Control\Nls\ExtendedLocale\en-US NAME NOT FOUND Length: 532 98 12:38:33,6110172 MCLauncher.exe 6080 RegCloseKey HKLM\System\CurrentControlSet\Control\Nls\ExtendedLocale SUCCESS 98 12:38:33,6110244 MCLauncher.exe 6080 RegQueryValue HKLM\System\CurrentControlSet\Control\Nls\Sorting\Ids\en-US NAME NOT FOUND Length: 90 98 12:38:33,6110380 MCLauncher.exe 6080 RegQueryValue HKLM\System\CurrentControlSet\Control\Nls\Sorting\Ids\en NAME NOT FOUND Length: 90 98 12:38:33,6111655 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Classes SUCCESS Desired Access: Maximum Allowed, Granted Access: All Access 98 12:38:33,6111754 MCLauncher.exe 6080 RegSetInfoKey HKCU\Software\Classes SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 98 12:38:33,6111821 MCLauncher.exe 6080 RegQueryKey HKCU\Software\Classes SUCCESS Query: Name 98 12:38:33,6111893 MCLauncher.exe 6080 RegQueryKey HKCU\Software\Classes SUCCESS Query: HandleTags, HandleTags: 0x1 98 12:38:33,6111968 MCLauncher.exe 6080 RegQueryKey HKCU\Software\Classes SUCCESS Query: HandleTags, HandleTags: 0x1 98 12:38:33,6112015 MCLauncher.exe 6080 RegQueryKey HKCU\Software\Classes SUCCESS Query: Name 98 12:38:33,6112092 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Classes\TypeLib SUCCESS Desired Access: Maximum Allowed, Granted Access: All Access 98 12:38:33,6112170 MCLauncher.exe 6080 RegSetInfoKey HKCU\Software\Classes\TypeLib SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 98 12:38:33,6112228 MCLauncher.exe 6080 RegCloseKey HKCU\Software\Classes SUCCESS 98 12:38:33,6112270 MCLauncher.exe 6080 RegQueryKey HKCU\Software\Classes\TypeLib SUCCESS Query: Name 98 12:38:33,6112333 MCLauncher.exe 6080 RegQueryKey HKCU\Software\Classes\TypeLib SUCCESS Query: HandleTags, HandleTags: 0x401 98 12:38:33,6112397 MCLauncher.exe 6080 RegQueryKey HKCU\Software\Classes\TypeLib SUCCESS Query: HandleTags, HandleTags: 0x401 98 12:38:33,6112453 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Classes\TypeLib\{00020430-0000-0000-C000-000000000046} NAME NOT FOUND Desired Access: Maximum Allowed 98 12:38:33,6112552 MCLauncher.exe 6080 RegOpenKey HKCR\TypeLib\{00020430-0000-0000-C000-000000000046} SUCCESS Desired Access: Maximum Allowed, Granted Access: Read 98 12:38:33,6112655 MCLauncher.exe 6080 RegSetInfoKey HKCR\TypeLib\{00020430-0000-0000-C000-000000000046} SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 98 12:38:33,6112702 MCLauncher.exe 6080 RegQueryKey HKCR\TypeLib\{00020430-0000-0000-C000-000000000046} SUCCESS Query: Name 98 12:38:33,6112766 MCLauncher.exe 6080 RegQueryKey HKCR\TypeLib\{00020430-0000-0000-C000-000000000046} SUCCESS Query: HandleTags, HandleTags: 0x401 98 12:38:33,6112854 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Classes\TypeLib\{00020430-0000-0000-C000-000000000046}\2.0 NAME NOT FOUND Desired Access: Maximum Allowed 98 12:38:33,6112937 MCLauncher.exe 6080 RegQueryKey HKCR\TypeLib\{00020430-0000-0000-C000-000000000046} SUCCESS Query: HandleTags, HandleTags: 0x401 98 12:38:33,6112990 MCLauncher.exe 6080 RegOpenKey HKCR\TypeLib\{00020430-0000-0000-C000-000000000046}\2.0 SUCCESS Desired Access: Maximum Allowed, Granted Access: Read 98 12:38:33,6113068 MCLauncher.exe 6080 RegQueryKey HKCR\TypeLib\{00020430-0000-0000-C000-000000000046}\2.0 SUCCESS Query: Name 98 12:38:33,6113129 MCLauncher.exe 6080 RegQueryKey HKCR\TypeLib\{00020430-0000-0000-C000-000000000046}\2.0 SUCCESS Query: HandleTags, HandleTags: 0x401 98 12:38:33,6113209 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Classes\TypeLib\{00020430-0000-0000-C000-000000000046}\2.0\0 NAME NOT FOUND Desired Access: Maximum Allowed 98 12:38:33,6113284 MCLauncher.exe 6080 RegQueryKey HKCR\TypeLib\{00020430-0000-0000-C000-000000000046}\2.0 SUCCESS Query: HandleTags, HandleTags: 0x401 98 12:38:33,6113336 MCLauncher.exe 6080 RegOpenKey HKCR\TypeLib\{00020430-0000-0000-C000-000000000046}\2.0\0 SUCCESS Desired Access: Maximum Allowed, Granted Access: Read 98 12:38:33,6113411 MCLauncher.exe 6080 RegQueryKey HKCR\TypeLib\{00020430-0000-0000-C000-000000000046}\2.0\0 SUCCESS Query: Name 98 12:38:33,6113472 MCLauncher.exe 6080 RegQueryKey HKCR\TypeLib\{00020430-0000-0000-C000-000000000046}\2.0\0 SUCCESS Query: HandleTags, HandleTags: 0x401 98 12:38:33,6113552 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Classes\TypeLib\{00020430-0000-0000-C000-000000000046}\2.0\0\win32 NAME NOT FOUND Desired Access: Maximum Allowed 98 12:38:33,6113627 MCLauncher.exe 6080 RegQueryKey HKCR\TypeLib\{00020430-0000-0000-C000-000000000046}\2.0\0 SUCCESS Query: HandleTags, HandleTags: 0x401 98 12:38:33,6113680 MCLauncher.exe 6080 RegOpenKey HKCR\TypeLib\{00020430-0000-0000-C000-000000000046}\2.0\0\win32 SUCCESS Desired Access: Maximum Allowed, Granted Access: Read 98 12:38:33,6113791 MCLauncher.exe 6080 RegCloseKey HKCR\TypeLib\{00020430-0000-0000-C000-000000000046}\2.0\0\win32 SUCCESS 98 12:38:33,6113835 MCLauncher.exe 6080 RegCloseKey HKCR\TypeLib\{00020430-0000-0000-C000-000000000046}\2.0\0 SUCCESS 98 12:38:33,6113871 MCLauncher.exe 6080 RegQueryKey HKCR\TypeLib\{00020430-0000-0000-C000-000000000046}\2.0 SUCCESS Query: Name 98 12:38:33,6113929 MCLauncher.exe 6080 RegQueryKey HKCR\TypeLib\{00020430-0000-0000-C000-000000000046}\2.0 SUCCESS Query: HandleTags, HandleTags: 0x401 98 12:38:33,6114007 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Classes\TypeLib\{00020430-0000-0000-C000-000000000046}\2.0\0 NAME NOT FOUND Desired Access: Maximum Allowed 98 12:38:33,6114082 MCLauncher.exe 6080 RegQueryKey HKCR\TypeLib\{00020430-0000-0000-C000-000000000046}\2.0 SUCCESS Query: HandleTags, HandleTags: 0x401 98 12:38:33,6114131 MCLauncher.exe 6080 RegOpenKey HKCR\TypeLib\{00020430-0000-0000-C000-000000000046}\2.0\0 SUCCESS Desired Access: Maximum Allowed, Granted Access: Read 98 12:38:33,6114192 MCLauncher.exe 6080 RegQueryKey HKCR\TypeLib\{00020430-0000-0000-C000-000000000046}\2.0\0 SUCCESS Query: Name 98 12:38:33,6114248 MCLauncher.exe 6080 RegQueryKey HKCR\TypeLib\{00020430-0000-0000-C000-000000000046}\2.0\0 SUCCESS Query: HandleTags, HandleTags: 0x401 98 12:38:33,6114325 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Classes\TypeLib\{00020430-0000-0000-C000-000000000046}\2.0\0\win32 NAME NOT FOUND Desired Access: Query Value 98 12:38:33,6114397 MCLauncher.exe 6080 RegQueryKey HKCR\TypeLib\{00020430-0000-0000-C000-000000000046}\2.0\0 SUCCESS Query: HandleTags, HandleTags: 0x401 98 12:38:33,6114447 MCLauncher.exe 6080 RegOpenKey HKCR\TypeLib\{00020430-0000-0000-C000-000000000046}\2.0\0\win32 SUCCESS Desired Access: Query Value 98 12:38:33,6114511 MCLauncher.exe 6080 RegQueryKey HKCR\TypeLib\{00020430-0000-0000-C000-000000000046}\2.0\0\win32 SUCCESS Query: Name 98 12:38:33,6114566 MCLauncher.exe 6080 RegQueryKey HKCR\TypeLib\{00020430-0000-0000-C000-000000000046}\2.0\0\win32 SUCCESS Query: HandleTags, HandleTags: 0x401 98 12:38:33,6114644 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Classes\TypeLib\{00020430-0000-0000-C000-000000000046}\2.0\0\win32 NAME NOT FOUND Desired Access: Maximum Allowed 98 12:38:33,6114705 MCLauncher.exe 6080 RegQueryValue HKCR\TypeLib\{00020430-0000-0000-C000-000000000046}\2.0\0\win32\(Default) SUCCESS Type: REG_SZ, Length: 64, Data: C:\Windows\SysWOW64\stdole2.tlb 98 12:38:33,6114774 MCLauncher.exe 6080 RegCloseKey HKCR\TypeLib\{00020430-0000-0000-C000-000000000046}\2.0\0\win32 SUCCESS 98 12:38:33,6115882 MCLauncher.exe 6080 CreateFile C:\Windows\SysWOW64\stdole2.tlb SUCCESS Desired Access: Generic Read, Disposition: Open, Options: Synchronous IO Non-Alert, Non-Directory File, Random Access, Attributes: n/a, ShareMode: Read, Delete, AllocationSize: n/a, OpenResult: Opened 98 12:38:33,6116245 MCLauncher.exe 6080 ReadFile C:\Windows\SysWOW64\stdole2.tlb SUCCESS Offset: 0, Length: 64, Priority: Normal 98 12:38:33,6116561 MCLauncher.exe 6080 ReadFile C:\Windows\SysWOW64\stdole2.tlb SUCCESS Offset: 184, Length: 4 98 12:38:33,6116650 MCLauncher.exe 6080 ReadFile C:\Windows\SysWOW64\stdole2.tlb SUCCESS Offset: 188, Length: 20 98 12:38:33,6116719 MCLauncher.exe 6080 ReadFile C:\Windows\SysWOW64\stdole2.tlb SUCCESS Offset: 432, Length: 40 98 12:38:33,6116788 MCLauncher.exe 6080 ReadFile C:\Windows\SysWOW64\stdole2.tlb SUCCESS Offset: 472, Length: 40 98 12:38:33,6116860 MCLauncher.exe 6080 ReadFile C:\Windows\SysWOW64\stdole2.tlb SUCCESS Offset: 1 024, Length: 16 98 12:38:33,6116916 MCLauncher.exe 6080 ReadFile C:\Windows\SysWOW64\stdole2.tlb SUCCESS Offset: 1 040, Length: 8 98 12:38:33,6116982 MCLauncher.exe 6080 ReadFile C:\Windows\SysWOW64\stdole2.tlb SUCCESS Offset: 1 272, Length: 2 98 12:38:33,6117046 MCLauncher.exe 6080 ReadFile C:\Windows\SysWOW64\stdole2.tlb SUCCESS Offset: 1 048, Length: 8 98 12:38:33,6117110 MCLauncher.exe 6080 ReadFile C:\Windows\SysWOW64\stdole2.tlb SUCCESS Offset: 1 256, Length: 2 98 12:38:33,6117165 MCLauncher.exe 6080 ReadFile C:\Windows\SysWOW64\stdole2.tlb SUCCESS Offset: 1 258, Length: 14 98 12:38:33,6117240 MCLauncher.exe 6080 ReadFile C:\Windows\SysWOW64\stdole2.tlb SUCCESS Offset: 1 088, Length: 16 98 12:38:33,6117304 MCLauncher.exe 6080 ReadFile C:\Windows\SysWOW64\stdole2.tlb SUCCESS Offset: 1 104, Length: 8 98 12:38:33,6117373 MCLauncher.exe 6080 ReadFile C:\Windows\SysWOW64\stdole2.tlb SUCCESS Offset: 1 160, Length: 16 98 12:38:33,6117428 MCLauncher.exe 6080 ReadFile C:\Windows\SysWOW64\stdole2.tlb SUCCESS Offset: 1 176, Length: 8 98 12:38:33,6117492 MCLauncher.exe 6080 ReadFile C:\Windows\SysWOW64\stdole2.tlb SUCCESS Offset: 1 224, Length: 16 98 12:38:33,6117556 MCLauncher.exe 6080 QueryStandardInformationFile C:\Windows\SysWOW64\stdole2.tlb SUCCESS AllocationSize: 20 480, EndOfFile: 18 432, NumberOfLinks: 2, DeletePending: False, Directory: False 98 12:38:33,6117658 MCLauncher.exe 6080 CreateFileMapping C:\Windows\SysWOW64\stdole2.tlb FILE LOCKED WITH ONLY READERS SyncType: SyncTypeCreateSection, PageProtection: PAGE_EXECUTE|PAGE_NOCACHE 98 12:38:33,6117938 MCLauncher.exe 6080 QueryNameInformationFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Name: \Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe 98 12:38:33,6118930 MCLauncher.exe 6080 CreateFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Desired Access: Synchronize, Disposition: Open, Options: Synchronous IO Non-Alert, Attributes: N, ShareMode: Read, Write, Delete, AllocationSize: n/a, OpenResult: Opened 98 12:38:33,6119124 MCLauncher.exe 6080 CloseFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS 98 12:38:33,6119420 MCLauncher.exe 6080 QueryNameInformationFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Name: \Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe 98 12:38:33,6120290 MCLauncher.exe 6080 CreateFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Desired Access: Synchronize, Disposition: Open, Options: Synchronous IO Non-Alert, Attributes: N, ShareMode: Read, Write, Delete, AllocationSize: n/a, OpenResult: Opened 98 12:38:33,6120468 MCLauncher.exe 6080 CloseFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS 98 12:38:33,6121047 MCLauncher.exe 6080 QueryStandardInformationFile C:\Windows\SysWOW64\stdole2.tlb SUCCESS AllocationSize: 20 480, EndOfFile: 18 432, NumberOfLinks: 2, DeletePending: False, Directory: False 98 12:38:33,6121199 MCLauncher.exe 6080 CreateFileMapping C:\Windows\SysWOW64\stdole2.tlb SUCCESS SyncType: SyncTypeOther 98 12:38:33,6121543 MCLauncher.exe 6080 RegCloseKey HKCR\TypeLib\{00020430-0000-0000-C000-000000000046}\2.0\0 SUCCESS 98 12:38:33,6121604 MCLauncher.exe 6080 RegCloseKey HKCR\TypeLib\{00020430-0000-0000-C000-000000000046}\2.0 SUCCESS 98 12:38:33,6121642 MCLauncher.exe 6080 RegCloseKey HKCR\TypeLib\{00020430-0000-0000-C000-000000000046} SUCCESS 98 12:38:33,6121684 MCLauncher.exe 6080 RegCloseKey HKCU\Software\Classes\TypeLib SUCCESS 98 12:38:33,6131303 MCLauncher.exe 6080 RegQueryKey HKCU\Software\Classes SUCCESS Query: Name 98 12:38:33,6131411 MCLauncher.exe 6080 RegQueryKey HKCU\Software\Classes SUCCESS Query: HandleTags, HandleTags: 0x1 98 12:38:33,6131500 MCLauncher.exe 6080 RegQueryKey HKCU\Software\Classes SUCCESS Query: HandleTags, HandleTags: 0x1 98 12:38:33,6131556 MCLauncher.exe 6080 RegQueryKey HKCU\Software\Classes SUCCESS Query: Name 98 12:38:33,6131677 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Classes\WOW6432Node\CLSID\{00021401-0000-0000-C000-000000000046} NAME NOT FOUND Desired Access: Read 98 12:38:33,6131830 MCLauncher.exe 6080 RegOpenKey HKCR\WOW6432Node\CLSID\{00021401-0000-0000-C000-000000000046} SUCCESS Desired Access: Read 98 12:38:33,6132024 MCLauncher.exe 6080 RegSetInfoKey HKCR\WOW6432Node\CLSID\{00021401-0000-0000-C000-000000000046} SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 98 12:38:33,6132074 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{00021401-0000-0000-C000-000000000046} SUCCESS Query: Name 98 12:38:33,6132137 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{00021401-0000-0000-C000-000000000046} SUCCESS Query: HandleTags, HandleTags: 0x401 98 12:38:33,6132248 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Classes\WOW6432Node\CLSID\{00021401-0000-0000-C000-000000000046}\TreatAs NAME NOT FOUND Desired Access: Query Value 98 12:38:33,6132337 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{00021401-0000-0000-C000-000000000046} SUCCESS Query: HandleTags, HandleTags: 0x401 98 12:38:33,6132392 MCLauncher.exe 6080 RegOpenKey HKCR\WOW6432Node\CLSID\{00021401-0000-0000-C000-000000000046}\TreatAs NAME NOT FOUND Desired Access: Query Value 98 12:38:33,6132473 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{00021401-0000-0000-C000-000000000046} SUCCESS Query: Name 98 12:38:33,6132545 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{00021401-0000-0000-C000-000000000046} SUCCESS Query: Name 98 12:38:33,6132597 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{00021401-0000-0000-C000-000000000046} SUCCESS Query: HandleTags, HandleTags: 0x401 98 12:38:33,6132686 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Classes\WOW6432Node\CLSID\{00021401-0000-0000-C000-000000000046} NAME NOT FOUND Desired Access: Maximum Allowed 98 12:38:33,6132755 MCLauncher.exe 6080 RegQueryValue HKCR\WOW6432Node\CLSID\{00021401-0000-0000-C000-000000000046}\(Default) SUCCESS Type: REG_SZ, Length: 18, Data: Shortcut 98 12:38:33,6132822 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{00021401-0000-0000-C000-000000000046} SUCCESS Query: Name 98 12:38:33,6132877 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{00021401-0000-0000-C000-000000000046} SUCCESS Query: HandleTags, HandleTags: 0x401 98 12:38:33,6132963 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Classes\WOW6432Node\CLSID\{00021401-0000-0000-C000-000000000046} NAME NOT FOUND Desired Access: Maximum Allowed 98 12:38:33,6133024 MCLauncher.exe 6080 RegQueryValue HKCR\WOW6432Node\CLSID\{00021401-0000-0000-C000-000000000046}\(Default) SUCCESS Type: REG_SZ, Length: 18, Data: Shortcut 98 12:38:33,6133085 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{00021401-0000-0000-C000-000000000046} SUCCESS Query: Name 98 12:38:33,6133140 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{00021401-0000-0000-C000-000000000046} SUCCESS Query: HandleTags, HandleTags: 0x401 98 12:38:33,6133226 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Classes\WOW6432Node\CLSID\{00021401-0000-0000-C000-000000000046}\InprocServer32 NAME NOT FOUND Desired Access: Read 98 12:38:33,6133304 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{00021401-0000-0000-C000-000000000046} SUCCESS Query: HandleTags, HandleTags: 0x401 98 12:38:33,6133359 MCLauncher.exe 6080 RegOpenKey HKCR\WOW6432Node\CLSID\{00021401-0000-0000-C000-000000000046}\InprocServer32 SUCCESS Desired Access: Read 98 12:38:33,6133453 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{00021401-0000-0000-C000-000000000046}\InProcServer32 SUCCESS Query: Name 98 12:38:33,6133509 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{00021401-0000-0000-C000-000000000046}\InProcServer32 SUCCESS Query: HandleTags, HandleTags: 0x401 98 12:38:33,6133595 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Classes\WOW6432Node\CLSID\{00021401-0000-0000-C000-000000000046}\InProcServer32 NAME NOT FOUND Desired Access: Maximum Allowed 98 12:38:33,6133656 MCLauncher.exe 6080 RegQueryValue HKCR\WOW6432Node\CLSID\{00021401-0000-0000-C000-000000000046}\InProcServer32\InprocServer32 NAME NOT FOUND Length: 144 98 12:38:33,6133794 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{00021401-0000-0000-C000-000000000046}\InProcServer32 SUCCESS Query: Name 98 12:38:33,6133866 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{00021401-0000-0000-C000-000000000046}\InProcServer32 SUCCESS Query: HandleTags, HandleTags: 0x401 98 12:38:33,6133969 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Classes\WOW6432Node\CLSID\{00021401-0000-0000-C000-000000000046}\InProcServer32 NAME NOT FOUND Desired Access: Maximum Allowed 98 12:38:33,6134041 MCLauncher.exe 6080 RegQueryValue HKCR\WOW6432Node\CLSID\{00021401-0000-0000-C000-000000000046}\InProcServer32\(Default) SUCCESS Type: REG_SZ, Length: 80, Data: C:\Windows\SysWOW64\windows.storage.dll 98 12:38:33,6134099 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{00021401-0000-0000-C000-000000000046}\InProcServer32 SUCCESS Query: Name 98 12:38:33,6134154 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{00021401-0000-0000-C000-000000000046}\InProcServer32 SUCCESS Query: HandleTags, HandleTags: 0x401 98 12:38:33,6134237 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Classes\WOW6432Node\CLSID\{00021401-0000-0000-C000-000000000046}\InProcServer32 NAME NOT FOUND Desired Access: Maximum Allowed 98 12:38:33,6134296 MCLauncher.exe 6080 RegQueryValue HKCR\WOW6432Node\CLSID\{00021401-0000-0000-C000-000000000046}\InProcServer32\(Default) SUCCESS Type: REG_SZ, Length: 80, Data: C:\Windows\SysWOW64\windows.storage.dll 98 12:38:33,6134357 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{00021401-0000-0000-C000-000000000046}\InProcServer32 SUCCESS Query: Name 98 12:38:33,6134412 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{00021401-0000-0000-C000-000000000046}\InProcServer32 SUCCESS Query: HandleTags, HandleTags: 0x401 98 12:38:33,6134495 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Classes\WOW6432Node\CLSID\{00021401-0000-0000-C000-000000000046}\InProcServer32 NAME NOT FOUND Desired Access: Maximum Allowed 98 12:38:33,6134553 MCLauncher.exe 6080 RegQueryValue HKCR\WOW6432Node\CLSID\{00021401-0000-0000-C000-000000000046}\InProcServer32\ThreadingModel SUCCESS Type: REG_SZ, Length: 10, Data: Both 98 12:38:33,6134722 MCLauncher.exe 6080 RegCloseKey HKCR\WOW6432Node\CLSID\{00021401-0000-0000-C000-000000000046}\InProcServer32 SUCCESS 98 12:38:33,6134778 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{00021401-0000-0000-C000-000000000046} SUCCESS Query: Name 98 12:38:33,6134844 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{00021401-0000-0000-C000-000000000046} SUCCESS Query: HandleTags, HandleTags: 0x401 98 12:38:33,6134949 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Classes\WOW6432Node\CLSID\{00021401-0000-0000-C000-000000000046}\InprocHandler32 NAME NOT FOUND Desired Access: Query Value 98 12:38:33,6135044 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{00021401-0000-0000-C000-000000000046} SUCCESS Query: HandleTags, HandleTags: 0x401 98 12:38:33,6135096 MCLauncher.exe 6080 RegOpenKey HKCR\WOW6432Node\CLSID\{00021401-0000-0000-C000-000000000046}\InprocHandler32 NAME NOT FOUND Desired Access: Query Value 98 12:38:33,6135166 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{00021401-0000-0000-C000-000000000046} SUCCESS Query: Name 98 12:38:33,6135221 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{00021401-0000-0000-C000-000000000046} SUCCESS Query: HandleTags, HandleTags: 0x401 98 12:38:33,6135304 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Classes\WOW6432Node\CLSID\{00021401-0000-0000-C000-000000000046}\InprocHandler NAME NOT FOUND Desired Access: Query Value 98 12:38:33,6135379 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{00021401-0000-0000-C000-000000000046} SUCCESS Query: HandleTags, HandleTags: 0x401 98 12:38:33,6135429 MCLauncher.exe 6080 RegOpenKey HKCR\WOW6432Node\CLSID\{00021401-0000-0000-C000-000000000046}\InprocHandler NAME NOT FOUND Desired Access: Query Value 98 12:38:33,6135506 MCLauncher.exe 6080 RegCloseKey HKCR\WOW6432Node\CLSID\{00021401-0000-0000-C000-000000000046} SUCCESS 98 12:38:33,6135673 MCLauncher.exe 6080 RegQueryKey HKCU\Software\Classes SUCCESS Query: Name 98 12:38:33,6135734 MCLauncher.exe 6080 RegQueryKey HKCU\Software\Classes SUCCESS Query: HandleTags, HandleTags: 0x1 98 12:38:33,6135800 MCLauncher.exe 6080 RegQueryKey HKCU\Software\Classes SUCCESS Query: HandleTags, HandleTags: 0x1 98 12:38:33,6135847 MCLauncher.exe 6080 RegQueryKey HKCU\Software\Classes SUCCESS Query: Name 98 12:38:33,6135933 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Classes\WOW6432Node\CLSID\{00021401-0000-0000-C000-000000000046} NAME NOT FOUND Desired Access: Read 98 12:38:33,6136024 MCLauncher.exe 6080 RegOpenKey HKCR\WOW6432Node\CLSID\{00021401-0000-0000-C000-000000000046} SUCCESS Desired Access: Read 98 12:38:33,6136108 MCLauncher.exe 6080 RegSetInfoKey HKCR\WOW6432Node\CLSID\{00021401-0000-0000-C000-000000000046} SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 98 12:38:33,6136149 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{00021401-0000-0000-C000-000000000046} SUCCESS Query: Name 98 12:38:33,6136207 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{00021401-0000-0000-C000-000000000046} SUCCESS Query: HandleTags, HandleTags: 0x401 98 12:38:33,6136293 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Classes\WOW6432Node\CLSID\{00021401-0000-0000-C000-000000000046}\TreatAs NAME NOT FOUND Desired Access: Read 98 12:38:33,6136371 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{00021401-0000-0000-C000-000000000046} SUCCESS Query: HandleTags, HandleTags: 0x401 98 12:38:33,6136423 MCLauncher.exe 6080 RegOpenKey HKCR\WOW6432Node\CLSID\{00021401-0000-0000-C000-000000000046}\TreatAs NAME NOT FOUND Desired Access: Read 98 12:38:33,6136493 MCLauncher.exe 6080 RegCloseKey HKCR\WOW6432Node\CLSID\{00021401-0000-0000-C000-000000000046} SUCCESS 98 12:38:33,6138465 MCLauncher.exe 6080 CreateFile C:\Users\User\Desktop\MCLauncher.lnk SUCCESS Desired Access: Generic Read, Disposition: Open, Options: Synchronous IO Non-Alert, Non-Directory File, Attributes: n/a, ShareMode: Read, Write, AllocationSize: n/a, OpenResult: Opened 98 12:38:33,6138903 MCLauncher.exe 6080 ReadFile C:\Users\User\Desktop\MCLauncher.lnk SUCCESS Offset: 0, Length: 972, Priority: Normal 98 12:38:33,6140011 MCLauncher.exe 6080 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 98 12:38:33,6140078 MCLauncher.exe 6080 RegQueryKey HKLM SUCCESS Query: Name 98 12:38:33,6140189 MCLauncher.exe 6080 RegOpenKey HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Policies\Explorer REPARSE Desired Access: Query Value 98 12:38:33,6140299 MCLauncher.exe 6080 RegOpenKey HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer SUCCESS Desired Access: Query Value 98 12:38:33,6140385 MCLauncher.exe 6080 RegSetInfoKey HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 98 12:38:33,6140460 MCLauncher.exe 6080 RegQueryValue HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer\NoPropertiesMyComputer NAME NOT FOUND Length: 144 98 12:38:33,6140635 MCLauncher.exe 6080 RegCloseKey HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer SUCCESS 98 12:38:33,6140721 MCLauncher.exe 6080 RegQueryKey HKCU SUCCESS Query: HandleTags, HandleTags: 0x0 98 12:38:33,6140779 MCLauncher.exe 6080 RegQueryKey HKCU SUCCESS Query: Name 98 12:38:33,6140862 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer SUCCESS Desired Access: Query Value 98 12:38:33,6140970 MCLauncher.exe 6080 RegSetInfoKey HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 98 12:38:33,6141017 MCLauncher.exe 6080 RegQueryValue HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer\NoPropertiesMyComputer NAME NOT FOUND Length: 144 98 12:38:33,6141158 MCLauncher.exe 6080 RegCloseKey HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer SUCCESS 98 12:38:33,6141241 MCLauncher.exe 6080 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 98 12:38:33,6141294 MCLauncher.exe 6080 RegQueryKey HKLM SUCCESS Query: Name 98 12:38:33,6141383 MCLauncher.exe 6080 RegOpenKey HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Policies\Explorer REPARSE Desired Access: Query Value 98 12:38:33,6141460 MCLauncher.exe 6080 RegOpenKey HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer SUCCESS Desired Access: Query Value 98 12:38:33,6141518 MCLauncher.exe 6080 RegSetInfoKey HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 98 12:38:33,6141563 MCLauncher.exe 6080 RegQueryValue HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer\NoPropertiesRecycleBin NAME NOT FOUND Length: 144 98 12:38:33,6141693 MCLauncher.exe 6080 RegCloseKey HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer SUCCESS 98 12:38:33,6141759 MCLauncher.exe 6080 RegQueryKey HKCU SUCCESS Query: HandleTags, HandleTags: 0x0 98 12:38:33,6141812 MCLauncher.exe 6080 RegQueryKey HKCU SUCCESS Query: Name 98 12:38:33,6141890 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer SUCCESS Desired Access: Query Value 98 12:38:33,6141970 MCLauncher.exe 6080 RegSetInfoKey HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 98 12:38:33,6142014 MCLauncher.exe 6080 RegQueryValue HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer\NoPropertiesRecycleBin NAME NOT FOUND Length: 144 98 12:38:33,6142136 MCLauncher.exe 6080 RegCloseKey HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer SUCCESS 98 12:38:33,6142460 MCLauncher.exe 6080 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 98 12:38:33,6142513 MCLauncher.exe 6080 RegQueryKey HKLM SUCCESS Query: Name 98 12:38:33,6142602 MCLauncher.exe 6080 RegOpenKey HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Policies\Explorer REPARSE Desired Access: Query Value 98 12:38:33,6142677 MCLauncher.exe 6080 RegOpenKey HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer SUCCESS Desired Access: Query Value 98 12:38:33,6142735 MCLauncher.exe 6080 RegSetInfoKey HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 98 12:38:33,6142776 MCLauncher.exe 6080 RegQueryValue HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer\NoControlPanel NAME NOT FOUND Length: 144 98 12:38:33,6142901 MCLauncher.exe 6080 RegCloseKey HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer SUCCESS 98 12:38:33,6142970 MCLauncher.exe 6080 RegQueryKey HKCU SUCCESS Query: HandleTags, HandleTags: 0x0 98 12:38:33,6143023 MCLauncher.exe 6080 RegQueryKey HKCU SUCCESS Query: Name 98 12:38:33,6143098 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer SUCCESS Desired Access: Query Value 98 12:38:33,6143175 MCLauncher.exe 6080 RegSetInfoKey HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 98 12:38:33,6143217 MCLauncher.exe 6080 RegQueryValue HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer\NoControlPanel NAME NOT FOUND Length: 144 98 12:38:33,6143330 MCLauncher.exe 6080 RegCloseKey HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer SUCCESS 98 12:38:33,6143416 MCLauncher.exe 6080 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 98 12:38:33,6143469 MCLauncher.exe 6080 RegQueryKey HKLM SUCCESS Query: Name 98 12:38:33,6143555 MCLauncher.exe 6080 RegOpenKey HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Policies\Explorer REPARSE Desired Access: Query Value 98 12:38:33,6143630 MCLauncher.exe 6080 RegOpenKey HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer SUCCESS Desired Access: Query Value 98 12:38:33,6143685 MCLauncher.exe 6080 RegSetInfoKey HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 98 12:38:33,6143724 MCLauncher.exe 6080 RegQueryValue HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer\NoSetFolders NAME NOT FOUND Length: 144 98 12:38:33,6143846 MCLauncher.exe 6080 RegCloseKey HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer SUCCESS 98 12:38:33,6143912 MCLauncher.exe 6080 RegQueryKey HKCU SUCCESS Query: HandleTags, HandleTags: 0x0 98 12:38:33,6143965 MCLauncher.exe 6080 RegQueryKey HKCU SUCCESS Query: Name 98 12:38:33,6144040 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer SUCCESS Desired Access: Query Value 98 12:38:33,6144117 MCLauncher.exe 6080 RegSetInfoKey HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 98 12:38:33,6144156 MCLauncher.exe 6080 RegQueryValue HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer\NoSetFolders NAME NOT FOUND Length: 144 98 12:38:33,6144270 MCLauncher.exe 6080 RegCloseKey HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer SUCCESS 98 12:38:33,6144347 MCLauncher.exe 6080 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 98 12:38:33,6144397 MCLauncher.exe 6080 RegQueryKey HKLM SUCCESS Query: Name 98 12:38:33,6144483 MCLauncher.exe 6080 RegOpenKey HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Policies\Explorer REPARSE Desired Access: Query Value 98 12:38:33,6144555 MCLauncher.exe 6080 RegOpenKey HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer SUCCESS Desired Access: Query Value 98 12:38:33,6144608 MCLauncher.exe 6080 RegSetInfoKey HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 98 12:38:33,6144652 MCLauncher.exe 6080 RegQueryValue HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer\NoInternetIcon NAME NOT FOUND Length: 144 98 12:38:33,6144771 MCLauncher.exe 6080 RegCloseKey HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer SUCCESS 98 12:38:33,6144835 MCLauncher.exe 6080 RegQueryKey HKCU SUCCESS Query: HandleTags, HandleTags: 0x0 98 12:38:33,6144887 MCLauncher.exe 6080 RegQueryKey HKCU SUCCESS Query: Name 98 12:38:33,6144962 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer SUCCESS Desired Access: Query Value 98 12:38:33,6145040 MCLauncher.exe 6080 RegSetInfoKey HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 98 12:38:33,6145081 MCLauncher.exe 6080 RegQueryValue HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer\NoInternetIcon NAME NOT FOUND Length: 144 98 12:38:33,6145195 MCLauncher.exe 6080 RegCloseKey HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer SUCCESS 98 12:38:33,6145353 MCLauncher.exe 6080 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 98 12:38:33,6145403 MCLauncher.exe 6080 RegQueryKey HKLM SUCCESS Query: Name 98 12:38:33,6145494 MCLauncher.exe 6080 RegOpenKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\ShellCompatibility\Applications\MCLauncher.exe NAME NOT FOUND Desired Access: Query Value, Enumerate Sub Keys 98 12:38:33,6145816 MCLauncher.exe 6080 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 98 12:38:33,6145863 MCLauncher.exe 6080 RegQueryKey HKLM SUCCESS Query: Name 98 12:38:33,6145940 MCLauncher.exe 6080 RegOpenKey HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\Desktop\NameSpace SUCCESS Desired Access: Query Value 98 12:38:33,6146034 MCLauncher.exe 6080 RegSetInfoKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\Desktop\NameSpace SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 98 12:38:33,6146076 MCLauncher.exe 6080 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\Desktop\NameSpace\ValidateRegItems NAME NOT FOUND Length: 144 98 12:38:33,6146300 MCLauncher.exe 6080 RegCloseKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\Desktop\NameSpace SUCCESS 98 12:38:33,6146367 MCLauncher.exe 6080 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 98 12:38:33,6146420 MCLauncher.exe 6080 RegQueryKey HKLM SUCCESS Query: Name 98 12:38:33,6146503 MCLauncher.exe 6080 RegOpenKey HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\Desktop\NameSpace SUCCESS Desired Access: Query Value 98 12:38:33,6146583 MCLauncher.exe 6080 RegSetInfoKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\Desktop\NameSpace SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 98 12:38:33,6146625 MCLauncher.exe 6080 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\Desktop\NameSpace\MonitorRegistry SUCCESS Type: REG_DWORD, Length: 4, Data: 1 98 12:38:33,6146760 MCLauncher.exe 6080 RegCloseKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\Desktop\NameSpace SUCCESS 98 12:38:33,6147209 MCLauncher.exe 6080 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 98 12:38:33,6147265 MCLauncher.exe 6080 RegQueryKey HKLM SUCCESS Query: Name 98 12:38:33,6147353 MCLauncher.exe 6080 RegOpenKey HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Policies\Explorer REPARSE Desired Access: Query Value 98 12:38:33,6147434 MCLauncher.exe 6080 RegOpenKey HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer SUCCESS Desired Access: Query Value 98 12:38:33,6147495 MCLauncher.exe 6080 RegSetInfoKey HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 98 12:38:33,6147544 MCLauncher.exe 6080 RegQueryValue HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer\NoCommonGroups NAME NOT FOUND Length: 144 98 12:38:33,6147677 MCLauncher.exe 6080 RegCloseKey HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer SUCCESS 98 12:38:33,6147744 MCLauncher.exe 6080 RegQueryKey HKCU SUCCESS Query: HandleTags, HandleTags: 0x0 98 12:38:33,6147797 MCLauncher.exe 6080 RegQueryKey HKCU SUCCESS Query: Name 98 12:38:33,6147874 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer SUCCESS Desired Access: Query Value 98 12:38:33,6147954 MCLauncher.exe 6080 RegSetInfoKey HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 98 12:38:33,6147996 MCLauncher.exe 6080 RegQueryValue HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer\NoCommonGroups NAME NOT FOUND Length: 144 98 12:38:33,6148115 MCLauncher.exe 6080 RegCloseKey HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer SUCCESS 98 12:38:33,6148727 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Classes SUCCESS Desired Access: Maximum Allowed, Granted Access: All Access 98 12:38:33,6148819 MCLauncher.exe 6080 RegSetInfoKey HKCU\Software\Classes SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 98 12:38:33,6148872 MCLauncher.exe 6080 RegQueryKey HKCU\Software\Classes SUCCESS Query: Name 98 12:38:33,6148941 MCLauncher.exe 6080 RegQueryKey HKCU\Software\Classes SUCCESS Query: HandleTags, HandleTags: 0x1 98 12:38:33,6149010 MCLauncher.exe 6080 RegQueryKey HKCU\Software\Classes SUCCESS Query: HandleTags, HandleTags: 0x1 98 12:38:33,6149057 MCLauncher.exe 6080 RegQueryKey HKCU\Software\Classes SUCCESS Query: Name 98 12:38:33,6149143 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Classes\WOW6432Node\CLSID\{20D04FE0-3AEA-1069-A2D8-08002B30309D}\ShellFolder NAME NOT FOUND Desired Access: Query Value 98 12:38:33,6149273 MCLauncher.exe 6080 RegOpenKey HKCR\WOW6432Node\CLSID\{20D04FE0-3AEA-1069-A2D8-08002B30309D}\ShellFolder SUCCESS Desired Access: Query Value 98 12:38:33,6149365 MCLauncher.exe 6080 RegSetInfoKey HKCR\WOW6432Node\CLSID\{20D04FE0-3AEA-1069-A2D8-08002B30309D}\ShellFolder SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 98 12:38:33,6149412 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{20D04FE0-3AEA-1069-A2D8-08002B30309D}\ShellFolder SUCCESS Query: Name 98 12:38:33,6149481 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{20D04FE0-3AEA-1069-A2D8-08002B30309D}\ShellFolder SUCCESS Query: HandleTags, HandleTags: 0x401 98 12:38:33,6149572 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Classes\WOW6432Node\CLSID\{20D04FE0-3AEA-1069-A2D8-08002B30309D}\ShellFolder NAME NOT FOUND Desired Access: Maximum Allowed 98 12:38:33,6149642 MCLauncher.exe 6080 RegQueryValue HKCR\WOW6432Node\CLSID\{20D04FE0-3AEA-1069-A2D8-08002B30309D}\ShellFolder\Attributes NAME NOT FOUND Length: 144 98 12:38:33,6149769 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{20D04FE0-3AEA-1069-A2D8-08002B30309D}\ShellFolder SUCCESS Query: Name 98 12:38:33,6149838 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{20D04FE0-3AEA-1069-A2D8-08002B30309D}\ShellFolder SUCCESS Query: HandleTags, HandleTags: 0x401 98 12:38:33,6149941 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Classes\WOW6432Node\CLSID\{20D04FE0-3AEA-1069-A2D8-08002B30309D}\ShellFolder NAME NOT FOUND Desired Access: Maximum Allowed 98 12:38:33,6150021 MCLauncher.exe 6080 RegQueryValue HKCR\WOW6432Node\CLSID\{20D04FE0-3AEA-1069-A2D8-08002B30309D}\ShellFolder\CallForAttributes NAME NOT FOUND Length: 144 98 12:38:33,6150132 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{20D04FE0-3AEA-1069-A2D8-08002B30309D}\ShellFolder SUCCESS Query: Name 98 12:38:33,6150199 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{20D04FE0-3AEA-1069-A2D8-08002B30309D}\ShellFolder SUCCESS Query: HandleTags, HandleTags: 0x401 98 12:38:33,6150298 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Classes\WOW6432Node\CLSID\{20D04FE0-3AEA-1069-A2D8-08002B30309D}\ShellFolder NAME NOT FOUND Desired Access: Maximum Allowed 98 12:38:33,6150376 MCLauncher.exe 6080 RegQueryValue HKCR\WOW6432Node\CLSID\{20D04FE0-3AEA-1069-A2D8-08002B30309D}\ShellFolder\RestrictedAttributes NAME NOT FOUND Length: 144 98 12:38:33,6150484 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{20D04FE0-3AEA-1069-A2D8-08002B30309D}\ShellFolder SUCCESS Query: Name 98 12:38:33,6150550 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{20D04FE0-3AEA-1069-A2D8-08002B30309D}\ShellFolder SUCCESS Query: HandleTags, HandleTags: 0x401 98 12:38:33,6150650 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Classes\WOW6432Node\CLSID\{20D04FE0-3AEA-1069-A2D8-08002B30309D}\ShellFolder NAME NOT FOUND Desired Access: Maximum Allowed 98 12:38:33,6150728 MCLauncher.exe 6080 RegQueryValue HKCR\WOW6432Node\CLSID\{20D04FE0-3AEA-1069-A2D8-08002B30309D}\ShellFolder\FolderValueFlags SUCCESS Type: REG_DWORD, Length: 4, Data: 1581568 98 12:38:33,6150872 MCLauncher.exe 6080 RegCloseKey HKCR\WOW6432Node\CLSID\{20D04FE0-3AEA-1069-A2D8-08002B30309D}\ShellFolder SUCCESS 98 12:38:33,6150963 MCLauncher.exe 6080 RegQueryKey HKCU SUCCESS Query: HandleTags, HandleTags: 0x0 98 12:38:33,6151013 MCLauncher.exe 6080 RegQueryKey HKCU SUCCESS Query: Name 98 12:38:33,6151096 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Microsoft\Windows\CurrentVersion\Explorer\CLSID\{20D04FE0-3AEA-1069-A2D8-08002B30309D}\ShellFolder NAME NOT FOUND Desired Access: Query Value 98 12:38:33,6151215 MCLauncher.exe 6080 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 98 12:38:33,6151263 MCLauncher.exe 6080 RegQueryKey HKLM SUCCESS Query: Name 98 12:38:33,6151348 MCLauncher.exe 6080 RegOpenKey HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\CLSID\{20D04FE0-3AEA-1069-A2D8-08002B30309D}\ShellFolder NAME NOT FOUND Desired Access: Query Value 98 12:38:33,6151490 MCLauncher.exe 6080 RegQueryKey HKCU SUCCESS Query: HandleTags, HandleTags: 0x0 98 12:38:33,6151537 MCLauncher.exe 6080 RegQueryKey HKCU SUCCESS Query: Name 98 12:38:33,6151606 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Microsoft\Windows\CurrentVersion\Policies\NonEnum NAME NOT FOUND Desired Access: Query Value 98 12:38:33,6151689 MCLauncher.exe 6080 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 98 12:38:33,6151736 MCLauncher.exe 6080 RegQueryKey HKLM SUCCESS Query: Name 98 12:38:33,6151808 MCLauncher.exe 6080 RegOpenKey HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Policies\NonEnum REPARSE Desired Access: Query Value 98 12:38:33,6151875 MCLauncher.exe 6080 RegOpenKey HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\NonEnum SUCCESS Desired Access: Query Value 98 12:38:33,6151944 MCLauncher.exe 6080 RegSetInfoKey HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\NonEnum SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 98 12:38:33,6151988 MCLauncher.exe 6080 RegQueryValue HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\NonEnum\{20D04FE0-3AEA-1069-A2D8-08002B30309D} NAME NOT FOUND Length: 144 98 12:38:33,6152127 MCLauncher.exe 6080 RegCloseKey HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\NonEnum SUCCESS 98 12:38:33,6152337 MCLauncher.exe 6080 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 98 12:38:33,6152390 MCLauncher.exe 6080 RegQueryKey HKLM SUCCESS Query: Name 98 12:38:33,6152479 MCLauncher.exe 6080 RegOpenKey HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\MyComputer\NameSpace SUCCESS Desired Access: Query Value 98 12:38:33,6152573 MCLauncher.exe 6080 RegSetInfoKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\MyComputer\NameSpace SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 98 12:38:33,6152620 MCLauncher.exe 6080 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\MyComputer\NameSpace\ValidateRegItems NAME NOT FOUND Length: 144 98 12:38:33,6152750 MCLauncher.exe 6080 RegCloseKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\MyComputer\NameSpace SUCCESS 98 12:38:33,6152822 MCLauncher.exe 6080 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 98 12:38:33,6152872 MCLauncher.exe 6080 RegQueryKey HKLM SUCCESS Query: Name 98 12:38:33,6152958 MCLauncher.exe 6080 RegOpenKey HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\MyComputer\NameSpace SUCCESS Desired Access: Query Value 98 12:38:33,6153036 MCLauncher.exe 6080 RegSetInfoKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\MyComputer\NameSpace SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 98 12:38:33,6153077 MCLauncher.exe 6080 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\MyComputer\NameSpace\MonitorRegistry NAME NOT FOUND Length: 144 98 12:38:33,6153196 MCLauncher.exe 6080 RegCloseKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\MyComputer\NameSpace SUCCESS 98 12:38:33,6153692 MCLauncher.exe 6080 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 98 12:38:33,6153750 MCLauncher.exe 6080 RegQueryKey HKLM SUCCESS Query: Name 98 12:38:33,6153839 MCLauncher.exe 6080 RegOpenKey HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Policies\Explorer REPARSE Desired Access: Query Value 98 12:38:33,6153919 MCLauncher.exe 6080 RegOpenKey HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer SUCCESS Desired Access: Query Value 98 12:38:33,6153983 MCLauncher.exe 6080 RegSetInfoKey HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 98 12:38:33,6154025 MCLauncher.exe 6080 RegQueryValue HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer\DontShowSuperHidden NAME NOT FOUND Length: 144 98 12:38:33,6154158 MCLauncher.exe 6080 RegCloseKey HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer SUCCESS 98 12:38:33,6154227 MCLauncher.exe 6080 RegQueryKey HKCU SUCCESS Query: HandleTags, HandleTags: 0x0 98 12:38:33,6154280 MCLauncher.exe 6080 RegQueryKey HKCU SUCCESS Query: Name 98 12:38:33,6154360 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer SUCCESS Desired Access: Query Value 98 12:38:33,6154440 MCLauncher.exe 6080 RegSetInfoKey HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 98 12:38:33,6154482 MCLauncher.exe 6080 RegQueryValue HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer\DontShowSuperHidden NAME NOT FOUND Length: 144 98 12:38:33,6154596 MCLauncher.exe 6080 RegCloseKey HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer SUCCESS 98 12:38:33,6154690 MCLauncher.exe 6080 RegQueryKey HKCU SUCCESS Query: HandleTags, HandleTags: 0x0 98 12:38:33,6154740 MCLauncher.exe 6080 RegQueryKey HKCU SUCCESS Query: Name 98 12:38:33,6154817 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Microsoft\Windows\CurrentVersion\Explorer SUCCESS Desired Access: Query Value 98 12:38:33,6154897 MCLauncher.exe 6080 RegSetInfoKey HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 98 12:38:33,6154961 MCLauncher.exe 6080 RegQueryKey HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer SUCCESS Query: HandleTags, HandleTags: 0x400 98 12:38:33,6155014 MCLauncher.exe 6080 RegOpenKey HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer SUCCESS Desired Access: Query Value 98 12:38:33,6155078 MCLauncher.exe 6080 RegQueryValue HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellState SUCCESS Type: REG_BINARY, Length: 36, Data: 24 00 00 00 34 28 00 00 00 00 00 00 00 00 00 00 98 12:38:33,6155219 MCLauncher.exe 6080 RegQueryValue HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellState SUCCESS Type: REG_BINARY, Length: 36, Data: 24 00 00 00 34 28 00 00 00 00 00 00 00 00 00 00 98 12:38:33,6155349 MCLauncher.exe 6080 RegCloseKey HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer SUCCESS 98 12:38:33,6155452 MCLauncher.exe 6080 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 98 12:38:33,6155501 MCLauncher.exe 6080 RegQueryKey HKLM SUCCESS Query: Name 98 12:38:33,6155590 MCLauncher.exe 6080 RegOpenKey HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Policies\Explorer REPARSE Desired Access: Query Value 98 12:38:33,6155665 MCLauncher.exe 6080 RegOpenKey HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer SUCCESS Desired Access: Query Value 98 12:38:33,6155720 MCLauncher.exe 6080 RegSetInfoKey HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 98 12:38:33,6155765 MCLauncher.exe 6080 RegQueryValue HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer\NoWebView NAME NOT FOUND Length: 144 98 12:38:33,6155889 MCLauncher.exe 6080 RegCloseKey HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer SUCCESS 98 12:38:33,6155956 MCLauncher.exe 6080 RegQueryKey HKCU SUCCESS Query: HandleTags, HandleTags: 0x0 98 12:38:33,6156008 MCLauncher.exe 6080 RegQueryKey HKCU SUCCESS Query: Name 98 12:38:33,6156083 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer SUCCESS Desired Access: Query Value 98 12:38:33,6156161 MCLauncher.exe 6080 RegSetInfoKey HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 98 12:38:33,6156202 MCLauncher.exe 6080 RegQueryValue HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer\NoWebView NAME NOT FOUND Length: 144 98 12:38:33,6156316 MCLauncher.exe 6080 RegCloseKey HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer SUCCESS 98 12:38:33,6156394 MCLauncher.exe 6080 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 98 12:38:33,6156443 MCLauncher.exe 6080 RegQueryKey HKLM SUCCESS Query: Name 98 12:38:33,6156527 MCLauncher.exe 6080 RegOpenKey HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Policies\Explorer REPARSE Desired Access: Query Value 98 12:38:33,6156601 MCLauncher.exe 6080 RegOpenKey HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer SUCCESS Desired Access: Query Value 98 12:38:33,6156657 MCLauncher.exe 6080 RegSetInfoKey HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 98 12:38:33,6156696 MCLauncher.exe 6080 RegQueryValue HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer\ClassicShell NAME NOT FOUND Length: 144 98 12:38:33,6156989 MCLauncher.exe 6080 RegCloseKey HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer SUCCESS 98 12:38:33,6157061 MCLauncher.exe 6080 RegQueryKey HKCU SUCCESS Query: HandleTags, HandleTags: 0x0 98 12:38:33,6157114 MCLauncher.exe 6080 RegQueryKey HKCU SUCCESS Query: Name 98 12:38:33,6157192 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer SUCCESS Desired Access: Query Value 98 12:38:33,6157275 MCLauncher.exe 6080 RegSetInfoKey HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 98 12:38:33,6157319 MCLauncher.exe 6080 RegQueryValue HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer\ClassicShell NAME NOT FOUND Length: 144 98 12:38:33,6157438 MCLauncher.exe 6080 RegCloseKey HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer SUCCESS 98 12:38:33,6157516 MCLauncher.exe 6080 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 98 12:38:33,6157568 MCLauncher.exe 6080 RegQueryKey HKLM SUCCESS Query: Name 98 12:38:33,6157651 MCLauncher.exe 6080 RegOpenKey HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Policies\Explorer REPARSE Desired Access: Query Value 98 12:38:33,6157723 MCLauncher.exe 6080 RegOpenKey HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer SUCCESS Desired Access: Query Value 98 12:38:33,6157779 MCLauncher.exe 6080 RegSetInfoKey HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 98 12:38:33,6157820 MCLauncher.exe 6080 RegQueryValue HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer\SeparateProcess NAME NOT FOUND Length: 144 98 12:38:33,6157942 MCLauncher.exe 6080 RegCloseKey HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer SUCCESS 98 12:38:33,6158009 MCLauncher.exe 6080 RegQueryKey HKCU SUCCESS Query: HandleTags, HandleTags: 0x0 98 12:38:33,6158059 MCLauncher.exe 6080 RegQueryKey HKCU SUCCESS Query: Name 98 12:38:33,6158134 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer SUCCESS Desired Access: Query Value 98 12:38:33,6158214 MCLauncher.exe 6080 RegSetInfoKey HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 98 12:38:33,6158253 MCLauncher.exe 6080 RegQueryValue HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer\SeparateProcess NAME NOT FOUND Length: 144 98 12:38:33,6158369 MCLauncher.exe 6080 RegCloseKey HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer SUCCESS 98 12:38:33,6158441 MCLauncher.exe 6080 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 98 12:38:33,6158494 MCLauncher.exe 6080 RegQueryKey HKLM SUCCESS Query: Name 98 12:38:33,6158577 MCLauncher.exe 6080 RegOpenKey HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Policies\Explorer REPARSE Desired Access: Query Value 98 12:38:33,6158646 MCLauncher.exe 6080 RegOpenKey HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer SUCCESS Desired Access: Query Value 98 12:38:33,6158701 MCLauncher.exe 6080 RegSetInfoKey HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 98 12:38:33,6158740 MCLauncher.exe 6080 RegQueryValue HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer\NoNetCrawling NAME NOT FOUND Length: 144 98 12:38:33,6158862 MCLauncher.exe 6080 RegCloseKey HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer SUCCESS 98 12:38:33,6158926 MCLauncher.exe 6080 RegQueryKey HKCU SUCCESS Query: HandleTags, HandleTags: 0x0 98 12:38:33,6158976 MCLauncher.exe 6080 RegQueryKey HKCU SUCCESS Query: Name 98 12:38:33,6159051 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer SUCCESS Desired Access: Query Value 98 12:38:33,6159128 MCLauncher.exe 6080 RegSetInfoKey HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 98 12:38:33,6159170 MCLauncher.exe 6080 RegQueryValue HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer\NoNetCrawling NAME NOT FOUND Length: 144 98 12:38:33,6159283 MCLauncher.exe 6080 RegCloseKey HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer SUCCESS 98 12:38:33,6159366 MCLauncher.exe 6080 RegQueryKey HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer SUCCESS Query: HandleTags, HandleTags: 0x400 98 12:38:33,6159430 MCLauncher.exe 6080 RegOpenKey HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced SUCCESS Desired Access: Query Value 98 12:38:33,6159510 MCLauncher.exe 6080 RegQueryValue HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Hidden SUCCESS Type: REG_DWORD, Length: 4, Data: 2 98 12:38:33,6159643 MCLauncher.exe 6080 RegQueryValue HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\ShowCompColor SUCCESS Type: REG_DWORD, Length: 4, Data: 1 98 12:38:33,6159763 MCLauncher.exe 6080 RegQueryValue HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\HideFileExt SUCCESS Type: REG_DWORD, Length: 4, Data: 1 98 12:38:33,6159885 MCLauncher.exe 6080 RegQueryValue HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\DontPrettyPath SUCCESS Type: REG_DWORD, Length: 4, Data: 0 98 12:38:33,6160006 MCLauncher.exe 6080 RegQueryValue HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\ShowInfoTip SUCCESS Type: REG_DWORD, Length: 4, Data: 1 98 12:38:33,6160126 MCLauncher.exe 6080 RegQueryValue HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\HideIcons SUCCESS Type: REG_DWORD, Length: 4, Data: 0 98 12:38:33,6160245 MCLauncher.exe 6080 RegQueryValue HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\MapNetDrvBtn SUCCESS Type: REG_DWORD, Length: 4, Data: 0 98 12:38:33,6160367 MCLauncher.exe 6080 RegQueryValue HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\WebView SUCCESS Type: REG_DWORD, Length: 4, Data: 1 98 12:38:33,6160486 MCLauncher.exe 6080 RegQueryValue HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Filter SUCCESS Type: REG_DWORD, Length: 4, Data: 0 98 12:38:33,6160605 MCLauncher.exe 6080 RegQueryValue HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\ShowSuperHidden SUCCESS Type: REG_DWORD, Length: 4, Data: 0 98 12:38:33,6160724 MCLauncher.exe 6080 RegQueryValue HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\SeparateProcess SUCCESS Type: REG_DWORD, Length: 4, Data: 0 98 12:38:33,6160840 MCLauncher.exe 6080 RegQueryValue HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\NoNetCrawling NAME NOT FOUND Length: 144 98 12:38:33,6160951 MCLauncher.exe 6080 RegQueryValue HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\AutoCheckSelect SUCCESS Type: REG_DWORD, Length: 4, Data: 0 98 12:38:33,6161070 MCLauncher.exe 6080 RegQueryValue HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\IconsOnly SUCCESS Type: REG_DWORD, Length: 4, Data: 0 98 12:38:33,6161187 MCLauncher.exe 6080 RegQueryValue HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\ShowTypeOverlay SUCCESS Type: REG_DWORD, Length: 4, Data: 1 98 12:38:33,6161306 MCLauncher.exe 6080 RegQueryValue HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\ShowStatusBar SUCCESS Type: REG_DWORD, Length: 4, Data: 1 98 12:38:33,6161433 MCLauncher.exe 6080 RegCloseKey HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced SUCCESS 98 12:38:33,6161757 MCLauncher.exe 6080 RegQueryKey HKCU\Software\Classes SUCCESS Query: Name 98 12:38:33,6161827 MCLauncher.exe 6080 RegQueryKey HKCU\Software\Classes SUCCESS Query: HandleTags, HandleTags: 0x1 98 12:38:33,6161896 MCLauncher.exe 6080 RegQueryKey HKCU\Software\Classes SUCCESS Query: HandleTags, HandleTags: 0x1 98 12:38:33,6161943 MCLauncher.exe 6080 RegQueryKey HKCU\Software\Classes SUCCESS Query: Name 98 12:38:33,6162026 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Classes\Directory SUCCESS Desired Access: Read 98 12:38:33,6162106 MCLauncher.exe 6080 RegSetInfoKey HKCU\Software\Classes\Directory SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 98 12:38:33,6162195 MCLauncher.exe 6080 RegQueryKey HKCU\Software\Classes\Directory SUCCESS Query: Name 98 12:38:33,6162256 MCLauncher.exe 6080 RegQueryKey HKCU\Software\Classes\Directory SUCCESS Query: HandleTags, HandleTags: 0x401 98 12:38:33,6162320 MCLauncher.exe 6080 RegQueryKey HKCU\Software\Classes\Directory SUCCESS Query: HandleTags, HandleTags: 0x401 98 12:38:33,6162372 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Classes\Directory\ShellEx\IconHandler NAME NOT FOUND Desired Access: Query Value 98 12:38:33,6162469 MCLauncher.exe 6080 RegOpenKey HKCR\Directory\ShellEx\IconHandler NAME NOT FOUND Desired Access: Query Value 98 12:38:33,6162580 MCLauncher.exe 6080 RegQueryKey HKCU\Software\Classes SUCCESS Query: Name 98 12:38:33,6162638 MCLauncher.exe 6080 RegQueryKey HKCU\Software\Classes SUCCESS Query: HandleTags, HandleTags: 0x1 98 12:38:33,6162699 MCLauncher.exe 6080 RegQueryKey HKCU\Software\Classes SUCCESS Query: HandleTags, HandleTags: 0x1 98 12:38:33,6162746 MCLauncher.exe 6080 RegQueryKey HKCU\Software\Classes SUCCESS Query: Name 98 12:38:33,6162813 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Classes\Folder NAME NOT FOUND Desired Access: Read 98 12:38:33,6162902 MCLauncher.exe 6080 RegOpenKey HKCR\Folder SUCCESS Desired Access: Read 98 12:38:33,6162968 MCLauncher.exe 6080 RegSetInfoKey HKCR\Folder SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 98 12:38:33,6163018 MCLauncher.exe 6080 RegQueryKey HKCR\Folder SUCCESS Query: Name 98 12:38:33,6163079 MCLauncher.exe 6080 RegQueryKey HKCR\Folder SUCCESS Query: HandleTags, HandleTags: 0x401 98 12:38:33,6163173 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Classes\Folder\ShellEx\IconHandler NAME NOT FOUND Desired Access: Query Value 98 12:38:33,6163248 MCLauncher.exe 6080 RegQueryKey HKCR\Folder SUCCESS Query: HandleTags, HandleTags: 0x401 98 12:38:33,6163301 MCLauncher.exe 6080 RegOpenKey HKCR\Folder\ShellEx\IconHandler NAME NOT FOUND Desired Access: Query Value 98 12:38:33,6163384 MCLauncher.exe 6080 RegQueryKey HKCU\Software\Classes SUCCESS Query: Name 98 12:38:33,6163439 MCLauncher.exe 6080 RegQueryKey HKCU\Software\Classes SUCCESS Query: HandleTags, HandleTags: 0x1 98 12:38:33,6163503 MCLauncher.exe 6080 RegQueryKey HKCU\Software\Classes SUCCESS Query: HandleTags, HandleTags: 0x1 98 12:38:33,6163547 MCLauncher.exe 6080 RegQueryKey HKCU\Software\Classes SUCCESS Query: Name 98 12:38:33,6163614 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Classes\AllFilesystemObjects NAME NOT FOUND Desired Access: Read 98 12:38:33,6163691 MCLauncher.exe 6080 RegOpenKey HKCR\AllFilesystemObjects SUCCESS Desired Access: Read 98 12:38:33,6163761 MCLauncher.exe 6080 RegSetInfoKey HKCR\AllFilesystemObjects SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 98 12:38:33,6163808 MCLauncher.exe 6080 RegQueryKey HKCR\AllFilesystemObjects SUCCESS Query: Name 98 12:38:33,6163869 MCLauncher.exe 6080 RegQueryKey HKCR\AllFilesystemObjects SUCCESS Query: HandleTags, HandleTags: 0x401 98 12:38:33,6163949 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Classes\AllFilesystemObjects\ShellEx\IconHandler NAME NOT FOUND Desired Access: Query Value 98 12:38:33,6164026 MCLauncher.exe 6080 RegQueryKey HKCR\AllFilesystemObjects SUCCESS Query: HandleTags, HandleTags: 0x401 98 12:38:33,6164076 MCLauncher.exe 6080 RegOpenKey HKCR\AllFilesystemObjects\ShellEx\IconHandler NAME NOT FOUND Desired Access: Query Value 98 12:38:33,6164168 MCLauncher.exe 6080 RegQueryKey HKCU\Software\Classes\Directory SUCCESS Query: Name 98 12:38:33,6164220 MCLauncher.exe 6080 RegQueryKey HKCU\Software\Classes\Directory SUCCESS Query: HandleTags, HandleTags: 0x401 98 12:38:33,6164290 MCLauncher.exe 6080 RegOpenKey HKCR\Directory SUCCESS Desired Access: Maximum Allowed, Granted Access: Read 98 12:38:33,6164353 MCLauncher.exe 6080 RegSetInfoKey HKCR\Directory SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 98 12:38:33,6164395 MCLauncher.exe 6080 RegQueryValue HKCU\Software\Classes\Directory\DocObject NAME NOT FOUND Length: 144 98 12:38:33,6164511 MCLauncher.exe 6080 RegQueryValue HKCR\Directory\DocObject NAME NOT FOUND Length: 144 98 12:38:33,6164639 MCLauncher.exe 6080 RegCloseKey HKCR\Directory SUCCESS 98 12:38:33,6164691 MCLauncher.exe 6080 RegQueryKey HKCU\Software\Classes\Directory SUCCESS Query: Name 98 12:38:33,6164758 MCLauncher.exe 6080 RegQueryKey HKCU\Software\Classes\Directory SUCCESS Query: HandleTags, HandleTags: 0x401 98 12:38:33,6164827 MCLauncher.exe 6080 RegQueryKey HKCU\Software\Classes\Directory SUCCESS Query: HandleTags, HandleTags: 0x401 98 12:38:33,6164885 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Classes\Directory\DocObject NAME NOT FOUND Desired Access: Query Value 98 12:38:33,6164971 MCLauncher.exe 6080 RegOpenKey HKCR\Directory\DocObject NAME NOT FOUND Desired Access: Query Value 98 12:38:33,6165049 MCLauncher.exe 6080 RegQueryKey HKCR\Folder SUCCESS Query: Name 98 12:38:33,6165104 MCLauncher.exe 6080 RegQueryKey HKCR\Folder SUCCESS Query: HandleTags, HandleTags: 0x401 98 12:38:33,6165187 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Classes\Folder NAME NOT FOUND Desired Access: Maximum Allowed 98 12:38:33,6165251 MCLauncher.exe 6080 RegQueryValue HKCR\Folder\DocObject NAME NOT FOUND Length: 144 98 12:38:33,6165376 MCLauncher.exe 6080 RegQueryKey HKCR\Folder SUCCESS Query: Name 98 12:38:33,6165437 MCLauncher.exe 6080 RegQueryKey HKCR\Folder SUCCESS Query: HandleTags, HandleTags: 0x401 98 12:38:33,6165534 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Classes\Folder\DocObject NAME NOT FOUND Desired Access: Query Value 98 12:38:33,6165614 MCLauncher.exe 6080 RegQueryKey HKCR\Folder SUCCESS Query: HandleTags, HandleTags: 0x401 98 12:38:33,6165667 MCLauncher.exe 6080 RegOpenKey HKCR\Folder\DocObject NAME NOT FOUND Desired Access: Query Value 98 12:38:33,6165733 MCLauncher.exe 6080 RegQueryKey HKCR\AllFilesystemObjects SUCCESS Query: Name 98 12:38:33,6165789 MCLauncher.exe 6080 RegQueryKey HKCR\AllFilesystemObjects SUCCESS Query: HandleTags, HandleTags: 0x401 98 12:38:33,6165866 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Classes\AllFilesystemObjects NAME NOT FOUND Desired Access: Maximum Allowed 98 12:38:33,6165924 MCLauncher.exe 6080 RegQueryValue HKCR\AllFilesystemObjects\DocObject NAME NOT FOUND Length: 144 98 12:38:33,6166043 MCLauncher.exe 6080 RegQueryKey HKCR\AllFilesystemObjects SUCCESS Query: Name 98 12:38:33,6166104 MCLauncher.exe 6080 RegQueryKey HKCR\AllFilesystemObjects SUCCESS Query: HandleTags, HandleTags: 0x401 98 12:38:33,6166199 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Classes\AllFilesystemObjects\DocObject NAME NOT FOUND Desired Access: Query Value 98 12:38:33,6166282 MCLauncher.exe 6080 RegQueryKey HKCR\AllFilesystemObjects SUCCESS Query: HandleTags, HandleTags: 0x401 98 12:38:33,6166334 MCLauncher.exe 6080 RegOpenKey HKCR\AllFilesystemObjects\DocObject NAME NOT FOUND Desired Access: Query Value 98 12:38:33,6166406 MCLauncher.exe 6080 RegQueryKey HKCU\Software\Classes\Directory SUCCESS Query: Name 98 12:38:33,6166459 MCLauncher.exe 6080 RegQueryKey HKCU\Software\Classes\Directory SUCCESS Query: HandleTags, HandleTags: 0x401 98 12:38:33,6166661 MCLauncher.exe 6080 RegOpenKey HKCR\Directory SUCCESS Desired Access: Maximum Allowed, Granted Access: Read 98 12:38:33,6166742 MCLauncher.exe 6080 RegSetInfoKey HKCR\Directory SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 98 12:38:33,6166786 MCLauncher.exe 6080 RegQueryValue HKCU\Software\Classes\Directory\BrowseInPlace NAME NOT FOUND Length: 144 98 12:38:33,6166897 MCLauncher.exe 6080 RegQueryValue HKCR\Directory\BrowseInPlace NAME NOT FOUND Length: 144 98 12:38:33,6167013 MCLauncher.exe 6080 RegCloseKey HKCR\Directory SUCCESS 98 12:38:33,6167066 MCLauncher.exe 6080 RegQueryKey HKCU\Software\Classes\Directory SUCCESS Query: Name 98 12:38:33,6167132 MCLauncher.exe 6080 RegQueryKey HKCU\Software\Classes\Directory SUCCESS Query: HandleTags, HandleTags: 0x401 98 12:38:33,6167202 MCLauncher.exe 6080 RegQueryKey HKCU\Software\Classes\Directory SUCCESS Query: HandleTags, HandleTags: 0x401 98 12:38:33,6167260 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Classes\Directory\BrowseInPlace NAME NOT FOUND Desired Access: Query Value 98 12:38:33,6167346 MCLauncher.exe 6080 RegOpenKey HKCR\Directory\BrowseInPlace NAME NOT FOUND Desired Access: Query Value 98 12:38:33,6167420 MCLauncher.exe 6080 RegQueryKey HKCR\Folder SUCCESS Query: Name 98 12:38:33,6167476 MCLauncher.exe 6080 RegQueryKey HKCR\Folder SUCCESS Query: HandleTags, HandleTags: 0x401 98 12:38:33,6167556 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Classes\Folder NAME NOT FOUND Desired Access: Maximum Allowed 98 12:38:33,6167617 MCLauncher.exe 6080 RegQueryValue HKCR\Folder\BrowseInPlace NAME NOT FOUND Length: 144 98 12:38:33,6167733 MCLauncher.exe 6080 RegQueryKey HKCR\Folder SUCCESS Query: Name 98 12:38:33,6167794 MCLauncher.exe 6080 RegQueryKey HKCR\Folder SUCCESS Query: HandleTags, HandleTags: 0x401 98 12:38:33,6167889 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Classes\Folder\BrowseInPlace NAME NOT FOUND Desired Access: Query Value 98 12:38:33,6167969 MCLauncher.exe 6080 RegQueryKey HKCR\Folder SUCCESS Query: HandleTags, HandleTags: 0x401 98 12:38:33,6168022 MCLauncher.exe 6080 RegOpenKey HKCR\Folder\BrowseInPlace NAME NOT FOUND Desired Access: Query Value 98 12:38:33,6168088 MCLauncher.exe 6080 RegQueryKey HKCR\AllFilesystemObjects SUCCESS Query: Name 98 12:38:33,6168144 MCLauncher.exe 6080 RegQueryKey HKCR\AllFilesystemObjects SUCCESS Query: HandleTags, HandleTags: 0x401 98 12:38:33,6168216 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Classes\AllFilesystemObjects NAME NOT FOUND Desired Access: Maximum Allowed 98 12:38:33,6168274 MCLauncher.exe 6080 RegQueryValue HKCR\AllFilesystemObjects\BrowseInPlace NAME NOT FOUND Length: 144 98 12:38:33,6168393 MCLauncher.exe 6080 RegQueryKey HKCR\AllFilesystemObjects SUCCESS Query: Name 98 12:38:33,6168454 MCLauncher.exe 6080 RegQueryKey HKCR\AllFilesystemObjects SUCCESS Query: HandleTags, HandleTags: 0x401 98 12:38:33,6168545 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Classes\AllFilesystemObjects\BrowseInPlace NAME NOT FOUND Desired Access: Query Value 98 12:38:33,6168628 MCLauncher.exe 6080 RegQueryKey HKCR\AllFilesystemObjects SUCCESS Query: HandleTags, HandleTags: 0x401 98 12:38:33,6168681 MCLauncher.exe 6080 RegOpenKey HKCR\AllFilesystemObjects\BrowseInPlace NAME NOT FOUND Desired Access: Query Value 98 12:38:33,6168767 MCLauncher.exe 6080 RegQueryKey HKCU\Software\Classes\Directory SUCCESS Query: Name 98 12:38:33,6168822 MCLauncher.exe 6080 RegQueryKey HKCU\Software\Classes\Directory SUCCESS Query: HandleTags, HandleTags: 0x401 98 12:38:33,6168886 MCLauncher.exe 6080 RegQueryKey HKCU\Software\Classes\Directory SUCCESS Query: HandleTags, HandleTags: 0x401 98 12:38:33,6168939 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Classes\Directory\Clsid NAME NOT FOUND Desired Access: Query Value 98 12:38:33,6169013 MCLauncher.exe 6080 RegOpenKey HKCR\Directory\Clsid NAME NOT FOUND Desired Access: Query Value 98 12:38:33,6169083 MCLauncher.exe 6080 RegQueryKey HKCR\Folder SUCCESS Query: Name 98 12:38:33,6169138 MCLauncher.exe 6080 RegQueryKey HKCR\Folder SUCCESS Query: HandleTags, HandleTags: 0x401 98 12:38:33,6169216 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Classes\Folder\Clsid NAME NOT FOUND Desired Access: Query Value 98 12:38:33,6169285 MCLauncher.exe 6080 RegQueryKey HKCR\Folder SUCCESS Query: HandleTags, HandleTags: 0x401 98 12:38:33,6169335 MCLauncher.exe 6080 RegOpenKey HKCR\Folder\Clsid NAME NOT FOUND Desired Access: Query Value 98 12:38:33,6169396 MCLauncher.exe 6080 RegQueryKey HKCR\AllFilesystemObjects SUCCESS Query: Name 98 12:38:33,6169446 MCLauncher.exe 6080 RegQueryKey HKCR\AllFilesystemObjects SUCCESS Query: HandleTags, HandleTags: 0x401 98 12:38:33,6169521 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Classes\AllFilesystemObjects\Clsid NAME NOT FOUND Desired Access: Query Value 98 12:38:33,6169590 MCLauncher.exe 6080 RegQueryKey HKCR\AllFilesystemObjects SUCCESS Query: HandleTags, HandleTags: 0x401 98 12:38:33,6169642 MCLauncher.exe 6080 RegOpenKey HKCR\AllFilesystemObjects\Clsid NAME NOT FOUND Desired Access: Query Value 98 12:38:33,6169742 MCLauncher.exe 6080 RegQueryKey HKCU\Software\Classes\Directory SUCCESS Query: Name 98 12:38:33,6169798 MCLauncher.exe 6080 RegQueryKey HKCU\Software\Classes\Directory SUCCESS Query: HandleTags, HandleTags: 0x401 98 12:38:33,6169861 MCLauncher.exe 6080 RegOpenKey HKCR\Directory SUCCESS Desired Access: Maximum Allowed, Granted Access: Read 98 12:38:33,6169928 MCLauncher.exe 6080 RegSetInfoKey HKCR\Directory SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 98 12:38:33,6169969 MCLauncher.exe 6080 RegQueryValue HKCU\Software\Classes\Directory\IsShortcut NAME NOT FOUND Length: 144 98 12:38:33,6170080 MCLauncher.exe 6080 RegQueryValue HKCR\Directory\IsShortcut NAME NOT FOUND Length: 144 98 12:38:33,6170194 MCLauncher.exe 6080 RegCloseKey HKCR\Directory SUCCESS 98 12:38:33,6170249 MCLauncher.exe 6080 RegQueryKey HKCR\Folder SUCCESS Query: Name 98 12:38:33,6170310 MCLauncher.exe 6080 RegQueryKey HKCR\Folder SUCCESS Query: HandleTags, HandleTags: 0x401 98 12:38:33,6170407 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Classes\Folder NAME NOT FOUND Desired Access: Maximum Allowed 98 12:38:33,6170474 MCLauncher.exe 6080 RegQueryValue HKCR\Folder\IsShortcut NAME NOT FOUND Length: 144 98 12:38:33,6170593 MCLauncher.exe 6080 RegQueryKey HKCR\AllFilesystemObjects SUCCESS Query: Name 98 12:38:33,6170654 MCLauncher.exe 6080 RegQueryKey HKCR\AllFilesystemObjects SUCCESS Query: HandleTags, HandleTags: 0x401 98 12:38:33,6170745 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Classes\AllFilesystemObjects NAME NOT FOUND Desired Access: Maximum Allowed 98 12:38:33,6170809 MCLauncher.exe 6080 RegQueryValue HKCR\AllFilesystemObjects\IsShortcut NAME NOT FOUND Length: 144 98 12:38:33,6170936 MCLauncher.exe 6080 RegQueryKey HKCU\Software\Classes\Directory SUCCESS Query: Name 98 12:38:33,6170997 MCLauncher.exe 6080 RegQueryKey HKCU\Software\Classes\Directory SUCCESS Query: HandleTags, HandleTags: 0x401 98 12:38:33,6171075 MCLauncher.exe 6080 RegOpenKey HKCR\Directory SUCCESS Desired Access: Maximum Allowed, Granted Access: Read 98 12:38:33,6171147 MCLauncher.exe 6080 RegSetInfoKey HKCR\Directory SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 98 12:38:33,6171186 MCLauncher.exe 6080 RegQueryValue HKCU\Software\Classes\Directory\AlwaysShowExt NAME NOT FOUND Length: 144 98 12:38:33,6171288 MCLauncher.exe 6080 RegQueryValue HKCR\Directory\AlwaysShowExt SUCCESS Type: REG_SZ, Length: 2, Data: 98 12:38:33,6171410 MCLauncher.exe 6080 RegCloseKey HKCR\Directory SUCCESS 98 12:38:33,6171468 MCLauncher.exe 6080 RegQueryKey HKCU\Software\Classes\Directory SUCCESS Query: Name 98 12:38:33,6171529 MCLauncher.exe 6080 RegQueryKey HKCU\Software\Classes\Directory SUCCESS Query: HandleTags, HandleTags: 0x401 98 12:38:33,6171607 MCLauncher.exe 6080 RegOpenKey HKCR\Directory SUCCESS Desired Access: Maximum Allowed, Granted Access: Read 98 12:38:33,6171673 MCLauncher.exe 6080 RegSetInfoKey HKCR\Directory SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 98 12:38:33,6171712 MCLauncher.exe 6080 RegQueryValue HKCU\Software\Classes\Directory\NeverShowExt NAME NOT FOUND Length: 144 98 12:38:33,6171815 MCLauncher.exe 6080 RegQueryValue HKCR\Directory\NeverShowExt NAME NOT FOUND Length: 144 98 12:38:33,6171917 MCLauncher.exe 6080 RegCloseKey HKCR\Directory SUCCESS 98 12:38:33,6171970 MCLauncher.exe 6080 RegQueryKey HKCR\Folder SUCCESS Query: Name 98 12:38:33,6172028 MCLauncher.exe 6080 RegQueryKey HKCR\Folder SUCCESS Query: HandleTags, HandleTags: 0x401 98 12:38:33,6172122 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Classes\Folder NAME NOT FOUND Desired Access: Maximum Allowed 98 12:38:33,6172189 MCLauncher.exe 6080 RegQueryValue HKCR\Folder\NeverShowExt NAME NOT FOUND Length: 144 98 12:38:33,6172308 MCLauncher.exe 6080 RegQueryKey HKCR\AllFilesystemObjects SUCCESS Query: Name 98 12:38:33,6172369 MCLauncher.exe 6080 RegQueryKey HKCR\AllFilesystemObjects SUCCESS Query: HandleTags, HandleTags: 0x401 98 12:38:33,6172460 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Classes\AllFilesystemObjects NAME NOT FOUND Desired Access: Maximum Allowed 98 12:38:33,6172527 MCLauncher.exe 6080 RegQueryValue HKCR\AllFilesystemObjects\NeverShowExt NAME NOT FOUND Length: 144 98 12:38:33,6172662 MCLauncher.exe 6080 RegCloseKey HKCU\Software\Classes\Directory SUCCESS 98 12:38:33,6172715 MCLauncher.exe 6080 RegCloseKey HKCR\Folder SUCCESS 98 12:38:33,6172757 MCLauncher.exe 6080 RegCloseKey HKCR\AllFilesystemObjects SUCCESS 98 12:38:33,6175754 MCLauncher.exe 6080 CreateFile C:\Windows\SysWOW64\propsys.dll SUCCESS Desired Access: Read Attributes, Disposition: Open, Options: Open Reparse Point, Attributes: n/a, ShareMode: Read, Write, Delete, AllocationSize: n/a, OpenResult: Opened 98 12:38:33,6176042 MCLauncher.exe 6080 QueryBasicInformationFile C:\Windows\SysWOW64\propsys.dll SUCCESS CreationTime: 20.07.2018 1:34:17, LastAccessTime: 20.07.2018 1:34:17, LastWriteTime: 06.03.2018 9:03:35, ChangeTime: 20.07.2018 19:24:46, FileAttributes: A 98 12:38:33,6176134 MCLauncher.exe 6080 CloseFile C:\Windows\SysWOW64\propsys.dll SUCCESS 98 12:38:33,6177325 MCLauncher.exe 6080 CreateFile C:\Windows\SysWOW64\propsys.dll SUCCESS Desired Access: Read Data/List Directory, Execute/Traverse, Synchronize, Disposition: Open, Options: Synchronous IO Non-Alert, Non-Directory File, Attributes: n/a, ShareMode: Read, Delete, AllocationSize: n/a, OpenResult: Opened 98 12:38:33,6177619 MCLauncher.exe 6080 CreateFileMapping C:\Windows\SysWOW64\propsys.dll FILE LOCKED WITH ONLY READERS SyncType: SyncTypeCreateSection, PageProtection: PAGE_EXECUTE|PAGE_NOCACHE 98 12:38:33,6177760 MCLauncher.exe 6080 QueryNameInformationFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Name: \Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe 98 12:38:33,6178652 MCLauncher.exe 6080 CreateFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Desired Access: Synchronize, Disposition: Open, Options: Synchronous IO Non-Alert, Attributes: N, ShareMode: Read, Write, Delete, AllocationSize: n/a, OpenResult: Opened 98 12:38:33,6178843 MCLauncher.exe 6080 CloseFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS 98 12:38:33,6179143 MCLauncher.exe 6080 QueryNameInformationFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Name: \Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe 98 12:38:33,6180002 MCLauncher.exe 6080 CreateFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Desired Access: Synchronize, Disposition: Open, Options: Synchronous IO Non-Alert, Attributes: N, ShareMode: Read, Write, Delete, AllocationSize: n/a, OpenResult: Opened 98 12:38:33,6180173 MCLauncher.exe 6080 CloseFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS 98 12:38:33,6180860 MCLauncher.exe 6080 CreateFileMapping C:\Windows\SysWOW64\propsys.dll SUCCESS SyncType: SyncTypeOther 98 12:38:33,6181434 MCLauncher.exe 6080 Load Image C:\Windows\SysWOW64\propsys.dll SUCCESS Image Base: 0x728e0000, Image Size: 0x14f000 98 12:38:33,6182140 MCLauncher.exe 6080 CloseFile C:\Windows\SysWOW64\propsys.dll SUCCESS 98 12:38:33,6183980 MCLauncher.exe 6080 CreateFile C:\Windows\SysWOW64\propsys.dll SUCCESS Desired Access: Read Control, Disposition: Open, Options: , Attributes: n/a, ShareMode: Read, Delete, AllocationSize: n/a, OpenResult: Opened 98 12:38:33,6184271 MCLauncher.exe 6080 QuerySecurityFile C:\Windows\SysWOW64\propsys.dll BUFFER OVERFLOW Information: Owner 98 12:38:33,6184354 MCLauncher.exe 6080 QuerySecurityFile C:\Windows\SysWOW64\propsys.dll SUCCESS Information: Owner 98 12:38:33,6184426 MCLauncher.exe 6080 CloseFile C:\Windows\SysWOW64\propsys.dll SUCCESS 98 12:38:33,6185551 MCLauncher.exe 6080 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 98 12:38:33,6185620 MCLauncher.exe 6080 RegQueryKey HKLM SUCCESS Query: Name 98 12:38:33,6185739 MCLauncher.exe 6080 RegOpenKey HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\KindMap REPARSE Desired Access: Read 98 12:38:33,6185850 MCLauncher.exe 6080 RegOpenKey HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\KindMap SUCCESS Desired Access: Read 98 12:38:33,6185928 MCLauncher.exe 6080 RegSetInfoKey HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\KindMap SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 98 12:38:33,6186102 MCLauncher.exe 6080 RegQueryValue HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\KindMap\.exe SUCCESS Type: REG_SZ, Length: 16, Data: program 98 12:38:33,6186335 MCLauncher.exe 6080 RegCloseKey HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\KindMap SUCCESS 98 12:38:33,6186388 MCLauncher.exe 6080 RegQueryKey HKCU\Software\Classes SUCCESS Query: Name 98 12:38:33,6186457 MCLauncher.exe 6080 RegQueryKey HKCU\Software\Classes SUCCESS Query: HandleTags, HandleTags: 0x1 98 12:38:33,6186529 MCLauncher.exe 6080 RegQueryKey HKCU\Software\Classes SUCCESS Query: HandleTags, HandleTags: 0x1 98 12:38:33,6186579 MCLauncher.exe 6080 RegQueryKey HKCU\Software\Classes SUCCESS Query: Name 98 12:38:33,6186662 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Classes\.exe NAME NOT FOUND Desired Access: Read 98 12:38:33,6186767 MCLauncher.exe 6080 RegOpenKey HKCR\.exe SUCCESS Desired Access: Read 98 12:38:33,6186853 MCLauncher.exe 6080 RegSetInfoKey HKCR\.exe SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 98 12:38:33,6186897 MCLauncher.exe 6080 RegQueryKey HKCR\.exe SUCCESS Query: Name 98 12:38:33,6186956 MCLauncher.exe 6080 RegQueryKey HKCR\.exe SUCCESS Query: HandleTags, HandleTags: 0x401 98 12:38:33,6187053 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Classes\.exe NAME NOT FOUND Desired Access: Maximum Allowed 98 12:38:33,6187122 MCLauncher.exe 6080 RegQueryValue HKCR\.exe\Content Type SUCCESS Type: REG_SZ, Length: 50, Data: application/x-msdownload 98 12:38:33,6187285 MCLauncher.exe 6080 RegCloseKey HKCR\.exe SUCCESS 98 12:38:33,6187887 MCLauncher.exe 6080 RegQueryKey HKCU\Software\Classes SUCCESS Query: Name 98 12:38:33,6187964 MCLauncher.exe 6080 RegQueryKey HKCU\Software\Classes SUCCESS Query: HandleTags, HandleTags: 0x1 98 12:38:33,6188036 MCLauncher.exe 6080 RegQueryKey HKCU\Software\Classes SUCCESS Query: HandleTags, HandleTags: 0x1 98 12:38:33,6188086 MCLauncher.exe 6080 RegQueryKey HKCU\Software\Classes SUCCESS Query: Name 98 12:38:33,6188183 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Classes\WOW6432Node\CLSID\{1F486A52-3CB1-48FD-8F50-B8DC300D9F9D} NAME NOT FOUND Desired Access: Read 98 12:38:33,6188308 MCLauncher.exe 6080 RegOpenKey HKCR\WOW6432Node\CLSID\{1F486A52-3CB1-48FD-8F50-B8DC300D9F9D} SUCCESS Desired Access: Read 98 12:38:33,6188399 MCLauncher.exe 6080 RegSetInfoKey HKCR\WOW6432Node\CLSID\{1f486a52-3cb1-48fd-8f50-b8dc300d9f9d} SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 98 12:38:33,6188443 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{1f486a52-3cb1-48fd-8f50-b8dc300d9f9d} SUCCESS Query: Name 98 12:38:33,6188507 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{1f486a52-3cb1-48fd-8f50-b8dc300d9f9d} SUCCESS Query: HandleTags, HandleTags: 0x401 98 12:38:33,6188607 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Classes\WOW6432Node\CLSID\{1f486a52-3cb1-48fd-8f50-b8dc300d9f9d}\TreatAs NAME NOT FOUND Desired Access: Query Value 98 12:38:33,6188698 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{1f486a52-3cb1-48fd-8f50-b8dc300d9f9d} SUCCESS Query: HandleTags, HandleTags: 0x401 98 12:38:33,6188754 MCLauncher.exe 6080 RegOpenKey HKCR\WOW6432Node\CLSID\{1f486a52-3cb1-48fd-8f50-b8dc300d9f9d}\TreatAs NAME NOT FOUND Desired Access: Query Value 98 12:38:33,6188826 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{1f486a52-3cb1-48fd-8f50-b8dc300d9f9d} SUCCESS Query: Name 98 12:38:33,6188889 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{1f486a52-3cb1-48fd-8f50-b8dc300d9f9d} SUCCESS Query: Name 98 12:38:33,6188945 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{1f486a52-3cb1-48fd-8f50-b8dc300d9f9d} SUCCESS Query: HandleTags, HandleTags: 0x401 98 12:38:33,6189034 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Classes\WOW6432Node\CLSID\{1f486a52-3cb1-48fd-8f50-b8dc300d9f9d} NAME NOT FOUND Desired Access: Maximum Allowed 98 12:38:33,6189106 MCLauncher.exe 6080 RegQueryValue HKCR\WOW6432Node\CLSID\{1f486a52-3cb1-48fd-8f50-b8dc300d9f9d}\(Default) SUCCESS Type: REG_SZ, Length: 48, Data: Memory Mapped Cache Mgr 98 12:38:33,6189169 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{1f486a52-3cb1-48fd-8f50-b8dc300d9f9d} SUCCESS Query: Name 98 12:38:33,6189222 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{1f486a52-3cb1-48fd-8f50-b8dc300d9f9d} SUCCESS Query: HandleTags, HandleTags: 0x401 98 12:38:33,6189305 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Classes\WOW6432Node\CLSID\{1f486a52-3cb1-48fd-8f50-b8dc300d9f9d} NAME NOT FOUND Desired Access: Maximum Allowed 98 12:38:33,6189369 MCLauncher.exe 6080 RegQueryValue HKCR\WOW6432Node\CLSID\{1f486a52-3cb1-48fd-8f50-b8dc300d9f9d}\(Default) SUCCESS Type: REG_SZ, Length: 48, Data: Memory Mapped Cache Mgr 98 12:38:33,6189427 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{1f486a52-3cb1-48fd-8f50-b8dc300d9f9d} SUCCESS Query: Name 98 12:38:33,6189480 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{1f486a52-3cb1-48fd-8f50-b8dc300d9f9d} SUCCESS Query: HandleTags, HandleTags: 0x401 98 12:38:33,6189566 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Classes\WOW6432Node\CLSID\{1f486a52-3cb1-48fd-8f50-b8dc300d9f9d}\InprocServer32 NAME NOT FOUND Desired Access: Read 98 12:38:33,6189646 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{1f486a52-3cb1-48fd-8f50-b8dc300d9f9d} SUCCESS Query: HandleTags, HandleTags: 0x401 98 12:38:33,6189699 MCLauncher.exe 6080 RegOpenKey HKCR\WOW6432Node\CLSID\{1f486a52-3cb1-48fd-8f50-b8dc300d9f9d}\InprocServer32 SUCCESS Desired Access: Read 98 12:38:33,6189773 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{1f486a52-3cb1-48fd-8f50-b8dc300d9f9d}\InProcServer32 SUCCESS Query: Name 98 12:38:33,6189829 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{1f486a52-3cb1-48fd-8f50-b8dc300d9f9d}\InProcServer32 SUCCESS Query: HandleTags, HandleTags: 0x401 98 12:38:33,6189912 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Classes\WOW6432Node\CLSID\{1f486a52-3cb1-48fd-8f50-b8dc300d9f9d}\InProcServer32 NAME NOT FOUND Desired Access: Maximum Allowed 98 12:38:33,6189978 MCLauncher.exe 6080 RegQueryValue HKCR\WOW6432Node\CLSID\{1f486a52-3cb1-48fd-8f50-b8dc300d9f9d}\InProcServer32\InprocServer32 NAME NOT FOUND Length: 144 98 12:38:33,6190106 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{1f486a52-3cb1-48fd-8f50-b8dc300d9f9d}\InProcServer32 SUCCESS Query: Name 98 12:38:33,6190175 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{1f486a52-3cb1-48fd-8f50-b8dc300d9f9d}\InProcServer32 SUCCESS Query: HandleTags, HandleTags: 0x401 98 12:38:33,6190278 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Classes\WOW6432Node\CLSID\{1f486a52-3cb1-48fd-8f50-b8dc300d9f9d}\InProcServer32 NAME NOT FOUND Desired Access: Maximum Allowed 98 12:38:33,6190355 MCLauncher.exe 6080 RegQueryValue HKCR\WOW6432Node\CLSID\{1f486a52-3cb1-48fd-8f50-b8dc300d9f9d}\InProcServer32\(Default) SUCCESS Type: REG_EXPAND_SZ, Length: 68, Data: %SystemRoot%\system32\propsys.dll 98 12:38:33,6190413 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{1f486a52-3cb1-48fd-8f50-b8dc300d9f9d}\InProcServer32 SUCCESS Query: Name 98 12:38:33,6190469 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{1f486a52-3cb1-48fd-8f50-b8dc300d9f9d}\InProcServer32 SUCCESS Query: HandleTags, HandleTags: 0x401 98 12:38:33,6190552 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Classes\WOW6432Node\CLSID\{1f486a52-3cb1-48fd-8f50-b8dc300d9f9d}\InProcServer32 NAME NOT FOUND Desired Access: Maximum Allowed 98 12:38:33,6190613 MCLauncher.exe 6080 RegQueryValue HKCR\WOW6432Node\CLSID\{1f486a52-3cb1-48fd-8f50-b8dc300d9f9d}\InProcServer32\(Default) SUCCESS Type: REG_EXPAND_SZ, Length: 68, Data: %SystemRoot%\system32\propsys.dll 98 12:38:33,6190682 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{1f486a52-3cb1-48fd-8f50-b8dc300d9f9d}\InProcServer32 SUCCESS Query: Name 98 12:38:33,6190735 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{1f486a52-3cb1-48fd-8f50-b8dc300d9f9d}\InProcServer32 SUCCESS Query: HandleTags, HandleTags: 0x401 98 12:38:33,6190818 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Classes\WOW6432Node\CLSID\{1f486a52-3cb1-48fd-8f50-b8dc300d9f9d}\InProcServer32 NAME NOT FOUND Desired Access: Maximum Allowed 98 12:38:33,6190879 MCLauncher.exe 6080 RegQueryValue HKCR\WOW6432Node\CLSID\{1f486a52-3cb1-48fd-8f50-b8dc300d9f9d}\InProcServer32\(Default) SUCCESS Type: REG_EXPAND_SZ, Length: 68, Data: %SystemRoot%\system32\propsys.dll 98 12:38:33,6190940 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{1f486a52-3cb1-48fd-8f50-b8dc300d9f9d}\InProcServer32 SUCCESS Query: Name 98 12:38:33,6190995 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{1f486a52-3cb1-48fd-8f50-b8dc300d9f9d}\InProcServer32 SUCCESS Query: HandleTags, HandleTags: 0x401 98 12:38:33,6191075 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Classes\WOW6432Node\CLSID\{1f486a52-3cb1-48fd-8f50-b8dc300d9f9d}\InProcServer32 NAME NOT FOUND Desired Access: Maximum Allowed 98 12:38:33,6191139 MCLauncher.exe 6080 RegQueryValue HKCR\WOW6432Node\CLSID\{1f486a52-3cb1-48fd-8f50-b8dc300d9f9d}\InProcServer32\ThreadingModel SUCCESS Type: REG_SZ, Length: 10, Data: Both 98 12:38:33,6191294 MCLauncher.exe 6080 RegCloseKey HKCR\WOW6432Node\CLSID\{1f486a52-3cb1-48fd-8f50-b8dc300d9f9d}\InProcServer32 SUCCESS 98 12:38:33,6191344 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{1f486a52-3cb1-48fd-8f50-b8dc300d9f9d} SUCCESS Query: Name 98 12:38:33,6191411 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{1f486a52-3cb1-48fd-8f50-b8dc300d9f9d} SUCCESS Query: HandleTags, HandleTags: 0x401 98 12:38:33,6191513 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Classes\WOW6432Node\CLSID\{1f486a52-3cb1-48fd-8f50-b8dc300d9f9d}\InprocHandler32 NAME NOT FOUND Desired Access: Query Value 98 12:38:33,6191610 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{1f486a52-3cb1-48fd-8f50-b8dc300d9f9d} SUCCESS Query: HandleTags, HandleTags: 0x401 98 12:38:33,6191666 MCLauncher.exe 6080 RegOpenKey HKCR\WOW6432Node\CLSID\{1f486a52-3cb1-48fd-8f50-b8dc300d9f9d}\InprocHandler32 NAME NOT FOUND Desired Access: Query Value 98 12:38:33,6191732 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{1f486a52-3cb1-48fd-8f50-b8dc300d9f9d} SUCCESS Query: Name 98 12:38:33,6191788 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{1f486a52-3cb1-48fd-8f50-b8dc300d9f9d} SUCCESS Query: HandleTags, HandleTags: 0x401 98 12:38:33,6191868 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Classes\WOW6432Node\CLSID\{1f486a52-3cb1-48fd-8f50-b8dc300d9f9d}\InprocHandler NAME NOT FOUND Desired Access: Query Value 98 12:38:33,6191948 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{1f486a52-3cb1-48fd-8f50-b8dc300d9f9d} SUCCESS Query: HandleTags, HandleTags: 0x401 98 12:38:33,6191998 MCLauncher.exe 6080 RegOpenKey HKCR\WOW6432Node\CLSID\{1f486a52-3cb1-48fd-8f50-b8dc300d9f9d}\InprocHandler NAME NOT FOUND Desired Access: Query Value 98 12:38:33,6192070 MCLauncher.exe 6080 RegCloseKey HKCR\WOW6432Node\CLSID\{1f486a52-3cb1-48fd-8f50-b8dc300d9f9d} SUCCESS 98 12:38:33,6192195 MCLauncher.exe 6080 RegQueryKey HKCU\Software\Classes SUCCESS Query: Name 98 12:38:33,6192256 MCLauncher.exe 6080 RegQueryKey HKCU\Software\Classes SUCCESS Query: HandleTags, HandleTags: 0x1 98 12:38:33,6192322 MCLauncher.exe 6080 RegQueryKey HKCU\Software\Classes SUCCESS Query: HandleTags, HandleTags: 0x1 98 12:38:33,6192369 MCLauncher.exe 6080 RegQueryKey HKCU\Software\Classes SUCCESS Query: Name 98 12:38:33,6192452 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Classes\WOW6432Node\CLSID\{1F486A52-3CB1-48FD-8F50-B8DC300D9F9D} NAME NOT FOUND Desired Access: Read 98 12:38:33,6192547 MCLauncher.exe 6080 RegOpenKey HKCR\WOW6432Node\CLSID\{1F486A52-3CB1-48FD-8F50-B8DC300D9F9D} SUCCESS Desired Access: Read 98 12:38:33,6192627 MCLauncher.exe 6080 RegSetInfoKey HKCR\WOW6432Node\CLSID\{1f486a52-3cb1-48fd-8f50-b8dc300d9f9d} SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 98 12:38:33,6192669 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{1f486a52-3cb1-48fd-8f50-b8dc300d9f9d} SUCCESS Query: Name 98 12:38:33,6192727 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{1f486a52-3cb1-48fd-8f50-b8dc300d9f9d} SUCCESS Query: HandleTags, HandleTags: 0x401 98 12:38:33,6192813 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Classes\WOW6432Node\CLSID\{1f486a52-3cb1-48fd-8f50-b8dc300d9f9d}\TreatAs NAME NOT FOUND Desired Access: Read 98 12:38:33,6192896 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{1f486a52-3cb1-48fd-8f50-b8dc300d9f9d} SUCCESS Query: HandleTags, HandleTags: 0x401 98 12:38:33,6192948 MCLauncher.exe 6080 RegOpenKey HKCR\WOW6432Node\CLSID\{1f486a52-3cb1-48fd-8f50-b8dc300d9f9d}\TreatAs NAME NOT FOUND Desired Access: Read 98 12:38:33,6193015 MCLauncher.exe 6080 RegCloseKey HKCR\WOW6432Node\CLSID\{1f486a52-3cb1-48fd-8f50-b8dc300d9f9d} SUCCESS 98 12:38:33,6197495 MCLauncher.exe 6080 CreateFile C:\Windows\SysWOW64\propsys.dll SUCCESS Desired Access: Read Attributes, Disposition: Open, Options: Open Reparse Point, Attributes: n/a, ShareMode: Read, Write, Delete, AllocationSize: n/a, OpenResult: Opened 98 12:38:33,6197753 MCLauncher.exe 6080 QueryBasicInformationFile C:\Windows\SysWOW64\propsys.dll SUCCESS CreationTime: 20.07.2018 1:34:17, LastAccessTime: 20.07.2018 1:34:17, LastWriteTime: 06.03.2018 9:03:35, ChangeTime: 20.07.2018 19:24:46, FileAttributes: A 98 12:38:33,6197844 MCLauncher.exe 6080 CloseFile C:\Windows\SysWOW64\propsys.dll SUCCESS 98 12:38:33,6200202 MCLauncher.exe 6080 CreateFile C:\Windows\SysWOW64\propsys.dll SUCCESS Desired Access: Read Attributes, Disposition: Open, Options: Open Reparse Point, Attributes: n/a, ShareMode: Read, Write, Delete, AllocationSize: n/a, OpenResult: Opened 98 12:38:33,6200440 MCLauncher.exe 6080 QueryNetworkOpenInformationFile C:\Windows\SysWOW64\propsys.dll SUCCESS CreationTime: 20.07.2018 1:34:17, LastAccessTime: 20.07.2018 1:34:17, LastWriteTime: 06.03.2018 9:03:35, ChangeTime: 20.07.2018 19:24:46, AllocationSize: 01.01.1601 3:00:00, EndOfFile: 01.01.1601 3:00:00, FileAttributes: A 98 12:38:33,6200526 MCLauncher.exe 6080 CloseFile C:\Windows\SysWOW64\propsys.dll SUCCESS 98 12:38:33,6203130 MCLauncher.exe 6080 CreateFile C:\Windows\System32\propsys.dll SUCCESS Desired Access: Read Attributes, Disposition: Open, Options: Open Reparse Point, Attributes: n/a, ShareMode: Read, Write, Delete, AllocationSize: n/a, OpenResult: Opened 98 12:38:33,6203388 MCLauncher.exe 6080 QueryNetworkOpenInformationFile C:\Windows\System32\propsys.dll SUCCESS CreationTime: 20.07.2018 1:24:02, LastAccessTime: 20.07.2018 1:24:02, LastWriteTime: 06.03.2018 9:08:30, ChangeTime: 20.07.2018 19:29:33, AllocationSize: 01.01.1601 3:00:00, EndOfFile: 01.01.1601 3:00:00, FileAttributes: A 98 12:38:33,6203465 MCLauncher.exe 6080 CloseFile C:\Windows\System32\propsys.dll SUCCESS 98 12:38:33,6207178 MCLauncher.exe 6080 CreateFile C:\Windows\SysWOW64\propsys.dll SUCCESS Desired Access: Read Attributes, Disposition: Open, Options: Open Reparse Point, Attributes: n/a, ShareMode: Read, Write, Delete, AllocationSize: n/a, OpenResult: Opened 98 12:38:33,6207422 MCLauncher.exe 6080 QueryBasicInformationFile C:\Windows\SysWOW64\propsys.dll SUCCESS CreationTime: 20.07.2018 1:34:17, LastAccessTime: 20.07.2018 1:34:17, LastWriteTime: 06.03.2018 9:03:35, ChangeTime: 20.07.2018 19:24:46, FileAttributes: A 98 12:38:33,6207505 MCLauncher.exe 6080 CloseFile C:\Windows\SysWOW64\propsys.dll SUCCESS 98 12:38:33,6209799 MCLauncher.exe 6080 CreateFile C:\Windows\SysWOW64\propsys.dll SUCCESS Desired Access: Read Attributes, Disposition: Open, Options: Open Reparse Point, Attributes: n/a, ShareMode: Read, Write, Delete, AllocationSize: n/a, OpenResult: Opened 98 12:38:33,6210029 MCLauncher.exe 6080 QueryNetworkOpenInformationFile C:\Windows\SysWOW64\propsys.dll SUCCESS CreationTime: 20.07.2018 1:34:17, LastAccessTime: 20.07.2018 1:34:17, LastWriteTime: 06.03.2018 9:03:35, ChangeTime: 20.07.2018 19:24:46, AllocationSize: 01.01.1601 3:00:00, EndOfFile: 01.01.1601 3:00:00, FileAttributes: A 98 12:38:33,6210106 MCLauncher.exe 6080 CloseFile C:\Windows\SysWOW64\propsys.dll SUCCESS 98 12:38:33,6212603 MCLauncher.exe 6080 CreateFile C:\Windows\System32\propsys.dll SUCCESS Desired Access: Read Attributes, Disposition: Open, Options: Open Reparse Point, Attributes: n/a, ShareMode: Read, Write, Delete, AllocationSize: n/a, OpenResult: Opened 98 12:38:33,6212841 MCLauncher.exe 6080 QueryNetworkOpenInformationFile C:\Windows\System32\propsys.dll SUCCESS CreationTime: 20.07.2018 1:24:02, LastAccessTime: 20.07.2018 1:24:02, LastWriteTime: 06.03.2018 9:08:30, ChangeTime: 20.07.2018 19:29:33, AllocationSize: 01.01.1601 3:00:00, EndOfFile: 01.01.1601 3:00:00, FileAttributes: A 98 12:38:33,6212919 MCLauncher.exe 6080 CloseFile C:\Windows\System32\propsys.dll SUCCESS 98 12:38:33,6214545 MCLauncher.exe 6080 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 98 12:38:33,6214617 MCLauncher.exe 6080 RegQueryKey HKLM SUCCESS Query: Name 98 12:38:33,6214733 MCLauncher.exe 6080 RegOpenKey HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Policies\Explorer REPARSE Desired Access: Query Value 98 12:38:33,6214841 MCLauncher.exe 6080 RegOpenKey HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer SUCCESS Desired Access: Query Value 98 12:38:33,6214919 MCLauncher.exe 6080 RegSetInfoKey HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 98 12:38:33,6214977 MCLauncher.exe 6080 RegQueryValue HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer\AllowFileCLSIDJunctions NAME NOT FOUND Length: 144 98 12:38:33,6215315 MCLauncher.exe 6080 RegCloseKey HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer SUCCESS 98 12:38:33,6215431 MCLauncher.exe 6080 RegQueryKey HKCU SUCCESS Query: HandleTags, HandleTags: 0x0 98 12:38:33,6215515 MCLauncher.exe 6080 RegQueryKey HKCU SUCCESS Query: Name 98 12:38:33,6215642 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer SUCCESS Desired Access: Query Value 98 12:38:33,6215783 MCLauncher.exe 6080 RegSetInfoKey HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 98 12:38:33,6215850 MCLauncher.exe 6080 RegQueryValue HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer\AllowFileCLSIDJunctions NAME NOT FOUND Length: 144 98 12:38:33,6215997 MCLauncher.exe 6080 RegCloseKey HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer SUCCESS 98 12:38:33,6216096 MCLauncher.exe 6080 RegQueryKey HKCU\Software\Classes SUCCESS Query: Name 98 12:38:33,6216168 MCLauncher.exe 6080 RegQueryKey HKCU\Software\Classes SUCCESS Query: HandleTags, HandleTags: 0x1 98 12:38:33,6216243 MCLauncher.exe 6080 RegQueryKey HKCU\Software\Classes SUCCESS Query: HandleTags, HandleTags: 0x1 98 12:38:33,6216293 MCLauncher.exe 6080 RegQueryKey HKCU\Software\Classes SUCCESS Query: Name 98 12:38:33,6216376 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Classes\.exe NAME NOT FOUND Desired Access: Read 98 12:38:33,6216484 MCLauncher.exe 6080 RegOpenKey HKCR\.exe SUCCESS Desired Access: Read 98 12:38:33,6216565 MCLauncher.exe 6080 RegSetInfoKey HKCR\.exe SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 98 12:38:33,6216623 MCLauncher.exe 6080 RegQueryKey HKCR\.exe SUCCESS Query: Name 98 12:38:33,6216684 MCLauncher.exe 6080 RegQueryKey HKCR\.exe SUCCESS Query: HandleTags, HandleTags: 0x401 98 12:38:33,6216786 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Classes\.exe NAME NOT FOUND Desired Access: Maximum Allowed 98 12:38:33,6216853 MCLauncher.exe 6080 RegQueryValue HKCR\.exe\(Default) SUCCESS Type: REG_SZ, Length: 16, Data: exefile 98 12:38:33,6216961 MCLauncher.exe 6080 RegQueryKey HKCU\Software\Classes SUCCESS Query: Name 98 12:38:33,6217016 MCLauncher.exe 6080 RegQueryKey HKCU\Software\Classes SUCCESS Query: HandleTags, HandleTags: 0x1 98 12:38:33,6217083 MCLauncher.exe 6080 RegQueryKey HKCU\Software\Classes SUCCESS Query: HandleTags, HandleTags: 0x1 98 12:38:33,6217130 MCLauncher.exe 6080 RegQueryKey HKCU\Software\Classes SUCCESS Query: Name 98 12:38:33,6217196 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Classes\exefile NAME NOT FOUND Desired Access: Read 98 12:38:33,6217277 MCLauncher.exe 6080 RegOpenKey HKCR\exefile SUCCESS Desired Access: Read 98 12:38:33,6217346 MCLauncher.exe 6080 RegSetInfoKey HKCR\exefile SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 98 12:38:33,6217387 MCLauncher.exe 6080 RegQueryKey HKCR\exefile SUCCESS Query: Name 98 12:38:33,6217446 MCLauncher.exe 6080 RegQueryKey HKCR\exefile SUCCESS Query: HandleTags, HandleTags: 0x401 98 12:38:33,6217529 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Classes\exefile\CurVer NAME NOT FOUND Desired Access: Query Value 98 12:38:33,6217606 MCLauncher.exe 6080 RegQueryKey HKCR\exefile SUCCESS Query: HandleTags, HandleTags: 0x401 98 12:38:33,6217659 MCLauncher.exe 6080 RegOpenKey HKCR\exefile\CurVer NAME NOT FOUND Desired Access: Query Value 98 12:38:33,6217731 MCLauncher.exe 6080 RegQueryKey HKCR\exefile SUCCESS Query: Name 98 12:38:33,6217786 MCLauncher.exe 6080 RegQueryKey HKCR\exefile SUCCESS Query: HandleTags, HandleTags: 0x401 98 12:38:33,6217861 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Classes\exefile NAME NOT FOUND Desired Access: Read 98 12:38:33,6217933 MCLauncher.exe 6080 RegQueryKey HKCR\exefile SUCCESS Query: HandleTags, HandleTags: 0x401 98 12:38:33,6217986 MCLauncher.exe 6080 RegOpenKey HKCR\exefile SUCCESS Desired Access: Read 98 12:38:33,6218066 MCLauncher.exe 6080 RegCloseKey HKCR\exefile SUCCESS 98 12:38:33,6218127 MCLauncher.exe 6080 RegQueryKey HKCR\exefile SUCCESS Query: Name 98 12:38:33,6218183 MCLauncher.exe 6080 RegQueryKey HKCR\exefile SUCCESS Query: HandleTags, HandleTags: 0x401 98 12:38:33,6218266 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Classes\exefile\ShellEx\IconHandler NAME NOT FOUND Desired Access: Query Value 98 12:38:33,6218341 MCLauncher.exe 6080 RegQueryKey HKCR\exefile SUCCESS Query: HandleTags, HandleTags: 0x401 98 12:38:33,6218390 MCLauncher.exe 6080 RegOpenKey HKCR\exefile\ShellEx\IconHandler NAME NOT FOUND Desired Access: Query Value 98 12:38:33,6218529 MCLauncher.exe 6080 RegQueryKey HKCU\Software\Classes SUCCESS Query: Name 98 12:38:33,6218587 MCLauncher.exe 6080 RegQueryKey HKCU\Software\Classes SUCCESS Query: HandleTags, HandleTags: 0x1 98 12:38:33,6218651 MCLauncher.exe 6080 RegQueryKey HKCU\Software\Classes SUCCESS Query: HandleTags, HandleTags: 0x1 98 12:38:33,6218695 MCLauncher.exe 6080 RegQueryKey HKCU\Software\Classes SUCCESS Query: Name 98 12:38:33,6218764 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Classes\SystemFileAssociations\.exe NAME NOT FOUND Desired Access: Read 98 12:38:33,6218842 MCLauncher.exe 6080 RegOpenKey HKCR\SystemFileAssociations\.exe SUCCESS Desired Access: Read 98 12:38:33,6218920 MCLauncher.exe 6080 RegSetInfoKey HKCR\SystemFileAssociations\.exe SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 98 12:38:33,6218972 MCLauncher.exe 6080 RegQueryKey HKCR\SystemFileAssociations\.exe SUCCESS Query: Name 98 12:38:33,6219039 MCLauncher.exe 6080 RegQueryKey HKCR\SystemFileAssociations\.exe SUCCESS Query: HandleTags, HandleTags: 0x401 98 12:38:33,6219119 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Classes\SystemFileAssociations\.exe\ShellEx\IconHandler NAME NOT FOUND Desired Access: Query Value 98 12:38:33,6219197 MCLauncher.exe 6080 RegQueryKey HKCR\SystemFileAssociations\.exe SUCCESS Query: HandleTags, HandleTags: 0x401 98 12:38:33,6219247 MCLauncher.exe 6080 RegOpenKey HKCR\SystemFileAssociations\.exe\ShellEx\IconHandler NAME NOT FOUND Desired Access: Query Value 98 12:38:33,6219380 MCLauncher.exe 6080 RegQueryKey HKCR\exefile SUCCESS Query: Name 98 12:38:33,6219432 MCLauncher.exe 6080 RegQueryKey HKCR\exefile SUCCESS Query: HandleTags, HandleTags: 0x401 98 12:38:33,6219515 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Classes\exefile NAME NOT FOUND Desired Access: Maximum Allowed 98 12:38:33,6219573 MCLauncher.exe 6080 RegQueryValue HKCR\exefile\DocObject NAME NOT FOUND Length: 144 98 12:38:33,6219709 MCLauncher.exe 6080 RegQueryKey HKCR\exefile SUCCESS Query: Name 98 12:38:33,6219773 MCLauncher.exe 6080 RegQueryKey HKCR\exefile SUCCESS Query: HandleTags, HandleTags: 0x401 98 12:38:33,6219873 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Classes\exefile\DocObject NAME NOT FOUND Desired Access: Query Value 98 12:38:33,6219953 MCLauncher.exe 6080 RegQueryKey HKCR\exefile SUCCESS Query: HandleTags, HandleTags: 0x401 98 12:38:33,6220006 MCLauncher.exe 6080 RegOpenKey HKCR\exefile\DocObject NAME NOT FOUND Desired Access: Query Value 98 12:38:33,6220080 MCLauncher.exe 6080 RegQueryKey HKCR\SystemFileAssociations\.exe SUCCESS Query: Name 98 12:38:33,6220136 MCLauncher.exe 6080 RegQueryKey HKCR\SystemFileAssociations\.exe SUCCESS Query: HandleTags, HandleTags: 0x401 98 12:38:33,6220213 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Classes\SystemFileAssociations\.exe NAME NOT FOUND Desired Access: Maximum Allowed 98 12:38:33,6220274 MCLauncher.exe 6080 RegQueryValue HKCR\SystemFileAssociations\.exe\DocObject NAME NOT FOUND Length: 144 98 12:38:33,6220399 MCLauncher.exe 6080 RegQueryKey HKCR\SystemFileAssociations\.exe SUCCESS Query: Name 98 12:38:33,6220463 MCLauncher.exe 6080 RegQueryKey HKCR\SystemFileAssociations\.exe SUCCESS Query: HandleTags, HandleTags: 0x401 98 12:38:33,6220557 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Classes\SystemFileAssociations\.exe\DocObject NAME NOT FOUND Desired Access: Query Value 98 12:38:33,6220640 MCLauncher.exe 6080 RegQueryKey HKCR\SystemFileAssociations\.exe SUCCESS Query: HandleTags, HandleTags: 0x401 98 12:38:33,6220690 MCLauncher.exe 6080 RegOpenKey HKCR\SystemFileAssociations\.exe\DocObject NAME NOT FOUND Desired Access: Query Value 98 12:38:33,6220765 MCLauncher.exe 6080 RegQueryKey HKCR\exefile SUCCESS Query: Name 98 12:38:33,6220817 MCLauncher.exe 6080 RegQueryKey HKCR\exefile SUCCESS Query: HandleTags, HandleTags: 0x401 98 12:38:33,6220895 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Classes\exefile NAME NOT FOUND Desired Access: Maximum Allowed 98 12:38:33,6220950 MCLauncher.exe 6080 RegQueryValue HKCR\exefile\BrowseInPlace NAME NOT FOUND Length: 144 98 12:38:33,6221064 MCLauncher.exe 6080 RegQueryKey HKCR\exefile SUCCESS Query: Name 98 12:38:33,6221125 MCLauncher.exe 6080 RegQueryKey HKCR\exefile SUCCESS Query: HandleTags, HandleTags: 0x401 98 12:38:33,6221219 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Classes\exefile\BrowseInPlace NAME NOT FOUND Desired Access: Query Value 98 12:38:33,6221300 MCLauncher.exe 6080 RegQueryKey HKCR\exefile SUCCESS Query: HandleTags, HandleTags: 0x401 98 12:38:33,6221352 MCLauncher.exe 6080 RegOpenKey HKCR\exefile\BrowseInPlace NAME NOT FOUND Desired Access: Query Value 98 12:38:33,6221413 MCLauncher.exe 6080 RegQueryKey HKCR\SystemFileAssociations\.exe SUCCESS Query: Name 98 12:38:33,6221469 MCLauncher.exe 6080 RegQueryKey HKCR\SystemFileAssociations\.exe SUCCESS Query: HandleTags, HandleTags: 0x401 98 12:38:33,6221546 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Classes\SystemFileAssociations\.exe NAME NOT FOUND Desired Access: Maximum Allowed 98 12:38:33,6221604 MCLauncher.exe 6080 RegQueryValue HKCR\SystemFileAssociations\.exe\BrowseInPlace NAME NOT FOUND Length: 144 98 12:38:33,6221721 MCLauncher.exe 6080 RegQueryKey HKCR\SystemFileAssociations\.exe SUCCESS Query: Name 98 12:38:33,6221784 MCLauncher.exe 6080 RegQueryKey HKCR\SystemFileAssociations\.exe SUCCESS Query: HandleTags, HandleTags: 0x401 98 12:38:33,6221879 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Classes\SystemFileAssociations\.exe\BrowseInPlace NAME NOT FOUND Desired Access: Query Value 98 12:38:33,6221956 MCLauncher.exe 6080 RegQueryKey HKCR\SystemFileAssociations\.exe SUCCESS Query: HandleTags, HandleTags: 0x401 98 12:38:33,6222009 MCLauncher.exe 6080 RegOpenKey HKCR\SystemFileAssociations\.exe\BrowseInPlace NAME NOT FOUND Desired Access: Query Value 98 12:38:33,6222150 MCLauncher.exe 6080 RegQueryKey HKCR\.exe SUCCESS Query: Name 98 12:38:33,6222205 MCLauncher.exe 6080 RegQueryKey HKCR\.exe SUCCESS Query: HandleTags, HandleTags: 0x401 98 12:38:33,6222283 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Classes\.exe NAME NOT FOUND Desired Access: Maximum Allowed 98 12:38:33,6222341 MCLauncher.exe 6080 RegQueryValue HKCR\.exe\Content Type SUCCESS Type: REG_SZ, Length: 50, Data: application/x-msdownload 98 12:38:33,6222494 MCLauncher.exe 6080 RegQueryKey HKCR\exefile SUCCESS Query: Name 98 12:38:33,6222555 MCLauncher.exe 6080 RegQueryKey HKCR\exefile SUCCESS Query: HandleTags, HandleTags: 0x401 98 12:38:33,6222652 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Classes\exefile\Clsid NAME NOT FOUND Desired Access: Query Value 98 12:38:33,6222732 MCLauncher.exe 6080 RegQueryKey HKCR\exefile SUCCESS Query: HandleTags, HandleTags: 0x401 98 12:38:33,6222785 MCLauncher.exe 6080 RegOpenKey HKCR\exefile\Clsid NAME NOT FOUND Desired Access: Query Value 98 12:38:33,6222851 MCLauncher.exe 6080 RegQueryKey HKCR\SystemFileAssociations\.exe SUCCESS Query: Name 98 12:38:33,6222906 MCLauncher.exe 6080 RegQueryKey HKCR\SystemFileAssociations\.exe SUCCESS Query: HandleTags, HandleTags: 0x401 98 12:38:33,6222984 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Classes\SystemFileAssociations\.exe\Clsid NAME NOT FOUND Desired Access: Query Value 98 12:38:33,6223056 MCLauncher.exe 6080 RegQueryKey HKCR\SystemFileAssociations\.exe SUCCESS Query: HandleTags, HandleTags: 0x401 98 12:38:33,6223109 MCLauncher.exe 6080 RegOpenKey HKCR\SystemFileAssociations\.exe\Clsid NAME NOT FOUND Desired Access: Query Value 98 12:38:33,6223214 MCLauncher.exe 6080 RegQueryKey HKCR\exefile SUCCESS Query: Name 98 12:38:33,6223267 MCLauncher.exe 6080 RegQueryKey HKCR\exefile SUCCESS Query: HandleTags, HandleTags: 0x401 98 12:38:33,6223341 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Classes\exefile NAME NOT FOUND Desired Access: Maximum Allowed 98 12:38:33,6223397 MCLauncher.exe 6080 RegQueryValue HKCR\exefile\IsShortcut NAME NOT FOUND Length: 144 98 12:38:33,6223519 MCLauncher.exe 6080 RegQueryKey HKCR\SystemFileAssociations\.exe SUCCESS Query: Name 98 12:38:33,6223582 MCLauncher.exe 6080 RegQueryKey HKCR\SystemFileAssociations\.exe SUCCESS Query: HandleTags, HandleTags: 0x401 98 12:38:33,6223674 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Classes\SystemFileAssociations\.exe NAME NOT FOUND Desired Access: Maximum Allowed 98 12:38:33,6223740 MCLauncher.exe 6080 RegQueryValue HKCR\SystemFileAssociations\.exe\IsShortcut NAME NOT FOUND Length: 144 98 12:38:33,6223862 MCLauncher.exe 6080 RegQueryKey HKCR\exefile SUCCESS Query: Name 98 12:38:33,6223926 MCLauncher.exe 6080 RegQueryKey HKCR\exefile SUCCESS Query: HandleTags, HandleTags: 0x401 98 12:38:33,6224017 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Classes\exefile NAME NOT FOUND Desired Access: Maximum Allowed 98 12:38:33,6224078 MCLauncher.exe 6080 RegQueryValue HKCR\exefile\AlwaysShowExt NAME NOT FOUND Length: 144 98 12:38:33,6224195 MCLauncher.exe 6080 RegQueryKey HKCR\SystemFileAssociations\.exe SUCCESS Query: Name 98 12:38:33,6224256 MCLauncher.exe 6080 RegQueryKey HKCR\SystemFileAssociations\.exe SUCCESS Query: HandleTags, HandleTags: 0x401 98 12:38:33,6224353 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Classes\SystemFileAssociations\.exe NAME NOT FOUND Desired Access: Maximum Allowed 98 12:38:33,6224416 MCLauncher.exe 6080 RegQueryValue HKCR\SystemFileAssociations\.exe\AlwaysShowExt NAME NOT FOUND Length: 144 98 12:38:33,6224541 MCLauncher.exe 6080 RegQueryKey HKCR\exefile SUCCESS Query: Name 98 12:38:33,6224602 MCLauncher.exe 6080 RegQueryKey HKCR\exefile SUCCESS Query: HandleTags, HandleTags: 0x401 98 12:38:33,6224693 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Classes\exefile NAME NOT FOUND Desired Access: Maximum Allowed 98 12:38:33,6224874 MCLauncher.exe 6080 RegQueryValue HKCR\exefile\NeverShowExt NAME NOT FOUND Length: 144 98 12:38:33,6225070 MCLauncher.exe 6080 RegQueryKey HKCR\SystemFileAssociations\.exe SUCCESS Query: Name 98 12:38:33,6225170 MCLauncher.exe 6080 RegQueryKey HKCR\SystemFileAssociations\.exe SUCCESS Query: HandleTags, HandleTags: 0x401 98 12:38:33,6225292 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Classes\SystemFileAssociations\.exe NAME NOT FOUND Desired Access: Maximum Allowed 98 12:38:33,6225364 MCLauncher.exe 6080 RegQueryValue HKCR\SystemFileAssociations\.exe\NeverShowExt NAME NOT FOUND Length: 144 98 12:38:33,6225519 MCLauncher.exe 6080 RegCloseKey HKCR\.exe SUCCESS 98 12:38:33,6225574 MCLauncher.exe 6080 RegCloseKey HKCR\exefile SUCCESS 98 12:38:33,6225622 MCLauncher.exe 6080 RegCloseKey HKCR\SystemFileAssociations\.exe SUCCESS 98 12:38:33,6225832 MCLauncher.exe 6080 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 98 12:38:33,6225885 MCLauncher.exe 6080 RegQueryKey HKLM SUCCESS Query: Name 98 12:38:33,6225985 MCLauncher.exe 6080 RegOpenKey HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Policies\Explorer REPARSE Desired Access: Query Value 98 12:38:33,6226070 MCLauncher.exe 6080 RegOpenKey HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer SUCCESS Desired Access: Query Value 98 12:38:33,6226137 MCLauncher.exe 6080 RegSetInfoKey HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 98 12:38:33,6226181 MCLauncher.exe 6080 RegQueryValue HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer\NormalizeLinkNetPidls NAME NOT FOUND Length: 144 98 12:38:33,6226309 MCLauncher.exe 6080 RegCloseKey HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer SUCCESS 98 12:38:33,6226381 MCLauncher.exe 6080 RegQueryKey HKCU SUCCESS Query: HandleTags, HandleTags: 0x0 98 12:38:33,6226433 MCLauncher.exe 6080 RegQueryKey HKCU SUCCESS Query: Name 98 12:38:33,6226516 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer SUCCESS Desired Access: Query Value 98 12:38:33,6226602 MCLauncher.exe 6080 RegSetInfoKey HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 98 12:38:33,6226647 MCLauncher.exe 6080 RegQueryValue HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer\NormalizeLinkNetPidls NAME NOT FOUND Length: 144 98 12:38:33,6226763 MCLauncher.exe 6080 RegCloseKey HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer SUCCESS 98 12:38:33,6227356 MCLauncher.exe 6080 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 98 12:38:33,6227414 MCLauncher.exe 6080 RegQueryKey HKLM SUCCESS Query: Name 98 12:38:33,6227508 MCLauncher.exe 6080 RegOpenKey HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS Desired Access: Read 98 12:38:33,6227605 MCLauncher.exe 6080 RegSetInfoKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 98 12:38:33,6227677 MCLauncher.exe 6080 RegQueryKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS Query: HandleTags, HandleTags: 0x400 98 12:38:33,6227730 MCLauncher.exe 6080 RegOpenKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{3EB685DB-65F9-4CF6-A03A-E3EF65729F3D} SUCCESS Desired Access: Read 98 12:38:33,6227816 MCLauncher.exe 6080 RegCloseKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS 98 12:38:33,6227863 MCLauncher.exe 6080 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{3EB685DB-65F9-4CF6-A03A-E3EF65729F3D}\Category SUCCESS Type: REG_DWORD, Length: 4, Data: 4 98 12:38:33,6228007 MCLauncher.exe 6080 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{3EB685DB-65F9-4CF6-A03A-E3EF65729F3D}\Name SUCCESS Type: REG_SZ, Length: 16, Data: AppData 98 12:38:33,6228146 MCLauncher.exe 6080 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{3EB685DB-65F9-4CF6-A03A-E3EF65729F3D}\ParentFolder NAME NOT FOUND Length: 144 98 12:38:33,6228259 MCLauncher.exe 6080 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{3EB685DB-65F9-4CF6-A03A-E3EF65729F3D}\Description NAME NOT FOUND Length: 144 98 12:38:33,6228431 MCLauncher.exe 6080 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{3EB685DB-65F9-4CF6-A03A-E3EF65729F3D}\RelativePath SUCCESS Type: REG_SZ, Length: 32, Data: AppData\Roaming 98 12:38:33,6228561 MCLauncher.exe 6080 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{3EB685DB-65F9-4CF6-A03A-E3EF65729F3D}\ParsingName NAME NOT FOUND Length: 144 98 12:38:33,6228669 MCLauncher.exe 6080 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{3EB685DB-65F9-4CF6-A03A-E3EF65729F3D}\InfoTip NAME NOT FOUND Length: 144 98 12:38:33,6228774 MCLauncher.exe 6080 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{3EB685DB-65F9-4CF6-A03A-E3EF65729F3D}\LocalizedName NAME NOT FOUND Length: 144 98 12:38:33,6228877 MCLauncher.exe 6080 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{3EB685DB-65F9-4CF6-A03A-E3EF65729F3D}\Icon NAME NOT FOUND Length: 144 98 12:38:33,6228980 MCLauncher.exe 6080 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{3EB685DB-65F9-4CF6-A03A-E3EF65729F3D}\Security NAME NOT FOUND Length: 144 98 12:38:33,6229085 MCLauncher.exe 6080 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{3EB685DB-65F9-4CF6-A03A-E3EF65729F3D}\StreamResource NAME NOT FOUND Length: 144 98 12:38:33,6229187 MCLauncher.exe 6080 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{3EB685DB-65F9-4CF6-A03A-E3EF65729F3D}\StreamResourceType NAME NOT FOUND Length: 144 98 12:38:33,6229293 MCLauncher.exe 6080 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{3EB685DB-65F9-4CF6-A03A-E3EF65729F3D}\LocalRedirectOnly NAME NOT FOUND Length: 144 98 12:38:33,6229395 MCLauncher.exe 6080 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{3EB685DB-65F9-4CF6-A03A-E3EF65729F3D}\Roamable NAME NOT FOUND Length: 144 98 12:38:33,6229500 MCLauncher.exe 6080 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{3EB685DB-65F9-4CF6-A03A-E3EF65729F3D}\PreCreate NAME NOT FOUND Length: 144 98 12:38:33,6229603 MCLauncher.exe 6080 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{3EB685DB-65F9-4CF6-A03A-E3EF65729F3D}\Stream NAME NOT FOUND Length: 144 98 12:38:33,6229705 MCLauncher.exe 6080 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{3EB685DB-65F9-4CF6-A03A-E3EF65729F3D}\PublishExpandedPath NAME NOT FOUND Length: 144 98 12:38:33,6229808 MCLauncher.exe 6080 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{3EB685DB-65F9-4CF6-A03A-E3EF65729F3D}\DefinitionFlags NAME NOT FOUND Length: 144 98 12:38:33,6229910 MCLauncher.exe 6080 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{3EB685DB-65F9-4CF6-A03A-E3EF65729F3D}\Attributes NAME NOT FOUND Length: 144 98 12:38:33,6230013 MCLauncher.exe 6080 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{3EB685DB-65F9-4CF6-A03A-E3EF65729F3D}\FolderTypeID NAME NOT FOUND Length: 144 98 12:38:33,6230118 MCLauncher.exe 6080 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{3EB685DB-65F9-4CF6-A03A-E3EF65729F3D}\InitFolderHandler NAME NOT FOUND Length: 144 98 12:38:33,6230257 MCLauncher.exe 6080 RegQueryKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{3EB685DB-65F9-4CF6-A03A-E3EF65729F3D} SUCCESS Query: HandleTags, HandleTags: 0x400 98 12:38:33,6230320 MCLauncher.exe 6080 RegOpenKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{3EB685DB-65F9-4CF6-A03A-E3EF65729F3D}\PropertyBag NAME NOT FOUND Desired Access: Read 98 12:38:33,6230409 MCLauncher.exe 6080 RegCloseKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{3EB685DB-65F9-4CF6-A03A-E3EF65729F3D} SUCCESS 98 12:38:33,6231318 MCLauncher.exe 6080 RegQueryKey HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer SUCCESS Query: HandleTags, HandleTags: 0x400 98 12:38:33,6231390 MCLauncher.exe 6080 RegOpenKey HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\SessionInfo\1 SUCCESS Desired Access: Query Value 98 12:38:33,6231515 MCLauncher.exe 6080 RegQueryKey HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\SessionInfo\1 SUCCESS Query: HandleTags, HandleTags: 0x400 98 12:38:33,6231567 MCLauncher.exe 6080 RegOpenKey HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\SessionInfo\1\KnownFolders NAME NOT FOUND Desired Access: Query Value 98 12:38:33,6231645 MCLauncher.exe 6080 RegCloseKey HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\SessionInfo\1 SUCCESS 98 12:38:33,6231739 MCLauncher.exe 6080 RegOpenKey HKCU SUCCESS Desired Access: Read 98 12:38:33,6231828 MCLauncher.exe 6080 RegQueryKey HKCU SUCCESS Query: HandleTags, HandleTags: 0x0 98 12:38:33,6231878 MCLauncher.exe 6080 RegQueryKey HKCU SUCCESS Query: Name 98 12:38:33,6231950 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Microsoft\Windows\CurrentVersion\Explorer\User Shell Folders SUCCESS Desired Access: Read 98 12:38:33,6232041 MCLauncher.exe 6080 RegSetInfoKey HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\User Shell Folders SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 98 12:38:33,6232088 MCLauncher.exe 6080 RegCloseKey HKCU SUCCESS 98 12:38:33,6232132 MCLauncher.exe 6080 RegQueryValue HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\User Shell Folders\AppData SUCCESS Type: REG_EXPAND_SZ, Length: 60, Data: %USERPROFILE%\AppData\Roaming 98 12:38:33,6232454 MCLauncher.exe 6080 RegCloseKey HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\User Shell Folders SUCCESS 98 12:38:33,6233576 MCLauncher.exe 6080 RegQueryKey HKCU SUCCESS Query: HandleTags, HandleTags: 0x0 98 12:38:33,6233637 MCLauncher.exe 6080 RegQueryKey HKCU SUCCESS Query: Name 98 12:38:33,6233725 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\CPC\Volume SUCCESS Desired Access: Read 98 12:38:33,6233842 MCLauncher.exe 6080 RegSetInfoKey HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\CPC\Volume SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 98 12:38:33,6233911 MCLauncher.exe 6080 RegQueryKey HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\CPC\Volume SUCCESS Query: HandleTags, HandleTags: 0x400 98 12:38:33,6233969 MCLauncher.exe 6080 RegOpenKey HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\CPC\Volume\{110924bd-0000-0000-0000-501f00000000}\ SUCCESS Desired Access: Read 98 12:38:33,6234055 MCLauncher.exe 6080 RegCloseKey HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\CPC\Volume SUCCESS 98 12:38:33,6234100 MCLauncher.exe 6080 RegQueryValue HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\CPC\Volume\{110924bd-0000-0000-0000-501f00000000}\Data BUFFER OVERFLOW Length: 144 98 12:38:33,6234266 MCLauncher.exe 6080 RegQueryValue HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\CPC\Volume\{110924bd-0000-0000-0000-501f00000000}\Data SUCCESS Type: REG_BINARY, Length: 1 370, Data: D6 0D 00 00 0D F0 AD BA 41 00 00 00 08 00 00 00 98 12:38:33,6234415 MCLauncher.exe 6080 RegCloseKey HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\CPC\Volume\{110924bd-0000-0000-0000-501f00000000} SUCCESS 98 12:38:33,6234487 MCLauncher.exe 6080 RegQueryKey HKCU SUCCESS Query: HandleTags, HandleTags: 0x0 98 12:38:33,6234698 MCLauncher.exe 6080 RegQueryKey HKCU SUCCESS Query: Name 98 12:38:33,6234831 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\CPC\Volume SUCCESS Desired Access: Read 98 12:38:33,6234933 MCLauncher.exe 6080 RegSetInfoKey HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\CPC\Volume SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 98 12:38:33,6235005 MCLauncher.exe 6080 RegQueryKey HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\CPC\Volume SUCCESS Query: HandleTags, HandleTags: 0x400 98 12:38:33,6235061 MCLauncher.exe 6080 RegOpenKey HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\CPC\Volume\{110924bd-0000-0000-0000-501f00000000}\ SUCCESS Desired Access: Read 98 12:38:33,6235138 MCLauncher.exe 6080 RegCloseKey HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\CPC\Volume SUCCESS 98 12:38:33,6235183 MCLauncher.exe 6080 RegQueryValue HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\CPC\Volume\{110924bd-0000-0000-0000-501f00000000}\Generation SUCCESS Type: REG_DWORD, Length: 4, Data: 1 98 12:38:33,6235319 MCLauncher.exe 6080 RegCloseKey HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\CPC\Volume\{110924bd-0000-0000-0000-501f00000000} SUCCESS 98 12:38:33,6235892 MCLauncher.exe 6080 Thread Create SUCCESS Thread ID: 11876 98 12:38:33,6236078 MCLauncher.exe 6080 RegQueryKey HKCU SUCCESS Query: HandleTags, HandleTags: 0x0 98 12:38:33,6236136 MCLauncher.exe 6080 RegQueryKey HKCU SUCCESS Query: Name 98 12:38:33,6236219 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\CPC\Volume SUCCESS Desired Access: Read 98 12:38:33,6236316 MCLauncher.exe 6080 RegSetInfoKey HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\CPC\Volume SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 98 12:38:33,6236380 MCLauncher.exe 6080 RegQueryKey HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\CPC\Volume SUCCESS Query: HandleTags, HandleTags: 0x400 98 12:38:33,6236435 MCLauncher.exe 6080 RegOpenKey HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\CPC\Volume\{110924bd-0000-0000-0000-501f00000000}\ SUCCESS Desired Access: Read 98 12:38:33,6236515 MCLauncher.exe 6080 RegCloseKey HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\CPC\Volume SUCCESS 98 12:38:33,6236563 MCLauncher.exe 6080 RegQueryValue HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\CPC\Volume\{110924bd-0000-0000-0000-501f00000000}\Generation SUCCESS Type: REG_DWORD, Length: 4, Data: 1 98 12:38:33,6236704 MCLauncher.exe 6080 RegCloseKey HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\CPC\Volume\{110924bd-0000-0000-0000-501f00000000} SUCCESS 98 12:38:33,6236787 MCLauncher.exe 6080 RegQueryKey HKCU\Software\Classes SUCCESS Query: Name 98 12:38:33,6236856 MCLauncher.exe 6080 RegQueryKey HKCU\Software\Classes SUCCESS Query: HandleTags, HandleTags: 0x1 98 12:38:33,6236928 MCLauncher.exe 6080 RegQueryKey HKCU\Software\Classes SUCCESS Query: HandleTags, HandleTags: 0x1 98 12:38:33,6236975 MCLauncher.exe 6080 RegQueryKey HKCU\Software\Classes SUCCESS Query: Name 98 12:38:33,6237053 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Classes\Drive\shellex\FolderExtensions NAME NOT FOUND Desired Access: Enumerate Sub Keys 98 12:38:33,6237155 MCLauncher.exe 6080 RegOpenKey HKCR\Drive\shellex\FolderExtensions SUCCESS Desired Access: Enumerate Sub Keys 98 12:38:33,6237255 MCLauncher.exe 6080 RegSetInfoKey HKCR\Drive\shellex\FolderExtensions SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 98 12:38:33,6237311 MCLauncher.exe 6080 RegQueryKey HKCR\Drive\shellex\FolderExtensions SUCCESS Query: Name 98 12:38:33,6237377 MCLauncher.exe 6080 RegQueryKey HKCR\Drive\shellex\FolderExtensions SUCCESS Query: HandleTags, HandleTags: 0x401 98 12:38:33,6237474 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Classes\Drive\shellex\FolderExtensions NAME NOT FOUND Desired Access: Maximum Allowed 98 12:38:33,6237546 MCLauncher.exe 6080 RegEnumKey HKCR\Drive\shellex\FolderExtensions SUCCESS Index: 0, Name: {fbeb8a05-beee-4442-804e-409d6c4515e9} 98 12:38:33,6237624 MCLauncher.exe 6080 RegQueryKey HKCU\Software\Classes SUCCESS Query: Name 98 12:38:33,6237682 MCLauncher.exe 6080 RegQueryKey HKCU\Software\Classes SUCCESS Query: HandleTags, HandleTags: 0x1 98 12:38:33,6237746 MCLauncher.exe 6080 RegQueryKey HKCU\Software\Classes SUCCESS Query: HandleTags, HandleTags: 0x1 98 12:38:33,6237795 MCLauncher.exe 6080 RegQueryKey HKCU\Software\Classes SUCCESS Query: Name 98 12:38:33,6237862 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Classes\Drive\shellex\FolderExtensions\{fbeb8a05-beee-4442-804e-409d6c4515e9} NAME NOT FOUND Desired Access: Query Value 98 12:38:33,6237945 MCLauncher.exe 6080 RegOpenKey HKCR\Drive\shellex\FolderExtensions\{fbeb8a05-beee-4442-804e-409d6c4515e9} SUCCESS Desired Access: Query Value 98 12:38:33,6238023 MCLauncher.exe 6080 RegSetInfoKey HKCR\Drive\shellex\FolderExtensions\{fbeb8a05-beee-4442-804e-409d6c4515e9} SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 98 12:38:33,6238064 MCLauncher.exe 6080 RegQueryKey HKCR\Drive\shellex\FolderExtensions\{fbeb8a05-beee-4442-804e-409d6c4515e9} SUCCESS Query: Name 98 12:38:33,6238125 MCLauncher.exe 6080 RegQueryKey HKCR\Drive\shellex\FolderExtensions\{fbeb8a05-beee-4442-804e-409d6c4515e9} SUCCESS Query: HandleTags, HandleTags: 0x401 98 12:38:33,6238211 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Classes\Drive\shellex\FolderExtensions\{fbeb8a05-beee-4442-804e-409d6c4515e9} NAME NOT FOUND Desired Access: Maximum Allowed 98 12:38:33,6238272 MCLauncher.exe 6080 RegQueryValue HKCR\Drive\shellex\FolderExtensions\{fbeb8a05-beee-4442-804e-409d6c4515e9}\DriveMask SUCCESS Type: REG_DWORD, Length: 4, Data: 32 98 12:38:33,6238424 MCLauncher.exe 6080 RegCloseKey HKCR\Drive\shellex\FolderExtensions\{fbeb8a05-beee-4442-804e-409d6c4515e9} SUCCESS 98 12:38:33,6238496 MCLauncher.exe 6080 RegEnumKey HKCR\Drive\shellex\FolderExtensions NO MORE ENTRIES Index: 1, Length: 288 98 12:38:33,6238557 MCLauncher.exe 6080 RegCloseKey HKCR\Drive\shellex\FolderExtensions SUCCESS 98 12:38:33,6238807 MCLauncher.exe 6080 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 98 12:38:33,6238862 MCLauncher.exe 6080 RegQueryKey HKLM SUCCESS Query: Name 98 12:38:33,6238951 MCLauncher.exe 6080 RegOpenKey HKLM\Software\WOW6432Node\Policies\Microsoft\Windows\Explorer REPARSE Desired Access: Query Value 98 12:38:33,6239034 MCLauncher.exe 6080 RegOpenKey HKLM\SOFTWARE\Policies\Microsoft\Windows\Explorer NAME NOT FOUND Desired Access: Query Value 98 12:38:33,6239136 MCLauncher.exe 6080 RegQueryKey HKCU SUCCESS Query: HandleTags, HandleTags: 0x0 98 12:38:33,6239183 MCLauncher.exe 6080 RegQueryKey HKCU SUCCESS Query: Name 98 12:38:33,6239256 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Policies\Microsoft\Windows\Explorer NAME NOT FOUND Desired Access: Query Value 98 12:38:33,6239497 MCLauncher.exe 6080 CreateFile C:\ SUCCESS Desired Access: Read Data/List Directory, Read Attributes, Synchronize, Disposition: Open, Options: Synchronous IO Non-Alert, Attributes: n/a, ShareMode: Read, Write, Delete, AllocationSize: n/a, OpenResult: Opened 98 12:38:33,6239763 MCLauncher.exe 6080 QueryRemoteProtocolInformation C:\ INVALID PARAMETER 98 12:38:33,6239865 MCLauncher.exe 6080 QueryDirectory C:\Users SUCCESS Filter: Users, 1: Users 98 12:38:33,6240070 MCLauncher.exe 6080 CloseFile C:\ SUCCESS 98 12:38:33,6241597 MCLauncher.exe 6080 CreateFile C:\Users\User\AppData\Local\Microsoft\Windows\Caches NAME COLLISION Desired Access: Read Data/List Directory, Synchronize, Disposition: Create, Options: Directory, Synchronous IO Non-Alert, Open Reparse Point, Attributes: N, ShareMode: Read, Write, AllocationSize: 0 98 12:38:33,6244531 MCLauncher.exe 6080 CreateFile C:\Users\User\AppData\Local\Microsoft\Windows\Caches SUCCESS Desired Access: Read Control, Disposition: Open, Options: Open Reparse Point, Attributes: n/a, ShareMode: Read, Write, Delete, AllocationSize: n/a, OpenResult: Opened 98 12:38:33,6244750 MCLauncher.exe 6080 QuerySecurityFile C:\Users\User\AppData\Local\Microsoft\Windows\Caches BUFFER OVERFLOW Information: DACL 98 12:38:33,6244838 MCLauncher.exe 6080 CloseFile C:\Users\User\AppData\Local\Microsoft\Windows\Caches SUCCESS 98 12:38:33,6245797 MCLauncher.exe 6080 CreateFile C:\Users\User\AppData\Local\Microsoft\Windows\Caches SUCCESS Desired Access: Read Control, Disposition: Open, Options: Open Reparse Point, Attributes: n/a, ShareMode: Read, Write, Delete, AllocationSize: n/a, OpenResult: Opened 98 12:38:33,6245971 MCLauncher.exe 6080 QuerySecurityFile C:\Users\User\AppData\Local\Microsoft\Windows\Caches SUCCESS Information: DACL 98 12:38:33,6246043 MCLauncher.exe 6080 CloseFile C:\Users\User\AppData\Local\Microsoft\Windows\Caches SUCCESS 98 12:38:33,6247196 MCLauncher.exe 6080 CreateFile C:\Users\User\AppData\Local\Microsoft\Windows\Caches\cversions.1.db SUCCESS Desired Access: Generic Read, Disposition: Open, Options: Synchronous IO Non-Alert, Non-Directory File, Attributes: n/a, ShareMode: Read, Write, AllocationSize: n/a, OpenResult: Opened 98 12:38:33,6247528 MCLauncher.exe 6080 CreateFileMapping C:\Users\User\AppData\Local\Microsoft\Windows\Caches\cversions.1.db FILE LOCKED WITH ONLY READERS SyncType: SyncTypeCreateSection, PageProtection: PAGE_EXECUTE|PAGE_NOCACHE 98 12:38:33,6247686 MCLauncher.exe 6080 QueryNameInformationFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Name: \Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe 98 12:38:33,6248612 MCLauncher.exe 6080 CreateFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Desired Access: Synchronize, Disposition: Open, Options: Synchronous IO Non-Alert, Attributes: N, ShareMode: Read, Write, Delete, AllocationSize: n/a, OpenResult: Opened 98 12:38:33,6248814 MCLauncher.exe 6080 CloseFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS 98 12:38:33,6249110 MCLauncher.exe 6080 QueryNameInformationFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Name: \Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe 98 12:38:33,6249967 MCLauncher.exe 6080 CreateFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Desired Access: Synchronize, Disposition: Open, Options: Synchronous IO Non-Alert, Attributes: N, ShareMode: Read, Write, Delete, AllocationSize: n/a, OpenResult: Opened 98 12:38:33,6250141 MCLauncher.exe 6080 CloseFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS 98 12:38:33,6250878 MCLauncher.exe 6080 QueryStandardInformationFile C:\Users\User\AppData\Local\Microsoft\Windows\Caches\cversions.1.db SUCCESS AllocationSize: 16 384, EndOfFile: 16 384, NumberOfLinks: 1, DeletePending: False, Directory: False 98 12:38:33,6251036 MCLauncher.exe 6080 CreateFileMapping C:\Users\User\AppData\Local\Microsoft\Windows\Caches\cversions.1.db SUCCESS SyncType: SyncTypeOther 98 12:38:33,6251299 MCLauncher.exe 6080 CloseFile C:\Users\User\AppData\Local\Microsoft\Windows\Caches\cversions.1.db SUCCESS 98 12:38:33,6252831 MCLauncher.exe 6080 CreateFile C:\Users\User\AppData\Local\Microsoft\Windows\Caches\{AFBF9F1A-8EE8-4C77-AF34-C647E37CA0D9}.1.ver0x0000000000000001.db SUCCESS Desired Access: Generic Read, Disposition: Open, Options: Synchronous IO Non-Alert, Non-Directory File, Attributes: n/a, ShareMode: Read, AllocationSize: n/a, OpenResult: Opened 98 12:38:33,6253053 MCLauncher.exe 6080 QueryStandardInformationFile C:\Users\User\AppData\Local\Microsoft\Windows\Caches\{AFBF9F1A-8EE8-4C77-AF34-C647E37CA0D9}.1.ver0x0000000000000001.db SUCCESS AllocationSize: 135 168, EndOfFile: 134 416, NumberOfLinks: 1, DeletePending: False, Directory: False 98 12:38:33,6253247 MCLauncher.exe 6080 CreateFileMapping C:\Users\User\AppData\Local\Microsoft\Windows\Caches\{AFBF9F1A-8EE8-4C77-AF34-C647E37CA0D9}.1.ver0x0000000000000001.db FILE LOCKED WITH ONLY READERS SyncType: SyncTypeCreateSection, PageProtection: PAGE_EXECUTE|PAGE_NOCACHE 98 12:38:33,6253372 MCLauncher.exe 6080 QueryNameInformationFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Name: \Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe 98 12:38:33,6254255 MCLauncher.exe 6080 CreateFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Desired Access: Synchronize, Disposition: Open, Options: Synchronous IO Non-Alert, Attributes: N, ShareMode: Read, Write, Delete, AllocationSize: n/a, OpenResult: Opened 98 12:38:33,6255513 MCLauncher.exe 6080 CloseFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS 98 12:38:33,6255818 MCLauncher.exe 6080 QueryNameInformationFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Name: \Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe 98 12:38:33,6256716 MCLauncher.exe 6080 CreateFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Desired Access: Synchronize, Disposition: Open, Options: Synchronous IO Non-Alert, Attributes: N, ShareMode: Read, Write, Delete, AllocationSize: n/a, OpenResult: Opened 98 12:38:33,6256890 MCLauncher.exe 6080 CloseFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS 98 12:38:33,6257588 MCLauncher.exe 6080 QueryStandardInformationFile C:\Users\User\AppData\Local\Microsoft\Windows\Caches\{AFBF9F1A-8EE8-4C77-AF34-C647E37CA0D9}.1.ver0x0000000000000001.db SUCCESS AllocationSize: 135 168, EndOfFile: 134 416, NumberOfLinks: 1, DeletePending: False, Directory: False 98 12:38:33,6257741 MCLauncher.exe 6080 CreateFileMapping C:\Users\User\AppData\Local\Microsoft\Windows\Caches\{AFBF9F1A-8EE8-4C77-AF34-C647E37CA0D9}.1.ver0x0000000000000001.db SUCCESS SyncType: SyncTypeOther 98 12:38:33,6257985 MCLauncher.exe 6080 CloseFile C:\Users\User\AppData\Local\Microsoft\Windows\Caches\{AFBF9F1A-8EE8-4C77-AF34-C647E37CA0D9}.1.ver0x0000000000000001.db SUCCESS 98 12:38:33,6259844 MCLauncher.exe 6080 CreateFile C:\Users\desktop.ini SUCCESS Desired Access: Generic Read, Disposition: Open, Options: Sequential Access, Synchronous IO Non-Alert, Non-Directory File, Attributes: n/a, ShareMode: Read, Write, Delete, AllocationSize: n/a, OpenResult: Opened 98 12:38:33,6260057 MCLauncher.exe 6080 QueryStandardInformationFile C:\Users\desktop.ini SUCCESS AllocationSize: 176, EndOfFile: 174, NumberOfLinks: 1, DeletePending: False, Directory: False 98 12:38:33,6260162 MCLauncher.exe 6080 ReadFile C:\Users\desktop.ini SUCCESS Offset: 0, Length: 174, Priority: Normal 98 12:38:33,6260550 MCLauncher.exe 6080 QueryBasicInformationFile C:\Users\desktop.ini SUCCESS CreationTime: 16.07.2016 14:47:50, LastAccessTime: 16.07.2016 14:45:35, LastWriteTime: 16.07.2016 14:45:35, ChangeTime: 19.07.2018 19:43:16, FileAttributes: HSA 98 12:38:33,6260650 MCLauncher.exe 6080 CloseFile C:\Users\desktop.ini SUCCESS 98 12:38:33,6264551 MCLauncher.exe 6080 CreateFile C:\Users SUCCESS Desired Access: Read Data/List Directory, Read Attributes, Synchronize, Disposition: Open, Options: Synchronous IO Non-Alert, Attributes: n/a, ShareMode: Read, Write, Delete, AllocationSize: n/a, OpenResult: Opened 98 12:38:33,6264770 MCLauncher.exe 6080 QueryRemoteProtocolInformation C:\Users INVALID PARAMETER 98 12:38:33,6264867 MCLauncher.exe 6080 QueryDirectory C:\Users\User SUCCESS Filter: User, 1: User 98 12:38:33,6265036 MCLauncher.exe 6080 CloseFile C:\Users SUCCESS 98 12:38:33,6266194 MCLauncher.exe 6080 CreateFile C:\Users\User SUCCESS Desired Access: Read Data/List Directory, Read Attributes, Synchronize, Disposition: Open, Options: Synchronous IO Non-Alert, Attributes: n/a, ShareMode: Read, Write, Delete, AllocationSize: n/a, OpenResult: Opened 98 12:38:33,6266396 MCLauncher.exe 6080 QueryRemoteProtocolInformation C:\Users\User INVALID PARAMETER 98 12:38:33,6266482 MCLauncher.exe 6080 QueryDirectory C:\Users\User\AppData SUCCESS Filter: AppData, 1: AppData 98 12:38:33,6266645 MCLauncher.exe 6080 CloseFile C:\Users\User SUCCESS 98 12:38:33,6267748 MCLauncher.exe 6080 CreateFile C:\Users\User\AppData SUCCESS Desired Access: Read Data/List Directory, Read Attributes, Synchronize, Disposition: Open, Options: Synchronous IO Non-Alert, Attributes: n/a, ShareMode: Read, Write, Delete, AllocationSize: n/a, OpenResult: Opened 98 12:38:33,6267950 MCLauncher.exe 6080 QueryRemoteProtocolInformation C:\Users\User\AppData INVALID PARAMETER 98 12:38:33,6268036 MCLauncher.exe 6080 QueryDirectory C:\Users\User\AppData\Roaming SUCCESS Filter: Roaming, 1: Roaming 98 12:38:33,6268180 MCLauncher.exe 6080 CloseFile C:\Users\User\AppData SUCCESS 98 12:38:33,6268563 MCLauncher.exe 6080 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 98 12:38:33,6268635 MCLauncher.exe 6080 RegQueryKey HKLM SUCCESS Query: Name 98 12:38:33,6268756 MCLauncher.exe 6080 RegOpenKey HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS Desired Access: Read 98 12:38:33,6268895 MCLauncher.exe 6080 RegSetInfoKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 98 12:38:33,6268978 MCLauncher.exe 6080 RegQueryKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS Query: HandleTags, HandleTags: 0x400 98 12:38:33,6269036 MCLauncher.exe 6080 RegOpenKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{B4BFCC3A-DB2C-424C-B029-7FE99A87C641} SUCCESS Desired Access: Read 98 12:38:33,6269142 MCLauncher.exe 6080 RegCloseKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS 98 12:38:33,6269200 MCLauncher.exe 6080 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{B4BFCC3A-DB2C-424C-B029-7FE99A87C641}\Category SUCCESS Type: REG_DWORD, Length: 4, Data: 4 98 12:38:33,6269377 MCLauncher.exe 6080 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{B4BFCC3A-DB2C-424C-B029-7FE99A87C641}\Name SUCCESS Type: REG_SZ, Length: 16, Data: Desktop 98 12:38:33,6269524 MCLauncher.exe 6080 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{B4BFCC3A-DB2C-424C-B029-7FE99A87C641}\ParentFolder NAME NOT FOUND Length: 144 98 12:38:33,6269646 MCLauncher.exe 6080 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{B4BFCC3A-DB2C-424C-B029-7FE99A87C641}\Description NAME NOT FOUND Length: 144 98 12:38:33,6269757 MCLauncher.exe 6080 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{B4BFCC3A-DB2C-424C-B029-7FE99A87C641}\RelativePath SUCCESS Type: REG_SZ, Length: 16, Data: Desktop 98 12:38:33,6269887 MCLauncher.exe 6080 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{B4BFCC3A-DB2C-424C-B029-7FE99A87C641}\ParsingName NAME NOT FOUND Length: 144 98 12:38:33,6269998 MCLauncher.exe 6080 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{B4BFCC3A-DB2C-424C-B029-7FE99A87C641}\InfoTip NAME NOT FOUND Length: 144 98 12:38:33,6270108 MCLauncher.exe 6080 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{B4BFCC3A-DB2C-424C-B029-7FE99A87C641}\LocalizedName SUCCESS Type: REG_EXPAND_SZ, Length: 84, Data: @%SystemRoot%\system32\shell32.dll,-21769 98 12:38:33,6270239 MCLauncher.exe 6080 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{B4BFCC3A-DB2C-424C-B029-7FE99A87C641}\Icon SUCCESS Type: REG_EXPAND_SZ, Length: 80, Data: %SystemRoot%\system32\imageres.dll,-183 98 12:38:33,6270369 MCLauncher.exe 6080 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{B4BFCC3A-DB2C-424C-B029-7FE99A87C641}\Security NAME NOT FOUND Length: 144 98 12:38:33,6270480 MCLauncher.exe 6080 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{B4BFCC3A-DB2C-424C-B029-7FE99A87C641}\StreamResource NAME NOT FOUND Length: 144 98 12:38:33,6270588 MCLauncher.exe 6080 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{B4BFCC3A-DB2C-424C-B029-7FE99A87C641}\StreamResourceType NAME NOT FOUND Length: 144 98 12:38:33,6270696 MCLauncher.exe 6080 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{B4BFCC3A-DB2C-424C-B029-7FE99A87C641}\LocalRedirectOnly NAME NOT FOUND Length: 144 98 12:38:33,6270804 MCLauncher.exe 6080 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{B4BFCC3A-DB2C-424C-B029-7FE99A87C641}\Roamable SUCCESS Type: REG_DWORD, Length: 4, Data: 1 98 12:38:33,6270923 MCLauncher.exe 6080 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{B4BFCC3A-DB2C-424C-B029-7FE99A87C641}\PreCreate SUCCESS Type: REG_DWORD, Length: 4, Data: 1 98 12:38:33,6271048 MCLauncher.exe 6080 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{B4BFCC3A-DB2C-424C-B029-7FE99A87C641}\Stream NAME NOT FOUND Length: 144 98 12:38:33,6271159 MCLauncher.exe 6080 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{B4BFCC3A-DB2C-424C-B029-7FE99A87C641}\PublishExpandedPath SUCCESS Type: REG_DWORD, Length: 4, Data: 1 98 12:38:33,6271280 MCLauncher.exe 6080 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{B4BFCC3A-DB2C-424C-B029-7FE99A87C641}\DefinitionFlags NAME NOT FOUND Length: 144 98 12:38:33,6271388 MCLauncher.exe 6080 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{B4BFCC3A-DB2C-424C-B029-7FE99A87C641}\Attributes SUCCESS Type: REG_DWORD, Length: 4, Data: 1 98 12:38:33,6271510 MCLauncher.exe 6080 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{B4BFCC3A-DB2C-424C-B029-7FE99A87C641}\FolderTypeID NAME NOT FOUND Length: 144 98 12:38:33,6271621 MCLauncher.exe 6080 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{B4BFCC3A-DB2C-424C-B029-7FE99A87C641}\InitFolderHandler NAME NOT FOUND Length: 144 98 12:38:33,6271771 MCLauncher.exe 6080 RegQueryKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{B4BFCC3A-DB2C-424C-B029-7FE99A87C641} SUCCESS Query: HandleTags, HandleTags: 0x400 98 12:38:33,6271840 MCLauncher.exe 6080 RegOpenKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{B4BFCC3A-DB2C-424C-B029-7FE99A87C641}\PropertyBag SUCCESS Desired Access: Read 98 12:38:33,6271945 MCLauncher.exe 6080 RegCloseKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{B4BFCC3A-DB2C-424C-B029-7FE99A87C641} SUCCESS 98 12:38:33,6272148 MCLauncher.exe 6080 RegQueryKey HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer SUCCESS Query: HandleTags, HandleTags: 0x400 98 12:38:33,6272206 MCLauncher.exe 6080 RegOpenKey HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\SessionInfo\1 SUCCESS Desired Access: Query Value 98 12:38:33,6272314 MCLauncher.exe 6080 RegQueryKey HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\SessionInfo\1 SUCCESS Query: HandleTags, HandleTags: 0x400 98 12:38:33,6272366 MCLauncher.exe 6080 RegOpenKey HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\SessionInfo\1\KnownFolders NAME NOT FOUND Desired Access: Query Value 98 12:38:33,6272450 MCLauncher.exe 6080 RegCloseKey HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\SessionInfo\1 SUCCESS 98 12:38:33,6272549 MCLauncher.exe 6080 RegOpenKey HKCU SUCCESS Desired Access: Read 98 12:38:33,6272646 MCLauncher.exe 6080 RegQueryKey HKCU SUCCESS Query: HandleTags, HandleTags: 0x0 98 12:38:33,6272696 MCLauncher.exe 6080 RegQueryKey HKCU SUCCESS Query: Name 98 12:38:33,6272771 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Microsoft\Windows\CurrentVersion\Explorer\User Shell Folders SUCCESS Desired Access: Read 98 12:38:33,6272943 MCLauncher.exe 6080 RegSetInfoKey HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\User Shell Folders SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 98 12:38:33,6272993 MCLauncher.exe 6080 RegCloseKey HKCU SUCCESS 98 12:38:33,6273037 MCLauncher.exe 6080 RegQueryValue HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\User Shell Folders\Desktop SUCCESS Type: REG_EXPAND_SZ, Length: 44, Data: %USERPROFILE%\Desktop 98 12:38:33,6273306 MCLauncher.exe 6080 RegCloseKey HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\User Shell Folders SUCCESS 98 12:38:33,6274904 MCLauncher.exe 6080 CreateFile C:\Users\User\Desktop\desktop.ini SUCCESS Desired Access: Generic Read, Disposition: Open, Options: Sequential Access, Synchronous IO Non-Alert, Non-Directory File, Attributes: n/a, ShareMode: Read, Write, Delete, AllocationSize: n/a, OpenResult: Opened 98 12:38:33,6275140 MCLauncher.exe 6080 QueryStandardInformationFile C:\Users\User\Desktop\desktop.ini SUCCESS AllocationSize: 288, EndOfFile: 282, NumberOfLinks: 1, DeletePending: False, Directory: False 98 12:38:33,6275245 MCLauncher.exe 6080 ReadFile C:\Users\User\Desktop\desktop.ini SUCCESS Offset: 0, Length: 282, Priority: Normal 98 12:38:33,6334216 MCLauncher.exe 6080 RegOpenKey HKLM\System\CurrentControlSet\Control\DeviceClasses\{53f5630d-b6bf-11d0-94f2-00a0c91efb8b} SUCCESS Desired Access: All Access 98 12:38:33,6334394 MCLauncher.exe 6080 RegOpenKey HKLM\System\CurrentControlSet\Control\DeviceClasses\{53f5630d-b6bf-11d0-94f2-00a0c91efb8b}\Properties NAME NOT FOUND Desired Access: Query Value 98 12:38:33,6334746 MCLauncher.exe 6080 RegCloseKey HKLM\System\CurrentControlSet\Control\DeviceClasses\{53f5630d-b6bf-11d0-94f2-00a0c91efb8b} SUCCESS 98 12:38:33,6334959 MCLauncher.exe 6080 RegOpenKey HKLM\System\CurrentControlSet\Control\DeviceClasses\{53f5630d-b6bf-11d0-94f2-00a0c91efb8b} SUCCESS Desired Access: All Access 98 12:38:33,6335056 MCLauncher.exe 6080 RegOpenKey HKLM\System\CurrentControlSet\Control\DeviceClasses\{53f5630d-b6bf-11d0-94f2-00a0c91efb8b}\Properties NAME NOT FOUND Desired Access: Query Value 98 12:38:33,6335375 MCLauncher.exe 6080 RegCloseKey HKLM\System\CurrentControlSet\Control\DeviceClasses\{53f5630d-b6bf-11d0-94f2-00a0c91efb8b} SUCCESS 98 12:38:33,6335746 MCLauncher.exe 6080 QueryBasicInformationFile C:\Users\User\Desktop\desktop.ini SUCCESS CreationTime: 19.07.2018 20:08:13, LastAccessTime: 19.07.2018 20:08:13, LastWriteTime: 20.07.2018 19:29:33, ChangeTime: 20.07.2018 19:29:33, FileAttributes: HSA 98 12:38:33,6335859 MCLauncher.exe 6080 CloseFile C:\Users\User\Desktop\desktop.ini SUCCESS 98 12:38:33,6336632 MCLauncher.exe 6080 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 98 12:38:33,6336704 MCLauncher.exe 6080 RegQueryKey HKLM SUCCESS Query: Name 98 12:38:33,6336826 MCLauncher.exe 6080 RegOpenKey HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS Desired Access: Read 98 12:38:33,6336968 MCLauncher.exe 6080 RegSetInfoKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 98 12:38:33,6337051 MCLauncher.exe 6080 RegQueryKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS Query: HandleTags, HandleTags: 0x400 98 12:38:33,6337112 MCLauncher.exe 6080 RegOpenKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{1B3EA5DC-B587-4786-B4EF-BD1DC332AEAE} SUCCESS Desired Access: Read 98 12:38:33,6337214 MCLauncher.exe 6080 RegCloseKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS 98 12:38:33,6337278 MCLauncher.exe 6080 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{1B3EA5DC-B587-4786-B4EF-BD1DC332AEAE}\Category SUCCESS Type: REG_DWORD, Length: 4, Data: 4 98 12:38:33,6337447 MCLauncher.exe 6080 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{1B3EA5DC-B587-4786-B4EF-BD1DC332AEAE}\Name SUCCESS Type: REG_SZ, Length: 20, Data: Libraries 98 12:38:33,6337597 MCLauncher.exe 6080 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{1B3EA5DC-B587-4786-B4EF-BD1DC332AEAE}\ParentFolder SUCCESS Type: REG_SZ, Length: 78, Data: {3EB685DB-65F9-4CF6-A03A-E3EF65729F3D} 98 12:38:33,6337735 MCLauncher.exe 6080 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{1B3EA5DC-B587-4786-B4EF-BD1DC332AEAE}\Description NAME NOT FOUND Length: 144 98 12:38:33,6337849 MCLauncher.exe 6080 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{1B3EA5DC-B587-4786-B4EF-BD1DC332AEAE}\RelativePath SUCCESS Type: REG_SZ, Length: 56, Data: Microsoft\Windows\Libraries 98 12:38:33,6337982 MCLauncher.exe 6080 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{1B3EA5DC-B587-4786-B4EF-BD1DC332AEAE}\ParsingName NAME NOT FOUND Length: 144 98 12:38:33,6338092 MCLauncher.exe 6080 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{1B3EA5DC-B587-4786-B4EF-BD1DC332AEAE}\InfoTip NAME NOT FOUND Length: 144 98 12:38:33,6338203 MCLauncher.exe 6080 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{1B3EA5DC-B587-4786-B4EF-BD1DC332AEAE}\LocalizedName NAME NOT FOUND Length: 144 98 12:38:33,6338311 MCLauncher.exe 6080 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{1B3EA5DC-B587-4786-B4EF-BD1DC332AEAE}\Icon NAME NOT FOUND Length: 144 98 12:38:33,6338419 MCLauncher.exe 6080 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{1B3EA5DC-B587-4786-B4EF-BD1DC332AEAE}\Security NAME NOT FOUND Length: 144 98 12:38:33,6338525 MCLauncher.exe 6080 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{1B3EA5DC-B587-4786-B4EF-BD1DC332AEAE}\StreamResource NAME NOT FOUND Length: 144 98 12:38:33,6338636 MCLauncher.exe 6080 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{1B3EA5DC-B587-4786-B4EF-BD1DC332AEAE}\StreamResourceType NAME NOT FOUND Length: 144 98 12:38:33,6338741 MCLauncher.exe 6080 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{1B3EA5DC-B587-4786-B4EF-BD1DC332AEAE}\LocalRedirectOnly NAME NOT FOUND Length: 144 98 12:38:33,6338849 MCLauncher.exe 6080 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{1B3EA5DC-B587-4786-B4EF-BD1DC332AEAE}\Roamable NAME NOT FOUND Length: 144 98 12:38:33,6338957 MCLauncher.exe 6080 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{1B3EA5DC-B587-4786-B4EF-BD1DC332AEAE}\PreCreate SUCCESS Type: REG_DWORD, Length: 4, Data: 1 98 12:38:33,6339156 MCLauncher.exe 6080 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{1B3EA5DC-B587-4786-B4EF-BD1DC332AEAE}\Stream NAME NOT FOUND Length: 144 98 12:38:33,6339267 MCLauncher.exe 6080 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{1B3EA5DC-B587-4786-B4EF-BD1DC332AEAE}\PublishExpandedPath SUCCESS Type: REG_DWORD, Length: 4, Data: 1 98 12:38:33,6339392 MCLauncher.exe 6080 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{1B3EA5DC-B587-4786-B4EF-BD1DC332AEAE}\DefinitionFlags NAME NOT FOUND Length: 144 98 12:38:33,6339500 MCLauncher.exe 6080 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{1B3EA5DC-B587-4786-B4EF-BD1DC332AEAE}\Attributes NAME NOT FOUND Length: 144 98 12:38:33,6339608 MCLauncher.exe 6080 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{1B3EA5DC-B587-4786-B4EF-BD1DC332AEAE}\FolderTypeID NAME NOT FOUND Length: 144 98 12:38:33,6339713 MCLauncher.exe 6080 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{1B3EA5DC-B587-4786-B4EF-BD1DC332AEAE}\InitFolderHandler NAME NOT FOUND Length: 144 98 12:38:33,6339863 MCLauncher.exe 6080 RegQueryKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{1B3EA5DC-B587-4786-B4EF-BD1DC332AEAE} SUCCESS Query: HandleTags, HandleTags: 0x400 98 12:38:33,6339929 MCLauncher.exe 6080 RegOpenKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{1B3EA5DC-B587-4786-B4EF-BD1DC332AEAE}\PropertyBag NAME NOT FOUND Desired Access: Read 98 12:38:33,6340035 MCLauncher.exe 6080 RegCloseKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{1B3EA5DC-B587-4786-B4EF-BD1DC332AEAE} SUCCESS 98 12:38:33,6340256 MCLauncher.exe 6080 RegQueryKey HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer SUCCESS Query: HandleTags, HandleTags: 0x400 98 12:38:33,6340317 MCLauncher.exe 6080 RegOpenKey HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\SessionInfo\1 SUCCESS Desired Access: Query Value 98 12:38:33,6340436 MCLauncher.exe 6080 RegQueryKey HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\SessionInfo\1 SUCCESS Query: HandleTags, HandleTags: 0x400 98 12:38:33,6340489 MCLauncher.exe 6080 RegOpenKey HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\SessionInfo\1\KnownFolders NAME NOT FOUND Desired Access: Query Value 98 12:38:33,6340561 MCLauncher.exe 6080 RegCloseKey HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\SessionInfo\1 SUCCESS 98 12:38:33,6340664 MCLauncher.exe 6080 RegOpenKey HKCU SUCCESS Desired Access: Read 98 12:38:33,6340763 MCLauncher.exe 6080 RegQueryKey HKCU SUCCESS Query: HandleTags, HandleTags: 0x0 98 12:38:33,6340813 MCLauncher.exe 6080 RegQueryKey HKCU SUCCESS Query: Name 98 12:38:33,6340888 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Microsoft\Windows\CurrentVersion\Explorer\User Shell Folders SUCCESS Desired Access: Read 98 12:38:33,6340979 MCLauncher.exe 6080 RegSetInfoKey HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\User Shell Folders SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 98 12:38:33,6341027 MCLauncher.exe 6080 RegCloseKey HKCU SUCCESS 98 12:38:33,6341076 MCLauncher.exe 6080 RegQueryValue HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\User Shell Folders\{1B3EA5DC-B587-4786-B4EF-BD1DC332AEAE} NAME NOT FOUND Length: 144 98 12:38:33,6341384 MCLauncher.exe 6080 RegQueryKey HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer SUCCESS Query: HandleTags, HandleTags: 0x400 98 12:38:33,6341448 MCLauncher.exe 6080 RegOpenKey HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\SessionInfo\1 SUCCESS Desired Access: Query Value 98 12:38:33,6341545 MCLauncher.exe 6080 RegQueryKey HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\SessionInfo\1 SUCCESS Query: HandleTags, HandleTags: 0x400 98 12:38:33,6341597 MCLauncher.exe 6080 RegOpenKey HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\SessionInfo\1\KnownFolders NAME NOT FOUND Desired Access: Query Value 98 12:38:33,6341667 MCLauncher.exe 6080 RegCloseKey HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\SessionInfo\1 SUCCESS 98 12:38:33,6341711 MCLauncher.exe 6080 RegQueryValue HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\User Shell Folders\AppData SUCCESS Type: REG_EXPAND_SZ, Length: 60, Data: %USERPROFILE%\AppData\Roaming 98 12:38:33,6342204 MCLauncher.exe 6080 RegCloseKey HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\User Shell Folders SUCCESS 98 12:38:33,6342647 MCLauncher.exe 6080 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 98 12:38:33,6342708 MCLauncher.exe 6080 RegQueryKey HKLM SUCCESS Query: Name 98 12:38:33,6342814 MCLauncher.exe 6080 RegOpenKey HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS Desired Access: Read 98 12:38:33,6342916 MCLauncher.exe 6080 RegSetInfoKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 98 12:38:33,6342985 MCLauncher.exe 6080 RegQueryKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS Query: HandleTags, HandleTags: 0x400 98 12:38:33,6343041 MCLauncher.exe 6080 RegOpenKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{F42EE2D3-909F-4907-8871-4C22FC0BF756} SUCCESS Desired Access: Read 98 12:38:33,6343124 MCLauncher.exe 6080 RegCloseKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS 98 12:38:33,6343176 MCLauncher.exe 6080 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{f42ee2d3-909f-4907-8871-4c22fc0bf756}\Category SUCCESS Type: REG_DWORD, Length: 4, Data: 4 98 12:38:33,6343326 MCLauncher.exe 6080 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{f42ee2d3-909f-4907-8871-4c22fc0bf756}\Name SUCCESS Type: REG_SZ, Length: 32, Data: Local Documents 98 12:38:33,6343467 MCLauncher.exe 6080 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{f42ee2d3-909f-4907-8871-4c22fc0bf756}\ParentFolder NAME NOT FOUND Length: 144 98 12:38:33,6343584 MCLauncher.exe 6080 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{f42ee2d3-909f-4907-8871-4c22fc0bf756}\Description NAME NOT FOUND Length: 144 98 12:38:33,6343692 MCLauncher.exe 6080 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{f42ee2d3-909f-4907-8871-4c22fc0bf756}\RelativePath SUCCESS Type: REG_SZ, Length: 20, Data: Documents 98 12:38:33,6343822 MCLauncher.exe 6080 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{f42ee2d3-909f-4907-8871-4c22fc0bf756}\ParsingName BUFFER OVERFLOW Length: 144 98 12:38:33,6343933 MCLauncher.exe 6080 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{f42ee2d3-909f-4907-8871-4c22fc0bf756}\ParsingName SUCCESS Type: REG_SZ, Length: 176, Data: shell:::{20D04FE0-3AEA-1069-A2D8-08002B30309D}\::{d3162b92-9365-467a-956b-92703aca08af} 98 12:38:33,6344063 MCLauncher.exe 6080 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{f42ee2d3-909f-4907-8871-4c22fc0bf756}\InfoTip NAME NOT FOUND Length: 144 98 12:38:33,6344174 MCLauncher.exe 6080 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{f42ee2d3-909f-4907-8871-4c22fc0bf756}\LocalizedName SUCCESS Type: REG_EXPAND_SZ, Length: 84, Data: @%SystemRoot%\system32\shell32.dll,-21770 98 12:38:33,6344304 MCLauncher.exe 6080 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{f42ee2d3-909f-4907-8871-4c22fc0bf756}\Icon SUCCESS Type: REG_EXPAND_SZ, Length: 80, Data: %SystemRoot%\system32\imageres.dll,-112 98 12:38:33,6344434 MCLauncher.exe 6080 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{f42ee2d3-909f-4907-8871-4c22fc0bf756}\Security NAME NOT FOUND Length: 144 98 12:38:33,6344545 MCLauncher.exe 6080 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{f42ee2d3-909f-4907-8871-4c22fc0bf756}\StreamResource NAME NOT FOUND Length: 144 98 12:38:33,6344650 MCLauncher.exe 6080 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{f42ee2d3-909f-4907-8871-4c22fc0bf756}\StreamResourceType NAME NOT FOUND Length: 144 98 12:38:33,6344758 MCLauncher.exe 6080 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{f42ee2d3-909f-4907-8871-4c22fc0bf756}\LocalRedirectOnly NAME NOT FOUND Length: 144 98 12:38:33,6344936 MCLauncher.exe 6080 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{f42ee2d3-909f-4907-8871-4c22fc0bf756}\Roamable NAME NOT FOUND Length: 144 98 12:38:33,6345041 MCLauncher.exe 6080 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{f42ee2d3-909f-4907-8871-4c22fc0bf756}\PreCreate SUCCESS Type: REG_DWORD, Length: 4, Data: 1 98 12:38:33,6345166 MCLauncher.exe 6080 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{f42ee2d3-909f-4907-8871-4c22fc0bf756}\Stream NAME NOT FOUND Length: 144 98 12:38:33,6345271 MCLauncher.exe 6080 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{f42ee2d3-909f-4907-8871-4c22fc0bf756}\PublishExpandedPath NAME NOT FOUND Length: 144 98 12:38:33,6345376 MCLauncher.exe 6080 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{f42ee2d3-909f-4907-8871-4c22fc0bf756}\DefinitionFlags NAME NOT FOUND Length: 144 98 12:38:33,6345482 MCLauncher.exe 6080 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{f42ee2d3-909f-4907-8871-4c22fc0bf756}\Attributes SUCCESS Type: REG_DWORD, Length: 4, Data: 1 98 12:38:33,6345603 MCLauncher.exe 6080 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{f42ee2d3-909f-4907-8871-4c22fc0bf756}\FolderTypeID NAME NOT FOUND Length: 144 98 12:38:33,6345709 MCLauncher.exe 6080 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{f42ee2d3-909f-4907-8871-4c22fc0bf756}\InitFolderHandler NAME NOT FOUND Length: 144 98 12:38:33,6345853 MCLauncher.exe 6080 RegQueryKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{f42ee2d3-909f-4907-8871-4c22fc0bf756} SUCCESS Query: HandleTags, HandleTags: 0x400 98 12:38:33,6345917 MCLauncher.exe 6080 RegOpenKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{f42ee2d3-909f-4907-8871-4c22fc0bf756}\PropertyBag SUCCESS Desired Access: Read 98 12:38:33,6346011 MCLauncher.exe 6080 RegCloseKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{f42ee2d3-909f-4907-8871-4c22fc0bf756} SUCCESS 98 12:38:33,6346171 MCLauncher.exe 6080 RegQueryKey HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer SUCCESS Query: HandleTags, HandleTags: 0x400 98 12:38:33,6346230 MCLauncher.exe 6080 RegOpenKey HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\SessionInfo\1 SUCCESS Desired Access: Query Value 98 12:38:33,6346321 MCLauncher.exe 6080 RegQueryKey HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\SessionInfo\1 SUCCESS Query: HandleTags, HandleTags: 0x400 98 12:38:33,6346374 MCLauncher.exe 6080 RegOpenKey HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\SessionInfo\1\KnownFolders NAME NOT FOUND Desired Access: Query Value 98 12:38:33,6346446 MCLauncher.exe 6080 RegCloseKey HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\SessionInfo\1 SUCCESS 98 12:38:33,6346537 MCLauncher.exe 6080 RegOpenKey HKCU SUCCESS Desired Access: Read 98 12:38:33,6346623 MCLauncher.exe 6080 RegQueryKey HKCU SUCCESS Query: HandleTags, HandleTags: 0x0 98 12:38:33,6346673 MCLauncher.exe 6080 RegQueryKey HKCU SUCCESS Query: Name 98 12:38:33,6346745 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Microsoft\Windows\CurrentVersion\Explorer\User Shell Folders SUCCESS Desired Access: Read 98 12:38:33,6346828 MCLauncher.exe 6080 RegSetInfoKey HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\User Shell Folders SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 98 12:38:33,6346872 MCLauncher.exe 6080 RegCloseKey HKCU SUCCESS 98 12:38:33,6346919 MCLauncher.exe 6080 RegQueryValue HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\User Shell Folders\{F42EE2D3-909F-4907-8871-4C22FC0BF756} NAME NOT FOUND Length: 144 98 12:38:33,6347149 MCLauncher.exe 6080 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 98 12:38:33,6347202 MCLauncher.exe 6080 RegQueryKey HKLM SUCCESS Query: Name 98 12:38:33,6347299 MCLauncher.exe 6080 RegOpenKey HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS Desired Access: Read 98 12:38:33,6347388 MCLauncher.exe 6080 RegSetInfoKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 98 12:38:33,6347454 MCLauncher.exe 6080 RegQueryKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS Query: HandleTags, HandleTags: 0x400 98 12:38:33,6347507 MCLauncher.exe 6080 RegOpenKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{5E6C858F-0E22-4760-9AFE-EA3317B67173} SUCCESS Desired Access: Read 98 12:38:33,6347590 MCLauncher.exe 6080 RegCloseKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS 98 12:38:33,6347637 MCLauncher.exe 6080 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{5E6C858F-0E22-4760-9AFE-EA3317B67173}\Category SUCCESS Type: REG_DWORD, Length: 4, Data: 2 98 12:38:33,6347773 MCLauncher.exe 6080 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{5E6C858F-0E22-4760-9AFE-EA3317B67173}\Name SUCCESS Type: REG_SZ, Length: 16, Data: Profile 98 12:38:33,6347911 MCLauncher.exe 6080 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{5E6C858F-0E22-4760-9AFE-EA3317B67173}\ParentFolder NAME NOT FOUND Length: 144 98 12:38:33,6348025 MCLauncher.exe 6080 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{5E6C858F-0E22-4760-9AFE-EA3317B67173}\Description NAME NOT FOUND Length: 144 98 12:38:33,6348130 MCLauncher.exe 6080 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{5E6C858F-0E22-4760-9AFE-EA3317B67173}\RelativePath NAME NOT FOUND Length: 144 98 12:38:33,6348236 MCLauncher.exe 6080 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{5E6C858F-0E22-4760-9AFE-EA3317B67173}\ParsingName NAME NOT FOUND Length: 144 98 12:38:33,6348341 MCLauncher.exe 6080 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{5E6C858F-0E22-4760-9AFE-EA3317B67173}\InfoTip NAME NOT FOUND Length: 144 98 12:38:33,6348446 MCLauncher.exe 6080 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{5E6C858F-0E22-4760-9AFE-EA3317B67173}\LocalizedName NAME NOT FOUND Length: 144 98 12:38:33,6348551 MCLauncher.exe 6080 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{5E6C858F-0E22-4760-9AFE-EA3317B67173}\Icon NAME NOT FOUND Length: 144 98 12:38:33,6348657 MCLauncher.exe 6080 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{5E6C858F-0E22-4760-9AFE-EA3317B67173}\Security NAME NOT FOUND Length: 144 98 12:38:33,6348759 MCLauncher.exe 6080 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{5E6C858F-0E22-4760-9AFE-EA3317B67173}\StreamResource NAME NOT FOUND Length: 144 98 12:38:33,6348867 MCLauncher.exe 6080 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{5E6C858F-0E22-4760-9AFE-EA3317B67173}\StreamResourceType NAME NOT FOUND Length: 144 98 12:38:33,6348972 MCLauncher.exe 6080 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{5E6C858F-0E22-4760-9AFE-EA3317B67173}\LocalRedirectOnly NAME NOT FOUND Length: 144 98 12:38:33,6349078 MCLauncher.exe 6080 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{5E6C858F-0E22-4760-9AFE-EA3317B67173}\Roamable NAME NOT FOUND Length: 144 98 12:38:33,6349180 MCLauncher.exe 6080 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{5E6C858F-0E22-4760-9AFE-EA3317B67173}\PreCreate NAME NOT FOUND Length: 144 98 12:38:33,6349286 MCLauncher.exe 6080 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{5E6C858F-0E22-4760-9AFE-EA3317B67173}\Stream NAME NOT FOUND Length: 144 98 12:38:33,6349391 MCLauncher.exe 6080 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{5E6C858F-0E22-4760-9AFE-EA3317B67173}\PublishExpandedPath NAME NOT FOUND Length: 144 98 12:38:33,6349496 MCLauncher.exe 6080 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{5E6C858F-0E22-4760-9AFE-EA3317B67173}\DefinitionFlags NAME NOT FOUND Length: 144 98 12:38:33,6349599 MCLauncher.exe 6080 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{5E6C858F-0E22-4760-9AFE-EA3317B67173}\Attributes NAME NOT FOUND Length: 144 98 12:38:33,6349704 MCLauncher.exe 6080 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{5E6C858F-0E22-4760-9AFE-EA3317B67173}\FolderTypeID NAME NOT FOUND Length: 144 98 12:38:33,6349809 MCLauncher.exe 6080 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{5E6C858F-0E22-4760-9AFE-EA3317B67173}\InitFolderHandler NAME NOT FOUND Length: 144 98 12:38:33,6349948 MCLauncher.exe 6080 RegQueryKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{5E6C858F-0E22-4760-9AFE-EA3317B67173} SUCCESS Query: HandleTags, HandleTags: 0x400 98 12:38:33,6350011 MCLauncher.exe 6080 RegOpenKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{5E6C858F-0E22-4760-9AFE-EA3317B67173}\PropertyBag NAME NOT FOUND Desired Access: Read 98 12:38:33,6350103 MCLauncher.exe 6080 RegCloseKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{5E6C858F-0E22-4760-9AFE-EA3317B67173} SUCCESS 98 12:38:33,6350236 MCLauncher.exe 6080 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 98 12:38:33,6350288 MCLauncher.exe 6080 RegQueryKey HKLM SUCCESS Query: Name 98 12:38:33,6350377 MCLauncher.exe 6080 RegOpenKey HKLM\Software\WOW6432Node\Microsoft\Windows NT\CurrentVersion\ProfileList\S-1-5-21-3477790013-1571897634-1299942168-1000 REPARSE Desired Access: Read 98 12:38:33,6350482 MCLauncher.exe 6080 RegOpenKey HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\ProfileList\S-1-5-21-3477790013-1571897634-1299942168-1000 SUCCESS Desired Access: Read 98 12:38:33,6350554 MCLauncher.exe 6080 RegSetInfoKey HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\ProfileList\S-1-5-21-3477790013-1571897634-1299942168-1000 SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 98 12:38:33,6350596 MCLauncher.exe 6080 RegQueryValue HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\ProfileList\S-1-5-21-3477790013-1571897634-1299942168-1000\ProfileImagePath SUCCESS Type: REG_EXPAND_SZ, Length: 28, Data: C:\Users\User 98 12:38:33,6350751 MCLauncher.exe 6080 RegQueryValue HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\ProfileList\S-1-5-21-3477790013-1571897634-1299942168-1000\ProfileImagePath SUCCESS Type: REG_EXPAND_SZ, Length: 28, Data: C:\Users\User 98 12:38:33,6350890 MCLauncher.exe 6080 RegCloseKey HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\ProfileList\S-1-5-21-3477790013-1571897634-1299942168-1000 SUCCESS 98 12:38:33,6350976 MCLauncher.exe 6080 RegCloseKey HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\User Shell Folders SUCCESS 98 12:38:33,6352713 MCLauncher.exe 6080 CreateFile C:\Users\User\Documents\desktop.ini SUCCESS Desired Access: Generic Read, Disposition: Open, Options: Sequential Access, Synchronous IO Non-Alert, Non-Directory File, Attributes: n/a, ShareMode: Read, Write, Delete, AllocationSize: n/a, OpenResult: Opened 98 12:38:33,6352976 MCLauncher.exe 6080 QueryStandardInformationFile C:\Users\User\Documents\desktop.ini SUCCESS AllocationSize: 408, EndOfFile: 402, NumberOfLinks: 1, DeletePending: False, Directory: False 98 12:38:33,6353084 MCLauncher.exe 6080 ReadFile C:\Users\User\Documents\desktop.ini SUCCESS Offset: 0, Length: 402, Priority: Normal 98 12:38:33,6353563 MCLauncher.exe 6080 QueryBasicInformationFile C:\Users\User\Documents\desktop.ini SUCCESS CreationTime: 19.07.2018 20:08:14, LastAccessTime: 19.07.2018 20:08:14, LastWriteTime: 20.07.2018 19:29:33, ChangeTime: 20.07.2018 19:29:33, FileAttributes: HSA 98 12:38:33,6353666 MCLauncher.exe 6080 CloseFile C:\Users\User\Documents\desktop.ini SUCCESS 98 12:38:33,6354165 MCLauncher.exe 6080 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 98 12:38:33,6354228 MCLauncher.exe 6080 RegQueryKey HKLM SUCCESS Query: Name 98 12:38:33,6354347 MCLauncher.exe 6080 RegOpenKey HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS Desired Access: Read 98 12:38:33,6354455 MCLauncher.exe 6080 RegSetInfoKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 98 12:38:33,6354527 MCLauncher.exe 6080 RegQueryKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS Query: HandleTags, HandleTags: 0x400 98 12:38:33,6354588 MCLauncher.exe 6080 RegOpenKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{A0C69A99-21C8-4671-8703-7934162FCF1D} SUCCESS Desired Access: Read 98 12:38:33,6354691 MCLauncher.exe 6080 RegCloseKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS 98 12:38:33,6354749 MCLauncher.exe 6080 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{a0c69a99-21c8-4671-8703-7934162fcf1d}\Category SUCCESS Type: REG_DWORD, Length: 4, Data: 4 98 12:38:33,6354910 MCLauncher.exe 6080 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{a0c69a99-21c8-4671-8703-7934162fcf1d}\Name SUCCESS Type: REG_SZ, Length: 24, Data: Local Music 98 12:38:33,6355054 MCLauncher.exe 6080 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{a0c69a99-21c8-4671-8703-7934162fcf1d}\ParentFolder NAME NOT FOUND Length: 144 98 12:38:33,6355173 MCLauncher.exe 6080 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{a0c69a99-21c8-4671-8703-7934162fcf1d}\Description NAME NOT FOUND Length: 144 98 12:38:33,6355284 MCLauncher.exe 6080 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{a0c69a99-21c8-4671-8703-7934162fcf1d}\RelativePath SUCCESS Type: REG_SZ, Length: 12, Data: Music 98 12:38:33,6355414 MCLauncher.exe 6080 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{a0c69a99-21c8-4671-8703-7934162fcf1d}\ParsingName BUFFER OVERFLOW Length: 144 98 12:38:33,6355525 MCLauncher.exe 6080 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{a0c69a99-21c8-4671-8703-7934162fcf1d}\ParsingName SUCCESS Type: REG_SZ, Length: 176, Data: shell:::{20D04FE0-3AEA-1069-A2D8-08002B30309D}\::{3dfdf296-dbec-4fb4-81d1-6a3438bcf4de} 98 12:38:33,6355652 MCLauncher.exe 6080 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{a0c69a99-21c8-4671-8703-7934162fcf1d}\InfoTip SUCCESS Type: REG_EXPAND_SZ, Length: 84, Data: @%SystemRoot%\system32\shell32.dll,-12689 98 12:38:33,6355791 MCLauncher.exe 6080 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{a0c69a99-21c8-4671-8703-7934162fcf1d}\LocalizedName SUCCESS Type: REG_EXPAND_SZ, Length: 84, Data: @%SystemRoot%\system32\shell32.dll,-21790 98 12:38:33,6355924 MCLauncher.exe 6080 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{a0c69a99-21c8-4671-8703-7934162fcf1d}\Icon SUCCESS Type: REG_EXPAND_SZ, Length: 80, Data: %SystemRoot%\system32\imageres.dll,-108 98 12:38:33,6356054 MCLauncher.exe 6080 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{a0c69a99-21c8-4671-8703-7934162fcf1d}\Security NAME NOT FOUND Length: 144 98 12:38:33,6356165 MCLauncher.exe 6080 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{a0c69a99-21c8-4671-8703-7934162fcf1d}\StreamResource NAME NOT FOUND Length: 144 98 12:38:33,6356273 MCLauncher.exe 6080 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{a0c69a99-21c8-4671-8703-7934162fcf1d}\StreamResourceType NAME NOT FOUND Length: 144 98 12:38:33,6356378 MCLauncher.exe 6080 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{a0c69a99-21c8-4671-8703-7934162fcf1d}\LocalRedirectOnly NAME NOT FOUND Length: 144 98 12:38:33,6356486 MCLauncher.exe 6080 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{a0c69a99-21c8-4671-8703-7934162fcf1d}\Roamable NAME NOT FOUND Length: 144 98 12:38:33,6356594 MCLauncher.exe 6080 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{a0c69a99-21c8-4671-8703-7934162fcf1d}\PreCreate SUCCESS Type: REG_DWORD, Length: 4, Data: 1 98 12:38:33,6356716 MCLauncher.exe 6080 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{a0c69a99-21c8-4671-8703-7934162fcf1d}\Stream NAME NOT FOUND Length: 144 98 12:38:33,6356824 MCLauncher.exe 6080 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{a0c69a99-21c8-4671-8703-7934162fcf1d}\PublishExpandedPath NAME NOT FOUND Length: 144 98 12:38:33,6356932 MCLauncher.exe 6080 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{a0c69a99-21c8-4671-8703-7934162fcf1d}\DefinitionFlags NAME NOT FOUND Length: 144 98 12:38:33,6357038 MCLauncher.exe 6080 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{a0c69a99-21c8-4671-8703-7934162fcf1d}\Attributes SUCCESS Type: REG_DWORD, Length: 4, Data: 1 98 12:38:33,6357159 MCLauncher.exe 6080 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{a0c69a99-21c8-4671-8703-7934162fcf1d}\FolderTypeID NAME NOT FOUND Length: 144 98 12:38:33,6357268 MCLauncher.exe 6080 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{a0c69a99-21c8-4671-8703-7934162fcf1d}\InitFolderHandler NAME NOT FOUND Length: 144 98 12:38:33,6357417 MCLauncher.exe 6080 RegQueryKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{a0c69a99-21c8-4671-8703-7934162fcf1d} SUCCESS Query: HandleTags, HandleTags: 0x400 98 12:38:33,6357486 MCLauncher.exe 6080 RegOpenKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{a0c69a99-21c8-4671-8703-7934162fcf1d}\PropertyBag SUCCESS Desired Access: Read 98 12:38:33,6357586 MCLauncher.exe 6080 RegCloseKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{a0c69a99-21c8-4671-8703-7934162fcf1d} SUCCESS 98 12:38:33,6357755 MCLauncher.exe 6080 RegQueryKey HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer SUCCESS Query: HandleTags, HandleTags: 0x400 98 12:38:33,6357813 MCLauncher.exe 6080 RegOpenKey HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\SessionInfo\1 SUCCESS Desired Access: Query Value 98 12:38:33,6357913 MCLauncher.exe 6080 RegQueryKey HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\SessionInfo\1 SUCCESS Query: HandleTags, HandleTags: 0x400 98 12:38:33,6357963 MCLauncher.exe 6080 RegOpenKey HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\SessionInfo\1\KnownFolders NAME NOT FOUND Desired Access: Query Value 98 12:38:33,6358038 MCLauncher.exe 6080 RegCloseKey HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\SessionInfo\1 SUCCESS 98 12:38:33,6358132 MCLauncher.exe 6080 RegOpenKey HKCU SUCCESS Desired Access: Read 98 12:38:33,6358223 MCLauncher.exe 6080 RegQueryKey HKCU SUCCESS Query: HandleTags, HandleTags: 0x0 98 12:38:33,6358273 MCLauncher.exe 6080 RegQueryKey HKCU SUCCESS Query: Name 98 12:38:33,6358348 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Microsoft\Windows\CurrentVersion\Explorer\User Shell Folders SUCCESS Desired Access: Read 98 12:38:33,6358431 MCLauncher.exe 6080 RegSetInfoKey HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\User Shell Folders SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 98 12:38:33,6358478 MCLauncher.exe 6080 RegCloseKey HKCU SUCCESS 98 12:38:33,6358525 MCLauncher.exe 6080 RegQueryValue HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\User Shell Folders\{A0C69A99-21C8-4671-8703-7934162FCF1D} NAME NOT FOUND Length: 144 98 12:38:33,6358775 MCLauncher.exe 6080 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 98 12:38:33,6358830 MCLauncher.exe 6080 RegQueryKey HKLM SUCCESS Query: Name 98 12:38:33,6358930 MCLauncher.exe 6080 RegOpenKey HKLM\Software\WOW6432Node\Microsoft\Windows NT\CurrentVersion\ProfileList\S-1-5-21-3477790013-1571897634-1299942168-1000 REPARSE Desired Access: Read 98 12:38:33,6359019 MCLauncher.exe 6080 RegOpenKey HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\ProfileList\S-1-5-21-3477790013-1571897634-1299942168-1000 SUCCESS Desired Access: Read 98 12:38:33,6359085 MCLauncher.exe 6080 RegSetInfoKey HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\ProfileList\S-1-5-21-3477790013-1571897634-1299942168-1000 SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 98 12:38:33,6359127 MCLauncher.exe 6080 RegQueryValue HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\ProfileList\S-1-5-21-3477790013-1571897634-1299942168-1000\ProfileImagePath SUCCESS Type: REG_EXPAND_SZ, Length: 28, Data: C:\Users\User 98 12:38:33,6359276 MCLauncher.exe 6080 RegQueryValue HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\ProfileList\S-1-5-21-3477790013-1571897634-1299942168-1000\ProfileImagePath SUCCESS Type: REG_EXPAND_SZ, Length: 28, Data: C:\Users\User 98 12:38:33,6359415 MCLauncher.exe 6080 RegCloseKey HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\ProfileList\S-1-5-21-3477790013-1571897634-1299942168-1000 SUCCESS 98 12:38:33,6359501 MCLauncher.exe 6080 RegCloseKey HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\User Shell Folders SUCCESS 98 12:38:33,6360822 MCLauncher.exe 6080 CreateFile C:\Users\User\Music\desktop.ini SUCCESS Desired Access: Generic Read, Disposition: Open, Options: Sequential Access, Synchronous IO Non-Alert, Non-Directory File, Attributes: n/a, ShareMode: Read, Write, Delete, AllocationSize: n/a, OpenResult: Opened 98 12:38:33,6361044 MCLauncher.exe 6080 QueryStandardInformationFile C:\Users\User\Music\desktop.ini SUCCESS AllocationSize: 504, EndOfFile: 504, NumberOfLinks: 1, DeletePending: False, Directory: False 98 12:38:33,6361149 MCLauncher.exe 6080 ReadFile C:\Users\User\Music\desktop.ini SUCCESS Offset: 0, Length: 504, Priority: Normal 98 12:38:33,6361850 MCLauncher.exe 6080 QueryBasicInformationFile C:\Users\User\Music\desktop.ini SUCCESS CreationTime: 19.07.2018 20:08:14, LastAccessTime: 19.07.2018 20:08:14, LastWriteTime: 20.07.2018 19:29:33, ChangeTime: 20.07.2018 19:29:33, FileAttributes: HSA 98 12:38:33,6361983 MCLauncher.exe 6080 CloseFile C:\Users\User\Music\desktop.ini SUCCESS 98 12:38:33,6362496 MCLauncher.exe 6080 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 98 12:38:33,6362562 MCLauncher.exe 6080 RegQueryKey HKLM SUCCESS Query: Name 98 12:38:33,6362678 MCLauncher.exe 6080 RegOpenKey HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS Desired Access: Read 98 12:38:33,6362786 MCLauncher.exe 6080 RegSetInfoKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 98 12:38:33,6362861 MCLauncher.exe 6080 RegQueryKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS Query: HandleTags, HandleTags: 0x400 98 12:38:33,6362919 MCLauncher.exe 6080 RegOpenKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{0DDD015D-B06C-45D5-8C4C-F59713854639} SUCCESS Desired Access: Read 98 12:38:33,6363022 MCLauncher.exe 6080 RegCloseKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS 98 12:38:33,6363080 MCLauncher.exe 6080 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{0ddd015d-b06c-45d5-8c4c-f59713854639}\Category SUCCESS Type: REG_DWORD, Length: 4, Data: 4 98 12:38:33,6363244 MCLauncher.exe 6080 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{0ddd015d-b06c-45d5-8c4c-f59713854639}\Name SUCCESS Type: REG_SZ, Length: 30, Data: Local Pictures 98 12:38:33,6363390 MCLauncher.exe 6080 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{0ddd015d-b06c-45d5-8c4c-f59713854639}\ParentFolder NAME NOT FOUND Length: 144 98 12:38:33,6363510 MCLauncher.exe 6080 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{0ddd015d-b06c-45d5-8c4c-f59713854639}\Description NAME NOT FOUND Length: 144 98 12:38:33,6363620 MCLauncher.exe 6080 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{0ddd015d-b06c-45d5-8c4c-f59713854639}\RelativePath SUCCESS Type: REG_SZ, Length: 18, Data: Pictures 98 12:38:33,6363748 MCLauncher.exe 6080 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{0ddd015d-b06c-45d5-8c4c-f59713854639}\ParsingName BUFFER OVERFLOW Length: 144 98 12:38:33,6363861 MCLauncher.exe 6080 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{0ddd015d-b06c-45d5-8c4c-f59713854639}\ParsingName SUCCESS Type: REG_SZ, Length: 176, Data: shell:::{20D04FE0-3AEA-1069-A2D8-08002B30309D}\::{24ad3ad4-a569-4530-98e1-ab02f9417aa8} 98 12:38:33,6363994 MCLauncher.exe 6080 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{0ddd015d-b06c-45d5-8c4c-f59713854639}\InfoTip SUCCESS Type: REG_EXPAND_SZ, Length: 84, Data: @%SystemRoot%\system32\shell32.dll,-12688 98 12:38:33,6364127 MCLauncher.exe 6080 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{0ddd015d-b06c-45d5-8c4c-f59713854639}\LocalizedName SUCCESS Type: REG_EXPAND_SZ, Length: 84, Data: @%SystemRoot%\system32\shell32.dll,-21779 98 12:38:33,6364258 MCLauncher.exe 6080 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{0ddd015d-b06c-45d5-8c4c-f59713854639}\Icon SUCCESS Type: REG_EXPAND_SZ, Length: 80, Data: %SystemRoot%\system32\imageres.dll,-113 98 12:38:33,6364435 MCLauncher.exe 6080 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{0ddd015d-b06c-45d5-8c4c-f59713854639}\Security NAME NOT FOUND Length: 144 98 12:38:33,6364546 MCLauncher.exe 6080 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{0ddd015d-b06c-45d5-8c4c-f59713854639}\StreamResource NAME NOT FOUND Length: 144 98 12:38:33,6364657 MCLauncher.exe 6080 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{0ddd015d-b06c-45d5-8c4c-f59713854639}\StreamResourceType NAME NOT FOUND Length: 144 98 12:38:33,6364762 MCLauncher.exe 6080 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{0ddd015d-b06c-45d5-8c4c-f59713854639}\LocalRedirectOnly NAME NOT FOUND Length: 144 98 12:38:33,6364867 MCLauncher.exe 6080 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{0ddd015d-b06c-45d5-8c4c-f59713854639}\Roamable NAME NOT FOUND Length: 144 98 12:38:33,6364975 MCLauncher.exe 6080 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{0ddd015d-b06c-45d5-8c4c-f59713854639}\PreCreate SUCCESS Type: REG_DWORD, Length: 4, Data: 1 98 12:38:33,6365097 MCLauncher.exe 6080 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{0ddd015d-b06c-45d5-8c4c-f59713854639}\Stream NAME NOT FOUND Length: 144 98 12:38:33,6365205 MCLauncher.exe 6080 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{0ddd015d-b06c-45d5-8c4c-f59713854639}\PublishExpandedPath NAME NOT FOUND Length: 144 98 12:38:33,6365310 MCLauncher.exe 6080 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{0ddd015d-b06c-45d5-8c4c-f59713854639}\DefinitionFlags NAME NOT FOUND Length: 144 98 12:38:33,6365419 MCLauncher.exe 6080 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{0ddd015d-b06c-45d5-8c4c-f59713854639}\Attributes SUCCESS Type: REG_DWORD, Length: 4, Data: 1 98 12:38:33,6365540 MCLauncher.exe 6080 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{0ddd015d-b06c-45d5-8c4c-f59713854639}\FolderTypeID NAME NOT FOUND Length: 144 98 12:38:33,6365646 MCLauncher.exe 6080 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{0ddd015d-b06c-45d5-8c4c-f59713854639}\InitFolderHandler NAME NOT FOUND Length: 144 98 12:38:33,6365793 MCLauncher.exe 6080 RegQueryKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{0ddd015d-b06c-45d5-8c4c-f59713854639} SUCCESS Query: HandleTags, HandleTags: 0x400 98 12:38:33,6365862 MCLauncher.exe 6080 RegOpenKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{0ddd015d-b06c-45d5-8c4c-f59713854639}\PropertyBag SUCCESS Desired Access: Read 98 12:38:33,6365959 MCLauncher.exe 6080 RegCloseKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{0ddd015d-b06c-45d5-8c4c-f59713854639} SUCCESS 98 12:38:33,6366125 MCLauncher.exe 6080 RegQueryKey HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer SUCCESS Query: HandleTags, HandleTags: 0x400 98 12:38:33,6366186 MCLauncher.exe 6080 RegOpenKey HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\SessionInfo\1 SUCCESS Desired Access: Query Value 98 12:38:33,6366283 MCLauncher.exe 6080 RegQueryKey HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\SessionInfo\1 SUCCESS Query: HandleTags, HandleTags: 0x400 98 12:38:33,6366333 MCLauncher.exe 6080 RegOpenKey HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\SessionInfo\1\KnownFolders NAME NOT FOUND Desired Access: Query Value 98 12:38:33,6366408 MCLauncher.exe 6080 RegCloseKey HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\SessionInfo\1 SUCCESS 98 12:38:33,6366502 MCLauncher.exe 6080 RegOpenKey HKCU SUCCESS Desired Access: Read 98 12:38:33,6366590 MCLauncher.exe 6080 RegQueryKey HKCU SUCCESS Query: HandleTags, HandleTags: 0x0 98 12:38:33,6366640 MCLauncher.exe 6080 RegQueryKey HKCU SUCCESS Query: Name 98 12:38:33,6366712 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Microsoft\Windows\CurrentVersion\Explorer\User Shell Folders SUCCESS Desired Access: Read 98 12:38:33,6366798 MCLauncher.exe 6080 RegSetInfoKey HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\User Shell Folders SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 98 12:38:33,6366845 MCLauncher.exe 6080 RegCloseKey HKCU SUCCESS 98 12:38:33,6366895 MCLauncher.exe 6080 RegQueryValue HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\User Shell Folders\{0DDD015D-B06C-45D5-8C4C-F59713854639} NAME NOT FOUND Length: 144 98 12:38:33,6367158 MCLauncher.exe 6080 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 98 12:38:33,6367214 MCLauncher.exe 6080 RegQueryKey HKLM SUCCESS Query: Name 98 12:38:33,6367311 MCLauncher.exe 6080 RegOpenKey HKLM\Software\WOW6432Node\Microsoft\Windows NT\CurrentVersion\ProfileList\S-1-5-21-3477790013-1571897634-1299942168-1000 REPARSE Desired Access: Read 98 12:38:33,6367402 MCLauncher.exe 6080 RegOpenKey HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\ProfileList\S-1-5-21-3477790013-1571897634-1299942168-1000 SUCCESS Desired Access: Read 98 12:38:33,6367469 MCLauncher.exe 6080 RegSetInfoKey HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\ProfileList\S-1-5-21-3477790013-1571897634-1299942168-1000 SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 98 12:38:33,6367513 MCLauncher.exe 6080 RegQueryValue HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\ProfileList\S-1-5-21-3477790013-1571897634-1299942168-1000\ProfileImagePath SUCCESS Type: REG_EXPAND_SZ, Length: 28, Data: C:\Users\User 98 12:38:33,6367660 MCLauncher.exe 6080 RegQueryValue HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\ProfileList\S-1-5-21-3477790013-1571897634-1299942168-1000\ProfileImagePath SUCCESS Type: REG_EXPAND_SZ, Length: 28, Data: C:\Users\User 98 12:38:33,6367798 MCLauncher.exe 6080 RegCloseKey HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\ProfileList\S-1-5-21-3477790013-1571897634-1299942168-1000 SUCCESS 98 12:38:33,6367882 MCLauncher.exe 6080 RegCloseKey HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\User Shell Folders SUCCESS 98 12:38:33,6369242 MCLauncher.exe 6080 CreateFile C:\Users\User\Pictures\desktop.ini SUCCESS Desired Access: Generic Read, Disposition: Open, Options: Sequential Access, Synchronous IO Non-Alert, Non-Directory File, Attributes: n/a, ShareMode: Read, Write, Delete, AllocationSize: n/a, OpenResult: Opened 98 12:38:33,6369475 MCLauncher.exe 6080 QueryStandardInformationFile C:\Users\User\Pictures\desktop.ini SUCCESS AllocationSize: 504, EndOfFile: 504, NumberOfLinks: 1, DeletePending: False, Directory: False 98 12:38:33,6369580 MCLauncher.exe 6080 ReadFile C:\Users\User\Pictures\desktop.ini SUCCESS Offset: 0, Length: 504, Priority: Normal 98 12:38:33,6370034 MCLauncher.exe 6080 QueryBasicInformationFile C:\Users\User\Pictures\desktop.ini SUCCESS CreationTime: 19.07.2018 20:08:13, LastAccessTime: 19.07.2018 20:08:13, LastWriteTime: 20.07.2018 19:29:33, ChangeTime: 20.07.2018 19:29:33, FileAttributes: HSA 98 12:38:33,6370134 MCLauncher.exe 6080 CloseFile C:\Users\User\Pictures\desktop.ini SUCCESS 98 12:38:33,6370647 MCLauncher.exe 6080 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 98 12:38:33,6370710 MCLauncher.exe 6080 RegQueryKey HKLM SUCCESS Query: Name 98 12:38:33,6370827 MCLauncher.exe 6080 RegOpenKey HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS Desired Access: Read 98 12:38:33,6370935 MCLauncher.exe 6080 RegSetInfoKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 98 12:38:33,6371010 MCLauncher.exe 6080 RegQueryKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS Query: HandleTags, HandleTags: 0x400 98 12:38:33,6371068 MCLauncher.exe 6080 RegOpenKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{35286A68-3C57-41A1-BBB1-0EAE73D76C95} SUCCESS Desired Access: Read 98 12:38:33,6371292 MCLauncher.exe 6080 RegCloseKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS 98 12:38:33,6371417 MCLauncher.exe 6080 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{35286a68-3c57-41a1-bbb1-0eae73d76c95}\Category SUCCESS Type: REG_DWORD, Length: 4, Data: 4 98 12:38:33,6371650 MCLauncher.exe 6080 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{35286a68-3c57-41a1-bbb1-0eae73d76c95}\Name SUCCESS Type: REG_SZ, Length: 26, Data: Local Videos 98 12:38:33,6371813 MCLauncher.exe 6080 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{35286a68-3c57-41a1-bbb1-0eae73d76c95}\ParentFolder NAME NOT FOUND Length: 144 98 12:38:33,6371935 MCLauncher.exe 6080 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{35286a68-3c57-41a1-bbb1-0eae73d76c95}\Description NAME NOT FOUND Length: 144 98 12:38:33,6372046 MCLauncher.exe 6080 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{35286a68-3c57-41a1-bbb1-0eae73d76c95}\RelativePath SUCCESS Type: REG_SZ, Length: 14, Data: Videos 98 12:38:33,6372179 MCLauncher.exe 6080 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{35286a68-3c57-41a1-bbb1-0eae73d76c95}\ParsingName BUFFER OVERFLOW Length: 144 98 12:38:33,6372350 MCLauncher.exe 6080 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{35286a68-3c57-41a1-bbb1-0eae73d76c95}\ParsingName SUCCESS Type: REG_SZ, Length: 176, Data: shell:::{20D04FE0-3AEA-1069-A2D8-08002B30309D}\::{f86fa3ab-70d2-4fc7-9c99-fcbf05467f3a} 98 12:38:33,6372483 MCLauncher.exe 6080 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{35286a68-3c57-41a1-bbb1-0eae73d76c95}\InfoTip SUCCESS Type: REG_EXPAND_SZ, Length: 84, Data: @%SystemRoot%\system32\shell32.dll,-12690 98 12:38:33,6372619 MCLauncher.exe 6080 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{35286a68-3c57-41a1-bbb1-0eae73d76c95}\LocalizedName SUCCESS Type: REG_EXPAND_SZ, Length: 84, Data: @%SystemRoot%\system32\shell32.dll,-21791 98 12:38:33,6372752 MCLauncher.exe 6080 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{35286a68-3c57-41a1-bbb1-0eae73d76c95}\Icon SUCCESS Type: REG_EXPAND_SZ, Length: 80, Data: %SystemRoot%\system32\imageres.dll,-189 98 12:38:33,6372880 MCLauncher.exe 6080 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{35286a68-3c57-41a1-bbb1-0eae73d76c95}\Security NAME NOT FOUND Length: 144 98 12:38:33,6372993 MCLauncher.exe 6080 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{35286a68-3c57-41a1-bbb1-0eae73d76c95}\StreamResource NAME NOT FOUND Length: 144 98 12:38:33,6373099 MCLauncher.exe 6080 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{35286a68-3c57-41a1-bbb1-0eae73d76c95}\StreamResourceType NAME NOT FOUND Length: 144 98 12:38:33,6373207 MCLauncher.exe 6080 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{35286a68-3c57-41a1-bbb1-0eae73d76c95}\LocalRedirectOnly NAME NOT FOUND Length: 144 98 12:38:33,6373315 MCLauncher.exe 6080 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{35286a68-3c57-41a1-bbb1-0eae73d76c95}\Roamable NAME NOT FOUND Length: 144 98 12:38:33,6373423 MCLauncher.exe 6080 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{35286a68-3c57-41a1-bbb1-0eae73d76c95}\PreCreate SUCCESS Type: REG_DWORD, Length: 4, Data: 1 98 12:38:33,6373545 MCLauncher.exe 6080 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{35286a68-3c57-41a1-bbb1-0eae73d76c95}\Stream NAME NOT FOUND Length: 144 98 12:38:33,6373653 MCLauncher.exe 6080 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{35286a68-3c57-41a1-bbb1-0eae73d76c95}\PublishExpandedPath NAME NOT FOUND Length: 144 98 12:38:33,6373761 MCLauncher.exe 6080 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{35286a68-3c57-41a1-bbb1-0eae73d76c95}\DefinitionFlags NAME NOT FOUND Length: 144 98 12:38:33,6373869 MCLauncher.exe 6080 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{35286a68-3c57-41a1-bbb1-0eae73d76c95}\Attributes SUCCESS Type: REG_DWORD, Length: 4, Data: 1 98 12:38:33,6373985 MCLauncher.exe 6080 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{35286a68-3c57-41a1-bbb1-0eae73d76c95}\FolderTypeID NAME NOT FOUND Length: 144 98 12:38:33,6374151 MCLauncher.exe 6080 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{35286a68-3c57-41a1-bbb1-0eae73d76c95}\InitFolderHandler NAME NOT FOUND Length: 144 98 12:38:33,6374301 MCLauncher.exe 6080 RegQueryKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{35286a68-3c57-41a1-bbb1-0eae73d76c95} SUCCESS Query: HandleTags, HandleTags: 0x400 98 12:38:33,6374370 MCLauncher.exe 6080 RegOpenKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{35286a68-3c57-41a1-bbb1-0eae73d76c95}\PropertyBag SUCCESS Desired Access: Read 98 12:38:33,6374481 MCLauncher.exe 6080 RegCloseKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{35286a68-3c57-41a1-bbb1-0eae73d76c95} SUCCESS 98 12:38:33,6374653 MCLauncher.exe 6080 RegQueryKey HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer SUCCESS Query: HandleTags, HandleTags: 0x400 98 12:38:33,6374711 MCLauncher.exe 6080 RegOpenKey HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\SessionInfo\1 SUCCESS Desired Access: Query Value 98 12:38:33,6374808 MCLauncher.exe 6080 RegQueryKey HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\SessionInfo\1 SUCCESS Query: HandleTags, HandleTags: 0x400 98 12:38:33,6374861 MCLauncher.exe 6080 RegOpenKey HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\SessionInfo\1\KnownFolders NAME NOT FOUND Desired Access: Query Value 98 12:38:33,6374938 MCLauncher.exe 6080 RegCloseKey HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\SessionInfo\1 SUCCESS 98 12:38:33,6375032 MCLauncher.exe 6080 RegOpenKey HKCU SUCCESS Desired Access: Read 98 12:38:33,6375127 MCLauncher.exe 6080 RegQueryKey HKCU SUCCESS Query: HandleTags, HandleTags: 0x0 98 12:38:33,6375174 MCLauncher.exe 6080 RegQueryKey HKCU SUCCESS Query: Name 98 12:38:33,6375251 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Microsoft\Windows\CurrentVersion\Explorer\User Shell Folders SUCCESS Desired Access: Read 98 12:38:33,6375337 MCLauncher.exe 6080 RegSetInfoKey HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\User Shell Folders SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 98 12:38:33,6375387 MCLauncher.exe 6080 RegCloseKey HKCU SUCCESS 98 12:38:33,6375434 MCLauncher.exe 6080 RegQueryValue HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\User Shell Folders\{35286A68-3C57-41A1-BBB1-0EAE73D76C95} NAME NOT FOUND Length: 144 98 12:38:33,6375689 MCLauncher.exe 6080 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 98 12:38:33,6375742 MCLauncher.exe 6080 RegQueryKey HKLM SUCCESS Query: Name 98 12:38:33,6375841 MCLauncher.exe 6080 RegOpenKey HKLM\Software\WOW6432Node\Microsoft\Windows NT\CurrentVersion\ProfileList\S-1-5-21-3477790013-1571897634-1299942168-1000 REPARSE Desired Access: Read 98 12:38:33,6375930 MCLauncher.exe 6080 RegOpenKey HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\ProfileList\S-1-5-21-3477790013-1571897634-1299942168-1000 SUCCESS Desired Access: Read 98 12:38:33,6375999 MCLauncher.exe 6080 RegSetInfoKey HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\ProfileList\S-1-5-21-3477790013-1571897634-1299942168-1000 SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 98 12:38:33,6376046 MCLauncher.exe 6080 RegQueryValue HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\ProfileList\S-1-5-21-3477790013-1571897634-1299942168-1000\ProfileImagePath SUCCESS Type: REG_EXPAND_SZ, Length: 28, Data: C:\Users\User 98 12:38:33,6376188 MCLauncher.exe 6080 RegQueryValue HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\ProfileList\S-1-5-21-3477790013-1571897634-1299942168-1000\ProfileImagePath SUCCESS Type: REG_EXPAND_SZ, Length: 28, Data: C:\Users\User 98 12:38:33,6376326 MCLauncher.exe 6080 RegCloseKey HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\ProfileList\S-1-5-21-3477790013-1571897634-1299942168-1000 SUCCESS 98 12:38:33,6376420 MCLauncher.exe 6080 RegCloseKey HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\User Shell Folders SUCCESS 98 12:38:33,6377756 MCLauncher.exe 6080 CreateFile C:\Users\User\Videos\desktop.ini SUCCESS Desired Access: Generic Read, Disposition: Open, Options: Sequential Access, Synchronous IO Non-Alert, Non-Directory File, Attributes: n/a, ShareMode: Read, Write, Delete, AllocationSize: n/a, OpenResult: Opened 98 12:38:33,6377980 MCLauncher.exe 6080 QueryStandardInformationFile C:\Users\User\Videos\desktop.ini SUCCESS AllocationSize: 504, EndOfFile: 504, NumberOfLinks: 1, DeletePending: False, Directory: False 98 12:38:33,6378086 MCLauncher.exe 6080 ReadFile C:\Users\User\Videos\desktop.ini SUCCESS Offset: 0, Length: 504, Priority: Normal 98 12:38:33,6378529 MCLauncher.exe 6080 QueryBasicInformationFile C:\Users\User\Videos\desktop.ini SUCCESS CreationTime: 19.07.2018 20:08:09, LastAccessTime: 19.07.2018 20:08:09, LastWriteTime: 20.07.2018 19:29:33, ChangeTime: 20.07.2018 19:29:33, FileAttributes: HSA 98 12:38:33,6378629 MCLauncher.exe 6080 CloseFile C:\Users\User\Videos\desktop.ini SUCCESS 98 12:38:33,6379116 MCLauncher.exe 6080 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 98 12:38:33,6379180 MCLauncher.exe 6080 RegQueryKey HKLM SUCCESS Query: Name 98 12:38:33,6379296 MCLauncher.exe 6080 RegOpenKey HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS Desired Access: Read 98 12:38:33,6379407 MCLauncher.exe 6080 RegSetInfoKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 98 12:38:33,6379482 MCLauncher.exe 6080 RegQueryKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS Query: HandleTags, HandleTags: 0x400 98 12:38:33,6379540 MCLauncher.exe 6080 RegOpenKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{7D83EE9B-2244-4E70-B1F5-5393042AF1E4} SUCCESS Desired Access: Read 98 12:38:33,6379643 MCLauncher.exe 6080 RegCloseKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS 98 12:38:33,6379698 MCLauncher.exe 6080 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{7d83ee9b-2244-4e70-b1f5-5393042af1e4}\Category SUCCESS Type: REG_DWORD, Length: 4, Data: 4 98 12:38:33,6379859 MCLauncher.exe 6080 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{7d83ee9b-2244-4e70-b1f5-5393042af1e4}\Name SUCCESS Type: REG_SZ, Length: 32, Data: Local Downloads 98 12:38:33,6380006 MCLauncher.exe 6080 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{7d83ee9b-2244-4e70-b1f5-5393042af1e4}\ParentFolder NAME NOT FOUND Length: 144 98 12:38:33,6380125 MCLauncher.exe 6080 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{7d83ee9b-2244-4e70-b1f5-5393042af1e4}\Description NAME NOT FOUND Length: 144 98 12:38:33,6380235 MCLauncher.exe 6080 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{7d83ee9b-2244-4e70-b1f5-5393042af1e4}\RelativePath SUCCESS Type: REG_SZ, Length: 20, Data: Downloads 98 12:38:33,6380366 MCLauncher.exe 6080 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{7d83ee9b-2244-4e70-b1f5-5393042af1e4}\ParsingName BUFFER OVERFLOW Length: 144 98 12:38:33,6380477 MCLauncher.exe 6080 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{7d83ee9b-2244-4e70-b1f5-5393042af1e4}\ParsingName SUCCESS Type: REG_SZ, Length: 176, Data: shell:::{20D04FE0-3AEA-1069-A2D8-08002B30309D}\::{088e3905-0323-4b02-9826-5d99428e115f} 98 12:38:33,6380607 MCLauncher.exe 6080 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{7d83ee9b-2244-4e70-b1f5-5393042af1e4}\InfoTip NAME NOT FOUND Length: 144 98 12:38:33,6380718 MCLauncher.exe 6080 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{7d83ee9b-2244-4e70-b1f5-5393042af1e4}\LocalizedName SUCCESS Type: REG_EXPAND_SZ, Length: 84, Data: @%SystemRoot%\system32\shell32.dll,-21798 98 12:38:33,6380851 MCLauncher.exe 6080 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{7d83ee9b-2244-4e70-b1f5-5393042af1e4}\Icon SUCCESS Type: REG_EXPAND_SZ, Length: 80, Data: %SystemRoot%\system32\imageres.dll,-184 98 12:38:33,6381111 MCLauncher.exe 6080 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{7d83ee9b-2244-4e70-b1f5-5393042af1e4}\Security NAME NOT FOUND Length: 144 98 12:38:33,6381238 MCLauncher.exe 6080 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{7d83ee9b-2244-4e70-b1f5-5393042af1e4}\StreamResource NAME NOT FOUND Length: 144 98 12:38:33,6381349 MCLauncher.exe 6080 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{7d83ee9b-2244-4e70-b1f5-5393042af1e4}\StreamResourceType NAME NOT FOUND Length: 144 98 12:38:33,6381460 MCLauncher.exe 6080 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{7d83ee9b-2244-4e70-b1f5-5393042af1e4}\LocalRedirectOnly NAME NOT FOUND Length: 144 98 12:38:33,6381568 MCLauncher.exe 6080 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{7d83ee9b-2244-4e70-b1f5-5393042af1e4}\Roamable NAME NOT FOUND Length: 144 98 12:38:33,6381673 MCLauncher.exe 6080 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{7d83ee9b-2244-4e70-b1f5-5393042af1e4}\PreCreate SUCCESS Type: REG_DWORD, Length: 4, Data: 1 98 12:38:33,6381795 MCLauncher.exe 6080 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{7d83ee9b-2244-4e70-b1f5-5393042af1e4}\Stream NAME NOT FOUND Length: 144 98 12:38:33,6381964 MCLauncher.exe 6080 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{7d83ee9b-2244-4e70-b1f5-5393042af1e4}\PublishExpandedPath NAME NOT FOUND Length: 144 98 12:38:33,6382078 MCLauncher.exe 6080 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{7d83ee9b-2244-4e70-b1f5-5393042af1e4}\DefinitionFlags NAME NOT FOUND Length: 144 98 12:38:33,6382183 MCLauncher.exe 6080 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{7d83ee9b-2244-4e70-b1f5-5393042af1e4}\Attributes SUCCESS Type: REG_DWORD, Length: 4, Data: 1 98 12:38:33,6382302 MCLauncher.exe 6080 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{7d83ee9b-2244-4e70-b1f5-5393042af1e4}\FolderTypeID NAME NOT FOUND Length: 144 98 12:38:33,6382410 MCLauncher.exe 6080 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{7d83ee9b-2244-4e70-b1f5-5393042af1e4}\InitFolderHandler NAME NOT FOUND Length: 144 98 12:38:33,6382560 MCLauncher.exe 6080 RegQueryKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{7d83ee9b-2244-4e70-b1f5-5393042af1e4} SUCCESS Query: HandleTags, HandleTags: 0x400 98 12:38:33,6382629 MCLauncher.exe 6080 RegOpenKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{7d83ee9b-2244-4e70-b1f5-5393042af1e4}\PropertyBag SUCCESS Desired Access: Read 98 12:38:33,6382743 MCLauncher.exe 6080 RegCloseKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{7d83ee9b-2244-4e70-b1f5-5393042af1e4} SUCCESS 98 12:38:33,6382912 MCLauncher.exe 6080 RegQueryKey HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer SUCCESS Query: HandleTags, HandleTags: 0x400 98 12:38:33,6382970 MCLauncher.exe 6080 RegOpenKey HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\SessionInfo\1 SUCCESS Desired Access: Query Value 98 12:38:33,6383064 MCLauncher.exe 6080 RegQueryKey HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\SessionInfo\1 SUCCESS Query: HandleTags, HandleTags: 0x400 98 12:38:33,6383117 MCLauncher.exe 6080 RegOpenKey HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\SessionInfo\1\KnownFolders NAME NOT FOUND Desired Access: Query Value 98 12:38:33,6383192 MCLauncher.exe 6080 RegCloseKey HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\SessionInfo\1 SUCCESS 98 12:38:33,6383283 MCLauncher.exe 6080 RegOpenKey HKCU SUCCESS Desired Access: Read 98 12:38:33,6383375 MCLauncher.exe 6080 RegQueryKey HKCU SUCCESS Query: HandleTags, HandleTags: 0x0 98 12:38:33,6383424 MCLauncher.exe 6080 RegQueryKey HKCU SUCCESS Query: Name 98 12:38:33,6383499 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Microsoft\Windows\CurrentVersion\Explorer\User Shell Folders SUCCESS Desired Access: Read 98 12:38:33,6383585 MCLauncher.exe 6080 RegSetInfoKey HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\User Shell Folders SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 98 12:38:33,6383629 MCLauncher.exe 6080 RegCloseKey HKCU SUCCESS 98 12:38:33,6383682 MCLauncher.exe 6080 RegQueryValue HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\User Shell Folders\{7D83EE9B-2244-4E70-B1F5-5393042AF1E4} NAME NOT FOUND Length: 144 98 12:38:33,6383942 MCLauncher.exe 6080 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 98 12:38:33,6383998 MCLauncher.exe 6080 RegQueryKey HKLM SUCCESS Query: Name 98 12:38:33,6384098 MCLauncher.exe 6080 RegOpenKey HKLM\Software\WOW6432Node\Microsoft\Windows NT\CurrentVersion\ProfileList\S-1-5-21-3477790013-1571897634-1299942168-1000 REPARSE Desired Access: Read 98 12:38:33,6384184 MCLauncher.exe 6080 RegOpenKey HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\ProfileList\S-1-5-21-3477790013-1571897634-1299942168-1000 SUCCESS Desired Access: Read 98 12:38:33,6384250 MCLauncher.exe 6080 RegSetInfoKey HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\ProfileList\S-1-5-21-3477790013-1571897634-1299942168-1000 SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 98 12:38:33,6384294 MCLauncher.exe 6080 RegQueryValue HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\ProfileList\S-1-5-21-3477790013-1571897634-1299942168-1000\ProfileImagePath SUCCESS Type: REG_EXPAND_SZ, Length: 28, Data: C:\Users\User 98 12:38:33,6384441 MCLauncher.exe 6080 RegQueryValue HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\ProfileList\S-1-5-21-3477790013-1571897634-1299942168-1000\ProfileImagePath SUCCESS Type: REG_EXPAND_SZ, Length: 28, Data: C:\Users\User 98 12:38:33,6384582 MCLauncher.exe 6080 RegCloseKey HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\ProfileList\S-1-5-21-3477790013-1571897634-1299942168-1000 SUCCESS 98 12:38:33,6384666 MCLauncher.exe 6080 RegCloseKey HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\User Shell Folders SUCCESS 98 12:38:33,6386020 MCLauncher.exe 6080 CreateFile C:\Users\User\Downloads\desktop.ini SUCCESS Desired Access: Generic Read, Disposition: Open, Options: Sequential Access, Synchronous IO Non-Alert, Non-Directory File, Attributes: n/a, ShareMode: Read, Write, Delete, AllocationSize: n/a, OpenResult: Opened 98 12:38:33,6386248 MCLauncher.exe 6080 QueryStandardInformationFile C:\Users\User\Downloads\desktop.ini SUCCESS AllocationSize: 288, EndOfFile: 282, NumberOfLinks: 1, DeletePending: False, Directory: False 98 12:38:33,6386350 MCLauncher.exe 6080 ReadFile C:\Users\User\Downloads\desktop.ini SUCCESS Offset: 0, Length: 282, Priority: Normal 98 12:38:33,6386760 MCLauncher.exe 6080 QueryBasicInformationFile C:\Users\User\Downloads\desktop.ini SUCCESS CreationTime: 19.07.2018 20:08:15, LastAccessTime: 19.07.2018 20:08:15, LastWriteTime: 20.07.2018 19:29:33, ChangeTime: 20.07.2018 19:29:33, FileAttributes: HSA 98 12:38:33,6386860 MCLauncher.exe 6080 CloseFile C:\Users\User\Downloads\desktop.ini SUCCESS 98 12:38:33,6387389 MCLauncher.exe 6080 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 98 12:38:33,6387453 MCLauncher.exe 6080 RegQueryKey HKLM SUCCESS Query: Name 98 12:38:33,6387569 MCLauncher.exe 6080 RegOpenKey HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS Desired Access: Read 98 12:38:33,6387680 MCLauncher.exe 6080 RegSetInfoKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 98 12:38:33,6387755 MCLauncher.exe 6080 RegQueryKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS Query: HandleTags, HandleTags: 0x400 98 12:38:33,6387813 MCLauncher.exe 6080 RegOpenKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{A52BBA46-E9E1-435F-B3D9-28DAA648C0F6} SUCCESS Desired Access: Read 98 12:38:33,6387907 MCLauncher.exe 6080 RegCloseKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS 98 12:38:33,6387960 MCLauncher.exe 6080 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{A52BBA46-E9E1-435f-B3D9-28DAA648C0F6}\Category SUCCESS Type: REG_DWORD, Length: 4, Data: 4 98 12:38:33,6388123 MCLauncher.exe 6080 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{A52BBA46-E9E1-435f-B3D9-28DAA648C0F6}\Name SUCCESS Type: REG_SZ, Length: 18, Data: OneDrive 98 12:38:33,6388265 MCLauncher.exe 6080 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{A52BBA46-E9E1-435f-B3D9-28DAA648C0F6}\ParentFolder SUCCESS Type: REG_SZ, Length: 78, Data: {5E6C858F-0E22-4760-9AFE-EA3317B67173} 98 12:38:33,6388398 MCLauncher.exe 6080 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{A52BBA46-E9E1-435f-B3D9-28DAA648C0F6}\Description NAME NOT FOUND Length: 144 98 12:38:33,6388511 MCLauncher.exe 6080 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{A52BBA46-E9E1-435f-B3D9-28DAA648C0F6}\RelativePath SUCCESS Type: REG_SZ, Length: 18, Data: OneDrive 98 12:38:33,6388639 MCLauncher.exe 6080 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{A52BBA46-E9E1-435f-B3D9-28DAA648C0F6}\ParsingName SUCCESS Type: REG_SZ, Length: 94, Data: shell:::{018D5C66-4533-4307-9B53-224DE2ED1FE6} 98 12:38:33,6388774 MCLauncher.exe 6080 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{A52BBA46-E9E1-435f-B3D9-28DAA648C0F6}\InfoTip NAME NOT FOUND Length: 144 98 12:38:33,6388885 MCLauncher.exe 6080 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{A52BBA46-E9E1-435f-B3D9-28DAA648C0F6}\LocalizedName SUCCESS Type: REG_EXPAND_SZ, Length: 98, Data: @%SystemRoot%\System32\SettingSyncCore.dll,-1024 98 12:38:33,6389015 MCLauncher.exe 6080 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{A52BBA46-E9E1-435f-B3D9-28DAA648C0F6}\Icon SUCCESS Type: REG_EXPAND_SZ, Length: 82, Data: %SystemRoot%\system32\imageres.dll,-1040 98 12:38:33,6389146 MCLauncher.exe 6080 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{A52BBA46-E9E1-435f-B3D9-28DAA648C0F6}\Security NAME NOT FOUND Length: 144 98 12:38:33,6389256 MCLauncher.exe 6080 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{A52BBA46-E9E1-435f-B3D9-28DAA648C0F6}\StreamResource NAME NOT FOUND Length: 144 98 12:38:33,6389364 MCLauncher.exe 6080 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{A52BBA46-E9E1-435f-B3D9-28DAA648C0F6}\StreamResourceType NAME NOT FOUND Length: 144 98 12:38:33,6389473 MCLauncher.exe 6080 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{A52BBA46-E9E1-435f-B3D9-28DAA648C0F6}\LocalRedirectOnly SUCCESS Type: REG_DWORD, Length: 4, Data: 1 98 12:38:33,6389594 MCLauncher.exe 6080 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{A52BBA46-E9E1-435f-B3D9-28DAA648C0F6}\Roamable NAME NOT FOUND Length: 144 98 12:38:33,6389702 MCLauncher.exe 6080 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{A52BBA46-E9E1-435f-B3D9-28DAA648C0F6}\PreCreate NAME NOT FOUND Length: 144 98 12:38:33,6389811 MCLauncher.exe 6080 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{A52BBA46-E9E1-435f-B3D9-28DAA648C0F6}\Stream NAME NOT FOUND Length: 144 98 12:38:33,6389916 MCLauncher.exe 6080 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{A52BBA46-E9E1-435f-B3D9-28DAA648C0F6}\PublishExpandedPath NAME NOT FOUND Length: 144 98 12:38:33,6390027 MCLauncher.exe 6080 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{A52BBA46-E9E1-435f-B3D9-28DAA648C0F6}\DefinitionFlags SUCCESS Type: REG_DWORD, Length: 4, Data: 64 98 12:38:33,6390143 MCLauncher.exe 6080 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{A52BBA46-E9E1-435f-B3D9-28DAA648C0F6}\Attributes SUCCESS Type: REG_DWORD, Length: 4, Data: 1 98 12:38:33,6390265 MCLauncher.exe 6080 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{A52BBA46-E9E1-435f-B3D9-28DAA648C0F6}\FolderTypeID NAME NOT FOUND Length: 144 98 12:38:33,6390373 MCLauncher.exe 6080 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{A52BBA46-E9E1-435f-B3D9-28DAA648C0F6}\InitFolderHandler NAME NOT FOUND Length: 144 98 12:38:33,6390517 MCLauncher.exe 6080 RegQueryKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{A52BBA46-E9E1-435f-B3D9-28DAA648C0F6} SUCCESS Query: HandleTags, HandleTags: 0x400 98 12:38:33,6390581 MCLauncher.exe 6080 RegOpenKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{A52BBA46-E9E1-435f-B3D9-28DAA648C0F6}\PropertyBag NAME NOT FOUND Desired Access: Read 98 12:38:33,6390678 MCLauncher.exe 6080 RegCloseKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{A52BBA46-E9E1-435f-B3D9-28DAA648C0F6} SUCCESS 98 12:38:33,6391035 MCLauncher.exe 6080 RegQueryKey HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer SUCCESS Query: HandleTags, HandleTags: 0x400 98 12:38:33,6391102 MCLauncher.exe 6080 RegOpenKey HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\SessionInfo\1 SUCCESS Desired Access: Query Value 98 12:38:33,6391207 MCLauncher.exe 6080 RegQueryKey HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\SessionInfo\1 SUCCESS Query: HandleTags, HandleTags: 0x400 98 12:38:33,6391257 MCLauncher.exe 6080 RegOpenKey HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\SessionInfo\1\KnownFolders NAME NOT FOUND Desired Access: Query Value 98 12:38:33,6391332 MCLauncher.exe 6080 RegCloseKey HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\SessionInfo\1 SUCCESS 98 12:38:33,6391429 MCLauncher.exe 6080 RegOpenKey HKCU SUCCESS Desired Access: Read 98 12:38:33,6391520 MCLauncher.exe 6080 RegQueryKey HKCU SUCCESS Query: HandleTags, HandleTags: 0x0 98 12:38:33,6391567 MCLauncher.exe 6080 RegQueryKey HKCU SUCCESS Query: Name 98 12:38:33,6391642 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Microsoft\Windows\CurrentVersion\Explorer\User Shell Folders SUCCESS Desired Access: Read 98 12:38:33,6391725 MCLauncher.exe 6080 RegSetInfoKey HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\User Shell Folders SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 98 12:38:33,6391772 MCLauncher.exe 6080 RegCloseKey HKCU SUCCESS 98 12:38:33,6391822 MCLauncher.exe 6080 RegQueryValue HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\User Shell Folders\{A52BBA46-E9E1-435F-B3D9-28DAA648C0F6} NAME NOT FOUND Length: 144 98 12:38:33,6392082 MCLauncher.exe 6080 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 98 12:38:33,6392138 MCLauncher.exe 6080 RegQueryKey HKLM SUCCESS Query: Name 98 12:38:33,6392235 MCLauncher.exe 6080 RegOpenKey HKLM\Software\WOW6432Node\Microsoft\Windows NT\CurrentVersion\ProfileList\S-1-5-21-3477790013-1571897634-1299942168-1000 REPARSE Desired Access: Read 98 12:38:33,6392323 MCLauncher.exe 6080 RegOpenKey HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\ProfileList\S-1-5-21-3477790013-1571897634-1299942168-1000 SUCCESS Desired Access: Read 98 12:38:33,6392387 MCLauncher.exe 6080 RegSetInfoKey HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\ProfileList\S-1-5-21-3477790013-1571897634-1299942168-1000 SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 98 12:38:33,6392431 MCLauncher.exe 6080 RegQueryValue HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\ProfileList\S-1-5-21-3477790013-1571897634-1299942168-1000\ProfileImagePath SUCCESS Type: REG_EXPAND_SZ, Length: 28, Data: C:\Users\User 98 12:38:33,6392576 MCLauncher.exe 6080 RegQueryValue HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\ProfileList\S-1-5-21-3477790013-1571897634-1299942168-1000\ProfileImagePath SUCCESS Type: REG_EXPAND_SZ, Length: 28, Data: C:\Users\User 98 12:38:33,6392717 MCLauncher.exe 6080 RegCloseKey HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\ProfileList\S-1-5-21-3477790013-1571897634-1299942168-1000 SUCCESS 98 12:38:33,6392800 MCLauncher.exe 6080 RegCloseKey HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\User Shell Folders SUCCESS 98 12:38:33,6394080 MCLauncher.exe 6080 CreateFile C:\Users\User\OneDrive\desktop.ini SUCCESS Desired Access: Generic Read, Disposition: Open, Options: Sequential Access, Synchronous IO Non-Alert, Non-Directory File, Attributes: n/a, ShareMode: Read, Write, Delete, AllocationSize: n/a, OpenResult: Opened 98 12:38:33,6394304 MCLauncher.exe 6080 QueryStandardInformationFile C:\Users\User\OneDrive\desktop.ini SUCCESS AllocationSize: 96, EndOfFile: 95, NumberOfLinks: 1, DeletePending: False, Directory: False 98 12:38:33,6394404 MCLauncher.exe 6080 ReadFile C:\Users\User\OneDrive\desktop.ini SUCCESS Offset: 0, Length: 95, Priority: Normal 98 12:38:33,6394792 MCLauncher.exe 6080 QueryBasicInformationFile C:\Users\User\OneDrive\desktop.ini SUCCESS CreationTime: 19.07.2018 20:26:50, LastAccessTime: 19.07.2018 20:26:50, LastWriteTime: 23.08.2018 20:16:07, ChangeTime: 23.08.2018 20:16:07, FileAttributes: HS 98 12:38:33,6394892 MCLauncher.exe 6080 CloseFile C:\Users\User\OneDrive\desktop.ini SUCCESS 98 12:38:33,6395390 MCLauncher.exe 6080 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 98 12:38:33,6395457 MCLauncher.exe 6080 RegQueryKey HKLM SUCCESS Query: Name 98 12:38:33,6395571 MCLauncher.exe 6080 RegOpenKey HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS Desired Access: Read 98 12:38:33,6395679 MCLauncher.exe 6080 RegSetInfoKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 98 12:38:33,6395751 MCLauncher.exe 6080 RegQueryKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS Query: HandleTags, HandleTags: 0x400 98 12:38:33,6395809 MCLauncher.exe 6080 RegOpenKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{0AC0837C-BBF8-452A-850D-79D08E667CA7} SUCCESS Desired Access: Read 98 12:38:33,6395903 MCLauncher.exe 6080 RegCloseKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS 98 12:38:33,6395958 MCLauncher.exe 6080 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{0AC0837C-BBF8-452A-850D-79D08E667CA7}\Category SUCCESS Type: REG_DWORD, Length: 4, Data: 1 98 12:38:33,6396116 MCLauncher.exe 6080 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{0AC0837C-BBF8-452A-850D-79D08E667CA7}\Name SUCCESS Type: REG_SZ, Length: 34, Data: MyComputerFolder 98 12:38:33,6396258 MCLauncher.exe 6080 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{0AC0837C-BBF8-452A-850D-79D08E667CA7}\ParentFolder NAME NOT FOUND Length: 144 98 12:38:33,6396377 MCLauncher.exe 6080 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{0AC0837C-BBF8-452A-850D-79D08E667CA7}\Description NAME NOT FOUND Length: 144 98 12:38:33,6396488 MCLauncher.exe 6080 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{0AC0837C-BBF8-452A-850D-79D08E667CA7}\RelativePath NAME NOT FOUND Length: 144 98 12:38:33,6396596 MCLauncher.exe 6080 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{0AC0837C-BBF8-452A-850D-79D08E667CA7}\ParsingName SUCCESS Type: REG_SZ, Length: 82, Data: ::{20D04FE0-3AEA-1069-A2D8-08002B30309D} 98 12:38:33,6396723 MCLauncher.exe 6080 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{0AC0837C-BBF8-452A-850D-79D08E667CA7}\InfoTip NAME NOT FOUND Length: 144 98 12:38:33,6396834 MCLauncher.exe 6080 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{0AC0837C-BBF8-452A-850D-79D08E667CA7}\LocalizedName NAME NOT FOUND Length: 144 98 12:38:33,6396939 MCLauncher.exe 6080 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{0AC0837C-BBF8-452A-850D-79D08E667CA7}\Icon NAME NOT FOUND Length: 144 98 12:38:33,6397047 MCLauncher.exe 6080 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{0AC0837C-BBF8-452A-850D-79D08E667CA7}\Security NAME NOT FOUND Length: 144 98 12:38:33,6397153 MCLauncher.exe 6080 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{0AC0837C-BBF8-452A-850D-79D08E667CA7}\StreamResource NAME NOT FOUND Length: 144 98 12:38:33,6397261 MCLauncher.exe 6080 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{0AC0837C-BBF8-452A-850D-79D08E667CA7}\StreamResourceType NAME NOT FOUND Length: 144 98 12:38:33,6397366 MCLauncher.exe 6080 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{0AC0837C-BBF8-452A-850D-79D08E667CA7}\LocalRedirectOnly NAME NOT FOUND Length: 144 98 12:38:33,6397471 MCLauncher.exe 6080 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{0AC0837C-BBF8-452A-850D-79D08E667CA7}\Roamable NAME NOT FOUND Length: 144 98 12:38:33,6397579 MCLauncher.exe 6080 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{0AC0837C-BBF8-452A-850D-79D08E667CA7}\PreCreate NAME NOT FOUND Length: 144 98 12:38:33,6439473 MCLauncher.exe 6080 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{0AC0837C-BBF8-452A-850D-79D08E667CA7}\Stream NAME NOT FOUND Length: 144 98 12:38:33,6439642 MCLauncher.exe 6080 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{0AC0837C-BBF8-452A-850D-79D08E667CA7}\PublishExpandedPath NAME NOT FOUND Length: 144 98 12:38:33,6439886 MCLauncher.exe 6080 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{0AC0837C-BBF8-452A-850D-79D08E667CA7}\DefinitionFlags NAME NOT FOUND Length: 144 98 12:38:33,6440091 MCLauncher.exe 6080 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{0AC0837C-BBF8-452A-850D-79D08E667CA7}\Attributes NAME NOT FOUND Length: 144 98 12:38:33,6440257 MCLauncher.exe 6080 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{0AC0837C-BBF8-452A-850D-79D08E667CA7}\FolderTypeID NAME NOT FOUND Length: 144 98 12:38:33,6440373 MCLauncher.exe 6080 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{0AC0837C-BBF8-452A-850D-79D08E667CA7}\InitFolderHandler NAME NOT FOUND Length: 144 98 12:38:33,6440545 MCLauncher.exe 6080 RegQueryKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{0AC0837C-BBF8-452A-850D-79D08E667CA7} SUCCESS Query: HandleTags, HandleTags: 0x400 98 12:38:33,6440634 MCLauncher.exe 6080 RegOpenKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{0AC0837C-BBF8-452A-850D-79D08E667CA7}\PropertyBag NAME NOT FOUND Desired Access: Read 98 12:38:33,6440761 MCLauncher.exe 6080 RegCloseKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{0AC0837C-BBF8-452A-850D-79D08E667CA7} SUCCESS 98 12:38:33,6578948 MCLauncher.exe 6080 Thread Create SUCCESS Thread ID: 7688 98 12:38:33,6598880 MCLauncher.exe 6080 RegQueryKey HKCU SUCCESS Query: HandleTags, HandleTags: 0x0 98 12:38:33,6598982 MCLauncher.exe 6080 RegQueryKey HKCU SUCCESS Query: Name 98 12:38:33,6599118 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\CPC\Volume SUCCESS Desired Access: Read 98 12:38:33,6599309 MCLauncher.exe 6080 RegSetInfoKey HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\CPC\Volume SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 98 12:38:33,6599395 MCLauncher.exe 6080 RegQueryKey HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\CPC\Volume SUCCESS Query: HandleTags, HandleTags: 0x400 98 12:38:33,6599459 MCLauncher.exe 6080 RegOpenKey HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\CPC\Volume\{110924bd-0000-0000-0000-100000000000}\ SUCCESS Desired Access: Read 98 12:38:33,6599578 MCLauncher.exe 6080 RegCloseKey HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\CPC\Volume SUCCESS 98 12:38:33,6599644 MCLauncher.exe 6080 RegQueryValue HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\CPC\Volume\{110924bd-0000-0000-0000-100000000000}\Data BUFFER OVERFLOW Length: 144 98 12:38:33,6599802 MCLauncher.exe 6080 RegQueryValue HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\CPC\Volume\{110924bd-0000-0000-0000-100000000000}\Data SUCCESS Type: REG_BINARY, Length: 1 370, Data: D6 0D 00 00 0D F0 AD BA 01 00 00 00 08 00 00 00 98 12:38:33,6599971 MCLauncher.exe 6080 RegCloseKey HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\CPC\Volume\{110924bd-0000-0000-0000-100000000000} SUCCESS 98 12:38:33,6600052 MCLauncher.exe 6080 RegQueryKey HKCU SUCCESS Query: HandleTags, HandleTags: 0x0 98 12:38:33,6600104 MCLauncher.exe 6080 RegQueryKey HKCU SUCCESS Query: Name 98 12:38:33,6600190 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\CPC\Volume SUCCESS Desired Access: Read 98 12:38:33,6600284 MCLauncher.exe 6080 RegSetInfoKey HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\CPC\Volume SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 98 12:38:33,6600345 MCLauncher.exe 6080 RegQueryKey HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\CPC\Volume SUCCESS Query: HandleTags, HandleTags: 0x400 98 12:38:33,6600401 MCLauncher.exe 6080 RegOpenKey HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\CPC\Volume\{110924bd-0000-0000-0000-100000000000}\ SUCCESS Desired Access: Read 98 12:38:33,6600476 MCLauncher.exe 6080 RegCloseKey HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\CPC\Volume SUCCESS 98 12:38:33,6600523 MCLauncher.exe 6080 RegQueryValue HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\CPC\Volume\{110924bd-0000-0000-0000-100000000000}\Generation SUCCESS Type: REG_DWORD, Length: 4, Data: 1 98 12:38:33,6600670 MCLauncher.exe 6080 RegCloseKey HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\CPC\Volume\{110924bd-0000-0000-0000-100000000000} SUCCESS 98 12:38:33,6601551 MCLauncher.exe 6080 RegQueryKey HKCU SUCCESS Query: HandleTags, HandleTags: 0x0 98 12:38:33,6601612 MCLauncher.exe 6080 RegQueryKey HKCU SUCCESS Query: Name 98 12:38:33,6601700 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\CPC\Volume SUCCESS Desired Access: Read 98 12:38:33,6601797 MCLauncher.exe 6080 RegSetInfoKey HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\CPC\Volume SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 98 12:38:33,6601858 MCLauncher.exe 6080 RegQueryKey HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\CPC\Volume SUCCESS Query: HandleTags, HandleTags: 0x400 98 12:38:33,6601914 MCLauncher.exe 6080 RegOpenKey HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\CPC\Volume\{110924bd-0000-0000-0000-501f00000000}\ SUCCESS Desired Access: Read 98 12:38:33,6601997 MCLauncher.exe 6080 RegCloseKey HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\CPC\Volume SUCCESS 98 12:38:33,6602047 MCLauncher.exe 6080 RegQueryValue HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\CPC\Volume\{110924bd-0000-0000-0000-501f00000000}\Data BUFFER OVERFLOW Length: 144 98 12:38:33,6602216 MCLauncher.exe 6080 RegQueryValue HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\CPC\Volume\{110924bd-0000-0000-0000-501f00000000}\Data SUCCESS Type: REG_BINARY, Length: 1 370, Data: D6 0D 00 00 0D F0 AD BA 41 00 00 00 08 00 00 00 98 12:38:33,6602365 MCLauncher.exe 6080 RegCloseKey HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\CPC\Volume\{110924bd-0000-0000-0000-501f00000000} SUCCESS 98 12:38:33,6602434 MCLauncher.exe 6080 RegQueryKey HKCU SUCCESS Query: HandleTags, HandleTags: 0x0 98 12:38:33,6602484 MCLauncher.exe 6080 RegQueryKey HKCU SUCCESS Query: Name 98 12:38:33,6602565 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\CPC\Volume SUCCESS Desired Access: Read 98 12:38:33,6602651 MCLauncher.exe 6080 RegSetInfoKey HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\CPC\Volume SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 98 12:38:33,6602711 MCLauncher.exe 6080 RegQueryKey HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\CPC\Volume SUCCESS Query: HandleTags, HandleTags: 0x400 98 12:38:33,6602764 MCLauncher.exe 6080 RegOpenKey HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\CPC\Volume\{110924bd-0000-0000-0000-501f00000000}\ SUCCESS Desired Access: Read 98 12:38:33,6602833 MCLauncher.exe 6080 RegCloseKey HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\CPC\Volume SUCCESS 98 12:38:33,6602872 MCLauncher.exe 6080 RegQueryValue HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\CPC\Volume\{110924bd-0000-0000-0000-501f00000000}\Generation SUCCESS Type: REG_DWORD, Length: 4, Data: 1 98 12:38:33,6603119 MCLauncher.exe 6080 RegCloseKey HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\CPC\Volume\{110924bd-0000-0000-0000-501f00000000} SUCCESS 98 12:38:33,6604155 MCLauncher.exe 6080 RegQueryKey HKCU SUCCESS Query: HandleTags, HandleTags: 0x0 98 12:38:33,6604216 MCLauncher.exe 6080 RegQueryKey HKCU SUCCESS Query: Name 98 12:38:33,6625943 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\CPC\Volume SUCCESS Desired Access: Read 98 12:38:33,6626125 MCLauncher.exe 6080 RegSetInfoKey HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\CPC\Volume SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 98 12:38:33,6626228 MCLauncher.exe 6080 RegQueryKey HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\CPC\Volume SUCCESS Query: HandleTags, HandleTags: 0x400 98 12:38:33,6626295 MCLauncher.exe 6080 RegOpenKey HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\CPC\Volume\{24d09a14-8b74-11e8-8e46-806e6f6e6963}\ SUCCESS Desired Access: Read 98 12:38:33,6626408 MCLauncher.exe 6080 RegCloseKey HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\CPC\Volume SUCCESS 98 12:38:33,6626472 MCLauncher.exe 6080 RegQueryValue HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\CPC\Volume\{24d09a14-8b74-11e8-8e46-806e6f6e6963}\Data BUFFER OVERFLOW Length: 144 98 12:38:33,6626638 MCLauncher.exe 6080 RegQueryValue HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\CPC\Volume\{24d09a14-8b74-11e8-8e46-806e6f6e6963}\Data SUCCESS Type: REG_BINARY, Length: 3 542, Data: D6 0D 00 00 00 00 00 00 01 00 00 00 10 00 00 00 98 12:38:33,6626799 MCLauncher.exe 6080 RegCloseKey HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\CPC\Volume\{24d09a14-8b74-11e8-8e46-806e6f6e6963} SUCCESS 98 12:38:33,6626882 MCLauncher.exe 6080 RegQueryKey HKCU SUCCESS Query: HandleTags, HandleTags: 0x0 98 12:38:33,6626937 MCLauncher.exe 6080 RegQueryKey HKCU SUCCESS Query: Name 98 12:38:33,6627029 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\CPC\Volume SUCCESS Desired Access: Read 98 12:38:33,6627120 MCLauncher.exe 6080 RegSetInfoKey HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\CPC\Volume SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 98 12:38:33,6627181 MCLauncher.exe 6080 RegQueryKey HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\CPC\Volume SUCCESS Query: HandleTags, HandleTags: 0x400 98 12:38:33,6627236 MCLauncher.exe 6080 RegOpenKey HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\CPC\Volume\{24d09a14-8b74-11e8-8e46-806e6f6e6963}\ SUCCESS Desired Access: Read 98 12:38:33,6627311 MCLauncher.exe 6080 RegCloseKey HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\CPC\Volume SUCCESS 98 12:38:33,6627356 MCLauncher.exe 6080 RegQueryValue HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\CPC\Volume\{24d09a14-8b74-11e8-8e46-806e6f6e6963}\Generation SUCCESS Type: REG_DWORD, Length: 4, Data: 2 98 12:38:33,6627494 MCLauncher.exe 6080 RegCloseKey HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\CPC\Volume\{24d09a14-8b74-11e8-8e46-806e6f6e6963} SUCCESS 98 12:38:33,6628256 MCLauncher.exe 6080 RegQueryKey HKCU SUCCESS Query: HandleTags, HandleTags: 0x0 98 12:38:33,6628328 MCLauncher.exe 6080 RegQueryKey HKCU SUCCESS Query: Name 98 12:38:33,6628420 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\CPC\Volume SUCCESS Desired Access: Read 98 12:38:33,6628519 MCLauncher.exe 6080 RegSetInfoKey HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\CPC\Volume SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 98 12:38:33,6628586 MCLauncher.exe 6080 RegQueryKey HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\CPC\Volume SUCCESS Query: HandleTags, HandleTags: 0x400 98 12:38:33,6628641 MCLauncher.exe 6080 RegOpenKey HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\CPC\Volume\{110924bd-0000-0000-0000-501f00000000}\ SUCCESS Desired Access: Read 98 12:38:33,6628722 MCLauncher.exe 6080 RegCloseKey HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\CPC\Volume SUCCESS 98 12:38:33,6628771 MCLauncher.exe 6080 RegQueryValue HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\CPC\Volume\{110924bd-0000-0000-0000-501f00000000}\Generation SUCCESS Type: REG_DWORD, Length: 4, Data: 1 98 12:38:33,6668346 MCLauncher.exe 6080 RegCloseKey HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\CPC\Volume\{110924bd-0000-0000-0000-501f00000000} SUCCESS 98 12:38:33,6670637 MCLauncher.exe 6080 ReadFile C:\Windows\SysWOW64\windows.storage.dll SUCCESS Offset: 2 622 464, Length: 32 768, I/O Flags: Non-cached, Paging I/O, Synchronous Paging I/O, Priority: Normal 98 12:38:33,6766823 MCLauncher.exe 6080 RegQueryKey HKCU\Software\Classes SUCCESS Query: Name 98 12:38:33,6766986 MCLauncher.exe 6080 RegQueryKey HKCU\Software\Classes SUCCESS Query: HandleTags, HandleTags: 0x1 98 12:38:33,6767094 MCLauncher.exe 6080 RegQueryKey HKCU\Software\Classes SUCCESS Query: HandleTags, HandleTags: 0x1 98 12:38:33,6767155 MCLauncher.exe 6080 RegQueryKey HKCU\Software\Classes SUCCESS Query: Name 98 12:38:33,6767322 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Classes\WOW6432Node\CLSID\{76765B11-3F95-4AF2-AC9D-EA55D8994F1A} NAME NOT FOUND Desired Access: Read 98 12:38:33,6767557 MCLauncher.exe 6080 RegOpenKey HKCR\WOW6432Node\CLSID\{76765B11-3F95-4AF2-AC9D-EA55D8994F1A} SUCCESS Desired Access: Read 98 12:38:33,6767723 MCLauncher.exe 6080 RegSetInfoKey HKCR\WOW6432Node\CLSID\{76765b11-3f95-4af2-ac9d-ea55d8994f1a} SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 98 12:38:33,6767779 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{76765b11-3f95-4af2-ac9d-ea55d8994f1a} SUCCESS Query: Name 98 12:38:33,6767865 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{76765b11-3f95-4af2-ac9d-ea55d8994f1a} SUCCESS Query: HandleTags, HandleTags: 0x401 98 12:38:33,6767992 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Classes\WOW6432Node\CLSID\{76765b11-3f95-4af2-ac9d-ea55d8994f1a}\TreatAs NAME NOT FOUND Desired Access: Query Value 98 12:38:33,6768086 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{76765b11-3f95-4af2-ac9d-ea55d8994f1a} SUCCESS Query: HandleTags, HandleTags: 0x401 98 12:38:33,6768144 MCLauncher.exe 6080 RegOpenKey HKCR\WOW6432Node\CLSID\{76765b11-3f95-4af2-ac9d-ea55d8994f1a}\TreatAs NAME NOT FOUND Desired Access: Query Value 98 12:38:33,6768233 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{76765b11-3f95-4af2-ac9d-ea55d8994f1a} SUCCESS Query: Name 98 12:38:33,6768305 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{76765b11-3f95-4af2-ac9d-ea55d8994f1a} SUCCESS Query: Name 98 12:38:33,6768361 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{76765b11-3f95-4af2-ac9d-ea55d8994f1a} SUCCESS Query: HandleTags, HandleTags: 0x401 98 12:38:33,6768452 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Classes\WOW6432Node\CLSID\{76765b11-3f95-4af2-ac9d-ea55d8994f1a} NAME NOT FOUND Desired Access: Maximum Allowed 98 12:38:33,6768530 MCLauncher.exe 6080 RegQueryValue HKCR\WOW6432Node\CLSID\{76765b11-3f95-4af2-ac9d-ea55d8994f1a}\(Default) SUCCESS Type: REG_SZ, Length: 70, Data: Property System Both Class Factory 98 12:38:33,6768602 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{76765b11-3f95-4af2-ac9d-ea55d8994f1a} SUCCESS Query: Name 98 12:38:33,6768657 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{76765b11-3f95-4af2-ac9d-ea55d8994f1a} SUCCESS Query: HandleTags, HandleTags: 0x401 98 12:38:33,6768740 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Classes\WOW6432Node\CLSID\{76765b11-3f95-4af2-ac9d-ea55d8994f1a} NAME NOT FOUND Desired Access: Maximum Allowed 98 12:38:33,6768807 MCLauncher.exe 6080 RegQueryValue HKCR\WOW6432Node\CLSID\{76765b11-3f95-4af2-ac9d-ea55d8994f1a}\(Default) SUCCESS Type: REG_SZ, Length: 70, Data: Property System Both Class Factory 98 12:38:33,6768865 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{76765b11-3f95-4af2-ac9d-ea55d8994f1a} SUCCESS Query: Name 98 12:38:33,6768920 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{76765b11-3f95-4af2-ac9d-ea55d8994f1a} SUCCESS Query: HandleTags, HandleTags: 0x401 98 12:38:33,6769009 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Classes\WOW6432Node\CLSID\{76765b11-3f95-4af2-ac9d-ea55d8994f1a}\InprocServer32 NAME NOT FOUND Desired Access: Read 98 12:38:33,6769089 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{76765b11-3f95-4af2-ac9d-ea55d8994f1a} SUCCESS Query: HandleTags, HandleTags: 0x401 98 12:38:33,6769142 MCLauncher.exe 6080 RegOpenKey HKCR\WOW6432Node\CLSID\{76765b11-3f95-4af2-ac9d-ea55d8994f1a}\InprocServer32 SUCCESS Desired Access: Read 98 12:38:33,6769228 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{76765b11-3f95-4af2-ac9d-ea55d8994f1a}\InProcServer32 SUCCESS Query: Name 98 12:38:33,6769286 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{76765b11-3f95-4af2-ac9d-ea55d8994f1a}\InProcServer32 SUCCESS Query: HandleTags, HandleTags: 0x401 98 12:38:33,6769369 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Classes\WOW6432Node\CLSID\{76765b11-3f95-4af2-ac9d-ea55d8994f1a}\InProcServer32 NAME NOT FOUND Desired Access: Maximum Allowed 98 12:38:33,6769433 MCLauncher.exe 6080 RegQueryValue HKCR\WOW6432Node\CLSID\{76765b11-3f95-4af2-ac9d-ea55d8994f1a}\InProcServer32\InprocServer32 NAME NOT FOUND Length: 144 98 12:38:33,6769591 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{76765b11-3f95-4af2-ac9d-ea55d8994f1a}\InProcServer32 SUCCESS Query: Name 98 12:38:33,6769660 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{76765b11-3f95-4af2-ac9d-ea55d8994f1a}\InProcServer32 SUCCESS Query: HandleTags, HandleTags: 0x401 98 12:38:33,6769760 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Classes\WOW6432Node\CLSID\{76765b11-3f95-4af2-ac9d-ea55d8994f1a}\InProcServer32 NAME NOT FOUND Desired Access: Maximum Allowed 98 12:38:33,6769840 MCLauncher.exe 6080 RegQueryValue HKCR\WOW6432Node\CLSID\{76765b11-3f95-4af2-ac9d-ea55d8994f1a}\InProcServer32\(Default) SUCCESS Type: REG_EXPAND_SZ, Length: 68, Data: %SystemRoot%\system32\propsys.dll 98 12:38:33,6769904 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{76765b11-3f95-4af2-ac9d-ea55d8994f1a}\InProcServer32 SUCCESS Query: Name 98 12:38:33,6769959 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{76765b11-3f95-4af2-ac9d-ea55d8994f1a}\InProcServer32 SUCCESS Query: HandleTags, HandleTags: 0x401 98 12:38:33,6770045 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Classes\WOW6432Node\CLSID\{76765b11-3f95-4af2-ac9d-ea55d8994f1a}\InProcServer32 NAME NOT FOUND Desired Access: Maximum Allowed 98 12:38:33,6770106 MCLauncher.exe 6080 RegQueryValue HKCR\WOW6432Node\CLSID\{76765b11-3f95-4af2-ac9d-ea55d8994f1a}\InProcServer32\(Default) SUCCESS Type: REG_EXPAND_SZ, Length: 68, Data: %SystemRoot%\system32\propsys.dll 98 12:38:33,6770197 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{76765b11-3f95-4af2-ac9d-ea55d8994f1a}\InProcServer32 SUCCESS Query: Name 98 12:38:33,6770292 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{76765b11-3f95-4af2-ac9d-ea55d8994f1a}\InProcServer32 SUCCESS Query: HandleTags, HandleTags: 0x401 98 12:38:33,6770378 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Classes\WOW6432Node\CLSID\{76765b11-3f95-4af2-ac9d-ea55d8994f1a}\InProcServer32 NAME NOT FOUND Desired Access: Maximum Allowed 98 12:38:33,6770441 MCLauncher.exe 6080 RegQueryValue HKCR\WOW6432Node\CLSID\{76765b11-3f95-4af2-ac9d-ea55d8994f1a}\InProcServer32\(Default) SUCCESS Type: REG_EXPAND_SZ, Length: 68, Data: %SystemRoot%\system32\propsys.dll 98 12:38:33,6770519 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{76765b11-3f95-4af2-ac9d-ea55d8994f1a}\InProcServer32 SUCCESS Query: Name 98 12:38:33,6770574 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{76765b11-3f95-4af2-ac9d-ea55d8994f1a}\InProcServer32 SUCCESS Query: HandleTags, HandleTags: 0x401 98 12:38:33,6770655 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Classes\WOW6432Node\CLSID\{76765b11-3f95-4af2-ac9d-ea55d8994f1a}\InProcServer32 NAME NOT FOUND Desired Access: Maximum Allowed 98 12:38:33,6770718 MCLauncher.exe 6080 RegQueryValue HKCR\WOW6432Node\CLSID\{76765b11-3f95-4af2-ac9d-ea55d8994f1a}\InProcServer32\ThreadingModel SUCCESS Type: REG_SZ, Length: 10, Data: Both 98 12:38:33,6770909 MCLauncher.exe 6080 RegCloseKey HKCR\WOW6432Node\CLSID\{76765b11-3f95-4af2-ac9d-ea55d8994f1a}\InProcServer32 SUCCESS 98 12:38:33,6770965 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{76765b11-3f95-4af2-ac9d-ea55d8994f1a} SUCCESS Query: Name 98 12:38:33,6771031 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{76765b11-3f95-4af2-ac9d-ea55d8994f1a} SUCCESS Query: HandleTags, HandleTags: 0x401 98 12:38:33,6771137 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Classes\WOW6432Node\CLSID\{76765b11-3f95-4af2-ac9d-ea55d8994f1a}\InprocHandler32 NAME NOT FOUND Desired Access: Query Value 98 12:38:33,6771236 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{76765b11-3f95-4af2-ac9d-ea55d8994f1a} SUCCESS Query: HandleTags, HandleTags: 0x401 98 12:38:33,6771292 MCLauncher.exe 6080 RegOpenKey HKCR\WOW6432Node\CLSID\{76765b11-3f95-4af2-ac9d-ea55d8994f1a}\InprocHandler32 NAME NOT FOUND Desired Access: Query Value 98 12:38:33,6771561 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{76765b11-3f95-4af2-ac9d-ea55d8994f1a} SUCCESS Query: Name 98 12:38:33,6771666 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{76765b11-3f95-4af2-ac9d-ea55d8994f1a} SUCCESS Query: HandleTags, HandleTags: 0x401 98 12:38:33,6771824 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Classes\WOW6432Node\CLSID\{76765b11-3f95-4af2-ac9d-ea55d8994f1a}\InprocHandler NAME NOT FOUND Desired Access: Query Value 98 12:38:33,6771971 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{76765b11-3f95-4af2-ac9d-ea55d8994f1a} SUCCESS Query: HandleTags, HandleTags: 0x401 98 12:38:33,6772034 MCLauncher.exe 6080 RegOpenKey HKCR\WOW6432Node\CLSID\{76765b11-3f95-4af2-ac9d-ea55d8994f1a}\InprocHandler NAME NOT FOUND Desired Access: Query Value 98 12:38:33,6772134 MCLauncher.exe 6080 RegCloseKey HKCR\WOW6432Node\CLSID\{76765b11-3f95-4af2-ac9d-ea55d8994f1a} SUCCESS 98 12:38:33,6772334 MCLauncher.exe 6080 RegQueryKey HKCU\Software\Classes SUCCESS Query: Name 98 12:38:33,6772397 MCLauncher.exe 6080 RegQueryKey HKCU\Software\Classes SUCCESS Query: HandleTags, HandleTags: 0x1 98 12:38:33,6772467 MCLauncher.exe 6080 RegQueryKey HKCU\Software\Classes SUCCESS Query: HandleTags, HandleTags: 0x1 98 12:38:33,6772516 MCLauncher.exe 6080 RegQueryKey HKCU\Software\Classes SUCCESS Query: Name 98 12:38:33,6772602 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Classes\WOW6432Node\CLSID\{76765B11-3F95-4AF2-AC9D-EA55D8994F1A} NAME NOT FOUND Desired Access: Read 98 12:38:33,6772696 MCLauncher.exe 6080 RegOpenKey HKCR\WOW6432Node\CLSID\{76765B11-3F95-4AF2-AC9D-EA55D8994F1A} SUCCESS Desired Access: Read 98 12:38:33,6772782 MCLauncher.exe 6080 RegSetInfoKey HKCR\WOW6432Node\CLSID\{76765b11-3f95-4af2-ac9d-ea55d8994f1a} SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 98 12:38:33,6772827 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{76765b11-3f95-4af2-ac9d-ea55d8994f1a} SUCCESS Query: Name 98 12:38:33,6772885 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{76765b11-3f95-4af2-ac9d-ea55d8994f1a} SUCCESS Query: HandleTags, HandleTags: 0x401 98 12:38:33,6772976 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Classes\WOW6432Node\CLSID\{76765b11-3f95-4af2-ac9d-ea55d8994f1a}\TreatAs NAME NOT FOUND Desired Access: Read 98 12:38:33,6773057 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{76765b11-3f95-4af2-ac9d-ea55d8994f1a} SUCCESS Query: HandleTags, HandleTags: 0x401 98 12:38:33,6773109 MCLauncher.exe 6080 RegOpenKey HKCR\WOW6432Node\CLSID\{76765b11-3f95-4af2-ac9d-ea55d8994f1a}\TreatAs NAME NOT FOUND Desired Access: Read 98 12:38:33,6773187 MCLauncher.exe 6080 RegCloseKey HKCR\WOW6432Node\CLSID\{76765b11-3f95-4af2-ac9d-ea55d8994f1a} SUCCESS 98 12:38:33,6775608 MCLauncher.exe 6080 CloseFile C:\Users\User\Desktop\MCLauncher.lnk SUCCESS 98 12:38:33,6776614 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Classes SUCCESS Desired Access: Maximum Allowed, Granted Access: All Access 98 12:38:33,6776730 MCLauncher.exe 6080 RegSetInfoKey HKCU\Software\Classes SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 98 12:38:33,6776794 MCLauncher.exe 6080 RegQueryKey HKCU\Software\Classes SUCCESS Query: Name 98 12:38:33,6776863 MCLauncher.exe 6080 RegQueryKey HKCU\Software\Classes SUCCESS Query: HandleTags, HandleTags: 0x1 98 12:38:33,6776938 MCLauncher.exe 6080 RegQueryKey HKCU\Software\Classes SUCCESS Query: HandleTags, HandleTags: 0x1 98 12:38:33,6776985 MCLauncher.exe 6080 RegQueryKey HKCU\Software\Classes SUCCESS Query: Name 98 12:38:33,6777060 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Classes\TypeLib SUCCESS Desired Access: Maximum Allowed, Granted Access: All Access 98 12:38:33,6777143 MCLauncher.exe 6080 RegSetInfoKey HKCU\Software\Classes\TypeLib SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 98 12:38:33,6777207 MCLauncher.exe 6080 RegCloseKey HKCU\Software\Classes SUCCESS 98 12:38:33,6777251 MCLauncher.exe 6080 RegQueryKey HKCU\Software\Classes\TypeLib SUCCESS Query: Name 98 12:38:33,6777312 MCLauncher.exe 6080 RegQueryKey HKCU\Software\Classes\TypeLib SUCCESS Query: HandleTags, HandleTags: 0x401 98 12:38:33,6777379 MCLauncher.exe 6080 RegQueryKey HKCU\Software\Classes\TypeLib SUCCESS Query: HandleTags, HandleTags: 0x401 98 12:38:33,6777431 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Classes\TypeLib\{F935DC20-1CF0-11D0-ADB9-00C04FD58A0B} NAME NOT FOUND Desired Access: Maximum Allowed 98 12:38:33,6777526 MCLauncher.exe 6080 RegOpenKey HKCR\TypeLib\{F935DC20-1CF0-11D0-ADB9-00C04FD58A0B} SUCCESS Desired Access: Maximum Allowed, Granted Access: Read 98 12:38:33,6777609 MCLauncher.exe 6080 RegSetInfoKey HKCR\TypeLib\{F935DC20-1CF0-11D0-ADB9-00C04FD58A0B} SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 98 12:38:33,6777656 MCLauncher.exe 6080 RegQueryKey HKCR\TypeLib\{F935DC20-1CF0-11D0-ADB9-00C04FD58A0B} SUCCESS Query: Name 98 12:38:33,6777736 MCLauncher.exe 6080 RegQueryKey HKCR\TypeLib\{F935DC20-1CF0-11D0-ADB9-00C04FD58A0B} SUCCESS Query: HandleTags, HandleTags: 0x401 98 12:38:33,6777828 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Classes\TypeLib\{F935DC20-1CF0-11D0-ADB9-00C04FD58A0B}\1.0 NAME NOT FOUND Desired Access: Maximum Allowed 98 12:38:33,6777911 MCLauncher.exe 6080 RegQueryKey HKCR\TypeLib\{F935DC20-1CF0-11D0-ADB9-00C04FD58A0B} SUCCESS Query: HandleTags, HandleTags: 0x401 98 12:38:33,6777961 MCLauncher.exe 6080 RegOpenKey HKCR\TypeLib\{F935DC20-1CF0-11D0-ADB9-00C04FD58A0B}\1.0 SUCCESS Desired Access: Maximum Allowed, Granted Access: Read 98 12:38:33,6778038 MCLauncher.exe 6080 RegQueryKey HKCR\TypeLib\{F935DC20-1CF0-11D0-ADB9-00C04FD58A0B}\1.0 SUCCESS Query: Name 98 12:38:33,6778096 MCLauncher.exe 6080 RegQueryKey HKCR\TypeLib\{F935DC20-1CF0-11D0-ADB9-00C04FD58A0B}\1.0 SUCCESS Query: HandleTags, HandleTags: 0x401 98 12:38:33,6778177 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Classes\TypeLib\{F935DC20-1CF0-11D0-ADB9-00C04FD58A0B}\1.0\419 NAME NOT FOUND Desired Access: Maximum Allowed 98 12:38:33,6778251 MCLauncher.exe 6080 RegQueryKey HKCR\TypeLib\{F935DC20-1CF0-11D0-ADB9-00C04FD58A0B}\1.0 SUCCESS Query: HandleTags, HandleTags: 0x401 98 12:38:33,6778301 MCLauncher.exe 6080 RegOpenKey HKCR\TypeLib\{F935DC20-1CF0-11D0-ADB9-00C04FD58A0B}\1.0\419 NAME NOT FOUND Desired Access: Maximum Allowed 98 12:38:33,6778368 MCLauncher.exe 6080 RegQueryKey HKCR\TypeLib\{F935DC20-1CF0-11D0-ADB9-00C04FD58A0B}\1.0 SUCCESS Query: Name 98 12:38:33,6778423 MCLauncher.exe 6080 RegQueryKey HKCR\TypeLib\{F935DC20-1CF0-11D0-ADB9-00C04FD58A0B}\1.0 SUCCESS Query: HandleTags, HandleTags: 0x401 98 12:38:33,6778501 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Classes\TypeLib\{F935DC20-1CF0-11D0-ADB9-00C04FD58A0B}\1.0\19 NAME NOT FOUND Desired Access: Maximum Allowed 98 12:38:33,6778573 MCLauncher.exe 6080 RegQueryKey HKCR\TypeLib\{F935DC20-1CF0-11D0-ADB9-00C04FD58A0B}\1.0 SUCCESS Query: HandleTags, HandleTags: 0x401 98 12:38:33,6778623 MCLauncher.exe 6080 RegOpenKey HKCR\TypeLib\{F935DC20-1CF0-11D0-ADB9-00C04FD58A0B}\1.0\19 NAME NOT FOUND Desired Access: Maximum Allowed 98 12:38:33,6778684 MCLauncher.exe 6080 RegQueryKey HKCR\TypeLib\{F935DC20-1CF0-11D0-ADB9-00C04FD58A0B}\1.0 SUCCESS Query: Name 98 12:38:33,6778736 MCLauncher.exe 6080 RegQueryKey HKCR\TypeLib\{F935DC20-1CF0-11D0-ADB9-00C04FD58A0B}\1.0 SUCCESS Query: HandleTags, HandleTags: 0x401 98 12:38:33,6778811 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Classes\TypeLib\{F935DC20-1CF0-11D0-ADB9-00C04FD58A0B}\1.0\0 NAME NOT FOUND Desired Access: Maximum Allowed 98 12:38:33,6778883 MCLauncher.exe 6080 RegQueryKey HKCR\TypeLib\{F935DC20-1CF0-11D0-ADB9-00C04FD58A0B}\1.0 SUCCESS Query: HandleTags, HandleTags: 0x401 98 12:38:33,6778933 MCLauncher.exe 6080 RegOpenKey HKCR\TypeLib\{F935DC20-1CF0-11D0-ADB9-00C04FD58A0B}\1.0\0 SUCCESS Desired Access: Maximum Allowed, Granted Access: Read 98 12:38:33,6779002 MCLauncher.exe 6080 RegQueryKey HKCR\TypeLib\{F935DC20-1CF0-11D0-ADB9-00C04FD58A0B}\1.0\0 SUCCESS Query: Name 98 12:38:33,6779058 MCLauncher.exe 6080 RegQueryKey HKCR\TypeLib\{F935DC20-1CF0-11D0-ADB9-00C04FD58A0B}\1.0\0 SUCCESS Query: HandleTags, HandleTags: 0x401 98 12:38:33,6779138 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Classes\TypeLib\{F935DC20-1CF0-11D0-ADB9-00C04FD58A0B}\1.0\0\win32 NAME NOT FOUND Desired Access: Maximum Allowed 98 12:38:33,6779210 MCLauncher.exe 6080 RegQueryKey HKCR\TypeLib\{F935DC20-1CF0-11D0-ADB9-00C04FD58A0B}\1.0\0 SUCCESS Query: HandleTags, HandleTags: 0x401 98 12:38:33,6779260 MCLauncher.exe 6080 RegOpenKey HKCR\TypeLib\{F935DC20-1CF0-11D0-ADB9-00C04FD58A0B}\1.0\0\win32 SUCCESS Desired Access: Maximum Allowed, Granted Access: Read 98 12:38:33,6779354 MCLauncher.exe 6080 RegCloseKey HKCR\TypeLib\{F935DC20-1CF0-11D0-ADB9-00C04FD58A0B}\1.0\0\win32 SUCCESS 98 12:38:33,6779398 MCLauncher.exe 6080 RegCloseKey HKCR\TypeLib\{F935DC20-1CF0-11D0-ADB9-00C04FD58A0B}\1.0\0 SUCCESS 98 12:38:33,6779437 MCLauncher.exe 6080 RegQueryKey HKCR\TypeLib\{F935DC20-1CF0-11D0-ADB9-00C04FD58A0B}\1.0 SUCCESS Query: Name 98 12:38:33,6779490 MCLauncher.exe 6080 RegQueryKey HKCR\TypeLib\{F935DC20-1CF0-11D0-ADB9-00C04FD58A0B}\1.0 SUCCESS Query: HandleTags, HandleTags: 0x401 98 12:38:33,6779567 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Classes\TypeLib\{F935DC20-1CF0-11D0-ADB9-00C04FD58A0B}\1.0\0 NAME NOT FOUND Desired Access: Maximum Allowed 98 12:38:33,6779642 MCLauncher.exe 6080 RegQueryKey HKCR\TypeLib\{F935DC20-1CF0-11D0-ADB9-00C04FD58A0B}\1.0 SUCCESS Query: HandleTags, HandleTags: 0x401 98 12:38:33,6779692 MCLauncher.exe 6080 RegOpenKey HKCR\TypeLib\{F935DC20-1CF0-11D0-ADB9-00C04FD58A0B}\1.0\0 SUCCESS Desired Access: Maximum Allowed, Granted Access: Read 98 12:38:33,6779750 MCLauncher.exe 6080 RegQueryKey HKCR\TypeLib\{F935DC20-1CF0-11D0-ADB9-00C04FD58A0B}\1.0\0 SUCCESS Query: Name 98 12:38:33,6779806 MCLauncher.exe 6080 RegQueryKey HKCR\TypeLib\{F935DC20-1CF0-11D0-ADB9-00C04FD58A0B}\1.0\0 SUCCESS Query: HandleTags, HandleTags: 0x401 98 12:38:33,6779881 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Classes\TypeLib\{F935DC20-1CF0-11D0-ADB9-00C04FD58A0B}\1.0\0\win32 NAME NOT FOUND Desired Access: Query Value 98 12:38:33,6779953 MCLauncher.exe 6080 RegQueryKey HKCR\TypeLib\{F935DC20-1CF0-11D0-ADB9-00C04FD58A0B}\1.0\0 SUCCESS Query: HandleTags, HandleTags: 0x401 98 12:38:33,6780005 MCLauncher.exe 6080 RegOpenKey HKCR\TypeLib\{F935DC20-1CF0-11D0-ADB9-00C04FD58A0B}\1.0\0\win32 SUCCESS Desired Access: Query Value 98 12:38:33,6780066 MCLauncher.exe 6080 RegQueryKey HKCR\TypeLib\{F935DC20-1CF0-11D0-ADB9-00C04FD58A0B}\1.0\0\win32 SUCCESS Query: Name 98 12:38:33,6780122 MCLauncher.exe 6080 RegQueryKey HKCR\TypeLib\{F935DC20-1CF0-11D0-ADB9-00C04FD58A0B}\1.0\0\win32 SUCCESS Query: HandleTags, HandleTags: 0x401 98 12:38:33,6780196 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Classes\TypeLib\{F935DC20-1CF0-11D0-ADB9-00C04FD58A0B}\1.0\0\win32 NAME NOT FOUND Desired Access: Maximum Allowed 98 12:38:33,6780257 MCLauncher.exe 6080 RegQueryValue HKCR\TypeLib\{F935DC20-1CF0-11D0-ADB9-00C04FD58A0B}\1.0\0\win32\(Default) SUCCESS Type: REG_SZ, Length: 60, Data: C:\Windows\SysWOW64\wshom.ocx 98 12:38:33,6780327 MCLauncher.exe 6080 RegCloseKey HKCR\TypeLib\{F935DC20-1CF0-11D0-ADB9-00C04FD58A0B}\1.0\0\win32 SUCCESS 98 12:38:33,6780382 MCLauncher.exe 6080 RegCloseKey HKCR\TypeLib\{F935DC20-1CF0-11D0-ADB9-00C04FD58A0B}\1.0\0 SUCCESS 98 12:38:33,6780421 MCLauncher.exe 6080 RegCloseKey HKCR\TypeLib\{F935DC20-1CF0-11D0-ADB9-00C04FD58A0B}\1.0 SUCCESS 98 12:38:33,6780460 MCLauncher.exe 6080 RegCloseKey HKCR\TypeLib\{F935DC20-1CF0-11D0-ADB9-00C04FD58A0B} SUCCESS 98 12:38:33,6780498 MCLauncher.exe 6080 RegCloseKey HKCU\Software\Classes\TypeLib SUCCESS 98 12:38:33,6782690 MCLauncher.exe 6080 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 98 12:38:33,6782756 MCLauncher.exe 6080 RegQueryKey HKLM SUCCESS Query: Name 98 12:38:33,6782870 MCLauncher.exe 6080 RegOpenKey HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\Desktop\NameSpace SUCCESS Desired Access: Read 98 12:38:33,6783025 MCLauncher.exe 6080 RegSetInfoKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\Desktop\NameSpace SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 98 12:38:33,6783081 MCLauncher.exe 6080 RegEnumKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\Desktop\NameSpace SUCCESS Index: 0, Name: DelegateFolders 98 12:38:33,6783164 MCLauncher.exe 6080 RegQueryKey HKCU\Software\Classes SUCCESS Query: Name 98 12:38:33,6783227 MCLauncher.exe 6080 RegQueryKey HKCU\Software\Classes SUCCESS Query: HandleTags, HandleTags: 0x1 98 12:38:33,6783297 MCLauncher.exe 6080 RegQueryKey HKCU\Software\Classes SUCCESS Query: HandleTags, HandleTags: 0x1 98 12:38:33,6783341 MCLauncher.exe 6080 RegQueryKey HKCU\Software\Classes SUCCESS Query: Name 98 12:38:33,6783413 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Classes\DelegateFolders NAME NOT FOUND Desired Access: Read 98 12:38:33,6783527 MCLauncher.exe 6080 RegOpenKey HKCR\DelegateFolders NAME NOT FOUND Desired Access: Read 98 12:38:33,6783687 MCLauncher.exe 6080 RegQueryKey HKCU\Software\Classes SUCCESS Query: Name 98 12:38:33,6783759 MCLauncher.exe 6080 RegQueryKey HKCU\Software\Classes SUCCESS Query: HandleTags, HandleTags: 0x1 98 12:38:33,6783812 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Classes\DelegateFolders NAME NOT FOUND Desired Access: Read 98 12:38:33,6783878 MCLauncher.exe 6080 RegOpenKey HKCR\DelegateFolders NAME NOT FOUND Desired Access: Read 98 12:38:33,6783984 MCLauncher.exe 6080 RegQueryKey HKCU\Software\Classes SUCCESS Query: Name 98 12:38:33,6784036 MCLauncher.exe 6080 RegQueryKey HKCU\Software\Classes SUCCESS Query: HandleTags, HandleTags: 0x1 98 12:38:33,6784097 MCLauncher.exe 6080 RegQueryKey HKCU\Software\Classes SUCCESS Query: HandleTags, HandleTags: 0x1 98 12:38:33,6784144 MCLauncher.exe 6080 RegQueryKey HKCU\Software\Classes SUCCESS Query: Name 98 12:38:33,6784208 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Classes\DelegateFolders NAME NOT FOUND Desired Access: Maximum Allowed 98 12:38:33,6784283 MCLauncher.exe 6080 RegOpenKey HKCR\DelegateFolders NAME NOT FOUND Desired Access: Maximum Allowed 98 12:38:33,6784344 MCLauncher.exe 6080 RegQueryKey HKCU\Software\Classes SUCCESS Query: Name 98 12:38:33,6784413 MCLauncher.exe 6080 RegQueryKey HKCU\Software\Classes SUCCESS Query: HandleTags, HandleTags: 0x1 98 12:38:33,6784463 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Classes\DelegateFolders NAME NOT FOUND Desired Access: Maximum Allowed 98 12:38:33,6784524 MCLauncher.exe 6080 RegOpenKey HKCR\DelegateFolders NAME NOT FOUND Desired Access: Maximum Allowed 98 12:38:33,6784590 MCLauncher.exe 6080 RegEnumKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\Desktop\NameSpace SUCCESS Index: 1, Name: {031E4825-7B94-4dc3-B131-E946B44C8DD5} 98 12:38:33,6784654 MCLauncher.exe 6080 RegEnumKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\Desktop\NameSpace SUCCESS Index: 2, Name: {04731B67-D933-450a-90E6-4ACD2E9408FE} 98 12:38:33,6784710 MCLauncher.exe 6080 RegEnumKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\Desktop\NameSpace SUCCESS Index: 3, Name: {0875DCB6-C686-4243-9432-ADCCF0B9F2D7} 98 12:38:33,6784773 MCLauncher.exe 6080 RegEnumKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\Desktop\NameSpace SUCCESS Index: 4, Name: {11016101-E366-4D22-BC06-4ADA335C892B} 98 12:38:33,6784823 MCLauncher.exe 6080 RegEnumKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\Desktop\NameSpace SUCCESS Index: 5, Name: {12F0008F-2113-482A-80B3-FD5E91C12313} 98 12:38:33,6784881 MCLauncher.exe 6080 RegEnumKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\Desktop\NameSpace SUCCESS Index: 6, Name: {138508bc-1e03-49ea-9c8f-ea9e1d05d65d} 98 12:38:33,6784937 MCLauncher.exe 6080 RegEnumKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\Desktop\NameSpace SUCCESS Index: 7, Name: {26EE0668-A00A-44D7-9371-BEB064C98683} 98 12:38:33,6784987 MCLauncher.exe 6080 RegEnumKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\Desktop\NameSpace SUCCESS Index: 8, Name: {4336a54d-038b-4685-ab02-99bb52d3fb8b} 98 12:38:33,6785042 MCLauncher.exe 6080 RegEnumKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\Desktop\NameSpace SUCCESS Index: 9, Name: {450D8FBA-AD25-11D0-98A8-0800361B1103} 98 12:38:33,6785092 MCLauncher.exe 6080 RegEnumKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\Desktop\NameSpace SUCCESS Index: 10, Name: {5399E694-6CE5-4D6C-8FCE-1D8870FDCBA0} 98 12:38:33,6785145 MCLauncher.exe 6080 RegEnumKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\Desktop\NameSpace SUCCESS Index: 11, Name: {59031a47-3f72-44a7-89c5-5595fe6b30ee} 98 12:38:33,6785194 MCLauncher.exe 6080 RegEnumKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\Desktop\NameSpace SUCCESS Index: 12, Name: {5b934b42-522b-4c34-bbfe-37a3ef7b9c90} 98 12:38:33,6785244 MCLauncher.exe 6080 RegEnumKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\Desktop\NameSpace SUCCESS Index: 13, Name: {645FF040-5081-101B-9F08-00AA002F954E} 98 12:38:33,6785294 MCLauncher.exe 6080 RegEnumKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\Desktop\NameSpace SUCCESS Index: 14, Name: {64693913-1c21-4f30-a98f-4e52906d3b56} 98 12:38:33,6785352 MCLauncher.exe 6080 RegEnumKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\Desktop\NameSpace SUCCESS Index: 15, Name: {89D83576-6BD1-4c86-9454-BEB04E94C819} 98 12:38:33,6785402 MCLauncher.exe 6080 RegEnumKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\Desktop\NameSpace SUCCESS Index: 16, Name: {9343812e-1c37-4a49-a12e-4b2d810d956b} 98 12:38:33,6785452 MCLauncher.exe 6080 RegEnumKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\Desktop\NameSpace SUCCESS Index: 17, Name: {98F275B4-4FFF-11E0-89E2-7B86DFD72085} 98 12:38:33,6785505 MCLauncher.exe 6080 RegEnumKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\Desktop\NameSpace SUCCESS Index: 18, Name: {a00ee528-ebd9-48b8-944a-8942113d46ac} 98 12:38:33,6785560 MCLauncher.exe 6080 RegEnumKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\Desktop\NameSpace SUCCESS Index: 19, Name: {B4FB3F98-C1EA-428d-A78A-D1F5659CBA93} 98 12:38:33,6785613 MCLauncher.exe 6080 RegEnumKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\Desktop\NameSpace SUCCESS Index: 20, Name: {BD7A2E7B-21CB-41b2-A086-B309680C6B7E} 98 12:38:33,6785663 MCLauncher.exe 6080 RegEnumKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\Desktop\NameSpace SUCCESS Index: 21, Name: {daf95313-e44d-46af-be1b-cbacea2c3065} 98 12:38:33,6785718 MCLauncher.exe 6080 RegEnumKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\Desktop\NameSpace SUCCESS Index: 22, Name: {e345f35f-9397-435c-8f95-4e922c26259e} 98 12:38:33,6785771 MCLauncher.exe 6080 RegEnumKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\Desktop\NameSpace SUCCESS Index: 23, Name: {ED228FDF-9EA8-4870-83b1-96b02CFE0D52} 98 12:38:33,6785823 MCLauncher.exe 6080 RegEnumKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\Desktop\NameSpace SUCCESS Index: 24, Name: {EDC978D6-4D53-4b2f-A265-5805674BE568} 98 12:38:33,6785876 MCLauncher.exe 6080 RegEnumKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\Desktop\NameSpace SUCCESS Index: 25, Name: {F02C1A0D-BE21-4350-88B0-7367FC96EF3C} 98 12:38:33,6785926 MCLauncher.exe 6080 RegEnumKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\Desktop\NameSpace NO MORE ENTRIES Index: 26, Length: 288 98 12:38:33,6786120 MCLauncher.exe 6080 RegOpenKey HKCU SUCCESS Desired Access: Read 98 12:38:33,6786208 MCLauncher.exe 6080 RegSetInfoKey HKCU SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 98 12:38:33,6786281 MCLauncher.exe 6080 RegQueryKey HKCU SUCCESS Query: HandleTags, HandleTags: 0x100 98 12:38:33,6786336 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Classes\Local Settings REPARSE Desired Access: Read 98 12:38:33,6786414 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Classes\Local Settings SUCCESS Desired Access: Read 98 12:38:33,6786502 MCLauncher.exe 6080 RegCloseKey HKCU SUCCESS 98 12:38:33,6786555 MCLauncher.exe 6080 RegCloseKey HKCU\Software\Classes\Local Settings SUCCESS 98 12:38:33,6790752 MCLauncher.exe 6080 RegOpenKey HKLM\SOFTWARE\Policies\Microsoft\Windows\Appx SUCCESS Desired Access: Read 98 12:38:33,6790902 MCLauncher.exe 6080 RegSetInfoKey HKLM\SOFTWARE\Policies\Microsoft\Windows\Appx SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 98 12:38:33,6790966 MCLauncher.exe 6080 RegQueryValue HKLM\SOFTWARE\Policies\Microsoft\Windows\Appx\AllowDevelopmentWithoutDevLicense SUCCESS Type: REG_DWORD, Length: 4, Data: 65535 98 12:38:33,6791312 MCLauncher.exe 6080 RegCloseKey HKLM\SOFTWARE\Policies\Microsoft\Windows\Appx SUCCESS 98 12:38:33,6791431 MCLauncher.exe 6080 RegOpenKey HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\AppModelUnlock SUCCESS Desired Access: Read 98 12:38:33,6791606 MCLauncher.exe 6080 RegSetInfoKey HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\AppModelUnlock SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 98 12:38:33,6791661 MCLauncher.exe 6080 RegQueryValue HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\AppModelUnlock\AllowDevelopmentWithoutDevLicense NAME NOT FOUND Length: 24 98 12:38:33,6791816 MCLauncher.exe 6080 RegCloseKey HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\AppModelUnlock SUCCESS 98 12:38:33,6793717 MCLauncher.exe 6080 RegQueryKey HKCU\Software\Classes SUCCESS Query: Name 98 12:38:33,6793805 MCLauncher.exe 6080 RegQueryKey HKCU\Software\Classes SUCCESS Query: HandleTags, HandleTags: 0x1 98 12:38:33,6793886 MCLauncher.exe 6080 RegQueryKey HKCU\Software\Classes SUCCESS Query: HandleTags, HandleTags: 0x1 98 12:38:33,6793938 MCLauncher.exe 6080 RegQueryKey HKCU\Software\Classes SUCCESS Query: Name 98 12:38:33,6794030 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Classes\AppID\MCLauncher.exe NAME NOT FOUND Desired Access: Read 98 12:38:33,6794152 MCLauncher.exe 6080 RegOpenKey HKCR\AppID\MCLauncher.exe NAME NOT FOUND Desired Access: Read 98 12:38:33,6794246 MCLauncher.exe 6080 RegQueryKey HKCU\Software\Classes SUCCESS Query: Name 98 12:38:33,6794323 MCLauncher.exe 6080 RegQueryKey HKCU\Software\Classes SUCCESS Query: HandleTags, HandleTags: 0x1 98 12:38:33,6794376 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Classes\AppID\MCLauncher.exe NAME NOT FOUND Desired Access: Read 98 12:38:33,6794443 MCLauncher.exe 6080 RegOpenKey HKCR\AppID\MCLauncher.exe NAME NOT FOUND Desired Access: Read 98 12:38:33,6794531 MCLauncher.exe 6080 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 98 12:38:33,6794578 MCLauncher.exe 6080 RegQueryKey HKLM SUCCESS Query: Name 98 12:38:33,6794656 MCLauncher.exe 6080 RegOpenKey HKLM\Software\WOW6432Node\Microsoft\OLE\AppCompat REPARSE Desired Access: Read 98 12:38:33,6794739 MCLauncher.exe 6080 RegOpenKey HKLM\SOFTWARE\Microsoft\Ole\AppCompat SUCCESS Desired Access: Read 98 12:38:33,6794819 MCLauncher.exe 6080 RegSetInfoKey HKLM\SOFTWARE\Microsoft\Ole\AppCompat SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 98 12:38:33,6794869 MCLauncher.exe 6080 RegQueryValue HKLM\SOFTWARE\Microsoft\Ole\AppCompat\RaiseDefaultAuthnLevel NAME NOT FOUND Length: 144 98 12:38:33,6795024 MCLauncher.exe 6080 RegCloseKey HKLM\SOFTWARE\Microsoft\Ole\AppCompat SUCCESS 98 12:38:33,6795096 MCLauncher.exe 6080 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 98 12:38:33,6795149 MCLauncher.exe 6080 RegQueryKey HKLM SUCCESS Query: Name 98 12:38:33,6795232 MCLauncher.exe 6080 RegOpenKey HKLM\SOFTWARE\WOW6432Node\Microsoft\OLE REPARSE Desired Access: Read 98 12:38:33,6795304 MCLauncher.exe 6080 RegOpenKey HKLM\SOFTWARE\Microsoft\Ole SUCCESS Desired Access: Read 98 12:38:33,6795362 MCLauncher.exe 6080 RegSetInfoKey HKLM\SOFTWARE\Microsoft\Ole SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 98 12:38:33,6795412 MCLauncher.exe 6080 RegQueryValue HKLM\SOFTWARE\Microsoft\Ole\DefaultAccessPermission NAME NOT FOUND Length: 144 98 12:38:33,6798349 MCLauncher.exe 6080 CreateFile C:\Windows\SysWOW64\rpcss.dll NAME NOT FOUND Desired Access: Read Attributes, Disposition: Open, Options: Open Reparse Point, Attributes: n/a, ShareMode: Read, Write, Delete, AllocationSize: n/a 98 12:38:33,6800890 MCLauncher.exe 6080 RegCloseKey HKLM\SOFTWARE\Microsoft\Ole SUCCESS 98 12:38:33,6802361 MCLauncher.exe 6080 RegOpenKey HKLM\System\CurrentControlSet\Control\Lsa REPARSE Desired Access: Query Value 98 12:38:33,6802472 MCLauncher.exe 6080 RegOpenKey HKLM\System\CurrentControlSet\Control\Lsa SUCCESS Desired Access: Query Value 98 12:38:33,6802569 MCLauncher.exe 6080 RegQueryValue HKLM\System\CurrentControlSet\Control\Lsa\AnonymousAppContainerImpersonationLevelCheck NAME NOT FOUND Length: 80 98 12:38:33,6802685 MCLauncher.exe 6080 RegCloseKey HKLM\System\CurrentControlSet\Control\Lsa SUCCESS 98 12:38:33,6802751 MCLauncher.exe 6080 RegOpenKey HKLM\System\CurrentControlSet\Control\Lsa REPARSE Desired Access: Query Value 98 12:38:33,6802815 MCLauncher.exe 6080 RegOpenKey HKLM\System\CurrentControlSet\Control\Lsa SUCCESS Desired Access: Query Value 98 12:38:33,6802873 MCLauncher.exe 6080 RegQueryValue HKLM\System\CurrentControlSet\Control\Lsa\EveryoneIncludesAnonymous SUCCESS Type: REG_DWORD, Length: 4, Data: 0 98 12:38:33,6802970 MCLauncher.exe 6080 RegCloseKey HKLM\System\CurrentControlSet\Control\Lsa SUCCESS 98 12:38:33,6803998 MCLauncher.exe 6080 RegQueryKey HKCU\Software\Classes SUCCESS Query: Name 98 12:38:33,6804084 MCLauncher.exe 6080 RegQueryKey HKCU\Software\Classes SUCCESS Query: HandleTags, HandleTags: 0x1 98 12:38:33,6804162 MCLauncher.exe 6080 RegQueryKey HKCU\Software\Classes SUCCESS Query: HandleTags, HandleTags: 0x1 98 12:38:33,6804217 MCLauncher.exe 6080 RegQueryKey HKCU\Software\Classes SUCCESS Query: Name 98 12:38:33,6804320 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Classes\WOW6432Node\Interface\{00000134-0000-0000-C000-000000000046} NAME NOT FOUND Desired Access: Read 98 12:38:33,6804453 MCLauncher.exe 6080 RegOpenKey HKCR\WOW6432Node\Interface\{00000134-0000-0000-C000-000000000046} SUCCESS Desired Access: Read 98 12:38:33,6804555 MCLauncher.exe 6080 RegSetInfoKey HKCR\WOW6432Node\Interface\{00000134-0000-0000-C000-000000000046} SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 98 12:38:33,6804602 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\Interface\{00000134-0000-0000-C000-000000000046} SUCCESS Query: Name 98 12:38:33,6804671 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\Interface\{00000134-0000-0000-C000-000000000046} SUCCESS Query: HandleTags, HandleTags: 0x401 98 12:38:33,6804780 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Classes\WOW6432Node\Interface\{00000134-0000-0000-C000-000000000046}\ProxyStubClsid32 NAME NOT FOUND Desired Access: Read 98 12:38:33,6804868 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\Interface\{00000134-0000-0000-C000-000000000046} SUCCESS Query: HandleTags, HandleTags: 0x401 98 12:38:33,6804924 MCLauncher.exe 6080 RegOpenKey HKCR\WOW6432Node\Interface\{00000134-0000-0000-C000-000000000046}\ProxyStubClsid32 SUCCESS Desired Access: Read 98 12:38:33,6805004 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\Interface\{00000134-0000-0000-C000-000000000046}\ProxyStubClsid32 SUCCESS Query: Name 98 12:38:33,6805065 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\Interface\{00000134-0000-0000-C000-000000000046}\ProxyStubClsid32 SUCCESS Query: HandleTags, HandleTags: 0x401 98 12:38:33,6805154 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Classes\WOW6432Node\Interface\{00000134-0000-0000-C000-000000000046}\ProxyStubClsid32 NAME NOT FOUND Desired Access: Maximum Allowed 98 12:38:33,6805226 MCLauncher.exe 6080 RegQueryValue HKCR\WOW6432Node\Interface\{00000134-0000-0000-C000-000000000046}\ProxyStubClsid32\(Default) SUCCESS Type: REG_SZ, Length: 78, Data: {00000320-0000-0000-C000-000000000046} 98 12:38:33,6805309 MCLauncher.exe 6080 RegCloseKey HKCR\WOW6432Node\Interface\{00000134-0000-0000-C000-000000000046}\ProxyStubClsid32 SUCCESS 98 12:38:33,6805353 MCLauncher.exe 6080 RegCloseKey HKCR\WOW6432Node\Interface\{00000134-0000-0000-C000-000000000046} SUCCESS 98 12:38:33,6805528 MCLauncher.exe 6080 RegOpenKey HKCU SUCCESS Desired Access: Read 98 12:38:33,6805600 MCLauncher.exe 6080 RegSetInfoKey HKCU SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 98 12:38:33,6805669 MCLauncher.exe 6080 RegQueryKey HKCU SUCCESS Query: HandleTags, HandleTags: 0x100 98 12:38:33,6805724 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Classes\Local Settings REPARSE Desired Access: Read 98 12:38:33,6805791 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Classes\Local Settings SUCCESS Desired Access: Read 98 12:38:33,6805860 MCLauncher.exe 6080 RegCloseKey HKCU SUCCESS 98 12:38:33,6805904 MCLauncher.exe 6080 RegCloseKey HKCU\Software\Classes\Local Settings SUCCESS 98 12:38:33,6808240 MCLauncher.exe 6080 Thread Create SUCCESS Thread ID: 3256 98 12:38:33,6809528 MCLauncher.exe 6080 Thread Create SUCCESS Thread ID: 8664 98 12:38:33,6810254 MCLauncher.exe 6080 Thread Create SUCCESS Thread ID: 11880 98 12:38:33,6810570 MCLauncher.exe 6080 RegQueryKey HKCU\Software\Classes SUCCESS Query: Name 98 12:38:33,6810789 MCLauncher.exe 6080 RegQueryKey HKCU\Software\Classes SUCCESS Query: HandleTags, HandleTags: 0x1 98 12:38:33,6810886 MCLauncher.exe 6080 RegQueryKey HKCU\Software\Classes SUCCESS Query: HandleTags, HandleTags: 0x1 98 12:38:33,6810939 MCLauncher.exe 6080 RegQueryKey HKCU\Software\Classes SUCCESS Query: Name 98 12:38:33,6811052 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Classes\WOW6432Node\Interface\{CD17328B-E4EF-4215-A92D-62A914658F82} NAME NOT FOUND Desired Access: Read 98 12:38:33,6811182 MCLauncher.exe 6080 RegOpenKey HKCR\WOW6432Node\Interface\{CD17328B-E4EF-4215-A92D-62A914658F82} SUCCESS Desired Access: Read 98 12:38:33,6811290 MCLauncher.exe 6080 RegSetInfoKey HKCR\WOW6432Node\Interface\{CD17328B-E4EF-4215-A92D-62A914658F82} SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 98 12:38:33,6811343 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\Interface\{CD17328B-E4EF-4215-A92D-62A914658F82} SUCCESS Query: Name 98 12:38:33,6811407 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\Interface\{CD17328B-E4EF-4215-A92D-62A914658F82} SUCCESS Query: HandleTags, HandleTags: 0x401 98 12:38:33,6811518 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Classes\WOW6432Node\Interface\{CD17328B-E4EF-4215-A92D-62A914658F82}\ProxyStubClsid32 NAME NOT FOUND Desired Access: Read 98 12:38:33,6811606 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\Interface\{CD17328B-E4EF-4215-A92D-62A914658F82} SUCCESS Query: HandleTags, HandleTags: 0x401 98 12:38:33,6811662 MCLauncher.exe 6080 RegOpenKey HKCR\WOW6432Node\Interface\{CD17328B-E4EF-4215-A92D-62A914658F82}\ProxyStubClsid32 SUCCESS Desired Access: Read 98 12:38:33,6811750 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\Interface\{CD17328B-E4EF-4215-A92D-62A914658F82}\ProxyStubClsid32 SUCCESS Query: Name 98 12:38:33,6811811 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\Interface\{CD17328B-E4EF-4215-A92D-62A914658F82}\ProxyStubClsid32 SUCCESS Query: HandleTags, HandleTags: 0x401 98 12:38:33,6811897 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Classes\WOW6432Node\Interface\{CD17328B-E4EF-4215-A92D-62A914658F82}\ProxyStubClsid32 NAME NOT FOUND Desired Access: Maximum Allowed 98 12:38:33,6811966 MCLauncher.exe 6080 RegQueryValue HKCR\WOW6432Node\Interface\{CD17328B-E4EF-4215-A92D-62A914658F82}\ProxyStubClsid32\(Default) SUCCESS Type: REG_SZ, Length: 78, Data: {C90250F3-4D7D-4991-9B69-A5C5BC1C2AE6} 98 12:38:33,6812052 MCLauncher.exe 6080 RegCloseKey HKCR\WOW6432Node\Interface\{CD17328B-E4EF-4215-A92D-62A914658F82}\ProxyStubClsid32 SUCCESS 98 12:38:33,6812102 MCLauncher.exe 6080 RegCloseKey HKCR\WOW6432Node\Interface\{CD17328B-E4EF-4215-A92D-62A914658F82} SUCCESS 98 12:38:33,6812196 MCLauncher.exe 6080 RegQueryKey HKCU\Software\Classes SUCCESS Query: Name 98 12:38:33,6812255 MCLauncher.exe 6080 RegQueryKey HKCU\Software\Classes SUCCESS Query: HandleTags, HandleTags: 0x1 98 12:38:33,6812321 MCLauncher.exe 6080 RegQueryKey HKCU\Software\Classes SUCCESS Query: HandleTags, HandleTags: 0x1 98 12:38:33,6812368 MCLauncher.exe 6080 RegQueryKey HKCU\Software\Classes SUCCESS Query: Name 98 12:38:33,6812454 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Classes\WOW6432Node\CLSID\{C90250F3-4D7D-4991-9B69-A5C5BC1C2AE6} NAME NOT FOUND Desired Access: Read 98 12:38:33,6812573 MCLauncher.exe 6080 RegOpenKey HKCR\WOW6432Node\CLSID\{C90250F3-4D7D-4991-9B69-A5C5BC1C2AE6} SUCCESS Desired Access: Read 98 12:38:33,6812662 MCLauncher.exe 6080 RegSetInfoKey HKCR\WOW6432Node\CLSID\{C90250F3-4D7D-4991-9B69-A5C5BC1C2AE6} SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 98 12:38:33,6812703 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{C90250F3-4D7D-4991-9B69-A5C5BC1C2AE6} SUCCESS Query: Name 98 12:38:33,6812767 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{C90250F3-4D7D-4991-9B69-A5C5BC1C2AE6} SUCCESS Query: HandleTags, HandleTags: 0x401 98 12:38:33,6812859 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Classes\WOW6432Node\CLSID\{C90250F3-4D7D-4991-9B69-A5C5BC1C2AE6}\TreatAs NAME NOT FOUND Desired Access: Query Value 98 12:38:33,6812953 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{C90250F3-4D7D-4991-9B69-A5C5BC1C2AE6} SUCCESS Query: HandleTags, HandleTags: 0x401 98 12:38:33,6813008 MCLauncher.exe 6080 RegOpenKey HKCR\WOW6432Node\CLSID\{C90250F3-4D7D-4991-9B69-A5C5BC1C2AE6}\TreatAs NAME NOT FOUND Desired Access: Query Value 98 12:38:33,6813075 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{C90250F3-4D7D-4991-9B69-A5C5BC1C2AE6} SUCCESS Query: Name 98 12:38:33,6813144 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{C90250F3-4D7D-4991-9B69-A5C5BC1C2AE6} SUCCESS Query: Name 98 12:38:33,6813197 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{C90250F3-4D7D-4991-9B69-A5C5BC1C2AE6} SUCCESS Query: HandleTags, HandleTags: 0x401 98 12:38:33,6813282 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Classes\WOW6432Node\CLSID\{C90250F3-4D7D-4991-9B69-A5C5BC1C2AE6} NAME NOT FOUND Desired Access: Maximum Allowed 98 12:38:33,6813352 MCLauncher.exe 6080 RegQueryValue HKCR\WOW6432Node\CLSID\{C90250F3-4D7D-4991-9B69-A5C5BC1C2AE6}\(Default) SUCCESS Type: REG_SZ, Length: 32, Data: PSFactoryBuffer 98 12:38:33,6813413 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{C90250F3-4D7D-4991-9B69-A5C5BC1C2AE6} SUCCESS Query: Name 98 12:38:33,6813468 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{C90250F3-4D7D-4991-9B69-A5C5BC1C2AE6} SUCCESS Query: HandleTags, HandleTags: 0x401 98 12:38:33,6813551 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Classes\WOW6432Node\CLSID\{C90250F3-4D7D-4991-9B69-A5C5BC1C2AE6} NAME NOT FOUND Desired Access: Maximum Allowed 98 12:38:33,6813615 MCLauncher.exe 6080 RegQueryValue HKCR\WOW6432Node\CLSID\{C90250F3-4D7D-4991-9B69-A5C5BC1C2AE6}\(Default) SUCCESS Type: REG_SZ, Length: 32, Data: PSFactoryBuffer 98 12:38:33,6813670 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{C90250F3-4D7D-4991-9B69-A5C5BC1C2AE6} SUCCESS Query: Name 98 12:38:33,6813728 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{C90250F3-4D7D-4991-9B69-A5C5BC1C2AE6} SUCCESS Query: HandleTags, HandleTags: 0x401 98 12:38:33,6813812 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Classes\WOW6432Node\CLSID\{C90250F3-4D7D-4991-9B69-A5C5BC1C2AE6}\InprocServer32 NAME NOT FOUND Desired Access: Read 98 12:38:33,6813892 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{C90250F3-4D7D-4991-9B69-A5C5BC1C2AE6} SUCCESS Query: HandleTags, HandleTags: 0x401 98 12:38:33,6813945 MCLauncher.exe 6080 RegOpenKey HKCR\WOW6432Node\CLSID\{C90250F3-4D7D-4991-9B69-A5C5BC1C2AE6}\InprocServer32 SUCCESS Desired Access: Read 98 12:38:33,6814019 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{C90250F3-4D7D-4991-9B69-A5C5BC1C2AE6}\InProcServer32 SUCCESS Query: Name 98 12:38:33,6814080 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{C90250F3-4D7D-4991-9B69-A5C5BC1C2AE6}\InProcServer32 SUCCESS Query: HandleTags, HandleTags: 0x401 98 12:38:33,6814163 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Classes\WOW6432Node\CLSID\{C90250F3-4D7D-4991-9B69-A5C5BC1C2AE6}\InProcServer32 NAME NOT FOUND Desired Access: Maximum Allowed 98 12:38:33,6814230 MCLauncher.exe 6080 RegQueryValue HKCR\WOW6432Node\CLSID\{C90250F3-4D7D-4991-9B69-A5C5BC1C2AE6}\InProcServer32\InprocServer32 NAME NOT FOUND Length: 144 98 12:38:33,6814360 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{C90250F3-4D7D-4991-9B69-A5C5BC1C2AE6}\InProcServer32 SUCCESS Query: Name 98 12:38:33,6814427 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{C90250F3-4D7D-4991-9B69-A5C5BC1C2AE6}\InProcServer32 SUCCESS Query: HandleTags, HandleTags: 0x401 98 12:38:33,6814526 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Classes\WOW6432Node\CLSID\{C90250F3-4D7D-4991-9B69-A5C5BC1C2AE6}\InProcServer32 NAME NOT FOUND Desired Access: Maximum Allowed 98 12:38:33,6814604 MCLauncher.exe 6080 RegQueryValue HKCR\WOW6432Node\CLSID\{C90250F3-4D7D-4991-9B69-A5C5BC1C2AE6}\InProcServer32\(Default) SUCCESS Type: REG_SZ, Length: 66, Data: C:\Windows\SysWOW64\ActXPrxy.dll 98 12:38:33,6814662 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{C90250F3-4D7D-4991-9B69-A5C5BC1C2AE6}\InProcServer32 SUCCESS Query: Name 98 12:38:33,6814720 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{C90250F3-4D7D-4991-9B69-A5C5BC1C2AE6}\InProcServer32 SUCCESS Query: HandleTags, HandleTags: 0x401 98 12:38:33,6814801 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Classes\WOW6432Node\CLSID\{C90250F3-4D7D-4991-9B69-A5C5BC1C2AE6}\InProcServer32 NAME NOT FOUND Desired Access: Maximum Allowed 98 12:38:33,6814862 MCLauncher.exe 6080 RegQueryValue HKCR\WOW6432Node\CLSID\{C90250F3-4D7D-4991-9B69-A5C5BC1C2AE6}\InProcServer32\(Default) SUCCESS Type: REG_SZ, Length: 66, Data: C:\Windows\SysWOW64\ActXPrxy.dll 98 12:38:33,6814917 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{C90250F3-4D7D-4991-9B69-A5C5BC1C2AE6}\InProcServer32 SUCCESS Query: Name 98 12:38:33,6814972 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{C90250F3-4D7D-4991-9B69-A5C5BC1C2AE6}\InProcServer32 SUCCESS Query: HandleTags, HandleTags: 0x401 98 12:38:33,6815056 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Classes\WOW6432Node\CLSID\{C90250F3-4D7D-4991-9B69-A5C5BC1C2AE6}\InProcServer32 NAME NOT FOUND Desired Access: Maximum Allowed 98 12:38:33,6815117 MCLauncher.exe 6080 RegQueryValue HKCR\WOW6432Node\CLSID\{C90250F3-4D7D-4991-9B69-A5C5BC1C2AE6}\InProcServer32\ThreadingModel SUCCESS Type: REG_SZ, Length: 10, Data: Both 98 12:38:33,6815269 MCLauncher.exe 6080 RegCloseKey HKCR\WOW6432Node\CLSID\{C90250F3-4D7D-4991-9B69-A5C5BC1C2AE6}\InProcServer32 SUCCESS 98 12:38:33,6815319 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{C90250F3-4D7D-4991-9B69-A5C5BC1C2AE6} SUCCESS Query: Name 98 12:38:33,6815382 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{C90250F3-4D7D-4991-9B69-A5C5BC1C2AE6} SUCCESS Query: HandleTags, HandleTags: 0x401 98 12:38:33,6815485 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Classes\WOW6432Node\CLSID\{C90250F3-4D7D-4991-9B69-A5C5BC1C2AE6}\InprocHandler32 NAME NOT FOUND Desired Access: Query Value 98 12:38:33,6815585 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{C90250F3-4D7D-4991-9B69-A5C5BC1C2AE6} SUCCESS Query: HandleTags, HandleTags: 0x401 98 12:38:33,6815637 MCLauncher.exe 6080 RegOpenKey HKCR\WOW6432Node\CLSID\{C90250F3-4D7D-4991-9B69-A5C5BC1C2AE6}\InprocHandler32 NAME NOT FOUND Desired Access: Query Value 98 12:38:33,6815707 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{C90250F3-4D7D-4991-9B69-A5C5BC1C2AE6} SUCCESS Query: Name 98 12:38:33,6815759 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{C90250F3-4D7D-4991-9B69-A5C5BC1C2AE6} SUCCESS Query: HandleTags, HandleTags: 0x401 98 12:38:33,6815845 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Classes\WOW6432Node\CLSID\{C90250F3-4D7D-4991-9B69-A5C5BC1C2AE6}\InprocHandler NAME NOT FOUND Desired Access: Query Value 98 12:38:33,6815923 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{C90250F3-4D7D-4991-9B69-A5C5BC1C2AE6} SUCCESS Query: HandleTags, HandleTags: 0x401 98 12:38:33,6815973 MCLauncher.exe 6080 RegOpenKey HKCR\WOW6432Node\CLSID\{C90250F3-4D7D-4991-9B69-A5C5BC1C2AE6}\InprocHandler NAME NOT FOUND Desired Access: Query Value 98 12:38:33,6816053 MCLauncher.exe 6080 RegCloseKey HKCR\WOW6432Node\CLSID\{C90250F3-4D7D-4991-9B69-A5C5BC1C2AE6} SUCCESS 98 12:38:33,6816150 MCLauncher.exe 6080 RegQueryKey HKCU\Software\Classes SUCCESS Query: Name 98 12:38:33,6816211 MCLauncher.exe 6080 RegQueryKey HKCU\Software\Classes SUCCESS Query: HandleTags, HandleTags: 0x1 98 12:38:33,6816275 MCLauncher.exe 6080 RegQueryKey HKCU\Software\Classes SUCCESS Query: HandleTags, HandleTags: 0x1 98 12:38:33,6816322 MCLauncher.exe 6080 RegQueryKey HKCU\Software\Classes SUCCESS Query: Name 98 12:38:33,6816402 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Classes\WOW6432Node\CLSID\{C90250F3-4D7D-4991-9B69-A5C5BC1C2AE6} NAME NOT FOUND Desired Access: Read 98 12:38:33,6816493 MCLauncher.exe 6080 RegOpenKey HKCR\WOW6432Node\CLSID\{C90250F3-4D7D-4991-9B69-A5C5BC1C2AE6} SUCCESS Desired Access: Read 98 12:38:33,6816571 MCLauncher.exe 6080 RegSetInfoKey HKCR\WOW6432Node\CLSID\{C90250F3-4D7D-4991-9B69-A5C5BC1C2AE6} SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 98 12:38:33,6816615 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{C90250F3-4D7D-4991-9B69-A5C5BC1C2AE6} SUCCESS Query: Name 98 12:38:33,6816671 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{C90250F3-4D7D-4991-9B69-A5C5BC1C2AE6} SUCCESS Query: HandleTags, HandleTags: 0x401 98 12:38:33,6816754 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Classes\WOW6432Node\CLSID\{C90250F3-4D7D-4991-9B69-A5C5BC1C2AE6}\TreatAs NAME NOT FOUND Desired Access: Read 98 12:38:33,6816834 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{C90250F3-4D7D-4991-9B69-A5C5BC1C2AE6} SUCCESS Query: HandleTags, HandleTags: 0x401 98 12:38:33,6816887 MCLauncher.exe 6080 RegOpenKey HKCR\WOW6432Node\CLSID\{C90250F3-4D7D-4991-9B69-A5C5BC1C2AE6}\TreatAs NAME NOT FOUND Desired Access: Read 98 12:38:33,6816951 MCLauncher.exe 6080 RegCloseKey HKCR\WOW6432Node\CLSID\{C90250F3-4D7D-4991-9B69-A5C5BC1C2AE6} SUCCESS 98 12:38:33,6819619 MCLauncher.exe 6080 CreateFile C:\Windows\SysWOW64\actxprxy.dll SUCCESS Desired Access: Read Attributes, Disposition: Open, Options: Open Reparse Point, Attributes: n/a, ShareMode: Read, Write, Delete, AllocationSize: n/a, OpenResult: Opened 98 12:38:33,6819943 MCLauncher.exe 6080 QueryBasicInformationFile C:\Windows\SysWOW64\actxprxy.dll SUCCESS CreationTime: 20.07.2018 1:33:30, LastAccessTime: 20.07.2018 1:33:30, LastWriteTime: 02.03.2018 11:14:37, ChangeTime: 20.07.2018 19:25:48, FileAttributes: A 98 12:38:33,6820040 MCLauncher.exe 6080 CloseFile C:\Windows\SysWOW64\actxprxy.dll SUCCESS 98 12:38:33,6821469 MCLauncher.exe 6080 CreateFile C:\Windows\SysWOW64\actxprxy.dll SUCCESS Desired Access: Read Data/List Directory, Execute/Traverse, Synchronize, Disposition: Open, Options: Synchronous IO Non-Alert, Non-Directory File, Attributes: n/a, ShareMode: Read, Delete, AllocationSize: n/a, OpenResult: Opened 98 12:38:33,6821832 MCLauncher.exe 6080 CreateFileMapping C:\Windows\SysWOW64\actxprxy.dll FILE LOCKED WITH ONLY READERS SyncType: SyncTypeCreateSection, PageProtection: PAGE_EXECUTE|PAGE_NOCACHE 98 12:38:33,6822012 MCLauncher.exe 6080 QueryNameInformationFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Name: \Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe 98 12:38:33,6822960 MCLauncher.exe 6080 CreateFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Desired Access: Synchronize, Disposition: Open, Options: Synchronous IO Non-Alert, Attributes: N, ShareMode: Read, Write, Delete, AllocationSize: n/a, OpenResult: Opened 98 12:38:33,6823157 MCLauncher.exe 6080 CloseFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS 98 12:38:33,6823459 MCLauncher.exe 6080 QueryNameInformationFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Name: \Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe 98 12:38:33,6824301 MCLauncher.exe 6080 CreateFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Desired Access: Synchronize, Disposition: Open, Options: Synchronous IO Non-Alert, Attributes: N, ShareMode: Read, Write, Delete, AllocationSize: n/a, OpenResult: Opened 98 12:38:33,6824473 MCLauncher.exe 6080 CloseFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS 98 12:38:33,6825235 MCLauncher.exe 6080 CreateFileMapping C:\Windows\SysWOW64\actxprxy.dll SUCCESS SyncType: SyncTypeOther 98 12:38:33,6825814 MCLauncher.exe 6080 Load Image C:\Windows\SysWOW64\actxprxy.dll SUCCESS Image Base: 0x67500000, Image Size: 0x186000 98 12:38:33,6826656 MCLauncher.exe 6080 CloseFile C:\Windows\SysWOW64\actxprxy.dll SUCCESS 98 12:38:33,6827814 MCLauncher.exe 6080 CreateFile C:\Windows\SysWOW64\actxprxy.dll SUCCESS Desired Access: Read Control, Disposition: Open, Options: , Attributes: n/a, ShareMode: Read, Delete, AllocationSize: n/a, OpenResult: Opened 98 12:38:33,6828094 MCLauncher.exe 6080 QuerySecurityFile C:\Windows\SysWOW64\actxprxy.dll BUFFER OVERFLOW Information: Owner 98 12:38:33,6828180 MCLauncher.exe 6080 QuerySecurityFile C:\Windows\SysWOW64\actxprxy.dll SUCCESS Information: Owner 98 12:38:33,6828249 MCLauncher.exe 6080 CloseFile C:\Windows\SysWOW64\actxprxy.dll SUCCESS 98 12:38:33,6832693 MCLauncher.exe 6080 RegQueryKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\Desktop\NameSpace SUCCESS Query: HandleTags, HandleTags: 0x400 98 12:38:33,6832790 MCLauncher.exe 6080 RegCreateKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\Desktop\NameSpace SUCCESS Desired Access: Notify, Disposition: REG_OPENED_EXISTING_KEY 98 12:38:33,6833743 MCLauncher.exe 6080 RegCloseKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\Desktop\NameSpace SUCCESS 98 12:38:33,6833843 MCLauncher.exe 6080 RegQueryKey HKCU SUCCESS Query: HandleTags, HandleTags: 0x0 98 12:38:33,6833904 MCLauncher.exe 6080 RegQueryKey HKCU SUCCESS Query: Name 98 12:38:33,6834003 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Microsoft\Windows\CurrentVersion\Explorer\Desktop\NameSpace SUCCESS Desired Access: Read 98 12:38:33,6834117 MCLauncher.exe 6080 RegSetInfoKey HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Desktop\NameSpace SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 98 12:38:33,6834172 MCLauncher.exe 6080 RegEnumKey HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Desktop\NameSpace SUCCESS Index: 0, Name: {018D5C66-4533-4307-9B53-224DE2ED1FE6} 98 12:38:33,6834258 MCLauncher.exe 6080 RegEnumKey HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Desktop\NameSpace NO MORE ENTRIES Index: 1, Length: 288 98 12:38:33,6834386 MCLauncher.exe 6080 RegQueryKey HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Desktop\NameSpace SUCCESS Query: HandleTags, HandleTags: 0x400 98 12:38:33,6834452 MCLauncher.exe 6080 RegCreateKey HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Desktop\NameSpace SUCCESS Desired Access: Notify, Disposition: REG_OPENED_EXISTING_KEY 98 12:38:33,6834884 MCLauncher.exe 6080 RegCloseKey HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Desktop\NameSpace SUCCESS 98 12:38:33,6834993 MCLauncher.exe 6080 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 98 12:38:33,6835048 MCLauncher.exe 6080 RegQueryKey HKLM SUCCESS Query: Name 98 12:38:33,6835150 MCLauncher.exe 6080 RegOpenKey HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\Desktop\NameSpace\DelegateFolders SUCCESS Desired Access: Read 98 12:38:33,6835270 MCLauncher.exe 6080 RegSetInfoKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\Desktop\NameSpace\DelegateFolders SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 98 12:38:33,6835314 MCLauncher.exe 6080 RegEnumKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\Desktop\NameSpace\DelegateFolders SUCCESS Index: 0, Name: {F5FB2C77-0E2F-4A16-A381-3E560C68BC83} 98 12:38:33,6835394 MCLauncher.exe 6080 RegEnumKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\Desktop\NameSpace\DelegateFolders NO MORE ENTRIES Index: 1, Length: 288 98 12:38:33,6835505 MCLauncher.exe 6080 RegQueryKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\Desktop\NameSpace\DelegateFolders SUCCESS Query: HandleTags, HandleTags: 0x400 98 12:38:33,6835563 MCLauncher.exe 6080 RegCreateKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\Desktop\NameSpace\DelegateFolders SUCCESS Desired Access: Notify, Disposition: REG_OPENED_EXISTING_KEY 98 12:38:33,6836073 MCLauncher.exe 6080 RegCloseKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\Desktop\NameSpace\DelegateFolders SUCCESS 98 12:38:33,6836142 MCLauncher.exe 6080 RegQueryKey HKCU SUCCESS Query: HandleTags, HandleTags: 0x0 98 12:38:33,6836198 MCLauncher.exe 6080 RegQueryKey HKCU SUCCESS Query: Name 98 12:38:33,6836281 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Microsoft\Windows\CurrentVersion\Explorer\Desktop\NameSpace\DelegateFolders NAME NOT FOUND Desired Access: Read 98 12:38:33,6836425 MCLauncher.exe 6080 RegQueryKey HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer SUCCESS Query: HandleTags, HandleTags: 0x400 98 12:38:33,6836480 MCLauncher.exe 6080 RegOpenKey HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\SessionInfo\1 SUCCESS Desired Access: Query Value 98 12:38:33,6836583 MCLauncher.exe 6080 RegQueryKey HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\SessionInfo\1 SUCCESS Query: HandleTags, HandleTags: 0x400 98 12:38:33,6836635 MCLauncher.exe 6080 RegOpenKey HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\SessionInfo\1\Desktop\NameSpace NAME NOT FOUND Desired Access: Read 98 12:38:33,6836721 MCLauncher.exe 6080 RegQueryKey HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\SessionInfo\1 SUCCESS Query: HandleTags, HandleTags: 0x400 98 12:38:33,6836771 MCLauncher.exe 6080 RegOpenKey HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\SessionInfo\1\Desktop\NameSpace\DelegateFolders NAME NOT FOUND Desired Access: Read 98 12:38:33,6836838 MCLauncher.exe 6080 RegCloseKey HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\SessionInfo\1 SUCCESS 98 12:38:33,6836926 MCLauncher.exe 6080 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 98 12:38:33,6836973 MCLauncher.exe 6080 RegQueryKey HKLM SUCCESS Query: Name 98 12:38:33,6837062 MCLauncher.exe 6080 RegOpenKey HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\Desktop\NameSpace\DelegateFolders SUCCESS Desired Access: Query Value 98 12:38:33,6837145 MCLauncher.exe 6080 RegSetInfoKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\Desktop\NameSpace\DelegateFolders SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 98 12:38:33,6837198 MCLauncher.exe 6080 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\Desktop\NameSpace\DelegateFolders\StorageDelegateSuppressionPolicy NAME NOT FOUND Length: 144 98 12:38:33,6837350 MCLauncher.exe 6080 RegCloseKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\Desktop\NameSpace\DelegateFolders SUCCESS 98 12:38:33,6837414 MCLauncher.exe 6080 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 98 12:38:33,6837467 MCLauncher.exe 6080 RegQueryKey HKLM SUCCESS Query: Name 98 12:38:33,6837553 MCLauncher.exe 6080 RegOpenKey HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\Desktop\NameSpace\DelegateFolders SUCCESS Desired Access: Query Value 98 12:38:33,6837636 MCLauncher.exe 6080 RegSetInfoKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\Desktop\NameSpace\DelegateFolders SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 98 12:38:33,6837680 MCLauncher.exe 6080 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\Desktop\NameSpace\DelegateFolders\StorageDelegate NAME NOT FOUND Length: 144 98 12:38:33,6837805 MCLauncher.exe 6080 RegCloseKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\Desktop\NameSpace\DelegateFolders SUCCESS 98 12:38:33,6837902 MCLauncher.exe 6080 RegQueryKey HKCU\Software\Classes SUCCESS Query: Name 98 12:38:33,6837971 MCLauncher.exe 6080 RegQueryKey HKCU\Software\Classes SUCCESS Query: HandleTags, HandleTags: 0x1 98 12:38:33,6838040 MCLauncher.exe 6080 RegQueryKey HKCU\Software\Classes SUCCESS Query: HandleTags, HandleTags: 0x1 98 12:38:33,6838087 MCLauncher.exe 6080 RegQueryKey HKCU\Software\Classes SUCCESS Query: Name 98 12:38:33,6838181 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Classes\WOW6432Node\CLSID\{208D2C60-3AEA-1069-A2D7-08002B30309D}\ShellFolder NAME NOT FOUND Desired Access: Query Value 98 12:38:33,6838309 MCLauncher.exe 6080 RegOpenKey HKCR\WOW6432Node\CLSID\{208D2C60-3AEA-1069-A2D7-08002B30309D}\ShellFolder SUCCESS Desired Access: Query Value 98 12:38:33,6838489 MCLauncher.exe 6080 RegSetInfoKey HKCR\WOW6432Node\CLSID\{208D2C60-3AEA-1069-A2D7-08002B30309D}\ShellFolder SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 98 12:38:33,6838542 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{208D2C60-3AEA-1069-A2D7-08002B30309D}\ShellFolder SUCCESS Query: Name 98 12:38:33,6838603 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{208D2C60-3AEA-1069-A2D7-08002B30309D}\ShellFolder SUCCESS Query: HandleTags, HandleTags: 0x401 98 12:38:33,6838708 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Classes\WOW6432Node\CLSID\{208D2C60-3AEA-1069-A2D7-08002B30309D}\ShellFolder NAME NOT FOUND Desired Access: Maximum Allowed 98 12:38:33,6838780 MCLauncher.exe 6080 RegQueryValue HKCR\WOW6432Node\CLSID\{208D2C60-3AEA-1069-A2D7-08002B30309D}\ShellFolder\Attributes NAME NOT FOUND Length: 144 98 12:38:33,6838902 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{208D2C60-3AEA-1069-A2D7-08002B30309D}\ShellFolder SUCCESS Query: Name 98 12:38:33,6838971 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{208D2C60-3AEA-1069-A2D7-08002B30309D}\ShellFolder SUCCESS Query: HandleTags, HandleTags: 0x401 98 12:38:33,6839076 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Classes\WOW6432Node\CLSID\{208D2C60-3AEA-1069-A2D7-08002B30309D}\ShellFolder NAME NOT FOUND Desired Access: Maximum Allowed 98 12:38:33,6839157 MCLauncher.exe 6080 RegQueryValue HKCR\WOW6432Node\CLSID\{208D2C60-3AEA-1069-A2D7-08002B30309D}\ShellFolder\CallForAttributes NAME NOT FOUND Length: 144 98 12:38:33,6839270 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{208D2C60-3AEA-1069-A2D7-08002B30309D}\ShellFolder SUCCESS Query: Name 98 12:38:33,6839337 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{208D2C60-3AEA-1069-A2D7-08002B30309D}\ShellFolder SUCCESS Query: HandleTags, HandleTags: 0x401 98 12:38:33,6839436 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Classes\WOW6432Node\CLSID\{208D2C60-3AEA-1069-A2D7-08002B30309D}\ShellFolder NAME NOT FOUND Desired Access: Maximum Allowed 98 12:38:33,6839514 MCLauncher.exe 6080 RegQueryValue HKCR\WOW6432Node\CLSID\{208D2C60-3AEA-1069-A2D7-08002B30309D}\ShellFolder\RestrictedAttributes NAME NOT FOUND Length: 144 98 12:38:33,6839625 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{208D2C60-3AEA-1069-A2D7-08002B30309D}\ShellFolder SUCCESS Query: Name 98 12:38:33,6839869 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{208D2C60-3AEA-1069-A2D7-08002B30309D}\ShellFolder SUCCESS Query: HandleTags, HandleTags: 0x401 98 12:38:33,6839982 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Classes\WOW6432Node\CLSID\{208D2C60-3AEA-1069-A2D7-08002B30309D}\ShellFolder NAME NOT FOUND Desired Access: Maximum Allowed 98 12:38:33,6840065 MCLauncher.exe 6080 RegQueryValue HKCR\WOW6432Node\CLSID\{208D2C60-3AEA-1069-A2D7-08002B30309D}\ShellFolder\FolderValueFlags SUCCESS Type: REG_DWORD, Length: 4, Data: 513 98 12:38:33,6840218 MCLauncher.exe 6080 RegCloseKey HKCR\WOW6432Node\CLSID\{208D2C60-3AEA-1069-A2D7-08002B30309D}\ShellFolder SUCCESS 98 12:38:33,6840315 MCLauncher.exe 6080 RegQueryKey HKCU SUCCESS Query: HandleTags, HandleTags: 0x0 98 12:38:33,6840367 MCLauncher.exe 6080 RegQueryKey HKCU SUCCESS Query: Name 98 12:38:33,6840448 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Microsoft\Windows\CurrentVersion\Explorer\CLSID\{208D2C60-3AEA-1069-A2D7-08002B30309D}\ShellFolder NAME NOT FOUND Desired Access: Query Value 98 12:38:33,6840561 MCLauncher.exe 6080 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 98 12:38:33,6840606 MCLauncher.exe 6080 RegQueryKey HKLM SUCCESS Query: Name 98 12:38:33,6840694 MCLauncher.exe 6080 RegOpenKey HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\CLSID\{208D2C60-3AEA-1069-A2D7-08002B30309D}\ShellFolder NAME NOT FOUND Desired Access: Query Value 98 12:38:33,6840800 MCLauncher.exe 6080 RegQueryKey HKCU SUCCESS Query: HandleTags, HandleTags: 0x0 98 12:38:33,6840847 MCLauncher.exe 6080 RegQueryKey HKCU SUCCESS Query: Name 98 12:38:33,6840913 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Microsoft\Windows\CurrentVersion\Policies\NonEnum NAME NOT FOUND Desired Access: Query Value 98 12:38:33,6841002 MCLauncher.exe 6080 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 98 12:38:33,6841049 MCLauncher.exe 6080 RegQueryKey HKLM SUCCESS Query: Name 98 12:38:33,6841124 MCLauncher.exe 6080 RegOpenKey HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Policies\NonEnum REPARSE Desired Access: Query Value 98 12:38:33,6841196 MCLauncher.exe 6080 RegOpenKey HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\NonEnum SUCCESS Desired Access: Query Value 98 12:38:33,6841265 MCLauncher.exe 6080 RegSetInfoKey HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\NonEnum SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 98 12:38:33,6841309 MCLauncher.exe 6080 RegQueryValue HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\NonEnum\{208D2C60-3AEA-1069-A2D7-08002B30309D} NAME NOT FOUND Length: 144 98 12:38:33,6841453 MCLauncher.exe 6080 RegCloseKey HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\NonEnum SUCCESS 98 12:38:33,6841534 MCLauncher.exe 6080 RegQueryKey HKCU\Software\Classes SUCCESS Query: Name 98 12:38:33,6841600 MCLauncher.exe 6080 RegQueryKey HKCU\Software\Classes SUCCESS Query: HandleTags, HandleTags: 0x1 98 12:38:33,6841667 MCLauncher.exe 6080 RegQueryKey HKCU\Software\Classes SUCCESS Query: HandleTags, HandleTags: 0x1 98 12:38:33,6841714 MCLauncher.exe 6080 RegQueryKey HKCU\Software\Classes SUCCESS Query: Name 98 12:38:33,6841805 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Classes\WOW6432Node\CLSID\{871C5380-42A0-1069-A2EA-08002B30309D}\ShellFolder NAME NOT FOUND Desired Access: Query Value 98 12:38:33,6841919 MCLauncher.exe 6080 RegOpenKey HKCR\WOW6432Node\CLSID\{871C5380-42A0-1069-A2EA-08002B30309D}\ShellFolder SUCCESS Desired Access: Query Value 98 12:38:33,6842074 MCLauncher.exe 6080 RegSetInfoKey HKCR\WOW6432Node\CLSID\{871C5380-42A0-1069-A2EA-08002B30309D}\ShellFolder SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 98 12:38:33,6842118 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{871C5380-42A0-1069-A2EA-08002B30309D}\ShellFolder SUCCESS Query: Name 98 12:38:33,6842179 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{871C5380-42A0-1069-A2EA-08002B30309D}\ShellFolder SUCCESS Query: HandleTags, HandleTags: 0x401 98 12:38:33,6842274 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Classes\WOW6432Node\CLSID\{871C5380-42A0-1069-A2EA-08002B30309D}\ShellFolder NAME NOT FOUND Desired Access: Maximum Allowed 98 12:38:33,6842340 MCLauncher.exe 6080 RegQueryValue HKCR\WOW6432Node\CLSID\{871C5380-42A0-1069-A2EA-08002B30309D}\ShellFolder\Attributes SUCCESS Type: REG_DWORD, Length: 4, Data: 36 98 12:38:33,6842473 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{871C5380-42A0-1069-A2EA-08002B30309D}\ShellFolder SUCCESS Query: Name 98 12:38:33,6842542 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{871C5380-42A0-1069-A2EA-08002B30309D}\ShellFolder SUCCESS Query: HandleTags, HandleTags: 0x401 98 12:38:33,6842642 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Classes\WOW6432Node\CLSID\{871C5380-42A0-1069-A2EA-08002B30309D}\ShellFolder NAME NOT FOUND Desired Access: Maximum Allowed 98 12:38:33,6842720 MCLauncher.exe 6080 RegQueryValue HKCR\WOW6432Node\CLSID\{871C5380-42A0-1069-A2EA-08002B30309D}\ShellFolder\CallForAttributes NAME NOT FOUND Length: 144 98 12:38:33,6842830 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{871C5380-42A0-1069-A2EA-08002B30309D}\ShellFolder SUCCESS Query: Name 98 12:38:33,6842897 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{871C5380-42A0-1069-A2EA-08002B30309D}\ShellFolder SUCCESS Query: HandleTags, HandleTags: 0x401 98 12:38:33,6842994 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Classes\WOW6432Node\CLSID\{871C5380-42A0-1069-A2EA-08002B30309D}\ShellFolder NAME NOT FOUND Desired Access: Maximum Allowed 98 12:38:33,6843071 MCLauncher.exe 6080 RegQueryValue HKCR\WOW6432Node\CLSID\{871C5380-42A0-1069-A2EA-08002B30309D}\ShellFolder\RestrictedAttributes NAME NOT FOUND Length: 144 98 12:38:33,6843180 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{871C5380-42A0-1069-A2EA-08002B30309D}\ShellFolder SUCCESS Query: Name 98 12:38:33,6843243 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{871C5380-42A0-1069-A2EA-08002B30309D}\ShellFolder SUCCESS Query: HandleTags, HandleTags: 0x401 98 12:38:33,6843340 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Classes\WOW6432Node\CLSID\{871C5380-42A0-1069-A2EA-08002B30309D}\ShellFolder NAME NOT FOUND Desired Access: Maximum Allowed 98 12:38:33,6843415 MCLauncher.exe 6080 RegQueryValue HKCR\WOW6432Node\CLSID\{871C5380-42A0-1069-A2EA-08002B30309D}\ShellFolder\FolderValueFlags SUCCESS Type: REG_DWORD, Length: 4, Data: 131602 98 12:38:33,6843551 MCLauncher.exe 6080 RegCloseKey HKCR\WOW6432Node\CLSID\{871C5380-42A0-1069-A2EA-08002B30309D}\ShellFolder SUCCESS 98 12:38:33,6843637 MCLauncher.exe 6080 RegQueryKey HKCU SUCCESS Query: HandleTags, HandleTags: 0x0 98 12:38:33,6843687 MCLauncher.exe 6080 RegQueryKey HKCU SUCCESS Query: Name 98 12:38:33,6843767 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Microsoft\Windows\CurrentVersion\Explorer\CLSID\{871C5380-42A0-1069-A2EA-08002B30309D}\ShellFolder SUCCESS Desired Access: Query Value 98 12:38:33,6843897 MCLauncher.exe 6080 RegSetInfoKey HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\CLSID\{871C5380-42A0-1069-A2EA-08002B30309D}\ShellFolder SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 98 12:38:33,6843941 MCLauncher.exe 6080 RegQueryValue HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\CLSID\{871C5380-42A0-1069-A2EA-08002B30309D}\ShellFolder\Attributes SUCCESS Type: REG_DWORD, Length: 4, Data: 1048576 98 12:38:33,6844077 MCLauncher.exe 6080 RegCloseKey HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\CLSID\{871C5380-42A0-1069-A2EA-08002B30309D}\ShellFolder SUCCESS 98 12:38:33,6844146 MCLauncher.exe 6080 RegQueryKey HKCU SUCCESS Query: HandleTags, HandleTags: 0x0 98 12:38:33,6844199 MCLauncher.exe 6080 RegQueryKey HKCU SUCCESS Query: Name 98 12:38:33,6844274 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Microsoft\Windows\CurrentVersion\Policies\NonEnum NAME NOT FOUND Desired Access: Query Value 98 12:38:33,6844374 MCLauncher.exe 6080 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 98 12:38:33,6844418 MCLauncher.exe 6080 RegQueryKey HKLM SUCCESS Query: Name 98 12:38:33,6844498 MCLauncher.exe 6080 RegOpenKey HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Policies\NonEnum REPARSE Desired Access: Query Value 98 12:38:33,6844568 MCLauncher.exe 6080 RegOpenKey HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\NonEnum SUCCESS Desired Access: Query Value 98 12:38:33,6844629 MCLauncher.exe 6080 RegSetInfoKey HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\NonEnum SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 98 12:38:33,6844670 MCLauncher.exe 6080 RegQueryValue HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\NonEnum\{871C5380-42A0-1069-A2EA-08002B30309D} NAME NOT FOUND Length: 144 98 12:38:33,6844798 MCLauncher.exe 6080 RegCloseKey HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\NonEnum SUCCESS 98 12:38:33,6844872 MCLauncher.exe 6080 RegQueryKey HKCU\Software\Classes SUCCESS Query: Name 98 12:38:33,6844939 MCLauncher.exe 6080 RegQueryKey HKCU\Software\Classes SUCCESS Query: HandleTags, HandleTags: 0x1 98 12:38:33,6845005 MCLauncher.exe 6080 RegQueryKey HKCU\Software\Classes SUCCESS Query: HandleTags, HandleTags: 0x1 98 12:38:33,6845052 MCLauncher.exe 6080 RegQueryKey HKCU\Software\Classes SUCCESS Query: Name 98 12:38:33,6845141 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Classes\WOW6432Node\CLSID\{645FF040-5081-101B-9F08-00AA002F954E}\ShellFolder NAME NOT FOUND Desired Access: Query Value 98 12:38:33,6845249 MCLauncher.exe 6080 RegOpenKey HKCR\WOW6432Node\CLSID\{645FF040-5081-101B-9F08-00AA002F954E}\ShellFolder SUCCESS Desired Access: Query Value 98 12:38:33,6845388 MCLauncher.exe 6080 RegSetInfoKey HKCR\WOW6432Node\CLSID\{645FF040-5081-101B-9F08-00AA002F954E}\ShellFolder SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 98 12:38:33,6845432 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{645FF040-5081-101B-9F08-00AA002F954E}\ShellFolder SUCCESS Query: Name 98 12:38:33,6845496 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{645FF040-5081-101B-9F08-00AA002F954E}\ShellFolder SUCCESS Query: HandleTags, HandleTags: 0x401 98 12:38:33,6845587 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Classes\WOW6432Node\CLSID\{645FF040-5081-101B-9F08-00AA002F954E}\ShellFolder NAME NOT FOUND Desired Access: Maximum Allowed 98 12:38:33,6845654 MCLauncher.exe 6080 RegQueryValue HKCR\WOW6432Node\CLSID\{645FF040-5081-101B-9F08-00AA002F954E}\ShellFolder\Attributes SUCCESS Type: REG_BINARY, Length: 4, Data: 40 01 00 20 98 12:38:33,6845781 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{645FF040-5081-101B-9F08-00AA002F954E}\ShellFolder SUCCESS Query: Name 98 12:38:33,6845848 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{645FF040-5081-101B-9F08-00AA002F954E}\ShellFolder SUCCESS Query: HandleTags, HandleTags: 0x401 98 12:38:33,6845950 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Classes\WOW6432Node\CLSID\{645FF040-5081-101B-9F08-00AA002F954E}\ShellFolder NAME NOT FOUND Desired Access: Maximum Allowed 98 12:38:33,6846028 MCLauncher.exe 6080 RegQueryValue HKCR\WOW6432Node\CLSID\{645FF040-5081-101B-9F08-00AA002F954E}\ShellFolder\CallForAttributes NAME NOT FOUND Length: 144 98 12:38:33,6846136 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{645FF040-5081-101B-9F08-00AA002F954E}\ShellFolder SUCCESS Query: Name 98 12:38:33,6846199 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{645FF040-5081-101B-9F08-00AA002F954E}\ShellFolder SUCCESS Query: HandleTags, HandleTags: 0x401 98 12:38:33,6846299 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Classes\WOW6432Node\CLSID\{645FF040-5081-101B-9F08-00AA002F954E}\ShellFolder NAME NOT FOUND Desired Access: Maximum Allowed 98 12:38:33,6846374 MCLauncher.exe 6080 RegQueryValue HKCR\WOW6432Node\CLSID\{645FF040-5081-101B-9F08-00AA002F954E}\ShellFolder\RestrictedAttributes NAME NOT FOUND Length: 144 98 12:38:33,6846482 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{645FF040-5081-101B-9F08-00AA002F954E}\ShellFolder SUCCESS Query: Name 98 12:38:33,6846546 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{645FF040-5081-101B-9F08-00AA002F954E}\ShellFolder SUCCESS Query: HandleTags, HandleTags: 0x401 98 12:38:33,6846643 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Classes\WOW6432Node\CLSID\{645FF040-5081-101B-9F08-00AA002F954E}\ShellFolder NAME NOT FOUND Desired Access: Maximum Allowed 98 12:38:33,6846718 MCLauncher.exe 6080 RegQueryValue HKCR\WOW6432Node\CLSID\{645FF040-5081-101B-9F08-00AA002F954E}\ShellFolder\FolderValueFlags SUCCESS Type: REG_DWORD, Length: 4, Data: 512 98 12:38:33,6846851 MCLauncher.exe 6080 RegCloseKey HKCR\WOW6432Node\CLSID\{645FF040-5081-101B-9F08-00AA002F954E}\ShellFolder SUCCESS 98 12:38:33,6846934 MCLauncher.exe 6080 RegQueryKey HKCU SUCCESS Query: HandleTags, HandleTags: 0x0 98 12:38:33,6846986 MCLauncher.exe 6080 RegQueryKey HKCU SUCCESS Query: Name 98 12:38:33,6847061 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Microsoft\Windows\CurrentVersion\Explorer\CLSID\{645FF040-5081-101B-9F08-00AA002F954E}\ShellFolder NAME NOT FOUND Desired Access: Query Value 98 12:38:33,6847164 MCLauncher.exe 6080 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 98 12:38:33,6847211 MCLauncher.exe 6080 RegQueryKey HKLM SUCCESS Query: Name 98 12:38:33,6847291 MCLauncher.exe 6080 RegOpenKey HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\CLSID\{645FF040-5081-101B-9F08-00AA002F954E}\ShellFolder NAME NOT FOUND Desired Access: Query Value 98 12:38:33,6847388 MCLauncher.exe 6080 RegQueryKey HKCU SUCCESS Query: HandleTags, HandleTags: 0x0 98 12:38:33,6847435 MCLauncher.exe 6080 RegQueryKey HKCU SUCCESS Query: Name 98 12:38:33,6847499 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Microsoft\Windows\CurrentVersion\Policies\NonEnum NAME NOT FOUND Desired Access: Query Value 98 12:38:33,6847579 MCLauncher.exe 6080 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 98 12:38:33,6847626 MCLauncher.exe 6080 RegQueryKey HKLM SUCCESS Query: Name 98 12:38:33,6847696 MCLauncher.exe 6080 RegOpenKey HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Policies\NonEnum REPARSE Desired Access: Query Value 98 12:38:33,6847756 MCLauncher.exe 6080 RegOpenKey HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\NonEnum SUCCESS Desired Access: Query Value 98 12:38:33,6847820 MCLauncher.exe 6080 RegSetInfoKey HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\NonEnum SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 98 12:38:33,6847862 MCLauncher.exe 6080 RegQueryValue HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\NonEnum\{645FF040-5081-101B-9F08-00AA002F954E} NAME NOT FOUND Length: 144 98 12:38:33,6847989 MCLauncher.exe 6080 RegCloseKey HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\NonEnum SUCCESS 98 12:38:33,6848061 MCLauncher.exe 6080 RegQueryKey HKCU\Software\Classes SUCCESS Query: Name 98 12:38:33,6848125 MCLauncher.exe 6080 RegQueryKey HKCU\Software\Classes SUCCESS Query: HandleTags, HandleTags: 0x1 98 12:38:33,6848191 MCLauncher.exe 6080 RegQueryKey HKCU\Software\Classes SUCCESS Query: HandleTags, HandleTags: 0x1 98 12:38:33,6848239 MCLauncher.exe 6080 RegQueryKey HKCU\Software\Classes SUCCESS Query: Name 98 12:38:33,6848324 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Classes\WOW6432Node\CLSID\{26EE0668-A00A-44D7-9371-BEB064C98683}\ShellFolder NAME NOT FOUND Desired Access: Query Value 98 12:38:33,6848433 MCLauncher.exe 6080 RegOpenKey HKCR\WOW6432Node\CLSID\{26EE0668-A00A-44D7-9371-BEB064C98683}\ShellFolder SUCCESS Desired Access: Query Value 98 12:38:33,6848565 MCLauncher.exe 6080 RegSetInfoKey HKCR\WOW6432Node\CLSID\{26EE0668-A00A-44D7-9371-BEB064C98683}\ShellFolder SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 98 12:38:33,6848610 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{26EE0668-A00A-44D7-9371-BEB064C98683}\ShellFolder SUCCESS Query: Name 98 12:38:33,6848674 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{26EE0668-A00A-44D7-9371-BEB064C98683}\ShellFolder SUCCESS Query: HandleTags, HandleTags: 0x401 98 12:38:33,6848765 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Classes\WOW6432Node\CLSID\{26EE0668-A00A-44D7-9371-BEB064C98683}\ShellFolder NAME NOT FOUND Desired Access: Maximum Allowed 98 12:38:33,6848831 MCLauncher.exe 6080 RegQueryValue HKCR\WOW6432Node\CLSID\{26EE0668-A00A-44D7-9371-BEB064C98683}\ShellFolder\Attributes SUCCESS Type: REG_DWORD, Length: 4, Data: 2684354564 98 12:38:33,6848959 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{26EE0668-A00A-44D7-9371-BEB064C98683}\ShellFolder SUCCESS Query: Name 98 12:38:33,6849025 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{26EE0668-A00A-44D7-9371-BEB064C98683}\ShellFolder SUCCESS Query: HandleTags, HandleTags: 0x401 98 12:38:33,6849125 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Classes\WOW6432Node\CLSID\{26EE0668-A00A-44D7-9371-BEB064C98683}\ShellFolder NAME NOT FOUND Desired Access: Maximum Allowed 98 12:38:33,6849203 MCLauncher.exe 6080 RegQueryValue HKCR\WOW6432Node\CLSID\{26EE0668-A00A-44D7-9371-BEB064C98683}\ShellFolder\CallForAttributes NAME NOT FOUND Length: 144 98 12:38:33,6849314 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{26EE0668-A00A-44D7-9371-BEB064C98683}\ShellFolder SUCCESS Query: Name 98 12:38:33,6849377 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{26EE0668-A00A-44D7-9371-BEB064C98683}\ShellFolder SUCCESS Query: HandleTags, HandleTags: 0x401 98 12:38:33,6849652 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Classes\WOW6432Node\CLSID\{26EE0668-A00A-44D7-9371-BEB064C98683}\ShellFolder NAME NOT FOUND Desired Access: Maximum Allowed 98 12:38:33,6849762 MCLauncher.exe 6080 RegQueryValue HKCR\WOW6432Node\CLSID\{26EE0668-A00A-44D7-9371-BEB064C98683}\ShellFolder\RestrictedAttributes NAME NOT FOUND Length: 144 98 12:38:33,6849984 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{26EE0668-A00A-44D7-9371-BEB064C98683}\ShellFolder SUCCESS Query: Name 98 12:38:33,6850070 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{26EE0668-A00A-44D7-9371-BEB064C98683}\ShellFolder SUCCESS Query: HandleTags, HandleTags: 0x401 98 12:38:33,6850172 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Classes\WOW6432Node\CLSID\{26EE0668-A00A-44D7-9371-BEB064C98683}\ShellFolder NAME NOT FOUND Desired Access: Maximum Allowed 98 12:38:33,6850250 MCLauncher.exe 6080 RegQueryValue HKCR\WOW6432Node\CLSID\{26EE0668-A00A-44D7-9371-BEB064C98683}\ShellFolder\FolderValueFlags SUCCESS Type: REG_DWORD, Length: 4, Data: 4609 98 12:38:33,6850389 MCLauncher.exe 6080 RegCloseKey HKCR\WOW6432Node\CLSID\{26EE0668-A00A-44D7-9371-BEB064C98683}\ShellFolder SUCCESS 98 12:38:33,6850480 MCLauncher.exe 6080 RegQueryKey HKCU SUCCESS Query: HandleTags, HandleTags: 0x0 98 12:38:33,6850530 MCLauncher.exe 6080 RegQueryKey HKCU SUCCESS Query: Name 98 12:38:33,6850610 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Microsoft\Windows\CurrentVersion\Explorer\CLSID\{26EE0668-A00A-44D7-9371-BEB064C98683}\ShellFolder NAME NOT FOUND Desired Access: Query Value 98 12:38:33,6850713 MCLauncher.exe 6080 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 98 12:38:33,6850760 MCLauncher.exe 6080 RegQueryKey HKLM SUCCESS Query: Name 98 12:38:33,6850843 MCLauncher.exe 6080 RegOpenKey HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\CLSID\{26EE0668-A00A-44D7-9371-BEB064C98683}\ShellFolder NAME NOT FOUND Desired Access: Query Value 98 12:38:33,6850934 MCLauncher.exe 6080 RegQueryKey HKCU SUCCESS Query: HandleTags, HandleTags: 0x0 98 12:38:33,6850979 MCLauncher.exe 6080 RegQueryKey HKCU SUCCESS Query: Name 98 12:38:33,6851045 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Microsoft\Windows\CurrentVersion\Policies\NonEnum NAME NOT FOUND Desired Access: Query Value 98 12:38:33,6851123 MCLauncher.exe 6080 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 98 12:38:33,6851170 MCLauncher.exe 6080 RegQueryKey HKLM SUCCESS Query: Name 98 12:38:33,6851242 MCLauncher.exe 6080 RegOpenKey HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Policies\NonEnum REPARSE Desired Access: Query Value 98 12:38:33,6851303 MCLauncher.exe 6080 RegOpenKey HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\NonEnum SUCCESS Desired Access: Query Value 98 12:38:33,6851361 MCLauncher.exe 6080 RegSetInfoKey HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\NonEnum SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 98 12:38:33,6851408 MCLauncher.exe 6080 RegQueryValue HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\NonEnum\{26EE0668-A00A-44D7-9371-BEB064C98683} NAME NOT FOUND Length: 144 98 12:38:33,6851533 MCLauncher.exe 6080 RegCloseKey HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\NonEnum SUCCESS 98 12:38:33,6851608 MCLauncher.exe 6080 RegQueryKey HKCU\Software\Classes SUCCESS Query: Name 98 12:38:33,6851674 MCLauncher.exe 6080 RegQueryKey HKCU\Software\Classes SUCCESS Query: HandleTags, HandleTags: 0x1 98 12:38:33,6851741 MCLauncher.exe 6080 RegQueryKey HKCU\Software\Classes SUCCESS Query: HandleTags, HandleTags: 0x1 98 12:38:33,6851788 MCLauncher.exe 6080 RegQueryKey HKCU\Software\Classes SUCCESS Query: Name 98 12:38:33,6851876 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Classes\WOW6432Node\CLSID\{59031A47-3F72-44A7-89C5-5595FE6B30EE}\ShellFolder NAME NOT FOUND Desired Access: Query Value 98 12:38:33,6851984 MCLauncher.exe 6080 RegOpenKey HKCR\WOW6432Node\CLSID\{59031A47-3F72-44A7-89C5-5595FE6B30EE}\ShellFolder SUCCESS Desired Access: Query Value 98 12:38:33,6852073 MCLauncher.exe 6080 RegSetInfoKey HKCR\WOW6432Node\CLSID\{59031a47-3f72-44a7-89c5-5595fe6b30ee}\ShellFolder SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 98 12:38:33,6852117 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{59031a47-3f72-44a7-89c5-5595fe6b30ee}\ShellFolder SUCCESS Query: Name 98 12:38:33,6852184 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{59031a47-3f72-44a7-89c5-5595fe6b30ee}\ShellFolder SUCCESS Query: HandleTags, HandleTags: 0x401 98 12:38:33,6852278 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Classes\WOW6432Node\CLSID\{59031a47-3f72-44a7-89c5-5595fe6b30ee}\ShellFolder NAME NOT FOUND Desired Access: Maximum Allowed 98 12:38:33,6852345 MCLauncher.exe 6080 RegQueryValue HKCR\WOW6432Node\CLSID\{59031a47-3f72-44a7-89c5-5595fe6b30ee}\ShellFolder\Attributes SUCCESS Type: REG_DWORD, Length: 4, Data: 4035182893 98 12:38:33,6852472 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{59031a47-3f72-44a7-89c5-5595fe6b30ee}\ShellFolder SUCCESS Query: Name 98 12:38:33,6852541 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{59031a47-3f72-44a7-89c5-5595fe6b30ee}\ShellFolder SUCCESS Query: HandleTags, HandleTags: 0x401 98 12:38:33,6852641 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Classes\WOW6432Node\CLSID\{59031a47-3f72-44a7-89c5-5595fe6b30ee}\ShellFolder NAME NOT FOUND Desired Access: Maximum Allowed 98 12:38:33,6852719 MCLauncher.exe 6080 RegQueryValue HKCR\WOW6432Node\CLSID\{59031a47-3f72-44a7-89c5-5595fe6b30ee}\ShellFolder\CallForAttributes NAME NOT FOUND Length: 144 98 12:38:33,6852829 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{59031a47-3f72-44a7-89c5-5595fe6b30ee}\ShellFolder SUCCESS Query: Name 98 12:38:33,6852890 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{59031a47-3f72-44a7-89c5-5595fe6b30ee}\ShellFolder SUCCESS Query: HandleTags, HandleTags: 0x401 98 12:38:33,6852990 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Classes\WOW6432Node\CLSID\{59031a47-3f72-44a7-89c5-5595fe6b30ee}\ShellFolder NAME NOT FOUND Desired Access: Maximum Allowed 98 12:38:33,6853068 MCLauncher.exe 6080 RegQueryValue HKCR\WOW6432Node\CLSID\{59031a47-3f72-44a7-89c5-5595fe6b30ee}\ShellFolder\RestrictedAttributes NAME NOT FOUND Length: 144 98 12:38:33,6853176 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{59031a47-3f72-44a7-89c5-5595fe6b30ee}\ShellFolder SUCCESS Query: Name 98 12:38:33,6853242 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{59031a47-3f72-44a7-89c5-5595fe6b30ee}\ShellFolder SUCCESS Query: HandleTags, HandleTags: 0x401 98 12:38:33,6853342 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Classes\WOW6432Node\CLSID\{59031a47-3f72-44a7-89c5-5595fe6b30ee}\ShellFolder NAME NOT FOUND Desired Access: Maximum Allowed 98 12:38:33,6853417 MCLauncher.exe 6080 RegQueryValue HKCR\WOW6432Node\CLSID\{59031a47-3f72-44a7-89c5-5595fe6b30ee}\ShellFolder\FolderValueFlags SUCCESS Type: REG_DWORD, Length: 4, Data: 5243433 98 12:38:33,6853552 MCLauncher.exe 6080 RegCloseKey HKCR\WOW6432Node\CLSID\{59031a47-3f72-44a7-89c5-5595fe6b30ee}\ShellFolder SUCCESS 98 12:38:33,6853638 MCLauncher.exe 6080 RegQueryKey HKCU SUCCESS Query: HandleTags, HandleTags: 0x0 98 12:38:33,6853688 MCLauncher.exe 6080 RegQueryKey HKCU SUCCESS Query: Name 98 12:38:33,6853766 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Microsoft\Windows\CurrentVersion\Explorer\CLSID\{59031A47-3F72-44A7-89C5-5595FE6B30EE}\ShellFolder NAME NOT FOUND Desired Access: Query Value 98 12:38:33,6854223 MCLauncher.exe 6080 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 98 12:38:33,6854301 MCLauncher.exe 6080 RegQueryKey HKLM SUCCESS Query: Name 98 12:38:33,6854395 MCLauncher.exe 6080 RegOpenKey HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\CLSID\{59031A47-3F72-44A7-89C5-5595FE6B30EE}\ShellFolder NAME NOT FOUND Desired Access: Query Value 98 12:38:33,6854506 MCLauncher.exe 6080 RegQueryKey HKCU SUCCESS Query: HandleTags, HandleTags: 0x0 98 12:38:33,6854553 MCLauncher.exe 6080 RegQueryKey HKCU SUCCESS Query: Name 98 12:38:33,6854619 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Microsoft\Windows\CurrentVersion\Policies\NonEnum NAME NOT FOUND Desired Access: Query Value 98 12:38:33,6854705 MCLauncher.exe 6080 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 98 12:38:33,6854749 MCLauncher.exe 6080 RegQueryKey HKLM SUCCESS Query: Name 98 12:38:33,6854821 MCLauncher.exe 6080 RegOpenKey HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Policies\NonEnum REPARSE Desired Access: Query Value 98 12:38:33,6854882 MCLauncher.exe 6080 RegOpenKey HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\NonEnum SUCCESS Desired Access: Query Value 98 12:38:33,6854946 MCLauncher.exe 6080 RegSetInfoKey HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\NonEnum SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 98 12:38:33,6854990 MCLauncher.exe 6080 RegQueryValue HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\NonEnum\{59031A47-3F72-44A7-89C5-5595FE6B30EE} NAME NOT FOUND Length: 144 98 12:38:33,6855121 MCLauncher.exe 6080 RegCloseKey HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\NonEnum SUCCESS 98 12:38:33,6855195 MCLauncher.exe 6080 RegQueryKey HKCU\Software\Classes SUCCESS Query: Name 98 12:38:33,6855259 MCLauncher.exe 6080 RegQueryKey HKCU\Software\Classes SUCCESS Query: HandleTags, HandleTags: 0x1 98 12:38:33,6855328 MCLauncher.exe 6080 RegQueryKey HKCU\Software\Classes SUCCESS Query: HandleTags, HandleTags: 0x1 98 12:38:33,6855376 MCLauncher.exe 6080 RegQueryKey HKCU\Software\Classes SUCCESS Query: Name 98 12:38:33,6855461 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Classes\WOW6432Node\CLSID\{031E4825-7B94-4DC3-B131-E946B44C8DD5}\ShellFolder NAME NOT FOUND Desired Access: Query Value 98 12:38:33,6855569 MCLauncher.exe 6080 RegOpenKey HKCR\WOW6432Node\CLSID\{031E4825-7B94-4DC3-B131-E946B44C8DD5}\ShellFolder SUCCESS Desired Access: Query Value 98 12:38:33,6855725 MCLauncher.exe 6080 RegSetInfoKey HKCR\WOW6432Node\CLSID\{031E4825-7B94-4dc3-B131-E946B44C8DD5}\ShellFolder SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 98 12:38:33,6855769 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{031E4825-7B94-4dc3-B131-E946B44C8DD5}\ShellFolder SUCCESS Query: Name 98 12:38:33,6855827 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{031E4825-7B94-4dc3-B131-E946B44C8DD5}\ShellFolder SUCCESS Query: HandleTags, HandleTags: 0x401 98 12:38:33,6855919 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Classes\WOW6432Node\CLSID\{031E4825-7B94-4dc3-B131-E946B44C8DD5}\ShellFolder NAME NOT FOUND Desired Access: Maximum Allowed 98 12:38:33,6855985 MCLauncher.exe 6080 RegQueryValue HKCR\WOW6432Node\CLSID\{031E4825-7B94-4dc3-B131-E946B44C8DD5}\ShellFolder\Attributes SUCCESS Type: REG_DWORD, Length: 4, Data: 2961178893 98 12:38:33,6856112 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{031E4825-7B94-4dc3-B131-E946B44C8DD5}\ShellFolder SUCCESS Query: Name 98 12:38:33,6856179 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{031E4825-7B94-4dc3-B131-E946B44C8DD5}\ShellFolder SUCCESS Query: HandleTags, HandleTags: 0x401 98 12:38:33,6856279 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Classes\WOW6432Node\CLSID\{031E4825-7B94-4dc3-B131-E946B44C8DD5}\ShellFolder NAME NOT FOUND Desired Access: Maximum Allowed 98 12:38:33,6856359 MCLauncher.exe 6080 RegQueryValue HKCR\WOW6432Node\CLSID\{031E4825-7B94-4dc3-B131-E946B44C8DD5}\ShellFolder\CallForAttributes NAME NOT FOUND Length: 144 98 12:38:33,6856467 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{031E4825-7B94-4dc3-B131-E946B44C8DD5}\ShellFolder SUCCESS Query: Name 98 12:38:33,6856534 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{031E4825-7B94-4dc3-B131-E946B44C8DD5}\ShellFolder SUCCESS Query: HandleTags, HandleTags: 0x401 98 12:38:33,6856633 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Classes\WOW6432Node\CLSID\{031E4825-7B94-4dc3-B131-E946B44C8DD5}\ShellFolder NAME NOT FOUND Desired Access: Maximum Allowed 98 12:38:33,6856708 MCLauncher.exe 6080 RegQueryValue HKCR\WOW6432Node\CLSID\{031E4825-7B94-4dc3-B131-E946B44C8DD5}\ShellFolder\RestrictedAttributes NAME NOT FOUND Length: 144 98 12:38:33,6856819 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{031E4825-7B94-4dc3-B131-E946B44C8DD5}\ShellFolder SUCCESS Query: Name 98 12:38:33,6856883 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{031E4825-7B94-4dc3-B131-E946B44C8DD5}\ShellFolder SUCCESS Query: HandleTags, HandleTags: 0x401 98 12:38:33,6856980 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Classes\WOW6432Node\CLSID\{031E4825-7B94-4dc3-B131-E946B44C8DD5}\ShellFolder NAME NOT FOUND Desired Access: Maximum Allowed 98 12:38:33,6857057 MCLauncher.exe 6080 RegQueryValue HKCR\WOW6432Node\CLSID\{031E4825-7B94-4dc3-B131-E946B44C8DD5}\ShellFolder\FolderValueFlags SUCCESS Type: REG_DWORD, Length: 4, Data: 270880 98 12:38:33,6857185 MCLauncher.exe 6080 RegCloseKey HKCR\WOW6432Node\CLSID\{031E4825-7B94-4dc3-B131-E946B44C8DD5}\ShellFolder SUCCESS 98 12:38:33,6857271 MCLauncher.exe 6080 RegQueryKey HKCU SUCCESS Query: HandleTags, HandleTags: 0x0 98 12:38:33,6857323 MCLauncher.exe 6080 RegQueryKey HKCU SUCCESS Query: Name 98 12:38:33,6857401 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Microsoft\Windows\CurrentVersion\Explorer\CLSID\{031E4825-7B94-4DC3-B131-E946B44C8DD5}\ShellFolder NAME NOT FOUND Desired Access: Query Value 98 12:38:33,6857501 MCLauncher.exe 6080 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 98 12:38:33,6857545 MCLauncher.exe 6080 RegQueryKey HKLM SUCCESS Query: Name 98 12:38:33,6857628 MCLauncher.exe 6080 RegOpenKey HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\CLSID\{031E4825-7B94-4DC3-B131-E946B44C8DD5}\ShellFolder NAME NOT FOUND Desired Access: Query Value 98 12:38:33,6857719 MCLauncher.exe 6080 RegQueryKey HKCU SUCCESS Query: HandleTags, HandleTags: 0x0 98 12:38:33,6857767 MCLauncher.exe 6080 RegQueryKey HKCU SUCCESS Query: Name 98 12:38:33,6857830 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Microsoft\Windows\CurrentVersion\Policies\NonEnum NAME NOT FOUND Desired Access: Query Value 98 12:38:33,6857911 MCLauncher.exe 6080 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 98 12:38:33,6857955 MCLauncher.exe 6080 RegQueryKey HKLM SUCCESS Query: Name 98 12:38:33,6858027 MCLauncher.exe 6080 RegOpenKey HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Policies\NonEnum REPARSE Desired Access: Query Value 98 12:38:33,6858085 MCLauncher.exe 6080 RegOpenKey HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\NonEnum SUCCESS Desired Access: Query Value 98 12:38:33,6858143 MCLauncher.exe 6080 RegSetInfoKey HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\NonEnum SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 98 12:38:33,6858185 MCLauncher.exe 6080 RegQueryValue HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\NonEnum\{031E4825-7B94-4DC3-B131-E946B44C8DD5} NAME NOT FOUND Length: 144 98 12:38:33,6858310 MCLauncher.exe 6080 RegCloseKey HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\NonEnum SUCCESS 98 12:38:33,6858379 MCLauncher.exe 6080 RegQueryKey HKCU\Software\Classes SUCCESS Query: Name 98 12:38:33,6858445 MCLauncher.exe 6080 RegQueryKey HKCU\Software\Classes SUCCESS Query: HandleTags, HandleTags: 0x1 98 12:38:33,6858512 MCLauncher.exe 6080 RegQueryKey HKCU\Software\Classes SUCCESS Query: HandleTags, HandleTags: 0x1 98 12:38:33,6858559 MCLauncher.exe 6080 RegQueryKey HKCU\Software\Classes SUCCESS Query: Name 98 12:38:33,6858648 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Classes\WOW6432Node\CLSID\{04731B67-D933-450A-90E6-4ACD2E9408FE}\ShellFolder NAME NOT FOUND Desired Access: Query Value 98 12:38:33,6858756 MCLauncher.exe 6080 RegOpenKey HKCR\WOW6432Node\CLSID\{04731B67-D933-450A-90E6-4ACD2E9408FE}\ShellFolder SUCCESS Desired Access: Query Value 98 12:38:33,6858894 MCLauncher.exe 6080 RegSetInfoKey HKCR\WOW6432Node\CLSID\{04731B67-D933-450a-90E6-4ACD2E9408FE}\ShellFolder SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 98 12:38:33,6858936 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{04731B67-D933-450a-90E6-4ACD2E9408FE}\ShellFolder SUCCESS Query: Name 98 12:38:33,6858999 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{04731B67-D933-450a-90E6-4ACD2E9408FE}\ShellFolder SUCCESS Query: HandleTags, HandleTags: 0x401 98 12:38:33,6859094 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Classes\WOW6432Node\CLSID\{04731B67-D933-450a-90E6-4ACD2E9408FE}\ShellFolder NAME NOT FOUND Desired Access: Maximum Allowed 98 12:38:33,6859249 MCLauncher.exe 6080 RegQueryValue HKCR\WOW6432Node\CLSID\{04731B67-D933-450a-90E6-4ACD2E9408FE}\ShellFolder\Attributes SUCCESS Type: REG_DWORD, Length: 4, Data: 538443776 98 12:38:33,6859501 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{04731B67-D933-450a-90E6-4ACD2E9408FE}\ShellFolder SUCCESS Query: Name 98 12:38:33,6859570 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{04731B67-D933-450a-90E6-4ACD2E9408FE}\ShellFolder SUCCESS Query: HandleTags, HandleTags: 0x401 98 12:38:33,6859675 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Classes\WOW6432Node\CLSID\{04731B67-D933-450a-90E6-4ACD2E9408FE}\ShellFolder NAME NOT FOUND Desired Access: Maximum Allowed 98 12:38:33,6859759 MCLauncher.exe 6080 RegQueryValue HKCR\WOW6432Node\CLSID\{04731B67-D933-450a-90E6-4ACD2E9408FE}\ShellFolder\CallForAttributes NAME NOT FOUND Length: 144 98 12:38:33,6859872 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{04731B67-D933-450a-90E6-4ACD2E9408FE}\ShellFolder SUCCESS Query: Name 98 12:38:33,6859939 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{04731B67-D933-450a-90E6-4ACD2E9408FE}\ShellFolder SUCCESS Query: HandleTags, HandleTags: 0x401 98 12:38:33,6860038 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Classes\WOW6432Node\CLSID\{04731B67-D933-450a-90E6-4ACD2E9408FE}\ShellFolder NAME NOT FOUND Desired Access: Maximum Allowed 98 12:38:33,6860116 MCLauncher.exe 6080 RegQueryValue HKCR\WOW6432Node\CLSID\{04731B67-D933-450a-90E6-4ACD2E9408FE}\ShellFolder\RestrictedAttributes NAME NOT FOUND Length: 144 98 12:38:33,6860227 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{04731B67-D933-450a-90E6-4ACD2E9408FE}\ShellFolder SUCCESS Query: Name 98 12:38:33,6860293 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{04731B67-D933-450a-90E6-4ACD2E9408FE}\ShellFolder SUCCESS Query: HandleTags, HandleTags: 0x401 98 12:38:33,6860393 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Classes\WOW6432Node\CLSID\{04731B67-D933-450a-90E6-4ACD2E9408FE}\ShellFolder NAME NOT FOUND Desired Access: Maximum Allowed 98 12:38:33,6860468 MCLauncher.exe 6080 RegQueryValue HKCR\WOW6432Node\CLSID\{04731B67-D933-450a-90E6-4ACD2E9408FE}\ShellFolder\FolderValueFlags SUCCESS Type: REG_DWORD, Length: 4, Data: 0 98 12:38:33,6860604 MCLauncher.exe 6080 RegCloseKey HKCR\WOW6432Node\CLSID\{04731B67-D933-450a-90E6-4ACD2E9408FE}\ShellFolder SUCCESS 98 12:38:33,6860689 MCLauncher.exe 6080 RegQueryKey HKCU SUCCESS Query: HandleTags, HandleTags: 0x0 98 12:38:33,6860739 MCLauncher.exe 6080 RegQueryKey HKCU SUCCESS Query: Name 98 12:38:33,6860817 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Microsoft\Windows\CurrentVersion\Explorer\CLSID\{04731B67-D933-450A-90E6-4ACD2E9408FE}\ShellFolder NAME NOT FOUND Desired Access: Query Value 98 12:38:33,6860922 MCLauncher.exe 6080 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 98 12:38:33,6860969 MCLauncher.exe 6080 RegQueryKey HKLM SUCCESS Query: Name 98 12:38:33,6861050 MCLauncher.exe 6080 RegOpenKey HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\CLSID\{04731B67-D933-450A-90E6-4ACD2E9408FE}\ShellFolder NAME NOT FOUND Desired Access: Query Value 98 12:38:33,6861144 MCLauncher.exe 6080 RegQueryKey HKCU SUCCESS Query: HandleTags, HandleTags: 0x0 98 12:38:33,6861191 MCLauncher.exe 6080 RegQueryKey HKCU SUCCESS Query: Name 98 12:38:33,6861257 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Microsoft\Windows\CurrentVersion\Policies\NonEnum NAME NOT FOUND Desired Access: Query Value 98 12:38:33,6861338 MCLauncher.exe 6080 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 98 12:38:33,6861382 MCLauncher.exe 6080 RegQueryKey HKLM SUCCESS Query: Name 98 12:38:33,6861454 MCLauncher.exe 6080 RegOpenKey HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Policies\NonEnum REPARSE Desired Access: Query Value 98 12:38:33,6861515 MCLauncher.exe 6080 RegOpenKey HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\NonEnum SUCCESS Desired Access: Query Value 98 12:38:33,6861573 MCLauncher.exe 6080 RegSetInfoKey HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\NonEnum SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 98 12:38:33,6861620 MCLauncher.exe 6080 RegQueryValue HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\NonEnum\{04731B67-D933-450A-90E6-4ACD2E9408FE} NAME NOT FOUND Length: 144 98 12:38:33,6861748 MCLauncher.exe 6080 RegCloseKey HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\NonEnum SUCCESS 98 12:38:33,6861823 MCLauncher.exe 6080 RegQueryKey HKCU\Software\Classes SUCCESS Query: Name 98 12:38:33,6861886 MCLauncher.exe 6080 RegQueryKey HKCU\Software\Classes SUCCESS Query: HandleTags, HandleTags: 0x1 98 12:38:33,6861953 MCLauncher.exe 6080 RegQueryKey HKCU\Software\Classes SUCCESS Query: HandleTags, HandleTags: 0x1 98 12:38:33,6862000 MCLauncher.exe 6080 RegQueryKey HKCU\Software\Classes SUCCESS Query: Name 98 12:38:33,6862089 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Classes\WOW6432Node\CLSID\{0875DCB6-C686-4243-9432-ADCCF0B9F2D7}\ShellFolder NAME NOT FOUND Desired Access: Query Value 98 12:38:33,6862197 MCLauncher.exe 6080 RegOpenKey HKCR\WOW6432Node\CLSID\{0875DCB6-C686-4243-9432-ADCCF0B9F2D7}\ShellFolder SUCCESS Desired Access: Query Value 98 12:38:33,6862355 MCLauncher.exe 6080 RegSetInfoKey HKCR\WOW6432Node\CLSID\{0875DCB6-C686-4243-9432-ADCCF0B9F2D7}\ShellFolder SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 98 12:38:33,6862413 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{0875DCB6-C686-4243-9432-ADCCF0B9F2D7}\ShellFolder SUCCESS Query: Name 98 12:38:33,6862490 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{0875DCB6-C686-4243-9432-ADCCF0B9F2D7}\ShellFolder SUCCESS Query: HandleTags, HandleTags: 0x401 98 12:38:33,6862601 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Classes\WOW6432Node\CLSID\{0875DCB6-C686-4243-9432-ADCCF0B9F2D7}\ShellFolder NAME NOT FOUND Desired Access: Maximum Allowed 98 12:38:33,6862681 MCLauncher.exe 6080 RegQueryValue HKCR\WOW6432Node\CLSID\{0875DCB6-C686-4243-9432-ADCCF0B9F2D7}\ShellFolder\Attributes SUCCESS Type: REG_DWORD, Length: 4, Data: 538443776 98 12:38:33,6862834 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{0875DCB6-C686-4243-9432-ADCCF0B9F2D7}\ShellFolder SUCCESS Query: Name 98 12:38:33,6862914 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{0875DCB6-C686-4243-9432-ADCCF0B9F2D7}\ShellFolder SUCCESS Query: HandleTags, HandleTags: 0x401 98 12:38:33,6863033 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Classes\WOW6432Node\CLSID\{0875DCB6-C686-4243-9432-ADCCF0B9F2D7}\ShellFolder NAME NOT FOUND Desired Access: Maximum Allowed 98 12:38:33,6863128 MCLauncher.exe 6080 RegQueryValue HKCR\WOW6432Node\CLSID\{0875DCB6-C686-4243-9432-ADCCF0B9F2D7}\ShellFolder\CallForAttributes NAME NOT FOUND Length: 144 98 12:38:33,6863258 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{0875DCB6-C686-4243-9432-ADCCF0B9F2D7}\ShellFolder SUCCESS Query: Name 98 12:38:33,6863335 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{0875DCB6-C686-4243-9432-ADCCF0B9F2D7}\ShellFolder SUCCESS Query: HandleTags, HandleTags: 0x401 98 12:38:33,6863454 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Classes\WOW6432Node\CLSID\{0875DCB6-C686-4243-9432-ADCCF0B9F2D7}\ShellFolder NAME NOT FOUND Desired Access: Maximum Allowed 98 12:38:33,6863540 MCLauncher.exe 6080 RegQueryValue HKCR\WOW6432Node\CLSID\{0875DCB6-C686-4243-9432-ADCCF0B9F2D7}\ShellFolder\RestrictedAttributes NAME NOT FOUND Length: 144 98 12:38:33,6863662 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{0875DCB6-C686-4243-9432-ADCCF0B9F2D7}\ShellFolder SUCCESS Query: Name 98 12:38:33,6863743 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{0875DCB6-C686-4243-9432-ADCCF0B9F2D7}\ShellFolder SUCCESS Query: HandleTags, HandleTags: 0x401 98 12:38:33,6863862 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Classes\WOW6432Node\CLSID\{0875DCB6-C686-4243-9432-ADCCF0B9F2D7}\ShellFolder NAME NOT FOUND Desired Access: Maximum Allowed 98 12:38:33,6863950 MCLauncher.exe 6080 RegQueryValue HKCR\WOW6432Node\CLSID\{0875DCB6-C686-4243-9432-ADCCF0B9F2D7}\ShellFolder\FolderValueFlags NAME NOT FOUND Length: 144 98 12:38:33,6864114 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{0875DCB6-C686-4243-9432-ADCCF0B9F2D7}\ShellFolder SUCCESS Query: Name 98 12:38:33,6864189 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{0875DCB6-C686-4243-9432-ADCCF0B9F2D7}\ShellFolder SUCCESS Query: HandleTags, HandleTags: 0x401 98 12:38:33,6864294 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Classes\WOW6432Node\CLSID\{0875DCB6-C686-4243-9432-ADCCF0B9F2D7}\ShellFolder NAME NOT FOUND Desired Access: Maximum Allowed 98 12:38:33,6864377 MCLauncher.exe 6080 RegQueryValue HKCR\WOW6432Node\CLSID\{0875DCB6-C686-4243-9432-ADCCF0B9F2D7}\ShellFolder\WantsFORDISPLAY NAME NOT FOUND Length: 144 98 12:38:33,6864491 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{0875DCB6-C686-4243-9432-ADCCF0B9F2D7}\ShellFolder SUCCESS Query: Name 98 12:38:33,6864557 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{0875DCB6-C686-4243-9432-ADCCF0B9F2D7}\ShellFolder SUCCESS Query: HandleTags, HandleTags: 0x401 98 12:38:33,6864657 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Classes\WOW6432Node\CLSID\{0875DCB6-C686-4243-9432-ADCCF0B9F2D7}\ShellFolder NAME NOT FOUND Desired Access: Maximum Allowed 98 12:38:33,6864734 MCLauncher.exe 6080 RegQueryValue HKCR\WOW6432Node\CLSID\{0875DCB6-C686-4243-9432-ADCCF0B9F2D7}\ShellFolder\HideFolderVerbs NAME NOT FOUND Length: 144 98 12:38:33,6864843 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{0875DCB6-C686-4243-9432-ADCCF0B9F2D7}\ShellFolder SUCCESS Query: Name 98 12:38:33,6864906 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{0875DCB6-C686-4243-9432-ADCCF0B9F2D7}\ShellFolder SUCCESS Query: HandleTags, HandleTags: 0x401 98 12:38:33,6865006 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Classes\WOW6432Node\CLSID\{0875DCB6-C686-4243-9432-ADCCF0B9F2D7}\ShellFolder NAME NOT FOUND Desired Access: Maximum Allowed 98 12:38:33,6865081 MCLauncher.exe 6080 RegQueryValue HKCR\WOW6432Node\CLSID\{0875DCB6-C686-4243-9432-ADCCF0B9F2D7}\ShellFolder\UseDropHandler NAME NOT FOUND Length: 144 98 12:38:33,6865186 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{0875DCB6-C686-4243-9432-ADCCF0B9F2D7}\ShellFolder SUCCESS Query: Name 98 12:38:33,6865250 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{0875DCB6-C686-4243-9432-ADCCF0B9F2D7}\ShellFolder SUCCESS Query: HandleTags, HandleTags: 0x401 98 12:38:33,6865350 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Classes\WOW6432Node\CLSID\{0875DCB6-C686-4243-9432-ADCCF0B9F2D7}\ShellFolder NAME NOT FOUND Desired Access: Maximum Allowed 98 12:38:33,6865427 MCLauncher.exe 6080 RegQueryValue HKCR\WOW6432Node\CLSID\{0875DCB6-C686-4243-9432-ADCCF0B9F2D7}\ShellFolder\WantsFORPARSING SUCCESS Type: REG_SZ, Length: 2, Data: 98 12:38:33,6865549 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{0875DCB6-C686-4243-9432-ADCCF0B9F2D7}\ShellFolder SUCCESS Query: Name 98 12:38:33,6865613 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{0875DCB6-C686-4243-9432-ADCCF0B9F2D7}\ShellFolder SUCCESS Query: HandleTags, HandleTags: 0x401 98 12:38:33,6865712 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Classes\WOW6432Node\CLSID\{0875DCB6-C686-4243-9432-ADCCF0B9F2D7}\ShellFolder NAME NOT FOUND Desired Access: Maximum Allowed 98 12:38:33,6865787 MCLauncher.exe 6080 RegQueryValue HKCR\WOW6432Node\CLSID\{0875DCB6-C686-4243-9432-ADCCF0B9F2D7}\ShellFolder\WantsParseDisplayName NAME NOT FOUND Length: 144 98 12:38:33,6865895 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{0875DCB6-C686-4243-9432-ADCCF0B9F2D7}\ShellFolder SUCCESS Query: Name 98 12:38:33,6865962 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{0875DCB6-C686-4243-9432-ADCCF0B9F2D7}\ShellFolder SUCCESS Query: HandleTags, HandleTags: 0x401 98 12:38:33,6866059 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Classes\WOW6432Node\CLSID\{0875DCB6-C686-4243-9432-ADCCF0B9F2D7}\ShellFolder NAME NOT FOUND Desired Access: Maximum Allowed 98 12:38:33,6866136 MCLauncher.exe 6080 RegQueryValue HKCR\WOW6432Node\CLSID\{0875DCB6-C686-4243-9432-ADCCF0B9F2D7}\ShellFolder\QueryForOverlay NAME NOT FOUND Length: 144 98 12:38:33,6866242 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{0875DCB6-C686-4243-9432-ADCCF0B9F2D7}\ShellFolder SUCCESS Query: Name 98 12:38:33,6866305 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{0875DCB6-C686-4243-9432-ADCCF0B9F2D7}\ShellFolder SUCCESS Query: HandleTags, HandleTags: 0x401 98 12:38:33,6866402 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Classes\WOW6432Node\CLSID\{0875DCB6-C686-4243-9432-ADCCF0B9F2D7}\ShellFolder NAME NOT FOUND Desired Access: Maximum Allowed 98 12:38:33,6866480 MCLauncher.exe 6080 RegQueryValue HKCR\WOW6432Node\CLSID\{0875DCB6-C686-4243-9432-ADCCF0B9F2D7}\ShellFolder\MapNetDriveVerbs NAME NOT FOUND Length: 144 98 12:38:33,6866582 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{0875DCB6-C686-4243-9432-ADCCF0B9F2D7}\ShellFolder SUCCESS Query: Name 98 12:38:33,6866646 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{0875DCB6-C686-4243-9432-ADCCF0B9F2D7}\ShellFolder SUCCESS Query: HandleTags, HandleTags: 0x401 98 12:38:33,6866743 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Classes\WOW6432Node\CLSID\{0875DCB6-C686-4243-9432-ADCCF0B9F2D7}\ShellFolder NAME NOT FOUND Desired Access: Maximum Allowed 98 12:38:33,6866821 MCLauncher.exe 6080 RegQueryValue HKCR\WOW6432Node\CLSID\{0875DCB6-C686-4243-9432-ADCCF0B9F2D7}\ShellFolder\QueryForInfoTip NAME NOT FOUND Length: 144 98 12:38:33,6866923 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{0875DCB6-C686-4243-9432-ADCCF0B9F2D7}\ShellFolder SUCCESS Query: Name 98 12:38:33,6866990 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{0875DCB6-C686-4243-9432-ADCCF0B9F2D7}\ShellFolder SUCCESS Query: HandleTags, HandleTags: 0x401 98 12:38:33,6867087 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Classes\WOW6432Node\CLSID\{0875DCB6-C686-4243-9432-ADCCF0B9F2D7}\ShellFolder NAME NOT FOUND Desired Access: Maximum Allowed 98 12:38:33,6867161 MCLauncher.exe 6080 RegQueryValue HKCR\WOW6432Node\CLSID\{0875DCB6-C686-4243-9432-ADCCF0B9F2D7}\ShellFolder\HideOnDesktopPerUser NAME NOT FOUND Length: 144 98 12:38:33,6867270 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{0875DCB6-C686-4243-9432-ADCCF0B9F2D7}\ShellFolder SUCCESS Query: Name 98 12:38:33,6867333 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{0875DCB6-C686-4243-9432-ADCCF0B9F2D7}\ShellFolder SUCCESS Query: HandleTags, HandleTags: 0x401 98 12:38:33,6867430 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Classes\WOW6432Node\CLSID\{0875DCB6-C686-4243-9432-ADCCF0B9F2D7}\ShellFolder NAME NOT FOUND Desired Access: Maximum Allowed 98 12:38:33,6867505 MCLauncher.exe 6080 RegQueryValue HKCR\WOW6432Node\CLSID\{0875DCB6-C686-4243-9432-ADCCF0B9F2D7}\ShellFolder\WantsAliasedNotifications NAME NOT FOUND Length: 144 98 12:38:33,6867613 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{0875DCB6-C686-4243-9432-ADCCF0B9F2D7}\ShellFolder SUCCESS Query: Name 98 12:38:33,6867677 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{0875DCB6-C686-4243-9432-ADCCF0B9F2D7}\ShellFolder SUCCESS Query: HandleTags, HandleTags: 0x401 98 12:38:33,6867774 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Classes\WOW6432Node\CLSID\{0875DCB6-C686-4243-9432-ADCCF0B9F2D7}\ShellFolder NAME NOT FOUND Desired Access: Maximum Allowed 98 12:38:33,6867851 MCLauncher.exe 6080 RegQueryValue HKCR\WOW6432Node\CLSID\{0875DCB6-C686-4243-9432-ADCCF0B9F2D7}\ShellFolder\WantsUniversalDelegate NAME NOT FOUND Length: 144 98 12:38:33,6867954 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{0875DCB6-C686-4243-9432-ADCCF0B9F2D7}\ShellFolder SUCCESS Query: Name 98 12:38:33,6868018 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{0875DCB6-C686-4243-9432-ADCCF0B9F2D7}\ShellFolder SUCCESS Query: HandleTags, HandleTags: 0x401 98 12:38:33,6868117 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Classes\WOW6432Node\CLSID\{0875DCB6-C686-4243-9432-ADCCF0B9F2D7}\ShellFolder NAME NOT FOUND Desired Access: Maximum Allowed 98 12:38:33,6868192 MCLauncher.exe 6080 RegQueryValue HKCR\WOW6432Node\CLSID\{0875DCB6-C686-4243-9432-ADCCF0B9F2D7}\ShellFolder\NoFileFolderJunction NAME NOT FOUND Length: 144 98 12:38:33,6868297 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{0875DCB6-C686-4243-9432-ADCCF0B9F2D7}\ShellFolder SUCCESS Query: Name 98 12:38:33,6868361 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{0875DCB6-C686-4243-9432-ADCCF0B9F2D7}\ShellFolder SUCCESS Query: HandleTags, HandleTags: 0x401 98 12:38:33,6868458 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Classes\WOW6432Node\CLSID\{0875DCB6-C686-4243-9432-ADCCF0B9F2D7}\ShellFolder NAME NOT FOUND Desired Access: Maximum Allowed 98 12:38:33,6868533 MCLauncher.exe 6080 RegQueryValue HKCR\WOW6432Node\CLSID\{0875DCB6-C686-4243-9432-ADCCF0B9F2D7}\ShellFolder\PinToNameSpaceTree NAME NOT FOUND Length: 144 98 12:38:33,6868716 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{0875DCB6-C686-4243-9432-ADCCF0B9F2D7}\ShellFolder SUCCESS Query: Name 98 12:38:33,6868779 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{0875DCB6-C686-4243-9432-ADCCF0B9F2D7}\ShellFolder SUCCESS Query: HandleTags, HandleTags: 0x401 98 12:38:33,6868879 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Classes\WOW6432Node\CLSID\{0875DCB6-C686-4243-9432-ADCCF0B9F2D7}\ShellFolder NAME NOT FOUND Desired Access: Maximum Allowed 98 12:38:33,6869292 MCLauncher.exe 6080 RegQueryValue HKCR\WOW6432Node\CLSID\{0875DCB6-C686-4243-9432-ADCCF0B9F2D7}\ShellFolder\HasNavigationEnum NAME NOT FOUND Length: 144 98 12:38:33,6869439 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{0875DCB6-C686-4243-9432-ADCCF0B9F2D7}\ShellFolder SUCCESS Query: Name 98 12:38:33,6869522 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{0875DCB6-C686-4243-9432-ADCCF0B9F2D7}\ShellFolder SUCCESS Query: HandleTags, HandleTags: 0x401 98 12:38:33,6869655 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Classes\WOW6432Node\CLSID\{0875DCB6-C686-4243-9432-ADCCF0B9F2D7}\ShellFolder NAME NOT FOUND Desired Access: Maximum Allowed 98 12:38:33,6869752 MCLauncher.exe 6080 RegQueryValue HKCR\WOW6432Node\CLSID\{0875DCB6-C686-4243-9432-ADCCF0B9F2D7}\ShellFolder\EnableThumbnails NAME NOT FOUND Length: 144 98 12:38:33,6869882 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{0875DCB6-C686-4243-9432-ADCCF0B9F2D7}\ShellFolder SUCCESS Query: Name 98 12:38:33,6869965 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{0875DCB6-C686-4243-9432-ADCCF0B9F2D7}\ShellFolder SUCCESS Query: HandleTags, HandleTags: 0x401 98 12:38:33,6870090 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Classes\WOW6432Node\CLSID\{0875DCB6-C686-4243-9432-ADCCF0B9F2D7}\ShellFolder NAME NOT FOUND Desired Access: Maximum Allowed 98 12:38:33,6870187 MCLauncher.exe 6080 RegQueryValue HKCR\WOW6432Node\CLSID\{0875DCB6-C686-4243-9432-ADCCF0B9F2D7}\ShellFolder\NoDefaultToFS NAME NOT FOUND Length: 144 98 12:38:33,6870314 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{0875DCB6-C686-4243-9432-ADCCF0B9F2D7}\ShellFolder SUCCESS Query: Name 98 12:38:33,6870398 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{0875DCB6-C686-4243-9432-ADCCF0B9F2D7}\ShellFolder SUCCESS Query: HandleTags, HandleTags: 0x401 98 12:38:33,6870522 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Classes\WOW6432Node\CLSID\{0875DCB6-C686-4243-9432-ADCCF0B9F2D7}\ShellFolder NAME NOT FOUND Desired Access: Maximum Allowed 98 12:38:33,6870619 MCLauncher.exe 6080 RegQueryValue HKCR\WOW6432Node\CLSID\{0875DCB6-C686-4243-9432-ADCCF0B9F2D7}\ShellFolder\ParseDisplayNameNeedsURL NAME NOT FOUND Length: 144 98 12:38:33,6870749 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{0875DCB6-C686-4243-9432-ADCCF0B9F2D7}\ShellFolder SUCCESS Query: Name 98 12:38:33,6870835 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{0875DCB6-C686-4243-9432-ADCCF0B9F2D7}\ShellFolder SUCCESS Query: HandleTags, HandleTags: 0x401 98 12:38:33,6870965 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Classes\WOW6432Node\CLSID\{0875DCB6-C686-4243-9432-ADCCF0B9F2D7}\ShellFolder NAME NOT FOUND Desired Access: Maximum Allowed 98 12:38:33,6871062 MCLauncher.exe 6080 RegQueryValue HKCR\WOW6432Node\CLSID\{0875DCB6-C686-4243-9432-ADCCF0B9F2D7}\ShellFolder\BlockNewFile NAME NOT FOUND Length: 144 98 12:38:33,6871195 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{0875DCB6-C686-4243-9432-ADCCF0B9F2D7}\ShellFolder SUCCESS Query: Name 98 12:38:33,6871279 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{0875DCB6-C686-4243-9432-ADCCF0B9F2D7}\ShellFolder SUCCESS Query: HandleTags, HandleTags: 0x401 98 12:38:33,6871414 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Classes\WOW6432Node\CLSID\{0875DCB6-C686-4243-9432-ADCCF0B9F2D7}\ShellFolder NAME NOT FOUND Desired Access: Maximum Allowed 98 12:38:33,6871520 MCLauncher.exe 6080 RegQueryValue HKCR\WOW6432Node\CLSID\{0875DCB6-C686-4243-9432-ADCCF0B9F2D7}\ShellFolder\NoInitRequired NAME NOT FOUND Length: 144 98 12:38:33,6871661 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{0875DCB6-C686-4243-9432-ADCCF0B9F2D7}\ShellFolder SUCCESS Query: Name 98 12:38:33,6871755 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{0875DCB6-C686-4243-9432-ADCCF0B9F2D7}\ShellFolder SUCCESS Query: HandleTags, HandleTags: 0x401 98 12:38:33,6871891 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Classes\WOW6432Node\CLSID\{0875DCB6-C686-4243-9432-ADCCF0B9F2D7}\ShellFolder NAME NOT FOUND Desired Access: Maximum Allowed 98 12:38:33,6871991 MCLauncher.exe 6080 RegQueryValue HKCR\WOW6432Node\CLSID\{0875DCB6-C686-4243-9432-ADCCF0B9F2D7}\ShellFolder\SafeRootForMTA NAME NOT FOUND Length: 144 98 12:38:33,6872104 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{0875DCB6-C686-4243-9432-ADCCF0B9F2D7}\ShellFolder SUCCESS Query: Name 98 12:38:33,6872171 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{0875DCB6-C686-4243-9432-ADCCF0B9F2D7}\ShellFolder SUCCESS Query: HandleTags, HandleTags: 0x401 98 12:38:33,6872270 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Classes\WOW6432Node\CLSID\{0875DCB6-C686-4243-9432-ADCCF0B9F2D7}\ShellFolder NAME NOT FOUND Desired Access: Maximum Allowed 98 12:38:33,6872345 MCLauncher.exe 6080 RegQueryValue HKCR\WOW6432Node\CLSID\{0875DCB6-C686-4243-9432-ADCCF0B9F2D7}\ShellFolder\WantsSendToTarget NAME NOT FOUND Length: 144 98 12:38:33,6872456 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{0875DCB6-C686-4243-9432-ADCCF0B9F2D7}\ShellFolder SUCCESS Query: Name 98 12:38:33,6872520 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{0875DCB6-C686-4243-9432-ADCCF0B9F2D7}\ShellFolder SUCCESS Query: HandleTags, HandleTags: 0x401 98 12:38:33,6872614 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Classes\WOW6432Node\CLSID\{0875DCB6-C686-4243-9432-ADCCF0B9F2D7}\ShellFolder NAME NOT FOUND Desired Access: Maximum Allowed 98 12:38:33,6872692 MCLauncher.exe 6080 RegQueryValue HKCR\WOW6432Node\CLSID\{0875DCB6-C686-4243-9432-ADCCF0B9F2D7}\ShellFolder\NoLocalizedNameInTarget NAME NOT FOUND Length: 144 98 12:38:33,6872822 MCLauncher.exe 6080 RegCloseKey HKCR\WOW6432Node\CLSID\{0875DCB6-C686-4243-9432-ADCCF0B9F2D7}\ShellFolder SUCCESS 98 12:38:33,6872919 MCLauncher.exe 6080 RegQueryKey HKCU SUCCESS Query: HandleTags, HandleTags: 0x0 98 12:38:33,6872971 MCLauncher.exe 6080 RegQueryKey HKCU SUCCESS Query: Name 98 12:38:33,6873052 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Microsoft\Windows\CurrentVersion\Explorer\CLSID\{0875DCB6-C686-4243-9432-ADCCF0B9F2D7}\ShellFolder NAME NOT FOUND Desired Access: Query Value 98 12:38:33,6873160 MCLauncher.exe 6080 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 98 12:38:33,6873207 MCLauncher.exe 6080 RegQueryKey HKLM SUCCESS Query: Name 98 12:38:33,6873290 MCLauncher.exe 6080 RegOpenKey HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\CLSID\{0875DCB6-C686-4243-9432-ADCCF0B9F2D7}\ShellFolder NAME NOT FOUND Desired Access: Query Value 98 12:38:33,6873390 MCLauncher.exe 6080 RegQueryKey HKCU SUCCESS Query: HandleTags, HandleTags: 0x0 98 12:38:33,6873437 MCLauncher.exe 6080 RegQueryKey HKCU SUCCESS Query: Name 98 12:38:33,6873503 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Microsoft\Windows\CurrentVersion\Policies\NonEnum NAME NOT FOUND Desired Access: Query Value 98 12:38:33,6873584 MCLauncher.exe 6080 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 98 12:38:33,6873628 MCLauncher.exe 6080 RegQueryKey HKLM SUCCESS Query: Name 98 12:38:33,6873700 MCLauncher.exe 6080 RegOpenKey HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Policies\NonEnum REPARSE Desired Access: Query Value 98 12:38:33,6873764 MCLauncher.exe 6080 RegOpenKey HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\NonEnum SUCCESS Desired Access: Query Value 98 12:38:33,6873830 MCLauncher.exe 6080 RegSetInfoKey HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\NonEnum SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 98 12:38:33,6873875 MCLauncher.exe 6080 RegQueryValue HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\NonEnum\{0875DCB6-C686-4243-9432-ADCCF0B9F2D7} NAME NOT FOUND Length: 144 98 12:38:33,6874008 MCLauncher.exe 6080 RegCloseKey HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\NonEnum SUCCESS 98 12:38:33,6874085 MCLauncher.exe 6080 RegQueryKey HKCU\Software\Classes SUCCESS Query: Name 98 12:38:33,6874152 MCLauncher.exe 6080 RegQueryKey HKCU\Software\Classes SUCCESS Query: HandleTags, HandleTags: 0x1 98 12:38:33,6874224 MCLauncher.exe 6080 RegQueryKey HKCU\Software\Classes SUCCESS Query: HandleTags, HandleTags: 0x1 98 12:38:33,6874271 MCLauncher.exe 6080 RegQueryKey HKCU\Software\Classes SUCCESS Query: Name 98 12:38:33,6874359 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Classes\WOW6432Node\CLSID\{11016101-E366-4D22-BC06-4ADA335C892B}\ShellFolder NAME NOT FOUND Desired Access: Query Value 98 12:38:33,6874473 MCLauncher.exe 6080 RegOpenKey HKCR\WOW6432Node\CLSID\{11016101-E366-4D22-BC06-4ADA335C892B}\ShellFolder SUCCESS Desired Access: Query Value 98 12:38:33,6874625 MCLauncher.exe 6080 RegSetInfoKey HKCR\WOW6432Node\CLSID\{11016101-E366-4D22-BC06-4ADA335C892B}\ShellFolder SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 98 12:38:33,6874670 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{11016101-E366-4D22-BC06-4ADA335C892B}\ShellFolder SUCCESS Query: Name 98 12:38:33,6874733 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{11016101-E366-4D22-BC06-4ADA335C892B}\ShellFolder SUCCESS Query: HandleTags, HandleTags: 0x401 98 12:38:33,6874822 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Classes\WOW6432Node\CLSID\{11016101-E366-4D22-BC06-4ADA335C892B}\ShellFolder NAME NOT FOUND Desired Access: Maximum Allowed 98 12:38:33,6874891 MCLauncher.exe 6080 RegQueryValue HKCR\WOW6432Node\CLSID\{11016101-E366-4D22-BC06-4ADA335C892B}\ShellFolder\Attributes SUCCESS Type: REG_DWORD, Length: 4, Data: 538443776 98 12:38:33,6875027 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{11016101-E366-4D22-BC06-4ADA335C892B}\ShellFolder SUCCESS Query: Name 98 12:38:33,6875094 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{11016101-E366-4D22-BC06-4ADA335C892B}\ShellFolder SUCCESS Query: HandleTags, HandleTags: 0x401 98 12:38:33,6875193 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Classes\WOW6432Node\CLSID\{11016101-E366-4D22-BC06-4ADA335C892B}\ShellFolder NAME NOT FOUND Desired Access: Maximum Allowed 98 12:38:33,6875271 MCLauncher.exe 6080 RegQueryValue HKCR\WOW6432Node\CLSID\{11016101-E366-4D22-BC06-4ADA335C892B}\ShellFolder\CallForAttributes NAME NOT FOUND Length: 144 98 12:38:33,6875385 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{11016101-E366-4D22-BC06-4ADA335C892B}\ShellFolder SUCCESS Query: Name 98 12:38:33,6875448 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{11016101-E366-4D22-BC06-4ADA335C892B}\ShellFolder SUCCESS Query: HandleTags, HandleTags: 0x401 98 12:38:33,6875548 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Classes\WOW6432Node\CLSID\{11016101-E366-4D22-BC06-4ADA335C892B}\ShellFolder NAME NOT FOUND Desired Access: Maximum Allowed 98 12:38:33,6875626 MCLauncher.exe 6080 RegQueryValue HKCR\WOW6432Node\CLSID\{11016101-E366-4D22-BC06-4ADA335C892B}\ShellFolder\RestrictedAttributes NAME NOT FOUND Length: 144 98 12:38:33,6875734 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{11016101-E366-4D22-BC06-4ADA335C892B}\ShellFolder SUCCESS Query: Name 98 12:38:33,6875797 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{11016101-E366-4D22-BC06-4ADA335C892B}\ShellFolder SUCCESS Query: HandleTags, HandleTags: 0x401 98 12:38:33,6875894 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Classes\WOW6432Node\CLSID\{11016101-E366-4D22-BC06-4ADA335C892B}\ShellFolder NAME NOT FOUND Desired Access: Maximum Allowed 98 12:38:33,6875969 MCLauncher.exe 6080 RegQueryValue HKCR\WOW6432Node\CLSID\{11016101-E366-4D22-BC06-4ADA335C892B}\ShellFolder\FolderValueFlags SUCCESS Type: REG_DWORD, Length: 4, Data: 0 98 12:38:33,6876108 MCLauncher.exe 6080 RegCloseKey HKCR\WOW6432Node\CLSID\{11016101-E366-4D22-BC06-4ADA335C892B}\ShellFolder SUCCESS 98 12:38:33,6876194 MCLauncher.exe 6080 RegQueryKey HKCU SUCCESS Query: HandleTags, HandleTags: 0x0 98 12:38:33,6876246 MCLauncher.exe 6080 RegQueryKey HKCU SUCCESS Query: Name 98 12:38:33,6876321 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Microsoft\Windows\CurrentVersion\Explorer\CLSID\{11016101-E366-4D22-BC06-4ADA335C892B}\ShellFolder NAME NOT FOUND Desired Access: Query Value 98 12:38:33,6876429 MCLauncher.exe 6080 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 98 12:38:33,6876473 MCLauncher.exe 6080 RegQueryKey HKLM SUCCESS Query: Name 98 12:38:33,6876554 MCLauncher.exe 6080 RegOpenKey HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\CLSID\{11016101-E366-4D22-BC06-4ADA335C892B}\ShellFolder NAME NOT FOUND Desired Access: Query Value 98 12:38:33,6876651 MCLauncher.exe 6080 RegQueryKey HKCU SUCCESS Query: HandleTags, HandleTags: 0x0 98 12:38:33,6876695 MCLauncher.exe 6080 RegQueryKey HKCU SUCCESS Query: Name 98 12:38:33,6876764 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Microsoft\Windows\CurrentVersion\Policies\NonEnum NAME NOT FOUND Desired Access: Query Value 98 12:38:33,6876842 MCLauncher.exe 6080 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 98 12:38:33,6876889 MCLauncher.exe 6080 RegQueryKey HKLM SUCCESS Query: Name 98 12:38:33,6876958 MCLauncher.exe 6080 RegOpenKey HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Policies\NonEnum REPARSE Desired Access: Query Value 98 12:38:33,6877022 MCLauncher.exe 6080 RegOpenKey HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\NonEnum SUCCESS Desired Access: Query Value 98 12:38:33,6877083 MCLauncher.exe 6080 RegSetInfoKey HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\NonEnum SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 98 12:38:33,6877127 MCLauncher.exe 6080 RegQueryValue HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\NonEnum\{11016101-E366-4D22-BC06-4ADA335C892B} NAME NOT FOUND Length: 144 98 12:38:33,6877255 MCLauncher.exe 6080 RegCloseKey HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\NonEnum SUCCESS 98 12:38:33,6877327 MCLauncher.exe 6080 RegQueryKey HKCU\Software\Classes SUCCESS Query: Name 98 12:38:33,6877396 MCLauncher.exe 6080 RegQueryKey HKCU\Software\Classes SUCCESS Query: HandleTags, HandleTags: 0x1 98 12:38:33,6877462 MCLauncher.exe 6080 RegQueryKey HKCU\Software\Classes SUCCESS Query: HandleTags, HandleTags: 0x1 98 12:38:33,6877510 MCLauncher.exe 6080 RegQueryKey HKCU\Software\Classes SUCCESS Query: Name 98 12:38:33,6877595 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Classes\WOW6432Node\CLSID\{12F0008F-2113-482A-80B3-FD5E91C12313}\ShellFolder NAME NOT FOUND Desired Access: Query Value 98 12:38:33,6877706 MCLauncher.exe 6080 RegOpenKey HKCR\WOW6432Node\CLSID\{12F0008F-2113-482A-80B3-FD5E91C12313}\ShellFolder SUCCESS Desired Access: Query Value 98 12:38:33,6877848 MCLauncher.exe 6080 RegSetInfoKey HKCR\WOW6432Node\CLSID\{12F0008F-2113-482A-80B3-FD5E91C12313}\ShellFolder SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 98 12:38:33,6877889 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{12F0008F-2113-482A-80B3-FD5E91C12313}\ShellFolder SUCCESS Query: Name 98 12:38:33,6877953 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{12F0008F-2113-482A-80B3-FD5E91C12313}\ShellFolder SUCCESS Query: HandleTags, HandleTags: 0x401 98 12:38:33,6878041 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Classes\WOW6432Node\CLSID\{12F0008F-2113-482A-80B3-FD5E91C12313}\ShellFolder NAME NOT FOUND Desired Access: Maximum Allowed 98 12:38:33,6878105 MCLauncher.exe 6080 RegQueryValue HKCR\WOW6432Node\CLSID\{12F0008F-2113-482A-80B3-FD5E91C12313}\ShellFolder\Attributes SUCCESS Type: REG_BINARY, Length: 4, Data: 00 00 10 A0 98 12:38:33,6878235 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{12F0008F-2113-482A-80B3-FD5E91C12313}\ShellFolder SUCCESS Query: Name 98 12:38:33,6878299 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{12F0008F-2113-482A-80B3-FD5E91C12313}\ShellFolder SUCCESS Query: HandleTags, HandleTags: 0x401 98 12:38:33,6878399 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Classes\WOW6432Node\CLSID\{12F0008F-2113-482A-80B3-FD5E91C12313}\ShellFolder NAME NOT FOUND Desired Access: Maximum Allowed 98 12:38:33,6878476 MCLauncher.exe 6080 RegQueryValue HKCR\WOW6432Node\CLSID\{12F0008F-2113-482A-80B3-FD5E91C12313}\ShellFolder\CallForAttributes NAME NOT FOUND Length: 144 98 12:38:33,6878585 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{12F0008F-2113-482A-80B3-FD5E91C12313}\ShellFolder SUCCESS Query: Name 98 12:38:33,6878648 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{12F0008F-2113-482A-80B3-FD5E91C12313}\ShellFolder SUCCESS Query: HandleTags, HandleTags: 0x401 98 12:38:33,6878920 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Classes\WOW6432Node\CLSID\{12F0008F-2113-482A-80B3-FD5E91C12313}\ShellFolder NAME NOT FOUND Desired Access: Maximum Allowed 98 12:38:33,6879031 MCLauncher.exe 6080 RegQueryValue HKCR\WOW6432Node\CLSID\{12F0008F-2113-482A-80B3-FD5E91C12313}\ShellFolder\RestrictedAttributes NAME NOT FOUND Length: 144 98 12:38:33,6879155 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{12F0008F-2113-482A-80B3-FD5E91C12313}\ShellFolder SUCCESS Query: Name 98 12:38:33,6879219 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{12F0008F-2113-482A-80B3-FD5E91C12313}\ShellFolder SUCCESS Query: HandleTags, HandleTags: 0x401 98 12:38:33,6879321 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Classes\WOW6432Node\CLSID\{12F0008F-2113-482A-80B3-FD5E91C12313}\ShellFolder NAME NOT FOUND Desired Access: Maximum Allowed 98 12:38:33,6879399 MCLauncher.exe 6080 RegQueryValue HKCR\WOW6432Node\CLSID\{12F0008F-2113-482A-80B3-FD5E91C12313}\ShellFolder\FolderValueFlags NAME NOT FOUND Length: 144 98 12:38:33,6879510 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{12F0008F-2113-482A-80B3-FD5E91C12313}\ShellFolder SUCCESS Query: Name 98 12:38:33,6879574 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{12F0008F-2113-482A-80B3-FD5E91C12313}\ShellFolder SUCCESS Query: HandleTags, HandleTags: 0x401 98 12:38:33,6879673 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Classes\WOW6432Node\CLSID\{12F0008F-2113-482A-80B3-FD5E91C12313}\ShellFolder NAME NOT FOUND Desired Access: Maximum Allowed 98 12:38:33,6879748 MCLauncher.exe 6080 RegQueryValue HKCR\WOW6432Node\CLSID\{12F0008F-2113-482A-80B3-FD5E91C12313}\ShellFolder\WantsFORDISPLAY NAME NOT FOUND Length: 144 98 12:38:33,6879856 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{12F0008F-2113-482A-80B3-FD5E91C12313}\ShellFolder SUCCESS Query: Name 98 12:38:33,6879920 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{12F0008F-2113-482A-80B3-FD5E91C12313}\ShellFolder SUCCESS Query: HandleTags, HandleTags: 0x401 98 12:38:33,6880017 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Classes\WOW6432Node\CLSID\{12F0008F-2113-482A-80B3-FD5E91C12313}\ShellFolder NAME NOT FOUND Desired Access: Maximum Allowed 98 12:38:33,6880094 MCLauncher.exe 6080 RegQueryValue HKCR\WOW6432Node\CLSID\{12F0008F-2113-482A-80B3-FD5E91C12313}\ShellFolder\HideFolderVerbs NAME NOT FOUND Length: 144 98 12:38:33,6880197 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{12F0008F-2113-482A-80B3-FD5E91C12313}\ShellFolder SUCCESS Query: Name 98 12:38:33,6880261 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{12F0008F-2113-482A-80B3-FD5E91C12313}\ShellFolder SUCCESS Query: HandleTags, HandleTags: 0x401 98 12:38:33,6880358 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Classes\WOW6432Node\CLSID\{12F0008F-2113-482A-80B3-FD5E91C12313}\ShellFolder NAME NOT FOUND Desired Access: Maximum Allowed 98 12:38:33,6880435 MCLauncher.exe 6080 RegQueryValue HKCR\WOW6432Node\CLSID\{12F0008F-2113-482A-80B3-FD5E91C12313}\ShellFolder\UseDropHandler NAME NOT FOUND Length: 144 98 12:38:33,6880538 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{12F0008F-2113-482A-80B3-FD5E91C12313}\ShellFolder SUCCESS Query: Name 98 12:38:33,6880604 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{12F0008F-2113-482A-80B3-FD5E91C12313}\ShellFolder SUCCESS Query: HandleTags, HandleTags: 0x401 98 12:38:33,6880701 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Classes\WOW6432Node\CLSID\{12F0008F-2113-482A-80B3-FD5E91C12313}\ShellFolder NAME NOT FOUND Desired Access: Maximum Allowed 98 12:38:33,6880776 MCLauncher.exe 6080 RegQueryValue HKCR\WOW6432Node\CLSID\{12F0008F-2113-482A-80B3-FD5E91C12313}\ShellFolder\WantsFORPARSING NAME NOT FOUND Length: 144 98 12:38:33,6880881 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{12F0008F-2113-482A-80B3-FD5E91C12313}\ShellFolder SUCCESS Query: Name 98 12:38:33,6880945 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{12F0008F-2113-482A-80B3-FD5E91C12313}\ShellFolder SUCCESS Query: HandleTags, HandleTags: 0x401 98 12:38:33,6881039 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Classes\WOW6432Node\CLSID\{12F0008F-2113-482A-80B3-FD5E91C12313}\ShellFolder NAME NOT FOUND Desired Access: Maximum Allowed 98 12:38:33,6881114 MCLauncher.exe 6080 RegQueryValue HKCR\WOW6432Node\CLSID\{12F0008F-2113-482A-80B3-FD5E91C12313}\ShellFolder\WantsParseDisplayName NAME NOT FOUND Length: 144 98 12:38:33,6881219 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{12F0008F-2113-482A-80B3-FD5E91C12313}\ShellFolder SUCCESS Query: Name 98 12:38:33,6881286 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{12F0008F-2113-482A-80B3-FD5E91C12313}\ShellFolder SUCCESS Query: HandleTags, HandleTags: 0x401 98 12:38:33,6881380 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Classes\WOW6432Node\CLSID\{12F0008F-2113-482A-80B3-FD5E91C12313}\ShellFolder NAME NOT FOUND Desired Access: Maximum Allowed 98 12:38:33,6881455 MCLauncher.exe 6080 RegQueryValue HKCR\WOW6432Node\CLSID\{12F0008F-2113-482A-80B3-FD5E91C12313}\ShellFolder\QueryForOverlay NAME NOT FOUND Length: 144 98 12:38:33,6881560 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{12F0008F-2113-482A-80B3-FD5E91C12313}\ShellFolder SUCCESS Query: Name 98 12:38:33,6881624 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{12F0008F-2113-482A-80B3-FD5E91C12313}\ShellFolder SUCCESS Query: HandleTags, HandleTags: 0x401 98 12:38:33,6881724 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Classes\WOW6432Node\CLSID\{12F0008F-2113-482A-80B3-FD5E91C12313}\ShellFolder NAME NOT FOUND Desired Access: Maximum Allowed 98 12:38:33,6881798 MCLauncher.exe 6080 RegQueryValue HKCR\WOW6432Node\CLSID\{12F0008F-2113-482A-80B3-FD5E91C12313}\ShellFolder\MapNetDriveVerbs NAME NOT FOUND Length: 144 98 12:38:33,6881906 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{12F0008F-2113-482A-80B3-FD5E91C12313}\ShellFolder SUCCESS Query: Name 98 12:38:33,6881970 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{12F0008F-2113-482A-80B3-FD5E91C12313}\ShellFolder SUCCESS Query: HandleTags, HandleTags: 0x401 98 12:38:33,6882064 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Classes\WOW6432Node\CLSID\{12F0008F-2113-482A-80B3-FD5E91C12313}\ShellFolder NAME NOT FOUND Desired Access: Maximum Allowed 98 12:38:33,6882142 MCLauncher.exe 6080 RegQueryValue HKCR\WOW6432Node\CLSID\{12F0008F-2113-482A-80B3-FD5E91C12313}\ShellFolder\QueryForInfoTip NAME NOT FOUND Length: 144 98 12:38:33,6882247 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{12F0008F-2113-482A-80B3-FD5E91C12313}\ShellFolder SUCCESS Query: Name 98 12:38:33,6882311 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{12F0008F-2113-482A-80B3-FD5E91C12313}\ShellFolder SUCCESS Query: HandleTags, HandleTags: 0x401 98 12:38:33,6882408 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Classes\WOW6432Node\CLSID\{12F0008F-2113-482A-80B3-FD5E91C12313}\ShellFolder NAME NOT FOUND Desired Access: Maximum Allowed 98 12:38:33,6882485 MCLauncher.exe 6080 RegQueryValue HKCR\WOW6432Node\CLSID\{12F0008F-2113-482A-80B3-FD5E91C12313}\ShellFolder\HideOnDesktopPerUser NAME NOT FOUND Length: 144 98 12:38:33,6882591 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{12F0008F-2113-482A-80B3-FD5E91C12313}\ShellFolder SUCCESS Query: Name 98 12:38:33,6882654 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{12F0008F-2113-482A-80B3-FD5E91C12313}\ShellFolder SUCCESS Query: HandleTags, HandleTags: 0x401 98 12:38:33,6882751 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Classes\WOW6432Node\CLSID\{12F0008F-2113-482A-80B3-FD5E91C12313}\ShellFolder NAME NOT FOUND Desired Access: Maximum Allowed 98 12:38:33,6882829 MCLauncher.exe 6080 RegQueryValue HKCR\WOW6432Node\CLSID\{12F0008F-2113-482A-80B3-FD5E91C12313}\ShellFolder\WantsAliasedNotifications NAME NOT FOUND Length: 144 98 12:38:33,6882934 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{12F0008F-2113-482A-80B3-FD5E91C12313}\ShellFolder SUCCESS Query: Name 98 12:38:33,6882998 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{12F0008F-2113-482A-80B3-FD5E91C12313}\ShellFolder SUCCESS Query: HandleTags, HandleTags: 0x401 98 12:38:33,6883095 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Classes\WOW6432Node\CLSID\{12F0008F-2113-482A-80B3-FD5E91C12313}\ShellFolder NAME NOT FOUND Desired Access: Maximum Allowed 98 12:38:33,6883170 MCLauncher.exe 6080 RegQueryValue HKCR\WOW6432Node\CLSID\{12F0008F-2113-482A-80B3-FD5E91C12313}\ShellFolder\WantsUniversalDelegate NAME NOT FOUND Length: 144 98 12:38:33,6883278 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{12F0008F-2113-482A-80B3-FD5E91C12313}\ShellFolder SUCCESS Query: Name 98 12:38:33,6883342 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{12F0008F-2113-482A-80B3-FD5E91C12313}\ShellFolder SUCCESS Query: HandleTags, HandleTags: 0x401 98 12:38:33,6883436 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Classes\WOW6432Node\CLSID\{12F0008F-2113-482A-80B3-FD5E91C12313}\ShellFolder NAME NOT FOUND Desired Access: Maximum Allowed 98 12:38:33,6883513 MCLauncher.exe 6080 RegQueryValue HKCR\WOW6432Node\CLSID\{12F0008F-2113-482A-80B3-FD5E91C12313}\ShellFolder\NoFileFolderJunction NAME NOT FOUND Length: 144 98 12:38:33,6883619 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{12F0008F-2113-482A-80B3-FD5E91C12313}\ShellFolder SUCCESS Query: Name 98 12:38:33,6883682 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{12F0008F-2113-482A-80B3-FD5E91C12313}\ShellFolder SUCCESS Query: HandleTags, HandleTags: 0x401 98 12:38:33,6883779 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Classes\WOW6432Node\CLSID\{12F0008F-2113-482A-80B3-FD5E91C12313}\ShellFolder NAME NOT FOUND Desired Access: Maximum Allowed 98 12:38:33,6883854 MCLauncher.exe 6080 RegQueryValue HKCR\WOW6432Node\CLSID\{12F0008F-2113-482A-80B3-FD5E91C12313}\ShellFolder\PinToNameSpaceTree NAME NOT FOUND Length: 144 98 12:38:33,6883957 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{12F0008F-2113-482A-80B3-FD5E91C12313}\ShellFolder SUCCESS Query: Name 98 12:38:33,6884020 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{12F0008F-2113-482A-80B3-FD5E91C12313}\ShellFolder SUCCESS Query: HandleTags, HandleTags: 0x401 98 12:38:33,6884117 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Classes\WOW6432Node\CLSID\{12F0008F-2113-482A-80B3-FD5E91C12313}\ShellFolder NAME NOT FOUND Desired Access: Maximum Allowed 98 12:38:33,6884192 MCLauncher.exe 6080 RegQueryValue HKCR\WOW6432Node\CLSID\{12F0008F-2113-482A-80B3-FD5E91C12313}\ShellFolder\HasNavigationEnum NAME NOT FOUND Length: 144 98 12:38:33,6884297 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{12F0008F-2113-482A-80B3-FD5E91C12313}\ShellFolder SUCCESS Query: Name 98 12:38:33,6884361 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{12F0008F-2113-482A-80B3-FD5E91C12313}\ShellFolder SUCCESS Query: HandleTags, HandleTags: 0x401 98 12:38:33,6884455 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Classes\WOW6432Node\CLSID\{12F0008F-2113-482A-80B3-FD5E91C12313}\ShellFolder NAME NOT FOUND Desired Access: Maximum Allowed 98 12:38:33,6884530 MCLauncher.exe 6080 RegQueryValue HKCR\WOW6432Node\CLSID\{12F0008F-2113-482A-80B3-FD5E91C12313}\ShellFolder\EnableThumbnails NAME NOT FOUND Length: 144 98 12:38:33,6884635 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{12F0008F-2113-482A-80B3-FD5E91C12313}\ShellFolder SUCCESS Query: Name 98 12:38:33,6884699 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{12F0008F-2113-482A-80B3-FD5E91C12313}\ShellFolder SUCCESS Query: HandleTags, HandleTags: 0x401 98 12:38:33,6884796 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Classes\WOW6432Node\CLSID\{12F0008F-2113-482A-80B3-FD5E91C12313}\ShellFolder NAME NOT FOUND Desired Access: Maximum Allowed 98 12:38:33,6884871 MCLauncher.exe 6080 RegQueryValue HKCR\WOW6432Node\CLSID\{12F0008F-2113-482A-80B3-FD5E91C12313}\ShellFolder\NoDefaultToFS NAME NOT FOUND Length: 144 98 12:38:33,6884976 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{12F0008F-2113-482A-80B3-FD5E91C12313}\ShellFolder SUCCESS Query: Name 98 12:38:33,6885040 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{12F0008F-2113-482A-80B3-FD5E91C12313}\ShellFolder SUCCESS Query: HandleTags, HandleTags: 0x401 98 12:38:33,6885137 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Classes\WOW6432Node\CLSID\{12F0008F-2113-482A-80B3-FD5E91C12313}\ShellFolder NAME NOT FOUND Desired Access: Maximum Allowed 98 12:38:33,6885212 MCLauncher.exe 6080 RegQueryValue HKCR\WOW6432Node\CLSID\{12F0008F-2113-482A-80B3-FD5E91C12313}\ShellFolder\ParseDisplayNameNeedsURL NAME NOT FOUND Length: 144 98 12:38:33,6885317 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{12F0008F-2113-482A-80B3-FD5E91C12313}\ShellFolder SUCCESS Query: Name 98 12:38:33,6885381 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{12F0008F-2113-482A-80B3-FD5E91C12313}\ShellFolder SUCCESS Query: HandleTags, HandleTags: 0x401 98 12:38:33,6885478 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Classes\WOW6432Node\CLSID\{12F0008F-2113-482A-80B3-FD5E91C12313}\ShellFolder NAME NOT FOUND Desired Access: Maximum Allowed 98 12:38:33,6885552 MCLauncher.exe 6080 RegQueryValue HKCR\WOW6432Node\CLSID\{12F0008F-2113-482A-80B3-FD5E91C12313}\ShellFolder\BlockNewFile NAME NOT FOUND Length: 144 98 12:38:33,6885658 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{12F0008F-2113-482A-80B3-FD5E91C12313}\ShellFolder SUCCESS Query: Name 98 12:38:33,6885721 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{12F0008F-2113-482A-80B3-FD5E91C12313}\ShellFolder SUCCESS Query: HandleTags, HandleTags: 0x401 98 12:38:33,6885818 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Classes\WOW6432Node\CLSID\{12F0008F-2113-482A-80B3-FD5E91C12313}\ShellFolder NAME NOT FOUND Desired Access: Maximum Allowed 98 12:38:33,6885893 MCLauncher.exe 6080 RegQueryValue HKCR\WOW6432Node\CLSID\{12F0008F-2113-482A-80B3-FD5E91C12313}\ShellFolder\NoInitRequired NAME NOT FOUND Length: 144 98 12:38:33,6885999 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{12F0008F-2113-482A-80B3-FD5E91C12313}\ShellFolder SUCCESS Query: Name 98 12:38:33,6886062 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{12F0008F-2113-482A-80B3-FD5E91C12313}\ShellFolder SUCCESS Query: HandleTags, HandleTags: 0x401 98 12:38:33,6886159 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Classes\WOW6432Node\CLSID\{12F0008F-2113-482A-80B3-FD5E91C12313}\ShellFolder NAME NOT FOUND Desired Access: Maximum Allowed 98 12:38:33,6886234 MCLauncher.exe 6080 RegQueryValue HKCR\WOW6432Node\CLSID\{12F0008F-2113-482A-80B3-FD5E91C12313}\ShellFolder\SafeRootForMTA NAME NOT FOUND Length: 144 98 12:38:33,6886339 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{12F0008F-2113-482A-80B3-FD5E91C12313}\ShellFolder SUCCESS Query: Name 98 12:38:33,6886403 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{12F0008F-2113-482A-80B3-FD5E91C12313}\ShellFolder SUCCESS Query: HandleTags, HandleTags: 0x401 98 12:38:33,6886497 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Classes\WOW6432Node\CLSID\{12F0008F-2113-482A-80B3-FD5E91C12313}\ShellFolder NAME NOT FOUND Desired Access: Maximum Allowed 98 12:38:33,6886572 MCLauncher.exe 6080 RegQueryValue HKCR\WOW6432Node\CLSID\{12F0008F-2113-482A-80B3-FD5E91C12313}\ShellFolder\WantsSendToTarget NAME NOT FOUND Length: 144 98 12:38:33,6886680 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{12F0008F-2113-482A-80B3-FD5E91C12313}\ShellFolder SUCCESS Query: Name 98 12:38:33,6886744 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{12F0008F-2113-482A-80B3-FD5E91C12313}\ShellFolder SUCCESS Query: HandleTags, HandleTags: 0x401 98 12:38:33,6886841 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Classes\WOW6432Node\CLSID\{12F0008F-2113-482A-80B3-FD5E91C12313}\ShellFolder NAME NOT FOUND Desired Access: Maximum Allowed 98 12:38:33,6886916 MCLauncher.exe 6080 RegQueryValue HKCR\WOW6432Node\CLSID\{12F0008F-2113-482A-80B3-FD5E91C12313}\ShellFolder\NoLocalizedNameInTarget NAME NOT FOUND Length: 144 98 12:38:33,6887040 MCLauncher.exe 6080 RegCloseKey HKCR\WOW6432Node\CLSID\{12F0008F-2113-482A-80B3-FD5E91C12313}\ShellFolder SUCCESS 98 12:38:33,6887132 MCLauncher.exe 6080 RegQueryKey HKCU SUCCESS Query: HandleTags, HandleTags: 0x0 98 12:38:33,6887182 MCLauncher.exe 6080 RegQueryKey HKCU SUCCESS Query: Name 98 12:38:33,6887259 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Microsoft\Windows\CurrentVersion\Explorer\CLSID\{12F0008F-2113-482A-80B3-FD5E91C12313}\ShellFolder NAME NOT FOUND Desired Access: Query Value 98 12:38:33,6887364 MCLauncher.exe 6080 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 98 12:38:33,6887409 MCLauncher.exe 6080 RegQueryKey HKLM SUCCESS Query: Name 98 12:38:33,6887492 MCLauncher.exe 6080 RegOpenKey HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\CLSID\{12F0008F-2113-482A-80B3-FD5E91C12313}\ShellFolder NAME NOT FOUND Desired Access: Query Value 98 12:38:33,6887586 MCLauncher.exe 6080 RegQueryKey HKCU SUCCESS Query: HandleTags, HandleTags: 0x0 98 12:38:33,6887630 MCLauncher.exe 6080 RegQueryKey HKCU SUCCESS Query: Name 98 12:38:33,6887697 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Microsoft\Windows\CurrentVersion\Policies\NonEnum NAME NOT FOUND Desired Access: Query Value 98 12:38:33,6887774 MCLauncher.exe 6080 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 98 12:38:33,6887822 MCLauncher.exe 6080 RegQueryKey HKLM SUCCESS Query: Name 98 12:38:33,6887894 MCLauncher.exe 6080 RegOpenKey HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Policies\NonEnum REPARSE Desired Access: Query Value 98 12:38:33,6887955 MCLauncher.exe 6080 RegOpenKey HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\NonEnum SUCCESS Desired Access: Query Value 98 12:38:33,6888015 MCLauncher.exe 6080 RegSetInfoKey HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\NonEnum SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 98 12:38:33,6888063 MCLauncher.exe 6080 RegQueryValue HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\NonEnum\{12F0008F-2113-482A-80B3-FD5E91C12313} NAME NOT FOUND Length: 144 98 12:38:33,6888190 MCLauncher.exe 6080 RegCloseKey HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\NonEnum SUCCESS 98 12:38:33,6888265 MCLauncher.exe 6080 RegQueryKey HKCU\Software\Classes SUCCESS Query: Name 98 12:38:33,6888329 MCLauncher.exe 6080 RegQueryKey HKCU\Software\Classes SUCCESS Query: HandleTags, HandleTags: 0x1 98 12:38:33,6888395 MCLauncher.exe 6080 RegQueryKey HKCU\Software\Classes SUCCESS Query: HandleTags, HandleTags: 0x1 98 12:38:33,6888445 MCLauncher.exe 6080 RegQueryKey HKCU\Software\Classes SUCCESS Query: Name 98 12:38:33,6888534 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Classes\WOW6432Node\CLSID\{138508BC-1E03-49EA-9C8F-EA9E1D05D65D}\ShellFolder NAME NOT FOUND Desired Access: Query Value 98 12:38:33,6888642 MCLauncher.exe 6080 RegOpenKey HKCR\WOW6432Node\CLSID\{138508BC-1E03-49EA-9C8F-EA9E1D05D65D}\ShellFolder SUCCESS Desired Access: Query Value 98 12:38:33,6888946 MCLauncher.exe 6080 RegSetInfoKey HKCR\WOW6432Node\CLSID\{138508bc-1e03-49ea-9c8f-ea9e1d05d65d}\ShellFolder SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 98 12:38:33,6889027 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{138508bc-1e03-49ea-9c8f-ea9e1d05d65d}\ShellFolder SUCCESS Query: Name 98 12:38:33,6889124 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{138508bc-1e03-49ea-9c8f-ea9e1d05d65d}\ShellFolder SUCCESS Query: HandleTags, HandleTags: 0x401 98 12:38:33,6889271 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Classes\WOW6432Node\CLSID\{138508bc-1e03-49ea-9c8f-ea9e1d05d65d}\ShellFolder NAME NOT FOUND Desired Access: Maximum Allowed 98 12:38:33,6889384 MCLauncher.exe 6080 RegQueryValue HKCR\WOW6432Node\CLSID\{138508bc-1e03-49ea-9c8f-ea9e1d05d65d}\ShellFolder\Attributes SUCCESS Type: REG_DWORD, Length: 4, Data: 538181632 98 12:38:33,6889592 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{138508bc-1e03-49ea-9c8f-ea9e1d05d65d}\ShellFolder SUCCESS Query: Name 98 12:38:33,6889689 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{138508bc-1e03-49ea-9c8f-ea9e1d05d65d}\ShellFolder SUCCESS Query: HandleTags, HandleTags: 0x401 98 12:38:33,6889833 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Classes\WOW6432Node\CLSID\{138508bc-1e03-49ea-9c8f-ea9e1d05d65d}\ShellFolder NAME NOT FOUND Desired Access: Maximum Allowed 98 12:38:33,6889944 MCLauncher.exe 6080 RegQueryValue HKCR\WOW6432Node\CLSID\{138508bc-1e03-49ea-9c8f-ea9e1d05d65d}\ShellFolder\CallForAttributes NAME NOT FOUND Length: 144 98 12:38:33,6890110 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{138508bc-1e03-49ea-9c8f-ea9e1d05d65d}\ShellFolder SUCCESS Query: Name 98 12:38:33,6890213 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{138508bc-1e03-49ea-9c8f-ea9e1d05d65d}\ShellFolder SUCCESS Query: HandleTags, HandleTags: 0x401 98 12:38:33,6890373 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Classes\WOW6432Node\CLSID\{138508bc-1e03-49ea-9c8f-ea9e1d05d65d}\ShellFolder NAME NOT FOUND Desired Access: Maximum Allowed 98 12:38:33,6890492 MCLauncher.exe 6080 RegQueryValue HKCR\WOW6432Node\CLSID\{138508bc-1e03-49ea-9c8f-ea9e1d05d65d}\ShellFolder\RestrictedAttributes NAME NOT FOUND Length: 144 98 12:38:33,6890645 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{138508bc-1e03-49ea-9c8f-ea9e1d05d65d}\ShellFolder SUCCESS Query: Name 98 12:38:33,6890711 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{138508bc-1e03-49ea-9c8f-ea9e1d05d65d}\ShellFolder SUCCESS Query: HandleTags, HandleTags: 0x401 98 12:38:33,6890819 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Classes\WOW6432Node\CLSID\{138508bc-1e03-49ea-9c8f-ea9e1d05d65d}\ShellFolder NAME NOT FOUND Desired Access: Maximum Allowed 98 12:38:33,6890902 MCLauncher.exe 6080 RegQueryValue HKCR\WOW6432Node\CLSID\{138508bc-1e03-49ea-9c8f-ea9e1d05d65d}\ShellFolder\FolderValueFlags NAME NOT FOUND Length: 144 98 12:38:33,6891013 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{138508bc-1e03-49ea-9c8f-ea9e1d05d65d}\ShellFolder SUCCESS Query: Name 98 12:38:33,6891077 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{138508bc-1e03-49ea-9c8f-ea9e1d05d65d}\ShellFolder SUCCESS Query: HandleTags, HandleTags: 0x401 98 12:38:33,6891174 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Classes\WOW6432Node\CLSID\{138508bc-1e03-49ea-9c8f-ea9e1d05d65d}\ShellFolder NAME NOT FOUND Desired Access: Maximum Allowed 98 12:38:33,6891252 MCLauncher.exe 6080 RegQueryValue HKCR\WOW6432Node\CLSID\{138508bc-1e03-49ea-9c8f-ea9e1d05d65d}\ShellFolder\WantsFORDISPLAY NAME NOT FOUND Length: 144 98 12:38:33,6891357 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{138508bc-1e03-49ea-9c8f-ea9e1d05d65d}\ShellFolder SUCCESS Query: Name 98 12:38:33,6891423 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{138508bc-1e03-49ea-9c8f-ea9e1d05d65d}\ShellFolder SUCCESS Query: HandleTags, HandleTags: 0x401 98 12:38:33,6891520 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Classes\WOW6432Node\CLSID\{138508bc-1e03-49ea-9c8f-ea9e1d05d65d}\ShellFolder NAME NOT FOUND Desired Access: Maximum Allowed 98 12:38:33,6891595 MCLauncher.exe 6080 RegQueryValue HKCR\WOW6432Node\CLSID\{138508bc-1e03-49ea-9c8f-ea9e1d05d65d}\ShellFolder\HideFolderVerbs NAME NOT FOUND Length: 144 98 12:38:33,6891700 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{138508bc-1e03-49ea-9c8f-ea9e1d05d65d}\ShellFolder SUCCESS Query: Name 98 12:38:33,6891764 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{138508bc-1e03-49ea-9c8f-ea9e1d05d65d}\ShellFolder SUCCESS Query: HandleTags, HandleTags: 0x401 98 12:38:33,6891861 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Classes\WOW6432Node\CLSID\{138508bc-1e03-49ea-9c8f-ea9e1d05d65d}\ShellFolder NAME NOT FOUND Desired Access: Maximum Allowed 98 12:38:33,6891939 MCLauncher.exe 6080 RegQueryValue HKCR\WOW6432Node\CLSID\{138508bc-1e03-49ea-9c8f-ea9e1d05d65d}\ShellFolder\UseDropHandler NAME NOT FOUND Length: 144 98 12:38:33,6892044 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{138508bc-1e03-49ea-9c8f-ea9e1d05d65d}\ShellFolder SUCCESS Query: Name 98 12:38:33,6892108 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{138508bc-1e03-49ea-9c8f-ea9e1d05d65d}\ShellFolder SUCCESS Query: HandleTags, HandleTags: 0x401 98 12:38:33,6892205 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Classes\WOW6432Node\CLSID\{138508bc-1e03-49ea-9c8f-ea9e1d05d65d}\ShellFolder NAME NOT FOUND Desired Access: Maximum Allowed 98 12:38:33,6892282 MCLauncher.exe 6080 RegQueryValue HKCR\WOW6432Node\CLSID\{138508bc-1e03-49ea-9c8f-ea9e1d05d65d}\ShellFolder\WantsFORPARSING NAME NOT FOUND Length: 144 98 12:38:33,6892387 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{138508bc-1e03-49ea-9c8f-ea9e1d05d65d}\ShellFolder SUCCESS Query: Name 98 12:38:33,6892454 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{138508bc-1e03-49ea-9c8f-ea9e1d05d65d}\ShellFolder SUCCESS Query: HandleTags, HandleTags: 0x401 98 12:38:33,6892551 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Classes\WOW6432Node\CLSID\{138508bc-1e03-49ea-9c8f-ea9e1d05d65d}\ShellFolder NAME NOT FOUND Desired Access: Maximum Allowed 98 12:38:33,6892623 MCLauncher.exe 6080 RegQueryValue HKCR\WOW6432Node\CLSID\{138508bc-1e03-49ea-9c8f-ea9e1d05d65d}\ShellFolder\WantsParseDisplayName NAME NOT FOUND Length: 144 98 12:38:33,6892728 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{138508bc-1e03-49ea-9c8f-ea9e1d05d65d}\ShellFolder SUCCESS Query: Name 98 12:38:33,6892792 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{138508bc-1e03-49ea-9c8f-ea9e1d05d65d}\ShellFolder SUCCESS Query: HandleTags, HandleTags: 0x401 98 12:38:33,6892889 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Classes\WOW6432Node\CLSID\{138508bc-1e03-49ea-9c8f-ea9e1d05d65d}\ShellFolder NAME NOT FOUND Desired Access: Maximum Allowed 98 12:38:33,6892964 MCLauncher.exe 6080 RegQueryValue HKCR\WOW6432Node\CLSID\{138508bc-1e03-49ea-9c8f-ea9e1d05d65d}\ShellFolder\QueryForOverlay NAME NOT FOUND Length: 144 98 12:38:33,6893072 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{138508bc-1e03-49ea-9c8f-ea9e1d05d65d}\ShellFolder SUCCESS Query: Name 98 12:38:33,6893135 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{138508bc-1e03-49ea-9c8f-ea9e1d05d65d}\ShellFolder SUCCESS Query: HandleTags, HandleTags: 0x401 98 12:38:33,6893232 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Classes\WOW6432Node\CLSID\{138508bc-1e03-49ea-9c8f-ea9e1d05d65d}\ShellFolder NAME NOT FOUND Desired Access: Maximum Allowed 98 12:38:33,6893304 MCLauncher.exe 6080 RegQueryValue HKCR\WOW6432Node\CLSID\{138508bc-1e03-49ea-9c8f-ea9e1d05d65d}\ShellFolder\MapNetDriveVerbs NAME NOT FOUND Length: 144 98 12:38:33,6893410 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{138508bc-1e03-49ea-9c8f-ea9e1d05d65d}\ShellFolder SUCCESS Query: Name 98 12:38:33,6893474 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{138508bc-1e03-49ea-9c8f-ea9e1d05d65d}\ShellFolder SUCCESS Query: HandleTags, HandleTags: 0x401 98 12:38:33,6893568 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Classes\WOW6432Node\CLSID\{138508bc-1e03-49ea-9c8f-ea9e1d05d65d}\ShellFolder NAME NOT FOUND Desired Access: Maximum Allowed 98 12:38:33,6893643 MCLauncher.exe 6080 RegQueryValue HKCR\WOW6432Node\CLSID\{138508bc-1e03-49ea-9c8f-ea9e1d05d65d}\ShellFolder\QueryForInfoTip NAME NOT FOUND Length: 144 98 12:38:33,6896383 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{138508bc-1e03-49ea-9c8f-ea9e1d05d65d}\ShellFolder SUCCESS Query: Name 98 12:38:33,6896457 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{138508bc-1e03-49ea-9c8f-ea9e1d05d65d}\ShellFolder SUCCESS Query: HandleTags, HandleTags: 0x401 98 12:38:33,6896577 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Classes\WOW6432Node\CLSID\{138508bc-1e03-49ea-9c8f-ea9e1d05d65d}\ShellFolder NAME NOT FOUND Desired Access: Maximum Allowed 98 12:38:33,6896662 MCLauncher.exe 6080 RegQueryValue HKCR\WOW6432Node\CLSID\{138508bc-1e03-49ea-9c8f-ea9e1d05d65d}\ShellFolder\HideOnDesktopPerUser NAME NOT FOUND Length: 144 98 12:38:33,6896779 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{138508bc-1e03-49ea-9c8f-ea9e1d05d65d}\ShellFolder SUCCESS Query: Name 98 12:38:33,6896845 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{138508bc-1e03-49ea-9c8f-ea9e1d05d65d}\ShellFolder SUCCESS Query: HandleTags, HandleTags: 0x401 98 12:38:33,6896942 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Classes\WOW6432Node\CLSID\{138508bc-1e03-49ea-9c8f-ea9e1d05d65d}\ShellFolder NAME NOT FOUND Desired Access: Maximum Allowed 98 12:38:33,6897023 MCLauncher.exe 6080 RegQueryValue HKCR\WOW6432Node\CLSID\{138508bc-1e03-49ea-9c8f-ea9e1d05d65d}\ShellFolder\WantsAliasedNotifications NAME NOT FOUND Length: 144 98 12:38:33,6897131 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{138508bc-1e03-49ea-9c8f-ea9e1d05d65d}\ShellFolder SUCCESS Query: Name 98 12:38:33,6897194 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{138508bc-1e03-49ea-9c8f-ea9e1d05d65d}\ShellFolder SUCCESS Query: HandleTags, HandleTags: 0x401 98 12:38:33,6897289 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Classes\WOW6432Node\CLSID\{138508bc-1e03-49ea-9c8f-ea9e1d05d65d}\ShellFolder NAME NOT FOUND Desired Access: Maximum Allowed 98 12:38:33,6897366 MCLauncher.exe 6080 RegQueryValue HKCR\WOW6432Node\CLSID\{138508bc-1e03-49ea-9c8f-ea9e1d05d65d}\ShellFolder\WantsUniversalDelegate NAME NOT FOUND Length: 144 98 12:38:33,6897474 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{138508bc-1e03-49ea-9c8f-ea9e1d05d65d}\ShellFolder SUCCESS Query: Name 98 12:38:33,6897535 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{138508bc-1e03-49ea-9c8f-ea9e1d05d65d}\ShellFolder SUCCESS Query: HandleTags, HandleTags: 0x401 98 12:38:33,6897632 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Classes\WOW6432Node\CLSID\{138508bc-1e03-49ea-9c8f-ea9e1d05d65d}\ShellFolder NAME NOT FOUND Desired Access: Maximum Allowed 98 12:38:33,6897707 MCLauncher.exe 6080 RegQueryValue HKCR\WOW6432Node\CLSID\{138508bc-1e03-49ea-9c8f-ea9e1d05d65d}\ShellFolder\NoFileFolderJunction NAME NOT FOUND Length: 144 98 12:38:33,6897812 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{138508bc-1e03-49ea-9c8f-ea9e1d05d65d}\ShellFolder SUCCESS Query: Name 98 12:38:33,6897876 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{138508bc-1e03-49ea-9c8f-ea9e1d05d65d}\ShellFolder SUCCESS Query: HandleTags, HandleTags: 0x401 98 12:38:33,6897973 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Classes\WOW6432Node\CLSID\{138508bc-1e03-49ea-9c8f-ea9e1d05d65d}\ShellFolder NAME NOT FOUND Desired Access: Maximum Allowed 98 12:38:33,6898048 MCLauncher.exe 6080 RegQueryValue HKCR\WOW6432Node\CLSID\{138508bc-1e03-49ea-9c8f-ea9e1d05d65d}\ShellFolder\PinToNameSpaceTree NAME NOT FOUND Length: 144 98 12:38:33,6898153 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{138508bc-1e03-49ea-9c8f-ea9e1d05d65d}\ShellFolder SUCCESS Query: Name 98 12:38:33,6898217 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{138508bc-1e03-49ea-9c8f-ea9e1d05d65d}\ShellFolder SUCCESS Query: HandleTags, HandleTags: 0x401 98 12:38:33,6898316 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Classes\WOW6432Node\CLSID\{138508bc-1e03-49ea-9c8f-ea9e1d05d65d}\ShellFolder NAME NOT FOUND Desired Access: Maximum Allowed 98 12:38:33,6898391 MCLauncher.exe 6080 RegQueryValue HKCR\WOW6432Node\CLSID\{138508bc-1e03-49ea-9c8f-ea9e1d05d65d}\ShellFolder\HasNavigationEnum NAME NOT FOUND Length: 144 98 12:38:33,6898616 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{138508bc-1e03-49ea-9c8f-ea9e1d05d65d}\ShellFolder SUCCESS Query: Name 98 12:38:33,6898740 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{138508bc-1e03-49ea-9c8f-ea9e1d05d65d}\ShellFolder SUCCESS Query: HandleTags, HandleTags: 0x401 98 12:38:33,6898895 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Classes\WOW6432Node\CLSID\{138508bc-1e03-49ea-9c8f-ea9e1d05d65d}\ShellFolder NAME NOT FOUND Desired Access: Maximum Allowed 98 12:38:33,6899012 MCLauncher.exe 6080 RegQueryValue HKCR\WOW6432Node\CLSID\{138508bc-1e03-49ea-9c8f-ea9e1d05d65d}\ShellFolder\EnableThumbnails NAME NOT FOUND Length: 144 98 12:38:33,6899161 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{138508bc-1e03-49ea-9c8f-ea9e1d05d65d}\ShellFolder SUCCESS Query: Name 98 12:38:33,6899228 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{138508bc-1e03-49ea-9c8f-ea9e1d05d65d}\ShellFolder SUCCESS Query: HandleTags, HandleTags: 0x401 98 12:38:33,6899333 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Classes\WOW6432Node\CLSID\{138508bc-1e03-49ea-9c8f-ea9e1d05d65d}\ShellFolder NAME NOT FOUND Desired Access: Maximum Allowed 98 12:38:33,6899414 MCLauncher.exe 6080 RegQueryValue HKCR\WOW6432Node\CLSID\{138508bc-1e03-49ea-9c8f-ea9e1d05d65d}\ShellFolder\NoDefaultToFS NAME NOT FOUND Length: 144 98 12:38:33,6899524 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{138508bc-1e03-49ea-9c8f-ea9e1d05d65d}\ShellFolder SUCCESS Query: Name 98 12:38:33,6899585 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{138508bc-1e03-49ea-9c8f-ea9e1d05d65d}\ShellFolder SUCCESS Query: HandleTags, HandleTags: 0x401 98 12:38:33,6899685 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Classes\WOW6432Node\CLSID\{138508bc-1e03-49ea-9c8f-ea9e1d05d65d}\ShellFolder NAME NOT FOUND Desired Access: Maximum Allowed 98 12:38:33,6899760 MCLauncher.exe 6080 RegQueryValue HKCR\WOW6432Node\CLSID\{138508bc-1e03-49ea-9c8f-ea9e1d05d65d}\ShellFolder\ParseDisplayNameNeedsURL NAME NOT FOUND Length: 144 98 12:38:33,6899865 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{138508bc-1e03-49ea-9c8f-ea9e1d05d65d}\ShellFolder SUCCESS Query: Name 98 12:38:33,6899929 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{138508bc-1e03-49ea-9c8f-ea9e1d05d65d}\ShellFolder SUCCESS Query: HandleTags, HandleTags: 0x401 98 12:38:33,6900026 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Classes\WOW6432Node\CLSID\{138508bc-1e03-49ea-9c8f-ea9e1d05d65d}\ShellFolder NAME NOT FOUND Desired Access: Maximum Allowed 98 12:38:33,6900101 MCLauncher.exe 6080 RegQueryValue HKCR\WOW6432Node\CLSID\{138508bc-1e03-49ea-9c8f-ea9e1d05d65d}\ShellFolder\BlockNewFile NAME NOT FOUND Length: 144 98 12:38:33,6900206 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{138508bc-1e03-49ea-9c8f-ea9e1d05d65d}\ShellFolder SUCCESS Query: Name 98 12:38:33,6900270 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{138508bc-1e03-49ea-9c8f-ea9e1d05d65d}\ShellFolder SUCCESS Query: HandleTags, HandleTags: 0x401 98 12:38:33,6900364 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Classes\WOW6432Node\CLSID\{138508bc-1e03-49ea-9c8f-ea9e1d05d65d}\ShellFolder NAME NOT FOUND Desired Access: Maximum Allowed 98 12:38:33,6900439 MCLauncher.exe 6080 RegQueryValue HKCR\WOW6432Node\CLSID\{138508bc-1e03-49ea-9c8f-ea9e1d05d65d}\ShellFolder\NoInitRequired NAME NOT FOUND Length: 144 98 12:38:33,6900544 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{138508bc-1e03-49ea-9c8f-ea9e1d05d65d}\ShellFolder SUCCESS Query: Name 98 12:38:33,6900605 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{138508bc-1e03-49ea-9c8f-ea9e1d05d65d}\ShellFolder SUCCESS Query: HandleTags, HandleTags: 0x401 98 12:38:33,6900705 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Classes\WOW6432Node\CLSID\{138508bc-1e03-49ea-9c8f-ea9e1d05d65d}\ShellFolder NAME NOT FOUND Desired Access: Maximum Allowed 98 12:38:33,6900779 MCLauncher.exe 6080 RegQueryValue HKCR\WOW6432Node\CLSID\{138508bc-1e03-49ea-9c8f-ea9e1d05d65d}\ShellFolder\SafeRootForMTA NAME NOT FOUND Length: 144 98 12:38:33,6900957 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{138508bc-1e03-49ea-9c8f-ea9e1d05d65d}\ShellFolder SUCCESS Query: Name 98 12:38:33,6901021 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{138508bc-1e03-49ea-9c8f-ea9e1d05d65d}\ShellFolder SUCCESS Query: HandleTags, HandleTags: 0x401 98 12:38:33,6901117 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Classes\WOW6432Node\CLSID\{138508bc-1e03-49ea-9c8f-ea9e1d05d65d}\ShellFolder NAME NOT FOUND Desired Access: Maximum Allowed 98 12:38:33,6901192 MCLauncher.exe 6080 RegQueryValue HKCR\WOW6432Node\CLSID\{138508bc-1e03-49ea-9c8f-ea9e1d05d65d}\ShellFolder\WantsSendToTarget NAME NOT FOUND Length: 144 98 12:38:33,6901298 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{138508bc-1e03-49ea-9c8f-ea9e1d05d65d}\ShellFolder SUCCESS Query: Name 98 12:38:33,6901361 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{138508bc-1e03-49ea-9c8f-ea9e1d05d65d}\ShellFolder SUCCESS Query: HandleTags, HandleTags: 0x401 98 12:38:33,6901458 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Classes\WOW6432Node\CLSID\{138508bc-1e03-49ea-9c8f-ea9e1d05d65d}\ShellFolder NAME NOT FOUND Desired Access: Maximum Allowed 98 12:38:33,6901533 MCLauncher.exe 6080 RegQueryValue HKCR\WOW6432Node\CLSID\{138508bc-1e03-49ea-9c8f-ea9e1d05d65d}\ShellFolder\NoLocalizedNameInTarget NAME NOT FOUND Length: 144 98 12:38:33,6901663 MCLauncher.exe 6080 RegCloseKey HKCR\WOW6432Node\CLSID\{138508bc-1e03-49ea-9c8f-ea9e1d05d65d}\ShellFolder SUCCESS 98 12:38:33,6901766 MCLauncher.exe 6080 RegQueryKey HKCU SUCCESS Query: HandleTags, HandleTags: 0x0 98 12:38:33,6901818 MCLauncher.exe 6080 RegQueryKey HKCU SUCCESS Query: Name 98 12:38:33,6901902 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Microsoft\Windows\CurrentVersion\Explorer\CLSID\{138508BC-1E03-49EA-9C8F-EA9E1D05D65D}\ShellFolder NAME NOT FOUND Desired Access: Query Value 98 12:38:33,6902007 MCLauncher.exe 6080 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 98 12:38:33,6902051 MCLauncher.exe 6080 RegQueryKey HKLM SUCCESS Query: Name 98 12:38:33,6902137 MCLauncher.exe 6080 RegOpenKey HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\CLSID\{138508BC-1E03-49EA-9C8F-EA9E1D05D65D}\ShellFolder NAME NOT FOUND Desired Access: Query Value 98 12:38:33,6902237 MCLauncher.exe 6080 RegQueryKey HKCU SUCCESS Query: HandleTags, HandleTags: 0x0 98 12:38:33,6902281 MCLauncher.exe 6080 RegQueryKey HKCU SUCCESS Query: Name 98 12:38:33,6902350 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Microsoft\Windows\CurrentVersion\Policies\NonEnum NAME NOT FOUND Desired Access: Query Value 98 12:38:33,6902431 MCLauncher.exe 6080 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 98 12:38:33,6902475 MCLauncher.exe 6080 RegQueryKey HKLM SUCCESS Query: Name 98 12:38:33,6902550 MCLauncher.exe 6080 RegOpenKey HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Policies\NonEnum REPARSE Desired Access: Query Value 98 12:38:33,6902614 MCLauncher.exe 6080 RegOpenKey HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\NonEnum SUCCESS Desired Access: Query Value 98 12:38:33,6902680 MCLauncher.exe 6080 RegSetInfoKey HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\NonEnum SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 98 12:38:33,6902727 MCLauncher.exe 6080 RegQueryValue HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\NonEnum\{138508BC-1E03-49EA-9C8F-EA9E1D05D65D} NAME NOT FOUND Length: 144 98 12:38:33,6902863 MCLauncher.exe 6080 RegCloseKey HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\NonEnum SUCCESS 98 12:38:33,6902943 MCLauncher.exe 6080 RegQueryKey HKCU\Software\Classes SUCCESS Query: Name 98 12:38:33,6903010 MCLauncher.exe 6080 RegQueryKey HKCU\Software\Classes SUCCESS Query: HandleTags, HandleTags: 0x1 98 12:38:33,6903079 MCLauncher.exe 6080 RegQueryKey HKCU\Software\Classes SUCCESS Query: HandleTags, HandleTags: 0x1 98 12:38:33,6903126 MCLauncher.exe 6080 RegQueryKey HKCU\Software\Classes SUCCESS Query: Name 98 12:38:33,6903218 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Classes\WOW6432Node\CLSID\{4336A54D-038B-4685-AB02-99BB52D3FB8B}\ShellFolder NAME NOT FOUND Desired Access: Query Value 98 12:38:33,6903328 MCLauncher.exe 6080 RegOpenKey HKCR\WOW6432Node\CLSID\{4336A54D-038B-4685-AB02-99BB52D3FB8B}\ShellFolder SUCCESS Desired Access: Query Value 98 12:38:33,6903478 MCLauncher.exe 6080 RegSetInfoKey HKCR\WOW6432Node\CLSID\{4336a54d-038b-4685-ab02-99bb52d3fb8b}\ShellFolder SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 98 12:38:33,6903525 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{4336a54d-038b-4685-ab02-99bb52d3fb8b}\ShellFolder SUCCESS Query: Name 98 12:38:33,6903583 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{4336a54d-038b-4685-ab02-99bb52d3fb8b}\ShellFolder SUCCESS Query: HandleTags, HandleTags: 0x401 98 12:38:33,6903677 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Classes\WOW6432Node\CLSID\{4336a54d-038b-4685-ab02-99bb52d3fb8b}\ShellFolder NAME NOT FOUND Desired Access: Maximum Allowed 98 12:38:33,6903744 MCLauncher.exe 6080 RegQueryValue HKCR\WOW6432Node\CLSID\{4336a54d-038b-4685-ab02-99bb52d3fb8b}\ShellFolder\Attributes SUCCESS Type: REG_DWORD, Length: 4, Data: 4036231437 98 12:38:33,6903880 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{4336a54d-038b-4685-ab02-99bb52d3fb8b}\ShellFolder SUCCESS Query: Name 98 12:38:33,6903946 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{4336a54d-038b-4685-ab02-99bb52d3fb8b}\ShellFolder SUCCESS Query: HandleTags, HandleTags: 0x401 98 12:38:33,6904046 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Classes\WOW6432Node\CLSID\{4336a54d-038b-4685-ab02-99bb52d3fb8b}\ShellFolder NAME NOT FOUND Desired Access: Maximum Allowed 98 12:38:33,6904124 MCLauncher.exe 6080 RegQueryValue HKCR\WOW6432Node\CLSID\{4336a54d-038b-4685-ab02-99bb52d3fb8b}\ShellFolder\CallForAttributes NAME NOT FOUND Length: 144 98 12:38:33,6904234 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{4336a54d-038b-4685-ab02-99bb52d3fb8b}\ShellFolder SUCCESS Query: Name 98 12:38:33,6904304 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{4336a54d-038b-4685-ab02-99bb52d3fb8b}\ShellFolder SUCCESS Query: HandleTags, HandleTags: 0x401 98 12:38:33,6904401 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Classes\WOW6432Node\CLSID\{4336a54d-038b-4685-ab02-99bb52d3fb8b}\ShellFolder NAME NOT FOUND Desired Access: Maximum Allowed 98 12:38:33,6904478 MCLauncher.exe 6080 RegQueryValue HKCR\WOW6432Node\CLSID\{4336a54d-038b-4685-ab02-99bb52d3fb8b}\ShellFolder\RestrictedAttributes NAME NOT FOUND Length: 144 98 12:38:33,6904586 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{4336a54d-038b-4685-ab02-99bb52d3fb8b}\ShellFolder SUCCESS Query: Name 98 12:38:33,6904653 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{4336a54d-038b-4685-ab02-99bb52d3fb8b}\ShellFolder SUCCESS Query: HandleTags, HandleTags: 0x401 98 12:38:33,6904750 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Classes\WOW6432Node\CLSID\{4336a54d-038b-4685-ab02-99bb52d3fb8b}\ShellFolder NAME NOT FOUND Desired Access: Maximum Allowed 98 12:38:33,6904822 MCLauncher.exe 6080 RegQueryValue HKCR\WOW6432Node\CLSID\{4336a54d-038b-4685-ab02-99bb52d3fb8b}\ShellFolder\FolderValueFlags SUCCESS Type: REG_DWORD, Length: 4, Data: 8 98 12:38:33,6904957 MCLauncher.exe 6080 RegCloseKey HKCR\WOW6432Node\CLSID\{4336a54d-038b-4685-ab02-99bb52d3fb8b}\ShellFolder SUCCESS 98 12:38:33,6905046 MCLauncher.exe 6080 RegQueryKey HKCU SUCCESS Query: HandleTags, HandleTags: 0x0 98 12:38:33,6905096 MCLauncher.exe 6080 RegQueryKey HKCU SUCCESS Query: Name 98 12:38:33,6905176 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Microsoft\Windows\CurrentVersion\Explorer\CLSID\{4336A54D-038B-4685-AB02-99BB52D3FB8B}\ShellFolder NAME NOT FOUND Desired Access: Query Value 98 12:38:33,6905276 MCLauncher.exe 6080 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 98 12:38:33,6905320 MCLauncher.exe 6080 RegQueryKey HKLM SUCCESS Query: Name 98 12:38:33,6905404 MCLauncher.exe 6080 RegOpenKey HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\CLSID\{4336A54D-038B-4685-AB02-99BB52D3FB8B}\ShellFolder NAME NOT FOUND Desired Access: Query Value 98 12:38:33,6905498 MCLauncher.exe 6080 RegQueryKey HKCU SUCCESS Query: HandleTags, HandleTags: 0x0 98 12:38:33,6905545 MCLauncher.exe 6080 RegQueryKey HKCU SUCCESS Query: Name 98 12:38:33,6905609 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Microsoft\Windows\CurrentVersion\Policies\NonEnum NAME NOT FOUND Desired Access: Query Value 98 12:38:33,6905689 MCLauncher.exe 6080 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 98 12:38:33,6905736 MCLauncher.exe 6080 RegQueryKey HKLM SUCCESS Query: Name 98 12:38:33,6905808 MCLauncher.exe 6080 RegOpenKey HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Policies\NonEnum REPARSE Desired Access: Query Value 98 12:38:33,6905869 MCLauncher.exe 6080 RegOpenKey HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\NonEnum SUCCESS Desired Access: Query Value 98 12:38:33,6905930 MCLauncher.exe 6080 RegSetInfoKey HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\NonEnum SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 98 12:38:33,6905972 MCLauncher.exe 6080 RegQueryValue HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\NonEnum\{4336A54D-038B-4685-AB02-99BB52D3FB8B} NAME NOT FOUND Length: 144 98 12:38:33,6906102 MCLauncher.exe 6080 RegCloseKey HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\NonEnum SUCCESS 98 12:38:33,6906177 MCLauncher.exe 6080 RegQueryKey HKCU\Software\Classes SUCCESS Query: Name 98 12:38:33,6906240 MCLauncher.exe 6080 RegQueryKey HKCU\Software\Classes SUCCESS Query: HandleTags, HandleTags: 0x1 98 12:38:33,6906310 MCLauncher.exe 6080 RegQueryKey HKCU\Software\Classes SUCCESS Query: HandleTags, HandleTags: 0x1 98 12:38:33,6906357 MCLauncher.exe 6080 RegQueryKey HKCU\Software\Classes SUCCESS Query: Name 98 12:38:33,6906442 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Classes\WOW6432Node\CLSID\{450D8FBA-AD25-11D0-98A8-0800361B1103}\ShellFolder NAME NOT FOUND Desired Access: Query Value 98 12:38:33,6906553 MCLauncher.exe 6080 RegOpenKey HKCR\WOW6432Node\CLSID\{450D8FBA-AD25-11D0-98A8-0800361B1103}\ShellFolder SUCCESS Desired Access: Query Value 98 12:38:33,6906686 MCLauncher.exe 6080 RegSetInfoKey HKCR\WOW6432Node\CLSID\{450D8FBA-AD25-11D0-98A8-0800361B1103}\ShellFolder SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 98 12:38:33,6906731 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{450D8FBA-AD25-11D0-98A8-0800361B1103}\ShellFolder SUCCESS Query: Name 98 12:38:33,6906792 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{450D8FBA-AD25-11D0-98A8-0800361B1103}\ShellFolder SUCCESS Query: HandleTags, HandleTags: 0x401 98 12:38:33,6906883 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Classes\WOW6432Node\CLSID\{450D8FBA-AD25-11D0-98A8-0800361B1103}\ShellFolder NAME NOT FOUND Desired Access: Maximum Allowed 98 12:38:33,6906950 MCLauncher.exe 6080 RegQueryValue HKCR\WOW6432Node\CLSID\{450D8FBA-AD25-11D0-98A8-0800361B1103}\ShellFolder\Attributes SUCCESS Type: REG_DWORD, Length: 4, Data: 4035969341 98 12:38:33,6907080 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{450D8FBA-AD25-11D0-98A8-0800361B1103}\ShellFolder SUCCESS Query: Name 98 12:38:33,6907146 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{450D8FBA-AD25-11D0-98A8-0800361B1103}\ShellFolder SUCCESS Query: HandleTags, HandleTags: 0x401 98 12:38:33,6907243 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Classes\WOW6432Node\CLSID\{450D8FBA-AD25-11D0-98A8-0800361B1103}\ShellFolder NAME NOT FOUND Desired Access: Maximum Allowed 98 12:38:33,6907324 MCLauncher.exe 6080 RegQueryValue HKCR\WOW6432Node\CLSID\{450D8FBA-AD25-11D0-98A8-0800361B1103}\ShellFolder\CallForAttributes SUCCESS Type: REG_DWORD, Length: 4, Data: 131136 98 12:38:33,6907443 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{450D8FBA-AD25-11D0-98A8-0800361B1103}\ShellFolder SUCCESS Query: Name 98 12:38:33,6907506 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{450D8FBA-AD25-11D0-98A8-0800361B1103}\ShellFolder SUCCESS Query: HandleTags, HandleTags: 0x401 98 12:38:33,6907603 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Classes\WOW6432Node\CLSID\{450D8FBA-AD25-11D0-98A8-0800361B1103}\ShellFolder NAME NOT FOUND Desired Access: Maximum Allowed 98 12:38:33,6907681 MCLauncher.exe 6080 RegQueryValue HKCR\WOW6432Node\CLSID\{450D8FBA-AD25-11D0-98A8-0800361B1103}\ShellFolder\RestrictedAttributes NAME NOT FOUND Length: 144 98 12:38:33,6907786 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{450D8FBA-AD25-11D0-98A8-0800361B1103}\ShellFolder SUCCESS Query: Name 98 12:38:33,6907853 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{450D8FBA-AD25-11D0-98A8-0800361B1103}\ShellFolder SUCCESS Query: HandleTags, HandleTags: 0x401 98 12:38:33,6907950 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Classes\WOW6432Node\CLSID\{450D8FBA-AD25-11D0-98A8-0800361B1103}\ShellFolder NAME NOT FOUND Desired Access: Maximum Allowed 98 12:38:33,6908024 MCLauncher.exe 6080 RegQueryValue HKCR\WOW6432Node\CLSID\{450D8FBA-AD25-11D0-98A8-0800361B1103}\ShellFolder\FolderValueFlags SUCCESS Type: REG_DWORD, Length: 4, Data: 524840 98 12:38:33,6908157 MCLauncher.exe 6080 RegCloseKey HKCR\WOW6432Node\CLSID\{450D8FBA-AD25-11D0-98A8-0800361B1103}\ShellFolder SUCCESS 98 12:38:33,6908241 MCLauncher.exe 6080 RegQueryKey HKCU SUCCESS Query: HandleTags, HandleTags: 0x0 98 12:38:33,6908440 MCLauncher.exe 6080 RegQueryKey HKCU SUCCESS Query: Name 98 12:38:33,6908579 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Microsoft\Windows\CurrentVersion\Explorer\CLSID\{450D8FBA-AD25-11D0-98A8-0800361B1103}\ShellFolder NAME NOT FOUND Desired Access: Query Value 98 12:38:33,6908742 MCLauncher.exe 6080 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 98 12:38:33,6908811 MCLauncher.exe 6080 RegQueryKey HKLM SUCCESS Query: Name 98 12:38:33,6908911 MCLauncher.exe 6080 RegOpenKey HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\CLSID\{450D8FBA-AD25-11D0-98A8-0800361B1103}\ShellFolder NAME NOT FOUND Desired Access: Query Value 98 12:38:33,6909019 MCLauncher.exe 6080 RegQueryKey HKCU SUCCESS Query: HandleTags, HandleTags: 0x0 98 12:38:33,6909063 MCLauncher.exe 6080 RegQueryKey HKCU SUCCESS Query: Name 98 12:38:33,6909130 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Microsoft\Windows\CurrentVersion\Policies\NonEnum NAME NOT FOUND Desired Access: Query Value 98 12:38:33,6909210 MCLauncher.exe 6080 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 98 12:38:33,6909255 MCLauncher.exe 6080 RegQueryKey HKLM SUCCESS Query: Name 98 12:38:33,6909329 MCLauncher.exe 6080 RegOpenKey HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Policies\NonEnum REPARSE Desired Access: Query Value 98 12:38:33,6909390 MCLauncher.exe 6080 RegOpenKey HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\NonEnum SUCCESS Desired Access: Query Value 98 12:38:33,6909454 MCLauncher.exe 6080 RegSetInfoKey HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\NonEnum SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 98 12:38:33,6909501 MCLauncher.exe 6080 RegQueryValue HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\NonEnum\{450D8FBA-AD25-11D0-98A8-0800361B1103} NAME NOT FOUND Length: 144 98 12:38:33,6909642 MCLauncher.exe 6080 RegCloseKey HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\NonEnum SUCCESS 98 12:38:33,6909720 MCLauncher.exe 6080 RegQueryKey HKCU\Software\Classes SUCCESS Query: Name 98 12:38:33,6909789 MCLauncher.exe 6080 RegQueryKey HKCU\Software\Classes SUCCESS Query: HandleTags, HandleTags: 0x1 98 12:38:33,6909859 MCLauncher.exe 6080 RegQueryKey HKCU\Software\Classes SUCCESS Query: HandleTags, HandleTags: 0x1 98 12:38:33,6909906 MCLauncher.exe 6080 RegQueryKey HKCU\Software\Classes SUCCESS Query: Name 98 12:38:33,6909994 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Classes\WOW6432Node\CLSID\{5399E694-6CE5-4D6C-8FCE-1D8870FDCBA0}\ShellFolder NAME NOT FOUND Desired Access: Query Value 98 12:38:33,6910102 MCLauncher.exe 6080 RegOpenKey HKCR\WOW6432Node\CLSID\{5399E694-6CE5-4D6C-8FCE-1D8870FDCBA0}\ShellFolder SUCCESS Desired Access: Query Value 98 12:38:33,6910244 MCLauncher.exe 6080 RegSetInfoKey HKCR\WOW6432Node\CLSID\{5399E694-6CE5-4D6C-8FCE-1D8870FDCBA0}\ShellFolder SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 98 12:38:33,6910288 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{5399E694-6CE5-4D6C-8FCE-1D8870FDCBA0}\ShellFolder SUCCESS Query: Name 98 12:38:33,6910349 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{5399E694-6CE5-4D6C-8FCE-1D8870FDCBA0}\ShellFolder SUCCESS Query: HandleTags, HandleTags: 0x401 98 12:38:33,6910446 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Classes\WOW6432Node\CLSID\{5399E694-6CE5-4D6C-8FCE-1D8870FDCBA0}\ShellFolder NAME NOT FOUND Desired Access: Maximum Allowed 98 12:38:33,6910512 MCLauncher.exe 6080 RegQueryValue HKCR\WOW6432Node\CLSID\{5399E694-6CE5-4D6C-8FCE-1D8870FDCBA0}\ShellFolder\Attributes SUCCESS Type: REG_DWORD, Length: 4, Data: 32 98 12:38:33,6910643 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{5399E694-6CE5-4D6C-8FCE-1D8870FDCBA0}\ShellFolder SUCCESS Query: Name 98 12:38:33,6910706 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{5399E694-6CE5-4D6C-8FCE-1D8870FDCBA0}\ShellFolder SUCCESS Query: HandleTags, HandleTags: 0x401 98 12:38:33,6910809 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Classes\WOW6432Node\CLSID\{5399E694-6CE5-4D6C-8FCE-1D8870FDCBA0}\ShellFolder NAME NOT FOUND Desired Access: Maximum Allowed 98 12:38:33,6910889 MCLauncher.exe 6080 RegQueryValue HKCR\WOW6432Node\CLSID\{5399E694-6CE5-4D6C-8FCE-1D8870FDCBA0}\ShellFolder\CallForAttributes NAME NOT FOUND Length: 144 98 12:38:33,6910997 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{5399E694-6CE5-4D6C-8FCE-1D8870FDCBA0}\ShellFolder SUCCESS Query: Name 98 12:38:33,6911061 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{5399E694-6CE5-4D6C-8FCE-1D8870FDCBA0}\ShellFolder SUCCESS Query: HandleTags, HandleTags: 0x401 98 12:38:33,6911161 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Classes\WOW6432Node\CLSID\{5399E694-6CE5-4D6C-8FCE-1D8870FDCBA0}\ShellFolder NAME NOT FOUND Desired Access: Maximum Allowed 98 12:38:33,6911236 MCLauncher.exe 6080 RegQueryValue HKCR\WOW6432Node\CLSID\{5399E694-6CE5-4D6C-8FCE-1D8870FDCBA0}\ShellFolder\RestrictedAttributes NAME NOT FOUND Length: 144 98 12:38:33,6911341 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{5399E694-6CE5-4D6C-8FCE-1D8870FDCBA0}\ShellFolder SUCCESS Query: Name 98 12:38:33,6911407 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{5399E694-6CE5-4D6C-8FCE-1D8870FDCBA0}\ShellFolder SUCCESS Query: HandleTags, HandleTags: 0x401 98 12:38:33,6911504 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Classes\WOW6432Node\CLSID\{5399E694-6CE5-4D6C-8FCE-1D8870FDCBA0}\ShellFolder NAME NOT FOUND Desired Access: Maximum Allowed 98 12:38:33,6911579 MCLauncher.exe 6080 RegQueryValue HKCR\WOW6432Node\CLSID\{5399E694-6CE5-4D6C-8FCE-1D8870FDCBA0}\ShellFolder\FolderValueFlags SUCCESS Type: REG_DWORD, Length: 4, Data: 512 98 12:38:33,6911709 MCLauncher.exe 6080 RegCloseKey HKCR\WOW6432Node\CLSID\{5399E694-6CE5-4D6C-8FCE-1D8870FDCBA0}\ShellFolder SUCCESS 98 12:38:33,6911795 MCLauncher.exe 6080 RegQueryKey HKCU SUCCESS Query: HandleTags, HandleTags: 0x0 98 12:38:33,6911845 MCLauncher.exe 6080 RegQueryKey HKCU SUCCESS Query: Name 98 12:38:33,6911923 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Microsoft\Windows\CurrentVersion\Explorer\CLSID\{5399E694-6CE5-4D6C-8FCE-1D8870FDCBA0}\ShellFolder NAME NOT FOUND Desired Access: Query Value 98 12:38:33,6912025 MCLauncher.exe 6080 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 98 12:38:33,6912072 MCLauncher.exe 6080 RegQueryKey HKLM SUCCESS Query: Name 98 12:38:33,6912153 MCLauncher.exe 6080 RegOpenKey HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\CLSID\{5399E694-6CE5-4D6C-8FCE-1D8870FDCBA0}\ShellFolder NAME NOT FOUND Desired Access: Query Value 98 12:38:33,6912247 MCLauncher.exe 6080 RegQueryKey HKCU SUCCESS Query: HandleTags, HandleTags: 0x0 98 12:38:33,6912291 MCLauncher.exe 6080 RegQueryKey HKCU SUCCESS Query: Name 98 12:38:33,6912355 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Microsoft\Windows\CurrentVersion\Policies\NonEnum NAME NOT FOUND Desired Access: Query Value 98 12:38:33,6912435 MCLauncher.exe 6080 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 98 12:38:33,6912482 MCLauncher.exe 6080 RegQueryKey HKLM SUCCESS Query: Name 98 12:38:33,6912554 MCLauncher.exe 6080 RegOpenKey HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Policies\NonEnum REPARSE Desired Access: Query Value 98 12:38:33,6912615 MCLauncher.exe 6080 RegOpenKey HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\NonEnum SUCCESS Desired Access: Query Value 98 12:38:33,6912673 MCLauncher.exe 6080 RegSetInfoKey HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\NonEnum SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 98 12:38:33,6912718 MCLauncher.exe 6080 RegQueryValue HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\NonEnum\{5399E694-6CE5-4D6C-8FCE-1D8870FDCBA0} NAME NOT FOUND Length: 144 98 12:38:33,6912842 MCLauncher.exe 6080 RegCloseKey HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\NonEnum SUCCESS 98 12:38:33,6912915 MCLauncher.exe 6080 RegQueryKey HKCU\Software\Classes SUCCESS Query: Name 98 12:38:33,6912981 MCLauncher.exe 6080 RegQueryKey HKCU\Software\Classes SUCCESS Query: HandleTags, HandleTags: 0x1 98 12:38:33,6913050 MCLauncher.exe 6080 RegQueryKey HKCU\Software\Classes SUCCESS Query: HandleTags, HandleTags: 0x1 98 12:38:33,6913097 MCLauncher.exe 6080 RegQueryKey HKCU\Software\Classes SUCCESS Query: Name 98 12:38:33,6913186 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Classes\WOW6432Node\CLSID\{5B934B42-522B-4C34-BBFE-37A3EF7B9C90}\ShellFolder NAME NOT FOUND Desired Access: Query Value 98 12:38:33,6913297 MCLauncher.exe 6080 RegOpenKey HKCR\WOW6432Node\CLSID\{5B934B42-522B-4C34-BBFE-37A3EF7B9C90}\ShellFolder SUCCESS Desired Access: Query Value 98 12:38:33,6913427 MCLauncher.exe 6080 RegSetInfoKey HKCR\WOW6432Node\CLSID\{5b934b42-522b-4c34-bbfe-37a3ef7b9c90}\ShellFolder SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 98 12:38:33,6913471 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{5b934b42-522b-4c34-bbfe-37a3ef7b9c90}\ShellFolder SUCCESS Query: Name 98 12:38:33,6913532 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{5b934b42-522b-4c34-bbfe-37a3ef7b9c90}\ShellFolder SUCCESS Query: HandleTags, HandleTags: 0x401 98 12:38:33,6913624 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Classes\WOW6432Node\CLSID\{5b934b42-522b-4c34-bbfe-37a3ef7b9c90}\ShellFolder NAME NOT FOUND Desired Access: Maximum Allowed 98 12:38:33,6913690 MCLauncher.exe 6080 RegQueryValue HKCR\WOW6432Node\CLSID\{5b934b42-522b-4c34-bbfe-37a3ef7b9c90}\ShellFolder\Attributes SUCCESS Type: REG_DWORD, Length: 4, Data: 4035969285 98 12:38:33,6913820 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{5b934b42-522b-4c34-bbfe-37a3ef7b9c90}\ShellFolder SUCCESS Query: Name 98 12:38:33,6913887 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{5b934b42-522b-4c34-bbfe-37a3ef7b9c90}\ShellFolder SUCCESS Query: HandleTags, HandleTags: 0x401 98 12:38:33,6913984 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Classes\WOW6432Node\CLSID\{5b934b42-522b-4c34-bbfe-37a3ef7b9c90}\ShellFolder NAME NOT FOUND Desired Access: Maximum Allowed 98 12:38:33,6914064 MCLauncher.exe 6080 RegQueryValue HKCR\WOW6432Node\CLSID\{5b934b42-522b-4c34-bbfe-37a3ef7b9c90}\ShellFolder\CallForAttributes NAME NOT FOUND Length: 144 98 12:38:33,6914172 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{5b934b42-522b-4c34-bbfe-37a3ef7b9c90}\ShellFolder SUCCESS Query: Name 98 12:38:33,6914236 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{5b934b42-522b-4c34-bbfe-37a3ef7b9c90}\ShellFolder SUCCESS Query: HandleTags, HandleTags: 0x401 98 12:38:33,6914333 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Classes\WOW6432Node\CLSID\{5b934b42-522b-4c34-bbfe-37a3ef7b9c90}\ShellFolder NAME NOT FOUND Desired Access: Maximum Allowed 98 12:38:33,6914408 MCLauncher.exe 6080 RegQueryValue HKCR\WOW6432Node\CLSID\{5b934b42-522b-4c34-bbfe-37a3ef7b9c90}\ShellFolder\RestrictedAttributes NAME NOT FOUND Length: 144 98 12:38:33,6914516 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{5b934b42-522b-4c34-bbfe-37a3ef7b9c90}\ShellFolder SUCCESS Query: Name 98 12:38:33,6914580 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{5b934b42-522b-4c34-bbfe-37a3ef7b9c90}\ShellFolder SUCCESS Query: HandleTags, HandleTags: 0x401 98 12:38:33,6914677 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Classes\WOW6432Node\CLSID\{5b934b42-522b-4c34-bbfe-37a3ef7b9c90}\ShellFolder NAME NOT FOUND Desired Access: Maximum Allowed 98 12:38:33,6914751 MCLauncher.exe 6080 RegQueryValue HKCR\WOW6432Node\CLSID\{5b934b42-522b-4c34-bbfe-37a3ef7b9c90}\ShellFolder\FolderValueFlags SUCCESS Type: REG_DWORD, Length: 4, Data: 5242920 98 12:38:33,6914884 MCLauncher.exe 6080 RegCloseKey HKCR\WOW6432Node\CLSID\{5b934b42-522b-4c34-bbfe-37a3ef7b9c90}\ShellFolder SUCCESS 98 12:38:33,6914968 MCLauncher.exe 6080 RegQueryKey HKCU SUCCESS Query: HandleTags, HandleTags: 0x0 98 12:38:33,6915020 MCLauncher.exe 6080 RegQueryKey HKCU SUCCESS Query: Name 98 12:38:33,6915098 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Microsoft\Windows\CurrentVersion\Explorer\CLSID\{5B934B42-522B-4C34-BBFE-37A3EF7B9C90}\ShellFolder NAME NOT FOUND Desired Access: Query Value 98 12:38:33,6915197 MCLauncher.exe 6080 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 98 12:38:33,6915242 MCLauncher.exe 6080 RegQueryKey HKLM SUCCESS Query: Name 98 12:38:33,6915325 MCLauncher.exe 6080 RegOpenKey HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\CLSID\{5B934B42-522B-4C34-BBFE-37A3EF7B9C90}\ShellFolder NAME NOT FOUND Desired Access: Query Value 98 12:38:33,6915416 MCLauncher.exe 6080 RegQueryKey HKCU SUCCESS Query: HandleTags, HandleTags: 0x0 98 12:38:33,6915461 MCLauncher.exe 6080 RegQueryKey HKCU SUCCESS Query: Name 98 12:38:33,6915524 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Microsoft\Windows\CurrentVersion\Policies\NonEnum NAME NOT FOUND Desired Access: Query Value 98 12:38:33,6915605 MCLauncher.exe 6080 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 98 12:38:33,6915649 MCLauncher.exe 6080 RegQueryKey HKLM SUCCESS Query: Name 98 12:38:33,6915721 MCLauncher.exe 6080 RegOpenKey HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Policies\NonEnum REPARSE Desired Access: Query Value 98 12:38:33,6915782 MCLauncher.exe 6080 RegOpenKey HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\NonEnum SUCCESS Desired Access: Query Value 98 12:38:33,6915837 MCLauncher.exe 6080 RegSetInfoKey HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\NonEnum SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 98 12:38:33,6915882 MCLauncher.exe 6080 RegQueryValue HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\NonEnum\{5B934B42-522B-4C34-BBFE-37A3EF7B9C90} NAME NOT FOUND Length: 144 98 12:38:33,6916006 MCLauncher.exe 6080 RegCloseKey HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\NonEnum SUCCESS 98 12:38:33,6916079 MCLauncher.exe 6080 RegQueryKey HKCU\Software\Classes SUCCESS Query: Name 98 12:38:33,6916145 MCLauncher.exe 6080 RegQueryKey HKCU\Software\Classes SUCCESS Query: HandleTags, HandleTags: 0x1 98 12:38:33,6916214 MCLauncher.exe 6080 RegQueryKey HKCU\Software\Classes SUCCESS Query: HandleTags, HandleTags: 0x1 98 12:38:33,6916261 MCLauncher.exe 6080 RegQueryKey HKCU\Software\Classes SUCCESS Query: Name 98 12:38:33,6916347 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Classes\WOW6432Node\CLSID\{64693913-1C21-4F30-A98F-4E52906D3B56}\ShellFolder NAME NOT FOUND Desired Access: Query Value 98 12:38:33,6916455 MCLauncher.exe 6080 RegOpenKey HKCR\WOW6432Node\CLSID\{64693913-1C21-4F30-A98F-4E52906D3B56}\ShellFolder SUCCESS Desired Access: Query Value 98 12:38:33,6916577 MCLauncher.exe 6080 RegSetInfoKey HKCR\WOW6432Node\CLSID\{64693913-1c21-4f30-a98f-4e52906d3b56}\ShellFolder SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 98 12:38:33,6916622 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{64693913-1c21-4f30-a98f-4e52906d3b56}\ShellFolder SUCCESS Query: Name 98 12:38:33,6916680 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{64693913-1c21-4f30-a98f-4e52906d3b56}\ShellFolder SUCCESS Query: HandleTags, HandleTags: 0x401 98 12:38:33,6916771 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Classes\WOW6432Node\CLSID\{64693913-1c21-4f30-a98f-4e52906d3b56}\ShellFolder NAME NOT FOUND Desired Access: Maximum Allowed 98 12:38:33,6916838 MCLauncher.exe 6080 RegQueryValue HKCR\WOW6432Node\CLSID\{64693913-1c21-4f30-a98f-4e52906d3b56}\ShellFolder\Attributes SUCCESS Type: REG_DWORD, Length: 4, Data: 537919488 98 12:38:33,6916965 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{64693913-1c21-4f30-a98f-4e52906d3b56}\ShellFolder SUCCESS Query: Name 98 12:38:33,6917032 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{64693913-1c21-4f30-a98f-4e52906d3b56}\ShellFolder SUCCESS Query: HandleTags, HandleTags: 0x401 98 12:38:33,6917129 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Classes\WOW6432Node\CLSID\{64693913-1c21-4f30-a98f-4e52906d3b56}\ShellFolder NAME NOT FOUND Desired Access: Maximum Allowed 98 12:38:33,6917209 MCLauncher.exe 6080 RegQueryValue HKCR\WOW6432Node\CLSID\{64693913-1c21-4f30-a98f-4e52906d3b56}\ShellFolder\CallForAttributes NAME NOT FOUND Length: 144 98 12:38:33,6917317 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{64693913-1c21-4f30-a98f-4e52906d3b56}\ShellFolder SUCCESS Query: Name 98 12:38:33,6917383 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{64693913-1c21-4f30-a98f-4e52906d3b56}\ShellFolder SUCCESS Query: HandleTags, HandleTags: 0x401 98 12:38:33,6917480 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Classes\WOW6432Node\CLSID\{64693913-1c21-4f30-a98f-4e52906d3b56}\ShellFolder NAME NOT FOUND Desired Access: Maximum Allowed 98 12:38:33,6917555 MCLauncher.exe 6080 RegQueryValue HKCR\WOW6432Node\CLSID\{64693913-1c21-4f30-a98f-4e52906d3b56}\ShellFolder\RestrictedAttributes NAME NOT FOUND Length: 144 98 12:38:33,6917663 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{64693913-1c21-4f30-a98f-4e52906d3b56}\ShellFolder SUCCESS Query: Name 98 12:38:33,6917730 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{64693913-1c21-4f30-a98f-4e52906d3b56}\ShellFolder SUCCESS Query: HandleTags, HandleTags: 0x401 98 12:38:33,6917827 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Classes\WOW6432Node\CLSID\{64693913-1c21-4f30-a98f-4e52906d3b56}\ShellFolder NAME NOT FOUND Desired Access: Maximum Allowed 98 12:38:33,6917902 MCLauncher.exe 6080 RegQueryValue HKCR\WOW6432Node\CLSID\{64693913-1c21-4f30-a98f-4e52906d3b56}\ShellFolder\FolderValueFlags SUCCESS Type: REG_DWORD, Length: 4, Data: 0 98 12:38:33,6918134 MCLauncher.exe 6080 RegCloseKey HKCR\WOW6432Node\CLSID\{64693913-1c21-4f30-a98f-4e52906d3b56}\ShellFolder SUCCESS 98 12:38:33,6918231 MCLauncher.exe 6080 RegQueryKey HKCU SUCCESS Query: HandleTags, HandleTags: 0x0 98 12:38:33,6918284 MCLauncher.exe 6080 RegQueryKey HKCU SUCCESS Query: Name 98 12:38:33,6918364 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Microsoft\Windows\CurrentVersion\Explorer\CLSID\{64693913-1C21-4F30-A98F-4E52906D3B56}\ShellFolder NAME NOT FOUND Desired Access: Query Value 98 12:38:33,6918467 MCLauncher.exe 6080 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 98 12:38:33,6918511 MCLauncher.exe 6080 RegQueryKey HKLM SUCCESS Query: Name 98 12:38:33,6918591 MCLauncher.exe 6080 RegOpenKey HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\CLSID\{64693913-1C21-4F30-A98F-4E52906D3B56}\ShellFolder NAME NOT FOUND Desired Access: Query Value 98 12:38:33,6918686 MCLauncher.exe 6080 RegQueryKey HKCU SUCCESS Query: HandleTags, HandleTags: 0x0 98 12:38:33,6918730 MCLauncher.exe 6080 RegQueryKey HKCU SUCCESS Query: Name 98 12:38:33,6918796 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Microsoft\Windows\CurrentVersion\Policies\NonEnum NAME NOT FOUND Desired Access: Query Value 98 12:38:33,6918877 MCLauncher.exe 6080 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 98 12:38:33,6918921 MCLauncher.exe 6080 RegQueryKey HKLM SUCCESS Query: Name 98 12:38:33,6918993 MCLauncher.exe 6080 RegOpenKey HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Policies\NonEnum REPARSE Desired Access: Query Value 98 12:38:33,6919054 MCLauncher.exe 6080 RegOpenKey HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\NonEnum SUCCESS Desired Access: Query Value 98 12:38:33,6919112 MCLauncher.exe 6080 RegSetInfoKey HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\NonEnum SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 98 12:38:33,6919157 MCLauncher.exe 6080 RegQueryValue HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\NonEnum\{64693913-1C21-4F30-A98F-4E52906D3B56} NAME NOT FOUND Length: 144 98 12:38:33,6919284 MCLauncher.exe 6080 RegCloseKey HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\NonEnum SUCCESS 98 12:38:33,6919356 MCLauncher.exe 6080 RegQueryKey HKCU\Software\Classes SUCCESS Query: Name 98 12:38:33,6919420 MCLauncher.exe 6080 RegQueryKey HKCU\Software\Classes SUCCESS Query: HandleTags, HandleTags: 0x1 98 12:38:33,6919489 MCLauncher.exe 6080 RegQueryKey HKCU\Software\Classes SUCCESS Query: HandleTags, HandleTags: 0x1 98 12:38:33,6919536 MCLauncher.exe 6080 RegQueryKey HKCU\Software\Classes SUCCESS Query: Name 98 12:38:33,6919622 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Classes\WOW6432Node\CLSID\{89D83576-6BD1-4C86-9454-BEB04E94C819}\ShellFolder NAME NOT FOUND Desired Access: Query Value 98 12:38:33,6919736 MCLauncher.exe 6080 RegOpenKey HKCR\WOW6432Node\CLSID\{89D83576-6BD1-4C86-9454-BEB04E94C819}\ShellFolder SUCCESS Desired Access: Query Value 98 12:38:33,6919871 MCLauncher.exe 6080 RegSetInfoKey HKCR\WOW6432Node\CLSID\{89D83576-6BD1-4c86-9454-BEB04E94C819}\ShellFolder SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 98 12:38:33,6919913 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{89D83576-6BD1-4c86-9454-BEB04E94C819}\ShellFolder SUCCESS Query: Name 98 12:38:33,6919974 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{89D83576-6BD1-4c86-9454-BEB04E94C819}\ShellFolder SUCCESS Query: HandleTags, HandleTags: 0x401 98 12:38:33,6920065 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Classes\WOW6432Node\CLSID\{89D83576-6BD1-4c86-9454-BEB04E94C819}\ShellFolder NAME NOT FOUND Desired Access: Maximum Allowed 98 12:38:33,6920132 MCLauncher.exe 6080 RegQueryValue HKCR\WOW6432Node\CLSID\{89D83576-6BD1-4c86-9454-BEB04E94C819}\ShellFolder\Attributes SUCCESS Type: REG_DWORD, Length: 4, Data: 538181632 98 12:38:33,6920265 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{89D83576-6BD1-4c86-9454-BEB04E94C819}\ShellFolder SUCCESS Query: Name 98 12:38:33,6920331 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{89D83576-6BD1-4c86-9454-BEB04E94C819}\ShellFolder SUCCESS Query: HandleTags, HandleTags: 0x401 98 12:38:33,6920428 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Classes\WOW6432Node\CLSID\{89D83576-6BD1-4c86-9454-BEB04E94C819}\ShellFolder NAME NOT FOUND Desired Access: Maximum Allowed 98 12:38:33,6920506 MCLauncher.exe 6080 RegQueryValue HKCR\WOW6432Node\CLSID\{89D83576-6BD1-4c86-9454-BEB04E94C819}\ShellFolder\CallForAttributes NAME NOT FOUND Length: 144 98 12:38:33,6920614 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{89D83576-6BD1-4c86-9454-BEB04E94C819}\ShellFolder SUCCESS Query: Name 98 12:38:33,6920678 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{89D83576-6BD1-4c86-9454-BEB04E94C819}\ShellFolder SUCCESS Query: HandleTags, HandleTags: 0x401 98 12:38:33,6920775 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Classes\WOW6432Node\CLSID\{89D83576-6BD1-4c86-9454-BEB04E94C819}\ShellFolder NAME NOT FOUND Desired Access: Maximum Allowed 98 12:38:33,6920852 MCLauncher.exe 6080 RegQueryValue HKCR\WOW6432Node\CLSID\{89D83576-6BD1-4c86-9454-BEB04E94C819}\ShellFolder\RestrictedAttributes NAME NOT FOUND Length: 144 98 12:38:33,6921007 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{89D83576-6BD1-4c86-9454-BEB04E94C819}\ShellFolder SUCCESS Query: Name 98 12:38:33,6921071 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{89D83576-6BD1-4c86-9454-BEB04E94C819}\ShellFolder SUCCESS Query: HandleTags, HandleTags: 0x401 98 12:38:33,6921171 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Classes\WOW6432Node\CLSID\{89D83576-6BD1-4c86-9454-BEB04E94C819}\ShellFolder NAME NOT FOUND Desired Access: Maximum Allowed 98 12:38:33,6921248 MCLauncher.exe 6080 RegQueryValue HKCR\WOW6432Node\CLSID\{89D83576-6BD1-4c86-9454-BEB04E94C819}\ShellFolder\FolderValueFlags SUCCESS Type: REG_DWORD, Length: 4, Data: 0 98 12:38:33,6921379 MCLauncher.exe 6080 RegCloseKey HKCR\WOW6432Node\CLSID\{89D83576-6BD1-4c86-9454-BEB04E94C819}\ShellFolder SUCCESS 98 12:38:33,6921464 MCLauncher.exe 6080 RegQueryKey HKCU SUCCESS Query: HandleTags, HandleTags: 0x0 98 12:38:33,6921514 MCLauncher.exe 6080 RegQueryKey HKCU SUCCESS Query: Name 98 12:38:33,6921592 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Microsoft\Windows\CurrentVersion\Explorer\CLSID\{89D83576-6BD1-4C86-9454-BEB04E94C819}\ShellFolder NAME NOT FOUND Desired Access: Query Value 98 12:38:33,6921692 MCLauncher.exe 6080 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 98 12:38:33,6921736 MCLauncher.exe 6080 RegQueryKey HKLM SUCCESS Query: Name 98 12:38:33,6921816 MCLauncher.exe 6080 RegOpenKey HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\CLSID\{89D83576-6BD1-4C86-9454-BEB04E94C819}\ShellFolder NAME NOT FOUND Desired Access: Query Value 98 12:38:33,6921908 MCLauncher.exe 6080 RegQueryKey HKCU SUCCESS Query: HandleTags, HandleTags: 0x0 98 12:38:33,6921955 MCLauncher.exe 6080 RegQueryKey HKCU SUCCESS Query: Name 98 12:38:33,6922019 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Microsoft\Windows\CurrentVersion\Policies\NonEnum NAME NOT FOUND Desired Access: Query Value 98 12:38:33,6922099 MCLauncher.exe 6080 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 98 12:38:33,6922143 MCLauncher.exe 6080 RegQueryKey HKLM SUCCESS Query: Name 98 12:38:33,6922213 MCLauncher.exe 6080 RegOpenKey HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Policies\NonEnum REPARSE Desired Access: Query Value 98 12:38:33,6922276 MCLauncher.exe 6080 RegOpenKey HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\NonEnum SUCCESS Desired Access: Query Value 98 12:38:33,6922332 MCLauncher.exe 6080 RegSetInfoKey HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\NonEnum SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 98 12:38:33,6922376 MCLauncher.exe 6080 RegQueryValue HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\NonEnum\{89D83576-6BD1-4C86-9454-BEB04E94C819} NAME NOT FOUND Length: 144 98 12:38:33,6922503 MCLauncher.exe 6080 RegCloseKey HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\NonEnum SUCCESS 98 12:38:33,6922575 MCLauncher.exe 6080 RegQueryKey HKCU\Software\Classes SUCCESS Query: Name 98 12:38:33,6922636 MCLauncher.exe 6080 RegQueryKey HKCU\Software\Classes SUCCESS Query: HandleTags, HandleTags: 0x1 98 12:38:33,6922706 MCLauncher.exe 6080 RegQueryKey HKCU\Software\Classes SUCCESS Query: HandleTags, HandleTags: 0x1 98 12:38:33,6922753 MCLauncher.exe 6080 RegQueryKey HKCU\Software\Classes SUCCESS Query: Name 98 12:38:33,6922839 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Classes\WOW6432Node\CLSID\{9343812E-1C37-4A49-A12E-4B2D810D956B}\ShellFolder NAME NOT FOUND Desired Access: Query Value 98 12:38:33,6922944 MCLauncher.exe 6080 RegOpenKey HKCR\WOW6432Node\CLSID\{9343812E-1C37-4A49-A12E-4B2D810D956B}\ShellFolder SUCCESS Desired Access: Query Value 98 12:38:33,6923074 MCLauncher.exe 6080 RegSetInfoKey HKCR\WOW6432Node\CLSID\{9343812e-1c37-4a49-a12e-4b2d810d956b}\ShellFolder SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 98 12:38:33,6923118 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{9343812e-1c37-4a49-a12e-4b2d810d956b}\ShellFolder SUCCESS Query: Name 98 12:38:33,6923177 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{9343812e-1c37-4a49-a12e-4b2d810d956b}\ShellFolder SUCCESS Query: HandleTags, HandleTags: 0x401 98 12:38:33,6923268 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Classes\WOW6432Node\CLSID\{9343812e-1c37-4a49-a12e-4b2d810d956b}\ShellFolder NAME NOT FOUND Desired Access: Maximum Allowed 98 12:38:33,6923335 MCLauncher.exe 6080 RegQueryValue HKCR\WOW6432Node\CLSID\{9343812e-1c37-4a49-a12e-4b2d810d956b}\ShellFolder\Attributes SUCCESS Type: REG_DWORD, Length: 4, Data: 538181632 98 12:38:33,6923459 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{9343812e-1c37-4a49-a12e-4b2d810d956b}\ShellFolder SUCCESS Query: Name 98 12:38:33,6923526 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{9343812e-1c37-4a49-a12e-4b2d810d956b}\ShellFolder SUCCESS Query: HandleTags, HandleTags: 0x401 98 12:38:33,6923626 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Classes\WOW6432Node\CLSID\{9343812e-1c37-4a49-a12e-4b2d810d956b}\ShellFolder NAME NOT FOUND Desired Access: Maximum Allowed 98 12:38:33,6923700 MCLauncher.exe 6080 RegQueryValue HKCR\WOW6432Node\CLSID\{9343812e-1c37-4a49-a12e-4b2d810d956b}\ShellFolder\CallForAttributes NAME NOT FOUND Length: 144 98 12:38:33,6923808 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{9343812e-1c37-4a49-a12e-4b2d810d956b}\ShellFolder SUCCESS Query: Name 98 12:38:33,6923875 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{9343812e-1c37-4a49-a12e-4b2d810d956b}\ShellFolder SUCCESS Query: HandleTags, HandleTags: 0x401 98 12:38:33,6923972 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Classes\WOW6432Node\CLSID\{9343812e-1c37-4a49-a12e-4b2d810d956b}\ShellFolder NAME NOT FOUND Desired Access: Maximum Allowed 98 12:38:33,6924047 MCLauncher.exe 6080 RegQueryValue HKCR\WOW6432Node\CLSID\{9343812e-1c37-4a49-a12e-4b2d810d956b}\ShellFolder\RestrictedAttributes NAME NOT FOUND Length: 144 98 12:38:33,6924155 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{9343812e-1c37-4a49-a12e-4b2d810d956b}\ShellFolder SUCCESS Query: Name 98 12:38:33,6924218 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{9343812e-1c37-4a49-a12e-4b2d810d956b}\ShellFolder SUCCESS Query: HandleTags, HandleTags: 0x401 98 12:38:33,6924318 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Classes\WOW6432Node\CLSID\{9343812e-1c37-4a49-a12e-4b2d810d956b}\ShellFolder NAME NOT FOUND Desired Access: Maximum Allowed 98 12:38:33,6924390 MCLauncher.exe 6080 RegQueryValue HKCR\WOW6432Node\CLSID\{9343812e-1c37-4a49-a12e-4b2d810d956b}\ShellFolder\FolderValueFlags SUCCESS Type: REG_DWORD, Length: 4, Data: 1 98 12:38:33,6924520 MCLauncher.exe 6080 RegCloseKey HKCR\WOW6432Node\CLSID\{9343812e-1c37-4a49-a12e-4b2d810d956b}\ShellFolder SUCCESS 98 12:38:33,6924604 MCLauncher.exe 6080 RegQueryKey HKCU SUCCESS Query: HandleTags, HandleTags: 0x0 98 12:38:33,6924653 MCLauncher.exe 6080 RegQueryKey HKCU SUCCESS Query: Name 98 12:38:33,6924731 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Microsoft\Windows\CurrentVersion\Explorer\CLSID\{9343812E-1C37-4A49-A12E-4B2D810D956B}\ShellFolder NAME NOT FOUND Desired Access: Query Value 98 12:38:33,6924831 MCLauncher.exe 6080 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 98 12:38:33,6924875 MCLauncher.exe 6080 RegQueryKey HKLM SUCCESS Query: Name 98 12:38:33,6924958 MCLauncher.exe 6080 RegOpenKey HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\CLSID\{9343812E-1C37-4A49-A12E-4B2D810D956B}\ShellFolder NAME NOT FOUND Desired Access: Query Value 98 12:38:33,6925050 MCLauncher.exe 6080 RegQueryKey HKCU SUCCESS Query: HandleTags, HandleTags: 0x0 98 12:38:33,6925094 MCLauncher.exe 6080 RegQueryKey HKCU SUCCESS Query: Name 98 12:38:33,6925158 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Microsoft\Windows\CurrentVersion\Policies\NonEnum NAME NOT FOUND Desired Access: Query Value 98 12:38:33,6925235 MCLauncher.exe 6080 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 98 12:38:33,6925282 MCLauncher.exe 6080 RegQueryKey HKLM SUCCESS Query: Name 98 12:38:33,6925354 MCLauncher.exe 6080 RegOpenKey HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Policies\NonEnum REPARSE Desired Access: Query Value 98 12:38:33,6925415 MCLauncher.exe 6080 RegOpenKey HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\NonEnum SUCCESS Desired Access: Query Value 98 12:38:33,6925473 MCLauncher.exe 6080 RegSetInfoKey HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\NonEnum SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 98 12:38:33,6925515 MCLauncher.exe 6080 RegQueryValue HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\NonEnum\{9343812E-1C37-4A49-A12E-4B2D810D956B} NAME NOT FOUND Length: 144 98 12:38:33,6925640 MCLauncher.exe 6080 RegCloseKey HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\NonEnum SUCCESS 98 12:38:33,6925712 MCLauncher.exe 6080 RegQueryKey HKCU\Software\Classes SUCCESS Query: Name 98 12:38:33,6925775 MCLauncher.exe 6080 RegQueryKey HKCU\Software\Classes SUCCESS Query: HandleTags, HandleTags: 0x1 98 12:38:33,6925842 MCLauncher.exe 6080 RegQueryKey HKCU\Software\Classes SUCCESS Query: HandleTags, HandleTags: 0x1 98 12:38:33,6925892 MCLauncher.exe 6080 RegQueryKey HKCU\Software\Classes SUCCESS Query: Name 98 12:38:33,6925978 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Classes\WOW6432Node\CLSID\{98F275B4-4FFF-11E0-89E2-7B86DFD72085}\ShellFolder NAME NOT FOUND Desired Access: Query Value 98 12:38:33,6926091 MCLauncher.exe 6080 RegOpenKey HKCR\WOW6432Node\CLSID\{98F275B4-4FFF-11E0-89E2-7B86DFD72085}\ShellFolder SUCCESS Desired Access: Query Value 98 12:38:33,6926230 MCLauncher.exe 6080 RegSetInfoKey HKCR\WOW6432Node\CLSID\{98F275B4-4FFF-11E0-89E2-7B86DFD72085}\ShellFolder SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 98 12:38:33,6926274 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{98F275B4-4FFF-11E0-89E2-7B86DFD72085}\ShellFolder SUCCESS Query: Name 98 12:38:33,6926332 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{98F275B4-4FFF-11E0-89E2-7B86DFD72085}\ShellFolder SUCCESS Query: HandleTags, HandleTags: 0x401 98 12:38:33,6926424 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Classes\WOW6432Node\CLSID\{98F275B4-4FFF-11E0-89E2-7B86DFD72085}\ShellFolder NAME NOT FOUND Desired Access: Maximum Allowed 98 12:38:33,6926490 MCLauncher.exe 6080 RegQueryValue HKCR\WOW6432Node\CLSID\{98F275B4-4FFF-11E0-89E2-7B86DFD72085}\ShellFolder\Attributes SUCCESS Type: REG_DWORD, Length: 4, Data: 538443776 98 12:38:33,6926618 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{98F275B4-4FFF-11E0-89E2-7B86DFD72085}\ShellFolder SUCCESS Query: Name 98 12:38:33,6926684 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{98F275B4-4FFF-11E0-89E2-7B86DFD72085}\ShellFolder SUCCESS Query: HandleTags, HandleTags: 0x401 98 12:38:33,6926784 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Classes\WOW6432Node\CLSID\{98F275B4-4FFF-11E0-89E2-7B86DFD72085}\ShellFolder NAME NOT FOUND Desired Access: Maximum Allowed 98 12:38:33,6926864 MCLauncher.exe 6080 RegQueryValue HKCR\WOW6432Node\CLSID\{98F275B4-4FFF-11E0-89E2-7B86DFD72085}\ShellFolder\CallForAttributes NAME NOT FOUND Length: 144 98 12:38:33,6926970 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{98F275B4-4FFF-11E0-89E2-7B86DFD72085}\ShellFolder SUCCESS Query: Name 98 12:38:33,6927036 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{98F275B4-4FFF-11E0-89E2-7B86DFD72085}\ShellFolder SUCCESS Query: HandleTags, HandleTags: 0x401 98 12:38:33,6927133 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Classes\WOW6432Node\CLSID\{98F275B4-4FFF-11E0-89E2-7B86DFD72085}\ShellFolder NAME NOT FOUND Desired Access: Maximum Allowed 98 12:38:33,6927208 MCLauncher.exe 6080 RegQueryValue HKCR\WOW6432Node\CLSID\{98F275B4-4FFF-11E0-89E2-7B86DFD72085}\ShellFolder\RestrictedAttributes NAME NOT FOUND Length: 144 98 12:38:33,6927313 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{98F275B4-4FFF-11E0-89E2-7B86DFD72085}\ShellFolder SUCCESS Query: Name 98 12:38:33,6927377 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{98F275B4-4FFF-11E0-89E2-7B86DFD72085}\ShellFolder SUCCESS Query: HandleTags, HandleTags: 0x401 98 12:38:33,6927474 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Classes\WOW6432Node\CLSID\{98F275B4-4FFF-11E0-89E2-7B86DFD72085}\ShellFolder NAME NOT FOUND Desired Access: Maximum Allowed 98 12:38:33,6927551 MCLauncher.exe 6080 RegQueryValue HKCR\WOW6432Node\CLSID\{98F275B4-4FFF-11E0-89E2-7B86DFD72085}\ShellFolder\FolderValueFlags SUCCESS Type: REG_DWORD, Length: 4, Data: 0 98 12:38:33,6927737 MCLauncher.exe 6080 RegCloseKey HKCR\WOW6432Node\CLSID\{98F275B4-4FFF-11E0-89E2-7B86DFD72085}\ShellFolder SUCCESS 98 12:38:33,6927931 MCLauncher.exe 6080 RegQueryKey HKCU SUCCESS Query: HandleTags, HandleTags: 0x0 98 12:38:33,6927984 MCLauncher.exe 6080 RegQueryKey HKCU SUCCESS Query: Name 98 12:38:33,6928064 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Microsoft\Windows\CurrentVersion\Explorer\CLSID\{98F275B4-4FFF-11E0-89E2-7B86DFD72085}\ShellFolder NAME NOT FOUND Desired Access: Query Value 98 12:38:33,6928164 MCLauncher.exe 6080 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 98 12:38:33,6928208 MCLauncher.exe 6080 RegQueryKey HKLM SUCCESS Query: Name 98 12:38:33,6928291 MCLauncher.exe 6080 RegOpenKey HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\CLSID\{98F275B4-4FFF-11E0-89E2-7B86DFD72085}\ShellFolder NAME NOT FOUND Desired Access: Query Value 98 12:38:33,6928383 MCLauncher.exe 6080 RegQueryKey HKCU SUCCESS Query: HandleTags, HandleTags: 0x0 98 12:38:33,6928430 MCLauncher.exe 6080 RegQueryKey HKCU SUCCESS Query: Name 98 12:38:33,6928493 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Microsoft\Windows\CurrentVersion\Policies\NonEnum NAME NOT FOUND Desired Access: Query Value 98 12:38:33,6928571 MCLauncher.exe 6080 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 98 12:38:33,6928615 MCLauncher.exe 6080 RegQueryKey HKLM SUCCESS Query: Name 98 12:38:33,6928690 MCLauncher.exe 6080 RegOpenKey HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Policies\NonEnum REPARSE Desired Access: Query Value 98 12:38:33,6928751 MCLauncher.exe 6080 RegOpenKey HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\NonEnum SUCCESS Desired Access: Query Value 98 12:38:33,6928809 MCLauncher.exe 6080 RegSetInfoKey HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\NonEnum SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 98 12:38:33,6928854 MCLauncher.exe 6080 RegQueryValue HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\NonEnum\{98F275B4-4FFF-11E0-89E2-7B86DFD72085} NAME NOT FOUND Length: 144 98 12:38:33,6928984 MCLauncher.exe 6080 RegCloseKey HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\NonEnum SUCCESS 98 12:38:33,6929059 MCLauncher.exe 6080 RegQueryKey HKCU\Software\Classes SUCCESS Query: Name 98 12:38:33,6929122 MCLauncher.exe 6080 RegQueryKey HKCU\Software\Classes SUCCESS Query: HandleTags, HandleTags: 0x1 98 12:38:33,6929192 MCLauncher.exe 6080 RegQueryKey HKCU\Software\Classes SUCCESS Query: HandleTags, HandleTags: 0x1 98 12:38:33,6929236 MCLauncher.exe 6080 RegQueryKey HKCU\Software\Classes SUCCESS Query: Name 98 12:38:33,6929322 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Classes\WOW6432Node\CLSID\{A00EE528-EBD9-48B8-944A-8942113D46AC}\ShellFolder NAME NOT FOUND Desired Access: Query Value 98 12:38:33,6929433 MCLauncher.exe 6080 RegOpenKey HKCR\WOW6432Node\CLSID\{A00EE528-EBD9-48B8-944A-8942113D46AC}\ShellFolder SUCCESS Desired Access: Query Value 98 12:38:33,6929568 MCLauncher.exe 6080 RegSetInfoKey HKCR\WOW6432Node\CLSID\{a00ee528-ebd9-48b8-944a-8942113d46ac}\ShellFolder SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 98 12:38:33,6929610 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{a00ee528-ebd9-48b8-944a-8942113d46ac}\ShellFolder SUCCESS Query: Name 98 12:38:33,6929668 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{a00ee528-ebd9-48b8-944a-8942113d46ac}\ShellFolder SUCCESS Query: HandleTags, HandleTags: 0x401 98 12:38:33,6929762 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Classes\WOW6432Node\CLSID\{a00ee528-ebd9-48b8-944a-8942113d46ac}\ShellFolder NAME NOT FOUND Desired Access: Maximum Allowed 98 12:38:33,6929829 MCLauncher.exe 6080 RegQueryValue HKCR\WOW6432Node\CLSID\{a00ee528-ebd9-48b8-944a-8942113d46ac}\ShellFolder\Attributes SUCCESS Type: REG_DWORD, Length: 4, Data: 538443776 98 12:38:33,6929953 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{a00ee528-ebd9-48b8-944a-8942113d46ac}\ShellFolder SUCCESS Query: Name 98 12:38:33,6930020 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{a00ee528-ebd9-48b8-944a-8942113d46ac}\ShellFolder SUCCESS Query: HandleTags, HandleTags: 0x401 98 12:38:33,6930120 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Classes\WOW6432Node\CLSID\{a00ee528-ebd9-48b8-944a-8942113d46ac}\ShellFolder NAME NOT FOUND Desired Access: Maximum Allowed 98 12:38:33,6930197 MCLauncher.exe 6080 RegQueryValue HKCR\WOW6432Node\CLSID\{a00ee528-ebd9-48b8-944a-8942113d46ac}\ShellFolder\CallForAttributes NAME NOT FOUND Length: 144 98 12:38:33,6930303 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{a00ee528-ebd9-48b8-944a-8942113d46ac}\ShellFolder SUCCESS Query: Name 98 12:38:33,6930369 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{a00ee528-ebd9-48b8-944a-8942113d46ac}\ShellFolder SUCCESS Query: HandleTags, HandleTags: 0x401 98 12:38:33,6930466 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Classes\WOW6432Node\CLSID\{a00ee528-ebd9-48b8-944a-8942113d46ac}\ShellFolder NAME NOT FOUND Desired Access: Maximum Allowed 98 12:38:33,6930544 MCLauncher.exe 6080 RegQueryValue HKCR\WOW6432Node\CLSID\{a00ee528-ebd9-48b8-944a-8942113d46ac}\ShellFolder\RestrictedAttributes NAME NOT FOUND Length: 144 98 12:38:33,6930649 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{a00ee528-ebd9-48b8-944a-8942113d46ac}\ShellFolder SUCCESS Query: Name 98 12:38:33,6930713 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{a00ee528-ebd9-48b8-944a-8942113d46ac}\ShellFolder SUCCESS Query: HandleTags, HandleTags: 0x401 98 12:38:33,6930812 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Classes\WOW6432Node\CLSID\{a00ee528-ebd9-48b8-944a-8942113d46ac}\ShellFolder NAME NOT FOUND Desired Access: Maximum Allowed 98 12:38:33,6930887 MCLauncher.exe 6080 RegQueryValue HKCR\WOW6432Node\CLSID\{a00ee528-ebd9-48b8-944a-8942113d46ac}\ShellFolder\FolderValueFlags SUCCESS Type: REG_DWORD, Length: 4, Data: 0 98 12:38:33,6931017 MCLauncher.exe 6080 RegCloseKey HKCR\WOW6432Node\CLSID\{a00ee528-ebd9-48b8-944a-8942113d46ac}\ShellFolder SUCCESS 98 12:38:33,6931100 MCLauncher.exe 6080 RegQueryKey HKCU SUCCESS Query: HandleTags, HandleTags: 0x0 98 12:38:33,6931153 MCLauncher.exe 6080 RegQueryKey HKCU SUCCESS Query: Name 98 12:38:33,6931228 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Microsoft\Windows\CurrentVersion\Explorer\CLSID\{A00EE528-EBD9-48B8-944A-8942113D46AC}\ShellFolder NAME NOT FOUND Desired Access: Query Value 98 12:38:33,6931333 MCLauncher.exe 6080 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 98 12:38:33,6931378 MCLauncher.exe 6080 RegQueryKey HKLM SUCCESS Query: Name 98 12:38:33,6931458 MCLauncher.exe 6080 RegOpenKey HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\CLSID\{A00EE528-EBD9-48B8-944A-8942113D46AC}\ShellFolder NAME NOT FOUND Desired Access: Query Value 98 12:38:33,6931549 MCLauncher.exe 6080 RegQueryKey HKCU SUCCESS Query: HandleTags, HandleTags: 0x0 98 12:38:33,6931594 MCLauncher.exe 6080 RegQueryKey HKCU SUCCESS Query: Name 98 12:38:33,6931657 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Microsoft\Windows\CurrentVersion\Policies\NonEnum NAME NOT FOUND Desired Access: Query Value 98 12:38:33,6931738 MCLauncher.exe 6080 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 98 12:38:33,6931782 MCLauncher.exe 6080 RegQueryKey HKLM SUCCESS Query: Name 98 12:38:33,6931854 MCLauncher.exe 6080 RegOpenKey HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Policies\NonEnum REPARSE Desired Access: Query Value 98 12:38:33,6931915 MCLauncher.exe 6080 RegOpenKey HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\NonEnum SUCCESS Desired Access: Query Value 98 12:38:33,6931973 MCLauncher.exe 6080 RegSetInfoKey HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\NonEnum SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 98 12:38:33,6932015 MCLauncher.exe 6080 RegQueryValue HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\NonEnum\{A00EE528-EBD9-48B8-944A-8942113D46AC} NAME NOT FOUND Length: 144 98 12:38:33,6932139 MCLauncher.exe 6080 RegCloseKey HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\NonEnum SUCCESS 98 12:38:33,6932211 MCLauncher.exe 6080 RegQueryKey HKCU\Software\Classes SUCCESS Query: Name 98 12:38:33,6932272 MCLauncher.exe 6080 RegQueryKey HKCU\Software\Classes SUCCESS Query: HandleTags, HandleTags: 0x1 98 12:38:33,6932342 MCLauncher.exe 6080 RegQueryKey HKCU\Software\Classes SUCCESS Query: HandleTags, HandleTags: 0x1 98 12:38:33,6932389 MCLauncher.exe 6080 RegQueryKey HKCU\Software\Classes SUCCESS Query: Name 98 12:38:33,6932475 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Classes\WOW6432Node\CLSID\{B4FB3F98-C1EA-428D-A78A-D1F5659CBA93}\ShellFolder NAME NOT FOUND Desired Access: Query Value 98 12:38:33,6932586 MCLauncher.exe 6080 RegOpenKey HKCR\WOW6432Node\CLSID\{B4FB3F98-C1EA-428D-A78A-D1F5659CBA93}\ShellFolder SUCCESS Desired Access: Query Value 98 12:38:33,6932716 MCLauncher.exe 6080 RegSetInfoKey HKCR\WOW6432Node\CLSID\{B4FB3F98-C1EA-428d-A78A-D1F5659CBA93}\ShellFolder SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 98 12:38:33,6932760 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{B4FB3F98-C1EA-428d-A78A-D1F5659CBA93}\ShellFolder SUCCESS Query: Name 98 12:38:33,6932821 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{B4FB3F98-C1EA-428d-A78A-D1F5659CBA93}\ShellFolder SUCCESS Query: HandleTags, HandleTags: 0x401 98 12:38:33,6932912 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Classes\WOW6432Node\CLSID\{B4FB3F98-C1EA-428d-A78A-D1F5659CBA93}\ShellFolder NAME NOT FOUND Desired Access: Maximum Allowed 98 12:38:33,6932979 MCLauncher.exe 6080 RegQueryValue HKCR\WOW6432Node\CLSID\{B4FB3F98-C1EA-428d-A78A-D1F5659CBA93}\ShellFolder\Attributes SUCCESS Type: REG_DWORD, Length: 4, Data: 2961441036 98 12:38:33,6933153 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{B4FB3F98-C1EA-428d-A78A-D1F5659CBA93}\ShellFolder SUCCESS Query: Name 98 12:38:33,6933220 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{B4FB3F98-C1EA-428d-A78A-D1F5659CBA93}\ShellFolder SUCCESS Query: HandleTags, HandleTags: 0x401 98 12:38:33,6933320 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Classes\WOW6432Node\CLSID\{B4FB3F98-C1EA-428d-A78A-D1F5659CBA93}\ShellFolder NAME NOT FOUND Desired Access: Maximum Allowed 98 12:38:33,6933397 MCLauncher.exe 6080 RegQueryValue HKCR\WOW6432Node\CLSID\{B4FB3F98-C1EA-428d-A78A-D1F5659CBA93}\ShellFolder\CallForAttributes SUCCESS Type: REG_DWORD, Length: 4, Data: 1048576 98 12:38:33,6933519 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{B4FB3F98-C1EA-428d-A78A-D1F5659CBA93}\ShellFolder SUCCESS Query: Name 98 12:38:33,6933583 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{B4FB3F98-C1EA-428d-A78A-D1F5659CBA93}\ShellFolder SUCCESS Query: HandleTags, HandleTags: 0x401 98 12:38:33,6933680 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Classes\WOW6432Node\CLSID\{B4FB3F98-C1EA-428d-A78A-D1F5659CBA93}\ShellFolder NAME NOT FOUND Desired Access: Maximum Allowed 98 12:38:33,6933757 MCLauncher.exe 6080 RegQueryValue HKCR\WOW6432Node\CLSID\{B4FB3F98-C1EA-428d-A78A-D1F5659CBA93}\ShellFolder\RestrictedAttributes NAME NOT FOUND Length: 144 98 12:38:33,6933863 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{B4FB3F98-C1EA-428d-A78A-D1F5659CBA93}\ShellFolder SUCCESS Query: Name 98 12:38:33,6933926 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{B4FB3F98-C1EA-428d-A78A-D1F5659CBA93}\ShellFolder SUCCESS Query: HandleTags, HandleTags: 0x401 98 12:38:33,6934029 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Classes\WOW6432Node\CLSID\{B4FB3F98-C1EA-428d-A78A-D1F5659CBA93}\ShellFolder NAME NOT FOUND Desired Access: Maximum Allowed 98 12:38:33,6934104 MCLauncher.exe 6080 RegQueryValue HKCR\WOW6432Node\CLSID\{B4FB3F98-C1EA-428d-A78A-D1F5659CBA93}\ShellFolder\FolderValueFlags SUCCESS Type: REG_DWORD, Length: 4, Data: 270880 98 12:38:33,6934234 MCLauncher.exe 6080 RegCloseKey HKCR\WOW6432Node\CLSID\{B4FB3F98-C1EA-428d-A78A-D1F5659CBA93}\ShellFolder SUCCESS 98 12:38:33,6934320 MCLauncher.exe 6080 RegQueryKey HKCU SUCCESS Query: HandleTags, HandleTags: 0x0 98 12:38:33,6934370 MCLauncher.exe 6080 RegQueryKey HKCU SUCCESS Query: Name 98 12:38:33,6934447 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Microsoft\Windows\CurrentVersion\Explorer\CLSID\{B4FB3F98-C1EA-428D-A78A-D1F5659CBA93}\ShellFolder NAME NOT FOUND Desired Access: Query Value 98 12:38:33,6934547 MCLauncher.exe 6080 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 98 12:38:33,6934594 MCLauncher.exe 6080 RegQueryKey HKLM SUCCESS Query: Name 98 12:38:33,6934675 MCLauncher.exe 6080 RegOpenKey HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\CLSID\{B4FB3F98-C1EA-428D-A78A-D1F5659CBA93}\ShellFolder NAME NOT FOUND Desired Access: Query Value 98 12:38:33,6934766 MCLauncher.exe 6080 RegQueryKey HKCU SUCCESS Query: HandleTags, HandleTags: 0x0 98 12:38:33,6934813 MCLauncher.exe 6080 RegQueryKey HKCU SUCCESS Query: Name 98 12:38:33,6934877 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Microsoft\Windows\CurrentVersion\Policies\NonEnum NAME NOT FOUND Desired Access: Query Value 98 12:38:33,6934954 MCLauncher.exe 6080 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 98 12:38:33,6934999 MCLauncher.exe 6080 RegQueryKey HKLM SUCCESS Query: Name 98 12:38:33,6935071 MCLauncher.exe 6080 RegOpenKey HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Policies\NonEnum REPARSE Desired Access: Query Value 98 12:38:33,6935132 MCLauncher.exe 6080 RegOpenKey HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\NonEnum SUCCESS Desired Access: Query Value 98 12:38:33,6935190 MCLauncher.exe 6080 RegSetInfoKey HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\NonEnum SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 98 12:38:33,6935231 MCLauncher.exe 6080 RegQueryValue HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\NonEnum\{B4FB3F98-C1EA-428D-A78A-D1F5659CBA93} NAME NOT FOUND Length: 144 98 12:38:33,6935356 MCLauncher.exe 6080 RegCloseKey HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\NonEnum SUCCESS 98 12:38:33,6935428 MCLauncher.exe 6080 RegQueryKey HKCU\Software\Classes SUCCESS Query: Name 98 12:38:33,6935492 MCLauncher.exe 6080 RegQueryKey HKCU\Software\Classes SUCCESS Query: HandleTags, HandleTags: 0x1 98 12:38:33,6935558 MCLauncher.exe 6080 RegQueryKey HKCU\Software\Classes SUCCESS Query: HandleTags, HandleTags: 0x1 98 12:38:33,6935608 MCLauncher.exe 6080 RegQueryKey HKCU\Software\Classes SUCCESS Query: Name 98 12:38:33,6935694 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Classes\WOW6432Node\CLSID\{BD7A2E7B-21CB-41B2-A086-B309680C6B7E}\ShellFolder NAME NOT FOUND Desired Access: Query Value 98 12:38:33,6935802 MCLauncher.exe 6080 RegOpenKey HKCR\WOW6432Node\CLSID\{BD7A2E7B-21CB-41B2-A086-B309680C6B7E}\ShellFolder SUCCESS Desired Access: Query Value 98 12:38:33,6935932 MCLauncher.exe 6080 RegSetInfoKey HKCR\WOW6432Node\CLSID\{BD7A2E7B-21CB-41b2-A086-B309680C6B7E}\ShellFolder SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 98 12:38:33,6935977 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{BD7A2E7B-21CB-41b2-A086-B309680C6B7E}\ShellFolder SUCCESS Query: Name 98 12:38:33,6936038 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{BD7A2E7B-21CB-41b2-A086-B309680C6B7E}\ShellFolder SUCCESS Query: HandleTags, HandleTags: 0x401 98 12:38:33,6936126 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Classes\WOW6432Node\CLSID\{BD7A2E7B-21CB-41b2-A086-B309680C6B7E}\ShellFolder NAME NOT FOUND Desired Access: Maximum Allowed 98 12:38:33,6936190 MCLauncher.exe 6080 RegQueryValue HKCR\WOW6432Node\CLSID\{BD7A2E7B-21CB-41b2-A086-B309680C6B7E}\ShellFolder\Attributes SUCCESS Type: REG_DWORD, Length: 4, Data: 538181632 98 12:38:33,6936317 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{BD7A2E7B-21CB-41b2-A086-B309680C6B7E}\ShellFolder SUCCESS Query: Name 98 12:38:33,6936381 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{BD7A2E7B-21CB-41b2-A086-B309680C6B7E}\ShellFolder SUCCESS Query: HandleTags, HandleTags: 0x401 98 12:38:33,6936481 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Classes\WOW6432Node\CLSID\{BD7A2E7B-21CB-41b2-A086-B309680C6B7E}\ShellFolder NAME NOT FOUND Desired Access: Maximum Allowed 98 12:38:33,6936556 MCLauncher.exe 6080 RegQueryValue HKCR\WOW6432Node\CLSID\{BD7A2E7B-21CB-41b2-A086-B309680C6B7E}\ShellFolder\CallForAttributes NAME NOT FOUND Length: 144 98 12:38:33,6936664 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{BD7A2E7B-21CB-41b2-A086-B309680C6B7E}\ShellFolder SUCCESS Query: Name 98 12:38:33,6936727 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{BD7A2E7B-21CB-41b2-A086-B309680C6B7E}\ShellFolder SUCCESS Query: HandleTags, HandleTags: 0x401 98 12:38:33,6936824 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Classes\WOW6432Node\CLSID\{BD7A2E7B-21CB-41b2-A086-B309680C6B7E}\ShellFolder NAME NOT FOUND Desired Access: Maximum Allowed 98 12:38:33,6936899 MCLauncher.exe 6080 RegQueryValue HKCR\WOW6432Node\CLSID\{BD7A2E7B-21CB-41b2-A086-B309680C6B7E}\ShellFolder\RestrictedAttributes NAME NOT FOUND Length: 144 98 12:38:33,6937005 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{BD7A2E7B-21CB-41b2-A086-B309680C6B7E}\ShellFolder SUCCESS Query: Name 98 12:38:33,6937068 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{BD7A2E7B-21CB-41b2-A086-B309680C6B7E}\ShellFolder SUCCESS Query: HandleTags, HandleTags: 0x401 98 12:38:33,6937168 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Classes\WOW6432Node\CLSID\{BD7A2E7B-21CB-41b2-A086-B309680C6B7E}\ShellFolder NAME NOT FOUND Desired Access: Maximum Allowed 98 12:38:33,6937240 MCLauncher.exe 6080 RegQueryValue HKCR\WOW6432Node\CLSID\{BD7A2E7B-21CB-41b2-A086-B309680C6B7E}\ShellFolder\FolderValueFlags SUCCESS Type: REG_DWORD, Length: 4, Data: 0 98 12:38:33,6937367 MCLauncher.exe 6080 RegCloseKey HKCR\WOW6432Node\CLSID\{BD7A2E7B-21CB-41b2-A086-B309680C6B7E}\ShellFolder SUCCESS 98 12:38:33,6937453 MCLauncher.exe 6080 RegQueryKey HKCU SUCCESS Query: HandleTags, HandleTags: 0x0 98 12:38:33,6937586 MCLauncher.exe 6080 RegQueryKey HKCU SUCCESS Query: Name 98 12:38:33,6937692 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Microsoft\Windows\CurrentVersion\Explorer\CLSID\{BD7A2E7B-21CB-41B2-A086-B309680C6B7E}\ShellFolder NAME NOT FOUND Desired Access: Query Value 98 12:38:33,6937797 MCLauncher.exe 6080 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 98 12:38:33,6937844 MCLauncher.exe 6080 RegQueryKey HKLM SUCCESS Query: Name 98 12:38:33,6937927 MCLauncher.exe 6080 RegOpenKey HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\CLSID\{BD7A2E7B-21CB-41B2-A086-B309680C6B7E}\ShellFolder NAME NOT FOUND Desired Access: Query Value 98 12:38:33,6938021 MCLauncher.exe 6080 RegQueryKey HKCU SUCCESS Query: HandleTags, HandleTags: 0x0 98 12:38:33,6938066 MCLauncher.exe 6080 RegQueryKey HKCU SUCCESS Query: Name 98 12:38:33,6938129 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Microsoft\Windows\CurrentVersion\Policies\NonEnum NAME NOT FOUND Desired Access: Query Value 98 12:38:33,6938210 MCLauncher.exe 6080 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 98 12:38:33,6938254 MCLauncher.exe 6080 RegQueryKey HKLM SUCCESS Query: Name 98 12:38:33,6938326 MCLauncher.exe 6080 RegOpenKey HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Policies\NonEnum REPARSE Desired Access: Query Value 98 12:38:33,6938390 MCLauncher.exe 6080 RegOpenKey HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\NonEnum SUCCESS Desired Access: Query Value 98 12:38:33,6938451 MCLauncher.exe 6080 RegSetInfoKey HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\NonEnum SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 98 12:38:33,6938495 MCLauncher.exe 6080 RegQueryValue HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\NonEnum\{BD7A2E7B-21CB-41B2-A086-B309680C6B7E} NAME NOT FOUND Length: 144 98 12:38:33,6938623 MCLauncher.exe 6080 RegCloseKey HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\NonEnum SUCCESS 98 12:38:33,6938695 MCLauncher.exe 6080 RegQueryKey HKCU\Software\Classes SUCCESS Query: Name 98 12:38:33,6938758 MCLauncher.exe 6080 RegQueryKey HKCU\Software\Classes SUCCESS Query: HandleTags, HandleTags: 0x1 98 12:38:33,6938828 MCLauncher.exe 6080 RegQueryKey HKCU\Software\Classes SUCCESS Query: HandleTags, HandleTags: 0x1 98 12:38:33,6938875 MCLauncher.exe 6080 RegQueryKey HKCU\Software\Classes SUCCESS Query: Name 98 12:38:33,6938961 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Classes\WOW6432Node\CLSID\{DAF95313-E44D-46AF-BE1B-CBACEA2C3065}\ShellFolder NAME NOT FOUND Desired Access: Query Value 98 12:38:33,6939088 MCLauncher.exe 6080 RegOpenKey HKCR\WOW6432Node\CLSID\{DAF95313-E44D-46AF-BE1B-CBACEA2C3065}\ShellFolder SUCCESS Desired Access: Query Value 98 12:38:33,6939265 MCLauncher.exe 6080 RegSetInfoKey HKCR\WOW6432Node\CLSID\{daf95313-e44d-46af-be1b-cbacea2c3065}\ShellFolder SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 98 12:38:33,6939307 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{daf95313-e44d-46af-be1b-cbacea2c3065}\ShellFolder SUCCESS Query: Name 98 12:38:33,6939371 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{daf95313-e44d-46af-be1b-cbacea2c3065}\ShellFolder SUCCESS Query: HandleTags, HandleTags: 0x401 98 12:38:33,6939465 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Classes\WOW6432Node\CLSID\{daf95313-e44d-46af-be1b-cbacea2c3065}\ShellFolder NAME NOT FOUND Desired Access: Maximum Allowed 98 12:38:33,6939531 MCLauncher.exe 6080 RegQueryValue HKCR\WOW6432Node\CLSID\{daf95313-e44d-46af-be1b-cbacea2c3065}\ShellFolder\Attributes SUCCESS Type: REG_DWORD, Length: 4, Data: 538443776 98 12:38:33,6939659 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{daf95313-e44d-46af-be1b-cbacea2c3065}\ShellFolder SUCCESS Query: Name 98 12:38:33,6939725 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{daf95313-e44d-46af-be1b-cbacea2c3065}\ShellFolder SUCCESS Query: HandleTags, HandleTags: 0x401 98 12:38:33,6939828 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Classes\WOW6432Node\CLSID\{daf95313-e44d-46af-be1b-cbacea2c3065}\ShellFolder NAME NOT FOUND Desired Access: Maximum Allowed 98 12:38:33,6939905 MCLauncher.exe 6080 RegQueryValue HKCR\WOW6432Node\CLSID\{daf95313-e44d-46af-be1b-cbacea2c3065}\ShellFolder\CallForAttributes NAME NOT FOUND Length: 144 98 12:38:33,6940011 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{daf95313-e44d-46af-be1b-cbacea2c3065}\ShellFolder SUCCESS Query: Name 98 12:38:33,6940077 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{daf95313-e44d-46af-be1b-cbacea2c3065}\ShellFolder SUCCESS Query: HandleTags, HandleTags: 0x401 98 12:38:33,6940174 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Classes\WOW6432Node\CLSID\{daf95313-e44d-46af-be1b-cbacea2c3065}\ShellFolder NAME NOT FOUND Desired Access: Maximum Allowed 98 12:38:33,6940252 MCLauncher.exe 6080 RegQueryValue HKCR\WOW6432Node\CLSID\{daf95313-e44d-46af-be1b-cbacea2c3065}\ShellFolder\RestrictedAttributes NAME NOT FOUND Length: 144 98 12:38:33,6940357 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{daf95313-e44d-46af-be1b-cbacea2c3065}\ShellFolder SUCCESS Query: Name 98 12:38:33,6940421 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{daf95313-e44d-46af-be1b-cbacea2c3065}\ShellFolder SUCCESS Query: HandleTags, HandleTags: 0x401 98 12:38:33,6940518 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Classes\WOW6432Node\CLSID\{daf95313-e44d-46af-be1b-cbacea2c3065}\ShellFolder NAME NOT FOUND Desired Access: Maximum Allowed 98 12:38:33,6940595 MCLauncher.exe 6080 RegQueryValue HKCR\WOW6432Node\CLSID\{daf95313-e44d-46af-be1b-cbacea2c3065}\ShellFolder\FolderValueFlags SUCCESS Type: REG_DWORD, Length: 4, Data: 0 98 12:38:33,6940725 MCLauncher.exe 6080 RegCloseKey HKCR\WOW6432Node\CLSID\{daf95313-e44d-46af-be1b-cbacea2c3065}\ShellFolder SUCCESS 98 12:38:33,6940811 MCLauncher.exe 6080 RegQueryKey HKCU SUCCESS Query: HandleTags, HandleTags: 0x0 98 12:38:33,6940861 MCLauncher.exe 6080 RegQueryKey HKCU SUCCESS Query: Name 98 12:38:33,6940939 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Microsoft\Windows\CurrentVersion\Explorer\CLSID\{DAF95313-E44D-46AF-BE1B-CBACEA2C3065}\ShellFolder NAME NOT FOUND Desired Access: Query Value 98 12:38:33,6941038 MCLauncher.exe 6080 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 98 12:38:33,6941088 MCLauncher.exe 6080 RegQueryKey HKLM SUCCESS Query: Name 98 12:38:33,6941166 MCLauncher.exe 6080 RegOpenKey HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\CLSID\{DAF95313-E44D-46AF-BE1B-CBACEA2C3065}\ShellFolder NAME NOT FOUND Desired Access: Query Value 98 12:38:33,6941257 MCLauncher.exe 6080 RegQueryKey HKCU SUCCESS Query: HandleTags, HandleTags: 0x0 98 12:38:33,6941304 MCLauncher.exe 6080 RegQueryKey HKCU SUCCESS Query: Name 98 12:38:33,6941368 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Microsoft\Windows\CurrentVersion\Policies\NonEnum NAME NOT FOUND Desired Access: Query Value 98 12:38:33,6941446 MCLauncher.exe 6080 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 98 12:38:33,6941490 MCLauncher.exe 6080 RegQueryKey HKLM SUCCESS Query: Name 98 12:38:33,6941562 MCLauncher.exe 6080 RegOpenKey HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Policies\NonEnum REPARSE Desired Access: Query Value 98 12:38:33,6941623 MCLauncher.exe 6080 RegOpenKey HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\NonEnum SUCCESS Desired Access: Query Value 98 12:38:33,6941681 MCLauncher.exe 6080 RegSetInfoKey HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\NonEnum SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 98 12:38:33,6941726 MCLauncher.exe 6080 RegQueryValue HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\NonEnum\{DAF95313-E44D-46AF-BE1B-CBACEA2C3065} NAME NOT FOUND Length: 144 98 12:38:33,6941847 MCLauncher.exe 6080 RegCloseKey HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\NonEnum SUCCESS 98 12:38:33,6941920 MCLauncher.exe 6080 RegQueryKey HKCU\Software\Classes SUCCESS Query: Name 98 12:38:33,6941983 MCLauncher.exe 6080 RegQueryKey HKCU\Software\Classes SUCCESS Query: HandleTags, HandleTags: 0x1 98 12:38:33,6942050 MCLauncher.exe 6080 RegQueryKey HKCU\Software\Classes SUCCESS Query: HandleTags, HandleTags: 0x1 98 12:38:33,6942100 MCLauncher.exe 6080 RegQueryKey HKCU\Software\Classes SUCCESS Query: Name 98 12:38:33,6942185 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Classes\WOW6432Node\CLSID\{E345F35F-9397-435C-8F95-4E922C26259E}\ShellFolder NAME NOT FOUND Desired Access: Query Value 98 12:38:33,6942294 MCLauncher.exe 6080 RegOpenKey HKCR\WOW6432Node\CLSID\{E345F35F-9397-435C-8F95-4E922C26259E}\ShellFolder SUCCESS Desired Access: Query Value 98 12:38:33,6942438 MCLauncher.exe 6080 RegSetInfoKey HKCR\WOW6432Node\CLSID\{e345f35f-9397-435c-8f95-4e922c26259e}\ShellFolder SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 98 12:38:33,6942482 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{e345f35f-9397-435c-8f95-4e922c26259e}\ShellFolder SUCCESS Query: Name 98 12:38:33,6942543 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{e345f35f-9397-435c-8f95-4e922c26259e}\ShellFolder SUCCESS Query: HandleTags, HandleTags: 0x401 98 12:38:33,6942632 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Classes\WOW6432Node\CLSID\{e345f35f-9397-435c-8f95-4e922c26259e}\ShellFolder NAME NOT FOUND Desired Access: Maximum Allowed 98 12:38:33,6942701 MCLauncher.exe 6080 RegQueryValue HKCR\WOW6432Node\CLSID\{e345f35f-9397-435c-8f95-4e922c26259e}\ShellFolder\Attributes SUCCESS Type: REG_DWORD, Length: 4, Data: 538443776 98 12:38:33,6942828 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{e345f35f-9397-435c-8f95-4e922c26259e}\ShellFolder SUCCESS Query: Name 98 12:38:33,6942895 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{e345f35f-9397-435c-8f95-4e922c26259e}\ShellFolder SUCCESS Query: HandleTags, HandleTags: 0x401 98 12:38:33,6942992 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Classes\WOW6432Node\CLSID\{e345f35f-9397-435c-8f95-4e922c26259e}\ShellFolder NAME NOT FOUND Desired Access: Maximum Allowed 98 12:38:33,6943072 MCLauncher.exe 6080 RegQueryValue HKCR\WOW6432Node\CLSID\{e345f35f-9397-435c-8f95-4e922c26259e}\ShellFolder\CallForAttributes NAME NOT FOUND Length: 144 98 12:38:33,6943183 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{e345f35f-9397-435c-8f95-4e922c26259e}\ShellFolder SUCCESS Query: Name 98 12:38:33,6943247 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{e345f35f-9397-435c-8f95-4e922c26259e}\ShellFolder SUCCESS Query: HandleTags, HandleTags: 0x401 98 12:38:33,6943344 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Classes\WOW6432Node\CLSID\{e345f35f-9397-435c-8f95-4e922c26259e}\ShellFolder NAME NOT FOUND Desired Access: Maximum Allowed 98 12:38:33,6943421 MCLauncher.exe 6080 RegQueryValue HKCR\WOW6432Node\CLSID\{e345f35f-9397-435c-8f95-4e922c26259e}\ShellFolder\RestrictedAttributes NAME NOT FOUND Length: 144 98 12:38:33,6943524 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{e345f35f-9397-435c-8f95-4e922c26259e}\ShellFolder SUCCESS Query: Name 98 12:38:33,6943590 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{e345f35f-9397-435c-8f95-4e922c26259e}\ShellFolder SUCCESS Query: HandleTags, HandleTags: 0x401 98 12:38:33,6943687 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Classes\WOW6432Node\CLSID\{e345f35f-9397-435c-8f95-4e922c26259e}\ShellFolder NAME NOT FOUND Desired Access: Maximum Allowed 98 12:38:33,6943765 MCLauncher.exe 6080 RegQueryValue HKCR\WOW6432Node\CLSID\{e345f35f-9397-435c-8f95-4e922c26259e}\ShellFolder\FolderValueFlags SUCCESS Type: REG_DWORD, Length: 4, Data: 0 98 12:38:33,6943892 MCLauncher.exe 6080 RegCloseKey HKCR\WOW6432Node\CLSID\{e345f35f-9397-435c-8f95-4e922c26259e}\ShellFolder SUCCESS 98 12:38:33,6943978 MCLauncher.exe 6080 RegQueryKey HKCU SUCCESS Query: HandleTags, HandleTags: 0x0 98 12:38:33,6944031 MCLauncher.exe 6080 RegQueryKey HKCU SUCCESS Query: Name 98 12:38:33,6944105 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Microsoft\Windows\CurrentVersion\Explorer\CLSID\{E345F35F-9397-435C-8F95-4E922C26259E}\ShellFolder NAME NOT FOUND Desired Access: Query Value 98 12:38:33,6944205 MCLauncher.exe 6080 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 98 12:38:33,6944252 MCLauncher.exe 6080 RegQueryKey HKLM SUCCESS Query: Name 98 12:38:33,6944333 MCLauncher.exe 6080 RegOpenKey HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\CLSID\{E345F35F-9397-435C-8F95-4E922C26259E}\ShellFolder NAME NOT FOUND Desired Access: Query Value 98 12:38:33,6944424 MCLauncher.exe 6080 RegQueryKey HKCU SUCCESS Query: HandleTags, HandleTags: 0x0 98 12:38:33,6944468 MCLauncher.exe 6080 RegQueryKey HKCU SUCCESS Query: Name 98 12:38:33,6944535 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Microsoft\Windows\CurrentVersion\Policies\NonEnum NAME NOT FOUND Desired Access: Query Value 98 12:38:33,6944613 MCLauncher.exe 6080 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 98 12:38:33,6944657 MCLauncher.exe 6080 RegQueryKey HKLM SUCCESS Query: Name 98 12:38:33,6944729 MCLauncher.exe 6080 RegOpenKey HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Policies\NonEnum REPARSE Desired Access: Query Value 98 12:38:33,6944790 MCLauncher.exe 6080 RegOpenKey HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\NonEnum SUCCESS Desired Access: Query Value 98 12:38:33,6944848 MCLauncher.exe 6080 RegSetInfoKey HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\NonEnum SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 98 12:38:33,6944890 MCLauncher.exe 6080 RegQueryValue HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\NonEnum\{E345F35F-9397-435C-8F95-4E922C26259E} NAME NOT FOUND Length: 144 98 12:38:33,6945011 MCLauncher.exe 6080 RegCloseKey HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\NonEnum SUCCESS 98 12:38:33,6945084 MCLauncher.exe 6080 RegQueryKey HKCU\Software\Classes SUCCESS Query: Name 98 12:38:33,6945147 MCLauncher.exe 6080 RegQueryKey HKCU\Software\Classes SUCCESS Query: HandleTags, HandleTags: 0x1 98 12:38:33,6945216 MCLauncher.exe 6080 RegQueryKey HKCU\Software\Classes SUCCESS Query: HandleTags, HandleTags: 0x1 98 12:38:33,6945264 MCLauncher.exe 6080 RegQueryKey HKCU\Software\Classes SUCCESS Query: Name 98 12:38:33,6945352 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Classes\WOW6432Node\CLSID\{ED228FDF-9EA8-4870-83B1-96B02CFE0D52}\ShellFolder NAME NOT FOUND Desired Access: Query Value 98 12:38:33,6945460 MCLauncher.exe 6080 RegOpenKey HKCR\WOW6432Node\CLSID\{ED228FDF-9EA8-4870-83B1-96B02CFE0D52}\ShellFolder SUCCESS Desired Access: Query Value 98 12:38:33,6945554 MCLauncher.exe 6080 RegSetInfoKey HKCR\WOW6432Node\CLSID\{ED228FDF-9EA8-4870-83b1-96b02CFE0D52}\ShellFolder SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 98 12:38:33,6945596 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{ED228FDF-9EA8-4870-83b1-96b02CFE0D52}\ShellFolder SUCCESS Query: Name 98 12:38:33,6945657 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{ED228FDF-9EA8-4870-83b1-96b02CFE0D52}\ShellFolder SUCCESS Query: HandleTags, HandleTags: 0x401 98 12:38:33,6945743 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Classes\WOW6432Node\CLSID\{ED228FDF-9EA8-4870-83b1-96b02CFE0D52}\ShellFolder NAME NOT FOUND Desired Access: Maximum Allowed 98 12:38:33,6945812 MCLauncher.exe 6080 RegQueryValue HKCR\WOW6432Node\CLSID\{ED228FDF-9EA8-4870-83b1-96b02CFE0D52}\ShellFolder\Attributes SUCCESS Type: REG_DWORD, Length: 4, Data: 537919792 98 12:38:33,6945940 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{ED228FDF-9EA8-4870-83b1-96b02CFE0D52}\ShellFolder SUCCESS Query: Name 98 12:38:33,6946006 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{ED228FDF-9EA8-4870-83b1-96b02CFE0D52}\ShellFolder SUCCESS Query: HandleTags, HandleTags: 0x401 98 12:38:33,6946103 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Classes\WOW6432Node\CLSID\{ED228FDF-9EA8-4870-83b1-96b02CFE0D52}\ShellFolder NAME NOT FOUND Desired Access: Maximum Allowed 98 12:38:33,6946183 MCLauncher.exe 6080 RegQueryValue HKCR\WOW6432Node\CLSID\{ED228FDF-9EA8-4870-83b1-96b02CFE0D52}\ShellFolder\CallForAttributes NAME NOT FOUND Length: 144 98 12:38:33,6946291 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{ED228FDF-9EA8-4870-83b1-96b02CFE0D52}\ShellFolder SUCCESS Query: Name 98 12:38:33,6946355 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{ED228FDF-9EA8-4870-83b1-96b02CFE0D52}\ShellFolder SUCCESS Query: HandleTags, HandleTags: 0x401 98 12:38:33,6946452 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Classes\WOW6432Node\CLSID\{ED228FDF-9EA8-4870-83b1-96b02CFE0D52}\ShellFolder NAME NOT FOUND Desired Access: Maximum Allowed 98 12:38:33,6946530 MCLauncher.exe 6080 RegQueryValue HKCR\WOW6432Node\CLSID\{ED228FDF-9EA8-4870-83b1-96b02CFE0D52}\ShellFolder\RestrictedAttributes NAME NOT FOUND Length: 144 98 12:38:33,6946632 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{ED228FDF-9EA8-4870-83b1-96b02CFE0D52}\ShellFolder SUCCESS Query: Name 98 12:38:33,6946699 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{ED228FDF-9EA8-4870-83b1-96b02CFE0D52}\ShellFolder SUCCESS Query: HandleTags, HandleTags: 0x401 98 12:38:33,6946796 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Classes\WOW6432Node\CLSID\{ED228FDF-9EA8-4870-83b1-96b02CFE0D52}\ShellFolder NAME NOT FOUND Desired Access: Maximum Allowed 98 12:38:33,6946873 MCLauncher.exe 6080 RegQueryValue HKCR\WOW6432Node\CLSID\{ED228FDF-9EA8-4870-83b1-96b02CFE0D52}\ShellFolder\FolderValueFlags SUCCESS Type: REG_DWORD, Length: 4, Data: 0 98 12:38:33,6947004 MCLauncher.exe 6080 RegCloseKey HKCR\WOW6432Node\CLSID\{ED228FDF-9EA8-4870-83b1-96b02CFE0D52}\ShellFolder SUCCESS 98 12:38:33,6947247 MCLauncher.exe 6080 RegQueryKey HKCU SUCCESS Query: HandleTags, HandleTags: 0x0 98 12:38:33,6947303 MCLauncher.exe 6080 RegQueryKey HKCU SUCCESS Query: Name 98 12:38:33,6947383 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Microsoft\Windows\CurrentVersion\Explorer\CLSID\{ED228FDF-9EA8-4870-83B1-96B02CFE0D52}\ShellFolder NAME NOT FOUND Desired Access: Query Value 98 12:38:33,6947488 MCLauncher.exe 6080 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 98 12:38:33,6947533 MCLauncher.exe 6080 RegQueryKey HKLM SUCCESS Query: Name 98 12:38:33,6947616 MCLauncher.exe 6080 RegOpenKey HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\CLSID\{ED228FDF-9EA8-4870-83B1-96B02CFE0D52}\ShellFolder NAME NOT FOUND Desired Access: Query Value 98 12:38:33,6947710 MCLauncher.exe 6080 RegQueryKey HKCU SUCCESS Query: HandleTags, HandleTags: 0x0 98 12:38:33,6947754 MCLauncher.exe 6080 RegQueryKey HKCU SUCCESS Query: Name 98 12:38:33,6947821 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Microsoft\Windows\CurrentVersion\Policies\NonEnum NAME NOT FOUND Desired Access: Query Value 98 12:38:33,6947898 MCLauncher.exe 6080 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 98 12:38:33,6947943 MCLauncher.exe 6080 RegQueryKey HKLM SUCCESS Query: Name 98 12:38:33,6948015 MCLauncher.exe 6080 RegOpenKey HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Policies\NonEnum REPARSE Desired Access: Query Value 98 12:38:33,6948076 MCLauncher.exe 6080 RegOpenKey HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\NonEnum SUCCESS Desired Access: Query Value 98 12:38:33,6948137 MCLauncher.exe 6080 RegSetInfoKey HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\NonEnum SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 98 12:38:33,6948181 MCLauncher.exe 6080 RegQueryValue HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\NonEnum\{ED228FDF-9EA8-4870-83B1-96B02CFE0D52} NAME NOT FOUND Length: 144 98 12:38:33,6948308 MCLauncher.exe 6080 RegCloseKey HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\NonEnum SUCCESS 98 12:38:33,6948383 MCLauncher.exe 6080 RegQueryKey HKCU\Software\Classes SUCCESS Query: Name 98 12:38:33,6948447 MCLauncher.exe 6080 RegQueryKey HKCU\Software\Classes SUCCESS Query: HandleTags, HandleTags: 0x1 98 12:38:33,6948516 MCLauncher.exe 6080 RegQueryKey HKCU\Software\Classes SUCCESS Query: HandleTags, HandleTags: 0x1 98 12:38:33,6948563 MCLauncher.exe 6080 RegQueryKey HKCU\Software\Classes SUCCESS Query: Name 98 12:38:33,6948649 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Classes\WOW6432Node\CLSID\{EDC978D6-4D53-4B2F-A265-5805674BE568}\ShellFolder NAME NOT FOUND Desired Access: Query Value 98 12:38:33,6948757 MCLauncher.exe 6080 RegOpenKey HKCR\WOW6432Node\CLSID\{EDC978D6-4D53-4B2F-A265-5805674BE568}\ShellFolder SUCCESS Desired Access: Query Value 98 12:38:33,6948887 MCLauncher.exe 6080 RegSetInfoKey HKCR\WOW6432Node\CLSID\{EDC978D6-4D53-4b2f-A265-5805674BE568}\ShellFolder SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 98 12:38:33,6948929 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{EDC978D6-4D53-4b2f-A265-5805674BE568}\ShellFolder SUCCESS Query: Name 98 12:38:33,6948987 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{EDC978D6-4D53-4b2f-A265-5805674BE568}\ShellFolder SUCCESS Query: HandleTags, HandleTags: 0x401 98 12:38:33,6949079 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Classes\WOW6432Node\CLSID\{EDC978D6-4D53-4b2f-A265-5805674BE568}\ShellFolder NAME NOT FOUND Desired Access: Maximum Allowed 98 12:38:33,6949148 MCLauncher.exe 6080 RegQueryValue HKCR\WOW6432Node\CLSID\{EDC978D6-4D53-4b2f-A265-5805674BE568}\ShellFolder\Attributes SUCCESS Type: REG_DWORD, Length: 4, Data: 537919488 98 12:38:33,6949273 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{EDC978D6-4D53-4b2f-A265-5805674BE568}\ShellFolder SUCCESS Query: Name 98 12:38:33,6949339 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{EDC978D6-4D53-4b2f-A265-5805674BE568}\ShellFolder SUCCESS Query: HandleTags, HandleTags: 0x401 98 12:38:33,6949439 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Classes\WOW6432Node\CLSID\{EDC978D6-4D53-4b2f-A265-5805674BE568}\ShellFolder NAME NOT FOUND Desired Access: Maximum Allowed 98 12:38:33,6949516 MCLauncher.exe 6080 RegQueryValue HKCR\WOW6432Node\CLSID\{EDC978D6-4D53-4b2f-A265-5805674BE568}\ShellFolder\CallForAttributes NAME NOT FOUND Length: 144 98 12:38:33,6949624 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{EDC978D6-4D53-4b2f-A265-5805674BE568}\ShellFolder SUCCESS Query: Name 98 12:38:33,6949688 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{EDC978D6-4D53-4b2f-A265-5805674BE568}\ShellFolder SUCCESS Query: HandleTags, HandleTags: 0x401 98 12:38:33,6949788 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Classes\WOW6432Node\CLSID\{EDC978D6-4D53-4b2f-A265-5805674BE568}\ShellFolder NAME NOT FOUND Desired Access: Maximum Allowed 98 12:38:33,6949863 MCLauncher.exe 6080 RegQueryValue HKCR\WOW6432Node\CLSID\{EDC978D6-4D53-4b2f-A265-5805674BE568}\ShellFolder\RestrictedAttributes NAME NOT FOUND Length: 144 98 12:38:33,6949968 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{EDC978D6-4D53-4b2f-A265-5805674BE568}\ShellFolder SUCCESS Query: Name 98 12:38:33,6950032 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{EDC978D6-4D53-4b2f-A265-5805674BE568}\ShellFolder SUCCESS Query: HandleTags, HandleTags: 0x401 98 12:38:33,6950129 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Classes\WOW6432Node\CLSID\{EDC978D6-4D53-4b2f-A265-5805674BE568}\ShellFolder NAME NOT FOUND Desired Access: Maximum Allowed 98 12:38:33,6950206 MCLauncher.exe 6080 RegQueryValue HKCR\WOW6432Node\CLSID\{EDC978D6-4D53-4b2f-A265-5805674BE568}\ShellFolder\FolderValueFlags SUCCESS Type: REG_DWORD, Length: 4, Data: 0 98 12:38:33,6950336 MCLauncher.exe 6080 RegCloseKey HKCR\WOW6432Node\CLSID\{EDC978D6-4D53-4b2f-A265-5805674BE568}\ShellFolder SUCCESS 98 12:38:33,6950420 MCLauncher.exe 6080 RegQueryKey HKCU SUCCESS Query: HandleTags, HandleTags: 0x0 98 12:38:33,6950469 MCLauncher.exe 6080 RegQueryKey HKCU SUCCESS Query: Name 98 12:38:33,6950544 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Microsoft\Windows\CurrentVersion\Explorer\CLSID\{EDC978D6-4D53-4B2F-A265-5805674BE568}\ShellFolder NAME NOT FOUND Desired Access: Query Value 98 12:38:33,6950644 MCLauncher.exe 6080 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 98 12:38:33,6950688 MCLauncher.exe 6080 RegQueryKey HKLM SUCCESS Query: Name 98 12:38:33,6950769 MCLauncher.exe 6080 RegOpenKey HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\CLSID\{EDC978D6-4D53-4B2F-A265-5805674BE568}\ShellFolder NAME NOT FOUND Desired Access: Query Value 98 12:38:33,6950863 MCLauncher.exe 6080 RegQueryKey HKCU SUCCESS Query: HandleTags, HandleTags: 0x0 98 12:38:33,6950907 MCLauncher.exe 6080 RegQueryKey HKCU SUCCESS Query: Name 98 12:38:33,6950974 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Microsoft\Windows\CurrentVersion\Policies\NonEnum NAME NOT FOUND Desired Access: Query Value 98 12:38:33,6951051 MCLauncher.exe 6080 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 98 12:38:33,6951096 MCLauncher.exe 6080 RegQueryKey HKLM SUCCESS Query: Name 98 12:38:33,6951168 MCLauncher.exe 6080 RegOpenKey HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Policies\NonEnum REPARSE Desired Access: Query Value 98 12:38:33,6951226 MCLauncher.exe 6080 RegOpenKey HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\NonEnum SUCCESS Desired Access: Query Value 98 12:38:33,6951284 MCLauncher.exe 6080 RegSetInfoKey HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\NonEnum SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 98 12:38:33,6951326 MCLauncher.exe 6080 RegQueryValue HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\NonEnum\{EDC978D6-4D53-4B2F-A265-5805674BE568} NAME NOT FOUND Length: 144 98 12:38:33,6951450 MCLauncher.exe 6080 RegCloseKey HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\NonEnum SUCCESS 98 12:38:33,6951522 MCLauncher.exe 6080 RegQueryKey HKCU\Software\Classes SUCCESS Query: Name 98 12:38:33,6951586 MCLauncher.exe 6080 RegQueryKey HKCU\Software\Classes SUCCESS Query: HandleTags, HandleTags: 0x1 98 12:38:33,6951653 MCLauncher.exe 6080 RegQueryKey HKCU\Software\Classes SUCCESS Query: HandleTags, HandleTags: 0x1 98 12:38:33,6951700 MCLauncher.exe 6080 RegQueryKey HKCU\Software\Classes SUCCESS Query: Name 98 12:38:33,6951785 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Classes\WOW6432Node\CLSID\{F02C1A0D-BE21-4350-88B0-7367FC96EF3C}\ShellFolder NAME NOT FOUND Desired Access: Query Value 98 12:38:33,6951891 MCLauncher.exe 6080 RegOpenKey HKCR\WOW6432Node\CLSID\{F02C1A0D-BE21-4350-88B0-7367FC96EF3C}\ShellFolder SUCCESS Desired Access: Query Value 98 12:38:33,6952021 MCLauncher.exe 6080 RegSetInfoKey HKCR\WOW6432Node\CLSID\{F02C1A0D-BE21-4350-88B0-7367FC96EF3C}\ShellFolder SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 98 12:38:33,6952065 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{F02C1A0D-BE21-4350-88B0-7367FC96EF3C}\ShellFolder SUCCESS Query: Name 98 12:38:33,6952123 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{F02C1A0D-BE21-4350-88B0-7367FC96EF3C}\ShellFolder SUCCESS Query: HandleTags, HandleTags: 0x401 98 12:38:33,6952212 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Classes\WOW6432Node\CLSID\{F02C1A0D-BE21-4350-88B0-7367FC96EF3C}\ShellFolder NAME NOT FOUND Desired Access: Maximum Allowed 98 12:38:33,6952281 MCLauncher.exe 6080 RegQueryValue HKCR\WOW6432Node\CLSID\{F02C1A0D-BE21-4350-88B0-7367FC96EF3C}\ShellFolder\Attributes SUCCESS Type: REG_DWORD, Length: 4, Data: 2953052260 98 12:38:33,6952406 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{F02C1A0D-BE21-4350-88B0-7367FC96EF3C}\ShellFolder SUCCESS Query: Name 98 12:38:33,6952473 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{F02C1A0D-BE21-4350-88B0-7367FC96EF3C}\ShellFolder SUCCESS Query: HandleTags, HandleTags: 0x401 98 12:38:33,6952570 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Classes\WOW6432Node\CLSID\{F02C1A0D-BE21-4350-88B0-7367FC96EF3C}\ShellFolder NAME NOT FOUND Desired Access: Maximum Allowed 98 12:38:33,6952647 MCLauncher.exe 6080 RegQueryValue HKCR\WOW6432Node\CLSID\{F02C1A0D-BE21-4350-88B0-7367FC96EF3C}\ShellFolder\CallForAttributes NAME NOT FOUND Length: 144 98 12:38:33,6952755 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{F02C1A0D-BE21-4350-88B0-7367FC96EF3C}\ShellFolder SUCCESS Query: Name 98 12:38:33,6952819 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{F02C1A0D-BE21-4350-88B0-7367FC96EF3C}\ShellFolder SUCCESS Query: HandleTags, HandleTags: 0x401 98 12:38:33,6952916 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Classes\WOW6432Node\CLSID\{F02C1A0D-BE21-4350-88B0-7367FC96EF3C}\ShellFolder NAME NOT FOUND Desired Access: Maximum Allowed 98 12:38:33,6952991 MCLauncher.exe 6080 RegQueryValue HKCR\WOW6432Node\CLSID\{F02C1A0D-BE21-4350-88B0-7367FC96EF3C}\ShellFolder\RestrictedAttributes NAME NOT FOUND Length: 144 98 12:38:33,6953096 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{F02C1A0D-BE21-4350-88B0-7367FC96EF3C}\ShellFolder SUCCESS Query: Name 98 12:38:33,6953160 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{F02C1A0D-BE21-4350-88B0-7367FC96EF3C}\ShellFolder SUCCESS Query: HandleTags, HandleTags: 0x401 98 12:38:33,6953259 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Classes\WOW6432Node\CLSID\{F02C1A0D-BE21-4350-88B0-7367FC96EF3C}\ShellFolder NAME NOT FOUND Desired Access: Maximum Allowed 98 12:38:33,6953334 MCLauncher.exe 6080 RegQueryValue HKCR\WOW6432Node\CLSID\{F02C1A0D-BE21-4350-88B0-7367FC96EF3C}\ShellFolder\FolderValueFlags SUCCESS Type: REG_DWORD, Length: 4, Data: 1057344 98 12:38:33,6953464 MCLauncher.exe 6080 RegCloseKey HKCR\WOW6432Node\CLSID\{F02C1A0D-BE21-4350-88B0-7367FC96EF3C}\ShellFolder SUCCESS 98 12:38:33,6953550 MCLauncher.exe 6080 RegQueryKey HKCU SUCCESS Query: HandleTags, HandleTags: 0x0 98 12:38:33,6953600 MCLauncher.exe 6080 RegQueryKey HKCU SUCCESS Query: Name 98 12:38:33,6953675 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Microsoft\Windows\CurrentVersion\Explorer\CLSID\{F02C1A0D-BE21-4350-88B0-7367FC96EF3C}\ShellFolder NAME NOT FOUND Desired Access: Query Value 98 12:38:33,6953780 MCLauncher.exe 6080 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 98 12:38:33,6953825 MCLauncher.exe 6080 RegQueryKey HKLM SUCCESS Query: Name 98 12:38:33,6953905 MCLauncher.exe 6080 RegOpenKey HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\CLSID\{F02C1A0D-BE21-4350-88B0-7367FC96EF3C}\ShellFolder NAME NOT FOUND Desired Access: Query Value 98 12:38:33,6953999 MCLauncher.exe 6080 RegQueryKey HKCU SUCCESS Query: HandleTags, HandleTags: 0x0 98 12:38:33,6954043 MCLauncher.exe 6080 RegQueryKey HKCU SUCCESS Query: Name 98 12:38:33,6954110 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Microsoft\Windows\CurrentVersion\Policies\NonEnum NAME NOT FOUND Desired Access: Query Value 98 12:38:33,6954188 MCLauncher.exe 6080 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 98 12:38:33,6954232 MCLauncher.exe 6080 RegQueryKey HKLM SUCCESS Query: Name 98 12:38:33,6954301 MCLauncher.exe 6080 RegOpenKey HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Policies\NonEnum REPARSE Desired Access: Query Value 98 12:38:33,6954362 MCLauncher.exe 6080 RegOpenKey HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\NonEnum SUCCESS Desired Access: Query Value 98 12:38:33,6954420 MCLauncher.exe 6080 RegSetInfoKey HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\NonEnum SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 98 12:38:33,6954465 MCLauncher.exe 6080 RegQueryValue HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\NonEnum\{F02C1A0D-BE21-4350-88B0-7367FC96EF3C} NAME NOT FOUND Length: 144 98 12:38:33,6954584 MCLauncher.exe 6080 RegCloseKey HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\NonEnum SUCCESS 98 12:38:33,6954656 MCLauncher.exe 6080 RegQueryKey HKCU\Software\Classes SUCCESS Query: Name 98 12:38:33,6954720 MCLauncher.exe 6080 RegQueryKey HKCU\Software\Classes SUCCESS Query: HandleTags, HandleTags: 0x1 98 12:38:33,6954789 MCLauncher.exe 6080 RegQueryKey HKCU\Software\Classes SUCCESS Query: HandleTags, HandleTags: 0x1 98 12:38:33,6954836 MCLauncher.exe 6080 RegQueryKey HKCU\Software\Classes SUCCESS Query: Name 98 12:38:33,6954922 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Classes\WOW6432Node\CLSID\{018D5C66-4533-4307-9B53-224DE2ED1FE6}\ShellFolder SUCCESS Desired Access: Query Value 98 12:38:33,6955052 MCLauncher.exe 6080 RegSetInfoKey HKCU\Software\Classes\WOW6432Node\CLSID\{018D5C66-4533-4307-9B53-224DE2ED1FE6}\ShellFolder SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 98 12:38:33,6955096 MCLauncher.exe 6080 RegQueryKey HKCU\Software\Classes\WOW6432Node\CLSID\{018D5C66-4533-4307-9B53-224DE2ED1FE6}\ShellFolder SUCCESS Query: Name 98 12:38:33,6955157 MCLauncher.exe 6080 RegQueryKey HKCU\Software\Classes\WOW6432Node\CLSID\{018D5C66-4533-4307-9B53-224DE2ED1FE6}\ShellFolder SUCCESS Query: HandleTags, HandleTags: 0x401 98 12:38:33,6955232 MCLauncher.exe 6080 RegOpenKey HKCR\WOW6432Node\CLSID\{018D5C66-4533-4307-9B53-224DE2ED1FE6}\ShellFolder NAME NOT FOUND Desired Access: Maximum Allowed 98 12:38:33,6955326 MCLauncher.exe 6080 RegQueryValue HKCU\Software\Classes\WOW6432Node\CLSID\{018D5C66-4533-4307-9B53-224DE2ED1FE6}\ShellFolder\Attributes SUCCESS Type: REG_DWORD, Length: 4, Data: 4034920525 98 12:38:33,6955462 MCLauncher.exe 6080 RegQueryKey HKCU\Software\Classes\WOW6432Node\CLSID\{018D5C66-4533-4307-9B53-224DE2ED1FE6}\ShellFolder SUCCESS Query: Name 98 12:38:33,6955529 MCLauncher.exe 6080 RegQueryKey HKCU\Software\Classes\WOW6432Node\CLSID\{018D5C66-4533-4307-9B53-224DE2ED1FE6}\ShellFolder SUCCESS Query: HandleTags, HandleTags: 0x401 98 12:38:33,6955612 MCLauncher.exe 6080 RegOpenKey HKCR\WOW6432Node\CLSID\{018D5C66-4533-4307-9B53-224DE2ED1FE6}\ShellFolder NAME NOT FOUND Desired Access: Maximum Allowed 98 12:38:33,6955698 MCLauncher.exe 6080 RegQueryValue HKCU\Software\Classes\WOW6432Node\CLSID\{018D5C66-4533-4307-9B53-224DE2ED1FE6}\ShellFolder\CallForAttributes NAME NOT FOUND Length: 144 98 12:38:33,6955808 MCLauncher.exe 6080 RegQueryKey HKCU\Software\Classes\WOW6432Node\CLSID\{018D5C66-4533-4307-9B53-224DE2ED1FE6}\ShellFolder SUCCESS Query: Name 98 12:38:33,6955875 MCLauncher.exe 6080 RegQueryKey HKCU\Software\Classes\WOW6432Node\CLSID\{018D5C66-4533-4307-9B53-224DE2ED1FE6}\ShellFolder SUCCESS Query: HandleTags, HandleTags: 0x401 98 12:38:33,6955955 MCLauncher.exe 6080 RegOpenKey HKCR\WOW6432Node\CLSID\{018D5C66-4533-4307-9B53-224DE2ED1FE6}\ShellFolder NAME NOT FOUND Desired Access: Maximum Allowed 98 12:38:33,6956038 MCLauncher.exe 6080 RegQueryValue HKCU\Software\Classes\WOW6432Node\CLSID\{018D5C66-4533-4307-9B53-224DE2ED1FE6}\ShellFolder\RestrictedAttributes NAME NOT FOUND Length: 144 98 12:38:33,6956144 MCLauncher.exe 6080 RegQueryKey HKCU\Software\Classes\WOW6432Node\CLSID\{018D5C66-4533-4307-9B53-224DE2ED1FE6}\ShellFolder SUCCESS Query: Name 98 12:38:33,6956207 MCLauncher.exe 6080 RegQueryKey HKCU\Software\Classes\WOW6432Node\CLSID\{018D5C66-4533-4307-9B53-224DE2ED1FE6}\ShellFolder SUCCESS Query: HandleTags, HandleTags: 0x401 98 12:38:33,6956288 MCLauncher.exe 6080 RegOpenKey HKCR\WOW6432Node\CLSID\{018D5C66-4533-4307-9B53-224DE2ED1FE6}\ShellFolder NAME NOT FOUND Desired Access: Maximum Allowed 98 12:38:33,6956371 MCLauncher.exe 6080 RegQueryValue HKCU\Software\Classes\WOW6432Node\CLSID\{018D5C66-4533-4307-9B53-224DE2ED1FE6}\ShellFolder\FolderValueFlags SUCCESS Type: REG_DWORD, Length: 4, Data: 40 98 12:38:33,6956498 MCLauncher.exe 6080 RegCloseKey HKCU\Software\Classes\WOW6432Node\CLSID\{018D5C66-4533-4307-9B53-224DE2ED1FE6}\ShellFolder SUCCESS 98 12:38:33,6956584 MCLauncher.exe 6080 RegQueryKey HKCU SUCCESS Query: HandleTags, HandleTags: 0x0 98 12:38:33,6956634 MCLauncher.exe 6080 RegQueryKey HKCU SUCCESS Query: Name 98 12:38:33,6956709 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Microsoft\Windows\CurrentVersion\Explorer\CLSID\{018D5C66-4533-4307-9B53-224DE2ED1FE6}\ShellFolder NAME NOT FOUND Desired Access: Query Value 98 12:38:33,6956806 MCLauncher.exe 6080 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 98 12:38:33,6956853 MCLauncher.exe 6080 RegQueryKey HKLM SUCCESS Query: Name 98 12:38:33,6956933 MCLauncher.exe 6080 RegOpenKey HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\CLSID\{018D5C66-4533-4307-9B53-224DE2ED1FE6}\ShellFolder NAME NOT FOUND Desired Access: Query Value 98 12:38:33,6957108 MCLauncher.exe 6080 RegQueryKey HKCU SUCCESS Query: HandleTags, HandleTags: 0x0 98 12:38:33,6957230 MCLauncher.exe 6080 RegQueryKey HKCU SUCCESS Query: Name 98 12:38:33,6957329 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Microsoft\Windows\CurrentVersion\Policies\NonEnum NAME NOT FOUND Desired Access: Query Value 98 12:38:33,6957437 MCLauncher.exe 6080 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 98 12:38:33,6957482 MCLauncher.exe 6080 RegQueryKey HKLM SUCCESS Query: Name 98 12:38:33,6957557 MCLauncher.exe 6080 RegOpenKey HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Policies\NonEnum REPARSE Desired Access: Query Value 98 12:38:33,6957626 MCLauncher.exe 6080 RegOpenKey HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\NonEnum SUCCESS Desired Access: Query Value 98 12:38:33,6957690 MCLauncher.exe 6080 RegSetInfoKey HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\NonEnum SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 98 12:38:33,6957734 MCLauncher.exe 6080 RegQueryValue HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\NonEnum\{018D5C66-4533-4307-9B53-224DE2ED1FE6} NAME NOT FOUND Length: 144 98 12:38:33,6957864 MCLauncher.exe 6080 RegCloseKey HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\NonEnum SUCCESS 98 12:38:33,6957944 MCLauncher.exe 6080 RegQueryKey HKCU\Software\Classes SUCCESS Query: Name 98 12:38:33,6958008 MCLauncher.exe 6080 RegQueryKey HKCU\Software\Classes SUCCESS Query: HandleTags, HandleTags: 0x1 98 12:38:33,6958080 MCLauncher.exe 6080 RegQueryKey HKCU\Software\Classes SUCCESS Query: HandleTags, HandleTags: 0x1 98 12:38:33,6958125 MCLauncher.exe 6080 RegQueryKey HKCU\Software\Classes SUCCESS Query: Name 98 12:38:33,6958213 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Classes\WOW6432Node\CLSID\{F5FB2C77-0E2F-4A16-A381-3E560C68BC83}\ShellFolder NAME NOT FOUND Desired Access: Query Value 98 12:38:33,6958316 MCLauncher.exe 6080 RegOpenKey HKCR\WOW6432Node\CLSID\{F5FB2C77-0E2F-4A16-A381-3E560C68BC83}\ShellFolder SUCCESS Desired Access: Query Value 98 12:38:33,6958454 MCLauncher.exe 6080 RegSetInfoKey HKCR\WOW6432Node\CLSID\{F5FB2C77-0E2F-4A16-A381-3E560C68BC83}\ShellFolder SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 98 12:38:33,6958499 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{F5FB2C77-0E2F-4A16-A381-3E560C68BC83}\ShellFolder SUCCESS Query: Name 98 12:38:33,6958560 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{F5FB2C77-0E2F-4A16-A381-3E560C68BC83}\ShellFolder SUCCESS Query: HandleTags, HandleTags: 0x401 98 12:38:33,6958654 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Classes\WOW6432Node\CLSID\{F5FB2C77-0E2F-4A16-A381-3E560C68BC83}\ShellFolder NAME NOT FOUND Desired Access: Maximum Allowed 98 12:38:33,6958717 MCLauncher.exe 6080 RegQueryValue HKCR\WOW6432Node\CLSID\{F5FB2C77-0E2F-4A16-A381-3E560C68BC83}\ShellFolder\Attributes SUCCESS Type: REG_DWORD, Length: 4, Data: 2952790016 98 12:38:33,6958850 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{F5FB2C77-0E2F-4A16-A381-3E560C68BC83}\ShellFolder SUCCESS Query: Name 98 12:38:33,6958917 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{F5FB2C77-0E2F-4A16-A381-3E560C68BC83}\ShellFolder SUCCESS Query: HandleTags, HandleTags: 0x401 98 12:38:33,6959017 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Classes\WOW6432Node\CLSID\{F5FB2C77-0E2F-4A16-A381-3E560C68BC83}\ShellFolder NAME NOT FOUND Desired Access: Maximum Allowed 98 12:38:33,6959089 MCLauncher.exe 6080 RegQueryValue HKCR\WOW6432Node\CLSID\{F5FB2C77-0E2F-4A16-A381-3E560C68BC83}\ShellFolder\CallForAttributes NAME NOT FOUND Length: 144 98 12:38:33,6959197 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{F5FB2C77-0E2F-4A16-A381-3E560C68BC83}\ShellFolder SUCCESS Query: Name 98 12:38:33,6959263 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{F5FB2C77-0E2F-4A16-A381-3E560C68BC83}\ShellFolder SUCCESS Query: HandleTags, HandleTags: 0x401 98 12:38:33,6959360 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Classes\WOW6432Node\CLSID\{F5FB2C77-0E2F-4A16-A381-3E560C68BC83}\ShellFolder NAME NOT FOUND Desired Access: Maximum Allowed 98 12:38:33,6959429 MCLauncher.exe 6080 RegQueryValue HKCR\WOW6432Node\CLSID\{F5FB2C77-0E2F-4A16-A381-3E560C68BC83}\ShellFolder\RestrictedAttributes NAME NOT FOUND Length: 144 98 12:38:33,6959532 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{F5FB2C77-0E2F-4A16-A381-3E560C68BC83}\ShellFolder SUCCESS Query: Name 98 12:38:33,6959596 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{F5FB2C77-0E2F-4A16-A381-3E560C68BC83}\ShellFolder SUCCESS Query: HandleTags, HandleTags: 0x401 98 12:38:33,6959695 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Classes\WOW6432Node\CLSID\{F5FB2C77-0E2F-4A16-A381-3E560C68BC83}\ShellFolder NAME NOT FOUND Desired Access: Maximum Allowed 98 12:38:33,6959765 MCLauncher.exe 6080 RegQueryValue HKCR\WOW6432Node\CLSID\{F5FB2C77-0E2F-4A16-A381-3E560C68BC83}\ShellFolder\FolderValueFlags SUCCESS Type: REG_DWORD, Length: 4, Data: 1040 98 12:38:33,6959895 MCLauncher.exe 6080 RegCloseKey HKCR\WOW6432Node\CLSID\{F5FB2C77-0E2F-4A16-A381-3E560C68BC83}\ShellFolder SUCCESS 98 12:38:33,6959981 MCLauncher.exe 6080 RegQueryKey HKCU SUCCESS Query: HandleTags, HandleTags: 0x0 98 12:38:33,6960031 MCLauncher.exe 6080 RegQueryKey HKCU SUCCESS Query: Name 98 12:38:33,6960105 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Microsoft\Windows\CurrentVersion\Explorer\CLSID\{F5FB2C77-0E2F-4A16-A381-3E560C68BC83}\ShellFolder NAME NOT FOUND Desired Access: Query Value 98 12:38:33,6960208 MCLauncher.exe 6080 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 98 12:38:33,6960255 MCLauncher.exe 6080 RegQueryKey HKLM SUCCESS Query: Name 98 12:38:33,6960335 MCLauncher.exe 6080 RegOpenKey HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\CLSID\{F5FB2C77-0E2F-4A16-A381-3E560C68BC83}\ShellFolder NAME NOT FOUND Desired Access: Query Value 98 12:38:33,6960427 MCLauncher.exe 6080 RegQueryKey HKCU SUCCESS Query: HandleTags, HandleTags: 0x0 98 12:38:33,6960474 MCLauncher.exe 6080 RegQueryKey HKCU SUCCESS Query: Name 98 12:38:33,6960538 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Microsoft\Windows\CurrentVersion\Policies\NonEnum NAME NOT FOUND Desired Access: Query Value 98 12:38:33,6960615 MCLauncher.exe 6080 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 98 12:38:33,6960660 MCLauncher.exe 6080 RegQueryKey HKLM SUCCESS Query: Name 98 12:38:33,6960732 MCLauncher.exe 6080 RegOpenKey HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Policies\NonEnum REPARSE Desired Access: Query Value 98 12:38:33,6960793 MCLauncher.exe 6080 RegOpenKey HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\NonEnum SUCCESS Desired Access: Query Value 98 12:38:33,6960854 MCLauncher.exe 6080 RegSetInfoKey HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\NonEnum SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 98 12:38:33,6960895 MCLauncher.exe 6080 RegQueryValue HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\NonEnum\{F5FB2C77-0E2F-4A16-A381-3E560C68BC83} NAME NOT FOUND Length: 144 98 12:38:33,6961017 MCLauncher.exe 6080 RegCloseKey HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\NonEnum SUCCESS 98 12:38:33,6961560 MCLauncher.exe 6080 RegQueryKey HKCU\Software\Classes SUCCESS Query: Name 98 12:38:33,6961627 MCLauncher.exe 6080 RegQueryKey HKCU\Software\Classes SUCCESS Query: HandleTags, HandleTags: 0x1 98 12:38:33,6961693 MCLauncher.exe 6080 RegQueryKey HKCU\Software\Classes SUCCESS Query: HandleTags, HandleTags: 0x1 98 12:38:33,6961743 MCLauncher.exe 6080 RegQueryKey HKCU\Software\Classes SUCCESS Query: Name 98 12:38:33,6961834 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Classes\WOW6432Node\CLSID\{F5FB2C77-0E2F-4A16-A381-3E560C68BC83}\Instance NAME NOT FOUND Desired Access: Read 98 12:38:33,6961937 MCLauncher.exe 6080 RegOpenKey HKCR\WOW6432Node\CLSID\{F5FB2C77-0E2F-4A16-A381-3E560C68BC83}\Instance SUCCESS Desired Access: Read 98 12:38:33,6962037 MCLauncher.exe 6080 RegSetInfoKey HKCR\WOW6432Node\CLSID\{F5FB2C77-0E2F-4A16-A381-3E560C68BC83}\Instance SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 98 12:38:33,6962086 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{F5FB2C77-0E2F-4A16-A381-3E560C68BC83}\Instance SUCCESS Query: Name 98 12:38:33,6962150 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{F5FB2C77-0E2F-4A16-A381-3E560C68BC83}\Instance SUCCESS Query: HandleTags, HandleTags: 0x401 98 12:38:33,6962242 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Classes\WOW6432Node\CLSID\{F5FB2C77-0E2F-4A16-A381-3E560C68BC83}\Instance NAME NOT FOUND Desired Access: Maximum Allowed 98 12:38:33,6962308 MCLauncher.exe 6080 RegQueryValue HKCR\WOW6432Node\CLSID\{F5FB2C77-0E2F-4A16-A381-3E560C68BC83}\Instance\CLSID SUCCESS Type: REG_SZ, Length: 78, Data: {20D04FE0-3AEA-1069-A2D8-08002B30309D} 98 12:38:33,6962538 MCLauncher.exe 6080 RegQueryKey HKCU\Software\Classes SUCCESS Query: Name 98 12:38:33,6962605 MCLauncher.exe 6080 RegQueryKey HKCU\Software\Classes SUCCESS Query: HandleTags, HandleTags: 0x1 98 12:38:33,6962671 MCLauncher.exe 6080 RegQueryKey HKCU\Software\Classes SUCCESS Query: HandleTags, HandleTags: 0x1 98 12:38:33,6962718 MCLauncher.exe 6080 RegQueryKey HKCU\Software\Classes SUCCESS Query: Name 98 12:38:33,6962804 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Classes\WOW6432Node\CLSID\{20D04FE0-3AEA-1069-A2D8-08002B30309D}\InProcServer32 NAME NOT FOUND Desired Access: Query Value 98 12:38:33,6962912 MCLauncher.exe 6080 RegOpenKey HKCR\WOW6432Node\CLSID\{20D04FE0-3AEA-1069-A2D8-08002B30309D}\InProcServer32 SUCCESS Desired Access: Query Value 98 12:38:33,6963020 MCLauncher.exe 6080 RegSetInfoKey HKCR\WOW6432Node\CLSID\{20D04FE0-3AEA-1069-A2D8-08002B30309D}\InProcServer32 SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 98 12:38:33,6963062 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{20D04FE0-3AEA-1069-A2D8-08002B30309D}\InProcServer32 SUCCESS Query: Name 98 12:38:33,6963120 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{20D04FE0-3AEA-1069-A2D8-08002B30309D}\InProcServer32 SUCCESS Query: HandleTags, HandleTags: 0x401 98 12:38:33,6963206 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Classes\WOW6432Node\CLSID\{20D04FE0-3AEA-1069-A2D8-08002B30309D}\InProcServer32 NAME NOT FOUND Desired Access: Maximum Allowed 98 12:38:33,6963281 MCLauncher.exe 6080 RegQueryValue HKCR\WOW6432Node\CLSID\{20D04FE0-3AEA-1069-A2D8-08002B30309D}\InProcServer32\(Default) SUCCESS Type: REG_EXPAND_SZ, Length: 84, Data: %SystemRoot%\system32\windows.storage.dll 98 12:38:33,6963369 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{20D04FE0-3AEA-1069-A2D8-08002B30309D}\InProcServer32 SUCCESS Query: Name 98 12:38:33,6963425 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{20D04FE0-3AEA-1069-A2D8-08002B30309D}\InProcServer32 SUCCESS Query: HandleTags, HandleTags: 0x401 98 12:38:33,6963505 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Classes\WOW6432Node\CLSID\{20D04FE0-3AEA-1069-A2D8-08002B30309D}\InProcServer32 NAME NOT FOUND Desired Access: Maximum Allowed 98 12:38:33,6963571 MCLauncher.exe 6080 RegQueryValue HKCR\WOW6432Node\CLSID\{20D04FE0-3AEA-1069-A2D8-08002B30309D}\InProcServer32\LoadWithoutCOM NAME NOT FOUND Length: 144 98 12:38:33,6963702 MCLauncher.exe 6080 RegCloseKey HKCR\WOW6432Node\CLSID\{20D04FE0-3AEA-1069-A2D8-08002B30309D}\InProcServer32 SUCCESS 98 12:38:33,6963862 MCLauncher.exe 6080 RegQueryKey HKCU\Software\Classes SUCCESS Query: Name 98 12:38:33,6963926 MCLauncher.exe 6080 RegQueryKey HKCU\Software\Classes SUCCESS Query: HandleTags, HandleTags: 0x1 98 12:38:33,6963995 MCLauncher.exe 6080 RegQueryKey HKCU\Software\Classes SUCCESS Query: HandleTags, HandleTags: 0x1 98 12:38:33,6964042 MCLauncher.exe 6080 RegQueryKey HKCU\Software\Classes SUCCESS Query: Name 98 12:38:33,6964128 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Classes\WOW6432Node\CLSID\{20D04FE0-3AEA-1069-A2D8-08002B30309D} NAME NOT FOUND Desired Access: Read 98 12:38:33,6964234 MCLauncher.exe 6080 RegOpenKey HKCR\WOW6432Node\CLSID\{20D04FE0-3AEA-1069-A2D8-08002B30309D} SUCCESS Desired Access: Read 98 12:38:33,6964317 MCLauncher.exe 6080 RegSetInfoKey HKCR\WOW6432Node\CLSID\{20D04FE0-3AEA-1069-A2D8-08002B30309D} SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 98 12:38:33,6964361 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{20D04FE0-3AEA-1069-A2D8-08002B30309D} SUCCESS Query: Name 98 12:38:33,6964419 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{20D04FE0-3AEA-1069-A2D8-08002B30309D} SUCCESS Query: HandleTags, HandleTags: 0x401 98 12:38:33,6964508 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Classes\WOW6432Node\CLSID\{20D04FE0-3AEA-1069-A2D8-08002B30309D}\TreatAs NAME NOT FOUND Desired Access: Query Value 98 12:38:33,6964591 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{20D04FE0-3AEA-1069-A2D8-08002B30309D} SUCCESS Query: HandleTags, HandleTags: 0x401 98 12:38:33,6964644 MCLauncher.exe 6080 RegOpenKey HKCR\WOW6432Node\CLSID\{20D04FE0-3AEA-1069-A2D8-08002B30309D}\TreatAs NAME NOT FOUND Desired Access: Query Value 98 12:38:33,6964705 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{20D04FE0-3AEA-1069-A2D8-08002B30309D} SUCCESS Query: Name 98 12:38:33,6964785 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{20D04FE0-3AEA-1069-A2D8-08002B30309D} SUCCESS Query: Name 98 12:38:33,6964838 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{20D04FE0-3AEA-1069-A2D8-08002B30309D} SUCCESS Query: HandleTags, HandleTags: 0x401 98 12:38:33,6964921 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Classes\WOW6432Node\CLSID\{20D04FE0-3AEA-1069-A2D8-08002B30309D} NAME NOT FOUND Desired Access: Maximum Allowed 98 12:38:33,6964984 MCLauncher.exe 6080 RegQueryValue HKCR\WOW6432Node\CLSID\{20D04FE0-3AEA-1069-A2D8-08002B30309D}\(Default) SUCCESS Type: REG_SZ, Length: 16, Data: This PC 98 12:38:33,6965048 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{20D04FE0-3AEA-1069-A2D8-08002B30309D} SUCCESS Query: Name 98 12:38:33,6965104 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{20D04FE0-3AEA-1069-A2D8-08002B30309D} SUCCESS Query: HandleTags, HandleTags: 0x401 98 12:38:33,6965181 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Classes\WOW6432Node\CLSID\{20D04FE0-3AEA-1069-A2D8-08002B30309D} NAME NOT FOUND Desired Access: Maximum Allowed 98 12:38:33,6965242 MCLauncher.exe 6080 RegQueryValue HKCR\WOW6432Node\CLSID\{20D04FE0-3AEA-1069-A2D8-08002B30309D}\(Default) SUCCESS Type: REG_SZ, Length: 16, Data: This PC 98 12:38:33,6965303 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{20D04FE0-3AEA-1069-A2D8-08002B30309D} SUCCESS Query: Name 98 12:38:33,6965356 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{20D04FE0-3AEA-1069-A2D8-08002B30309D} SUCCESS Query: HandleTags, HandleTags: 0x401 98 12:38:33,6965439 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Classes\WOW6432Node\CLSID\{20D04FE0-3AEA-1069-A2D8-08002B30309D}\InprocServer32 NAME NOT FOUND Desired Access: Read 98 12:38:33,6965516 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{20D04FE0-3AEA-1069-A2D8-08002B30309D} SUCCESS Query: HandleTags, HandleTags: 0x401 98 12:38:33,6965566 MCLauncher.exe 6080 RegOpenKey HKCR\WOW6432Node\CLSID\{20D04FE0-3AEA-1069-A2D8-08002B30309D}\InprocServer32 SUCCESS Desired Access: Read 98 12:38:33,6965636 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{20D04FE0-3AEA-1069-A2D8-08002B30309D}\InProcServer32 SUCCESS Query: Name 98 12:38:33,6965694 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{20D04FE0-3AEA-1069-A2D8-08002B30309D}\InProcServer32 SUCCESS Query: HandleTags, HandleTags: 0x401 98 12:38:33,6965771 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Classes\WOW6432Node\CLSID\{20D04FE0-3AEA-1069-A2D8-08002B30309D}\InProcServer32 NAME NOT FOUND Desired Access: Maximum Allowed 98 12:38:33,6965835 MCLauncher.exe 6080 RegQueryValue HKCR\WOW6432Node\CLSID\{20D04FE0-3AEA-1069-A2D8-08002B30309D}\InProcServer32\InprocServer32 NAME NOT FOUND Length: 144 98 12:38:33,6965954 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{20D04FE0-3AEA-1069-A2D8-08002B30309D}\InProcServer32 SUCCESS Query: Name 98 12:38:33,6966021 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{20D04FE0-3AEA-1069-A2D8-08002B30309D}\InProcServer32 SUCCESS Query: HandleTags, HandleTags: 0x401 98 12:38:33,6966120 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Classes\WOW6432Node\CLSID\{20D04FE0-3AEA-1069-A2D8-08002B30309D}\InProcServer32 NAME NOT FOUND Desired Access: Maximum Allowed 98 12:38:33,6966195 MCLauncher.exe 6080 RegQueryValue HKCR\WOW6432Node\CLSID\{20D04FE0-3AEA-1069-A2D8-08002B30309D}\InProcServer32\(Default) SUCCESS Type: REG_EXPAND_SZ, Length: 84, Data: %SystemRoot%\system32\windows.storage.dll 98 12:38:33,6966251 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{20D04FE0-3AEA-1069-A2D8-08002B30309D}\InProcServer32 SUCCESS Query: Name 98 12:38:33,6966306 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{20D04FE0-3AEA-1069-A2D8-08002B30309D}\InProcServer32 SUCCESS Query: HandleTags, HandleTags: 0x401 98 12:38:33,6966386 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Classes\WOW6432Node\CLSID\{20D04FE0-3AEA-1069-A2D8-08002B30309D}\InProcServer32 NAME NOT FOUND Desired Access: Maximum Allowed 98 12:38:33,6966447 MCLauncher.exe 6080 RegQueryValue HKCR\WOW6432Node\CLSID\{20D04FE0-3AEA-1069-A2D8-08002B30309D}\InProcServer32\(Default) SUCCESS Type: REG_EXPAND_SZ, Length: 84, Data: %SystemRoot%\system32\windows.storage.dll 98 12:38:33,6966514 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{20D04FE0-3AEA-1069-A2D8-08002B30309D}\InProcServer32 SUCCESS Query: Name 98 12:38:33,6966566 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{20D04FE0-3AEA-1069-A2D8-08002B30309D}\InProcServer32 SUCCESS Query: HandleTags, HandleTags: 0x401 98 12:38:33,6966650 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Classes\WOW6432Node\CLSID\{20D04FE0-3AEA-1069-A2D8-08002B30309D}\InProcServer32 NAME NOT FOUND Desired Access: Maximum Allowed 98 12:38:33,6966710 MCLauncher.exe 6080 RegQueryValue HKCR\WOW6432Node\CLSID\{20D04FE0-3AEA-1069-A2D8-08002B30309D}\InProcServer32\(Default) SUCCESS Type: REG_EXPAND_SZ, Length: 84, Data: %SystemRoot%\system32\windows.storage.dll 98 12:38:33,6966769 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{20D04FE0-3AEA-1069-A2D8-08002B30309D}\InProcServer32 SUCCESS Query: Name 98 12:38:33,6966943 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{20D04FE0-3AEA-1069-A2D8-08002B30309D}\InProcServer32 SUCCESS Query: HandleTags, HandleTags: 0x401 98 12:38:33,6967054 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Classes\WOW6432Node\CLSID\{20D04FE0-3AEA-1069-A2D8-08002B30309D}\InProcServer32 NAME NOT FOUND Desired Access: Maximum Allowed 98 12:38:33,6967134 MCLauncher.exe 6080 RegQueryValue HKCR\WOW6432Node\CLSID\{20D04FE0-3AEA-1069-A2D8-08002B30309D}\InProcServer32\ThreadingModel SUCCESS Type: REG_SZ, Length: 20, Data: Apartment 98 12:38:33,6967292 MCLauncher.exe 6080 RegCloseKey HKCR\WOW6432Node\CLSID\{20D04FE0-3AEA-1069-A2D8-08002B30309D}\InProcServer32 SUCCESS 98 12:38:33,6967339 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{20D04FE0-3AEA-1069-A2D8-08002B30309D} SUCCESS Query: Name 98 12:38:33,6967406 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{20D04FE0-3AEA-1069-A2D8-08002B30309D} SUCCESS Query: HandleTags, HandleTags: 0x401 98 12:38:33,6967506 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Classes\WOW6432Node\CLSID\{20D04FE0-3AEA-1069-A2D8-08002B30309D}\InprocHandler32 NAME NOT FOUND Desired Access: Query Value 98 12:38:33,6967603 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{20D04FE0-3AEA-1069-A2D8-08002B30309D} SUCCESS Query: HandleTags, HandleTags: 0x401 98 12:38:33,6967658 MCLauncher.exe 6080 RegOpenKey HKCR\WOW6432Node\CLSID\{20D04FE0-3AEA-1069-A2D8-08002B30309D}\InprocHandler32 NAME NOT FOUND Desired Access: Query Value 98 12:38:33,6967722 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{20D04FE0-3AEA-1069-A2D8-08002B30309D} SUCCESS Query: Name 98 12:38:33,6967774 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{20D04FE0-3AEA-1069-A2D8-08002B30309D} SUCCESS Query: HandleTags, HandleTags: 0x401 98 12:38:33,6967855 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Classes\WOW6432Node\CLSID\{20D04FE0-3AEA-1069-A2D8-08002B30309D}\InprocHandler NAME NOT FOUND Desired Access: Query Value 98 12:38:33,6967932 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{20D04FE0-3AEA-1069-A2D8-08002B30309D} SUCCESS Query: HandleTags, HandleTags: 0x401 98 12:38:33,6967982 MCLauncher.exe 6080 RegOpenKey HKCR\WOW6432Node\CLSID\{20D04FE0-3AEA-1069-A2D8-08002B30309D}\InprocHandler NAME NOT FOUND Desired Access: Query Value 98 12:38:33,6968057 MCLauncher.exe 6080 RegCloseKey HKCR\WOW6432Node\CLSID\{20D04FE0-3AEA-1069-A2D8-08002B30309D} SUCCESS 98 12:38:33,6968268 MCLauncher.exe 6080 RegQueryKey HKCU\Software\Classes SUCCESS Query: Name 98 12:38:33,6968326 MCLauncher.exe 6080 RegQueryKey HKCU\Software\Classes SUCCESS Query: HandleTags, HandleTags: 0x1 98 12:38:33,6968389 MCLauncher.exe 6080 RegQueryKey HKCU\Software\Classes SUCCESS Query: HandleTags, HandleTags: 0x1 98 12:38:33,6968437 MCLauncher.exe 6080 RegQueryKey HKCU\Software\Classes SUCCESS Query: Name 98 12:38:33,6968517 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Classes\WOW6432Node\CLSID\{20D04FE0-3AEA-1069-A2D8-08002B30309D} NAME NOT FOUND Desired Access: Read 98 12:38:33,6968611 MCLauncher.exe 6080 RegOpenKey HKCR\WOW6432Node\CLSID\{20D04FE0-3AEA-1069-A2D8-08002B30309D} SUCCESS Desired Access: Read 98 12:38:33,6968686 MCLauncher.exe 6080 RegSetInfoKey HKCR\WOW6432Node\CLSID\{20D04FE0-3AEA-1069-A2D8-08002B30309D} SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 98 12:38:33,6968730 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{20D04FE0-3AEA-1069-A2D8-08002B30309D} SUCCESS Query: Name 98 12:38:33,6968786 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{20D04FE0-3AEA-1069-A2D8-08002B30309D} SUCCESS Query: HandleTags, HandleTags: 0x401 98 12:38:33,6968872 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Classes\WOW6432Node\CLSID\{20D04FE0-3AEA-1069-A2D8-08002B30309D}\TreatAs NAME NOT FOUND Desired Access: Read 98 12:38:33,6968952 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{20D04FE0-3AEA-1069-A2D8-08002B30309D} SUCCESS Query: HandleTags, HandleTags: 0x401 98 12:38:33,6969005 MCLauncher.exe 6080 RegOpenKey HKCR\WOW6432Node\CLSID\{20D04FE0-3AEA-1069-A2D8-08002B30309D}\TreatAs NAME NOT FOUND Desired Access: Read 98 12:38:33,6969071 MCLauncher.exe 6080 RegCloseKey HKCR\WOW6432Node\CLSID\{20D04FE0-3AEA-1069-A2D8-08002B30309D} SUCCESS 98 12:38:33,6969320 MCLauncher.exe 6080 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 98 12:38:33,6969367 MCLauncher.exe 6080 RegQueryKey HKLM SUCCESS Query: Name 98 12:38:33,6969451 MCLauncher.exe 6080 RegOpenKey HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\MyComputer\NameSpace SUCCESS Desired Access: Query Value 98 12:38:33,6969545 MCLauncher.exe 6080 RegSetInfoKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\MyComputer\NameSpace SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 98 12:38:33,6969592 MCLauncher.exe 6080 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\MyComputer\NameSpace\ValidateRegItems NAME NOT FOUND Length: 144 98 12:38:33,6969736 MCLauncher.exe 6080 RegCloseKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\MyComputer\NameSpace SUCCESS 98 12:38:33,6969808 MCLauncher.exe 6080 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 98 12:38:33,6969858 MCLauncher.exe 6080 RegQueryKey HKLM SUCCESS Query: Name 98 12:38:33,6969944 MCLauncher.exe 6080 RegOpenKey HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\MyComputer\NameSpace SUCCESS Desired Access: Query Value 98 12:38:33,6970024 MCLauncher.exe 6080 RegSetInfoKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\MyComputer\NameSpace SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 98 12:38:33,6970068 MCLauncher.exe 6080 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\MyComputer\NameSpace\MonitorRegistry NAME NOT FOUND Length: 144 98 12:38:33,6970190 MCLauncher.exe 6080 RegCloseKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\MyComputer\NameSpace SUCCESS 98 12:38:33,6970334 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{F5FB2C77-0E2F-4A16-A381-3E560C68BC83}\Instance SUCCESS Query: Name 98 12:38:33,6970406 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{F5FB2C77-0E2F-4A16-A381-3E560C68BC83}\Instance SUCCESS Query: HandleTags, HandleTags: 0x401 98 12:38:33,6970575 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Classes\WOW6432Node\CLSID\{F5FB2C77-0E2F-4A16-A381-3E560C68BC83}\Instance\InitPropertyBag NAME NOT FOUND Desired Access: Read 98 12:38:33,6970675 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{F5FB2C77-0E2F-4A16-A381-3E560C68BC83}\Instance SUCCESS Query: HandleTags, HandleTags: 0x401 98 12:38:33,6970728 MCLauncher.exe 6080 RegOpenKey HKCR\WOW6432Node\CLSID\{F5FB2C77-0E2F-4A16-A381-3E560C68BC83}\Instance\InitPropertyBag SUCCESS Desired Access: Read 98 12:38:33,6971013 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{F5FB2C77-0E2F-4A16-A381-3E560C68BC83}\Instance\InitPropertyBag SUCCESS Query: Name 98 12:38:33,6971085 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{F5FB2C77-0E2F-4A16-A381-3E560C68BC83}\Instance\InitPropertyBag SUCCESS Query: HandleTags, HandleTags: 0x401 98 12:38:33,6971185 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Classes\WOW6432Node\CLSID\{F5FB2C77-0E2F-4A16-A381-3E560C68BC83}\Instance\InitPropertyBag NAME NOT FOUND Desired Access: Maximum Allowed 98 12:38:33,6971265 MCLauncher.exe 6080 RegQueryValue HKCR\WOW6432Node\CLSID\{F5FB2C77-0E2F-4A16-A381-3E560C68BC83}\Instance\InitPropertyBag\HideNonRemovableDrives SUCCESS Type: REG_DWORD, Length: 4, Data: 1 98 12:38:33,6971404 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{F5FB2C77-0E2F-4A16-A381-3E560C68BC83}\Instance\InitPropertyBag SUCCESS Query: Name 98 12:38:33,6971473 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{F5FB2C77-0E2F-4A16-A381-3E560C68BC83}\Instance\InitPropertyBag SUCCESS Query: HandleTags, HandleTags: 0x401 98 12:38:33,6971573 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Classes\WOW6432Node\CLSID\{F5FB2C77-0E2F-4A16-A381-3E560C68BC83}\Instance\InitPropertyBag NAME NOT FOUND Desired Access: Maximum Allowed 98 12:38:33,6971648 MCLauncher.exe 6080 RegQueryValue HKCR\WOW6432Node\CLSID\{F5FB2C77-0E2F-4A16-A381-3E560C68BC83}\Instance\InitPropertyBag\HideNonRemovableDrives SUCCESS Type: REG_DWORD, Length: 4, Data: 1 98 12:38:33,6971853 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{F5FB2C77-0E2F-4A16-A381-3E560C68BC83}\Instance\InitPropertyBag SUCCESS Query: Name 98 12:38:33,6971922 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{F5FB2C77-0E2F-4A16-A381-3E560C68BC83}\Instance\InitPropertyBag SUCCESS Query: HandleTags, HandleTags: 0x401 98 12:38:33,6972019 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Classes\WOW6432Node\CLSID\{F5FB2C77-0E2F-4A16-A381-3E560C68BC83}\Instance\InitPropertyBag NAME NOT FOUND Desired Access: Maximum Allowed 98 12:38:33,6972091 MCLauncher.exe 6080 RegQueryValue HKCR\WOW6432Node\CLSID\{F5FB2C77-0E2F-4A16-A381-3E560C68BC83}\Instance\InitPropertyBag\AllowChildAliasRegistration NAME NOT FOUND Length: 144 98 12:38:33,6972210 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{F5FB2C77-0E2F-4A16-A381-3E560C68BC83}\Instance\InitPropertyBag SUCCESS Query: Name 98 12:38:33,6972279 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{F5FB2C77-0E2F-4A16-A381-3E560C68BC83}\Instance\InitPropertyBag SUCCESS Query: HandleTags, HandleTags: 0x401 98 12:38:33,6972376 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Classes\WOW6432Node\CLSID\{F5FB2C77-0E2F-4A16-A381-3E560C68BC83}\Instance\InitPropertyBag NAME NOT FOUND Desired Access: Maximum Allowed 98 12:38:33,6972448 MCLauncher.exe 6080 RegQueryValue HKCR\WOW6432Node\CLSID\{F5FB2C77-0E2F-4A16-A381-3E560C68BC83}\Instance\InitPropertyBag\UseRemovableStorageRegPath NAME NOT FOUND Length: 144 98 12:38:33,6972562 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{F5FB2C77-0E2F-4A16-A381-3E560C68BC83}\Instance\InitPropertyBag SUCCESS Query: Name 98 12:38:33,6972631 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{F5FB2C77-0E2F-4A16-A381-3E560C68BC83}\Instance\InitPropertyBag SUCCESS Query: HandleTags, HandleTags: 0x401 98 12:38:33,6972728 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Classes\WOW6432Node\CLSID\{F5FB2C77-0E2F-4A16-A381-3E560C68BC83}\Instance\InitPropertyBag NAME NOT FOUND Desired Access: Maximum Allowed 98 12:38:33,6972800 MCLauncher.exe 6080 RegQueryValue HKCR\WOW6432Node\CLSID\{F5FB2C77-0E2F-4A16-A381-3E560C68BC83}\Instance\InitPropertyBag\UseRemovableDrivesRegPath SUCCESS Type: REG_DWORD, Length: 4, Data: 1 98 12:38:33,6972928 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{F5FB2C77-0E2F-4A16-A381-3E560C68BC83}\Instance\InitPropertyBag SUCCESS Query: Name 98 12:38:33,6972994 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{F5FB2C77-0E2F-4A16-A381-3E560C68BC83}\Instance\InitPropertyBag SUCCESS Query: HandleTags, HandleTags: 0x401 98 12:38:33,6973091 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Classes\WOW6432Node\CLSID\{F5FB2C77-0E2F-4A16-A381-3E560C68BC83}\Instance\InitPropertyBag NAME NOT FOUND Desired Access: Maximum Allowed 98 12:38:33,6973163 MCLauncher.exe 6080 RegQueryValue HKCR\WOW6432Node\CLSID\{F5FB2C77-0E2F-4A16-A381-3E560C68BC83}\Instance\InitPropertyBag\UseRemovableDrivesRegPath SUCCESS Type: REG_DWORD, Length: 4, Data: 1 98 12:38:33,6973327 MCLauncher.exe 6080 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 98 12:38:33,6973376 MCLauncher.exe 6080 RegQueryKey HKLM SUCCESS Query: Name 98 12:38:33,6973462 MCLauncher.exe 6080 RegOpenKey HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\MyComputer\RemovableDrives NAME NOT FOUND Desired Access: Query Value 98 12:38:33,6973570 MCLauncher.exe 6080 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 98 12:38:33,6973615 MCLauncher.exe 6080 RegQueryKey HKLM SUCCESS Query: Name 98 12:38:33,6973687 MCLauncher.exe 6080 RegOpenKey HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\MyComputer\RemovableDrives NAME NOT FOUND Desired Access: Query Value 98 12:38:33,6973762 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{F5FB2C77-0E2F-4A16-A381-3E560C68BC83}\Instance\InitPropertyBag SUCCESS Query: Name 98 12:38:33,6973825 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{F5FB2C77-0E2F-4A16-A381-3E560C68BC83}\Instance\InitPropertyBag SUCCESS Query: HandleTags, HandleTags: 0x401 98 12:38:33,6973917 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Classes\WOW6432Node\CLSID\{F5FB2C77-0E2F-4A16-A381-3E560C68BC83}\Instance\InitPropertyBag NAME NOT FOUND Desired Access: Maximum Allowed 98 12:38:33,6973986 MCLauncher.exe 6080 RegQueryValue HKCR\WOW6432Node\CLSID\{F5FB2C77-0E2F-4A16-A381-3E560C68BC83}\Instance\InitPropertyBag\NoDelegateSearchRoot NAME NOT FOUND Length: 144 98 12:38:33,6974102 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{F5FB2C77-0E2F-4A16-A381-3E560C68BC83}\Instance\InitPropertyBag SUCCESS Query: Name 98 12:38:33,6974172 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{F5FB2C77-0E2F-4A16-A381-3E560C68BC83}\Instance\InitPropertyBag SUCCESS Query: HandleTags, HandleTags: 0x401 98 12:38:33,6974269 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Classes\WOW6432Node\CLSID\{F5FB2C77-0E2F-4A16-A381-3E560C68BC83}\Instance\InitPropertyBag NAME NOT FOUND Desired Access: Maximum Allowed 98 12:38:33,6974343 MCLauncher.exe 6080 RegQueryValue HKCR\WOW6432Node\CLSID\{F5FB2C77-0E2F-4A16-A381-3E560C68BC83}\Instance\InitPropertyBag\HideNonStorageServiceMountedDrives NAME NOT FOUND Length: 144 98 12:38:33,6974460 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{F5FB2C77-0E2F-4A16-A381-3E560C68BC83}\Instance\InitPropertyBag SUCCESS Query: Name 98 12:38:33,6974529 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{F5FB2C77-0E2F-4A16-A381-3E560C68BC83}\Instance\InitPropertyBag SUCCESS Query: HandleTags, HandleTags: 0x401 98 12:38:33,6974626 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Classes\WOW6432Node\CLSID\{F5FB2C77-0E2F-4A16-A381-3E560C68BC83}\Instance\InitPropertyBag NAME NOT FOUND Desired Access: Maximum Allowed 98 12:38:33,6974698 MCLauncher.exe 6080 RegQueryValue HKCR\WOW6432Node\CLSID\{F5FB2C77-0E2F-4A16-A381-3E560C68BC83}\Instance\InitPropertyBag\ForceAllDrivesRemovable NAME NOT FOUND Length: 144 98 12:38:33,6974812 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{F5FB2C77-0E2F-4A16-A381-3E560C68BC83}\Instance\InitPropertyBag SUCCESS Query: Name 98 12:38:33,6974881 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{F5FB2C77-0E2F-4A16-A381-3E560C68BC83}\Instance\InitPropertyBag SUCCESS Query: HandleTags, HandleTags: 0x401 98 12:38:33,6974978 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Classes\WOW6432Node\CLSID\{F5FB2C77-0E2F-4A16-A381-3E560C68BC83}\Instance\InitPropertyBag NAME NOT FOUND Desired Access: Maximum Allowed 98 12:38:33,6975050 MCLauncher.exe 6080 RegQueryValue HKCR\WOW6432Node\CLSID\{F5FB2C77-0E2F-4A16-A381-3E560C68BC83}\Instance\InitPropertyBag\ShowAllOpticalDevices NAME NOT FOUND Length: 144 98 12:38:33,6975188 MCLauncher.exe 6080 RegCloseKey HKCR\WOW6432Node\CLSID\{F5FB2C77-0E2F-4A16-A381-3E560C68BC83}\Instance SUCCESS 98 12:38:33,6975236 MCLauncher.exe 6080 RegCloseKey HKCR\WOW6432Node\CLSID\{F5FB2C77-0E2F-4A16-A381-3E560C68BC83}\Instance\InitPropertyBag SUCCESS 98 12:38:33,6975427 MCLauncher.exe 6080 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 98 12:38:33,6975477 MCLauncher.exe 6080 RegQueryKey HKLM SUCCESS Query: Name 98 12:38:33,6975565 MCLauncher.exe 6080 RegOpenKey HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\MyComputer\RemovableDrives NAME NOT FOUND Desired Access: Read 98 12:38:33,6975670 MCLauncher.exe 6080 RegQueryKey HKCU SUCCESS Query: HandleTags, HandleTags: 0x0 98 12:38:33,6975718 MCLauncher.exe 6080 RegQueryKey HKCU SUCCESS Query: Name 98 12:38:33,6975787 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Microsoft\Windows\CurrentVersion\Explorer\MyComputer\RemovableDrives NAME NOT FOUND Desired Access: Read 98 12:38:33,6975900 MCLauncher.exe 6080 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 98 12:38:33,6975945 MCLauncher.exe 6080 RegQueryKey HKLM SUCCESS Query: Name 98 12:38:33,6976022 MCLauncher.exe 6080 RegOpenKey HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\MyComputer\RemovableDrives\DelegateFolders NAME NOT FOUND Desired Access: Read 98 12:38:33,6976103 MCLauncher.exe 6080 RegQueryKey HKCU SUCCESS Query: HandleTags, HandleTags: 0x0 98 12:38:33,6976147 MCLauncher.exe 6080 RegQueryKey HKCU SUCCESS Query: Name 98 12:38:33,6976214 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Microsoft\Windows\CurrentVersion\Explorer\MyComputer\RemovableDrives\DelegateFolders NAME NOT FOUND Desired Access: Read 98 12:38:33,6976327 MCLauncher.exe 6080 RegQueryKey HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer SUCCESS Query: HandleTags, HandleTags: 0x400 98 12:38:33,6976377 MCLauncher.exe 6080 RegOpenKey HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\SessionInfo\1 SUCCESS Desired Access: Query Value 98 12:38:33,6976479 MCLauncher.exe 6080 RegQueryKey HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\SessionInfo\1 SUCCESS Query: HandleTags, HandleTags: 0x400 98 12:38:33,6976529 MCLauncher.exe 6080 RegOpenKey HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\SessionInfo\1\MyComputer\RemovableDrives NAME NOT FOUND Desired Access: Read 98 12:38:33,6976831 MCLauncher.exe 6080 RegQueryKey HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\SessionInfo\1 SUCCESS Query: HandleTags, HandleTags: 0x400 98 12:38:33,6976920 MCLauncher.exe 6080 RegOpenKey HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\SessionInfo\1\MyComputer\RemovableDrives\DelegateFolders NAME NOT FOUND Desired Access: Read 98 12:38:33,6977014 MCLauncher.exe 6080 RegCloseKey HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\SessionInfo\1 SUCCESS 98 12:38:33,6977100 MCLauncher.exe 6080 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 98 12:38:33,6977153 MCLauncher.exe 6080 RegQueryKey HKLM SUCCESS Query: Name 98 12:38:33,6977239 MCLauncher.exe 6080 RegOpenKey HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\MyComputer\RemovableDrives\DelegateFolders NAME NOT FOUND Desired Access: Query Value 98 12:38:33,6977333 MCLauncher.exe 6080 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 98 12:38:33,6977380 MCLauncher.exe 6080 RegQueryKey HKLM SUCCESS Query: Name 98 12:38:33,6977452 MCLauncher.exe 6080 RegOpenKey HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\MyComputer\RemovableDrives\DelegateFolders NAME NOT FOUND Desired Access: Query Value 98 12:38:33,6977809 MCLauncher.exe 6080 RegQueryKey HKCU SUCCESS Query: HandleTags, HandleTags: 0x0 98 12:38:33,6977856 MCLauncher.exe 6080 RegQueryKey HKCU SUCCESS Query: Name 98 12:38:33,6977931 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\CPC\Volume SUCCESS Desired Access: Read 98 12:38:33,6978039 MCLauncher.exe 6080 RegSetInfoKey HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\CPC\Volume SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 98 12:38:33,6978103 MCLauncher.exe 6080 RegQueryKey HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\CPC\Volume SUCCESS Query: HandleTags, HandleTags: 0x400 98 12:38:33,6978156 MCLauncher.exe 6080 RegOpenKey HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\CPC\Volume\{110924bd-0000-0000-0000-501f00000000}\ SUCCESS Desired Access: Read 98 12:38:33,6978239 MCLauncher.exe 6080 RegCloseKey HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\CPC\Volume SUCCESS 98 12:38:33,6978286 MCLauncher.exe 6080 RegQueryValue HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\CPC\Volume\{110924bd-0000-0000-0000-501f00000000}\Generation SUCCESS Type: REG_DWORD, Length: 4, Data: 1 98 12:38:33,6978436 MCLauncher.exe 6080 RegCloseKey HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\CPC\Volume\{110924bd-0000-0000-0000-501f00000000} SUCCESS 98 12:38:33,6978956 MCLauncher.exe 6080 CreateFile C:\ SUCCESS Desired Access: Read Attributes, Disposition: Open, Options: Open Reparse Point, Attributes: n/a, ShareMode: Read, Write, Delete, AllocationSize: n/a, OpenResult: Opened 98 12:38:33,6979353 MCLauncher.exe 6080 QueryBasicInformationFile C:\ SUCCESS CreationTime: 16.07.2016 9:04:24, LastAccessTime: 23.08.2018 15:22:34, LastWriteTime: 23.08.2018 15:22:34, ChangeTime: 23.08.2018 15:22:34, FileAttributes: HSD 98 12:38:33,6979444 MCLauncher.exe 6080 CloseFile C:\ SUCCESS 98 12:38:33,6982018 MCLauncher.exe 6080 CreateFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Desired Access: Read Attributes, Disposition: Open, Options: Open Reparse Point, Attributes: n/a, ShareMode: Read, Write, Delete, AllocationSize: n/a, OpenResult: Opened 98 12:38:33,6982198 MCLauncher.exe 6080 QueryBasicInformationFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS CreationTime: 24.08.2018 12:30:11, LastAccessTime: 24.08.2018 12:30:11, LastWriteTime: 24.08.2018 12:38:31, ChangeTime: 24.08.2018 12:38:31, FileAttributes: A 98 12:38:33,6982276 MCLauncher.exe 6080 CloseFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS 98 12:38:33,6984159 MCLauncher.exe 6080 RegOpenKey HKLM\Software\WOW6432Node\Policies\Microsoft\MUI\Settings REPARSE Desired Access: Read 98 12:38:33,6984268 MCLauncher.exe 6080 RegOpenKey HKLM\SOFTWARE\Policies\Microsoft\MUI\Settings NAME NOT FOUND Desired Access: Read 98 12:38:33,6984392 MCLauncher.exe 6080 RegOpenKey HKCU SUCCESS Desired Access: Maximum Allowed, Granted Access: All Access 98 12:38:33,6984514 MCLauncher.exe 6080 RegQueryKey HKCU SUCCESS Query: HandleTags, HandleTags: 0x0 98 12:38:33,6984572 MCLauncher.exe 6080 RegQueryKey HKCU SUCCESS Query: Name 98 12:38:33,6984647 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Policies\Microsoft\Control Panel\Desktop NAME NOT FOUND Desired Access: Read 98 12:38:33,6984750 MCLauncher.exe 6080 RegQueryKey HKCU SUCCESS Query: HandleTags, HandleTags: 0x0 98 12:38:33,6984797 MCLauncher.exe 6080 RegQueryKey HKCU SUCCESS Query: Name 98 12:38:33,6984863 MCLauncher.exe 6080 RegOpenKey HKCU\Control Panel\Desktop SUCCESS Desired Access: Read 98 12:38:33,6984955 MCLauncher.exe 6080 RegSetInfoKey HKCU\Control Panel\Desktop SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 98 12:38:33,6985002 MCLauncher.exe 6080 RegQueryValue HKCU\Control Panel\Desktop\PreferredUILanguages NAME NOT FOUND Length: 12 98 12:38:33,6985174 MCLauncher.exe 6080 RegCloseKey HKCU\Control Panel\Desktop SUCCESS 98 12:38:33,6985226 MCLauncher.exe 6080 RegCloseKey HKCU SUCCESS 98 12:38:33,6985312 MCLauncher.exe 6080 RegOpenKey HKLM\Software\WOW6432Node\Policies\Microsoft\MUI\Settings REPARSE Desired Access: Read 98 12:38:33,6985384 MCLauncher.exe 6080 RegOpenKey HKLM\SOFTWARE\Policies\Microsoft\MUI\Settings NAME NOT FOUND Desired Access: Read 98 12:38:33,6985476 MCLauncher.exe 6080 RegOpenKey HKCU SUCCESS Desired Access: Maximum Allowed, Granted Access: All Access 98 12:38:33,6985567 MCLauncher.exe 6080 RegQueryKey HKCU SUCCESS Query: HandleTags, HandleTags: 0x0 98 12:38:33,6985614 MCLauncher.exe 6080 RegQueryKey HKCU SUCCESS Query: Name 98 12:38:33,6985683 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Policies\Microsoft\Control Panel\Desktop NAME NOT FOUND Desired Access: Read 98 12:38:33,6985766 MCLauncher.exe 6080 RegQueryKey HKCU SUCCESS Query: HandleTags, HandleTags: 0x0 98 12:38:33,6985814 MCLauncher.exe 6080 RegQueryKey HKCU SUCCESS Query: Name 98 12:38:33,6985877 MCLauncher.exe 6080 RegOpenKey HKCU\Control Panel\Desktop\LanguageConfiguration SUCCESS Desired Access: Read 98 12:38:33,6985958 MCLauncher.exe 6080 RegSetInfoKey HKCU\Control Panel\Desktop\LanguageConfiguration SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 98 12:38:33,6986005 MCLauncher.exe 6080 RegEnumValue HKCU\Control Panel\Desktop\LanguageConfiguration NO MORE ENTRIES Index: 0, Length: 512 98 12:38:33,6986190 MCLauncher.exe 6080 RegCloseKey HKCU\Control Panel\Desktop\LanguageConfiguration SUCCESS 98 12:38:33,6986254 MCLauncher.exe 6080 RegCloseKey HKCU SUCCESS 98 12:38:33,6998547 MCLauncher.exe 6080 CreateFile C:\Users\User\Desktop\MCLauncher.lnk SUCCESS Desired Access: Read Attributes, Disposition: Open, Options: Open Reparse Point, Attributes: n/a, ShareMode: Read, Write, Delete, AllocationSize: n/a, OpenResult: Opened 98 12:38:33,6998738 MCLauncher.exe 6080 QueryBasicInformationFile C:\Users\User\Desktop\MCLauncher.lnk SUCCESS CreationTime: 24.08.2018 12:30:14, LastAccessTime: 24.08.2018 12:30:14, LastWriteTime: 24.08.2018 12:30:14, ChangeTime: 24.08.2018 12:30:14, FileAttributes: A 98 12:38:33,6998827 MCLauncher.exe 6080 CloseFile C:\Users\User\Desktop\MCLauncher.lnk SUCCESS 98 12:38:33,7000162 MCLauncher.exe 6080 CreateFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Desired Access: Generic Read, Disposition: Open, Options: Synchronous IO Non-Alert, Non-Directory File, Attributes: N, ShareMode: Read, Delete, AllocationSize: n/a, OpenResult: Opened 98 12:38:33,7000420 MCLauncher.exe 6080 QueryStandardInformationFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS AllocationSize: 17 244 160, EndOfFile: 17 240 149, NumberOfLinks: 1, DeletePending: False, Directory: False 98 12:38:33,7000583 MCLauncher.exe 6080 CreateFileMapping C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS SyncType: SyncTypeOther 98 12:38:33,7002149 MCLauncher.exe 6080 CreateFileMapping C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe FILE LOCKED WITH ONLY READERS SyncType: SyncTypeCreateSection, PageProtection: PAGE_EXECUTE|PAGE_NOCACHE 98 12:38:33,7002315 MCLauncher.exe 6080 QueryNameInformationFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Name: \Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe 98 12:38:33,7003243 MCLauncher.exe 6080 CreateFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Desired Access: Synchronize, Disposition: Open, Options: Synchronous IO Non-Alert, Attributes: N, ShareMode: Read, Write, Delete, AllocationSize: n/a, OpenResult: Opened 98 12:38:33,7003429 MCLauncher.exe 6080 CloseFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS 98 12:38:33,7003722 MCLauncher.exe 6080 QueryNameInformationFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Name: \Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe 98 12:38:33,7004556 MCLauncher.exe 6080 CreateFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Desired Access: Synchronize, Disposition: Open, Options: Synchronous IO Non-Alert, Attributes: N, ShareMode: Read, Write, Delete, AllocationSize: n/a, OpenResult: Opened 98 12:38:33,7004725 MCLauncher.exe 6080 CloseFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS 98 12:38:33,7005116 MCLauncher.exe 6080 CreateFileMapping C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe FILE LOCKED WITH ONLY READERS SyncType: SyncTypeCreateSection, PageProtection: PAGE_EXECUTE|PAGE_NOCACHE 98 12:38:33,7005216 MCLauncher.exe 6080 QueryNameInformationFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Name: \Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe 98 12:38:33,7006413 MCLauncher.exe 6080 CreateFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Desired Access: Synchronize, Disposition: Open, Options: Synchronous IO Non-Alert, Attributes: N, ShareMode: Read, Write, Delete, AllocationSize: n/a, OpenResult: Opened 98 12:38:33,7006590 MCLauncher.exe 6080 CloseFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS 98 12:38:33,7006856 MCLauncher.exe 6080 QueryNameInformationFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Name: \Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe 98 12:38:33,7007690 MCLauncher.exe 6080 CreateFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Desired Access: Synchronize, Disposition: Open, Options: Synchronous IO Non-Alert, Attributes: N, ShareMode: Read, Write, Delete, AllocationSize: n/a, OpenResult: Opened 98 12:38:33,7007853 MCLauncher.exe 6080 CloseFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS 98 12:38:33,7008122 MCLauncher.exe 6080 QueryStandardInformationFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS AllocationSize: 17 244 160, EndOfFile: 17 240 149, NumberOfLinks: 1, DeletePending: False, Directory: False 98 12:38:33,7008258 MCLauncher.exe 6080 CreateFileMapping C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS SyncType: SyncTypeOther 98 12:38:33,7008582 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 0, Length: 32 768, I/O Flags: Non-cached, Paging I/O, Synchronous Paging I/O, Priority: Normal 98 12:38:33,7034783 MCLauncher.exe 6080 CloseFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS 98 12:38:33,7037385 MCLauncher.exe 6080 CreateFile C:\Users\User\Desktop\MCLauncher.lnk SUCCESS Desired Access: Read Attributes, Disposition: Open, Options: Open Reparse Point, Attributes: n/a, ShareMode: Read, Write, Delete, AllocationSize: n/a, OpenResult: Opened 98 12:38:33,7037543 MCLauncher.exe 6080 QueryBasicInformationFile C:\Users\User\Desktop\MCLauncher.lnk SUCCESS CreationTime: 24.08.2018 12:30:14, LastAccessTime: 24.08.2018 12:30:14, LastWriteTime: 24.08.2018 12:30:14, ChangeTime: 24.08.2018 12:30:14, FileAttributes: A 98 12:38:33,7037620 MCLauncher.exe 6080 CloseFile C:\Users\User\Desktop\MCLauncher.lnk SUCCESS 98 12:38:33,7038612 MCLauncher.exe 6080 CreateFile C:\Users\User\Desktop\MCLauncher.lnk SUCCESS Desired Access: Generic Read/Write, Disposition: OverwriteIf, Options: Synchronous IO Non-Alert, Non-Directory File, Attributes: A, ShareMode: Read, Write, AllocationSize: 0, OpenResult: Overwritten 98 12:38:33,7040305 MCLauncher.exe 6080 QueryNameInformationFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Name: \Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe 98 12:38:33,7041189 MCLauncher.exe 6080 CreateFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Desired Access: Synchronize, Disposition: Open, Options: Synchronous IO Non-Alert, Attributes: N, ShareMode: Read, Write, Delete, AllocationSize: n/a, OpenResult: Opened 98 12:38:33,7041372 MCLauncher.exe 6080 CloseFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS 98 12:38:33,7710944 MCLauncher.exe 6080 WriteFile C:\Users\User\Desktop\MCLauncher.lnk SUCCESS Offset: 0, Length: 972, Priority: Normal 98 12:38:33,7711964 MCLauncher.exe 6080 CloseFile C:\Users\User\Desktop\MCLauncher.lnk SUCCESS 98 12:38:33,7712160 MCLauncher.exe 6080 QueryNameInformationFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Name: \Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe 98 12:38:33,7713305 MCLauncher.exe 6080 CreateFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Desired Access: Synchronize, Disposition: Open, Options: Synchronous IO Non-Alert, Attributes: N, ShareMode: Read, Write, Delete, AllocationSize: n/a, OpenResult: Opened 98 12:38:33,7713507 MCLauncher.exe 6080 CloseFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS 98 12:38:33,7750519 MCLauncher.exe 6080 RegQueryKey HKCU SUCCESS Query: HandleTags, HandleTags: 0x0 98 12:38:33,7750593 MCLauncher.exe 6080 RegQueryKey HKCU SUCCESS Query: Name 98 12:38:33,7750707 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Microsoft\Windows\CurrentVersion\App Paths\MCLauncher.exe NAME NOT FOUND Desired Access: Read 98 12:38:33,7750893 MCLauncher.exe 6080 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 98 12:38:33,7750940 MCLauncher.exe 6080 RegQueryKey HKLM SUCCESS Query: Name 98 12:38:33,7751037 MCLauncher.exe 6080 RegOpenKey HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\App Paths\MCLauncher.exe REPARSE Desired Access: Read 98 12:38:33,7751156 MCLauncher.exe 6080 RegOpenKey HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Paths\MCLauncher.exe NAME NOT FOUND Desired Access: Read 98 12:38:33,7752802 MCLauncher.exe 6080 ReadFile C:\Windows\SysWOW64\windows.storage.dll SUCCESS Offset: 2 495 488, Length: 32 768, I/O Flags: Non-cached, Paging I/O, Synchronous Paging I/O, Priority: Normal 98 12:38:33,7762180 MCLauncher.exe 6080 CloseFile C:\Windows\SysWOW64\stdole2.tlb SUCCESS 98 12:38:33,7762612 MCLauncher.exe 6080 CloseFile C:\Windows\SysWOW64\wshom.ocx SUCCESS 98 12:38:33,7763164 MCLauncher.exe 6080 RegQueryKey HKCU\Software\Classes SUCCESS Query: Name 98 12:38:33,7763272 MCLauncher.exe 6080 RegQueryKey HKCU\Software\Classes SUCCESS Query: HandleTags, HandleTags: 0x1 98 12:38:33,7763357 MCLauncher.exe 6080 RegQueryKey HKCU\Software\Classes SUCCESS Query: HandleTags, HandleTags: 0x1 98 12:38:33,7763413 MCLauncher.exe 6080 RegQueryKey HKCU\Software\Classes SUCCESS Query: Name 98 12:38:33,7763515 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Classes\wscript.shell NAME NOT FOUND Desired Access: Read 98 12:38:33,7763648 MCLauncher.exe 6080 RegOpenKey HKCR\wscript.shell SUCCESS Desired Access: Read 98 12:38:33,7763751 MCLauncher.exe 6080 RegSetInfoKey HKCR\WScript.Shell SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 98 12:38:33,7763801 MCLauncher.exe 6080 RegQueryKey HKCR\WScript.Shell SUCCESS Query: Name 98 12:38:33,7763870 MCLauncher.exe 6080 RegQueryKey HKCR\WScript.Shell SUCCESS Query: HandleTags, HandleTags: 0x401 98 12:38:33,7763978 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Classes\WScript.Shell\CLSID NAME NOT FOUND Desired Access: Read 98 12:38:33,7764058 MCLauncher.exe 6080 RegQueryKey HKCR\WScript.Shell SUCCESS Query: HandleTags, HandleTags: 0x401 98 12:38:33,7764114 MCLauncher.exe 6080 RegOpenKey HKCR\WScript.Shell\CLSID SUCCESS Desired Access: Read 98 12:38:33,7764194 MCLauncher.exe 6080 RegQueryKey HKCR\WScript.Shell\CLSID SUCCESS Query: Name 98 12:38:33,7764255 MCLauncher.exe 6080 RegQueryKey HKCR\WScript.Shell\CLSID SUCCESS Query: HandleTags, HandleTags: 0x401 98 12:38:33,7764335 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Classes\WScript.Shell\CLSID NAME NOT FOUND Desired Access: Maximum Allowed 98 12:38:33,7764396 MCLauncher.exe 6080 RegQueryValue HKCR\WScript.Shell\CLSID\(Default) SUCCESS Type: REG_SZ, Length: 78, Data: {72C24DD5-D70A-438B-8A42-98424B88AFB8} 98 12:38:33,7764493 MCLauncher.exe 6080 RegCloseKey HKCR\WScript.Shell\CLSID SUCCESS 98 12:38:33,7764543 MCLauncher.exe 6080 RegCloseKey HKCR\WScript.Shell SUCCESS 98 12:38:33,7764951 MCLauncher.exe 6080 RegQueryKey HKCU\Software\Classes SUCCESS Query: Name 98 12:38:33,7765011 MCLauncher.exe 6080 RegQueryKey HKCU\Software\Classes SUCCESS Query: HandleTags, HandleTags: 0x1 98 12:38:33,7765081 MCLauncher.exe 6080 RegQueryKey HKCU\Software\Classes SUCCESS Query: HandleTags, HandleTags: 0x1 98 12:38:33,7765128 MCLauncher.exe 6080 RegQueryKey HKCU\Software\Classes SUCCESS Query: Name 98 12:38:33,7765200 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Classes\wscript.shell NAME NOT FOUND Desired Access: Read 98 12:38:33,7765286 MCLauncher.exe 6080 RegOpenKey HKCR\wscript.shell SUCCESS Desired Access: Read 98 12:38:33,7765355 MCLauncher.exe 6080 RegSetInfoKey HKCR\WScript.Shell SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 98 12:38:33,7765394 MCLauncher.exe 6080 RegQueryKey HKCR\WScript.Shell SUCCESS Query: Name 98 12:38:33,7765449 MCLauncher.exe 6080 RegQueryKey HKCR\WScript.Shell SUCCESS Query: HandleTags, HandleTags: 0x401 98 12:38:33,7765532 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Classes\WScript.Shell\CLSID NAME NOT FOUND Desired Access: Read 98 12:38:33,7765607 MCLauncher.exe 6080 RegQueryKey HKCR\WScript.Shell SUCCESS Query: HandleTags, HandleTags: 0x401 98 12:38:33,7765657 MCLauncher.exe 6080 RegOpenKey HKCR\WScript.Shell\CLSID SUCCESS Desired Access: Read 98 12:38:33,7765726 MCLauncher.exe 6080 RegQueryKey HKCR\WScript.Shell\CLSID SUCCESS Query: Name 98 12:38:33,7765779 MCLauncher.exe 6080 RegQueryKey HKCR\WScript.Shell\CLSID SUCCESS Query: HandleTags, HandleTags: 0x401 98 12:38:33,7765857 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Classes\WScript.Shell\CLSID NAME NOT FOUND Desired Access: Maximum Allowed 98 12:38:33,7765915 MCLauncher.exe 6080 RegQueryValue HKCR\WScript.Shell\CLSID\(Default) SUCCESS Type: REG_SZ, Length: 78, Data: {72C24DD5-D70A-438B-8A42-98424B88AFB8} 98 12:38:33,7765987 MCLauncher.exe 6080 RegCloseKey HKCR\WScript.Shell\CLSID SUCCESS 98 12:38:33,7766031 MCLauncher.exe 6080 RegCloseKey HKCR\WScript.Shell SUCCESS 98 12:38:33,7766375 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Classes SUCCESS Desired Access: Maximum Allowed, Granted Access: All Access 98 12:38:33,7766458 MCLauncher.exe 6080 RegSetInfoKey HKCU\Software\Classes SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 98 12:38:33,7766510 MCLauncher.exe 6080 RegQueryKey HKCU\Software\Classes SUCCESS Query: Name 98 12:38:33,7766569 MCLauncher.exe 6080 RegQueryKey HKCU\Software\Classes SUCCESS Query: HandleTags, HandleTags: 0x1 98 12:38:33,7766632 MCLauncher.exe 6080 RegQueryKey HKCU\Software\Classes SUCCESS Query: HandleTags, HandleTags: 0x1 98 12:38:33,7766677 MCLauncher.exe 6080 RegQueryKey HKCU\Software\Classes SUCCESS Query: Name 98 12:38:33,7766743 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Classes\TypeLib SUCCESS Desired Access: Maximum Allowed, Granted Access: All Access 98 12:38:33,7766821 MCLauncher.exe 6080 RegSetInfoKey HKCU\Software\Classes\TypeLib SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 98 12:38:33,7766868 MCLauncher.exe 6080 RegCloseKey HKCU\Software\Classes SUCCESS 98 12:38:33,7766904 MCLauncher.exe 6080 RegQueryKey HKCU\Software\Classes\TypeLib SUCCESS Query: Name 98 12:38:33,7766967 MCLauncher.exe 6080 RegQueryKey HKCU\Software\Classes\TypeLib SUCCESS Query: HandleTags, HandleTags: 0x401 98 12:38:33,7767031 MCLauncher.exe 6080 RegQueryKey HKCU\Software\Classes\TypeLib SUCCESS Query: HandleTags, HandleTags: 0x401 98 12:38:33,7767087 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Classes\TypeLib\{F935DC20-1CF0-11D0-ADB9-00C04FD58A0B} NAME NOT FOUND Desired Access: Maximum Allowed 98 12:38:33,7767488 MCLauncher.exe 6080 RegOpenKey HKCR\TypeLib\{F935DC20-1CF0-11D0-ADB9-00C04FD58A0B} SUCCESS Desired Access: Maximum Allowed, Granted Access: Read 98 12:38:33,7767621 MCLauncher.exe 6080 RegSetInfoKey HKCR\TypeLib\{F935DC20-1CF0-11D0-ADB9-00C04FD58A0B} SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 98 12:38:33,7767704 MCLauncher.exe 6080 RegQueryKey HKCR\TypeLib\{F935DC20-1CF0-11D0-ADB9-00C04FD58A0B} SUCCESS Query: Name 98 12:38:33,7767804 MCLauncher.exe 6080 RegQueryKey HKCR\TypeLib\{F935DC20-1CF0-11D0-ADB9-00C04FD58A0B} SUCCESS Query: HandleTags, HandleTags: 0x401 98 12:38:33,7767907 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Classes\TypeLib\{F935DC20-1CF0-11D0-ADB9-00C04FD58A0B}\1.0 NAME NOT FOUND Desired Access: Maximum Allowed 98 12:38:33,7767995 MCLauncher.exe 6080 RegQueryKey HKCR\TypeLib\{F935DC20-1CF0-11D0-ADB9-00C04FD58A0B} SUCCESS Query: HandleTags, HandleTags: 0x401 98 12:38:33,7768048 MCLauncher.exe 6080 RegOpenKey HKCR\TypeLib\{F935DC20-1CF0-11D0-ADB9-00C04FD58A0B}\1.0 SUCCESS Desired Access: Maximum Allowed, Granted Access: Read 98 12:38:33,7768134 MCLauncher.exe 6080 RegQueryKey HKCR\TypeLib\{F935DC20-1CF0-11D0-ADB9-00C04FD58A0B}\1.0 SUCCESS Query: Name 98 12:38:33,7768192 MCLauncher.exe 6080 RegQueryKey HKCR\TypeLib\{F935DC20-1CF0-11D0-ADB9-00C04FD58A0B}\1.0 SUCCESS Query: HandleTags, HandleTags: 0x401 98 12:38:33,7768275 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Classes\TypeLib\{F935DC20-1CF0-11D0-ADB9-00C04FD58A0B}\1.0\419 NAME NOT FOUND Desired Access: Maximum Allowed 98 12:38:33,7768350 MCLauncher.exe 6080 RegQueryKey HKCR\TypeLib\{F935DC20-1CF0-11D0-ADB9-00C04FD58A0B}\1.0 SUCCESS Query: HandleTags, HandleTags: 0x401 98 12:38:33,7768400 MCLauncher.exe 6080 RegOpenKey HKCR\TypeLib\{F935DC20-1CF0-11D0-ADB9-00C04FD58A0B}\1.0\419 NAME NOT FOUND Desired Access: Maximum Allowed 98 12:38:33,7768469 MCLauncher.exe 6080 RegQueryKey HKCR\TypeLib\{F935DC20-1CF0-11D0-ADB9-00C04FD58A0B}\1.0 SUCCESS Query: Name 98 12:38:33,7768522 MCLauncher.exe 6080 RegQueryKey HKCR\TypeLib\{F935DC20-1CF0-11D0-ADB9-00C04FD58A0B}\1.0 SUCCESS Query: HandleTags, HandleTags: 0x401 98 12:38:33,7768599 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Classes\TypeLib\{F935DC20-1CF0-11D0-ADB9-00C04FD58A0B}\1.0\19 NAME NOT FOUND Desired Access: Maximum Allowed 98 12:38:33,7768671 MCLauncher.exe 6080 RegQueryKey HKCR\TypeLib\{F935DC20-1CF0-11D0-ADB9-00C04FD58A0B}\1.0 SUCCESS Query: HandleTags, HandleTags: 0x401 98 12:38:33,7768721 MCLauncher.exe 6080 RegOpenKey HKCR\TypeLib\{F935DC20-1CF0-11D0-ADB9-00C04FD58A0B}\1.0\19 NAME NOT FOUND Desired Access: Maximum Allowed 98 12:38:33,7768782 MCLauncher.exe 6080 RegQueryKey HKCR\TypeLib\{F935DC20-1CF0-11D0-ADB9-00C04FD58A0B}\1.0 SUCCESS Query: Name 98 12:38:33,7768835 MCLauncher.exe 6080 RegQueryKey HKCR\TypeLib\{F935DC20-1CF0-11D0-ADB9-00C04FD58A0B}\1.0 SUCCESS Query: HandleTags, HandleTags: 0x401 98 12:38:33,7768910 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Classes\TypeLib\{F935DC20-1CF0-11D0-ADB9-00C04FD58A0B}\1.0\0 NAME NOT FOUND Desired Access: Maximum Allowed 98 12:38:33,7768979 MCLauncher.exe 6080 RegQueryKey HKCR\TypeLib\{F935DC20-1CF0-11D0-ADB9-00C04FD58A0B}\1.0 SUCCESS Query: HandleTags, HandleTags: 0x401 98 12:38:33,7769032 MCLauncher.exe 6080 RegOpenKey HKCR\TypeLib\{F935DC20-1CF0-11D0-ADB9-00C04FD58A0B}\1.0\0 SUCCESS Desired Access: Maximum Allowed, Granted Access: Read 98 12:38:33,7769101 MCLauncher.exe 6080 RegQueryKey HKCR\TypeLib\{F935DC20-1CF0-11D0-ADB9-00C04FD58A0B}\1.0\0 SUCCESS Query: Name 98 12:38:33,7769156 MCLauncher.exe 6080 RegQueryKey HKCR\TypeLib\{F935DC20-1CF0-11D0-ADB9-00C04FD58A0B}\1.0\0 SUCCESS Query: HandleTags, HandleTags: 0x401 98 12:38:33,7769237 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Classes\TypeLib\{F935DC20-1CF0-11D0-ADB9-00C04FD58A0B}\1.0\0\win32 NAME NOT FOUND Desired Access: Maximum Allowed 98 12:38:33,7769311 MCLauncher.exe 6080 RegQueryKey HKCR\TypeLib\{F935DC20-1CF0-11D0-ADB9-00C04FD58A0B}\1.0\0 SUCCESS Query: HandleTags, HandleTags: 0x401 98 12:38:33,7769358 MCLauncher.exe 6080 RegOpenKey HKCR\TypeLib\{F935DC20-1CF0-11D0-ADB9-00C04FD58A0B}\1.0\0\win32 SUCCESS Desired Access: Maximum Allowed, Granted Access: Read 98 12:38:33,7769447 MCLauncher.exe 6080 RegCloseKey HKCR\TypeLib\{F935DC20-1CF0-11D0-ADB9-00C04FD58A0B}\1.0\0\win32 SUCCESS 98 12:38:33,7769494 MCLauncher.exe 6080 RegCloseKey HKCR\TypeLib\{F935DC20-1CF0-11D0-ADB9-00C04FD58A0B}\1.0\0 SUCCESS 98 12:38:33,7769530 MCLauncher.exe 6080 RegQueryKey HKCR\TypeLib\{F935DC20-1CF0-11D0-ADB9-00C04FD58A0B}\1.0 SUCCESS Query: Name 98 12:38:33,7769588 MCLauncher.exe 6080 RegQueryKey HKCR\TypeLib\{F935DC20-1CF0-11D0-ADB9-00C04FD58A0B}\1.0 SUCCESS Query: HandleTags, HandleTags: 0x401 98 12:38:33,7769663 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Classes\TypeLib\{F935DC20-1CF0-11D0-ADB9-00C04FD58A0B}\1.0\0 NAME NOT FOUND Desired Access: Maximum Allowed 98 12:38:33,7769735 MCLauncher.exe 6080 RegQueryKey HKCR\TypeLib\{F935DC20-1CF0-11D0-ADB9-00C04FD58A0B}\1.0 SUCCESS Query: HandleTags, HandleTags: 0x401 98 12:38:33,7769785 MCLauncher.exe 6080 RegOpenKey HKCR\TypeLib\{F935DC20-1CF0-11D0-ADB9-00C04FD58A0B}\1.0\0 SUCCESS Desired Access: Maximum Allowed, Granted Access: Read 98 12:38:33,7769846 MCLauncher.exe 6080 RegQueryKey HKCR\TypeLib\{F935DC20-1CF0-11D0-ADB9-00C04FD58A0B}\1.0\0 SUCCESS Query: Name 98 12:38:33,7769902 MCLauncher.exe 6080 RegQueryKey HKCR\TypeLib\{F935DC20-1CF0-11D0-ADB9-00C04FD58A0B}\1.0\0 SUCCESS Query: HandleTags, HandleTags: 0x401 98 12:38:33,7769979 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Classes\TypeLib\{F935DC20-1CF0-11D0-ADB9-00C04FD58A0B}\1.0\0\win32 NAME NOT FOUND Desired Access: Query Value 98 12:38:33,7770051 MCLauncher.exe 6080 RegQueryKey HKCR\TypeLib\{F935DC20-1CF0-11D0-ADB9-00C04FD58A0B}\1.0\0 SUCCESS Query: HandleTags, HandleTags: 0x401 98 12:38:33,7770101 MCLauncher.exe 6080 RegOpenKey HKCR\TypeLib\{F935DC20-1CF0-11D0-ADB9-00C04FD58A0B}\1.0\0\win32 SUCCESS Desired Access: Query Value 98 12:38:33,7770162 MCLauncher.exe 6080 RegQueryKey HKCR\TypeLib\{F935DC20-1CF0-11D0-ADB9-00C04FD58A0B}\1.0\0\win32 SUCCESS Query: Name 98 12:38:33,7770217 MCLauncher.exe 6080 RegQueryKey HKCR\TypeLib\{F935DC20-1CF0-11D0-ADB9-00C04FD58A0B}\1.0\0\win32 SUCCESS Query: HandleTags, HandleTags: 0x401 98 12:38:33,7770292 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Classes\TypeLib\{F935DC20-1CF0-11D0-ADB9-00C04FD58A0B}\1.0\0\win32 NAME NOT FOUND Desired Access: Maximum Allowed 98 12:38:33,7770353 MCLauncher.exe 6080 RegQueryValue HKCR\TypeLib\{F935DC20-1CF0-11D0-ADB9-00C04FD58A0B}\1.0\0\win32\(Default) SUCCESS Type: REG_SZ, Length: 60, Data: C:\Windows\SysWOW64\wshom.ocx 98 12:38:33,7770422 MCLauncher.exe 6080 RegCloseKey HKCR\TypeLib\{F935DC20-1CF0-11D0-ADB9-00C04FD58A0B}\1.0\0\win32 SUCCESS 98 12:38:33,7771616 MCLauncher.exe 6080 CreateFile C:\Windows\SysWOW64\wshom.ocx SUCCESS Desired Access: Generic Read, Disposition: Open, Options: Synchronous IO Non-Alert, Non-Directory File, Random Access, Attributes: n/a, ShareMode: Read, Delete, AllocationSize: n/a, OpenResult: Opened 98 12:38:33,7772007 MCLauncher.exe 6080 ReadFile C:\Windows\SysWOW64\wshom.ocx SUCCESS Offset: 0, Length: 64, Priority: Normal 98 12:38:33,7772160 MCLauncher.exe 6080 ReadFile C:\Windows\SysWOW64\wshom.ocx SUCCESS Offset: 248, Length: 4 98 12:38:33,7772232 MCLauncher.exe 6080 ReadFile C:\Windows\SysWOW64\wshom.ocx SUCCESS Offset: 252, Length: 20 98 12:38:33,7772295 MCLauncher.exe 6080 ReadFile C:\Windows\SysWOW64\wshom.ocx SUCCESS Offset: 496, Length: 40 98 12:38:33,7772370 MCLauncher.exe 6080 ReadFile C:\Windows\SysWOW64\wshom.ocx SUCCESS Offset: 536, Length: 40 98 12:38:33,7772428 MCLauncher.exe 6080 ReadFile C:\Windows\SysWOW64\wshom.ocx SUCCESS Offset: 576, Length: 40 98 12:38:33,7772484 MCLauncher.exe 6080 ReadFile C:\Windows\SysWOW64\wshom.ocx SUCCESS Offset: 616, Length: 40 98 12:38:33,7772542 MCLauncher.exe 6080 ReadFile C:\Windows\SysWOW64\wshom.ocx SUCCESS Offset: 656, Length: 40 98 12:38:33,7772611 MCLauncher.exe 6080 ReadFile C:\Windows\SysWOW64\wshom.ocx SUCCESS Offset: 86 528, Length: 16 98 12:38:33,7772667 MCLauncher.exe 6080 ReadFile C:\Windows\SysWOW64\wshom.ocx SUCCESS Offset: 86 544, Length: 8 98 12:38:33,7772733 MCLauncher.exe 6080 ReadFile C:\Windows\SysWOW64\wshom.ocx SUCCESS Offset: 87 904, Length: 2 98 12:38:33,7772797 MCLauncher.exe 6080 ReadFile C:\Windows\SysWOW64\wshom.ocx SUCCESS Offset: 86 552, Length: 8 98 12:38:33,7772860 MCLauncher.exe 6080 ReadFile C:\Windows\SysWOW64\wshom.ocx SUCCESS Offset: 87 888, Length: 2 98 12:38:33,7772916 MCLauncher.exe 6080 ReadFile C:\Windows\SysWOW64\wshom.ocx SUCCESS Offset: 87 890, Length: 14 98 12:38:33,7772991 MCLauncher.exe 6080 ReadFile C:\Windows\SysWOW64\wshom.ocx SUCCESS Offset: 86 600, Length: 16 98 12:38:33,7773054 MCLauncher.exe 6080 ReadFile C:\Windows\SysWOW64\wshom.ocx SUCCESS Offset: 86 616, Length: 8 98 12:38:33,7773124 MCLauncher.exe 6080 ReadFile C:\Windows\SysWOW64\wshom.ocx SUCCESS Offset: 86 872, Length: 16 98 12:38:33,7773179 MCLauncher.exe 6080 ReadFile C:\Windows\SysWOW64\wshom.ocx SUCCESS Offset: 86 888, Length: 8 98 12:38:33,7773240 MCLauncher.exe 6080 ReadFile C:\Windows\SysWOW64\wshom.ocx SUCCESS Offset: 87 488, Length: 16 98 12:38:33,7773304 MCLauncher.exe 6080 QueryStandardInformationFile C:\Windows\SysWOW64\wshom.ocx SUCCESS AllocationSize: 126 976, EndOfFile: 125 952, NumberOfLinks: 3, DeletePending: False, Directory: False 98 12:38:33,7773415 MCLauncher.exe 6080 CreateFileMapping C:\Windows\SysWOW64\wshom.ocx FILE LOCKED WITH ONLY READERS SyncType: SyncTypeCreateSection, PageProtection: PAGE_EXECUTE|PAGE_NOCACHE 98 12:38:33,7773578 MCLauncher.exe 6080 QueryNameInformationFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Name: \Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe 98 12:38:33,7774517 MCLauncher.exe 6080 CreateFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Desired Access: Synchronize, Disposition: Open, Options: Synchronous IO Non-Alert, Attributes: N, ShareMode: Read, Write, Delete, AllocationSize: n/a, OpenResult: Opened 98 12:38:33,7774711 MCLauncher.exe 6080 CloseFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS 98 12:38:33,7774999 MCLauncher.exe 6080 QueryNameInformationFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Name: \Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe 98 12:38:33,7775844 MCLauncher.exe 6080 CreateFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Desired Access: Synchronize, Disposition: Open, Options: Synchronous IO Non-Alert, Attributes: N, ShareMode: Read, Write, Delete, AllocationSize: n/a, OpenResult: Opened 98 12:38:33,7776016 MCLauncher.exe 6080 CloseFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS 98 12:38:33,7776645 MCLauncher.exe 6080 QueryStandardInformationFile C:\Windows\SysWOW64\wshom.ocx SUCCESS AllocationSize: 126 976, EndOfFile: 125 952, NumberOfLinks: 3, DeletePending: False, Directory: False 98 12:38:33,7776792 MCLauncher.exe 6080 CreateFileMapping C:\Windows\SysWOW64\wshom.ocx SUCCESS SyncType: SyncTypeOther 98 12:38:33,7777340 MCLauncher.exe 6080 RegCloseKey HKCR\TypeLib\{F935DC20-1CF0-11D0-ADB9-00C04FD58A0B}\1.0\0 SUCCESS 98 12:38:33,7777435 MCLauncher.exe 6080 RegCloseKey HKCR\TypeLib\{F935DC20-1CF0-11D0-ADB9-00C04FD58A0B}\1.0 SUCCESS 98 12:38:33,7777485 MCLauncher.exe 6080 RegCloseKey HKCR\TypeLib\{F935DC20-1CF0-11D0-ADB9-00C04FD58A0B} SUCCESS 98 12:38:33,7777523 MCLauncher.exe 6080 RegCloseKey HKCU\Software\Classes\TypeLib SUCCESS 98 12:38:33,7778922 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Classes SUCCESS Desired Access: Maximum Allowed, Granted Access: All Access 98 12:38:33,7779025 MCLauncher.exe 6080 RegSetInfoKey HKCU\Software\Classes SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 98 12:38:33,7779089 MCLauncher.exe 6080 RegQueryKey HKCU\Software\Classes SUCCESS Query: Name 98 12:38:33,7779161 MCLauncher.exe 6080 RegQueryKey HKCU\Software\Classes SUCCESS Query: HandleTags, HandleTags: 0x1 98 12:38:33,7779238 MCLauncher.exe 6080 RegQueryKey HKCU\Software\Classes SUCCESS Query: HandleTags, HandleTags: 0x1 98 12:38:33,7779285 MCLauncher.exe 6080 RegQueryKey HKCU\Software\Classes SUCCESS Query: Name 98 12:38:33,7779363 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Classes\TypeLib SUCCESS Desired Access: Maximum Allowed, Granted Access: All Access 98 12:38:33,7779441 MCLauncher.exe 6080 RegSetInfoKey HKCU\Software\Classes\TypeLib SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 98 12:38:33,7779493 MCLauncher.exe 6080 RegCloseKey HKCU\Software\Classes SUCCESS 98 12:38:33,7779535 MCLauncher.exe 6080 RegQueryKey HKCU\Software\Classes\TypeLib SUCCESS Query: Name 98 12:38:33,7779596 MCLauncher.exe 6080 RegQueryKey HKCU\Software\Classes\TypeLib SUCCESS Query: HandleTags, HandleTags: 0x401 98 12:38:33,7779659 MCLauncher.exe 6080 RegQueryKey HKCU\Software\Classes\TypeLib SUCCESS Query: HandleTags, HandleTags: 0x401 98 12:38:33,7779715 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Classes\TypeLib\{00020430-0000-0000-C000-000000000046} NAME NOT FOUND Desired Access: Maximum Allowed 98 12:38:33,7779812 MCLauncher.exe 6080 RegOpenKey HKCR\TypeLib\{00020430-0000-0000-C000-000000000046} SUCCESS Desired Access: Maximum Allowed, Granted Access: Read 98 12:38:33,7779900 MCLauncher.exe 6080 RegSetInfoKey HKCR\TypeLib\{00020430-0000-0000-C000-000000000046} SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 98 12:38:33,7779945 MCLauncher.exe 6080 RegQueryKey HKCR\TypeLib\{00020430-0000-0000-C000-000000000046} SUCCESS Query: Name 98 12:38:33,7780011 MCLauncher.exe 6080 RegQueryKey HKCR\TypeLib\{00020430-0000-0000-C000-000000000046} SUCCESS Query: HandleTags, HandleTags: 0x401 98 12:38:33,7780100 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Classes\TypeLib\{00020430-0000-0000-C000-000000000046}\2.0 NAME NOT FOUND Desired Access: Maximum Allowed 98 12:38:33,7780186 MCLauncher.exe 6080 RegQueryKey HKCR\TypeLib\{00020430-0000-0000-C000-000000000046} SUCCESS Query: HandleTags, HandleTags: 0x401 98 12:38:33,7780238 MCLauncher.exe 6080 RegOpenKey HKCR\TypeLib\{00020430-0000-0000-C000-000000000046}\2.0 SUCCESS Desired Access: Maximum Allowed, Granted Access: Read 98 12:38:33,7780308 MCLauncher.exe 6080 RegQueryKey HKCR\TypeLib\{00020430-0000-0000-C000-000000000046}\2.0 SUCCESS Query: Name 98 12:38:33,7780366 MCLauncher.exe 6080 RegQueryKey HKCR\TypeLib\{00020430-0000-0000-C000-000000000046}\2.0 SUCCESS Query: HandleTags, HandleTags: 0x401 98 12:38:33,7780452 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Classes\TypeLib\{00020430-0000-0000-C000-000000000046}\2.0\0 NAME NOT FOUND Desired Access: Maximum Allowed 98 12:38:33,7780529 MCLauncher.exe 6080 RegQueryKey HKCR\TypeLib\{00020430-0000-0000-C000-000000000046}\2.0 SUCCESS Query: HandleTags, HandleTags: 0x401 98 12:38:33,7780579 MCLauncher.exe 6080 RegOpenKey HKCR\TypeLib\{00020430-0000-0000-C000-000000000046}\2.0\0 SUCCESS Desired Access: Maximum Allowed, Granted Access: Read 98 12:38:33,7780649 MCLauncher.exe 6080 RegQueryKey HKCR\TypeLib\{00020430-0000-0000-C000-000000000046}\2.0\0 SUCCESS Query: Name 98 12:38:33,7780704 MCLauncher.exe 6080 RegQueryKey HKCR\TypeLib\{00020430-0000-0000-C000-000000000046}\2.0\0 SUCCESS Query: HandleTags, HandleTags: 0x401 98 12:38:33,7780790 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Classes\TypeLib\{00020430-0000-0000-C000-000000000046}\2.0\0\win32 NAME NOT FOUND Desired Access: Maximum Allowed 98 12:38:33,7780865 MCLauncher.exe 6080 RegQueryKey HKCR\TypeLib\{00020430-0000-0000-C000-000000000046}\2.0\0 SUCCESS Query: HandleTags, HandleTags: 0x401 98 12:38:33,7780914 MCLauncher.exe 6080 RegOpenKey HKCR\TypeLib\{00020430-0000-0000-C000-000000000046}\2.0\0\win32 SUCCESS Desired Access: Maximum Allowed, Granted Access: Read 98 12:38:33,7781000 MCLauncher.exe 6080 RegCloseKey HKCR\TypeLib\{00020430-0000-0000-C000-000000000046}\2.0\0\win32 SUCCESS 98 12:38:33,7781042 MCLauncher.exe 6080 RegCloseKey HKCR\TypeLib\{00020430-0000-0000-C000-000000000046}\2.0\0 SUCCESS 98 12:38:33,7781078 MCLauncher.exe 6080 RegQueryKey HKCR\TypeLib\{00020430-0000-0000-C000-000000000046}\2.0 SUCCESS Query: Name 98 12:38:33,7781133 MCLauncher.exe 6080 RegQueryKey HKCR\TypeLib\{00020430-0000-0000-C000-000000000046}\2.0 SUCCESS Query: HandleTags, HandleTags: 0x401 98 12:38:33,7781211 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Classes\TypeLib\{00020430-0000-0000-C000-000000000046}\2.0\0 NAME NOT FOUND Desired Access: Maximum Allowed 98 12:38:33,7781286 MCLauncher.exe 6080 RegQueryKey HKCR\TypeLib\{00020430-0000-0000-C000-000000000046}\2.0 SUCCESS Query: HandleTags, HandleTags: 0x401 98 12:38:33,7781336 MCLauncher.exe 6080 RegOpenKey HKCR\TypeLib\{00020430-0000-0000-C000-000000000046}\2.0\0 SUCCESS Desired Access: Maximum Allowed, Granted Access: Read 98 12:38:33,7781399 MCLauncher.exe 6080 RegQueryKey HKCR\TypeLib\{00020430-0000-0000-C000-000000000046}\2.0\0 SUCCESS Query: Name 98 12:38:33,7781452 MCLauncher.exe 6080 RegQueryKey HKCR\TypeLib\{00020430-0000-0000-C000-000000000046}\2.0\0 SUCCESS Query: HandleTags, HandleTags: 0x401 98 12:38:33,7781530 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Classes\TypeLib\{00020430-0000-0000-C000-000000000046}\2.0\0\win32 NAME NOT FOUND Desired Access: Query Value 98 12:38:33,7781604 MCLauncher.exe 6080 RegQueryKey HKCR\TypeLib\{00020430-0000-0000-C000-000000000046}\2.0\0 SUCCESS Query: HandleTags, HandleTags: 0x401 98 12:38:33,7781654 MCLauncher.exe 6080 RegOpenKey HKCR\TypeLib\{00020430-0000-0000-C000-000000000046}\2.0\0\win32 SUCCESS Desired Access: Query Value 98 12:38:33,7781715 MCLauncher.exe 6080 RegQueryKey HKCR\TypeLib\{00020430-0000-0000-C000-000000000046}\2.0\0\win32 SUCCESS Query: Name 98 12:38:33,7781773 MCLauncher.exe 6080 RegQueryKey HKCR\TypeLib\{00020430-0000-0000-C000-000000000046}\2.0\0\win32 SUCCESS Query: HandleTags, HandleTags: 0x401 98 12:38:33,7781851 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Classes\TypeLib\{00020430-0000-0000-C000-000000000046}\2.0\0\win32 NAME NOT FOUND Desired Access: Maximum Allowed 98 12:38:33,7781912 MCLauncher.exe 6080 RegQueryValue HKCR\TypeLib\{00020430-0000-0000-C000-000000000046}\2.0\0\win32\(Default) SUCCESS Type: REG_SZ, Length: 64, Data: C:\Windows\SysWOW64\stdole2.tlb 98 12:38:33,7781984 MCLauncher.exe 6080 RegCloseKey HKCR\TypeLib\{00020430-0000-0000-C000-000000000046}\2.0\0\win32 SUCCESS 98 12:38:33,7783073 MCLauncher.exe 6080 CreateFile C:\Windows\SysWOW64\stdole2.tlb SUCCESS Desired Access: Generic Read, Disposition: Open, Options: Synchronous IO Non-Alert, Non-Directory File, Random Access, Attributes: n/a, ShareMode: Read, Delete, AllocationSize: n/a, OpenResult: Opened 98 12:38:33,7783419 MCLauncher.exe 6080 ReadFile C:\Windows\SysWOW64\stdole2.tlb SUCCESS Offset: 0, Length: 64, Priority: Normal 98 12:38:33,7783560 MCLauncher.exe 6080 ReadFile C:\Windows\SysWOW64\stdole2.tlb SUCCESS Offset: 184, Length: 4 98 12:38:33,7783635 MCLauncher.exe 6080 ReadFile C:\Windows\SysWOW64\stdole2.tlb SUCCESS Offset: 188, Length: 20 98 12:38:33,7783702 MCLauncher.exe 6080 ReadFile C:\Windows\SysWOW64\stdole2.tlb SUCCESS Offset: 432, Length: 40 98 12:38:33,7783771 MCLauncher.exe 6080 ReadFile C:\Windows\SysWOW64\stdole2.tlb SUCCESS Offset: 472, Length: 40 98 12:38:33,7783840 MCLauncher.exe 6080 ReadFile C:\Windows\SysWOW64\stdole2.tlb SUCCESS Offset: 1 024, Length: 16 98 12:38:33,7783896 MCLauncher.exe 6080 ReadFile C:\Windows\SysWOW64\stdole2.tlb SUCCESS Offset: 1 040, Length: 8 98 12:38:33,7783962 MCLauncher.exe 6080 ReadFile C:\Windows\SysWOW64\stdole2.tlb SUCCESS Offset: 1 272, Length: 2 98 12:38:33,7784020 MCLauncher.exe 6080 ReadFile C:\Windows\SysWOW64\stdole2.tlb SUCCESS Offset: 1 048, Length: 8 98 12:38:33,7784084 MCLauncher.exe 6080 ReadFile C:\Windows\SysWOW64\stdole2.tlb SUCCESS Offset: 1 256, Length: 2 98 12:38:33,7784139 MCLauncher.exe 6080 ReadFile C:\Windows\SysWOW64\stdole2.tlb SUCCESS Offset: 1 258, Length: 14 98 12:38:33,7784211 MCLauncher.exe 6080 ReadFile C:\Windows\SysWOW64\stdole2.tlb SUCCESS Offset: 1 088, Length: 16 98 12:38:33,7784275 MCLauncher.exe 6080 ReadFile C:\Windows\SysWOW64\stdole2.tlb SUCCESS Offset: 1 104, Length: 8 98 12:38:33,7784344 MCLauncher.exe 6080 ReadFile C:\Windows\SysWOW64\stdole2.tlb SUCCESS Offset: 1 160, Length: 16 98 12:38:33,7784400 MCLauncher.exe 6080 ReadFile C:\Windows\SysWOW64\stdole2.tlb SUCCESS Offset: 1 176, Length: 8 98 12:38:33,7784461 MCLauncher.exe 6080 ReadFile C:\Windows\SysWOW64\stdole2.tlb SUCCESS Offset: 1 224, Length: 16 98 12:38:33,7784522 MCLauncher.exe 6080 QueryStandardInformationFile C:\Windows\SysWOW64\stdole2.tlb SUCCESS AllocationSize: 20 480, EndOfFile: 18 432, NumberOfLinks: 2, DeletePending: False, Directory: False 98 12:38:33,7784619 MCLauncher.exe 6080 CreateFileMapping C:\Windows\SysWOW64\stdole2.tlb FILE LOCKED WITH ONLY READERS SyncType: SyncTypeCreateSection, PageProtection: PAGE_EXECUTE|PAGE_NOCACHE 98 12:38:33,7784741 MCLauncher.exe 6080 QueryNameInformationFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Name: \Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe 98 12:38:33,7785647 MCLauncher.exe 6080 CreateFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Desired Access: Synchronize, Disposition: Open, Options: Synchronous IO Non-Alert, Attributes: N, ShareMode: Read, Write, Delete, AllocationSize: n/a, OpenResult: Opened 98 12:38:33,7785832 MCLauncher.exe 6080 CloseFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS 98 12:38:33,7786123 MCLauncher.exe 6080 QueryNameInformationFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Name: \Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe 98 12:38:33,7787101 MCLauncher.exe 6080 CreateFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Desired Access: Synchronize, Disposition: Open, Options: Synchronous IO Non-Alert, Attributes: N, ShareMode: Read, Write, Delete, AllocationSize: n/a, OpenResult: Opened 98 12:38:33,7787270 MCLauncher.exe 6080 CloseFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS 98 12:38:33,7787841 MCLauncher.exe 6080 QueryStandardInformationFile C:\Windows\SysWOW64\stdole2.tlb SUCCESS AllocationSize: 20 480, EndOfFile: 18 432, NumberOfLinks: 2, DeletePending: False, Directory: False 98 12:38:33,7787993 MCLauncher.exe 6080 CreateFileMapping C:\Windows\SysWOW64\stdole2.tlb SUCCESS SyncType: SyncTypeOther 98 12:38:33,7788284 MCLauncher.exe 6080 RegCloseKey HKCR\TypeLib\{00020430-0000-0000-C000-000000000046}\2.0\0 SUCCESS 98 12:38:33,7788345 MCLauncher.exe 6080 RegCloseKey HKCR\TypeLib\{00020430-0000-0000-C000-000000000046}\2.0 SUCCESS 98 12:38:33,7788384 MCLauncher.exe 6080 RegCloseKey HKCR\TypeLib\{00020430-0000-0000-C000-000000000046} SUCCESS 98 12:38:33,7788425 MCLauncher.exe 6080 RegCloseKey HKCU\Software\Classes\TypeLib SUCCESS 98 12:38:33,7790714 MCLauncher.exe 6080 CreateFile C:\Users\User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\MCLauncher.lnk SUCCESS Desired Access: Generic Read, Disposition: Open, Options: Synchronous IO Non-Alert, Non-Directory File, Attributes: n/a, ShareMode: Read, Write, AllocationSize: n/a, OpenResult: Opened 98 12:38:33,7791257 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\MCLauncher.lnk SUCCESS Offset: 0, Length: 976, Priority: Normal 98 12:38:33,7791465 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\MCLauncher.lnk SUCCESS Offset: 0, Length: 976, I/O Flags: Non-cached, Paging I/O, Priority: Normal 98 12:38:33,7920684 MCLauncher.exe 6080 CloseFile C:\Users\User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\MCLauncher.lnk SUCCESS 98 12:38:33,7921800 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Classes SUCCESS Desired Access: Maximum Allowed, Granted Access: All Access 98 12:38:33,7922022 MCLauncher.exe 6080 RegSetInfoKey HKCU\Software\Classes SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 98 12:38:33,7922108 MCLauncher.exe 6080 RegQueryKey HKCU\Software\Classes SUCCESS Query: Name 98 12:38:33,7922213 MCLauncher.exe 6080 RegQueryKey HKCU\Software\Classes SUCCESS Query: HandleTags, HandleTags: 0x1 98 12:38:33,7922299 MCLauncher.exe 6080 RegQueryKey HKCU\Software\Classes SUCCESS Query: HandleTags, HandleTags: 0x1 98 12:38:33,7922349 MCLauncher.exe 6080 RegQueryKey HKCU\Software\Classes SUCCESS Query: Name 98 12:38:33,7922432 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Classes\TypeLib SUCCESS Desired Access: Maximum Allowed, Granted Access: All Access 98 12:38:33,7922532 MCLauncher.exe 6080 RegSetInfoKey HKCU\Software\Classes\TypeLib SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 98 12:38:33,7922612 MCLauncher.exe 6080 RegCloseKey HKCU\Software\Classes SUCCESS 98 12:38:33,7922656 MCLauncher.exe 6080 RegQueryKey HKCU\Software\Classes\TypeLib SUCCESS Query: Name 98 12:38:33,7922726 MCLauncher.exe 6080 RegQueryKey HKCU\Software\Classes\TypeLib SUCCESS Query: HandleTags, HandleTags: 0x401 98 12:38:33,7922789 MCLauncher.exe 6080 RegQueryKey HKCU\Software\Classes\TypeLib SUCCESS Query: HandleTags, HandleTags: 0x401 98 12:38:33,7922850 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Classes\TypeLib\{F935DC20-1CF0-11D0-ADB9-00C04FD58A0B} NAME NOT FOUND Desired Access: Maximum Allowed 98 12:38:33,7922975 MCLauncher.exe 6080 RegOpenKey HKCR\TypeLib\{F935DC20-1CF0-11D0-ADB9-00C04FD58A0B} SUCCESS Desired Access: Maximum Allowed, Granted Access: Read 98 12:38:33,7923327 MCLauncher.exe 6080 RegSetInfoKey HKCR\TypeLib\{F935DC20-1CF0-11D0-ADB9-00C04FD58A0B} SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 98 12:38:33,7923404 MCLauncher.exe 6080 RegQueryKey HKCR\TypeLib\{F935DC20-1CF0-11D0-ADB9-00C04FD58A0B} SUCCESS Query: Name 98 12:38:33,7923499 MCLauncher.exe 6080 RegQueryKey HKCR\TypeLib\{F935DC20-1CF0-11D0-ADB9-00C04FD58A0B} SUCCESS Query: HandleTags, HandleTags: 0x401 98 12:38:33,7923609 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Classes\TypeLib\{F935DC20-1CF0-11D0-ADB9-00C04FD58A0B}\1.0 NAME NOT FOUND Desired Access: Maximum Allowed 98 12:38:33,7923709 MCLauncher.exe 6080 RegQueryKey HKCR\TypeLib\{F935DC20-1CF0-11D0-ADB9-00C04FD58A0B} SUCCESS Query: HandleTags, HandleTags: 0x401 98 12:38:33,7923762 MCLauncher.exe 6080 RegOpenKey HKCR\TypeLib\{F935DC20-1CF0-11D0-ADB9-00C04FD58A0B}\1.0 SUCCESS Desired Access: Maximum Allowed, Granted Access: Read 98 12:38:33,7923845 MCLauncher.exe 6080 RegQueryKey HKCR\TypeLib\{F935DC20-1CF0-11D0-ADB9-00C04FD58A0B}\1.0 SUCCESS Query: Name 98 12:38:33,7923903 MCLauncher.exe 6080 RegQueryKey HKCR\TypeLib\{F935DC20-1CF0-11D0-ADB9-00C04FD58A0B}\1.0 SUCCESS Query: HandleTags, HandleTags: 0x401 98 12:38:33,7923997 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Classes\TypeLib\{F935DC20-1CF0-11D0-ADB9-00C04FD58A0B}\1.0\419 NAME NOT FOUND Desired Access: Maximum Allowed 98 12:38:33,7924072 MCLauncher.exe 6080 RegQueryKey HKCR\TypeLib\{F935DC20-1CF0-11D0-ADB9-00C04FD58A0B}\1.0 SUCCESS Query: HandleTags, HandleTags: 0x401 98 12:38:33,7924125 MCLauncher.exe 6080 RegOpenKey HKCR\TypeLib\{F935DC20-1CF0-11D0-ADB9-00C04FD58A0B}\1.0\419 NAME NOT FOUND Desired Access: Maximum Allowed 98 12:38:33,7924197 MCLauncher.exe 6080 RegQueryKey HKCR\TypeLib\{F935DC20-1CF0-11D0-ADB9-00C04FD58A0B}\1.0 SUCCESS Query: Name 98 12:38:33,7924249 MCLauncher.exe 6080 RegQueryKey HKCR\TypeLib\{F935DC20-1CF0-11D0-ADB9-00C04FD58A0B}\1.0 SUCCESS Query: HandleTags, HandleTags: 0x401 98 12:38:33,7924330 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Classes\TypeLib\{F935DC20-1CF0-11D0-ADB9-00C04FD58A0B}\1.0\19 NAME NOT FOUND Desired Access: Maximum Allowed 98 12:38:33,7924405 MCLauncher.exe 6080 RegQueryKey HKCR\TypeLib\{F935DC20-1CF0-11D0-ADB9-00C04FD58A0B}\1.0 SUCCESS Query: HandleTags, HandleTags: 0x401 98 12:38:33,7924454 MCLauncher.exe 6080 RegOpenKey HKCR\TypeLib\{F935DC20-1CF0-11D0-ADB9-00C04FD58A0B}\1.0\19 NAME NOT FOUND Desired Access: Maximum Allowed 98 12:38:33,7924518 MCLauncher.exe 6080 RegQueryKey HKCR\TypeLib\{F935DC20-1CF0-11D0-ADB9-00C04FD58A0B}\1.0 SUCCESS Query: Name 98 12:38:33,7924571 MCLauncher.exe 6080 RegQueryKey HKCR\TypeLib\{F935DC20-1CF0-11D0-ADB9-00C04FD58A0B}\1.0 SUCCESS Query: HandleTags, HandleTags: 0x401 98 12:38:33,7924646 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Classes\TypeLib\{F935DC20-1CF0-11D0-ADB9-00C04FD58A0B}\1.0\0 NAME NOT FOUND Desired Access: Maximum Allowed 98 12:38:33,7924718 MCLauncher.exe 6080 RegQueryKey HKCR\TypeLib\{F935DC20-1CF0-11D0-ADB9-00C04FD58A0B}\1.0 SUCCESS Query: HandleTags, HandleTags: 0x401 98 12:38:33,7924770 MCLauncher.exe 6080 RegOpenKey HKCR\TypeLib\{F935DC20-1CF0-11D0-ADB9-00C04FD58A0B}\1.0\0 SUCCESS Desired Access: Maximum Allowed, Granted Access: Read 98 12:38:33,7924842 MCLauncher.exe 6080 RegQueryKey HKCR\TypeLib\{F935DC20-1CF0-11D0-ADB9-00C04FD58A0B}\1.0\0 SUCCESS Query: Name 98 12:38:33,7924898 MCLauncher.exe 6080 RegQueryKey HKCR\TypeLib\{F935DC20-1CF0-11D0-ADB9-00C04FD58A0B}\1.0\0 SUCCESS Query: HandleTags, HandleTags: 0x401 98 12:38:33,7924981 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Classes\TypeLib\{F935DC20-1CF0-11D0-ADB9-00C04FD58A0B}\1.0\0\win32 NAME NOT FOUND Desired Access: Maximum Allowed 98 12:38:33,7925056 MCLauncher.exe 6080 RegQueryKey HKCR\TypeLib\{F935DC20-1CF0-11D0-ADB9-00C04FD58A0B}\1.0\0 SUCCESS Query: HandleTags, HandleTags: 0x401 98 12:38:33,7925106 MCLauncher.exe 6080 RegOpenKey HKCR\TypeLib\{F935DC20-1CF0-11D0-ADB9-00C04FD58A0B}\1.0\0\win32 SUCCESS Desired Access: Maximum Allowed, Granted Access: Read 98 12:38:33,7925205 MCLauncher.exe 6080 RegCloseKey HKCR\TypeLib\{F935DC20-1CF0-11D0-ADB9-00C04FD58A0B}\1.0\0\win32 SUCCESS 98 12:38:33,7925252 MCLauncher.exe 6080 RegCloseKey HKCR\TypeLib\{F935DC20-1CF0-11D0-ADB9-00C04FD58A0B}\1.0\0 SUCCESS 98 12:38:33,7925291 MCLauncher.exe 6080 RegQueryKey HKCR\TypeLib\{F935DC20-1CF0-11D0-ADB9-00C04FD58A0B}\1.0 SUCCESS Query: Name 98 12:38:33,7925344 MCLauncher.exe 6080 RegQueryKey HKCR\TypeLib\{F935DC20-1CF0-11D0-ADB9-00C04FD58A0B}\1.0 SUCCESS Query: HandleTags, HandleTags: 0x401 98 12:38:33,7925424 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Classes\TypeLib\{F935DC20-1CF0-11D0-ADB9-00C04FD58A0B}\1.0\0 NAME NOT FOUND Desired Access: Maximum Allowed 98 12:38:33,7925496 MCLauncher.exe 6080 RegQueryKey HKCR\TypeLib\{F935DC20-1CF0-11D0-ADB9-00C04FD58A0B}\1.0 SUCCESS Query: HandleTags, HandleTags: 0x401 98 12:38:33,7925549 MCLauncher.exe 6080 RegOpenKey HKCR\TypeLib\{F935DC20-1CF0-11D0-ADB9-00C04FD58A0B}\1.0\0 SUCCESS Desired Access: Maximum Allowed, Granted Access: Read 98 12:38:33,7925610 MCLauncher.exe 6080 RegQueryKey HKCR\TypeLib\{F935DC20-1CF0-11D0-ADB9-00C04FD58A0B}\1.0\0 SUCCESS Query: Name 98 12:38:33,7925665 MCLauncher.exe 6080 RegQueryKey HKCR\TypeLib\{F935DC20-1CF0-11D0-ADB9-00C04FD58A0B}\1.0\0 SUCCESS Query: HandleTags, HandleTags: 0x401 98 12:38:33,7925743 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Classes\TypeLib\{F935DC20-1CF0-11D0-ADB9-00C04FD58A0B}\1.0\0\win32 NAME NOT FOUND Desired Access: Query Value 98 12:38:33,7925815 MCLauncher.exe 6080 RegQueryKey HKCR\TypeLib\{F935DC20-1CF0-11D0-ADB9-00C04FD58A0B}\1.0\0 SUCCESS Query: HandleTags, HandleTags: 0x401 98 12:38:33,7925867 MCLauncher.exe 6080 RegOpenKey HKCR\TypeLib\{F935DC20-1CF0-11D0-ADB9-00C04FD58A0B}\1.0\0\win32 SUCCESS Desired Access: Query Value 98 12:38:33,7925931 MCLauncher.exe 6080 RegQueryKey HKCR\TypeLib\{F935DC20-1CF0-11D0-ADB9-00C04FD58A0B}\1.0\0\win32 SUCCESS Query: Name 98 12:38:33,7925989 MCLauncher.exe 6080 RegQueryKey HKCR\TypeLib\{F935DC20-1CF0-11D0-ADB9-00C04FD58A0B}\1.0\0\win32 SUCCESS Query: HandleTags, HandleTags: 0x401 98 12:38:33,7926064 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Classes\TypeLib\{F935DC20-1CF0-11D0-ADB9-00C04FD58A0B}\1.0\0\win32 NAME NOT FOUND Desired Access: Maximum Allowed 98 12:38:33,7926133 MCLauncher.exe 6080 RegQueryValue HKCR\TypeLib\{F935DC20-1CF0-11D0-ADB9-00C04FD58A0B}\1.0\0\win32\(Default) SUCCESS Type: REG_SZ, Length: 60, Data: C:\Windows\SysWOW64\wshom.ocx 98 12:38:33,7926211 MCLauncher.exe 6080 RegCloseKey HKCR\TypeLib\{F935DC20-1CF0-11D0-ADB9-00C04FD58A0B}\1.0\0\win32 SUCCESS 98 12:38:33,7926275 MCLauncher.exe 6080 RegCloseKey HKCR\TypeLib\{F935DC20-1CF0-11D0-ADB9-00C04FD58A0B}\1.0\0 SUCCESS 98 12:38:33,7926314 MCLauncher.exe 6080 RegCloseKey HKCR\TypeLib\{F935DC20-1CF0-11D0-ADB9-00C04FD58A0B}\1.0 SUCCESS 98 12:38:33,7926350 MCLauncher.exe 6080 RegCloseKey HKCR\TypeLib\{F935DC20-1CF0-11D0-ADB9-00C04FD58A0B} SUCCESS 98 12:38:33,7926388 MCLauncher.exe 6080 RegCloseKey HKCU\Software\Classes\TypeLib SUCCESS 98 12:38:33,7928270 MCLauncher.exe 6080 RegQueryKey HKCU SUCCESS Query: HandleTags, HandleTags: 0x0 98 12:38:33,7928336 MCLauncher.exe 6080 RegQueryKey HKCU SUCCESS Query: Name 98 12:38:33,7928425 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\CPC\Volume SUCCESS Desired Access: Read 98 12:38:33,7928572 MCLauncher.exe 6080 RegSetInfoKey HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\CPC\Volume SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 98 12:38:33,7928652 MCLauncher.exe 6080 RegQueryKey HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\CPC\Volume SUCCESS Query: HandleTags, HandleTags: 0x400 98 12:38:33,7928710 MCLauncher.exe 6080 RegOpenKey HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\CPC\Volume\{110924bd-0000-0000-0000-501f00000000}\ SUCCESS Desired Access: Read 98 12:38:33,7928804 MCLauncher.exe 6080 RegCloseKey HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\CPC\Volume SUCCESS 98 12:38:33,7928860 MCLauncher.exe 6080 RegQueryValue HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\CPC\Volume\{110924bd-0000-0000-0000-501f00000000}\Generation SUCCESS Type: REG_DWORD, Length: 4, Data: 1 98 12:38:33,7929051 MCLauncher.exe 6080 RegCloseKey HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\CPC\Volume\{110924bd-0000-0000-0000-501f00000000} SUCCESS 98 12:38:33,7929541 MCLauncher.exe 6080 CreateFile C:\ SUCCESS Desired Access: Read Attributes, Disposition: Open, Options: Open Reparse Point, Attributes: n/a, ShareMode: Read, Write, Delete, AllocationSize: n/a, OpenResult: Opened 98 12:38:33,7929960 MCLauncher.exe 6080 QueryBasicInformationFile C:\ SUCCESS CreationTime: 16.07.2016 9:04:24, LastAccessTime: 23.08.2018 15:22:34, LastWriteTime: 23.08.2018 15:22:34, ChangeTime: 23.08.2018 15:22:34, FileAttributes: HSD 98 12:38:33,7930051 MCLauncher.exe 6080 CloseFile C:\ SUCCESS 98 12:38:33,7932727 MCLauncher.exe 6080 CreateFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Desired Access: Read Attributes, Disposition: Open, Options: Open Reparse Point, Attributes: n/a, ShareMode: Read, Write, Delete, AllocationSize: n/a, OpenResult: Opened 98 12:38:33,7933090 MCLauncher.exe 6080 QueryBasicInformationFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS CreationTime: 24.08.2018 12:30:11, LastAccessTime: 24.08.2018 12:30:11, LastWriteTime: 24.08.2018 12:38:31, ChangeTime: 24.08.2018 12:38:31, FileAttributes: A 98 12:38:33,7933171 MCLauncher.exe 6080 CloseFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS 98 12:38:33,7938606 MCLauncher.exe 6080 CreateFile C:\Users\User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\MCLauncher.lnk SUCCESS Desired Access: Read Attributes, Disposition: Open, Options: Open Reparse Point, Attributes: n/a, ShareMode: Read, Write, Delete, AllocationSize: n/a, OpenResult: Opened 98 12:38:33,7938800 MCLauncher.exe 6080 QueryBasicInformationFile C:\Users\User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\MCLauncher.lnk SUCCESS CreationTime: 24.08.2018 12:30:31, LastAccessTime: 24.08.2018 12:30:31, LastWriteTime: 24.08.2018 12:30:31, ChangeTime: 24.08.2018 12:30:31, FileAttributes: A 98 12:38:33,7938886 MCLauncher.exe 6080 CloseFile C:\Users\User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\MCLauncher.lnk SUCCESS 98 12:38:33,7940208 MCLauncher.exe 6080 CreateFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Desired Access: Generic Read, Disposition: Open, Options: Synchronous IO Non-Alert, Non-Directory File, Attributes: N, ShareMode: Read, Delete, AllocationSize: n/a, OpenResult: Opened 98 12:38:33,7940477 MCLauncher.exe 6080 QueryStandardInformationFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS AllocationSize: 17 244 160, EndOfFile: 17 240 149, NumberOfLinks: 1, DeletePending: False, Directory: False 98 12:38:33,7940654 MCLauncher.exe 6080 CreateFileMapping C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS SyncType: SyncTypeOther 98 12:38:33,7941155 MCLauncher.exe 6080 CreateFileMapping C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe FILE LOCKED WITH ONLY READERS SyncType: SyncTypeCreateSection, PageProtection: PAGE_EXECUTE|PAGE_NOCACHE 98 12:38:33,7941327 MCLauncher.exe 6080 QueryNameInformationFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Name: \Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe 98 12:38:33,7942239 MCLauncher.exe 6080 CreateFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Desired Access: Synchronize, Disposition: Open, Options: Synchronous IO Non-Alert, Attributes: N, ShareMode: Read, Write, Delete, AllocationSize: n/a, OpenResult: Opened 98 12:38:33,7942430 MCLauncher.exe 6080 CloseFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS 98 12:38:33,7942962 MCLauncher.exe 6080 QueryNameInformationFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Name: \Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe 98 12:38:33,7943846 MCLauncher.exe 6080 CreateFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Desired Access: Synchronize, Disposition: Open, Options: Synchronous IO Non-Alert, Attributes: N, ShareMode: Read, Write, Delete, AllocationSize: n/a, OpenResult: Opened 98 12:38:33,7944020 MCLauncher.exe 6080 CloseFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS 98 12:38:33,7944430 MCLauncher.exe 6080 CreateFileMapping C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe FILE LOCKED WITH ONLY READERS SyncType: SyncTypeCreateSection, PageProtection: PAGE_EXECUTE|PAGE_NOCACHE 98 12:38:33,7944541 MCLauncher.exe 6080 QueryNameInformationFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Name: \Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe 98 12:38:33,7945815 MCLauncher.exe 6080 CreateFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Desired Access: Synchronize, Disposition: Open, Options: Synchronous IO Non-Alert, Attributes: N, ShareMode: Read, Write, Delete, AllocationSize: n/a, OpenResult: Opened 98 12:38:33,7945987 MCLauncher.exe 6080 CloseFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS 98 12:38:33,7946253 MCLauncher.exe 6080 QueryNameInformationFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Name: \Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe 98 12:38:33,7947073 MCLauncher.exe 6080 CreateFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Desired Access: Synchronize, Disposition: Open, Options: Synchronous IO Non-Alert, Attributes: N, ShareMode: Read, Write, Delete, AllocationSize: n/a, OpenResult: Opened 98 12:38:33,7947237 MCLauncher.exe 6080 CloseFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS 98 12:38:33,7947508 MCLauncher.exe 6080 QueryStandardInformationFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS AllocationSize: 17 244 160, EndOfFile: 17 240 149, NumberOfLinks: 1, DeletePending: False, Directory: False 98 12:38:33,7947647 MCLauncher.exe 6080 CreateFileMapping C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS SyncType: SyncTypeOther 98 12:38:33,7948193 MCLauncher.exe 6080 CloseFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS 98 12:38:33,7950498 MCLauncher.exe 6080 CreateFile C:\Users\User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\MCLauncher.lnk SUCCESS Desired Access: Read Attributes, Disposition: Open, Options: Open Reparse Point, Attributes: n/a, ShareMode: Read, Write, Delete, AllocationSize: n/a, OpenResult: Opened 98 12:38:33,7950672 MCLauncher.exe 6080 QueryBasicInformationFile C:\Users\User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\MCLauncher.lnk SUCCESS CreationTime: 24.08.2018 12:30:31, LastAccessTime: 24.08.2018 12:30:31, LastWriteTime: 24.08.2018 12:30:31, ChangeTime: 24.08.2018 12:30:31, FileAttributes: A 98 12:38:33,7950750 MCLauncher.exe 6080 CloseFile C:\Users\User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\MCLauncher.lnk SUCCESS 98 12:38:33,7951811 MCLauncher.exe 6080 CreateFile C:\Users\User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\MCLauncher.lnk SUCCESS Desired Access: Generic Read/Write, Disposition: OverwriteIf, Options: Synchronous IO Non-Alert, Non-Directory File, Attributes: A, ShareMode: Read, Write, AllocationSize: 0, OpenResult: Overwritten 98 12:38:33,7954180 MCLauncher.exe 6080 QueryNameInformationFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Name: \Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe 98 12:38:33,7955194 MCLauncher.exe 6080 CreateFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Desired Access: Synchronize, Disposition: Open, Options: Synchronous IO Non-Alert, Attributes: N, ShareMode: Read, Write, Delete, AllocationSize: n/a, OpenResult: Opened 98 12:38:33,7955379 MCLauncher.exe 6080 CloseFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS 98 12:38:52,7590214 MCLauncher.exe 6080 WriteFile C:\Users\User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\MCLauncher.lnk SUCCESS Offset: 0, Length: 976, Priority: Normal 98 12:38:52,7591139 MCLauncher.exe 6080 CloseFile C:\Users\User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\MCLauncher.lnk SUCCESS 98 12:38:52,7591973 MCLauncher.exe 6080 QueryNameInformationFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Name: \Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe 98 12:38:52,7593447 MCLauncher.exe 6080 CreateFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Desired Access: Synchronize, Disposition: Open, Options: Synchronous IO Non-Alert, Attributes: N, ShareMode: Read, Write, Delete, AllocationSize: n/a, OpenResult: Opened 98 12:38:52,7593661 MCLauncher.exe 6080 CloseFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS 98 12:38:52,7602781 MCLauncher.exe 6080 CloseFile C:\Windows\SysWOW64\stdole2.tlb SUCCESS 98 12:38:52,7603380 MCLauncher.exe 6080 CloseFile C:\Windows\SysWOW64\wshom.ocx SUCCESS 98 12:38:52,7604125 MCLauncher.exe 6080 RegQueryKey HKCU\Software\Classes SUCCESS Query: Name 98 12:38:52,7604277 MCLauncher.exe 6080 RegQueryKey HKCU\Software\Classes SUCCESS Query: HandleTags, HandleTags: 0x1 98 12:38:52,7604397 MCLauncher.exe 6080 RegQueryKey HKCU\Software\Classes SUCCESS Query: HandleTags, HandleTags: 0x1 98 12:38:52,7604480 MCLauncher.exe 6080 RegQueryKey HKCU\Software\Classes SUCCESS Query: Name 98 12:38:52,7604610 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Classes\wscript.shell NAME NOT FOUND Desired Access: Read 98 12:38:52,7604773 MCLauncher.exe 6080 RegOpenKey HKCR\wscript.shell SUCCESS Desired Access: Read 98 12:38:52,7604901 MCLauncher.exe 6080 RegSetInfoKey HKCR\WScript.Shell SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 98 12:38:52,7604959 MCLauncher.exe 6080 RegQueryKey HKCR\WScript.Shell SUCCESS Query: Name 98 12:38:52,7605034 MCLauncher.exe 6080 RegQueryKey HKCR\WScript.Shell SUCCESS Query: HandleTags, HandleTags: 0x401 98 12:38:52,7605158 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Classes\WScript.Shell\CLSID NAME NOT FOUND Desired Access: Read 98 12:38:52,7605242 MCLauncher.exe 6080 RegQueryKey HKCR\WScript.Shell SUCCESS Query: HandleTags, HandleTags: 0x401 98 12:38:52,7605297 MCLauncher.exe 6080 RegOpenKey HKCR\WScript.Shell\CLSID SUCCESS Desired Access: Read 98 12:38:52,7605386 MCLauncher.exe 6080 RegQueryKey HKCR\WScript.Shell\CLSID SUCCESS Query: Name 98 12:38:52,7605447 MCLauncher.exe 6080 RegQueryKey HKCR\WScript.Shell\CLSID SUCCESS Query: HandleTags, HandleTags: 0x401 98 12:38:52,7605527 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Classes\WScript.Shell\CLSID NAME NOT FOUND Desired Access: Maximum Allowed 98 12:38:52,7605588 MCLauncher.exe 6080 RegQueryValue HKCR\WScript.Shell\CLSID\(Default) SUCCESS Type: REG_SZ, Length: 78, Data: {72C24DD5-D70A-438B-8A42-98424B88AFB8} 98 12:38:52,7605688 MCLauncher.exe 6080 RegCloseKey HKCR\WScript.Shell\CLSID SUCCESS 98 12:38:52,7605737 MCLauncher.exe 6080 RegCloseKey HKCR\WScript.Shell SUCCESS 98 12:38:52,7606269 MCLauncher.exe 6080 RegQueryKey HKCU\Software\Classes SUCCESS Query: Name 98 12:38:52,7606333 MCLauncher.exe 6080 RegQueryKey HKCU\Software\Classes SUCCESS Query: HandleTags, HandleTags: 0x1 98 12:38:52,7606400 MCLauncher.exe 6080 RegQueryKey HKCU\Software\Classes SUCCESS Query: HandleTags, HandleTags: 0x1 98 12:38:52,7606447 MCLauncher.exe 6080 RegQueryKey HKCU\Software\Classes SUCCESS Query: Name 98 12:38:52,7606519 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Classes\wscript.shell NAME NOT FOUND Desired Access: Read 98 12:38:52,7606602 MCLauncher.exe 6080 RegOpenKey HKCR\wscript.shell SUCCESS Desired Access: Read 98 12:38:52,7606668 MCLauncher.exe 6080 RegSetInfoKey HKCR\WScript.Shell SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 98 12:38:52,7606710 MCLauncher.exe 6080 RegQueryKey HKCR\WScript.Shell SUCCESS Query: Name 98 12:38:52,7606763 MCLauncher.exe 6080 RegQueryKey HKCR\WScript.Shell SUCCESS Query: HandleTags, HandleTags: 0x401 98 12:38:52,7606846 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Classes\WScript.Shell\CLSID NAME NOT FOUND Desired Access: Read 98 12:38:52,7606918 MCLauncher.exe 6080 RegQueryKey HKCR\WScript.Shell SUCCESS Query: HandleTags, HandleTags: 0x401 98 12:38:52,7606970 MCLauncher.exe 6080 RegOpenKey HKCR\WScript.Shell\CLSID SUCCESS Desired Access: Read 98 12:38:52,7607034 MCLauncher.exe 6080 RegQueryKey HKCR\WScript.Shell\CLSID SUCCESS Query: Name 98 12:38:52,7607087 MCLauncher.exe 6080 RegQueryKey HKCR\WScript.Shell\CLSID SUCCESS Query: HandleTags, HandleTags: 0x401 98 12:38:52,7607159 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Classes\WScript.Shell\CLSID NAME NOT FOUND Desired Access: Maximum Allowed 98 12:38:52,7607217 MCLauncher.exe 6080 RegQueryValue HKCR\WScript.Shell\CLSID\(Default) SUCCESS Type: REG_SZ, Length: 78, Data: {72C24DD5-D70A-438B-8A42-98424B88AFB8} 98 12:38:52,7607286 MCLauncher.exe 6080 RegCloseKey HKCR\WScript.Shell\CLSID SUCCESS 98 12:38:52,7607328 MCLauncher.exe 6080 RegCloseKey HKCR\WScript.Shell SUCCESS 98 12:38:52,7607746 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Classes SUCCESS Desired Access: Maximum Allowed, Granted Access: All Access 98 12:38:52,7607829 MCLauncher.exe 6080 RegSetInfoKey HKCU\Software\Classes SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 98 12:38:52,7607885 MCLauncher.exe 6080 RegQueryKey HKCU\Software\Classes SUCCESS Query: Name 98 12:38:52,7607943 MCLauncher.exe 6080 RegQueryKey HKCU\Software\Classes SUCCESS Query: HandleTags, HandleTags: 0x1 98 12:38:52,7608007 MCLauncher.exe 6080 RegQueryKey HKCU\Software\Classes SUCCESS Query: HandleTags, HandleTags: 0x1 98 12:38:52,7608054 MCLauncher.exe 6080 RegQueryKey HKCU\Software\Classes SUCCESS Query: Name 98 12:38:52,7608117 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Classes\TypeLib SUCCESS Desired Access: Maximum Allowed, Granted Access: All Access 98 12:38:52,7608203 MCLauncher.exe 6080 RegSetInfoKey HKCU\Software\Classes\TypeLib SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 98 12:38:52,7608250 MCLauncher.exe 6080 RegCloseKey HKCU\Software\Classes SUCCESS 98 12:38:52,7608289 MCLauncher.exe 6080 RegQueryKey HKCU\Software\Classes\TypeLib SUCCESS Query: Name 98 12:38:52,7608350 MCLauncher.exe 6080 RegQueryKey HKCU\Software\Classes\TypeLib SUCCESS Query: HandleTags, HandleTags: 0x401 98 12:38:52,7608414 MCLauncher.exe 6080 RegQueryKey HKCU\Software\Classes\TypeLib SUCCESS Query: HandleTags, HandleTags: 0x401 98 12:38:52,7608467 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Classes\TypeLib\{F935DC20-1CF0-11D0-ADB9-00C04FD58A0B} NAME NOT FOUND Desired Access: Maximum Allowed 98 12:38:52,7608555 MCLauncher.exe 6080 RegOpenKey HKCR\TypeLib\{F935DC20-1CF0-11D0-ADB9-00C04FD58A0B} SUCCESS Desired Access: Maximum Allowed, Granted Access: Read 98 12:38:52,7608630 MCLauncher.exe 6080 RegSetInfoKey HKCR\TypeLib\{F935DC20-1CF0-11D0-ADB9-00C04FD58A0B} SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 98 12:38:52,7608683 MCLauncher.exe 6080 RegQueryKey HKCR\TypeLib\{F935DC20-1CF0-11D0-ADB9-00C04FD58A0B} SUCCESS Query: Name 98 12:38:52,7608752 MCLauncher.exe 6080 RegQueryKey HKCR\TypeLib\{F935DC20-1CF0-11D0-ADB9-00C04FD58A0B} SUCCESS Query: HandleTags, HandleTags: 0x401 98 12:38:52,7608835 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Classes\TypeLib\{F935DC20-1CF0-11D0-ADB9-00C04FD58A0B}\1.0 NAME NOT FOUND Desired Access: Maximum Allowed 98 12:38:52,7608915 MCLauncher.exe 6080 RegQueryKey HKCR\TypeLib\{F935DC20-1CF0-11D0-ADB9-00C04FD58A0B} SUCCESS Query: HandleTags, HandleTags: 0x401 98 12:38:52,7608965 MCLauncher.exe 6080 RegOpenKey HKCR\TypeLib\{F935DC20-1CF0-11D0-ADB9-00C04FD58A0B}\1.0 SUCCESS Desired Access: Maximum Allowed, Granted Access: Read 98 12:38:52,7609043 MCLauncher.exe 6080 RegQueryKey HKCR\TypeLib\{F935DC20-1CF0-11D0-ADB9-00C04FD58A0B}\1.0 SUCCESS Query: Name 98 12:38:52,7609104 MCLauncher.exe 6080 RegQueryKey HKCR\TypeLib\{F935DC20-1CF0-11D0-ADB9-00C04FD58A0B}\1.0 SUCCESS Query: HandleTags, HandleTags: 0x401 98 12:38:52,7609181 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Classes\TypeLib\{F935DC20-1CF0-11D0-ADB9-00C04FD58A0B}\1.0\419 NAME NOT FOUND Desired Access: Maximum Allowed 98 12:38:52,7609256 MCLauncher.exe 6080 RegQueryKey HKCR\TypeLib\{F935DC20-1CF0-11D0-ADB9-00C04FD58A0B}\1.0 SUCCESS Query: HandleTags, HandleTags: 0x401 98 12:38:52,7609306 MCLauncher.exe 6080 RegOpenKey HKCR\TypeLib\{F935DC20-1CF0-11D0-ADB9-00C04FD58A0B}\1.0\419 NAME NOT FOUND Desired Access: Maximum Allowed 98 12:38:52,7609378 MCLauncher.exe 6080 RegQueryKey HKCR\TypeLib\{F935DC20-1CF0-11D0-ADB9-00C04FD58A0B}\1.0 SUCCESS Query: Name 98 12:38:52,7609431 MCLauncher.exe 6080 RegQueryKey HKCR\TypeLib\{F935DC20-1CF0-11D0-ADB9-00C04FD58A0B}\1.0 SUCCESS Query: HandleTags, HandleTags: 0x401 98 12:38:52,7609508 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Classes\TypeLib\{F935DC20-1CF0-11D0-ADB9-00C04FD58A0B}\1.0\19 NAME NOT FOUND Desired Access: Maximum Allowed 98 12:38:52,7609577 MCLauncher.exe 6080 RegQueryKey HKCR\TypeLib\{F935DC20-1CF0-11D0-ADB9-00C04FD58A0B}\1.0 SUCCESS Query: HandleTags, HandleTags: 0x401 98 12:38:52,7609627 MCLauncher.exe 6080 RegOpenKey HKCR\TypeLib\{F935DC20-1CF0-11D0-ADB9-00C04FD58A0B}\1.0\19 NAME NOT FOUND Desired Access: Maximum Allowed 98 12:38:52,7609688 MCLauncher.exe 6080 RegQueryKey HKCR\TypeLib\{F935DC20-1CF0-11D0-ADB9-00C04FD58A0B}\1.0 SUCCESS Query: Name 98 12:38:52,7609741 MCLauncher.exe 6080 RegQueryKey HKCR\TypeLib\{F935DC20-1CF0-11D0-ADB9-00C04FD58A0B}\1.0 SUCCESS Query: HandleTags, HandleTags: 0x401 98 12:38:52,7609819 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Classes\TypeLib\{F935DC20-1CF0-11D0-ADB9-00C04FD58A0B}\1.0\0 NAME NOT FOUND Desired Access: Maximum Allowed 98 12:38:52,7609891 MCLauncher.exe 6080 RegQueryKey HKCR\TypeLib\{F935DC20-1CF0-11D0-ADB9-00C04FD58A0B}\1.0 SUCCESS Query: HandleTags, HandleTags: 0x401 98 12:38:52,7609938 MCLauncher.exe 6080 RegOpenKey HKCR\TypeLib\{F935DC20-1CF0-11D0-ADB9-00C04FD58A0B}\1.0\0 SUCCESS Desired Access: Maximum Allowed, Granted Access: Read 98 12:38:52,7610012 MCLauncher.exe 6080 RegQueryKey HKCR\TypeLib\{F935DC20-1CF0-11D0-ADB9-00C04FD58A0B}\1.0\0 SUCCESS Query: Name 98 12:38:52,7610071 MCLauncher.exe 6080 RegQueryKey HKCR\TypeLib\{F935DC20-1CF0-11D0-ADB9-00C04FD58A0B}\1.0\0 SUCCESS Query: HandleTags, HandleTags: 0x401 98 12:38:52,7610151 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Classes\TypeLib\{F935DC20-1CF0-11D0-ADB9-00C04FD58A0B}\1.0\0\win32 NAME NOT FOUND Desired Access: Maximum Allowed 98 12:38:52,7610226 MCLauncher.exe 6080 RegQueryKey HKCR\TypeLib\{F935DC20-1CF0-11D0-ADB9-00C04FD58A0B}\1.0\0 SUCCESS Query: HandleTags, HandleTags: 0x401 98 12:38:52,7610276 MCLauncher.exe 6080 RegOpenKey HKCR\TypeLib\{F935DC20-1CF0-11D0-ADB9-00C04FD58A0B}\1.0\0\win32 SUCCESS Desired Access: Maximum Allowed, Granted Access: Read 98 12:38:52,7610367 MCLauncher.exe 6080 RegCloseKey HKCR\TypeLib\{F935DC20-1CF0-11D0-ADB9-00C04FD58A0B}\1.0\0\win32 SUCCESS 98 12:38:52,7610406 MCLauncher.exe 6080 RegCloseKey HKCR\TypeLib\{F935DC20-1CF0-11D0-ADB9-00C04FD58A0B}\1.0\0 SUCCESS 98 12:38:52,7610445 MCLauncher.exe 6080 RegQueryKey HKCR\TypeLib\{F935DC20-1CF0-11D0-ADB9-00C04FD58A0B}\1.0 SUCCESS Query: Name 98 12:38:52,7610497 MCLauncher.exe 6080 RegQueryKey HKCR\TypeLib\{F935DC20-1CF0-11D0-ADB9-00C04FD58A0B}\1.0 SUCCESS Query: HandleTags, HandleTags: 0x401 98 12:38:52,7610572 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Classes\TypeLib\{F935DC20-1CF0-11D0-ADB9-00C04FD58A0B}\1.0\0 NAME NOT FOUND Desired Access: Maximum Allowed 98 12:38:52,7610647 MCLauncher.exe 6080 RegQueryKey HKCR\TypeLib\{F935DC20-1CF0-11D0-ADB9-00C04FD58A0B}\1.0 SUCCESS Query: HandleTags, HandleTags: 0x401 98 12:38:52,7610697 MCLauncher.exe 6080 RegOpenKey HKCR\TypeLib\{F935DC20-1CF0-11D0-ADB9-00C04FD58A0B}\1.0\0 SUCCESS Desired Access: Maximum Allowed, Granted Access: Read 98 12:38:52,7610758 MCLauncher.exe 6080 RegQueryKey HKCR\TypeLib\{F935DC20-1CF0-11D0-ADB9-00C04FD58A0B}\1.0\0 SUCCESS Query: Name 98 12:38:52,7610810 MCLauncher.exe 6080 RegQueryKey HKCR\TypeLib\{F935DC20-1CF0-11D0-ADB9-00C04FD58A0B}\1.0\0 SUCCESS Query: HandleTags, HandleTags: 0x401 98 12:38:52,7610888 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Classes\TypeLib\{F935DC20-1CF0-11D0-ADB9-00C04FD58A0B}\1.0\0\win32 NAME NOT FOUND Desired Access: Query Value 98 12:38:52,7610960 MCLauncher.exe 6080 RegQueryKey HKCR\TypeLib\{F935DC20-1CF0-11D0-ADB9-00C04FD58A0B}\1.0\0 SUCCESS Query: HandleTags, HandleTags: 0x401 98 12:38:52,7611010 MCLauncher.exe 6080 RegOpenKey HKCR\TypeLib\{F935DC20-1CF0-11D0-ADB9-00C04FD58A0B}\1.0\0\win32 SUCCESS Desired Access: Query Value 98 12:38:52,7611071 MCLauncher.exe 6080 RegQueryKey HKCR\TypeLib\{F935DC20-1CF0-11D0-ADB9-00C04FD58A0B}\1.0\0\win32 SUCCESS Query: Name 98 12:38:52,7611126 MCLauncher.exe 6080 RegQueryKey HKCR\TypeLib\{F935DC20-1CF0-11D0-ADB9-00C04FD58A0B}\1.0\0\win32 SUCCESS Query: HandleTags, HandleTags: 0x401 98 12:38:52,7611201 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Classes\TypeLib\{F935DC20-1CF0-11D0-ADB9-00C04FD58A0B}\1.0\0\win32 NAME NOT FOUND Desired Access: Maximum Allowed 98 12:38:52,7611265 MCLauncher.exe 6080 RegQueryValue HKCR\TypeLib\{F935DC20-1CF0-11D0-ADB9-00C04FD58A0B}\1.0\0\win32\(Default) SUCCESS Type: REG_SZ, Length: 60, Data: C:\Windows\SysWOW64\wshom.ocx 98 12:38:52,7611328 MCLauncher.exe 6080 RegCloseKey HKCR\TypeLib\{F935DC20-1CF0-11D0-ADB9-00C04FD58A0B}\1.0\0\win32 SUCCESS 98 12:38:52,7612797 MCLauncher.exe 6080 CreateFile C:\Windows\SysWOW64\wshom.ocx SUCCESS Desired Access: Generic Read, Disposition: Open, Options: Synchronous IO Non-Alert, Non-Directory File, Random Access, Attributes: n/a, ShareMode: Read, Delete, AllocationSize: n/a, OpenResult: Opened 98 12:38:52,7613182 MCLauncher.exe 6080 ReadFile C:\Windows\SysWOW64\wshom.ocx SUCCESS Offset: 0, Length: 64, Priority: Normal 98 12:38:52,7613326 MCLauncher.exe 6080 ReadFile C:\Windows\SysWOW64\wshom.ocx SUCCESS Offset: 248, Length: 4 98 12:38:52,7613395 MCLauncher.exe 6080 ReadFile C:\Windows\SysWOW64\wshom.ocx SUCCESS Offset: 252, Length: 20 98 12:38:52,7613465 MCLauncher.exe 6080 ReadFile C:\Windows\SysWOW64\wshom.ocx SUCCESS Offset: 496, Length: 40 98 12:38:52,7613548 MCLauncher.exe 6080 ReadFile C:\Windows\SysWOW64\wshom.ocx SUCCESS Offset: 536, Length: 40 98 12:38:52,7613606 MCLauncher.exe 6080 ReadFile C:\Windows\SysWOW64\wshom.ocx SUCCESS Offset: 576, Length: 40 98 12:38:52,7613661 MCLauncher.exe 6080 ReadFile C:\Windows\SysWOW64\wshom.ocx SUCCESS Offset: 616, Length: 40 98 12:38:52,7613717 MCLauncher.exe 6080 ReadFile C:\Windows\SysWOW64\wshom.ocx SUCCESS Offset: 656, Length: 40 98 12:38:52,7613786 MCLauncher.exe 6080 ReadFile C:\Windows\SysWOW64\wshom.ocx SUCCESS Offset: 86 528, Length: 16 98 12:38:52,7613844 MCLauncher.exe 6080 ReadFile C:\Windows\SysWOW64\wshom.ocx SUCCESS Offset: 86 544, Length: 8 98 12:38:52,7613911 MCLauncher.exe 6080 ReadFile C:\Windows\SysWOW64\wshom.ocx SUCCESS Offset: 87 904, Length: 2 98 12:38:52,7613972 MCLauncher.exe 6080 ReadFile C:\Windows\SysWOW64\wshom.ocx SUCCESS Offset: 86 552, Length: 8 98 12:38:52,7614035 MCLauncher.exe 6080 ReadFile C:\Windows\SysWOW64\wshom.ocx SUCCESS Offset: 87 888, Length: 2 98 12:38:52,7614091 MCLauncher.exe 6080 ReadFile C:\Windows\SysWOW64\wshom.ocx SUCCESS Offset: 87 890, Length: 14 98 12:38:52,7614166 MCLauncher.exe 6080 ReadFile C:\Windows\SysWOW64\wshom.ocx SUCCESS Offset: 86 600, Length: 16 98 12:38:52,7614229 MCLauncher.exe 6080 ReadFile C:\Windows\SysWOW64\wshom.ocx SUCCESS Offset: 86 616, Length: 8 98 12:38:52,7614296 MCLauncher.exe 6080 ReadFile C:\Windows\SysWOW64\wshom.ocx SUCCESS Offset: 86 872, Length: 16 98 12:38:52,7614351 MCLauncher.exe 6080 ReadFile C:\Windows\SysWOW64\wshom.ocx SUCCESS Offset: 86 888, Length: 8 98 12:38:52,7614412 MCLauncher.exe 6080 ReadFile C:\Windows\SysWOW64\wshom.ocx SUCCESS Offset: 87 488, Length: 16 98 12:38:52,7614476 MCLauncher.exe 6080 QueryStandardInformationFile C:\Windows\SysWOW64\wshom.ocx SUCCESS AllocationSize: 126 976, EndOfFile: 125 952, NumberOfLinks: 3, DeletePending: False, Directory: False 98 12:38:52,7614589 MCLauncher.exe 6080 CreateFileMapping C:\Windows\SysWOW64\wshom.ocx FILE LOCKED WITH ONLY READERS SyncType: SyncTypeCreateSection, PageProtection: PAGE_EXECUTE|PAGE_NOCACHE 98 12:38:52,7614742 MCLauncher.exe 6080 QueryNameInformationFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Name: \Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe 98 12:38:52,7615689 MCLauncher.exe 6080 CreateFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Desired Access: Synchronize, Disposition: Open, Options: Synchronous IO Non-Alert, Attributes: N, ShareMode: Read, Write, Delete, AllocationSize: n/a, OpenResult: Opened 98 12:38:52,7615881 MCLauncher.exe 6080 CloseFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS 98 12:38:52,7616171 MCLauncher.exe 6080 QueryNameInformationFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Name: \Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe 98 12:38:52,7617019 MCLauncher.exe 6080 CreateFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Desired Access: Synchronize, Disposition: Open, Options: Synchronous IO Non-Alert, Attributes: N, ShareMode: Read, Write, Delete, AllocationSize: n/a, OpenResult: Opened 98 12:38:52,7617191 MCLauncher.exe 6080 CloseFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS 98 12:38:52,7617831 MCLauncher.exe 6080 QueryStandardInformationFile C:\Windows\SysWOW64\wshom.ocx SUCCESS AllocationSize: 126 976, EndOfFile: 125 952, NumberOfLinks: 3, DeletePending: False, Directory: False 98 12:38:52,7617986 MCLauncher.exe 6080 CreateFileMapping C:\Windows\SysWOW64\wshom.ocx SUCCESS SyncType: SyncTypeOther 98 12:38:52,7618291 MCLauncher.exe 6080 RegCloseKey HKCR\TypeLib\{F935DC20-1CF0-11D0-ADB9-00C04FD58A0B}\1.0\0 SUCCESS 98 12:38:52,7618355 MCLauncher.exe 6080 RegCloseKey HKCR\TypeLib\{F935DC20-1CF0-11D0-ADB9-00C04FD58A0B}\1.0 SUCCESS 98 12:38:52,7618393 MCLauncher.exe 6080 RegCloseKey HKCR\TypeLib\{F935DC20-1CF0-11D0-ADB9-00C04FD58A0B} SUCCESS 98 12:38:52,7618435 MCLauncher.exe 6080 RegCloseKey HKCU\Software\Classes\TypeLib SUCCESS 98 12:38:52,7619937 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Classes SUCCESS Desired Access: Maximum Allowed, Granted Access: All Access 98 12:38:52,7620039 MCLauncher.exe 6080 RegSetInfoKey HKCU\Software\Classes SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 98 12:38:52,7620103 MCLauncher.exe 6080 RegQueryKey HKCU\Software\Classes SUCCESS Query: Name 98 12:38:52,7620175 MCLauncher.exe 6080 RegQueryKey HKCU\Software\Classes SUCCESS Query: HandleTags, HandleTags: 0x1 98 12:38:52,7620252 MCLauncher.exe 6080 RegQueryKey HKCU\Software\Classes SUCCESS Query: HandleTags, HandleTags: 0x1 98 12:38:52,7620300 MCLauncher.exe 6080 RegQueryKey HKCU\Software\Classes SUCCESS Query: Name 98 12:38:52,7620380 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Classes\TypeLib SUCCESS Desired Access: Maximum Allowed, Granted Access: All Access 98 12:38:52,7620463 MCLauncher.exe 6080 RegSetInfoKey HKCU\Software\Classes\TypeLib SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 98 12:38:52,7620518 MCLauncher.exe 6080 RegCloseKey HKCU\Software\Classes SUCCESS 98 12:38:52,7620563 MCLauncher.exe 6080 RegQueryKey HKCU\Software\Classes\TypeLib SUCCESS Query: Name 98 12:38:52,7620624 MCLauncher.exe 6080 RegQueryKey HKCU\Software\Classes\TypeLib SUCCESS Query: HandleTags, HandleTags: 0x401 98 12:38:52,7620690 MCLauncher.exe 6080 RegQueryKey HKCU\Software\Classes\TypeLib SUCCESS Query: HandleTags, HandleTags: 0x401 98 12:38:52,7620746 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Classes\TypeLib\{00020430-0000-0000-C000-000000000046} NAME NOT FOUND Desired Access: Maximum Allowed 98 12:38:52,7620845 MCLauncher.exe 6080 RegOpenKey HKCR\TypeLib\{00020430-0000-0000-C000-000000000046} SUCCESS Desired Access: Maximum Allowed, Granted Access: Read 98 12:38:52,7620934 MCLauncher.exe 6080 RegSetInfoKey HKCR\TypeLib\{00020430-0000-0000-C000-000000000046} SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 98 12:38:52,7620981 MCLauncher.exe 6080 RegQueryKey HKCR\TypeLib\{00020430-0000-0000-C000-000000000046} SUCCESS Query: Name 98 12:38:52,7621045 MCLauncher.exe 6080 RegQueryKey HKCR\TypeLib\{00020430-0000-0000-C000-000000000046} SUCCESS Query: HandleTags, HandleTags: 0x401 98 12:38:52,7621136 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Classes\TypeLib\{00020430-0000-0000-C000-000000000046}\2.0 NAME NOT FOUND Desired Access: Maximum Allowed 98 12:38:52,7621219 MCLauncher.exe 6080 RegQueryKey HKCR\TypeLib\{00020430-0000-0000-C000-000000000046} SUCCESS Query: HandleTags, HandleTags: 0x401 98 12:38:52,7621269 MCLauncher.exe 6080 RegOpenKey HKCR\TypeLib\{00020430-0000-0000-C000-000000000046}\2.0 SUCCESS Desired Access: Maximum Allowed, Granted Access: Read 98 12:38:52,7621341 MCLauncher.exe 6080 RegQueryKey HKCR\TypeLib\{00020430-0000-0000-C000-000000000046}\2.0 SUCCESS Query: Name 98 12:38:52,7621402 MCLauncher.exe 6080 RegQueryKey HKCR\TypeLib\{00020430-0000-0000-C000-000000000046}\2.0 SUCCESS Query: HandleTags, HandleTags: 0x401 98 12:38:52,7621485 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Classes\TypeLib\{00020430-0000-0000-C000-000000000046}\2.0\0 NAME NOT FOUND Desired Access: Maximum Allowed 98 12:38:52,7621560 MCLauncher.exe 6080 RegQueryKey HKCR\TypeLib\{00020430-0000-0000-C000-000000000046}\2.0 SUCCESS Query: HandleTags, HandleTags: 0x401 98 12:38:52,7621610 MCLauncher.exe 6080 RegOpenKey HKCR\TypeLib\{00020430-0000-0000-C000-000000000046}\2.0\0 SUCCESS Desired Access: Maximum Allowed, Granted Access: Read 98 12:38:52,7621682 MCLauncher.exe 6080 RegQueryKey HKCR\TypeLib\{00020430-0000-0000-C000-000000000046}\2.0\0 SUCCESS Query: Name 98 12:38:52,7621743 MCLauncher.exe 6080 RegQueryKey HKCR\TypeLib\{00020430-0000-0000-C000-000000000046}\2.0\0 SUCCESS Query: HandleTags, HandleTags: 0x401 98 12:38:52,7621823 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Classes\TypeLib\{00020430-0000-0000-C000-000000000046}\2.0\0\win32 NAME NOT FOUND Desired Access: Maximum Allowed 98 12:38:52,7622084 MCLauncher.exe 6080 RegQueryKey HKCR\TypeLib\{00020430-0000-0000-C000-000000000046}\2.0\0 SUCCESS Query: HandleTags, HandleTags: 0x401 98 12:38:52,7622178 MCLauncher.exe 6080 RegOpenKey HKCR\TypeLib\{00020430-0000-0000-C000-000000000046}\2.0\0\win32 SUCCESS Desired Access: Maximum Allowed, Granted Access: Read 98 12:38:52,7622330 MCLauncher.exe 6080 RegCloseKey HKCR\TypeLib\{00020430-0000-0000-C000-000000000046}\2.0\0\win32 SUCCESS 98 12:38:52,7622389 MCLauncher.exe 6080 RegCloseKey HKCR\TypeLib\{00020430-0000-0000-C000-000000000046}\2.0\0 SUCCESS 98 12:38:52,7622436 MCLauncher.exe 6080 RegQueryKey HKCR\TypeLib\{00020430-0000-0000-C000-000000000046}\2.0 SUCCESS Query: Name 98 12:38:52,7622499 MCLauncher.exe 6080 RegQueryKey HKCR\TypeLib\{00020430-0000-0000-C000-000000000046}\2.0 SUCCESS Query: HandleTags, HandleTags: 0x401 98 12:38:52,7622596 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Classes\TypeLib\{00020430-0000-0000-C000-000000000046}\2.0\0 NAME NOT FOUND Desired Access: Maximum Allowed 98 12:38:52,7622682 MCLauncher.exe 6080 RegQueryKey HKCR\TypeLib\{00020430-0000-0000-C000-000000000046}\2.0 SUCCESS Query: HandleTags, HandleTags: 0x401 98 12:38:52,7622732 MCLauncher.exe 6080 RegOpenKey HKCR\TypeLib\{00020430-0000-0000-C000-000000000046}\2.0\0 SUCCESS Desired Access: Maximum Allowed, Granted Access: Read 98 12:38:52,7622801 MCLauncher.exe 6080 RegQueryKey HKCR\TypeLib\{00020430-0000-0000-C000-000000000046}\2.0\0 SUCCESS Query: Name 98 12:38:52,7622857 MCLauncher.exe 6080 RegQueryKey HKCR\TypeLib\{00020430-0000-0000-C000-000000000046}\2.0\0 SUCCESS Query: HandleTags, HandleTags: 0x401 98 12:38:52,7622937 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Classes\TypeLib\{00020430-0000-0000-C000-000000000046}\2.0\0\win32 NAME NOT FOUND Desired Access: Query Value 98 12:38:52,7623012 MCLauncher.exe 6080 RegQueryKey HKCR\TypeLib\{00020430-0000-0000-C000-000000000046}\2.0\0 SUCCESS Query: HandleTags, HandleTags: 0x401 98 12:38:52,7623062 MCLauncher.exe 6080 RegOpenKey HKCR\TypeLib\{00020430-0000-0000-C000-000000000046}\2.0\0\win32 SUCCESS Desired Access: Query Value 98 12:38:52,7623126 MCLauncher.exe 6080 RegQueryKey HKCR\TypeLib\{00020430-0000-0000-C000-000000000046}\2.0\0\win32 SUCCESS Query: Name 98 12:38:52,7623181 MCLauncher.exe 6080 RegQueryKey HKCR\TypeLib\{00020430-0000-0000-C000-000000000046}\2.0\0\win32 SUCCESS Query: HandleTags, HandleTags: 0x401 98 12:38:52,7623259 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Classes\TypeLib\{00020430-0000-0000-C000-000000000046}\2.0\0\win32 NAME NOT FOUND Desired Access: Maximum Allowed 98 12:38:52,7623322 MCLauncher.exe 6080 RegQueryValue HKCR\TypeLib\{00020430-0000-0000-C000-000000000046}\2.0\0\win32\(Default) SUCCESS Type: REG_SZ, Length: 64, Data: C:\Windows\SysWOW64\stdole2.tlb 98 12:38:52,7623394 MCLauncher.exe 6080 RegCloseKey HKCR\TypeLib\{00020430-0000-0000-C000-000000000046}\2.0\0\win32 SUCCESS 98 12:38:52,7624511 MCLauncher.exe 6080 CreateFile C:\Windows\SysWOW64\stdole2.tlb SUCCESS Desired Access: Generic Read, Disposition: Open, Options: Synchronous IO Non-Alert, Non-Directory File, Random Access, Attributes: n/a, ShareMode: Read, Delete, AllocationSize: n/a, OpenResult: Opened 98 12:38:52,7624868 MCLauncher.exe 6080 ReadFile C:\Windows\SysWOW64\stdole2.tlb SUCCESS Offset: 0, Length: 64, Priority: Normal 98 12:38:52,7625007 MCLauncher.exe 6080 ReadFile C:\Windows\SysWOW64\stdole2.tlb SUCCESS Offset: 184, Length: 4 98 12:38:52,7625076 MCLauncher.exe 6080 ReadFile C:\Windows\SysWOW64\stdole2.tlb SUCCESS Offset: 188, Length: 20 98 12:38:52,7625143 MCLauncher.exe 6080 ReadFile C:\Windows\SysWOW64\stdole2.tlb SUCCESS Offset: 432, Length: 40 98 12:38:52,7625212 MCLauncher.exe 6080 ReadFile C:\Windows\SysWOW64\stdole2.tlb SUCCESS Offset: 472, Length: 40 98 12:38:52,7625278 MCLauncher.exe 6080 ReadFile C:\Windows\SysWOW64\stdole2.tlb SUCCESS Offset: 1 024, Length: 16 98 12:38:52,7625336 MCLauncher.exe 6080 ReadFile C:\Windows\SysWOW64\stdole2.tlb SUCCESS Offset: 1 040, Length: 8 98 12:38:52,7625403 MCLauncher.exe 6080 ReadFile C:\Windows\SysWOW64\stdole2.tlb SUCCESS Offset: 1 272, Length: 2 98 12:38:52,7625464 MCLauncher.exe 6080 ReadFile C:\Windows\SysWOW64\stdole2.tlb SUCCESS Offset: 1 048, Length: 8 98 12:38:52,7625528 MCLauncher.exe 6080 ReadFile C:\Windows\SysWOW64\stdole2.tlb SUCCESS Offset: 1 256, Length: 2 98 12:38:52,7625583 MCLauncher.exe 6080 ReadFile C:\Windows\SysWOW64\stdole2.tlb SUCCESS Offset: 1 258, Length: 14 98 12:38:52,7625655 MCLauncher.exe 6080 ReadFile C:\Windows\SysWOW64\stdole2.tlb SUCCESS Offset: 1 088, Length: 16 98 12:38:52,7625719 MCLauncher.exe 6080 ReadFile C:\Windows\SysWOW64\stdole2.tlb SUCCESS Offset: 1 104, Length: 8 98 12:38:52,7625788 MCLauncher.exe 6080 ReadFile C:\Windows\SysWOW64\stdole2.tlb SUCCESS Offset: 1 160, Length: 16 98 12:38:52,7625841 MCLauncher.exe 6080 ReadFile C:\Windows\SysWOW64\stdole2.tlb SUCCESS Offset: 1 176, Length: 8 98 12:38:52,7625902 MCLauncher.exe 6080 ReadFile C:\Windows\SysWOW64\stdole2.tlb SUCCESS Offset: 1 224, Length: 16 98 12:38:52,7625965 MCLauncher.exe 6080 QueryStandardInformationFile C:\Windows\SysWOW64\stdole2.tlb SUCCESS AllocationSize: 20 480, EndOfFile: 18 432, NumberOfLinks: 2, DeletePending: False, Directory: False 98 12:38:52,7626062 MCLauncher.exe 6080 CreateFileMapping C:\Windows\SysWOW64\stdole2.tlb FILE LOCKED WITH ONLY READERS SyncType: SyncTypeCreateSection, PageProtection: PAGE_EXECUTE|PAGE_NOCACHE 98 12:38:52,7626187 MCLauncher.exe 6080 QueryNameInformationFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Name: \Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe 98 12:38:52,7627099 MCLauncher.exe 6080 CreateFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Desired Access: Synchronize, Disposition: Open, Options: Synchronous IO Non-Alert, Attributes: N, ShareMode: Read, Write, Delete, AllocationSize: n/a, OpenResult: Opened 98 12:38:52,7627287 MCLauncher.exe 6080 CloseFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS 98 12:38:52,7627572 MCLauncher.exe 6080 QueryNameInformationFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Name: \Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe 98 12:38:52,7628415 MCLauncher.exe 6080 CreateFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Desired Access: Synchronize, Disposition: Open, Options: Synchronous IO Non-Alert, Attributes: N, ShareMode: Read, Write, Delete, AllocationSize: n/a, OpenResult: Opened 98 12:38:52,7628584 MCLauncher.exe 6080 CloseFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS 98 12:38:52,7629160 MCLauncher.exe 6080 QueryStandardInformationFile C:\Windows\SysWOW64\stdole2.tlb SUCCESS AllocationSize: 20 480, EndOfFile: 18 432, NumberOfLinks: 2, DeletePending: False, Directory: False 98 12:38:52,7629312 MCLauncher.exe 6080 CreateFileMapping C:\Windows\SysWOW64\stdole2.tlb SUCCESS SyncType: SyncTypeOther 98 12:38:52,7629606 MCLauncher.exe 6080 RegCloseKey HKCR\TypeLib\{00020430-0000-0000-C000-000000000046}\2.0\0 SUCCESS 98 12:38:52,7629664 MCLauncher.exe 6080 RegCloseKey HKCR\TypeLib\{00020430-0000-0000-C000-000000000046}\2.0 SUCCESS 98 12:38:52,7629706 MCLauncher.exe 6080 RegCloseKey HKCR\TypeLib\{00020430-0000-0000-C000-000000000046} SUCCESS 98 12:38:52,7629744 MCLauncher.exe 6080 RegCloseKey HKCU\Software\Classes\TypeLib SUCCESS 98 12:38:52,7632548 MCLauncher.exe 6080 CreateFile C:\Users\User\AppData\Roaming\MCLauncher\MCLUpdater.lnk SUCCESS Desired Access: Generic Read, Disposition: Open, Options: Synchronous IO Non-Alert, Non-Directory File, Attributes: n/a, ShareMode: Read, Write, AllocationSize: n/a, OpenResult: Opened 98 12:38:52,7633058 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLUpdater.lnk SUCCESS Offset: 0, Length: 910, Priority: Normal 98 12:38:52,7633288 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLUpdater.lnk SUCCESS Offset: 0, Length: 910, I/O Flags: Non-cached, Paging I/O, Priority: Normal 98 12:38:52,8068127 MCLauncher.exe 6080 CloseFile C:\Users\User\AppData\Roaming\MCLauncher\MCLUpdater.lnk SUCCESS 98 12:38:52,8069103 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Classes SUCCESS Desired Access: Maximum Allowed, Granted Access: All Access 98 12:38:52,8069291 MCLauncher.exe 6080 RegSetInfoKey HKCU\Software\Classes SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 98 12:38:52,8069366 MCLauncher.exe 6080 RegQueryKey HKCU\Software\Classes SUCCESS Query: Name 98 12:38:52,8069452 MCLauncher.exe 6080 RegQueryKey HKCU\Software\Classes SUCCESS Query: HandleTags, HandleTags: 0x1 98 12:38:52,8069529 MCLauncher.exe 6080 RegQueryKey HKCU\Software\Classes SUCCESS Query: HandleTags, HandleTags: 0x1 98 12:38:52,8069576 MCLauncher.exe 6080 RegQueryKey HKCU\Software\Classes SUCCESS Query: Name 98 12:38:52,8069660 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Classes\TypeLib SUCCESS Desired Access: Maximum Allowed, Granted Access: All Access 98 12:38:52,8069759 MCLauncher.exe 6080 RegSetInfoKey HKCU\Software\Classes\TypeLib SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 98 12:38:52,8069834 MCLauncher.exe 6080 RegCloseKey HKCU\Software\Classes SUCCESS 98 12:38:52,8069878 MCLauncher.exe 6080 RegQueryKey HKCU\Software\Classes\TypeLib SUCCESS Query: Name 98 12:38:52,8069950 MCLauncher.exe 6080 RegQueryKey HKCU\Software\Classes\TypeLib SUCCESS Query: HandleTags, HandleTags: 0x401 98 12:38:52,8070014 MCLauncher.exe 6080 RegQueryKey HKCU\Software\Classes\TypeLib SUCCESS Query: HandleTags, HandleTags: 0x401 98 12:38:52,8070075 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Classes\TypeLib\{F935DC20-1CF0-11D0-ADB9-00C04FD58A0B} NAME NOT FOUND Desired Access: Maximum Allowed 98 12:38:52,8070191 MCLauncher.exe 6080 RegOpenKey HKCR\TypeLib\{F935DC20-1CF0-11D0-ADB9-00C04FD58A0B} SUCCESS Desired Access: Maximum Allowed, Granted Access: Read 98 12:38:52,8070297 MCLauncher.exe 6080 RegSetInfoKey HKCR\TypeLib\{F935DC20-1CF0-11D0-ADB9-00C04FD58A0B} SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 98 12:38:52,8070347 MCLauncher.exe 6080 RegQueryKey HKCR\TypeLib\{F935DC20-1CF0-11D0-ADB9-00C04FD58A0B} SUCCESS Query: Name 98 12:38:52,8070419 MCLauncher.exe 6080 RegQueryKey HKCR\TypeLib\{F935DC20-1CF0-11D0-ADB9-00C04FD58A0B} SUCCESS Query: HandleTags, HandleTags: 0x401 98 12:38:52,8070513 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Classes\TypeLib\{F935DC20-1CF0-11D0-ADB9-00C04FD58A0B}\1.0 NAME NOT FOUND Desired Access: Maximum Allowed 98 12:38:52,8070599 MCLauncher.exe 6080 RegQueryKey HKCR\TypeLib\{F935DC20-1CF0-11D0-ADB9-00C04FD58A0B} SUCCESS Query: HandleTags, HandleTags: 0x401 98 12:38:52,8070649 MCLauncher.exe 6080 RegOpenKey HKCR\TypeLib\{F935DC20-1CF0-11D0-ADB9-00C04FD58A0B}\1.0 SUCCESS Desired Access: Maximum Allowed, Granted Access: Read 98 12:38:52,8070726 MCLauncher.exe 6080 RegQueryKey HKCR\TypeLib\{F935DC20-1CF0-11D0-ADB9-00C04FD58A0B}\1.0 SUCCESS Query: Name 98 12:38:52,8070784 MCLauncher.exe 6080 RegQueryKey HKCR\TypeLib\{F935DC20-1CF0-11D0-ADB9-00C04FD58A0B}\1.0 SUCCESS Query: HandleTags, HandleTags: 0x401 98 12:38:52,8071064 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Classes\TypeLib\{F935DC20-1CF0-11D0-ADB9-00C04FD58A0B}\1.0\419 NAME NOT FOUND Desired Access: Maximum Allowed 98 12:38:52,8071217 MCLauncher.exe 6080 RegQueryKey HKCR\TypeLib\{F935DC20-1CF0-11D0-ADB9-00C04FD58A0B}\1.0 SUCCESS Query: HandleTags, HandleTags: 0x401 98 12:38:52,8071308 MCLauncher.exe 6080 RegOpenKey HKCR\TypeLib\{F935DC20-1CF0-11D0-ADB9-00C04FD58A0B}\1.0\419 NAME NOT FOUND Desired Access: Maximum Allowed 98 12:38:52,8071419 MCLauncher.exe 6080 RegQueryKey HKCR\TypeLib\{F935DC20-1CF0-11D0-ADB9-00C04FD58A0B}\1.0 SUCCESS Query: Name 98 12:38:52,8071496 MCLauncher.exe 6080 RegQueryKey HKCR\TypeLib\{F935DC20-1CF0-11D0-ADB9-00C04FD58A0B}\1.0 SUCCESS Query: HandleTags, HandleTags: 0x401 98 12:38:52,8071588 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Classes\TypeLib\{F935DC20-1CF0-11D0-ADB9-00C04FD58A0B}\1.0\19 NAME NOT FOUND Desired Access: Maximum Allowed 98 12:38:52,8071663 MCLauncher.exe 6080 RegQueryKey HKCR\TypeLib\{F935DC20-1CF0-11D0-ADB9-00C04FD58A0B}\1.0 SUCCESS Query: HandleTags, HandleTags: 0x401 98 12:38:52,8071713 MCLauncher.exe 6080 RegOpenKey HKCR\TypeLib\{F935DC20-1CF0-11D0-ADB9-00C04FD58A0B}\1.0\19 NAME NOT FOUND Desired Access: Maximum Allowed 98 12:38:52,8071773 MCLauncher.exe 6080 RegQueryKey HKCR\TypeLib\{F935DC20-1CF0-11D0-ADB9-00C04FD58A0B}\1.0 SUCCESS Query: Name 98 12:38:52,8071826 MCLauncher.exe 6080 RegQueryKey HKCR\TypeLib\{F935DC20-1CF0-11D0-ADB9-00C04FD58A0B}\1.0 SUCCESS Query: HandleTags, HandleTags: 0x401 98 12:38:52,8071904 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Classes\TypeLib\{F935DC20-1CF0-11D0-ADB9-00C04FD58A0B}\1.0\0 NAME NOT FOUND Desired Access: Maximum Allowed 98 12:38:52,8071973 MCLauncher.exe 6080 RegQueryKey HKCR\TypeLib\{F935DC20-1CF0-11D0-ADB9-00C04FD58A0B}\1.0 SUCCESS Query: HandleTags, HandleTags: 0x401 98 12:38:52,8072023 MCLauncher.exe 6080 RegOpenKey HKCR\TypeLib\{F935DC20-1CF0-11D0-ADB9-00C04FD58A0B}\1.0\0 SUCCESS Desired Access: Maximum Allowed, Granted Access: Read 98 12:38:52,8072100 MCLauncher.exe 6080 RegQueryKey HKCR\TypeLib\{F935DC20-1CF0-11D0-ADB9-00C04FD58A0B}\1.0\0 SUCCESS Query: Name 98 12:38:52,8072153 MCLauncher.exe 6080 RegQueryKey HKCR\TypeLib\{F935DC20-1CF0-11D0-ADB9-00C04FD58A0B}\1.0\0 SUCCESS Query: HandleTags, HandleTags: 0x401 98 12:38:52,8072239 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Classes\TypeLib\{F935DC20-1CF0-11D0-ADB9-00C04FD58A0B}\1.0\0\win32 NAME NOT FOUND Desired Access: Maximum Allowed 98 12:38:52,8072311 MCLauncher.exe 6080 RegQueryKey HKCR\TypeLib\{F935DC20-1CF0-11D0-ADB9-00C04FD58A0B}\1.0\0 SUCCESS Query: HandleTags, HandleTags: 0x401 98 12:38:52,8072361 MCLauncher.exe 6080 RegOpenKey HKCR\TypeLib\{F935DC20-1CF0-11D0-ADB9-00C04FD58A0B}\1.0\0\win32 SUCCESS Desired Access: Maximum Allowed, Granted Access: Read 98 12:38:52,8072458 MCLauncher.exe 6080 RegCloseKey HKCR\TypeLib\{F935DC20-1CF0-11D0-ADB9-00C04FD58A0B}\1.0\0\win32 SUCCESS 98 12:38:52,8072505 MCLauncher.exe 6080 RegCloseKey HKCR\TypeLib\{F935DC20-1CF0-11D0-ADB9-00C04FD58A0B}\1.0\0 SUCCESS 98 12:38:52,8072544 MCLauncher.exe 6080 RegQueryKey HKCR\TypeLib\{F935DC20-1CF0-11D0-ADB9-00C04FD58A0B}\1.0 SUCCESS Query: Name 98 12:38:52,8072596 MCLauncher.exe 6080 RegQueryKey HKCR\TypeLib\{F935DC20-1CF0-11D0-ADB9-00C04FD58A0B}\1.0 SUCCESS Query: HandleTags, HandleTags: 0x401 98 12:38:52,8072674 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Classes\TypeLib\{F935DC20-1CF0-11D0-ADB9-00C04FD58A0B}\1.0\0 NAME NOT FOUND Desired Access: Maximum Allowed 98 12:38:52,8072746 MCLauncher.exe 6080 RegQueryKey HKCR\TypeLib\{F935DC20-1CF0-11D0-ADB9-00C04FD58A0B}\1.0 SUCCESS Query: HandleTags, HandleTags: 0x401 98 12:38:52,8072799 MCLauncher.exe 6080 RegOpenKey HKCR\TypeLib\{F935DC20-1CF0-11D0-ADB9-00C04FD58A0B}\1.0\0 SUCCESS Desired Access: Maximum Allowed, Granted Access: Read 98 12:38:52,8072860 MCLauncher.exe 6080 RegQueryKey HKCR\TypeLib\{F935DC20-1CF0-11D0-ADB9-00C04FD58A0B}\1.0\0 SUCCESS Query: Name 98 12:38:52,8072912 MCLauncher.exe 6080 RegQueryKey HKCR\TypeLib\{F935DC20-1CF0-11D0-ADB9-00C04FD58A0B}\1.0\0 SUCCESS Query: HandleTags, HandleTags: 0x401 98 12:38:52,8072990 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Classes\TypeLib\{F935DC20-1CF0-11D0-ADB9-00C04FD58A0B}\1.0\0\win32 NAME NOT FOUND Desired Access: Query Value 98 12:38:52,8073062 MCLauncher.exe 6080 RegQueryKey HKCR\TypeLib\{F935DC20-1CF0-11D0-ADB9-00C04FD58A0B}\1.0\0 SUCCESS Query: HandleTags, HandleTags: 0x401 98 12:38:52,8073112 MCLauncher.exe 6080 RegOpenKey HKCR\TypeLib\{F935DC20-1CF0-11D0-ADB9-00C04FD58A0B}\1.0\0\win32 SUCCESS Desired Access: Query Value 98 12:38:52,8073178 MCLauncher.exe 6080 RegQueryKey HKCR\TypeLib\{F935DC20-1CF0-11D0-ADB9-00C04FD58A0B}\1.0\0\win32 SUCCESS Query: Name 98 12:38:52,8073236 MCLauncher.exe 6080 RegQueryKey HKCR\TypeLib\{F935DC20-1CF0-11D0-ADB9-00C04FD58A0B}\1.0\0\win32 SUCCESS Query: HandleTags, HandleTags: 0x401 98 12:38:52,8073314 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Classes\TypeLib\{F935DC20-1CF0-11D0-ADB9-00C04FD58A0B}\1.0\0\win32 NAME NOT FOUND Desired Access: Maximum Allowed 98 12:38:52,8073378 MCLauncher.exe 6080 RegQueryValue HKCR\TypeLib\{F935DC20-1CF0-11D0-ADB9-00C04FD58A0B}\1.0\0\win32\(Default) SUCCESS Type: REG_SZ, Length: 60, Data: C:\Windows\SysWOW64\wshom.ocx 98 12:38:52,8073452 MCLauncher.exe 6080 RegCloseKey HKCR\TypeLib\{F935DC20-1CF0-11D0-ADB9-00C04FD58A0B}\1.0\0\win32 SUCCESS 98 12:38:52,8073513 MCLauncher.exe 6080 RegCloseKey HKCR\TypeLib\{F935DC20-1CF0-11D0-ADB9-00C04FD58A0B}\1.0\0 SUCCESS 98 12:38:52,8073552 MCLauncher.exe 6080 RegCloseKey HKCR\TypeLib\{F935DC20-1CF0-11D0-ADB9-00C04FD58A0B}\1.0 SUCCESS 98 12:38:52,8073591 MCLauncher.exe 6080 RegCloseKey HKCR\TypeLib\{F935DC20-1CF0-11D0-ADB9-00C04FD58A0B} SUCCESS 98 12:38:52,8073627 MCLauncher.exe 6080 RegCloseKey HKCU\Software\Classes\TypeLib SUCCESS 98 12:38:52,8075392 MCLauncher.exe 6080 RegQueryKey HKCU SUCCESS Query: HandleTags, HandleTags: 0x0 98 12:38:52,8075450 MCLauncher.exe 6080 RegQueryKey HKCU SUCCESS Query: Name 98 12:38:52,8075544 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\CPC\Volume SUCCESS Desired Access: Read 98 12:38:52,8075686 MCLauncher.exe 6080 RegSetInfoKey HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\CPC\Volume SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 98 12:38:52,8075760 MCLauncher.exe 6080 RegQueryKey HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\CPC\Volume SUCCESS Query: HandleTags, HandleTags: 0x400 98 12:38:52,8075818 MCLauncher.exe 6080 RegOpenKey HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\CPC\Volume\{110924bd-0000-0000-0000-501f00000000}\ SUCCESS Desired Access: Read 98 12:38:52,8075915 MCLauncher.exe 6080 RegCloseKey HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\CPC\Volume SUCCESS 98 12:38:52,8075971 MCLauncher.exe 6080 RegQueryValue HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\CPC\Volume\{110924bd-0000-0000-0000-501f00000000}\Generation SUCCESS Type: REG_DWORD, Length: 4, Data: 1 98 12:38:52,8076145 MCLauncher.exe 6080 RegCloseKey HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\CPC\Volume\{110924bd-0000-0000-0000-501f00000000} SUCCESS 98 12:38:52,8076536 MCLauncher.exe 6080 CreateFile C:\ SUCCESS Desired Access: Read Attributes, Disposition: Open, Options: Open Reparse Point, Attributes: n/a, ShareMode: Read, Write, Delete, AllocationSize: n/a, OpenResult: Opened 98 12:38:52,8076888 MCLauncher.exe 6080 QueryBasicInformationFile C:\ SUCCESS CreationTime: 16.07.2016 9:04:24, LastAccessTime: 23.08.2018 15:22:34, LastWriteTime: 23.08.2018 15:22:34, ChangeTime: 23.08.2018 15:22:34, FileAttributes: HSD 98 12:38:52,8076977 MCLauncher.exe 6080 CloseFile C:\ SUCCESS 98 12:38:52,8079476 MCLauncher.exe 6080 CreateFile C:\Users\User\AppData\Roaming\MCLauncher\MCLUpdate.exe NAME NOT FOUND Desired Access: Read Attributes, Disposition: Open, Options: Open Reparse Point, Attributes: n/a, ShareMode: Read, Write, Delete, AllocationSize: n/a 98 12:38:52,8084748 MCLauncher.exe 6080 CreateFile C:\Users\User\AppData\Roaming\MCLauncher\MCLUpdater.lnk SUCCESS Desired Access: Read Attributes, Disposition: Open, Options: Open Reparse Point, Attributes: n/a, ShareMode: Read, Write, Delete, AllocationSize: n/a, OpenResult: Opened 98 12:38:52,8084925 MCLauncher.exe 6080 QueryBasicInformationFile C:\Users\User\AppData\Roaming\MCLauncher\MCLUpdater.lnk SUCCESS CreationTime: 24.08.2018 12:30:31, LastAccessTime: 24.08.2018 12:30:31, LastWriteTime: 24.08.2018 12:30:31, ChangeTime: 24.08.2018 12:30:31, FileAttributes: A 98 12:38:52,8085008 MCLauncher.exe 6080 CloseFile C:\Users\User\AppData\Roaming\MCLauncher\MCLUpdater.lnk SUCCESS 98 12:38:52,8086244 MCLauncher.exe 6080 CreateFile C:\Users\User\AppData\Roaming\MCLauncher\MCLUpdate.exe NAME NOT FOUND Desired Access: Generic Read, Disposition: Open, Options: Synchronous IO Non-Alert, Non-Directory File, Attributes: N, ShareMode: Read, Delete, AllocationSize: n/a 98 12:38:52,8088402 MCLauncher.exe 6080 CreateFile C:\Users\User\AppData\Roaming\MCLauncher\MCLUpdater.lnk SUCCESS Desired Access: Read Attributes, Disposition: Open, Options: Open Reparse Point, Attributes: n/a, ShareMode: Read, Write, Delete, AllocationSize: n/a, OpenResult: Opened 98 12:38:52,8088552 MCLauncher.exe 6080 QueryBasicInformationFile C:\Users\User\AppData\Roaming\MCLauncher\MCLUpdater.lnk SUCCESS CreationTime: 24.08.2018 12:30:31, LastAccessTime: 24.08.2018 12:30:31, LastWriteTime: 24.08.2018 12:30:31, ChangeTime: 24.08.2018 12:30:31, FileAttributes: A 98 12:38:52,8088630 MCLauncher.exe 6080 CloseFile C:\Users\User\AppData\Roaming\MCLauncher\MCLUpdater.lnk SUCCESS 98 12:38:52,8089594 MCLauncher.exe 6080 CreateFile C:\Users\User\AppData\Roaming\MCLauncher\MCLUpdater.lnk SUCCESS Desired Access: Generic Read/Write, Disposition: OverwriteIf, Options: Synchronous IO Non-Alert, Non-Directory File, Attributes: A, ShareMode: Read, Write, AllocationSize: 0, OpenResult: Overwritten 98 12:38:52,8093528 MCLauncher.exe 6080 WriteFile C:\Users\User\AppData\Roaming\MCLauncher\MCLUpdater.lnk SUCCESS Offset: 0, Length: 910, Priority: Normal 98 12:38:52,8093949 MCLauncher.exe 6080 CloseFile C:\Users\User\AppData\Roaming\MCLauncher\MCLUpdater.lnk SUCCESS 98 12:38:52,8094110 MCLauncher.exe 6080 QueryNameInformationFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Name: \Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe 98 12:38:52,8095096 MCLauncher.exe 6080 CreateFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Desired Access: Synchronize, Disposition: Open, Options: Synchronous IO Non-Alert, Attributes: N, ShareMode: Read, Write, Delete, AllocationSize: n/a, OpenResult: Opened 98 12:38:52,8095298 MCLauncher.exe 6080 CloseFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS 98 12:38:52,8167219 MCLauncher.exe 6080 CloseFile C:\Windows\SysWOW64\stdole2.tlb SUCCESS 98 12:38:52,8167638 MCLauncher.exe 6080 CloseFile C:\Windows\SysWOW64\wshom.ocx SUCCESS 98 12:38:52,8170746 MCLauncher.exe 6080 CreateFile C:\Users\User\AppData\Roaming\MCLauncher\font.ttf SUCCESS Desired Access: Read Attributes, Disposition: Open, Options: Open Reparse Point, Attributes: n/a, ShareMode: Read, Write, Delete, AllocationSize: n/a, OpenResult: Opened 98 12:38:52,8171203 MCLauncher.exe 6080 QueryNetworkOpenInformationFile C:\Users\User\AppData\Roaming\MCLauncher\font.ttf SUCCESS CreationTime: 24.08.2018 12:30:32, LastAccessTime: 24.08.2018 12:30:32, LastWriteTime: 24.08.2018 12:30:32, ChangeTime: 24.08.2018 12:30:32, AllocationSize: 01.01.1601 3:00:00, EndOfFile: 01.01.1601 3:00:00, FileAttributes: A 98 12:38:52,8171289 MCLauncher.exe 6080 CloseFile C:\Users\User\AppData\Roaming\MCLauncher\font.ttf SUCCESS 98 12:38:52,8174168 MCLauncher.exe 6080 CreateFile C:\Windows\SysWOW64\mswsock.dll SUCCESS Desired Access: Read Attributes, Disposition: Open, Options: Open Reparse Point, Attributes: n/a, ShareMode: Read, Write, Delete, AllocationSize: n/a, OpenResult: Opened 98 12:38:52,8174437 MCLauncher.exe 6080 QueryBasicInformationFile C:\Windows\SysWOW64\mswsock.dll SUCCESS CreationTime: 16.07.2016 14:42:55, LastAccessTime: 16.07.2016 14:42:55, LastWriteTime: 16.07.2016 14:42:55, ChangeTime: 19.07.2018 19:37:26, FileAttributes: A 98 12:38:52,8174517 MCLauncher.exe 6080 CloseFile C:\Windows\SysWOW64\mswsock.dll SUCCESS 98 12:38:52,8175478 MCLauncher.exe 6080 CreateFile C:\Windows\SysWOW64\mswsock.dll SUCCESS Desired Access: Read Data/List Directory, Execute/Traverse, Synchronize, Disposition: Open, Options: Synchronous IO Non-Alert, Non-Directory File, Attributes: n/a, ShareMode: Read, Delete, AllocationSize: n/a, OpenResult: Opened 98 12:38:52,8175750 MCLauncher.exe 6080 CreateFileMapping C:\Windows\SysWOW64\mswsock.dll FILE LOCKED WITH ONLY READERS SyncType: SyncTypeCreateSection, PageProtection: PAGE_EXECUTE|PAGE_NOCACHE 98 12:38:52,8175891 MCLauncher.exe 6080 QueryNameInformationFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Name: \Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe 98 12:38:52,8176744 MCLauncher.exe 6080 CreateFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Desired Access: Synchronize, Disposition: Open, Options: Synchronous IO Non-Alert, Attributes: N, ShareMode: Read, Write, Delete, AllocationSize: n/a, OpenResult: Opened 98 12:38:52,8176933 MCLauncher.exe 6080 CloseFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS 98 12:38:52,8177215 MCLauncher.exe 6080 QueryNameInformationFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Name: \Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe 98 12:38:52,8178038 MCLauncher.exe 6080 CreateFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Desired Access: Synchronize, Disposition: Open, Options: Synchronous IO Non-Alert, Attributes: N, ShareMode: Read, Write, Delete, AllocationSize: n/a, OpenResult: Opened 98 12:38:52,8178207 MCLauncher.exe 6080 CloseFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS 98 12:38:52,8179116 MCLauncher.exe 6080 CreateFileMapping C:\Windows\SysWOW64\mswsock.dll SUCCESS SyncType: SyncTypeOther 98 12:38:52,8179609 MCLauncher.exe 6080 Load Image C:\Windows\SysWOW64\mswsock.dll SUCCESS Image Base: 0x73ff0000, Image Size: 0x4e000 98 12:38:52,8180909 MCLauncher.exe 6080 CloseFile C:\Windows\SysWOW64\mswsock.dll SUCCESS 98 12:38:52,8182122 MCLauncher.exe 6080 CreateFile C:\Windows\SysWOW64\mswsock.dll SUCCESS Desired Access: Read Control, Disposition: Open, Options: , Attributes: n/a, ShareMode: Read, Delete, AllocationSize: n/a, OpenResult: Opened 98 12:38:52,8182402 MCLauncher.exe 6080 QuerySecurityFile C:\Windows\SysWOW64\mswsock.dll BUFFER OVERFLOW Information: Owner 98 12:38:52,8182480 MCLauncher.exe 6080 QuerySecurityFile C:\Windows\SysWOW64\mswsock.dll SUCCESS Information: Owner 98 12:38:52,8182552 MCLauncher.exe 6080 CloseFile C:\Windows\SysWOW64\mswsock.dll SUCCESS 98 12:38:52,8183192 MCLauncher.exe 6080 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 98 12:38:52,8183266 MCLauncher.exe 6080 RegQueryKey HKLM SUCCESS Query: Name 98 12:38:52,8183369 MCLauncher.exe 6080 RegOpenKey HKLM\SYSTEM\CurrentControlSet\Services\Winsock\Parameters REPARSE Desired Access: Read 98 12:38:52,8183488 MCLauncher.exe 6080 RegOpenKey HKLM\System\CurrentControlSet\Services\Winsock\Parameters SUCCESS Desired Access: Read 98 12:38:52,8183599 MCLauncher.exe 6080 RegSetInfoKey HKLM\System\CurrentControlSet\Services\Winsock\Parameters SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 98 12:38:52,8183654 MCLauncher.exe 6080 RegQueryValue HKLM\System\CurrentControlSet\Services\Winsock\Parameters\Transports SUCCESS Type: REG_MULTI_SZ, Length: 64, Data: vmbus, Psched, Tcpip, Tcpip6, irda 98 12:38:52,8183834 MCLauncher.exe 6080 RegQueryValue HKLM\System\CurrentControlSet\Services\Winsock\Parameters\Transports SUCCESS Type: REG_MULTI_SZ, Length: 64, Data: vmbus, Psched, Tcpip, Tcpip6, irda 98 12:38:52,8183978 MCLauncher.exe 6080 RegCloseKey HKLM\System\CurrentControlSet\Services\Winsock\Parameters SUCCESS 98 12:38:52,8184062 MCLauncher.exe 6080 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 98 12:38:52,8184114 MCLauncher.exe 6080 RegQueryKey HKLM SUCCESS Query: Name 98 12:38:52,8184195 MCLauncher.exe 6080 RegOpenKey HKLM\System\CurrentControlSet\Services\vmbus\Parameters\Winsock REPARSE Desired Access: Read 98 12:38:52,8184272 MCLauncher.exe 6080 RegOpenKey HKLM\System\CurrentControlSet\Services\vmbus\Parameters\Winsock SUCCESS Desired Access: Read 98 12:38:52,8184358 MCLauncher.exe 6080 RegSetInfoKey HKLM\System\CurrentControlSet\Services\vmbus\Parameters\Winsock SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 98 12:38:52,8184405 MCLauncher.exe 6080 RegQueryValue HKLM\System\CurrentControlSet\Services\vmbus\Parameters\Winsock\Mapping SUCCESS Type: REG_BINARY, Length: 44, Data: 03 00 00 00 03 00 00 00 22 00 00 00 01 00 00 00 98 12:38:52,8184544 MCLauncher.exe 6080 RegQueryValue HKLM\System\CurrentControlSet\Services\vmbus\Parameters\Winsock\Mapping SUCCESS Type: REG_BINARY, Length: 44, Data: 03 00 00 00 03 00 00 00 22 00 00 00 01 00 00 00 98 12:38:52,8184674 MCLauncher.exe 6080 RegCloseKey HKLM\System\CurrentControlSet\Services\vmbus\Parameters\Winsock SUCCESS 98 12:38:52,8184749 MCLauncher.exe 6080 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 98 12:38:52,8184801 MCLauncher.exe 6080 RegQueryKey HKLM SUCCESS Query: Name 98 12:38:52,8184876 MCLauncher.exe 6080 RegOpenKey HKLM\System\CurrentControlSet\Services\Psched\Parameters\Winsock REPARSE Desired Access: Read 98 12:38:52,8184948 MCLauncher.exe 6080 RegOpenKey HKLM\System\CurrentControlSet\Services\Psched\Parameters\Winsock SUCCESS Desired Access: Read 98 12:38:52,8185031 MCLauncher.exe 6080 RegSetInfoKey HKLM\System\CurrentControlSet\Services\Psched\Parameters\Winsock SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 98 12:38:52,8185073 MCLauncher.exe 6080 RegQueryValue HKLM\System\CurrentControlSet\Services\Psched\Parameters\Winsock\Mapping BUFFER OVERFLOW Length: 144 98 12:38:52,8185195 MCLauncher.exe 6080 RegQueryValue HKLM\System\CurrentControlSet\Services\Psched\Parameters\Winsock\Mapping BUFFER OVERFLOW Length: 144 98 12:38:52,8185294 MCLauncher.exe 6080 RegQueryValue HKLM\System\CurrentControlSet\Services\Psched\Parameters\Winsock\Mapping SUCCESS Type: REG_BINARY, Length: 152, Data: 0C 00 00 00 03 00 00 00 17 00 00 00 01 00 00 00 98 12:38:52,8185419 MCLauncher.exe 6080 RegCloseKey HKLM\System\CurrentControlSet\Services\Psched\Parameters\Winsock SUCCESS 98 12:38:52,8185486 MCLauncher.exe 6080 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 98 12:38:52,8185538 MCLauncher.exe 6080 RegQueryKey HKLM SUCCESS Query: Name 98 12:38:52,8185610 MCLauncher.exe 6080 RegOpenKey HKLM\SYSTEM\CurrentControlSet\Services\Winsock\Setup Migration\Providers REPARSE Desired Access: Read 98 12:38:52,8185682 MCLauncher.exe 6080 RegOpenKey HKLM\System\CurrentControlSet\Services\Winsock\Setup Migration\Providers SUCCESS Desired Access: Read 98 12:38:52,8185757 MCLauncher.exe 6080 RegSetInfoKey HKLM\System\CurrentControlSet\Services\Winsock\Setup Migration\Providers SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 98 12:38:52,8185824 MCLauncher.exe 6080 RegQueryKey HKLM\System\CurrentControlSet\Services\Winsock\Setup Migration\Providers SUCCESS Query: HandleTags, HandleTags: 0x400 98 12:38:52,8185876 MCLauncher.exe 6080 RegOpenKey HKLM\System\CurrentControlSet\Services\Winsock\Setup Migration\Providers\Psched SUCCESS Desired Access: Read 98 12:38:52,8185948 MCLauncher.exe 6080 RegQueryValue HKLM\System\CurrentControlSet\Services\Winsock\Setup Migration\Providers\Psched\WinSock 2.0 Provider ID SUCCESS Type: REG_BINARY, Length: 16, Data: E0 A9 60 9D 7A 33 D0 11 BD 88 00 00 C0 82 E6 9A 98 12:38:52,8186084 MCLauncher.exe 6080 RegCloseKey HKLM\System\CurrentControlSet\Services\Winsock\Setup Migration\Providers\Psched SUCCESS 98 12:38:52,8186126 MCLauncher.exe 6080 RegCloseKey HKLM\System\CurrentControlSet\Services\Winsock\Setup Migration\Providers SUCCESS 98 12:38:52,8186192 MCLauncher.exe 6080 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 98 12:38:52,8186239 MCLauncher.exe 6080 RegQueryKey HKLM SUCCESS Query: Name 98 12:38:52,8186311 MCLauncher.exe 6080 RegOpenKey HKLM\System\CurrentControlSet\Services\Tcpip\Parameters\Winsock REPARSE Desired Access: Read 98 12:38:52,8186380 MCLauncher.exe 6080 RegOpenKey HKLM\System\CurrentControlSet\Services\Tcpip\Parameters\Winsock SUCCESS Desired Access: Read 98 12:38:52,8186502 MCLauncher.exe 6080 RegSetInfoKey HKLM\System\CurrentControlSet\Services\Tcpip\Parameters\Winsock SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 98 12:38:52,8186544 MCLauncher.exe 6080 RegQueryValue HKLM\System\CurrentControlSet\Services\Tcpip\Parameters\Winsock\Mapping SUCCESS Type: REG_BINARY, Length: 104, Data: 08 00 00 00 03 00 00 00 02 00 00 00 01 00 00 00 98 12:38:52,8186671 MCLauncher.exe 6080 RegQueryValue HKLM\System\CurrentControlSet\Services\Tcpip\Parameters\Winsock\Mapping SUCCESS Type: REG_BINARY, Length: 104, Data: 08 00 00 00 03 00 00 00 02 00 00 00 01 00 00 00 98 12:38:52,8186796 MCLauncher.exe 6080 RegCloseKey HKLM\System\CurrentControlSet\Services\Tcpip\Parameters\Winsock SUCCESS 98 12:38:52,8186885 MCLauncher.exe 6080 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 98 12:38:52,8186935 MCLauncher.exe 6080 RegQueryKey HKLM SUCCESS Query: Name 98 12:38:52,8187007 MCLauncher.exe 6080 RegOpenKey HKLM\SYSTEM\CurrentControlSet\Services\Winsock\Setup Migration\Providers REPARSE Desired Access: Read 98 12:38:52,8187073 MCLauncher.exe 6080 RegOpenKey HKLM\System\CurrentControlSet\Services\Winsock\Setup Migration\Providers SUCCESS Desired Access: Read 98 12:38:52,8187137 MCLauncher.exe 6080 RegSetInfoKey HKLM\System\CurrentControlSet\Services\Winsock\Setup Migration\Providers SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 98 12:38:52,8187195 MCLauncher.exe 6080 RegQueryKey HKLM\System\CurrentControlSet\Services\Winsock\Setup Migration\Providers SUCCESS Query: HandleTags, HandleTags: 0x400 98 12:38:52,8187248 MCLauncher.exe 6080 RegOpenKey HKLM\System\CurrentControlSet\Services\Winsock\Setup Migration\Providers\Tcpip SUCCESS Desired Access: Read 98 12:38:52,8187336 MCLauncher.exe 6080 RegQueryValue HKLM\System\CurrentControlSet\Services\Winsock\Setup Migration\Providers\Tcpip\WinSock 2.0 Provider ID SUCCESS Type: REG_BINARY, Length: 16, Data: A0 1A 0F E7 8B AB CF 11 8C A3 00 80 5F 48 A1 92 98 12:38:52,8187469 MCLauncher.exe 6080 RegCloseKey HKLM\System\CurrentControlSet\Services\Winsock\Setup Migration\Providers\Tcpip SUCCESS 98 12:38:52,8187511 MCLauncher.exe 6080 RegCloseKey HKLM\System\CurrentControlSet\Services\Winsock\Setup Migration\Providers SUCCESS 98 12:38:52,8187600 MCLauncher.exe 6080 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 98 12:38:52,8187652 MCLauncher.exe 6080 RegQueryKey HKLM SUCCESS Query: Name 98 12:38:52,8187721 MCLauncher.exe 6080 RegOpenKey HKLM\System\CurrentControlSet\Services\Tcpip\Parameters\Winsock REPARSE Desired Access: Read 98 12:38:52,8187788 MCLauncher.exe 6080 RegOpenKey HKLM\System\CurrentControlSet\Services\Tcpip\Parameters\Winsock SUCCESS Desired Access: Read 98 12:38:52,8187849 MCLauncher.exe 6080 RegSetInfoKey HKLM\System\CurrentControlSet\Services\Tcpip\Parameters\Winsock SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 98 12:38:52,8187890 MCLauncher.exe 6080 RegQueryValue HKLM\System\CurrentControlSet\Services\Tcpip\Parameters\Winsock\MinSockaddrLength SUCCESS Type: REG_DWORD, Length: 4, Data: 16 98 12:38:52,8188173 MCLauncher.exe 6080 RegQueryValue HKLM\System\CurrentControlSet\Services\Tcpip\Parameters\Winsock\MaxSockaddrLength SUCCESS Type: REG_DWORD, Length: 4, Data: 16 98 12:38:52,8188320 MCLauncher.exe 6080 RegQueryValue HKLM\System\CurrentControlSet\Services\Tcpip\Parameters\Winsock\UseDelayedAcceptance SUCCESS Type: REG_DWORD, Length: 4, Data: 0 98 12:38:52,8188450 MCLauncher.exe 6080 RegCloseKey HKLM\System\CurrentControlSet\Services\Tcpip\Parameters\Winsock SUCCESS 98 12:38:52,8190694 MCLauncher.exe 6080 Thread Create SUCCESS Thread ID: 10188 98 12:38:52,8220018 MCLauncher.exe 6080 CreateFile C:\Users\User\AppData\Roaming\MCLauncher SUCCESS Desired Access: Read Attributes, Disposition: Open, Options: Open Reparse Point, Attributes: n/a, ShareMode: Read, Write, Delete, AllocationSize: n/a, OpenResult: Opened 98 12:38:52,8220203 MCLauncher.exe 6080 QueryNetworkOpenInformationFile C:\Users\User\AppData\Roaming\MCLauncher SUCCESS CreationTime: 24.08.2018 12:30:11, LastAccessTime: 24.08.2018 12:30:32, LastWriteTime: 24.08.2018 12:30:32, ChangeTime: 24.08.2018 12:30:32, AllocationSize: 01.01.1601 3:00:00, EndOfFile: 01.01.1601 3:00:00, FileAttributes: D 98 12:38:52,8220284 MCLauncher.exe 6080 CloseFile C:\Users\User\AppData\Roaming\MCLauncher SUCCESS 98 12:38:52,8221464 MCLauncher.exe 6080 CreateFile C:\Users\User\AppData\Roaming\MCLauncher\settings.config SUCCESS Desired Access: Generic Read, Disposition: Open, Options: Synchronous IO Non-Alert, Non-Directory File, Attributes: N, ShareMode: Read, Write, AllocationSize: n/a, OpenResult: Opened 98 12:38:52,8221949 MCLauncher.exe 6080 QueryInformationVolume C:\Users\User\AppData\Roaming\MCLauncher\settings.config BUFFER OVERFLOW VolumeCreationTime: 19.07.2018 19:30:42, VolumeSerialNumber: B6D8-C2CA, SupportsObjects: True, VolumeLabel: Winb 98 12:38:52,8222054 MCLauncher.exe 6080 QueryAllInformationFile C:\Users\User\AppData\Roaming\MCLauncher\settings.config BUFFER OVERFLOW CreationTime: 24.08.2018 12:30:32, LastAccessTime: 24.08.2018 12:30:32, LastWriteTime: 24.08.2018 12:31:41, ChangeTime: 24.08.2018 12:31:41, FileAttributes: A, AllocationSize: 136, EndOfFile: 131, NumberOfLinks: 1, DeletePending: False, Directory: False, IndexNumber: 0x210000000206e7, EaSize: 0, Access: Generic Read, Position: 0, Mode: Synchronous IO Non-Alert, AlignmentRequirement: Word 98 12:38:52,8222226 MCLauncher.exe 6080 QueryInformationVolume C:\Users\User\AppData\Roaming\MCLauncher\settings.config BUFFER OVERFLOW VolumeCreationTime: 19.07.2018 19:30:42, VolumeSerialNumber: B6D8-C2CA, SupportsObjects: True, VolumeLabel: Winb 98 12:38:52,8222292 MCLauncher.exe 6080 QueryAllInformationFile C:\Users\User\AppData\Roaming\MCLauncher\settings.config BUFFER OVERFLOW CreationTime: 24.08.2018 12:30:32, LastAccessTime: 24.08.2018 12:30:32, LastWriteTime: 24.08.2018 12:31:41, ChangeTime: 24.08.2018 12:31:41, FileAttributes: A, AllocationSize: 136, EndOfFile: 131, NumberOfLinks: 1, DeletePending: False, Directory: False, IndexNumber: 0x210000000206e7, EaSize: 0, Access: Generic Read, Position: 0, Mode: Synchronous IO Non-Alert, AlignmentRequirement: Word 98 12:38:52,8222442 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\settings.config SUCCESS Offset: 0, Length: 131, Priority: Normal 98 12:38:52,8222664 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\settings.config SUCCESS Offset: 0, Length: 131, I/O Flags: Non-cached, Paging I/O, Priority: Normal 98 12:38:52,8223029 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\settings.config END OF FILE Offset: 131, Length: 4 096 98 12:38:52,8223154 MCLauncher.exe 6080 CloseFile C:\Users\User\AppData\Roaming\MCLauncher\settings.config SUCCESS 98 12:38:52,8224398 MCLauncher.exe 6080 RegQueryKey HKCU SUCCESS Query: HandleTags, HandleTags: 0x0 98 12:38:52,8224473 MCLauncher.exe 6080 RegQueryKey HKCU SUCCESS Query: Name 98 12:38:52,8224587 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Python\PythonCore\MCLauncher\Modules\design NAME NOT FOUND Desired Access: Query Value 98 12:38:52,8224744 MCLauncher.exe 6080 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 98 12:38:52,8224792 MCLauncher.exe 6080 RegQueryKey HKLM SUCCESS Query: Name 98 12:38:52,8224888 MCLauncher.exe 6080 RegOpenKey HKLM\Software\WOW6432Node\Python\PythonCore\MCLauncher\Modules\design NAME NOT FOUND Desired Access: Query Value 98 12:38:52,8226094 MCLauncher.exe 6080 CreateFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Desired Access: Generic Read, Disposition: Open, Options: Synchronous IO Non-Alert, Non-Directory File, Attributes: N, ShareMode: Read, Write, AllocationSize: n/a, OpenResult: Opened 98 12:38:52,8226354 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 1 217 536, Length: 4 096, Priority: Normal 98 12:38:52,8226556 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 1 217 562, Length: 512 98 12:38:52,8228158 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 1 217 576, Length: 571 904 98 12:38:52,8229263 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 1 789 480, Length: 512 98 12:38:52,8229366 MCLauncher.exe 6080 CloseFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS 98 12:38:52,8266585 MCLauncher.exe 6080 RegQueryKey HKCU SUCCESS Query: HandleTags, HandleTags: 0x0 98 12:38:52,8266738 MCLauncher.exe 6080 RegQueryKey HKCU SUCCESS Query: Name 98 12:38:52,8266923 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Python\PythonCore\MCLauncher\Modules\libs_all NAME NOT FOUND Desired Access: Query Value 98 12:38:52,8267134 MCLauncher.exe 6080 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 98 12:38:52,8267184 MCLauncher.exe 6080 RegQueryKey HKLM SUCCESS Query: Name 98 12:38:52,8267295 MCLauncher.exe 6080 RegOpenKey HKLM\Software\WOW6432Node\Python\PythonCore\MCLauncher\Modules\libs_all NAME NOT FOUND Desired Access: Query Value 98 12:38:52,8269450 MCLauncher.exe 6080 CreateFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Desired Access: Generic Read, Disposition: Open, Options: Synchronous IO Non-Alert, Non-Directory File, Attributes: N, ShareMode: Read, Write, AllocationSize: n/a, OpenResult: Opened 98 12:38:52,8269777 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 2 694 338, Length: 4 096, Priority: Normal 98 12:38:52,8270004 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 2 694 364, Length: 512 98 12:38:52,8270110 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 2 694 380, Length: 51 712 98 12:38:52,8270259 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 2 746 092, Length: 512 98 12:38:52,8270351 MCLauncher.exe 6080 CloseFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS 98 12:38:52,8280870 MCLauncher.exe 6080 RegQueryKey HKCU SUCCESS Query: HandleTags, HandleTags: 0x0 98 12:38:52,8280956 MCLauncher.exe 6080 RegQueryKey HKCU SUCCESS Query: Name 98 12:38:52,8281073 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Python\PythonCore\MCLauncher\Modules\backports_abc NAME NOT FOUND Desired Access: Query Value 98 12:38:52,8281208 MCLauncher.exe 6080 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 98 12:38:52,8281258 MCLauncher.exe 6080 RegQueryKey HKLM SUCCESS Query: Name 98 12:38:52,8281358 MCLauncher.exe 6080 RegOpenKey HKLM\Software\WOW6432Node\Python\PythonCore\MCLauncher\Modules\backports_abc NAME NOT FOUND Desired Access: Query Value 98 12:38:52,8347378 MCLauncher.exe 6080 RegQueryKey HKCU SUCCESS Query: HandleTags, HandleTags: 0x0 98 12:38:52,8347480 MCLauncher.exe 6080 RegQueryKey HKCU SUCCESS Query: Name 98 12:38:52,8347619 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Python\PythonCore\MCLauncher\Modules\ssl NAME NOT FOUND Desired Access: Query Value 98 12:38:52,8347782 MCLauncher.exe 6080 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 98 12:38:52,8347835 MCLauncher.exe 6080 RegQueryKey HKLM SUCCESS Query: Name 98 12:38:52,8347932 MCLauncher.exe 6080 RegOpenKey HKLM\Software\WOW6432Node\Python\PythonCore\MCLauncher\Modules\ssl NAME NOT FOUND Desired Access: Query Value 98 12:38:52,8349619 MCLauncher.exe 6080 CreateFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Desired Access: Generic Read, Disposition: Open, Options: Synchronous IO Non-Alert, Non-Directory File, Attributes: N, ShareMode: Read, Write, AllocationSize: n/a, OpenResult: Opened 98 12:38:52,8349952 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 2 459 491, Length: 4 096, Priority: Normal 98 12:38:52,8350176 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 2 459 517, Length: 512 98 12:38:52,8350267 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 2 459 528, Length: 9 728 98 12:38:52,8350345 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 2 469 256, Length: 512 98 12:38:52,8350431 MCLauncher.exe 6080 CloseFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS 98 12:38:52,8352930 MCLauncher.exe 6080 RegQueryKey HKCU SUCCESS Query: HandleTags, HandleTags: 0x0 98 12:38:52,8352994 MCLauncher.exe 6080 RegQueryKey HKCU SUCCESS Query: Name 98 12:38:52,8353099 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Python\PythonCore\MCLauncher\Modules\textwrap NAME NOT FOUND Desired Access: Query Value 98 12:38:52,8353215 MCLauncher.exe 6080 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 98 12:38:52,8353262 MCLauncher.exe 6080 RegQueryKey HKLM SUCCESS Query: Name 98 12:38:52,8353354 MCLauncher.exe 6080 RegOpenKey HKLM\Software\WOW6432Node\Python\PythonCore\MCLauncher\Modules\textwrap NAME NOT FOUND Desired Access: Query Value 98 12:38:52,8354662 MCLauncher.exe 6080 CreateFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Desired Access: Generic Read, Disposition: Open, Options: Synchronous IO Non-Alert, Non-Directory File, Attributes: N, ShareMode: Read, Write, AllocationSize: n/a, OpenResult: Opened 98 12:38:52,8354897 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 2 519 006, Length: 4 096, Priority: Normal 98 12:38:52,8355038 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 2 519 032, Length: 512 98 12:38:52,8355127 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 2 519 048, Length: 2 048 98 12:38:52,8355185 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 2 521 096, Length: 512 98 12:38:52,8355268 MCLauncher.exe 6080 CloseFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS 98 12:38:52,8361873 MCLauncher.exe 6080 RegQueryKey HKCU SUCCESS Query: HandleTags, HandleTags: 0x0 98 12:38:52,8361951 MCLauncher.exe 6080 RegQueryKey HKCU SUCCESS Query: Name 98 12:38:52,8362059 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Python\PythonCore\MCLauncher\Modules\contextlib NAME NOT FOUND Desired Access: Query Value 98 12:38:52,8362184 MCLauncher.exe 6080 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 98 12:38:52,8362233 MCLauncher.exe 6080 RegQueryKey HKLM SUCCESS Query: Name 98 12:38:52,8362325 MCLauncher.exe 6080 RegOpenKey HKLM\Software\WOW6432Node\Python\PythonCore\MCLauncher\Modules\contextlib NAME NOT FOUND Desired Access: Query Value 98 12:38:52,8363453 MCLauncher.exe 6080 CreateFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Desired Access: Generic Read, Disposition: Open, Options: Synchronous IO Non-Alert, Non-Directory File, Attributes: N, ShareMode: Read, Write, AllocationSize: n/a, OpenResult: Opened 98 12:38:52,8363688 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 1 850 368, Length: 4 096, Priority: Normal 98 12:38:52,8363854 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 1 850 394, Length: 512 98 12:38:52,8364079 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 1 850 412, Length: 1 024 98 12:38:52,8364162 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 1 851 436, Length: 512 98 12:38:52,8364248 MCLauncher.exe 6080 CloseFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS 98 12:38:52,8367024 MCLauncher.exe 6080 RegQueryKey HKCU SUCCESS Query: HandleTags, HandleTags: 0x0 98 12:38:52,8367096 MCLauncher.exe 6080 RegQueryKey HKCU SUCCESS Query: Name 98 12:38:52,8367201 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Python\PythonCore\MCLauncher\Modules\base64 NAME NOT FOUND Desired Access: Query Value 98 12:38:52,8367331 MCLauncher.exe 6080 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 98 12:38:52,8367378 MCLauncher.exe 6080 RegQueryKey HKLM SUCCESS Query: Name 98 12:38:52,8367470 MCLauncher.exe 6080 RegOpenKey HKLM\Software\WOW6432Node\Python\PythonCore\MCLauncher\Modules\base64 NAME NOT FOUND Desired Access: Query Value 98 12:38:52,8368575 MCLauncher.exe 6080 CreateFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Desired Access: Generic Read, Disposition: Open, Options: Synchronous IO Non-Alert, Non-Directory File, Attributes: N, ShareMode: Read, Write, AllocationSize: n/a, OpenResult: Opened 98 12:38:52,8368802 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 1 817 075, Length: 4 096, Priority: Normal 98 12:38:52,8368947 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 1 817 101, Length: 512 98 12:38:52,8369032 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 1 817 115, Length: 3 072 98 12:38:52,8369091 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 1 820 187, Length: 512 98 12:38:52,8369171 MCLauncher.exe 6080 CloseFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS 98 12:38:52,8378325 MCLauncher.exe 6080 RegQueryKey HKCU SUCCESS Query: HandleTags, HandleTags: 0x0 98 12:38:52,8378408 MCLauncher.exe 6080 RegQueryKey HKCU SUCCESS Query: Name 98 12:38:52,8378519 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Python\PythonCore\MCLauncher\Modules\select NAME NOT FOUND Desired Access: Query Value 98 12:38:52,8378646 MCLauncher.exe 6080 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 98 12:38:52,8378699 MCLauncher.exe 6080 RegQueryKey HKLM SUCCESS Query: Name 98 12:38:52,8378790 MCLauncher.exe 6080 RegOpenKey HKLM\Software\WOW6432Node\Python\PythonCore\MCLauncher\Modules\select NAME NOT FOUND Desired Access: Query Value 98 12:38:52,8380034 MCLauncher.exe 6080 CreateFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Desired Access: Generic Read, Disposition: Open, Options: Synchronous IO Non-Alert, Non-Directory File, Attributes: N, ShareMode: Read, Write, AllocationSize: n/a, OpenResult: Opened 98 12:38:52,8380275 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 3 874 992, Length: 4 096, Priority: Normal 98 12:38:52,8380472 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 3 874 816, Length: 8 192, I/O Flags: Non-cached, Paging I/O, Priority: Normal 98 12:38:52,8561730 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 3 875 018, Length: 512 98 12:38:52,8561944 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 3 875 032, Length: 5 120 98 12:38:52,8562013 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Offset: 3 880 152, Length: 512 98 12:38:52,8563088 MCLauncher.exe 6080 CloseFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS 98 12:38:52,8570552 MCLauncher.exe 6080 RegOpenKey HKLM\Software\WOW6432Node\Policies\Microsoft\MUI\Settings REPARSE Desired Access: Read 98 12:38:52,8570760 MCLauncher.exe 6080 RegOpenKey HKLM\SOFTWARE\Policies\Microsoft\MUI\Settings NAME NOT FOUND Desired Access: Read 98 12:38:52,8571037 MCLauncher.exe 6080 RegOpenKey HKCU SUCCESS Desired Access: Maximum Allowed, Granted Access: All Access 98 12:38:52,8571214 MCLauncher.exe 6080 RegQueryKey HKCU SUCCESS Query: HandleTags, HandleTags: 0x0 98 12:38:52,8571281 MCLauncher.exe 6080 RegQueryKey HKCU SUCCESS Query: Name 98 12:38:52,8571361 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Policies\Microsoft\Control Panel\Desktop NAME NOT FOUND Desired Access: Read 98 12:38:52,8571488 MCLauncher.exe 6080 RegQueryKey HKCU SUCCESS Query: HandleTags, HandleTags: 0x0 98 12:38:52,8571535 MCLauncher.exe 6080 RegQueryKey HKCU SUCCESS Query: Name 98 12:38:52,8571602 MCLauncher.exe 6080 RegOpenKey HKCU\Control Panel\Desktop SUCCESS Desired Access: Read 98 12:38:52,8571716 MCLauncher.exe 6080 RegSetInfoKey HKCU\Control Panel\Desktop SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 98 12:38:52,8571774 MCLauncher.exe 6080 RegQueryValue HKCU\Control Panel\Desktop\PreferredUILanguages NAME NOT FOUND Length: 12 98 12:38:52,8571990 MCLauncher.exe 6080 RegCloseKey HKCU\Control Panel\Desktop SUCCESS 98 12:38:52,8572042 MCLauncher.exe 6080 RegCloseKey HKCU SUCCESS 98 12:38:52,8572139 MCLauncher.exe 6080 RegOpenKey HKLM\Software\WOW6432Node\Policies\Microsoft\MUI\Settings REPARSE Desired Access: Read 98 12:38:52,8572217 MCLauncher.exe 6080 RegOpenKey HKLM\SOFTWARE\Policies\Microsoft\MUI\Settings NAME NOT FOUND Desired Access: Read 98 12:38:52,8572314 MCLauncher.exe 6080 RegOpenKey HKCU SUCCESS Desired Access: Maximum Allowed, Granted Access: All Access 98 12:38:52,8572405 MCLauncher.exe 6080 RegQueryKey HKCU SUCCESS Query: HandleTags, HandleTags: 0x0 98 12:38:52,8572455 MCLauncher.exe 6080 RegQueryKey HKCU SUCCESS Query: Name 98 12:38:52,8572525 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Policies\Microsoft\Control Panel\Desktop NAME NOT FOUND Desired Access: Read 98 12:38:52,8572605 MCLauncher.exe 6080 RegQueryKey HKCU SUCCESS Query: HandleTags, HandleTags: 0x0 98 12:38:52,8572652 MCLauncher.exe 6080 RegQueryKey HKCU SUCCESS Query: Name 98 12:38:52,8572713 MCLauncher.exe 6080 RegOpenKey HKCU\Control Panel\Desktop\LanguageConfiguration SUCCESS Desired Access: Read 98 12:38:52,8572793 MCLauncher.exe 6080 RegSetInfoKey HKCU\Control Panel\Desktop\LanguageConfiguration SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 98 12:38:52,8572843 MCLauncher.exe 6080 RegEnumValue HKCU\Control Panel\Desktop\LanguageConfiguration NO MORE ENTRIES Index: 0, Length: 512 98 12:38:52,8572899 MCLauncher.exe 6080 RegCloseKey HKCU\Control Panel\Desktop\LanguageConfiguration SUCCESS 98 12:38:52,8572968 MCLauncher.exe 6080 RegCloseKey HKCU SUCCESS 98 12:38:52,8578207 MCLauncher.exe 6080 Thread Create SUCCESS Thread ID: 10340 98 12:38:52,8737550 MCLauncher.exe 6080 Load Image C:\Windows\SysWOW64\msctf.dll SUCCESS Image Base: 0x75090000, Image Size: 0x135000 98 12:38:52,8740210 MCLauncher.exe 6080 CreateFile C:\Windows\SysWOW64\msctf.dll SUCCESS Desired Access: Read Control, Disposition: Open, Options: , Attributes: n/a, ShareMode: Read, Delete, AllocationSize: n/a, OpenResult: Opened 98 12:38:52,8740556 MCLauncher.exe 6080 QuerySecurityFile C:\Windows\SysWOW64\msctf.dll BUFFER OVERFLOW Information: Owner 98 12:38:52,8740662 MCLauncher.exe 6080 QuerySecurityFile C:\Windows\SysWOW64\msctf.dll SUCCESS Information: Owner 98 12:38:52,8740756 MCLauncher.exe 6080 CloseFile C:\Windows\SysWOW64\msctf.dll SUCCESS 98 12:38:52,8753462 MCLauncher.exe 6080 CreateFile C:\Windows\SysWOW64\dwmapi.dll SUCCESS Desired Access: Read Attributes, Disposition: Open, Options: Open Reparse Point, Attributes: n/a, ShareMode: Read, Write, Delete, AllocationSize: n/a, OpenResult: Opened 98 12:38:52,8753758 MCLauncher.exe 6080 QueryBasicInformationFile C:\Windows\SysWOW64\dwmapi.dll SUCCESS CreationTime: 12.10.2016 7:39:13, LastAccessTime: 12.10.2016 7:39:13, LastWriteTime: 15.09.2016 20:13:51, ChangeTime: 20.07.2018 2:17:39, FileAttributes: A 98 12:38:52,8753872 MCLauncher.exe 6080 CloseFile C:\Windows\SysWOW64\dwmapi.dll SUCCESS 98 12:38:52,8755093 MCLauncher.exe 6080 CreateFile C:\Windows\SysWOW64\dwmapi.dll SUCCESS Desired Access: Read Data/List Directory, Execute/Traverse, Synchronize, Disposition: Open, Options: Synchronous IO Non-Alert, Non-Directory File, Attributes: n/a, ShareMode: Read, Delete, AllocationSize: n/a, OpenResult: Opened 98 12:38:52,8755407 MCLauncher.exe 6080 CreateFileMapping C:\Windows\SysWOW64\dwmapi.dll FILE LOCKED WITH ONLY READERS SyncType: SyncTypeCreateSection, PageProtection: PAGE_EXECUTE|PAGE_NOCACHE 98 12:38:52,8755581 MCLauncher.exe 6080 QueryNameInformationFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Name: \Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe 98 12:38:52,8756551 MCLauncher.exe 6080 CreateFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Desired Access: Synchronize, Disposition: Open, Options: Synchronous IO Non-Alert, Attributes: N, ShareMode: Read, Write, Delete, AllocationSize: n/a, OpenResult: Opened 98 12:38:52,8756756 MCLauncher.exe 6080 CloseFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS 98 12:38:52,8757091 MCLauncher.exe 6080 QueryNameInformationFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Name: \Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe 98 12:38:52,8757980 MCLauncher.exe 6080 CreateFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Desired Access: Synchronize, Disposition: Open, Options: Synchronous IO Non-Alert, Attributes: N, ShareMode: Read, Write, Delete, AllocationSize: n/a, OpenResult: Opened 98 12:38:52,8758160 MCLauncher.exe 6080 CloseFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS 98 12:38:52,8758958 MCLauncher.exe 6080 CreateFileMapping C:\Windows\SysWOW64\dwmapi.dll SUCCESS SyncType: SyncTypeOther 98 12:38:52,8759427 MCLauncher.exe 6080 Load Image C:\Windows\SysWOW64\dwmapi.dll SUCCESS Image Base: 0x72b90000, Image Size: 0x1f000 98 12:38:52,8760058 MCLauncher.exe 6080 CloseFile C:\Windows\SysWOW64\dwmapi.dll SUCCESS 98 12:38:52,8761939 MCLauncher.exe 6080 CreateFile C:\Windows\SysWOW64\dwmapi.dll SUCCESS Desired Access: Read Control, Disposition: Open, Options: , Attributes: n/a, ShareMode: Read, Delete, AllocationSize: n/a, OpenResult: Opened 98 12:38:52,8762236 MCLauncher.exe 6080 QuerySecurityFile C:\Windows\SysWOW64\dwmapi.dll BUFFER OVERFLOW Information: Owner 98 12:38:52,8762325 MCLauncher.exe 6080 QuerySecurityFile C:\Windows\SysWOW64\dwmapi.dll SUCCESS Information: Owner 98 12:38:52,8762408 MCLauncher.exe 6080 CloseFile C:\Windows\SysWOW64\dwmapi.dll SUCCESS 98 12:38:52,8766990 MCLauncher.exe 6080 CreateFile C:\Users\User\AppData\Roaming\MCLauncher\qt.conf NAME NOT FOUND Desired Access: Read Attributes, Disposition: Open, Options: Open Reparse Point, Attributes: n/a, ShareMode: Read, Write, Delete, AllocationSize: n/a 98 12:38:52,8776895 MCLauncher.exe 6080 CreateFile D:\Qt\qt-4.8.7-msvc2008-x32\plugins PATH NOT FOUND Desired Access: Read Attributes, Disposition: Open, Options: Open Reparse Point, Attributes: n/a, ShareMode: Read, Write, Delete, AllocationSize: n/a 98 12:38:52,8780228 MCLauncher.exe 6080 CreateFile C:\Users\User\AppData\Roaming\MCLauncher SUCCESS Desired Access: Read Attributes, Disposition: Open, Options: Open Reparse Point, Attributes: n/a, ShareMode: Read, Write, Delete, AllocationSize: n/a, OpenResult: Opened 98 12:38:52,8780402 MCLauncher.exe 6080 QueryNetworkOpenInformationFile C:\Users\User\AppData\Roaming\MCLauncher SUCCESS CreationTime: 24.08.2018 12:30:11, LastAccessTime: 24.08.2018 12:30:32, LastWriteTime: 24.08.2018 12:30:32, ChangeTime: 24.08.2018 12:30:32, AllocationSize: 01.01.1601 3:00:00, EndOfFile: 01.01.1601 3:00:00, FileAttributes: D 98 12:38:52,8780488 MCLauncher.exe 6080 CloseFile C:\Users\User\AppData\Roaming\MCLauncher SUCCESS 98 12:38:52,8782835 MCLauncher.exe 6080 CreateFile C:\Users SUCCESS Desired Access: Read Attributes, Disposition: Open, Options: Open Reparse Point, Attributes: n/a, ShareMode: Read, Write, Delete, AllocationSize: n/a, OpenResult: Opened 98 12:38:52,8783001 MCLauncher.exe 6080 QueryNetworkOpenInformationFile C:\Users SUCCESS CreationTime: 16.07.2016 9:04:24, LastAccessTime: 24.08.2018 12:33:31, LastWriteTime: 24.08.2018 12:33:31, ChangeTime: 24.08.2018 12:33:31, AllocationSize: 01.01.1601 3:00:00, EndOfFile: 01.01.1601 3:00:00, FileAttributes: RD 98 12:38:52,8783076 MCLauncher.exe 6080 CloseFile C:\Users SUCCESS 98 12:38:52,8785578 MCLauncher.exe 6080 CreateFile C:\Users\User SUCCESS Desired Access: Read Attributes, Disposition: Open, Options: Open Reparse Point, Attributes: n/a, ShareMode: Read, Write, Delete, AllocationSize: n/a, OpenResult: Opened 98 12:38:52,8785736 MCLauncher.exe 6080 QueryNetworkOpenInformationFile C:\Users\User SUCCESS CreationTime: 19.07.2018 20:06:01, LastAccessTime: 20.07.2018 19:30:20, LastWriteTime: 20.07.2018 19:30:20, ChangeTime: 20.07.2018 19:30:20, AllocationSize: 01.01.1601 3:00:00, EndOfFile: 01.01.1601 3:00:00, FileAttributes: D 98 12:38:52,8785811 MCLauncher.exe 6080 CloseFile C:\Users\User SUCCESS 98 12:38:52,8788058 MCLauncher.exe 6080 CreateFile C:\Users\User\AppData SUCCESS Desired Access: Read Attributes, Disposition: Open, Options: Open Reparse Point, Attributes: n/a, ShareMode: Read, Write, Delete, AllocationSize: n/a, OpenResult: Opened 98 12:38:52,8788218 MCLauncher.exe 6080 QueryNetworkOpenInformationFile C:\Users\User\AppData SUCCESS CreationTime: 19.07.2018 20:06:02, LastAccessTime: 19.07.2018 20:06:03, LastWriteTime: 19.07.2018 20:06:03, ChangeTime: 19.07.2018 20:06:03, AllocationSize: 01.01.1601 3:00:00, EndOfFile: 01.01.1601 3:00:00, FileAttributes: HD 98 12:38:52,8788290 MCLauncher.exe 6080 CloseFile C:\Users\User\AppData SUCCESS 98 12:38:52,8790485 MCLauncher.exe 6080 CreateFile C:\Users\User\AppData\Roaming SUCCESS Desired Access: Read Attributes, Disposition: Open, Options: Open Reparse Point, Attributes: n/a, ShareMode: Read, Write, Delete, AllocationSize: n/a, OpenResult: Opened 98 12:38:52,8790626 MCLauncher.exe 6080 QueryNetworkOpenInformationFile C:\Users\User\AppData\Roaming SUCCESS CreationTime: 19.07.2018 20:06:02, LastAccessTime: 24.08.2018 12:31:43, LastWriteTime: 24.08.2018 12:31:43, ChangeTime: 24.08.2018 12:31:43, AllocationSize: 01.01.1601 3:00:00, EndOfFile: 01.01.1601 3:00:00, FileAttributes: D 98 12:38:52,8790698 MCLauncher.exe 6080 CloseFile C:\Users\User\AppData\Roaming SUCCESS 98 12:38:52,8792909 MCLauncher.exe 6080 CreateFile C:\Users\User\AppData\Roaming\MCLauncher SUCCESS Desired Access: Read Attributes, Disposition: Open, Options: Open Reparse Point, Attributes: n/a, ShareMode: Read, Write, Delete, AllocationSize: n/a, OpenResult: Opened 98 12:38:52,8793239 MCLauncher.exe 6080 QueryNetworkOpenInformationFile C:\Users\User\AppData\Roaming\MCLauncher SUCCESS CreationTime: 24.08.2018 12:30:11, LastAccessTime: 24.08.2018 12:30:32, LastWriteTime: 24.08.2018 12:30:32, ChangeTime: 24.08.2018 12:30:32, AllocationSize: 01.01.1601 3:00:00, EndOfFile: 01.01.1601 3:00:00, FileAttributes: D 98 12:38:52,8793347 MCLauncher.exe 6080 CloseFile C:\Users\User\AppData\Roaming\MCLauncher SUCCESS 98 12:38:52,8795641 MCLauncher.exe 6080 CreateFile C:\Users\User\AppData\Roaming\MCLauncher SUCCESS Desired Access: Read Attributes, Disposition: Open, Options: Open Reparse Point, Attributes: n/a, ShareMode: Read, Write, Delete, AllocationSize: n/a, OpenResult: Opened 98 12:38:52,8795785 MCLauncher.exe 6080 QueryNetworkOpenInformationFile C:\Users\User\AppData\Roaming\MCLauncher SUCCESS CreationTime: 24.08.2018 12:30:11, LastAccessTime: 24.08.2018 12:30:32, LastWriteTime: 24.08.2018 12:30:32, ChangeTime: 24.08.2018 12:30:32, AllocationSize: 01.01.1601 3:00:00, EndOfFile: 01.01.1601 3:00:00, FileAttributes: D 98 12:38:52,8795857 MCLauncher.exe 6080 CloseFile C:\Users\User\AppData\Roaming\MCLauncher SUCCESS 98 12:38:52,8798505 MCLauncher.exe 6080 RegOpenKey HKLM\SYSTEM\CurrentControlSet\Control\Session Manager REPARSE Desired Access: Query Value, Enumerate Sub Keys 98 12:38:52,8798658 MCLauncher.exe 6080 RegOpenKey HKLM\System\CurrentControlSet\Control\Session Manager SUCCESS Desired Access: Query Value, Enumerate Sub Keys 98 12:38:52,8798769 MCLauncher.exe 6080 RegSetInfoKey HKLM\System\CurrentControlSet\Control\Session Manager SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 98 12:38:52,8798832 MCLauncher.exe 6080 RegQueryValue HKLM\System\CurrentControlSet\Control\Session Manager\ResourcePolicies NAME NOT FOUND Length: 24 98 12:38:52,8799046 MCLauncher.exe 6080 RegCloseKey HKLM\System\CurrentControlSet\Control\Session Manager SUCCESS 98 12:38:52,8972225 MCLauncher.exe 6080 CreateFile C:\Windows\SysWOW64\wintab32.dll NAME NOT FOUND Desired Access: Read Attributes, Disposition: Open, Options: Open Reparse Point, Attributes: n/a, ShareMode: Read, Write, Delete, AllocationSize: n/a 98 12:38:52,8976397 MCLauncher.exe 6080 RegOpenKey HKLM\Software\WOW6432Node\Microsoft\Windows\Tablet PC\ SUCCESS Desired Access: Read 98 12:38:52,8976708 MCLauncher.exe 6080 RegSetInfoKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\Tablet PC SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 98 12:38:52,8976774 MCLauncher.exe 6080 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\Tablet PC\IsTabletPC SUCCESS Type: REG_DWORD, Length: 4, Data: 0 98 12:38:52,8977004 MCLauncher.exe 6080 RegCloseKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\Tablet PC SUCCESS 98 12:38:52,8981855 MCLauncher.exe 6080 Thread Create SUCCESS Thread ID: 4264 98 12:38:52,8984681 MCLauncher.exe 6080 CreateFile C:\Users\User\AppData\Roaming\MCLauncher\bearer NAME NOT FOUND Desired Access: Read Attributes, Disposition: Open, Options: Open Reparse Point, Attributes: n/a, ShareMode: Read, Write, Delete, AllocationSize: n/a 98 12:38:52,8994437 MCLauncher.exe 6080 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 98 12:38:52,8994520 MCLauncher.exe 6080 RegQueryKey HKLM SUCCESS Query: Name 98 12:38:52,8994653 MCLauncher.exe 6080 RegOpenKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Cryptography\Defaults\Provider\Microsoft Base Cryptographic Provider v1.0 SUCCESS Desired Access: Read 98 12:38:52,8994863 MCLauncher.exe 6080 RegSetInfoKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Cryptography\Defaults\Provider\Microsoft Base Cryptographic Provider v1.0 SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 98 12:38:52,8994930 MCLauncher.exe 6080 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Cryptography\Defaults\Provider\Microsoft Base Cryptographic Provider v1.0\Type SUCCESS Type: REG_DWORD, Length: 4, Data: 1 98 12:38:52,8995104 MCLauncher.exe 6080 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Cryptography\Defaults\Provider\Microsoft Base Cryptographic Provider v1.0\Image Path SUCCESS Type: REG_SZ, Length: 66, Data: %SystemRoot%\system32\rsaenh.dll 98 12:38:52,8995240 MCLauncher.exe 6080 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Cryptography\Defaults\Provider\Microsoft Base Cryptographic Provider v1.0\Image Path SUCCESS Type: REG_SZ, Length: 66, Data: %SystemRoot%\system32\rsaenh.dll 98 12:38:52,8995379 MCLauncher.exe 6080 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Cryptography\Defaults\Provider\Microsoft Base Cryptographic Provider v1.0\Image Path SUCCESS Type: REG_SZ, Length: 66, Data: %SystemRoot%\system32\rsaenh.dll 98 12:38:52,8995500 MCLauncher.exe 6080 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Cryptography\Defaults\Provider\Microsoft Base Cryptographic Provider v1.0\Image Path SUCCESS Type: REG_SZ, Length: 66, Data: %SystemRoot%\system32\rsaenh.dll 98 12:38:52,8995877 MCLauncher.exe 6080 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 98 12:38:52,8995952 MCLauncher.exe 6080 RegOpenKey HKLM\Software\Microsoft\Cryptography SUCCESS Desired Access: Read 98 12:38:52,8996063 MCLauncher.exe 6080 RegSetInfoKey HKLM\SOFTWARE\Microsoft\Cryptography SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 98 12:38:52,8996110 MCLauncher.exe 6080 RegQueryValue HKLM\SOFTWARE\Microsoft\Cryptography\MachineGuid SUCCESS Type: REG_SZ, Length: 74, Data: 89c16905-77a2-4a80-ba7d-623b3fd0da77 98 12:38:52,8996262 MCLauncher.exe 6080 RegQueryValue HKLM\SOFTWARE\Microsoft\Cryptography\MachineGuid SUCCESS Type: REG_SZ, Length: 74, Data: 89c16905-77a2-4a80-ba7d-623b3fd0da77 98 12:38:52,8996401 MCLauncher.exe 6080 RegQueryValue HKLM\SOFTWARE\Microsoft\Cryptography\MachineGuid SUCCESS Type: REG_SZ, Length: 74, Data: 89c16905-77a2-4a80-ba7d-623b3fd0da77 98 12:38:52,8996526 MCLauncher.exe 6080 RegQueryValue HKLM\SOFTWARE\Microsoft\Cryptography\MachineGuid SUCCESS Type: REG_SZ, Length: 74, Data: 89c16905-77a2-4a80-ba7d-623b3fd0da77 98 12:38:52,8996697 MCLauncher.exe 6080 RegCloseKey HKLM\SOFTWARE\Microsoft\Cryptography SUCCESS 98 12:38:52,8996786 MCLauncher.exe 6080 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 98 12:38:52,8996839 MCLauncher.exe 6080 RegQueryKey HKLM SUCCESS Query: Name 98 12:38:52,8996933 MCLauncher.exe 6080 RegOpenKey HKLM\Software\WOW6432Node\Microsoft\Cryptography\Offload NAME NOT FOUND Desired Access: Read 98 12:38:52,8997168 MCLauncher.exe 6080 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 98 12:38:52,8997218 MCLauncher.exe 6080 RegQueryKey HKLM SUCCESS Query: Name 98 12:38:52,8997296 MCLauncher.exe 6080 RegOpenKey HKLM\Software\WOW6432Node\Microsoft\Cryptography\DESHashSessionKeyBackward NAME NOT FOUND Desired Access: Read 98 12:38:52,8997387 MCLauncher.exe 6080 RegCloseKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Cryptography\Defaults\Provider\Microsoft Base Cryptographic Provider v1.0 SUCCESS 98 12:38:52,9010046 MCLauncher.exe 6080 CreateFile C:\Users\User\AppData\Local\Temp\4hvbhn SUCCESS Desired Access: Generic Read/Write, Disposition: Create, Options: Synchronous IO Non-Alert, Non-Directory File, Attributes: N, ShareMode: Read, Write, AllocationSize: 0, OpenResult: Created 98 12:38:52,9013035 MCLauncher.exe 6080 QueryStandardInformationFile C:\Users\User\AppData\Local\Temp\4hvbhn SUCCESS AllocationSize: 0, EndOfFile: 0, NumberOfLinks: 1, DeletePending: False, Directory: False 98 12:38:52,9013310 MCLauncher.exe 6080 QueryInformationVolume C:\Users\User\AppData\Local\Temp\4hvbhn BUFFER OVERFLOW VolumeCreationTime: 19.07.2018 19:30:42, VolumeSerialNumber: B6D8-C2CA, SupportsObjects: True, VolumeLabel: Winb 98 12:38:52,9013412 MCLauncher.exe 6080 QueryAllInformationFile C:\Users\User\AppData\Local\Temp\4hvbhn BUFFER OVERFLOW CreationTime: 24.08.2018 12:38:52, LastAccessTime: 24.08.2018 12:38:52, LastWriteTime: 24.08.2018 12:38:52, ChangeTime: 24.08.2018 12:38:52, FileAttributes: A, AllocationSize: 0, EndOfFile: 0, NumberOfLinks: 1, DeletePending: False, Directory: False, IndexNumber: 0x1100000003e881, EaSize: 0, Access: Generic Read/Write, Position: 0, Mode: Synchronous IO Non-Alert, AlignmentRequirement: Word 98 12:38:52,9013537 MCLauncher.exe 6080 QueryInformationVolume C:\Users\User\AppData\Local\Temp\4hvbhn BUFFER OVERFLOW VolumeCreationTime: 19.07.2018 19:30:42, VolumeSerialNumber: B6D8-C2CA, SupportsObjects: True, VolumeLabel: Winb 98 12:38:52,9013606 MCLauncher.exe 6080 QueryAllInformationFile C:\Users\User\AppData\Local\Temp\4hvbhn BUFFER OVERFLOW CreationTime: 24.08.2018 12:38:52, LastAccessTime: 24.08.2018 12:38:52, LastWriteTime: 24.08.2018 12:38:52, ChangeTime: 24.08.2018 12:38:52, FileAttributes: A, AllocationSize: 0, EndOfFile: 0, NumberOfLinks: 1, DeletePending: False, Directory: False, IndexNumber: 0x1100000003e881, EaSize: 0, Access: Generic Read/Write, Position: 0, Mode: Synchronous IO Non-Alert, AlignmentRequirement: Word 98 12:38:52,9013883 MCLauncher.exe 6080 WriteFile C:\Users\User\AppData\Local\Temp\4hvbhn SUCCESS Offset: 0, Length: 4, Priority: Normal 98 12:38:52,9014277 MCLauncher.exe 6080 CloseFile C:\Users\User\AppData\Local\Temp\4hvbhn SUCCESS 98 12:38:52,9014440 MCLauncher.exe 6080 QueryNameInformationFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Name: \Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe 98 12:38:52,9015446 MCLauncher.exe 6080 CreateFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Desired Access: Synchronize, Disposition: Open, Options: Synchronous IO Non-Alert, Attributes: N, ShareMode: Read, Write, Delete, AllocationSize: n/a, OpenResult: Opened 98 12:38:52,9015654 MCLauncher.exe 6080 CloseFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS 98 12:38:52,9070239 MCLauncher.exe 6080 CreateFile C:\Users\User\AppData\Local\Temp\4hvbhn SUCCESS Desired Access: Read Attributes, Delete, Disposition: Open, Options: Non-Directory File, Open Reparse Point, Attributes: n/a, ShareMode: Read, Write, Delete, AllocationSize: n/a, OpenResult: Opened 98 12:38:52,9072298 MCLauncher.exe 6080 QueryAttributeTagFile C:\Users\User\AppData\Local\Temp\4hvbhn SUCCESS Attributes: A, ReparseTag: 0x0 98 12:38:52,9072433 MCLauncher.exe 6080 SetDispositionInformationFile C:\Users\User\AppData\Local\Temp\4hvbhn SUCCESS Delete: True 98 12:38:52,9072600 MCLauncher.exe 6080 QueryNameInformationFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Name: \Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe 98 12:38:52,9073888 MCLauncher.exe 6080 CreateFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Desired Access: Synchronize, Disposition: Open, Options: Synchronous IO Non-Alert, Attributes: N, ShareMode: Read, Write, Delete, AllocationSize: n/a, OpenResult: Opened 98 12:38:52,9074099 MCLauncher.exe 6080 CloseFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS 98 12:38:52,9076556 MCLauncher.exe 6080 CloseFile C:\Users\User\AppData\Local\Temp\4hvbhn SUCCESS 98 12:38:52,9079321 MCLauncher.exe 6080 CreateFile C:\Users\User\AppData\Local\Temp\d.htm SUCCESS Desired Access: Generic Write, Read Attributes, Disposition: OverwriteIf, Options: Synchronous IO Non-Alert, Non-Directory File, Attributes: N, ShareMode: Read, Write, AllocationSize: 0, OpenResult: Created 98 12:38:52,9082097 MCLauncher.exe 6080 QueryInformationVolume C:\Users\User\AppData\Local\Temp\d.htm BUFFER OVERFLOW VolumeCreationTime: 19.07.2018 19:30:42, VolumeSerialNumber: B6D8-C2CA, SupportsObjects: True, VolumeLabel: Winb 98 12:38:52,9082197 MCLauncher.exe 6080 QueryAllInformationFile C:\Users\User\AppData\Local\Temp\d.htm BUFFER OVERFLOW CreationTime: 24.08.2018 12:38:52, LastAccessTime: 24.08.2018 12:38:52, LastWriteTime: 24.08.2018 12:38:52, ChangeTime: 24.08.2018 12:38:52, FileAttributes: A, AllocationSize: 0, EndOfFile: 0, NumberOfLinks: 1, DeletePending: False, Directory: False, IndexNumber: 0x1200000003e881, EaSize: 0, Access: Generic Write, Read Attributes, Position: 0, Mode: Synchronous IO Non-Alert, AlignmentRequirement: Word 98 12:38:52,9082441 MCLauncher.exe 6080 WriteFile C:\Users\User\AppData\Local\Temp\d.htm SUCCESS Offset: 0, Length: 790 528, Priority: Normal 98 12:38:52,9085339 MCLauncher.exe 6080 WriteFile C:\Users\User\AppData\Local\Temp\d.htm SUCCESS Offset: 790 528, Length: 1 482, Priority: Normal 98 12:38:52,9085583 MCLauncher.exe 6080 CloseFile C:\Users\User\AppData\Local\Temp\d.htm SUCCESS 98 12:38:52,9085729 MCLauncher.exe 6080 QueryNameInformationFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Name: \Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe 98 12:38:52,9088320 MCLauncher.exe 6080 CreateFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Desired Access: Synchronize, Disposition: Open, Options: Synchronous IO Non-Alert, Attributes: N, ShareMode: Read, Write, Delete, AllocationSize: n/a, OpenResult: Opened 98 12:38:52,9088533 MCLauncher.exe 6080 CloseFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS 98 12:38:52,9091542 MCLauncher.exe 6080 Thread Create SUCCESS Thread ID: 7348 98 12:38:52,9097327 MCLauncher.exe 6080 CreateFile C:\Users\User\AppData\Local\Temp\d.htm SUCCESS Desired Access: Read Attributes, Disposition: Open, Options: Open Reparse Point, Attributes: n/a, ShareMode: Read, Write, Delete, AllocationSize: n/a, OpenResult: Opened 98 12:38:52,9097501 MCLauncher.exe 6080 QueryNetworkOpenInformationFile C:\Users\User\AppData\Local\Temp\d.htm SUCCESS CreationTime: 24.08.2018 12:38:52, LastAccessTime: 24.08.2018 12:38:52, LastWriteTime: 24.08.2018 12:38:52, ChangeTime: 24.08.2018 12:38:52, AllocationSize: 01.01.1601 3:00:00, EndOfFile: 01.01.1601 3:00:00, FileAttributes: A 98 12:38:52,9097585 MCLauncher.exe 6080 CloseFile C:\Users\User\AppData\Local\Temp\d.htm SUCCESS 98 12:38:52,9098671 MCLauncher.exe 6080 CreateFile C:\Users\User\AppData\Local\Temp\d.htm SUCCESS Desired Access: Generic Read, Disposition: Open, Options: Synchronous IO Non-Alert, Non-Directory File, Attributes: N, ShareMode: Read, Write, AllocationSize: n/a, OpenResult: Opened 98 12:38:52,9099042 MCLauncher.exe 6080 RegOpenKey HKLM\Software\WOW6432Node\Microsoft\Windows NT\CurrentVersion\Time Zones\Russian Standard Time\Dynamic DST REPARSE Desired Access: Read, Maximum Allowed 98 12:38:52,9099385 MCLauncher.exe 6080 RegOpenKey HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Time Zones\Russian Standard Time\Dynamic DST SUCCESS Desired Access: Read, Maximum Allowed 98 12:38:52,9099505 MCLauncher.exe 6080 RegSetInfoKey HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Time Zones\Russian Standard Time\Dynamic DST SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 98 12:38:52,9099771 MCLauncher.exe 6080 RegQueryValue HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Time Zones\Russian Standard Time\Dynamic DST\FirstEntry SUCCESS Type: REG_DWORD, Length: 4, Data: 2010 98 12:38:52,9099964 MCLauncher.exe 6080 RegQueryValue HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Time Zones\Russian Standard Time\Dynamic DST\LastEntry SUCCESS Type: REG_DWORD, Length: 4, Data: 2015 98 12:38:52,9100092 MCLauncher.exe 6080 RegQueryValue HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Time Zones\Russian Standard Time\Dynamic DST\2018 NAME NOT FOUND Length: 4 094 98 12:38:52,9100333 MCLauncher.exe 6080 RegQueryValue HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Time Zones\Russian Standard Time\Dynamic DST\2015 SUCCESS Type: REG_BINARY, Length: 44, Data: 4C FF FF FF 00 00 00 00 C4 FF FF FF 00 00 00 00 62 00 00 00 FC 2E 00 00 98 12:38:52,9100527 MCLauncher.exe 6080 RegCloseKey HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Time Zones\Russian Standard Time\Dynamic DST SUCCESS 98 12:38:52,9104367 MCLauncher.exe 6080 CreateFile C:\Users\User\AppData\Roaming\MCLauncher\iconengines NAME NOT FOUND Desired Access: Read Attributes, Disposition: Open, Options: Open Reparse Point, Attributes: n/a, ShareMode: Read, Write, Delete, AllocationSize: n/a 98 12:38:52,9107146 MCLauncher.exe 6080 CreateFile C:\Users\User\AppData\Roaming\MCLauncher\iconengines NAME NOT FOUND Desired Access: Read Attributes, Disposition: Open, Options: Open Reparse Point, Attributes: n/a, ShareMode: Read, Write, Delete, AllocationSize: n/a 98 12:38:52,9120827 MCLauncher.exe 6080 CreateFile C:\Windows\SysWOW64\wintab32.dll NAME NOT FOUND Desired Access: Read Attributes, Disposition: Open, Options: Open Reparse Point, Attributes: n/a, ShareMode: Read, Write, Delete, AllocationSize: n/a 98 12:38:52,9123415 MCLauncher.exe 6080 CreateFile C:\Users\User\AppData\Roaming\MCLauncher\icon.png SUCCESS Desired Access: Read Attributes, Disposition: Open, Options: Open Reparse Point, Attributes: n/a, ShareMode: Read, Write, Delete, AllocationSize: n/a, OpenResult: Opened 98 12:38:52,9123891 MCLauncher.exe 6080 QueryNetworkOpenInformationFile C:\Users\User\AppData\Roaming\MCLauncher\icon.png SUCCESS CreationTime: 24.08.2018 12:30:32, LastAccessTime: 24.08.2018 12:30:32, LastWriteTime: 24.08.2018 12:30:32, ChangeTime: 24.08.2018 12:30:32, AllocationSize: 01.01.1601 3:00:00, EndOfFile: 01.01.1601 3:00:00, FileAttributes: A 98 12:38:52,9123982 MCLauncher.exe 6080 CloseFile C:\Users\User\AppData\Roaming\MCLauncher\icon.png SUCCESS 98 12:38:52,9125454 MCLauncher.exe 6080 CreateFile C:\Users\User\AppData\Roaming\MCLauncher\icon.png SUCCESS Desired Access: Generic Read, Disposition: Open, Options: Synchronous IO Non-Alert, Non-Directory File, Attributes: N, ShareMode: Read, Write, AllocationSize: n/a, OpenResult: Opened 98 12:38:52,9127847 MCLauncher.exe 6080 CreateFile C:\Users\User\AppData\Roaming\MCLauncher\imageformats NAME NOT FOUND Desired Access: Read Attributes, Disposition: Open, Options: Open Reparse Point, Attributes: n/a, ShareMode: Read, Write, Delete, AllocationSize: n/a 98 12:38:52,9128241 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\icon.png SUCCESS Offset: 0, Length: 16 384, Priority: Normal 98 12:38:52,9128490 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\icon.png SUCCESS Offset: 0, Length: 16 384, I/O Flags: Non-cached, Paging I/O, Priority: Normal 98 12:38:52,9300367 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\icon.png SUCCESS Offset: 16 384, Length: 16 98 12:38:52,9562648 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\icon.png END OF FILE Offset: 16 400, Length: 16 368 98 12:38:52,9562897 MCLauncher.exe 6080 QueryInformationVolume C:\Users\User\AppData\Roaming\MCLauncher\icon.png BUFFER OVERFLOW VolumeCreationTime: 19.07.2018 19:30:42, VolumeSerialNumber: B6D8-C2CA, SupportsObjects: True, VolumeLabel: Winb 98 12:38:52,9563019 MCLauncher.exe 6080 QueryAllInformationFile C:\Users\User\AppData\Roaming\MCLauncher\icon.png BUFFER OVERFLOW CreationTime: 24.08.2018 12:30:32, LastAccessTime: 24.08.2018 12:30:32, LastWriteTime: 24.08.2018 12:30:32, ChangeTime: 24.08.2018 12:30:32, FileAttributes: A, AllocationSize: 20 480, EndOfFile: 16 400, NumberOfLinks: 1, DeletePending: False, Directory: False, IndexNumber: 0x2100000002039d, EaSize: 0, Access: Generic Read, Position: 16 400, Mode: Synchronous IO Non-Alert, AlignmentRequirement: Word 98 12:38:52,9563180 MCLauncher.exe 6080 QueryInformationVolume C:\Users\User\AppData\Roaming\MCLauncher\icon.png BUFFER OVERFLOW VolumeCreationTime: 19.07.2018 19:30:42, VolumeSerialNumber: B6D8-C2CA, SupportsObjects: True, VolumeLabel: Winb 98 12:38:52,9563249 MCLauncher.exe 6080 QueryAllInformationFile C:\Users\User\AppData\Roaming\MCLauncher\icon.png BUFFER OVERFLOW CreationTime: 24.08.2018 12:30:32, LastAccessTime: 24.08.2018 12:30:32, LastWriteTime: 24.08.2018 12:30:32, ChangeTime: 24.08.2018 12:30:32, FileAttributes: A, AllocationSize: 20 480, EndOfFile: 16 400, NumberOfLinks: 1, DeletePending: False, Directory: False, IndexNumber: 0x2100000002039d, EaSize: 0, Access: Generic Read, Position: 16 400, Mode: Synchronous IO Non-Alert, AlignmentRequirement: Word 98 12:38:52,9563490 MCLauncher.exe 6080 CloseFile C:\Users\User\AppData\Roaming\MCLauncher\icon.png SUCCESS 98 12:38:52,9575293 MCLauncher.exe 6080 RegQueryKey HKCU\Software\Classes SUCCESS Query: Name 98 12:38:52,9575467 MCLauncher.exe 6080 RegQueryKey HKCU\Software\Classes SUCCESS Query: HandleTags, HandleTags: 0x1 98 12:38:52,9575573 MCLauncher.exe 6080 RegQueryKey HKCU\Software\Classes SUCCESS Query: HandleTags, HandleTags: 0x1 98 12:38:52,9575636 MCLauncher.exe 6080 RegQueryKey HKCU\Software\Classes SUCCESS Query: Name 98 12:38:52,9575805 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Classes\WOW6432Node\Interface\{00000160-0000-0000-C000-000000000046} NAME NOT FOUND Desired Access: Read 98 12:38:52,9576013 MCLauncher.exe 6080 RegOpenKey HKCR\WOW6432Node\Interface\{00000160-0000-0000-C000-000000000046} SUCCESS Desired Access: Read 98 12:38:52,9576346 MCLauncher.exe 6080 RegSetInfoKey HKCR\WOW6432Node\Interface\{00000160-0000-0000-C000-000000000046} SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 98 12:38:52,9576404 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\Interface\{00000160-0000-0000-C000-000000000046} SUCCESS Query: Name 98 12:38:52,9576470 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\Interface\{00000160-0000-0000-C000-000000000046} SUCCESS Query: HandleTags, HandleTags: 0x401 98 12:38:52,9576592 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Classes\WOW6432Node\Interface\{00000160-0000-0000-C000-000000000046}\ProxyStubClsid32 NAME NOT FOUND Desired Access: Read 98 12:38:52,9576684 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\Interface\{00000160-0000-0000-C000-000000000046} SUCCESS Query: HandleTags, HandleTags: 0x401 98 12:38:52,9576742 MCLauncher.exe 6080 RegOpenKey HKCR\WOW6432Node\Interface\{00000160-0000-0000-C000-000000000046}\ProxyStubClsid32 SUCCESS Desired Access: Read 98 12:38:52,9576867 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\Interface\{00000160-0000-0000-C000-000000000046}\ProxyStubClsid32 SUCCESS Query: Name 98 12:38:52,9576928 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\Interface\{00000160-0000-0000-C000-000000000046}\ProxyStubClsid32 SUCCESS Query: HandleTags, HandleTags: 0x401 98 12:38:52,9577013 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Classes\WOW6432Node\Interface\{00000160-0000-0000-C000-000000000046}\ProxyStubClsid32 NAME NOT FOUND Desired Access: Maximum Allowed 98 12:38:52,9577088 MCLauncher.exe 6080 RegQueryValue HKCR\WOW6432Node\Interface\{00000160-0000-0000-C000-000000000046}\ProxyStubClsid32\(Default) SUCCESS Type: REG_SZ, Length: 78, Data: {00000320-0000-0000-C000-000000000046} 98 12:38:52,9577196 MCLauncher.exe 6080 RegCloseKey HKCR\WOW6432Node\Interface\{00000160-0000-0000-C000-000000000046}\ProxyStubClsid32 SUCCESS 98 12:38:52,9577249 MCLauncher.exe 6080 RegCloseKey HKCR\WOW6432Node\Interface\{00000160-0000-0000-C000-000000000046} SUCCESS 98 12:38:52,9578543 MCLauncher.exe 6080 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 98 12:38:52,9578604 MCLauncher.exe 6080 RegQueryKey HKLM SUCCESS Query: Name 98 12:38:52,9578701 MCLauncher.exe 6080 RegOpenKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Ole\Extensions REPARSE Desired Access: Query Value 98 12:38:52,9578817 MCLauncher.exe 6080 RegOpenKey HKLM\SOFTWARE\Microsoft\Ole\Extensions SUCCESS Desired Access: Query Value 98 12:38:52,9578900 MCLauncher.exe 6080 RegSetInfoKey HKLM\SOFTWARE\Microsoft\Ole\Extensions SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 98 12:38:52,9578958 MCLauncher.exe 6080 RegQueryValue HKLM\SOFTWARE\Microsoft\Ole\Extensions\DragDropExtension SUCCESS Type: REG_SZ, Length: 78, Data: {9FC8E510-A27C-4B3B-B9A3-BF65F00256A8} 98 12:38:52,9579252 MCLauncher.exe 6080 RegQueryKey HKCU\Software\Classes SUCCESS Query: Name 98 12:38:52,9579327 MCLauncher.exe 6080 RegQueryKey HKCU\Software\Classes SUCCESS Query: HandleTags, HandleTags: 0x1 98 12:38:52,9579396 MCLauncher.exe 6080 RegQueryKey HKCU\Software\Classes SUCCESS Query: HandleTags, HandleTags: 0x1 98 12:38:52,9579443 MCLauncher.exe 6080 RegQueryKey HKCU\Software\Classes SUCCESS Query: Name 98 12:38:52,9579537 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Classes\WOW6432Node\CLSID\{9FC8E510-A27C-4B3B-B9A3-BF65F00256A8} NAME NOT FOUND Desired Access: Read 98 12:38:52,9579701 MCLauncher.exe 6080 RegOpenKey HKCR\WOW6432Node\CLSID\{9FC8E510-A27C-4B3B-B9A3-BF65F00256A8} SUCCESS Desired Access: Read 98 12:38:52,9579798 MCLauncher.exe 6080 RegSetInfoKey HKCR\WOW6432Node\CLSID\{9FC8E510-A27C-4B3B-B9A3-BF65F00256A8} SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 98 12:38:52,9579842 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{9FC8E510-A27C-4B3B-B9A3-BF65F00256A8} SUCCESS Query: Name 98 12:38:52,9579911 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{9FC8E510-A27C-4B3B-B9A3-BF65F00256A8} SUCCESS Query: HandleTags, HandleTags: 0x401 98 12:38:52,9580014 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Classes\WOW6432Node\CLSID\{9FC8E510-A27C-4B3B-B9A3-BF65F00256A8}\TreatAs NAME NOT FOUND Desired Access: Query Value 98 12:38:52,9580097 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{9FC8E510-A27C-4B3B-B9A3-BF65F00256A8} SUCCESS Query: HandleTags, HandleTags: 0x401 98 12:38:52,9580152 MCLauncher.exe 6080 RegOpenKey HKCR\WOW6432Node\CLSID\{9FC8E510-A27C-4B3B-B9A3-BF65F00256A8}\TreatAs NAME NOT FOUND Desired Access: Query Value 98 12:38:52,9580227 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{9FC8E510-A27C-4B3B-B9A3-BF65F00256A8} SUCCESS Query: Name 98 12:38:52,9580305 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{9FC8E510-A27C-4B3B-B9A3-BF65F00256A8} SUCCESS Query: Name 98 12:38:52,9580360 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{9FC8E510-A27C-4B3B-B9A3-BF65F00256A8} SUCCESS Query: HandleTags, HandleTags: 0x401 98 12:38:52,9580443 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Classes\WOW6432Node\CLSID\{9FC8E510-A27C-4B3B-B9A3-BF65F00256A8} NAME NOT FOUND Desired Access: Maximum Allowed 98 12:38:52,9580513 MCLauncher.exe 6080 RegQueryValue HKCR\WOW6432Node\CLSID\{9FC8E510-A27C-4B3B-B9A3-BF65F00256A8}\(Default) NAME NOT FOUND Length: 144 98 12:38:52,9580563 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{9FC8E510-A27C-4B3B-B9A3-BF65F00256A8} SUCCESS Query: Name 98 12:38:52,9580618 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{9FC8E510-A27C-4B3B-B9A3-BF65F00256A8} SUCCESS Query: HandleTags, HandleTags: 0x401 98 12:38:52,9580704 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Classes\WOW6432Node\CLSID\{9FC8E510-A27C-4B3B-B9A3-BF65F00256A8}\InprocServer32 NAME NOT FOUND Desired Access: Read 98 12:38:52,9580784 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{9FC8E510-A27C-4B3B-B9A3-BF65F00256A8} SUCCESS Query: HandleTags, HandleTags: 0x401 98 12:38:52,9580834 MCLauncher.exe 6080 RegOpenKey HKCR\WOW6432Node\CLSID\{9FC8E510-A27C-4B3B-B9A3-BF65F00256A8}\InprocServer32 SUCCESS Desired Access: Read 98 12:38:52,9580912 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{9FC8E510-A27C-4B3B-B9A3-BF65F00256A8}\InProcServer32 SUCCESS Query: Name 98 12:38:52,9580970 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{9FC8E510-A27C-4B3B-B9A3-BF65F00256A8}\InProcServer32 SUCCESS Query: HandleTags, HandleTags: 0x401 98 12:38:52,9581053 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Classes\WOW6432Node\CLSID\{9FC8E510-A27C-4B3B-B9A3-BF65F00256A8}\InProcServer32 NAME NOT FOUND Desired Access: Maximum Allowed 98 12:38:52,9581117 MCLauncher.exe 6080 RegQueryValue HKCR\WOW6432Node\CLSID\{9FC8E510-A27C-4B3B-B9A3-BF65F00256A8}\InProcServer32\InprocServer32 NAME NOT FOUND Length: 144 98 12:38:52,9581241 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{9FC8E510-A27C-4B3B-B9A3-BF65F00256A8}\InProcServer32 SUCCESS Query: Name 98 12:38:52,9581308 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{9FC8E510-A27C-4B3B-B9A3-BF65F00256A8}\InProcServer32 SUCCESS Query: HandleTags, HandleTags: 0x401 98 12:38:52,9581408 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Classes\WOW6432Node\CLSID\{9FC8E510-A27C-4B3B-B9A3-BF65F00256A8}\InProcServer32 NAME NOT FOUND Desired Access: Maximum Allowed 98 12:38:52,9581488 MCLauncher.exe 6080 RegQueryValue HKCR\WOW6432Node\CLSID\{9FC8E510-A27C-4B3B-B9A3-BF65F00256A8}\InProcServer32\(Default) SUCCESS Type: REG_EXPAND_SZ, Length: 78, Data: %SystemRoot%\system32\dataexchange.dll 98 12:38:52,9581546 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{9FC8E510-A27C-4B3B-B9A3-BF65F00256A8}\InProcServer32 SUCCESS Query: Name 98 12:38:52,9581601 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{9FC8E510-A27C-4B3B-B9A3-BF65F00256A8}\InProcServer32 SUCCESS Query: HandleTags, HandleTags: 0x401 98 12:38:52,9581682 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Classes\WOW6432Node\CLSID\{9FC8E510-A27C-4B3B-B9A3-BF65F00256A8}\InProcServer32 NAME NOT FOUND Desired Access: Maximum Allowed 98 12:38:52,9581743 MCLauncher.exe 6080 RegQueryValue HKCR\WOW6432Node\CLSID\{9FC8E510-A27C-4B3B-B9A3-BF65F00256A8}\InProcServer32\(Default) SUCCESS Type: REG_EXPAND_SZ, Length: 78, Data: %SystemRoot%\system32\dataexchange.dll 98 12:38:52,9581812 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{9FC8E510-A27C-4B3B-B9A3-BF65F00256A8}\InProcServer32 SUCCESS Query: Name 98 12:38:52,9581867 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{9FC8E510-A27C-4B3B-B9A3-BF65F00256A8}\InProcServer32 SUCCESS Query: HandleTags, HandleTags: 0x401 98 12:38:52,9581948 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Classes\WOW6432Node\CLSID\{9FC8E510-A27C-4B3B-B9A3-BF65F00256A8}\InProcServer32 NAME NOT FOUND Desired Access: Maximum Allowed 98 12:38:52,9582009 MCLauncher.exe 6080 RegQueryValue HKCR\WOW6432Node\CLSID\{9FC8E510-A27C-4B3B-B9A3-BF65F00256A8}\InProcServer32\(Default) SUCCESS Type: REG_EXPAND_SZ, Length: 78, Data: %SystemRoot%\system32\dataexchange.dll 98 12:38:52,9582070 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{9FC8E510-A27C-4B3B-B9A3-BF65F00256A8}\InProcServer32 SUCCESS Query: Name 98 12:38:52,9582122 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{9FC8E510-A27C-4B3B-B9A3-BF65F00256A8}\InProcServer32 SUCCESS Query: HandleTags, HandleTags: 0x401 98 12:38:52,9582200 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Classes\WOW6432Node\CLSID\{9FC8E510-A27C-4B3B-B9A3-BF65F00256A8}\InProcServer32 NAME NOT FOUND Desired Access: Maximum Allowed 98 12:38:52,9582264 MCLauncher.exe 6080 RegQueryValue HKCR\WOW6432Node\CLSID\{9FC8E510-A27C-4B3B-B9A3-BF65F00256A8}\InProcServer32\ThreadingModel SUCCESS Type: REG_SZ, Length: 10, Data: Both 98 12:38:52,9582424 MCLauncher.exe 6080 RegCloseKey HKCR\WOW6432Node\CLSID\{9FC8E510-A27C-4B3B-B9A3-BF65F00256A8}\InProcServer32 SUCCESS 98 12:38:52,9582480 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{9FC8E510-A27C-4B3B-B9A3-BF65F00256A8} SUCCESS Query: Name 98 12:38:52,9582546 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{9FC8E510-A27C-4B3B-B9A3-BF65F00256A8} SUCCESS Query: HandleTags, HandleTags: 0x401 98 12:38:52,9582649 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Classes\WOW6432Node\CLSID\{9FC8E510-A27C-4B3B-B9A3-BF65F00256A8}\InprocHandler32 NAME NOT FOUND Desired Access: Query Value 98 12:38:52,9582748 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{9FC8E510-A27C-4B3B-B9A3-BF65F00256A8} SUCCESS Query: HandleTags, HandleTags: 0x401 98 12:38:52,9582801 MCLauncher.exe 6080 RegOpenKey HKCR\WOW6432Node\CLSID\{9FC8E510-A27C-4B3B-B9A3-BF65F00256A8}\InprocHandler32 NAME NOT FOUND Desired Access: Query Value 98 12:38:52,9582865 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{9FC8E510-A27C-4B3B-B9A3-BF65F00256A8} SUCCESS Query: Name 98 12:38:52,9582918 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{9FC8E510-A27C-4B3B-B9A3-BF65F00256A8} SUCCESS Query: HandleTags, HandleTags: 0x401 98 12:38:52,9583001 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Classes\WOW6432Node\CLSID\{9FC8E510-A27C-4B3B-B9A3-BF65F00256A8}\InprocHandler NAME NOT FOUND Desired Access: Query Value 98 12:38:52,9583078 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{9FC8E510-A27C-4B3B-B9A3-BF65F00256A8} SUCCESS Query: HandleTags, HandleTags: 0x401 98 12:38:52,9583128 MCLauncher.exe 6080 RegOpenKey HKCR\WOW6432Node\CLSID\{9FC8E510-A27C-4B3B-B9A3-BF65F00256A8}\InprocHandler NAME NOT FOUND Desired Access: Query Value 98 12:38:52,9583200 MCLauncher.exe 6080 RegCloseKey HKCR\WOW6432Node\CLSID\{9FC8E510-A27C-4B3B-B9A3-BF65F00256A8} SUCCESS 98 12:38:52,9583405 MCLauncher.exe 6080 RegQueryKey HKCU\Software\Classes SUCCESS Query: Name 98 12:38:52,9583466 MCLauncher.exe 6080 RegQueryKey HKCU\Software\Classes SUCCESS Query: HandleTags, HandleTags: 0x1 98 12:38:52,9583530 MCLauncher.exe 6080 RegQueryKey HKCU\Software\Classes SUCCESS Query: HandleTags, HandleTags: 0x1 98 12:38:52,9583580 MCLauncher.exe 6080 RegQueryKey HKCU\Software\Classes SUCCESS Query: Name 98 12:38:52,9583660 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Classes\WOW6432Node\CLSID\{9FC8E510-A27C-4B3B-B9A3-BF65F00256A8} NAME NOT FOUND Desired Access: Read 98 12:38:52,9583751 MCLauncher.exe 6080 RegOpenKey HKCR\WOW6432Node\CLSID\{9FC8E510-A27C-4B3B-B9A3-BF65F00256A8} SUCCESS Desired Access: Read 98 12:38:52,9583832 MCLauncher.exe 6080 RegSetInfoKey HKCR\WOW6432Node\CLSID\{9FC8E510-A27C-4B3B-B9A3-BF65F00256A8} SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 98 12:38:52,9583873 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{9FC8E510-A27C-4B3B-B9A3-BF65F00256A8} SUCCESS Query: Name 98 12:38:52,9584087 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{9FC8E510-A27C-4B3B-B9A3-BF65F00256A8} SUCCESS Query: HandleTags, HandleTags: 0x401 98 12:38:52,9584195 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Classes\WOW6432Node\CLSID\{9FC8E510-A27C-4B3B-B9A3-BF65F00256A8}\TreatAs NAME NOT FOUND Desired Access: Read 98 12:38:52,9584297 MCLauncher.exe 6080 RegQueryKey HKCR\WOW6432Node\CLSID\{9FC8E510-A27C-4B3B-B9A3-BF65F00256A8} SUCCESS Query: HandleTags, HandleTags: 0x401 98 12:38:52,9584350 MCLauncher.exe 6080 RegOpenKey HKCR\WOW6432Node\CLSID\{9FC8E510-A27C-4B3B-B9A3-BF65F00256A8}\TreatAs NAME NOT FOUND Desired Access: Read 98 12:38:52,9584427 MCLauncher.exe 6080 RegCloseKey HKCR\WOW6432Node\CLSID\{9FC8E510-A27C-4B3B-B9A3-BF65F00256A8} SUCCESS 98 12:38:52,9587361 MCLauncher.exe 6080 CreateFile C:\Windows\SysWOW64\DataExchange.dll SUCCESS Desired Access: Read Attributes, Disposition: Open, Options: Open Reparse Point, Attributes: n/a, ShareMode: Read, Write, Delete, AllocationSize: n/a, OpenResult: Opened 98 12:38:52,9587583 MCLauncher.exe 6080 QueryBasicInformationFile C:\Windows\SysWOW64\DataExchange.dll SUCCESS CreationTime: 12.10.2016 7:39:13, LastAccessTime: 12.10.2016 7:39:13, LastWriteTime: 15.09.2016 19:56:42, ChangeTime: 20.07.2018 2:17:43, FileAttributes: A 98 12:38:52,9587672 MCLauncher.exe 6080 CloseFile C:\Windows\SysWOW64\DataExchange.dll SUCCESS 98 12:38:52,9588672 MCLauncher.exe 6080 CreateFile C:\Windows\SysWOW64\DataExchange.dll SUCCESS Desired Access: Read Data/List Directory, Execute/Traverse, Synchronize, Disposition: Open, Options: Synchronous IO Non-Alert, Non-Directory File, Attributes: n/a, ShareMode: Read, Delete, AllocationSize: n/a, OpenResult: Opened 98 12:38:52,9588899 MCLauncher.exe 6080 CreateFileMapping C:\Windows\SysWOW64\DataExchange.dll FILE LOCKED WITH ONLY READERS SyncType: SyncTypeCreateSection, PageProtection: PAGE_EXECUTE|PAGE_NOCACHE 98 12:38:52,9589076 MCLauncher.exe 6080 QueryNameInformationFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Name: \Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe 98 12:38:52,9589996 MCLauncher.exe 6080 CreateFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Desired Access: Synchronize, Disposition: Open, Options: Synchronous IO Non-Alert, Attributes: N, ShareMode: Read, Write, Delete, AllocationSize: n/a, OpenResult: Opened 98 12:38:52,9590190 MCLauncher.exe 6080 CloseFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS 98 12:38:52,9590492 MCLauncher.exe 6080 QueryNameInformationFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Name: \Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe 98 12:38:52,9591326 MCLauncher.exe 6080 CreateFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Desired Access: Synchronize, Disposition: Open, Options: Synchronous IO Non-Alert, Attributes: N, ShareMode: Read, Write, Delete, AllocationSize: n/a, OpenResult: Opened 98 12:38:52,9591495 MCLauncher.exe 6080 CloseFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS 98 12:38:52,9592227 MCLauncher.exe 6080 CreateFileMapping C:\Windows\SysWOW64\DataExchange.dll SUCCESS SyncType: SyncTypeOther 98 12:38:52,9592759 MCLauncher.exe 6080 Load Image C:\Windows\SysWOW64\DataExchange.dll SUCCESS Image Base: 0x6c4b0000, Image Size: 0x44000 98 12:38:52,9593493 MCLauncher.exe 6080 CloseFile C:\Windows\SysWOW64\DataExchange.dll SUCCESS 98 12:38:52,9596355 MCLauncher.exe 6080 CreateFile C:\Windows\SysWOW64\d3d11.dll SUCCESS Desired Access: Read Attributes, Disposition: Open, Options: Open Reparse Point, Attributes: n/a, ShareMode: Read, Write, Delete, AllocationSize: n/a, OpenResult: Opened 98 12:38:52,9596629 MCLauncher.exe 6080 QueryBasicInformationFile C:\Windows\SysWOW64\d3d11.dll SUCCESS CreationTime: 20.07.2018 1:33:39, LastAccessTime: 20.07.2018 1:33:39, LastWriteTime: 21.06.2017 10:28:29, ChangeTime: 20.07.2018 19:25:22, FileAttributes: A 98 12:38:52,9596712 MCLauncher.exe 6080 CloseFile C:\Windows\SysWOW64\d3d11.dll SUCCESS 98 12:38:52,9597696 MCLauncher.exe 6080 CreateFile C:\Windows\SysWOW64\d3d11.dll SUCCESS Desired Access: Read Data/List Directory, Execute/Traverse, Synchronize, Disposition: Open, Options: Synchronous IO Non-Alert, Non-Directory File, Attributes: n/a, ShareMode: Read, Delete, AllocationSize: n/a, OpenResult: Opened 98 12:38:52,9597964 MCLauncher.exe 6080 CreateFileMapping C:\Windows\SysWOW64\d3d11.dll FILE LOCKED WITH ONLY READERS SyncType: SyncTypeCreateSection, PageProtection: PAGE_EXECUTE|PAGE_NOCACHE 98 12:38:52,9598089 MCLauncher.exe 6080 QueryNameInformationFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Name: \Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe 98 12:38:52,9598934 MCLauncher.exe 6080 CreateFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Desired Access: Synchronize, Disposition: Open, Options: Synchronous IO Non-Alert, Attributes: N, ShareMode: Read, Write, Delete, AllocationSize: n/a, OpenResult: Opened 98 12:38:52,9599111 MCLauncher.exe 6080 CloseFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS 98 12:38:52,9599388 MCLauncher.exe 6080 QueryNameInformationFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Name: \Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe 98 12:38:52,9600217 MCLauncher.exe 6080 CreateFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Desired Access: Synchronize, Disposition: Open, Options: Synchronous IO Non-Alert, Attributes: N, ShareMode: Read, Write, Delete, AllocationSize: n/a, OpenResult: Opened 98 12:38:52,9600386 MCLauncher.exe 6080 CloseFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS 98 12:38:52,9601043 MCLauncher.exe 6080 CreateFileMapping C:\Windows\SysWOW64\d3d11.dll SUCCESS SyncType: SyncTypeOther 98 12:38:52,9601483 MCLauncher.exe 6080 Load Image C:\Windows\SysWOW64\d3d11.dll SUCCESS Image Base: 0x707f0000, Image Size: 0x230000 98 12:38:52,9602162 MCLauncher.exe 6080 CloseFile C:\Windows\SysWOW64\d3d11.dll SUCCESS 98 12:38:52,9605071 MCLauncher.exe 6080 CreateFile C:\Windows\SysWOW64\dcomp.dll SUCCESS Desired Access: Read Attributes, Disposition: Open, Options: Open Reparse Point, Attributes: n/a, ShareMode: Read, Write, Delete, AllocationSize: n/a, OpenResult: Opened 98 12:38:52,9605337 MCLauncher.exe 6080 QueryBasicInformationFile C:\Windows\SysWOW64\dcomp.dll SUCCESS CreationTime: 20.07.2018 1:33:38, LastAccessTime: 20.07.2018 1:33:38, LastWriteTime: 21.06.2017 10:27:41, ChangeTime: 20.07.2018 19:25:26, FileAttributes: A 98 12:38:52,9605420 MCLauncher.exe 6080 CloseFile C:\Windows\SysWOW64\dcomp.dll SUCCESS 98 12:38:52,9606387 MCLauncher.exe 6080 CreateFile C:\Windows\SysWOW64\dcomp.dll SUCCESS Desired Access: Read Data/List Directory, Execute/Traverse, Synchronize, Disposition: Open, Options: Synchronous IO Non-Alert, Non-Directory File, Attributes: n/a, ShareMode: Read, Delete, AllocationSize: n/a, OpenResult: Opened 98 12:38:52,9606653 MCLauncher.exe 6080 CreateFileMapping C:\Windows\SysWOW64\dcomp.dll FILE LOCKED WITH ONLY READERS SyncType: SyncTypeCreateSection, PageProtection: PAGE_EXECUTE|PAGE_NOCACHE 98 12:38:52,9606772 MCLauncher.exe 6080 QueryNameInformationFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Name: \Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe 98 12:38:52,9607614 MCLauncher.exe 6080 CreateFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Desired Access: Synchronize, Disposition: Open, Options: Synchronous IO Non-Alert, Attributes: N, ShareMode: Read, Write, Delete, AllocationSize: n/a, OpenResult: Opened 98 12:38:52,9607792 MCLauncher.exe 6080 CloseFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS 98 12:38:52,9608074 MCLauncher.exe 6080 QueryNameInformationFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Name: \Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe 98 12:38:52,9608905 MCLauncher.exe 6080 CreateFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Desired Access: Synchronize, Disposition: Open, Options: Synchronous IO Non-Alert, Attributes: N, ShareMode: Read, Write, Delete, AllocationSize: n/a, OpenResult: Opened 98 12:38:52,9609072 MCLauncher.exe 6080 CloseFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS 98 12:38:52,9609717 MCLauncher.exe 6080 CreateFileMapping C:\Windows\SysWOW64\dcomp.dll SUCCESS SyncType: SyncTypeOther 98 12:38:52,9610149 MCLauncher.exe 6080 Load Image C:\Windows\SysWOW64\dcomp.dll SUCCESS Image Base: 0x6c390000, Image Size: 0x113000 98 12:38:52,9610778 MCLauncher.exe 6080 CloseFile C:\Windows\SysWOW64\dcomp.dll SUCCESS 98 12:38:52,9613288 MCLauncher.exe 6080 CreateFile C:\Windows\SysWOW64\dxgi.dll SUCCESS Desired Access: Read Attributes, Disposition: Open, Options: Open Reparse Point, Attributes: n/a, ShareMode: Read, Write, Delete, AllocationSize: n/a, OpenResult: Opened 98 12:38:52,9613651 MCLauncher.exe 6080 QueryBasicInformationFile C:\Windows\SysWOW64\dxgi.dll SUCCESS CreationTime: 20.07.2018 1:33:40, LastAccessTime: 20.07.2018 1:33:40, LastWriteTime: 21.06.2017 10:28:24, ChangeTime: 20.07.2018 19:24:44, FileAttributes: A 98 12:38:52,9613737 MCLauncher.exe 6080 CloseFile C:\Windows\SysWOW64\dxgi.dll SUCCESS 98 12:38:52,9614737 MCLauncher.exe 6080 CreateFile C:\Windows\SysWOW64\dxgi.dll SUCCESS Desired Access: Read Data/List Directory, Execute/Traverse, Synchronize, Disposition: Open, Options: Synchronous IO Non-Alert, Non-Directory File, Attributes: n/a, ShareMode: Read, Delete, AllocationSize: n/a, OpenResult: Opened 98 12:38:52,9615012 MCLauncher.exe 6080 CreateFileMapping C:\Windows\SysWOW64\dxgi.dll FILE LOCKED WITH ONLY READERS SyncType: SyncTypeCreateSection, PageProtection: PAGE_EXECUTE|PAGE_NOCACHE 98 12:38:52,9615128 MCLauncher.exe 6080 QueryNameInformationFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Name: \Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe 98 12:38:52,9615970 MCLauncher.exe 6080 CreateFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Desired Access: Synchronize, Disposition: Open, Options: Synchronous IO Non-Alert, Attributes: N, ShareMode: Read, Write, Delete, AllocationSize: n/a, OpenResult: Opened 98 12:38:52,9616148 MCLauncher.exe 6080 CloseFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS 98 12:38:52,9616422 MCLauncher.exe 6080 QueryNameInformationFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Name: \Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe 98 12:38:52,9617239 MCLauncher.exe 6080 CreateFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Desired Access: Synchronize, Disposition: Open, Options: Synchronous IO Non-Alert, Attributes: N, ShareMode: Read, Write, Delete, AllocationSize: n/a, OpenResult: Opened 98 12:38:52,9617405 MCLauncher.exe 6080 CloseFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS 98 12:38:52,9618045 MCLauncher.exe 6080 CreateFileMapping C:\Windows\SysWOW64\dxgi.dll SUCCESS SyncType: SyncTypeOther 98 12:38:52,9618480 MCLauncher.exe 6080 Load Image C:\Windows\SysWOW64\dxgi.dll SUCCESS Image Base: 0x70340000, Image Size: 0x83000 98 12:38:52,9619062 MCLauncher.exe 6080 CloseFile C:\Windows\SysWOW64\dxgi.dll SUCCESS 98 12:38:52,9621933 MCLauncher.exe 6080 CreateFile C:\Windows\SysWOW64\dxgi.dll SUCCESS Desired Access: Read Control, Disposition: Open, Options: , Attributes: n/a, ShareMode: Read, Delete, AllocationSize: n/a, OpenResult: Opened 98 12:38:52,9622232 MCLauncher.exe 6080 QuerySecurityFile C:\Windows\SysWOW64\dxgi.dll BUFFER OVERFLOW Information: Owner 98 12:38:52,9622331 MCLauncher.exe 6080 QuerySecurityFile C:\Windows\SysWOW64\dxgi.dll SUCCESS Information: Owner 98 12:38:52,9622420 MCLauncher.exe 6080 CloseFile C:\Windows\SysWOW64\dxgi.dll SUCCESS 98 12:38:52,9623756 MCLauncher.exe 6080 CreateFile C:\Windows\SysWOW64\d3d11.dll SUCCESS Desired Access: Read Control, Disposition: Open, Options: , Attributes: n/a, ShareMode: Read, Delete, AllocationSize: n/a, OpenResult: Opened 98 12:38:52,9624033 MCLauncher.exe 6080 QuerySecurityFile C:\Windows\SysWOW64\d3d11.dll BUFFER OVERFLOW Information: Owner 98 12:38:52,9624119 MCLauncher.exe 6080 QuerySecurityFile C:\Windows\SysWOW64\d3d11.dll SUCCESS Information: Owner 98 12:38:52,9624202 MCLauncher.exe 6080 CloseFile C:\Windows\SysWOW64\d3d11.dll SUCCESS 98 12:38:52,9625365 MCLauncher.exe 6080 CreateFile C:\Windows\SysWOW64\dcomp.dll SUCCESS Desired Access: Read Control, Disposition: Open, Options: , Attributes: n/a, ShareMode: Read, Delete, AllocationSize: n/a, OpenResult: Opened 98 12:38:52,9625637 MCLauncher.exe 6080 QuerySecurityFile C:\Windows\SysWOW64\dcomp.dll BUFFER OVERFLOW Information: Owner 98 12:38:52,9625720 MCLauncher.exe 6080 QuerySecurityFile C:\Windows\SysWOW64\dcomp.dll SUCCESS Information: Owner 98 12:38:52,9625800 MCLauncher.exe 6080 CloseFile C:\Windows\SysWOW64\dcomp.dll SUCCESS 98 12:38:52,9626950 MCLauncher.exe 6080 CreateFile C:\Windows\SysWOW64\DataExchange.dll SUCCESS Desired Access: Read Control, Disposition: Open, Options: , Attributes: n/a, ShareMode: Read, Delete, AllocationSize: n/a, OpenResult: Opened 98 12:38:52,9627155 MCLauncher.exe 6080 QuerySecurityFile C:\Windows\SysWOW64\DataExchange.dll BUFFER OVERFLOW Information: Owner 98 12:38:52,9627241 MCLauncher.exe 6080 QuerySecurityFile C:\Windows\SysWOW64\DataExchange.dll SUCCESS Information: Owner 98 12:38:52,9627319 MCLauncher.exe 6080 CloseFile C:\Windows\SysWOW64\DataExchange.dll SUCCESS 98 12:38:52,9628438 MCLauncher.exe 6080 RegQueryValue HKLM\System\CurrentControlSet\Control\WMI\Security\03bbe5b8-c788-4d0b-b47e-5b5731398a89 NAME NOT FOUND Length: 524 98 12:38:52,9629698 MCLauncher.exe 6080 RegQueryValue HKLM\System\CurrentControlSet\Control\WMI\Security\86cc27ea-6f87-47f7-8b43-3473527d4a87 NAME NOT FOUND Length: 524 98 12:38:52,9630319 MCLauncher.exe 6080 RegQueryValue HKLM\System\CurrentControlSet\Control\WMI\Security\93112de2-0aa3-4ed7-91e3-4264555220c1 NAME NOT FOUND Length: 524 98 12:38:52,9630541 MCLauncher.exe 6080 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 98 12:38:52,9630604 MCLauncher.exe 6080 RegQueryKey HKLM SUCCESS Query: Name 98 12:38:52,9630712 MCLauncher.exe 6080 RegOpenKey HKLM\Software\WOW6432Node\Microsoft\Windows\Dwm NAME NOT FOUND Desired Access: Read 98 12:38:52,9631147 MCLauncher.exe 6080 RegCloseKey HKLM\SOFTWARE\Microsoft\Ole\Extensions SUCCESS 98 12:38:52,9633948 MCLauncher.exe 6080 CreateFile C:\Windows\SysWOW64\twinapi.appcore.dll SUCCESS Desired Access: Read Attributes, Disposition: Open, Options: Open Reparse Point, Attributes: n/a, ShareMode: Read, Write, Delete, AllocationSize: n/a, OpenResult: Opened 98 12:38:52,9634142 MCLauncher.exe 6080 QueryBasicInformationFile C:\Windows\SysWOW64\twinapi.appcore.dll SUCCESS CreationTime: 20.07.2018 1:34:28, LastAccessTime: 20.07.2018 1:34:28, LastWriteTime: 22.03.2018 6:31:52, ChangeTime: 20.07.2018 19:45:28, FileAttributes: A 98 12:38:52,9634223 MCLauncher.exe 6080 CloseFile C:\Windows\SysWOW64\twinapi.appcore.dll SUCCESS 98 12:38:52,9635220 MCLauncher.exe 6080 CreateFile C:\Windows\SysWOW64\twinapi.appcore.dll SUCCESS Desired Access: Read Data/List Directory, Execute/Traverse, Synchronize, Disposition: Open, Options: Synchronous IO Non-Alert, Non-Directory File, Attributes: n/a, ShareMode: Read, Delete, AllocationSize: n/a, OpenResult: Opened 98 12:38:52,9635425 MCLauncher.exe 6080 CreateFileMapping C:\Windows\SysWOW64\twinapi.appcore.dll FILE LOCKED WITH ONLY READERS SyncType: SyncTypeCreateSection, PageProtection: PAGE_EXECUTE|PAGE_NOCACHE 98 12:38:52,9635550 MCLauncher.exe 6080 QueryNameInformationFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Name: \Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe 98 12:38:52,9636406 MCLauncher.exe 6080 CreateFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Desired Access: Synchronize, Disposition: Open, Options: Synchronous IO Non-Alert, Attributes: N, ShareMode: Read, Write, Delete, AllocationSize: n/a, OpenResult: Opened 98 12:38:52,9636586 MCLauncher.exe 6080 CloseFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS 98 12:38:52,9636866 MCLauncher.exe 6080 QueryNameInformationFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Name: \Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe 98 12:38:52,9637697 MCLauncher.exe 6080 CreateFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Desired Access: Synchronize, Disposition: Open, Options: Synchronous IO Non-Alert, Attributes: N, ShareMode: Read, Write, Delete, AllocationSize: n/a, OpenResult: Opened 98 12:38:52,9637863 MCLauncher.exe 6080 CloseFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS 98 12:38:52,9638509 MCLauncher.exe 6080 CreateFileMapping C:\Windows\SysWOW64\twinapi.appcore.dll SUCCESS SyncType: SyncTypeOther 98 12:38:52,9638947 MCLauncher.exe 6080 Load Image C:\Windows\SysWOW64\twinapi.appcore.dll SUCCESS Image Base: 0x6c290000, Image Size: 0xf1000 98 12:38:52,9639611 MCLauncher.exe 6080 CloseFile C:\Windows\SysWOW64\twinapi.appcore.dll SUCCESS 98 12:38:52,9641484 MCLauncher.exe 6080 CreateFile C:\Windows\SysWOW64\twinapi.appcore.dll SUCCESS Desired Access: Read Control, Disposition: Open, Options: , Attributes: n/a, ShareMode: Read, Delete, AllocationSize: n/a, OpenResult: Opened 98 12:38:52,9641687 MCLauncher.exe 6080 QuerySecurityFile C:\Windows\SysWOW64\twinapi.appcore.dll BUFFER OVERFLOW Information: Owner 98 12:38:52,9641761 MCLauncher.exe 6080 QuerySecurityFile C:\Windows\SysWOW64\twinapi.appcore.dll SUCCESS Information: Owner 98 12:38:52,9641831 MCLauncher.exe 6080 CloseFile C:\Windows\SysWOW64\twinapi.appcore.dll SUCCESS 98 12:38:52,9705703 MCLauncher.exe 6080 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 98 12:38:52,9705795 MCLauncher.exe 6080 RegQueryKey HKLM SUCCESS Query: Name 98 12:38:52,9705922 MCLauncher.exe 6080 RegOpenKey HKLM\SOFTWARE\WOW6432Node\Microsoft\CTF\Compatibility\MCLauncher.exe NAME NOT FOUND Desired Access: Read 98 12:38:52,9734506 MCLauncher.exe 6080 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 98 12:38:52,9734597 MCLauncher.exe 6080 RegQueryKey HKLM SUCCESS Query: Name 98 12:38:52,9734725 MCLauncher.exe 6080 RegOpenKey HKLM\SOFTWARE\WOW6432Node\Microsoft\CTF\ SUCCESS Desired Access: Read 98 12:38:52,9734869 MCLauncher.exe 6080 RegSetInfoKey HKLM\SOFTWARE\WOW6432Node\Microsoft\CTF SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 98 12:38:52,9734949 MCLauncher.exe 6080 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\CTF\EnableAnchorContext NAME NOT FOUND Length: 144 98 12:38:52,9735146 MCLauncher.exe 6080 RegCloseKey HKLM\SOFTWARE\WOW6432Node\Microsoft\CTF SUCCESS 98 12:38:52,9735783 MCLauncher.exe 6080 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 98 12:38:52,9735855 MCLauncher.exe 6080 RegQueryKey HKLM SUCCESS Query: Name 98 12:38:52,9735966 MCLauncher.exe 6080 RegOpenKey HKLM\SOFTWARE\WOW6432Node\Microsoft\CTF\KnownClasses NAME NOT FOUND Desired Access: Read 98 12:38:52,9765262 MCLauncher.exe 6080 QueryInformationVolume C:\Users\User\AppData\Local\Temp\d.htm BUFFER OVERFLOW VolumeCreationTime: 19.07.2018 19:30:42, VolumeSerialNumber: B6D8-C2CA, SupportsObjects: True, VolumeLabel: Winb 98 12:38:52,9765409 MCLauncher.exe 6080 QueryAllInformationFile C:\Users\User\AppData\Local\Temp\d.htm BUFFER OVERFLOW CreationTime: 24.08.2018 12:38:52, LastAccessTime: 24.08.2018 12:38:52, LastWriteTime: 24.08.2018 12:38:52, ChangeTime: 24.08.2018 12:38:52, FileAttributes: A, AllocationSize: 794 624, EndOfFile: 792 010, NumberOfLinks: 1, DeletePending: False, Directory: False, IndexNumber: 0x1200000003e881, EaSize: 0, Access: Generic Read, Position: 0, Mode: Synchronous IO Non-Alert, AlignmentRequirement: Word 98 12:38:52,9766090 MCLauncher.exe 6080 QueryInformationVolume C:\Users\User\AppData\Local\Temp\d.htm BUFFER OVERFLOW VolumeCreationTime: 19.07.2018 19:30:42, VolumeSerialNumber: B6D8-C2CA, SupportsObjects: True, VolumeLabel: Winb 98 12:38:52,9766173 MCLauncher.exe 6080 QueryAllInformationFile C:\Users\User\AppData\Local\Temp\d.htm BUFFER OVERFLOW CreationTime: 24.08.2018 12:38:52, LastAccessTime: 24.08.2018 12:38:52, LastWriteTime: 24.08.2018 12:38:52, ChangeTime: 24.08.2018 12:38:52, FileAttributes: A, AllocationSize: 794 624, EndOfFile: 792 010, NumberOfLinks: 1, DeletePending: False, Directory: False, IndexNumber: 0x1200000003e881, EaSize: 0, Access: Generic Read, Position: 0, Mode: Synchronous IO Non-Alert, AlignmentRequirement: Word 98 12:38:52,9767969 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Local\Temp\d.htm SUCCESS Offset: 0, Length: 792 010, Priority: Normal 98 12:38:52,9769667 MCLauncher.exe 6080 QueryInformationVolume C:\Users\User\AppData\Local\Temp\d.htm BUFFER OVERFLOW VolumeCreationTime: 19.07.2018 19:30:42, VolumeSerialNumber: B6D8-C2CA, SupportsObjects: True, VolumeLabel: Winb 98 12:38:52,9769753 MCLauncher.exe 6080 QueryAllInformationFile C:\Users\User\AppData\Local\Temp\d.htm BUFFER OVERFLOW CreationTime: 24.08.2018 12:38:52, LastAccessTime: 24.08.2018 12:38:52, LastWriteTime: 24.08.2018 12:38:52, ChangeTime: 24.08.2018 12:38:52, FileAttributes: A, AllocationSize: 794 624, EndOfFile: 792 010, NumberOfLinks: 1, DeletePending: False, Directory: False, IndexNumber: 0x1200000003e881, EaSize: 0, Access: Generic Read, Position: 792 010, Mode: Synchronous IO Non-Alert, AlignmentRequirement: Word 98 12:38:52,9769889 MCLauncher.exe 6080 CloseFile C:\Users\User\AppData\Local\Temp\d.htm SUCCESS 98 12:38:53,4216672 MCLauncher.exe 6080 CreateFile C:\Users\User\AppData\Roaming\MCLauncher\font.ttf SUCCESS Desired Access: Read Attributes, Disposition: Open, Options: Open Reparse Point, Attributes: n/a, ShareMode: Read, Write, Delete, AllocationSize: n/a, OpenResult: Opened 98 12:38:53,4216910 MCLauncher.exe 6080 QueryNetworkOpenInformationFile C:\Users\User\AppData\Roaming\MCLauncher\font.ttf SUCCESS CreationTime: 24.08.2018 12:30:32, LastAccessTime: 24.08.2018 12:30:32, LastWriteTime: 24.08.2018 12:30:32, ChangeTime: 24.08.2018 12:30:32, AllocationSize: 01.01.1601 3:00:00, EndOfFile: 01.01.1601 3:00:00, FileAttributes: A 98 12:38:53,4217012 MCLauncher.exe 6080 CloseFile C:\Users\User\AppData\Roaming\MCLauncher\font.ttf SUCCESS 98 12:38:53,4218109 MCLauncher.exe 6080 CreateFile C:\Users\User\AppData\Roaming\MCLauncher\font.ttf SUCCESS Desired Access: Generic Read, Disposition: Open, Options: Synchronous IO Non-Alert, Non-Directory File, Attributes: N, ShareMode: Read, Write, AllocationSize: n/a, OpenResult: Opened 98 12:38:53,4233228 MCLauncher.exe 6080 CreateFile C:\Users\User\AppData\Roaming\MCLauncher\ssleay32.dll SUCCESS Desired Access: Read Attributes, Disposition: Open, Options: Open Reparse Point, Attributes: n/a, ShareMode: Read, Write, Delete, AllocationSize: n/a, OpenResult: Opened 98 12:38:53,4233461 MCLauncher.exe 6080 QueryBasicInformationFile C:\Users\User\AppData\Roaming\MCLauncher\ssleay32.dll SUCCESS CreationTime: 24.08.2018 12:30:32, LastAccessTime: 24.08.2018 12:30:32, LastWriteTime: 24.08.2018 12:30:32, ChangeTime: 24.08.2018 12:30:32, FileAttributes: A 98 12:38:53,4233553 MCLauncher.exe 6080 CloseFile C:\Users\User\AppData\Roaming\MCLauncher\ssleay32.dll SUCCESS 98 12:38:53,4234655 MCLauncher.exe 6080 CreateFile C:\Users\User\AppData\Roaming\MCLauncher\ssleay32.dll SUCCESS Desired Access: Read Data/List Directory, Execute/Traverse, Synchronize, Disposition: Open, Options: Synchronous IO Non-Alert, Non-Directory File, Attributes: n/a, ShareMode: Read, Delete, AllocationSize: n/a, OpenResult: Opened 98 12:38:53,4234874 MCLauncher.exe 6080 CreateFileMapping C:\Users\User\AppData\Roaming\MCLauncher\ssleay32.dll FILE LOCKED WITH ONLY READERS SyncType: SyncTypeCreateSection, PageProtection: PAGE_EXECUTE|PAGE_NOCACHE 98 12:38:53,4235065 MCLauncher.exe 6080 QueryNameInformationFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Name: \Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe 98 12:38:53,4238628 MCLauncher.exe 6080 CreateFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Desired Access: Synchronize, Disposition: Open, Options: Synchronous IO Non-Alert, Attributes: N, ShareMode: Read, Write, Delete, AllocationSize: n/a, OpenResult: Opened 98 12:38:53,4238839 MCLauncher.exe 6080 CloseFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS 98 12:38:53,4239157 MCLauncher.exe 6080 QueryNameInformationFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Name: \Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe 98 12:38:53,4240008 MCLauncher.exe 6080 CreateFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Desired Access: Synchronize, Disposition: Open, Options: Synchronous IO Non-Alert, Attributes: N, ShareMode: Read, Write, Delete, AllocationSize: n/a, OpenResult: Opened 98 12:38:53,4240185 MCLauncher.exe 6080 CloseFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS 98 12:38:53,4240598 MCLauncher.exe 6080 CreateFileMapping C:\Users\User\AppData\Roaming\MCLauncher\ssleay32.dll SUCCESS SyncType: SyncTypeOther 98 12:38:53,4241016 MCLauncher.exe 6080 Load Image C:\Users\User\AppData\Roaming\MCLauncher\ssleay32.dll SUCCESS Image Base: 0x12000000, Image Size: 0x58000 98 12:38:53,4241210 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\ssleay32.dll SUCCESS Offset: 310 784, Length: 12 288, I/O Flags: Non-cached, Paging I/O, Synchronous Paging I/O, Priority: Normal 98 12:38:53,5273294 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\ssleay32.dll SUCCESS Offset: 251 904, Length: 4 096, I/O Flags: Non-cached, Paging I/O, Synchronous Paging I/O, Priority: Normal 98 12:38:53,5503553 MCLauncher.exe 6080 CloseFile C:\Users\User\AppData\Roaming\MCLauncher\ssleay32.dll SUCCESS 98 12:38:53,5506121 MCLauncher.exe 6080 CreateFile C:\Users\User\AppData\Roaming\MCLauncher\libeay32.dll SUCCESS Desired Access: Read Attributes, Disposition: Open, Options: Open Reparse Point, Attributes: n/a, ShareMode: Read, Write, Delete, AllocationSize: n/a, OpenResult: Opened 98 12:38:53,5506315 MCLauncher.exe 6080 QueryBasicInformationFile C:\Users\User\AppData\Roaming\MCLauncher\libeay32.dll SUCCESS CreationTime: 24.08.2018 12:30:32, LastAccessTime: 24.08.2018 12:30:32, LastWriteTime: 24.08.2018 12:30:32, ChangeTime: 24.08.2018 12:30:32, FileAttributes: A 98 12:38:53,5506395 MCLauncher.exe 6080 CloseFile C:\Users\User\AppData\Roaming\MCLauncher\libeay32.dll SUCCESS 98 12:38:53,5507343 MCLauncher.exe 6080 CreateFile C:\Users\User\AppData\Roaming\MCLauncher\libeay32.dll SUCCESS Desired Access: Read Data/List Directory, Execute/Traverse, Synchronize, Disposition: Open, Options: Synchronous IO Non-Alert, Non-Directory File, Attributes: n/a, ShareMode: Read, Delete, AllocationSize: n/a, OpenResult: Opened 98 12:38:53,5507534 MCLauncher.exe 6080 CreateFileMapping C:\Users\User\AppData\Roaming\MCLauncher\libeay32.dll FILE LOCKED WITH ONLY READERS SyncType: SyncTypeCreateSection, PageProtection: PAGE_EXECUTE|PAGE_NOCACHE 98 12:38:53,5507672 MCLauncher.exe 6080 QueryNameInformationFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Name: \Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe 98 12:38:53,5508515 MCLauncher.exe 6080 CreateFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Desired Access: Synchronize, Disposition: Open, Options: Synchronous IO Non-Alert, Attributes: N, ShareMode: Read, Write, Delete, AllocationSize: n/a, OpenResult: Opened 98 12:38:53,5508698 MCLauncher.exe 6080 CloseFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS 98 12:38:53,5508977 MCLauncher.exe 6080 QueryNameInformationFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Name: \Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe 98 12:38:53,5509795 MCLauncher.exe 6080 CreateFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Desired Access: Synchronize, Disposition: Open, Options: Synchronous IO Non-Alert, Attributes: N, ShareMode: Read, Write, Delete, AllocationSize: n/a, OpenResult: Opened 98 12:38:53,5509958 MCLauncher.exe 6080 CloseFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS 98 12:38:53,5510332 MCLauncher.exe 6080 CreateFileMapping C:\Users\User\AppData\Roaming\MCLauncher\libeay32.dll SUCCESS SyncType: SyncTypeOther 98 12:38:53,5510731 MCLauncher.exe 6080 Load Image C:\Users\User\AppData\Roaming\MCLauncher\libeay32.dll SUCCESS Image Base: 0x11000000, Image Size: 0x155000 98 12:38:53,5510914 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\libeay32.dll SUCCESS Offset: 1 314 816, Length: 9 216, I/O Flags: Non-cached, Paging I/O, Synchronous Paging I/O, Priority: Normal 98 12:38:53,5622338 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\libeay32.dll SUCCESS Offset: 943 616, Length: 16 384, I/O Flags: Non-cached, Paging I/O, Synchronous Paging I/O, Priority: Normal 98 12:38:53,5956658 MCLauncher.exe 6080 CloseFile C:\Users\User\AppData\Roaming\MCLauncher\libeay32.dll SUCCESS 98 12:38:53,6165401 MCLauncher.exe 6080 RegQueryValue HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\DllNXOptions\LIBEAY32.dll NAME NOT FOUND Length: 1 024 98 12:38:53,6167080 MCLauncher.exe 6080 CreateFile C:\Users\User\AppData\Roaming\MCLauncher\libeay32.dll SUCCESS Desired Access: Read Control, Disposition: Open, Options: , Attributes: n/a, ShareMode: Read, Delete, AllocationSize: n/a, OpenResult: Opened 98 12:38:53,6167332 MCLauncher.exe 6080 QuerySecurityFile C:\Users\User\AppData\Roaming\MCLauncher\libeay32.dll BUFFER OVERFLOW Information: Owner 98 12:38:53,6167418 MCLauncher.exe 6080 QuerySecurityFile C:\Users\User\AppData\Roaming\MCLauncher\libeay32.dll SUCCESS Information: Owner 98 12:38:53,6167495 MCLauncher.exe 6080 CloseFile C:\Users\User\AppData\Roaming\MCLauncher\libeay32.dll SUCCESS 98 12:38:53,6167855 MCLauncher.exe 6080 RegQueryValue HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\DllNXOptions\ssleay32.dll NAME NOT FOUND Length: 1 024 98 12:38:53,6168894 MCLauncher.exe 6080 CreateFile C:\Users\User\AppData\Roaming\MCLauncher\ssleay32.dll SUCCESS Desired Access: Read Control, Disposition: Open, Options: , Attributes: n/a, ShareMode: Read, Delete, AllocationSize: n/a, OpenResult: Opened 98 12:38:53,6169091 MCLauncher.exe 6080 QuerySecurityFile C:\Users\User\AppData\Roaming\MCLauncher\ssleay32.dll BUFFER OVERFLOW Information: Owner 98 12:38:53,6169163 MCLauncher.exe 6080 QuerySecurityFile C:\Users\User\AppData\Roaming\MCLauncher\ssleay32.dll SUCCESS Information: Owner 98 12:38:53,6169227 MCLauncher.exe 6080 CloseFile C:\Users\User\AppData\Roaming\MCLauncher\ssleay32.dll SUCCESS 98 12:38:53,6173676 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\libeay32.dll SUCCESS Offset: 1 294 336, Length: 8 192, I/O Flags: Non-cached, Paging I/O, Synchronous Paging I/O, Priority: Normal 98 12:38:53,6177696 MCLauncher.exe 6080 RegOpenKey HKLM\SYSTEM\CurrentControlSet\Control\Session Manager REPARSE Desired Access: Query Value, Enumerate Sub Keys 98 12:38:53,6177849 MCLauncher.exe 6080 RegOpenKey HKLM\System\CurrentControlSet\Control\Session Manager SUCCESS Desired Access: Query Value, Enumerate Sub Keys 98 12:38:53,6177965 MCLauncher.exe 6080 RegSetInfoKey HKLM\System\CurrentControlSet\Control\Session Manager SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 98 12:38:53,6178023 MCLauncher.exe 6080 RegQueryValue HKLM\System\CurrentControlSet\Control\Session Manager\ResourcePolicies NAME NOT FOUND Length: 24 98 12:38:53,6178212 MCLauncher.exe 6080 RegCloseKey HKLM\System\CurrentControlSet\Control\Session Manager SUCCESS 98 12:38:53,6202005 MCLauncher.exe 6080 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 98 12:38:53,6202088 MCLauncher.exe 6080 RegQueryKey HKLM SUCCESS Query: Name 98 12:38:53,6202210 MCLauncher.exe 6080 RegOpenKey HKLM\Software\WOW6432Node\Policies\Microsoft\Windows NT\Rpc REPARSE Desired Access: Read 98 12:38:53,6202318 MCLauncher.exe 6080 RegOpenKey HKLM\SOFTWARE\Policies\Microsoft\Windows NT\Rpc NAME NOT FOUND Desired Access: Read 98 12:38:53,6442030 MCLauncher.exe 6080 CreateFile C:\Windows\SysWOW64\srvcli.dll SUCCESS Desired Access: Read Attributes, Disposition: Open, Options: Open Reparse Point, Attributes: n/a, ShareMode: Read, Write, Delete, AllocationSize: n/a, OpenResult: Opened 98 12:38:53,6442365 MCLauncher.exe 6080 QueryBasicInformationFile C:\Windows\SysWOW64\srvcli.dll SUCCESS CreationTime: 16.07.2016 14:42:55, LastAccessTime: 16.07.2016 14:42:55, LastWriteTime: 16.07.2016 14:42:55, ChangeTime: 19.07.2018 19:39:17, FileAttributes: A 98 12:38:53,6442457 MCLauncher.exe 6080 CloseFile C:\Windows\SysWOW64\srvcli.dll SUCCESS 98 12:38:53,6443609 MCLauncher.exe 6080 CreateFile C:\Windows\SysWOW64\srvcli.dll SUCCESS Desired Access: Read Data/List Directory, Execute/Traverse, Synchronize, Disposition: Open, Options: Synchronous IO Non-Alert, Non-Directory File, Attributes: n/a, ShareMode: Read, Delete, AllocationSize: n/a, OpenResult: Opened 98 12:38:53,6443911 MCLauncher.exe 6080 CreateFileMapping C:\Windows\SysWOW64\srvcli.dll FILE LOCKED WITH ONLY READERS SyncType: SyncTypeCreateSection, PageProtection: PAGE_EXECUTE|PAGE_NOCACHE 98 12:38:53,6444100 MCLauncher.exe 6080 QueryNameInformationFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Name: \Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe 98 12:38:53,6445022 MCLauncher.exe 6080 CreateFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Desired Access: Synchronize, Disposition: Open, Options: Synchronous IO Non-Alert, Attributes: N, ShareMode: Read, Write, Delete, AllocationSize: n/a, OpenResult: Opened 98 12:38:53,6445216 MCLauncher.exe 6080 CloseFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS 98 12:38:53,6445518 MCLauncher.exe 6080 QueryNameInformationFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Name: \Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe 98 12:38:53,6446366 MCLauncher.exe 6080 CreateFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Desired Access: Synchronize, Disposition: Open, Options: Synchronous IO Non-Alert, Attributes: N, ShareMode: Read, Write, Delete, AllocationSize: n/a, OpenResult: Opened 98 12:38:53,6446535 MCLauncher.exe 6080 CloseFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS 98 12:38:53,6447350 MCLauncher.exe 6080 CreateFileMapping C:\Windows\SysWOW64\srvcli.dll SUCCESS SyncType: SyncTypeOther 98 12:38:53,6447829 MCLauncher.exe 6080 Load Image C:\Windows\SysWOW64\srvcli.dll SUCCESS Image Base: 0x70c30000, Image Size: 0x1c000 98 12:38:53,6448444 MCLauncher.exe 6080 CloseFile C:\Windows\SysWOW64\srvcli.dll SUCCESS 98 12:38:53,6449993 MCLauncher.exe 6080 CreateFile C:\Windows\SysWOW64\srvcli.dll SUCCESS Desired Access: Read Control, Disposition: Open, Options: , Attributes: n/a, ShareMode: Read, Delete, AllocationSize: n/a, OpenResult: Opened 98 12:38:53,6450275 MCLauncher.exe 6080 QuerySecurityFile C:\Windows\SysWOW64\srvcli.dll BUFFER OVERFLOW Information: Owner 98 12:38:53,6450364 MCLauncher.exe 6080 QuerySecurityFile C:\Windows\SysWOW64\srvcli.dll SUCCESS Information: Owner 98 12:38:53,6450441 MCLauncher.exe 6080 CloseFile C:\Windows\SysWOW64\srvcli.dll SUCCESS 98 12:38:53,6450998 MCLauncher.exe 6080 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 98 12:38:53,6451079 MCLauncher.exe 6080 RegQueryKey HKLM SUCCESS Query: Name 98 12:38:53,6451184 MCLauncher.exe 6080 RegOpenKey HKLM\System\CurrentControlSet\Services\LanmanWorkstation\Parameters REPARSE Desired Access: Query Value 98 12:38:53,6451311 MCLauncher.exe 6080 RegOpenKey HKLM\System\CurrentControlSet\Services\LanmanWorkstation\Parameters SUCCESS Desired Access: Query Value 98 12:38:53,6451439 MCLauncher.exe 6080 RegSetInfoKey HKLM\System\CurrentControlSet\Services\LanmanWorkstation\Parameters SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 98 12:38:53,6451497 MCLauncher.exe 6080 RegQueryValue HKLM\System\CurrentControlSet\Services\LanmanWorkstation\Parameters\RpcCacheTimeout NAME NOT FOUND Length: 144 98 12:38:53,6451763 MCLauncher.exe 6080 RegCloseKey HKLM\System\CurrentControlSet\Services\LanmanWorkstation\Parameters SUCCESS 98 12:38:53,6454728 MCLauncher.exe 6080 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 98 12:38:53,6454794 MCLauncher.exe 6080 RegQueryKey HKLM SUCCESS Query: Name 98 12:38:53,6454902 MCLauncher.exe 6080 RegOpenKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Cryptography\Defaults\Provider Types\Type 001 SUCCESS Desired Access: Read 98 12:38:53,6455074 MCLauncher.exe 6080 RegSetInfoKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Cryptography\Defaults\Provider Types\Type 001 SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 98 12:38:53,6455135 MCLauncher.exe 6080 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Cryptography\Defaults\Provider Types\Type 001\Name SUCCESS Type: REG_SZ, Length: 80, Data: Microsoft Strong Cryptographic Provider 98 12:38:53,6455309 MCLauncher.exe 6080 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Cryptography\Defaults\Provider Types\Type 001\Name SUCCESS Type: REG_SZ, Length: 80, Data: Microsoft Strong Cryptographic Provider 98 12:38:53,6455445 MCLauncher.exe 6080 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Cryptography\Defaults\Provider Types\Type 001\Name SUCCESS Type: REG_SZ, Length: 80, Data: Microsoft Strong Cryptographic Provider 98 12:38:53,6455564 MCLauncher.exe 6080 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Cryptography\Defaults\Provider Types\Type 001\Name SUCCESS Type: REG_SZ, Length: 80, Data: Microsoft Strong Cryptographic Provider 98 12:38:53,6455708 MCLauncher.exe 6080 RegCloseKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Cryptography\Defaults\Provider Types\Type 001 SUCCESS 98 12:38:53,6455791 MCLauncher.exe 6080 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 98 12:38:53,6455847 MCLauncher.exe 6080 RegQueryKey HKLM SUCCESS Query: Name 98 12:38:53,6455944 MCLauncher.exe 6080 RegOpenKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Cryptography\Defaults\Provider\Microsoft Strong Cryptographic Provider SUCCESS Desired Access: Read 98 12:38:53,6456044 MCLauncher.exe 6080 RegSetInfoKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Cryptography\Defaults\Provider\Microsoft Strong Cryptographic Provider SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 98 12:38:53,6456099 MCLauncher.exe 6080 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Cryptography\Defaults\Provider\Microsoft Strong Cryptographic Provider\Type SUCCESS Type: REG_DWORD, Length: 4, Data: 1 98 12:38:53,6456229 MCLauncher.exe 6080 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Cryptography\Defaults\Provider\Microsoft Strong Cryptographic Provider\Image Path SUCCESS Type: REG_SZ, Length: 66, Data: %SystemRoot%\system32\rsaenh.dll 98 12:38:53,6456354 MCLauncher.exe 6080 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Cryptography\Defaults\Provider\Microsoft Strong Cryptographic Provider\Image Path SUCCESS Type: REG_SZ, Length: 66, Data: %SystemRoot%\system32\rsaenh.dll 98 12:38:53,6456470 MCLauncher.exe 6080 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Cryptography\Defaults\Provider\Microsoft Strong Cryptographic Provider\Image Path SUCCESS Type: REG_SZ, Length: 66, Data: %SystemRoot%\system32\rsaenh.dll 98 12:38:53,6456587 MCLauncher.exe 6080 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Cryptography\Defaults\Provider\Microsoft Strong Cryptographic Provider\Image Path SUCCESS Type: REG_SZ, Length: 66, Data: %SystemRoot%\system32\rsaenh.dll 98 12:38:53,6456911 MCLauncher.exe 6080 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 98 12:38:53,6456974 MCLauncher.exe 6080 RegOpenKey HKLM\Software\Microsoft\Cryptography SUCCESS Desired Access: Read 98 12:38:53,6457069 MCLauncher.exe 6080 RegSetInfoKey HKLM\SOFTWARE\Microsoft\Cryptography SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 98 12:38:53,6457113 MCLauncher.exe 6080 RegQueryValue HKLM\SOFTWARE\Microsoft\Cryptography\MachineGuid SUCCESS Type: REG_SZ, Length: 74, Data: 89c16905-77a2-4a80-ba7d-623b3fd0da77 98 12:38:53,6457249 MCLauncher.exe 6080 RegQueryValue HKLM\SOFTWARE\Microsoft\Cryptography\MachineGuid SUCCESS Type: REG_SZ, Length: 74, Data: 89c16905-77a2-4a80-ba7d-623b3fd0da77 98 12:38:53,6457371 MCLauncher.exe 6080 RegQueryValue HKLM\SOFTWARE\Microsoft\Cryptography\MachineGuid SUCCESS Type: REG_SZ, Length: 74, Data: 89c16905-77a2-4a80-ba7d-623b3fd0da77 98 12:38:53,6457495 MCLauncher.exe 6080 RegQueryValue HKLM\SOFTWARE\Microsoft\Cryptography\MachineGuid SUCCESS Type: REG_SZ, Length: 74, Data: 89c16905-77a2-4a80-ba7d-623b3fd0da77 98 12:38:53,6457648 MCLauncher.exe 6080 RegCloseKey HKLM\SOFTWARE\Microsoft\Cryptography SUCCESS 98 12:38:53,6457728 MCLauncher.exe 6080 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 98 12:38:53,6457778 MCLauncher.exe 6080 RegQueryKey HKLM SUCCESS Query: Name 98 12:38:53,6457869 MCLauncher.exe 6080 RegOpenKey HKLM\Software\WOW6432Node\Microsoft\Cryptography\Offload NAME NOT FOUND Desired Access: Read 98 12:38:53,6458072 MCLauncher.exe 6080 RegCloseKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Cryptography\Defaults\Provider\Microsoft Strong Cryptographic Provider SUCCESS 98 12:38:53,6458207 MCLauncher.exe 6080 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 98 12:38:53,6458254 MCLauncher.exe 6080 RegQueryKey HKLM SUCCESS Query: Name 98 12:38:53,6458338 MCLauncher.exe 6080 RegOpenKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Cryptography\Defaults\Provider\Intel Hardware Cryptographic Service Provider NAME NOT FOUND Desired Access: Read 98 12:38:54,6686111 MCLauncher.exe 6080 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 98 12:38:54,6686227 MCLauncher.exe 6080 RegQueryKey HKLM SUCCESS Query: Name 98 12:38:54,6686621 MCLauncher.exe 6080 RegOpenKey HKLM\SYSTEM\CurrentControlSet\Services\crypt32 REPARSE Desired Access: Read 98 12:38:54,6686798 MCLauncher.exe 6080 RegOpenKey HKLM\System\CurrentControlSet\Services\crypt32 SUCCESS Desired Access: Read 98 12:38:54,6686959 MCLauncher.exe 6080 RegSetInfoKey HKLM\System\CurrentControlSet\Services\crypt32 SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 98 12:38:54,6687028 MCLauncher.exe 6080 RegQueryValue HKLM\System\CurrentControlSet\Services\crypt32\DiagLevel NAME NOT FOUND Length: 144 98 12:38:54,6687203 MCLauncher.exe 6080 RegQueryValue HKLM\System\CurrentControlSet\Services\crypt32\DiagMatchAnyMask NAME NOT FOUND Length: 144 98 12:38:54,6687352 MCLauncher.exe 6080 RegCloseKey HKLM\System\CurrentControlSet\Services\crypt32 SUCCESS 98 12:38:54,6687435 MCLauncher.exe 6080 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 98 12:38:54,6687541 MCLauncher.exe 6080 RegQueryKey HKLM SUCCESS Query: Name 98 12:38:54,6687629 MCLauncher.exe 6080 RegOpenKey HKLM\SYSTEM\CurrentControlSet\Services\crypt32 REPARSE Desired Access: Read 98 12:38:54,6687704 MCLauncher.exe 6080 RegOpenKey HKLM\System\CurrentControlSet\Services\crypt32 SUCCESS Desired Access: Read 98 12:38:54,6687809 MCLauncher.exe 6080 RegSetInfoKey HKLM\System\CurrentControlSet\Services\crypt32 SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 98 12:38:54,6688618 MCLauncher.exe 6080 Thread Create SUCCESS Thread ID: 4804 98 12:38:54,6688857 MCLauncher.exe 6080 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 98 12:38:54,6688945 MCLauncher.exe 6080 RegQueryKey HKLM SUCCESS Query: Name 98 12:38:54,6689053 MCLauncher.exe 6080 RegOpenKey HKLM\Software\WOW6432Node\Microsoft\Cryptography\OID SUCCESS Desired Access: Read 98 12:38:54,6689250 MCLauncher.exe 6080 RegSetInfoKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Cryptography\OID SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 98 12:38:54,6689339 MCLauncher.exe 6080 RegEnumKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Cryptography\OID SUCCESS Index: 0, Name: EncodingType 0 98 12:38:54,6689449 MCLauncher.exe 6080 RegQueryKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Cryptography\OID SUCCESS Query: HandleTags, HandleTags: 0x400 98 12:38:54,6689513 MCLauncher.exe 6080 RegOpenKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Cryptography\OID\EncodingType 0 SUCCESS Desired Access: Read 98 12:38:54,6689713 MCLauncher.exe 6080 RegQueryKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Cryptography\OID\EncodingType 0 SUCCESS Query: HandleTags, HandleTags: 0x400 98 12:38:54,6689768 MCLauncher.exe 6080 RegOpenKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Cryptography\OID\EncodingType 0\CertDllOpenStoreProv SUCCESS Desired Access: Read 98 12:38:54,6689868 MCLauncher.exe 6080 RegEnumKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Cryptography\OID\EncodingType 0\CertDllOpenStoreProv SUCCESS Index: 0, Name: #16 98 12:38:54,6689954 MCLauncher.exe 6080 RegQueryKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Cryptography\OID\EncodingType 0\CertDllOpenStoreProv SUCCESS Query: HandleTags, HandleTags: 0x400 98 12:38:54,6690006 MCLauncher.exe 6080 RegOpenKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Cryptography\OID\EncodingType 0\CertDllOpenStoreProv\#16 SUCCESS Desired Access: Read 98 12:38:54,6690145 MCLauncher.exe 6080 RegQueryKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Cryptography\OID\EncodingType 0\CertDllOpenStoreProv\#16 SUCCESS Query: Cached, SubKeys: 0, Values: 2 98 12:38:54,6690211 MCLauncher.exe 6080 RegEnumValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Cryptography\OID\EncodingType 0\CertDllOpenStoreProv\#16 SUCCESS Index: 0, Name: Dll, Type: REG_SZ, Length: 66, Data: C:\Windows\SysWOW64\cryptnet.dll 98 12:38:54,6690275 MCLauncher.exe 6080 RegEnumValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Cryptography\OID\EncodingType 0\CertDllOpenStoreProv\#16 SUCCESS Index: 1, Name: FuncName, Type: REG_SZ, Length: 36, Data: LdapProvOpenStore 98 12:38:54,6690411 MCLauncher.exe 6080 RegCloseKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Cryptography\OID\EncodingType 0\CertDllOpenStoreProv\#16 SUCCESS 98 12:38:54,6690480 MCLauncher.exe 6080 RegEnumKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Cryptography\OID\EncodingType 0\CertDllOpenStoreProv SUCCESS Index: 1, Name: Ldap 98 12:38:54,6690558 MCLauncher.exe 6080 RegQueryKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Cryptography\OID\EncodingType 0\CertDllOpenStoreProv SUCCESS Query: HandleTags, HandleTags: 0x400 98 12:38:54,6690613 MCLauncher.exe 6080 RegOpenKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Cryptography\OID\EncodingType 0\CertDllOpenStoreProv\Ldap SUCCESS Desired Access: Read 98 12:38:54,6690716 MCLauncher.exe 6080 RegQueryKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Cryptography\OID\EncodingType 0\CertDllOpenStoreProv\Ldap SUCCESS Query: Cached, SubKeys: 0, Values: 2 98 12:38:54,6690768 MCLauncher.exe 6080 RegEnumValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Cryptography\OID\EncodingType 0\CertDllOpenStoreProv\Ldap SUCCESS Index: 0, Name: Dll, Type: REG_SZ, Length: 66, Data: C:\Windows\SysWOW64\cryptnet.dll 98 12:38:54,6690818 MCLauncher.exe 6080 RegEnumValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Cryptography\OID\EncodingType 0\CertDllOpenStoreProv\Ldap SUCCESS Index: 1, Name: FuncName, Type: REG_SZ, Length: 36, Data: LdapProvOpenStore 98 12:38:54,6690901 MCLauncher.exe 6080 RegCloseKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Cryptography\OID\EncodingType 0\CertDllOpenStoreProv\Ldap SUCCESS 98 12:38:54,6690943 MCLauncher.exe 6080 RegEnumKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Cryptography\OID\EncodingType 0\CertDllOpenStoreProv NO MORE ENTRIES Index: 2, Length: 288 98 12:38:54,6690993 MCLauncher.exe 6080 RegCloseKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Cryptography\OID\EncodingType 0\CertDllOpenStoreProv SUCCESS 98 12:38:54,6691031 MCLauncher.exe 6080 RegCloseKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Cryptography\OID\EncodingType 0 SUCCESS 98 12:38:54,6691067 MCLauncher.exe 6080 RegEnumKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Cryptography\OID SUCCESS Index: 1, Name: EncodingType 1 98 12:38:54,6691145 MCLauncher.exe 6080 RegQueryKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Cryptography\OID SUCCESS Query: HandleTags, HandleTags: 0x400 98 12:38:54,6691320 MCLauncher.exe 6080 RegOpenKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Cryptography\OID\EncodingType 1 SUCCESS Desired Access: Read 98 12:38:54,6691558 MCLauncher.exe 6080 RegQueryKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Cryptography\OID\EncodingType 1 SUCCESS Query: HandleTags, HandleTags: 0x400 98 12:38:54,6691649 MCLauncher.exe 6080 RegOpenKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Cryptography\OID\EncodingType 1\CertDllOpenStoreProv NAME NOT FOUND Desired Access: Read 98 12:38:54,6691755 MCLauncher.exe 6080 RegCloseKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Cryptography\OID\EncodingType 1 SUCCESS 98 12:38:54,6691799 MCLauncher.exe 6080 RegEnumKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Cryptography\OID NO MORE ENTRIES Index: 2, Length: 288 98 12:38:54,6691849 MCLauncher.exe 6080 RegCloseKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Cryptography\OID SUCCESS 98 12:38:54,6692602 MCLauncher.exe 6080 RegOpenKey HKU SUCCESS Desired Access: Maximum Allowed, Granted Access: Read 98 12:38:54,6692755 MCLauncher.exe 6080 RegQueryKey HKU SUCCESS Query: HandleTags, HandleTags: 0x0 98 12:38:54,6692838 MCLauncher.exe 6080 RegQueryKey HKU SUCCESS Query: Name 98 12:38:54,6692918 MCLauncher.exe 6080 RegOpenKey HKCU SUCCESS Desired Access: Maximum Allowed, Granted Access: All Access 98 12:38:54,6693079 MCLauncher.exe 6080 RegQueryKey HKCU SUCCESS Query: HandleTags, HandleTags: 0x0 98 12:38:54,6693156 MCLauncher.exe 6080 RegQueryKey HKCU SUCCESS Query: Name 98 12:38:54,6693240 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Microsoft\SystemCertificates\ROOT\PhysicalStores NAME NOT FOUND Desired Access: Read 98 12:38:54,6693395 MCLauncher.exe 6080 RegCloseKey HKCU SUCCESS 98 12:38:54,6693647 MCLauncher.exe 6080 RegQueryKey HKU SUCCESS Query: HandleTags, HandleTags: 0x0 98 12:38:54,6693730 MCLauncher.exe 6080 RegQueryKey HKU SUCCESS Query: Name 98 12:38:54,6693802 MCLauncher.exe 6080 RegOpenKey HKCU SUCCESS Desired Access: Maximum Allowed, Granted Access: All Access 98 12:38:54,6693938 MCLauncher.exe 6080 RegQueryKey HKCU SUCCESS Query: HandleTags, HandleTags: 0x0 98 12:38:54,6694013 MCLauncher.exe 6080 RegQueryKey HKCU SUCCESS Query: Name 98 12:38:54,6694098 MCLauncher.exe 6080 RegCreateKey HKCU\Software\Microsoft\SystemCertificates\ROOT SUCCESS Desired Access: Read/Write, Delete, Disposition: REG_OPENED_EXISTING_KEY 98 12:38:54,6694326 MCLauncher.exe 6080 RegSetInfoKey HKCU\SOFTWARE\Microsoft\SystemCertificates\Root SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 98 12:38:54,6694392 MCLauncher.exe 6080 RegCloseKey HKCU SUCCESS 98 12:38:54,6694436 MCLauncher.exe 6080 RegCloseKey HKCU\SOFTWARE\Microsoft\SystemCertificates\Root SUCCESS 98 12:38:54,6694578 MCLauncher.exe 6080 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 98 12:38:54,6694686 MCLauncher.exe 6080 RegQueryKey HKLM SUCCESS Query: Name 98 12:38:54,6694802 MCLauncher.exe 6080 RegOpenKey HKLM\Software\WOW6432Node\Policies\Microsoft\SystemCertificates\Root\ProtectedRoots REPARSE Desired Access: Read 98 12:38:54,6694888 MCLauncher.exe 6080 RegOpenKey HKLM\SOFTWARE\Policies\Microsoft\SystemCertificates\Root\ProtectedRoots NAME NOT FOUND Desired Access: Read 98 12:38:54,6695334 MCLauncher.exe 6080 RegQueryKey HKU SUCCESS Query: HandleTags, HandleTags: 0x0 98 12:38:54,6695417 MCLauncher.exe 6080 RegQueryKey HKU SUCCESS Query: Name 98 12:38:54,6695492 MCLauncher.exe 6080 RegOpenKey HKCU SUCCESS Desired Access: Maximum Allowed, Granted Access: All Access 98 12:38:54,6695647 MCLauncher.exe 6080 RegQueryKey HKCU SUCCESS Query: HandleTags, HandleTags: 0x0 98 12:38:54,6695725 MCLauncher.exe 6080 RegQueryKey HKCU SUCCESS Query: Name 98 12:38:54,6695805 MCLauncher.exe 6080 RegCreateKey HKCU\Software\Microsoft\SystemCertificates\ROOT SUCCESS Desired Access: Read/Write, Delete, Disposition: REG_OPENED_EXISTING_KEY 98 12:38:54,6696010 MCLauncher.exe 6080 RegSetInfoKey HKCU\SOFTWARE\Microsoft\SystemCertificates\Root SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 98 12:38:54,6696179 MCLauncher.exe 6080 RegQueryKey HKU SUCCESS Query: HandleTags, HandleTags: 0x0 98 12:38:54,6696271 MCLauncher.exe 6080 RegQueryKey HKU SUCCESS Query: Name 98 12:38:54,6696345 MCLauncher.exe 6080 RegOpenKey HKCU SUCCESS Desired Access: Maximum Allowed, Granted Access: All Access 98 12:38:54,6696503 MCLauncher.exe 6080 RegQueryKey HKCU SUCCESS Query: HandleTags, HandleTags: 0x0 98 12:38:54,6696578 MCLauncher.exe 6080 RegQueryKey HKCU SUCCESS Query: Name 98 12:38:54,6696653 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Microsoft\SystemCertificates\Root\ProtectedRoots SUCCESS Desired Access: Read 98 12:38:54,6696800 MCLauncher.exe 6080 RegSetInfoKey HKCU\SOFTWARE\Microsoft\SystemCertificates\Root\ProtectedRoots SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 98 12:38:54,6696858 MCLauncher.exe 6080 RegCloseKey HKCU\SOFTWARE\Microsoft\SystemCertificates\Root\ProtectedRoots SUCCESS 98 12:38:54,6696933 MCLauncher.exe 6080 RegCloseKey HKCU SUCCESS 98 12:38:54,6697002 MCLauncher.exe 6080 RegQueryKey HKCU\SOFTWARE\Microsoft\SystemCertificates\Root SUCCESS Query: HandleTags, HandleTags: 0x400 98 12:38:54,6697063 MCLauncher.exe 6080 RegOpenKey HKCU\SOFTWARE\Microsoft\SystemCertificates\Root SUCCESS Desired Access: Read 98 12:38:54,6697168 MCLauncher.exe 6080 RegQueryKey HKCU\SOFTWARE\Microsoft\SystemCertificates\Root SUCCESS Query: HandleTags, HandleTags: 0x400 98 12:38:54,6697229 MCLauncher.exe 6080 RegCreateKey HKCU\SOFTWARE\Microsoft\SystemCertificates\Root\Certificates SUCCESS Desired Access: Read/Write, Delete, Disposition: REG_OPENED_EXISTING_KEY 98 12:38:54,6697456 MCLauncher.exe 6080 RegQueryKey HKCU\SOFTWARE\Microsoft\SystemCertificates\Root\Certificates SUCCESS Query: Cached, SubKeys: 0, Values: 0 98 12:38:54,6697512 MCLauncher.exe 6080 RegQueryKey HKCU\SOFTWARE\Microsoft\SystemCertificates\Root\Certificates SUCCESS Query: Cached, SubKeys: 0, Values: 0 98 12:38:54,6697567 MCLauncher.exe 6080 RegCloseKey HKCU\SOFTWARE\Microsoft\SystemCertificates\Root\Certificates SUCCESS 98 12:38:54,6697670 MCLauncher.exe 6080 RegQueryKey HKCU\SOFTWARE\Microsoft\SystemCertificates\Root SUCCESS Query: HandleTags, HandleTags: 0x400 98 12:38:54,6697728 MCLauncher.exe 6080 RegCreateKey HKCU\SOFTWARE\Microsoft\SystemCertificates\Root\CRLs SUCCESS Desired Access: Read/Write, Delete, Disposition: REG_OPENED_EXISTING_KEY 98 12:38:54,6697908 MCLauncher.exe 6080 RegQueryKey HKCU\SOFTWARE\Microsoft\SystemCertificates\Root\CRLs SUCCESS Query: Cached, SubKeys: 0, Values: 0 98 12:38:54,6697958 MCLauncher.exe 6080 RegQueryKey HKCU\SOFTWARE\Microsoft\SystemCertificates\Root\CRLs SUCCESS Query: Cached, SubKeys: 0, Values: 0 98 12:38:54,6698013 MCLauncher.exe 6080 RegCloseKey HKCU\SOFTWARE\Microsoft\SystemCertificates\Root\CRLs SUCCESS 98 12:38:54,6698071 MCLauncher.exe 6080 RegQueryKey HKCU\SOFTWARE\Microsoft\SystemCertificates\Root SUCCESS Query: HandleTags, HandleTags: 0x400 98 12:38:54,6698127 MCLauncher.exe 6080 RegCreateKey HKCU\SOFTWARE\Microsoft\SystemCertificates\Root\CTLs SUCCESS Desired Access: Read/Write, Delete, Disposition: REG_OPENED_EXISTING_KEY 98 12:38:54,6698288 MCLauncher.exe 6080 RegQueryKey HKCU\SOFTWARE\Microsoft\SystemCertificates\Root\CTLs SUCCESS Query: Cached, SubKeys: 0, Values: 0 98 12:38:54,6698337 MCLauncher.exe 6080 RegQueryKey HKCU\SOFTWARE\Microsoft\SystemCertificates\Root\CTLs SUCCESS Query: Cached, SubKeys: 0, Values: 0 98 12:38:54,6698393 MCLauncher.exe 6080 RegCloseKey HKCU\SOFTWARE\Microsoft\SystemCertificates\Root\CTLs SUCCESS 98 12:38:54,6698515 MCLauncher.exe 6080 RegQueryKey HKU SUCCESS Query: HandleTags, HandleTags: 0x0 98 12:38:54,6698598 MCLauncher.exe 6080 RegQueryKey HKU SUCCESS Query: Name 98 12:38:54,6698673 MCLauncher.exe 6080 RegOpenKey HKCU SUCCESS Desired Access: Maximum Allowed, Granted Access: All Access 98 12:38:54,6698994 MCLauncher.exe 6080 RegQueryKey HKCU SUCCESS Query: HandleTags, HandleTags: 0x0 98 12:38:54,6699074 MCLauncher.exe 6080 RegQueryKey HKCU SUCCESS Query: Name 98 12:38:54,6699155 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Microsoft\SystemCertificates\Root\ProtectedRoots SUCCESS Desired Access: Read 98 12:38:54,6699282 MCLauncher.exe 6080 RegSetInfoKey HKCU\SOFTWARE\Microsoft\SystemCertificates\Root\ProtectedRoots SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 98 12:38:54,6699385 MCLauncher.exe 6080 RegQueryKeySecurity HKCU\SOFTWARE\Microsoft\SystemCertificates\Root\ProtectedRoots SUCCESS 98 12:38:54,6699493 MCLauncher.exe 6080 RegQueryValue HKCU\SOFTWARE\Microsoft\SystemCertificates\Root\ProtectedRoots\Certificates SUCCESS Type: REG_BINARY, Length: 24, Data: 18 00 00 00 01 00 00 00 E0 A9 4A DB 82 1F D4 01 98 12:38:54,6699664 MCLauncher.exe 6080 RegQueryValue HKCU\SOFTWARE\Microsoft\SystemCertificates\Root\ProtectedRoots\Certificates SUCCESS Type: REG_BINARY, Length: 24, Data: 18 00 00 00 01 00 00 00 E0 A9 4A DB 82 1F D4 01 98 12:38:54,6699806 MCLauncher.exe 6080 RegCloseKey HKCU\SOFTWARE\Microsoft\SystemCertificates\Root\ProtectedRoots SUCCESS 98 12:38:54,6699850 MCLauncher.exe 6080 RegCloseKey HKCU SUCCESS 98 12:38:54,6699955 MCLauncher.exe 6080 RegCloseKey HKCU\SOFTWARE\Microsoft\SystemCertificates\Root SUCCESS 98 12:38:54,6699994 MCLauncher.exe 6080 RegCloseKey HKCU SUCCESS 98 12:38:54,6700099 MCLauncher.exe 6080 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 98 12:38:54,6700183 MCLauncher.exe 6080 RegQueryKey HKLM SUCCESS Query: Name 98 12:38:54,6700274 MCLauncher.exe 6080 RegOpenKey HKLM\Software\WOW6432Node\Microsoft\SystemCertificates\ROOT\PhysicalStores REPARSE Desired Access: Read 98 12:38:54,6700368 MCLauncher.exe 6080 RegOpenKey HKLM\SOFTWARE\Microsoft\SystemCertificates\ROOT\PhysicalStores NAME NOT FOUND Desired Access: Read 98 12:38:54,6700521 MCLauncher.exe 6080 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 98 12:38:54,6700595 MCLauncher.exe 6080 RegQueryKey HKLM SUCCESS Query: Name 98 12:38:54,6700676 MCLauncher.exe 6080 RegOpenKey HKLM\Software\WOW6432Node\Microsoft\SystemCertificates\ROOT REPARSE Desired Access: Read 98 12:38:54,6700748 MCLauncher.exe 6080 RegOpenKey HKLM\SOFTWARE\Microsoft\SystemCertificates\ROOT SUCCESS Desired Access: Read 98 12:38:54,6700845 MCLauncher.exe 6080 RegSetInfoKey HKLM\SOFTWARE\Microsoft\SystemCertificates\ROOT SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 98 12:38:54,6700903 MCLauncher.exe 6080 RegCloseKey HKLM\SOFTWARE\Microsoft\SystemCertificates\ROOT SUCCESS 98 12:38:54,6701197 MCLauncher.exe 6080 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 98 12:38:54,6701302 MCLauncher.exe 6080 RegQueryKey HKLM SUCCESS Query: Name 98 12:38:54,6701399 MCLauncher.exe 6080 RegOpenKey HKLM\Software\WOW6432Node\Policies\Microsoft\SystemCertificates\Root\ProtectedRoots REPARSE Desired Access: Read 98 12:38:54,6701471 MCLauncher.exe 6080 RegOpenKey HKLM\SOFTWARE\Policies\Microsoft\SystemCertificates\Root\ProtectedRoots NAME NOT FOUND Desired Access: Read 98 12:38:54,6701706 MCLauncher.exe 6080 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 98 12:38:54,6701781 MCLauncher.exe 6080 RegQueryKey HKLM SUCCESS Query: Name 98 12:38:54,6701864 MCLauncher.exe 6080 RegOpenKey HKLM\Software\WOW6432Node\Microsoft\SystemCertificates\ROOT REPARSE Desired Access: Read 98 12:38:54,6701934 MCLauncher.exe 6080 RegOpenKey HKLM\SOFTWARE\Microsoft\SystemCertificates\ROOT SUCCESS Desired Access: Read 98 12:38:54,6702028 MCLauncher.exe 6080 RegSetInfoKey HKLM\SOFTWARE\Microsoft\SystemCertificates\ROOT SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 98 12:38:54,6702116 MCLauncher.exe 6080 RegQueryKey HKLM\SOFTWARE\Microsoft\SystemCertificates\ROOT SUCCESS Query: HandleTags, HandleTags: 0x400 98 12:38:54,6702177 MCLauncher.exe 6080 RegOpenKey HKLM\SOFTWARE\Microsoft\SystemCertificates\ROOT SUCCESS Desired Access: Read 98 12:38:54,6702263 MCLauncher.exe 6080 RegQueryKey HKLM\SOFTWARE\Microsoft\SystemCertificates\ROOT SUCCESS Query: HandleTags, HandleTags: 0x400 98 12:38:54,6702319 MCLauncher.exe 6080 RegOpenKey HKLM\SOFTWARE\Microsoft\SystemCertificates\ROOT\Certificates SUCCESS Desired Access: Read 98 12:38:54,6702393 MCLauncher.exe 6080 RegQueryKey HKLM\SOFTWARE\Microsoft\SystemCertificates\ROOT\Certificates SUCCESS Query: Cached, SubKeys: 9, Values: 0 98 12:38:54,6702446 MCLauncher.exe 6080 RegQueryKey HKLM\SOFTWARE\Microsoft\SystemCertificates\ROOT\Certificates SUCCESS Query: Cached, SubKeys: 9, Values: 0 98 12:38:54,6702502 MCLauncher.exe 6080 RegEnumKey HKLM\SOFTWARE\Microsoft\SystemCertificates\ROOT\Certificates SUCCESS Index: 0, Name: 18F7C1FCC3090203FD5BAA2F861A754976C8DD25 98 12:38:54,6702585 MCLauncher.exe 6080 RegQueryKey HKLM\SOFTWARE\Microsoft\SystemCertificates\ROOT\Certificates SUCCESS Query: HandleTags, HandleTags: 0x400 98 12:38:54,6702637 MCLauncher.exe 6080 RegOpenKey HKLM\SOFTWARE\Microsoft\SystemCertificates\ROOT\Certificates\18F7C1FCC3090203FD5BAA2F861A754976C8DD25 SUCCESS Desired Access: Read 98 12:38:54,6702723 MCLauncher.exe 6080 RegQueryValue HKLM\SOFTWARE\Microsoft\SystemCertificates\ROOT\Certificates\18F7C1FCC3090203FD5BAA2F861A754976C8DD25\Blob BUFFER OVERFLOW Length: 144 98 12:38:54,6702876 MCLauncher.exe 6080 RegQueryValue HKLM\SOFTWARE\Microsoft\SystemCertificates\ROOT\Certificates\18F7C1FCC3090203FD5BAA2F861A754976C8DD25\Blob BUFFER OVERFLOW Length: 144 98 12:38:54,6702995 MCLauncher.exe 6080 RegQueryValue HKLM\SOFTWARE\Microsoft\SystemCertificates\ROOT\Certificates\18F7C1FCC3090203FD5BAA2F861A754976C8DD25\Blob SUCCESS Type: REG_BINARY, Length: 924, Data: 19 00 00 00 01 00 00 00 10 00 00 00 E5 3D 34 CE 98 12:38:54,6703133 MCLauncher.exe 6080 RegCloseKey HKLM\SOFTWARE\Microsoft\SystemCertificates\ROOT\Certificates\18F7C1FCC3090203FD5BAA2F861A754976C8DD25 SUCCESS 98 12:38:54,6703277 MCLauncher.exe 6080 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 98 12:38:54,6703360 MCLauncher.exe 6080 RegQueryKey HKLM SUCCESS Query: Name 98 12:38:54,6703449 MCLauncher.exe 6080 RegOpenKey HKLM\Software\WOW6432Node\Microsoft\Cryptography\OID SUCCESS Desired Access: Read 98 12:38:54,6703565 MCLauncher.exe 6080 RegSetInfoKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Cryptography\OID SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 98 12:38:54,6703626 MCLauncher.exe 6080 RegEnumKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Cryptography\OID SUCCESS Index: 0, Name: EncodingType 0 98 12:38:54,6703718 MCLauncher.exe 6080 RegQueryKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Cryptography\OID SUCCESS Query: HandleTags, HandleTags: 0x400 98 12:38:54,6703776 MCLauncher.exe 6080 RegOpenKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Cryptography\OID\EncodingType 0 SUCCESS Desired Access: Read 98 12:38:54,6703890 MCLauncher.exe 6080 RegQueryKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Cryptography\OID\EncodingType 0 SUCCESS Query: HandleTags, HandleTags: 0x400 98 12:38:54,6703945 MCLauncher.exe 6080 RegOpenKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Cryptography\OID\EncodingType 0\CryptDllDecodeObjectEx NAME NOT FOUND Desired Access: Read 98 12:38:54,6704028 MCLauncher.exe 6080 RegCloseKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Cryptography\OID\EncodingType 0 SUCCESS 98 12:38:54,6704067 MCLauncher.exe 6080 RegEnumKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Cryptography\OID SUCCESS Index: 1, Name: EncodingType 1 98 12:38:54,6704142 MCLauncher.exe 6080 RegQueryKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Cryptography\OID SUCCESS Query: HandleTags, HandleTags: 0x400 98 12:38:54,6704192 MCLauncher.exe 6080 RegOpenKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Cryptography\OID\EncodingType 1 SUCCESS Desired Access: Read 98 12:38:54,6704280 MCLauncher.exe 6080 RegQueryKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Cryptography\OID\EncodingType 1 SUCCESS Query: HandleTags, HandleTags: 0x400 98 12:38:54,6704333 MCLauncher.exe 6080 RegOpenKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Cryptography\OID\EncodingType 1\CryptDllDecodeObjectEx SUCCESS Desired Access: Read 98 12:38:54,6704419 MCLauncher.exe 6080 RegEnumKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Cryptography\OID\EncodingType 1\CryptDllDecodeObjectEx SUCCESS Index: 0, Name: 1.2.840.113549.1.9.16.1.1 98 12:38:54,6704505 MCLauncher.exe 6080 RegQueryKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Cryptography\OID\EncodingType 1\CryptDllDecodeObjectEx SUCCESS Query: HandleTags, HandleTags: 0x400 98 12:38:54,6704560 MCLauncher.exe 6080 RegOpenKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Cryptography\OID\EncodingType 1\CryptDllDecodeObjectEx\1.2.840.113549.1.9.16.1.1 SUCCESS Desired Access: Read 98 12:38:54,6704657 MCLauncher.exe 6080 RegQueryKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Cryptography\OID\EncodingType 1\CryptDllDecodeObjectEx\1.2.840.113549.1.9.16.1.1 SUCCESS Query: Cached, SubKeys: 0, Values: 2 98 12:38:54,6704718 MCLauncher.exe 6080 RegEnumValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Cryptography\OID\EncodingType 1\CryptDllDecodeObjectEx\1.2.840.113549.1.9.16.1.1 SUCCESS Index: 0, Name: Dll, Type: REG_SZ, Length: 66, Data: C:\Windows\SysWOW64\inetcomm.dll 98 12:38:54,6704779 MCLauncher.exe 6080 RegEnumValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Cryptography\OID\EncodingType 1\CryptDllDecodeObjectEx\1.2.840.113549.1.9.16.1.1 SUCCESS Index: 1, Name: FuncName, Type: REG_SZ, Length: 38, Data: EssReceiptDecodeEx 98 12:38:54,6704870 MCLauncher.exe 6080 RegCloseKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Cryptography\OID\EncodingType 1\CryptDllDecodeObjectEx\1.2.840.113549.1.9.16.1.1 SUCCESS 98 12:38:54,6704912 MCLauncher.exe 6080 RegEnumKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Cryptography\OID\EncodingType 1\CryptDllDecodeObjectEx SUCCESS Index: 1, Name: 1.2.840.113549.1.9.16.2.1 98 12:38:54,6704987 MCLauncher.exe 6080 RegQueryKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Cryptography\OID\EncodingType 1\CryptDllDecodeObjectEx SUCCESS Query: HandleTags, HandleTags: 0x400 98 12:38:54,6705039 MCLauncher.exe 6080 RegOpenKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Cryptography\OID\EncodingType 1\CryptDllDecodeObjectEx\1.2.840.113549.1.9.16.2.1 SUCCESS Desired Access: Read 98 12:38:54,6705134 MCLauncher.exe 6080 RegQueryKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Cryptography\OID\EncodingType 1\CryptDllDecodeObjectEx\1.2.840.113549.1.9.16.2.1 SUCCESS Query: Cached, SubKeys: 0, Values: 2 98 12:38:54,6705186 MCLauncher.exe 6080 RegEnumValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Cryptography\OID\EncodingType 1\CryptDllDecodeObjectEx\1.2.840.113549.1.9.16.2.1 SUCCESS Index: 0, Name: Dll, Type: REG_SZ, Length: 66, Data: C:\Windows\SysWOW64\inetcomm.dll 98 12:38:54,6705236 MCLauncher.exe 6080 RegEnumValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Cryptography\OID\EncodingType 1\CryptDllDecodeObjectEx\1.2.840.113549.1.9.16.2.1 SUCCESS Index: 1, Name: FuncName, Type: REG_SZ, Length: 52, Data: EssReceiptRequestDecodeEx 98 12:38:54,6705308 MCLauncher.exe 6080 RegCloseKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Cryptography\OID\EncodingType 1\CryptDllDecodeObjectEx\1.2.840.113549.1.9.16.2.1 SUCCESS 98 12:38:54,6705344 MCLauncher.exe 6080 RegEnumKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Cryptography\OID\EncodingType 1\CryptDllDecodeObjectEx SUCCESS Index: 2, Name: 1.2.840.113549.1.9.16.2.11 98 12:38:54,6705419 MCLauncher.exe 6080 RegQueryKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Cryptography\OID\EncodingType 1\CryptDllDecodeObjectEx SUCCESS Query: HandleTags, HandleTags: 0x400 98 12:38:54,6705472 MCLauncher.exe 6080 RegOpenKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Cryptography\OID\EncodingType 1\CryptDllDecodeObjectEx\1.2.840.113549.1.9.16.2.11 SUCCESS Desired Access: Read 98 12:38:54,6705555 MCLauncher.exe 6080 RegQueryKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Cryptography\OID\EncodingType 1\CryptDllDecodeObjectEx\1.2.840.113549.1.9.16.2.11 SUCCESS Query: Cached, SubKeys: 0, Values: 2 98 12:38:54,6705607 MCLauncher.exe 6080 RegEnumValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Cryptography\OID\EncodingType 1\CryptDllDecodeObjectEx\1.2.840.113549.1.9.16.2.11 SUCCESS Index: 0, Name: Dll, Type: REG_SZ, Length: 66, Data: C:\Windows\SysWOW64\inetcomm.dll 98 12:38:54,6705657 MCLauncher.exe 6080 RegEnumValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Cryptography\OID\EncodingType 1\CryptDllDecodeObjectEx\1.2.840.113549.1.9.16.2.11 SUCCESS Index: 1, Name: FuncName, Type: REG_SZ, Length: 58, Data: EssKeyExchPreferenceDecodeEx 98 12:38:54,6705724 MCLauncher.exe 6080 RegCloseKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Cryptography\OID\EncodingType 1\CryptDllDecodeObjectEx\1.2.840.113549.1.9.16.2.11 SUCCESS 98 12:38:54,6705762 MCLauncher.exe 6080 RegEnumKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Cryptography\OID\EncodingType 1\CryptDllDecodeObjectEx SUCCESS Index: 3, Name: 1.2.840.113549.1.9.16.2.12 98 12:38:54,6705837 MCLauncher.exe 6080 RegQueryKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Cryptography\OID\EncodingType 1\CryptDllDecodeObjectEx SUCCESS Query: HandleTags, HandleTags: 0x400 98 12:38:54,6705890 MCLauncher.exe 6080 RegOpenKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Cryptography\OID\EncodingType 1\CryptDllDecodeObjectEx\1.2.840.113549.1.9.16.2.12 SUCCESS Desired Access: Read 98 12:38:54,6705984 MCLauncher.exe 6080 RegQueryKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Cryptography\OID\EncodingType 1\CryptDllDecodeObjectEx\1.2.840.113549.1.9.16.2.12 SUCCESS Query: Cached, SubKeys: 0, Values: 2 98 12:38:54,6706037 MCLauncher.exe 6080 RegEnumValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Cryptography\OID\EncodingType 1\CryptDllDecodeObjectEx\1.2.840.113549.1.9.16.2.12 SUCCESS Index: 0, Name: Dll, Type: REG_SZ, Length: 66, Data: C:\Windows\SysWOW64\inetcomm.dll 98 12:38:54,6706084 MCLauncher.exe 6080 RegEnumValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Cryptography\OID\EncodingType 1\CryptDllDecodeObjectEx\1.2.840.113549.1.9.16.2.12 SUCCESS Index: 1, Name: FuncName, Type: REG_SZ, Length: 54, Data: EssSignCertificateDecodeEx 98 12:38:54,6706156 MCLauncher.exe 6080 RegCloseKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Cryptography\OID\EncodingType 1\CryptDllDecodeObjectEx\1.2.840.113549.1.9.16.2.12 SUCCESS 98 12:38:54,6706192 MCLauncher.exe 6080 RegEnumKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Cryptography\OID\EncodingType 1\CryptDllDecodeObjectEx SUCCESS Index: 4, Name: 1.2.840.113549.1.9.16.2.2 98 12:38:54,6706267 MCLauncher.exe 6080 RegQueryKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Cryptography\OID\EncodingType 1\CryptDllDecodeObjectEx SUCCESS Query: HandleTags, HandleTags: 0x400 98 12:38:54,6706319 MCLauncher.exe 6080 RegOpenKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Cryptography\OID\EncodingType 1\CryptDllDecodeObjectEx\1.2.840.113549.1.9.16.2.2 SUCCESS Desired Access: Read 98 12:38:54,6706419 MCLauncher.exe 6080 RegQueryKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Cryptography\OID\EncodingType 1\CryptDllDecodeObjectEx\1.2.840.113549.1.9.16.2.2 SUCCESS Query: Cached, SubKeys: 0, Values: 2 98 12:38:54,6706469 MCLauncher.exe 6080 RegEnumValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Cryptography\OID\EncodingType 1\CryptDllDecodeObjectEx\1.2.840.113549.1.9.16.2.2 SUCCESS Index: 0, Name: Dll, Type: REG_SZ, Length: 66, Data: C:\Windows\SysWOW64\inetcomm.dll 98 12:38:54,6706519 MCLauncher.exe 6080 RegEnumValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Cryptography\OID\EncodingType 1\CryptDllDecodeObjectEx\1.2.840.113549.1.9.16.2.2 SUCCESS Index: 1, Name: FuncName, Type: REG_SZ, Length: 50, Data: EssSecurityLabelDecodeEx 98 12:38:54,6706585 MCLauncher.exe 6080 RegCloseKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Cryptography\OID\EncodingType 1\CryptDllDecodeObjectEx\1.2.840.113549.1.9.16.2.2 SUCCESS 98 12:38:54,6706624 MCLauncher.exe 6080 RegEnumKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Cryptography\OID\EncodingType 1\CryptDllDecodeObjectEx SUCCESS Index: 5, Name: 1.2.840.113549.1.9.16.2.3 98 12:38:54,6706696 MCLauncher.exe 6080 RegQueryKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Cryptography\OID\EncodingType 1\CryptDllDecodeObjectEx SUCCESS Query: HandleTags, HandleTags: 0x400 98 12:38:54,6706749 MCLauncher.exe 6080 RegOpenKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Cryptography\OID\EncodingType 1\CryptDllDecodeObjectEx\1.2.840.113549.1.9.16.2.3 SUCCESS Desired Access: Read 98 12:38:54,6706832 MCLauncher.exe 6080 RegQueryKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Cryptography\OID\EncodingType 1\CryptDllDecodeObjectEx\1.2.840.113549.1.9.16.2.3 SUCCESS Query: Cached, SubKeys: 0, Values: 2 98 12:38:54,6706885 MCLauncher.exe 6080 RegEnumValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Cryptography\OID\EncodingType 1\CryptDllDecodeObjectEx\1.2.840.113549.1.9.16.2.3 SUCCESS Index: 0, Name: Dll, Type: REG_SZ, Length: 66, Data: C:\Windows\SysWOW64\inetcomm.dll 98 12:38:54,6706932 MCLauncher.exe 6080 RegEnumValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Cryptography\OID\EncodingType 1\CryptDllDecodeObjectEx\1.2.840.113549.1.9.16.2.3 SUCCESS Index: 1, Name: FuncName, Type: REG_SZ, Length: 42, Data: EssMLHistoryDecodeEx 98 12:38:54,6707001 MCLauncher.exe 6080 RegCloseKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Cryptography\OID\EncodingType 1\CryptDllDecodeObjectEx\1.2.840.113549.1.9.16.2.3 SUCCESS 98 12:38:54,6707037 MCLauncher.exe 6080 RegEnumKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Cryptography\OID\EncodingType 1\CryptDllDecodeObjectEx SUCCESS Index: 6, Name: 1.2.840.113549.1.9.16.2.4 98 12:38:54,6707109 MCLauncher.exe 6080 RegQueryKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Cryptography\OID\EncodingType 1\CryptDllDecodeObjectEx SUCCESS Query: HandleTags, HandleTags: 0x400 98 12:38:54,6707162 MCLauncher.exe 6080 RegOpenKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Cryptography\OID\EncodingType 1\CryptDllDecodeObjectEx\1.2.840.113549.1.9.16.2.4 SUCCESS Desired Access: Read 98 12:38:54,6707270 MCLauncher.exe 6080 RegQueryKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Cryptography\OID\EncodingType 1\CryptDllDecodeObjectEx\1.2.840.113549.1.9.16.2.4 SUCCESS Query: Cached, SubKeys: 0, Values: 2 98 12:38:54,6707320 MCLauncher.exe 6080 RegEnumValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Cryptography\OID\EncodingType 1\CryptDllDecodeObjectEx\1.2.840.113549.1.9.16.2.4 SUCCESS Index: 0, Name: Dll, Type: REG_SZ, Length: 66, Data: C:\Windows\SysWOW64\inetcomm.dll 98 12:38:54,6707369 MCLauncher.exe 6080 RegEnumValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Cryptography\OID\EncodingType 1\CryptDllDecodeObjectEx\1.2.840.113549.1.9.16.2.4 SUCCESS Index: 1, Name: FuncName, Type: REG_SZ, Length: 46, Data: EssContentHintDecodeEx 98 12:38:54,6707436 MCLauncher.exe 6080 RegCloseKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Cryptography\OID\EncodingType 1\CryptDllDecodeObjectEx\1.2.840.113549.1.9.16.2.4 SUCCESS 98 12:38:54,6707472 MCLauncher.exe 6080 RegEnumKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Cryptography\OID\EncodingType 1\CryptDllDecodeObjectEx NO MORE ENTRIES Index: 7, Length: 288 98 12:38:54,6707519 MCLauncher.exe 6080 RegCloseKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Cryptography\OID\EncodingType 1\CryptDllDecodeObjectEx SUCCESS 98 12:38:54,6707561 MCLauncher.exe 6080 RegCloseKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Cryptography\OID\EncodingType 1 SUCCESS 98 12:38:54,6707594 MCLauncher.exe 6080 RegEnumKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Cryptography\OID NO MORE ENTRIES Index: 2, Length: 288 98 12:38:54,6707638 MCLauncher.exe 6080 RegCloseKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Cryptography\OID SUCCESS 98 12:38:54,6707721 MCLauncher.exe 6080 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 98 12:38:54,6707804 MCLauncher.exe 6080 RegQueryKey HKLM SUCCESS Query: Name 98 12:38:54,6707896 MCLauncher.exe 6080 RegOpenKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows NT\CurrentVersion\msasn1 NAME NOT FOUND Desired Access: Read 98 12:38:54,6708311 MCLauncher.exe 6080 RegEnumKey HKLM\SOFTWARE\Microsoft\SystemCertificates\ROOT\Certificates SUCCESS Index: 1, Name: 245C97DF7514E7CF2DF8BE72AE957B9E04741E85 98 12:38:54,6708408 MCLauncher.exe 6080 RegQueryKey HKLM\SOFTWARE\Microsoft\SystemCertificates\ROOT\Certificates SUCCESS Query: HandleTags, HandleTags: 0x400 98 12:38:54,6708472 MCLauncher.exe 6080 RegOpenKey HKLM\SOFTWARE\Microsoft\SystemCertificates\ROOT\Certificates\245C97DF7514E7CF2DF8BE72AE957B9E04741E85 SUCCESS Desired Access: Read 98 12:38:54,6708561 MCLauncher.exe 6080 RegQueryValue HKLM\SOFTWARE\Microsoft\SystemCertificates\ROOT\Certificates\245C97DF7514E7CF2DF8BE72AE957B9E04741E85\Blob BUFFER OVERFLOW Length: 144 98 12:38:54,6708699 MCLauncher.exe 6080 RegQueryValue HKLM\SOFTWARE\Microsoft\SystemCertificates\ROOT\Certificates\245C97DF7514E7CF2DF8BE72AE957B9E04741E85\Blob BUFFER OVERFLOW Length: 144 98 12:38:54,6708813 MCLauncher.exe 6080 RegQueryValue HKLM\SOFTWARE\Microsoft\SystemCertificates\ROOT\Certificates\245C97DF7514E7CF2DF8BE72AE957B9E04741E85\Blob SUCCESS Type: REG_BINARY, Length: 907, Data: 19 00 00 00 01 00 00 00 10 00 00 00 7F DF F5 07 98 12:38:54,6708951 MCLauncher.exe 6080 RegCloseKey HKLM\SOFTWARE\Microsoft\SystemCertificates\ROOT\Certificates\245C97DF7514E7CF2DF8BE72AE957B9E04741E85 SUCCESS 98 12:38:54,6709071 MCLauncher.exe 6080 RegEnumKey HKLM\SOFTWARE\Microsoft\SystemCertificates\ROOT\Certificates SUCCESS Index: 2, Name: 3B1EFD3A66EA28B16697394703A72CA340A05BD5 98 12:38:54,6709162 MCLauncher.exe 6080 RegQueryKey HKLM\SOFTWARE\Microsoft\SystemCertificates\ROOT\Certificates SUCCESS Query: HandleTags, HandleTags: 0x400 98 12:38:54,6709223 MCLauncher.exe 6080 RegOpenKey HKLM\SOFTWARE\Microsoft\SystemCertificates\ROOT\Certificates\3B1EFD3A66EA28B16697394703A72CA340A05BD5 SUCCESS Desired Access: Read 98 12:38:54,6709309 MCLauncher.exe 6080 RegQueryValue HKLM\SOFTWARE\Microsoft\SystemCertificates\ROOT\Certificates\3B1EFD3A66EA28B16697394703A72CA340A05BD5\Blob BUFFER OVERFLOW Length: 144 98 12:38:54,6709436 MCLauncher.exe 6080 RegQueryValue HKLM\SOFTWARE\Microsoft\SystemCertificates\ROOT\Certificates\3B1EFD3A66EA28B16697394703A72CA340A05BD5\Blob BUFFER OVERFLOW Length: 144 98 12:38:54,6709544 MCLauncher.exe 6080 RegQueryValue HKLM\SOFTWARE\Microsoft\SystemCertificates\ROOT\Certificates\3B1EFD3A66EA28B16697394703A72CA340A05BD5\Blob SUCCESS Type: REG_BINARY, Length: 1 835, Data: 5C 00 00 00 01 00 00 00 04 00 00 00 00 10 00 00 98 12:38:54,6709677 MCLauncher.exe 6080 RegCloseKey HKLM\SOFTWARE\Microsoft\SystemCertificates\ROOT\Certificates\3B1EFD3A66EA28B16697394703A72CA340A05BD5 SUCCESS 98 12:38:54,6709846 MCLauncher.exe 6080 RegEnumKey HKLM\SOFTWARE\Microsoft\SystemCertificates\ROOT\Certificates SUCCESS Index: 3, Name: 7F88CD7223F3C813818C994614A89C99FA3B5247 98 12:38:54,6709938 MCLauncher.exe 6080 RegQueryKey HKLM\SOFTWARE\Microsoft\SystemCertificates\ROOT\Certificates SUCCESS Query: HandleTags, HandleTags: 0x400 98 12:38:54,6709996 MCLauncher.exe 6080 RegOpenKey HKLM\SOFTWARE\Microsoft\SystemCertificates\ROOT\Certificates\7F88CD7223F3C813818C994614A89C99FA3B5247 SUCCESS Desired Access: Read 98 12:38:54,6710079 MCLauncher.exe 6080 RegQueryValue HKLM\SOFTWARE\Microsoft\SystemCertificates\ROOT\Certificates\7F88CD7223F3C813818C994614A89C99FA3B5247\Blob BUFFER OVERFLOW Length: 144 98 12:38:54,6710198 MCLauncher.exe 6080 RegQueryValue HKLM\SOFTWARE\Microsoft\SystemCertificates\ROOT\Certificates\7F88CD7223F3C813818C994614A89C99FA3B5247\Blob BUFFER OVERFLOW Length: 144 98 12:38:54,6710303 MCLauncher.exe 6080 RegQueryValue HKLM\SOFTWARE\Microsoft\SystemCertificates\ROOT\Certificates\7F88CD7223F3C813818C994614A89C99FA3B5247\Blob SUCCESS Type: REG_BINARY, Length: 1 228, Data: 19 00 00 00 01 00 00 00 10 00 00 00 07 D3 4D ED 98 12:38:54,6710431 MCLauncher.exe 6080 RegCloseKey HKLM\SOFTWARE\Microsoft\SystemCertificates\ROOT\Certificates\7F88CD7223F3C813818C994614A89C99FA3B5247 SUCCESS 98 12:38:54,6710567 MCLauncher.exe 6080 RegEnumKey HKLM\SOFTWARE\Microsoft\SystemCertificates\ROOT\Certificates SUCCESS Index: 4, Name: 8F43288AD272F3103B6FB1428485EA3014C0BCFE 98 12:38:54,6710655 MCLauncher.exe 6080 RegQueryKey HKLM\SOFTWARE\Microsoft\SystemCertificates\ROOT\Certificates SUCCESS Query: HandleTags, HandleTags: 0x400 98 12:38:54,6710816 MCLauncher.exe 6080 RegOpenKey HKLM\SOFTWARE\Microsoft\SystemCertificates\ROOT\Certificates\8F43288AD272F3103B6FB1428485EA3014C0BCFE SUCCESS Desired Access: Read 98 12:38:54,6710943 MCLauncher.exe 6080 RegQueryValue HKLM\SOFTWARE\Microsoft\SystemCertificates\ROOT\Certificates\8F43288AD272F3103B6FB1428485EA3014C0BCFE\Blob BUFFER OVERFLOW Length: 144 98 12:38:54,6711060 MCLauncher.exe 6080 RegQueryValue HKLM\SOFTWARE\Microsoft\SystemCertificates\ROOT\Certificates\8F43288AD272F3103B6FB1428485EA3014C0BCFE\Blob BUFFER OVERFLOW Length: 144 98 12:38:54,6711162 MCLauncher.exe 6080 RegQueryValue HKLM\SOFTWARE\Microsoft\SystemCertificates\ROOT\Certificates\8F43288AD272F3103B6FB1428485EA3014C0BCFE\Blob SUCCESS Type: REG_BINARY, Length: 1 835, Data: 5C 00 00 00 01 00 00 00 04 00 00 00 00 10 00 00 98 12:38:54,6711293 MCLauncher.exe 6080 RegCloseKey HKLM\SOFTWARE\Microsoft\SystemCertificates\ROOT\Certificates\8F43288AD272F3103B6FB1428485EA3014C0BCFE SUCCESS 98 12:38:54,6711428 MCLauncher.exe 6080 RegEnumKey HKLM\SOFTWARE\Microsoft\SystemCertificates\ROOT\Certificates SUCCESS Index: 5, Name: 92B46C76E13054E104F230517E6E504D43AB10B5 98 12:38:54,6711517 MCLauncher.exe 6080 RegQueryKey HKLM\SOFTWARE\Microsoft\SystemCertificates\ROOT\Certificates SUCCESS Query: HandleTags, HandleTags: 0x400 98 12:38:54,6711581 MCLauncher.exe 6080 RegOpenKey HKLM\SOFTWARE\Microsoft\SystemCertificates\ROOT\Certificates\92B46C76E13054E104F230517E6E504D43AB10B5 SUCCESS Desired Access: Read 98 12:38:54,6711658 MCLauncher.exe 6080 RegQueryValue HKLM\SOFTWARE\Microsoft\SystemCertificates\ROOT\Certificates\92B46C76E13054E104F230517E6E504D43AB10B5\Blob BUFFER OVERFLOW Length: 144 98 12:38:54,6711775 MCLauncher.exe 6080 RegQueryValue HKLM\SOFTWARE\Microsoft\SystemCertificates\ROOT\Certificates\92B46C76E13054E104F230517E6E504D43AB10B5\Blob BUFFER OVERFLOW Length: 144 98 12:38:54,6711885 MCLauncher.exe 6080 RegQueryValue HKLM\SOFTWARE\Microsoft\SystemCertificates\ROOT\Certificates\92B46C76E13054E104F230517E6E504D43AB10B5\Blob SUCCESS Type: REG_BINARY, Length: 1 255, Data: 09 00 00 00 01 00 00 00 0C 00 00 00 30 0A 06 08 98 12:38:54,6712016 MCLauncher.exe 6080 RegCloseKey HKLM\SOFTWARE\Microsoft\SystemCertificates\ROOT\Certificates\92B46C76E13054E104F230517E6E504D43AB10B5 SUCCESS 98 12:38:54,6712146 MCLauncher.exe 6080 RegEnumKey HKLM\SOFTWARE\Microsoft\SystemCertificates\ROOT\Certificates SUCCESS Index: 6, Name: A43489159A520F0D93D032CCAF37E7FE20A8B419 98 12:38:54,6712232 MCLauncher.exe 6080 RegQueryKey HKLM\SOFTWARE\Microsoft\SystemCertificates\ROOT\Certificates SUCCESS Query: HandleTags, HandleTags: 0x400 98 12:38:54,6712293 MCLauncher.exe 6080 RegOpenKey HKLM\SOFTWARE\Microsoft\SystemCertificates\ROOT\Certificates\A43489159A520F0D93D032CCAF37E7FE20A8B419 SUCCESS Desired Access: Read 98 12:38:54,6712373 MCLauncher.exe 6080 RegQueryValue HKLM\SOFTWARE\Microsoft\SystemCertificates\ROOT\Certificates\A43489159A520F0D93D032CCAF37E7FE20A8B419\Blob BUFFER OVERFLOW Length: 144 98 12:38:54,6712492 MCLauncher.exe 6080 RegQueryValue HKLM\SOFTWARE\Microsoft\SystemCertificates\ROOT\Certificates\A43489159A520F0D93D032CCAF37E7FE20A8B419\Blob BUFFER OVERFLOW Length: 144 98 12:38:54,6712597 MCLauncher.exe 6080 RegQueryValue HKLM\SOFTWARE\Microsoft\SystemCertificates\ROOT\Certificates\A43489159A520F0D93D032CCAF37E7FE20A8B419\Blob SUCCESS Type: REG_BINARY, Length: 1 310, Data: 5C 00 00 00 01 00 00 00 04 00 00 00 00 08 00 00 98 12:38:54,6712728 MCLauncher.exe 6080 RegCloseKey HKLM\SOFTWARE\Microsoft\SystemCertificates\ROOT\Certificates\A43489159A520F0D93D032CCAF37E7FE20A8B419 SUCCESS 98 12:38:54,6712844 MCLauncher.exe 6080 RegEnumKey HKLM\SOFTWARE\Microsoft\SystemCertificates\ROOT\Certificates SUCCESS Index: 7, Name: BE36A4562FB2EE05DBB3D32323ADF445084ED656 98 12:38:54,6712930 MCLauncher.exe 6080 RegQueryKey HKLM\SOFTWARE\Microsoft\SystemCertificates\ROOT\Certificates SUCCESS Query: HandleTags, HandleTags: 0x400 98 12:38:54,6712988 MCLauncher.exe 6080 RegOpenKey HKLM\SOFTWARE\Microsoft\SystemCertificates\ROOT\Certificates\BE36A4562FB2EE05DBB3D32323ADF445084ED656 SUCCESS Desired Access: Read 98 12:38:54,6713071 MCLauncher.exe 6080 RegQueryValue HKLM\SOFTWARE\Microsoft\SystemCertificates\ROOT\Certificates\BE36A4562FB2EE05DBB3D32323ADF445084ED656\Blob BUFFER OVERFLOW Length: 144 98 12:38:54,6713193 MCLauncher.exe 6080 RegQueryValue HKLM\SOFTWARE\Microsoft\SystemCertificates\ROOT\Certificates\BE36A4562FB2EE05DBB3D32323ADF445084ED656\Blob BUFFER OVERFLOW Length: 144 98 12:38:54,6713296 MCLauncher.exe 6080 RegQueryValue HKLM\SOFTWARE\Microsoft\SystemCertificates\ROOT\Certificates\BE36A4562FB2EE05DBB3D32323ADF445084ED656\Blob SUCCESS Type: REG_BINARY, Length: 935, Data: 5C 00 00 00 01 00 00 00 04 00 00 00 00 04 00 00 98 12:38:54,6713423 MCLauncher.exe 6080 RegCloseKey HKLM\SOFTWARE\Microsoft\SystemCertificates\ROOT\Certificates\BE36A4562FB2EE05DBB3D32323ADF445084ED656 SUCCESS 98 12:38:54,6713539 MCLauncher.exe 6080 RegEnumKey HKLM\SOFTWARE\Microsoft\SystemCertificates\ROOT\Certificates SUCCESS Index: 8, Name: CDD4EEAE6000AC7F40C3802C171E30148030C072 98 12:38:54,6713623 MCLauncher.exe 6080 RegQueryKey HKLM\SOFTWARE\Microsoft\SystemCertificates\ROOT\Certificates SUCCESS Query: HandleTags, HandleTags: 0x400 98 12:38:54,6713684 MCLauncher.exe 6080 RegOpenKey HKLM\SOFTWARE\Microsoft\SystemCertificates\ROOT\Certificates\CDD4EEAE6000AC7F40C3802C171E30148030C072 SUCCESS Desired Access: Read 98 12:38:54,6713764 MCLauncher.exe 6080 RegQueryValue HKLM\SOFTWARE\Microsoft\SystemCertificates\ROOT\Certificates\CDD4EEAE6000AC7F40C3802C171E30148030C072\Blob BUFFER OVERFLOW Length: 144 98 12:38:54,6713886 MCLauncher.exe 6080 RegQueryValue HKLM\SOFTWARE\Microsoft\SystemCertificates\ROOT\Certificates\CDD4EEAE6000AC7F40C3802C171E30148030C072\Blob BUFFER OVERFLOW Length: 144 98 12:38:54,6713988 MCLauncher.exe 6080 RegQueryValue HKLM\SOFTWARE\Microsoft\SystemCertificates\ROOT\Certificates\CDD4EEAE6000AC7F40C3802C171E30148030C072\Blob SUCCESS Type: REG_BINARY, Length: 1 729, Data: 5C 00 00 00 01 00 00 00 04 00 00 00 00 10 00 00 98 12:38:54,6714116 MCLauncher.exe 6080 RegCloseKey HKLM\SOFTWARE\Microsoft\SystemCertificates\ROOT\Certificates\CDD4EEAE6000AC7F40C3802C171E30148030C072 SUCCESS 98 12:38:54,6714249 MCLauncher.exe 6080 RegCloseKey HKLM\SOFTWARE\Microsoft\SystemCertificates\ROOT\Certificates SUCCESS 98 12:38:54,6714318 MCLauncher.exe 6080 RegQueryKey HKLM\SOFTWARE\Microsoft\SystemCertificates\ROOT SUCCESS Query: HandleTags, HandleTags: 0x400 98 12:38:54,6714382 MCLauncher.exe 6080 RegOpenKey HKLM\SOFTWARE\Microsoft\SystemCertificates\ROOT\CRLs SUCCESS Desired Access: Read 98 12:38:54,6714476 MCLauncher.exe 6080 RegQueryKey HKLM\SOFTWARE\Microsoft\SystemCertificates\ROOT\CRLs SUCCESS Query: Cached, SubKeys: 0, Values: 0 98 12:38:54,6714526 MCLauncher.exe 6080 RegQueryKey HKLM\SOFTWARE\Microsoft\SystemCertificates\ROOT\CRLs SUCCESS Query: Cached, SubKeys: 0, Values: 0 98 12:38:54,6714578 MCLauncher.exe 6080 RegCloseKey HKLM\SOFTWARE\Microsoft\SystemCertificates\ROOT\CRLs SUCCESS 98 12:38:54,6714631 MCLauncher.exe 6080 RegQueryKey HKLM\SOFTWARE\Microsoft\SystemCertificates\ROOT SUCCESS Query: HandleTags, HandleTags: 0x400 98 12:38:54,6714681 MCLauncher.exe 6080 RegOpenKey HKLM\SOFTWARE\Microsoft\SystemCertificates\ROOT\CTLs SUCCESS Desired Access: Read 98 12:38:54,6714753 MCLauncher.exe 6080 RegQueryKey HKLM\SOFTWARE\Microsoft\SystemCertificates\ROOT\CTLs SUCCESS Query: Cached, SubKeys: 0, Values: 0 98 12:38:54,6714800 MCLauncher.exe 6080 RegQueryKey HKLM\SOFTWARE\Microsoft\SystemCertificates\ROOT\CTLs SUCCESS Query: Cached, SubKeys: 0, Values: 0 98 12:38:54,6714853 MCLauncher.exe 6080 RegCloseKey HKLM\SOFTWARE\Microsoft\SystemCertificates\ROOT\CTLs SUCCESS 98 12:38:54,6714894 MCLauncher.exe 6080 RegCloseKey HKLM\SOFTWARE\Microsoft\SystemCertificates\ROOT SUCCESS 98 12:38:54,6714991 MCLauncher.exe 6080 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 98 12:38:54,6715083 MCLauncher.exe 6080 RegQueryKey HKLM SUCCESS Query: Name 98 12:38:54,6715174 MCLauncher.exe 6080 RegOpenKey HKLM\Software\WOW6432Node\Microsoft\SystemCertificates\AuthRoot REPARSE Desired Access: Read 98 12:38:54,6715243 MCLauncher.exe 6080 RegOpenKey HKLM\SOFTWARE\Microsoft\SystemCertificates\AuthRoot SUCCESS Desired Access: Read 98 12:38:54,6715368 MCLauncher.exe 6080 RegSetInfoKey HKLM\SOFTWARE\Microsoft\SystemCertificates\AuthRoot SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 98 12:38:54,6715451 MCLauncher.exe 6080 RegQueryKey HKLM\SOFTWARE\Microsoft\SystemCertificates\AuthRoot SUCCESS Query: HandleTags, HandleTags: 0x400 98 12:38:54,6715509 MCLauncher.exe 6080 RegOpenKey HKLM\SOFTWARE\Microsoft\SystemCertificates\AuthRoot SUCCESS Desired Access: Read 98 12:38:54,6715592 MCLauncher.exe 6080 RegQueryKey HKLM\SOFTWARE\Microsoft\SystemCertificates\AuthRoot SUCCESS Query: HandleTags, HandleTags: 0x400 98 12:38:54,6715648 MCLauncher.exe 6080 RegOpenKey HKLM\SOFTWARE\Microsoft\SystemCertificates\AuthRoot\Certificates SUCCESS Desired Access: Read 98 12:38:54,6715717 MCLauncher.exe 6080 RegQueryKey HKLM\SOFTWARE\Microsoft\SystemCertificates\AuthRoot\Certificates SUCCESS Query: Cached, SubKeys: 25, Values: 0 98 12:38:54,6715767 MCLauncher.exe 6080 RegQueryKey HKLM\SOFTWARE\Microsoft\SystemCertificates\AuthRoot\Certificates SUCCESS Query: Cached, SubKeys: 25, Values: 0 98 12:38:54,6715817 MCLauncher.exe 6080 RegEnumKey HKLM\SOFTWARE\Microsoft\SystemCertificates\AuthRoot\Certificates SUCCESS Index: 0, Name: 02FAF3E291435468607857694DF5E45B68851868 98 12:38:54,6715900 MCLauncher.exe 6080 RegQueryKey HKLM\SOFTWARE\Microsoft\SystemCertificates\AuthRoot\Certificates SUCCESS Query: HandleTags, HandleTags: 0x400 98 12:38:54,6715953 MCLauncher.exe 6080 RegOpenKey HKLM\SOFTWARE\Microsoft\SystemCertificates\AuthRoot\Certificates\02FAF3E291435468607857694DF5E45B68851868 SUCCESS Desired Access: Read 98 12:38:54,6716036 MCLauncher.exe 6080 RegQueryValue HKLM\SOFTWARE\Microsoft\SystemCertificates\AuthRoot\Certificates\02FAF3E291435468607857694DF5E45B68851868\Blob BUFFER OVERFLOW Length: 144 98 12:38:54,6716177 MCLauncher.exe 6080 RegQueryValue HKLM\SOFTWARE\Microsoft\SystemCertificates\AuthRoot\Certificates\02FAF3E291435468607857694DF5E45B68851868\Blob BUFFER OVERFLOW Length: 144 98 12:38:54,6716288 MCLauncher.exe 6080 RegQueryValue HKLM\SOFTWARE\Microsoft\SystemCertificates\AuthRoot\Certificates\02FAF3E291435468607857694DF5E45B68851868\Blob SUCCESS Type: REG_BINARY, Length: 1 538, Data: 5C 00 00 00 01 00 00 00 04 00 00 00 00 08 00 00 98 12:38:54,6716421 MCLauncher.exe 6080 RegCloseKey HKLM\SOFTWARE\Microsoft\SystemCertificates\AuthRoot\Certificates\02FAF3E291435468607857694DF5E45B68851868 SUCCESS 98 12:38:54,6716557 MCLauncher.exe 6080 RegEnumKey HKLM\SOFTWARE\Microsoft\SystemCertificates\AuthRoot\Certificates SUCCESS Index: 1, Name: 039EEDB80BE7A03C6953893B20D2D9323A4C2AFD 98 12:38:54,6716651 MCLauncher.exe 6080 RegQueryKey HKLM\SOFTWARE\Microsoft\SystemCertificates\AuthRoot\Certificates SUCCESS Query: HandleTags, HandleTags: 0x400 98 12:38:54,6716712 MCLauncher.exe 6080 RegOpenKey HKLM\SOFTWARE\Microsoft\SystemCertificates\AuthRoot\Certificates\039EEDB80BE7A03C6953893B20D2D9323A4C2AFD SUCCESS Desired Access: Read 98 12:38:54,6716789 MCLauncher.exe 6080 RegQueryValue HKLM\SOFTWARE\Microsoft\SystemCertificates\AuthRoot\Certificates\039EEDB80BE7A03C6953893B20D2D9323A4C2AFD\Blob BUFFER OVERFLOW Length: 144 98 12:38:54,6716925 MCLauncher.exe 6080 RegQueryValue HKLM\SOFTWARE\Microsoft\SystemCertificates\AuthRoot\Certificates\039EEDB80BE7A03C6953893B20D2D9323A4C2AFD\Blob BUFFER OVERFLOW Length: 144 98 12:38:54,6717033 MCLauncher.exe 6080 RegQueryValue HKLM\SOFTWARE\Microsoft\SystemCertificates\AuthRoot\Certificates\039EEDB80BE7A03C6953893B20D2D9323A4C2AFD\Blob SUCCESS Type: REG_BINARY, Length: 1 505, Data: 5C 00 00 00 01 00 00 00 04 00 00 00 00 08 00 00 98 12:38:54,6717163 MCLauncher.exe 6080 RegCloseKey HKLM\SOFTWARE\Microsoft\SystemCertificates\AuthRoot\Certificates\039EEDB80BE7A03C6953893B20D2D9323A4C2AFD SUCCESS 98 12:38:54,6717282 MCLauncher.exe 6080 RegEnumKey HKLM\SOFTWARE\Microsoft\SystemCertificates\AuthRoot\Certificates SUCCESS Index: 2, Name: 0563B8630D62D75ABBC8AB1E4BDFB5A899B24D43 98 12:38:54,6717377 MCLauncher.exe 6080 RegQueryKey HKLM\SOFTWARE\Microsoft\SystemCertificates\AuthRoot\Certificates SUCCESS Query: HandleTags, HandleTags: 0x400 98 12:38:54,6717438 MCLauncher.exe 6080 RegOpenKey HKLM\SOFTWARE\Microsoft\SystemCertificates\AuthRoot\Certificates\0563B8630D62D75ABBC8AB1E4BDFB5A899B24D43 SUCCESS Desired Access: Read 98 12:38:54,6717515 MCLauncher.exe 6080 RegQueryValue HKLM\SOFTWARE\Microsoft\SystemCertificates\AuthRoot\Certificates\0563B8630D62D75ABBC8AB1E4BDFB5A899B24D43\Blob BUFFER OVERFLOW Length: 144 98 12:38:54,6717637 MCLauncher.exe 6080 RegQueryValue HKLM\SOFTWARE\Microsoft\SystemCertificates\AuthRoot\Certificates\0563B8630D62D75ABBC8AB1E4BDFB5A899B24D43\Blob BUFFER OVERFLOW Length: 144 98 12:38:54,6717742 MCLauncher.exe 6080 RegQueryValue HKLM\SOFTWARE\Microsoft\SystemCertificates\AuthRoot\Certificates\0563B8630D62D75ABBC8AB1E4BDFB5A899B24D43\Blob SUCCESS Type: REG_BINARY, Length: 1 348, Data: 5C 00 00 00 01 00 00 00 04 00 00 00 00 08 00 00 98 12:38:54,6717870 MCLauncher.exe 6080 RegCloseKey HKLM\SOFTWARE\Microsoft\SystemCertificates\AuthRoot\Certificates\0563B8630D62D75ABBC8AB1E4BDFB5A899B24D43 SUCCESS 98 12:38:54,6717983 MCLauncher.exe 6080 RegEnumKey HKLM\SOFTWARE\Microsoft\SystemCertificates\AuthRoot\Certificates SUCCESS Index: 3, Name: 07E032E020B72C3F192F0628A2593A19A70F069E 98 12:38:54,6718072 MCLauncher.exe 6080 RegQueryKey HKLM\SOFTWARE\Microsoft\SystemCertificates\AuthRoot\Certificates SUCCESS Query: HandleTags, HandleTags: 0x400 98 12:38:54,6718133 MCLauncher.exe 6080 RegOpenKey HKLM\SOFTWARE\Microsoft\SystemCertificates\AuthRoot\Certificates\07E032E020B72C3F192F0628A2593A19A70F069E SUCCESS Desired Access: Read 98 12:38:54,6718211 MCLauncher.exe 6080 RegQueryValue HKLM\SOFTWARE\Microsoft\SystemCertificates\AuthRoot\Certificates\07E032E020B72C3F192F0628A2593A19A70F069E\Blob BUFFER OVERFLOW Length: 144 98 12:38:54,6718333 MCLauncher.exe 6080 RegQueryValue HKLM\SOFTWARE\Microsoft\SystemCertificates\AuthRoot\Certificates\07E032E020B72C3F192F0628A2593A19A70F069E\Blob BUFFER OVERFLOW Length: 144 98 12:38:54,6718438 MCLauncher.exe 6080 RegQueryValue HKLM\SOFTWARE\Microsoft\SystemCertificates\AuthRoot\Certificates\07E032E020B72C3F192F0628A2593A19A70F069E\Blob SUCCESS Type: REG_BINARY, Length: 1 484, Data: 53 00 00 00 01 00 00 00 65 00 00 00 30 63 30 21 98 12:38:54,6718565 MCLauncher.exe 6080 RegCloseKey HKLM\SOFTWARE\Microsoft\SystemCertificates\AuthRoot\Certificates\07E032E020B72C3F192F0628A2593A19A70F069E SUCCESS 98 12:38:54,6718693 MCLauncher.exe 6080 RegEnumKey HKLM\SOFTWARE\Microsoft\SystemCertificates\AuthRoot\Certificates SUCCESS Index: 4, Name: 2796BAE63F1801E277261BA0D77770028F20EEE4 98 12:38:54,6718784 MCLauncher.exe 6080 RegQueryKey HKLM\SOFTWARE\Microsoft\SystemCertificates\AuthRoot\Certificates SUCCESS Query: HandleTags, HandleTags: 0x400 98 12:38:54,6718845 MCLauncher.exe 6080 RegOpenKey HKLM\SOFTWARE\Microsoft\SystemCertificates\AuthRoot\Certificates\2796BAE63F1801E277261BA0D77770028F20EEE4 SUCCESS Desired Access: Read 98 12:38:54,6718925 MCLauncher.exe 6080 RegQueryValue HKLM\SOFTWARE\Microsoft\SystemCertificates\AuthRoot\Certificates\2796BAE63F1801E277261BA0D77770028F20EEE4\Blob BUFFER OVERFLOW Length: 144 98 12:38:54,6719061 MCLauncher.exe 6080 RegQueryValue HKLM\SOFTWARE\Microsoft\SystemCertificates\AuthRoot\Certificates\2796BAE63F1801E277261BA0D77770028F20EEE4\Blob BUFFER OVERFLOW Length: 144 98 12:38:54,6719166 MCLauncher.exe 6080 RegQueryValue HKLM\SOFTWARE\Microsoft\SystemCertificates\AuthRoot\Certificates\2796BAE63F1801E277261BA0D77770028F20EEE4\Blob SUCCESS Type: REG_BINARY, Length: 1 512, Data: 5C 00 00 00 01 00 00 00 04 00 00 00 00 08 00 00 98 12:38:54,6719297 MCLauncher.exe 6080 RegCloseKey HKLM\SOFTWARE\Microsoft\SystemCertificates\AuthRoot\Certificates\2796BAE63F1801E277261BA0D77770028F20EEE4 SUCCESS 98 12:38:54,6719413 MCLauncher.exe 6080 RegEnumKey HKLM\SOFTWARE\Microsoft\SystemCertificates\AuthRoot\Certificates SUCCESS Index: 5, Name: 3679CA35668772304D30A5FB873B0FA77BB70D54 98 12:38:54,6719504 MCLauncher.exe 6080 RegQueryKey HKLM\SOFTWARE\Microsoft\SystemCertificates\AuthRoot\Certificates SUCCESS Query: HandleTags, HandleTags: 0x400 98 12:38:54,6719565 MCLauncher.exe 6080 RegOpenKey HKLM\SOFTWARE\Microsoft\SystemCertificates\AuthRoot\Certificates\3679CA35668772304D30A5FB873B0FA77BB70D54 SUCCESS Desired Access: Read 98 12:38:54,6719646 MCLauncher.exe 6080 RegQueryValue HKLM\SOFTWARE\Microsoft\SystemCertificates\AuthRoot\Certificates\3679CA35668772304D30A5FB873B0FA77BB70D54\Blob BUFFER OVERFLOW Length: 144 98 12:38:54,6719770 MCLauncher.exe 6080 RegQueryValue HKLM\SOFTWARE\Microsoft\SystemCertificates\AuthRoot\Certificates\3679CA35668772304D30A5FB873B0FA77BB70D54\Blob BUFFER OVERFLOW Length: 144 98 12:38:54,6719876 MCLauncher.exe 6080 RegQueryValue HKLM\SOFTWARE\Microsoft\SystemCertificates\AuthRoot\Certificates\3679CA35668772304D30A5FB873B0FA77BB70D54\Blob SUCCESS Type: REG_BINARY, Length: 1 698, Data: 5C 00 00 00 01 00 00 00 04 00 00 00 00 08 00 00 98 12:38:54,6720009 MCLauncher.exe 6080 RegCloseKey HKLM\SOFTWARE\Microsoft\SystemCertificates\AuthRoot\Certificates\3679CA35668772304D30A5FB873B0FA77BB70D54 SUCCESS 98 12:38:54,6720150 MCLauncher.exe 6080 RegEnumKey HKLM\SOFTWARE\Microsoft\SystemCertificates\AuthRoot\Certificates SUCCESS Index: 6, Name: 3E2BF7F2031B96F38CE6C4D8A85D3E2D58476A0F 98 12:38:54,6720241 MCLauncher.exe 6080 RegQueryKey HKLM\SOFTWARE\Microsoft\SystemCertificates\AuthRoot\Certificates SUCCESS Query: HandleTags, HandleTags: 0x400 98 12:38:54,6720300 MCLauncher.exe 6080 RegOpenKey HKLM\SOFTWARE\Microsoft\SystemCertificates\AuthRoot\Certificates\3E2BF7F2031B96F38CE6C4D8A85D3E2D58476A0F SUCCESS Desired Access: Read 98 12:38:54,6720386 MCLauncher.exe 6080 RegQueryValue HKLM\SOFTWARE\Microsoft\SystemCertificates\AuthRoot\Certificates\3E2BF7F2031B96F38CE6C4D8A85D3E2D58476A0F\Blob BUFFER OVERFLOW Length: 144 98 12:38:54,6720613 MCLauncher.exe 6080 RegQueryValue HKLM\SOFTWARE\Microsoft\SystemCertificates\AuthRoot\Certificates\3E2BF7F2031B96F38CE6C4D8A85D3E2D58476A0F\Blob BUFFER OVERFLOW Length: 144 98 12:38:54,6720732 MCLauncher.exe 6080 RegQueryValue HKLM\SOFTWARE\Microsoft\SystemCertificates\AuthRoot\Certificates\3E2BF7F2031B96F38CE6C4D8A85D3E2D58476A0F\Blob SUCCESS Type: REG_BINARY, Length: 2 448, Data: 19 00 00 00 01 00 00 00 10 00 00 00 6D 00 C0 25 98 12:38:54,6720865 MCLauncher.exe 6080 RegCloseKey HKLM\SOFTWARE\Microsoft\SystemCertificates\AuthRoot\Certificates\3E2BF7F2031B96F38CE6C4D8A85D3E2D58476A0F SUCCESS 98 12:38:54,6721017 MCLauncher.exe 6080 RegEnumKey HKLM\SOFTWARE\Microsoft\SystemCertificates\AuthRoot\Certificates SUCCESS Index: 7, Name: 4EB6D578499B1CCF5F581EAD56BE3D9B6744A5E5 98 12:38:54,6721114 MCLauncher.exe 6080 RegQueryKey HKLM\SOFTWARE\Microsoft\SystemCertificates\AuthRoot\Certificates SUCCESS Query: HandleTags, HandleTags: 0x400 98 12:38:54,6721175 MCLauncher.exe 6080 RegOpenKey HKLM\SOFTWARE\Microsoft\SystemCertificates\AuthRoot\Certificates\4EB6D578499B1CCF5F581EAD56BE3D9B6744A5E5 SUCCESS Desired Access: Read 98 12:38:54,6721253 MCLauncher.exe 6080 RegQueryValue HKLM\SOFTWARE\Microsoft\SystemCertificates\AuthRoot\Certificates\4EB6D578499B1CCF5F581EAD56BE3D9B6744A5E5\Blob BUFFER OVERFLOW Length: 144 98 12:38:54,6721377 MCLauncher.exe 6080 RegQueryValue HKLM\SOFTWARE\Microsoft\SystemCertificates\AuthRoot\Certificates\4EB6D578499B1CCF5F581EAD56BE3D9B6744A5E5\Blob BUFFER OVERFLOW Length: 144 98 12:38:54,6721483 MCLauncher.exe 6080 RegQueryValue HKLM\SOFTWARE\Microsoft\SystemCertificates\AuthRoot\Certificates\4EB6D578499B1CCF5F581EAD56BE3D9B6744A5E5\Blob SUCCESS Type: REG_BINARY, Length: 1 624, Data: 5C 00 00 00 01 00 00 00 04 00 00 00 00 08 00 00 98 12:38:54,6721610 MCLauncher.exe 6080 RegCloseKey HKLM\SOFTWARE\Microsoft\SystemCertificates\AuthRoot\Certificates\4EB6D578499B1CCF5F581EAD56BE3D9B6744A5E5 SUCCESS 98 12:38:54,6721729 MCLauncher.exe 6080 RegEnumKey HKLM\SOFTWARE\Microsoft\SystemCertificates\AuthRoot\Certificates SUCCESS Index: 8, Name: 51501FBFCE69189D609CFAF140C576755DCC1FDF 98 12:38:54,6721815 MCLauncher.exe 6080 RegQueryKey HKLM\SOFTWARE\Microsoft\SystemCertificates\AuthRoot\Certificates SUCCESS Query: HandleTags, HandleTags: 0x400 98 12:38:54,6721876 MCLauncher.exe 6080 RegOpenKey HKLM\SOFTWARE\Microsoft\SystemCertificates\AuthRoot\Certificates\51501FBFCE69189D609CFAF140C576755DCC1FDF SUCCESS Desired Access: Read 98 12:38:54,6721951 MCLauncher.exe 6080 RegQueryValue HKLM\SOFTWARE\Microsoft\SystemCertificates\AuthRoot\Certificates\51501FBFCE69189D609CFAF140C576755DCC1FDF\Blob BUFFER OVERFLOW Length: 144 98 12:38:54,6722078 MCLauncher.exe 6080 RegQueryValue HKLM\SOFTWARE\Microsoft\SystemCertificates\AuthRoot\Certificates\51501FBFCE69189D609CFAF140C576755DCC1FDF\Blob BUFFER OVERFLOW Length: 144 98 12:38:54,6722184 MCLauncher.exe 6080 RegQueryValue HKLM\SOFTWARE\Microsoft\SystemCertificates\AuthRoot\Certificates\51501FBFCE69189D609CFAF140C576755DCC1FDF\Blob SUCCESS Type: REG_BINARY, Length: 1 808, Data: 59 00 00 00 01 00 00 00 16 00 00 00 52 00 53 00 98 12:38:54,6722314 MCLauncher.exe 6080 RegCloseKey HKLM\SOFTWARE\Microsoft\SystemCertificates\AuthRoot\Certificates\51501FBFCE69189D609CFAF140C576755DCC1FDF SUCCESS 98 12:38:54,6722436 MCLauncher.exe 6080 RegEnumKey HKLM\SOFTWARE\Microsoft\SystemCertificates\AuthRoot\Certificates SUCCESS Index: 9, Name: 5FB7EE0633E259DBAD0C4C9AE6D38F1A61C7DC25 98 12:38:54,6722524 MCLauncher.exe 6080 RegQueryKey HKLM\SOFTWARE\Microsoft\SystemCertificates\AuthRoot\Certificates SUCCESS Query: HandleTags, HandleTags: 0x400 98 12:38:54,6722585 MCLauncher.exe 6080 RegOpenKey HKLM\SOFTWARE\Microsoft\SystemCertificates\AuthRoot\Certificates\5FB7EE0633E259DBAD0C4C9AE6D38F1A61C7DC25 SUCCESS Desired Access: Read 98 12:38:54,6722663 MCLauncher.exe 6080 RegQueryValue HKLM\SOFTWARE\Microsoft\SystemCertificates\AuthRoot\Certificates\5FB7EE0633E259DBAD0C4C9AE6D38F1A61C7DC25\Blob BUFFER OVERFLOW Length: 144 98 12:38:54,6722785 MCLauncher.exe 6080 RegQueryValue HKLM\SOFTWARE\Microsoft\SystemCertificates\AuthRoot\Certificates\5FB7EE0633E259DBAD0C4C9AE6D38F1A61C7DC25\Blob BUFFER OVERFLOW Length: 144 98 12:38:54,6722893 MCLauncher.exe 6080 RegQueryValue HKLM\SOFTWARE\Microsoft\SystemCertificates\AuthRoot\Certificates\5FB7EE0633E259DBAD0C4C9AE6D38F1A61C7DC25\Blob SUCCESS Type: REG_BINARY, Length: 1 362, Data: 5C 00 00 00 01 00 00 00 04 00 00 00 00 08 00 00 98 12:38:54,6723020 MCLauncher.exe 6080 RegCloseKey HKLM\SOFTWARE\Microsoft\SystemCertificates\AuthRoot\Certificates\5FB7EE0633E259DBAD0C4C9AE6D38F1A61C7DC25 SUCCESS 98 12:38:54,6723134 MCLauncher.exe 6080 RegEnumKey HKLM\SOFTWARE\Microsoft\SystemCertificates\AuthRoot\Certificates SUCCESS Index: 10, Name: 6252DC40F71143A22FDE9EF7348E064251B18118 98 12:38:54,6723223 MCLauncher.exe 6080 RegQueryKey HKLM\SOFTWARE\Microsoft\SystemCertificates\AuthRoot\Certificates SUCCESS Query: HandleTags, HandleTags: 0x400 98 12:38:54,6723284 MCLauncher.exe 6080 RegOpenKey HKLM\SOFTWARE\Microsoft\SystemCertificates\AuthRoot\Certificates\6252DC40F71143A22FDE9EF7348E064251B18118 SUCCESS Desired Access: Read 98 12:38:54,6723361 MCLauncher.exe 6080 RegQueryValue HKLM\SOFTWARE\Microsoft\SystemCertificates\AuthRoot\Certificates\6252DC40F71143A22FDE9EF7348E064251B18118\Blob BUFFER OVERFLOW Length: 144 98 12:38:54,6723561 MCLauncher.exe 6080 RegQueryValue HKLM\SOFTWARE\Microsoft\SystemCertificates\AuthRoot\Certificates\6252DC40F71143A22FDE9EF7348E064251B18118\Blob BUFFER OVERFLOW Length: 144 98 12:38:54,6723669 MCLauncher.exe 6080 RegQueryValue HKLM\SOFTWARE\Microsoft\SystemCertificates\AuthRoot\Certificates\6252DC40F71143A22FDE9EF7348E064251B18118\Blob SUCCESS Type: REG_BINARY, Length: 1 136, Data: 5C 00 00 00 01 00 00 00 04 00 00 00 00 08 00 00 98 12:38:54,6723799 MCLauncher.exe 6080 RegCloseKey HKLM\SOFTWARE\Microsoft\SystemCertificates\AuthRoot\Certificates\6252DC40F71143A22FDE9EF7348E064251B18118 SUCCESS 98 12:38:54,6723907 MCLauncher.exe 6080 RegEnumKey HKLM\SOFTWARE\Microsoft\SystemCertificates\AuthRoot\Certificates SUCCESS Index: 11, Name: 742C3192E607E424EB4549542BE1BBC53E6174E2 98 12:38:54,6723993 MCLauncher.exe 6080 RegQueryKey HKLM\SOFTWARE\Microsoft\SystemCertificates\AuthRoot\Certificates SUCCESS Query: HandleTags, HandleTags: 0x400 98 12:38:54,6724054 MCLauncher.exe 6080 RegOpenKey HKLM\SOFTWARE\Microsoft\SystemCertificates\AuthRoot\Certificates\742C3192E607E424EB4549542BE1BBC53E6174E2 SUCCESS Desired Access: Read 98 12:38:54,6724134 MCLauncher.exe 6080 RegQueryValue HKLM\SOFTWARE\Microsoft\SystemCertificates\AuthRoot\Certificates\742C3192E607E424EB4549542BE1BBC53E6174E2\Blob BUFFER OVERFLOW Length: 144 98 12:38:54,6724250 MCLauncher.exe 6080 RegQueryValue HKLM\SOFTWARE\Microsoft\SystemCertificates\AuthRoot\Certificates\742C3192E607E424EB4549542BE1BBC53E6174E2\Blob BUFFER OVERFLOW Length: 144 98 12:38:54,6724353 MCLauncher.exe 6080 RegQueryValue HKLM\SOFTWARE\Microsoft\SystemCertificates\AuthRoot\Certificates\742C3192E607E424EB4549542BE1BBC53E6174E2\Blob SUCCESS Type: REG_BINARY, Length: 1 054, Data: 7E 00 00 00 01 00 00 00 08 00 00 00 00 00 10 C5 98 12:38:54,6724480 MCLauncher.exe 6080 RegCloseKey HKLM\SOFTWARE\Microsoft\SystemCertificates\AuthRoot\Certificates\742C3192E607E424EB4549542BE1BBC53E6174E2 SUCCESS 98 12:38:54,6724594 MCLauncher.exe 6080 RegEnumKey HKLM\SOFTWARE\Microsoft\SystemCertificates\AuthRoot\Certificates SUCCESS Index: 12, Name: 75E0ABB6138512271C04F85FDDDE38E4B7242EFE 98 12:38:54,6724683 MCLauncher.exe 6080 RegQueryKey HKLM\SOFTWARE\Microsoft\SystemCertificates\AuthRoot\Certificates SUCCESS Query: HandleTags, HandleTags: 0x400 98 12:38:54,6724746 MCLauncher.exe 6080 RegOpenKey HKLM\SOFTWARE\Microsoft\SystemCertificates\AuthRoot\Certificates\75E0ABB6138512271C04F85FDDDE38E4B7242EFE SUCCESS Desired Access: Read 98 12:38:54,6724824 MCLauncher.exe 6080 RegQueryValue HKLM\SOFTWARE\Microsoft\SystemCertificates\AuthRoot\Certificates\75E0ABB6138512271C04F85FDDDE38E4B7242EFE\Blob BUFFER OVERFLOW Length: 144 98 12:38:54,6724940 MCLauncher.exe 6080 RegQueryValue HKLM\SOFTWARE\Microsoft\SystemCertificates\AuthRoot\Certificates\75E0ABB6138512271C04F85FDDDE38E4B7242EFE\Blob BUFFER OVERFLOW Length: 144 98 12:38:54,6725046 MCLauncher.exe 6080 RegQueryValue HKLM\SOFTWARE\Microsoft\SystemCertificates\AuthRoot\Certificates\75E0ABB6138512271C04F85FDDDE38E4B7242EFE\Blob SUCCESS Type: REG_BINARY, Length: 1 477, Data: 0B 00 00 00 01 00 00 00 5C 00 00 00 47 00 6F 00 98 12:38:54,6725170 MCLauncher.exe 6080 RegCloseKey HKLM\SOFTWARE\Microsoft\SystemCertificates\AuthRoot\Certificates\75E0ABB6138512271C04F85FDDDE38E4B7242EFE SUCCESS 98 12:38:54,6725298 MCLauncher.exe 6080 RegEnumKey HKLM\SOFTWARE\Microsoft\SystemCertificates\AuthRoot\Certificates SUCCESS Index: 13, Name: 91C6D6EE3E8AC86384E548C299295C756C817B81 98 12:38:54,6725384 MCLauncher.exe 6080 RegQueryKey HKLM\SOFTWARE\Microsoft\SystemCertificates\AuthRoot\Certificates SUCCESS Query: HandleTags, HandleTags: 0x400 98 12:38:54,6725445 MCLauncher.exe 6080 RegOpenKey HKLM\SOFTWARE\Microsoft\SystemCertificates\AuthRoot\Certificates\91C6D6EE3E8AC86384E548C299295C756C817B81 SUCCESS Desired Access: Read 98 12:38:54,6725522 MCLauncher.exe 6080 RegQueryValue HKLM\SOFTWARE\Microsoft\SystemCertificates\AuthRoot\Certificates\91C6D6EE3E8AC86384E548C299295C756C817B81\Blob BUFFER OVERFLOW Length: 144 98 12:38:54,6725641 MCLauncher.exe 6080 RegQueryValue HKLM\SOFTWARE\Microsoft\SystemCertificates\AuthRoot\Certificates\91C6D6EE3E8AC86384E548C299295C756C817B81\Blob BUFFER OVERFLOW Length: 144 98 12:38:54,6725747 MCLauncher.exe 6080 RegQueryValue HKLM\SOFTWARE\Microsoft\SystemCertificates\AuthRoot\Certificates\91C6D6EE3E8AC86384E548C299295C756C817B81\Blob SUCCESS Type: REG_BINARY, Length: 1 441, Data: 5C 00 00 00 01 00 00 00 04 00 00 00 00 08 00 00 98 12:38:54,6725877 MCLauncher.exe 6080 RegCloseKey HKLM\SOFTWARE\Microsoft\SystemCertificates\AuthRoot\Certificates\91C6D6EE3E8AC86384E548C299295C756C817B81 SUCCESS 98 12:38:54,6725993 MCLauncher.exe 6080 RegEnumKey HKLM\SOFTWARE\Microsoft\SystemCertificates\AuthRoot\Certificates SUCCESS Index: 14, Name: 97817950D81C9670CC34D809CF794431367EF474 98 12:38:54,6726085 MCLauncher.exe 6080 RegQueryKey HKLM\SOFTWARE\Microsoft\SystemCertificates\AuthRoot\Certificates SUCCESS Query: HandleTags, HandleTags: 0x400 98 12:38:54,6726146 MCLauncher.exe 6080 RegOpenKey HKLM\SOFTWARE\Microsoft\SystemCertificates\AuthRoot\Certificates\97817950D81C9670CC34D809CF794431367EF474 SUCCESS Desired Access: Read 98 12:38:54,6726226 MCLauncher.exe 6080 RegQueryValue HKLM\SOFTWARE\Microsoft\SystemCertificates\AuthRoot\Certificates\97817950D81C9670CC34D809CF794431367EF474\Blob BUFFER OVERFLOW Length: 144 98 12:38:54,6726353 MCLauncher.exe 6080 RegQueryValue HKLM\SOFTWARE\Microsoft\SystemCertificates\AuthRoot\Certificates\97817950D81C9670CC34D809CF794431367EF474\Blob BUFFER OVERFLOW Length: 144 98 12:38:54,6726459 MCLauncher.exe 6080 RegQueryValue HKLM\SOFTWARE\Microsoft\SystemCertificates\AuthRoot\Certificates\97817950D81C9670CC34D809CF794431367EF474\Blob SUCCESS Type: REG_BINARY, Length: 986, Data: 7E 00 00 00 01 00 00 00 08 00 00 00 00 00 10 C5 98 12:38:54,6726589 MCLauncher.exe 6080 RegCloseKey HKLM\SOFTWARE\Microsoft\SystemCertificates\AuthRoot\Certificates\97817950D81C9670CC34D809CF794431367EF474 SUCCESS 98 12:38:54,6726689 MCLauncher.exe 6080 RegEnumKey HKLM\SOFTWARE\Microsoft\SystemCertificates\AuthRoot\Certificates SUCCESS Index: 15, Name: A8985D3A65E5E5C4B2D7D66D40C6DD2FB19C5436 98 12:38:54,6726777 MCLauncher.exe 6080 RegQueryKey HKLM\SOFTWARE\Microsoft\SystemCertificates\AuthRoot\Certificates SUCCESS Query: HandleTags, HandleTags: 0x400 98 12:38:54,6726838 MCLauncher.exe 6080 RegOpenKey HKLM\SOFTWARE\Microsoft\SystemCertificates\AuthRoot\Certificates\A8985D3A65E5E5C4B2D7D66D40C6DD2FB19C5436 SUCCESS Desired Access: Read 98 12:38:54,6726918 MCLauncher.exe 6080 RegQueryValue HKLM\SOFTWARE\Microsoft\SystemCertificates\AuthRoot\Certificates\A8985D3A65E5E5C4B2D7D66D40C6DD2FB19C5436\Blob BUFFER OVERFLOW Length: 144 98 12:38:54,6727035 MCLauncher.exe 6080 RegQueryValue HKLM\SOFTWARE\Microsoft\SystemCertificates\AuthRoot\Certificates\A8985D3A65E5E5C4B2D7D66D40C6DD2FB19C5436\Blob BUFFER OVERFLOW Length: 144 98 12:38:54,6727137 MCLauncher.exe 6080 RegQueryValue HKLM\SOFTWARE\Microsoft\SystemCertificates\AuthRoot\Certificates\A8985D3A65E5E5C4B2D7D66D40C6DD2FB19C5436\Blob SUCCESS Type: REG_BINARY, Length: 1 340, Data: 5C 00 00 00 01 00 00 00 04 00 00 00 00 08 00 00 98 12:38:54,6727265 MCLauncher.exe 6080 RegCloseKey HKLM\SOFTWARE\Microsoft\SystemCertificates\AuthRoot\Certificates\A8985D3A65E5E5C4B2D7D66D40C6DD2FB19C5436 SUCCESS 98 12:38:54,6727381 MCLauncher.exe 6080 RegEnumKey HKLM\SOFTWARE\Microsoft\SystemCertificates\AuthRoot\Certificates SUCCESS Index: 16, Name: AD7E1C28B064EF8F6003402014C3D0E3370EB58A 98 12:38:54,6727473 MCLauncher.exe 6080 RegQueryKey HKLM\SOFTWARE\Microsoft\SystemCertificates\AuthRoot\Certificates SUCCESS Query: HandleTags, HandleTags: 0x400 98 12:38:54,6727536 MCLauncher.exe 6080 RegOpenKey HKLM\SOFTWARE\Microsoft\SystemCertificates\AuthRoot\Certificates\AD7E1C28B064EF8F6003402014C3D0E3370EB58A SUCCESS Desired Access: Read 98 12:38:54,6727611 MCLauncher.exe 6080 RegQueryValue HKLM\SOFTWARE\Microsoft\SystemCertificates\AuthRoot\Certificates\AD7E1C28B064EF8F6003402014C3D0E3370EB58A\Blob BUFFER OVERFLOW Length: 144 98 12:38:54,6727733 MCLauncher.exe 6080 RegQueryValue HKLM\SOFTWARE\Microsoft\SystemCertificates\AuthRoot\Certificates\AD7E1C28B064EF8F6003402014C3D0E3370EB58A\Blob BUFFER OVERFLOW Length: 144 98 12:38:54,6727908 MCLauncher.exe 6080 RegQueryValue HKLM\SOFTWARE\Microsoft\SystemCertificates\AuthRoot\Certificates\AD7E1C28B064EF8F6003402014C3D0E3370EB58A\Blob SUCCESS Type: REG_BINARY, Length: 1 529, Data: 5C 00 00 00 01 00 00 00 04 00 00 00 00 08 00 00 98 12:38:54,6728035 MCLauncher.exe 6080 RegCloseKey HKLM\SOFTWARE\Microsoft\SystemCertificates\AuthRoot\Certificates\AD7E1C28B064EF8F6003402014C3D0E3370EB58A SUCCESS 98 12:38:54,6728162 MCLauncher.exe 6080 RegEnumKey HKLM\SOFTWARE\Microsoft\SystemCertificates\AuthRoot\Certificates SUCCESS Index: 17, Name: B1BC968BD4F49D622AA89A81F2150152A41D829C 98 12:38:54,6728248 MCLauncher.exe 6080 RegQueryKey HKLM\SOFTWARE\Microsoft\SystemCertificates\AuthRoot\Certificates SUCCESS Query: HandleTags, HandleTags: 0x400 98 12:38:54,6728309 MCLauncher.exe 6080 RegOpenKey HKLM\SOFTWARE\Microsoft\SystemCertificates\AuthRoot\Certificates\B1BC968BD4F49D622AA89A81F2150152A41D829C SUCCESS Desired Access: Read 98 12:38:54,6728387 MCLauncher.exe 6080 RegQueryValue HKLM\SOFTWARE\Microsoft\SystemCertificates\AuthRoot\Certificates\B1BC968BD4F49D622AA89A81F2150152A41D829C\Blob BUFFER OVERFLOW Length: 144 98 12:38:54,6728506 MCLauncher.exe 6080 RegQueryValue HKLM\SOFTWARE\Microsoft\SystemCertificates\AuthRoot\Certificates\B1BC968BD4F49D622AA89A81F2150152A41D829C\Blob BUFFER OVERFLOW Length: 144 98 12:38:54,6728609 MCLauncher.exe 6080 RegQueryValue HKLM\SOFTWARE\Microsoft\SystemCertificates\AuthRoot\Certificates\B1BC968BD4F49D622AA89A81F2150152A41D829C\Blob SUCCESS Type: REG_BINARY, Length: 1 364, Data: 0B 00 00 00 01 00 00 00 30 00 00 00 47 00 6C 00 98 12:38:54,6728766 MCLauncher.exe 6080 RegCloseKey HKLM\SOFTWARE\Microsoft\SystemCertificates\AuthRoot\Certificates\B1BC968BD4F49D622AA89A81F2150152A41D829C SUCCESS 98 12:38:54,6728891 MCLauncher.exe 6080 RegEnumKey HKLM\SOFTWARE\Microsoft\SystemCertificates\AuthRoot\Certificates SUCCESS Index: 18, Name: D23209AD23D314232174E40D7F9D62139786633A 98 12:38:54,6728983 MCLauncher.exe 6080 RegQueryKey HKLM\SOFTWARE\Microsoft\SystemCertificates\AuthRoot\Certificates SUCCESS Query: HandleTags, HandleTags: 0x400 98 12:38:54,6729044 MCLauncher.exe 6080 RegOpenKey HKLM\SOFTWARE\Microsoft\SystemCertificates\AuthRoot\Certificates\D23209AD23D314232174E40D7F9D62139786633A SUCCESS Desired Access: Read 98 12:38:54,6729124 MCLauncher.exe 6080 RegQueryValue HKLM\SOFTWARE\Microsoft\SystemCertificates\AuthRoot\Certificates\D23209AD23D314232174E40D7F9D62139786633A\Blob BUFFER OVERFLOW Length: 144 98 12:38:54,6729246 MCLauncher.exe 6080 RegQueryValue HKLM\SOFTWARE\Microsoft\SystemCertificates\AuthRoot\Certificates\D23209AD23D314232174E40D7F9D62139786633A\Blob BUFFER OVERFLOW Length: 144 98 12:38:54,6729348 MCLauncher.exe 6080 RegQueryValue HKLM\SOFTWARE\Microsoft\SystemCertificates\AuthRoot\Certificates\D23209AD23D314232174E40D7F9D62139786633A\Blob SUCCESS Type: REG_BINARY, Length: 1 197, Data: 5C 00 00 00 01 00 00 00 04 00 00 00 00 04 00 00 98 12:38:54,6729476 MCLauncher.exe 6080 RegCloseKey HKLM\SOFTWARE\Microsoft\SystemCertificates\AuthRoot\Certificates\D23209AD23D314232174E40D7F9D62139786633A SUCCESS 98 12:38:54,6729609 MCLauncher.exe 6080 RegEnumKey HKLM\SOFTWARE\Microsoft\SystemCertificates\AuthRoot\Certificates SUCCESS Index: 19, Name: D4DE20D05E66FC53FE1A50882C78DB2852CAE474 98 12:38:54,6729703 MCLauncher.exe 6080 RegQueryKey HKLM\SOFTWARE\Microsoft\SystemCertificates\AuthRoot\Certificates SUCCESS Query: HandleTags, HandleTags: 0x400 98 12:38:54,6729764 MCLauncher.exe 6080 RegOpenKey HKLM\SOFTWARE\Microsoft\SystemCertificates\AuthRoot\Certificates\D4DE20D05E66FC53FE1A50882C78DB2852CAE474 SUCCESS Desired Access: Read 98 12:38:54,6729847 MCLauncher.exe 6080 RegQueryValue HKLM\SOFTWARE\Microsoft\SystemCertificates\AuthRoot\Certificates\D4DE20D05E66FC53FE1A50882C78DB2852CAE474\Blob BUFFER OVERFLOW Length: 144 98 12:38:54,6729966 MCLauncher.exe 6080 RegQueryValue HKLM\SOFTWARE\Microsoft\SystemCertificates\AuthRoot\Certificates\D4DE20D05E66FC53FE1A50882C78DB2852CAE474\Blob BUFFER OVERFLOW Length: 144 98 12:38:54,6730069 MCLauncher.exe 6080 RegQueryValue HKLM\SOFTWARE\Microsoft\SystemCertificates\AuthRoot\Certificates\D4DE20D05E66FC53FE1A50882C78DB2852CAE474\Blob SUCCESS Type: REG_BINARY, Length: 1 387, Data: 09 00 00 00 01 00 00 00 3E 00 00 00 30 3C 06 08 98 12:38:54,6730196 MCLauncher.exe 6080 RegCloseKey HKLM\SOFTWARE\Microsoft\SystemCertificates\AuthRoot\Certificates\D4DE20D05E66FC53FE1A50882C78DB2852CAE474 SUCCESS 98 12:38:54,6803984 MCLauncher.exe 6080 RegEnumKey HKLM\SOFTWARE\Microsoft\SystemCertificates\AuthRoot\Certificates SUCCESS Index: 20, Name: D69B561148F01C77C54578C10926DF5B856976AD 98 12:38:54,6804195 MCLauncher.exe 6080 RegQueryKey HKLM\SOFTWARE\Microsoft\SystemCertificates\AuthRoot\Certificates SUCCESS Query: HandleTags, HandleTags: 0x400 98 12:38:54,6804300 MCLauncher.exe 6080 RegOpenKey HKLM\SOFTWARE\Microsoft\SystemCertificates\AuthRoot\Certificates\D69B561148F01C77C54578C10926DF5B856976AD SUCCESS Desired Access: Read 98 12:38:54,6804447 MCLauncher.exe 6080 RegQueryValue HKLM\SOFTWARE\Microsoft\SystemCertificates\AuthRoot\Certificates\D69B561148F01C77C54578C10926DF5B856976AD\Blob BUFFER OVERFLOW Length: 144 98 12:38:54,6804702 MCLauncher.exe 6080 RegQueryValue HKLM\SOFTWARE\Microsoft\SystemCertificates\AuthRoot\Certificates\D69B561148F01C77C54578C10926DF5B856976AD\Blob BUFFER OVERFLOW Length: 144 98 12:38:54,6804818 MCLauncher.exe 6080 RegQueryValue HKLM\SOFTWARE\Microsoft\SystemCertificates\AuthRoot\Certificates\D69B561148F01C77C54578C10926DF5B856976AD\Blob SUCCESS Type: REG_BINARY, Length: 1 334, Data: 5C 00 00 00 01 00 00 00 04 00 00 00 00 08 00 00 98 12:38:54,6804990 MCLauncher.exe 6080 RegCloseKey HKLM\SOFTWARE\Microsoft\SystemCertificates\AuthRoot\Certificates\D69B561148F01C77C54578C10926DF5B856976AD SUCCESS 98 12:38:54,6805134 MCLauncher.exe 6080 RegEnumKey HKLM\SOFTWARE\Microsoft\SystemCertificates\AuthRoot\Certificates SUCCESS Index: 21, Name: DAC9024F54D8F6DF94935FB1732638CA6AD77C13 98 12:38:54,6805237 MCLauncher.exe 6080 RegQueryKey HKLM\SOFTWARE\Microsoft\SystemCertificates\AuthRoot\Certificates SUCCESS Query: HandleTags, HandleTags: 0x400 98 12:38:54,6805306 MCLauncher.exe 6080 RegOpenKey HKLM\SOFTWARE\Microsoft\SystemCertificates\AuthRoot\Certificates\DAC9024F54D8F6DF94935FB1732638CA6AD77C13 SUCCESS Desired Access: Read 98 12:38:54,6805397 MCLauncher.exe 6080 RegQueryValue HKLM\SOFTWARE\Microsoft\SystemCertificates\AuthRoot\Certificates\DAC9024F54D8F6DF94935FB1732638CA6AD77C13\Blob BUFFER OVERFLOW Length: 144 98 12:38:54,6805530 MCLauncher.exe 6080 RegQueryValue HKLM\SOFTWARE\Microsoft\SystemCertificates\AuthRoot\Certificates\DAC9024F54D8F6DF94935FB1732638CA6AD77C13\Blob BUFFER OVERFLOW Length: 144 98 12:38:54,6805636 MCLauncher.exe 6080 RegQueryValue HKLM\SOFTWARE\Microsoft\SystemCertificates\AuthRoot\Certificates\DAC9024F54D8F6DF94935FB1732638CA6AD77C13\Blob SUCCESS Type: REG_BINARY, Length: 1 218, Data: 09 00 00 00 01 00 00 00 42 00 00 00 30 40 06 08 98 12:38:54,6805774 MCLauncher.exe 6080 RegCloseKey HKLM\SOFTWARE\Microsoft\SystemCertificates\AuthRoot\Certificates\DAC9024F54D8F6DF94935FB1732638CA6AD77C13 SUCCESS 98 12:38:54,6805904 MCLauncher.exe 6080 RegEnumKey HKLM\SOFTWARE\Microsoft\SystemCertificates\AuthRoot\Certificates SUCCESS Index: 22, Name: DE28F4A4FFE5B92FA3C503D1A349A7F9962A8212 98 12:38:54,6806001 MCLauncher.exe 6080 RegQueryKey HKLM\SOFTWARE\Microsoft\SystemCertificates\AuthRoot\Certificates SUCCESS Query: HandleTags, HandleTags: 0x400 98 12:38:54,6806068 MCLauncher.exe 6080 RegOpenKey HKLM\SOFTWARE\Microsoft\SystemCertificates\AuthRoot\Certificates\DE28F4A4FFE5B92FA3C503D1A349A7F9962A8212 SUCCESS Desired Access: Read 98 12:38:54,6806148 MCLauncher.exe 6080 RegQueryValue HKLM\SOFTWARE\Microsoft\SystemCertificates\AuthRoot\Certificates\DE28F4A4FFE5B92FA3C503D1A349A7F9962A8212\Blob BUFFER OVERFLOW Length: 144 98 12:38:54,6806284 MCLauncher.exe 6080 RegQueryValue HKLM\SOFTWARE\Microsoft\SystemCertificates\AuthRoot\Certificates\DE28F4A4FFE5B92FA3C503D1A349A7F9962A8212\Blob BUFFER OVERFLOW Length: 144 98 12:38:54,6806392 MCLauncher.exe 6080 RegQueryValue HKLM\SOFTWARE\Microsoft\SystemCertificates\AuthRoot\Certificates\DE28F4A4FFE5B92FA3C503D1A349A7F9962A8212\Blob SUCCESS Type: REG_BINARY, Length: 1 222, Data: 5C 00 00 00 01 00 00 00 04 00 00 00 00 08 00 00 98 12:38:54,6806525 MCLauncher.exe 6080 RegCloseKey HKLM\SOFTWARE\Microsoft\SystemCertificates\AuthRoot\Certificates\DE28F4A4FFE5B92FA3C503D1A349A7F9962A8212 SUCCESS 98 12:38:54,6806652 MCLauncher.exe 6080 RegEnumKey HKLM\SOFTWARE\Microsoft\SystemCertificates\AuthRoot\Certificates SUCCESS Index: 23, Name: DE3F40BD5093D39B6C60F6DABC076201008976C9 98 12:38:54,6806744 MCLauncher.exe 6080 RegQueryKey HKLM\SOFTWARE\Microsoft\SystemCertificates\AuthRoot\Certificates SUCCESS Query: HandleTags, HandleTags: 0x400 98 12:38:54,6806808 MCLauncher.exe 6080 RegOpenKey HKLM\SOFTWARE\Microsoft\SystemCertificates\AuthRoot\Certificates\DE3F40BD5093D39B6C60F6DABC076201008976C9 SUCCESS Desired Access: Read 98 12:38:54,6806888 MCLauncher.exe 6080 RegQueryValue HKLM\SOFTWARE\Microsoft\SystemCertificates\AuthRoot\Certificates\DE3F40BD5093D39B6C60F6DABC076201008976C9\Blob BUFFER OVERFLOW Length: 144 98 12:38:54,6807013 MCLauncher.exe 6080 RegQueryValue HKLM\SOFTWARE\Microsoft\SystemCertificates\AuthRoot\Certificates\DE3F40BD5093D39B6C60F6DABC076201008976C9\Blob BUFFER OVERFLOW Length: 144 98 12:38:54,6807118 MCLauncher.exe 6080 RegQueryValue HKLM\SOFTWARE\Microsoft\SystemCertificates\AuthRoot\Certificates\DE3F40BD5093D39B6C60F6DABC076201008976C9\Blob SUCCESS Type: REG_BINARY, Length: 1 944, Data: 5C 00 00 00 01 00 00 00 04 00 00 00 00 08 00 00 98 12:38:54,6807248 MCLauncher.exe 6080 RegCloseKey HKLM\SOFTWARE\Microsoft\SystemCertificates\AuthRoot\Certificates\DE3F40BD5093D39B6C60F6DABC076201008976C9 SUCCESS 98 12:38:54,6807389 MCLauncher.exe 6080 RegEnumKey HKLM\SOFTWARE\Microsoft\SystemCertificates\AuthRoot\Certificates SUCCESS Index: 24, Name: DF3C24F9BFD666761B268073FE06D1CC8D4F82A4 98 12:38:54,6807484 MCLauncher.exe 6080 RegQueryKey HKLM\SOFTWARE\Microsoft\SystemCertificates\AuthRoot\Certificates SUCCESS Query: HandleTags, HandleTags: 0x400 98 12:38:54,6807547 MCLauncher.exe 6080 RegOpenKey HKLM\SOFTWARE\Microsoft\SystemCertificates\AuthRoot\Certificates\DF3C24F9BFD666761B268073FE06D1CC8D4F82A4 SUCCESS Desired Access: Read 98 12:38:54,6807628 MCLauncher.exe 6080 RegQueryValue HKLM\SOFTWARE\Microsoft\SystemCertificates\AuthRoot\Certificates\DF3C24F9BFD666761B268073FE06D1CC8D4F82A4\Blob BUFFER OVERFLOW Length: 144 98 12:38:54,6807750 MCLauncher.exe 6080 RegQueryValue HKLM\SOFTWARE\Microsoft\SystemCertificates\AuthRoot\Certificates\DF3C24F9BFD666761B268073FE06D1CC8D4F82A4\Blob BUFFER OVERFLOW Length: 144 98 12:38:54,6807855 MCLauncher.exe 6080 RegQueryValue HKLM\SOFTWARE\Microsoft\SystemCertificates\AuthRoot\Certificates\DF3C24F9BFD666761B268073FE06D1CC8D4F82A4\Blob SUCCESS Type: REG_BINARY, Length: 1 349, Data: 5C 00 00 00 01 00 00 00 04 00 00 00 00 08 00 00 98 12:38:54,6807991 MCLauncher.exe 6080 RegCloseKey HKLM\SOFTWARE\Microsoft\SystemCertificates\AuthRoot\Certificates\DF3C24F9BFD666761B268073FE06D1CC8D4F82A4 SUCCESS 98 12:38:54,6808121 MCLauncher.exe 6080 RegCloseKey HKLM\SOFTWARE\Microsoft\SystemCertificates\AuthRoot\Certificates SUCCESS 98 12:38:54,6808198 MCLauncher.exe 6080 RegQueryKey HKLM\SOFTWARE\Microsoft\SystemCertificates\AuthRoot SUCCESS Query: HandleTags, HandleTags: 0x400 98 12:38:54,6808265 MCLauncher.exe 6080 RegOpenKey HKLM\SOFTWARE\Microsoft\SystemCertificates\AuthRoot\CRLs SUCCESS Desired Access: Read 98 12:38:54,6808359 MCLauncher.exe 6080 RegQueryKey HKLM\SOFTWARE\Microsoft\SystemCertificates\AuthRoot\CRLs SUCCESS Query: Cached, SubKeys: 0, Values: 0 98 12:38:54,6808415 MCLauncher.exe 6080 RegQueryKey HKLM\SOFTWARE\Microsoft\SystemCertificates\AuthRoot\CRLs SUCCESS Query: Cached, SubKeys: 0, Values: 0 98 12:38:54,6808464 MCLauncher.exe 6080 RegCloseKey HKLM\SOFTWARE\Microsoft\SystemCertificates\AuthRoot\CRLs SUCCESS 98 12:38:54,6808517 MCLauncher.exe 6080 RegQueryKey HKLM\SOFTWARE\Microsoft\SystemCertificates\AuthRoot SUCCESS Query: HandleTags, HandleTags: 0x400 98 12:38:54,6808572 MCLauncher.exe 6080 RegOpenKey HKLM\SOFTWARE\Microsoft\SystemCertificates\AuthRoot\CTLs SUCCESS Desired Access: Read 98 12:38:54,6808808 MCLauncher.exe 6080 RegQueryKey HKLM\SOFTWARE\Microsoft\SystemCertificates\AuthRoot\CTLs SUCCESS Query: Cached, SubKeys: 0, Values: 0 98 12:38:54,6808861 MCLauncher.exe 6080 RegQueryKey HKLM\SOFTWARE\Microsoft\SystemCertificates\AuthRoot\CTLs SUCCESS Query: Cached, SubKeys: 0, Values: 0 98 12:38:54,6808916 MCLauncher.exe 6080 RegCloseKey HKLM\SOFTWARE\Microsoft\SystemCertificates\AuthRoot\CTLs SUCCESS 98 12:38:54,6808966 MCLauncher.exe 6080 RegCloseKey HKLM\SOFTWARE\Microsoft\SystemCertificates\AuthRoot SUCCESS 98 12:38:54,6809110 MCLauncher.exe 6080 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 98 12:38:54,6809212 MCLauncher.exe 6080 RegQueryKey HKLM SUCCESS Query: Name 98 12:38:54,6809320 MCLauncher.exe 6080 RegOpenKey HKLM\Software\WOW6432Node\Policies\Microsoft\SystemCertificates\ROOT REPARSE Desired Access: Read 98 12:38:54,6809409 MCLauncher.exe 6080 RegOpenKey HKLM\SOFTWARE\Policies\Microsoft\SystemCertificates\ROOT SUCCESS Desired Access: Read 98 12:38:54,6809567 MCLauncher.exe 6080 RegSetInfoKey HKLM\SOFTWARE\Policies\Microsoft\SystemCertificates\Root SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 98 12:38:54,6809645 MCLauncher.exe 6080 RegQueryKey HKLM\SOFTWARE\Policies\Microsoft\SystemCertificates\Root SUCCESS Query: HandleTags, HandleTags: 0x400 98 12:38:54,6809708 MCLauncher.exe 6080 RegOpenKey HKLM\SOFTWARE\Policies\Microsoft\SystemCertificates\Root\Certificates SUCCESS Desired Access: Read 98 12:38:54,6809800 MCLauncher.exe 6080 RegQueryKey HKLM\SOFTWARE\Policies\Microsoft\SystemCertificates\Root\Certificates SUCCESS Query: Cached, SubKeys: 0, Values: 0 98 12:38:54,6809847 MCLauncher.exe 6080 RegQueryKey HKLM\SOFTWARE\Policies\Microsoft\SystemCertificates\Root\Certificates SUCCESS Query: Cached, SubKeys: 0, Values: 0 98 12:38:54,6809902 MCLauncher.exe 6080 RegCloseKey HKLM\SOFTWARE\Policies\Microsoft\SystemCertificates\Root\Certificates SUCCESS 98 12:38:54,6809958 MCLauncher.exe 6080 RegQueryKey HKLM\SOFTWARE\Policies\Microsoft\SystemCertificates\Root SUCCESS Query: HandleTags, HandleTags: 0x400 98 12:38:54,6810010 MCLauncher.exe 6080 RegOpenKey HKLM\SOFTWARE\Policies\Microsoft\SystemCertificates\Root\CRLs SUCCESS Desired Access: Read 98 12:38:54,6810082 MCLauncher.exe 6080 RegQueryKey HKLM\SOFTWARE\Policies\Microsoft\SystemCertificates\Root\CRLs SUCCESS Query: Cached, SubKeys: 0, Values: 0 98 12:38:54,6810130 MCLauncher.exe 6080 RegQueryKey HKLM\SOFTWARE\Policies\Microsoft\SystemCertificates\Root\CRLs SUCCESS Query: Cached, SubKeys: 0, Values: 0 98 12:38:54,6810179 MCLauncher.exe 6080 RegCloseKey HKLM\SOFTWARE\Policies\Microsoft\SystemCertificates\Root\CRLs SUCCESS 98 12:38:54,6810229 MCLauncher.exe 6080 RegQueryKey HKLM\SOFTWARE\Policies\Microsoft\SystemCertificates\Root SUCCESS Query: HandleTags, HandleTags: 0x400 98 12:38:54,6810282 MCLauncher.exe 6080 RegOpenKey HKLM\SOFTWARE\Policies\Microsoft\SystemCertificates\Root\CTLs SUCCESS Desired Access: Read 98 12:38:54,6810346 MCLauncher.exe 6080 RegQueryKey HKLM\SOFTWARE\Policies\Microsoft\SystemCertificates\Root\CTLs SUCCESS Query: Cached, SubKeys: 0, Values: 0 98 12:38:54,6810393 MCLauncher.exe 6080 RegQueryKey HKLM\SOFTWARE\Policies\Microsoft\SystemCertificates\Root\CTLs SUCCESS Query: Cached, SubKeys: 0, Values: 0 98 12:38:54,6810443 MCLauncher.exe 6080 RegCloseKey HKLM\SOFTWARE\Policies\Microsoft\SystemCertificates\Root\CTLs SUCCESS 98 12:38:54,6810481 MCLauncher.exe 6080 RegCloseKey HKLM\SOFTWARE\Policies\Microsoft\SystemCertificates\Root SUCCESS 98 12:38:54,6810564 MCLauncher.exe 6080 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 98 12:38:54,6810642 MCLauncher.exe 6080 RegQueryKey HKLM SUCCESS Query: Name 98 12:38:54,6810731 MCLauncher.exe 6080 RegOpenKey HKLM\Software\WOW6432Node\Microsoft\EnterpriseCertificates\ROOT\PhysicalStores REPARSE Desired Access: Read 98 12:38:54,6810905 MCLauncher.exe 6080 RegOpenKey HKLM\SOFTWARE\Microsoft\EnterpriseCertificates\ROOT\PhysicalStores NAME NOT FOUND Desired Access: Read 98 12:38:54,6811066 MCLauncher.exe 6080 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 98 12:38:54,6811144 MCLauncher.exe 6080 RegQueryKey HKLM SUCCESS Query: Name 98 12:38:54,6811229 MCLauncher.exe 6080 RegOpenKey HKLM\Software\WOW6432Node\Microsoft\EnterpriseCertificates\ROOT REPARSE Desired Access: Read 98 12:38:54,6811299 MCLauncher.exe 6080 RegOpenKey HKLM\SOFTWARE\Microsoft\EnterpriseCertificates\ROOT SUCCESS Desired Access: Read 98 12:38:54,6811398 MCLauncher.exe 6080 RegSetInfoKey HKLM\SOFTWARE\Microsoft\EnterpriseCertificates\Root SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 98 12:38:54,6811454 MCLauncher.exe 6080 RegCloseKey HKLM\SOFTWARE\Microsoft\EnterpriseCertificates\Root SUCCESS 98 12:38:54,6811548 MCLauncher.exe 6080 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 98 12:38:54,6811626 MCLauncher.exe 6080 RegQueryKey HKLM SUCCESS Query: Name 98 12:38:54,6811706 MCLauncher.exe 6080 RegOpenKey HKLM\Software\WOW6432Node\Microsoft\EnterpriseCertificates\ROOT REPARSE Desired Access: Read 98 12:38:54,6811775 MCLauncher.exe 6080 RegOpenKey HKLM\SOFTWARE\Microsoft\EnterpriseCertificates\ROOT SUCCESS Desired Access: Read 98 12:38:54,6811867 MCLauncher.exe 6080 RegSetInfoKey HKLM\SOFTWARE\Microsoft\EnterpriseCertificates\Root SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 98 12:38:54,6811944 MCLauncher.exe 6080 RegQueryKey HKLM\SOFTWARE\Microsoft\EnterpriseCertificates\Root SUCCESS Query: HandleTags, HandleTags: 0x400 98 12:38:54,6812002 MCLauncher.exe 6080 RegOpenKey HKLM\SOFTWARE\Microsoft\EnterpriseCertificates\Root SUCCESS Desired Access: Read 98 12:38:54,6812086 MCLauncher.exe 6080 RegQueryKey HKLM\SOFTWARE\Microsoft\EnterpriseCertificates\Root SUCCESS Query: HandleTags, HandleTags: 0x400 98 12:38:54,6812141 MCLauncher.exe 6080 RegOpenKey HKLM\SOFTWARE\Microsoft\EnterpriseCertificates\Root\Certificates SUCCESS Desired Access: Read 98 12:38:54,6812219 MCLauncher.exe 6080 RegQueryKey HKLM\SOFTWARE\Microsoft\EnterpriseCertificates\Root\Certificates SUCCESS Query: Cached, SubKeys: 0, Values: 0 98 12:38:54,6812268 MCLauncher.exe 6080 RegQueryKey HKLM\SOFTWARE\Microsoft\EnterpriseCertificates\Root\Certificates SUCCESS Query: Cached, SubKeys: 0, Values: 0 98 12:38:54,6812324 MCLauncher.exe 6080 RegCloseKey HKLM\SOFTWARE\Microsoft\EnterpriseCertificates\Root\Certificates SUCCESS 98 12:38:54,6812376 MCLauncher.exe 6080 RegQueryKey HKLM\SOFTWARE\Microsoft\EnterpriseCertificates\Root SUCCESS Query: HandleTags, HandleTags: 0x400 98 12:38:54,6812429 MCLauncher.exe 6080 RegOpenKey HKLM\SOFTWARE\Microsoft\EnterpriseCertificates\Root\CRLs SUCCESS Desired Access: Read 98 12:38:54,6812498 MCLauncher.exe 6080 RegQueryKey HKLM\SOFTWARE\Microsoft\EnterpriseCertificates\Root\CRLs SUCCESS Query: Cached, SubKeys: 0, Values: 0 98 12:38:54,6812545 MCLauncher.exe 6080 RegQueryKey HKLM\SOFTWARE\Microsoft\EnterpriseCertificates\Root\CRLs SUCCESS Query: Cached, SubKeys: 0, Values: 0 98 12:38:54,6812595 MCLauncher.exe 6080 RegCloseKey HKLM\SOFTWARE\Microsoft\EnterpriseCertificates\Root\CRLs SUCCESS 98 12:38:54,6812648 MCLauncher.exe 6080 RegQueryKey HKLM\SOFTWARE\Microsoft\EnterpriseCertificates\Root SUCCESS Query: HandleTags, HandleTags: 0x400 98 12:38:54,6812698 MCLauncher.exe 6080 RegOpenKey HKLM\SOFTWARE\Microsoft\EnterpriseCertificates\Root\CTLs SUCCESS Desired Access: Read 98 12:38:54,6812762 MCLauncher.exe 6080 RegQueryKey HKLM\SOFTWARE\Microsoft\EnterpriseCertificates\Root\CTLs SUCCESS Query: Cached, SubKeys: 0, Values: 0 98 12:38:54,6812806 MCLauncher.exe 6080 RegQueryKey HKLM\SOFTWARE\Microsoft\EnterpriseCertificates\Root\CTLs SUCCESS Query: Cached, SubKeys: 0, Values: 0 98 12:38:54,6812859 MCLauncher.exe 6080 RegCloseKey HKLM\SOFTWARE\Microsoft\EnterpriseCertificates\Root\CTLs SUCCESS 98 12:38:54,6812897 MCLauncher.exe 6080 RegCloseKey HKLM\SOFTWARE\Microsoft\EnterpriseCertificates\Root SUCCESS 98 12:38:54,6812980 MCLauncher.exe 6080 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 98 12:38:54,6813058 MCLauncher.exe 6080 RegQueryKey HKLM SUCCESS Query: Name 98 12:38:54,6813138 MCLauncher.exe 6080 RegOpenKey HKLM\Software\WOW6432Node\Microsoft\SystemCertificates\SmartCardRoot REPARSE Desired Access: Read 98 12:38:54,6813208 MCLauncher.exe 6080 RegOpenKey HKLM\SOFTWARE\Microsoft\SystemCertificates\SmartCardRoot SUCCESS Desired Access: Read 98 12:38:54,6813305 MCLauncher.exe 6080 RegSetInfoKey HKLM\SOFTWARE\Microsoft\SystemCertificates\SmartCardRoot SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 98 12:38:54,6813377 MCLauncher.exe 6080 RegQueryKey HKLM\SOFTWARE\Microsoft\SystemCertificates\SmartCardRoot SUCCESS Query: HandleTags, HandleTags: 0x400 98 12:38:54,6813435 MCLauncher.exe 6080 RegOpenKey HKLM\SOFTWARE\Microsoft\SystemCertificates\SmartCardRoot SUCCESS Desired Access: Read 98 12:38:54,6813518 MCLauncher.exe 6080 RegQueryKey HKLM\SOFTWARE\Microsoft\SystemCertificates\SmartCardRoot SUCCESS Query: HandleTags, HandleTags: 0x400 98 12:38:54,6813720 MCLauncher.exe 6080 RegOpenKey HKLM\SOFTWARE\Microsoft\SystemCertificates\SmartCardRoot\Certificates SUCCESS Desired Access: Read 98 12:38:54,6813825 MCLauncher.exe 6080 RegQueryKey HKLM\SOFTWARE\Microsoft\SystemCertificates\SmartCardRoot\Certificates SUCCESS Query: Cached, SubKeys: 0, Values: 0 98 12:38:54,6813875 MCLauncher.exe 6080 RegQueryKey HKLM\SOFTWARE\Microsoft\SystemCertificates\SmartCardRoot\Certificates SUCCESS Query: Cached, SubKeys: 0, Values: 0 98 12:38:54,6813933 MCLauncher.exe 6080 RegCloseKey HKLM\SOFTWARE\Microsoft\SystemCertificates\SmartCardRoot\Certificates SUCCESS 98 12:38:54,6813994 MCLauncher.exe 6080 RegQueryKey HKLM\SOFTWARE\Microsoft\SystemCertificates\SmartCardRoot SUCCESS Query: HandleTags, HandleTags: 0x400 98 12:38:54,6814047 MCLauncher.exe 6080 RegOpenKey HKLM\SOFTWARE\Microsoft\SystemCertificates\SmartCardRoot\CRLs SUCCESS Desired Access: Read 98 12:38:54,6814114 MCLauncher.exe 6080 RegQueryKey HKLM\SOFTWARE\Microsoft\SystemCertificates\SmartCardRoot\CRLs SUCCESS Query: Cached, SubKeys: 0, Values: 0 98 12:38:54,6814158 MCLauncher.exe 6080 RegQueryKey HKLM\SOFTWARE\Microsoft\SystemCertificates\SmartCardRoot\CRLs SUCCESS Query: Cached, SubKeys: 0, Values: 0 98 12:38:54,6814219 MCLauncher.exe 6080 RegCloseKey HKLM\SOFTWARE\Microsoft\SystemCertificates\SmartCardRoot\CRLs SUCCESS 98 12:38:54,6814271 MCLauncher.exe 6080 RegQueryKey HKLM\SOFTWARE\Microsoft\SystemCertificates\SmartCardRoot SUCCESS Query: HandleTags, HandleTags: 0x400 98 12:38:54,6814321 MCLauncher.exe 6080 RegOpenKey HKLM\SOFTWARE\Microsoft\SystemCertificates\SmartCardRoot\CTLs SUCCESS Desired Access: Read 98 12:38:54,6814385 MCLauncher.exe 6080 RegQueryKey HKLM\SOFTWARE\Microsoft\SystemCertificates\SmartCardRoot\CTLs SUCCESS Query: Cached, SubKeys: 0, Values: 0 98 12:38:54,6814432 MCLauncher.exe 6080 RegQueryKey HKLM\SOFTWARE\Microsoft\SystemCertificates\SmartCardRoot\CTLs SUCCESS Query: Cached, SubKeys: 0, Values: 0 98 12:38:54,6814485 MCLauncher.exe 6080 RegCloseKey HKLM\SOFTWARE\Microsoft\SystemCertificates\SmartCardRoot\CTLs SUCCESS 98 12:38:54,6814532 MCLauncher.exe 6080 RegCloseKey HKLM\SOFTWARE\Microsoft\SystemCertificates\SmartCardRoot SUCCESS 98 12:38:54,6814972 MCLauncher.exe 6080 RegQueryKey HKU SUCCESS Query: HandleTags, HandleTags: 0x0 98 12:38:54,6815067 MCLauncher.exe 6080 RegQueryKey HKU SUCCESS Query: Name 98 12:38:54,6815141 MCLauncher.exe 6080 RegOpenKey HKCU SUCCESS Desired Access: Maximum Allowed, Granted Access: All Access 98 12:38:54,6815310 MCLauncher.exe 6080 RegQueryKey HKCU SUCCESS Query: HandleTags, HandleTags: 0x0 98 12:38:54,6815388 MCLauncher.exe 6080 RegQueryKey HKCU SUCCESS Query: Name 98 12:38:54,6815471 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Microsoft\SystemCertificates\SmartCardRoot SUCCESS Desired Access: Read 98 12:38:54,6815604 MCLauncher.exe 6080 RegSetInfoKey HKCU\SOFTWARE\Microsoft\SystemCertificates\SmartCardRoot SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 98 12:38:54,6815687 MCLauncher.exe 6080 RegQueryKey HKCU\SOFTWARE\Microsoft\SystemCertificates\SmartCardRoot SUCCESS Query: HandleTags, HandleTags: 0x400 98 12:38:54,6815743 MCLauncher.exe 6080 RegOpenKey HKCU\SOFTWARE\Microsoft\SystemCertificates\SmartCardRoot SUCCESS Desired Access: Read 98 12:38:54,6815829 MCLauncher.exe 6080 RegQueryKey HKCU\SOFTWARE\Microsoft\SystemCertificates\SmartCardRoot SUCCESS Query: HandleTags, HandleTags: 0x400 98 12:38:54,6815878 MCLauncher.exe 6080 RegOpenKey HKCU\SOFTWARE\Microsoft\SystemCertificates\SmartCardRoot\Certificates SUCCESS Desired Access: Read 98 12:38:54,6815950 MCLauncher.exe 6080 RegQueryKey HKCU\SOFTWARE\Microsoft\SystemCertificates\SmartCardRoot\Certificates SUCCESS Query: Cached, SubKeys: 0, Values: 0 98 12:38:54,6815998 MCLauncher.exe 6080 RegQueryKey HKCU\SOFTWARE\Microsoft\SystemCertificates\SmartCardRoot\Certificates SUCCESS Query: Cached, SubKeys: 0, Values: 0 98 12:38:54,6816056 MCLauncher.exe 6080 RegCloseKey HKCU\SOFTWARE\Microsoft\SystemCertificates\SmartCardRoot\Certificates SUCCESS 98 12:38:54,6816108 MCLauncher.exe 6080 RegQueryKey HKCU\SOFTWARE\Microsoft\SystemCertificates\SmartCardRoot SUCCESS Query: HandleTags, HandleTags: 0x400 98 12:38:54,6816161 MCLauncher.exe 6080 RegOpenKey HKCU\SOFTWARE\Microsoft\SystemCertificates\SmartCardRoot\CRLs SUCCESS Desired Access: Read 98 12:38:54,6816225 MCLauncher.exe 6080 RegQueryKey HKCU\SOFTWARE\Microsoft\SystemCertificates\SmartCardRoot\CRLs SUCCESS Query: Cached, SubKeys: 0, Values: 0 98 12:38:54,6816272 MCLauncher.exe 6080 RegQueryKey HKCU\SOFTWARE\Microsoft\SystemCertificates\SmartCardRoot\CRLs SUCCESS Query: Cached, SubKeys: 0, Values: 0 98 12:38:54,6816322 MCLauncher.exe 6080 RegCloseKey HKCU\SOFTWARE\Microsoft\SystemCertificates\SmartCardRoot\CRLs SUCCESS 98 12:38:54,6816380 MCLauncher.exe 6080 RegQueryKey HKCU\SOFTWARE\Microsoft\SystemCertificates\SmartCardRoot SUCCESS Query: HandleTags, HandleTags: 0x400 98 12:38:54,6816430 MCLauncher.exe 6080 RegOpenKey HKCU\SOFTWARE\Microsoft\SystemCertificates\SmartCardRoot\CTLs SUCCESS Desired Access: Read 98 12:38:54,6816493 MCLauncher.exe 6080 RegQueryKey HKCU\SOFTWARE\Microsoft\SystemCertificates\SmartCardRoot\CTLs SUCCESS Query: Cached, SubKeys: 0, Values: 0 98 12:38:54,6816541 MCLauncher.exe 6080 RegQueryKey HKCU\SOFTWARE\Microsoft\SystemCertificates\SmartCardRoot\CTLs SUCCESS Query: Cached, SubKeys: 0, Values: 0 98 12:38:54,6816590 MCLauncher.exe 6080 RegCloseKey HKCU\SOFTWARE\Microsoft\SystemCertificates\SmartCardRoot\CTLs SUCCESS 98 12:38:54,6816632 MCLauncher.exe 6080 RegCloseKey HKCU\SOFTWARE\Microsoft\SystemCertificates\SmartCardRoot SUCCESS 98 12:38:54,6816671 MCLauncher.exe 6080 RegCloseKey HKCU SUCCESS 98 12:38:54,6846346 MCLauncher.exe 6080 RegCloseKey HKCU\SOFTWARE\Microsoft\SystemCertificates\SmartCardRoot SUCCESS 98 12:38:54,6846438 MCLauncher.exe 6080 RegCloseKey HKLM\SOFTWARE\Microsoft\SystemCertificates\SmartCardRoot SUCCESS 98 12:38:54,6846496 MCLauncher.exe 6080 RegCloseKey HKLM\SOFTWARE\Microsoft\EnterpriseCertificates\Root SUCCESS 98 12:38:54,6846573 MCLauncher.exe 6080 RegCloseKey HKLM\SOFTWARE\Microsoft\SystemCertificates\AuthRoot SUCCESS 98 12:38:54,6847219 MCLauncher.exe 6080 RegCloseKey HKLM\SOFTWARE\Microsoft\SystemCertificates\ROOT SUCCESS 98 12:38:54,6847468 MCLauncher.exe 6080 RegCloseKey HKCU\SOFTWARE\Microsoft\SystemCertificates\Root SUCCESS 98 12:38:54,6848366 MCLauncher.exe 6080 Thread Create SUCCESS Thread ID: 7560 98 12:38:54,6995499 MCLauncher.exe 6080 Thread Create SUCCESS Thread ID: 6884 98 12:38:54,7010469 MCLauncher.exe 6080 Thread Create SUCCESS Thread ID: 12412 98 12:38:54,7012203 MCLauncher.exe 6080 Thread Create SUCCESS Thread ID: 6492 98 12:38:54,7054415 MCLauncher.exe 6080 QueryInformationVolume C:\Users\User\AppData\Roaming\MCLauncher\font.ttf BUFFER OVERFLOW VolumeCreationTime: 19.07.2018 19:30:42, VolumeSerialNumber: B6D8-C2CA, SupportsObjects: True, VolumeLabel: Winb 98 12:38:54,7054634 MCLauncher.exe 6080 QueryAllInformationFile C:\Users\User\AppData\Roaming\MCLauncher\font.ttf BUFFER OVERFLOW CreationTime: 24.08.2018 12:30:32, LastAccessTime: 24.08.2018 12:30:32, LastWriteTime: 24.08.2018 12:30:32, ChangeTime: 24.08.2018 12:30:32, FileAttributes: A, AllocationSize: 188 416, EndOfFile: 184 608, NumberOfLinks: 1, DeletePending: False, Directory: False, IndexNumber: 0x1700000002037f, EaSize: 0, Access: Generic Read, Position: 0, Mode: Synchronous IO Non-Alert, AlignmentRequirement: Word 98 12:38:54,7055028 MCLauncher.exe 6080 QueryInformationVolume C:\Users\User\AppData\Roaming\MCLauncher\font.ttf BUFFER OVERFLOW VolumeCreationTime: 19.07.2018 19:30:42, VolumeSerialNumber: B6D8-C2CA, SupportsObjects: True, VolumeLabel: Winb 98 12:38:54,7055111 MCLauncher.exe 6080 QueryAllInformationFile C:\Users\User\AppData\Roaming\MCLauncher\font.ttf BUFFER OVERFLOW CreationTime: 24.08.2018 12:30:32, LastAccessTime: 24.08.2018 12:30:32, LastWriteTime: 24.08.2018 12:30:32, ChangeTime: 24.08.2018 12:30:32, FileAttributes: A, AllocationSize: 188 416, EndOfFile: 184 608, NumberOfLinks: 1, DeletePending: False, Directory: False, IndexNumber: 0x1700000002037f, EaSize: 0, Access: Generic Read, Position: 0, Mode: Synchronous IO Non-Alert, AlignmentRequirement: Word 98 12:38:54,7055546 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\font.ttf SUCCESS Offset: 0, Length: 184 608, Priority: Normal 98 12:38:54,7055959 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\font.ttf SUCCESS Offset: 0, Length: 184 608, I/O Flags: Non-cached, Paging I/O, Priority: Normal 98 12:38:54,7059267 MCLauncher.exe 6080 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 98 12:38:54,7059389 MCLauncher.exe 6080 RegQueryKey HKLM SUCCESS Query: Name 98 12:38:54,7059519 MCLauncher.exe 6080 RegOpenKey HKLM\SYSTEM\CurrentControlSet\Services\Winsock\Parameters REPARSE Desired Access: Read 98 12:38:54,7059674 MCLauncher.exe 6080 RegOpenKey HKLM\System\CurrentControlSet\Services\Winsock\Parameters SUCCESS Desired Access: Read 98 12:38:54,7059848 MCLauncher.exe 6080 RegSetInfoKey HKLM\System\CurrentControlSet\Services\Winsock\Parameters SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 98 12:38:54,7059915 MCLauncher.exe 6080 RegQueryValue HKLM\System\CurrentControlSet\Services\Winsock\Parameters\Transports SUCCESS Type: REG_MULTI_SZ, Length: 64, Data: vmbus, Psched, Tcpip, Tcpip6, irda 98 12:38:54,7060114 MCLauncher.exe 6080 RegQueryValue HKLM\System\CurrentControlSet\Services\Winsock\Parameters\Transports SUCCESS Type: REG_MULTI_SZ, Length: 64, Data: vmbus, Psched, Tcpip, Tcpip6, irda 98 12:38:54,7060275 MCLauncher.exe 6080 RegCloseKey HKLM\System\CurrentControlSet\Services\Winsock\Parameters SUCCESS 98 12:38:54,7060364 MCLauncher.exe 6080 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 98 12:38:54,7060450 MCLauncher.exe 6080 RegQueryKey HKLM SUCCESS Query: Name 98 12:38:54,7060538 MCLauncher.exe 6080 RegOpenKey HKLM\System\CurrentControlSet\Services\vmbus\Parameters\Winsock REPARSE Desired Access: Read 98 12:38:54,7060619 MCLauncher.exe 6080 RegOpenKey HKLM\System\CurrentControlSet\Services\vmbus\Parameters\Winsock SUCCESS Desired Access: Read 98 12:38:54,7060746 MCLauncher.exe 6080 RegSetInfoKey HKLM\System\CurrentControlSet\Services\vmbus\Parameters\Winsock SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 98 12:38:54,7060802 MCLauncher.exe 6080 RegQueryValue HKLM\System\CurrentControlSet\Services\vmbus\Parameters\Winsock\Mapping SUCCESS Type: REG_BINARY, Length: 44, Data: 03 00 00 00 03 00 00 00 22 00 00 00 01 00 00 00 98 12:38:54,7060951 MCLauncher.exe 6080 RegQueryValue HKLM\System\CurrentControlSet\Services\vmbus\Parameters\Winsock\Mapping SUCCESS Type: REG_BINARY, Length: 44, Data: 03 00 00 00 03 00 00 00 22 00 00 00 01 00 00 00 98 12:38:54,7061087 MCLauncher.exe 6080 RegCloseKey HKLM\System\CurrentControlSet\Services\vmbus\Parameters\Winsock SUCCESS 98 12:38:54,7061164 MCLauncher.exe 6080 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 98 12:38:54,7061245 MCLauncher.exe 6080 RegQueryKey HKLM SUCCESS Query: Name 98 12:38:54,7061322 MCLauncher.exe 6080 RegOpenKey HKLM\System\CurrentControlSet\Services\Psched\Parameters\Winsock REPARSE Desired Access: Read 98 12:38:54,7061394 MCLauncher.exe 6080 RegOpenKey HKLM\System\CurrentControlSet\Services\Psched\Parameters\Winsock SUCCESS Desired Access: Read 98 12:38:54,7061514 MCLauncher.exe 6080 RegSetInfoKey HKLM\System\CurrentControlSet\Services\Psched\Parameters\Winsock SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 98 12:38:54,7061563 MCLauncher.exe 6080 RegQueryValue HKLM\System\CurrentControlSet\Services\Psched\Parameters\Winsock\Mapping BUFFER OVERFLOW Length: 144 98 12:38:54,7061691 MCLauncher.exe 6080 RegQueryValue HKLM\System\CurrentControlSet\Services\Psched\Parameters\Winsock\Mapping BUFFER OVERFLOW Length: 144 98 12:38:54,7061796 MCLauncher.exe 6080 RegQueryValue HKLM\System\CurrentControlSet\Services\Psched\Parameters\Winsock\Mapping SUCCESS Type: REG_BINARY, Length: 152, Data: 0C 00 00 00 03 00 00 00 17 00 00 00 01 00 00 00 98 12:38:54,7061926 MCLauncher.exe 6080 RegCloseKey HKLM\System\CurrentControlSet\Services\Psched\Parameters\Winsock SUCCESS 98 12:38:54,7061996 MCLauncher.exe 6080 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 98 12:38:54,7062079 MCLauncher.exe 6080 RegQueryKey HKLM SUCCESS Query: Name 98 12:38:54,7062156 MCLauncher.exe 6080 RegOpenKey HKLM\SYSTEM\CurrentControlSet\Services\Winsock\Setup Migration\Providers REPARSE Desired Access: Read 98 12:38:54,7062231 MCLauncher.exe 6080 RegOpenKey HKLM\System\CurrentControlSet\Services\Winsock\Setup Migration\Providers SUCCESS Desired Access: Read 98 12:38:54,7062450 MCLauncher.exe 6080 RegSetInfoKey HKLM\System\CurrentControlSet\Services\Winsock\Setup Migration\Providers SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 98 12:38:54,7062555 MCLauncher.exe 6080 RegQueryKey HKLM\System\CurrentControlSet\Services\Winsock\Setup Migration\Providers SUCCESS Query: HandleTags, HandleTags: 0x400 98 12:38:54,7062622 MCLauncher.exe 6080 RegOpenKey HKLM\System\CurrentControlSet\Services\Winsock\Setup Migration\Providers\Psched SUCCESS Desired Access: Read 98 12:38:54,7062710 MCLauncher.exe 6080 RegQueryValue HKLM\System\CurrentControlSet\Services\Winsock\Setup Migration\Providers\Psched\WinSock 2.0 Provider ID SUCCESS Type: REG_BINARY, Length: 16, Data: E0 A9 60 9D 7A 33 D0 11 BD 88 00 00 C0 82 E6 9A 98 12:38:54,7062854 MCLauncher.exe 6080 RegCloseKey HKLM\System\CurrentControlSet\Services\Winsock\Setup Migration\Providers\Psched SUCCESS 98 12:38:54,7062899 MCLauncher.exe 6080 RegCloseKey HKLM\System\CurrentControlSet\Services\Winsock\Setup Migration\Providers SUCCESS 98 12:38:54,7062968 MCLauncher.exe 6080 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 98 12:38:54,7063051 MCLauncher.exe 6080 RegQueryKey HKLM SUCCESS Query: Name 98 12:38:54,7063129 MCLauncher.exe 6080 RegOpenKey HKLM\System\CurrentControlSet\Services\Tcpip\Parameters\Winsock REPARSE Desired Access: Read 98 12:38:54,7063198 MCLauncher.exe 6080 RegOpenKey HKLM\System\CurrentControlSet\Services\Tcpip\Parameters\Winsock SUCCESS Desired Access: Read 98 12:38:54,7063317 MCLauncher.exe 6080 RegSetInfoKey HKLM\System\CurrentControlSet\Services\Tcpip\Parameters\Winsock SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 98 12:38:54,7063367 MCLauncher.exe 6080 RegQueryValue HKLM\System\CurrentControlSet\Services\Tcpip\Parameters\Winsock\Mapping SUCCESS Type: REG_BINARY, Length: 104, Data: 08 00 00 00 03 00 00 00 02 00 00 00 01 00 00 00 98 12:38:54,7063550 MCLauncher.exe 6080 RegQueryValue HKLM\System\CurrentControlSet\Services\Tcpip\Parameters\Winsock\Mapping SUCCESS Type: REG_BINARY, Length: 104, Data: 08 00 00 00 03 00 00 00 02 00 00 00 01 00 00 00 98 12:38:54,7063680 MCLauncher.exe 6080 RegCloseKey HKLM\System\CurrentControlSet\Services\Tcpip\Parameters\Winsock SUCCESS 98 12:38:54,7063755 MCLauncher.exe 6080 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 98 12:38:54,7063832 MCLauncher.exe 6080 RegQueryKey HKLM SUCCESS Query: Name 98 12:38:54,7063907 MCLauncher.exe 6080 RegOpenKey HKLM\System\CurrentControlSet\Services\Tcpip6\Parameters\Winsock REPARSE Desired Access: Read 98 12:38:54,7063977 MCLauncher.exe 6080 RegOpenKey HKLM\System\CurrentControlSet\Services\Tcpip6\Parameters\Winsock SUCCESS Desired Access: Read 98 12:38:54,7064132 MCLauncher.exe 6080 RegSetInfoKey HKLM\System\CurrentControlSet\Services\Tcpip6\Parameters\Winsock SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 98 12:38:54,7064184 MCLauncher.exe 6080 RegQueryValue HKLM\System\CurrentControlSet\Services\Tcpip6\Parameters\Winsock\Mapping SUCCESS Type: REG_BINARY, Length: 104, Data: 08 00 00 00 03 00 00 00 17 00 00 00 01 00 00 00 98 12:38:54,7064328 MCLauncher.exe 6080 RegQueryValue HKLM\System\CurrentControlSet\Services\Tcpip6\Parameters\Winsock\Mapping SUCCESS Type: REG_BINARY, Length: 104, Data: 08 00 00 00 03 00 00 00 17 00 00 00 01 00 00 00 98 12:38:54,7064456 MCLauncher.exe 6080 RegCloseKey HKLM\System\CurrentControlSet\Services\Tcpip6\Parameters\Winsock SUCCESS 98 12:38:54,7064520 MCLauncher.exe 6080 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 98 12:38:54,7064597 MCLauncher.exe 6080 RegQueryKey HKLM SUCCESS Query: Name 98 12:38:54,7064675 MCLauncher.exe 6080 RegOpenKey HKLM\SYSTEM\CurrentControlSet\Services\Winsock\Setup Migration\Providers REPARSE Desired Access: Read 98 12:38:54,7064744 MCLauncher.exe 6080 RegOpenKey HKLM\System\CurrentControlSet\Services\Winsock\Setup Migration\Providers SUCCESS Desired Access: Read 98 12:38:54,7064841 MCLauncher.exe 6080 RegSetInfoKey HKLM\System\CurrentControlSet\Services\Winsock\Setup Migration\Providers SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 98 12:38:54,7064913 MCLauncher.exe 6080 RegQueryKey HKLM\System\CurrentControlSet\Services\Winsock\Setup Migration\Providers SUCCESS Query: HandleTags, HandleTags: 0x400 98 12:38:54,7064974 MCLauncher.exe 6080 RegOpenKey HKLM\System\CurrentControlSet\Services\Winsock\Setup Migration\Providers\Tcpip6 SUCCESS Desired Access: Read 98 12:38:54,7065065 MCLauncher.exe 6080 RegQueryValue HKLM\System\CurrentControlSet\Services\Winsock\Setup Migration\Providers\Tcpip6\WinSock 2.0 Provider ID SUCCESS Type: REG_BINARY, Length: 16, Data: C0 B0 EA F9 D4 26 D0 11 BB BF 00 AA 00 6C 34 E4 98 12:38:54,7065201 MCLauncher.exe 6080 RegCloseKey HKLM\System\CurrentControlSet\Services\Winsock\Setup Migration\Providers\Tcpip6 SUCCESS 98 12:38:54,7065240 MCLauncher.exe 6080 RegCloseKey HKLM\System\CurrentControlSet\Services\Winsock\Setup Migration\Providers SUCCESS 98 12:38:54,7065312 MCLauncher.exe 6080 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 98 12:38:54,7065390 MCLauncher.exe 6080 RegQueryKey HKLM SUCCESS Query: Name 98 12:38:54,7065467 MCLauncher.exe 6080 RegOpenKey HKLM\System\CurrentControlSet\Services\Tcpip6\Parameters\Winsock REPARSE Desired Access: Read 98 12:38:54,7065534 MCLauncher.exe 6080 RegOpenKey HKLM\System\CurrentControlSet\Services\Tcpip6\Parameters\Winsock SUCCESS Desired Access: Read 98 12:38:54,7065631 MCLauncher.exe 6080 RegSetInfoKey HKLM\System\CurrentControlSet\Services\Tcpip6\Parameters\Winsock SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 98 12:38:54,7065680 MCLauncher.exe 6080 RegQueryValue HKLM\System\CurrentControlSet\Services\Tcpip6\Parameters\Winsock\MinSockaddrLength SUCCESS Type: REG_DWORD, Length: 4, Data: 28 98 12:38:54,7065908 MCLauncher.exe 6080 RegQueryValue HKLM\System\CurrentControlSet\Services\Tcpip6\Parameters\Winsock\MaxSockaddrLength SUCCESS Type: REG_DWORD, Length: 4, Data: 28 98 12:38:54,7066024 MCLauncher.exe 6080 RegQueryValue HKLM\System\CurrentControlSet\Services\Tcpip6\Parameters\Winsock\UseDelayedAcceptance SUCCESS Type: REG_DWORD, Length: 4, Data: 0 98 12:38:54,7066151 MCLauncher.exe 6080 RegCloseKey HKLM\System\CurrentControlSet\Services\Tcpip6\Parameters\Winsock SUCCESS 98 12:38:54,7069651 MCLauncher.exe 6080 CreateFile C:\Windows\SysWOW64\dnsapi.dll SUCCESS Desired Access: Read Attributes, Disposition: Open, Options: Open Reparse Point, Attributes: n/a, ShareMode: Read, Write, Delete, AllocationSize: n/a, OpenResult: Opened 98 12:38:54,7070014 MCLauncher.exe 6080 QueryBasicInformationFile C:\Windows\SysWOW64\dnsapi.dll SUCCESS CreationTime: 20.07.2018 1:33:40, LastAccessTime: 20.07.2018 1:33:40, LastWriteTime: 06.03.2018 9:17:29, ChangeTime: 20.07.2018 19:25:18, FileAttributes: A 98 12:38:54,7070102 MCLauncher.exe 6080 CloseFile C:\Windows\SysWOW64\dnsapi.dll SUCCESS 98 12:38:54,7071161 MCLauncher.exe 6080 CreateFile C:\Windows\SysWOW64\dnsapi.dll SUCCESS Desired Access: Read Data/List Directory, Execute/Traverse, Synchronize, Disposition: Open, Options: Synchronous IO Non-Alert, Non-Directory File, Attributes: n/a, ShareMode: Read, Delete, AllocationSize: n/a, OpenResult: Opened 98 12:38:54,7071460 MCLauncher.exe 6080 CreateFileMapping C:\Windows\SysWOW64\dnsapi.dll FILE LOCKED WITH ONLY READERS SyncType: SyncTypeCreateSection, PageProtection: PAGE_EXECUTE|PAGE_NOCACHE 98 12:38:54,7071645 MCLauncher.exe 6080 QueryNameInformationFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Name: \Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe 98 12:38:54,7072815 MCLauncher.exe 6080 CreateFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Desired Access: Synchronize, Disposition: Open, Options: Synchronous IO Non-Alert, Attributes: N, ShareMode: Read, Write, Delete, AllocationSize: n/a, OpenResult: Opened 98 12:38:54,7073025 MCLauncher.exe 6080 CloseFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS 98 12:38:54,7073344 MCLauncher.exe 6080 QueryNameInformationFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Name: \Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe 98 12:38:54,7074241 MCLauncher.exe 6080 CreateFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Desired Access: Synchronize, Disposition: Open, Options: Synchronous IO Non-Alert, Attributes: N, ShareMode: Read, Write, Delete, AllocationSize: n/a, OpenResult: Opened 98 12:38:54,7074416 MCLauncher.exe 6080 CloseFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS 98 12:38:54,7075269 MCLauncher.exe 6080 CreateFileMapping C:\Windows\SysWOW64\dnsapi.dll SUCCESS SyncType: SyncTypeOther 98 12:38:54,7075776 MCLauncher.exe 6080 Load Image C:\Windows\SysWOW64\dnsapi.dll SUCCESS Image Base: 0x73f30000, Image Size: 0x7d000 98 12:38:54,7076821 MCLauncher.exe 6080 Load Image C:\Windows\SysWOW64\nsi.dll SUCCESS Image Base: 0x77d10000, Image Size: 0x7000 98 12:38:54,7077272 MCLauncher.exe 6080 CloseFile C:\Windows\SysWOW64\dnsapi.dll SUCCESS 98 12:38:54,7079046 MCLauncher.exe 6080 CreateFile C:\Windows\SysWOW64\nsi.dll SUCCESS Desired Access: Read Control, Disposition: Open, Options: , Attributes: n/a, ShareMode: Read, Delete, AllocationSize: n/a, OpenResult: Opened 98 12:38:54,7079342 MCLauncher.exe 6080 QuerySecurityFile C:\Windows\SysWOW64\nsi.dll BUFFER OVERFLOW Information: Owner 98 12:38:54,7079428 MCLauncher.exe 6080 QuerySecurityFile C:\Windows\SysWOW64\nsi.dll SUCCESS Information: Owner 98 12:38:54,7079500 MCLauncher.exe 6080 CloseFile C:\Windows\SysWOW64\nsi.dll SUCCESS 98 12:38:54,7080628 MCLauncher.exe 6080 CreateFile C:\Windows\SysWOW64\dnsapi.dll SUCCESS Desired Access: Read Control, Disposition: Open, Options: , Attributes: n/a, ShareMode: Read, Delete, AllocationSize: n/a, OpenResult: Opened 98 12:38:54,7080894 MCLauncher.exe 6080 QuerySecurityFile C:\Windows\SysWOW64\dnsapi.dll BUFFER OVERFLOW Information: Owner 98 12:38:54,7080968 MCLauncher.exe 6080 QuerySecurityFile C:\Windows\SysWOW64\dnsapi.dll SUCCESS Information: Owner 98 12:38:54,7081032 MCLauncher.exe 6080 CloseFile C:\Windows\SysWOW64\dnsapi.dll SUCCESS 98 12:38:54,7082102 MCLauncher.exe 6080 RegQueryValue HKLM\System\CurrentControlSet\Control\WMI\Security\9ca335ed-c0a6-4b4d-b084-9c9b5143aff0 NAME NOT FOUND Length: 524 98 12:38:54,7085171 MCLauncher.exe 6080 CreateFile C:\Windows\SysWOW64\IPHLPAPI.DLL SUCCESS Desired Access: Read Attributes, Disposition: Open, Options: Open Reparse Point, Attributes: n/a, ShareMode: Read, Write, Delete, AllocationSize: n/a, OpenResult: Opened 98 12:38:54,7085440 MCLauncher.exe 6080 QueryBasicInformationFile C:\Windows\SysWOW64\IPHLPAPI.DLL SUCCESS CreationTime: 20.07.2018 1:34:27, LastAccessTime: 20.07.2018 1:34:27, LastWriteTime: 04.03.2017 10:02:53, ChangeTime: 20.07.2018 19:25:00, FileAttributes: A 98 12:38:54,7085523 MCLauncher.exe 6080 CloseFile C:\Windows\SysWOW64\IPHLPAPI.DLL SUCCESS 98 12:38:54,7086523 MCLauncher.exe 6080 CreateFile C:\Windows\SysWOW64\IPHLPAPI.DLL SUCCESS Desired Access: Read Data/List Directory, Execute/Traverse, Synchronize, Disposition: Open, Options: Synchronous IO Non-Alert, Non-Directory File, Attributes: n/a, ShareMode: Read, Delete, AllocationSize: n/a, OpenResult: Opened 98 12:38:54,7086812 MCLauncher.exe 6080 CreateFileMapping C:\Windows\SysWOW64\IPHLPAPI.DLL FILE LOCKED WITH ONLY READERS SyncType: SyncTypeCreateSection, PageProtection: PAGE_EXECUTE|PAGE_NOCACHE 98 12:38:54,7086956 MCLauncher.exe 6080 QueryNameInformationFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Name: \Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe 98 12:38:54,7087850 MCLauncher.exe 6080 CreateFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Desired Access: Synchronize, Disposition: Open, Options: Synchronous IO Non-Alert, Attributes: N, ShareMode: Read, Write, Delete, AllocationSize: n/a, OpenResult: Opened 98 12:38:54,7088042 MCLauncher.exe 6080 CloseFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS 98 12:38:54,7088341 MCLauncher.exe 6080 QueryNameInformationFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Name: \Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe 98 12:38:54,7089194 MCLauncher.exe 6080 CreateFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Desired Access: Synchronize, Disposition: Open, Options: Synchronous IO Non-Alert, Attributes: N, ShareMode: Read, Write, Delete, AllocationSize: n/a, OpenResult: Opened 98 12:38:54,7089372 MCLauncher.exe 6080 CloseFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS 98 12:38:54,7090081 MCLauncher.exe 6080 CreateFileMapping C:\Windows\SysWOW64\IPHLPAPI.DLL SUCCESS SyncType: SyncTypeOther 98 12:38:54,7090516 MCLauncher.exe 6080 Load Image C:\Windows\SysWOW64\IPHLPAPI.DLL SUCCESS Image Base: 0x73f00000, Image Size: 0x2f000 98 12:38:54,7091156 MCLauncher.exe 6080 CloseFile C:\Windows\SysWOW64\IPHLPAPI.DLL SUCCESS 98 12:38:54,7092893 MCLauncher.exe 6080 CreateFile C:\Windows\SysWOW64\IPHLPAPI.DLL SUCCESS Desired Access: Read Control, Disposition: Open, Options: , Attributes: n/a, ShareMode: Read, Delete, AllocationSize: n/a, OpenResult: Opened 98 12:38:54,7093173 MCLauncher.exe 6080 QuerySecurityFile C:\Windows\SysWOW64\IPHLPAPI.DLL BUFFER OVERFLOW Information: Owner 98 12:38:54,7093253 MCLauncher.exe 6080 QuerySecurityFile C:\Windows\SysWOW64\IPHLPAPI.DLL SUCCESS Information: Owner 98 12:38:54,7093322 MCLauncher.exe 6080 CloseFile C:\Windows\SysWOW64\IPHLPAPI.DLL SUCCESS 98 12:38:54,7094458 MCLauncher.exe 6080 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 98 12:38:54,7094588 MCLauncher.exe 6080 RegQueryKey HKLM SUCCESS Query: Name 98 12:38:54,7094710 MCLauncher.exe 6080 RegCreateKey HKLM\System\CurrentControlSet\Services\Tcpip\Parameters REPARSE Desired Access: Read 98 12:38:54,7094974 MCLauncher.exe 6080 RegCreateKey HKLM\System\CurrentControlSet\Services\Tcpip\Parameters SUCCESS Desired Access: Read, Disposition: REG_OPENED_EXISTING_KEY 98 12:38:54,7095187 MCLauncher.exe 6080 RegSetInfoKey HKLM\System\CurrentControlSet\Services\Tcpip\Parameters SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 98 12:38:54,7095284 MCLauncher.exe 6080 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 98 12:38:54,7095370 MCLauncher.exe 6080 RegQueryKey HKLM SUCCESS Query: Name 98 12:38:54,7095456 MCLauncher.exe 6080 RegOpenKey HKLM\System\CurrentControlSet\Services\DnsCache\Parameters REPARSE Desired Access: Read 98 12:38:54,7095536 MCLauncher.exe 6080 RegOpenKey HKLM\System\CurrentControlSet\Services\DnsCache\Parameters SUCCESS Desired Access: Read 98 12:38:54,7095655 MCLauncher.exe 6080 RegSetInfoKey HKLM\System\CurrentControlSet\Services\Dnscache\Parameters SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 98 12:38:54,7095730 MCLauncher.exe 6080 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 98 12:38:54,7095810 MCLauncher.exe 6080 RegQueryKey HKLM SUCCESS Query: Name 98 12:38:54,7095905 MCLauncher.exe 6080 RegOpenKey HKLM\Software\WOW6432Node\Policies\Microsoft\Windows NT\DnsClient REPARSE Desired Access: Read 98 12:38:54,7095993 MCLauncher.exe 6080 RegOpenKey HKLM\SOFTWARE\Policies\Microsoft\Windows NT\DnsClient NAME NOT FOUND Desired Access: Read 98 12:38:54,7096173 MCLauncher.exe 6080 RegQueryValue HKLM\System\CurrentControlSet\Services\Tcpip\Parameters\Hostname SUCCESS Type: REG_SZ, Length: 32, Data: WIN-0UOTFKKVN1S 98 12:38:54,7096384 MCLauncher.exe 6080 RegQueryValue HKLM\System\CurrentControlSet\Services\Tcpip\Parameters\Hostname SUCCESS Type: REG_SZ, Length: 32, Data: WIN-0UOTFKKVN1S 98 12:38:54,7096564 MCLauncher.exe 6080 RegCloseKey HKLM\System\CurrentControlSet\Services\Tcpip\Parameters SUCCESS 98 12:38:54,7096617 MCLauncher.exe 6080 RegCloseKey HKLM\System\CurrentControlSet\Services\Dnscache\Parameters SUCCESS 98 12:38:54,7096694 MCLauncher.exe 6080 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 98 12:38:54,7096780 MCLauncher.exe 6080 RegQueryKey HKLM SUCCESS Query: Name 98 12:38:54,7096866 MCLauncher.exe 6080 RegCreateKey HKLM\System\CurrentControlSet\Services\Tcpip\Parameters REPARSE Desired Access: Read 98 12:38:54,7097043 MCLauncher.exe 6080 RegCreateKey HKLM\System\CurrentControlSet\Services\Tcpip\Parameters SUCCESS Desired Access: Read, Disposition: REG_OPENED_EXISTING_KEY 98 12:38:54,7097215 MCLauncher.exe 6080 RegSetInfoKey HKLM\System\CurrentControlSet\Services\Tcpip\Parameters SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 98 12:38:54,7097298 MCLauncher.exe 6080 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 98 12:38:54,7097378 MCLauncher.exe 6080 RegQueryKey HKLM SUCCESS Query: Name 98 12:38:54,7097450 MCLauncher.exe 6080 RegOpenKey HKLM\System\CurrentControlSet\Services\DnsCache\Parameters REPARSE Desired Access: Read 98 12:38:54,7097523 MCLauncher.exe 6080 RegOpenKey HKLM\System\CurrentControlSet\Services\DnsCache\Parameters SUCCESS Desired Access: Read 98 12:38:54,7097617 MCLauncher.exe 6080 RegSetInfoKey HKLM\System\CurrentControlSet\Services\Dnscache\Parameters SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 98 12:38:54,7097686 MCLauncher.exe 6080 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 98 12:38:54,7097761 MCLauncher.exe 6080 RegQueryKey HKLM SUCCESS Query: Name 98 12:38:54,7097844 MCLauncher.exe 6080 RegOpenKey HKLM\Software\WOW6432Node\Policies\Microsoft\Windows NT\DnsClient REPARSE Desired Access: Read 98 12:38:54,7097910 MCLauncher.exe 6080 RegOpenKey HKLM\SOFTWARE\Policies\Microsoft\Windows NT\DnsClient NAME NOT FOUND Desired Access: Read 98 12:38:54,7098013 MCLauncher.exe 6080 RegQueryValue HKLM\System\CurrentControlSet\Services\Tcpip\Parameters\Hostname SUCCESS Type: REG_SZ, Length: 32, Data: WIN-0UOTFKKVN1S 98 12:38:54,7098171 MCLauncher.exe 6080 RegQueryValue HKLM\System\CurrentControlSet\Services\Tcpip\Parameters\Hostname SUCCESS Type: REG_SZ, Length: 32, Data: WIN-0UOTFKKVN1S 98 12:38:54,7098312 MCLauncher.exe 6080 RegCloseKey HKLM\System\CurrentControlSet\Services\Tcpip\Parameters SUCCESS 98 12:38:54,7098359 MCLauncher.exe 6080 RegCloseKey HKLM\System\CurrentControlSet\Services\Dnscache\Parameters SUCCESS 98 12:38:54,7098428 MCLauncher.exe 6080 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 98 12:38:54,7098509 MCLauncher.exe 6080 RegQueryKey HKLM SUCCESS Query: Name 98 12:38:54,7098589 MCLauncher.exe 6080 RegCreateKey HKLM\System\CurrentControlSet\Services\Tcpip\Parameters REPARSE Desired Access: Read 98 12:38:54,7098758 MCLauncher.exe 6080 RegCreateKey HKLM\System\CurrentControlSet\Services\Tcpip\Parameters SUCCESS Desired Access: Read, Disposition: REG_OPENED_EXISTING_KEY 98 12:38:54,7098922 MCLauncher.exe 6080 RegSetInfoKey HKLM\System\CurrentControlSet\Services\Tcpip\Parameters SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 98 12:38:54,7098999 MCLauncher.exe 6080 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 98 12:38:54,7099077 MCLauncher.exe 6080 RegQueryKey HKLM SUCCESS Query: Name 98 12:38:54,7099149 MCLauncher.exe 6080 RegOpenKey HKLM\System\CurrentControlSet\Services\DnsCache\Parameters REPARSE Desired Access: Read 98 12:38:54,7099215 MCLauncher.exe 6080 RegOpenKey HKLM\System\CurrentControlSet\Services\DnsCache\Parameters SUCCESS Desired Access: Read 98 12:38:54,7099310 MCLauncher.exe 6080 RegSetInfoKey HKLM\System\CurrentControlSet\Services\Dnscache\Parameters SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 98 12:38:54,7099376 MCLauncher.exe 6080 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 98 12:38:54,7099454 MCLauncher.exe 6080 RegQueryKey HKLM SUCCESS Query: Name 98 12:38:54,7099537 MCLauncher.exe 6080 RegOpenKey HKLM\Software\WOW6432Node\Policies\Microsoft\Windows NT\DnsClient REPARSE Desired Access: Read 98 12:38:54,7099600 MCLauncher.exe 6080 RegOpenKey HKLM\SOFTWARE\Policies\Microsoft\Windows NT\DnsClient NAME NOT FOUND Desired Access: Read 98 12:38:54,7099722 MCLauncher.exe 6080 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 98 12:38:54,7099800 MCLauncher.exe 6080 RegQueryKey HKLM SUCCESS Query: Name 98 12:38:54,7099880 MCLauncher.exe 6080 RegOpenKey HKLM\Software\WOW6432Node\Policies\Microsoft\System\DNSClient REPARSE Desired Access: Query Value 98 12:38:54,7099944 MCLauncher.exe 6080 RegOpenKey HKLM\SOFTWARE\Policies\Microsoft\System\DNSClient NAME NOT FOUND Desired Access: Query Value 98 12:38:54,7100058 MCLauncher.exe 6080 RegQueryValue HKLM\System\CurrentControlSet\Services\Tcpip\Parameters\Domain SUCCESS Type: REG_SZ, Length: 2, Data: 98 12:38:54,7100204 MCLauncher.exe 6080 RegQueryValue HKLM\System\CurrentControlSet\Services\Tcpip\Parameters\Domain SUCCESS Type: REG_SZ, Length: 2, Data: 98 12:38:54,7100371 MCLauncher.exe 6080 RegCloseKey HKLM\System\CurrentControlSet\Services\Tcpip\Parameters SUCCESS 98 12:38:54,7100418 MCLauncher.exe 6080 RegCloseKey HKLM\System\CurrentControlSet\Services\Dnscache\Parameters SUCCESS 98 12:38:54,7100670 MCLauncher.exe 6080 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 98 12:38:54,7100753 MCLauncher.exe 6080 RegQueryKey HKLM SUCCESS Query: Name 98 12:38:54,7100828 MCLauncher.exe 6080 RegOpenKey HKLM\System\CurrentControlSet\Services\WinSock2\Parameters REPARSE Desired Access: All Access 98 12:38:54,7100897 MCLauncher.exe 6080 RegOpenKey HKLM\System\CurrentControlSet\Services\WinSock2\Parameters ACCESS DENIED Desired Access: All Access 98 12:38:54,7101024 MCLauncher.exe 6080 QuerySecurityFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe BUFFER OVERFLOW Information: Owner 98 12:38:54,7101113 MCLauncher.exe 6080 QuerySecurityFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Information: Owner 98 12:38:54,7101556 MCLauncher.exe 6080 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 98 12:38:54,7101642 MCLauncher.exe 6080 RegQueryKey HKLM SUCCESS Query: Name 98 12:38:54,7101720 MCLauncher.exe 6080 RegOpenKey HKLM\System\CurrentControlSet\Services\WinSock2\Parameters REPARSE Desired Access: Read 98 12:38:54,7101792 MCLauncher.exe 6080 RegOpenKey HKLM\System\CurrentControlSet\Services\WinSock2\Parameters SUCCESS Desired Access: Read 98 12:38:54,7101897 MCLauncher.exe 6080 RegSetInfoKey HKLM\System\CurrentControlSet\Services\WinSock2\Parameters SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 98 12:38:54,7101961 MCLauncher.exe 6080 RegQueryValue HKLM\System\CurrentControlSet\Services\WinSock2\Parameters\WinSock_Registry_Version SUCCESS Type: REG_SZ, Length: 8, Data: 2.0 98 12:38:54,7102122 MCLauncher.exe 6080 RegQueryValue HKLM\System\CurrentControlSet\Services\WinSock2\Parameters\WinSock_Registry_Version SUCCESS Type: REG_SZ, Length: 8, Data: 2.0 98 12:38:54,7102263 MCLauncher.exe 6080 RegQueryValue HKLM\System\CurrentControlSet\Services\WinSock2\Parameters\AutodialDLL SUCCESS Type: REG_SZ, Length: 66, Data: C:\Windows\System32\rasadhlp.dll 98 12:38:54,7102388 MCLauncher.exe 6080 RegQueryValue HKLM\System\CurrentControlSet\Services\WinSock2\Parameters\AutodialDLL SUCCESS Type: REG_SZ, Length: 66, Data: C:\Windows\System32\rasadhlp.dll 98 12:38:54,7102523 MCLauncher.exe 6080 RegCloseKey HKLM\System\CurrentControlSet\Services\WinSock2\Parameters SUCCESS 98 12:38:54,7105067 MCLauncher.exe 6080 CreateFile C:\Windows\SysWOW64\rasadhlp.dll SUCCESS Desired Access: Read Attributes, Disposition: Open, Options: Open Reparse Point, Attributes: n/a, ShareMode: Read, Write, Delete, AllocationSize: n/a, OpenResult: Opened 98 12:38:54,7105349 MCLauncher.exe 6080 QueryBasicInformationFile C:\Windows\SysWOW64\rasadhlp.dll SUCCESS CreationTime: 16.07.2016 14:43:00, LastAccessTime: 16.07.2016 14:43:00, LastWriteTime: 16.07.2016 14:43:00, ChangeTime: 19.07.2018 19:38:37, FileAttributes: A 98 12:38:54,7105435 MCLauncher.exe 6080 CloseFile C:\Windows\SysWOW64\rasadhlp.dll SUCCESS 98 12:38:54,7106424 MCLauncher.exe 6080 CreateFile C:\Windows\SysWOW64\rasadhlp.dll SUCCESS Desired Access: Read Data/List Directory, Execute/Traverse, Synchronize, Disposition: Open, Options: Synchronous IO Non-Alert, Non-Directory File, Attributes: n/a, ShareMode: Read, Delete, AllocationSize: n/a, OpenResult: Opened 98 12:38:54,7106707 MCLauncher.exe 6080 CreateFileMapping C:\Windows\SysWOW64\rasadhlp.dll FILE LOCKED WITH ONLY READERS SyncType: SyncTypeCreateSection, PageProtection: PAGE_EXECUTE|PAGE_NOCACHE 98 12:38:54,7106834 MCLauncher.exe 6080 QueryNameInformationFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Name: \Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe 98 12:38:54,7107718 MCLauncher.exe 6080 CreateFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Desired Access: Synchronize, Disposition: Open, Options: Synchronous IO Non-Alert, Attributes: N, ShareMode: Read, Write, Delete, AllocationSize: n/a, OpenResult: Opened 98 12:38:54,7107907 MCLauncher.exe 6080 CloseFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS 98 12:38:54,7108195 MCLauncher.exe 6080 QueryNameInformationFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Name: \Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe 98 12:38:54,7109051 MCLauncher.exe 6080 CreateFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Desired Access: Synchronize, Disposition: Open, Options: Synchronous IO Non-Alert, Attributes: N, ShareMode: Read, Write, Delete, AllocationSize: n/a, OpenResult: Opened 98 12:38:54,7109225 MCLauncher.exe 6080 CloseFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS 98 12:38:54,7109882 MCLauncher.exe 6080 CreateFileMapping C:\Windows\SysWOW64\rasadhlp.dll SUCCESS SyncType: SyncTypeOther 98 12:38:54,7110306 MCLauncher.exe 6080 Load Image C:\Windows\SysWOW64\rasadhlp.dll SUCCESS Image Base: 0x73ab0000, Image Size: 0x8000 98 12:38:54,7110946 MCLauncher.exe 6080 CloseFile C:\Windows\SysWOW64\rasadhlp.dll SUCCESS 98 12:38:54,7112231 MCLauncher.exe 6080 CreateFile C:\Windows\SysWOW64\rasadhlp.dll SUCCESS Desired Access: Read Control, Disposition: Open, Options: , Attributes: n/a, ShareMode: Read, Delete, AllocationSize: n/a, OpenResult: Opened 98 12:38:54,7112503 MCLauncher.exe 6080 QuerySecurityFile C:\Windows\SysWOW64\rasadhlp.dll BUFFER OVERFLOW Information: Owner 98 12:38:54,7112578 MCLauncher.exe 6080 QuerySecurityFile C:\Windows\SysWOW64\rasadhlp.dll SUCCESS Information: Owner 98 12:38:54,7112644 MCLauncher.exe 6080 CloseFile C:\Windows\SysWOW64\rasadhlp.dll SUCCESS 98 12:38:54,7113221 MCLauncher.exe 6080 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 98 12:38:54,7113329 MCLauncher.exe 6080 RegQueryKey HKLM SUCCESS Query: Name 98 12:38:54,7113431 MCLauncher.exe 6080 RegCreateKey HKLM\System\CurrentControlSet\Services\Tcpip\Parameters REPARSE Desired Access: Read 98 12:38:54,7113639 MCLauncher.exe 6080 RegCreateKey HKLM\System\CurrentControlSet\Services\Tcpip\Parameters SUCCESS Desired Access: Read, Disposition: REG_OPENED_EXISTING_KEY 98 12:38:54,7113838 MCLauncher.exe 6080 RegSetInfoKey HKLM\System\CurrentControlSet\Services\Tcpip\Parameters SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 98 12:38:54,7113927 MCLauncher.exe 6080 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 98 12:38:54,7114010 MCLauncher.exe 6080 RegQueryKey HKLM SUCCESS Query: Name 98 12:38:54,7114096 MCLauncher.exe 6080 RegOpenKey HKLM\System\CurrentControlSet\Services\DnsCache\Parameters REPARSE Desired Access: Read 98 12:38:54,7114174 MCLauncher.exe 6080 RegOpenKey HKLM\System\CurrentControlSet\Services\DnsCache\Parameters SUCCESS Desired Access: Read 98 12:38:54,7114282 MCLauncher.exe 6080 RegSetInfoKey HKLM\System\CurrentControlSet\Services\Dnscache\Parameters SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 98 12:38:54,7114356 MCLauncher.exe 6080 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 98 12:38:54,7114434 MCLauncher.exe 6080 RegQueryKey HKLM SUCCESS Query: Name 98 12:38:54,7114523 MCLauncher.exe 6080 RegOpenKey HKLM\Software\WOW6432Node\Policies\Microsoft\Windows NT\DnsClient REPARSE Desired Access: Read 98 12:38:54,7114592 MCLauncher.exe 6080 RegOpenKey HKLM\SOFTWARE\Policies\Microsoft\Windows NT\DnsClient NAME NOT FOUND Desired Access: Read 98 12:38:54,7114706 MCLauncher.exe 6080 RegQueryValue HKLM\System\CurrentControlSet\Services\Tcpip\Parameters\Hostname SUCCESS Type: REG_SZ, Length: 32, Data: WIN-0UOTFKKVN1S 98 12:38:54,7114875 MCLauncher.exe 6080 RegQueryValue HKLM\System\CurrentControlSet\Services\Tcpip\Parameters\Hostname SUCCESS Type: REG_SZ, Length: 32, Data: WIN-0UOTFKKVN1S 98 12:38:54,7115030 MCLauncher.exe 6080 RegCloseKey HKLM\System\CurrentControlSet\Services\Tcpip\Parameters SUCCESS 98 12:38:54,7115080 MCLauncher.exe 6080 RegCloseKey HKLM\System\CurrentControlSet\Services\Dnscache\Parameters SUCCESS 98 12:38:54,7115149 MCLauncher.exe 6080 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 98 12:38:54,7115232 MCLauncher.exe 6080 RegQueryKey HKLM SUCCESS Query: Name 98 12:38:54,7115315 MCLauncher.exe 6080 RegCreateKey HKLM\System\CurrentControlSet\Services\Tcpip\Parameters REPARSE Desired Access: Read 98 12:38:54,7115487 MCLauncher.exe 6080 RegCreateKey HKLM\System\CurrentControlSet\Services\Tcpip\Parameters SUCCESS Desired Access: Read, Disposition: REG_OPENED_EXISTING_KEY 98 12:38:54,7115659 MCLauncher.exe 6080 RegSetInfoKey HKLM\System\CurrentControlSet\Services\Tcpip\Parameters SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 98 12:38:54,7115736 MCLauncher.exe 6080 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 98 12:38:54,7115817 MCLauncher.exe 6080 RegQueryKey HKLM SUCCESS Query: Name 98 12:38:54,7115891 MCLauncher.exe 6080 RegOpenKey HKLM\System\CurrentControlSet\Services\DnsCache\Parameters REPARSE Desired Access: Read 98 12:38:54,7115961 MCLauncher.exe 6080 RegOpenKey HKLM\System\CurrentControlSet\Services\DnsCache\Parameters SUCCESS Desired Access: Read 98 12:38:54,7116058 MCLauncher.exe 6080 RegSetInfoKey HKLM\System\CurrentControlSet\Services\Dnscache\Parameters SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 98 12:38:54,7116124 MCLauncher.exe 6080 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 98 12:38:54,7116199 MCLauncher.exe 6080 RegQueryKey HKLM SUCCESS Query: Name 98 12:38:54,7116285 MCLauncher.exe 6080 RegOpenKey HKLM\Software\WOW6432Node\Policies\Microsoft\Windows NT\DnsClient REPARSE Desired Access: Read 98 12:38:54,7116348 MCLauncher.exe 6080 RegOpenKey HKLM\SOFTWARE\Policies\Microsoft\Windows NT\DnsClient NAME NOT FOUND Desired Access: Read 98 12:38:54,7116470 MCLauncher.exe 6080 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 98 12:38:54,7116545 MCLauncher.exe 6080 RegQueryKey HKLM SUCCESS Query: Name 98 12:38:54,7116628 MCLauncher.exe 6080 RegOpenKey HKLM\Software\WOW6432Node\Policies\Microsoft\System\DNSClient REPARSE Desired Access: Query Value 98 12:38:54,7116692 MCLauncher.exe 6080 RegOpenKey HKLM\SOFTWARE\Policies\Microsoft\System\DNSClient NAME NOT FOUND Desired Access: Query Value 98 12:38:54,7116800 MCLauncher.exe 6080 RegQueryValue HKLM\System\CurrentControlSet\Services\Tcpip\Parameters\Domain SUCCESS Type: REG_SZ, Length: 2, Data: 98 12:38:54,7116950 MCLauncher.exe 6080 RegQueryValue HKLM\System\CurrentControlSet\Services\Tcpip\Parameters\Domain SUCCESS Type: REG_SZ, Length: 2, Data: 98 12:38:54,7117094 MCLauncher.exe 6080 RegCloseKey HKLM\System\CurrentControlSet\Services\Tcpip\Parameters SUCCESS 98 12:38:54,7117141 MCLauncher.exe 6080 RegCloseKey HKLM\System\CurrentControlSet\Services\Dnscache\Parameters SUCCESS 98 12:38:54,7117216 MCLauncher.exe 6080 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 98 12:38:54,7117296 MCLauncher.exe 6080 RegQueryKey HKLM SUCCESS Query: Name 98 12:38:54,7117376 MCLauncher.exe 6080 RegCreateKey HKLM\System\CurrentControlSet\Services\Tcpip\Parameters REPARSE Desired Access: Read 98 12:38:54,7117545 MCLauncher.exe 6080 RegCreateKey HKLM\System\CurrentControlSet\Services\Tcpip\Parameters SUCCESS Desired Access: Read, Disposition: REG_OPENED_EXISTING_KEY 98 12:38:54,7117709 MCLauncher.exe 6080 RegSetInfoKey HKLM\System\CurrentControlSet\Services\Tcpip\Parameters SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 98 12:38:54,7117786 MCLauncher.exe 6080 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 98 12:38:54,7117864 MCLauncher.exe 6080 RegQueryKey HKLM SUCCESS Query: Name 98 12:38:54,7117936 MCLauncher.exe 6080 RegOpenKey HKLM\System\CurrentControlSet\Services\DnsCache\Parameters REPARSE Desired Access: Read 98 12:38:54,7118005 MCLauncher.exe 6080 RegOpenKey HKLM\System\CurrentControlSet\Services\DnsCache\Parameters SUCCESS Desired Access: Read 98 12:38:54,7118102 MCLauncher.exe 6080 RegSetInfoKey HKLM\System\CurrentControlSet\Services\Dnscache\Parameters SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 98 12:38:54,7118169 MCLauncher.exe 6080 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 98 12:38:54,7118244 MCLauncher.exe 6080 RegQueryKey HKLM SUCCESS Query: Name 98 12:38:54,7118324 MCLauncher.exe 6080 RegOpenKey HKLM\Software\WOW6432Node\Policies\Microsoft\Windows NT\DnsClient REPARSE Desired Access: Read 98 12:38:54,7118388 MCLauncher.exe 6080 RegOpenKey HKLM\SOFTWARE\Policies\Microsoft\Windows NT\DnsClient NAME NOT FOUND Desired Access: Read 98 12:38:54,7118490 MCLauncher.exe 6080 RegQueryValue HKLM\System\CurrentControlSet\Services\Tcpip\Parameters\Hostname SUCCESS Type: REG_SZ, Length: 32, Data: WIN-0UOTFKKVN1S 98 12:38:54,7118637 MCLauncher.exe 6080 RegQueryValue HKLM\System\CurrentControlSet\Services\Tcpip\Parameters\Hostname SUCCESS Type: REG_SZ, Length: 32, Data: WIN-0UOTFKKVN1S 98 12:38:54,7118775 MCLauncher.exe 6080 RegCloseKey HKLM\System\CurrentControlSet\Services\Tcpip\Parameters SUCCESS 98 12:38:54,7118823 MCLauncher.exe 6080 RegCloseKey HKLM\System\CurrentControlSet\Services\Dnscache\Parameters SUCCESS 98 12:38:54,7118897 MCLauncher.exe 6080 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 98 12:38:54,7118978 MCLauncher.exe 6080 RegQueryKey HKLM SUCCESS Query: Name 98 12:38:54,7119058 MCLauncher.exe 6080 RegCreateKey HKLM\System\CurrentControlSet\Services\Tcpip\Parameters REPARSE Desired Access: Read 98 12:38:54,7119224 MCLauncher.exe 6080 RegCreateKey HKLM\System\CurrentControlSet\Services\Tcpip\Parameters SUCCESS Desired Access: Read, Disposition: REG_OPENED_EXISTING_KEY 98 12:38:54,7119385 MCLauncher.exe 6080 RegSetInfoKey HKLM\System\CurrentControlSet\Services\Tcpip\Parameters SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 98 12:38:54,7119463 MCLauncher.exe 6080 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 98 12:38:54,7119540 MCLauncher.exe 6080 RegQueryKey HKLM SUCCESS Query: Name 98 12:38:54,7119612 MCLauncher.exe 6080 RegOpenKey HKLM\System\CurrentControlSet\Services\DnsCache\Parameters REPARSE Desired Access: Read 98 12:38:54,7119679 MCLauncher.exe 6080 RegOpenKey HKLM\System\CurrentControlSet\Services\DnsCache\Parameters SUCCESS Desired Access: Read 98 12:38:54,7119773 MCLauncher.exe 6080 RegSetInfoKey HKLM\System\CurrentControlSet\Services\Dnscache\Parameters SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 98 12:38:54,7119839 MCLauncher.exe 6080 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 98 12:38:54,7119914 MCLauncher.exe 6080 RegQueryKey HKLM SUCCESS Query: Name 98 12:38:54,7119995 MCLauncher.exe 6080 RegOpenKey HKLM\Software\WOW6432Node\Policies\Microsoft\Windows NT\DnsClient REPARSE Desired Access: Read 98 12:38:54,7120058 MCLauncher.exe 6080 RegOpenKey HKLM\SOFTWARE\Policies\Microsoft\Windows NT\DnsClient NAME NOT FOUND Desired Access: Read 98 12:38:54,7120180 MCLauncher.exe 6080 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 98 12:38:54,7120255 MCLauncher.exe 6080 RegQueryKey HKLM SUCCESS Query: Name 98 12:38:54,7120327 MCLauncher.exe 6080 RegOpenKey HKLM\System\CurrentControlSet\Services\DNS REPARSE Desired Access: Query Value 98 12:38:54,7120396 MCLauncher.exe 6080 RegOpenKey HKLM\System\CurrentControlSet\Services\DNS NAME NOT FOUND Desired Access: Query Value 98 12:38:54,7120496 MCLauncher.exe 6080 RegQueryValue HKLM\System\CurrentControlSet\Services\Dnscache\Parameters\QueryAdapterName NAME NOT FOUND Length: 144 98 12:38:54,7120662 MCLauncher.exe 6080 RegQueryValue HKLM\System\CurrentControlSet\Services\Tcpip\Parameters\DisableAdapterDomainName NAME NOT FOUND Length: 144 98 12:38:54,7120779 MCLauncher.exe 6080 RegQueryValue HKLM\System\CurrentControlSet\Services\Dnscache\Parameters\UseDomainNameDevolution NAME NOT FOUND Length: 144 98 12:38:54,7120881 MCLauncher.exe 6080 RegQueryValue HKLM\System\CurrentControlSet\Services\Tcpip\Parameters\UseDomainNameDevolution NAME NOT FOUND Length: 144 98 12:38:54,7121144 MCLauncher.exe 6080 RegQueryValue HKLM\System\CurrentControlSet\Services\Dnscache\Parameters\DomainNameDevolutionLevel NAME NOT FOUND Length: 144 98 12:38:54,7121252 MCLauncher.exe 6080 RegQueryValue HKLM\System\CurrentControlSet\Services\Dnscache\Parameters\PrioritizeRecordData NAME NOT FOUND Length: 144 98 12:38:54,7121352 MCLauncher.exe 6080 RegQueryValue HKLM\System\CurrentControlSet\Services\Tcpip\Parameters\PrioritizeRecordData NAME NOT FOUND Length: 144 98 12:38:54,7121452 MCLauncher.exe 6080 RegQueryValue HKLM\System\CurrentControlSet\Services\Dnscache\Parameters\AllowUnqualifiedQuery NAME NOT FOUND Length: 144 98 12:38:54,7121549 MCLauncher.exe 6080 RegQueryValue HKLM\System\CurrentControlSet\Services\Tcpip\Parameters\AllowUnqualifiedQuery NAME NOT FOUND Length: 144 98 12:38:54,7121649 MCLauncher.exe 6080 RegQueryValue HKLM\System\CurrentControlSet\Services\Dnscache\Parameters\AppendToMultiLabelName NAME NOT FOUND Length: 144 98 12:38:54,7121820 MCLauncher.exe 6080 RegQueryValue HKLM\System\CurrentControlSet\Services\Dnscache\Parameters\ScreenBadTlds NAME NOT FOUND Length: 144 98 12:38:54,7121920 MCLauncher.exe 6080 RegQueryValue HKLM\System\CurrentControlSet\Services\Dnscache\Parameters\ScreenUnreachableServers NAME NOT FOUND Length: 144 98 12:38:54,7122017 MCLauncher.exe 6080 RegQueryValue HKLM\System\CurrentControlSet\Services\Dnscache\Parameters\ScreenDefaultServers NAME NOT FOUND Length: 144 98 12:38:54,7122111 MCLauncher.exe 6080 RegQueryValue HKLM\System\CurrentControlSet\Services\Dnscache\Parameters\DynamicServerQueryOrder NAME NOT FOUND Length: 144 98 12:38:54,7122205 MCLauncher.exe 6080 RegQueryValue HKLM\System\CurrentControlSet\Services\Dnscache\Parameters\FilterClusterIp NAME NOT FOUND Length: 144 98 12:38:54,7122302 MCLauncher.exe 6080 RegQueryValue HKLM\System\CurrentControlSet\Services\Dnscache\Parameters\WaitForNameErrorOnAll NAME NOT FOUND Length: 144 98 12:38:54,7122399 MCLauncher.exe 6080 RegQueryValue HKLM\System\CurrentControlSet\Services\Dnscache\Parameters\UseEdns NAME NOT FOUND Length: 144 98 12:38:54,7122496 MCLauncher.exe 6080 RegQueryValue HKLM\System\CurrentControlSet\Services\Dnscache\Parameters\DnsSecureNameQueryFallback NAME NOT FOUND Length: 144 98 12:38:54,7122591 MCLauncher.exe 6080 RegQueryValue HKLM\System\CurrentControlSet\Services\Dnscache\Parameters\EnableDAForAllNetworks NAME NOT FOUND Length: 144 98 12:38:54,7122688 MCLauncher.exe 6080 RegQueryValue HKLM\System\CurrentControlSet\Services\Dnscache\Parameters\DirectAccessQueryOrder NAME NOT FOUND Length: 144 98 12:38:54,7122784 MCLauncher.exe 6080 RegQueryValue HKLM\System\CurrentControlSet\Services\Dnscache\Parameters\QueryIpMatching NAME NOT FOUND Length: 144 98 12:38:54,7122881 MCLauncher.exe 6080 RegQueryValue HKLM\System\CurrentControlSet\Services\Dnscache\Parameters\UseHostsFile NAME NOT FOUND Length: 144 98 12:38:54,7122976 MCLauncher.exe 6080 RegQueryValue HKLM\System\CurrentControlSet\Services\Dnscache\Parameters\AddrConfigControl NAME NOT FOUND Length: 144 98 12:38:54,7123070 MCLauncher.exe 6080 RegQueryValue HKLM\System\CurrentControlSet\Services\Dnscache\Parameters\DisableSmartNameResolution NAME NOT FOUND Length: 144 98 12:38:54,7123167 MCLauncher.exe 6080 RegQueryValue HKLM\System\CurrentControlSet\Services\Dnscache\Parameters\PreferLocalOverLowerBindingDNS NAME NOT FOUND Length: 144 98 12:38:54,7123264 MCLauncher.exe 6080 RegQueryValue HKLM\System\CurrentControlSet\Services\Dnscache\Parameters\QueryNetBTFQDN NAME NOT FOUND Length: 144 98 12:38:54,7123358 MCLauncher.exe 6080 RegQueryValue HKLM\System\CurrentControlSet\Services\Dnscache\Parameters\DisableSmartProtocolReordering NAME NOT FOUND Length: 144 98 12:38:54,7123452 MCLauncher.exe 6080 RegQueryValue HKLM\System\CurrentControlSet\Services\Dnscache\Parameters\UdpRecvBufferSize NAME NOT FOUND Length: 144 98 12:38:54,7123549 MCLauncher.exe 6080 RegQueryValue HKLM\System\CurrentControlSet\Services\Dnscache\Parameters\DisableParallelAandAAAA NAME NOT FOUND Length: 144 98 12:38:54,7123643 MCLauncher.exe 6080 RegQueryValue HKLM\System\CurrentControlSet\Services\Dnscache\Parameters\DisableCoalescing NAME NOT FOUND Length: 144 98 12:38:54,7123738 MCLauncher.exe 6080 RegQueryValue HKLM\System\CurrentControlSet\Services\Dnscache\Parameters\FilterVPNTrigger NAME NOT FOUND Length: 144 98 12:38:54,7123835 MCLauncher.exe 6080 RegQueryValue HKLM\System\CurrentControlSet\Services\Dnscache\Parameters\EnableMultiHomedRouteConflicts NAME NOT FOUND Length: 144 98 12:38:54,7123929 MCLauncher.exe 6080 RegQueryValue HKLM\System\CurrentControlSet\Services\Dnscache\Parameters\RegistrationEnabled NAME NOT FOUND Length: 144 98 12:38:54,7124092 MCLauncher.exe 6080 RegQueryValue HKLM\System\CurrentControlSet\Services\Tcpip\Parameters\DisableDynamicUpdate NAME NOT FOUND Length: 144 98 12:38:54,7124192 MCLauncher.exe 6080 RegQueryValue HKLM\System\CurrentControlSet\Services\Dnscache\Parameters\RegisterPrimaryName NAME NOT FOUND Length: 144 98 12:38:54,7124289 MCLauncher.exe 6080 RegQueryValue HKLM\System\CurrentControlSet\Services\Dnscache\Parameters\RegisterAdapterName NAME NOT FOUND Length: 144 98 12:38:54,7124389 MCLauncher.exe 6080 RegQueryValue HKLM\System\CurrentControlSet\Services\Tcpip\Parameters\EnableAdapterDomainNameRegistration NAME NOT FOUND Length: 144 98 12:38:54,7124491 MCLauncher.exe 6080 RegQueryValue HKLM\System\CurrentControlSet\Services\Dnscache\Parameters\RegisterReverseLookup NAME NOT FOUND Length: 144 98 12:38:54,7124591 MCLauncher.exe 6080 RegQueryValue HKLM\System\CurrentControlSet\Services\Tcpip\Parameters\DisableReverseAddressRegistrations NAME NOT FOUND Length: 144 98 12:38:54,7124691 MCLauncher.exe 6080 RegQueryValue HKLM\System\CurrentControlSet\Services\Dnscache\Parameters\RegisterWanAdapters NAME NOT FOUND Length: 144 98 12:38:54,7124854 MCLauncher.exe 6080 RegQueryValue HKLM\System\CurrentControlSet\Services\Tcpip\Parameters\DisableWanDynamicUpdate NAME NOT FOUND Length: 144 98 12:38:54,7124954 MCLauncher.exe 6080 RegQueryValue HKLM\System\CurrentControlSet\Services\Dnscache\Parameters\RegistrationTtl NAME NOT FOUND Length: 144 98 12:38:54,7125051 MCLauncher.exe 6080 RegQueryValue HKLM\System\CurrentControlSet\Services\Tcpip\Parameters\DefaultRegistrationTTL NAME NOT FOUND Length: 144 98 12:38:54,7125151 MCLauncher.exe 6080 RegQueryValue HKLM\System\CurrentControlSet\Services\Dnscache\Parameters\RegistrationRefreshInterval NAME NOT FOUND Length: 144 98 12:38:54,7125250 MCLauncher.exe 6080 RegQueryValue HKLM\System\CurrentControlSet\Services\Tcpip\Parameters\DefaultRegistrationRefreshInterval NAME NOT FOUND Length: 144 98 12:38:54,7125350 MCLauncher.exe 6080 RegQueryValue HKLM\System\CurrentControlSet\Services\Dnscache\Parameters\RegistrationMaxAddressCount NAME NOT FOUND Length: 144 98 12:38:54,7125444 MCLauncher.exe 6080 RegQueryValue HKLM\System\CurrentControlSet\Services\Tcpip\Parameters\MaxNumberOfAddressesToRegister NAME NOT FOUND Length: 144 98 12:38:54,7125544 MCLauncher.exe 6080 RegQueryValue HKLM\System\CurrentControlSet\Services\Dnscache\Parameters\UpdateSecurityLevel NAME NOT FOUND Length: 144 98 12:38:54,7125638 MCLauncher.exe 6080 RegQueryValue HKLM\System\CurrentControlSet\Services\Tcpip\Parameters\UpdateSecurityLevel NAME NOT FOUND Length: 144 98 12:38:54,7125738 MCLauncher.exe 6080 RegQueryValue HKLM\System\CurrentControlSet\Services\Dnscache\Parameters\UpdateTopLevelDomainZones NAME NOT FOUND Length: 144 98 12:38:54,7125835 MCLauncher.exe 6080 RegQueryValue HKLM\System\CurrentControlSet\Services\Dnscache\Parameters\DowncaseSpnCauseApiOwnerIsTooLazy NAME NOT FOUND Length: 144 98 12:38:54,7125935 MCLauncher.exe 6080 RegQueryValue HKLM\System\CurrentControlSet\Services\Dnscache\Parameters\RegistrationOverwrite NAME NOT FOUND Length: 144 98 12:38:54,7126026 MCLauncher.exe 6080 RegQueryValue HKLM\System\CurrentControlSet\Services\Dnscache\Parameters\MaxCacheSize NAME NOT FOUND Length: 144 98 12:38:54,7126120 MCLauncher.exe 6080 RegQueryValue HKLM\System\CurrentControlSet\Services\Dnscache\Parameters\MaxCacheTtl NAME NOT FOUND Length: 144 98 12:38:54,7126214 MCLauncher.exe 6080 RegQueryValue HKLM\System\CurrentControlSet\Services\Dnscache\Parameters\MaxNegativeCacheTtl NAME NOT FOUND Length: 144 98 12:38:54,7126314 MCLauncher.exe 6080 RegQueryValue HKLM\System\CurrentControlSet\Services\Dnscache\Parameters\AdapterTimeoutLimit NAME NOT FOUND Length: 144 98 12:38:54,7126408 MCLauncher.exe 6080 RegQueryValue HKLM\System\CurrentControlSet\Services\Dnscache\Parameters\ServerPriorityTimeLimit NAME NOT FOUND Length: 144 98 12:38:54,7126503 MCLauncher.exe 6080 RegQueryValue HKLM\System\CurrentControlSet\Services\Dnscache\Parameters\MaxCachedSockets NAME NOT FOUND Length: 144 98 12:38:54,7126597 MCLauncher.exe 6080 RegQueryValue HKLM\System\CurrentControlSet\Services\Dnscache\Parameters\DisableServerUnreachability NAME NOT FOUND Length: 144 98 12:38:54,7126691 MCLauncher.exe 6080 RegQueryValue HKLM\System\CurrentControlSet\Services\Dnscache\Parameters\MaxNegativeNXDomainCacheTtl NAME NOT FOUND Length: 144 98 12:38:54,7126785 MCLauncher.exe 6080 RegQueryValue HKLM\System\CurrentControlSet\Services\Dnscache\Parameters\EnableMulticast NAME NOT FOUND Length: 144 98 12:38:54,7126879 MCLauncher.exe 6080 RegQueryValue HKLM\System\CurrentControlSet\Services\Dnscache\Parameters\MulticastResponderFlags NAME NOT FOUND Length: 144 98 12:38:54,7126976 MCLauncher.exe 6080 RegQueryValue HKLM\System\CurrentControlSet\Services\Dnscache\Parameters\MulticastSenderFlags NAME NOT FOUND Length: 144 98 12:38:54,7127073 MCLauncher.exe 6080 RegQueryValue HKLM\System\CurrentControlSet\Services\Dnscache\Parameters\MulticastSenderMaxTimeout NAME NOT FOUND Length: 144 98 12:38:54,7127168 MCLauncher.exe 6080 RegQueryValue HKLM\System\CurrentControlSet\Services\Dnscache\Parameters\DnsTest NAME NOT FOUND Length: 144 98 12:38:54,7127262 MCLauncher.exe 6080 RegQueryValue HKLM\System\CurrentControlSet\Services\Dnscache\Parameters\UseCompartments NAME NOT FOUND Length: 144 98 12:38:54,7127356 MCLauncher.exe 6080 RegQueryValue HKLM\System\CurrentControlSet\Services\Dnscache\Parameters\CacheAllCompartments NAME NOT FOUND Length: 144 98 12:38:54,7127453 MCLauncher.exe 6080 RegQueryValue HKLM\System\CurrentControlSet\Services\Dnscache\Parameters\UseNewRegistration NAME NOT FOUND Length: 144 98 12:38:54,7127547 MCLauncher.exe 6080 RegQueryValue HKLM\System\CurrentControlSet\Services\Dnscache\Parameters\ResolverRegistration NAME NOT FOUND Length: 144 98 12:38:54,7127641 MCLauncher.exe 6080 RegQueryValue HKLM\System\CurrentControlSet\Services\Dnscache\Parameters\ResolverRegistrationOnly NAME NOT FOUND Length: 144 98 12:38:54,7127735 MCLauncher.exe 6080 RegQueryValue HKLM\System\CurrentControlSet\Services\Dnscache\Parameters\NewDhcpSrvRegistration NAME NOT FOUND Length: 144 98 12:38:54,7127880 MCLauncher.exe 6080 RegQueryValue HKLM\System\CurrentControlSet\Services\Dnscache\Parameters\DirectAccessPreferLocal NAME NOT FOUND Length: 144 98 12:38:54,7127977 MCLauncher.exe 6080 RegQueryValue HKLM\System\CurrentControlSet\Services\Dnscache\Parameters\DisableIdnEncoding NAME NOT FOUND Length: 144 98 12:38:54,7128071 MCLauncher.exe 6080 RegQueryValue HKLM\System\CurrentControlSet\Services\Dnscache\Parameters\EnableIdnMapping NAME NOT FOUND Length: 144 98 12:38:54,7128165 MCLauncher.exe 6080 RegQueryValue HKLM\System\CurrentControlSet\Services\Dnscache\Parameters\ShortnameProxyDefault NAME NOT FOUND Length: 144 98 12:38:54,7128262 MCLauncher.exe 6080 RegQueryValue HKLM\System\CurrentControlSet\Services\Dnscache\Parameters\TestMode_AdaptiveTimeoutHistoryLength NAME NOT FOUND Length: 144 98 12:38:54,7128362 MCLauncher.exe 6080 RegQueryValue HKLM\System\CurrentControlSet\Services\Dnscache\Parameters\TestMode_AdaptiveTimeoutRecalculationInterval NAME NOT FOUND Length: 144 98 12:38:54,7128492 MCLauncher.exe 6080 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 98 12:38:54,7128583 MCLauncher.exe 6080 RegQueryKey HKLM SUCCESS Query: Name 98 12:38:54,7128664 MCLauncher.exe 6080 RegOpenKey HKLM\System\Setup SUCCESS Desired Access: Query Value 98 12:38:54,7128788 MCLauncher.exe 6080 RegSetInfoKey HKLM\SYSTEM\Setup SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 98 12:38:54,7128838 MCLauncher.exe 6080 RegQueryValue HKLM\SYSTEM\Setup\SystemSetupInProgress SUCCESS Type: REG_DWORD, Length: 4, Data: 0 98 12:38:54,7128985 MCLauncher.exe 6080 RegCloseKey HKLM\SYSTEM\Setup SUCCESS 98 12:38:54,7129038 MCLauncher.exe 6080 RegQueryValue HKLM\System\CurrentControlSet\Services\Dnscache\Parameters\DnsQueryTimeouts NAME NOT FOUND Length: 144 98 12:38:54,7129148 MCLauncher.exe 6080 RegQueryValue HKLM\System\CurrentControlSet\Services\Tcpip\Parameters\DnsQueryTimeouts NAME NOT FOUND Length: 144 98 12:38:54,7129257 MCLauncher.exe 6080 RegQueryValue HKLM\System\CurrentControlSet\Services\Dnscache\Parameters\DnsQuickQueryTimeouts NAME NOT FOUND Length: 144 98 12:38:54,7129359 MCLauncher.exe 6080 RegQueryValue HKLM\System\CurrentControlSet\Services\Tcpip\Parameters\DnsQuickQueryTimeouts NAME NOT FOUND Length: 144 98 12:38:54,7129470 MCLauncher.exe 6080 RegCloseKey HKLM\System\CurrentControlSet\Services\Tcpip\Parameters SUCCESS 98 12:38:54,7129511 MCLauncher.exe 6080 RegCloseKey HKLM\System\CurrentControlSet\Services\Dnscache\Parameters SUCCESS 98 12:38:54,7134820 MCLauncher.exe 6080 CreateFile C:\Windows\SysWOW64\FWPUCLNT.DLL SUCCESS Desired Access: Read Attributes, Disposition: Open, Options: Open Reparse Point, Attributes: n/a, ShareMode: Read, Write, Delete, AllocationSize: n/a, OpenResult: Opened 98 12:38:54,7135119 MCLauncher.exe 6080 QueryBasicInformationFile C:\Windows\SysWOW64\FWPUCLNT.DLL SUCCESS CreationTime: 16.07.2016 14:42:55, LastAccessTime: 16.07.2016 14:42:55, LastWriteTime: 16.07.2016 14:42:55, ChangeTime: 20.07.2018 2:17:48, FileAttributes: A 98 12:38:54,7135205 MCLauncher.exe 6080 CloseFile C:\Windows\SysWOW64\FWPUCLNT.DLL SUCCESS 98 12:38:54,7136222 MCLauncher.exe 6080 CreateFile C:\Windows\SysWOW64\FWPUCLNT.DLL SUCCESS Desired Access: Read Data/List Directory, Execute/Traverse, Synchronize, Disposition: Open, Options: Synchronous IO Non-Alert, Non-Directory File, Attributes: n/a, ShareMode: Read, Delete, AllocationSize: n/a, OpenResult: Opened 98 12:38:54,7136507 MCLauncher.exe 6080 CreateFileMapping C:\Windows\SysWOW64\FWPUCLNT.DLL FILE LOCKED WITH ONLY READERS SyncType: SyncTypeCreateSection, PageProtection: PAGE_EXECUTE|PAGE_NOCACHE 98 12:38:54,7136632 MCLauncher.exe 6080 QueryNameInformationFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Name: \Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe 98 12:38:54,7137524 MCLauncher.exe 6080 CreateFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Desired Access: Synchronize, Disposition: Open, Options: Synchronous IO Non-Alert, Attributes: N, ShareMode: Read, Write, Delete, AllocationSize: n/a, OpenResult: Opened 98 12:38:54,7137712 MCLauncher.exe 6080 CloseFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS 98 12:38:54,7138003 MCLauncher.exe 6080 QueryNameInformationFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Name: \Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe 98 12:38:54,7138868 MCLauncher.exe 6080 CreateFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Desired Access: Synchronize, Disposition: Open, Options: Synchronous IO Non-Alert, Attributes: N, ShareMode: Read, Write, Delete, AllocationSize: n/a, OpenResult: Opened 98 12:38:54,7139042 MCLauncher.exe 6080 CloseFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS 98 12:38:54,7139710 MCLauncher.exe 6080 CreateFileMapping C:\Windows\SysWOW64\FWPUCLNT.DLL SUCCESS SyncType: SyncTypeOther 98 12:38:54,7140137 MCLauncher.exe 6080 Load Image C:\Windows\SysWOW64\FWPUCLNT.DLL SUCCESS Image Base: 0x73a50000, Image Size: 0x49000 98 12:38:54,7141200 MCLauncher.exe 6080 CloseFile C:\Windows\SysWOW64\FWPUCLNT.DLL SUCCESS 98 12:38:54,7142361 MCLauncher.exe 6080 CreateFile C:\Windows\SysWOW64\FWPUCLNT.DLL SUCCESS Desired Access: Read Control, Disposition: Open, Options: , Attributes: n/a, ShareMode: Read, Delete, AllocationSize: n/a, OpenResult: Opened 98 12:38:54,7142641 MCLauncher.exe 6080 QuerySecurityFile C:\Windows\SysWOW64\FWPUCLNT.DLL BUFFER OVERFLOW Information: Owner 98 12:38:54,7142721 MCLauncher.exe 6080 QuerySecurityFile C:\Windows\SysWOW64\FWPUCLNT.DLL SUCCESS Information: Owner 98 12:38:54,7142788 MCLauncher.exe 6080 CloseFile C:\Windows\SysWOW64\FWPUCLNT.DLL SUCCESS 98 12:38:54,7145329 MCLauncher.exe 6080 RegOpenKey HKLM\Software\WOW6432Node\Policies\Microsoft\MUI\Settings REPARSE Desired Access: Read 98 12:38:54,7145437 MCLauncher.exe 6080 RegOpenKey HKLM\SOFTWARE\Policies\Microsoft\MUI\Settings NAME NOT FOUND Desired Access: Read 98 12:38:54,7145633 MCLauncher.exe 6080 RegOpenKey HKCU SUCCESS Desired Access: Maximum Allowed, Granted Access: All Access 98 12:38:54,7145816 MCLauncher.exe 6080 RegQueryKey HKCU SUCCESS Query: HandleTags, HandleTags: 0x0 98 12:38:54,7145905 MCLauncher.exe 6080 RegQueryKey HKCU SUCCESS Query: Name 98 12:38:54,7145991 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Policies\Microsoft\Control Panel\Desktop NAME NOT FOUND Desired Access: Read 98 12:38:54,7146154 MCLauncher.exe 6080 RegQueryKey HKCU SUCCESS Query: HandleTags, HandleTags: 0x0 98 12:38:54,7146232 MCLauncher.exe 6080 RegQueryKey HKCU SUCCESS Query: Name 98 12:38:54,7146307 MCLauncher.exe 6080 RegOpenKey HKCU\Control Panel\Desktop SUCCESS Desired Access: Read 98 12:38:54,7146448 MCLauncher.exe 6080 RegSetInfoKey HKCU\Control Panel\Desktop SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 98 12:38:54,7146506 MCLauncher.exe 6080 RegQueryValue HKCU\Control Panel\Desktop\PreferredUILanguages NAME NOT FOUND Length: 12 98 12:38:54,7146692 MCLauncher.exe 6080 RegCloseKey HKCU\Control Panel\Desktop SUCCESS 98 12:38:54,7146742 MCLauncher.exe 6080 RegCloseKey HKCU SUCCESS 98 12:38:54,7146863 MCLauncher.exe 6080 RegOpenKey HKLM\Software\WOW6432Node\Policies\Microsoft\MUI\Settings REPARSE Desired Access: Read 98 12:38:54,7146935 MCLauncher.exe 6080 RegOpenKey HKLM\SOFTWARE\Policies\Microsoft\MUI\Settings NAME NOT FOUND Desired Access: Read 98 12:38:54,7147091 MCLauncher.exe 6080 RegOpenKey HKCU SUCCESS Desired Access: Maximum Allowed, Granted Access: All Access 98 12:38:54,7147229 MCLauncher.exe 6080 RegQueryKey HKCU SUCCESS Query: HandleTags, HandleTags: 0x0 98 12:38:54,7147307 MCLauncher.exe 6080 RegQueryKey HKCU SUCCESS Query: Name 98 12:38:54,7147384 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Policies\Microsoft\Control Panel\Desktop NAME NOT FOUND Desired Access: Read 98 12:38:54,7147515 MCLauncher.exe 6080 RegQueryKey HKCU SUCCESS Query: HandleTags, HandleTags: 0x0 98 12:38:54,7147592 MCLauncher.exe 6080 RegQueryKey HKCU SUCCESS Query: Name 98 12:38:54,7147664 MCLauncher.exe 6080 RegOpenKey HKCU\Control Panel\Desktop\LanguageConfiguration SUCCESS Desired Access: Read 98 12:38:54,7147786 MCLauncher.exe 6080 RegSetInfoKey HKCU\Control Panel\Desktop\LanguageConfiguration SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 98 12:38:54,7147839 MCLauncher.exe 6080 RegEnumValue HKCU\Control Panel\Desktop\LanguageConfiguration NO MORE ENTRIES Index: 0, Length: 512 98 12:38:54,7147902 MCLauncher.exe 6080 RegCloseKey HKCU\Control Panel\Desktop\LanguageConfiguration SUCCESS 98 12:38:54,7147947 MCLauncher.exe 6080 RegCloseKey HKCU SUCCESS 98 12:38:54,7153912 MCLauncher.exe 6080 Thread Create SUCCESS Thread ID: 12232 98 12:38:54,7525391 MCLauncher.exe 6080 QueryInformationVolume C:\Users\User\AppData\Roaming\MCLauncher\font.ttf BUFFER OVERFLOW VolumeCreationTime: 19.07.2018 19:30:42, VolumeSerialNumber: B6D8-C2CA, SupportsObjects: True, VolumeLabel: Winb 98 12:38:54,7525538 MCLauncher.exe 6080 QueryAllInformationFile C:\Users\User\AppData\Roaming\MCLauncher\font.ttf BUFFER OVERFLOW CreationTime: 24.08.2018 12:30:32, LastAccessTime: 24.08.2018 12:30:32, LastWriteTime: 24.08.2018 12:30:32, ChangeTime: 24.08.2018 12:30:32, FileAttributes: A, AllocationSize: 188 416, EndOfFile: 184 608, NumberOfLinks: 1, DeletePending: False, Directory: False, IndexNumber: 0x1700000002037f, EaSize: 0, Access: Generic Read, Position: 184 608, Mode: Synchronous IO Non-Alert, AlignmentRequirement: Word 98 12:38:54,7525738 MCLauncher.exe 6080 CloseFile C:\Users\User\AppData\Roaming\MCLauncher\font.ttf SUCCESS 98 12:38:54,7782219 MCLauncher.exe 6080 TCP Connect WIN-0UOTFKKVN1S:54030 -> 104.31.12.175:http SUCCESS Length: 0, mss: 1460, sackopt: 0, tsopt: 0, wsopt: 0, rcvwin: 64240, rcvwinscale: 0, sndwinscale: 0, seqnum: 0, connid: 0 98 12:38:54,7787539 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54030 -> 104.31.12.175:http SUCCESS Length: 255, startime: 40858746, endtime: 40858746, seqnum: 0, connid: 0 98 12:38:54,8037546 MCLauncher.exe 6080 TCP Connect WIN-0UOTFKKVN1S:54028 -> fr.cloudtree.ru:https SUCCESS Length: 0, mss: 1460, sackopt: 0, tsopt: 0, wsopt: 0, rcvwin: 64240, rcvwinscale: 0, sndwinscale: 0, seqnum: 0, connid: 0 98 12:38:54,8037884 MCLauncher.exe 6080 TCP Connect WIN-0UOTFKKVN1S:54027 -> fr.cloudtree.ru:https SUCCESS Length: 0, mss: 1460, sackopt: 0, tsopt: 0, wsopt: 0, rcvwin: 64240, rcvwinscale: 0, sndwinscale: 0, seqnum: 0, connid: 0 98 12:38:54,8039278 MCLauncher.exe 6080 TCP Connect WIN-0UOTFKKVN1S:54029 -> fr.cloudtree.ru:https SUCCESS Length: 0, mss: 1460, sackopt: 0, tsopt: 0, wsopt: 0, rcvwin: 64240, rcvwinscale: 0, sndwinscale: 0, seqnum: 0, connid: 0 98 12:38:54,8043783 MCLauncher.exe 6080 RegOpenKey HKLM\Software\WOW6432Node\Policies\Microsoft\MUI\Settings REPARSE Desired Access: Read 98 12:38:54,8043982 MCLauncher.exe 6080 RegOpenKey HKLM\SOFTWARE\Policies\Microsoft\MUI\Settings NAME NOT FOUND Desired Access: Read 98 12:38:54,8044237 MCLauncher.exe 6080 RegOpenKey HKCU SUCCESS Desired Access: Maximum Allowed, Granted Access: All Access 98 12:38:54,8044470 MCLauncher.exe 6080 RegQueryKey HKCU SUCCESS Query: HandleTags, HandleTags: 0x0 98 12:38:54,8044558 MCLauncher.exe 6080 RegQueryKey HKCU SUCCESS Query: Name 98 12:38:54,8044641 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Policies\Microsoft\Control Panel\Desktop NAME NOT FOUND Desired Access: Read 98 12:38:54,8044810 MCLauncher.exe 6080 RegQueryKey HKCU SUCCESS Query: HandleTags, HandleTags: 0x0 98 12:38:54,8044880 MCLauncher.exe 6080 RegQueryKey HKCU SUCCESS Query: Name 98 12:38:54,8044954 MCLauncher.exe 6080 RegOpenKey HKCU\Control Panel\Desktop SUCCESS Desired Access: Read 98 12:38:54,8045101 MCLauncher.exe 6080 RegSetInfoKey HKCU\Control Panel\Desktop SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 98 12:38:54,8045162 MCLauncher.exe 6080 RegQueryValue HKCU\Control Panel\Desktop\PreferredUILanguages NAME NOT FOUND Length: 12 98 12:38:54,8045359 MCLauncher.exe 6080 RegCloseKey HKCU\Control Panel\Desktop SUCCESS 98 12:38:54,8045409 MCLauncher.exe 6080 RegCloseKey HKCU SUCCESS 98 12:38:54,8045525 MCLauncher.exe 6080 RegOpenKey HKLM\Software\WOW6432Node\Policies\Microsoft\MUI\Settings REPARSE Desired Access: Read 98 12:38:54,8045597 MCLauncher.exe 6080 RegOpenKey HKLM\SOFTWARE\Policies\Microsoft\MUI\Settings NAME NOT FOUND Desired Access: Read 98 12:38:54,8045744 MCLauncher.exe 6080 RegOpenKey HKCU SUCCESS Desired Access: Maximum Allowed, Granted Access: All Access 98 12:38:54,8045877 MCLauncher.exe 6080 RegQueryKey HKCU SUCCESS Query: HandleTags, HandleTags: 0x0 98 12:38:54,8045952 MCLauncher.exe 6080 RegQueryKey HKCU SUCCESS Query: Name 98 12:38:54,8046024 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Policies\Microsoft\Control Panel\Desktop NAME NOT FOUND Desired Access: Read 98 12:38:54,8046151 MCLauncher.exe 6080 RegQueryKey HKCU SUCCESS Query: HandleTags, HandleTags: 0x0 98 12:38:54,8046218 MCLauncher.exe 6080 RegQueryKey HKCU SUCCESS Query: Name 98 12:38:54,8046287 MCLauncher.exe 6080 RegOpenKey HKCU\Control Panel\Desktop\LanguageConfiguration SUCCESS Desired Access: Read 98 12:38:54,8046403 MCLauncher.exe 6080 RegSetInfoKey HKCU\Control Panel\Desktop\LanguageConfiguration SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 98 12:38:54,8046456 MCLauncher.exe 6080 RegEnumValue HKCU\Control Panel\Desktop\LanguageConfiguration NO MORE ENTRIES Index: 0, Length: 512 98 12:38:54,8046667 MCLauncher.exe 6080 RegCloseKey HKCU\Control Panel\Desktop\LanguageConfiguration SUCCESS 98 12:38:54,8046711 MCLauncher.exe 6080 RegCloseKey HKCU SUCCESS 98 12:38:54,8053829 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54028 -> fr.cloudtree.ru:https SUCCESS Length: 517, startime: 40858749, endtime: 40858749, seqnum: 0, connid: 0 98 12:38:54,8060957 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54027 -> fr.cloudtree.ru:https SUCCESS Length: 517, startime: 40858749, endtime: 40858749, seqnum: 0, connid: 0 98 12:38:54,8066881 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54029 -> fr.cloudtree.ru:https SUCCESS Length: 517, startime: 40858749, endtime: 40858749, seqnum: 0, connid: 0 98 12:38:54,8109531 MCLauncher.exe 6080 RegOpenKey HKLM\Software\Policies\Microsoft\Windows\Control Panel\Desktop NAME NOT FOUND Desired Access: Read 98 12:38:54,8109835 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Policies\Microsoft\Windows\Control Panel\Desktop NAME NOT FOUND Desired Access: Read 98 12:38:54,8112905 MCLauncher.exe 6080 RegOpenKey HKLM\Software\Policies\Microsoft\Windows\Control Panel\Desktop NAME NOT FOUND Desired Access: Read 98 12:38:54,8113096 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Policies\Microsoft\Windows\Control Panel\Desktop NAME NOT FOUND Desired Access: Read 98 12:38:54,8114013 MCLauncher.exe 6080 RegOpenKey HKLM\Software\Policies\Microsoft\Windows\Control Panel\Desktop NAME NOT FOUND Desired Access: Read 98 12:38:54,8114146 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Policies\Microsoft\Windows\Control Panel\Desktop NAME NOT FOUND Desired Access: Read 98 12:38:54,8116205 MCLauncher.exe 6080 RegOpenKey HKLM\Software\Policies\Microsoft\Windows\Control Panel\Desktop NAME NOT FOUND Desired Access: Read 98 12:38:54,8116341 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Policies\Microsoft\Windows\Control Panel\Desktop NAME NOT FOUND Desired Access: Read 98 12:38:54,8117147 MCLauncher.exe 6080 RegOpenKey HKLM\Software\Policies\Microsoft\Windows\Control Panel\Desktop NAME NOT FOUND Desired Access: Read 98 12:38:54,8117272 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Policies\Microsoft\Windows\Control Panel\Desktop NAME NOT FOUND Desired Access: Read 98 12:38:54,8118903 MCLauncher.exe 6080 RegOpenKey HKLM\Software\Policies\Microsoft\Windows\Control Panel\Desktop NAME NOT FOUND Desired Access: Read 98 12:38:54,8119034 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Policies\Microsoft\Windows\Control Panel\Desktop NAME NOT FOUND Desired Access: Read 98 12:38:54,8119710 MCLauncher.exe 6080 RegOpenKey HKLM\Software\Policies\Microsoft\Windows\Control Panel\Desktop NAME NOT FOUND Desired Access: Read 98 12:38:54,8119829 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Policies\Microsoft\Windows\Control Panel\Desktop NAME NOT FOUND Desired Access: Read 98 12:38:54,8121558 MCLauncher.exe 6080 RegOpenKey HKLM\Software\Policies\Microsoft\Windows\Control Panel\Desktop NAME NOT FOUND Desired Access: Read 98 12:38:54,8121688 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Policies\Microsoft\Windows\Control Panel\Desktop NAME NOT FOUND Desired Access: Read 98 12:38:54,8122347 MCLauncher.exe 6080 RegOpenKey HKLM\Software\Policies\Microsoft\Windows\Control Panel\Desktop NAME NOT FOUND Desired Access: Read 98 12:38:54,8122469 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Policies\Microsoft\Windows\Control Panel\Desktop NAME NOT FOUND Desired Access: Read 98 12:38:54,8124309 MCLauncher.exe 6080 RegOpenKey HKLM\Software\Policies\Microsoft\Windows\Control Panel\Desktop NAME NOT FOUND Desired Access: Read 98 12:38:54,8124470 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Policies\Microsoft\Windows\Control Panel\Desktop NAME NOT FOUND Desired Access: Read 98 12:38:54,8125201 MCLauncher.exe 6080 RegOpenKey HKLM\Software\Policies\Microsoft\Windows\Control Panel\Desktop NAME NOT FOUND Desired Access: Read 98 12:38:54,8125345 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Policies\Microsoft\Windows\Control Panel\Desktop NAME NOT FOUND Desired Access: Read 98 12:38:54,8127168 MCLauncher.exe 6080 RegOpenKey HKLM\Software\Policies\Microsoft\Windows\Control Panel\Desktop NAME NOT FOUND Desired Access: Read 98 12:38:54,8127323 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Policies\Microsoft\Windows\Control Panel\Desktop NAME NOT FOUND Desired Access: Read 98 12:38:54,8128088 MCLauncher.exe 6080 RegOpenKey HKLM\Software\Policies\Microsoft\Windows\Control Panel\Desktop NAME NOT FOUND Desired Access: Read 98 12:38:54,8128218 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Policies\Microsoft\Windows\Control Panel\Desktop NAME NOT FOUND Desired Access: Read 98 12:38:54,8129772 MCLauncher.exe 6080 RegOpenKey HKLM\Software\Policies\Microsoft\Windows\Control Panel\Desktop NAME NOT FOUND Desired Access: Read 98 12:38:54,8129908 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Policies\Microsoft\Windows\Control Panel\Desktop NAME NOT FOUND Desired Access: Read 98 12:38:54,8130598 MCLauncher.exe 6080 RegOpenKey HKLM\Software\Policies\Microsoft\Windows\Control Panel\Desktop NAME NOT FOUND Desired Access: Read 98 12:38:54,8130720 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Policies\Microsoft\Windows\Control Panel\Desktop NAME NOT FOUND Desired Access: Read 98 12:38:54,8132310 MCLauncher.exe 6080 RegOpenKey HKLM\Software\Policies\Microsoft\Windows\Control Panel\Desktop NAME NOT FOUND Desired Access: Read 98 12:38:54,8132438 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Policies\Microsoft\Windows\Control Panel\Desktop NAME NOT FOUND Desired Access: Read 98 12:38:54,8133114 MCLauncher.exe 6080 RegOpenKey HKLM\Software\Policies\Microsoft\Windows\Control Panel\Desktop NAME NOT FOUND Desired Access: Read 98 12:38:54,8133236 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Policies\Microsoft\Windows\Control Panel\Desktop NAME NOT FOUND Desired Access: Read 98 12:38:54,8134837 MCLauncher.exe 6080 RegOpenKey HKLM\Software\Policies\Microsoft\Windows\Control Panel\Desktop NAME NOT FOUND Desired Access: Read 98 12:38:54,8134995 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Policies\Microsoft\Windows\Control Panel\Desktop NAME NOT FOUND Desired Access: Read 98 12:38:54,8144570 MCLauncher.exe 6080 RegOpenKey HKLM\Software\Policies\Microsoft\Windows\Control Panel\Desktop NAME NOT FOUND Desired Access: Read 98 12:38:54,8144767 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Policies\Microsoft\Windows\Control Panel\Desktop NAME NOT FOUND Desired Access: Read 98 12:38:54,8147274 MCLauncher.exe 6080 RegOpenKey HKLM\Software\Policies\Microsoft\Windows\Control Panel\Desktop NAME NOT FOUND Desired Access: Read 98 12:38:54,8147451 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Policies\Microsoft\Windows\Control Panel\Desktop NAME NOT FOUND Desired Access: Read 98 12:38:54,8148330 MCLauncher.exe 6080 RegOpenKey HKLM\Software\Policies\Microsoft\Windows\Control Panel\Desktop NAME NOT FOUND Desired Access: Read 98 12:38:54,8148488 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Policies\Microsoft\Windows\Control Panel\Desktop NAME NOT FOUND Desired Access: Read 98 12:38:54,8150305 MCLauncher.exe 6080 RegOpenKey HKLM\Software\Policies\Microsoft\Windows\Control Panel\Desktop NAME NOT FOUND Desired Access: Read 98 12:38:54,8150463 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Policies\Microsoft\Windows\Control Panel\Desktop NAME NOT FOUND Desired Access: Read 98 12:38:54,8151164 MCLauncher.exe 6080 RegOpenKey HKLM\Software\Policies\Microsoft\Windows\Control Panel\Desktop NAME NOT FOUND Desired Access: Read 98 12:38:54,8151336 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Policies\Microsoft\Windows\Control Panel\Desktop NAME NOT FOUND Desired Access: Read 98 12:38:54,8153275 MCLauncher.exe 6080 RegOpenKey HKLM\Software\Policies\Microsoft\Windows\Control Panel\Desktop NAME NOT FOUND Desired Access: Read 98 12:38:54,8153439 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Policies\Microsoft\Windows\Control Panel\Desktop NAME NOT FOUND Desired Access: Read 98 12:38:54,8154164 MCLauncher.exe 6080 RegOpenKey HKLM\Software\Policies\Microsoft\Windows\Control Panel\Desktop NAME NOT FOUND Desired Access: Read 98 12:38:54,8154311 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Policies\Microsoft\Windows\Control Panel\Desktop NAME NOT FOUND Desired Access: Read 98 12:38:54,8156325 MCLauncher.exe 6080 RegOpenKey HKLM\Software\Policies\Microsoft\Windows\Control Panel\Desktop NAME NOT FOUND Desired Access: Read 98 12:38:54,8156486 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Policies\Microsoft\Windows\Control Panel\Desktop NAME NOT FOUND Desired Access: Read 98 12:38:54,8157187 MCLauncher.exe 6080 RegOpenKey HKLM\Software\Policies\Microsoft\Windows\Control Panel\Desktop NAME NOT FOUND Desired Access: Read 98 12:38:54,8157334 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Policies\Microsoft\Windows\Control Panel\Desktop NAME NOT FOUND Desired Access: Read 98 12:38:54,8159162 MCLauncher.exe 6080 RegOpenKey HKLM\Software\Policies\Microsoft\Windows\Control Panel\Desktop NAME NOT FOUND Desired Access: Read 98 12:38:54,8159309 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Policies\Microsoft\Windows\Control Panel\Desktop NAME NOT FOUND Desired Access: Read 98 12:38:54,8159969 MCLauncher.exe 6080 RegOpenKey HKLM\Software\Policies\Microsoft\Windows\Control Panel\Desktop NAME NOT FOUND Desired Access: Read 98 12:38:54,8160091 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Policies\Microsoft\Windows\Control Panel\Desktop NAME NOT FOUND Desired Access: Read 98 12:38:54,8161686 MCLauncher.exe 6080 RegOpenKey HKLM\Software\Policies\Microsoft\Windows\Control Panel\Desktop NAME NOT FOUND Desired Access: Read 98 12:38:54,8161819 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Policies\Microsoft\Windows\Control Panel\Desktop NAME NOT FOUND Desired Access: Read 98 12:38:54,8162451 MCLauncher.exe 6080 RegOpenKey HKLM\Software\Policies\Microsoft\Windows\Control Panel\Desktop NAME NOT FOUND Desired Access: Read 98 12:38:54,8162573 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Policies\Microsoft\Windows\Control Panel\Desktop NAME NOT FOUND Desired Access: Read 98 12:38:54,8164030 MCLauncher.exe 6080 RegOpenKey HKLM\Software\Policies\Microsoft\Windows\Control Panel\Desktop NAME NOT FOUND Desired Access: Read 98 12:38:54,8164163 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Policies\Microsoft\Windows\Control Panel\Desktop NAME NOT FOUND Desired Access: Read 98 12:38:54,8164831 MCLauncher.exe 6080 RegOpenKey HKLM\Software\Policies\Microsoft\Windows\Control Panel\Desktop NAME NOT FOUND Desired Access: Read 98 12:38:54,8165069 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Policies\Microsoft\Windows\Control Panel\Desktop NAME NOT FOUND Desired Access: Read 98 12:38:54,8166740 MCLauncher.exe 6080 RegOpenKey HKLM\Software\Policies\Microsoft\Windows\Control Panel\Desktop NAME NOT FOUND Desired Access: Read 98 12:38:54,8166876 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Policies\Microsoft\Windows\Control Panel\Desktop NAME NOT FOUND Desired Access: Read 98 12:38:54,8167535 MCLauncher.exe 6080 RegOpenKey HKLM\Software\Policies\Microsoft\Windows\Control Panel\Desktop NAME NOT FOUND Desired Access: Read 98 12:38:54,8167657 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Policies\Microsoft\Windows\Control Panel\Desktop NAME NOT FOUND Desired Access: Read 98 12:38:54,8169206 MCLauncher.exe 6080 RegOpenKey HKLM\Software\Policies\Microsoft\Windows\Control Panel\Desktop NAME NOT FOUND Desired Access: Read 98 12:38:54,8169336 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Policies\Microsoft\Windows\Control Panel\Desktop NAME NOT FOUND Desired Access: Read 98 12:38:54,8169982 MCLauncher.exe 6080 RegOpenKey HKLM\Software\Policies\Microsoft\Windows\Control Panel\Desktop NAME NOT FOUND Desired Access: Read 98 12:38:54,8170106 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Policies\Microsoft\Windows\Control Panel\Desktop NAME NOT FOUND Desired Access: Read 98 12:38:54,8171796 MCLauncher.exe 6080 RegOpenKey HKLM\Software\Policies\Microsoft\Windows\Control Panel\Desktop NAME NOT FOUND Desired Access: Read 98 12:38:54,8171929 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Policies\Microsoft\Windows\Control Panel\Desktop NAME NOT FOUND Desired Access: Read 98 12:38:54,8172575 MCLauncher.exe 6080 RegOpenKey HKLM\Software\Policies\Microsoft\Windows\Control Panel\Desktop NAME NOT FOUND Desired Access: Read 98 12:38:54,8172694 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Policies\Microsoft\Windows\Control Panel\Desktop NAME NOT FOUND Desired Access: Read 98 12:38:54,8174209 MCLauncher.exe 6080 RegOpenKey HKLM\Software\Policies\Microsoft\Windows\Control Panel\Desktop NAME NOT FOUND Desired Access: Read 98 12:38:54,8174351 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Policies\Microsoft\Windows\Control Panel\Desktop NAME NOT FOUND Desired Access: Read 98 12:38:54,8175232 MCLauncher.exe 6080 RegOpenKey HKLM\Software\Policies\Microsoft\Windows\Control Panel\Desktop NAME NOT FOUND Desired Access: Read 98 12:38:54,8175379 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Policies\Microsoft\Windows\Control Panel\Desktop NAME NOT FOUND Desired Access: Read 98 12:38:54,8177166 MCLauncher.exe 6080 RegOpenKey HKLM\Software\Policies\Microsoft\Windows\Control Panel\Desktop NAME NOT FOUND Desired Access: Read 98 12:38:54,8177310 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Policies\Microsoft\Windows\Control Panel\Desktop NAME NOT FOUND Desired Access: Read 98 12:38:54,8178080 MCLauncher.exe 6080 RegOpenKey HKLM\Software\Policies\Microsoft\Windows\Control Panel\Desktop NAME NOT FOUND Desired Access: Read 98 12:38:54,8178218 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Policies\Microsoft\Windows\Control Panel\Desktop NAME NOT FOUND Desired Access: Read 98 12:38:54,8180149 MCLauncher.exe 6080 RegOpenKey HKLM\Software\Policies\Microsoft\Windows\Control Panel\Desktop NAME NOT FOUND Desired Access: Read 98 12:38:54,8180313 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Policies\Microsoft\Windows\Control Panel\Desktop NAME NOT FOUND Desired Access: Read 98 12:38:54,8190969 MCLauncher.exe 6080 RegOpenKey HKLM\Software\Policies\Microsoft\Windows\Control Panel\Desktop NAME NOT FOUND Desired Access: Read 98 12:38:54,8191132 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Policies\Microsoft\Windows\Control Panel\Desktop NAME NOT FOUND Desired Access: Read 98 12:38:54,8193191 MCLauncher.exe 6080 RegOpenKey HKLM\Software\Policies\Microsoft\Windows\Control Panel\Desktop NAME NOT FOUND Desired Access: Read 98 12:38:54,8193343 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Policies\Microsoft\Windows\Control Panel\Desktop NAME NOT FOUND Desired Access: Read 98 12:38:54,8194085 MCLauncher.exe 6080 RegOpenKey HKLM\Software\Policies\Microsoft\Windows\Control Panel\Desktop NAME NOT FOUND Desired Access: Read 98 12:38:54,8194224 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Policies\Microsoft\Windows\Control Panel\Desktop NAME NOT FOUND Desired Access: Read 98 12:38:54,8195908 MCLauncher.exe 6080 RegOpenKey HKLM\Software\Policies\Microsoft\Windows\Control Panel\Desktop NAME NOT FOUND Desired Access: Read 98 12:38:54,8196053 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Policies\Microsoft\Windows\Control Panel\Desktop NAME NOT FOUND Desired Access: Read 98 12:38:54,8196748 MCLauncher.exe 6080 RegOpenKey HKLM\Software\Policies\Microsoft\Windows\Control Panel\Desktop NAME NOT FOUND Desired Access: Read 98 12:38:54,8196900 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Policies\Microsoft\Windows\Control Panel\Desktop NAME NOT FOUND Desired Access: Read 98 12:38:54,8198610 MCLauncher.exe 6080 RegOpenKey HKLM\Software\Policies\Microsoft\Windows\Control Panel\Desktop NAME NOT FOUND Desired Access: Read 98 12:38:54,8198737 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Policies\Microsoft\Windows\Control Panel\Desktop NAME NOT FOUND Desired Access: Read 98 12:38:54,8199399 MCLauncher.exe 6080 RegOpenKey HKLM\Software\Policies\Microsoft\Windows\Control Panel\Desktop NAME NOT FOUND Desired Access: Read 98 12:38:54,8199518 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Policies\Microsoft\Windows\Control Panel\Desktop NAME NOT FOUND Desired Access: Read 98 12:38:54,8201231 MCLauncher.exe 6080 RegOpenKey HKLM\Software\Policies\Microsoft\Windows\Control Panel\Desktop NAME NOT FOUND Desired Access: Read 98 12:38:54,8201380 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Policies\Microsoft\Windows\Control Panel\Desktop NAME NOT FOUND Desired Access: Read 98 12:38:54,8202123 MCLauncher.exe 6080 RegOpenKey HKLM\Software\Policies\Microsoft\Windows\Control Panel\Desktop NAME NOT FOUND Desired Access: Read 98 12:38:54,8202261 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Policies\Microsoft\Windows\Control Panel\Desktop NAME NOT FOUND Desired Access: Read 98 12:38:54,8203987 MCLauncher.exe 6080 RegOpenKey HKLM\Software\Policies\Microsoft\Windows\Control Panel\Desktop NAME NOT FOUND Desired Access: Read 98 12:38:54,8204131 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Policies\Microsoft\Windows\Control Panel\Desktop NAME NOT FOUND Desired Access: Read 98 12:38:54,8205021 MCLauncher.exe 6080 RegOpenKey HKLM\Software\Policies\Microsoft\Windows\Control Panel\Desktop NAME NOT FOUND Desired Access: Read 98 12:38:54,8205162 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Policies\Microsoft\Windows\Control Panel\Desktop NAME NOT FOUND Desired Access: Read 98 12:38:54,8207162 MCLauncher.exe 6080 RegOpenKey HKLM\Software\Policies\Microsoft\Windows\Control Panel\Desktop NAME NOT FOUND Desired Access: Read 98 12:38:54,8207312 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Policies\Microsoft\Windows\Control Panel\Desktop NAME NOT FOUND Desired Access: Read 98 12:38:54,8208088 MCLauncher.exe 6080 RegOpenKey HKLM\Software\Policies\Microsoft\Windows\Control Panel\Desktop NAME NOT FOUND Desired Access: Read 98 12:38:54,8208232 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Policies\Microsoft\Windows\Control Panel\Desktop NAME NOT FOUND Desired Access: Read 98 12:38:54,8209997 MCLauncher.exe 6080 RegOpenKey HKLM\Software\Policies\Microsoft\Windows\Control Panel\Desktop NAME NOT FOUND Desired Access: Read 98 12:38:54,8210160 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Policies\Microsoft\Windows\Control Panel\Desktop NAME NOT FOUND Desired Access: Read 98 12:38:54,8210939 MCLauncher.exe 6080 RegOpenKey HKLM\Software\Policies\Microsoft\Windows\Control Panel\Desktop NAME NOT FOUND Desired Access: Read 98 12:38:54,8211086 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Policies\Microsoft\Windows\Control Panel\Desktop NAME NOT FOUND Desired Access: Read 98 12:38:54,8212939 MCLauncher.exe 6080 RegOpenKey HKLM\Software\Policies\Microsoft\Windows\Control Panel\Desktop NAME NOT FOUND Desired Access: Read 98 12:38:54,8213105 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Policies\Microsoft\Windows\Control Panel\Desktop NAME NOT FOUND Desired Access: Read 98 12:38:54,8213878 MCLauncher.exe 6080 RegOpenKey HKLM\Software\Policies\Microsoft\Windows\Control Panel\Desktop NAME NOT FOUND Desired Access: Read 98 12:38:54,8214283 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Policies\Microsoft\Windows\Control Panel\Desktop NAME NOT FOUND Desired Access: Read 98 12:38:54,8216120 MCLauncher.exe 6080 RegOpenKey HKLM\Software\Policies\Microsoft\Windows\Control Panel\Desktop NAME NOT FOUND Desired Access: Read 98 12:38:54,8216261 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Policies\Microsoft\Windows\Control Panel\Desktop NAME NOT FOUND Desired Access: Read 98 12:38:54,8216951 MCLauncher.exe 6080 RegOpenKey HKLM\Software\Policies\Microsoft\Windows\Control Panel\Desktop NAME NOT FOUND Desired Access: Read 98 12:38:54,8217084 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Policies\Microsoft\Windows\Control Panel\Desktop NAME NOT FOUND Desired Access: Read 98 12:38:54,8218865 MCLauncher.exe 6080 RegOpenKey HKLM\Software\Policies\Microsoft\Windows\Control Panel\Desktop NAME NOT FOUND Desired Access: Read 98 12:38:54,8219015 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Policies\Microsoft\Windows\Control Panel\Desktop NAME NOT FOUND Desired Access: Read 98 12:38:54,8219721 MCLauncher.exe 6080 RegOpenKey HKLM\Software\Policies\Microsoft\Windows\Control Panel\Desktop NAME NOT FOUND Desired Access: Read 98 12:38:54,8219849 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Policies\Microsoft\Windows\Control Panel\Desktop NAME NOT FOUND Desired Access: Read 98 12:38:54,8221774 MCLauncher.exe 6080 RegOpenKey HKLM\Software\Policies\Microsoft\Windows\Control Panel\Desktop NAME NOT FOUND Desired Access: Read 98 12:38:54,8221932 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Policies\Microsoft\Windows\Control Panel\Desktop NAME NOT FOUND Desired Access: Read 98 12:38:54,8222672 MCLauncher.exe 6080 RegOpenKey HKLM\Software\Policies\Microsoft\Windows\Control Panel\Desktop NAME NOT FOUND Desired Access: Read 98 12:38:54,8222780 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Policies\Microsoft\Windows\Control Panel\Desktop NAME NOT FOUND Desired Access: Read 98 12:38:54,8224340 MCLauncher.exe 6080 RegOpenKey HKLM\Software\Policies\Microsoft\Windows\Control Panel\Desktop NAME NOT FOUND Desired Access: Read 98 12:38:54,8224445 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Policies\Microsoft\Windows\Control Panel\Desktop NAME NOT FOUND Desired Access: Read 98 12:38:54,8224980 MCLauncher.exe 6080 RegOpenKey HKLM\Software\Policies\Microsoft\Windows\Control Panel\Desktop NAME NOT FOUND Desired Access: Read 98 12:38:54,8225071 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Policies\Microsoft\Windows\Control Panel\Desktop NAME NOT FOUND Desired Access: Read 98 12:38:54,8226279 MCLauncher.exe 6080 RegOpenKey HKLM\Software\Policies\Microsoft\Windows\Control Panel\Desktop NAME NOT FOUND Desired Access: Read 98 12:38:54,8226374 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Policies\Microsoft\Windows\Control Panel\Desktop NAME NOT FOUND Desired Access: Read 98 12:38:54,8227997 MCLauncher.exe 6080 RegOpenKey HKLM\Software\Policies\Microsoft\Windows\Control Panel\Desktop NAME NOT FOUND Desired Access: Read 98 12:38:54,8228097 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Policies\Microsoft\Windows\Control Panel\Desktop NAME NOT FOUND Desired Access: Read 98 12:38:54,8229324 MCLauncher.exe 6080 RegOpenKey HKLM\Software\Policies\Microsoft\Windows\Control Panel\Desktop NAME NOT FOUND Desired Access: Read 98 12:38:54,8229421 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Policies\Microsoft\Windows\Control Panel\Desktop NAME NOT FOUND Desired Access: Read 98 12:38:54,8229942 MCLauncher.exe 6080 RegOpenKey HKLM\Software\Policies\Microsoft\Windows\Control Panel\Desktop NAME NOT FOUND Desired Access: Read 98 12:38:54,8230031 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Policies\Microsoft\Windows\Control Panel\Desktop NAME NOT FOUND Desired Access: Read 98 12:38:54,8231250 MCLauncher.exe 6080 RegOpenKey HKLM\Software\Policies\Microsoft\Windows\Control Panel\Desktop NAME NOT FOUND Desired Access: Read 98 12:38:54,8231344 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Policies\Microsoft\Windows\Control Panel\Desktop NAME NOT FOUND Desired Access: Read 98 12:38:54,8231873 MCLauncher.exe 6080 RegOpenKey HKLM\Software\Policies\Microsoft\Windows\Control Panel\Desktop NAME NOT FOUND Desired Access: Read 98 12:38:54,8231962 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Policies\Microsoft\Windows\Control Panel\Desktop NAME NOT FOUND Desired Access: Read 98 12:38:54,8233416 MCLauncher.exe 6080 RegOpenKey HKLM\Software\Policies\Microsoft\Windows\Control Panel\Desktop NAME NOT FOUND Desired Access: Read 98 12:38:54,8233574 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Policies\Microsoft\Windows\Control Panel\Desktop NAME NOT FOUND Desired Access: Read 98 12:38:54,8241063 MCLauncher.exe 6080 RegOpenKey HKLM\Software\Policies\Microsoft\Windows\Control Panel\Desktop NAME NOT FOUND Desired Access: Read 98 12:38:54,8241193 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Policies\Microsoft\Windows\Control Panel\Desktop NAME NOT FOUND Desired Access: Read 98 12:38:54,8242443 MCLauncher.exe 6080 RegOpenKey HKLM\Software\Policies\Microsoft\Windows\Control Panel\Desktop NAME NOT FOUND Desired Access: Read 98 12:38:54,8242551 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Policies\Microsoft\Windows\Control Panel\Desktop NAME NOT FOUND Desired Access: Read 98 12:38:54,8243249 MCLauncher.exe 6080 RegOpenKey HKLM\Software\Policies\Microsoft\Windows\Control Panel\Desktop NAME NOT FOUND Desired Access: Read 98 12:38:54,8243363 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Policies\Microsoft\Windows\Control Panel\Desktop NAME NOT FOUND Desired Access: Read 98 12:38:54,8244598 MCLauncher.exe 6080 RegOpenKey HKLM\Software\Policies\Microsoft\Windows\Control Panel\Desktop NAME NOT FOUND Desired Access: Read 98 12:38:54,8244695 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Policies\Microsoft\Windows\Control Panel\Desktop NAME NOT FOUND Desired Access: Read 98 12:38:54,8245216 MCLauncher.exe 6080 RegOpenKey HKLM\Software\Policies\Microsoft\Windows\Control Panel\Desktop NAME NOT FOUND Desired Access: Read 98 12:38:54,8245305 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Policies\Microsoft\Windows\Control Panel\Desktop NAME NOT FOUND Desired Access: Read 98 12:38:54,8246491 MCLauncher.exe 6080 RegOpenKey HKLM\Software\Policies\Microsoft\Windows\Control Panel\Desktop NAME NOT FOUND Desired Access: Read 98 12:38:54,8246585 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Policies\Microsoft\Windows\Control Panel\Desktop NAME NOT FOUND Desired Access: Read 98 12:38:54,8247095 MCLauncher.exe 6080 RegOpenKey HKLM\Software\Policies\Microsoft\Windows\Control Panel\Desktop NAME NOT FOUND Desired Access: Read 98 12:38:54,8247183 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Policies\Microsoft\Windows\Control Panel\Desktop NAME NOT FOUND Desired Access: Read 98 12:38:54,8248555 MCLauncher.exe 6080 RegOpenKey HKLM\Software\Policies\Microsoft\Windows\Control Panel\Desktop NAME NOT FOUND Desired Access: Read 98 12:38:54,8248652 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Policies\Microsoft\Windows\Control Panel\Desktop NAME NOT FOUND Desired Access: Read 98 12:38:54,8249186 MCLauncher.exe 6080 RegOpenKey HKLM\Software\Policies\Microsoft\Windows\Control Panel\Desktop NAME NOT FOUND Desired Access: Read 98 12:38:54,8249275 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Policies\Microsoft\Windows\Control Panel\Desktop NAME NOT FOUND Desired Access: Read 98 12:38:54,8250450 MCLauncher.exe 6080 RegOpenKey HKLM\Software\Policies\Microsoft\Windows\Control Panel\Desktop NAME NOT FOUND Desired Access: Read 98 12:38:54,8250541 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Policies\Microsoft\Windows\Control Panel\Desktop NAME NOT FOUND Desired Access: Read 98 12:38:54,8251045 MCLauncher.exe 6080 RegOpenKey HKLM\Software\Policies\Microsoft\Windows\Control Panel\Desktop NAME NOT FOUND Desired Access: Read 98 12:38:54,8251134 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Policies\Microsoft\Windows\Control Panel\Desktop NAME NOT FOUND Desired Access: Read 98 12:38:54,8252517 MCLauncher.exe 6080 RegOpenKey HKLM\Software\Policies\Microsoft\Windows\Control Panel\Desktop NAME NOT FOUND Desired Access: Read 98 12:38:54,8252613 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Policies\Microsoft\Windows\Control Panel\Desktop NAME NOT FOUND Desired Access: Read 98 12:38:54,8253240 MCLauncher.exe 6080 RegOpenKey HKLM\Software\Policies\Microsoft\Windows\Control Panel\Desktop NAME NOT FOUND Desired Access: Read 98 12:38:54,8253331 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Policies\Microsoft\Windows\Control Panel\Desktop NAME NOT FOUND Desired Access: Read 98 12:38:54,8254567 MCLauncher.exe 6080 RegOpenKey HKLM\Software\Policies\Microsoft\Windows\Control Panel\Desktop NAME NOT FOUND Desired Access: Read 98 12:38:54,8254661 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Policies\Microsoft\Windows\Control Panel\Desktop NAME NOT FOUND Desired Access: Read 98 12:38:54,8259196 MCLauncher.exe 6080 RegOpenKey HKLM\Software\Policies\Microsoft\Windows\Control Panel\Desktop NAME NOT FOUND Desired Access: Read 98 12:38:54,8259321 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Policies\Microsoft\Windows\Control Panel\Desktop NAME NOT FOUND Desired Access: Read 98 12:38:54,8260532 MCLauncher.exe 6080 RegOpenKey HKLM\Software\Policies\Microsoft\Windows\Control Panel\Desktop NAME NOT FOUND Desired Access: Read 98 12:38:54,8260640 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Policies\Microsoft\Windows\Control Panel\Desktop NAME NOT FOUND Desired Access: Read 98 12:38:54,8263144 MCLauncher.exe 6080 RegOpenKey HKLM\Software\Policies\Microsoft\Windows\Control Panel\Desktop NAME NOT FOUND Desired Access: Read 98 12:38:54,8263255 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Policies\Microsoft\Windows\Control Panel\Desktop NAME NOT FOUND Desired Access: Read 98 12:38:54,8264455 MCLauncher.exe 6080 RegOpenKey HKLM\Software\Policies\Microsoft\Windows\Control Panel\Desktop NAME NOT FOUND Desired Access: Read 98 12:38:54,8264555 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Policies\Microsoft\Windows\Control Panel\Desktop NAME NOT FOUND Desired Access: Read 98 12:38:54,8265098 MCLauncher.exe 6080 RegOpenKey HKLM\Software\Policies\Microsoft\Windows\Control Panel\Desktop NAME NOT FOUND Desired Access: Read 98 12:38:54,8265192 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Policies\Microsoft\Windows\Control Panel\Desktop NAME NOT FOUND Desired Access: Read 98 12:38:54,8266455 MCLauncher.exe 6080 RegOpenKey HKLM\Software\Policies\Microsoft\Windows\Control Panel\Desktop NAME NOT FOUND Desired Access: Read 98 12:38:54,8266552 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Policies\Microsoft\Windows\Control Panel\Desktop NAME NOT FOUND Desired Access: Read 98 12:38:54,8267070 MCLauncher.exe 6080 RegOpenKey HKLM\Software\Policies\Microsoft\Windows\Control Panel\Desktop NAME NOT FOUND Desired Access: Read 98 12:38:54,8267159 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Policies\Microsoft\Windows\Control Panel\Desktop NAME NOT FOUND Desired Access: Read 98 12:38:54,8268469 MCLauncher.exe 6080 RegOpenKey HKLM\Software\Policies\Microsoft\Windows\Control Panel\Desktop NAME NOT FOUND Desired Access: Read 98 12:38:54,8268566 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Policies\Microsoft\Windows\Control Panel\Desktop NAME NOT FOUND Desired Access: Read 98 12:38:54,8271107 MCLauncher.exe 6080 RegOpenKey HKLM\Software\Policies\Microsoft\Windows\Control Panel\Desktop NAME NOT FOUND Desired Access: Read 98 12:38:54,8271215 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Policies\Microsoft\Windows\Control Panel\Desktop NAME NOT FOUND Desired Access: Read 98 12:38:54,8272370 MCLauncher.exe 6080 RegOpenKey HKLM\Software\Policies\Microsoft\Windows\Control Panel\Desktop NAME NOT FOUND Desired Access: Read 98 12:38:54,8272470 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Policies\Microsoft\Windows\Control Panel\Desktop NAME NOT FOUND Desired Access: Read 98 12:38:54,8273141 MCLauncher.exe 6080 RegOpenKey HKLM\Software\Policies\Microsoft\Windows\Control Panel\Desktop NAME NOT FOUND Desired Access: Read 98 12:38:54,8273232 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Policies\Microsoft\Windows\Control Panel\Desktop NAME NOT FOUND Desired Access: Read 98 12:38:54,8274581 MCLauncher.exe 6080 RegOpenKey HKLM\Software\Policies\Microsoft\Windows\Control Panel\Desktop NAME NOT FOUND Desired Access: Read 98 12:38:54,8274678 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Policies\Microsoft\Windows\Control Panel\Desktop NAME NOT FOUND Desired Access: Read 98 12:38:54,8275199 MCLauncher.exe 6080 RegOpenKey HKLM\Software\Policies\Microsoft\Windows\Control Panel\Desktop NAME NOT FOUND Desired Access: Read 98 12:38:54,8275285 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Policies\Microsoft\Windows\Control Panel\Desktop NAME NOT FOUND Desired Access: Read 98 12:38:54,8276573 MCLauncher.exe 6080 RegOpenKey HKLM\Software\Policies\Microsoft\Windows\Control Panel\Desktop NAME NOT FOUND Desired Access: Read 98 12:38:54,8276668 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Policies\Microsoft\Windows\Control Panel\Desktop NAME NOT FOUND Desired Access: Read 98 12:38:54,8277183 MCLauncher.exe 6080 RegOpenKey HKLM\Software\Policies\Microsoft\Windows\Control Panel\Desktop NAME NOT FOUND Desired Access: Read 98 12:38:54,8277274 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Policies\Microsoft\Windows\Control Panel\Desktop NAME NOT FOUND Desired Access: Read 98 12:38:54,8278518 MCLauncher.exe 6080 RegOpenKey HKLM\Software\Policies\Microsoft\Windows\Control Panel\Desktop NAME NOT FOUND Desired Access: Read 98 12:38:54,8278612 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Policies\Microsoft\Windows\Control Panel\Desktop NAME NOT FOUND Desired Access: Read 98 12:38:54,8285209 MCLauncher.exe 6080 RegOpenKey HKLM\Software\Policies\Microsoft\Windows\Control Panel\Desktop NAME NOT FOUND Desired Access: Read 98 12:38:54,8285342 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Policies\Microsoft\Windows\Control Panel\Desktop NAME NOT FOUND Desired Access: Read 98 12:38:54,8286542 MCLauncher.exe 6080 RegOpenKey HKLM\Software\Policies\Microsoft\Windows\Control Panel\Desktop NAME NOT FOUND Desired Access: Read 98 12:38:54,8286647 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Policies\Microsoft\Windows\Control Panel\Desktop NAME NOT FOUND Desired Access: Read 98 12:38:54,8287198 MCLauncher.exe 6080 RegOpenKey HKLM\Software\Policies\Microsoft\Windows\Control Panel\Desktop NAME NOT FOUND Desired Access: Read 98 12:38:54,8287290 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Policies\Microsoft\Windows\Control Panel\Desktop NAME NOT FOUND Desired Access: Read 98 12:38:54,8288606 MCLauncher.exe 6080 RegOpenKey HKLM\Software\Policies\Microsoft\Windows\Control Panel\Desktop NAME NOT FOUND Desired Access: Read 98 12:38:54,8288706 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Policies\Microsoft\Windows\Control Panel\Desktop NAME NOT FOUND Desired Access: Read 98 12:38:54,8289232 MCLauncher.exe 6080 RegOpenKey HKLM\Software\Policies\Microsoft\Windows\Control Panel\Desktop NAME NOT FOUND Desired Access: Read 98 12:38:54,8289321 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Policies\Microsoft\Windows\Control Panel\Desktop NAME NOT FOUND Desired Access: Read 98 12:38:54,8290498 MCLauncher.exe 6080 RegOpenKey HKLM\Software\Policies\Microsoft\Windows\Control Panel\Desktop NAME NOT FOUND Desired Access: Read 98 12:38:54,8290590 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Policies\Microsoft\Windows\Control Panel\Desktop NAME NOT FOUND Desired Access: Read 98 12:38:54,8291099 MCLauncher.exe 6080 RegOpenKey HKLM\Software\Policies\Microsoft\Windows\Control Panel\Desktop NAME NOT FOUND Desired Access: Read 98 12:38:54,8291188 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Policies\Microsoft\Windows\Control Panel\Desktop NAME NOT FOUND Desired Access: Read 98 12:38:54,8295058 MCLauncher.exe 6080 RegOpenKey HKLM\Software\Policies\Microsoft\Windows\Control Panel\Desktop NAME NOT FOUND Desired Access: Read 98 12:38:54,8295161 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Policies\Microsoft\Windows\Control Panel\Desktop NAME NOT FOUND Desired Access: Read 98 12:38:54,8295698 MCLauncher.exe 6080 RegOpenKey HKLM\Software\Policies\Microsoft\Windows\Control Panel\Desktop NAME NOT FOUND Desired Access: Read 98 12:38:54,8295787 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Policies\Microsoft\Windows\Control Panel\Desktop NAME NOT FOUND Desired Access: Read 98 12:38:54,8297078 MCLauncher.exe 6080 RegOpenKey HKLM\Software\Policies\Microsoft\Windows\Control Panel\Desktop NAME NOT FOUND Desired Access: Read 98 12:38:54,8297175 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Policies\Microsoft\Windows\Control Panel\Desktop NAME NOT FOUND Desired Access: Read 98 12:38:54,8297718 MCLauncher.exe 6080 RegOpenKey HKLM\Software\Policies\Microsoft\Windows\Control Panel\Desktop NAME NOT FOUND Desired Access: Read 98 12:38:54,8297807 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Policies\Microsoft\Windows\Control Panel\Desktop NAME NOT FOUND Desired Access: Read 98 12:38:54,8299092 MCLauncher.exe 6080 RegOpenKey HKLM\Software\Policies\Microsoft\Windows\Control Panel\Desktop NAME NOT FOUND Desired Access: Read 98 12:38:54,8299189 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Policies\Microsoft\Windows\Control Panel\Desktop NAME NOT FOUND Desired Access: Read 98 12:38:54,8299702 MCLauncher.exe 6080 RegOpenKey HKLM\Software\Policies\Microsoft\Windows\Control Panel\Desktop NAME NOT FOUND Desired Access: Read 98 12:38:54,8299791 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Policies\Microsoft\Windows\Control Panel\Desktop NAME NOT FOUND Desired Access: Read 98 12:38:54,8301176 MCLauncher.exe 6080 RegOpenKey HKLM\Software\Policies\Microsoft\Windows\Control Panel\Desktop NAME NOT FOUND Desired Access: Read 98 12:38:54,8301270 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Policies\Microsoft\Windows\Control Panel\Desktop NAME NOT FOUND Desired Access: Read 98 12:38:54,8301785 MCLauncher.exe 6080 RegOpenKey HKLM\Software\Policies\Microsoft\Windows\Control Panel\Desktop NAME NOT FOUND Desired Access: Read 98 12:38:54,8302026 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Policies\Microsoft\Windows\Control Panel\Desktop NAME NOT FOUND Desired Access: Read 98 12:38:54,8303603 MCLauncher.exe 6080 RegOpenKey HKLM\Software\Policies\Microsoft\Windows\Control Panel\Desktop NAME NOT FOUND Desired Access: Read 98 12:38:54,8303703 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Policies\Microsoft\Windows\Control Panel\Desktop NAME NOT FOUND Desired Access: Read 98 12:38:54,8304221 MCLauncher.exe 6080 RegOpenKey HKLM\Software\Policies\Microsoft\Windows\Control Panel\Desktop NAME NOT FOUND Desired Access: Read 98 12:38:54,8304312 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Policies\Microsoft\Windows\Control Panel\Desktop NAME NOT FOUND Desired Access: Read 98 12:38:54,8305537 MCLauncher.exe 6080 RegOpenKey HKLM\Software\Policies\Microsoft\Windows\Control Panel\Desktop NAME NOT FOUND Desired Access: Read 98 12:38:54,8305631 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Policies\Microsoft\Windows\Control Panel\Desktop NAME NOT FOUND Desired Access: Read 98 12:38:54,8306135 MCLauncher.exe 6080 RegOpenKey HKLM\Software\Policies\Microsoft\Windows\Control Panel\Desktop NAME NOT FOUND Desired Access: Read 98 12:38:54,8306224 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Policies\Microsoft\Windows\Control Panel\Desktop NAME NOT FOUND Desired Access: Read 98 12:38:54,8307482 MCLauncher.exe 6080 RegOpenKey HKLM\Software\Policies\Microsoft\Windows\Control Panel\Desktop NAME NOT FOUND Desired Access: Read 98 12:38:54,8307576 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Policies\Microsoft\Windows\Control Panel\Desktop NAME NOT FOUND Desired Access: Read 98 12:38:54,8308094 MCLauncher.exe 6080 RegOpenKey HKLM\Software\Policies\Microsoft\Windows\Control Panel\Desktop NAME NOT FOUND Desired Access: Read 98 12:38:54,8308183 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Policies\Microsoft\Windows\Control Panel\Desktop NAME NOT FOUND Desired Access: Read 98 12:38:54,8309385 MCLauncher.exe 6080 RegOpenKey HKLM\Software\Policies\Microsoft\Windows\Control Panel\Desktop NAME NOT FOUND Desired Access: Read 98 12:38:54,8309479 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Policies\Microsoft\Windows\Control Panel\Desktop NAME NOT FOUND Desired Access: Read 98 12:38:54,8309978 MCLauncher.exe 6080 RegOpenKey HKLM\Software\Policies\Microsoft\Windows\Control Panel\Desktop NAME NOT FOUND Desired Access: Read 98 12:38:54,8310064 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Policies\Microsoft\Windows\Control Panel\Desktop NAME NOT FOUND Desired Access: Read 98 12:38:54,8311236 MCLauncher.exe 6080 RegOpenKey HKLM\Software\Policies\Microsoft\Windows\Control Panel\Desktop NAME NOT FOUND Desired Access: Read 98 12:38:54,8311330 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Policies\Microsoft\Windows\Control Panel\Desktop NAME NOT FOUND Desired Access: Read 98 12:38:54,8315876 MCLauncher.exe 6080 RegOpenKey HKLM\Software\Policies\Microsoft\Windows\Control Panel\Desktop NAME NOT FOUND Desired Access: Read 98 12:38:54,8315993 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Policies\Microsoft\Windows\Control Panel\Desktop NAME NOT FOUND Desired Access: Read 98 12:38:54,8317248 MCLauncher.exe 6080 RegOpenKey HKLM\Software\Policies\Microsoft\Windows\Control Panel\Desktop NAME NOT FOUND Desired Access: Read 98 12:38:54,8317350 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Policies\Microsoft\Windows\Control Panel\Desktop NAME NOT FOUND Desired Access: Read 98 12:38:54,8319894 MCLauncher.exe 6080 RegOpenKey HKLM\Software\Policies\Microsoft\Windows\Control Panel\Desktop NAME NOT FOUND Desired Access: Read 98 12:38:54,8319999 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Policies\Microsoft\Windows\Control Panel\Desktop NAME NOT FOUND Desired Access: Read 98 12:38:54,8321207 MCLauncher.exe 6080 RegOpenKey HKLM\Software\Policies\Microsoft\Windows\Control Panel\Desktop NAME NOT FOUND Desired Access: Read 98 12:38:54,8321312 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Policies\Microsoft\Windows\Control Panel\Desktop NAME NOT FOUND Desired Access: Read 98 12:38:54,8322038 MCLauncher.exe 6080 RegOpenKey HKLM\Software\Policies\Microsoft\Windows\Control Panel\Desktop NAME NOT FOUND Desired Access: Read 98 12:38:54,8322132 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Policies\Microsoft\Windows\Control Panel\Desktop NAME NOT FOUND Desired Access: Read 98 12:38:54,8323387 MCLauncher.exe 6080 RegOpenKey HKLM\Software\Policies\Microsoft\Windows\Control Panel\Desktop NAME NOT FOUND Desired Access: Read 98 12:38:54,8323482 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Policies\Microsoft\Windows\Control Panel\Desktop NAME NOT FOUND Desired Access: Read 98 12:38:54,8324014 MCLauncher.exe 6080 RegOpenKey HKLM\Software\Policies\Microsoft\Windows\Control Panel\Desktop NAME NOT FOUND Desired Access: Read 98 12:38:54,8324102 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Policies\Microsoft\Windows\Control Panel\Desktop NAME NOT FOUND Desired Access: Read 98 12:38:54,8325402 MCLauncher.exe 6080 RegOpenKey HKLM\Software\Policies\Microsoft\Windows\Control Panel\Desktop NAME NOT FOUND Desired Access: Read 98 12:38:54,8325499 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Policies\Microsoft\Windows\Control Panel\Desktop NAME NOT FOUND Desired Access: Read 98 12:38:54,8326036 MCLauncher.exe 6080 RegOpenKey HKLM\Software\Policies\Microsoft\Windows\Control Panel\Desktop NAME NOT FOUND Desired Access: Read 98 12:38:54,8326125 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Policies\Microsoft\Windows\Control Panel\Desktop NAME NOT FOUND Desired Access: Read 98 12:38:54,8327352 MCLauncher.exe 6080 RegOpenKey HKLM\Software\Policies\Microsoft\Windows\Control Panel\Desktop NAME NOT FOUND Desired Access: Read 98 12:38:54,8327446 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Policies\Microsoft\Windows\Control Panel\Desktop NAME NOT FOUND Desired Access: Read 98 12:38:54,8327956 MCLauncher.exe 6080 RegOpenKey HKLM\Software\Policies\Microsoft\Windows\Control Panel\Desktop NAME NOT FOUND Desired Access: Read 98 12:38:54,8328045 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Policies\Microsoft\Windows\Control Panel\Desktop NAME NOT FOUND Desired Access: Read 98 12:38:54,8329538 MCLauncher.exe 6080 RegOpenKey HKLM\Software\Policies\Microsoft\Windows\Control Panel\Desktop NAME NOT FOUND Desired Access: Read 98 12:38:54,8329638 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Policies\Microsoft\Windows\Control Panel\Desktop NAME NOT FOUND Desired Access: Read 98 12:38:54,8330167 MCLauncher.exe 6080 RegOpenKey HKLM\Software\Policies\Microsoft\Windows\Control Panel\Desktop NAME NOT FOUND Desired Access: Read 98 12:38:54,8330256 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Policies\Microsoft\Windows\Control Panel\Desktop NAME NOT FOUND Desired Access: Read 98 12:38:54,8331608 MCLauncher.exe 6080 RegOpenKey HKLM\Software\Policies\Microsoft\Windows\Control Panel\Desktop NAME NOT FOUND Desired Access: Read 98 12:38:54,8331705 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Policies\Microsoft\Windows\Control Panel\Desktop NAME NOT FOUND Desired Access: Read 98 12:38:54,8334619 MCLauncher.exe 6080 RegOpenKey HKLM\Software\Policies\Microsoft\Windows\Control Panel\Desktop NAME NOT FOUND Desired Access: Read 98 12:38:54,8334730 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Policies\Microsoft\Windows\Control Panel\Desktop NAME NOT FOUND Desired Access: Read 98 12:38:54,8335877 MCLauncher.exe 6080 RegOpenKey HKLM\Software\Policies\Microsoft\Windows\Control Panel\Desktop NAME NOT FOUND Desired Access: Read 98 12:38:54,8335980 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Policies\Microsoft\Windows\Control Panel\Desktop NAME NOT FOUND Desired Access: Read 98 12:38:54,8336506 MCLauncher.exe 6080 RegOpenKey HKLM\Software\Policies\Microsoft\Windows\Control Panel\Desktop NAME NOT FOUND Desired Access: Read 98 12:38:54,8336597 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Policies\Microsoft\Windows\Control Panel\Desktop NAME NOT FOUND Desired Access: Read 98 12:38:54,8337952 MCLauncher.exe 6080 RegOpenKey HKLM\Software\Policies\Microsoft\Windows\Control Panel\Desktop NAME NOT FOUND Desired Access: Read 98 12:38:54,8338049 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Policies\Microsoft\Windows\Control Panel\Desktop NAME NOT FOUND Desired Access: Read 98 12:38:54,8338590 MCLauncher.exe 6080 RegOpenKey HKLM\Software\Policies\Microsoft\Windows\Control Panel\Desktop NAME NOT FOUND Desired Access: Read 98 12:38:54,8338681 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Policies\Microsoft\Windows\Control Panel\Desktop NAME NOT FOUND Desired Access: Read 98 12:38:54,8339942 MCLauncher.exe 6080 RegOpenKey HKLM\Software\Policies\Microsoft\Windows\Control Panel\Desktop NAME NOT FOUND Desired Access: Read 98 12:38:54,8340036 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Policies\Microsoft\Windows\Control Panel\Desktop NAME NOT FOUND Desired Access: Read 98 12:38:54,8340548 MCLauncher.exe 6080 RegOpenKey HKLM\Software\Policies\Microsoft\Windows\Control Panel\Desktop NAME NOT FOUND Desired Access: Read 98 12:38:54,8340637 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Policies\Microsoft\Windows\Control Panel\Desktop NAME NOT FOUND Desired Access: Read 98 12:38:54,8342014 MCLauncher.exe 6080 RegOpenKey HKLM\Software\Policies\Microsoft\Windows\Control Panel\Desktop NAME NOT FOUND Desired Access: Read 98 12:38:54,8342108 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Policies\Microsoft\Windows\Control Panel\Desktop NAME NOT FOUND Desired Access: Read 98 12:38:54,8342623 MCLauncher.exe 6080 RegOpenKey HKLM\Software\Policies\Microsoft\Windows\Control Panel\Desktop NAME NOT FOUND Desired Access: Read 98 12:38:54,8342712 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Policies\Microsoft\Windows\Control Panel\Desktop NAME NOT FOUND Desired Access: Read 98 12:38:54,8343942 MCLauncher.exe 6080 RegOpenKey HKLM\Software\Policies\Microsoft\Windows\Control Panel\Desktop NAME NOT FOUND Desired Access: Read 98 12:38:54,8344036 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Policies\Microsoft\Windows\Control Panel\Desktop NAME NOT FOUND Desired Access: Read 98 12:38:54,8344538 MCLauncher.exe 6080 RegOpenKey HKLM\Software\Policies\Microsoft\Windows\Control Panel\Desktop NAME NOT FOUND Desired Access: Read 98 12:38:54,8344627 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Policies\Microsoft\Windows\Control Panel\Desktop NAME NOT FOUND Desired Access: Read 98 12:38:54,8345873 MCLauncher.exe 6080 RegOpenKey HKLM\Software\Policies\Microsoft\Windows\Control Panel\Desktop NAME NOT FOUND Desired Access: Read 98 12:38:54,8345968 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Policies\Microsoft\Windows\Control Panel\Desktop NAME NOT FOUND Desired Access: Read 98 12:38:54,8346475 MCLauncher.exe 6080 RegOpenKey HKLM\Software\Policies\Microsoft\Windows\Control Panel\Desktop NAME NOT FOUND Desired Access: Read 98 12:38:54,8346563 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Policies\Microsoft\Windows\Control Panel\Desktop NAME NOT FOUND Desired Access: Read 98 12:38:54,8347799 MCLauncher.exe 6080 RegOpenKey HKLM\Software\Policies\Microsoft\Windows\Control Panel\Desktop NAME NOT FOUND Desired Access: Read 98 12:38:54,8347890 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Policies\Microsoft\Windows\Control Panel\Desktop NAME NOT FOUND Desired Access: Read 98 12:38:54,8348397 MCLauncher.exe 6080 RegOpenKey HKLM\Software\Policies\Microsoft\Windows\Control Panel\Desktop NAME NOT FOUND Desired Access: Read 98 12:38:54,8348486 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Policies\Microsoft\Windows\Control Panel\Desktop NAME NOT FOUND Desired Access: Read 98 12:38:54,8349708 MCLauncher.exe 6080 RegOpenKey HKLM\Software\Policies\Microsoft\Windows\Control Panel\Desktop NAME NOT FOUND Desired Access: Read 98 12:38:54,8349802 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Policies\Microsoft\Windows\Control Panel\Desktop NAME NOT FOUND Desired Access: Read 98 12:38:54,8350331 MCLauncher.exe 6080 RegOpenKey HKLM\Software\Policies\Microsoft\Windows\Control Panel\Desktop NAME NOT FOUND Desired Access: Read 98 12:38:54,8350719 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Policies\Microsoft\Windows\Control Panel\Desktop NAME NOT FOUND Desired Access: Read 98 12:38:54,8351664 MCLauncher.exe 6080 TCP TCPCopy WIN-0UOTFKKVN1S:54030 -> 104.31.12.175:http SUCCESS Length: 1420, seqnum: 0, connid: 0 98 12:38:54,8351777 MCLauncher.exe 6080 TCP Receive WIN-0UOTFKKVN1S:54030 -> 104.31.12.175:http SUCCESS Length: 1420, seqnum: 0, connid: 0 98 12:38:54,8351938 MCLauncher.exe 6080 TCP TCPCopy WIN-0UOTFKKVN1S:54030 -> 104.31.12.175:http SUCCESS Length: 187, seqnum: 0, connid: 0 98 12:38:54,8351957 MCLauncher.exe 6080 TCP Receive WIN-0UOTFKKVN1S:54030 -> 104.31.12.175:http SUCCESS Length: 187, seqnum: 0, connid: 0 98 12:38:54,8355983 MCLauncher.exe 6080 RegOpenKey HKLM\Software\Policies\Microsoft\Windows\Control Panel\Desktop NAME NOT FOUND Desired Access: Read 98 12:38:54,8356102 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Policies\Microsoft\Windows\Control Panel\Desktop NAME NOT FOUND Desired Access: Read 98 12:38:54,8356662 MCLauncher.exe 6080 RegOpenKey HKLM\Software\Policies\Microsoft\Windows\Control Panel\Desktop NAME NOT FOUND Desired Access: Read 98 12:38:54,8356759 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Policies\Microsoft\Windows\Control Panel\Desktop NAME NOT FOUND Desired Access: Read 98 12:38:54,8357989 MCLauncher.exe 6080 RegOpenKey HKLM\Software\Policies\Microsoft\Windows\Control Panel\Desktop NAME NOT FOUND Desired Access: Read 98 12:38:54,8358086 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Policies\Microsoft\Windows\Control Panel\Desktop NAME NOT FOUND Desired Access: Read 98 12:38:54,8359535 MCLauncher.exe 6080 RegOpenKey HKLM\Software\Policies\Microsoft\Windows\Control Panel\Desktop NAME NOT FOUND Desired Access: Read 98 12:38:54,8359637 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Policies\Microsoft\Windows\Control Panel\Desktop NAME NOT FOUND Desired Access: Read 98 12:38:54,8360956 MCLauncher.exe 6080 RegOpenKey HKLM\Software\Policies\Microsoft\Windows\Control Panel\Desktop NAME NOT FOUND Desired Access: Read 98 12:38:54,8361075 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Policies\Microsoft\Windows\Control Panel\Desktop NAME NOT FOUND Desired Access: Read 98 12:38:54,8364730 MCLauncher.exe 6080 RegOpenKey HKLM\Software\Policies\Microsoft\Windows\Control Panel\Desktop NAME NOT FOUND Desired Access: Read 98 12:38:54,8364841 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Policies\Microsoft\Windows\Control Panel\Desktop NAME NOT FOUND Desired Access: Read 98 12:38:54,8366140 MCLauncher.exe 6080 RegOpenKey HKLM\Software\Policies\Microsoft\Windows\Control Panel\Desktop NAME NOT FOUND Desired Access: Read 98 12:38:54,8366245 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Policies\Microsoft\Windows\Control Panel\Desktop NAME NOT FOUND Desired Access: Read 98 12:38:54,8366786 MCLauncher.exe 6080 RegOpenKey HKLM\Software\Policies\Microsoft\Windows\Control Panel\Desktop NAME NOT FOUND Desired Access: Read 98 12:38:54,8366877 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Policies\Microsoft\Windows\Control Panel\Desktop NAME NOT FOUND Desired Access: Read 98 12:38:54,8368171 MCLauncher.exe 6080 RegOpenKey HKLM\Software\Policies\Microsoft\Windows\Control Panel\Desktop NAME NOT FOUND Desired Access: Read 98 12:38:54,8368268 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Policies\Microsoft\Windows\Control Panel\Desktop NAME NOT FOUND Desired Access: Read 98 12:38:54,8368789 MCLauncher.exe 6080 RegOpenKey HKLM\Software\Policies\Microsoft\Windows\Control Panel\Desktop NAME NOT FOUND Desired Access: Read 98 12:38:54,8368880 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Policies\Microsoft\Windows\Control Panel\Desktop NAME NOT FOUND Desired Access: Read 98 12:38:54,8370116 MCLauncher.exe 6080 RegOpenKey HKLM\Software\Policies\Microsoft\Windows\Control Panel\Desktop NAME NOT FOUND Desired Access: Read 98 12:38:54,8370373 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Policies\Microsoft\Windows\Control Panel\Desktop NAME NOT FOUND Desired Access: Read 98 12:38:54,8371216 MCLauncher.exe 6080 RegOpenKey HKLM\Software\Policies\Microsoft\Windows\Control Panel\Desktop NAME NOT FOUND Desired Access: Read 98 12:38:54,8371307 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Policies\Microsoft\Windows\Control Panel\Desktop NAME NOT FOUND Desired Access: Read 98 12:38:54,8372559 MCLauncher.exe 6080 RegOpenKey HKLM\Software\Policies\Microsoft\Windows\Control Panel\Desktop NAME NOT FOUND Desired Access: Read 98 12:38:54,8372656 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Policies\Microsoft\Windows\Control Panel\Desktop NAME NOT FOUND Desired Access: Read 98 12:38:54,8373172 MCLauncher.exe 6080 RegOpenKey HKLM\Software\Policies\Microsoft\Windows\Control Panel\Desktop NAME NOT FOUND Desired Access: Read 98 12:38:54,8373260 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Policies\Microsoft\Windows\Control Panel\Desktop NAME NOT FOUND Desired Access: Read 98 12:38:54,8374599 MCLauncher.exe 6080 RegOpenKey HKLM\Software\Policies\Microsoft\Windows\Control Panel\Desktop NAME NOT FOUND Desired Access: Read 98 12:38:54,8374695 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Policies\Microsoft\Windows\Control Panel\Desktop NAME NOT FOUND Desired Access: Read 98 12:38:54,8375230 MCLauncher.exe 6080 RegOpenKey HKLM\Software\Policies\Microsoft\Windows\Control Panel\Desktop NAME NOT FOUND Desired Access: Read 98 12:38:54,8375319 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Policies\Microsoft\Windows\Control Panel\Desktop NAME NOT FOUND Desired Access: Read 98 12:38:54,8376615 MCLauncher.exe 6080 RegOpenKey HKLM\Software\Policies\Microsoft\Windows\Control Panel\Desktop NAME NOT FOUND Desired Access: Read 98 12:38:54,8376710 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Policies\Microsoft\Windows\Control Panel\Desktop NAME NOT FOUND Desired Access: Read 98 12:38:54,8377261 MCLauncher.exe 6080 RegOpenKey HKLM\Software\Policies\Microsoft\Windows\Control Panel\Desktop NAME NOT FOUND Desired Access: Read 98 12:38:54,8377350 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Policies\Microsoft\Windows\Control Panel\Desktop NAME NOT FOUND Desired Access: Read 98 12:38:54,8378596 MCLauncher.exe 6080 RegOpenKey HKLM\Software\Policies\Microsoft\Windows\Control Panel\Desktop NAME NOT FOUND Desired Access: Read 98 12:38:54,8378693 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Policies\Microsoft\Windows\Control Panel\Desktop NAME NOT FOUND Desired Access: Read 98 12:38:54,8379217 MCLauncher.exe 6080 RegOpenKey HKLM\Software\Policies\Microsoft\Windows\Control Panel\Desktop NAME NOT FOUND Desired Access: Read 98 12:38:54,8379306 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Policies\Microsoft\Windows\Control Panel\Desktop NAME NOT FOUND Desired Access: Read 98 12:38:54,8380899 MCLauncher.exe 6080 RegOpenKey HKLM\Software\Policies\Microsoft\Windows\Control Panel\Desktop NAME NOT FOUND Desired Access: Read 98 12:38:54,8380996 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Policies\Microsoft\Windows\Control Panel\Desktop NAME NOT FOUND Desired Access: Read 98 12:38:54,8381517 MCLauncher.exe 6080 RegOpenKey HKLM\Software\Policies\Microsoft\Windows\Control Panel\Desktop NAME NOT FOUND Desired Access: Read 98 12:38:54,8381605 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Policies\Microsoft\Windows\Control Panel\Desktop NAME NOT FOUND Desired Access: Read 98 12:38:54,8382835 MCLauncher.exe 6080 RegOpenKey HKLM\Software\Policies\Microsoft\Windows\Control Panel\Desktop NAME NOT FOUND Desired Access: Read 98 12:38:54,8382930 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Policies\Microsoft\Windows\Control Panel\Desktop NAME NOT FOUND Desired Access: Read 98 12:38:54,8383434 MCLauncher.exe 6080 RegOpenKey HKLM\Software\Policies\Microsoft\Windows\Control Panel\Desktop NAME NOT FOUND Desired Access: Read 98 12:38:54,8383522 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Policies\Microsoft\Windows\Control Panel\Desktop NAME NOT FOUND Desired Access: Read 98 12:38:54,8384733 MCLauncher.exe 6080 RegOpenKey HKLM\Software\Policies\Microsoft\Windows\Control Panel\Desktop NAME NOT FOUND Desired Access: Read 98 12:38:54,8384830 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Policies\Microsoft\Windows\Control Panel\Desktop NAME NOT FOUND Desired Access: Read 98 12:38:54,8385346 MCLauncher.exe 6080 RegOpenKey HKLM\Software\Policies\Microsoft\Windows\Control Panel\Desktop NAME NOT FOUND Desired Access: Read 98 12:38:54,8385434 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Policies\Microsoft\Windows\Control Panel\Desktop NAME NOT FOUND Desired Access: Read 98 12:38:54,8386817 MCLauncher.exe 6080 RegOpenKey HKLM\Software\Policies\Microsoft\Windows\Control Panel\Desktop NAME NOT FOUND Desired Access: Read 98 12:38:54,8386911 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Policies\Microsoft\Windows\Control Panel\Desktop NAME NOT FOUND Desired Access: Read 98 12:38:54,8387457 MCLauncher.exe 6080 RegOpenKey HKLM\Software\Policies\Microsoft\Windows\Control Panel\Desktop NAME NOT FOUND Desired Access: Read 98 12:38:54,8387545 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Policies\Microsoft\Windows\Control Panel\Desktop NAME NOT FOUND Desired Access: Read 98 12:38:54,8388897 MCLauncher.exe 6080 RegOpenKey HKLM\Software\Policies\Microsoft\Windows\Control Panel\Desktop NAME NOT FOUND Desired Access: Read 98 12:38:54,8388992 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Policies\Microsoft\Windows\Control Panel\Desktop NAME NOT FOUND Desired Access: Read 98 12:38:54,8389515 MCLauncher.exe 6080 RegOpenKey HKLM\Software\Policies\Microsoft\Windows\Control Panel\Desktop NAME NOT FOUND Desired Access: Read 98 12:38:54,8389601 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Policies\Microsoft\Windows\Control Panel\Desktop NAME NOT FOUND Desired Access: Read 98 12:38:54,8391047 MCLauncher.exe 6080 RegOpenKey HKLM\Software\Policies\Microsoft\Windows\Control Panel\Desktop NAME NOT FOUND Desired Access: Read 98 12:38:54,8391142 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Policies\Microsoft\Windows\Control Panel\Desktop NAME NOT FOUND Desired Access: Read 98 12:38:54,8393632 MCLauncher.exe 6080 RegOpenKey HKLM\Software\Policies\Microsoft\Windows\Control Panel\Desktop NAME NOT FOUND Desired Access: Read 98 12:38:54,8393735 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Policies\Microsoft\Windows\Control Panel\Desktop NAME NOT FOUND Desired Access: Read 98 12:38:54,8394907 MCLauncher.exe 6080 RegOpenKey HKLM\Software\Policies\Microsoft\Windows\Control Panel\Desktop NAME NOT FOUND Desired Access: Read 98 12:38:54,8395012 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Policies\Microsoft\Windows\Control Panel\Desktop NAME NOT FOUND Desired Access: Read 98 12:38:54,8395549 MCLauncher.exe 6080 RegOpenKey HKLM\Software\Policies\Microsoft\Windows\Control Panel\Desktop NAME NOT FOUND Desired Access: Read 98 12:38:54,8395638 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Policies\Microsoft\Windows\Control Panel\Desktop NAME NOT FOUND Desired Access: Read 98 12:38:54,8396960 MCLauncher.exe 6080 RegOpenKey HKLM\Software\Policies\Microsoft\Windows\Control Panel\Desktop NAME NOT FOUND Desired Access: Read 98 12:38:54,8397057 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Policies\Microsoft\Windows\Control Panel\Desktop NAME NOT FOUND Desired Access: Read 98 12:38:54,8397569 MCLauncher.exe 6080 RegOpenKey HKLM\Software\Policies\Microsoft\Windows\Control Panel\Desktop NAME NOT FOUND Desired Access: Read 98 12:38:54,8397658 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Policies\Microsoft\Windows\Control Panel\Desktop NAME NOT FOUND Desired Access: Read 98 12:38:54,8398824 MCLauncher.exe 6080 RegOpenKey HKLM\Software\Policies\Microsoft\Windows\Control Panel\Desktop NAME NOT FOUND Desired Access: Read 98 12:38:54,8398916 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Policies\Microsoft\Windows\Control Panel\Desktop NAME NOT FOUND Desired Access: Read 98 12:38:54,8404764 MCLauncher.exe 6080 RegOpenKey HKLM\Software\Policies\Microsoft\Windows\Control Panel\Desktop NAME NOT FOUND Desired Access: Read 98 12:38:54,8404892 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Policies\Microsoft\Windows\Control Panel\Desktop NAME NOT FOUND Desired Access: Read 98 12:38:54,8406025 MCLauncher.exe 6080 RegOpenKey HKLM\Software\Policies\Microsoft\Windows\Control Panel\Desktop NAME NOT FOUND Desired Access: Read 98 12:38:54,8406130 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Policies\Microsoft\Windows\Control Panel\Desktop NAME NOT FOUND Desired Access: Read 98 12:38:54,8406673 MCLauncher.exe 6080 RegOpenKey HKLM\Software\Policies\Microsoft\Windows\Control Panel\Desktop NAME NOT FOUND Desired Access: Read 98 12:38:54,8406765 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Policies\Microsoft\Windows\Control Panel\Desktop NAME NOT FOUND Desired Access: Read 98 12:38:54,8407959 MCLauncher.exe 6080 RegOpenKey HKLM\Software\Policies\Microsoft\Windows\Control Panel\Desktop NAME NOT FOUND Desired Access: Read 98 12:38:54,8408056 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Policies\Microsoft\Windows\Control Panel\Desktop NAME NOT FOUND Desired Access: Read 98 12:38:54,8408574 MCLauncher.exe 6080 RegOpenKey HKLM\Software\Policies\Microsoft\Windows\Control Panel\Desktop NAME NOT FOUND Desired Access: Read 98 12:38:54,8408663 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Policies\Microsoft\Windows\Control Panel\Desktop NAME NOT FOUND Desired Access: Read 98 12:38:54,8410253 MCLauncher.exe 6080 RegOpenKey HKLM\Software\Policies\Microsoft\Windows\Control Panel\Desktop NAME NOT FOUND Desired Access: Read 98 12:38:54,8410353 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Policies\Microsoft\Windows\Control Panel\Desktop NAME NOT FOUND Desired Access: Read 98 12:38:54,8410885 MCLauncher.exe 6080 RegOpenKey HKLM\Software\Policies\Microsoft\Windows\Control Panel\Desktop NAME NOT FOUND Desired Access: Read 98 12:38:54,8410973 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Policies\Microsoft\Windows\Control Panel\Desktop NAME NOT FOUND Desired Access: Read 98 12:38:54,8412503 MCLauncher.exe 6080 RegOpenKey HKLM\Software\Policies\Microsoft\Windows\Control Panel\Desktop NAME NOT FOUND Desired Access: Read 98 12:38:54,8412602 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Policies\Microsoft\Windows\Control Panel\Desktop NAME NOT FOUND Desired Access: Read 98 12:38:54,8413126 MCLauncher.exe 6080 RegOpenKey HKLM\Software\Policies\Microsoft\Windows\Control Panel\Desktop NAME NOT FOUND Desired Access: Read 98 12:38:54,8413217 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Policies\Microsoft\Windows\Control Panel\Desktop NAME NOT FOUND Desired Access: Read 98 12:38:54,8414594 MCLauncher.exe 6080 RegOpenKey HKLM\Software\Policies\Microsoft\Windows\Control Panel\Desktop NAME NOT FOUND Desired Access: Read 98 12:38:54,8414691 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Policies\Microsoft\Windows\Control Panel\Desktop NAME NOT FOUND Desired Access: Read 98 12:38:54,8416683 MCLauncher.exe 6080 RegOpenKey HKLM\Software\Policies\Microsoft\Windows\Control Panel\Desktop NAME NOT FOUND Desired Access: Read 98 12:38:54,8416783 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Policies\Microsoft\Windows\Control Panel\Desktop NAME NOT FOUND Desired Access: Read 98 12:38:54,8418052 MCLauncher.exe 6080 RegOpenKey HKLM\Software\Policies\Microsoft\Windows\Control Panel\Desktop NAME NOT FOUND Desired Access: Read 98 12:38:54,8418152 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Policies\Microsoft\Windows\Control Panel\Desktop NAME NOT FOUND Desired Access: Read 98 12:38:54,8423117 MCLauncher.exe 6080 RegOpenKey HKLM\Software\Policies\Microsoft\Windows\Control Panel\Desktop NAME NOT FOUND Desired Access: Read 98 12:38:54,8423238 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Policies\Microsoft\Windows\Control Panel\Desktop NAME NOT FOUND Desired Access: Read 98 12:38:54,8424421 MCLauncher.exe 6080 RegOpenKey HKLM\Software\Policies\Microsoft\Windows\Control Panel\Desktop NAME NOT FOUND Desired Access: Read 98 12:38:54,8424527 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Policies\Microsoft\Windows\Control Panel\Desktop NAME NOT FOUND Desired Access: Read 98 12:38:54,8425081 MCLauncher.exe 6080 RegOpenKey HKLM\Software\Policies\Microsoft\Windows\Control Panel\Desktop NAME NOT FOUND Desired Access: Read 98 12:38:54,8425172 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Policies\Microsoft\Windows\Control Panel\Desktop NAME NOT FOUND Desired Access: Read 98 12:38:54,8426433 MCLauncher.exe 6080 RegOpenKey HKLM\Software\Policies\Microsoft\Windows\Control Panel\Desktop NAME NOT FOUND Desired Access: Read 98 12:38:54,8426530 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Policies\Microsoft\Windows\Control Panel\Desktop NAME NOT FOUND Desired Access: Read 98 12:38:54,8427065 MCLauncher.exe 6080 RegOpenKey HKLM\Software\Policies\Microsoft\Windows\Control Panel\Desktop NAME NOT FOUND Desired Access: Read 98 12:38:54,8427153 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Policies\Microsoft\Windows\Control Panel\Desktop NAME NOT FOUND Desired Access: Read 98 12:38:54,8428425 MCLauncher.exe 6080 RegOpenKey HKLM\Software\Policies\Microsoft\Windows\Control Panel\Desktop NAME NOT FOUND Desired Access: Read 98 12:38:54,8428702 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Policies\Microsoft\Windows\Control Panel\Desktop NAME NOT FOUND Desired Access: Read 98 12:38:54,8429331 MCLauncher.exe 6080 RegOpenKey HKLM\Software\Policies\Microsoft\Windows\Control Panel\Desktop NAME NOT FOUND Desired Access: Read 98 12:38:54,8429425 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Policies\Microsoft\Windows\Control Panel\Desktop NAME NOT FOUND Desired Access: Read 98 12:38:54,8430672 MCLauncher.exe 6080 RegOpenKey HKLM\Software\Policies\Microsoft\Windows\Control Panel\Desktop NAME NOT FOUND Desired Access: Read 98 12:38:54,8430766 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Policies\Microsoft\Windows\Control Panel\Desktop NAME NOT FOUND Desired Access: Read 98 12:38:54,8431312 MCLauncher.exe 6080 RegOpenKey HKLM\Software\Policies\Microsoft\Windows\Control Panel\Desktop NAME NOT FOUND Desired Access: Read 98 12:38:54,8431401 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Policies\Microsoft\Windows\Control Panel\Desktop NAME NOT FOUND Desired Access: Read 98 12:38:54,8432631 MCLauncher.exe 6080 RegOpenKey HKLM\Software\Policies\Microsoft\Windows\Control Panel\Desktop NAME NOT FOUND Desired Access: Read 98 12:38:54,8432728 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Policies\Microsoft\Windows\Control Panel\Desktop NAME NOT FOUND Desired Access: Read 98 12:38:54,8433260 MCLauncher.exe 6080 RegOpenKey HKLM\Software\Policies\Microsoft\Windows\Control Panel\Desktop NAME NOT FOUND Desired Access: Read 98 12:38:54,8433348 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Policies\Microsoft\Windows\Control Panel\Desktop NAME NOT FOUND Desired Access: Read 98 12:38:54,8434603 MCLauncher.exe 6080 RegOpenKey HKLM\Software\Policies\Microsoft\Windows\Control Panel\Desktop NAME NOT FOUND Desired Access: Read 98 12:38:54,8434698 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Policies\Microsoft\Windows\Control Panel\Desktop NAME NOT FOUND Desired Access: Read 98 12:38:54,8435224 MCLauncher.exe 6080 RegOpenKey HKLM\Software\Policies\Microsoft\Windows\Control Panel\Desktop NAME NOT FOUND Desired Access: Read 98 12:38:54,8435310 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Policies\Microsoft\Windows\Control Panel\Desktop NAME NOT FOUND Desired Access: Read 98 12:38:54,8436656 MCLauncher.exe 6080 RegOpenKey HKLM\Software\Policies\Microsoft\Windows\Control Panel\Desktop NAME NOT FOUND Desired Access: Read 98 12:38:54,8436753 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Policies\Microsoft\Windows\Control Panel\Desktop NAME NOT FOUND Desired Access: Read 98 12:38:54,8437280 MCLauncher.exe 6080 RegOpenKey HKLM\Software\Policies\Microsoft\Windows\Control Panel\Desktop NAME NOT FOUND Desired Access: Read 98 12:38:54,8437368 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Policies\Microsoft\Windows\Control Panel\Desktop NAME NOT FOUND Desired Access: Read 98 12:38:54,8438961 MCLauncher.exe 6080 RegOpenKey HKLM\Software\Policies\Microsoft\Windows\Control Panel\Desktop NAME NOT FOUND Desired Access: Read 98 12:38:54,8439061 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Policies\Microsoft\Windows\Control Panel\Desktop NAME NOT FOUND Desired Access: Read 98 12:38:54,8439607 MCLauncher.exe 6080 RegOpenKey HKLM\Software\Policies\Microsoft\Windows\Control Panel\Desktop NAME NOT FOUND Desired Access: Read 98 12:38:54,8439696 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Policies\Microsoft\Windows\Control Panel\Desktop NAME NOT FOUND Desired Access: Read 98 12:38:54,8441136 MCLauncher.exe 6080 RegOpenKey HKLM\Software\Policies\Microsoft\Windows\Control Panel\Desktop NAME NOT FOUND Desired Access: Read 98 12:38:54,8441233 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Policies\Microsoft\Windows\Control Panel\Desktop NAME NOT FOUND Desired Access: Read 98 12:38:54,8441760 MCLauncher.exe 6080 RegOpenKey HKLM\Software\Policies\Microsoft\Windows\Control Panel\Desktop NAME NOT FOUND Desired Access: Read 98 12:38:54,8441851 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Policies\Microsoft\Windows\Control Panel\Desktop NAME NOT FOUND Desired Access: Read 98 12:38:54,8443225 MCLauncher.exe 6080 RegOpenKey HKLM\Software\Policies\Microsoft\Windows\Control Panel\Desktop NAME NOT FOUND Desired Access: Read 98 12:38:54,8443319 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Policies\Microsoft\Windows\Control Panel\Desktop NAME NOT FOUND Desired Access: Read 98 12:38:54,8443843 MCLauncher.exe 6080 RegOpenKey HKLM\Software\Policies\Microsoft\Windows\Control Panel\Desktop NAME NOT FOUND Desired Access: Read 98 12:38:54,8443932 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Policies\Microsoft\Windows\Control Panel\Desktop NAME NOT FOUND Desired Access: Read 98 12:38:54,8445253 MCLauncher.exe 6080 RegOpenKey HKLM\Software\Policies\Microsoft\Windows\Control Panel\Desktop NAME NOT FOUND Desired Access: Read 98 12:38:54,8445348 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Policies\Microsoft\Windows\Control Panel\Desktop NAME NOT FOUND Desired Access: Read 98 12:38:54,8445874 MCLauncher.exe 6080 RegOpenKey HKLM\Software\Policies\Microsoft\Windows\Control Panel\Desktop NAME NOT FOUND Desired Access: Read 98 12:38:54,8445963 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Policies\Microsoft\Windows\Control Panel\Desktop NAME NOT FOUND Desired Access: Read 98 12:38:54,8447234 MCLauncher.exe 6080 RegOpenKey HKLM\Software\Policies\Microsoft\Windows\Control Panel\Desktop NAME NOT FOUND Desired Access: Read 98 12:38:54,8447328 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Policies\Microsoft\Windows\Control Panel\Desktop NAME NOT FOUND Desired Access: Read 98 12:38:54,8447844 MCLauncher.exe 6080 RegOpenKey HKLM\Software\Policies\Microsoft\Windows\Control Panel\Desktop NAME NOT FOUND Desired Access: Read 98 12:38:54,8447930 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Policies\Microsoft\Windows\Control Panel\Desktop NAME NOT FOUND Desired Access: Read 98 12:38:54,8449260 MCLauncher.exe 6080 RegOpenKey HKLM\Software\Policies\Microsoft\Windows\Control Panel\Desktop NAME NOT FOUND Desired Access: Read 98 12:38:54,8449354 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Policies\Microsoft\Windows\Control Panel\Desktop NAME NOT FOUND Desired Access: Read 98 12:38:54,8449880 MCLauncher.exe 6080 RegOpenKey HKLM\Software\Policies\Microsoft\Windows\Control Panel\Desktop NAME NOT FOUND Desired Access: Read 98 12:38:54,8449969 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Policies\Microsoft\Windows\Control Panel\Desktop NAME NOT FOUND Desired Access: Read 98 12:38:54,8451202 MCLauncher.exe 6080 RegOpenKey HKLM\Software\Policies\Microsoft\Windows\Control Panel\Desktop NAME NOT FOUND Desired Access: Read 98 12:38:54,8451296 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Policies\Microsoft\Windows\Control Panel\Desktop NAME NOT FOUND Desired Access: Read 98 12:38:54,8451808 MCLauncher.exe 6080 RegOpenKey HKLM\Software\Policies\Microsoft\Windows\Control Panel\Desktop NAME NOT FOUND Desired Access: Read 98 12:38:54,8451897 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Policies\Microsoft\Windows\Control Panel\Desktop NAME NOT FOUND Desired Access: Read 98 12:38:54,8455554 MCLauncher.exe 6080 RegOpenKey HKLM\Software\Policies\Microsoft\Windows\Control Panel\Desktop NAME NOT FOUND Desired Access: Read 98 12:38:54,8455654 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Policies\Microsoft\Windows\Control Panel\Desktop NAME NOT FOUND Desired Access: Read 98 12:38:54,8456200 MCLauncher.exe 6080 RegOpenKey HKLM\Software\Policies\Microsoft\Windows\Control Panel\Desktop NAME NOT FOUND Desired Access: Read 98 12:38:54,8456288 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Policies\Microsoft\Windows\Control Panel\Desktop NAME NOT FOUND Desired Access: Read 98 12:38:54,8457704 MCLauncher.exe 6080 RegOpenKey HKLM\Software\Policies\Microsoft\Windows\Control Panel\Desktop NAME NOT FOUND Desired Access: Read 98 12:38:54,8457959 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Policies\Microsoft\Windows\Control Panel\Desktop NAME NOT FOUND Desired Access: Read 98 12:38:54,8458516 MCLauncher.exe 6080 RegOpenKey HKLM\Software\Policies\Microsoft\Windows\Control Panel\Desktop NAME NOT FOUND Desired Access: Read 98 12:38:54,8458605 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Policies\Microsoft\Windows\Control Panel\Desktop NAME NOT FOUND Desired Access: Read 98 12:38:54,8459821 MCLauncher.exe 6080 RegOpenKey HKLM\Software\Policies\Microsoft\Windows\Control Panel\Desktop NAME NOT FOUND Desired Access: Read 98 12:38:54,8459915 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Policies\Microsoft\Windows\Control Panel\Desktop NAME NOT FOUND Desired Access: Read 98 12:38:54,8460419 MCLauncher.exe 6080 RegOpenKey HKLM\Software\Policies\Microsoft\Windows\Control Panel\Desktop NAME NOT FOUND Desired Access: Read 98 12:38:54,8460508 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Policies\Microsoft\Windows\Control Panel\Desktop NAME NOT FOUND Desired Access: Read 98 12:38:54,8461744 MCLauncher.exe 6080 RegOpenKey HKLM\Software\Policies\Microsoft\Windows\Control Panel\Desktop NAME NOT FOUND Desired Access: Read 98 12:38:54,8461838 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Policies\Microsoft\Windows\Control Panel\Desktop NAME NOT FOUND Desired Access: Read 98 12:38:54,8462375 MCLauncher.exe 6080 RegOpenKey HKLM\Software\Policies\Microsoft\Windows\Control Panel\Desktop NAME NOT FOUND Desired Access: Read 98 12:38:54,8462464 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Policies\Microsoft\Windows\Control Panel\Desktop NAME NOT FOUND Desired Access: Read 98 12:38:54,8463703 MCLauncher.exe 6080 RegOpenKey HKLM\Software\Policies\Microsoft\Windows\Control Panel\Desktop NAME NOT FOUND Desired Access: Read 98 12:38:54,8463797 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Policies\Microsoft\Windows\Control Panel\Desktop NAME NOT FOUND Desired Access: Read 98 12:38:54,8464312 MCLauncher.exe 6080 RegOpenKey HKLM\Software\Policies\Microsoft\Windows\Control Panel\Desktop NAME NOT FOUND Desired Access: Read 98 12:38:54,8464401 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Policies\Microsoft\Windows\Control Panel\Desktop NAME NOT FOUND Desired Access: Read 98 12:38:54,8465683 MCLauncher.exe 6080 RegOpenKey HKLM\Software\Policies\Microsoft\Windows\Control Panel\Desktop NAME NOT FOUND Desired Access: Read 98 12:38:54,8465778 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Policies\Microsoft\Windows\Control Panel\Desktop NAME NOT FOUND Desired Access: Read 98 12:38:54,8469219 MCLauncher.exe 6080 RegOpenKey HKLM\Software\Policies\Microsoft\Windows\Control Panel\Desktop NAME NOT FOUND Desired Access: Read 98 12:38:54,8469335 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Policies\Microsoft\Windows\Control Panel\Desktop NAME NOT FOUND Desired Access: Read 98 12:38:54,8470532 MCLauncher.exe 6080 RegOpenKey HKLM\Software\Policies\Microsoft\Windows\Control Panel\Desktop NAME NOT FOUND Desired Access: Read 98 12:38:54,8470634 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Policies\Microsoft\Windows\Control Panel\Desktop NAME NOT FOUND Desired Access: Read 98 12:38:54,8471172 MCLauncher.exe 6080 RegOpenKey HKLM\Software\Policies\Microsoft\Windows\Control Panel\Desktop NAME NOT FOUND Desired Access: Read 98 12:38:54,8471263 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Policies\Microsoft\Windows\Control Panel\Desktop NAME NOT FOUND Desired Access: Read 98 12:38:54,8472538 MCLauncher.exe 6080 RegOpenKey HKLM\Software\Policies\Microsoft\Windows\Control Panel\Desktop NAME NOT FOUND Desired Access: Read 98 12:38:54,8472635 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Policies\Microsoft\Windows\Control Panel\Desktop NAME NOT FOUND Desired Access: Read 98 12:38:54,8473147 MCLauncher.exe 6080 RegOpenKey HKLM\Software\Policies\Microsoft\Windows\Control Panel\Desktop NAME NOT FOUND Desired Access: Read 98 12:38:54,8473236 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Policies\Microsoft\Windows\Control Panel\Desktop NAME NOT FOUND Desired Access: Read 98 12:38:54,8474472 MCLauncher.exe 6080 RegOpenKey HKLM\Software\Policies\Microsoft\Windows\Control Panel\Desktop NAME NOT FOUND Desired Access: Read 98 12:38:54,8474569 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Policies\Microsoft\Windows\Control Panel\Desktop NAME NOT FOUND Desired Access: Read 98 12:38:54,8475098 MCLauncher.exe 6080 RegOpenKey HKLM\Software\Policies\Microsoft\Windows\Control Panel\Desktop NAME NOT FOUND Desired Access: Read 98 12:38:54,8475186 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Policies\Microsoft\Windows\Control Panel\Desktop NAME NOT FOUND Desired Access: Read 98 12:38:54,8476350 MCLauncher.exe 6080 RegOpenKey HKLM\Software\Policies\Microsoft\Windows\Control Panel\Desktop NAME NOT FOUND Desired Access: Read 98 12:38:54,8476444 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Policies\Microsoft\Windows\Control Panel\Desktop NAME NOT FOUND Desired Access: Read 98 12:38:54,8482697 MCLauncher.exe 6080 RegOpenKey HKLM\Software\Policies\Microsoft\Windows\Control Panel\Desktop NAME NOT FOUND Desired Access: Read 98 12:38:54,8482825 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Policies\Microsoft\Windows\Control Panel\Desktop NAME NOT FOUND Desired Access: Read 98 12:38:54,8484110 MCLauncher.exe 6080 RegOpenKey HKLM\Software\Policies\Microsoft\Windows\Control Panel\Desktop NAME NOT FOUND Desired Access: Read 98 12:38:54,8484219 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Policies\Microsoft\Windows\Control Panel\Desktop NAME NOT FOUND Desired Access: Read 98 12:38:54,8489291 MCLauncher.exe 6080 RegOpenKey HKLM\Software\WOW6432Node\Policies\Microsoft\MUI\Settings REPARSE Desired Access: Read 98 12:38:54,8489433 MCLauncher.exe 6080 RegOpenKey HKLM\SOFTWARE\Policies\Microsoft\MUI\Settings NAME NOT FOUND Desired Access: Read 98 12:38:54,8489660 MCLauncher.exe 6080 RegOpenKey HKCU SUCCESS Desired Access: Maximum Allowed, Granted Access: All Access 98 12:38:54,8489870 MCLauncher.exe 6080 RegQueryKey HKCU SUCCESS Query: HandleTags, HandleTags: 0x0 98 12:38:54,8489970 MCLauncher.exe 6080 RegQueryKey HKCU SUCCESS Query: Name 98 12:38:54,8490059 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Policies\Microsoft\Control Panel\Desktop NAME NOT FOUND Desired Access: Read 98 12:38:54,8490217 MCLauncher.exe 6080 RegQueryKey HKCU SUCCESS Query: HandleTags, HandleTags: 0x0 98 12:38:54,8490289 MCLauncher.exe 6080 RegQueryKey HKCU SUCCESS Query: Name 98 12:38:54,8490364 MCLauncher.exe 6080 RegOpenKey HKCU\Control Panel\Desktop SUCCESS Desired Access: Read 98 12:38:54,8490510 MCLauncher.exe 6080 RegSetInfoKey HKCU\Control Panel\Desktop SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 98 12:38:54,8490577 MCLauncher.exe 6080 RegQueryValue HKCU\Control Panel\Desktop\PreferredUILanguages NAME NOT FOUND Length: 12 98 12:38:54,8490787 MCLauncher.exe 6080 RegCloseKey HKCU\Control Panel\Desktop SUCCESS 98 12:38:54,8490840 MCLauncher.exe 6080 RegCloseKey HKCU SUCCESS 98 12:38:54,8490951 MCLauncher.exe 6080 RegOpenKey HKLM\Software\WOW6432Node\Policies\Microsoft\MUI\Settings REPARSE Desired Access: Read 98 12:38:54,8491026 MCLauncher.exe 6080 RegOpenKey HKLM\SOFTWARE\Policies\Microsoft\MUI\Settings NAME NOT FOUND Desired Access: Read 98 12:38:54,8491173 MCLauncher.exe 6080 RegOpenKey HKCU SUCCESS Desired Access: Maximum Allowed, Granted Access: All Access 98 12:38:54,8491308 MCLauncher.exe 6080 RegQueryKey HKCU SUCCESS Query: HandleTags, HandleTags: 0x0 98 12:38:54,8491394 MCLauncher.exe 6080 RegQueryKey HKCU SUCCESS Query: Name 98 12:38:54,8491469 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Policies\Microsoft\Control Panel\Desktop NAME NOT FOUND Desired Access: Read 98 12:38:54,8491599 MCLauncher.exe 6080 RegQueryKey HKCU SUCCESS Query: HandleTags, HandleTags: 0x0 98 12:38:54,8491669 MCLauncher.exe 6080 RegQueryKey HKCU SUCCESS Query: Name 98 12:38:54,8491738 MCLauncher.exe 6080 RegOpenKey HKCU\Control Panel\Desktop\LanguageConfiguration SUCCESS Desired Access: Read 98 12:38:54,8491860 MCLauncher.exe 6080 RegSetInfoKey HKCU\Control Panel\Desktop\LanguageConfiguration SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 98 12:38:54,8491915 MCLauncher.exe 6080 RegEnumValue HKCU\Control Panel\Desktop\LanguageConfiguration NO MORE ENTRIES Index: 0, Length: 512 98 12:38:54,8491982 MCLauncher.exe 6080 RegCloseKey HKCU\Control Panel\Desktop\LanguageConfiguration SUCCESS 98 12:38:54,8492026 MCLauncher.exe 6080 RegCloseKey HKCU SUCCESS 98 12:38:54,8948542 MCLauncher.exe 6080 TCP TCPCopy WIN-0UOTFKKVN1S:54028 -> fr.cloudtree.ru:https SUCCESS Length: 1306, seqnum: 0, connid: 0 98 12:38:54,8948656 MCLauncher.exe 6080 TCP Receive WIN-0UOTFKKVN1S:54028 -> fr.cloudtree.ru:https SUCCESS Length: 1306, seqnum: 0, connid: 0 98 12:38:54,8949091 MCLauncher.exe 6080 CreateFile C:\Windows\SysWOW64\winmm.dll SUCCESS Desired Access: Read Attributes, Disposition: Open, Options: Open Reparse Point, Attributes: n/a, ShareMode: Read, Write, Delete, AllocationSize: n/a, OpenResult: Opened 98 12:38:54,8949506 MCLauncher.exe 6080 QueryBasicInformationFile C:\Windows\SysWOW64\winmm.dll SUCCESS CreationTime: 16.07.2016 14:42:49, LastAccessTime: 16.07.2016 14:42:49, LastWriteTime: 16.07.2016 14:42:49, ChangeTime: 19.07.2018 19:41:04, FileAttributes: A 98 12:38:54,8949614 MCLauncher.exe 6080 CloseFile C:\Windows\SysWOW64\winmm.dll SUCCESS 98 12:38:54,8951075 MCLauncher.exe 6080 Thread Create SUCCESS Thread ID: 9476 98 12:38:54,9091780 MCLauncher.exe 6080 TCP TCPCopy WIN-0UOTFKKVN1S:54028 -> fr.cloudtree.ru:https SUCCESS Length: 1420, seqnum: 0, connid: 0 98 12:38:54,9091897 MCLauncher.exe 6080 TCP Receive WIN-0UOTFKKVN1S:54028 -> fr.cloudtree.ru:https SUCCESS Length: 1420, seqnum: 0, connid: 0 98 12:38:54,9093008 MCLauncher.exe 6080 TCP TCPCopy WIN-0UOTFKKVN1S:54029 -> fr.cloudtree.ru:https SUCCESS Length: 1420, seqnum: 0, connid: 0 98 12:38:54,9093066 MCLauncher.exe 6080 TCP Receive WIN-0UOTFKKVN1S:54029 -> fr.cloudtree.ru:https SUCCESS Length: 1420, seqnum: 0, connid: 0 98 12:38:54,9093185 MCLauncher.exe 6080 TCP TCPCopy WIN-0UOTFKKVN1S:54029 -> fr.cloudtree.ru:https SUCCESS Length: 1192, seqnum: 0, connid: 0 98 12:38:54,9093202 MCLauncher.exe 6080 TCP Receive WIN-0UOTFKKVN1S:54029 -> fr.cloudtree.ru:https SUCCESS Length: 1192, seqnum: 0, connid: 0 98 12:38:54,9095288 MCLauncher.exe 6080 TCP TCPCopy WIN-0UOTFKKVN1S:54028 -> fr.cloudtree.ru:https SUCCESS Length: 512, seqnum: 0, connid: 0 98 12:38:54,9095324 MCLauncher.exe 6080 TCP Receive WIN-0UOTFKKVN1S:54028 -> fr.cloudtree.ru:https SUCCESS Length: 512, seqnum: 0, connid: 0 98 12:38:54,9095401 MCLauncher.exe 6080 TCP TCPCopy WIN-0UOTFKKVN1S:54029 -> fr.cloudtree.ru:https SUCCESS Length: 626, seqnum: 0, connid: 0 98 12:38:54,9095418 MCLauncher.exe 6080 TCP Receive WIN-0UOTFKKVN1S:54029 -> fr.cloudtree.ru:https SUCCESS Length: 626, seqnum: 0, connid: 0 98 12:38:54,9165715 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54029 -> fr.cloudtree.ru:https SUCCESS Length: 158, startime: 40858760, endtime: 40858760, seqnum: 0, connid: 0 98 12:38:54,9165826 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54028 -> fr.cloudtree.ru:https SUCCESS Length: 158, startime: 40858760, endtime: 40858760, seqnum: 0, connid: 0 98 12:38:54,9238213 MCLauncher.exe 6080 TCP TCPCopy WIN-0UOTFKKVN1S:54027 -> fr.cloudtree.ru:https SUCCESS Length: 1306, seqnum: 0, connid: 0 98 12:38:54,9238321 MCLauncher.exe 6080 TCP Receive WIN-0UOTFKKVN1S:54027 -> fr.cloudtree.ru:https SUCCESS Length: 1306, seqnum: 0, connid: 0 98 12:38:54,9241233 MCLauncher.exe 6080 TCP TCPCopy WIN-0UOTFKKVN1S:54027 -> fr.cloudtree.ru:https SUCCESS Length: 1306, seqnum: 0, connid: 0 98 12:38:54,9241277 MCLauncher.exe 6080 TCP Receive WIN-0UOTFKKVN1S:54027 -> fr.cloudtree.ru:https SUCCESS Length: 1306, seqnum: 0, connid: 0 98 12:38:54,9243147 MCLauncher.exe 6080 TCP TCPCopy WIN-0UOTFKKVN1S:54027 -> fr.cloudtree.ru:https SUCCESS Length: 626, seqnum: 0, connid: 0 98 12:38:54,9243175 MCLauncher.exe 6080 TCP Receive WIN-0UOTFKKVN1S:54027 -> fr.cloudtree.ru:https SUCCESS Length: 626, seqnum: 0, connid: 0 98 12:38:54,9282558 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54027 -> fr.cloudtree.ru:https SUCCESS Length: 158, startime: 40858761, endtime: 40858761, seqnum: 0, connid: 0 98 12:38:54,9935269 MCLauncher.exe 6080 TCP TCPCopy WIN-0UOTFKKVN1S:54028 -> fr.cloudtree.ru:https SUCCESS Length: 51, seqnum: 0, connid: 0 98 12:38:54,9935385 MCLauncher.exe 6080 TCP Receive WIN-0UOTFKKVN1S:54028 -> fr.cloudtree.ru:https SUCCESS Length: 51, seqnum: 0, connid: 0 98 12:38:54,9942126 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54028 -> fr.cloudtree.ru:https SUCCESS Length: 291, startime: 40858768, endtime: 40858768, seqnum: 0, connid: 0 98 12:38:55,0090382 MCLauncher.exe 6080 TCP TCPCopy WIN-0UOTFKKVN1S:54029 -> fr.cloudtree.ru:https SUCCESS Length: 51, seqnum: 0, connid: 0 98 12:38:55,0090495 MCLauncher.exe 6080 TCP Receive WIN-0UOTFKKVN1S:54029 -> fr.cloudtree.ru:https SUCCESS Length: 51, seqnum: 0, connid: 0 98 12:38:55,0097098 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54029 -> fr.cloudtree.ru:https SUCCESS Length: 292, startime: 40858770, endtime: 40858770, seqnum: 0, connid: 0 98 12:38:55,0243250 MCLauncher.exe 6080 TCP TCPCopy WIN-0UOTFKKVN1S:54027 -> fr.cloudtree.ru:https SUCCESS Length: 51, seqnum: 0, connid: 0 98 12:38:55,0243372 MCLauncher.exe 6080 TCP Receive WIN-0UOTFKKVN1S:54027 -> fr.cloudtree.ru:https SUCCESS Length: 51, seqnum: 0, connid: 0 98 12:38:55,0792697 MCLauncher.exe 6080 TCP TCPCopy WIN-0UOTFKKVN1S:54028 -> fr.cloudtree.ru:https SUCCESS Length: 539, seqnum: 0, connid: 0 98 12:38:55,0792810 MCLauncher.exe 6080 TCP Receive WIN-0UOTFKKVN1S:54028 -> fr.cloudtree.ru:https SUCCESS Length: 539, seqnum: 0, connid: 0 98 12:38:55,0823610 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54027 -> fr.cloudtree.ru:https SUCCESS Length: 291, startime: 40858777, endtime: 40858777, seqnum: 0, connid: 0 98 12:38:55,0825409 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54028 -> fr.cloudtree.ru:https SUCCESS Length: 291, startime: 40858777, endtime: 40858777, seqnum: 0, connid: 0 98 12:38:55,1045363 MCLauncher.exe 6080 TCP TCPCopy WIN-0UOTFKKVN1S:54029 -> fr.cloudtree.ru:https SUCCESS Length: 481, seqnum: 0, connid: 0 98 12:38:55,1045471 MCLauncher.exe 6080 TCP Receive WIN-0UOTFKKVN1S:54029 -> fr.cloudtree.ru:https SUCCESS Length: 481, seqnum: 0, connid: 0 98 12:38:55,1072279 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54029 -> fr.cloudtree.ru:https SUCCESS Length: 291, startime: 40858779, endtime: 40858779, seqnum: 0, connid: 0 98 12:38:55,1525028 MCLauncher.exe 6080 TCP TCPCopy WIN-0UOTFKKVN1S:54028 -> fr.cloudtree.ru:https SUCCESS Length: 1306, seqnum: 0, connid: 0 98 12:38:55,1525147 MCLauncher.exe 6080 TCP Receive WIN-0UOTFKKVN1S:54028 -> fr.cloudtree.ru:https SUCCESS Length: 1306, seqnum: 0, connid: 0 98 12:38:55,1526128 MCLauncher.exe 6080 TCP TCPCopy WIN-0UOTFKKVN1S:54028 -> fr.cloudtree.ru:https SUCCESS Length: 1306, seqnum: 0, connid: 0 98 12:38:55,1526155 MCLauncher.exe 6080 TCP Receive WIN-0UOTFKKVN1S:54028 -> fr.cloudtree.ru:https SUCCESS Length: 1306, seqnum: 0, connid: 0 98 12:38:55,1668983 MCLauncher.exe 6080 TCP TCPCopy WIN-0UOTFKKVN1S:54028 -> fr.cloudtree.ru:https SUCCESS Length: 1306, seqnum: 0, connid: 0 98 12:38:55,1669094 MCLauncher.exe 6080 TCP Receive WIN-0UOTFKKVN1S:54028 -> fr.cloudtree.ru:https SUCCESS Length: 1306, seqnum: 0, connid: 0 98 12:38:55,1671036 MCLauncher.exe 6080 TCP Connect WIN-0UOTFKKVN1S:54031 -> fr.cloudtree.ru:https SUCCESS Length: 0, mss: 1460, sackopt: 0, tsopt: 0, wsopt: 0, rcvwin: 64240, rcvwinscale: 0, sndwinscale: 0, seqnum: 0, connid: 0 98 12:38:55,1671338 MCLauncher.exe 6080 TCP TCPCopy WIN-0UOTFKKVN1S:54028 -> fr.cloudtree.ru:https SUCCESS Length: 1420, seqnum: 0, connid: 0 98 12:38:55,1671388 MCLauncher.exe 6080 TCP Receive WIN-0UOTFKKVN1S:54028 -> fr.cloudtree.ru:https SUCCESS Length: 1420, seqnum: 0, connid: 0 98 12:38:55,1671491 MCLauncher.exe 6080 TCP TCPCopy WIN-0UOTFKKVN1S:54028 -> fr.cloudtree.ru:https SUCCESS Length: 1192, seqnum: 0, connid: 0 98 12:38:55,1671510 MCLauncher.exe 6080 TCP Receive WIN-0UOTFKKVN1S:54028 -> fr.cloudtree.ru:https SUCCESS Length: 1192, seqnum: 0, connid: 0 98 12:38:55,1678206 MCLauncher.exe 6080 TCP TCPCopy WIN-0UOTFKKVN1S:54028 -> fr.cloudtree.ru:https SUCCESS Length: 1306, seqnum: 0, connid: 0 98 12:38:55,1678243 MCLauncher.exe 6080 TCP Receive WIN-0UOTFKKVN1S:54028 -> fr.cloudtree.ru:https SUCCESS Length: 1306, seqnum: 0, connid: 0 98 12:38:55,1679805 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54031 -> fr.cloudtree.ru:https SUCCESS Length: 517, startime: 40858785, endtime: 40858785, seqnum: 0, connid: 0 98 12:38:55,1816294 MCLauncher.exe 6080 TCP TCPCopy WIN-0UOTFKKVN1S:54028 -> fr.cloudtree.ru:https SUCCESS Length: 1420, seqnum: 0, connid: 0 98 12:38:55,1816397 MCLauncher.exe 6080 TCP Receive WIN-0UOTFKKVN1S:54028 -> fr.cloudtree.ru:https SUCCESS Length: 1420, seqnum: 0, connid: 0 98 12:38:55,1816566 MCLauncher.exe 6080 TCP TCPCopy WIN-0UOTFKKVN1S:54028 -> fr.cloudtree.ru:https SUCCESS Length: 1192, seqnum: 0, connid: 0 98 12:38:55,1816582 MCLauncher.exe 6080 TCP Receive WIN-0UOTFKKVN1S:54028 -> fr.cloudtree.ru:https SUCCESS Length: 1192, seqnum: 0, connid: 0 98 12:38:55,1817782 MCLauncher.exe 6080 TCP TCPCopy WIN-0UOTFKKVN1S:54028 -> fr.cloudtree.ru:https SUCCESS Length: 741, seqnum: 0, connid: 0 98 12:38:55,1817809 MCLauncher.exe 6080 TCP Receive WIN-0UOTFKKVN1S:54028 -> fr.cloudtree.ru:https SUCCESS Length: 741, seqnum: 0, connid: 0 98 12:38:55,1819644 MCLauncher.exe 6080 TCP Connect WIN-0UOTFKKVN1S:54032 -> fr.cloudtree.ru:https SUCCESS Length: 0, mss: 1460, sackopt: 0, tsopt: 0, wsopt: 0, rcvwin: 64240, rcvwinscale: 0, sndwinscale: 0, seqnum: 0, connid: 0 98 12:38:55,1819788 MCLauncher.exe 6080 TCP TCPCopy WIN-0UOTFKKVN1S:54027 -> fr.cloudtree.ru:https SUCCESS Length: 1306, seqnum: 0, connid: 0 98 12:38:55,1819838 MCLauncher.exe 6080 TCP Receive WIN-0UOTFKKVN1S:54027 -> fr.cloudtree.ru:https SUCCESS Length: 1306, seqnum: 0, connid: 0 98 12:38:55,1827695 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54032 -> fr.cloudtree.ru:https SUCCESS Length: 517, startime: 40858787, endtime: 40858787, seqnum: 0, connid: 0 98 12:38:55,1828922 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54028 -> fr.cloudtree.ru:https SUCCESS Length: 291, startime: 40858787, endtime: 40858787, seqnum: 0, connid: 0 98 12:38:55,1965358 MCLauncher.exe 6080 TCP TCPCopy WIN-0UOTFKKVN1S:54027 -> fr.cloudtree.ru:https SUCCESS Length: 1420, seqnum: 0, connid: 0 98 12:38:55,1965472 MCLauncher.exe 6080 TCP Receive WIN-0UOTFKKVN1S:54027 -> fr.cloudtree.ru:https SUCCESS Length: 1420, seqnum: 0, connid: 0 98 12:38:55,1965622 MCLauncher.exe 6080 TCP TCPCopy WIN-0UOTFKKVN1S:54027 -> fr.cloudtree.ru:https SUCCESS Length: 1192, seqnum: 0, connid: 0 98 12:38:55,1965638 MCLauncher.exe 6080 TCP Receive WIN-0UOTFKKVN1S:54027 -> fr.cloudtree.ru:https SUCCESS Length: 1192, seqnum: 0, connid: 0 98 12:38:55,1966539 MCLauncher.exe 6080 TCP TCPCopy WIN-0UOTFKKVN1S:54027 -> fr.cloudtree.ru:https SUCCESS Length: 1420, seqnum: 0, connid: 0 98 12:38:55,1966564 MCLauncher.exe 6080 TCP Receive WIN-0UOTFKKVN1S:54027 -> fr.cloudtree.ru:https SUCCESS Length: 1420, seqnum: 0, connid: 0 98 12:38:55,1966644 MCLauncher.exe 6080 TCP TCPCopy WIN-0UOTFKKVN1S:54027 -> fr.cloudtree.ru:https SUCCESS Length: 1192, seqnum: 0, connid: 0 98 12:38:55,1966658 MCLauncher.exe 6080 TCP Receive WIN-0UOTFKKVN1S:54027 -> fr.cloudtree.ru:https SUCCESS Length: 1192, seqnum: 0, connid: 0 98 12:38:55,2110106 MCLauncher.exe 6080 TCP TCPCopy WIN-0UOTFKKVN1S:54027 -> fr.cloudtree.ru:https SUCCESS Length: 1306, seqnum: 0, connid: 0 98 12:38:55,2110220 MCLauncher.exe 6080 TCP Receive WIN-0UOTFKKVN1S:54027 -> fr.cloudtree.ru:https SUCCESS Length: 1306, seqnum: 0, connid: 0 98 12:38:55,2111544 MCLauncher.exe 6080 TCP TCPCopy WIN-0UOTFKKVN1S:54027 -> fr.cloudtree.ru:https SUCCESS Length: 1306, seqnum: 0, connid: 0 98 12:38:55,2111578 MCLauncher.exe 6080 TCP Receive WIN-0UOTFKKVN1S:54027 -> fr.cloudtree.ru:https SUCCESS Length: 1306, seqnum: 0, connid: 0 98 12:38:55,2113082 MCLauncher.exe 6080 TCP TCPCopy WIN-0UOTFKKVN1S:54027 -> fr.cloudtree.ru:https SUCCESS Length: 1240, seqnum: 0, connid: 0 98 12:38:55,2113118 MCLauncher.exe 6080 TCP Receive WIN-0UOTFKKVN1S:54027 -> fr.cloudtree.ru:https SUCCESS Length: 1240, seqnum: 0, connid: 0 98 12:38:55,2114570 MCLauncher.exe 6080 TCP TCPCopy WIN-0UOTFKKVN1S:54029 -> fr.cloudtree.ru:https SUCCESS Length: 1306, seqnum: 0, connid: 0 98 12:38:55,2114620 MCLauncher.exe 6080 TCP Receive WIN-0UOTFKKVN1S:54029 -> fr.cloudtree.ru:https SUCCESS Length: 1306, seqnum: 0, connid: 0 98 12:38:55,2116035 MCLauncher.exe 6080 TCP TCPCopy WIN-0UOTFKKVN1S:54029 -> fr.cloudtree.ru:https SUCCESS Length: 1306, seqnum: 0, connid: 0 98 12:38:55,2116071 MCLauncher.exe 6080 TCP Receive WIN-0UOTFKKVN1S:54029 -> fr.cloudtree.ru:https SUCCESS Length: 1306, seqnum: 0, connid: 0 98 12:38:55,2117390 MCLauncher.exe 6080 TCP TCPCopy WIN-0UOTFKKVN1S:54029 -> fr.cloudtree.ru:https SUCCESS Length: 1306, seqnum: 0, connid: 0 98 12:38:55,2117426 MCLauncher.exe 6080 TCP Receive WIN-0UOTFKKVN1S:54029 -> fr.cloudtree.ru:https SUCCESS Length: 1306, seqnum: 0, connid: 0 98 12:38:55,2256242 MCLauncher.exe 6080 TCP TCPCopy WIN-0UOTFKKVN1S:54029 -> fr.cloudtree.ru:https SUCCESS Length: 1306, seqnum: 0, connid: 0 98 12:38:55,2256350 MCLauncher.exe 6080 TCP Receive WIN-0UOTFKKVN1S:54029 -> fr.cloudtree.ru:https SUCCESS Length: 1306, seqnum: 0, connid: 0 98 12:38:55,2257733 MCLauncher.exe 6080 TCP TCPCopy WIN-0UOTFKKVN1S:54029 -> fr.cloudtree.ru:https SUCCESS Length: 1306, seqnum: 0, connid: 0 98 12:38:55,2257766 MCLauncher.exe 6080 TCP Receive WIN-0UOTFKKVN1S:54029 -> fr.cloudtree.ru:https SUCCESS Length: 1306, seqnum: 0, connid: 0 98 12:38:55,2267585 MCLauncher.exe 6080 TCP TCPCopy WIN-0UOTFKKVN1S:54029 -> fr.cloudtree.ru:https SUCCESS Length: 1306, seqnum: 0, connid: 0 98 12:38:55,2267629 MCLauncher.exe 6080 TCP Receive WIN-0UOTFKKVN1S:54029 -> fr.cloudtree.ru:https SUCCESS Length: 1306, seqnum: 0, connid: 0 98 12:38:55,2269572 MCLauncher.exe 6080 TCP TCPCopy WIN-0UOTFKKVN1S:54029 -> fr.cloudtree.ru:https SUCCESS Length: 1420, seqnum: 0, connid: 0 98 12:38:55,2269616 MCLauncher.exe 6080 TCP Receive WIN-0UOTFKKVN1S:54029 -> fr.cloudtree.ru:https SUCCESS Length: 1420, seqnum: 0, connid: 0 98 12:38:55,2269705 MCLauncher.exe 6080 TCP TCPCopy WIN-0UOTFKKVN1S:54029 -> fr.cloudtree.ru:https SUCCESS Length: 1192, seqnum: 0, connid: 0 98 12:38:55,2269721 MCLauncher.exe 6080 TCP Receive WIN-0UOTFKKVN1S:54029 -> fr.cloudtree.ru:https SUCCESS Length: 1192, seqnum: 0, connid: 0 98 12:38:55,2402220 MCLauncher.exe 6080 TCP TCPCopy WIN-0UOTFKKVN1S:54029 -> fr.cloudtree.ru:https SUCCESS Length: 1420, seqnum: 0, connid: 0 98 12:38:55,2402331 MCLauncher.exe 6080 TCP Receive WIN-0UOTFKKVN1S:54029 -> fr.cloudtree.ru:https SUCCESS Length: 1420, seqnum: 0, connid: 0 98 12:38:55,2402497 MCLauncher.exe 6080 TCP TCPCopy WIN-0UOTFKKVN1S:54029 -> fr.cloudtree.ru:https SUCCESS Length: 201, seqnum: 0, connid: 0 98 12:38:55,2402517 MCLauncher.exe 6080 TCP Receive WIN-0UOTFKKVN1S:54029 -> fr.cloudtree.ru:https SUCCESS Length: 201, seqnum: 0, connid: 0 98 12:38:55,2533634 MCLauncher.exe 6080 TCP TCPCopy WIN-0UOTFKKVN1S:54028 -> fr.cloudtree.ru:https SUCCESS Length: 1420, seqnum: 0, connid: 0 98 12:38:55,2533756 MCLauncher.exe 6080 TCP Receive WIN-0UOTFKKVN1S:54028 -> fr.cloudtree.ru:https SUCCESS Length: 1420, seqnum: 0, connid: 0 98 12:38:55,2533938 MCLauncher.exe 6080 TCP TCPCopy WIN-0UOTFKKVN1S:54028 -> fr.cloudtree.ru:https SUCCESS Length: 1192, seqnum: 0, connid: 0 98 12:38:55,2533952 MCLauncher.exe 6080 TCP Receive WIN-0UOTFKKVN1S:54028 -> fr.cloudtree.ru:https SUCCESS Length: 1192, seqnum: 0, connid: 0 98 12:38:55,2548977 MCLauncher.exe 6080 TCP TCPCopy WIN-0UOTFKKVN1S:54028 -> fr.cloudtree.ru:https SUCCESS Length: 1306, seqnum: 0, connid: 0 98 12:38:55,2549063 MCLauncher.exe 6080 TCP Receive WIN-0UOTFKKVN1S:54028 -> fr.cloudtree.ru:https SUCCESS Length: 1306, seqnum: 0, connid: 0 98 12:38:55,2552219 MCLauncher.exe 6080 TCP TCPCopy WIN-0UOTFKKVN1S:54028 -> fr.cloudtree.ru:https SUCCESS Length: 1420, seqnum: 0, connid: 0 98 12:38:55,2552274 MCLauncher.exe 6080 TCP Receive WIN-0UOTFKKVN1S:54028 -> fr.cloudtree.ru:https SUCCESS Length: 1420, seqnum: 0, connid: 0 98 12:38:55,2552385 MCLauncher.exe 6080 TCP TCPCopy WIN-0UOTFKKVN1S:54028 -> fr.cloudtree.ru:https SUCCESS Length: 1192, seqnum: 0, connid: 0 98 12:38:55,2552399 MCLauncher.exe 6080 TCP Receive WIN-0UOTFKKVN1S:54028 -> fr.cloudtree.ru:https SUCCESS Length: 1192, seqnum: 0, connid: 0 98 12:38:55,2677614 MCLauncher.exe 6080 TCP TCPCopy WIN-0UOTFKKVN1S:54028 -> fr.cloudtree.ru:https SUCCESS Length: 1306, seqnum: 0, connid: 0 98 12:38:55,2677711 MCLauncher.exe 6080 TCP Receive WIN-0UOTFKKVN1S:54028 -> fr.cloudtree.ru:https SUCCESS Length: 1306, seqnum: 0, connid: 0 98 12:38:55,2681748 MCLauncher.exe 6080 TCP TCPCopy WIN-0UOTFKKVN1S:54028 -> fr.cloudtree.ru:https SUCCESS Length: 1306, seqnum: 0, connid: 0 98 12:38:55,2681781 MCLauncher.exe 6080 TCP Receive WIN-0UOTFKKVN1S:54028 -> fr.cloudtree.ru:https SUCCESS Length: 1306, seqnum: 0, connid: 0 98 12:38:55,2683349 MCLauncher.exe 6080 TCP TCPCopy WIN-0UOTFKKVN1S:54028 -> fr.cloudtree.ru:https SUCCESS Length: 1420, seqnum: 0, connid: 0 98 12:38:55,2683374 MCLauncher.exe 6080 TCP Receive WIN-0UOTFKKVN1S:54028 -> fr.cloudtree.ru:https SUCCESS Length: 1420, seqnum: 0, connid: 0 98 12:38:55,2683457 MCLauncher.exe 6080 TCP TCPCopy WIN-0UOTFKKVN1S:54028 -> fr.cloudtree.ru:https SUCCESS Length: 1192, seqnum: 0, connid: 0 98 12:38:55,2683471 MCLauncher.exe 6080 TCP Receive WIN-0UOTFKKVN1S:54028 -> fr.cloudtree.ru:https SUCCESS Length: 1192, seqnum: 0, connid: 0 98 12:38:55,2691932 MCLauncher.exe 6080 TCP TCPCopy WIN-0UOTFKKVN1S:54028 -> fr.cloudtree.ru:https SUCCESS Length: 584, seqnum: 0, connid: 0 98 12:38:55,2691968 MCLauncher.exe 6080 TCP Receive WIN-0UOTFKKVN1S:54028 -> fr.cloudtree.ru:https SUCCESS Length: 584, seqnum: 0, connid: 0 98 12:38:55,2697906 MCLauncher.exe 6080 TCP TCPCopy WIN-0UOTFKKVN1S:54031 -> fr.cloudtree.ru:https SUCCESS Length: 1306, seqnum: 0, connid: 0 98 12:38:55,2697961 MCLauncher.exe 6080 TCP Receive WIN-0UOTFKKVN1S:54031 -> fr.cloudtree.ru:https SUCCESS Length: 1306, seqnum: 0, connid: 0 98 12:38:55,2701555 MCLauncher.exe 6080 TCP TCPCopy WIN-0UOTFKKVN1S:54031 -> fr.cloudtree.ru:https SUCCESS Length: 1306, seqnum: 0, connid: 0 98 12:38:55,2701588 MCLauncher.exe 6080 TCP Receive WIN-0UOTFKKVN1S:54031 -> fr.cloudtree.ru:https SUCCESS Length: 1306, seqnum: 0, connid: 0 98 12:38:55,2824052 MCLauncher.exe 6080 TCP TCPCopy WIN-0UOTFKKVN1S:54031 -> fr.cloudtree.ru:https SUCCESS Length: 626, seqnum: 0, connid: 0 98 12:38:55,2824166 MCLauncher.exe 6080 TCP Receive WIN-0UOTFKKVN1S:54031 -> fr.cloudtree.ru:https SUCCESS Length: 626, seqnum: 0, connid: 0 98 12:38:55,2834184 MCLauncher.exe 6080 TCP TCPCopy WIN-0UOTFKKVN1S:54032 -> fr.cloudtree.ru:https SUCCESS Length: 1420, seqnum: 0, connid: 0 98 12:38:55,2834253 MCLauncher.exe 6080 TCP Receive WIN-0UOTFKKVN1S:54032 -> fr.cloudtree.ru:https SUCCESS Length: 1420, seqnum: 0, connid: 0 98 12:38:55,2834395 MCLauncher.exe 6080 TCP TCPCopy WIN-0UOTFKKVN1S:54032 -> fr.cloudtree.ru:https SUCCESS Length: 1192, seqnum: 0, connid: 0 98 12:38:55,2834411 MCLauncher.exe 6080 TCP Receive WIN-0UOTFKKVN1S:54032 -> fr.cloudtree.ru:https SUCCESS Length: 1192, seqnum: 0, connid: 0 98 12:38:55,2836212 MCLauncher.exe 6080 TCP TCPCopy WIN-0UOTFKKVN1S:54032 -> fr.cloudtree.ru:https SUCCESS Length: 626, seqnum: 0, connid: 0 98 12:38:55,2836243 MCLauncher.exe 6080 TCP Receive WIN-0UOTFKKVN1S:54032 -> fr.cloudtree.ru:https SUCCESS Length: 626, seqnum: 0, connid: 0 98 12:38:55,2902456 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54031 -> fr.cloudtree.ru:https SUCCESS Length: 158, startime: 40858797, endtime: 40858798, seqnum: 0, connid: 0 98 12:38:55,2902611 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54032 -> fr.cloudtree.ru:https SUCCESS Length: 158, startime: 40858797, endtime: 40858798, seqnum: 0, connid: 0 98 12:38:55,3794272 MCLauncher.exe 6080 TCP TCPCopy WIN-0UOTFKKVN1S:54032 -> fr.cloudtree.ru:https SUCCESS Length: 51, seqnum: 0, connid: 0 98 12:38:55,3794374 MCLauncher.exe 6080 TCP Receive WIN-0UOTFKKVN1S:54032 -> fr.cloudtree.ru:https SUCCESS Length: 51, seqnum: 0, connid: 0 98 12:38:55,3794566 MCLauncher.exe 6080 TCP TCPCopy WIN-0UOTFKKVN1S:54031 -> fr.cloudtree.ru:https SUCCESS Length: 51, seqnum: 0, connid: 0 98 12:38:55,3794607 MCLauncher.exe 6080 TCP Receive WIN-0UOTFKKVN1S:54031 -> fr.cloudtree.ru:https SUCCESS Length: 51, seqnum: 0, connid: 0 98 12:38:57,9236210 MCLauncher.exe 6080 CreateFile C:\Users\User\AppData\Local\Temp\d.htm SUCCESS Desired Access: Read Attributes, Delete, Disposition: Open, Options: Non-Directory File, Open Reparse Point, Attributes: n/a, ShareMode: Read, Write, Delete, AllocationSize: n/a, OpenResult: Opened 98 12:38:57,9238681 MCLauncher.exe 6080 QueryAttributeTagFile C:\Users\User\AppData\Local\Temp\d.htm SUCCESS Attributes: A, ReparseTag: 0x0 98 12:38:57,9238839 MCLauncher.exe 6080 SetDispositionInformationFile C:\Users\User\AppData\Local\Temp\d.htm SUCCESS Delete: True 98 12:38:57,9239036 MCLauncher.exe 6080 QueryNameInformationFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Name: \Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe 98 12:38:57,9240033 MCLauncher.exe 6080 CreateFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Desired Access: Synchronize, Disposition: Open, Options: Synchronous IO Non-Alert, Attributes: N, ShareMode: Read, Write, Delete, AllocationSize: n/a, OpenResult: Opened 98 12:38:57,9240238 MCLauncher.exe 6080 CloseFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS 98 12:38:57,9241765 MCLauncher.exe 6080 CloseFile C:\Users\User\AppData\Local\Temp\d.htm SUCCESS 98 12:38:57,9246017 MCLauncher.exe 6080 Thread Exit SUCCESS Thread ID: 7348, User Time: 0.0000000, Kernel Time: 0.0000000 98 12:39:24,7220200 MCLauncher.exe 6080 Thread Exit SUCCESS Thread ID: 12412, User Time: 0.0000000, Kernel Time: 0.0000000 98 12:39:24,7222924 MCLauncher.exe 6080 Thread Exit SUCCESS Thread ID: 6492, User Time: 0.0000000, Kernel Time: 0.0000000 98 12:39:32,9572733 MCLauncher.exe 6080 Thread Exit SUCCESS Thread ID: 3432, User Time: 0.0000000, Kernel Time: 0.0000000 98 12:39:35,1528970 MCLauncher.exe 6080 TCP TCPCopy WIN-0UOTFKKVN1S:54027 -> fr.cloudtree.ru:https SUCCESS Length: 31, seqnum: 0, connid: 0 98 12:39:35,1529098 MCLauncher.exe 6080 TCP Receive WIN-0UOTFKKVN1S:54027 -> fr.cloudtree.ru:https SUCCESS Length: 31, seqnum: 0, connid: 0 98 12:39:35,1533752 MCLauncher.exe 6080 TCP Disconnect WIN-0UOTFKKVN1S:54027 -> fr.cloudtree.ru:https SUCCESS Length: 0, seqnum: 0, connid: 0 98 12:39:35,1813318 MCLauncher.exe 6080 TCP TCPCopy WIN-0UOTFKKVN1S:54029 -> fr.cloudtree.ru:https SUCCESS Length: 31, seqnum: 0, connid: 0 98 12:39:35,1813443 MCLauncher.exe 6080 TCP Receive WIN-0UOTFKKVN1S:54029 -> fr.cloudtree.ru:https SUCCESS Length: 31, seqnum: 0, connid: 0 98 12:39:35,1817865 MCLauncher.exe 6080 TCP Disconnect WIN-0UOTFKKVN1S:54029 -> fr.cloudtree.ru:https SUCCESS Length: 0, seqnum: 0, connid: 0 98 12:39:35,2519479 MCLauncher.exe 6080 TCP TCPCopy WIN-0UOTFKKVN1S:54028 -> fr.cloudtree.ru:https SUCCESS Length: 31, seqnum: 0, connid: 0 98 12:39:35,2519590 MCLauncher.exe 6080 TCP Receive WIN-0UOTFKKVN1S:54028 -> fr.cloudtree.ru:https SUCCESS Length: 31, seqnum: 0, connid: 0 98 12:39:35,2527134 MCLauncher.exe 6080 TCP Disconnect WIN-0UOTFKKVN1S:54028 -> fr.cloudtree.ru:https SUCCESS Length: 0, seqnum: 0, connid: 0 98 12:39:40,8256179 MCLauncher.exe 6080 TCP Disconnect WIN-0UOTFKKVN1S:54030 -> 104.31.12.175:http SUCCESS Length: 0, seqnum: 0, connid: 0 98 12:39:55,2514611 MCLauncher.exe 6080 TCP TCPCopy WIN-0UOTFKKVN1S:54031 -> fr.cloudtree.ru:https SUCCESS Length: 31, seqnum: 0, connid: 0 98 12:39:55,2514705 MCLauncher.exe 6080 TCP Receive WIN-0UOTFKKVN1S:54031 -> fr.cloudtree.ru:https SUCCESS Length: 31, seqnum: 0, connid: 0 98 12:39:55,2520812 MCLauncher.exe 6080 TCP Disconnect WIN-0UOTFKKVN1S:54031 -> fr.cloudtree.ru:https SUCCESS Length: 0, seqnum: 0, connid: 0 98 12:39:55,2658428 MCLauncher.exe 6080 TCP TCPCopy WIN-0UOTFKKVN1S:54032 -> fr.cloudtree.ru:https SUCCESS Length: 31, seqnum: 0, connid: 0 98 12:39:55,2658536 MCLauncher.exe 6080 TCP Receive WIN-0UOTFKKVN1S:54032 -> fr.cloudtree.ru:https SUCCESS Length: 31, seqnum: 0, connid: 0 98 12:39:55,2663634 MCLauncher.exe 6080 TCP Disconnect WIN-0UOTFKKVN1S:54032 -> fr.cloudtree.ru:https SUCCESS Length: 0, seqnum: 0, connid: 0 98 12:40:03,0969625 MCLauncher.exe 6080 TCP Connect WIN-0UOTFKKVN1S:54075 -> sheltex.company:8000 SUCCESS Length: 0, mss: 1460, sackopt: 0, tsopt: 0, wsopt: 0, rcvwin: 64240, rcvwinscale: 0, sndwinscale: 0, seqnum: 0, connid: 0 98 12:40:03,2790254 MCLauncher.exe 6080 TCP TCPCopy WIN-0UOTFKKVN1S:54075 -> sheltex.company:8000 SUCCESS Length: 6, seqnum: 0, connid: 0 98 12:40:03,2790503 MCLauncher.exe 6080 TCP Receive WIN-0UOTFKKVN1S:54075 -> sheltex.company:8000 SUCCESS Length: 6, seqnum: 0, connid: 0 98 12:40:03,2796588 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54075 -> sheltex.company:8000 SUCCESS Length: 9, startime: 40865597, endtime: 40865597, seqnum: 0, connid: 0 98 12:40:03,2799297 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54075 -> sheltex.company:8000 SUCCESS Length: 103, startime: 40865597, endtime: 40865597, seqnum: 0, connid: 0 98 12:40:33,3267951 MCLauncher.exe 6080 TCP Connect WIN-0UOTFKKVN1S:54115 -> sheltex.company:8000 SUCCESS Length: 0, mss: 1460, sackopt: 0, tsopt: 0, wsopt: 0, rcvwin: 64240, rcvwinscale: 0, sndwinscale: 0, seqnum: 0, connid: 0 98 12:40:33,3841959 MCLauncher.exe 6080 TCP Disconnect WIN-0UOTFKKVN1S:54075 -> sheltex.company:8000 SUCCESS Length: 0, seqnum: 0, connid: 0 98 12:40:33,4908932 MCLauncher.exe 6080 TCP TCPCopy WIN-0UOTFKKVN1S:54115 -> sheltex.company:8000 SUCCESS Length: 6, seqnum: 0, connid: 0 98 12:40:33,4909062 MCLauncher.exe 6080 TCP Receive WIN-0UOTFKKVN1S:54115 -> sheltex.company:8000 SUCCESS Length: 6, seqnum: 0, connid: 0 98 12:40:33,4913922 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54115 -> sheltex.company:8000 SUCCESS Length: 9, startime: 40868618, endtime: 40868618, seqnum: 0, connid: 0 98 12:40:33,4917227 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54115 -> sheltex.company:8000 SUCCESS Length: 103, startime: 40868618, endtime: 40868618, seqnum: 0, connid: 0 98 12:40:36,4085472 MCLauncher.exe 6080 Thread Exit SUCCESS Thread ID: 11880, User Time: 0.0000000, Kernel Time: 0.0000000 98 12:41:03,5343409 MCLauncher.exe 6080 TCP Connect WIN-0UOTFKKVN1S:54160 -> sheltex.company:8000 SUCCESS Length: 0, mss: 1460, sackopt: 0, tsopt: 0, wsopt: 0, rcvwin: 64240, rcvwinscale: 0, sndwinscale: 0, seqnum: 0, connid: 0 98 12:41:03,6280983 MCLauncher.exe 6080 TCP Disconnect WIN-0UOTFKKVN1S:54115 -> sheltex.company:8000 SUCCESS Length: 0, seqnum: 0, connid: 0 98 12:41:03,7459197 MCLauncher.exe 6080 TCP TCPCopy WIN-0UOTFKKVN1S:54160 -> sheltex.company:8000 SUCCESS Length: 6, seqnum: 0, connid: 0 98 12:41:03,7459327 MCLauncher.exe 6080 TCP Receive WIN-0UOTFKKVN1S:54160 -> sheltex.company:8000 SUCCESS Length: 6, seqnum: 0, connid: 0 98 12:41:03,7466134 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54160 -> sheltex.company:8000 SUCCESS Length: 9, startime: 40871643, endtime: 40871643, seqnum: 0, connid: 0 98 12:41:03,7470349 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54160 -> sheltex.company:8000 SUCCESS Length: 103, startime: 40871643, endtime: 40871643, seqnum: 0, connid: 0 98 12:41:33,8011810 MCLauncher.exe 6080 TCP Connect WIN-0UOTFKKVN1S:54199 -> sheltex.company:8000 SUCCESS Length: 0, mss: 1460, sackopt: 0, tsopt: 0, wsopt: 0, rcvwin: 64240, rcvwinscale: 0, sndwinscale: 0, seqnum: 0, connid: 0 98 12:41:33,8883523 MCLauncher.exe 6080 TCP Disconnect WIN-0UOTFKKVN1S:54160 -> sheltex.company:8000 SUCCESS Length: 0, seqnum: 0, connid: 0 98 12:41:33,9867903 MCLauncher.exe 6080 TCP TCPCopy WIN-0UOTFKKVN1S:54199 -> sheltex.company:8000 SUCCESS Length: 6, seqnum: 0, connid: 0 98 12:41:33,9868036 MCLauncher.exe 6080 TCP Receive WIN-0UOTFKKVN1S:54199 -> sheltex.company:8000 SUCCESS Length: 6, seqnum: 0, connid: 0 98 12:41:33,9876553 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54199 -> sheltex.company:8000 SUCCESS Length: 9, startime: 40874667, endtime: 40874667, seqnum: 0, connid: 0 98 12:41:33,9881869 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54199 -> sheltex.company:8000 SUCCESS Length: 103, startime: 40874667, endtime: 40874667, seqnum: 0, connid: 0 98 12:42:04,0485117 MCLauncher.exe 6080 TCP Connect WIN-0UOTFKKVN1S:54251 -> sheltex.company:8000 SUCCESS Length: 0, mss: 1460, sackopt: 0, tsopt: 0, wsopt: 0, rcvwin: 64240, rcvwinscale: 0, sndwinscale: 0, seqnum: 0, connid: 0 98 12:42:04,0918106 MCLauncher.exe 6080 TCP Disconnect WIN-0UOTFKKVN1S:54199 -> sheltex.company:8000 SUCCESS Length: 0, seqnum: 0, connid: 0 98 12:42:04,2979342 MCLauncher.exe 6080 TCP TCPCopy WIN-0UOTFKKVN1S:54251 -> sheltex.company:8000 SUCCESS Length: 6, seqnum: 0, connid: 0 98 12:42:04,2979425 MCLauncher.exe 6080 TCP Receive WIN-0UOTFKKVN1S:54251 -> sheltex.company:8000 SUCCESS Length: 6, seqnum: 0, connid: 0 98 12:42:04,2991424 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54251 -> sheltex.company:8000 SUCCESS Length: 9, startime: 40877698, endtime: 40877699, seqnum: 0, connid: 0 98 12:42:04,2996032 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54251 -> sheltex.company:8000 SUCCESS Length: 103, startime: 40877698, endtime: 40877699, seqnum: 0, connid: 0 98 12:42:34,3682133 MCLauncher.exe 6080 TCP Connect WIN-0UOTFKKVN1S:54286 -> sheltex.company:8000 SUCCESS Length: 0, mss: 1460, sackopt: 0, tsopt: 0, wsopt: 0, rcvwin: 64240, rcvwinscale: 0, sndwinscale: 0, seqnum: 0, connid: 0 98 12:42:34,4852770 MCLauncher.exe 6080 TCP Disconnect WIN-0UOTFKKVN1S:54251 -> sheltex.company:8000 SUCCESS Length: 0, seqnum: 0, connid: 0 98 12:42:34,6229874 MCLauncher.exe 6080 TCP TCPCopy WIN-0UOTFKKVN1S:54286 -> sheltex.company:8000 SUCCESS Length: 6, seqnum: 0, connid: 0 98 12:42:34,6230002 MCLauncher.exe 6080 TCP Receive WIN-0UOTFKKVN1S:54286 -> sheltex.company:8000 SUCCESS Length: 6, seqnum: 0, connid: 0 98 12:42:34,6232695 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54286 -> sheltex.company:8000 SUCCESS Length: 9, startime: 40880731, endtime: 40880731, seqnum: 0, connid: 0 98 12:42:34,6238859 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54286 -> sheltex.company:8000 SUCCESS Length: 103, startime: 40880731, endtime: 40880731, seqnum: 0, connid: 0 98 12:43:04,6990330 MCLauncher.exe 6080 TCP Connect WIN-0UOTFKKVN1S:54327 -> sheltex.company:8000 SUCCESS Length: 0, mss: 1460, sackopt: 0, tsopt: 0, wsopt: 0, rcvwin: 64240, rcvwinscale: 0, sndwinscale: 0, seqnum: 0, connid: 0 98 12:43:04,7281086 MCLauncher.exe 6080 TCP Disconnect WIN-0UOTFKKVN1S:54286 -> sheltex.company:8000 SUCCESS Length: 0, seqnum: 0, connid: 0 98 12:43:04,9596576 MCLauncher.exe 6080 TCP TCPCopy WIN-0UOTFKKVN1S:54327 -> sheltex.company:8000 SUCCESS Length: 6, seqnum: 0, connid: 0 98 12:43:04,9596709 MCLauncher.exe 6080 TCP Receive WIN-0UOTFKKVN1S:54327 -> sheltex.company:8000 SUCCESS Length: 6, seqnum: 0, connid: 0 98 12:43:04,9599361 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54327 -> sheltex.company:8000 SUCCESS Length: 9, startime: 40883765, endtime: 40883765, seqnum: 0, connid: 0 98 12:43:04,9605160 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54327 -> sheltex.company:8000 SUCCESS Length: 103, startime: 40883765, endtime: 40883765, seqnum: 0, connid: 0 98 12:43:35,0355411 MCLauncher.exe 6080 TCP Connect WIN-0UOTFKKVN1S:54365 -> sheltex.company:8000 SUCCESS Length: 0, mss: 1460, sackopt: 0, tsopt: 0, wsopt: 0, rcvwin: 64240, rcvwinscale: 0, sndwinscale: 0, seqnum: 0, connid: 0 98 12:43:35,1114289 MCLauncher.exe 6080 TCP Disconnect WIN-0UOTFKKVN1S:54327 -> sheltex.company:8000 SUCCESS Length: 0, seqnum: 0, connid: 0 98 12:43:35,2176777 MCLauncher.exe 6080 TCP TCPCopy WIN-0UOTFKKVN1S:54365 -> sheltex.company:8000 SUCCESS Length: 6, seqnum: 0, connid: 0 98 12:43:35,2176918 MCLauncher.exe 6080 TCP Receive WIN-0UOTFKKVN1S:54365 -> sheltex.company:8000 SUCCESS Length: 6, seqnum: 0, connid: 0 98 12:43:35,2180745 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54365 -> sheltex.company:8000 SUCCESS Length: 9, startime: 40886790, endtime: 40886790, seqnum: 0, connid: 0 98 12:43:35,2187527 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54365 -> sheltex.company:8000 SUCCESS Length: 103, startime: 40886790, endtime: 40886790, seqnum: 0, connid: 0 98 12:44:05,3031357 MCLauncher.exe 6080 TCP Connect WIN-0UOTFKKVN1S:54397 -> sheltex.company:8000 SUCCESS Length: 0, mss: 1460, sackopt: 0, tsopt: 0, wsopt: 0, rcvwin: 64240, rcvwinscale: 0, sndwinscale: 0, seqnum: 0, connid: 0 98 12:44:05,4580072 MCLauncher.exe 6080 TCP Disconnect WIN-0UOTFKKVN1S:54365 -> sheltex.company:8000 SUCCESS Length: 0, seqnum: 0, connid: 0 98 12:44:05,5287693 MCLauncher.exe 6080 TCP TCPCopy WIN-0UOTFKKVN1S:54397 -> sheltex.company:8000 SUCCESS Length: 6, seqnum: 0, connid: 0 98 12:44:05,5287823 MCLauncher.exe 6080 TCP Receive WIN-0UOTFKKVN1S:54397 -> sheltex.company:8000 SUCCESS Length: 6, seqnum: 0, connid: 0 98 12:44:05,5294938 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54397 -> sheltex.company:8000 SUCCESS Length: 9, startime: 40889821, endtime: 40889822, seqnum: 0, connid: 0 98 12:44:05,5299238 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54397 -> sheltex.company:8000 SUCCESS Length: 103, startime: 40889821, endtime: 40889822, seqnum: 0, connid: 0 98 12:44:34,6910673 MCLauncher.exe 6080 RegOpenKey HKCU SUCCESS Desired Access: Read 98 12:44:34,6910878 MCLauncher.exe 6080 RegSetInfoKey HKCU SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 98 12:44:34,6911019 MCLauncher.exe 6080 RegQueryKey HKCU SUCCESS Query: HandleTags, HandleTags: 0x100 98 12:44:34,6911108 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Classes\Local Settings REPARSE Desired Access: Read 98 12:44:34,6911222 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Classes\Local Settings SUCCESS Desired Access: Read 98 12:44:34,6911352 MCLauncher.exe 6080 RegCloseKey HKCU SUCCESS 98 12:44:34,6911416 MCLauncher.exe 6080 RegCloseKey HKCU\Software\Classes\Local Settings SUCCESS 98 12:44:35,5883793 MCLauncher.exe 6080 TCP Connect WIN-0UOTFKKVN1S:54442 -> sheltex.company:8000 SUCCESS Length: 0, mss: 1460, sackopt: 0, tsopt: 0, wsopt: 0, rcvwin: 64240, rcvwinscale: 0, sndwinscale: 0, seqnum: 0, connid: 0 98 12:44:35,7949492 MCLauncher.exe 6080 TCP Disconnect WIN-0UOTFKKVN1S:54397 -> sheltex.company:8000 SUCCESS Length: 0, seqnum: 0, connid: 0 98 12:44:35,7953856 MCLauncher.exe 6080 TCP TCPCopy WIN-0UOTFKKVN1S:54442 -> sheltex.company:8000 SUCCESS Length: 6, seqnum: 0, connid: 0 98 12:44:35,7953964 MCLauncher.exe 6080 TCP Receive WIN-0UOTFKKVN1S:54442 -> sheltex.company:8000 SUCCESS Length: 6, seqnum: 0, connid: 0 98 12:44:35,7959799 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54442 -> sheltex.company:8000 SUCCESS Length: 9, startime: 40892848, endtime: 40892848, seqnum: 0, connid: 0 98 12:44:35,7963644 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54442 -> sheltex.company:8000 SUCCESS Length: 103, startime: 40892848, endtime: 40892848, seqnum: 0, connid: 0 98 12:45:05,8607677 MCLauncher.exe 6080 TCP Connect WIN-0UOTFKKVN1S:54478 -> sheltex.company:8000 SUCCESS Length: 0, mss: 1460, sackopt: 0, tsopt: 0, wsopt: 0, rcvwin: 64240, rcvwinscale: 0, sndwinscale: 0, seqnum: 0, connid: 0 98 12:45:05,9964230 MCLauncher.exe 6080 TCP Disconnect WIN-0UOTFKKVN1S:54442 -> sheltex.company:8000 SUCCESS Length: 0, seqnum: 0, connid: 0 98 12:45:06,1090191 MCLauncher.exe 6080 TCP TCPCopy WIN-0UOTFKKVN1S:54478 -> sheltex.company:8000 SUCCESS Length: 6, seqnum: 0, connid: 0 98 12:45:06,1090332 MCLauncher.exe 6080 TCP Receive WIN-0UOTFKKVN1S:54478 -> sheltex.company:8000 SUCCESS Length: 6, seqnum: 0, connid: 0 98 12:45:06,1096350 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54478 -> sheltex.company:8000 SUCCESS Length: 9, startime: 40895880, endtime: 40895880, seqnum: 0, connid: 0 98 12:45:06,1099993 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54478 -> sheltex.company:8000 SUCCESS Length: 103, startime: 40895880, endtime: 40895880, seqnum: 0, connid: 0 98 12:45:36,2009596 MCLauncher.exe 6080 TCP Connect WIN-0UOTFKKVN1S:54493 -> sheltex.company:8000 SUCCESS Length: 0, mss: 1460, sackopt: 0, tsopt: 0, wsopt: 0, rcvwin: 64240, rcvwinscale: 0, sndwinscale: 0, seqnum: 0, connid: 0 98 12:45:36,2590873 MCLauncher.exe 6080 TCP Disconnect WIN-0UOTFKKVN1S:54478 -> sheltex.company:8000 SUCCESS Length: 0, seqnum: 0, connid: 0 98 12:45:36,4837574 MCLauncher.exe 6080 TCP TCPCopy WIN-0UOTFKKVN1S:54493 -> sheltex.company:8000 SUCCESS Length: 6, seqnum: 0, connid: 0 98 12:45:36,4837701 MCLauncher.exe 6080 TCP Receive WIN-0UOTFKKVN1S:54493 -> sheltex.company:8000 SUCCESS Length: 6, seqnum: 0, connid: 0 98 12:45:36,4842987 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54493 -> sheltex.company:8000 SUCCESS Length: 9, startime: 40898917, endtime: 40898917, seqnum: 0, connid: 0 98 12:45:36,4846254 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54493 -> sheltex.company:8000 SUCCESS Length: 103, startime: 40898917, endtime: 40898917, seqnum: 0, connid: 0 98 12:46:06,5542230 MCLauncher.exe 6080 TCP Connect WIN-0UOTFKKVN1S:54528 -> sheltex.company:8000 SUCCESS Length: 0, mss: 1460, sackopt: 0, tsopt: 0, wsopt: 0, rcvwin: 64240, rcvwinscale: 0, sndwinscale: 0, seqnum: 0, connid: 0 98 12:46:06,7558161 MCLauncher.exe 6080 TCP Disconnect WIN-0UOTFKKVN1S:54493 -> sheltex.company:8000 SUCCESS Length: 0, seqnum: 0, connid: 0 98 12:46:06,8623259 MCLauncher.exe 6080 TCP TCPCopy WIN-0UOTFKKVN1S:54528 -> sheltex.company:8000 SUCCESS Length: 6, seqnum: 0, connid: 0 98 12:46:06,8623378 MCLauncher.exe 6080 TCP Receive WIN-0UOTFKKVN1S:54528 -> sheltex.company:8000 SUCCESS Length: 6, seqnum: 0, connid: 0 98 12:46:06,8628401 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54528 -> sheltex.company:8000 SUCCESS Length: 9, startime: 40901955, endtime: 40901955, seqnum: 0, connid: 0 98 12:46:06,8631396 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54528 -> sheltex.company:8000 SUCCESS Length: 103, startime: 40901955, endtime: 40901955, seqnum: 0, connid: 0 98 12:46:36,9268453 MCLauncher.exe 6080 TCP Connect WIN-0UOTFKKVN1S:54562 -> sheltex.company:8000 SUCCESS Length: 0, mss: 1460, sackopt: 0, tsopt: 0, wsopt: 0, rcvwin: 64240, rcvwinscale: 0, sndwinscale: 0, seqnum: 0, connid: 0 98 12:46:37,1160572 MCLauncher.exe 6080 TCP Disconnect WIN-0UOTFKKVN1S:54528 -> sheltex.company:8000 SUCCESS Length: 0, seqnum: 0, connid: 0 98 12:46:37,1163849 MCLauncher.exe 6080 TCP TCPCopy WIN-0UOTFKKVN1S:54562 -> sheltex.company:8000 SUCCESS Length: 6, seqnum: 0, connid: 0 98 12:46:37,1163941 MCLauncher.exe 6080 TCP Receive WIN-0UOTFKKVN1S:54562 -> sheltex.company:8000 SUCCESS Length: 6, seqnum: 0, connid: 0 98 12:46:37,1167930 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54562 -> sheltex.company:8000 SUCCESS Length: 9, startime: 40904980, endtime: 40904980, seqnum: 0, connid: 0 98 12:46:37,1171175 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54562 -> sheltex.company:8000 SUCCESS Length: 103, startime: 40904980, endtime: 40904980, seqnum: 0, connid: 0 98 12:47:07,1623881 MCLauncher.exe 6080 TCP Connect WIN-0UOTFKKVN1S:54583 -> sheltex.company:8000 SUCCESS Length: 0, mss: 1460, sackopt: 0, tsopt: 0, wsopt: 0, rcvwin: 64240, rcvwinscale: 0, sndwinscale: 0, seqnum: 0, connid: 0 98 12:47:07,2600485 MCLauncher.exe 6080 TCP Disconnect WIN-0UOTFKKVN1S:54562 -> sheltex.company:8000 SUCCESS Length: 0, seqnum: 0, connid: 0 98 12:47:07,3830949 MCLauncher.exe 6080 TCP TCPCopy WIN-0UOTFKKVN1S:54583 -> sheltex.company:8000 SUCCESS Length: 6, seqnum: 0, connid: 0 98 12:47:07,3831076 MCLauncher.exe 6080 TCP Receive WIN-0UOTFKKVN1S:54583 -> sheltex.company:8000 SUCCESS Length: 6, seqnum: 0, connid: 0 98 12:47:07,3836010 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54583 -> sheltex.company:8000 SUCCESS Length: 9, startime: 40908007, endtime: 40908007, seqnum: 0, connid: 0 98 12:47:07,3838562 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54583 -> sheltex.company:8000 SUCCESS Length: 103, startime: 40908007, endtime: 40908007, seqnum: 0, connid: 0 98 12:47:37,4518111 MCLauncher.exe 6080 TCP Connect WIN-0UOTFKKVN1S:54605 -> sheltex.company:8000 SUCCESS Length: 0, mss: 1460, sackopt: 0, tsopt: 0, wsopt: 0, rcvwin: 64240, rcvwinscale: 0, sndwinscale: 0, seqnum: 0, connid: 0 98 12:47:37,5573606 MCLauncher.exe 6080 TCP Disconnect WIN-0UOTFKKVN1S:54583 -> sheltex.company:8000 SUCCESS Length: 0, seqnum: 0, connid: 0 98 12:47:37,6702917 MCLauncher.exe 6080 TCP TCPCopy WIN-0UOTFKKVN1S:54605 -> sheltex.company:8000 SUCCESS Length: 6, seqnum: 0, connid: 0 98 12:47:37,6703081 MCLauncher.exe 6080 TCP Receive WIN-0UOTFKKVN1S:54605 -> sheltex.company:8000 SUCCESS Length: 6, seqnum: 0, connid: 0 98 12:47:37,6706857 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54605 -> sheltex.company:8000 SUCCESS Length: 9, startime: 40911036, endtime: 40911036, seqnum: 0, connid: 0 98 12:47:37,6709450 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54605 -> sheltex.company:8000 SUCCESS Length: 103, startime: 40911036, endtime: 40911036, seqnum: 0, connid: 0 98 12:48:07,7362903 MCLauncher.exe 6080 TCP Connect WIN-0UOTFKKVN1S:54627 -> sheltex.company:8000 SUCCESS Length: 0, mss: 1460, sackopt: 0, tsopt: 0, wsopt: 0, rcvwin: 64240, rcvwinscale: 0, sndwinscale: 0, seqnum: 0, connid: 0 98 12:48:07,9335789 MCLauncher.exe 6080 TCP TCPCopy WIN-0UOTFKKVN1S:54627 -> sheltex.company:8000 SUCCESS Length: 6, seqnum: 0, connid: 0 98 12:48:07,9335919 MCLauncher.exe 6080 TCP Receive WIN-0UOTFKKVN1S:54627 -> sheltex.company:8000 SUCCESS Length: 6, seqnum: 0, connid: 0 98 12:48:07,9336551 MCLauncher.exe 6080 TCP Disconnect WIN-0UOTFKKVN1S:54605 -> sheltex.company:8000 SUCCESS Length: 0, seqnum: 0, connid: 0 98 12:48:07,9341768 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54627 -> sheltex.company:8000 SUCCESS Length: 9, startime: 40914062, endtime: 40914062, seqnum: 0, connid: 0 98 12:48:07,9343250 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54627 -> sheltex.company:8000 SUCCESS Length: 103, startime: 40914062, endtime: 40914062, seqnum: 0, connid: 0 98 12:48:37,9927223 MCLauncher.exe 6080 TCP Connect WIN-0UOTFKKVN1S:54642 -> sheltex.company:8000 SUCCESS Length: 0, mss: 1460, sackopt: 0, tsopt: 0, wsopt: 0, rcvwin: 64240, rcvwinscale: 0, sndwinscale: 0, seqnum: 0, connid: 0 98 12:48:38,0787687 MCLauncher.exe 6080 TCP Disconnect WIN-0UOTFKKVN1S:54627 -> sheltex.company:8000 SUCCESS Length: 0, seqnum: 0, connid: 0 98 12:48:38,1778747 MCLauncher.exe 6080 TCP TCPCopy WIN-0UOTFKKVN1S:54642 -> sheltex.company:8000 SUCCESS Length: 6, seqnum: 0, connid: 0 98 12:48:38,1778861 MCLauncher.exe 6080 TCP Receive WIN-0UOTFKKVN1S:54642 -> sheltex.company:8000 SUCCESS Length: 6, seqnum: 0, connid: 0 98 12:48:38,1782948 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54642 -> sheltex.company:8000 SUCCESS Length: 9, startime: 40917086, endtime: 40917086, seqnum: 0, connid: 0 98 12:48:38,1784430 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54642 -> sheltex.company:8000 SUCCESS Length: 103, startime: 40917086, endtime: 40917086, seqnum: 0, connid: 0 98 12:49:08,2634150 MCLauncher.exe 6080 TCP Connect WIN-0UOTFKKVN1S:54661 -> sheltex.company:8000 SUCCESS Length: 0, mss: 1460, sackopt: 0, tsopt: 0, wsopt: 0, rcvwin: 64240, rcvwinscale: 0, sndwinscale: 0, seqnum: 0, connid: 0 98 12:49:08,3492854 MCLauncher.exe 6080 TCP Disconnect WIN-0UOTFKKVN1S:54642 -> sheltex.company:8000 SUCCESS Length: 0, seqnum: 0, connid: 0 98 12:49:08,4559224 MCLauncher.exe 6080 TCP TCPCopy WIN-0UOTFKKVN1S:54661 -> sheltex.company:8000 SUCCESS Length: 6, seqnum: 0, connid: 0 98 12:49:08,4559351 MCLauncher.exe 6080 TCP Receive WIN-0UOTFKKVN1S:54661 -> sheltex.company:8000 SUCCESS Length: 6, seqnum: 0, connid: 0 98 12:49:08,4563152 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54661 -> sheltex.company:8000 SUCCESS Length: 9, startime: 40920114, endtime: 40920114, seqnum: 0, connid: 0 98 12:49:08,4564418 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54661 -> sheltex.company:8000 SUCCESS Length: 103, startime: 40920114, endtime: 40920114, seqnum: 0, connid: 0 98 12:49:38,5973836 MCLauncher.exe 6080 TCP Connect WIN-0UOTFKKVN1S:54749 -> sheltex.company:8000 SUCCESS Length: 0, mss: 1460, sackopt: 0, tsopt: 0, wsopt: 0, rcvwin: 64240, rcvwinscale: 0, sndwinscale: 0, seqnum: 0, connid: 0 98 12:49:38,7196343 MCLauncher.exe 6080 TCP Disconnect WIN-0UOTFKKVN1S:54661 -> sheltex.company:8000 SUCCESS Length: 0, seqnum: 0, connid: 0 98 12:49:38,9120999 MCLauncher.exe 6080 TCP TCPCopy WIN-0UOTFKKVN1S:54749 -> sheltex.company:8000 SUCCESS Length: 6, seqnum: 0, connid: 0 98 12:49:38,9121073 MCLauncher.exe 6080 TCP Receive WIN-0UOTFKKVN1S:54749 -> sheltex.company:8000 SUCCESS Length: 6, seqnum: 0, connid: 0 98 12:49:38,9125855 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54749 -> sheltex.company:8000 SUCCESS Length: 9, startime: 40923160, endtime: 40923160, seqnum: 0, connid: 0 98 12:49:38,9127163 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54749 -> sheltex.company:8000 SUCCESS Length: 103, startime: 40923160, endtime: 40923160, seqnum: 0, connid: 0 98 12:50:09,0153811 MCLauncher.exe 6080 TCP Connect WIN-0UOTFKKVN1S:54768 -> sheltex.company:8000 SUCCESS Length: 0, mss: 1460, sackopt: 0, tsopt: 0, wsopt: 0, rcvwin: 64240, rcvwinscale: 0, sndwinscale: 0, seqnum: 0, connid: 0 98 12:50:09,1074418 MCLauncher.exe 6080 TCP Disconnect WIN-0UOTFKKVN1S:54749 -> sheltex.company:8000 SUCCESS Length: 0, seqnum: 0, connid: 0 98 12:50:09,1956554 MCLauncher.exe 6080 TCP TCPCopy WIN-0UOTFKKVN1S:54768 -> sheltex.company:8000 SUCCESS Length: 6, seqnum: 0, connid: 0 98 12:50:09,1956676 MCLauncher.exe 6080 TCP Receive WIN-0UOTFKKVN1S:54768 -> sheltex.company:8000 SUCCESS Length: 6, seqnum: 0, connid: 0 98 12:50:09,1971046 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54768 -> sheltex.company:8000 SUCCESS Length: 9, startime: 40926188, endtime: 40926188, seqnum: 0, connid: 0 98 12:50:09,1972155 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54768 -> sheltex.company:8000 SUCCESS Length: 103, startime: 40926188, endtime: 40926188, seqnum: 0, connid: 0 98 12:50:39,2645816 MCLauncher.exe 6080 TCP Connect WIN-0UOTFKKVN1S:54801 -> sheltex.company:8000 SUCCESS Length: 0, mss: 1460, sackopt: 0, tsopt: 0, wsopt: 0, rcvwin: 64240, rcvwinscale: 0, sndwinscale: 0, seqnum: 0, connid: 0 98 12:50:39,3977287 MCLauncher.exe 6080 TCP Disconnect WIN-0UOTFKKVN1S:54768 -> sheltex.company:8000 SUCCESS Length: 0, seqnum: 0, connid: 0 98 12:50:39,5319795 MCLauncher.exe 6080 TCP TCPCopy WIN-0UOTFKKVN1S:54801 -> sheltex.company:8000 SUCCESS Length: 6, seqnum: 0, connid: 0 98 12:50:39,5319856 MCLauncher.exe 6080 TCP Receive WIN-0UOTFKKVN1S:54801 -> sheltex.company:8000 SUCCESS Length: 6, seqnum: 0, connid: 0 98 12:50:39,5332875 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54801 -> sheltex.company:8000 SUCCESS Length: 9, startime: 40929222, endtime: 40929222, seqnum: 0, connid: 0 98 12:50:39,5336851 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54801 -> sheltex.company:8000 SUCCESS Length: 103, startime: 40929222, endtime: 40929222, seqnum: 0, connid: 0 98 12:51:09,5925550 MCLauncher.exe 6080 TCP Connect WIN-0UOTFKKVN1S:54828 -> sheltex.company:8000 SUCCESS Length: 0, mss: 1460, sackopt: 0, tsopt: 0, wsopt: 0, rcvwin: 64240, rcvwinscale: 0, sndwinscale: 0, seqnum: 0, connid: 0 98 12:51:09,6177256 MCLauncher.exe 6080 TCP Disconnect WIN-0UOTFKKVN1S:54801 -> sheltex.company:8000 SUCCESS Length: 0, seqnum: 0, connid: 0 98 12:51:09,8346048 MCLauncher.exe 6080 TCP TCPCopy WIN-0UOTFKKVN1S:54828 -> sheltex.company:8000 SUCCESS Length: 6, seqnum: 0, connid: 0 98 12:51:09,8346161 MCLauncher.exe 6080 TCP Receive WIN-0UOTFKKVN1S:54828 -> sheltex.company:8000 SUCCESS Length: 6, seqnum: 0, connid: 0 98 12:51:09,8348841 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54828 -> sheltex.company:8000 SUCCESS Length: 9, startime: 40932252, endtime: 40932252, seqnum: 0, connid: 0 98 12:51:09,8350666 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54828 -> sheltex.company:8000 SUCCESS Length: 103, startime: 40932252, endtime: 40932252, seqnum: 0, connid: 0 98 12:51:39,9353906 MCLauncher.exe 6080 TCP Connect WIN-0UOTFKKVN1S:54846 -> sheltex.company:8000 SUCCESS Length: 0, mss: 1460, sackopt: 0, tsopt: 0, wsopt: 0, rcvwin: 64240, rcvwinscale: 0, sndwinscale: 0, seqnum: 0, connid: 0 98 12:51:40,0412470 MCLauncher.exe 6080 TCP Disconnect WIN-0UOTFKKVN1S:54828 -> sheltex.company:8000 SUCCESS Length: 0, seqnum: 0, connid: 0 98 12:51:40,1509651 MCLauncher.exe 6080 TCP TCPCopy WIN-0UOTFKKVN1S:54846 -> sheltex.company:8000 SUCCESS Length: 6, seqnum: 0, connid: 0 98 12:51:40,1509776 MCLauncher.exe 6080 TCP Receive WIN-0UOTFKKVN1S:54846 -> sheltex.company:8000 SUCCESS Length: 6, seqnum: 0, connid: 0 98 12:51:40,1514547 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54846 -> sheltex.company:8000 SUCCESS Length: 9, startime: 40935284, endtime: 40935284, seqnum: 0, connid: 0 98 12:51:40,1515965 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54846 -> sheltex.company:8000 SUCCESS Length: 103, startime: 40935284, endtime: 40935284, seqnum: 0, connid: 0 98 12:51:48,4372779 MCLauncher.exe 6080 TCP TCPCopy WIN-0UOTFKKVN1S:54846 -> sheltex.company:8000 SUCCESS Length: 61, seqnum: 0, connid: 0 98 12:51:48,4372917 MCLauncher.exe 6080 TCP Receive WIN-0UOTFKKVN1S:54846 -> sheltex.company:8000 SUCCESS Length: 61, seqnum: 0, connid: 0 98 12:51:48,4396176 MCLauncher.exe 6080 Thread Create SUCCESS Thread ID: 9328 98 12:51:48,4545025 MCLauncher.exe 6080 Thread Create SUCCESS Thread ID: 13024 98 12:51:48,4553040 MCLauncher.exe 6080 Thread Create SUCCESS Thread ID: 9864 98 12:51:48,5394165 MCLauncher.exe 6080 TCP Connect WIN-0UOTFKKVN1S:54847 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 0, mss: 1460, sackopt: 0, tsopt: 0, wsopt: 0, rcvwin: 64240, rcvwinscale: 0, sndwinscale: 0, seqnum: 0, connid: 0 98 12:51:48,5399737 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54847 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40936123, endtime: 40936123, seqnum: 0, connid: 0 98 12:51:48,5458005 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54847 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40936123, endtime: 40936123, seqnum: 0, connid: 0 98 12:51:48,5516965 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54847 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40936124, endtime: 40936124, seqnum: 0, connid: 0 98 12:51:48,5546801 MCLauncher.exe 6080 TCP Connect WIN-0UOTFKKVN1S:54849 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 0, mss: 1460, sackopt: 0, tsopt: 0, wsopt: 0, rcvwin: 64240, rcvwinscale: 0, sndwinscale: 0, seqnum: 0, connid: 0 98 12:51:48,5550879 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54849 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40936124, endtime: 40936124, seqnum: 0, connid: 0 98 12:51:48,5574216 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54847 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40936124, endtime: 40936124, seqnum: 0, connid: 0 98 12:51:48,5603262 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54849 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40936125, endtime: 40936125, seqnum: 0, connid: 0 98 12:51:48,5632500 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54847 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40936125, endtime: 40936125, seqnum: 0, connid: 0 98 12:51:48,5662148 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54849 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40936125, endtime: 40936125, seqnum: 0, connid: 0 98 12:51:48,5691560 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54847 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40936126, endtime: 40936126, seqnum: 0, connid: 0 98 12:51:48,5720438 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54849 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40936126, endtime: 40936126, seqnum: 0, connid: 0 98 12:51:48,5769055 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54847 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40936126, endtime: 40936126, seqnum: 0, connid: 0 98 12:51:48,5789059 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54849 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40936126, endtime: 40936126, seqnum: 0, connid: 0 98 12:51:48,5829163 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54847 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40936127, endtime: 40936127, seqnum: 0, connid: 0 98 12:51:48,5849233 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54849 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40936127, endtime: 40936127, seqnum: 0, connid: 0 98 12:51:48,5887253 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54847 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40936127, endtime: 40936127, seqnum: 0, connid: 0 98 12:51:48,5905810 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54849 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40936128, endtime: 40936128, seqnum: 0, connid: 0 98 12:51:48,5944850 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54847 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40936128, endtime: 40936128, seqnum: 0, connid: 0 98 12:51:48,5964399 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54849 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40936128, endtime: 40936128, seqnum: 0, connid: 0 98 12:51:48,6004384 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54847 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40936129, endtime: 40936129, seqnum: 0, connid: 0 98 12:51:48,6022002 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54849 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40936129, endtime: 40936129, seqnum: 0, connid: 0 98 12:51:48,6060480 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54847 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40936129, endtime: 40936129, seqnum: 0, connid: 0 98 12:51:48,6080123 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54849 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40936129, endtime: 40936129, seqnum: 0, connid: 0 98 12:51:48,6120157 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54847 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40936130, endtime: 40936130, seqnum: 0, connid: 0 98 12:51:48,6139665 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54849 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40936130, endtime: 40936130, seqnum: 0, connid: 0 98 12:51:48,6177649 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54847 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40936130, endtime: 40936130, seqnum: 0, connid: 0 98 12:51:48,6198304 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54849 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40936131, endtime: 40936131, seqnum: 0, connid: 0 98 12:51:48,6236391 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54847 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40936131, endtime: 40936131, seqnum: 0, connid: 0 98 12:51:48,6254776 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54849 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40936131, endtime: 40936131, seqnum: 0, connid: 0 98 12:51:48,6295157 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54847 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40936132, endtime: 40936132, seqnum: 0, connid: 0 98 12:51:48,6314917 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54849 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40936132, endtime: 40936132, seqnum: 0, connid: 0 98 12:51:48,6352305 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54847 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40936132, endtime: 40936132, seqnum: 0, connid: 0 98 12:51:48,6372783 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54849 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40936132, endtime: 40936132, seqnum: 0, connid: 0 98 12:51:48,6412019 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54847 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40936133, endtime: 40936133, seqnum: 0, connid: 0 98 12:51:48,6430812 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54849 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40936133, endtime: 40936133, seqnum: 0, connid: 0 98 12:51:48,6473565 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54847 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40936133, endtime: 40936133, seqnum: 0, connid: 0 98 12:51:48,6493817 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54849 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40936134, endtime: 40936134, seqnum: 0, connid: 0 98 12:51:48,6531212 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54847 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40936134, endtime: 40936134, seqnum: 0, connid: 0 98 12:51:48,6550525 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54849 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40936134, endtime: 40936134, seqnum: 0, connid: 0 98 12:51:48,6589742 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54847 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40936134, endtime: 40936135, seqnum: 0, connid: 0 98 12:51:48,6609067 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54849 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40936135, endtime: 40936135, seqnum: 0, connid: 0 98 12:51:48,6647196 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54847 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40936135, endtime: 40936135, seqnum: 0, connid: 0 98 12:51:48,6667227 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54849 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40936135, endtime: 40936135, seqnum: 0, connid: 0 98 12:51:48,6707350 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54847 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40936136, endtime: 40936136, seqnum: 0, connid: 0 98 12:51:48,6726863 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54849 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40936136, endtime: 40936136, seqnum: 0, connid: 0 98 12:51:48,6766211 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54847 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40936136, endtime: 40936136, seqnum: 0, connid: 0 98 12:51:48,6785341 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54849 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40936136, endtime: 40936136, seqnum: 0, connid: 0 98 12:51:48,6842254 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54847 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40936137, endtime: 40936137, seqnum: 0, connid: 0 98 12:51:48,6846565 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54849 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40936137, endtime: 40936137, seqnum: 0, connid: 0 98 12:51:48,6902583 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54849 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40936138, endtime: 40936138, seqnum: 0, connid: 0 98 12:51:48,6904766 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54847 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40936138, endtime: 40936138, seqnum: 0, connid: 0 98 12:51:48,6961494 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54847 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40936138, endtime: 40936138, seqnum: 0, connid: 0 98 12:51:48,6961721 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54849 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40936138, endtime: 40936138, seqnum: 0, connid: 0 98 12:51:48,7018611 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54849 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40936139, endtime: 40936139, seqnum: 0, connid: 0 98 12:51:48,7758584 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54847 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40936139, endtime: 40936146, seqnum: 0, connid: 0 98 12:51:48,7758758 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54847 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40936139, endtime: 40936146, seqnum: 0, connid: 0 98 12:51:48,7758872 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54847 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40936140, endtime: 40936146, seqnum: 0, connid: 0 98 12:51:48,7758955 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54847 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40936141, endtime: 40936146, seqnum: 0, connid: 0 98 12:51:48,7759016 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54847 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40936141, endtime: 40936146, seqnum: 0, connid: 0 98 12:51:48,7759085 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54847 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40936142, endtime: 40936146, seqnum: 0, connid: 0 98 12:51:48,7759141 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54847 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40936142, endtime: 40936146, seqnum: 0, connid: 0 98 12:51:48,7759210 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54847 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40936143, endtime: 40936146, seqnum: 0, connid: 0 98 12:51:48,7759268 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54847 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40936143, endtime: 40936146, seqnum: 0, connid: 0 98 12:51:48,7759540 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54847 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40936144, endtime: 40936146, seqnum: 0, connid: 0 98 12:51:48,7759598 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54847 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40936145, endtime: 40936146, seqnum: 0, connid: 0 98 12:51:48,7759678 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54847 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40936145, endtime: 40936146, seqnum: 0, connid: 0 98 12:51:48,7791462 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54847 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40936147, endtime: 40936147, seqnum: 0, connid: 0 98 12:51:49,1635953 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54849 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40936139, endtime: 40936185, seqnum: 0, connid: 0 98 12:51:49,1636122 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54849 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40936140, endtime: 40936185, seqnum: 0, connid: 0 98 12:51:49,1636194 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54849 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40936141, endtime: 40936185, seqnum: 0, connid: 0 98 12:51:49,1636260 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54849 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40936141, endtime: 40936185, seqnum: 0, connid: 0 98 12:51:49,1636313 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54849 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40936142, endtime: 40936185, seqnum: 0, connid: 0 98 12:51:49,1636377 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54849 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40936142, endtime: 40936185, seqnum: 0, connid: 0 98 12:51:49,1636426 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54849 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40936143, endtime: 40936185, seqnum: 0, connid: 0 98 12:51:49,1636490 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54849 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40936143, endtime: 40936185, seqnum: 0, connid: 0 98 12:51:49,1636546 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54849 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40936144, endtime: 40936185, seqnum: 0, connid: 0 98 12:51:49,1637878 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54849 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40936145, endtime: 40936185, seqnum: 0, connid: 0 98 12:51:49,1637942 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54849 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40936145, endtime: 40936185, seqnum: 0, connid: 0 98 12:51:49,1638003 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54849 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40936147, endtime: 40936185, seqnum: 0, connid: 0 98 12:51:49,4702453 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54847 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40936147, endtime: 40936216, seqnum: 0, connid: 0 98 12:51:49,4702614 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54847 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40936148, endtime: 40936216, seqnum: 0, connid: 0 98 12:51:49,4702683 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54847 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40936148, endtime: 40936216, seqnum: 0, connid: 0 98 12:51:49,4702755 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54847 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40936149, endtime: 40936216, seqnum: 0, connid: 0 98 12:51:49,4702808 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54847 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40936149, endtime: 40936216, seqnum: 0, connid: 0 98 12:51:49,4702872 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54847 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40936150, endtime: 40936216, seqnum: 0, connid: 0 98 12:51:49,4702927 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54847 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40936151, endtime: 40936216, seqnum: 0, connid: 0 98 12:51:49,4702991 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54847 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40936151, endtime: 40936216, seqnum: 0, connid: 0 98 12:51:49,4703046 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54847 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40936152, endtime: 40936216, seqnum: 0, connid: 0 98 12:51:49,4703575 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54847 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40936152, endtime: 40936216, seqnum: 0, connid: 0 98 12:51:49,4703639 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54847 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40936153, endtime: 40936216, seqnum: 0, connid: 0 98 12:51:49,4703711 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54847 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40936153, endtime: 40936216, seqnum: 0, connid: 0 98 12:51:51,3842737 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54849 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40936147, endtime: 40936407, seqnum: 0, connid: 0 98 12:51:51,3842937 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54849 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40936185, endtime: 40936407, seqnum: 0, connid: 0 98 12:51:51,3843014 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54849 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40936185, endtime: 40936407, seqnum: 0, connid: 0 98 12:51:51,3843092 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54849 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40936186, endtime: 40936407, seqnum: 0, connid: 0 98 12:51:51,3843153 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54849 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40936187, endtime: 40936407, seqnum: 0, connid: 0 98 12:51:51,3843222 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54849 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40936188, endtime: 40936407, seqnum: 0, connid: 0 98 12:51:51,3843280 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54849 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40936188, endtime: 40936407, seqnum: 0, connid: 0 98 12:51:51,3843350 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54849 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40936189, endtime: 40936407, seqnum: 0, connid: 0 98 12:51:51,3843408 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54849 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40936189, endtime: 40936407, seqnum: 0, connid: 0 98 12:51:51,3843732 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54849 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40936190, endtime: 40936407, seqnum: 0, connid: 0 98 12:51:51,3843793 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54849 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40936190, endtime: 40936407, seqnum: 0, connid: 0 98 12:51:51,3843956 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54849 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40936191, endtime: 40936407, seqnum: 0, connid: 0 98 12:51:51,3844017 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54849 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40936192, endtime: 40936407, seqnum: 0, connid: 0 98 12:51:51,4597319 MCLauncher.exe 6080 TCP TCPCopy WIN-0UOTFKKVN1S:54846 -> sheltex.company:8000 SUCCESS Length: 58, seqnum: 0, connid: 0 98 12:51:51,4597427 MCLauncher.exe 6080 TCP Receive WIN-0UOTFKKVN1S:54846 -> sheltex.company:8000 SUCCESS Length: 58, seqnum: 0, connid: 0 98 12:51:51,4598253 MCLauncher.exe 6080 TCP Reconnect WIN-0UOTFKKVN1S:54848 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 0, seqnum: 0, connid: 0 98 12:51:51,4610111 MCLauncher.exe 6080 Thread Create SUCCESS Thread ID: 336 98 12:51:51,4647269 MCLauncher.exe 6080 Thread Create SUCCESS Thread ID: 5892 98 12:51:51,4653002 MCLauncher.exe 6080 Thread Create SUCCESS Thread ID: 8696 98 12:51:51,5526842 MCLauncher.exe 6080 TCP Connect WIN-0UOTFKKVN1S:54852 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 0, mss: 1460, sackopt: 0, tsopt: 0, wsopt: 0, rcvwin: 64240, rcvwinscale: 0, sndwinscale: 0, seqnum: 0, connid: 0 98 12:51:51,5529588 MCLauncher.exe 6080 TCP Connect WIN-0UOTFKKVN1S:54851 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 0, mss: 1460, sackopt: 0, tsopt: 0, wsopt: 0, rcvwin: 64240, rcvwinscale: 0, sndwinscale: 0, seqnum: 0, connid: 0 98 12:51:51,5531721 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54852 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40936424, endtime: 40936424, seqnum: 0, connid: 0 98 12:51:51,5532541 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54851 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40936424, endtime: 40936424, seqnum: 0, connid: 0 98 12:51:51,5584550 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54852 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40936424, endtime: 40936424, seqnum: 0, connid: 0 98 12:51:51,5596026 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54851 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40936425, endtime: 40936425, seqnum: 0, connid: 0 98 12:51:51,5644660 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54852 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40936425, endtime: 40936425, seqnum: 0, connid: 0 98 12:51:51,5653132 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54851 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40936425, endtime: 40936425, seqnum: 0, connid: 0 98 12:51:51,5702875 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54852 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40936426, endtime: 40936426, seqnum: 0, connid: 0 98 12:51:51,5725541 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54851 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40936426, endtime: 40936426, seqnum: 0, connid: 0 98 12:51:51,5794029 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54852 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40936427, endtime: 40936427, seqnum: 0, connid: 0 98 12:51:51,5796041 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54851 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40936427, endtime: 40936427, seqnum: 0, connid: 0 98 12:51:51,5849679 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54851 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40936427, endtime: 40936427, seqnum: 0, connid: 0 98 12:51:51,5849837 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54852 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40936427, endtime: 40936427, seqnum: 0, connid: 0 98 12:51:51,5909102 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54852 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40936428, endtime: 40936428, seqnum: 0, connid: 0 98 12:51:51,5909290 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54851 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40936428, endtime: 40936428, seqnum: 0, connid: 0 98 12:51:51,5966461 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54851 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40936428, endtime: 40936428, seqnum: 0, connid: 0 98 12:51:51,5968428 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54852 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40936428, endtime: 40936428, seqnum: 0, connid: 0 98 12:51:51,6041684 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54852 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40936429, endtime: 40936429, seqnum: 0, connid: 0 98 12:51:51,6043626 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54851 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40936429, endtime: 40936429, seqnum: 0, connid: 0 98 12:51:51,6104825 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54851 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40936430, endtime: 40936430, seqnum: 0, connid: 0 98 12:51:51,6105036 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54852 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40936430, endtime: 40936430, seqnum: 0, connid: 0 98 12:51:51,6162749 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54852 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40936430, endtime: 40936430, seqnum: 0, connid: 0 98 12:51:51,6162935 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54851 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40936430, endtime: 40936430, seqnum: 0, connid: 0 98 12:51:51,6220269 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54851 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40936431, endtime: 40936431, seqnum: 0, connid: 0 98 12:51:51,6222059 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54852 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40936431, endtime: 40936431, seqnum: 0, connid: 0 98 12:51:51,6274300 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54852 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40936431, endtime: 40936431, seqnum: 0, connid: 0 98 12:51:51,6274993 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54851 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40936431, endtime: 40936431, seqnum: 0, connid: 0 98 12:51:51,6333133 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54851 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40936432, endtime: 40936432, seqnum: 0, connid: 0 98 12:51:51,6335372 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54852 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40936432, endtime: 40936432, seqnum: 0, connid: 0 98 12:51:51,6392107 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54852 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40936433, endtime: 40936433, seqnum: 0, connid: 0 98 12:51:51,6392315 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54851 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40936433, endtime: 40936433, seqnum: 0, connid: 0 98 12:51:51,6451142 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54851 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40936433, endtime: 40936433, seqnum: 0, connid: 0 98 12:51:51,6451347 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54852 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40936433, endtime: 40936433, seqnum: 0, connid: 0 98 12:51:51,6509942 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54852 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40936434, endtime: 40936434, seqnum: 0, connid: 0 98 12:51:51,6511676 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54851 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40936434, endtime: 40936434, seqnum: 0, connid: 0 98 12:51:51,6578308 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54851 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40936434, endtime: 40936434, seqnum: 0, connid: 0 98 12:51:51,6578500 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54852 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40936434, endtime: 40936434, seqnum: 0, connid: 0 98 12:51:51,6637011 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54852 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40936435, endtime: 40936435, seqnum: 0, connid: 0 98 12:51:51,6637194 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54851 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40936435, endtime: 40936435, seqnum: 0, connid: 0 98 12:51:51,6696564 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54851 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40936436, endtime: 40936436, seqnum: 0, connid: 0 98 12:51:51,6696744 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54852 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40936436, endtime: 40936436, seqnum: 0, connid: 0 98 12:51:51,6753627 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54852 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40936436, endtime: 40936436, seqnum: 0, connid: 0 98 12:51:51,6755533 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54851 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40936436, endtime: 40936436, seqnum: 0, connid: 0 98 12:51:51,6813571 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54851 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40936437, endtime: 40936437, seqnum: 0, connid: 0 98 12:51:51,6813759 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54852 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40936437, endtime: 40936437, seqnum: 0, connid: 0 98 12:51:51,6870578 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54852 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40936437, endtime: 40936437, seqnum: 0, connid: 0 98 12:51:51,6870805 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54851 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40936437, endtime: 40936437, seqnum: 0, connid: 0 98 12:51:51,6929627 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54851 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40936438, endtime: 40936438, seqnum: 0, connid: 0 98 12:51:51,6931890 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54852 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40936438, endtime: 40936438, seqnum: 0, connid: 0 98 12:51:51,6987116 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54852 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40936438, endtime: 40936438, seqnum: 0, connid: 0 98 12:51:51,6987847 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54851 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40936438, endtime: 40936438, seqnum: 0, connid: 0 98 12:51:52,0306882 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54852 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40936439, endtime: 40936472, seqnum: 0, connid: 0 98 12:51:52,0307064 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54852 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40936440, endtime: 40936472, seqnum: 0, connid: 0 98 12:51:52,0307136 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54852 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40936440, endtime: 40936472, seqnum: 0, connid: 0 98 12:51:52,0307209 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54852 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40936441, endtime: 40936472, seqnum: 0, connid: 0 98 12:51:52,0307267 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54852 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40936441, endtime: 40936472, seqnum: 0, connid: 0 98 12:51:52,0307333 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54852 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40936442, endtime: 40936472, seqnum: 0, connid: 0 98 12:51:52,0307389 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54852 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40936443, endtime: 40936472, seqnum: 0, connid: 0 98 12:51:52,0307455 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54852 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40936443, endtime: 40936472, seqnum: 0, connid: 0 98 12:51:52,0307510 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54852 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40936444, endtime: 40936472, seqnum: 0, connid: 0 98 12:51:52,0307857 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54852 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40936444, endtime: 40936472, seqnum: 0, connid: 0 98 12:51:52,0307915 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54852 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40936445, endtime: 40936472, seqnum: 0, connid: 0 98 12:51:52,0307981 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54852 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40936445, endtime: 40936472, seqnum: 0, connid: 0 98 12:51:52,0308034 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54852 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40936446, endtime: 40936472, seqnum: 0, connid: 0 98 12:51:52,0308142 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54851 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40936439, endtime: 40936472, seqnum: 0, connid: 0 98 12:51:52,0308209 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54851 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40936440, endtime: 40936472, seqnum: 0, connid: 0 98 12:51:52,0308267 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54851 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40936440, endtime: 40936472, seqnum: 0, connid: 0 98 12:51:52,0308333 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54851 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40936441, endtime: 40936472, seqnum: 0, connid: 0 98 12:51:52,0308389 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54851 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40936441, endtime: 40936472, seqnum: 0, connid: 0 98 12:51:52,0308452 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54851 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40936442, endtime: 40936472, seqnum: 0, connid: 0 98 12:51:52,0309032 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54851 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40936443, endtime: 40936472, seqnum: 0, connid: 0 98 12:51:52,0309106 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54851 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40936443, endtime: 40936472, seqnum: 0, connid: 0 98 12:51:52,0309159 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54851 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40936444, endtime: 40936472, seqnum: 0, connid: 0 98 12:51:52,0309223 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54851 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40936444, endtime: 40936472, seqnum: 0, connid: 0 98 12:51:52,0309275 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54851 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40936445, endtime: 40936472, seqnum: 0, connid: 0 98 12:51:52,0309342 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54851 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40936445, endtime: 40936472, seqnum: 0, connid: 0 98 12:51:52,0309394 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54851 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40936446, endtime: 40936472, seqnum: 0, connid: 0 98 12:51:53,8600801 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54852 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40936472, endtime: 40936655, seqnum: 0, connid: 0 98 12:51:53,8601025 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54852 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40936472, endtime: 40936655, seqnum: 0, connid: 0 98 12:51:53,8601131 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54852 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40936473, endtime: 40936655, seqnum: 0, connid: 0 98 12:51:53,8601241 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54852 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40936473, endtime: 40936655, seqnum: 0, connid: 0 98 12:51:53,8601333 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54852 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40936474, endtime: 40936655, seqnum: 0, connid: 0 98 12:51:53,8601441 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54852 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40936475, endtime: 40936655, seqnum: 0, connid: 0 98 12:51:53,8601527 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54852 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40936475, endtime: 40936655, seqnum: 0, connid: 0 98 12:51:53,8601635 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54852 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40936476, endtime: 40936655, seqnum: 0, connid: 0 98 12:51:53,8601724 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54852 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40936476, endtime: 40936655, seqnum: 0, connid: 0 98 12:51:53,8602122 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54852 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40936477, endtime: 40936655, seqnum: 0, connid: 0 98 12:51:53,8602211 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54852 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40936478, endtime: 40936655, seqnum: 0, connid: 0 98 12:51:53,8602316 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54852 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40936478, endtime: 40936655, seqnum: 0, connid: 0 98 12:51:53,8602405 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54852 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40936479, endtime: 40936655, seqnum: 0, connid: 0 98 12:51:54,1935037 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54847 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40936154, endtime: 40936688, seqnum: 0, connid: 0 98 12:51:54,1935215 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54847 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40936216, endtime: 40936688, seqnum: 0, connid: 0 98 12:51:54,1935284 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54847 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40936216, endtime: 40936688, seqnum: 0, connid: 0 98 12:51:54,1935356 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54847 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40936217, endtime: 40936688, seqnum: 0, connid: 0 98 12:51:54,1935411 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54847 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40936217, endtime: 40936688, seqnum: 0, connid: 0 98 12:51:54,1935475 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54847 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40936218, endtime: 40936688, seqnum: 0, connid: 0 98 12:51:54,1935528 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54847 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40936219, endtime: 40936688, seqnum: 0, connid: 0 98 12:51:54,1935592 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54847 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40936219, endtime: 40936688, seqnum: 0, connid: 0 98 12:51:54,1935644 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54847 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40936220, endtime: 40936688, seqnum: 0, connid: 0 98 12:51:54,1935932 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54847 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40936220, endtime: 40936688, seqnum: 0, connid: 0 98 12:51:54,1935988 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54847 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40936221, endtime: 40936688, seqnum: 0, connid: 0 98 12:51:54,1936051 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54847 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40936222, endtime: 40936688, seqnum: 0, connid: 0 98 12:51:54,1937331 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54847 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40936222, endtime: 40936688, seqnum: 0, connid: 0 98 12:51:54,4670969 MCLauncher.exe 6080 TCP Reconnect WIN-0UOTFKKVN1S:54853 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 0, seqnum: 0, connid: 0 98 12:51:54,5549937 MCLauncher.exe 6080 TCP Connect WIN-0UOTFKKVN1S:54853 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 0, mss: 1460, sackopt: 0, tsopt: 0, wsopt: 0, rcvwin: 64240, rcvwinscale: 0, sndwinscale: 0, seqnum: 0, connid: 0 98 12:51:54,5554478 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54853 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40936724, endtime: 40936724, seqnum: 0, connid: 0 98 12:51:54,5611244 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54853 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40936725, endtime: 40936725, seqnum: 0, connid: 0 98 12:51:54,5669645 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54853 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40936725, endtime: 40936725, seqnum: 0, connid: 0 98 12:51:54,5728522 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54853 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40936726, endtime: 40936726, seqnum: 0, connid: 0 98 12:51:54,5787405 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54853 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40936726, endtime: 40936726, seqnum: 0, connid: 0 98 12:51:54,5845520 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54853 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40936727, endtime: 40936727, seqnum: 0, connid: 0 98 12:51:54,5906021 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54853 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40936728, endtime: 40936728, seqnum: 0, connid: 0 98 12:51:54,5962244 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54853 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40936728, endtime: 40936728, seqnum: 0, connid: 0 98 12:51:54,6030652 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54853 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40936729, endtime: 40936729, seqnum: 0, connid: 0 98 12:51:54,6089169 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54853 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40936729, endtime: 40936730, seqnum: 0, connid: 0 98 12:51:54,6148184 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54853 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40936730, endtime: 40936730, seqnum: 0, connid: 0 98 12:51:54,6207092 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54853 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40936731, endtime: 40936731, seqnum: 0, connid: 0 98 12:51:54,6264698 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54853 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40936731, endtime: 40936731, seqnum: 0, connid: 0 98 12:51:54,6323575 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54853 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40936732, endtime: 40936732, seqnum: 0, connid: 0 98 12:51:54,6514278 MCLauncher.exe 6080 RegOpenKey HKLM\Software\WOW6432Node\Policies\Microsoft\MUI\Settings REPARSE Desired Access: Read 98 12:51:54,6514536 MCLauncher.exe 6080 RegOpenKey HKLM\SOFTWARE\Policies\Microsoft\MUI\Settings NAME NOT FOUND Desired Access: Read 98 12:51:54,6514851 MCLauncher.exe 6080 RegOpenKey HKCU SUCCESS Desired Access: Maximum Allowed, Granted Access: All Access 98 12:51:54,6515093 MCLauncher.exe 6080 RegQueryKey HKCU SUCCESS Query: HandleTags, HandleTags: 0x0 98 12:51:54,6515189 MCLauncher.exe 6080 RegQueryKey HKCU SUCCESS Query: Name 98 12:51:54,6515419 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Policies\Microsoft\Control Panel\Desktop NAME NOT FOUND Desired Access: Read 98 12:51:54,6515719 MCLauncher.exe 6080 RegQueryKey HKCU SUCCESS Query: HandleTags, HandleTags: 0x0 98 12:51:54,6515802 MCLauncher.exe 6080 RegQueryKey HKCU SUCCESS Query: Name 98 12:51:54,6515885 MCLauncher.exe 6080 RegOpenKey HKCU\Control Panel\Desktop SUCCESS Desired Access: Read 98 12:51:54,6516062 MCLauncher.exe 6080 RegSetInfoKey HKCU\Control Panel\Desktop SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 98 12:51:54,6516231 MCLauncher.exe 6080 RegQueryValue HKCU\Control Panel\Desktop\PreferredUILanguages NAME NOT FOUND Length: 12 98 12:51:54,6516486 MCLauncher.exe 6080 RegCloseKey HKCU\Control Panel\Desktop SUCCESS 98 12:51:54,6516542 MCLauncher.exe 6080 RegCloseKey HKCU SUCCESS 98 12:51:54,6516675 MCLauncher.exe 6080 RegOpenKey HKLM\Software\WOW6432Node\Policies\Microsoft\MUI\Settings REPARSE Desired Access: Read 98 12:51:54,6516769 MCLauncher.exe 6080 RegOpenKey HKLM\SOFTWARE\Policies\Microsoft\MUI\Settings NAME NOT FOUND Desired Access: Read 98 12:51:54,6516927 MCLauncher.exe 6080 RegOpenKey HKCU SUCCESS Desired Access: Maximum Allowed, Granted Access: All Access 98 12:51:54,6517071 MCLauncher.exe 6080 RegQueryKey HKCU SUCCESS Query: HandleTags, HandleTags: 0x0 98 12:51:54,6517146 MCLauncher.exe 6080 RegQueryKey HKCU SUCCESS Query: Name 98 12:51:54,6517220 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Policies\Microsoft\Control Panel\Desktop NAME NOT FOUND Desired Access: Read 98 12:51:54,6517348 MCLauncher.exe 6080 RegQueryKey HKCU SUCCESS Query: HandleTags, HandleTags: 0x0 98 12:51:54,6517420 MCLauncher.exe 6080 RegQueryKey HKCU SUCCESS Query: Name 98 12:51:54,6517605 MCLauncher.exe 6080 RegOpenKey HKCU\Control Panel\Desktop\LanguageConfiguration SUCCESS Desired Access: Read 98 12:51:54,6517755 MCLauncher.exe 6080 RegSetInfoKey HKCU\Control Panel\Desktop\LanguageConfiguration SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 98 12:51:54,6517891 MCLauncher.exe 6080 RegEnumValue HKCU\Control Panel\Desktop\LanguageConfiguration NO MORE ENTRIES Index: 0, Length: 512 98 12:51:54,6517971 MCLauncher.exe 6080 RegCloseKey HKCU\Control Panel\Desktop\LanguageConfiguration SUCCESS 98 12:51:54,6518040 MCLauncher.exe 6080 RegCloseKey HKCU SUCCESS 98 12:51:54,6521348 MCLauncher.exe 6080 TCP Disconnect WIN-0UOTFKKVN1S:54853 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 0, seqnum: 0, connid: 0 98 12:51:55,4335063 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54849 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40936407, endtime: 40936812, seqnum: 0, connid: 0 98 12:51:55,4335249 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54849 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40936408, endtime: 40936812, seqnum: 0, connid: 0 98 12:51:55,4335326 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54849 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40936408, endtime: 40936812, seqnum: 0, connid: 0 98 12:51:55,4335404 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54849 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40936409, endtime: 40936812, seqnum: 0, connid: 0 98 12:51:55,4335462 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54849 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40936410, endtime: 40936812, seqnum: 0, connid: 0 98 12:51:55,4335529 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54849 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40936410, endtime: 40936812, seqnum: 0, connid: 0 98 12:51:55,4335584 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54849 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40936411, endtime: 40936812, seqnum: 0, connid: 0 98 12:51:55,4335651 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54849 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40936411, endtime: 40936812, seqnum: 0, connid: 0 98 12:51:55,4335706 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54849 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40936412, endtime: 40936812, seqnum: 0, connid: 0 98 12:51:55,4335969 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54849 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40936412, endtime: 40936812, seqnum: 0, connid: 0 98 12:51:55,4340133 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54849 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40936413, endtime: 40936812, seqnum: 0, connid: 0 98 12:51:55,4340252 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54849 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40936415, endtime: 40936812, seqnum: 0, connid: 0 98 12:51:55,4340316 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54849 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40936415, endtime: 40936812, seqnum: 0, connid: 0 98 12:51:55,5069345 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54851 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40936472, endtime: 40936819, seqnum: 0, connid: 0 98 12:51:55,5069533 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54851 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40936472, endtime: 40936819, seqnum: 0, connid: 0 98 12:51:55,5069611 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54851 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40936473, endtime: 40936819, seqnum: 0, connid: 0 98 12:51:55,5069769 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54851 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40936473, endtime: 40936819, seqnum: 0, connid: 0 98 12:51:55,5069846 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54851 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40936474, endtime: 40936819, seqnum: 0, connid: 0 98 12:51:55,5069918 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54851 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40936475, endtime: 40936819, seqnum: 0, connid: 0 98 12:51:55,5069976 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54851 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40936475, endtime: 40936819, seqnum: 0, connid: 0 98 12:51:55,5070129 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54851 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40936476, endtime: 40936819, seqnum: 0, connid: 0 98 12:51:55,5070278 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54851 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40936476, endtime: 40936819, seqnum: 0, connid: 0 98 12:51:55,5070799 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54851 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40936477, endtime: 40936819, seqnum: 0, connid: 0 98 12:51:55,5072309 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54851 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40936478, endtime: 40936819, seqnum: 0, connid: 0 98 12:51:55,5072440 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54851 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40936478, endtime: 40936819, seqnum: 0, connid: 0 98 12:51:55,5072506 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54851 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40936479, endtime: 40936819, seqnum: 0, connid: 0 98 12:51:56,7754652 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54852 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40936655, endtime: 40936946, seqnum: 0, connid: 0 98 12:51:56,7754874 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54852 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40936655, endtime: 40936946, seqnum: 0, connid: 0 98 12:51:56,7777077 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54852 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40936656, endtime: 40936946, seqnum: 0, connid: 0 98 12:51:56,7777227 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54852 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40936656, endtime: 40936946, seqnum: 0, connid: 0 98 12:51:56,7777302 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54852 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40936657, endtime: 40936946, seqnum: 0, connid: 0 98 12:51:56,7777376 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54852 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40936658, endtime: 40936946, seqnum: 0, connid: 0 98 12:51:56,7777437 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54852 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40936658, endtime: 40936946, seqnum: 0, connid: 0 98 12:51:56,7777507 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54852 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40936659, endtime: 40936946, seqnum: 0, connid: 0 98 12:51:56,7777565 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54852 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40936659, endtime: 40936946, seqnum: 0, connid: 0 98 12:51:56,7777634 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54852 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40936660, endtime: 40936946, seqnum: 0, connid: 0 98 12:51:56,7777690 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54852 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40936660, endtime: 40936946, seqnum: 0, connid: 0 98 12:51:56,7782339 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54852 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40936661, endtime: 40936946, seqnum: 0, connid: 0 98 12:51:56,7782422 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54852 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40936662, endtime: 40936946, seqnum: 0, connid: 0 98 12:51:57,4595740 MCLauncher.exe 6080 TCP Reconnect WIN-0UOTFKKVN1S:54848 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 0, seqnum: 0, connid: 0 98 12:51:57,6527289 MCLauncher.exe 6080 TCP Reconnect WIN-0UOTFKKVN1S:54854 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 0, seqnum: 0, connid: 0 98 12:51:57,7311094 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54849 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40936812, endtime: 40937042, seqnum: 0, connid: 0 98 12:51:57,7311274 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54849 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40936813, endtime: 40937042, seqnum: 0, connid: 0 98 12:51:57,7311354 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54849 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40936813, endtime: 40937042, seqnum: 0, connid: 0 98 12:51:57,7311432 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54849 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40936814, endtime: 40937042, seqnum: 0, connid: 0 98 12:51:57,7311490 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54849 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40936815, endtime: 40937042, seqnum: 0, connid: 0 98 12:51:57,7311562 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54849 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40936815, endtime: 40937042, seqnum: 0, connid: 0 98 12:51:57,7311618 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54849 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40936816, endtime: 40937042, seqnum: 0, connid: 0 98 12:51:57,7311687 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54849 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40936816, endtime: 40937042, seqnum: 0, connid: 0 98 12:51:57,7311742 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54849 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40936817, endtime: 40937042, seqnum: 0, connid: 0 98 12:51:57,7312402 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54849 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40936817, endtime: 40937042, seqnum: 0, connid: 0 98 12:51:57,7312476 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54849 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40936818, endtime: 40937042, seqnum: 0, connid: 0 98 12:51:57,7312546 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54849 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40936819, endtime: 40937042, seqnum: 0, connid: 0 98 12:51:57,7317477 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54849 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40936819, endtime: 40937042, seqnum: 0, connid: 0 98 12:51:59,2594727 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54847 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40936688, endtime: 40937195, seqnum: 0, connid: 0 98 12:51:59,2594888 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54847 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40936689, endtime: 40937195, seqnum: 0, connid: 0 98 12:51:59,2594968 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54847 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40936689, endtime: 40937195, seqnum: 0, connid: 0 98 12:51:59,2595027 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54847 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40936690, endtime: 40937195, seqnum: 0, connid: 0 98 12:51:59,2595093 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54847 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40936690, endtime: 40937195, seqnum: 0, connid: 0 98 12:51:59,2595146 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54847 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40936691, endtime: 40937195, seqnum: 0, connid: 0 98 12:51:59,2595209 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54847 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40936691, endtime: 40937195, seqnum: 0, connid: 0 98 12:51:59,2595262 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54847 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40936692, endtime: 40937195, seqnum: 0, connid: 0 98 12:51:59,2595326 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54847 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40936693, endtime: 40937195, seqnum: 0, connid: 0 98 12:51:59,2596631 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54847 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40936694, endtime: 40937195, seqnum: 0, connid: 0 98 12:51:59,2596766 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54847 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40936694, endtime: 40937195, seqnum: 0, connid: 0 98 12:51:59,2596836 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54847 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40936695, endtime: 40937195, seqnum: 0, connid: 0 98 12:51:59,2596910 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54847 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40936695, endtime: 40937195, seqnum: 0, connid: 0 98 12:52:00,2973017 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54849 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40937042, endtime: 40937298, seqnum: 0, connid: 0 98 12:52:00,2973191 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54849 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40937042, endtime: 40937298, seqnum: 0, connid: 0 98 12:52:00,2973263 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54849 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40937043, endtime: 40937298, seqnum: 0, connid: 0 98 12:52:00,2973338 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54849 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40937043, endtime: 40937298, seqnum: 0, connid: 0 98 12:52:00,2973396 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54849 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40937044, endtime: 40937298, seqnum: 0, connid: 0 98 12:52:00,2973463 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54849 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40937045, endtime: 40937298, seqnum: 0, connid: 0 98 12:52:00,2973518 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54849 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40937045, endtime: 40937298, seqnum: 0, connid: 0 98 12:52:00,2973585 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54849 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40937046, endtime: 40937298, seqnum: 0, connid: 0 98 12:52:00,2973640 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54849 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40937046, endtime: 40937298, seqnum: 0, connid: 0 98 12:52:00,2974189 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54849 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40937047, endtime: 40937298, seqnum: 0, connid: 0 98 12:52:00,2974391 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54849 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40937048, endtime: 40937298, seqnum: 0, connid: 0 98 12:52:00,2974466 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54849 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40937048, endtime: 40937298, seqnum: 0, connid: 0 98 12:52:00,3873964 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54849 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40937049, endtime: 40937307, seqnum: 0, connid: 0 98 12:52:01,5566090 MCLauncher.exe 6080 TCP Reconnect WIN-0UOTFKKVN1S:54857 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 0, seqnum: 0, connid: 0 98 12:52:01,6710517 MCLauncher.exe 6080 TCP Connect WIN-0UOTFKKVN1S:54857 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 0, mss: 1460, sackopt: 0, tsopt: 0, wsopt: 0, rcvwin: 64240, rcvwinscale: 0, sndwinscale: 0, seqnum: 0, connid: 0 98 12:52:01,6719463 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54857 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40937436, endtime: 40937436, seqnum: 0, connid: 0 98 12:52:01,6778966 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54857 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40937436, endtime: 40937436, seqnum: 0, connid: 0 98 12:52:01,6838195 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54857 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40937437, endtime: 40937437, seqnum: 0, connid: 0 98 12:52:01,6895158 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54857 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40937438, endtime: 40937438, seqnum: 0, connid: 0 98 12:52:01,6955420 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54857 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40937438, endtime: 40937438, seqnum: 0, connid: 0 98 12:52:01,7013320 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54857 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40937439, endtime: 40937439, seqnum: 0, connid: 0 98 12:52:01,7082960 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54857 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40937439, endtime: 40937439, seqnum: 0, connid: 0 98 12:52:01,7140045 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54857 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40937440, endtime: 40937440, seqnum: 0, connid: 0 98 12:52:01,7199249 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54857 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40937441, endtime: 40937441, seqnum: 0, connid: 0 98 12:52:01,7258451 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54857 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40937441, endtime: 40937441, seqnum: 0, connid: 0 98 12:52:01,7315391 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54857 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40937442, endtime: 40937442, seqnum: 0, connid: 0 98 12:52:01,7385603 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54857 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40937442, endtime: 40937442, seqnum: 0, connid: 0 98 12:52:01,7442515 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54857 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40937443, endtime: 40937443, seqnum: 0, connid: 0 98 12:52:01,7502351 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54857 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40937444, endtime: 40937444, seqnum: 0, connid: 0 98 12:52:01,7560580 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54857 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40937444, endtime: 40937444, seqnum: 0, connid: 0 98 12:52:01,7618136 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54857 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40937445, endtime: 40937445, seqnum: 0, connid: 0 98 12:52:01,7678044 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54857 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40937445, endtime: 40937445, seqnum: 0, connid: 0 98 12:52:01,7736092 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54857 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40937446, endtime: 40937446, seqnum: 0, connid: 0 98 12:52:01,7794737 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54857 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40937447, endtime: 40937447, seqnum: 0, connid: 0 98 12:52:01,7851400 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54857 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40937447, endtime: 40937447, seqnum: 0, connid: 0 98 12:52:01,7912621 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54857 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40937448, endtime: 40937448, seqnum: 0, connid: 0 98 12:52:01,7969379 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54857 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40937448, endtime: 40937448, seqnum: 0, connid: 0 98 12:52:01,8029608 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54857 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40937449, endtime: 40937449, seqnum: 0, connid: 0 98 12:52:01,8086807 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54857 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40937449, endtime: 40937449, seqnum: 0, connid: 0 98 12:52:01,8144720 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54857 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40937450, endtime: 40937450, seqnum: 0, connid: 0 98 12:52:02,1241605 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54857 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40937451, endtime: 40937481, seqnum: 0, connid: 0 98 12:52:02,1241874 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54857 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40937451, endtime: 40937481, seqnum: 0, connid: 0 98 12:52:02,1241993 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54857 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40937452, endtime: 40937481, seqnum: 0, connid: 0 98 12:52:02,1242118 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54857 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40937452, endtime: 40937481, seqnum: 0, connid: 0 98 12:52:02,1242217 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54857 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40937453, endtime: 40937481, seqnum: 0, connid: 0 98 12:52:02,1242331 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54857 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40937454, endtime: 40937481, seqnum: 0, connid: 0 98 12:52:02,1242428 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54857 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40937454, endtime: 40937481, seqnum: 0, connid: 0 98 12:52:02,1242541 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54857 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40937455, endtime: 40937481, seqnum: 0, connid: 0 98 12:52:02,1242636 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54857 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40937455, endtime: 40937481, seqnum: 0, connid: 0 98 12:52:02,1243361 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54857 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40937456, endtime: 40937481, seqnum: 0, connid: 0 98 12:52:02,1243478 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54857 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40937457, endtime: 40937481, seqnum: 0, connid: 0 98 12:52:02,1243591 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54857 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40937457, endtime: 40937481, seqnum: 0, connid: 0 98 12:52:02,1243688 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54857 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40937458, endtime: 40937481, seqnum: 0, connid: 0 98 12:52:03,2722844 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54849 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40937298, endtime: 40937596, seqnum: 0, connid: 0 98 12:52:03,2723013 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54849 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40937299, endtime: 40937596, seqnum: 0, connid: 0 98 12:52:03,2723101 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54849 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40937299, endtime: 40937596, seqnum: 0, connid: 0 98 12:52:03,2723168 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54849 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40937300, endtime: 40937596, seqnum: 0, connid: 0 98 12:52:03,2723243 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54849 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40937301, endtime: 40937596, seqnum: 0, connid: 0 98 12:52:03,2723301 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54849 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40937301, endtime: 40937596, seqnum: 0, connid: 0 98 12:52:03,2723370 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54849 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40937302, endtime: 40937596, seqnum: 0, connid: 0 98 12:52:03,2723431 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54849 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40937303, endtime: 40937596, seqnum: 0, connid: 0 98 12:52:03,2723500 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54849 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40937304, endtime: 40937596, seqnum: 0, connid: 0 98 12:52:03,2724160 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54849 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40937304, endtime: 40937596, seqnum: 0, connid: 0 98 12:52:03,2724243 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54849 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40937305, endtime: 40937596, seqnum: 0, connid: 0 98 12:52:03,2724295 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54849 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40937306, endtime: 40937596, seqnum: 0, connid: 0 98 12:52:03,2726116 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54849 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40937307, endtime: 40937596, seqnum: 0, connid: 0 98 12:52:03,6146201 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54851 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40936819, endtime: 40937630, seqnum: 0, connid: 0 98 12:52:03,6146353 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54851 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40936820, endtime: 40937630, seqnum: 0, connid: 0 98 12:52:03,6146433 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54851 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40936821, endtime: 40937630, seqnum: 0, connid: 0 98 12:52:03,6146494 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54851 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40936821, endtime: 40937630, seqnum: 0, connid: 0 98 12:52:03,6146561 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54851 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40936822, endtime: 40937630, seqnum: 0, connid: 0 98 12:52:03,6146611 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54851 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40936822, endtime: 40937630, seqnum: 0, connid: 0 98 12:52:03,6146674 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54851 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40936823, endtime: 40937630, seqnum: 0, connid: 0 98 12:52:03,6146727 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54851 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40936823, endtime: 40937630, seqnum: 0, connid: 0 98 12:52:03,6146791 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54851 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40936824, endtime: 40937630, seqnum: 0, connid: 0 98 12:52:03,6147073 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54851 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40936825, endtime: 40937630, seqnum: 0, connid: 0 98 12:52:03,6147140 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54851 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40936825, endtime: 40937630, seqnum: 0, connid: 0 98 12:52:03,6148259 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54851 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40936827, endtime: 40937630, seqnum: 0, connid: 0 98 12:52:03,6148331 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54851 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40936828, endtime: 40937630, seqnum: 0, connid: 0 98 12:52:03,6519902 MCLauncher.exe 6080 TCP Reconnect WIN-0UOTFKKVN1S:54854 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 0, seqnum: 0, connid: 0 98 12:52:03,7385802 MCLauncher.exe 6080 TCP Connect WIN-0UOTFKKVN1S:54854 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 0, mss: 1460, sackopt: 0, tsopt: 0, wsopt: 0, rcvwin: 64240, rcvwinscale: 0, sndwinscale: 0, seqnum: 0, connid: 0 98 12:52:03,7392512 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54854 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40937642, endtime: 40937643, seqnum: 0, connid: 0 98 12:52:03,7447796 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54854 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40937643, endtime: 40937643, seqnum: 0, connid: 0 98 12:52:03,7500129 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54854 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40937644, endtime: 40937644, seqnum: 0, connid: 0 98 12:52:03,7558264 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54854 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40937644, endtime: 40937644, seqnum: 0, connid: 0 98 12:52:03,7615324 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54854 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40937645, endtime: 40937645, seqnum: 0, connid: 0 98 12:52:03,7675290 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54854 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40937645, endtime: 40937645, seqnum: 0, connid: 0 98 12:52:03,7732909 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54854 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40937646, endtime: 40937646, seqnum: 0, connid: 0 98 12:52:03,7791794 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54854 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40937647, endtime: 40937647, seqnum: 0, connid: 0 98 12:52:03,7849791 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54854 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40937647, endtime: 40937647, seqnum: 0, connid: 0 98 12:52:03,7910463 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54854 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40937648, endtime: 40937648, seqnum: 0, connid: 0 98 12:52:03,7968642 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54854 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40937648, endtime: 40937648, seqnum: 0, connid: 0 98 12:52:03,8036294 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54854 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40937649, endtime: 40937649, seqnum: 0, connid: 0 98 12:52:03,8094733 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54854 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40937650, endtime: 40937650, seqnum: 0, connid: 0 98 12:52:03,8153450 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54854 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40937650, endtime: 40937650, seqnum: 0, connid: 0 98 12:52:03,8210856 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54854 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40937651, endtime: 40937651, seqnum: 0, connid: 0 98 12:52:03,8269772 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54854 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40937651, endtime: 40937651, seqnum: 0, connid: 0 98 12:52:03,8328388 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54854 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40937652, endtime: 40937652, seqnum: 0, connid: 0 98 12:52:03,8397771 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54854 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40937653, endtime: 40937653, seqnum: 0, connid: 0 98 12:52:03,8456779 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54854 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40937653, endtime: 40937653, seqnum: 0, connid: 0 98 12:52:03,8514509 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54854 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40937654, endtime: 40937654, seqnum: 0, connid: 0 98 12:52:03,8572705 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54854 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40937654, endtime: 40937654, seqnum: 0, connid: 0 98 12:52:03,8631316 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54854 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40937655, endtime: 40937655, seqnum: 0, connid: 0 98 12:52:03,8690628 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54854 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40937655, endtime: 40937656, seqnum: 0, connid: 0 98 12:52:03,8748203 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54854 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40937656, endtime: 40937656, seqnum: 0, connid: 0 98 12:52:03,8807662 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54854 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40937657, endtime: 40937657, seqnum: 0, connid: 0 98 12:52:03,9021671 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54854 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40937657, endtime: 40937659, seqnum: 0, connid: 0 98 12:52:03,9021837 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54854 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40937658, endtime: 40937659, seqnum: 0, connid: 0 98 12:52:03,9021912 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54854 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40937658, endtime: 40937659, seqnum: 0, connid: 0 98 12:52:03,9040586 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54854 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40937659, endtime: 40937659, seqnum: 0, connid: 0 98 12:52:03,9096460 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54854 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40937660, endtime: 40937660, seqnum: 0, connid: 0 98 12:52:03,9147649 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54854 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40937660, endtime: 40937660, seqnum: 0, connid: 0 98 12:52:03,9207072 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54854 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40937661, endtime: 40937661, seqnum: 0, connid: 0 98 12:52:03,9268434 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54854 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40937661, endtime: 40937661, seqnum: 0, connid: 0 98 12:52:03,9338507 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54854 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40937662, endtime: 40937662, seqnum: 0, connid: 0 98 12:52:03,9399656 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54854 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40937663, endtime: 40937663, seqnum: 0, connid: 0 98 12:52:03,9451521 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54854 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40937663, endtime: 40937663, seqnum: 0, connid: 0 98 12:52:03,9509276 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54854 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40937664, endtime: 40937664, seqnum: 0, connid: 0 98 12:52:03,9567984 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54854 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40937664, endtime: 40937664, seqnum: 0, connid: 0 98 12:52:04,6510402 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54852 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40936948, endtime: 40937734, seqnum: 0, connid: 0 98 12:52:04,6510624 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54852 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40936948, endtime: 40937734, seqnum: 0, connid: 0 98 12:52:04,6510732 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54852 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40936949, endtime: 40937734, seqnum: 0, connid: 0 98 12:52:04,6510842 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54852 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40936949, endtime: 40937734, seqnum: 0, connid: 0 98 12:52:04,6510931 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54852 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40936950, endtime: 40937734, seqnum: 0, connid: 0 98 12:52:04,6511039 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54852 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40936950, endtime: 40937734, seqnum: 0, connid: 0 98 12:52:04,6511125 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54852 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40936951, endtime: 40937734, seqnum: 0, connid: 0 98 12:52:04,6511230 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54852 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40936952, endtime: 40937734, seqnum: 0, connid: 0 98 12:52:04,6511316 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54852 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40936952, endtime: 40937734, seqnum: 0, connid: 0 98 12:52:04,6511710 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54852 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40936953, endtime: 40937734, seqnum: 0, connid: 0 98 12:52:04,6511798 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54852 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40936953, endtime: 40937734, seqnum: 0, connid: 0 98 12:52:04,6511901 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54852 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40936954, endtime: 40937734, seqnum: 0, connid: 0 98 12:52:04,6511989 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54852 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40936955, endtime: 40937734, seqnum: 0, connid: 0 98 12:52:04,8479780 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54849 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40937596, endtime: 40937753, seqnum: 0, connid: 0 98 12:52:04,8479952 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54849 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40937596, endtime: 40937753, seqnum: 0, connid: 0 98 12:52:04,8480024 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54849 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40937597, endtime: 40937753, seqnum: 0, connid: 0 98 12:52:04,8480096 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54849 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40937598, endtime: 40937753, seqnum: 0, connid: 0 98 12:52:04,8480151 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54849 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40937598, endtime: 40937753, seqnum: 0, connid: 0 98 12:52:04,8480215 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54849 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40937599, endtime: 40937753, seqnum: 0, connid: 0 98 12:52:04,8480268 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54849 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40937599, endtime: 40937753, seqnum: 0, connid: 0 98 12:52:04,8480329 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54849 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40937600, endtime: 40937753, seqnum: 0, connid: 0 98 12:52:04,8480381 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54849 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40937601, endtime: 40937753, seqnum: 0, connid: 0 98 12:52:04,8481063 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54849 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40937601, endtime: 40937753, seqnum: 0, connid: 0 98 12:52:04,8481780 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54849 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40937602, endtime: 40937753, seqnum: 0, connid: 0 98 12:52:04,8481891 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54849 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40937602, endtime: 40937753, seqnum: 0, connid: 0 98 12:52:04,8482769 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54849 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40937603, endtime: 40937753, seqnum: 0, connid: 0 98 12:52:06,4130967 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54847 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40937195, endtime: 40937910, seqnum: 0, connid: 0 98 12:52:06,4131139 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54847 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40937195, endtime: 40937910, seqnum: 0, connid: 0 98 12:52:06,4131222 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54847 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40937196, endtime: 40937910, seqnum: 0, connid: 0 98 12:52:06,4131283 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54847 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40937196, endtime: 40937910, seqnum: 0, connid: 0 98 12:52:06,4131349 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54847 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40937197, endtime: 40937910, seqnum: 0, connid: 0 98 12:52:06,4131405 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54847 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40937197, endtime: 40937910, seqnum: 0, connid: 0 98 12:52:06,4131466 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54847 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40937198, endtime: 40937910, seqnum: 0, connid: 0 98 12:52:06,4131518 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54847 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40937199, endtime: 40937910, seqnum: 0, connid: 0 98 12:52:06,4131585 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54847 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40937199, endtime: 40937910, seqnum: 0, connid: 0 98 12:52:06,4131901 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54847 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40937200, endtime: 40937910, seqnum: 0, connid: 0 98 12:52:06,4131959 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54847 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40937200, endtime: 40937910, seqnum: 0, connid: 0 98 12:52:06,4132023 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54847 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40937201, endtime: 40937910, seqnum: 0, connid: 0 98 12:52:06,4133389 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54847 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40937201, endtime: 40937910, seqnum: 0, connid: 0 98 12:52:06,8695651 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54851 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40937630, endtime: 40937956, seqnum: 0, connid: 0 98 12:52:06,8695815 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54851 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40937631, endtime: 40937956, seqnum: 0, connid: 0 98 12:52:06,8695884 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54851 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40937631, endtime: 40937956, seqnum: 0, connid: 0 98 12:52:06,8695953 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54851 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40937632, endtime: 40937956, seqnum: 0, connid: 0 98 12:52:06,8696006 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54851 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40937632, endtime: 40937956, seqnum: 0, connid: 0 98 12:52:06,8696069 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54851 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40937633, endtime: 40937956, seqnum: 0, connid: 0 98 12:52:06,8696122 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54851 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40937634, endtime: 40937956, seqnum: 0, connid: 0 98 12:52:06,8696186 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54851 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40937634, endtime: 40937956, seqnum: 0, connid: 0 98 12:52:06,8696236 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54851 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40937635, endtime: 40937956, seqnum: 0, connid: 0 98 12:52:06,8696518 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54851 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40937635, endtime: 40937956, seqnum: 0, connid: 0 98 12:52:06,8697471 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54851 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40937636, endtime: 40937956, seqnum: 0, connid: 0 98 12:52:06,8697596 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54851 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40937636, endtime: 40937956, seqnum: 0, connid: 0 98 12:52:06,8697668 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54851 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40937637, endtime: 40937956, seqnum: 0, connid: 0 98 12:52:06,9392134 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54852 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40937734, endtime: 40937963, seqnum: 0, connid: 0 98 12:52:06,9392347 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54852 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40937734, endtime: 40937963, seqnum: 0, connid: 0 98 12:52:06,9392453 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54852 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40937735, endtime: 40937963, seqnum: 0, connid: 0 98 12:52:06,9392561 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54852 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40937736, endtime: 40937963, seqnum: 0, connid: 0 98 12:52:06,9392646 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54852 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40937736, endtime: 40937963, seqnum: 0, connid: 0 98 12:52:06,9392749 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54852 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40937737, endtime: 40937963, seqnum: 0, connid: 0 98 12:52:06,9392835 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54852 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40937737, endtime: 40937963, seqnum: 0, connid: 0 98 12:52:06,9392937 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54852 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40937738, endtime: 40937963, seqnum: 0, connid: 0 98 12:52:06,9393021 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54852 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40937739, endtime: 40937963, seqnum: 0, connid: 0 98 12:52:06,9393516 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54852 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40937739, endtime: 40937963, seqnum: 0, connid: 0 98 12:52:06,9394841 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54852 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40937740, endtime: 40937963, seqnum: 0, connid: 0 98 12:52:06,9395021 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54852 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40937740, endtime: 40937963, seqnum: 0, connid: 0 98 12:52:06,9395129 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54852 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40937741, endtime: 40937963, seqnum: 0, connid: 0 98 12:52:07,2416226 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54849 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40937753, endtime: 40937993, seqnum: 0, connid: 0 98 12:52:07,2416386 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54849 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40937754, endtime: 40937993, seqnum: 0, connid: 0 98 12:52:07,2416456 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54849 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40937755, endtime: 40937993, seqnum: 0, connid: 0 98 12:52:07,2416525 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54849 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40937755, endtime: 40937993, seqnum: 0, connid: 0 98 12:52:07,2416580 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54849 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40937756, endtime: 40937993, seqnum: 0, connid: 0 98 12:52:07,2416644 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54849 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40937756, endtime: 40937993, seqnum: 0, connid: 0 98 12:52:07,2416694 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54849 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40937757, endtime: 40937993, seqnum: 0, connid: 0 98 12:52:07,2416758 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54849 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40937758, endtime: 40937993, seqnum: 0, connid: 0 98 12:52:07,2416807 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54849 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40937758, endtime: 40937993, seqnum: 0, connid: 0 98 12:52:07,2417464 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54849 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40937759, endtime: 40937993, seqnum: 0, connid: 0 98 12:52:07,2417528 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54849 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40937759, endtime: 40937993, seqnum: 0, connid: 0 98 12:52:07,2417592 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54849 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40937760, endtime: 40937993, seqnum: 0, connid: 0 98 12:52:07,2418644 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54849 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40937760, endtime: 40937993, seqnum: 0, connid: 0 98 12:52:07,8039319 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54857 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40937481, endtime: 40938049, seqnum: 0, connid: 0 98 12:52:07,8039474 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54857 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40937482, endtime: 40938049, seqnum: 0, connid: 0 98 12:52:07,8039555 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54857 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40937482, endtime: 40938049, seqnum: 0, connid: 0 98 12:52:07,8039613 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54857 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40937483, endtime: 40938049, seqnum: 0, connid: 0 98 12:52:07,8039679 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54857 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40937483, endtime: 40938049, seqnum: 0, connid: 0 98 12:52:07,8039732 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54857 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40937484, endtime: 40938049, seqnum: 0, connid: 0 98 12:52:07,8039798 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54857 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40937485, endtime: 40938049, seqnum: 0, connid: 0 98 12:52:07,8039851 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54857 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40937485, endtime: 40938049, seqnum: 0, connid: 0 98 12:52:07,8039915 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54857 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40937486, endtime: 40938049, seqnum: 0, connid: 0 98 12:52:07,8040200 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54857 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40937486, endtime: 40938049, seqnum: 0, connid: 0 98 12:52:07,8041353 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54857 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40937487, endtime: 40938049, seqnum: 0, connid: 0 98 12:52:07,8041563 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54857 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40937487, endtime: 40938049, seqnum: 0, connid: 0 98 12:52:07,8041682 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54857 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40937488, endtime: 40938049, seqnum: 0, connid: 0 98 12:52:09,1948910 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54847 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40937910, endtime: 40938188, seqnum: 0, connid: 0 98 12:52:09,1949223 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54847 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40937911, endtime: 40938188, seqnum: 0, connid: 0 98 12:52:09,1949353 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54847 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40937911, endtime: 40938188, seqnum: 0, connid: 0 98 12:52:09,1949491 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54847 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40937912, endtime: 40938188, seqnum: 0, connid: 0 98 12:52:09,1949608 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54847 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40937912, endtime: 40938188, seqnum: 0, connid: 0 98 12:52:09,1949741 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54847 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40937913, endtime: 40938188, seqnum: 0, connid: 0 98 12:52:09,1949852 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54847 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40937914, endtime: 40938188, seqnum: 0, connid: 0 98 12:52:09,1949932 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54847 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40937914, endtime: 40938188, seqnum: 0, connid: 0 98 12:52:09,1949998 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54847 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40937915, endtime: 40938188, seqnum: 0, connid: 0 98 12:52:09,1950647 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54847 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40937915, endtime: 40938188, seqnum: 0, connid: 0 98 12:52:09,1950771 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54847 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40937916, endtime: 40938188, seqnum: 0, connid: 0 98 12:52:09,1950888 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54847 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40937916, endtime: 40938188, seqnum: 0, connid: 0 98 12:52:09,1950993 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54847 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40937917, endtime: 40938188, seqnum: 0, connid: 0 98 12:52:09,2248125 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54851 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40937956, endtime: 40938191, seqnum: 0, connid: 0 98 12:52:09,2248288 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54851 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40937956, endtime: 40938191, seqnum: 0, connid: 0 98 12:52:09,2248357 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54851 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40937957, endtime: 40938191, seqnum: 0, connid: 0 98 12:52:09,2248429 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54851 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40937957, endtime: 40938191, seqnum: 0, connid: 0 98 12:52:09,2248482 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54851 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40937958, endtime: 40938191, seqnum: 0, connid: 0 98 12:52:09,2248549 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54851 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40937958, endtime: 40938191, seqnum: 0, connid: 0 98 12:52:09,2248598 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54851 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40937959, endtime: 40938191, seqnum: 0, connid: 0 98 12:52:09,2248662 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54851 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40937960, endtime: 40938191, seqnum: 0, connid: 0 98 12:52:09,2248715 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54851 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40937960, endtime: 40938191, seqnum: 0, connid: 0 98 12:52:09,2248997 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54851 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40937961, endtime: 40938191, seqnum: 0, connid: 0 98 12:52:09,2249050 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54851 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40937961, endtime: 40938191, seqnum: 0, connid: 0 98 12:52:09,2249114 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54851 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40937962, endtime: 40938191, seqnum: 0, connid: 0 98 12:52:09,2249166 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54851 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40937963, endtime: 40938191, seqnum: 0, connid: 0 98 12:52:09,7960001 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54852 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40937963, endtime: 40938248, seqnum: 0, connid: 0 98 12:52:09,7960228 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54852 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40937963, endtime: 40938248, seqnum: 0, connid: 0 98 12:52:09,7960342 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54852 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40937964, endtime: 40938248, seqnum: 0, connid: 0 98 12:52:09,7960433 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54852 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40937964, endtime: 40938248, seqnum: 0, connid: 0 98 12:52:09,7960494 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54852 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40937965, endtime: 40938248, seqnum: 0, connid: 0 98 12:52:09,7960569 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54852 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40937965, endtime: 40938248, seqnum: 0, connid: 0 98 12:52:09,7960630 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54852 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40937966, endtime: 40938248, seqnum: 0, connid: 0 98 12:52:09,7960702 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54852 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40937967, endtime: 40938248, seqnum: 0, connid: 0 98 12:52:09,7960757 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54852 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40937967, endtime: 40938248, seqnum: 0, connid: 0 98 12:52:09,7961095 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54852 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40937968, endtime: 40938248, seqnum: 0, connid: 0 98 12:52:09,7963151 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54852 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40937968, endtime: 40938248, seqnum: 0, connid: 0 98 12:52:09,7963312 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54852 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40937969, endtime: 40938248, seqnum: 0, connid: 0 98 12:52:09,7963392 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54852 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40937969, endtime: 40938248, seqnum: 0, connid: 0 98 12:52:09,8737345 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54857 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40938049, endtime: 40938256, seqnum: 0, connid: 0 98 12:52:09,8737511 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54857 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40938050, endtime: 40938256, seqnum: 0, connid: 0 98 12:52:09,8737581 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54857 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40938050, endtime: 40938256, seqnum: 0, connid: 0 98 12:52:09,8737653 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54857 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40938051, endtime: 40938256, seqnum: 0, connid: 0 98 12:52:09,8737708 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54857 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40938051, endtime: 40938256, seqnum: 0, connid: 0 98 12:52:09,8737772 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54857 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40938052, endtime: 40938256, seqnum: 0, connid: 0 98 12:52:09,8737825 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54857 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40938052, endtime: 40938256, seqnum: 0, connid: 0 98 12:52:09,8737888 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54857 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40938053, endtime: 40938256, seqnum: 0, connid: 0 98 12:52:09,8737938 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54857 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40938054, endtime: 40938256, seqnum: 0, connid: 0 98 12:52:09,8739024 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54857 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40938054, endtime: 40938256, seqnum: 0, connid: 0 98 12:52:09,8739138 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54857 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40938055, endtime: 40938256, seqnum: 0, connid: 0 98 12:52:09,8739218 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54857 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40938055, endtime: 40938256, seqnum: 0, connid: 0 98 12:52:09,8739285 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54857 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40938056, endtime: 40938256, seqnum: 0, connid: 0 98 12:52:11,3588145 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54849 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40937993, endtime: 40938404, seqnum: 0, connid: 0 98 12:52:11,3588356 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54849 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40937993, endtime: 40938404, seqnum: 0, connid: 0 98 12:52:11,3588458 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54849 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40937994, endtime: 40938404, seqnum: 0, connid: 0 98 12:52:11,3588566 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54849 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40937995, endtime: 40938404, seqnum: 0, connid: 0 98 12:52:11,3588652 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54849 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40937995, endtime: 40938404, seqnum: 0, connid: 0 98 12:52:11,3588752 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54849 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40937996, endtime: 40938404, seqnum: 0, connid: 0 98 12:52:11,3588835 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54849 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40937996, endtime: 40938404, seqnum: 0, connid: 0 98 12:52:11,3589062 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54849 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40937997, endtime: 40938404, seqnum: 0, connid: 0 98 12:52:11,3589151 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54849 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40937998, endtime: 40938404, seqnum: 0, connid: 0 98 12:52:11,3589583 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54849 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40937998, endtime: 40938405, seqnum: 0, connid: 0 98 12:52:11,3589669 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54849 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40937999, endtime: 40938405, seqnum: 0, connid: 0 98 12:52:11,3589771 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54849 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40937999, endtime: 40938405, seqnum: 0, connid: 0 98 12:52:11,3589857 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54849 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40938000, endtime: 40938405, seqnum: 0, connid: 0 98 12:52:12,6876149 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54854 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40937665, endtime: 40938537, seqnum: 0, connid: 0 98 12:52:12,6876349 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54854 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40937667, endtime: 40938537, seqnum: 0, connid: 0 98 12:52:12,6876443 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54854 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40937667, endtime: 40938537, seqnum: 0, connid: 0 98 12:52:12,6876518 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54854 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40937668, endtime: 40938537, seqnum: 0, connid: 0 98 12:52:12,6876595 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54854 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40937668, endtime: 40938537, seqnum: 0, connid: 0 98 12:52:12,6876659 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54854 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40937669, endtime: 40938537, seqnum: 0, connid: 0 98 12:52:12,6876734 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54854 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40937670, endtime: 40938537, seqnum: 0, connid: 0 98 12:52:12,6876795 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54854 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40937670, endtime: 40938537, seqnum: 0, connid: 0 98 12:52:12,6876870 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54854 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40937671, endtime: 40938537, seqnum: 0, connid: 0 98 12:52:12,6877169 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54854 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40937671, endtime: 40938537, seqnum: 0, connid: 0 98 12:52:12,6877249 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54854 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40937672, endtime: 40938537, seqnum: 0, connid: 0 98 12:52:12,6877313 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54854 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40937673, endtime: 40938537, seqnum: 0, connid: 0 98 12:52:12,6877388 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54854 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40937673, endtime: 40938537, seqnum: 0, connid: 0 98 12:52:13,4194377 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54847 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40938188, endtime: 40938611, seqnum: 0, connid: 0 98 12:52:13,4194568 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54847 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40938189, endtime: 40938611, seqnum: 0, connid: 0 98 12:52:13,4194640 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54847 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40938189, endtime: 40938611, seqnum: 0, connid: 0 98 12:52:13,4194715 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54847 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40938190, endtime: 40938611, seqnum: 0, connid: 0 98 12:52:13,4194773 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54847 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40938191, endtime: 40938611, seqnum: 0, connid: 0 98 12:52:13,4194842 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54847 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40938191, endtime: 40938611, seqnum: 0, connid: 0 98 12:52:13,4194898 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54847 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40938192, endtime: 40938611, seqnum: 0, connid: 0 98 12:52:13,4194967 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54847 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40938192, endtime: 40938611, seqnum: 0, connid: 0 98 12:52:13,4195020 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54847 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40938193, endtime: 40938611, seqnum: 0, connid: 0 98 12:52:13,4195554 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54847 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40938193, endtime: 40938611, seqnum: 0, connid: 0 98 12:52:13,4195665 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54847 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40938194, endtime: 40938611, seqnum: 0, connid: 0 98 12:52:13,4195740 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54847 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40938195, endtime: 40938611, seqnum: 0, connid: 0 98 12:52:13,4195795 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54847 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40938195, endtime: 40938611, seqnum: 0, connid: 0 98 12:52:15,4224853 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54849 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40938405, endtime: 40938811, seqnum: 0, connid: 0 98 12:52:15,4225019 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54849 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40938405, endtime: 40938811, seqnum: 0, connid: 0 98 12:52:15,4225094 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54849 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40938406, endtime: 40938811, seqnum: 0, connid: 0 98 12:52:15,4225169 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54849 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40938407, endtime: 40938811, seqnum: 0, connid: 0 98 12:52:15,4225224 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54849 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40938408, endtime: 40938811, seqnum: 0, connid: 0 98 12:52:15,4225291 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54849 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40938408, endtime: 40938811, seqnum: 0, connid: 0 98 12:52:15,4225346 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54849 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40938409, endtime: 40938811, seqnum: 0, connid: 0 98 12:52:15,4225413 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54849 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40938409, endtime: 40938811, seqnum: 0, connid: 0 98 12:52:15,4225465 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54849 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40938410, endtime: 40938811, seqnum: 0, connid: 0 98 12:52:15,4225737 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54849 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40938411, endtime: 40938811, seqnum: 0, connid: 0 98 12:52:15,4225795 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54849 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40938411, endtime: 40938811, seqnum: 0, connid: 0 98 12:52:15,4225859 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54849 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40938412, endtime: 40938811, seqnum: 0, connid: 0 98 12:52:15,4225914 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54849 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40938412, endtime: 40938811, seqnum: 0, connid: 0 98 12:52:15,4367437 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54847 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40938611, endtime: 40938812, seqnum: 0, connid: 0 98 12:52:15,4367650 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54847 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40938611, endtime: 40938812, seqnum: 0, connid: 0 98 12:52:15,4367736 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54847 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40938612, endtime: 40938812, seqnum: 0, connid: 0 98 12:52:15,4367814 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54847 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40938612, endtime: 40938812, seqnum: 0, connid: 0 98 12:52:15,4367875 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54847 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40938613, endtime: 40938812, seqnum: 0, connid: 0 98 12:52:15,4367941 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54847 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40938613, endtime: 40938812, seqnum: 0, connid: 0 98 12:52:15,4368000 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54847 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40938614, endtime: 40938812, seqnum: 0, connid: 0 98 12:52:15,4368069 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54847 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40938615, endtime: 40938812, seqnum: 0, connid: 0 98 12:52:15,4368127 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54847 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40938615, endtime: 40938812, seqnum: 0, connid: 0 98 12:52:15,4368432 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54847 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40938616, endtime: 40938812, seqnum: 0, connid: 0 98 12:52:15,4368493 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54847 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40938616, endtime: 40938812, seqnum: 0, connid: 0 98 12:52:15,4368562 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54847 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40938617, endtime: 40938812, seqnum: 0, connid: 0 98 12:52:15,4368617 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54847 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40938618, endtime: 40938812, seqnum: 0, connid: 0 98 12:52:15,5084888 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54847 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40938812, endtime: 40938819, seqnum: 0, connid: 0 98 12:52:16,9727519 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54852 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40938248, endtime: 40938966, seqnum: 0, connid: 0 98 12:52:16,9727685 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54852 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40938249, endtime: 40938966, seqnum: 0, connid: 0 98 12:52:16,9727768 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54852 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40938249, endtime: 40938966, seqnum: 0, connid: 0 98 12:52:16,9727829 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54852 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40938250, endtime: 40938966, seqnum: 0, connid: 0 98 12:52:16,9727893 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54852 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40938251, endtime: 40938966, seqnum: 0, connid: 0 98 12:52:16,9727948 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54852 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40938251, endtime: 40938966, seqnum: 0, connid: 0 98 12:52:16,9728012 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54852 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40938252, endtime: 40938966, seqnum: 0, connid: 0 98 12:52:16,9728067 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54852 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40938252, endtime: 40938966, seqnum: 0, connid: 0 98 12:52:16,9728131 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54852 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40938253, endtime: 40938966, seqnum: 0, connid: 0 98 12:52:16,9732647 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54852 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40938254, endtime: 40938966, seqnum: 0, connid: 0 98 12:52:16,9732738 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54852 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40938254, endtime: 40938966, seqnum: 0, connid: 0 98 12:52:16,9732797 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54852 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40938255, endtime: 40938966, seqnum: 0, connid: 0 98 12:52:16,9732863 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54852 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40938255, endtime: 40938966, seqnum: 0, connid: 0 98 12:52:17,0595483 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54851 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40938191, endtime: 40938975, seqnum: 0, connid: 0 98 12:52:17,0595754 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54851 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40938192, endtime: 40938975, seqnum: 0, connid: 0 98 12:52:17,0595859 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54851 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40938192, endtime: 40938975, seqnum: 0, connid: 0 98 12:52:17,0595923 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54851 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40938193, endtime: 40938975, seqnum: 0, connid: 0 98 12:52:17,0596001 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54851 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40938193, endtime: 40938975, seqnum: 0, connid: 0 98 12:52:17,0596059 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54851 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40938194, endtime: 40938975, seqnum: 0, connid: 0 98 12:52:17,0596131 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54851 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40938195, endtime: 40938975, seqnum: 0, connid: 0 98 12:52:17,0596192 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54851 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40938195, endtime: 40938975, seqnum: 0, connid: 0 98 12:52:17,0596261 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54851 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40938196, endtime: 40938975, seqnum: 0, connid: 0 98 12:52:17,0596574 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54851 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40938196, endtime: 40938975, seqnum: 0, connid: 0 98 12:52:17,0596643 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54851 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40938197, endtime: 40938975, seqnum: 0, connid: 0 98 12:52:17,0596696 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54851 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40938198, endtime: 40938975, seqnum: 0, connid: 0 98 12:52:17,0596763 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54851 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40938198, endtime: 40938975, seqnum: 0, connid: 0 98 12:52:17,1347712 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54849 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40938811, endtime: 40938982, seqnum: 0, connid: 0 98 12:52:17,1347898 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54849 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40938811, endtime: 40938982, seqnum: 0, connid: 0 98 12:52:17,1347972 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54849 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40938812, endtime: 40938982, seqnum: 0, connid: 0 98 12:52:17,1348047 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54849 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40938813, endtime: 40938982, seqnum: 0, connid: 0 98 12:52:17,1348105 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54849 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40938813, endtime: 40938982, seqnum: 0, connid: 0 98 12:52:17,1348172 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54849 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40938814, endtime: 40938982, seqnum: 0, connid: 0 98 12:52:17,1348224 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54849 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40938814, endtime: 40938982, seqnum: 0, connid: 0 98 12:52:17,1348294 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54849 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40938815, endtime: 40938982, seqnum: 0, connid: 0 98 12:52:17,1348349 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54849 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40938816, endtime: 40938982, seqnum: 0, connid: 0 98 12:52:17,1348654 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54849 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40938816, endtime: 40938982, seqnum: 0, connid: 0 98 12:52:17,1348712 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54849 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40938817, endtime: 40938982, seqnum: 0, connid: 0 98 12:52:17,1348776 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54849 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40938817, endtime: 40938982, seqnum: 0, connid: 0 98 12:52:17,1348831 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54849 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40938818, endtime: 40938982, seqnum: 0, connid: 0 98 12:52:18,0751980 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54847 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40938813, endtime: 40939076, seqnum: 0, connid: 0 98 12:52:18,0752136 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54847 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40938813, endtime: 40939076, seqnum: 0, connid: 0 98 12:52:18,0752216 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54847 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40938814, endtime: 40939076, seqnum: 0, connid: 0 98 12:52:18,0752277 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54847 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40938815, endtime: 40939076, seqnum: 0, connid: 0 98 12:52:18,0752341 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54847 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40938815, endtime: 40939076, seqnum: 0, connid: 0 98 12:52:18,0752396 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54847 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40938816, endtime: 40939076, seqnum: 0, connid: 0 98 12:52:18,0752460 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54847 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40938816, endtime: 40939076, seqnum: 0, connid: 0 98 12:52:18,0752512 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54847 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40938817, endtime: 40939076, seqnum: 0, connid: 0 98 12:52:18,0753080 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54847 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40938817, endtime: 40939076, seqnum: 0, connid: 0 98 12:52:18,0753150 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54847 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40938818, endtime: 40939076, seqnum: 0, connid: 0 98 12:52:18,0754172 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54847 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40938819, endtime: 40939076, seqnum: 0, connid: 0 98 12:52:18,0754250 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54847 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40938819, endtime: 40939076, seqnum: 0, connid: 0 98 12:52:18,1483954 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54857 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40938256, endtime: 40939083, seqnum: 0, connid: 0 98 12:52:18,1484137 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54857 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40938257, endtime: 40939083, seqnum: 0, connid: 0 98 12:52:18,1484231 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54857 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40938257, endtime: 40939083, seqnum: 0, connid: 0 98 12:52:18,1484295 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54857 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40938258, endtime: 40939083, seqnum: 0, connid: 0 98 12:52:18,1484367 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54857 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40938258, endtime: 40939083, seqnum: 0, connid: 0 98 12:52:18,1484425 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54857 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40938259, endtime: 40939083, seqnum: 0, connid: 0 98 12:52:18,1484494 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54857 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40938260, endtime: 40939083, seqnum: 0, connid: 0 98 12:52:18,1484553 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54857 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40938260, endtime: 40939083, seqnum: 0, connid: 0 98 12:52:18,1484622 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54857 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40938261, endtime: 40939083, seqnum: 0, connid: 0 98 12:52:18,1484921 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54857 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40938261, endtime: 40939083, seqnum: 0, connid: 0 98 12:52:18,1484996 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54857 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40938262, endtime: 40939083, seqnum: 0, connid: 0 98 12:52:18,1485051 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54857 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40938263, endtime: 40939083, seqnum: 0, connid: 0 98 12:52:18,1485121 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54857 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40938263, endtime: 40939083, seqnum: 0, connid: 0 98 12:52:18,5414163 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54854 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40938537, endtime: 40939123, seqnum: 0, connid: 0 98 12:52:18,5414329 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54854 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40938538, endtime: 40939123, seqnum: 0, connid: 0 98 12:52:18,5414399 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54854 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40938539, endtime: 40939123, seqnum: 0, connid: 0 98 12:52:18,5414468 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54854 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40938539, endtime: 40939123, seqnum: 0, connid: 0 98 12:52:18,5414521 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54854 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40938540, endtime: 40939123, seqnum: 0, connid: 0 98 12:52:18,5414587 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54854 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40938540, endtime: 40939123, seqnum: 0, connid: 0 98 12:52:18,5414640 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54854 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40938541, endtime: 40939123, seqnum: 0, connid: 0 98 12:52:18,5414703 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54854 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40938541, endtime: 40939123, seqnum: 0, connid: 0 98 12:52:18,5414756 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54854 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40938542, endtime: 40939123, seqnum: 0, connid: 0 98 12:52:18,5415041 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54854 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40938543, endtime: 40939123, seqnum: 0, connid: 0 98 12:52:18,5416094 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54854 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40938543, endtime: 40939123, seqnum: 0, connid: 0 98 12:52:18,5416247 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54854 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40938544, endtime: 40939123, seqnum: 0, connid: 0 98 12:52:18,5416341 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54854 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40938544, endtime: 40939123, seqnum: 0, connid: 0 98 12:52:21,0803643 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54851 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40938975, endtime: 40939377, seqnum: 0, connid: 0 98 12:52:21,0803809 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54851 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40938975, endtime: 40939377, seqnum: 0, connid: 0 98 12:52:21,0803881 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54851 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40938976, endtime: 40939377, seqnum: 0, connid: 0 98 12:52:21,0803951 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54851 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40938977, endtime: 40939377, seqnum: 0, connid: 0 98 12:52:21,0804006 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54851 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40938977, endtime: 40939377, seqnum: 0, connid: 0 98 12:52:21,0804070 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54851 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40938978, endtime: 40939377, seqnum: 0, connid: 0 98 12:52:21,0804122 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54851 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40938978, endtime: 40939377, seqnum: 0, connid: 0 98 12:52:21,0804186 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54851 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40938979, endtime: 40939377, seqnum: 0, connid: 0 98 12:52:21,0804239 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54851 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40938979, endtime: 40939377, seqnum: 0, connid: 0 98 12:52:21,0804541 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54851 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40938980, endtime: 40939377, seqnum: 0, connid: 0 98 12:52:21,0804593 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54851 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40938981, endtime: 40939377, seqnum: 0, connid: 0 98 12:52:21,0804657 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54851 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40938981, endtime: 40939377, seqnum: 0, connid: 0 98 12:52:21,0805812 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54851 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40938982, endtime: 40939377, seqnum: 0, connid: 0 98 12:52:21,5757837 MCLauncher.exe 6080 TCP Disconnect WIN-0UOTFKKVN1S:54846 -> sheltex.company:8000 SUCCESS Length: 0, seqnum: 0, connid: 0 98 12:52:21,6054429 MCLauncher.exe 6080 TCP Connect WIN-0UOTFKKVN1S:54863 -> sheltex.company:8000 SUCCESS Length: 0, mss: 1460, sackopt: 0, tsopt: 0, wsopt: 0, rcvwin: 64240, rcvwinscale: 0, sndwinscale: 0, seqnum: 0, connid: 0 98 12:52:21,9852355 MCLauncher.exe 6080 TCP TCPCopy WIN-0UOTFKKVN1S:54863 -> sheltex.company:8000 SUCCESS Length: 6, seqnum: 0, connid: 0 98 12:52:21,9852487 MCLauncher.exe 6080 TCP Receive WIN-0UOTFKKVN1S:54863 -> sheltex.company:8000 SUCCESS Length: 6, seqnum: 0, connid: 0 98 12:52:21,9855327 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54863 -> sheltex.company:8000 SUCCESS Length: 9, startime: 40939467, endtime: 40939467, seqnum: 0, connid: 0 98 12:52:21,9856945 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54863 -> sheltex.company:8000 SUCCESS Length: 103, startime: 40939467, endtime: 40939467, seqnum: 0, connid: 0 98 12:52:22,5178801 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54849 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40938982, endtime: 40939520, seqnum: 0, connid: 0 98 12:52:22,5178954 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54849 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40938983, endtime: 40939520, seqnum: 0, connid: 0 98 12:52:22,5179037 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54849 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40938983, endtime: 40939520, seqnum: 0, connid: 0 98 12:52:22,5179103 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54849 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40938984, endtime: 40939520, seqnum: 0, connid: 0 98 12:52:22,5179170 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54849 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40938984, endtime: 40939520, seqnum: 0, connid: 0 98 12:52:22,5179225 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54849 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40938985, endtime: 40939520, seqnum: 0, connid: 0 98 12:52:22,5179289 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54849 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40938986, endtime: 40939520, seqnum: 0, connid: 0 98 12:52:22,5179342 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54849 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40938986, endtime: 40939520, seqnum: 0, connid: 0 98 12:52:22,5179405 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54849 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40938987, endtime: 40939520, seqnum: 0, connid: 0 98 12:52:22,5179702 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54849 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40938988, endtime: 40939520, seqnum: 0, connid: 0 98 12:52:22,5179768 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54849 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40938988, endtime: 40939520, seqnum: 0, connid: 0 98 12:52:22,5179824 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54849 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40938989, endtime: 40939520, seqnum: 0, connid: 0 98 12:52:22,5179887 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54849 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40938990, endtime: 40939520, seqnum: 0, connid: 0 98 12:52:22,6426928 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54847 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40938820, endtime: 40939533, seqnum: 0, connid: 0 98 12:52:22,6427105 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54847 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40939076, endtime: 40939533, seqnum: 0, connid: 0 98 12:52:22,6427191 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54847 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40939077, endtime: 40939533, seqnum: 0, connid: 0 98 12:52:22,6427255 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54847 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40939077, endtime: 40939533, seqnum: 0, connid: 0 98 12:52:22,6427324 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54847 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40939078, endtime: 40939533, seqnum: 0, connid: 0 98 12:52:22,6427379 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54847 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40939078, endtime: 40939533, seqnum: 0, connid: 0 98 12:52:22,6427446 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54847 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40939079, endtime: 40939533, seqnum: 0, connid: 0 98 12:52:22,6427498 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54847 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40939080, endtime: 40939533, seqnum: 0, connid: 0 98 12:52:22,6427568 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54847 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40939080, endtime: 40939533, seqnum: 0, connid: 0 98 12:52:22,6427623 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54847 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40939081, endtime: 40939533, seqnum: 0, connid: 0 98 12:52:22,6427922 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54847 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40939081, endtime: 40939533, seqnum: 0, connid: 0 98 12:52:22,6427981 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54847 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40939082, endtime: 40939533, seqnum: 0, connid: 0 98 12:52:22,6428047 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54847 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40939083, endtime: 40939533, seqnum: 0, connid: 0 98 12:52:22,6437082 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54847 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40939533, endtime: 40939533, seqnum: 0, connid: 0 98 12:52:23,1157092 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54851 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40939377, endtime: 40939580, seqnum: 0, connid: 0 98 12:52:23,1157266 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54851 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40939377, endtime: 40939580, seqnum: 0, connid: 0 98 12:52:23,1157338 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54851 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40939378, endtime: 40939580, seqnum: 0, connid: 0 98 12:52:23,1157410 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54851 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40939378, endtime: 40939580, seqnum: 0, connid: 0 98 12:52:23,1157466 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54851 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40939379, endtime: 40939580, seqnum: 0, connid: 0 98 12:52:23,1157530 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54851 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40939380, endtime: 40939580, seqnum: 0, connid: 0 98 12:52:23,1157585 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54851 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40939380, endtime: 40939580, seqnum: 0, connid: 0 98 12:52:23,1157649 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54851 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40939381, endtime: 40939580, seqnum: 0, connid: 0 98 12:52:23,1157701 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54851 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40939381, endtime: 40939580, seqnum: 0, connid: 0 98 12:52:23,1158014 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54851 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40939382, endtime: 40939580, seqnum: 0, connid: 0 98 12:52:23,1158070 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54851 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40939382, endtime: 40939580, seqnum: 0, connid: 0 98 12:52:23,1158134 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54851 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40939383, endtime: 40939580, seqnum: 0, connid: 0 98 12:52:23,1158189 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54851 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40939384, endtime: 40939580, seqnum: 0, connid: 0 98 12:52:23,1733884 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54852 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40938966, endtime: 40939586, seqnum: 0, connid: 0 98 12:52:23,1734058 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54852 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40938966, endtime: 40939586, seqnum: 0, connid: 0 98 12:52:23,1734141 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54852 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40938967, endtime: 40939586, seqnum: 0, connid: 0 98 12:52:23,1734202 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54852 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40938968, endtime: 40939586, seqnum: 0, connid: 0 98 12:52:23,1734363 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54852 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40938968, endtime: 40939586, seqnum: 0, connid: 0 98 12:52:23,1734463 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54852 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40938969, endtime: 40939586, seqnum: 0, connid: 0 98 12:52:23,1734538 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54852 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40938969, endtime: 40939586, seqnum: 0, connid: 0 98 12:52:23,1734598 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54852 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40938970, endtime: 40939586, seqnum: 0, connid: 0 98 12:52:23,1734671 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54852 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40938971, endtime: 40939586, seqnum: 0, connid: 0 98 12:52:23,1734997 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54852 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40938971, endtime: 40939586, seqnum: 0, connid: 0 98 12:52:23,1735069 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54852 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40938972, endtime: 40939586, seqnum: 0, connid: 0 98 12:52:23,1735125 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54852 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40938972, endtime: 40939586, seqnum: 0, connid: 0 98 12:52:23,1735194 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54852 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40938973, endtime: 40939586, seqnum: 0, connid: 0 98 12:52:24,7255749 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54847 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40939534, endtime: 40939741, seqnum: 0, connid: 0 98 12:52:24,7255913 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54847 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40939534, endtime: 40939741, seqnum: 0, connid: 0 98 12:52:24,7255985 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54847 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40939535, endtime: 40939741, seqnum: 0, connid: 0 98 12:52:24,7256054 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54847 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40939535, endtime: 40939741, seqnum: 0, connid: 0 98 12:52:24,7256112 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54847 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40939536, endtime: 40939741, seqnum: 0, connid: 0 98 12:52:24,7256179 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54847 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40939536, endtime: 40939741, seqnum: 0, connid: 0 98 12:52:24,7256229 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54847 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40939537, endtime: 40939741, seqnum: 0, connid: 0 98 12:52:24,7256292 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54847 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40939538, endtime: 40939741, seqnum: 0, connid: 0 98 12:52:24,7256345 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54847 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40939538, endtime: 40939741, seqnum: 0, connid: 0 98 12:52:24,7257002 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54847 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40939539, endtime: 40939741, seqnum: 0, connid: 0 98 12:52:24,7257068 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54847 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40939539, endtime: 40939741, seqnum: 0, connid: 0 98 12:52:24,7258265 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54847 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40939540, endtime: 40939741, seqnum: 0, connid: 0 98 12:52:24,7258351 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54847 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40939541, endtime: 40939741, seqnum: 0, connid: 0 98 12:52:25,5056470 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54854 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40939123, endtime: 40939819, seqnum: 0, connid: 0 98 12:52:25,5056620 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54854 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40939123, endtime: 40939819, seqnum: 0, connid: 0 98 12:52:25,5056700 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54854 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40939124, endtime: 40939819, seqnum: 0, connid: 0 98 12:52:25,5056761 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54854 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40939125, endtime: 40939819, seqnum: 0, connid: 0 98 12:52:25,5056827 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54854 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40939125, endtime: 40939819, seqnum: 0, connid: 0 98 12:52:25,5056880 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54854 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40939126, endtime: 40939819, seqnum: 0, connid: 0 98 12:52:25,5056944 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54854 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40939126, endtime: 40939819, seqnum: 0, connid: 0 98 12:52:25,5056996 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54854 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40939127, endtime: 40939819, seqnum: 0, connid: 0 98 12:52:25,5057063 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54854 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40939127, endtime: 40939819, seqnum: 0, connid: 0 98 12:52:25,5057326 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54854 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40939128, endtime: 40939819, seqnum: 0, connid: 0 98 12:52:25,5058271 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54854 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40939128, endtime: 40939819, seqnum: 0, connid: 0 98 12:52:25,5058337 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54854 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40939129, endtime: 40939819, seqnum: 0, connid: 0 98 12:52:25,5058401 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54854 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40939130, endtime: 40939819, seqnum: 0, connid: 0 98 12:52:25,6619906 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54849 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40939520, endtime: 40939835, seqnum: 0, connid: 0 98 12:52:25,6620119 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54849 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40939521, endtime: 40939835, seqnum: 0, connid: 0 98 12:52:25,6620202 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54849 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40939522, endtime: 40939835, seqnum: 0, connid: 0 98 12:52:25,6620282 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54849 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40939522, endtime: 40939835, seqnum: 0, connid: 0 98 12:52:25,6620343 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54849 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40939523, endtime: 40939835, seqnum: 0, connid: 0 98 12:52:25,6620418 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54849 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40939523, endtime: 40939835, seqnum: 0, connid: 0 98 12:52:25,6620476 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54849 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40939524, endtime: 40939835, seqnum: 0, connid: 0 98 12:52:25,6620690 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54849 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40939525, endtime: 40939835, seqnum: 0, connid: 0 98 12:52:25,6620812 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54849 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40939525, endtime: 40939835, seqnum: 0, connid: 0 98 12:52:25,6621219 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54849 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40939526, endtime: 40939835, seqnum: 0, connid: 0 98 12:52:25,6621285 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54849 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40939526, endtime: 40939835, seqnum: 0, connid: 0 98 12:52:25,6621355 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54849 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40939527, endtime: 40939835, seqnum: 0, connid: 0 98 12:52:25,6621413 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54849 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40939527, endtime: 40939835, seqnum: 0, connid: 0 98 12:52:25,7324337 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54857 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40939083, endtime: 40939842, seqnum: 0, connid: 0 98 12:52:25,7324517 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54857 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40939084, endtime: 40939842, seqnum: 0, connid: 0 98 12:52:25,7324609 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54857 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40939085, endtime: 40939842, seqnum: 0, connid: 0 98 12:52:25,7324675 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54857 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40939085, endtime: 40939842, seqnum: 0, connid: 0 98 12:52:25,7324747 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54857 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40939086, endtime: 40939842, seqnum: 0, connid: 0 98 12:52:25,7324805 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54857 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40939086, endtime: 40939842, seqnum: 0, connid: 0 98 12:52:25,7324872 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54857 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40939088, endtime: 40939842, seqnum: 0, connid: 0 98 12:52:25,7324930 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54857 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40939088, endtime: 40939842, seqnum: 0, connid: 0 98 12:52:25,7324999 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54857 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40939089, endtime: 40939842, seqnum: 0, connid: 0 98 12:52:25,7325293 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54857 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40939089, endtime: 40939842, seqnum: 0, connid: 0 98 12:52:25,7325354 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54857 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40939090, endtime: 40939842, seqnum: 0, connid: 0 98 12:52:25,7325421 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54857 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40939091, endtime: 40939842, seqnum: 0, connid: 0 98 12:52:25,7325479 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54857 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40939091, endtime: 40939842, seqnum: 0, connid: 0 98 12:52:25,9829071 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54852 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40939586, endtime: 40939867, seqnum: 0, connid: 0 98 12:52:25,9829245 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54852 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40939587, endtime: 40939867, seqnum: 0, connid: 0 98 12:52:25,9829320 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54852 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40939588, endtime: 40939867, seqnum: 0, connid: 0 98 12:52:25,9829395 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54852 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40939588, endtime: 40939867, seqnum: 0, connid: 0 98 12:52:25,9829453 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54852 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40939589, endtime: 40939867, seqnum: 0, connid: 0 98 12:52:25,9829520 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54852 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40939589, endtime: 40939867, seqnum: 0, connid: 0 98 12:52:25,9829575 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54852 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40939590, endtime: 40939867, seqnum: 0, connid: 0 98 12:52:25,9829641 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54852 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40939591, endtime: 40939867, seqnum: 0, connid: 0 98 12:52:25,9829697 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54852 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40939591, endtime: 40939867, seqnum: 0, connid: 0 98 12:52:25,9830029 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54852 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40939592, endtime: 40939867, seqnum: 0, connid: 0 98 12:52:25,9830088 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54852 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40939593, endtime: 40939867, seqnum: 0, connid: 0 98 12:52:25,9830154 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54852 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40939593, endtime: 40939867, seqnum: 0, connid: 0 98 12:52:25,9830209 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54852 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40939594, endtime: 40939867, seqnum: 0, connid: 0 98 12:52:26,7411086 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54851 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40939580, endtime: 40939943, seqnum: 0, connid: 0 98 12:52:26,7411255 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54851 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40939581, endtime: 40939943, seqnum: 0, connid: 0 98 12:52:26,7411325 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54851 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40939581, endtime: 40939943, seqnum: 0, connid: 0 98 12:52:26,7411394 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54851 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40939582, endtime: 40939943, seqnum: 0, connid: 0 98 12:52:26,7411446 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54851 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40939583, endtime: 40939943, seqnum: 0, connid: 0 98 12:52:26,7411510 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54851 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40939583, endtime: 40939943, seqnum: 0, connid: 0 98 12:52:26,7411563 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54851 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40939584, endtime: 40939943, seqnum: 0, connid: 0 98 12:52:26,7411624 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54851 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40939584, endtime: 40939943, seqnum: 0, connid: 0 98 12:52:26,7411676 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54851 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40939585, endtime: 40939943, seqnum: 0, connid: 0 98 12:52:26,7411978 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54851 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40939586, endtime: 40939943, seqnum: 0, connid: 0 98 12:52:26,7412031 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54851 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40939587, endtime: 40939943, seqnum: 0, connid: 0 98 12:52:26,7412967 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54851 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40939588, endtime: 40939943, seqnum: 0, connid: 0 98 12:52:26,7413081 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54851 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40939588, endtime: 40939943, seqnum: 0, connid: 0 98 12:52:26,8807235 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54847 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40939741, endtime: 40939957, seqnum: 0, connid: 0 98 12:52:26,8807396 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54847 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40939742, endtime: 40939957, seqnum: 0, connid: 0 98 12:52:26,8807463 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54847 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40939742, endtime: 40939957, seqnum: 0, connid: 0 98 12:52:26,8807532 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54847 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40939743, endtime: 40939957, seqnum: 0, connid: 0 98 12:52:26,8807587 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54847 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40939744, endtime: 40939957, seqnum: 0, connid: 0 98 12:52:26,8807651 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54847 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40939744, endtime: 40939957, seqnum: 0, connid: 0 98 12:52:26,8807704 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54847 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40939745, endtime: 40939957, seqnum: 0, connid: 0 98 12:52:26,8807767 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54847 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40939745, endtime: 40939957, seqnum: 0, connid: 0 98 12:52:26,8807820 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54847 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40939746, endtime: 40939957, seqnum: 0, connid: 0 98 12:52:26,8808485 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54847 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40939747, endtime: 40939957, seqnum: 0, connid: 0 98 12:52:26,8808551 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54847 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40939747, endtime: 40939957, seqnum: 0, connid: 0 98 12:52:26,8808618 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54847 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40939748, endtime: 40939957, seqnum: 0, connid: 0 98 12:52:26,8810355 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54847 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40939748, endtime: 40939957, seqnum: 0, connid: 0 98 12:52:28,6936301 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54852 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40939867, endtime: 40940138, seqnum: 0, connid: 0 98 12:52:28,6936467 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54852 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40939868, endtime: 40940138, seqnum: 0, connid: 0 98 12:52:28,6936539 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54852 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40939868, endtime: 40940138, seqnum: 0, connid: 0 98 12:52:28,6936614 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54852 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40939869, endtime: 40940138, seqnum: 0, connid: 0 98 12:52:28,6936669 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54852 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40939869, endtime: 40940138, seqnum: 0, connid: 0 98 12:52:28,6936736 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54852 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40939870, endtime: 40940138, seqnum: 0, connid: 0 98 12:52:28,6936788 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54852 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40939870, endtime: 40940138, seqnum: 0, connid: 0 98 12:52:28,6936852 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54852 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40939871, endtime: 40940138, seqnum: 0, connid: 0 98 12:52:28,6936908 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54852 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40939872, endtime: 40940138, seqnum: 0, connid: 0 98 12:52:28,6937201 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54852 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40939872, endtime: 40940138, seqnum: 0, connid: 0 98 12:52:28,6937257 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54852 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40939873, endtime: 40940138, seqnum: 0, connid: 0 98 12:52:28,6937323 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54852 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40939873, endtime: 40940138, seqnum: 0, connid: 0 98 12:52:28,6937376 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54852 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40939874, endtime: 40940138, seqnum: 0, connid: 0 98 12:52:29,2690231 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54857 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40939842, endtime: 40940196, seqnum: 0, connid: 0 98 12:52:29,2690400 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54857 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40939842, endtime: 40940196, seqnum: 0, connid: 0 98 12:52:29,2690470 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54857 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40939843, endtime: 40940196, seqnum: 0, connid: 0 98 12:52:29,2690542 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54857 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40939844, endtime: 40940196, seqnum: 0, connid: 0 98 12:52:29,2690594 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54857 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40939844, endtime: 40940196, seqnum: 0, connid: 0 98 12:52:29,2690658 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54857 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40939845, endtime: 40940196, seqnum: 0, connid: 0 98 12:52:29,2690711 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54857 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40939845, endtime: 40940196, seqnum: 0, connid: 0 98 12:52:29,2690774 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54857 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40939846, endtime: 40940196, seqnum: 0, connid: 0 98 12:52:29,2690827 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54857 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40939846, endtime: 40940196, seqnum: 0, connid: 0 98 12:52:29,2691104 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54857 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40939847, endtime: 40940196, seqnum: 0, connid: 0 98 12:52:29,2692257 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54857 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40939848, endtime: 40940196, seqnum: 0, connid: 0 98 12:52:29,2692334 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54857 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40939848, endtime: 40940196, seqnum: 0, connid: 0 98 12:52:29,2692387 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54857 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40939849, endtime: 40940196, seqnum: 0, connid: 0 98 12:52:29,3274678 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54854 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40939819, endtime: 40940201, seqnum: 0, connid: 0 98 12:52:29,3274839 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54854 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40939820, endtime: 40940201, seqnum: 0, connid: 0 98 12:52:29,3274911 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54854 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40939820, endtime: 40940201, seqnum: 0, connid: 0 98 12:52:29,3274980 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54854 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40939821, endtime: 40940201, seqnum: 0, connid: 0 98 12:52:29,3275033 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54854 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40939821, endtime: 40940201, seqnum: 0, connid: 0 98 12:52:29,3275097 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54854 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40939822, endtime: 40940201, seqnum: 0, connid: 0 98 12:52:29,3275149 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54854 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40939823, endtime: 40940201, seqnum: 0, connid: 0 98 12:52:29,3275213 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54854 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40939823, endtime: 40940201, seqnum: 0, connid: 0 98 12:52:29,3275263 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54854 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40939824, endtime: 40940201, seqnum: 0, connid: 0 98 12:52:29,3275792 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54854 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40939824, endtime: 40940201, seqnum: 0, connid: 0 98 12:52:29,3275892 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54854 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40939825, endtime: 40940201, seqnum: 0, connid: 0 98 12:52:29,3275958 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54854 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40939825, endtime: 40940201, seqnum: 0, connid: 0 98 12:52:29,3276011 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54854 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40939826, endtime: 40940201, seqnum: 0, connid: 0 98 12:52:29,6457667 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54847 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40939957, endtime: 40940233, seqnum: 0, connid: 0 98 12:52:29,6457867 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54847 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40939957, endtime: 40940233, seqnum: 0, connid: 0 98 12:52:29,6457939 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54847 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40939958, endtime: 40940233, seqnum: 0, connid: 0 98 12:52:29,6458013 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54847 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40939958, endtime: 40940233, seqnum: 0, connid: 0 98 12:52:29,6458072 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54847 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40939959, endtime: 40940233, seqnum: 0, connid: 0 98 12:52:29,6458138 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54847 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40939960, endtime: 40940233, seqnum: 0, connid: 0 98 12:52:29,6458191 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54847 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40939960, endtime: 40940233, seqnum: 0, connid: 0 98 12:52:29,6458257 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54847 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40939961, endtime: 40940233, seqnum: 0, connid: 0 98 12:52:29,6458313 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54847 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40939961, endtime: 40940233, seqnum: 0, connid: 0 98 12:52:29,6458623 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54847 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40939962, endtime: 40940233, seqnum: 0, connid: 0 98 12:52:29,6458681 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54847 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40939963, endtime: 40940233, seqnum: 0, connid: 0 98 12:52:29,6458745 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54847 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40939963, endtime: 40940233, seqnum: 0, connid: 0 98 12:52:29,6458798 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54847 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40939964, endtime: 40940233, seqnum: 0, connid: 0 98 12:52:29,7826615 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54851 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40939943, endtime: 40940247, seqnum: 0, connid: 0 98 12:52:29,7826873 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54851 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40939943, endtime: 40940247, seqnum: 0, connid: 0 98 12:52:29,7826981 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54851 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40939944, endtime: 40940247, seqnum: 0, connid: 0 98 12:52:29,7827091 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54851 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40939945, endtime: 40940247, seqnum: 0, connid: 0 98 12:52:29,7827183 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54851 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40939945, endtime: 40940247, seqnum: 0, connid: 0 98 12:52:29,7827294 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54851 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40939946, endtime: 40940247, seqnum: 0, connid: 0 98 12:52:29,7827388 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54851 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40939946, endtime: 40940247, seqnum: 0, connid: 0 98 12:52:29,7827501 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54851 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40939947, endtime: 40940247, seqnum: 0, connid: 0 98 12:52:29,7827596 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54851 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40939948, endtime: 40940247, seqnum: 0, connid: 0 98 12:52:29,7828153 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54851 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40939948, endtime: 40940247, seqnum: 0, connid: 0 98 12:52:29,7828250 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54851 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40939949, endtime: 40940247, seqnum: 0, connid: 0 98 12:52:29,7828352 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54851 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40939949, endtime: 40940247, seqnum: 0, connid: 0 98 12:52:29,7828435 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54851 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40939950, endtime: 40940247, seqnum: 0, connid: 0 98 12:52:30,1204704 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54849 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40939835, endtime: 40940281, seqnum: 0, connid: 0 98 12:52:30,1204876 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54849 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40939835, endtime: 40940281, seqnum: 0, connid: 0 98 12:52:30,1204945 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54849 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40939836, endtime: 40940281, seqnum: 0, connid: 0 98 12:52:30,1205014 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54849 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40939837, endtime: 40940281, seqnum: 0, connid: 0 98 12:52:30,1205070 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54849 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40939837, endtime: 40940281, seqnum: 0, connid: 0 98 12:52:30,1205136 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54849 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40939838, endtime: 40940281, seqnum: 0, connid: 0 98 12:52:30,1205189 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54849 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40939838, endtime: 40940281, seqnum: 0, connid: 0 98 12:52:30,1205255 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54849 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40939839, endtime: 40940281, seqnum: 0, connid: 0 98 12:52:30,1205308 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54849 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40939840, endtime: 40940281, seqnum: 0, connid: 0 98 12:52:30,1205624 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54849 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40939840, endtime: 40940281, seqnum: 0, connid: 0 98 12:52:30,1205679 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54849 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40939841, endtime: 40940281, seqnum: 0, connid: 0 98 12:52:30,1205743 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54849 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40939841, endtime: 40940281, seqnum: 0, connid: 0 98 12:52:30,1205795 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54849 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40939842, endtime: 40940281, seqnum: 0, connid: 0 98 12:52:31,8808039 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54851 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40940247, endtime: 40940457, seqnum: 0, connid: 0 98 12:52:31,8808205 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54851 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40940248, endtime: 40940457, seqnum: 0, connid: 0 98 12:52:31,8808277 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54851 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40940248, endtime: 40940457, seqnum: 0, connid: 0 98 12:52:31,8808349 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54851 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40940249, endtime: 40940457, seqnum: 0, connid: 0 98 12:52:31,8808405 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54851 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40940249, endtime: 40940457, seqnum: 0, connid: 0 98 12:52:31,8808468 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54851 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40940250, endtime: 40940457, seqnum: 0, connid: 0 98 12:52:31,8808521 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54851 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40940250, endtime: 40940457, seqnum: 0, connid: 0 98 12:52:31,8808585 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54851 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40940251, endtime: 40940457, seqnum: 0, connid: 0 98 12:52:31,8808637 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54851 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40940252, endtime: 40940457, seqnum: 0, connid: 0 98 12:52:31,8808928 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54851 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40940252, endtime: 40940457, seqnum: 0, connid: 0 98 12:52:31,8808984 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54851 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40940253, endtime: 40940457, seqnum: 0, connid: 0 98 12:52:31,8809045 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54851 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40940253, endtime: 40940457, seqnum: 0, connid: 0 98 12:52:31,8809100 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54851 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40940254, endtime: 40940457, seqnum: 0, connid: 0 98 12:52:32,3700203 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54852 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40940138, endtime: 40940506, seqnum: 0, connid: 0 98 12:52:32,3700369 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54852 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40940139, endtime: 40940506, seqnum: 0, connid: 0 98 12:52:32,3700439 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54852 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40940139, endtime: 40940506, seqnum: 0, connid: 0 98 12:52:32,3700508 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54852 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40940140, endtime: 40940506, seqnum: 0, connid: 0 98 12:52:32,3700563 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54852 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40940140, endtime: 40940506, seqnum: 0, connid: 0 98 12:52:32,3700627 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54852 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40940141, endtime: 40940506, seqnum: 0, connid: 0 98 12:52:32,3700680 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54852 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40940141, endtime: 40940506, seqnum: 0, connid: 0 98 12:52:32,3700746 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54852 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40940142, endtime: 40940506, seqnum: 0, connid: 0 98 12:52:32,3700802 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54852 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40940143, endtime: 40940506, seqnum: 0, connid: 0 98 12:52:32,3702192 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54852 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40940143, endtime: 40940506, seqnum: 0, connid: 0 98 12:52:32,3702262 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54852 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40940144, endtime: 40940506, seqnum: 0, connid: 0 98 12:52:32,3702328 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54852 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40940144, endtime: 40940506, seqnum: 0, connid: 0 98 12:52:32,3702381 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54852 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40940145, endtime: 40940506, seqnum: 0, connid: 0 98 12:52:32,6075405 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54847 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40940233, endtime: 40940529, seqnum: 0, connid: 0 98 12:52:32,6075557 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54847 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40940234, endtime: 40940529, seqnum: 0, connid: 0 98 12:52:32,6075629 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54847 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40940234, endtime: 40940529, seqnum: 0, connid: 0 98 12:52:32,6075698 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54847 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40940235, endtime: 40940529, seqnum: 0, connid: 0 98 12:52:32,6075754 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54847 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40940236, endtime: 40940529, seqnum: 0, connid: 0 98 12:52:32,6075820 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54847 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40940236, endtime: 40940529, seqnum: 0, connid: 0 98 12:52:32,6075876 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54847 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40940237, endtime: 40940529, seqnum: 0, connid: 0 98 12:52:32,6075939 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54847 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40940237, endtime: 40940529, seqnum: 0, connid: 0 98 12:52:32,6075992 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54847 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40940238, endtime: 40940529, seqnum: 0, connid: 0 98 12:52:32,6076297 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54847 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40940239, endtime: 40940529, seqnum: 0, connid: 0 98 12:52:32,6076352 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54847 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40940239, endtime: 40940529, seqnum: 0, connid: 0 98 12:52:32,6076416 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54847 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40940240, endtime: 40940529, seqnum: 0, connid: 0 98 12:52:32,6077452 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54847 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40940240, endtime: 40940529, seqnum: 0, connid: 0 98 12:52:33,0174698 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54849 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40940281, endtime: 40940570, seqnum: 0, connid: 0 98 12:52:33,0174856 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54849 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40940281, endtime: 40940570, seqnum: 0, connid: 0 98 12:52:33,0174928 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54849 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40940282, endtime: 40940570, seqnum: 0, connid: 0 98 12:52:33,0174997 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54849 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40940282, endtime: 40940570, seqnum: 0, connid: 0 98 12:52:33,0175058 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54849 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40940283, endtime: 40940570, seqnum: 0, connid: 0 98 12:52:33,0175122 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54849 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40940284, endtime: 40940570, seqnum: 0, connid: 0 98 12:52:33,0175177 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54849 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40940284, endtime: 40940570, seqnum: 0, connid: 0 98 12:52:33,0175241 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54849 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40940285, endtime: 40940570, seqnum: 0, connid: 0 98 12:52:33,0175294 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54849 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40940285, endtime: 40940570, seqnum: 0, connid: 0 98 12:52:33,0175599 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54849 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40940286, endtime: 40940570, seqnum: 0, connid: 0 98 12:52:33,0175651 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54849 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40940287, endtime: 40940570, seqnum: 0, connid: 0 98 12:52:33,0175715 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54849 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40940287, endtime: 40940570, seqnum: 0, connid: 0 98 12:52:33,0175770 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54849 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40940288, endtime: 40940570, seqnum: 0, connid: 0 98 12:52:33,1586249 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54857 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40940196, endtime: 40940584, seqnum: 0, connid: 0 98 12:52:33,1586412 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54857 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40940196, endtime: 40940584, seqnum: 0, connid: 0 98 12:52:33,1586484 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54857 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40940197, endtime: 40940584, seqnum: 0, connid: 0 98 12:52:33,1586556 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54857 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40940197, endtime: 40940584, seqnum: 0, connid: 0 98 12:52:33,1586612 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54857 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40940198, endtime: 40940584, seqnum: 0, connid: 0 98 12:52:33,1586675 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54857 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40940199, endtime: 40940584, seqnum: 0, connid: 0 98 12:52:33,1586731 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54857 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40940199, endtime: 40940584, seqnum: 0, connid: 0 98 12:52:33,1586795 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54857 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40940200, endtime: 40940584, seqnum: 0, connid: 0 98 12:52:33,1586847 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54857 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40940200, endtime: 40940584, seqnum: 0, connid: 0 98 12:52:33,1587623 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54857 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40940201, endtime: 40940584, seqnum: 0, connid: 0 98 12:52:33,1587692 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54857 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40940201, endtime: 40940584, seqnum: 0, connid: 0 98 12:52:33,1589097 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54857 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40940202, endtime: 40940585, seqnum: 0, connid: 0 98 12:52:33,1589186 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54857 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40940203, endtime: 40940585, seqnum: 0, connid: 0 98 12:52:33,5007329 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54854 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40940201, endtime: 40940619, seqnum: 0, connid: 0 98 12:52:33,5007495 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54854 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40940202, endtime: 40940619, seqnum: 0, connid: 0 98 12:52:33,5007564 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54854 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40940203, endtime: 40940619, seqnum: 0, connid: 0 98 12:52:33,5007636 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54854 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40940203, endtime: 40940619, seqnum: 0, connid: 0 98 12:52:33,5007692 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54854 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40940204, endtime: 40940619, seqnum: 0, connid: 0 98 12:52:33,5007758 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54854 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40940205, endtime: 40940619, seqnum: 0, connid: 0 98 12:52:33,5007811 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54854 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40940205, endtime: 40940619, seqnum: 0, connid: 0 98 12:52:33,5007874 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54854 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40940206, endtime: 40940619, seqnum: 0, connid: 0 98 12:52:33,5007927 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54854 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40940206, endtime: 40940619, seqnum: 0, connid: 0 98 12:52:33,5008719 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54854 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40940207, endtime: 40940619, seqnum: 0, connid: 0 98 12:52:33,5008789 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54854 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40940207, endtime: 40940619, seqnum: 0, connid: 0 98 12:52:33,5008855 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54854 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40940208, endtime: 40940619, seqnum: 0, connid: 0 98 12:52:33,5009908 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54854 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40940209, endtime: 40940619, seqnum: 0, connid: 0 98 12:52:34,9576407 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54851 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40940457, endtime: 40940764, seqnum: 0, connid: 0 98 12:52:34,9576576 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54851 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40940457, endtime: 40940764, seqnum: 0, connid: 0 98 12:52:34,9576642 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54851 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40940458, endtime: 40940764, seqnum: 0, connid: 0 98 12:52:34,9576714 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54851 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40940458, endtime: 40940764, seqnum: 0, connid: 0 98 12:52:34,9576770 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54851 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40940459, endtime: 40940764, seqnum: 0, connid: 0 98 12:52:34,9576833 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54851 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40940460, endtime: 40940764, seqnum: 0, connid: 0 98 12:52:34,9576886 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54851 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40940460, endtime: 40940764, seqnum: 0, connid: 0 98 12:52:34,9576952 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54851 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40940461, endtime: 40940764, seqnum: 0, connid: 0 98 12:52:34,9577002 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54851 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40940461, endtime: 40940764, seqnum: 0, connid: 0 98 12:52:34,9577288 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54851 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40940462, endtime: 40940764, seqnum: 0, connid: 0 98 12:52:34,9577343 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54851 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40940463, endtime: 40940764, seqnum: 0, connid: 0 98 12:52:34,9578324 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54851 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40940464, endtime: 40940764, seqnum: 0, connid: 0 98 12:52:34,9578438 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54851 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40940464, endtime: 40940764, seqnum: 0, connid: 0 98 12:52:35,0274278 MCLauncher.exe 6080 RegOpenKey HKLM\Software\WOW6432Node\Policies\Microsoft\MUI\Settings REPARSE Desired Access: Read 98 12:52:35,0274527 MCLauncher.exe 6080 RegOpenKey HKLM\SOFTWARE\Policies\Microsoft\MUI\Settings NAME NOT FOUND Desired Access: Read 98 12:52:35,0274821 MCLauncher.exe 6080 RegOpenKey HKCU SUCCESS Desired Access: Maximum Allowed, Granted Access: All Access 98 12:52:35,0275048 MCLauncher.exe 6080 RegQueryKey HKCU SUCCESS Query: HandleTags, HandleTags: 0x0 98 12:52:35,0275148 MCLauncher.exe 6080 RegQueryKey HKCU SUCCESS Query: Name 98 12:52:35,0275239 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Policies\Microsoft\Control Panel\Desktop NAME NOT FOUND Desired Access: Read 98 12:52:35,0275416 MCLauncher.exe 6080 RegQueryKey HKCU SUCCESS Query: HandleTags, HandleTags: 0x0 98 12:52:35,0275488 MCLauncher.exe 6080 RegQueryKey HKCU SUCCESS Query: Name 98 12:52:35,0275563 MCLauncher.exe 6080 RegOpenKey HKCU\Control Panel\Desktop SUCCESS Desired Access: Read 98 12:52:35,0275713 MCLauncher.exe 6080 RegSetInfoKey HKCU\Control Panel\Desktop SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 98 12:52:35,0275779 MCLauncher.exe 6080 RegQueryValue HKCU\Control Panel\Desktop\PreferredUILanguages NAME NOT FOUND Length: 12 98 12:52:35,0276015 MCLauncher.exe 6080 RegCloseKey HKCU\Control Panel\Desktop SUCCESS 98 12:52:35,0276070 MCLauncher.exe 6080 RegCloseKey HKCU SUCCESS 98 12:52:35,0276198 MCLauncher.exe 6080 RegOpenKey HKLM\Software\WOW6432Node\Policies\Microsoft\MUI\Settings REPARSE Desired Access: Read 98 12:52:35,0276272 MCLauncher.exe 6080 RegOpenKey HKLM\SOFTWARE\Policies\Microsoft\MUI\Settings NAME NOT FOUND Desired Access: Read 98 12:52:35,0276425 MCLauncher.exe 6080 RegOpenKey HKCU SUCCESS Desired Access: Maximum Allowed, Granted Access: All Access 98 12:52:35,0276563 MCLauncher.exe 6080 RegQueryKey HKCU SUCCESS Query: HandleTags, HandleTags: 0x0 98 12:52:35,0276635 MCLauncher.exe 6080 RegQueryKey HKCU SUCCESS Query: Name 98 12:52:35,0276713 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Policies\Microsoft\Control Panel\Desktop NAME NOT FOUND Desired Access: Read 98 12:52:35,0276843 MCLauncher.exe 6080 RegQueryKey HKCU SUCCESS Query: HandleTags, HandleTags: 0x0 98 12:52:35,0276912 MCLauncher.exe 6080 RegQueryKey HKCU SUCCESS Query: Name 98 12:52:35,0276982 MCLauncher.exe 6080 RegOpenKey HKCU\Control Panel\Desktop\LanguageConfiguration SUCCESS Desired Access: Read 98 12:52:35,0277104 MCLauncher.exe 6080 RegSetInfoKey HKCU\Control Panel\Desktop\LanguageConfiguration SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 98 12:52:35,0277159 MCLauncher.exe 6080 RegEnumValue HKCU\Control Panel\Desktop\LanguageConfiguration NO MORE ENTRIES Index: 0, Length: 512 98 12:52:35,0277223 MCLauncher.exe 6080 RegCloseKey HKCU\Control Panel\Desktop\LanguageConfiguration SUCCESS 98 12:52:35,0277295 MCLauncher.exe 6080 RegCloseKey HKCU SUCCESS 98 12:52:35,0278159 MCLauncher.exe 6080 TCP Disconnect WIN-0UOTFKKVN1S:54849 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 0, seqnum: 0, connid: 0 98 12:52:35,1210273 MCLauncher.exe 6080 TCP Connect WIN-0UOTFKKVN1S:54868 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 0, mss: 1460, sackopt: 0, tsopt: 0, wsopt: 0, rcvwin: 64240, rcvwinscale: 0, sndwinscale: 0, seqnum: 0, connid: 0 98 12:52:35,1214434 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54868 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40940781, endtime: 40940781, seqnum: 0, connid: 0 98 12:52:35,1271998 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54868 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40940781, endtime: 40940781, seqnum: 0, connid: 0 98 12:52:35,1331222 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54868 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40940782, endtime: 40940782, seqnum: 0, connid: 0 98 12:52:35,1388924 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54868 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40940782, endtime: 40940782, seqnum: 0, connid: 0 98 12:52:35,1447186 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54868 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40940783, endtime: 40940783, seqnum: 0, connid: 0 98 12:52:35,1505939 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54868 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40940784, endtime: 40940784, seqnum: 0, connid: 0 98 12:52:35,1564916 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54868 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40940784, endtime: 40940784, seqnum: 0, connid: 0 98 12:52:35,1624967 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54868 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40940785, endtime: 40940785, seqnum: 0, connid: 0 98 12:52:35,1681567 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54868 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40940785, endtime: 40940785, seqnum: 0, connid: 0 98 12:52:35,1740076 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54868 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40940786, endtime: 40940786, seqnum: 0, connid: 0 98 12:52:35,1835957 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54868 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40940787, endtime: 40940787, seqnum: 0, connid: 0 98 12:52:35,1890650 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54868 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40940787, endtime: 40940788, seqnum: 0, connid: 0 98 12:52:35,1947591 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54868 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40940788, endtime: 40940788, seqnum: 0, connid: 0 98 12:52:35,2003617 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54868 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40940789, endtime: 40940789, seqnum: 0, connid: 0 98 12:52:35,2059087 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54868 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40940789, endtime: 40940789, seqnum: 0, connid: 0 98 12:52:35,2119914 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54868 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40940790, endtime: 40940790, seqnum: 0, connid: 0 98 12:52:35,2179775 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54868 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40940790, endtime: 40940790, seqnum: 0, connid: 0 98 12:52:35,2237657 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54868 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40940791, endtime: 40940791, seqnum: 0, connid: 0 98 12:52:35,2296814 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54868 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40940792, endtime: 40940792, seqnum: 0, connid: 0 98 12:52:35,2363856 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54868 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40940792, endtime: 40940792, seqnum: 0, connid: 0 98 12:52:35,2422958 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54868 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40940793, endtime: 40940793, seqnum: 0, connid: 0 98 12:52:35,2482874 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54868 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40940793, endtime: 40940793, seqnum: 0, connid: 0 98 12:52:35,2540953 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54868 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40940794, endtime: 40940794, seqnum: 0, connid: 0 98 12:52:35,2600823 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54868 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40940795, endtime: 40940795, seqnum: 0, connid: 0 98 12:52:35,2664304 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54868 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40940795, endtime: 40940795, seqnum: 0, connid: 0 98 12:52:35,2716313 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54868 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40940796, endtime: 40940796, seqnum: 0, connid: 0 98 12:52:35,2774096 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54868 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40940796, endtime: 40940796, seqnum: 0, connid: 0 98 12:52:35,9447398 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54868 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40940797, endtime: 40940863, seqnum: 0, connid: 0 98 12:52:35,9447567 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54868 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40940798, endtime: 40940863, seqnum: 0, connid: 0 98 12:52:35,9447637 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54868 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40940798, endtime: 40940863, seqnum: 0, connid: 0 98 12:52:35,9447711 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54868 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40940799, endtime: 40940863, seqnum: 0, connid: 0 98 12:52:35,9447767 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54868 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40940799, endtime: 40940863, seqnum: 0, connid: 0 98 12:52:35,9447833 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54868 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40940800, endtime: 40940863, seqnum: 0, connid: 0 98 12:52:35,9447886 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54868 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40940800, endtime: 40940863, seqnum: 0, connid: 0 98 12:52:35,9447952 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54868 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40940801, endtime: 40940863, seqnum: 0, connid: 0 98 12:52:35,9448005 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54868 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40940802, endtime: 40940863, seqnum: 0, connid: 0 98 12:52:35,9448332 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54868 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40940802, endtime: 40940863, seqnum: 0, connid: 0 98 12:52:35,9449471 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54868 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40940803, endtime: 40940863, seqnum: 0, connid: 0 98 12:52:36,0180505 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54847 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40940529, endtime: 40940870, seqnum: 0, connid: 0 98 12:52:36,0180680 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54847 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40940530, endtime: 40940870, seqnum: 0, connid: 0 98 12:52:36,0180752 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54847 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40940531, endtime: 40940870, seqnum: 0, connid: 0 98 12:52:36,0180821 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54847 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40940531, endtime: 40940870, seqnum: 0, connid: 0 98 12:52:36,0180876 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54847 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40940532, endtime: 40940870, seqnum: 0, connid: 0 98 12:52:36,0180943 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54847 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40940532, endtime: 40940870, seqnum: 0, connid: 0 98 12:52:36,0180996 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54847 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40940533, endtime: 40940870, seqnum: 0, connid: 0 98 12:52:36,0181059 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54847 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40940533, endtime: 40940870, seqnum: 0, connid: 0 98 12:52:36,0181112 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54847 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40940534, endtime: 40940870, seqnum: 0, connid: 0 98 12:52:36,0181420 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54847 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40940535, endtime: 40940870, seqnum: 0, connid: 0 98 12:52:36,0181641 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54847 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40940535, endtime: 40940870, seqnum: 0, connid: 0 98 12:52:36,0182711 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54847 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40940536, endtime: 40940870, seqnum: 0, connid: 0 98 12:52:36,0182835 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54847 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40940536, endtime: 40940870, seqnum: 0, connid: 0 98 12:52:36,1000389 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54854 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40940619, endtime: 40940879, seqnum: 0, connid: 0 98 12:52:36,1000591 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54854 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40940619, endtime: 40940879, seqnum: 0, connid: 0 98 12:52:36,1000674 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54854 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40940620, endtime: 40940879, seqnum: 0, connid: 0 98 12:52:36,1000755 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54854 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40940620, endtime: 40940879, seqnum: 0, connid: 0 98 12:52:36,1000818 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54854 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40940621, endtime: 40940879, seqnum: 0, connid: 0 98 12:52:36,1000888 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54854 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40940622, endtime: 40940879, seqnum: 0, connid: 0 98 12:52:36,1000949 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54854 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40940622, endtime: 40940879, seqnum: 0, connid: 0 98 12:52:36,1001018 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54854 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40940623, endtime: 40940879, seqnum: 0, connid: 0 98 12:52:36,1001076 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54854 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40940623, endtime: 40940879, seqnum: 0, connid: 0 98 12:52:36,1001746 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54854 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40940624, endtime: 40940879, seqnum: 0, connid: 0 98 12:52:36,1001824 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54854 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40940625, endtime: 40940879, seqnum: 0, connid: 0 98 12:52:36,1001896 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54854 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40940625, endtime: 40940879, seqnum: 0, connid: 0 98 12:52:36,8203192 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54857 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40940584, endtime: 40940951, seqnum: 0, connid: 0 98 12:52:36,8203356 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54857 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40940585, endtime: 40940951, seqnum: 0, connid: 0 98 12:52:36,8203425 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54857 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40940586, endtime: 40940951, seqnum: 0, connid: 0 98 12:52:36,8203497 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54857 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40940587, endtime: 40940951, seqnum: 0, connid: 0 98 12:52:36,8203552 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54857 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40940588, endtime: 40940951, seqnum: 0, connid: 0 98 12:52:36,8203616 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54857 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40940588, endtime: 40940951, seqnum: 0, connid: 0 98 12:52:36,8203669 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54857 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40940589, endtime: 40940951, seqnum: 0, connid: 0 98 12:52:36,8203732 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54857 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40940589, endtime: 40940951, seqnum: 0, connid: 0 98 12:52:36,8203785 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54857 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40940590, endtime: 40940951, seqnum: 0, connid: 0 98 12:52:36,8204525 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54857 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40940591, endtime: 40940951, seqnum: 0, connid: 0 98 12:52:36,8204591 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54857 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40940591, endtime: 40940951, seqnum: 0, connid: 0 98 12:52:36,8205240 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54857 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40940592, endtime: 40940951, seqnum: 0, connid: 0 98 12:52:36,8205337 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54857 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40940592, endtime: 40940951, seqnum: 0, connid: 0 98 12:52:37,8872560 MCLauncher.exe 6080 RegOpenKey HKLM\Software\WOW6432Node\Policies\Microsoft\MUI\Settings REPARSE Desired Access: Read 98 12:52:37,8872792 MCLauncher.exe 6080 RegOpenKey HKLM\SOFTWARE\Policies\Microsoft\MUI\Settings NAME NOT FOUND Desired Access: Read 98 12:52:37,8873081 MCLauncher.exe 6080 RegOpenKey HKCU SUCCESS Desired Access: Maximum Allowed, Granted Access: All Access 98 12:52:37,8873305 MCLauncher.exe 6080 RegQueryKey HKCU SUCCESS Query: HandleTags, HandleTags: 0x0 98 12:52:37,8873399 MCLauncher.exe 6080 RegQueryKey HKCU SUCCESS Query: Name 98 12:52:37,8873491 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Policies\Microsoft\Control Panel\Desktop NAME NOT FOUND Desired Access: Read 98 12:52:37,8873662 MCLauncher.exe 6080 RegQueryKey HKCU SUCCESS Query: HandleTags, HandleTags: 0x0 98 12:52:37,8873734 MCLauncher.exe 6080 RegQueryKey HKCU SUCCESS Query: Name 98 12:52:37,8873809 MCLauncher.exe 6080 RegOpenKey HKCU\Control Panel\Desktop SUCCESS Desired Access: Read 98 12:52:37,8873945 MCLauncher.exe 6080 RegSetInfoKey HKCU\Control Panel\Desktop SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 98 12:52:37,8874011 MCLauncher.exe 6080 RegQueryValue HKCU\Control Panel\Desktop\PreferredUILanguages NAME NOT FOUND Length: 12 98 12:52:37,8874233 MCLauncher.exe 6080 RegCloseKey HKCU\Control Panel\Desktop SUCCESS 98 12:52:37,8874286 MCLauncher.exe 6080 RegCloseKey HKCU SUCCESS 98 12:52:37,8874410 MCLauncher.exe 6080 RegOpenKey HKLM\Software\WOW6432Node\Policies\Microsoft\MUI\Settings REPARSE Desired Access: Read 98 12:52:37,8874482 MCLauncher.exe 6080 RegOpenKey HKLM\SOFTWARE\Policies\Microsoft\MUI\Settings NAME NOT FOUND Desired Access: Read 98 12:52:37,8874632 MCLauncher.exe 6080 RegOpenKey HKCU SUCCESS Desired Access: Maximum Allowed, Granted Access: All Access 98 12:52:37,8874768 MCLauncher.exe 6080 RegQueryKey HKCU SUCCESS Query: HandleTags, HandleTags: 0x0 98 12:52:37,8874840 MCLauncher.exe 6080 RegQueryKey HKCU SUCCESS Query: Name 98 12:52:37,8874915 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Policies\Microsoft\Control Panel\Desktop NAME NOT FOUND Desired Access: Read 98 12:52:37,8875042 MCLauncher.exe 6080 RegQueryKey HKCU SUCCESS Query: HandleTags, HandleTags: 0x0 98 12:52:37,8875111 MCLauncher.exe 6080 RegQueryKey HKCU SUCCESS Query: Name 98 12:52:37,8875181 MCLauncher.exe 6080 RegOpenKey HKCU\Control Panel\Desktop\LanguageConfiguration SUCCESS Desired Access: Read 98 12:52:37,8875300 MCLauncher.exe 6080 RegSetInfoKey HKCU\Control Panel\Desktop\LanguageConfiguration SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 98 12:52:37,8875352 MCLauncher.exe 6080 RegEnumValue HKCU\Control Panel\Desktop\LanguageConfiguration NO MORE ENTRIES Index: 0, Length: 512 98 12:52:37,8875416 MCLauncher.exe 6080 RegCloseKey HKCU\Control Panel\Desktop\LanguageConfiguration SUCCESS 98 12:52:37,8875485 MCLauncher.exe 6080 RegCloseKey HKCU SUCCESS 98 12:52:37,8876635 MCLauncher.exe 6080 TCP Disconnect WIN-0UOTFKKVN1S:54847 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 0, seqnum: 0, connid: 0 98 12:52:37,9225479 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54852 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40940506, endtime: 40941061, seqnum: 0, connid: 0 98 12:52:37,9225629 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54852 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40940506, endtime: 40941061, seqnum: 0, connid: 0 98 12:52:37,9225709 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54852 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40940507, endtime: 40941061, seqnum: 0, connid: 0 98 12:52:37,9225767 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54852 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40940508, endtime: 40941061, seqnum: 0, connid: 0 98 12:52:37,9225831 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54852 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40940508, endtime: 40941061, seqnum: 0, connid: 0 98 12:52:37,9225884 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54852 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40940509, endtime: 40941061, seqnum: 0, connid: 0 98 12:52:37,9225947 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54852 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40940509, endtime: 40941061, seqnum: 0, connid: 0 98 12:52:37,9225997 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54852 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40940510, endtime: 40941061, seqnum: 0, connid: 0 98 12:52:37,9226061 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54852 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40940510, endtime: 40941061, seqnum: 0, connid: 0 98 12:52:37,9226731 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54852 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40940511, endtime: 40941061, seqnum: 0, connid: 0 98 12:52:37,9226809 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54852 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40940511, endtime: 40941061, seqnum: 0, connid: 0 98 12:52:37,9226862 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54852 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40940512, endtime: 40941061, seqnum: 0, connid: 0 98 12:52:37,9228915 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54852 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40940513, endtime: 40941061, seqnum: 0, connid: 0 98 12:52:38,0885001 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54854 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40940626, endtime: 40941077, seqnum: 0, connid: 0 98 12:52:38,0885189 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54854 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40940879, endtime: 40941077, seqnum: 0, connid: 0 98 12:52:38,0885261 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54854 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40940879, endtime: 40941077, seqnum: 0, connid: 0 98 12:52:38,0885333 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54854 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40940880, endtime: 40941077, seqnum: 0, connid: 0 98 12:52:38,0885391 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54854 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40940880, endtime: 40941077, seqnum: 0, connid: 0 98 12:52:38,0885458 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54854 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40940881, endtime: 40941077, seqnum: 0, connid: 0 98 12:52:38,0885513 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54854 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40940882, endtime: 40941077, seqnum: 0, connid: 0 98 12:52:38,0885577 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54854 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40940882, endtime: 40941077, seqnum: 0, connid: 0 98 12:52:38,0885632 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54854 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40940883, endtime: 40941077, seqnum: 0, connid: 0 98 12:52:38,0885923 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54854 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40940883, endtime: 40941077, seqnum: 0, connid: 0 98 12:52:38,0885981 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54854 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40940884, endtime: 40941077, seqnum: 0, connid: 0 98 12:52:38,0886045 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54854 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40940884, endtime: 40941077, seqnum: 0, connid: 0 98 12:52:38,0886100 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54854 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40940885, endtime: 40941077, seqnum: 0, connid: 0 98 12:52:38,9768711 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54857 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40940951, endtime: 40941166, seqnum: 0, connid: 0 98 12:52:38,9768872 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54857 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40940951, endtime: 40941166, seqnum: 0, connid: 0 98 12:52:38,9768950 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54857 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40940952, endtime: 40941166, seqnum: 0, connid: 0 98 12:52:38,9769022 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54857 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40940952, endtime: 40941166, seqnum: 0, connid: 0 98 12:52:38,9769074 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54857 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40940953, endtime: 40941166, seqnum: 0, connid: 0 98 12:52:38,9769141 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54857 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40940953, endtime: 40941166, seqnum: 0, connid: 0 98 12:52:38,9769196 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54857 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40940954, endtime: 40941166, seqnum: 0, connid: 0 98 12:52:38,9769373 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54857 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40940955, endtime: 40941166, seqnum: 0, connid: 0 98 12:52:38,9769432 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54857 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40940956, endtime: 40941166, seqnum: 0, connid: 0 98 12:52:38,9769756 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54857 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40940956, endtime: 40941166, seqnum: 0, connid: 0 98 12:52:38,9769811 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54857 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40940957, endtime: 40941166, seqnum: 0, connid: 0 98 12:52:38,9770947 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54857 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40940958, endtime: 40941166, seqnum: 0, connid: 0 98 12:52:38,9771014 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54857 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40940959, endtime: 40941166, seqnum: 0, connid: 0 98 12:52:39,6113818 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54851 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40940764, endtime: 40941230, seqnum: 0, connid: 0 98 12:52:39,6114029 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54851 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40940765, endtime: 40941230, seqnum: 0, connid: 0 98 12:52:39,6114109 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54851 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40940766, endtime: 40941230, seqnum: 0, connid: 0 98 12:52:39,6114192 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54851 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40940766, endtime: 40941230, seqnum: 0, connid: 0 98 12:52:39,6114253 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54851 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40940767, endtime: 40941230, seqnum: 0, connid: 0 98 12:52:39,6114325 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54851 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40940767, endtime: 40941230, seqnum: 0, connid: 0 98 12:52:39,6114384 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54851 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40940768, endtime: 40941230, seqnum: 0, connid: 0 98 12:52:39,6114453 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54851 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40940769, endtime: 40941230, seqnum: 0, connid: 0 98 12:52:39,6114514 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54851 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40940769, endtime: 40941230, seqnum: 0, connid: 0 98 12:52:39,6114827 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54851 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40940770, endtime: 40941230, seqnum: 0, connid: 0 98 12:52:39,6114891 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54851 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40940770, endtime: 40941230, seqnum: 0, connid: 0 98 12:52:39,6114960 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54851 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40940771, endtime: 40941230, seqnum: 0, connid: 0 98 12:52:39,6115018 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54851 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40940772, endtime: 40941230, seqnum: 0, connid: 0 98 12:52:39,7051332 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54868 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40940803, endtime: 40941239, seqnum: 0, connid: 0 98 12:52:39,7051476 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54868 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40940804, endtime: 40941239, seqnum: 0, connid: 0 98 12:52:39,7051562 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54868 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40940863, endtime: 40941239, seqnum: 0, connid: 0 98 12:52:39,7051628 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54868 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40940864, endtime: 40941239, seqnum: 0, connid: 0 98 12:52:39,7051700 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54868 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40940864, endtime: 40941239, seqnum: 0, connid: 0 98 12:52:39,7051758 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54868 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40940865, endtime: 40941239, seqnum: 0, connid: 0 98 12:52:39,7051828 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54868 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40940865, endtime: 40941239, seqnum: 0, connid: 0 98 12:52:39,7051886 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54868 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40940866, endtime: 40941239, seqnum: 0, connid: 0 98 12:52:39,7051955 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54868 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40940867, endtime: 40941239, seqnum: 0, connid: 0 98 12:52:39,7052227 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54868 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40940868, endtime: 40941239, seqnum: 0, connid: 0 98 12:52:39,7052301 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54868 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40940868, endtime: 40941239, seqnum: 0, connid: 0 98 12:52:39,7052357 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54868 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40940869, endtime: 40941239, seqnum: 0, connid: 0 98 12:52:39,7052429 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54868 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40940869, endtime: 40941239, seqnum: 0, connid: 0 98 12:52:40,8871665 MCLauncher.exe 6080 TCP Reconnect WIN-0UOTFKKVN1S:54870 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 0, seqnum: 0, connid: 0 98 12:52:41,8222614 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54854 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40941077, endtime: 40941451, seqnum: 0, connid: 0 98 12:52:41,8222811 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54854 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40941078, endtime: 40941451, seqnum: 0, connid: 0 98 12:52:41,8222883 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54854 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40941079, endtime: 40941451, seqnum: 0, connid: 0 98 12:52:41,8222955 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54854 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40941079, endtime: 40941451, seqnum: 0, connid: 0 98 12:52:41,8223010 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54854 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40941080, endtime: 40941451, seqnum: 0, connid: 0 98 12:52:41,8223077 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54854 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40941080, endtime: 40941451, seqnum: 0, connid: 0 98 12:52:41,8223132 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54854 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40941081, endtime: 40941451, seqnum: 0, connid: 0 98 12:52:41,8223193 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54854 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40941082, endtime: 40941451, seqnum: 0, connid: 0 98 12:52:41,8223246 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54854 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40941082, endtime: 40941451, seqnum: 0, connid: 0 98 12:52:41,8223578 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54854 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40941083, endtime: 40941451, seqnum: 0, connid: 0 98 12:52:41,8223633 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54854 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40941083, endtime: 40941451, seqnum: 0, connid: 0 98 12:52:41,8223697 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54854 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40941084, endtime: 40941451, seqnum: 0, connid: 0 98 12:52:41,8223750 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54854 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40941085, endtime: 40941451, seqnum: 0, connid: 0 98 12:52:42,0902239 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54857 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40941166, endtime: 40941478, seqnum: 0, connid: 0 98 12:52:42,0902408 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54857 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40941167, endtime: 40941478, seqnum: 0, connid: 0 98 12:52:42,0902480 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54857 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40941167, endtime: 40941478, seqnum: 0, connid: 0 98 12:52:42,0902552 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54857 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40941168, endtime: 40941478, seqnum: 0, connid: 0 98 12:52:42,0902607 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54857 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40941169, endtime: 40941478, seqnum: 0, connid: 0 98 12:52:42,0902668 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54857 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40941169, endtime: 40941478, seqnum: 0, connid: 0 98 12:52:42,0902724 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54857 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40941170, endtime: 40941478, seqnum: 0, connid: 0 98 12:52:42,0902788 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54857 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40941170, endtime: 40941478, seqnum: 0, connid: 0 98 12:52:42,0902840 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54857 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40941171, endtime: 40941478, seqnum: 0, connid: 0 98 12:52:42,0903137 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54857 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40941172, endtime: 40941478, seqnum: 0, connid: 0 98 12:52:42,0903189 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54857 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40941172, endtime: 40941478, seqnum: 0, connid: 0 98 12:52:42,0903253 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54857 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40941173, endtime: 40941478, seqnum: 0, connid: 0 98 12:52:42,0903306 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54857 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40941174, endtime: 40941478, seqnum: 0, connid: 0 98 12:52:42,4472954 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54852 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40941061, endtime: 40941513, seqnum: 0, connid: 0 98 12:52:42,4473112 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54852 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40941061, endtime: 40941513, seqnum: 0, connid: 0 98 12:52:42,4473184 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54852 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40941062, endtime: 40941513, seqnum: 0, connid: 0 98 12:52:42,4473253 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54852 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40941062, endtime: 40941513, seqnum: 0, connid: 0 98 12:52:42,4473309 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54852 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40941063, endtime: 40941513, seqnum: 0, connid: 0 98 12:52:42,4473372 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54852 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40941064, endtime: 40941513, seqnum: 0, connid: 0 98 12:52:42,4473425 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54852 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40941064, endtime: 40941513, seqnum: 0, connid: 0 98 12:52:42,4473486 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54852 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40941065, endtime: 40941513, seqnum: 0, connid: 0 98 12:52:42,4473539 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54852 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40941066, endtime: 40941513, seqnum: 0, connid: 0 98 12:52:42,4474198 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54852 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40941066, endtime: 40941513, seqnum: 0, connid: 0 98 12:52:42,4474264 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54852 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40941067, endtime: 40941513, seqnum: 0, connid: 0 98 12:52:42,4474328 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54852 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40941067, endtime: 40941513, seqnum: 0, connid: 0 98 12:52:42,4476328 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54852 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40941068, endtime: 40941513, seqnum: 0, connid: 0 98 12:52:44,0299900 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54851 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40941230, endtime: 40941672, seqnum: 0, connid: 0 98 12:52:44,0300080 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54851 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40941230, endtime: 40941672, seqnum: 0, connid: 0 98 12:52:44,0300155 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54851 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40941231, endtime: 40941672, seqnum: 0, connid: 0 98 12:52:44,0300227 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54851 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40941232, endtime: 40941672, seqnum: 0, connid: 0 98 12:52:44,0300282 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54851 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40941232, endtime: 40941672, seqnum: 0, connid: 0 98 12:52:44,0300349 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54851 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40941233, endtime: 40941672, seqnum: 0, connid: 0 98 12:52:44,0300401 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54851 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40941233, endtime: 40941672, seqnum: 0, connid: 0 98 12:52:44,0300465 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54851 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40941234, endtime: 40941672, seqnum: 0, connid: 0 98 12:52:44,0300520 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54851 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40941235, endtime: 40941672, seqnum: 0, connid: 0 98 12:52:44,0303236 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54851 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40941235, endtime: 40941672, seqnum: 0, connid: 0 98 12:52:44,0303357 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54851 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40941236, endtime: 40941672, seqnum: 0, connid: 0 98 12:52:44,0303438 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54851 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40941236, endtime: 40941672, seqnum: 0, connid: 0 98 12:52:44,0303501 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54851 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40941237, endtime: 40941672, seqnum: 0, connid: 0 98 12:52:44,7564597 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54854 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40941451, endtime: 40941744, seqnum: 0, connid: 0 98 12:52:44,7564772 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54854 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40941451, endtime: 40941744, seqnum: 0, connid: 0 98 12:52:44,7564841 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54854 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40941452, endtime: 40941744, seqnum: 0, connid: 0 98 12:52:44,7564913 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54854 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40941453, endtime: 40941744, seqnum: 0, connid: 0 98 12:52:44,7564966 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54854 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40941453, endtime: 40941744, seqnum: 0, connid: 0 98 12:52:44,7565030 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54854 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40941454, endtime: 40941744, seqnum: 0, connid: 0 98 12:52:44,7565082 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54854 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40941454, endtime: 40941744, seqnum: 0, connid: 0 98 12:52:44,7565146 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54854 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40941455, endtime: 40941744, seqnum: 0, connid: 0 98 12:52:44,7565199 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54854 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40941455, endtime: 40941744, seqnum: 0, connid: 0 98 12:52:44,7565487 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54854 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40941456, endtime: 40941744, seqnum: 0, connid: 0 98 12:52:44,7565542 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54854 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40941457, endtime: 40941744, seqnum: 0, connid: 0 98 12:52:44,7565606 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54854 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40941457, endtime: 40941744, seqnum: 0, connid: 0 98 12:52:44,7565656 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54854 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40941458, endtime: 40941744, seqnum: 0, connid: 0 98 12:52:44,9965410 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54868 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40941239, endtime: 40941768, seqnum: 0, connid: 0 98 12:52:44,9965585 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54868 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40941240, endtime: 40941768, seqnum: 0, connid: 0 98 12:52:44,9965659 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54868 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40941240, endtime: 40941768, seqnum: 0, connid: 0 98 12:52:44,9965729 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54868 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40941241, endtime: 40941768, seqnum: 0, connid: 0 98 12:52:44,9965784 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54868 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40941241, endtime: 40941768, seqnum: 0, connid: 0 98 12:52:44,9965848 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54868 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40941242, endtime: 40941768, seqnum: 0, connid: 0 98 12:52:44,9965903 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54868 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40941243, endtime: 40941768, seqnum: 0, connid: 0 98 12:52:44,9965970 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54868 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40941243, endtime: 40941768, seqnum: 0, connid: 0 98 12:52:44,9966022 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54868 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40941244, endtime: 40941768, seqnum: 0, connid: 0 98 12:52:44,9966324 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54868 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40941244, endtime: 40941768, seqnum: 0, connid: 0 98 12:52:44,9966382 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54868 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40941245, endtime: 40941768, seqnum: 0, connid: 0 98 12:52:44,9966446 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54868 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40941245, endtime: 40941768, seqnum: 0, connid: 0 98 12:52:44,9966499 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54868 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40941246, endtime: 40941768, seqnum: 0, connid: 0 98 12:52:45,4008212 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54857 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40941478, endtime: 40941809, seqnum: 0, connid: 0 98 12:52:45,4008386 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54857 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40941478, endtime: 40941809, seqnum: 0, connid: 0 98 12:52:45,4008458 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54857 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40941479, endtime: 40941809, seqnum: 0, connid: 0 98 12:52:45,4008533 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54857 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40941479, endtime: 40941809, seqnum: 0, connid: 0 98 12:52:45,4008589 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54857 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40941480, endtime: 40941809, seqnum: 0, connid: 0 98 12:52:45,4008655 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54857 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40941481, endtime: 40941809, seqnum: 0, connid: 0 98 12:52:45,4008711 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54857 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40941481, endtime: 40941809, seqnum: 0, connid: 0 98 12:52:45,4008777 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54857 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40941482, endtime: 40941809, seqnum: 0, connid: 0 98 12:52:45,4008832 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54857 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40941482, endtime: 40941809, seqnum: 0, connid: 0 98 12:52:45,4009112 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54857 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40941483, endtime: 40941809, seqnum: 0, connid: 0 98 12:52:45,4009170 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54857 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40941483, endtime: 40941809, seqnum: 0, connid: 0 98 12:52:45,4009237 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54857 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40941484, endtime: 40941809, seqnum: 0, connid: 0 98 12:52:45,4009290 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54857 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40941485, endtime: 40941809, seqnum: 0, connid: 0 98 12:52:46,8880605 MCLauncher.exe 6080 TCP Reconnect WIN-0UOTFKKVN1S:54870 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 0, seqnum: 0, connid: 0 98 12:52:46,9117959 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54851 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40941672, endtime: 40941960, seqnum: 0, connid: 0 98 12:52:46,9118120 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54851 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40941672, endtime: 40941960, seqnum: 0, connid: 0 98 12:52:46,9118192 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54851 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40941673, endtime: 40941960, seqnum: 0, connid: 0 98 12:52:46,9118264 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54851 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40941673, endtime: 40941960, seqnum: 0, connid: 0 98 12:52:46,9118317 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54851 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40941674, endtime: 40941960, seqnum: 0, connid: 0 98 12:52:46,9118380 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54851 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40941675, endtime: 40941960, seqnum: 0, connid: 0 98 12:52:46,9118433 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54851 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40941675, endtime: 40941960, seqnum: 0, connid: 0 98 12:52:46,9118494 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54851 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40941676, endtime: 40941960, seqnum: 0, connid: 0 98 12:52:46,9118547 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54851 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40941676, endtime: 40941960, seqnum: 0, connid: 0 98 12:52:46,9118851 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54851 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40941677, endtime: 40941960, seqnum: 0, connid: 0 98 12:52:46,9118904 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54851 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40941678, endtime: 40941960, seqnum: 0, connid: 0 98 12:52:46,9118968 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54851 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40941678, endtime: 40941960, seqnum: 0, connid: 0 98 12:52:46,9119020 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54851 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40941679, endtime: 40941960, seqnum: 0, connid: 0 98 12:52:46,9786906 MCLauncher.exe 6080 TCP Connect WIN-0UOTFKKVN1S:54870 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 0, mss: 1460, sackopt: 0, tsopt: 0, wsopt: 0, rcvwin: 64240, rcvwinscale: 0, sndwinscale: 0, seqnum: 0, connid: 0 98 12:52:46,9794176 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54870 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40941966, endtime: 40941967, seqnum: 0, connid: 0 98 12:52:46,9850825 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54870 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40941967, endtime: 40941967, seqnum: 0, connid: 0 98 12:52:46,9908943 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54870 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40941968, endtime: 40941968, seqnum: 0, connid: 0 98 12:52:46,9965513 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54870 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40941968, endtime: 40941968, seqnum: 0, connid: 0 98 12:52:47,0025974 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54870 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40941969, endtime: 40941969, seqnum: 0, connid: 0 98 12:52:47,0084508 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54870 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40941969, endtime: 40941969, seqnum: 0, connid: 0 98 12:52:47,0152678 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54870 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40941970, endtime: 40941970, seqnum: 0, connid: 0 98 12:52:47,0211272 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54870 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40941971, endtime: 40941971, seqnum: 0, connid: 0 98 12:52:47,0270332 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54870 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40941971, endtime: 40941971, seqnum: 0, connid: 0 98 12:52:47,0325932 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54870 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40941972, endtime: 40941972, seqnum: 0, connid: 0 98 12:52:47,0386737 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54870 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40941972, endtime: 40941972, seqnum: 0, connid: 0 98 12:52:47,0445049 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54870 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40941973, endtime: 40941973, seqnum: 0, connid: 0 98 12:52:47,0503807 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54870 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40941974, endtime: 40941974, seqnum: 0, connid: 0 98 12:52:47,0562075 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54870 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40941974, endtime: 40941974, seqnum: 0, connid: 0 98 12:52:47,0620190 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54870 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40941975, endtime: 40941975, seqnum: 0, connid: 0 98 12:52:47,0680123 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54870 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40941975, endtime: 40941975, seqnum: 0, connid: 0 98 12:52:47,0743832 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54870 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40941976, endtime: 40941976, seqnum: 0, connid: 0 98 12:52:47,0797257 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54870 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40941977, endtime: 40941977, seqnum: 0, connid: 0 98 12:52:47,0854970 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54870 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40941977, endtime: 40941977, seqnum: 0, connid: 0 98 12:52:47,0913571 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54870 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40941978, endtime: 40941978, seqnum: 0, connid: 0 98 12:52:47,0971561 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54870 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40941978, endtime: 40941978, seqnum: 0, connid: 0 98 12:52:47,1029940 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54870 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40941979, endtime: 40941979, seqnum: 0, connid: 0 98 12:52:47,1089767 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54870 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40941979, endtime: 40941980, seqnum: 0, connid: 0 98 12:52:47,1147522 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54870 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40941980, endtime: 40941980, seqnum: 0, connid: 0 98 12:52:47,1210927 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54870 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40941981, endtime: 40941981, seqnum: 0, connid: 0 98 12:52:47,1878690 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54870 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40941981, endtime: 40941987, seqnum: 0, connid: 0 98 12:52:47,1878837 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54870 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40941982, endtime: 40941987, seqnum: 0, connid: 0 98 12:52:47,1878909 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54870 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40941982, endtime: 40941987, seqnum: 0, connid: 0 98 12:52:47,1878981 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54870 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40941983, endtime: 40941987, seqnum: 0, connid: 0 98 12:52:47,1879036 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54870 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40941984, endtime: 40941987, seqnum: 0, connid: 0 98 12:52:47,1879100 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54870 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40941984, endtime: 40941987, seqnum: 0, connid: 0 98 12:52:47,1879155 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54870 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40941985, endtime: 40941987, seqnum: 0, connid: 0 98 12:52:47,1879219 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54870 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40941985, endtime: 40941987, seqnum: 0, connid: 0 98 12:52:47,1879274 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54870 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40941986, endtime: 40941987, seqnum: 0, connid: 0 98 12:52:47,1913050 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54870 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40941988, endtime: 40941988, seqnum: 0, connid: 0 98 12:52:47,1973482 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54870 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40941988, endtime: 40941988, seqnum: 0, connid: 0 98 12:52:47,2037044 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54870 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40941989, endtime: 40941989, seqnum: 0, connid: 0 98 12:52:47,2097057 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54870 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40941990, endtime: 40941990, seqnum: 0, connid: 0 98 12:52:47,6474360 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54852 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40941513, endtime: 40942033, seqnum: 0, connid: 0 98 12:52:47,6474529 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54852 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40941514, endtime: 40942033, seqnum: 0, connid: 0 98 12:52:47,6474601 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54852 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40941514, endtime: 40942033, seqnum: 0, connid: 0 98 12:52:47,6474670 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54852 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40941515, endtime: 40942033, seqnum: 0, connid: 0 98 12:52:47,6474723 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54852 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40941516, endtime: 40942033, seqnum: 0, connid: 0 98 12:52:47,6474792 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54852 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40941516, endtime: 40942033, seqnum: 0, connid: 0 98 12:52:47,6474845 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54852 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40941517, endtime: 40942033, seqnum: 0, connid: 0 98 12:52:47,6474908 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54852 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40941517, endtime: 40942033, seqnum: 0, connid: 0 98 12:52:47,6474961 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54852 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40941518, endtime: 40942033, seqnum: 0, connid: 0 98 12:52:47,6475260 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54852 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40941519, endtime: 40942033, seqnum: 0, connid: 0 98 12:52:47,6475449 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54852 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40941519, endtime: 40942033, seqnum: 0, connid: 0 98 12:52:47,6475526 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54852 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40941520, endtime: 40942033, seqnum: 0, connid: 0 98 12:52:47,6476579 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54852 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40941520, endtime: 40942033, seqnum: 0, connid: 0 98 12:52:47,9167746 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54854 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40941744, endtime: 40942060, seqnum: 0, connid: 0 98 12:52:47,9167924 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54854 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40941745, endtime: 40942060, seqnum: 0, connid: 0 98 12:52:47,9167998 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54854 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40941746, endtime: 40942060, seqnum: 0, connid: 0 98 12:52:47,9168070 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54854 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40941746, endtime: 40942060, seqnum: 0, connid: 0 98 12:52:47,9168126 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54854 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40941747, endtime: 40942060, seqnum: 0, connid: 0 98 12:52:47,9168192 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54854 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40941748, endtime: 40942060, seqnum: 0, connid: 0 98 12:52:47,9168245 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54854 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40941748, endtime: 40942060, seqnum: 0, connid: 0 98 12:52:47,9168311 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54854 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40941749, endtime: 40942060, seqnum: 0, connid: 0 98 12:52:47,9168367 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54854 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40941749, endtime: 40942060, seqnum: 0, connid: 0 98 12:52:47,9168644 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54854 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40941750, endtime: 40942060, seqnum: 0, connid: 0 98 12:52:47,9168702 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54854 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40941751, endtime: 40942060, seqnum: 0, connid: 0 98 12:52:47,9168766 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54854 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40941751, endtime: 40942060, seqnum: 0, connid: 0 98 12:52:47,9168821 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54854 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40941752, endtime: 40942060, seqnum: 0, connid: 0 98 12:52:48,7722328 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54851 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40941960, endtime: 40942146, seqnum: 0, connid: 0 98 12:52:48,7722506 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54851 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40941960, endtime: 40942146, seqnum: 0, connid: 0 98 12:52:48,7722580 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54851 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40941961, endtime: 40942146, seqnum: 0, connid: 0 98 12:52:48,7722655 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54851 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40941962, endtime: 40942146, seqnum: 0, connid: 0 98 12:52:48,7722711 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54851 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40941962, endtime: 40942146, seqnum: 0, connid: 0 98 12:52:48,7722777 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54851 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40941963, endtime: 40942146, seqnum: 0, connid: 0 98 12:52:48,7722830 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54851 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40941963, endtime: 40942146, seqnum: 0, connid: 0 98 12:52:48,7722896 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54851 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40941964, endtime: 40942146, seqnum: 0, connid: 0 98 12:52:48,7722949 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54851 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40941964, endtime: 40942146, seqnum: 0, connid: 0 98 12:52:48,7723248 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54851 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40941965, endtime: 40942146, seqnum: 0, connid: 0 98 12:52:48,7723303 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54851 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40941966, endtime: 40942146, seqnum: 0, connid: 0 98 12:52:48,7723370 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54851 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40941966, endtime: 40942146, seqnum: 0, connid: 0 98 12:52:48,7723423 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54851 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40941967, endtime: 40942146, seqnum: 0, connid: 0 98 12:52:49,1785624 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54868 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40941768, endtime: 40942186, seqnum: 0, connid: 0 98 12:52:49,1785793 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54868 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40941769, endtime: 40942186, seqnum: 0, connid: 0 98 12:52:49,1785865 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54868 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40941770, endtime: 40942186, seqnum: 0, connid: 0 98 12:52:49,1785937 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54868 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40941770, endtime: 40942186, seqnum: 0, connid: 0 98 12:52:49,1785990 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54868 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40941771, endtime: 40942186, seqnum: 0, connid: 0 98 12:52:49,1786053 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54868 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40941771, endtime: 40942186, seqnum: 0, connid: 0 98 12:52:49,1786106 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54868 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40941772, endtime: 40942186, seqnum: 0, connid: 0 98 12:52:49,1786170 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54868 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40941773, endtime: 40942186, seqnum: 0, connid: 0 98 12:52:49,1786222 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54868 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40941773, endtime: 40942186, seqnum: 0, connid: 0 98 12:52:49,1786524 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54868 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40941774, endtime: 40942186, seqnum: 0, connid: 0 98 12:52:49,1786580 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54868 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40941774, endtime: 40942186, seqnum: 0, connid: 0 98 12:52:49,1786643 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54868 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40941775, endtime: 40942186, seqnum: 0, connid: 0 98 12:52:49,1786696 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54868 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40941776, endtime: 40942186, seqnum: 0, connid: 0 98 12:52:51,5003840 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54868 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40942186, endtime: 40942419, seqnum: 0, connid: 0 98 12:52:51,5004007 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54868 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40942187, endtime: 40942419, seqnum: 0, connid: 0 98 12:52:51,5004076 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54868 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40942188, endtime: 40942419, seqnum: 0, connid: 0 98 12:52:51,5004148 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54868 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40942188, endtime: 40942419, seqnum: 0, connid: 0 98 12:52:51,5004203 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54868 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40942190, endtime: 40942419, seqnum: 0, connid: 0 98 12:52:51,5004267 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54868 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40942190, endtime: 40942419, seqnum: 0, connid: 0 98 12:52:51,5004320 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54868 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40942191, endtime: 40942419, seqnum: 0, connid: 0 98 12:52:51,5004383 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54868 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40942191, endtime: 40942419, seqnum: 0, connid: 0 98 12:52:51,5004436 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54868 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40942192, endtime: 40942419, seqnum: 0, connid: 0 98 12:52:51,5004744 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54868 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40942193, endtime: 40942419, seqnum: 0, connid: 0 98 12:52:51,5004799 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54868 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40942193, endtime: 40942419, seqnum: 0, connid: 0 98 12:52:51,5004863 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54868 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40942194, endtime: 40942419, seqnum: 0, connid: 0 98 12:52:51,5006035 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54868 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40942194, endtime: 40942419, seqnum: 0, connid: 0 98 12:52:51,6984747 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54852 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40942033, endtime: 40942438, seqnum: 0, connid: 0 98 12:52:51,6984924 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54852 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40942034, endtime: 40942438, seqnum: 0, connid: 0 98 12:52:51,6984996 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54852 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40942035, endtime: 40942438, seqnum: 0, connid: 0 98 12:52:51,6985071 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54852 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40942035, endtime: 40942438, seqnum: 0, connid: 0 98 12:52:51,6985132 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54852 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40942036, endtime: 40942438, seqnum: 0, connid: 0 98 12:52:51,6985198 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54852 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40942036, endtime: 40942438, seqnum: 0, connid: 0 98 12:52:51,6985254 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54852 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40942037, endtime: 40942438, seqnum: 0, connid: 0 98 12:52:51,6985320 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54852 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40942037, endtime: 40942438, seqnum: 0, connid: 0 98 12:52:51,6985376 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54852 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40942038, endtime: 40942438, seqnum: 0, connid: 0 98 12:52:51,6985700 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54852 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40942039, endtime: 40942438, seqnum: 0, connid: 0 98 12:52:51,6985758 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54852 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40942039, endtime: 40942438, seqnum: 0, connid: 0 98 12:52:51,6985825 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54852 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40942040, endtime: 40942438, seqnum: 0, connid: 0 98 12:52:51,6985880 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54852 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40942040, endtime: 40942438, seqnum: 0, connid: 0 98 12:52:51,7731468 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54851 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40942146, endtime: 40942446, seqnum: 0, connid: 0 98 12:52:51,7731635 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54851 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40942146, endtime: 40942446, seqnum: 0, connid: 0 98 12:52:51,7731704 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54851 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40942147, endtime: 40942446, seqnum: 0, connid: 0 98 12:52:51,7731773 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54851 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40942148, endtime: 40942446, seqnum: 0, connid: 0 98 12:52:51,7731828 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54851 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40942148, endtime: 40942446, seqnum: 0, connid: 0 98 12:52:51,7731892 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54851 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40942149, endtime: 40942446, seqnum: 0, connid: 0 98 12:52:51,7731945 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54851 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40942149, endtime: 40942446, seqnum: 0, connid: 0 98 12:52:51,7732009 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54851 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40942150, endtime: 40942446, seqnum: 0, connid: 0 98 12:52:51,7732058 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54851 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40942151, endtime: 40942446, seqnum: 0, connid: 0 98 12:52:51,7732358 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54851 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40942151, endtime: 40942446, seqnum: 0, connid: 0 98 12:52:51,7732410 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54851 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40942152, endtime: 40942446, seqnum: 0, connid: 0 98 12:52:51,7732474 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54851 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40942152, endtime: 40942446, seqnum: 0, connid: 0 98 12:52:51,7732527 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54851 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40942153, endtime: 40942446, seqnum: 0, connid: 0 98 12:52:52,0443617 MCLauncher.exe 6080 TCP Connect WIN-0UOTFKKVN1S:54873 -> sheltex.company:8000 SUCCESS Length: 0, mss: 1460, sackopt: 0, tsopt: 0, wsopt: 0, rcvwin: 64240, rcvwinscale: 0, sndwinscale: 0, seqnum: 0, connid: 0 98 12:52:52,3094340 MCLauncher.exe 6080 TCP Disconnect WIN-0UOTFKKVN1S:54863 -> sheltex.company:8000 SUCCESS Length: 0, seqnum: 0, connid: 0 98 12:52:52,4079609 MCLauncher.exe 6080 TCP TCPCopy WIN-0UOTFKKVN1S:54873 -> sheltex.company:8000 SUCCESS Length: 6, seqnum: 0, connid: 0 98 12:52:52,4079759 MCLauncher.exe 6080 TCP Receive WIN-0UOTFKKVN1S:54873 -> sheltex.company:8000 SUCCESS Length: 6, seqnum: 0, connid: 0 98 12:52:52,4082610 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54873 -> sheltex.company:8000 SUCCESS Length: 9, startime: 40942509, endtime: 40942509, seqnum: 0, connid: 0 98 12:52:52,4084388 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54873 -> sheltex.company:8000 SUCCESS Length: 103, startime: 40942509, endtime: 40942509, seqnum: 0, connid: 0 98 12:52:53,6810891 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54857 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40941809, endtime: 40942637, seqnum: 0, connid: 0 98 12:52:53,6811052 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54857 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40941809, endtime: 40942637, seqnum: 0, connid: 0 98 12:52:53,6811130 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54857 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40941810, endtime: 40942637, seqnum: 0, connid: 0 98 12:52:53,6811188 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54857 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40941810, endtime: 40942637, seqnum: 0, connid: 0 98 12:52:53,6811254 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54857 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40941811, endtime: 40942637, seqnum: 0, connid: 0 98 12:52:53,6811310 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54857 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40941812, endtime: 40942637, seqnum: 0, connid: 0 98 12:52:53,6811373 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54857 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40941812, endtime: 40942637, seqnum: 0, connid: 0 98 12:52:53,6811426 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54857 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40941813, endtime: 40942637, seqnum: 0, connid: 0 98 12:52:53,6811490 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54857 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40941813, endtime: 40942637, seqnum: 0, connid: 0 98 12:52:53,6811897 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54857 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40941814, endtime: 40942637, seqnum: 0, connid: 0 98 12:52:53,6813163 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54857 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40941815, endtime: 40942637, seqnum: 0, connid: 0 98 12:52:53,6813233 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54857 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40941815, endtime: 40942637, seqnum: 0, connid: 0 98 12:52:53,6813296 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54857 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40941816, endtime: 40942637, seqnum: 0, connid: 0 98 12:52:54,8032287 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54868 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40942419, endtime: 40942749, seqnum: 0, connid: 0 98 12:52:54,8032498 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54868 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40942419, endtime: 40942749, seqnum: 0, connid: 0 98 12:52:54,8032587 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54868 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40942420, endtime: 40942749, seqnum: 0, connid: 0 98 12:52:54,8032673 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54868 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40942420, endtime: 40942749, seqnum: 0, connid: 0 98 12:52:54,8032736 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54868 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40942421, endtime: 40942749, seqnum: 0, connid: 0 98 12:52:54,8032817 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54868 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40942422, endtime: 40942749, seqnum: 0, connid: 0 98 12:52:54,8032880 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54868 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40942422, endtime: 40942749, seqnum: 0, connid: 0 98 12:52:54,8032958 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54868 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40942423, endtime: 40942749, seqnum: 0, connid: 0 98 12:52:54,8033022 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54868 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40942423, endtime: 40942749, seqnum: 0, connid: 0 98 12:52:54,8033371 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54868 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40942424, endtime: 40942749, seqnum: 0, connid: 0 98 12:52:54,8033437 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54868 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40942425, endtime: 40942749, seqnum: 0, connid: 0 98 12:52:54,8033509 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54868 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40942425, endtime: 40942749, seqnum: 0, connid: 0 98 12:52:54,8033573 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54868 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40942426, endtime: 40942749, seqnum: 0, connid: 0 98 12:52:55,5750917 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54857 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40942637, endtime: 40942826, seqnum: 0, connid: 0 98 12:52:55,5751133 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54857 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40942637, endtime: 40942826, seqnum: 0, connid: 0 98 12:52:55,5751207 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54857 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40942638, endtime: 40942826, seqnum: 0, connid: 0 98 12:52:55,5751282 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54857 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40942638, endtime: 40942826, seqnum: 0, connid: 0 98 12:52:55,5751338 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54857 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40942639, endtime: 40942826, seqnum: 0, connid: 0 98 12:52:55,5751401 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54857 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40942640, endtime: 40942826, seqnum: 0, connid: 0 98 12:52:55,5751460 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54857 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40942640, endtime: 40942826, seqnum: 0, connid: 0 98 12:52:55,5751670 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54857 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40942641, endtime: 40942826, seqnum: 0, connid: 0 98 12:52:55,5751762 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54857 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40942642, endtime: 40942826, seqnum: 0, connid: 0 98 12:52:55,5752227 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54857 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40942642, endtime: 40942826, seqnum: 0, connid: 0 98 12:52:55,5752288 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54857 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40942643, endtime: 40942826, seqnum: 0, connid: 0 98 12:52:55,5752357 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54857 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40942643, endtime: 40942826, seqnum: 0, connid: 0 98 12:52:55,5752413 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54857 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40942644, endtime: 40942826, seqnum: 0, connid: 0 98 12:52:56,1273433 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54851 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40942446, endtime: 40942881, seqnum: 0, connid: 0 98 12:52:56,1273594 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54851 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40942446, endtime: 40942881, seqnum: 0, connid: 0 98 12:52:56,1273666 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54851 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40942447, endtime: 40942881, seqnum: 0, connid: 0 98 12:52:56,1273732 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54851 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40942448, endtime: 40942881, seqnum: 0, connid: 0 98 12:52:56,1273788 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54851 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40942448, endtime: 40942881, seqnum: 0, connid: 0 98 12:52:56,1273852 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54851 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40942449, endtime: 40942881, seqnum: 0, connid: 0 98 12:52:56,1273901 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54851 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40942449, endtime: 40942881, seqnum: 0, connid: 0 98 12:52:56,1273962 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54851 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40942450, endtime: 40942881, seqnum: 0, connid: 0 98 12:52:56,1274015 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54851 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40942450, endtime: 40942881, seqnum: 0, connid: 0 98 12:52:56,1274311 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54851 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40942451, endtime: 40942881, seqnum: 0, connid: 0 98 12:52:56,1274367 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54851 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40942452, endtime: 40942881, seqnum: 0, connid: 0 98 12:52:56,1274428 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54851 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40942452, endtime: 40942881, seqnum: 0, connid: 0 98 12:52:56,1274480 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54851 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40942453, endtime: 40942881, seqnum: 0, connid: 0 98 12:52:57,1571493 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54870 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40941990, endtime: 40942984, seqnum: 0, connid: 0 98 12:52:57,1571690 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54870 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40941991, endtime: 40942984, seqnum: 0, connid: 0 98 12:52:57,1571786 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54870 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40941991, endtime: 40942984, seqnum: 0, connid: 0 98 12:52:57,1571861 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54870 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40941992, endtime: 40942984, seqnum: 0, connid: 0 98 12:52:57,1571939 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54870 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40941992, endtime: 40942984, seqnum: 0, connid: 0 98 12:52:57,1572003 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54870 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40941993, endtime: 40942984, seqnum: 0, connid: 0 98 12:52:57,1572077 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54870 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40941994, endtime: 40942984, seqnum: 0, connid: 0 98 12:52:57,1572141 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54870 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40941994, endtime: 40942984, seqnum: 0, connid: 0 98 12:52:57,1572216 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54870 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40941995, endtime: 40942984, seqnum: 0, connid: 0 98 12:52:57,1572512 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54870 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40941995, endtime: 40942984, seqnum: 0, connid: 0 98 12:52:57,1572593 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54870 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40941996, endtime: 40942984, seqnum: 0, connid: 0 98 12:52:57,1572654 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54870 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40941997, endtime: 40942984, seqnum: 0, connid: 0 98 12:52:57,1572728 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54870 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40941997, endtime: 40942984, seqnum: 0, connid: 0 98 12:52:57,9332611 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54868 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40942749, endtime: 40943062, seqnum: 0, connid: 0 98 12:52:57,9332805 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54868 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40942750, endtime: 40943062, seqnum: 0, connid: 0 98 12:52:57,9332883 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54868 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40942750, endtime: 40943062, seqnum: 0, connid: 0 98 12:52:57,9332960 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54868 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40942751, endtime: 40943062, seqnum: 0, connid: 0 98 12:52:57,9333024 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54868 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40942752, endtime: 40943062, seqnum: 0, connid: 0 98 12:52:57,9333099 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54868 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40942752, endtime: 40943062, seqnum: 0, connid: 0 98 12:52:57,9333157 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54868 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40942753, endtime: 40943062, seqnum: 0, connid: 0 98 12:52:57,9333229 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54868 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40942753, endtime: 40943062, seqnum: 0, connid: 0 98 12:52:57,9333287 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54868 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40942754, endtime: 40943062, seqnum: 0, connid: 0 98 12:52:57,9333573 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54868 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40942755, endtime: 40943062, seqnum: 0, connid: 0 98 12:52:57,9333634 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54868 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40942755, endtime: 40943062, seqnum: 0, connid: 0 98 12:52:57,9333700 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54868 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40942756, endtime: 40943062, seqnum: 0, connid: 0 98 12:52:57,9333758 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54868 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40942756, endtime: 40943062, seqnum: 0, connid: 0 98 12:52:58,0934693 MCLauncher.exe 6080 TCP Connect WIN-0UOTFKKVN1S:54876 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 0, mss: 1460, sackopt: 0, tsopt: 0, wsopt: 0, rcvwin: 64240, rcvwinscale: 0, sndwinscale: 0, seqnum: 0, connid: 0 98 12:52:58,0939401 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54876 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40943078, endtime: 40943078, seqnum: 0, connid: 0 98 12:52:58,1001178 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54876 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40943079, endtime: 40943079, seqnum: 0, connid: 0 98 12:52:58,1056565 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54876 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40943079, endtime: 40943079, seqnum: 0, connid: 0 98 12:52:58,1116265 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54876 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40943080, endtime: 40943080, seqnum: 0, connid: 0 98 12:52:58,1172020 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54876 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40943080, endtime: 40943080, seqnum: 0, connid: 0 98 12:52:58,1230332 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54876 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40943081, endtime: 40943081, seqnum: 0, connid: 0 98 12:52:58,1291181 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54876 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40943081, endtime: 40943082, seqnum: 0, connid: 0 98 12:52:58,1348859 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54876 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40943082, endtime: 40943082, seqnum: 0, connid: 0 98 12:52:58,1406886 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54876 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40943083, endtime: 40943083, seqnum: 0, connid: 0 98 12:52:58,1465599 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54876 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40943083, endtime: 40943083, seqnum: 0, connid: 0 98 12:52:58,1523778 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54876 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40943084, endtime: 40943084, seqnum: 0, connid: 0 98 12:52:58,1581641 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54876 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40943084, endtime: 40943084, seqnum: 0, connid: 0 98 12:52:58,1640929 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54876 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40943085, endtime: 40943085, seqnum: 0, connid: 0 98 12:52:58,1698914 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54876 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40943086, endtime: 40943086, seqnum: 0, connid: 0 98 12:52:58,1764853 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54876 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40943086, endtime: 40943086, seqnum: 0, connid: 0 98 12:52:58,1838483 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54876 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40943087, endtime: 40943087, seqnum: 0, connid: 0 98 12:52:58,1894064 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54876 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40943088, endtime: 40943088, seqnum: 0, connid: 0 98 12:52:58,1952667 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54876 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40943088, endtime: 40943088, seqnum: 0, connid: 0 98 12:52:58,2011948 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54876 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40943089, endtime: 40943089, seqnum: 0, connid: 0 98 12:52:58,2066595 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54876 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40943089, endtime: 40943089, seqnum: 0, connid: 0 98 12:52:58,2119086 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54876 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40943090, endtime: 40943090, seqnum: 0, connid: 0 98 12:52:58,2178029 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54876 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40943090, endtime: 40943090, seqnum: 0, connid: 0 98 12:52:58,2236125 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54876 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40943091, endtime: 40943091, seqnum: 0, connid: 0 98 12:52:58,2295088 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54876 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40943092, endtime: 40943092, seqnum: 0, connid: 0 98 12:52:58,2354777 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54876 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40943092, endtime: 40943092, seqnum: 0, connid: 0 98 12:52:58,2413339 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54876 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40943093, endtime: 40943093, seqnum: 0, connid: 0 98 12:52:58,2470700 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54876 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40943093, endtime: 40943093, seqnum: 0, connid: 0 98 12:52:58,6752856 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54857 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40942826, endtime: 40943136, seqnum: 0, connid: 0 98 12:52:58,6753028 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54857 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40942827, endtime: 40943136, seqnum: 0, connid: 0 98 12:52:58,6753100 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54857 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40942827, endtime: 40943136, seqnum: 0, connid: 0 98 12:52:58,6753170 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54857 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40942828, endtime: 40943136, seqnum: 0, connid: 0 98 12:52:58,6753222 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54857 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40942828, endtime: 40943136, seqnum: 0, connid: 0 98 12:52:58,6753286 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54857 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40942829, endtime: 40943136, seqnum: 0, connid: 0 98 12:52:58,6753339 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54857 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40942830, endtime: 40943136, seqnum: 0, connid: 0 98 12:52:58,6753402 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54857 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40942830, endtime: 40943136, seqnum: 0, connid: 0 98 12:52:58,6753455 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54857 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40942831, endtime: 40943136, seqnum: 0, connid: 0 98 12:52:58,6753751 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54857 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40942832, endtime: 40943136, seqnum: 0, connid: 0 98 12:52:58,6753807 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54857 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40942832, endtime: 40943136, seqnum: 0, connid: 0 98 12:52:58,6754799 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54857 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40942833, endtime: 40943136, seqnum: 0, connid: 0 98 12:52:58,6754909 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54857 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40942833, endtime: 40943136, seqnum: 0, connid: 0 98 12:52:59,2529874 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54876 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40943094, endtime: 40943194, seqnum: 0, connid: 0 98 12:52:59,2530054 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54876 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40943094, endtime: 40943194, seqnum: 0, connid: 0 98 12:52:59,2530129 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54876 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40943095, endtime: 40943194, seqnum: 0, connid: 0 98 12:52:59,2530204 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54876 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40943096, endtime: 40943194, seqnum: 0, connid: 0 98 12:52:59,2530259 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54876 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40943096, endtime: 40943194, seqnum: 0, connid: 0 98 12:52:59,2530326 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54876 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40943097, endtime: 40943194, seqnum: 0, connid: 0 98 12:52:59,2530381 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54876 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40943097, endtime: 40943194, seqnum: 0, connid: 0 98 12:52:59,2530448 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54876 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40943098, endtime: 40943194, seqnum: 0, connid: 0 98 12:52:59,2530500 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54876 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40943099, endtime: 40943194, seqnum: 0, connid: 0 98 12:52:59,2530799 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54876 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40943099, endtime: 40943194, seqnum: 0, connid: 0 98 12:52:59,2530855 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54876 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40943100, endtime: 40943194, seqnum: 0, connid: 0 98 12:53:00,0984655 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54851 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40942881, endtime: 40943278, seqnum: 0, connid: 0 98 12:53:00,0984829 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54851 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40942882, endtime: 40943278, seqnum: 0, connid: 0 98 12:53:00,0984904 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54851 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40942883, endtime: 40943278, seqnum: 0, connid: 0 98 12:53:00,0984976 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54851 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40942883, endtime: 40943278, seqnum: 0, connid: 0 98 12:53:00,0985034 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54851 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40942884, endtime: 40943278, seqnum: 0, connid: 0 98 12:53:00,0985206 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54851 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40942884, endtime: 40943278, seqnum: 0, connid: 0 98 12:53:00,0985325 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54851 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40942885, endtime: 40943278, seqnum: 0, connid: 0 98 12:53:00,0985397 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54851 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40942885, endtime: 40943278, seqnum: 0, connid: 0 98 12:53:00,0985456 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54851 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40942886, endtime: 40943278, seqnum: 0, connid: 0 98 12:53:00,0985774 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54851 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40942887, endtime: 40943278, seqnum: 0, connid: 0 98 12:53:00,0985830 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54851 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40942887, endtime: 40943278, seqnum: 0, connid: 0 98 12:53:00,0985893 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54851 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40942888, endtime: 40943278, seqnum: 0, connid: 0 98 12:53:00,0985949 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54851 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40942888, endtime: 40943278, seqnum: 0, connid: 0 98 12:53:00,4679341 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54854 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40942060, endtime: 40943315, seqnum: 0, connid: 0 98 12:53:00,4679532 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54854 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40942061, endtime: 40943315, seqnum: 0, connid: 0 98 12:53:00,4679629 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54854 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40942061, endtime: 40943315, seqnum: 0, connid: 0 98 12:53:00,4679699 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54854 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40942062, endtime: 40943315, seqnum: 0, connid: 0 98 12:53:00,4679774 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54854 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40942063, endtime: 40943315, seqnum: 0, connid: 0 98 12:53:00,4679832 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54854 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40942063, endtime: 40943315, seqnum: 0, connid: 0 98 12:53:00,4679904 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54854 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40942064, endtime: 40943315, seqnum: 0, connid: 0 98 12:53:00,4679965 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54854 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40942064, endtime: 40943315, seqnum: 0, connid: 0 98 12:53:00,4680034 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54854 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40942065, endtime: 40943315, seqnum: 0, connid: 0 98 12:53:00,4680289 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54854 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40942066, endtime: 40943315, seqnum: 0, connid: 0 98 12:53:00,4680366 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54854 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40942067, endtime: 40943315, seqnum: 0, connid: 0 98 12:53:00,4680425 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54854 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40942067, endtime: 40943315, seqnum: 0, connid: 0 98 12:53:00,4680497 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54854 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40942068, endtime: 40943315, seqnum: 0, connid: 0 98 12:53:00,6897446 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54876 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40943100, endtime: 40943338, seqnum: 0, connid: 0 98 12:53:00,6897588 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54876 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40943101, endtime: 40943338, seqnum: 0, connid: 0 98 12:53:00,6897671 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54876 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40943194, endtime: 40943338, seqnum: 0, connid: 0 98 12:53:00,6897732 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54876 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40943194, endtime: 40943338, seqnum: 0, connid: 0 98 12:53:00,6897796 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54876 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40943195, endtime: 40943338, seqnum: 0, connid: 0 98 12:53:00,6897848 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54876 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40943196, endtime: 40943338, seqnum: 0, connid: 0 98 12:53:00,6897912 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54876 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40943196, endtime: 40943338, seqnum: 0, connid: 0 98 12:53:00,6897962 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54876 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40943197, endtime: 40943338, seqnum: 0, connid: 0 98 12:53:00,6898028 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54876 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40943197, endtime: 40943338, seqnum: 0, connid: 0 98 12:53:00,6899303 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54876 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40943198, endtime: 40943338, seqnum: 0, connid: 0 98 12:53:00,6899378 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54876 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40943199, endtime: 40943338, seqnum: 0, connid: 0 98 12:53:00,6899430 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54876 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40943199, endtime: 40943338, seqnum: 0, connid: 0 98 12:53:00,6899494 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54876 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40943200, endtime: 40943338, seqnum: 0, connid: 0 98 12:53:00,8559725 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54870 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40942984, endtime: 40943354, seqnum: 0, connid: 0 98 12:53:00,8559963 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54870 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40942985, endtime: 40943354, seqnum: 0, connid: 0 98 12:53:00,8560088 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54870 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40942986, endtime: 40943354, seqnum: 0, connid: 0 98 12:53:00,8560182 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54870 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40942986, endtime: 40943354, seqnum: 0, connid: 0 98 12:53:00,8560245 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54870 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40942987, endtime: 40943354, seqnum: 0, connid: 0 98 12:53:00,8560320 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54870 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40942988, endtime: 40943354, seqnum: 0, connid: 0 98 12:53:00,8560381 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54870 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40942988, endtime: 40943354, seqnum: 0, connid: 0 98 12:53:00,8560453 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54870 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40942989, endtime: 40943354, seqnum: 0, connid: 0 98 12:53:00,8560511 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54870 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40942989, endtime: 40943354, seqnum: 0, connid: 0 98 12:53:00,8560824 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54870 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40942990, endtime: 40943354, seqnum: 0, connid: 0 98 12:53:00,8560883 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54870 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40942990, endtime: 40943354, seqnum: 0, connid: 0 98 12:53:00,8560946 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54870 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40942991, endtime: 40943354, seqnum: 0, connid: 0 98 12:53:00,8561002 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54870 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40942992, endtime: 40943354, seqnum: 0, connid: 0 98 12:53:02,0464335 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54868 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40943062, endtime: 40943473, seqnum: 0, connid: 0 98 12:53:02,0464499 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54868 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40943063, endtime: 40943473, seqnum: 0, connid: 0 98 12:53:02,0464568 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54868 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40943063, endtime: 40943473, seqnum: 0, connid: 0 98 12:53:02,0464637 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54868 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40943064, endtime: 40943473, seqnum: 0, connid: 0 98 12:53:02,0464693 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54868 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40943064, endtime: 40943473, seqnum: 0, connid: 0 98 12:53:02,0464759 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54868 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40943065, endtime: 40943473, seqnum: 0, connid: 0 98 12:53:02,0464812 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54868 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40943066, endtime: 40943473, seqnum: 0, connid: 0 98 12:53:02,0464876 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54868 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40943066, endtime: 40943473, seqnum: 0, connid: 0 98 12:53:02,0464928 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54868 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40943067, endtime: 40943473, seqnum: 0, connid: 0 98 12:53:02,0465225 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54868 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40943067, endtime: 40943473, seqnum: 0, connid: 0 98 12:53:02,0465280 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54868 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40943068, endtime: 40943473, seqnum: 0, connid: 0 98 12:53:02,0465344 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54868 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40943068, endtime: 40943473, seqnum: 0, connid: 0 98 12:53:02,0465396 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54868 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40943069, endtime: 40943473, seqnum: 0, connid: 0 98 12:53:02,5153681 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54857 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40943136, endtime: 40943520, seqnum: 0, connid: 0 98 12:53:02,5153988 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54857 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40943137, endtime: 40943520, seqnum: 0, connid: 0 98 12:53:02,5154132 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54857 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40943137, endtime: 40943520, seqnum: 0, connid: 0 98 12:53:02,5154262 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54857 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40943138, endtime: 40943520, seqnum: 0, connid: 0 98 12:53:02,5154354 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54857 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40943139, endtime: 40943520, seqnum: 0, connid: 0 98 12:53:02,5154434 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54857 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40943139, endtime: 40943520, seqnum: 0, connid: 0 98 12:53:02,5154495 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54857 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40943140, endtime: 40943520, seqnum: 0, connid: 0 98 12:53:02,5154573 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54857 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40943140, endtime: 40943520, seqnum: 0, connid: 0 98 12:53:02,5154634 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54857 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40943141, endtime: 40943520, seqnum: 0, connid: 0 98 12:53:02,5154969 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54857 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40943141, endtime: 40943520, seqnum: 0, connid: 0 98 12:53:02,5155035 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54857 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40943142, endtime: 40943520, seqnum: 0, connid: 0 98 12:53:02,5155105 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54857 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40943143, endtime: 40943520, seqnum: 0, connid: 0 98 12:53:02,5155163 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54857 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40943143, endtime: 40943520, seqnum: 0, connid: 0 98 12:53:03,3827363 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54851 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40943278, endtime: 40943607, seqnum: 0, connid: 0 98 12:53:03,3827533 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54851 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40943279, endtime: 40943607, seqnum: 0, connid: 0 98 12:53:03,3827602 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54851 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40943280, endtime: 40943607, seqnum: 0, connid: 0 98 12:53:03,3827671 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54851 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40943280, endtime: 40943607, seqnum: 0, connid: 0 98 12:53:03,3827724 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54851 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40943281, endtime: 40943607, seqnum: 0, connid: 0 98 12:53:03,3827787 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54851 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40943281, endtime: 40943607, seqnum: 0, connid: 0 98 12:53:03,3827840 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54851 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40943282, endtime: 40943607, seqnum: 0, connid: 0 98 12:53:03,3827901 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54851 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40943283, endtime: 40943607, seqnum: 0, connid: 0 98 12:53:03,3827954 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54851 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40943283, endtime: 40943607, seqnum: 0, connid: 0 98 12:53:03,3828355 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54851 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40943284, endtime: 40943607, seqnum: 0, connid: 0 98 12:53:03,3828422 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54851 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40943284, endtime: 40943607, seqnum: 0, connid: 0 98 12:53:03,3828491 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54851 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40943285, endtime: 40943607, seqnum: 0, connid: 0 98 12:53:03,3829491 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54851 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40943285, endtime: 40943607, seqnum: 0, connid: 0 98 12:53:04,1512084 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54868 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40943473, endtime: 40943684, seqnum: 0, connid: 0 98 12:53:04,1512244 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54868 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40943474, endtime: 40943684, seqnum: 0, connid: 0 98 12:53:04,1512319 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54868 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40943474, endtime: 40943684, seqnum: 0, connid: 0 98 12:53:04,1512394 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54868 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40943475, endtime: 40943684, seqnum: 0, connid: 0 98 12:53:04,1512449 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54868 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40943475, endtime: 40943684, seqnum: 0, connid: 0 98 12:53:04,1512516 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54868 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40943476, endtime: 40943684, seqnum: 0, connid: 0 98 12:53:04,1512571 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54868 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40943477, endtime: 40943684, seqnum: 0, connid: 0 98 12:53:04,1512635 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54868 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40943477, endtime: 40943684, seqnum: 0, connid: 0 98 12:53:04,1512690 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54868 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40943478, endtime: 40943684, seqnum: 0, connid: 0 98 12:53:04,1513020 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54868 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40943478, endtime: 40943684, seqnum: 0, connid: 0 98 12:53:04,1513076 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54868 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40943479, endtime: 40943684, seqnum: 0, connid: 0 98 12:53:04,1513139 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54868 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40943479, endtime: 40943684, seqnum: 0, connid: 0 98 12:53:04,1513195 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54868 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40943480, endtime: 40943684, seqnum: 0, connid: 0 98 12:53:04,1513328 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54852 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40942438, endtime: 40943684, seqnum: 0, connid: 0 98 12:53:04,1513389 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54852 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40942439, endtime: 40943684, seqnum: 0, connid: 0 98 12:53:04,1513461 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54852 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40942440, endtime: 40943684, seqnum: 0, connid: 0 98 12:53:04,1513516 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54852 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40942440, endtime: 40943684, seqnum: 0, connid: 0 98 12:53:04,1513588 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54852 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40942441, endtime: 40943684, seqnum: 0, connid: 0 98 12:53:04,1514056 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54852 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40942442, endtime: 40943684, seqnum: 0, connid: 0 98 12:53:04,1514139 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54852 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40942442, endtime: 40943684, seqnum: 0, connid: 0 98 12:53:04,1514195 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54852 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40942443, endtime: 40943684, seqnum: 0, connid: 0 98 12:53:04,1514261 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54852 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40942443, endtime: 40943684, seqnum: 0, connid: 0 98 12:53:04,1514317 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54852 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40942444, endtime: 40943684, seqnum: 0, connid: 0 98 12:53:04,1514383 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54852 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40942444, endtime: 40943684, seqnum: 0, connid: 0 98 12:53:04,1514439 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54852 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40942445, endtime: 40943684, seqnum: 0, connid: 0 98 12:53:04,1514505 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54852 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40942446, endtime: 40943684, seqnum: 0, connid: 0 98 12:53:04,5904688 MCLauncher.exe 6080 RegOpenKey HKLM\Software\WOW6432Node\Policies\Microsoft\MUI\Settings REPARSE Desired Access: Read 98 12:53:04,5904921 MCLauncher.exe 6080 RegOpenKey HKLM\SOFTWARE\Policies\Microsoft\MUI\Settings NAME NOT FOUND Desired Access: Read 98 12:53:04,5905201 MCLauncher.exe 6080 RegOpenKey HKCU SUCCESS Desired Access: Maximum Allowed, Granted Access: All Access 98 12:53:04,5905431 MCLauncher.exe 6080 RegQueryKey HKCU SUCCESS Query: HandleTags, HandleTags: 0x0 98 12:53:04,5905528 MCLauncher.exe 6080 RegQueryKey HKCU SUCCESS Query: Name 98 12:53:04,5905619 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Policies\Microsoft\Control Panel\Desktop NAME NOT FOUND Desired Access: Read 98 12:53:04,5905794 MCLauncher.exe 6080 RegQueryKey HKCU SUCCESS Query: HandleTags, HandleTags: 0x0 98 12:53:04,5905866 MCLauncher.exe 6080 RegQueryKey HKCU SUCCESS Query: Name 98 12:53:04,5905940 MCLauncher.exe 6080 RegOpenKey HKCU\Control Panel\Desktop SUCCESS Desired Access: Read 98 12:53:04,5906079 MCLauncher.exe 6080 RegSetInfoKey HKCU\Control Panel\Desktop SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 98 12:53:04,5906145 MCLauncher.exe 6080 RegQueryValue HKCU\Control Panel\Desktop\PreferredUILanguages NAME NOT FOUND Length: 12 98 12:53:04,5906359 MCLauncher.exe 6080 RegCloseKey HKCU\Control Panel\Desktop SUCCESS 98 12:53:04,5906414 MCLauncher.exe 6080 RegCloseKey HKCU SUCCESS 98 12:53:04,5906536 MCLauncher.exe 6080 RegOpenKey HKLM\Software\WOW6432Node\Policies\Microsoft\MUI\Settings REPARSE Desired Access: Read 98 12:53:04,5906619 MCLauncher.exe 6080 RegOpenKey HKLM\SOFTWARE\Policies\Microsoft\MUI\Settings NAME NOT FOUND Desired Access: Read 98 12:53:04,5906772 MCLauncher.exe 6080 RegOpenKey HKCU SUCCESS Desired Access: Maximum Allowed, Granted Access: All Access 98 12:53:04,5906907 MCLauncher.exe 6080 RegQueryKey HKCU SUCCESS Query: HandleTags, HandleTags: 0x0 98 12:53:04,5906979 MCLauncher.exe 6080 RegQueryKey HKCU SUCCESS Query: Name 98 12:53:04,5907054 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Policies\Microsoft\Control Panel\Desktop NAME NOT FOUND Desired Access: Read 98 12:53:04,5907182 MCLauncher.exe 6080 RegQueryKey HKCU SUCCESS Query: HandleTags, HandleTags: 0x0 98 12:53:04,5907251 MCLauncher.exe 6080 RegQueryKey HKCU SUCCESS Query: Name 98 12:53:04,5907320 MCLauncher.exe 6080 RegOpenKey HKCU\Control Panel\Desktop\LanguageConfiguration SUCCESS Desired Access: Read 98 12:53:04,5907439 MCLauncher.exe 6080 RegSetInfoKey HKCU\Control Panel\Desktop\LanguageConfiguration SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 98 12:53:04,5907492 MCLauncher.exe 6080 RegEnumValue HKCU\Control Panel\Desktop\LanguageConfiguration NO MORE ENTRIES Index: 0, Length: 512 98 12:53:04,5907550 MCLauncher.exe 6080 RegCloseKey HKCU\Control Panel\Desktop\LanguageConfiguration SUCCESS 98 12:53:04,5907611 MCLauncher.exe 6080 RegCloseKey HKCU SUCCESS 98 12:53:04,5908971 MCLauncher.exe 6080 TCP Disconnect WIN-0UOTFKKVN1S:54857 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 0, seqnum: 0, connid: 0 98 12:53:04,6759245 MCLauncher.exe 6080 TCP Connect WIN-0UOTFKKVN1S:54879 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 0, mss: 1460, sackopt: 0, tsopt: 0, wsopt: 0, rcvwin: 64240, rcvwinscale: 0, sndwinscale: 0, seqnum: 0, connid: 0 98 12:53:04,6789206 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54879 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40943736, endtime: 40943737, seqnum: 0, connid: 0 98 12:53:04,6836134 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54879 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40943737, endtime: 40943737, seqnum: 0, connid: 0 98 12:53:04,6887414 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54879 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40943737, endtime: 40943737, seqnum: 0, connid: 0 98 12:53:04,6945668 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54879 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40943738, endtime: 40943738, seqnum: 0, connid: 0 98 12:53:04,7004002 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54879 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40943739, endtime: 40943739, seqnum: 0, connid: 0 98 12:53:04,7062012 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54879 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40943739, endtime: 40943739, seqnum: 0, connid: 0 98 12:53:04,7120488 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54879 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40943740, endtime: 40943740, seqnum: 0, connid: 0 98 12:53:04,7179927 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54879 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40943740, endtime: 40943740, seqnum: 0, connid: 0 98 12:53:04,7238328 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54879 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40943741, endtime: 40943741, seqnum: 0, connid: 0 98 12:53:04,7305716 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54879 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40943742, endtime: 40943742, seqnum: 0, connid: 0 98 12:53:04,7366721 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54879 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40943742, endtime: 40943742, seqnum: 0, connid: 0 98 12:53:04,7429164 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54879 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40943743, endtime: 40943743, seqnum: 0, connid: 0 98 12:53:04,7483606 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54879 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40943743, endtime: 40943743, seqnum: 0, connid: 0 98 12:53:04,7540399 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54879 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40943744, endtime: 40943744, seqnum: 0, connid: 0 98 12:53:04,7599066 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54879 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40943745, endtime: 40943745, seqnum: 0, connid: 0 98 12:53:04,7658824 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54879 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40943745, endtime: 40943745, seqnum: 0, connid: 0 98 12:53:04,7716372 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54879 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40943746, endtime: 40943746, seqnum: 0, connid: 0 98 12:53:04,7760695 MCLauncher.exe 6080 TCP Reconnect WIN-0UOTFKKVN1S:54877 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 0, seqnum: 0, connid: 0 98 12:53:04,7807614 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54879 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40943747, endtime: 40943747, seqnum: 0, connid: 0 98 12:53:04,7865248 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54879 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40943747, endtime: 40943747, seqnum: 0, connid: 0 98 12:53:04,7923274 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54879 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40943748, endtime: 40943748, seqnum: 0, connid: 0 98 12:53:04,7981503 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54879 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40943748, endtime: 40943748, seqnum: 0, connid: 0 98 12:53:04,8037183 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54879 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40943749, endtime: 40943749, seqnum: 0, connid: 0 98 12:53:04,8097651 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54879 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40943750, endtime: 40943750, seqnum: 0, connid: 0 98 12:53:04,8156032 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54879 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40943750, endtime: 40943750, seqnum: 0, connid: 0 98 12:53:04,8214360 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54879 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40943751, endtime: 40943751, seqnum: 0, connid: 0 98 12:53:04,8623855 MCLauncher.exe 6080 TCP Connect WIN-0UOTFKKVN1S:54877 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 0, mss: 1460, sackopt: 0, tsopt: 0, wsopt: 0, rcvwin: 64240, rcvwinscale: 0, sndwinscale: 0, seqnum: 0, connid: 0 98 12:53:04,8626905 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54877 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40943755, endtime: 40943755, seqnum: 0, connid: 0 98 12:53:04,8682732 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54877 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40943755, endtime: 40943755, seqnum: 0, connid: 0 98 12:53:04,8741277 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54877 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40943756, endtime: 40943756, seqnum: 0, connid: 0 98 12:53:04,8800018 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54877 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40943757, endtime: 40943757, seqnum: 0, connid: 0 98 12:53:04,8858710 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54877 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40943757, endtime: 40943757, seqnum: 0, connid: 0 98 12:53:04,8917714 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54877 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40943758, endtime: 40943758, seqnum: 0, connid: 0 98 12:53:04,8976464 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54877 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40943758, endtime: 40943758, seqnum: 0, connid: 0 98 12:53:04,9035050 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54877 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40943759, endtime: 40943759, seqnum: 0, connid: 0 98 12:53:04,9098200 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54877 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40943760, endtime: 40943760, seqnum: 0, connid: 0 98 12:53:04,9161097 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54877 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40943760, endtime: 40943760, seqnum: 0, connid: 0 98 12:53:04,9219209 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54877 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40943761, endtime: 40943761, seqnum: 0, connid: 0 98 12:53:04,9278355 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54877 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40943761, endtime: 40943761, seqnum: 0, connid: 0 98 12:53:04,9338244 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54877 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40943762, endtime: 40943762, seqnum: 0, connid: 0 98 12:53:04,9392397 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54877 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40943763, endtime: 40943763, seqnum: 0, connid: 0 98 12:53:04,9451787 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54877 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40943763, endtime: 40943763, seqnum: 0, connid: 0 98 12:53:04,9509309 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54877 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40943764, endtime: 40943764, seqnum: 0, connid: 0 98 12:53:04,9568610 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54877 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40943764, endtime: 40943764, seqnum: 0, connid: 0 98 12:53:04,9627294 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54877 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40943765, endtime: 40943765, seqnum: 0, connid: 0 98 12:53:04,9682167 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54877 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40943765, endtime: 40943765, seqnum: 0, connid: 0 98 12:53:04,9736016 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54877 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40943766, endtime: 40943766, seqnum: 0, connid: 0 98 12:53:04,9793691 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54877 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40943767, endtime: 40943767, seqnum: 0, connid: 0 98 12:53:04,9852166 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54877 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40943767, endtime: 40943767, seqnum: 0, connid: 0 98 12:53:04,9910567 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54877 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40943768, endtime: 40943768, seqnum: 0, connid: 0 98 12:53:04,9968197 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54877 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40943768, endtime: 40943768, seqnum: 0, connid: 0 98 12:53:05,0027484 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54877 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40943769, endtime: 40943769, seqnum: 0, connid: 0 98 12:53:05,1553141 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54879 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40943751, endtime: 40943784, seqnum: 0, connid: 0 98 12:53:05,1553340 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54879 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40943752, endtime: 40943784, seqnum: 0, connid: 0 98 12:53:05,1553445 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54879 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40943752, endtime: 40943784, seqnum: 0, connid: 0 98 12:53:05,1553562 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54879 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40943753, endtime: 40943784, seqnum: 0, connid: 0 98 12:53:05,1553653 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54879 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40943754, endtime: 40943784, seqnum: 0, connid: 0 98 12:53:05,1553761 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54879 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40943754, endtime: 40943784, seqnum: 0, connid: 0 98 12:53:05,1553853 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54879 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40943755, endtime: 40943784, seqnum: 0, connid: 0 98 12:53:05,1553961 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54879 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40943755, endtime: 40943784, seqnum: 0, connid: 0 98 12:53:05,1554052 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54879 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40943756, endtime: 40943784, seqnum: 0, connid: 0 98 12:53:05,1554457 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54879 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40943757, endtime: 40943784, seqnum: 0, connid: 0 98 12:53:05,1554548 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54879 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40943757, endtime: 40943784, seqnum: 0, connid: 0 98 12:53:05,1554653 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54879 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40943758, endtime: 40943784, seqnum: 0, connid: 0 98 12:53:05,1554742 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54879 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40943758, endtime: 40943784, seqnum: 0, connid: 0 98 12:53:05,3354157 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54877 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40943769, endtime: 40943802, seqnum: 0, connid: 0 98 12:53:05,3354357 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54877 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40943770, endtime: 40943802, seqnum: 0, connid: 0 98 12:53:05,3354437 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54877 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40943771, endtime: 40943802, seqnum: 0, connid: 0 98 12:53:05,3354515 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54877 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40943771, endtime: 40943802, seqnum: 0, connid: 0 98 12:53:05,3354576 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54877 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40943772, endtime: 40943802, seqnum: 0, connid: 0 98 12:53:05,3354645 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54877 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40943772, endtime: 40943802, seqnum: 0, connid: 0 98 12:53:05,3354703 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54877 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40943773, endtime: 40943802, seqnum: 0, connid: 0 98 12:53:05,3354770 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54877 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40943774, endtime: 40943802, seqnum: 0, connid: 0 98 12:53:05,3354828 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54877 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40943774, endtime: 40943802, seqnum: 0, connid: 0 98 12:53:05,3355141 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54877 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40943775, endtime: 40943802, seqnum: 0, connid: 0 98 12:53:05,3355202 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54877 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40943775, endtime: 40943802, seqnum: 0, connid: 0 98 12:53:05,3355271 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54877 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40943776, endtime: 40943802, seqnum: 0, connid: 0 98 12:53:05,3355326 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54877 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40943777, endtime: 40943802, seqnum: 0, connid: 0 98 12:53:05,4947141 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54876 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40943338, endtime: 40943818, seqnum: 0, connid: 0 98 12:53:05,4947332 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54876 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40943338, endtime: 40943818, seqnum: 0, connid: 0 98 12:53:05,4947410 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54876 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40943339, endtime: 40943818, seqnum: 0, connid: 0 98 12:53:05,4947487 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54876 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40943339, endtime: 40943818, seqnum: 0, connid: 0 98 12:53:05,4947548 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54876 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40943340, endtime: 40943818, seqnum: 0, connid: 0 98 12:53:05,4947615 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54876 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40943340, endtime: 40943818, seqnum: 0, connid: 0 98 12:53:05,4947673 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54876 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40943341, endtime: 40943818, seqnum: 0, connid: 0 98 12:53:05,4947742 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54876 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40943342, endtime: 40943818, seqnum: 0, connid: 0 98 12:53:05,4947798 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54876 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40943342, endtime: 40943818, seqnum: 0, connid: 0 98 12:53:05,4948097 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54876 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40943343, endtime: 40943818, seqnum: 0, connid: 0 98 12:53:05,4948158 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54876 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40943343, endtime: 40943818, seqnum: 0, connid: 0 98 12:53:05,4948227 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54876 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40943344, endtime: 40943818, seqnum: 0, connid: 0 98 12:53:05,4948285 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54876 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40943344, endtime: 40943818, seqnum: 0, connid: 0 98 12:53:05,7581977 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54870 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40943354, endtime: 40943844, seqnum: 0, connid: 0 98 12:53:05,7582307 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54870 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40943355, endtime: 40943844, seqnum: 0, connid: 0 98 12:53:05,7582423 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54870 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40943355, endtime: 40943844, seqnum: 0, connid: 0 98 12:53:05,7582504 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54870 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40943356, endtime: 40943844, seqnum: 0, connid: 0 98 12:53:05,7582565 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54870 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40943357, endtime: 40943844, seqnum: 0, connid: 0 98 12:53:05,7582631 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54870 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40943357, endtime: 40943844, seqnum: 0, connid: 0 98 12:53:05,7582686 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54870 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40943358, endtime: 40943844, seqnum: 0, connid: 0 98 12:53:05,7582756 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54870 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40943358, endtime: 40943844, seqnum: 0, connid: 0 98 12:53:05,7582808 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54870 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40943359, endtime: 40943844, seqnum: 0, connid: 0 98 12:53:05,7583102 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54870 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40943360, endtime: 40943844, seqnum: 0, connid: 0 98 12:53:05,7584160 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54870 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40943360, endtime: 40943844, seqnum: 0, connid: 0 98 12:53:05,7584291 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54870 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40943361, endtime: 40943844, seqnum: 0, connid: 0 98 12:53:05,7584360 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54870 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40943361, endtime: 40943844, seqnum: 0, connid: 0 98 12:53:06,2706813 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54851 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40943607, endtime: 40943896, seqnum: 0, connid: 0 98 12:53:06,2707068 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54851 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40943608, endtime: 40943896, seqnum: 0, connid: 0 98 12:53:06,2707184 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54851 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40943608, endtime: 40943896, seqnum: 0, connid: 0 98 12:53:06,2707406 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54851 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40943609, endtime: 40943896, seqnum: 0, connid: 0 98 12:53:06,2707536 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54851 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40943609, endtime: 40943896, seqnum: 0, connid: 0 98 12:53:06,2707653 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54851 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40943610, endtime: 40943896, seqnum: 0, connid: 0 98 12:53:06,2707752 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54851 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40943611, endtime: 40943896, seqnum: 0, connid: 0 98 12:53:06,2707871 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54851 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40943611, endtime: 40943896, seqnum: 0, connid: 0 98 12:53:06,2707968 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54851 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40943612, endtime: 40943896, seqnum: 0, connid: 0 98 12:53:06,2708414 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54851 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40943612, endtime: 40943896, seqnum: 0, connid: 0 98 12:53:06,2708511 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54851 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40943613, endtime: 40943896, seqnum: 0, connid: 0 98 12:53:06,2708625 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54851 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40943614, endtime: 40943896, seqnum: 0, connid: 0 98 12:53:06,2708719 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54851 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40943614, endtime: 40943896, seqnum: 0, connid: 0 98 12:53:06,8883243 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54868 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40943684, endtime: 40943957, seqnum: 0, connid: 0 98 12:53:06,8883409 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54868 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40943684, endtime: 40943957, seqnum: 0, connid: 0 98 12:53:06,8883476 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54868 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40943685, endtime: 40943957, seqnum: 0, connid: 0 98 12:53:06,8883548 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54868 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40943686, endtime: 40943957, seqnum: 0, connid: 0 98 12:53:06,8883603 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54868 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40943686, endtime: 40943957, seqnum: 0, connid: 0 98 12:53:06,8883667 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54868 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40943687, endtime: 40943957, seqnum: 0, connid: 0 98 12:53:06,8883719 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54868 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40943687, endtime: 40943957, seqnum: 0, connid: 0 98 12:53:06,8883783 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54868 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40943688, endtime: 40943957, seqnum: 0, connid: 0 98 12:53:06,8883836 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54868 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40943689, endtime: 40943957, seqnum: 0, connid: 0 98 12:53:06,8884135 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54868 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40943689, endtime: 40943957, seqnum: 0, connid: 0 98 12:53:06,8885157 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54868 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40943690, endtime: 40943957, seqnum: 0, connid: 0 98 12:53:06,8885246 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54868 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40943690, endtime: 40943957, seqnum: 0, connid: 0 98 12:53:06,8885301 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54868 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40943691, endtime: 40943957, seqnum: 0, connid: 0 98 12:53:08,1112646 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54870 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40943844, endtime: 40944080, seqnum: 0, connid: 0 98 12:53:08,1112846 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54870 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40943845, endtime: 40944080, seqnum: 0, connid: 0 98 12:53:08,1112926 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54870 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40943846, endtime: 40944080, seqnum: 0, connid: 0 98 12:53:08,1113004 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54870 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40943846, endtime: 40944080, seqnum: 0, connid: 0 98 12:53:08,1113068 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54870 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40943847, endtime: 40944080, seqnum: 0, connid: 0 98 12:53:08,1113137 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54870 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40943847, endtime: 40944080, seqnum: 0, connid: 0 98 12:53:08,1113195 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54870 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40943848, endtime: 40944080, seqnum: 0, connid: 0 98 12:53:08,1113264 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54870 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40943849, endtime: 40944080, seqnum: 0, connid: 0 98 12:53:08,1113320 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54870 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40943849, endtime: 40944080, seqnum: 0, connid: 0 98 12:53:08,1113624 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54870 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40943850, endtime: 40944080, seqnum: 0, connid: 0 98 12:53:08,1113688 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54870 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40943850, endtime: 40944080, seqnum: 0, connid: 0 98 12:53:08,1113935 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54870 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40943851, endtime: 40944080, seqnum: 0, connid: 0 98 12:53:08,1114040 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54870 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40943851, endtime: 40944080, seqnum: 0, connid: 0 98 12:53:09,3012855 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54876 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40943818, endtime: 40944199, seqnum: 0, connid: 0 98 12:53:09,3013024 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54876 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40943819, endtime: 40944199, seqnum: 0, connid: 0 98 12:53:09,3013093 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54876 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40943819, endtime: 40944199, seqnum: 0, connid: 0 98 12:53:09,3013162 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54876 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40943820, endtime: 40944199, seqnum: 0, connid: 0 98 12:53:09,3013218 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54876 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40943820, endtime: 40944199, seqnum: 0, connid: 0 98 12:53:09,3013281 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54876 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40943821, endtime: 40944199, seqnum: 0, connid: 0 98 12:53:09,3013331 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54876 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40943822, endtime: 40944199, seqnum: 0, connid: 0 98 12:53:09,3013398 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54876 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40943822, endtime: 40944199, seqnum: 0, connid: 0 98 12:53:09,3013450 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54876 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40943823, endtime: 40944199, seqnum: 0, connid: 0 98 12:53:09,3014567 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54876 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40943823, endtime: 40944199, seqnum: 0, connid: 0 98 12:53:09,3014661 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54876 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40943824, endtime: 40944199, seqnum: 0, connid: 0 98 12:53:09,3014730 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54876 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40943825, endtime: 40944199, seqnum: 0, connid: 0 98 12:53:09,3014791 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54876 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40943825, endtime: 40944199, seqnum: 0, connid: 0 98 12:53:10,1463690 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54851 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40943896, endtime: 40944283, seqnum: 0, connid: 0 98 12:53:10,1463873 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54851 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40943896, endtime: 40944283, seqnum: 0, connid: 0 98 12:53:10,1463945 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54851 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40943897, endtime: 40944283, seqnum: 0, connid: 0 98 12:53:10,1464017 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54851 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40943898, endtime: 40944283, seqnum: 0, connid: 0 98 12:53:10,1464073 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54851 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40943898, endtime: 40944283, seqnum: 0, connid: 0 98 12:53:10,1464136 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54851 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40943899, endtime: 40944283, seqnum: 0, connid: 0 98 12:53:10,1464192 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54851 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40943899, endtime: 40944283, seqnum: 0, connid: 0 98 12:53:10,1464261 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54851 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40943900, endtime: 40944283, seqnum: 0, connid: 0 98 12:53:10,1464316 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54851 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40943900, endtime: 40944283, seqnum: 0, connid: 0 98 12:53:10,1464643 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54851 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40943901, endtime: 40944283, seqnum: 0, connid: 0 98 12:53:10,1464699 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54851 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40943902, endtime: 40944283, seqnum: 0, connid: 0 98 12:53:10,1464765 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54851 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40943902, endtime: 40944283, seqnum: 0, connid: 0 98 12:53:10,1464818 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54851 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40943903, endtime: 40944283, seqnum: 0, connid: 0 98 12:53:10,4758208 MCLauncher.exe 6080 TCP Disconnect WIN-0UOTFKKVN1S:54854 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 0, seqnum: 0, connid: 0 98 12:53:11,6147118 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54876 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40944199, endtime: 40944430, seqnum: 0, connid: 0 98 12:53:11,6147314 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54876 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40944199, endtime: 40944430, seqnum: 0, connid: 0 98 12:53:11,6147514 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54876 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40944200, endtime: 40944430, seqnum: 0, connid: 0 98 12:53:11,6147658 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54876 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40944201, endtime: 40944430, seqnum: 0, connid: 0 98 12:53:11,6147758 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54876 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40944201, endtime: 40944430, seqnum: 0, connid: 0 98 12:53:11,6147871 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54876 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40944202, endtime: 40944430, seqnum: 0, connid: 0 98 12:53:11,6147968 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54876 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40944202, endtime: 40944430, seqnum: 0, connid: 0 98 12:53:11,6148046 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54876 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40944203, endtime: 40944430, seqnum: 0, connid: 0 98 12:53:11,6148107 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54876 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40944203, endtime: 40944430, seqnum: 0, connid: 0 98 12:53:11,6148445 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54876 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40944204, endtime: 40944430, seqnum: 0, connid: 0 98 12:53:11,6148503 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54876 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40944205, endtime: 40944430, seqnum: 0, connid: 0 98 12:53:11,6148572 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54876 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40944205, endtime: 40944430, seqnum: 0, connid: 0 98 12:53:11,6148630 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54876 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40944206, endtime: 40944430, seqnum: 0, connid: 0 98 12:53:11,8194069 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54870 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40944080, endtime: 40944451, seqnum: 0, connid: 0 98 12:53:11,8194271 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54870 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40944080, endtime: 40944451, seqnum: 0, connid: 0 98 12:53:11,8194374 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54870 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40944081, endtime: 40944451, seqnum: 0, connid: 0 98 12:53:11,8194482 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54870 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40944082, endtime: 40944451, seqnum: 0, connid: 0 98 12:53:11,8194567 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54870 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40944082, endtime: 40944451, seqnum: 0, connid: 0 98 12:53:11,8194670 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54870 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40944083, endtime: 40944451, seqnum: 0, connid: 0 98 12:53:11,8194753 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54870 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40944083, endtime: 40944451, seqnum: 0, connid: 0 98 12:53:11,8194853 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54870 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40944084, endtime: 40944451, seqnum: 0, connid: 0 98 12:53:11,8194936 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54870 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40944085, endtime: 40944451, seqnum: 0, connid: 0 98 12:53:11,8196801 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54870 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40944085, endtime: 40944451, seqnum: 0, connid: 0 98 12:53:11,8196903 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54870 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40944086, endtime: 40944451, seqnum: 0, connid: 0 98 12:53:11,8197006 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54870 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40944086, endtime: 40944451, seqnum: 0, connid: 0 98 12:53:11,8197089 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54870 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40944087, endtime: 40944451, seqnum: 0, connid: 0 98 12:53:11,8343034 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54877 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40943802, endtime: 40944452, seqnum: 0, connid: 0 98 12:53:11,8343239 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54877 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40943803, endtime: 40944452, seqnum: 0, connid: 0 98 12:53:11,8343366 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54877 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40943803, endtime: 40944452, seqnum: 0, connid: 0 98 12:53:11,8343460 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54877 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40943804, endtime: 40944452, seqnum: 0, connid: 0 98 12:53:11,8343568 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54877 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40943804, endtime: 40944452, seqnum: 0, connid: 0 98 12:53:11,8343657 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54877 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40943805, endtime: 40944452, seqnum: 0, connid: 0 98 12:53:11,8343762 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54877 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40943806, endtime: 40944452, seqnum: 0, connid: 0 98 12:53:11,8343848 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54877 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40943806, endtime: 40944452, seqnum: 0, connid: 0 98 12:53:11,8343956 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54877 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40943807, endtime: 40944452, seqnum: 0, connid: 0 98 12:53:11,8344322 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54877 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40943807, endtime: 40944452, seqnum: 0, connid: 0 98 12:53:11,8344430 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54877 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40943808, endtime: 40944452, seqnum: 0, connid: 0 98 12:53:11,8344521 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54877 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40943809, endtime: 40944452, seqnum: 0, connid: 0 98 12:53:11,8346239 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54877 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40943809, endtime: 40944452, seqnum: 0, connid: 0 98 12:53:12,1357378 MCLauncher.exe 6080 TCP Disconnect WIN-0UOTFKKVN1S:54852 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 0, seqnum: 0, connid: 0 98 12:53:12,4371770 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54868 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40943957, endtime: 40944512, seqnum: 0, connid: 0 98 12:53:12,4396193 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54868 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40943958, endtime: 40944513, seqnum: 0, connid: 0 98 12:53:12,4396295 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54868 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40943959, endtime: 40944513, seqnum: 0, connid: 0 98 12:53:12,4398761 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54868 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40943959, endtime: 40944513, seqnum: 0, connid: 0 98 12:53:12,4399479 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54868 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40943960, endtime: 40944513, seqnum: 0, connid: 0 98 12:53:12,4399545 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54868 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40943960, endtime: 40944513, seqnum: 0, connid: 0 98 12:53:12,4399609 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54868 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40943961, endtime: 40944513, seqnum: 0, connid: 0 98 12:53:12,4399659 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54868 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40943962, endtime: 40944513, seqnum: 0, connid: 0 98 12:53:12,4399723 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54868 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40943962, endtime: 40944513, seqnum: 0, connid: 0 98 12:53:12,4401141 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54868 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40943963, endtime: 40944513, seqnum: 0, connid: 0 98 12:53:12,4401221 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54868 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40943963, endtime: 40944513, seqnum: 0, connid: 0 98 12:53:12,4401274 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54868 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40943964, endtime: 40944513, seqnum: 0, connid: 0 98 12:53:12,4401335 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54868 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40943965, endtime: 40944513, seqnum: 0, connid: 0 98 12:53:12,6623352 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54879 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40943784, endtime: 40944535, seqnum: 0, connid: 0 98 12:53:12,6623502 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54879 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40943785, endtime: 40944535, seqnum: 0, connid: 0 98 12:53:12,6623582 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54879 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40943785, endtime: 40944535, seqnum: 0, connid: 0 98 12:53:12,6623640 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54879 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40943786, endtime: 40944535, seqnum: 0, connid: 0 98 12:53:12,6623707 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54879 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40943787, endtime: 40944535, seqnum: 0, connid: 0 98 12:53:12,6623759 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54879 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40943787, endtime: 40944535, seqnum: 0, connid: 0 98 12:53:12,6623820 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54879 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40943788, endtime: 40944535, seqnum: 0, connid: 0 98 12:53:12,6623873 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54879 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40943788, endtime: 40944535, seqnum: 0, connid: 0 98 12:53:12,6623937 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54879 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40943789, endtime: 40944535, seqnum: 0, connid: 0 98 12:53:12,6624200 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54879 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40943790, endtime: 40944535, seqnum: 0, connid: 0 98 12:53:12,6624266 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54879 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40943790, endtime: 40944535, seqnum: 0, connid: 0 98 12:53:12,6625364 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54879 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40943791, endtime: 40944535, seqnum: 0, connid: 0 98 12:53:12,6625497 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54879 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40943791, endtime: 40944535, seqnum: 0, connid: 0 98 12:53:13,0950463 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54851 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40944283, endtime: 40944578, seqnum: 0, connid: 0 98 12:53:13,0950627 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54851 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40944284, endtime: 40944578, seqnum: 0, connid: 0 98 12:53:13,0950696 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54851 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40944284, endtime: 40944578, seqnum: 0, connid: 0 98 12:53:13,0950765 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54851 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40944285, endtime: 40944578, seqnum: 0, connid: 0 98 12:53:13,0950821 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54851 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40944286, endtime: 40944578, seqnum: 0, connid: 0 98 12:53:13,0950885 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54851 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40944286, endtime: 40944578, seqnum: 0, connid: 0 98 12:53:13,0950934 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54851 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40944287, endtime: 40944578, seqnum: 0, connid: 0 98 12:53:13,0950998 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54851 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40944288, endtime: 40944578, seqnum: 0, connid: 0 98 12:53:13,0951051 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54851 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40944288, endtime: 40944578, seqnum: 0, connid: 0 98 12:53:13,0951350 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54851 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40944289, endtime: 40944578, seqnum: 0, connid: 0 98 12:53:13,0951405 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54851 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40944289, endtime: 40944578, seqnum: 0, connid: 0 98 12:53:13,0951466 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54851 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40944290, endtime: 40944578, seqnum: 0, connid: 0 98 12:53:13,0952544 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54851 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40944291, endtime: 40944578, seqnum: 0, connid: 0 98 12:53:13,7251372 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54868 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40944512, endtime: 40944641, seqnum: 0, connid: 0 98 12:53:13,7251538 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54868 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40944513, endtime: 40944641, seqnum: 0, connid: 0 98 12:53:13,7251604 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54868 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40944514, endtime: 40944641, seqnum: 0, connid: 0 98 12:53:13,7251676 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54868 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40944514, endtime: 40944641, seqnum: 0, connid: 0 98 12:53:13,7251729 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54868 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40944515, endtime: 40944641, seqnum: 0, connid: 0 98 12:53:13,7251793 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54868 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40944515, endtime: 40944641, seqnum: 0, connid: 0 98 12:53:13,7251845 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54868 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40944516, endtime: 40944641, seqnum: 0, connid: 0 98 12:53:13,7251909 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54868 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40944516, endtime: 40944641, seqnum: 0, connid: 0 98 12:53:13,7251962 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54868 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40944517, endtime: 40944641, seqnum: 0, connid: 0 98 12:53:13,7252513 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54868 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40944518, endtime: 40944641, seqnum: 0, connid: 0 98 12:53:13,7252577 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54868 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40944518, endtime: 40944641, seqnum: 0, connid: 0 98 12:53:13,7253818 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54868 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40944519, endtime: 40944641, seqnum: 0, connid: 0 98 12:53:13,8210221 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54870 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40944451, endtime: 40944651, seqnum: 0, connid: 0 98 12:53:13,8210471 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54870 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40944451, endtime: 40944651, seqnum: 0, connid: 0 98 12:53:13,8210592 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54870 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40944452, endtime: 40944651, seqnum: 0, connid: 0 98 12:53:13,8210714 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54870 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40944452, endtime: 40944651, seqnum: 0, connid: 0 98 12:53:13,8210817 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54870 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40944453, endtime: 40944651, seqnum: 0, connid: 0 98 12:53:13,8210933 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54870 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40944453, endtime: 40944651, seqnum: 0, connid: 0 98 12:53:13,8211030 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54870 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40944454, endtime: 40944651, seqnum: 0, connid: 0 98 12:53:13,8211147 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54870 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40944455, endtime: 40944651, seqnum: 0, connid: 0 98 12:53:13,8211243 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54870 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40944455, endtime: 40944651, seqnum: 0, connid: 0 98 12:53:13,8211665 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54870 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40944456, endtime: 40944651, seqnum: 0, connid: 0 98 12:53:13,8211764 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54870 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40944456, endtime: 40944651, seqnum: 0, connid: 0 98 12:53:13,8211875 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54870 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40944457, endtime: 40944651, seqnum: 0, connid: 0 98 12:53:13,8211953 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54870 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40944457, endtime: 40944651, seqnum: 0, connid: 0 98 12:53:13,9028420 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54876 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40944430, endtime: 40944659, seqnum: 0, connid: 0 98 12:53:13,9028581 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54876 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40944431, endtime: 40944659, seqnum: 0, connid: 0 98 12:53:13,9028653 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54876 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40944431, endtime: 40944659, seqnum: 0, connid: 0 98 12:53:13,9028725 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54876 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40944432, endtime: 40944659, seqnum: 0, connid: 0 98 12:53:13,9028780 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54876 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40944432, endtime: 40944659, seqnum: 0, connid: 0 98 12:53:13,9028841 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54876 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40944433, endtime: 40944659, seqnum: 0, connid: 0 98 12:53:13,9028894 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54876 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40944434, endtime: 40944659, seqnum: 0, connid: 0 98 12:53:13,9028958 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54876 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40944434, endtime: 40944659, seqnum: 0, connid: 0 98 12:53:13,9029010 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54876 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40944435, endtime: 40944659, seqnum: 0, connid: 0 98 12:53:13,9029456 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54876 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40944435, endtime: 40944659, seqnum: 0, connid: 0 98 12:53:13,9029520 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54876 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40944436, endtime: 40944659, seqnum: 0, connid: 0 98 12:53:13,9029584 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54876 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40944437, endtime: 40944659, seqnum: 0, connid: 0 98 12:53:13,9029637 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54876 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40944437, endtime: 40944659, seqnum: 0, connid: 0 98 12:53:15,5455508 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54851 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40944578, endtime: 40944823, seqnum: 0, connid: 0 98 12:53:15,5455666 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54851 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40944579, endtime: 40944823, seqnum: 0, connid: 0 98 12:53:15,5455735 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54851 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40944579, endtime: 40944823, seqnum: 0, connid: 0 98 12:53:15,5455805 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54851 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40944580, endtime: 40944823, seqnum: 0, connid: 0 98 12:53:15,5455857 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54851 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40944580, endtime: 40944823, seqnum: 0, connid: 0 98 12:53:15,5455921 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54851 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40944581, endtime: 40944823, seqnum: 0, connid: 0 98 12:53:15,5455977 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54851 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40944582, endtime: 40944823, seqnum: 0, connid: 0 98 12:53:15,5456040 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54851 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40944582, endtime: 40944823, seqnum: 0, connid: 0 98 12:53:15,5456093 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54851 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40944583, endtime: 40944823, seqnum: 0, connid: 0 98 12:53:15,5456381 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54851 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40944583, endtime: 40944823, seqnum: 0, connid: 0 98 12:53:15,5456436 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54851 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40944584, endtime: 40944823, seqnum: 0, connid: 0 98 12:53:15,5457320 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54851 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40944585, endtime: 40944823, seqnum: 0, connid: 0 98 12:53:15,5457439 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54851 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40944585, endtime: 40944823, seqnum: 0, connid: 0 98 12:53:15,6188945 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54879 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40944535, endtime: 40944830, seqnum: 0, connid: 0 98 12:53:15,6189158 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54879 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40944535, endtime: 40944830, seqnum: 0, connid: 0 98 12:53:15,6189241 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54879 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40944536, endtime: 40944830, seqnum: 0, connid: 0 98 12:53:15,6189322 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54879 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40944537, endtime: 40944830, seqnum: 0, connid: 0 98 12:53:15,6189383 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54879 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40944537, endtime: 40944830, seqnum: 0, connid: 0 98 12:53:15,6189452 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54879 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40944538, endtime: 40944830, seqnum: 0, connid: 0 98 12:53:15,6189510 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54879 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40944538, endtime: 40944830, seqnum: 0, connid: 0 98 12:53:15,6189582 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54879 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40944539, endtime: 40944830, seqnum: 0, connid: 0 98 12:53:15,6189640 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54879 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40944540, endtime: 40944830, seqnum: 0, connid: 0 98 12:53:15,6190073 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54879 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40944540, endtime: 40944831, seqnum: 0, connid: 0 98 12:53:15,6190150 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54879 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40944541, endtime: 40944831, seqnum: 0, connid: 0 98 12:53:15,6190219 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54879 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40944541, endtime: 40944831, seqnum: 0, connid: 0 98 12:53:15,6190278 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54879 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40944542, endtime: 40944831, seqnum: 0, connid: 0 98 12:53:16,4078947 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54870 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40944651, endtime: 40944909, seqnum: 0, connid: 0 98 12:53:16,4079105 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54870 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40944651, endtime: 40944909, seqnum: 0, connid: 0 98 12:53:16,4079174 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54870 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40944652, endtime: 40944909, seqnum: 0, connid: 0 98 12:53:16,4079246 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54870 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40944652, endtime: 40944909, seqnum: 0, connid: 0 98 12:53:16,4079302 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54870 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40944653, endtime: 40944909, seqnum: 0, connid: 0 98 12:53:16,4079365 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54870 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40944654, endtime: 40944909, seqnum: 0, connid: 0 98 12:53:16,4079415 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54870 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40944654, endtime: 40944909, seqnum: 0, connid: 0 98 12:53:16,4079479 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54870 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40944655, endtime: 40944909, seqnum: 0, connid: 0 98 12:53:16,4079532 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54870 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40944655, endtime: 40944909, seqnum: 0, connid: 0 98 12:53:16,4079828 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54870 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40944656, endtime: 40944909, seqnum: 0, connid: 0 98 12:53:16,4079881 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54870 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40944656, endtime: 40944909, seqnum: 0, connid: 0 98 12:53:16,4079944 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54870 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40944657, endtime: 40944909, seqnum: 0, connid: 0 98 12:53:16,4079997 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54870 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40944658, endtime: 40944909, seqnum: 0, connid: 0 98 12:53:16,6373301 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54876 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40944659, endtime: 40944932, seqnum: 0, connid: 0 98 12:53:16,6373461 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54876 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40944659, endtime: 40944932, seqnum: 0, connid: 0 98 12:53:16,6373534 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54876 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40944660, endtime: 40944932, seqnum: 0, connid: 0 98 12:53:16,6373606 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54876 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40944661, endtime: 40944932, seqnum: 0, connid: 0 98 12:53:16,6373661 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54876 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40944661, endtime: 40944932, seqnum: 0, connid: 0 98 12:53:16,6373725 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54876 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40944662, endtime: 40944932, seqnum: 0, connid: 0 98 12:53:16,6373777 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54876 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40944663, endtime: 40944932, seqnum: 0, connid: 0 98 12:53:16,6373841 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54876 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40944663, endtime: 40944932, seqnum: 0, connid: 0 98 12:53:16,6373894 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54876 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40944664, endtime: 40944932, seqnum: 0, connid: 0 98 12:53:16,6374567 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54876 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40944664, endtime: 40944932, seqnum: 0, connid: 0 98 12:53:16,6375611 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54876 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40944665, endtime: 40944932, seqnum: 0, connid: 0 98 12:53:16,6375706 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54876 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40944665, endtime: 40944932, seqnum: 0, connid: 0 98 12:53:16,6376307 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54876 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40944666, endtime: 40944932, seqnum: 0, connid: 0 98 12:53:16,7758620 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54877 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40944452, endtime: 40944946, seqnum: 0, connid: 0 98 12:53:16,7758772 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54877 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40944453, endtime: 40944946, seqnum: 0, connid: 0 98 12:53:16,7758841 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54877 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40944453, endtime: 40944946, seqnum: 0, connid: 0 98 12:53:16,7758913 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54877 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40944454, endtime: 40944946, seqnum: 0, connid: 0 98 12:53:16,7758969 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54877 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40944454, endtime: 40944946, seqnum: 0, connid: 0 98 12:53:16,7759035 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54877 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40944455, endtime: 40944946, seqnum: 0, connid: 0 98 12:53:16,7759088 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54877 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40944455, endtime: 40944946, seqnum: 0, connid: 0 98 12:53:16,7759152 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54877 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40944456, endtime: 40944946, seqnum: 0, connid: 0 98 12:53:16,7759204 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54877 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40944457, endtime: 40944946, seqnum: 0, connid: 0 98 12:53:16,7759484 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54877 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40944457, endtime: 40944946, seqnum: 0, connid: 0 98 12:53:16,7759540 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54877 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40944458, endtime: 40944946, seqnum: 0, connid: 0 98 12:53:16,7759603 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54877 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40944458, endtime: 40944946, seqnum: 0, connid: 0 98 12:53:16,7759656 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54877 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40944459, endtime: 40944946, seqnum: 0, connid: 0 98 12:53:18,0632284 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54879 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40944831, endtime: 40945075, seqnum: 0, connid: 0 98 12:53:18,0632447 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54879 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40944831, endtime: 40945075, seqnum: 0, connid: 0 98 12:53:18,0632514 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54879 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40944832, endtime: 40945075, seqnum: 0, connid: 0 98 12:53:18,0632580 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54879 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40944832, endtime: 40945075, seqnum: 0, connid: 0 98 12:53:18,0632636 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54879 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40944833, endtime: 40945075, seqnum: 0, connid: 0 98 12:53:18,0632699 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54879 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40944833, endtime: 40945075, seqnum: 0, connid: 0 98 12:53:18,0632752 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54879 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40944834, endtime: 40945075, seqnum: 0, connid: 0 98 12:53:18,0632813 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54879 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40944835, endtime: 40945075, seqnum: 0, connid: 0 98 12:53:18,0632863 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54879 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40944835, endtime: 40945075, seqnum: 0, connid: 0 98 12:53:18,0633170 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54879 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40944836, endtime: 40945075, seqnum: 0, connid: 0 98 12:53:18,0633226 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54879 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40944836, endtime: 40945075, seqnum: 0, connid: 0 98 12:53:18,0634340 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54879 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40944837, endtime: 40945075, seqnum: 0, connid: 0 98 12:53:18,0634462 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54879 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40944838, endtime: 40945075, seqnum: 0, connid: 0 98 12:53:19,4347096 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54851 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40944823, endtime: 40945212, seqnum: 0, connid: 0 98 12:53:19,4347270 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54851 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40944824, endtime: 40945212, seqnum: 0, connid: 0 98 12:53:19,4347345 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54851 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40944824, endtime: 40945212, seqnum: 0, connid: 0 98 12:53:19,4347420 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54851 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40944825, endtime: 40945212, seqnum: 0, connid: 0 98 12:53:19,4347475 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54851 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40944825, endtime: 40945212, seqnum: 0, connid: 0 98 12:53:19,4347542 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54851 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40944826, endtime: 40945212, seqnum: 0, connid: 0 98 12:53:19,4347597 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54851 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40944827, endtime: 40945212, seqnum: 0, connid: 0 98 12:53:19,4347661 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54851 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40944827, endtime: 40945212, seqnum: 0, connid: 0 98 12:53:19,4347716 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54851 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40944828, endtime: 40945212, seqnum: 0, connid: 0 98 12:53:19,4347993 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54851 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40944828, endtime: 40945212, seqnum: 0, connid: 0 98 12:53:19,4348049 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54851 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40944829, endtime: 40945212, seqnum: 0, connid: 0 98 12:53:19,4348113 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54851 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40944829, endtime: 40945212, seqnum: 0, connid: 0 98 12:53:19,4348168 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54851 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40944830, endtime: 40945212, seqnum: 0, connid: 0 98 12:53:19,6838090 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54868 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40944519, endtime: 40945237, seqnum: 0, connid: 0 98 12:53:19,6838281 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54868 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40944641, endtime: 40945237, seqnum: 0, connid: 0 98 12:53:19,6838359 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54868 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40944642, endtime: 40945237, seqnum: 0, connid: 0 98 12:53:19,6838431 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54868 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40944642, endtime: 40945237, seqnum: 0, connid: 0 98 12:53:19,6838486 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54868 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40944643, endtime: 40945237, seqnum: 0, connid: 0 98 12:53:19,6838553 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54868 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40944643, endtime: 40945237, seqnum: 0, connid: 0 98 12:53:19,6838608 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54868 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40944644, endtime: 40945237, seqnum: 0, connid: 0 98 12:53:19,6838672 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54868 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40944645, endtime: 40945237, seqnum: 0, connid: 0 98 12:53:19,6838724 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54868 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40944645, endtime: 40945237, seqnum: 0, connid: 0 98 12:53:19,6839004 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54868 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40944646, endtime: 40945237, seqnum: 0, connid: 0 98 12:53:19,6839062 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54868 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40944646, endtime: 40945237, seqnum: 0, connid: 0 98 12:53:19,6839126 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54868 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40944647, endtime: 40945237, seqnum: 0, connid: 0 98 12:53:19,6839182 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54868 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40944647, endtime: 40945237, seqnum: 0, connid: 0 98 12:53:19,7257971 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54876 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40944932, endtime: 40945241, seqnum: 0, connid: 0 98 12:53:19,7258137 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54876 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40944933, endtime: 40945241, seqnum: 0, connid: 0 98 12:53:19,7258204 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54876 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40944934, endtime: 40945241, seqnum: 0, connid: 0 98 12:53:19,7258279 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54876 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40944934, endtime: 40945241, seqnum: 0, connid: 0 98 12:53:19,7258331 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54876 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40944935, endtime: 40945241, seqnum: 0, connid: 0 98 12:53:19,7258398 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54876 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40944935, endtime: 40945241, seqnum: 0, connid: 0 98 12:53:19,7258453 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54876 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40944936, endtime: 40945241, seqnum: 0, connid: 0 98 12:53:19,7258517 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54876 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40944936, endtime: 40945241, seqnum: 0, connid: 0 98 12:53:19,7258567 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54876 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40944937, endtime: 40945241, seqnum: 0, connid: 0 98 12:53:19,7259212 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54876 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40944938, endtime: 40945241, seqnum: 0, connid: 0 98 12:53:19,7259279 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54876 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40944938, endtime: 40945241, seqnum: 0, connid: 0 98 12:53:19,7259473 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54876 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40944939, endtime: 40945241, seqnum: 0, connid: 0 98 12:53:19,7260204 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54876 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40944939, endtime: 40945241, seqnum: 0, connid: 0 98 12:53:20,1415643 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54870 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40944909, endtime: 40945283, seqnum: 0, connid: 0 98 12:53:20,1415857 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54870 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40944910, endtime: 40945283, seqnum: 0, connid: 0 98 12:53:20,1415937 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54870 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40944911, endtime: 40945283, seqnum: 0, connid: 0 98 12:53:20,1416020 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54870 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40944911, endtime: 40945283, seqnum: 0, connid: 0 98 12:53:20,1416081 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54870 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40944912, endtime: 40945283, seqnum: 0, connid: 0 98 12:53:20,1416150 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54870 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40944912, endtime: 40945283, seqnum: 0, connid: 0 98 12:53:20,1416208 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54870 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40944913, endtime: 40945283, seqnum: 0, connid: 0 98 12:53:20,1416280 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54870 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40944914, endtime: 40945283, seqnum: 0, connid: 0 98 12:53:20,1416339 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54870 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40944914, endtime: 40945283, seqnum: 0, connid: 0 98 12:53:20,1417004 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54870 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40944915, endtime: 40945283, seqnum: 0, connid: 0 98 12:53:20,1417081 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54870 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40944915, endtime: 40945283, seqnum: 0, connid: 0 98 12:53:20,1417150 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54870 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40944916, endtime: 40945283, seqnum: 0, connid: 0 98 12:53:20,1417646 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54870 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40944917, endtime: 40945283, seqnum: 0, connid: 0 98 12:53:20,5026980 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54877 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40944946, endtime: 40945319, seqnum: 0, connid: 0 98 12:53:20,5027160 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54877 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40944947, endtime: 40945319, seqnum: 0, connid: 0 98 12:53:20,5027227 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54877 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40944947, endtime: 40945319, seqnum: 0, connid: 0 98 12:53:20,5027299 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54877 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40944948, endtime: 40945319, seqnum: 0, connid: 0 98 12:53:20,5027354 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54877 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40944949, endtime: 40945319, seqnum: 0, connid: 0 98 12:53:20,5027418 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54877 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40944949, endtime: 40945319, seqnum: 0, connid: 0 98 12:53:20,5027471 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54877 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40944950, endtime: 40945319, seqnum: 0, connid: 0 98 12:53:20,5027537 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54877 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40944950, endtime: 40945319, seqnum: 0, connid: 0 98 12:53:20,5027590 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54877 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40944951, endtime: 40945319, seqnum: 0, connid: 0 98 12:53:20,5027894 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54877 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40944952, endtime: 40945319, seqnum: 0, connid: 0 98 12:53:20,5027950 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54877 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40944952, endtime: 40945319, seqnum: 0, connid: 0 98 12:53:20,5028016 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54877 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40944953, endtime: 40945319, seqnum: 0, connid: 0 98 12:53:20,5028069 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54877 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40944953, endtime: 40945319, seqnum: 0, connid: 0 98 12:53:22,4707482 MCLauncher.exe 6080 TCP Connect WIN-0UOTFKKVN1S:54883 -> sheltex.company:8000 SUCCESS Length: 0, mss: 1460, sackopt: 0, tsopt: 0, wsopt: 0, rcvwin: 64240, rcvwinscale: 0, sndwinscale: 0, seqnum: 0, connid: 0 98 12:53:22,4741158 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54879 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40945075, endtime: 40945516, seqnum: 0, connid: 0 98 12:53:22,4741310 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54879 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40945076, endtime: 40945516, seqnum: 0, connid: 0 98 12:53:22,4741380 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54879 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40945076, endtime: 40945516, seqnum: 0, connid: 0 98 12:53:22,4741449 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54879 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40945077, endtime: 40945516, seqnum: 0, connid: 0 98 12:53:22,4741502 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54879 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40945077, endtime: 40945516, seqnum: 0, connid: 0 98 12:53:22,4741565 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54879 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40945078, endtime: 40945516, seqnum: 0, connid: 0 98 12:53:22,4741615 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54879 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40945078, endtime: 40945516, seqnum: 0, connid: 0 98 12:53:22,4741679 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54879 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40945079, endtime: 40945516, seqnum: 0, connid: 0 98 12:53:22,4741732 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54879 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40945080, endtime: 40945516, seqnum: 0, connid: 0 98 12:53:22,4742011 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54879 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40945080, endtime: 40945516, seqnum: 0, connid: 0 98 12:53:22,4742064 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54879 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40945081, endtime: 40945516, seqnum: 0, connid: 0 98 12:53:22,4742128 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54879 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40945081, endtime: 40945516, seqnum: 0, connid: 0 98 12:53:22,4743197 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54879 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40945082, endtime: 40945516, seqnum: 0, connid: 0 98 12:53:22,5756751 MCLauncher.exe 6080 TCP Disconnect WIN-0UOTFKKVN1S:54873 -> sheltex.company:8000 SUCCESS Length: 0, seqnum: 0, connid: 0 98 12:53:22,7410784 MCLauncher.exe 6080 TCP TCPCopy WIN-0UOTFKKVN1S:54883 -> sheltex.company:8000 SUCCESS Length: 6, seqnum: 0, connid: 0 98 12:53:22,7410926 MCLauncher.exe 6080 TCP Receive WIN-0UOTFKKVN1S:54883 -> sheltex.company:8000 SUCCESS Length: 6, seqnum: 0, connid: 0 98 12:53:22,7416525 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54883 -> sheltex.company:8000 SUCCESS Length: 9, startime: 40945543, endtime: 40945543, seqnum: 0, connid: 0 98 12:53:22,7417600 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54883 -> sheltex.company:8000 SUCCESS Length: 103, startime: 40945543, endtime: 40945543, seqnum: 0, connid: 0 98 12:53:23,0861897 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54876 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40945241, endtime: 40945577, seqnum: 0, connid: 0 98 12:53:23,0862066 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54876 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40945242, endtime: 40945577, seqnum: 0, connid: 0 98 12:53:23,0862135 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54876 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40945242, endtime: 40945577, seqnum: 0, connid: 0 98 12:53:23,0862204 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54876 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40945243, endtime: 40945577, seqnum: 0, connid: 0 98 12:53:23,0862260 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54876 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40945244, endtime: 40945577, seqnum: 0, connid: 0 98 12:53:23,0862324 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54876 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40945244, endtime: 40945577, seqnum: 0, connid: 0 98 12:53:23,0862376 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54876 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40945245, endtime: 40945577, seqnum: 0, connid: 0 98 12:53:23,0862440 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54876 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40945246, endtime: 40945577, seqnum: 0, connid: 0 98 12:53:23,0862493 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54876 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40945246, endtime: 40945577, seqnum: 0, connid: 0 98 12:53:23,0862797 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54876 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40945247, endtime: 40945577, seqnum: 0, connid: 0 98 12:53:23,0864019 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54876 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40945247, endtime: 40945577, seqnum: 0, connid: 0 98 12:53:23,0864099 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54876 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40945248, endtime: 40945577, seqnum: 0, connid: 0 98 12:53:23,0864149 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54876 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40945248, endtime: 40945577, seqnum: 0, connid: 0 98 12:53:23,4965260 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54868 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40945237, endtime: 40945618, seqnum: 0, connid: 0 98 12:53:23,4965468 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54868 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40945238, endtime: 40945618, seqnum: 0, connid: 0 98 12:53:23,4965543 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54868 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40945238, endtime: 40945618, seqnum: 0, connid: 0 98 12:53:23,4965618 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54868 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40945239, endtime: 40945618, seqnum: 0, connid: 0 98 12:53:23,4965679 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54868 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40945239, endtime: 40945618, seqnum: 0, connid: 0 98 12:53:23,4965748 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54868 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40945240, endtime: 40945618, seqnum: 0, connid: 0 98 12:53:23,4965803 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54868 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40945241, endtime: 40945618, seqnum: 0, connid: 0 98 12:53:23,4965870 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54868 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40945241, endtime: 40945618, seqnum: 0, connid: 0 98 12:53:23,4965925 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54868 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40945242, endtime: 40945618, seqnum: 0, connid: 0 98 12:53:23,4966881 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54868 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40945242, endtime: 40945618, seqnum: 0, connid: 0 98 12:53:23,4966970 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54868 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40945243, endtime: 40945618, seqnum: 0, connid: 0 98 12:53:23,4967039 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54868 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40945243, endtime: 40945618, seqnum: 0, connid: 0 98 12:53:23,4967097 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54868 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40945244, endtime: 40945618, seqnum: 0, connid: 0 98 12:53:24,2427995 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54851 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40945212, endtime: 40945693, seqnum: 0, connid: 0 98 12:53:24,2428197 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54851 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40945213, endtime: 40945693, seqnum: 0, connid: 0 98 12:53:24,2428278 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54851 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40945213, endtime: 40945693, seqnum: 0, connid: 0 98 12:53:24,2428355 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54851 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40945214, endtime: 40945693, seqnum: 0, connid: 0 98 12:53:24,2428416 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54851 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40945215, endtime: 40945693, seqnum: 0, connid: 0 98 12:53:24,2428488 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54851 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40945215, endtime: 40945693, seqnum: 0, connid: 0 98 12:53:24,2428546 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54851 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40945216, endtime: 40945693, seqnum: 0, connid: 0 98 12:53:24,2428613 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54851 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40945217, endtime: 40945693, seqnum: 0, connid: 0 98 12:53:24,2428668 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54851 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40945217, endtime: 40945693, seqnum: 0, connid: 0 98 12:53:24,2428970 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54851 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40945218, endtime: 40945693, seqnum: 0, connid: 0 98 12:53:24,2429028 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54851 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40945218, endtime: 40945693, seqnum: 0, connid: 0 98 12:53:24,2429098 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54851 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40945219, endtime: 40945693, seqnum: 0, connid: 0 98 12:53:24,2429153 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54851 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40945220, endtime: 40945693, seqnum: 0, connid: 0 98 12:53:25,3748109 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54877 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40945319, endtime: 40945806, seqnum: 0, connid: 0 98 12:53:25,3748308 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54877 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40945319, endtime: 40945806, seqnum: 0, connid: 0 98 12:53:25,3748389 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54877 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40945320, endtime: 40945806, seqnum: 0, connid: 0 98 12:53:25,3748469 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54877 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40945321, endtime: 40945806, seqnum: 0, connid: 0 98 12:53:25,3748533 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54877 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40945321, endtime: 40945806, seqnum: 0, connid: 0 98 12:53:25,3748605 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54877 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40945322, endtime: 40945806, seqnum: 0, connid: 0 98 12:53:25,3748666 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54877 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40945322, endtime: 40945806, seqnum: 0, connid: 0 98 12:53:25,3748741 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54877 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40945323, endtime: 40945806, seqnum: 0, connid: 0 98 12:53:25,3748799 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54877 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40945323, endtime: 40945806, seqnum: 0, connid: 0 98 12:53:25,3749109 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54877 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40945324, endtime: 40945806, seqnum: 0, connid: 0 98 12:53:25,3749170 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54877 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40945325, endtime: 40945806, seqnum: 0, connid: 0 98 12:53:25,3749239 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54877 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40945325, endtime: 40945806, seqnum: 0, connid: 0 98 12:53:25,3749297 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54877 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40945326, endtime: 40945806, seqnum: 0, connid: 0 98 12:53:25,6540720 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54876 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40945577, endtime: 40945834, seqnum: 0, connid: 0 98 12:53:25,6540886 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54876 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40945578, endtime: 40945834, seqnum: 0, connid: 0 98 12:53:25,6540956 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54876 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40945578, endtime: 40945834, seqnum: 0, connid: 0 98 12:53:25,6541028 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54876 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40945579, endtime: 40945834, seqnum: 0, connid: 0 98 12:53:25,6541083 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54876 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40945579, endtime: 40945834, seqnum: 0, connid: 0 98 12:53:25,6541150 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54876 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40945580, endtime: 40945834, seqnum: 0, connid: 0 98 12:53:25,6541200 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54876 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40945581, endtime: 40945834, seqnum: 0, connid: 0 98 12:53:25,6541263 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54876 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40945581, endtime: 40945834, seqnum: 0, connid: 0 98 12:53:25,6541316 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54876 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40945582, endtime: 40945834, seqnum: 0, connid: 0 98 12:53:25,6541604 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54876 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40945582, endtime: 40945834, seqnum: 0, connid: 0 98 12:53:25,6541659 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54876 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40945583, endtime: 40945834, seqnum: 0, connid: 0 98 12:53:25,6542504 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54876 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40945583, endtime: 40945834, seqnum: 0, connid: 0 98 12:53:25,6542621 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54876 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40945584, endtime: 40945834, seqnum: 0, connid: 0 98 12:53:26,1772644 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54870 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40945283, endtime: 40945886, seqnum: 0, connid: 0 98 12:53:26,1772796 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54870 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40945283, endtime: 40945886, seqnum: 0, connid: 0 98 12:53:26,1772877 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54870 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40945284, endtime: 40945886, seqnum: 0, connid: 0 98 12:53:26,1772935 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54870 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40945285, endtime: 40945886, seqnum: 0, connid: 0 98 12:53:26,1773001 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54870 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40945285, endtime: 40945886, seqnum: 0, connid: 0 98 12:53:26,1773054 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54870 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40945286, endtime: 40945886, seqnum: 0, connid: 0 98 12:53:26,1773115 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54870 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40945286, endtime: 40945886, seqnum: 0, connid: 0 98 12:53:26,1773167 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54870 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40945287, endtime: 40945886, seqnum: 0, connid: 0 98 12:53:26,1773231 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54870 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40945288, endtime: 40945886, seqnum: 0, connid: 0 98 12:53:26,1774007 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54870 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40945288, endtime: 40945886, seqnum: 0, connid: 0 98 12:53:26,1774129 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54870 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40945289, endtime: 40945886, seqnum: 0, connid: 0 98 12:53:26,1774206 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54870 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40945289, endtime: 40945886, seqnum: 0, connid: 0 98 12:53:26,3284206 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54879 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40945516, endtime: 40945901, seqnum: 0, connid: 0 98 12:53:26,3284378 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54879 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40945517, endtime: 40945901, seqnum: 0, connid: 0 98 12:53:26,3284447 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54879 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40945517, endtime: 40945901, seqnum: 0, connid: 0 98 12:53:26,3284517 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54879 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40945518, endtime: 40945901, seqnum: 0, connid: 0 98 12:53:26,3284572 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54879 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40945518, endtime: 40945901, seqnum: 0, connid: 0 98 12:53:26,3284638 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54879 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40945519, endtime: 40945901, seqnum: 0, connid: 0 98 12:53:26,3284691 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54879 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40945520, endtime: 40945901, seqnum: 0, connid: 0 98 12:53:26,3284755 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54879 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40945520, endtime: 40945901, seqnum: 0, connid: 0 98 12:53:26,3284807 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54879 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40945521, endtime: 40945901, seqnum: 0, connid: 0 98 12:53:26,3285093 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54879 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40945521, endtime: 40945901, seqnum: 0, connid: 0 98 12:53:26,3285145 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54879 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40945522, endtime: 40945901, seqnum: 0, connid: 0 98 12:53:26,3285209 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54879 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40945522, endtime: 40945901, seqnum: 0, connid: 0 98 12:53:26,3286193 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54879 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40945523, endtime: 40945901, seqnum: 0, connid: 0 98 12:53:26,4272019 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54868 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40945618, endtime: 40945911, seqnum: 0, connid: 0 98 12:53:26,4272224 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54868 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40945619, endtime: 40945911, seqnum: 0, connid: 0 98 12:53:26,4272446 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54868 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40945619, endtime: 40945911, seqnum: 0, connid: 0 98 12:53:26,4272568 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54868 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40945620, endtime: 40945911, seqnum: 0, connid: 0 98 12:53:26,4272656 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54868 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40945621, endtime: 40945911, seqnum: 0, connid: 0 98 12:53:26,4272767 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54868 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40945621, endtime: 40945911, seqnum: 0, connid: 0 98 12:53:26,4272856 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54868 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40945622, endtime: 40945911, seqnum: 0, connid: 0 98 12:53:26,4272967 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54868 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40945622, endtime: 40945911, seqnum: 0, connid: 0 98 12:53:26,4273025 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54868 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40945623, endtime: 40945911, seqnum: 0, connid: 0 98 12:53:26,4273346 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54868 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40945623, endtime: 40945911, seqnum: 0, connid: 0 98 12:53:26,4273402 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54868 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40945624, endtime: 40945911, seqnum: 0, connid: 0 98 12:53:26,4273465 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54868 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40945625, endtime: 40945911, seqnum: 0, connid: 0 98 12:53:26,4273518 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54868 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40945625, endtime: 40945911, seqnum: 0, connid: 0 98 12:53:28,5273178 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54879 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40945901, endtime: 40946121, seqnum: 0, connid: 0 98 12:53:28,5273355 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54879 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40945902, endtime: 40946121, seqnum: 0, connid: 0 98 12:53:28,5273427 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54879 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40945903, endtime: 40946121, seqnum: 0, connid: 0 98 12:53:28,5273502 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54879 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40945903, endtime: 40946121, seqnum: 0, connid: 0 98 12:53:28,5273557 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54879 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40945904, endtime: 40946121, seqnum: 0, connid: 0 98 12:53:28,5273621 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54879 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40945904, endtime: 40946121, seqnum: 0, connid: 0 98 12:53:28,5273676 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54879 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40945905, endtime: 40946121, seqnum: 0, connid: 0 98 12:53:28,5273740 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54879 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40945906, endtime: 40946121, seqnum: 0, connid: 0 98 12:53:28,5273793 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54879 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40945907, endtime: 40946121, seqnum: 0, connid: 0 98 12:53:28,5274092 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54879 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40945907, endtime: 40946121, seqnum: 0, connid: 0 98 12:53:28,5274147 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54879 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40945908, endtime: 40946121, seqnum: 0, connid: 0 98 12:53:28,5274211 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54879 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40945908, endtime: 40946121, seqnum: 0, connid: 0 98 12:53:28,5274264 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54879 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40945909, endtime: 40946121, seqnum: 0, connid: 0 98 12:53:30,3227382 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54876 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40945834, endtime: 40946301, seqnum: 0, connid: 0 98 12:53:30,3227551 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54876 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40945835, endtime: 40946301, seqnum: 0, connid: 0 98 12:53:30,3227626 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54876 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40945835, endtime: 40946301, seqnum: 0, connid: 0 98 12:53:30,3227698 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54876 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40945836, endtime: 40946301, seqnum: 0, connid: 0 98 12:53:30,3227753 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54876 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40945836, endtime: 40946301, seqnum: 0, connid: 0 98 12:53:30,3227820 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54876 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40945837, endtime: 40946301, seqnum: 0, connid: 0 98 12:53:30,3227872 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54876 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40945838, endtime: 40946301, seqnum: 0, connid: 0 98 12:53:30,3227939 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54876 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40945838, endtime: 40946301, seqnum: 0, connid: 0 98 12:53:30,3227992 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54876 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40945839, endtime: 40946301, seqnum: 0, connid: 0 98 12:53:30,3228687 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54876 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40945839, endtime: 40946301, seqnum: 0, connid: 0 98 12:53:30,3228759 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54876 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40945840, endtime: 40946301, seqnum: 0, connid: 0 98 12:53:30,3228825 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54876 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40945841, endtime: 40946301, seqnum: 0, connid: 0 98 12:53:30,3229878 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54876 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40945841, endtime: 40946301, seqnum: 0, connid: 0 98 12:53:30,3686273 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54851 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40945693, endtime: 40946305, seqnum: 0, connid: 0 98 12:53:30,3686442 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54851 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40945694, endtime: 40946305, seqnum: 0, connid: 0 98 12:53:30,3686528 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54851 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40945694, endtime: 40946305, seqnum: 0, connid: 0 98 12:53:30,3686586 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54851 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40945695, endtime: 40946305, seqnum: 0, connid: 0 98 12:53:30,3686652 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54851 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40945695, endtime: 40946305, seqnum: 0, connid: 0 98 12:53:30,3686705 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54851 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40945696, endtime: 40946305, seqnum: 0, connid: 0 98 12:53:30,3686771 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54851 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40945696, endtime: 40946305, seqnum: 0, connid: 0 98 12:53:30,3686824 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54851 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40945697, endtime: 40946305, seqnum: 0, connid: 0 98 12:53:30,3686888 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54851 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40945698, endtime: 40946305, seqnum: 0, connid: 0 98 12:53:30,3687157 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54851 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40945698, endtime: 40946305, seqnum: 0, connid: 0 98 12:53:30,3687226 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54851 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40945699, endtime: 40946305, seqnum: 0, connid: 0 98 12:53:30,3687278 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54851 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40945699, endtime: 40946305, seqnum: 0, connid: 0 98 12:53:30,3687486 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54851 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40945700, endtime: 40946305, seqnum: 0, connid: 0 98 12:53:30,9000194 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54879 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40946121, endtime: 40946359, seqnum: 0, connid: 0 98 12:53:30,9000399 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54879 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40946122, endtime: 40946359, seqnum: 0, connid: 0 98 12:53:30,9000479 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54879 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40946123, endtime: 40946359, seqnum: 0, connid: 0 98 12:53:30,9000560 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54879 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40946123, endtime: 40946359, seqnum: 0, connid: 0 98 12:53:30,9000618 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54879 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40946124, endtime: 40946359, seqnum: 0, connid: 0 98 12:53:30,9000687 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54879 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40946124, endtime: 40946359, seqnum: 0, connid: 0 98 12:53:30,9000742 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54879 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40946125, endtime: 40946359, seqnum: 0, connid: 0 98 12:53:30,9000812 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54879 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40946126, endtime: 40946359, seqnum: 0, connid: 0 98 12:53:30,9000867 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54879 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40946126, endtime: 40946359, seqnum: 0, connid: 0 98 12:53:30,9001169 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54879 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40946127, endtime: 40946359, seqnum: 0, connid: 0 98 12:53:30,9001230 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54879 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40946127, endtime: 40946359, seqnum: 0, connid: 0 98 12:53:30,9001297 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54879 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40946128, endtime: 40946359, seqnum: 0, connid: 0 98 12:53:30,9001355 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54879 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40946129, endtime: 40946359, seqnum: 0, connid: 0 98 12:53:30,9843417 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54877 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40945806, endtime: 40946367, seqnum: 0, connid: 0 98 12:53:30,9843572 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54877 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40945807, endtime: 40946367, seqnum: 0, connid: 0 98 12:53:30,9843655 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54877 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40945807, endtime: 40946367, seqnum: 0, connid: 0 98 12:53:30,9843713 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54877 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40945808, endtime: 40946367, seqnum: 0, connid: 0 98 12:53:30,9843780 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54877 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40945808, endtime: 40946367, seqnum: 0, connid: 0 98 12:53:30,9843835 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54877 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40945809, endtime: 40946367, seqnum: 0, connid: 0 98 12:53:30,9843899 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54877 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40945809, endtime: 40946367, seqnum: 0, connid: 0 98 12:53:30,9843954 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54877 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40945810, endtime: 40946367, seqnum: 0, connid: 0 98 12:53:30,9844018 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54877 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40945811, endtime: 40946367, seqnum: 0, connid: 0 98 12:53:30,9844317 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54877 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40945811, endtime: 40946367, seqnum: 0, connid: 0 98 12:53:30,9844386 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54877 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40945812, endtime: 40946367, seqnum: 0, connid: 0 98 12:53:30,9844439 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54877 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40945813, endtime: 40946367, seqnum: 0, connid: 0 98 12:53:30,9844503 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54877 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40945813, endtime: 40946367, seqnum: 0, connid: 0 98 12:53:31,5685714 MCLauncher.exe 6080 TCP Disconnect WIN-0UOTFKKVN1S:54868 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 0, seqnum: 0, connid: 0 98 12:53:32,6045374 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54879 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40946359, endtime: 40946529, seqnum: 0, connid: 0 98 12:53:32,6045546 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54879 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40946359, endtime: 40946529, seqnum: 0, connid: 0 98 12:53:32,6045618 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54879 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40946360, endtime: 40946529, seqnum: 0, connid: 0 98 12:53:32,6045693 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54879 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40946360, endtime: 40946529, seqnum: 0, connid: 0 98 12:53:32,6045748 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54879 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40946361, endtime: 40946529, seqnum: 0, connid: 0 98 12:53:32,6045821 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54879 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40946362, endtime: 40946529, seqnum: 0, connid: 0 98 12:53:32,6045873 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54879 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40946362, endtime: 40946529, seqnum: 0, connid: 0 98 12:53:32,6045940 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54879 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40946363, endtime: 40946529, seqnum: 0, connid: 0 98 12:53:32,6045992 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54879 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40946363, endtime: 40946529, seqnum: 0, connid: 0 98 12:53:32,6046303 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54879 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40946364, endtime: 40946529, seqnum: 0, connid: 0 98 12:53:32,6046361 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54879 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40946364, endtime: 40946529, seqnum: 0, connid: 0 98 12:53:32,6046425 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54879 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40946365, endtime: 40946529, seqnum: 0, connid: 0 98 12:53:32,6046480 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54879 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40946366, endtime: 40946529, seqnum: 0, connid: 0 98 12:53:32,6758749 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54870 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40945290, endtime: 40946536, seqnum: 0, connid: 0 98 12:53:32,6758927 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54870 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40945886, endtime: 40946536, seqnum: 0, connid: 0 98 12:53:32,6759013 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54870 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40945887, endtime: 40946536, seqnum: 0, connid: 0 98 12:53:32,6759074 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54870 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40945887, endtime: 40946536, seqnum: 0, connid: 0 98 12:53:32,6759143 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54870 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40945888, endtime: 40946536, seqnum: 0, connid: 0 98 12:53:32,6759198 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54870 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40945889, endtime: 40946536, seqnum: 0, connid: 0 98 12:53:32,6759265 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54870 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40945889, endtime: 40946536, seqnum: 0, connid: 0 98 12:53:32,6759320 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54870 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40945890, endtime: 40946536, seqnum: 0, connid: 0 98 12:53:32,6759384 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54870 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40945890, endtime: 40946536, seqnum: 0, connid: 0 98 12:53:32,6759437 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54870 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40945891, endtime: 40946536, seqnum: 0, connid: 0 98 12:53:32,6759844 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54870 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40945892, endtime: 40946536, seqnum: 0, connid: 0 98 12:53:32,6759910 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54870 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40945892, endtime: 40946536, seqnum: 0, connid: 0 98 12:53:32,6759977 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54870 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40945893, endtime: 40946536, seqnum: 0, connid: 0 98 12:53:32,6763570 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54870 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40946536, endtime: 40946536, seqnum: 0, connid: 0 98 12:53:34,0833036 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54879 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40946529, endtime: 40946677, seqnum: 0, connid: 0 98 12:53:34,0833208 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54879 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40946530, endtime: 40946677, seqnum: 0, connid: 0 98 12:53:34,0833283 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54879 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40946530, endtime: 40946677, seqnum: 0, connid: 0 98 12:53:34,0833355 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54879 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40946531, endtime: 40946677, seqnum: 0, connid: 0 98 12:53:34,0833410 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54879 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40946531, endtime: 40946677, seqnum: 0, connid: 0 98 12:53:34,0833476 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54879 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40946532, endtime: 40946677, seqnum: 0, connid: 0 98 12:53:34,0833529 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54879 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40946533, endtime: 40946677, seqnum: 0, connid: 0 98 12:53:34,0833596 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54879 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40946533, endtime: 40946677, seqnum: 0, connid: 0 98 12:53:34,0833648 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54879 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40946534, endtime: 40946677, seqnum: 0, connid: 0 98 12:53:34,0834075 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54879 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40946534, endtime: 40946677, seqnum: 0, connid: 0 98 12:53:34,0834141 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54879 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40946535, endtime: 40946677, seqnum: 0, connid: 0 98 12:53:34,0834211 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54879 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40946535, endtime: 40946677, seqnum: 0, connid: 0 98 12:53:34,0834266 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54879 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40946536, endtime: 40946677, seqnum: 0, connid: 0 98 12:53:34,5693067 MCLauncher.exe 6080 TCP Reconnect WIN-0UOTFKKVN1S:54888 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 0, seqnum: 0, connid: 0 98 12:53:34,6492111 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54877 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40946367, endtime: 40946734, seqnum: 0, connid: 0 98 12:53:34,6492277 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54877 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40946368, endtime: 40946734, seqnum: 0, connid: 0 98 12:53:34,6492349 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54877 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40946368, endtime: 40946734, seqnum: 0, connid: 0 98 12:53:34,6492421 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54877 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40946369, endtime: 40946734, seqnum: 0, connid: 0 98 12:53:34,6492474 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54877 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40946369, endtime: 40946734, seqnum: 0, connid: 0 98 12:53:34,6492537 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54877 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40946370, endtime: 40946734, seqnum: 0, connid: 0 98 12:53:34,6492590 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54877 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40946371, endtime: 40946734, seqnum: 0, connid: 0 98 12:53:34,6492654 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54877 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40946371, endtime: 40946734, seqnum: 0, connid: 0 98 12:53:34,6492706 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54877 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40946372, endtime: 40946734, seqnum: 0, connid: 0 98 12:53:34,6493144 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54877 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40946372, endtime: 40946734, seqnum: 0, connid: 0 98 12:53:34,6493208 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54877 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40946373, endtime: 40946734, seqnum: 0, connid: 0 98 12:53:34,6494194 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54877 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40946373, endtime: 40946734, seqnum: 0, connid: 0 98 12:53:34,6494313 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54877 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40946374, endtime: 40946734, seqnum: 0, connid: 0 98 12:53:35,4474655 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54870 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40946537, endtime: 40946813, seqnum: 0, connid: 0 98 12:53:35,4474838 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54870 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40946537, endtime: 40946813, seqnum: 0, connid: 0 98 12:53:35,4474918 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54870 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40946538, endtime: 40946813, seqnum: 0, connid: 0 98 12:53:35,4475392 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54870 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40946539, endtime: 40946813, seqnum: 0, connid: 0 98 12:53:35,4476268 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54870 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40946539, endtime: 40946813, seqnum: 0, connid: 0 98 12:53:35,4476353 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54870 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40946540, endtime: 40946813, seqnum: 0, connid: 0 98 12:53:35,4476423 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54870 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40946540, endtime: 40946813, seqnum: 0, connid: 0 98 12:53:35,4476506 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54870 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40946541, endtime: 40946813, seqnum: 0, connid: 0 98 12:53:35,4476575 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54870 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40946541, endtime: 40946813, seqnum: 0, connid: 0 98 12:53:35,4477320 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54870 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40946542, endtime: 40946813, seqnum: 0, connid: 0 98 12:53:35,4477395 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54870 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40946543, endtime: 40946813, seqnum: 0, connid: 0 98 12:53:35,4477464 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54870 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40946543, endtime: 40946813, seqnum: 0, connid: 0 98 12:53:36,4327549 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54851 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40946306, endtime: 40946912, seqnum: 0, connid: 0 98 12:53:36,4327752 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54851 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40946307, endtime: 40946912, seqnum: 0, connid: 0 98 12:53:36,4327843 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54851 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40946307, endtime: 40946912, seqnum: 0, connid: 0 98 12:53:36,4327910 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54851 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40946308, endtime: 40946912, seqnum: 0, connid: 0 98 12:53:36,4327982 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54851 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40946308, endtime: 40946912, seqnum: 0, connid: 0 98 12:53:36,4328040 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54851 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40946309, endtime: 40946912, seqnum: 0, connid: 0 98 12:53:36,4328109 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54851 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40946310, endtime: 40946912, seqnum: 0, connid: 0 98 12:53:36,4328164 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54851 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40946310, endtime: 40946912, seqnum: 0, connid: 0 98 12:53:36,4328234 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54851 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40946311, endtime: 40946912, seqnum: 0, connid: 0 98 12:53:36,4328516 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54851 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40946311, endtime: 40946912, seqnum: 0, connid: 0 98 12:53:36,4328691 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54851 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40946312, endtime: 40946912, seqnum: 0, connid: 0 98 12:53:36,4328766 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54851 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40946312, endtime: 40946912, seqnum: 0, connid: 0 98 12:53:36,4328838 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54851 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40946313, endtime: 40946912, seqnum: 0, connid: 0 98 12:53:36,6474775 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54876 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40946301, endtime: 40946933, seqnum: 0, connid: 0 98 12:53:36,6474978 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54876 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40946302, endtime: 40946933, seqnum: 0, connid: 0 98 12:53:36,6475072 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54876 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40946302, endtime: 40946933, seqnum: 0, connid: 0 98 12:53:36,6475141 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54876 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40946303, endtime: 40946933, seqnum: 0, connid: 0 98 12:53:36,6475219 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54876 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40946303, endtime: 40946933, seqnum: 0, connid: 0 98 12:53:36,6475280 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54876 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40946304, endtime: 40946933, seqnum: 0, connid: 0 98 12:53:36,6475670 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54876 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40946305, endtime: 40946933, seqnum: 0, connid: 0 98 12:53:36,6476335 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54876 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40946306, endtime: 40946933, seqnum: 0, connid: 0 98 12:53:36,6476421 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54876 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40946307, endtime: 40946933, seqnum: 0, connid: 0 98 12:53:36,6477402 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54876 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40946307, endtime: 40946933, seqnum: 0, connid: 0 98 12:53:36,6477493 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54876 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40946308, endtime: 40946933, seqnum: 0, connid: 0 98 12:53:36,6477554 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54876 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40946308, endtime: 40946933, seqnum: 0, connid: 0 98 12:53:37,8040627 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54879 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40946677, endtime: 40947049, seqnum: 0, connid: 0 98 12:53:37,8040790 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54879 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40946678, endtime: 40947049, seqnum: 0, connid: 0 98 12:53:37,8040862 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54879 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40946678, endtime: 40947049, seqnum: 0, connid: 0 98 12:53:37,8040932 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54879 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40946679, endtime: 40947049, seqnum: 0, connid: 0 98 12:53:37,8040984 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54879 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40946679, endtime: 40947049, seqnum: 0, connid: 0 98 12:53:37,8041051 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54879 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40946680, endtime: 40947049, seqnum: 0, connid: 0 98 12:53:37,8041103 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54879 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40946681, endtime: 40947049, seqnum: 0, connid: 0 98 12:53:37,8041170 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54879 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40946681, endtime: 40947049, seqnum: 0, connid: 0 98 12:53:37,8041223 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54879 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40946682, endtime: 40947049, seqnum: 0, connid: 0 98 12:53:37,8041538 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54879 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40946682, endtime: 40947049, seqnum: 0, connid: 0 98 12:53:37,8041594 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54879 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40946683, endtime: 40947049, seqnum: 0, connid: 0 98 12:53:37,8041655 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54879 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40946684, endtime: 40947049, seqnum: 0, connid: 0 98 12:53:37,8042901 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54879 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40946684, endtime: 40947049, seqnum: 0, connid: 0 98 12:53:40,1209062 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54879 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40947049, endtime: 40947281, seqnum: 0, connid: 0 98 12:53:40,1209259 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54879 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40947050, endtime: 40947281, seqnum: 0, connid: 0 98 12:53:40,1209367 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54879 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40947050, endtime: 40947281, seqnum: 0, connid: 0 98 12:53:40,1209475 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54879 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40947051, endtime: 40947281, seqnum: 0, connid: 0 98 12:53:40,1209563 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54879 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40947051, endtime: 40947281, seqnum: 0, connid: 0 98 12:53:40,1209669 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54879 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40947052, endtime: 40947281, seqnum: 0, connid: 0 98 12:53:40,1209757 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54879 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40947053, endtime: 40947281, seqnum: 0, connid: 0 98 12:53:40,1209857 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54879 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40947053, endtime: 40947281, seqnum: 0, connid: 0 98 12:53:40,1209943 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54879 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40947054, endtime: 40947281, seqnum: 0, connid: 0 98 12:53:40,1210320 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54879 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40947054, endtime: 40947281, seqnum: 0, connid: 0 98 12:53:40,1210375 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54879 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40947055, endtime: 40947281, seqnum: 0, connid: 0 98 12:53:40,1210439 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54879 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40947056, endtime: 40947281, seqnum: 0, connid: 0 98 12:53:40,1210492 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54879 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40947056, endtime: 40947281, seqnum: 0, connid: 0 98 12:53:40,4319764 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54876 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40946309, endtime: 40947312, seqnum: 0, connid: 0 98 12:53:40,4319947 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54876 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40946933, endtime: 40947312, seqnum: 0, connid: 0 98 12:53:40,4320038 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54876 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40946934, endtime: 40947312, seqnum: 0, connid: 0 98 12:53:40,4320108 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54876 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40946935, endtime: 40947312, seqnum: 0, connid: 0 98 12:53:40,4320180 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54876 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40946935, endtime: 40947312, seqnum: 0, connid: 0 98 12:53:40,4320238 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54876 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40946936, endtime: 40947312, seqnum: 0, connid: 0 98 12:53:40,4320310 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54876 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40946936, endtime: 40947312, seqnum: 0, connid: 0 98 12:53:40,4320365 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54876 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40946937, endtime: 40947312, seqnum: 0, connid: 0 98 12:53:40,4320435 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54876 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40946938, endtime: 40947312, seqnum: 0, connid: 0 98 12:53:40,4320493 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54876 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40946938, endtime: 40947312, seqnum: 0, connid: 0 98 12:53:40,4320784 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54876 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40946939, endtime: 40947312, seqnum: 0, connid: 0 98 12:53:40,4320845 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54876 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40946939, endtime: 40947312, seqnum: 0, connid: 0 98 12:53:40,4320914 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54876 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40946940, endtime: 40947312, seqnum: 0, connid: 0 98 12:53:40,4332287 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54876 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40947312, endtime: 40947312, seqnum: 0, connid: 0 98 12:53:40,5700121 MCLauncher.exe 6080 TCP Reconnect WIN-0UOTFKKVN1S:54888 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 0, seqnum: 0, connid: 0 98 12:53:40,6583595 MCLauncher.exe 6080 TCP Connect WIN-0UOTFKKVN1S:54888 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 0, mss: 1460, sackopt: 0, tsopt: 0, wsopt: 0, rcvwin: 64240, rcvwinscale: 0, sndwinscale: 0, seqnum: 0, connid: 0 98 12:53:40,6591671 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54888 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40947334, endtime: 40947335, seqnum: 0, connid: 0 98 12:53:40,6649138 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54888 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40947335, endtime: 40947335, seqnum: 0, connid: 0 98 12:53:40,6706846 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54888 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40947336, endtime: 40947336, seqnum: 0, connid: 0 98 12:53:40,6766729 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54888 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40947336, endtime: 40947336, seqnum: 0, connid: 0 98 12:53:40,6832604 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54888 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40947337, endtime: 40947337, seqnum: 0, connid: 0 98 12:53:40,6892501 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54888 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40947338, endtime: 40947338, seqnum: 0, connid: 0 98 12:53:40,6951996 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54888 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40947338, endtime: 40947338, seqnum: 0, connid: 0 98 12:53:40,7006562 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54888 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40947339, endtime: 40947339, seqnum: 0, connid: 0 98 12:53:40,7059763 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54888 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40947339, endtime: 40947339, seqnum: 0, connid: 0 98 12:53:40,7116878 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54888 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40947340, endtime: 40947340, seqnum: 0, connid: 0 98 12:53:40,7176090 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54888 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40947340, endtime: 40947340, seqnum: 0, connid: 0 98 12:53:40,7233937 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54888 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40947341, endtime: 40947341, seqnum: 0, connid: 0 98 12:53:40,7292476 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54888 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40947342, endtime: 40947342, seqnum: 0, connid: 0 98 12:53:40,7352741 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54888 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40947342, endtime: 40947342, seqnum: 0, connid: 0 98 12:53:40,7410718 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54888 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40947343, endtime: 40947343, seqnum: 0, connid: 0 98 12:53:40,7471196 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54888 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40947343, endtime: 40947343, seqnum: 0, connid: 0 98 12:53:40,7527480 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54888 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40947344, endtime: 40947344, seqnum: 0, connid: 0 98 12:53:40,7585781 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54888 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40947344, endtime: 40947344, seqnum: 0, connid: 0 98 12:53:40,7648279 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54888 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40947345, endtime: 40947345, seqnum: 0, connid: 0 98 12:53:40,7703455 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54888 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40947346, endtime: 40947346, seqnum: 0, connid: 0 98 12:53:40,7894289 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54888 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40947348, endtime: 40947348, seqnum: 0, connid: 0 98 12:53:40,7971972 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54888 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40947348, endtime: 40947348, seqnum: 0, connid: 0 98 12:53:40,8097246 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54888 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40947350, endtime: 40947350, seqnum: 0, connid: 0 98 12:53:40,8172115 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54888 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40947350, endtime: 40947350, seqnum: 0, connid: 0 98 12:53:40,8230219 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54888 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40947351, endtime: 40947351, seqnum: 0, connid: 0 98 12:53:41,3803675 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54877 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40946734, endtime: 40947407, seqnum: 0, connid: 0 98 12:53:41,3803844 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54877 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40946734, endtime: 40947407, seqnum: 0, connid: 0 98 12:53:41,3803927 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54877 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40946735, endtime: 40947407, seqnum: 0, connid: 0 98 12:53:41,3803988 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54877 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40946736, endtime: 40947407, seqnum: 0, connid: 0 98 12:53:41,3804060 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54877 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40946736, endtime: 40947407, seqnum: 0, connid: 0 98 12:53:41,3804118 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54877 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40946737, endtime: 40947407, seqnum: 0, connid: 0 98 12:53:41,3804185 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54877 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40946737, endtime: 40947407, seqnum: 0, connid: 0 98 12:53:41,3804240 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54877 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40946738, endtime: 40947407, seqnum: 0, connid: 0 98 12:53:41,3804307 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54877 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40946739, endtime: 40947407, seqnum: 0, connid: 0 98 12:53:41,3804601 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54877 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40946739, endtime: 40947407, seqnum: 0, connid: 0 98 12:53:41,3804673 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54877 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40946740, endtime: 40947407, seqnum: 0, connid: 0 98 12:53:41,3804725 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54877 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40946740, endtime: 40947407, seqnum: 0, connid: 0 98 12:53:41,3804922 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54877 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40946741, endtime: 40947407, seqnum: 0, connid: 0 98 12:53:42,0110050 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54870 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40946544, endtime: 40947470, seqnum: 0, connid: 0 98 12:53:42,0110260 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54870 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40946814, endtime: 40947470, seqnum: 0, connid: 0 98 12:53:42,0110341 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54870 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40946814, endtime: 40947470, seqnum: 0, connid: 0 98 12:53:42,0110421 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54870 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40946815, endtime: 40947470, seqnum: 0, connid: 0 98 12:53:42,0110482 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54870 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40946815, endtime: 40947470, seqnum: 0, connid: 0 98 12:53:42,0110549 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54870 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40946816, endtime: 40947470, seqnum: 0, connid: 0 98 12:53:42,0110607 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54870 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40946816, endtime: 40947470, seqnum: 0, connid: 0 98 12:53:42,0110676 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54870 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40946817, endtime: 40947470, seqnum: 0, connid: 0 98 12:53:42,0110731 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54870 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40946818, endtime: 40947470, seqnum: 0, connid: 0 98 12:53:42,0111020 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54870 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40946818, endtime: 40947470, seqnum: 0, connid: 0 98 12:53:42,0111081 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54870 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40946819, endtime: 40947470, seqnum: 0, connid: 0 98 12:53:42,0111147 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54870 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40946819, endtime: 40947470, seqnum: 0, connid: 0 98 12:53:42,0111205 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54870 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40946820, endtime: 40947470, seqnum: 0, connid: 0 98 12:53:42,1468655 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54851 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40946912, endtime: 40947483, seqnum: 0, connid: 0 98 12:53:42,1468838 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54851 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40946913, endtime: 40947483, seqnum: 0, connid: 0 98 12:53:42,1468913 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54851 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40946913, endtime: 40947483, seqnum: 0, connid: 0 98 12:53:42,1468985 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54851 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40946914, endtime: 40947483, seqnum: 0, connid: 0 98 12:53:42,1469043 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54851 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40946914, endtime: 40947483, seqnum: 0, connid: 0 98 12:53:42,1469110 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54851 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40946915, endtime: 40947483, seqnum: 0, connid: 0 98 12:53:42,1469165 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54851 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40946916, endtime: 40947483, seqnum: 0, connid: 0 98 12:53:42,1469231 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54851 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40946916, endtime: 40947483, seqnum: 0, connid: 0 98 12:53:42,1469287 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54851 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40946917, endtime: 40947483, seqnum: 0, connid: 0 98 12:53:42,1469583 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54851 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40946917, endtime: 40947483, seqnum: 0, connid: 0 98 12:53:42,1469644 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54851 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40946918, endtime: 40947483, seqnum: 0, connid: 0 98 12:53:42,1469711 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54851 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40946918, endtime: 40947483, seqnum: 0, connid: 0 98 12:53:42,1469763 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54851 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40946919, endtime: 40947483, seqnum: 0, connid: 0 98 12:53:42,1760683 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54879 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40947281, endtime: 40947486, seqnum: 0, connid: 0 98 12:53:42,1760850 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54879 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40947281, endtime: 40947486, seqnum: 0, connid: 0 98 12:53:42,1760922 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54879 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40947282, endtime: 40947486, seqnum: 0, connid: 0 98 12:53:42,1760994 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54879 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40947282, endtime: 40947486, seqnum: 0, connid: 0 98 12:53:42,1761046 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54879 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40947283, endtime: 40947486, seqnum: 0, connid: 0 98 12:53:42,1761110 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54879 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40947284, endtime: 40947486, seqnum: 0, connid: 0 98 12:53:42,1761163 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54879 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40947284, endtime: 40947486, seqnum: 0, connid: 0 98 12:53:42,1761224 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54879 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40947285, endtime: 40947486, seqnum: 0, connid: 0 98 12:53:42,1761276 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54879 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40947285, endtime: 40947486, seqnum: 0, connid: 0 98 12:53:42,1761562 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54879 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40947286, endtime: 40947486, seqnum: 0, connid: 0 98 12:53:42,1761617 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54879 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40947287, endtime: 40947486, seqnum: 0, connid: 0 98 12:53:42,1761681 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54879 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40947287, endtime: 40947486, seqnum: 0, connid: 0 98 12:53:42,1761733 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54879 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40947288, endtime: 40947486, seqnum: 0, connid: 0 98 12:53:42,5523506 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54876 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40947313, endtime: 40947524, seqnum: 0, connid: 0 98 12:53:42,5523659 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54876 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40947313, endtime: 40947524, seqnum: 0, connid: 0 98 12:53:42,5523731 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54876 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40947314, endtime: 40947524, seqnum: 0, connid: 0 98 12:53:42,5523803 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54876 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40947314, endtime: 40947524, seqnum: 0, connid: 0 98 12:53:42,5523861 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54876 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40947315, endtime: 40947524, seqnum: 0, connid: 0 98 12:53:42,5523927 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54876 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40947316, endtime: 40947524, seqnum: 0, connid: 0 98 12:53:42,5523983 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54876 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40947316, endtime: 40947524, seqnum: 0, connid: 0 98 12:53:42,5524046 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54876 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40947317, endtime: 40947524, seqnum: 0, connid: 0 98 12:53:42,5545213 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54876 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40947317, endtime: 40947524, seqnum: 0, connid: 0 98 12:53:42,5545413 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54876 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40947318, endtime: 40947524, seqnum: 0, connid: 0 98 12:53:42,5545521 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54876 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40947318, endtime: 40947524, seqnum: 0, connid: 0 98 12:53:42,5545626 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54876 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40947319, endtime: 40947524, seqnum: 0, connid: 0 98 12:53:43,8448492 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54877 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40947407, endtime: 40947653, seqnum: 0, connid: 0 98 12:53:43,8448647 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54877 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40947407, endtime: 40947653, seqnum: 0, connid: 0 98 12:53:43,8448717 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54877 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40947408, endtime: 40947653, seqnum: 0, connid: 0 98 12:53:43,8448789 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54877 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40947408, endtime: 40947653, seqnum: 0, connid: 0 98 12:53:43,8448844 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54877 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40947409, endtime: 40947653, seqnum: 0, connid: 0 98 12:53:43,8448908 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54877 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40947410, endtime: 40947653, seqnum: 0, connid: 0 98 12:53:43,8448960 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54877 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40947410, endtime: 40947653, seqnum: 0, connid: 0 98 12:53:43,8449024 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54877 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40947411, endtime: 40947653, seqnum: 0, connid: 0 98 12:53:43,8449074 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54877 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40947412, endtime: 40947653, seqnum: 0, connid: 0 98 12:53:43,8449370 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54877 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40947412, endtime: 40947653, seqnum: 0, connid: 0 98 12:53:43,8449426 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54877 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40947413, endtime: 40947653, seqnum: 0, connid: 0 98 12:53:43,8449490 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54877 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40947413, endtime: 40947653, seqnum: 0, connid: 0 98 12:53:43,8450659 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54877 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40947414, endtime: 40947653, seqnum: 0, connid: 0 98 12:53:44,2133939 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54879 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40947486, endtime: 40947690, seqnum: 0, connid: 0 98 12:53:44,2134155 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54879 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40947487, endtime: 40947690, seqnum: 0, connid: 0 98 12:53:44,2134238 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54879 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40947488, endtime: 40947690, seqnum: 0, connid: 0 98 12:53:44,2134318 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54879 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40947488, endtime: 40947690, seqnum: 0, connid: 0 98 12:53:44,2134385 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54879 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40947489, endtime: 40947690, seqnum: 0, connid: 0 98 12:53:44,2134457 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54879 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40947489, endtime: 40947690, seqnum: 0, connid: 0 98 12:53:44,2134521 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54879 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40947490, endtime: 40947690, seqnum: 0, connid: 0 98 12:53:44,2134595 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54879 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40947490, endtime: 40947690, seqnum: 0, connid: 0 98 12:53:44,2134656 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54879 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40947491, endtime: 40947690, seqnum: 0, connid: 0 98 12:53:44,2135011 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54879 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40947492, endtime: 40947690, seqnum: 0, connid: 0 98 12:53:44,2135075 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54879 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40947492, endtime: 40947690, seqnum: 0, connid: 0 98 12:53:44,2135147 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54879 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40947493, endtime: 40947690, seqnum: 0, connid: 0 98 12:53:44,2135208 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54879 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40947493, endtime: 40947690, seqnum: 0, connid: 0 98 12:53:44,2135310 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54870 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40947470, endtime: 40947690, seqnum: 0, connid: 0 98 12:53:44,2135385 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54870 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40947470, endtime: 40947690, seqnum: 0, connid: 0 98 12:53:44,2135449 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54870 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40947471, endtime: 40947690, seqnum: 0, connid: 0 98 12:53:44,2135521 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54870 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40947472, endtime: 40947690, seqnum: 0, connid: 0 98 12:53:44,2135582 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54870 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40947472, endtime: 40947690, seqnum: 0, connid: 0 98 12:53:44,2135657 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54870 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40947473, endtime: 40947690, seqnum: 0, connid: 0 98 12:53:44,2136191 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54870 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40947473, endtime: 40947690, seqnum: 0, connid: 0 98 12:53:44,2136283 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54870 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40947474, endtime: 40947690, seqnum: 0, connid: 0 98 12:53:44,2136341 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54870 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40947474, endtime: 40947690, seqnum: 0, connid: 0 98 12:53:44,2136410 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54870 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40947475, endtime: 40947690, seqnum: 0, connid: 0 98 12:53:44,2136466 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54870 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40947476, endtime: 40947690, seqnum: 0, connid: 0 98 12:53:44,2136535 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54870 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40947476, endtime: 40947690, seqnum: 0, connid: 0 98 12:53:44,2136593 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54870 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40947477, endtime: 40947690, seqnum: 0, connid: 0 98 12:53:44,2992635 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54870 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40947690, endtime: 40947699, seqnum: 0, connid: 0 98 12:53:45,6168263 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54851 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40947483, endtime: 40947830, seqnum: 0, connid: 0 98 12:53:45,6168434 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54851 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40947484, endtime: 40947830, seqnum: 0, connid: 0 98 12:53:45,6168506 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54851 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40947484, endtime: 40947830, seqnum: 0, connid: 0 98 12:53:45,6168581 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54851 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40947485, endtime: 40947830, seqnum: 0, connid: 0 98 12:53:45,6168637 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54851 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40947486, endtime: 40947830, seqnum: 0, connid: 0 98 12:53:45,6168700 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54851 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40947486, endtime: 40947830, seqnum: 0, connid: 0 98 12:53:45,6168753 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54851 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40947487, endtime: 40947830, seqnum: 0, connid: 0 98 12:53:45,6168820 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54851 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40947488, endtime: 40947830, seqnum: 0, connid: 0 98 12:53:45,6168872 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54851 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40947488, endtime: 40947830, seqnum: 0, connid: 0 98 12:53:45,6169146 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54851 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40947489, endtime: 40947830, seqnum: 0, connid: 0 98 12:53:45,6169207 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54851 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40947489, endtime: 40947830, seqnum: 0, connid: 0 98 12:53:45,6169271 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54851 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40947490, endtime: 40947830, seqnum: 0, connid: 0 98 12:53:45,6169327 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54851 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40947490, endtime: 40947830, seqnum: 0, connid: 0 98 12:53:46,1710991 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54879 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40947690, endtime: 40947886, seqnum: 0, connid: 0 98 12:53:46,1711157 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54879 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40947691, endtime: 40947886, seqnum: 0, connid: 0 98 12:53:46,1711232 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54879 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40947691, endtime: 40947886, seqnum: 0, connid: 0 98 12:53:46,1711312 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54879 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40947692, endtime: 40947886, seqnum: 0, connid: 0 98 12:53:46,1711370 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54879 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40947692, endtime: 40947886, seqnum: 0, connid: 0 98 12:53:46,1711434 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54879 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40947693, endtime: 40947886, seqnum: 0, connid: 0 98 12:53:46,1711486 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54879 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40947694, endtime: 40947886, seqnum: 0, connid: 0 98 12:53:46,1711553 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54879 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40947694, endtime: 40947886, seqnum: 0, connid: 0 98 12:53:46,1711606 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54879 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40947695, endtime: 40947886, seqnum: 0, connid: 0 98 12:53:46,1711910 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54879 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40947695, endtime: 40947886, seqnum: 0, connid: 0 98 12:53:46,1711969 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54879 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40947696, endtime: 40947886, seqnum: 0, connid: 0 98 12:53:46,1712032 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54879 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40947696, endtime: 40947886, seqnum: 0, connid: 0 98 12:53:46,1712088 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54879 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40947697, endtime: 40947886, seqnum: 0, connid: 0 98 12:53:46,2433151 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54879 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40947886, endtime: 40947893, seqnum: 0, connid: 0 98 12:53:46,4339554 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54877 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40947653, endtime: 40947912, seqnum: 0, connid: 0 98 12:53:46,4339748 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54877 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40947654, endtime: 40947912, seqnum: 0, connid: 0 98 12:53:46,4339831 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54877 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40947654, endtime: 40947912, seqnum: 0, connid: 0 98 12:53:46,4339912 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54877 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40947655, endtime: 40947912, seqnum: 0, connid: 0 98 12:53:46,4339973 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54877 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40947656, endtime: 40947912, seqnum: 0, connid: 0 98 12:53:46,4340047 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54877 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40947656, endtime: 40947912, seqnum: 0, connid: 0 98 12:53:46,4340108 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54877 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40947658, endtime: 40947912, seqnum: 0, connid: 0 98 12:53:46,4340180 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54877 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40947658, endtime: 40947912, seqnum: 0, connid: 0 98 12:53:46,4340239 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54877 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40947659, endtime: 40947912, seqnum: 0, connid: 0 98 12:53:46,4340759 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54877 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40947659, endtime: 40947912, seqnum: 0, connid: 0 98 12:53:46,4340837 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54877 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40947660, endtime: 40947912, seqnum: 0, connid: 0 98 12:53:46,4340909 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54877 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40947661, endtime: 40947912, seqnum: 0, connid: 0 98 12:53:46,4340970 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54877 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40947663, endtime: 40947912, seqnum: 0, connid: 0 98 12:53:46,4341114 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54870 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40947691, endtime: 40947912, seqnum: 0, connid: 0 98 12:53:46,4341178 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54870 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40947691, endtime: 40947912, seqnum: 0, connid: 0 98 12:53:46,4341250 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54870 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40947692, endtime: 40947912, seqnum: 0, connid: 0 98 12:53:46,4341311 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54870 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40947692, endtime: 40947912, seqnum: 0, connid: 0 98 12:53:46,4341386 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54870 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40947693, endtime: 40947912, seqnum: 0, connid: 0 98 12:53:46,4342181 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54870 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40947694, endtime: 40947912, seqnum: 0, connid: 0 98 12:53:46,4342269 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54870 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40947694, endtime: 40947912, seqnum: 0, connid: 0 98 12:53:46,4342328 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54870 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40947695, endtime: 40947912, seqnum: 0, connid: 0 98 12:53:46,4342400 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54870 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40947695, endtime: 40947912, seqnum: 0, connid: 0 98 12:53:46,4362295 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54870 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40947696, endtime: 40947912, seqnum: 0, connid: 0 98 12:53:46,4362422 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54870 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40947696, endtime: 40947912, seqnum: 0, connid: 0 98 12:53:46,4362497 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54870 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40947697, endtime: 40947912, seqnum: 0, connid: 0 98 12:53:47,4592797 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54851 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40947831, endtime: 40948015, seqnum: 0, connid: 0 98 12:53:47,4592975 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54851 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40947831, endtime: 40948015, seqnum: 0, connid: 0 98 12:53:47,4593049 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54851 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40947832, endtime: 40948015, seqnum: 0, connid: 0 98 12:53:47,4593121 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54851 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40947833, endtime: 40948015, seqnum: 0, connid: 0 98 12:53:47,4593180 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54851 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40947833, endtime: 40948015, seqnum: 0, connid: 0 98 12:53:47,4593249 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54851 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40947835, endtime: 40948015, seqnum: 0, connid: 0 98 12:53:47,4593304 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54851 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40947836, endtime: 40948015, seqnum: 0, connid: 0 98 12:53:47,4593374 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54851 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40947836, endtime: 40948015, seqnum: 0, connid: 0 98 12:53:47,4593429 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54851 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40947837, endtime: 40948015, seqnum: 0, connid: 0 98 12:53:47,4593723 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54851 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40947838, endtime: 40948015, seqnum: 0, connid: 0 98 12:53:47,4593894 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54851 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40947838, endtime: 40948015, seqnum: 0, connid: 0 98 12:53:47,4594030 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54851 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40947839, endtime: 40948015, seqnum: 0, connid: 0 98 12:53:47,4594099 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54851 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40947839, endtime: 40948015, seqnum: 0, connid: 0 98 12:53:49,0754709 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54876 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40947320, endtime: 40948176, seqnum: 0, connid: 0 98 12:53:49,0754962 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54876 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40947524, endtime: 40948176, seqnum: 0, connid: 0 98 12:53:49,0755083 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54876 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40947524, endtime: 40948176, seqnum: 0, connid: 0 98 12:53:49,0755203 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54876 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40947525, endtime: 40948176, seqnum: 0, connid: 0 98 12:53:49,0755300 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54876 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40947526, endtime: 40948176, seqnum: 0, connid: 0 98 12:53:49,0755416 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54876 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40947526, endtime: 40948176, seqnum: 0, connid: 0 98 12:53:49,0755510 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54876 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40947527, endtime: 40948176, seqnum: 0, connid: 0 98 12:53:49,0755624 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54876 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40947527, endtime: 40948176, seqnum: 0, connid: 0 98 12:53:49,0755721 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54876 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40947528, endtime: 40948176, seqnum: 0, connid: 0 98 12:53:49,0756194 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54876 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40947529, endtime: 40948176, seqnum: 0, connid: 0 98 12:53:49,0756269 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54876 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40947529, endtime: 40948176, seqnum: 0, connid: 0 98 12:53:49,0756333 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54876 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40947530, endtime: 40948176, seqnum: 0, connid: 0 98 12:53:49,0756394 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54876 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40947530, endtime: 40948176, seqnum: 0, connid: 0 98 12:53:49,5800498 MCLauncher.exe 6080 RegOpenKey HKLM\Software\WOW6432Node\Policies\Microsoft\MUI\Settings REPARSE Desired Access: Read 98 12:53:49,5800748 MCLauncher.exe 6080 RegOpenKey HKLM\SOFTWARE\Policies\Microsoft\MUI\Settings NAME NOT FOUND Desired Access: Read 98 12:53:49,5801050 MCLauncher.exe 6080 RegOpenKey HKCU SUCCESS Desired Access: Maximum Allowed, Granted Access: All Access 98 12:53:49,5801288 MCLauncher.exe 6080 RegQueryKey HKCU SUCCESS Query: HandleTags, HandleTags: 0x0 98 12:53:49,5801382 MCLauncher.exe 6080 RegQueryKey HKCU SUCCESS Query: Name 98 12:53:49,5801474 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Policies\Microsoft\Control Panel\Desktop NAME NOT FOUND Desired Access: Read 98 12:53:49,5801643 MCLauncher.exe 6080 RegQueryKey HKCU SUCCESS Query: HandleTags, HandleTags: 0x0 98 12:53:49,5801718 MCLauncher.exe 6080 RegQueryKey HKCU SUCCESS Query: Name 98 12:53:49,5801792 MCLauncher.exe 6080 RegOpenKey HKCU\Control Panel\Desktop SUCCESS Desired Access: Read 98 12:53:49,5801931 MCLauncher.exe 6080 RegSetInfoKey HKCU\Control Panel\Desktop SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 98 12:53:49,5802000 MCLauncher.exe 6080 RegQueryValue HKCU\Control Panel\Desktop\PreferredUILanguages NAME NOT FOUND Length: 12 98 12:53:49,5802244 MCLauncher.exe 6080 RegCloseKey HKCU\Control Panel\Desktop SUCCESS 98 12:53:49,5802299 MCLauncher.exe 6080 RegCloseKey HKCU SUCCESS 98 12:53:49,5802424 MCLauncher.exe 6080 RegOpenKey HKLM\Software\WOW6432Node\Policies\Microsoft\MUI\Settings REPARSE Desired Access: Read 98 12:53:49,5802502 MCLauncher.exe 6080 RegOpenKey HKLM\SOFTWARE\Policies\Microsoft\MUI\Settings NAME NOT FOUND Desired Access: Read 98 12:53:49,5802662 MCLauncher.exe 6080 RegOpenKey HKCU SUCCESS Desired Access: Maximum Allowed, Granted Access: All Access 98 12:53:49,5802801 MCLauncher.exe 6080 RegQueryKey HKCU SUCCESS Query: HandleTags, HandleTags: 0x0 98 12:53:49,5802873 MCLauncher.exe 6080 RegQueryKey HKCU SUCCESS Query: Name 98 12:53:49,5803214 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Policies\Microsoft\Control Panel\Desktop NAME NOT FOUND Desired Access: Read 98 12:53:49,5803369 MCLauncher.exe 6080 RegQueryKey HKCU SUCCESS Query: HandleTags, HandleTags: 0x0 98 12:53:49,5803457 MCLauncher.exe 6080 RegQueryKey HKCU SUCCESS Query: Name 98 12:53:49,5803529 MCLauncher.exe 6080 RegOpenKey HKCU\Control Panel\Desktop\LanguageConfiguration SUCCESS Desired Access: Read 98 12:53:49,5803657 MCLauncher.exe 6080 RegSetInfoKey HKCU\Control Panel\Desktop\LanguageConfiguration SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 98 12:53:49,5803715 MCLauncher.exe 6080 RegEnumValue HKCU\Control Panel\Desktop\LanguageConfiguration NO MORE ENTRIES Index: 0, Length: 512 98 12:53:49,5803784 MCLauncher.exe 6080 RegCloseKey HKCU\Control Panel\Desktop\LanguageConfiguration SUCCESS 98 12:53:49,5803854 MCLauncher.exe 6080 RegCloseKey HKCU SUCCESS 98 12:53:49,5804868 MCLauncher.exe 6080 TCP Disconnect WIN-0UOTFKKVN1S:54851 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 0, seqnum: 0, connid: 0 98 12:53:49,6545017 MCLauncher.exe 6080 TCP Connect WIN-0UOTFKKVN1S:54900 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 0, mss: 1460, sackopt: 0, tsopt: 0, wsopt: 0, rcvwin: 64240, rcvwinscale: 0, sndwinscale: 0, seqnum: 0, connid: 0 98 12:53:49,6548134 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54900 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40948234, endtime: 40948234, seqnum: 0, connid: 0 98 12:53:49,6607014 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54900 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40948235, endtime: 40948235, seqnum: 0, connid: 0 98 12:53:49,6665587 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54900 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40948235, endtime: 40948235, seqnum: 0, connid: 0 98 12:53:49,6723771 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54900 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40948236, endtime: 40948236, seqnum: 0, connid: 0 98 12:53:49,6782410 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54900 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40948236, endtime: 40948236, seqnum: 0, connid: 0 98 12:53:49,6842019 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54900 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40948237, endtime: 40948237, seqnum: 0, connid: 0 98 12:53:49,6899228 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54900 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40948238, endtime: 40948238, seqnum: 0, connid: 0 98 12:53:49,6958543 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54900 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40948238, endtime: 40948238, seqnum: 0, connid: 0 98 12:53:49,7016561 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54900 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40948239, endtime: 40948239, seqnum: 0, connid: 0 98 12:53:49,7076455 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54900 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40948239, endtime: 40948239, seqnum: 0, connid: 0 98 12:53:49,7133775 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54900 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40948240, endtime: 40948240, seqnum: 0, connid: 0 98 12:53:49,7185169 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54900 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40948240, endtime: 40948240, seqnum: 0, connid: 0 98 12:53:49,7239428 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54900 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40948241, endtime: 40948241, seqnum: 0, connid: 0 98 12:53:49,7299410 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54900 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40948242, endtime: 40948242, seqnum: 0, connid: 0 98 12:53:49,7359496 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54900 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40948242, endtime: 40948242, seqnum: 0, connid: 0 98 12:53:49,7416586 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54900 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40948243, endtime: 40948243, seqnum: 0, connid: 0 98 12:53:49,7474219 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54900 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40948243, endtime: 40948243, seqnum: 0, connid: 0 98 12:53:49,7533983 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54900 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40948244, endtime: 40948244, seqnum: 0, connid: 0 98 12:53:49,7596980 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54900 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40948245, endtime: 40948245, seqnum: 0, connid: 0 98 12:53:49,7805650 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54900 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40948247, endtime: 40948247, seqnum: 0, connid: 0 98 12:53:49,7866896 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54900 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40948247, endtime: 40948247, seqnum: 0, connid: 0 98 12:53:49,7925579 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54900 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40948248, endtime: 40948248, seqnum: 0, connid: 0 98 12:53:49,7984642 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54900 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40948248, endtime: 40948248, seqnum: 0, connid: 0 98 12:53:49,8042832 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54900 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40948249, endtime: 40948249, seqnum: 0, connid: 0 98 12:53:49,8107178 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54900 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40948250, endtime: 40948250, seqnum: 0, connid: 0 98 12:53:49,8168081 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54900 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40948250, endtime: 40948250, seqnum: 0, connid: 0 98 12:53:49,8227933 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54900 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40948251, endtime: 40948251, seqnum: 0, connid: 0 98 12:53:49,8285555 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54900 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40948251, endtime: 40948251, seqnum: 0, connid: 0 98 12:53:50,3614069 MCLauncher.exe 6080 TCP Disconnect WIN-0UOTFKKVN1S:54879 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 0, seqnum: 0, connid: 0 98 12:53:50,4363259 MCLauncher.exe 6080 TCP Connect WIN-0UOTFKKVN1S:54903 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 0, mss: 1460, sackopt: 0, tsopt: 0, wsopt: 0, rcvwin: 64240, rcvwinscale: 0, sndwinscale: 0, seqnum: 0, connid: 0 98 12:53:50,4366686 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54903 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40948312, endtime: 40948312, seqnum: 0, connid: 0 98 12:53:50,4423286 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54903 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40948313, endtime: 40948313, seqnum: 0, connid: 0 98 12:53:50,4482972 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54903 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40948313, endtime: 40948313, seqnum: 0, connid: 0 98 12:53:50,4540730 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54903 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40948314, endtime: 40948314, seqnum: 0, connid: 0 98 12:53:50,4610036 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54903 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40948315, endtime: 40948315, seqnum: 0, connid: 0 98 12:53:50,4693585 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54903 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40948316, endtime: 40948316, seqnum: 0, connid: 0 98 12:53:50,4772355 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54903 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40948316, endtime: 40948316, seqnum: 0, connid: 0 98 12:53:50,4828514 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54903 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40948317, endtime: 40948317, seqnum: 0, connid: 0 98 12:53:50,4887042 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54903 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40948317, endtime: 40948317, seqnum: 0, connid: 0 98 12:53:50,4946673 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54903 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40948318, endtime: 40948318, seqnum: 0, connid: 0 98 12:53:50,5001062 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54903 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40948319, endtime: 40948319, seqnum: 0, connid: 0 98 12:53:50,5077886 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54903 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40948319, endtime: 40948319, seqnum: 0, connid: 0 98 12:53:50,5130358 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54903 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40948320, endtime: 40948320, seqnum: 0, connid: 0 98 12:53:50,5189825 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54903 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40948320, endtime: 40948321, seqnum: 0, connid: 0 98 12:53:50,5350188 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54903 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40948322, endtime: 40948322, seqnum: 0, connid: 0 98 12:53:50,5437006 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54903 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40948323, endtime: 40948323, seqnum: 0, connid: 0 98 12:53:50,5495244 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54903 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40948323, endtime: 40948324, seqnum: 0, connid: 0 98 12:53:50,5553306 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54903 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40948324, endtime: 40948324, seqnum: 0, connid: 0 98 12:53:50,5605695 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54903 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40948325, endtime: 40948325, seqnum: 0, connid: 0 98 12:53:50,5667980 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54903 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40948325, endtime: 40948325, seqnum: 0, connid: 0 98 12:53:50,5733470 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54903 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40948326, endtime: 40948326, seqnum: 0, connid: 0 98 12:53:50,5789871 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54903 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40948326, endtime: 40948327, seqnum: 0, connid: 0 98 12:53:50,5850299 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54903 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40948327, endtime: 40948327, seqnum: 0, connid: 0 98 12:53:50,5906442 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54903 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40948328, endtime: 40948328, seqnum: 0, connid: 0 98 12:53:50,5966555 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54903 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40948328, endtime: 40948328, seqnum: 0, connid: 0 98 12:53:50,6899721 MCLauncher.exe 6080 TCP Disconnect WIN-0UOTFKKVN1S:54870 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 0, seqnum: 0, connid: 0 98 12:53:50,7756511 MCLauncher.exe 6080 TCP Connect WIN-0UOTFKKVN1S:54904 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 0, mss: 1460, sackopt: 0, tsopt: 0, wsopt: 0, rcvwin: 64240, rcvwinscale: 0, sndwinscale: 0, seqnum: 0, connid: 0 98 12:53:50,7760368 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54904 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40948346, endtime: 40948346, seqnum: 0, connid: 0 98 12:53:50,7822448 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54904 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40948347, endtime: 40948347, seqnum: 0, connid: 0 98 12:53:50,7880405 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54904 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40948347, endtime: 40948347, seqnum: 0, connid: 0 98 12:53:50,7937839 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54904 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40948348, endtime: 40948348, seqnum: 0, connid: 0 98 12:53:50,7995724 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54904 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40948349, endtime: 40948349, seqnum: 0, connid: 0 98 12:53:50,8054743 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54904 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40948349, endtime: 40948349, seqnum: 0, connid: 0 98 12:53:50,8112440 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54904 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40948350, endtime: 40948350, seqnum: 0, connid: 0 98 12:53:50,8171688 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54904 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40948350, endtime: 40948350, seqnum: 0, connid: 0 98 12:53:50,8225080 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54904 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40948351, endtime: 40948351, seqnum: 0, connid: 0 98 12:53:50,8372152 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54904 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40948352, endtime: 40948352, seqnum: 0, connid: 0 98 12:53:50,8429663 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54904 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40948353, endtime: 40948353, seqnum: 0, connid: 0 98 12:53:50,8488491 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54904 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40948353, endtime: 40948353, seqnum: 0, connid: 0 98 12:53:50,8527007 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54877 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40947913, endtime: 40948354, seqnum: 0, connid: 0 98 12:53:50,8527143 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54877 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40947913, endtime: 40948354, seqnum: 0, connid: 0 98 12:53:50,8527220 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54877 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40947915, endtime: 40948354, seqnum: 0, connid: 0 98 12:53:50,8527295 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54877 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40947917, endtime: 40948354, seqnum: 0, connid: 0 98 12:53:50,8527353 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54877 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40947918, endtime: 40948354, seqnum: 0, connid: 0 98 12:53:50,8527423 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54877 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40947919, endtime: 40948354, seqnum: 0, connid: 0 98 12:53:50,8527481 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54877 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40947919, endtime: 40948354, seqnum: 0, connid: 0 98 12:53:50,8527553 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54877 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40947920, endtime: 40948354, seqnum: 0, connid: 0 98 12:53:50,8527608 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54877 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40947922, endtime: 40948354, seqnum: 0, connid: 0 98 12:53:50,8527888 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54877 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40947922, endtime: 40948354, seqnum: 0, connid: 0 98 12:53:50,8527946 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54877 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40947923, endtime: 40948354, seqnum: 0, connid: 0 98 12:53:50,8528013 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54877 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40947923, endtime: 40948354, seqnum: 0, connid: 0 98 12:53:50,8528071 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54877 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40947924, endtime: 40948354, seqnum: 0, connid: 0 98 12:53:50,8543464 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54904 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40948354, endtime: 40948354, seqnum: 0, connid: 0 98 12:53:50,8596069 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54904 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40948355, endtime: 40948355, seqnum: 0, connid: 0 98 12:53:50,8654680 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54904 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40948355, endtime: 40948355, seqnum: 0, connid: 0 98 12:53:50,8712213 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54904 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40948356, endtime: 40948356, seqnum: 0, connid: 0 98 12:53:50,8771168 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54904 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40948356, endtime: 40948356, seqnum: 0, connid: 0 98 12:53:50,8980008 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54904 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40948358, endtime: 40948358, seqnum: 0, connid: 0 98 12:53:50,9040819 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54904 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40948359, endtime: 40948359, seqnum: 0, connid: 0 98 12:53:50,9115546 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54904 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40948360, endtime: 40948360, seqnum: 0, connid: 0 98 12:53:50,9115726 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54903 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40948329, endtime: 40948360, seqnum: 0, connid: 0 98 12:53:50,9115812 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54903 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40948330, endtime: 40948360, seqnum: 0, connid: 0 98 12:53:50,9115873 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54903 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40948330, endtime: 40948360, seqnum: 0, connid: 0 98 12:53:50,9115942 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54903 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40948331, endtime: 40948360, seqnum: 0, connid: 0 98 12:53:50,9115998 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54903 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40948331, endtime: 40948360, seqnum: 0, connid: 0 98 12:53:50,9116061 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54903 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40948332, endtime: 40948360, seqnum: 0, connid: 0 98 12:53:50,9116114 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54903 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40948333, endtime: 40948360, seqnum: 0, connid: 0 98 12:53:50,9116181 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54903 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40948333, endtime: 40948360, seqnum: 0, connid: 0 98 12:53:50,9116413 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54903 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40948334, endtime: 40948360, seqnum: 0, connid: 0 98 12:53:50,9116483 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54903 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40948334, endtime: 40948360, seqnum: 0, connid: 0 98 12:53:50,9116535 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54903 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40948335, endtime: 40948360, seqnum: 0, connid: 0 98 12:53:50,9116599 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54903 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40948335, endtime: 40948360, seqnum: 0, connid: 0 98 12:53:50,9116654 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54903 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40948336, endtime: 40948360, seqnum: 0, connid: 0 98 12:53:50,9385437 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54904 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40948362, endtime: 40948362, seqnum: 0, connid: 0 98 12:53:50,9446708 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54904 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40948363, endtime: 40948363, seqnum: 0, connid: 0 98 12:53:50,9501690 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54904 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40948364, endtime: 40948364, seqnum: 0, connid: 0 98 12:53:50,9563418 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54904 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40948364, endtime: 40948364, seqnum: 0, connid: 0 98 12:53:50,9626861 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54904 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40948365, endtime: 40948365, seqnum: 0, connid: 0 98 12:53:50,9944550 MCLauncher.exe 6080 TCP Connect WIN-0UOTFKKVN1S:54905 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 0, mss: 1460, sackopt: 0, tsopt: 0, wsopt: 0, rcvwin: 64240, rcvwinscale: 0, sndwinscale: 0, seqnum: 0, connid: 0 98 12:53:50,9948100 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54905 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40948368, endtime: 40948368, seqnum: 0, connid: 0 98 12:53:51,0000904 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54905 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40948369, endtime: 40948369, seqnum: 0, connid: 0 98 12:53:51,0094036 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54905 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40948370, endtime: 40948370, seqnum: 0, connid: 0 98 12:53:51,0203371 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54905 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40948371, endtime: 40948371, seqnum: 0, connid: 0 98 12:53:51,0270235 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54905 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40948371, endtime: 40948371, seqnum: 0, connid: 0 98 12:53:51,0370665 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54905 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40948372, endtime: 40948372, seqnum: 0, connid: 0 98 12:53:51,0500206 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54905 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40948374, endtime: 40948374, seqnum: 0, connid: 0 98 12:53:51,0557969 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54905 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40948374, endtime: 40948374, seqnum: 0, connid: 0 98 12:53:51,0623180 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54905 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40948375, endtime: 40948375, seqnum: 0, connid: 0 98 12:53:51,0674862 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54905 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40948375, endtime: 40948375, seqnum: 0, connid: 0 98 12:53:51,0732866 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54905 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40948376, endtime: 40948376, seqnum: 0, connid: 0 98 12:53:51,0791320 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54905 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40948377, endtime: 40948377, seqnum: 0, connid: 0 98 12:53:51,0850806 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54905 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40948377, endtime: 40948377, seqnum: 0, connid: 0 98 12:53:51,0915094 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54905 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40948378, endtime: 40948378, seqnum: 0, connid: 0 98 12:53:51,1001860 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54905 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40948379, endtime: 40948379, seqnum: 0, connid: 0 98 12:53:51,1054700 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54905 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40948379, endtime: 40948379, seqnum: 0, connid: 0 98 12:53:51,1157250 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54905 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40948380, endtime: 40948380, seqnum: 0, connid: 0 98 12:53:51,1211331 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54905 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40948381, endtime: 40948381, seqnum: 0, connid: 0 98 12:53:51,1274697 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54905 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40948381, endtime: 40948381, seqnum: 0, connid: 0 98 12:53:51,1328997 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54905 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40948382, endtime: 40948382, seqnum: 0, connid: 0 98 12:53:51,1434550 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54905 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40948383, endtime: 40948383, seqnum: 0, connid: 0 98 12:53:51,1494665 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54905 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40948384, endtime: 40948384, seqnum: 0, connid: 0 98 12:53:51,1595580 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54905 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40948385, endtime: 40948385, seqnum: 0, connid: 0 98 12:53:51,1659345 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54905 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40948385, endtime: 40948385, seqnum: 0, connid: 0 98 12:53:51,1718768 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54905 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40948386, endtime: 40948386, seqnum: 0, connid: 0 98 12:53:51,1776101 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54905 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40948386, endtime: 40948386, seqnum: 0, connid: 0 98 12:53:51,1885796 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54905 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40948387, endtime: 40948387, seqnum: 0, connid: 0 98 12:53:51,1981854 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54905 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40948388, endtime: 40948388, seqnum: 0, connid: 0 98 12:53:51,3142877 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54900 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40948252, endtime: 40948400, seqnum: 0, connid: 0 98 12:53:51,3143057 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54900 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40948253, endtime: 40948400, seqnum: 0, connid: 0 98 12:53:51,3143126 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54900 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40948253, endtime: 40948400, seqnum: 0, connid: 0 98 12:53:51,3143196 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54900 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40948254, endtime: 40948400, seqnum: 0, connid: 0 98 12:53:51,3143251 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54900 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40948254, endtime: 40948400, seqnum: 0, connid: 0 98 12:53:51,3143315 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54900 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40948255, endtime: 40948400, seqnum: 0, connid: 0 98 12:53:51,3143368 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54900 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40948256, endtime: 40948400, seqnum: 0, connid: 0 98 12:53:51,3143431 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54900 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40948256, endtime: 40948400, seqnum: 0, connid: 0 98 12:53:51,3143484 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54900 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40948257, endtime: 40948400, seqnum: 0, connid: 0 98 12:53:51,3143778 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54900 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40948257, endtime: 40948400, seqnum: 0, connid: 0 98 12:53:51,8931900 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54904 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40948366, endtime: 40948458, seqnum: 0, connid: 0 98 12:53:51,8932080 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54904 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40948367, endtime: 40948458, seqnum: 0, connid: 0 98 12:53:51,8932154 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54904 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40948367, endtime: 40948458, seqnum: 0, connid: 0 98 12:53:51,8932232 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54904 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40948368, endtime: 40948458, seqnum: 0, connid: 0 98 12:53:51,8932290 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54904 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40948368, endtime: 40948458, seqnum: 0, connid: 0 98 12:53:51,8932362 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54904 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40948370, endtime: 40948458, seqnum: 0, connid: 0 98 12:53:51,8932418 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54904 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40948371, endtime: 40948458, seqnum: 0, connid: 0 98 12:53:51,8932487 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54904 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40948371, endtime: 40948458, seqnum: 0, connid: 0 98 12:53:51,8932542 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54904 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40948372, endtime: 40948458, seqnum: 0, connid: 0 98 12:53:51,8932833 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54904 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40948374, endtime: 40948458, seqnum: 0, connid: 0 98 12:53:51,8932894 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54904 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40948374, endtime: 40948458, seqnum: 0, connid: 0 98 12:53:51,8932961 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54904 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40948375, endtime: 40948458, seqnum: 0, connid: 0 98 12:53:51,8933019 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54904 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40948375, endtime: 40948458, seqnum: 0, connid: 0 98 12:53:52,3894056 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54905 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40948389, endtime: 40948508, seqnum: 0, connid: 0 98 12:53:52,3894217 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54905 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40948390, endtime: 40948508, seqnum: 0, connid: 0 98 12:53:52,3894289 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54905 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40948391, endtime: 40948508, seqnum: 0, connid: 0 98 12:53:52,3894358 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54905 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40948392, endtime: 40948508, seqnum: 0, connid: 0 98 12:53:52,3894411 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54905 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40948393, endtime: 40948508, seqnum: 0, connid: 0 98 12:53:52,3894475 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54905 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40948394, endtime: 40948508, seqnum: 0, connid: 0 98 12:53:52,3894527 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54905 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40948395, endtime: 40948508, seqnum: 0, connid: 0 98 12:53:52,3894591 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54905 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40948396, endtime: 40948508, seqnum: 0, connid: 0 98 12:53:52,3895796 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54905 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40948396, endtime: 40948508, seqnum: 0, connid: 0 98 12:53:52,3895874 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54905 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40948397, endtime: 40948508, seqnum: 0, connid: 0 98 12:53:52,7986105 MCLauncher.exe 6080 TCP Connect WIN-0UOTFKKVN1S:54906 -> sheltex.company:8000 SUCCESS Length: 0, mss: 1460, sackopt: 0, tsopt: 0, wsopt: 0, rcvwin: 64240, rcvwinscale: 0, sndwinscale: 0, seqnum: 0, connid: 0 98 12:53:53,0564990 MCLauncher.exe 6080 TCP Disconnect WIN-0UOTFKKVN1S:54883 -> sheltex.company:8000 SUCCESS Length: 0, seqnum: 0, connid: 0 98 12:53:53,0993911 MCLauncher.exe 6080 TCP TCPCopy WIN-0UOTFKKVN1S:54906 -> sheltex.company:8000 SUCCESS Length: 6, seqnum: 0, connid: 0 98 12:53:53,0994039 MCLauncher.exe 6080 TCP Receive WIN-0UOTFKKVN1S:54906 -> sheltex.company:8000 SUCCESS Length: 6, seqnum: 0, connid: 0 98 12:53:53,1028275 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54906 -> sheltex.company:8000 SUCCESS Length: 9, startime: 40948579, endtime: 40948579, seqnum: 0, connid: 0 98 12:53:53,1029743 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54906 -> sheltex.company:8000 SUCCESS Length: 103, startime: 40948579, endtime: 40948579, seqnum: 0, connid: 0 98 12:53:53,7554055 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54876 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40948176, endtime: 40948644, seqnum: 0, connid: 0 98 12:53:53,7554255 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54876 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40948177, endtime: 40948644, seqnum: 0, connid: 0 98 12:53:53,7554338 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54876 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40948177, endtime: 40948644, seqnum: 0, connid: 0 98 12:53:53,7554418 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54876 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40948178, endtime: 40948644, seqnum: 0, connid: 0 98 12:53:53,7554479 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54876 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40948179, endtime: 40948644, seqnum: 0, connid: 0 98 12:53:53,7554549 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54876 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40948179, endtime: 40948644, seqnum: 0, connid: 0 98 12:53:53,7554610 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54876 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40948180, endtime: 40948644, seqnum: 0, connid: 0 98 12:53:53,7554679 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54876 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40948180, endtime: 40948644, seqnum: 0, connid: 0 98 12:53:53,7554734 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54876 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40948181, endtime: 40948644, seqnum: 0, connid: 0 98 12:53:53,7555033 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54876 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40948182, endtime: 40948644, seqnum: 0, connid: 0 98 12:53:53,7555094 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54876 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40948182, endtime: 40948644, seqnum: 0, connid: 0 98 12:53:53,7555164 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54876 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40948183, endtime: 40948644, seqnum: 0, connid: 0 98 12:53:53,7555222 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54876 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40948183, endtime: 40948644, seqnum: 0, connid: 0 98 12:53:53,8783478 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54900 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40948258, endtime: 40948656, seqnum: 0, connid: 0 98 12:53:53,8783633 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54900 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40948258, endtime: 40948656, seqnum: 0, connid: 0 98 12:53:53,8783702 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54900 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40948259, endtime: 40948656, seqnum: 0, connid: 0 98 12:53:53,8783771 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54900 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40948400, endtime: 40948656, seqnum: 0, connid: 0 98 12:53:53,8783827 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54900 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40948401, endtime: 40948656, seqnum: 0, connid: 0 98 12:53:53,8783891 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54900 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40948401, endtime: 40948656, seqnum: 0, connid: 0 98 12:53:53,8783943 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54900 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40948402, endtime: 40948656, seqnum: 0, connid: 0 98 12:53:53,8784007 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54900 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40948402, endtime: 40948656, seqnum: 0, connid: 0 98 12:53:53,8784060 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54900 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40948403, endtime: 40948656, seqnum: 0, connid: 0 98 12:53:53,8785248 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54900 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40948403, endtime: 40948656, seqnum: 0, connid: 0 98 12:53:53,8785315 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54900 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40948404, endtime: 40948656, seqnum: 0, connid: 0 98 12:53:53,8785376 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54900 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40948405, endtime: 40948656, seqnum: 0, connid: 0 98 12:53:53,8785428 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54900 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40948405, endtime: 40948656, seqnum: 0, connid: 0 98 12:53:54,4325616 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54888 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40947351, endtime: 40948712, seqnum: 0, connid: 0 98 12:53:54,4325807 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54888 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40947352, endtime: 40948712, seqnum: 0, connid: 0 98 12:53:54,4325901 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54888 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40947353, endtime: 40948712, seqnum: 0, connid: 0 98 12:53:54,4325970 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54888 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40947353, endtime: 40948712, seqnum: 0, connid: 0 98 12:53:54,4326045 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54888 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40947354, endtime: 40948712, seqnum: 0, connid: 0 98 12:53:54,4326103 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54888 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40947354, endtime: 40948712, seqnum: 0, connid: 0 98 12:53:54,4326330 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54888 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40947355, endtime: 40948712, seqnum: 0, connid: 0 98 12:53:54,4326405 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54888 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40947356, endtime: 40948712, seqnum: 0, connid: 0 98 12:53:54,4326483 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54888 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40947356, endtime: 40948712, seqnum: 0, connid: 0 98 12:53:54,4326776 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54888 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40947357, endtime: 40948712, seqnum: 0, connid: 0 98 12:53:54,4326854 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54888 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40947358, endtime: 40948712, seqnum: 0, connid: 0 98 12:53:54,4326912 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54888 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40947358, endtime: 40948712, seqnum: 0, connid: 0 98 12:53:54,4326984 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54888 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40947359, endtime: 40948712, seqnum: 0, connid: 0 98 12:53:56,8778405 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54905 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40948397, endtime: 40948956, seqnum: 0, connid: 0 98 12:53:56,8778646 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54905 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40948398, endtime: 40948956, seqnum: 0, connid: 0 98 12:53:56,8778784 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54905 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40948399, endtime: 40948956, seqnum: 0, connid: 0 98 12:53:56,8778917 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54905 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40948508, endtime: 40948956, seqnum: 0, connid: 0 98 12:53:56,8779023 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54905 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40948508, endtime: 40948956, seqnum: 0, connid: 0 98 12:53:56,8779145 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54905 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40948509, endtime: 40948956, seqnum: 0, connid: 0 98 12:53:56,8779244 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54905 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40948509, endtime: 40948956, seqnum: 0, connid: 0 98 12:53:56,8779369 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54905 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40948510, endtime: 40948956, seqnum: 0, connid: 0 98 12:53:56,8779472 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54905 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40948511, endtime: 40948956, seqnum: 0, connid: 0 98 12:53:56,8779907 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54905 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40948511, endtime: 40948956, seqnum: 0, connid: 0 98 12:53:56,8779998 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54905 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40948512, endtime: 40948956, seqnum: 0, connid: 0 98 12:53:56,8780073 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54905 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40948513, endtime: 40948956, seqnum: 0, connid: 0 98 12:53:56,8780131 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54905 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40948513, endtime: 40948956, seqnum: 0, connid: 0 98 12:53:56,9527847 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54877 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40948354, endtime: 40948964, seqnum: 0, connid: 0 98 12:53:56,9528027 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54877 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40948355, endtime: 40948964, seqnum: 0, connid: 0 98 12:53:56,9528127 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54877 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40948355, endtime: 40948964, seqnum: 0, connid: 0 98 12:53:56,9528202 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54877 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40948356, endtime: 40948964, seqnum: 0, connid: 0 98 12:53:56,9528277 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54877 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40948356, endtime: 40948964, seqnum: 0, connid: 0 98 12:53:56,9528337 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54877 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40948358, endtime: 40948964, seqnum: 0, connid: 0 98 12:53:56,9528409 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54877 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40948359, endtime: 40948964, seqnum: 0, connid: 0 98 12:53:56,9528468 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54877 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40948360, endtime: 40948964, seqnum: 0, connid: 0 98 12:53:56,9528540 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54877 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40948362, endtime: 40948964, seqnum: 0, connid: 0 98 12:53:56,9529199 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54877 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40948363, endtime: 40948964, seqnum: 0, connid: 0 98 12:53:56,9529291 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54877 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40948364, endtime: 40948964, seqnum: 0, connid: 0 98 12:53:56,9529351 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54877 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40948364, endtime: 40948964, seqnum: 0, connid: 0 98 12:53:56,9530061 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54877 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40948365, endtime: 40948964, seqnum: 0, connid: 0 98 12:53:58,7595777 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54900 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40948656, endtime: 40949145, seqnum: 0, connid: 0 98 12:53:58,7595941 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54900 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40948657, endtime: 40949145, seqnum: 0, connid: 0 98 12:53:58,7596013 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54900 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40948658, endtime: 40949145, seqnum: 0, connid: 0 98 12:53:58,7596088 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54900 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40948658, endtime: 40949145, seqnum: 0, connid: 0 98 12:53:58,7596151 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54900 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40948659, endtime: 40949145, seqnum: 0, connid: 0 98 12:53:58,7596221 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54900 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40948660, endtime: 40949145, seqnum: 0, connid: 0 98 12:53:58,7596282 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54900 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40948660, endtime: 40949145, seqnum: 0, connid: 0 98 12:53:58,7596348 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54900 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40948661, endtime: 40949145, seqnum: 0, connid: 0 98 12:53:58,7596406 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54900 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40948661, endtime: 40949145, seqnum: 0, connid: 0 98 12:53:58,7596717 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54900 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40948663, endtime: 40949145, seqnum: 0, connid: 0 98 12:53:58,7596778 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54900 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40948664, endtime: 40949145, seqnum: 0, connid: 0 98 12:53:58,7596847 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54900 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40948664, endtime: 40949145, seqnum: 0, connid: 0 98 12:53:58,7596905 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54900 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40948665, endtime: 40949145, seqnum: 0, connid: 0 98 12:53:58,7760573 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54876 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40948644, endtime: 40949146, seqnum: 0, connid: 0 98 12:53:58,7760775 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54876 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40948645, endtime: 40949146, seqnum: 0, connid: 0 98 12:53:58,7760856 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54876 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40948645, endtime: 40949146, seqnum: 0, connid: 0 98 12:53:58,7760933 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54876 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40948647, endtime: 40949146, seqnum: 0, connid: 0 98 12:53:58,7760994 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54876 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40948648, endtime: 40949146, seqnum: 0, connid: 0 98 12:53:58,7761063 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54876 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40948648, endtime: 40949146, seqnum: 0, connid: 0 98 12:53:58,7761122 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54876 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40948649, endtime: 40949146, seqnum: 0, connid: 0 98 12:53:58,7761191 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54876 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40948650, endtime: 40949146, seqnum: 0, connid: 0 98 12:53:58,7761252 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54876 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40948651, endtime: 40949146, seqnum: 0, connid: 0 98 12:53:58,7761543 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54876 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40948652, endtime: 40949146, seqnum: 0, connid: 0 98 12:53:58,7761606 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54876 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40948653, endtime: 40949146, seqnum: 0, connid: 0 98 12:53:58,7761678 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54876 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40948653, endtime: 40949146, seqnum: 0, connid: 0 98 12:53:58,7761737 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54876 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40948654, endtime: 40949146, seqnum: 0, connid: 0 98 12:53:58,8330028 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54903 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40948360, endtime: 40949152, seqnum: 0, connid: 0 98 12:53:58,8330217 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54903 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40948362, endtime: 40949152, seqnum: 0, connid: 0 98 12:53:58,8330319 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54903 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40948363, endtime: 40949152, seqnum: 0, connid: 0 98 12:53:58,8330394 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54903 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40948364, endtime: 40949152, seqnum: 0, connid: 0 98 12:53:58,8330472 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54903 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40948364, endtime: 40949152, seqnum: 0, connid: 0 98 12:53:58,8330536 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54903 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40948365, endtime: 40949152, seqnum: 0, connid: 0 98 12:53:58,8330610 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54903 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40948366, endtime: 40949152, seqnum: 0, connid: 0 98 12:53:58,8330674 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54903 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40948367, endtime: 40949152, seqnum: 0, connid: 0 98 12:53:58,8330746 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54903 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40948367, endtime: 40949152, seqnum: 0, connid: 0 98 12:53:58,8331037 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54903 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40948368, endtime: 40949152, seqnum: 0, connid: 0 98 12:53:58,8331115 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54903 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40948368, endtime: 40949152, seqnum: 0, connid: 0 98 12:53:58,8331176 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54903 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40948370, endtime: 40949152, seqnum: 0, connid: 0 98 12:53:58,8331250 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54903 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40948371, endtime: 40949152, seqnum: 0, connid: 0 98 12:54:01,2188181 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54900 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40949145, endtime: 40949390, seqnum: 0, connid: 0 98 12:54:01,2188344 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54900 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40949148, endtime: 40949390, seqnum: 0, connid: 0 98 12:54:01,2188416 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54900 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40949149, endtime: 40949390, seqnum: 0, connid: 0 98 12:54:01,2188488 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54900 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40949150, endtime: 40949390, seqnum: 0, connid: 0 98 12:54:01,2188544 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54900 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40949150, endtime: 40949390, seqnum: 0, connid: 0 98 12:54:01,2188607 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54900 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40949157, endtime: 40949390, seqnum: 0, connid: 0 98 12:54:01,2188663 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54900 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40949164, endtime: 40949390, seqnum: 0, connid: 0 98 12:54:01,2188729 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54900 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40949167, endtime: 40949390, seqnum: 0, connid: 0 98 12:54:01,2188782 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54900 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40949174, endtime: 40949390, seqnum: 0, connid: 0 98 12:54:01,2189087 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54900 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40949177, endtime: 40949391, seqnum: 0, connid: 0 98 12:54:01,2189145 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54900 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40949177, endtime: 40949391, seqnum: 0, connid: 0 98 12:54:01,2189211 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54900 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40949184, endtime: 40949391, seqnum: 0, connid: 0 98 12:54:01,2189267 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54900 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40949184, endtime: 40949391, seqnum: 0, connid: 0 98 12:54:01,4220151 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54904 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40948459, endtime: 40949411, seqnum: 0, connid: 0 98 12:54:01,4220315 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54904 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40948460, endtime: 40949411, seqnum: 0, connid: 0 98 12:54:01,4220398 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54904 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40948460, endtime: 40949411, seqnum: 0, connid: 0 98 12:54:01,4220459 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54904 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40948461, endtime: 40949411, seqnum: 0, connid: 0 98 12:54:01,4220528 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54904 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40948462, endtime: 40949411, seqnum: 0, connid: 0 98 12:54:01,4220584 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54904 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40948463, endtime: 40949411, seqnum: 0, connid: 0 98 12:54:01,4220647 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54904 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40948464, endtime: 40949411, seqnum: 0, connid: 0 98 12:54:01,4220700 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54904 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40948465, endtime: 40949411, seqnum: 0, connid: 0 98 12:54:01,4220764 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54904 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40948466, endtime: 40949411, seqnum: 0, connid: 0 98 12:54:01,4221052 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54904 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40948466, endtime: 40949411, seqnum: 0, connid: 0 98 12:54:01,4221118 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54904 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40948467, endtime: 40949411, seqnum: 0, connid: 0 98 12:54:01,4222412 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54904 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40948468, endtime: 40949411, seqnum: 0, connid: 0 98 12:54:01,4222501 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54904 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40948469, endtime: 40949411, seqnum: 0, connid: 0 98 12:54:02,4907034 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54877 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40948964, endtime: 40949518, seqnum: 0, connid: 0 98 12:54:02,4907195 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54877 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40948965, endtime: 40949518, seqnum: 0, connid: 0 98 12:54:02,4907270 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54877 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40948965, endtime: 40949518, seqnum: 0, connid: 0 98 12:54:02,4907342 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54877 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40948966, endtime: 40949518, seqnum: 0, connid: 0 98 12:54:02,4907403 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54877 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40948966, endtime: 40949518, seqnum: 0, connid: 0 98 12:54:02,4907472 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54877 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40948967, endtime: 40949518, seqnum: 0, connid: 0 98 12:54:02,4907527 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54877 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40948967, endtime: 40949518, seqnum: 0, connid: 0 98 12:54:02,4907591 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54877 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40948968, endtime: 40949518, seqnum: 0, connid: 0 98 12:54:02,4907649 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54877 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40948969, endtime: 40949518, seqnum: 0, connid: 0 98 12:54:02,4907946 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54877 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40948969, endtime: 40949518, seqnum: 0, connid: 0 98 12:54:02,4908004 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54877 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40948970, endtime: 40949518, seqnum: 0, connid: 0 98 12:54:02,4908070 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54877 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40948970, endtime: 40949518, seqnum: 0, connid: 0 98 12:54:02,4908123 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54877 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40948971, endtime: 40949518, seqnum: 0, connid: 0 98 12:54:02,9803936 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54903 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40949164, endtime: 40949567, seqnum: 0, connid: 0 98 12:54:02,9804133 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54903 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40949167, endtime: 40949567, seqnum: 0, connid: 0 98 12:54:02,9804213 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54903 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40949174, endtime: 40949567, seqnum: 0, connid: 0 98 12:54:02,9804291 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54903 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40949177, endtime: 40949567, seqnum: 0, connid: 0 98 12:54:02,9804355 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54903 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40949177, endtime: 40949567, seqnum: 0, connid: 0 98 12:54:02,9804548 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54903 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40949184, endtime: 40949567, seqnum: 0, connid: 0 98 12:54:02,9804629 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54903 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40949184, endtime: 40949567, seqnum: 0, connid: 0 98 12:54:02,9804704 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54903 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40949185, endtime: 40949567, seqnum: 0, connid: 0 98 12:54:02,9804767 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54903 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40949188, endtime: 40949567, seqnum: 0, connid: 0 98 12:54:02,9805111 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54903 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40949193, endtime: 40949567, seqnum: 0, connid: 0 98 12:54:02,9805172 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54903 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40949193, endtime: 40949567, seqnum: 0, connid: 0 98 12:54:02,9805241 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54903 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40949194, endtime: 40949567, seqnum: 0, connid: 0 98 12:54:02,9805299 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54903 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40949194, endtime: 40949567, seqnum: 0, connid: 0 98 12:54:03,2608849 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54905 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40948957, endtime: 40949595, seqnum: 0, connid: 0 98 12:54:03,2609010 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54905 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40948957, endtime: 40949595, seqnum: 0, connid: 0 98 12:54:03,2609082 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54905 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40948958, endtime: 40949595, seqnum: 0, connid: 0 98 12:54:03,2609154 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54905 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40948958, endtime: 40949595, seqnum: 0, connid: 0 98 12:54:03,2609209 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54905 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40948959, endtime: 40949595, seqnum: 0, connid: 0 98 12:54:03,2609276 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54905 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40948959, endtime: 40949595, seqnum: 0, connid: 0 98 12:54:03,2609328 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54905 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40948960, endtime: 40949595, seqnum: 0, connid: 0 98 12:54:03,2609395 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54905 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40948961, endtime: 40949595, seqnum: 0, connid: 0 98 12:54:03,2609447 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54905 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40948961, endtime: 40949595, seqnum: 0, connid: 0 98 12:54:03,2609735 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54905 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40948962, endtime: 40949595, seqnum: 0, connid: 0 98 12:54:03,2609791 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54905 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40948962, endtime: 40949595, seqnum: 0, connid: 0 98 12:54:03,2609855 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54905 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40948963, endtime: 40949595, seqnum: 0, connid: 0 98 12:54:03,2609910 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54905 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40948964, endtime: 40949595, seqnum: 0, connid: 0 98 12:54:03,3960492 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54904 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40949411, endtime: 40949608, seqnum: 0, connid: 0 98 12:54:03,3960669 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54904 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40949412, endtime: 40949608, seqnum: 0, connid: 0 98 12:54:03,3960741 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54904 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40949412, endtime: 40949608, seqnum: 0, connid: 0 98 12:54:03,3960816 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54904 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40949413, endtime: 40949608, seqnum: 0, connid: 0 98 12:54:03,3960871 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54904 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40949414, endtime: 40949608, seqnum: 0, connid: 0 98 12:54:03,3960935 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54904 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40949414, endtime: 40949608, seqnum: 0, connid: 0 98 12:54:03,3960988 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54904 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40949415, endtime: 40949608, seqnum: 0, connid: 0 98 12:54:03,3961054 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54904 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40949415, endtime: 40949608, seqnum: 0, connid: 0 98 12:54:03,3961110 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54904 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40949416, endtime: 40949608, seqnum: 0, connid: 0 98 12:54:03,3961400 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54904 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40949417, endtime: 40949608, seqnum: 0, connid: 0 98 12:54:03,3961456 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54904 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40949417, endtime: 40949608, seqnum: 0, connid: 0 98 12:54:03,3961520 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54904 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40949418, endtime: 40949608, seqnum: 0, connid: 0 98 12:54:03,3961575 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54904 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40949418, endtime: 40949608, seqnum: 0, connid: 0 98 12:54:03,7656871 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54876 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40949148, endtime: 40949645, seqnum: 0, connid: 0 98 12:54:03,7657034 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54876 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40949149, endtime: 40949645, seqnum: 0, connid: 0 98 12:54:03,7657106 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54876 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40949150, endtime: 40949645, seqnum: 0, connid: 0 98 12:54:03,7657176 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54876 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40949150, endtime: 40949645, seqnum: 0, connid: 0 98 12:54:03,7657231 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54876 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40949157, endtime: 40949645, seqnum: 0, connid: 0 98 12:54:03,7657295 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54876 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40949164, endtime: 40949645, seqnum: 0, connid: 0 98 12:54:03,7657347 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54876 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40949167, endtime: 40949645, seqnum: 0, connid: 0 98 12:54:03,7657411 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54876 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40949174, endtime: 40949645, seqnum: 0, connid: 0 98 12:54:03,7657464 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54876 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40949177, endtime: 40949645, seqnum: 0, connid: 0 98 12:54:03,7657741 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54876 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40949177, endtime: 40949645, seqnum: 0, connid: 0 98 12:54:03,7657796 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54876 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40949184, endtime: 40949645, seqnum: 0, connid: 0 98 12:54:03,7657860 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54876 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40949184, endtime: 40949645, seqnum: 0, connid: 0 98 12:54:03,7658043 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54876 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40949185, endtime: 40949645, seqnum: 0, connid: 0 98 12:54:03,9212563 MCLauncher.exe 6080 TCP Disconnect WIN-0UOTFKKVN1S:54888 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 0, seqnum: 0, connid: 0 98 12:54:05,6547688 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54903 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40949567, endtime: 40949834, seqnum: 0, connid: 0 98 12:54:05,6547868 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54903 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40949567, endtime: 40949834, seqnum: 0, connid: 0 98 12:54:05,6547946 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54903 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40949568, endtime: 40949834, seqnum: 0, connid: 0 98 12:54:05,6548026 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54903 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40949568, endtime: 40949834, seqnum: 0, connid: 0 98 12:54:05,6548087 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54903 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40949569, endtime: 40949834, seqnum: 0, connid: 0 98 12:54:05,6548159 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54903 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40949570, endtime: 40949834, seqnum: 0, connid: 0 98 12:54:05,6548217 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54903 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40949571, endtime: 40949834, seqnum: 0, connid: 0 98 12:54:05,6548289 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54903 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40949571, endtime: 40949834, seqnum: 0, connid: 0 98 12:54:05,6548348 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54903 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40949572, endtime: 40949834, seqnum: 0, connid: 0 98 12:54:05,6548644 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54903 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40949573, endtime: 40949834, seqnum: 0, connid: 0 98 12:54:05,6548708 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54903 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40949573, endtime: 40949834, seqnum: 0, connid: 0 98 12:54:05,6548780 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54903 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40949574, endtime: 40949834, seqnum: 0, connid: 0 98 12:54:05,6548838 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54903 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40949574, endtime: 40949834, seqnum: 0, connid: 0 98 12:54:05,8186023 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54900 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40949391, endtime: 40949850, seqnum: 0, connid: 0 98 12:54:05,8186175 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54900 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40949391, endtime: 40949850, seqnum: 0, connid: 0 98 12:54:05,8186245 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54900 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40949392, endtime: 40949850, seqnum: 0, connid: 0 98 12:54:05,8186317 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54900 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40949392, endtime: 40949850, seqnum: 0, connid: 0 98 12:54:05,8186369 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54900 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40949393, endtime: 40949850, seqnum: 0, connid: 0 98 12:54:05,8186433 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54900 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40949394, endtime: 40949850, seqnum: 0, connid: 0 98 12:54:05,8186486 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54900 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40949394, endtime: 40949850, seqnum: 0, connid: 0 98 12:54:05,8186549 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54900 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40949395, endtime: 40949850, seqnum: 0, connid: 0 98 12:54:05,8186599 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54900 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40949395, endtime: 40949850, seqnum: 0, connid: 0 98 12:54:05,8186887 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54900 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40949396, endtime: 40949850, seqnum: 0, connid: 0 98 12:54:05,8186943 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54900 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40949397, endtime: 40949850, seqnum: 0, connid: 0 98 12:54:05,8187004 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54900 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40949397, endtime: 40949850, seqnum: 0, connid: 0 98 12:54:05,8187056 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54900 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40949398, endtime: 40949850, seqnum: 0, connid: 0 98 12:54:06,6922019 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54904 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40949608, endtime: 40949938, seqnum: 0, connid: 0 98 12:54:06,6922185 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54904 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40949609, endtime: 40949938, seqnum: 0, connid: 0 98 12:54:06,6922257 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54904 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40949610, endtime: 40949938, seqnum: 0, connid: 0 98 12:54:06,6922329 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54904 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40949610, endtime: 40949938, seqnum: 0, connid: 0 98 12:54:06,6922382 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54904 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40949611, endtime: 40949938, seqnum: 0, connid: 0 98 12:54:06,6922445 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54904 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40949612, endtime: 40949938, seqnum: 0, connid: 0 98 12:54:06,6922498 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54904 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40949612, endtime: 40949938, seqnum: 0, connid: 0 98 12:54:06,6922562 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54904 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40949613, endtime: 40949938, seqnum: 0, connid: 0 98 12:54:06,6922611 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54904 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40949613, endtime: 40949938, seqnum: 0, connid: 0 98 12:54:06,6922889 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54904 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40949614, endtime: 40949938, seqnum: 0, connid: 0 98 12:54:06,6922944 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54904 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40949614, endtime: 40949938, seqnum: 0, connid: 0 98 12:54:06,6923008 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54904 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40949615, endtime: 40949938, seqnum: 0, connid: 0 98 12:54:06,6923060 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54904 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40949616, endtime: 40949938, seqnum: 0, connid: 0 98 12:54:07,0105088 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54877 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40949519, endtime: 40949970, seqnum: 0, connid: 0 98 12:54:07,0105229 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54877 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40949519, endtime: 40949970, seqnum: 0, connid: 0 98 12:54:07,0105296 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54877 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40949520, endtime: 40949970, seqnum: 0, connid: 0 98 12:54:07,0105365 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54877 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40949521, endtime: 40949970, seqnum: 0, connid: 0 98 12:54:07,0105420 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54877 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40949521, endtime: 40949970, seqnum: 0, connid: 0 98 12:54:07,0105484 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54877 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40949522, endtime: 40949970, seqnum: 0, connid: 0 98 12:54:07,0105537 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54877 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40949523, endtime: 40949970, seqnum: 0, connid: 0 98 12:54:07,0105600 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54877 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40949523, endtime: 40949970, seqnum: 0, connid: 0 98 12:54:07,0105653 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54877 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40949524, endtime: 40949970, seqnum: 0, connid: 0 98 12:54:07,0106323 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54877 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40949525, endtime: 40949970, seqnum: 0, connid: 0 98 12:54:07,0106387 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54877 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40949525, endtime: 40949970, seqnum: 0, connid: 0 98 12:54:07,0106454 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54877 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40949526, endtime: 40949970, seqnum: 0, connid: 0 98 12:54:07,0107199 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54877 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40949526, endtime: 40949970, seqnum: 0, connid: 0 98 12:54:07,1716717 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54905 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40949595, endtime: 40949986, seqnum: 0, connid: 0 98 12:54:07,1717039 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54905 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40949595, endtime: 40949986, seqnum: 0, connid: 0 98 12:54:07,1717155 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54905 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40949596, endtime: 40949986, seqnum: 0, connid: 0 98 12:54:07,1717274 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54905 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40949596, endtime: 40949986, seqnum: 0, connid: 0 98 12:54:07,1717371 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54905 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40949597, endtime: 40949986, seqnum: 0, connid: 0 98 12:54:07,1717488 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54905 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40949598, endtime: 40949986, seqnum: 0, connid: 0 98 12:54:07,1717584 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54905 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40949598, endtime: 40949986, seqnum: 0, connid: 0 98 12:54:07,1717701 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54905 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40949599, endtime: 40949986, seqnum: 0, connid: 0 98 12:54:07,1717795 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54905 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40949599, endtime: 40949986, seqnum: 0, connid: 0 98 12:54:07,1718540 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54905 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40949600, endtime: 40949986, seqnum: 0, connid: 0 98 12:54:07,1718615 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54905 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40949600, endtime: 40949986, seqnum: 0, connid: 0 98 12:54:07,1718682 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54905 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40949601, endtime: 40949986, seqnum: 0, connid: 0 98 12:54:07,1719709 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54905 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40949602, endtime: 40949986, seqnum: 0, connid: 0 98 12:54:08,1237615 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54876 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40949645, endtime: 40950081, seqnum: 0, connid: 0 98 12:54:08,1237793 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54876 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40949646, endtime: 40950081, seqnum: 0, connid: 0 98 12:54:08,1237873 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54876 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40949646, endtime: 40950081, seqnum: 0, connid: 0 98 12:54:08,1237953 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54876 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40949647, endtime: 40950081, seqnum: 0, connid: 0 98 12:54:08,1238014 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54876 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40949648, endtime: 40950081, seqnum: 0, connid: 0 98 12:54:08,1238086 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54876 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40949648, endtime: 40950081, seqnum: 0, connid: 0 98 12:54:08,1238145 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54876 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40949649, endtime: 40950081, seqnum: 0, connid: 0 98 12:54:08,1238217 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54876 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40949650, endtime: 40950081, seqnum: 0, connid: 0 98 12:54:08,1238272 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54876 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40949651, endtime: 40950081, seqnum: 0, connid: 0 98 12:54:08,1238552 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54876 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40949651, endtime: 40950081, seqnum: 0, connid: 0 98 12:54:08,1238616 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54876 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40949652, endtime: 40950081, seqnum: 0, connid: 0 98 12:54:08,1238685 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54876 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40949652, endtime: 40950081, seqnum: 0, connid: 0 98 12:54:08,1238743 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54876 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40949653, endtime: 40950081, seqnum: 0, connid: 0 98 12:54:08,3683075 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54904 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40949938, endtime: 40950105, seqnum: 0, connid: 0 98 12:54:08,3683233 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54904 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40949938, endtime: 40950105, seqnum: 0, connid: 0 98 12:54:08,3683303 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54904 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40949939, endtime: 40950105, seqnum: 0, connid: 0 98 12:54:08,3683375 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54904 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40949940, endtime: 40950105, seqnum: 0, connid: 0 98 12:54:08,3683430 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54904 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40949940, endtime: 40950105, seqnum: 0, connid: 0 98 12:54:08,3683499 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54904 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40949941, endtime: 40950105, seqnum: 0, connid: 0 98 12:54:08,3683552 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54904 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40949941, endtime: 40950105, seqnum: 0, connid: 0 98 12:54:08,3683621 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54904 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40949942, endtime: 40950105, seqnum: 0, connid: 0 98 12:54:08,3683674 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54904 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40949943, endtime: 40950105, seqnum: 0, connid: 0 98 12:54:08,3683957 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54904 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40949943, endtime: 40950105, seqnum: 0, connid: 0 98 12:54:08,3684012 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54904 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40949944, endtime: 40950105, seqnum: 0, connid: 0 98 12:54:08,3688132 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54904 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40949944, endtime: 40950105, seqnum: 0, connid: 0 98 12:54:08,3688254 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54904 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40949945, endtime: 40950105, seqnum: 0, connid: 0 98 12:54:08,8629108 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54900 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40949850, endtime: 40950155, seqnum: 0, connid: 0 98 12:54:08,8629274 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54900 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40949851, endtime: 40950155, seqnum: 0, connid: 0 98 12:54:08,8629352 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54900 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40949852, endtime: 40950155, seqnum: 0, connid: 0 98 12:54:08,8629429 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54900 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40949852, endtime: 40950155, seqnum: 0, connid: 0 98 12:54:08,8629490 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54900 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40949853, endtime: 40950155, seqnum: 0, connid: 0 98 12:54:08,8629562 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54900 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40949853, endtime: 40950155, seqnum: 0, connid: 0 98 12:54:08,8629620 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54900 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40949854, endtime: 40950155, seqnum: 0, connid: 0 98 12:54:08,8629692 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54900 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40949854, endtime: 40950155, seqnum: 0, connid: 0 98 12:54:08,8629751 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54900 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40949855, endtime: 40950155, seqnum: 0, connid: 0 98 12:54:08,8630050 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54900 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40949855, endtime: 40950155, seqnum: 0, connid: 0 98 12:54:08,8630111 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54900 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40949856, endtime: 40950155, seqnum: 0, connid: 0 98 12:54:08,8630183 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54900 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40949857, endtime: 40950155, seqnum: 0, connid: 0 98 12:54:08,8630363 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54900 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40949857, endtime: 40950155, seqnum: 0, connid: 0 98 12:54:08,8769229 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54876 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40950081, endtime: 40950156, seqnum: 0, connid: 0 98 12:54:09,9770163 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54877 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40949970, endtime: 40950266, seqnum: 0, connid: 0 98 12:54:09,9770357 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54877 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40949970, endtime: 40950266, seqnum: 0, connid: 0 98 12:54:09,9770437 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54877 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40949971, endtime: 40950266, seqnum: 0, connid: 0 98 12:54:09,9770518 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54877 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40949971, endtime: 40950266, seqnum: 0, connid: 0 98 12:54:09,9770581 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54877 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40949972, endtime: 40950266, seqnum: 0, connid: 0 98 12:54:09,9770653 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54877 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40949972, endtime: 40950266, seqnum: 0, connid: 0 98 12:54:09,9770712 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54877 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40949973, endtime: 40950266, seqnum: 0, connid: 0 98 12:54:09,9770784 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54877 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40949974, endtime: 40950266, seqnum: 0, connid: 0 98 12:54:09,9770842 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54877 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40949974, endtime: 40950266, seqnum: 0, connid: 0 98 12:54:09,9771548 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54877 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40949975, endtime: 40950266, seqnum: 0, connid: 0 98 12:54:09,9771640 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54877 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40949975, endtime: 40950266, seqnum: 0, connid: 0 98 12:54:09,9771715 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54877 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40949976, endtime: 40950266, seqnum: 0, connid: 0 98 12:54:10,1930840 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54877 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40949976, endtime: 40950288, seqnum: 0, connid: 0 98 12:54:10,8628279 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54904 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40950105, endtime: 40950355, seqnum: 0, connid: 0 98 12:54:10,8628465 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54904 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40950106, endtime: 40950355, seqnum: 0, connid: 0 98 12:54:10,8628537 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54904 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40950107, endtime: 40950355, seqnum: 0, connid: 0 98 12:54:10,8628612 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54904 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40950107, endtime: 40950355, seqnum: 0, connid: 0 98 12:54:10,8628670 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54904 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40950108, endtime: 40950355, seqnum: 0, connid: 0 98 12:54:10,8628736 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54904 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40950108, endtime: 40950355, seqnum: 0, connid: 0 98 12:54:10,8628792 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54904 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40950109, endtime: 40950355, seqnum: 0, connid: 0 98 12:54:10,8628856 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54904 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40950110, endtime: 40950355, seqnum: 0, connid: 0 98 12:54:10,8628914 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54904 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40950110, endtime: 40950355, seqnum: 0, connid: 0 98 12:54:10,8629246 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54904 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40950111, endtime: 40950355, seqnum: 0, connid: 0 98 12:54:10,8629307 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54904 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40950111, endtime: 40950355, seqnum: 0, connid: 0 98 12:54:10,8629371 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54904 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40950116, endtime: 40950355, seqnum: 0, connid: 0 98 12:54:10,8629426 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54904 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40950124, endtime: 40950355, seqnum: 0, connid: 0 98 12:54:10,8629532 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54903 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40949834, endtime: 40950355, seqnum: 0, connid: 0 98 12:54:10,8629587 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54903 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40949835, endtime: 40950355, seqnum: 0, connid: 0 98 12:54:10,8629656 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54903 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40949835, endtime: 40950355, seqnum: 0, connid: 0 98 12:54:10,8629709 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54903 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40949836, endtime: 40950355, seqnum: 0, connid: 0 98 12:54:10,8629773 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54903 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40949836, endtime: 40950355, seqnum: 0, connid: 0 98 12:54:10,8629828 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54903 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40949837, endtime: 40950355, seqnum: 0, connid: 0 98 12:54:10,8630374 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54903 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40949838, endtime: 40950355, seqnum: 0, connid: 0 98 12:54:10,8630440 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54903 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40949838, endtime: 40950355, seqnum: 0, connid: 0 98 12:54:10,8630507 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54903 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40949839, endtime: 40950355, seqnum: 0, connid: 0 98 12:54:10,8630573 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54903 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40949839, endtime: 40950355, seqnum: 0, connid: 0 98 12:54:10,8630626 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54903 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40949840, endtime: 40950355, seqnum: 0, connid: 0 98 12:54:10,8630690 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54903 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40949840, endtime: 40950355, seqnum: 0, connid: 0 98 12:54:10,8630745 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54903 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40949841, endtime: 40950355, seqnum: 0, connid: 0 98 12:54:11,9405458 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54876 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40950082, endtime: 40950463, seqnum: 0, connid: 0 98 12:54:11,9405613 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54876 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40950082, endtime: 40950463, seqnum: 0, connid: 0 98 12:54:11,9405699 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54876 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40950083, endtime: 40950463, seqnum: 0, connid: 0 98 12:54:11,9405760 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54876 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40950083, endtime: 40950463, seqnum: 0, connid: 0 98 12:54:11,9405829 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54876 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40950084, endtime: 40950463, seqnum: 0, connid: 0 98 12:54:11,9405881 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54876 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40950085, endtime: 40950463, seqnum: 0, connid: 0 98 12:54:11,9405948 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54876 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40950085, endtime: 40950463, seqnum: 0, connid: 0 98 12:54:11,9406001 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54876 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40950086, endtime: 40950463, seqnum: 0, connid: 0 98 12:54:11,9406067 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54876 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40950087, endtime: 40950463, seqnum: 0, connid: 0 98 12:54:11,9406613 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54876 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40950088, endtime: 40950463, seqnum: 0, connid: 0 98 12:54:11,9406693 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54876 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40950088, endtime: 40950463, seqnum: 0, connid: 0 98 12:54:11,9406746 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54876 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40950089, endtime: 40950463, seqnum: 0, connid: 0 98 12:54:12,1520706 MCLauncher.exe 6080 RegOpenKey HKCU SUCCESS Desired Access: Read 98 12:54:12,1520969 MCLauncher.exe 6080 RegQueryKey HKCU SUCCESS Query: HandleTags, HandleTags: 0x0 98 12:54:12,1521077 MCLauncher.exe 6080 RegQueryKey HKCU SUCCESS Query: Name 98 12:54:12,1521185 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Microsoft\CTF\DirectSwitchHotkeys SUCCESS Desired Access: Read 98 12:54:12,1521368 MCLauncher.exe 6080 RegSetInfoKey HKCU\SOFTWARE\Microsoft\CTF\DirectSwitchHotkeys SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 98 12:54:12,1521476 MCLauncher.exe 6080 RegCloseKey HKCU SUCCESS 98 12:54:12,1521570 MCLauncher.exe 6080 RegEnumKey HKCU\SOFTWARE\Microsoft\CTF\DirectSwitchHotkeys NO MORE ENTRIES Index: 0, Length: 288 98 12:54:12,1521653 MCLauncher.exe 6080 RegCloseKey HKCU\SOFTWARE\Microsoft\CTF\DirectSwitchHotkeys SUCCESS 98 12:54:12,6041235 MCLauncher.exe 6080 ReadFile C:\Windows\SysWOW64\imm32.dll SUCCESS Offset: 41 984, Length: 28 672, I/O Flags: Non-cached, Paging I/O, Synchronous Paging I/O, Priority: Normal 98 12:54:12,6756372 MCLauncher.exe 6080 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 98 12:54:12,6756516 MCLauncher.exe 6080 RegQueryKey HKLM SUCCESS Query: Name 98 12:54:12,6756663 MCLauncher.exe 6080 RegOpenKey HKLM\SOFTWARE\WOW6432Node\Microsoft\CTF\KnownClasses NAME NOT FOUND Desired Access: Read 98 12:54:12,6770560 MCLauncher.exe 6080 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 98 12:54:12,6770699 MCLauncher.exe 6080 RegQueryKey HKLM SUCCESS Query: Name 98 12:54:12,6770843 MCLauncher.exe 6080 RegOpenKey HKLM\SOFTWARE\WOW6432Node\Microsoft\CTF\TIP\ REPARSE Desired Access: Read 98 12:54:12,6771065 MCLauncher.exe 6080 RegOpenKey HKLM\SOFTWARE\Microsoft\CTF\TIP SUCCESS Desired Access: Read 98 12:54:12,6771217 MCLauncher.exe 6080 RegSetInfoKey HKLM\SOFTWARE\Microsoft\CTF\TIP SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 98 12:54:12,6771303 MCLauncher.exe 6080 RegEnumKey HKLM\SOFTWARE\Microsoft\CTF\TIP SUCCESS Index: 0, Name: {0000897b-83df-4b96-be07-0fb58b01c4a4} 98 12:54:12,6771494 MCLauncher.exe 6080 RegQueryKey HKLM\SOFTWARE\Microsoft\CTF\TIP SUCCESS Query: HandleTags, HandleTags: 0x400 98 12:54:12,6771574 MCLauncher.exe 6080 RegOpenKey HKLM\SOFTWARE\Microsoft\CTF\TIP\{0000897b-83df-4b96-be07-0fb58b01c4a4}\Category\Item\{A48FA74E-F767-44E4-BFBC-169E8B38FF58} NAME NOT FOUND Desired Access: Read 98 12:54:12,6771694 MCLauncher.exe 6080 RegEnumKey HKLM\SOFTWARE\Microsoft\CTF\TIP SUCCESS Index: 1, Name: {03b5835f-f03c-411b-9ce2-aa23e1171e36} 98 12:54:12,6771785 MCLauncher.exe 6080 RegQueryKey HKLM\SOFTWARE\Microsoft\CTF\TIP SUCCESS Query: HandleTags, HandleTags: 0x400 98 12:54:12,6771851 MCLauncher.exe 6080 RegOpenKey HKLM\SOFTWARE\Microsoft\CTF\TIP\{03b5835f-f03c-411b-9ce2-aa23e1171e36}\Category\Item\{A48FA74E-F767-44E4-BFBC-169E8B38FF58} NAME NOT FOUND Desired Access: Read 98 12:54:12,6771965 MCLauncher.exe 6080 RegEnumKey HKLM\SOFTWARE\Microsoft\CTF\TIP SUCCESS Index: 2, Name: {07EB03D6-B001-41DF-9192-BF9B841EE71F} 98 12:54:12,6772051 MCLauncher.exe 6080 RegQueryKey HKLM\SOFTWARE\Microsoft\CTF\TIP SUCCESS Query: HandleTags, HandleTags: 0x400 98 12:54:12,6772115 MCLauncher.exe 6080 RegOpenKey HKLM\SOFTWARE\Microsoft\CTF\TIP\{07EB03D6-B001-41DF-9192-BF9B841EE71F}\Category\Item\{A48FA74E-F767-44E4-BFBC-169E8B38FF58} NAME NOT FOUND Desired Access: Read 98 12:54:12,6772231 MCLauncher.exe 6080 RegEnumKey HKLM\SOFTWARE\Microsoft\CTF\TIP SUCCESS Index: 3, Name: {531fdebf-9b4c-4a43-a2aa-960e8fcdc732} 98 12:54:12,6772317 MCLauncher.exe 6080 RegQueryKey HKLM\SOFTWARE\Microsoft\CTF\TIP SUCCESS Query: HandleTags, HandleTags: 0x400 98 12:54:12,6772378 MCLauncher.exe 6080 RegOpenKey HKLM\SOFTWARE\Microsoft\CTF\TIP\{531fdebf-9b4c-4a43-a2aa-960e8fcdc732}\Category\Item\{A48FA74E-F767-44E4-BFBC-169E8B38FF58} NAME NOT FOUND Desired Access: Read 98 12:54:12,6772478 MCLauncher.exe 6080 RegEnumKey HKLM\SOFTWARE\Microsoft\CTF\TIP SUCCESS Index: 4, Name: {6a498709-e00b-4c45-a018-8f9e4081ae40} 98 12:54:12,6772561 MCLauncher.exe 6080 RegQueryKey HKLM\SOFTWARE\Microsoft\CTF\TIP SUCCESS Query: HandleTags, HandleTags: 0x400 98 12:54:12,6772624 MCLauncher.exe 6080 RegOpenKey HKLM\SOFTWARE\Microsoft\CTF\TIP\{6a498709-e00b-4c45-a018-8f9e4081ae40}\Category\Item\{A48FA74E-F767-44E4-BFBC-169E8B38FF58} NAME NOT FOUND Desired Access: Read 98 12:54:12,6772738 MCLauncher.exe 6080 RegEnumKey HKLM\SOFTWARE\Microsoft\CTF\TIP SUCCESS Index: 5, Name: {78CB5B0E-26ED-4FCC-854C-77E8F3D1AA80} 98 12:54:12,6772818 MCLauncher.exe 6080 RegQueryKey HKLM\SOFTWARE\Microsoft\CTF\TIP SUCCESS Query: HandleTags, HandleTags: 0x400 98 12:54:12,6772879 MCLauncher.exe 6080 RegOpenKey HKLM\SOFTWARE\Microsoft\CTF\TIP\{78CB5B0E-26ED-4FCC-854C-77E8F3D1AA80}\Category\Item\{A48FA74E-F767-44E4-BFBC-169E8B38FF58} NAME NOT FOUND Desired Access: Read 98 12:54:12,6772974 MCLauncher.exe 6080 RegEnumKey HKLM\SOFTWARE\Microsoft\CTF\TIP SUCCESS Index: 6, Name: {81d4e9c9-1d3b-41bc-9e6c-4b40bf79e35e} 98 12:54:12,6773057 MCLauncher.exe 6080 RegQueryKey HKLM\SOFTWARE\Microsoft\CTF\TIP SUCCESS Query: HandleTags, HandleTags: 0x400 98 12:54:12,6773120 MCLauncher.exe 6080 RegOpenKey HKLM\SOFTWARE\Microsoft\CTF\TIP\{81d4e9c9-1d3b-41bc-9e6c-4b40bf79e35e}\Category\Item\{A48FA74E-F767-44E4-BFBC-169E8B38FF58} NAME NOT FOUND Desired Access: Read 98 12:54:12,6773226 MCLauncher.exe 6080 RegEnumKey HKLM\SOFTWARE\Microsoft\CTF\TIP SUCCESS Index: 7, Name: {8613E14C-D0C0-4161-AC0F-1DD2563286BC} 98 12:54:12,6773314 MCLauncher.exe 6080 RegQueryKey HKLM\SOFTWARE\Microsoft\CTF\TIP SUCCESS Query: HandleTags, HandleTags: 0x400 98 12:54:12,6773372 MCLauncher.exe 6080 RegOpenKey HKLM\SOFTWARE\Microsoft\CTF\TIP\{8613E14C-D0C0-4161-AC0F-1DD2563286BC}\Category\Item\{A48FA74E-F767-44E4-BFBC-169E8B38FF58} NAME NOT FOUND Desired Access: Read 98 12:54:12,6773469 MCLauncher.exe 6080 RegEnumKey HKLM\SOFTWARE\Microsoft\CTF\TIP SUCCESS Index: 8, Name: {a028ae76-01b1-46c2-99c4-acd9858ae02f} 98 12:54:12,6773555 MCLauncher.exe 6080 RegQueryKey HKLM\SOFTWARE\Microsoft\CTF\TIP SUCCESS Query: HandleTags, HandleTags: 0x400 98 12:54:12,6773616 MCLauncher.exe 6080 RegOpenKey HKLM\SOFTWARE\Microsoft\CTF\TIP\{a028ae76-01b1-46c2-99c4-acd9858ae02f}\Category\Item\{A48FA74E-F767-44E4-BFBC-169E8B38FF58} NAME NOT FOUND Desired Access: Read 98 12:54:12,6773727 MCLauncher.exe 6080 RegEnumKey HKLM\SOFTWARE\Microsoft\CTF\TIP SUCCESS Index: 9, Name: {a1e2b86b-924a-4d43-80f6-8a820df7190f} 98 12:54:12,6773807 MCLauncher.exe 6080 RegQueryKey HKLM\SOFTWARE\Microsoft\CTF\TIP SUCCESS Query: HandleTags, HandleTags: 0x400 98 12:54:12,6773871 MCLauncher.exe 6080 RegOpenKey HKLM\SOFTWARE\Microsoft\CTF\TIP\{a1e2b86b-924a-4d43-80f6-8a820df7190f}\Category\Item\{A48FA74E-F767-44E4-BFBC-169E8B38FF58} NAME NOT FOUND Desired Access: Read 98 12:54:12,6773957 MCLauncher.exe 6080 RegEnumKey HKLM\SOFTWARE\Microsoft\CTF\TIP SUCCESS Index: 10, Name: {AE6BE008-07FB-400D-8BEB-337A64F7051F} 98 12:54:12,6774037 MCLauncher.exe 6080 RegQueryKey HKLM\SOFTWARE\Microsoft\CTF\TIP SUCCESS Query: HandleTags, HandleTags: 0x400 98 12:54:12,6774098 MCLauncher.exe 6080 RegOpenKey HKLM\SOFTWARE\Microsoft\CTF\TIP\{AE6BE008-07FB-400D-8BEB-337A64F7051F}\Category\Item\{A48FA74E-F767-44E4-BFBC-169E8B38FF58} NAME NOT FOUND Desired Access: Read 98 12:54:12,6774190 MCLauncher.exe 6080 RegEnumKey HKLM\SOFTWARE\Microsoft\CTF\TIP SUCCESS Index: 11, Name: {B115690A-EA02-48D5-A231-E3578D2FDF80} 98 12:54:12,6774273 MCLauncher.exe 6080 RegQueryKey HKLM\SOFTWARE\Microsoft\CTF\TIP SUCCESS Query: HandleTags, HandleTags: 0x400 98 12:54:12,6774334 MCLauncher.exe 6080 RegOpenKey HKLM\SOFTWARE\Microsoft\CTF\TIP\{B115690A-EA02-48D5-A231-E3578D2FDF80}\Category\Item\{A48FA74E-F767-44E4-BFBC-169E8B38FF58} NAME NOT FOUND Desired Access: Read 98 12:54:12,6774431 MCLauncher.exe 6080 RegEnumKey HKLM\SOFTWARE\Microsoft\CTF\TIP SUCCESS Index: 12, Name: {C1EE01F2-B3B6-4A6A-9DDD-E988C088EC82} 98 12:54:12,6774514 MCLauncher.exe 6080 RegQueryKey HKLM\SOFTWARE\Microsoft\CTF\TIP SUCCESS Query: HandleTags, HandleTags: 0x400 98 12:54:12,6774575 MCLauncher.exe 6080 RegOpenKey HKLM\SOFTWARE\Microsoft\CTF\TIP\{C1EE01F2-B3B6-4A6A-9DDD-E988C088EC82}\Category\Item\{A48FA74E-F767-44E4-BFBC-169E8B38FF58} SUCCESS Desired Access: Read 98 12:54:12,6774716 MCLauncher.exe 6080 RegEnumKey HKLM\SOFTWARE\Microsoft\CTF\TIP\{C1EE01F2-B3B6-4A6A-9DDD-E988C088EC82}\Category\Item\{A48FA74E-F767-44E4-BFBC-169E8B38FF58} SUCCESS Index: 0, Name: {85F9794B-4D19-40D8-8864-4E747371A66D} 98 12:54:12,6774785 MCLauncher.exe 6080 RegEnumKey HKLM\SOFTWARE\Microsoft\CTF\TIP\{C1EE01F2-B3B6-4A6A-9DDD-E988C088EC82}\Category\Item\{A48FA74E-F767-44E4-BFBC-169E8B38FF58} NO MORE ENTRIES Index: 1, Length: 288 98 12:54:12,6775024 MCLauncher.exe 6080 RegCloseKey HKLM\SOFTWARE\Microsoft\CTF\TIP\{C1EE01F2-B3B6-4A6A-9DDD-E988C088EC82}\Category\Item\{A48FA74E-F767-44E4-BFBC-169E8B38FF58} SUCCESS 98 12:54:12,6775112 MCLauncher.exe 6080 RegEnumKey HKLM\SOFTWARE\Microsoft\CTF\TIP SUCCESS Index: 13, Name: {DCBD6FA8-032F-11D3-B5B1-00C04FC324A1} 98 12:54:12,6775226 MCLauncher.exe 6080 RegQueryKey HKLM\SOFTWARE\Microsoft\CTF\TIP SUCCESS Query: HandleTags, HandleTags: 0x400 98 12:54:12,6775298 MCLauncher.exe 6080 RegOpenKey HKLM\SOFTWARE\Microsoft\CTF\TIP\{DCBD6FA8-032F-11D3-B5B1-00C04FC324A1}\Category\Item\{A48FA74E-F767-44E4-BFBC-169E8B38FF58} NAME NOT FOUND Desired Access: Read 98 12:54:12,6775880 MCLauncher.exe 6080 RegEnumKey HKLM\SOFTWARE\Microsoft\CTF\TIP SUCCESS Index: 14, Name: {E429B25A-E5D3-4D1F-9BE3-0C608477E3A1} 98 12:54:12,6776029 MCLauncher.exe 6080 RegQueryKey HKLM\SOFTWARE\Microsoft\CTF\TIP SUCCESS Query: HandleTags, HandleTags: 0x400 98 12:54:12,6776101 MCLauncher.exe 6080 RegOpenKey HKLM\SOFTWARE\Microsoft\CTF\TIP\{E429B25A-E5D3-4D1F-9BE3-0C608477E3A1}\Category\Item\{A48FA74E-F767-44E4-BFBC-169E8B38FF58} NAME NOT FOUND Desired Access: Read 98 12:54:12,6776226 MCLauncher.exe 6080 RegEnumKey HKLM\SOFTWARE\Microsoft\CTF\TIP SUCCESS Index: 15, Name: {F25E9F57-2FC8-4EB3-A41A-CCE5F08541E6} 98 12:54:12,6776312 MCLauncher.exe 6080 RegQueryKey HKLM\SOFTWARE\Microsoft\CTF\TIP SUCCESS Query: HandleTags, HandleTags: 0x400 98 12:54:12,6776376 MCLauncher.exe 6080 RegOpenKey HKLM\SOFTWARE\Microsoft\CTF\TIP\{F25E9F57-2FC8-4EB3-A41A-CCE5F08541E6}\Category\Item\{A48FA74E-F767-44E4-BFBC-169E8B38FF58} NAME NOT FOUND Desired Access: Read 98 12:54:12,6776487 MCLauncher.exe 6080 RegEnumKey HKLM\SOFTWARE\Microsoft\CTF\TIP SUCCESS Index: 16, Name: {F89E9E58-BD2F-4008-9AC2-0F816C09F4EE} 98 12:54:12,6776567 MCLauncher.exe 6080 RegQueryKey HKLM\SOFTWARE\Microsoft\CTF\TIP SUCCESS Query: HandleTags, HandleTags: 0x400 98 12:54:12,6776628 MCLauncher.exe 6080 RegOpenKey HKLM\SOFTWARE\Microsoft\CTF\TIP\{F89E9E58-BD2F-4008-9AC2-0F816C09F4EE}\Category\Item\{A48FA74E-F767-44E4-BFBC-169E8B38FF58} NAME NOT FOUND Desired Access: Read 98 12:54:12,6776722 MCLauncher.exe 6080 RegEnumKey HKLM\SOFTWARE\Microsoft\CTF\TIP SUCCESS Index: 17, Name: {FA445657-9379-11D6-B41A-00065B83EE53} 98 12:54:12,6776802 MCLauncher.exe 6080 RegQueryKey HKLM\SOFTWARE\Microsoft\CTF\TIP SUCCESS Query: HandleTags, HandleTags: 0x400 98 12:54:12,6776863 MCLauncher.exe 6080 RegOpenKey HKLM\SOFTWARE\Microsoft\CTF\TIP\{FA445657-9379-11D6-B41A-00065B83EE53}\Category\Item\{A48FA74E-F767-44E4-BFBC-169E8B38FF58} NAME NOT FOUND Desired Access: Read 98 12:54:12,6776966 MCLauncher.exe 6080 RegEnumKey HKLM\SOFTWARE\Microsoft\CTF\TIP NO MORE ENTRIES Index: 18, Length: 288 98 12:54:12,6777055 MCLauncher.exe 6080 RegCloseKey HKLM\SOFTWARE\Microsoft\CTF\TIP SUCCESS 98 12:54:12,6777570 MCLauncher.exe 6080 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 98 12:54:12,6777667 MCLauncher.exe 6080 RegQueryKey HKLM SUCCESS Query: Name 98 12:54:12,6777772 MCLauncher.exe 6080 RegOpenKey HKLM\SOFTWARE\WOW6432Node\Microsoft\CTF\TIP\ REPARSE Desired Access: Read 98 12:54:12,6777861 MCLauncher.exe 6080 RegOpenKey HKLM\SOFTWARE\Microsoft\CTF\TIP SUCCESS Desired Access: Read 98 12:54:12,6777991 MCLauncher.exe 6080 RegSetInfoKey HKLM\SOFTWARE\Microsoft\CTF\TIP SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 98 12:54:12,6778057 MCLauncher.exe 6080 RegEnumKey HKLM\SOFTWARE\Microsoft\CTF\TIP SUCCESS Index: 0, Name: {0000897b-83df-4b96-be07-0fb58b01c4a4} 98 12:54:12,6778163 MCLauncher.exe 6080 RegQueryKey HKLM\SOFTWARE\Microsoft\CTF\TIP SUCCESS Query: HandleTags, HandleTags: 0x400 98 12:54:12,6778232 MCLauncher.exe 6080 RegOpenKey HKLM\SOFTWARE\Microsoft\CTF\TIP\{0000897b-83df-4b96-be07-0fb58b01c4a4}\Category\Category\{B95F181B-EA4C-4AF1-8056-7C321ABBB091} NAME NOT FOUND Desired Access: Read 98 12:54:12,6778321 MCLauncher.exe 6080 RegEnumKey HKLM\SOFTWARE\Microsoft\CTF\TIP SUCCESS Index: 1, Name: {03b5835f-f03c-411b-9ce2-aa23e1171e36} 98 12:54:12,6778404 MCLauncher.exe 6080 RegQueryKey HKLM\SOFTWARE\Microsoft\CTF\TIP SUCCESS Query: HandleTags, HandleTags: 0x400 98 12:54:12,6778465 MCLauncher.exe 6080 RegOpenKey HKLM\SOFTWARE\Microsoft\CTF\TIP\{03b5835f-f03c-411b-9ce2-aa23e1171e36}\Category\Category\{B95F181B-EA4C-4AF1-8056-7C321ABBB091} NAME NOT FOUND Desired Access: Read 98 12:54:12,6778565 MCLauncher.exe 6080 RegEnumKey HKLM\SOFTWARE\Microsoft\CTF\TIP SUCCESS Index: 2, Name: {07EB03D6-B001-41DF-9192-BF9B841EE71F} 98 12:54:12,6778650 MCLauncher.exe 6080 RegQueryKey HKLM\SOFTWARE\Microsoft\CTF\TIP SUCCESS Query: HandleTags, HandleTags: 0x400 98 12:54:12,6778711 MCLauncher.exe 6080 RegOpenKey HKLM\SOFTWARE\Microsoft\CTF\TIP\{07EB03D6-B001-41DF-9192-BF9B841EE71F}\Category\Category\{B95F181B-EA4C-4AF1-8056-7C321ABBB091} NAME NOT FOUND Desired Access: Read 98 12:54:12,6778800 MCLauncher.exe 6080 RegEnumKey HKLM\SOFTWARE\Microsoft\CTF\TIP SUCCESS Index: 3, Name: {531fdebf-9b4c-4a43-a2aa-960e8fcdc732} 98 12:54:12,6778883 MCLauncher.exe 6080 RegQueryKey HKLM\SOFTWARE\Microsoft\CTF\TIP SUCCESS Query: HandleTags, HandleTags: 0x400 98 12:54:12,6778944 MCLauncher.exe 6080 RegOpenKey HKLM\SOFTWARE\Microsoft\CTF\TIP\{531fdebf-9b4c-4a43-a2aa-960e8fcdc732}\Category\Category\{B95F181B-EA4C-4AF1-8056-7C321ABBB091} NAME NOT FOUND Desired Access: Read 98 12:54:12,6779033 MCLauncher.exe 6080 RegEnumKey HKLM\SOFTWARE\Microsoft\CTF\TIP SUCCESS Index: 4, Name: {6a498709-e00b-4c45-a018-8f9e4081ae40} 98 12:54:12,6779113 MCLauncher.exe 6080 RegQueryKey HKLM\SOFTWARE\Microsoft\CTF\TIP SUCCESS Query: HandleTags, HandleTags: 0x400 98 12:54:12,6779174 MCLauncher.exe 6080 RegOpenKey HKLM\SOFTWARE\Microsoft\CTF\TIP\{6a498709-e00b-4c45-a018-8f9e4081ae40}\Category\Category\{B95F181B-EA4C-4AF1-8056-7C321ABBB091} NAME NOT FOUND Desired Access: Read 98 12:54:12,6779263 MCLauncher.exe 6080 RegEnumKey HKLM\SOFTWARE\Microsoft\CTF\TIP SUCCESS Index: 5, Name: {78CB5B0E-26ED-4FCC-854C-77E8F3D1AA80} 98 12:54:12,6779343 MCLauncher.exe 6080 RegQueryKey HKLM\SOFTWARE\Microsoft\CTF\TIP SUCCESS Query: HandleTags, HandleTags: 0x400 98 12:54:12,6779404 MCLauncher.exe 6080 RegOpenKey HKLM\SOFTWARE\Microsoft\CTF\TIP\{78CB5B0E-26ED-4FCC-854C-77E8F3D1AA80}\Category\Category\{B95F181B-EA4C-4AF1-8056-7C321ABBB091} SUCCESS Desired Access: Read 98 12:54:12,6779534 MCLauncher.exe 6080 RegEnumKey HKLM\SOFTWARE\Microsoft\CTF\TIP\{78CB5B0E-26ED-4FCC-854C-77E8F3D1AA80}\Category\Category\{B95F181B-EA4C-4AF1-8056-7C321ABBB091} SUCCESS Index: 0, Name: {34B45670-7526-11D2-A147-00105A2799B5} 98 12:54:12,6779601 MCLauncher.exe 6080 RegEnumKey HKLM\SOFTWARE\Microsoft\CTF\TIP\{78CB5B0E-26ED-4FCC-854C-77E8F3D1AA80}\Category\Category\{B95F181B-EA4C-4AF1-8056-7C321ABBB091} NO MORE ENTRIES Index: 1, Length: 288 98 12:54:12,6779667 MCLauncher.exe 6080 RegCloseKey HKLM\SOFTWARE\Microsoft\CTF\TIP\{78CB5B0E-26ED-4FCC-854C-77E8F3D1AA80}\Category\Category\{B95F181B-EA4C-4AF1-8056-7C321ABBB091} SUCCESS 98 12:54:12,6779717 MCLauncher.exe 6080 RegEnumKey HKLM\SOFTWARE\Microsoft\CTF\TIP SUCCESS Index: 6, Name: {81d4e9c9-1d3b-41bc-9e6c-4b40bf79e35e} 98 12:54:12,6779803 MCLauncher.exe 6080 RegQueryKey HKLM\SOFTWARE\Microsoft\CTF\TIP SUCCESS Query: HandleTags, HandleTags: 0x400 98 12:54:12,6779864 MCLauncher.exe 6080 RegOpenKey HKLM\SOFTWARE\Microsoft\CTF\TIP\{81d4e9c9-1d3b-41bc-9e6c-4b40bf79e35e}\Category\Category\{B95F181B-EA4C-4AF1-8056-7C321ABBB091} NAME NOT FOUND Desired Access: Read 98 12:54:12,6779966 MCLauncher.exe 6080 RegEnumKey HKLM\SOFTWARE\Microsoft\CTF\TIP SUCCESS Index: 7, Name: {8613E14C-D0C0-4161-AC0F-1DD2563286BC} 98 12:54:12,6780050 MCLauncher.exe 6080 RegQueryKey HKLM\SOFTWARE\Microsoft\CTF\TIP SUCCESS Query: HandleTags, HandleTags: 0x400 98 12:54:12,6780110 MCLauncher.exe 6080 RegOpenKey HKLM\SOFTWARE\Microsoft\CTF\TIP\{8613E14C-D0C0-4161-AC0F-1DD2563286BC}\Category\Category\{B95F181B-EA4C-4AF1-8056-7C321ABBB091} NAME NOT FOUND Desired Access: Read 98 12:54:12,6780210 MCLauncher.exe 6080 RegEnumKey HKLM\SOFTWARE\Microsoft\CTF\TIP SUCCESS Index: 8, Name: {a028ae76-01b1-46c2-99c4-acd9858ae02f} 98 12:54:12,6780296 MCLauncher.exe 6080 RegQueryKey HKLM\SOFTWARE\Microsoft\CTF\TIP SUCCESS Query: HandleTags, HandleTags: 0x400 98 12:54:12,6780357 MCLauncher.exe 6080 RegOpenKey HKLM\SOFTWARE\Microsoft\CTF\TIP\{a028ae76-01b1-46c2-99c4-acd9858ae02f}\Category\Category\{B95F181B-EA4C-4AF1-8056-7C321ABBB091} NAME NOT FOUND Desired Access: Read 98 12:54:12,6780457 MCLauncher.exe 6080 RegEnumKey HKLM\SOFTWARE\Microsoft\CTF\TIP SUCCESS Index: 9, Name: {a1e2b86b-924a-4d43-80f6-8a820df7190f} 98 12:54:12,6780540 MCLauncher.exe 6080 RegQueryKey HKLM\SOFTWARE\Microsoft\CTF\TIP SUCCESS Query: HandleTags, HandleTags: 0x400 98 12:54:12,6780601 MCLauncher.exe 6080 RegOpenKey HKLM\SOFTWARE\Microsoft\CTF\TIP\{a1e2b86b-924a-4d43-80f6-8a820df7190f}\Category\Category\{B95F181B-EA4C-4AF1-8056-7C321ABBB091} NAME NOT FOUND Desired Access: Read 98 12:54:12,6780690 MCLauncher.exe 6080 RegEnumKey HKLM\SOFTWARE\Microsoft\CTF\TIP SUCCESS Index: 10, Name: {AE6BE008-07FB-400D-8BEB-337A64F7051F} 98 12:54:12,6780770 MCLauncher.exe 6080 RegQueryKey HKLM\SOFTWARE\Microsoft\CTF\TIP SUCCESS Query: HandleTags, HandleTags: 0x400 98 12:54:12,6780831 MCLauncher.exe 6080 RegOpenKey HKLM\SOFTWARE\Microsoft\CTF\TIP\{AE6BE008-07FB-400D-8BEB-337A64F7051F}\Category\Category\{B95F181B-EA4C-4AF1-8056-7C321ABBB091} NAME NOT FOUND Desired Access: Read 98 12:54:12,6780922 MCLauncher.exe 6080 RegEnumKey HKLM\SOFTWARE\Microsoft\CTF\TIP SUCCESS Index: 11, Name: {B115690A-EA02-48D5-A231-E3578D2FDF80} 98 12:54:12,6781005 MCLauncher.exe 6080 RegQueryKey HKLM\SOFTWARE\Microsoft\CTF\TIP SUCCESS Query: HandleTags, HandleTags: 0x400 98 12:54:12,6781066 MCLauncher.exe 6080 RegOpenKey HKLM\SOFTWARE\Microsoft\CTF\TIP\{B115690A-EA02-48D5-A231-E3578D2FDF80}\Category\Category\{B95F181B-EA4C-4AF1-8056-7C321ABBB091} NAME NOT FOUND Desired Access: Read 98 12:54:12,6781161 MCLauncher.exe 6080 RegEnumKey HKLM\SOFTWARE\Microsoft\CTF\TIP SUCCESS Index: 12, Name: {C1EE01F2-B3B6-4A6A-9DDD-E988C088EC82} 98 12:54:12,6781244 MCLauncher.exe 6080 RegQueryKey HKLM\SOFTWARE\Microsoft\CTF\TIP SUCCESS Query: HandleTags, HandleTags: 0x400 98 12:54:12,6781305 MCLauncher.exe 6080 RegOpenKey HKLM\SOFTWARE\Microsoft\CTF\TIP\{C1EE01F2-B3B6-4A6A-9DDD-E988C088EC82}\Category\Category\{B95F181B-EA4C-4AF1-8056-7C321ABBB091} NAME NOT FOUND Desired Access: Read 98 12:54:12,6781390 MCLauncher.exe 6080 RegEnumKey HKLM\SOFTWARE\Microsoft\CTF\TIP SUCCESS Index: 13, Name: {DCBD6FA8-032F-11D3-B5B1-00C04FC324A1} 98 12:54:12,6781471 MCLauncher.exe 6080 RegQueryKey HKLM\SOFTWARE\Microsoft\CTF\TIP SUCCESS Query: HandleTags, HandleTags: 0x400 98 12:54:12,6781535 MCLauncher.exe 6080 RegOpenKey HKLM\SOFTWARE\Microsoft\CTF\TIP\{DCBD6FA8-032F-11D3-B5B1-00C04FC324A1}\Category\Category\{B95F181B-EA4C-4AF1-8056-7C321ABBB091} NAME NOT FOUND Desired Access: Read 98 12:54:12,6781615 MCLauncher.exe 6080 RegEnumKey HKLM\SOFTWARE\Microsoft\CTF\TIP SUCCESS Index: 14, Name: {E429B25A-E5D3-4D1F-9BE3-0C608477E3A1} 98 12:54:12,6781698 MCLauncher.exe 6080 RegQueryKey HKLM\SOFTWARE\Microsoft\CTF\TIP SUCCESS Query: HandleTags, HandleTags: 0x400 98 12:54:12,6781756 MCLauncher.exe 6080 RegOpenKey HKLM\SOFTWARE\Microsoft\CTF\TIP\{E429B25A-E5D3-4D1F-9BE3-0C608477E3A1}\Category\Category\{B95F181B-EA4C-4AF1-8056-7C321ABBB091} NAME NOT FOUND Desired Access: Read 98 12:54:12,6781848 MCLauncher.exe 6080 RegEnumKey HKLM\SOFTWARE\Microsoft\CTF\TIP SUCCESS Index: 15, Name: {F25E9F57-2FC8-4EB3-A41A-CCE5F08541E6} 98 12:54:12,6781931 MCLauncher.exe 6080 RegQueryKey HKLM\SOFTWARE\Microsoft\CTF\TIP SUCCESS Query: HandleTags, HandleTags: 0x400 98 12:54:12,6781992 MCLauncher.exe 6080 RegOpenKey HKLM\SOFTWARE\Microsoft\CTF\TIP\{F25E9F57-2FC8-4EB3-A41A-CCE5F08541E6}\Category\Category\{B95F181B-EA4C-4AF1-8056-7C321ABBB091} NAME NOT FOUND Desired Access: Read 98 12:54:12,6782086 MCLauncher.exe 6080 RegEnumKey HKLM\SOFTWARE\Microsoft\CTF\TIP SUCCESS Index: 16, Name: {F89E9E58-BD2F-4008-9AC2-0F816C09F4EE} 98 12:54:12,6782166 MCLauncher.exe 6080 RegQueryKey HKLM\SOFTWARE\Microsoft\CTF\TIP SUCCESS Query: HandleTags, HandleTags: 0x400 98 12:54:12,6782230 MCLauncher.exe 6080 RegOpenKey HKLM\SOFTWARE\Microsoft\CTF\TIP\{F89E9E58-BD2F-4008-9AC2-0F816C09F4EE}\Category\Category\{B95F181B-EA4C-4AF1-8056-7C321ABBB091} NAME NOT FOUND Desired Access: Read 98 12:54:12,6782316 MCLauncher.exe 6080 RegEnumKey HKLM\SOFTWARE\Microsoft\CTF\TIP SUCCESS Index: 17, Name: {FA445657-9379-11D6-B41A-00065B83EE53} 98 12:54:12,6782399 MCLauncher.exe 6080 RegQueryKey HKLM\SOFTWARE\Microsoft\CTF\TIP SUCCESS Query: HandleTags, HandleTags: 0x400 98 12:54:12,6782460 MCLauncher.exe 6080 RegOpenKey HKLM\SOFTWARE\Microsoft\CTF\TIP\{FA445657-9379-11D6-B41A-00065B83EE53}\Category\Category\{B95F181B-EA4C-4AF1-8056-7C321ABBB091} NAME NOT FOUND Desired Access: Read 98 12:54:12,6782549 MCLauncher.exe 6080 RegEnumKey HKLM\SOFTWARE\Microsoft\CTF\TIP NO MORE ENTRIES Index: 18, Length: 288 98 12:54:12,6782618 MCLauncher.exe 6080 RegCloseKey HKLM\SOFTWARE\Microsoft\CTF\TIP SUCCESS 98 12:54:13,1374548 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54903 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40950355, endtime: 40950582, seqnum: 0, connid: 0 98 12:54:13,1374708 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54903 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40950356, endtime: 40950582, seqnum: 0, connid: 0 98 12:54:13,1374777 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54903 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40950356, endtime: 40950582, seqnum: 0, connid: 0 98 12:54:13,1374850 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54903 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40950357, endtime: 40950582, seqnum: 0, connid: 0 98 12:54:13,1374902 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54903 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40950357, endtime: 40950582, seqnum: 0, connid: 0 98 12:54:13,1374966 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54903 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40950358, endtime: 40950582, seqnum: 0, connid: 0 98 12:54:13,1375019 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54903 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40950359, endtime: 40950582, seqnum: 0, connid: 0 98 12:54:13,1375082 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54903 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40950359, endtime: 40950582, seqnum: 0, connid: 0 98 12:54:13,1375135 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54903 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40950360, endtime: 40950582, seqnum: 0, connid: 0 98 12:54:13,1375448 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54903 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40950360, endtime: 40950582, seqnum: 0, connid: 0 98 12:54:13,1375501 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54903 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40950361, endtime: 40950582, seqnum: 0, connid: 0 98 12:54:13,1375564 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54903 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40950362, endtime: 40950582, seqnum: 0, connid: 0 98 12:54:13,1376601 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54903 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40950362, endtime: 40950582, seqnum: 0, connid: 0 98 12:54:13,7981489 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54877 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40950266, endtime: 40950648, seqnum: 0, connid: 0 98 12:54:13,7981661 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54877 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40950267, endtime: 40950648, seqnum: 0, connid: 0 98 12:54:13,7982171 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54877 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40950268, endtime: 40950648, seqnum: 0, connid: 0 98 12:54:13,7982262 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54877 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40950268, endtime: 40950648, seqnum: 0, connid: 0 98 12:54:13,7982340 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54877 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40950269, endtime: 40950648, seqnum: 0, connid: 0 98 12:54:13,7982404 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54877 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40950269, endtime: 40950648, seqnum: 0, connid: 0 98 12:54:13,7982478 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54877 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40950270, endtime: 40950648, seqnum: 0, connid: 0 98 12:54:13,7982539 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54877 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40950271, endtime: 40950648, seqnum: 0, connid: 0 98 12:54:13,7982611 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54877 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40950271, endtime: 40950648, seqnum: 0, connid: 0 98 12:54:13,7983495 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54877 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40950272, endtime: 40950648, seqnum: 0, connid: 0 98 12:54:13,7983614 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54877 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40950273, endtime: 40950648, seqnum: 0, connid: 0 98 12:54:13,7983697 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54877 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40950273, endtime: 40950648, seqnum: 0, connid: 0 98 12:54:13,7984758 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54877 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40950288, endtime: 40950648, seqnum: 0, connid: 0 98 12:54:13,8775003 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54904 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40950355, endtime: 40950656, seqnum: 0, connid: 0 98 12:54:13,8775169 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54904 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40950356, endtime: 40950656, seqnum: 0, connid: 0 98 12:54:13,8775235 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54904 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40950356, endtime: 40950656, seqnum: 0, connid: 0 98 12:54:13,8775307 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54904 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40950357, endtime: 40950656, seqnum: 0, connid: 0 98 12:54:13,8775363 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54904 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40950357, endtime: 40950656, seqnum: 0, connid: 0 98 12:54:13,8775427 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54904 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40950358, endtime: 40950656, seqnum: 0, connid: 0 98 12:54:13,8775479 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54904 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40950359, endtime: 40950656, seqnum: 0, connid: 0 98 12:54:13,8775543 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54904 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40950359, endtime: 40950656, seqnum: 0, connid: 0 98 12:54:13,8775593 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54904 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40950360, endtime: 40950656, seqnum: 0, connid: 0 98 12:54:13,8775911 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54904 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40950360, endtime: 40950656, seqnum: 0, connid: 0 98 12:54:13,8775967 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54904 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40950361, endtime: 40950656, seqnum: 0, connid: 0 98 12:54:13,8776031 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54904 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40950362, endtime: 40950656, seqnum: 0, connid: 0 98 12:54:13,8776083 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54904 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40950362, endtime: 40950656, seqnum: 0, connid: 0 98 12:54:13,8776197 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54900 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40950155, endtime: 40950656, seqnum: 0, connid: 0 98 12:54:13,8776263 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54900 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40950156, endtime: 40950656, seqnum: 0, connid: 0 98 12:54:13,8776316 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54900 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40950156, endtime: 40950656, seqnum: 0, connid: 0 98 12:54:13,8776380 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54900 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40950157, endtime: 40950656, seqnum: 0, connid: 0 98 12:54:13,8776432 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54900 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40950158, endtime: 40950656, seqnum: 0, connid: 0 98 12:54:13,8776496 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54900 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40950158, endtime: 40950656, seqnum: 0, connid: 0 98 12:54:13,8777017 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54900 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40950159, endtime: 40950656, seqnum: 0, connid: 0 98 12:54:13,8777089 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54900 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40950159, endtime: 40950656, seqnum: 0, connid: 0 98 12:54:13,8777142 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54900 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40950160, endtime: 40950656, seqnum: 0, connid: 0 98 12:54:13,8777205 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54900 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40950160, endtime: 40950656, seqnum: 0, connid: 0 98 12:54:13,8777258 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54900 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40950161, endtime: 40950656, seqnum: 0, connid: 0 98 12:54:13,8777319 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54900 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40950162, endtime: 40950656, seqnum: 0, connid: 0 98 12:54:13,8777372 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54900 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40950162, endtime: 40950656, seqnum: 0, connid: 0 98 12:54:14,0450995 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54905 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40949986, endtime: 40950673, seqnum: 0, connid: 0 98 12:54:14,0451150 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54905 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40949986, endtime: 40950673, seqnum: 0, connid: 0 98 12:54:14,0451372 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54905 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40949987, endtime: 40950673, seqnum: 0, connid: 0 98 12:54:14,0451447 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54905 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40949988, endtime: 40950673, seqnum: 0, connid: 0 98 12:54:14,0451538 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54905 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40949988, endtime: 40950673, seqnum: 0, connid: 0 98 12:54:14,0451596 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54905 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40949989, endtime: 40950673, seqnum: 0, connid: 0 98 12:54:14,0451666 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54905 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40949990, endtime: 40950673, seqnum: 0, connid: 0 98 12:54:14,0451724 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54905 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40949990, endtime: 40950673, seqnum: 0, connid: 0 98 12:54:14,0451793 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54905 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40949991, endtime: 40950673, seqnum: 0, connid: 0 98 12:54:14,0452355 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54905 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40949991, endtime: 40950673, seqnum: 0, connid: 0 98 12:54:14,0452433 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54905 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40949992, endtime: 40950673, seqnum: 0, connid: 0 98 12:54:14,0452486 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54905 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40949993, endtime: 40950673, seqnum: 0, connid: 0 98 12:54:14,6864646 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54876 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40950156, endtime: 40950737, seqnum: 0, connid: 0 98 12:54:14,6864823 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54876 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40950463, endtime: 40950737, seqnum: 0, connid: 0 98 12:54:14,6864917 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54876 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40950466, endtime: 40950737, seqnum: 0, connid: 0 98 12:54:14,6864984 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54876 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40950467, endtime: 40950737, seqnum: 0, connid: 0 98 12:54:14,6865059 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54876 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40950469, endtime: 40950737, seqnum: 0, connid: 0 98 12:54:14,6865120 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54876 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40950470, endtime: 40950737, seqnum: 0, connid: 0 98 12:54:14,6865189 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54876 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40950472, endtime: 40950737, seqnum: 0, connid: 0 98 12:54:14,6865250 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54876 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40950473, endtime: 40950737, seqnum: 0, connid: 0 98 12:54:14,6865319 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54876 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40950478, endtime: 40950737, seqnum: 0, connid: 0 98 12:54:14,6865377 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54876 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40950480, endtime: 40950737, seqnum: 0, connid: 0 98 12:54:14,6865693 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54876 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40950483, endtime: 40950737, seqnum: 0, connid: 0 98 12:54:14,6865754 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54876 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40950485, endtime: 40950737, seqnum: 0, connid: 0 98 12:54:14,6865826 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54876 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40950486, endtime: 40950737, seqnum: 0, connid: 0 98 12:54:14,8735001 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54876 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40950737, endtime: 40950756, seqnum: 0, connid: 0 98 12:54:14,8753711 MCLauncher.exe 6080 CreateFile C:\Users\User\AppData\Roaming\MCLauncher\icon.png SUCCESS Desired Access: Read Attributes, Disposition: Open, Options: Open Reparse Point, Attributes: n/a, ShareMode: Read, Write, Delete, AllocationSize: n/a, OpenResult: Opened 98 12:54:14,8754287 MCLauncher.exe 6080 QueryNetworkOpenInformationFile C:\Users\User\AppData\Roaming\MCLauncher\icon.png SUCCESS CreationTime: 24.08.2018 12:30:32, LastAccessTime: 24.08.2018 12:30:32, LastWriteTime: 24.08.2018 12:30:32, ChangeTime: 24.08.2018 12:30:32, AllocationSize: 01.01.1601 3:00:00, EndOfFile: 01.01.1601 3:00:00, FileAttributes: A 98 12:54:14,8754390 MCLauncher.exe 6080 CloseFile C:\Users\User\AppData\Roaming\MCLauncher\icon.png SUCCESS 98 12:54:14,8757130 MCLauncher.exe 6080 CreateFile C:\Users\User\AppData\Roaming\MCLauncher\icon.png SUCCESS Desired Access: Generic Read, Disposition: Open, Options: Synchronous IO Non-Alert, Non-Directory File, Attributes: N, ShareMode: Read, Write, AllocationSize: n/a, OpenResult: Opened 98 12:54:14,8760925 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\icon.png SUCCESS Offset: 0, Length: 16 384, Priority: Normal 98 12:54:14,8761408 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\icon.png SUCCESS Offset: 0, Length: 16 384, I/O Flags: Non-cached, Paging I/O, Priority: Normal 98 12:54:14,8847785 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\icon.png SUCCESS Offset: 16 384, Length: 16 98 12:54:14,8912417 MCLauncher.exe 6080 ReadFile C:\Users\User\AppData\Roaming\MCLauncher\icon.png END OF FILE Offset: 16 400, Length: 16 368 98 12:54:14,8912636 MCLauncher.exe 6080 QueryInformationVolume C:\Users\User\AppData\Roaming\MCLauncher\icon.png BUFFER OVERFLOW VolumeCreationTime: 19.07.2018 19:30:42, VolumeSerialNumber: B6D8-C2CA, SupportsObjects: True, VolumeLabel: Winb 98 12:54:14,8912755 MCLauncher.exe 6080 QueryAllInformationFile C:\Users\User\AppData\Roaming\MCLauncher\icon.png BUFFER OVERFLOW CreationTime: 24.08.2018 12:30:32, LastAccessTime: 24.08.2018 12:30:32, LastWriteTime: 24.08.2018 12:30:32, ChangeTime: 24.08.2018 12:30:32, FileAttributes: A, AllocationSize: 20 480, EndOfFile: 16 400, NumberOfLinks: 1, DeletePending: False, Directory: False, IndexNumber: 0x2100000002039d, EaSize: 0, Access: Generic Read, Position: 16 400, Mode: Synchronous IO Non-Alert, AlignmentRequirement: Word 98 12:54:14,8912916 MCLauncher.exe 6080 QueryInformationVolume C:\Users\User\AppData\Roaming\MCLauncher\icon.png BUFFER OVERFLOW VolumeCreationTime: 19.07.2018 19:30:42, VolumeSerialNumber: B6D8-C2CA, SupportsObjects: True, VolumeLabel: Winb 98 12:54:14,8912988 MCLauncher.exe 6080 QueryAllInformationFile C:\Users\User\AppData\Roaming\MCLauncher\icon.png BUFFER OVERFLOW CreationTime: 24.08.2018 12:30:32, LastAccessTime: 24.08.2018 12:30:32, LastWriteTime: 24.08.2018 12:30:32, ChangeTime: 24.08.2018 12:30:32, FileAttributes: A, AllocationSize: 20 480, EndOfFile: 16 400, NumberOfLinks: 1, DeletePending: False, Directory: False, IndexNumber: 0x2100000002039d, EaSize: 0, Access: Generic Read, Position: 16 400, Mode: Synchronous IO Non-Alert, AlignmentRequirement: Word 98 12:54:14,8913436 MCLauncher.exe 6080 CloseFile C:\Users\User\AppData\Roaming\MCLauncher\icon.png SUCCESS 98 12:54:14,8919659 MCLauncher.exe 6080 RegQueryValue HKLM\System\CurrentControlSet\Control\WMI\Security\79172b48-631e-5d2c-9f04-1ad99f6e1046 NAME NOT FOUND Length: 524 98 12:54:14,8921338 MCLauncher.exe 6080 QueryNameInformationFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Name: \Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe 98 12:54:14,8924635 MCLauncher.exe 6080 CreateFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS Desired Access: Read Attributes, Disposition: Open, Options: Open Reparse Point, Attributes: n/a, ShareMode: Read, Write, Delete, AllocationSize: n/a, OpenResult: Opened 98 12:54:14,8924835 MCLauncher.exe 6080 QueryBasicInformationFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS CreationTime: 24.08.2018 12:30:11, LastAccessTime: 24.08.2018 12:30:11, LastWriteTime: 24.08.2018 12:38:31, ChangeTime: 24.08.2018 12:38:31, FileAttributes: A 98 12:54:14,8924923 MCLauncher.exe 6080 CloseFile C:\Users\User\AppData\Roaming\MCLauncher\MCLauncher.exe SUCCESS 98 12:54:14,8925253 MCLauncher.exe 6080 CreateFile C:\ SUCCESS Desired Access: Read Data/List Directory, Synchronize, Disposition: Open, Options: Directory, Synchronous IO Non-Alert, Attributes: n/a, ShareMode: Read, Write, Delete, AllocationSize: n/a, OpenResult: Opened 98 12:54:14,8925439 MCLauncher.exe 6080 QueryDirectory C:\Users SUCCESS Filter: Users, 1: Users 98 12:54:14,8925641 MCLauncher.exe 6080 CloseFile C:\ SUCCESS 98 12:54:14,8926586 MCLauncher.exe 6080 CreateFile C:\Users SUCCESS Desired Access: Read Data/List Directory, Synchronize, Disposition: Open, Options: Directory, Synchronous IO Non-Alert, Attributes: n/a, ShareMode: Read, Write, Delete, AllocationSize: n/a, OpenResult: Opened 98 12:54:14,8926946 MCLauncher.exe 6080 QueryDirectory C:\Users\User SUCCESS Filter: User, 1: User 98 12:54:14,8927134 MCLauncher.exe 6080 CloseFile C:\Users SUCCESS 98 12:54:14,8928096 MCLauncher.exe 6080 CreateFile C:\Users\User SUCCESS Desired Access: Read Data/List Directory, Synchronize, Disposition: Open, Options: Directory, Synchronous IO Non-Alert, Attributes: n/a, ShareMode: Read, Write, Delete, AllocationSize: n/a, OpenResult: Opened 98 12:54:14,8928295 MCLauncher.exe 6080 QueryDirectory C:\Users\User\AppData SUCCESS Filter: AppData, 1: AppData 98 12:54:14,8928472 MCLauncher.exe 6080 CloseFile C:\Users\User SUCCESS 98 12:54:14,8929392 MCLauncher.exe 6080 CreateFile C:\Users\User\AppData SUCCESS Desired Access: Read Data/List Directory, Synchronize, Disposition: Open, Options: Directory, Synchronous IO Non-Alert, Attributes: n/a, ShareMode: Read, Write, Delete, AllocationSize: n/a, OpenResult: Opened 98 12:54:14,8929581 MCLauncher.exe 6080 QueryDirectory C:\Users\User\AppData\Roaming SUCCESS Filter: Roaming, 1: Roaming 98 12:54:14,8929722 MCLauncher.exe 6080 CloseFile C:\Users\User\AppData SUCCESS 98 12:54:14,8930639 MCLauncher.exe 6080 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 98 12:54:14,8930761 MCLauncher.exe 6080 RegQueryKey HKLM SUCCESS Query: Name 98 12:54:14,8930910 MCLauncher.exe 6080 RegOpenKey HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS Desired Access: Read 98 12:54:14,8931146 MCLauncher.exe 6080 RegSetInfoKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 98 12:54:14,8931260 MCLauncher.exe 6080 RegQueryKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS Query: HandleTags, HandleTags: 0x400 98 12:54:14,8931332 MCLauncher.exe 6080 RegOpenKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{7C5A40EF-A0FB-4BFC-874A-C0F2E0B9FA8E} SUCCESS Desired Access: Read 98 12:54:14,8931456 MCLauncher.exe 6080 RegCloseKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS 98 12:54:14,8931525 MCLauncher.exe 6080 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{7C5A40EF-A0FB-4BFC-874A-C0F2E0B9FA8E}\Category SUCCESS Type: REG_DWORD, Length: 4, Data: 2 98 12:54:14,8931697 MCLauncher.exe 6080 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{7C5A40EF-A0FB-4BFC-874A-C0F2E0B9FA8E}\Name SUCCESS Type: REG_SZ, Length: 32, Data: ProgramFilesX86 98 12:54:14,8931852 MCLauncher.exe 6080 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{7C5A40EF-A0FB-4BFC-874A-C0F2E0B9FA8E}\ParentFolder NAME NOT FOUND Length: 144 98 12:54:14,8931972 MCLauncher.exe 6080 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{7C5A40EF-A0FB-4BFC-874A-C0F2E0B9FA8E}\Description NAME NOT FOUND Length: 144 98 12:54:14,8932085 MCLauncher.exe 6080 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{7C5A40EF-A0FB-4BFC-874A-C0F2E0B9FA8E}\RelativePath NAME NOT FOUND Length: 144 98 12:54:14,8932193 MCLauncher.exe 6080 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{7C5A40EF-A0FB-4BFC-874A-C0F2E0B9FA8E}\ParsingName NAME NOT FOUND Length: 144 98 12:54:14,8932298 MCLauncher.exe 6080 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{7C5A40EF-A0FB-4BFC-874A-C0F2E0B9FA8E}\InfoTip NAME NOT FOUND Length: 144 98 12:54:14,8932407 MCLauncher.exe 6080 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{7C5A40EF-A0FB-4BFC-874A-C0F2E0B9FA8E}\LocalizedName SUCCESS Type: REG_EXPAND_SZ, Length: 84, Data: @%SystemRoot%\system32\shell32.dll,-21817 98 12:54:14,8932534 MCLauncher.exe 6080 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{7C5A40EF-A0FB-4BFC-874A-C0F2E0B9FA8E}\Icon NAME NOT FOUND Length: 144 98 12:54:14,8932642 MCLauncher.exe 6080 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{7C5A40EF-A0FB-4BFC-874A-C0F2E0B9FA8E}\Security NAME NOT FOUND Length: 144 98 12:54:14,8932750 MCLauncher.exe 6080 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{7C5A40EF-A0FB-4BFC-874A-C0F2E0B9FA8E}\StreamResource NAME NOT FOUND Length: 144 98 12:54:14,8932855 MCLauncher.exe 6080 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{7C5A40EF-A0FB-4BFC-874A-C0F2E0B9FA8E}\StreamResourceType NAME NOT FOUND Length: 144 98 12:54:14,8932961 MCLauncher.exe 6080 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{7C5A40EF-A0FB-4BFC-874A-C0F2E0B9FA8E}\LocalRedirectOnly NAME NOT FOUND Length: 144 98 12:54:14,8933069 MCLauncher.exe 6080 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{7C5A40EF-A0FB-4BFC-874A-C0F2E0B9FA8E}\Roamable NAME NOT FOUND Length: 144 98 12:54:14,8933174 MCLauncher.exe 6080 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{7C5A40EF-A0FB-4BFC-874A-C0F2E0B9FA8E}\PreCreate SUCCESS Type: REG_DWORD, Length: 4, Data: 1 98 12:54:14,8933296 MCLauncher.exe 6080 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{7C5A40EF-A0FB-4BFC-874A-C0F2E0B9FA8E}\Stream NAME NOT FOUND Length: 144 98 12:54:14,8933404 MCLauncher.exe 6080 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{7C5A40EF-A0FB-4BFC-874A-C0F2E0B9FA8E}\PublishExpandedPath NAME NOT FOUND Length: 144 98 12:54:14,8933512 MCLauncher.exe 6080 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{7C5A40EF-A0FB-4BFC-874A-C0F2E0B9FA8E}\DefinitionFlags NAME NOT FOUND Length: 144 98 12:54:14,8933617 MCLauncher.exe 6080 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{7C5A40EF-A0FB-4BFC-874A-C0F2E0B9FA8E}\Attributes SUCCESS Type: REG_DWORD, Length: 4, Data: 1 98 12:54:14,8933734 MCLauncher.exe 6080 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{7C5A40EF-A0FB-4BFC-874A-C0F2E0B9FA8E}\FolderTypeID NAME NOT FOUND Length: 144 98 12:54:14,8933842 MCLauncher.exe 6080 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{7C5A40EF-A0FB-4BFC-874A-C0F2E0B9FA8E}\InitFolderHandler NAME NOT FOUND Length: 144 98 12:54:14,8934202 MCLauncher.exe 6080 RegQueryKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{7C5A40EF-A0FB-4BFC-874A-C0F2E0B9FA8E} SUCCESS Query: HandleTags, HandleTags: 0x400 98 12:54:14,8934274 MCLauncher.exe 6080 RegOpenKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{7C5A40EF-A0FB-4BFC-874A-C0F2E0B9FA8E}\PropertyBag SUCCESS Desired Access: Read 98 12:54:14,8934401 MCLauncher.exe 6080 RegCloseKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{7C5A40EF-A0FB-4BFC-874A-C0F2E0B9FA8E} SUCCESS 98 12:54:14,8934529 MCLauncher.exe 6080 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 98 12:54:14,8934606 MCLauncher.exe 6080 RegQueryKey HKLM SUCCESS Query: Name 98 12:54:14,8934701 MCLauncher.exe 6080 RegOpenKey HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion SUCCESS Desired Access: Read 98 12:54:14,8934834 MCLauncher.exe 6080 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\ProgramFilesDir SUCCESS Type: REG_SZ, Length: 46, Data: C:\Program Files (x86) 98 12:54:14,8934991 MCLauncher.exe 6080 RegCloseKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion SUCCESS 98 12:54:14,8935676 MCLauncher.exe 6080 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 98 12:54:14,8935762 MCLauncher.exe 6080 RegQueryKey HKLM SUCCESS Query: Name 98 12:54:14,8935861 MCLauncher.exe 6080 RegOpenKey HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS Desired Access: Read 98 12:54:14,8935997 MCLauncher.exe 6080 RegSetInfoKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 98 12:54:14,8936078 MCLauncher.exe 6080 RegQueryKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS Query: HandleTags, HandleTags: 0x400 98 12:54:14,8936136 MCLauncher.exe 6080 RegOpenKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{D65231B0-B2F1-4857-A4CE-A8E7C6EA7D27} SUCCESS Desired Access: Read 98 12:54:14,8936230 MCLauncher.exe 6080 RegCloseKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS 98 12:54:14,8936280 MCLauncher.exe 6080 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{D65231B0-B2F1-4857-A4CE-A8E7C6EA7D27}\Category SUCCESS Type: REG_DWORD, Length: 4, Data: 2 98 12:54:14,8936424 MCLauncher.exe 6080 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{D65231B0-B2F1-4857-A4CE-A8E7C6EA7D27}\Name SUCCESS Type: REG_SZ, Length: 20, Data: SystemX86 98 12:54:14,8936673 MCLauncher.exe 6080 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{D65231B0-B2F1-4857-A4CE-A8E7C6EA7D27}\ParentFolder NAME NOT FOUND Length: 144 98 12:54:14,8936798 MCLauncher.exe 6080 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{D65231B0-B2F1-4857-A4CE-A8E7C6EA7D27}\Description NAME NOT FOUND Length: 144 98 12:54:14,8936906 MCLauncher.exe 6080 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{D65231B0-B2F1-4857-A4CE-A8E7C6EA7D27}\RelativePath NAME NOT FOUND Length: 144 98 12:54:14,8937020 MCLauncher.exe 6080 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{D65231B0-B2F1-4857-A4CE-A8E7C6EA7D27}\ParsingName NAME NOT FOUND Length: 144 98 12:54:14,8937172 MCLauncher.exe 6080 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{D65231B0-B2F1-4857-A4CE-A8E7C6EA7D27}\InfoTip NAME NOT FOUND Length: 144 98 12:54:14,8937377 MCLauncher.exe 6080 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{D65231B0-B2F1-4857-A4CE-A8E7C6EA7D27}\LocalizedName NAME NOT FOUND Length: 144 98 12:54:14,8937499 MCLauncher.exe 6080 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{D65231B0-B2F1-4857-A4CE-A8E7C6EA7D27}\Icon NAME NOT FOUND Length: 144 98 12:54:14,8937690 MCLauncher.exe 6080 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{D65231B0-B2F1-4857-A4CE-A8E7C6EA7D27}\Security NAME NOT FOUND Length: 144 98 12:54:14,8937798 MCLauncher.exe 6080 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{D65231B0-B2F1-4857-A4CE-A8E7C6EA7D27}\StreamResource NAME NOT FOUND Length: 144 98 12:54:14,8937903 MCLauncher.exe 6080 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{D65231B0-B2F1-4857-A4CE-A8E7C6EA7D27}\StreamResourceType NAME NOT FOUND Length: 144 98 12:54:14,8938011 MCLauncher.exe 6080 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{D65231B0-B2F1-4857-A4CE-A8E7C6EA7D27}\LocalRedirectOnly NAME NOT FOUND Length: 144 98 12:54:14,8938114 MCLauncher.exe 6080 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{D65231B0-B2F1-4857-A4CE-A8E7C6EA7D27}\Roamable NAME NOT FOUND Length: 144 98 12:54:14,8938219 MCLauncher.exe 6080 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{D65231B0-B2F1-4857-A4CE-A8E7C6EA7D27}\PreCreate NAME NOT FOUND Length: 144 98 12:54:14,8938324 MCLauncher.exe 6080 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{D65231B0-B2F1-4857-A4CE-A8E7C6EA7D27}\Stream NAME NOT FOUND Length: 144 98 12:54:14,8938430 MCLauncher.exe 6080 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{D65231B0-B2F1-4857-A4CE-A8E7C6EA7D27}\PublishExpandedPath NAME NOT FOUND Length: 144 98 12:54:14,8938532 MCLauncher.exe 6080 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{D65231B0-B2F1-4857-A4CE-A8E7C6EA7D27}\DefinitionFlags NAME NOT FOUND Length: 144 98 12:54:14,8938635 MCLauncher.exe 6080 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{D65231B0-B2F1-4857-A4CE-A8E7C6EA7D27}\Attributes NAME NOT FOUND Length: 144 98 12:54:14,8938743 MCLauncher.exe 6080 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{D65231B0-B2F1-4857-A4CE-A8E7C6EA7D27}\FolderTypeID NAME NOT FOUND Length: 144 98 12:54:14,8938845 MCLauncher.exe 6080 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{D65231B0-B2F1-4857-A4CE-A8E7C6EA7D27}\InitFolderHandler NAME NOT FOUND Length: 144 98 12:54:14,8938989 MCLauncher.exe 6080 RegQueryKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{D65231B0-B2F1-4857-A4CE-A8E7C6EA7D27} SUCCESS Query: HandleTags, HandleTags: 0x400 98 12:54:14,8939056 MCLauncher.exe 6080 RegOpenKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{D65231B0-B2F1-4857-A4CE-A8E7C6EA7D27}\PropertyBag SUCCESS Desired Access: Read 98 12:54:14,8939158 MCLauncher.exe 6080 RegCloseKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{D65231B0-B2F1-4857-A4CE-A8E7C6EA7D27} SUCCESS 98 12:54:14,8939350 MCLauncher.exe 6080 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 98 12:54:14,8939433 MCLauncher.exe 6080 RegQueryKey HKLM SUCCESS Query: Name 98 12:54:14,8939527 MCLauncher.exe 6080 RegOpenKey HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS Desired Access: Read 98 12:54:14,8939654 MCLauncher.exe 6080 RegSetInfoKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 98 12:54:14,8939732 MCLauncher.exe 6080 RegQueryKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS Query: HandleTags, HandleTags: 0x400 98 12:54:14,8939790 MCLauncher.exe 6080 RegOpenKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{F38BF404-1D43-42F2-9305-67DE0B28FC23} SUCCESS Desired Access: Read 98 12:54:14,8939881 MCLauncher.exe 6080 RegCloseKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions SUCCESS 98 12:54:14,8939926 MCLauncher.exe 6080 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{F38BF404-1D43-42F2-9305-67DE0B28FC23}\Category SUCCESS Type: REG_DWORD, Length: 4, Data: 2 98 12:54:14,8940059 MCLauncher.exe 6080 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{F38BF404-1D43-42F2-9305-67DE0B28FC23}\Name SUCCESS Type: REG_SZ, Length: 16, Data: Windows 98 12:54:14,8940192 MCLauncher.exe 6080 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{F38BF404-1D43-42F2-9305-67DE0B28FC23}\ParentFolder NAME NOT FOUND Length: 144 98 12:54:14,8940303 MCLauncher.exe 6080 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{F38BF404-1D43-42F2-9305-67DE0B28FC23}\Description NAME NOT FOUND Length: 144 98 12:54:14,8940408 MCLauncher.exe 6080 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{F38BF404-1D43-42F2-9305-67DE0B28FC23}\RelativePath NAME NOT FOUND Length: 144 98 12:54:14,8940510 MCLauncher.exe 6080 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{F38BF404-1D43-42F2-9305-67DE0B28FC23}\ParsingName NAME NOT FOUND Length: 144 98 12:54:14,8940616 MCLauncher.exe 6080 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{F38BF404-1D43-42F2-9305-67DE0B28FC23}\InfoTip NAME NOT FOUND Length: 144 98 12:54:14,8940721 MCLauncher.exe 6080 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{F38BF404-1D43-42F2-9305-67DE0B28FC23}\LocalizedName NAME NOT FOUND Length: 144 98 12:54:14,8940826 MCLauncher.exe 6080 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{F38BF404-1D43-42F2-9305-67DE0B28FC23}\Icon NAME NOT FOUND Length: 144 98 12:54:14,8940929 MCLauncher.exe 6080 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{F38BF404-1D43-42F2-9305-67DE0B28FC23}\Security NAME NOT FOUND Length: 144 98 12:54:14,8941034 MCLauncher.exe 6080 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{F38BF404-1D43-42F2-9305-67DE0B28FC23}\StreamResource NAME NOT FOUND Length: 144 98 12:54:14,8941209 MCLauncher.exe 6080 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{F38BF404-1D43-42F2-9305-67DE0B28FC23}\StreamResourceType NAME NOT FOUND Length: 144 98 12:54:14,8941314 MCLauncher.exe 6080 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{F38BF404-1D43-42F2-9305-67DE0B28FC23}\LocalRedirectOnly NAME NOT FOUND Length: 144 98 12:54:14,8941416 MCLauncher.exe 6080 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{F38BF404-1D43-42F2-9305-67DE0B28FC23}\Roamable NAME NOT FOUND Length: 144 98 12:54:14,8941522 MCLauncher.exe 6080 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{F38BF404-1D43-42F2-9305-67DE0B28FC23}\PreCreate NAME NOT FOUND Length: 144 98 12:54:14,8941621 MCLauncher.exe 6080 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{F38BF404-1D43-42F2-9305-67DE0B28FC23}\Stream NAME NOT FOUND Length: 144 98 12:54:14,8941727 MCLauncher.exe 6080 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{F38BF404-1D43-42F2-9305-67DE0B28FC23}\PublishExpandedPath NAME NOT FOUND Length: 144 98 12:54:14,8941832 MCLauncher.exe 6080 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{F38BF404-1D43-42F2-9305-67DE0B28FC23}\DefinitionFlags NAME NOT FOUND Length: 144 98 12:54:14,8941937 MCLauncher.exe 6080 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{F38BF404-1D43-42F2-9305-67DE0B28FC23}\Attributes NAME NOT FOUND Length: 144 98 12:54:14,8942040 MCLauncher.exe 6080 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{F38BF404-1D43-42F2-9305-67DE0B28FC23}\FolderTypeID NAME NOT FOUND Length: 144 98 12:54:14,8942142 MCLauncher.exe 6080 RegQueryValue HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{F38BF404-1D43-42F2-9305-67DE0B28FC23}\InitFolderHandler NAME NOT FOUND Length: 144 98 12:54:14,8942278 MCLauncher.exe 6080 RegQueryKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{F38BF404-1D43-42F2-9305-67DE0B28FC23} SUCCESS Query: HandleTags, HandleTags: 0x400 98 12:54:14,8942339 MCLauncher.exe 6080 RegOpenKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{F38BF404-1D43-42F2-9305-67DE0B28FC23}\PropertyBag SUCCESS Desired Access: Read 98 12:54:14,8942441 MCLauncher.exe 6080 RegCloseKey HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{F38BF404-1D43-42F2-9305-67DE0B28FC23} SUCCESS 98 12:54:15,6326786 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54903 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40950582, endtime: 40950832, seqnum: 0, connid: 0 98 12:54:15,6326935 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54903 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40950584, endtime: 40950832, seqnum: 0, connid: 0 98 12:54:15,6327005 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54903 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40950586, endtime: 40950832, seqnum: 0, connid: 0 98 12:54:15,6327077 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54903 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40950587, endtime: 40950832, seqnum: 0, connid: 0 98 12:54:15,6327132 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54903 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40950589, endtime: 40950832, seqnum: 0, connid: 0 98 12:54:15,6327196 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54903 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40950591, endtime: 40950832, seqnum: 0, connid: 0 98 12:54:15,6327249 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54903 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40950592, endtime: 40950832, seqnum: 0, connid: 0 98 12:54:15,6327312 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54903 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40950595, endtime: 40950832, seqnum: 0, connid: 0 98 12:54:15,6327365 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54903 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40950597, endtime: 40950832, seqnum: 0, connid: 0 98 12:54:15,6327656 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54903 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40950598, endtime: 40950832, seqnum: 0, connid: 0 98 12:54:15,6327711 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54903 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40950600, endtime: 40950832, seqnum: 0, connid: 0 98 12:54:15,6327772 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54903 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40950601, endtime: 40950832, seqnum: 0, connid: 0 98 12:54:15,6327825 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54903 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40950601, endtime: 40950832, seqnum: 0, connid: 0 98 12:54:17,8610235 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54900 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40950656, endtime: 40951055, seqnum: 0, connid: 0 98 12:54:17,8610404 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54900 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40950658, endtime: 40951055, seqnum: 0, connid: 0 98 12:54:17,8610476 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54900 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40950661, endtime: 40951055, seqnum: 0, connid: 0 98 12:54:17,8610548 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54900 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40950662, endtime: 40951055, seqnum: 0, connid: 0 98 12:54:17,8610606 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54900 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40950664, endtime: 40951055, seqnum: 0, connid: 0 98 12:54:17,8610675 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54900 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40950666, endtime: 40951055, seqnum: 0, connid: 0 98 12:54:17,8610731 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54900 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40950666, endtime: 40951055, seqnum: 0, connid: 0 98 12:54:17,8610797 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54900 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40950667, endtime: 40951055, seqnum: 0, connid: 0 98 12:54:17,8610850 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54900 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40950669, endtime: 40951055, seqnum: 0, connid: 0 98 12:54:17,8611174 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54900 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40950670, endtime: 40951055, seqnum: 0, connid: 0 98 12:54:17,8611232 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54900 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40950672, endtime: 40951055, seqnum: 0, connid: 0 98 12:54:17,8611299 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54900 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40950675, endtime: 40951055, seqnum: 0, connid: 0 98 12:54:17,8611354 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54900 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40950677, endtime: 40951055, seqnum: 0, connid: 0 98 12:54:18,0832812 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54904 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40950656, endtime: 40951077, seqnum: 0, connid: 0 98 12:54:18,0833003 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54904 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40950658, endtime: 40951077, seqnum: 0, connid: 0 98 12:54:18,0833080 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54904 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40950661, endtime: 40951077, seqnum: 0, connid: 0 98 12:54:18,0833155 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54904 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40950662, endtime: 40951077, seqnum: 0, connid: 0 98 12:54:18,0833213 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54904 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40950664, endtime: 40951077, seqnum: 0, connid: 0 98 12:54:18,0833283 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54904 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40950666, endtime: 40951077, seqnum: 0, connid: 0 98 12:54:18,0833343 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54904 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40950666, endtime: 40951077, seqnum: 0, connid: 0 98 12:54:18,0833410 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54904 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40950667, endtime: 40951077, seqnum: 0, connid: 0 98 12:54:18,0833465 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54904 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40950669, endtime: 40951077, seqnum: 0, connid: 0 98 12:54:18,0833776 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54904 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40950670, endtime: 40951077, seqnum: 0, connid: 0 98 12:54:18,0833834 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54904 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40950672, endtime: 40951077, seqnum: 0, connid: 0 98 12:54:18,0833903 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54904 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40950675, endtime: 40951077, seqnum: 0, connid: 0 98 12:54:18,0833959 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54904 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40950677, endtime: 40951077, seqnum: 0, connid: 0 98 12:54:18,0834078 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54900 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40951055, endtime: 40951077, seqnum: 0, connid: 0 98 12:54:18,1454143 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54903 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40950832, endtime: 40951083, seqnum: 0, connid: 0 98 12:54:18,1454401 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54903 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40950834, endtime: 40951083, seqnum: 0, connid: 0 98 12:54:18,1454498 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54903 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40950836, endtime: 40951083, seqnum: 0, connid: 0 98 12:54:18,1454589 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54903 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40950839, endtime: 40951083, seqnum: 0, connid: 0 98 12:54:18,1454661 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54903 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40950841, endtime: 40951083, seqnum: 0, connid: 0 98 12:54:18,1454741 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54903 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40950842, endtime: 40951083, seqnum: 0, connid: 0 98 12:54:18,1454811 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54903 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40950844, endtime: 40951083, seqnum: 0, connid: 0 98 12:54:18,1454888 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54903 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40950848, endtime: 40951083, seqnum: 0, connid: 0 98 12:54:18,1454955 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54903 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40950850, endtime: 40951083, seqnum: 0, connid: 0 98 12:54:18,1455271 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54903 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40950853, endtime: 40951083, seqnum: 0, connid: 0 98 12:54:18,1455343 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54903 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40950855, endtime: 40951083, seqnum: 0, connid: 0 98 12:54:18,1455420 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54903 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40950856, endtime: 40951083, seqnum: 0, connid: 0 98 12:54:18,1455487 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54903 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40950858, endtime: 40951083, seqnum: 0, connid: 0 98 12:54:18,2643830 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54903 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40951083, endtime: 40951095, seqnum: 0, connid: 0 98 12:54:18,9447337 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54877 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40950648, endtime: 40951163, seqnum: 0, connid: 0 98 12:54:18,9447684 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54877 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40950650, endtime: 40951163, seqnum: 0, connid: 0 98 12:54:18,9447828 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54877 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40950651, endtime: 40951163, seqnum: 0, connid: 0 98 12:54:18,9447966 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54877 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40950653, endtime: 40951163, seqnum: 0, connid: 0 98 12:54:18,9448072 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54877 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40950655, endtime: 40951163, seqnum: 0, connid: 0 98 12:54:18,9448199 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54877 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40950656, endtime: 40951163, seqnum: 0, connid: 0 98 12:54:18,9448307 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54877 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40950658, endtime: 40951163, seqnum: 0, connid: 0 98 12:54:18,9448434 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54877 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40950661, endtime: 40951163, seqnum: 0, connid: 0 98 12:54:18,9448537 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54877 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40950662, endtime: 40951163, seqnum: 0, connid: 0 98 12:54:18,9448917 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54877 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40950664, endtime: 40951163, seqnum: 0, connid: 0 98 12:54:18,9448989 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54877 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40950666, endtime: 40951163, seqnum: 0, connid: 0 98 12:54:18,9449061 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54877 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40950666, endtime: 40951163, seqnum: 0, connid: 0 98 12:54:18,9449124 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54877 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40950667, endtime: 40951163, seqnum: 0, connid: 0 98 12:54:19,3234940 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54876 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40950739, endtime: 40951201, seqnum: 0, connid: 0 98 12:54:19,3235084 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54876 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40950741, endtime: 40951201, seqnum: 0, connid: 0 98 12:54:19,3235170 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54876 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40950742, endtime: 40951201, seqnum: 0, connid: 0 98 12:54:19,3235228 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54876 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40950744, endtime: 40951201, seqnum: 0, connid: 0 98 12:54:19,3235297 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54876 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40950747, endtime: 40951201, seqnum: 0, connid: 0 98 12:54:19,3235353 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54876 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40950748, endtime: 40951201, seqnum: 0, connid: 0 98 12:54:19,3235419 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54876 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40950750, endtime: 40951201, seqnum: 0, connid: 0 98 12:54:19,3235486 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54876 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40950751, endtime: 40951201, seqnum: 0, connid: 0 98 12:54:19,3235539 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54876 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40950753, endtime: 40951201, seqnum: 0, connid: 0 98 12:54:19,3236336 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54876 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40950755, endtime: 40951201, seqnum: 0, connid: 0 98 12:54:19,3236447 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54876 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40950758, endtime: 40951201, seqnum: 0, connid: 0 98 12:54:19,3236558 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54876 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40950759, endtime: 40951201, seqnum: 0, connid: 0 98 12:54:19,3244235 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54876 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40950763, endtime: 40951201, seqnum: 0, connid: 0 98 12:54:20,1227140 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54903 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40951084, endtime: 40951281, seqnum: 0, connid: 0 98 12:54:20,1227309 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54903 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40951086, endtime: 40951281, seqnum: 0, connid: 0 98 12:54:20,1227411 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54903 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40951089, endtime: 40951281, seqnum: 0, connid: 0 98 12:54:20,1227489 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54903 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40951091, endtime: 40951281, seqnum: 0, connid: 0 98 12:54:20,1227569 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54903 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40951092, endtime: 40951281, seqnum: 0, connid: 0 98 12:54:20,1227641 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54903 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40951095, endtime: 40951281, seqnum: 0, connid: 0 98 12:54:20,1227719 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54903 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40951097, endtime: 40951281, seqnum: 0, connid: 0 98 12:54:20,1227785 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54903 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40951100, endtime: 40951281, seqnum: 0, connid: 0 98 12:54:20,1227863 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54903 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40951102, endtime: 40951281, seqnum: 0, connid: 0 98 12:54:20,1228539 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54903 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40951104, endtime: 40951281, seqnum: 0, connid: 0 98 12:54:20,1228642 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54903 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40951106, endtime: 40951281, seqnum: 0, connid: 0 98 12:54:20,1228708 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54903 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40951107, endtime: 40951281, seqnum: 0, connid: 0 98 12:54:20,1234329 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54903 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40951108, endtime: 40951281, seqnum: 0, connid: 0 98 12:54:20,2535055 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54905 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40949993, endtime: 40951294, seqnum: 0, connid: 0 98 12:54:20,2535230 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54905 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40950673, endtime: 40951294, seqnum: 0, connid: 0 98 12:54:20,2535315 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54905 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40950675, endtime: 40951294, seqnum: 0, connid: 0 98 12:54:20,2535379 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54905 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40950677, endtime: 40951294, seqnum: 0, connid: 0 98 12:54:20,2535448 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54905 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40950678, endtime: 40951294, seqnum: 0, connid: 0 98 12:54:20,2535504 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54905 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40950680, endtime: 40951294, seqnum: 0, connid: 0 98 12:54:20,2535568 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54905 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40950683, endtime: 40951294, seqnum: 0, connid: 0 98 12:54:20,2535620 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54905 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40950686, endtime: 40951294, seqnum: 0, connid: 0 98 12:54:20,2535684 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54905 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40950687, endtime: 40951294, seqnum: 0, connid: 0 98 12:54:20,2535739 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54905 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40950689, endtime: 40951294, seqnum: 0, connid: 0 98 12:54:20,2536030 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54905 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40950692, endtime: 40951294, seqnum: 0, connid: 0 98 12:54:20,2536086 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54905 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40950694, endtime: 40951294, seqnum: 0, connid: 0 98 12:54:20,2536152 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54905 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40950697, endtime: 40951294, seqnum: 0, connid: 0 98 12:54:20,2538587 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54905 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40951294, endtime: 40951294, seqnum: 0, connid: 0 98 12:54:20,9260169 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54900 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40951056, endtime: 40951361, seqnum: 0, connid: 0 98 12:54:20,9260358 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54900 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40951058, endtime: 40951361, seqnum: 0, connid: 0 98 12:54:20,9260449 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54900 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40951062, endtime: 40951361, seqnum: 0, connid: 0 98 12:54:20,9260518 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54900 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40951067, endtime: 40951361, seqnum: 0, connid: 0 98 12:54:20,9282423 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54900 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40951069, endtime: 40951361, seqnum: 0, connid: 0 98 12:54:20,9282569 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54900 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40951073, endtime: 40951361, seqnum: 0, connid: 0 98 12:54:20,9282658 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54900 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40951075, endtime: 40951361, seqnum: 0, connid: 0 98 12:54:20,9282725 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54900 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40951077, endtime: 40951361, seqnum: 0, connid: 0 98 12:54:20,9282799 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54900 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40951078, endtime: 40951361, seqnum: 0, connid: 0 98 12:54:20,9282860 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54900 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40951080, endtime: 40951361, seqnum: 0, connid: 0 98 12:54:20,9282930 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54900 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40951083, endtime: 40951361, seqnum: 0, connid: 0 98 12:54:20,9282988 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54900 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40951084, endtime: 40951361, seqnum: 0, connid: 0 98 12:54:20,9283063 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54900 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40951086, endtime: 40951361, seqnum: 0, connid: 0 98 12:54:20,9472746 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54904 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40951077, endtime: 40951363, seqnum: 0, connid: 0 98 12:54:20,9472926 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54904 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40951078, endtime: 40951363, seqnum: 0, connid: 0 98 12:54:20,9472998 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54904 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40951080, endtime: 40951363, seqnum: 0, connid: 0 98 12:54:20,9473073 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54904 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40951083, endtime: 40951363, seqnum: 0, connid: 0 98 12:54:20,9473131 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54904 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40951084, endtime: 40951363, seqnum: 0, connid: 0 98 12:54:20,9473201 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54904 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40951086, endtime: 40951363, seqnum: 0, connid: 0 98 12:54:20,9473256 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54904 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40951089, endtime: 40951363, seqnum: 0, connid: 0 98 12:54:20,9473328 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54904 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40951092, endtime: 40951363, seqnum: 0, connid: 0 98 12:54:20,9473386 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54904 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40951095, endtime: 40951363, seqnum: 0, connid: 0 98 12:54:20,9473683 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54904 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40951097, endtime: 40951363, seqnum: 0, connid: 0 98 12:54:20,9473741 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54904 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40951100, endtime: 40951363, seqnum: 0, connid: 0 98 12:54:20,9473940 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54904 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40951102, endtime: 40951363, seqnum: 0, connid: 0 98 12:54:20,9474048 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54904 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40951104, endtime: 40951363, seqnum: 0, connid: 0 98 12:54:21,2039612 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54877 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40951163, endtime: 40951389, seqnum: 0, connid: 0 98 12:54:21,2039776 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54877 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40951164, endtime: 40951389, seqnum: 0, connid: 0 98 12:54:21,2039851 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54877 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40951164, endtime: 40951389, seqnum: 0, connid: 0 98 12:54:21,2039923 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54877 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40951165, endtime: 40951389, seqnum: 0, connid: 0 98 12:54:21,2039984 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54877 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40951165, endtime: 40951389, seqnum: 0, connid: 0 98 12:54:21,2040050 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54877 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40951166, endtime: 40951389, seqnum: 0, connid: 0 98 12:54:21,2040105 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54877 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40951167, endtime: 40951389, seqnum: 0, connid: 0 98 12:54:21,2040172 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54877 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40951167, endtime: 40951389, seqnum: 0, connid: 0 98 12:54:21,2040230 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54877 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40951168, endtime: 40951389, seqnum: 0, connid: 0 98 12:54:21,2040942 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54877 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40951168, endtime: 40951389, seqnum: 0, connid: 0 98 12:54:21,2041142 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54877 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40951169, endtime: 40951389, seqnum: 0, connid: 0 98 12:54:21,2041252 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54877 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40951170, endtime: 40951389, seqnum: 0, connid: 0 98 12:54:21,2051889 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54877 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40951171, endtime: 40951389, seqnum: 0, connid: 0 98 12:54:21,3221090 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54903 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40951281, endtime: 40951401, seqnum: 0, connid: 0 98 12:54:21,3221373 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54903 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40951282, endtime: 40951401, seqnum: 0, connid: 0 98 12:54:21,3221481 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54903 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40951282, endtime: 40951401, seqnum: 0, connid: 0 98 12:54:21,3221583 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54903 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40951284, endtime: 40951401, seqnum: 0, connid: 0 98 12:54:21,3221661 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54903 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40951284, endtime: 40951401, seqnum: 0, connid: 0 98 12:54:21,3221747 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54903 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40951285, endtime: 40951401, seqnum: 0, connid: 0 98 12:54:21,3221824 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54903 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40951286, endtime: 40951401, seqnum: 0, connid: 0 98 12:54:21,3221910 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54903 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40951286, endtime: 40951401, seqnum: 0, connid: 0 98 12:54:21,3221985 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54903 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40951287, endtime: 40951401, seqnum: 0, connid: 0 98 12:54:21,3222683 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54903 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40951287, endtime: 40951401, seqnum: 0, connid: 0 98 12:54:21,3222841 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54903 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40951288, endtime: 40951401, seqnum: 0, connid: 0 98 12:54:21,3222988 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54903 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40951289, endtime: 40951401, seqnum: 0, connid: 0 98 12:54:21,8501679 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54876 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40951201, endtime: 40951454, seqnum: 0, connid: 0 98 12:54:21,8501914 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54876 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40951202, endtime: 40951454, seqnum: 0, connid: 0 98 12:54:21,8502019 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54876 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40951202, endtime: 40951454, seqnum: 0, connid: 0 98 12:54:21,8502116 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54876 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40951203, endtime: 40951454, seqnum: 0, connid: 0 98 12:54:21,8502194 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54876 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40951204, endtime: 40951454, seqnum: 0, connid: 0 98 12:54:21,8502280 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54876 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40951204, endtime: 40951454, seqnum: 0, connid: 0 98 12:54:21,8502357 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54876 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40951205, endtime: 40951454, seqnum: 0, connid: 0 98 12:54:21,8502449 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54876 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40951205, endtime: 40951454, seqnum: 0, connid: 0 98 12:54:21,8502526 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54876 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40951206, endtime: 40951454, seqnum: 0, connid: 0 98 12:54:21,8503402 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54876 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40951207, endtime: 40951454, seqnum: 0, connid: 0 98 12:54:21,8503496 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54876 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40951207, endtime: 40951454, seqnum: 0, connid: 0 98 12:54:21,8503585 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54876 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40951208, endtime: 40951454, seqnum: 0, connid: 0 98 12:54:21,8504100 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54876 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40951209, endtime: 40951454, seqnum: 0, connid: 0 98 12:54:23,1235133 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54905 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40951295, endtime: 40951581, seqnum: 0, connid: 0 98 12:54:23,1235374 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54905 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40951295, endtime: 40951581, seqnum: 0, connid: 0 98 12:54:23,1235471 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54905 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40951296, endtime: 40951581, seqnum: 0, connid: 0 98 12:54:23,1235560 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54905 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40951297, endtime: 40951581, seqnum: 0, connid: 0 98 12:54:23,1235632 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54905 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40951297, endtime: 40951581, seqnum: 0, connid: 0 98 12:54:23,1235709 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54905 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40951298, endtime: 40951581, seqnum: 0, connid: 0 98 12:54:23,1235773 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54905 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40951298, endtime: 40951581, seqnum: 0, connid: 0 98 12:54:23,1235989 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54905 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40951299, endtime: 40951581, seqnum: 0, connid: 0 98 12:54:23,1236078 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54905 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40951300, endtime: 40951581, seqnum: 0, connid: 0 98 12:54:23,1236668 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54905 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40951300, endtime: 40951581, seqnum: 0, connid: 0 98 12:54:23,1236754 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54905 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40951301, endtime: 40951581, seqnum: 0, connid: 0 98 12:54:23,1236831 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54905 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40951302, endtime: 40951581, seqnum: 0, connid: 0 98 12:54:23,1582603 MCLauncher.exe 6080 TCP Connect WIN-0UOTFKKVN1S:54912 -> sheltex.company:8000 SUCCESS Length: 0, mss: 1460, sackopt: 0, tsopt: 0, wsopt: 0, rcvwin: 64240, rcvwinscale: 0, sndwinscale: 0, seqnum: 0, connid: 0 98 12:54:23,3177650 MCLauncher.exe 6080 TCP Disconnect WIN-0UOTFKKVN1S:54906 -> sheltex.company:8000 SUCCESS Length: 0, seqnum: 0, connid: 0 98 12:54:23,4358627 MCLauncher.exe 6080 TCP TCPCopy WIN-0UOTFKKVN1S:54912 -> sheltex.company:8000 SUCCESS Length: 6, seqnum: 0, connid: 0 98 12:54:23,4358757 MCLauncher.exe 6080 TCP Receive WIN-0UOTFKKVN1S:54912 -> sheltex.company:8000 SUCCESS Length: 6, seqnum: 0, connid: 0 98 12:54:23,4362880 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54912 -> sheltex.company:8000 SUCCESS Length: 9, startime: 40951612, endtime: 40951612, seqnum: 0, connid: 0 98 12:54:23,4364040 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54912 -> sheltex.company:8000 SUCCESS Length: 103, startime: 40951612, endtime: 40951612, seqnum: 0, connid: 0 98 12:54:24,0631580 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54903 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40951289, endtime: 40951675, seqnum: 0, connid: 0 98 12:54:24,0631766 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54903 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40951401, endtime: 40951675, seqnum: 0, connid: 0 98 12:54:24,0631838 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54903 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40951405, endtime: 40951675, seqnum: 0, connid: 0 98 12:54:24,0631907 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54903 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40951407, endtime: 40951675, seqnum: 0, connid: 0 98 12:54:24,0631963 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54903 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40951409, endtime: 40951675, seqnum: 0, connid: 0 98 12:54:24,0632026 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54903 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40951411, endtime: 40951675, seqnum: 0, connid: 0 98 12:54:24,0632079 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54903 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40951411, endtime: 40951675, seqnum: 0, connid: 0 98 12:54:24,0632140 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54903 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40951412, endtime: 40951675, seqnum: 0, connid: 0 98 12:54:24,0632192 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54903 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40951413, endtime: 40951675, seqnum: 0, connid: 0 98 12:54:24,0632508 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54903 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40951413, endtime: 40951675, seqnum: 0, connid: 0 98 12:54:24,0632564 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54903 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40951414, endtime: 40951675, seqnum: 0, connid: 0 98 12:54:24,0632627 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54903 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40951415, endtime: 40951675, seqnum: 0, connid: 0 98 12:54:24,0632677 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54903 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40951415, endtime: 40951675, seqnum: 0, connid: 0 98 12:54:24,3471000 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54900 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40951361, endtime: 40951703, seqnum: 0, connid: 0 98 12:54:24,3471155 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54900 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40951362, endtime: 40951703, seqnum: 0, connid: 0 98 12:54:24,3471225 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54900 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40951366, endtime: 40951703, seqnum: 0, connid: 0 98 12:54:24,3471297 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54900 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40951367, endtime: 40951703, seqnum: 0, connid: 0 98 12:54:24,3471352 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54900 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40951369, endtime: 40951703, seqnum: 0, connid: 0 98 12:54:24,3471416 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54900 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40951372, endtime: 40951703, seqnum: 0, connid: 0 98 12:54:24,3471471 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54900 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40951373, endtime: 40951703, seqnum: 0, connid: 0 98 12:54:24,3471535 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54900 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40951375, endtime: 40951703, seqnum: 0, connid: 0 98 12:54:24,3471590 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54900 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40951377, endtime: 40951703, seqnum: 0, connid: 0 98 12:54:24,3472252 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54900 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40951379, endtime: 40951703, seqnum: 0, connid: 0 98 12:54:24,3472322 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54900 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40951381, endtime: 40951703, seqnum: 0, connid: 0 98 12:54:24,3472388 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54900 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40951384, endtime: 40951703, seqnum: 0, connid: 0 98 12:54:24,3473164 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54900 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40951386, endtime: 40951703, seqnum: 0, connid: 0 98 12:54:24,8631219 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54904 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40951363, endtime: 40951755, seqnum: 0, connid: 0 98 12:54:24,8631557 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54904 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40951366, endtime: 40951755, seqnum: 0, connid: 0 98 12:54:24,8631637 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54904 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40951367, endtime: 40951755, seqnum: 0, connid: 0 98 12:54:24,8631723 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54904 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40951369, endtime: 40951755, seqnum: 0, connid: 0 98 12:54:24,8631781 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54904 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40951372, endtime: 40951755, seqnum: 0, connid: 0 98 12:54:24,8631853 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54904 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40951373, endtime: 40951755, seqnum: 0, connid: 0 98 12:54:24,8631912 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54904 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40951375, endtime: 40951755, seqnum: 0, connid: 0 98 12:54:24,8631981 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54904 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40951377, endtime: 40951755, seqnum: 0, connid: 0 98 12:54:24,8632039 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54904 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40951379, endtime: 40951755, seqnum: 0, connid: 0 98 12:54:24,8632391 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54904 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40951381, endtime: 40951755, seqnum: 0, connid: 0 98 12:54:24,8632446 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54904 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40951384, endtime: 40951755, seqnum: 0, connid: 0 98 12:54:24,8632510 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54904 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40951386, endtime: 40951755, seqnum: 0, connid: 0 98 12:54:24,8632565 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54904 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40951388, endtime: 40951755, seqnum: 0, connid: 0 98 12:54:25,3239104 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54877 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40951389, endtime: 40951801, seqnum: 0, connid: 0 98 12:54:25,3239273 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54877 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40951391, endtime: 40951801, seqnum: 0, connid: 0 98 12:54:25,3239343 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54877 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40951394, endtime: 40951801, seqnum: 0, connid: 0 98 12:54:25,3239415 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54877 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40951397, endtime: 40951801, seqnum: 0, connid: 0 98 12:54:25,3239470 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54877 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40951400, endtime: 40951801, seqnum: 0, connid: 0 98 12:54:25,3239536 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54877 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40951402, endtime: 40951801, seqnum: 0, connid: 0 98 12:54:25,3239589 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54877 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40951405, endtime: 40951801, seqnum: 0, connid: 0 98 12:54:25,3239656 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54877 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40951407, endtime: 40951801, seqnum: 0, connid: 0 98 12:54:25,3239708 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54877 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40951409, endtime: 40951801, seqnum: 0, connid: 0 98 12:54:25,3240420 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54877 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40951411, endtime: 40951801, seqnum: 0, connid: 0 98 12:54:25,3240634 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54877 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40951411, endtime: 40951801, seqnum: 0, connid: 0 98 12:54:25,3240750 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54877 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40951412, endtime: 40951801, seqnum: 0, connid: 0 98 12:54:25,3241628 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54877 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40951413, endtime: 40951801, seqnum: 0, connid: 0 98 12:54:25,7339207 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54905 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40951302, endtime: 40951842, seqnum: 0, connid: 0 98 12:54:25,7339434 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54905 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40951581, endtime: 40951842, seqnum: 0, connid: 0 98 12:54:25,7339525 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54905 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40951583, endtime: 40951842, seqnum: 0, connid: 0 98 12:54:25,7339609 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54905 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40951586, endtime: 40951842, seqnum: 0, connid: 0 98 12:54:25,7339675 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54905 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40951588, endtime: 40951842, seqnum: 0, connid: 0 98 12:54:25,7339750 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54905 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40951589, endtime: 40951842, seqnum: 0, connid: 0 98 12:54:25,7339811 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54905 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40951591, endtime: 40951842, seqnum: 0, connid: 0 98 12:54:25,7339883 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54905 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40951596, endtime: 40951842, seqnum: 0, connid: 0 98 12:54:25,7339941 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54905 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40951597, endtime: 40951842, seqnum: 0, connid: 0 98 12:54:25,7340249 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54905 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40951599, endtime: 40951842, seqnum: 0, connid: 0 98 12:54:25,7340312 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54905 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40951603, endtime: 40951842, seqnum: 0, connid: 0 98 12:54:25,7340384 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54905 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40951604, endtime: 40951842, seqnum: 0, connid: 0 98 12:54:25,7340617 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54905 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40951604, endtime: 40951842, seqnum: 0, connid: 0 98 12:54:26,1218410 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54876 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40951454, endtime: 40951881, seqnum: 0, connid: 0 98 12:54:26,1218573 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54876 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40951455, endtime: 40951881, seqnum: 0, connid: 0 98 12:54:26,1218643 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54876 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40951458, endtime: 40951881, seqnum: 0, connid: 0 98 12:54:26,1218712 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54876 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40951465, endtime: 40951881, seqnum: 0, connid: 0 98 12:54:26,1218764 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54876 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40951467, endtime: 40951881, seqnum: 0, connid: 0 98 12:54:26,1218828 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54876 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40951469, endtime: 40951881, seqnum: 0, connid: 0 98 12:54:26,1218881 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54876 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40951470, endtime: 40951881, seqnum: 0, connid: 0 98 12:54:26,1218945 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54876 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40951472, endtime: 40951881, seqnum: 0, connid: 0 98 12:54:26,1218997 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54876 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40951474, endtime: 40951881, seqnum: 0, connid: 0 98 12:54:26,1219537 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54876 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40951477, endtime: 40951881, seqnum: 0, connid: 0 98 12:54:26,1220643 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54876 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40951480, endtime: 40951881, seqnum: 0, connid: 0 98 12:54:26,1220768 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54876 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40951483, endtime: 40951881, seqnum: 0, connid: 0 98 12:54:26,5161563 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54903 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40951675, endtime: 40951920, seqnum: 0, connid: 0 98 12:54:26,5161779 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54903 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40951676, endtime: 40951920, seqnum: 0, connid: 0 98 12:54:26,5161882 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54903 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40951678, endtime: 40951920, seqnum: 0, connid: 0 98 12:54:26,5161990 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54903 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40951680, endtime: 40951920, seqnum: 0, connid: 0 98 12:54:26,5162075 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54903 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40951681, endtime: 40951920, seqnum: 0, connid: 0 98 12:54:26,5162175 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54903 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40951683, endtime: 40951920, seqnum: 0, connid: 0 98 12:54:26,5162261 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54903 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40951684, endtime: 40951920, seqnum: 0, connid: 0 98 12:54:26,5162364 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54903 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40951686, endtime: 40951920, seqnum: 0, connid: 0 98 12:54:26,5162441 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54903 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40951689, endtime: 40951920, seqnum: 0, connid: 0 98 12:54:26,5162799 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54903 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40951692, endtime: 40951920, seqnum: 0, connid: 0 98 12:54:26,5163646 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54903 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40951694, endtime: 40951920, seqnum: 0, connid: 0 98 12:54:26,5163807 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54903 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40951695, endtime: 40951920, seqnum: 0, connid: 0 98 12:54:26,5163907 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54903 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40951697, endtime: 40951920, seqnum: 0, connid: 0 98 12:54:27,8693626 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54904 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40951755, endtime: 40952056, seqnum: 0, connid: 0 98 12:54:27,8693778 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54904 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40951756, endtime: 40952056, seqnum: 0, connid: 0 98 12:54:27,8693845 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54904 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40951759, endtime: 40952056, seqnum: 0, connid: 0 98 12:54:27,8693917 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54904 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40951761, endtime: 40952056, seqnum: 0, connid: 0 98 12:54:27,8693972 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54904 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40951762, endtime: 40952056, seqnum: 0, connid: 0 98 12:54:27,8694036 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54904 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40951764, endtime: 40952056, seqnum: 0, connid: 0 98 12:54:27,8694091 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54904 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40951769, endtime: 40952056, seqnum: 0, connid: 0 98 12:54:27,8694155 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54904 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40951770, endtime: 40952056, seqnum: 0, connid: 0 98 12:54:27,8694208 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54904 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40951772, endtime: 40952056, seqnum: 0, connid: 0 98 12:54:27,8694537 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54904 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40951773, endtime: 40952056, seqnum: 0, connid: 0 98 12:54:27,8694593 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54904 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40951775, endtime: 40952056, seqnum: 0, connid: 0 98 12:54:27,8694656 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54904 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40951777, endtime: 40952056, seqnum: 0, connid: 0 98 12:54:27,8694709 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54904 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40951778, endtime: 40952056, seqnum: 0, connid: 0 98 12:54:27,8694848 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54900 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40951703, endtime: 40952056, seqnum: 0, connid: 0 98 12:54:27,8694911 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54900 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40951705, endtime: 40952056, seqnum: 0, connid: 0 98 12:54:27,8694964 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54900 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40951708, endtime: 40952056, seqnum: 0, connid: 0 98 12:54:27,8695028 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54900 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40951709, endtime: 40952056, seqnum: 0, connid: 0 98 12:54:27,8695080 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54900 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40951711, endtime: 40952056, seqnum: 0, connid: 0 98 12:54:27,8695878 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54900 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40951712, endtime: 40952056, seqnum: 0, connid: 0 98 12:54:27,8695942 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54900 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40951714, endtime: 40952056, seqnum: 0, connid: 0 98 12:54:27,8696006 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54900 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40951716, endtime: 40952056, seqnum: 0, connid: 0 98 12:54:27,8696058 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54900 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40951717, endtime: 40952056, seqnum: 0, connid: 0 98 12:54:27,8696122 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54900 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40951720, endtime: 40952056, seqnum: 0, connid: 0 98 12:54:27,8696175 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54900 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40951722, endtime: 40952056, seqnum: 0, connid: 0 98 12:54:27,8696238 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54900 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40951723, endtime: 40952056, seqnum: 0, connid: 0 98 12:54:27,8828594 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54900 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40951725, endtime: 40952057, seqnum: 0, connid: 0 98 12:54:28,2972172 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54877 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40951801, endtime: 40952098, seqnum: 0, connid: 0 98 12:54:28,2972357 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54877 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40951803, endtime: 40952098, seqnum: 0, connid: 0 98 12:54:28,2972449 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54877 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40951806, endtime: 40952098, seqnum: 0, connid: 0 98 12:54:28,2972538 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54877 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40951808, endtime: 40952098, seqnum: 0, connid: 0 98 12:54:28,2972607 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54877 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40951809, endtime: 40952098, seqnum: 0, connid: 0 98 12:54:28,2972682 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54877 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40951811, endtime: 40952098, seqnum: 0, connid: 0 98 12:54:28,2972748 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54877 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40951812, endtime: 40952098, seqnum: 0, connid: 0 98 12:54:28,2972826 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54877 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40951814, endtime: 40952098, seqnum: 0, connid: 0 98 12:54:28,2972887 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54877 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40951817, endtime: 40952098, seqnum: 0, connid: 0 98 12:54:28,2973446 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54877 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40951819, endtime: 40952098, seqnum: 0, connid: 0 98 12:54:28,2973527 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54877 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40951820, endtime: 40952098, seqnum: 0, connid: 0 98 12:54:28,2973604 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54877 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40951826, endtime: 40952098, seqnum: 0, connid: 0 98 12:54:28,5963599 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54877 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40951827, endtime: 40952128, seqnum: 0, connid: 0 98 12:54:29,2207716 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54876 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40951484, endtime: 40952191, seqnum: 0, connid: 0 98 12:54:29,2207891 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54876 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40951881, endtime: 40952191, seqnum: 0, connid: 0 98 12:54:29,2207963 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54876 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40951883, endtime: 40952191, seqnum: 0, connid: 0 98 12:54:29,2208035 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54876 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40951884, endtime: 40952191, seqnum: 0, connid: 0 98 12:54:29,2208093 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54876 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40951886, endtime: 40952191, seqnum: 0, connid: 0 98 12:54:29,2208157 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54876 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40951887, endtime: 40952191, seqnum: 0, connid: 0 98 12:54:29,2208212 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54876 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40951889, endtime: 40952191, seqnum: 0, connid: 0 98 12:54:29,2208278 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54876 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40951890, endtime: 40952191, seqnum: 0, connid: 0 98 12:54:29,2208331 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54876 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40951892, endtime: 40952191, seqnum: 0, connid: 0 98 12:54:29,2208619 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54876 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40951895, endtime: 40952191, seqnum: 0, connid: 0 98 12:54:29,2208677 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54876 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40951895, endtime: 40952191, seqnum: 0, connid: 0 98 12:54:29,2208741 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54876 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40951897, endtime: 40952191, seqnum: 0, connid: 0 98 12:54:29,2208797 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54876 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40951898, endtime: 40952191, seqnum: 0, connid: 0 98 12:54:29,2938407 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54905 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40951842, endtime: 40952198, seqnum: 0, connid: 0 98 12:54:29,2938590 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54905 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40951844, endtime: 40952198, seqnum: 0, connid: 0 98 12:54:29,2938670 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54905 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40951845, endtime: 40952198, seqnum: 0, connid: 0 98 12:54:29,2938748 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54905 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40951847, endtime: 40952198, seqnum: 0, connid: 0 98 12:54:29,2938809 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54905 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40951848, endtime: 40952198, seqnum: 0, connid: 0 98 12:54:29,2938881 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54905 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40951850, endtime: 40952198, seqnum: 0, connid: 0 98 12:54:29,2938942 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54905 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40951851, endtime: 40952198, seqnum: 0, connid: 0 98 12:54:29,2939011 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54905 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40951852, endtime: 40952198, seqnum: 0, connid: 0 98 12:54:29,2939072 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54905 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40951852, endtime: 40952198, seqnum: 0, connid: 0 98 12:54:29,2939648 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54905 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40951855, endtime: 40952198, seqnum: 0, connid: 0 98 12:54:29,2939875 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54905 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40951856, endtime: 40952198, seqnum: 0, connid: 0 98 12:54:29,2939964 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54905 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40951858, endtime: 40952198, seqnum: 0, connid: 0 98 12:54:29,2940028 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54905 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40951861, endtime: 40952198, seqnum: 0, connid: 0 98 12:54:29,3673126 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54905 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40952198, endtime: 40952205, seqnum: 0, connid: 0 98 12:54:29,9021713 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54900 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40952056, endtime: 40952259, seqnum: 0, connid: 0 98 12:54:29,9021860 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54900 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40952056, endtime: 40952259, seqnum: 0, connid: 0 98 12:54:29,9021940 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54900 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40952058, endtime: 40952259, seqnum: 0, connid: 0 98 12:54:29,9021998 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54900 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40952059, endtime: 40952259, seqnum: 0, connid: 0 98 12:54:29,9022065 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54900 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40952061, endtime: 40952259, seqnum: 0, connid: 0 98 12:54:29,9022117 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54900 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40952062, endtime: 40952259, seqnum: 0, connid: 0 98 12:54:29,9022181 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54900 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40952066, endtime: 40952259, seqnum: 0, connid: 0 98 12:54:29,9022234 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54900 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40952067, endtime: 40952259, seqnum: 0, connid: 0 98 12:54:29,9022295 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54900 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40952069, endtime: 40952259, seqnum: 0, connid: 0 98 12:54:29,9022868 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54900 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40952070, endtime: 40952259, seqnum: 0, connid: 0 98 12:54:29,9022946 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54900 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40952072, endtime: 40952259, seqnum: 0, connid: 0 98 12:54:29,9022998 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54900 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40952073, endtime: 40952259, seqnum: 0, connid: 0 98 12:54:31,6887808 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54905 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40952200, endtime: 40952437, seqnum: 0, connid: 0 98 12:54:31,6887999 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54905 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40952205, endtime: 40952437, seqnum: 0, connid: 0 98 12:54:31,6888093 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54905 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40952209, endtime: 40952437, seqnum: 0, connid: 0 98 12:54:31,6888160 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54905 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40952210, endtime: 40952437, seqnum: 0, connid: 0 98 12:54:31,6888232 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54905 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40952213, endtime: 40952437, seqnum: 0, connid: 0 98 12:54:31,6888293 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54905 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40952214, endtime: 40952437, seqnum: 0, connid: 0 98 12:54:31,6888362 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54905 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40952216, endtime: 40952437, seqnum: 0, connid: 0 98 12:54:31,6888420 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54905 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40952219, endtime: 40952437, seqnum: 0, connid: 0 98 12:54:31,6888489 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54905 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40952221, endtime: 40952437, seqnum: 0, connid: 0 98 12:54:31,6889041 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54905 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40952222, endtime: 40952438, seqnum: 0, connid: 0 98 12:54:31,6889129 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54905 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40952225, endtime: 40952438, seqnum: 0, connid: 0 98 12:54:31,6889295 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54905 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40952228, endtime: 40952438, seqnum: 0, connid: 0 98 12:54:31,7179235 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54877 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40952099, endtime: 40952440, seqnum: 0, connid: 0 98 12:54:31,7179384 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54877 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40952100, endtime: 40952440, seqnum: 0, connid: 0 98 12:54:31,7179465 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54877 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40952100, endtime: 40952440, seqnum: 0, connid: 0 98 12:54:31,7179526 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54877 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40952101, endtime: 40952440, seqnum: 0, connid: 0 98 12:54:31,7179592 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54877 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40952102, endtime: 40952440, seqnum: 0, connid: 0 98 12:54:31,7179645 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54877 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40952105, endtime: 40952440, seqnum: 0, connid: 0 98 12:54:31,7179711 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54877 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40952107, endtime: 40952440, seqnum: 0, connid: 0 98 12:54:31,7179764 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54877 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40952110, endtime: 40952440, seqnum: 0, connid: 0 98 12:54:31,7179828 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54877 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40952112, endtime: 40952440, seqnum: 0, connid: 0 98 12:54:31,7180384 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54877 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40952114, endtime: 40952440, seqnum: 0, connid: 0 98 12:54:31,7180465 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54877 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40952116, endtime: 40952440, seqnum: 0, connid: 0 98 12:54:31,7181446 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54877 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40952117, endtime: 40952440, seqnum: 0, connid: 0 98 12:54:31,8254952 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54904 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40952056, endtime: 40952451, seqnum: 0, connid: 0 98 12:54:31,8255129 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54904 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40952056, endtime: 40952451, seqnum: 0, connid: 0 98 12:54:31,8255207 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54904 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40952058, endtime: 40952451, seqnum: 0, connid: 0 98 12:54:31,8255282 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54904 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40952059, endtime: 40952451, seqnum: 0, connid: 0 98 12:54:31,8255340 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54904 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40952061, endtime: 40952451, seqnum: 0, connid: 0 98 12:54:31,8255406 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54904 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40952062, endtime: 40952451, seqnum: 0, connid: 0 98 12:54:31,8255464 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54904 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40952066, endtime: 40952451, seqnum: 0, connid: 0 98 12:54:31,8255528 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54904 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40952067, endtime: 40952451, seqnum: 0, connid: 0 98 12:54:31,8255841 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54904 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40952069, endtime: 40952451, seqnum: 0, connid: 0 98 12:54:31,8256282 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54904 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40952070, endtime: 40952451, seqnum: 0, connid: 0 98 12:54:31,8256343 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54904 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40952072, endtime: 40952451, seqnum: 0, connid: 0 98 12:54:31,8256409 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54904 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40952073, endtime: 40952451, seqnum: 0, connid: 0 98 12:54:31,8256467 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54904 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40952075, endtime: 40952451, seqnum: 0, connid: 0 98 12:54:32,1064666 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54876 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40952191, endtime: 40952479, seqnum: 0, connid: 0 98 12:54:32,1064854 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54876 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40952192, endtime: 40952479, seqnum: 0, connid: 0 98 12:54:32,1064937 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54876 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40952194, endtime: 40952479, seqnum: 0, connid: 0 98 12:54:32,1065018 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54876 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40952195, endtime: 40952479, seqnum: 0, connid: 0 98 12:54:32,1065081 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54876 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40952197, endtime: 40952479, seqnum: 0, connid: 0 98 12:54:32,1065153 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54876 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40952198, endtime: 40952479, seqnum: 0, connid: 0 98 12:54:32,1065214 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54876 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40952200, endtime: 40952479, seqnum: 0, connid: 0 98 12:54:32,1065286 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54876 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40952203, endtime: 40952479, seqnum: 0, connid: 0 98 12:54:32,1065342 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54876 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40952205, endtime: 40952479, seqnum: 0, connid: 0 98 12:54:32,1065926 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54876 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40952206, endtime: 40952479, seqnum: 0, connid: 0 98 12:54:32,1066004 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54876 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40952208, endtime: 40952479, seqnum: 0, connid: 0 98 12:54:32,1066076 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54876 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40952209, endtime: 40952479, seqnum: 0, connid: 0 98 12:54:32,1066134 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54876 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40952210, endtime: 40952479, seqnum: 0, connid: 0 98 12:54:33,0309117 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54903 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40951920, endtime: 40952572, seqnum: 0, connid: 0 98 12:54:33,0309361 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54903 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40951922, endtime: 40952572, seqnum: 0, connid: 0 98 12:54:33,0309480 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54903 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40951923, endtime: 40952572, seqnum: 0, connid: 0 98 12:54:33,0309569 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54903 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40951925, endtime: 40952572, seqnum: 0, connid: 0 98 12:54:33,0309660 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54903 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40951927, endtime: 40952572, seqnum: 0, connid: 0 98 12:54:33,0309735 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54903 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40951928, endtime: 40952572, seqnum: 0, connid: 0 98 12:54:33,0309821 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54903 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40951930, endtime: 40952572, seqnum: 0, connid: 0 98 12:54:33,0309896 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54903 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40951931, endtime: 40952572, seqnum: 0, connid: 0 98 12:54:33,0309979 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54903 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40951933, endtime: 40952572, seqnum: 0, connid: 0 98 12:54:33,0310054 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54903 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40951934, endtime: 40952572, seqnum: 0, connid: 0 98 12:54:33,0310361 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54903 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40951937, endtime: 40952572, seqnum: 0, connid: 0 98 12:54:33,0310442 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54903 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40951939, endtime: 40952572, seqnum: 0, connid: 0 98 12:54:33,0310528 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54903 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40951941, endtime: 40952572, seqnum: 0, connid: 0 98 12:54:33,1108887 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54903 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40952572, endtime: 40952580, seqnum: 0, connid: 0 98 12:54:33,8416584 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54904 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40952451, endtime: 40952653, seqnum: 0, connid: 0 98 12:54:33,8416742 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54904 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40952453, endtime: 40952653, seqnum: 0, connid: 0 98 12:54:33,8416814 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54904 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40952456, endtime: 40952653, seqnum: 0, connid: 0 98 12:54:33,8416891 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54904 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40952459, endtime: 40952653, seqnum: 0, connid: 0 98 12:54:33,8416949 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54904 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40952461, endtime: 40952653, seqnum: 0, connid: 0 98 12:54:33,8417019 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54904 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40952463, endtime: 40952653, seqnum: 0, connid: 0 98 12:54:33,8417077 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54904 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40952464, endtime: 40952653, seqnum: 0, connid: 0 98 12:54:33,8417146 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54904 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40952466, endtime: 40952653, seqnum: 0, connid: 0 98 12:54:33,8417201 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54904 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40952467, endtime: 40952653, seqnum: 0, connid: 0 98 12:54:33,8417514 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54904 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40952470, endtime: 40952653, seqnum: 0, connid: 0 98 12:54:33,8417567 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54904 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40952472, endtime: 40952653, seqnum: 0, connid: 0 98 12:54:33,8417631 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54904 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40952473, endtime: 40952653, seqnum: 0, connid: 0 98 12:54:33,8417792 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54904 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40952476, endtime: 40952653, seqnum: 0, connid: 0 98 12:54:34,4155234 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54900 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40952075, endtime: 40952710, seqnum: 0, connid: 0 98 12:54:34,4155464 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54900 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40952259, endtime: 40952710, seqnum: 0, connid: 0 98 12:54:34,4155583 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54900 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40952261, endtime: 40952710, seqnum: 0, connid: 0 98 12:54:34,4155672 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54900 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40952262, endtime: 40952710, seqnum: 0, connid: 0 98 12:54:34,4155777 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54900 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40952264, endtime: 40952710, seqnum: 0, connid: 0 98 12:54:34,4155872 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54900 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40952266, endtime: 40952710, seqnum: 0, connid: 0 98 12:54:34,4155944 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54900 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40952269, endtime: 40952710, seqnum: 0, connid: 0 98 12:54:34,4155999 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54900 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40952270, endtime: 40952710, seqnum: 0, connid: 0 98 12:54:34,4156068 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54900 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40952274, endtime: 40952710, seqnum: 0, connid: 0 98 12:54:34,4156124 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54900 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40952275, endtime: 40952710, seqnum: 0, connid: 0 98 12:54:34,4156462 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54900 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40952276, endtime: 40952710, seqnum: 0, connid: 0 98 12:54:34,4156517 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54900 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40952278, endtime: 40952710, seqnum: 0, connid: 0 98 12:54:34,4156586 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54900 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40952280, endtime: 40952710, seqnum: 0, connid: 0 98 12:54:34,4158595 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54900 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40952710, endtime: 40952710, seqnum: 0, connid: 0 98 12:54:34,7411530 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54877 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40952128, endtime: 40952743, seqnum: 0, connid: 0 98 12:54:34,7411682 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54877 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40952440, endtime: 40952743, seqnum: 0, connid: 0 98 12:54:34,7411765 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54877 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40952442, endtime: 40952743, seqnum: 0, connid: 0 98 12:54:34,7411826 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54877 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40952444, endtime: 40952743, seqnum: 0, connid: 0 98 12:54:34,7411890 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54877 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40952445, endtime: 40952743, seqnum: 0, connid: 0 98 12:54:34,7411942 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54877 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40952447, endtime: 40952743, seqnum: 0, connid: 0 98 12:54:34,7412009 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54877 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40952448, endtime: 40952743, seqnum: 0, connid: 0 98 12:54:34,7412061 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54877 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40952450, endtime: 40952743, seqnum: 0, connid: 0 98 12:54:34,7412125 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54877 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40952452, endtime: 40952743, seqnum: 0, connid: 0 98 12:54:34,7412178 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54877 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40952453, endtime: 40952743, seqnum: 0, connid: 0 98 12:54:34,7413657 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54877 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40952456, endtime: 40952743, seqnum: 0, connid: 0 98 12:54:34,7413771 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54877 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40952459, endtime: 40952743, seqnum: 0, connid: 0 98 12:54:34,7413854 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54877 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40952461, endtime: 40952743, seqnum: 0, connid: 0 98 12:54:34,7414497 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54877 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40952743, endtime: 40952743, seqnum: 0, connid: 0 98 12:54:35,2859759 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54903 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40952573, endtime: 40952797, seqnum: 0, connid: 0 98 12:54:35,2859906 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54903 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40952575, endtime: 40952797, seqnum: 0, connid: 0 98 12:54:35,2859986 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54903 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40952578, endtime: 40952797, seqnum: 0, connid: 0 98 12:54:35,2860044 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54903 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40952580, endtime: 40952797, seqnum: 0, connid: 0 98 12:54:35,2860108 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54903 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40952581, endtime: 40952797, seqnum: 0, connid: 0 98 12:54:35,2860164 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54903 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40952583, endtime: 40952797, seqnum: 0, connid: 0 98 12:54:35,2860225 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54903 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40952586, endtime: 40952797, seqnum: 0, connid: 0 98 12:54:35,2860277 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54903 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40952587, endtime: 40952797, seqnum: 0, connid: 0 98 12:54:35,2860341 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54903 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40952589, endtime: 40952797, seqnum: 0, connid: 0 98 12:54:35,2861003 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54903 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40952592, endtime: 40952797, seqnum: 0, connid: 0 98 12:54:35,2861205 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54903 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40952595, endtime: 40952797, seqnum: 0, connid: 0 98 12:54:35,2861264 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54903 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40952597, endtime: 40952797, seqnum: 0, connid: 0 98 12:54:35,2861829 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54903 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40952599, endtime: 40952797, seqnum: 0, connid: 0 98 12:54:36,0412354 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54905 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40952230, endtime: 40952873, seqnum: 0, connid: 0 98 12:54:36,0412556 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54905 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40952438, endtime: 40952873, seqnum: 0, connid: 0 98 12:54:36,0412675 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54905 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40952439, endtime: 40952873, seqnum: 0, connid: 0 98 12:54:36,0412761 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54905 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40952441, endtime: 40952873, seqnum: 0, connid: 0 98 12:54:36,0412856 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54905 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40952442, endtime: 40952873, seqnum: 0, connid: 0 98 12:54:36,0413263 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54905 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40952444, endtime: 40952873, seqnum: 0, connid: 0 98 12:54:36,0413374 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54905 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40952445, endtime: 40952873, seqnum: 0, connid: 0 98 12:54:36,0413459 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54905 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40952447, endtime: 40952873, seqnum: 0, connid: 0 98 12:54:36,0413562 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54905 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40952448, endtime: 40952873, seqnum: 0, connid: 0 98 12:54:36,0413645 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54905 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40952450, endtime: 40952873, seqnum: 0, connid: 0 98 12:54:36,0414063 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54905 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40952452, endtime: 40952873, seqnum: 0, connid: 0 98 12:54:36,0415731 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54905 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40952453, endtime: 40952873, seqnum: 0, connid: 0 98 12:54:36,0415862 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54905 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40952456, endtime: 40952873, seqnum: 0, connid: 0 98 12:54:36,0420167 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54905 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40952873, endtime: 40952873, seqnum: 0, connid: 0 98 12:54:36,2194672 MCLauncher.exe 6080 TCP Disconnect WIN-0UOTFKKVN1S:54912 -> sheltex.company:8000 SUCCESS Length: 0, seqnum: 0, connid: 0 98 12:54:36,5604794 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54904 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40952653, endtime: 40952925, seqnum: 0, connid: 0 98 12:54:36,5604952 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54904 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40952655, endtime: 40952925, seqnum: 0, connid: 0 98 12:54:36,5605019 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54904 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40952656, endtime: 40952925, seqnum: 0, connid: 0 98 12:54:36,5605091 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54904 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40952658, endtime: 40952925, seqnum: 0, connid: 0 98 12:54:36,5605143 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54904 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40952659, endtime: 40952925, seqnum: 0, connid: 0 98 12:54:36,5605207 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54904 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40952661, endtime: 40952925, seqnum: 0, connid: 0 98 12:54:36,5605260 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54904 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40952662, endtime: 40952925, seqnum: 0, connid: 0 98 12:54:36,5605321 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54904 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40952664, endtime: 40952925, seqnum: 0, connid: 0 98 12:54:36,5605373 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54904 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40952667, endtime: 40952925, seqnum: 0, connid: 0 98 12:54:36,5606016 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54904 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40952669, endtime: 40952925, seqnum: 0, connid: 0 98 12:54:36,5606080 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54904 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40952670, endtime: 40952925, seqnum: 0, connid: 0 98 12:54:36,5607554 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54904 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40952672, endtime: 40952925, seqnum: 0, connid: 0 98 12:54:36,5607620 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54904 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40952674, endtime: 40952925, seqnum: 0, connid: 0 98 12:54:36,8270337 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54876 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40952479, endtime: 40952951, seqnum: 0, connid: 0 98 12:54:36,8270517 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54876 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40952481, endtime: 40952951, seqnum: 0, connid: 0 98 12:54:36,8270589 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54876 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40952483, endtime: 40952951, seqnum: 0, connid: 0 98 12:54:36,8270658 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54876 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40952484, endtime: 40952951, seqnum: 0, connid: 0 98 12:54:36,8270714 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54876 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40952486, endtime: 40952951, seqnum: 0, connid: 0 98 12:54:36,8270777 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54876 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40952488, endtime: 40952951, seqnum: 0, connid: 0 98 12:54:36,8270830 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54876 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40952489, endtime: 40952951, seqnum: 0, connid: 0 98 12:54:36,8270894 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54876 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40952492, endtime: 40952951, seqnum: 0, connid: 0 98 12:54:36,8270946 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54876 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40952494, endtime: 40952951, seqnum: 0, connid: 0 98 12:54:36,8271251 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54876 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40952495, endtime: 40952951, seqnum: 0, connid: 0 98 12:54:36,8271309 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54876 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40952499, endtime: 40952951, seqnum: 0, connid: 0 98 12:54:36,8271373 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54876 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40952500, endtime: 40952951, seqnum: 0, connid: 0 98 12:54:36,8272581 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54876 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40952501, endtime: 40952951, seqnum: 0, connid: 0 98 12:54:37,9226493 MCLauncher.exe 6080 TCP Reconnect WIN-0UOTFKKVN1S:54920 -> sheltex.company:8000 SUCCESS Length: 0, seqnum: 0, connid: 0 98 12:54:38,8533598 MCLauncher.exe 6080 TCP Connect WIN-0UOTFKKVN1S:54920 -> sheltex.company:8000 SUCCESS Length: 0, mss: 1460, sackopt: 0, tsopt: 0, wsopt: 0, rcvwin: 64240, rcvwinscale: 0, sndwinscale: 0, seqnum: 0, connid: 0 98 12:54:38,9951912 MCLauncher.exe 6080 TCP TCPCopy WIN-0UOTFKKVN1S:54920 -> sheltex.company:8000 SUCCESS Length: 6, seqnum: 0, connid: 0 98 12:54:38,9952034 MCLauncher.exe 6080 TCP Receive WIN-0UOTFKKVN1S:54920 -> sheltex.company:8000 SUCCESS Length: 6, seqnum: 0, connid: 0 98 12:54:38,9965529 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54920 -> sheltex.company:8000 SUCCESS Length: 9, startime: 40953168, endtime: 40953168, seqnum: 0, connid: 0 98 12:54:38,9967438 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54920 -> sheltex.company:8000 SUCCESS Length: 103, startime: 40953168, endtime: 40953168, seqnum: 0, connid: 0 98 12:54:39,0900120 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54903 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40952797, endtime: 40953178, seqnum: 0, connid: 0 98 12:54:39,0900308 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54903 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40952798, endtime: 40953178, seqnum: 0, connid: 0 98 12:54:39,0900388 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54903 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40952800, endtime: 40953178, seqnum: 0, connid: 0 98 12:54:39,0900466 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54903 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40952801, endtime: 40953178, seqnum: 0, connid: 0 98 12:54:39,0900527 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54903 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40952803, endtime: 40953178, seqnum: 0, connid: 0 98 12:54:39,0900599 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54903 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40952806, endtime: 40953178, seqnum: 0, connid: 0 98 12:54:39,0900654 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54903 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40952808, endtime: 40953178, seqnum: 0, connid: 0 98 12:54:39,0900724 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54903 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40952809, endtime: 40953178, seqnum: 0, connid: 0 98 12:54:39,0900779 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54903 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40952813, endtime: 40953178, seqnum: 0, connid: 0 98 12:54:39,0901488 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54903 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40952814, endtime: 40953178, seqnum: 0, connid: 0 98 12:54:39,0901560 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54903 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40952816, endtime: 40953178, seqnum: 0, connid: 0 98 12:54:39,0901629 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54903 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40952817, endtime: 40953178, seqnum: 0, connid: 0 98 12:54:39,0901774 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54877 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40952745, endtime: 40953178, seqnum: 0, connid: 0 98 12:54:39,0901846 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54877 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40952748, endtime: 40953178, seqnum: 0, connid: 0 98 12:54:39,0901904 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54877 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40952750, endtime: 40953178, seqnum: 0, connid: 0 98 12:54:39,0901976 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54877 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40952753, endtime: 40953178, seqnum: 0, connid: 0 98 12:54:39,0902034 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54877 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40952755, endtime: 40953178, seqnum: 0, connid: 0 98 12:54:39,0903031 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54877 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40952756, endtime: 40953178, seqnum: 0, connid: 0 98 12:54:39,0903103 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54877 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40952758, endtime: 40953178, seqnum: 0, connid: 0 98 12:54:39,0903173 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54877 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40952759, endtime: 40953178, seqnum: 0, connid: 0 98 12:54:39,0903231 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54877 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40952761, endtime: 40953178, seqnum: 0, connid: 0 98 12:54:39,0903300 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54877 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40952762, endtime: 40953178, seqnum: 0, connid: 0 98 12:54:39,0903358 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54877 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40952764, endtime: 40953178, seqnum: 0, connid: 0 98 12:54:39,0903425 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54877 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40952767, endtime: 40953178, seqnum: 0, connid: 0 98 12:54:39,0903572 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54903 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40952819, endtime: 40953178, seqnum: 0, connid: 0 98 12:54:39,0912285 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54877 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40952769, endtime: 40953178, seqnum: 0, connid: 0 98 12:54:39,9163020 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54876 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40952951, endtime: 40953260, seqnum: 0, connid: 0 98 12:54:39,9163197 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54876 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40952955, endtime: 40953260, seqnum: 0, connid: 0 98 12:54:39,9163266 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54876 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40952959, endtime: 40953260, seqnum: 0, connid: 0 98 12:54:39,9163338 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54876 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40952962, endtime: 40953260, seqnum: 0, connid: 0 98 12:54:39,9163394 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54876 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40952966, endtime: 40953260, seqnum: 0, connid: 0 98 12:54:39,9163463 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54876 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40952967, endtime: 40953260, seqnum: 0, connid: 0 98 12:54:39,9163516 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54876 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40952969, endtime: 40953260, seqnum: 0, connid: 0 98 12:54:39,9163582 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54876 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40952970, endtime: 40953260, seqnum: 0, connid: 0 98 12:54:39,9163635 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54876 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40952973, endtime: 40953260, seqnum: 0, connid: 0 98 12:54:39,9164114 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54876 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40952975, endtime: 40953260, seqnum: 0, connid: 0 98 12:54:39,9164186 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54876 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40952977, endtime: 40953260, seqnum: 0, connid: 0 98 12:54:39,9165491 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54876 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40952978, endtime: 40953260, seqnum: 0, connid: 0 98 12:54:39,9165607 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54876 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40952981, endtime: 40953260, seqnum: 0, connid: 0 98 12:54:40,0899915 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54904 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40952925, endtime: 40953278, seqnum: 0, connid: 0 98 12:54:40,0900070 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54904 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40952928, endtime: 40953278, seqnum: 0, connid: 0 98 12:54:40,0900139 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54904 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40952930, endtime: 40953278, seqnum: 0, connid: 0 98 12:54:40,0900208 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54904 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40952931, endtime: 40953278, seqnum: 0, connid: 0 98 12:54:40,0900264 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54904 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40952934, endtime: 40953278, seqnum: 0, connid: 0 98 12:54:40,0900327 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54904 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40952936, endtime: 40953278, seqnum: 0, connid: 0 98 12:54:40,0900380 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54904 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40952937, endtime: 40953278, seqnum: 0, connid: 0 98 12:54:40,0900444 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54904 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40952939, endtime: 40953278, seqnum: 0, connid: 0 98 12:54:40,0900494 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54904 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40952941, endtime: 40953278, seqnum: 0, connid: 0 98 12:54:40,0901350 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54904 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40952944, endtime: 40953278, seqnum: 0, connid: 0 98 12:54:40,0901452 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54904 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40952945, endtime: 40953278, seqnum: 0, connid: 0 98 12:54:40,0901563 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54904 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40952947, endtime: 40953278, seqnum: 0, connid: 0 98 12:54:40,0902660 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54904 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40952949, endtime: 40953278, seqnum: 0, connid: 0 98 12:54:40,3451357 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54900 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40952711, endtime: 40953303, seqnum: 0, connid: 0 98 12:54:40,3451470 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54900 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40952713, endtime: 40953303, seqnum: 0, connid: 0 98 12:54:40,3451515 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54900 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40952716, endtime: 40953303, seqnum: 0, connid: 0 98 12:54:40,3451554 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54900 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40952717, endtime: 40953303, seqnum: 0, connid: 0 98 12:54:40,3451587 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54900 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40952720, endtime: 40953303, seqnum: 0, connid: 0 98 12:54:40,3451617 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54900 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40952723, endtime: 40953303, seqnum: 0, connid: 0 98 12:54:40,3451648 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54900 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40952725, endtime: 40953303, seqnum: 0, connid: 0 98 12:54:40,3451678 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54900 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40952727, endtime: 40953303, seqnum: 0, connid: 0 98 12:54:40,3451709 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54900 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40952728, endtime: 40953303, seqnum: 0, connid: 0 98 12:54:40,3451739 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54900 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40952730, endtime: 40953303, seqnum: 0, connid: 0 98 12:54:40,3451770 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54900 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40952731, endtime: 40953303, seqnum: 0, connid: 0 98 12:54:40,3451800 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54900 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40952733, endtime: 40953303, seqnum: 0, connid: 0 98 12:54:40,6569448 MCLauncher.exe 6080 TCP Retransmit WIN-0UOTFKKVN1S:54900 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 0, seqnum: 0, connid: 0 98 12:54:41,1680168 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54905 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40952873, endtime: 40953385, seqnum: 0, connid: 0 98 12:54:41,1680323 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54905 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40952876, endtime: 40953385, seqnum: 0, connid: 0 98 12:54:41,1680404 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54905 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40952878, endtime: 40953385, seqnum: 0, connid: 0 98 12:54:41,1680462 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54905 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40952880, endtime: 40953385, seqnum: 0, connid: 0 98 12:54:41,1680528 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54905 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40952883, endtime: 40953385, seqnum: 0, connid: 0 98 12:54:41,1680584 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54905 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40952884, endtime: 40953385, seqnum: 0, connid: 0 98 12:54:41,1680647 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54905 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40952886, endtime: 40953385, seqnum: 0, connid: 0 98 12:54:41,1680700 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54905 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40952887, endtime: 40953385, seqnum: 0, connid: 0 98 12:54:41,1680764 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54905 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40952889, endtime: 40953385, seqnum: 0, connid: 0 98 12:54:41,1681357 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54905 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40952891, endtime: 40953385, seqnum: 0, connid: 0 98 12:54:41,1681434 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54905 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40952892, endtime: 40953385, seqnum: 0, connid: 0 98 12:54:41,1681490 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54905 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40952894, endtime: 40953385, seqnum: 0, connid: 0 98 12:54:41,1819214 MCLauncher.exe 6080 TCP Disconnect WIN-0UOTFKKVN1S:54903 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 0, seqnum: 0, connid: 0 98 12:54:41,2668178 MCLauncher.exe 6080 TCP Retransmit WIN-0UOTFKKVN1S:54900 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 0, seqnum: 0, connid: 0 98 12:54:41,3050504 MCLauncher.exe 6080 TCP Connect WIN-0UOTFKKVN1S:54925 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 0, mss: 1460, sackopt: 0, tsopt: 0, wsopt: 0, rcvwin: 64240, rcvwinscale: 0, sndwinscale: 0, seqnum: 0, connid: 0 98 12:54:41,3053945 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54925 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40953399, endtime: 40953399, seqnum: 0, connid: 0 98 12:54:41,3128911 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54925 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40953400, endtime: 40953400, seqnum: 0, connid: 0 98 12:54:41,3198485 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54925 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40953401, endtime: 40953401, seqnum: 0, connid: 0 98 12:54:41,3251530 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54925 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40953401, endtime: 40953401, seqnum: 0, connid: 0 98 12:54:41,3531504 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54925 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40953404, endtime: 40953404, seqnum: 0, connid: 0 98 12:54:41,3759978 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54925 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40953406, endtime: 40953406, seqnum: 0, connid: 0 98 12:54:41,3915354 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54925 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40953408, endtime: 40953408, seqnum: 0, connid: 0 98 12:54:41,4080305 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54925 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40953409, endtime: 40953409, seqnum: 0, connid: 0 98 12:54:41,4414221 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54925 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40953413, endtime: 40953413, seqnum: 0, connid: 0 98 12:54:41,4582884 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54925 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40953414, endtime: 40953414, seqnum: 0, connid: 0 98 12:54:41,4886175 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54925 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40953417, endtime: 40953417, seqnum: 0, connid: 0 98 12:54:41,5167076 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54925 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40953420, endtime: 40953420, seqnum: 0, connid: 0 98 12:54:41,5320363 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54925 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40953422, endtime: 40953422, seqnum: 0, connid: 0 98 12:54:41,5487184 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54925 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40953423, endtime: 40953423, seqnum: 0, connid: 0 98 12:54:41,5898033 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54925 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40953426, endtime: 40953428, seqnum: 0, connid: 0 98 12:54:41,6100586 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54925 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40953430, endtime: 40953430, seqnum: 0, connid: 0 98 12:54:41,6294126 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54925 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40953431, endtime: 40953432, seqnum: 0, connid: 0 98 12:54:41,6440196 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54925 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40953433, endtime: 40953433, seqnum: 0, connid: 0 98 12:54:41,6582844 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54925 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40953434, endtime: 40953434, seqnum: 0, connid: 0 98 12:54:41,6901431 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54925 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40953437, endtime: 40953438, seqnum: 0, connid: 0 98 12:54:41,7047165 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54925 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40953439, endtime: 40953439, seqnum: 0, connid: 0 98 12:54:41,7204668 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54925 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40953441, endtime: 40953441, seqnum: 0, connid: 0 98 12:54:41,7553244 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54925 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40953444, endtime: 40953444, seqnum: 0, connid: 0 98 12:54:41,7660974 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54925 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40953445, endtime: 40953445, seqnum: 0, connid: 0 98 12:54:41,7824770 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54925 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40953447, endtime: 40953447, seqnum: 0, connid: 0 98 12:54:41,8005261 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54925 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40953448, endtime: 40953449, seqnum: 0, connid: 0 98 12:54:42,0136453 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54925 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40953450, endtime: 40953470, seqnum: 0, connid: 0 98 12:54:42,0136608 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54925 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40953453, endtime: 40953470, seqnum: 0, connid: 0 98 12:54:42,0136683 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54925 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40953455, endtime: 40953470, seqnum: 0, connid: 0 98 12:54:42,0136755 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54925 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40953456, endtime: 40953470, seqnum: 0, connid: 0 98 12:54:42,0136811 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54925 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40953461, endtime: 40953470, seqnum: 0, connid: 0 98 12:54:42,0136877 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54925 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40953462, endtime: 40953470, seqnum: 0, connid: 0 98 12:54:42,0136930 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54925 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40953464, endtime: 40953470, seqnum: 0, connid: 0 98 12:54:42,0136996 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54925 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40953466, endtime: 40953470, seqnum: 0, connid: 0 98 12:54:42,0137049 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54925 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40953469, endtime: 40953470, seqnum: 0, connid: 0 98 12:54:42,0399449 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54925 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40953472, endtime: 40953473, seqnum: 0, connid: 0 98 12:54:42,0565799 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54925 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40953474, endtime: 40953474, seqnum: 0, connid: 0 98 12:54:42,1016838 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54925 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40953479, endtime: 40953479, seqnum: 0, connid: 0 98 12:54:42,4574340 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54877 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40953178, endtime: 40953514, seqnum: 0, connid: 0 98 12:54:42,4574517 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54877 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40953180, endtime: 40953514, seqnum: 0, connid: 0 98 12:54:42,4574600 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54877 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40953181, endtime: 40953514, seqnum: 0, connid: 0 98 12:54:42,4574683 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54877 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40953183, endtime: 40953514, seqnum: 0, connid: 0 98 12:54:42,4574747 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54877 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40953184, endtime: 40953514, seqnum: 0, connid: 0 98 12:54:42,4574825 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54877 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40953186, endtime: 40953514, seqnum: 0, connid: 0 98 12:54:42,4574888 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54877 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40953190, endtime: 40953514, seqnum: 0, connid: 0 98 12:54:42,4574963 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54877 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40953191, endtime: 40953514, seqnum: 0, connid: 0 98 12:54:42,4575027 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54877 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40953192, endtime: 40953514, seqnum: 0, connid: 0 98 12:54:42,4575711 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54877 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40953194, endtime: 40953514, seqnum: 0, connid: 0 98 12:54:42,4575792 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54877 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40953195, endtime: 40953514, seqnum: 0, connid: 0 98 12:54:42,4575866 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54877 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40953199, endtime: 40953514, seqnum: 0, connid: 0 98 12:54:42,4576537 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54877 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40953201, endtime: 40953514, seqnum: 0, connid: 0 98 12:54:42,4748326 MCLauncher.exe 6080 TCP Retransmit WIN-0UOTFKKVN1S:54900 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 0, seqnum: 0, connid: 0 98 12:54:42,6461441 MCLauncher.exe 6080 TCP Disconnect WIN-0UOTFKKVN1S:54904 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 0, seqnum: 0, connid: 0 98 12:54:42,9926894 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54876 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40953260, endtime: 40953568, seqnum: 0, connid: 0 98 12:54:42,9927082 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54876 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40953262, endtime: 40953568, seqnum: 0, connid: 0 98 12:54:42,9927154 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54876 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40953264, endtime: 40953568, seqnum: 0, connid: 0 98 12:54:42,9927229 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54876 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40953268, endtime: 40953568, seqnum: 0, connid: 0 98 12:54:42,9927287 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54876 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40953271, endtime: 40953568, seqnum: 0, connid: 0 98 12:54:42,9927351 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54876 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40953274, endtime: 40953568, seqnum: 0, connid: 0 98 12:54:42,9927406 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54876 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40953275, endtime: 40953568, seqnum: 0, connid: 0 98 12:54:42,9927470 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54876 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40953277, endtime: 40953568, seqnum: 0, connid: 0 98 12:54:42,9927523 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54876 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40953278, endtime: 40953568, seqnum: 0, connid: 0 98 12:54:42,9927813 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54876 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40953280, endtime: 40953568, seqnum: 0, connid: 0 98 12:54:42,9927872 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54876 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40953281, endtime: 40953568, seqnum: 0, connid: 0 98 12:54:42,9927935 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54876 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40953284, endtime: 40953568, seqnum: 0, connid: 0 98 12:54:42,9927991 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54876 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40953286, endtime: 40953568, seqnum: 0, connid: 0 98 12:54:43,0770978 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54876 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40953568, endtime: 40953576, seqnum: 0, connid: 0 98 12:54:44,8162116 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54877 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40953514, endtime: 40953750, seqnum: 0, connid: 0 98 12:54:44,8162279 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54877 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40953516, endtime: 40953750, seqnum: 0, connid: 0 98 12:54:44,8162354 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54877 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40953519, endtime: 40953750, seqnum: 0, connid: 0 98 12:54:44,8162429 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54877 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40953520, endtime: 40953750, seqnum: 0, connid: 0 98 12:54:44,8162484 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54877 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40953523, endtime: 40953750, seqnum: 0, connid: 0 98 12:54:44,8162551 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54877 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40953525, endtime: 40953750, seqnum: 0, connid: 0 98 12:54:44,8162606 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54877 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40953526, endtime: 40953750, seqnum: 0, connid: 0 98 12:54:44,8162673 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54877 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40953529, endtime: 40953750, seqnum: 0, connid: 0 98 12:54:44,8162725 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54877 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40953533, endtime: 40953750, seqnum: 0, connid: 0 98 12:54:44,8163523 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54877 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40953534, endtime: 40953750, seqnum: 0, connid: 0 98 12:54:44,8163595 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54877 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40953537, endtime: 40953750, seqnum: 0, connid: 0 98 12:54:44,8163928 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54877 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40953539, endtime: 40953750, seqnum: 0, connid: 0 98 12:54:44,8165853 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54877 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40953541, endtime: 40953750, seqnum: 0, connid: 0 98 12:54:44,8754877 MCLauncher.exe 6080 TCP Retransmit WIN-0UOTFKKVN1S:54900 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 0, seqnum: 0, connid: 0 98 12:54:45,1249360 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54876 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40953570, endtime: 40953781, seqnum: 0, connid: 0 98 12:54:45,1249507 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54876 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40953572, endtime: 40953781, seqnum: 0, connid: 0 98 12:54:45,1249592 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54876 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40953573, endtime: 40953781, seqnum: 0, connid: 0 98 12:54:45,1249656 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54876 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40953577, endtime: 40953781, seqnum: 0, connid: 0 98 12:54:45,1249725 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54876 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40953578, endtime: 40953781, seqnum: 0, connid: 0 98 12:54:45,1249784 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54876 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40953580, endtime: 40953781, seqnum: 0, connid: 0 98 12:54:45,1249853 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54876 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40953581, endtime: 40953781, seqnum: 0, connid: 0 98 12:54:45,1249908 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54876 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40953583, endtime: 40953781, seqnum: 0, connid: 0 98 12:54:45,1249978 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54876 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40953584, endtime: 40953781, seqnum: 0, connid: 0 98 12:54:45,1250521 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54876 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40953586, endtime: 40953781, seqnum: 0, connid: 0 98 12:54:45,1250604 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54876 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40953587, endtime: 40953781, seqnum: 0, connid: 0 98 12:54:45,1250665 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54876 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40953589, endtime: 40953781, seqnum: 0, connid: 0 98 12:54:45,2938097 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54905 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40952895, endtime: 40953798, seqnum: 0, connid: 0 98 12:54:45,2938260 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54905 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40953385, endtime: 40953798, seqnum: 0, connid: 0 98 12:54:45,2938341 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54905 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40953387, endtime: 40953798, seqnum: 0, connid: 0 98 12:54:45,2938399 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54905 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40953389, endtime: 40953798, seqnum: 0, connid: 0 98 12:54:45,2938468 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54905 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40953391, endtime: 40953798, seqnum: 0, connid: 0 98 12:54:45,2938521 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54905 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40953392, endtime: 40953798, seqnum: 0, connid: 0 98 12:54:45,2938584 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54905 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40953394, endtime: 40953798, seqnum: 0, connid: 0 98 12:54:45,2938634 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54905 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40953395, endtime: 40953798, seqnum: 0, connid: 0 98 12:54:45,2938698 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54905 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40953399, endtime: 40953798, seqnum: 0, connid: 0 98 12:54:45,2938751 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54905 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40953400, endtime: 40953798, seqnum: 0, connid: 0 98 12:54:45,2939047 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54905 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40953401, endtime: 40953798, seqnum: 0, connid: 0 98 12:54:45,2939102 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54905 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40953404, endtime: 40953798, seqnum: 0, connid: 0 98 12:54:45,2939166 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54905 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40953406, endtime: 40953798, seqnum: 0, connid: 0 98 12:54:45,2941003 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54905 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40953798, endtime: 40953798, seqnum: 0, connid: 0 98 12:54:45,6500583 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54925 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40953480, endtime: 40953834, seqnum: 0, connid: 0 98 12:54:45,6500760 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54925 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40953481, endtime: 40953834, seqnum: 0, connid: 0 98 12:54:45,6500830 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54925 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40953484, endtime: 40953834, seqnum: 0, connid: 0 98 12:54:45,6500899 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54925 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40953486, endtime: 40953834, seqnum: 0, connid: 0 98 12:54:45,6500954 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54925 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40953489, endtime: 40953834, seqnum: 0, connid: 0 98 12:54:45,6501021 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54925 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40953491, endtime: 40953834, seqnum: 0, connid: 0 98 12:54:45,6501073 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54925 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40953494, endtime: 40953834, seqnum: 0, connid: 0 98 12:54:45,6501134 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54925 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40953497, endtime: 40953834, seqnum: 0, connid: 0 98 12:54:45,6501187 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54925 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40953499, endtime: 40953834, seqnum: 0, connid: 0 98 12:54:45,6501470 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54925 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40953500, endtime: 40953834, seqnum: 0, connid: 0 98 12:54:45,6501528 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54925 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40953501, endtime: 40953834, seqnum: 0, connid: 0 98 12:54:45,6501592 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54925 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40953503, endtime: 40953834, seqnum: 0, connid: 0 98 12:54:45,6502772 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54925 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40953505, endtime: 40953834, seqnum: 0, connid: 0 98 12:54:45,6562818 MCLauncher.exe 6080 TCP Reconnect WIN-0UOTFKKVN1S:54927 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 0, seqnum: 0, connid: 0 98 12:54:46,9529648 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54925 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40953834, endtime: 40953964, seqnum: 0, connid: 0 98 12:54:46,9529809 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54925 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40953834, endtime: 40953964, seqnum: 0, connid: 0 98 12:54:46,9529881 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54925 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40953836, endtime: 40953964, seqnum: 0, connid: 0 98 12:54:46,9529950 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54925 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40953839, endtime: 40953964, seqnum: 0, connid: 0 98 12:54:46,9530005 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54925 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40953841, endtime: 40953964, seqnum: 0, connid: 0 98 12:54:46,9530069 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54925 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40953842, endtime: 40953964, seqnum: 0, connid: 0 98 12:54:46,9530122 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54925 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40953845, endtime: 40953964, seqnum: 0, connid: 0 98 12:54:46,9530185 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54925 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40953847, endtime: 40953964, seqnum: 0, connid: 0 98 12:54:46,9530238 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54925 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40953848, endtime: 40953964, seqnum: 0, connid: 0 98 12:54:46,9530521 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54925 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40953850, endtime: 40953964, seqnum: 0, connid: 0 98 12:54:46,9530579 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54925 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40953853, endtime: 40953964, seqnum: 0, connid: 0 98 12:54:46,9530640 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54925 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40953855, endtime: 40953964, seqnum: 0, connid: 0 98 12:54:46,9530692 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54925 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40953856, endtime: 40953964, seqnum: 0, connid: 0 98 12:54:48,0976695 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54876 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40953591, endtime: 40954078, seqnum: 0, connid: 0 98 12:54:48,0976834 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54876 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40953781, endtime: 40954078, seqnum: 0, connid: 0 98 12:54:48,0976914 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54876 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40953783, endtime: 40954078, seqnum: 0, connid: 0 98 12:54:48,0976972 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54876 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40953786, endtime: 40954078, seqnum: 0, connid: 0 98 12:54:48,0977036 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54876 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40953789, endtime: 40954078, seqnum: 0, connid: 0 98 12:54:48,0977088 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54876 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40953791, endtime: 40954078, seqnum: 0, connid: 0 98 12:54:48,0977149 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54876 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40953792, endtime: 40954078, seqnum: 0, connid: 0 98 12:54:48,0977202 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54876 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40953795, endtime: 40954078, seqnum: 0, connid: 0 98 12:54:48,0977263 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54876 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40953797, endtime: 40954078, seqnum: 0, connid: 0 98 12:54:48,0977316 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54876 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40953800, endtime: 40954078, seqnum: 0, connid: 0 98 12:54:48,0977595 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54876 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40953801, endtime: 40954078, seqnum: 0, connid: 0 98 12:54:48,0977648 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54876 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40953803, endtime: 40954078, seqnum: 0, connid: 0 98 12:54:48,0978870 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54876 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40953806, endtime: 40954078, seqnum: 0, connid: 0 98 12:54:48,0979651 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54876 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40954078, endtime: 40954078, seqnum: 0, connid: 0 98 12:54:49,0095540 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54905 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40953800, endtime: 40954170, seqnum: 0, connid: 0 98 12:54:49,0095743 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54905 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40953801, endtime: 40954170, seqnum: 0, connid: 0 98 12:54:49,0095845 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54905 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40953803, endtime: 40954170, seqnum: 0, connid: 0 98 12:54:49,0095939 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54905 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40953806, endtime: 40954170, seqnum: 0, connid: 0 98 12:54:49,0096017 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54905 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40953808, endtime: 40954170, seqnum: 0, connid: 0 98 12:54:49,0096106 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54905 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40953809, endtime: 40954170, seqnum: 0, connid: 0 98 12:54:49,0096178 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54905 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40953812, endtime: 40954170, seqnum: 0, connid: 0 98 12:54:49,0096261 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54905 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40953814, endtime: 40954170, seqnum: 0, connid: 0 98 12:54:49,0096336 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54905 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40953816, endtime: 40954170, seqnum: 0, connid: 0 98 12:54:49,0096898 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54905 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40953819, endtime: 40954170, seqnum: 0, connid: 0 98 12:54:49,0096992 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54905 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40953820, endtime: 40954170, seqnum: 0, connid: 0 98 12:54:49,0097075 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54905 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40953822, endtime: 40954170, seqnum: 0, connid: 0 98 12:54:49,1698988 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54877 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40953750, endtime: 40954186, seqnum: 0, connid: 0 98 12:54:49,1699144 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54877 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40953751, endtime: 40954186, seqnum: 0, connid: 0 98 12:54:49,1699216 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54877 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40953753, endtime: 40954186, seqnum: 0, connid: 0 98 12:54:49,1699288 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54877 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40953755, endtime: 40954186, seqnum: 0, connid: 0 98 12:54:49,1699343 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54877 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40953756, endtime: 40954186, seqnum: 0, connid: 0 98 12:54:49,1699412 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54877 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40953758, endtime: 40954186, seqnum: 0, connid: 0 98 12:54:49,1699468 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54877 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40953761, endtime: 40954186, seqnum: 0, connid: 0 98 12:54:49,1699537 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54877 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40953762, endtime: 40954186, seqnum: 0, connid: 0 98 12:54:49,1699592 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54877 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40953764, endtime: 40954186, seqnum: 0, connid: 0 98 12:54:49,1699870 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54877 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40953766, endtime: 40954186, seqnum: 0, connid: 0 98 12:54:49,1699928 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54877 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40953767, endtime: 40954186, seqnum: 0, connid: 0 98 12:54:49,1699994 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54877 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40953769, endtime: 40954186, seqnum: 0, connid: 0 98 12:54:49,1700050 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54877 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40953770, endtime: 40954186, seqnum: 0, connid: 0 98 12:54:49,6882721 MCLauncher.exe 6080 TCP Retransmit WIN-0UOTFKKVN1S:54900 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 0, seqnum: 0, connid: 0 98 12:54:50,1037664 MCLauncher.exe 6080 TCP TCPCopy WIN-0UOTFKKVN1S:54920 -> sheltex.company:8000 SUCCESS Length: 2, seqnum: 0, connid: 0 98 12:54:50,1037805 MCLauncher.exe 6080 TCP Receive WIN-0UOTFKKVN1S:54920 -> sheltex.company:8000 SUCCESS Length: 2, seqnum: 0, connid: 0 98 12:54:50,1041673 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54920 -> sheltex.company:8000 SUCCESS Length: 2, startime: 40954279, endtime: 40954279, seqnum: 0, connid: 0 98 12:54:50,4330711 MCLauncher.exe 6080 TCP Disconnect WIN-0UOTFKKVN1S:54876 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 0, seqnum: 0, connid: 0 98 12:54:50,5213749 MCLauncher.exe 6080 TCP Connect WIN-0UOTFKKVN1S:54931 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 0, mss: 1460, sackopt: 0, tsopt: 0, wsopt: 0, rcvwin: 64240, rcvwinscale: 0, sndwinscale: 0, seqnum: 0, connid: 0 98 12:54:50,5217149 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54931 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40954321, endtime: 40954321, seqnum: 0, connid: 0 98 12:54:50,5327616 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54931 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40954322, endtime: 40954322, seqnum: 0, connid: 0 98 12:54:50,5640003 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54931 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40954325, endtime: 40954325, seqnum: 0, connid: 0 98 12:54:50,5798313 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54931 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40954327, endtime: 40954327, seqnum: 0, connid: 0 98 12:54:50,5951610 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54931 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40954328, endtime: 40954328, seqnum: 0, connid: 0 98 12:54:50,6123017 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54925 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40953964, endtime: 40954330, seqnum: 0, connid: 0 98 12:54:50,6123175 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54925 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40953967, endtime: 40954330, seqnum: 0, connid: 0 98 12:54:50,6123255 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54925 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40953969, endtime: 40954330, seqnum: 0, connid: 0 98 12:54:50,6123330 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54925 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40953970, endtime: 40954330, seqnum: 0, connid: 0 98 12:54:50,6123388 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54925 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40953974, endtime: 40954330, seqnum: 0, connid: 0 98 12:54:50,6123457 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54925 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40953977, endtime: 40954330, seqnum: 0, connid: 0 98 12:54:50,6123513 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54925 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40953978, endtime: 40954330, seqnum: 0, connid: 0 98 12:54:50,6123579 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54925 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40953980, endtime: 40954330, seqnum: 0, connid: 0 98 12:54:50,6123634 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54925 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40953981, endtime: 40954330, seqnum: 0, connid: 0 98 12:54:50,6123909 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54925 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40953983, endtime: 40954330, seqnum: 0, connid: 0 98 12:54:50,6123970 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54925 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40953984, endtime: 40954330, seqnum: 0, connid: 0 98 12:54:50,6124039 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54925 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40953987, endtime: 40954330, seqnum: 0, connid: 0 98 12:54:50,6124094 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54925 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40953989, endtime: 40954330, seqnum: 0, connid: 0 98 12:54:50,6137019 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54931 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40954330, endtime: 40954330, seqnum: 0, connid: 0 98 12:54:50,6438620 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54931 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40954333, endtime: 40954333, seqnum: 0, connid: 0 98 12:54:50,6733784 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54931 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40954336, endtime: 40954336, seqnum: 0, connid: 0 98 12:54:50,6829557 MCLauncher.exe 6080 TCP Connect WIN-0UOTFKKVN1S:54935 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 0, mss: 1460, sackopt: 0, tsopt: 0, wsopt: 0, rcvwin: 64240, rcvwinscale: 0, sndwinscale: 0, seqnum: 0, connid: 0 98 12:54:50,6833059 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54935 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40954337, endtime: 40954337, seqnum: 0, connid: 0 98 12:54:50,6994028 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54931 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40954338, endtime: 40954339, seqnum: 0, connid: 0 98 12:54:50,7046544 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54935 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40954339, endtime: 40954339, seqnum: 0, connid: 0 98 12:54:50,7203114 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54935 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40954341, endtime: 40954341, seqnum: 0, connid: 0 98 12:54:50,7204605 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54931 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40954341, endtime: 40954341, seqnum: 0, connid: 0 98 12:54:50,7357891 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54935 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40954342, endtime: 40954342, seqnum: 0, connid: 0 98 12:54:50,7367685 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54931 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40954342, endtime: 40954342, seqnum: 0, connid: 0 98 12:54:50,7510627 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54935 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40954344, endtime: 40954344, seqnum: 0, connid: 0 98 12:54:50,7512154 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54931 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40954344, endtime: 40954344, seqnum: 0, connid: 0 98 12:54:50,7673311 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54935 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40954345, endtime: 40954345, seqnum: 0, connid: 0 98 12:54:50,7674982 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54931 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40954345, endtime: 40954345, seqnum: 0, connid: 0 98 12:54:50,7828330 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54935 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40954347, endtime: 40954347, seqnum: 0, connid: 0 98 12:54:50,7841712 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54931 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40954347, endtime: 40954347, seqnum: 0, connid: 0 98 12:54:50,7980345 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54935 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40954348, endtime: 40954348, seqnum: 0, connid: 0 98 12:54:50,8003510 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54931 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40954348, endtime: 40954349, seqnum: 0, connid: 0 98 12:54:50,8138128 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54935 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40954350, endtime: 40954350, seqnum: 0, connid: 0 98 12:54:50,8142592 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54931 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40954350, endtime: 40954350, seqnum: 0, connid: 0 98 12:54:50,8294784 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54935 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40954352, endtime: 40954352, seqnum: 0, connid: 0 98 12:54:50,8294989 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54931 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40954352, endtime: 40954352, seqnum: 0, connid: 0 98 12:54:50,8450221 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54935 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40954353, endtime: 40954353, seqnum: 0, connid: 0 98 12:54:50,8468399 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54931 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40954353, endtime: 40954353, seqnum: 0, connid: 0 98 12:54:50,8630280 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54935 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40954355, endtime: 40954355, seqnum: 0, connid: 0 98 12:54:50,8633266 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54931 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40954355, endtime: 40954355, seqnum: 0, connid: 0 98 12:54:50,8762086 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54935 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40954356, endtime: 40954356, seqnum: 0, connid: 0 98 12:54:50,8763228 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54931 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40954356, endtime: 40954356, seqnum: 0, connid: 0 98 12:54:50,9091556 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54931 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40954359, endtime: 40954360, seqnum: 0, connid: 0 98 12:54:50,9092855 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54935 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40954359, endtime: 40954360, seqnum: 0, connid: 0 98 12:54:50,9234195 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54935 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40954361, endtime: 40954361, seqnum: 0, connid: 0 98 12:54:50,9235232 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54931 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40954361, endtime: 40954361, seqnum: 0, connid: 0 98 12:54:50,9388233 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54931 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40954362, endtime: 40954362, seqnum: 0, connid: 0 98 12:54:50,9389579 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54935 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40954362, endtime: 40954363, seqnum: 0, connid: 0 98 12:54:50,9547233 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54935 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40954364, endtime: 40954364, seqnum: 0, connid: 0 98 12:54:50,9548518 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54931 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40954364, endtime: 40954364, seqnum: 0, connid: 0 98 12:54:50,9714054 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54931 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40954366, endtime: 40954366, seqnum: 0, connid: 0 98 12:54:50,9715334 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54935 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40954366, endtime: 40954366, seqnum: 0, connid: 0 98 12:54:50,9853105 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54935 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40954367, endtime: 40954367, seqnum: 0, connid: 0 98 12:54:50,9854668 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54931 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40954367, endtime: 40954367, seqnum: 0, connid: 0 98 12:54:51,0013438 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54931 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40954369, endtime: 40954369, seqnum: 0, connid: 0 98 12:54:51,0014585 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54935 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40954369, endtime: 40954369, seqnum: 0, connid: 0 98 12:54:51,0219135 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54935 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40954370, endtime: 40954371, seqnum: 0, connid: 0 98 12:54:51,0331936 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54935 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40954372, endtime: 40954372, seqnum: 0, connid: 0 98 12:54:51,0639166 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54935 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40954375, endtime: 40954375, seqnum: 0, connid: 0 98 12:54:51,0790971 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54935 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40954376, endtime: 40954377, seqnum: 0, connid: 0 98 12:54:51,0948693 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54935 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40954378, endtime: 40954378, seqnum: 0, connid: 0 98 12:54:51,2328368 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54877 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40954186, endtime: 40954392, seqnum: 0, connid: 0 98 12:54:51,2328532 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54877 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40954187, endtime: 40954392, seqnum: 0, connid: 0 98 12:54:51,2328598 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54877 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40954189, endtime: 40954392, seqnum: 0, connid: 0 98 12:54:51,2328670 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54877 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40954191, endtime: 40954392, seqnum: 0, connid: 0 98 12:54:51,2328726 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54877 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40954192, endtime: 40954392, seqnum: 0, connid: 0 98 12:54:51,2328792 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54877 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40954194, endtime: 40954392, seqnum: 0, connid: 0 98 12:54:51,2328845 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54877 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40954195, endtime: 40954392, seqnum: 0, connid: 0 98 12:54:51,2328909 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54877 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40954199, endtime: 40954392, seqnum: 0, connid: 0 98 12:54:51,2328961 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54877 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40954200, endtime: 40954392, seqnum: 0, connid: 0 98 12:54:51,2329260 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54877 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40954201, endtime: 40954392, seqnum: 0, connid: 0 98 12:54:51,2329316 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54877 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40954202, endtime: 40954392, seqnum: 0, connid: 0 98 12:54:51,2329380 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54877 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40954205, endtime: 40954392, seqnum: 0, connid: 0 98 12:54:51,2329435 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54877 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40954207, endtime: 40954392, seqnum: 0, connid: 0 98 12:54:51,6265133 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54931 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40954370, endtime: 40954431, seqnum: 0, connid: 0 98 12:54:51,6265363 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54931 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40954372, endtime: 40954431, seqnum: 0, connid: 0 98 12:54:51,6265457 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54931 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40954375, endtime: 40954431, seqnum: 0, connid: 0 98 12:54:51,6265543 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54931 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40954376, endtime: 40954431, seqnum: 0, connid: 0 98 12:54:51,6265615 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54931 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40954378, endtime: 40954431, seqnum: 0, connid: 0 98 12:54:51,6265692 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54931 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40954380, endtime: 40954431, seqnum: 0, connid: 0 98 12:54:51,6265759 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54931 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40954381, endtime: 40954431, seqnum: 0, connid: 0 98 12:54:51,6265834 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54931 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40954383, endtime: 40954431, seqnum: 0, connid: 0 98 12:54:51,6265900 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54931 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40954384, endtime: 40954431, seqnum: 0, connid: 0 98 12:54:51,6266474 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54931 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40954386, endtime: 40954431, seqnum: 0, connid: 0 98 12:54:51,6266559 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54931 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40954387, endtime: 40954431, seqnum: 0, connid: 0 98 12:54:51,6266634 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54931 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40954389, endtime: 40954431, seqnum: 0, connid: 0 98 12:54:51,6725331 MCLauncher.exe 6080 TCP Reconnect WIN-0UOTFKKVN1S:54927 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 0, seqnum: 0, connid: 0 98 12:54:51,7804007 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54935 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40954380, endtime: 40954447, seqnum: 0, connid: 0 98 12:54:51,7804184 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54935 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40954381, endtime: 40954447, seqnum: 0, connid: 0 98 12:54:51,7804262 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54935 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40954383, endtime: 40954447, seqnum: 0, connid: 0 98 12:54:51,7804334 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54935 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40954384, endtime: 40954447, seqnum: 0, connid: 0 98 12:54:51,7804392 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54935 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40954386, endtime: 40954447, seqnum: 0, connid: 0 98 12:54:51,7804459 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54935 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40954387, endtime: 40954447, seqnum: 0, connid: 0 98 12:54:51,7804514 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54935 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40954389, endtime: 40954447, seqnum: 0, connid: 0 98 12:54:51,7804578 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54935 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40954391, endtime: 40954447, seqnum: 0, connid: 0 98 12:54:51,7804633 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54935 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40954392, endtime: 40954447, seqnum: 0, connid: 0 98 12:54:51,7804913 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54935 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40954394, endtime: 40954447, seqnum: 0, connid: 0 98 12:54:51,7804971 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54935 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40954395, endtime: 40954447, seqnum: 0, connid: 0 98 12:54:51,7805038 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54935 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40954397, endtime: 40954447, seqnum: 0, connid: 0 98 12:54:51,7805090 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54935 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40954399, endtime: 40954447, seqnum: 0, connid: 0 98 12:54:52,5945468 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54905 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40953823, endtime: 40954528, seqnum: 0, connid: 0 98 12:54:52,5945634 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54905 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40954170, endtime: 40954528, seqnum: 0, connid: 0 98 12:54:52,5945706 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54905 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40954172, endtime: 40954528, seqnum: 0, connid: 0 98 12:54:52,5945784 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54905 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40954175, endtime: 40954528, seqnum: 0, connid: 0 98 12:54:52,5945839 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54905 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40954178, endtime: 40954528, seqnum: 0, connid: 0 98 12:54:52,5945909 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54905 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40954180, endtime: 40954528, seqnum: 0, connid: 0 98 12:54:52,5945964 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54905 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40954182, endtime: 40954528, seqnum: 0, connid: 0 98 12:54:52,5946028 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54905 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40954183, endtime: 40954528, seqnum: 0, connid: 0 98 12:54:52,5946080 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54905 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40954186, endtime: 40954528, seqnum: 0, connid: 0 98 12:54:52,5946629 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54905 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40954187, endtime: 40954528, seqnum: 0, connid: 0 98 12:54:52,5946726 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54905 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40954189, endtime: 40954528, seqnum: 0, connid: 0 98 12:54:52,5946795 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54905 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40954191, endtime: 40954528, seqnum: 0, connid: 0 98 12:54:52,5946853 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54905 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40954192, endtime: 40954528, seqnum: 0, connid: 0 98 12:54:53,5643122 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54925 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40954330, endtime: 40954625, seqnum: 0, connid: 0 98 12:54:53,5643294 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54925 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40954333, endtime: 40954625, seqnum: 0, connid: 0 98 12:54:53,5643366 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54925 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40954336, endtime: 40954625, seqnum: 0, connid: 0 98 12:54:53,5643438 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54925 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40954338, endtime: 40954625, seqnum: 0, connid: 0 98 12:54:53,5643494 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54925 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40954341, endtime: 40954625, seqnum: 0, connid: 0 98 12:54:53,5643560 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54925 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40954342, endtime: 40954625, seqnum: 0, connid: 0 98 12:54:53,5643613 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54925 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40954344, endtime: 40954625, seqnum: 0, connid: 0 98 12:54:53,5643676 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54925 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40954345, endtime: 40954625, seqnum: 0, connid: 0 98 12:54:53,5643732 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54925 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40954347, endtime: 40954625, seqnum: 0, connid: 0 98 12:54:53,5644017 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54925 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40954348, endtime: 40954625, seqnum: 0, connid: 0 98 12:54:53,5644075 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54925 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40954350, endtime: 40954625, seqnum: 0, connid: 0 98 12:54:53,5644142 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54925 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40954352, endtime: 40954625, seqnum: 0, connid: 0 98 12:54:53,5644195 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54925 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40954353, endtime: 40954625, seqnum: 0, connid: 0 98 12:54:53,8210351 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54931 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40954391, endtime: 40954651, seqnum: 0, connid: 0 98 12:54:53,8210520 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54931 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40954431, endtime: 40954651, seqnum: 0, connid: 0 98 12:54:53,8210592 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54931 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40954433, endtime: 40954651, seqnum: 0, connid: 0 98 12:54:53,8210664 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54931 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40954436, endtime: 40954651, seqnum: 0, connid: 0 98 12:54:53,8210717 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54931 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40954437, endtime: 40954651, seqnum: 0, connid: 0 98 12:54:53,8210784 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54931 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40954441, endtime: 40954651, seqnum: 0, connid: 0 98 12:54:53,8210836 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54931 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40954442, endtime: 40954651, seqnum: 0, connid: 0 98 12:54:53,8210900 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54931 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40954444, endtime: 40954651, seqnum: 0, connid: 0 98 12:54:53,8210953 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54931 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40954445, endtime: 40954651, seqnum: 0, connid: 0 98 12:54:53,8211221 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54931 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40954446, endtime: 40954651, seqnum: 0, connid: 0 98 12:54:53,8212391 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54931 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40954448, endtime: 40954651, seqnum: 0, connid: 0 98 12:54:53,8212518 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54931 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40954450, endtime: 40954651, seqnum: 0, connid: 0 98 12:54:53,8212590 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54931 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40954453, endtime: 40954651, seqnum: 0, connid: 0 98 12:54:54,2209315 MCLauncher.exe 6080 TCP Disconnect WIN-0UOTFKKVN1S:54905 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 0, seqnum: 0, connid: 0 98 12:54:54,8612883 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54877 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40954392, endtime: 40954755, seqnum: 0, connid: 0 98 12:54:54,8613014 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54877 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40954394, endtime: 40954755, seqnum: 0, connid: 0 98 12:54:54,8613097 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54877 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40954395, endtime: 40954755, seqnum: 0, connid: 0 98 12:54:54,8613180 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54877 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40954397, endtime: 40954755, seqnum: 0, connid: 0 98 12:54:54,8613246 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54877 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40954398, endtime: 40954755, seqnum: 0, connid: 0 98 12:54:54,8613321 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54877 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40954399, endtime: 40954755, seqnum: 0, connid: 0 98 12:54:54,8613382 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54877 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40954400, endtime: 40954755, seqnum: 0, connid: 0 98 12:54:54,8613454 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54877 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40954401, endtime: 40954755, seqnum: 0, connid: 0 98 12:54:54,8613518 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54877 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40954403, endtime: 40954755, seqnum: 0, connid: 0 98 12:54:54,8614185 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54877 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40954405, endtime: 40954755, seqnum: 0, connid: 0 98 12:54:54,8614263 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54877 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40954406, endtime: 40954755, seqnum: 0, connid: 0 98 12:54:54,8614335 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54877 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40954408, endtime: 40954755, seqnum: 0, connid: 0 98 12:54:54,8615463 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54877 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40954409, endtime: 40954755, seqnum: 0, connid: 0 98 12:54:55,7657807 MCLauncher.exe 6080 TCP Reconnect WIN-0UOTFKKVN1S:54936 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 0, seqnum: 0, connid: 0 98 12:54:55,8656495 MCLauncher.exe 6080 TCP Connect WIN-0UOTFKKVN1S:54936 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 0, mss: 1460, sackopt: 0, tsopt: 0, wsopt: 0, rcvwin: 64240, rcvwinscale: 0, sndwinscale: 0, seqnum: 0, connid: 0 98 12:54:55,8660060 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54936 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40954855, endtime: 40954855, seqnum: 0, connid: 0 98 12:54:55,8719949 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54936 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40954856, endtime: 40954856, seqnum: 0, connid: 0 98 12:54:55,8772548 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54936 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40954856, endtime: 40954856, seqnum: 0, connid: 0 98 12:54:55,8827702 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54936 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40954857, endtime: 40954857, seqnum: 0, connid: 0 98 12:54:55,8895126 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54936 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40954858, endtime: 40954858, seqnum: 0, connid: 0 98 12:54:55,8953579 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54936 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40954858, endtime: 40954858, seqnum: 0, connid: 0 98 12:54:55,9012044 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54936 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40954859, endtime: 40954859, seqnum: 0, connid: 0 98 12:54:55,9070403 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54936 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40954859, endtime: 40954859, seqnum: 0, connid: 0 98 12:54:55,9129025 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54936 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40954860, endtime: 40954860, seqnum: 0, connid: 0 98 12:54:55,9188415 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54936 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40954860, endtime: 40954860, seqnum: 0, connid: 0 98 12:54:55,9251129 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54936 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40954861, endtime: 40954861, seqnum: 0, connid: 0 98 12:54:55,9310469 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54936 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40954862, endtime: 40954862, seqnum: 0, connid: 0 98 12:54:55,9363894 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54936 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40954862, endtime: 40954862, seqnum: 0, connid: 0 98 12:54:55,9422109 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54936 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40954863, endtime: 40954863, seqnum: 0, connid: 0 98 12:54:55,9661934 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54936 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40954865, endtime: 40954865, seqnum: 0, connid: 0 98 12:54:55,9714913 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54936 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40954866, endtime: 40954866, seqnum: 0, connid: 0 98 12:54:55,9773859 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54936 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40954866, endtime: 40954866, seqnum: 0, connid: 0 98 12:54:55,9828821 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54936 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40954867, endtime: 40954867, seqnum: 0, connid: 0 98 12:54:55,9882628 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54936 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40954867, endtime: 40954867, seqnum: 0, connid: 0 98 12:54:55,9942381 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54936 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40954868, endtime: 40954868, seqnum: 0, connid: 0 98 12:54:55,9999056 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54936 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40954869, endtime: 40954869, seqnum: 0, connid: 0 98 12:54:56,0084126 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54936 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40954869, endtime: 40954869, seqnum: 0, connid: 0 98 12:54:56,0282337 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54936 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40954871, endtime: 40954871, seqnum: 0, connid: 0 98 12:54:56,0340561 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54936 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40954872, endtime: 40954872, seqnum: 0, connid: 0 98 12:54:56,0399211 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54936 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40954873, endtime: 40954873, seqnum: 0, connid: 0 98 12:54:56,0474038 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54936 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40954873, endtime: 40954873, seqnum: 0, connid: 0 98 12:54:56,0630901 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54936 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40954875, endtime: 40954875, seqnum: 0, connid: 0 98 12:54:56,0788230 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54936 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40954876, endtime: 40954876, seqnum: 0, connid: 0 98 12:54:56,0942393 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54936 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40954878, endtime: 40954878, seqnum: 0, connid: 0 98 12:54:56,1120241 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54936 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40954880, endtime: 40954880, seqnum: 0, connid: 0 98 12:54:56,1423949 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54936 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40954883, endtime: 40954883, seqnum: 0, connid: 0 98 12:54:56,1615467 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54936 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40954884, endtime: 40954885, seqnum: 0, connid: 0 98 12:54:56,1817291 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54936 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40954886, endtime: 40954887, seqnum: 0, connid: 0 98 12:54:56,1875584 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54931 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40954651, endtime: 40954887, seqnum: 0, connid: 0 98 12:54:56,1875747 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54931 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40954653, endtime: 40954887, seqnum: 0, connid: 0 98 12:54:56,1875817 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54931 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40954656, endtime: 40954887, seqnum: 0, connid: 0 98 12:54:56,1875886 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54931 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40954658, endtime: 40954887, seqnum: 0, connid: 0 98 12:54:56,1875939 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54931 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40954659, endtime: 40954887, seqnum: 0, connid: 0 98 12:54:56,1876002 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54931 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40954663, endtime: 40954887, seqnum: 0, connid: 0 98 12:54:56,1876058 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54931 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40954664, endtime: 40954887, seqnum: 0, connid: 0 98 12:54:56,1876119 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54931 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40954666, endtime: 40954887, seqnum: 0, connid: 0 98 12:54:56,1876171 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54931 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40954667, endtime: 40954887, seqnum: 0, connid: 0 98 12:54:56,1876473 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54931 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40954669, endtime: 40954887, seqnum: 0, connid: 0 98 12:54:56,1876526 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54931 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40954671, endtime: 40954887, seqnum: 0, connid: 0 98 12:54:56,1876590 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54931 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40954673, endtime: 40954887, seqnum: 0, connid: 0 98 12:54:56,1876640 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54931 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40954675, endtime: 40954887, seqnum: 0, connid: 0 98 12:54:56,2040286 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54936 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40954889, endtime: 40954889, seqnum: 0, connid: 0 98 12:54:56,7713756 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54936 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40954891, endtime: 40954946, seqnum: 0, connid: 0 98 12:54:56,7713908 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54936 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40954894, endtime: 40954946, seqnum: 0, connid: 0 98 12:54:56,7713978 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54936 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40954897, endtime: 40954946, seqnum: 0, connid: 0 98 12:54:56,7714053 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54936 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40954898, endtime: 40954946, seqnum: 0, connid: 0 98 12:54:57,2350641 MCLauncher.exe 6080 TCP Reconnect WIN-0UOTFKKVN1S:54937 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 0, seqnum: 0, connid: 0 98 12:54:57,2965495 MCLauncher.exe 6080 TCP Connect WIN-0UOTFKKVN1S:54937 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 0, mss: 1460, sackopt: 0, tsopt: 0, wsopt: 0, rcvwin: 64240, rcvwinscale: 0, sndwinscale: 0, seqnum: 0, connid: 0 98 12:54:57,2968703 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54937 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40954998, endtime: 40954998, seqnum: 0, connid: 0 98 12:54:57,3142858 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54937 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40955000, endtime: 40955000, seqnum: 0, connid: 0 98 12:54:57,3199133 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54937 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40955001, endtime: 40955001, seqnum: 0, connid: 0 98 12:54:57,3495714 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54937 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40955003, endtime: 40955004, seqnum: 0, connid: 0 98 12:54:57,3654533 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54937 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40955005, endtime: 40955005, seqnum: 0, connid: 0 98 12:54:57,3873956 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54937 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40955006, endtime: 40955007, seqnum: 0, connid: 0 98 12:54:57,4073328 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54937 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40955009, endtime: 40955009, seqnum: 0, connid: 0 98 12:54:57,4269988 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54937 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40955011, endtime: 40955011, seqnum: 0, connid: 0 98 12:54:57,4554090 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54937 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40955014, endtime: 40955014, seqnum: 0, connid: 0 98 12:54:57,4824413 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54936 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40954900, endtime: 40955017, seqnum: 0, connid: 0 98 12:54:57,4824593 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54936 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40954903, endtime: 40955017, seqnum: 0, connid: 0 98 12:54:57,4824668 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54936 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40954905, endtime: 40955017, seqnum: 0, connid: 0 98 12:54:57,4824751 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54936 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40954906, endtime: 40955017, seqnum: 0, connid: 0 98 12:54:57,4824815 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54936 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40954909, endtime: 40955017, seqnum: 0, connid: 0 98 12:54:57,4824890 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54936 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40954910, endtime: 40955017, seqnum: 0, connid: 0 98 12:54:57,4824945 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54936 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40954911, endtime: 40955017, seqnum: 0, connid: 0 98 12:54:57,4825017 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54936 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40954912, endtime: 40955017, seqnum: 0, connid: 0 98 12:54:57,4825076 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54936 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40954914, endtime: 40955017, seqnum: 0, connid: 0 98 12:54:57,4825427 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54936 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40954946, endtime: 40955017, seqnum: 0, connid: 0 98 12:54:57,4825483 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54936 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40954947, endtime: 40955017, seqnum: 0, connid: 0 98 12:54:57,4825549 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54936 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40954948, endtime: 40955017, seqnum: 0, connid: 0 98 12:54:57,4825602 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54936 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40954952, endtime: 40955017, seqnum: 0, connid: 0 98 12:54:57,4864063 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54937 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40955017, endtime: 40955017, seqnum: 0, connid: 0 98 12:54:57,5179355 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54937 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40955020, endtime: 40955020, seqnum: 0, connid: 0 98 12:54:57,5333329 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54937 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40955022, endtime: 40955022, seqnum: 0, connid: 0 98 12:54:57,5641715 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54937 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40955025, endtime: 40955025, seqnum: 0, connid: 0 98 12:54:57,5808935 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54937 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40955027, endtime: 40955027, seqnum: 0, connid: 0 98 12:54:57,5946690 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54937 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40955028, endtime: 40955028, seqnum: 0, connid: 0 98 12:54:57,6105440 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54937 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40955030, endtime: 40955030, seqnum: 0, connid: 0 98 12:54:57,6270657 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54937 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40955031, endtime: 40955031, seqnum: 0, connid: 0 98 12:54:57,6589770 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54937 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40955034, endtime: 40955035, seqnum: 0, connid: 0 98 12:54:57,6947990 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54937 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40955037, endtime: 40955038, seqnum: 0, connid: 0 98 12:54:57,7339603 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54937 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40955041, endtime: 40955042, seqnum: 0, connid: 0 98 12:54:57,7558713 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54937 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40955044, endtime: 40955044, seqnum: 0, connid: 0 98 12:54:57,7669832 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54937 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40955045, endtime: 40955045, seqnum: 0, connid: 0 98 12:54:57,7976671 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54937 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40955047, endtime: 40955048, seqnum: 0, connid: 0 98 12:54:57,8144825 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54937 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40955050, endtime: 40955050, seqnum: 0, connid: 0 98 12:54:57,8465969 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54937 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40955053, endtime: 40955053, seqnum: 0, connid: 0 98 12:54:57,8639445 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54937 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40955055, endtime: 40955055, seqnum: 0, connid: 0 98 12:54:57,9706279 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54937 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40955056, endtime: 40955066, seqnum: 0, connid: 0 98 12:54:57,9706440 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54937 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40955058, endtime: 40955066, seqnum: 0, connid: 0 98 12:54:57,9706515 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54937 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40955061, endtime: 40955066, seqnum: 0, connid: 0 98 12:54:57,9706593 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54937 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40955063, endtime: 40955066, seqnum: 0, connid: 0 98 12:54:57,9706651 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54937 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40955065, endtime: 40955066, seqnum: 0, connid: 0 98 12:54:57,9711175 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54937 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40955066, endtime: 40955066, seqnum: 0, connid: 0 98 12:54:58,0018533 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54937 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40955069, endtime: 40955069, seqnum: 0, connid: 0 98 12:54:58,0162785 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54937 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40955070, endtime: 40955070, seqnum: 0, connid: 0 98 12:54:58,0507212 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54937 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40955074, endtime: 40955074, seqnum: 0, connid: 0 98 12:54:58,0812600 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54937 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40955076, endtime: 40955077, seqnum: 0, connid: 0 98 12:54:58,1034229 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54937 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40955078, endtime: 40955079, seqnum: 0, connid: 0 98 12:54:58,1123078 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54937 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40955080, endtime: 40955080, seqnum: 0, connid: 0 98 12:54:58,1986390 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54925 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40954625, endtime: 40955088, seqnum: 0, connid: 0 98 12:54:58,1986534 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54925 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40954627, endtime: 40955088, seqnum: 0, connid: 0 98 12:54:58,1986603 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54925 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40954630, endtime: 40955088, seqnum: 0, connid: 0 98 12:54:58,1986675 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54925 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40954631, endtime: 40955088, seqnum: 0, connid: 0 98 12:54:58,1986728 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54925 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40954633, endtime: 40955088, seqnum: 0, connid: 0 98 12:54:58,1986794 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54925 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40954636, endtime: 40955088, seqnum: 0, connid: 0 98 12:54:58,1986847 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54925 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40954637, endtime: 40955088, seqnum: 0, connid: 0 98 12:54:58,1986911 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54925 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40954639, endtime: 40955088, seqnum: 0, connid: 0 98 12:54:58,1986961 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54925 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40954642, endtime: 40955088, seqnum: 0, connid: 0 98 12:54:58,1987238 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54925 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40954644, endtime: 40955088, seqnum: 0, connid: 0 98 12:54:58,1987293 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54925 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40954645, endtime: 40955088, seqnum: 0, connid: 0 98 12:54:58,1987357 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54925 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40954648, endtime: 40955088, seqnum: 0, connid: 0 98 12:54:58,1987409 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54925 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40954650, endtime: 40955088, seqnum: 0, connid: 0 98 12:54:59,1822672 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54931 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40954887, endtime: 40955187, seqnum: 0, connid: 0 98 12:54:59,1822838 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54931 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40954889, endtime: 40955187, seqnum: 0, connid: 0 98 12:54:59,1822910 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54931 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40954891, endtime: 40955187, seqnum: 0, connid: 0 98 12:54:59,1822982 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54931 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40954894, endtime: 40955187, seqnum: 0, connid: 0 98 12:54:59,1823038 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54931 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40954897, endtime: 40955187, seqnum: 0, connid: 0 98 12:54:59,1823104 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54931 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40954898, endtime: 40955187, seqnum: 0, connid: 0 98 12:54:59,1823162 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54931 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40954900, endtime: 40955187, seqnum: 0, connid: 0 98 12:54:59,1823226 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54931 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40954903, endtime: 40955187, seqnum: 0, connid: 0 98 12:54:59,1823279 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54931 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40954905, endtime: 40955187, seqnum: 0, connid: 0 98 12:54:59,1823578 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54931 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40954906, endtime: 40955187, seqnum: 0, connid: 0 98 12:54:59,1823633 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54931 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40954909, endtime: 40955187, seqnum: 0, connid: 0 98 12:54:59,1823700 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54931 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40954910, endtime: 40955187, seqnum: 0, connid: 0 98 12:54:59,1823752 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54931 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40954911, endtime: 40955187, seqnum: 0, connid: 0 98 12:54:59,2985911 MCLauncher.exe 6080 TCP Disconnect WIN-0UOTFKKVN1S:54900 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 0, seqnum: 0, connid: 0 98 12:55:00,1275489 MCLauncher.exe 6080 TCP TCPCopy WIN-0UOTFKKVN1S:54920 -> sheltex.company:8000 SUCCESS Length: 2, seqnum: 0, connid: 0 98 12:55:00,1275597 MCLauncher.exe 6080 TCP Receive WIN-0UOTFKKVN1S:54920 -> sheltex.company:8000 SUCCESS Length: 2, seqnum: 0, connid: 0 98 12:55:00,1279204 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54920 -> sheltex.company:8000 SUCCESS Length: 2, startime: 40955281, endtime: 40955281, seqnum: 0, connid: 0 98 12:55:00,4881240 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54925 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40955088, endtime: 40955317, seqnum: 0, connid: 0 98 12:55:00,4881578 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54925 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40955091, endtime: 40955317, seqnum: 0, connid: 0 98 12:55:00,4881703 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54925 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40955093, endtime: 40955317, seqnum: 0, connid: 0 98 12:55:00,4881808 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54925 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40955095, endtime: 40955317, seqnum: 0, connid: 0 98 12:55:00,4881869 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54925 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40955097, endtime: 40955317, seqnum: 0, connid: 0 98 12:55:00,4881939 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54925 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40955098, endtime: 40955317, seqnum: 0, connid: 0 98 12:55:00,4881994 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54925 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40955100, endtime: 40955317, seqnum: 0, connid: 0 98 12:55:00,4882063 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54925 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40955101, endtime: 40955317, seqnum: 0, connid: 0 98 12:55:00,4882119 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54925 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40955101, endtime: 40955317, seqnum: 0, connid: 0 98 12:55:00,4882446 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54925 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40955103, endtime: 40955317, seqnum: 0, connid: 0 98 12:55:00,4882504 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54925 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40955106, endtime: 40955317, seqnum: 0, connid: 0 98 12:55:00,4882567 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54925 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40955108, endtime: 40955317, seqnum: 0, connid: 0 98 12:55:00,4882623 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54925 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40955111, endtime: 40955317, seqnum: 0, connid: 0 98 12:55:00,6159862 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54935 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40954447, endtime: 40955330, seqnum: 0, connid: 0 98 12:55:00,6160164 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54935 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40954448, endtime: 40955330, seqnum: 0, connid: 0 98 12:55:00,6160259 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54935 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40954450, endtime: 40955330, seqnum: 0, connid: 0 98 12:55:00,6160322 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54935 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40954453, endtime: 40955330, seqnum: 0, connid: 0 98 12:55:00,6160394 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54935 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40954456, endtime: 40955330, seqnum: 0, connid: 0 98 12:55:00,6160452 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54935 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40954458, endtime: 40955330, seqnum: 0, connid: 0 98 12:55:00,6160522 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54935 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40954459, endtime: 40955330, seqnum: 0, connid: 0 98 12:55:00,6160577 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54935 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40954462, endtime: 40955330, seqnum: 0, connid: 0 98 12:55:00,6160649 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54935 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40954464, endtime: 40955330, seqnum: 0, connid: 0 98 12:55:00,6160940 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54935 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40954466, endtime: 40955330, seqnum: 0, connid: 0 98 12:55:00,6161009 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54935 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40954469, endtime: 40955330, seqnum: 0, connid: 0 98 12:55:00,6161062 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54935 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40954471, endtime: 40955330, seqnum: 0, connid: 0 98 12:55:00,6161128 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54935 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40954472, endtime: 40955330, seqnum: 0, connid: 0 98 12:55:01,7939108 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54877 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40954755, endtime: 40955448, seqnum: 0, connid: 0 98 12:55:01,7939319 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54877 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40954756, endtime: 40955448, seqnum: 0, connid: 0 98 12:55:01,7939449 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54877 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40954758, endtime: 40955448, seqnum: 0, connid: 0 98 12:55:01,7939546 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54877 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40954761, endtime: 40955448, seqnum: 0, connid: 0 98 12:55:01,7939654 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54877 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40954762, endtime: 40955448, seqnum: 0, connid: 0 98 12:55:01,7939745 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54877 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40954764, endtime: 40955448, seqnum: 0, connid: 0 98 12:55:01,7939850 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54877 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40954766, endtime: 40955448, seqnum: 0, connid: 0 98 12:55:01,7939939 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54877 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40954769, endtime: 40955448, seqnum: 0, connid: 0 98 12:55:01,7940044 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54877 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40954773, endtime: 40955448, seqnum: 0, connid: 0 98 12:55:01,7941067 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54877 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40954774, endtime: 40955448, seqnum: 0, connid: 0 98 12:55:01,7941155 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54877 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40954777, endtime: 40955448, seqnum: 0, connid: 0 98 12:55:01,7941211 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54877 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40954778, endtime: 40955448, seqnum: 0, connid: 0 98 12:55:02,0803685 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54931 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40955187, endtime: 40955477, seqnum: 0, connid: 0 98 12:55:02,0803867 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54931 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40955187, endtime: 40955477, seqnum: 0, connid: 0 98 12:55:02,0803940 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54931 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40955189, endtime: 40955477, seqnum: 0, connid: 0 98 12:55:02,0804014 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54931 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40955191, endtime: 40955477, seqnum: 0, connid: 0 98 12:55:02,0804073 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54931 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40955192, endtime: 40955477, seqnum: 0, connid: 0 98 12:55:02,0804139 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54931 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40955194, endtime: 40955477, seqnum: 0, connid: 0 98 12:55:02,0804194 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54931 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40955195, endtime: 40955477, seqnum: 0, connid: 0 98 12:55:02,0804261 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54931 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40955197, endtime: 40955477, seqnum: 0, connid: 0 98 12:55:02,0804319 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54931 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40955198, endtime: 40955477, seqnum: 0, connid: 0 98 12:55:02,0804599 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54931 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40955202, endtime: 40955477, seqnum: 0, connid: 0 98 12:55:02,0804657 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54931 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40955205, endtime: 40955477, seqnum: 0, connid: 0 98 12:55:02,0804721 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54931 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40955206, endtime: 40955477, seqnum: 0, connid: 0 98 12:55:02,0804776 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54931 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40955209, endtime: 40955477, seqnum: 0, connid: 0 98 12:55:02,2523654 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54925 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40955317, endtime: 40955494, seqnum: 0, connid: 0 98 12:55:02,2523859 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54925 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40955319, endtime: 40955494, seqnum: 0, connid: 0 98 12:55:02,2523942 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54925 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40955320, endtime: 40955494, seqnum: 0, connid: 0 98 12:55:02,2524020 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54925 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40955322, endtime: 40955494, seqnum: 0, connid: 0 98 12:55:02,2524081 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54925 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40955323, endtime: 40955494, seqnum: 0, connid: 0 98 12:55:02,2524150 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54925 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40955325, endtime: 40955494, seqnum: 0, connid: 0 98 12:55:02,2524208 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54925 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40955327, endtime: 40955494, seqnum: 0, connid: 0 98 12:55:02,2524277 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54925 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40955328, endtime: 40955494, seqnum: 0, connid: 0 98 12:55:02,2524336 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54925 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40955330, endtime: 40955494, seqnum: 0, connid: 0 98 12:55:02,2524635 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54925 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40955331, endtime: 40955494, seqnum: 0, connid: 0 98 12:55:02,2524699 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54925 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40955333, endtime: 40955494, seqnum: 0, connid: 0 98 12:55:02,2524768 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54925 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40955334, endtime: 40955494, seqnum: 0, connid: 0 98 12:55:02,2524829 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54925 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40955336, endtime: 40955494, seqnum: 0, connid: 0 98 12:55:02,5866078 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54936 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40955017, endtime: 40955527, seqnum: 0, connid: 0 98 12:55:02,5866238 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54936 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40955020, endtime: 40955527, seqnum: 0, connid: 0 98 12:55:02,5866308 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54936 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40955022, endtime: 40955527, seqnum: 0, connid: 0 98 12:55:02,5866380 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54936 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40955025, endtime: 40955527, seqnum: 0, connid: 0 98 12:55:02,5866435 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54936 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40955027, endtime: 40955527, seqnum: 0, connid: 0 98 12:55:02,5866499 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54936 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40955028, endtime: 40955527, seqnum: 0, connid: 0 98 12:55:02,5866551 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54936 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40955030, endtime: 40955527, seqnum: 0, connid: 0 98 12:55:02,5866615 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54936 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40955031, endtime: 40955527, seqnum: 0, connid: 0 98 12:55:02,5866671 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54936 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40955034, endtime: 40955527, seqnum: 0, connid: 0 98 12:55:02,5866950 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54936 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40955037, endtime: 40955527, seqnum: 0, connid: 0 98 12:55:02,5867006 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54936 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40955041, endtime: 40955527, seqnum: 0, connid: 0 98 12:55:02,5868122 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54936 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40955044, endtime: 40955527, seqnum: 0, connid: 0 98 12:55:02,5868233 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54936 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40955045, endtime: 40955527, seqnum: 0, connid: 0 98 12:55:04,1311545 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54935 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40955330, endtime: 40955682, seqnum: 0, connid: 0 98 12:55:04,1311761 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54935 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40955331, endtime: 40955682, seqnum: 0, connid: 0 98 12:55:04,1311869 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54935 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40955333, endtime: 40955682, seqnum: 0, connid: 0 98 12:55:04,1311986 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54935 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40955334, endtime: 40955682, seqnum: 0, connid: 0 98 12:55:04,1312077 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54935 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40955336, endtime: 40955682, seqnum: 0, connid: 0 98 12:55:04,1312188 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54935 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40955337, endtime: 40955682, seqnum: 0, connid: 0 98 12:55:04,1312279 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54935 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40955339, endtime: 40955682, seqnum: 0, connid: 0 98 12:55:04,1312384 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54935 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40955341, endtime: 40955682, seqnum: 0, connid: 0 98 12:55:04,1312476 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54935 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40955342, endtime: 40955682, seqnum: 0, connid: 0 98 12:55:04,1312875 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54935 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40955344, endtime: 40955682, seqnum: 0, connid: 0 98 12:55:04,1312972 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54935 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40955345, endtime: 40955682, seqnum: 0, connid: 0 98 12:55:04,1313077 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54935 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40955347, endtime: 40955682, seqnum: 0, connid: 0 98 12:55:04,1313174 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54935 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40955348, endtime: 40955682, seqnum: 0, connid: 0 98 12:55:05,9589148 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54936 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40955527, endtime: 40955865, seqnum: 0, connid: 0 98 12:55:05,9589304 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54936 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40955528, endtime: 40955865, seqnum: 0, connid: 0 98 12:55:05,9589373 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54936 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40955530, endtime: 40955865, seqnum: 0, connid: 0 98 12:55:05,9589445 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54936 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40955531, endtime: 40955865, seqnum: 0, connid: 0 98 12:55:05,9589498 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54936 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40955533, endtime: 40955865, seqnum: 0, connid: 0 98 12:55:05,9589561 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54936 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40955534, endtime: 40955865, seqnum: 0, connid: 0 98 12:55:05,9589614 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54936 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40955538, endtime: 40955865, seqnum: 0, connid: 0 98 12:55:05,9589675 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54936 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40955541, endtime: 40955865, seqnum: 0, connid: 0 98 12:55:05,9589728 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54936 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40955544, endtime: 40955865, seqnum: 0, connid: 0 98 12:55:05,9590035 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54936 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40955545, endtime: 40955865, seqnum: 0, connid: 0 98 12:55:05,9590090 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54936 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40955547, endtime: 40955865, seqnum: 0, connid: 0 98 12:55:05,9590151 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54936 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40955548, endtime: 40955865, seqnum: 0, connid: 0 98 12:55:05,9590204 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54936 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40955550, endtime: 40955865, seqnum: 0, connid: 0 98 12:55:06,1236696 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54925 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40955494, endtime: 40955881, seqnum: 0, connid: 0 98 12:55:06,1236862 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54925 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40955497, endtime: 40955881, seqnum: 0, connid: 0 98 12:55:06,1236934 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54925 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40955498, endtime: 40955881, seqnum: 0, connid: 0 98 12:55:06,1237003 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54925 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40955503, endtime: 40955881, seqnum: 0, connid: 0 98 12:55:06,1237056 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54925 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40955503, endtime: 40955881, seqnum: 0, connid: 0 98 12:55:06,1237122 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54925 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40955504, endtime: 40955881, seqnum: 0, connid: 0 98 12:55:06,1237175 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54925 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40955505, endtime: 40955881, seqnum: 0, connid: 0 98 12:55:06,1237239 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54925 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40955505, endtime: 40955881, seqnum: 0, connid: 0 98 12:55:06,1237288 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54925 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40955508, endtime: 40955881, seqnum: 0, connid: 0 98 12:55:06,1237737 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54925 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40955509, endtime: 40955881, seqnum: 0, connid: 0 98 12:55:06,1237848 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54925 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40955511, endtime: 40955881, seqnum: 0, connid: 0 98 12:55:06,1237948 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54925 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40955512, endtime: 40955881, seqnum: 0, connid: 0 98 12:55:06,1238012 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54925 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40955514, endtime: 40955881, seqnum: 0, connid: 0 98 12:55:06,2350502 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54931 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40955477, endtime: 40955892, seqnum: 0, connid: 0 98 12:55:06,2350710 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54931 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40955478, endtime: 40955892, seqnum: 0, connid: 0 98 12:55:06,2350782 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54931 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40955480, endtime: 40955892, seqnum: 0, connid: 0 98 12:55:06,2350854 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54931 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40955483, endtime: 40955892, seqnum: 0, connid: 0 98 12:55:06,2350910 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54931 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40955484, endtime: 40955892, seqnum: 0, connid: 0 98 12:55:06,2350976 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54931 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40955486, endtime: 40955892, seqnum: 0, connid: 0 98 12:55:06,2351029 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54931 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40955489, endtime: 40955892, seqnum: 0, connid: 0 98 12:55:06,2351095 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54931 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40955491, endtime: 40955892, seqnum: 0, connid: 0 98 12:55:06,2351148 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54931 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40955494, endtime: 40955892, seqnum: 0, connid: 0 98 12:55:06,2351458 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54931 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40955497, endtime: 40955892, seqnum: 0, connid: 0 98 12:55:06,2351514 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54931 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40955498, endtime: 40955892, seqnum: 0, connid: 0 98 12:55:06,2351577 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54931 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40955503, endtime: 40955892, seqnum: 0, connid: 0 98 12:55:06,2351630 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54931 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40955503, endtime: 40955892, seqnum: 0, connid: 0 98 12:55:06,8645479 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54935 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40955682, endtime: 40955955, seqnum: 0, connid: 0 98 12:55:06,8645642 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54935 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40955683, endtime: 40955955, seqnum: 0, connid: 0 98 12:55:06,8645856 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54935 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40955685, endtime: 40955955, seqnum: 0, connid: 0 98 12:55:06,8667965 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54935 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40955687, endtime: 40955955, seqnum: 0, connid: 0 98 12:55:06,8668081 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54935 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40955690, endtime: 40955955, seqnum: 0, connid: 0 98 12:55:06,8668164 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54935 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40955691, endtime: 40955955, seqnum: 0, connid: 0 98 12:55:06,8668223 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54935 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40955692, endtime: 40955955, seqnum: 0, connid: 0 98 12:55:06,8669120 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54935 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40955694, endtime: 40955955, seqnum: 0, connid: 0 98 12:55:06,8669184 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54935 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40955695, endtime: 40955955, seqnum: 0, connid: 0 98 12:55:06,8669248 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54935 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40955697, endtime: 40955955, seqnum: 0, connid: 0 98 12:55:06,8669300 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54935 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40955700, endtime: 40955955, seqnum: 0, connid: 0 98 12:55:06,8669361 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54935 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40955701, endtime: 40955955, seqnum: 0, connid: 0 98 12:55:06,8669414 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54935 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40955701, endtime: 40955955, seqnum: 0, connid: 0 98 12:55:08,4109609 MCLauncher.exe 6080 TCP Connect WIN-0UOTFKKVN1S:54948 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 0, mss: 1460, sackopt: 0, tsopt: 0, wsopt: 0, rcvwin: 64240, rcvwinscale: 0, sndwinscale: 0, seqnum: 0, connid: 0 98 12:55:08,4113033 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54948 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40956110, endtime: 40956110, seqnum: 0, connid: 0 98 12:55:08,4226490 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54948 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40956111, endtime: 40956111, seqnum: 0, connid: 0 98 12:55:08,4391220 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54948 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40956112, endtime: 40956113, seqnum: 0, connid: 0 98 12:55:08,4707936 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54948 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40956116, endtime: 40956116, seqnum: 0, connid: 0 98 12:55:08,5011102 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54948 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40956119, endtime: 40956119, seqnum: 0, connid: 0 98 12:55:08,5049026 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54936 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40955865, endtime: 40956119, seqnum: 0, connid: 0 98 12:55:08,5049145 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54936 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40955866, endtime: 40956119, seqnum: 0, connid: 0 98 12:55:08,5049214 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54936 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40955867, endtime: 40956119, seqnum: 0, connid: 0 98 12:55:08,5049283 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54936 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40955869, endtime: 40956119, seqnum: 0, connid: 0 98 12:55:08,5049339 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54936 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40955872, endtime: 40956119, seqnum: 0, connid: 0 98 12:55:08,5049402 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54936 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40955873, endtime: 40956119, seqnum: 0, connid: 0 98 12:55:08,5049455 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54936 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40955877, endtime: 40956119, seqnum: 0, connid: 0 98 12:55:08,5049519 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54936 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40955878, endtime: 40956119, seqnum: 0, connid: 0 98 12:55:08,5049571 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54936 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40955880, endtime: 40956119, seqnum: 0, connid: 0 98 12:55:08,5049840 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54936 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40955881, endtime: 40956119, seqnum: 0, connid: 0 98 12:55:08,5049898 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54936 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40955883, endtime: 40956119, seqnum: 0, connid: 0 98 12:55:08,5049959 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54936 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40955884, endtime: 40956119, seqnum: 0, connid: 0 98 12:55:08,5050012 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54936 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40955886, endtime: 40956119, seqnum: 0, connid: 0 98 12:55:08,5177843 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54948 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40956120, endtime: 40956120, seqnum: 0, connid: 0 98 12:55:08,5627591 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54948 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40956124, endtime: 40956125, seqnum: 0, connid: 0 98 12:55:08,5911764 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54948 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40956126, endtime: 40956128, seqnum: 0, connid: 0 98 12:55:08,6105066 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54948 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40956130, endtime: 40956130, seqnum: 0, connid: 0 98 12:55:08,6276223 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54948 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40956131, endtime: 40956131, seqnum: 0, connid: 0 98 12:55:08,6422711 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54948 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40956133, endtime: 40956133, seqnum: 0, connid: 0 98 12:55:08,6594893 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54948 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40956134, endtime: 40956135, seqnum: 0, connid: 0 98 12:55:08,6746268 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54948 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40956136, endtime: 40956136, seqnum: 0, connid: 0 98 12:55:08,7079184 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54948 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40956139, endtime: 40956139, seqnum: 0, connid: 0 98 12:55:08,7140691 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54948 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40956140, endtime: 40956140, seqnum: 0, connid: 0 98 12:55:08,7204785 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54948 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40956141, endtime: 40956141, seqnum: 0, connid: 0 98 12:55:08,7266554 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54948 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40956141, endtime: 40956141, seqnum: 0, connid: 0 98 12:55:08,7328565 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54948 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40956142, endtime: 40956142, seqnum: 0, connid: 0 98 12:55:08,7384120 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54948 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40956142, endtime: 40956142, seqnum: 0, connid: 0 98 12:55:08,7449708 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54948 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40956143, endtime: 40956143, seqnum: 0, connid: 0 98 12:55:08,7506712 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54948 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40956144, endtime: 40956144, seqnum: 0, connid: 0 98 12:55:08,7566867 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54948 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40956144, endtime: 40956144, seqnum: 0, connid: 0 98 12:55:08,7624273 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54948 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40956145, endtime: 40956145, seqnum: 0, connid: 0 98 12:55:08,7686380 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54948 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40956145, endtime: 40956145, seqnum: 0, connid: 0 98 12:55:08,7741805 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54948 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40956146, endtime: 40956146, seqnum: 0, connid: 0 98 12:55:08,8805038 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54948 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40956147, endtime: 40956157, seqnum: 0, connid: 0 98 12:55:08,8805235 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54948 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40956147, endtime: 40956157, seqnum: 0, connid: 0 98 12:55:08,8805315 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54948 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40956148, endtime: 40956157, seqnum: 0, connid: 0 98 12:55:08,8805396 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54948 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40956148, endtime: 40956157, seqnum: 0, connid: 0 98 12:55:08,8805454 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54948 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40956149, endtime: 40956157, seqnum: 0, connid: 0 98 12:55:08,8805523 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54948 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40956150, endtime: 40956157, seqnum: 0, connid: 0 98 12:55:08,8805579 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54948 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40956150, endtime: 40956157, seqnum: 0, connid: 0 98 12:55:08,8805648 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54948 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40956151, endtime: 40956157, seqnum: 0, connid: 0 98 12:55:08,8805706 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54948 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40956151, endtime: 40956157, seqnum: 0, connid: 0 98 12:55:08,8805991 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54948 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40956152, endtime: 40956157, seqnum: 0, connid: 0 98 12:55:08,8806052 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54948 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40956153, endtime: 40956157, seqnum: 0, connid: 0 98 12:55:08,8806122 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54948 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40956153, endtime: 40956157, seqnum: 0, connid: 0 98 12:55:08,8806180 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54948 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40956154, endtime: 40956157, seqnum: 0, connid: 0 98 12:55:10,2072042 MCLauncher.exe 6080 TCP TCPCopy WIN-0UOTFKKVN1S:54920 -> sheltex.company:8000 SUCCESS Length: 2, seqnum: 0, connid: 0 98 12:55:10,2072105 MCLauncher.exe 6080 TCP Receive WIN-0UOTFKKVN1S:54920 -> sheltex.company:8000 SUCCESS Length: 2, seqnum: 0, connid: 0 98 12:55:10,2133507 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54920 -> sheltex.company:8000 SUCCESS Length: 2, startime: 40956289, endtime: 40956290, seqnum: 0, connid: 0 98 12:55:10,4008298 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54925 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40955881, endtime: 40956309, seqnum: 0, connid: 0 98 12:55:10,4008467 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54925 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40955883, endtime: 40956309, seqnum: 0, connid: 0 98 12:55:10,4008533 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54925 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40955884, endtime: 40956309, seqnum: 0, connid: 0 98 12:55:10,4008600 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54925 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40955886, endtime: 40956309, seqnum: 0, connid: 0 98 12:55:10,4008655 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54925 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40955887, endtime: 40956309, seqnum: 0, connid: 0 98 12:55:10,4008722 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54925 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40955891, endtime: 40956309, seqnum: 0, connid: 0 98 12:55:10,4008774 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54925 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40955894, endtime: 40956309, seqnum: 0, connid: 0 98 12:55:10,4008838 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54925 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40955895, endtime: 40956309, seqnum: 0, connid: 0 98 12:55:10,4008888 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54925 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40955897, endtime: 40956309, seqnum: 0, connid: 0 98 12:55:10,4009212 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54925 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40955900, endtime: 40956309, seqnum: 0, connid: 0 98 12:55:10,4009267 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54925 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40955901, endtime: 40956309, seqnum: 0, connid: 0 98 12:55:10,4009331 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54925 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40955903, endtime: 40956309, seqnum: 0, connid: 0 98 12:55:10,4010481 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54925 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40955905, endtime: 40956309, seqnum: 0, connid: 0 98 12:55:10,4849908 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54877 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40954781, endtime: 40956317, seqnum: 0, connid: 0 98 12:55:10,4850074 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54877 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40955448, endtime: 40956317, seqnum: 0, connid: 0 98 12:55:10,4850157 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54877 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40955450, endtime: 40956317, seqnum: 0, connid: 0 98 12:55:10,4850216 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54877 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40955452, endtime: 40956317, seqnum: 0, connid: 0 98 12:55:10,4850285 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54877 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40955453, endtime: 40956317, seqnum: 0, connid: 0 98 12:55:10,4850340 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54877 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40955456, endtime: 40956317, seqnum: 0, connid: 0 98 12:55:10,4850404 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54877 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40955458, endtime: 40956317, seqnum: 0, connid: 0 98 12:55:10,4850459 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54877 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40955459, endtime: 40956317, seqnum: 0, connid: 0 98 12:55:10,4850523 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54877 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40955461, endtime: 40956317, seqnum: 0, connid: 0 98 12:55:10,4874231 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54877 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40955462, endtime: 40956317, seqnum: 0, connid: 0 98 12:55:10,4874353 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54877 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40955464, endtime: 40956317, seqnum: 0, connid: 0 98 12:55:10,4874425 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54877 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40955466, endtime: 40956317, seqnum: 0, connid: 0 98 12:55:10,4874497 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54877 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40955467, endtime: 40956317, seqnum: 0, connid: 0 98 12:55:10,4874569 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54877 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40956317, endtime: 40956317, seqnum: 0, connid: 0 98 12:55:10,6517799 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54936 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40956119, endtime: 40956334, seqnum: 0, connid: 0 98 12:55:10,6517966 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54936 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40956120, endtime: 40956334, seqnum: 0, connid: 0 98 12:55:10,6518035 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54936 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40956124, endtime: 40956334, seqnum: 0, connid: 0 98 12:55:10,6518107 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54936 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40956125, endtime: 40956334, seqnum: 0, connid: 0 98 12:55:10,6518162 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54936 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40956126, endtime: 40956334, seqnum: 0, connid: 0 98 12:55:10,6518229 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54936 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40956128, endtime: 40956334, seqnum: 0, connid: 0 98 12:55:10,6518281 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54936 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40956130, endtime: 40956334, seqnum: 0, connid: 0 98 12:55:10,6518345 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54936 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40956131, endtime: 40956334, seqnum: 0, connid: 0 98 12:55:10,6518398 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54936 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40956133, endtime: 40956334, seqnum: 0, connid: 0 98 12:55:10,6518725 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54936 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40956134, endtime: 40956334, seqnum: 0, connid: 0 98 12:55:10,6518777 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54936 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40956136, endtime: 40956334, seqnum: 0, connid: 0 98 12:55:10,6518841 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54936 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40956139, endtime: 40956334, seqnum: 0, connid: 0 98 12:55:10,6518894 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54936 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40956140, endtime: 40956334, seqnum: 0, connid: 0 98 12:55:10,6519013 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54931 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40955892, endtime: 40956334, seqnum: 0, connid: 0 98 12:55:10,6519079 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54931 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40955894, endtime: 40956334, seqnum: 0, connid: 0 98 12:55:10,6519132 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54931 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40955895, endtime: 40956334, seqnum: 0, connid: 0 98 12:55:10,6519201 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54931 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40955897, endtime: 40956334, seqnum: 0, connid: 0 98 12:55:10,6519257 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54931 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40955900, endtime: 40956334, seqnum: 0, connid: 0 98 12:55:10,6519838 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54931 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40955901, endtime: 40956334, seqnum: 0, connid: 0 98 12:55:10,6519902 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54931 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40955903, endtime: 40956334, seqnum: 0, connid: 0 98 12:55:10,6519966 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54931 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40955905, endtime: 40956334, seqnum: 0, connid: 0 98 12:55:10,6520019 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54931 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40955907, endtime: 40956334, seqnum: 0, connid: 0 98 12:55:10,6520082 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54931 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40955908, endtime: 40956334, seqnum: 0, connid: 0 98 12:55:10,6520135 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54931 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40955909, endtime: 40956334, seqnum: 0, connid: 0 98 12:55:10,6520199 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54931 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40955911, endtime: 40956334, seqnum: 0, connid: 0 98 12:55:10,6520251 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54931 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40955912, endtime: 40956334, seqnum: 0, connid: 0 98 12:55:11,3966121 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54935 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40955955, endtime: 40956408, seqnum: 0, connid: 0 98 12:55:11,3966299 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54935 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40955956, endtime: 40956408, seqnum: 0, connid: 0 98 12:55:11,3966376 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54935 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40955958, endtime: 40956408, seqnum: 0, connid: 0 98 12:55:11,3966451 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54935 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40955961, endtime: 40956408, seqnum: 0, connid: 0 98 12:55:11,3966509 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54935 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40955963, endtime: 40956408, seqnum: 0, connid: 0 98 12:55:11,3966576 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54935 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40955967, endtime: 40956408, seqnum: 0, connid: 0 98 12:55:11,3966634 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54935 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40955969, endtime: 40956408, seqnum: 0, connid: 0 98 12:55:11,3966701 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54935 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40955972, endtime: 40956408, seqnum: 0, connid: 0 98 12:55:11,3966756 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54935 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40955975, endtime: 40956408, seqnum: 0, connid: 0 98 12:55:11,3967039 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54935 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40955976, endtime: 40956408, seqnum: 0, connid: 0 98 12:55:11,3967097 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54935 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40955978, endtime: 40956408, seqnum: 0, connid: 0 98 12:55:11,3967163 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54935 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40955980, endtime: 40956408, seqnum: 0, connid: 0 98 12:55:11,3967221 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54935 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40955983, endtime: 40956408, seqnum: 0, connid: 0 98 12:55:11,6136579 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54931 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40956334, endtime: 40956430, seqnum: 0, connid: 0 98 12:55:11,6136750 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54931 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40956336, endtime: 40956430, seqnum: 0, connid: 0 98 12:55:11,6136822 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54931 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40956337, endtime: 40956430, seqnum: 0, connid: 0 98 12:55:11,6136894 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54931 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40956341, endtime: 40956430, seqnum: 0, connid: 0 98 12:55:11,6137088 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54931 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40956342, endtime: 40956430, seqnum: 0, connid: 0 98 12:55:11,6137210 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54931 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40956344, endtime: 40956430, seqnum: 0, connid: 0 98 12:55:11,6137271 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54931 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40956345, endtime: 40956430, seqnum: 0, connid: 0 98 12:55:11,6137343 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54931 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40956347, endtime: 40956430, seqnum: 0, connid: 0 98 12:55:11,6137401 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54931 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40956348, endtime: 40956430, seqnum: 0, connid: 0 98 12:55:11,6137720 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54931 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40956350, endtime: 40956430, seqnum: 0, connid: 0 98 12:55:11,6137775 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54931 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40956352, endtime: 40956430, seqnum: 0, connid: 0 98 12:55:11,6137842 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54931 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40956353, endtime: 40956430, seqnum: 0, connid: 0 98 12:55:11,6137900 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54931 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40956355, endtime: 40956430, seqnum: 0, connid: 0 98 12:55:13,1531234 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54877 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40956319, endtime: 40956584, seqnum: 0, connid: 0 98 12:55:13,1531389 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54877 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40956320, endtime: 40956584, seqnum: 0, connid: 0 98 12:55:13,1531467 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54877 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40956322, endtime: 40956584, seqnum: 0, connid: 0 98 12:55:13,1531547 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54877 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40956323, endtime: 40956584, seqnum: 0, connid: 0 98 12:55:13,1531608 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54877 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40956325, endtime: 40956584, seqnum: 0, connid: 0 98 12:55:13,1531683 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54877 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40956327, endtime: 40956584, seqnum: 0, connid: 0 98 12:55:13,1531741 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54877 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40956328, endtime: 40956584, seqnum: 0, connid: 0 98 12:55:13,1531813 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54877 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40956330, endtime: 40956584, seqnum: 0, connid: 0 98 12:55:13,1531874 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54877 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40956331, endtime: 40956584, seqnum: 0, connid: 0 98 12:55:13,1532683 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54877 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40956333, endtime: 40956584, seqnum: 0, connid: 0 98 12:55:13,1532771 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54877 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40956334, endtime: 40956584, seqnum: 0, connid: 0 98 12:55:13,1532843 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54877 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40956336, endtime: 40956584, seqnum: 0, connid: 0 98 12:55:13,1534758 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54877 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40956337, endtime: 40956584, seqnum: 0, connid: 0 98 12:55:13,2192572 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54935 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40956408, endtime: 40956591, seqnum: 0, connid: 0 98 12:55:13,2192769 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54935 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40956409, endtime: 40956591, seqnum: 0, connid: 0 98 12:55:13,2192844 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54935 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40956411, endtime: 40956591, seqnum: 0, connid: 0 98 12:55:13,2192921 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54935 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40956412, endtime: 40956591, seqnum: 0, connid: 0 98 12:55:13,2192982 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54935 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40956414, endtime: 40956591, seqnum: 0, connid: 0 98 12:55:13,2193051 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54935 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40956417, endtime: 40956591, seqnum: 0, connid: 0 98 12:55:13,2193107 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54935 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40956420, endtime: 40956591, seqnum: 0, connid: 0 98 12:55:13,2193173 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54935 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40956422, endtime: 40956591, seqnum: 0, connid: 0 98 12:55:13,2193229 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54935 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40956423, endtime: 40956591, seqnum: 0, connid: 0 98 12:55:13,2193525 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54935 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40956425, endtime: 40956591, seqnum: 0, connid: 0 98 12:55:13,2193664 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54935 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40956429, endtime: 40956591, seqnum: 0, connid: 0 98 12:55:13,2193830 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54935 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40956430, endtime: 40956591, seqnum: 0, connid: 0 98 12:55:13,2193927 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54935 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40956431, endtime: 40956591, seqnum: 0, connid: 0 98 12:55:13,5146317 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54937 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40955081, endtime: 40956620, seqnum: 0, connid: 0 98 12:55:13,5146643 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54937 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40955083, endtime: 40956620, seqnum: 0, connid: 0 98 12:55:13,5146757 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54937 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40955083, endtime: 40956620, seqnum: 0, connid: 0 98 12:55:13,5146826 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54937 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40955084, endtime: 40956620, seqnum: 0, connid: 0 98 12:55:13,5146901 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54937 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40955084, endtime: 40956620, seqnum: 0, connid: 0 98 12:55:13,5146962 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54937 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40955087, endtime: 40956620, seqnum: 0, connid: 0 98 12:55:13,5147037 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54937 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40955089, endtime: 40956620, seqnum: 0, connid: 0 98 12:55:13,5147101 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54937 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40955091, endtime: 40956620, seqnum: 0, connid: 0 98 12:55:13,5147175 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54937 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40955093, endtime: 40956620, seqnum: 0, connid: 0 98 12:55:13,5147236 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54937 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40955095, endtime: 40956620, seqnum: 0, connid: 0 98 12:55:13,5147544 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54937 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40955097, endtime: 40956620, seqnum: 0, connid: 0 98 12:55:13,5147608 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54937 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40955098, endtime: 40956620, seqnum: 0, connid: 0 98 12:55:13,5147677 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54937 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40955100, endtime: 40956620, seqnum: 0, connid: 0 98 12:55:14,2462527 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54931 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40956430, endtime: 40956693, seqnum: 0, connid: 0 98 12:55:14,2462713 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54931 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40956431, endtime: 40956693, seqnum: 0, connid: 0 98 12:55:14,2462788 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54931 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40956433, endtime: 40956693, seqnum: 0, connid: 0 98 12:55:14,2462862 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54931 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40956434, endtime: 40956693, seqnum: 0, connid: 0 98 12:55:14,2462918 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54931 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40956436, endtime: 40956693, seqnum: 0, connid: 0 98 12:55:14,2462984 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54931 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40956437, endtime: 40956693, seqnum: 0, connid: 0 98 12:55:14,2463040 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54931 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40956439, endtime: 40956693, seqnum: 0, connid: 0 98 12:55:14,2463106 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54931 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40956441, endtime: 40956693, seqnum: 0, connid: 0 98 12:55:14,2463159 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54931 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40956442, endtime: 40956693, seqnum: 0, connid: 0 98 12:55:14,2463469 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54931 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40956445, endtime: 40956693, seqnum: 0, connid: 0 98 12:55:14,2463527 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54931 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40956447, endtime: 40956693, seqnum: 0, connid: 0 98 12:55:14,2463594 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54931 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40956450, endtime: 40956693, seqnum: 0, connid: 0 98 12:55:14,2463647 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54931 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40956452, endtime: 40956693, seqnum: 0, connid: 0 98 12:55:14,2717682 MCLauncher.exe 6080 RegOpenKey HKLM\Software\WOW6432Node\Policies\Microsoft\MUI\Settings REPARSE Desired Access: Read 98 12:55:14,2717909 MCLauncher.exe 6080 RegOpenKey HKLM\SOFTWARE\Policies\Microsoft\MUI\Settings NAME NOT FOUND Desired Access: Read 98 12:55:14,2718197 MCLauncher.exe 6080 RegOpenKey HKCU SUCCESS Desired Access: Maximum Allowed, Granted Access: All Access 98 12:55:14,2718427 MCLauncher.exe 6080 RegQueryKey HKCU SUCCESS Query: HandleTags, HandleTags: 0x0 98 12:55:14,2718521 MCLauncher.exe 6080 RegQueryKey HKCU SUCCESS Query: Name 98 12:55:14,2718613 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Policies\Microsoft\Control Panel\Desktop NAME NOT FOUND Desired Access: Read 98 12:55:14,2718779 MCLauncher.exe 6080 RegQueryKey HKCU SUCCESS Query: HandleTags, HandleTags: 0x0 98 12:55:14,2718851 MCLauncher.exe 6080 RegQueryKey HKCU SUCCESS Query: Name 98 12:55:14,2718926 MCLauncher.exe 6080 RegOpenKey HKCU\Control Panel\Desktop SUCCESS Desired Access: Read 98 12:55:14,2719070 MCLauncher.exe 6080 RegSetInfoKey HKCU\Control Panel\Desktop SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 98 12:55:14,2719139 MCLauncher.exe 6080 RegQueryValue HKCU\Control Panel\Desktop\PreferredUILanguages NAME NOT FOUND Length: 12 98 12:55:14,2719366 MCLauncher.exe 6080 RegCloseKey HKCU\Control Panel\Desktop SUCCESS 98 12:55:14,2719422 MCLauncher.exe 6080 RegCloseKey HKCU SUCCESS 98 12:55:14,2719549 MCLauncher.exe 6080 RegOpenKey HKLM\Software\WOW6432Node\Policies\Microsoft\MUI\Settings REPARSE Desired Access: Read 98 12:55:14,2719624 MCLauncher.exe 6080 RegOpenKey HKLM\SOFTWARE\Policies\Microsoft\MUI\Settings NAME NOT FOUND Desired Access: Read 98 12:55:14,2719774 MCLauncher.exe 6080 RegOpenKey HKCU SUCCESS Desired Access: Maximum Allowed, Granted Access: All Access 98 12:55:14,2719912 MCLauncher.exe 6080 RegQueryKey HKCU SUCCESS Query: HandleTags, HandleTags: 0x0 98 12:55:14,2719984 MCLauncher.exe 6080 RegQueryKey HKCU SUCCESS Query: Name 98 12:55:14,2720059 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Policies\Microsoft\Control Panel\Desktop NAME NOT FOUND Desired Access: Read 98 12:55:14,2720184 MCLauncher.exe 6080 RegQueryKey HKCU SUCCESS Query: HandleTags, HandleTags: 0x0 98 12:55:14,2720253 MCLauncher.exe 6080 RegQueryKey HKCU SUCCESS Query: Name 98 12:55:14,2720325 MCLauncher.exe 6080 RegOpenKey HKCU\Control Panel\Desktop\LanguageConfiguration SUCCESS Desired Access: Read 98 12:55:14,2720441 MCLauncher.exe 6080 RegSetInfoKey HKCU\Control Panel\Desktop\LanguageConfiguration SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 98 12:55:14,2720497 MCLauncher.exe 6080 RegEnumValue HKCU\Control Panel\Desktop\LanguageConfiguration NO MORE ENTRIES Index: 0, Length: 512 98 12:55:14,2720558 MCLauncher.exe 6080 RegCloseKey HKCU\Control Panel\Desktop\LanguageConfiguration SUCCESS 98 12:55:14,2720627 MCLauncher.exe 6080 RegCloseKey HKCU SUCCESS 98 12:55:14,2721566 MCLauncher.exe 6080 TCP Disconnect WIN-0UOTFKKVN1S:54877 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 0, seqnum: 0, connid: 0 98 12:55:14,3485141 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54936 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40956334, endtime: 40956703, seqnum: 0, connid: 0 98 12:55:14,3485310 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54936 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40956334, endtime: 40956703, seqnum: 0, connid: 0 98 12:55:14,3485379 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54936 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40956336, endtime: 40956703, seqnum: 0, connid: 0 98 12:55:14,3485449 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54936 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40956337, endtime: 40956703, seqnum: 0, connid: 0 98 12:55:14,3485504 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54936 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40956341, endtime: 40956703, seqnum: 0, connid: 0 98 12:55:14,3485573 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54936 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40956342, endtime: 40956703, seqnum: 0, connid: 0 98 12:55:14,3485626 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54936 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40956344, endtime: 40956703, seqnum: 0, connid: 0 98 12:55:14,3485692 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54936 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40956345, endtime: 40956703, seqnum: 0, connid: 0 98 12:55:14,3485745 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54936 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40956347, endtime: 40956703, seqnum: 0, connid: 0 98 12:55:14,3486025 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54936 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40956348, endtime: 40956703, seqnum: 0, connid: 0 98 12:55:14,3486083 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54936 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40956350, endtime: 40956703, seqnum: 0, connid: 0 98 12:55:14,3486150 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54936 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40956352, endtime: 40956703, seqnum: 0, connid: 0 98 12:55:14,3486205 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54936 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40956353, endtime: 40956703, seqnum: 0, connid: 0 98 12:55:14,3599366 MCLauncher.exe 6080 TCP Connect WIN-0UOTFKKVN1S:54950 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 0, mss: 1460, sackopt: 0, tsopt: 0, wsopt: 0, rcvwin: 64240, rcvwinscale: 0, sndwinscale: 0, seqnum: 0, connid: 0 98 12:55:14,3604101 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54950 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40956705, endtime: 40956705, seqnum: 0, connid: 0 98 12:55:14,3765627 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54950 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40956706, endtime: 40956706, seqnum: 0, connid: 0 98 12:55:14,3922499 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54950 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40956708, endtime: 40956708, seqnum: 0, connid: 0 98 12:55:14,4231173 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54950 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40956711, endtime: 40956711, seqnum: 0, connid: 0 98 12:55:14,4380863 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54950 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40956712, endtime: 40956712, seqnum: 0, connid: 0 98 12:55:14,4851817 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54950 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40956717, endtime: 40956717, seqnum: 0, connid: 0 98 12:55:14,5086960 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54950 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40956719, endtime: 40956719, seqnum: 0, connid: 0 98 12:55:14,5252983 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54950 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40956720, endtime: 40956721, seqnum: 0, connid: 0 98 12:55:14,5879975 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54950 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40956727, endtime: 40956727, seqnum: 0, connid: 0 98 12:55:14,6482350 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54950 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40956733, endtime: 40956733, seqnum: 0, connid: 0 98 12:55:14,6835657 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54950 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40956736, endtime: 40956737, seqnum: 0, connid: 0 98 12:55:14,7244670 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54950 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40956741, endtime: 40956741, seqnum: 0, connid: 0 98 12:55:14,7559946 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54950 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40956744, endtime: 40956744, seqnum: 0, connid: 0 98 12:55:14,7873213 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54950 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40956747, endtime: 40956747, seqnum: 0, connid: 0 98 12:55:14,7992857 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54950 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40956749, endtime: 40956749, seqnum: 0, connid: 0 98 12:55:14,8151175 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54950 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40956750, endtime: 40956750, seqnum: 0, connid: 0 98 12:55:14,8312258 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54950 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40956751, endtime: 40956752, seqnum: 0, connid: 0 98 12:55:14,8477694 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54950 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40956753, endtime: 40956753, seqnum: 0, connid: 0 98 12:55:14,8796422 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54950 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40956756, endtime: 40956757, seqnum: 0, connid: 0 98 12:55:14,8930786 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54950 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40956758, endtime: 40956758, seqnum: 0, connid: 0 98 12:55:14,8995307 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54950 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40956759, endtime: 40956759, seqnum: 0, connid: 0 98 12:55:14,9053078 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54950 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40956759, endtime: 40956759, seqnum: 0, connid: 0 98 12:55:14,9111152 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54950 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40956760, endtime: 40956760, seqnum: 0, connid: 0 98 12:55:14,9220514 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54950 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40956761, endtime: 40956761, seqnum: 0, connid: 0 98 12:55:14,9277438 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54950 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40956761, endtime: 40956761, seqnum: 0, connid: 0 98 12:55:14,9336750 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54950 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40956762, endtime: 40956762, seqnum: 0, connid: 0 98 12:55:14,9408572 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54950 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40956763, endtime: 40956763, seqnum: 0, connid: 0 98 12:55:14,9549748 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54950 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40956764, endtime: 40956764, seqnum: 0, connid: 0 98 12:55:14,9628366 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54950 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40956765, endtime: 40956765, seqnum: 0, connid: 0 98 12:55:14,9832750 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54950 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40956767, endtime: 40956767, seqnum: 0, connid: 0 98 12:55:16,0180137 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54950 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40956768, endtime: 40956870, seqnum: 0, connid: 0 98 12:55:16,0180331 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54950 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40956769, endtime: 40956870, seqnum: 0, connid: 0 98 12:55:16,0180408 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54950 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40956769, endtime: 40956870, seqnum: 0, connid: 0 98 12:55:16,0180483 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54950 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40956770, endtime: 40956870, seqnum: 0, connid: 0 98 12:55:16,0180541 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54950 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40956770, endtime: 40956870, seqnum: 0, connid: 0 98 12:55:16,0180611 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54950 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40956771, endtime: 40956870, seqnum: 0, connid: 0 98 12:55:16,0180666 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54950 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40956771, endtime: 40956870, seqnum: 0, connid: 0 98 12:55:16,0180732 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54950 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40956772, endtime: 40956870, seqnum: 0, connid: 0 98 12:55:16,2593661 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54935 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40956591, endtime: 40956895, seqnum: 0, connid: 0 98 12:55:16,2593830 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54935 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40956592, endtime: 40956895, seqnum: 0, connid: 0 98 12:55:16,2593904 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54935 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40956594, endtime: 40956895, seqnum: 0, connid: 0 98 12:55:16,2593976 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54935 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40956597, endtime: 40956895, seqnum: 0, connid: 0 98 12:55:16,2594287 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54935 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40956598, endtime: 40956895, seqnum: 0, connid: 0 98 12:55:16,2594373 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54935 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40956600, endtime: 40956895, seqnum: 0, connid: 0 98 12:55:16,2594434 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54935 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40956601, endtime: 40956895, seqnum: 0, connid: 0 98 12:55:16,2594506 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54935 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40956601, endtime: 40956895, seqnum: 0, connid: 0 98 12:55:16,2594564 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54935 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40956603, endtime: 40956895, seqnum: 0, connid: 0 98 12:55:16,2594924 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54935 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40956605, endtime: 40956895, seqnum: 0, connid: 0 98 12:55:16,2594985 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54935 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40956606, endtime: 40956895, seqnum: 0, connid: 0 98 12:55:16,2595051 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54935 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40956612, endtime: 40956895, seqnum: 0, connid: 0 98 12:55:16,2595110 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54935 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40956614, endtime: 40956895, seqnum: 0, connid: 0 98 12:55:16,2595226 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54925 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40956309, endtime: 40956895, seqnum: 0, connid: 0 98 12:55:16,2595281 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54925 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40956311, endtime: 40956895, seqnum: 0, connid: 0 98 12:55:16,2595348 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54925 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40956312, endtime: 40956895, seqnum: 0, connid: 0 98 12:55:16,2595401 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54925 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40956314, endtime: 40956895, seqnum: 0, connid: 0 98 12:55:16,2595473 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54925 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40956316, endtime: 40956895, seqnum: 0, connid: 0 98 12:55:16,2595528 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54925 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40956319, endtime: 40956895, seqnum: 0, connid: 0 98 12:55:16,2596068 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54925 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40956320, endtime: 40956895, seqnum: 0, connid: 0 98 12:55:16,2596129 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54925 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40956322, endtime: 40956895, seqnum: 0, connid: 0 98 12:55:16,2596196 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54925 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40956323, endtime: 40956895, seqnum: 0, connid: 0 98 12:55:16,2596251 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54925 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40956325, endtime: 40956895, seqnum: 0, connid: 0 98 12:55:16,2596315 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54925 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40956327, endtime: 40956895, seqnum: 0, connid: 0 98 12:55:16,2596370 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54925 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40956328, endtime: 40956895, seqnum: 0, connid: 0 98 12:55:16,2596434 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54925 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40956330, endtime: 40956895, seqnum: 0, connid: 0 98 12:55:17,5212852 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54948 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40956157, endtime: 40957021, seqnum: 0, connid: 0 98 12:55:17,5213018 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54948 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40956157, endtime: 40957021, seqnum: 0, connid: 0 98 12:55:17,5213104 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54948 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40956158, endtime: 40957021, seqnum: 0, connid: 0 98 12:55:17,5213170 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54948 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40956158, endtime: 40957021, seqnum: 0, connid: 0 98 12:55:17,5213239 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54948 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40956159, endtime: 40957021, seqnum: 0, connid: 0 98 12:55:17,5213298 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54948 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40956160, endtime: 40957021, seqnum: 0, connid: 0 98 12:55:17,5213367 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54948 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40956160, endtime: 40957021, seqnum: 0, connid: 0 98 12:55:17,5213422 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54948 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40956161, endtime: 40957021, seqnum: 0, connid: 0 98 12:55:17,5213492 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54948 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40956161, endtime: 40957021, seqnum: 0, connid: 0 98 12:55:17,5213788 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54948 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40956162, endtime: 40957021, seqnum: 0, connid: 0 98 12:55:17,5213863 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54948 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40956163, endtime: 40957021, seqnum: 0, connid: 0 98 12:55:17,5213921 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54948 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40956166, endtime: 40957021, seqnum: 0, connid: 0 98 12:55:17,5213987 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54948 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40956167, endtime: 40957021, seqnum: 0, connid: 0 98 12:55:18,0879526 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54931 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40956693, endtime: 40957077, seqnum: 0, connid: 0 98 12:55:18,0879714 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54931 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40956695, endtime: 40957077, seqnum: 0, connid: 0 98 12:55:18,0879789 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54931 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40956698, endtime: 40957077, seqnum: 0, connid: 0 98 12:55:18,0880000 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54931 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40956700, endtime: 40957077, seqnum: 0, connid: 0 98 12:55:18,0880080 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54931 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40956700, endtime: 40957077, seqnum: 0, connid: 0 98 12:55:18,0880155 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54931 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40956703, endtime: 40957077, seqnum: 0, connid: 0 98 12:55:18,0880216 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54931 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40956705, endtime: 40957077, seqnum: 0, connid: 0 98 12:55:18,0880288 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54931 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40956706, endtime: 40957077, seqnum: 0, connid: 0 98 12:55:18,0880349 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54931 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40956708, endtime: 40957077, seqnum: 0, connid: 0 98 12:55:18,0880692 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54931 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40956711, endtime: 40957077, seqnum: 0, connid: 0 98 12:55:18,0880753 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54931 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40956712, endtime: 40957077, seqnum: 0, connid: 0 98 12:55:18,0880823 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54931 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40956717, endtime: 40957077, seqnum: 0, connid: 0 98 12:55:18,0880878 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54931 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40956719, endtime: 40957077, seqnum: 0, connid: 0 98 12:55:18,5707305 MCLauncher.exe 6080 TCP Disconnect WIN-0UOTFKKVN1S:54937 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 0, seqnum: 0, connid: 0 98 12:55:19,2396261 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54925 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40956895, endtime: 40957193, seqnum: 0, connid: 0 98 12:55:19,2396433 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54925 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40956895, endtime: 40957193, seqnum: 0, connid: 0 98 12:55:19,2396505 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54925 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40956897, endtime: 40957193, seqnum: 0, connid: 0 98 12:55:19,2396577 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54925 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40956900, endtime: 40957193, seqnum: 0, connid: 0 98 12:55:19,2396632 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54925 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40956900, endtime: 40957193, seqnum: 0, connid: 0 98 12:55:19,2396699 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54925 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40956901, endtime: 40957193, seqnum: 0, connid: 0 98 12:55:19,2396754 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54925 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40956905, endtime: 40957193, seqnum: 0, connid: 0 98 12:55:19,2396821 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54925 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40956906, endtime: 40957193, seqnum: 0, connid: 0 98 12:55:19,2396873 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54925 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40956908, endtime: 40957193, seqnum: 0, connid: 0 98 12:55:19,2397178 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54925 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40956910, endtime: 40957193, seqnum: 0, connid: 0 98 12:55:19,2397233 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54925 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40956911, endtime: 40957193, seqnum: 0, connid: 0 98 12:55:19,2397300 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54925 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40956914, endtime: 40957193, seqnum: 0, connid: 0 98 12:55:19,2397355 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54925 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40956916, endtime: 40957193, seqnum: 0, connid: 0 98 12:55:19,7235366 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54950 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40956773, endtime: 40957241, seqnum: 0, connid: 0 98 12:55:19,7235549 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54950 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40956774, endtime: 40957241, seqnum: 0, connid: 0 98 12:55:19,7235629 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54950 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40956774, endtime: 40957241, seqnum: 0, connid: 0 98 12:55:19,7235710 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54950 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40956776, endtime: 40957241, seqnum: 0, connid: 0 98 12:55:19,7235771 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54950 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40956777, endtime: 40957241, seqnum: 0, connid: 0 98 12:55:19,7235840 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54950 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40956870, endtime: 40957241, seqnum: 0, connid: 0 98 12:55:19,7235898 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54950 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40956872, endtime: 40957241, seqnum: 0, connid: 0 98 12:55:19,7235967 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54950 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40956873, endtime: 40957241, seqnum: 0, connid: 0 98 12:55:19,7236026 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54950 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40956875, endtime: 40957241, seqnum: 0, connid: 0 98 12:55:19,7236308 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54950 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40956876, endtime: 40957241, seqnum: 0, connid: 0 98 12:55:19,7236372 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54950 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40956878, endtime: 40957241, seqnum: 0, connid: 0 98 12:55:19,7236441 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54950 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40956880, endtime: 40957241, seqnum: 0, connid: 0 98 12:55:19,7236499 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54950 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40956881, endtime: 40957241, seqnum: 0, connid: 0 98 12:55:19,8318356 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54936 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40956703, endtime: 40957252, seqnum: 0, connid: 0 98 12:55:19,8318517 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54936 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40956705, endtime: 40957252, seqnum: 0, connid: 0 98 12:55:19,8318603 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54936 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40956706, endtime: 40957252, seqnum: 0, connid: 0 98 12:55:19,8318664 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54936 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40956708, endtime: 40957252, seqnum: 0, connid: 0 98 12:55:19,8318733 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54936 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40956711, endtime: 40957252, seqnum: 0, connid: 0 98 12:55:19,8318791 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54936 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40956712, endtime: 40957252, seqnum: 0, connid: 0 98 12:55:19,8318858 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54936 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40956717, endtime: 40957252, seqnum: 0, connid: 0 98 12:55:19,8318913 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54936 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40956719, endtime: 40957252, seqnum: 0, connid: 0 98 12:55:19,8318980 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54936 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40956720, endtime: 40957252, seqnum: 0, connid: 0 98 12:55:19,8319237 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54936 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40956727, endtime: 40957252, seqnum: 0, connid: 0 98 12:55:19,8319309 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54936 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40956733, endtime: 40957252, seqnum: 0, connid: 0 98 12:55:19,8319365 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54936 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40956736, endtime: 40957252, seqnum: 0, connid: 0 98 12:55:19,8319431 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54936 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40956738, endtime: 40957252, seqnum: 0, connid: 0 98 12:55:20,3431384 MCLauncher.exe 6080 TCP TCPCopy WIN-0UOTFKKVN1S:54920 -> sheltex.company:8000 SUCCESS Length: 2, seqnum: 0, connid: 0 98 12:55:20,3431503 MCLauncher.exe 6080 TCP Receive WIN-0UOTFKKVN1S:54920 -> sheltex.company:8000 SUCCESS Length: 2, seqnum: 0, connid: 0 98 12:55:20,3434986 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54920 -> sheltex.company:8000 SUCCESS Length: 2, startime: 40957303, endtime: 40957303, seqnum: 0, connid: 0 98 12:55:20,4534937 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54935 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40956895, endtime: 40957314, seqnum: 0, connid: 0 98 12:55:20,4535303 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54935 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40956895, endtime: 40957314, seqnum: 0, connid: 0 98 12:55:20,4535433 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54935 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40956897, endtime: 40957314, seqnum: 0, connid: 0 98 12:55:20,4535574 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54935 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40956900, endtime: 40957314, seqnum: 0, connid: 0 98 12:55:20,4535663 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54935 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40956900, endtime: 40957314, seqnum: 0, connid: 0 98 12:55:20,4535746 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54935 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40956901, endtime: 40957314, seqnum: 0, connid: 0 98 12:55:20,4535810 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54935 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40956905, endtime: 40957314, seqnum: 0, connid: 0 98 12:55:20,4535887 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54935 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40956906, endtime: 40957314, seqnum: 0, connid: 0 98 12:55:20,4535954 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54935 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40956908, endtime: 40957314, seqnum: 0, connid: 0 98 12:55:20,4536286 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54935 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40956910, endtime: 40957314, seqnum: 0, connid: 0 98 12:55:20,4536350 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54935 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40956911, endtime: 40957314, seqnum: 0, connid: 0 98 12:55:20,4536422 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54935 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40956914, endtime: 40957314, seqnum: 0, connid: 0 98 12:55:20,4536483 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54935 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40956916, endtime: 40957314, seqnum: 0, connid: 0 98 12:55:20,7532678 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54931 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40957077, endtime: 40957344, seqnum: 0, connid: 0 98 12:55:20,7532852 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54931 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40957078, endtime: 40957344, seqnum: 0, connid: 0 98 12:55:20,7532924 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54931 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40957080, endtime: 40957344, seqnum: 0, connid: 0 98 12:55:20,7532996 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54931 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40957081, endtime: 40957344, seqnum: 0, connid: 0 98 12:55:20,7533055 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54931 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40957083, endtime: 40957344, seqnum: 0, connid: 0 98 12:55:20,7533121 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54931 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40957084, endtime: 40957344, seqnum: 0, connid: 0 98 12:55:20,7533177 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54931 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40957086, endtime: 40957344, seqnum: 0, connid: 0 98 12:55:20,7533243 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54931 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40957087, endtime: 40957344, seqnum: 0, connid: 0 98 12:55:20,7533296 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54931 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40957090, endtime: 40957344, seqnum: 0, connid: 0 98 12:55:20,7533564 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54931 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40957092, endtime: 40957344, seqnum: 0, connid: 0 98 12:55:20,7533620 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54931 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40957094, endtime: 40957344, seqnum: 0, connid: 0 98 12:55:20,7533686 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54931 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40957095, endtime: 40957344, seqnum: 0, connid: 0 98 12:55:20,7534587 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54931 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40957097, endtime: 40957344, seqnum: 0, connid: 0 98 12:55:22,0554154 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54925 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40957193, endtime: 40957474, seqnum: 0, connid: 0 98 12:55:22,0554478 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54925 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40957194, endtime: 40957474, seqnum: 0, connid: 0 98 12:55:22,0554578 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54925 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40957195, endtime: 40957474, seqnum: 0, connid: 0 98 12:55:22,0554675 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54925 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40957198, endtime: 40957474, seqnum: 0, connid: 0 98 12:55:22,0554744 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54925 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40957198, endtime: 40957474, seqnum: 0, connid: 0 98 12:55:22,0554825 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54925 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40957200, endtime: 40957474, seqnum: 0, connid: 0 98 12:55:22,0554894 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54925 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40957201, endtime: 40957474, seqnum: 0, connid: 0 98 12:55:22,0554977 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54925 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40957201, endtime: 40957474, seqnum: 0, connid: 0 98 12:55:22,0555041 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54925 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40957203, endtime: 40957474, seqnum: 0, connid: 0 98 12:55:22,0555384 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54925 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40957205, endtime: 40957474, seqnum: 0, connid: 0 98 12:55:22,0555451 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54925 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40957206, endtime: 40957474, seqnum: 0, connid: 0 98 12:55:22,0555520 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54925 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40957208, endtime: 40957474, seqnum: 0, connid: 0 98 12:55:22,0555581 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54925 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40957209, endtime: 40957474, seqnum: 0, connid: 0 98 12:55:23,1553540 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54936 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40957252, endtime: 40957584, seqnum: 0, connid: 0 98 12:55:23,1553706 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54936 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40957255, endtime: 40957584, seqnum: 0, connid: 0 98 12:55:23,1553778 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54936 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40957258, endtime: 40957584, seqnum: 0, connid: 0 98 12:55:23,1553850 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54936 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40957261, endtime: 40957584, seqnum: 0, connid: 0 98 12:55:23,1553905 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54936 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40957262, endtime: 40957584, seqnum: 0, connid: 0 98 12:55:23,1553972 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54936 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40957264, endtime: 40957584, seqnum: 0, connid: 0 98 12:55:23,1554027 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54936 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40957266, endtime: 40957584, seqnum: 0, connid: 0 98 12:55:23,1554091 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54936 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40957267, endtime: 40957584, seqnum: 0, connid: 0 98 12:55:23,1554144 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54936 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40957269, endtime: 40957584, seqnum: 0, connid: 0 98 12:55:23,1554448 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54936 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40957270, endtime: 40957584, seqnum: 0, connid: 0 98 12:55:23,1554504 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54936 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40957272, endtime: 40957584, seqnum: 0, connid: 0 98 12:55:23,1554567 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54936 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40957274, endtime: 40957584, seqnum: 0, connid: 0 98 12:55:23,1554623 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54936 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40957277, endtime: 40957584, seqnum: 0, connid: 0 98 12:55:23,8700300 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54948 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40957021, endtime: 40957656, seqnum: 0, connid: 0 98 12:55:23,8700491 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54948 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40957023, endtime: 40957656, seqnum: 0, connid: 0 98 12:55:23,8700591 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54948 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40957027, endtime: 40957656, seqnum: 0, connid: 0 98 12:55:23,8700666 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54948 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40957034, endtime: 40957656, seqnum: 0, connid: 0 98 12:55:23,8700721 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54948 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40957037, endtime: 40957656, seqnum: 0, connid: 0 98 12:55:23,8700788 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54948 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40957039, endtime: 40957656, seqnum: 0, connid: 0 98 12:55:23,8700843 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54948 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40957041, endtime: 40957656, seqnum: 0, connid: 0 98 12:55:23,8700910 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54948 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40957042, endtime: 40957656, seqnum: 0, connid: 0 98 12:55:23,8700965 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54948 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40957044, endtime: 40957656, seqnum: 0, connid: 0 98 12:55:23,8701259 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54948 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40957045, endtime: 40957656, seqnum: 0, connid: 0 98 12:55:23,8701314 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54948 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40957047, endtime: 40957656, seqnum: 0, connid: 0 98 12:55:23,8701381 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54948 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40957048, endtime: 40957656, seqnum: 0, connid: 0 98 12:55:23,8701433 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54948 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40957052, endtime: 40957656, seqnum: 0, connid: 0 98 12:55:24,3280701 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54935 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40957314, endtime: 40957701, seqnum: 0, connid: 0 98 12:55:24,3280868 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54935 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40957316, endtime: 40957701, seqnum: 0, connid: 0 98 12:55:24,3280942 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54935 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40957319, endtime: 40957701, seqnum: 0, connid: 0 98 12:55:24,3281017 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54935 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40957323, endtime: 40957701, seqnum: 0, connid: 0 98 12:55:24,3281073 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54935 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40957325, endtime: 40957701, seqnum: 0, connid: 0 98 12:55:24,3281139 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54935 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40957328, endtime: 40957701, seqnum: 0, connid: 0 98 12:55:24,3281195 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54935 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40957330, endtime: 40957701, seqnum: 0, connid: 0 98 12:55:24,3281261 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54935 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40957334, endtime: 40957701, seqnum: 0, connid: 0 98 12:55:24,3281317 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54935 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40957336, endtime: 40957701, seqnum: 0, connid: 0 98 12:55:24,3281610 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54935 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40957339, endtime: 40957701, seqnum: 0, connid: 0 98 12:55:24,3281668 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54935 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40957341, endtime: 40957701, seqnum: 0, connid: 0 98 12:55:24,3281732 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54935 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40957342, endtime: 40957701, seqnum: 0, connid: 0 98 12:55:24,3281788 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54935 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40957344, endtime: 40957701, seqnum: 0, connid: 0 98 12:55:24,5811509 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54931 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40957344, endtime: 40957727, seqnum: 0, connid: 0 98 12:55:24,5811725 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54931 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40957345, endtime: 40957727, seqnum: 0, connid: 0 98 12:55:24,5811808 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54931 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40957349, endtime: 40957727, seqnum: 0, connid: 0 98 12:55:24,5811891 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54931 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40957352, endtime: 40957727, seqnum: 0, connid: 0 98 12:55:24,5811955 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54931 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40957353, endtime: 40957727, seqnum: 0, connid: 0 98 12:55:24,5812027 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54931 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40957355, endtime: 40957727, seqnum: 0, connid: 0 98 12:55:24,5812088 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54931 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40957356, endtime: 40957727, seqnum: 0, connid: 0 98 12:55:24,5812160 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54931 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40957358, endtime: 40957727, seqnum: 0, connid: 0 98 12:55:24,5812221 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54931 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40957359, endtime: 40957727, seqnum: 0, connid: 0 98 12:55:24,5812514 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54931 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40957361, endtime: 40957727, seqnum: 0, connid: 0 98 12:55:24,5812578 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54931 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40957364, endtime: 40957727, seqnum: 0, connid: 0 98 12:55:24,5812647 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54931 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40957366, endtime: 40957727, seqnum: 0, connid: 0 98 12:55:24,5812708 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54931 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40957368, endtime: 40957727, seqnum: 0, connid: 0 98 12:55:25,3094656 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54950 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40957241, endtime: 40957800, seqnum: 0, connid: 0 98 12:55:25,3094827 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54950 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40957244, endtime: 40957800, seqnum: 0, connid: 0 98 12:55:25,3094897 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54950 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40957245, endtime: 40957800, seqnum: 0, connid: 0 98 12:55:25,3094969 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54950 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40957249, endtime: 40957800, seqnum: 0, connid: 0 98 12:55:25,3095021 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54950 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40957252, endtime: 40957800, seqnum: 0, connid: 0 98 12:55:25,3095088 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54950 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40957255, endtime: 40957800, seqnum: 0, connid: 0 98 12:55:25,3095140 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54950 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40957258, endtime: 40957800, seqnum: 0, connid: 0 98 12:55:25,3095207 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54950 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40957261, endtime: 40957800, seqnum: 0, connid: 0 98 12:55:25,3095257 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54950 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40957262, endtime: 40957800, seqnum: 0, connid: 0 98 12:55:25,3095562 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54950 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40957264, endtime: 40957800, seqnum: 0, connid: 0 98 12:55:25,3095617 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54950 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40957266, endtime: 40957800, seqnum: 0, connid: 0 98 12:55:25,3095681 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54950 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40957267, endtime: 40957800, seqnum: 0, connid: 0 98 12:55:25,3095733 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54950 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40957269, endtime: 40957800, seqnum: 0, connid: 0 98 12:55:26,1515868 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54935 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40957701, endtime: 40957884, seqnum: 0, connid: 0 98 12:55:26,1516167 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54935 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40957703, endtime: 40957884, seqnum: 0, connid: 0 98 12:55:26,1516251 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54935 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40957705, endtime: 40957884, seqnum: 0, connid: 0 98 12:55:26,1516334 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54935 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40957708, endtime: 40957884, seqnum: 0, connid: 0 98 12:55:26,1516392 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54935 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40957711, endtime: 40957884, seqnum: 0, connid: 0 98 12:55:26,1516469 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54935 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40957714, endtime: 40957884, seqnum: 0, connid: 0 98 12:55:26,1516528 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54935 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40957716, endtime: 40957884, seqnum: 0, connid: 0 98 12:55:26,1516600 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54935 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40957717, endtime: 40957884, seqnum: 0, connid: 0 98 12:55:26,1516658 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54935 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40957719, endtime: 40957884, seqnum: 0, connid: 0 98 12:55:26,1516985 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54935 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40957722, endtime: 40957884, seqnum: 0, connid: 0 98 12:55:26,1517043 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54935 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40957725, endtime: 40957884, seqnum: 0, connid: 0 98 12:55:26,1517109 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54935 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40957728, endtime: 40957884, seqnum: 0, connid: 0 98 12:55:26,1517165 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54935 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40957730, endtime: 40957884, seqnum: 0, connid: 0 98 12:55:26,2357584 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54925 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40957474, endtime: 40957892, seqnum: 0, connid: 0 98 12:55:26,2357781 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54925 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40957475, endtime: 40957892, seqnum: 0, connid: 0 98 12:55:26,2357858 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54925 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40957477, endtime: 40957892, seqnum: 0, connid: 0 98 12:55:26,2357939 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54925 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40957477, endtime: 40957892, seqnum: 0, connid: 0 98 12:55:26,2358000 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54925 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40957478, endtime: 40957892, seqnum: 0, connid: 0 98 12:55:26,2358072 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54925 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40957478, endtime: 40957892, seqnum: 0, connid: 0 98 12:55:26,2358130 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54925 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40957479, endtime: 40957892, seqnum: 0, connid: 0 98 12:55:26,2358199 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54925 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40957480, endtime: 40957892, seqnum: 0, connid: 0 98 12:55:26,2358254 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54925 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40957480, endtime: 40957892, seqnum: 0, connid: 0 98 12:55:26,2358540 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54925 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40957481, endtime: 40957892, seqnum: 0, connid: 0 98 12:55:26,2358601 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54925 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40957481, endtime: 40957892, seqnum: 0, connid: 0 98 12:55:26,2358670 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54925 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40957482, endtime: 40957892, seqnum: 0, connid: 0 98 12:55:26,2358728 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54925 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40957483, endtime: 40957892, seqnum: 0, connid: 0 98 12:55:26,4015853 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54936 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40957584, endtime: 40957909, seqnum: 0, connid: 0 98 12:55:26,4016039 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54936 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40957586, endtime: 40957909, seqnum: 0, connid: 0 98 12:55:26,4016119 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54936 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40957588, endtime: 40957909, seqnum: 0, connid: 0 98 12:55:26,4016197 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54936 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40957588, endtime: 40957909, seqnum: 0, connid: 0 98 12:55:26,4016258 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54936 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40957591, endtime: 40957909, seqnum: 0, connid: 0 98 12:55:26,4016330 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54936 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40957594, endtime: 40957909, seqnum: 0, connid: 0 98 12:55:26,4016385 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54936 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40957596, endtime: 40957909, seqnum: 0, connid: 0 98 12:55:26,4016457 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54936 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40957597, endtime: 40957909, seqnum: 0, connid: 0 98 12:55:26,4016512 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54936 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40957599, endtime: 40957909, seqnum: 0, connid: 0 98 12:55:26,4016823 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54936 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40957602, endtime: 40957909, seqnum: 0, connid: 0 98 12:55:26,4016884 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54936 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40957605, endtime: 40957909, seqnum: 0, connid: 0 98 12:55:26,4016950 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54936 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40957606, endtime: 40957909, seqnum: 0, connid: 0 98 12:55:26,4017008 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54936 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40957610, endtime: 40957909, seqnum: 0, connid: 0 98 12:55:26,6934392 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54948 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40957656, endtime: 40957938, seqnum: 0, connid: 0 98 12:55:26,6934602 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54948 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40957658, endtime: 40957938, seqnum: 0, connid: 0 98 12:55:26,6934683 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54948 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40957659, endtime: 40957938, seqnum: 0, connid: 0 98 12:55:26,6934763 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54948 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40957661, endtime: 40957938, seqnum: 0, connid: 0 98 12:55:26,6934827 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54948 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40957665, endtime: 40957938, seqnum: 0, connid: 0 98 12:55:26,6934896 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54948 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40957667, endtime: 40957938, seqnum: 0, connid: 0 98 12:55:26,6934954 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54948 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40957669, endtime: 40957938, seqnum: 0, connid: 0 98 12:55:26,6935026 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54948 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40957670, endtime: 40957938, seqnum: 0, connid: 0 98 12:55:26,6935082 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54948 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40957672, endtime: 40957938, seqnum: 0, connid: 0 98 12:55:26,6935384 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54948 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40957673, endtime: 40957938, seqnum: 0, connid: 0 98 12:55:26,6935445 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54948 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40957675, endtime: 40957938, seqnum: 0, connid: 0 98 12:55:26,6935514 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54948 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40957677, endtime: 40957938, seqnum: 0, connid: 0 98 12:55:26,6935713 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54948 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40957678, endtime: 40957938, seqnum: 0, connid: 0 98 12:55:27,9754665 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54931 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40957727, endtime: 40958066, seqnum: 0, connid: 0 98 12:55:27,9754856 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54931 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40957728, endtime: 40958066, seqnum: 0, connid: 0 98 12:55:27,9754933 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54931 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40957730, endtime: 40958066, seqnum: 0, connid: 0 98 12:55:27,9755014 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54931 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40957731, endtime: 40958066, seqnum: 0, connid: 0 98 12:55:27,9755075 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54931 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40957734, endtime: 40958066, seqnum: 0, connid: 0 98 12:55:27,9755147 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54931 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40957734, endtime: 40958066, seqnum: 0, connid: 0 98 12:55:27,9755205 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54931 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40957736, endtime: 40958066, seqnum: 0, connid: 0 98 12:55:27,9755274 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54931 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40957737, endtime: 40958066, seqnum: 0, connid: 0 98 12:55:27,9755332 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54931 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40957739, endtime: 40958066, seqnum: 0, connid: 0 98 12:55:27,9755631 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54931 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40957741, endtime: 40958066, seqnum: 0, connid: 0 98 12:55:27,9755695 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54931 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40957744, endtime: 40958066, seqnum: 0, connid: 0 98 12:55:27,9755762 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54931 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40957745, endtime: 40958066, seqnum: 0, connid: 0 98 12:55:27,9755823 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54931 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40957749, endtime: 40958066, seqnum: 0, connid: 0 98 12:55:28,4069926 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54935 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40957884, endtime: 40958109, seqnum: 0, connid: 0 98 12:55:28,4070081 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54935 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40957886, endtime: 40958109, seqnum: 0, connid: 0 98 12:55:28,4070159 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54935 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40957887, endtime: 40958109, seqnum: 0, connid: 0 98 12:55:28,4070231 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54935 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40957889, endtime: 40958109, seqnum: 0, connid: 0 98 12:55:28,4070286 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54935 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40957891, endtime: 40958109, seqnum: 0, connid: 0 98 12:55:28,4070353 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54935 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40957894, endtime: 40958109, seqnum: 0, connid: 0 98 12:55:28,4070408 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54935 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40957895, endtime: 40958109, seqnum: 0, connid: 0 98 12:55:28,4070475 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54935 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40957897, endtime: 40958109, seqnum: 0, connid: 0 98 12:55:28,4070527 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54935 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40957898, endtime: 40958109, seqnum: 0, connid: 0 98 12:55:28,4070838 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54935 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40957900, endtime: 40958109, seqnum: 0, connid: 0 98 12:55:28,4070899 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54935 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40957901, endtime: 40958109, seqnum: 0, connid: 0 98 12:55:28,4070962 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54935 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40957901, endtime: 40958109, seqnum: 0, connid: 0 98 12:55:28,4071018 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54935 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40957903, endtime: 40958109, seqnum: 0, connid: 0 98 12:55:29,2851785 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54936 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40957909, endtime: 40958197, seqnum: 0, connid: 0 98 12:55:29,2851982 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54936 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40957911, endtime: 40958197, seqnum: 0, connid: 0 98 12:55:29,2852065 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54936 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40957912, endtime: 40958197, seqnum: 0, connid: 0 98 12:55:29,2852146 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54936 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40957914, endtime: 40958197, seqnum: 0, connid: 0 98 12:55:29,2852209 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54936 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40957916, endtime: 40958197, seqnum: 0, connid: 0 98 12:55:29,2852281 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54936 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40957917, endtime: 40958197, seqnum: 0, connid: 0 98 12:55:29,2852342 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54936 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40957919, endtime: 40958197, seqnum: 0, connid: 0 98 12:55:29,2852414 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54936 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40957922, endtime: 40958197, seqnum: 0, connid: 0 98 12:55:29,2852475 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54936 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40957923, endtime: 40958197, seqnum: 0, connid: 0 98 12:55:29,2852816 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54936 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40957926, endtime: 40958197, seqnum: 0, connid: 0 98 12:55:29,2852880 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54936 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40957930, endtime: 40958197, seqnum: 0, connid: 0 98 12:55:29,2852949 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54936 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40957931, endtime: 40958197, seqnum: 0, connid: 0 98 12:55:29,2853007 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54936 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40957934, endtime: 40958197, seqnum: 0, connid: 0 98 12:55:29,2853124 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54925 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40957892, endtime: 40958197, seqnum: 0, connid: 0 98 12:55:29,2853196 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54925 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40957894, endtime: 40958197, seqnum: 0, connid: 0 98 12:55:29,2853254 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54925 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40957895, endtime: 40958197, seqnum: 0, connid: 0 98 12:55:29,2853323 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54925 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40957897, endtime: 40958197, seqnum: 0, connid: 0 98 12:55:29,2853381 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54925 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40957898, endtime: 40958197, seqnum: 0, connid: 0 98 12:55:29,2853451 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54925 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40957900, endtime: 40958197, seqnum: 0, connid: 0 98 12:55:29,2854007 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54925 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40957901, endtime: 40958197, seqnum: 0, connid: 0 98 12:55:29,2854093 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54925 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40957901, endtime: 40958197, seqnum: 0, connid: 0 98 12:55:29,2854151 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54925 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40957903, endtime: 40958197, seqnum: 0, connid: 0 98 12:55:29,2854221 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54925 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40957905, endtime: 40958197, seqnum: 0, connid: 0 98 12:55:29,2854279 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54925 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40957908, endtime: 40958197, seqnum: 0, connid: 0 98 12:55:29,2854348 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54925 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40957909, endtime: 40958197, seqnum: 0, connid: 0 98 12:55:29,2854409 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54925 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40957911, endtime: 40958197, seqnum: 0, connid: 0 98 12:55:29,3560171 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54936 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40958197, endtime: 40958204, seqnum: 0, connid: 0 98 12:55:30,6156322 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54936 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40958200, endtime: 40958330, seqnum: 0, connid: 0 98 12:55:30,6156460 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54936 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40958201, endtime: 40958330, seqnum: 0, connid: 0 98 12:55:30,6156549 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54936 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40958203, endtime: 40958330, seqnum: 0, connid: 0 98 12:55:30,6156610 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54936 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40958206, endtime: 40958330, seqnum: 0, connid: 0 98 12:55:30,6156679 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54936 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40958208, endtime: 40958330, seqnum: 0, connid: 0 98 12:55:30,6156734 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54936 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40958211, endtime: 40958330, seqnum: 0, connid: 0 98 12:55:30,6156804 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54936 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40958212, endtime: 40958330, seqnum: 0, connid: 0 98 12:55:30,6156859 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54936 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40958214, endtime: 40958330, seqnum: 0, connid: 0 98 12:55:30,6156926 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54936 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40958217, endtime: 40958330, seqnum: 0, connid: 0 98 12:55:30,6157699 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54936 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40958219, endtime: 40958330, seqnum: 0, connid: 0 98 12:55:30,6157784 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54936 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40958222, endtime: 40958330, seqnum: 0, connid: 0 98 12:55:30,6157845 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54936 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40958223, endtime: 40958330, seqnum: 0, connid: 0 98 12:55:30,6165489 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54936 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40958227, endtime: 40958330, seqnum: 0, connid: 0 98 12:55:30,6248822 MCLauncher.exe 6080 TCP TCPCopy WIN-0UOTFKKVN1S:54920 -> sheltex.company:8000 SUCCESS Length: 2, seqnum: 0, connid: 0 98 12:55:30,6248925 MCLauncher.exe 6080 TCP Receive WIN-0UOTFKKVN1S:54920 -> sheltex.company:8000 SUCCESS Length: 2, seqnum: 0, connid: 0 98 12:55:30,6252252 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54920 -> sheltex.company:8000 SUCCESS Length: 2, startime: 40958331, endtime: 40958331, seqnum: 0, connid: 0 98 12:55:30,6418411 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54931 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40958066, endtime: 40958333, seqnum: 0, connid: 0 98 12:55:30,6418599 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54931 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40958067, endtime: 40958333, seqnum: 0, connid: 0 98 12:55:30,6418674 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54931 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40958069, endtime: 40958333, seqnum: 0, connid: 0 98 12:55:30,6418752 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54931 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40958070, endtime: 40958333, seqnum: 0, connid: 0 98 12:55:30,6418810 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54931 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40958072, endtime: 40958333, seqnum: 0, connid: 0 98 12:55:30,6419032 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54931 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40958073, endtime: 40958333, seqnum: 0, connid: 0 98 12:55:30,6419134 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54931 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40958075, endtime: 40958333, seqnum: 0, connid: 0 98 12:55:30,6419253 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54931 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40958077, endtime: 40958333, seqnum: 0, connid: 0 98 12:55:30,6419331 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54931 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40958078, endtime: 40958333, seqnum: 0, connid: 0 98 12:55:30,6419644 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54931 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40958080, endtime: 40958333, seqnum: 0, connid: 0 98 12:55:30,6419705 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54931 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40958081, endtime: 40958333, seqnum: 0, connid: 0 98 12:55:30,6419774 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54931 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40958083, endtime: 40958333, seqnum: 0, connid: 0 98 12:55:30,6419832 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54931 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40958086, endtime: 40958333, seqnum: 0, connid: 0 98 12:55:31,5561668 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54950 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40957800, endtime: 40958424, seqnum: 0, connid: 0 98 12:55:31,5561829 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54950 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40957802, endtime: 40958424, seqnum: 0, connid: 0 98 12:55:31,5561917 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54950 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40957802, endtime: 40958424, seqnum: 0, connid: 0 98 12:55:31,5561981 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54950 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40957803, endtime: 40958424, seqnum: 0, connid: 0 98 12:55:31,5562050 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54950 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40957805, endtime: 40958424, seqnum: 0, connid: 0 98 12:55:31,5562108 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54950 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40957806, endtime: 40958424, seqnum: 0, connid: 0 98 12:55:31,5562175 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54950 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40957808, endtime: 40958424, seqnum: 0, connid: 0 98 12:55:31,5562233 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54950 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40957809, endtime: 40958424, seqnum: 0, connid: 0 98 12:55:31,5584378 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54950 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40957811, endtime: 40958424, seqnum: 0, connid: 0 98 12:55:31,5584478 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54950 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40957812, endtime: 40958424, seqnum: 0, connid: 0 98 12:55:31,5584561 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54950 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40957814, endtime: 40958424, seqnum: 0, connid: 0 98 12:55:31,5584619 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54950 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40957817, endtime: 40958424, seqnum: 0, connid: 0 98 12:55:31,5584686 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54950 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40957817, endtime: 40958424, seqnum: 0, connid: 0 98 12:55:31,8312230 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54948 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40957938, endtime: 40958452, seqnum: 0, connid: 0 98 12:55:31,8312397 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54948 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40957941, endtime: 40958452, seqnum: 0, connid: 0 98 12:55:31,8312480 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54948 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40957942, endtime: 40958452, seqnum: 0, connid: 0 98 12:55:31,8312541 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54948 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40957944, endtime: 40958452, seqnum: 0, connid: 0 98 12:55:31,8312610 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54948 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40957947, endtime: 40958452, seqnum: 0, connid: 0 98 12:55:31,8312665 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54948 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40957949, endtime: 40958452, seqnum: 0, connid: 0 98 12:55:31,8312732 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54948 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40957951, endtime: 40958452, seqnum: 0, connid: 0 98 12:55:31,8312785 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54948 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40957954, endtime: 40958452, seqnum: 0, connid: 0 98 12:55:31,8312851 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54948 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40957957, endtime: 40958452, seqnum: 0, connid: 0 98 12:55:31,8313292 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54948 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40957959, endtime: 40958452, seqnum: 0, connid: 0 98 12:55:31,8313372 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54948 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40957961, endtime: 40958452, seqnum: 0, connid: 0 98 12:55:31,8313427 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54948 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40957963, endtime: 40958452, seqnum: 0, connid: 0 98 12:55:31,8313494 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54948 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40957965, endtime: 40958452, seqnum: 0, connid: 0 98 12:55:31,8650303 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54935 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40958109, endtime: 40958455, seqnum: 0, connid: 0 98 12:55:31,8650552 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54935 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40958110, endtime: 40958455, seqnum: 0, connid: 0 98 12:55:31,8650671 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54935 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40958110, endtime: 40958455, seqnum: 0, connid: 0 98 12:55:31,8650793 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54935 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40958111, endtime: 40958455, seqnum: 0, connid: 0 98 12:55:31,8650887 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54935 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40958112, endtime: 40958455, seqnum: 0, connid: 0 98 12:55:31,8650995 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54935 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40958113, endtime: 40958455, seqnum: 0, connid: 0 98 12:55:31,8651087 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54935 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40958113, endtime: 40958455, seqnum: 0, connid: 0 98 12:55:31,8651200 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54935 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40958116, endtime: 40958455, seqnum: 0, connid: 0 98 12:55:31,8651292 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54935 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40958121, endtime: 40958455, seqnum: 0, connid: 0 98 12:55:31,8652164 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54935 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40958122, endtime: 40958455, seqnum: 0, connid: 0 98 12:55:31,8652239 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54935 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40958126, endtime: 40958455, seqnum: 0, connid: 0 98 12:55:31,8652308 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54935 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40958128, endtime: 40958455, seqnum: 0, connid: 0 98 12:55:31,8653439 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54935 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40958130, endtime: 40958455, seqnum: 0, connid: 0 98 12:55:32,9386778 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54936 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40958330, endtime: 40958562, seqnum: 0, connid: 0 98 12:55:32,9386950 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54936 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40958331, endtime: 40958562, seqnum: 0, connid: 0 98 12:55:32,9387022 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54936 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40958333, endtime: 40958562, seqnum: 0, connid: 0 98 12:55:32,9387097 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54936 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40958334, endtime: 40958562, seqnum: 0, connid: 0 98 12:55:32,9387155 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54936 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40958336, endtime: 40958562, seqnum: 0, connid: 0 98 12:55:32,9387222 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54936 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40958337, endtime: 40958562, seqnum: 0, connid: 0 98 12:55:32,9387277 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54936 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40958339, endtime: 40958562, seqnum: 0, connid: 0 98 12:55:32,9387344 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54936 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40958342, endtime: 40958562, seqnum: 0, connid: 0 98 12:55:32,9387396 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54936 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40958344, endtime: 40958562, seqnum: 0, connid: 0 98 12:55:32,9388064 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54936 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40958347, endtime: 40958562, seqnum: 0, connid: 0 98 12:55:32,9388266 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54936 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40958350, endtime: 40958562, seqnum: 0, connid: 0 98 12:55:32,9388391 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54936 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40958352, endtime: 40958562, seqnum: 0, connid: 0 98 12:55:33,4737595 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54950 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40958424, endtime: 40958616, seqnum: 0, connid: 0 98 12:55:33,4737761 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54950 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40958425, endtime: 40958616, seqnum: 0, connid: 0 98 12:55:33,4737831 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54950 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40958428, endtime: 40958616, seqnum: 0, connid: 0 98 12:55:33,4737903 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54950 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40958430, endtime: 40958616, seqnum: 0, connid: 0 98 12:55:33,4737958 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54950 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40958431, endtime: 40958616, seqnum: 0, connid: 0 98 12:55:33,4738025 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54950 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40958433, endtime: 40958616, seqnum: 0, connid: 0 98 12:55:33,4738077 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54950 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40958434, endtime: 40958616, seqnum: 0, connid: 0 98 12:55:33,4738141 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54950 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40958436, endtime: 40958616, seqnum: 0, connid: 0 98 12:55:33,4738196 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54950 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40958439, endtime: 40958616, seqnum: 0, connid: 0 98 12:55:33,4738476 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54950 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40958442, endtime: 40958616, seqnum: 0, connid: 0 98 12:55:33,4738532 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54950 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40958444, endtime: 40958616, seqnum: 0, connid: 0 98 12:55:33,4738595 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54950 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40958445, endtime: 40958616, seqnum: 0, connid: 0 98 12:55:33,4738651 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54950 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40958448, endtime: 40958616, seqnum: 0, connid: 0 98 12:55:33,4894353 MCLauncher.exe 6080 TCP Disconnect WIN-0UOTFKKVN1S:54925 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 0, seqnum: 0, connid: 0 98 12:55:33,6342415 MCLauncher.exe 6080 TCP Connect WIN-0UOTFKKVN1S:54956 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 0, mss: 1460, sackopt: 0, tsopt: 0, wsopt: 0, rcvwin: 64240, rcvwinscale: 0, sndwinscale: 0, seqnum: 0, connid: 0 98 12:55:33,6346194 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54956 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40958632, endtime: 40958632, seqnum: 0, connid: 0 98 12:55:33,6378130 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54948 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40958452, endtime: 40958632, seqnum: 0, connid: 0 98 12:55:33,6378268 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54948 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40958455, endtime: 40958632, seqnum: 0, connid: 0 98 12:55:33,6378343 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54948 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40958456, endtime: 40958632, seqnum: 0, connid: 0 98 12:55:33,6378418 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54948 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40958459, endtime: 40958632, seqnum: 0, connid: 0 98 12:55:33,6378623 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54948 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40958461, endtime: 40958632, seqnum: 0, connid: 0 98 12:55:33,6378756 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54948 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40958464, endtime: 40958632, seqnum: 0, connid: 0 98 12:55:33,6378859 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54948 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40958466, endtime: 40958632, seqnum: 0, connid: 0 98 12:55:33,6378978 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54948 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40958469, endtime: 40958632, seqnum: 0, connid: 0 98 12:55:33,6379069 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54948 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40958472, endtime: 40958632, seqnum: 0, connid: 0 98 12:55:33,6379415 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54948 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40958475, endtime: 40958632, seqnum: 0, connid: 0 98 12:55:33,6379479 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54948 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40958478, endtime: 40958632, seqnum: 0, connid: 0 98 12:55:33,6379548 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54948 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40958480, endtime: 40958632, seqnum: 0, connid: 0 98 12:55:33,6379609 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54948 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40958481, endtime: 40958632, seqnum: 0, connid: 0 98 12:55:33,6412399 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54956 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40958633, endtime: 40958633, seqnum: 0, connid: 0 98 12:55:33,6581223 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54956 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40958634, endtime: 40958634, seqnum: 0, connid: 0 98 12:55:33,6893268 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54956 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40958638, endtime: 40958638, seqnum: 0, connid: 0 98 12:55:33,7213462 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54956 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40958641, endtime: 40958641, seqnum: 0, connid: 0 98 12:55:33,7368724 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54956 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40958642, endtime: 40958642, seqnum: 0, connid: 0 98 12:55:33,7552041 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54956 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40958644, endtime: 40958644, seqnum: 0, connid: 0 98 12:55:33,7860216 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54956 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40958647, endtime: 40958647, seqnum: 0, connid: 0 98 12:55:33,8207046 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54956 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40958651, endtime: 40958651, seqnum: 0, connid: 0 98 12:55:33,8404460 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54956 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40958651, endtime: 40958653, seqnum: 0, connid: 0 98 12:55:33,8692157 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54956 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40958655, endtime: 40958656, seqnum: 0, connid: 0 98 12:55:33,8774232 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54956 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40958656, endtime: 40958656, seqnum: 0, connid: 0 98 12:55:33,9107628 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54956 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40958659, endtime: 40958660, seqnum: 0, connid: 0 98 12:55:33,9243640 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54956 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40958661, endtime: 40958661, seqnum: 0, connid: 0 98 12:55:33,9551062 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54956 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40958664, endtime: 40958664, seqnum: 0, connid: 0 98 12:55:33,9867155 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54956 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40958667, endtime: 40958667, seqnum: 0, connid: 0 98 12:55:34,0028947 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54956 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40958669, endtime: 40958669, seqnum: 0, connid: 0 98 12:55:34,0346088 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54956 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40958672, endtime: 40958672, seqnum: 0, connid: 0 98 12:55:34,0687163 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54956 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40958675, endtime: 40958675, seqnum: 0, connid: 0 98 12:55:34,0947740 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54956 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40958678, endtime: 40958678, seqnum: 0, connid: 0 98 12:55:34,1098001 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54956 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40958680, endtime: 40958680, seqnum: 0, connid: 0 98 12:55:34,1259924 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54956 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40958681, endtime: 40958681, seqnum: 0, connid: 0 98 12:55:34,1413543 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54956 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40958683, endtime: 40958683, seqnum: 0, connid: 0 98 12:55:34,1594087 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54956 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40958684, endtime: 40958685, seqnum: 0, connid: 0 98 12:55:34,1735117 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54956 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40958686, endtime: 40958686, seqnum: 0, connid: 0 98 12:55:34,4561698 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54956 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40958687, endtime: 40958714, seqnum: 0, connid: 0 98 12:55:34,4561889 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54956 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40958691, endtime: 40958714, seqnum: 0, connid: 0 98 12:55:34,4561972 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54956 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40958692, endtime: 40958714, seqnum: 0, connid: 0 98 12:55:34,4562052 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54956 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40958696, endtime: 40958714, seqnum: 0, connid: 0 98 12:55:34,4562113 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54956 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40958698, endtime: 40958714, seqnum: 0, connid: 0 98 12:55:34,4562188 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54956 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40958700, endtime: 40958714, seqnum: 0, connid: 0 98 12:55:34,4562249 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54956 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40958701, endtime: 40958714, seqnum: 0, connid: 0 98 12:55:34,4562318 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54956 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40958701, endtime: 40958714, seqnum: 0, connid: 0 98 12:55:34,4562379 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54956 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40958703, endtime: 40958714, seqnum: 0, connid: 0 98 12:55:34,4562659 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54956 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40958705, endtime: 40958714, seqnum: 0, connid: 0 98 12:55:34,4562723 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54956 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40958706, endtime: 40958714, seqnum: 0, connid: 0 98 12:55:34,4562795 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54956 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40958708, endtime: 40958714, seqnum: 0, connid: 0 98 12:55:34,4562853 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54956 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40958709, endtime: 40958714, seqnum: 0, connid: 0 98 12:55:35,6930627 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54935 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40958455, endtime: 40958838, seqnum: 0, connid: 0 98 12:55:35,6930818 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54935 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40958456, endtime: 40958838, seqnum: 0, connid: 0 98 12:55:35,6930898 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54935 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40958459, endtime: 40958838, seqnum: 0, connid: 0 98 12:55:35,6930979 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54935 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40958461, endtime: 40958838, seqnum: 0, connid: 0 98 12:55:35,6931040 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54935 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40958464, endtime: 40958838, seqnum: 0, connid: 0 98 12:55:35,6931112 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54935 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40958466, endtime: 40958838, seqnum: 0, connid: 0 98 12:55:35,6931170 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54935 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40958469, endtime: 40958838, seqnum: 0, connid: 0 98 12:55:35,6931239 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54935 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40958472, endtime: 40958838, seqnum: 0, connid: 0 98 12:55:35,6931294 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54935 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40958475, endtime: 40958838, seqnum: 0, connid: 0 98 12:55:35,6932234 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54935 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40958478, endtime: 40958838, seqnum: 0, connid: 0 98 12:55:35,6932311 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54935 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40958480, endtime: 40958838, seqnum: 0, connid: 0 98 12:55:35,6932383 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54935 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40958481, endtime: 40958838, seqnum: 0, connid: 0 98 12:55:35,6932854 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54935 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40958484, endtime: 40958838, seqnum: 0, connid: 0 98 12:55:35,8180972 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54931 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40958333, endtime: 40958850, seqnum: 0, connid: 0 98 12:55:35,8181186 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54931 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40958334, endtime: 40958850, seqnum: 0, connid: 0 98 12:55:35,8181319 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54931 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40958336, endtime: 40958850, seqnum: 0, connid: 0 98 12:55:35,8181396 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54931 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40958337, endtime: 40958850, seqnum: 0, connid: 0 98 12:55:35,8181482 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54931 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40958339, endtime: 40958850, seqnum: 0, connid: 0 98 12:55:35,8181546 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54931 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40958342, endtime: 40958850, seqnum: 0, connid: 0 98 12:55:35,8181629 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54931 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40958344, endtime: 40958850, seqnum: 0, connid: 0 98 12:55:35,8181693 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54931 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40958347, endtime: 40958850, seqnum: 0, connid: 0 98 12:55:35,8181773 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54931 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40958350, endtime: 40958850, seqnum: 0, connid: 0 98 12:55:35,8182089 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54931 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40958352, endtime: 40958850, seqnum: 0, connid: 0 98 12:55:35,8182164 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54931 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40958355, endtime: 40958850, seqnum: 0, connid: 0 98 12:55:35,8182222 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54931 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40958356, endtime: 40958850, seqnum: 0, connid: 0 98 12:55:35,8182294 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54931 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40958359, endtime: 40958850, seqnum: 0, connid: 0 98 12:55:35,8668101 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54950 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40958616, endtime: 40958855, seqnum: 0, connid: 0 98 12:55:35,8668303 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54950 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40958617, endtime: 40958855, seqnum: 0, connid: 0 98 12:55:35,8668386 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54950 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40958619, endtime: 40958855, seqnum: 0, connid: 0 98 12:55:35,8668464 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54950 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40958620, endtime: 40958855, seqnum: 0, connid: 0 98 12:55:35,8668527 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54950 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40958622, endtime: 40958855, seqnum: 0, connid: 0 98 12:55:35,8668599 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54950 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40958623, endtime: 40958855, seqnum: 0, connid: 0 98 12:55:35,8668657 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54950 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40958625, endtime: 40958855, seqnum: 0, connid: 0 98 12:55:35,8668727 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54950 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40958628, endtime: 40958855, seqnum: 0, connid: 0 98 12:55:35,8668921 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54950 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40958630, endtime: 40958855, seqnum: 0, connid: 0 98 12:55:35,8669267 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54950 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40958631, endtime: 40958855, seqnum: 0, connid: 0 98 12:55:35,8669331 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54950 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40958633, endtime: 40958855, seqnum: 0, connid: 0 98 12:55:35,8669400 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54950 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40958634, endtime: 40958855, seqnum: 0, connid: 0 98 12:55:35,8669458 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54950 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40958638, endtime: 40958855, seqnum: 0, connid: 0 98 12:55:36,7757029 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54948 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40958632, endtime: 40958946, seqnum: 0, connid: 0 98 12:55:36,7757210 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54948 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40958634, endtime: 40958946, seqnum: 0, connid: 0 98 12:55:36,7757295 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54948 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40958638, endtime: 40958946, seqnum: 0, connid: 0 98 12:55:36,7757379 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54948 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40958641, endtime: 40958946, seqnum: 0, connid: 0 98 12:55:36,7757445 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54948 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40958642, endtime: 40958946, seqnum: 0, connid: 0 98 12:55:36,7757520 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54948 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40958644, endtime: 40958946, seqnum: 0, connid: 0 98 12:55:36,7757578 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54948 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40958647, endtime: 40958946, seqnum: 0, connid: 0 98 12:55:36,7757647 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54948 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40958651, endtime: 40958946, seqnum: 0, connid: 0 98 12:55:36,7757703 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54948 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40958651, endtime: 40958946, seqnum: 0, connid: 0 98 12:55:36,7758027 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54948 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40958655, endtime: 40958946, seqnum: 0, connid: 0 98 12:55:36,7758088 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54948 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40958656, endtime: 40958946, seqnum: 0, connid: 0 98 12:55:36,7758154 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54948 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40958659, endtime: 40958946, seqnum: 0, connid: 0 98 12:55:36,7758218 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54948 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40958661, endtime: 40958946, seqnum: 0, connid: 0 98 12:55:36,9106755 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54936 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40958355, endtime: 40958960, seqnum: 0, connid: 0 98 12:55:36,9106966 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54936 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40958562, endtime: 40958960, seqnum: 0, connid: 0 98 12:55:36,9107046 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54936 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40958564, endtime: 40958960, seqnum: 0, connid: 0 98 12:55:36,9107126 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54936 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40958566, endtime: 40958960, seqnum: 0, connid: 0 98 12:55:36,9107190 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54936 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40958567, endtime: 40958960, seqnum: 0, connid: 0 98 12:55:36,9107259 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54936 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40958570, endtime: 40958960, seqnum: 0, connid: 0 98 12:55:36,9107318 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54936 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40958572, endtime: 40958960, seqnum: 0, connid: 0 98 12:55:36,9107390 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54936 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40958573, endtime: 40958960, seqnum: 0, connid: 0 98 12:55:36,9107445 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54936 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40958575, endtime: 40958960, seqnum: 0, connid: 0 98 12:55:36,9107717 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54936 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40958578, endtime: 40958960, seqnum: 0, connid: 0 98 12:55:36,9107777 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54936 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40958580, endtime: 40958960, seqnum: 0, connid: 0 98 12:55:36,9107847 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54936 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40958581, endtime: 40958960, seqnum: 0, connid: 0 98 12:55:36,9107905 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54936 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40958584, endtime: 40958960, seqnum: 0, connid: 0 98 12:55:38,2445350 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54935 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40958838, endtime: 40959093, seqnum: 0, connid: 0 98 12:55:38,2445591 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54935 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40958839, endtime: 40959093, seqnum: 0, connid: 0 98 12:55:38,2445718 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54935 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40958841, endtime: 40959093, seqnum: 0, connid: 0 98 12:55:38,2445848 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54935 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40958842, endtime: 40959093, seqnum: 0, connid: 0 98 12:55:38,2445943 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54935 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40958844, endtime: 40959093, seqnum: 0, connid: 0 98 12:55:38,2446020 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54935 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40958845, endtime: 40959093, seqnum: 0, connid: 0 98 12:55:38,2446084 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54935 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40958848, endtime: 40959093, seqnum: 0, connid: 0 98 12:55:38,2446156 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54935 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40958851, endtime: 40959093, seqnum: 0, connid: 0 98 12:55:38,2446222 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54935 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40958853, endtime: 40959093, seqnum: 0, connid: 0 98 12:55:38,2446563 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54935 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40958855, endtime: 40959093, seqnum: 0, connid: 0 98 12:55:38,2446641 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54935 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40958858, endtime: 40959093, seqnum: 0, connid: 0 98 12:55:38,2446713 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54935 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40958859, endtime: 40959093, seqnum: 0, connid: 0 98 12:55:38,2446774 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54935 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40958861, endtime: 40959093, seqnum: 0, connid: 0 98 12:55:38,4541229 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54931 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40958850, endtime: 40959114, seqnum: 0, connid: 0 98 12:55:38,4541378 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54931 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40958851, endtime: 40959114, seqnum: 0, connid: 0 98 12:55:38,4541448 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54931 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40958853, endtime: 40959114, seqnum: 0, connid: 0 98 12:55:38,4541517 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54931 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40958855, endtime: 40959114, seqnum: 0, connid: 0 98 12:55:38,4541570 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54931 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40958858, endtime: 40959114, seqnum: 0, connid: 0 98 12:55:38,4541636 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54931 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40958859, endtime: 40959114, seqnum: 0, connid: 0 98 12:55:38,4541686 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54931 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40958861, endtime: 40959114, seqnum: 0, connid: 0 98 12:55:38,4541750 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54931 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40958863, endtime: 40959114, seqnum: 0, connid: 0 98 12:55:38,4541802 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54931 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40958864, endtime: 40959114, seqnum: 0, connid: 0 98 12:55:38,4542079 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54931 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40958866, endtime: 40959114, seqnum: 0, connid: 0 98 12:55:38,4542135 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54931 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40958867, endtime: 40959114, seqnum: 0, connid: 0 98 12:55:38,4542196 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54931 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40958869, endtime: 40959114, seqnum: 0, connid: 0 98 12:55:38,4542248 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54931 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40958870, endtime: 40959114, seqnum: 0, connid: 0 98 12:55:39,7665199 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54950 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40958855, endtime: 40959245, seqnum: 0, connid: 0 98 12:55:39,7665363 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54950 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40958858, endtime: 40959245, seqnum: 0, connid: 0 98 12:55:39,7665432 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54950 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40958859, endtime: 40959245, seqnum: 0, connid: 0 98 12:55:39,7665501 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54950 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40958861, endtime: 40959245, seqnum: 0, connid: 0 98 12:55:39,7665554 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54950 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40958863, endtime: 40959245, seqnum: 0, connid: 0 98 12:55:39,7665618 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54950 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40958864, endtime: 40959245, seqnum: 0, connid: 0 98 12:55:39,7665670 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54950 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40958866, endtime: 40959245, seqnum: 0, connid: 0 98 12:55:39,7665734 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54950 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40958867, endtime: 40959245, seqnum: 0, connid: 0 98 12:55:39,7665784 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54950 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40958869, endtime: 40959245, seqnum: 0, connid: 0 98 12:55:39,7666518 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54950 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40958870, endtime: 40959245, seqnum: 0, connid: 0 98 12:55:39,7666701 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54950 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40958872, endtime: 40959245, seqnum: 0, connid: 0 98 12:55:39,7667039 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54950 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40958873, endtime: 40959245, seqnum: 0, connid: 0 98 12:55:39,7667103 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54950 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40958875, endtime: 40959245, seqnum: 0, connid: 0 98 12:55:39,7667205 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54936 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40958960, endtime: 40959245, seqnum: 0, connid: 0 98 12:55:39,7667274 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54936 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40958961, endtime: 40959245, seqnum: 0, connid: 0 98 12:55:39,7667330 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54936 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40958964, endtime: 40959245, seqnum: 0, connid: 0 98 12:55:39,7667399 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54936 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40958966, endtime: 40959245, seqnum: 0, connid: 0 98 12:55:39,7667455 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54936 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40958969, endtime: 40959245, seqnum: 0, connid: 0 98 12:55:39,7667524 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54936 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40958970, endtime: 40959245, seqnum: 0, connid: 0 98 12:55:39,7668083 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54936 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40958972, endtime: 40959245, seqnum: 0, connid: 0 98 12:55:39,7668155 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54936 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40958975, endtime: 40959245, seqnum: 0, connid: 0 98 12:55:39,7668208 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54936 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40958977, endtime: 40959245, seqnum: 0, connid: 0 98 12:55:39,7668269 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54936 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40958980, endtime: 40959245, seqnum: 0, connid: 0 98 12:55:39,7668319 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54936 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40958981, endtime: 40959245, seqnum: 0, connid: 0 98 12:55:39,7668380 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54936 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40958983, endtime: 40959245, seqnum: 0, connid: 0 98 12:55:39,7668433 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54936 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40958985, endtime: 40959245, seqnum: 0, connid: 0 98 12:55:39,8502244 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54936 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40959245, endtime: 40959254, seqnum: 0, connid: 0 98 12:55:40,2447874 MCLauncher.exe 6080 TCP Disconnect WIN-0UOTFKKVN1S:54948 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 0, seqnum: 0, connid: 0 98 12:55:40,3300882 MCLauncher.exe 6080 TCP Connect WIN-0UOTFKKVN1S:54959 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 0, mss: 1460, sackopt: 0, tsopt: 0, wsopt: 0, rcvwin: 64240, rcvwinscale: 0, sndwinscale: 0, seqnum: 0, connid: 0 98 12:55:40,3305542 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54959 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40959302, endtime: 40959302, seqnum: 0, connid: 0 98 12:55:40,3456624 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54959 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40959303, endtime: 40959303, seqnum: 0, connid: 0 98 12:55:40,3762020 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54959 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40959306, endtime: 40959306, seqnum: 0, connid: 0 98 12:55:40,3929101 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54959 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40959308, endtime: 40959308, seqnum: 0, connid: 0 98 12:55:40,4075129 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54959 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40959309, endtime: 40959309, seqnum: 0, connid: 0 98 12:55:40,4227660 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54959 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40959311, endtime: 40959311, seqnum: 0, connid: 0 98 12:55:40,4388197 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54959 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40959312, endtime: 40959312, seqnum: 0, connid: 0 98 12:55:40,4544512 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54959 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40959314, endtime: 40959314, seqnum: 0, connid: 0 98 12:55:40,4700772 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54959 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40959316, endtime: 40959316, seqnum: 0, connid: 0 98 12:55:40,4852554 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54959 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40959317, endtime: 40959317, seqnum: 0, connid: 0 98 12:55:40,5022339 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54959 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40959319, endtime: 40959319, seqnum: 0, connid: 0 98 12:55:40,5345500 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54959 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40959322, endtime: 40959322, seqnum: 0, connid: 0 98 12:55:40,5476432 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54959 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40959323, endtime: 40959323, seqnum: 0, connid: 0 98 12:55:40,5634827 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54959 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40959325, endtime: 40959325, seqnum: 0, connid: 0 98 12:55:40,5794528 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54959 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40959327, endtime: 40959327, seqnum: 0, connid: 0 98 12:55:40,6074856 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54959 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40959329, endtime: 40959329, seqnum: 0, connid: 0 98 12:55:40,6266169 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54959 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40959331, endtime: 40959331, seqnum: 0, connid: 0 98 12:55:40,6595469 MCLauncher.exe 6080 TCP TCPCopy WIN-0UOTFKKVN1S:54920 -> sheltex.company:8000 SUCCESS Length: 2, seqnum: 0, connid: 0 98 12:55:40,6595586 MCLauncher.exe 6080 TCP Receive WIN-0UOTFKKVN1S:54920 -> sheltex.company:8000 SUCCESS Length: 2, seqnum: 0, connid: 0 98 12:55:40,6629148 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54920 -> sheltex.company:8000 SUCCESS Length: 2, startime: 40959335, endtime: 40959335, seqnum: 0, connid: 0 98 12:55:40,6630126 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54959 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40959335, endtime: 40959335, seqnum: 0, connid: 0 98 12:55:40,6968739 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54959 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40959338, endtime: 40959338, seqnum: 0, connid: 0 98 12:55:40,7205954 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54959 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40959341, endtime: 40959341, seqnum: 0, connid: 0 98 12:55:40,7388983 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54959 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40959342, endtime: 40959342, seqnum: 0, connid: 0 98 12:55:40,7518958 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54959 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40959344, endtime: 40959344, seqnum: 0, connid: 0 98 12:55:40,7826922 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54959 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40959347, endtime: 40959347, seqnum: 0, connid: 0 98 12:55:40,8004765 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54959 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40959348, endtime: 40959349, seqnum: 0, connid: 0 98 12:55:40,8306013 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54959 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40959351, endtime: 40959352, seqnum: 0, connid: 0 98 12:55:40,8445744 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54959 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40959353, endtime: 40959353, seqnum: 0, connid: 0 98 12:55:41,0678536 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54935 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40959093, endtime: 40959375, seqnum: 0, connid: 0 98 12:55:41,0678727 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54935 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40959094, endtime: 40959375, seqnum: 0, connid: 0 98 12:55:41,0678813 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54935 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40959095, endtime: 40959375, seqnum: 0, connid: 0 98 12:55:41,0678890 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54935 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40959097, endtime: 40959375, seqnum: 0, connid: 0 98 12:55:41,0678954 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54935 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40959098, endtime: 40959375, seqnum: 0, connid: 0 98 12:55:41,0679026 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54935 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40959100, endtime: 40959375, seqnum: 0, connid: 0 98 12:55:41,0679087 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54935 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40959100, endtime: 40959375, seqnum: 0, connid: 0 98 12:55:41,0679159 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54935 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40959103, endtime: 40959375, seqnum: 0, connid: 0 98 12:55:41,0679217 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54935 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40959107, endtime: 40959375, seqnum: 0, connid: 0 98 12:55:41,0679511 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54935 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40959108, endtime: 40959375, seqnum: 0, connid: 0 98 12:55:41,0679575 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54935 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40959110, endtime: 40959375, seqnum: 0, connid: 0 98 12:55:41,0679644 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54935 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40959111, endtime: 40959375, seqnum: 0, connid: 0 98 12:55:41,0687022 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54935 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40959112, endtime: 40959375, seqnum: 0, connid: 0 98 12:55:41,3010328 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54931 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40959114, endtime: 40959399, seqnum: 0, connid: 0 98 12:55:41,3010491 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54931 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40959116, endtime: 40959399, seqnum: 0, connid: 0 98 12:55:41,3010563 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54931 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40959117, endtime: 40959399, seqnum: 0, connid: 0 98 12:55:41,3010638 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54931 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40959119, endtime: 40959399, seqnum: 0, connid: 0 98 12:55:41,3010694 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54931 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40959122, endtime: 40959399, seqnum: 0, connid: 0 98 12:55:41,3010760 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54931 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40959123, endtime: 40959399, seqnum: 0, connid: 0 98 12:55:41,3010813 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54931 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40959125, endtime: 40959399, seqnum: 0, connid: 0 98 12:55:41,3010879 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54931 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40959127, endtime: 40959399, seqnum: 0, connid: 0 98 12:55:41,3010938 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54931 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40959130, endtime: 40959399, seqnum: 0, connid: 0 98 12:55:41,3011215 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54931 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40959131, endtime: 40959399, seqnum: 0, connid: 0 98 12:55:41,3011273 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54931 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40959133, endtime: 40959399, seqnum: 0, connid: 0 98 12:55:41,3011336 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54931 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40959134, endtime: 40959399, seqnum: 0, connid: 0 98 12:55:41,3011389 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54931 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40959136, endtime: 40959399, seqnum: 0, connid: 0 98 12:55:41,4054599 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54959 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40959354, endtime: 40959409, seqnum: 0, connid: 0 98 12:55:41,4054766 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54959 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40959356, endtime: 40959409, seqnum: 0, connid: 0 98 12:55:41,4054843 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54959 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40959358, endtime: 40959409, seqnum: 0, connid: 0 98 12:55:41,4054918 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54959 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40959359, endtime: 40959409, seqnum: 0, connid: 0 98 12:55:41,4054979 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54959 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40959363, endtime: 40959409, seqnum: 0, connid: 0 98 12:55:41,4055051 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54959 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40959366, endtime: 40959409, seqnum: 0, connid: 0 98 12:55:41,4055109 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54959 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40959367, endtime: 40959409, seqnum: 0, connid: 0 98 12:55:41,4055178 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54959 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40959369, endtime: 40959409, seqnum: 0, connid: 0 98 12:55:41,4055237 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54959 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40959370, endtime: 40959409, seqnum: 0, connid: 0 98 12:55:41,4055921 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54959 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40959372, endtime: 40959409, seqnum: 0, connid: 0 98 12:55:41,4055998 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54959 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40959376, endtime: 40959409, seqnum: 0, connid: 0 98 12:55:41,4056068 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54959 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40959376, endtime: 40959409, seqnum: 0, connid: 0 98 12:55:41,6329950 MCLauncher.exe 6080 TCP Disconnect WIN-0UOTFKKVN1S:54936 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 0, seqnum: 0, connid: 0 98 12:55:41,7253885 MCLauncher.exe 6080 TCP Connect WIN-0UOTFKKVN1S:54961 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 0, mss: 1460, sackopt: 0, tsopt: 0, wsopt: 0, rcvwin: 64240, rcvwinscale: 0, sndwinscale: 0, seqnum: 0, connid: 0 98 12:55:41,7257608 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54961 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40959441, endtime: 40959441, seqnum: 0, connid: 0 98 12:55:41,7510613 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54961 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40959444, endtime: 40959444, seqnum: 0, connid: 0 98 12:55:41,7666105 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54961 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40959445, endtime: 40959445, seqnum: 0, connid: 0 98 12:55:41,7821863 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54961 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40959447, endtime: 40959447, seqnum: 0, connid: 0 98 12:55:41,7978043 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54961 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40959448, endtime: 40959448, seqnum: 0, connid: 0 98 12:55:41,8132227 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54961 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40959450, endtime: 40959450, seqnum: 0, connid: 0 98 12:55:41,8419216 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54961 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40959452, endtime: 40959453, seqnum: 0, connid: 0 98 12:55:41,8849780 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54961 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40959457, endtime: 40959457, seqnum: 0, connid: 0 98 12:55:41,8959453 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54961 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40959458, endtime: 40959458, seqnum: 0, connid: 0 98 12:55:41,9193249 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54961 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40959459, endtime: 40959461, seqnum: 0, connid: 0 98 12:55:41,9391131 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54961 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40959462, endtime: 40959463, seqnum: 0, connid: 0 98 12:55:41,9546903 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54961 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40959464, endtime: 40959464, seqnum: 0, connid: 0 98 12:55:41,9701004 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54961 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40959466, endtime: 40959466, seqnum: 0, connid: 0 98 12:55:41,9858760 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54961 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40959467, endtime: 40959467, seqnum: 0, connid: 0 98 12:55:42,0013853 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54961 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40959469, endtime: 40959469, seqnum: 0, connid: 0 98 12:55:42,0171454 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54961 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40959470, endtime: 40959470, seqnum: 0, connid: 0 98 12:55:42,0324367 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54961 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40959472, endtime: 40959472, seqnum: 0, connid: 0 98 12:55:42,0480964 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54961 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40959473, endtime: 40959473, seqnum: 0, connid: 0 98 12:55:42,0726904 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54961 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40959475, endtime: 40959476, seqnum: 0, connid: 0 98 12:55:42,0959712 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54961 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40959478, endtime: 40959478, seqnum: 0, connid: 0 98 12:55:42,1121944 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54961 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40959480, endtime: 40959480, seqnum: 0, connid: 0 98 12:55:42,1421680 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54961 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40959483, endtime: 40959483, seqnum: 0, connid: 0 98 12:55:42,1588518 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54961 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40959484, endtime: 40959484, seqnum: 0, connid: 0 98 12:55:42,1758195 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54961 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40959486, endtime: 40959486, seqnum: 0, connid: 0 98 12:55:42,1975632 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54961 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40959488, endtime: 40959488, seqnum: 0, connid: 0 98 12:55:42,2048996 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54961 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40959489, endtime: 40959489, seqnum: 0, connid: 0 98 12:55:42,2213504 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54961 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40959491, endtime: 40959491, seqnum: 0, connid: 0 98 12:55:42,2376834 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54961 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40959492, endtime: 40959492, seqnum: 0, connid: 0 98 12:55:42,2669965 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54961 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40959495, endtime: 40959495, seqnum: 0, connid: 0 98 12:55:42,2821052 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54961 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40959497, endtime: 40959497, seqnum: 0, connid: 0 98 12:55:42,2989865 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54961 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40959498, endtime: 40959499, seqnum: 0, connid: 0 98 12:55:42,3046282 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54961 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40959499, endtime: 40959499, seqnum: 0, connid: 0 98 12:55:42,3103984 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54961 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40959500, endtime: 40959500, seqnum: 0, connid: 0 98 12:55:42,3242994 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54961 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40959501, endtime: 40959501, seqnum: 0, connid: 0 98 12:55:42,3449972 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54961 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40959503, endtime: 40959503, seqnum: 0, connid: 0 98 12:55:42,3602206 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54961 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40959505, endtime: 40959505, seqnum: 0, connid: 0 98 12:55:43,4147388 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54950 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40959245, endtime: 40959610, seqnum: 0, connid: 0 98 12:55:43,4147565 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54950 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40959247, endtime: 40959610, seqnum: 0, connid: 0 98 12:55:43,4147646 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54950 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40959248, endtime: 40959610, seqnum: 0, connid: 0 98 12:55:43,4147723 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54950 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40959252, endtime: 40959610, seqnum: 0, connid: 0 98 12:55:43,4147784 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54950 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40959255, endtime: 40959610, seqnum: 0, connid: 0 98 12:55:43,4147856 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54950 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40959258, endtime: 40959610, seqnum: 0, connid: 0 98 12:55:43,4147912 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54950 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40959261, endtime: 40959610, seqnum: 0, connid: 0 98 12:55:43,4147981 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54950 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40959264, endtime: 40959610, seqnum: 0, connid: 0 98 12:55:43,4148039 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54950 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40959266, endtime: 40959610, seqnum: 0, connid: 0 98 12:55:43,4148325 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54950 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40959267, endtime: 40959610, seqnum: 0, connid: 0 98 12:55:43,4148386 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54950 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40959269, endtime: 40959610, seqnum: 0, connid: 0 98 12:55:43,4148455 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54950 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40959270, endtime: 40959610, seqnum: 0, connid: 0 98 12:55:43,4148513 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54950 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40959272, endtime: 40959610, seqnum: 0, connid: 0 98 12:55:43,5171806 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54935 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40959375, endtime: 40959620, seqnum: 0, connid: 0 98 12:55:43,5171977 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54935 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40959376, endtime: 40959620, seqnum: 0, connid: 0 98 12:55:43,5172061 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54935 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40959378, endtime: 40959620, seqnum: 0, connid: 0 98 12:55:43,5172146 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54935 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40959380, endtime: 40959620, seqnum: 0, connid: 0 98 12:55:43,5172210 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54935 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40959381, endtime: 40959620, seqnum: 0, connid: 0 98 12:55:43,5172282 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54935 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40959383, endtime: 40959620, seqnum: 0, connid: 0 98 12:55:43,5172346 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54935 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40959384, endtime: 40959620, seqnum: 0, connid: 0 98 12:55:43,5172418 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54935 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40959386, endtime: 40959620, seqnum: 0, connid: 0 98 12:55:43,5172479 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54935 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40959388, endtime: 40959620, seqnum: 0, connid: 0 98 12:55:43,5172759 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54935 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40959392, endtime: 40959620, seqnum: 0, connid: 0 98 12:55:43,5172825 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54935 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40959394, endtime: 40959620, seqnum: 0, connid: 0 98 12:55:43,5172897 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54935 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40959397, endtime: 40959620, seqnum: 0, connid: 0 98 12:55:43,5172958 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54935 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40959399, endtime: 40959620, seqnum: 0, connid: 0 98 12:55:44,7502833 MCLauncher.exe 6080 TCP Connect WIN-0UOTFKKVN1S:54963 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 0, mss: 1460, sackopt: 0, tsopt: 0, wsopt: 0, rcvwin: 64240, rcvwinscale: 0, sndwinscale: 0, seqnum: 0, connid: 0 98 12:55:44,7507438 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54963 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40959744, endtime: 40959744, seqnum: 0, connid: 0 98 12:55:44,7679953 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54963 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40959745, endtime: 40959745, seqnum: 0, connid: 0 98 12:55:44,7996628 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54963 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40959748, endtime: 40959749, seqnum: 0, connid: 0 98 12:55:44,8127980 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54963 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40959750, endtime: 40959750, seqnum: 0, connid: 0 98 12:55:44,8296607 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54963 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40959751, endtime: 40959752, seqnum: 0, connid: 0 98 12:55:44,8445647 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54963 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40959753, endtime: 40959753, seqnum: 0, connid: 0 98 12:55:44,8602355 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54963 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40959755, endtime: 40959755, seqnum: 0, connid: 0 98 12:55:44,8768481 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54963 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40959756, endtime: 40959756, seqnum: 0, connid: 0 98 12:55:44,9103979 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54963 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40959759, endtime: 40959760, seqnum: 0, connid: 0 98 12:55:44,9420202 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54963 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40959762, endtime: 40959763, seqnum: 0, connid: 0 98 12:55:44,9541545 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54963 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40959764, endtime: 40959764, seqnum: 0, connid: 0 98 12:55:44,9717880 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54963 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40959766, endtime: 40959766, seqnum: 0, connid: 0 98 12:55:45,0079854 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54963 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40959769, endtime: 40959769, seqnum: 0, connid: 0 98 12:55:45,0323150 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54963 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40959772, endtime: 40959772, seqnum: 0, connid: 0 98 12:55:45,0479945 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54963 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40959773, endtime: 40959773, seqnum: 0, connid: 0 98 12:55:45,0657335 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54963 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40959775, endtime: 40959775, seqnum: 0, connid: 0 98 12:55:45,0863645 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54963 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40959776, endtime: 40959777, seqnum: 0, connid: 0 98 12:55:45,0950045 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54963 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40959778, endtime: 40959778, seqnum: 0, connid: 0 98 12:55:45,1214811 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54963 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40959780, endtime: 40959781, seqnum: 0, connid: 0 98 12:55:45,1416217 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54963 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40959783, endtime: 40959783, seqnum: 0, connid: 0 98 12:55:45,1627137 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54963 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40959785, endtime: 40959785, seqnum: 0, connid: 0 98 12:55:45,2001478 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54963 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40959787, endtime: 40959789, seqnum: 0, connid: 0 98 12:55:45,2203438 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54963 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40959791, endtime: 40959791, seqnum: 0, connid: 0 98 12:55:45,2369140 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54963 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40959792, endtime: 40959792, seqnum: 0, connid: 0 98 12:55:45,2520623 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54963 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40959794, endtime: 40959794, seqnum: 0, connid: 0 98 12:55:45,2689334 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54963 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40959795, endtime: 40959796, seqnum: 0, connid: 0 98 12:55:45,2825690 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54963 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40959797, endtime: 40959797, seqnum: 0, connid: 0 98 12:55:45,2993513 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54963 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40959798, endtime: 40959799, seqnum: 0, connid: 0 98 12:55:45,3024716 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54961 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40959506, endtime: 40959799, seqnum: 0, connid: 0 98 12:55:45,3025641 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54961 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40959508, endtime: 40959799, seqnum: 0, connid: 0 98 12:55:45,3156140 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54963 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40959800, endtime: 40959800, seqnum: 0, connid: 0 98 12:55:45,3450659 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54963 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40959803, endtime: 40959803, seqnum: 0, connid: 0 98 12:55:45,3605142 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54963 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40959805, endtime: 40959805, seqnum: 0, connid: 0 98 12:55:45,3759047 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54963 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40959806, endtime: 40959806, seqnum: 0, connid: 0 98 12:55:45,3915575 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54963 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40959808, endtime: 40959808, seqnum: 0, connid: 0 98 12:55:45,4073467 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54963 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40959809, endtime: 40959809, seqnum: 0, connid: 0 98 12:55:45,4324987 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54963 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40959811, endtime: 40959812, seqnum: 0, connid: 0 98 12:55:46,1935993 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54959 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40959378, endtime: 40959888, seqnum: 0, connid: 0 98 12:55:46,1936184 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54959 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40959409, endtime: 40959888, seqnum: 0, connid: 0 98 12:55:46,1936256 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54959 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40959411, endtime: 40959888, seqnum: 0, connid: 0 98 12:55:46,1936329 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54959 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40959413, endtime: 40959888, seqnum: 0, connid: 0 98 12:55:46,1936384 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54959 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40959416, endtime: 40959888, seqnum: 0, connid: 0 98 12:55:46,1936450 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54959 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40959420, endtime: 40959888, seqnum: 0, connid: 0 98 12:55:46,1936503 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54959 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40959420, endtime: 40959888, seqnum: 0, connid: 0 98 12:55:46,1936572 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54959 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40959422, endtime: 40959888, seqnum: 0, connid: 0 98 12:55:46,1936625 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54959 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40959423, endtime: 40959888, seqnum: 0, connid: 0 98 12:55:46,1936955 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54959 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40959425, endtime: 40959888, seqnum: 0, connid: 0 98 12:55:46,1937013 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54959 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40959427, endtime: 40959888, seqnum: 0, connid: 0 98 12:55:46,1937077 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54959 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40959430, endtime: 40959888, seqnum: 0, connid: 0 98 12:55:46,1937132 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54959 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40959431, endtime: 40959888, seqnum: 0, connid: 0 98 12:55:46,1937271 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54956 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40958714, endtime: 40959888, seqnum: 0, connid: 0 98 12:55:46,1937331 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54956 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40958716, endtime: 40959888, seqnum: 0, connid: 0 98 12:55:46,1937398 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54956 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40958717, endtime: 40959888, seqnum: 0, connid: 0 98 12:55:46,1937453 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54956 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40958719, endtime: 40959888, seqnum: 0, connid: 0 98 12:55:46,1937523 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54956 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40958720, endtime: 40959888, seqnum: 0, connid: 0 98 12:55:46,1937578 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54956 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40958722, endtime: 40959888, seqnum: 0, connid: 0 98 12:55:46,1938179 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54956 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40958723, endtime: 40959888, seqnum: 0, connid: 0 98 12:55:46,1938249 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54956 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40958725, endtime: 40959888, seqnum: 0, connid: 0 98 12:55:46,1938315 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54956 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40958726, endtime: 40959888, seqnum: 0, connid: 0 98 12:55:46,1938368 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54956 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40958728, endtime: 40959888, seqnum: 0, connid: 0 98 12:55:46,1938434 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54956 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40958730, endtime: 40959888, seqnum: 0, connid: 0 98 12:55:46,1938490 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54956 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40958731, endtime: 40959888, seqnum: 0, connid: 0 98 12:55:46,1938556 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54956 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40958733, endtime: 40959888, seqnum: 0, connid: 0 98 12:55:46,4068405 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54935 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40959620, endtime: 40959909, seqnum: 0, connid: 0 98 12:55:46,4068577 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54935 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40959622, endtime: 40959909, seqnum: 0, connid: 0 98 12:55:46,4068649 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54935 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40959623, endtime: 40959909, seqnum: 0, connid: 0 98 12:55:46,4068724 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54935 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40959625, endtime: 40959909, seqnum: 0, connid: 0 98 12:55:46,4068779 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54935 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40959627, endtime: 40959909, seqnum: 0, connid: 0 98 12:55:46,4068846 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54935 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40959629, endtime: 40959909, seqnum: 0, connid: 0 98 12:55:46,4068904 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54935 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40959631, endtime: 40959909, seqnum: 0, connid: 0 98 12:55:46,4068973 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54935 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40959635, endtime: 40959909, seqnum: 0, connid: 0 98 12:55:46,4069028 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54935 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40959638, endtime: 40959909, seqnum: 0, connid: 0 98 12:55:46,4069339 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54935 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40959639, endtime: 40959909, seqnum: 0, connid: 0 98 12:55:46,4069397 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54935 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40959641, endtime: 40959909, seqnum: 0, connid: 0 98 12:55:46,4069466 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54935 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40959642, endtime: 40959909, seqnum: 0, connid: 0 98 12:55:46,4069522 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54935 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40959644, endtime: 40959909, seqnum: 0, connid: 0 98 12:55:46,5089545 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54931 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40959399, endtime: 40959920, seqnum: 0, connid: 0 98 12:55:46,5089728 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54931 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40959400, endtime: 40959920, seqnum: 0, connid: 0 98 12:55:46,5089825 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54931 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40959401, endtime: 40959920, seqnum: 0, connid: 0 98 12:55:46,5089894 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54931 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40959403, endtime: 40959920, seqnum: 0, connid: 0 98 12:55:46,5089969 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54931 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40959405, endtime: 40959920, seqnum: 0, connid: 0 98 12:55:46,5090030 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54931 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40959406, endtime: 40959920, seqnum: 0, connid: 0 98 12:55:46,5090102 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54931 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40959409, endtime: 40959920, seqnum: 0, connid: 0 98 12:55:46,5090163 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54931 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40959411, endtime: 40959920, seqnum: 0, connid: 0 98 12:55:46,5090393 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54931 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40959413, endtime: 40959920, seqnum: 0, connid: 0 98 12:55:46,5090775 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54931 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40959416, endtime: 40959920, seqnum: 0, connid: 0 98 12:55:46,5090853 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54931 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40959420, endtime: 40959920, seqnum: 0, connid: 0 98 12:55:46,5090916 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54931 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40959420, endtime: 40959920, seqnum: 0, connid: 0 98 12:55:46,5090988 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54931 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40959422, endtime: 40959920, seqnum: 0, connid: 0 98 12:55:46,9278056 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54950 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40959610, endtime: 40959961, seqnum: 0, connid: 0 98 12:55:46,9278220 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54950 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40959611, endtime: 40959961, seqnum: 0, connid: 0 98 12:55:46,9278294 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54950 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40959612, endtime: 40959961, seqnum: 0, connid: 0 98 12:55:46,9278369 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54950 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40959614, endtime: 40959961, seqnum: 0, connid: 0 98 12:55:46,9278427 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54950 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40959616, endtime: 40959961, seqnum: 0, connid: 0 98 12:55:46,9278491 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54950 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40959620, endtime: 40959961, seqnum: 0, connid: 0 98 12:55:46,9278549 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54950 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40959620, endtime: 40959961, seqnum: 0, connid: 0 98 12:55:46,9278613 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54950 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40959622, endtime: 40959961, seqnum: 0, connid: 0 98 12:55:46,9278668 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54950 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40959623, endtime: 40959961, seqnum: 0, connid: 0 98 12:55:46,9279419 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54950 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40959625, endtime: 40959961, seqnum: 0, connid: 0 98 12:55:46,9279488 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54950 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40959627, endtime: 40959961, seqnum: 0, connid: 0 98 12:55:46,9279555 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54950 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40959629, endtime: 40959961, seqnum: 0, connid: 0 98 12:55:46,9280852 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54950 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40959631, endtime: 40959961, seqnum: 0, connid: 0 98 12:55:47,4982748 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54961 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40959510, endtime: 40960018, seqnum: 0, connid: 0 98 12:55:47,4982942 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54961 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40959513, endtime: 40960018, seqnum: 0, connid: 0 98 12:55:47,4983017 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54961 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40959516, endtime: 40960018, seqnum: 0, connid: 0 98 12:55:47,4983097 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54961 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40959517, endtime: 40960018, seqnum: 0, connid: 0 98 12:55:47,4983155 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54961 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40959519, endtime: 40960018, seqnum: 0, connid: 0 98 12:55:47,4983225 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54961 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40959520, endtime: 40960018, seqnum: 0, connid: 0 98 12:55:47,4983283 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54961 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40959522, endtime: 40960018, seqnum: 0, connid: 0 98 12:55:47,4983352 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54961 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40959525, endtime: 40960018, seqnum: 0, connid: 0 98 12:55:47,4983405 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54961 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40959528, endtime: 40960018, seqnum: 0, connid: 0 98 12:55:47,4983707 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54961 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40959530, endtime: 40960018, seqnum: 0, connid: 0 98 12:55:47,4983768 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54961 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40959531, endtime: 40960018, seqnum: 0, connid: 0 98 12:55:47,4983837 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54961 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40959799, endtime: 40960018, seqnum: 0, connid: 0 98 12:55:47,4983892 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54961 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40959800, endtime: 40960018, seqnum: 0, connid: 0 98 12:55:47,6147780 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54963 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40959812, endtime: 40960030, seqnum: 0, connid: 0 98 12:55:47,6147957 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54963 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40959814, endtime: 40960030, seqnum: 0, connid: 0 98 12:55:47,6148032 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54963 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40959816, endtime: 40960030, seqnum: 0, connid: 0 98 12:55:47,6148110 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54963 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40959817, endtime: 40960030, seqnum: 0, connid: 0 98 12:55:48,2298108 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54935 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40959909, endtime: 40960092, seqnum: 0, connid: 0 98 12:55:48,2298299 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54935 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40959911, endtime: 40960092, seqnum: 0, connid: 0 98 12:55:48,2298377 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54935 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40959912, endtime: 40960092, seqnum: 0, connid: 0 98 12:55:48,2298455 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54935 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40959914, endtime: 40960092, seqnum: 0, connid: 0 98 12:55:48,2298513 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54935 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40959916, endtime: 40960092, seqnum: 0, connid: 0 98 12:55:48,2298582 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54935 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40959919, endtime: 40960092, seqnum: 0, connid: 0 98 12:55:48,2298637 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54935 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40959920, endtime: 40960092, seqnum: 0, connid: 0 98 12:55:48,2298704 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54935 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40959922, endtime: 40960092, seqnum: 0, connid: 0 98 12:55:48,2298759 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54935 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40959925, endtime: 40960092, seqnum: 0, connid: 0 98 12:55:48,2299070 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54935 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40959926, endtime: 40960092, seqnum: 0, connid: 0 98 12:55:48,2299131 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54935 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40959928, endtime: 40960092, seqnum: 0, connid: 0 98 12:55:48,2299194 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54935 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40959930, endtime: 40960092, seqnum: 0, connid: 0 98 12:55:48,2299422 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54935 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40959931, endtime: 40960092, seqnum: 0, connid: 0 98 12:55:49,2884256 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54959 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40959888, endtime: 40960197, seqnum: 0, connid: 0 98 12:55:49,2884445 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54959 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40959889, endtime: 40960197, seqnum: 0, connid: 0 98 12:55:49,2884520 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54959 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40959891, endtime: 40960197, seqnum: 0, connid: 0 98 12:55:49,2884594 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54959 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40959892, endtime: 40960197, seqnum: 0, connid: 0 98 12:55:49,2884653 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54959 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40959894, endtime: 40960197, seqnum: 0, connid: 0 98 12:55:49,2884722 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54959 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40959895, endtime: 40960197, seqnum: 0, connid: 0 98 12:55:49,2884777 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54959 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40959897, endtime: 40960197, seqnum: 0, connid: 0 98 12:55:49,2884844 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54959 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40959898, endtime: 40960197, seqnum: 0, connid: 0 98 12:55:49,2884896 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54959 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40959900, endtime: 40960197, seqnum: 0, connid: 0 98 12:55:49,2885196 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54959 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40959901, endtime: 40960197, seqnum: 0, connid: 0 98 12:55:49,2885254 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54959 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40959901, endtime: 40960197, seqnum: 0, connid: 0 98 12:55:49,2885320 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54959 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40959903, endtime: 40960197, seqnum: 0, connid: 0 98 12:55:49,2885376 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54959 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40959905, endtime: 40960197, seqnum: 0, connid: 0 98 12:55:49,4607925 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54931 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40959920, endtime: 40960215, seqnum: 0, connid: 0 98 12:55:49,4608260 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54931 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40959920, endtime: 40960215, seqnum: 0, connid: 0 98 12:55:49,4608401 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54931 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40959922, endtime: 40960215, seqnum: 0, connid: 0 98 12:55:49,4608504 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54931 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40959925, endtime: 40960215, seqnum: 0, connid: 0 98 12:55:49,4608570 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54931 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40959926, endtime: 40960215, seqnum: 0, connid: 0 98 12:55:49,4608650 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54931 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40959928, endtime: 40960215, seqnum: 0, connid: 0 98 12:55:49,4608714 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54931 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40959930, endtime: 40960215, seqnum: 0, connid: 0 98 12:55:49,4608789 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54931 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40959931, endtime: 40960215, seqnum: 0, connid: 0 98 12:55:49,4608855 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54931 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40959933, endtime: 40960215, seqnum: 0, connid: 0 98 12:55:49,4609169 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54931 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40959936, endtime: 40960215, seqnum: 0, connid: 0 98 12:55:49,4609232 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54931 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40959938, endtime: 40960215, seqnum: 0, connid: 0 98 12:55:49,4609302 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54931 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40959941, endtime: 40960215, seqnum: 0, connid: 0 98 12:55:49,4609357 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54931 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40959942, endtime: 40960215, seqnum: 0, connid: 0 98 12:55:49,7085036 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54963 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40959820, endtime: 40960239, seqnum: 0, connid: 0 98 12:55:49,7085246 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54963 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40959822, endtime: 40960239, seqnum: 0, connid: 0 98 12:55:49,7085332 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54963 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40959825, endtime: 40960239, seqnum: 0, connid: 0 98 12:55:49,7085412 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54963 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40959827, endtime: 40960239, seqnum: 0, connid: 0 98 12:55:49,7085476 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54963 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40959828, endtime: 40960239, seqnum: 0, connid: 0 98 12:55:49,7085551 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54963 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40959830, endtime: 40960239, seqnum: 0, connid: 0 98 12:55:49,7085612 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54963 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40959832, endtime: 40960239, seqnum: 0, connid: 0 98 12:55:49,7085684 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54963 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40959833, endtime: 40960239, seqnum: 0, connid: 0 98 12:55:49,7085742 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54963 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40959836, endtime: 40960239, seqnum: 0, connid: 0 98 12:55:49,7086036 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54963 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40960030, endtime: 40960239, seqnum: 0, connid: 0 98 12:55:49,7086097 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54963 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40960031, endtime: 40960239, seqnum: 0, connid: 0 98 12:55:49,7086169 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54963 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40960033, endtime: 40960239, seqnum: 0, connid: 0 98 12:55:49,7086230 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54963 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40960034, endtime: 40960239, seqnum: 0, connid: 0 98 12:55:50,0301881 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54963 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40960239, endtime: 40960272, seqnum: 0, connid: 0 98 12:55:50,0302064 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54963 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40960241, endtime: 40960272, seqnum: 0, connid: 0 98 12:55:50,0302138 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54963 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40960242, endtime: 40960272, seqnum: 0, connid: 0 98 12:55:50,0302213 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54963 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40960244, endtime: 40960272, seqnum: 0, connid: 0 98 12:55:50,0302274 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54963 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40960247, endtime: 40960272, seqnum: 0, connid: 0 98 12:55:50,0302343 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54963 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40960248, endtime: 40960272, seqnum: 0, connid: 0 98 12:55:50,0302399 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54963 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40960250, endtime: 40960272, seqnum: 0, connid: 0 98 12:55:50,0302465 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54963 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40960253, endtime: 40960272, seqnum: 0, connid: 0 98 12:55:50,0302521 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54963 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40960255, endtime: 40960272, seqnum: 0, connid: 0 98 12:55:50,0303136 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54963 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40960258, endtime: 40960272, seqnum: 0, connid: 0 98 12:55:50,0303213 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54963 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40960259, endtime: 40960272, seqnum: 0, connid: 0 98 12:55:50,0303283 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54963 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40960263, endtime: 40960272, seqnum: 0, connid: 0 98 12:55:50,8255384 MCLauncher.exe 6080 TCP TCPCopy WIN-0UOTFKKVN1S:54920 -> sheltex.company:8000 SUCCESS Length: 2, seqnum: 0, connid: 0 98 12:55:50,8255509 MCLauncher.exe 6080 TCP Receive WIN-0UOTFKKVN1S:54920 -> sheltex.company:8000 SUCCESS Length: 2, seqnum: 0, connid: 0 98 12:55:50,8258659 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54920 -> sheltex.company:8000 SUCCESS Length: 2, startime: 40960351, endtime: 40960351, seqnum: 0, connid: 0 98 12:55:51,5608598 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54959 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40960197, endtime: 40960425, seqnum: 0, connid: 0 98 12:55:51,5608798 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54959 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40960198, endtime: 40960425, seqnum: 0, connid: 0 98 12:55:51,5608878 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54959 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40960200, endtime: 40960425, seqnum: 0, connid: 0 98 12:55:51,5608956 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54959 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40960201, endtime: 40960425, seqnum: 0, connid: 0 98 12:55:51,5609020 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54959 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40960201, endtime: 40960425, seqnum: 0, connid: 0 98 12:55:51,5609089 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54959 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40960205, endtime: 40960425, seqnum: 0, connid: 0 98 12:55:51,5609147 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54959 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40960206, endtime: 40960425, seqnum: 0, connid: 0 98 12:55:51,5609219 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54959 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40960211, endtime: 40960425, seqnum: 0, connid: 0 98 12:55:51,5609277 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54959 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40960212, endtime: 40960425, seqnum: 0, connid: 0 98 12:55:51,5609585 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54959 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40960214, endtime: 40960425, seqnum: 0, connid: 0 98 12:55:51,5609646 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54959 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40960216, endtime: 40960425, seqnum: 0, connid: 0 98 12:55:51,5609718 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54959 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40960217, endtime: 40960425, seqnum: 0, connid: 0 98 12:55:51,5609776 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54959 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40960219, endtime: 40960425, seqnum: 0, connid: 0 98 12:55:51,6342930 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54959 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40960425, endtime: 40960432, seqnum: 0, connid: 0 98 12:55:51,6493407 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54935 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40960092, endtime: 40960434, seqnum: 0, connid: 0 98 12:55:51,6493585 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54935 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40960094, endtime: 40960434, seqnum: 0, connid: 0 98 12:55:51,6493659 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54935 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40960095, endtime: 40960434, seqnum: 0, connid: 0 98 12:55:51,6493731 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54935 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40960098, endtime: 40960434, seqnum: 0, connid: 0 98 12:55:51,6493787 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54935 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40960099, endtime: 40960434, seqnum: 0, connid: 0 98 12:55:51,6493853 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54935 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40960100, endtime: 40960434, seqnum: 0, connid: 0 98 12:55:51,6493909 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54935 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40960104, endtime: 40960434, seqnum: 0, connid: 0 98 12:55:51,6493973 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54935 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40960105, endtime: 40960434, seqnum: 0, connid: 0 98 12:55:51,6494028 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54935 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40960108, endtime: 40960434, seqnum: 0, connid: 0 98 12:55:51,6494513 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54935 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40960109, endtime: 40960434, seqnum: 0, connid: 0 98 12:55:51,6494615 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54935 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40960111, endtime: 40960434, seqnum: 0, connid: 0 98 12:55:51,6494726 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54935 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40960112, endtime: 40960434, seqnum: 0, connid: 0 98 12:55:51,6494818 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54935 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40960114, endtime: 40960434, seqnum: 0, connid: 0 98 12:55:52,1341805 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54931 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40960215, endtime: 40960482, seqnum: 0, connid: 0 98 12:55:52,1342002 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54931 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40960216, endtime: 40960482, seqnum: 0, connid: 0 98 12:55:52,1342079 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54931 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40960217, endtime: 40960482, seqnum: 0, connid: 0 98 12:55:52,1342157 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54931 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40960219, endtime: 40960482, seqnum: 0, connid: 0 98 12:55:52,1342215 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54931 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40960219, endtime: 40960482, seqnum: 0, connid: 0 98 12:55:52,1342284 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54931 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40960222, endtime: 40960482, seqnum: 0, connid: 0 98 12:55:52,1342343 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54931 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40960223, endtime: 40960482, seqnum: 0, connid: 0 98 12:55:52,1342409 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54931 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40960225, endtime: 40960482, seqnum: 0, connid: 0 98 12:55:52,1342464 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54931 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40960226, endtime: 40960482, seqnum: 0, connid: 0 98 12:55:52,1342764 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54931 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40960228, endtime: 40960482, seqnum: 0, connid: 0 98 12:55:52,1342830 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54931 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40960231, endtime: 40960482, seqnum: 0, connid: 0 98 12:55:52,1342899 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54931 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40960233, endtime: 40960482, seqnum: 0, connid: 0 98 12:55:52,1342955 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54931 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40960234, endtime: 40960482, seqnum: 0, connid: 0 98 12:55:52,2307561 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54950 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40959961, endtime: 40960492, seqnum: 0, connid: 0 98 12:55:52,2307819 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54950 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40959962, endtime: 40960492, seqnum: 0, connid: 0 98 12:55:52,2307913 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54950 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40959964, endtime: 40960492, seqnum: 0, connid: 0 98 12:55:52,2307980 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54950 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40959966, endtime: 40960492, seqnum: 0, connid: 0 98 12:55:52,2308143 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54950 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40959967, endtime: 40960492, seqnum: 0, connid: 0 98 12:55:52,2308210 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54950 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40959969, endtime: 40960492, seqnum: 0, connid: 0 98 12:55:52,2308282 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54950 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40959970, endtime: 40960492, seqnum: 0, connid: 0 98 12:55:52,2308340 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54950 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40959972, endtime: 40960492, seqnum: 0, connid: 0 98 12:55:52,2308415 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54950 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40959973, endtime: 40960492, seqnum: 0, connid: 0 98 12:55:52,2309080 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54950 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40959975, endtime: 40960492, seqnum: 0, connid: 0 98 12:55:52,2309163 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54950 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40959978, endtime: 40960492, seqnum: 0, connid: 0 98 12:55:52,2309221 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54950 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40959981, endtime: 40960492, seqnum: 0, connid: 0 98 12:55:52,8279485 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54961 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40960018, endtime: 40960551, seqnum: 0, connid: 0 98 12:55:52,8279651 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54961 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40960020, endtime: 40960551, seqnum: 0, connid: 0 98 12:55:52,8279723 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54961 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40960022, endtime: 40960551, seqnum: 0, connid: 0 98 12:55:52,8279798 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54961 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40960023, endtime: 40960551, seqnum: 0, connid: 0 98 12:55:52,8279856 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54961 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40960025, endtime: 40960551, seqnum: 0, connid: 0 98 12:55:52,8279928 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54961 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40960026, endtime: 40960551, seqnum: 0, connid: 0 98 12:55:52,8279984 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54961 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40960029, endtime: 40960551, seqnum: 0, connid: 0 98 12:55:52,8280053 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54961 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40960031, endtime: 40960551, seqnum: 0, connid: 0 98 12:55:52,8280109 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54961 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40960033, endtime: 40960551, seqnum: 0, connid: 0 98 12:55:52,8280408 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54961 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40960034, endtime: 40960551, seqnum: 0, connid: 0 98 12:55:52,8280469 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54961 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40960036, endtime: 40960551, seqnum: 0, connid: 0 98 12:55:52,8280535 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54961 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40960038, endtime: 40960551, seqnum: 0, connid: 0 98 12:55:52,8280593 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54961 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40960041, endtime: 40960551, seqnum: 0, connid: 0 98 12:55:53,7705691 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54935 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40960434, endtime: 40960646, seqnum: 0, connid: 0 98 12:55:53,7705868 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54935 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40960434, endtime: 40960646, seqnum: 0, connid: 0 98 12:55:53,7705943 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54935 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40960437, endtime: 40960646, seqnum: 0, connid: 0 98 12:55:53,7706015 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54935 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40960439, endtime: 40960646, seqnum: 0, connid: 0 98 12:55:53,7706071 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54935 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40960441, endtime: 40960646, seqnum: 0, connid: 0 98 12:55:53,7706137 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54935 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40960445, endtime: 40960646, seqnum: 0, connid: 0 98 12:55:53,7706192 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54935 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40960447, endtime: 40960646, seqnum: 0, connid: 0 98 12:55:53,7706259 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54935 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40960448, endtime: 40960646, seqnum: 0, connid: 0 98 12:55:53,7706312 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54935 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40960450, endtime: 40960646, seqnum: 0, connid: 0 98 12:55:53,7706619 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54935 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40960451, endtime: 40960646, seqnum: 0, connid: 0 98 12:55:53,7706677 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54935 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40960453, endtime: 40960646, seqnum: 0, connid: 0 98 12:55:53,7706741 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54935 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40960456, endtime: 40960646, seqnum: 0, connid: 0 98 12:55:53,7706794 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54935 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40960458, endtime: 40960646, seqnum: 0, connid: 0 98 12:55:54,4011331 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54963 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40960264, endtime: 40960709, seqnum: 0, connid: 0 98 12:55:54,4011523 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54963 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40960272, endtime: 40960709, seqnum: 0, connid: 0 98 12:55:54,4011597 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54963 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40960273, endtime: 40960709, seqnum: 0, connid: 0 98 12:55:54,4011672 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54963 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40960275, endtime: 40960709, seqnum: 0, connid: 0 98 12:55:54,4011730 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54963 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40960277, endtime: 40960709, seqnum: 0, connid: 0 98 12:55:54,4011797 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54963 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40960278, endtime: 40960709, seqnum: 0, connid: 0 98 12:55:54,4011855 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54963 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40960281, endtime: 40960709, seqnum: 0, connid: 0 98 12:55:54,4011919 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54963 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40960283, endtime: 40960709, seqnum: 0, connid: 0 98 12:55:54,4011974 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54963 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40960284, endtime: 40960709, seqnum: 0, connid: 0 98 12:55:54,4012315 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54963 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40960286, endtime: 40960709, seqnum: 0, connid: 0 98 12:55:54,4012373 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54963 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40960288, endtime: 40960709, seqnum: 0, connid: 0 98 12:55:54,4012440 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54963 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40960290, endtime: 40960709, seqnum: 0, connid: 0 98 12:55:54,4012492 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54963 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40960291, endtime: 40960709, seqnum: 0, connid: 0 98 12:55:54,4012628 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54959 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40960426, endtime: 40960709, seqnum: 0, connid: 0 98 12:55:54,4012684 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54959 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40960428, endtime: 40960709, seqnum: 0, connid: 0 98 12:55:54,4012747 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54959 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40960430, endtime: 40960709, seqnum: 0, connid: 0 98 12:55:54,4012803 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54959 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40960431, endtime: 40960709, seqnum: 0, connid: 0 98 12:55:54,4012869 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54959 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40960434, endtime: 40960709, seqnum: 0, connid: 0 98 12:55:54,4012925 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54959 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40960437, endtime: 40960709, seqnum: 0, connid: 0 98 12:55:54,4013894 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54959 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40960439, endtime: 40960709, seqnum: 0, connid: 0 98 12:55:54,4013961 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54959 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40960441, endtime: 40960709, seqnum: 0, connid: 0 98 12:55:54,4014027 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54959 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40960445, endtime: 40960709, seqnum: 0, connid: 0 98 12:55:54,4014094 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54959 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40960447, endtime: 40960709, seqnum: 0, connid: 0 98 12:55:54,4014146 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54959 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40960448, endtime: 40960709, seqnum: 0, connid: 0 98 12:55:54,4014210 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54959 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40960450, endtime: 40960709, seqnum: 0, connid: 0 98 12:55:54,4015573 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54959 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40960451, endtime: 40960709, seqnum: 0, connid: 0 98 12:55:55,3129348 MCLauncher.exe 6080 TCP Disconnect WIN-0UOTFKKVN1S:54956 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 0, seqnum: 0, connid: 0 98 12:55:55,7606544 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54950 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40959985, endtime: 40960845, seqnum: 0, connid: 0 98 12:55:55,7606718 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54950 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40960492, endtime: 40960845, seqnum: 0, connid: 0 98 12:55:55,7606807 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54950 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40960495, endtime: 40960845, seqnum: 0, connid: 0 98 12:55:55,7606871 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54950 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40960497, endtime: 40960845, seqnum: 0, connid: 0 98 12:55:55,7606943 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54950 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40960500, endtime: 40960845, seqnum: 0, connid: 0 98 12:55:55,7606998 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54950 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40960501, endtime: 40960845, seqnum: 0, connid: 0 98 12:55:55,7607067 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54950 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40960503, endtime: 40960845, seqnum: 0, connid: 0 98 12:55:55,7607120 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54950 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40960505, endtime: 40960845, seqnum: 0, connid: 0 98 12:55:55,7607189 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54950 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40960508, endtime: 40960845, seqnum: 0, connid: 0 98 12:55:55,7607242 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54950 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40960511, endtime: 40960845, seqnum: 0, connid: 0 98 12:55:55,7607572 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54950 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40960513, endtime: 40960845, seqnum: 0, connid: 0 98 12:55:55,7607630 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54950 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40960515, endtime: 40960845, seqnum: 0, connid: 0 98 12:55:55,7607696 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54950 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40960517, endtime: 40960845, seqnum: 0, connid: 0 98 12:55:56,3234137 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54935 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40960646, endtime: 40960901, seqnum: 0, connid: 0 98 12:55:56,3234331 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54935 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40960648, endtime: 40960901, seqnum: 0, connid: 0 98 12:55:56,3234408 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54935 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40960650, endtime: 40960901, seqnum: 0, connid: 0 98 12:55:56,3234486 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54935 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40960652, endtime: 40960901, seqnum: 0, connid: 0 98 12:55:56,3234547 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54935 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40960653, endtime: 40960901, seqnum: 0, connid: 0 98 12:55:56,3234613 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54935 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40960655, endtime: 40960901, seqnum: 0, connid: 0 98 12:55:56,3234671 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54935 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40960656, endtime: 40960901, seqnum: 0, connid: 0 98 12:55:56,3234741 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54935 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40960658, endtime: 40960901, seqnum: 0, connid: 0 98 12:55:56,3234796 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54935 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40960661, endtime: 40960901, seqnum: 0, connid: 0 98 12:55:56,3235289 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54935 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40960664, endtime: 40960901, seqnum: 0, connid: 0 98 12:55:56,3235400 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54935 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40960667, endtime: 40960901, seqnum: 0, connid: 0 98 12:55:56,3235514 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54935 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40960670, endtime: 40960901, seqnum: 0, connid: 0 98 12:55:56,3235611 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54935 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40960672, endtime: 40960901, seqnum: 0, connid: 0 98 12:55:56,5509241 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54961 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40960551, endtime: 40960924, seqnum: 0, connid: 0 98 12:55:56,5509429 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54961 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40960553, endtime: 40960924, seqnum: 0, connid: 0 98 12:55:56,5509507 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54961 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40960556, endtime: 40960924, seqnum: 0, connid: 0 98 12:55:56,5509581 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54961 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40960559, endtime: 40960924, seqnum: 0, connid: 0 98 12:55:56,5509640 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54961 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40960561, endtime: 40960924, seqnum: 0, connid: 0 98 12:55:56,5509706 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54961 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40960563, endtime: 40960924, seqnum: 0, connid: 0 98 12:55:56,5509764 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54961 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40960564, endtime: 40960924, seqnum: 0, connid: 0 98 12:55:56,5509833 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54961 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40960566, endtime: 40960924, seqnum: 0, connid: 0 98 12:55:56,5509892 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54961 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40960568, endtime: 40960924, seqnum: 0, connid: 0 98 12:55:56,5510185 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54961 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40960569, endtime: 40960924, seqnum: 0, connid: 0 98 12:55:56,5510243 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54961 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40960569, endtime: 40960924, seqnum: 0, connid: 0 98 12:55:56,5510310 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54961 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40960572, endtime: 40960924, seqnum: 0, connid: 0 98 12:55:56,5510368 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54961 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40960573, endtime: 40960924, seqnum: 0, connid: 0 98 12:55:56,7910990 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54959 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40960709, endtime: 40960948, seqnum: 0, connid: 0 98 12:55:56,7911167 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54959 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40960711, endtime: 40960948, seqnum: 0, connid: 0 98 12:55:56,7911239 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54959 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40960712, endtime: 40960948, seqnum: 0, connid: 0 98 12:55:56,7911314 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54959 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40960716, endtime: 40960948, seqnum: 0, connid: 0 98 12:55:56,7911372 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54959 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40960717, endtime: 40960948, seqnum: 0, connid: 0 98 12:55:56,7911438 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54959 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40960720, endtime: 40960948, seqnum: 0, connid: 0 98 12:55:56,7911494 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54959 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40960722, endtime: 40960948, seqnum: 0, connid: 0 98 12:55:56,7911799 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54959 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40960724, endtime: 40960948, seqnum: 0, connid: 0 98 12:55:56,7911912 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54959 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40960725, endtime: 40960948, seqnum: 0, connid: 0 98 12:55:56,7912907 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54959 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40960727, endtime: 40960948, seqnum: 0, connid: 0 98 12:55:56,7912979 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54959 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40960728, endtime: 40960948, seqnum: 0, connid: 0 98 12:55:56,7913045 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54959 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40960730, endtime: 40960948, seqnum: 0, connid: 0 98 12:55:56,7913680 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54959 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40960731, endtime: 40960948, seqnum: 0, connid: 0 98 12:55:57,1717643 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54963 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40960709, endtime: 40960986, seqnum: 0, connid: 0 98 12:55:57,1717859 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54963 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40960711, endtime: 40960986, seqnum: 0, connid: 0 98 12:55:57,1717942 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54963 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40960712, endtime: 40960986, seqnum: 0, connid: 0 98 12:55:57,1718022 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54963 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40960716, endtime: 40960986, seqnum: 0, connid: 0 98 12:55:57,1718080 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54963 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40960717, endtime: 40960986, seqnum: 0, connid: 0 98 12:55:57,1718150 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54963 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40960720, endtime: 40960986, seqnum: 0, connid: 0 98 12:55:57,1718208 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54963 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40960722, endtime: 40960986, seqnum: 0, connid: 0 98 12:55:57,1718280 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54963 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40960724, endtime: 40960986, seqnum: 0, connid: 0 98 12:55:57,1718338 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54963 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40960725, endtime: 40960986, seqnum: 0, connid: 0 98 12:55:57,1718615 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54963 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40960727, endtime: 40960986, seqnum: 0, connid: 0 98 12:55:57,1718676 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54963 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40960728, endtime: 40960986, seqnum: 0, connid: 0 98 12:55:57,1718745 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54963 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40960730, endtime: 40960986, seqnum: 0, connid: 0 98 12:55:57,1718804 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54963 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40960731, endtime: 40960986, seqnum: 0, connid: 0 98 12:55:58,4758466 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54950 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40960845, endtime: 40961116, seqnum: 0, connid: 0 98 12:55:58,4758682 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54950 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40960845, endtime: 40961116, seqnum: 0, connid: 0 98 12:55:58,4758759 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54950 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40960847, endtime: 40961116, seqnum: 0, connid: 0 98 12:55:58,4758840 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54950 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40960848, endtime: 40961116, seqnum: 0, connid: 0 98 12:55:58,4758901 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54950 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40960850, endtime: 40961116, seqnum: 0, connid: 0 98 12:55:58,4758970 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54950 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40960852, endtime: 40961116, seqnum: 0, connid: 0 98 12:55:58,4759028 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54950 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40960853, endtime: 40961116, seqnum: 0, connid: 0 98 12:55:58,4759095 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54950 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40960855, endtime: 40961116, seqnum: 0, connid: 0 98 12:55:58,4759153 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54950 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40960856, endtime: 40961116, seqnum: 0, connid: 0 98 12:55:58,4759441 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54950 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40960858, endtime: 40961116, seqnum: 0, connid: 0 98 12:55:58,4759502 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54950 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40960859, endtime: 40961116, seqnum: 0, connid: 0 98 12:55:58,4759571 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54950 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40960862, endtime: 40961116, seqnum: 0, connid: 0 98 12:55:58,4759629 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54950 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40960863, endtime: 40961116, seqnum: 0, connid: 0 98 12:55:59,0302809 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54931 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40960482, endtime: 40961172, seqnum: 0, connid: 0 98 12:55:59,0302983 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54931 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40960483, endtime: 40961172, seqnum: 0, connid: 0 98 12:55:59,0303080 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54931 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40960484, endtime: 40961172, seqnum: 0, connid: 0 98 12:55:59,0303152 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54931 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40960486, endtime: 40961172, seqnum: 0, connid: 0 98 12:55:59,0303227 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54931 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40960487, endtime: 40961172, seqnum: 0, connid: 0 98 12:55:59,0303288 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54931 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40960489, endtime: 40961172, seqnum: 0, connid: 0 98 12:55:59,0303363 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54931 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40960491, endtime: 40961172, seqnum: 0, connid: 0 98 12:55:59,0303421 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54931 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40960492, endtime: 40961172, seqnum: 0, connid: 0 98 12:55:59,0303493 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54931 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40960495, endtime: 40961172, seqnum: 0, connid: 0 98 12:55:59,0303784 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54931 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40960497, endtime: 40961172, seqnum: 0, connid: 0 98 12:55:59,0303859 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54931 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40960500, endtime: 40961172, seqnum: 0, connid: 0 98 12:55:59,0303920 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54931 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40960501, endtime: 40961172, seqnum: 0, connid: 0 98 12:55:59,0303992 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54931 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40960501, endtime: 40961172, seqnum: 0, connid: 0 98 12:55:59,4389798 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54935 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40960901, endtime: 40961213, seqnum: 0, connid: 0 98 12:55:59,4389998 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54935 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40960903, endtime: 40961213, seqnum: 0, connid: 0 98 12:55:59,4390081 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54935 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40960905, endtime: 40961213, seqnum: 0, connid: 0 98 12:55:59,4390164 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54935 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40960908, endtime: 40961213, seqnum: 0, connid: 0 98 12:55:59,4390225 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54935 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40960909, endtime: 40961213, seqnum: 0, connid: 0 98 12:55:59,4390297 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54935 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40960911, endtime: 40961213, seqnum: 0, connid: 0 98 12:55:59,4390358 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54935 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40960912, endtime: 40961213, seqnum: 0, connid: 0 98 12:55:59,4390427 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54935 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40960914, endtime: 40961213, seqnum: 0, connid: 0 98 12:55:59,4390485 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54935 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40960918, endtime: 40961213, seqnum: 0, connid: 0 98 12:55:59,4390787 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54935 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40960921, endtime: 40961213, seqnum: 0, connid: 0 98 12:55:59,4390851 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54935 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40960924, endtime: 40961213, seqnum: 0, connid: 0 98 12:55:59,4390920 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54935 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40960925, endtime: 40961213, seqnum: 0, connid: 0 98 12:55:59,4391078 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54935 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40960927, endtime: 40961213, seqnum: 0, connid: 0 98 12:55:59,6082819 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54959 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40960948, endtime: 40961229, seqnum: 0, connid: 0 98 12:55:59,6083029 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54959 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40960948, endtime: 40961229, seqnum: 0, connid: 0 98 12:55:59,6083107 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54959 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40960952, endtime: 40961229, seqnum: 0, connid: 0 98 12:55:59,6083187 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54959 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40960955, endtime: 40961229, seqnum: 0, connid: 0 98 12:55:59,6083339 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54959 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40960956, endtime: 40961229, seqnum: 0, connid: 0 98 12:55:59,6083411 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54959 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40960958, endtime: 40961229, seqnum: 0, connid: 0 98 12:55:59,6083470 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54959 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40960961, endtime: 40961229, seqnum: 0, connid: 0 98 12:55:59,6083542 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54959 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40960962, endtime: 40961229, seqnum: 0, connid: 0 98 12:55:59,6083597 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54959 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40960964, endtime: 40961229, seqnum: 0, connid: 0 98 12:55:59,6084245 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54959 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40960966, endtime: 40961229, seqnum: 0, connid: 0 98 12:55:59,6084317 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54959 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40960968, endtime: 40961229, seqnum: 0, connid: 0 98 12:55:59,6084384 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54959 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40960969, endtime: 40961229, seqnum: 0, connid: 0 98 12:55:59,9417174 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54961 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40960924, endtime: 40961263, seqnum: 0, connid: 0 98 12:55:59,9417346 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54961 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40960925, endtime: 40961263, seqnum: 0, connid: 0 98 12:55:59,9417557 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54961 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40960927, endtime: 40961263, seqnum: 0, connid: 0 98 12:55:59,9417679 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54961 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40960930, endtime: 40961263, seqnum: 0, connid: 0 98 12:55:59,9417770 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54961 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40960933, endtime: 40961263, seqnum: 0, connid: 0 98 12:55:59,9417881 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54961 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40960936, endtime: 40961263, seqnum: 0, connid: 0 98 12:55:59,9417947 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54961 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40960937, endtime: 40961263, seqnum: 0, connid: 0 98 12:55:59,9418019 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54961 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40960938, endtime: 40961263, seqnum: 0, connid: 0 98 12:55:59,9418075 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54961 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40960941, endtime: 40961263, seqnum: 0, connid: 0 98 12:55:59,9418385 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54961 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40960942, endtime: 40961263, seqnum: 0, connid: 0 98 12:55:59,9418440 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54961 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40960945, endtime: 40961263, seqnum: 0, connid: 0 98 12:55:59,9418507 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54961 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40960948, endtime: 40961263, seqnum: 0, connid: 0 98 12:55:59,9418562 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54961 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40960952, endtime: 40961263, seqnum: 0, connid: 0 98 12:56:00,0597062 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54963 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40960986, endtime: 40961275, seqnum: 0, connid: 0 98 12:56:00,0597245 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54963 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40960987, endtime: 40961275, seqnum: 0, connid: 0 98 12:56:00,0597319 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54963 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40960989, endtime: 40961275, seqnum: 0, connid: 0 98 12:56:00,0597391 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54963 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40960991, endtime: 40961275, seqnum: 0, connid: 0 98 12:56:00,0597450 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54963 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40960992, endtime: 40961275, seqnum: 0, connid: 0 98 12:56:00,0597516 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54963 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40960994, endtime: 40961275, seqnum: 0, connid: 0 98 12:56:00,0597572 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54963 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40960995, endtime: 40961275, seqnum: 0, connid: 0 98 12:56:00,0597635 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54963 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40960997, endtime: 40961275, seqnum: 0, connid: 0 98 12:56:00,0597688 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54963 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40960998, endtime: 40961275, seqnum: 0, connid: 0 98 12:56:00,0597971 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54963 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40960999, endtime: 40961275, seqnum: 0, connid: 0 98 12:56:00,0598029 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54963 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40961002, endtime: 40961275, seqnum: 0, connid: 0 98 12:56:00,0598092 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54963 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40961005, endtime: 40961275, seqnum: 0, connid: 0 98 12:56:00,0598148 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54963 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40961006, endtime: 40961275, seqnum: 0, connid: 0 98 12:56:00,9361126 MCLauncher.exe 6080 TCP TCPCopy WIN-0UOTFKKVN1S:54920 -> sheltex.company:8000 SUCCESS Length: 2, seqnum: 0, connid: 0 98 12:56:00,9361245 MCLauncher.exe 6080 TCP Receive WIN-0UOTFKKVN1S:54920 -> sheltex.company:8000 SUCCESS Length: 2, seqnum: 0, connid: 0 98 12:56:00,9365054 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54920 -> sheltex.company:8000 SUCCESS Length: 2, startime: 40961362, endtime: 40961362, seqnum: 0, connid: 0 98 12:56:01,2337187 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54959 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40960970, endtime: 40961392, seqnum: 0, connid: 0 98 12:56:01,2337395 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54959 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40961229, endtime: 40961392, seqnum: 0, connid: 0 98 12:56:01,2337475 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54959 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40961231, endtime: 40961392, seqnum: 0, connid: 0 98 12:56:01,2337553 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54959 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40961233, endtime: 40961392, seqnum: 0, connid: 0 98 12:56:01,2337614 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54959 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40961234, endtime: 40961392, seqnum: 0, connid: 0 98 12:56:01,2337683 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54959 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40961236, endtime: 40961392, seqnum: 0, connid: 0 98 12:56:01,2337738 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54959 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40961237, endtime: 40961392, seqnum: 0, connid: 0 98 12:56:01,2337808 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54959 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40961239, endtime: 40961392, seqnum: 0, connid: 0 98 12:56:01,2337863 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54959 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40961241, endtime: 40961392, seqnum: 0, connid: 0 98 12:56:01,2338165 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54959 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40961242, endtime: 40961392, seqnum: 0, connid: 0 98 12:56:01,2338226 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54959 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40961246, endtime: 40961392, seqnum: 0, connid: 0 98 12:56:01,2338293 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54959 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40961249, endtime: 40961392, seqnum: 0, connid: 0 98 12:56:01,2338351 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54959 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40961252, endtime: 40961392, seqnum: 0, connid: 0 98 12:56:01,7215266 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54950 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40961116, endtime: 40961441, seqnum: 0, connid: 0 98 12:56:01,7215454 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54950 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40961117, endtime: 40961441, seqnum: 0, connid: 0 98 12:56:01,7215532 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54950 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40961119, endtime: 40961441, seqnum: 0, connid: 0 98 12:56:01,7215607 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54950 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40961120, endtime: 40961441, seqnum: 0, connid: 0 98 12:56:01,7215665 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54950 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40961122, endtime: 40961441, seqnum: 0, connid: 0 98 12:56:01,7215731 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54950 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40961123, endtime: 40961441, seqnum: 0, connid: 0 98 12:56:01,7215787 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54950 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40961126, endtime: 40961441, seqnum: 0, connid: 0 98 12:56:01,7215853 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54950 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40961128, endtime: 40961441, seqnum: 0, connid: 0 98 12:56:01,7215906 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54950 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40961130, endtime: 40961441, seqnum: 0, connid: 0 98 12:56:01,7216202 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54950 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40961133, endtime: 40961441, seqnum: 0, connid: 0 98 12:56:01,7216260 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54950 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40961134, endtime: 40961441, seqnum: 0, connid: 0 98 12:56:01,7216327 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54950 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40961136, endtime: 40961441, seqnum: 0, connid: 0 98 12:56:01,7216380 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54950 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40961138, endtime: 40961441, seqnum: 0, connid: 0 98 12:56:01,9042631 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54935 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40961213, endtime: 40961459, seqnum: 0, connid: 0 98 12:56:01,9042808 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54935 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40961214, endtime: 40961459, seqnum: 0, connid: 0 98 12:56:01,9042885 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54935 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40961216, endtime: 40961459, seqnum: 0, connid: 0 98 12:56:01,9042966 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54935 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40961217, endtime: 40961459, seqnum: 0, connid: 0 98 12:56:01,9043149 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54935 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40961219, endtime: 40961459, seqnum: 0, connid: 0 98 12:56:01,9043254 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54935 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40961220, endtime: 40961459, seqnum: 0, connid: 0 98 12:56:01,9043318 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54935 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40961222, endtime: 40961459, seqnum: 0, connid: 0 98 12:56:01,9043395 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54935 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40961223, endtime: 40961459, seqnum: 0, connid: 0 98 12:56:01,9043459 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54935 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40961225, endtime: 40961459, seqnum: 0, connid: 0 98 12:56:01,9043758 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54935 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40961227, endtime: 40961459, seqnum: 0, connid: 0 98 12:56:01,9043822 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54935 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40961228, endtime: 40961459, seqnum: 0, connid: 0 98 12:56:01,9043894 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54935 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40961230, endtime: 40961459, seqnum: 0, connid: 0 98 12:56:01,9043952 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54935 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40961231, endtime: 40961459, seqnum: 0, connid: 0 98 12:56:02,6541989 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54950 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40961441, endtime: 40961534, seqnum: 0, connid: 0 98 12:56:02,6542175 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54950 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40961442, endtime: 40961534, seqnum: 0, connid: 0 98 12:56:02,6542252 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54950 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40961444, endtime: 40961534, seqnum: 0, connid: 0 98 12:56:02,6542333 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54950 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40961447, endtime: 40961534, seqnum: 0, connid: 0 98 12:56:02,6542394 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54950 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40961448, endtime: 40961534, seqnum: 0, connid: 0 98 12:56:02,6542463 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54950 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40961452, endtime: 40961534, seqnum: 0, connid: 0 98 12:56:02,6542521 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54950 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40961453, endtime: 40961534, seqnum: 0, connid: 0 98 12:56:02,6542590 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54950 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40961455, endtime: 40961534, seqnum: 0, connid: 0 98 12:56:02,6542649 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54950 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40961456, endtime: 40961534, seqnum: 0, connid: 0 98 12:56:02,6542926 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54950 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40961459, endtime: 40961534, seqnum: 0, connid: 0 98 12:56:02,6563594 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54950 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40961461, endtime: 40961534, seqnum: 0, connid: 0 98 12:56:02,6563716 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54950 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40961462, endtime: 40961534, seqnum: 0, connid: 0 98 12:56:02,6563788 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54950 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40961464, endtime: 40961534, seqnum: 0, connid: 0 98 12:56:02,7389016 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54950 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40961534, endtime: 40961543, seqnum: 0, connid: 0 98 12:56:02,9455214 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54963 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40961275, endtime: 40961563, seqnum: 0, connid: 0 98 12:56:02,9455408 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54963 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40961278, endtime: 40961563, seqnum: 0, connid: 0 98 12:56:02,9455488 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54963 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40961280, endtime: 40961563, seqnum: 0, connid: 0 98 12:56:02,9455569 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54963 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40961281, endtime: 40961563, seqnum: 0, connid: 0 98 12:56:02,9455630 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54963 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40961283, endtime: 40961563, seqnum: 0, connid: 0 98 12:56:02,9455702 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54963 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40961287, endtime: 40961563, seqnum: 0, connid: 0 98 12:56:02,9455760 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54963 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40961287, endtime: 40961563, seqnum: 0, connid: 0 98 12:56:02,9455829 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54963 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40961289, endtime: 40961563, seqnum: 0, connid: 0 98 12:56:02,9456023 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54963 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40961291, endtime: 40961563, seqnum: 0, connid: 0 98 12:56:02,9456489 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54963 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40961292, endtime: 40961563, seqnum: 0, connid: 0 98 12:56:02,9456561 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54963 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40961294, endtime: 40961563, seqnum: 0, connid: 0 98 12:56:02,9456635 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54963 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40961295, endtime: 40961563, seqnum: 0, connid: 0 98 12:56:02,9456699 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54963 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40961297, endtime: 40961563, seqnum: 0, connid: 0 98 12:56:03,3329109 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54963 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40961563, endtime: 40961602, seqnum: 0, connid: 0 98 12:56:04,1642017 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54961 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40961263, endtime: 40961685, seqnum: 0, connid: 0 98 12:56:04,1642378 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54961 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40961264, endtime: 40961685, seqnum: 0, connid: 0 98 12:56:04,1642511 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54961 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40961267, endtime: 40961685, seqnum: 0, connid: 0 98 12:56:04,1642644 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54961 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40961269, endtime: 40961685, seqnum: 0, connid: 0 98 12:56:04,1642727 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54961 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40961270, endtime: 40961685, seqnum: 0, connid: 0 98 12:56:04,1642804 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54961 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40961273, endtime: 40961685, seqnum: 0, connid: 0 98 12:56:04,1642868 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54961 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40961273, endtime: 40961685, seqnum: 0, connid: 0 98 12:56:04,1642946 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54961 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40961275, endtime: 40961685, seqnum: 0, connid: 0 98 12:56:04,1643007 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54961 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40961278, endtime: 40961685, seqnum: 0, connid: 0 98 12:56:04,1643336 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54961 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40961280, endtime: 40961685, seqnum: 0, connid: 0 98 12:56:04,1643400 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54961 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40961281, endtime: 40961685, seqnum: 0, connid: 0 98 12:56:04,1643475 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54961 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40961283, endtime: 40961685, seqnum: 0, connid: 0 98 12:56:04,1643533 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54961 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40961287, endtime: 40961685, seqnum: 0, connid: 0 98 12:56:05,3830807 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54950 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40961536, endtime: 40961807, seqnum: 0, connid: 0 98 12:56:05,3830971 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54950 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40961539, endtime: 40961807, seqnum: 0, connid: 0 98 12:56:05,3831059 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54950 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40961541, endtime: 40961807, seqnum: 0, connid: 0 98 12:56:05,3831126 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54950 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40961542, endtime: 40961807, seqnum: 0, connid: 0 98 12:56:05,3831201 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54950 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40961544, endtime: 40961807, seqnum: 0, connid: 0 98 12:56:05,3831262 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54950 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40961545, endtime: 40961807, seqnum: 0, connid: 0 98 12:56:05,3831331 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54950 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40961547, endtime: 40961807, seqnum: 0, connid: 0 98 12:56:05,3831389 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54950 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40961549, endtime: 40961807, seqnum: 0, connid: 0 98 12:56:05,3831458 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54950 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40961550, endtime: 40961807, seqnum: 0, connid: 0 98 12:56:05,3832223 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54950 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40961552, endtime: 40961807, seqnum: 0, connid: 0 98 12:56:05,3832312 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54950 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40961553, endtime: 40961807, seqnum: 0, connid: 0 98 12:56:05,3832373 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54950 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40961555, endtime: 40961807, seqnum: 0, connid: 0 98 12:56:05,3832996 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54950 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40961555, endtime: 40961807, seqnum: 0, connid: 0 98 12:56:05,4598809 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54963 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40961564, endtime: 40961815, seqnum: 0, connid: 0 98 12:56:05,4598973 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54963 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40961566, endtime: 40961815, seqnum: 0, connid: 0 98 12:56:05,4599059 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54963 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40961567, endtime: 40961815, seqnum: 0, connid: 0 98 12:56:05,4599120 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54963 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40961569, endtime: 40961815, seqnum: 0, connid: 0 98 12:56:05,4599186 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54963 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40961570, endtime: 40961815, seqnum: 0, connid: 0 98 12:56:05,4599242 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54963 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40961573, endtime: 40961815, seqnum: 0, connid: 0 98 12:56:05,4599308 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54963 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40961577, endtime: 40961815, seqnum: 0, connid: 0 98 12:56:05,4599364 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54963 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40961578, endtime: 40961815, seqnum: 0, connid: 0 98 12:56:05,4599427 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54963 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40961580, endtime: 40961815, seqnum: 0, connid: 0 98 12:56:05,4600159 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54963 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40961583, endtime: 40961815, seqnum: 0, connid: 0 98 12:56:05,4600239 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54963 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40961586, endtime: 40961815, seqnum: 0, connid: 0 98 12:56:05,4600294 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54963 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40961588, endtime: 40961815, seqnum: 0, connid: 0 98 12:56:05,4602032 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54963 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40961602, endtime: 40961815, seqnum: 0, connid: 0 98 12:56:05,9446470 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54931 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40961172, endtime: 40961863, seqnum: 0, connid: 0 98 12:56:05,9446642 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54931 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40961173, endtime: 40961863, seqnum: 0, connid: 0 98 12:56:05,9446717 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54931 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40961177, endtime: 40961863, seqnum: 0, connid: 0 98 12:56:05,9446789 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54931 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40961178, endtime: 40961863, seqnum: 0, connid: 0 98 12:56:05,9446847 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54931 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40961180, endtime: 40961863, seqnum: 0, connid: 0 98 12:56:05,9446911 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54931 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40961183, endtime: 40961863, seqnum: 0, connid: 0 98 12:56:05,9446966 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54931 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40961184, endtime: 40961863, seqnum: 0, connid: 0 98 12:56:05,9449235 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54931 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40961186, endtime: 40961863, seqnum: 0, connid: 0 98 12:56:05,9450019 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54931 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40961189, endtime: 40961863, seqnum: 0, connid: 0 98 12:56:05,9450113 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54931 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40961192, endtime: 40961863, seqnum: 0, connid: 0 98 12:56:05,9450188 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54931 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40961194, endtime: 40961863, seqnum: 0, connid: 0 98 12:56:05,9450244 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54931 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40961195, endtime: 40961863, seqnum: 0, connid: 0 98 12:56:05,9450310 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54931 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40961199, endtime: 40961863, seqnum: 0, connid: 0 98 12:56:06,1574862 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54935 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40961459, endtime: 40961884, seqnum: 0, connid: 0 98 12:56:06,1575036 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54935 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40961461, endtime: 40961884, seqnum: 0, connid: 0 98 12:56:06,1575111 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54935 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40961462, endtime: 40961884, seqnum: 0, connid: 0 98 12:56:06,1575186 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54935 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40961464, endtime: 40961884, seqnum: 0, connid: 0 98 12:56:06,1575241 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54935 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40961466, endtime: 40961884, seqnum: 0, connid: 0 98 12:56:06,1575308 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54935 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40961467, endtime: 40961884, seqnum: 0, connid: 0 98 12:56:06,1575363 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54935 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40961472, endtime: 40961884, seqnum: 0, connid: 0 98 12:56:06,1575430 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54935 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40961475, endtime: 40961884, seqnum: 0, connid: 0 98 12:56:06,1575485 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54935 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40961477, endtime: 40961884, seqnum: 0, connid: 0 98 12:56:06,1575793 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54935 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40961478, endtime: 40961884, seqnum: 0, connid: 0 98 12:56:06,1575848 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54935 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40961480, endtime: 40961884, seqnum: 0, connid: 0 98 12:56:06,1575912 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54935 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40961481, endtime: 40961884, seqnum: 0, connid: 0 98 12:56:06,1575970 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54935 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40961483, endtime: 40961884, seqnum: 0, connid: 0 98 12:56:06,5437117 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54959 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40961392, endtime: 40961923, seqnum: 0, connid: 0 98 12:56:06,5437300 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54959 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40961394, endtime: 40961923, seqnum: 0, connid: 0 98 12:56:06,5437386 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54959 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40961395, endtime: 40961923, seqnum: 0, connid: 0 98 12:56:06,5437450 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54959 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40961397, endtime: 40961923, seqnum: 0, connid: 0 98 12:56:06,5437516 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54959 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40961398, endtime: 40961923, seqnum: 0, connid: 0 98 12:56:06,5437572 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54959 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40961400, endtime: 40961923, seqnum: 0, connid: 0 98 12:56:06,5437635 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54959 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40961401, endtime: 40961923, seqnum: 0, connid: 0 98 12:56:06,5437691 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54959 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40961401, endtime: 40961923, seqnum: 0, connid: 0 98 12:56:06,5437755 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54959 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40961403, endtime: 40961923, seqnum: 0, connid: 0 98 12:56:06,5437807 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54959 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40961405, endtime: 40961923, seqnum: 0, connid: 0 98 12:56:06,5438115 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54959 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40961406, endtime: 40961923, seqnum: 0, connid: 0 98 12:56:06,5438173 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54959 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40961408, endtime: 40961923, seqnum: 0, connid: 0 98 12:56:06,5438239 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54959 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40961409, endtime: 40961923, seqnum: 0, connid: 0 98 12:56:06,6288948 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54959 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40961923, endtime: 40961931, seqnum: 0, connid: 0 98 12:56:06,8929303 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54950 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40961807, endtime: 40961958, seqnum: 0, connid: 0 98 12:56:06,8929481 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54950 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40961808, endtime: 40961958, seqnum: 0, connid: 0 98 12:56:06,8929556 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54950 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40961809, endtime: 40961958, seqnum: 0, connid: 0 98 12:56:06,8929633 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54950 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40961811, endtime: 40961958, seqnum: 0, connid: 0 98 12:56:06,8929691 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54950 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40961814, endtime: 40961958, seqnum: 0, connid: 0 98 12:56:06,8929761 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54950 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40961816, endtime: 40961958, seqnum: 0, connid: 0 98 12:56:06,8929819 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54950 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40961817, endtime: 40961958, seqnum: 0, connid: 0 98 12:56:06,8929888 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54950 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40961819, endtime: 40961958, seqnum: 0, connid: 0 98 12:56:06,8929943 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54950 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40961820, endtime: 40961958, seqnum: 0, connid: 0 98 12:56:06,8930744 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54950 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40961822, endtime: 40961958, seqnum: 0, connid: 0 98 12:56:06,8930822 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54950 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40961823, endtime: 40961958, seqnum: 0, connid: 0 98 12:56:06,8930891 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54950 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40961825, endtime: 40961958, seqnum: 0, connid: 0 98 12:56:06,8932235 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54950 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40961827, endtime: 40961958, seqnum: 0, connid: 0 98 12:56:07,3436645 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54961 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40961685, endtime: 40962003, seqnum: 0, connid: 0 98 12:56:07,3436792 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54961 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40961686, endtime: 40962003, seqnum: 0, connid: 0 98 12:56:07,3436861 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54961 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40961689, endtime: 40962003, seqnum: 0, connid: 0 98 12:56:07,3436931 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54961 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40961692, endtime: 40962003, seqnum: 0, connid: 0 98 12:56:07,3436986 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54961 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40961694, endtime: 40962003, seqnum: 0, connid: 0 98 12:56:07,3437050 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54961 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40961695, endtime: 40962003, seqnum: 0, connid: 0 98 12:56:07,3437102 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54961 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40961699, endtime: 40962003, seqnum: 0, connid: 0 98 12:56:07,3437166 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54961 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40961700, endtime: 40962003, seqnum: 0, connid: 0 98 12:56:07,3437219 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54961 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40961700, endtime: 40962003, seqnum: 0, connid: 0 98 12:56:07,3437676 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54961 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40961701, endtime: 40962003, seqnum: 0, connid: 0 98 12:56:07,3437740 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54961 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40961703, endtime: 40962003, seqnum: 0, connid: 0 98 12:56:07,3437803 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54961 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40961706, endtime: 40962003, seqnum: 0, connid: 0 98 12:56:07,3437856 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54961 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40961708, endtime: 40962003, seqnum: 0, connid: 0 98 12:56:08,1961646 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54931 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40961863, endtime: 40962088, seqnum: 0, connid: 0 98 12:56:08,1961812 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54931 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40961865, endtime: 40962088, seqnum: 0, connid: 0 98 12:56:08,1961887 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54931 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40961867, endtime: 40962088, seqnum: 0, connid: 0 98 12:56:08,1961959 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54931 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40961869, endtime: 40962088, seqnum: 0, connid: 0 98 12:56:08,1962017 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54931 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40961870, endtime: 40962088, seqnum: 0, connid: 0 98 12:56:08,1962089 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54931 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40961874, endtime: 40962088, seqnum: 0, connid: 0 98 12:56:08,1962145 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54931 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40961877, endtime: 40962088, seqnum: 0, connid: 0 98 12:56:08,1962217 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54931 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40961878, endtime: 40962088, seqnum: 0, connid: 0 98 12:56:08,1962272 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54931 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40961880, endtime: 40962088, seqnum: 0, connid: 0 98 12:56:08,1962599 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54931 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40961883, endtime: 40962088, seqnum: 0, connid: 0 98 12:56:08,1962657 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54931 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40961884, endtime: 40962088, seqnum: 0, connid: 0 98 12:56:08,1962726 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54931 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40961886, endtime: 40962088, seqnum: 0, connid: 0 98 12:56:08,1962782 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54931 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40961888, endtime: 40962088, seqnum: 0, connid: 0 98 12:56:08,8162737 MCLauncher.exe 6080 TCP Disconnect WIN-0UOTFKKVN1S:54961 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 0, seqnum: 0, connid: 0 98 12:56:08,9095620 MCLauncher.exe 6080 TCP Connect WIN-0UOTFKKVN1S:54996 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 0, mss: 1460, sackopt: 0, tsopt: 0, wsopt: 0, rcvwin: 64240, rcvwinscale: 0, sndwinscale: 0, seqnum: 0, connid: 0 98 12:56:08,9100449 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54996 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40962160, endtime: 40962160, seqnum: 0, connid: 0 98 12:56:08,9226399 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54996 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40962161, endtime: 40962161, seqnum: 0, connid: 0 98 12:56:08,9393436 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54996 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40962163, endtime: 40962163, seqnum: 0, connid: 0 98 12:56:08,9707271 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54996 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40962166, endtime: 40962166, seqnum: 0, connid: 0 98 12:56:08,9864825 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54996 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40962167, endtime: 40962167, seqnum: 0, connid: 0 98 12:56:08,9968843 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54963 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40961815, endtime: 40962168, seqnum: 0, connid: 0 98 12:56:08,9969026 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54963 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40961816, endtime: 40962168, seqnum: 0, connid: 0 98 12:56:08,9969100 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54963 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40961817, endtime: 40962168, seqnum: 0, connid: 0 98 12:56:08,9969175 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54963 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40961819, endtime: 40962168, seqnum: 0, connid: 0 98 12:56:08,9969233 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54963 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40961820, endtime: 40962168, seqnum: 0, connid: 0 98 12:56:08,9969300 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54963 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40961822, endtime: 40962168, seqnum: 0, connid: 0 98 12:56:08,9969358 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54963 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40961823, endtime: 40962168, seqnum: 0, connid: 0 98 12:56:08,9969425 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54963 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40961825, endtime: 40962168, seqnum: 0, connid: 0 98 12:56:08,9969480 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54963 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40961827, endtime: 40962168, seqnum: 0, connid: 0 98 12:56:08,9970283 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54963 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40961828, endtime: 40962168, seqnum: 0, connid: 0 98 12:56:08,9970358 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54963 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40961831, endtime: 40962168, seqnum: 0, connid: 0 98 12:56:08,9970425 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54963 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40961837, endtime: 40962168, seqnum: 0, connid: 0 98 12:56:08,9970569 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54950 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40961958, endtime: 40962168, seqnum: 0, connid: 0 98 12:56:08,9970638 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54950 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40961959, endtime: 40962168, seqnum: 0, connid: 0 98 12:56:08,9970693 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54950 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40961962, endtime: 40962168, seqnum: 0, connid: 0 98 12:56:08,9970757 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54950 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40961964, endtime: 40962168, seqnum: 0, connid: 0 98 12:56:08,9970813 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54950 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40961967, endtime: 40962168, seqnum: 0, connid: 0 98 12:56:08,9971785 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54950 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40961970, endtime: 40962168, seqnum: 0, connid: 0 98 12:56:08,9971854 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54950 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40961972, endtime: 40962168, seqnum: 0, connid: 0 98 12:56:08,9971921 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54950 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40961975, endtime: 40962168, seqnum: 0, connid: 0 98 12:56:08,9971976 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54950 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40961977, endtime: 40962168, seqnum: 0, connid: 0 98 12:56:08,9972043 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54950 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40961978, endtime: 40962168, seqnum: 0, connid: 0 98 12:56:08,9972095 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54950 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40961980, endtime: 40962168, seqnum: 0, connid: 0 98 12:56:08,9972162 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54950 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40961981, endtime: 40962168, seqnum: 0, connid: 0 98 12:56:08,9972311 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54963 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40961837, endtime: 40962168, seqnum: 0, connid: 0 98 12:56:08,9973555 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54950 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40961983, endtime: 40962168, seqnum: 0, connid: 0 98 12:56:09,0292475 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54996 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40962170, endtime: 40962172, seqnum: 0, connid: 0 98 12:56:09,0516106 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54996 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40962174, endtime: 40962174, seqnum: 0, connid: 0 98 12:56:09,0634370 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54996 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40962175, endtime: 40962175, seqnum: 0, connid: 0 98 12:56:09,0834862 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54996 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40962176, endtime: 40962177, seqnum: 0, connid: 0 98 12:56:09,1031574 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54996 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40962178, endtime: 40962179, seqnum: 0, connid: 0 98 12:56:09,1120213 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54996 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40962180, endtime: 40962180, seqnum: 0, connid: 0 98 12:56:09,1272893 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54996 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40962181, endtime: 40962181, seqnum: 0, connid: 0 98 12:56:09,1428543 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54996 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40962183, endtime: 40962183, seqnum: 0, connid: 0 98 12:56:09,1585454 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54996 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40962184, endtime: 40962184, seqnum: 0, connid: 0 98 12:56:09,1749113 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54996 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40962186, endtime: 40962186, seqnum: 0, connid: 0 98 12:56:09,2068138 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54996 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40962189, endtime: 40962189, seqnum: 0, connid: 0 98 12:56:09,2416079 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54996 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40962192, endtime: 40962193, seqnum: 0, connid: 0 98 12:56:09,2416281 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54931 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40962088, endtime: 40962193, seqnum: 0, connid: 0 98 12:56:09,2416367 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54931 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40962089, endtime: 40962193, seqnum: 0, connid: 0 98 12:56:09,2416433 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54931 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40962091, endtime: 40962193, seqnum: 0, connid: 0 98 12:56:09,2416503 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54931 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40962092, endtime: 40962193, seqnum: 0, connid: 0 98 12:56:09,2416558 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54931 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40962095, endtime: 40962193, seqnum: 0, connid: 0 98 12:56:09,2416625 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54931 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40962097, endtime: 40962193, seqnum: 0, connid: 0 98 12:56:09,2416677 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54931 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40962098, endtime: 40962193, seqnum: 0, connid: 0 98 12:56:09,2416744 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54931 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40962102, endtime: 40962193, seqnum: 0, connid: 0 98 12:56:09,2416988 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54931 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40962105, endtime: 40962193, seqnum: 0, connid: 0 98 12:56:09,2417057 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54931 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40962106, endtime: 40962193, seqnum: 0, connid: 0 98 12:56:09,2417109 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54931 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40962108, endtime: 40962193, seqnum: 0, connid: 0 98 12:56:09,2417176 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54931 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40962111, endtime: 40962193, seqnum: 0, connid: 0 98 12:56:09,2417229 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54931 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40962113, endtime: 40962193, seqnum: 0, connid: 0 98 12:56:09,2512070 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54996 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40962194, endtime: 40962194, seqnum: 0, connid: 0 98 12:56:09,2671932 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54996 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40962195, endtime: 40962195, seqnum: 0, connid: 0 98 12:56:09,2847186 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54996 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40962197, endtime: 40962197, seqnum: 0, connid: 0 98 12:56:09,3151108 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54996 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40962200, endtime: 40962200, seqnum: 0, connid: 0 98 12:56:09,3497545 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54996 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40962203, endtime: 40962204, seqnum: 0, connid: 0 98 12:56:09,3884135 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54996 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40962206, endtime: 40962207, seqnum: 0, connid: 0 98 12:56:09,4073561 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54996 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40962209, endtime: 40962209, seqnum: 0, connid: 0 98 12:56:09,4239587 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54996 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40962211, endtime: 40962211, seqnum: 0, connid: 0 98 12:56:09,7244163 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54996 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40962214, endtime: 40962241, seqnum: 0, connid: 0 98 12:56:09,7244343 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54996 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40962216, endtime: 40962241, seqnum: 0, connid: 0 98 12:56:09,7244418 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54996 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40962219, endtime: 40962241, seqnum: 0, connid: 0 98 12:56:09,7244490 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54996 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40962220, endtime: 40962241, seqnum: 0, connid: 0 98 12:56:09,7244545 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54996 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40962224, endtime: 40962241, seqnum: 0, connid: 0 98 12:56:09,7244612 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54996 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40962225, endtime: 40962241, seqnum: 0, connid: 0 98 12:56:09,7244664 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54996 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40962227, endtime: 40962241, seqnum: 0, connid: 0 98 12:56:09,7244731 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54996 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40962228, endtime: 40962241, seqnum: 0, connid: 0 98 12:56:09,7244783 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54996 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40962231, endtime: 40962241, seqnum: 0, connid: 0 98 12:56:09,7245035 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54996 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40962233, endtime: 40962241, seqnum: 0, connid: 0 98 12:56:09,7245091 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54996 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40962238, endtime: 40962241, seqnum: 0, connid: 0 98 12:56:09,7245157 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54996 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40962239, endtime: 40962241, seqnum: 0, connid: 0 98 12:56:09,7245337 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54996 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40962241, endtime: 40962241, seqnum: 0, connid: 0 98 12:56:09,7536637 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54959 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40961927, endtime: 40962244, seqnum: 0, connid: 0 98 12:56:09,7536809 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54959 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40961930, endtime: 40962244, seqnum: 0, connid: 0 98 12:56:09,7536897 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54959 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40961931, endtime: 40962244, seqnum: 0, connid: 0 98 12:56:09,7536967 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54959 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40961936, endtime: 40962244, seqnum: 0, connid: 0 98 12:56:09,7537036 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54959 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40961938, endtime: 40962244, seqnum: 0, connid: 0 98 12:56:09,7537094 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54959 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40961939, endtime: 40962244, seqnum: 0, connid: 0 98 12:56:09,7537161 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54959 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40961941, endtime: 40962244, seqnum: 0, connid: 0 98 12:56:09,7537219 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54959 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40961943, endtime: 40962244, seqnum: 0, connid: 0 98 12:56:09,7537288 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54959 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40961945, endtime: 40962244, seqnum: 0, connid: 0 98 12:56:09,7537875 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54959 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40961947, endtime: 40962244, seqnum: 0, connid: 0 98 12:56:09,7537964 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54959 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40961949, endtime: 40962244, seqnum: 0, connid: 0 98 12:56:09,7538147 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54959 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40961950, endtime: 40962244, seqnum: 0, connid: 0 98 12:56:10,0870530 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54959 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40961952, endtime: 40962277, seqnum: 0, connid: 0 98 12:56:10,0870729 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54959 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40962244, endtime: 40962277, seqnum: 0, connid: 0 98 12:56:10,0870821 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54959 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40962247, endtime: 40962277, seqnum: 0, connid: 0 98 12:56:10,0870885 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54959 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40962248, endtime: 40962277, seqnum: 0, connid: 0 98 12:56:10,0870957 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54959 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40962252, endtime: 40962277, seqnum: 0, connid: 0 98 12:56:10,0871026 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54959 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40962255, endtime: 40962277, seqnum: 0, connid: 0 98 12:56:10,0871084 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54959 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40962258, endtime: 40962277, seqnum: 0, connid: 0 98 12:56:10,0871153 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54959 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40962259, endtime: 40962277, seqnum: 0, connid: 0 98 12:56:10,0871209 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54959 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40962261, endtime: 40962277, seqnum: 0, connid: 0 98 12:56:10,0871508 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54959 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40962264, endtime: 40962277, seqnum: 0, connid: 0 98 12:56:10,0871572 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54959 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40962266, endtime: 40962277, seqnum: 0, connid: 0 98 12:56:10,0871638 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54959 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40962267, endtime: 40962277, seqnum: 0, connid: 0 98 12:56:10,0871696 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54959 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40962269, endtime: 40962277, seqnum: 0, connid: 0 98 12:56:10,6508080 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54935 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40961884, endtime: 40962334, seqnum: 0, connid: 0 98 12:56:10,6508269 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54935 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40961886, endtime: 40962334, seqnum: 0, connid: 0 98 12:56:10,6508349 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54935 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40961888, endtime: 40962334, seqnum: 0, connid: 0 98 12:56:10,6508427 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54935 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40961891, endtime: 40962334, seqnum: 0, connid: 0 98 12:56:10,6508485 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54935 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40961892, endtime: 40962334, seqnum: 0, connid: 0 98 12:56:10,6508554 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54935 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40961895, endtime: 40962334, seqnum: 0, connid: 0 98 12:56:10,6508612 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54935 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40961897, endtime: 40962334, seqnum: 0, connid: 0 98 12:56:10,6508679 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54935 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40961898, endtime: 40962334, seqnum: 0, connid: 0 98 12:56:10,6508737 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54935 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40961901, endtime: 40962334, seqnum: 0, connid: 0 98 12:56:10,6509036 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54935 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40961905, endtime: 40962334, seqnum: 0, connid: 0 98 12:56:10,6509097 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54935 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40961906, endtime: 40962334, seqnum: 0, connid: 0 98 12:56:10,6509164 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54935 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40961908, endtime: 40962334, seqnum: 0, connid: 0 98 12:56:10,6509224 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54935 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40961909, endtime: 40962334, seqnum: 0, connid: 0 98 12:56:11,1891207 MCLauncher.exe 6080 TCP TCPCopy WIN-0UOTFKKVN1S:54920 -> sheltex.company:8000 SUCCESS Length: 2, seqnum: 0, connid: 0 98 12:56:11,1891324 MCLauncher.exe 6080 TCP Receive WIN-0UOTFKKVN1S:54920 -> sheltex.company:8000 SUCCESS Length: 2, seqnum: 0, connid: 0 98 12:56:11,1906359 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54920 -> sheltex.company:8000 SUCCESS Length: 2, startime: 40962388, endtime: 40962388, seqnum: 0, connid: 0 98 12:56:11,5105046 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54963 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40962168, endtime: 40962420, seqnum: 0, connid: 0 98 12:56:11,5105318 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54963 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40962170, endtime: 40962420, seqnum: 0, connid: 0 98 12:56:11,5105412 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54963 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40962174, endtime: 40962420, seqnum: 0, connid: 0 98 12:56:11,5105501 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54963 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40962175, endtime: 40962420, seqnum: 0, connid: 0 98 12:56:11,5105567 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54963 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40962176, endtime: 40962420, seqnum: 0, connid: 0 98 12:56:11,5105642 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54963 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40962178, endtime: 40962420, seqnum: 0, connid: 0 98 12:56:11,5105706 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54963 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40962180, endtime: 40962420, seqnum: 0, connid: 0 98 12:56:11,5105780 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54963 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40962181, endtime: 40962420, seqnum: 0, connid: 0 98 12:56:11,5105844 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54963 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40962183, endtime: 40962420, seqnum: 0, connid: 0 98 12:56:11,5106179 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54963 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40962184, endtime: 40962420, seqnum: 0, connid: 0 98 12:56:11,5106240 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54963 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40962186, endtime: 40962420, seqnum: 0, connid: 0 98 12:56:11,5106312 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54963 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40962189, endtime: 40962420, seqnum: 0, connid: 0 98 12:56:11,5106371 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54963 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40962193, endtime: 40962420, seqnum: 0, connid: 0 98 12:56:11,5252335 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54931 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40962193, endtime: 40962421, seqnum: 0, connid: 0 98 12:56:11,5252520 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54931 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40962194, endtime: 40962421, seqnum: 0, connid: 0 98 12:56:11,5252601 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54931 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40962195, endtime: 40962421, seqnum: 0, connid: 0 98 12:56:11,5252678 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54931 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40962197, endtime: 40962421, seqnum: 0, connid: 0 98 12:56:11,5252739 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54931 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40962200, endtime: 40962421, seqnum: 0, connid: 0 98 12:56:11,5252811 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54931 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40962201, endtime: 40962421, seqnum: 0, connid: 0 98 12:56:11,5252872 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54931 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40962203, endtime: 40962421, seqnum: 0, connid: 0 98 12:56:11,5252944 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54931 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40962206, endtime: 40962421, seqnum: 0, connid: 0 98 12:56:11,5253005 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54931 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40962209, endtime: 40962421, seqnum: 0, connid: 0 98 12:56:11,5253313 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54931 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40962211, endtime: 40962421, seqnum: 0, connid: 0 98 12:56:11,5253377 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54931 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40962214, endtime: 40962421, seqnum: 0, connid: 0 98 12:56:11,5253449 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54931 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40962216, endtime: 40962421, seqnum: 0, connid: 0 98 12:56:11,5253509 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54931 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40962219, endtime: 40962421, seqnum: 0, connid: 0 98 12:56:12,2311424 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54950 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40962168, endtime: 40962492, seqnum: 0, connid: 0 98 12:56:12,2311634 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54950 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40962170, endtime: 40962492, seqnum: 0, connid: 0 98 12:56:12,2311720 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54950 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40962174, endtime: 40962492, seqnum: 0, connid: 0 98 12:56:12,2311800 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54950 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40962175, endtime: 40962492, seqnum: 0, connid: 0 98 12:56:12,2311864 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54950 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40962176, endtime: 40962492, seqnum: 0, connid: 0 98 12:56:12,2311939 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54950 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40962178, endtime: 40962492, seqnum: 0, connid: 0 98 12:56:12,2311997 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54950 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40962180, endtime: 40962492, seqnum: 0, connid: 0 98 12:56:12,2312069 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54950 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40962181, endtime: 40962492, seqnum: 0, connid: 0 98 12:56:12,2312127 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54950 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40962183, endtime: 40962492, seqnum: 0, connid: 0 98 12:56:12,2312934 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54950 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40962184, endtime: 40962492, seqnum: 0, connid: 0 98 12:56:12,2313014 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54950 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40962186, endtime: 40962492, seqnum: 0, connid: 0 98 12:56:12,2313089 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54950 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40962189, endtime: 40962492, seqnum: 0, connid: 0 98 12:56:12,2314294 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54950 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40962193, endtime: 40962492, seqnum: 0, connid: 0 98 12:56:13,3930550 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54963 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40962420, endtime: 40962608, seqnum: 0, connid: 0 98 12:56:13,3930736 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54963 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40962422, endtime: 40962608, seqnum: 0, connid: 0 98 12:56:13,3930813 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54963 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40962425, endtime: 40962608, seqnum: 0, connid: 0 98 12:56:13,3930897 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54963 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40962427, endtime: 40962608, seqnum: 0, connid: 0 98 12:56:13,3930958 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54963 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40962429, endtime: 40962608, seqnum: 0, connid: 0 98 12:56:13,3931032 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54963 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40962431, endtime: 40962608, seqnum: 0, connid: 0 98 12:56:13,3931096 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54963 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40962433, endtime: 40962608, seqnum: 0, connid: 0 98 12:56:13,3931174 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54963 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40962435, endtime: 40962608, seqnum: 0, connid: 0 98 12:56:13,3931232 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54963 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40962436, endtime: 40962608, seqnum: 0, connid: 0 98 12:56:13,3931595 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54963 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40962438, endtime: 40962608, seqnum: 0, connid: 0 98 12:56:13,3931653 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54963 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40962439, endtime: 40962608, seqnum: 0, connid: 0 98 12:56:13,3931722 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54963 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40962441, endtime: 40962608, seqnum: 0, connid: 0 98 12:56:13,3931778 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54963 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40962442, endtime: 40962608, seqnum: 0, connid: 0 98 12:56:14,5270582 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54935 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40962334, endtime: 40962721, seqnum: 0, connid: 0 98 12:56:14,5270737 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54935 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40962334, endtime: 40962721, seqnum: 0, connid: 0 98 12:56:14,5270814 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54935 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40962336, endtime: 40962721, seqnum: 0, connid: 0 98 12:56:14,5270892 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54935 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40962339, endtime: 40962721, seqnum: 0, connid: 0 98 12:56:14,5270956 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54935 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40962341, endtime: 40962721, seqnum: 0, connid: 0 98 12:56:14,5271025 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54935 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40962342, endtime: 40962721, seqnum: 0, connid: 0 98 12:56:14,5271083 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54935 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40962345, endtime: 40962721, seqnum: 0, connid: 0 98 12:56:14,5271155 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54935 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40962347, endtime: 40962721, seqnum: 0, connid: 0 98 12:56:14,5271213 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54935 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40962348, endtime: 40962721, seqnum: 0, connid: 0 98 12:56:14,5271513 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54935 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40962352, endtime: 40962721, seqnum: 0, connid: 0 98 12:56:14,5271576 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54935 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40962353, endtime: 40962721, seqnum: 0, connid: 0 98 12:56:14,5271646 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54935 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40962355, endtime: 40962721, seqnum: 0, connid: 0 98 12:56:14,5271707 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54935 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40962356, endtime: 40962721, seqnum: 0, connid: 0 98 12:56:15,2424792 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54959 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40962277, endtime: 40962793, seqnum: 0, connid: 0 98 12:56:15,2424947 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54959 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40962278, endtime: 40962793, seqnum: 0, connid: 0 98 12:56:15,2425028 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54959 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40962280, endtime: 40962793, seqnum: 0, connid: 0 98 12:56:15,2425091 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54959 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40962281, endtime: 40962793, seqnum: 0, connid: 0 98 12:56:15,2425158 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54959 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40962283, endtime: 40962793, seqnum: 0, connid: 0 98 12:56:15,2425213 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54959 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40962284, endtime: 40962793, seqnum: 0, connid: 0 98 12:56:15,2425283 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54959 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40962286, endtime: 40962793, seqnum: 0, connid: 0 98 12:56:15,2425335 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54959 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40962287, endtime: 40962793, seqnum: 0, connid: 0 98 12:56:15,2425402 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54959 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40962291, endtime: 40962793, seqnum: 0, connid: 0 98 12:56:15,2425695 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54959 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40962292, endtime: 40962793, seqnum: 0, connid: 0 98 12:56:15,2425767 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54959 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40962294, endtime: 40962793, seqnum: 0, connid: 0 98 12:56:15,2425820 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54959 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40962295, endtime: 40962793, seqnum: 0, connid: 0 98 12:56:15,2425889 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54959 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40962297, endtime: 40962793, seqnum: 0, connid: 0 98 12:56:15,3224343 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54931 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40962421, endtime: 40962801, seqnum: 0, connid: 0 98 12:56:15,3224575 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54931 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40962422, endtime: 40962801, seqnum: 0, connid: 0 98 12:56:15,3224678 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54931 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40962425, endtime: 40962801, seqnum: 0, connid: 0 98 12:56:15,3224758 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54931 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40962427, endtime: 40962801, seqnum: 0, connid: 0 98 12:56:15,3224816 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54931 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40962429, endtime: 40962801, seqnum: 0, connid: 0 98 12:56:15,3224888 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54931 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40962431, endtime: 40962801, seqnum: 0, connid: 0 98 12:56:15,3224944 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54931 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40962433, endtime: 40962801, seqnum: 0, connid: 0 98 12:56:15,3225010 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54931 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40962435, endtime: 40962801, seqnum: 0, connid: 0 98 12:56:15,3225069 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54931 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40962436, endtime: 40962801, seqnum: 0, connid: 0 98 12:56:15,3225376 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54931 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40962438, endtime: 40962801, seqnum: 0, connid: 0 98 12:56:15,3225434 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54931 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40962439, endtime: 40962801, seqnum: 0, connid: 0 98 12:56:15,3225501 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54931 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40962441, endtime: 40962801, seqnum: 0, connid: 0 98 12:56:15,3225556 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54931 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40962442, endtime: 40962801, seqnum: 0, connid: 0 98 12:56:15,8004607 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54950 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40962492, endtime: 40962849, seqnum: 0, connid: 0 98 12:56:15,8004795 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54950 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40962494, endtime: 40962849, seqnum: 0, connid: 0 98 12:56:15,8004873 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54950 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40962495, endtime: 40962849, seqnum: 0, connid: 0 98 12:56:15,8004950 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54950 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40962497, endtime: 40962849, seqnum: 0, connid: 0 98 12:56:15,8005009 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54950 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40962498, endtime: 40962849, seqnum: 0, connid: 0 98 12:56:15,8005081 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54950 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40962500, endtime: 40962849, seqnum: 0, connid: 0 98 12:56:15,8005139 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54950 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40962501, endtime: 40962849, seqnum: 0, connid: 0 98 12:56:15,8005211 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54950 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40962503, endtime: 40962849, seqnum: 0, connid: 0 98 12:56:15,8005269 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54950 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40962506, endtime: 40962849, seqnum: 0, connid: 0 98 12:56:15,8005601 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54950 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40962508, endtime: 40962849, seqnum: 0, connid: 0 98 12:56:15,8005660 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54950 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40962508, endtime: 40962849, seqnum: 0, connid: 0 98 12:56:15,8005726 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54950 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40962509, endtime: 40962849, seqnum: 0, connid: 0 98 12:56:15,8005781 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54950 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40962509, endtime: 40962849, seqnum: 0, connid: 0 98 12:56:15,9203367 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54996 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40962242, endtime: 40962861, seqnum: 0, connid: 0 98 12:56:15,9203539 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54996 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40962244, endtime: 40962861, seqnum: 0, connid: 0 98 12:56:15,9203631 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54996 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40962247, endtime: 40962861, seqnum: 0, connid: 0 98 12:56:15,9203697 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54996 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40962248, endtime: 40962861, seqnum: 0, connid: 0 98 12:56:15,9203769 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54996 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40962252, endtime: 40962861, seqnum: 0, connid: 0 98 12:56:15,9203827 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54996 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40962255, endtime: 40962861, seqnum: 0, connid: 0 98 12:56:15,9203897 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54996 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40962258, endtime: 40962861, seqnum: 0, connid: 0 98 12:56:15,9203955 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54996 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40962259, endtime: 40962861, seqnum: 0, connid: 0 98 12:56:15,9204021 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54996 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40962261, endtime: 40962861, seqnum: 0, connid: 0 98 12:56:15,9204320 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54996 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40962264, endtime: 40962861, seqnum: 0, connid: 0 98 12:56:15,9204392 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54996 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40962266, endtime: 40962861, seqnum: 0, connid: 0 98 12:56:15,9204647 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54996 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40962267, endtime: 40962861, seqnum: 0, connid: 0 98 12:56:15,9204794 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54996 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40962269, endtime: 40962861, seqnum: 0, connid: 0 98 12:56:16,2403512 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54963 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40962608, endtime: 40962893, seqnum: 0, connid: 0 98 12:56:16,2403708 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54963 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40962609, endtime: 40962893, seqnum: 0, connid: 0 98 12:56:16,2403789 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54963 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40962611, endtime: 40962893, seqnum: 0, connid: 0 98 12:56:16,2403869 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54963 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40962613, endtime: 40962893, seqnum: 0, connid: 0 98 12:56:16,2403935 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54963 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40962616, endtime: 40962893, seqnum: 0, connid: 0 98 12:56:16,2404007 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54963 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40962617, endtime: 40962893, seqnum: 0, connid: 0 98 12:56:16,2404071 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54963 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40962620, endtime: 40962893, seqnum: 0, connid: 0 98 12:56:16,2404143 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54963 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40962622, endtime: 40962893, seqnum: 0, connid: 0 98 12:56:16,2404204 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54963 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40962624, endtime: 40962893, seqnum: 0, connid: 0 98 12:56:16,2404506 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54963 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40962625, endtime: 40962893, seqnum: 0, connid: 0 98 12:56:16,2404570 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54963 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40962627, endtime: 40962893, seqnum: 0, connid: 0 98 12:56:16,2404639 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54963 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40962628, endtime: 40962893, seqnum: 0, connid: 0 98 12:56:16,2404700 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54963 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40962630, endtime: 40962893, seqnum: 0, connid: 0 98 12:56:16,7409997 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54935 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40962721, endtime: 40962943, seqnum: 0, connid: 0 98 12:56:16,7410153 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54935 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40962723, endtime: 40962943, seqnum: 0, connid: 0 98 12:56:16,7410222 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54935 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40962725, endtime: 40962943, seqnum: 0, connid: 0 98 12:56:16,7410294 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54935 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40962728, endtime: 40962943, seqnum: 0, connid: 0 98 12:56:16,7410349 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54935 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40962730, endtime: 40962943, seqnum: 0, connid: 0 98 12:56:16,7410416 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54935 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40962731, endtime: 40962943, seqnum: 0, connid: 0 98 12:56:16,7410468 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54935 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40962733, endtime: 40962943, seqnum: 0, connid: 0 98 12:56:16,7410535 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54935 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40962734, endtime: 40962943, seqnum: 0, connid: 0 98 12:56:16,7410588 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54935 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40962736, endtime: 40962943, seqnum: 0, connid: 0 98 12:56:16,7410887 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54935 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40962737, endtime: 40962943, seqnum: 0, connid: 0 98 12:56:16,7410942 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54935 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40962739, endtime: 40962943, seqnum: 0, connid: 0 98 12:56:16,7411006 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54935 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40962741, endtime: 40962943, seqnum: 0, connid: 0 98 12:56:16,7411061 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54935 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40962742, endtime: 40962943, seqnum: 0, connid: 0 98 12:56:17,5707892 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54950 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40962849, endtime: 40963026, seqnum: 0, connid: 0 98 12:56:17,5708053 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54950 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40962850, endtime: 40963026, seqnum: 0, connid: 0 98 12:56:17,5708122 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54950 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40962853, endtime: 40963026, seqnum: 0, connid: 0 98 12:56:17,5708197 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54950 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40962855, endtime: 40963026, seqnum: 0, connid: 0 98 12:56:17,5708255 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54950 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40962856, endtime: 40963026, seqnum: 0, connid: 0 98 12:56:17,5708325 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54950 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40962858, endtime: 40963026, seqnum: 0, connid: 0 98 12:56:17,5708380 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54950 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40962859, endtime: 40963026, seqnum: 0, connid: 0 98 12:56:17,5708447 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54950 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40962861, endtime: 40963026, seqnum: 0, connid: 0 98 12:56:17,5708502 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54950 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40962862, endtime: 40963026, seqnum: 0, connid: 0 98 12:56:17,5708807 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54950 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40962864, endtime: 40963026, seqnum: 0, connid: 0 98 12:56:17,5708865 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54950 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40962866, endtime: 40963026, seqnum: 0, connid: 0 98 12:56:17,5708931 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54950 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40962867, endtime: 40963026, seqnum: 0, connid: 0 98 12:56:17,5708987 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54950 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40962869, endtime: 40963026, seqnum: 0, connid: 0 98 12:56:18,1161331 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54996 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40962861, endtime: 40963080, seqnum: 0, connid: 0 98 12:56:18,1161486 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54996 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40962862, endtime: 40963080, seqnum: 0, connid: 0 98 12:56:18,1161555 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54996 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40962864, endtime: 40963080, seqnum: 0, connid: 0 98 12:56:18,1161627 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54996 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40962866, endtime: 40963080, seqnum: 0, connid: 0 98 12:56:18,1161685 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54996 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40962867, endtime: 40963080, seqnum: 0, connid: 0 98 12:56:18,1161752 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54996 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40962869, endtime: 40963080, seqnum: 0, connid: 0 98 12:56:18,1161807 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54996 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40962870, endtime: 40963080, seqnum: 0, connid: 0 98 12:56:18,1161871 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54996 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40962872, endtime: 40963080, seqnum: 0, connid: 0 98 12:56:18,1161926 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54996 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40962873, endtime: 40963080, seqnum: 0, connid: 0 98 12:56:18,1162209 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54996 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40962875, endtime: 40963080, seqnum: 0, connid: 0 98 12:56:18,1162267 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54996 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40962877, endtime: 40963080, seqnum: 0, connid: 0 98 12:56:18,1162331 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54996 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40962878, endtime: 40963080, seqnum: 0, connid: 0 98 12:56:18,1162389 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54996 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40962880, endtime: 40963080, seqnum: 0, connid: 0 98 12:56:18,4045376 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54931 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40962801, endtime: 40963109, seqnum: 0, connid: 0 98 12:56:18,4045562 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54931 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40962803, endtime: 40963109, seqnum: 0, connid: 0 98 12:56:18,4045642 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54931 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40962805, endtime: 40963109, seqnum: 0, connid: 0 98 12:56:18,4045722 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54931 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40962806, endtime: 40963109, seqnum: 0, connid: 0 98 12:56:18,4045786 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54931 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40962808, endtime: 40963109, seqnum: 0, connid: 0 98 12:56:18,4045858 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54931 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40962811, endtime: 40963109, seqnum: 0, connid: 0 98 12:56:18,4045922 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54931 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40962813, endtime: 40963109, seqnum: 0, connid: 0 98 12:56:18,4045994 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54931 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40962816, endtime: 40963109, seqnum: 0, connid: 0 98 12:56:18,4046052 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54931 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40962819, endtime: 40963109, seqnum: 0, connid: 0 98 12:56:18,4046354 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54931 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40962820, endtime: 40963109, seqnum: 0, connid: 0 98 12:56:18,4046421 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54931 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40962822, endtime: 40963109, seqnum: 0, connid: 0 98 12:56:18,4046490 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54931 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40962824, endtime: 40963109, seqnum: 0, connid: 0 98 12:56:18,4046551 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54931 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40962825, endtime: 40963109, seqnum: 0, connid: 0 98 12:56:19,1112062 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54959 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40962793, endtime: 40963180, seqnum: 0, connid: 0 98 12:56:19,1112261 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54959 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40962794, endtime: 40963180, seqnum: 0, connid: 0 98 12:56:19,1112342 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54959 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40962795, endtime: 40963180, seqnum: 0, connid: 0 98 12:56:19,1112419 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54959 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40962797, endtime: 40963180, seqnum: 0, connid: 0 98 12:56:19,1112477 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54959 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40962798, endtime: 40963180, seqnum: 0, connid: 0 98 12:56:19,1112549 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54959 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40962800, endtime: 40963180, seqnum: 0, connid: 0 98 12:56:19,1112605 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54959 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40962800, endtime: 40963180, seqnum: 0, connid: 0 98 12:56:19,1112677 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54959 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40962803, endtime: 40963180, seqnum: 0, connid: 0 98 12:56:19,1112732 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54959 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40962805, endtime: 40963180, seqnum: 0, connid: 0 98 12:56:19,1113048 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54959 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40962806, endtime: 40963180, seqnum: 0, connid: 0 98 12:56:19,1113109 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54959 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40962808, endtime: 40963180, seqnum: 0, connid: 0 98 12:56:19,1113178 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54959 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40962811, endtime: 40963180, seqnum: 0, connid: 0 98 12:56:19,1113239 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54959 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40962813, endtime: 40963180, seqnum: 0, connid: 0 98 12:56:20,1393825 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54996 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40963080, endtime: 40963283, seqnum: 0, connid: 0 98 12:56:20,1394050 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54996 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40963083, endtime: 40963283, seqnum: 0, connid: 0 98 12:56:20,1394163 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54996 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40963084, endtime: 40963283, seqnum: 0, connid: 0 98 12:56:20,1394285 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54996 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40963086, endtime: 40963283, seqnum: 0, connid: 0 98 12:56:20,1394382 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54996 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40963088, endtime: 40963283, seqnum: 0, connid: 0 98 12:56:20,1394487 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54996 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40963091, endtime: 40963283, seqnum: 0, connid: 0 98 12:56:20,1394545 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54996 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40963092, endtime: 40963283, seqnum: 0, connid: 0 98 12:56:20,1394617 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54996 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40963094, endtime: 40963283, seqnum: 0, connid: 0 98 12:56:20,1394676 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54996 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40963095, endtime: 40963283, seqnum: 0, connid: 0 98 12:56:20,1394991 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54996 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40963097, endtime: 40963283, seqnum: 0, connid: 0 98 12:56:20,1395050 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54996 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40963100, endtime: 40963283, seqnum: 0, connid: 0 98 12:56:20,1395116 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54996 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40963101, endtime: 40963283, seqnum: 0, connid: 0 98 12:56:20,1395172 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54996 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40963103, endtime: 40963283, seqnum: 0, connid: 0 98 12:56:20,8133128 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54950 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40963026, endtime: 40963350, seqnum: 0, connid: 0 98 12:56:20,8133294 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54950 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40963028, endtime: 40963350, seqnum: 0, connid: 0 98 12:56:20,8133363 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54950 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40963030, endtime: 40963350, seqnum: 0, connid: 0 98 12:56:20,8133438 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54950 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40963031, endtime: 40963350, seqnum: 0, connid: 0 98 12:56:20,8133490 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54950 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40963033, endtime: 40963350, seqnum: 0, connid: 0 98 12:56:20,8133554 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54950 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40963034, endtime: 40963350, seqnum: 0, connid: 0 98 12:56:20,8133610 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54950 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40963036, endtime: 40963350, seqnum: 0, connid: 0 98 12:56:20,8133673 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54950 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40963038, endtime: 40963350, seqnum: 0, connid: 0 98 12:56:20,8133726 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54950 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40963041, endtime: 40963350, seqnum: 0, connid: 0 98 12:56:20,8134505 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54950 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40963042, endtime: 40963350, seqnum: 0, connid: 0 98 12:56:20,8134571 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54950 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40963044, endtime: 40963350, seqnum: 0, connid: 0 98 12:56:20,8134637 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54950 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40963047, endtime: 40963350, seqnum: 0, connid: 0 98 12:56:20,8136364 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54950 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40963049, endtime: 40963350, seqnum: 0, connid: 0 98 12:56:20,8968781 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54963 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40962893, endtime: 40963358, seqnum: 0, connid: 0 98 12:56:20,8968964 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54963 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40962894, endtime: 40963358, seqnum: 0, connid: 0 98 12:56:20,8969044 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54963 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40962895, endtime: 40963358, seqnum: 0, connid: 0 98 12:56:20,8969125 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54963 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40962897, endtime: 40963358, seqnum: 0, connid: 0 98 12:56:20,8969188 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54963 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40962898, endtime: 40963358, seqnum: 0, connid: 0 98 12:56:20,8969263 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54963 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40962900, endtime: 40963358, seqnum: 0, connid: 0 98 12:56:20,8969324 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54963 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40962901, endtime: 40963358, seqnum: 0, connid: 0 98 12:56:20,8969396 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54963 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40962902, endtime: 40963358, seqnum: 0, connid: 0 98 12:56:20,8969454 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54963 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40962905, endtime: 40963358, seqnum: 0, connid: 0 98 12:56:20,8969759 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54963 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40962906, endtime: 40963358, seqnum: 0, connid: 0 98 12:56:20,8969820 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54963 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40962908, endtime: 40963358, seqnum: 0, connid: 0 98 12:56:20,8969892 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54963 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40962911, endtime: 40963358, seqnum: 0, connid: 0 98 12:56:20,8969953 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54963 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40962912, endtime: 40963358, seqnum: 0, connid: 0 98 12:56:21,1379263 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54935 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40962943, endtime: 40963382, seqnum: 0, connid: 0 98 12:56:21,1379446 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54935 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40962944, endtime: 40963382, seqnum: 0, connid: 0 98 12:56:21,1379523 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54935 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40962945, endtime: 40963382, seqnum: 0, connid: 0 98 12:56:21,1379601 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54935 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40962947, endtime: 40963382, seqnum: 0, connid: 0 98 12:56:21,1379662 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54935 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40962948, endtime: 40963382, seqnum: 0, connid: 0 98 12:56:21,1379734 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54935 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40962951, endtime: 40963382, seqnum: 0, connid: 0 98 12:56:21,1379792 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54935 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40962953, endtime: 40963382, seqnum: 0, connid: 0 98 12:56:21,1379859 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54935 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40962955, endtime: 40963382, seqnum: 0, connid: 0 98 12:56:21,1379917 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54935 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40962956, endtime: 40963382, seqnum: 0, connid: 0 98 12:56:21,1380216 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54935 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40962958, endtime: 40963382, seqnum: 0, connid: 0 98 12:56:21,1380277 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54935 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40962959, endtime: 40963382, seqnum: 0, connid: 0 98 12:56:21,1380346 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54935 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40962961, endtime: 40963382, seqnum: 0, connid: 0 98 12:56:21,1380404 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54935 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40962964, endtime: 40963382, seqnum: 0, connid: 0 98 12:56:21,2019753 MCLauncher.exe 6080 TCP TCPCopy WIN-0UOTFKKVN1S:54920 -> sheltex.company:8000 SUCCESS Length: 2, seqnum: 0, connid: 0 98 12:56:21,2019875 MCLauncher.exe 6080 TCP Receive WIN-0UOTFKKVN1S:54920 -> sheltex.company:8000 SUCCESS Length: 2, seqnum: 0, connid: 0 98 12:56:21,2024369 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54920 -> sheltex.company:8000 SUCCESS Length: 2, startime: 40963389, endtime: 40963389, seqnum: 0, connid: 0 98 12:56:21,8076398 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54931 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40963109, endtime: 40963449, seqnum: 0, connid: 0 98 12:56:21,8076594 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54931 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40963111, endtime: 40963449, seqnum: 0, connid: 0 98 12:56:21,8076675 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54931 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40963112, endtime: 40963449, seqnum: 0, connid: 0 98 12:56:21,8076755 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54931 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40963116, endtime: 40963449, seqnum: 0, connid: 0 98 12:56:21,8076813 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54931 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40963117, endtime: 40963449, seqnum: 0, connid: 0 98 12:56:21,8076882 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54931 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40963119, endtime: 40963449, seqnum: 0, connid: 0 98 12:56:21,8076943 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54931 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40963122, endtime: 40963449, seqnum: 0, connid: 0 98 12:56:21,8077013 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54931 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40963124, endtime: 40963449, seqnum: 0, connid: 0 98 12:56:21,8077071 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54931 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40963126, endtime: 40963449, seqnum: 0, connid: 0 98 12:56:21,8077389 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54931 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40963129, endtime: 40963449, seqnum: 0, connid: 0 98 12:56:21,8077450 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54931 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40963131, endtime: 40963449, seqnum: 0, connid: 0 98 12:56:21,8077520 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54931 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40963135, endtime: 40963449, seqnum: 0, connid: 0 98 12:56:21,8077730 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54931 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40963138, endtime: 40963449, seqnum: 0, connid: 0 98 12:56:21,8933177 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54996 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40963283, endtime: 40963458, seqnum: 0, connid: 0 98 12:56:21,8933349 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54996 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40963284, endtime: 40963458, seqnum: 0, connid: 0 98 12:56:21,8933418 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54996 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40963286, endtime: 40963458, seqnum: 0, connid: 0 98 12:56:21,8933493 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54996 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40963287, endtime: 40963458, seqnum: 0, connid: 0 98 12:56:21,8933551 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54996 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40963289, endtime: 40963458, seqnum: 0, connid: 0 98 12:56:21,8933617 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54996 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40963291, endtime: 40963458, seqnum: 0, connid: 0 98 12:56:21,8933670 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54996 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40963292, endtime: 40963458, seqnum: 0, connid: 0 98 12:56:21,8933736 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54996 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40963294, endtime: 40963458, seqnum: 0, connid: 0 98 12:56:21,8933789 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54996 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40963295, endtime: 40963458, seqnum: 0, connid: 0 98 12:56:21,8934091 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54996 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40963299, endtime: 40963458, seqnum: 0, connid: 0 98 12:56:21,8934149 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54996 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40963300, endtime: 40963458, seqnum: 0, connid: 0 98 12:56:21,8934216 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54996 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40963301, endtime: 40963458, seqnum: 0, connid: 0 98 12:56:21,8941336 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54996 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40963303, endtime: 40963458, seqnum: 0, connid: 0 98 12:56:23,4030299 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54959 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40963180, endtime: 40963609, seqnum: 0, connid: 0 98 12:56:23,4030482 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54959 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40963183, endtime: 40963609, seqnum: 0, connid: 0 98 12:56:23,4030559 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54959 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40963184, endtime: 40963609, seqnum: 0, connid: 0 98 12:56:23,4030634 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54959 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40963186, endtime: 40963609, seqnum: 0, connid: 0 98 12:56:23,4030692 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54959 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40963187, endtime: 40963609, seqnum: 0, connid: 0 98 12:56:23,4030761 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54959 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40963189, endtime: 40963609, seqnum: 0, connid: 0 98 12:56:23,4030814 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54959 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40963191, endtime: 40963609, seqnum: 0, connid: 0 98 12:56:23,4030881 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54959 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40963192, endtime: 40963609, seqnum: 0, connid: 0 98 12:56:23,4030936 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54959 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40963194, endtime: 40963609, seqnum: 0, connid: 0 98 12:56:23,4031232 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54959 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40963195, endtime: 40963609, seqnum: 0, connid: 0 98 12:56:23,4031291 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54959 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40963197, endtime: 40963609, seqnum: 0, connid: 0 98 12:56:23,4031357 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54959 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40963198, endtime: 40963609, seqnum: 0, connid: 0 98 12:56:23,4031413 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54959 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40963200, endtime: 40963609, seqnum: 0, connid: 0 98 12:56:23,4869285 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54935 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40963382, endtime: 40963617, seqnum: 0, connid: 0 98 12:56:23,4869463 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54935 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40963384, endtime: 40963617, seqnum: 0, connid: 0 98 12:56:23,4869543 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54935 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40963386, endtime: 40963617, seqnum: 0, connid: 0 98 12:56:23,4869621 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54935 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40963387, endtime: 40963617, seqnum: 0, connid: 0 98 12:56:23,4869679 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54935 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40963389, endtime: 40963617, seqnum: 0, connid: 0 98 12:56:23,4869751 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54935 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40963391, endtime: 40963617, seqnum: 0, connid: 0 98 12:56:23,4869806 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54935 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40963392, endtime: 40963617, seqnum: 0, connid: 0 98 12:56:23,4869876 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54935 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40963394, endtime: 40963617, seqnum: 0, connid: 0 98 12:56:23,4869931 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54935 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40963395, endtime: 40963617, seqnum: 0, connid: 0 98 12:56:23,4870247 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54935 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40963397, endtime: 40963617, seqnum: 0, connid: 0 98 12:56:23,4870311 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54935 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40963398, endtime: 40963617, seqnum: 0, connid: 0 98 12:56:23,4870380 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54935 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40963400, endtime: 40963617, seqnum: 0, connid: 0 98 12:56:23,4870435 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54935 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40963401, endtime: 40963617, seqnum: 0, connid: 0 98 12:56:23,5743084 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54963 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40963358, endtime: 40963626, seqnum: 0, connid: 0 98 12:56:23,5743273 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54963 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40963359, endtime: 40963626, seqnum: 0, connid: 0 98 12:56:23,5743353 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54963 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40963361, endtime: 40963626, seqnum: 0, connid: 0 98 12:56:23,5743433 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54963 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40963363, endtime: 40963626, seqnum: 0, connid: 0 98 12:56:23,5743494 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54963 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40963366, endtime: 40963626, seqnum: 0, connid: 0 98 12:56:23,5743566 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54963 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40963371, endtime: 40963626, seqnum: 0, connid: 0 98 12:56:23,5743622 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54963 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40963373, endtime: 40963626, seqnum: 0, connid: 0 98 12:56:23,5743694 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54963 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40963374, endtime: 40963626, seqnum: 0, connid: 0 98 12:56:23,5743752 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54963 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40963375, endtime: 40963626, seqnum: 0, connid: 0 98 12:56:23,5744370 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54963 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40963376, endtime: 40963626, seqnum: 0, connid: 0 98 12:56:23,5744442 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54963 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40963378, endtime: 40963626, seqnum: 0, connid: 0 98 12:56:23,5744517 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54963 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40963380, endtime: 40963626, seqnum: 0, connid: 0 98 12:56:23,5744580 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54963 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40963381, endtime: 40963626, seqnum: 0, connid: 0 98 12:56:24,1608300 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54931 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40963449, endtime: 40963685, seqnum: 0, connid: 0 98 12:56:24,1608646 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54931 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40963451, endtime: 40963685, seqnum: 0, connid: 0 98 12:56:24,1608760 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54931 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40963453, endtime: 40963685, seqnum: 0, connid: 0 98 12:56:24,1608848 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54931 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40963455, endtime: 40963685, seqnum: 0, connid: 0 98 12:56:24,1608918 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54931 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40963456, endtime: 40963685, seqnum: 0, connid: 0 98 12:56:24,1608995 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54931 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40963458, endtime: 40963685, seqnum: 0, connid: 0 98 12:56:24,1609059 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54931 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40963461, endtime: 40963685, seqnum: 0, connid: 0 98 12:56:24,1609139 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54931 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40963462, endtime: 40963685, seqnum: 0, connid: 0 98 12:56:24,1609203 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54931 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40963464, endtime: 40963685, seqnum: 0, connid: 0 98 12:56:24,1609541 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54931 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40963466, endtime: 40963685, seqnum: 0, connid: 0 98 12:56:24,1609605 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54931 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40963467, endtime: 40963685, seqnum: 0, connid: 0 98 12:56:24,1609677 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54931 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40963469, endtime: 40963685, seqnum: 0, connid: 0 98 12:56:24,1609738 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54931 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40963470, endtime: 40963685, seqnum: 0, connid: 0 98 12:56:25,8309017 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54935 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40963617, endtime: 40963852, seqnum: 0, connid: 0 98 12:56:25,8309199 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54935 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40963619, endtime: 40963852, seqnum: 0, connid: 0 98 12:56:25,8309274 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54935 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40963622, endtime: 40963852, seqnum: 0, connid: 0 98 12:56:25,8309349 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54935 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40963623, endtime: 40963852, seqnum: 0, connid: 0 98 12:56:25,8309407 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54935 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40963625, endtime: 40963852, seqnum: 0, connid: 0 98 12:56:25,8309474 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54935 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40963626, endtime: 40963852, seqnum: 0, connid: 0 98 12:56:25,8309532 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54935 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40963628, endtime: 40963852, seqnum: 0, connid: 0 98 12:56:25,8309598 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54935 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40963631, endtime: 40963852, seqnum: 0, connid: 0 98 12:56:25,8309651 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54935 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40963635, endtime: 40963852, seqnum: 0, connid: 0 98 12:56:25,8309950 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54935 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40963639, endtime: 40963852, seqnum: 0, connid: 0 98 12:56:25,8310008 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54935 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40963641, endtime: 40963852, seqnum: 0, connid: 0 98 12:56:25,8310075 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54935 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40963642, endtime: 40963852, seqnum: 0, connid: 0 98 12:56:25,8310249 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54935 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40963644, endtime: 40963852, seqnum: 0, connid: 0 98 12:56:25,9187606 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54931 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40963685, endtime: 40963860, seqnum: 0, connid: 0 98 12:56:25,9187819 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54931 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40963686, endtime: 40963860, seqnum: 0, connid: 0 98 12:56:25,9187899 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54931 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40963687, endtime: 40963860, seqnum: 0, connid: 0 98 12:56:25,9187977 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54931 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40963691, endtime: 40963860, seqnum: 0, connid: 0 98 12:56:25,9188041 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54931 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40963692, endtime: 40963860, seqnum: 0, connid: 0 98 12:56:25,9188110 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54931 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40963694, endtime: 40963860, seqnum: 0, connid: 0 98 12:56:25,9188168 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54931 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40963695, endtime: 40963860, seqnum: 0, connid: 0 98 12:56:25,9188243 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54931 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40963697, endtime: 40963860, seqnum: 0, connid: 0 98 12:56:25,9188301 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54931 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40963700, endtime: 40963860, seqnum: 0, connid: 0 98 12:56:25,9188794 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54931 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40963703, endtime: 40963860, seqnum: 0, connid: 0 98 12:56:25,9188869 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54931 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40963706, endtime: 40963860, seqnum: 0, connid: 0 98 12:56:25,9188941 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54931 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40963708, endtime: 40963860, seqnum: 0, connid: 0 98 12:56:25,9189002 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54931 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40963709, endtime: 40963860, seqnum: 0, connid: 0 98 12:56:26,1315391 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54963 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40963626, endtime: 40963882, seqnum: 0, connid: 0 98 12:56:26,1315568 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54963 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40963628, endtime: 40963882, seqnum: 0, connid: 0 98 12:56:26,1315645 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54963 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40963631, endtime: 40963882, seqnum: 0, connid: 0 98 12:56:26,1315723 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54963 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40963635, endtime: 40963882, seqnum: 0, connid: 0 98 12:56:26,1315781 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54963 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40963639, endtime: 40963882, seqnum: 0, connid: 0 98 12:56:26,1315850 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54963 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40963641, endtime: 40963882, seqnum: 0, connid: 0 98 12:56:26,1315906 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54963 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40963642, endtime: 40963882, seqnum: 0, connid: 0 98 12:56:26,1315975 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54963 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40963644, endtime: 40963882, seqnum: 0, connid: 0 98 12:56:26,1316031 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54963 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40963647, endtime: 40963882, seqnum: 0, connid: 0 98 12:56:26,1316526 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54963 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40963648, endtime: 40963882, seqnum: 0, connid: 0 98 12:56:26,1316601 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54963 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40963650, endtime: 40963882, seqnum: 0, connid: 0 98 12:56:26,1316679 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54963 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40963653, endtime: 40963882, seqnum: 0, connid: 0 98 12:56:26,1316745 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54963 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40963655, endtime: 40963882, seqnum: 0, connid: 0 98 12:56:26,6562608 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54996 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40963458, endtime: 40963934, seqnum: 0, connid: 0 98 12:56:26,6562802 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54996 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40963461, endtime: 40963934, seqnum: 0, connid: 0 98 12:56:26,6562885 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54996 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40963462, endtime: 40963934, seqnum: 0, connid: 0 98 12:56:26,6562962 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54996 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40963464, endtime: 40963934, seqnum: 0, connid: 0 98 12:56:26,6563026 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54996 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40963466, endtime: 40963934, seqnum: 0, connid: 0 98 12:56:26,6563098 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54996 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40963467, endtime: 40963934, seqnum: 0, connid: 0 98 12:56:26,6563159 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54996 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40963469, endtime: 40963934, seqnum: 0, connid: 0 98 12:56:26,6563231 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54996 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40963470, endtime: 40963934, seqnum: 0, connid: 0 98 12:56:26,6563292 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54996 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40963472, endtime: 40963934, seqnum: 0, connid: 0 98 12:56:26,6563594 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54996 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40963473, endtime: 40963934, seqnum: 0, connid: 0 98 12:56:26,6563658 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54996 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40963475, endtime: 40963934, seqnum: 0, connid: 0 98 12:56:26,6563730 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54996 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40963477, endtime: 40963934, seqnum: 0, connid: 0 98 12:56:26,6563791 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54996 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40963478, endtime: 40963934, seqnum: 0, connid: 0 98 12:56:27,3003593 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54959 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40963609, endtime: 40963999, seqnum: 0, connid: 0 98 12:56:27,3003801 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54959 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40963612, endtime: 40963999, seqnum: 0, connid: 0 98 12:56:27,3003886 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54959 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40963616, endtime: 40963999, seqnum: 0, connid: 0 98 12:56:27,3003978 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54959 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40963619, endtime: 40963999, seqnum: 0, connid: 0 98 12:56:27,3004050 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54959 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40963622, endtime: 40963999, seqnum: 0, connid: 0 98 12:56:27,3004133 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54959 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40963623, endtime: 40963999, seqnum: 0, connid: 0 98 12:56:27,3004202 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54959 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40963625, endtime: 40963999, seqnum: 0, connid: 0 98 12:56:27,3004280 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54959 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40963626, endtime: 40963999, seqnum: 0, connid: 0 98 12:56:27,3004349 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54959 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40963628, endtime: 40963999, seqnum: 0, connid: 0 98 12:56:27,3004684 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54959 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40963631, endtime: 40963999, seqnum: 0, connid: 0 98 12:56:27,3004748 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54959 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40963635, endtime: 40963999, seqnum: 0, connid: 0 98 12:56:27,3004826 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54959 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40963639, endtime: 40963999, seqnum: 0, connid: 0 98 12:56:27,3004887 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54959 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40963641, endtime: 40963999, seqnum: 0, connid: 0 98 12:56:27,5541656 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54935 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40963852, endtime: 40964024, seqnum: 0, connid: 0 98 12:56:27,5541856 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54935 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40963853, endtime: 40964024, seqnum: 0, connid: 0 98 12:56:27,5541933 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54935 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40963855, endtime: 40964024, seqnum: 0, connid: 0 98 12:56:27,5542014 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54935 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40963858, endtime: 40964024, seqnum: 0, connid: 0 98 12:56:27,5542074 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54935 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40963859, endtime: 40964024, seqnum: 0, connid: 0 98 12:56:27,5542144 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54935 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40963862, endtime: 40964024, seqnum: 0, connid: 0 98 12:56:27,5542199 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54935 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40963864, endtime: 40964024, seqnum: 0, connid: 0 98 12:56:27,5542268 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54935 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40963866, endtime: 40964024, seqnum: 0, connid: 0 98 12:56:27,5542327 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54935 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40963867, endtime: 40964024, seqnum: 0, connid: 0 98 12:56:27,5542629 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54935 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40963869, endtime: 40964024, seqnum: 0, connid: 0 98 12:56:27,5542687 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54935 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40963870, endtime: 40964024, seqnum: 0, connid: 0 98 12:56:27,5542756 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54935 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40963874, endtime: 40964024, seqnum: 0, connid: 0 98 12:56:27,5542811 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54935 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40963875, endtime: 40964024, seqnum: 0, connid: 0 98 12:56:28,1869710 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54950 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40963350, endtime: 40964087, seqnum: 0, connid: 0 98 12:56:28,1869924 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54950 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40963352, endtime: 40964087, seqnum: 0, connid: 0 98 12:56:28,1870023 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54950 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40963355, endtime: 40964087, seqnum: 0, connid: 0 98 12:56:28,1870101 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54950 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40963356, endtime: 40964087, seqnum: 0, connid: 0 98 12:56:28,1870179 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54950 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40963359, endtime: 40964087, seqnum: 0, connid: 0 98 12:56:28,1870248 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54950 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40963361, endtime: 40964087, seqnum: 0, connid: 0 98 12:56:28,1870325 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54950 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40963363, endtime: 40964087, seqnum: 0, connid: 0 98 12:56:28,1870386 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54950 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40963366, endtime: 40964087, seqnum: 0, connid: 0 98 12:56:28,1870464 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54950 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40963371, endtime: 40964087, seqnum: 0, connid: 0 98 12:56:28,1871126 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54950 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40963373, endtime: 40964087, seqnum: 0, connid: 0 98 12:56:28,1871218 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54950 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40963374, endtime: 40964087, seqnum: 0, connid: 0 98 12:56:28,1871279 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54950 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40963375, endtime: 40964087, seqnum: 0, connid: 0 98 12:56:28,4510260 MCLauncher.exe 6080 TCP Disconnect WIN-0UOTFKKVN1S:54963 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 0, seqnum: 0, connid: 0 98 12:56:28,5374818 MCLauncher.exe 6080 TCP Connect WIN-0UOTFKKVN1S:55005 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 0, mss: 1460, sackopt: 0, tsopt: 0, wsopt: 0, rcvwin: 64240, rcvwinscale: 0, sndwinscale: 0, seqnum: 0, connid: 0 98 12:56:28,5378894 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55005 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40964122, endtime: 40964122, seqnum: 0, connid: 0 98 12:56:28,5476254 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55005 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40964123, endtime: 40964123, seqnum: 0, connid: 0 98 12:56:28,5642466 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55005 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40964125, endtime: 40964125, seqnum: 0, connid: 0 98 12:56:28,5956354 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55005 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40964128, endtime: 40964128, seqnum: 0, connid: 0 98 12:56:28,6288951 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55005 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40964131, endtime: 40964131, seqnum: 0, connid: 0 98 12:56:28,6417114 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55005 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40964133, endtime: 40964133, seqnum: 0, connid: 0 98 12:56:28,6722100 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55005 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40964136, endtime: 40964136, seqnum: 0, connid: 0 98 12:56:28,6898871 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55005 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40964137, endtime: 40964138, seqnum: 0, connid: 0 98 12:56:28,7178304 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55005 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40964140, endtime: 40964140, seqnum: 0, connid: 0 98 12:56:28,7368902 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55005 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40964142, endtime: 40964142, seqnum: 0, connid: 0 98 12:56:28,7522673 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55005 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40964144, endtime: 40964144, seqnum: 0, connid: 0 98 12:56:28,7685070 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55005 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40964145, endtime: 40964145, seqnum: 0, connid: 0 98 12:56:28,7999844 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55005 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40964148, endtime: 40964149, seqnum: 0, connid: 0 98 12:56:28,8146374 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55005 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40964150, endtime: 40964150, seqnum: 0, connid: 0 98 12:56:28,8461802 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55005 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40964153, endtime: 40964153, seqnum: 0, connid: 0 98 12:56:28,8585361 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54996 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40963934, endtime: 40964154, seqnum: 0, connid: 0 98 12:56:28,8585521 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54996 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40963936, endtime: 40964154, seqnum: 0, connid: 0 98 12:56:28,8585593 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54996 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40963939, endtime: 40964154, seqnum: 0, connid: 0 98 12:56:28,8585665 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54996 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40963941, endtime: 40964154, seqnum: 0, connid: 0 98 12:56:28,8585721 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54996 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40963942, endtime: 40964154, seqnum: 0, connid: 0 98 12:56:28,8585784 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54996 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40963945, endtime: 40964154, seqnum: 0, connid: 0 98 12:56:28,8585840 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54996 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40963947, endtime: 40964154, seqnum: 0, connid: 0 98 12:56:28,8585904 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54996 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40963950, endtime: 40964154, seqnum: 0, connid: 0 98 12:56:28,8585962 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54996 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40963954, endtime: 40964154, seqnum: 0, connid: 0 98 12:56:28,8607669 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54996 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40963955, endtime: 40964155, seqnum: 0, connid: 0 98 12:56:28,8607777 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54996 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40963957, endtime: 40964155, seqnum: 0, connid: 0 98 12:56:28,8607858 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54996 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40963958, endtime: 40964155, seqnum: 0, connid: 0 98 12:56:28,8607916 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54996 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40963961, endtime: 40964155, seqnum: 0, connid: 0 98 12:56:28,8608071 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55005 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40964155, endtime: 40964155, seqnum: 0, connid: 0 98 12:56:28,8776488 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55005 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40964156, endtime: 40964156, seqnum: 0, connid: 0 98 12:56:28,8931284 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55005 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40964158, endtime: 40964158, seqnum: 0, connid: 0 98 12:56:28,9087109 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55005 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40964159, endtime: 40964159, seqnum: 0, connid: 0 98 12:56:28,9409173 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55005 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40964162, endtime: 40964163, seqnum: 0, connid: 0 98 12:56:28,9767135 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55005 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40964165, endtime: 40964166, seqnum: 0, connid: 0 98 12:56:28,9861447 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55005 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40964167, endtime: 40964167, seqnum: 0, connid: 0 98 12:56:29,0022198 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55005 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40964169, endtime: 40964169, seqnum: 0, connid: 0 98 12:56:29,0346672 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55005 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40964172, endtime: 40964172, seqnum: 0, connid: 0 98 12:56:29,0652088 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55005 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40964175, endtime: 40964175, seqnum: 0, connid: 0 98 12:56:29,0804582 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55005 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40964177, endtime: 40964177, seqnum: 0, connid: 0 98 12:56:29,1120252 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55005 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40964180, endtime: 40964180, seqnum: 0, connid: 0 98 12:56:29,1279877 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55005 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40964181, endtime: 40964181, seqnum: 0, connid: 0 98 12:56:29,1459169 MCLauncher.exe 6080 TCP Disconnect WIN-0UOTFKKVN1S:54935 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 0, seqnum: 0, connid: 0 98 12:56:29,1572183 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55005 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40964184, endtime: 40964184, seqnum: 0, connid: 0 98 12:56:29,1752726 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55005 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40964186, endtime: 40964186, seqnum: 0, connid: 0 98 12:56:29,2083769 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55005 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40964189, endtime: 40964189, seqnum: 0, connid: 0 98 12:56:29,2374878 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55005 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40964192, endtime: 40964192, seqnum: 0, connid: 0 98 12:56:29,2517877 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55005 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40964194, endtime: 40964194, seqnum: 0, connid: 0 98 12:56:29,3065678 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55005 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40964199, endtime: 40964199, seqnum: 0, connid: 0 98 12:56:30,7151870 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55005 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40964202, endtime: 40964340, seqnum: 0, connid: 0 98 12:56:30,7152025 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55005 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40964205, endtime: 40964340, seqnum: 0, connid: 0 98 12:56:30,7152094 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55005 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40964206, endtime: 40964340, seqnum: 0, connid: 0 98 12:56:30,7152164 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55005 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40964208, endtime: 40964340, seqnum: 0, connid: 0 98 12:56:30,9276566 MCLauncher.exe 6080 TCP Disconnect WIN-0UOTFKKVN1S:54959 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 0, seqnum: 0, connid: 0 98 12:56:31,0872428 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54931 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40963860, endtime: 40964377, seqnum: 0, connid: 0 98 12:56:31,0872613 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54931 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40963862, endtime: 40964377, seqnum: 0, connid: 0 98 12:56:31,0872830 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54931 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40963864, endtime: 40964377, seqnum: 0, connid: 0 98 12:56:31,0872921 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54931 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40963866, endtime: 40964377, seqnum: 0, connid: 0 98 12:56:31,0872990 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54931 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40963867, endtime: 40964377, seqnum: 0, connid: 0 98 12:56:31,0873068 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54931 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40963869, endtime: 40964377, seqnum: 0, connid: 0 98 12:56:31,0873131 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54931 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40963870, endtime: 40964377, seqnum: 0, connid: 0 98 12:56:31,0873209 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54931 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40963874, endtime: 40964377, seqnum: 0, connid: 0 98 12:56:31,0873273 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54931 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40963875, endtime: 40964377, seqnum: 0, connid: 0 98 12:56:31,0873630 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54931 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40963878, endtime: 40964377, seqnum: 0, connid: 0 98 12:56:31,0873697 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54931 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40963881, endtime: 40964377, seqnum: 0, connid: 0 98 12:56:31,0873766 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54931 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40963883, endtime: 40964377, seqnum: 0, connid: 0 98 12:56:31,0873830 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54931 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40963887, endtime: 40964377, seqnum: 0, connid: 0 98 12:56:31,3736195 MCLauncher.exe 6080 TCP TCPCopy WIN-0UOTFKKVN1S:54920 -> sheltex.company:8000 SUCCESS Length: 2, seqnum: 0, connid: 0 98 12:56:31,3736320 MCLauncher.exe 6080 TCP Receive WIN-0UOTFKKVN1S:54920 -> sheltex.company:8000 SUCCESS Length: 2, seqnum: 0, connid: 0 98 12:56:31,3740601 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54920 -> sheltex.company:8000 SUCCESS Length: 2, startime: 40964406, endtime: 40964406, seqnum: 0, connid: 0 98 12:56:31,9943149 MCLauncher.exe 6080 TCP Disconnect WIN-0UOTFKKVN1S:54931 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 0, seqnum: 0, connid: 0 98 12:56:32,0889816 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54950 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40963376, endtime: 40964478, seqnum: 0, connid: 0 98 12:56:32,0890018 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54950 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40964087, endtime: 40964478, seqnum: 0, connid: 0 98 12:56:32,0890112 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54950 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40964089, endtime: 40964478, seqnum: 0, connid: 0 98 12:56:32,0890182 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54950 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40964091, endtime: 40964478, seqnum: 0, connid: 0 98 12:56:32,0890256 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54950 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40964092, endtime: 40964478, seqnum: 0, connid: 0 98 12:56:32,0890317 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54950 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40964095, endtime: 40964478, seqnum: 0, connid: 0 98 12:56:32,0890389 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54950 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40964097, endtime: 40964478, seqnum: 0, connid: 0 98 12:56:32,0890450 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54950 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40964100, endtime: 40964478, seqnum: 0, connid: 0 98 12:56:32,0890522 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54950 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40964101, endtime: 40964478, seqnum: 0, connid: 0 98 12:56:32,0890580 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54950 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40964102, endtime: 40964478, seqnum: 0, connid: 0 98 12:56:32,0890913 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54950 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40964105, endtime: 40964478, seqnum: 0, connid: 0 98 12:56:32,0890977 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54950 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40964106, endtime: 40964478, seqnum: 0, connid: 0 98 12:56:32,0891049 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54950 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40964108, endtime: 40964478, seqnum: 0, connid: 0 98 12:56:32,0892827 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54950 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40964478, endtime: 40964478, seqnum: 0, connid: 0 98 12:56:32,1563475 MCLauncher.exe 6080 TCP Reconnect WIN-0UOTFKKVN1S:55006 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 0, seqnum: 0, connid: 0 98 12:56:32,8503743 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54996 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40964154, endtime: 40964554, seqnum: 0, connid: 0 98 12:56:32,8503956 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54996 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40964156, endtime: 40964554, seqnum: 0, connid: 0 98 12:56:32,8504036 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54996 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40964158, endtime: 40964554, seqnum: 0, connid: 0 98 12:56:32,8504119 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54996 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40964159, endtime: 40964554, seqnum: 0, connid: 0 98 12:56:32,8504183 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54996 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40964162, endtime: 40964554, seqnum: 0, connid: 0 98 12:56:32,8504252 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54996 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40964165, endtime: 40964554, seqnum: 0, connid: 0 98 12:56:32,8504311 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54996 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40964167, endtime: 40964554, seqnum: 0, connid: 0 98 12:56:32,8504383 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54996 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40964169, endtime: 40964554, seqnum: 0, connid: 0 98 12:56:32,8504441 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54996 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40964172, endtime: 40964554, seqnum: 0, connid: 0 98 12:56:32,8504748 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54996 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40964175, endtime: 40964554, seqnum: 0, connid: 0 98 12:56:32,8504812 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54996 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40964177, endtime: 40964554, seqnum: 0, connid: 0 98 12:56:32,8504881 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54996 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40964180, endtime: 40964554, seqnum: 0, connid: 0 98 12:56:32,8504940 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54996 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40964181, endtime: 40964554, seqnum: 0, connid: 0 98 12:56:33,8568884 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54950 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40964480, endtime: 40964654, seqnum: 0, connid: 0 98 12:56:33,8569034 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54950 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40964481, endtime: 40964654, seqnum: 0, connid: 0 98 12:56:33,8569103 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54950 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40964483, endtime: 40964654, seqnum: 0, connid: 0 98 12:56:33,8569172 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54950 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40964484, endtime: 40964654, seqnum: 0, connid: 0 98 12:56:33,8569225 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54950 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40964486, endtime: 40964654, seqnum: 0, connid: 0 98 12:56:33,8569289 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54950 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40964489, endtime: 40964654, seqnum: 0, connid: 0 98 12:56:33,8569341 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54950 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40964491, endtime: 40964654, seqnum: 0, connid: 0 98 12:56:33,8569405 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54950 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40964494, endtime: 40964654, seqnum: 0, connid: 0 98 12:56:33,8569460 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54950 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40964495, endtime: 40964654, seqnum: 0, connid: 0 98 12:56:33,8570267 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54950 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40964497, endtime: 40964654, seqnum: 0, connid: 0 98 12:56:33,8570336 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54950 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40964498, endtime: 40964654, seqnum: 0, connid: 0 98 12:56:33,8570400 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54950 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40964500, endtime: 40964654, seqnum: 0, connid: 0 98 12:56:33,8571228 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54950 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40964501, endtime: 40964654, seqnum: 0, connid: 0 98 12:56:33,9383163 MCLauncher.exe 6080 TCP Reconnect WIN-0UOTFKKVN1S:55007 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 0, seqnum: 0, connid: 0 98 12:56:34,0330005 MCLauncher.exe 6080 TCP Connect WIN-0UOTFKKVN1S:55007 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 0, mss: 1460, sackopt: 0, tsopt: 0, wsopt: 0, rcvwin: 64240, rcvwinscale: 0, sndwinscale: 0, seqnum: 0, connid: 0 98 12:56:34,0341702 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55007 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40964672, endtime: 40964672, seqnum: 0, connid: 0 98 12:56:34,0481673 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55007 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40964673, endtime: 40964673, seqnum: 0, connid: 0 98 12:56:34,0794741 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55007 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40964676, endtime: 40964677, seqnum: 0, connid: 0 98 12:56:34,0966555 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55007 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40964678, endtime: 40964678, seqnum: 0, connid: 0 98 12:56:34,1107224 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55007 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40964680, endtime: 40964680, seqnum: 0, connid: 0 98 12:56:34,1260791 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55007 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40964681, endtime: 40964681, seqnum: 0, connid: 0 98 12:56:34,1433026 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55007 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40964683, endtime: 40964683, seqnum: 0, connid: 0 98 12:56:34,1573244 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55007 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40964684, endtime: 40964684, seqnum: 0, connid: 0 98 12:56:34,1730789 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55007 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40964686, endtime: 40964686, seqnum: 0, connid: 0 98 12:56:34,1885497 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55007 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40964687, endtime: 40964687, seqnum: 0, connid: 0 98 12:56:34,2160719 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55007 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40964689, endtime: 40964690, seqnum: 0, connid: 0 98 12:56:34,2362563 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55007 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40964692, endtime: 40964692, seqnum: 0, connid: 0 98 12:56:34,2612608 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55007 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40964694, endtime: 40964695, seqnum: 0, connid: 0 98 12:56:34,2676401 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55007 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40964695, endtime: 40964695, seqnum: 0, connid: 0 98 12:56:34,2825717 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55007 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40964697, endtime: 40964697, seqnum: 0, connid: 0 98 12:56:34,3004784 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55007 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40964698, endtime: 40964699, seqnum: 0, connid: 0 98 12:56:34,3147681 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55007 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40964700, endtime: 40964700, seqnum: 0, connid: 0 98 12:56:34,3202389 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55007 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40964701, endtime: 40964701, seqnum: 0, connid: 0 98 12:56:34,3260424 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55007 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40964701, endtime: 40964701, seqnum: 0, connid: 0 98 12:56:34,3453332 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55007 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40964703, endtime: 40964703, seqnum: 0, connid: 0 98 12:56:34,3621198 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55007 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40964705, endtime: 40964705, seqnum: 0, connid: 0 98 12:56:34,3763760 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55007 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40964706, endtime: 40964706, seqnum: 0, connid: 0 98 12:56:34,3952263 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55007 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40964708, endtime: 40964708, seqnum: 0, connid: 0 98 12:56:34,4232026 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55007 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40964711, endtime: 40964711, seqnum: 0, connid: 0 98 12:56:34,4420391 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55007 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40964712, endtime: 40964713, seqnum: 0, connid: 0 98 12:56:34,4558916 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55007 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40964714, endtime: 40964714, seqnum: 0, connid: 0 98 12:56:34,5291591 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55007 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40964716, endtime: 40964722, seqnum: 0, connid: 0 98 12:56:34,5291790 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55007 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40964719, endtime: 40964722, seqnum: 0, connid: 0 98 12:56:34,5291871 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55007 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40964720, endtime: 40964722, seqnum: 0, connid: 0 98 12:56:34,5326627 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55007 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40964722, endtime: 40964722, seqnum: 0, connid: 0 98 12:56:34,5497053 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55007 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40964723, endtime: 40964724, seqnum: 0, connid: 0 98 12:56:34,5676361 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55007 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40964725, endtime: 40964725, seqnum: 0, connid: 0 98 12:56:34,5792769 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55007 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40964726, endtime: 40964727, seqnum: 0, connid: 0 98 12:56:34,5952652 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55007 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40964728, endtime: 40964728, seqnum: 0, connid: 0 98 12:56:34,6107607 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55007 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40964730, endtime: 40964730, seqnum: 0, connid: 0 98 12:56:34,6278226 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55007 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40964731, endtime: 40964731, seqnum: 0, connid: 0 98 12:56:34,6442246 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55007 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40964733, endtime: 40964733, seqnum: 0, connid: 0 98 12:56:34,6572598 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55007 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40964734, endtime: 40964734, seqnum: 0, connid: 0 98 12:56:34,8628490 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54996 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40964554, endtime: 40964755, seqnum: 0, connid: 0 98 12:56:34,8628689 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54996 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40964555, endtime: 40964755, seqnum: 0, connid: 0 98 12:56:34,8628775 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54996 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40964556, endtime: 40964755, seqnum: 0, connid: 0 98 12:56:34,8628858 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54996 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40964558, endtime: 40964755, seqnum: 0, connid: 0 98 12:56:34,8628922 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54996 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40964559, endtime: 40964755, seqnum: 0, connid: 0 98 12:56:34,8629000 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54996 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40964561, endtime: 40964755, seqnum: 0, connid: 0 98 12:56:34,8629061 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54996 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40964562, endtime: 40964755, seqnum: 0, connid: 0 98 12:56:34,8629135 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54996 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40964564, endtime: 40964755, seqnum: 0, connid: 0 98 12:56:34,8629194 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54996 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40964566, endtime: 40964755, seqnum: 0, connid: 0 98 12:56:34,8629975 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54996 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40964567, endtime: 40964755, seqnum: 0, connid: 0 98 12:56:34,8630058 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54996 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40964569, endtime: 40964755, seqnum: 0, connid: 0 98 12:56:34,8630130 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54996 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40964572, endtime: 40964755, seqnum: 0, connid: 0 98 12:56:34,8630934 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54996 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40964573, endtime: 40964755, seqnum: 0, connid: 0 98 12:56:35,0005766 MCLauncher.exe 6080 TCP Reconnect WIN-0UOTFKKVN1S:55008 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 0, seqnum: 0, connid: 0 98 12:56:35,6687468 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54950 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40964654, endtime: 40964835, seqnum: 0, connid: 0 98 12:56:35,6687682 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54950 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40964656, endtime: 40964835, seqnum: 0, connid: 0 98 12:56:35,6687765 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54950 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40964658, endtime: 40964835, seqnum: 0, connid: 0 98 12:56:35,6687848 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54950 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40964659, endtime: 40964835, seqnum: 0, connid: 0 98 12:56:35,6688042 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54950 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40964661, endtime: 40964835, seqnum: 0, connid: 0 98 12:56:35,6688175 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54950 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40964662, endtime: 40964835, seqnum: 0, connid: 0 98 12:56:35,6688247 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54950 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40964666, endtime: 40964835, seqnum: 0, connid: 0 98 12:56:35,6688330 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54950 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40964667, endtime: 40964835, seqnum: 0, connid: 0 98 12:56:35,6688399 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54950 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40964669, endtime: 40964835, seqnum: 0, connid: 0 98 12:56:35,6689183 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54950 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40964670, endtime: 40964836, seqnum: 0, connid: 0 98 12:56:35,6689267 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54950 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40964672, endtime: 40964836, seqnum: 0, connid: 0 98 12:56:35,6689347 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54950 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40964673, endtime: 40964836, seqnum: 0, connid: 0 98 12:56:35,8867617 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54950 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40964677, endtime: 40964857, seqnum: 0, connid: 0 98 12:56:36,1216044 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55005 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40964209, endtime: 40964881, seqnum: 0, connid: 0 98 12:56:36,1216229 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55005 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40964211, endtime: 40964881, seqnum: 0, connid: 0 98 12:56:36,1216324 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55005 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40964212, endtime: 40964881, seqnum: 0, connid: 0 98 12:56:36,1216390 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55005 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40964214, endtime: 40964881, seqnum: 0, connid: 0 98 12:56:36,1216468 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55005 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40964216, endtime: 40964881, seqnum: 0, connid: 0 98 12:56:36,1216529 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55005 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40964217, endtime: 40964881, seqnum: 0, connid: 0 98 12:56:36,1216723 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55005 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40964220, endtime: 40964881, seqnum: 0, connid: 0 98 12:56:36,1216792 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55005 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40964222, endtime: 40964881, seqnum: 0, connid: 0 98 12:56:36,1216872 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55005 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40964223, endtime: 40964881, seqnum: 0, connid: 0 98 12:56:36,1216936 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55005 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40964340, endtime: 40964881, seqnum: 0, connid: 0 98 12:56:36,1217282 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55005 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40964342, endtime: 40964881, seqnum: 0, connid: 0 98 12:56:36,1217346 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55005 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40964345, endtime: 40964881, seqnum: 0, connid: 0 98 12:56:36,1217418 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55005 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40964347, endtime: 40964881, seqnum: 0, connid: 0 98 12:56:36,9385388 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54996 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40964755, endtime: 40964962, seqnum: 0, connid: 0 98 12:56:36,9385612 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54996 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40964756, endtime: 40964962, seqnum: 0, connid: 0 98 12:56:36,9385842 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54996 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40964759, endtime: 40964962, seqnum: 0, connid: 0 98 12:56:36,9386005 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54996 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40964761, endtime: 40964962, seqnum: 0, connid: 0 98 12:56:36,9386116 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54996 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40964762, endtime: 40964962, seqnum: 0, connid: 0 98 12:56:36,9386233 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54996 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40964764, endtime: 40964962, seqnum: 0, connid: 0 98 12:56:36,9386302 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54996 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40964766, endtime: 40964962, seqnum: 0, connid: 0 98 12:56:36,9386385 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54996 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40964767, endtime: 40964962, seqnum: 0, connid: 0 98 12:56:36,9386454 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54996 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40964769, endtime: 40964962, seqnum: 0, connid: 0 98 12:56:36,9387363 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54996 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40964770, endtime: 40964962, seqnum: 0, connid: 0 98 12:56:36,9387443 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54996 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40964772, endtime: 40964962, seqnum: 0, connid: 0 98 12:56:36,9387518 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54996 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40964775, endtime: 40964962, seqnum: 0, connid: 0 98 12:56:36,9388064 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54996 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40964777, endtime: 40964962, seqnum: 0, connid: 0 98 12:56:37,3810934 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55005 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40964881, endtime: 40965007, seqnum: 0, connid: 0 98 12:56:37,3811086 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55005 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40964883, endtime: 40965007, seqnum: 0, connid: 0 98 12:56:37,3811158 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55005 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40964885, endtime: 40965007, seqnum: 0, connid: 0 98 12:56:37,3811228 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55005 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40964887, endtime: 40965007, seqnum: 0, connid: 0 98 12:56:37,3811283 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55005 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40964887, endtime: 40965007, seqnum: 0, connid: 0 98 12:56:37,3811375 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55005 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40964889, endtime: 40965007, seqnum: 0, connid: 0 98 12:56:37,3811455 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55005 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40964891, endtime: 40965007, seqnum: 0, connid: 0 98 12:56:37,3811555 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55005 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40964892, endtime: 40965007, seqnum: 0, connid: 0 98 12:56:37,3811632 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55005 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40964894, endtime: 40965007, seqnum: 0, connid: 0 98 12:56:37,3811984 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55005 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40964895, endtime: 40965007, seqnum: 0, connid: 0 98 12:56:37,3812073 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55005 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40964897, endtime: 40965007, seqnum: 0, connid: 0 98 12:56:37,3813588 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55005 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40964900, endtime: 40965007, seqnum: 0, connid: 0 98 12:56:37,3813699 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55005 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40964903, endtime: 40965007, seqnum: 0, connid: 0 98 12:56:37,9809524 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54950 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40964836, endtime: 40965067, seqnum: 0, connid: 0 98 12:56:37,9809707 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54950 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40964837, endtime: 40965067, seqnum: 0, connid: 0 98 12:56:37,9809801 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54950 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40964841, endtime: 40965067, seqnum: 0, connid: 0 98 12:56:37,9809874 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54950 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40964842, endtime: 40965067, seqnum: 0, connid: 0 98 12:56:37,9809948 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54950 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40964847, endtime: 40965067, seqnum: 0, connid: 0 98 12:56:37,9810009 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54950 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40964848, endtime: 40965067, seqnum: 0, connid: 0 98 12:56:37,9810081 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54950 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40964850, endtime: 40965067, seqnum: 0, connid: 0 98 12:56:37,9810142 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54950 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40964853, endtime: 40965067, seqnum: 0, connid: 0 98 12:56:37,9810212 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54950 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40964855, endtime: 40965067, seqnum: 0, connid: 0 98 12:56:37,9811026 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54950 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40964856, endtime: 40965067, seqnum: 0, connid: 0 98 12:56:37,9811117 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54950 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40964859, endtime: 40965067, seqnum: 0, connid: 0 98 12:56:37,9811178 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54950 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40964860, endtime: 40965067, seqnum: 0, connid: 0 98 12:56:37,9811968 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54950 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40964861, endtime: 40965067, seqnum: 0, connid: 0 98 12:56:38,1566187 MCLauncher.exe 6080 TCP Reconnect WIN-0UOTFKKVN1S:55006 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 0, seqnum: 0, connid: 0 98 12:56:38,2536052 MCLauncher.exe 6080 TCP Connect WIN-0UOTFKKVN1S:55006 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 0, mss: 1460, sackopt: 0, tsopt: 0, wsopt: 0, rcvwin: 64240, rcvwinscale: 0, sndwinscale: 0, seqnum: 0, connid: 0 98 12:56:38,2543608 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55006 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40965094, endtime: 40965094, seqnum: 0, connid: 0 98 12:56:38,2675919 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55006 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40965095, endtime: 40965095, seqnum: 0, connid: 0 98 12:56:38,2988111 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55006 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40965098, endtime: 40965098, seqnum: 0, connid: 0 98 12:56:38,3141553 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55006 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40965100, endtime: 40965100, seqnum: 0, connid: 0 98 12:56:38,3209553 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55006 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40965101, endtime: 40965101, seqnum: 0, connid: 0 98 12:56:38,3458012 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55006 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40965103, endtime: 40965103, seqnum: 0, connid: 0 98 12:56:38,3771495 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55006 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40965106, endtime: 40965106, seqnum: 0, connid: 0 98 12:56:38,3914140 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55006 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40965108, endtime: 40965108, seqnum: 0, connid: 0 98 12:56:38,4090644 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55006 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40965109, endtime: 40965110, seqnum: 0, connid: 0 98 12:56:38,4248547 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55006 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40965111, endtime: 40965111, seqnum: 0, connid: 0 98 12:56:38,4392369 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55006 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40965112, endtime: 40965113, seqnum: 0, connid: 0 98 12:56:38,4741499 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55006 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40965115, endtime: 40965116, seqnum: 0, connid: 0 98 12:56:38,4861636 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55006 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40965117, endtime: 40965117, seqnum: 0, connid: 0 98 12:56:38,5168650 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55006 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40965120, endtime: 40965120, seqnum: 0, connid: 0 98 12:56:38,5362027 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55006 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40965122, endtime: 40965122, seqnum: 0, connid: 0 98 12:56:38,5752271 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55006 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40965125, endtime: 40965126, seqnum: 0, connid: 0 98 12:56:38,6146871 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55006 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40965130, endtime: 40965130, seqnum: 0, connid: 0 98 12:56:38,6284033 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55006 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40965131, endtime: 40965131, seqnum: 0, connid: 0 98 12:56:38,6449020 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55006 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40965133, endtime: 40965133, seqnum: 0, connid: 0 98 12:56:38,6771993 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55006 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40965136, endtime: 40965136, seqnum: 0, connid: 0 98 12:56:38,6889204 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55006 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40965137, endtime: 40965138, seqnum: 0, connid: 0 98 12:56:38,7054490 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55006 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40965139, endtime: 40965139, seqnum: 0, connid: 0 98 12:56:38,7204026 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55006 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40965141, endtime: 40965141, seqnum: 0, connid: 0 98 12:56:38,7526674 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55006 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40965144, endtime: 40965144, seqnum: 0, connid: 0 98 12:56:38,7687475 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55006 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40965145, endtime: 40965145, seqnum: 0, connid: 0 98 12:56:38,7868786 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55006 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40965147, endtime: 40965147, seqnum: 0, connid: 0 98 12:56:38,9846387 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54996 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40964962, endtime: 40965167, seqnum: 0, connid: 0 98 12:56:38,9846669 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54996 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40964964, endtime: 40965167, seqnum: 0, connid: 0 98 12:56:38,9846800 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54996 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40964967, endtime: 40965167, seqnum: 0, connid: 0 98 12:56:38,9846933 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54996 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40964969, endtime: 40965167, seqnum: 0, connid: 0 98 12:56:38,9847043 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54996 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40964970, endtime: 40965167, seqnum: 0, connid: 0 98 12:56:38,9847129 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54996 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40964972, endtime: 40965167, seqnum: 0, connid: 0 98 12:56:38,9847193 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54996 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40964973, endtime: 40965167, seqnum: 0, connid: 0 98 12:56:38,9847268 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54996 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40964977, endtime: 40965167, seqnum: 0, connid: 0 98 12:56:38,9847331 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54996 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40964978, endtime: 40965167, seqnum: 0, connid: 0 98 12:56:38,9848041 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54996 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40964980, endtime: 40965167, seqnum: 0, connid: 0 98 12:56:38,9848118 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54996 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40964981, endtime: 40965167, seqnum: 0, connid: 0 98 12:56:38,9848190 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54996 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40964984, endtime: 40965167, seqnum: 0, connid: 0 98 12:56:38,9989680 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55006 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40965148, endtime: 40965169, seqnum: 0, connid: 0 98 12:56:38,9989857 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55006 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40965150, endtime: 40965169, seqnum: 0, connid: 0 98 12:56:38,9989932 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55006 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40965153, endtime: 40965169, seqnum: 0, connid: 0 98 12:56:38,9990010 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55006 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40965155, endtime: 40965169, seqnum: 0, connid: 0 98 12:56:38,9990068 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55006 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40965156, endtime: 40965169, seqnum: 0, connid: 0 98 12:56:38,9990137 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55006 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40965159, endtime: 40965169, seqnum: 0, connid: 0 98 12:56:38,9990193 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55006 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40965161, endtime: 40965169, seqnum: 0, connid: 0 98 12:56:38,9990259 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55006 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40965162, endtime: 40965169, seqnum: 0, connid: 0 98 12:56:38,9990315 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55006 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40965164, endtime: 40965169, seqnum: 0, connid: 0 98 12:56:38,9990583 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55006 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40965166, endtime: 40965169, seqnum: 0, connid: 0 98 12:56:39,0099023 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55006 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40965169, endtime: 40965170, seqnum: 0, connid: 0 98 12:56:39,0162577 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55006 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40965170, endtime: 40965170, seqnum: 0, connid: 0 98 12:56:39,0327830 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55006 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40965172, endtime: 40965172, seqnum: 0, connid: 0 98 12:56:39,1353317 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54996 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40964986, endtime: 40965182, seqnum: 0, connid: 0 98 12:56:39,7283089 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55007 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40964736, endtime: 40965241, seqnum: 0, connid: 0 98 12:56:39,7283289 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55007 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40964737, endtime: 40965241, seqnum: 0, connid: 0 98 12:56:39,7283369 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55007 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40964739, endtime: 40965241, seqnum: 0, connid: 0 98 12:56:39,7283596 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55007 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40964741, endtime: 40965241, seqnum: 0, connid: 0 98 12:56:39,7283676 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55007 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40964742, endtime: 40965241, seqnum: 0, connid: 0 98 12:56:39,7283760 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55007 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40964744, endtime: 40965241, seqnum: 0, connid: 0 98 12:56:39,7283829 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55007 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40964745, endtime: 40965241, seqnum: 0, connid: 0 98 12:56:39,7283912 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55007 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40964748, endtime: 40965241, seqnum: 0, connid: 0 98 12:56:39,7283981 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55007 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40964750, endtime: 40965241, seqnum: 0, connid: 0 98 12:56:39,7284339 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55007 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40964753, endtime: 40965241, seqnum: 0, connid: 0 98 12:56:39,7284405 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55007 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40964755, endtime: 40965241, seqnum: 0, connid: 0 98 12:56:39,7284483 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55007 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40964756, endtime: 40965241, seqnum: 0, connid: 0 98 12:56:39,7284546 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55007 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40964759, endtime: 40965241, seqnum: 0, connid: 0 98 12:56:41,0009016 MCLauncher.exe 6080 TCP Reconnect WIN-0UOTFKKVN1S:55008 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 0, seqnum: 0, connid: 0 98 12:56:41,0972725 MCLauncher.exe 6080 TCP Connect WIN-0UOTFKKVN1S:55008 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 0, mss: 1460, sackopt: 0, tsopt: 0, wsopt: 0, rcvwin: 64240, rcvwinscale: 0, sndwinscale: 0, seqnum: 0, connid: 0 98 12:56:41,0981028 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55008 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40965378, endtime: 40965378, seqnum: 0, connid: 0 98 12:56:41,1270951 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55008 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40965381, endtime: 40965381, seqnum: 0, connid: 0 98 12:56:41,1417973 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55008 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40965383, endtime: 40965383, seqnum: 0, connid: 0 98 12:56:41,1576765 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55008 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40965384, endtime: 40965384, seqnum: 0, connid: 0 98 12:56:41,1730853 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55008 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40965386, endtime: 40965386, seqnum: 0, connid: 0 98 12:56:41,1897128 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55008 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40965387, endtime: 40965388, seqnum: 0, connid: 0 98 12:56:41,2046428 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55008 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40965389, endtime: 40965389, seqnum: 0, connid: 0 98 12:56:41,2198942 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55008 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40965391, endtime: 40965391, seqnum: 0, connid: 0 98 12:56:41,2357274 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55008 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40965392, endtime: 40965392, seqnum: 0, connid: 0 98 12:56:41,2510148 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55008 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40965394, endtime: 40965394, seqnum: 0, connid: 0 98 12:56:41,2669862 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55008 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40965395, endtime: 40965395, seqnum: 0, connid: 0 98 12:56:41,2826692 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55008 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40965397, endtime: 40965397, seqnum: 0, connid: 0 98 12:56:41,2980952 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55008 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40965398, endtime: 40965398, seqnum: 0, connid: 0 98 12:56:41,3136588 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55008 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40965400, endtime: 40965400, seqnum: 0, connid: 0 98 12:56:41,3192814 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55008 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40965401, endtime: 40965401, seqnum: 0, connid: 0 98 12:56:41,3453934 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55008 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40965403, endtime: 40965403, seqnum: 0, connid: 0 98 12:56:41,3608176 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55008 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40965405, endtime: 40965405, seqnum: 0, connid: 0 98 12:56:41,3765533 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55008 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40965406, endtime: 40965406, seqnum: 0, connid: 0 98 12:56:41,4062387 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55008 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40965408, endtime: 40965409, seqnum: 0, connid: 0 98 12:56:41,4231824 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55008 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40965411, endtime: 40965411, seqnum: 0, connid: 0 98 12:56:41,4431698 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55008 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40965412, endtime: 40965413, seqnum: 0, connid: 0 98 12:56:41,4544714 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55008 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40965414, endtime: 40965414, seqnum: 0, connid: 0 98 12:56:41,4596094 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54996 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40965167, endtime: 40965415, seqnum: 0, connid: 0 98 12:56:41,4596236 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54996 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40965169, endtime: 40965415, seqnum: 0, connid: 0 98 12:56:41,4596321 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54996 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40965170, endtime: 40965415, seqnum: 0, connid: 0 98 12:56:41,4596385 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54996 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40965172, endtime: 40965415, seqnum: 0, connid: 0 98 12:56:41,4596454 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54996 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40965173, endtime: 40965415, seqnum: 0, connid: 0 98 12:56:41,4596513 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54996 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40965175, endtime: 40965415, seqnum: 0, connid: 0 98 12:56:41,4596579 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54996 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40965178, endtime: 40965415, seqnum: 0, connid: 0 98 12:56:41,4596635 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54996 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40965180, endtime: 40965415, seqnum: 0, connid: 0 98 12:56:41,4596701 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54996 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40965181, endtime: 40965415, seqnum: 0, connid: 0 98 12:56:41,4597335 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54996 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40965184, endtime: 40965415, seqnum: 0, connid: 0 98 12:56:41,4597421 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54996 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40965189, endtime: 40965415, seqnum: 0, connid: 0 98 12:56:41,4597480 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54996 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40965191, endtime: 40965415, seqnum: 0, connid: 0 98 12:56:41,4699422 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55008 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40965416, endtime: 40965416, seqnum: 0, connid: 0 98 12:56:41,4871189 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55008 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40965417, endtime: 40965417, seqnum: 0, connid: 0 98 12:56:41,5030840 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55008 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40965419, endtime: 40965419, seqnum: 0, connid: 0 98 12:56:41,6274744 MCLauncher.exe 6080 TCP TCPCopy WIN-0UOTFKKVN1S:54920 -> sheltex.company:8000 SUCCESS Length: 2, seqnum: 0, connid: 0 98 12:56:41,6274860 MCLauncher.exe 6080 TCP Receive WIN-0UOTFKKVN1S:54920 -> sheltex.company:8000 SUCCESS Length: 2, seqnum: 0, connid: 0 98 12:56:41,6278556 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54920 -> sheltex.company:8000 SUCCESS Length: 2, startime: 40965431, endtime: 40965431, seqnum: 0, connid: 0 98 12:56:41,7553634 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55008 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40965420, endtime: 40965444, seqnum: 0, connid: 0 98 12:56:41,7553817 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55008 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40965422, endtime: 40965444, seqnum: 0, connid: 0 98 12:56:41,7553895 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55008 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40965423, endtime: 40965444, seqnum: 0, connid: 0 98 12:56:41,7553975 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55008 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40965425, endtime: 40965444, seqnum: 0, connid: 0 98 12:56:41,7554039 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55008 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40965426, endtime: 40965444, seqnum: 0, connid: 0 98 12:56:41,7554111 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55008 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40965428, endtime: 40965444, seqnum: 0, connid: 0 98 12:56:41,7554172 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55008 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40965430, endtime: 40965444, seqnum: 0, connid: 0 98 12:56:41,7554244 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55008 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40965431, endtime: 40965444, seqnum: 0, connid: 0 98 12:56:41,7554302 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55008 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40965433, endtime: 40965444, seqnum: 0, connid: 0 98 12:56:41,7554668 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55008 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40965434, endtime: 40965444, seqnum: 0, connid: 0 98 12:56:41,7554729 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55008 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40965436, endtime: 40965444, seqnum: 0, connid: 0 98 12:56:41,7554798 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55008 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40965438, endtime: 40965444, seqnum: 0, connid: 0 98 12:56:41,7554856 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55008 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40965439, endtime: 40965444, seqnum: 0, connid: 0 98 12:56:41,7554997 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54950 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40965067, endtime: 40965444, seqnum: 0, connid: 0 98 12:56:41,7555069 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54950 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40965069, endtime: 40965444, seqnum: 0, connid: 0 98 12:56:41,7555130 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54950 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40965070, endtime: 40965444, seqnum: 0, connid: 0 98 12:56:41,7555202 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54950 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40965072, endtime: 40965444, seqnum: 0, connid: 0 98 12:56:41,7555263 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54950 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40965073, endtime: 40965444, seqnum: 0, connid: 0 98 12:56:41,7556244 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54950 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40965075, endtime: 40965444, seqnum: 0, connid: 0 98 12:56:41,7556333 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54950 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40965076, endtime: 40965444, seqnum: 0, connid: 0 98 12:56:41,7556402 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54950 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40965078, endtime: 40965444, seqnum: 0, connid: 0 98 12:56:41,7556460 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54950 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40965080, endtime: 40965444, seqnum: 0, connid: 0 98 12:56:41,7556530 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54950 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40965081, endtime: 40965444, seqnum: 0, connid: 0 98 12:56:41,7556585 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54950 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40965083, endtime: 40965444, seqnum: 0, connid: 0 98 12:56:41,7556654 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54950 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40965084, endtime: 40965444, seqnum: 0, connid: 0 98 12:56:41,8275745 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54950 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40965086, endtime: 40965451, seqnum: 0, connid: 0 98 12:56:42,6908551 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55007 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40965241, endtime: 40965538, seqnum: 0, connid: 0 98 12:56:42,6908734 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55007 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40965242, endtime: 40965538, seqnum: 0, connid: 0 98 12:56:42,6908809 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55007 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40965244, endtime: 40965538, seqnum: 0, connid: 0 98 12:56:42,6908881 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55007 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40965247, endtime: 40965538, seqnum: 0, connid: 0 98 12:56:42,6909069 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55007 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40965248, endtime: 40965538, seqnum: 0, connid: 0 98 12:56:42,6909205 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55007 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40965250, endtime: 40965538, seqnum: 0, connid: 0 98 12:56:42,6909280 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55007 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40965253, endtime: 40965538, seqnum: 0, connid: 0 98 12:56:42,6909357 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55007 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40965255, endtime: 40965538, seqnum: 0, connid: 0 98 12:56:42,6909415 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55007 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40965256, endtime: 40965538, seqnum: 0, connid: 0 98 12:56:42,6909728 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55007 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40965258, endtime: 40965538, seqnum: 0, connid: 0 98 12:56:42,6909789 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55007 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40965259, endtime: 40965538, seqnum: 0, connid: 0 98 12:56:42,6909856 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55007 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40965261, endtime: 40965538, seqnum: 0, connid: 0 98 12:56:42,6909911 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55007 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40965262, endtime: 40965538, seqnum: 0, connid: 0 98 12:56:42,9310505 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54996 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40965192, endtime: 40965562, seqnum: 0, connid: 0 98 12:56:42,9310688 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54996 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40965415, endtime: 40965562, seqnum: 0, connid: 0 98 12:56:42,9310782 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54996 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40965416, endtime: 40965562, seqnum: 0, connid: 0 98 12:56:42,9310848 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54996 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40965417, endtime: 40965562, seqnum: 0, connid: 0 98 12:56:42,9310923 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54996 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40965419, endtime: 40965562, seqnum: 0, connid: 0 98 12:56:42,9310984 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54996 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40965420, endtime: 40965562, seqnum: 0, connid: 0 98 12:56:42,9311056 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54996 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40965422, endtime: 40965562, seqnum: 0, connid: 0 98 12:56:42,9311114 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54996 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40965423, endtime: 40965562, seqnum: 0, connid: 0 98 12:56:42,9311184 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54996 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40965425, endtime: 40965562, seqnum: 0, connid: 0 98 12:56:42,9311242 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54996 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40965426, endtime: 40965562, seqnum: 0, connid: 0 98 12:56:42,9311533 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54996 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40965428, endtime: 40965562, seqnum: 0, connid: 0 98 12:56:42,9311597 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54996 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40965430, endtime: 40965562, seqnum: 0, connid: 0 98 12:56:42,9311666 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54996 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40965431, endtime: 40965562, seqnum: 0, connid: 0 98 12:56:43,0201800 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55005 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40965007, endtime: 40965571, seqnum: 0, connid: 0 98 12:56:43,0201966 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55005 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40965008, endtime: 40965571, seqnum: 0, connid: 0 98 12:56:43,0202038 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55005 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40965009, endtime: 40965571, seqnum: 0, connid: 0 98 12:56:43,0202110 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55005 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40965012, endtime: 40965571, seqnum: 0, connid: 0 98 12:56:43,0202165 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55005 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40965014, endtime: 40965571, seqnum: 0, connid: 0 98 12:56:43,0202229 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55005 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40965016, endtime: 40965571, seqnum: 0, connid: 0 98 12:56:43,0202285 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55005 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40965017, endtime: 40965571, seqnum: 0, connid: 0 98 12:56:43,0203977 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55005 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40965019, endtime: 40965571, seqnum: 0, connid: 0 98 12:56:43,0204102 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55005 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40965020, endtime: 40965571, seqnum: 0, connid: 0 98 12:56:43,0204182 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55005 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40965022, endtime: 40965571, seqnum: 0, connid: 0 98 12:56:43,0204246 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55005 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40965023, endtime: 40965571, seqnum: 0, connid: 0 98 12:56:43,0204318 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55005 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40965025, endtime: 40965571, seqnum: 0, connid: 0 98 12:56:43,0204379 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55005 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40965027, endtime: 40965571, seqnum: 0, connid: 0 98 12:56:43,9758837 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55007 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40965538, endtime: 40965666, seqnum: 0, connid: 0 98 12:56:43,9759042 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55007 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40965539, endtime: 40965666, seqnum: 0, connid: 0 98 12:56:43,9759120 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55007 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40965541, endtime: 40965666, seqnum: 0, connid: 0 98 12:56:43,9759194 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55007 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40965542, endtime: 40965666, seqnum: 0, connid: 0 98 12:56:43,9759253 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55007 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40965544, endtime: 40965666, seqnum: 0, connid: 0 98 12:56:43,9759322 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55007 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40965547, endtime: 40965666, seqnum: 0, connid: 0 98 12:56:43,9759377 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55007 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40965548, endtime: 40965666, seqnum: 0, connid: 0 98 12:56:43,9759444 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55007 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40965550, endtime: 40965666, seqnum: 0, connid: 0 98 12:56:43,9759499 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55007 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40965553, endtime: 40965666, seqnum: 0, connid: 0 98 12:56:43,9759779 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55007 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40965555, endtime: 40965666, seqnum: 0, connid: 0 98 12:56:43,9759840 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55007 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40965558, endtime: 40965666, seqnum: 0, connid: 0 98 12:56:43,9759906 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55007 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40965559, endtime: 40965666, seqnum: 0, connid: 0 98 12:56:43,9759962 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55007 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40965561, endtime: 40965666, seqnum: 0, connid: 0 98 12:56:44,5139756 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54950 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40965444, endtime: 40965720, seqnum: 0, connid: 0 98 12:56:44,5139936 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54950 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40965447, endtime: 40965720, seqnum: 0, connid: 0 98 12:56:44,5140171 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54950 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40965448, endtime: 40965720, seqnum: 0, connid: 0 98 12:56:44,5140304 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54950 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40965450, endtime: 40965720, seqnum: 0, connid: 0 98 12:56:44,5140429 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54950 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40965452, endtime: 40965720, seqnum: 0, connid: 0 98 12:56:44,5140512 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54950 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40965457, endtime: 40965720, seqnum: 0, connid: 0 98 12:56:44,5140590 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54950 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40965458, endtime: 40965720, seqnum: 0, connid: 0 98 12:56:44,5140653 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54950 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40965461, endtime: 40965720, seqnum: 0, connid: 0 98 12:56:44,5140728 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54950 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40965462, endtime: 40965720, seqnum: 0, connid: 0 98 12:56:44,5141654 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54950 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40965464, endtime: 40965720, seqnum: 0, connid: 0 98 12:56:44,5141740 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54950 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40965466, endtime: 40965720, seqnum: 0, connid: 0 98 12:56:44,5141798 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54950 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40965467, endtime: 40965720, seqnum: 0, connid: 0 98 12:56:44,5142341 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54950 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40965470, endtime: 40965720, seqnum: 0, connid: 0 98 12:56:44,6969498 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55005 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40965571, endtime: 40965738, seqnum: 0, connid: 0 98 12:56:44,6969708 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55005 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40965572, endtime: 40965738, seqnum: 0, connid: 0 98 12:56:44,6969791 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55005 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40965575, endtime: 40965738, seqnum: 0, connid: 0 98 12:56:44,6969872 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55005 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40965576, endtime: 40965738, seqnum: 0, connid: 0 98 12:56:44,6969935 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55005 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40965579, endtime: 40965738, seqnum: 0, connid: 0 98 12:56:44,6970007 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55005 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40965581, endtime: 40965738, seqnum: 0, connid: 0 98 12:56:44,6970066 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55005 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40965583, endtime: 40965738, seqnum: 0, connid: 0 98 12:56:44,6970140 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55005 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40965587, endtime: 40965738, seqnum: 0, connid: 0 98 12:56:44,6970348 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55005 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40965589, endtime: 40965738, seqnum: 0, connid: 0 98 12:56:44,6970839 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55005 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40965592, endtime: 40965738, seqnum: 0, connid: 0 98 12:56:44,6970908 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55005 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40965594, endtime: 40965738, seqnum: 0, connid: 0 98 12:56:44,6970977 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55005 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40965595, endtime: 40965738, seqnum: 0, connid: 0 98 12:56:44,6971038 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55005 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40965599, endtime: 40965738, seqnum: 0, connid: 0 98 12:56:45,5488650 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54996 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40965562, endtime: 40965823, seqnum: 0, connid: 0 98 12:56:45,5488833 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54996 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40965564, endtime: 40965823, seqnum: 0, connid: 0 98 12:56:45,5488907 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54996 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40965566, endtime: 40965823, seqnum: 0, connid: 0 98 12:56:45,5488979 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54996 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40965567, endtime: 40965823, seqnum: 0, connid: 0 98 12:56:45,5489038 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54996 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40965569, endtime: 40965823, seqnum: 0, connid: 0 98 12:56:45,5489104 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54996 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40965570, endtime: 40965823, seqnum: 0, connid: 0 98 12:56:45,5489160 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54996 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40965572, endtime: 40965823, seqnum: 0, connid: 0 98 12:56:45,5489232 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54996 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40965575, endtime: 40965823, seqnum: 0, connid: 0 98 12:56:45,5489287 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54996 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40965576, endtime: 40965823, seqnum: 0, connid: 0 98 12:56:45,5489592 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54996 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40965580, endtime: 40965824, seqnum: 0, connid: 0 98 12:56:45,5489653 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54996 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40965581, endtime: 40965824, seqnum: 0, connid: 0 98 12:56:45,5489719 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54996 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40965583, endtime: 40965824, seqnum: 0, connid: 0 98 12:56:45,5489772 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54996 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40965587, endtime: 40965824, seqnum: 0, connid: 0 98 12:56:46,1536113 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55006 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40965173, endtime: 40965884, seqnum: 0, connid: 0 98 12:56:46,1536262 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55006 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40965175, endtime: 40965884, seqnum: 0, connid: 0 98 12:56:46,1536348 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55006 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40965178, endtime: 40965884, seqnum: 0, connid: 0 98 12:56:46,1536412 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55006 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40965180, endtime: 40965884, seqnum: 0, connid: 0 98 12:56:46,1536481 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55006 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40965181, endtime: 40965884, seqnum: 0, connid: 0 98 12:56:46,1536537 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55006 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40965184, endtime: 40965884, seqnum: 0, connid: 0 98 12:56:46,1536603 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55006 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40965189, endtime: 40965884, seqnum: 0, connid: 0 98 12:56:46,1536656 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55006 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40965191, endtime: 40965884, seqnum: 0, connid: 0 98 12:56:46,1536722 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55006 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40965192, endtime: 40965884, seqnum: 0, connid: 0 98 12:56:46,1537348 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55006 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40965194, endtime: 40965884, seqnum: 0, connid: 0 98 12:56:46,1537429 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55006 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40965196, endtime: 40965884, seqnum: 0, connid: 0 98 12:56:46,1537484 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55006 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40965197, endtime: 40965884, seqnum: 0, connid: 0 98 12:56:48,1882466 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55007 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40965666, endtime: 40966087, seqnum: 0, connid: 0 98 12:56:48,1882654 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55007 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40965667, endtime: 40966087, seqnum: 0, connid: 0 98 12:56:48,1882729 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55007 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40965669, endtime: 40966087, seqnum: 0, connid: 0 98 12:56:48,1882807 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55007 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40965670, endtime: 40966087, seqnum: 0, connid: 0 98 12:56:48,1882865 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55007 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40965672, endtime: 40966087, seqnum: 0, connid: 0 98 12:56:48,1882937 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55007 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40965673, endtime: 40966087, seqnum: 0, connid: 0 98 12:56:48,1882992 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55007 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40965676, endtime: 40966087, seqnum: 0, connid: 0 98 12:56:48,1883062 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55007 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40965678, endtime: 40966087, seqnum: 0, connid: 0 98 12:56:48,1883117 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55007 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40965680, endtime: 40966087, seqnum: 0, connid: 0 98 12:56:48,1883447 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55007 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40965681, endtime: 40966087, seqnum: 0, connid: 0 98 12:56:48,1883511 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55007 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40965684, endtime: 40966087, seqnum: 0, connid: 0 98 12:56:48,1883577 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55007 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40965686, endtime: 40966087, seqnum: 0, connid: 0 98 12:56:48,1883635 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55007 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40965688, endtime: 40966087, seqnum: 0, connid: 0 98 12:56:48,1883732 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55006 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40965200, endtime: 40966087, seqnum: 0, connid: 0 98 12:56:48,1883793 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55006 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40965884, endtime: 40966087, seqnum: 0, connid: 0 98 12:56:48,1883860 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55006 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40965886, endtime: 40966087, seqnum: 0, connid: 0 98 12:56:48,1883918 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55006 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40965887, endtime: 40966087, seqnum: 0, connid: 0 98 12:56:48,1883984 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55006 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40965893, endtime: 40966087, seqnum: 0, connid: 0 98 12:56:48,1884043 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55006 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40965894, endtime: 40966087, seqnum: 0, connid: 0 98 12:56:48,1884627 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55006 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40965897, endtime: 40966087, seqnum: 0, connid: 0 98 12:56:48,1884702 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55006 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40965899, endtime: 40966087, seqnum: 0, connid: 0 98 12:56:48,1884768 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55006 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40965900, endtime: 40966087, seqnum: 0, connid: 0 98 12:56:48,1884827 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55006 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40965903, endtime: 40966087, seqnum: 0, connid: 0 98 12:56:48,1884893 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55006 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40965906, endtime: 40966087, seqnum: 0, connid: 0 98 12:56:48,1884948 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55006 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40965907, endtime: 40966087, seqnum: 0, connid: 0 98 12:56:48,1885015 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55006 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40965909, endtime: 40966087, seqnum: 0, connid: 0 98 12:56:48,5410578 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55005 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40965738, endtime: 40966123, seqnum: 0, connid: 0 98 12:56:48,5410822 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55005 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40965739, endtime: 40966123, seqnum: 0, connid: 0 98 12:56:48,5410941 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55005 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40965741, endtime: 40966123, seqnum: 0, connid: 0 98 12:56:48,5411032 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55005 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40965744, endtime: 40966123, seqnum: 0, connid: 0 98 12:56:48,5411096 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55005 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40965745, endtime: 40966123, seqnum: 0, connid: 0 98 12:56:48,5411168 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55005 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40965749, endtime: 40966123, seqnum: 0, connid: 0 98 12:56:48,5411229 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55005 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40965750, endtime: 40966123, seqnum: 0, connid: 0 98 12:56:48,5411298 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55005 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40965753, endtime: 40966123, seqnum: 0, connid: 0 98 12:56:48,5411357 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55005 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40965755, endtime: 40966123, seqnum: 0, connid: 0 98 12:56:48,5411656 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55005 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40965756, endtime: 40966123, seqnum: 0, connid: 0 98 12:56:48,5411720 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55005 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40965758, endtime: 40966123, seqnum: 0, connid: 0 98 12:56:48,5411792 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55005 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40965759, endtime: 40966123, seqnum: 0, connid: 0 98 12:56:48,5411850 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55005 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40965761, endtime: 40966123, seqnum: 0, connid: 0 98 12:56:49,1373619 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54996 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40965824, endtime: 40966182, seqnum: 0, connid: 0 98 12:56:49,1373813 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54996 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40965825, endtime: 40966182, seqnum: 0, connid: 0 98 12:56:49,1373894 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54996 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40965828, endtime: 40966182, seqnum: 0, connid: 0 98 12:56:49,1373971 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54996 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40965830, endtime: 40966182, seqnum: 0, connid: 0 98 12:56:49,1374035 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54996 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40965831, endtime: 40966182, seqnum: 0, connid: 0 98 12:56:49,1374107 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54996 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40965833, endtime: 40966182, seqnum: 0, connid: 0 98 12:56:49,1374165 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54996 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40965838, endtime: 40966182, seqnum: 0, connid: 0 98 12:56:49,1374234 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54996 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40965841, endtime: 40966182, seqnum: 0, connid: 0 98 12:56:49,1374293 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54996 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40965842, endtime: 40966182, seqnum: 0, connid: 0 98 12:56:49,1374584 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54996 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40965846, endtime: 40966182, seqnum: 0, connid: 0 98 12:56:49,1374647 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54996 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40965848, endtime: 40966182, seqnum: 0, connid: 0 98 12:56:49,1374717 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54996 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40965850, endtime: 40966182, seqnum: 0, connid: 0 98 12:56:49,1374775 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54996 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40965851, endtime: 40966182, seqnum: 0, connid: 0 98 12:56:50,1347443 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54950 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40965720, endtime: 40966282, seqnum: 0, connid: 0 98 12:56:50,1347573 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54950 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40965722, endtime: 40966282, seqnum: 0, connid: 0 98 12:56:50,1347648 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54950 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40965726, endtime: 40966282, seqnum: 0, connid: 0 98 12:56:50,1347720 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54950 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40965728, endtime: 40966282, seqnum: 0, connid: 0 98 12:56:50,1347776 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54950 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40965730, endtime: 40966282, seqnum: 0, connid: 0 98 12:56:50,1347842 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54950 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40965730, endtime: 40966282, seqnum: 0, connid: 0 98 12:56:50,1347895 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54950 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40965733, endtime: 40966282, seqnum: 0, connid: 0 98 12:56:50,1349419 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54950 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40965736, endtime: 40966282, seqnum: 0, connid: 0 98 12:56:50,1350865 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54950 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40965737, endtime: 40966282, seqnum: 0, connid: 0 98 12:56:50,1350965 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54950 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40965739, endtime: 40966282, seqnum: 0, connid: 0 98 12:56:50,1351028 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54950 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40965741, endtime: 40966282, seqnum: 0, connid: 0 98 12:56:50,1351100 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54950 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40965744, endtime: 40966282, seqnum: 0, connid: 0 98 12:56:50,1351158 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54950 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40965745, endtime: 40966282, seqnum: 0, connid: 0 98 12:56:50,2664058 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55007 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40966087, endtime: 40966295, seqnum: 0, connid: 0 98 12:56:50,2664249 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55007 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40966089, endtime: 40966295, seqnum: 0, connid: 0 98 12:56:50,2664329 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55007 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40966092, endtime: 40966295, seqnum: 0, connid: 0 98 12:56:50,2664407 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55007 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40966094, endtime: 40966295, seqnum: 0, connid: 0 98 12:56:50,2664471 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55007 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40966097, endtime: 40966295, seqnum: 0, connid: 0 98 12:56:50,2664543 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55007 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40966099, endtime: 40966295, seqnum: 0, connid: 0 98 12:56:50,2664601 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55007 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40966101, endtime: 40966295, seqnum: 0, connid: 0 98 12:56:50,2664673 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55007 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40966105, endtime: 40966295, seqnum: 0, connid: 0 98 12:56:50,2664731 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55007 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40966108, endtime: 40966295, seqnum: 0, connid: 0 98 12:56:50,2665055 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55007 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40966109, endtime: 40966295, seqnum: 0, connid: 0 98 12:56:50,2665119 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55007 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40966111, endtime: 40966295, seqnum: 0, connid: 0 98 12:56:50,2665188 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55007 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40966114, endtime: 40966295, seqnum: 0, connid: 0 98 12:56:50,2665249 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55007 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40966116, endtime: 40966295, seqnum: 0, connid: 0 98 12:56:50,5758882 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55005 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40966123, endtime: 40966326, seqnum: 0, connid: 0 98 12:56:50,5759104 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55005 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40966123, endtime: 40966326, seqnum: 0, connid: 0 98 12:56:50,5759195 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55005 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40966128, endtime: 40966326, seqnum: 0, connid: 0 98 12:56:50,5759273 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55005 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40966131, endtime: 40966326, seqnum: 0, connid: 0 98 12:56:50,5759339 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55005 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40966131, endtime: 40966326, seqnum: 0, connid: 0 98 12:56:50,5759447 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55005 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40966133, endtime: 40966326, seqnum: 0, connid: 0 98 12:56:50,5759511 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55005 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40966136, endtime: 40966326, seqnum: 0, connid: 0 98 12:56:50,5759583 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55005 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40966139, endtime: 40966326, seqnum: 0, connid: 0 98 12:56:50,5759638 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55005 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40966141, endtime: 40966326, seqnum: 0, connid: 0 98 12:56:50,5759965 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55005 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40966142, endtime: 40966326, seqnum: 0, connid: 0 98 12:56:50,5760026 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55005 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40966144, endtime: 40966326, seqnum: 0, connid: 0 98 12:56:50,5760095 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55005 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40966145, endtime: 40966326, seqnum: 0, connid: 0 98 12:56:50,5764972 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55005 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40966147, endtime: 40966326, seqnum: 0, connid: 0 98 12:56:50,7733230 MCLauncher.exe 6080 TCP Disconnect WIN-0UOTFKKVN1S:54996 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 0, seqnum: 0, connid: 0 98 12:56:50,8777114 MCLauncher.exe 6080 TCP Connect WIN-0UOTFKKVN1S:55034 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 0, mss: 1460, sackopt: 0, tsopt: 0, wsopt: 0, rcvwin: 64240, rcvwinscale: 0, sndwinscale: 0, seqnum: 0, connid: 0 98 12:56:50,8782782 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55034 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40966356, endtime: 40966356, seqnum: 0, connid: 0 98 12:56:50,8917426 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55034 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40966358, endtime: 40966358, seqnum: 0, connid: 0 98 12:56:50,9229494 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55034 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40966361, endtime: 40966361, seqnum: 0, connid: 0 98 12:56:50,9395977 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55034 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40966363, endtime: 40966363, seqnum: 0, connid: 0 98 12:56:50,9784326 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55034 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40966366, endtime: 40966366, seqnum: 0, connid: 0 98 12:56:50,9850540 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55034 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40966367, endtime: 40966367, seqnum: 0, connid: 0 98 12:56:51,0032704 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55034 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40966369, endtime: 40966369, seqnum: 0, connid: 0 98 12:56:51,0317518 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55034 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40966372, endtime: 40966372, seqnum: 0, connid: 0 98 12:56:51,0567915 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55034 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40966374, endtime: 40966374, seqnum: 0, connid: 0 98 12:56:51,1255926 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55034 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40966381, endtime: 40966381, seqnum: 0, connid: 0 98 12:56:51,1429491 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55034 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40966383, endtime: 40966383, seqnum: 0, connid: 0 98 12:56:51,1753463 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55034 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40966386, endtime: 40966386, seqnum: 0, connid: 0 98 12:56:51,2057266 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55034 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40966389, endtime: 40966389, seqnum: 0, connid: 0 98 12:56:51,2204477 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55034 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40966391, endtime: 40966391, seqnum: 0, connid: 0 98 12:56:51,2360147 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55034 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40966392, endtime: 40966392, seqnum: 0, connid: 0 98 12:56:51,2722453 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55034 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40966395, endtime: 40966396, seqnum: 0, connid: 0 98 12:56:51,2838163 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55034 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40966397, endtime: 40966397, seqnum: 0, connid: 0 98 12:56:51,3048919 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55034 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40966398, endtime: 40966399, seqnum: 0, connid: 0 98 12:56:51,3150233 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55034 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40966400, endtime: 40966400, seqnum: 0, connid: 0 98 12:56:51,3204287 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55034 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40966401, endtime: 40966401, seqnum: 0, connid: 0 98 12:56:51,3262291 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55034 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40966401, endtime: 40966401, seqnum: 0, connid: 0 98 12:56:51,3375618 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55008 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40965444, endtime: 40966402, seqnum: 0, connid: 0 98 12:56:51,3375782 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55008 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40965447, endtime: 40966402, seqnum: 0, connid: 0 98 12:56:51,3375870 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55008 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40965448, endtime: 40966402, seqnum: 0, connid: 0 98 12:56:51,3375937 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55008 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40965450, endtime: 40966402, seqnum: 0, connid: 0 98 12:56:51,3376009 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55008 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40965452, endtime: 40966402, seqnum: 0, connid: 0 98 12:56:51,3376067 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55008 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40965457, endtime: 40966402, seqnum: 0, connid: 0 98 12:56:51,3376139 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55008 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40965458, endtime: 40966402, seqnum: 0, connid: 0 98 12:56:51,3398478 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55008 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40965461, endtime: 40966403, seqnum: 0, connid: 0 98 12:56:51,3398630 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55008 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40965462, endtime: 40966403, seqnum: 0, connid: 0 98 12:56:51,3398702 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55008 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40965464, endtime: 40966403, seqnum: 0, connid: 0 98 12:56:51,3398774 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55008 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40965466, endtime: 40966403, seqnum: 0, connid: 0 98 12:56:51,3398833 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55008 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40965467, endtime: 40966403, seqnum: 0, connid: 0 98 12:56:51,3398896 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55008 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40965470, endtime: 40966403, seqnum: 0, connid: 0 98 12:56:51,3449160 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55034 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40966403, endtime: 40966403, seqnum: 0, connid: 0 98 12:56:51,3612667 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55034 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40966405, endtime: 40966405, seqnum: 0, connid: 0 98 12:56:51,3763818 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55034 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40966406, endtime: 40966406, seqnum: 0, connid: 0 98 12:56:51,3957923 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55034 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40966408, endtime: 40966408, seqnum: 0, connid: 0 98 12:56:51,4075991 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55034 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40966409, endtime: 40966409, seqnum: 0, connid: 0 98 12:56:51,4381988 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55034 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40966412, endtime: 40966412, seqnum: 0, connid: 0 98 12:56:51,4549233 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55034 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40966414, endtime: 40966414, seqnum: 0, connid: 0 98 12:56:51,4726219 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55034 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40966416, endtime: 40966416, seqnum: 0, connid: 0 98 12:56:51,4882933 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55034 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40966417, endtime: 40966417, seqnum: 0, connid: 0 98 12:56:51,5116126 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55034 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40966419, endtime: 40966420, seqnum: 0, connid: 0 98 12:56:51,5345459 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55034 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40966422, endtime: 40966422, seqnum: 0, connid: 0 98 12:56:51,5483062 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55034 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40966423, endtime: 40966423, seqnum: 0, connid: 0 98 12:56:51,5658818 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55034 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40966425, endtime: 40966425, seqnum: 0, connid: 0 98 12:56:51,5811952 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55034 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40966427, endtime: 40966427, seqnum: 0, connid: 0 98 12:56:51,6122690 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55034 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40966430, endtime: 40966430, seqnum: 0, connid: 0 98 12:56:51,7676270 MCLauncher.exe 6080 TCP TCPCopy WIN-0UOTFKKVN1S:54920 -> sheltex.company:8000 SUCCESS Length: 2, seqnum: 0, connid: 0 98 12:56:51,7676390 MCLauncher.exe 6080 TCP Receive WIN-0UOTFKKVN1S:54920 -> sheltex.company:8000 SUCCESS Length: 2, seqnum: 0, connid: 0 98 12:56:51,7679349 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54920 -> sheltex.company:8000 SUCCESS Length: 2, startime: 40966445, endtime: 40966445, seqnum: 0, connid: 0 98 12:56:51,7867935 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55007 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40966295, endtime: 40966447, seqnum: 0, connid: 0 98 12:56:51,7868207 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55007 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40966297, endtime: 40966447, seqnum: 0, connid: 0 98 12:56:51,7868323 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55007 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40966298, endtime: 40966447, seqnum: 0, connid: 0 98 12:56:51,7868448 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55007 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40966300, endtime: 40966447, seqnum: 0, connid: 0 98 12:56:51,7868547 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55007 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40966301, endtime: 40966447, seqnum: 0, connid: 0 98 12:56:51,7868664 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55007 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40966301, endtime: 40966447, seqnum: 0, connid: 0 98 12:56:51,7868761 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55007 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40966305, endtime: 40966447, seqnum: 0, connid: 0 98 12:56:51,7868877 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55007 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40966306, endtime: 40966447, seqnum: 0, connid: 0 98 12:56:51,7868980 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55007 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40966308, endtime: 40966447, seqnum: 0, connid: 0 98 12:56:51,7869586 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55007 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40966310, endtime: 40966447, seqnum: 0, connid: 0 98 12:56:51,7869705 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55007 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40966312, endtime: 40966447, seqnum: 0, connid: 0 98 12:56:51,7869825 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55007 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40966314, endtime: 40966447, seqnum: 0, connid: 0 98 12:56:51,7869927 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55007 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40966316, endtime: 40966447, seqnum: 0, connid: 0 98 12:56:52,2096400 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55007 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40966447, endtime: 40966490, seqnum: 0, connid: 0 98 12:56:52,4048981 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54950 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40966282, endtime: 40966509, seqnum: 0, connid: 0 98 12:56:52,4049191 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54950 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40966284, endtime: 40966509, seqnum: 0, connid: 0 98 12:56:52,4049274 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54950 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40966286, endtime: 40966509, seqnum: 0, connid: 0 98 12:56:52,4049352 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54950 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40966290, endtime: 40966509, seqnum: 0, connid: 0 98 12:56:52,4049413 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54950 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40966292, endtime: 40966509, seqnum: 0, connid: 0 98 12:56:52,4049485 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54950 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40966294, endtime: 40966509, seqnum: 0, connid: 0 98 12:56:52,4049543 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54950 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40966297, endtime: 40966509, seqnum: 0, connid: 0 98 12:56:52,4049612 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54950 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40966298, endtime: 40966509, seqnum: 0, connid: 0 98 12:56:52,4049673 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54950 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40966300, endtime: 40966509, seqnum: 0, connid: 0 98 12:56:52,4050443 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54950 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40966301, endtime: 40966509, seqnum: 0, connid: 0 98 12:56:52,4050518 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54950 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40966301, endtime: 40966509, seqnum: 0, connid: 0 98 12:56:52,4050588 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54950 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40966305, endtime: 40966509, seqnum: 0, connid: 0 98 12:56:52,4052560 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54950 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40966306, endtime: 40966509, seqnum: 0, connid: 0 98 12:56:53,2225777 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55006 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40966087, endtime: 40966591, seqnum: 0, connid: 0 98 12:56:53,2225980 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55006 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40966089, endtime: 40966591, seqnum: 0, connid: 0 98 12:56:53,2226057 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55006 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40966092, endtime: 40966591, seqnum: 0, connid: 0 98 12:56:53,2226132 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55006 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40966094, endtime: 40966591, seqnum: 0, connid: 0 98 12:56:53,2226190 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55006 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40966097, endtime: 40966591, seqnum: 0, connid: 0 98 12:56:53,2226259 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55006 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40966099, endtime: 40966591, seqnum: 0, connid: 0 98 12:56:53,2226318 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55006 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40966101, endtime: 40966591, seqnum: 0, connid: 0 98 12:56:53,2226384 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55006 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40966105, endtime: 40966591, seqnum: 0, connid: 0 98 12:56:53,2226442 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55006 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40966108, endtime: 40966591, seqnum: 0, connid: 0 98 12:56:53,2226750 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55006 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40966109, endtime: 40966591, seqnum: 0, connid: 0 98 12:56:53,2226813 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55006 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40966111, endtime: 40966591, seqnum: 0, connid: 0 98 12:56:53,2226880 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55006 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40966114, endtime: 40966591, seqnum: 0, connid: 0 98 12:56:53,2226941 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55006 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40966116, endtime: 40966591, seqnum: 0, connid: 0 98 12:56:53,3761737 MCLauncher.exe 6080 TCP Disconnect WIN-0UOTFKKVN1S:55005 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 0, seqnum: 0, connid: 0 98 12:56:53,5649730 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55008 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40966402, endtime: 40966625, seqnum: 0, connid: 0 98 12:56:53,5649932 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55008 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40966403, endtime: 40966625, seqnum: 0, connid: 0 98 12:56:53,5650013 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55008 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40966405, endtime: 40966625, seqnum: 0, connid: 0 98 12:56:53,5650093 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55008 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40966406, endtime: 40966625, seqnum: 0, connid: 0 98 12:56:53,5650154 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55008 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40966408, endtime: 40966625, seqnum: 0, connid: 0 98 12:56:53,5650229 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55008 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40966409, endtime: 40966625, seqnum: 0, connid: 0 98 12:56:53,5650287 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55008 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40966412, endtime: 40966625, seqnum: 0, connid: 0 98 12:56:53,5650356 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55008 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40966414, endtime: 40966625, seqnum: 0, connid: 0 98 12:56:53,5650414 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55008 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40966416, endtime: 40966625, seqnum: 0, connid: 0 98 12:56:53,5651032 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55008 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40966417, endtime: 40966625, seqnum: 0, connid: 0 98 12:56:53,5651124 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55008 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40966419, endtime: 40966625, seqnum: 0, connid: 0 98 12:56:53,5651196 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55008 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40966420, endtime: 40966625, seqnum: 0, connid: 0 98 12:56:53,5651257 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55008 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40966422, endtime: 40966625, seqnum: 0, connid: 0 98 12:56:53,7875407 MCLauncher.exe 6080 TCP Disconnect WIN-0UOTFKKVN1S:55007 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 0, seqnum: 0, connid: 0 98 12:56:53,8738913 MCLauncher.exe 6080 TCP Connect WIN-0UOTFKKVN1S:55037 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 0, mss: 1460, sackopt: 0, tsopt: 0, wsopt: 0, rcvwin: 64240, rcvwinscale: 0, sndwinscale: 0, seqnum: 0, connid: 0 98 12:56:53,8742418 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55037 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40966656, endtime: 40966656, seqnum: 0, connid: 0 98 12:56:53,9071292 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55037 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40966659, endtime: 40966659, seqnum: 0, connid: 0 98 12:56:53,9230746 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55037 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40966661, endtime: 40966661, seqnum: 0, connid: 0 98 12:56:53,9386645 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55037 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40966662, endtime: 40966662, seqnum: 0, connid: 0 98 12:56:53,9551563 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55037 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40966664, endtime: 40966664, seqnum: 0, connid: 0 98 12:56:53,9797029 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55037 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40966667, endtime: 40966667, seqnum: 0, connid: 0 98 12:56:53,9852906 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55037 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40966667, endtime: 40966667, seqnum: 0, connid: 0 98 12:56:54,0011252 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55037 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40966669, endtime: 40966669, seqnum: 0, connid: 0 98 12:56:54,0173424 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55037 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40966670, endtime: 40966670, seqnum: 0, connid: 0 98 12:56:54,0320008 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55037 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40966672, endtime: 40966672, seqnum: 0, connid: 0 98 12:56:54,0495598 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55037 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40966673, endtime: 40966674, seqnum: 0, connid: 0 98 12:56:54,0633930 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55037 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40966675, endtime: 40966675, seqnum: 0, connid: 0 98 12:56:54,0795351 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55037 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40966677, endtime: 40966677, seqnum: 0, connid: 0 98 12:56:54,1108865 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55037 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40966680, endtime: 40966680, seqnum: 0, connid: 0 98 12:56:54,1260871 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55037 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40966681, endtime: 40966681, seqnum: 0, connid: 0 98 12:56:54,1420644 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55037 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40966683, endtime: 40966683, seqnum: 0, connid: 0 98 12:56:54,1655782 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55037 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40966684, endtime: 40966685, seqnum: 0, connid: 0 98 12:56:54,1828277 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55037 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40966686, endtime: 40966687, seqnum: 0, connid: 0 98 12:56:54,1881848 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55037 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40966687, endtime: 40966687, seqnum: 0, connid: 0 98 12:56:54,2042984 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55037 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40966689, endtime: 40966689, seqnum: 0, connid: 0 98 12:56:54,2207785 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55037 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40966691, endtime: 40966691, seqnum: 0, connid: 0 98 12:56:54,2409754 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55037 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40966692, endtime: 40966693, seqnum: 0, connid: 0 98 12:56:54,2679623 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55037 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40966695, endtime: 40966695, seqnum: 0, connid: 0 98 12:56:54,3035033 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55037 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40966698, endtime: 40966699, seqnum: 0, connid: 0 98 12:56:54,3306850 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55037 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40966701, endtime: 40966702, seqnum: 0, connid: 0 98 12:56:54,3607173 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55037 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40966705, endtime: 40966705, seqnum: 0, connid: 0 98 12:56:54,3769794 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55037 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40966706, endtime: 40966706, seqnum: 0, connid: 0 98 12:56:54,3828114 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55037 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40966707, endtime: 40966707, seqnum: 0, connid: 0 98 12:56:54,4091287 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55037 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40966709, endtime: 40966710, seqnum: 0, connid: 0 98 12:56:54,4229979 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55037 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40966711, endtime: 40966711, seqnum: 0, connid: 0 98 12:56:54,4389480 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55037 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40966712, endtime: 40966713, seqnum: 0, connid: 0 98 12:56:54,4553949 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55037 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40966714, endtime: 40966714, seqnum: 0, connid: 0 98 12:56:54,4711710 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55037 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40966716, endtime: 40966716, seqnum: 0, connid: 0 98 12:56:54,5121528 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55034 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40966431, endtime: 40966720, seqnum: 0, connid: 0 98 12:56:54,5121703 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55034 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40966433, endtime: 40966720, seqnum: 0, connid: 0 98 12:56:54,5151963 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55037 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40966720, endtime: 40966720, seqnum: 0, connid: 0 98 12:56:54,5507573 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55037 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40966723, endtime: 40966724, seqnum: 0, connid: 0 98 12:56:54,5884048 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55037 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40966727, endtime: 40966727, seqnum: 0, connid: 0 98 12:56:54,6113040 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55037 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40966730, endtime: 40966730, seqnum: 0, connid: 0 98 12:56:55,3931725 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54950 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40966509, endtime: 40966808, seqnum: 0, connid: 0 98 12:56:55,3931938 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54950 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40966511, endtime: 40966808, seqnum: 0, connid: 0 98 12:56:55,3932021 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54950 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40966512, endtime: 40966808, seqnum: 0, connid: 0 98 12:56:55,3932102 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54950 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40966514, endtime: 40966808, seqnum: 0, connid: 0 98 12:56:55,3932165 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54950 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40966516, endtime: 40966808, seqnum: 0, connid: 0 98 12:56:55,3932238 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54950 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40966517, endtime: 40966808, seqnum: 0, connid: 0 98 12:56:55,3932298 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54950 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40966519, endtime: 40966808, seqnum: 0, connid: 0 98 12:56:55,3932368 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54950 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40966520, endtime: 40966808, seqnum: 0, connid: 0 98 12:56:55,3932429 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54950 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40966522, endtime: 40966808, seqnum: 0, connid: 0 98 12:56:55,3933171 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54950 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40966526, endtime: 40966808, seqnum: 0, connid: 0 98 12:56:55,3933249 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54950 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40966528, endtime: 40966808, seqnum: 0, connid: 0 98 12:56:55,3933321 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54950 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40966530, endtime: 40966808, seqnum: 0, connid: 0 98 12:56:56,3812031 MCLauncher.exe 6080 TCP Disconnect WIN-0UOTFKKVN1S:54950 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 0, seqnum: 0, connid: 0 98 12:56:56,3906416 MCLauncher.exe 6080 TCP Reconnect WIN-0UOTFKKVN1S:55036 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 0, seqnum: 0, connid: 0 98 12:56:56,4696383 MCLauncher.exe 6080 TCP Connect WIN-0UOTFKKVN1S:55036 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 0, mss: 1460, sackopt: 0, tsopt: 0, wsopt: 0, rcvwin: 64240, rcvwinscale: 0, sndwinscale: 0, seqnum: 0, connid: 0 98 12:56:56,4702855 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55036 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40966916, endtime: 40966916, seqnum: 0, connid: 0 98 12:56:56,4864110 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55036 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40966917, endtime: 40966917, seqnum: 0, connid: 0 98 12:56:56,5017893 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55036 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40966919, endtime: 40966919, seqnum: 0, connid: 0 98 12:56:56,5164868 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55036 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40966920, endtime: 40966920, seqnum: 0, connid: 0 98 12:56:56,5322408 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55036 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40966922, endtime: 40966922, seqnum: 0, connid: 0 98 12:56:56,5474553 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55036 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40966923, endtime: 40966923, seqnum: 0, connid: 0 98 12:56:56,5642233 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55036 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40966925, endtime: 40966925, seqnum: 0, connid: 0 98 12:56:56,5797517 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55036 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40966927, endtime: 40966927, seqnum: 0, connid: 0 98 12:56:56,6101016 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55036 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40966930, endtime: 40966930, seqnum: 0, connid: 0 98 12:56:56,6254120 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55036 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40966931, endtime: 40966931, seqnum: 0, connid: 0 98 12:56:56,6422176 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55036 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40966933, endtime: 40966933, seqnum: 0, connid: 0 98 12:56:56,6573177 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55036 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40966934, endtime: 40966934, seqnum: 0, connid: 0 98 12:56:56,6731700 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55036 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40966936, endtime: 40966936, seqnum: 0, connid: 0 98 12:56:56,6888137 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55036 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40966937, endtime: 40966937, seqnum: 0, connid: 0 98 12:56:56,7041704 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55036 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40966939, endtime: 40966939, seqnum: 0, connid: 0 98 12:56:56,7200036 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55036 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40966941, endtime: 40966941, seqnum: 0, connid: 0 98 12:56:56,7329116 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55006 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40966591, endtime: 40966942, seqnum: 0, connid: 0 98 12:56:56,7329299 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55006 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40966592, endtime: 40966942, seqnum: 0, connid: 0 98 12:56:56,7329374 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55006 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40966594, endtime: 40966942, seqnum: 0, connid: 0 98 12:56:56,7329449 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55006 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40966596, endtime: 40966942, seqnum: 0, connid: 0 98 12:56:56,7329507 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55006 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40966600, endtime: 40966942, seqnum: 0, connid: 0 98 12:56:56,7329576 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55006 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40966600, endtime: 40966942, seqnum: 0, connid: 0 98 12:56:56,7329632 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55006 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40966601, endtime: 40966942, seqnum: 0, connid: 0 98 12:56:56,7329698 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55006 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40966601, endtime: 40966942, seqnum: 0, connid: 0 98 12:56:56,7329754 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55006 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40966602, endtime: 40966942, seqnum: 0, connid: 0 98 12:56:56,7330061 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55006 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40966605, endtime: 40966942, seqnum: 0, connid: 0 98 12:56:56,7330122 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55006 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40966606, endtime: 40966942, seqnum: 0, connid: 0 98 12:56:56,7330308 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55006 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40966608, endtime: 40966942, seqnum: 0, connid: 0 98 12:56:56,7330374 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55006 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40966611, endtime: 40966942, seqnum: 0, connid: 0 98 12:56:56,7354985 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55036 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40966942, endtime: 40966942, seqnum: 0, connid: 0 98 12:56:56,7507311 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55036 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40966944, endtime: 40966944, seqnum: 0, connid: 0 98 12:56:56,7800164 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55036 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40966945, endtime: 40966947, seqnum: 0, connid: 0 98 12:56:56,7993444 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55036 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40966948, endtime: 40966949, seqnum: 0, connid: 0 98 12:56:56,8162019 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55036 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40966950, endtime: 40966950, seqnum: 0, connid: 0 98 12:56:56,8327521 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55036 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40966951, endtime: 40966952, seqnum: 0, connid: 0 98 12:56:56,8468382 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55036 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40966953, endtime: 40966953, seqnum: 0, connid: 0 98 12:56:56,8603477 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55036 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40966955, endtime: 40966955, seqnum: 0, connid: 0 98 12:56:56,8766976 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55036 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40966956, endtime: 40966956, seqnum: 0, connid: 0 98 12:56:56,8928677 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55036 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40966958, endtime: 40966958, seqnum: 0, connid: 0 98 12:56:57,5934840 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55036 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40966959, endtime: 40967028, seqnum: 0, connid: 0 98 12:56:57,5935048 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55036 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40966961, endtime: 40967028, seqnum: 0, connid: 0 98 12:56:57,5935137 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55036 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40966963, endtime: 40967028, seqnum: 0, connid: 0 98 12:56:57,5935223 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55036 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40966966, endtime: 40967028, seqnum: 0, connid: 0 98 12:56:57,5935289 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55036 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40966967, endtime: 40967028, seqnum: 0, connid: 0 98 12:56:57,5935369 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55036 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40966969, endtime: 40967028, seqnum: 0, connid: 0 98 12:56:57,5935433 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55036 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40966970, endtime: 40967028, seqnum: 0, connid: 0 98 12:56:57,5935511 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55036 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40966972, endtime: 40967028, seqnum: 0, connid: 0 98 12:56:57,5935572 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55036 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40966973, endtime: 40967028, seqnum: 0, connid: 0 98 12:56:57,5935918 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55036 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40966975, endtime: 40967028, seqnum: 0, connid: 0 98 12:56:57,5935982 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55036 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40966978, endtime: 40967028, seqnum: 0, connid: 0 98 12:56:57,5936054 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55036 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40966980, endtime: 40967028, seqnum: 0, connid: 0 98 12:56:57,5936115 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55036 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40966983, endtime: 40967028, seqnum: 0, connid: 0 98 12:56:57,6773580 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55008 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40966625, endtime: 40967036, seqnum: 0, connid: 0 98 12:56:57,6773760 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55008 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40966626, endtime: 40967036, seqnum: 0, connid: 0 98 12:56:57,6773835 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55008 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40966628, endtime: 40967036, seqnum: 0, connid: 0 98 12:56:57,6773913 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55008 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40966630, endtime: 40967036, seqnum: 0, connid: 0 98 12:56:57,6773974 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55008 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40966631, endtime: 40967036, seqnum: 0, connid: 0 98 12:56:57,6774154 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55008 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40966633, endtime: 40967036, seqnum: 0, connid: 0 98 12:56:57,6774223 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55008 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40966634, endtime: 40967036, seqnum: 0, connid: 0 98 12:56:57,6774298 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55008 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40966636, endtime: 40967036, seqnum: 0, connid: 0 98 12:56:57,6774356 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55008 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40966637, endtime: 40967036, seqnum: 0, connid: 0 98 12:56:57,6774669 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55008 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40966639, endtime: 40967036, seqnum: 0, connid: 0 98 12:56:57,6774727 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55008 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40966641, endtime: 40967036, seqnum: 0, connid: 0 98 12:56:57,6774797 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55008 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40966642, endtime: 40967036, seqnum: 0, connid: 0 98 12:56:57,6775672 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55008 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40966644, endtime: 40967036, seqnum: 0, connid: 0 98 12:56:57,6909947 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55034 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40966436, endtime: 40967038, seqnum: 0, connid: 0 98 12:56:57,6910152 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55034 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40966437, endtime: 40967038, seqnum: 0, connid: 0 98 12:56:57,6910235 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55034 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40966439, endtime: 40967038, seqnum: 0, connid: 0 98 12:56:57,6910316 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55034 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40966441, endtime: 40967038, seqnum: 0, connid: 0 98 12:56:57,6910382 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55034 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40966442, endtime: 40967038, seqnum: 0, connid: 0 98 12:56:57,6910454 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55034 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40966444, endtime: 40967038, seqnum: 0, connid: 0 98 12:56:57,6910512 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55034 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40966449, endtime: 40967038, seqnum: 0, connid: 0 98 12:56:57,6910584 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55034 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40966450, endtime: 40967038, seqnum: 0, connid: 0 98 12:56:57,6910751 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55034 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40966452, endtime: 40967038, seqnum: 0, connid: 0 98 12:56:57,6911114 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55034 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40966455, endtime: 40967038, seqnum: 0, connid: 0 98 12:56:57,6911177 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55034 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40966458, endtime: 40967038, seqnum: 0, connid: 0 98 12:56:57,6911249 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55034 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40966720, endtime: 40967038, seqnum: 0, connid: 0 98 12:56:57,6911308 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55034 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40966723, endtime: 40967038, seqnum: 0, connid: 0 98 12:56:57,7519523 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55037 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40966731, endtime: 40967044, seqnum: 0, connid: 0 98 12:56:59,3913811 MCLauncher.exe 6080 TCP Reconnect WIN-0UOTFKKVN1S:55040 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 0, seqnum: 0, connid: 0 98 12:56:59,4088154 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55008 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40967036, endtime: 40967209, seqnum: 0, connid: 0 98 12:56:59,4088359 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55008 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40967037, endtime: 40967209, seqnum: 0, connid: 0 98 12:56:59,4088444 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55008 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40967039, endtime: 40967209, seqnum: 0, connid: 0 98 12:56:59,4088528 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55008 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40967041, endtime: 40967209, seqnum: 0, connid: 0 98 12:56:59,4088591 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55008 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40967042, endtime: 40967209, seqnum: 0, connid: 0 98 12:56:59,4088663 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55008 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40967044, endtime: 40967209, seqnum: 0, connid: 0 98 12:56:59,4088957 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55008 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40967045, endtime: 40967209, seqnum: 0, connid: 0 98 12:56:59,4089051 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55008 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40967047, endtime: 40967209, seqnum: 0, connid: 0 98 12:56:59,4089115 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55008 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40967048, endtime: 40967209, seqnum: 0, connid: 0 98 12:56:59,4089470 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55008 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40967050, endtime: 40967210, seqnum: 0, connid: 0 98 12:56:59,4089533 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55008 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40967052, endtime: 40967210, seqnum: 0, connid: 0 98 12:56:59,4089603 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55008 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40967053, endtime: 40967210, seqnum: 0, connid: 0 98 12:56:59,4089664 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55008 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40967055, endtime: 40967210, seqnum: 0, connid: 0 98 12:56:59,5007683 MCLauncher.exe 6080 TCP Connect WIN-0UOTFKKVN1S:55040 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 0, mss: 1460, sackopt: 0, tsopt: 0, wsopt: 0, rcvwin: 64240, rcvwinscale: 0, sndwinscale: 0, seqnum: 0, connid: 0 98 12:56:59,5011426 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55040 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40967219, endtime: 40967219, seqnum: 0, connid: 0 98 12:56:59,5169575 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55040 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40967220, endtime: 40967220, seqnum: 0, connid: 0 98 12:56:59,5324004 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55040 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40967222, endtime: 40967222, seqnum: 0, connid: 0 98 12:56:59,5480848 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55040 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40967223, endtime: 40967223, seqnum: 0, connid: 0 98 12:56:59,5638759 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55040 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40967225, endtime: 40967225, seqnum: 0, connid: 0 98 12:56:59,5791386 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55040 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40967226, endtime: 40967227, seqnum: 0, connid: 0 98 12:56:59,5950740 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55040 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40967228, endtime: 40967228, seqnum: 0, connid: 0 98 12:56:59,6104875 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55040 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40967230, endtime: 40967230, seqnum: 0, connid: 0 98 12:56:59,6271907 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55040 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40967231, endtime: 40967231, seqnum: 0, connid: 0 98 12:56:59,6418683 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55040 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40967233, endtime: 40967233, seqnum: 0, connid: 0 98 12:56:59,6573773 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55040 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40967234, endtime: 40967234, seqnum: 0, connid: 0 98 12:56:59,6730553 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55040 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40967236, endtime: 40967236, seqnum: 0, connid: 0 98 12:56:59,7002257 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55040 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40967237, endtime: 40967239, seqnum: 0, connid: 0 98 12:56:59,7196866 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55040 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40967241, endtime: 40967241, seqnum: 0, connid: 0 98 12:56:59,7365123 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55040 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40967242, endtime: 40967242, seqnum: 0, connid: 0 98 12:56:59,7799181 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55040 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40967245, endtime: 40967247, seqnum: 0, connid: 0 98 12:56:59,7998473 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55040 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40967249, endtime: 40967249, seqnum: 0, connid: 0 98 12:56:59,8137685 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55040 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40967250, endtime: 40967250, seqnum: 0, connid: 0 98 12:56:59,8303401 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55040 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40967251, endtime: 40967252, seqnum: 0, connid: 0 98 12:56:59,8463703 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55040 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40967253, endtime: 40967253, seqnum: 0, connid: 0 98 12:56:59,8619430 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55040 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40967255, endtime: 40967255, seqnum: 0, connid: 0 98 12:56:59,8774620 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55040 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40967256, endtime: 40967256, seqnum: 0, connid: 0 98 12:56:59,8932407 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55040 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40967258, endtime: 40967258, seqnum: 0, connid: 0 98 12:56:59,9075398 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55040 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40967259, endtime: 40967259, seqnum: 0, connid: 0 98 12:56:59,9246463 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55040 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40967261, endtime: 40967261, seqnum: 0, connid: 0 98 12:56:59,9401382 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55040 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40967263, endtime: 40967263, seqnum: 0, connid: 0 98 12:56:59,9718173 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55040 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40967266, endtime: 40967266, seqnum: 0, connid: 0 98 12:56:59,9854225 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55040 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40967267, endtime: 40967267, seqnum: 0, connid: 0 98 12:57:00,0043817 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55040 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40967269, endtime: 40967269, seqnum: 0, connid: 0 98 12:57:00,0177729 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55040 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40967270, endtime: 40967270, seqnum: 0, connid: 0 98 12:57:00,0326525 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55040 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40967272, endtime: 40967272, seqnum: 0, connid: 0 98 12:57:00,0493401 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55040 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40967273, endtime: 40967274, seqnum: 0, connid: 0 98 12:57:00,0680065 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55040 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40967275, endtime: 40967275, seqnum: 0, connid: 0 98 12:57:00,1080164 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55040 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40967278, endtime: 40967279, seqnum: 0, connid: 0 98 12:57:00,1298886 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55040 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40967282, endtime: 40967282, seqnum: 0, connid: 0 98 12:57:00,1431785 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55040 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40967283, endtime: 40967283, seqnum: 0, connid: 0 98 12:57:00,1599331 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55040 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40967284, endtime: 40967285, seqnum: 0, connid: 0 98 12:57:00,1734623 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55040 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40967286, endtime: 40967286, seqnum: 0, connid: 0 98 12:57:01,0090797 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55037 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40966733, endtime: 40967370, seqnum: 0, connid: 0 98 12:57:01,0090983 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55037 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40966736, endtime: 40967370, seqnum: 0, connid: 0 98 12:57:01,0091077 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55037 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40966738, endtime: 40967370, seqnum: 0, connid: 0 98 12:57:01,0091149 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55037 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40966741, endtime: 40967370, seqnum: 0, connid: 0 98 12:57:01,0091224 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55037 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40966742, endtime: 40967370, seqnum: 0, connid: 0 98 12:57:01,0091285 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55037 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40966744, endtime: 40967370, seqnum: 0, connid: 0 98 12:57:01,0091357 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55037 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40966745, endtime: 40967370, seqnum: 0, connid: 0 98 12:57:01,0091418 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55037 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40966749, endtime: 40967370, seqnum: 0, connid: 0 98 12:57:01,0091490 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55037 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40966750, endtime: 40967370, seqnum: 0, connid: 0 98 12:57:01,0091781 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55037 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40966752, endtime: 40967370, seqnum: 0, connid: 0 98 12:57:01,0091856 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55037 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40966753, endtime: 40967370, seqnum: 0, connid: 0 98 12:57:01,0091914 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55037 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40966755, endtime: 40967370, seqnum: 0, connid: 0 98 12:57:01,0091986 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55037 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40967044, endtime: 40967370, seqnum: 0, connid: 0 98 12:57:01,7799976 MCLauncher.exe 6080 TCP TCPCopy WIN-0UOTFKKVN1S:54920 -> sheltex.company:8000 SUCCESS Length: 2, seqnum: 0, connid: 0 98 12:57:01,7800095 MCLauncher.exe 6080 TCP Receive WIN-0UOTFKKVN1S:54920 -> sheltex.company:8000 SUCCESS Length: 2, seqnum: 0, connid: 0 98 12:57:01,7802702 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54920 -> sheltex.company:8000 SUCCESS Length: 2, startime: 40967447, endtime: 40967447, seqnum: 0, connid: 0 98 12:57:02,5473509 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55006 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40966942, endtime: 40967523, seqnum: 0, connid: 0 98 12:57:02,5473683 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55006 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40966944, endtime: 40967523, seqnum: 0, connid: 0 98 12:57:02,5473775 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55006 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40966945, endtime: 40967523, seqnum: 0, connid: 0 98 12:57:02,5473844 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55006 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40966948, endtime: 40967523, seqnum: 0, connid: 0 98 12:57:02,5474018 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55006 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40966950, endtime: 40967523, seqnum: 0, connid: 0 98 12:57:02,5474090 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55006 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40966951, endtime: 40967523, seqnum: 0, connid: 0 98 12:57:02,5474165 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55006 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40966953, endtime: 40967523, seqnum: 0, connid: 0 98 12:57:02,5474226 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55006 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40966955, endtime: 40967523, seqnum: 0, connid: 0 98 12:57:02,5474298 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55006 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40966956, endtime: 40967523, seqnum: 0, connid: 0 98 12:57:02,5474614 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55006 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40966958, endtime: 40967523, seqnum: 0, connid: 0 98 12:57:02,5474686 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55006 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40966959, endtime: 40967523, seqnum: 0, connid: 0 98 12:57:02,5474742 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55006 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40966961, endtime: 40967523, seqnum: 0, connid: 0 98 12:57:02,5474814 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55006 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40966963, endtime: 40967523, seqnum: 0, connid: 0 98 12:57:02,9963581 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55034 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40967038, endtime: 40967568, seqnum: 0, connid: 0 98 12:57:02,9963883 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55034 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40967039, endtime: 40967568, seqnum: 0, connid: 0 98 12:57:02,9963983 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55034 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40967041, endtime: 40967568, seqnum: 0, connid: 0 98 12:57:02,9964064 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55034 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40967042, endtime: 40967568, seqnum: 0, connid: 0 98 12:57:02,9964127 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55034 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40967044, endtime: 40967568, seqnum: 0, connid: 0 98 12:57:02,9964202 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55034 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40967045, endtime: 40967568, seqnum: 0, connid: 0 98 12:57:02,9964260 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55034 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40967047, endtime: 40967568, seqnum: 0, connid: 0 98 12:57:02,9964335 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55034 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40967048, endtime: 40967568, seqnum: 0, connid: 0 98 12:57:02,9964396 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55034 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40967050, endtime: 40967568, seqnum: 0, connid: 0 98 12:57:02,9964756 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55034 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40967052, endtime: 40967568, seqnum: 0, connid: 0 98 12:57:02,9964812 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55034 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40967053, endtime: 40967568, seqnum: 0, connid: 0 98 12:57:02,9964878 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55034 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40967055, endtime: 40967568, seqnum: 0, connid: 0 98 12:57:02,9964933 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55034 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40967056, endtime: 40967568, seqnum: 0, connid: 0 98 12:57:03,9503530 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55037 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40967370, endtime: 40967664, seqnum: 0, connid: 0 98 12:57:03,9503715 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55037 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40967370, endtime: 40967664, seqnum: 0, connid: 0 98 12:57:03,9503796 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55037 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40967372, endtime: 40967664, seqnum: 0, connid: 0 98 12:57:03,9503876 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55037 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40967373, endtime: 40967664, seqnum: 0, connid: 0 98 12:57:03,9503940 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55037 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40967375, endtime: 40967664, seqnum: 0, connid: 0 98 12:57:03,9504012 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55037 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40967376, endtime: 40967664, seqnum: 0, connid: 0 98 12:57:03,9504073 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55037 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40967378, endtime: 40967664, seqnum: 0, connid: 0 98 12:57:03,9504145 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55037 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40967380, endtime: 40967664, seqnum: 0, connid: 0 98 12:57:03,9504209 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55037 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40967381, endtime: 40967664, seqnum: 0, connid: 0 98 12:57:03,9504522 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55037 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40967383, endtime: 40967664, seqnum: 0, connid: 0 98 12:57:03,9504588 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55037 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40967384, endtime: 40967664, seqnum: 0, connid: 0 98 12:57:03,9504657 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55037 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40967386, endtime: 40967664, seqnum: 0, connid: 0 98 12:57:03,9504718 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55037 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40967387, endtime: 40967664, seqnum: 0, connid: 0 98 12:57:03,9667544 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55008 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40967210, endtime: 40967665, seqnum: 0, connid: 0 98 12:57:03,9667708 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55008 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40967211, endtime: 40967665, seqnum: 0, connid: 0 98 12:57:03,9667777 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55008 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40967212, endtime: 40967665, seqnum: 0, connid: 0 98 12:57:03,9667849 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55008 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40967214, endtime: 40967665, seqnum: 0, connid: 0 98 12:57:03,9667904 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55008 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40967216, endtime: 40967665, seqnum: 0, connid: 0 98 12:57:03,9667968 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55008 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40967217, endtime: 40967665, seqnum: 0, connid: 0 98 12:57:03,9668021 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55008 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40967219, endtime: 40967665, seqnum: 0, connid: 0 98 12:57:03,9668087 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55008 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40967220, endtime: 40967665, seqnum: 0, connid: 0 98 12:57:03,9668137 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55008 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40967222, endtime: 40967665, seqnum: 0, connid: 0 98 12:57:03,9668686 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55008 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40967223, endtime: 40967665, seqnum: 0, connid: 0 98 12:57:03,9668752 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55008 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40967225, endtime: 40967665, seqnum: 0, connid: 0 98 12:57:03,9668819 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55008 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40967226, endtime: 40967665, seqnum: 0, connid: 0 98 12:57:03,9668871 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55008 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40967228, endtime: 40967665, seqnum: 0, connid: 0 98 12:57:04,5903392 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55036 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40967028, endtime: 40967728, seqnum: 0, connid: 0 98 12:57:04,5903608 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55036 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40967030, endtime: 40967728, seqnum: 0, connid: 0 98 12:57:04,5903752 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55036 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40967031, endtime: 40967728, seqnum: 0, connid: 0 98 12:57:04,5903832 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55036 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40967033, endtime: 40967728, seqnum: 0, connid: 0 98 12:57:04,5903910 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55036 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40967036, endtime: 40967728, seqnum: 0, connid: 0 98 12:57:04,5903971 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55036 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40967037, endtime: 40967728, seqnum: 0, connid: 0 98 12:57:04,5904048 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55036 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40967039, endtime: 40967728, seqnum: 0, connid: 0 98 12:57:04,5904109 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55036 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40967041, endtime: 40967728, seqnum: 0, connid: 0 98 12:57:04,5904181 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55036 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40967042, endtime: 40967728, seqnum: 0, connid: 0 98 12:57:04,5904965 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55036 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40967044, endtime: 40967728, seqnum: 0, connid: 0 98 12:57:04,5905048 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55036 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40967045, endtime: 40967728, seqnum: 0, connid: 0 98 12:57:04,5905107 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55036 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40967047, endtime: 40967728, seqnum: 0, connid: 0 98 12:57:04,5906852 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55036 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40967048, endtime: 40967728, seqnum: 0, connid: 0 98 12:57:05,8261898 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55034 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40967568, endtime: 40967851, seqnum: 0, connid: 0 98 12:57:05,8262069 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55034 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40967570, endtime: 40967851, seqnum: 0, connid: 0 98 12:57:05,8262141 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55034 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40967574, endtime: 40967851, seqnum: 0, connid: 0 98 12:57:05,8262211 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55034 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40967575, endtime: 40967851, seqnum: 0, connid: 0 98 12:57:05,8262269 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55034 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40967577, endtime: 40967851, seqnum: 0, connid: 0 98 12:57:05,8262335 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55034 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40967580, endtime: 40967851, seqnum: 0, connid: 0 98 12:57:05,8262388 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55034 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40967581, endtime: 40967851, seqnum: 0, connid: 0 98 12:57:05,8262455 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55034 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40967583, endtime: 40967851, seqnum: 0, connid: 0 98 12:57:05,8262507 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55034 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40967584, endtime: 40967851, seqnum: 0, connid: 0 98 12:57:05,8263358 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55034 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40967586, endtime: 40967851, seqnum: 0, connid: 0 98 12:57:05,8263466 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55034 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40967588, endtime: 40967851, seqnum: 0, connid: 0 98 12:57:05,8263582 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55034 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40967589, endtime: 40967851, seqnum: 0, connid: 0 98 12:57:05,8273412 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55034 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40967591, endtime: 40967851, seqnum: 0, connid: 0 98 12:57:05,9541107 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55040 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40967289, endtime: 40967864, seqnum: 0, connid: 0 98 12:57:05,9541287 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55040 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40967291, endtime: 40967864, seqnum: 0, connid: 0 98 12:57:05,9541365 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55040 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40967292, endtime: 40967864, seqnum: 0, connid: 0 98 12:57:05,9541437 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55040 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40967294, endtime: 40967864, seqnum: 0, connid: 0 98 12:57:05,9541492 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55040 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40967295, endtime: 40967864, seqnum: 0, connid: 0 98 12:57:05,9541559 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55040 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40967297, endtime: 40967864, seqnum: 0, connid: 0 98 12:57:05,9541614 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55040 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40967299, endtime: 40967864, seqnum: 0, connid: 0 98 12:57:05,9541678 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55040 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40967300, endtime: 40967864, seqnum: 0, connid: 0 98 12:57:05,9541733 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55040 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40967301, endtime: 40967864, seqnum: 0, connid: 0 98 12:57:05,9542199 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55040 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40967303, endtime: 40967864, seqnum: 0, connid: 0 98 12:57:05,9542268 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55040 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40967305, endtime: 40967864, seqnum: 0, connid: 0 98 12:57:05,9542334 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55040 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40967306, endtime: 40967864, seqnum: 0, connid: 0 98 12:57:05,9542390 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55040 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40967308, endtime: 40967864, seqnum: 0, connid: 0 98 12:57:06,1493161 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55006 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40967523, endtime: 40967884, seqnum: 0, connid: 0 98 12:57:06,1493338 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55006 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40967525, endtime: 40967884, seqnum: 0, connid: 0 98 12:57:06,1493416 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55006 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40967527, endtime: 40967884, seqnum: 0, connid: 0 98 12:57:06,1493493 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55006 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40967528, endtime: 40967884, seqnum: 0, connid: 0 98 12:57:06,1493557 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55006 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40967530, endtime: 40967884, seqnum: 0, connid: 0 98 12:57:06,1493626 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55006 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40967530, endtime: 40967884, seqnum: 0, connid: 0 98 12:57:06,1493684 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55006 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40967531, endtime: 40967884, seqnum: 0, connid: 0 98 12:57:06,1493754 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55006 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40967533, endtime: 40967884, seqnum: 0, connid: 0 98 12:57:06,1493917 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55006 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40967534, endtime: 40967884, seqnum: 0, connid: 0 98 12:57:06,1494255 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55006 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40967536, endtime: 40967884, seqnum: 0, connid: 0 98 12:57:06,1494319 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55006 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40967537, endtime: 40967884, seqnum: 0, connid: 0 98 12:57:06,1494388 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55006 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40967539, endtime: 40967884, seqnum: 0, connid: 0 98 12:57:06,1494446 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55006 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40967541, endtime: 40967884, seqnum: 0, connid: 0 98 12:57:06,3600003 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55037 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40967664, endtime: 40967905, seqnum: 0, connid: 0 98 12:57:06,3600147 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55037 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40967666, endtime: 40967905, seqnum: 0, connid: 0 98 12:57:06,3600216 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55037 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40967669, endtime: 40967905, seqnum: 0, connid: 0 98 12:57:06,3600286 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55037 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40967670, endtime: 40967905, seqnum: 0, connid: 0 98 12:57:06,3600341 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55037 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40967672, endtime: 40967905, seqnum: 0, connid: 0 98 12:57:06,3600405 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55037 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40967673, endtime: 40967905, seqnum: 0, connid: 0 98 12:57:06,3600457 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55037 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40967675, endtime: 40967905, seqnum: 0, connid: 0 98 12:57:06,3600521 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55037 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40967676, endtime: 40967905, seqnum: 0, connid: 0 98 12:57:06,3600574 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55037 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40967678, endtime: 40967905, seqnum: 0, connid: 0 98 12:57:06,3600878 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55037 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40967681, endtime: 40967905, seqnum: 0, connid: 0 98 12:57:06,3600934 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55037 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40967685, endtime: 40967905, seqnum: 0, connid: 0 98 12:57:06,3600998 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55037 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40967686, endtime: 40967905, seqnum: 0, connid: 0 98 12:57:06,3601050 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55037 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40967688, endtime: 40967905, seqnum: 0, connid: 0 98 12:57:06,4440821 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55008 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40967665, endtime: 40967913, seqnum: 0, connid: 0 98 12:57:06,4441023 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55008 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40967669, endtime: 40967913, seqnum: 0, connid: 0 98 12:57:06,4441106 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55008 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40967670, endtime: 40967913, seqnum: 0, connid: 0 98 12:57:06,4441187 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55008 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40967672, endtime: 40967913, seqnum: 0, connid: 0 98 12:57:06,4441250 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55008 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40967673, endtime: 40967913, seqnum: 0, connid: 0 98 12:57:06,4441464 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55008 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40967675, endtime: 40967913, seqnum: 0, connid: 0 98 12:57:06,4441586 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55008 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40967676, endtime: 40967913, seqnum: 0, connid: 0 98 12:57:06,4441713 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55008 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40967678, endtime: 40967913, seqnum: 0, connid: 0 98 12:57:06,4441816 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55008 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40967681, endtime: 40967913, seqnum: 0, connid: 0 98 12:57:06,4442159 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55008 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40967685, endtime: 40967913, seqnum: 0, connid: 0 98 12:57:06,4442223 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55008 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40967686, endtime: 40967913, seqnum: 0, connid: 0 98 12:57:06,4442295 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55008 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40967688, endtime: 40967913, seqnum: 0, connid: 0 98 12:57:06,4442353 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55008 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40967691, endtime: 40967913, seqnum: 0, connid: 0 98 12:57:06,5416299 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55036 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40967728, endtime: 40967923, seqnum: 0, connid: 0 98 12:57:06,5416623 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55036 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40967730, endtime: 40967923, seqnum: 0, connid: 0 98 12:57:06,5416718 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55036 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40967732, endtime: 40967923, seqnum: 0, connid: 0 98 12:57:06,5416801 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55036 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40967733, endtime: 40967923, seqnum: 0, connid: 0 98 12:57:06,5416867 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55036 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40967735, endtime: 40967923, seqnum: 0, connid: 0 98 12:57:06,5416942 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55036 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40967737, endtime: 40967923, seqnum: 0, connid: 0 98 12:57:06,5417006 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55036 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40967739, endtime: 40967923, seqnum: 0, connid: 0 98 12:57:06,5417086 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55036 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40967741, endtime: 40967923, seqnum: 0, connid: 0 98 12:57:06,5417147 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55036 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40967742, endtime: 40967923, seqnum: 0, connid: 0 98 12:57:06,5418028 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55036 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40967744, endtime: 40967923, seqnum: 0, connid: 0 98 12:57:06,5418106 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55036 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40967745, endtime: 40967923, seqnum: 0, connid: 0 98 12:57:06,5418200 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55036 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40967747, endtime: 40967923, seqnum: 0, connid: 0 98 12:57:06,6172028 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55036 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40967749, endtime: 40967930, seqnum: 0, connid: 0 98 12:57:08,0144715 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55006 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40967884, endtime: 40968070, seqnum: 0, connid: 0 98 12:57:08,0144915 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55006 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40967886, endtime: 40968070, seqnum: 0, connid: 0 98 12:57:08,0144995 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55006 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40967889, endtime: 40968070, seqnum: 0, connid: 0 98 12:57:08,0145073 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55006 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40967891, endtime: 40968070, seqnum: 0, connid: 0 98 12:57:08,0145133 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55006 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40967895, endtime: 40968070, seqnum: 0, connid: 0 98 12:57:08,0145206 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55006 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40967897, endtime: 40968070, seqnum: 0, connid: 0 98 12:57:08,0145264 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55006 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40967899, endtime: 40968070, seqnum: 0, connid: 0 98 12:57:08,0145330 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55006 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40967900, endtime: 40968070, seqnum: 0, connid: 0 98 12:57:08,0145388 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55006 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40967900, endtime: 40968070, seqnum: 0, connid: 0 98 12:57:08,0145707 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55006 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40967903, endtime: 40968070, seqnum: 0, connid: 0 98 12:57:08,0145768 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55006 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40967906, endtime: 40968070, seqnum: 0, connid: 0 98 12:57:08,0145837 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55006 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40967907, endtime: 40968070, seqnum: 0, connid: 0 98 12:57:08,0145895 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55006 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40967909, endtime: 40968070, seqnum: 0, connid: 0 98 12:57:08,1999905 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55008 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40967913, endtime: 40968089, seqnum: 0, connid: 0 98 12:57:08,2000079 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55008 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40967915, endtime: 40968089, seqnum: 0, connid: 0 98 12:57:08,2000151 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55008 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40967917, endtime: 40968089, seqnum: 0, connid: 0 98 12:57:08,2000226 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55008 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40967919, endtime: 40968089, seqnum: 0, connid: 0 98 12:57:08,2000281 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55008 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40967920, endtime: 40968089, seqnum: 0, connid: 0 98 12:57:08,2000348 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55008 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40967925, endtime: 40968089, seqnum: 0, connid: 0 98 12:57:08,2000401 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55008 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40967927, endtime: 40968089, seqnum: 0, connid: 0 98 12:57:08,2000617 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55008 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40967928, endtime: 40968089, seqnum: 0, connid: 0 98 12:57:08,2000694 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55008 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40967930, endtime: 40968089, seqnum: 0, connid: 0 98 12:57:08,2001054 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55008 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40967932, endtime: 40968089, seqnum: 0, connid: 0 98 12:57:08,2001113 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55008 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40967935, endtime: 40968089, seqnum: 0, connid: 0 98 12:57:08,2001179 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55008 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40967936, endtime: 40968089, seqnum: 0, connid: 0 98 12:57:08,2001234 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55008 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40967938, endtime: 40968089, seqnum: 0, connid: 0 98 12:57:08,4679494 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55034 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40967851, endtime: 40968115, seqnum: 0, connid: 0 98 12:57:08,4679663 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55034 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40967853, endtime: 40968115, seqnum: 0, connid: 0 98 12:57:08,4679738 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55034 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40967855, endtime: 40968115, seqnum: 0, connid: 0 98 12:57:08,4679812 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55034 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40967858, endtime: 40968115, seqnum: 0, connid: 0 98 12:57:08,4679868 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55034 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40967859, endtime: 40968115, seqnum: 0, connid: 0 98 12:57:08,4679937 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55034 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40967861, endtime: 40968115, seqnum: 0, connid: 0 98 12:57:08,4679990 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55034 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40967862, endtime: 40968115, seqnum: 0, connid: 0 98 12:57:08,4680056 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55034 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40967864, endtime: 40968115, seqnum: 0, connid: 0 98 12:57:08,4680112 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55034 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40967866, endtime: 40968115, seqnum: 0, connid: 0 98 12:57:08,4680740 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55034 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40967869, endtime: 40968115, seqnum: 0, connid: 0 98 12:57:08,4680810 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55034 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40967870, endtime: 40968115, seqnum: 0, connid: 0 98 12:57:08,4680876 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55034 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40967872, endtime: 40968115, seqnum: 0, connid: 0 98 12:57:08,5116633 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55037 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40967905, endtime: 40968120, seqnum: 0, connid: 0 98 12:57:08,5116810 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55037 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40967906, endtime: 40968120, seqnum: 0, connid: 0 98 12:57:08,5116879 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55037 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40967907, endtime: 40968120, seqnum: 0, connid: 0 98 12:57:08,5116954 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55037 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40967909, endtime: 40968120, seqnum: 0, connid: 0 98 12:57:08,5117012 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55037 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40967913, endtime: 40968120, seqnum: 0, connid: 0 98 12:57:08,5117079 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55037 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40967915, endtime: 40968120, seqnum: 0, connid: 0 98 12:57:08,5117134 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55037 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40967917, endtime: 40968120, seqnum: 0, connid: 0 98 12:57:08,5117203 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55037 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40967919, endtime: 40968120, seqnum: 0, connid: 0 98 12:57:08,5117259 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55037 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40967920, endtime: 40968120, seqnum: 0, connid: 0 98 12:57:08,5117580 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55037 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40967925, endtime: 40968120, seqnum: 0, connid: 0 98 12:57:08,5117636 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55037 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40967927, endtime: 40968120, seqnum: 0, connid: 0 98 12:57:08,5117702 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55037 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40967928, endtime: 40968120, seqnum: 0, connid: 0 98 12:57:08,5117758 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55037 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40967930, endtime: 40968120, seqnum: 0, connid: 0 98 12:57:08,5399820 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55034 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40967875, endtime: 40968123, seqnum: 0, connid: 0 98 12:57:08,9406322 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55040 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40967864, endtime: 40968163, seqnum: 0, connid: 0 98 12:57:08,9406508 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55040 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40967866, endtime: 40968163, seqnum: 0, connid: 0 98 12:57:08,9406582 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55040 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40967869, endtime: 40968163, seqnum: 0, connid: 0 98 12:57:08,9406657 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55040 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40967870, endtime: 40968163, seqnum: 0, connid: 0 98 12:57:08,9406718 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55040 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40967872, endtime: 40968163, seqnum: 0, connid: 0 98 12:57:08,9406782 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55040 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40967875, endtime: 40968163, seqnum: 0, connid: 0 98 12:57:08,9406837 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55040 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40967878, endtime: 40968163, seqnum: 0, connid: 0 98 12:57:08,9406904 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55040 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40967880, endtime: 40968163, seqnum: 0, connid: 0 98 12:57:08,9406956 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55040 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40967883, endtime: 40968163, seqnum: 0, connid: 0 98 12:57:08,9407233 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55040 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40967888, endtime: 40968163, seqnum: 0, connid: 0 98 12:57:08,9407292 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55040 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40967889, endtime: 40968163, seqnum: 0, connid: 0 98 12:57:08,9407358 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55040 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40967891, endtime: 40968163, seqnum: 0, connid: 0 98 12:57:08,9407414 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55040 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40967895, endtime: 40968163, seqnum: 0, connid: 0 98 12:57:10,2425288 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55008 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40968089, endtime: 40968293, seqnum: 0, connid: 0 98 12:57:10,2425460 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55008 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40968092, endtime: 40968293, seqnum: 0, connid: 0 98 12:57:10,2425532 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55008 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40968094, endtime: 40968293, seqnum: 0, connid: 0 98 12:57:10,2425604 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55008 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40968097, endtime: 40968293, seqnum: 0, connid: 0 98 12:57:10,2425662 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55008 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40968099, endtime: 40968293, seqnum: 0, connid: 0 98 12:57:10,2425731 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55008 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40968100, endtime: 40968293, seqnum: 0, connid: 0 98 12:57:10,2425787 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55008 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40968101, endtime: 40968293, seqnum: 0, connid: 0 98 12:57:10,2425851 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55008 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40968103, endtime: 40968293, seqnum: 0, connid: 0 98 12:57:10,2425906 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55008 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40968105, endtime: 40968293, seqnum: 0, connid: 0 98 12:57:10,2426211 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55008 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40968107, endtime: 40968293, seqnum: 0, connid: 0 98 12:57:10,2426269 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55008 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40968109, endtime: 40968293, seqnum: 0, connid: 0 98 12:57:10,2426333 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55008 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40968112, endtime: 40968293, seqnum: 0, connid: 0 98 12:57:10,2426388 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55008 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40968116, endtime: 40968293, seqnum: 0, connid: 0 98 12:57:10,7053762 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55034 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40968115, endtime: 40968339, seqnum: 0, connid: 0 98 12:57:10,7054003 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55034 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40968119, endtime: 40968339, seqnum: 0, connid: 0 98 12:57:10,7054113 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55034 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40968127, endtime: 40968339, seqnum: 0, connid: 0 98 12:57:10,7054196 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55034 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40968128, endtime: 40968339, seqnum: 0, connid: 0 98 12:57:10,7054285 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55034 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40968130, endtime: 40968339, seqnum: 0, connid: 0 98 12:57:10,7054357 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55034 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40968131, endtime: 40968339, seqnum: 0, connid: 0 98 12:57:10,7054440 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55034 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40968133, endtime: 40968339, seqnum: 0, connid: 0 98 12:57:10,7054510 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55034 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40968135, endtime: 40968339, seqnum: 0, connid: 0 98 12:57:10,7054598 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55034 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40968136, endtime: 40968339, seqnum: 0, connid: 0 98 12:57:10,7055371 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55034 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40968138, endtime: 40968339, seqnum: 0, connid: 0 98 12:57:10,7055560 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55034 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40968139, endtime: 40968339, seqnum: 0, connid: 0 98 12:57:10,7055637 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55034 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40968141, endtime: 40968339, seqnum: 0, connid: 0 98 12:57:11,3286955 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55006 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40968070, endtime: 40968401, seqnum: 0, connid: 0 98 12:57:11,3287149 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55006 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40968072, endtime: 40968401, seqnum: 0, connid: 0 98 12:57:11,3287232 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55006 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40968075, endtime: 40968401, seqnum: 0, connid: 0 98 12:57:11,3287312 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55006 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40968077, endtime: 40968401, seqnum: 0, connid: 0 98 12:57:11,3287381 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55006 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40968078, endtime: 40968401, seqnum: 0, connid: 0 98 12:57:11,3287453 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55006 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40968081, endtime: 40968401, seqnum: 0, connid: 0 98 12:57:11,3287511 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55006 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40968083, endtime: 40968401, seqnum: 0, connid: 0 98 12:57:11,3287584 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55006 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40968084, endtime: 40968401, seqnum: 0, connid: 0 98 12:57:11,3287642 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55006 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40968086, endtime: 40968401, seqnum: 0, connid: 0 98 12:57:11,3287935 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55006 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40968088, endtime: 40968401, seqnum: 0, connid: 0 98 12:57:11,3287999 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55006 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40968089, endtime: 40968401, seqnum: 0, connid: 0 98 12:57:11,3288071 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55006 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40968092, endtime: 40968401, seqnum: 0, connid: 0 98 12:57:11,3288129 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55006 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40968094, endtime: 40968401, seqnum: 0, connid: 0 98 12:57:11,4734129 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55037 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40968120, endtime: 40968416, seqnum: 0, connid: 0 98 12:57:11,4734320 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55037 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40968122, endtime: 40968416, seqnum: 0, connid: 0 98 12:57:11,4734401 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55037 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40968127, endtime: 40968416, seqnum: 0, connid: 0 98 12:57:11,4734484 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55037 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40968128, endtime: 40968416, seqnum: 0, connid: 0 98 12:57:11,4734545 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55037 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40968130, endtime: 40968416, seqnum: 0, connid: 0 98 12:57:11,4734617 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55037 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40968131, endtime: 40968416, seqnum: 0, connid: 0 98 12:57:11,4734678 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55037 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40968133, endtime: 40968416, seqnum: 0, connid: 0 98 12:57:11,4734747 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55037 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40968135, endtime: 40968416, seqnum: 0, connid: 0 98 12:57:11,4734805 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55037 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40968136, endtime: 40968416, seqnum: 0, connid: 0 98 12:57:11,4735573 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55037 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40968138, endtime: 40968416, seqnum: 0, connid: 0 98 12:57:11,4735650 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55037 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40968139, endtime: 40968416, seqnum: 0, connid: 0 98 12:57:11,4735722 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55037 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40968141, endtime: 40968416, seqnum: 0, connid: 0 98 12:57:11,4736908 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55037 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40968142, endtime: 40968416, seqnum: 0, connid: 0 98 12:57:11,9383121 MCLauncher.exe 6080 TCP TCPCopy WIN-0UOTFKKVN1S:54920 -> sheltex.company:8000 SUCCESS Length: 2, seqnum: 0, connid: 0 98 12:57:11,9383227 MCLauncher.exe 6080 TCP Receive WIN-0UOTFKKVN1S:54920 -> sheltex.company:8000 SUCCESS Length: 2, seqnum: 0, connid: 0 98 12:57:11,9396331 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54920 -> sheltex.company:8000 SUCCESS Length: 2, startime: 40968462, endtime: 40968463, seqnum: 0, connid: 0 98 12:57:12,1465790 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55040 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40968163, endtime: 40968483, seqnum: 0, connid: 0 98 12:57:12,1465982 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55040 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40968164, endtime: 40968483, seqnum: 0, connid: 0 98 12:57:12,1466059 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55040 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40968166, endtime: 40968483, seqnum: 0, connid: 0 98 12:57:12,1466139 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55040 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40968167, endtime: 40968483, seqnum: 0, connid: 0 98 12:57:12,1466203 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55040 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40968169, endtime: 40968483, seqnum: 0, connid: 0 98 12:57:12,1466275 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55040 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40968170, endtime: 40968483, seqnum: 0, connid: 0 98 12:57:12,1466333 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55040 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40968172, endtime: 40968483, seqnum: 0, connid: 0 98 12:57:12,1466403 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55040 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40968173, endtime: 40968483, seqnum: 0, connid: 0 98 12:57:12,1466461 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55040 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40968175, endtime: 40968483, seqnum: 0, connid: 0 98 12:57:12,1466757 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55040 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40968178, endtime: 40968483, seqnum: 0, connid: 0 98 12:57:12,1466821 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55040 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40968180, endtime: 40968483, seqnum: 0, connid: 0 98 12:57:12,1466893 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55040 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40968181, endtime: 40968483, seqnum: 0, connid: 0 98 12:57:12,1466951 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55040 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40968183, endtime: 40968483, seqnum: 0, connid: 0 98 12:57:12,7704203 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55008 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40968293, endtime: 40968546, seqnum: 0, connid: 0 98 12:57:12,7704419 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55008 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40968295, endtime: 40968546, seqnum: 0, connid: 0 98 12:57:12,7704502 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55008 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40968297, endtime: 40968546, seqnum: 0, connid: 0 98 12:57:12,7704580 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55008 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40968298, endtime: 40968546, seqnum: 0, connid: 0 98 12:57:12,7704644 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55008 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40968300, endtime: 40968546, seqnum: 0, connid: 0 98 12:57:12,7704713 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55008 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40968301, endtime: 40968546, seqnum: 0, connid: 0 98 12:57:12,7704771 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55008 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40968301, endtime: 40968546, seqnum: 0, connid: 0 98 12:57:12,7706381 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55008 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40968303, endtime: 40968546, seqnum: 0, connid: 0 98 12:57:12,7706483 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55008 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40968305, endtime: 40968546, seqnum: 0, connid: 0 98 12:57:12,7706561 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55008 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40968306, endtime: 40968546, seqnum: 0, connid: 0 98 12:57:12,7706625 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55008 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40968308, endtime: 40968546, seqnum: 0, connid: 0 98 12:57:12,7706697 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55008 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40968309, endtime: 40968546, seqnum: 0, connid: 0 98 12:57:12,7706755 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55008 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40968311, endtime: 40968546, seqnum: 0, connid: 0 98 12:57:13,1970974 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55036 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40967923, endtime: 40968588, seqnum: 0, connid: 0 98 12:57:13,1971182 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55036 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40967925, endtime: 40968588, seqnum: 0, connid: 0 98 12:57:13,1971434 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55036 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40967927, endtime: 40968588, seqnum: 0, connid: 0 98 12:57:13,1971565 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55036 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40967928, endtime: 40968588, seqnum: 0, connid: 0 98 12:57:13,1971667 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55036 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40967930, endtime: 40968588, seqnum: 0, connid: 0 98 12:57:13,1971753 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55036 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40967932, endtime: 40968588, seqnum: 0, connid: 0 98 12:57:13,1971842 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55036 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40967935, endtime: 40968588, seqnum: 0, connid: 0 98 12:57:13,1971930 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55036 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40967936, endtime: 40968588, seqnum: 0, connid: 0 98 12:57:13,1971994 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55036 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40967938, endtime: 40968588, seqnum: 0, connid: 0 98 12:57:13,1972764 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55036 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40967939, endtime: 40968588, seqnum: 0, connid: 0 98 12:57:13,1972850 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55036 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40967941, endtime: 40968588, seqnum: 0, connid: 0 98 12:57:13,1972964 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55036 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40967942, endtime: 40968588, seqnum: 0, connid: 0 98 12:57:13,1974537 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55036 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40967944, endtime: 40968588, seqnum: 0, connid: 0 98 12:57:13,4302947 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55034 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40968142, endtime: 40968612, seqnum: 0, connid: 0 98 12:57:13,4303130 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55034 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40968339, endtime: 40968612, seqnum: 0, connid: 0 98 12:57:13,4303216 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55034 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40968342, endtime: 40968612, seqnum: 0, connid: 0 98 12:57:13,4303279 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55034 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40968344, endtime: 40968612, seqnum: 0, connid: 0 98 12:57:13,4303349 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55034 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40968345, endtime: 40968612, seqnum: 0, connid: 0 98 12:57:13,4303404 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55034 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40968347, endtime: 40968612, seqnum: 0, connid: 0 98 12:57:13,4303470 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55034 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40968350, endtime: 40968612, seqnum: 0, connid: 0 98 12:57:13,4303526 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55034 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40968351, endtime: 40968612, seqnum: 0, connid: 0 98 12:57:13,4303595 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55034 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40968353, endtime: 40968612, seqnum: 0, connid: 0 98 12:57:13,4303651 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55034 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40968355, endtime: 40968612, seqnum: 0, connid: 0 98 12:57:13,4304249 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55034 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40968356, endtime: 40968612, seqnum: 0, connid: 0 98 12:57:13,4304324 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55034 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40968358, endtime: 40968612, seqnum: 0, connid: 0 98 12:57:13,4304487 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55034 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40968359, endtime: 40968612, seqnum: 0, connid: 0 98 12:57:13,4333520 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55034 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40968612, endtime: 40968612, seqnum: 0, connid: 0 98 12:57:14,9148834 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55037 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40968416, endtime: 40968760, seqnum: 0, connid: 0 98 12:57:14,9149012 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55037 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40968417, endtime: 40968760, seqnum: 0, connid: 0 98 12:57:14,9149089 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55037 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40968419, endtime: 40968760, seqnum: 0, connid: 0 98 12:57:14,9149167 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55037 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40968422, endtime: 40968760, seqnum: 0, connid: 0 98 12:57:14,9149228 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55037 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40968423, endtime: 40968760, seqnum: 0, connid: 0 98 12:57:14,9149300 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55037 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40968425, endtime: 40968760, seqnum: 0, connid: 0 98 12:57:14,9149361 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55037 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40968427, endtime: 40968760, seqnum: 0, connid: 0 98 12:57:14,9149430 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55037 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40968428, endtime: 40968760, seqnum: 0, connid: 0 98 12:57:14,9149491 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55037 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40968430, endtime: 40968760, seqnum: 0, connid: 0 98 12:57:14,9150300 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55037 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40968431, endtime: 40968760, seqnum: 0, connid: 0 98 12:57:14,9150375 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55037 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40968433, endtime: 40968760, seqnum: 0, connid: 0 98 12:57:14,9150450 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55037 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40968434, endtime: 40968760, seqnum: 0, connid: 0 98 12:57:14,9151721 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55037 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40968436, endtime: 40968760, seqnum: 0, connid: 0 98 12:57:14,9983948 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55006 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40968401, endtime: 40968768, seqnum: 0, connid: 0 98 12:57:14,9984142 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55006 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40968405, endtime: 40968768, seqnum: 0, connid: 0 98 12:57:14,9984219 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55006 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40968406, endtime: 40968768, seqnum: 0, connid: 0 98 12:57:14,9984402 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55006 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40968408, endtime: 40968768, seqnum: 0, connid: 0 98 12:57:14,9984635 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55006 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40968409, endtime: 40968768, seqnum: 0, connid: 0 98 12:57:14,9984715 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55006 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40968411, endtime: 40968768, seqnum: 0, connid: 0 98 12:57:14,9984782 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55006 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40968413, endtime: 40968768, seqnum: 0, connid: 0 98 12:57:14,9984942 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55006 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40968416, endtime: 40968768, seqnum: 0, connid: 0 98 12:57:14,9985020 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55006 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40968417, endtime: 40968768, seqnum: 0, connid: 0 98 12:57:14,9985389 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55006 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40968419, endtime: 40968768, seqnum: 0, connid: 0 98 12:57:14,9985449 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55006 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40968422, endtime: 40968768, seqnum: 0, connid: 0 98 12:57:14,9985519 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55006 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40968423, endtime: 40968768, seqnum: 0, connid: 0 98 12:57:14,9985577 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55006 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40968425, endtime: 40968768, seqnum: 0, connid: 0 98 12:57:15,9396667 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55040 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40968483, endtime: 40968863, seqnum: 0, connid: 0 98 12:57:15,9396844 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55040 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40968484, endtime: 40968863, seqnum: 0, connid: 0 98 12:57:15,9396921 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55040 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40968486, endtime: 40968863, seqnum: 0, connid: 0 98 12:57:15,9396993 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55040 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40968488, endtime: 40968863, seqnum: 0, connid: 0 98 12:57:15,9397049 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55040 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40968491, endtime: 40968863, seqnum: 0, connid: 0 98 12:57:15,9397115 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55040 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40968492, endtime: 40968863, seqnum: 0, connid: 0 98 12:57:15,9397171 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55040 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40968494, endtime: 40968863, seqnum: 0, connid: 0 98 12:57:15,9397237 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55040 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40968495, endtime: 40968863, seqnum: 0, connid: 0 98 12:57:15,9397290 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55040 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40968497, endtime: 40968863, seqnum: 0, connid: 0 98 12:57:15,9397570 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55040 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40968498, endtime: 40968863, seqnum: 0, connid: 0 98 12:57:15,9397631 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55040 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40968500, endtime: 40968863, seqnum: 0, connid: 0 98 12:57:15,9397694 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55040 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40968501, endtime: 40968863, seqnum: 0, connid: 0 98 12:57:15,9397747 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55040 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40968503, endtime: 40968863, seqnum: 0, connid: 0 98 12:57:16,0428271 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55036 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40968588, endtime: 40968873, seqnum: 0, connid: 0 98 12:57:16,0428448 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55036 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40968589, endtime: 40968873, seqnum: 0, connid: 0 98 12:57:16,0428526 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55036 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40968592, endtime: 40968873, seqnum: 0, connid: 0 98 12:57:16,0428603 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55036 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40968594, endtime: 40968873, seqnum: 0, connid: 0 98 12:57:16,0428662 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55036 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40968597, endtime: 40968873, seqnum: 0, connid: 0 98 12:57:16,0428731 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55036 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40968598, endtime: 40968873, seqnum: 0, connid: 0 98 12:57:16,0428786 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55036 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40968600, endtime: 40968873, seqnum: 0, connid: 0 98 12:57:16,0428855 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55036 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40968601, endtime: 40968873, seqnum: 0, connid: 0 98 12:57:16,0428911 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55036 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40968601, endtime: 40968873, seqnum: 0, connid: 0 98 12:57:16,0429260 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55036 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40968603, endtime: 40968873, seqnum: 0, connid: 0 98 12:57:16,0429318 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55036 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40968605, endtime: 40968873, seqnum: 0, connid: 0 98 12:57:16,0429387 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55036 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40968608, endtime: 40968873, seqnum: 0, connid: 0 98 12:57:16,0429443 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55036 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40968612, endtime: 40968873, seqnum: 0, connid: 0 98 12:57:16,0429554 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55008 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40968546, endtime: 40968873, seqnum: 0, connid: 0 98 12:57:16,0429620 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55008 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40968547, endtime: 40968873, seqnum: 0, connid: 0 98 12:57:16,0429676 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55008 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40968548, endtime: 40968873, seqnum: 0, connid: 0 98 12:57:16,0429742 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55008 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40968550, endtime: 40968873, seqnum: 0, connid: 0 98 12:57:16,0429797 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55008 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40968553, endtime: 40968873, seqnum: 0, connid: 0 98 12:57:16,0430479 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55008 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40968555, endtime: 40968873, seqnum: 0, connid: 0 98 12:57:16,0430637 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55008 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40968556, endtime: 40968873, seqnum: 0, connid: 0 98 12:57:16,0430709 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55008 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40968558, endtime: 40968873, seqnum: 0, connid: 0 98 12:57:16,0430767 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55008 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40968559, endtime: 40968873, seqnum: 0, connid: 0 98 12:57:16,0430836 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55008 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40968561, endtime: 40968873, seqnum: 0, connid: 0 98 12:57:16,0430892 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55008 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40968563, endtime: 40968873, seqnum: 0, connid: 0 98 12:57:16,0430961 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55008 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40968566, endtime: 40968873, seqnum: 0, connid: 0 98 12:57:16,0431017 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55008 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40968569, endtime: 40968873, seqnum: 0, connid: 0 98 12:57:16,1304328 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55008 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40968873, endtime: 40968882, seqnum: 0, connid: 0 98 12:57:16,7458604 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55034 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40968616, endtime: 40968943, seqnum: 0, connid: 0 98 12:57:16,7458776 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55034 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40968617, endtime: 40968943, seqnum: 0, connid: 0 98 12:57:16,7458848 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55034 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40968619, endtime: 40968943, seqnum: 0, connid: 0 98 12:57:16,7458923 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55034 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40968620, endtime: 40968943, seqnum: 0, connid: 0 98 12:57:16,7458981 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55034 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40968622, endtime: 40968943, seqnum: 0, connid: 0 98 12:57:16,7459047 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55034 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40968623, endtime: 40968943, seqnum: 0, connid: 0 98 12:57:16,7459103 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55034 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40968625, endtime: 40968943, seqnum: 0, connid: 0 98 12:57:16,7461605 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55034 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40968627, endtime: 40968943, seqnum: 0, connid: 0 98 12:57:16,7461718 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55034 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40968628, endtime: 40968943, seqnum: 0, connid: 0 98 12:57:16,7461801 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55034 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40968630, endtime: 40968943, seqnum: 0, connid: 0 98 12:57:16,7461862 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55034 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40968631, endtime: 40968943, seqnum: 0, connid: 0 98 12:57:16,7461932 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55034 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40968633, endtime: 40968943, seqnum: 0, connid: 0 98 12:57:16,9749140 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55006 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40968768, endtime: 40968966, seqnum: 0, connid: 0 98 12:57:16,9749331 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55006 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40968770, endtime: 40968966, seqnum: 0, connid: 0 98 12:57:16,9749414 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55006 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40968772, endtime: 40968966, seqnum: 0, connid: 0 98 12:57:16,9749495 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55006 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40968773, endtime: 40968966, seqnum: 0, connid: 0 98 12:57:16,9749561 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55006 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40968775, endtime: 40968966, seqnum: 0, connid: 0 98 12:57:16,9749633 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55006 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40968776, endtime: 40968966, seqnum: 0, connid: 0 98 12:57:16,9749694 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55006 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40968778, endtime: 40968966, seqnum: 0, connid: 0 98 12:57:16,9749766 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55006 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40968780, endtime: 40968966, seqnum: 0, connid: 0 98 12:57:16,9749827 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55006 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40968781, endtime: 40968966, seqnum: 0, connid: 0 98 12:57:16,9750126 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55006 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40968783, endtime: 40968966, seqnum: 0, connid: 0 98 12:57:16,9750190 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55006 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40968784, endtime: 40968966, seqnum: 0, connid: 0 98 12:57:16,9750262 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55006 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40968786, endtime: 40968966, seqnum: 0, connid: 0 98 12:57:16,9750323 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55006 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40968787, endtime: 40968966, seqnum: 0, connid: 0 98 12:57:17,2319298 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55008 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40968875, endtime: 40968992, seqnum: 0, connid: 0 98 12:57:17,2319442 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55008 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40968878, endtime: 40968992, seqnum: 0, connid: 0 98 12:57:17,2319525 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55008 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40968880, endtime: 40968992, seqnum: 0, connid: 0 98 12:57:17,2319588 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55008 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40968881, endtime: 40968992, seqnum: 0, connid: 0 98 12:57:17,2319658 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55008 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40968883, endtime: 40968992, seqnum: 0, connid: 0 98 12:57:17,2319713 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55008 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40968885, endtime: 40968992, seqnum: 0, connid: 0 98 12:57:17,2319780 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55008 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40968886, endtime: 40968992, seqnum: 0, connid: 0 98 12:57:17,2319835 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55008 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40968887, endtime: 40968992, seqnum: 0, connid: 0 98 12:57:17,2319899 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55008 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40968889, endtime: 40968992, seqnum: 0, connid: 0 98 12:57:17,2320780 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55008 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40968891, endtime: 40968992, seqnum: 0, connid: 0 98 12:57:17,2320860 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55008 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40968892, endtime: 40968992, seqnum: 0, connid: 0 98 12:57:17,2320918 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55008 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40968894, endtime: 40968992, seqnum: 0, connid: 0 98 12:57:17,2322891 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55008 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40968897, endtime: 40968992, seqnum: 0, connid: 0 98 12:57:18,3202591 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55037 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40968760, endtime: 40969101, seqnum: 0, connid: 0 98 12:57:18,3202813 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55037 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40968761, endtime: 40969101, seqnum: 0, connid: 0 98 12:57:18,3202901 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55037 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40968764, endtime: 40969101, seqnum: 0, connid: 0 98 12:57:18,3202987 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55037 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40968766, endtime: 40969101, seqnum: 0, connid: 0 98 12:57:18,3203059 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55037 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40968767, endtime: 40969101, seqnum: 0, connid: 0 98 12:57:18,3203134 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55037 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40968769, endtime: 40969101, seqnum: 0, connid: 0 98 12:57:18,3203198 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55037 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40968770, endtime: 40969101, seqnum: 0, connid: 0 98 12:57:18,3203270 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55037 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40968772, endtime: 40969101, seqnum: 0, connid: 0 98 12:57:18,3203334 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55037 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40968773, endtime: 40969101, seqnum: 0, connid: 0 98 12:57:18,3204312 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55037 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40968775, endtime: 40969101, seqnum: 0, connid: 0 98 12:57:18,3204397 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55037 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40968776, endtime: 40969101, seqnum: 0, connid: 0 98 12:57:18,3204481 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55037 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40968778, endtime: 40969101, seqnum: 0, connid: 0 98 12:57:18,3910599 MCLauncher.exe 6080 TCP Disconnect WIN-0UOTFKKVN1S:55037 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 0, seqnum: 0, connid: 0 98 12:57:18,4604273 MCLauncher.exe 6080 TCP Connect WIN-0UOTFKKVN1S:55064 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 0, mss: 1460, sackopt: 0, tsopt: 0, wsopt: 0, rcvwin: 64240, rcvwinscale: 0, sndwinscale: 0, seqnum: 0, connid: 0 98 12:57:18,4609543 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55064 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40969115, endtime: 40969115, seqnum: 0, connid: 0 98 12:57:18,4694286 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55064 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40969116, endtime: 40969116, seqnum: 0, connid: 0 98 12:57:18,5030743 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55064 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40969119, endtime: 40969119, seqnum: 0, connid: 0 98 12:57:18,5164882 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55064 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40969120, endtime: 40969120, seqnum: 0, connid: 0 98 12:57:18,5328863 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55064 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40969122, endtime: 40969122, seqnum: 0, connid: 0 98 12:57:18,5740264 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55064 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40969126, endtime: 40969126, seqnum: 0, connid: 0 98 12:57:18,5948970 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55064 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40969128, endtime: 40969128, seqnum: 0, connid: 0 98 12:57:18,6115018 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55064 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40969130, endtime: 40969130, seqnum: 0, connid: 0 98 12:57:18,6565517 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55064 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40969133, endtime: 40969134, seqnum: 0, connid: 0 98 12:57:18,6749058 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55064 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40969136, endtime: 40969136, seqnum: 0, connid: 0 98 12:57:18,6883541 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55064 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40969137, endtime: 40969137, seqnum: 0, connid: 0 98 12:57:18,7049910 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55064 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40969139, endtime: 40969139, seqnum: 0, connid: 0 98 12:57:18,7207857 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55064 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40969140, endtime: 40969141, seqnum: 0, connid: 0 98 12:57:18,7401032 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55064 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40969142, endtime: 40969143, seqnum: 0, connid: 0 98 12:57:18,7529816 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55064 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40969144, endtime: 40969144, seqnum: 0, connid: 0 98 12:57:18,7828432 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55064 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40969147, endtime: 40969147, seqnum: 0, connid: 0 98 12:57:18,8009015 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55064 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40969148, endtime: 40969149, seqnum: 0, connid: 0 98 12:57:18,8292848 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55064 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40969151, endtime: 40969152, seqnum: 0, connid: 0 98 12:57:18,8457316 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55064 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40969153, endtime: 40969153, seqnum: 0, connid: 0 98 12:57:18,8782522 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55064 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40969156, endtime: 40969156, seqnum: 0, connid: 0 98 12:57:18,9092952 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55064 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40969159, endtime: 40969160, seqnum: 0, connid: 0 98 12:57:18,9408192 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55064 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40969162, endtime: 40969163, seqnum: 0, connid: 0 98 12:57:18,9547873 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55064 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40969164, endtime: 40969164, seqnum: 0, connid: 0 98 12:57:18,9712408 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55064 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40969166, endtime: 40969166, seqnum: 0, connid: 0 98 12:57:18,9963138 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55064 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40969167, endtime: 40969168, seqnum: 0, connid: 0 98 12:57:19,0167312 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55064 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40969170, endtime: 40969170, seqnum: 0, connid: 0 98 12:57:19,0327375 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55064 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40969172, endtime: 40969172, seqnum: 0, connid: 0 98 12:57:19,2104934 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55036 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40968873, endtime: 40969190, seqnum: 0, connid: 0 98 12:57:19,2105108 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55036 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40968875, endtime: 40969190, seqnum: 0, connid: 0 98 12:57:19,2105180 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55036 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40968878, endtime: 40969190, seqnum: 0, connid: 0 98 12:57:19,2105255 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55036 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40968880, endtime: 40969190, seqnum: 0, connid: 0 98 12:57:19,2105319 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55036 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40968881, endtime: 40969190, seqnum: 0, connid: 0 98 12:57:19,2128805 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55036 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40968883, endtime: 40969190, seqnum: 0, connid: 0 98 12:57:19,2128907 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55036 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40968885, endtime: 40969190, seqnum: 0, connid: 0 98 12:57:19,2128991 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55036 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40968886, endtime: 40969190, seqnum: 0, connid: 0 98 12:57:19,2129049 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55036 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40968887, endtime: 40969190, seqnum: 0, connid: 0 98 12:57:19,2129115 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55036 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40968889, endtime: 40969190, seqnum: 0, connid: 0 98 12:57:19,2129171 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55036 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40968891, endtime: 40969190, seqnum: 0, connid: 0 98 12:57:19,2129237 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55036 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40968892, endtime: 40969190, seqnum: 0, connid: 0 98 12:57:19,2129293 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55036 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40968894, endtime: 40969190, seqnum: 0, connid: 0 98 12:57:19,2547952 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55034 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40968634, endtime: 40969194, seqnum: 0, connid: 0 98 12:57:19,2548129 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55034 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40968943, endtime: 40969194, seqnum: 0, connid: 0 98 12:57:19,2548201 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55034 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40968945, endtime: 40969194, seqnum: 0, connid: 0 98 12:57:19,2548273 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55034 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40968949, endtime: 40969194, seqnum: 0, connid: 0 98 12:57:19,2548334 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55034 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40968952, endtime: 40969194, seqnum: 0, connid: 0 98 12:57:19,2548404 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55034 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40968955, endtime: 40969194, seqnum: 0, connid: 0 98 12:57:19,2548459 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55034 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40968956, endtime: 40969194, seqnum: 0, connid: 0 98 12:57:19,2548523 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55034 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40968960, endtime: 40969194, seqnum: 0, connid: 0 98 12:57:19,2548578 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55034 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40968963, endtime: 40969194, seqnum: 0, connid: 0 98 12:57:19,2548850 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55034 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40968964, endtime: 40969194, seqnum: 0, connid: 0 98 12:57:19,2548908 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55034 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40968966, endtime: 40969194, seqnum: 0, connid: 0 98 12:57:19,2548971 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55034 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40968967, endtime: 40969194, seqnum: 0, connid: 0 98 12:57:19,2549024 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55034 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40968970, endtime: 40969194, seqnum: 0, connid: 0 98 12:57:19,4737853 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55064 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40969173, endtime: 40969216, seqnum: 0, connid: 0 98 12:57:19,4738049 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55064 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40969175, endtime: 40969216, seqnum: 0, connid: 0 98 12:57:19,4738130 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55064 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40969176, endtime: 40969216, seqnum: 0, connid: 0 98 12:57:19,4738207 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55064 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40969178, endtime: 40969216, seqnum: 0, connid: 0 98 12:57:19,4738268 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55064 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40969180, endtime: 40969216, seqnum: 0, connid: 0 98 12:57:19,4738338 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55064 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40969181, endtime: 40969216, seqnum: 0, connid: 0 98 12:57:19,4738396 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55064 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40969184, endtime: 40969216, seqnum: 0, connid: 0 98 12:57:19,4738468 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55064 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40969186, endtime: 40969216, seqnum: 0, connid: 0 98 12:57:19,4738523 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55064 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40969187, endtime: 40969216, seqnum: 0, connid: 0 98 12:57:19,4738809 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55064 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40969189, endtime: 40969216, seqnum: 0, connid: 0 98 12:57:19,4738870 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55064 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40969191, endtime: 40969216, seqnum: 0, connid: 0 98 12:57:19,4739953 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55064 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40969192, endtime: 40969216, seqnum: 0, connid: 0 98 12:57:19,4740055 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55064 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40969195, endtime: 40969216, seqnum: 0, connid: 0 98 12:57:19,9717991 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55040 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40968863, endtime: 40969266, seqnum: 0, connid: 0 98 12:57:19,9718223 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55040 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40968864, endtime: 40969266, seqnum: 0, connid: 0 98 12:57:19,9718309 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55040 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40968866, endtime: 40969266, seqnum: 0, connid: 0 98 12:57:19,9718395 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55040 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40968867, endtime: 40969266, seqnum: 0, connid: 0 98 12:57:19,9718459 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55040 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40968870, endtime: 40969266, seqnum: 0, connid: 0 98 12:57:19,9718536 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55040 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40968872, endtime: 40969266, seqnum: 0, connid: 0 98 12:57:19,9718600 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55040 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40968873, endtime: 40969266, seqnum: 0, connid: 0 98 12:57:19,9718678 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55040 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40968875, endtime: 40969266, seqnum: 0, connid: 0 98 12:57:19,9718736 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55040 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40968878, endtime: 40969266, seqnum: 0, connid: 0 98 12:57:19,9719789 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55040 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40968880, endtime: 40969266, seqnum: 0, connid: 0 98 12:57:19,9719858 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55040 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40968881, endtime: 40969266, seqnum: 0, connid: 0 98 12:57:19,9719924 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55040 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40968883, endtime: 40969266, seqnum: 0, connid: 0 98 12:57:19,9719980 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55040 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40968885, endtime: 40969266, seqnum: 0, connid: 0 98 12:57:20,3346657 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55006 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40968966, endtime: 40969302, seqnum: 0, connid: 0 98 12:57:20,3346843 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55006 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40968967, endtime: 40969302, seqnum: 0, connid: 0 98 12:57:20,3346921 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55006 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40968970, endtime: 40969302, seqnum: 0, connid: 0 98 12:57:20,3346998 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55006 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40968972, endtime: 40969302, seqnum: 0, connid: 0 98 12:57:20,3347059 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55006 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40968975, endtime: 40969302, seqnum: 0, connid: 0 98 12:57:20,3347131 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55006 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40968978, endtime: 40969302, seqnum: 0, connid: 0 98 12:57:20,3347289 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55006 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40968980, endtime: 40969302, seqnum: 0, connid: 0 98 12:57:20,3347375 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55006 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40968981, endtime: 40969302, seqnum: 0, connid: 0 98 12:57:20,3347671 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55006 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40968983, endtime: 40969302, seqnum: 0, connid: 0 98 12:57:20,3348062 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55006 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40968984, endtime: 40969302, seqnum: 0, connid: 0 98 12:57:20,3348123 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55006 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40968986, endtime: 40969302, seqnum: 0, connid: 0 98 12:57:20,3348201 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55006 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40968987, endtime: 40969302, seqnum: 0, connid: 0 98 12:57:20,3348259 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55006 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40968989, endtime: 40969302, seqnum: 0, connid: 0 98 12:57:20,5403998 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55008 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40968992, endtime: 40969323, seqnum: 0, connid: 0 98 12:57:20,5404186 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55008 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40968995, endtime: 40969323, seqnum: 0, connid: 0 98 12:57:20,5404264 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55008 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40968997, endtime: 40969323, seqnum: 0, connid: 0 98 12:57:20,5404342 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55008 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40968998, endtime: 40969323, seqnum: 0, connid: 0 98 12:57:20,5404400 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55008 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40969000, endtime: 40969323, seqnum: 0, connid: 0 98 12:57:20,5404469 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55008 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40969003, endtime: 40969323, seqnum: 0, connid: 0 98 12:57:20,5404524 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55008 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40969005, endtime: 40969323, seqnum: 0, connid: 0 98 12:57:20,5404594 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55008 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40969008, endtime: 40969323, seqnum: 0, connid: 0 98 12:57:20,5404649 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55008 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40969009, endtime: 40969323, seqnum: 0, connid: 0 98 12:57:20,5405403 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55008 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40969011, endtime: 40969323, seqnum: 0, connid: 0 98 12:57:20,5405480 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55008 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40969014, endtime: 40969323, seqnum: 0, connid: 0 98 12:57:20,5405547 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55008 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40969016, endtime: 40969323, seqnum: 0, connid: 0 98 12:57:20,5407977 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55008 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40969017, endtime: 40969323, seqnum: 0, connid: 0 98 12:57:21,5078416 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55036 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40969190, endtime: 40969419, seqnum: 0, connid: 0 98 12:57:21,5078668 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55036 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40969191, endtime: 40969419, seqnum: 0, connid: 0 98 12:57:21,5078762 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55036 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40969192, endtime: 40969419, seqnum: 0, connid: 0 98 12:57:21,5078853 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55036 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40969194, endtime: 40969419, seqnum: 0, connid: 0 98 12:57:21,5078920 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55036 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40969197, endtime: 40969419, seqnum: 0, connid: 0 98 12:57:21,5079000 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55036 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40969198, endtime: 40969419, seqnum: 0, connid: 0 98 12:57:21,5079067 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55036 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40969201, endtime: 40969419, seqnum: 0, connid: 0 98 12:57:21,5079142 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55036 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40969205, endtime: 40969419, seqnum: 0, connid: 0 98 12:57:21,5079208 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55036 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40969205, endtime: 40969419, seqnum: 0, connid: 0 98 12:57:21,5079543 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55036 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40969207, endtime: 40969419, seqnum: 0, connid: 0 98 12:57:21,5079607 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55036 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40969208, endtime: 40969419, seqnum: 0, connid: 0 98 12:57:21,5079682 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55036 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40969209, endtime: 40969419, seqnum: 0, connid: 0 98 12:57:21,5079745 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55036 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40969211, endtime: 40969419, seqnum: 0, connid: 0 98 12:57:22,1249196 MCLauncher.exe 6080 TCP TCPCopy WIN-0UOTFKKVN1S:54920 -> sheltex.company:8000 SUCCESS Length: 2, seqnum: 0, connid: 0 98 12:57:22,1249335 MCLauncher.exe 6080 TCP Receive WIN-0UOTFKKVN1S:54920 -> sheltex.company:8000 SUCCESS Length: 2, seqnum: 0, connid: 0 98 12:57:22,1252698 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54920 -> sheltex.company:8000 SUCCESS Length: 2, startime: 40969481, endtime: 40969481, seqnum: 0, connid: 0 98 12:57:22,9879922 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55034 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40969194, endtime: 40969567, seqnum: 0, connid: 0 98 12:57:22,9880118 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55034 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40969197, endtime: 40969567, seqnum: 0, connid: 0 98 12:57:22,9880196 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55034 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40969198, endtime: 40969567, seqnum: 0, connid: 0 98 12:57:22,9880268 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55034 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40969201, endtime: 40969567, seqnum: 0, connid: 0 98 12:57:22,9880326 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55034 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40969205, endtime: 40969567, seqnum: 0, connid: 0 98 12:57:22,9880398 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55034 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40969205, endtime: 40969567, seqnum: 0, connid: 0 98 12:57:22,9880454 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55034 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40969207, endtime: 40969567, seqnum: 0, connid: 0 98 12:57:22,9880520 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55034 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40969208, endtime: 40969567, seqnum: 0, connid: 0 98 12:57:22,9880578 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55034 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40969209, endtime: 40969567, seqnum: 0, connid: 0 98 12:57:22,9880889 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55034 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40969211, endtime: 40969567, seqnum: 0, connid: 0 98 12:57:22,9880947 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55034 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40969212, endtime: 40969567, seqnum: 0, connid: 0 98 12:57:22,9881016 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55034 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40969214, endtime: 40969567, seqnum: 0, connid: 0 98 12:57:22,9881069 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55034 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40969216, endtime: 40969567, seqnum: 0, connid: 0 98 12:57:24,0107080 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55008 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40969323, endtime: 40969670, seqnum: 0, connid: 0 98 12:57:24,0107249 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55008 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40969325, endtime: 40969670, seqnum: 0, connid: 0 98 12:57:24,0107324 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55008 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40969326, endtime: 40969670, seqnum: 0, connid: 0 98 12:57:24,0107396 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55008 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40969328, endtime: 40969670, seqnum: 0, connid: 0 98 12:57:24,0107454 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55008 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40969330, endtime: 40969670, seqnum: 0, connid: 0 98 12:57:24,0107518 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55008 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40969331, endtime: 40969670, seqnum: 0, connid: 0 98 12:57:24,0107573 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55008 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40969333, endtime: 40969670, seqnum: 0, connid: 0 98 12:57:24,0107637 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55008 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40969334, endtime: 40969670, seqnum: 0, connid: 0 98 12:57:24,0107692 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55008 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40969338, endtime: 40969670, seqnum: 0, connid: 0 98 12:57:24,0108548 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55008 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40969339, endtime: 40969670, seqnum: 0, connid: 0 98 12:57:24,0108620 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55008 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40969341, endtime: 40969670, seqnum: 0, connid: 0 98 12:57:24,0108687 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55008 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40969342, endtime: 40969670, seqnum: 0, connid: 0 98 12:57:24,0109582 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55008 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40969344, endtime: 40969670, seqnum: 0, connid: 0 98 12:57:24,4621243 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55064 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40969216, endtime: 40969715, seqnum: 0, connid: 0 98 12:57:24,4621431 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55064 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40969217, endtime: 40969715, seqnum: 0, connid: 0 98 12:57:24,4621511 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55064 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40969221, endtime: 40969715, seqnum: 0, connid: 0 98 12:57:24,4621586 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55064 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40969222, endtime: 40969715, seqnum: 0, connid: 0 98 12:57:24,4621647 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55064 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40969225, endtime: 40969715, seqnum: 0, connid: 0 98 12:57:24,4621716 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55064 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40969228, endtime: 40969715, seqnum: 0, connid: 0 98 12:57:24,4621772 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55064 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40969230, endtime: 40969715, seqnum: 0, connid: 0 98 12:57:24,4623833 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55064 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40969231, endtime: 40969715, seqnum: 0, connid: 0 98 12:57:24,4629072 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55064 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40969236, endtime: 40969715, seqnum: 0, connid: 0 98 12:57:24,4629194 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55064 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40969239, endtime: 40969715, seqnum: 0, connid: 0 98 12:57:24,4629269 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55064 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40969241, endtime: 40969715, seqnum: 0, connid: 0 98 12:57:24,4629344 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55064 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40969242, endtime: 40969715, seqnum: 0, connid: 0 98 12:57:24,4629408 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55064 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40969246, endtime: 40969715, seqnum: 0, connid: 0 98 12:57:25,2599468 MCLauncher.exe 6080 TCP Disconnect WIN-0UOTFKKVN1S:55036 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 0, seqnum: 0, connid: 0 98 12:57:26,2360188 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55034 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40969567, endtime: 40969892, seqnum: 0, connid: 0 98 12:57:26,2360388 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55034 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40969569, endtime: 40969892, seqnum: 0, connid: 0 98 12:57:26,2360465 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55034 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40969570, endtime: 40969892, seqnum: 0, connid: 0 98 12:57:26,2360537 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55034 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40969572, endtime: 40969892, seqnum: 0, connid: 0 98 12:57:26,2360596 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55034 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40969573, endtime: 40969892, seqnum: 0, connid: 0 98 12:57:26,2360662 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55034 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40969575, endtime: 40969892, seqnum: 0, connid: 0 98 12:57:26,2360717 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55034 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40969576, endtime: 40969892, seqnum: 0, connid: 0 98 12:57:26,2360781 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55034 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40969578, endtime: 40969892, seqnum: 0, connid: 0 98 12:57:26,2360839 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55034 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40969580, endtime: 40969892, seqnum: 0, connid: 0 98 12:57:26,2361374 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55034 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40969581, endtime: 40969892, seqnum: 0, connid: 0 98 12:57:26,2361452 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55034 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40969583, endtime: 40969892, seqnum: 0, connid: 0 98 12:57:26,2361521 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55034 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40969583, endtime: 40969892, seqnum: 0, connid: 0 98 12:57:26,2361576 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55034 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40969584, endtime: 40969892, seqnum: 0, connid: 0 98 12:57:27,0568528 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55040 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40969266, endtime: 40969974, seqnum: 0, connid: 0 98 12:57:27,0568727 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55040 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40969267, endtime: 40969974, seqnum: 0, connid: 0 98 12:57:27,0568821 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55040 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40969269, endtime: 40969974, seqnum: 0, connid: 0 98 12:57:27,0568891 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55040 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40969272, endtime: 40969974, seqnum: 0, connid: 0 98 12:57:27,0568966 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55040 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40969275, endtime: 40969974, seqnum: 0, connid: 0 98 12:57:27,0569026 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55040 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40969277, endtime: 40969974, seqnum: 0, connid: 0 98 12:57:27,0569096 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55040 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40969278, endtime: 40969974, seqnum: 0, connid: 0 98 12:57:27,0569281 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55040 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40969280, endtime: 40969974, seqnum: 0, connid: 0 98 12:57:27,0569389 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55040 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40969281, endtime: 40969974, seqnum: 0, connid: 0 98 12:57:27,0569484 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55040 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40969283, endtime: 40969974, seqnum: 0, connid: 0 98 12:57:27,0569924 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55040 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40969284, endtime: 40969974, seqnum: 0, connid: 0 98 12:57:27,0570016 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55040 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40969286, endtime: 40969974, seqnum: 0, connid: 0 98 12:57:27,0570124 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55040 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40969289, endtime: 40969974, seqnum: 0, connid: 0 98 12:57:27,1401887 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55040 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40969974, endtime: 40969983, seqnum: 0, connid: 0 98 12:57:28,1533126 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55008 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40969670, endtime: 40970084, seqnum: 0, connid: 0 98 12:57:28,1533467 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55008 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40969670, endtime: 40970084, seqnum: 0, connid: 0 98 12:57:28,1533558 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55008 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40969673, endtime: 40970084, seqnum: 0, connid: 0 98 12:57:28,1533647 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55008 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40969675, endtime: 40970084, seqnum: 0, connid: 0 98 12:57:28,1533716 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55008 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40969677, endtime: 40970084, seqnum: 0, connid: 0 98 12:57:28,1533799 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55008 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40969678, endtime: 40970084, seqnum: 0, connid: 0 98 12:57:28,1533866 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55008 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40969680, endtime: 40970084, seqnum: 0, connid: 0 98 12:57:28,1533949 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55008 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40969681, endtime: 40970084, seqnum: 0, connid: 0 98 12:57:28,1534018 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55008 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40969683, endtime: 40970084, seqnum: 0, connid: 0 98 12:57:28,1534384 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55008 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40969684, endtime: 40970084, seqnum: 0, connid: 0 98 12:57:28,1534448 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55008 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40969686, endtime: 40970084, seqnum: 0, connid: 0 98 12:57:28,1534522 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55008 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40969689, endtime: 40970084, seqnum: 0, connid: 0 98 12:57:28,1538119 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55008 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40969691, endtime: 40970084, seqnum: 0, connid: 0 98 12:57:28,2656893 MCLauncher.exe 6080 TCP Reconnect WIN-0UOTFKKVN1S:55067 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 0, seqnum: 0, connid: 0 98 12:57:28,3405609 MCLauncher.exe 6080 TCP Connect WIN-0UOTFKKVN1S:55067 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 0, mss: 1460, sackopt: 0, tsopt: 0, wsopt: 0, rcvwin: 64240, rcvwinscale: 0, sndwinscale: 0, seqnum: 0, connid: 0 98 12:57:28,3409075 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55067 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40970103, endtime: 40970103, seqnum: 0, connid: 0 98 12:57:28,3637791 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55067 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40970105, endtime: 40970105, seqnum: 0, connid: 0 98 12:57:28,3911855 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55067 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40970108, endtime: 40970108, seqnum: 0, connid: 0 98 12:57:28,4067216 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55067 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40970109, endtime: 40970109, seqnum: 0, connid: 0 98 12:57:28,4221958 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55067 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40970111, endtime: 40970111, seqnum: 0, connid: 0 98 12:57:28,4389934 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55067 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40970112, endtime: 40970113, seqnum: 0, connid: 0 98 12:57:28,4752008 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55067 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40970116, endtime: 40970116, seqnum: 0, connid: 0 98 12:57:28,5023146 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55067 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40970119, endtime: 40970119, seqnum: 0, connid: 0 98 12:57:28,5171742 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55067 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40970120, endtime: 40970120, seqnum: 0, connid: 0 98 12:57:28,5486854 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55067 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40970123, endtime: 40970123, seqnum: 0, connid: 0 98 12:57:28,5903829 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55067 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40970127, endtime: 40970128, seqnum: 0, connid: 0 98 12:57:28,6119409 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55067 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40970130, endtime: 40970130, seqnum: 0, connid: 0 98 12:57:28,6265116 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55067 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40970131, endtime: 40970131, seqnum: 0, connid: 0 98 12:57:28,6576086 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55067 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40970134, endtime: 40970134, seqnum: 0, connid: 0 98 12:57:28,6655854 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55034 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40969892, endtime: 40970135, seqnum: 0, connid: 0 98 12:57:28,6656017 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55034 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40969894, endtime: 40970135, seqnum: 0, connid: 0 98 12:57:28,6656089 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55034 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40969895, endtime: 40970135, seqnum: 0, connid: 0 98 12:57:28,6656161 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55034 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40969898, endtime: 40970135, seqnum: 0, connid: 0 98 12:57:28,6656217 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55034 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40969901, endtime: 40970135, seqnum: 0, connid: 0 98 12:57:28,6656283 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55034 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40969902, endtime: 40970135, seqnum: 0, connid: 0 98 12:57:28,6656336 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55034 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40969903, endtime: 40970135, seqnum: 0, connid: 0 98 12:57:28,6656399 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55034 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40969905, endtime: 40970135, seqnum: 0, connid: 0 98 12:57:28,6656452 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55034 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40969906, endtime: 40970135, seqnum: 0, connid: 0 98 12:57:28,6656732 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55034 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40969909, endtime: 40970135, seqnum: 0, connid: 0 98 12:57:28,6656787 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55034 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40969911, endtime: 40970135, seqnum: 0, connid: 0 98 12:57:28,6656851 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55034 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40969913, endtime: 40970135, seqnum: 0, connid: 0 98 12:57:28,6656906 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55034 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40969914, endtime: 40970135, seqnum: 0, connid: 0 98 12:57:28,6870154 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55067 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40970136, endtime: 40970137, seqnum: 0, connid: 0 98 12:57:28,7058657 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55067 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40970139, endtime: 40970139, seqnum: 0, connid: 0 98 12:57:28,7290841 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55067 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40970141, endtime: 40970142, seqnum: 0, connid: 0 98 12:57:28,7364272 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55067 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40970142, endtime: 40970142, seqnum: 0, connid: 0 98 12:57:28,7514531 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55067 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40970144, endtime: 40970144, seqnum: 0, connid: 0 98 12:57:28,7693503 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55067 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40970145, endtime: 40970146, seqnum: 0, connid: 0 98 12:57:28,8006325 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55067 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40970148, endtime: 40970149, seqnum: 0, connid: 0 98 12:57:28,8310992 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55067 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40970151, endtime: 40970152, seqnum: 0, connid: 0 98 12:57:28,8453191 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55067 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40970153, endtime: 40970153, seqnum: 0, connid: 0 98 12:57:28,8790077 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55067 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40970156, endtime: 40970157, seqnum: 0, connid: 0 98 12:57:28,8938083 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55067 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40970158, endtime: 40970158, seqnum: 0, connid: 0 98 12:57:28,9076296 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55067 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40970159, endtime: 40970159, seqnum: 0, connid: 0 98 12:57:28,9247203 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55067 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40970161, endtime: 40970161, seqnum: 0, connid: 0 98 12:57:28,9389676 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55067 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40970162, endtime: 40970163, seqnum: 0, connid: 0 98 12:57:28,9549460 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55067 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40970164, endtime: 40970164, seqnum: 0, connid: 0 98 12:57:28,9714444 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55067 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40970166, endtime: 40970166, seqnum: 0, connid: 0 98 12:57:28,9916767 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55067 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40970167, endtime: 40970168, seqnum: 0, connid: 0 98 12:57:29,0012050 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55067 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40970169, endtime: 40970169, seqnum: 0, connid: 0 98 12:57:29,0168356 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55067 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40970170, endtime: 40970170, seqnum: 0, connid: 0 98 12:57:29,0340114 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55067 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40970172, endtime: 40970172, seqnum: 0, connid: 0 98 12:57:29,0481405 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55067 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40970173, endtime: 40970173, seqnum: 0, connid: 0 98 12:57:29,0655025 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55067 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40970175, endtime: 40970175, seqnum: 0, connid: 0 98 12:57:29,0795306 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55067 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40970176, endtime: 40970177, seqnum: 0, connid: 0 98 12:57:29,0952635 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55067 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40970178, endtime: 40970178, seqnum: 0, connid: 0 98 12:57:29,2532284 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55064 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40969715, endtime: 40970194, seqnum: 0, connid: 0 98 12:57:29,2532459 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55064 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40969717, endtime: 40970194, seqnum: 0, connid: 0 98 12:57:29,2532534 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55064 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40969719, endtime: 40970194, seqnum: 0, connid: 0 98 12:57:29,2532611 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55064 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40969720, endtime: 40970194, seqnum: 0, connid: 0 98 12:57:29,2532670 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55064 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40969723, endtime: 40970194, seqnum: 0, connid: 0 98 12:57:29,2532883 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55064 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40969726, endtime: 40970194, seqnum: 0, connid: 0 98 12:57:29,2532985 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55064 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40969728, endtime: 40970194, seqnum: 0, connid: 0 98 12:57:29,2533099 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55064 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40969731, endtime: 40970194, seqnum: 0, connid: 0 98 12:57:29,2533199 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55064 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40969733, endtime: 40970194, seqnum: 0, connid: 0 98 12:57:29,2533534 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55064 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40969736, endtime: 40970194, seqnum: 0, connid: 0 98 12:57:29,2533592 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55064 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40969739, endtime: 40970194, seqnum: 0, connid: 0 98 12:57:29,2533659 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55064 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40969741, endtime: 40970194, seqnum: 0, connid: 0 98 12:57:29,2533714 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55064 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40969742, endtime: 40970194, seqnum: 0, connid: 0 98 12:57:29,3911483 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55040 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40969975, endtime: 40970208, seqnum: 0, connid: 0 98 12:57:29,3911658 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55040 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40969976, endtime: 40970208, seqnum: 0, connid: 0 98 12:57:29,3911752 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55040 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40969978, endtime: 40970208, seqnum: 0, connid: 0 98 12:57:29,3911818 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55040 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40969980, endtime: 40970208, seqnum: 0, connid: 0 98 12:57:29,3911893 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55040 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40969981, endtime: 40970208, seqnum: 0, connid: 0 98 12:57:29,3911954 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55040 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40969983, endtime: 40970208, seqnum: 0, connid: 0 98 12:57:29,3912024 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55040 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40969984, endtime: 40970208, seqnum: 0, connid: 0 98 12:57:29,3912084 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55040 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40969986, endtime: 40970208, seqnum: 0, connid: 0 98 12:57:29,3912154 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55040 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40969989, endtime: 40970208, seqnum: 0, connid: 0 98 12:57:29,3912927 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55040 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40969994, endtime: 40970208, seqnum: 0, connid: 0 98 12:57:29,3913018 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55040 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40969995, endtime: 40970208, seqnum: 0, connid: 0 98 12:57:29,3913079 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55040 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40969998, endtime: 40970208, seqnum: 0, connid: 0 98 12:57:29,3918105 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55040 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40969999, endtime: 40970208, seqnum: 0, connid: 0 98 12:57:30,6947209 MCLauncher.exe 6080 TCP Connect WIN-0UOTFKKVN1S:55069 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 0, mss: 1460, sackopt: 0, tsopt: 0, wsopt: 0, rcvwin: 64240, rcvwinscale: 0, sndwinscale: 0, seqnum: 0, connid: 0 98 12:57:30,6951060 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55069 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40970338, endtime: 40970338, seqnum: 0, connid: 0 98 12:57:30,7043150 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55069 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40970339, endtime: 40970339, seqnum: 0, connid: 0 98 12:57:30,7195883 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55069 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40970341, endtime: 40970341, seqnum: 0, connid: 0 98 12:57:30,7353974 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55069 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40970342, endtime: 40970342, seqnum: 0, connid: 0 98 12:57:30,7507083 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55069 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40970344, endtime: 40970344, seqnum: 0, connid: 0 98 12:57:30,7659738 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55069 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40970345, endtime: 40970345, seqnum: 0, connid: 0 98 12:57:30,7816259 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55069 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40970347, endtime: 40970347, seqnum: 0, connid: 0 98 12:57:30,7976422 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55069 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40970348, endtime: 40970348, seqnum: 0, connid: 0 98 12:57:30,8133086 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55069 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40970350, endtime: 40970350, seqnum: 0, connid: 0 98 12:57:30,8299893 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55069 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40970352, endtime: 40970352, seqnum: 0, connid: 0 98 12:57:30,8611088 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55069 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40970355, endtime: 40970355, seqnum: 0, connid: 0 98 12:57:30,8943389 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55069 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40970358, endtime: 40970358, seqnum: 0, connid: 0 98 12:57:30,9098150 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55069 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40970359, endtime: 40970360, seqnum: 0, connid: 0 98 12:57:30,9400836 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55069 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40970362, endtime: 40970363, seqnum: 0, connid: 0 98 12:57:30,9552037 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55069 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40970364, endtime: 40970364, seqnum: 0, connid: 0 98 12:57:30,9869344 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55069 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40970367, endtime: 40970367, seqnum: 0, connid: 0 98 12:57:31,0118154 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55069 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40970369, endtime: 40970370, seqnum: 0, connid: 0 98 12:57:31,0304125 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55034 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40970135, endtime: 40970372, seqnum: 0, connid: 0 98 12:57:31,0304302 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55034 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40970136, endtime: 40970372, seqnum: 0, connid: 0 98 12:57:31,0304374 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55034 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40970139, endtime: 40970372, seqnum: 0, connid: 0 98 12:57:31,0304449 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55034 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40970141, endtime: 40970372, seqnum: 0, connid: 0 98 12:57:31,0304507 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55034 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40970142, endtime: 40970372, seqnum: 0, connid: 0 98 12:57:31,0304576 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55034 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40970144, endtime: 40970372, seqnum: 0, connid: 0 98 12:57:31,0304632 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55034 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40970145, endtime: 40970372, seqnum: 0, connid: 0 98 12:57:31,0304698 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55034 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40970148, endtime: 40970372, seqnum: 0, connid: 0 98 12:57:31,0304751 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55034 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40970151, endtime: 40970372, seqnum: 0, connid: 0 98 12:57:31,0305070 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55034 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40970153, endtime: 40970372, seqnum: 0, connid: 0 98 12:57:31,0305128 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55034 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40970156, endtime: 40970372, seqnum: 0, connid: 0 98 12:57:31,0305192 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55034 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40970158, endtime: 40970372, seqnum: 0, connid: 0 98 12:57:31,0305247 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55034 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40970159, endtime: 40970372, seqnum: 0, connid: 0 98 12:57:31,0320729 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55069 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40970372, endtime: 40970372, seqnum: 0, connid: 0 98 12:57:31,0493501 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55069 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40970373, endtime: 40970374, seqnum: 0, connid: 0 98 12:57:31,0657119 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55069 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40970375, endtime: 40970375, seqnum: 0, connid: 0 98 12:57:31,0802080 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55069 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40970376, endtime: 40970377, seqnum: 0, connid: 0 98 12:57:31,1022362 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55069 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40970378, endtime: 40970379, seqnum: 0, connid: 0 98 12:57:31,1246719 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55069 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40970380, endtime: 40970381, seqnum: 0, connid: 0 98 12:57:31,1431674 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55069 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40970383, endtime: 40970383, seqnum: 0, connid: 0 98 12:57:31,1679559 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55069 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40970384, endtime: 40970385, seqnum: 0, connid: 0 98 12:57:31,1902907 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55069 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40970388, endtime: 40970388, seqnum: 0, connid: 0 98 12:57:31,2058258 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55069 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40970389, endtime: 40970389, seqnum: 0, connid: 0 98 12:57:31,2221234 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55069 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40970391, endtime: 40970391, seqnum: 0, connid: 0 98 12:57:31,2373235 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55069 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40970392, endtime: 40970392, seqnum: 0, connid: 0 98 12:57:31,2515323 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55069 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40970394, endtime: 40970394, seqnum: 0, connid: 0 98 12:57:31,2686028 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55069 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40970395, endtime: 40970395, seqnum: 0, connid: 0 98 12:57:31,2821977 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55069 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40970397, endtime: 40970397, seqnum: 0, connid: 0 98 12:57:31,2998102 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55069 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40970398, endtime: 40970399, seqnum: 0, connid: 0 98 12:57:31,3136314 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55069 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40970400, endtime: 40970400, seqnum: 0, connid: 0 98 12:57:31,3192963 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55069 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40970401, endtime: 40970401, seqnum: 0, connid: 0 98 12:57:31,3295250 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55069 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40970402, endtime: 40970402, seqnum: 0, connid: 0 98 12:57:31,3344106 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55040 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40970208, endtime: 40970402, seqnum: 0, connid: 0 98 12:57:31,3344283 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55040 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40970209, endtime: 40970402, seqnum: 0, connid: 0 98 12:57:31,3344361 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55040 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40970211, endtime: 40970402, seqnum: 0, connid: 0 98 12:57:31,3344438 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55040 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40970214, endtime: 40970402, seqnum: 0, connid: 0 98 12:57:31,3344610 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55040 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40970216, endtime: 40970402, seqnum: 0, connid: 0 98 12:57:31,3344696 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55040 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40970217, endtime: 40970402, seqnum: 0, connid: 0 98 12:57:31,3344757 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55040 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40970219, endtime: 40970402, seqnum: 0, connid: 0 98 12:57:31,3344832 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55040 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40970222, endtime: 40970402, seqnum: 0, connid: 0 98 12:57:31,3344890 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55040 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40970223, endtime: 40970402, seqnum: 0, connid: 0 98 12:57:31,3345666 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55040 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40970225, endtime: 40970402, seqnum: 0, connid: 0 98 12:57:31,3345740 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55040 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40970226, endtime: 40970402, seqnum: 0, connid: 0 98 12:57:31,3345812 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55040 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40970228, endtime: 40970402, seqnum: 0, connid: 0 98 12:57:31,3347885 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55040 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40970230, endtime: 40970402, seqnum: 0, connid: 0 98 12:57:31,3457732 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55069 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40970403, endtime: 40970403, seqnum: 0, connid: 0 98 12:57:31,3774113 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55069 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40970406, endtime: 40970406, seqnum: 0, connid: 0 98 12:57:31,8459256 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55008 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40970084, endtime: 40970453, seqnum: 0, connid: 0 98 12:57:31,8459475 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55008 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40970086, endtime: 40970453, seqnum: 0, connid: 0 98 12:57:31,8459558 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55008 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40970087, endtime: 40970453, seqnum: 0, connid: 0 98 12:57:31,8459641 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55008 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40970089, endtime: 40970453, seqnum: 0, connid: 0 98 12:57:31,8459702 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55008 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40970091, endtime: 40970453, seqnum: 0, connid: 0 98 12:57:31,8459771 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55008 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40970094, endtime: 40970453, seqnum: 0, connid: 0 98 12:57:31,8459829 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55008 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40970095, endtime: 40970453, seqnum: 0, connid: 0 98 12:57:31,8459899 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55008 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40970098, endtime: 40970453, seqnum: 0, connid: 0 98 12:57:31,8459954 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55008 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40970101, endtime: 40970453, seqnum: 0, connid: 0 98 12:57:31,8460267 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55008 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40970102, endtime: 40970453, seqnum: 0, connid: 0 98 12:57:31,8460328 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55008 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40970103, endtime: 40970453, seqnum: 0, connid: 0 98 12:57:31,8460397 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55008 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40970105, endtime: 40970453, seqnum: 0, connid: 0 98 12:57:31,8460453 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55008 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40970108, endtime: 40970453, seqnum: 0, connid: 0 98 12:57:32,2629265 MCLauncher.exe 6080 TCP TCPCopy WIN-0UOTFKKVN1S:54920 -> sheltex.company:8000 SUCCESS Length: 2, seqnum: 0, connid: 0 98 12:57:32,2629381 MCLauncher.exe 6080 TCP Receive WIN-0UOTFKKVN1S:54920 -> sheltex.company:8000 SUCCESS Length: 2, seqnum: 0, connid: 0 98 12:57:32,2632058 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54920 -> sheltex.company:8000 SUCCESS Length: 2, startime: 40970495, endtime: 40970495, seqnum: 0, connid: 0 98 12:57:33,2564520 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55064 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40970194, endtime: 40970594, seqnum: 0, connid: 0 98 12:57:33,2564728 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55064 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40970195, endtime: 40970594, seqnum: 0, connid: 0 98 12:57:33,2564814 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55064 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40970198, endtime: 40970594, seqnum: 0, connid: 0 98 12:57:33,2564897 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55064 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40970200, endtime: 40970594, seqnum: 0, connid: 0 98 12:57:33,2564960 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55064 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40970201, endtime: 40970594, seqnum: 0, connid: 0 98 12:57:33,2565035 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55064 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40970203, endtime: 40970594, seqnum: 0, connid: 0 98 12:57:33,2565215 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55064 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40970205, endtime: 40970594, seqnum: 0, connid: 0 98 12:57:33,2565365 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55064 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40970207, endtime: 40970594, seqnum: 0, connid: 0 98 12:57:33,2565473 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55064 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40970209, endtime: 40970594, seqnum: 0, connid: 0 98 12:57:33,2565902 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55064 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40970211, endtime: 40970594, seqnum: 0, connid: 0 98 12:57:33,2565972 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55064 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40970214, endtime: 40970594, seqnum: 0, connid: 0 98 12:57:33,2566044 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55064 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40970216, endtime: 40970594, seqnum: 0, connid: 0 98 12:57:33,2566105 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55064 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40970217, endtime: 40970594, seqnum: 0, connid: 0 98 12:57:33,8052654 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55008 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40970453, endtime: 40970649, seqnum: 0, connid: 0 98 12:57:33,8052826 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55008 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40970456, endtime: 40970649, seqnum: 0, connid: 0 98 12:57:33,8052900 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55008 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40970458, endtime: 40970649, seqnum: 0, connid: 0 98 12:57:33,8052972 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55008 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40970459, endtime: 40970649, seqnum: 0, connid: 0 98 12:57:33,8053031 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55008 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40970461, endtime: 40970649, seqnum: 0, connid: 0 98 12:57:33,8053100 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55008 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40970464, endtime: 40970649, seqnum: 0, connid: 0 98 12:57:33,8053155 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55008 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40970466, endtime: 40970649, seqnum: 0, connid: 0 98 12:57:33,8053219 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55008 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40970467, endtime: 40970649, seqnum: 0, connid: 0 98 12:57:33,8053274 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55008 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40970469, endtime: 40970649, seqnum: 0, connid: 0 98 12:57:33,8055399 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55008 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40970472, endtime: 40970649, seqnum: 0, connid: 0 98 12:57:33,8055477 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55008 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40970473, endtime: 40970649, seqnum: 0, connid: 0 98 12:57:33,8055546 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55008 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40970475, endtime: 40970649, seqnum: 0, connid: 0 98 12:57:33,8055602 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55008 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40970478, endtime: 40970649, seqnum: 0, connid: 0 98 12:57:33,9701220 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55040 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40970402, endtime: 40970666, seqnum: 0, connid: 0 98 12:57:33,9701412 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55040 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40970403, endtime: 40970666, seqnum: 0, connid: 0 98 12:57:33,9701489 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55040 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40970406, endtime: 40970666, seqnum: 0, connid: 0 98 12:57:33,9701669 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55040 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40970408, endtime: 40970666, seqnum: 0, connid: 0 98 12:57:33,9701747 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55040 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40970409, endtime: 40970666, seqnum: 0, connid: 0 98 12:57:33,9701822 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55040 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40970412, endtime: 40970666, seqnum: 0, connid: 0 98 12:57:33,9701885 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55040 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40970414, endtime: 40970666, seqnum: 0, connid: 0 98 12:57:33,9701957 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55040 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40970417, endtime: 40970666, seqnum: 0, connid: 0 98 12:57:33,9702018 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55040 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40970420, endtime: 40970666, seqnum: 0, connid: 0 98 12:57:33,9702772 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55040 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40970422, endtime: 40970666, seqnum: 0, connid: 0 98 12:57:33,9702847 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55040 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40970424, endtime: 40970666, seqnum: 0, connid: 0 98 12:57:33,9702919 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55040 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40970425, endtime: 40970666, seqnum: 0, connid: 0 98 12:57:33,9704986 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55040 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40970427, endtime: 40970666, seqnum: 0, connid: 0 98 12:57:34,0613616 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55069 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40970408, endtime: 40970675, seqnum: 0, connid: 0 98 12:57:34,3030137 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55034 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40970372, endtime: 40970699, seqnum: 0, connid: 0 98 12:57:34,3030323 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55034 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40970373, endtime: 40970699, seqnum: 0, connid: 0 98 12:57:34,3030395 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55034 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40970375, endtime: 40970699, seqnum: 0, connid: 0 98 12:57:34,3030470 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55034 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40970376, endtime: 40970699, seqnum: 0, connid: 0 98 12:57:34,3030528 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55034 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40970378, endtime: 40970699, seqnum: 0, connid: 0 98 12:57:34,3030595 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55034 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40970380, endtime: 40970699, seqnum: 0, connid: 0 98 12:57:34,3030650 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55034 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40970383, endtime: 40970699, seqnum: 0, connid: 0 98 12:57:34,3030714 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55034 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40970384, endtime: 40970699, seqnum: 0, connid: 0 98 12:57:34,3030769 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55034 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40970388, endtime: 40970699, seqnum: 0, connid: 0 98 12:57:34,3031068 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55034 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40970389, endtime: 40970699, seqnum: 0, connid: 0 98 12:57:34,3031127 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55034 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40970391, endtime: 40970699, seqnum: 0, connid: 0 98 12:57:34,3031190 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55034 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40970392, endtime: 40970699, seqnum: 0, connid: 0 98 12:57:34,3031243 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55034 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40970394, endtime: 40970699, seqnum: 0, connid: 0 98 12:57:35,7102906 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55064 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40970594, endtime: 40970840, seqnum: 0, connid: 0 98 12:57:35,7103072 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55064 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40970595, endtime: 40970840, seqnum: 0, connid: 0 98 12:57:35,7103241 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55064 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40970597, endtime: 40970840, seqnum: 0, connid: 0 98 12:57:35,7103346 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55064 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40970598, endtime: 40970840, seqnum: 0, connid: 0 98 12:57:35,7103413 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55064 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40970600, endtime: 40970840, seqnum: 0, connid: 0 98 12:57:35,7103488 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55064 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40970601, endtime: 40970840, seqnum: 0, connid: 0 98 12:57:35,7103551 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55064 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40970603, endtime: 40970840, seqnum: 0, connid: 0 98 12:57:35,7103629 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55064 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40970609, endtime: 40970840, seqnum: 0, connid: 0 98 12:57:35,7103690 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55064 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40970612, endtime: 40970840, seqnum: 0, connid: 0 98 12:57:35,7104019 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55064 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40970614, endtime: 40970840, seqnum: 0, connid: 0 98 12:57:35,7104080 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55064 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40970616, endtime: 40970840, seqnum: 0, connid: 0 98 12:57:35,7104150 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55064 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40970617, endtime: 40970840, seqnum: 0, connid: 0 98 12:57:35,7104208 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55064 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40970619, endtime: 40970840, seqnum: 0, connid: 0 98 12:57:35,7699396 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55067 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40970180, endtime: 40970846, seqnum: 0, connid: 0 98 12:57:35,7699587 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55067 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40970181, endtime: 40970846, seqnum: 0, connid: 0 98 12:57:35,7699662 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55067 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40970183, endtime: 40970846, seqnum: 0, connid: 0 98 12:57:35,7699737 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55067 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40970185, endtime: 40970846, seqnum: 0, connid: 0 98 12:57:35,7699792 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55067 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40970186, endtime: 40970846, seqnum: 0, connid: 0 98 12:57:35,7699859 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55067 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40970187, endtime: 40970846, seqnum: 0, connid: 0 98 12:57:35,7699912 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55067 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40970189, endtime: 40970846, seqnum: 0, connid: 0 98 12:57:35,7699975 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55067 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40970191, endtime: 40970846, seqnum: 0, connid: 0 98 12:57:35,7700031 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55067 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40970192, endtime: 40970846, seqnum: 0, connid: 0 98 12:57:35,7700305 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55067 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40970194, endtime: 40970846, seqnum: 0, connid: 0 98 12:57:35,7700360 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55067 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40970195, endtime: 40970846, seqnum: 0, connid: 0 98 12:57:35,7700427 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55067 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40970198, endtime: 40970846, seqnum: 0, connid: 0 98 12:57:35,7706553 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55067 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40970200, endtime: 40970846, seqnum: 0, connid: 0 98 12:57:36,0471503 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55040 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40970666, endtime: 40970873, seqnum: 0, connid: 0 98 12:57:36,0471675 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55040 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40970667, endtime: 40970873, seqnum: 0, connid: 0 98 12:57:36,0471752 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55040 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40970669, endtime: 40970873, seqnum: 0, connid: 0 98 12:57:36,0471830 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55040 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40970670, endtime: 40970873, seqnum: 0, connid: 0 98 12:57:36,0471891 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55040 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40970672, endtime: 40970873, seqnum: 0, connid: 0 98 12:57:36,0471963 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55040 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40970673, endtime: 40970873, seqnum: 0, connid: 0 98 12:57:36,0472018 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55040 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40970675, endtime: 40970873, seqnum: 0, connid: 0 98 12:57:36,0472090 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55040 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40970676, endtime: 40970873, seqnum: 0, connid: 0 98 12:57:36,0472146 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55040 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40970678, endtime: 40970873, seqnum: 0, connid: 0 98 12:57:36,0472777 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55040 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40970680, endtime: 40970873, seqnum: 0, connid: 0 98 12:57:36,0472852 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55040 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40970681, endtime: 40970873, seqnum: 0, connid: 0 98 12:57:36,0472924 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55040 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40970683, endtime: 40970873, seqnum: 0, connid: 0 98 12:57:36,1642990 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55069 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40970409, endtime: 40970885, seqnum: 0, connid: 0 98 12:57:36,1643228 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55069 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40970412, endtime: 40970885, seqnum: 0, connid: 0 98 12:57:36,1643375 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55069 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40970414, endtime: 40970885, seqnum: 0, connid: 0 98 12:57:36,1643491 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55069 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40970417, endtime: 40970885, seqnum: 0, connid: 0 98 12:57:36,1643616 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55069 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40970420, endtime: 40970885, seqnum: 0, connid: 0 98 12:57:36,1643719 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55069 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40970422, endtime: 40970885, seqnum: 0, connid: 0 98 12:57:36,1643840 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55069 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40970424, endtime: 40970885, seqnum: 0, connid: 0 98 12:57:36,1643940 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55069 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40970425, endtime: 40970885, seqnum: 0, connid: 0 98 12:57:36,1644062 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55069 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40970427, endtime: 40970885, seqnum: 0, connid: 0 98 12:57:36,1644450 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55069 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40970428, endtime: 40970885, seqnum: 0, connid: 0 98 12:57:36,1644575 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55069 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40970430, endtime: 40970885, seqnum: 0, connid: 0 98 12:57:36,1644680 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55069 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40970433, endtime: 40970885, seqnum: 0, connid: 0 98 12:57:36,1644802 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55069 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40970675, endtime: 40970885, seqnum: 0, connid: 0 98 12:57:36,1651637 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55040 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40970686, endtime: 40970885, seqnum: 0, connid: 0 98 12:57:36,3421936 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55008 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40970649, endtime: 40970903, seqnum: 0, connid: 0 98 12:57:36,3422116 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55008 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40970650, endtime: 40970903, seqnum: 0, connid: 0 98 12:57:36,3422188 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55008 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40970651, endtime: 40970903, seqnum: 0, connid: 0 98 12:57:36,3422263 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55008 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40970653, endtime: 40970903, seqnum: 0, connid: 0 98 12:57:36,3422321 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55008 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40970655, endtime: 40970903, seqnum: 0, connid: 0 98 12:57:36,3422388 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55008 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40970656, endtime: 40970903, seqnum: 0, connid: 0 98 12:57:36,3422443 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55008 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40970658, endtime: 40970903, seqnum: 0, connid: 0 98 12:57:36,3422510 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55008 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40970659, endtime: 40970903, seqnum: 0, connid: 0 98 12:57:36,3422562 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55008 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40970661, endtime: 40970903, seqnum: 0, connid: 0 98 12:57:36,3423202 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55008 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40970662, endtime: 40970903, seqnum: 0, connid: 0 98 12:57:36,3423274 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55008 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40970664, endtime: 40970903, seqnum: 0, connid: 0 98 12:57:36,3423344 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55008 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40970666, endtime: 40970903, seqnum: 0, connid: 0 98 12:57:37,6551769 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55034 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40970699, endtime: 40971034, seqnum: 0, connid: 0 98 12:57:37,6551980 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55034 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40970700, endtime: 40971034, seqnum: 0, connid: 0 98 12:57:37,6552060 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55034 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40970701, endtime: 40971034, seqnum: 0, connid: 0 98 12:57:37,6552143 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55034 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40970701, endtime: 40971034, seqnum: 0, connid: 0 98 12:57:37,6552204 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55034 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40970703, endtime: 40971034, seqnum: 0, connid: 0 98 12:57:37,6552279 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55034 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40970705, endtime: 40971034, seqnum: 0, connid: 0 98 12:57:37,6552337 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55034 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40970709, endtime: 40971034, seqnum: 0, connid: 0 98 12:57:37,6552406 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55034 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40970711, endtime: 40971034, seqnum: 0, connid: 0 98 12:57:37,6552467 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55034 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40970713, endtime: 40971034, seqnum: 0, connid: 0 98 12:57:37,6552792 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55034 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40970714, endtime: 40971034, seqnum: 0, connid: 0 98 12:57:37,6552852 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55034 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40970717, endtime: 40971034, seqnum: 0, connid: 0 98 12:57:37,6552925 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55034 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40970719, endtime: 40971034, seqnum: 0, connid: 0 98 12:57:37,6552983 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55034 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40970721, endtime: 40971034, seqnum: 0, connid: 0 98 12:57:38,0991645 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55040 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40970873, endtime: 40971079, seqnum: 0, connid: 0 98 12:57:38,0991817 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55040 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40970876, endtime: 40971079, seqnum: 0, connid: 0 98 12:57:38,0992044 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55040 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40970878, endtime: 40971079, seqnum: 0, connid: 0 98 12:57:38,0992130 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55040 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40970880, endtime: 40971079, seqnum: 0, connid: 0 98 12:57:38,0992207 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55040 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40970881, endtime: 40971079, seqnum: 0, connid: 0 98 12:57:38,0992268 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55040 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40970884, endtime: 40971079, seqnum: 0, connid: 0 98 12:57:38,0992343 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55040 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40970886, endtime: 40971079, seqnum: 0, connid: 0 98 12:57:38,0992404 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55040 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40970889, endtime: 40971079, seqnum: 0, connid: 0 98 12:57:38,0992476 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55040 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40970892, endtime: 40971079, seqnum: 0, connid: 0 98 12:57:38,0993100 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55040 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40970894, endtime: 40971079, seqnum: 0, connid: 0 98 12:57:38,0993185 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55040 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40970895, endtime: 40971079, seqnum: 0, connid: 0 98 12:57:38,0993244 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55040 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40970897, endtime: 40971079, seqnum: 0, connid: 0 98 12:57:38,8544556 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55067 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40970846, endtime: 40971154, seqnum: 0, connid: 0 98 12:57:38,8544764 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55067 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40970848, endtime: 40971154, seqnum: 0, connid: 0 98 12:57:38,8544841 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55067 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40970850, endtime: 40971154, seqnum: 0, connid: 0 98 12:57:38,8544919 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55067 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40970851, endtime: 40971154, seqnum: 0, connid: 0 98 12:57:38,8544980 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55067 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40970853, endtime: 40971154, seqnum: 0, connid: 0 98 12:57:38,8545046 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55067 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40970857, endtime: 40971154, seqnum: 0, connid: 0 98 12:57:38,8545102 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55067 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40970858, endtime: 40971154, seqnum: 0, connid: 0 98 12:57:38,8545171 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55067 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40970861, endtime: 40971154, seqnum: 0, connid: 0 98 12:57:38,8545223 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55067 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40970862, endtime: 40971154, seqnum: 0, connid: 0 98 12:57:38,8545550 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55067 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40970864, endtime: 40971154, seqnum: 0, connid: 0 98 12:57:38,8545611 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55067 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40970866, endtime: 40971154, seqnum: 0, connid: 0 98 12:57:38,8545681 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55067 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40970869, endtime: 40971154, seqnum: 0, connid: 0 98 12:57:38,8545736 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55067 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40970870, endtime: 40971154, seqnum: 0, connid: 0 98 12:57:38,9566588 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55064 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40970840, endtime: 40971164, seqnum: 0, connid: 0 98 12:57:38,9566760 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55064 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40970841, endtime: 40971164, seqnum: 0, connid: 0 98 12:57:38,9566834 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55064 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40970842, endtime: 40971164, seqnum: 0, connid: 0 98 12:57:38,9566906 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55064 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40970845, endtime: 40971164, seqnum: 0, connid: 0 98 12:57:38,9566965 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55064 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40970847, endtime: 40971164, seqnum: 0, connid: 0 98 12:57:38,9567031 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55064 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40970848, endtime: 40971164, seqnum: 0, connid: 0 98 12:57:38,9567087 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55064 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40970850, endtime: 40971164, seqnum: 0, connid: 0 98 12:57:38,9567153 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55064 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40970851, endtime: 40971164, seqnum: 0, connid: 0 98 12:57:38,9567206 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55064 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40970853, endtime: 40971164, seqnum: 0, connid: 0 98 12:57:38,9567488 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55064 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40970857, endtime: 40971164, seqnum: 0, connid: 0 98 12:57:38,9567546 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55064 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40970858, endtime: 40971164, seqnum: 0, connid: 0 98 12:57:38,9567610 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55064 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40970861, endtime: 40971164, seqnum: 0, connid: 0 98 12:57:38,9567666 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55064 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40970862, endtime: 40971164, seqnum: 0, connid: 0 98 12:57:39,0303244 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55069 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40970885, endtime: 40971172, seqnum: 0, connid: 0 98 12:57:39,0303427 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55069 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40970886, endtime: 40971172, seqnum: 0, connid: 0 98 12:57:39,0303504 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55069 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40970889, endtime: 40971172, seqnum: 0, connid: 0 98 12:57:39,0303579 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55069 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40970892, endtime: 40971172, seqnum: 0, connid: 0 98 12:57:39,0303637 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55069 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40970894, endtime: 40971172, seqnum: 0, connid: 0 98 12:57:39,0303704 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55069 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40970895, endtime: 40971172, seqnum: 0, connid: 0 98 12:57:39,0303759 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55069 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40970897, endtime: 40971172, seqnum: 0, connid: 0 98 12:57:39,0303826 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55069 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40970898, endtime: 40971172, seqnum: 0, connid: 0 98 12:57:39,0303878 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55069 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40970900, endtime: 40971172, seqnum: 0, connid: 0 98 12:57:39,0304183 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55069 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40970901, endtime: 40971172, seqnum: 0, connid: 0 98 12:57:39,0304241 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55069 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40970903, endtime: 40971172, seqnum: 0, connid: 0 98 12:57:39,0304305 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55069 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40970905, endtime: 40971172, seqnum: 0, connid: 0 98 12:57:39,0304360 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55069 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40970906, endtime: 40971172, seqnum: 0, connid: 0 98 12:57:39,8234084 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55040 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40970898, endtime: 40971251, seqnum: 0, connid: 0 98 12:57:39,8234264 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55040 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40971079, endtime: 40971251, seqnum: 0, connid: 0 98 12:57:39,8234353 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55040 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40971080, endtime: 40971251, seqnum: 0, connid: 0 98 12:57:39,8234416 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55040 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40971081, endtime: 40971251, seqnum: 0, connid: 0 98 12:57:39,8234486 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55040 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40971083, endtime: 40971251, seqnum: 0, connid: 0 98 12:57:39,8234541 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55040 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40971084, endtime: 40971251, seqnum: 0, connid: 0 98 12:57:39,8234608 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55040 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40971086, endtime: 40971251, seqnum: 0, connid: 0 98 12:57:39,8234663 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55040 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40971087, endtime: 40971251, seqnum: 0, connid: 0 98 12:57:39,8234727 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55040 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40971089, endtime: 40971251, seqnum: 0, connid: 0 98 12:57:39,8234782 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55040 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40971091, endtime: 40971251, seqnum: 0, connid: 0 98 12:57:39,8235120 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55040 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40971092, endtime: 40971251, seqnum: 0, connid: 0 98 12:57:39,8235178 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55040 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40971094, endtime: 40971251, seqnum: 0, connid: 0 98 12:57:39,8235245 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55040 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40971095, endtime: 40971251, seqnum: 0, connid: 0 98 12:57:39,8235339 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55008 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40970667, endtime: 40971251, seqnum: 0, connid: 0 98 12:57:39,8235408 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55008 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40970903, endtime: 40971251, seqnum: 0, connid: 0 98 12:57:39,8235461 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55008 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40970905, endtime: 40971251, seqnum: 0, connid: 0 98 12:57:39,8235527 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55008 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40970906, endtime: 40971251, seqnum: 0, connid: 0 98 12:57:39,8235583 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55008 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40970908, endtime: 40971251, seqnum: 0, connid: 0 98 12:57:39,8235652 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55008 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40970911, endtime: 40971251, seqnum: 0, connid: 0 98 12:57:39,8236145 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55008 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40970915, endtime: 40971251, seqnum: 0, connid: 0 98 12:57:39,8236228 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55008 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40970916, endtime: 40971251, seqnum: 0, connid: 0 98 12:57:39,8236281 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55008 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40970917, endtime: 40971251, seqnum: 0, connid: 0 98 12:57:39,8236348 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55008 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40970920, endtime: 40971251, seqnum: 0, connid: 0 98 12:57:39,8236400 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55008 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40970923, endtime: 40971251, seqnum: 0, connid: 0 98 12:57:39,8236467 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55008 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40970926, endtime: 40971251, seqnum: 0, connid: 0 98 12:57:39,8236519 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55008 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40970928, endtime: 40971251, seqnum: 0, connid: 0 98 12:57:39,8238974 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55040 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40971251, endtime: 40971251, seqnum: 0, connid: 0 98 12:57:39,9025805 MCLauncher.exe 6080 TCP Disconnect WIN-0UOTFKKVN1S:55034 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 0, seqnum: 0, connid: 0 98 12:57:40,0150337 MCLauncher.exe 6080 TCP Connect WIN-0UOTFKKVN1S:55076 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 0, mss: 1460, sackopt: 0, tsopt: 0, wsopt: 0, rcvwin: 64240, rcvwinscale: 0, sndwinscale: 0, seqnum: 0, connid: 0 98 12:57:40,0155678 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55076 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40971270, endtime: 40971270, seqnum: 0, connid: 0 98 12:57:40,0318734 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55076 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40971272, endtime: 40971272, seqnum: 0, connid: 0 98 12:57:40,0484893 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55076 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40971273, endtime: 40971273, seqnum: 0, connid: 0 98 12:57:40,0794201 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55076 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40971277, endtime: 40971277, seqnum: 0, connid: 0 98 12:57:40,0947829 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55076 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40971278, endtime: 40971278, seqnum: 0, connid: 0 98 12:57:40,1123299 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55076 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40971280, endtime: 40971280, seqnum: 0, connid: 0 98 12:57:40,1270496 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55076 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40971281, endtime: 40971281, seqnum: 0, connid: 0 98 12:57:40,1413723 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55076 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40971283, endtime: 40971283, seqnum: 0, connid: 0 98 12:57:40,1582248 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55076 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40971284, endtime: 40971284, seqnum: 0, connid: 0 98 12:57:40,1891930 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55076 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40971288, endtime: 40971288, seqnum: 0, connid: 0 98 12:57:40,2097475 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55076 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40971289, endtime: 40971290, seqnum: 0, connid: 0 98 12:57:40,2296609 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55076 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40971291, endtime: 40971292, seqnum: 0, connid: 0 98 12:57:40,2518224 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55076 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40971294, endtime: 40971294, seqnum: 0, connid: 0 98 12:57:40,2665274 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55076 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40971295, endtime: 40971295, seqnum: 0, connid: 0 98 12:57:40,2840598 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55076 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40971297, endtime: 40971297, seqnum: 0, connid: 0 98 12:57:40,2997212 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55076 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40971299, endtime: 40971299, seqnum: 0, connid: 0 98 12:57:40,3290687 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55076 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40971301, endtime: 40971302, seqnum: 0, connid: 0 98 12:57:40,3351243 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55076 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40971302, endtime: 40971302, seqnum: 0, connid: 0 98 12:57:40,3409164 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55076 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40971303, endtime: 40971303, seqnum: 0, connid: 0 98 12:57:40,3608381 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55076 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40971305, endtime: 40971305, seqnum: 0, connid: 0 98 12:57:40,3930306 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55076 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40971308, endtime: 40971308, seqnum: 0, connid: 0 98 12:57:40,4259385 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55076 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40971311, endtime: 40971311, seqnum: 0, connid: 0 98 12:57:40,4398348 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55076 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40971312, endtime: 40971313, seqnum: 0, connid: 0 98 12:57:40,4558498 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55076 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40971314, endtime: 40971314, seqnum: 0, connid: 0 98 12:57:40,4703362 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55076 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40971316, endtime: 40971316, seqnum: 0, connid: 0 98 12:57:40,5751047 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55076 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40971317, endtime: 40971326, seqnum: 0, connid: 0 98 12:57:40,5751238 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55076 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40971319, endtime: 40971326, seqnum: 0, connid: 0 98 12:57:40,5751343 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55076 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40971322, endtime: 40971326, seqnum: 0, connid: 0 98 12:57:40,5751454 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55076 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40971323, endtime: 40971326, seqnum: 0, connid: 0 98 12:57:40,5969486 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55076 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40971328, endtime: 40971328, seqnum: 0, connid: 0 98 12:57:40,6108748 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55076 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40971330, endtime: 40971330, seqnum: 0, connid: 0 98 12:57:40,6277337 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55076 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40971331, endtime: 40971331, seqnum: 0, connid: 0 98 12:57:40,6430582 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55076 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40971333, endtime: 40971333, seqnum: 0, connid: 0 98 12:57:40,6763770 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55076 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40971336, endtime: 40971336, seqnum: 0, connid: 0 98 12:57:40,6897095 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55076 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40971337, endtime: 40971338, seqnum: 0, connid: 0 98 12:57:40,7227284 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55076 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40971341, endtime: 40971341, seqnum: 0, connid: 0 98 12:57:40,7525718 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55076 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40971344, endtime: 40971344, seqnum: 0, connid: 0 98 12:57:40,7690303 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55076 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40971345, endtime: 40971346, seqnum: 0, connid: 0 98 12:57:41,6553033 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55008 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40971251, endtime: 40971434, seqnum: 0, connid: 0 98 12:57:41,6553249 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55008 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40971252, endtime: 40971434, seqnum: 0, connid: 0 98 12:57:41,6553335 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55008 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40971255, endtime: 40971434, seqnum: 0, connid: 0 98 12:57:41,6553418 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55008 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40971258, endtime: 40971434, seqnum: 0, connid: 0 98 12:57:41,6553481 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55008 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40971259, endtime: 40971434, seqnum: 0, connid: 0 98 12:57:41,6553553 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55008 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40971261, endtime: 40971434, seqnum: 0, connid: 0 98 12:57:41,6553614 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55008 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40971262, endtime: 40971434, seqnum: 0, connid: 0 98 12:57:41,6554238 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55008 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40971264, endtime: 40971434, seqnum: 0, connid: 0 98 12:57:41,6555919 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55008 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40971266, endtime: 40971434, seqnum: 0, connid: 0 98 12:57:41,6556083 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55008 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40971267, endtime: 40971434, seqnum: 0, connid: 0 98 12:57:41,6556174 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55008 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40971270, endtime: 40971434, seqnum: 0, connid: 0 98 12:57:41,6556258 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55008 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40971272, endtime: 40971434, seqnum: 0, connid: 0 98 12:57:41,6556321 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55008 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40971273, endtime: 40971434, seqnum: 0, connid: 0 98 12:57:41,6896759 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55064 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40971164, endtime: 40971438, seqnum: 0, connid: 0 98 12:57:41,6896995 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55064 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40971167, endtime: 40971438, seqnum: 0, connid: 0 98 12:57:41,6897103 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55064 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40971169, endtime: 40971438, seqnum: 0, connid: 0 98 12:57:41,6897219 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55064 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40971170, endtime: 40971438, seqnum: 0, connid: 0 98 12:57:41,6897311 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55064 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40971173, endtime: 40971438, seqnum: 0, connid: 0 98 12:57:41,6897419 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55064 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40971175, endtime: 40971438, seqnum: 0, connid: 0 98 12:57:41,6897510 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55064 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40971178, endtime: 40971438, seqnum: 0, connid: 0 98 12:57:41,6897618 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55064 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40971180, endtime: 40971438, seqnum: 0, connid: 0 98 12:57:41,6897710 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55064 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40971181, endtime: 40971438, seqnum: 0, connid: 0 98 12:57:41,6898150 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55064 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40971183, endtime: 40971438, seqnum: 0, connid: 0 98 12:57:41,6898247 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55064 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40971186, endtime: 40971438, seqnum: 0, connid: 0 98 12:57:41,6898355 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55064 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40971188, endtime: 40971438, seqnum: 0, connid: 0 98 12:57:41,6898447 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55064 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40971189, endtime: 40971438, seqnum: 0, connid: 0 98 12:57:41,7757198 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55008 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40971434, endtime: 40971446, seqnum: 0, connid: 0 98 12:57:41,8975868 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55040 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40971252, endtime: 40971458, seqnum: 0, connid: 0 98 12:57:41,8976037 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55040 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40971255, endtime: 40971458, seqnum: 0, connid: 0 98 12:57:41,8976115 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55040 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40971258, endtime: 40971458, seqnum: 0, connid: 0 98 12:57:41,8976192 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55040 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40971259, endtime: 40971458, seqnum: 0, connid: 0 98 12:57:41,8976253 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55040 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40971261, endtime: 40971458, seqnum: 0, connid: 0 98 12:57:41,8976325 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55040 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40971262, endtime: 40971458, seqnum: 0, connid: 0 98 12:57:41,8976381 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55040 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40971264, endtime: 40971458, seqnum: 0, connid: 0 98 12:57:41,8976453 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55040 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40971266, endtime: 40971458, seqnum: 0, connid: 0 98 12:57:41,8976511 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55040 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40971267, endtime: 40971458, seqnum: 0, connid: 0 98 12:57:41,8977270 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55040 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40971270, endtime: 40971458, seqnum: 0, connid: 0 98 12:57:41,8977348 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55040 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40971272, endtime: 40971458, seqnum: 0, connid: 0 98 12:57:41,8977420 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55040 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40971273, endtime: 40971458, seqnum: 0, connid: 0 98 12:57:41,8979118 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55040 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40971277, endtime: 40971458, seqnum: 0, connid: 0 98 12:57:42,4103572 MCLauncher.exe 6080 TCP TCPCopy WIN-0UOTFKKVN1S:54920 -> sheltex.company:8000 SUCCESS Length: 2, seqnum: 0, connid: 0 98 12:57:42,4103685 MCLauncher.exe 6080 TCP Receive WIN-0UOTFKKVN1S:54920 -> sheltex.company:8000 SUCCESS Length: 2, seqnum: 0, connid: 0 98 12:57:42,4106592 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54920 -> sheltex.company:8000 SUCCESS Length: 2, startime: 40971510, endtime: 40971510, seqnum: 0, connid: 0 98 12:57:43,5907509 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55069 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40971172, endtime: 40971628, seqnum: 0, connid: 0 98 12:57:43,5907697 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55069 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40971173, endtime: 40971628, seqnum: 0, connid: 0 98 12:57:43,5907777 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55069 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40971175, endtime: 40971628, seqnum: 0, connid: 0 98 12:57:43,5907852 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55069 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40971178, endtime: 40971628, seqnum: 0, connid: 0 98 12:57:43,5907910 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55069 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40971180, endtime: 40971628, seqnum: 0, connid: 0 98 12:57:43,5907977 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55069 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40971181, endtime: 40971628, seqnum: 0, connid: 0 98 12:57:43,5908032 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55069 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40971183, endtime: 40971628, seqnum: 0, connid: 0 98 12:57:43,5908102 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55069 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40971186, endtime: 40971628, seqnum: 0, connid: 0 98 12:57:43,5908154 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55069 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40971188, endtime: 40971628, seqnum: 0, connid: 0 98 12:57:43,5908473 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55069 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40971189, endtime: 40971628, seqnum: 0, connid: 0 98 12:57:43,5908534 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55069 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40971191, endtime: 40971628, seqnum: 0, connid: 0 98 12:57:43,5908597 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55069 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40971193, endtime: 40971628, seqnum: 0, connid: 0 98 12:57:43,5908653 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55069 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40971194, endtime: 40971628, seqnum: 0, connid: 0 98 12:57:43,8799295 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55067 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40971154, endtime: 40971657, seqnum: 0, connid: 0 98 12:57:43,8799494 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55067 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40971156, endtime: 40971657, seqnum: 0, connid: 0 98 12:57:43,8799578 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55067 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40971158, endtime: 40971657, seqnum: 0, connid: 0 98 12:57:43,8799655 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55067 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40971159, endtime: 40971657, seqnum: 0, connid: 0 98 12:57:43,8799719 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55067 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40971161, endtime: 40971657, seqnum: 0, connid: 0 98 12:57:43,8799791 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55067 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40971162, endtime: 40971657, seqnum: 0, connid: 0 98 12:57:43,8799852 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55067 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40971164, endtime: 40971657, seqnum: 0, connid: 0 98 12:57:43,8799921 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55067 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40971167, endtime: 40971657, seqnum: 0, connid: 0 98 12:57:43,8799982 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55067 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40971169, endtime: 40971657, seqnum: 0, connid: 0 98 12:57:43,8800270 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55067 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40971170, endtime: 40971657, seqnum: 0, connid: 0 98 12:57:43,8800337 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55067 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40971173, endtime: 40971657, seqnum: 0, connid: 0 98 12:57:43,8800406 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55067 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40971175, endtime: 40971657, seqnum: 0, connid: 0 98 12:57:43,8800464 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55067 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40971178, endtime: 40971657, seqnum: 0, connid: 0 98 12:57:43,9692601 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55076 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40971350, endtime: 40971666, seqnum: 0, connid: 0 98 12:57:43,9692776 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55076 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40971352, endtime: 40971666, seqnum: 0, connid: 0 98 12:57:43,9692851 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55076 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40971353, endtime: 40971666, seqnum: 0, connid: 0 98 12:57:43,9692925 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55076 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40971355, endtime: 40971666, seqnum: 0, connid: 0 98 12:57:43,9692984 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55076 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40971356, endtime: 40971666, seqnum: 0, connid: 0 98 12:57:43,9693053 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55076 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40971358, endtime: 40971666, seqnum: 0, connid: 0 98 12:57:43,9693108 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55076 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40971359, endtime: 40971666, seqnum: 0, connid: 0 98 12:57:43,9693177 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55076 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40971361, endtime: 40971666, seqnum: 0, connid: 0 98 12:57:43,9693233 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55076 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40971362, endtime: 40971666, seqnum: 0, connid: 0 98 12:57:43,9693504 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55076 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40971364, endtime: 40971666, seqnum: 0, connid: 0 98 12:57:43,9693563 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55076 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40971366, endtime: 40971666, seqnum: 0, connid: 0 98 12:57:43,9693629 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55076 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40971367, endtime: 40971666, seqnum: 0, connid: 0 98 12:57:43,9693687 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55076 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40971369, endtime: 40971666, seqnum: 0, connid: 0 98 12:57:44,0953536 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55040 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40971458, endtime: 40971678, seqnum: 0, connid: 0 98 12:57:44,0953705 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55040 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40971459, endtime: 40971678, seqnum: 0, connid: 0 98 12:57:44,0953788 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55040 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40971461, endtime: 40971678, seqnum: 0, connid: 0 98 12:57:44,0953871 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55040 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40971462, endtime: 40971678, seqnum: 0, connid: 0 98 12:57:44,0953938 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55040 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40971464, endtime: 40971678, seqnum: 0, connid: 0 98 12:57:44,0954010 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55040 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40971465, endtime: 40971678, seqnum: 0, connid: 0 98 12:57:44,0954071 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55040 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40971467, endtime: 40971678, seqnum: 0, connid: 0 98 12:57:44,0954143 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55040 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40971469, endtime: 40971678, seqnum: 0, connid: 0 98 12:57:44,0954204 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55040 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40971471, endtime: 40971678, seqnum: 0, connid: 0 98 12:57:44,0954952 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55040 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40971474, endtime: 40971678, seqnum: 0, connid: 0 98 12:57:44,0955032 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55040 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40971476, endtime: 40971678, seqnum: 0, connid: 0 98 12:57:44,0955107 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55040 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40971478, endtime: 40971678, seqnum: 0, connid: 0 98 12:57:44,0956517 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55040 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40971480, endtime: 40971678, seqnum: 0, connid: 0 98 12:57:44,2595697 MCLauncher.exe 6080 TCP Disconnect WIN-0UOTFKKVN1S:55064 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 0, seqnum: 0, connid: 0 98 12:57:44,3784506 MCLauncher.exe 6080 TCP Connect WIN-0UOTFKKVN1S:55083 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 0, mss: 1460, sackopt: 0, tsopt: 0, wsopt: 0, rcvwin: 64240, rcvwinscale: 0, sndwinscale: 0, seqnum: 0, connid: 0 98 12:57:44,3788850 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55083 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40971706, endtime: 40971706, seqnum: 0, connid: 0 98 12:57:44,3915586 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55083 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40971708, endtime: 40971708, seqnum: 0, connid: 0 98 12:57:44,4069718 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55083 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40971709, endtime: 40971709, seqnum: 0, connid: 0 98 12:57:44,4226175 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55083 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40971711, endtime: 40971711, seqnum: 0, connid: 0 98 12:57:44,4380464 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55083 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40971712, endtime: 40971712, seqnum: 0, connid: 0 98 12:57:44,4549746 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55083 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40971714, endtime: 40971714, seqnum: 0, connid: 0 98 12:57:44,4692377 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55083 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40971716, endtime: 40971716, seqnum: 0, connid: 0 98 12:57:44,4850601 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55083 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40971717, endtime: 40971717, seqnum: 0, connid: 0 98 12:57:44,5008066 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55083 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40971719, endtime: 40971719, seqnum: 0, connid: 0 98 12:57:44,5162787 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55083 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40971720, endtime: 40971720, seqnum: 0, connid: 0 98 12:57:44,5320998 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55083 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40971722, endtime: 40971722, seqnum: 0, connid: 0 98 12:57:44,5485743 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55083 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40971723, endtime: 40971723, seqnum: 0, connid: 0 98 12:57:44,5642499 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55083 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40971725, endtime: 40971725, seqnum: 0, connid: 0 98 12:57:44,5945393 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55083 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40971728, endtime: 40971728, seqnum: 0, connid: 0 98 12:57:44,6098979 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55083 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40971730, endtime: 40971730, seqnum: 0, connid: 0 98 12:57:44,6259073 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55083 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40971731, endtime: 40971731, seqnum: 0, connid: 0 98 12:57:44,6411507 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55083 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40971733, endtime: 40971733, seqnum: 0, connid: 0 98 12:57:44,6579275 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55083 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40971734, endtime: 40971734, seqnum: 0, connid: 0 98 12:57:44,6955772 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55083 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40971737, endtime: 40971738, seqnum: 0, connid: 0 98 12:57:44,7056299 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55083 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40971739, endtime: 40971739, seqnum: 0, connid: 0 98 12:57:44,7359083 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55083 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40971742, endtime: 40971742, seqnum: 0, connid: 0 98 12:57:44,7508765 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55083 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40971744, endtime: 40971744, seqnum: 0, connid: 0 98 12:57:44,7688982 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55083 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40971745, endtime: 40971745, seqnum: 0, connid: 0 98 12:57:44,7875457 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55083 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40971747, endtime: 40971747, seqnum: 0, connid: 0 98 12:57:44,8134743 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55083 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40971750, endtime: 40971750, seqnum: 0, connid: 0 98 12:57:44,8903379 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55069 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40971628, endtime: 40971758, seqnum: 0, connid: 0 98 12:57:44,8903579 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55069 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40971630, endtime: 40971758, seqnum: 0, connid: 0 98 12:57:44,8903662 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55069 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40971631, endtime: 40971758, seqnum: 0, connid: 0 98 12:57:44,8903742 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55069 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40971633, endtime: 40971758, seqnum: 0, connid: 0 98 12:57:44,8903798 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55069 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40971634, endtime: 40971758, seqnum: 0, connid: 0 98 12:57:44,8903870 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55069 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40971636, endtime: 40971758, seqnum: 0, connid: 0 98 12:57:44,8903928 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55069 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40971640, endtime: 40971758, seqnum: 0, connid: 0 98 12:57:44,8903994 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55069 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40971642, endtime: 40971758, seqnum: 0, connid: 0 98 12:57:44,8904050 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55069 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40971644, endtime: 40971758, seqnum: 0, connid: 0 98 12:57:44,8904366 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55069 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40971646, endtime: 40971758, seqnum: 0, connid: 0 98 12:57:44,8904427 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55069 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40971648, endtime: 40971758, seqnum: 0, connid: 0 98 12:57:44,8904493 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55069 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40971650, endtime: 40971758, seqnum: 0, connid: 0 98 12:57:44,8904551 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55069 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40971652, endtime: 40971758, seqnum: 0, connid: 0 98 12:57:44,8904690 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55008 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40971436, endtime: 40971758, seqnum: 0, connid: 0 98 12:57:44,8904748 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55008 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40971437, endtime: 40971758, seqnum: 0, connid: 0 98 12:57:44,8904815 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55008 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40971439, endtime: 40971758, seqnum: 0, connid: 0 98 12:57:44,8904873 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55008 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40971441, endtime: 40971758, seqnum: 0, connid: 0 98 12:57:44,8905255 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55008 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40971442, endtime: 40971758, seqnum: 0, connid: 0 98 12:57:44,8906258 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55008 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40971444, endtime: 40971758, seqnum: 0, connid: 0 98 12:57:44,8906341 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55008 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40971445, endtime: 40971758, seqnum: 0, connid: 0 98 12:57:44,8906397 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55008 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40971447, endtime: 40971758, seqnum: 0, connid: 0 98 12:57:44,8906466 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55008 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40971448, endtime: 40971758, seqnum: 0, connid: 0 98 12:57:44,8906521 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55008 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40971450, endtime: 40971758, seqnum: 0, connid: 0 98 12:57:44,8906593 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55008 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40971452, endtime: 40971758, seqnum: 0, connid: 0 98 12:57:44,8906649 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55008 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40971453, endtime: 40971758, seqnum: 0, connid: 0 98 12:57:45,1275392 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55083 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40971751, endtime: 40971781, seqnum: 0, connid: 0 98 12:57:45,1275578 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55083 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40971753, endtime: 40971781, seqnum: 0, connid: 0 98 12:57:45,1275661 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55083 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40971755, endtime: 40971781, seqnum: 0, connid: 0 98 12:57:45,1275744 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55083 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40971756, endtime: 40971781, seqnum: 0, connid: 0 98 12:57:45,1275810 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55083 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40971759, endtime: 40971781, seqnum: 0, connid: 0 98 12:57:45,1275888 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55083 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40971761, endtime: 40971781, seqnum: 0, connid: 0 98 12:57:45,1275952 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55083 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40971762, endtime: 40971781, seqnum: 0, connid: 0 98 12:57:45,1276024 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55083 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40971764, endtime: 40971781, seqnum: 0, connid: 0 98 12:57:45,1276087 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55083 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40971765, endtime: 40971781, seqnum: 0, connid: 0 98 12:57:45,1276389 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55083 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40971767, endtime: 40971781, seqnum: 0, connid: 0 98 12:57:45,1276456 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55083 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40971769, endtime: 40971781, seqnum: 0, connid: 0 98 12:57:45,1276528 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55083 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40971772, endtime: 40971781, seqnum: 0, connid: 0 98 12:57:45,1276589 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55083 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40971773, endtime: 40971781, seqnum: 0, connid: 0 98 12:57:46,8677315 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55067 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40971657, endtime: 40971955, seqnum: 0, connid: 0 98 12:57:46,8677692 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55067 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40971658, endtime: 40971955, seqnum: 0, connid: 0 98 12:57:46,8677842 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55067 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40971659, endtime: 40971955, seqnum: 0, connid: 0 98 12:57:46,8677980 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55067 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40971661, endtime: 40971955, seqnum: 0, connid: 0 98 12:57:46,8678094 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55067 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40971662, endtime: 40971955, seqnum: 0, connid: 0 98 12:57:46,8678180 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55067 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40971664, endtime: 40971955, seqnum: 0, connid: 0 98 12:57:46,8678249 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55067 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40971666, endtime: 40971955, seqnum: 0, connid: 0 98 12:57:46,8678330 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55067 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40971667, endtime: 40971955, seqnum: 0, connid: 0 98 12:57:46,8678396 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55067 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40971669, endtime: 40971955, seqnum: 0, connid: 0 98 12:57:46,8680042 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55067 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40971670, endtime: 40971955, seqnum: 0, connid: 0 98 12:57:46,8680144 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55067 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40971672, endtime: 40971955, seqnum: 0, connid: 0 98 12:57:46,8680222 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55067 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40971673, endtime: 40971955, seqnum: 0, connid: 0 98 12:57:46,8680286 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55067 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40971675, endtime: 40971955, seqnum: 0, connid: 0 98 12:57:47,9164970 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55076 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40971666, endtime: 40972060, seqnum: 0, connid: 0 98 12:57:47,9165134 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55076 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40971667, endtime: 40972060, seqnum: 0, connid: 0 98 12:57:47,9165206 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55076 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40971669, endtime: 40972060, seqnum: 0, connid: 0 98 12:57:47,9165278 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55076 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40971670, endtime: 40972060, seqnum: 0, connid: 0 98 12:57:47,9165333 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55076 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40971672, endtime: 40972060, seqnum: 0, connid: 0 98 12:57:47,9165400 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55076 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40971673, endtime: 40972060, seqnum: 0, connid: 0 98 12:57:47,9165455 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55076 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40971675, endtime: 40972060, seqnum: 0, connid: 0 98 12:57:47,9165524 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55076 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40971676, endtime: 40972060, seqnum: 0, connid: 0 98 12:57:47,9165580 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55076 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40971678, endtime: 40972060, seqnum: 0, connid: 0 98 12:57:47,9165879 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55076 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40971680, endtime: 40972060, seqnum: 0, connid: 0 98 12:57:47,9165937 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55076 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40971685, endtime: 40972060, seqnum: 0, connid: 0 98 12:57:47,9166004 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55076 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40971686, endtime: 40972060, seqnum: 0, connid: 0 98 12:57:47,9166059 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55076 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40971688, endtime: 40972060, seqnum: 0, connid: 0 98 12:57:48,1807583 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55069 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40971758, endtime: 40972087, seqnum: 0, connid: 0 98 12:57:48,1807763 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55069 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40971759, endtime: 40972087, seqnum: 0, connid: 0 98 12:57:48,1807841 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55069 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40971761, endtime: 40972087, seqnum: 0, connid: 0 98 12:57:48,1807919 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55069 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40971762, endtime: 40972087, seqnum: 0, connid: 0 98 12:57:48,1807977 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55069 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40971764, endtime: 40972087, seqnum: 0, connid: 0 98 12:57:48,1808046 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55069 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40971765, endtime: 40972087, seqnum: 0, connid: 0 98 12:57:48,1808101 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55069 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40971767, endtime: 40972087, seqnum: 0, connid: 0 98 12:57:48,1808171 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55069 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40971769, endtime: 40972087, seqnum: 0, connid: 0 98 12:57:48,1808223 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55069 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40971772, endtime: 40972087, seqnum: 0, connid: 0 98 12:57:48,1808542 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55069 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40971773, endtime: 40972087, seqnum: 0, connid: 0 98 12:57:48,1808603 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55069 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40971777, endtime: 40972087, seqnum: 0, connid: 0 98 12:57:48,1808669 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55069 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40971778, endtime: 40972087, seqnum: 0, connid: 0 98 12:57:48,1808725 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55069 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40971780, endtime: 40972087, seqnum: 0, connid: 0 98 12:57:48,3965332 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55040 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40971678, endtime: 40972108, seqnum: 0, connid: 0 98 12:57:48,3965479 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55040 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40971680, endtime: 40972108, seqnum: 0, connid: 0 98 12:57:48,3965556 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55040 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40971685, endtime: 40972108, seqnum: 0, connid: 0 98 12:57:48,3965628 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55040 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40971686, endtime: 40972108, seqnum: 0, connid: 0 98 12:57:48,3965686 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55040 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40971688, endtime: 40972108, seqnum: 0, connid: 0 98 12:57:48,3965753 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55040 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40971689, endtime: 40972108, seqnum: 0, connid: 0 98 12:57:48,3965808 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55040 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40971691, endtime: 40972108, seqnum: 0, connid: 0 98 12:57:48,3965872 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55040 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40971692, endtime: 40972108, seqnum: 0, connid: 0 98 12:57:48,3965928 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55040 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40971694, endtime: 40972108, seqnum: 0, connid: 0 98 12:57:48,3966210 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55040 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40971695, endtime: 40972108, seqnum: 0, connid: 0 98 12:57:48,3966266 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55040 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40971697, endtime: 40972108, seqnum: 0, connid: 0 98 12:57:48,3966329 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55040 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40971698, endtime: 40972108, seqnum: 0, connid: 0 98 12:57:48,3966385 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55040 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40971700, endtime: 40972108, seqnum: 0, connid: 0 98 12:57:49,0040090 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55067 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40971955, endtime: 40972169, seqnum: 0, connid: 0 98 12:57:49,0040331 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55067 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40971956, endtime: 40972169, seqnum: 0, connid: 0 98 12:57:49,0040409 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55067 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40971959, endtime: 40972169, seqnum: 0, connid: 0 98 12:57:49,0040484 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55067 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40971961, endtime: 40972169, seqnum: 0, connid: 0 98 12:57:49,0040542 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55067 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40971962, endtime: 40972169, seqnum: 0, connid: 0 98 12:57:49,0040611 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55067 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40971964, endtime: 40972169, seqnum: 0, connid: 0 98 12:57:49,0040664 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55067 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40971966, endtime: 40972169, seqnum: 0, connid: 0 98 12:57:49,0040733 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55067 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40971967, endtime: 40972169, seqnum: 0, connid: 0 98 12:57:49,0040789 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55067 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40971969, endtime: 40972169, seqnum: 0, connid: 0 98 12:57:49,0041082 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55067 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40971970, endtime: 40972169, seqnum: 0, connid: 0 98 12:57:49,0041146 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55067 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40971972, endtime: 40972169, seqnum: 0, connid: 0 98 12:57:49,0041213 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55067 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40971973, endtime: 40972169, seqnum: 0, connid: 0 98 12:57:49,0041271 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55067 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40971975, endtime: 40972169, seqnum: 0, connid: 0 98 12:57:51,3569884 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55069 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40972087, endtime: 40972404, seqnum: 0, connid: 0 98 12:57:51,3570064 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55069 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40972087, endtime: 40972404, seqnum: 0, connid: 0 98 12:57:51,3570147 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55069 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40972091, endtime: 40972404, seqnum: 0, connid: 0 98 12:57:51,3570228 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55069 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40972094, endtime: 40972404, seqnum: 0, connid: 0 98 12:57:51,3570292 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55069 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40972097, endtime: 40972404, seqnum: 0, connid: 0 98 12:57:51,3570366 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55069 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40972099, endtime: 40972404, seqnum: 0, connid: 0 98 12:57:51,3570430 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55069 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40972101, endtime: 40972404, seqnum: 0, connid: 0 98 12:57:51,3570505 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55069 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40972105, endtime: 40972404, seqnum: 0, connid: 0 98 12:57:51,3570566 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55069 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40972106, endtime: 40972404, seqnum: 0, connid: 0 98 12:57:51,3570887 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55069 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40972108, endtime: 40972404, seqnum: 0, connid: 0 98 12:57:51,3570954 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55069 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40972109, endtime: 40972404, seqnum: 0, connid: 0 98 12:57:51,3571026 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55069 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40972113, endtime: 40972404, seqnum: 0, connid: 0 98 12:57:51,3571087 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55069 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40972116, endtime: 40972404, seqnum: 0, connid: 0 98 12:57:51,6582896 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55040 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40972108, endtime: 40972434, seqnum: 0, connid: 0 98 12:57:51,6583074 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55040 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40972109, endtime: 40972434, seqnum: 0, connid: 0 98 12:57:51,6583151 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55040 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40972113, endtime: 40972434, seqnum: 0, connid: 0 98 12:57:51,6583223 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55040 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40972116, endtime: 40972434, seqnum: 0, connid: 0 98 12:57:51,6583279 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55040 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40972117, endtime: 40972434, seqnum: 0, connid: 0 98 12:57:51,6583348 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55040 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40972119, endtime: 40972434, seqnum: 0, connid: 0 98 12:57:51,6583403 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55040 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40972121, endtime: 40972434, seqnum: 0, connid: 0 98 12:57:51,6583470 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55040 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40972122, endtime: 40972434, seqnum: 0, connid: 0 98 12:57:51,6585066 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55040 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40972123, endtime: 40972434, seqnum: 0, connid: 0 98 12:57:51,6585215 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55040 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40972126, endtime: 40972434, seqnum: 0, connid: 0 98 12:57:51,6585279 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55040 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40972126, endtime: 40972434, seqnum: 0, connid: 0 98 12:57:51,6585354 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55040 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40972128, endtime: 40972434, seqnum: 0, connid: 0 98 12:57:51,6585415 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55040 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40972130, endtime: 40972434, seqnum: 0, connid: 0 98 12:57:51,6722114 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55076 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40972060, endtime: 40972436, seqnum: 0, connid: 0 98 12:57:51,6722319 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55076 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40972061, endtime: 40972436, seqnum: 0, connid: 0 98 12:57:51,6722405 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55076 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40972062, endtime: 40972436, seqnum: 0, connid: 0 98 12:57:51,6722486 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55076 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40972064, endtime: 40972436, seqnum: 0, connid: 0 98 12:57:51,6722552 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55076 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40972066, endtime: 40972436, seqnum: 0, connid: 0 98 12:57:51,6722627 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55076 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40972067, endtime: 40972436, seqnum: 0, connid: 0 98 12:57:51,6722688 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55076 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40972069, endtime: 40972436, seqnum: 0, connid: 0 98 12:57:51,6722760 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55076 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40972072, endtime: 40972436, seqnum: 0, connid: 0 98 12:57:51,6722821 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55076 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40972076, endtime: 40972436, seqnum: 0, connid: 0 98 12:57:51,6723148 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55076 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40972079, endtime: 40972436, seqnum: 0, connid: 0 98 12:57:51,6723214 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55076 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40972080, endtime: 40972436, seqnum: 0, connid: 0 98 12:57:51,6723286 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55076 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40972083, endtime: 40972436, seqnum: 0, connid: 0 98 12:57:51,6723350 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55076 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40972084, endtime: 40972436, seqnum: 0, connid: 0 98 12:57:52,5202628 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55008 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40971455, endtime: 40972521, seqnum: 0, connid: 0 98 12:57:52,5202808 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55008 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40971758, endtime: 40972521, seqnum: 0, connid: 0 98 12:57:52,5202902 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55008 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40971759, endtime: 40972521, seqnum: 0, connid: 0 98 12:57:52,5202972 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55008 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40971761, endtime: 40972521, seqnum: 0, connid: 0 98 12:57:52,5203044 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55008 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40971762, endtime: 40972521, seqnum: 0, connid: 0 98 12:57:52,5203102 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55008 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40971764, endtime: 40972521, seqnum: 0, connid: 0 98 12:57:52,5203174 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55008 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40971765, endtime: 40972521, seqnum: 0, connid: 0 98 12:57:52,5203235 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55008 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40971767, endtime: 40972521, seqnum: 0, connid: 0 98 12:57:52,5203307 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55008 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40971769, endtime: 40972521, seqnum: 0, connid: 0 98 12:57:52,5203365 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55008 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40971772, endtime: 40972521, seqnum: 0, connid: 0 98 12:57:52,5203689 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55008 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40971773, endtime: 40972521, seqnum: 0, connid: 0 98 12:57:52,5203747 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55008 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40971777, endtime: 40972521, seqnum: 0, connid: 0 98 12:57:52,5203817 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55008 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40971778, endtime: 40972521, seqnum: 0, connid: 0 98 12:57:52,5651597 MCLauncher.exe 6080 TCP TCPCopy WIN-0UOTFKKVN1S:54920 -> sheltex.company:8000 SUCCESS Length: 2, seqnum: 0, connid: 0 98 12:57:52,5651778 MCLauncher.exe 6080 TCP Receive WIN-0UOTFKKVN1S:54920 -> sheltex.company:8000 SUCCESS Length: 2, seqnum: 0, connid: 0 98 12:57:52,5758871 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54920 -> sheltex.company:8000 SUCCESS Length: 2, startime: 40972525, endtime: 40972526, seqnum: 0, connid: 0 98 12:57:53,0982447 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55083 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40971781, endtime: 40972578, seqnum: 0, connid: 0 98 12:57:53,0982616 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55083 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40971783, endtime: 40972578, seqnum: 0, connid: 0 98 12:57:53,0982707 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55083 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40971784, endtime: 40972578, seqnum: 0, connid: 0 98 12:57:53,0982776 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55083 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40971786, endtime: 40972578, seqnum: 0, connid: 0 98 12:57:53,0982848 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55083 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40971787, endtime: 40972578, seqnum: 0, connid: 0 98 12:57:53,0982907 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55083 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40971789, endtime: 40972578, seqnum: 0, connid: 0 98 12:57:53,0982979 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55083 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40971791, endtime: 40972578, seqnum: 0, connid: 0 98 12:57:53,0983037 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55083 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40971794, endtime: 40972578, seqnum: 0, connid: 0 98 12:57:53,0983109 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55083 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40971795, endtime: 40972578, seqnum: 0, connid: 0 98 12:57:53,0983400 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55083 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40971799, endtime: 40972578, seqnum: 0, connid: 0 98 12:57:53,0983475 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55083 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40971803, endtime: 40972578, seqnum: 0, connid: 0 98 12:57:53,0983536 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55083 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40971803, endtime: 40972578, seqnum: 0, connid: 0 98 12:57:53,0983608 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55083 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40971804, endtime: 40972578, seqnum: 0, connid: 0 98 12:57:54,0624690 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55067 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40972169, endtime: 40972675, seqnum: 0, connid: 0 98 12:57:54,0624903 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55067 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40972170, endtime: 40972675, seqnum: 0, connid: 0 98 12:57:54,0624997 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55067 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40972172, endtime: 40972675, seqnum: 0, connid: 0 98 12:57:54,0625067 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55067 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40972173, endtime: 40972675, seqnum: 0, connid: 0 98 12:57:54,0625144 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55067 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40972175, endtime: 40972675, seqnum: 0, connid: 0 98 12:57:54,0625202 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55067 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40972178, endtime: 40972675, seqnum: 0, connid: 0 98 12:57:54,0625274 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55067 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40972181, endtime: 40972675, seqnum: 0, connid: 0 98 12:57:54,0625330 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55067 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40972183, endtime: 40972675, seqnum: 0, connid: 0 98 12:57:54,0625399 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55067 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40972184, endtime: 40972675, seqnum: 0, connid: 0 98 12:57:54,0625457 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55067 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40972186, endtime: 40972675, seqnum: 0, connid: 0 98 12:57:54,0625751 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55067 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40972187, endtime: 40972675, seqnum: 0, connid: 0 98 12:57:54,0625812 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55067 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40972191, endtime: 40972675, seqnum: 0, connid: 0 98 12:57:54,0625884 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55067 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40972192, endtime: 40972675, seqnum: 0, connid: 0 98 12:57:54,1407739 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55067 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40972675, endtime: 40972683, seqnum: 0, connid: 0 98 12:57:54,1707441 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55076 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40972436, endtime: 40972686, seqnum: 0, connid: 0 98 12:57:54,1707605 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55076 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40972437, endtime: 40972686, seqnum: 0, connid: 0 98 12:57:54,1707674 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55076 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40972439, endtime: 40972686, seqnum: 0, connid: 0 98 12:57:54,1707746 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55076 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40972441, endtime: 40972686, seqnum: 0, connid: 0 98 12:57:54,1707802 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55076 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40972444, endtime: 40972686, seqnum: 0, connid: 0 98 12:57:54,1707871 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55076 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40972445, endtime: 40972686, seqnum: 0, connid: 0 98 12:57:54,1707924 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55076 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40972447, endtime: 40972686, seqnum: 0, connid: 0 98 12:57:54,1707987 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55076 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40972448, endtime: 40972686, seqnum: 0, connid: 0 98 12:57:54,1708040 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55076 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40972450, endtime: 40972686, seqnum: 0, connid: 0 98 12:57:54,1708347 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55076 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40972454, endtime: 40972686, seqnum: 0, connid: 0 98 12:57:54,1708406 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55076 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40972455, endtime: 40972686, seqnum: 0, connid: 0 98 12:57:54,1708469 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55076 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40972456, endtime: 40972686, seqnum: 0, connid: 0 98 12:57:54,1709514 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55076 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40972458, endtime: 40972686, seqnum: 0, connid: 0 98 12:57:54,2576176 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55069 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40972404, endtime: 40972694, seqnum: 0, connid: 0 98 12:57:54,2576358 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55069 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40972406, endtime: 40972694, seqnum: 0, connid: 0 98 12:57:54,2576433 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55069 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40972408, endtime: 40972694, seqnum: 0, connid: 0 98 12:57:54,2576511 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55069 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40972409, endtime: 40972694, seqnum: 0, connid: 0 98 12:57:54,2576569 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55069 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40972411, endtime: 40972694, seqnum: 0, connid: 0 98 12:57:54,2576638 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55069 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40972412, endtime: 40972694, seqnum: 0, connid: 0 98 12:57:54,2576694 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55069 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40972414, endtime: 40972694, seqnum: 0, connid: 0 98 12:57:54,2576760 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55069 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40972416, endtime: 40972694, seqnum: 0, connid: 0 98 12:57:54,2576818 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55069 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40972417, endtime: 40972694, seqnum: 0, connid: 0 98 12:57:54,2577090 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55069 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40972419, endtime: 40972694, seqnum: 0, connid: 0 98 12:57:54,2577151 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55069 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40972420, endtime: 40972694, seqnum: 0, connid: 0 98 12:57:54,2577217 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55069 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40972423, endtime: 40972694, seqnum: 0, connid: 0 98 12:57:54,2577273 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55069 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40972425, endtime: 40972694, seqnum: 0, connid: 0 98 12:57:55,2722697 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55040 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40972434, endtime: 40972796, seqnum: 0, connid: 0 98 12:57:55,2722882 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55040 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40972437, endtime: 40972796, seqnum: 0, connid: 0 98 12:57:55,2722960 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55040 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40972439, endtime: 40972796, seqnum: 0, connid: 0 98 12:57:55,2723037 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55040 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40972441, endtime: 40972796, seqnum: 0, connid: 0 98 12:57:55,2723098 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55040 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40972444, endtime: 40972796, seqnum: 0, connid: 0 98 12:57:55,2723170 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55040 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40972445, endtime: 40972796, seqnum: 0, connid: 0 98 12:57:55,2723226 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55040 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40972447, endtime: 40972796, seqnum: 0, connid: 0 98 12:57:55,2723292 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55040 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40972450, endtime: 40972796, seqnum: 0, connid: 0 98 12:57:55,2723351 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55040 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40972454, endtime: 40972796, seqnum: 0, connid: 0 98 12:57:55,2724085 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55040 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40972455, endtime: 40972796, seqnum: 0, connid: 0 98 12:57:55,2724162 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55040 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40972456, endtime: 40972796, seqnum: 0, connid: 0 98 12:57:55,2724234 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55040 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40972458, endtime: 40972796, seqnum: 0, connid: 0 98 12:57:55,2724345 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55008 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40972521, endtime: 40972796, seqnum: 0, connid: 0 98 12:57:55,2724417 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55008 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40972522, endtime: 40972796, seqnum: 0, connid: 0 98 12:57:55,2724475 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55008 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40972523, endtime: 40972796, seqnum: 0, connid: 0 98 12:57:55,2724545 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55008 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40972525, endtime: 40972796, seqnum: 0, connid: 0 98 12:57:55,2724600 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55008 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40972528, endtime: 40972796, seqnum: 0, connid: 0 98 12:57:55,2724672 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55008 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40972530, endtime: 40972796, seqnum: 0, connid: 0 98 12:57:55,2725232 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55008 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40972531, endtime: 40972796, seqnum: 0, connid: 0 98 12:57:55,2725312 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55008 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40972534, endtime: 40972796, seqnum: 0, connid: 0 98 12:57:55,2725370 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55008 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40972536, endtime: 40972796, seqnum: 0, connid: 0 98 12:57:55,2725437 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55008 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40972538, endtime: 40972796, seqnum: 0, connid: 0 98 12:57:55,2725495 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55008 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40972539, endtime: 40972796, seqnum: 0, connid: 0 98 12:57:55,2725561 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55008 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40972541, endtime: 40972796, seqnum: 0, connid: 0 98 12:57:55,2725620 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55008 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40972544, endtime: 40972796, seqnum: 0, connid: 0 98 12:57:55,3549313 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55040 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40972459, endtime: 40972804, seqnum: 0, connid: 0 98 12:57:55,8649701 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55067 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40972677, endtime: 40972855, seqnum: 0, connid: 0 98 12:57:55,8649870 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55067 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40972680, endtime: 40972855, seqnum: 0, connid: 0 98 12:57:55,8649962 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55067 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40972681, endtime: 40972855, seqnum: 0, connid: 0 98 12:57:55,8650028 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55067 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40972683, endtime: 40972855, seqnum: 0, connid: 0 98 12:57:55,8650103 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55067 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40972684, endtime: 40972855, seqnum: 0, connid: 0 98 12:57:55,8650161 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55067 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40972686, endtime: 40972855, seqnum: 0, connid: 0 98 12:57:55,8650233 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55067 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40972687, endtime: 40972855, seqnum: 0, connid: 0 98 12:57:55,8650291 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55067 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40972691, endtime: 40972855, seqnum: 0, connid: 0 98 12:57:55,8650361 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55067 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40972692, endtime: 40972855, seqnum: 0, connid: 0 98 12:57:55,8651186 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55067 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40972694, endtime: 40972855, seqnum: 0, connid: 0 98 12:57:55,8651275 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55067 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40972695, endtime: 40972855, seqnum: 0, connid: 0 98 12:57:55,8651336 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55067 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40972697, endtime: 40972855, seqnum: 0, connid: 0 98 12:57:55,8653231 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55067 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40972698, endtime: 40972855, seqnum: 0, connid: 0 98 12:57:56,1249734 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55083 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40972578, endtime: 40972881, seqnum: 0, connid: 0 98 12:57:56,1249894 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55083 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40972580, endtime: 40972881, seqnum: 0, connid: 0 98 12:57:56,1249969 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55083 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40972581, endtime: 40972881, seqnum: 0, connid: 0 98 12:57:56,1250044 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55083 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40972583, endtime: 40972881, seqnum: 0, connid: 0 98 12:57:56,1250099 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55083 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40972584, endtime: 40972881, seqnum: 0, connid: 0 98 12:57:56,1250172 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55083 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40972587, endtime: 40972881, seqnum: 0, connid: 0 98 12:57:56,1250227 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55083 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40972588, endtime: 40972881, seqnum: 0, connid: 0 98 12:57:56,1250299 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55083 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40972588, endtime: 40972881, seqnum: 0, connid: 0 98 12:57:56,1250354 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55083 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40972589, endtime: 40972881, seqnum: 0, connid: 0 98 12:57:56,1250662 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55083 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40972590, endtime: 40972881, seqnum: 0, connid: 0 98 12:57:56,1250720 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55083 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40972590, endtime: 40972881, seqnum: 0, connid: 0 98 12:57:56,1250787 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55083 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40972592, endtime: 40972881, seqnum: 0, connid: 0 98 12:57:56,1250845 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55083 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40972594, endtime: 40972881, seqnum: 0, connid: 0 98 12:57:57,1329193 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55069 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40972694, endtime: 40972982, seqnum: 0, connid: 0 98 12:57:57,1329335 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55069 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40972695, endtime: 40972982, seqnum: 0, connid: 0 98 12:57:57,1329407 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55069 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40972696, endtime: 40972982, seqnum: 0, connid: 0 98 12:57:57,1329482 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55069 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40972697, endtime: 40972982, seqnum: 0, connid: 0 98 12:57:57,1329540 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55069 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40972698, endtime: 40972982, seqnum: 0, connid: 0 98 12:57:57,1329606 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55069 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40972698, endtime: 40972982, seqnum: 0, connid: 0 98 12:57:57,1329662 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55069 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40972699, endtime: 40972982, seqnum: 0, connid: 0 98 12:57:57,1329725 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55069 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40972699, endtime: 40972982, seqnum: 0, connid: 0 98 12:57:57,1329781 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55069 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40972700, endtime: 40972982, seqnum: 0, connid: 0 98 12:57:57,1330598 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55069 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40972701, endtime: 40972982, seqnum: 0, connid: 0 98 12:57:57,1330667 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55069 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40972703, endtime: 40972982, seqnum: 0, connid: 0 98 12:57:57,1330737 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55069 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40972705, endtime: 40972982, seqnum: 0, connid: 0 98 12:57:57,1332399 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55069 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40972706, endtime: 40972982, seqnum: 0, connid: 0 98 12:57:57,6003101 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55076 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40972686, endtime: 40973029, seqnum: 0, connid: 0 98 12:57:57,6003256 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55076 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40972687, endtime: 40973029, seqnum: 0, connid: 0 98 12:57:57,6003328 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55076 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40972691, endtime: 40973029, seqnum: 0, connid: 0 98 12:57:57,6003398 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55076 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40972692, endtime: 40973029, seqnum: 0, connid: 0 98 12:57:57,6003456 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55076 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40972694, endtime: 40973029, seqnum: 0, connid: 0 98 12:57:57,6003522 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55076 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40972695, endtime: 40973029, seqnum: 0, connid: 0 98 12:57:57,6003578 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55076 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40972697, endtime: 40973029, seqnum: 0, connid: 0 98 12:57:57,6003644 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55076 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40972698, endtime: 40973029, seqnum: 0, connid: 0 98 12:57:57,6003700 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55076 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40972698, endtime: 40973029, seqnum: 0, connid: 0 98 12:57:57,6003988 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55076 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40972699, endtime: 40973029, seqnum: 0, connid: 0 98 12:57:57,6004046 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55076 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40972699, endtime: 40973029, seqnum: 0, connid: 0 98 12:57:57,6004110 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55076 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40972700, endtime: 40973029, seqnum: 0, connid: 0 98 12:57:57,6004165 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55076 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40972701, endtime: 40973029, seqnum: 0, connid: 0 98 12:57:57,8244900 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55040 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40972796, endtime: 40973051, seqnum: 0, connid: 0 98 12:57:57,8245064 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55040 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40972797, endtime: 40973051, seqnum: 0, connid: 0 98 12:57:57,8245150 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55040 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40972798, endtime: 40973051, seqnum: 0, connid: 0 98 12:57:57,8245213 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55040 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40972800, endtime: 40973051, seqnum: 0, connid: 0 98 12:57:57,8245285 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55040 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40972801, endtime: 40973051, seqnum: 0, connid: 0 98 12:57:57,8245341 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55040 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40972801, endtime: 40973051, seqnum: 0, connid: 0 98 12:57:57,8245407 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55040 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40972803, endtime: 40973051, seqnum: 0, connid: 0 98 12:57:57,8245463 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55040 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40972805, endtime: 40973051, seqnum: 0, connid: 0 98 12:57:57,8245529 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55040 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40972806, endtime: 40973051, seqnum: 0, connid: 0 98 12:57:57,8246338 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55040 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40972811, endtime: 40973051, seqnum: 0, connid: 0 98 12:57:57,8246471 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55040 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40972812, endtime: 40973051, seqnum: 0, connid: 0 98 12:57:57,8246568 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55040 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40972814, endtime: 40973051, seqnum: 0, connid: 0 98 12:57:58,4277192 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55067 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40972855, endtime: 40973111, seqnum: 0, connid: 0 98 12:57:58,4277366 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55067 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40972856, endtime: 40973111, seqnum: 0, connid: 0 98 12:57:58,4277438 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55067 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40972859, endtime: 40973111, seqnum: 0, connid: 0 98 12:57:58,4277510 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55067 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40972861, endtime: 40973111, seqnum: 0, connid: 0 98 12:57:58,4277566 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55067 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40972863, endtime: 40973111, seqnum: 0, connid: 0 98 12:57:58,4277629 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55067 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40972864, endtime: 40973111, seqnum: 0, connid: 0 98 12:57:58,4277685 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55067 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40972866, endtime: 40973111, seqnum: 0, connid: 0 98 12:57:58,4277749 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55067 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40972867, endtime: 40973111, seqnum: 0, connid: 0 98 12:57:58,4277804 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55067 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40972869, endtime: 40973111, seqnum: 0, connid: 0 98 12:57:58,4278519 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55067 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40972872, endtime: 40973111, seqnum: 0, connid: 0 98 12:57:58,4278588 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55067 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40972873, endtime: 40973111, seqnum: 0, connid: 0 98 12:57:58,4279189 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55067 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40972877, endtime: 40973111, seqnum: 0, connid: 0 98 12:57:58,4279259 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55067 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40972878, endtime: 40973111, seqnum: 0, connid: 0 98 12:57:59,1591837 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55083 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40972881, endtime: 40973185, seqnum: 0, connid: 0 98 12:57:59,1592017 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55083 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40972883, endtime: 40973185, seqnum: 0, connid: 0 98 12:57:59,1592092 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55083 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40972884, endtime: 40973185, seqnum: 0, connid: 0 98 12:57:59,1592167 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55083 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40972887, endtime: 40973185, seqnum: 0, connid: 0 98 12:57:59,1592225 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55083 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40972889, endtime: 40973185, seqnum: 0, connid: 0 98 12:57:59,1592291 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55083 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40972892, endtime: 40973185, seqnum: 0, connid: 0 98 12:57:59,1592347 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55083 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40972894, endtime: 40973185, seqnum: 0, connid: 0 98 12:57:59,1592413 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55083 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40972897, endtime: 40973185, seqnum: 0, connid: 0 98 12:57:59,1592469 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55083 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40972898, endtime: 40973185, seqnum: 0, connid: 0 98 12:57:59,1592762 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55083 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40972900, endtime: 40973185, seqnum: 0, connid: 0 98 12:57:59,1592821 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55083 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40972901, endtime: 40973185, seqnum: 0, connid: 0 98 12:57:59,1592890 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55083 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40972903, endtime: 40973185, seqnum: 0, connid: 0 98 12:57:59,1592945 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55083 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40972905, endtime: 40973185, seqnum: 0, connid: 0 98 12:57:59,8542816 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55008 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40972796, endtime: 40973254, seqnum: 0, connid: 0 98 12:57:59,8543013 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55008 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40972797, endtime: 40973254, seqnum: 0, connid: 0 98 12:57:59,8543087 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55008 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40972798, endtime: 40973254, seqnum: 0, connid: 0 98 12:57:59,8543162 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55008 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40972800, endtime: 40973254, seqnum: 0, connid: 0 98 12:57:59,8543220 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55008 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40972801, endtime: 40973254, seqnum: 0, connid: 0 98 12:57:59,8543290 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55008 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40972801, endtime: 40973254, seqnum: 0, connid: 0 98 12:57:59,8543345 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55008 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40972803, endtime: 40973254, seqnum: 0, connid: 0 98 12:57:59,8544301 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55008 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40972805, endtime: 40973254, seqnum: 0, connid: 0 98 12:57:59,8544373 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55008 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40972806, endtime: 40973254, seqnum: 0, connid: 0 98 12:57:59,8544439 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55008 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40972811, endtime: 40973254, seqnum: 0, connid: 0 98 12:57:59,8544495 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55008 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40972812, endtime: 40973254, seqnum: 0, connid: 0 98 12:57:59,8544559 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55008 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40972814, endtime: 40973254, seqnum: 0, connid: 0 98 12:57:59,8544611 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55008 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40972816, endtime: 40973254, seqnum: 0, connid: 0 98 12:58:00,1948383 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55040 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40972816, endtime: 40973288, seqnum: 0, connid: 0 98 12:58:00,1948644 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55040 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40973051, endtime: 40973288, seqnum: 0, connid: 0 98 12:58:00,1948782 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55040 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40973053, endtime: 40973288, seqnum: 0, connid: 0 98 12:58:00,1948857 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55040 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40973055, endtime: 40973288, seqnum: 0, connid: 0 98 12:58:00,1948937 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55040 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40973056, endtime: 40973288, seqnum: 0, connid: 0 98 12:58:00,1948998 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55040 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40973058, endtime: 40973288, seqnum: 0, connid: 0 98 12:58:00,1949073 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55040 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40973059, endtime: 40973288, seqnum: 0, connid: 0 98 12:58:00,1949137 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55040 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40973061, endtime: 40973288, seqnum: 0, connid: 0 98 12:58:00,1949212 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55040 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40973062, endtime: 40973288, seqnum: 0, connid: 0 98 12:58:00,1949275 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55040 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40973064, endtime: 40973288, seqnum: 0, connid: 0 98 12:58:00,1949627 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55040 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40973066, endtime: 40973288, seqnum: 0, connid: 0 98 12:58:00,1949688 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55040 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40973067, endtime: 40973288, seqnum: 0, connid: 0 98 12:58:00,1949760 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55040 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40973069, endtime: 40973288, seqnum: 0, connid: 0 98 12:58:00,1978316 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55040 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40973288, endtime: 40973288, seqnum: 0, connid: 0 98 12:58:00,3986385 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55076 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40973029, endtime: 40973308, seqnum: 0, connid: 0 98 12:58:00,3986565 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55076 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40973030, endtime: 40973308, seqnum: 0, connid: 0 98 12:58:00,3986640 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55076 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40973031, endtime: 40973308, seqnum: 0, connid: 0 98 12:58:00,3986712 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55076 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40973033, endtime: 40973308, seqnum: 0, connid: 0 98 12:58:00,3986768 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55076 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40973034, endtime: 40973308, seqnum: 0, connid: 0 98 12:58:00,3986834 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55076 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40973037, endtime: 40973308, seqnum: 0, connid: 0 98 12:58:00,3986890 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55076 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40973042, endtime: 40973308, seqnum: 0, connid: 0 98 12:58:00,3986953 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55076 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40973044, endtime: 40973308, seqnum: 0, connid: 0 98 12:58:00,3987009 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55076 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40973047, endtime: 40973308, seqnum: 0, connid: 0 98 12:58:00,3988311 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55076 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40973049, endtime: 40973308, seqnum: 0, connid: 0 98 12:58:00,3988430 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55076 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40973050, endtime: 40973308, seqnum: 0, connid: 0 98 12:58:00,3988513 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55076 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40973052, endtime: 40973308, seqnum: 0, connid: 0 98 12:58:00,3988574 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55076 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40973053, endtime: 40973308, seqnum: 0, connid: 0 98 12:58:01,3359086 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55067 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40973111, endtime: 40973402, seqnum: 0, connid: 0 98 12:58:01,3359277 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55067 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40973114, endtime: 40973402, seqnum: 0, connid: 0 98 12:58:01,3359358 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55067 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40973119, endtime: 40973402, seqnum: 0, connid: 0 98 12:58:01,3359435 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55067 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40973120, endtime: 40973402, seqnum: 0, connid: 0 98 12:58:01,3359493 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55067 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40973123, endtime: 40973402, seqnum: 0, connid: 0 98 12:58:01,3359563 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55067 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40973125, endtime: 40973402, seqnum: 0, connid: 0 98 12:58:01,3359618 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55067 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40973127, endtime: 40973402, seqnum: 0, connid: 0 98 12:58:01,3359687 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55067 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40973130, endtime: 40973402, seqnum: 0, connid: 0 98 12:58:01,3359743 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55067 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40973131, endtime: 40973402, seqnum: 0, connid: 0 98 12:58:01,3360410 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55067 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40973134, endtime: 40973402, seqnum: 0, connid: 0 98 12:58:01,3360482 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55067 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40973136, endtime: 40973402, seqnum: 0, connid: 0 98 12:58:01,3360552 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55067 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40973139, endtime: 40973402, seqnum: 0, connid: 0 98 12:58:01,4811123 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55067 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40973141, endtime: 40973417, seqnum: 0, connid: 0 98 12:58:01,7260551 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55083 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40973185, endtime: 40973441, seqnum: 0, connid: 0 98 12:58:01,7260733 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55083 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40973186, endtime: 40973441, seqnum: 0, connid: 0 98 12:58:01,7260817 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55083 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40973189, endtime: 40973441, seqnum: 0, connid: 0 98 12:58:01,7260894 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55083 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40973191, endtime: 40973441, seqnum: 0, connid: 0 98 12:58:01,7260961 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55083 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40973194, endtime: 40973441, seqnum: 0, connid: 0 98 12:58:01,7261035 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55083 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40973195, endtime: 40973441, seqnum: 0, connid: 0 98 12:58:01,7261096 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55083 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40973199, endtime: 40973441, seqnum: 0, connid: 0 98 12:58:01,7261168 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55083 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40973200, endtime: 40973441, seqnum: 0, connid: 0 98 12:58:01,7261232 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55083 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40973201, endtime: 40973441, seqnum: 0, connid: 0 98 12:58:01,7261565 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55083 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40973203, endtime: 40973441, seqnum: 0, connid: 0 98 12:58:01,7261631 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55083 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40973206, endtime: 40973441, seqnum: 0, connid: 0 98 12:58:01,7261700 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55083 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40973208, endtime: 40973441, seqnum: 0, connid: 0 98 12:58:01,7261761 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55083 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40973211, endtime: 40973441, seqnum: 0, connid: 0 98 12:58:01,9053056 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55008 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40973254, endtime: 40973459, seqnum: 0, connid: 0 98 12:58:01,9053253 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55008 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40973255, endtime: 40973459, seqnum: 0, connid: 0 98 12:58:01,9053328 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55008 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40973256, endtime: 40973459, seqnum: 0, connid: 0 98 12:58:01,9053405 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55008 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40973258, endtime: 40973459, seqnum: 0, connid: 0 98 12:58:01,9053461 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55008 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40973259, endtime: 40973459, seqnum: 0, connid: 0 98 12:58:01,9053527 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55008 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40973261, endtime: 40973459, seqnum: 0, connid: 0 98 12:58:01,9053583 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55008 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40973262, endtime: 40973459, seqnum: 0, connid: 0 98 12:58:01,9053649 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55008 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40973264, endtime: 40973459, seqnum: 0, connid: 0 98 12:58:01,9053704 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55008 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40973266, endtime: 40973459, seqnum: 0, connid: 0 98 12:58:01,9054026 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55008 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40973267, endtime: 40973459, seqnum: 0, connid: 0 98 12:58:01,9054084 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55008 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40973269, endtime: 40973459, seqnum: 0, connid: 0 98 12:58:01,9054328 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55008 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40973272, endtime: 40973459, seqnum: 0, connid: 0 98 12:58:01,9054411 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55008 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40973273, endtime: 40973459, seqnum: 0, connid: 0 98 12:58:02,3603267 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55040 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40973289, endtime: 40973505, seqnum: 0, connid: 0 98 12:58:02,3603447 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55040 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40973291, endtime: 40973505, seqnum: 0, connid: 0 98 12:58:02,3603527 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55040 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40973292, endtime: 40973505, seqnum: 0, connid: 0 98 12:58:02,3603610 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55040 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40973294, endtime: 40973505, seqnum: 0, connid: 0 98 12:58:02,3603674 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55040 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40973295, endtime: 40973505, seqnum: 0, connid: 0 98 12:58:02,3603746 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55040 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40973297, endtime: 40973505, seqnum: 0, connid: 0 98 12:58:02,3603804 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55040 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40973298, endtime: 40973505, seqnum: 0, connid: 0 98 12:58:02,3603876 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55040 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40973300, endtime: 40973505, seqnum: 0, connid: 0 98 12:58:02,3603934 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55040 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40973300, endtime: 40973505, seqnum: 0, connid: 0 98 12:58:02,3604699 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55040 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40973304, endtime: 40973505, seqnum: 0, connid: 0 98 12:58:02,3604774 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55040 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40973306, endtime: 40973505, seqnum: 0, connid: 0 98 12:58:02,3604846 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55040 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40973308, endtime: 40973505, seqnum: 0, connid: 0 98 12:58:02,3605766 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55040 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40973309, endtime: 40973505, seqnum: 0, connid: 0 98 12:58:02,6178070 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55067 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40973402, endtime: 40973530, seqnum: 0, connid: 0 98 12:58:02,6178234 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55067 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40973403, endtime: 40973530, seqnum: 0, connid: 0 98 12:58:02,6178320 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55067 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40973405, endtime: 40973530, seqnum: 0, connid: 0 98 12:58:02,6178384 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55067 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40973406, endtime: 40973530, seqnum: 0, connid: 0 98 12:58:02,6178453 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55067 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40973408, endtime: 40973530, seqnum: 0, connid: 0 98 12:58:02,6178508 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55067 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40973409, endtime: 40973530, seqnum: 0, connid: 0 98 12:58:02,6178575 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55067 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40973411, endtime: 40973530, seqnum: 0, connid: 0 98 12:58:02,6178630 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55067 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40973412, endtime: 40973530, seqnum: 0, connid: 0 98 12:58:02,6178697 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55067 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40973414, endtime: 40973530, seqnum: 0, connid: 0 98 12:58:02,6179591 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55067 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40973416, endtime: 40973530, seqnum: 0, connid: 0 98 12:58:02,6179675 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55067 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40973417, endtime: 40973530, seqnum: 0, connid: 0 98 12:58:02,6179730 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55067 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40973419, endtime: 40973530, seqnum: 0, connid: 0 98 12:58:02,6180908 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55067 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40973420, endtime: 40973530, seqnum: 0, connid: 0 98 12:58:02,8571197 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55069 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40972982, endtime: 40973554, seqnum: 0, connid: 0 98 12:58:02,8571347 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55069 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40972983, endtime: 40973554, seqnum: 0, connid: 0 98 12:58:02,8571427 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55069 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40972984, endtime: 40973554, seqnum: 0, connid: 0 98 12:58:02,8571491 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55069 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40972986, endtime: 40973554, seqnum: 0, connid: 0 98 12:58:02,8571558 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55069 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40972987, endtime: 40973554, seqnum: 0, connid: 0 98 12:58:02,8571613 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55069 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40972990, endtime: 40973554, seqnum: 0, connid: 0 98 12:58:02,8571680 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55069 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40972992, endtime: 40973554, seqnum: 0, connid: 0 98 12:58:02,8571732 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55069 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40972994, endtime: 40973554, seqnum: 0, connid: 0 98 12:58:02,8571799 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55069 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40972995, endtime: 40973554, seqnum: 0, connid: 0 98 12:58:02,8572464 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55069 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40972997, endtime: 40973554, seqnum: 0, connid: 0 98 12:58:02,8572547 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55069 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40972998, endtime: 40973554, seqnum: 0, connid: 0 98 12:58:02,8572602 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55069 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40973002, endtime: 40973554, seqnum: 0, connid: 0 98 12:58:02,9375655 MCLauncher.exe 6080 TCP TCPCopy WIN-0UOTFKKVN1S:54920 -> sheltex.company:8000 SUCCESS Length: 2, seqnum: 0, connid: 0 98 12:58:02,9375868 MCLauncher.exe 6080 TCP Receive WIN-0UOTFKKVN1S:54920 -> sheltex.company:8000 SUCCESS Length: 2, seqnum: 0, connid: 0 98 12:58:02,9386033 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54920 -> sheltex.company:8000 SUCCESS Length: 2, startime: 40973562, endtime: 40973562, seqnum: 0, connid: 0 98 12:58:03,1123471 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55008 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40973459, endtime: 40973580, seqnum: 0, connid: 0 98 12:58:03,1123698 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55008 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40973461, endtime: 40973580, seqnum: 0, connid: 0 98 12:58:03,1123803 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55008 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40973462, endtime: 40973580, seqnum: 0, connid: 0 98 12:58:03,1123903 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55008 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40973464, endtime: 40973580, seqnum: 0, connid: 0 98 12:58:03,1123972 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55008 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40973466, endtime: 40973580, seqnum: 0, connid: 0 98 12:58:03,1124042 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55008 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40973467, endtime: 40973580, seqnum: 0, connid: 0 98 12:58:03,1124100 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55008 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40973469, endtime: 40973580, seqnum: 0, connid: 0 98 12:58:03,1124172 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55008 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40973470, endtime: 40973580, seqnum: 0, connid: 0 98 12:58:03,1124227 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55008 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40973472, endtime: 40973580, seqnum: 0, connid: 0 98 12:58:03,1124787 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55008 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40973473, endtime: 40973580, seqnum: 0, connid: 0 98 12:58:03,1124862 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55008 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40973475, endtime: 40973580, seqnum: 0, connid: 0 98 12:58:03,1124928 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55008 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40973479, endtime: 40973580, seqnum: 0, connid: 0 98 12:58:03,1124987 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55008 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40973480, endtime: 40973580, seqnum: 0, connid: 0 98 12:58:03,5189460 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55083 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40973441, endtime: 40973621, seqnum: 0, connid: 0 98 12:58:03,5189945 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55083 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40973442, endtime: 40973621, seqnum: 0, connid: 0 98 12:58:03,5190036 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55083 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40973446, endtime: 40973621, seqnum: 0, connid: 0 98 12:58:03,5190122 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55083 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40973450, endtime: 40973621, seqnum: 0, connid: 0 98 12:58:03,5190194 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55083 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40973452, endtime: 40973621, seqnum: 0, connid: 0 98 12:58:03,5190274 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55083 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40973453, endtime: 40973621, seqnum: 0, connid: 0 98 12:58:03,5190341 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55083 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40973455, endtime: 40973621, seqnum: 0, connid: 0 98 12:58:03,5190421 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55083 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40973456, endtime: 40973621, seqnum: 0, connid: 0 98 12:58:03,5190485 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55083 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40973458, endtime: 40973621, seqnum: 0, connid: 0 98 12:58:03,5190889 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55083 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40973459, endtime: 40973621, seqnum: 0, connid: 0 98 12:58:03,5190956 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55083 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40973461, endtime: 40973621, seqnum: 0, connid: 0 98 12:58:03,5191028 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55083 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40973462, endtime: 40973621, seqnum: 0, connid: 0 98 12:58:03,5191089 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55083 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40973464, endtime: 40973621, seqnum: 0, connid: 0 98 12:58:03,5191216 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55076 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40973308, endtime: 40973621, seqnum: 0, connid: 0 98 12:58:03,5191288 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55076 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40973309, endtime: 40973621, seqnum: 0, connid: 0 98 12:58:03,5191349 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55076 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40973311, endtime: 40973621, seqnum: 0, connid: 0 98 12:58:03,5191418 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55076 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40973312, endtime: 40973621, seqnum: 0, connid: 0 98 12:58:03,5191479 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55076 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40973314, endtime: 40973621, seqnum: 0, connid: 0 98 12:58:03,5192125 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55076 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40973316, endtime: 40973621, seqnum: 0, connid: 0 98 12:58:03,5192205 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55076 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40973317, endtime: 40973621, seqnum: 0, connid: 0 98 12:58:03,5192277 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55076 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40973319, endtime: 40973621, seqnum: 0, connid: 0 98 12:58:03,5192336 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55076 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40973320, endtime: 40973621, seqnum: 0, connid: 0 98 12:58:03,5192405 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55076 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40973322, endtime: 40973621, seqnum: 0, connid: 0 98 12:58:03,5192463 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55076 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40973323, endtime: 40973621, seqnum: 0, connid: 0 98 12:58:03,5192532 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55076 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40973325, endtime: 40973621, seqnum: 0, connid: 0 98 12:58:03,5192590 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55076 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40973326, endtime: 40973621, seqnum: 0, connid: 0 98 12:58:04,1793911 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55008 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40973580, endtime: 40973687, seqnum: 0, connid: 0 98 12:58:04,1794135 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55008 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40973581, endtime: 40973687, seqnum: 0, connid: 0 98 12:58:04,1794221 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55008 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40973583, endtime: 40973687, seqnum: 0, connid: 0 98 12:58:04,1794304 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55008 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40973584, endtime: 40973687, seqnum: 0, connid: 0 98 12:58:04,1794371 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55008 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40973586, endtime: 40973687, seqnum: 0, connid: 0 98 12:58:04,1794445 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55008 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40973587, endtime: 40973687, seqnum: 0, connid: 0 98 12:58:04,1794506 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55008 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40973589, endtime: 40973687, seqnum: 0, connid: 0 98 12:58:04,1794578 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55008 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40973591, endtime: 40973687, seqnum: 0, connid: 0 98 12:58:04,1794639 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55008 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40973592, endtime: 40973687, seqnum: 0, connid: 0 98 12:58:04,1794980 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55008 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40973594, endtime: 40973687, seqnum: 0, connid: 0 98 12:58:04,1795047 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55008 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40973595, endtime: 40973687, seqnum: 0, connid: 0 98 12:58:04,1795116 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55008 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40973597, endtime: 40973687, seqnum: 0, connid: 0 98 12:58:04,1795180 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55008 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40973600, endtime: 40973687, seqnum: 0, connid: 0 98 12:58:04,7693877 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55067 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40973530, endtime: 40973746, seqnum: 0, connid: 0 98 12:58:04,7694091 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55067 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40973531, endtime: 40973746, seqnum: 0, connid: 0 98 12:58:04,7694177 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55067 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40973534, endtime: 40973746, seqnum: 0, connid: 0 98 12:58:04,7694265 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55067 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40973536, endtime: 40973746, seqnum: 0, connid: 0 98 12:58:04,7694332 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55067 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40973537, endtime: 40973746, seqnum: 0, connid: 0 98 12:58:04,7694409 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55067 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40973541, endtime: 40973746, seqnum: 0, connid: 0 98 12:58:04,7694470 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55067 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40973542, endtime: 40973746, seqnum: 0, connid: 0 98 12:58:04,7694545 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55067 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40973545, endtime: 40973746, seqnum: 0, connid: 0 98 12:58:04,7694606 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55067 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40973549, endtime: 40973746, seqnum: 0, connid: 0 98 12:58:04,7695445 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55067 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40973550, endtime: 40973746, seqnum: 0, connid: 0 98 12:58:04,7695531 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55067 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40973553, endtime: 40973746, seqnum: 0, connid: 0 98 12:58:04,7695609 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55067 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40973555, endtime: 40973746, seqnum: 0, connid: 0 98 12:58:05,3695693 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55069 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40973005, endtime: 40973806, seqnum: 0, connid: 0 98 12:58:05,3695881 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55069 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40973554, endtime: 40973806, seqnum: 0, connid: 0 98 12:58:05,3696089 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55069 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40973556, endtime: 40973806, seqnum: 0, connid: 0 98 12:58:05,3696164 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55069 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40973559, endtime: 40973806, seqnum: 0, connid: 0 98 12:58:05,3696244 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55069 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40973561, endtime: 40973806, seqnum: 0, connid: 0 98 12:58:05,3696313 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55069 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40973562, endtime: 40973806, seqnum: 0, connid: 0 98 12:58:05,3696399 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55069 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40973564, endtime: 40973806, seqnum: 0, connid: 0 98 12:58:05,3696496 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55069 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40973566, endtime: 40973806, seqnum: 0, connid: 0 98 12:58:05,3696576 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55069 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40973567, endtime: 40973806, seqnum: 0, connid: 0 98 12:58:05,3696643 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55069 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40973572, endtime: 40973806, seqnum: 0, connid: 0 98 12:58:05,3696964 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55069 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40973573, endtime: 40973806, seqnum: 0, connid: 0 98 12:58:05,3697028 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55069 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40973575, endtime: 40973806, seqnum: 0, connid: 0 98 12:58:05,3697100 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55069 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40973578, endtime: 40973806, seqnum: 0, connid: 0 98 12:58:05,3699787 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55069 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40973806, endtime: 40973806, seqnum: 0, connid: 0 98 12:58:05,5072099 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55076 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40973621, endtime: 40973819, seqnum: 0, connid: 0 98 12:58:05,5072343 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55076 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40973622, endtime: 40973819, seqnum: 0, connid: 0 98 12:58:05,5072459 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55076 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40973623, endtime: 40973819, seqnum: 0, connid: 0 98 12:58:05,5072536 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55076 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40973625, endtime: 40973819, seqnum: 0, connid: 0 98 12:58:05,5072592 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55076 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40973626, endtime: 40973819, seqnum: 0, connid: 0 98 12:58:05,5072664 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55076 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40973628, endtime: 40973819, seqnum: 0, connid: 0 98 12:58:05,5072719 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55076 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40973630, endtime: 40973819, seqnum: 0, connid: 0 98 12:58:05,5072789 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55076 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40973631, endtime: 40973819, seqnum: 0, connid: 0 98 12:58:05,5072844 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55076 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40973633, endtime: 40973819, seqnum: 0, connid: 0 98 12:58:05,5073149 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55076 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40973634, endtime: 40973819, seqnum: 0, connid: 0 98 12:58:05,5073207 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55076 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40973636, endtime: 40973819, seqnum: 0, connid: 0 98 12:58:05,5073273 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55076 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40973637, endtime: 40973819, seqnum: 0, connid: 0 98 12:58:05,5073329 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55076 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40973639, endtime: 40973819, seqnum: 0, connid: 0 98 12:58:06,9240787 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55069 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40973806, endtime: 40973961, seqnum: 0, connid: 0 98 12:58:06,9240975 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55069 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40973808, endtime: 40973961, seqnum: 0, connid: 0 98 12:58:06,9241058 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55069 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40973809, endtime: 40973961, seqnum: 0, connid: 0 98 12:58:06,9241133 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55069 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40973811, endtime: 40973961, seqnum: 0, connid: 0 98 12:58:06,9241194 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55069 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40973812, endtime: 40973961, seqnum: 0, connid: 0 98 12:58:06,9241260 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55069 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40973814, endtime: 40973961, seqnum: 0, connid: 0 98 12:58:06,9241316 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55069 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40973816, endtime: 40973961, seqnum: 0, connid: 0 98 12:58:06,9241385 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55069 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40973818, endtime: 40973961, seqnum: 0, connid: 0 98 12:58:06,9241440 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55069 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40973820, endtime: 40973961, seqnum: 0, connid: 0 98 12:58:06,9242172 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55069 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40973822, endtime: 40973961, seqnum: 0, connid: 0 98 12:58:06,9242244 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55069 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40973824, endtime: 40973961, seqnum: 0, connid: 0 98 12:58:06,9242313 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55069 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40973825, endtime: 40973961, seqnum: 0, connid: 0 98 12:58:07,7872886 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55076 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40973819, endtime: 40974047, seqnum: 0, connid: 0 98 12:58:07,7873152 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55076 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40973820, endtime: 40974047, seqnum: 0, connid: 0 98 12:58:07,7873263 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55076 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40973822, endtime: 40974047, seqnum: 0, connid: 0 98 12:58:07,7873385 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55076 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40973824, endtime: 40974047, seqnum: 0, connid: 0 98 12:58:07,7873479 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55076 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40973825, endtime: 40974047, seqnum: 0, connid: 0 98 12:58:07,7873593 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55076 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40973827, endtime: 40974047, seqnum: 0, connid: 0 98 12:58:07,7873684 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55076 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40973828, endtime: 40974047, seqnum: 0, connid: 0 98 12:58:07,7873800 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55076 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40973830, endtime: 40974047, seqnum: 0, connid: 0 98 12:58:07,7873895 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55076 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40973831, endtime: 40974047, seqnum: 0, connid: 0 98 12:58:07,7874404 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55076 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40973833, endtime: 40974047, seqnum: 0, connid: 0 98 12:58:07,7874501 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55076 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40973836, endtime: 40974047, seqnum: 0, connid: 0 98 12:58:07,7874609 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55076 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40973839, endtime: 40974047, seqnum: 0, connid: 0 98 12:58:07,7874701 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55076 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40973841, endtime: 40974047, seqnum: 0, connid: 0 98 12:58:07,8610343 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55083 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40973621, endtime: 40974055, seqnum: 0, connid: 0 98 12:58:07,8610559 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55083 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40973622, endtime: 40974055, seqnum: 0, connid: 0 98 12:58:07,8610650 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55083 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40973623, endtime: 40974055, seqnum: 0, connid: 0 98 12:58:07,8610736 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55083 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40973625, endtime: 40974055, seqnum: 0, connid: 0 98 12:58:07,8610805 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55083 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40973626, endtime: 40974055, seqnum: 0, connid: 0 98 12:58:07,8610880 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55083 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40973628, endtime: 40974055, seqnum: 0, connid: 0 98 12:58:07,8610947 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55083 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40973630, endtime: 40974055, seqnum: 0, connid: 0 98 12:58:07,8611022 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55083 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40973631, endtime: 40974055, seqnum: 0, connid: 0 98 12:58:07,8611088 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55083 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40973633, endtime: 40974055, seqnum: 0, connid: 0 98 12:58:07,8611401 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55083 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40973634, endtime: 40974055, seqnum: 0, connid: 0 98 12:58:07,8611465 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55083 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40973636, endtime: 40974055, seqnum: 0, connid: 0 98 12:58:07,8611537 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55083 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40973637, endtime: 40974055, seqnum: 0, connid: 0 98 12:58:07,8611598 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55083 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40973639, endtime: 40974055, seqnum: 0, connid: 0 98 12:58:08,2986291 MCLauncher.exe 6080 TCP Disconnect WIN-0UOTFKKVN1S:55006 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 0, seqnum: 0, connid: 0 98 12:58:09,2589436 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55040 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40973505, endtime: 40974195, seqnum: 0, connid: 0 98 12:58:09,2589599 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55040 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40973506, endtime: 40974195, seqnum: 0, connid: 0 98 12:58:09,2589685 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55040 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40973509, endtime: 40974195, seqnum: 0, connid: 0 98 12:58:09,2589749 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55040 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40973513, endtime: 40974195, seqnum: 0, connid: 0 98 12:58:09,2589818 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55040 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40973514, endtime: 40974195, seqnum: 0, connid: 0 98 12:58:09,2589873 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55040 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40973516, endtime: 40974195, seqnum: 0, connid: 0 98 12:58:09,2589937 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55040 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40973519, endtime: 40974195, seqnum: 0, connid: 0 98 12:58:09,2589995 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55040 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40973521, endtime: 40974195, seqnum: 0, connid: 0 98 12:58:09,2590059 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55040 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40973523, endtime: 40974195, seqnum: 0, connid: 0 98 12:58:09,2590693 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55040 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40973526, endtime: 40974195, seqnum: 0, connid: 0 98 12:58:09,2590774 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55040 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40973527, endtime: 40974195, seqnum: 0, connid: 0 98 12:58:09,2590829 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55040 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40973530, endtime: 40974195, seqnum: 0, connid: 0 98 12:58:10,0505783 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55067 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40973556, endtime: 40974274, seqnum: 0, connid: 0 98 12:58:10,0505993 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55067 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40973746, endtime: 40974274, seqnum: 0, connid: 0 98 12:58:10,0506079 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55067 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40973748, endtime: 40974274, seqnum: 0, connid: 0 98 12:58:10,0506160 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55067 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40973750, endtime: 40974274, seqnum: 0, connid: 0 98 12:58:10,0506226 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55067 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40973752, endtime: 40974274, seqnum: 0, connid: 0 98 12:58:10,0506301 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55067 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40973755, endtime: 40974274, seqnum: 0, connid: 0 98 12:58:10,0506362 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55067 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40973757, endtime: 40974274, seqnum: 0, connid: 0 98 12:58:10,0506434 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55067 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40973759, endtime: 40974274, seqnum: 0, connid: 0 98 12:58:10,0506495 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55067 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40973761, endtime: 40974274, seqnum: 0, connid: 0 98 12:58:10,0506778 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55067 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40973764, endtime: 40974274, seqnum: 0, connid: 0 98 12:58:10,0506847 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55067 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40973767, endtime: 40974274, seqnum: 0, connid: 0 98 12:58:10,0506922 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55067 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40973769, endtime: 40974274, seqnum: 0, connid: 0 98 12:58:10,0506983 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55067 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40973772, endtime: 40974274, seqnum: 0, connid: 0 98 12:58:10,7293138 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55069 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40973827, endtime: 40974342, seqnum: 0, connid: 0 98 12:58:10,7293371 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55069 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40973961, endtime: 40974342, seqnum: 0, connid: 0 98 12:58:10,7293457 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55069 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40973962, endtime: 40974342, seqnum: 0, connid: 0 98 12:58:10,7293545 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55069 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40973964, endtime: 40974342, seqnum: 0, connid: 0 98 12:58:10,7293612 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55069 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40973966, endtime: 40974342, seqnum: 0, connid: 0 98 12:58:10,7293689 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55069 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40973967, endtime: 40974342, seqnum: 0, connid: 0 98 12:58:10,7293750 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55069 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40973970, endtime: 40974342, seqnum: 0, connid: 0 98 12:58:10,7293828 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55069 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40973972, endtime: 40974342, seqnum: 0, connid: 0 98 12:58:10,7293892 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55069 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40973973, endtime: 40974342, seqnum: 0, connid: 0 98 12:58:10,7294224 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55069 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40973977, endtime: 40974342, seqnum: 0, connid: 0 98 12:58:10,7294288 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55069 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40973980, endtime: 40974342, seqnum: 0, connid: 0 98 12:58:10,7294360 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55069 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40973981, endtime: 40974342, seqnum: 0, connid: 0 98 12:58:10,7294418 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55069 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40973983, endtime: 40974342, seqnum: 0, connid: 0 98 12:58:10,7963960 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55083 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40974055, endtime: 40974348, seqnum: 0, connid: 0 98 12:58:10,7964137 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55083 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40974056, endtime: 40974348, seqnum: 0, connid: 0 98 12:58:10,7964209 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55083 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40974058, endtime: 40974348, seqnum: 0, connid: 0 98 12:58:10,7964284 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55083 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40974059, endtime: 40974348, seqnum: 0, connid: 0 98 12:58:10,7964342 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55083 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40974061, endtime: 40974348, seqnum: 0, connid: 0 98 12:58:10,7964409 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55083 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40974064, endtime: 40974348, seqnum: 0, connid: 0 98 12:58:10,7964467 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55083 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40974066, endtime: 40974348, seqnum: 0, connid: 0 98 12:58:10,7964533 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55083 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40974067, endtime: 40974348, seqnum: 0, connid: 0 98 12:58:10,7964592 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55083 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40974069, endtime: 40974348, seqnum: 0, connid: 0 98 12:58:10,7964921 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55083 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40974070, endtime: 40974348, seqnum: 0, connid: 0 98 12:58:10,7964982 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55083 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40974072, endtime: 40974348, seqnum: 0, connid: 0 98 12:58:10,7965049 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55083 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40974073, endtime: 40974348, seqnum: 0, connid: 0 98 12:58:10,7965104 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55083 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40974075, endtime: 40974348, seqnum: 0, connid: 0 98 12:58:10,8461508 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55008 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40973687, endtime: 40974353, seqnum: 0, connid: 0 98 12:58:10,8461713 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55008 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40973689, endtime: 40974353, seqnum: 0, connid: 0 98 12:58:10,8461810 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55008 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40973691, endtime: 40974353, seqnum: 0, connid: 0 98 12:58:10,8461877 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55008 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40973693, endtime: 40974353, seqnum: 0, connid: 0 98 12:58:10,8461952 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55008 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40973695, endtime: 40974353, seqnum: 0, connid: 0 98 12:58:10,8462015 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55008 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40973697, endtime: 40974353, seqnum: 0, connid: 0 98 12:58:10,8462090 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55008 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40973698, endtime: 40974353, seqnum: 0, connid: 0 98 12:58:10,8462154 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55008 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40973700, endtime: 40974353, seqnum: 0, connid: 0 98 12:58:10,8462229 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55008 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40973701, endtime: 40974353, seqnum: 0, connid: 0 98 12:58:10,8462497 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55008 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40973701, endtime: 40974353, seqnum: 0, connid: 0 98 12:58:10,8462572 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55008 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40973705, endtime: 40974353, seqnum: 0, connid: 0 98 12:58:10,8462636 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55008 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40973708, endtime: 40974353, seqnum: 0, connid: 0 98 12:58:10,8462708 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55008 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40973711, endtime: 40974353, seqnum: 0, connid: 0 98 12:58:11,2415212 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55076 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40974047, endtime: 40974393, seqnum: 0, connid: 0 98 12:58:11,2415389 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55076 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40974050, endtime: 40974393, seqnum: 0, connid: 0 98 12:58:11,2415461 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55076 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40974052, endtime: 40974393, seqnum: 0, connid: 0 98 12:58:11,2415533 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55076 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40974053, endtime: 40974393, seqnum: 0, connid: 0 98 12:58:11,2415588 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55076 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40974056, endtime: 40974393, seqnum: 0, connid: 0 98 12:58:11,2415652 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55076 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40974058, endtime: 40974393, seqnum: 0, connid: 0 98 12:58:11,2415708 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55076 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40974059, endtime: 40974393, seqnum: 0, connid: 0 98 12:58:11,2415771 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55076 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40974061, endtime: 40974393, seqnum: 0, connid: 0 98 12:58:11,2415824 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55076 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40974064, endtime: 40974393, seqnum: 0, connid: 0 98 12:58:11,2416123 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55076 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40974066, endtime: 40974393, seqnum: 0, connid: 0 98 12:58:11,2416179 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55076 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40974067, endtime: 40974393, seqnum: 0, connid: 0 98 12:58:11,2416245 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55076 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40974069, endtime: 40974393, seqnum: 0, connid: 0 98 12:58:11,2416298 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55076 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40974070, endtime: 40974393, seqnum: 0, connid: 0 98 12:58:12,5148314 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55076 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40974395, endtime: 40974520, seqnum: 0, connid: 0 98 12:58:12,5148486 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55076 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40974398, endtime: 40974520, seqnum: 0, connid: 0 98 12:58:12,5148563 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55076 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40974398, endtime: 40974520, seqnum: 0, connid: 0 98 12:58:12,5148638 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55076 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40974400, endtime: 40974520, seqnum: 0, connid: 0 98 12:58:12,5148699 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55076 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40974401, endtime: 40974520, seqnum: 0, connid: 0 98 12:58:12,5148768 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55076 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40974403, endtime: 40974520, seqnum: 0, connid: 0 98 12:58:12,5148827 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55076 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40974405, endtime: 40974520, seqnum: 0, connid: 0 98 12:58:12,5148893 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55076 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40974406, endtime: 40974520, seqnum: 0, connid: 0 98 12:58:12,5148949 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55076 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40974408, endtime: 40974520, seqnum: 0, connid: 0 98 12:58:12,5149237 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55076 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40974409, endtime: 40974520, seqnum: 0, connid: 0 98 12:58:12,5149298 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55076 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40974411, endtime: 40974520, seqnum: 0, connid: 0 98 12:58:12,5149364 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55076 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40974414, endtime: 40974520, seqnum: 0, connid: 0 98 12:58:12,5149422 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55076 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40974416, endtime: 40974520, seqnum: 0, connid: 0 98 12:58:12,5743702 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55069 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40974342, endtime: 40974526, seqnum: 0, connid: 0 98 12:58:12,5743960 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55069 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40974344, endtime: 40974526, seqnum: 0, connid: 0 98 12:58:12,5744068 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55069 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40974345, endtime: 40974526, seqnum: 0, connid: 0 98 12:58:12,5744179 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55069 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40974347, endtime: 40974526, seqnum: 0, connid: 0 98 12:58:12,5744270 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55069 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40974348, endtime: 40974526, seqnum: 0, connid: 0 98 12:58:12,5744378 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55069 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40974350, endtime: 40974526, seqnum: 0, connid: 0 98 12:58:12,5744467 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55069 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40974352, endtime: 40974526, seqnum: 0, connid: 0 98 12:58:12,5744575 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55069 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40974353, endtime: 40974526, seqnum: 0, connid: 0 98 12:58:12,5744666 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55069 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40974355, endtime: 40974526, seqnum: 0, connid: 0 98 12:58:12,5745087 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55069 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40974356, endtime: 40974526, seqnum: 0, connid: 0 98 12:58:12,5745181 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55069 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40974359, endtime: 40974526, seqnum: 0, connid: 0 98 12:58:12,5745290 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55069 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40974361, endtime: 40974526, seqnum: 0, connid: 0 98 12:58:12,5745381 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55069 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40974364, endtime: 40974526, seqnum: 0, connid: 0 98 12:58:12,7466104 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55069 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40974526, endtime: 40974543, seqnum: 0, connid: 0 98 12:58:12,9769332 MCLauncher.exe 6080 TCP TCPCopy WIN-0UOTFKKVN1S:54920 -> sheltex.company:8000 SUCCESS Length: 2, seqnum: 0, connid: 0 98 12:58:12,9769451 MCLauncher.exe 6080 TCP Receive WIN-0UOTFKKVN1S:54920 -> sheltex.company:8000 SUCCESS Length: 2, seqnum: 0, connid: 0 98 12:58:12,9773180 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54920 -> sheltex.company:8000 SUCCESS Length: 2, startime: 40974566, endtime: 40974566, seqnum: 0, connid: 0 98 12:58:13,6022692 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55008 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40974353, endtime: 40974629, seqnum: 0, connid: 0 98 12:58:13,6022908 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55008 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40974355, endtime: 40974629, seqnum: 0, connid: 0 98 12:58:13,6023013 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55008 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40974356, endtime: 40974629, seqnum: 0, connid: 0 98 12:58:13,6023124 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55008 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40974359, endtime: 40974629, seqnum: 0, connid: 0 98 12:58:13,6023210 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55008 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40974361, endtime: 40974629, seqnum: 0, connid: 0 98 12:58:13,6023315 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55008 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40974364, endtime: 40974629, seqnum: 0, connid: 0 98 12:58:13,6023404 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55008 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40974366, endtime: 40974629, seqnum: 0, connid: 0 98 12:58:13,6023509 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55008 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40974368, endtime: 40974629, seqnum: 0, connid: 0 98 12:58:13,6023595 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55008 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40974370, endtime: 40974629, seqnum: 0, connid: 0 98 12:58:13,6024011 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55008 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40974372, endtime: 40974629, seqnum: 0, connid: 0 98 12:58:13,6024099 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55008 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40974375, endtime: 40974629, seqnum: 0, connid: 0 98 12:58:13,6024202 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55008 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40974376, endtime: 40974629, seqnum: 0, connid: 0 98 12:58:13,6024293 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55008 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40974378, endtime: 40974629, seqnum: 0, connid: 0 98 12:58:13,6567176 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55067 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40974274, endtime: 40974634, seqnum: 0, connid: 0 98 12:58:13,6567379 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55067 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40974275, endtime: 40974634, seqnum: 0, connid: 0 98 12:58:13,6567462 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55067 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40974277, endtime: 40974634, seqnum: 0, connid: 0 98 12:58:13,6567542 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55067 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40974278, endtime: 40974634, seqnum: 0, connid: 0 98 12:58:13,6567606 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55067 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40974280, endtime: 40974634, seqnum: 0, connid: 0 98 12:58:13,6567863 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55067 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40974281, endtime: 40974634, seqnum: 0, connid: 0 98 12:58:13,6567944 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55067 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40974283, endtime: 40974634, seqnum: 0, connid: 0 98 12:58:13,6568021 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55067 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40974284, endtime: 40974634, seqnum: 0, connid: 0 98 12:58:13,6568085 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55067 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40974286, endtime: 40974634, seqnum: 0, connid: 0 98 12:58:13,6568420 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55067 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40974289, endtime: 40974634, seqnum: 0, connid: 0 98 12:58:13,6568487 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55067 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40974292, endtime: 40974634, seqnum: 0, connid: 0 98 12:58:13,6568559 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55067 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40974294, endtime: 40974634, seqnum: 0, connid: 0 98 12:58:13,6568617 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55067 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40974296, endtime: 40974634, seqnum: 0, connid: 0 98 12:58:13,9480047 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55040 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40973531, endtime: 40974663, seqnum: 0, connid: 0 98 12:58:13,9480227 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55040 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40974195, endtime: 40974663, seqnum: 0, connid: 0 98 12:58:13,9480315 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55040 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40974197, endtime: 40974663, seqnum: 0, connid: 0 98 12:58:13,9480379 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55040 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40974200, endtime: 40974663, seqnum: 0, connid: 0 98 12:58:13,9480451 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55040 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40974201, endtime: 40974663, seqnum: 0, connid: 0 98 12:58:13,9480509 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55040 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40974203, endtime: 40974663, seqnum: 0, connid: 0 98 12:58:13,9480579 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55040 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40974205, endtime: 40974663, seqnum: 0, connid: 0 98 12:58:13,9480634 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55040 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40974208, endtime: 40974663, seqnum: 0, connid: 0 98 12:58:13,9480703 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55040 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40974210, endtime: 40974663, seqnum: 0, connid: 0 98 12:58:13,9480759 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55040 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40974213, endtime: 40974663, seqnum: 0, connid: 0 98 12:58:13,9481052 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55040 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40974214, endtime: 40974663, seqnum: 0, connid: 0 98 12:58:13,9481110 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55040 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40974217, endtime: 40974663, seqnum: 0, connid: 0 98 12:58:13,9481180 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55040 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40974219, endtime: 40974663, seqnum: 0, connid: 0 98 12:58:13,9484039 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55040 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40974663, endtime: 40974663, seqnum: 0, connid: 0 98 12:58:13,9587328 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55076 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40974520, endtime: 40974664, seqnum: 0, connid: 0 98 12:58:13,9587494 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55076 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40974523, endtime: 40974664, seqnum: 0, connid: 0 98 12:58:13,9587569 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55076 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40974525, endtime: 40974664, seqnum: 0, connid: 0 98 12:58:13,9587641 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55076 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40974526, endtime: 40974664, seqnum: 0, connid: 0 98 12:58:13,9587699 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55076 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40974528, endtime: 40974664, seqnum: 0, connid: 0 98 12:58:13,9587769 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55076 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40974530, endtime: 40974664, seqnum: 0, connid: 0 98 12:58:13,9587824 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55076 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40974531, endtime: 40974664, seqnum: 0, connid: 0 98 12:58:13,9587891 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55076 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40974533, endtime: 40974664, seqnum: 0, connid: 0 98 12:58:13,9587946 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55076 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40974534, endtime: 40974664, seqnum: 0, connid: 0 98 12:58:13,9588243 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55076 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40974536, endtime: 40974664, seqnum: 0, connid: 0 98 12:58:13,9588301 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55076 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40974537, endtime: 40974664, seqnum: 0, connid: 0 98 12:58:13,9588367 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55076 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40974537, endtime: 40974664, seqnum: 0, connid: 0 98 12:58:13,9588423 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55076 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40974538, endtime: 40974664, seqnum: 0, connid: 0 98 12:58:14,6913532 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55069 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40974528, endtime: 40974738, seqnum: 0, connid: 0 98 12:58:14,6913707 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55069 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40974530, endtime: 40974738, seqnum: 0, connid: 0 98 12:58:14,6913793 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55069 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40974531, endtime: 40974738, seqnum: 0, connid: 0 98 12:58:14,6913854 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55069 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40974533, endtime: 40974738, seqnum: 0, connid: 0 98 12:58:14,6913923 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55069 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40974534, endtime: 40974738, seqnum: 0, connid: 0 98 12:58:14,6913978 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55069 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40974536, endtime: 40974738, seqnum: 0, connid: 0 98 12:58:14,6914048 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55069 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40974537, endtime: 40974738, seqnum: 0, connid: 0 98 12:58:14,6914100 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55069 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40974537, endtime: 40974738, seqnum: 0, connid: 0 98 12:58:14,6914167 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55069 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40974538, endtime: 40974738, seqnum: 0, connid: 0 98 12:58:14,6914937 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55069 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40974538, endtime: 40974738, seqnum: 0, connid: 0 98 12:58:14,6915020 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55069 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40974539, endtime: 40974738, seqnum: 0, connid: 0 98 12:58:14,6915076 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55069 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40974541, endtime: 40974738, seqnum: 0, connid: 0 98 12:58:14,6916494 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55069 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40974543, endtime: 40974738, seqnum: 0, connid: 0 98 12:58:16,2779900 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55076 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40974664, endtime: 40974896, seqnum: 0, connid: 0 98 12:58:16,2780222 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55076 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40974666, endtime: 40974896, seqnum: 0, connid: 0 98 12:58:16,2780349 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55076 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40974669, endtime: 40974896, seqnum: 0, connid: 0 98 12:58:16,2780449 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55076 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40974670, endtime: 40974896, seqnum: 0, connid: 0 98 12:58:16,2780521 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55076 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40974674, endtime: 40974896, seqnum: 0, connid: 0 98 12:58:16,2780599 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55076 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40974675, endtime: 40974896, seqnum: 0, connid: 0 98 12:58:16,2780668 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55076 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40974678, endtime: 40974896, seqnum: 0, connid: 0 98 12:58:16,2780745 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55076 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40974680, endtime: 40974896, seqnum: 0, connid: 0 98 12:58:16,2780812 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55076 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40974684, endtime: 40974896, seqnum: 0, connid: 0 98 12:58:16,2781172 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55076 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40974686, endtime: 40974896, seqnum: 0, connid: 0 98 12:58:16,2781236 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55076 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40974689, endtime: 40974896, seqnum: 0, connid: 0 98 12:58:16,2781308 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55076 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40974690, endtime: 40974896, seqnum: 0, connid: 0 98 12:58:16,2781372 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55076 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40974692, endtime: 40974896, seqnum: 0, connid: 0 98 12:58:16,7007291 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55083 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40974348, endtime: 40974939, seqnum: 0, connid: 0 98 12:58:16,7007463 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55083 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40974350, endtime: 40974939, seqnum: 0, connid: 0 98 12:58:16,7007554 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55083 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40974352, endtime: 40974939, seqnum: 0, connid: 0 98 12:58:16,7007784 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55083 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40974353, endtime: 40974939, seqnum: 0, connid: 0 98 12:58:16,7007920 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55083 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40974355, endtime: 40974939, seqnum: 0, connid: 0 98 12:58:16,7008031 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55083 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40974356, endtime: 40974939, seqnum: 0, connid: 0 98 12:58:16,7008117 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55083 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40974359, endtime: 40974939, seqnum: 0, connid: 0 98 12:58:16,7008180 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55083 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40974361, endtime: 40974939, seqnum: 0, connid: 0 98 12:58:16,7008258 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55083 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40974364, endtime: 40974939, seqnum: 0, connid: 0 98 12:58:16,7008588 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55083 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40974366, endtime: 40974939, seqnum: 0, connid: 0 98 12:58:16,7008665 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55083 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40974368, endtime: 40974939, seqnum: 0, connid: 0 98 12:58:16,7008726 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55083 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40974370, endtime: 40974939, seqnum: 0, connid: 0 98 12:58:16,7008798 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55083 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40974372, endtime: 40974939, seqnum: 0, connid: 0 98 12:58:16,7899675 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55040 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40974664, endtime: 40974948, seqnum: 0, connid: 0 98 12:58:16,7899938 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55040 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40974666, endtime: 40974948, seqnum: 0, connid: 0 98 12:58:16,7900054 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55040 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40974669, endtime: 40974948, seqnum: 0, connid: 0 98 12:58:16,7900184 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55040 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40974670, endtime: 40974948, seqnum: 0, connid: 0 98 12:58:16,7900287 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55040 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40974674, endtime: 40974948, seqnum: 0, connid: 0 98 12:58:16,7900406 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55040 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40974675, endtime: 40974948, seqnum: 0, connid: 0 98 12:58:16,7900503 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55040 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40974678, endtime: 40974948, seqnum: 0, connid: 0 98 12:58:16,7900622 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55040 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40974680, endtime: 40974948, seqnum: 0, connid: 0 98 12:58:16,7900722 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55040 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40974684, endtime: 40974948, seqnum: 0, connid: 0 98 12:58:16,7902052 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55040 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40974686, endtime: 40974948, seqnum: 0, connid: 0 98 12:58:16,7902185 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55040 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40974689, endtime: 40974948, seqnum: 0, connid: 0 98 12:58:16,7902307 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55040 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40974690, endtime: 40974948, seqnum: 0, connid: 0 98 12:58:16,7903066 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55040 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40974692, endtime: 40974948, seqnum: 0, connid: 0 98 12:58:16,9819357 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55008 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40974629, endtime: 40974967, seqnum: 0, connid: 0 98 12:58:16,9819551 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55008 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40974631, endtime: 40974967, seqnum: 0, connid: 0 98 12:58:16,9819629 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55008 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40974633, endtime: 40974967, seqnum: 0, connid: 0 98 12:58:16,9819709 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55008 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40974636, endtime: 40974967, seqnum: 0, connid: 0 98 12:58:16,9819767 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55008 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40974637, endtime: 40974967, seqnum: 0, connid: 0 98 12:58:16,9819839 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55008 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40974639, endtime: 40974967, seqnum: 0, connid: 0 98 12:58:16,9819895 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55008 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40974641, endtime: 40974967, seqnum: 0, connid: 0 98 12:58:16,9819964 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55008 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40974642, endtime: 40974967, seqnum: 0, connid: 0 98 12:58:16,9820022 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55008 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40974645, endtime: 40974967, seqnum: 0, connid: 0 98 12:58:16,9820313 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55008 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40974647, endtime: 40974967, seqnum: 0, connid: 0 98 12:58:16,9820374 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55008 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40974648, endtime: 40974967, seqnum: 0, connid: 0 98 12:58:16,9820443 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55008 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40974650, endtime: 40974967, seqnum: 0, connid: 0 98 12:58:16,9820501 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55008 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40974652, endtime: 40974967, seqnum: 0, connid: 0 98 12:58:18,3259249 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55067 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40974634, endtime: 40975101, seqnum: 0, connid: 0 98 12:58:18,3259424 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55067 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40974636, endtime: 40975101, seqnum: 0, connid: 0 98 12:58:18,3259496 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55067 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40974637, endtime: 40975101, seqnum: 0, connid: 0 98 12:58:18,3259570 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55067 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40974639, endtime: 40975101, seqnum: 0, connid: 0 98 12:58:18,3259631 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55067 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40974641, endtime: 40975101, seqnum: 0, connid: 0 98 12:58:18,3259698 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55067 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40974642, endtime: 40975101, seqnum: 0, connid: 0 98 12:58:18,3259756 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55067 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40974645, endtime: 40975101, seqnum: 0, connid: 0 98 12:58:18,3259825 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55067 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40974647, endtime: 40975101, seqnum: 0, connid: 0 98 12:58:18,3259883 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55067 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40974648, endtime: 40975101, seqnum: 0, connid: 0 98 12:58:18,3260177 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55067 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40974650, endtime: 40975101, seqnum: 0, connid: 0 98 12:58:18,3260235 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55067 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40974652, endtime: 40975101, seqnum: 0, connid: 0 98 12:58:18,3260302 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55067 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40974653, endtime: 40975101, seqnum: 0, connid: 0 98 12:58:18,3260357 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55067 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40974655, endtime: 40975101, seqnum: 0, connid: 0 98 12:58:18,7386545 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55040 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40974948, endtime: 40975142, seqnum: 0, connid: 0 98 12:58:18,7386863 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55040 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40974948, endtime: 40975142, seqnum: 0, connid: 0 98 12:58:18,7386993 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55040 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40974950, endtime: 40975142, seqnum: 0, connid: 0 98 12:58:18,7387115 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55040 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40974954, endtime: 40975142, seqnum: 0, connid: 0 98 12:58:18,7387223 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55040 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40974955, endtime: 40975142, seqnum: 0, connid: 0 98 12:58:18,7387345 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55040 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40974956, endtime: 40975142, seqnum: 0, connid: 0 98 12:58:18,7387434 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55040 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40974958, endtime: 40975142, seqnum: 0, connid: 0 98 12:58:18,7387542 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55040 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40974959, endtime: 40975142, seqnum: 0, connid: 0 98 12:58:18,7387631 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55040 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40974961, endtime: 40975142, seqnum: 0, connid: 0 98 12:58:18,7388656 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55040 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40974962, endtime: 40975142, seqnum: 0, connid: 0 98 12:58:18,7388731 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55040 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40974964, endtime: 40975142, seqnum: 0, connid: 0 98 12:58:18,7388800 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55040 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40974966, endtime: 40975142, seqnum: 0, connid: 0 98 12:58:18,7419758 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55040 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40974967, endtime: 40975143, seqnum: 0, connid: 0 98 12:58:19,5014263 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55040 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40975142, endtime: 40975219, seqnum: 0, connid: 0 98 12:58:19,5014471 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55040 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40975144, endtime: 40975219, seqnum: 0, connid: 0 98 12:58:19,5014551 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55040 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40975145, endtime: 40975219, seqnum: 0, connid: 0 98 12:58:19,5014635 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55040 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40975147, endtime: 40975219, seqnum: 0, connid: 0 98 12:58:19,5014695 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55040 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40975148, endtime: 40975219, seqnum: 0, connid: 0 98 12:58:19,5014768 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55040 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40975150, endtime: 40975219, seqnum: 0, connid: 0 98 12:58:19,5014826 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55040 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40975152, endtime: 40975219, seqnum: 0, connid: 0 98 12:58:19,5014895 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55040 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40975153, endtime: 40975219, seqnum: 0, connid: 0 98 12:58:19,5014953 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55040 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40975155, endtime: 40975219, seqnum: 0, connid: 0 98 12:58:19,5015250 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55040 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40975156, endtime: 40975219, seqnum: 0, connid: 0 98 12:58:19,5015311 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55040 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40975158, endtime: 40975219, seqnum: 0, connid: 0 98 12:58:19,5015383 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55040 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40975161, endtime: 40975219, seqnum: 0, connid: 0 98 12:58:19,5015438 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55040 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40975164, endtime: 40975219, seqnum: 0, connid: 0 98 12:58:19,6809179 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55076 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40974896, endtime: 40975237, seqnum: 0, connid: 0 98 12:58:19,6809370 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55076 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40974898, endtime: 40975237, seqnum: 0, connid: 0 98 12:58:19,6809448 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55076 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40974900, endtime: 40975237, seqnum: 0, connid: 0 98 12:58:19,6809523 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55076 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40974900, endtime: 40975237, seqnum: 0, connid: 0 98 12:58:19,6809581 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55076 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40974901, endtime: 40975237, seqnum: 0, connid: 0 98 12:58:19,6809647 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55076 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40974903, endtime: 40975237, seqnum: 0, connid: 0 98 12:58:19,6809703 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55076 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40974905, endtime: 40975237, seqnum: 0, connid: 0 98 12:58:19,6809769 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55076 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40974908, endtime: 40975237, seqnum: 0, connid: 0 98 12:58:19,6809825 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55076 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40974911, endtime: 40975237, seqnum: 0, connid: 0 98 12:58:19,6810118 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55076 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40974912, endtime: 40975237, seqnum: 0, connid: 0 98 12:58:19,6810177 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55076 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40974914, endtime: 40975237, seqnum: 0, connid: 0 98 12:58:19,6810243 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55076 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40974916, endtime: 40975237, seqnum: 0, connid: 0 98 12:58:19,6810299 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55076 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40974917, endtime: 40975237, seqnum: 0, connid: 0 98 12:58:19,7609101 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55076 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40975237, endtime: 40975245, seqnum: 0, connid: 0 98 12:58:20,2749588 MCLauncher.exe 6080 TCP Disconnect WIN-0UOTFKKVN1S:55067 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 0, seqnum: 0, connid: 0 98 12:58:20,4252553 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55083 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40974939, endtime: 40975311, seqnum: 0, connid: 0 98 12:58:20,4252755 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55083 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40974941, endtime: 40975311, seqnum: 0, connid: 0 98 12:58:20,4252838 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55083 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40974942, endtime: 40975311, seqnum: 0, connid: 0 98 12:58:20,4252922 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55083 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40974944, endtime: 40975311, seqnum: 0, connid: 0 98 12:58:20,4252985 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55083 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40974945, endtime: 40975311, seqnum: 0, connid: 0 98 12:58:20,4253057 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55083 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40974947, endtime: 40975311, seqnum: 0, connid: 0 98 12:58:20,4253121 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55083 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40974948, endtime: 40975311, seqnum: 0, connid: 0 98 12:58:20,4253193 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55083 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40974950, endtime: 40975311, seqnum: 0, connid: 0 98 12:58:20,4253254 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55083 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40974954, endtime: 40975311, seqnum: 0, connid: 0 98 12:58:20,4253559 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55083 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40974955, endtime: 40975311, seqnum: 0, connid: 0 98 12:58:20,4253625 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55083 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40974956, endtime: 40975311, seqnum: 0, connid: 0 98 12:58:20,4253697 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55083 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40974958, endtime: 40975311, seqnum: 0, connid: 0 98 12:58:20,4253756 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55083 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40974959, endtime: 40975311, seqnum: 0, connid: 0 98 12:58:20,7722015 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55040 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40975219, endtime: 40975346, seqnum: 0, connid: 0 98 12:58:20,7722206 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55040 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40975220, endtime: 40975346, seqnum: 0, connid: 0 98 12:58:20,7722284 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55040 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40975222, endtime: 40975346, seqnum: 0, connid: 0 98 12:58:20,7722361 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55040 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40975224, endtime: 40975346, seqnum: 0, connid: 0 98 12:58:20,7722425 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55040 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40975227, endtime: 40975346, seqnum: 0, connid: 0 98 12:58:20,7722494 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55040 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40975228, endtime: 40975346, seqnum: 0, connid: 0 98 12:58:20,7722550 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55040 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40975230, endtime: 40975346, seqnum: 0, connid: 0 98 12:58:20,7722619 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55040 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40975231, endtime: 40975346, seqnum: 0, connid: 0 98 12:58:20,7722677 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55040 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40975233, endtime: 40975346, seqnum: 0, connid: 0 98 12:58:20,7722996 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55040 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40975234, endtime: 40975346, seqnum: 0, connid: 0 98 12:58:20,7723057 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55040 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40975236, endtime: 40975346, seqnum: 0, connid: 0 98 12:58:20,7723123 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55040 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40975237, endtime: 40975346, seqnum: 0, connid: 0 98 12:58:20,7723182 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55040 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40975239, endtime: 40975346, seqnum: 0, connid: 0 98 12:58:20,7837631 MCLauncher.exe 6080 TCP Disconnect WIN-0UOTFKKVN1S:55076 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 0, seqnum: 0, connid: 0 98 12:58:20,8887726 MCLauncher.exe 6080 TCP Connect WIN-0UOTFKKVN1S:55100 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 0, mss: 1460, sackopt: 0, tsopt: 0, wsopt: 0, rcvwin: 64240, rcvwinscale: 0, sndwinscale: 0, seqnum: 0, connid: 0 98 12:58:20,8891801 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55100 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40975357, endtime: 40975358, seqnum: 0, connid: 0 98 12:58:20,9070843 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55100 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40975359, endtime: 40975359, seqnum: 0, connid: 0 98 12:58:20,9237359 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55100 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40975361, endtime: 40975361, seqnum: 0, connid: 0 98 12:58:20,9562482 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55100 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40975364, endtime: 40975364, seqnum: 0, connid: 0 98 12:58:20,9707690 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55100 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40975366, endtime: 40975366, seqnum: 0, connid: 0 98 12:58:20,9912767 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55100 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40975368, endtime: 40975368, seqnum: 0, connid: 0 98 12:58:21,0003804 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55100 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40975369, endtime: 40975369, seqnum: 0, connid: 0 98 12:58:21,0169462 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55100 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40975370, endtime: 40975370, seqnum: 0, connid: 0 98 12:58:21,0333911 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55100 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40975372, endtime: 40975372, seqnum: 0, connid: 0 98 12:58:21,0516738 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55100 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40975374, endtime: 40975374, seqnum: 0, connid: 0 98 12:58:21,0654130 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55100 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40975375, endtime: 40975375, seqnum: 0, connid: 0 98 12:58:21,0793650 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55100 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40975376, endtime: 40975377, seqnum: 0, connid: 0 98 12:58:21,0955633 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55100 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40975378, endtime: 40975378, seqnum: 0, connid: 0 98 12:58:21,1260963 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55100 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40975381, endtime: 40975381, seqnum: 0, connid: 0 98 12:58:21,1451386 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55100 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40975383, endtime: 40975383, seqnum: 0, connid: 0 98 12:58:21,1765258 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55100 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40975386, endtime: 40975386, seqnum: 0, connid: 0 98 12:58:21,1884272 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55100 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40975387, endtime: 40975387, seqnum: 0, connid: 0 98 12:58:21,2068180 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55100 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40975389, endtime: 40975389, seqnum: 0, connid: 0 98 12:58:21,2372459 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55100 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40975392, endtime: 40975392, seqnum: 0, connid: 0 98 12:58:21,2514650 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55100 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40975394, endtime: 40975394, seqnum: 0, connid: 0 98 12:58:21,2675600 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55100 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40975395, endtime: 40975395, seqnum: 0, connid: 0 98 12:58:21,2839038 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55100 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40975397, endtime: 40975397, seqnum: 0, connid: 0 98 12:58:21,2998697 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55100 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40975398, endtime: 40975399, seqnum: 0, connid: 0 98 12:58:21,3140134 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55100 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40975400, endtime: 40975400, seqnum: 0, connid: 0 98 12:58:21,3192830 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55100 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40975401, endtime: 40975401, seqnum: 0, connid: 0 98 12:58:21,8737811 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55069 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40974738, endtime: 40975456, seqnum: 0, connid: 0 98 12:58:21,8737985 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55069 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40974739, endtime: 40975456, seqnum: 0, connid: 0 98 12:58:21,8738057 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55069 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40974741, endtime: 40975456, seqnum: 0, connid: 0 98 12:58:21,8738135 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55069 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40974742, endtime: 40975456, seqnum: 0, connid: 0 98 12:58:21,8738196 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55069 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40974745, endtime: 40975456, seqnum: 0, connid: 0 98 12:58:21,8738268 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55069 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40974746, endtime: 40975456, seqnum: 0, connid: 0 98 12:58:21,8738326 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55069 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40974747, endtime: 40975456, seqnum: 0, connid: 0 98 12:58:21,8738398 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55069 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40974747, endtime: 40975456, seqnum: 0, connid: 0 98 12:58:21,8738453 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55069 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40974748, endtime: 40975456, seqnum: 0, connid: 0 98 12:58:21,8739271 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55069 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40974750, endtime: 40975456, seqnum: 0, connid: 0 98 12:58:21,8739346 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55069 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40974752, endtime: 40975456, seqnum: 0, connid: 0 98 12:58:21,8739418 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55069 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40974753, endtime: 40975456, seqnum: 0, connid: 0 98 12:58:21,8740357 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55069 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40974755, endtime: 40975456, seqnum: 0, connid: 0 98 12:58:22,1343988 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55100 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40975403, endtime: 40975482, seqnum: 0, connid: 0 98 12:58:22,1344174 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55100 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40975406, endtime: 40975482, seqnum: 0, connid: 0 98 12:58:22,1344254 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55100 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40975410, endtime: 40975482, seqnum: 0, connid: 0 98 12:58:22,1344332 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55100 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40975411, endtime: 40975482, seqnum: 0, connid: 0 98 12:58:22,1344393 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55100 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40975414, endtime: 40975482, seqnum: 0, connid: 0 98 12:58:22,1344468 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55100 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40975416, endtime: 40975482, seqnum: 0, connid: 0 98 12:58:22,1344529 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55100 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40975417, endtime: 40975482, seqnum: 0, connid: 0 98 12:58:22,1344601 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55100 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40975419, endtime: 40975482, seqnum: 0, connid: 0 98 12:58:22,1344659 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55100 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40975420, endtime: 40975482, seqnum: 0, connid: 0 98 12:58:22,1344947 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55100 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40975424, endtime: 40975482, seqnum: 0, connid: 0 98 12:58:22,1345011 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55100 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40975427, endtime: 40975482, seqnum: 0, connid: 0 98 12:58:22,1345080 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55100 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40975430, endtime: 40975482, seqnum: 0, connid: 0 98 12:58:22,1345141 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55100 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40975433, endtime: 40975482, seqnum: 0, connid: 0 98 12:58:23,1549007 MCLauncher.exe 6080 TCP TCPCopy WIN-0UOTFKKVN1S:54920 -> sheltex.company:8000 SUCCESS Length: 2, seqnum: 0, connid: 0 98 12:58:23,1549129 MCLauncher.exe 6080 TCP Receive WIN-0UOTFKKVN1S:54920 -> sheltex.company:8000 SUCCESS Length: 2, seqnum: 0, connid: 0 98 12:58:23,1553830 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54920 -> sheltex.company:8000 SUCCESS Length: 2, startime: 40975584, endtime: 40975584, seqnum: 0, connid: 0 98 12:58:23,2317813 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55083 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40975311, endtime: 40975592, seqnum: 0, connid: 0 98 12:58:23,2318018 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55083 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40975312, endtime: 40975592, seqnum: 0, connid: 0 98 12:58:23,2318098 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55083 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40975314, endtime: 40975592, seqnum: 0, connid: 0 98 12:58:23,2318178 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55083 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40975316, endtime: 40975592, seqnum: 0, connid: 0 98 12:58:23,2318239 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55083 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40975317, endtime: 40975592, seqnum: 0, connid: 0 98 12:58:23,2318311 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55083 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40975319, endtime: 40975592, seqnum: 0, connid: 0 98 12:58:23,2318369 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55083 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40975320, endtime: 40975592, seqnum: 0, connid: 0 98 12:58:23,2318558 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55083 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40975322, endtime: 40975592, seqnum: 0, connid: 0 98 12:58:23,2318638 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55083 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40975323, endtime: 40975592, seqnum: 0, connid: 0 98 12:58:23,2318976 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55083 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40975325, endtime: 40975592, seqnum: 0, connid: 0 98 12:58:23,2319040 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55083 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40975328, endtime: 40975592, seqnum: 0, connid: 0 98 12:58:23,2319109 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55083 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40975330, endtime: 40975592, seqnum: 0, connid: 0 98 12:58:23,2319170 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55083 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40975331, endtime: 40975592, seqnum: 0, connid: 0 98 12:58:23,2817566 MCLauncher.exe 6080 TCP Reconnect WIN-0UOTFKKVN1S:55099 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 0, seqnum: 0, connid: 0 98 12:58:23,3609498 MCLauncher.exe 6080 TCP Connect WIN-0UOTFKKVN1S:55099 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 0, mss: 1460, sackopt: 0, tsopt: 0, wsopt: 0, rcvwin: 64240, rcvwinscale: 0, sndwinscale: 0, seqnum: 0, connid: 0 98 12:58:23,3620106 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55099 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40975605, endtime: 40975605, seqnum: 0, connid: 0 98 12:58:23,3759166 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55099 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40975606, endtime: 40975606, seqnum: 0, connid: 0 98 12:58:23,3926342 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55099 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40975608, endtime: 40975608, seqnum: 0, connid: 0 98 12:58:23,4229618 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55099 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40975611, endtime: 40975611, seqnum: 0, connid: 0 98 12:58:23,4382562 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55099 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40975612, endtime: 40975612, seqnum: 0, connid: 0 98 12:58:23,4543046 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55099 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40975614, endtime: 40975614, seqnum: 0, connid: 0 98 12:58:23,4694729 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55099 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40975616, endtime: 40975616, seqnum: 0, connid: 0 98 12:58:23,4870557 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55099 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40975617, endtime: 40975617, seqnum: 0, connid: 0 98 12:58:23,5037187 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55099 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40975619, endtime: 40975619, seqnum: 0, connid: 0 98 12:58:23,5166253 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55099 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40975620, endtime: 40975620, seqnum: 0, connid: 0 98 12:58:23,5330922 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55099 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40975622, endtime: 40975622, seqnum: 0, connid: 0 98 12:58:23,5639886 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55099 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40975625, endtime: 40975625, seqnum: 0, connid: 0 98 12:58:23,5790358 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55099 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40975626, endtime: 40975627, seqnum: 0, connid: 0 98 12:58:23,5948989 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55099 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40975628, endtime: 40975628, seqnum: 0, connid: 0 98 12:58:23,6104753 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55099 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40975630, endtime: 40975630, seqnum: 0, connid: 0 98 12:58:23,6405927 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55099 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40975631, endtime: 40975633, seqnum: 0, connid: 0 98 12:58:23,6571426 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55099 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40975634, endtime: 40975634, seqnum: 0, connid: 0 98 12:58:23,6762977 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55099 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40975636, endtime: 40975636, seqnum: 0, connid: 0 98 12:58:23,7216887 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55099 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40975639, endtime: 40975641, seqnum: 0, connid: 0 98 12:58:23,7252067 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55099 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40975641, endtime: 40975641, seqnum: 0, connid: 0 98 12:58:23,7325523 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55099 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40975642, endtime: 40975642, seqnum: 0, connid: 0 98 12:58:23,7379701 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55099 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40975642, endtime: 40975642, seqnum: 0, connid: 0 98 12:58:23,7521573 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55008 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40974967, endtime: 40975644, seqnum: 0, connid: 0 98 12:58:23,7521745 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55008 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40974969, endtime: 40975644, seqnum: 0, connid: 0 98 12:58:23,7521839 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55008 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40974970, endtime: 40975644, seqnum: 0, connid: 0 98 12:58:23,7521909 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55008 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40974974, endtime: 40975644, seqnum: 0, connid: 0 98 12:58:23,7521986 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55008 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40974975, endtime: 40975644, seqnum: 0, connid: 0 98 12:58:23,7522047 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55008 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40974977, endtime: 40975644, seqnum: 0, connid: 0 98 12:58:23,7522119 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55008 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40974978, endtime: 40975644, seqnum: 0, connid: 0 98 12:58:23,7522180 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55008 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40974980, endtime: 40975644, seqnum: 0, connid: 0 98 12:58:23,7522255 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55008 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40974981, endtime: 40975644, seqnum: 0, connid: 0 98 12:58:23,7522538 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55008 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40974983, endtime: 40975644, seqnum: 0, connid: 0 98 12:58:23,7522615 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55008 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40974985, endtime: 40975644, seqnum: 0, connid: 0 98 12:58:23,7522676 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55008 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40974987, endtime: 40975644, seqnum: 0, connid: 0 98 12:58:23,7522745 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55008 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40974987, endtime: 40975644, seqnum: 0, connid: 0 98 12:58:23,7788836 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55099 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40975645, endtime: 40975646, seqnum: 0, connid: 0 98 12:58:23,7981988 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55099 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40975648, endtime: 40975648, seqnum: 0, connid: 0 98 12:58:23,8149377 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55099 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40975650, endtime: 40975650, seqnum: 0, connid: 0 98 12:58:23,8317378 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55099 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40975652, endtime: 40975652, seqnum: 0, connid: 0 98 12:58:23,8607641 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55099 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40975655, endtime: 40975655, seqnum: 0, connid: 0 98 12:58:23,9117909 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55099 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40975656, endtime: 40975660, seqnum: 0, connid: 0 98 12:58:23,9118092 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55099 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40975658, endtime: 40975660, seqnum: 0, connid: 0 98 12:58:23,9118175 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55099 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40975659, endtime: 40975660, seqnum: 0, connid: 0 98 12:58:23,9242255 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55099 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40975661, endtime: 40975661, seqnum: 0, connid: 0 98 12:58:23,9387554 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55099 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40975662, endtime: 40975662, seqnum: 0, connid: 0 98 12:58:23,9549981 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55099 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40975664, endtime: 40975664, seqnum: 0, connid: 0 98 12:58:23,9713452 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55099 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40975666, endtime: 40975666, seqnum: 0, connid: 0 98 12:58:24,0046008 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55099 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40975669, endtime: 40975669, seqnum: 0, connid: 0 98 12:58:24,0506293 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55099 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40975674, endtime: 40975674, seqnum: 0, connid: 0 98 12:58:24,0669390 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55099 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40975675, endtime: 40975675, seqnum: 0, connid: 0 98 12:58:24,0790106 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55099 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40975676, endtime: 40975677, seqnum: 0, connid: 0 98 12:58:24,0955974 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55099 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40975678, endtime: 40975678, seqnum: 0, connid: 0 98 12:58:24,1010194 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55099 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40975679, endtime: 40975679, seqnum: 0, connid: 0 98 12:58:24,5174194 MCLauncher.exe 6080 TCP Disconnect WIN-0UOTFKKVN1S:55008 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 0, seqnum: 0, connid: 0 98 12:58:24,6400286 MCLauncher.exe 6080 TCP Connect WIN-0UOTFKKVN1S:55101 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 0, mss: 1460, sackopt: 0, tsopt: 0, wsopt: 0, rcvwin: 64240, rcvwinscale: 0, sndwinscale: 0, seqnum: 0, connid: 0 98 12:58:24,6405356 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55101 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40975733, endtime: 40975733, seqnum: 0, connid: 0 98 12:58:24,6569138 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55101 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40975734, endtime: 40975734, seqnum: 0, connid: 0 98 12:58:24,6844038 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55101 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40975736, endtime: 40975737, seqnum: 0, connid: 0 98 12:58:24,7140901 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55101 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40975740, endtime: 40975740, seqnum: 0, connid: 0 98 12:58:24,7376003 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55101 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40975742, endtime: 40975742, seqnum: 0, connid: 0 98 12:58:24,7539945 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55101 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40975744, endtime: 40975744, seqnum: 0, connid: 0 98 12:58:24,7868309 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55101 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40975747, endtime: 40975747, seqnum: 0, connid: 0 98 12:58:24,7926458 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55101 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40975748, endtime: 40975748, seqnum: 0, connid: 0 98 12:58:24,7984545 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55101 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40975748, endtime: 40975748, seqnum: 0, connid: 0 98 12:58:24,8042145 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55101 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40975749, endtime: 40975749, seqnum: 0, connid: 0 98 12:58:24,8303140 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55101 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40975752, endtime: 40975752, seqnum: 0, connid: 0 98 12:58:24,8447268 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55101 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40975753, endtime: 40975753, seqnum: 0, connid: 0 98 12:58:24,8613928 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55101 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40975755, endtime: 40975755, seqnum: 0, connid: 0 98 12:58:24,8760316 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55101 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40975756, endtime: 40975756, seqnum: 0, connid: 0 98 12:58:24,8928384 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55101 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40975758, endtime: 40975758, seqnum: 0, connid: 0 98 12:58:24,9071486 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55101 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40975759, endtime: 40975759, seqnum: 0, connid: 0 98 12:58:24,9250187 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55101 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40975761, endtime: 40975761, seqnum: 0, connid: 0 98 12:58:24,9563427 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55101 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40975764, endtime: 40975764, seqnum: 0, connid: 0 98 12:58:24,9704999 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55101 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40975765, endtime: 40975766, seqnum: 0, connid: 0 98 12:58:24,9963969 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55101 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40975767, endtime: 40975768, seqnum: 0, connid: 0 98 12:58:25,0167525 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55101 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40975770, endtime: 40975770, seqnum: 0, connid: 0 98 12:58:25,0336601 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55101 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40975772, endtime: 40975772, seqnum: 0, connid: 0 98 12:58:25,0496546 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55101 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40975773, endtime: 40975774, seqnum: 0, connid: 0 98 12:58:25,0815022 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55101 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40975776, endtime: 40975777, seqnum: 0, connid: 0 98 12:58:25,0953796 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55101 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40975778, endtime: 40975778, seqnum: 0, connid: 0 98 12:58:25,1111854 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55101 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40975780, endtime: 40975780, seqnum: 0, connid: 0 98 12:58:25,1455118 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55101 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40975783, endtime: 40975783, seqnum: 0, connid: 0 98 12:58:25,1744888 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55101 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40975786, endtime: 40975786, seqnum: 0, connid: 0 98 12:58:25,4485072 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55083 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40975592, endtime: 40975813, seqnum: 0, connid: 0 98 12:58:25,4485244 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55083 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40975594, endtime: 40975813, seqnum: 0, connid: 0 98 12:58:25,4485319 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55083 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40975595, endtime: 40975813, seqnum: 0, connid: 0 98 12:58:25,4485394 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55083 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40975597, endtime: 40975813, seqnum: 0, connid: 0 98 12:58:25,4485449 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55083 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40975598, endtime: 40975813, seqnum: 0, connid: 0 98 12:58:25,4485516 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55083 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40975600, endtime: 40975813, seqnum: 0, connid: 0 98 12:58:25,4485568 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55083 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40975601, endtime: 40975813, seqnum: 0, connid: 0 98 12:58:25,4485635 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55083 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40975603, endtime: 40975813, seqnum: 0, connid: 0 98 12:58:25,4485687 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55083 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40975605, endtime: 40975813, seqnum: 0, connid: 0 98 12:58:25,4485984 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55083 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40975606, endtime: 40975813, seqnum: 0, connid: 0 98 12:58:25,4486039 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55083 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40975608, endtime: 40975813, seqnum: 0, connid: 0 98 12:58:25,4486103 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55083 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40975611, endtime: 40975813, seqnum: 0, connid: 0 98 12:58:25,4486158 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55083 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40975612, endtime: 40975813, seqnum: 0, connid: 0 98 12:58:25,9140185 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55101 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40975787, endtime: 40975860, seqnum: 0, connid: 0 98 12:58:25,9140345 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55101 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40975789, endtime: 40975860, seqnum: 0, connid: 0 98 12:58:25,9140431 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55101 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40975791, endtime: 40975860, seqnum: 0, connid: 0 98 12:58:25,9140514 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55101 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40975794, endtime: 40975860, seqnum: 0, connid: 0 98 12:58:25,9140581 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55101 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40975796, endtime: 40975860, seqnum: 0, connid: 0 98 12:58:25,9140656 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55101 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40975800, endtime: 40975860, seqnum: 0, connid: 0 98 12:58:25,9140717 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55101 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40975801, endtime: 40975860, seqnum: 0, connid: 0 98 12:58:25,9143263 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55101 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40975802, endtime: 40975860, seqnum: 0, connid: 0 98 12:58:25,9143346 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55101 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40975803, endtime: 40975860, seqnum: 0, connid: 0 98 12:58:25,9143418 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55101 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40975805, endtime: 40975860, seqnum: 0, connid: 0 98 12:58:25,9143476 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55101 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40975806, endtime: 40975860, seqnum: 0, connid: 0 98 12:58:25,9143545 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55101 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40975811, endtime: 40975860, seqnum: 0, connid: 0 98 12:58:26,4707856 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55069 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40975456, endtime: 40975916, seqnum: 0, connid: 0 98 12:58:26,4708019 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55069 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40975458, endtime: 40975916, seqnum: 0, connid: 0 98 12:58:26,4708091 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55069 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40975459, endtime: 40975916, seqnum: 0, connid: 0 98 12:58:26,4708163 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55069 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40975463, endtime: 40975916, seqnum: 0, connid: 0 98 12:58:26,4708219 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55069 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40975465, endtime: 40975916, seqnum: 0, connid: 0 98 12:58:26,4708285 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55069 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40975467, endtime: 40975916, seqnum: 0, connid: 0 98 12:58:26,4708338 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55069 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40975469, endtime: 40975916, seqnum: 0, connid: 0 98 12:58:26,4708404 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55069 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40975471, endtime: 40975916, seqnum: 0, connid: 0 98 12:58:26,4708457 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55069 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40975473, endtime: 40975916, seqnum: 0, connid: 0 98 12:58:26,4709335 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55069 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40975477, endtime: 40975916, seqnum: 0, connid: 0 98 12:58:26,4709405 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55069 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40975478, endtime: 40975916, seqnum: 0, connid: 0 98 12:58:26,4709468 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55069 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40975481, endtime: 40975916, seqnum: 0, connid: 0 98 12:58:26,4716583 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55069 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40975483, endtime: 40975916, seqnum: 0, connid: 0 98 12:58:27,3496958 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55083 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40975813, endtime: 40976004, seqnum: 0, connid: 0 98 12:58:27,3497138 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55083 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40975816, endtime: 40976004, seqnum: 0, connid: 0 98 12:58:27,3497218 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55083 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40975817, endtime: 40976004, seqnum: 0, connid: 0 98 12:58:27,3497296 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55083 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40975820, endtime: 40976004, seqnum: 0, connid: 0 98 12:58:27,3497359 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55083 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40975822, endtime: 40976004, seqnum: 0, connid: 0 98 12:58:27,3497429 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55083 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40975825, endtime: 40976004, seqnum: 0, connid: 0 98 12:58:27,3497489 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55083 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40975828, endtime: 40976004, seqnum: 0, connid: 0 98 12:58:27,3497562 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55083 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40975830, endtime: 40976004, seqnum: 0, connid: 0 98 12:58:27,3497620 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55083 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40975833, endtime: 40976004, seqnum: 0, connid: 0 98 12:58:27,3497930 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55083 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40975834, endtime: 40976004, seqnum: 0, connid: 0 98 12:58:27,3497994 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55083 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40975836, endtime: 40976004, seqnum: 0, connid: 0 98 12:58:27,3498066 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55083 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40975838, endtime: 40976004, seqnum: 0, connid: 0 98 12:58:27,3498124 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55083 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40975840, endtime: 40976004, seqnum: 0, connid: 0 98 12:58:28,3643074 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55040 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40975346, endtime: 40976105, seqnum: 0, connid: 0 98 12:58:28,3643287 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55040 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40975347, endtime: 40976105, seqnum: 0, connid: 0 98 12:58:28,3643426 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55040 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40975348, endtime: 40976105, seqnum: 0, connid: 0 98 12:58:28,3643534 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55040 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40975350, endtime: 40976105, seqnum: 0, connid: 0 98 12:58:28,3643614 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55040 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40975351, endtime: 40976105, seqnum: 0, connid: 0 98 12:58:28,3643678 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55040 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40975353, endtime: 40976105, seqnum: 0, connid: 0 98 12:58:28,3643747 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55040 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40975355, endtime: 40976105, seqnum: 0, connid: 0 98 12:58:28,3643806 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55040 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40975358, endtime: 40976105, seqnum: 0, connid: 0 98 12:58:28,3643878 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55040 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40975359, endtime: 40976105, seqnum: 0, connid: 0 98 12:58:28,3644180 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55040 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40975361, endtime: 40976105, seqnum: 0, connid: 0 98 12:58:28,3644252 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55040 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40975364, endtime: 40976105, seqnum: 0, connid: 0 98 12:58:28,3644307 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55040 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40975366, endtime: 40976105, seqnum: 0, connid: 0 98 12:58:28,3644376 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55040 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40975368, endtime: 40976105, seqnum: 0, connid: 0 98 12:58:28,4197452 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55069 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40975916, endtime: 40976111, seqnum: 0, connid: 0 98 12:58:28,4197652 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55069 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40975917, endtime: 40976111, seqnum: 0, connid: 0 98 12:58:28,4197726 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55069 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40975919, endtime: 40976111, seqnum: 0, connid: 0 98 12:58:28,4197804 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55069 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40975920, endtime: 40976111, seqnum: 0, connid: 0 98 12:58:28,4198015 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55069 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40975923, endtime: 40976111, seqnum: 0, connid: 0 98 12:58:28,4198139 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55069 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40975926, endtime: 40976111, seqnum: 0, connid: 0 98 12:58:28,4198239 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55069 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40975928, endtime: 40976111, seqnum: 0, connid: 0 98 12:58:28,4198325 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55069 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40975930, endtime: 40976111, seqnum: 0, connid: 0 98 12:58:28,4198389 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55069 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40975932, endtime: 40976111, seqnum: 0, connid: 0 98 12:58:28,4199214 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55069 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40975933, endtime: 40976111, seqnum: 0, connid: 0 98 12:58:28,4199289 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55069 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40975934, endtime: 40976111, seqnum: 0, connid: 0 98 12:58:28,4199358 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55069 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40975936, endtime: 40976111, seqnum: 0, connid: 0 98 12:58:28,4201650 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55069 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40975938, endtime: 40976111, seqnum: 0, connid: 0 98 12:58:29,1423268 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55099 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40975679, endtime: 40976183, seqnum: 0, connid: 0 98 12:58:29,1423376 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55099 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40975680, endtime: 40976183, seqnum: 0, connid: 0 98 12:58:29,1423451 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55099 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40975680, endtime: 40976183, seqnum: 0, connid: 0 98 12:58:29,1423509 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55099 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40975683, endtime: 40976183, seqnum: 0, connid: 0 98 12:58:29,1423578 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55099 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40975684, endtime: 40976183, seqnum: 0, connid: 0 98 12:58:29,1423631 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55099 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40975686, endtime: 40976183, seqnum: 0, connid: 0 98 12:58:29,1423694 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55099 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40975687, endtime: 40976183, seqnum: 0, connid: 0 98 12:58:29,1423750 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55099 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40975691, endtime: 40976183, seqnum: 0, connid: 0 98 12:58:29,1423816 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55099 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40975694, endtime: 40976183, seqnum: 0, connid: 0 98 12:58:29,1424556 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55099 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40975696, endtime: 40976183, seqnum: 0, connid: 0 98 12:58:29,1424634 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55099 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40975698, endtime: 40976183, seqnum: 0, connid: 0 98 12:58:29,1424689 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55099 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40975700, endtime: 40976183, seqnum: 0, connid: 0 98 12:58:29,1425756 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55099 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40975701, endtime: 40976183, seqnum: 0, connid: 0 98 12:58:30,7082825 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55083 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40976004, endtime: 40976339, seqnum: 0, connid: 0 98 12:58:30,7082960 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55083 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40976005, endtime: 40976339, seqnum: 0, connid: 0 98 12:58:30,7083035 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55083 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40976006, endtime: 40976339, seqnum: 0, connid: 0 98 12:58:30,7083110 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55083 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40976008, endtime: 40976339, seqnum: 0, connid: 0 98 12:58:30,7083168 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55083 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40976011, endtime: 40976339, seqnum: 0, connid: 0 98 12:58:30,7083238 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55083 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40976014, endtime: 40976339, seqnum: 0, connid: 0 98 12:58:30,7083293 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55083 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40976016, endtime: 40976339, seqnum: 0, connid: 0 98 12:58:30,7083362 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55083 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40976019, endtime: 40976339, seqnum: 0, connid: 0 98 12:58:30,7083418 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55083 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40976020, endtime: 40976339, seqnum: 0, connid: 0 98 12:58:30,7083722 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55083 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40976023, endtime: 40976339, seqnum: 0, connid: 0 98 12:58:30,7083781 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55083 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40976025, endtime: 40976339, seqnum: 0, connid: 0 98 12:58:30,7083847 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55083 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40976027, endtime: 40976339, seqnum: 0, connid: 0 98 12:58:30,7083902 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55083 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40976028, endtime: 40976339, seqnum: 0, connid: 0 98 12:58:31,0848446 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55040 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40976105, endtime: 40976377, seqnum: 0, connid: 0 98 12:58:31,0848626 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55040 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40976108, endtime: 40976377, seqnum: 0, connid: 0 98 12:58:31,0848703 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55040 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40976109, endtime: 40976377, seqnum: 0, connid: 0 98 12:58:31,0848778 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55040 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40976111, endtime: 40976377, seqnum: 0, connid: 0 98 12:58:31,0848836 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55040 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40976114, endtime: 40976377, seqnum: 0, connid: 0 98 12:58:31,0848908 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55040 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40976115, endtime: 40976377, seqnum: 0, connid: 0 98 12:58:31,0848964 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55040 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40976117, endtime: 40976377, seqnum: 0, connid: 0 98 12:58:31,0849030 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55040 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40976119, endtime: 40976377, seqnum: 0, connid: 0 98 12:58:31,0849086 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55040 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40976122, endtime: 40976377, seqnum: 0, connid: 0 98 12:58:31,0849366 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55040 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40976123, endtime: 40976377, seqnum: 0, connid: 0 98 12:58:31,0849424 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55040 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40976126, endtime: 40976377, seqnum: 0, connid: 0 98 12:58:31,0849493 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55040 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40976128, endtime: 40976377, seqnum: 0, connid: 0 98 12:58:31,0856253 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55040 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40976130, endtime: 40976377, seqnum: 0, connid: 0 98 12:58:31,7267302 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55069 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40976111, endtime: 40976441, seqnum: 0, connid: 0 98 12:58:31,7267480 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55069 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40976112, endtime: 40976441, seqnum: 0, connid: 0 98 12:58:31,7267563 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55069 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40976114, endtime: 40976441, seqnum: 0, connid: 0 98 12:58:31,7267640 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55069 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40976115, endtime: 40976441, seqnum: 0, connid: 0 98 12:58:31,7267704 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55069 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40976117, endtime: 40976441, seqnum: 0, connid: 0 98 12:58:31,7267776 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55069 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40976119, endtime: 40976441, seqnum: 0, connid: 0 98 12:58:31,7267834 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55069 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40976122, endtime: 40976441, seqnum: 0, connid: 0 98 12:58:31,7267904 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55069 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40976123, endtime: 40976441, seqnum: 0, connid: 0 98 12:58:31,7267965 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55069 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40976126, endtime: 40976441, seqnum: 0, connid: 0 98 12:58:31,7268261 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55069 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40976128, endtime: 40976441, seqnum: 0, connid: 0 98 12:58:31,7268325 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55069 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40976130, endtime: 40976441, seqnum: 0, connid: 0 98 12:58:31,7268397 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55069 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40976131, endtime: 40976441, seqnum: 0, connid: 0 98 12:58:31,7268455 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55069 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40976134, endtime: 40976441, seqnum: 0, connid: 0 98 12:58:32,4909711 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55083 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40976339, endtime: 40976518, seqnum: 0, connid: 0 98 12:58:32,4909880 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55083 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40976341, endtime: 40976518, seqnum: 0, connid: 0 98 12:58:32,4909954 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55083 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40976344, endtime: 40976518, seqnum: 0, connid: 0 98 12:58:32,4910029 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55083 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40976347, endtime: 40976518, seqnum: 0, connid: 0 98 12:58:32,4910087 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55083 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40976349, endtime: 40976518, seqnum: 0, connid: 0 98 12:58:32,4910157 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55083 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40976350, endtime: 40976518, seqnum: 0, connid: 0 98 12:58:32,4910215 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55083 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40976354, endtime: 40976518, seqnum: 0, connid: 0 98 12:58:32,4910284 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55083 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40976356, endtime: 40976518, seqnum: 0, connid: 0 98 12:58:32,4910340 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55083 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40976358, endtime: 40976518, seqnum: 0, connid: 0 98 12:58:32,4910639 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55083 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40976361, endtime: 40976518, seqnum: 0, connid: 0 98 12:58:32,4910697 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55083 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40976362, endtime: 40976518, seqnum: 0, connid: 0 98 12:58:32,4910763 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55083 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40976364, endtime: 40976518, seqnum: 0, connid: 0 98 12:58:32,4910822 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55083 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40976366, endtime: 40976518, seqnum: 0, connid: 0 98 12:58:32,5635215 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55099 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40976183, endtime: 40976525, seqnum: 0, connid: 0 98 12:58:32,5635404 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55099 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40976184, endtime: 40976525, seqnum: 0, connid: 0 98 12:58:32,5635484 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55099 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40976186, endtime: 40976525, seqnum: 0, connid: 0 98 12:58:32,5635564 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55099 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40976187, endtime: 40976525, seqnum: 0, connid: 0 98 12:58:32,5635628 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55099 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40976191, endtime: 40976525, seqnum: 0, connid: 0 98 12:58:32,5635700 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55099 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40976194, endtime: 40976525, seqnum: 0, connid: 0 98 12:58:32,5635758 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55099 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40976195, endtime: 40976525, seqnum: 0, connid: 0 98 12:58:32,5635830 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55099 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40976197, endtime: 40976525, seqnum: 0, connid: 0 98 12:58:32,5635888 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55099 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40976198, endtime: 40976525, seqnum: 0, connid: 0 98 12:58:32,5636769 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55099 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40976200, endtime: 40976525, seqnum: 0, connid: 0 98 12:58:32,5636891 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55099 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40976200, endtime: 40976525, seqnum: 0, connid: 0 98 12:58:32,5637010 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55099 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40976204, endtime: 40976525, seqnum: 0, connid: 0 98 12:58:32,5637185 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55083 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40976518, endtime: 40976525, seqnum: 0, connid: 0 98 12:58:32,5646527 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55099 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40976207, endtime: 40976525, seqnum: 0, connid: 0 98 12:58:32,9556148 MCLauncher.exe 6080 Thread Exit SUCCESS Thread ID: 7688, User Time: 0.0000000, Kernel Time: 0.0000000 98 12:58:32,9558243 MCLauncher.exe 6080 Thread Exit SUCCESS Thread ID: 11876, User Time: 0.0000000, Kernel Time: 0.0000000 98 12:58:33,4345569 MCLauncher.exe 6080 TCP TCPCopy WIN-0UOTFKKVN1S:54920 -> sheltex.company:8000 SUCCESS Length: 2, seqnum: 0, connid: 0 98 12:58:33,4345677 MCLauncher.exe 6080 TCP Receive WIN-0UOTFKKVN1S:54920 -> sheltex.company:8000 SUCCESS Length: 2, seqnum: 0, connid: 0 98 12:58:33,4356408 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54920 -> sheltex.company:8000 SUCCESS Length: 2, startime: 40976612, endtime: 40976612, seqnum: 0, connid: 0 98 12:58:33,7057053 MCLauncher.exe 6080 Thread Exit SUCCESS Thread ID: 8664, User Time: 0.0000000, Kernel Time: 0.0000000 98 12:58:34,0102960 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55069 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40976441, endtime: 40976670, seqnum: 0, connid: 0 98 12:58:34,0103129 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55069 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40976442, endtime: 40976670, seqnum: 0, connid: 0 98 12:58:34,0103201 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55069 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40976444, endtime: 40976670, seqnum: 0, connid: 0 98 12:58:34,0103276 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55069 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40976445, endtime: 40976670, seqnum: 0, connid: 0 98 12:58:34,0103334 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55069 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40976450, endtime: 40976670, seqnum: 0, connid: 0 98 12:58:34,0103403 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55069 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40976452, endtime: 40976670, seqnum: 0, connid: 0 98 12:58:34,0103456 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55069 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40976453, endtime: 40976670, seqnum: 0, connid: 0 98 12:58:34,0103522 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55069 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40976455, endtime: 40976670, seqnum: 0, connid: 0 98 12:58:34,0103575 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55069 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40976458, endtime: 40976670, seqnum: 0, connid: 0 98 12:58:34,0103869 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55069 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40976460, endtime: 40976670, seqnum: 0, connid: 0 98 12:58:34,0103927 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55069 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40976463, endtime: 40976670, seqnum: 0, connid: 0 98 12:58:34,0103993 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55069 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40976464, endtime: 40976670, seqnum: 0, connid: 0 98 12:58:34,0104049 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55069 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40976466, endtime: 40976670, seqnum: 0, connid: 0 98 12:58:34,0813830 MCLauncher.exe 6080 TCP Disconnect WIN-0UOTFKKVN1S:55083 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 0, seqnum: 0, connid: 0 98 12:58:34,1717313 MCLauncher.exe 6080 TCP Connect WIN-0UOTFKKVN1S:55128 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 0, mss: 1460, sackopt: 0, tsopt: 0, wsopt: 0, rcvwin: 64240, rcvwinscale: 0, sndwinscale: 0, seqnum: 0, connid: 0 98 12:58:34,1721699 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55128 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40976686, endtime: 40976686, seqnum: 0, connid: 0 98 12:58:34,1988113 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55128 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40976688, endtime: 40976688, seqnum: 0, connid: 0 98 12:58:34,2191719 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55128 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40976690, endtime: 40976691, seqnum: 0, connid: 0 98 12:58:34,2353761 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55128 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40976692, endtime: 40976692, seqnum: 0, connid: 0 98 12:58:34,2509225 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55128 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40976694, endtime: 40976694, seqnum: 0, connid: 0 98 12:58:34,2668446 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55128 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40976695, endtime: 40976695, seqnum: 0, connid: 0 98 12:58:34,2832580 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55128 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40976697, endtime: 40976697, seqnum: 0, connid: 0 98 12:58:34,3002967 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55128 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40976698, endtime: 40976699, seqnum: 0, connid: 0 98 12:58:34,3290745 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55128 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40976701, endtime: 40976702, seqnum: 0, connid: 0 98 12:58:34,3343687 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55128 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40976702, endtime: 40976702, seqnum: 0, connid: 0 98 12:58:34,3400201 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55128 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40976703, endtime: 40976703, seqnum: 0, connid: 0 98 12:58:34,3598850 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55128 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40976705, endtime: 40976705, seqnum: 0, connid: 0 98 12:58:34,3768589 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55128 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40976706, endtime: 40976706, seqnum: 0, connid: 0 98 12:58:34,4094922 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55128 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40976709, endtime: 40976710, seqnum: 0, connid: 0 98 12:58:34,4548842 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55128 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40976714, endtime: 40976714, seqnum: 0, connid: 0 98 12:58:34,4802426 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55128 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40976716, endtime: 40976717, seqnum: 0, connid: 0 98 12:58:34,4854759 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55128 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40976717, endtime: 40976717, seqnum: 0, connid: 0 98 12:58:34,5177557 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55128 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40976720, endtime: 40976720, seqnum: 0, connid: 0 98 12:58:34,5350659 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55128 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40976722, endtime: 40976722, seqnum: 0, connid: 0 98 12:58:34,5507803 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55101 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40975812, endtime: 40976724, seqnum: 0, connid: 0 98 12:58:34,5507994 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55101 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40975860, endtime: 40976724, seqnum: 0, connid: 0 98 12:58:34,5508069 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55101 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40975862, endtime: 40976724, seqnum: 0, connid: 0 98 12:58:34,5508141 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55101 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40975864, endtime: 40976724, seqnum: 0, connid: 0 98 12:58:34,5508199 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55101 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40975866, endtime: 40976724, seqnum: 0, connid: 0 98 12:58:34,5508265 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55101 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40975867, endtime: 40976724, seqnum: 0, connid: 0 98 12:58:34,5508318 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55101 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40975869, endtime: 40976724, seqnum: 0, connid: 0 98 12:58:34,5508384 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55101 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40975870, endtime: 40976724, seqnum: 0, connid: 0 98 12:58:34,5508437 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55101 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40975872, endtime: 40976724, seqnum: 0, connid: 0 98 12:58:34,5508722 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55101 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40975873, endtime: 40976724, seqnum: 0, connid: 0 98 12:58:34,5508783 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55101 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40975878, endtime: 40976724, seqnum: 0, connid: 0 98 12:58:34,5509775 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55101 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40975881, endtime: 40976724, seqnum: 0, connid: 0 98 12:58:34,5509842 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55101 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40975884, endtime: 40976724, seqnum: 0, connid: 0 98 12:58:34,5517297 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55128 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40976724, endtime: 40976724, seqnum: 0, connid: 0 98 12:58:34,5690324 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55128 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40976725, endtime: 40976726, seqnum: 0, connid: 0 98 12:58:34,5792364 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55128 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40976726, endtime: 40976727, seqnum: 0, connid: 0 98 12:58:34,5953134 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55128 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40976728, endtime: 40976728, seqnum: 0, connid: 0 98 12:58:34,6105787 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55128 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40976730, endtime: 40976730, seqnum: 0, connid: 0 98 12:58:34,6276146 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55128 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40976731, endtime: 40976731, seqnum: 0, connid: 0 98 12:58:34,6369045 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55040 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40976377, endtime: 40976732, seqnum: 0, connid: 0 98 12:58:34,6369220 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55040 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40976379, endtime: 40976732, seqnum: 0, connid: 0 98 12:58:34,6369300 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55040 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40976381, endtime: 40976732, seqnum: 0, connid: 0 98 12:58:34,6369375 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55040 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40976384, endtime: 40976732, seqnum: 0, connid: 0 98 12:58:34,6369433 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55040 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40976388, endtime: 40976732, seqnum: 0, connid: 0 98 12:58:34,6369502 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55040 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40976391, endtime: 40976732, seqnum: 0, connid: 0 98 12:58:34,6369561 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55040 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40976394, endtime: 40976732, seqnum: 0, connid: 0 98 12:58:34,6369630 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55040 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40976395, endtime: 40976732, seqnum: 0, connid: 0 98 12:58:34,6369685 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55040 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40976397, endtime: 40976732, seqnum: 0, connid: 0 98 12:58:34,6369971 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55040 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40976398, endtime: 40976732, seqnum: 0, connid: 0 98 12:58:34,6370034 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55040 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40976400, endtime: 40976732, seqnum: 0, connid: 0 98 12:58:34,6370101 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55040 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40976401, endtime: 40976732, seqnum: 0, connid: 0 98 12:58:34,6370159 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55040 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40976401, endtime: 40976732, seqnum: 0, connid: 0 98 12:58:34,6429953 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55128 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40976733, endtime: 40976733, seqnum: 0, connid: 0 98 12:58:34,6759401 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55128 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40976736, endtime: 40976736, seqnum: 0, connid: 0 98 12:58:34,7070684 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55128 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40976739, endtime: 40976739, seqnum: 0, connid: 0 98 12:58:34,7197905 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55128 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40976741, endtime: 40976741, seqnum: 0, connid: 0 98 12:58:34,7358587 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55128 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40976742, endtime: 40976742, seqnum: 0, connid: 0 98 12:58:34,7522078 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55128 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40976744, endtime: 40976744, seqnum: 0, connid: 0 98 12:58:34,7669726 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55128 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40976745, endtime: 40976745, seqnum: 0, connid: 0 98 12:58:34,7872800 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55128 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40976747, endtime: 40976747, seqnum: 0, connid: 0 98 12:58:34,7978685 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55128 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40976748, endtime: 40976748, seqnum: 0, connid: 0 98 12:58:34,8147612 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55128 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40976750, endtime: 40976750, seqnum: 0, connid: 0 98 12:58:34,8451656 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55128 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40976753, endtime: 40976753, seqnum: 0, connid: 0 98 12:58:34,8615482 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55128 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40976755, endtime: 40976755, seqnum: 0, connid: 0 98 12:58:34,8773171 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55128 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40976756, endtime: 40976756, seqnum: 0, connid: 0 98 12:58:35,3604544 MCLauncher.exe 6080 TCP Reconnect WIN-0UOTFKKVN1S:55127 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 0, seqnum: 0, connid: 0 98 12:58:35,8224401 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55099 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40976525, endtime: 40976851, seqnum: 0, connid: 0 98 12:58:35,8224573 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55099 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40976526, endtime: 40976851, seqnum: 0, connid: 0 98 12:58:35,8224647 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55099 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40976528, endtime: 40976851, seqnum: 0, connid: 0 98 12:58:35,8224722 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55099 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40976530, endtime: 40976851, seqnum: 0, connid: 0 98 12:58:35,8224778 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55099 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40976531, endtime: 40976851, seqnum: 0, connid: 0 98 12:58:35,8224847 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55099 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40976533, endtime: 40976851, seqnum: 0, connid: 0 98 12:58:35,8224902 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55099 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40976536, endtime: 40976851, seqnum: 0, connid: 0 98 12:58:35,8224969 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55099 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40976537, endtime: 40976851, seqnum: 0, connid: 0 98 12:58:35,8225027 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55099 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40976539, endtime: 40976851, seqnum: 0, connid: 0 98 12:58:35,8225323 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55099 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40976542, endtime: 40976851, seqnum: 0, connid: 0 98 12:58:35,8225384 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55099 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40976544, endtime: 40976851, seqnum: 0, connid: 0 98 12:58:35,8225451 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55099 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40976545, endtime: 40976851, seqnum: 0, connid: 0 98 12:58:35,8225506 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55099 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40976547, endtime: 40976851, seqnum: 0, connid: 0 98 12:58:37,2055485 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55128 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40976759, endtime: 40976989, seqnum: 0, connid: 0 98 12:58:37,2055748 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55069 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40976670, endtime: 40976989, seqnum: 0, connid: 0 98 12:58:37,2055845 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55069 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40976672, endtime: 40976989, seqnum: 0, connid: 0 98 12:58:37,2055917 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55069 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40976675, endtime: 40976989, seqnum: 0, connid: 0 98 12:58:37,2055989 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55069 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40976677, endtime: 40976989, seqnum: 0, connid: 0 98 12:58:37,2056047 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55069 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40976678, endtime: 40976989, seqnum: 0, connid: 0 98 12:58:37,2056119 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55069 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40976680, endtime: 40976989, seqnum: 0, connid: 0 98 12:58:37,2056177 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55069 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40976683, endtime: 40976989, seqnum: 0, connid: 0 98 12:58:37,2056247 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55069 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40976688, endtime: 40976989, seqnum: 0, connid: 0 98 12:58:37,2056527 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55069 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40976690, endtime: 40976989, seqnum: 0, connid: 0 98 12:58:37,2056599 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55069 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40976692, endtime: 40976989, seqnum: 0, connid: 0 98 12:58:37,2056657 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55069 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40976694, endtime: 40976989, seqnum: 0, connid: 0 98 12:58:37,2056723 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55069 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40976695, endtime: 40976989, seqnum: 0, connid: 0 98 12:58:37,2056781 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55069 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40976697, endtime: 40976989, seqnum: 0, connid: 0 98 12:58:37,7630986 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55099 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40976851, endtime: 40977045, seqnum: 0, connid: 0 98 12:58:37,7631174 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55099 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40976851, endtime: 40977045, seqnum: 0, connid: 0 98 12:58:37,7631254 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55099 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40976853, endtime: 40977045, seqnum: 0, connid: 0 98 12:58:37,7631335 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55099 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40976855, endtime: 40977045, seqnum: 0, connid: 0 98 12:58:37,7631398 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55099 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40976856, endtime: 40977045, seqnum: 0, connid: 0 98 12:58:37,7631470 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55099 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40976858, endtime: 40977045, seqnum: 0, connid: 0 98 12:58:37,7631531 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55099 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40976859, endtime: 40977045, seqnum: 0, connid: 0 98 12:58:37,7631603 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55099 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40976861, endtime: 40977045, seqnum: 0, connid: 0 98 12:58:37,7631664 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55099 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40976862, endtime: 40977045, seqnum: 0, connid: 0 98 12:58:37,7631966 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55099 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40976864, endtime: 40977045, seqnum: 0, connid: 0 98 12:58:37,7632027 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55099 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40976866, endtime: 40977045, seqnum: 0, connid: 0 98 12:58:37,7632099 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55099 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40976867, endtime: 40977045, seqnum: 0, connid: 0 98 12:58:37,7632160 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55099 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40976869, endtime: 40977045, seqnum: 0, connid: 0 98 12:58:39,6964106 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55040 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40976732, endtime: 40977238, seqnum: 0, connid: 0 98 12:58:39,6964270 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55040 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40976736, endtime: 40977238, seqnum: 0, connid: 0 98 12:58:39,6964356 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55040 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40976739, endtime: 40977238, seqnum: 0, connid: 0 98 12:58:39,6964414 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55040 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40976741, endtime: 40977238, seqnum: 0, connid: 0 98 12:58:39,6964483 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55040 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40976742, endtime: 40977238, seqnum: 0, connid: 0 98 12:58:39,6964536 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55040 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40976744, endtime: 40977238, seqnum: 0, connid: 0 98 12:58:39,6964602 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55040 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40976745, endtime: 40977238, seqnum: 0, connid: 0 98 12:58:39,6965505 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55040 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40976747, endtime: 40977238, seqnum: 0, connid: 0 98 12:58:39,6966262 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55040 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40976748, endtime: 40977238, seqnum: 0, connid: 0 98 12:58:39,6966334 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55040 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40976750, endtime: 40977238, seqnum: 0, connid: 0 98 12:58:39,6966397 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55040 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40976753, endtime: 40977238, seqnum: 0, connid: 0 98 12:58:39,6966453 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55040 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40976755, endtime: 40977238, seqnum: 0, connid: 0 98 12:58:39,6966517 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55040 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40976756, endtime: 40977238, seqnum: 0, connid: 0 98 12:58:39,9095953 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55069 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40976989, endtime: 40977260, seqnum: 0, connid: 0 98 12:58:39,9096180 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55069 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40976991, endtime: 40977260, seqnum: 0, connid: 0 98 12:58:39,9096293 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55069 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40976992, endtime: 40977260, seqnum: 0, connid: 0 98 12:58:39,9096407 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55069 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40976994, endtime: 40977260, seqnum: 0, connid: 0 98 12:58:39,9096501 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55069 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40976998, endtime: 40977260, seqnum: 0, connid: 0 98 12:58:39,9096609 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55069 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40977000, endtime: 40977260, seqnum: 0, connid: 0 98 12:58:39,9096698 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55069 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40977001, endtime: 40977260, seqnum: 0, connid: 0 98 12:58:39,9096803 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55069 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40977001, endtime: 40977260, seqnum: 0, connid: 0 98 12:58:39,9096895 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55069 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40977002, endtime: 40977260, seqnum: 0, connid: 0 98 12:58:39,9097252 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55069 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40977003, endtime: 40977260, seqnum: 0, connid: 0 98 12:58:39,9097346 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55069 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40977005, endtime: 40977260, seqnum: 0, connid: 0 98 12:58:39,9097449 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55069 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40977006, endtime: 40977260, seqnum: 0, connid: 0 98 12:58:39,9097543 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55069 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40977010, endtime: 40977260, seqnum: 0, connid: 0 98 12:58:40,0370206 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55099 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40977045, endtime: 40977272, seqnum: 0, connid: 0 98 12:58:40,0370375 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55099 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40977047, endtime: 40977272, seqnum: 0, connid: 0 98 12:58:40,0370447 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55099 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40977048, endtime: 40977272, seqnum: 0, connid: 0 98 12:58:40,0370521 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55099 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40977050, endtime: 40977272, seqnum: 0, connid: 0 98 12:58:40,0370580 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55099 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40977051, endtime: 40977272, seqnum: 0, connid: 0 98 12:58:40,0370646 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55099 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40977053, endtime: 40977272, seqnum: 0, connid: 0 98 12:58:40,0370704 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55099 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40977055, endtime: 40977272, seqnum: 0, connid: 0 98 12:58:40,0370771 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55099 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40977056, endtime: 40977272, seqnum: 0, connid: 0 98 12:58:40,0370823 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55099 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40977060, endtime: 40977272, seqnum: 0, connid: 0 98 12:58:40,0371111 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55099 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40977063, endtime: 40977272, seqnum: 0, connid: 0 98 12:58:40,0371170 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55099 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40977066, endtime: 40977272, seqnum: 0, connid: 0 98 12:58:40,0371236 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55099 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40977067, endtime: 40977272, seqnum: 0, connid: 0 98 12:58:40,0371292 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55099 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40977070, endtime: 40977272, seqnum: 0, connid: 0 98 12:58:40,2041876 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55100 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40975482, endtime: 40977289, seqnum: 0, connid: 0 98 12:58:40,2042036 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55100 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40975483, endtime: 40977289, seqnum: 0, connid: 0 98 12:58:40,2042122 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55100 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40975486, endtime: 40977289, seqnum: 0, connid: 0 98 12:58:40,2042186 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55100 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40975487, endtime: 40977289, seqnum: 0, connid: 0 98 12:58:40,2042258 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55100 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40975489, endtime: 40977289, seqnum: 0, connid: 0 98 12:58:40,2042316 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55100 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40975491, endtime: 40977289, seqnum: 0, connid: 0 98 12:58:40,2042386 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55100 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40975492, endtime: 40977289, seqnum: 0, connid: 0 98 12:58:40,2042441 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55100 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40975494, endtime: 40977289, seqnum: 0, connid: 0 98 12:58:40,2042510 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55100 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40975495, endtime: 40977289, seqnum: 0, connid: 0 98 12:58:40,2042760 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55100 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40975497, endtime: 40977289, seqnum: 0, connid: 0 98 12:58:40,2042832 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55100 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40975498, endtime: 40977289, seqnum: 0, connid: 0 98 12:58:40,2042887 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55100 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40975500, endtime: 40977289, seqnum: 0, connid: 0 98 12:58:40,2042956 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55100 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40975501, endtime: 40977289, seqnum: 0, connid: 0 98 12:58:40,4338396 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55101 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40976724, endtime: 40977312, seqnum: 0, connid: 0 98 12:58:40,4338568 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55101 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40976725, endtime: 40977312, seqnum: 0, connid: 0 98 12:58:40,4338648 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55101 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40976726, endtime: 40977312, seqnum: 0, connid: 0 98 12:58:40,4338709 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55101 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40976728, endtime: 40977312, seqnum: 0, connid: 0 98 12:58:40,4338776 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55101 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40976730, endtime: 40977312, seqnum: 0, connid: 0 98 12:58:40,4338831 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55101 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40976731, endtime: 40977312, seqnum: 0, connid: 0 98 12:58:40,4338898 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55101 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40976733, endtime: 40977312, seqnum: 0, connid: 0 98 12:58:40,4338950 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55101 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40976736, endtime: 40977312, seqnum: 0, connid: 0 98 12:58:40,4339017 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55101 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40976739, endtime: 40977312, seqnum: 0, connid: 0 98 12:58:40,4339069 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55101 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40976741, endtime: 40977312, seqnum: 0, connid: 0 98 12:58:40,4339377 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55101 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40976742, endtime: 40977312, seqnum: 0, connid: 0 98 12:58:40,4339435 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55101 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40976744, endtime: 40977312, seqnum: 0, connid: 0 98 12:58:40,4339502 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55101 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40976745, endtime: 40977312, seqnum: 0, connid: 0 98 12:58:41,3605586 MCLauncher.exe 6080 TCP Reconnect WIN-0UOTFKKVN1S:55127 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 0, seqnum: 0, connid: 0 98 12:58:41,4381899 MCLauncher.exe 6080 TCP Connect WIN-0UOTFKKVN1S:55127 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 0, mss: 1460, sackopt: 0, tsopt: 0, wsopt: 0, rcvwin: 64240, rcvwinscale: 0, sndwinscale: 0, seqnum: 0, connid: 0 98 12:58:41,4390945 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55127 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40977412, endtime: 40977413, seqnum: 0, connid: 0 98 12:58:41,4528700 MCLauncher.exe 6080 TCP Disconnect WIN-0UOTFKKVN1S:55040 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 0, seqnum: 0, connid: 0 98 12:58:41,4533549 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55127 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40977414, endtime: 40977414, seqnum: 0, connid: 0 98 12:58:41,4696092 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55127 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40977416, endtime: 40977416, seqnum: 0, connid: 0 98 12:58:41,4852149 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55127 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40977417, endtime: 40977417, seqnum: 0, connid: 0 98 12:58:41,5006395 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55127 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40977419, endtime: 40977419, seqnum: 0, connid: 0 98 12:58:41,5178372 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55127 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40977420, endtime: 40977420, seqnum: 0, connid: 0 98 12:58:41,5318626 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55127 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40977422, endtime: 40977422, seqnum: 0, connid: 0 98 12:58:41,5486913 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55127 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40977423, endtime: 40977423, seqnum: 0, connid: 0 98 12:58:41,5557781 MCLauncher.exe 6080 TCP Connect WIN-0UOTFKKVN1S:55133 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 0, mss: 1460, sackopt: 0, tsopt: 0, wsopt: 0, rcvwin: 64240, rcvwinscale: 0, sndwinscale: 0, seqnum: 0, connid: 0 98 12:58:41,5561355 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55133 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40977424, endtime: 40977424, seqnum: 0, connid: 0 98 12:58:41,5794384 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55133 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40977426, endtime: 40977427, seqnum: 0, connid: 0 98 12:58:41,5794605 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55127 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40977426, endtime: 40977427, seqnum: 0, connid: 0 98 12:58:41,6125236 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55127 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40977430, endtime: 40977430, seqnum: 0, connid: 0 98 12:58:41,6125480 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55133 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40977430, endtime: 40977430, seqnum: 0, connid: 0 98 12:58:41,6266709 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55133 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40977431, endtime: 40977431, seqnum: 0, connid: 0 98 12:58:41,6266953 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55127 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40977431, endtime: 40977431, seqnum: 0, connid: 0 98 12:58:41,6579516 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55127 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40977434, endtime: 40977434, seqnum: 0, connid: 0 98 12:58:41,6579724 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55133 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40977434, endtime: 40977434, seqnum: 0, connid: 0 98 12:58:41,6634166 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55128 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40976761, endtime: 40977435, seqnum: 0, connid: 0 98 12:58:41,6634340 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55128 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40976762, endtime: 40977435, seqnum: 0, connid: 0 98 12:58:41,6634432 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55128 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40976764, endtime: 40977435, seqnum: 0, connid: 0 98 12:58:41,6634495 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55128 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40976768, endtime: 40977435, seqnum: 0, connid: 0 98 12:58:41,6634567 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55128 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40976770, endtime: 40977435, seqnum: 0, connid: 0 98 12:58:41,6634623 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55128 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40976770, endtime: 40977435, seqnum: 0, connid: 0 98 12:58:41,6634689 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55128 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40976772, endtime: 40977435, seqnum: 0, connid: 0 98 12:58:41,6634745 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55128 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40976775, endtime: 40977435, seqnum: 0, connid: 0 98 12:58:41,6634811 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55128 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40976777, endtime: 40977435, seqnum: 0, connid: 0 98 12:58:41,6635133 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55128 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40976778, endtime: 40977435, seqnum: 0, connid: 0 98 12:58:41,6635205 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55128 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40976781, endtime: 40977435, seqnum: 0, connid: 0 98 12:58:41,6635263 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55128 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40976784, endtime: 40977435, seqnum: 0, connid: 0 98 12:58:41,6635329 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55128 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40976989, endtime: 40977435, seqnum: 0, connid: 0 98 12:58:41,6863191 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55133 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40977436, endtime: 40977437, seqnum: 0, connid: 0 98 12:58:41,6863405 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55127 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40977436, endtime: 40977437, seqnum: 0, connid: 0 98 12:58:41,7056762 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55127 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40977439, endtime: 40977439, seqnum: 0, connid: 0 98 12:58:41,7056989 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55133 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40977439, endtime: 40977439, seqnum: 0, connid: 0 98 12:58:41,7256796 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55133 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40977441, endtime: 40977441, seqnum: 0, connid: 0 98 12:58:41,7256999 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55127 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40977441, endtime: 40977441, seqnum: 0, connid: 0 98 12:58:41,7368622 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55127 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40977442, endtime: 40977442, seqnum: 0, connid: 0 98 12:58:41,7368821 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55133 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40977442, endtime: 40977442, seqnum: 0, connid: 0 98 12:58:41,7515935 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55133 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40977444, endtime: 40977444, seqnum: 0, connid: 0 98 12:58:41,7516129 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55127 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40977444, endtime: 40977444, seqnum: 0, connid: 0 98 12:58:41,7702352 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55127 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40977445, endtime: 40977446, seqnum: 0, connid: 0 98 12:58:41,7702582 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55133 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40977445, endtime: 40977446, seqnum: 0, connid: 0 98 12:58:41,7826806 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55133 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40977447, endtime: 40977447, seqnum: 0, connid: 0 98 12:58:41,7827235 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55127 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40977447, endtime: 40977447, seqnum: 0, connid: 0 98 12:58:41,8007713 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55127 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40977448, endtime: 40977449, seqnum: 0, connid: 0 98 12:58:41,8007940 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55133 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40977448, endtime: 40977449, seqnum: 0, connid: 0 98 12:58:41,8136250 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55133 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40977450, endtime: 40977450, seqnum: 0, connid: 0 98 12:58:41,8136474 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55127 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40977450, endtime: 40977450, seqnum: 0, connid: 0 98 12:58:41,8311793 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55127 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40977451, endtime: 40977452, seqnum: 0, connid: 0 98 12:58:41,8312003 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55133 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40977451, endtime: 40977452, seqnum: 0, connid: 0 98 12:58:41,8448589 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55133 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40977453, endtime: 40977453, seqnum: 0, connid: 0 98 12:58:41,8448800 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55127 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40977453, endtime: 40977453, seqnum: 0, connid: 0 98 12:58:41,8782857 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55127 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40977456, endtime: 40977456, seqnum: 0, connid: 0 98 12:58:41,8783076 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55133 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40977456, endtime: 40977456, seqnum: 0, connid: 0 98 12:58:41,9070832 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55133 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40977459, endtime: 40977459, seqnum: 0, connid: 0 98 12:58:41,9071045 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55127 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40977459, endtime: 40977459, seqnum: 0, connid: 0 98 12:58:41,9225704 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55133 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40977461, endtime: 40977461, seqnum: 0, connid: 0 98 12:58:41,9382423 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55133 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40977462, endtime: 40977462, seqnum: 0, connid: 0 98 12:58:41,9553433 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55133 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40977464, endtime: 40977464, seqnum: 0, connid: 0 98 12:58:41,9867922 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55133 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40977467, endtime: 40977467, seqnum: 0, connid: 0 98 12:58:42,0028008 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55133 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40977469, endtime: 40977469, seqnum: 0, connid: 0 98 12:58:42,0343348 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55133 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40977472, endtime: 40977472, seqnum: 0, connid: 0 98 12:58:42,0485519 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55133 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40977473, endtime: 40977473, seqnum: 0, connid: 0 98 12:58:42,0977136 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55133 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40977478, endtime: 40977478, seqnum: 0, connid: 0 98 12:58:42,1113705 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55133 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40977480, endtime: 40977480, seqnum: 0, connid: 0 98 12:58:42,1232811 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55127 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40977461, endtime: 40977481, seqnum: 0, connid: 0 98 12:58:42,1233027 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55127 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40977462, endtime: 40977481, seqnum: 0, connid: 0 98 12:58:42,1233113 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55127 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40977464, endtime: 40977481, seqnum: 0, connid: 0 98 12:58:42,1233196 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55127 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40977467, endtime: 40977481, seqnum: 0, connid: 0 98 12:58:42,1233257 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55127 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40977469, endtime: 40977481, seqnum: 0, connid: 0 98 12:58:42,1236452 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55127 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40977472, endtime: 40977481, seqnum: 0, connid: 0 98 12:58:42,1236543 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55127 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40977473, endtime: 40977481, seqnum: 0, connid: 0 98 12:58:42,1236618 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55127 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40977478, endtime: 40977481, seqnum: 0, connid: 0 98 12:58:42,1236676 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55127 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40977480, endtime: 40977481, seqnum: 0, connid: 0 98 12:58:42,1293076 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55127 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40977481, endtime: 40977482, seqnum: 0, connid: 0 98 12:58:42,1435508 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55127 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40977483, endtime: 40977483, seqnum: 0, connid: 0 98 12:58:42,1773068 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55127 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40977486, endtime: 40977486, seqnum: 0, connid: 0 98 12:58:42,1889187 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55127 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40977487, endtime: 40977488, seqnum: 0, connid: 0 98 12:58:42,4217287 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55099 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40977272, endtime: 40977511, seqnum: 0, connid: 0 98 12:58:42,4217445 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55099 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40977275, endtime: 40977511, seqnum: 0, connid: 0 98 12:58:42,4217517 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55099 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40977276, endtime: 40977511, seqnum: 0, connid: 0 98 12:58:42,4217591 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55099 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40977278, endtime: 40977511, seqnum: 0, connid: 0 98 12:58:42,4217650 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55099 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40977280, endtime: 40977511, seqnum: 0, connid: 0 98 12:58:42,4217719 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55099 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40977281, endtime: 40977511, seqnum: 0, connid: 0 98 12:58:42,4217774 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55099 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40977283, endtime: 40977511, seqnum: 0, connid: 0 98 12:58:42,4217844 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55099 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40977284, endtime: 40977511, seqnum: 0, connid: 0 98 12:58:42,4217896 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55099 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40977286, endtime: 40977511, seqnum: 0, connid: 0 98 12:58:42,4218179 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55099 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40977289, endtime: 40977511, seqnum: 0, connid: 0 98 12:58:42,4218234 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55099 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40977290, endtime: 40977511, seqnum: 0, connid: 0 98 12:58:42,4218303 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55099 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40977292, endtime: 40977511, seqnum: 0, connid: 0 98 12:58:42,4218359 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55099 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40977294, endtime: 40977511, seqnum: 0, connid: 0 98 12:58:42,4866709 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55133 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40977481, endtime: 40977517, seqnum: 0, connid: 0 98 12:58:42,4866911 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55133 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40977483, endtime: 40977517, seqnum: 0, connid: 0 98 12:58:42,4866994 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55133 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40977486, endtime: 40977517, seqnum: 0, connid: 0 98 12:58:42,4867080 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55133 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40977487, endtime: 40977517, seqnum: 0, connid: 0 98 12:58:42,4867147 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55133 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40977491, endtime: 40977517, seqnum: 0, connid: 0 98 12:58:42,4867221 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55133 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40977492, endtime: 40977517, seqnum: 0, connid: 0 98 12:58:42,4867282 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55133 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40977494, endtime: 40977517, seqnum: 0, connid: 0 98 12:58:42,4867357 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55133 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40977497, endtime: 40977517, seqnum: 0, connid: 0 98 12:58:42,4867418 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55133 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40977498, endtime: 40977517, seqnum: 0, connid: 0 98 12:58:42,4867745 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55133 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40977500, endtime: 40977517, seqnum: 0, connid: 0 98 12:58:42,4867806 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55133 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40977503, endtime: 40977517, seqnum: 0, connid: 0 98 12:58:42,4867875 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55133 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40977505, endtime: 40977517, seqnum: 0, connid: 0 98 12:58:42,4867933 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55133 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40977505, endtime: 40977517, seqnum: 0, connid: 0 98 12:58:43,3393945 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55101 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40977312, endtime: 40977603, seqnum: 0, connid: 0 98 12:58:43,3394186 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55101 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40977314, endtime: 40977603, seqnum: 0, connid: 0 98 12:58:43,3394272 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55101 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40977316, endtime: 40977603, seqnum: 0, connid: 0 98 12:58:43,3394358 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55101 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40977319, endtime: 40977603, seqnum: 0, connid: 0 98 12:58:43,3394425 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55101 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40977322, endtime: 40977603, seqnum: 0, connid: 0 98 12:58:43,3394499 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55101 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40977326, endtime: 40977603, seqnum: 0, connid: 0 98 12:58:43,3394563 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55101 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40977330, endtime: 40977603, seqnum: 0, connid: 0 98 12:58:43,3394638 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55101 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40977333, endtime: 40977603, seqnum: 0, connid: 0 98 12:58:43,3394702 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55101 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40977336, endtime: 40977603, seqnum: 0, connid: 0 98 12:58:43,3395115 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55101 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40977338, endtime: 40977603, seqnum: 0, connid: 0 98 12:58:43,3395203 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55101 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40977341, endtime: 40977603, seqnum: 0, connid: 0 98 12:58:43,3395303 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55101 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40977342, endtime: 40977603, seqnum: 0, connid: 0 98 12:58:43,3396699 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55101 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40977345, endtime: 40977603, seqnum: 0, connid: 0 98 12:58:43,5191637 MCLauncher.exe 6080 TCP TCPCopy WIN-0UOTFKKVN1S:54920 -> sheltex.company:8000 SUCCESS Length: 2, seqnum: 0, connid: 0 98 12:58:43,5191734 MCLauncher.exe 6080 TCP Receive WIN-0UOTFKKVN1S:54920 -> sheltex.company:8000 SUCCESS Length: 2, seqnum: 0, connid: 0 98 12:58:43,5195560 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54920 -> sheltex.company:8000 SUCCESS Length: 2, startime: 40977621, endtime: 40977621, seqnum: 0, connid: 0 98 12:58:44,5691915 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55099 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40977511, endtime: 40977726, seqnum: 0, connid: 0 98 12:58:44,5692092 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55099 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40977512, endtime: 40977726, seqnum: 0, connid: 0 98 12:58:44,5692170 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55099 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40977514, endtime: 40977726, seqnum: 0, connid: 0 98 12:58:44,5692244 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55099 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40977516, endtime: 40977726, seqnum: 0, connid: 0 98 12:58:44,5692305 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55099 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40977517, endtime: 40977726, seqnum: 0, connid: 0 98 12:58:44,5692377 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55099 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40977519, endtime: 40977726, seqnum: 0, connid: 0 98 12:58:44,5692436 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55099 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40977520, endtime: 40977726, seqnum: 0, connid: 0 98 12:58:44,5692508 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55099 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40977522, endtime: 40977726, seqnum: 0, connid: 0 98 12:58:44,5692566 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55099 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40977523, endtime: 40977726, seqnum: 0, connid: 0 98 12:58:44,5692871 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55099 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40977525, endtime: 40977726, seqnum: 0, connid: 0 98 12:58:44,5692934 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55099 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40977526, endtime: 40977726, seqnum: 0, connid: 0 98 12:58:44,5693004 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55099 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40977528, endtime: 40977726, seqnum: 0, connid: 0 98 12:58:44,5693064 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55099 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40977530, endtime: 40977726, seqnum: 0, connid: 0 98 12:58:44,6683800 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55128 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40977435, endtime: 40977735, seqnum: 0, connid: 0 98 12:58:44,6683961 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55128 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40977436, endtime: 40977735, seqnum: 0, connid: 0 98 12:58:44,6684030 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55128 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40977439, endtime: 40977735, seqnum: 0, connid: 0 98 12:58:44,6684102 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55128 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40977441, endtime: 40977735, seqnum: 0, connid: 0 98 12:58:44,6684158 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55128 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40977442, endtime: 40977735, seqnum: 0, connid: 0 98 12:58:44,6684224 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55128 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40977444, endtime: 40977735, seqnum: 0, connid: 0 98 12:58:44,6684277 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55128 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40977445, endtime: 40977735, seqnum: 0, connid: 0 98 12:58:44,6684343 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55128 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40977447, endtime: 40977735, seqnum: 0, connid: 0 98 12:58:44,6684399 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55128 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40977448, endtime: 40977735, seqnum: 0, connid: 0 98 12:58:44,6684679 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55128 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40977450, endtime: 40977735, seqnum: 0, connid: 0 98 12:58:44,6684737 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55128 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40977451, endtime: 40977735, seqnum: 0, connid: 0 98 12:58:44,6684800 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55128 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40977453, endtime: 40977735, seqnum: 0, connid: 0 98 12:58:44,6684856 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55128 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40977456, endtime: 40977735, seqnum: 0, connid: 0 98 12:58:46,4923309 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55128 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40977735, endtime: 40977918, seqnum: 0, connid: 0 98 12:58:46,4923483 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55128 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40977739, endtime: 40977918, seqnum: 0, connid: 0 98 12:58:46,4923555 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55128 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40977741, endtime: 40977918, seqnum: 0, connid: 0 98 12:58:46,4923633 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55128 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40977742, endtime: 40977918, seqnum: 0, connid: 0 98 12:58:46,4923688 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55128 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40977744, endtime: 40977918, seqnum: 0, connid: 0 98 12:58:46,4923757 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55128 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40977747, endtime: 40977918, seqnum: 0, connid: 0 98 12:58:46,4923813 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55128 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40977749, endtime: 40977918, seqnum: 0, connid: 0 98 12:58:46,4923879 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55128 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40977750, endtime: 40977918, seqnum: 0, connid: 0 98 12:58:46,4923937 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55128 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40977753, endtime: 40977918, seqnum: 0, connid: 0 98 12:58:46,4924234 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55128 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40977755, endtime: 40977918, seqnum: 0, connid: 0 98 12:58:46,4924292 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55128 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40977756, endtime: 40977918, seqnum: 0, connid: 0 98 12:58:46,4924361 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55128 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40977758, endtime: 40977918, seqnum: 0, connid: 0 98 12:58:46,4924417 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55128 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40977759, endtime: 40977918, seqnum: 0, connid: 0 98 12:58:46,7206727 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55069 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40977260, endtime: 40977941, seqnum: 0, connid: 0 98 12:58:46,7206888 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55069 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40977261, endtime: 40977941, seqnum: 0, connid: 0 98 12:58:46,7206979 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55069 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40977262, endtime: 40977941, seqnum: 0, connid: 0 98 12:58:46,7207046 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55069 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40977264, endtime: 40977941, seqnum: 0, connid: 0 98 12:58:46,7207118 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55069 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40977266, endtime: 40977941, seqnum: 0, connid: 0 98 12:58:46,7207176 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55069 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40977267, endtime: 40977941, seqnum: 0, connid: 0 98 12:58:46,7207245 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55069 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40977269, endtime: 40977941, seqnum: 0, connid: 0 98 12:58:46,7207303 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55069 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40977270, endtime: 40977941, seqnum: 0, connid: 0 98 12:58:46,7207372 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55069 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40977272, endtime: 40977941, seqnum: 0, connid: 0 98 12:58:46,7208165 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55069 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40977275, endtime: 40977941, seqnum: 0, connid: 0 98 12:58:46,7208254 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55069 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40977276, endtime: 40977941, seqnum: 0, connid: 0 98 12:58:46,7208314 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55069 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40977278, endtime: 40977941, seqnum: 0, connid: 0 98 12:58:46,7212819 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55069 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40977280, endtime: 40977941, seqnum: 0, connid: 0 98 12:58:47,3386038 MCLauncher.exe 6080 TCP Disconnect WIN-0UOTFKKVN1S:55100 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 0, seqnum: 0, connid: 0 98 12:58:47,6009235 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55133 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40977517, endtime: 40978029, seqnum: 0, connid: 0 98 12:58:47,6009390 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55133 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40977519, endtime: 40978029, seqnum: 0, connid: 0 98 12:58:47,6009476 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55133 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40977520, endtime: 40978029, seqnum: 0, connid: 0 98 12:58:47,6009537 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55133 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40977522, endtime: 40978029, seqnum: 0, connid: 0 98 12:58:47,6009607 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55133 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40977523, endtime: 40978029, seqnum: 0, connid: 0 98 12:58:47,6009659 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55133 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40977525, endtime: 40978029, seqnum: 0, connid: 0 98 12:58:47,6009726 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55133 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40977526, endtime: 40978029, seqnum: 0, connid: 0 98 12:58:47,6009781 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55133 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40977528, endtime: 40978029, seqnum: 0, connid: 0 98 12:58:47,6009845 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55133 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40977530, endtime: 40978029, seqnum: 0, connid: 0 98 12:58:47,6010826 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55133 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40977531, endtime: 40978029, seqnum: 0, connid: 0 98 12:58:47,6010923 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55133 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40977533, endtime: 40978029, seqnum: 0, connid: 0 98 12:58:47,6010978 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55133 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40977534, endtime: 40978029, seqnum: 0, connid: 0 98 12:58:47,6011094 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55101 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40977603, endtime: 40978029, seqnum: 0, connid: 0 98 12:58:47,6011166 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55101 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40977604, endtime: 40978029, seqnum: 0, connid: 0 98 12:58:47,6011222 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55101 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40977604, endtime: 40978029, seqnum: 0, connid: 0 98 12:58:47,6011294 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55101 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40977607, endtime: 40978029, seqnum: 0, connid: 0 98 12:58:47,6011355 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55101 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40977608, endtime: 40978029, seqnum: 0, connid: 0 98 12:58:47,6011427 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55101 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40977609, endtime: 40978029, seqnum: 0, connid: 0 98 12:58:47,6012058 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55101 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40977611, endtime: 40978029, seqnum: 0, connid: 0 98 12:58:47,6012139 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55101 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40977613, endtime: 40978029, seqnum: 0, connid: 0 98 12:58:47,6012191 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55101 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40977614, endtime: 40978029, seqnum: 0, connid: 0 98 12:58:47,6012258 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55101 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40977617, endtime: 40978029, seqnum: 0, connid: 0 98 12:58:47,6012313 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55101 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40977619, endtime: 40978029, seqnum: 0, connid: 0 98 12:58:47,6012380 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55101 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40977620, endtime: 40978029, seqnum: 0, connid: 0 98 12:58:47,6012435 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55101 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40977622, endtime: 40978029, seqnum: 0, connid: 0 98 12:58:47,6012579 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55133 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40977536, endtime: 40978029, seqnum: 0, connid: 0 98 12:58:47,8181247 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55099 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40977726, endtime: 40978050, seqnum: 0, connid: 0 98 12:58:47,8181413 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55099 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40977726, endtime: 40978050, seqnum: 0, connid: 0 98 12:58:47,8181485 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55099 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40977728, endtime: 40978050, seqnum: 0, connid: 0 98 12:58:47,8181557 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55099 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40977730, endtime: 40978050, seqnum: 0, connid: 0 98 12:58:47,8181612 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55099 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40977731, endtime: 40978050, seqnum: 0, connid: 0 98 12:58:47,8181682 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55099 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40977734, endtime: 40978050, seqnum: 0, connid: 0 98 12:58:47,8181734 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55099 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40977736, endtime: 40978050, seqnum: 0, connid: 0 98 12:58:47,8181801 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55099 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40977739, endtime: 40978050, seqnum: 0, connid: 0 98 12:58:47,8181856 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55099 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40977741, endtime: 40978050, seqnum: 0, connid: 0 98 12:58:47,8182144 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55099 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40977742, endtime: 40978050, seqnum: 0, connid: 0 98 12:58:47,8182200 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55099 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40977744, endtime: 40978050, seqnum: 0, connid: 0 98 12:58:47,8182266 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55099 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40977747, endtime: 40978050, seqnum: 0, connid: 0 98 12:58:47,8182322 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55099 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40977749, endtime: 40978050, seqnum: 0, connid: 0 98 12:58:48,5061601 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55127 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40977491, endtime: 40978119, seqnum: 0, connid: 0 98 12:58:48,5061759 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55127 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40977492, endtime: 40978119, seqnum: 0, connid: 0 98 12:58:48,5061850 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55127 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40977494, endtime: 40978119, seqnum: 0, connid: 0 98 12:58:48,5061917 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55127 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40977497, endtime: 40978119, seqnum: 0, connid: 0 98 12:58:48,5061992 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55127 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40977498, endtime: 40978119, seqnum: 0, connid: 0 98 12:58:48,5062050 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55127 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40977500, endtime: 40978119, seqnum: 0, connid: 0 98 12:58:48,5062119 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55127 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40977503, endtime: 40978119, seqnum: 0, connid: 0 98 12:58:48,5062175 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55127 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40977505, endtime: 40978119, seqnum: 0, connid: 0 98 12:58:48,5062244 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55127 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40977505, endtime: 40978119, seqnum: 0, connid: 0 98 12:58:48,5062526 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55127 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40977508, endtime: 40978119, seqnum: 0, connid: 0 98 12:58:48,5062596 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55127 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40977509, endtime: 40978119, seqnum: 0, connid: 0 98 12:58:48,5062654 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55127 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40977511, endtime: 40978119, seqnum: 0, connid: 0 98 12:58:48,5062820 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55127 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40977512, endtime: 40978119, seqnum: 0, connid: 0 98 12:58:49,7503623 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55069 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40977941, endtime: 40978244, seqnum: 0, connid: 0 98 12:58:49,7503803 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55069 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40977942, endtime: 40978244, seqnum: 0, connid: 0 98 12:58:49,7503883 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55069 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40977945, endtime: 40978244, seqnum: 0, connid: 0 98 12:58:49,7503961 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55069 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40977947, endtime: 40978244, seqnum: 0, connid: 0 98 12:58:49,7504022 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55069 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40977950, endtime: 40978244, seqnum: 0, connid: 0 98 12:58:49,7504091 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55069 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40977951, endtime: 40978244, seqnum: 0, connid: 0 98 12:58:49,7504149 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55069 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40977953, endtime: 40978244, seqnum: 0, connid: 0 98 12:58:49,7504221 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55069 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40977956, endtime: 40978244, seqnum: 0, connid: 0 98 12:58:49,7504277 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55069 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40977958, endtime: 40978244, seqnum: 0, connid: 0 98 12:58:49,7505047 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55069 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40977959, endtime: 40978244, seqnum: 0, connid: 0 98 12:58:49,7505122 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55069 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40977962, endtime: 40978244, seqnum: 0, connid: 0 98 12:58:49,7505194 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55069 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40977964, endtime: 40978244, seqnum: 0, connid: 0 98 12:58:49,7506025 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55069 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40977967, endtime: 40978244, seqnum: 0, connid: 0 98 12:58:49,8288448 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55101 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40978029, endtime: 40978251, seqnum: 0, connid: 0 98 12:58:49,8288631 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55101 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40978030, endtime: 40978251, seqnum: 0, connid: 0 98 12:58:49,8288703 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55101 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40978031, endtime: 40978251, seqnum: 0, connid: 0 98 12:58:49,8288772 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55101 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40978033, endtime: 40978251, seqnum: 0, connid: 0 98 12:58:49,8288827 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55101 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40978036, endtime: 40978251, seqnum: 0, connid: 0 98 12:58:49,8288891 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55101 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40978037, endtime: 40978251, seqnum: 0, connid: 0 98 12:58:49,8288947 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55101 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40978039, endtime: 40978251, seqnum: 0, connid: 0 98 12:58:49,8289010 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55101 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40978041, endtime: 40978251, seqnum: 0, connid: 0 98 12:58:49,8289063 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55101 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40978042, endtime: 40978251, seqnum: 0, connid: 0 98 12:58:49,8289382 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55101 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40978044, endtime: 40978252, seqnum: 0, connid: 0 98 12:58:49,8289443 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55101 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40978045, endtime: 40978252, seqnum: 0, connid: 0 98 12:58:49,8289504 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55101 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40978047, endtime: 40978252, seqnum: 0, connid: 0 98 12:58:49,8289559 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55101 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40978048, endtime: 40978252, seqnum: 0, connid: 0 98 12:58:49,9133261 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55133 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40978029, endtime: 40978260, seqnum: 0, connid: 0 98 12:58:49,9133444 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55133 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40978030, endtime: 40978260, seqnum: 0, connid: 0 98 12:58:49,9133516 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55133 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40978031, endtime: 40978260, seqnum: 0, connid: 0 98 12:58:49,9133591 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55133 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40978033, endtime: 40978260, seqnum: 0, connid: 0 98 12:58:49,9133649 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55133 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40978036, endtime: 40978260, seqnum: 0, connid: 0 98 12:58:49,9133718 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55133 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40978037, endtime: 40978260, seqnum: 0, connid: 0 98 12:58:49,9133771 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55133 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40978039, endtime: 40978260, seqnum: 0, connid: 0 98 12:58:49,9133840 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55133 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40978041, endtime: 40978260, seqnum: 0, connid: 0 98 12:58:49,9133896 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55133 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40978042, endtime: 40978260, seqnum: 0, connid: 0 98 12:58:49,9134669 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55133 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40978044, endtime: 40978260, seqnum: 0, connid: 0 98 12:58:49,9134738 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55133 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40978045, endtime: 40978260, seqnum: 0, connid: 0 98 12:58:49,9134804 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55133 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40978047, endtime: 40978260, seqnum: 0, connid: 0 98 12:58:49,9142545 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55133 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40978048, endtime: 40978260, seqnum: 0, connid: 0 98 12:58:50,1585055 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55128 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40977918, endtime: 40978284, seqnum: 0, connid: 0 98 12:58:50,1585215 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55128 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40977919, endtime: 40978284, seqnum: 0, connid: 0 98 12:58:50,1585299 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55128 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40977920, endtime: 40978284, seqnum: 0, connid: 0 98 12:58:50,1585376 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55128 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40977922, endtime: 40978284, seqnum: 0, connid: 0 98 12:58:50,1585443 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55128 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40977923, endtime: 40978284, seqnum: 0, connid: 0 98 12:58:50,1585515 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55128 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40977925, endtime: 40978284, seqnum: 0, connid: 0 98 12:58:50,1585573 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55128 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40977929, endtime: 40978284, seqnum: 0, connid: 0 98 12:58:50,1585642 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55128 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40977931, endtime: 40978284, seqnum: 0, connid: 0 98 12:58:50,1585700 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55128 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40977933, endtime: 40978284, seqnum: 0, connid: 0 98 12:58:50,1585991 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55128 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40977935, endtime: 40978284, seqnum: 0, connid: 0 98 12:58:50,1586052 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55128 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40977937, endtime: 40978284, seqnum: 0, connid: 0 98 12:58:50,1586121 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55128 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40977939, endtime: 40978284, seqnum: 0, connid: 0 98 12:58:50,1586180 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55128 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40977942, endtime: 40978284, seqnum: 0, connid: 0 98 12:58:50,8183009 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55133 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40978260, endtime: 40978350, seqnum: 0, connid: 0 98 12:58:50,8183156 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55133 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40978262, endtime: 40978350, seqnum: 0, connid: 0 98 12:58:50,8183222 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55133 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40978264, endtime: 40978350, seqnum: 0, connid: 0 98 12:58:50,8183291 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55133 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40978266, endtime: 40978350, seqnum: 0, connid: 0 98 12:58:50,8183344 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55133 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40978269, endtime: 40978350, seqnum: 0, connid: 0 98 12:58:50,8183410 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55133 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40978272, endtime: 40978350, seqnum: 0, connid: 0 98 12:58:50,8183463 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55133 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40978274, endtime: 40978350, seqnum: 0, connid: 0 98 12:58:50,8183527 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55133 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40978275, endtime: 40978350, seqnum: 0, connid: 0 98 12:58:50,8183579 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55133 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40978277, endtime: 40978350, seqnum: 0, connid: 0 98 12:58:50,8183879 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55133 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40978278, endtime: 40978350, seqnum: 0, connid: 0 98 12:58:50,8183934 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55133 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40978280, endtime: 40978350, seqnum: 0, connid: 0 98 12:58:50,8183998 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55133 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40978281, endtime: 40978350, seqnum: 0, connid: 0 98 12:58:50,8184048 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55133 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40978283, endtime: 40978350, seqnum: 0, connid: 0 98 12:58:51,3193481 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55099 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40978050, endtime: 40978401, seqnum: 0, connid: 0 98 12:58:51,3193650 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55099 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40978051, endtime: 40978401, seqnum: 0, connid: 0 98 12:58:51,3193728 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55099 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40978052, endtime: 40978401, seqnum: 0, connid: 0 98 12:58:51,3193806 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55099 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40978056, endtime: 40978401, seqnum: 0, connid: 0 98 12:58:51,3193867 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55099 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40978058, endtime: 40978401, seqnum: 0, connid: 0 98 12:58:51,3193936 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55099 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40978060, endtime: 40978401, seqnum: 0, connid: 0 98 12:58:51,3193994 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55099 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40978064, endtime: 40978401, seqnum: 0, connid: 0 98 12:58:51,3194060 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55099 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40978066, endtime: 40978401, seqnum: 0, connid: 0 98 12:58:51,3194119 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55099 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40978067, endtime: 40978401, seqnum: 0, connid: 0 98 12:58:51,3194412 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55099 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40978069, endtime: 40978401, seqnum: 0, connid: 0 98 12:58:51,3194473 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55099 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40978071, endtime: 40978401, seqnum: 0, connid: 0 98 12:58:51,3194540 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55099 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40978073, endtime: 40978401, seqnum: 0, connid: 0 98 12:58:51,3194598 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55099 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40978075, endtime: 40978401, seqnum: 0, connid: 0 98 12:58:51,7104479 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55069 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40978244, endtime: 40978440, seqnum: 0, connid: 0 98 12:58:51,7104646 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55069 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40978245, endtime: 40978440, seqnum: 0, connid: 0 98 12:58:51,7104723 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55069 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40978247, endtime: 40978440, seqnum: 0, connid: 0 98 12:58:51,7104801 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55069 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40978248, endtime: 40978440, seqnum: 0, connid: 0 98 12:58:51,7104859 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55069 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40978252, endtime: 40978440, seqnum: 0, connid: 0 98 12:58:51,7104928 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55069 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40978253, endtime: 40978440, seqnum: 0, connid: 0 98 12:58:51,7104986 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55069 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40978256, endtime: 40978440, seqnum: 0, connid: 0 98 12:58:51,7105056 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55069 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40978260, endtime: 40978440, seqnum: 0, connid: 0 98 12:58:51,7105114 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55069 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40978262, endtime: 40978440, seqnum: 0, connid: 0 98 12:58:51,7105806 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55069 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40978264, endtime: 40978440, seqnum: 0, connid: 0 98 12:58:51,7105879 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55069 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40978266, endtime: 40978440, seqnum: 0, connid: 0 98 12:58:51,7105951 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55069 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40978269, endtime: 40978440, seqnum: 0, connid: 0 98 12:58:51,7790977 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55069 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40978272, endtime: 40978447, seqnum: 0, connid: 0 98 12:58:52,7367788 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55101 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40978252, endtime: 40978542, seqnum: 0, connid: 0 98 12:58:52,7367996 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55101 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40978253, endtime: 40978542, seqnum: 0, connid: 0 98 12:58:52,7368073 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55101 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40978256, endtime: 40978542, seqnum: 0, connid: 0 98 12:58:52,7368148 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55101 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40978261, endtime: 40978542, seqnum: 0, connid: 0 98 12:58:52,7368209 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55101 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40978262, endtime: 40978542, seqnum: 0, connid: 0 98 12:58:52,7368278 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55101 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40978264, endtime: 40978542, seqnum: 0, connid: 0 98 12:58:52,7368336 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55101 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40978266, endtime: 40978542, seqnum: 0, connid: 0 98 12:58:52,7369281 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55101 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40978269, endtime: 40978542, seqnum: 0, connid: 0 98 12:58:52,7369353 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55101 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40978272, endtime: 40978542, seqnum: 0, connid: 0 98 12:58:52,7369420 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55101 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40978274, endtime: 40978542, seqnum: 0, connid: 0 98 12:58:52,7369472 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55101 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40978275, endtime: 40978542, seqnum: 0, connid: 0 98 12:58:52,7369539 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55101 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40978277, endtime: 40978542, seqnum: 0, connid: 0 98 12:58:52,7369592 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55101 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40978278, endtime: 40978542, seqnum: 0, connid: 0 98 12:58:52,8105106 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55101 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40978542, endtime: 40978550, seqnum: 0, connid: 0 98 12:58:53,6897139 MCLauncher.exe 6080 TCP TCPCopy WIN-0UOTFKKVN1S:54920 -> sheltex.company:8000 SUCCESS Length: 2, seqnum: 0, connid: 0 98 12:58:53,6897272 MCLauncher.exe 6080 TCP Receive WIN-0UOTFKKVN1S:54920 -> sheltex.company:8000 SUCCESS Length: 2, seqnum: 0, connid: 0 98 12:58:53,6901533 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54920 -> sheltex.company:8000 SUCCESS Length: 2, startime: 40978638, endtime: 40978638, seqnum: 0, connid: 0 98 12:58:53,7407379 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55127 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40978119, endtime: 40978643, seqnum: 0, connid: 0 98 12:58:53,7407568 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55127 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40978120, endtime: 40978643, seqnum: 0, connid: 0 98 12:58:53,7407648 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55127 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40978122, endtime: 40978643, seqnum: 0, connid: 0 98 12:58:53,7407723 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55127 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40978124, endtime: 40978643, seqnum: 0, connid: 0 98 12:58:53,7407784 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55127 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40978125, endtime: 40978643, seqnum: 0, connid: 0 98 12:58:53,7407853 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55127 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40978127, endtime: 40978643, seqnum: 0, connid: 0 98 12:58:53,7407908 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55127 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40978128, endtime: 40978643, seqnum: 0, connid: 0 98 12:58:53,7407975 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55127 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40978130, endtime: 40978643, seqnum: 0, connid: 0 98 12:58:53,7408030 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55127 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40978131, endtime: 40978643, seqnum: 0, connid: 0 98 12:58:53,7408310 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55127 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40978133, endtime: 40978643, seqnum: 0, connid: 0 98 12:58:53,7408368 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55127 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40978134, endtime: 40978643, seqnum: 0, connid: 0 98 12:58:53,7408438 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55127 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40978136, endtime: 40978643, seqnum: 0, connid: 0 98 12:58:53,7408493 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55127 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40978137, endtime: 40978643, seqnum: 0, connid: 0 98 12:58:54,0459756 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55099 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40978401, endtime: 40978673, seqnum: 0, connid: 0 98 12:58:54,0459925 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55099 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40978401, endtime: 40978673, seqnum: 0, connid: 0 98 12:58:54,0459999 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55099 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40978403, endtime: 40978673, seqnum: 0, connid: 0 98 12:58:54,0460074 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55099 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40978405, endtime: 40978673, seqnum: 0, connid: 0 98 12:58:54,0460135 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55099 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40978406, endtime: 40978673, seqnum: 0, connid: 0 98 12:58:54,0460204 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55099 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40978408, endtime: 40978673, seqnum: 0, connid: 0 98 12:58:54,0460263 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55099 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40978409, endtime: 40978673, seqnum: 0, connid: 0 98 12:58:54,0460332 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55099 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40978411, endtime: 40978673, seqnum: 0, connid: 0 98 12:58:54,0460387 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55099 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40978414, endtime: 40978673, seqnum: 0, connid: 0 98 12:58:54,0461157 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55099 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40978416, endtime: 40978673, seqnum: 0, connid: 0 98 12:58:54,0461235 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55099 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40978417, endtime: 40978673, seqnum: 0, connid: 0 98 12:58:54,0461307 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55099 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40978419, endtime: 40978673, seqnum: 0, connid: 0 98 12:58:54,0464582 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55099 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40978420, endtime: 40978673, seqnum: 0, connid: 0 98 12:58:54,2207181 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55133 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40978350, endtime: 40978691, seqnum: 0, connid: 0 98 12:58:54,2207364 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55133 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40978351, endtime: 40978691, seqnum: 0, connid: 0 98 12:58:54,2207439 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55133 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40978353, endtime: 40978691, seqnum: 0, connid: 0 98 12:58:54,2207511 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55133 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40978355, endtime: 40978691, seqnum: 0, connid: 0 98 12:58:54,2207566 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55133 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40978358, endtime: 40978691, seqnum: 0, connid: 0 98 12:58:54,2209063 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55133 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40978359, endtime: 40978691, seqnum: 0, connid: 0 98 12:58:54,2209137 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55133 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40978361, endtime: 40978691, seqnum: 0, connid: 0 98 12:58:54,2209204 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55133 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40978362, endtime: 40978691, seqnum: 0, connid: 0 98 12:58:54,2209256 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55133 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40978364, endtime: 40978691, seqnum: 0, connid: 0 98 12:58:54,2209323 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55133 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40978366, endtime: 40978691, seqnum: 0, connid: 0 98 12:58:54,2209376 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55133 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40978367, endtime: 40978691, seqnum: 0, connid: 0 98 12:58:54,2209439 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55133 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40978369, endtime: 40978691, seqnum: 0, connid: 0 98 12:58:54,2209492 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55133 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40978370, endtime: 40978691, seqnum: 0, connid: 0 98 12:58:54,2952207 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55101 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40978544, endtime: 40978698, seqnum: 0, connid: 0 98 12:58:54,2952384 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55101 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40978547, endtime: 40978698, seqnum: 0, connid: 0 98 12:58:54,2952479 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55101 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40978548, endtime: 40978698, seqnum: 0, connid: 0 98 12:58:54,2952545 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55101 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40978550, endtime: 40978698, seqnum: 0, connid: 0 98 12:58:54,2952617 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55101 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40978551, endtime: 40978698, seqnum: 0, connid: 0 98 12:58:54,2952678 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55101 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40978555, endtime: 40978698, seqnum: 0, connid: 0 98 12:58:54,2952747 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55101 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40978556, endtime: 40978698, seqnum: 0, connid: 0 98 12:58:54,2952806 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55101 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40978558, endtime: 40978698, seqnum: 0, connid: 0 98 12:58:54,2952872 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55101 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40978559, endtime: 40978698, seqnum: 0, connid: 0 98 12:58:54,2953487 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55101 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40978561, endtime: 40978698, seqnum: 0, connid: 0 98 12:58:54,2953573 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55101 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40978562, endtime: 40978698, seqnum: 0, connid: 0 98 12:58:54,2953631 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55101 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40978564, endtime: 40978698, seqnum: 0, connid: 0 98 12:58:54,4925517 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55128 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40978284, endtime: 40978718, seqnum: 0, connid: 0 98 12:58:54,4925702 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55128 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40978287, endtime: 40978718, seqnum: 0, connid: 0 98 12:58:54,4925783 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55128 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40978289, endtime: 40978718, seqnum: 0, connid: 0 98 12:58:54,4925863 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55128 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40978291, endtime: 40978718, seqnum: 0, connid: 0 98 12:58:54,4925924 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55128 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40978294, endtime: 40978718, seqnum: 0, connid: 0 98 12:58:54,4925993 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55128 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40978295, endtime: 40978718, seqnum: 0, connid: 0 98 12:58:54,4926051 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55128 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40978297, endtime: 40978718, seqnum: 0, connid: 0 98 12:58:54,4927498 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55128 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40978299, endtime: 40978718, seqnum: 0, connid: 0 98 12:58:54,4927608 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55128 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40978300, endtime: 40978718, seqnum: 0, connid: 0 98 12:58:54,4927686 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55128 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40978300, endtime: 40978718, seqnum: 0, connid: 0 98 12:58:54,4927753 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55128 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40978304, endtime: 40978718, seqnum: 0, connid: 0 98 12:58:54,4927825 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55128 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40978305, endtime: 40978718, seqnum: 0, connid: 0 98 12:58:54,4927886 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55128 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40978306, endtime: 40978718, seqnum: 0, connid: 0 98 12:58:55,0300060 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55069 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40978440, endtime: 40978772, seqnum: 0, connid: 0 98 12:58:55,0300213 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55069 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40978441, endtime: 40978772, seqnum: 0, connid: 0 98 12:58:55,0300301 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55069 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40978442, endtime: 40978772, seqnum: 0, connid: 0 98 12:58:55,0300368 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55069 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40978444, endtime: 40978772, seqnum: 0, connid: 0 98 12:58:55,0300440 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55069 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40978449, endtime: 40978772, seqnum: 0, connid: 0 98 12:58:55,0300501 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55069 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40978450, endtime: 40978772, seqnum: 0, connid: 0 98 12:58:55,0300570 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55069 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40978452, endtime: 40978772, seqnum: 0, connid: 0 98 12:58:55,0300631 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55069 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40978453, endtime: 40978772, seqnum: 0, connid: 0 98 12:58:55,0300703 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55069 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40978455, endtime: 40978772, seqnum: 0, connid: 0 98 12:58:55,0301509 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55069 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40978456, endtime: 40978772, seqnum: 0, connid: 0 98 12:58:55,0301601 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55069 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40978458, endtime: 40978772, seqnum: 0, connid: 0 98 12:58:55,0301659 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55069 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40978459, endtime: 40978772, seqnum: 0, connid: 0 98 12:58:55,0305845 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55069 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40978461, endtime: 40978772, seqnum: 0, connid: 0 98 12:58:56,4666242 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55133 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40978692, endtime: 40978915, seqnum: 0, connid: 0 98 12:58:56,4666406 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55133 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40978694, endtime: 40978915, seqnum: 0, connid: 0 98 12:58:56,4666478 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55133 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40978695, endtime: 40978915, seqnum: 0, connid: 0 98 12:58:56,4666550 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55133 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40978696, endtime: 40978915, seqnum: 0, connid: 0 98 12:58:56,4666605 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55133 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40978697, endtime: 40978915, seqnum: 0, connid: 0 98 12:58:56,4666669 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55133 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40978697, endtime: 40978915, seqnum: 0, connid: 0 98 12:58:56,4666724 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55133 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40978698, endtime: 40978915, seqnum: 0, connid: 0 98 12:58:56,4666788 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55133 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40978698, endtime: 40978915, seqnum: 0, connid: 0 98 12:58:56,4666843 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55133 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40978699, endtime: 40978915, seqnum: 0, connid: 0 98 12:58:56,4667154 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55133 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40978700, endtime: 40978915, seqnum: 0, connid: 0 98 12:58:56,4667212 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55133 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40978700, endtime: 40978915, seqnum: 0, connid: 0 98 12:58:56,4667276 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55133 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40978701, endtime: 40978915, seqnum: 0, connid: 0 98 12:58:56,4667331 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55133 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40978703, endtime: 40978915, seqnum: 0, connid: 0 98 12:58:56,5085129 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55099 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40978673, endtime: 40978919, seqnum: 0, connid: 0 98 12:58:56,5085317 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55099 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40978675, endtime: 40978919, seqnum: 0, connid: 0 98 12:58:56,5085397 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55099 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40978677, endtime: 40978919, seqnum: 0, connid: 0 98 12:58:56,5085478 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55099 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40978678, endtime: 40978919, seqnum: 0, connid: 0 98 12:58:56,5085539 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55099 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40978680, endtime: 40978919, seqnum: 0, connid: 0 98 12:58:56,5085614 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55099 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40978681, endtime: 40978919, seqnum: 0, connid: 0 98 12:58:56,5085672 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55099 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40978683, endtime: 40978919, seqnum: 0, connid: 0 98 12:58:56,5085744 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55099 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40978684, endtime: 40978919, seqnum: 0, connid: 0 98 12:58:56,5085805 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55099 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40978686, endtime: 40978919, seqnum: 0, connid: 0 98 12:58:56,5086447 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55099 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40978692, endtime: 40978919, seqnum: 0, connid: 0 98 12:58:56,5086525 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55099 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40978694, endtime: 40978919, seqnum: 0, connid: 0 98 12:58:56,5086597 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55099 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40978695, endtime: 40978919, seqnum: 0, connid: 0 98 12:58:57,1367278 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55127 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40978643, endtime: 40978982, seqnum: 0, connid: 0 98 12:58:57,1367460 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55127 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40978644, endtime: 40978982, seqnum: 0, connid: 0 98 12:58:57,1367541 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55127 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40978645, endtime: 40978982, seqnum: 0, connid: 0 98 12:58:57,1367621 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55127 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40978647, endtime: 40978982, seqnum: 0, connid: 0 98 12:58:57,1367685 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55127 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40978648, endtime: 40978982, seqnum: 0, connid: 0 98 12:58:57,1367757 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55127 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40978650, endtime: 40978982, seqnum: 0, connid: 0 98 12:58:57,1367818 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55127 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40978653, endtime: 40978982, seqnum: 0, connid: 0 98 12:58:57,1367890 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55127 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40978656, endtime: 40978982, seqnum: 0, connid: 0 98 12:58:57,1367948 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55127 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40978658, endtime: 40978982, seqnum: 0, connid: 0 98 12:58:57,1368242 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55127 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40978659, endtime: 40978982, seqnum: 0, connid: 0 98 12:58:57,1368305 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55127 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40978663, endtime: 40978982, seqnum: 0, connid: 0 98 12:58:57,1369452 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55127 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40978666, endtime: 40978982, seqnum: 0, connid: 0 98 12:58:57,1369555 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55127 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40978667, endtime: 40978982, seqnum: 0, connid: 0 98 12:58:57,5382327 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55101 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40978566, endtime: 40979022, seqnum: 0, connid: 0 98 12:58:57,5382490 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55101 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40978698, endtime: 40979022, seqnum: 0, connid: 0 98 12:58:57,5382573 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55101 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40978699, endtime: 40979022, seqnum: 0, connid: 0 98 12:58:57,5382634 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55101 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40978699, endtime: 40979022, seqnum: 0, connid: 0 98 12:58:57,5382704 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55101 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40978700, endtime: 40979022, seqnum: 0, connid: 0 98 12:58:57,5382759 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55101 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40978700, endtime: 40979022, seqnum: 0, connid: 0 98 12:58:57,5382825 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55101 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40978703, endtime: 40979022, seqnum: 0, connid: 0 98 12:58:57,5382881 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55101 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40978705, endtime: 40979022, seqnum: 0, connid: 0 98 12:58:57,5382947 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55101 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40978706, endtime: 40979022, seqnum: 0, connid: 0 98 12:58:57,5383003 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55101 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40978709, endtime: 40979022, seqnum: 0, connid: 0 98 12:58:57,5383313 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55101 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40978711, endtime: 40979022, seqnum: 0, connid: 0 98 12:58:57,5383371 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55101 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40978714, endtime: 40979022, seqnum: 0, connid: 0 98 12:58:57,5383438 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55101 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40978717, endtime: 40979022, seqnum: 0, connid: 0 98 12:58:57,5386355 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55101 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40979022, endtime: 40979022, seqnum: 0, connid: 0 98 12:58:58,2027907 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55069 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40978772, endtime: 40979089, seqnum: 0, connid: 0 98 12:58:58,2028087 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55069 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40978773, endtime: 40979089, seqnum: 0, connid: 0 98 12:58:58,2028164 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55069 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40978775, endtime: 40979089, seqnum: 0, connid: 0 98 12:58:58,2028245 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55069 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40978776, endtime: 40979089, seqnum: 0, connid: 0 98 12:58:58,2028308 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55069 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40978778, endtime: 40979089, seqnum: 0, connid: 0 98 12:58:58,2028383 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55069 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40978780, endtime: 40979089, seqnum: 0, connid: 0 98 12:58:58,2028441 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55069 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40978782, endtime: 40979089, seqnum: 0, connid: 0 98 12:58:58,2028513 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55069 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40978783, endtime: 40979089, seqnum: 0, connid: 0 98 12:58:58,2028574 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55069 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40978784, endtime: 40979089, seqnum: 0, connid: 0 98 12:58:58,2029502 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55069 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40978786, endtime: 40979089, seqnum: 0, connid: 0 98 12:58:58,2029583 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55069 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40978787, endtime: 40979089, seqnum: 0, connid: 0 98 12:58:58,2029655 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55069 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40978789, endtime: 40979089, seqnum: 0, connid: 0 98 12:58:58,2031636 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55069 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40978791, endtime: 40979089, seqnum: 0, connid: 0 98 12:58:58,3648679 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55128 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40978718, endtime: 40979105, seqnum: 0, connid: 0 98 12:58:58,3648865 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55128 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40978720, endtime: 40979105, seqnum: 0, connid: 0 98 12:58:58,3648942 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55128 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40978722, endtime: 40979105, seqnum: 0, connid: 0 98 12:58:58,3649014 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55128 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40978723, endtime: 40979105, seqnum: 0, connid: 0 98 12:58:58,3649075 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55128 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40978725, endtime: 40979105, seqnum: 0, connid: 0 98 12:58:58,3649142 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55128 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40978727, endtime: 40979105, seqnum: 0, connid: 0 98 12:58:58,3649197 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55128 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40978728, endtime: 40979105, seqnum: 0, connid: 0 98 12:58:58,3649264 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55128 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40978731, endtime: 40979105, seqnum: 0, connid: 0 98 12:58:58,3649319 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55128 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40978732, endtime: 40979105, seqnum: 0, connid: 0 98 12:58:58,3649610 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55128 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40978735, endtime: 40979105, seqnum: 0, connid: 0 98 12:58:58,3649671 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55128 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40978736, endtime: 40979105, seqnum: 0, connid: 0 98 12:58:58,3649737 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55128 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40978738, endtime: 40979105, seqnum: 0, connid: 0 98 12:58:58,3649793 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55128 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40978739, endtime: 40979105, seqnum: 0, connid: 0 98 12:58:59,5148949 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55101 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40979023, endtime: 40979220, seqnum: 0, connid: 0 98 12:58:59,5149264 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55101 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40979025, endtime: 40979220, seqnum: 0, connid: 0 98 12:58:59,5149353 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55101 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40979028, endtime: 40979220, seqnum: 0, connid: 0 98 12:58:59,5149442 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55101 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40979030, endtime: 40979220, seqnum: 0, connid: 0 98 12:58:59,5149511 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55101 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40979033, endtime: 40979220, seqnum: 0, connid: 0 98 12:58:59,5149589 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55101 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40979036, endtime: 40979220, seqnum: 0, connid: 0 98 12:58:59,5149652 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55101 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40979037, endtime: 40979220, seqnum: 0, connid: 0 98 12:58:59,5149730 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55101 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40979039, endtime: 40979220, seqnum: 0, connid: 0 98 12:58:59,5149796 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55101 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40979042, endtime: 40979220, seqnum: 0, connid: 0 98 12:58:59,5150586 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55101 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40979045, endtime: 40979220, seqnum: 0, connid: 0 98 12:58:59,5150669 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55101 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40979047, endtime: 40979220, seqnum: 0, connid: 0 98 12:58:59,5150741 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55101 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40979050, endtime: 40979220, seqnum: 0, connid: 0 98 12:58:59,5154817 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55101 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40979052, endtime: 40979220, seqnum: 0, connid: 0 98 12:58:59,9874272 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55099 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40978696, endtime: 40979267, seqnum: 0, connid: 0 98 12:58:59,9874430 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55099 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40978919, endtime: 40979267, seqnum: 0, connid: 0 98 12:58:59,9874500 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55099 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40978922, endtime: 40979267, seqnum: 0, connid: 0 98 12:58:59,9874572 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55099 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40978924, endtime: 40979267, seqnum: 0, connid: 0 98 12:58:59,9874627 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55099 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40978925, endtime: 40979267, seqnum: 0, connid: 0 98 12:58:59,9874694 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55099 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40978928, endtime: 40979267, seqnum: 0, connid: 0 98 12:58:59,9874746 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55099 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40978931, endtime: 40979267, seqnum: 0, connid: 0 98 12:58:59,9889087 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55099 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40978934, endtime: 40979268, seqnum: 0, connid: 0 98 12:58:59,9889172 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55099 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40978936, endtime: 40979268, seqnum: 0, connid: 0 98 12:58:59,9889239 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55099 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40978938, endtime: 40979268, seqnum: 0, connid: 0 98 12:58:59,9889294 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55099 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40978941, endtime: 40979268, seqnum: 0, connid: 0 98 12:58:59,9889361 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55099 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40978942, endtime: 40979268, seqnum: 0, connid: 0 98 12:58:59,9889414 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55099 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40978944, endtime: 40979268, seqnum: 0, connid: 0 98 12:59:00,1360016 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55133 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40978915, endtime: 40979282, seqnum: 0, connid: 0 98 12:59:00,1360213 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55133 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40978917, endtime: 40979282, seqnum: 0, connid: 0 98 12:59:00,1360293 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55133 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40978919, endtime: 40979282, seqnum: 0, connid: 0 98 12:59:00,1360371 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55133 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40978922, endtime: 40979282, seqnum: 0, connid: 0 98 12:59:00,1360434 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55133 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40978925, endtime: 40979282, seqnum: 0, connid: 0 98 12:59:00,1360506 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55133 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40978928, endtime: 40979282, seqnum: 0, connid: 0 98 12:59:00,1360565 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55133 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40978931, endtime: 40979282, seqnum: 0, connid: 0 98 12:59:00,1360634 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55133 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40978934, endtime: 40979282, seqnum: 0, connid: 0 98 12:59:00,1360692 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55133 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40978936, endtime: 40979282, seqnum: 0, connid: 0 98 12:59:00,1360994 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55133 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40978938, endtime: 40979282, seqnum: 0, connid: 0 98 12:59:00,1361055 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55133 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40978941, endtime: 40979282, seqnum: 0, connid: 0 98 12:59:00,1362146 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55133 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40978942, endtime: 40979282, seqnum: 0, connid: 0 98 12:59:00,1362260 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55133 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40978944, endtime: 40979282, seqnum: 0, connid: 0 98 12:59:00,6469348 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55101 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40979220, endtime: 40979333, seqnum: 0, connid: 0 98 12:59:00,6469517 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55101 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40979222, endtime: 40979333, seqnum: 0, connid: 0 98 12:59:00,6469589 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55101 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40979223, endtime: 40979333, seqnum: 0, connid: 0 98 12:59:00,6469661 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55101 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40979225, endtime: 40979333, seqnum: 0, connid: 0 98 12:59:00,6469716 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55101 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40979228, endtime: 40979333, seqnum: 0, connid: 0 98 12:59:00,6469783 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55101 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40979230, endtime: 40979333, seqnum: 0, connid: 0 98 12:59:00,6469835 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55101 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40979231, endtime: 40979333, seqnum: 0, connid: 0 98 12:59:00,6469902 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55101 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40979233, endtime: 40979333, seqnum: 0, connid: 0 98 12:59:00,6469955 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55101 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40979236, endtime: 40979333, seqnum: 0, connid: 0 98 12:59:00,6470589 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55101 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40979237, endtime: 40979333, seqnum: 0, connid: 0 98 12:59:00,6470658 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55101 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40979239, endtime: 40979333, seqnum: 0, connid: 0 98 12:59:00,6470725 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55101 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40979241, endtime: 40979333, seqnum: 0, connid: 0 98 12:59:00,7344643 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55127 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40978982, endtime: 40979342, seqnum: 0, connid: 0 98 12:59:00,7344853 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55127 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40978984, endtime: 40979342, seqnum: 0, connid: 0 98 12:59:00,7344931 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55127 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40978986, endtime: 40979342, seqnum: 0, connid: 0 98 12:59:00,7345008 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55127 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40978989, endtime: 40979342, seqnum: 0, connid: 0 98 12:59:00,7345069 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55127 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40978991, endtime: 40979342, seqnum: 0, connid: 0 98 12:59:00,7345136 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55127 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40978992, endtime: 40979342, seqnum: 0, connid: 0 98 12:59:00,7345197 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55127 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40978994, endtime: 40979342, seqnum: 0, connid: 0 98 12:59:00,7345263 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55127 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40978995, endtime: 40979342, seqnum: 0, connid: 0 98 12:59:00,7345321 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55127 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40978997, endtime: 40979342, seqnum: 0, connid: 0 98 12:59:00,7345621 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55127 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40978998, endtime: 40979342, seqnum: 0, connid: 0 98 12:59:00,7345682 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55127 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40979000, endtime: 40979342, seqnum: 0, connid: 0 98 12:59:00,7345748 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55127 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40979001, endtime: 40979342, seqnum: 0, connid: 0 98 12:59:00,7345806 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55127 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40979003, endtime: 40979342, seqnum: 0, connid: 0 98 12:59:00,8071261 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55101 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40979242, endtime: 40979349, seqnum: 0, connid: 0 98 12:59:01,0672019 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55069 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40979089, endtime: 40979375, seqnum: 0, connid: 0 98 12:59:01,0672194 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55069 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40979091, endtime: 40979375, seqnum: 0, connid: 0 98 12:59:01,0672277 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55069 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40979092, endtime: 40979375, seqnum: 0, connid: 0 98 12:59:01,0672360 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55069 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40979095, endtime: 40979375, seqnum: 0, connid: 0 98 12:59:01,0672424 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55069 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40979099, endtime: 40979375, seqnum: 0, connid: 0 98 12:59:01,0672504 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55069 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40979102, endtime: 40979375, seqnum: 0, connid: 0 98 12:59:01,0672568 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55069 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40979102, endtime: 40979375, seqnum: 0, connid: 0 98 12:59:01,0672643 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55069 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40979103, endtime: 40979375, seqnum: 0, connid: 0 98 12:59:01,0672712 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55069 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40979105, endtime: 40979375, seqnum: 0, connid: 0 98 12:59:01,0673499 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55069 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40979106, endtime: 40979375, seqnum: 0, connid: 0 98 12:59:01,0673576 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55069 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40979108, endtime: 40979375, seqnum: 0, connid: 0 98 12:59:01,0673646 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55069 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40979109, endtime: 40979375, seqnum: 0, connid: 0 98 12:59:01,0677486 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55069 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40979111, endtime: 40979375, seqnum: 0, connid: 0 98 12:59:02,1456024 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55101 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40979333, endtime: 40979483, seqnum: 0, connid: 0 98 12:59:02,1456165 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55101 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40979334, endtime: 40979483, seqnum: 0, connid: 0 98 12:59:02,1456246 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55101 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40979336, endtime: 40979483, seqnum: 0, connid: 0 98 12:59:02,1456307 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55101 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40979337, endtime: 40979483, seqnum: 0, connid: 0 98 12:59:02,1456373 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55101 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40979339, endtime: 40979483, seqnum: 0, connid: 0 98 12:59:02,1456429 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55101 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40979342, endtime: 40979483, seqnum: 0, connid: 0 98 12:59:02,1456495 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55101 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40979344, endtime: 40979483, seqnum: 0, connid: 0 98 12:59:02,1456548 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55101 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40979345, endtime: 40979483, seqnum: 0, connid: 0 98 12:59:02,1456614 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55101 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40979350, endtime: 40979483, seqnum: 0, connid: 0 98 12:59:02,1457534 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55101 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40979351, endtime: 40979483, seqnum: 0, connid: 0 98 12:59:02,1457620 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55101 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40979354, endtime: 40979483, seqnum: 0, connid: 0 98 12:59:02,1457678 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55101 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40979356, endtime: 40979483, seqnum: 0, connid: 0 98 12:59:02,1458518 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55101 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40979359, endtime: 40979483, seqnum: 0, connid: 0 98 12:59:02,4278499 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55099 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40979267, endtime: 40979511, seqnum: 0, connid: 0 98 12:59:02,4278660 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55099 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40979269, endtime: 40979511, seqnum: 0, connid: 0 98 12:59:02,4278738 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55099 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40979270, endtime: 40979511, seqnum: 0, connid: 0 98 12:59:02,4278812 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55099 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40979272, endtime: 40979511, seqnum: 0, connid: 0 98 12:59:02,4278873 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55099 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40979273, endtime: 40979511, seqnum: 0, connid: 0 98 12:59:02,4278945 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55099 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40979275, endtime: 40979511, seqnum: 0, connid: 0 98 12:59:02,4279001 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55099 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40979276, endtime: 40979511, seqnum: 0, connid: 0 98 12:59:02,4279070 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55099 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40979278, endtime: 40979511, seqnum: 0, connid: 0 98 12:59:02,4279128 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55099 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40979280, endtime: 40979511, seqnum: 0, connid: 0 98 12:59:02,4279403 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55099 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40979281, endtime: 40979511, seqnum: 0, connid: 0 98 12:59:02,4279464 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55099 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40979283, endtime: 40979511, seqnum: 0, connid: 0 98 12:59:02,4279533 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55099 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40979284, endtime: 40979511, seqnum: 0, connid: 0 98 12:59:02,4279591 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55099 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40979286, endtime: 40979511, seqnum: 0, connid: 0 98 12:59:02,5003987 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55099 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40979511, endtime: 40979519, seqnum: 0, connid: 0 98 12:59:02,7801874 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55128 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40979105, endtime: 40979547, seqnum: 0, connid: 0 98 12:59:02,7802079 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55128 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40979106, endtime: 40979547, seqnum: 0, connid: 0 98 12:59:02,7802162 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55128 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40979108, endtime: 40979547, seqnum: 0, connid: 0 98 12:59:02,7802242 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55128 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40979109, endtime: 40979547, seqnum: 0, connid: 0 98 12:59:02,7802303 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55128 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40979111, endtime: 40979547, seqnum: 0, connid: 0 98 12:59:02,7802375 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55128 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40979113, endtime: 40979547, seqnum: 0, connid: 0 98 12:59:02,7802433 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55128 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40979116, endtime: 40979547, seqnum: 0, connid: 0 98 12:59:02,7802503 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55128 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40979117, endtime: 40979547, seqnum: 0, connid: 0 98 12:59:02,7802558 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55128 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40979119, endtime: 40979547, seqnum: 0, connid: 0 98 12:59:02,7802846 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55128 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40979120, endtime: 40979547, seqnum: 0, connid: 0 98 12:59:02,7803966 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55128 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40979123, endtime: 40979547, seqnum: 0, connid: 0 98 12:59:02,7804082 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55128 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40979125, endtime: 40979547, seqnum: 0, connid: 0 98 12:59:02,7804148 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55128 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40979127, endtime: 40979547, seqnum: 0, connid: 0 98 12:59:02,8693978 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55133 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40979282, endtime: 40979556, seqnum: 0, connid: 0 98 12:59:02,8694174 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55133 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40979284, endtime: 40979556, seqnum: 0, connid: 0 98 12:59:02,8694260 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55133 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40979286, endtime: 40979556, seqnum: 0, connid: 0 98 12:59:02,8694341 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55133 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40979289, endtime: 40979556, seqnum: 0, connid: 0 98 12:59:02,8694407 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55133 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40979291, endtime: 40979556, seqnum: 0, connid: 0 98 12:59:02,8694485 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55133 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40979292, endtime: 40979556, seqnum: 0, connid: 0 98 12:59:02,8694546 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55133 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40979294, endtime: 40979556, seqnum: 0, connid: 0 98 12:59:02,8694620 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55133 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40979296, endtime: 40979556, seqnum: 0, connid: 0 98 12:59:02,8694681 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55133 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40979299, endtime: 40979556, seqnum: 0, connid: 0 98 12:59:02,8694961 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55133 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40979302, endtime: 40979556, seqnum: 0, connid: 0 98 12:59:02,8695030 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55133 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40979305, endtime: 40979556, seqnum: 0, connid: 0 98 12:59:02,8695102 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55133 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40979308, endtime: 40979556, seqnum: 0, connid: 0 98 12:59:02,8695166 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55133 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40979309, endtime: 40979556, seqnum: 0, connid: 0 98 12:59:03,8682120 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55127 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40979342, endtime: 40979655, seqnum: 0, connid: 0 98 12:59:03,8682308 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55127 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40979344, endtime: 40979655, seqnum: 0, connid: 0 98 12:59:03,8682386 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55127 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40979345, endtime: 40979655, seqnum: 0, connid: 0 98 12:59:03,8682466 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55127 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40979350, endtime: 40979655, seqnum: 0, connid: 0 98 12:59:03,8682524 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55127 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40979351, endtime: 40979655, seqnum: 0, connid: 0 98 12:59:03,8682596 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55127 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40979354, endtime: 40979655, seqnum: 0, connid: 0 98 12:59:03,8682652 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55127 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40979355, endtime: 40979655, seqnum: 0, connid: 0 98 12:59:03,8682721 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55127 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40979356, endtime: 40979655, seqnum: 0, connid: 0 98 12:59:03,8682785 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55127 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40979359, endtime: 40979655, seqnum: 0, connid: 0 98 12:59:03,8683297 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55127 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40979361, endtime: 40979655, seqnum: 0, connid: 0 98 12:59:03,8683372 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55127 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40979362, endtime: 40979655, seqnum: 0, connid: 0 98 12:59:03,8683438 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55127 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40979364, endtime: 40979655, seqnum: 0, connid: 0 98 12:59:03,8683494 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55127 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40979367, endtime: 40979655, seqnum: 0, connid: 0 98 12:59:04,0225009 MCLauncher.exe 6080 TCP TCPCopy WIN-0UOTFKKVN1S:54920 -> sheltex.company:8000 SUCCESS Length: 2, seqnum: 0, connid: 0 98 12:59:04,0225172 MCLauncher.exe 6080 TCP Receive WIN-0UOTFKKVN1S:54920 -> sheltex.company:8000 SUCCESS Length: 2, seqnum: 0, connid: 0 98 12:59:04,0229489 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54920 -> sheltex.company:8000 SUCCESS Length: 2, startime: 40979671, endtime: 40979671, seqnum: 0, connid: 0 98 12:59:04,5086991 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55099 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40979512, endtime: 40979719, seqnum: 0, connid: 0 98 12:59:04,5087193 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55099 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40979516, endtime: 40979719, seqnum: 0, connid: 0 98 12:59:04,5087298 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55099 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40979517, endtime: 40979719, seqnum: 0, connid: 0 98 12:59:04,5087376 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55099 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40979521, endtime: 40979719, seqnum: 0, connid: 0 98 12:59:04,5087459 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55099 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40979523, endtime: 40979719, seqnum: 0, connid: 0 98 12:59:04,5087522 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55099 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40979527, endtime: 40979719, seqnum: 0, connid: 0 98 12:59:04,5087594 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55099 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40979528, endtime: 40979719, seqnum: 0, connid: 0 98 12:59:04,5087655 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55099 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40979530, endtime: 40979719, seqnum: 0, connid: 0 98 12:59:04,5087725 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55099 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40979533, endtime: 40979719, seqnum: 0, connid: 0 98 12:59:04,5088597 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55099 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40979534, endtime: 40979719, seqnum: 0, connid: 0 98 12:59:04,5088692 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55099 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40979536, endtime: 40979719, seqnum: 0, connid: 0 98 12:59:04,5088755 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55099 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40979537, endtime: 40979719, seqnum: 0, connid: 0 98 12:59:05,2483279 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55069 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40979375, endtime: 40979793, seqnum: 0, connid: 0 98 12:59:05,2483459 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55069 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40979376, endtime: 40979793, seqnum: 0, connid: 0 98 12:59:05,2483539 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55069 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40979378, endtime: 40979793, seqnum: 0, connid: 0 98 12:59:05,2483617 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55069 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40979380, endtime: 40979793, seqnum: 0, connid: 0 98 12:59:05,2483678 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55069 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40979381, endtime: 40979793, seqnum: 0, connid: 0 98 12:59:05,2483747 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55069 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40979383, endtime: 40979793, seqnum: 0, connid: 0 98 12:59:05,2483805 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55069 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40979384, endtime: 40979793, seqnum: 0, connid: 0 98 12:59:05,2483874 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55069 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40979387, endtime: 40979793, seqnum: 0, connid: 0 98 12:59:05,2483933 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55069 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40979389, endtime: 40979793, seqnum: 0, connid: 0 98 12:59:05,2484223 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55069 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40979391, endtime: 40979793, seqnum: 0, connid: 0 98 12:59:05,2484284 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55069 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40979392, endtime: 40979793, seqnum: 0, connid: 0 98 12:59:05,2484354 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55069 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40979395, endtime: 40979793, seqnum: 0, connid: 0 98 12:59:05,2484412 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55069 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40979397, endtime: 40979793, seqnum: 0, connid: 0 98 12:59:05,2928943 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55101 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40979483, endtime: 40979798, seqnum: 0, connid: 0 98 12:59:05,2929137 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55101 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40979484, endtime: 40979798, seqnum: 0, connid: 0 98 12:59:05,2929217 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55101 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40979486, endtime: 40979798, seqnum: 0, connid: 0 98 12:59:05,2929297 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55101 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40979489, endtime: 40979798, seqnum: 0, connid: 0 98 12:59:05,2929358 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55101 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40979491, endtime: 40979798, seqnum: 0, connid: 0 98 12:59:05,2929430 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55101 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40979492, endtime: 40979798, seqnum: 0, connid: 0 98 12:59:05,2929489 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55101 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40979494, endtime: 40979798, seqnum: 0, connid: 0 98 12:59:05,2929558 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55101 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40979495, endtime: 40979798, seqnum: 0, connid: 0 98 12:59:05,2929619 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55101 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40979497, endtime: 40979798, seqnum: 0, connid: 0 98 12:59:05,2930406 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55101 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40979498, endtime: 40979798, seqnum: 0, connid: 0 98 12:59:05,2930483 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55101 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40979500, endtime: 40979798, seqnum: 0, connid: 0 98 12:59:05,2930555 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55101 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40979501, endtime: 40979798, seqnum: 0, connid: 0 98 12:59:05,2935440 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55101 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40979503, endtime: 40979798, seqnum: 0, connid: 0 98 12:59:05,5954863 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55128 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40979547, endtime: 40979828, seqnum: 0, connid: 0 98 12:59:05,5955040 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55128 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40979548, endtime: 40979828, seqnum: 0, connid: 0 98 12:59:05,5955112 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55128 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40979550, endtime: 40979828, seqnum: 0, connid: 0 98 12:59:05,5955187 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55128 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40979552, endtime: 40979828, seqnum: 0, connid: 0 98 12:59:05,5955245 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55128 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40979555, endtime: 40979828, seqnum: 0, connid: 0 98 12:59:05,5955309 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55128 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40979556, endtime: 40979828, seqnum: 0, connid: 0 98 12:59:05,5955364 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55128 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40979558, endtime: 40979828, seqnum: 0, connid: 0 98 12:59:05,5955428 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55128 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40979561, endtime: 40979828, seqnum: 0, connid: 0 98 12:59:05,5955484 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55128 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40979562, endtime: 40979828, seqnum: 0, connid: 0 98 12:59:05,5955797 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55128 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40979564, endtime: 40979828, seqnum: 0, connid: 0 98 12:59:05,5955855 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55128 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40979566, endtime: 40979828, seqnum: 0, connid: 0 98 12:59:05,5955919 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55128 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40979567, endtime: 40979828, seqnum: 0, connid: 0 98 12:59:05,5955971 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55128 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40979569, endtime: 40979828, seqnum: 0, connid: 0 98 12:59:07,0287676 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55069 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40979793, endtime: 40979971, seqnum: 0, connid: 0 98 12:59:07,0287895 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55069 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40979795, endtime: 40979971, seqnum: 0, connid: 0 98 12:59:07,0287986 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55069 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40979798, endtime: 40979971, seqnum: 0, connid: 0 98 12:59:07,0288072 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55069 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40979800, endtime: 40979971, seqnum: 0, connid: 0 98 12:59:07,0288142 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55069 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40979801, endtime: 40979971, seqnum: 0, connid: 0 98 12:59:07,0288216 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55069 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40979803, endtime: 40979971, seqnum: 0, connid: 0 98 12:59:07,0288280 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55069 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40979805, endtime: 40979971, seqnum: 0, connid: 0 98 12:59:07,0288355 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55069 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40979806, endtime: 40979971, seqnum: 0, connid: 0 98 12:59:07,0288419 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55069 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40979808, endtime: 40979971, seqnum: 0, connid: 0 98 12:59:07,0288745 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55069 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40979809, endtime: 40979971, seqnum: 0, connid: 0 98 12:59:07,0288812 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55069 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40979813, endtime: 40979971, seqnum: 0, connid: 0 98 12:59:07,0288884 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55069 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40979816, endtime: 40979971, seqnum: 0, connid: 0 98 12:59:07,0288948 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55069 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40979819, endtime: 40979971, seqnum: 0, connid: 0 98 12:59:07,5168248 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55127 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40979655, endtime: 40980020, seqnum: 0, connid: 0 98 12:59:07,5168431 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55127 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40979658, endtime: 40980020, seqnum: 0, connid: 0 98 12:59:07,5168503 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55127 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40979659, endtime: 40980020, seqnum: 0, connid: 0 98 12:59:07,5168575 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55127 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40979661, endtime: 40980020, seqnum: 0, connid: 0 98 12:59:07,5168633 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55127 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40979664, endtime: 40980020, seqnum: 0, connid: 0 98 12:59:07,5168700 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55127 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40979666, endtime: 40980020, seqnum: 0, connid: 0 98 12:59:07,5168755 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55127 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40979667, endtime: 40980020, seqnum: 0, connid: 0 98 12:59:07,5168822 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55127 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40979669, endtime: 40980020, seqnum: 0, connid: 0 98 12:59:07,5168877 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55127 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40979672, endtime: 40980020, seqnum: 0, connid: 0 98 12:59:07,5169190 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55127 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40979673, endtime: 40980020, seqnum: 0, connid: 0 98 12:59:07,5169246 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55127 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40979675, endtime: 40980020, seqnum: 0, connid: 0 98 12:59:07,5169312 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55127 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40979676, endtime: 40980020, seqnum: 0, connid: 0 98 12:59:07,5169365 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55127 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40979678, endtime: 40980020, seqnum: 0, connid: 0 98 12:59:07,7376507 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55133 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40979556, endtime: 40980042, seqnum: 0, connid: 0 98 12:59:07,7376687 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55133 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40979556, endtime: 40980042, seqnum: 0, connid: 0 98 12:59:07,7376759 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55133 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40979558, endtime: 40980042, seqnum: 0, connid: 0 98 12:59:07,7376837 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55133 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40979561, endtime: 40980042, seqnum: 0, connid: 0 98 12:59:07,7376892 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55133 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40979562, endtime: 40980042, seqnum: 0, connid: 0 98 12:59:07,7376958 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55133 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40979564, endtime: 40980042, seqnum: 0, connid: 0 98 12:59:07,7377011 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55133 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40979566, endtime: 40980042, seqnum: 0, connid: 0 98 12:59:07,7377080 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55133 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40979567, endtime: 40980042, seqnum: 0, connid: 0 98 12:59:07,7377133 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55133 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40979569, endtime: 40980042, seqnum: 0, connid: 0 98 12:59:07,7377418 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55133 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40979570, endtime: 40980042, seqnum: 0, connid: 0 98 12:59:07,7377474 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55133 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40979572, endtime: 40980042, seqnum: 0, connid: 0 98 12:59:07,7377538 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55133 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40979573, endtime: 40980042, seqnum: 0, connid: 0 98 12:59:07,7377590 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55133 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40979575, endtime: 40980042, seqnum: 0, connid: 0 98 12:59:09,0078308 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55069 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40979971, endtime: 40980169, seqnum: 0, connid: 0 98 12:59:09,0078521 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55069 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40979973, endtime: 40980169, seqnum: 0, connid: 0 98 12:59:09,0078598 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55069 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40979975, endtime: 40980169, seqnum: 0, connid: 0 98 12:59:09,0078679 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55069 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40979976, endtime: 40980169, seqnum: 0, connid: 0 98 12:59:09,0078740 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55069 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40979978, endtime: 40980169, seqnum: 0, connid: 0 98 12:59:09,0082483 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55069 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40979980, endtime: 40980169, seqnum: 0, connid: 0 98 12:59:09,0082707 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55069 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40979981, endtime: 40980169, seqnum: 0, connid: 0 98 12:59:09,0082790 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55069 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40979983, endtime: 40980169, seqnum: 0, connid: 0 98 12:59:09,0082854 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55069 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40979984, endtime: 40980169, seqnum: 0, connid: 0 98 12:59:09,0082929 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55069 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40979986, endtime: 40980169, seqnum: 0, connid: 0 98 12:59:09,0082993 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55069 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40979987, endtime: 40980169, seqnum: 0, connid: 0 98 12:59:09,0083065 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55069 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40979989, endtime: 40980169, seqnum: 0, connid: 0 98 12:59:09,0083128 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55069 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40979991, endtime: 40980169, seqnum: 0, connid: 0 98 12:59:09,4328187 MCLauncher.exe 6080 TCP Disconnect WIN-0UOTFKKVN1S:55069 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 0, seqnum: 0, connid: 0 98 12:59:09,5209106 MCLauncher.exe 6080 TCP Connect WIN-0UOTFKKVN1S:55174 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 0, mss: 1460, sackopt: 0, tsopt: 0, wsopt: 0, rcvwin: 64240, rcvwinscale: 0, sndwinscale: 0, seqnum: 0, connid: 0 98 12:59:09,5213178 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55174 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40980221, endtime: 40980221, seqnum: 0, connid: 0 98 12:59:09,5335288 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55174 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40980222, endtime: 40980222, seqnum: 0, connid: 0 98 12:59:09,5495202 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55174 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40980223, endtime: 40980224, seqnum: 0, connid: 0 98 12:59:09,5806167 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55174 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40980227, endtime: 40980227, seqnum: 0, connid: 0 98 12:59:09,6128405 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55174 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40980230, endtime: 40980230, seqnum: 0, connid: 0 98 12:59:09,6429133 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55174 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40980233, endtime: 40980233, seqnum: 0, connid: 0 98 12:59:09,6568761 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55174 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40980234, endtime: 40980234, seqnum: 0, connid: 0 98 12:59:09,6731986 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55174 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40980236, endtime: 40980236, seqnum: 0, connid: 0 98 12:59:09,6897940 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55174 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40980238, endtime: 40980238, seqnum: 0, connid: 0 98 12:59:09,7050024 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55174 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40980239, endtime: 40980239, seqnum: 0, connid: 0 98 12:59:09,7213775 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55174 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40980241, endtime: 40980241, seqnum: 0, connid: 0 98 12:59:09,7371947 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55174 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40980242, endtime: 40980242, seqnum: 0, connid: 0 98 12:59:09,7530348 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55174 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40980244, endtime: 40980244, seqnum: 0, connid: 0 98 12:59:09,7530544 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55133 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40980042, endtime: 40980244, seqnum: 0, connid: 0 98 12:59:09,7530630 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55133 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40980044, endtime: 40980244, seqnum: 0, connid: 0 98 12:59:09,7530691 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55133 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40980045, endtime: 40980244, seqnum: 0, connid: 0 98 12:59:09,7530758 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55133 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40980048, endtime: 40980244, seqnum: 0, connid: 0 98 12:59:09,7530813 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55133 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40980050, endtime: 40980244, seqnum: 0, connid: 0 98 12:59:09,7530877 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55133 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40980051, endtime: 40980244, seqnum: 0, connid: 0 98 12:59:09,7530932 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55133 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40980053, endtime: 40980244, seqnum: 0, connid: 0 98 12:59:09,7530996 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55133 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40980056, endtime: 40980244, seqnum: 0, connid: 0 98 12:59:09,7531254 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55133 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40980058, endtime: 40980244, seqnum: 0, connid: 0 98 12:59:09,7531323 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55133 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40980059, endtime: 40980244, seqnum: 0, connid: 0 98 12:59:09,7531376 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55133 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40980061, endtime: 40980244, seqnum: 0, connid: 0 98 12:59:09,7531439 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55133 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40980062, endtime: 40980244, seqnum: 0, connid: 0 98 12:59:09,7531495 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55133 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40980064, endtime: 40980244, seqnum: 0, connid: 0 98 12:59:09,7728640 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55174 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40980245, endtime: 40980246, seqnum: 0, connid: 0 98 12:59:09,7822938 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55174 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40980247, endtime: 40980247, seqnum: 0, connid: 0 98 12:59:09,8000811 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55174 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40980248, endtime: 40980249, seqnum: 0, connid: 0 98 12:59:09,8136219 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55174 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40980250, endtime: 40980250, seqnum: 0, connid: 0 98 12:59:09,8297510 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55174 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40980251, endtime: 40980252, seqnum: 0, connid: 0 98 12:59:09,8452038 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55174 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40980253, endtime: 40980253, seqnum: 0, connid: 0 98 12:59:09,8619425 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55174 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40980255, endtime: 40980255, seqnum: 0, connid: 0 98 12:59:09,8894336 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55174 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40980256, endtime: 40980258, seqnum: 0, connid: 0 98 12:59:09,9089993 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55174 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40980259, endtime: 40980260, seqnum: 0, connid: 0 98 12:59:09,9496897 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55174 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40980262, endtime: 40980264, seqnum: 0, connid: 0 98 12:59:09,9702952 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55174 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40980266, endtime: 40980266, seqnum: 0, connid: 0 98 12:59:09,9891500 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55174 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40980267, endtime: 40980268, seqnum: 0, connid: 0 98 12:59:10,0037514 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55174 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40980269, endtime: 40980269, seqnum: 0, connid: 0 98 12:59:10,0191028 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55174 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40980270, endtime: 40980271, seqnum: 0, connid: 0 98 12:59:10,0505786 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55174 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40980273, endtime: 40980274, seqnum: 0, connid: 0 98 12:59:10,0652689 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55174 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40980275, endtime: 40980275, seqnum: 0, connid: 0 98 12:59:10,0794148 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55174 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40980276, endtime: 40980277, seqnum: 0, connid: 0 98 12:59:10,0952328 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55174 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40980278, endtime: 40980278, seqnum: 0, connid: 0 98 12:59:10,1105407 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55174 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40980280, endtime: 40980280, seqnum: 0, connid: 0 98 12:59:10,1275977 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55174 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40980281, endtime: 40980281, seqnum: 0, connid: 0 98 12:59:10,1421780 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55174 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40980283, endtime: 40980283, seqnum: 0, connid: 0 98 12:59:10,1575837 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55174 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40980284, endtime: 40980284, seqnum: 0, connid: 0 98 12:59:10,1743423 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55174 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40980286, endtime: 40980286, seqnum: 0, connid: 0 98 12:59:10,2142009 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55174 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40980289, endtime: 40980290, seqnum: 0, connid: 0 98 12:59:10,5137661 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55128 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40979828, endtime: 40980320, seqnum: 0, connid: 0 98 12:59:10,5137816 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55128 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40979830, endtime: 40980320, seqnum: 0, connid: 0 98 12:59:10,5137997 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55128 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40979831, endtime: 40980320, seqnum: 0, connid: 0 98 12:59:10,5138080 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55128 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40979834, endtime: 40980320, seqnum: 0, connid: 0 98 12:59:10,5138143 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55128 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40979836, endtime: 40980320, seqnum: 0, connid: 0 98 12:59:10,5138218 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55128 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40979838, endtime: 40980320, seqnum: 0, connid: 0 98 12:59:10,5138279 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55128 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40979841, endtime: 40980320, seqnum: 0, connid: 0 98 12:59:10,5138351 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55128 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40979842, endtime: 40980320, seqnum: 0, connid: 0 98 12:59:10,5138412 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55128 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40979845, endtime: 40980320, seqnum: 0, connid: 0 98 12:59:10,5138739 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55128 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40979847, endtime: 40980320, seqnum: 0, connid: 0 98 12:59:10,5138797 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55128 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40979849, endtime: 40980320, seqnum: 0, connid: 0 98 12:59:10,5138864 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55128 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40979850, endtime: 40980320, seqnum: 0, connid: 0 98 12:59:10,5138919 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55128 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40979852, endtime: 40980320, seqnum: 0, connid: 0 98 12:59:11,3779314 MCLauncher.exe 6080 TCP Disconnect WIN-0UOTFKKVN1S:55127 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 0, seqnum: 0, connid: 0 98 12:59:11,4729868 MCLauncher.exe 6080 TCP Connect WIN-0UOTFKKVN1S:55177 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 0, mss: 1460, sackopt: 0, tsopt: 0, wsopt: 0, rcvwin: 64240, rcvwinscale: 0, sndwinscale: 0, seqnum: 0, connid: 0 98 12:59:11,4735188 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55177 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40980416, endtime: 40980416, seqnum: 0, connid: 0 98 12:59:11,4858810 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55177 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40980417, endtime: 40980417, seqnum: 0, connid: 0 98 12:59:11,5176039 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55177 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40980420, endtime: 40980420, seqnum: 0, connid: 0 98 12:59:11,5317332 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55177 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40980422, endtime: 40980422, seqnum: 0, connid: 0 98 12:59:11,5487120 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55177 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40980423, endtime: 40980423, seqnum: 0, connid: 0 98 12:59:11,5637723 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55177 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40980425, endtime: 40980425, seqnum: 0, connid: 0 98 12:59:11,5957481 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55177 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40980428, endtime: 40980428, seqnum: 0, connid: 0 98 12:59:11,6111527 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55177 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40980430, endtime: 40980430, seqnum: 0, connid: 0 98 12:59:11,6427302 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55177 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40980433, endtime: 40980433, seqnum: 0, connid: 0 98 12:59:11,6570307 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55177 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40980434, endtime: 40980434, seqnum: 0, connid: 0 98 12:59:11,6726284 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55177 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40980436, endtime: 40980436, seqnum: 0, connid: 0 98 12:59:11,6893701 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55177 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40980437, endtime: 40980438, seqnum: 0, connid: 0 98 12:59:11,7040732 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55177 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40980439, endtime: 40980439, seqnum: 0, connid: 0 98 12:59:11,7214540 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55177 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40980441, endtime: 40980441, seqnum: 0, connid: 0 98 12:59:11,7522579 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55177 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40980444, endtime: 40980444, seqnum: 0, connid: 0 98 12:59:11,7697554 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55177 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40980445, endtime: 40980446, seqnum: 0, connid: 0 98 12:59:11,8088416 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55177 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40980449, endtime: 40980449, seqnum: 0, connid: 0 98 12:59:11,8393513 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55177 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40980452, endtime: 40980453, seqnum: 0, connid: 0 98 12:59:11,8621467 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55177 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40980455, endtime: 40980455, seqnum: 0, connid: 0 98 12:59:11,8989355 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55177 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40980458, endtime: 40980459, seqnum: 0, connid: 0 98 12:59:11,9069544 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55177 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40980459, endtime: 40980459, seqnum: 0, connid: 0 98 12:59:11,9265907 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55177 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40980461, endtime: 40980461, seqnum: 0, connid: 0 98 12:59:11,9390303 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55177 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40980462, endtime: 40980463, seqnum: 0, connid: 0 98 12:59:11,9563172 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55177 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40980464, endtime: 40980464, seqnum: 0, connid: 0 98 12:59:11,9707097 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55177 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40980466, endtime: 40980466, seqnum: 0, connid: 0 98 12:59:11,9853964 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55177 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40980467, endtime: 40980467, seqnum: 0, connid: 0 98 12:59:12,0028961 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55177 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40980469, endtime: 40980469, seqnum: 0, connid: 0 98 12:59:12,0355253 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55177 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40980472, endtime: 40980472, seqnum: 0, connid: 0 98 12:59:12,0481596 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55177 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40980473, endtime: 40980473, seqnum: 0, connid: 0 98 12:59:12,0653922 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55177 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40980475, endtime: 40980475, seqnum: 0, connid: 0 98 12:59:12,0806419 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55177 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40980476, endtime: 40980477, seqnum: 0, connid: 0 98 12:59:12,0967998 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55177 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40980478, endtime: 40980478, seqnum: 0, connid: 0 98 12:59:12,1109754 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55177 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40980480, endtime: 40980480, seqnum: 0, connid: 0 98 12:59:12,1264714 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55177 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40980481, endtime: 40980481, seqnum: 0, connid: 0 98 12:59:12,1420686 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55177 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40980483, endtime: 40980483, seqnum: 0, connid: 0 98 12:59:12,1590845 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55177 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40980484, endtime: 40980485, seqnum: 0, connid: 0 98 12:59:12,1733213 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55177 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40980486, endtime: 40980486, seqnum: 0, connid: 0 98 12:59:12,2633645 MCLauncher.exe 6080 TCP Disconnect WIN-0UOTFKKVN1S:55099 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 0, seqnum: 0, connid: 0 98 12:59:12,3551862 MCLauncher.exe 6080 TCP Connect WIN-0UOTFKKVN1S:55178 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 0, mss: 1460, sackopt: 0, tsopt: 0, wsopt: 0, rcvwin: 64240, rcvwinscale: 0, sndwinscale: 0, seqnum: 0, connid: 0 98 12:59:12,3555364 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55178 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40980504, endtime: 40980504, seqnum: 0, connid: 0 98 12:59:12,3764865 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55178 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40980506, endtime: 40980506, seqnum: 0, connid: 0 98 12:59:12,4185605 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55178 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40980510, endtime: 40980510, seqnum: 0, connid: 0 98 12:59:12,4391765 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55178 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40980512, endtime: 40980513, seqnum: 0, connid: 0 98 12:59:12,4568070 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55178 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40980514, endtime: 40980514, seqnum: 0, connid: 0 98 12:59:12,4700098 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55178 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40980516, endtime: 40980516, seqnum: 0, connid: 0 98 12:59:12,4860062 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55178 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40980517, endtime: 40980517, seqnum: 0, connid: 0 98 12:59:12,5027152 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55178 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40980519, endtime: 40980519, seqnum: 0, connid: 0 98 12:59:12,5394163 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55178 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40980522, endtime: 40980523, seqnum: 0, connid: 0 98 12:59:12,5472337 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55178 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40980523, endtime: 40980523, seqnum: 0, connid: 0 98 12:59:12,5645164 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55178 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40980525, endtime: 40980525, seqnum: 0, connid: 0 98 12:59:12,5705310 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55178 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40980526, endtime: 40980526, seqnum: 0, connid: 0 98 12:59:12,6020547 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55178 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40980528, endtime: 40980529, seqnum: 0, connid: 0 98 12:59:12,6105224 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55178 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40980530, endtime: 40980530, seqnum: 0, connid: 0 98 12:59:12,6276134 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55178 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40980531, endtime: 40980531, seqnum: 0, connid: 0 98 12:59:12,6421520 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55178 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40980533, endtime: 40980533, seqnum: 0, connid: 0 98 12:59:12,6589460 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55178 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40980534, endtime: 40980535, seqnum: 0, connid: 0 98 12:59:12,6730398 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55178 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40980536, endtime: 40980536, seqnum: 0, connid: 0 98 12:59:12,6901597 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55178 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40980537, endtime: 40980538, seqnum: 0, connid: 0 98 12:59:12,7048317 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55178 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40980539, endtime: 40980539, seqnum: 0, connid: 0 98 12:59:12,7206212 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55178 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40980541, endtime: 40980541, seqnum: 0, connid: 0 98 12:59:12,7524325 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55178 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40980544, endtime: 40980544, seqnum: 0, connid: 0 98 12:59:12,7793163 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55178 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40980545, endtime: 40980547, seqnum: 0, connid: 0 98 12:59:12,7975707 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55178 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40980548, endtime: 40980548, seqnum: 0, connid: 0 98 12:59:12,8172650 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55178 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40980550, endtime: 40980550, seqnum: 0, connid: 0 98 12:59:13,1511153 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55178 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40980552, endtime: 40980584, seqnum: 0, connid: 0 98 12:59:13,1511341 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55178 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40980555, endtime: 40980584, seqnum: 0, connid: 0 98 12:59:13,1511416 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55178 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40980556, endtime: 40980584, seqnum: 0, connid: 0 98 12:59:13,1511491 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55178 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40980560, endtime: 40980584, seqnum: 0, connid: 0 98 12:59:13,1511552 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55178 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40980561, endtime: 40980584, seqnum: 0, connid: 0 98 12:59:13,1511618 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55178 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40980563, endtime: 40980584, seqnum: 0, connid: 0 98 12:59:13,1511676 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55178 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40980566, endtime: 40980584, seqnum: 0, connid: 0 98 12:59:13,1511746 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55178 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40980567, endtime: 40980584, seqnum: 0, connid: 0 98 12:59:13,1511798 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55178 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40980569, endtime: 40980584, seqnum: 0, connid: 0 98 12:59:13,1512103 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55178 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40980570, endtime: 40980584, seqnum: 0, connid: 0 98 12:59:13,1512161 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55178 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40980572, endtime: 40980584, seqnum: 0, connid: 0 98 12:59:13,1512228 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55178 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40980573, endtime: 40980584, seqnum: 0, connid: 0 98 12:59:13,1512283 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55178 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40980575, endtime: 40980584, seqnum: 0, connid: 0 98 12:59:13,4030008 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55177 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40980487, endtime: 40980609, seqnum: 0, connid: 0 98 12:59:14,0526446 MCLauncher.exe 6080 TCP TCPCopy WIN-0UOTFKKVN1S:54920 -> sheltex.company:8000 SUCCESS Length: 2, seqnum: 0, connid: 0 98 12:59:14,0526573 MCLauncher.exe 6080 TCP Receive WIN-0UOTFKKVN1S:54920 -> sheltex.company:8000 SUCCESS Length: 2, seqnum: 0, connid: 0 98 12:59:14,0529660 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54920 -> sheltex.company:8000 SUCCESS Length: 2, startime: 40980674, endtime: 40980674, seqnum: 0, connid: 0 98 12:59:14,1838378 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55101 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40979798, endtime: 40980687, seqnum: 0, connid: 0 98 12:59:14,1838550 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55101 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40979800, endtime: 40980687, seqnum: 0, connid: 0 98 12:59:14,1838627 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55101 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40979801, endtime: 40980687, seqnum: 0, connid: 0 98 12:59:14,1838708 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55101 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40979803, endtime: 40980687, seqnum: 0, connid: 0 98 12:59:14,1838769 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55101 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40979805, endtime: 40980687, seqnum: 0, connid: 0 98 12:59:14,1838841 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55101 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40979806, endtime: 40980687, seqnum: 0, connid: 0 98 12:59:14,1838899 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55101 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40979808, endtime: 40980687, seqnum: 0, connid: 0 98 12:59:14,1838971 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55101 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40979809, endtime: 40980687, seqnum: 0, connid: 0 98 12:59:14,1839029 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55101 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40979813, endtime: 40980687, seqnum: 0, connid: 0 98 12:59:14,1839331 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55101 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40979816, endtime: 40980687, seqnum: 0, connid: 0 98 12:59:14,1839392 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55101 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40979819, endtime: 40980687, seqnum: 0, connid: 0 98 12:59:14,1839464 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55101 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40979820, endtime: 40980687, seqnum: 0, connid: 0 98 12:59:14,1839525 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55101 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40979823, endtime: 40980687, seqnum: 0, connid: 0 98 12:59:14,2776318 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55101 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40980687, endtime: 40980696, seqnum: 0, connid: 0 98 12:59:14,2776498 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55101 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40980689, endtime: 40980696, seqnum: 0, connid: 0 98 12:59:14,2776581 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55101 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40980691, endtime: 40980696, seqnum: 0, connid: 0 98 12:59:14,2776659 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55101 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40980692, endtime: 40980696, seqnum: 0, connid: 0 98 12:59:14,2776723 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55101 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40980694, endtime: 40980696, seqnum: 0, connid: 0 98 12:59:14,2833336 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55101 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40980697, endtime: 40980697, seqnum: 0, connid: 0 98 12:59:14,3009375 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55101 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40980698, endtime: 40980699, seqnum: 0, connid: 0 98 12:59:14,3290193 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55101 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40980701, endtime: 40980702, seqnum: 0, connid: 0 98 12:59:14,3347289 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55133 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40980244, endtime: 40980702, seqnum: 0, connid: 0 98 12:59:14,3347480 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55133 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40980245, endtime: 40980702, seqnum: 0, connid: 0 98 12:59:14,3347566 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55133 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40980247, endtime: 40980702, seqnum: 0, connid: 0 98 12:59:14,3347649 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55133 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40980248, endtime: 40980702, seqnum: 0, connid: 0 98 12:59:14,3347713 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55133 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40980250, endtime: 40980702, seqnum: 0, connid: 0 98 12:59:14,3347785 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55133 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40980251, endtime: 40980702, seqnum: 0, connid: 0 98 12:59:14,3347846 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55133 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40980253, endtime: 40980702, seqnum: 0, connid: 0 98 12:59:14,3347918 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55133 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40980255, endtime: 40980702, seqnum: 0, connid: 0 98 12:59:14,3347976 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55133 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40980256, endtime: 40980702, seqnum: 0, connid: 0 98 12:59:14,3348262 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55133 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40980259, endtime: 40980702, seqnum: 0, connid: 0 98 12:59:14,3348325 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55133 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40980262, endtime: 40980702, seqnum: 0, connid: 0 98 12:59:14,3348397 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55133 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40980266, endtime: 40980702, seqnum: 0, connid: 0 98 12:59:14,3348458 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55133 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40980267, endtime: 40980702, seqnum: 0, connid: 0 98 12:59:14,3349525 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55101 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40980702, endtime: 40980702, seqnum: 0, connid: 0 98 12:59:14,3409028 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55101 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40980703, endtime: 40980703, seqnum: 0, connid: 0 98 12:59:14,3608946 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55101 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40980705, endtime: 40980705, seqnum: 0, connid: 0 98 12:59:14,3915340 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55101 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40980708, endtime: 40980708, seqnum: 0, connid: 0 98 12:59:14,4081543 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55101 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40980709, endtime: 40980709, seqnum: 0, connid: 0 98 12:59:14,5834909 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55128 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40980320, endtime: 40980727, seqnum: 0, connid: 0 98 12:59:14,5835078 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55128 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40980322, endtime: 40980727, seqnum: 0, connid: 0 98 12:59:14,5835153 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55128 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40980323, endtime: 40980727, seqnum: 0, connid: 0 98 12:59:14,5835225 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55128 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40980327, endtime: 40980727, seqnum: 0, connid: 0 98 12:59:14,5835280 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55128 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40980328, endtime: 40980727, seqnum: 0, connid: 0 98 12:59:14,5835347 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55128 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40980330, endtime: 40980727, seqnum: 0, connid: 0 98 12:59:14,5835402 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55128 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40980331, endtime: 40980727, seqnum: 0, connid: 0 98 12:59:14,5835468 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55128 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40980333, endtime: 40980727, seqnum: 0, connid: 0 98 12:59:14,5835521 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55128 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40980336, endtime: 40980727, seqnum: 0, connid: 0 98 12:59:14,5835801 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55128 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40980338, endtime: 40980727, seqnum: 0, connid: 0 98 12:59:14,5835859 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55128 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40980341, endtime: 40980727, seqnum: 0, connid: 0 98 12:59:14,5835923 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55128 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40980344, endtime: 40980727, seqnum: 0, connid: 0 98 12:59:14,5835976 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55128 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40980347, endtime: 40980727, seqnum: 0, connid: 0 98 12:59:15,0760544 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55174 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40980291, endtime: 40980776, seqnum: 0, connid: 0 98 12:59:16,4365052 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55133 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40980702, endtime: 40980912, seqnum: 0, connid: 0 98 12:59:16,4365210 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55133 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40980703, endtime: 40980912, seqnum: 0, connid: 0 98 12:59:16,4365282 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55133 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40980705, endtime: 40980912, seqnum: 0, connid: 0 98 12:59:16,4367318 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55133 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40980708, endtime: 40980912, seqnum: 0, connid: 0 98 12:59:16,4369030 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55133 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40980709, endtime: 40980912, seqnum: 0, connid: 0 98 12:59:16,4371532 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55133 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40980711, endtime: 40980912, seqnum: 0, connid: 0 98 12:59:16,4371618 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55133 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40980712, endtime: 40980912, seqnum: 0, connid: 0 98 12:59:16,4371687 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55133 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40980714, endtime: 40980912, seqnum: 0, connid: 0 98 12:59:16,4371743 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55133 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40980716, endtime: 40980912, seqnum: 0, connid: 0 98 12:59:16,4371806 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55133 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40980719, endtime: 40980912, seqnum: 0, connid: 0 98 12:59:16,4371859 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55133 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40980720, endtime: 40980912, seqnum: 0, connid: 0 98 12:59:16,4371923 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55133 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40980722, endtime: 40980912, seqnum: 0, connid: 0 98 12:59:16,4371975 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55133 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40980726, endtime: 40980912, seqnum: 0, connid: 0 98 12:59:16,8567241 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55174 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40980292, endtime: 40980954, seqnum: 0, connid: 0 98 12:59:16,8567407 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55174 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40980294, endtime: 40980954, seqnum: 0, connid: 0 98 12:59:16,8567490 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55174 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40980295, endtime: 40980954, seqnum: 0, connid: 0 98 12:59:16,8567551 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55174 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40980297, endtime: 40980954, seqnum: 0, connid: 0 98 12:59:16,8567621 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55174 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40980298, endtime: 40980954, seqnum: 0, connid: 0 98 12:59:16,8567676 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55174 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40980300, endtime: 40980954, seqnum: 0, connid: 0 98 12:59:16,8567743 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55174 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40980300, endtime: 40980954, seqnum: 0, connid: 0 98 12:59:16,8567795 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55174 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40980303, endtime: 40980954, seqnum: 0, connid: 0 98 12:59:16,8567864 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55174 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40980305, endtime: 40980954, seqnum: 0, connid: 0 98 12:59:16,8568150 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55174 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40980306, endtime: 40980954, seqnum: 0, connid: 0 98 12:59:16,8568222 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55174 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40980308, endtime: 40980954, seqnum: 0, connid: 0 98 12:59:16,8568275 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55174 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40980309, endtime: 40980954, seqnum: 0, connid: 0 98 12:59:16,8568341 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55174 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40980776, endtime: 40980954, seqnum: 0, connid: 0 98 12:59:17,2632875 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55177 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40980489, endtime: 40980995, seqnum: 0, connid: 0 98 12:59:17,2633083 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55177 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40980491, endtime: 40980995, seqnum: 0, connid: 0 98 12:59:17,2633177 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55177 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40980492, endtime: 40980995, seqnum: 0, connid: 0 98 12:59:17,2633249 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55177 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40980494, endtime: 40980995, seqnum: 0, connid: 0 98 12:59:17,2633324 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55177 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40980495, endtime: 40980995, seqnum: 0, connid: 0 98 12:59:17,2633388 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55177 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40980497, endtime: 40980995, seqnum: 0, connid: 0 98 12:59:17,2633457 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55177 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40980498, endtime: 40980995, seqnum: 0, connid: 0 98 12:59:17,2633668 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55177 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40980500, endtime: 40980995, seqnum: 0, connid: 0 98 12:59:17,2633770 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55177 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40980503, endtime: 40980995, seqnum: 0, connid: 0 98 12:59:17,2634152 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55177 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40980506, endtime: 40980995, seqnum: 0, connid: 0 98 12:59:17,2634230 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55177 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40980510, endtime: 40980995, seqnum: 0, connid: 0 98 12:59:17,2634291 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55177 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40980512, endtime: 40980995, seqnum: 0, connid: 0 98 12:59:17,2634366 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55177 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40980609, endtime: 40980995, seqnum: 0, connid: 0 98 12:59:18,0923603 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55101 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40980711, endtime: 40981078, seqnum: 0, connid: 0 98 12:59:18,0923949 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55101 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40980712, endtime: 40981078, seqnum: 0, connid: 0 98 12:59:18,0924052 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55101 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40980714, endtime: 40981078, seqnum: 0, connid: 0 98 12:59:18,0924138 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55101 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40980716, endtime: 40981078, seqnum: 0, connid: 0 98 12:59:18,0924201 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55101 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40980719, endtime: 40981078, seqnum: 0, connid: 0 98 12:59:18,0924282 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55101 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40980720, endtime: 40981078, seqnum: 0, connid: 0 98 12:59:18,0924343 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55101 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40980722, endtime: 40981078, seqnum: 0, connid: 0 98 12:59:18,0924420 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55101 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40980726, endtime: 40981078, seqnum: 0, connid: 0 98 12:59:18,0924484 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55101 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40980726, endtime: 40981078, seqnum: 0, connid: 0 98 12:59:18,0925348 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55101 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40980728, endtime: 40981078, seqnum: 0, connid: 0 98 12:59:18,0925420 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55101 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40980731, endtime: 40981078, seqnum: 0, connid: 0 98 12:59:18,0925492 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55101 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40980733, endtime: 40981078, seqnum: 0, connid: 0 98 12:59:18,0927313 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55101 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40980736, endtime: 40981078, seqnum: 0, connid: 0 98 12:59:18,3134784 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55128 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40980727, endtime: 40981100, seqnum: 0, connid: 0 98 12:59:18,3134989 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55128 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40980728, endtime: 40981100, seqnum: 0, connid: 0 98 12:59:18,3135075 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55128 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40980731, endtime: 40981100, seqnum: 0, connid: 0 98 12:59:18,3135158 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55128 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40980733, endtime: 40981100, seqnum: 0, connid: 0 98 12:59:18,3135222 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55128 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40980736, endtime: 40981100, seqnum: 0, connid: 0 98 12:59:18,3135297 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55128 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40980738, endtime: 40981100, seqnum: 0, connid: 0 98 12:59:18,3135355 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55128 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40980740, endtime: 40981100, seqnum: 0, connid: 0 98 12:59:18,3135427 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55128 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40980742, endtime: 40981100, seqnum: 0, connid: 0 98 12:59:18,3135488 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55128 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40980744, endtime: 40981100, seqnum: 0, connid: 0 98 12:59:18,3137001 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55128 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40980747, endtime: 40981100, seqnum: 0, connid: 0 98 12:59:18,3137103 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55128 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40980748, endtime: 40981100, seqnum: 0, connid: 0 98 12:59:18,3137184 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55128 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40980750, endtime: 40981100, seqnum: 0, connid: 0 98 12:59:18,3137245 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55128 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40980752, endtime: 40981100, seqnum: 0, connid: 0 98 12:59:19,5945897 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55133 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40980912, endtime: 40981228, seqnum: 0, connid: 0 98 12:59:19,5946119 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55133 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40980914, endtime: 40981228, seqnum: 0, connid: 0 98 12:59:19,5946230 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55133 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40980916, endtime: 40981228, seqnum: 0, connid: 0 98 12:59:19,5946346 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55133 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40980917, endtime: 40981228, seqnum: 0, connid: 0 98 12:59:19,5946418 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55133 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40980919, endtime: 40981228, seqnum: 0, connid: 0 98 12:59:19,5946490 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55133 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40980920, endtime: 40981228, seqnum: 0, connid: 0 98 12:59:19,5946551 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55133 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40980922, endtime: 40981228, seqnum: 0, connid: 0 98 12:59:19,5946621 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55133 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40980923, endtime: 40981228, seqnum: 0, connid: 0 98 12:59:19,5946682 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55133 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40980925, endtime: 40981228, seqnum: 0, connid: 0 98 12:59:19,5947006 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55133 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40980928, endtime: 40981228, seqnum: 0, connid: 0 98 12:59:19,5947064 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55133 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40980930, endtime: 40981228, seqnum: 0, connid: 0 98 12:59:19,5947130 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55133 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40980931, endtime: 40981228, seqnum: 0, connid: 0 98 12:59:19,5947186 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55133 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40980933, endtime: 40981228, seqnum: 0, connid: 0 98 12:59:20,6672261 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55177 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40980995, endtime: 40981335, seqnum: 0, connid: 0 98 12:59:20,6672408 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55177 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40980998, endtime: 40981335, seqnum: 0, connid: 0 98 12:59:20,6672474 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55177 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40981000, endtime: 40981335, seqnum: 0, connid: 0 98 12:59:20,6672543 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55177 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40981001, endtime: 40981335, seqnum: 0, connid: 0 98 12:59:20,6672596 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55177 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40981003, endtime: 40981335, seqnum: 0, connid: 0 98 12:59:20,6672660 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55177 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40981005, endtime: 40981335, seqnum: 0, connid: 0 98 12:59:20,6672715 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55177 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40981006, endtime: 40981335, seqnum: 0, connid: 0 98 12:59:20,6672776 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55177 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40981010, endtime: 40981335, seqnum: 0, connid: 0 98 12:59:20,6672829 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55177 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40981011, endtime: 40981335, seqnum: 0, connid: 0 98 12:59:20,6673120 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55177 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40981013, endtime: 40981335, seqnum: 0, connid: 0 98 12:59:20,6673175 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55177 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40981017, endtime: 40981335, seqnum: 0, connid: 0 98 12:59:20,6673236 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55177 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40981019, endtime: 40981335, seqnum: 0, connid: 0 98 12:59:20,6673289 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55177 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40981021, endtime: 40981335, seqnum: 0, connid: 0 98 12:59:21,1242079 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55178 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40980584, endtime: 40981381, seqnum: 0, connid: 0 98 12:59:21,1242248 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55178 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40980584, endtime: 40981381, seqnum: 0, connid: 0 98 12:59:21,1242342 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55178 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40980587, endtime: 40981381, seqnum: 0, connid: 0 98 12:59:21,1242411 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55178 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40980589, endtime: 40981381, seqnum: 0, connid: 0 98 12:59:21,1242483 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55178 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40980592, endtime: 40981381, seqnum: 0, connid: 0 98 12:59:21,1242544 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55178 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40980594, endtime: 40981381, seqnum: 0, connid: 0 98 12:59:21,1242613 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55178 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40980595, endtime: 40981381, seqnum: 0, connid: 0 98 12:59:21,1242672 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55178 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40980597, endtime: 40981381, seqnum: 0, connid: 0 98 12:59:21,1242741 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55178 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40980599, endtime: 40981381, seqnum: 0, connid: 0 98 12:59:21,1243256 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55178 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40980600, endtime: 40981381, seqnum: 0, connid: 0 98 12:59:21,1243395 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55178 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40980601, endtime: 40981381, seqnum: 0, connid: 0 98 12:59:21,1243489 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55178 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40980603, endtime: 40981381, seqnum: 0, connid: 0 98 12:59:21,1243600 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55178 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40980605, endtime: 40981381, seqnum: 0, connid: 0 98 12:59:21,2032991 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55128 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40981100, endtime: 40981389, seqnum: 0, connid: 0 98 12:59:21,2033185 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55128 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40981101, endtime: 40981389, seqnum: 0, connid: 0 98 12:59:21,2033265 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55128 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40981105, endtime: 40981389, seqnum: 0, connid: 0 98 12:59:21,2033340 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55128 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40981106, endtime: 40981389, seqnum: 0, connid: 0 98 12:59:21,2033398 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55128 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40981109, endtime: 40981389, seqnum: 0, connid: 0 98 12:59:21,2033589 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55128 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40981111, endtime: 40981389, seqnum: 0, connid: 0 98 12:59:21,2033700 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55128 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40981113, endtime: 40981389, seqnum: 0, connid: 0 98 12:59:21,2033783 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55128 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40981116, endtime: 40981389, seqnum: 0, connid: 0 98 12:59:21,2033844 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55128 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40981117, endtime: 40981389, seqnum: 0, connid: 0 98 12:59:21,2034182 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55128 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40981121, endtime: 40981389, seqnum: 0, connid: 0 98 12:59:21,2034243 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55128 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40981122, endtime: 40981389, seqnum: 0, connid: 0 98 12:59:21,2034309 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55128 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40981126, endtime: 40981389, seqnum: 0, connid: 0 98 12:59:21,2034368 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55128 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40981129, endtime: 40981389, seqnum: 0, connid: 0 98 12:59:21,4714090 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55128 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40981389, endtime: 40981416, seqnum: 0, connid: 0 98 12:59:21,4714372 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55101 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40981078, endtime: 40981416, seqnum: 0, connid: 0 98 12:59:21,4714461 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55101 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40981080, endtime: 40981416, seqnum: 0, connid: 0 98 12:59:21,4714635 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55101 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40981081, endtime: 40981416, seqnum: 0, connid: 0 98 12:59:21,4714716 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55101 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40981082, endtime: 40981416, seqnum: 0, connid: 0 98 12:59:21,4714777 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55101 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40981084, endtime: 40981416, seqnum: 0, connid: 0 98 12:59:21,4714971 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55101 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40981086, endtime: 40981416, seqnum: 0, connid: 0 98 12:59:21,4715179 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55101 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40981088, endtime: 40981416, seqnum: 0, connid: 0 98 12:59:21,4715417 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55101 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40981089, endtime: 40981416, seqnum: 0, connid: 0 98 12:59:21,4716386 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55101 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40981091, endtime: 40981416, seqnum: 0, connid: 0 98 12:59:21,4716470 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55101 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40981092, endtime: 40981416, seqnum: 0, connid: 0 98 12:59:21,4716525 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55101 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40981094, endtime: 40981416, seqnum: 0, connid: 0 98 12:59:21,4716680 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55101 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40981095, endtime: 40981416, seqnum: 0, connid: 0 98 12:59:21,4717697 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55101 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40981099, endtime: 40981416, seqnum: 0, connid: 0 98 12:59:23,3370836 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55177 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40981335, endtime: 40981602, seqnum: 0, connid: 0 98 12:59:23,3371024 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55177 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40981336, endtime: 40981602, seqnum: 0, connid: 0 98 12:59:23,3371099 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55177 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40981337, endtime: 40981602, seqnum: 0, connid: 0 98 12:59:23,3371174 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55177 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40981339, endtime: 40981602, seqnum: 0, connid: 0 98 12:59:23,3371235 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55177 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40981341, endtime: 40981602, seqnum: 0, connid: 0 98 12:59:23,3371302 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55177 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40981342, endtime: 40981602, seqnum: 0, connid: 0 98 12:59:23,3371357 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55177 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40981344, endtime: 40981602, seqnum: 0, connid: 0 98 12:59:23,3371423 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55177 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40981346, endtime: 40981602, seqnum: 0, connid: 0 98 12:59:23,3371482 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55177 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40981348, endtime: 40981602, seqnum: 0, connid: 0 98 12:59:23,3372449 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55177 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40981350, endtime: 40981602, seqnum: 0, connid: 0 98 12:59:23,3372559 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55177 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40981352, endtime: 40981602, seqnum: 0, connid: 0 98 12:59:23,3372665 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55177 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40981353, endtime: 40981602, seqnum: 0, connid: 0 98 12:59:23,3376161 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55177 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40981355, endtime: 40981602, seqnum: 0, connid: 0 98 12:59:23,7030259 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55101 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40981416, endtime: 40981639, seqnum: 0, connid: 0 98 12:59:23,7030420 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55101 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40981419, endtime: 40981639, seqnum: 0, connid: 0 98 12:59:23,7030594 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55101 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40981422, endtime: 40981639, seqnum: 0, connid: 0 98 12:59:23,7030735 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55101 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40981423, endtime: 40981639, seqnum: 0, connid: 0 98 12:59:23,7030821 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55101 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40981425, endtime: 40981639, seqnum: 0, connid: 0 98 12:59:23,7030896 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55101 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40981427, endtime: 40981639, seqnum: 0, connid: 0 98 12:59:23,7030954 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55101 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40981434, endtime: 40981639, seqnum: 0, connid: 0 98 12:59:23,7031026 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55101 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40981436, endtime: 40981639, seqnum: 0, connid: 0 98 12:59:23,7031082 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55101 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40981438, endtime: 40981639, seqnum: 0, connid: 0 98 12:59:23,7031755 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55101 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40981439, endtime: 40981639, seqnum: 0, connid: 0 98 12:59:23,7031819 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55101 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40981441, endtime: 40981639, seqnum: 0, connid: 0 98 12:59:23,7031885 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55101 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40981444, endtime: 40981639, seqnum: 0, connid: 0 98 12:59:23,7191417 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55128 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40981391, endtime: 40981641, seqnum: 0, connid: 0 98 12:59:23,7191564 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55128 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40981392, endtime: 40981641, seqnum: 0, connid: 0 98 12:59:23,7193268 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55128 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40981394, endtime: 40981641, seqnum: 0, connid: 0 98 12:59:23,7193423 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55128 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40981397, endtime: 40981641, seqnum: 0, connid: 0 98 12:59:23,7195603 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55128 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40981398, endtime: 40981641, seqnum: 0, connid: 0 98 12:59:23,7197434 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55128 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40981400, endtime: 40981641, seqnum: 0, connid: 0 98 12:59:23,7197526 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55128 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40981400, endtime: 40981641, seqnum: 0, connid: 0 98 12:59:23,7197587 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55128 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40981403, endtime: 40981641, seqnum: 0, connid: 0 98 12:59:23,7197653 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55128 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40981405, endtime: 40981641, seqnum: 0, connid: 0 98 12:59:23,7197709 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55128 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40981408, endtime: 40981641, seqnum: 0, connid: 0 98 12:59:23,7197772 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55128 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40981410, endtime: 40981641, seqnum: 0, connid: 0 98 12:59:23,7197825 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55128 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40981411, endtime: 40981641, seqnum: 0, connid: 0 98 12:59:23,7746551 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55101 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40981445, endtime: 40981646, seqnum: 0, connid: 0 98 12:59:23,7905318 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55128 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40981416, endtime: 40981648, seqnum: 0, connid: 0 98 12:59:23,7905592 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55128 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40981641, endtime: 40981648, seqnum: 0, connid: 0 98 12:59:23,7905725 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55128 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40981642, endtime: 40981648, seqnum: 0, connid: 0 98 12:59:23,7905825 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55128 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40981644, endtime: 40981648, seqnum: 0, connid: 0 98 12:59:23,7905930 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55128 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40981647, endtime: 40981648, seqnum: 0, connid: 0 98 12:59:23,7985149 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55128 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40981648, endtime: 40981648, seqnum: 0, connid: 0 98 12:59:23,8303423 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55128 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40981651, endtime: 40981652, seqnum: 0, connid: 0 98 12:59:23,8469607 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55128 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40981653, endtime: 40981653, seqnum: 0, connid: 0 98 12:59:23,8779790 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55128 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40981656, endtime: 40981656, seqnum: 0, connid: 0 98 12:59:23,8913439 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55128 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40981658, endtime: 40981658, seqnum: 0, connid: 0 98 12:59:23,9072417 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55128 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40981659, endtime: 40981659, seqnum: 0, connid: 0 98 12:59:23,9250542 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55128 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40981661, endtime: 40981661, seqnum: 0, connid: 0 98 12:59:23,9567103 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55128 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40981664, endtime: 40981664, seqnum: 0, connid: 0 98 12:59:24,1880768 MCLauncher.exe 6080 TCP TCPCopy WIN-0UOTFKKVN1S:54920 -> sheltex.company:8000 SUCCESS Length: 2, seqnum: 0, connid: 0 98 12:59:24,1880876 MCLauncher.exe 6080 TCP Receive WIN-0UOTFKKVN1S:54920 -> sheltex.company:8000 SUCCESS Length: 2, seqnum: 0, connid: 0 98 12:59:24,1961613 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54920 -> sheltex.company:8000 SUCCESS Length: 2, startime: 40981687, endtime: 40981688, seqnum: 0, connid: 0 98 12:59:24,2504723 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55178 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40981381, endtime: 40981694, seqnum: 0, connid: 0 98 12:59:24,2504928 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55178 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40981383, endtime: 40981694, seqnum: 0, connid: 0 98 12:59:24,2505011 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55178 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40981384, endtime: 40981694, seqnum: 0, connid: 0 98 12:59:24,2505094 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55178 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40981386, endtime: 40981694, seqnum: 0, connid: 0 98 12:59:24,2505158 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55178 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40981387, endtime: 40981694, seqnum: 0, connid: 0 98 12:59:24,2505230 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55178 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40981391, endtime: 40981694, seqnum: 0, connid: 0 98 12:59:24,2505288 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55178 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40981392, endtime: 40981694, seqnum: 0, connid: 0 98 12:59:24,2505360 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55178 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40981394, endtime: 40981694, seqnum: 0, connid: 0 98 12:59:24,2505421 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55178 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40981397, endtime: 40981694, seqnum: 0, connid: 0 98 12:59:24,2505726 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55178 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40981398, endtime: 40981694, seqnum: 0, connid: 0 98 12:59:24,2505787 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55178 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40981400, endtime: 40981694, seqnum: 0, connid: 0 98 12:59:24,2506014 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55178 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40981400, endtime: 40981694, seqnum: 0, connid: 0 98 12:59:24,2506094 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55178 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40981403, endtime: 40981694, seqnum: 0, connid: 0 98 12:59:24,2945885 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55174 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40980954, endtime: 40981698, seqnum: 0, connid: 0 98 12:59:24,2946059 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55174 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40980955, endtime: 40981698, seqnum: 0, connid: 0 98 12:59:24,2946129 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55174 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40980958, endtime: 40981698, seqnum: 0, connid: 0 98 12:59:24,2946203 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55174 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40980960, endtime: 40981698, seqnum: 0, connid: 0 98 12:59:24,2946259 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55174 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40980962, endtime: 40981698, seqnum: 0, connid: 0 98 12:59:24,2946325 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55174 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40980962, endtime: 40981698, seqnum: 0, connid: 0 98 12:59:24,2946381 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55174 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40980967, endtime: 40981698, seqnum: 0, connid: 0 98 12:59:24,2946444 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55174 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40980968, endtime: 40981698, seqnum: 0, connid: 0 98 12:59:24,2946500 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55174 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40980970, endtime: 40981698, seqnum: 0, connid: 0 98 12:59:24,2946791 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55174 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40980972, endtime: 40981698, seqnum: 0, connid: 0 98 12:59:24,2946849 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55174 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40980974, endtime: 40981698, seqnum: 0, connid: 0 98 12:59:24,2946915 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55174 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40980976, endtime: 40981698, seqnum: 0, connid: 0 98 12:59:24,2946971 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55174 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40980978, endtime: 40981698, seqnum: 0, connid: 0 98 12:59:24,7230374 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55133 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40981228, endtime: 40981741, seqnum: 0, connid: 0 98 12:59:24,7230579 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55133 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40981230, endtime: 40981741, seqnum: 0, connid: 0 98 12:59:24,7230665 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55133 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40981233, endtime: 40981741, seqnum: 0, connid: 0 98 12:59:24,7230750 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55133 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40981234, endtime: 40981741, seqnum: 0, connid: 0 98 12:59:24,7230814 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55133 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40981236, endtime: 40981741, seqnum: 0, connid: 0 98 12:59:24,7230886 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55133 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40981238, endtime: 40981741, seqnum: 0, connid: 0 98 12:59:24,7230944 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55133 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40981241, endtime: 40981741, seqnum: 0, connid: 0 98 12:59:24,7231016 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55133 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40981244, endtime: 40981741, seqnum: 0, connid: 0 98 12:59:24,7231075 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55133 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40981247, endtime: 40981741, seqnum: 0, connid: 0 98 12:59:24,7231371 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55133 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40981249, endtime: 40981741, seqnum: 0, connid: 0 98 12:59:24,7231438 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55133 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40981250, endtime: 40981741, seqnum: 0, connid: 0 98 12:59:24,7231510 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55133 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40981252, endtime: 40981741, seqnum: 0, connid: 0 98 12:59:24,7231568 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55133 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40981255, endtime: 40981741, seqnum: 0, connid: 0 98 12:59:25,9129388 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55101 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40981639, endtime: 40981860, seqnum: 0, connid: 0 98 12:59:25,9129540 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55101 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40981641, endtime: 40981860, seqnum: 0, connid: 0 98 12:59:25,9129626 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55101 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40981642, endtime: 40981860, seqnum: 0, connid: 0 98 12:59:25,9129690 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55101 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40981644, endtime: 40981860, seqnum: 0, connid: 0 98 12:59:25,9129759 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55101 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40981647, endtime: 40981860, seqnum: 0, connid: 0 98 12:59:25,9129815 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55101 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40981648, endtime: 40981860, seqnum: 0, connid: 0 98 12:59:25,9129884 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55101 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40981651, endtime: 40981860, seqnum: 0, connid: 0 98 12:59:25,9129936 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55101 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40981653, endtime: 40981860, seqnum: 0, connid: 0 98 12:59:25,9130003 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55101 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40981656, endtime: 40981860, seqnum: 0, connid: 0 98 12:59:25,9130632 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55101 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40981658, endtime: 40981860, seqnum: 0, connid: 0 98 12:59:25,9130715 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55101 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40981659, endtime: 40981860, seqnum: 0, connid: 0 98 12:59:25,9130773 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55101 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40981661, endtime: 40981860, seqnum: 0, connid: 0 98 12:59:26,0774815 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55128 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40981666, endtime: 40981876, seqnum: 0, connid: 0 98 12:59:26,0775037 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55128 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40981669, endtime: 40981876, seqnum: 0, connid: 0 98 12:59:26,0775123 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55128 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40981673, endtime: 40981876, seqnum: 0, connid: 0 98 12:59:26,0775203 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55128 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40981673, endtime: 40981876, seqnum: 0, connid: 0 98 12:59:26,0775267 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55128 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40981677, endtime: 40981876, seqnum: 0, connid: 0 98 12:59:26,0775453 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55128 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40981678, endtime: 40981876, seqnum: 0, connid: 0 98 12:59:26,0775586 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55128 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40981680, endtime: 40981876, seqnum: 0, connid: 0 98 12:59:26,0775705 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55128 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40981681, endtime: 40981876, seqnum: 0, connid: 0 98 12:59:26,0775807 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55128 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40981683, endtime: 40981876, seqnum: 0, connid: 0 98 12:59:26,0776170 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55128 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40981687, endtime: 40981876, seqnum: 0, connid: 0 98 12:59:26,0776234 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55128 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40981689, endtime: 40981876, seqnum: 0, connid: 0 98 12:59:26,0776309 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55128 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40981692, endtime: 40981876, seqnum: 0, connid: 0 98 12:59:26,0776370 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55128 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40981694, endtime: 40981876, seqnum: 0, connid: 0 98 12:59:26,1635277 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55177 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40981602, endtime: 40981885, seqnum: 0, connid: 0 98 12:59:26,1635462 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55177 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40981603, endtime: 40981885, seqnum: 0, connid: 0 98 12:59:26,1635537 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55177 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40981605, endtime: 40981885, seqnum: 0, connid: 0 98 12:59:26,1635609 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55177 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40981606, endtime: 40981885, seqnum: 0, connid: 0 98 12:59:26,1635667 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55177 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40981608, endtime: 40981885, seqnum: 0, connid: 0 98 12:59:26,1635734 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55177 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40981611, endtime: 40981885, seqnum: 0, connid: 0 98 12:59:26,1635786 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55177 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40981612, endtime: 40981885, seqnum: 0, connid: 0 98 12:59:26,1635853 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55177 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40981614, endtime: 40981885, seqnum: 0, connid: 0 98 12:59:26,1635908 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55177 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40981617, endtime: 40981885, seqnum: 0, connid: 0 98 12:59:26,1636709 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55177 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40981619, endtime: 40981885, seqnum: 0, connid: 0 98 12:59:26,1636781 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55177 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40981623, endtime: 40981885, seqnum: 0, connid: 0 98 12:59:26,1636850 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55177 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40981628, endtime: 40981885, seqnum: 0, connid: 0 98 12:59:26,1638441 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55177 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40981630, endtime: 40981885, seqnum: 0, connid: 0 98 12:59:26,2482101 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55133 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40981741, endtime: 40981893, seqnum: 0, connid: 0 98 12:59:26,2482270 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55133 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40981742, endtime: 40981893, seqnum: 0, connid: 0 98 12:59:26,2482345 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55133 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40981744, endtime: 40981893, seqnum: 0, connid: 0 98 12:59:26,2482420 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55133 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40981745, endtime: 40981893, seqnum: 0, connid: 0 98 12:59:26,2482478 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55133 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40981747, endtime: 40981893, seqnum: 0, connid: 0 98 12:59:26,2482545 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55133 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40981748, endtime: 40981893, seqnum: 0, connid: 0 98 12:59:26,2482600 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55133 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40981750, endtime: 40981893, seqnum: 0, connid: 0 98 12:59:26,2482669 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55133 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40981751, endtime: 40981893, seqnum: 0, connid: 0 98 12:59:26,2482722 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55133 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40981753, endtime: 40981893, seqnum: 0, connid: 0 98 12:59:26,2483027 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55133 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40981754, endtime: 40981893, seqnum: 0, connid: 0 98 12:59:26,2483085 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55133 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40981754, endtime: 40981893, seqnum: 0, connid: 0 98 12:59:26,2483149 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55133 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40981755, endtime: 40981893, seqnum: 0, connid: 0 98 12:59:26,2483204 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55133 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40981755, endtime: 40981893, seqnum: 0, connid: 0 98 12:59:27,8172705 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55178 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40981694, endtime: 40982050, seqnum: 0, connid: 0 98 12:59:27,8172888 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55178 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40981695, endtime: 40982050, seqnum: 0, connid: 0 98 12:59:27,8172968 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55178 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40981698, endtime: 40982050, seqnum: 0, connid: 0 98 12:59:27,8173049 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55178 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40981700, endtime: 40982050, seqnum: 0, connid: 0 98 12:59:27,8173112 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55178 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40981701, endtime: 40982050, seqnum: 0, connid: 0 98 12:59:27,8173184 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55178 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40981703, endtime: 40982050, seqnum: 0, connid: 0 98 12:59:27,8173245 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55178 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40981705, endtime: 40982050, seqnum: 0, connid: 0 98 12:59:27,8173315 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55178 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40981706, endtime: 40982050, seqnum: 0, connid: 0 98 12:59:27,8173378 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55178 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40981708, endtime: 40982050, seqnum: 0, connid: 0 98 12:59:27,8173694 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55178 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40981709, endtime: 40982050, seqnum: 0, connid: 0 98 12:59:27,8173758 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55178 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40981711, endtime: 40982050, seqnum: 0, connid: 0 98 12:59:27,8173830 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55178 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40981714, endtime: 40982050, seqnum: 0, connid: 0 98 12:59:27,8173891 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55178 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40981716, endtime: 40982050, seqnum: 0, connid: 0 98 12:59:29,1256724 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55101 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40981664, endtime: 40982181, seqnum: 0, connid: 0 98 12:59:29,1256890 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55101 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40981860, endtime: 40982181, seqnum: 0, connid: 0 98 12:59:29,1256976 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55101 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40981860, endtime: 40982181, seqnum: 0, connid: 0 98 12:59:29,1257037 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55101 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40981861, endtime: 40982181, seqnum: 0, connid: 0 98 12:59:29,1257103 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55101 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40981862, endtime: 40982181, seqnum: 0, connid: 0 98 12:59:29,1257156 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55101 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40981862, endtime: 40982181, seqnum: 0, connid: 0 98 12:59:29,1257220 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55101 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40981864, endtime: 40982181, seqnum: 0, connid: 0 98 12:59:29,1257272 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55101 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40981866, endtime: 40982181, seqnum: 0, connid: 0 98 12:59:29,1257336 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55101 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40981867, endtime: 40982181, seqnum: 0, connid: 0 98 12:59:29,1257389 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55101 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40981869, endtime: 40982181, seqnum: 0, connid: 0 98 12:59:29,1257840 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55101 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40981872, endtime: 40982181, seqnum: 0, connid: 0 98 12:59:29,1257907 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55101 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40981873, endtime: 40982181, seqnum: 0, connid: 0 98 12:59:29,1257976 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55101 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40981875, endtime: 40982181, seqnum: 0, connid: 0 98 12:59:29,1262431 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55101 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40982181, endtime: 40982181, seqnum: 0, connid: 0 98 12:59:29,1990643 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55177 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40981885, endtime: 40982189, seqnum: 0, connid: 0 98 12:59:29,1990814 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55177 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40981886, endtime: 40982189, seqnum: 0, connid: 0 98 12:59:29,1990892 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55177 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40981887, endtime: 40982189, seqnum: 0, connid: 0 98 12:59:29,1990972 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55177 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40981889, endtime: 40982189, seqnum: 0, connid: 0 98 12:59:29,1991030 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55177 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40981891, endtime: 40982189, seqnum: 0, connid: 0 98 12:59:29,1991100 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55177 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40981892, endtime: 40982189, seqnum: 0, connid: 0 98 12:59:29,1991155 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55177 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40981894, endtime: 40982189, seqnum: 0, connid: 0 98 12:59:29,1991224 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55177 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40981895, endtime: 40982189, seqnum: 0, connid: 0 98 12:59:29,1991280 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55177 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40981897, endtime: 40982189, seqnum: 0, connid: 0 98 12:59:29,1992100 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55177 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40981900, endtime: 40982189, seqnum: 0, connid: 0 98 12:59:29,1993449 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55177 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40981900, endtime: 40982189, seqnum: 0, connid: 0 98 12:59:29,1993552 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55177 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40981903, endtime: 40982189, seqnum: 0, connid: 0 98 12:59:29,1993615 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55177 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40981905, endtime: 40982189, seqnum: 0, connid: 0 98 12:59:29,2643184 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55174 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40981698, endtime: 40982195, seqnum: 0, connid: 0 98 12:59:29,2643367 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55174 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40981700, endtime: 40982195, seqnum: 0, connid: 0 98 12:59:29,2643445 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55174 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40981701, endtime: 40982195, seqnum: 0, connid: 0 98 12:59:29,2643525 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55174 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40981703, endtime: 40982195, seqnum: 0, connid: 0 98 12:59:29,2643694 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55174 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40981705, endtime: 40982195, seqnum: 0, connid: 0 98 12:59:29,2643772 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55174 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40981706, endtime: 40982195, seqnum: 0, connid: 0 98 12:59:29,2643835 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55174 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40981708, endtime: 40982195, seqnum: 0, connid: 0 98 12:59:29,2643910 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55174 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40981709, endtime: 40982195, seqnum: 0, connid: 0 98 12:59:29,2643971 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55174 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40981711, endtime: 40982195, seqnum: 0, connid: 0 98 12:59:29,2644284 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55174 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40981714, endtime: 40982195, seqnum: 0, connid: 0 98 12:59:29,2644348 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55174 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40981716, endtime: 40982195, seqnum: 0, connid: 0 98 12:59:29,2644420 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55174 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40981717, endtime: 40982195, seqnum: 0, connid: 0 98 12:59:29,2644478 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55174 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40981719, endtime: 40982195, seqnum: 0, connid: 0 98 12:59:29,3178833 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55133 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40981893, endtime: 40982200, seqnum: 0, connid: 0 98 12:59:29,3178994 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55133 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40981895, endtime: 40982200, seqnum: 0, connid: 0 98 12:59:29,3179066 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55133 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40981897, endtime: 40982200, seqnum: 0, connid: 0 98 12:59:29,3179144 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55133 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40981900, endtime: 40982200, seqnum: 0, connid: 0 98 12:59:29,3179202 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55133 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40981903, endtime: 40982200, seqnum: 0, connid: 0 98 12:59:29,3179274 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55133 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40981905, endtime: 40982200, seqnum: 0, connid: 0 98 12:59:29,3179329 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55133 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40981906, endtime: 40982200, seqnum: 0, connid: 0 98 12:59:29,3179399 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55133 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40981908, endtime: 40982200, seqnum: 0, connid: 0 98 12:59:29,3179457 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55133 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40981909, endtime: 40982200, seqnum: 0, connid: 0 98 12:59:29,3179726 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55133 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40981911, endtime: 40982200, seqnum: 0, connid: 0 98 12:59:29,3179784 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55133 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40981913, endtime: 40982200, seqnum: 0, connid: 0 98 12:59:29,3179850 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55133 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40981914, endtime: 40982200, seqnum: 0, connid: 0 98 12:59:29,3179908 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55133 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40981916, endtime: 40982200, seqnum: 0, connid: 0 98 12:59:31,7073214 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55133 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40982200, endtime: 40982439, seqnum: 0, connid: 0 98 12:59:31,7073385 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55133 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40982203, endtime: 40982439, seqnum: 0, connid: 0 98 12:59:31,7073457 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55133 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40982208, endtime: 40982439, seqnum: 0, connid: 0 98 12:59:31,7073529 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55133 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40982218, endtime: 40982439, seqnum: 0, connid: 0 98 12:59:31,7073588 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55133 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40982222, endtime: 40982439, seqnum: 0, connid: 0 98 12:59:31,7073651 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55133 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40982227, endtime: 40982439, seqnum: 0, connid: 0 98 12:59:31,7075799 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55133 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40982235, endtime: 40982439, seqnum: 0, connid: 0 98 12:59:31,7076624 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55133 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40982240, endtime: 40982439, seqnum: 0, connid: 0 98 12:59:31,7079655 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55133 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40982242, endtime: 40982439, seqnum: 0, connid: 0 98 12:59:31,7079774 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55133 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40982246, endtime: 40982439, seqnum: 0, connid: 0 98 12:59:31,7079844 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55133 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40982252, endtime: 40982439, seqnum: 0, connid: 0 98 12:59:31,7079918 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55133 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40982257, endtime: 40982439, seqnum: 0, connid: 0 98 12:59:31,7079982 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55133 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40982261, endtime: 40982439, seqnum: 0, connid: 0 98 12:59:32,6568656 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55128 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40981876, endtime: 40982534, seqnum: 0, connid: 0 98 12:59:32,6568822 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55128 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40981878, endtime: 40982534, seqnum: 0, connid: 0 98 12:59:32,6568897 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55128 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40981880, endtime: 40982534, seqnum: 0, connid: 0 98 12:59:32,6568972 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55128 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40981881, endtime: 40982534, seqnum: 0, connid: 0 98 12:59:32,6569027 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55128 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40981883, endtime: 40982534, seqnum: 0, connid: 0 98 12:59:32,6569096 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55128 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40981884, endtime: 40982534, seqnum: 0, connid: 0 98 12:59:32,6569149 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55128 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40981886, endtime: 40982534, seqnum: 0, connid: 0 98 12:59:32,6569221 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55128 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40981887, endtime: 40982534, seqnum: 0, connid: 0 98 12:59:32,6569274 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55128 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40981889, endtime: 40982534, seqnum: 0, connid: 0 98 12:59:32,6569578 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55128 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40981891, endtime: 40982534, seqnum: 0, connid: 0 98 12:59:32,6569637 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55128 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40981892, endtime: 40982534, seqnum: 0, connid: 0 98 12:59:32,6569700 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55128 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40981894, endtime: 40982534, seqnum: 0, connid: 0 98 12:59:32,6569756 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55128 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40981895, endtime: 40982534, seqnum: 0, connid: 0 98 12:59:32,8538477 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55174 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40982195, endtime: 40982554, seqnum: 0, connid: 0 98 12:59:32,8538704 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55174 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40982197, endtime: 40982554, seqnum: 0, connid: 0 98 12:59:32,8538934 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55174 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40982198, endtime: 40982554, seqnum: 0, connid: 0 98 12:59:32,8539056 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55174 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40982200, endtime: 40982554, seqnum: 0, connid: 0 98 12:59:32,8539131 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55174 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40982203, endtime: 40982554, seqnum: 0, connid: 0 98 12:59:32,8539217 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55174 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40982208, endtime: 40982554, seqnum: 0, connid: 0 98 12:59:32,8539286 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55174 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40982217, endtime: 40982554, seqnum: 0, connid: 0 98 12:59:32,8539372 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55174 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40982222, endtime: 40982554, seqnum: 0, connid: 0 98 12:59:32,8539444 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55174 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40982227, endtime: 40982554, seqnum: 0, connid: 0 98 12:59:32,8539799 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55174 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40982235, endtime: 40982554, seqnum: 0, connid: 0 98 12:59:32,8539868 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55174 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40982240, endtime: 40982554, seqnum: 0, connid: 0 98 12:59:32,8539943 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55174 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40982242, endtime: 40982554, seqnum: 0, connid: 0 98 12:59:32,8540007 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55174 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40982246, endtime: 40982554, seqnum: 0, connid: 0 98 12:59:33,1861667 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55101 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40982183, endtime: 40982587, seqnum: 0, connid: 0 98 12:59:33,1861856 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55101 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40982187, endtime: 40982587, seqnum: 0, connid: 0 98 12:59:33,1861933 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55101 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40982188, endtime: 40982587, seqnum: 0, connid: 0 98 12:59:33,1862011 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55101 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40982192, endtime: 40982587, seqnum: 0, connid: 0 98 12:59:33,1862072 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55101 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40982197, endtime: 40982587, seqnum: 0, connid: 0 98 12:59:33,1862141 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55101 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40982202, endtime: 40982587, seqnum: 0, connid: 0 98 12:59:33,1862197 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55101 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40982203, endtime: 40982587, seqnum: 0, connid: 0 98 12:59:33,1862266 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55101 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40982208, endtime: 40982587, seqnum: 0, connid: 0 98 12:59:33,1862324 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55101 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40982217, endtime: 40982587, seqnum: 0, connid: 0 98 12:59:33,1863155 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55101 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40982222, endtime: 40982587, seqnum: 0, connid: 0 98 12:59:33,1863233 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55101 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40982227, endtime: 40982587, seqnum: 0, connid: 0 98 12:59:33,1863302 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55101 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40982235, endtime: 40982587, seqnum: 0, connid: 0 98 12:59:33,1868034 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55101 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40982240, endtime: 40982587, seqnum: 0, connid: 0 98 12:59:33,2292343 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55178 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40982050, endtime: 40982592, seqnum: 0, connid: 0 98 12:59:33,2292517 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55178 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40982053, endtime: 40982592, seqnum: 0, connid: 0 98 12:59:33,2292617 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55178 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40982055, endtime: 40982592, seqnum: 0, connid: 0 98 12:59:33,2292697 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55178 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40982056, endtime: 40982592, seqnum: 0, connid: 0 98 12:59:33,2292775 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55178 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40982060, endtime: 40982592, seqnum: 0, connid: 0 98 12:59:33,2292841 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55178 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40982061, endtime: 40982592, seqnum: 0, connid: 0 98 12:59:33,2292922 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55178 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40982063, endtime: 40982592, seqnum: 0, connid: 0 98 12:59:33,2292986 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55178 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40982066, endtime: 40982592, seqnum: 0, connid: 0 98 12:59:33,2293063 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55178 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40982067, endtime: 40982592, seqnum: 0, connid: 0 98 12:59:33,2293396 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55178 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40982069, endtime: 40982592, seqnum: 0, connid: 0 98 12:59:33,2293473 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55178 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40982070, endtime: 40982592, seqnum: 0, connid: 0 98 12:59:33,2293534 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55178 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40982072, endtime: 40982592, seqnum: 0, connid: 0 98 12:59:33,2293609 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55178 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40982073, endtime: 40982592, seqnum: 0, connid: 0 98 12:59:33,9050840 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55133 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40982439, endtime: 40982659, seqnum: 0, connid: 0 98 12:59:33,9051014 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55133 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40982440, endtime: 40982659, seqnum: 0, connid: 0 98 12:59:33,9051097 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55133 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40982442, endtime: 40982659, seqnum: 0, connid: 0 98 12:59:33,9051197 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55133 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40982444, endtime: 40982659, seqnum: 0, connid: 0 98 12:59:33,9051261 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55133 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40982446, endtime: 40982659, seqnum: 0, connid: 0 98 12:59:33,9051333 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55133 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40982447, endtime: 40982659, seqnum: 0, connid: 0 98 12:59:33,9051538 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55133 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40982448, endtime: 40982659, seqnum: 0, connid: 0 98 12:59:33,9051671 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55133 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40982450, endtime: 40982659, seqnum: 0, connid: 0 98 12:59:33,9051737 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55133 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40982452, endtime: 40982659, seqnum: 0, connid: 0 98 12:59:33,9052067 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55133 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40982453, endtime: 40982659, seqnum: 0, connid: 0 98 12:59:33,9052131 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55133 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40982455, endtime: 40982659, seqnum: 0, connid: 0 98 12:59:33,9052203 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55133 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40982456, endtime: 40982659, seqnum: 0, connid: 0 98 12:59:33,9052267 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55133 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40982459, endtime: 40982659, seqnum: 0, connid: 0 98 12:59:34,2073989 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55101 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40982587, endtime: 40982689, seqnum: 0, connid: 0 98 12:59:34,2074167 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55101 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40982589, endtime: 40982689, seqnum: 0, connid: 0 98 12:59:34,2074241 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55101 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40982590, endtime: 40982689, seqnum: 0, connid: 0 98 12:59:34,2074319 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55101 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40982592, endtime: 40982689, seqnum: 0, connid: 0 98 12:59:34,2074380 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55101 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40982594, endtime: 40982689, seqnum: 0, connid: 0 98 12:59:34,2074449 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55101 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40982597, endtime: 40982689, seqnum: 0, connid: 0 98 12:59:34,2074507 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55101 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40982599, endtime: 40982689, seqnum: 0, connid: 0 98 12:59:34,2074579 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55101 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40982600, endtime: 40982689, seqnum: 0, connid: 0 98 12:59:34,2074632 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55101 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40982601, endtime: 40982689, seqnum: 0, connid: 0 98 12:59:34,2075449 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55101 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40982603, endtime: 40982689, seqnum: 0, connid: 0 98 12:59:34,2075521 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55101 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40982605, endtime: 40982689, seqnum: 0, connid: 0 98 12:59:34,2075588 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55101 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40982608, endtime: 40982689, seqnum: 0, connid: 0 98 12:59:34,2077128 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55101 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40982609, endtime: 40982689, seqnum: 0, connid: 0 98 12:59:34,4541946 MCLauncher.exe 6080 TCP TCPCopy WIN-0UOTFKKVN1S:54920 -> sheltex.company:8000 SUCCESS Length: 2, seqnum: 0, connid: 0 98 12:59:34,4542066 MCLauncher.exe 6080 TCP Receive WIN-0UOTFKKVN1S:54920 -> sheltex.company:8000 SUCCESS Length: 2, seqnum: 0, connid: 0 98 12:59:34,4545811 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54920 -> sheltex.company:8000 SUCCESS Length: 2, startime: 40982714, endtime: 40982714, seqnum: 0, connid: 0 98 12:59:35,0899745 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55178 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40982592, endtime: 40982778, seqnum: 0, connid: 0 98 12:59:35,0899951 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55178 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40982594, endtime: 40982778, seqnum: 0, connid: 0 98 12:59:35,0900031 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55178 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40982597, endtime: 40982778, seqnum: 0, connid: 0 98 12:59:35,0900114 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55178 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40982599, endtime: 40982778, seqnum: 0, connid: 0 98 12:59:35,0900180 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55178 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40982600, endtime: 40982778, seqnum: 0, connid: 0 98 12:59:35,0900253 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55178 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40982601, endtime: 40982778, seqnum: 0, connid: 0 98 12:59:35,0900313 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55178 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40982603, endtime: 40982778, seqnum: 0, connid: 0 98 12:59:35,0900385 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55178 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40982605, endtime: 40982778, seqnum: 0, connid: 0 98 12:59:35,0900444 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55178 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40982608, endtime: 40982778, seqnum: 0, connid: 0 98 12:59:35,0900762 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55178 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40982609, endtime: 40982778, seqnum: 0, connid: 0 98 12:59:35,0900826 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55178 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40982610, endtime: 40982778, seqnum: 0, connid: 0 98 12:59:35,0900898 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55178 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40982612, endtime: 40982778, seqnum: 0, connid: 0 98 12:59:35,0900959 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55178 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40982614, endtime: 40982778, seqnum: 0, connid: 0 98 12:59:35,2811704 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55128 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40982534, endtime: 40982797, seqnum: 0, connid: 0 98 12:59:35,2812039 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55128 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40982536, endtime: 40982797, seqnum: 0, connid: 0 98 12:59:35,2812122 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55128 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40982539, endtime: 40982797, seqnum: 0, connid: 0 98 12:59:35,2812200 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55128 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40982541, endtime: 40982797, seqnum: 0, connid: 0 98 12:59:35,2812263 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55128 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40982542, endtime: 40982797, seqnum: 0, connid: 0 98 12:59:35,2812338 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55128 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40982546, endtime: 40982797, seqnum: 0, connid: 0 98 12:59:35,2812396 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55128 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40982547, endtime: 40982797, seqnum: 0, connid: 0 98 12:59:35,2812466 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55128 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40982548, endtime: 40982797, seqnum: 0, connid: 0 98 12:59:35,2812524 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55128 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40982551, endtime: 40982797, seqnum: 0, connid: 0 98 12:59:35,2812837 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55128 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40982553, endtime: 40982797, seqnum: 0, connid: 0 98 12:59:35,2812898 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55128 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40982555, endtime: 40982797, seqnum: 0, connid: 0 98 12:59:35,2812964 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55128 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40982556, endtime: 40982797, seqnum: 0, connid: 0 98 12:59:35,2813020 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55128 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40982558, endtime: 40982797, seqnum: 0, connid: 0 98 12:59:35,3655076 MCLauncher.exe 6080 TCP Disconnect WIN-0UOTFKKVN1S:55178 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 0, seqnum: 0, connid: 0 98 12:59:35,3658985 MCLauncher.exe 6080 TCP Disconnect WIN-0UOTFKKVN1S:55177 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 0, seqnum: 0, connid: 0 98 12:59:35,4098615 MCLauncher.exe 6080 TCP Disconnect WIN-0UOTFKKVN1S:55128 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 0, seqnum: 0, connid: 0 98 12:59:35,5321070 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55174 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40982554, endtime: 40982822, seqnum: 0, connid: 0 98 12:59:35,5321247 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55174 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40982555, endtime: 40982822, seqnum: 0, connid: 0 98 12:59:35,5321322 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55174 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40982556, endtime: 40982822, seqnum: 0, connid: 0 98 12:59:35,5321397 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55174 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40982558, endtime: 40982822, seqnum: 0, connid: 0 98 12:59:35,5321455 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55174 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40982559, endtime: 40982822, seqnum: 0, connid: 0 98 12:59:35,5321521 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55174 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40982562, endtime: 40982822, seqnum: 0, connid: 0 98 12:59:35,5321577 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55174 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40982564, endtime: 40982822, seqnum: 0, connid: 0 98 12:59:35,5321646 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55174 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40982566, endtime: 40982822, seqnum: 0, connid: 0 98 12:59:35,5321701 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55174 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40982571, endtime: 40982822, seqnum: 0, connid: 0 98 12:59:35,5322017 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55174 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40982573, endtime: 40982822, seqnum: 0, connid: 0 98 12:59:35,5322075 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55174 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40982575, endtime: 40982822, seqnum: 0, connid: 0 98 12:59:35,5322142 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55174 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40982576, endtime: 40982822, seqnum: 0, connid: 0 98 12:59:35,5322197 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55174 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40982578, endtime: 40982822, seqnum: 0, connid: 0 98 12:59:36,9946429 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55133 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40982659, endtime: 40982968, seqnum: 0, connid: 0 98 12:59:36,9946617 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55133 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40982661, endtime: 40982968, seqnum: 0, connid: 0 98 12:59:36,9946695 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55133 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40982664, endtime: 40982968, seqnum: 0, connid: 0 98 12:59:36,9946770 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55133 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40982666, endtime: 40982968, seqnum: 0, connid: 0 98 12:59:36,9946828 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55133 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40982667, endtime: 40982968, seqnum: 0, connid: 0 98 12:59:36,9946897 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55133 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40982669, endtime: 40982968, seqnum: 0, connid: 0 98 12:59:36,9946953 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55133 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40982670, endtime: 40982968, seqnum: 0, connid: 0 98 12:59:36,9947911 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55133 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40982672, endtime: 40982968, seqnum: 0, connid: 0 98 12:59:36,9947997 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55133 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40982674, endtime: 40982968, seqnum: 0, connid: 0 98 12:59:36,9948069 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55133 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40982675, endtime: 40982968, seqnum: 0, connid: 0 98 12:59:36,9948127 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55133 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40982678, endtime: 40982968, seqnum: 0, connid: 0 98 12:59:36,9948197 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55133 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40982680, endtime: 40982968, seqnum: 0, connid: 0 98 12:59:36,9948257 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55133 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40982681, endtime: 40982968, seqnum: 0, connid: 0 98 12:59:37,1567736 MCLauncher.exe 6080 TCP Reconnect WIN-0UOTFKKVN1S:55190 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 0, seqnum: 0, connid: 0 98 12:59:37,1567822 MCLauncher.exe 6080 TCP Reconnect WIN-0UOTFKKVN1S:55189 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 0, seqnum: 0, connid: 0 98 12:59:37,1881338 MCLauncher.exe 6080 TCP Reconnect WIN-0UOTFKKVN1S:55191 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 0, seqnum: 0, connid: 0 98 12:59:37,6711775 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55101 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40982689, endtime: 40983036, seqnum: 0, connid: 0 98 12:59:37,6711941 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55101 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40982691, endtime: 40983036, seqnum: 0, connid: 0 98 12:59:37,6712013 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55101 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40982693, endtime: 40983036, seqnum: 0, connid: 0 98 12:59:37,6712088 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55101 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40982694, endtime: 40983036, seqnum: 0, connid: 0 98 12:59:37,6712146 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55101 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40982695, endtime: 40983036, seqnum: 0, connid: 0 98 12:59:37,6712215 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55101 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40982697, endtime: 40983036, seqnum: 0, connid: 0 98 12:59:37,6712273 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55101 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40982699, endtime: 40983036, seqnum: 0, connid: 0 98 12:59:37,6712337 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55101 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40982701, endtime: 40983036, seqnum: 0, connid: 0 98 12:59:37,6712392 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55101 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40982701, endtime: 40983036, seqnum: 0, connid: 0 98 12:59:37,6713168 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55101 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40982702, endtime: 40983036, seqnum: 0, connid: 0 98 12:59:37,6713243 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55101 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40982702, endtime: 40983036, seqnum: 0, connid: 0 98 12:59:37,6713309 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55101 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40982705, endtime: 40983036, seqnum: 0, connid: 0 98 12:59:37,6715088 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55101 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40982706, endtime: 40983036, seqnum: 0, connid: 0 98 12:59:38,5861454 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55174 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40982822, endtime: 40983127, seqnum: 0, connid: 0 98 12:59:38,5861628 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55174 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40982823, endtime: 40983127, seqnum: 0, connid: 0 98 12:59:38,5861703 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55174 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40982825, endtime: 40983127, seqnum: 0, connid: 0 98 12:59:38,5861783 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55174 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40982826, endtime: 40983127, seqnum: 0, connid: 0 98 12:59:38,5861844 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55174 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40982828, endtime: 40983127, seqnum: 0, connid: 0 98 12:59:38,5861916 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55174 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40982830, endtime: 40983127, seqnum: 0, connid: 0 98 12:59:38,5861974 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55174 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40982831, endtime: 40983127, seqnum: 0, connid: 0 98 12:59:38,5862044 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55174 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40982834, endtime: 40983127, seqnum: 0, connid: 0 98 12:59:38,5862102 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55174 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40982836, endtime: 40983127, seqnum: 0, connid: 0 98 12:59:38,5862429 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55174 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40982837, endtime: 40983127, seqnum: 0, connid: 0 98 12:59:38,5862490 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55174 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40982841, endtime: 40983127, seqnum: 0, connid: 0 98 12:59:38,5862556 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55174 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40982843, endtime: 40983127, seqnum: 0, connid: 0 98 12:59:38,5862612 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55174 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40982846, endtime: 40983127, seqnum: 0, connid: 0 98 12:59:38,7036797 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55174 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40983127, endtime: 40983139, seqnum: 0, connid: 0 98 12:59:38,9384182 MCLauncher.exe 6080 TCP Reconnect WIN-0UOTFKKVN1S:55191 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 0, seqnum: 0, connid: 0 98 12:59:38,9384254 MCLauncher.exe 6080 TCP Reconnect WIN-0UOTFKKVN1S:55189 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 0, seqnum: 0, connid: 0 98 12:59:38,9384274 MCLauncher.exe 6080 TCP Reconnect WIN-0UOTFKKVN1S:55190 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 0, seqnum: 0, connid: 0 98 12:59:40,1776592 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55101 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40983036, endtime: 40983286, seqnum: 0, connid: 0 98 12:59:40,1776797 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55101 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40983037, endtime: 40983286, seqnum: 0, connid: 0 98 12:59:40,1776880 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55101 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40983040, endtime: 40983286, seqnum: 0, connid: 0 98 12:59:40,1776963 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55101 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40983041, endtime: 40983286, seqnum: 0, connid: 0 98 12:59:40,1777030 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55101 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40983042, endtime: 40983286, seqnum: 0, connid: 0 98 12:59:40,1777102 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55101 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40983044, endtime: 40983286, seqnum: 0, connid: 0 98 12:59:40,1777163 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55101 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40983047, endtime: 40983286, seqnum: 0, connid: 0 98 12:59:40,1777235 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55101 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40983049, endtime: 40983286, seqnum: 0, connid: 0 98 12:59:40,1777296 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55101 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40983052, endtime: 40983286, seqnum: 0, connid: 0 98 12:59:40,1777603 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55101 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40983053, endtime: 40983286, seqnum: 0, connid: 0 98 12:59:40,1777667 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55101 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40983055, endtime: 40983286, seqnum: 0, connid: 0 98 12:59:40,1777736 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55101 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40983056, endtime: 40983286, seqnum: 0, connid: 0 98 12:59:40,1777797 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55101 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40983058, endtime: 40983286, seqnum: 0, connid: 0 98 12:59:40,8470136 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55133 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40982968, endtime: 40983353, seqnum: 0, connid: 0 98 12:59:40,8470305 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55133 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40982970, endtime: 40983353, seqnum: 0, connid: 0 98 12:59:40,8470377 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55133 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40982975, endtime: 40983353, seqnum: 0, connid: 0 98 12:59:40,8470449 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55133 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40982977, endtime: 40983353, seqnum: 0, connid: 0 98 12:59:40,8470507 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55133 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40982978, endtime: 40983353, seqnum: 0, connid: 0 98 12:59:40,8470573 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55133 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40982980, endtime: 40983353, seqnum: 0, connid: 0 98 12:59:40,8470626 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55133 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40982981, endtime: 40983353, seqnum: 0, connid: 0 98 12:59:40,8470690 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55133 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40982983, endtime: 40983353, seqnum: 0, connid: 0 98 12:59:40,8472158 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55133 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40982984, endtime: 40983353, seqnum: 0, connid: 0 98 12:59:40,8472288 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55133 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40982986, endtime: 40983353, seqnum: 0, connid: 0 98 12:59:40,8472358 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55133 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40982987, endtime: 40983353, seqnum: 0, connid: 0 98 12:59:40,8472433 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55133 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40982989, endtime: 40983353, seqnum: 0, connid: 0 98 12:59:40,8472493 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55133 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40982991, endtime: 40983353, seqnum: 0, connid: 0 98 12:59:41,0182320 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55174 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40983130, endtime: 40983370, seqnum: 0, connid: 0 98 12:59:41,0182492 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55174 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40983134, endtime: 40983370, seqnum: 0, connid: 0 98 12:59:41,0182580 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55174 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40983136, endtime: 40983370, seqnum: 0, connid: 0 98 12:59:41,0182641 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55174 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40983139, endtime: 40983370, seqnum: 0, connid: 0 98 12:59:41,0182711 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55174 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40983140, endtime: 40983370, seqnum: 0, connid: 0 98 12:59:41,0182766 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55174 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40983142, endtime: 40983370, seqnum: 0, connid: 0 98 12:59:41,0182833 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55174 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40983144, endtime: 40983370, seqnum: 0, connid: 0 98 12:59:41,0182888 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55174 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40983145, endtime: 40983370, seqnum: 0, connid: 0 98 12:59:41,0182954 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55174 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40983149, endtime: 40983370, seqnum: 0, connid: 0 98 12:59:41,0183697 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55174 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40983150, endtime: 40983370, seqnum: 0, connid: 0 98 12:59:41,0183780 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55174 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40983152, endtime: 40983370, seqnum: 0, connid: 0 98 12:59:41,0183835 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55174 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40983153, endtime: 40983370, seqnum: 0, connid: 0 98 12:59:41,0188548 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55174 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40983155, endtime: 40983370, seqnum: 0, connid: 0 98 12:59:42,1100104 MCLauncher.exe 6080 TCP Reconnect WIN-0UOTFKKVN1S:55196 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 0, seqnum: 0, connid: 0 98 12:59:42,1100187 MCLauncher.exe 6080 TCP Reconnect WIN-0UOTFKKVN1S:55195 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 0, seqnum: 0, connid: 0 98 12:59:42,1100207 MCLauncher.exe 6080 TCP Reconnect WIN-0UOTFKKVN1S:55197 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 0, seqnum: 0, connid: 0 98 12:59:42,7372911 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55101 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40983286, endtime: 40983542, seqnum: 0, connid: 0 98 12:59:42,7373091 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55101 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40983287, endtime: 40983542, seqnum: 0, connid: 0 98 12:59:42,7373166 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55101 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40983291, endtime: 40983542, seqnum: 0, connid: 0 98 12:59:42,7373240 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55101 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40983292, endtime: 40983542, seqnum: 0, connid: 0 98 12:59:42,7373299 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55101 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40983295, endtime: 40983542, seqnum: 0, connid: 0 98 12:59:42,7373362 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55101 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40983297, endtime: 40983542, seqnum: 0, connid: 0 98 12:59:42,7373418 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55101 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40983299, endtime: 40983542, seqnum: 0, connid: 0 98 12:59:42,7373484 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55101 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40983301, endtime: 40983542, seqnum: 0, connid: 0 98 12:59:42,7373537 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55101 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40983302, endtime: 40983542, seqnum: 0, connid: 0 98 12:59:42,7373822 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55101 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40983303, endtime: 40983542, seqnum: 0, connid: 0 98 12:59:42,7382192 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55101 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40983306, endtime: 40983542, seqnum: 0, connid: 0 98 12:59:42,7382306 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55101 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40983308, endtime: 40983542, seqnum: 0, connid: 0 98 12:59:42,7382394 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55101 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40983309, endtime: 40983542, seqnum: 0, connid: 0 98 12:59:42,8954203 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55174 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40983370, endtime: 40983558, seqnum: 0, connid: 0 98 12:59:42,8954394 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55174 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40983372, endtime: 40983558, seqnum: 0, connid: 0 98 12:59:42,8954471 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55174 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40983373, endtime: 40983558, seqnum: 0, connid: 0 98 12:59:42,8954546 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55174 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40983375, endtime: 40983558, seqnum: 0, connid: 0 98 12:59:42,8954601 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55174 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40983377, endtime: 40983558, seqnum: 0, connid: 0 98 12:59:42,8954671 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55174 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40983378, endtime: 40983558, seqnum: 0, connid: 0 98 12:59:42,8954726 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55174 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40983380, endtime: 40983558, seqnum: 0, connid: 0 98 12:59:42,8954795 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55174 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40983381, endtime: 40983558, seqnum: 0, connid: 0 98 12:59:42,8954851 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55174 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40983383, endtime: 40983558, seqnum: 0, connid: 0 98 12:59:42,8955485 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55174 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40983386, endtime: 40983558, seqnum: 0, connid: 0 98 12:59:42,8955557 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55174 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40983387, endtime: 40983558, seqnum: 0, connid: 0 98 12:59:42,8957167 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55174 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40983391, endtime: 40983558, seqnum: 0, connid: 0 98 12:59:43,2445469 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55133 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40983353, endtime: 40983593, seqnum: 0, connid: 0 98 12:59:43,2445613 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55133 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40983355, endtime: 40983593, seqnum: 0, connid: 0 98 12:59:43,2445679 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55133 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40983356, endtime: 40983593, seqnum: 0, connid: 0 98 12:59:43,2445749 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55133 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40983358, endtime: 40983593, seqnum: 0, connid: 0 98 12:59:43,2445801 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55133 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40983359, endtime: 40983593, seqnum: 0, connid: 0 98 12:59:43,2445865 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55133 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40983361, endtime: 40983593, seqnum: 0, connid: 0 98 12:59:43,2445918 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55133 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40983364, endtime: 40983593, seqnum: 0, connid: 0 98 12:59:43,2445979 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55133 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40983367, endtime: 40983593, seqnum: 0, connid: 0 98 12:59:43,2446031 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55133 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40983369, endtime: 40983593, seqnum: 0, connid: 0 98 12:59:43,2446306 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55133 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40983372, endtime: 40983593, seqnum: 0, connid: 0 98 12:59:43,2446361 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55133 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40983373, endtime: 40983593, seqnum: 0, connid: 0 98 12:59:43,2446425 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55133 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40983375, endtime: 40983593, seqnum: 0, connid: 0 98 12:59:43,2446477 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55133 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40983377, endtime: 40983593, seqnum: 0, connid: 0 98 12:59:43,8593622 MCLauncher.exe 6080 TCP Reconnect WIN-0UOTFKKVN1S:55197 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 0, seqnum: 0, connid: 0 98 12:59:43,8593711 MCLauncher.exe 6080 TCP Reconnect WIN-0UOTFKKVN1S:55195 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 0, seqnum: 0, connid: 0 98 12:59:43,8593736 MCLauncher.exe 6080 TCP Reconnect WIN-0UOTFKKVN1S:55196 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 0, seqnum: 0, connid: 0 98 12:59:44,4762328 MCLauncher.exe 6080 TCP TCPCopy WIN-0UOTFKKVN1S:54920 -> sheltex.company:8000 SUCCESS Length: 2, seqnum: 0, connid: 0 98 12:59:44,4762450 MCLauncher.exe 6080 TCP Receive WIN-0UOTFKKVN1S:54920 -> sheltex.company:8000 SUCCESS Length: 2, seqnum: 0, connid: 0 98 12:59:44,4765844 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54920 -> sheltex.company:8000 SUCCESS Length: 2, startime: 40983716, endtime: 40983716, seqnum: 0, connid: 0 98 12:59:44,9217597 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55133 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40983593, endtime: 40983761, seqnum: 0, connid: 0 98 12:59:44,9217774 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55133 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40983595, endtime: 40983761, seqnum: 0, connid: 0 98 12:59:44,9217849 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55133 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40983598, endtime: 40983761, seqnum: 0, connid: 0 98 12:59:44,9217927 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55133 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40983600, endtime: 40983761, seqnum: 0, connid: 0 98 12:59:44,9217985 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55133 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40983601, endtime: 40983761, seqnum: 0, connid: 0 98 12:59:44,9218051 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55133 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40983601, endtime: 40983761, seqnum: 0, connid: 0 98 12:59:44,9218107 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55133 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40983603, endtime: 40983761, seqnum: 0, connid: 0 98 12:59:44,9218173 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55133 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40983605, endtime: 40983761, seqnum: 0, connid: 0 98 12:59:44,9218226 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55133 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40983608, endtime: 40983761, seqnum: 0, connid: 0 98 12:59:44,9218531 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55133 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40983610, endtime: 40983761, seqnum: 0, connid: 0 98 12:59:44,9218589 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55133 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40983611, endtime: 40983761, seqnum: 0, connid: 0 98 12:59:44,9218658 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55133 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40983614, endtime: 40983761, seqnum: 0, connid: 0 98 12:59:44,9227341 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55133 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40983616, endtime: 40983761, seqnum: 0, connid: 0 98 12:59:45,7151967 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55174 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40983392, endtime: 40983840, seqnum: 0, connid: 0 98 12:59:45,7152285 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55174 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40983558, endtime: 40983840, seqnum: 0, connid: 0 98 12:59:45,7152385 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55174 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40983559, endtime: 40983840, seqnum: 0, connid: 0 98 12:59:45,7152463 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55174 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40983561, endtime: 40983840, seqnum: 0, connid: 0 98 12:59:45,7152521 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55174 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40983562, endtime: 40983840, seqnum: 0, connid: 0 98 12:59:45,7152593 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55174 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40983564, endtime: 40983840, seqnum: 0, connid: 0 98 12:59:45,7152648 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55174 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40983566, endtime: 40983840, seqnum: 0, connid: 0 98 12:59:45,7152718 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55174 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40983567, endtime: 40983840, seqnum: 0, connid: 0 98 12:59:45,7152773 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55174 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40983569, endtime: 40983840, seqnum: 0, connid: 0 98 12:59:45,7153089 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55174 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40983572, endtime: 40983840, seqnum: 0, connid: 0 98 12:59:45,7153147 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55174 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40983573, endtime: 40983840, seqnum: 0, connid: 0 98 12:59:45,7153211 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55174 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40983575, endtime: 40983840, seqnum: 0, connid: 0 98 12:59:45,7154361 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55174 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40983577, endtime: 40983840, seqnum: 0, connid: 0 98 12:59:46,9825804 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55101 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40983542, endtime: 40983967, seqnum: 0, connid: 0 98 12:59:46,9825984 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55101 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40983545, endtime: 40983967, seqnum: 0, connid: 0 98 12:59:46,9826056 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55101 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40983547, endtime: 40983967, seqnum: 0, connid: 0 98 12:59:46,9826131 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55101 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40983550, endtime: 40983967, seqnum: 0, connid: 0 98 12:59:46,9826189 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55101 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40983551, endtime: 40983967, seqnum: 0, connid: 0 98 12:59:46,9826256 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55101 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40983553, endtime: 40983967, seqnum: 0, connid: 0 98 12:59:46,9826308 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55101 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40983555, endtime: 40983967, seqnum: 0, connid: 0 98 12:59:46,9826500 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55101 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40983558, endtime: 40983967, seqnum: 0, connid: 0 98 12:59:46,9826594 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55101 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40983559, endtime: 40983967, seqnum: 0, connid: 0 98 12:59:46,9827569 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55101 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40983561, endtime: 40983967, seqnum: 0, connid: 0 98 12:59:46,9827638 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55101 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40983562, endtime: 40983967, seqnum: 0, connid: 0 98 12:59:46,9827705 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55101 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40983564, endtime: 40983967, seqnum: 0, connid: 0 98 12:59:46,9829306 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55101 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40983566, endtime: 40983967, seqnum: 0, connid: 0 98 12:59:46,9846079 MCLauncher.exe 6080 TCP Reconnect WIN-0UOTFKKVN1S:55199 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 0, seqnum: 0, connid: 0 98 12:59:47,0002452 MCLauncher.exe 6080 TCP Reconnect WIN-0UOTFKKVN1S:55201 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 0, seqnum: 0, connid: 0 98 12:59:47,0002552 MCLauncher.exe 6080 TCP Reconnect WIN-0UOTFKKVN1S:55200 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 0, seqnum: 0, connid: 0 98 12:59:47,2571945 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55174 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40983840, endtime: 40983994, seqnum: 0, connid: 0 98 12:59:47,2572200 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55174 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40983842, endtime: 40983994, seqnum: 0, connid: 0 98 12:59:47,2572291 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55174 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40983844, endtime: 40983994, seqnum: 0, connid: 0 98 12:59:47,2572574 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55174 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40983845, endtime: 40983994, seqnum: 0, connid: 0 98 12:59:47,2572657 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55174 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40983847, endtime: 40983994, seqnum: 0, connid: 0 98 12:59:47,2572735 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55174 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40983848, endtime: 40983994, seqnum: 0, connid: 0 98 12:59:47,2572796 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55174 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40983850, endtime: 40983994, seqnum: 0, connid: 0 98 12:59:47,2572868 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55174 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40983851, endtime: 40983994, seqnum: 0, connid: 0 98 12:59:47,2585091 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55174 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40983853, endtime: 40983994, seqnum: 0, connid: 0 98 12:59:47,2585692 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55174 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40983855, endtime: 40983994, seqnum: 0, connid: 0 98 12:59:47,2585784 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55174 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40983856, endtime: 40983994, seqnum: 0, connid: 0 98 12:59:47,2585870 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55174 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40983858, endtime: 40983994, seqnum: 0, connid: 0 98 12:59:47,2585939 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55174 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40983859, endtime: 40983994, seqnum: 0, connid: 0 98 12:59:48,2236339 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55133 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40983761, endtime: 40984091, seqnum: 0, connid: 0 98 12:59:48,2236486 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55133 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40983762, endtime: 40984091, seqnum: 0, connid: 0 98 12:59:48,2236558 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55133 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40983764, endtime: 40984091, seqnum: 0, connid: 0 98 12:59:48,2236630 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55133 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40983767, endtime: 40984091, seqnum: 0, connid: 0 98 12:59:48,2236688 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55133 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40983769, endtime: 40984091, seqnum: 0, connid: 0 98 12:59:48,2236751 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55133 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40983770, endtime: 40984091, seqnum: 0, connid: 0 98 12:59:48,2236804 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55133 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40983773, endtime: 40984091, seqnum: 0, connid: 0 98 12:59:48,2238322 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55133 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40983775, endtime: 40984091, seqnum: 0, connid: 0 98 12:59:48,2238439 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55133 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40983777, endtime: 40984091, seqnum: 0, connid: 0 98 12:59:48,2238522 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55133 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40983778, endtime: 40984091, seqnum: 0, connid: 0 98 12:59:48,2238586 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55133 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40983780, endtime: 40984091, seqnum: 0, connid: 0 98 12:59:48,2238660 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55133 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40983781, endtime: 40984091, seqnum: 0, connid: 0 98 12:59:48,2238721 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55133 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40983785, endtime: 40984091, seqnum: 0, connid: 0 98 12:59:48,3197682 MCLauncher.exe 6080 TCP Connect WIN-0UOTFKKVN1S:55199 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 0, mss: 1460, sackopt: 0, tsopt: 0, wsopt: 0, rcvwin: 64240, rcvwinscale: 0, sndwinscale: 0, seqnum: 0, connid: 0 98 12:59:48,3200859 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55199 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40984101, endtime: 40984101, seqnum: 0, connid: 0 98 12:59:48,3440748 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55199 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40984103, endtime: 40984103, seqnum: 0, connid: 0 98 12:59:48,3606445 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55199 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40984105, endtime: 40984105, seqnum: 0, connid: 0 98 12:59:48,3760028 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55199 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40984106, endtime: 40984106, seqnum: 0, connid: 0 98 12:59:48,4092897 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55199 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40984109, endtime: 40984110, seqnum: 0, connid: 0 98 12:59:48,4249494 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55199 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40984111, endtime: 40984111, seqnum: 0, connid: 0 98 12:59:48,4295477 MCLauncher.exe 6080 TCP Connect WIN-0UOTFKKVN1S:55200 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 0, mss: 1460, sackopt: 0, tsopt: 0, wsopt: 0, rcvwin: 64240, rcvwinscale: 0, sndwinscale: 0, seqnum: 0, connid: 0 98 12:59:48,4295851 MCLauncher.exe 6080 TCP Connect WIN-0UOTFKKVN1S:55201 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 0, mss: 1460, sackopt: 0, tsopt: 0, wsopt: 0, rcvwin: 64240, rcvwinscale: 0, sndwinscale: 0, seqnum: 0, connid: 0 98 12:59:48,4300101 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55200 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40984112, endtime: 40984112, seqnum: 0, connid: 0 98 12:59:48,4303177 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55201 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40984112, endtime: 40984112, seqnum: 0, connid: 0 98 12:59:48,4386438 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55201 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40984112, endtime: 40984112, seqnum: 0, connid: 0 98 12:59:48,4388579 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55200 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40984112, endtime: 40984112, seqnum: 0, connid: 0 98 12:59:48,4394112 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55199 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40984112, endtime: 40984113, seqnum: 0, connid: 0 98 12:59:48,4543803 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55200 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40984114, endtime: 40984114, seqnum: 0, connid: 0 98 12:59:48,4545953 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55201 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40984114, endtime: 40984114, seqnum: 0, connid: 0 98 12:59:48,4562329 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55199 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40984114, endtime: 40984114, seqnum: 0, connid: 0 98 12:59:48,4696824 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55201 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40984116, endtime: 40984116, seqnum: 0, connid: 0 98 12:59:48,4697092 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55200 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40984116, endtime: 40984116, seqnum: 0, connid: 0 98 12:59:48,4703545 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55199 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40984116, endtime: 40984116, seqnum: 0, connid: 0 98 12:59:48,4856926 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55200 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40984117, endtime: 40984117, seqnum: 0, connid: 0 98 12:59:48,4858815 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55201 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40984117, endtime: 40984117, seqnum: 0, connid: 0 98 12:59:48,4876314 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55199 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40984117, endtime: 40984117, seqnum: 0, connid: 0 98 12:59:48,5008938 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55201 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40984119, endtime: 40984119, seqnum: 0, connid: 0 98 12:59:48,5014931 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55200 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40984119, endtime: 40984119, seqnum: 0, connid: 0 98 12:59:48,5029438 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55199 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40984119, endtime: 40984119, seqnum: 0, connid: 0 98 12:59:48,5166960 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55200 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40984120, endtime: 40984120, seqnum: 0, connid: 0 98 12:59:48,5167215 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55201 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40984120, endtime: 40984120, seqnum: 0, connid: 0 98 12:59:48,5173210 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55199 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40984120, endtime: 40984120, seqnum: 0, connid: 0 98 12:59:48,5325746 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55201 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40984122, endtime: 40984122, seqnum: 0, connid: 0 98 12:59:48,5325985 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55200 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40984122, endtime: 40984122, seqnum: 0, connid: 0 98 12:59:48,5349288 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55199 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40984122, endtime: 40984122, seqnum: 0, connid: 0 98 12:59:48,5745666 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55200 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40984126, endtime: 40984126, seqnum: 0, connid: 0 98 12:59:48,5748057 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55201 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40984126, endtime: 40984126, seqnum: 0, connid: 0 98 12:59:48,5794556 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55199 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40984126, endtime: 40984127, seqnum: 0, connid: 0 98 12:59:48,5956542 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55201 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40984128, endtime: 40984128, seqnum: 0, connid: 0 98 12:59:48,5956794 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55200 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40984128, endtime: 40984128, seqnum: 0, connid: 0 98 12:59:48,6045707 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55199 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40984128, endtime: 40984129, seqnum: 0, connid: 0 98 12:59:48,6104066 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55200 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40984130, endtime: 40984130, seqnum: 0, connid: 0 98 12:59:48,6105579 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55201 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40984130, endtime: 40984130, seqnum: 0, connid: 0 98 12:59:48,6106698 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55199 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40984130, endtime: 40984130, seqnum: 0, connid: 0 98 12:59:48,6272704 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55201 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40984131, endtime: 40984131, seqnum: 0, connid: 0 98 12:59:48,6275154 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55200 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40984131, endtime: 40984131, seqnum: 0, connid: 0 98 12:59:48,6295107 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55199 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40984131, endtime: 40984132, seqnum: 0, connid: 0 98 12:59:48,6414466 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55200 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40984133, endtime: 40984133, seqnum: 0, connid: 0 98 12:59:48,6414726 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55201 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40984133, endtime: 40984133, seqnum: 0, connid: 0 98 12:59:48,6421309 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55199 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40984133, endtime: 40984133, seqnum: 0, connid: 0 98 12:59:48,6573537 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55201 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40984134, endtime: 40984134, seqnum: 0, connid: 0 98 12:59:48,6575175 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55200 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40984134, endtime: 40984134, seqnum: 0, connid: 0 98 12:59:48,6580162 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55199 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40984134, endtime: 40984134, seqnum: 0, connid: 0 98 12:59:48,6740059 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55200 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40984136, endtime: 40984136, seqnum: 0, connid: 0 98 12:59:48,6740284 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55201 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40984136, endtime: 40984136, seqnum: 0, connid: 0 98 12:59:48,6748778 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55199 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40984136, endtime: 40984136, seqnum: 0, connid: 0 98 12:59:48,6884793 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55201 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40984137, endtime: 40984137, seqnum: 0, connid: 0 98 12:59:48,6886772 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55200 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40984137, endtime: 40984137, seqnum: 0, connid: 0 98 12:59:48,6925108 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55199 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40984137, endtime: 40984138, seqnum: 0, connid: 0 98 12:59:48,7041762 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55200 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40984139, endtime: 40984139, seqnum: 0, connid: 0 98 12:59:48,7043993 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55201 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40984139, endtime: 40984139, seqnum: 0, connid: 0 98 12:59:48,7044153 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55199 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40984139, endtime: 40984139, seqnum: 0, connid: 0 98 12:59:48,7195467 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55201 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40984141, endtime: 40984141, seqnum: 0, connid: 0 98 12:59:48,7197537 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55200 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40984141, endtime: 40984141, seqnum: 0, connid: 0 98 12:59:48,7214041 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55199 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40984141, endtime: 40984141, seqnum: 0, connid: 0 98 12:59:48,7353201 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55200 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40984142, endtime: 40984142, seqnum: 0, connid: 0 98 12:59:48,7355235 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55201 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40984142, endtime: 40984142, seqnum: 0, connid: 0 98 12:59:48,7423163 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55199 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40984142, endtime: 40984143, seqnum: 0, connid: 0 98 12:59:48,7508089 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55201 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40984144, endtime: 40984144, seqnum: 0, connid: 0 98 12:59:48,7509685 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55200 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40984144, endtime: 40984144, seqnum: 0, connid: 0 98 12:59:48,7513802 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55199 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40984144, endtime: 40984144, seqnum: 0, connid: 0 98 12:59:48,7665468 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55200 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40984145, endtime: 40984145, seqnum: 0, connid: 0 98 12:59:48,7667651 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55201 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40984145, endtime: 40984145, seqnum: 0, connid: 0 98 12:59:48,7672339 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55199 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40984145, endtime: 40984145, seqnum: 0, connid: 0 98 12:59:48,7826989 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55201 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40984147, endtime: 40984147, seqnum: 0, connid: 0 98 12:59:48,7829726 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55200 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40984147, endtime: 40984147, seqnum: 0, connid: 0 98 12:59:48,7858728 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55199 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40984147, endtime: 40984147, seqnum: 0, connid: 0 98 12:59:48,7976577 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55200 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40984148, endtime: 40984148, seqnum: 0, connid: 0 98 12:59:48,7978719 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55201 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40984148, endtime: 40984148, seqnum: 0, connid: 0 98 12:59:48,7997564 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55199 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40984148, endtime: 40984149, seqnum: 0, connid: 0 98 12:59:48,8136297 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55201 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40984150, endtime: 40984150, seqnum: 0, connid: 0 98 12:59:48,8138660 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55200 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40984150, endtime: 40984150, seqnum: 0, connid: 0 98 12:59:48,8142844 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55199 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40984150, endtime: 40984150, seqnum: 0, connid: 0 98 12:59:48,8291243 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55200 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40984151, endtime: 40984152, seqnum: 0, connid: 0 98 12:59:48,8291473 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55201 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40984151, endtime: 40984152, seqnum: 0, connid: 0 98 12:59:48,8447254 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55201 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40984153, endtime: 40984153, seqnum: 0, connid: 0 98 12:59:48,8447459 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55200 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40984153, endtime: 40984153, seqnum: 0, connid: 0 98 12:59:48,8600820 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55200 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40984155, endtime: 40984155, seqnum: 0, connid: 0 98 12:59:48,8769498 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55200 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40984156, endtime: 40984156, seqnum: 0, connid: 0 98 12:59:48,9090201 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55200 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40984159, endtime: 40984160, seqnum: 0, connid: 0 98 12:59:48,9241596 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55200 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40984161, endtime: 40984161, seqnum: 0, connid: 0 98 12:59:48,9386809 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55200 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40984162, endtime: 40984162, seqnum: 0, connid: 0 98 12:59:49,1439312 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55199 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40984152, endtime: 40984183, seqnum: 0, connid: 0 98 12:59:49,1439517 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55199 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40984153, endtime: 40984183, seqnum: 0, connid: 0 98 12:59:49,1439595 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55199 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40984155, endtime: 40984183, seqnum: 0, connid: 0 98 12:59:49,1439675 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55199 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40984156, endtime: 40984183, seqnum: 0, connid: 0 98 12:59:49,1439736 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55199 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40984159, endtime: 40984183, seqnum: 0, connid: 0 98 12:59:49,1439814 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55199 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40984161, endtime: 40984183, seqnum: 0, connid: 0 98 12:59:49,1439875 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55199 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40984162, endtime: 40984183, seqnum: 0, connid: 0 98 12:59:49,1439947 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55199 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40984166, endtime: 40984183, seqnum: 0, connid: 0 98 12:59:49,1440010 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55199 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40984168, endtime: 40984183, seqnum: 0, connid: 0 98 12:59:49,1440326 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55199 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40984169, endtime: 40984183, seqnum: 0, connid: 0 98 12:59:49,1585806 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55201 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40984155, endtime: 40984184, seqnum: 0, connid: 0 98 12:59:49,1586011 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55201 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40984156, endtime: 40984184, seqnum: 0, connid: 0 98 12:59:49,1586085 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55201 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40984159, endtime: 40984184, seqnum: 0, connid: 0 98 12:59:49,1586166 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55201 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40984161, endtime: 40984184, seqnum: 0, connid: 0 98 12:59:49,1586224 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55201 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40984162, endtime: 40984184, seqnum: 0, connid: 0 98 12:59:49,1586296 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55201 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40984166, endtime: 40984184, seqnum: 0, connid: 0 98 12:59:49,1586354 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55201 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40984168, endtime: 40984184, seqnum: 0, connid: 0 98 12:59:49,1586423 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55201 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40984169, endtime: 40984184, seqnum: 0, connid: 0 98 12:59:49,1586479 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55201 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40984171, endtime: 40984184, seqnum: 0, connid: 0 98 12:59:49,1586833 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55201 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40984172, endtime: 40984184, seqnum: 0, connid: 0 98 12:59:49,1586889 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55201 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40984173, endtime: 40984184, seqnum: 0, connid: 0 98 12:59:49,1586955 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55201 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40984176, endtime: 40984184, seqnum: 0, connid: 0 98 12:59:49,4963615 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55174 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40983994, endtime: 40984218, seqnum: 0, connid: 0 98 12:59:49,4963828 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55174 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40983995, endtime: 40984218, seqnum: 0, connid: 0 98 12:59:49,4963914 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55174 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40983998, endtime: 40984218, seqnum: 0, connid: 0 98 12:59:49,4964000 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55174 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40984002, endtime: 40984218, seqnum: 0, connid: 0 98 12:59:49,4964202 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55174 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40984006, endtime: 40984218, seqnum: 0, connid: 0 98 12:59:49,4964343 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55174 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40984008, endtime: 40984218, seqnum: 0, connid: 0 98 12:59:49,4964451 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55174 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40984012, endtime: 40984218, seqnum: 0, connid: 0 98 12:59:49,4964546 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55174 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40984012, endtime: 40984218, seqnum: 0, connid: 0 98 12:59:49,4964612 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55174 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40984014, endtime: 40984218, seqnum: 0, connid: 0 98 12:59:49,4964947 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55174 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40984016, endtime: 40984218, seqnum: 0, connid: 0 98 12:59:49,4965014 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55174 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40984017, endtime: 40984218, seqnum: 0, connid: 0 98 12:59:49,4965086 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55174 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40984019, endtime: 40984218, seqnum: 0, connid: 0 98 12:59:49,4965147 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55174 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40984021, endtime: 40984218, seqnum: 0, connid: 0 98 12:59:50,5041307 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55200 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40984166, endtime: 40984319, seqnum: 0, connid: 0 98 12:59:50,5041498 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55200 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40984168, endtime: 40984319, seqnum: 0, connid: 0 98 12:59:50,5041578 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55200 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40984169, endtime: 40984319, seqnum: 0, connid: 0 98 12:59:50,5041659 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55200 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40984171, endtime: 40984319, seqnum: 0, connid: 0 98 12:59:50,5041720 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55200 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40984172, endtime: 40984319, seqnum: 0, connid: 0 98 12:59:50,5041792 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55200 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40984173, endtime: 40984319, seqnum: 0, connid: 0 98 12:59:50,5041853 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55200 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40984176, endtime: 40984319, seqnum: 0, connid: 0 98 12:59:50,5041930 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55200 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40984178, endtime: 40984319, seqnum: 0, connid: 0 98 12:59:50,6261930 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55101 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40983967, endtime: 40984331, seqnum: 0, connid: 0 98 12:59:50,6262088 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55101 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40983969, endtime: 40984331, seqnum: 0, connid: 0 98 12:59:50,6262157 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55101 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40983970, endtime: 40984331, seqnum: 0, connid: 0 98 12:59:50,6262232 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55101 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40983972, endtime: 40984331, seqnum: 0, connid: 0 98 12:59:50,6262293 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55101 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40983973, endtime: 40984331, seqnum: 0, connid: 0 98 12:59:50,6262359 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55101 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40983975, endtime: 40984331, seqnum: 0, connid: 0 98 12:59:50,6262415 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55101 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40983976, endtime: 40984331, seqnum: 0, connid: 0 98 12:59:50,6262484 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55101 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40983978, endtime: 40984331, seqnum: 0, connid: 0 98 12:59:50,6262537 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55101 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40983980, endtime: 40984331, seqnum: 0, connid: 0 98 12:59:50,6263321 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55101 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40983981, endtime: 40984331, seqnum: 0, connid: 0 98 12:59:50,6263393 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55101 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40983983, endtime: 40984331, seqnum: 0, connid: 0 98 12:59:50,6263459 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55101 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40983986, endtime: 40984331, seqnum: 0, connid: 0 98 12:59:50,6268975 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55101 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40983987, endtime: 40984331, seqnum: 0, connid: 0 98 12:59:50,9655706 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55199 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40984171, endtime: 40984365, seqnum: 0, connid: 0 98 12:59:50,9655864 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55199 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40984172, endtime: 40984365, seqnum: 0, connid: 0 98 12:59:50,9655949 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55199 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40984173, endtime: 40984365, seqnum: 0, connid: 0 98 12:59:50,9656016 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55199 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40984183, endtime: 40984365, seqnum: 0, connid: 0 98 12:59:50,9656088 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55199 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40984184, endtime: 40984365, seqnum: 0, connid: 0 98 12:59:50,9656146 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55199 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40984186, endtime: 40984365, seqnum: 0, connid: 0 98 12:59:50,9656213 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55199 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40984187, endtime: 40984365, seqnum: 0, connid: 0 98 12:59:50,9656271 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55199 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40984189, endtime: 40984365, seqnum: 0, connid: 0 98 12:59:50,9656340 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55199 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40984191, endtime: 40984365, seqnum: 0, connid: 0 98 12:59:50,9656988 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55199 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40984191, endtime: 40984365, seqnum: 0, connid: 0 98 12:59:50,9657072 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55199 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40984194, endtime: 40984365, seqnum: 0, connid: 0 98 12:59:50,9657130 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55199 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40984195, endtime: 40984365, seqnum: 0, connid: 0 98 12:59:51,2526904 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55201 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40984178, endtime: 40984394, seqnum: 0, connid: 0 98 12:59:51,2527087 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55201 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40984184, endtime: 40984394, seqnum: 0, connid: 0 98 12:59:51,2527167 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55201 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40984186, endtime: 40984394, seqnum: 0, connid: 0 98 12:59:51,2527250 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55201 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40984187, endtime: 40984394, seqnum: 0, connid: 0 98 12:59:51,2527311 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55201 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40984189, endtime: 40984394, seqnum: 0, connid: 0 98 12:59:51,2527386 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55201 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40984191, endtime: 40984394, seqnum: 0, connid: 0 98 12:59:51,2527447 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55201 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40984191, endtime: 40984394, seqnum: 0, connid: 0 98 12:59:51,2527516 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55201 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40984194, endtime: 40984394, seqnum: 0, connid: 0 98 12:59:51,2527574 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55201 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40984195, endtime: 40984394, seqnum: 0, connid: 0 98 12:59:51,2527871 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55201 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40984197, endtime: 40984394, seqnum: 0, connid: 0 98 12:59:51,2527937 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55201 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40984200, endtime: 40984394, seqnum: 0, connid: 0 98 12:59:51,2528007 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55201 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40984201, endtime: 40984394, seqnum: 0, connid: 0 98 12:59:51,2528068 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55201 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40984203, endtime: 40984394, seqnum: 0, connid: 0 98 12:59:51,6526632 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55200 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40984180, endtime: 40984434, seqnum: 0, connid: 0 98 12:59:51,6526790 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55200 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40984181, endtime: 40984434, seqnum: 0, connid: 0 98 12:59:51,6526878 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55200 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40984183, endtime: 40984434, seqnum: 0, connid: 0 98 12:59:51,6526945 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55200 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40984184, endtime: 40984434, seqnum: 0, connid: 0 98 12:59:51,6527020 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55200 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40984186, endtime: 40984434, seqnum: 0, connid: 0 98 12:59:51,6527081 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55200 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40984319, endtime: 40984434, seqnum: 0, connid: 0 98 12:59:51,6527153 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55200 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40984320, endtime: 40984434, seqnum: 0, connid: 0 98 12:59:51,6527211 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55200 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40984322, endtime: 40984434, seqnum: 0, connid: 0 98 12:59:51,6527280 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55200 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40984323, endtime: 40984434, seqnum: 0, connid: 0 98 12:59:51,6527976 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55200 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40984325, endtime: 40984434, seqnum: 0, connid: 0 98 12:59:51,6528064 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55200 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40984326, endtime: 40984434, seqnum: 0, connid: 0 98 12:59:51,6528122 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55200 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40984328, endtime: 40984434, seqnum: 0, connid: 0 98 12:59:51,6528264 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55174 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40984218, endtime: 40984434, seqnum: 0, connid: 0 98 12:59:51,6528341 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55174 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40984220, endtime: 40984434, seqnum: 0, connid: 0 98 12:59:51,6528405 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55174 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40984224, endtime: 40984434, seqnum: 0, connid: 0 98 12:59:51,6528480 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55174 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40984227, endtime: 40984434, seqnum: 0, connid: 0 98 12:59:51,6528541 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55174 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40984228, endtime: 40984434, seqnum: 0, connid: 0 98 12:59:51,6528613 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55174 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40984230, endtime: 40984434, seqnum: 0, connid: 0 98 12:59:51,6529186 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55174 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40984231, endtime: 40984434, seqnum: 0, connid: 0 98 12:59:51,6529272 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55174 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40984233, endtime: 40984434, seqnum: 0, connid: 0 98 12:59:51,6529330 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55174 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40984234, endtime: 40984434, seqnum: 0, connid: 0 98 12:59:51,6529402 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55174 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40984236, endtime: 40984434, seqnum: 0, connid: 0 98 12:59:51,6529461 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55174 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40984238, endtime: 40984434, seqnum: 0, connid: 0 98 12:59:51,6529530 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55174 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40984239, endtime: 40984434, seqnum: 0, connid: 0 98 12:59:51,6529591 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55174 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40984241, endtime: 40984434, seqnum: 0, connid: 0 98 12:59:51,7521770 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55133 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40984091, endtime: 40984444, seqnum: 0, connid: 0 98 12:59:51,7521950 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55133 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40984092, endtime: 40984444, seqnum: 0, connid: 0 98 12:59:51,7522025 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55133 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40984094, endtime: 40984444, seqnum: 0, connid: 0 98 12:59:51,7522097 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55133 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40984097, endtime: 40984444, seqnum: 0, connid: 0 98 12:59:51,7522155 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55133 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40984098, endtime: 40984444, seqnum: 0, connid: 0 98 12:59:51,7522222 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55133 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40984100, endtime: 40984444, seqnum: 0, connid: 0 98 12:59:51,7522277 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55133 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40984100, endtime: 40984444, seqnum: 0, connid: 0 98 12:59:51,7522671 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55133 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40984103, endtime: 40984444, seqnum: 0, connid: 0 98 12:59:51,7522743 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55133 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40984105, endtime: 40984444, seqnum: 0, connid: 0 98 12:59:51,7523072 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55133 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40984106, endtime: 40984444, seqnum: 0, connid: 0 98 12:59:51,7523283 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55133 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40984109, endtime: 40984444, seqnum: 0, connid: 0 98 12:59:51,7523402 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55133 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40984111, endtime: 40984444, seqnum: 0, connid: 0 98 12:59:51,7523496 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55133 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40984112, endtime: 40984444, seqnum: 0, connid: 0 98 12:59:52,7058557 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55199 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40984197, endtime: 40984539, seqnum: 0, connid: 0 98 12:59:52,7058743 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55199 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40984365, endtime: 40984539, seqnum: 0, connid: 0 98 12:59:52,7058832 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55199 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40984367, endtime: 40984539, seqnum: 0, connid: 0 98 12:59:52,7058895 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55199 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40984369, endtime: 40984539, seqnum: 0, connid: 0 98 12:59:52,7058967 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55199 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40984370, endtime: 40984539, seqnum: 0, connid: 0 98 12:59:52,7059023 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55199 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40984372, endtime: 40984539, seqnum: 0, connid: 0 98 12:59:52,7059089 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55199 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40984373, endtime: 40984539, seqnum: 0, connid: 0 98 12:59:52,7059145 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55199 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40984375, endtime: 40984539, seqnum: 0, connid: 0 98 12:59:52,7059211 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55199 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40984376, endtime: 40984539, seqnum: 0, connid: 0 98 12:59:52,7059364 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55199 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40984378, endtime: 40984539, seqnum: 0, connid: 0 98 12:59:52,7059721 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55199 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40984380, endtime: 40984539, seqnum: 0, connid: 0 98 12:59:52,7059782 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55199 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40984381, endtime: 40984539, seqnum: 0, connid: 0 98 12:59:52,7059848 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55199 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40984383, endtime: 40984539, seqnum: 0, connid: 0 98 12:59:53,4603965 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55101 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40984331, endtime: 40984615, seqnum: 0, connid: 0 98 12:59:53,4604159 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55101 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40984333, endtime: 40984615, seqnum: 0, connid: 0 98 12:59:53,4604240 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55101 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40984334, endtime: 40984615, seqnum: 0, connid: 0 98 12:59:53,4604353 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55101 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40984336, endtime: 40984615, seqnum: 0, connid: 0 98 12:59:53,4604445 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55101 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40984337, endtime: 40984615, seqnum: 0, connid: 0 98 12:59:53,4604561 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55101 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40984339, endtime: 40984615, seqnum: 0, connid: 0 98 12:59:53,4604625 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55101 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40984341, endtime: 40984615, seqnum: 0, connid: 0 98 12:59:53,4604694 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55101 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40984342, endtime: 40984615, seqnum: 0, connid: 0 98 12:59:53,4604752 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55101 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40984344, endtime: 40984615, seqnum: 0, connid: 0 98 12:59:53,4605431 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55101 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40984345, endtime: 40984615, seqnum: 0, connid: 0 98 12:59:53,4605506 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55101 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40984348, endtime: 40984615, seqnum: 0, connid: 0 98 12:59:53,4605578 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55101 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40984350, endtime: 40984615, seqnum: 0, connid: 0 98 12:59:53,6746451 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55101 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40984352, endtime: 40984636, seqnum: 0, connid: 0 98 12:59:53,8393117 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55200 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40984330, endtime: 40984653, seqnum: 0, connid: 0 98 12:59:53,8393377 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55200 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40984434, endtime: 40984653, seqnum: 0, connid: 0 98 12:59:53,8393519 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55200 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40984436, endtime: 40984653, seqnum: 0, connid: 0 98 12:59:53,8393621 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55200 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40984438, endtime: 40984653, seqnum: 0, connid: 0 98 12:59:53,8393735 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55200 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40984439, endtime: 40984653, seqnum: 0, connid: 0 98 12:59:53,8393835 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55200 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40984441, endtime: 40984653, seqnum: 0, connid: 0 98 12:59:53,8393945 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55200 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40984442, endtime: 40984653, seqnum: 0, connid: 0 98 12:59:53,8394042 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55200 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40984444, endtime: 40984653, seqnum: 0, connid: 0 98 12:59:53,8394153 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55200 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40984445, endtime: 40984653, seqnum: 0, connid: 0 98 12:59:53,8394247 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55200 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40984447, endtime: 40984653, seqnum: 0, connid: 0 98 12:59:53,8394682 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55200 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40984450, endtime: 40984653, seqnum: 0, connid: 0 98 12:59:53,8394779 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55200 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40984451, endtime: 40984653, seqnum: 0, connid: 0 98 12:59:53,8394893 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55200 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40984453, endtime: 40984653, seqnum: 0, connid: 0 98 12:59:54,0156775 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55199 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40984539, endtime: 40984670, seqnum: 0, connid: 0 98 12:59:54,0157058 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55199 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40984540, endtime: 40984670, seqnum: 0, connid: 0 98 12:59:54,0157180 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55199 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40984542, endtime: 40984670, seqnum: 0, connid: 0 98 12:59:54,0157293 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55199 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40984545, endtime: 40984670, seqnum: 0, connid: 0 98 12:59:54,0157388 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55199 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40984547, endtime: 40984670, seqnum: 0, connid: 0 98 12:59:54,0157507 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55199 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40984548, endtime: 40984670, seqnum: 0, connid: 0 98 12:59:54,0157609 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55199 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40984550, endtime: 40984670, seqnum: 0, connid: 0 98 12:59:54,0157731 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55199 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40984554, endtime: 40984670, seqnum: 0, connid: 0 98 12:59:54,0157837 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55199 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40984555, endtime: 40984670, seqnum: 0, connid: 0 98 12:59:54,0158280 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55199 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40984558, endtime: 40984670, seqnum: 0, connid: 0 98 12:59:54,0158360 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55199 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40984559, endtime: 40984670, seqnum: 0, connid: 0 98 12:59:54,0158432 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55199 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40984561, endtime: 40984670, seqnum: 0, connid: 0 98 12:59:54,0158493 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55199 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40984562, endtime: 40984670, seqnum: 0, connid: 0 98 12:59:54,1744697 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55174 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40984434, endtime: 40984686, seqnum: 0, connid: 0 98 12:59:54,1744874 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55174 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40984436, endtime: 40984686, seqnum: 0, connid: 0 98 12:59:54,1744952 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55174 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40984438, endtime: 40984686, seqnum: 0, connid: 0 98 12:59:54,1745138 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55174 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40984439, endtime: 40984686, seqnum: 0, connid: 0 98 12:59:54,1745265 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55174 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40984441, endtime: 40984686, seqnum: 0, connid: 0 98 12:59:54,1745387 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55174 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40984442, endtime: 40984686, seqnum: 0, connid: 0 98 12:59:54,1745484 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55174 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40984444, endtime: 40984686, seqnum: 0, connid: 0 98 12:59:54,1745600 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55174 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40984445, endtime: 40984686, seqnum: 0, connid: 0 98 12:59:54,1745703 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55174 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40984447, endtime: 40984686, seqnum: 0, connid: 0 98 12:59:54,1746213 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55174 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40984450, endtime: 40984686, seqnum: 0, connid: 0 98 12:59:54,1746304 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55174 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40984451, endtime: 40984686, seqnum: 0, connid: 0 98 12:59:54,1746412 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55174 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40984453, endtime: 40984686, seqnum: 0, connid: 0 98 12:59:54,1746495 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55174 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40984455, endtime: 40984686, seqnum: 0, connid: 0 98 12:59:54,2491430 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55174 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40984686, endtime: 40984694, seqnum: 0, connid: 0 98 12:59:54,3740922 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55133 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40984444, endtime: 40984706, seqnum: 0, connid: 0 98 12:59:54,3741108 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55133 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40984445, endtime: 40984706, seqnum: 0, connid: 0 98 12:59:54,3741185 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55133 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40984447, endtime: 40984706, seqnum: 0, connid: 0 98 12:59:54,3741263 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55133 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40984450, endtime: 40984706, seqnum: 0, connid: 0 98 12:59:54,3741327 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55133 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40984451, endtime: 40984706, seqnum: 0, connid: 0 98 12:59:54,3741399 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55133 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40984453, endtime: 40984706, seqnum: 0, connid: 0 98 12:59:54,3741457 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55133 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40984455, endtime: 40984706, seqnum: 0, connid: 0 98 12:59:54,3741523 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55133 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40984456, endtime: 40984706, seqnum: 0, connid: 0 98 12:59:54,3741584 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55133 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40984459, endtime: 40984706, seqnum: 0, connid: 0 98 12:59:54,3741864 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55133 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40984461, endtime: 40984706, seqnum: 0, connid: 0 98 12:59:54,3741925 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55133 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40984463, endtime: 40984706, seqnum: 0, connid: 0 98 12:59:54,3741994 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55133 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40984464, endtime: 40984706, seqnum: 0, connid: 0 98 12:59:54,3742050 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55133 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40984466, endtime: 40984706, seqnum: 0, connid: 0 98 12:59:54,6199479 MCLauncher.exe 6080 TCP TCPCopy WIN-0UOTFKKVN1S:54920 -> sheltex.company:8000 SUCCESS Length: 2, seqnum: 0, connid: 0 98 12:59:54,6199637 MCLauncher.exe 6080 TCP Receive WIN-0UOTFKKVN1S:54920 -> sheltex.company:8000 SUCCESS Length: 2, seqnum: 0, connid: 0 98 12:59:54,6202933 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54920 -> sheltex.company:8000 SUCCESS Length: 2, startime: 40984731, endtime: 40984731, seqnum: 0, connid: 0 98 12:59:55,7415234 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55200 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40984653, endtime: 40984843, seqnum: 0, connid: 0 98 12:59:55,7415430 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55200 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40984655, endtime: 40984843, seqnum: 0, connid: 0 98 12:59:55,7415511 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55200 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40984656, endtime: 40984843, seqnum: 0, connid: 0 98 12:59:55,7415594 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55200 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40984659, endtime: 40984843, seqnum: 0, connid: 0 98 12:59:55,7415658 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55200 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40984662, endtime: 40984843, seqnum: 0, connid: 0 98 12:59:55,7415730 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55200 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40984662, endtime: 40984843, seqnum: 0, connid: 0 98 12:59:55,7415796 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55200 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40984664, endtime: 40984843, seqnum: 0, connid: 0 98 12:59:55,7415865 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55200 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40984666, endtime: 40984843, seqnum: 0, connid: 0 98 12:59:55,7415926 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55200 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40984669, endtime: 40984843, seqnum: 0, connid: 0 98 12:59:55,7416242 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55200 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40984670, endtime: 40984843, seqnum: 0, connid: 0 98 12:59:55,7416309 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55200 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40984672, endtime: 40984843, seqnum: 0, connid: 0 98 12:59:55,7416381 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55200 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40984673, endtime: 40984843, seqnum: 0, connid: 0 98 12:59:55,7416442 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55200 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40984675, endtime: 40984843, seqnum: 0, connid: 0 98 12:59:56,2350469 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55133 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40984706, endtime: 40984892, seqnum: 0, connid: 0 98 12:59:56,2350660 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55133 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40984708, endtime: 40984892, seqnum: 0, connid: 0 98 12:59:56,2350741 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55133 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40984709, endtime: 40984892, seqnum: 0, connid: 0 98 12:59:56,2350818 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55133 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40984713, endtime: 40984892, seqnum: 0, connid: 0 98 12:59:56,2350879 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55133 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40984714, endtime: 40984892, seqnum: 0, connid: 0 98 12:59:56,2350948 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55133 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40984717, endtime: 40984892, seqnum: 0, connid: 0 98 12:59:56,2351004 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55133 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40984719, endtime: 40984892, seqnum: 0, connid: 0 98 12:59:56,2351073 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55133 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40984722, endtime: 40984892, seqnum: 0, connid: 0 98 12:59:56,2351129 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55133 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40984724, endtime: 40984892, seqnum: 0, connid: 0 98 12:59:56,2351453 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55133 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40984725, endtime: 40984892, seqnum: 0, connid: 0 98 12:59:56,2351514 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55133 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40984729, endtime: 40984892, seqnum: 0, connid: 0 98 12:59:56,2351580 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55133 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40984730, endtime: 40984892, seqnum: 0, connid: 0 98 12:59:56,2352641 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55133 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40984731, endtime: 40984892, seqnum: 0, connid: 0 98 12:59:57,9426508 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55174 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40984687, endtime: 40985063, seqnum: 0, connid: 0 98 12:59:57,9426719 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55174 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40984691, endtime: 40985063, seqnum: 0, connid: 0 98 12:59:57,9426857 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55174 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40984692, endtime: 40985063, seqnum: 0, connid: 0 98 12:59:57,9426960 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55174 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40984695, endtime: 40985063, seqnum: 0, connid: 0 98 12:59:57,9427079 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55174 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40984697, endtime: 40985063, seqnum: 0, connid: 0 98 12:59:57,9427176 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55174 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40984698, endtime: 40985063, seqnum: 0, connid: 0 98 12:59:57,9427287 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55174 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40984700, endtime: 40985063, seqnum: 0, connid: 0 98 12:59:57,9427384 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55174 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40984700, endtime: 40985063, seqnum: 0, connid: 0 98 12:59:57,9427497 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55174 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40984703, endtime: 40985063, seqnum: 0, connid: 0 98 12:59:57,9428406 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55174 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40984706, endtime: 40985063, seqnum: 0, connid: 0 98 12:59:57,9428539 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55174 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40984708, endtime: 40985063, seqnum: 0, connid: 0 98 12:59:57,9428636 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55174 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40984709, endtime: 40985063, seqnum: 0, connid: 0 98 12:59:58,0136298 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55101 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40984615, endtime: 40985070, seqnum: 0, connid: 0 98 12:59:58,0136487 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55101 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40984615, endtime: 40985070, seqnum: 0, connid: 0 98 12:59:58,0136575 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55101 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40984617, endtime: 40985070, seqnum: 0, connid: 0 98 12:59:58,0136639 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55101 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40984620, endtime: 40985070, seqnum: 0, connid: 0 98 12:59:58,0136711 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55101 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40984623, endtime: 40985070, seqnum: 0, connid: 0 98 12:59:58,0136769 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55101 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40984625, endtime: 40985070, seqnum: 0, connid: 0 98 12:59:58,0136838 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55101 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40984627, endtime: 40985070, seqnum: 0, connid: 0 98 12:59:58,0136897 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55101 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40984628, endtime: 40985070, seqnum: 0, connid: 0 98 12:59:58,0136966 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55101 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40984630, endtime: 40985070, seqnum: 0, connid: 0 98 12:59:58,0137725 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55101 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40984631, endtime: 40985070, seqnum: 0, connid: 0 98 12:59:58,0137816 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55101 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40984633, endtime: 40985070, seqnum: 0, connid: 0 98 12:59:58,0137872 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55101 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40984634, endtime: 40985070, seqnum: 0, connid: 0 98 12:59:58,4818695 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55174 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40984713, endtime: 40985117, seqnum: 0, connid: 0 98 12:59:58,4818875 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55174 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40985063, endtime: 40985117, seqnum: 0, connid: 0 98 12:59:58,4818961 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55174 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40985064, endtime: 40985117, seqnum: 0, connid: 0 98 12:59:58,4819025 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55174 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40985066, endtime: 40985117, seqnum: 0, connid: 0 98 12:59:58,4819094 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55174 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40985070, endtime: 40985117, seqnum: 0, connid: 0 98 12:59:58,4819149 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55174 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40985073, endtime: 40985117, seqnum: 0, connid: 0 98 12:59:58,4819216 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55174 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40985075, endtime: 40985117, seqnum: 0, connid: 0 98 12:59:58,4819271 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55174 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40985078, endtime: 40985117, seqnum: 0, connid: 0 98 12:59:58,4819338 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55174 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40985080, endtime: 40985117, seqnum: 0, connid: 0 98 12:59:58,4819390 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55174 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40985081, endtime: 40985117, seqnum: 0, connid: 0 98 12:59:58,4819823 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55174 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40985083, endtime: 40985117, seqnum: 0, connid: 0 98 12:59:58,4819897 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55174 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40985085, endtime: 40985117, seqnum: 0, connid: 0 98 12:59:58,4819969 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55174 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40985088, endtime: 40985117, seqnum: 0, connid: 0 98 12:59:59,3641071 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55199 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40984670, endtime: 40985205, seqnum: 0, connid: 0 98 12:59:59,3641251 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55199 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40984672, endtime: 40985205, seqnum: 0, connid: 0 98 12:59:59,3641331 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55199 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40984673, endtime: 40985205, seqnum: 0, connid: 0 98 12:59:59,3641409 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55199 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40984675, endtime: 40985205, seqnum: 0, connid: 0 98 12:59:59,3641473 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55199 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40984677, endtime: 40985205, seqnum: 0, connid: 0 98 12:59:59,3641542 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55199 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40984680, endtime: 40985205, seqnum: 0, connid: 0 98 12:59:59,3641603 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55199 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40984681, endtime: 40985205, seqnum: 0, connid: 0 98 12:59:59,3641672 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55199 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40984682, endtime: 40985205, seqnum: 0, connid: 0 98 12:59:59,3641730 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55199 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40984684, endtime: 40985205, seqnum: 0, connid: 0 98 12:59:59,3642019 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55199 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40984686, endtime: 40985205, seqnum: 0, connid: 0 98 12:59:59,3642082 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55199 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40984687, endtime: 40985205, seqnum: 0, connid: 0 98 12:59:59,3642152 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55199 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40984691, endtime: 40985205, seqnum: 0, connid: 0 98 12:59:59,3642210 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55199 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40984692, endtime: 40985205, seqnum: 0, connid: 0 98 13:00:00,4619445 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55201 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40984394, endtime: 40985315, seqnum: 0, connid: 0 98 13:00:00,4619625 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55201 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40984395, endtime: 40985315, seqnum: 0, connid: 0 98 13:00:00,4619716 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55201 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40984398, endtime: 40985315, seqnum: 0, connid: 0 98 13:00:00,4619783 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55201 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40984400, endtime: 40985315, seqnum: 0, connid: 0 98 13:00:00,4619852 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55201 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40984400, endtime: 40985315, seqnum: 0, connid: 0 98 13:00:00,4619910 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55201 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40984401, endtime: 40985315, seqnum: 0, connid: 0 98 13:00:00,4619979 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55201 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40984403, endtime: 40985315, seqnum: 0, connid: 0 98 13:00:00,4620035 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55201 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40984407, endtime: 40985315, seqnum: 0, connid: 0 98 13:00:00,4620101 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55201 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40984409, endtime: 40985315, seqnum: 0, connid: 0 98 13:00:00,4620378 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55201 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40984411, endtime: 40985315, seqnum: 0, connid: 0 98 13:00:00,4620448 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55201 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40984412, endtime: 40985315, seqnum: 0, connid: 0 98 13:00:00,4620506 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55201 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40984415, endtime: 40985315, seqnum: 0, connid: 0 98 13:00:00,4620572 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55201 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40984417, endtime: 40985315, seqnum: 0, connid: 0 98 13:00:01,0307505 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55101 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40984636, endtime: 40985372, seqnum: 0, connid: 0 98 13:00:01,0307668 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55101 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40985070, endtime: 40985372, seqnum: 0, connid: 0 98 13:00:01,0307754 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55101 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40985073, endtime: 40985372, seqnum: 0, connid: 0 98 13:00:01,0307815 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55101 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40985075, endtime: 40985372, seqnum: 0, connid: 0 98 13:00:01,0307887 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55101 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40985078, endtime: 40985372, seqnum: 0, connid: 0 98 13:00:01,0307943 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55101 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40985080, endtime: 40985372, seqnum: 0, connid: 0 98 13:00:01,0308009 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55101 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40985081, endtime: 40985372, seqnum: 0, connid: 0 98 13:00:01,0308062 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55101 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40985083, endtime: 40985372, seqnum: 0, connid: 0 98 13:00:01,0308128 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55101 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40985085, endtime: 40985372, seqnum: 0, connid: 0 98 13:00:01,0308184 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55101 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40985088, endtime: 40985372, seqnum: 0, connid: 0 98 13:00:01,0308497 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55101 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40985091, endtime: 40985372, seqnum: 0, connid: 0 98 13:00:01,0308555 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55101 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40985092, endtime: 40985372, seqnum: 0, connid: 0 98 13:00:01,0308621 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55101 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40985093, endtime: 40985372, seqnum: 0, connid: 0 98 13:00:01,1984786 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55199 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40985205, endtime: 40985388, seqnum: 0, connid: 0 98 13:00:01,1984963 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55199 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40985206, endtime: 40985388, seqnum: 0, connid: 0 98 13:00:01,1985038 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55199 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40985208, endtime: 40985388, seqnum: 0, connid: 0 98 13:00:01,1985110 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55199 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40985209, endtime: 40985388, seqnum: 0, connid: 0 98 13:00:01,1985165 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55199 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40985211, endtime: 40985388, seqnum: 0, connid: 0 98 13:00:01,1985232 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55199 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40985212, endtime: 40985388, seqnum: 0, connid: 0 98 13:00:01,1985284 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55199 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40985214, endtime: 40985388, seqnum: 0, connid: 0 98 13:00:01,1985351 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55199 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40985216, endtime: 40985388, seqnum: 0, connid: 0 98 13:00:01,1985403 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55199 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40985217, endtime: 40985388, seqnum: 0, connid: 0 98 13:00:01,1985891 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55199 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40985219, endtime: 40985388, seqnum: 0, connid: 0 98 13:00:01,1985991 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55199 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40985220, endtime: 40985388, seqnum: 0, connid: 0 98 13:00:01,1986099 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55199 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40985222, endtime: 40985388, seqnum: 0, connid: 0 98 13:00:01,1986182 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55199 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40985223, endtime: 40985388, seqnum: 0, connid: 0 98 13:00:01,2825155 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55133 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40984892, endtime: 40985397, seqnum: 0, connid: 0 98 13:00:01,2825363 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55133 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40984894, endtime: 40985397, seqnum: 0, connid: 0 98 13:00:01,2825448 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55133 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40984895, endtime: 40985397, seqnum: 0, connid: 0 98 13:00:01,2825534 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55133 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40984898, endtime: 40985397, seqnum: 0, connid: 0 98 13:00:01,2825598 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55133 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40984902, endtime: 40985397, seqnum: 0, connid: 0 98 13:00:01,2825676 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55133 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40984905, endtime: 40985397, seqnum: 0, connid: 0 98 13:00:01,2825739 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55133 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40984906, endtime: 40985397, seqnum: 0, connid: 0 98 13:00:01,2825814 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55133 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40984909, endtime: 40985397, seqnum: 0, connid: 0 98 13:00:01,2825875 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55133 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40984911, endtime: 40985397, seqnum: 0, connid: 0 98 13:00:01,2826197 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55133 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40984912, endtime: 40985397, seqnum: 0, connid: 0 98 13:00:01,2826257 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55133 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40984914, endtime: 40985397, seqnum: 0, connid: 0 98 13:00:01,2826327 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55133 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40984916, endtime: 40985397, seqnum: 0, connid: 0 98 13:00:01,2826385 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55133 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40984917, endtime: 40985397, seqnum: 0, connid: 0 98 13:00:01,4763475 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55200 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40984843, endtime: 40985416, seqnum: 0, connid: 0 98 13:00:01,4763625 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55200 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40984844, endtime: 40985416, seqnum: 0, connid: 0 98 13:00:01,4763697 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55200 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40984844, endtime: 40985416, seqnum: 0, connid: 0 98 13:00:01,4763769 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55200 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40984845, endtime: 40985416, seqnum: 0, connid: 0 98 13:00:01,4763824 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55200 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40984848, endtime: 40985416, seqnum: 0, connid: 0 98 13:00:01,4763891 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55200 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40984850, endtime: 40985416, seqnum: 0, connid: 0 98 13:00:01,4763943 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55200 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40984851, endtime: 40985416, seqnum: 0, connid: 0 98 13:00:01,4764010 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55200 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40984853, endtime: 40985416, seqnum: 0, connid: 0 98 13:00:01,4764062 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55200 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40984856, endtime: 40985416, seqnum: 0, connid: 0 98 13:00:01,4764353 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55200 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40984858, endtime: 40985416, seqnum: 0, connid: 0 98 13:00:01,4764411 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55200 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40984861, endtime: 40985416, seqnum: 0, connid: 0 98 13:00:01,4764475 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55200 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40984863, endtime: 40985416, seqnum: 0, connid: 0 98 13:00:01,4764528 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55200 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40984866, endtime: 40985416, seqnum: 0, connid: 0 98 13:00:02,0960063 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55201 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40985315, endtime: 40985478, seqnum: 0, connid: 0 98 13:00:02,0960410 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55201 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40985315, endtime: 40985478, seqnum: 0, connid: 0 98 13:00:02,0960501 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55201 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40985317, endtime: 40985478, seqnum: 0, connid: 0 98 13:00:02,0960590 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55201 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40985319, endtime: 40985478, seqnum: 0, connid: 0 98 13:00:02,0960653 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55201 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40985322, endtime: 40985478, seqnum: 0, connid: 0 98 13:00:02,0960734 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55201 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40985323, endtime: 40985478, seqnum: 0, connid: 0 98 13:00:02,0960795 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55201 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40985327, endtime: 40985478, seqnum: 0, connid: 0 98 13:00:02,0960870 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55201 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40985329, endtime: 40985478, seqnum: 0, connid: 0 98 13:00:02,0960931 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55201 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40985330, endtime: 40985478, seqnum: 0, connid: 0 98 13:00:02,0961241 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55201 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40985333, endtime: 40985478, seqnum: 0, connid: 0 98 13:00:02,0961302 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55201 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40985334, endtime: 40985478, seqnum: 0, connid: 0 98 13:00:02,0961374 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55201 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40985336, endtime: 40985478, seqnum: 0, connid: 0 98 13:00:02,0961432 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55201 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40985339, endtime: 40985478, seqnum: 0, connid: 0 98 13:00:03,1252116 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55174 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40985117, endtime: 40985581, seqnum: 0, connid: 0 98 13:00:03,1252313 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55174 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40985120, endtime: 40985581, seqnum: 0, connid: 0 98 13:00:03,1252391 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55174 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40985122, endtime: 40985581, seqnum: 0, connid: 0 98 13:00:03,1252468 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55174 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40985127, endtime: 40985581, seqnum: 0, connid: 0 98 13:00:03,1252529 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55174 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40985128, endtime: 40985581, seqnum: 0, connid: 0 98 13:00:03,1252601 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55174 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40985130, endtime: 40985581, seqnum: 0, connid: 0 98 13:00:03,1252659 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55174 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40985133, endtime: 40985581, seqnum: 0, connid: 0 98 13:00:03,1252729 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55174 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40985135, endtime: 40985581, seqnum: 0, connid: 0 98 13:00:03,1252787 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55174 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40985136, endtime: 40985581, seqnum: 0, connid: 0 98 13:00:03,1253119 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55174 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40985139, endtime: 40985581, seqnum: 0, connid: 0 98 13:00:03,1253180 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55174 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40985142, endtime: 40985581, seqnum: 0, connid: 0 98 13:00:03,1253250 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55174 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40985146, endtime: 40985581, seqnum: 0, connid: 0 98 13:00:03,1253311 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55174 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40985148, endtime: 40985581, seqnum: 0, connid: 0 98 13:00:03,8626193 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55133 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40985397, endtime: 40985655, seqnum: 0, connid: 0 98 13:00:03,8626373 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55133 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40985398, endtime: 40985655, seqnum: 0, connid: 0 98 13:00:03,8626567 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55133 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40985400, endtime: 40985655, seqnum: 0, connid: 0 98 13:00:03,8626686 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55133 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40985400, endtime: 40985655, seqnum: 0, connid: 0 98 13:00:03,8626756 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55133 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40985401, endtime: 40985655, seqnum: 0, connid: 0 98 13:00:03,8626830 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55133 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40985404, endtime: 40985655, seqnum: 0, connid: 0 98 13:00:03,8626900 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55133 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40985406, endtime: 40985655, seqnum: 0, connid: 0 98 13:00:03,8626977 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55133 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40985408, endtime: 40985655, seqnum: 0, connid: 0 98 13:00:03,8627044 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55133 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40985409, endtime: 40985655, seqnum: 0, connid: 0 98 13:00:03,8627429 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55133 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40985412, endtime: 40985655, seqnum: 0, connid: 0 98 13:00:03,8627490 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55133 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40985414, endtime: 40985655, seqnum: 0, connid: 0 98 13:00:03,8627559 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55133 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40985416, endtime: 40985655, seqnum: 0, connid: 0 98 13:00:03,8627614 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55133 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40985419, endtime: 40985655, seqnum: 0, connid: 0 98 13:00:04,8353509 MCLauncher.exe 6080 TCP TCPCopy WIN-0UOTFKKVN1S:54920 -> sheltex.company:8000 SUCCESS Length: 2, seqnum: 0, connid: 0 98 13:00:04,8353623 MCLauncher.exe 6080 TCP Receive WIN-0UOTFKKVN1S:54920 -> sheltex.company:8000 SUCCESS Length: 2, seqnum: 0, connid: 0 98 13:00:04,8358335 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54920 -> sheltex.company:8000 SUCCESS Length: 2, startime: 40985752, endtime: 40985752, seqnum: 0, connid: 0 98 13:00:04,8533066 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55200 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40985416, endtime: 40985754, seqnum: 0, connid: 0 98 13:00:04,8533235 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55200 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40985419, endtime: 40985754, seqnum: 0, connid: 0 98 13:00:04,8533307 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55200 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40985420, endtime: 40985754, seqnum: 0, connid: 0 98 13:00:04,8533382 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55200 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40985422, endtime: 40985754, seqnum: 0, connid: 0 98 13:00:04,8533438 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55200 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40985423, endtime: 40985754, seqnum: 0, connid: 0 98 13:00:04,8533507 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55200 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40985425, endtime: 40985754, seqnum: 0, connid: 0 98 13:00:04,8533562 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55200 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40985426, endtime: 40985754, seqnum: 0, connid: 0 98 13:00:04,8533631 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55200 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40985428, endtime: 40985754, seqnum: 0, connid: 0 98 13:00:04,8533687 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55200 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40985430, endtime: 40985754, seqnum: 0, connid: 0 98 13:00:04,8533950 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55200 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40985431, endtime: 40985754, seqnum: 0, connid: 0 98 13:00:04,8534005 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55200 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40985433, endtime: 40985754, seqnum: 0, connid: 0 98 13:00:04,8534072 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55200 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40985434, endtime: 40985754, seqnum: 0, connid: 0 98 13:00:04,8534127 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55200 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40985436, endtime: 40985754, seqnum: 0, connid: 0 98 13:00:05,4656085 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55101 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40985372, endtime: 40985815, seqnum: 0, connid: 0 98 13:00:05,4656296 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55101 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40985373, endtime: 40985815, seqnum: 0, connid: 0 98 13:00:05,4656371 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55101 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40985376, endtime: 40985815, seqnum: 0, connid: 0 98 13:00:05,4656448 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55101 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40985378, endtime: 40985815, seqnum: 0, connid: 0 98 13:00:05,4656509 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55101 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40985380, endtime: 40985815, seqnum: 0, connid: 0 98 13:00:05,4656581 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55101 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40985383, endtime: 40985815, seqnum: 0, connid: 0 98 13:00:05,4656639 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55101 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40985384, endtime: 40985815, seqnum: 0, connid: 0 98 13:00:05,4656711 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55101 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40985386, endtime: 40985815, seqnum: 0, connid: 0 98 13:00:05,4656770 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55101 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40985388, endtime: 40985815, seqnum: 0, connid: 0 98 13:00:05,4657083 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55101 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40985389, endtime: 40985815, seqnum: 0, connid: 0 98 13:00:05,4657146 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55101 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40985391, endtime: 40985815, seqnum: 0, connid: 0 98 13:00:05,4657216 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55101 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40985392, endtime: 40985815, seqnum: 0, connid: 0 98 13:00:05,4657274 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55101 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40985394, endtime: 40985815, seqnum: 0, connid: 0 98 13:00:06,4747359 MCLauncher.exe 6080 TCP Disconnect WIN-0UOTFKKVN1S:55101 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 0, seqnum: 0, connid: 0 98 13:00:06,5763545 MCLauncher.exe 6080 TCP Connect WIN-0UOTFKKVN1S:55222 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 0, mss: 1460, sackopt: 0, tsopt: 0, wsopt: 0, rcvwin: 64240, rcvwinscale: 0, sndwinscale: 0, seqnum: 0, connid: 0 98 13:00:06,5768618 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55222 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40985926, endtime: 40985926, seqnum: 0, connid: 0 98 13:00:06,5953605 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55222 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40985928, endtime: 40985928, seqnum: 0, connid: 0 98 13:00:06,6271114 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55222 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40985931, endtime: 40985931, seqnum: 0, connid: 0 98 13:00:06,6413258 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55222 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40985933, endtime: 40985933, seqnum: 0, connid: 0 98 13:00:06,6584038 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55222 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40985934, endtime: 40985934, seqnum: 0, connid: 0 98 13:00:06,6731193 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55222 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40985936, endtime: 40985936, seqnum: 0, connid: 0 98 13:00:06,6905428 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55222 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40985938, endtime: 40985938, seqnum: 0, connid: 0 98 13:00:06,7195999 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55222 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40985941, endtime: 40985941, seqnum: 0, connid: 0 98 13:00:06,7367705 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55222 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40985942, endtime: 40985942, seqnum: 0, connid: 0 98 13:00:06,7540338 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55222 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40985944, endtime: 40985944, seqnum: 0, connid: 0 98 13:00:06,7688417 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55222 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40985945, endtime: 40985945, seqnum: 0, connid: 0 98 13:00:06,8004219 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55222 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40985949, endtime: 40985949, seqnum: 0, connid: 0 98 13:00:06,8142259 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55222 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40985950, endtime: 40985950, seqnum: 0, connid: 0 98 13:00:06,8459541 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55222 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40985953, endtime: 40985953, seqnum: 0, connid: 0 98 13:00:06,8601075 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55222 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40985955, endtime: 40985955, seqnum: 0, connid: 0 98 13:00:06,8784411 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55222 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40985956, endtime: 40985956, seqnum: 0, connid: 0 98 13:00:06,9085776 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55222 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40985959, endtime: 40985959, seqnum: 0, connid: 0 98 13:00:06,9227277 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55222 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40985961, endtime: 40985961, seqnum: 0, connid: 0 98 13:00:06,9551533 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55222 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40985964, endtime: 40985964, seqnum: 0, connid: 0 98 13:00:06,9797533 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55222 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40985965, endtime: 40985967, seqnum: 0, connid: 0 98 13:00:07,0040185 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55222 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40985969, endtime: 40985969, seqnum: 0, connid: 0 98 13:00:07,0351820 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55222 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40985972, endtime: 40985972, seqnum: 0, connid: 0 98 13:00:07,0651035 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55222 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40985975, endtime: 40985975, seqnum: 0, connid: 0 98 13:00:07,0786241 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55222 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40985976, endtime: 40985976, seqnum: 0, connid: 0 98 13:00:07,0973900 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55222 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40985978, endtime: 40985978, seqnum: 0, connid: 0 98 13:00:07,1267560 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55222 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40985981, endtime: 40985981, seqnum: 0, connid: 0 98 13:00:07,3232480 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55222 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40985983, endtime: 40986001, seqnum: 0, connid: 0 98 13:00:07,3232677 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55222 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40985984, endtime: 40986001, seqnum: 0, connid: 0 98 13:00:07,3232760 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55222 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40985986, endtime: 40986001, seqnum: 0, connid: 0 98 13:00:07,3232837 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55222 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40985989, endtime: 40986001, seqnum: 0, connid: 0 98 13:00:07,3232898 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55222 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40985992, endtime: 40986001, seqnum: 0, connid: 0 98 13:00:07,3232970 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55222 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40985994, endtime: 40986001, seqnum: 0, connid: 0 98 13:00:07,3233031 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55222 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40985997, endtime: 40986001, seqnum: 0, connid: 0 98 13:00:07,3233103 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55222 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40985998, endtime: 40986001, seqnum: 0, connid: 0 98 13:00:07,3233161 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55222 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40986000, endtime: 40986001, seqnum: 0, connid: 0 98 13:00:07,3233466 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55174 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40985581, endtime: 40986001, seqnum: 0, connid: 0 98 13:00:07,3233538 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55174 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40985583, endtime: 40986001, seqnum: 0, connid: 0 98 13:00:07,3233596 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55174 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40985586, endtime: 40986001, seqnum: 0, connid: 0 98 13:00:07,3233668 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55174 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40985588, endtime: 40986001, seqnum: 0, connid: 0 98 13:00:07,3233727 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55174 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40985592, endtime: 40986001, seqnum: 0, connid: 0 98 13:00:07,3233799 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55174 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40985594, endtime: 40986001, seqnum: 0, connid: 0 98 13:00:07,3233860 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55174 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40985595, endtime: 40986001, seqnum: 0, connid: 0 98 13:00:07,3233932 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55174 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40985599, endtime: 40986001, seqnum: 0, connid: 0 98 13:00:07,3233993 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55174 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40985600, endtime: 40986001, seqnum: 0, connid: 0 98 13:00:07,3234477 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55174 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40985601, endtime: 40986001, seqnum: 0, connid: 0 98 13:00:07,3234552 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55174 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40985603, endtime: 40986001, seqnum: 0, connid: 0 98 13:00:07,3234621 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55174 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40985605, endtime: 40986001, seqnum: 0, connid: 0 98 13:00:07,3234680 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55174 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40985608, endtime: 40986001, seqnum: 0, connid: 0 98 13:00:07,3242745 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55222 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40986001, endtime: 40986001, seqnum: 0, connid: 0 98 13:00:07,3589902 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55222 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40986003, endtime: 40986005, seqnum: 0, connid: 0 98 13:00:07,3781738 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55222 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40986006, endtime: 40986006, seqnum: 0, connid: 0 98 13:00:07,3992461 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55222 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40986008, endtime: 40986009, seqnum: 0, connid: 0 98 13:00:07,6351483 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55199 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40985388, endtime: 40986032, seqnum: 0, connid: 0 98 13:00:07,6351677 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55199 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40985391, endtime: 40986032, seqnum: 0, connid: 0 98 13:00:07,6351765 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55199 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40985392, endtime: 40986032, seqnum: 0, connid: 0 98 13:00:07,6351834 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55199 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40985394, endtime: 40986032, seqnum: 0, connid: 0 98 13:00:07,6351904 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55199 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40985395, endtime: 40986032, seqnum: 0, connid: 0 98 13:00:07,6351965 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55199 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40985397, endtime: 40986032, seqnum: 0, connid: 0 98 13:00:07,6352034 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55199 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40985398, endtime: 40986032, seqnum: 0, connid: 0 98 13:00:07,6352092 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55199 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40985400, endtime: 40986032, seqnum: 0, connid: 0 98 13:00:07,6352164 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55199 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40985400, endtime: 40986032, seqnum: 0, connid: 0 98 13:00:07,6352472 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55199 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40985401, endtime: 40986032, seqnum: 0, connid: 0 98 13:00:07,6352646 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55199 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40985404, endtime: 40986032, seqnum: 0, connid: 0 98 13:00:07,6352793 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55199 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40985406, endtime: 40986032, seqnum: 0, connid: 0 98 13:00:07,6352923 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55199 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40985408, endtime: 40986032, seqnum: 0, connid: 0 98 13:00:07,6490271 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55201 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40985478, endtime: 40986034, seqnum: 0, connid: 0 98 13:00:07,6490429 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55201 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40985480, endtime: 40986034, seqnum: 0, connid: 0 98 13:00:07,6490518 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55201 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40985481, endtime: 40986034, seqnum: 0, connid: 0 98 13:00:07,6490584 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55201 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40985483, endtime: 40986034, seqnum: 0, connid: 0 98 13:00:07,6490656 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55201 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40985484, endtime: 40986034, seqnum: 0, connid: 0 98 13:00:07,6490714 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55201 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40985488, endtime: 40986034, seqnum: 0, connid: 0 98 13:00:07,6490784 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55201 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40985489, endtime: 40986034, seqnum: 0, connid: 0 98 13:00:07,6490845 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55201 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40985491, endtime: 40986034, seqnum: 0, connid: 0 98 13:00:07,6490914 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55201 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40985492, endtime: 40986034, seqnum: 0, connid: 0 98 13:00:07,6491213 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55201 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40985494, endtime: 40986034, seqnum: 0, connid: 0 98 13:00:07,6491288 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55201 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40985495, endtime: 40986034, seqnum: 0, connid: 0 98 13:00:07,6491346 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55201 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40985497, endtime: 40986034, seqnum: 0, connid: 0 98 13:00:07,6491415 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55201 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40985498, endtime: 40986034, seqnum: 0, connid: 0 98 13:00:09,0748620 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55200 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40985754, endtime: 40986176, seqnum: 0, connid: 0 98 13:00:09,0748825 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55200 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40985756, endtime: 40986176, seqnum: 0, connid: 0 98 13:00:09,0749038 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55200 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40985758, endtime: 40986176, seqnum: 0, connid: 0 98 13:00:09,0749199 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55200 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40985761, endtime: 40986176, seqnum: 0, connid: 0 98 13:00:09,0749310 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55200 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40985764, endtime: 40986176, seqnum: 0, connid: 0 98 13:00:09,0749404 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55200 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40985766, endtime: 40986176, seqnum: 0, connid: 0 98 13:00:09,0749479 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55200 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40985768, endtime: 40986176, seqnum: 0, connid: 0 98 13:00:09,0749564 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55200 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40985769, endtime: 40986176, seqnum: 0, connid: 0 98 13:00:09,0749631 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55200 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40985772, endtime: 40986176, seqnum: 0, connid: 0 98 13:00:09,0749991 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55200 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40985775, endtime: 40986176, seqnum: 0, connid: 0 98 13:00:09,0750055 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55200 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40985778, endtime: 40986176, seqnum: 0, connid: 0 98 13:00:09,0750124 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55200 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40985780, endtime: 40986176, seqnum: 0, connid: 0 98 13:00:09,0750188 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55200 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40985781, endtime: 40986176, seqnum: 0, connid: 0 98 13:00:10,1146298 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55133 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40985655, endtime: 40986280, seqnum: 0, connid: 0 98 13:00:10,1146602 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55133 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40985656, endtime: 40986280, seqnum: 0, connid: 0 98 13:00:10,1146749 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55133 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40985659, endtime: 40986280, seqnum: 0, connid: 0 98 13:00:10,1146827 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55133 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40985659, endtime: 40986280, seqnum: 0, connid: 0 98 13:00:10,1146910 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55133 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40985661, endtime: 40986280, seqnum: 0, connid: 0 98 13:00:10,1146974 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55133 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40985662, endtime: 40986280, seqnum: 0, connid: 0 98 13:00:10,1147048 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55133 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40985664, endtime: 40986280, seqnum: 0, connid: 0 98 13:00:10,1147112 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55133 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40985666, endtime: 40986280, seqnum: 0, connid: 0 98 13:00:10,1147187 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55133 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40985669, endtime: 40986280, seqnum: 0, connid: 0 98 13:00:10,1147492 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55133 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40985670, endtime: 40986280, seqnum: 0, connid: 0 98 13:00:10,1147567 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55133 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40985672, endtime: 40986280, seqnum: 0, connid: 0 98 13:00:10,1147625 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55133 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40985673, endtime: 40986280, seqnum: 0, connid: 0 98 13:00:10,1147694 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55133 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40985675, endtime: 40986280, seqnum: 0, connid: 0 98 13:00:10,2862798 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55201 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40986034, endtime: 40986297, seqnum: 0, connid: 0 98 13:00:10,2862981 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55201 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40986034, endtime: 40986297, seqnum: 0, connid: 0 98 13:00:10,2863059 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55201 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40986036, endtime: 40986297, seqnum: 0, connid: 0 98 13:00:10,2863134 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55201 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40986037, endtime: 40986297, seqnum: 0, connid: 0 98 13:00:10,2863195 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55201 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40986041, endtime: 40986297, seqnum: 0, connid: 0 98 13:00:10,2863264 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55201 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40986042, endtime: 40986297, seqnum: 0, connid: 0 98 13:00:10,2863322 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55201 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40986044, endtime: 40986297, seqnum: 0, connid: 0 98 13:00:10,2863391 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55201 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40986048, endtime: 40986297, seqnum: 0, connid: 0 98 13:00:10,2863444 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55201 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40986050, endtime: 40986297, seqnum: 0, connid: 0 98 13:00:10,2863763 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55201 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40986051, endtime: 40986297, seqnum: 0, connid: 0 98 13:00:10,2863821 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55201 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40986053, endtime: 40986297, seqnum: 0, connid: 0 98 13:00:10,2863890 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55201 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40986055, endtime: 40986297, seqnum: 0, connid: 0 98 13:00:10,2863945 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55201 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40986058, endtime: 40986297, seqnum: 0, connid: 0 98 13:00:11,3542168 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55199 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40986032, endtime: 40986404, seqnum: 0, connid: 0 98 13:00:11,3542350 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55199 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40986033, endtime: 40986404, seqnum: 0, connid: 0 98 13:00:11,3542428 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55199 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40986034, endtime: 40986404, seqnum: 0, connid: 0 98 13:00:11,3542630 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55199 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40986036, endtime: 40986404, seqnum: 0, connid: 0 98 13:00:11,3542747 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55199 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40986037, endtime: 40986404, seqnum: 0, connid: 0 98 13:00:11,3542849 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55199 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40986041, endtime: 40986404, seqnum: 0, connid: 0 98 13:00:11,3542929 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55199 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40986042, endtime: 40986404, seqnum: 0, connid: 0 98 13:00:11,3543026 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55199 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40986044, endtime: 40986404, seqnum: 0, connid: 0 98 13:00:11,3543104 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55199 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40986048, endtime: 40986404, seqnum: 0, connid: 0 98 13:00:11,3543547 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55199 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40986050, endtime: 40986404, seqnum: 0, connid: 0 98 13:00:11,3543628 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55199 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40986051, endtime: 40986404, seqnum: 0, connid: 0 98 13:00:11,3543716 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55199 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40986053, endtime: 40986404, seqnum: 0, connid: 0 98 13:00:11,3543797 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55199 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40986055, endtime: 40986404, seqnum: 0, connid: 0 98 13:00:11,7376562 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55222 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40986011, endtime: 40986442, seqnum: 0, connid: 0 98 13:00:11,7376729 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55222 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40986014, endtime: 40986442, seqnum: 0, connid: 0 98 13:00:11,7376801 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55222 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40986016, endtime: 40986442, seqnum: 0, connid: 0 98 13:00:11,7376873 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55222 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40986017, endtime: 40986442, seqnum: 0, connid: 0 98 13:00:11,7376928 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55222 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40986019, endtime: 40986442, seqnum: 0, connid: 0 98 13:00:11,7376994 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55222 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40986022, endtime: 40986442, seqnum: 0, connid: 0 98 13:00:11,7377050 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55222 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40986025, endtime: 40986442, seqnum: 0, connid: 0 98 13:00:11,7377116 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55222 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40986026, endtime: 40986442, seqnum: 0, connid: 0 98 13:00:11,7377169 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55222 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40986028, endtime: 40986442, seqnum: 0, connid: 0 98 13:00:11,7377482 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55222 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40986030, endtime: 40986442, seqnum: 0, connid: 0 98 13:00:11,7377540 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55222 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40986031, endtime: 40986442, seqnum: 0, connid: 0 98 13:00:11,7377604 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55222 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40986033, endtime: 40986442, seqnum: 0, connid: 0 98 13:00:11,7377659 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55222 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40986034, endtime: 40986442, seqnum: 0, connid: 0 98 13:00:11,9887574 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55200 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40986176, endtime: 40986467, seqnum: 0, connid: 0 98 13:00:11,9887759 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55200 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40986178, endtime: 40986467, seqnum: 0, connid: 0 98 13:00:11,9887837 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55200 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40986180, endtime: 40986467, seqnum: 0, connid: 0 98 13:00:11,9887915 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55200 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40986181, endtime: 40986467, seqnum: 0, connid: 0 98 13:00:11,9887973 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55200 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40986184, endtime: 40986467, seqnum: 0, connid: 0 98 13:00:11,9888045 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55200 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40986186, endtime: 40986467, seqnum: 0, connid: 0 98 13:00:11,9888100 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55200 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40986187, endtime: 40986467, seqnum: 0, connid: 0 98 13:00:11,9888170 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55200 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40986191, endtime: 40986467, seqnum: 0, connid: 0 98 13:00:11,9888228 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55200 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40986192, endtime: 40986467, seqnum: 0, connid: 0 98 13:00:11,9888527 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55200 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40986195, endtime: 40986467, seqnum: 0, connid: 0 98 13:00:11,9888585 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55200 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40986197, endtime: 40986467, seqnum: 0, connid: 0 98 13:00:11,9889688 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55200 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40986200, endtime: 40986468, seqnum: 0, connid: 0 98 13:00:11,9889790 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55200 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40986203, endtime: 40986468, seqnum: 0, connid: 0 98 13:00:12,3301115 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55174 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40986001, endtime: 40986502, seqnum: 0, connid: 0 98 13:00:12,3301303 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55174 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40986003, endtime: 40986502, seqnum: 0, connid: 0 98 13:00:12,3301398 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55174 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40986006, endtime: 40986502, seqnum: 0, connid: 0 98 13:00:12,3301464 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55174 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40986008, endtime: 40986502, seqnum: 0, connid: 0 98 13:00:12,3301536 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55174 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40986011, endtime: 40986502, seqnum: 0, connid: 0 98 13:00:12,3301594 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55174 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40986014, endtime: 40986502, seqnum: 0, connid: 0 98 13:00:12,3301664 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55174 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40986016, endtime: 40986502, seqnum: 0, connid: 0 98 13:00:12,3301719 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55174 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40986017, endtime: 40986502, seqnum: 0, connid: 0 98 13:00:12,3301996 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55174 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40986019, endtime: 40986502, seqnum: 0, connid: 0 98 13:00:12,3302057 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55174 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40986022, endtime: 40986502, seqnum: 0, connid: 0 98 13:00:12,3302126 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55174 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40986025, endtime: 40986502, seqnum: 0, connid: 0 98 13:00:12,3302184 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55174 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40986026, endtime: 40986502, seqnum: 0, connid: 0 98 13:00:12,3303121 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55174 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40986028, endtime: 40986502, seqnum: 0, connid: 0 98 13:00:12,5332252 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55201 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40986297, endtime: 40986522, seqnum: 0, connid: 0 98 13:00:12,5332448 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55201 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40986298, endtime: 40986522, seqnum: 0, connid: 0 98 13:00:12,5332529 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55201 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40986300, endtime: 40986522, seqnum: 0, connid: 0 98 13:00:12,5332750 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55201 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40986301, endtime: 40986522, seqnum: 0, connid: 0 98 13:00:12,5332844 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55201 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40986303, endtime: 40986522, seqnum: 0, connid: 0 98 13:00:12,5332922 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55201 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40986305, endtime: 40986522, seqnum: 0, connid: 0 98 13:00:12,5332989 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55201 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40986306, endtime: 40986522, seqnum: 0, connid: 0 98 13:00:12,5333066 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55201 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40986308, endtime: 40986522, seqnum: 0, connid: 0 98 13:00:12,5333133 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55201 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40986309, endtime: 40986522, seqnum: 0, connid: 0 98 13:00:12,5333903 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55201 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40986311, endtime: 40986522, seqnum: 0, connid: 0 98 13:00:12,5333980 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55201 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40986312, endtime: 40986522, seqnum: 0, connid: 0 98 13:00:12,5334052 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55201 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40986314, endtime: 40986522, seqnum: 0, connid: 0 98 13:00:12,5335737 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55201 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40986316, endtime: 40986522, seqnum: 0, connid: 0 98 13:00:13,6354588 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55133 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40986280, endtime: 40986632, seqnum: 0, connid: 0 98 13:00:13,6354757 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55133 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40986281, endtime: 40986632, seqnum: 0, connid: 0 98 13:00:13,6354829 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55133 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40986283, endtime: 40986632, seqnum: 0, connid: 0 98 13:00:13,6354901 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55133 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40986284, endtime: 40986632, seqnum: 0, connid: 0 98 13:00:13,6354960 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55133 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40986286, endtime: 40986632, seqnum: 0, connid: 0 98 13:00:13,6355029 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55133 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40986287, endtime: 40986632, seqnum: 0, connid: 0 98 13:00:13,6355084 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55133 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40986289, endtime: 40986632, seqnum: 0, connid: 0 98 13:00:13,6355151 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55133 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40986291, endtime: 40986632, seqnum: 0, connid: 0 98 13:00:13,6355206 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55133 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40986292, endtime: 40986632, seqnum: 0, connid: 0 98 13:00:13,6355503 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55133 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40986294, endtime: 40986632, seqnum: 0, connid: 0 98 13:00:13,6355558 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55133 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40986295, endtime: 40986632, seqnum: 0, connid: 0 98 13:00:13,6355625 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55133 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40986297, endtime: 40986632, seqnum: 0, connid: 0 98 13:00:13,6356749 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55133 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40986298, endtime: 40986632, seqnum: 0, connid: 0 98 13:00:14,3713510 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55201 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40986522, endtime: 40986706, seqnum: 0, connid: 0 98 13:00:14,3713693 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55201 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40986523, endtime: 40986706, seqnum: 0, connid: 0 98 13:00:14,3713765 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55201 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40986525, endtime: 40986706, seqnum: 0, connid: 0 98 13:00:14,3713840 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55201 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40986528, endtime: 40986706, seqnum: 0, connid: 0 98 13:00:14,3713895 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55201 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40986530, endtime: 40986706, seqnum: 0, connid: 0 98 13:00:14,3713964 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55201 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40986531, endtime: 40986706, seqnum: 0, connid: 0 98 13:00:14,3714167 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55201 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40986533, endtime: 40986706, seqnum: 0, connid: 0 98 13:00:14,3714294 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55201 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40986534, endtime: 40986706, seqnum: 0, connid: 0 98 13:00:14,3714388 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55201 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40986536, endtime: 40986706, seqnum: 0, connid: 0 98 13:00:14,3715275 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55201 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40986537, endtime: 40986706, seqnum: 0, connid: 0 98 13:00:14,3715347 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55201 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40986541, endtime: 40986706, seqnum: 0, connid: 0 98 13:00:14,3715416 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55201 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40986542, endtime: 40986706, seqnum: 0, connid: 0 98 13:00:14,3717195 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55201 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40986544, endtime: 40986706, seqnum: 0, connid: 0 98 13:00:14,9909711 MCLauncher.exe 6080 TCP TCPCopy WIN-0UOTFKKVN1S:54920 -> sheltex.company:8000 SUCCESS Length: 2, seqnum: 0, connid: 0 98 13:00:14,9909835 MCLauncher.exe 6080 TCP Receive WIN-0UOTFKKVN1S:54920 -> sheltex.company:8000 SUCCESS Length: 2, seqnum: 0, connid: 0 98 13:00:14,9936023 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54920 -> sheltex.company:8000 SUCCESS Length: 2, startime: 40986768, endtime: 40986768, seqnum: 0, connid: 0 98 13:00:15,0383521 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55174 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40986502, endtime: 40986772, seqnum: 0, connid: 0 98 13:00:15,0383706 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55174 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40986505, endtime: 40986772, seqnum: 0, connid: 0 98 13:00:15,0383787 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55174 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40986506, endtime: 40986772, seqnum: 0, connid: 0 98 13:00:15,0383864 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55174 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40986509, endtime: 40986772, seqnum: 0, connid: 0 98 13:00:15,0383925 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55174 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40986509, endtime: 40986772, seqnum: 0, connid: 0 98 13:00:15,0383995 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55174 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40986511, endtime: 40986772, seqnum: 0, connid: 0 98 13:00:15,0384053 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55174 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40986512, endtime: 40986772, seqnum: 0, connid: 0 98 13:00:15,0384125 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55174 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40986514, endtime: 40986772, seqnum: 0, connid: 0 98 13:00:15,0384183 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55174 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40986516, endtime: 40986772, seqnum: 0, connid: 0 98 13:00:15,0384479 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55174 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40986519, endtime: 40986772, seqnum: 0, connid: 0 98 13:00:15,0384540 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55174 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40986520, endtime: 40986772, seqnum: 0, connid: 0 98 13:00:15,0384610 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55174 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40986522, endtime: 40986772, seqnum: 0, connid: 0 98 13:00:15,0384668 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55174 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40986523, endtime: 40986772, seqnum: 0, connid: 0 98 13:00:15,1499583 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55133 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40986632, endtime: 40986784, seqnum: 0, connid: 0 98 13:00:15,1499788 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55133 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40986634, endtime: 40986784, seqnum: 0, connid: 0 98 13:00:15,1499868 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55133 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40986636, endtime: 40986784, seqnum: 0, connid: 0 98 13:00:15,1499951 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55133 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40986637, endtime: 40986784, seqnum: 0, connid: 0 98 13:00:15,1500012 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55133 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40986639, endtime: 40986784, seqnum: 0, connid: 0 98 13:00:15,1500087 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55133 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40986643, endtime: 40986784, seqnum: 0, connid: 0 98 13:00:15,1500148 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55133 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40986646, endtime: 40986784, seqnum: 0, connid: 0 98 13:00:15,1500220 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55133 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40986647, endtime: 40986784, seqnum: 0, connid: 0 98 13:00:15,1500284 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55133 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40986648, endtime: 40986784, seqnum: 0, connid: 0 98 13:00:15,1500602 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55133 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40986652, endtime: 40986784, seqnum: 0, connid: 0 98 13:00:15,1500666 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55133 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40986653, endtime: 40986784, seqnum: 0, connid: 0 98 13:00:15,1500735 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55133 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40986655, endtime: 40986784, seqnum: 0, connid: 0 98 13:00:15,1500796 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55133 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40986658, endtime: 40986784, seqnum: 0, connid: 0 98 13:00:15,5302643 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55200 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40986467, endtime: 40986822, seqnum: 0, connid: 0 98 13:00:15,5302837 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55200 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40986469, endtime: 40986822, seqnum: 0, connid: 0 98 13:00:15,5302914 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55200 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40986470, endtime: 40986822, seqnum: 0, connid: 0 98 13:00:15,5302989 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55200 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40986472, endtime: 40986822, seqnum: 0, connid: 0 98 13:00:15,5303047 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55200 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40986473, endtime: 40986822, seqnum: 0, connid: 0 98 13:00:15,5303114 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55200 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40986475, endtime: 40986822, seqnum: 0, connid: 0 98 13:00:15,5303169 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55200 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40986476, endtime: 40986822, seqnum: 0, connid: 0 98 13:00:15,5303238 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55200 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40986478, endtime: 40986822, seqnum: 0, connid: 0 98 13:00:15,5303294 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55200 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40986480, endtime: 40986822, seqnum: 0, connid: 0 98 13:00:15,5303740 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55200 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40986481, endtime: 40986822, seqnum: 0, connid: 0 98 13:00:15,5303812 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55200 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40986483, endtime: 40986822, seqnum: 0, connid: 0 98 13:00:15,5303884 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55200 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40986484, endtime: 40986822, seqnum: 0, connid: 0 98 13:00:15,5303939 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55200 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40986486, endtime: 40986822, seqnum: 0, connid: 0 98 13:00:15,9374799 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55199 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40986404, endtime: 40986862, seqnum: 0, connid: 0 98 13:00:15,9374981 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55199 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40986406, endtime: 40986862, seqnum: 0, connid: 0 98 13:00:15,9375056 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55199 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40986410, endtime: 40986862, seqnum: 0, connid: 0 98 13:00:15,9375128 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55199 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40986411, endtime: 40986862, seqnum: 0, connid: 0 98 13:00:15,9375184 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55199 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40986412, endtime: 40986862, seqnum: 0, connid: 0 98 13:00:15,9375250 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55199 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40986414, endtime: 40986862, seqnum: 0, connid: 0 98 13:00:15,9375306 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55199 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40986416, endtime: 40986862, seqnum: 0, connid: 0 98 13:00:15,9375369 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55199 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40986417, endtime: 40986862, seqnum: 0, connid: 0 98 13:00:15,9375425 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55199 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40986420, endtime: 40986862, seqnum: 0, connid: 0 98 13:00:15,9375718 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55199 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40986422, endtime: 40986862, seqnum: 0, connid: 0 98 13:00:15,9375779 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55199 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40986425, endtime: 40986862, seqnum: 0, connid: 0 98 13:00:15,9375846 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55199 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40986428, endtime: 40986862, seqnum: 0, connid: 0 98 13:00:15,9375898 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55199 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40986431, endtime: 40986862, seqnum: 0, connid: 0 98 13:00:16,1482810 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55222 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40986442, endtime: 40986883, seqnum: 0, connid: 0 98 13:00:16,1482998 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55222 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40986445, endtime: 40986883, seqnum: 0, connid: 0 98 13:00:16,1483084 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55222 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40986447, endtime: 40986883, seqnum: 0, connid: 0 98 13:00:16,1483167 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55222 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40986450, endtime: 40986883, seqnum: 0, connid: 0 98 13:00:16,1483234 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55222 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40986452, endtime: 40986883, seqnum: 0, connid: 0 98 13:00:16,1483309 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55222 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40986453, endtime: 40986883, seqnum: 0, connid: 0 98 13:00:16,1483370 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55222 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40986455, endtime: 40986883, seqnum: 0, connid: 0 98 13:00:16,1483442 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55222 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40986456, endtime: 40986883, seqnum: 0, connid: 0 98 13:00:16,1483500 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55222 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40986460, endtime: 40986883, seqnum: 0, connid: 0 98 13:00:16,1483788 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55222 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40986461, endtime: 40986883, seqnum: 0, connid: 0 98 13:00:16,1483852 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55222 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40986462, endtime: 40986883, seqnum: 0, connid: 0 98 13:00:16,1483924 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55222 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40986464, endtime: 40986883, seqnum: 0, connid: 0 98 13:00:16,1483985 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55222 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40986466, endtime: 40986883, seqnum: 0, connid: 0 98 13:00:16,7582994 MCLauncher.exe 6080 TCP Disconnect WIN-0UOTFKKVN1S:55133 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 0, seqnum: 0, connid: 0 98 13:00:17,8478234 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55174 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40986772, endtime: 40987053, seqnum: 0, connid: 0 98 13:00:17,8478447 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55174 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40986773, endtime: 40987053, seqnum: 0, connid: 0 98 13:00:17,8478531 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55174 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40986775, endtime: 40987053, seqnum: 0, connid: 0 98 13:00:17,8478608 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55174 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40986776, endtime: 40987053, seqnum: 0, connid: 0 98 13:00:17,8478672 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55174 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40986778, endtime: 40987053, seqnum: 0, connid: 0 98 13:00:17,8478741 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55174 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40986781, endtime: 40987053, seqnum: 0, connid: 0 98 13:00:17,8478802 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55174 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40986783, endtime: 40987053, seqnum: 0, connid: 0 98 13:00:17,8480608 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55174 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40986784, endtime: 40987053, seqnum: 0, connid: 0 98 13:00:17,8485291 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55174 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40986786, endtime: 40987053, seqnum: 0, connid: 0 98 13:00:17,8485404 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55174 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40986788, endtime: 40987053, seqnum: 0, connid: 0 98 13:00:17,8485468 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55174 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40986791, endtime: 40987053, seqnum: 0, connid: 0 98 13:00:17,8485537 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55174 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40986795, endtime: 40987053, seqnum: 0, connid: 0 98 13:00:17,8485593 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55174 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40986797, endtime: 40987053, seqnum: 0, connid: 0 98 13:00:17,9178612 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55200 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40986822, endtime: 40987060, seqnum: 0, connid: 0 98 13:00:17,9178801 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55200 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40986823, endtime: 40987060, seqnum: 0, connid: 0 98 13:00:17,9178870 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55200 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40986825, endtime: 40987060, seqnum: 0, connid: 0 98 13:00:17,9178942 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55200 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40986826, endtime: 40987060, seqnum: 0, connid: 0 98 13:00:17,9178997 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55200 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40986828, endtime: 40987060, seqnum: 0, connid: 0 98 13:00:17,9179064 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55200 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40986830, endtime: 40987060, seqnum: 0, connid: 0 98 13:00:17,9179119 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55200 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40986831, endtime: 40987060, seqnum: 0, connid: 0 98 13:00:17,9179186 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55200 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40986833, endtime: 40987060, seqnum: 0, connid: 0 98 13:00:17,9179239 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55200 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40986834, endtime: 40987060, seqnum: 0, connid: 0 98 13:00:17,9179535 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55200 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40986838, endtime: 40987060, seqnum: 0, connid: 0 98 13:00:17,9179590 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55200 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40986841, endtime: 40987060, seqnum: 0, connid: 0 98 13:00:17,9179657 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55200 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40986844, endtime: 40987060, seqnum: 0, connid: 0 98 13:00:17,9179712 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55200 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40986845, endtime: 40987060, seqnum: 0, connid: 0 98 13:00:18,1843301 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55201 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40986706, endtime: 40987087, seqnum: 0, connid: 0 98 13:00:18,1843484 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55201 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40986708, endtime: 40987087, seqnum: 0, connid: 0 98 13:00:18,1843565 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55201 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40986709, endtime: 40987087, seqnum: 0, connid: 0 98 13:00:18,1843645 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55201 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40986711, endtime: 40987087, seqnum: 0, connid: 0 98 13:00:18,1843709 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55201 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40986712, endtime: 40987087, seqnum: 0, connid: 0 98 13:00:18,1843781 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55201 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40986714, endtime: 40987087, seqnum: 0, connid: 0 98 13:00:18,1843839 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55201 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40986716, endtime: 40987087, seqnum: 0, connid: 0 98 13:00:18,1843911 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55201 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40986719, endtime: 40987087, seqnum: 0, connid: 0 98 13:00:18,1843969 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55201 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40986722, endtime: 40987087, seqnum: 0, connid: 0 98 13:00:18,1844277 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55201 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40986725, endtime: 40987087, seqnum: 0, connid: 0 98 13:00:18,1844340 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55201 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40986727, endtime: 40987087, seqnum: 0, connid: 0 98 13:00:18,1844412 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55201 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40986730, endtime: 40987087, seqnum: 0, connid: 0 98 13:00:18,1844471 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55201 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40986733, endtime: 40987087, seqnum: 0, connid: 0 98 13:00:18,5355721 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55222 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40986883, endtime: 40987122, seqnum: 0, connid: 0 98 13:00:18,5355929 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55222 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40986886, endtime: 40987122, seqnum: 0, connid: 0 98 13:00:18,5356012 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55222 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40986889, endtime: 40987122, seqnum: 0, connid: 0 98 13:00:18,5356089 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55222 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40986891, endtime: 40987122, seqnum: 0, connid: 0 98 13:00:18,5356150 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55222 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40986894, endtime: 40987122, seqnum: 0, connid: 0 98 13:00:18,5356353 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55222 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40986895, endtime: 40987122, seqnum: 0, connid: 0 98 13:00:18,5356433 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55222 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40986897, endtime: 40987122, seqnum: 0, connid: 0 98 13:00:18,5356511 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55222 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40986899, endtime: 40987122, seqnum: 0, connid: 0 98 13:00:18,5356574 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55222 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40986900, endtime: 40987122, seqnum: 0, connid: 0 98 13:00:18,5356904 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55222 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40986901, endtime: 40987122, seqnum: 0, connid: 0 98 13:00:18,5356971 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55222 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40986901, endtime: 40987122, seqnum: 0, connid: 0 98 13:00:18,5357043 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55222 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40986903, endtime: 40987122, seqnum: 0, connid: 0 98 13:00:18,5357101 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55222 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40986905, endtime: 40987122, seqnum: 0, connid: 0 98 13:00:19,7809972 MCLauncher.exe 6080 TCP Reconnect WIN-0UOTFKKVN1S:55232 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 0, seqnum: 0, connid: 0 98 13:00:20,6191774 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55199 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40986862, endtime: 40987331, seqnum: 0, connid: 0 98 13:00:20,6191929 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55199 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40986864, endtime: 40987331, seqnum: 0, connid: 0 98 13:00:20,6192001 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55199 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40986866, endtime: 40987331, seqnum: 0, connid: 0 98 13:00:20,6192076 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55199 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40986867, endtime: 40987331, seqnum: 0, connid: 0 98 13:00:20,6192134 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55199 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40986869, endtime: 40987331, seqnum: 0, connid: 0 98 13:00:20,6192200 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55199 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40986870, endtime: 40987331, seqnum: 0, connid: 0 98 13:00:20,6192253 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55199 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40986872, endtime: 40987331, seqnum: 0, connid: 0 98 13:00:20,6192319 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55199 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40986873, endtime: 40987331, seqnum: 0, connid: 0 98 13:00:20,6192375 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55199 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40986877, endtime: 40987331, seqnum: 0, connid: 0 98 13:00:20,6192774 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55199 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40986878, endtime: 40987331, seqnum: 0, connid: 0 98 13:00:20,6192843 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55199 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40986881, endtime: 40987331, seqnum: 0, connid: 0 98 13:00:20,6192915 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55199 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40986883, endtime: 40987331, seqnum: 0, connid: 0 98 13:00:20,6192973 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55199 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40986886, endtime: 40987331, seqnum: 0, connid: 0 98 13:00:21,0053874 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55201 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40987087, endtime: 40987369, seqnum: 0, connid: 0 98 13:00:21,0054046 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55201 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40987090, endtime: 40987369, seqnum: 0, connid: 0 98 13:00:21,0054123 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55201 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40987092, endtime: 40987369, seqnum: 0, connid: 0 98 13:00:21,0054198 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55201 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40987095, endtime: 40987369, seqnum: 0, connid: 0 98 13:00:21,0054259 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55201 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40987098, endtime: 40987369, seqnum: 0, connid: 0 98 13:00:21,0054331 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55201 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40987103, endtime: 40987369, seqnum: 0, connid: 0 98 13:00:21,0054389 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55201 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40987103, endtime: 40987369, seqnum: 0, connid: 0 98 13:00:21,0054459 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55201 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40987104, endtime: 40987369, seqnum: 0, connid: 0 98 13:00:21,0054517 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55201 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40987104, endtime: 40987369, seqnum: 0, connid: 0 98 13:00:21,0054788 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55201 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40987105, endtime: 40987369, seqnum: 0, connid: 0 98 13:00:21,0054852 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55201 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40987106, endtime: 40987369, seqnum: 0, connid: 0 98 13:00:21,0055836 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55201 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40987108, endtime: 40987369, seqnum: 0, connid: 0 98 13:00:21,0055944 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55201 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40987109, endtime: 40987369, seqnum: 0, connid: 0 98 13:00:21,6028272 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55222 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40987122, endtime: 40987429, seqnum: 0, connid: 0 98 13:00:21,6028432 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55222 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40987123, endtime: 40987429, seqnum: 0, connid: 0 98 13:00:21,6028505 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55222 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40987125, endtime: 40987429, seqnum: 0, connid: 0 98 13:00:21,6028574 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55222 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40987126, endtime: 40987429, seqnum: 0, connid: 0 98 13:00:21,6028632 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55222 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40987128, endtime: 40987429, seqnum: 0, connid: 0 98 13:00:21,6028698 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55222 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40987130, endtime: 40987429, seqnum: 0, connid: 0 98 13:00:21,6028754 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55222 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40987131, endtime: 40987429, seqnum: 0, connid: 0 98 13:00:21,6028818 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55222 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40987133, endtime: 40987429, seqnum: 0, connid: 0 98 13:00:21,6028873 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55222 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40987134, endtime: 40987429, seqnum: 0, connid: 0 98 13:00:21,6029158 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55222 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40987136, endtime: 40987429, seqnum: 0, connid: 0 98 13:00:21,6029217 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55222 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40987137, endtime: 40987429, seqnum: 0, connid: 0 98 13:00:21,6029283 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55222 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40987139, endtime: 40987429, seqnum: 0, connid: 0 98 13:00:21,6029336 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55222 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40987142, endtime: 40987429, seqnum: 0, connid: 0 98 13:00:22,1866283 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55200 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40987060, endtime: 40987487, seqnum: 0, connid: 0 98 13:00:22,1866455 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55200 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40987062, endtime: 40987487, seqnum: 0, connid: 0 98 13:00:22,1866530 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55200 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40987066, endtime: 40987487, seqnum: 0, connid: 0 98 13:00:22,1866605 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55200 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40987067, endtime: 40987487, seqnum: 0, connid: 0 98 13:00:22,1866663 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55200 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40987069, endtime: 40987487, seqnum: 0, connid: 0 98 13:00:22,1866727 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55200 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40987070, endtime: 40987487, seqnum: 0, connid: 0 98 13:00:22,1866782 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55200 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40987073, endtime: 40987487, seqnum: 0, connid: 0 98 13:00:22,1866846 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55200 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40987075, endtime: 40987487, seqnum: 0, connid: 0 98 13:00:22,1866901 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55200 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40987077, endtime: 40987487, seqnum: 0, connid: 0 98 13:00:22,1867209 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55200 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40987080, endtime: 40987487, seqnum: 0, connid: 0 98 13:00:22,1867264 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55200 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40987082, endtime: 40987487, seqnum: 0, connid: 0 98 13:00:22,1867328 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55200 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40987083, endtime: 40987487, seqnum: 0, connid: 0 98 13:00:22,1867383 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55200 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40987087, endtime: 40987487, seqnum: 0, connid: 0 98 13:00:22,2733133 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55200 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40987487, endtime: 40987496, seqnum: 0, connid: 0 98 13:00:22,3576245 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55174 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40987053, endtime: 40987504, seqnum: 0, connid: 0 98 13:00:22,3576561 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55174 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40987055, endtime: 40987504, seqnum: 0, connid: 0 98 13:00:22,3576653 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55174 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40987056, endtime: 40987504, seqnum: 0, connid: 0 98 13:00:22,3576736 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55174 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40987058, endtime: 40987504, seqnum: 0, connid: 0 98 13:00:22,3576802 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55174 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40987059, endtime: 40987504, seqnum: 0, connid: 0 98 13:00:22,3576877 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55174 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40987061, endtime: 40987504, seqnum: 0, connid: 0 98 13:00:22,3576941 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55174 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40987062, endtime: 40987504, seqnum: 0, connid: 0 98 13:00:22,3577018 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55174 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40987066, endtime: 40987504, seqnum: 0, connid: 0 98 13:00:22,3577079 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55174 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40987067, endtime: 40987504, seqnum: 0, connid: 0 98 13:00:22,3577392 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55174 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40987069, endtime: 40987504, seqnum: 0, connid: 0 98 13:00:22,3577456 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55174 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40987070, endtime: 40987504, seqnum: 0, connid: 0 98 13:00:22,3577528 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55174 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40987073, endtime: 40987504, seqnum: 0, connid: 0 98 13:00:22,3577586 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55174 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40987075, endtime: 40987504, seqnum: 0, connid: 0 98 13:00:24,1734582 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55199 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40987331, endtime: 40987686, seqnum: 0, connid: 0 98 13:00:24,1734801 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55199 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40987331, endtime: 40987686, seqnum: 0, connid: 0 98 13:00:24,1734881 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55199 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40987333, endtime: 40987686, seqnum: 0, connid: 0 98 13:00:24,1734959 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55199 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40987334, endtime: 40987686, seqnum: 0, connid: 0 98 13:00:24,1735022 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55199 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40987336, endtime: 40987686, seqnum: 0, connid: 0 98 13:00:24,1735094 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55199 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40987339, endtime: 40987686, seqnum: 0, connid: 0 98 13:00:24,1735153 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55199 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40987342, endtime: 40987686, seqnum: 0, connid: 0 98 13:00:24,1735225 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55199 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40987344, endtime: 40987686, seqnum: 0, connid: 0 98 13:00:24,1735280 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55199 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40987345, endtime: 40987686, seqnum: 0, connid: 0 98 13:00:24,1735704 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55199 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40987348, endtime: 40987686, seqnum: 0, connid: 0 98 13:00:24,1735829 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55199 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40987350, endtime: 40987686, seqnum: 0, connid: 0 98 13:00:24,1735953 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55199 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40987352, endtime: 40987686, seqnum: 0, connid: 0 98 13:00:24,1736056 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55199 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40987353, endtime: 40987686, seqnum: 0, connid: 0 98 13:00:25,0661954 MCLauncher.exe 6080 TCP TCPCopy WIN-0UOTFKKVN1S:54920 -> sheltex.company:8000 SUCCESS Length: 2, seqnum: 0, connid: 0 98 13:00:25,0662067 MCLauncher.exe 6080 TCP Receive WIN-0UOTFKKVN1S:54920 -> sheltex.company:8000 SUCCESS Length: 2, seqnum: 0, connid: 0 98 13:00:25,0666716 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54920 -> sheltex.company:8000 SUCCESS Length: 2, startime: 40987775, endtime: 40987775, seqnum: 0, connid: 0 98 13:00:25,7391393 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55201 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40987369, endtime: 40987843, seqnum: 0, connid: 0 98 13:00:25,7391584 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55201 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40987370, endtime: 40987843, seqnum: 0, connid: 0 98 13:00:25,7391662 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55201 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40987372, endtime: 40987843, seqnum: 0, connid: 0 98 13:00:25,7391739 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55201 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40987373, endtime: 40987843, seqnum: 0, connid: 0 98 13:00:25,7391800 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55201 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40987375, endtime: 40987843, seqnum: 0, connid: 0 98 13:00:25,7391870 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55201 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40987376, endtime: 40987843, seqnum: 0, connid: 0 98 13:00:25,7391925 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55201 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40987378, endtime: 40987843, seqnum: 0, connid: 0 98 13:00:25,7391992 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55201 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40987380, endtime: 40987843, seqnum: 0, connid: 0 98 13:00:25,7392050 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55201 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40987381, endtime: 40987843, seqnum: 0, connid: 0 98 13:00:25,7394391 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55201 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40987384, endtime: 40987843, seqnum: 0, connid: 0 98 13:00:25,7394504 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55201 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40987386, endtime: 40987843, seqnum: 0, connid: 0 98 13:00:25,7394585 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55201 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40987387, endtime: 40987843, seqnum: 0, connid: 0 98 13:00:25,7394646 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55201 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40987389, endtime: 40987843, seqnum: 0, connid: 0 98 13:00:25,7535919 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55222 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40987429, endtime: 40987844, seqnum: 0, connid: 0 98 13:00:25,7536102 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55222 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40987430, endtime: 40987844, seqnum: 0, connid: 0 98 13:00:25,7536177 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55222 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40987431, endtime: 40987844, seqnum: 0, connid: 0 98 13:00:25,7536249 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55222 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40987434, endtime: 40987844, seqnum: 0, connid: 0 98 13:00:25,7536307 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55222 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40987436, endtime: 40987844, seqnum: 0, connid: 0 98 13:00:25,7536374 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55222 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40987438, endtime: 40987844, seqnum: 0, connid: 0 98 13:00:25,7536429 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55222 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40987441, endtime: 40987844, seqnum: 0, connid: 0 98 13:00:25,7538019 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55222 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40987442, endtime: 40987844, seqnum: 0, connid: 0 98 13:00:25,7538122 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55222 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40987446, endtime: 40987844, seqnum: 0, connid: 0 98 13:00:25,7538200 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55222 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40987448, endtime: 40987844, seqnum: 0, connid: 0 98 13:00:25,7538266 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55222 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40987451, endtime: 40987844, seqnum: 0, connid: 0 98 13:00:25,7538338 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55222 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40987453, endtime: 40987844, seqnum: 0, connid: 0 98 13:00:25,7538396 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55222 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40987455, endtime: 40987844, seqnum: 0, connid: 0 98 13:00:25,7967132 MCLauncher.exe 6080 TCP Reconnect WIN-0UOTFKKVN1S:55232 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 0, seqnum: 0, connid: 0 98 13:00:25,9041010 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55174 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40987504, endtime: 40987859, seqnum: 0, connid: 0 98 13:00:25,9041176 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55174 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40987506, endtime: 40987859, seqnum: 0, connid: 0 98 13:00:25,9041251 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55174 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40987508, endtime: 40987859, seqnum: 0, connid: 0 98 13:00:25,9041326 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55174 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40987509, endtime: 40987859, seqnum: 0, connid: 0 98 13:00:25,9041384 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55174 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40987511, endtime: 40987859, seqnum: 0, connid: 0 98 13:00:25,9041456 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55174 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40987514, endtime: 40987859, seqnum: 0, connid: 0 98 13:00:25,9041511 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55174 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40987517, endtime: 40987859, seqnum: 0, connid: 0 98 13:00:25,9041578 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55174 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40987519, endtime: 40987859, seqnum: 0, connid: 0 98 13:00:25,9041636 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55174 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40987522, endtime: 40987859, seqnum: 0, connid: 0 98 13:00:25,9041921 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55174 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40987523, endtime: 40987859, seqnum: 0, connid: 0 98 13:00:25,9041982 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55174 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40987525, endtime: 40987859, seqnum: 0, connid: 0 98 13:00:25,9042051 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55174 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40987527, endtime: 40987859, seqnum: 0, connid: 0 98 13:00:25,9043052 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55174 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40987530, endtime: 40987859, seqnum: 0, connid: 0 98 13:00:26,5811176 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55200 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40987489, endtime: 40987927, seqnum: 0, connid: 0 98 13:00:26,5811312 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55200 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40987491, endtime: 40987927, seqnum: 0, connid: 0 98 13:00:26,5811395 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55200 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40987492, endtime: 40987927, seqnum: 0, connid: 0 98 13:00:26,5811459 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55200 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40987494, endtime: 40987927, seqnum: 0, connid: 0 98 13:00:26,5811528 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55200 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40987495, endtime: 40987927, seqnum: 0, connid: 0 98 13:00:26,5811581 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55200 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40987497, endtime: 40987927, seqnum: 0, connid: 0 98 13:00:26,5811647 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55200 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40987498, endtime: 40987927, seqnum: 0, connid: 0 98 13:00:26,5811703 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55200 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40987500, endtime: 40987927, seqnum: 0, connid: 0 98 13:00:26,5811766 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55200 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40987500, endtime: 40987927, seqnum: 0, connid: 0 98 13:00:26,5812334 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55200 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40987501, endtime: 40987927, seqnum: 0, connid: 0 98 13:00:26,5812415 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55200 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40987503, endtime: 40987927, seqnum: 0, connid: 0 98 13:00:26,5813307 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55200 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40987505, endtime: 40987927, seqnum: 0, connid: 0 98 13:00:26,6649750 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55200 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40987506, endtime: 40987935, seqnum: 0, connid: 0 98 13:00:26,6649911 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55200 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40987927, endtime: 40987935, seqnum: 0, connid: 0 98 13:00:26,6649999 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55200 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40987928, endtime: 40987935, seqnum: 0, connid: 0 98 13:00:26,6650066 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55200 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40987931, endtime: 40987935, seqnum: 0, connid: 0 98 13:00:26,6650141 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55200 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40987933, endtime: 40987935, seqnum: 0, connid: 0 98 13:00:26,6746750 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55200 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40987936, endtime: 40987936, seqnum: 0, connid: 0 98 13:00:26,6889938 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55200 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40987937, endtime: 40987938, seqnum: 0, connid: 0 98 13:00:26,7043203 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55200 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40987939, endtime: 40987939, seqnum: 0, connid: 0 98 13:00:26,7199909 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55200 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40987941, endtime: 40987941, seqnum: 0, connid: 0 98 13:00:26,7358745 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55200 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40987942, endtime: 40987942, seqnum: 0, connid: 0 98 13:00:26,7522795 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55200 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40987944, endtime: 40987944, seqnum: 0, connid: 0 98 13:00:26,7666033 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55200 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40987945, endtime: 40987945, seqnum: 0, connid: 0 98 13:00:26,7829488 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55200 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40987947, endtime: 40987947, seqnum: 0, connid: 0 98 13:00:26,9976362 MCLauncher.exe 6080 TCP Connect WIN-0UOTFKKVN1S:55243 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 0, mss: 1460, sackopt: 0, tsopt: 0, wsopt: 0, rcvwin: 64240, rcvwinscale: 0, sndwinscale: 0, seqnum: 0, connid: 0 98 13:00:26,9979460 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55243 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40987968, endtime: 40987968, seqnum: 0, connid: 0 98 13:00:27,0162469 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55243 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40987970, endtime: 40987970, seqnum: 0, connid: 0 98 13:00:27,0322111 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55243 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40987972, endtime: 40987972, seqnum: 0, connid: 0 98 13:00:27,0655390 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55243 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40987975, endtime: 40987975, seqnum: 0, connid: 0 98 13:00:27,0798836 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55243 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40987977, endtime: 40987977, seqnum: 0, connid: 0 98 13:00:27,0984788 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55243 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40987978, endtime: 40987978, seqnum: 0, connid: 0 98 13:00:27,1104864 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55243 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40987980, endtime: 40987980, seqnum: 0, connid: 0 98 13:00:27,1279426 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55243 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40987981, endtime: 40987981, seqnum: 0, connid: 0 98 13:00:27,1430759 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55243 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40987983, endtime: 40987983, seqnum: 0, connid: 0 98 13:00:27,1581287 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55243 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40987984, endtime: 40987984, seqnum: 0, connid: 0 98 13:00:27,1634077 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55199 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40987686, endtime: 40987985, seqnum: 0, connid: 0 98 13:00:27,1634249 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55199 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40987689, endtime: 40987985, seqnum: 0, connid: 0 98 13:00:27,1634329 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55199 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40987690, endtime: 40987985, seqnum: 0, connid: 0 98 13:00:27,1634415 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55199 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40987692, endtime: 40987985, seqnum: 0, connid: 0 98 13:00:27,1634479 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55199 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40987694, endtime: 40987985, seqnum: 0, connid: 0 98 13:00:27,1634554 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55199 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40987695, endtime: 40987985, seqnum: 0, connid: 0 98 13:00:27,1634617 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55199 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40987697, endtime: 40987985, seqnum: 0, connid: 0 98 13:00:27,1634695 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55199 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40987700, endtime: 40987985, seqnum: 0, connid: 0 98 13:00:27,1634756 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55199 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40987703, endtime: 40987985, seqnum: 0, connid: 0 98 13:00:27,1635066 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55199 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40987706, endtime: 40987985, seqnum: 0, connid: 0 98 13:00:27,1635130 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55199 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40987708, endtime: 40987985, seqnum: 0, connid: 0 98 13:00:27,1635202 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55199 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40987711, endtime: 40987985, seqnum: 0, connid: 0 98 13:00:27,1635263 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55199 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40987713, endtime: 40987985, seqnum: 0, connid: 0 98 13:00:27,1703311 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55243 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40987986, endtime: 40987986, seqnum: 0, connid: 0 98 13:00:27,1761185 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55243 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40987986, endtime: 40987986, seqnum: 0, connid: 0 98 13:00:27,1819940 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55243 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40987987, endtime: 40987987, seqnum: 0, connid: 0 98 13:00:27,1875997 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55243 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40987987, endtime: 40987987, seqnum: 0, connid: 0 98 13:00:27,2043538 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55243 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40987989, endtime: 40987989, seqnum: 0, connid: 0 98 13:00:27,2218493 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55243 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40987991, endtime: 40987991, seqnum: 0, connid: 0 98 13:00:27,2528774 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55243 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40987994, endtime: 40987994, seqnum: 0, connid: 0 98 13:00:27,2676556 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55243 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40987995, endtime: 40987995, seqnum: 0, connid: 0 98 13:00:27,3152424 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55243 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40988000, endtime: 40988000, seqnum: 0, connid: 0 98 13:00:27,3206298 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55243 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40988001, endtime: 40988001, seqnum: 0, connid: 0 98 13:00:27,3524444 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55243 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40988003, endtime: 40988004, seqnum: 0, connid: 0 98 13:00:27,3695856 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55243 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40988005, endtime: 40988006, seqnum: 0, connid: 0 98 13:00:27,3927242 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55243 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40988008, endtime: 40988008, seqnum: 0, connid: 0 98 13:00:27,4067011 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55243 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40988009, endtime: 40988009, seqnum: 0, connid: 0 98 13:00:27,4248832 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55243 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40988011, endtime: 40988011, seqnum: 0, connid: 0 98 13:00:27,4398775 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55243 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40988012, endtime: 40988013, seqnum: 0, connid: 0 98 13:00:27,5276971 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55243 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40988015, endtime: 40988021, seqnum: 0, connid: 0 98 13:00:27,5277176 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55243 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40988017, endtime: 40988021, seqnum: 0, connid: 0 98 13:00:27,5277259 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55243 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40988019, endtime: 40988021, seqnum: 0, connid: 0 98 13:00:27,5277339 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55243 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40988020, endtime: 40988021, seqnum: 0, connid: 0 98 13:00:27,5490259 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55243 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40988023, endtime: 40988024, seqnum: 0, connid: 0 98 13:00:27,5655235 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55243 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40988025, endtime: 40988025, seqnum: 0, connid: 0 98 13:00:27,5799703 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55243 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40988027, endtime: 40988027, seqnum: 0, connid: 0 98 13:00:27,6147367 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55243 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40988030, endtime: 40988030, seqnum: 0, connid: 0 98 13:00:27,6427368 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55243 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40988033, endtime: 40988033, seqnum: 0, connid: 0 98 13:00:27,6576776 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55243 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40988034, endtime: 40988034, seqnum: 0, connid: 0 98 13:00:27,6887140 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55243 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40988037, endtime: 40988037, seqnum: 0, connid: 0 98 13:00:27,7050833 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55243 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40988039, endtime: 40988039, seqnum: 0, connid: 0 98 13:00:27,7220039 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55243 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40988040, endtime: 40988041, seqnum: 0, connid: 0 98 13:00:28,5204108 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55200 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40987948, endtime: 40988121, seqnum: 0, connid: 0 98 13:00:28,5204282 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55200 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40987950, endtime: 40988121, seqnum: 0, connid: 0 98 13:00:28,5204351 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55200 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40987951, endtime: 40988121, seqnum: 0, connid: 0 98 13:00:28,5204423 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55200 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40987953, endtime: 40988121, seqnum: 0, connid: 0 98 13:00:28,5204482 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55200 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40987955, endtime: 40988121, seqnum: 0, connid: 0 98 13:00:28,5204545 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55200 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40987958, endtime: 40988121, seqnum: 0, connid: 0 98 13:00:28,5204601 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55200 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40987960, endtime: 40988121, seqnum: 0, connid: 0 98 13:00:28,5205994 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55200 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40987962, endtime: 40988121, seqnum: 0, connid: 0 98 13:00:28,5206102 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55200 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40987966, endtime: 40988121, seqnum: 0, connid: 0 98 13:00:28,5206183 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55200 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40987967, endtime: 40988121, seqnum: 0, connid: 0 98 13:00:28,5206247 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55200 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40987969, endtime: 40988121, seqnum: 0, connid: 0 98 13:00:28,5208305 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55200 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40987970, endtime: 40988121, seqnum: 0, connid: 0 98 13:00:28,5208385 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55200 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40987972, endtime: 40988121, seqnum: 0, connid: 0 98 13:00:28,8941921 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55201 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40987843, endtime: 40988158, seqnum: 0, connid: 0 98 13:00:28,8942101 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55201 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40987844, endtime: 40988158, seqnum: 0, connid: 0 98 13:00:28,8942176 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55201 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40987845, endtime: 40988158, seqnum: 0, connid: 0 98 13:00:28,8942250 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55201 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40987848, endtime: 40988158, seqnum: 0, connid: 0 98 13:00:28,8942309 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55201 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40987850, endtime: 40988158, seqnum: 0, connid: 0 98 13:00:28,8942378 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55201 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40987853, endtime: 40988158, seqnum: 0, connid: 0 98 13:00:28,8942430 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55201 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40987855, endtime: 40988158, seqnum: 0, connid: 0 98 13:00:28,8942497 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55201 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40987856, endtime: 40988158, seqnum: 0, connid: 0 98 13:00:28,8942552 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55201 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40987858, endtime: 40988158, seqnum: 0, connid: 0 98 13:00:28,8942982 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55201 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40987859, endtime: 40988158, seqnum: 0, connid: 0 98 13:00:28,8943040 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55201 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40987861, endtime: 40988158, seqnum: 0, connid: 0 98 13:00:28,8943106 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55201 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40987864, endtime: 40988158, seqnum: 0, connid: 0 98 13:00:28,8943165 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55201 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40987867, endtime: 40988158, seqnum: 0, connid: 0 98 13:00:29,5721715 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55222 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40987844, endtime: 40988226, seqnum: 0, connid: 0 98 13:00:29,5721923 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55222 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40987845, endtime: 40988226, seqnum: 0, connid: 0 98 13:00:29,5722003 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55222 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40987848, endtime: 40988226, seqnum: 0, connid: 0 98 13:00:29,5722081 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55222 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40987850, endtime: 40988226, seqnum: 0, connid: 0 98 13:00:29,5722141 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55222 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40987853, endtime: 40988226, seqnum: 0, connid: 0 98 13:00:29,5722211 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55222 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40987855, endtime: 40988226, seqnum: 0, connid: 0 98 13:00:29,5722266 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55222 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40987856, endtime: 40988226, seqnum: 0, connid: 0 98 13:00:29,5722335 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55222 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40987858, endtime: 40988226, seqnum: 0, connid: 0 98 13:00:29,5722394 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55222 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40987859, endtime: 40988226, seqnum: 0, connid: 0 98 13:00:29,5722696 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55222 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40987861, endtime: 40988226, seqnum: 0, connid: 0 98 13:00:29,5722757 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55222 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40987864, endtime: 40988226, seqnum: 0, connid: 0 98 13:00:29,5722829 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55222 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40987867, endtime: 40988226, seqnum: 0, connid: 0 98 13:00:29,5722887 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55222 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40987869, endtime: 40988226, seqnum: 0, connid: 0 98 13:00:29,6539961 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55174 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40987859, endtime: 40988234, seqnum: 0, connid: 0 98 13:00:29,6540260 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55174 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40987861, endtime: 40988234, seqnum: 0, connid: 0 98 13:00:29,6540346 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55174 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40987864, endtime: 40988234, seqnum: 0, connid: 0 98 13:00:29,6540432 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55174 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40987867, endtime: 40988234, seqnum: 0, connid: 0 98 13:00:29,6540499 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55174 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40987869, endtime: 40988234, seqnum: 0, connid: 0 98 13:00:29,6540576 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55174 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40987870, endtime: 40988234, seqnum: 0, connid: 0 98 13:00:29,6540640 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55174 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40987873, endtime: 40988234, seqnum: 0, connid: 0 98 13:00:29,6540715 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55174 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40987875, endtime: 40988234, seqnum: 0, connid: 0 98 13:00:29,6540776 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55174 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40987876, endtime: 40988234, seqnum: 0, connid: 0 98 13:00:29,6541116 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55174 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40987878, endtime: 40988234, seqnum: 0, connid: 0 98 13:00:29,6541177 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55174 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40987879, endtime: 40988234, seqnum: 0, connid: 0 98 13:00:29,6541244 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55174 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40987880, endtime: 40988234, seqnum: 0, connid: 0 98 13:00:29,6541302 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55174 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40987885, endtime: 40988234, seqnum: 0, connid: 0 98 13:00:29,9731034 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55199 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40987985, endtime: 40988266, seqnum: 0, connid: 0 98 13:00:29,9731170 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55199 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40987986, endtime: 40988266, seqnum: 0, connid: 0 98 13:00:29,9731239 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55199 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40987986, endtime: 40988266, seqnum: 0, connid: 0 98 13:00:29,9731309 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55199 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40987987, endtime: 40988266, seqnum: 0, connid: 0 98 13:00:29,9731361 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55199 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40987987, endtime: 40988266, seqnum: 0, connid: 0 98 13:00:29,9731425 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55199 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40987989, endtime: 40988266, seqnum: 0, connid: 0 98 13:00:29,9731478 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55199 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40987991, endtime: 40988266, seqnum: 0, connid: 0 98 13:00:29,9731541 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55199 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40987994, endtime: 40988266, seqnum: 0, connid: 0 98 13:00:29,9731591 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55199 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40987995, endtime: 40988266, seqnum: 0, connid: 0 98 13:00:29,9731857 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55199 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40988000, endtime: 40988266, seqnum: 0, connid: 0 98 13:00:29,9731913 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55199 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40988001, endtime: 40988266, seqnum: 0, connid: 0 98 13:00:29,9731974 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55199 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40988003, endtime: 40988266, seqnum: 0, connid: 0 98 13:00:29,9732026 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55199 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40988005, endtime: 40988266, seqnum: 0, connid: 0 98 13:00:30,8764267 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55201 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40988158, endtime: 40988356, seqnum: 0, connid: 0 98 13:00:30,8764444 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55201 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40988161, endtime: 40988356, seqnum: 0, connid: 0 98 13:00:30,8764519 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55201 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40988162, endtime: 40988356, seqnum: 0, connid: 0 98 13:00:30,8764591 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55201 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40988164, endtime: 40988356, seqnum: 0, connid: 0 98 13:00:30,8764649 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55201 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40988167, endtime: 40988356, seqnum: 0, connid: 0 98 13:00:30,8764716 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55201 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40988169, endtime: 40988356, seqnum: 0, connid: 0 98 13:00:30,8764771 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55201 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40988172, endtime: 40988356, seqnum: 0, connid: 0 98 13:00:30,8764835 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55201 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40988175, endtime: 40988356, seqnum: 0, connid: 0 98 13:00:30,8764890 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55201 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40988176, endtime: 40988356, seqnum: 0, connid: 0 98 13:00:30,8765178 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55201 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40988178, endtime: 40988356, seqnum: 0, connid: 0 98 13:00:30,8765236 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55201 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40988180, endtime: 40988356, seqnum: 0, connid: 0 98 13:00:30,8765300 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55201 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40988183, endtime: 40988356, seqnum: 0, connid: 0 98 13:00:30,8765353 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55201 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40988186, endtime: 40988356, seqnum: 0, connid: 0 98 13:00:31,1654119 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55174 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40988234, endtime: 40988385, seqnum: 0, connid: 0 98 13:00:31,1654308 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55174 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40988236, endtime: 40988385, seqnum: 0, connid: 0 98 13:00:31,1654385 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55174 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40988239, endtime: 40988385, seqnum: 0, connid: 0 98 13:00:31,1654460 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55174 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40988242, endtime: 40988385, seqnum: 0, connid: 0 98 13:00:31,1654518 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55174 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40988244, endtime: 40988385, seqnum: 0, connid: 0 98 13:00:31,1654587 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55174 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40988247, endtime: 40988385, seqnum: 0, connid: 0 98 13:00:31,1654643 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55174 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40988251, endtime: 40988385, seqnum: 0, connid: 0 98 13:00:31,1654709 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55174 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40988254, endtime: 40988385, seqnum: 0, connid: 0 98 13:00:31,1654765 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55174 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40988256, endtime: 40988385, seqnum: 0, connid: 0 98 13:00:31,1655086 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55174 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40988258, endtime: 40988385, seqnum: 0, connid: 0 98 13:00:31,1655144 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55174 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40988261, endtime: 40988385, seqnum: 0, connid: 0 98 13:00:31,1655211 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55174 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40988262, endtime: 40988385, seqnum: 0, connid: 0 98 13:00:31,1655269 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55174 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40988265, endtime: 40988385, seqnum: 0, connid: 0 98 13:00:31,9743122 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55199 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40988266, endtime: 40988466, seqnum: 0, connid: 0 98 13:00:31,9743297 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55199 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40988267, endtime: 40988466, seqnum: 0, connid: 0 98 13:00:31,9743375 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55199 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40988269, endtime: 40988466, seqnum: 0, connid: 0 98 13:00:31,9743449 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55199 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40988270, endtime: 40988466, seqnum: 0, connid: 0 98 13:00:31,9743510 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55199 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40988272, endtime: 40988466, seqnum: 0, connid: 0 98 13:00:31,9743582 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55199 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40988273, endtime: 40988466, seqnum: 0, connid: 0 98 13:00:31,9743643 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55199 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40988275, endtime: 40988466, seqnum: 0, connid: 0 98 13:00:31,9743713 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55199 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40988277, endtime: 40988466, seqnum: 0, connid: 0 98 13:00:31,9743771 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55199 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40988280, endtime: 40988466, seqnum: 0, connid: 0 98 13:00:31,9744051 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55199 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40988283, endtime: 40988466, seqnum: 0, connid: 0 98 13:00:31,9744114 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55199 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40988284, endtime: 40988466, seqnum: 0, connid: 0 98 13:00:31,9744184 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55199 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40988286, endtime: 40988466, seqnum: 0, connid: 0 98 13:00:31,9744244 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55199 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40988290, endtime: 40988466, seqnum: 0, connid: 0 98 13:00:32,1155942 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55222 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40988226, endtime: 40988480, seqnum: 0, connid: 0 98 13:00:32,1156092 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55222 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40988228, endtime: 40988480, seqnum: 0, connid: 0 98 13:00:32,1156158 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55222 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40988230, endtime: 40988480, seqnum: 0, connid: 0 98 13:00:32,1156227 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55222 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40988231, endtime: 40988480, seqnum: 0, connid: 0 98 13:00:32,1156283 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55222 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40988234, endtime: 40988480, seqnum: 0, connid: 0 98 13:00:32,1156346 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55222 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40988236, endtime: 40988480, seqnum: 0, connid: 0 98 13:00:32,1156396 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55222 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40988239, endtime: 40988480, seqnum: 0, connid: 0 98 13:00:32,1156463 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55222 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40988242, endtime: 40988480, seqnum: 0, connid: 0 98 13:00:32,1156513 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55222 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40988244, endtime: 40988480, seqnum: 0, connid: 0 98 13:00:32,1156798 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55222 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40988247, endtime: 40988480, seqnum: 0, connid: 0 98 13:00:32,1156854 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55222 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40988251, endtime: 40988480, seqnum: 0, connid: 0 98 13:00:32,1156914 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55222 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40988254, endtime: 40988480, seqnum: 0, connid: 0 98 13:00:32,1156970 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55222 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40988256, endtime: 40988480, seqnum: 0, connid: 0 98 13:00:33,7280673 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55201 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40988356, endtime: 40988641, seqnum: 0, connid: 0 98 13:00:33,7280848 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55201 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40988358, endtime: 40988641, seqnum: 0, connid: 0 98 13:00:33,7280917 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55201 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40988361, endtime: 40988641, seqnum: 0, connid: 0 98 13:00:33,7280989 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55201 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40988362, endtime: 40988641, seqnum: 0, connid: 0 98 13:00:33,7281047 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55201 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40988364, endtime: 40988641, seqnum: 0, connid: 0 98 13:00:33,7281114 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55201 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40988367, endtime: 40988641, seqnum: 0, connid: 0 98 13:00:33,7281166 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55201 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40988370, endtime: 40988641, seqnum: 0, connid: 0 98 13:00:33,7281233 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55201 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40988372, endtime: 40988641, seqnum: 0, connid: 0 98 13:00:33,7281285 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55201 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40988375, endtime: 40988641, seqnum: 0, connid: 0 98 13:00:33,7281732 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55201 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40988376, endtime: 40988641, seqnum: 0, connid: 0 98 13:00:33,7281801 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55201 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40988378, endtime: 40988641, seqnum: 0, connid: 0 98 13:00:33,7281867 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55201 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40988380, endtime: 40988641, seqnum: 0, connid: 0 98 13:00:33,7281923 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55201 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40988383, endtime: 40988641, seqnum: 0, connid: 0 98 13:00:33,8765284 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55174 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40988385, endtime: 40988656, seqnum: 0, connid: 0 98 13:00:33,8765464 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55174 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40988386, endtime: 40988656, seqnum: 0, connid: 0 98 13:00:33,8765538 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55174 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40988389, endtime: 40988656, seqnum: 0, connid: 0 98 13:00:33,8765613 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55174 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40988392, endtime: 40988656, seqnum: 0, connid: 0 98 13:00:33,8765674 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55174 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40988394, endtime: 40988656, seqnum: 0, connid: 0 98 13:00:33,8765746 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55174 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40988395, endtime: 40988656, seqnum: 0, connid: 0 98 13:00:33,8765804 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55174 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40988397, endtime: 40988656, seqnum: 0, connid: 0 98 13:00:33,8775288 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55174 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40988399, endtime: 40988656, seqnum: 0, connid: 0 98 13:00:33,8775407 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55174 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40988400, endtime: 40988656, seqnum: 0, connid: 0 98 13:00:33,8775490 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55174 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40988400, endtime: 40988656, seqnum: 0, connid: 0 98 13:00:33,8775554 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55174 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40988401, endtime: 40988656, seqnum: 0, connid: 0 98 13:00:33,8775621 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55174 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40988403, endtime: 40988656, seqnum: 0, connid: 0 98 13:00:33,8775679 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55174 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40988405, endtime: 40988656, seqnum: 0, connid: 0 98 13:00:34,4270296 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55243 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40988042, endtime: 40988711, seqnum: 0, connid: 0 98 13:00:34,4270506 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55243 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40988044, endtime: 40988711, seqnum: 0, connid: 0 98 13:00:34,4270601 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55243 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40988046, endtime: 40988711, seqnum: 0, connid: 0 98 13:00:34,4270670 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55243 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40988048, endtime: 40988711, seqnum: 0, connid: 0 98 13:00:34,4270742 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55243 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40988051, endtime: 40988711, seqnum: 0, connid: 0 98 13:00:34,4270806 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55243 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40988053, endtime: 40988711, seqnum: 0, connid: 0 98 13:00:34,4270878 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55243 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40988057, endtime: 40988711, seqnum: 0, connid: 0 98 13:00:34,4270936 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55243 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40988058, endtime: 40988711, seqnum: 0, connid: 0 98 13:00:34,4271008 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55243 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40988061, endtime: 40988711, seqnum: 0, connid: 0 98 13:00:34,4271764 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55243 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40988062, endtime: 40988711, seqnum: 0, connid: 0 98 13:00:34,4271856 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55243 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40988064, endtime: 40988711, seqnum: 0, connid: 0 98 13:00:34,4271917 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55243 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40988066, endtime: 40988711, seqnum: 0, connid: 0 98 13:00:34,4273119 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55243 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40988069, endtime: 40988711, seqnum: 0, connid: 0 98 13:00:35,3259299 MCLauncher.exe 6080 TCP TCPCopy WIN-0UOTFKKVN1S:54920 -> sheltex.company:8000 SUCCESS Length: 2, seqnum: 0, connid: 0 98 13:00:35,3259509 MCLauncher.exe 6080 TCP Receive WIN-0UOTFKKVN1S:54920 -> sheltex.company:8000 SUCCESS Length: 2, seqnum: 0, connid: 0 98 13:00:35,3264616 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54920 -> sheltex.company:8000 SUCCESS Length: 2, startime: 40988801, endtime: 40988801, seqnum: 0, connid: 0 98 13:00:35,3300794 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55199 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40988466, endtime: 40988802, seqnum: 0, connid: 0 98 13:00:35,3300985 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55199 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40988467, endtime: 40988802, seqnum: 0, connid: 0 98 13:00:35,3301065 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55199 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40988469, endtime: 40988802, seqnum: 0, connid: 0 98 13:00:35,3301143 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55199 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40988470, endtime: 40988802, seqnum: 0, connid: 0 98 13:00:35,3301201 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55199 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40988472, endtime: 40988802, seqnum: 0, connid: 0 98 13:00:35,3301270 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55199 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40988473, endtime: 40988802, seqnum: 0, connid: 0 98 13:00:35,3301325 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55199 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40988475, endtime: 40988802, seqnum: 0, connid: 0 98 13:00:35,3301398 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55199 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40988476, endtime: 40988802, seqnum: 0, connid: 0 98 13:00:35,3301453 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55199 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40988480, endtime: 40988802, seqnum: 0, connid: 0 98 13:00:35,3301977 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55199 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40988481, endtime: 40988802, seqnum: 0, connid: 0 98 13:00:35,3302049 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55199 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40988483, endtime: 40988802, seqnum: 0, connid: 0 98 13:00:35,3302115 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55199 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40988484, endtime: 40988802, seqnum: 0, connid: 0 98 13:00:35,3302171 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55199 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40988486, endtime: 40988802, seqnum: 0, connid: 0 98 13:00:35,4134488 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55199 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40988802, endtime: 40988810, seqnum: 0, connid: 0 98 13:00:35,4971511 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55201 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40988641, endtime: 40988818, seqnum: 0, connid: 0 98 13:00:35,4971707 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55201 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40988642, endtime: 40988818, seqnum: 0, connid: 0 98 13:00:35,4971791 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55201 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40988644, endtime: 40988818, seqnum: 0, connid: 0 98 13:00:35,4971874 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55201 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40988647, endtime: 40988818, seqnum: 0, connid: 0 98 13:00:35,4971937 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55201 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40988648, endtime: 40988818, seqnum: 0, connid: 0 98 13:00:35,4972012 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55201 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40988650, endtime: 40988818, seqnum: 0, connid: 0 98 13:00:35,4972073 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55201 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40988651, endtime: 40988818, seqnum: 0, connid: 0 98 13:00:35,4972145 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55201 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40988653, endtime: 40988818, seqnum: 0, connid: 0 98 13:00:35,4972206 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55201 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40988656, endtime: 40988818, seqnum: 0, connid: 0 98 13:00:35,4972505 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55201 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40988658, endtime: 40988818, seqnum: 0, connid: 0 98 13:00:35,4972572 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55201 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40988661, endtime: 40988818, seqnum: 0, connid: 0 98 13:00:35,4972644 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55201 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40988662, endtime: 40988818, seqnum: 0, connid: 0 98 13:00:35,4972705 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55201 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40988664, endtime: 40988818, seqnum: 0, connid: 0 98 13:00:35,6562486 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55222 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40988480, endtime: 40988834, seqnum: 0, connid: 0 98 13:00:35,6562655 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55222 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40988481, endtime: 40988834, seqnum: 0, connid: 0 98 13:00:35,6562730 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55222 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40988483, endtime: 40988834, seqnum: 0, connid: 0 98 13:00:35,6562810 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55222 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40988484, endtime: 40988834, seqnum: 0, connid: 0 98 13:00:35,6562871 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55222 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40988486, endtime: 40988834, seqnum: 0, connid: 0 98 13:00:35,6562943 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55222 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40988487, endtime: 40988834, seqnum: 0, connid: 0 98 13:00:35,6562998 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55222 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40988489, endtime: 40988834, seqnum: 0, connid: 0 98 13:00:35,6563068 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55222 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40988491, endtime: 40988834, seqnum: 0, connid: 0 98 13:00:35,6563123 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55222 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40988494, endtime: 40988834, seqnum: 0, connid: 0 98 13:00:35,6563417 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55222 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40988495, endtime: 40988834, seqnum: 0, connid: 0 98 13:00:35,6563475 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55222 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40988497, endtime: 40988834, seqnum: 0, connid: 0 98 13:00:35,6563541 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55222 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40988498, endtime: 40988834, seqnum: 0, connid: 0 98 13:00:35,6563599 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55222 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40988501, endtime: 40988834, seqnum: 0, connid: 0 98 13:00:36,2845225 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55200 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40988121, endtime: 40988897, seqnum: 0, connid: 0 98 13:00:36,2845388 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55200 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40988122, endtime: 40988897, seqnum: 0, connid: 0 98 13:00:36,2845474 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55200 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40988125, endtime: 40988897, seqnum: 0, connid: 0 98 13:00:36,2845535 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55200 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40988127, endtime: 40988897, seqnum: 0, connid: 0 98 13:00:36,2845602 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55200 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40988129, endtime: 40988897, seqnum: 0, connid: 0 98 13:00:36,2845657 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55200 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40988130, endtime: 40988897, seqnum: 0, connid: 0 98 13:00:36,2845723 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55200 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40988133, endtime: 40988897, seqnum: 0, connid: 0 98 13:00:36,2845776 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55200 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40988134, endtime: 40988897, seqnum: 0, connid: 0 98 13:00:36,2845840 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55200 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40988136, endtime: 40988897, seqnum: 0, connid: 0 98 13:00:36,2846114 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55200 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40988139, endtime: 40988897, seqnum: 0, connid: 0 98 13:00:36,2846183 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55200 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40988141, endtime: 40988897, seqnum: 0, connid: 0 98 13:00:36,2846236 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55200 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40988142, endtime: 40988897, seqnum: 0, connid: 0 98 13:00:36,2846300 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55200 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40988145, endtime: 40988897, seqnum: 0, connid: 0 98 13:00:37,2640115 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55199 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40988803, endtime: 40988995, seqnum: 0, connid: 0 98 13:00:37,2640264 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55199 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40988806, endtime: 40988995, seqnum: 0, connid: 0 98 13:00:37,2640347 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55199 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40988808, endtime: 40988995, seqnum: 0, connid: 0 98 13:00:37,2640408 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55199 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40988809, endtime: 40988995, seqnum: 0, connid: 0 98 13:00:37,2640478 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55199 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40988811, endtime: 40988995, seqnum: 0, connid: 0 98 13:00:37,2640533 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55199 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40988812, endtime: 40988995, seqnum: 0, connid: 0 98 13:00:37,2640599 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55199 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40988816, endtime: 40988995, seqnum: 0, connid: 0 98 13:00:37,2640655 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55199 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40988817, endtime: 40988995, seqnum: 0, connid: 0 98 13:00:37,2640719 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55199 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40988820, endtime: 40988995, seqnum: 0, connid: 0 98 13:00:37,2641314 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55199 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40988822, endtime: 40988995, seqnum: 0, connid: 0 98 13:00:37,2641395 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55199 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40988823, endtime: 40988995, seqnum: 0, connid: 0 98 13:00:37,2641461 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55199 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40988825, endtime: 40988995, seqnum: 0, connid: 0 98 13:00:37,3548507 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55199 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40988826, endtime: 40989004, seqnum: 0, connid: 0 98 13:00:37,3548695 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55199 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40988995, endtime: 40989004, seqnum: 0, connid: 0 98 13:00:37,3548775 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55199 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40988997, endtime: 40989004, seqnum: 0, connid: 0 98 13:00:37,3548853 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55199 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40988999, endtime: 40989004, seqnum: 0, connid: 0 98 13:00:37,3548914 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55199 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40989000, endtime: 40989004, seqnum: 0, connid: 0 98 13:00:37,3548986 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55199 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40989000, endtime: 40989004, seqnum: 0, connid: 0 98 13:00:37,3549044 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55199 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40989001, endtime: 40989004, seqnum: 0, connid: 0 98 13:00:37,3549116 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55199 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40989003, endtime: 40989004, seqnum: 0, connid: 0 98 13:00:37,3861242 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55199 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40989006, endtime: 40989007, seqnum: 0, connid: 0 98 13:00:37,4079282 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55199 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40989009, endtime: 40989009, seqnum: 0, connid: 0 98 13:00:37,4407973 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55199 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40989012, endtime: 40989013, seqnum: 0, connid: 0 98 13:00:37,4731622 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55199 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40989016, endtime: 40989016, seqnum: 0, connid: 0 98 13:00:37,5031108 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55199 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40989019, endtime: 40989019, seqnum: 0, connid: 0 98 13:00:37,5076712 MCLauncher.exe 6080 TCP Disconnect WIN-0UOTFKKVN1S:55201 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 0, seqnum: 0, connid: 0 98 13:00:37,6098650 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55222 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40988834, endtime: 40989030, seqnum: 0, connid: 0 98 13:00:37,6098855 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55222 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40988836, endtime: 40989030, seqnum: 0, connid: 0 98 13:00:37,6098938 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55222 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40988839, endtime: 40989030, seqnum: 0, connid: 0 98 13:00:37,6099018 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55222 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40988842, endtime: 40989030, seqnum: 0, connid: 0 98 13:00:37,6099082 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55222 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40988844, endtime: 40989030, seqnum: 0, connid: 0 98 13:00:37,6099154 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55222 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40988845, endtime: 40989030, seqnum: 0, connid: 0 98 13:00:37,6099212 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55222 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40988848, endtime: 40989030, seqnum: 0, connid: 0 98 13:00:37,6102758 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55222 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40988850, endtime: 40989030, seqnum: 0, connid: 0 98 13:00:37,6102869 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55222 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40988851, endtime: 40989030, seqnum: 0, connid: 0 98 13:00:37,6102949 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55222 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40988853, endtime: 40989030, seqnum: 0, connid: 0 98 13:00:37,6103016 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55222 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40988855, endtime: 40989030, seqnum: 0, connid: 0 98 13:00:37,6103088 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55222 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40988856, endtime: 40989030, seqnum: 0, connid: 0 98 13:00:37,6103149 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55222 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40988859, endtime: 40989030, seqnum: 0, connid: 0 98 13:00:37,6674732 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55174 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40988656, endtime: 40989035, seqnum: 0, connid: 0 98 13:00:37,6674904 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55174 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40988658, endtime: 40989035, seqnum: 0, connid: 0 98 13:00:37,6674976 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55174 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40988661, endtime: 40989035, seqnum: 0, connid: 0 98 13:00:37,6675048 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55174 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40988662, endtime: 40989035, seqnum: 0, connid: 0 98 13:00:37,6675106 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55174 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40988664, endtime: 40989035, seqnum: 0, connid: 0 98 13:00:37,6675173 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55174 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40988665, endtime: 40989035, seqnum: 0, connid: 0 98 13:00:37,6675228 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55174 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40988667, endtime: 40989035, seqnum: 0, connid: 0 98 13:00:37,6675297 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55174 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40988669, endtime: 40989035, seqnum: 0, connid: 0 98 13:00:37,6675525 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55174 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40988670, endtime: 40989035, seqnum: 0, connid: 0 98 13:00:37,6675885 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55174 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40988672, endtime: 40989035, seqnum: 0, connid: 0 98 13:00:37,6675946 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55174 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40988673, endtime: 40989035, seqnum: 0, connid: 0 98 13:00:37,6676012 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55174 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40988675, endtime: 40989035, seqnum: 0, connid: 0 98 13:00:37,6676070 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55174 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40988678, endtime: 40989035, seqnum: 0, connid: 0 98 13:00:37,6824024 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55200 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40988897, endtime: 40989037, seqnum: 0, connid: 0 98 13:00:37,6824209 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55200 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40988898, endtime: 40989037, seqnum: 0, connid: 0 98 13:00:37,6824284 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55200 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40988900, endtime: 40989037, seqnum: 0, connid: 0 98 13:00:37,6824365 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55200 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40988901, endtime: 40989037, seqnum: 0, connid: 0 98 13:00:37,6824426 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55200 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40988903, endtime: 40989037, seqnum: 0, connid: 0 98 13:00:37,6824498 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55200 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40988905, endtime: 40989037, seqnum: 0, connid: 0 98 13:00:37,6824553 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55200 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40988906, endtime: 40989037, seqnum: 0, connid: 0 98 13:00:37,6824625 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55200 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40988908, endtime: 40989037, seqnum: 0, connid: 0 98 13:00:37,6824683 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55200 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40988909, endtime: 40989037, seqnum: 0, connid: 0 98 13:00:37,6825049 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55200 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40988911, endtime: 40989037, seqnum: 0, connid: 0 98 13:00:37,6825115 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55200 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40988912, endtime: 40989037, seqnum: 0, connid: 0 98 13:00:37,6825185 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55200 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40988914, endtime: 40989037, seqnum: 0, connid: 0 98 13:00:37,6825243 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55200 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40988916, endtime: 40989037, seqnum: 0, connid: 0 98 13:00:38,6966641 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55243 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40988711, endtime: 40989138, seqnum: 0, connid: 0 98 13:00:38,6966830 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55243 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40988712, endtime: 40989138, seqnum: 0, connid: 0 98 13:00:38,6966904 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55243 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40988714, endtime: 40989138, seqnum: 0, connid: 0 98 13:00:38,6966982 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55243 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40988717, endtime: 40989138, seqnum: 0, connid: 0 98 13:00:38,6967043 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55243 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40988719, endtime: 40989138, seqnum: 0, connid: 0 98 13:00:38,6967112 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55243 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40988720, endtime: 40989138, seqnum: 0, connid: 0 98 13:00:38,6967168 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55243 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40988722, endtime: 40989138, seqnum: 0, connid: 0 98 13:00:38,6967234 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55243 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40988723, endtime: 40989138, seqnum: 0, connid: 0 98 13:00:38,6967290 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55243 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40988725, endtime: 40989138, seqnum: 0, connid: 0 98 13:00:38,6968104 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55243 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40988726, endtime: 40989138, seqnum: 0, connid: 0 98 13:00:38,6968187 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55243 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40988728, endtime: 40989138, seqnum: 0, connid: 0 98 13:00:38,6968270 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55243 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40988730, endtime: 40989138, seqnum: 0, connid: 0 98 13:00:38,6974083 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55243 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40988733, endtime: 40989138, seqnum: 0, connid: 0 98 13:00:39,0406253 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55199 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40989022, endtime: 40989173, seqnum: 0, connid: 0 98 13:00:39,0406444 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55199 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40989025, endtime: 40989173, seqnum: 0, connid: 0 98 13:00:39,0406525 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55199 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40989027, endtime: 40989173, seqnum: 0, connid: 0 98 13:00:39,0406602 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55199 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40989030, endtime: 40989173, seqnum: 0, connid: 0 98 13:00:39,0406661 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55199 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40989031, endtime: 40989173, seqnum: 0, connid: 0 98 13:00:39,0406730 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55199 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40989036, endtime: 40989173, seqnum: 0, connid: 0 98 13:00:39,0406785 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55199 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40989037, endtime: 40989173, seqnum: 0, connid: 0 98 13:00:39,0406854 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55199 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40989039, endtime: 40989173, seqnum: 0, connid: 0 98 13:00:39,0406907 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55199 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40989041, endtime: 40989173, seqnum: 0, connid: 0 98 13:00:39,0407220 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55199 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40989042, endtime: 40989173, seqnum: 0, connid: 0 98 13:00:39,0407278 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55199 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40989045, endtime: 40989173, seqnum: 0, connid: 0 98 13:00:39,0407345 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55199 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40989047, endtime: 40989173, seqnum: 0, connid: 0 98 13:00:39,0407403 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55199 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40989048, endtime: 40989173, seqnum: 0, connid: 0 98 13:00:39,2532171 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55174 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40989036, endtime: 40989194, seqnum: 0, connid: 0 98 13:00:39,2532345 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55174 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40989037, endtime: 40989194, seqnum: 0, connid: 0 98 13:00:39,2532420 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55174 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40989039, endtime: 40989194, seqnum: 0, connid: 0 98 13:00:39,2532498 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55174 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40989041, endtime: 40989194, seqnum: 0, connid: 0 98 13:00:39,2532561 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55174 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40989042, endtime: 40989194, seqnum: 0, connid: 0 98 13:00:39,2532633 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55174 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40989045, endtime: 40989194, seqnum: 0, connid: 0 98 13:00:39,2532692 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55174 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40989047, endtime: 40989194, seqnum: 0, connid: 0 98 13:00:39,2532764 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55174 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40989048, endtime: 40989194, seqnum: 0, connid: 0 98 13:00:39,2532822 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55174 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40989050, endtime: 40989194, seqnum: 0, connid: 0 98 13:00:39,2533584 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55174 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40989052, endtime: 40989194, seqnum: 0, connid: 0 98 13:00:39,2533661 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55174 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40989053, endtime: 40989194, seqnum: 0, connid: 0 98 13:00:39,2533733 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55174 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40989056, endtime: 40989194, seqnum: 0, connid: 0 98 13:00:39,2535210 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55174 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40989058, endtime: 40989194, seqnum: 0, connid: 0 98 13:00:39,8671040 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55222 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40989030, endtime: 40989255, seqnum: 0, connid: 0 98 13:00:39,8671237 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55222 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40989031, endtime: 40989255, seqnum: 0, connid: 0 98 13:00:39,8671317 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55222 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40989036, endtime: 40989255, seqnum: 0, connid: 0 98 13:00:39,8671398 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55222 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40989037, endtime: 40989255, seqnum: 0, connid: 0 98 13:00:39,8671461 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55222 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40989039, endtime: 40989255, seqnum: 0, connid: 0 98 13:00:39,8671533 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55222 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40989041, endtime: 40989255, seqnum: 0, connid: 0 98 13:00:39,8671592 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55222 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40989042, endtime: 40989255, seqnum: 0, connid: 0 98 13:00:39,8671661 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55222 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40989045, endtime: 40989255, seqnum: 0, connid: 0 98 13:00:39,8671719 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55222 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40989047, endtime: 40989255, seqnum: 0, connid: 0 98 13:00:39,8672018 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55222 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40989048, endtime: 40989255, seqnum: 0, connid: 0 98 13:00:39,8672082 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55222 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40989050, endtime: 40989255, seqnum: 0, connid: 0 98 13:00:39,8672151 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55222 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40989052, endtime: 40989255, seqnum: 0, connid: 0 98 13:00:39,8672209 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55222 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40989053, endtime: 40989255, seqnum: 0, connid: 0 98 13:00:40,5161327 MCLauncher.exe 6080 TCP Reconnect WIN-0UOTFKKVN1S:55250 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 0, seqnum: 0, connid: 0 98 13:00:40,6573410 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55200 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40989037, endtime: 40989334, seqnum: 0, connid: 0 98 13:00:40,6573621 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55200 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40989039, endtime: 40989334, seqnum: 0, connid: 0 98 13:00:40,6573701 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55200 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40989041, endtime: 40989334, seqnum: 0, connid: 0 98 13:00:40,6573781 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55200 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40989042, endtime: 40989334, seqnum: 0, connid: 0 98 13:00:40,6573845 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55200 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40989045, endtime: 40989334, seqnum: 0, connid: 0 98 13:00:40,6573917 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55200 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40989047, endtime: 40989334, seqnum: 0, connid: 0 98 13:00:40,6573978 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55200 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40989048, endtime: 40989334, seqnum: 0, connid: 0 98 13:00:40,6574047 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55200 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40989050, endtime: 40989334, seqnum: 0, connid: 0 98 13:00:40,6574108 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55200 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40989052, endtime: 40989334, seqnum: 0, connid: 0 98 13:00:40,6574405 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55200 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40989053, endtime: 40989334, seqnum: 0, connid: 0 98 13:00:40,6574466 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55200 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40989056, endtime: 40989334, seqnum: 0, connid: 0 98 13:00:40,6574538 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55200 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40989058, endtime: 40989334, seqnum: 0, connid: 0 98 13:00:40,6574596 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55200 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40989059, endtime: 40989334, seqnum: 0, connid: 0 98 13:00:41,4474082 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55174 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40989194, endtime: 40989413, seqnum: 0, connid: 0 98 13:00:41,4474262 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55174 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40989195, endtime: 40989413, seqnum: 0, connid: 0 98 13:00:41,4474339 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55174 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40989197, endtime: 40989413, seqnum: 0, connid: 0 98 13:00:41,4474417 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55174 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40989198, endtime: 40989413, seqnum: 0, connid: 0 98 13:00:41,4474630 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55174 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40989200, endtime: 40989413, seqnum: 0, connid: 0 98 13:00:41,4474760 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55174 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40989202, endtime: 40989413, seqnum: 0, connid: 0 98 13:00:41,4474863 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55174 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40989202, endtime: 40989413, seqnum: 0, connid: 0 98 13:00:41,4474985 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55174 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40989205, endtime: 40989413, seqnum: 0, connid: 0 98 13:00:41,4475090 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55174 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40989206, endtime: 40989413, seqnum: 0, connid: 0 98 13:00:41,4475830 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55174 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40989206, endtime: 40989413, seqnum: 0, connid: 0 98 13:00:41,4475907 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55174 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40989210, endtime: 40989413, seqnum: 0, connid: 0 98 13:00:41,4475977 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55174 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40989212, endtime: 40989413, seqnum: 0, connid: 0 98 13:00:42,0655540 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55243 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40989138, endtime: 40989475, seqnum: 0, connid: 0 98 13:00:42,0655726 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55243 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40989141, endtime: 40989475, seqnum: 0, connid: 0 98 13:00:42,0655803 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55243 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40989144, endtime: 40989475, seqnum: 0, connid: 0 98 13:00:42,0655878 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55243 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40989145, endtime: 40989475, seqnum: 0, connid: 0 98 13:00:42,0655936 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55243 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40989147, endtime: 40989475, seqnum: 0, connid: 0 98 13:00:42,0656005 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55243 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40989148, endtime: 40989475, seqnum: 0, connid: 0 98 13:00:42,0656061 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55243 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40989150, endtime: 40989475, seqnum: 0, connid: 0 98 13:00:42,0656125 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55243 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40989151, endtime: 40989475, seqnum: 0, connid: 0 98 13:00:42,0656180 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55243 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40989153, endtime: 40989475, seqnum: 0, connid: 0 98 13:00:42,0656476 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55243 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40989156, endtime: 40989475, seqnum: 0, connid: 0 98 13:00:42,0656537 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55243 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40989158, endtime: 40989475, seqnum: 0, connid: 0 98 13:00:42,0656604 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55243 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40989159, endtime: 40989475, seqnum: 0, connid: 0 98 13:00:42,0656659 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55243 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40989161, endtime: 40989475, seqnum: 0, connid: 0 98 13:00:43,4672667 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55174 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40989214, endtime: 40989615, seqnum: 0, connid: 0 98 13:00:43,4672872 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55174 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40989413, endtime: 40989615, seqnum: 0, connid: 0 98 13:00:43,4672952 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55174 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40989414, endtime: 40989615, seqnum: 0, connid: 0 98 13:00:43,4673036 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55174 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40989416, endtime: 40989615, seqnum: 0, connid: 0 98 13:00:43,4673099 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55174 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40989417, endtime: 40989615, seqnum: 0, connid: 0 98 13:00:43,4673171 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55174 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40989419, endtime: 40989615, seqnum: 0, connid: 0 98 13:00:43,4673238 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55174 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40989420, endtime: 40989615, seqnum: 0, connid: 0 98 13:00:43,4673310 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55174 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40989424, endtime: 40989615, seqnum: 0, connid: 0 98 13:00:43,4673371 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55174 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40989427, endtime: 40989615, seqnum: 0, connid: 0 98 13:00:43,4673670 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55174 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40989428, endtime: 40989615, seqnum: 0, connid: 0 98 13:00:43,4673736 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55174 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40989430, endtime: 40989615, seqnum: 0, connid: 0 98 13:00:43,4673809 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55174 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40989431, endtime: 40989615, seqnum: 0, connid: 0 98 13:00:43,4673869 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55174 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40989433, endtime: 40989615, seqnum: 0, connid: 0 98 13:00:44,1539133 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55200 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40989334, endtime: 40989684, seqnum: 0, connid: 0 98 13:00:44,1539318 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55200 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40989336, endtime: 40989684, seqnum: 0, connid: 0 98 13:00:44,1539399 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55200 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40989337, endtime: 40989684, seqnum: 0, connid: 0 98 13:00:44,1539479 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55200 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40989339, endtime: 40989684, seqnum: 0, connid: 0 98 13:00:44,1539540 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55200 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40989341, endtime: 40989684, seqnum: 0, connid: 0 98 13:00:44,1539615 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55200 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40989342, endtime: 40989684, seqnum: 0, connid: 0 98 13:00:44,1539673 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55200 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40989345, endtime: 40989684, seqnum: 0, connid: 0 98 13:00:44,1539742 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55200 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40989349, endtime: 40989684, seqnum: 0, connid: 0 98 13:00:44,1539803 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55200 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40989350, endtime: 40989684, seqnum: 0, connid: 0 98 13:00:44,1540100 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55200 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40989352, endtime: 40989684, seqnum: 0, connid: 0 98 13:00:44,1540163 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55200 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40989353, endtime: 40989684, seqnum: 0, connid: 0 98 13:00:44,1540233 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55200 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40989355, endtime: 40989684, seqnum: 0, connid: 0 98 13:00:44,1540291 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55200 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40989356, endtime: 40989684, seqnum: 0, connid: 0 98 13:00:44,3344000 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55222 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40989255, endtime: 40989702, seqnum: 0, connid: 0 98 13:00:44,3344305 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55222 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40989256, endtime: 40989702, seqnum: 0, connid: 0 98 13:00:44,3344394 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55222 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40989258, endtime: 40989702, seqnum: 0, connid: 0 98 13:00:44,3344474 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55222 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40989259, endtime: 40989702, seqnum: 0, connid: 0 98 13:00:44,3344538 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55222 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40989261, endtime: 40989702, seqnum: 0, connid: 0 98 13:00:44,3344613 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55222 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40989262, endtime: 40989702, seqnum: 0, connid: 0 98 13:00:44,3344674 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55222 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40989266, endtime: 40989702, seqnum: 0, connid: 0 98 13:00:44,3344746 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55222 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40989267, endtime: 40989702, seqnum: 0, connid: 0 98 13:00:44,3344807 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55222 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40989269, endtime: 40989702, seqnum: 0, connid: 0 98 13:00:44,3345095 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55222 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40989270, endtime: 40989702, seqnum: 0, connid: 0 98 13:00:44,3345156 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55222 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40989272, endtime: 40989702, seqnum: 0, connid: 0 98 13:00:44,3345225 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55222 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40989273, endtime: 40989702, seqnum: 0, connid: 0 98 13:00:44,3345283 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55222 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40989275, endtime: 40989702, seqnum: 0, connid: 0 98 13:00:44,5329082 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55199 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40989173, endtime: 40989722, seqnum: 0, connid: 0 98 13:00:44,5329273 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55199 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40989173, endtime: 40989722, seqnum: 0, connid: 0 98 13:00:44,5329395 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55199 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40989175, endtime: 40989722, seqnum: 0, connid: 0 98 13:00:44,5329489 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55199 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40989176, endtime: 40989722, seqnum: 0, connid: 0 98 13:00:44,5329589 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55199 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40989178, endtime: 40989722, seqnum: 0, connid: 0 98 13:00:44,5329658 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55199 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40989180, endtime: 40989722, seqnum: 0, connid: 0 98 13:00:44,5329744 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55199 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40989183, endtime: 40989722, seqnum: 0, connid: 0 98 13:00:44,5329814 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55199 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40989184, endtime: 40989722, seqnum: 0, connid: 0 98 13:00:44,5329897 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55199 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40989186, endtime: 40989722, seqnum: 0, connid: 0 98 13:00:44,5330201 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55199 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40989188, endtime: 40989722, seqnum: 0, connid: 0 98 13:00:44,5330268 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55199 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40989189, endtime: 40989722, seqnum: 0, connid: 0 98 13:00:44,5330321 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55199 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40989191, endtime: 40989722, seqnum: 0, connid: 0 98 13:00:44,5330384 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55199 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40989192, endtime: 40989722, seqnum: 0, connid: 0 98 13:00:45,4236528 MCLauncher.exe 6080 TCP TCPCopy WIN-0UOTFKKVN1S:54920 -> sheltex.company:8000 SUCCESS Length: 2, seqnum: 0, connid: 0 98 13:00:45,4236645 MCLauncher.exe 6080 TCP Receive WIN-0UOTFKKVN1S:54920 -> sheltex.company:8000 SUCCESS Length: 2, seqnum: 0, connid: 0 98 13:00:45,4239227 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54920 -> sheltex.company:8000 SUCCESS Length: 2, startime: 40989811, endtime: 40989811, seqnum: 0, connid: 0 98 13:00:46,5324369 MCLauncher.exe 6080 TCP Reconnect WIN-0UOTFKKVN1S:55250 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 0, seqnum: 0, connid: 0 98 13:00:46,6103470 MCLauncher.exe 6080 TCP Connect WIN-0UOTFKKVN1S:55250 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 0, mss: 1460, sackopt: 0, tsopt: 0, wsopt: 0, rcvwin: 64240, rcvwinscale: 0, sndwinscale: 0, seqnum: 0, connid: 0 98 13:00:46,6110599 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55250 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40989930, endtime: 40989930, seqnum: 0, connid: 0 98 13:00:46,6142255 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55174 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40989615, endtime: 40989930, seqnum: 0, connid: 0 98 13:00:46,6142424 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55174 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40989617, endtime: 40989930, seqnum: 0, connid: 0 98 13:00:46,6142496 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55174 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40989621, endtime: 40989930, seqnum: 0, connid: 0 98 13:00:46,6142571 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55174 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40989622, endtime: 40989930, seqnum: 0, connid: 0 98 13:00:46,6142627 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55174 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40989623, endtime: 40989930, seqnum: 0, connid: 0 98 13:00:46,6142693 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55174 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40989625, endtime: 40989930, seqnum: 0, connid: 0 98 13:00:46,6142749 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55174 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40989628, endtime: 40989930, seqnum: 0, connid: 0 98 13:00:46,6142815 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55174 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40989630, endtime: 40989930, seqnum: 0, connid: 0 98 13:00:46,6142870 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55174 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40989633, endtime: 40989930, seqnum: 0, connid: 0 98 13:00:46,6143391 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55174 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40989634, endtime: 40989930, seqnum: 0, connid: 0 98 13:00:46,6143499 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55174 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40989637, endtime: 40989930, seqnum: 0, connid: 0 98 13:00:46,6143574 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55174 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40989639, endtime: 40989930, seqnum: 0, connid: 0 98 13:00:46,6143632 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55174 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40989641, endtime: 40989930, seqnum: 0, connid: 0 98 13:00:46,6257076 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55250 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40989931, endtime: 40989931, seqnum: 0, connid: 0 98 13:00:46,6411895 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55250 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40989933, endtime: 40989933, seqnum: 0, connid: 0 98 13:00:46,6570767 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55250 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40989934, endtime: 40989934, seqnum: 0, connid: 0 98 13:00:46,6724428 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55250 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40989936, endtime: 40989936, seqnum: 0, connid: 0 98 13:00:46,6882549 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55250 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40989937, endtime: 40989937, seqnum: 0, connid: 0 98 13:00:46,7037872 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55250 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40989939, endtime: 40989939, seqnum: 0, connid: 0 98 13:00:46,7192941 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55250 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40989940, endtime: 40989941, seqnum: 0, connid: 0 98 13:00:46,7517736 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55250 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40989944, endtime: 40989944, seqnum: 0, connid: 0 98 13:00:46,7937484 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55250 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40989947, endtime: 40989948, seqnum: 0, connid: 0 98 13:00:46,8080528 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55243 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40989475, endtime: 40989949, seqnum: 0, connid: 0 98 13:00:46,8080775 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55243 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40989476, endtime: 40989949, seqnum: 0, connid: 0 98 13:00:46,8080858 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55243 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40989478, endtime: 40989949, seqnum: 0, connid: 0 98 13:00:46,8080938 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55243 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40989480, endtime: 40989949, seqnum: 0, connid: 0 98 13:00:46,8081002 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55243 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40989481, endtime: 40989949, seqnum: 0, connid: 0 98 13:00:46,8081077 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55243 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40989483, endtime: 40989949, seqnum: 0, connid: 0 98 13:00:46,8081138 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55243 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40989486, endtime: 40989949, seqnum: 0, connid: 0 98 13:00:46,8081207 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55243 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40989487, endtime: 40989949, seqnum: 0, connid: 0 98 13:00:46,8081265 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55243 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40989489, endtime: 40989949, seqnum: 0, connid: 0 98 13:00:46,8081590 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55243 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40989492, endtime: 40989949, seqnum: 0, connid: 0 98 13:00:46,8081653 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55243 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40989495, endtime: 40989949, seqnum: 0, connid: 0 98 13:00:46,8081723 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55243 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40989499, endtime: 40989949, seqnum: 0, connid: 0 98 13:00:46,8081784 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55243 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40989500, endtime: 40989949, seqnum: 0, connid: 0 98 13:00:46,8336163 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55250 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40989951, endtime: 40989952, seqnum: 0, connid: 0 98 13:00:46,8446032 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55250 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40989953, endtime: 40989953, seqnum: 0, connid: 0 98 13:00:46,8610794 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55250 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40989955, endtime: 40989955, seqnum: 0, connid: 0 98 13:00:46,8759953 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55250 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40989956, endtime: 40989956, seqnum: 0, connid: 0 98 13:00:46,8943705 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55250 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40989958, endtime: 40989958, seqnum: 0, connid: 0 98 13:00:46,9232500 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55250 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40989961, endtime: 40989961, seqnum: 0, connid: 0 98 13:00:46,9391560 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55250 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40989962, endtime: 40989963, seqnum: 0, connid: 0 98 13:00:46,9542584 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55250 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40989964, endtime: 40989964, seqnum: 0, connid: 0 98 13:00:46,9714791 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55250 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40989966, endtime: 40989966, seqnum: 0, connid: 0 98 13:00:46,9852560 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55250 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40989967, endtime: 40989967, seqnum: 0, connid: 0 98 13:00:47,0016314 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55250 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40989969, endtime: 40989969, seqnum: 0, connid: 0 98 13:00:47,0170902 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55250 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40989970, endtime: 40989970, seqnum: 0, connid: 0 98 13:00:47,0349737 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55250 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40989972, endtime: 40989972, seqnum: 0, connid: 0 98 13:00:47,0479801 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55250 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40989973, endtime: 40989973, seqnum: 0, connid: 0 98 13:00:47,0649846 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55250 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40989975, endtime: 40989975, seqnum: 0, connid: 0 98 13:00:47,1832103 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55222 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40989702, endtime: 40989987, seqnum: 0, connid: 0 98 13:00:47,1832283 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55222 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40989703, endtime: 40989987, seqnum: 0, connid: 0 98 13:00:47,1832358 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55222 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40989705, endtime: 40989987, seqnum: 0, connid: 0 98 13:00:47,1832433 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55222 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40989706, endtime: 40989987, seqnum: 0, connid: 0 98 13:00:47,1832491 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55222 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40989708, endtime: 40989987, seqnum: 0, connid: 0 98 13:00:47,1832560 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55222 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40989709, endtime: 40989987, seqnum: 0, connid: 0 98 13:00:47,1832615 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55222 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40989712, endtime: 40989987, seqnum: 0, connid: 0 98 13:00:47,1832685 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55222 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40989716, endtime: 40989987, seqnum: 0, connid: 0 98 13:00:47,1832740 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55222 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40989717, endtime: 40989987, seqnum: 0, connid: 0 98 13:00:47,1833028 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55222 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40989719, endtime: 40989987, seqnum: 0, connid: 0 98 13:00:47,1833086 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55222 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40989722, endtime: 40989987, seqnum: 0, connid: 0 98 13:00:47,1833156 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55222 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40989723, endtime: 40989987, seqnum: 0, connid: 0 98 13:00:47,1833211 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55222 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40989725, endtime: 40989987, seqnum: 0, connid: 0 98 13:00:47,2509380 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55200 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40989684, endtime: 40989994, seqnum: 0, connid: 0 98 13:00:47,2509557 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55200 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40989687, endtime: 40989994, seqnum: 0, connid: 0 98 13:00:47,2509632 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55200 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40989691, endtime: 40989994, seqnum: 0, connid: 0 98 13:00:47,2509704 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55200 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40989692, endtime: 40989994, seqnum: 0, connid: 0 98 13:00:47,2509763 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55200 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40989694, endtime: 40989994, seqnum: 0, connid: 0 98 13:00:47,2509829 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55200 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40989695, endtime: 40989994, seqnum: 0, connid: 0 98 13:00:47,2509884 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55200 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40989697, endtime: 40989994, seqnum: 0, connid: 0 98 13:00:47,2509954 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55200 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40989698, endtime: 40989994, seqnum: 0, connid: 0 98 13:00:47,2510009 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55200 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40989700, endtime: 40989994, seqnum: 0, connid: 0 98 13:00:47,2510308 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55200 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40989702, endtime: 40989994, seqnum: 0, connid: 0 98 13:00:47,2510366 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55200 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40989703, endtime: 40989994, seqnum: 0, connid: 0 98 13:00:47,2510430 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55200 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40989705, endtime: 40989994, seqnum: 0, connid: 0 98 13:00:47,2510486 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55200 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40989706, endtime: 40989994, seqnum: 0, connid: 0 98 13:00:47,2648327 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55222 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40989987, endtime: 40989995, seqnum: 0, connid: 0 98 13:00:47,3014761 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55250 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40989976, endtime: 40989999, seqnum: 0, connid: 0 98 13:00:47,3014947 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55250 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40989978, endtime: 40989999, seqnum: 0, connid: 0 98 13:00:47,3015021 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55250 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40989980, endtime: 40989999, seqnum: 0, connid: 0 98 13:00:47,3015099 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55250 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40989981, endtime: 40989999, seqnum: 0, connid: 0 98 13:00:47,3015160 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55250 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40989983, endtime: 40989999, seqnum: 0, connid: 0 98 13:00:47,3015229 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55250 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40989984, endtime: 40989999, seqnum: 0, connid: 0 98 13:00:47,3015290 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55250 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40989986, endtime: 40989999, seqnum: 0, connid: 0 98 13:00:47,3015357 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55250 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40989987, endtime: 40989999, seqnum: 0, connid: 0 98 13:00:47,3015415 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55250 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40989989, endtime: 40989999, seqnum: 0, connid: 0 98 13:00:47,3015664 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55250 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40989991, endtime: 40989999, seqnum: 0, connid: 0 98 13:00:47,3015725 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55250 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40989994, endtime: 40989999, seqnum: 0, connid: 0 98 13:00:47,3015792 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55250 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40989995, endtime: 40989999, seqnum: 0, connid: 0 98 13:00:47,3045550 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55250 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40989998, endtime: 40989999, seqnum: 0, connid: 0 98 13:00:47,4430492 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55199 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40989722, endtime: 40990013, seqnum: 0, connid: 0 98 13:00:47,4430675 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55199 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40989723, endtime: 40990013, seqnum: 0, connid: 0 98 13:00:47,4430750 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55199 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40989725, endtime: 40990013, seqnum: 0, connid: 0 98 13:00:47,4430822 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55199 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40989727, endtime: 40990013, seqnum: 0, connid: 0 98 13:00:47,4430880 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55199 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40989730, endtime: 40990013, seqnum: 0, connid: 0 98 13:00:47,4430949 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55199 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40989731, endtime: 40990013, seqnum: 0, connid: 0 98 13:00:47,4431005 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55199 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40989733, endtime: 40990013, seqnum: 0, connid: 0 98 13:00:47,4431071 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55199 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40989733, endtime: 40990013, seqnum: 0, connid: 0 98 13:00:47,4431127 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55199 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40989734, endtime: 40990013, seqnum: 0, connid: 0 98 13:00:47,4431423 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55199 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40989736, endtime: 40990013, seqnum: 0, connid: 0 98 13:00:47,4431479 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55199 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40989739, endtime: 40990013, seqnum: 0, connid: 0 98 13:00:47,4431545 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55199 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40989741, endtime: 40990013, seqnum: 0, connid: 0 98 13:00:47,4431601 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55199 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40989744, endtime: 40990013, seqnum: 0, connid: 0 98 13:00:49,0053866 MCLauncher.exe 6080 TCP Disconnect WIN-0UOTFKKVN1S:55174 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 0, seqnum: 0, connid: 0 98 13:00:49,0843417 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55222 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40989989, endtime: 40990177, seqnum: 0, connid: 0 98 13:00:49,0843556 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55222 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40989991, endtime: 40990177, seqnum: 0, connid: 0 98 13:00:49,0843636 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55222 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40989994, endtime: 40990177, seqnum: 0, connid: 0 98 13:00:49,0843697 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55222 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40989995, endtime: 40990177, seqnum: 0, connid: 0 98 13:00:49,0843761 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55222 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40989998, endtime: 40990177, seqnum: 0, connid: 0 98 13:00:49,0843813 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55222 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40990000, endtime: 40990177, seqnum: 0, connid: 0 98 13:00:49,0843877 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55222 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40990001, endtime: 40990177, seqnum: 0, connid: 0 98 13:00:49,0845797 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55222 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40990005, endtime: 40990177, seqnum: 0, connid: 0 98 13:00:49,0845880 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55222 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40990006, endtime: 40990177, seqnum: 0, connid: 0 98 13:00:49,0845933 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55222 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40990008, endtime: 40990177, seqnum: 0, connid: 0 98 13:00:49,0845997 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55222 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40990009, endtime: 40990177, seqnum: 0, connid: 0 98 13:00:49,0846052 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55222 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40990013, endtime: 40990177, seqnum: 0, connid: 0 98 13:00:49,1565273 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55222 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40990017, endtime: 40990184, seqnum: 0, connid: 0 98 13:00:49,1565470 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55222 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40990177, endtime: 40990184, seqnum: 0, connid: 0 98 13:00:49,1565561 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55222 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40990178, endtime: 40990184, seqnum: 0, connid: 0 98 13:00:49,1565628 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55222 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40990180, endtime: 40990184, seqnum: 0, connid: 0 98 13:00:49,1565700 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55222 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40990181, endtime: 40990184, seqnum: 0, connid: 0 98 13:00:49,1565758 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55222 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40990183, endtime: 40990184, seqnum: 0, connid: 0 98 13:00:49,1638837 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55222 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40990184, endtime: 40990185, seqnum: 0, connid: 0 98 13:00:49,1735277 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55222 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40990186, endtime: 40990186, seqnum: 0, connid: 0 98 13:00:49,2045198 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55222 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40990189, endtime: 40990189, seqnum: 0, connid: 0 98 13:00:49,2202455 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55222 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40990191, endtime: 40990191, seqnum: 0, connid: 0 98 13:00:49,2512098 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55222 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40990194, endtime: 40990194, seqnum: 0, connid: 0 98 13:00:49,2674860 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55222 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40990195, endtime: 40990195, seqnum: 0, connid: 0 98 13:00:49,2832211 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55222 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40990197, endtime: 40990197, seqnum: 0, connid: 0 98 13:00:50,0066430 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55243 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40989949, endtime: 40990269, seqnum: 0, connid: 0 98 13:00:50,0066607 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55243 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40989951, endtime: 40990269, seqnum: 0, connid: 0 98 13:00:50,0066688 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55243 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40989953, endtime: 40990269, seqnum: 0, connid: 0 98 13:00:50,0066771 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55243 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40989955, endtime: 40990269, seqnum: 0, connid: 0 98 13:00:50,0066832 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55243 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40989956, endtime: 40990269, seqnum: 0, connid: 0 98 13:00:50,0066904 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55243 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40989958, endtime: 40990269, seqnum: 0, connid: 0 98 13:00:50,0066965 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55243 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40989961, endtime: 40990269, seqnum: 0, connid: 0 98 13:00:50,0067034 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55243 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40989962, endtime: 40990269, seqnum: 0, connid: 0 98 13:00:50,0067092 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55243 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40989964, endtime: 40990269, seqnum: 0, connid: 0 98 13:00:50,0067840 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55243 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40989966, endtime: 40990269, seqnum: 0, connid: 0 98 13:00:50,0067918 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55243 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40989967, endtime: 40990269, seqnum: 0, connid: 0 98 13:00:50,0067990 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55243 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40989969, endtime: 40990269, seqnum: 0, connid: 0 98 13:00:50,0069957 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55243 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40989970, endtime: 40990269, seqnum: 0, connid: 0 98 13:00:50,0957833 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55222 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40990198, endtime: 40990278, seqnum: 0, connid: 0 98 13:00:50,0958041 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55222 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40990201, endtime: 40990278, seqnum: 0, connid: 0 98 13:00:50,0958121 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55222 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40990201, endtime: 40990278, seqnum: 0, connid: 0 98 13:00:50,0958202 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55222 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40990202, endtime: 40990278, seqnum: 0, connid: 0 98 13:00:50,0958263 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55222 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40990202, endtime: 40990278, seqnum: 0, connid: 0 98 13:00:50,0958335 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55222 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40990205, endtime: 40990278, seqnum: 0, connid: 0 98 13:00:50,0958390 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55222 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40990208, endtime: 40990278, seqnum: 0, connid: 0 98 13:00:50,0958462 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55222 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40990209, endtime: 40990278, seqnum: 0, connid: 0 98 13:00:50,0958520 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55222 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40990211, endtime: 40990278, seqnum: 0, connid: 0 98 13:00:50,0958814 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55222 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40990213, endtime: 40990278, seqnum: 0, connid: 0 98 13:00:50,0958878 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55222 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40990214, endtime: 40990278, seqnum: 0, connid: 0 98 13:00:50,0958944 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55222 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40990216, endtime: 40990278, seqnum: 0, connid: 0 98 13:00:50,0959002 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55222 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40990217, endtime: 40990278, seqnum: 0, connid: 0 98 13:00:50,3238506 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55200 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40989994, endtime: 40990301, seqnum: 0, connid: 0 98 13:00:50,3238666 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55200 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40989995, endtime: 40990301, seqnum: 0, connid: 0 98 13:00:50,3238744 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55200 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40989998, endtime: 40990301, seqnum: 0, connid: 0 98 13:00:50,3238819 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55200 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40990000, endtime: 40990301, seqnum: 0, connid: 0 98 13:00:50,3238880 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55200 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40990001, endtime: 40990301, seqnum: 0, connid: 0 98 13:00:50,3238949 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55200 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40990005, endtime: 40990301, seqnum: 0, connid: 0 98 13:00:50,3239010 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55200 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40990006, endtime: 40990301, seqnum: 0, connid: 0 98 13:00:50,3239079 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55200 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40990008, endtime: 40990301, seqnum: 0, connid: 0 98 13:00:50,3239137 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55200 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40990009, endtime: 40990301, seqnum: 0, connid: 0 98 13:00:50,3239434 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55200 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40990013, endtime: 40990301, seqnum: 0, connid: 0 98 13:00:50,3239498 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55200 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40990017, endtime: 40990301, seqnum: 0, connid: 0 98 13:00:50,3239570 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55200 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40990019, endtime: 40990301, seqnum: 0, connid: 0 98 13:00:50,3239628 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55200 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40990020, endtime: 40990301, seqnum: 0, connid: 0 98 13:00:51,1459235 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55243 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40990269, endtime: 40990383, seqnum: 0, connid: 0 98 13:00:51,1459413 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55243 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40990270, endtime: 40990383, seqnum: 0, connid: 0 98 13:00:51,1459490 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55243 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40990272, endtime: 40990383, seqnum: 0, connid: 0 98 13:00:51,1459565 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55243 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40990275, endtime: 40990383, seqnum: 0, connid: 0 98 13:00:51,1459623 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55243 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40990277, endtime: 40990383, seqnum: 0, connid: 0 98 13:00:51,1459698 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55243 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40990278, endtime: 40990383, seqnum: 0, connid: 0 98 13:00:51,1459756 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55243 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40990281, endtime: 40990383, seqnum: 0, connid: 0 98 13:00:51,1459825 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55243 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40990283, endtime: 40990383, seqnum: 0, connid: 0 98 13:00:51,1459884 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55243 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40990284, endtime: 40990383, seqnum: 0, connid: 0 98 13:00:51,1460659 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55243 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40990286, endtime: 40990383, seqnum: 0, connid: 0 98 13:00:51,1460737 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55243 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40990287, endtime: 40990383, seqnum: 0, connid: 0 98 13:00:51,1460806 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55243 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40990292, endtime: 40990383, seqnum: 0, connid: 0 98 13:00:51,1461765 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55243 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40990294, endtime: 40990383, seqnum: 0, connid: 0 98 13:00:52,0162660 MCLauncher.exe 6080 TCP Reconnect WIN-0UOTFKKVN1S:55260 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 0, seqnum: 0, connid: 0 98 13:00:52,0698511 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55200 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40990301, endtime: 40990476, seqnum: 0, connid: 0 98 13:00:52,0698711 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55200 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40990302, endtime: 40990476, seqnum: 0, connid: 0 98 13:00:52,0698786 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55200 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40990303, endtime: 40990476, seqnum: 0, connid: 0 98 13:00:52,0698863 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55200 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40990303, endtime: 40990476, seqnum: 0, connid: 0 98 13:00:52,0698924 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55200 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40990304, endtime: 40990476, seqnum: 0, connid: 0 98 13:00:52,0698993 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55200 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40990304, endtime: 40990476, seqnum: 0, connid: 0 98 13:00:52,0699052 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55200 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40990305, endtime: 40990476, seqnum: 0, connid: 0 98 13:00:52,0699118 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55200 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40990306, endtime: 40990476, seqnum: 0, connid: 0 98 13:00:52,0699176 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55200 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40990308, endtime: 40990476, seqnum: 0, connid: 0 98 13:00:52,0699473 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55200 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40990312, endtime: 40990476, seqnum: 0, connid: 0 98 13:00:52,0699534 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55200 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40990312, endtime: 40990476, seqnum: 0, connid: 0 98 13:00:52,0699603 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55200 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40990314, endtime: 40990476, seqnum: 0, connid: 0 98 13:00:52,0699664 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55200 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40990316, endtime: 40990476, seqnum: 0, connid: 0 98 13:00:52,0807990 MCLauncher.exe 6080 TCP Connect WIN-0UOTFKKVN1S:55260 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 0, mss: 1460, sackopt: 0, tsopt: 0, wsopt: 0, rcvwin: 64240, rcvwinscale: 0, sndwinscale: 0, seqnum: 0, connid: 0 98 13:00:52,0900416 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55260 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40990477, endtime: 40990478, seqnum: 0, connid: 0 98 13:00:52,1117223 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55260 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40990480, endtime: 40990480, seqnum: 0, connid: 0 98 13:00:52,1284876 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55260 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40990481, endtime: 40990481, seqnum: 0, connid: 0 98 13:00:52,1585783 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55260 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40990484, endtime: 40990484, seqnum: 0, connid: 0 98 13:00:52,1905024 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55260 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40990487, endtime: 40990488, seqnum: 0, connid: 0 98 13:00:52,2098431 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55260 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40990489, endtime: 40990490, seqnum: 0, connid: 0 98 13:00:52,2206960 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55260 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40990491, endtime: 40990491, seqnum: 0, connid: 0 98 13:00:52,2384312 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55260 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40990492, endtime: 40990492, seqnum: 0, connid: 0 98 13:00:52,2695227 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55260 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40990495, endtime: 40990496, seqnum: 0, connid: 0 98 13:00:52,2815347 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55260 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40990497, endtime: 40990497, seqnum: 0, connid: 0 98 13:00:52,2997896 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55260 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40990498, endtime: 40990499, seqnum: 0, connid: 0 98 13:00:52,3146701 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55260 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40990500, endtime: 40990500, seqnum: 0, connid: 0 98 13:00:52,3201774 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55260 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40990501, endtime: 40990501, seqnum: 0, connid: 0 98 13:00:52,3312474 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55260 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40990502, endtime: 40990502, seqnum: 0, connid: 0 98 13:00:52,3404944 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55260 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40990503, endtime: 40990503, seqnum: 0, connid: 0 98 13:00:52,3462253 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55260 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40990503, endtime: 40990503, seqnum: 0, connid: 0 98 13:00:52,3522502 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55260 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40990504, endtime: 40990504, seqnum: 0, connid: 0 98 13:00:52,3580324 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55260 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40990504, endtime: 40990504, seqnum: 0, connid: 0 98 13:00:52,3636951 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55260 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40990505, endtime: 40990505, seqnum: 0, connid: 0 98 13:00:52,3698125 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55260 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40990506, endtime: 40990506, seqnum: 0, connid: 0 98 13:00:52,3754805 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55260 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40990506, endtime: 40990506, seqnum: 0, connid: 0 98 13:00:52,3815830 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55260 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40990507, endtime: 40990507, seqnum: 0, connid: 0 98 13:00:52,3871590 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55260 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40990507, endtime: 40990507, seqnum: 0, connid: 0 98 13:00:52,3932459 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55260 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40990508, endtime: 40990508, seqnum: 0, connid: 0 98 13:00:52,3988325 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55260 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40990508, endtime: 40990508, seqnum: 0, connid: 0 98 13:00:52,4047213 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55260 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40990509, endtime: 40990509, seqnum: 0, connid: 0 98 13:00:52,5486799 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55260 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40990510, endtime: 40990523, seqnum: 0, connid: 0 98 13:00:52,5487001 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55260 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40990510, endtime: 40990523, seqnum: 0, connid: 0 98 13:00:52,5487084 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55260 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40990511, endtime: 40990523, seqnum: 0, connid: 0 98 13:00:52,5487165 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55260 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40990511, endtime: 40990523, seqnum: 0, connid: 0 98 13:00:52,5487226 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55260 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40990512, endtime: 40990523, seqnum: 0, connid: 0 98 13:00:52,5487298 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55260 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40990513, endtime: 40990523, seqnum: 0, connid: 0 98 13:00:52,5487356 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55260 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40990513, endtime: 40990523, seqnum: 0, connid: 0 98 13:00:52,5487425 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55260 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40990514, endtime: 40990523, seqnum: 0, connid: 0 98 13:00:52,5487481 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55260 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40990514, endtime: 40990523, seqnum: 0, connid: 0 98 13:00:52,5488107 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55260 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40990515, endtime: 40990523, seqnum: 0, connid: 0 98 13:00:52,5488184 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55260 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40990515, endtime: 40990523, seqnum: 0, connid: 0 98 13:00:52,5488254 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55260 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40990516, endtime: 40990523, seqnum: 0, connid: 0 98 13:00:54,7713942 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55200 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40990476, endtime: 40990746, seqnum: 0, connid: 0 98 13:00:54,7714138 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55200 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40990477, endtime: 40990746, seqnum: 0, connid: 0 98 13:00:54,7714216 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55200 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40990480, endtime: 40990746, seqnum: 0, connid: 0 98 13:00:54,7714296 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55200 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40990481, endtime: 40990746, seqnum: 0, connid: 0 98 13:00:54,7714360 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55200 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40990484, endtime: 40990746, seqnum: 0, connid: 0 98 13:00:54,7714432 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55200 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40990487, endtime: 40990746, seqnum: 0, connid: 0 98 13:00:54,7714490 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55200 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40990489, endtime: 40990746, seqnum: 0, connid: 0 98 13:00:54,7714562 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55200 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40990491, endtime: 40990746, seqnum: 0, connid: 0 98 13:00:54,7714621 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55200 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40990492, endtime: 40990746, seqnum: 0, connid: 0 98 13:00:54,7714895 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55200 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40990495, endtime: 40990746, seqnum: 0, connid: 0 98 13:00:54,7714956 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55200 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40990497, endtime: 40990746, seqnum: 0, connid: 0 98 13:00:54,7715031 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55200 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40990498, endtime: 40990746, seqnum: 0, connid: 0 98 13:00:54,7715089 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55200 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40990500, endtime: 40990746, seqnum: 0, connid: 0 98 13:00:55,4168483 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55199 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40990013, endtime: 40990810, seqnum: 0, connid: 0 98 13:00:55,4168647 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55199 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40990017, endtime: 40990810, seqnum: 0, connid: 0 98 13:00:55,4168716 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55199 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40990019, endtime: 40990810, seqnum: 0, connid: 0 98 13:00:55,4168788 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55199 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40990020, endtime: 40990810, seqnum: 0, connid: 0 98 13:00:55,4168843 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55199 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40990022, endtime: 40990810, seqnum: 0, connid: 0 98 13:00:55,4168907 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55199 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40990023, endtime: 40990810, seqnum: 0, connid: 0 98 13:00:55,4168963 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55199 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40990025, endtime: 40990810, seqnum: 0, connid: 0 98 13:00:55,4169029 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55199 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40990026, endtime: 40990810, seqnum: 0, connid: 0 98 13:00:55,4169082 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55199 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40990028, endtime: 40990810, seqnum: 0, connid: 0 98 13:00:55,4169384 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55199 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40990030, endtime: 40990810, seqnum: 0, connid: 0 98 13:00:55,4169439 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55199 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40990031, endtime: 40990810, seqnum: 0, connid: 0 98 13:00:55,4169658 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55199 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40990034, endtime: 40990810, seqnum: 0, connid: 0 98 13:00:55,4169766 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55199 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40990036, endtime: 40990810, seqnum: 0, connid: 0 98 13:00:55,5356231 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55199 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40990810, endtime: 40990822, seqnum: 0, connid: 0 98 13:00:55,5356436 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55199 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40990812, endtime: 40990822, seqnum: 0, connid: 0 98 13:00:55,5356522 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55199 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40990814, endtime: 40990822, seqnum: 0, connid: 0 98 13:00:55,5356602 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55199 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40990816, endtime: 40990822, seqnum: 0, connid: 0 98 13:00:55,5356666 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55199 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40990819, endtime: 40990822, seqnum: 0, connid: 0 98 13:00:55,5356738 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55199 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40990820, endtime: 40990822, seqnum: 0, connid: 0 98 13:00:55,5356799 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55199 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40990822, endtime: 40990822, seqnum: 0, connid: 0 98 13:00:55,5658588 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55199 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40990825, endtime: 40990825, seqnum: 0, connid: 0 98 13:00:55,5725089 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55199 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40990826, endtime: 40990826, seqnum: 0, connid: 0 98 13:00:55,5782673 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55199 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40990826, endtime: 40990826, seqnum: 0, connid: 0 98 13:00:55,5960609 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55199 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40990828, endtime: 40990828, seqnum: 0, connid: 0 98 13:00:55,6097672 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55199 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40990830, endtime: 40990830, seqnum: 0, connid: 0 98 13:00:55,6269712 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55199 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40990831, endtime: 40990831, seqnum: 0, connid: 0 98 13:00:55,6464643 MCLauncher.exe 6080 TCP TCPCopy WIN-0UOTFKKVN1S:54920 -> sheltex.company:8000 SUCCESS Length: 2, seqnum: 0, connid: 0 98 13:00:55,6464746 MCLauncher.exe 6080 TCP Receive WIN-0UOTFKKVN1S:54920 -> sheltex.company:8000 SUCCESS Length: 2, seqnum: 0, connid: 0 98 13:00:55,6468553 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54920 -> sheltex.company:8000 SUCCESS Length: 2, startime: 40990833, endtime: 40990833, seqnum: 0, connid: 0 98 13:00:55,7778767 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55250 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40990000, endtime: 40990846, seqnum: 0, connid: 0 98 13:00:55,7778931 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55250 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40990001, endtime: 40990846, seqnum: 0, connid: 0 98 13:00:55,7779019 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55250 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40990005, endtime: 40990846, seqnum: 0, connid: 0 98 13:00:55,7779089 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55250 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40990006, endtime: 40990846, seqnum: 0, connid: 0 98 13:00:55,7789157 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55250 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40990008, endtime: 40990846, seqnum: 0, connid: 0 98 13:00:55,7789237 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55250 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40990009, endtime: 40990846, seqnum: 0, connid: 0 98 13:00:55,7789315 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55250 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40990013, endtime: 40990846, seqnum: 0, connid: 0 98 13:00:55,7789379 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55250 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40990017, endtime: 40990846, seqnum: 0, connid: 0 98 13:00:55,7789453 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55250 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40990019, endtime: 40990846, seqnum: 0, connid: 0 98 13:00:55,7789769 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55250 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40990020, endtime: 40990847, seqnum: 0, connid: 0 98 13:00:55,7789844 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55250 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40990022, endtime: 40990847, seqnum: 0, connid: 0 98 13:00:55,7789902 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55250 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40990023, endtime: 40990847, seqnum: 0, connid: 0 98 13:00:55,7789974 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55250 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40990025, endtime: 40990847, seqnum: 0, connid: 0 98 13:00:55,9974436 MCLauncher.exe 6080 TCP Disconnect WIN-0UOTFKKVN1S:55200 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 0, seqnum: 0, connid: 0 98 13:00:56,0127255 MCLauncher.exe 6080 TCP Disconnect WIN-0UOTFKKVN1S:55199 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 0, seqnum: 0, connid: 0 98 13:00:56,0165046 MCLauncher.exe 6080 TCP Disconnect WIN-0UOTFKKVN1S:55250 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 0, seqnum: 0, connid: 0 98 13:00:57,6420583 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55243 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40990383, endtime: 40991033, seqnum: 0, connid: 0 98 13:00:57,6420741 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55243 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40990384, endtime: 40991033, seqnum: 0, connid: 0 98 13:00:57,6420827 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55243 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40990388, endtime: 40991033, seqnum: 0, connid: 0 98 13:00:57,6420891 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55243 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40990389, endtime: 40991033, seqnum: 0, connid: 0 98 13:00:57,6420960 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55243 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40990392, endtime: 40991033, seqnum: 0, connid: 0 98 13:00:57,6421015 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55243 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40990394, endtime: 40991033, seqnum: 0, connid: 0 98 13:00:57,6421184 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55243 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40990395, endtime: 40991033, seqnum: 0, connid: 0 98 13:00:57,6421254 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55243 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40990397, endtime: 40991033, seqnum: 0, connid: 0 98 13:00:57,6421328 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55243 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40990399, endtime: 40991033, seqnum: 0, connid: 0 98 13:00:57,6421971 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55243 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40990401, endtime: 40991033, seqnum: 0, connid: 0 98 13:00:57,6422052 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55243 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40990402, endtime: 40991033, seqnum: 0, connid: 0 98 13:00:57,6422110 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55243 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40990405, endtime: 40991033, seqnum: 0, connid: 0 98 13:00:57,7820666 MCLauncher.exe 6080 TCP Reconnect WIN-0UOTFKKVN1S:55263 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 0, seqnum: 0, connid: 0 98 13:00:57,8123142 MCLauncher.exe 6080 TCP Reconnect WIN-0UOTFKKVN1S:55265 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 0, seqnum: 0, connid: 0 98 13:00:57,8123245 MCLauncher.exe 6080 TCP Reconnect WIN-0UOTFKKVN1S:55264 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 0, seqnum: 0, connid: 0 98 13:00:59,5584614 MCLauncher.exe 6080 TCP Reconnect WIN-0UOTFKKVN1S:55263 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 0, seqnum: 0, connid: 0 98 13:00:59,6875795 MCLauncher.exe 6080 TCP Reconnect WIN-0UOTFKKVN1S:55264 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 0, seqnum: 0, connid: 0 98 13:00:59,6875875 MCLauncher.exe 6080 TCP Reconnect WIN-0UOTFKKVN1S:55265 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 0, seqnum: 0, connid: 0 98 13:01:01,2543960 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55243 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40990406, endtime: 40991394, seqnum: 0, connid: 0 98 13:01:01,2544131 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55243 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40991033, endtime: 40991394, seqnum: 0, connid: 0 98 13:01:01,2544214 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55243 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40991037, endtime: 40991394, seqnum: 0, connid: 0 98 13:01:01,2544278 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55243 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40991039, endtime: 40991394, seqnum: 0, connid: 0 98 13:01:01,2544353 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55243 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40991042, endtime: 40991394, seqnum: 0, connid: 0 98 13:01:01,2544411 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55243 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40991044, endtime: 40991394, seqnum: 0, connid: 0 98 13:01:01,2544478 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55243 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40991047, endtime: 40991394, seqnum: 0, connid: 0 98 13:01:01,2544533 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55243 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40991050, endtime: 40991394, seqnum: 0, connid: 0 98 13:01:01,2544600 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55243 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40991052, endtime: 40991394, seqnum: 0, connid: 0 98 13:01:01,2544655 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55243 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40991052, endtime: 40991394, seqnum: 0, connid: 0 98 13:01:01,2544965 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55243 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40991053, endtime: 40991394, seqnum: 0, connid: 0 98 13:01:01,2545126 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55243 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40991053, endtime: 40991394, seqnum: 0, connid: 0 98 13:01:01,2545209 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55243 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40991054, endtime: 40991394, seqnum: 0, connid: 0 98 13:01:01,2551110 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55243 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40991394, endtime: 40991394, seqnum: 0, connid: 0 98 13:01:02,6474936 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55243 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40991395, endtime: 40991533, seqnum: 0, connid: 0 98 13:01:02,6475122 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55243 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40991398, endtime: 40991533, seqnum: 0, connid: 0 98 13:01:02,6475196 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55243 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40991401, endtime: 40991533, seqnum: 0, connid: 0 98 13:01:02,6475274 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55243 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40991402, endtime: 40991533, seqnum: 0, connid: 0 98 13:01:02,6475332 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55243 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40991405, endtime: 40991533, seqnum: 0, connid: 0 98 13:01:02,6475399 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55243 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40991408, endtime: 40991533, seqnum: 0, connid: 0 98 13:01:02,6475454 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55243 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40991410, endtime: 40991533, seqnum: 0, connid: 0 98 13:01:02,6475521 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55243 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40991412, endtime: 40991533, seqnum: 0, connid: 0 98 13:01:02,6475573 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55243 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40991414, endtime: 40991533, seqnum: 0, connid: 0 98 13:01:02,6476360 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55243 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40991416, endtime: 40991533, seqnum: 0, connid: 0 98 13:01:02,6476432 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55243 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40991417, endtime: 40991533, seqnum: 0, connid: 0 98 13:01:02,6476499 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55243 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40991420, endtime: 40991533, seqnum: 0, connid: 0 98 13:01:02,6477266 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55243 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40991425, endtime: 40991533, seqnum: 0, connid: 0 98 13:01:02,7340539 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55260 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40990517, endtime: 40991542, seqnum: 0, connid: 0 98 13:01:02,7340756 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55260 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40990523, endtime: 40991542, seqnum: 0, connid: 0 98 13:01:02,7340841 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55260 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40990524, endtime: 40991542, seqnum: 0, connid: 0 98 13:01:02,7340922 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55260 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40990525, endtime: 40991542, seqnum: 0, connid: 0 98 13:01:02,7340986 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55260 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40990526, endtime: 40991542, seqnum: 0, connid: 0 98 13:01:02,7341058 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55260 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40990527, endtime: 40991542, seqnum: 0, connid: 0 98 13:01:02,7341116 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55260 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40990528, endtime: 40991542, seqnum: 0, connid: 0 98 13:01:02,7341188 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55260 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40990528, endtime: 40991542, seqnum: 0, connid: 0 98 13:01:02,7341246 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55260 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40990531, endtime: 40991542, seqnum: 0, connid: 0 98 13:01:02,7341512 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55260 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40990533, endtime: 40991542, seqnum: 0, connid: 0 98 13:01:02,7341576 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55260 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40990534, endtime: 40991542, seqnum: 0, connid: 0 98 13:01:02,7341645 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55260 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40990537, endtime: 40991542, seqnum: 0, connid: 0 98 13:01:02,7341706 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55260 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40990539, endtime: 40991542, seqnum: 0, connid: 0 98 13:01:02,8050446 MCLauncher.exe 6080 TCP Connect WIN-0UOTFKKVN1S:55272 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 0, mss: 1460, sackopt: 0, tsopt: 0, wsopt: 0, rcvwin: 64240, rcvwinscale: 0, sndwinscale: 0, seqnum: 0, connid: 0 98 13:01:02,8054527 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55272 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40991549, endtime: 40991549, seqnum: 0, connid: 0 98 13:01:02,8280954 MCLauncher.exe 6080 TCP Reconnect WIN-0UOTFKKVN1S:55268 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 0, seqnum: 0, connid: 0 98 13:01:02,8288747 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55272 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40991551, endtime: 40991551, seqnum: 0, connid: 0 98 13:01:02,8440477 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55272 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40991553, endtime: 40991553, seqnum: 0, connid: 0 98 13:01:02,8599230 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55272 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40991555, endtime: 40991555, seqnum: 0, connid: 0 98 13:01:02,8764566 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55272 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40991556, endtime: 40991556, seqnum: 0, connid: 0 98 13:01:02,9094509 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55272 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40991560, endtime: 40991560, seqnum: 0, connid: 0 98 13:01:02,9235464 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55272 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40991561, endtime: 40991561, seqnum: 0, connid: 0 98 13:01:02,9547931 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55272 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40991564, endtime: 40991564, seqnum: 0, connid: 0 98 13:01:02,9873336 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55272 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40991567, endtime: 40991567, seqnum: 0, connid: 0 98 13:01:03,0096006 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55272 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40991570, endtime: 40991570, seqnum: 0, connid: 0 98 13:01:03,0320851 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55272 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40991572, endtime: 40991572, seqnum: 0, connid: 0 98 13:01:03,0485694 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55272 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40991573, endtime: 40991573, seqnum: 0, connid: 0 98 13:01:03,0779168 MCLauncher.exe 6080 TCP Reconnect WIN-0UOTFKKVN1S:55270 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 0, seqnum: 0, connid: 0 98 13:01:03,0797348 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55272 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40991576, endtime: 40991577, seqnum: 0, connid: 0 98 13:01:03,0998499 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55272 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40991578, endtime: 40991579, seqnum: 0, connid: 0 98 13:01:03,1257272 MCLauncher.exe 6080 TCP Reconnect WIN-0UOTFKKVN1S:55269 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 0, seqnum: 0, connid: 0 98 13:01:03,1263883 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55272 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40991581, endtime: 40991581, seqnum: 0, connid: 0 98 13:01:03,1594890 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55272 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40991584, endtime: 40991585, seqnum: 0, connid: 0 98 13:01:03,1746670 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55272 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40991586, endtime: 40991586, seqnum: 0, connid: 0 98 13:01:03,2053493 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55272 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40991589, endtime: 40991589, seqnum: 0, connid: 0 98 13:01:03,2206982 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55272 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40991591, endtime: 40991591, seqnum: 0, connid: 0 98 13:01:03,2766945 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55272 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40991596, endtime: 40991596, seqnum: 0, connid: 0 98 13:01:03,2831779 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55272 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40991597, endtime: 40991597, seqnum: 0, connid: 0 98 13:01:03,3038712 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55272 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40991599, endtime: 40991599, seqnum: 0, connid: 0 98 13:01:03,3296181 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55272 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40991601, endtime: 40991602, seqnum: 0, connid: 0 98 13:01:03,3348877 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55272 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40991602, endtime: 40991602, seqnum: 0, connid: 0 98 13:01:03,3589821 MCLauncher.exe 6080 TCP Reconnect WIN-0UOTFKKVN1S:55267 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 0, seqnum: 0, connid: 0 98 13:01:03,3602934 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55272 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40991605, endtime: 40991605, seqnum: 0, connid: 0 98 13:01:03,3757160 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55272 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40991606, endtime: 40991606, seqnum: 0, connid: 0 98 13:01:03,3957743 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55272 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40991608, endtime: 40991608, seqnum: 0, connid: 0 98 13:01:03,4238914 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55272 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40991611, endtime: 40991611, seqnum: 0, connid: 0 98 13:01:03,4403158 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55272 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40991612, endtime: 40991613, seqnum: 0, connid: 0 98 13:01:03,4709524 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55272 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40991615, endtime: 40991616, seqnum: 0, connid: 0 98 13:01:03,4884690 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55272 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40991617, endtime: 40991617, seqnum: 0, connid: 0 98 13:01:03,5027482 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55272 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40991619, endtime: 40991619, seqnum: 0, connid: 0 98 13:01:03,5155099 MCLauncher.exe 6080 TCP Connect WIN-0UOTFKKVN1S:55267 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 0, mss: 1460, sackopt: 0, tsopt: 0, wsopt: 0, rcvwin: 64240, rcvwinscale: 0, sndwinscale: 0, seqnum: 0, connid: 0 98 13:01:03,5158235 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55267 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40991620, endtime: 40991620, seqnum: 0, connid: 0 98 13:01:03,5163253 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55272 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40991620, endtime: 40991620, seqnum: 0, connid: 0 98 13:01:03,5320673 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55267 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40991622, endtime: 40991622, seqnum: 0, connid: 0 98 13:01:03,5474104 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55267 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40991623, endtime: 40991623, seqnum: 0, connid: 0 98 13:01:03,5631993 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55267 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40991625, endtime: 40991625, seqnum: 0, connid: 0 98 13:01:03,5791270 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55267 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40991626, endtime: 40991627, seqnum: 0, connid: 0 98 13:01:03,5947468 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55267 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40991628, endtime: 40991628, seqnum: 0, connid: 0 98 13:01:03,6101861 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55267 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40991630, endtime: 40991630, seqnum: 0, connid: 0 98 13:01:03,6259550 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55267 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40991631, endtime: 40991631, seqnum: 0, connid: 0 98 13:01:03,6413959 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55267 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40991633, endtime: 40991633, seqnum: 0, connid: 0 98 13:01:03,6571396 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55267 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40991634, endtime: 40991634, seqnum: 0, connid: 0 98 13:01:03,6877097 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55267 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40991637, endtime: 40991637, seqnum: 0, connid: 0 98 13:01:03,7127744 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55267 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40991639, endtime: 40991640, seqnum: 0, connid: 0 98 13:01:03,7194988 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55267 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40991641, endtime: 40991641, seqnum: 0, connid: 0 98 13:01:03,7361831 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55267 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40991642, endtime: 40991642, seqnum: 0, connid: 0 98 13:01:03,7529555 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55267 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40991644, endtime: 40991644, seqnum: 0, connid: 0 98 13:01:03,7663191 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55267 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40991645, endtime: 40991645, seqnum: 0, connid: 0 98 13:01:03,7840041 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55267 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40991647, endtime: 40991647, seqnum: 0, connid: 0 98 13:01:03,7976112 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55267 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40991648, endtime: 40991648, seqnum: 0, connid: 0 98 13:01:03,8138807 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55267 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40991650, endtime: 40991650, seqnum: 0, connid: 0 98 13:01:03,8288825 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55267 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40991651, endtime: 40991651, seqnum: 0, connid: 0 98 13:01:03,8447323 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55267 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40991653, endtime: 40991653, seqnum: 0, connid: 0 98 13:01:03,8602430 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55267 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40991655, endtime: 40991655, seqnum: 0, connid: 0 98 13:01:03,8758942 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55267 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40991656, endtime: 40991656, seqnum: 0, connid: 0 98 13:01:03,9067078 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55267 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40991659, endtime: 40991659, seqnum: 0, connid: 0 98 13:01:03,9234065 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55267 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40991661, endtime: 40991661, seqnum: 0, connid: 0 98 13:01:03,9382157 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55267 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40991662, endtime: 40991662, seqnum: 0, connid: 0 98 13:01:04,4686326 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55267 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40991664, endtime: 40991715, seqnum: 0, connid: 0 98 13:01:04,4686509 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55267 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40991666, endtime: 40991715, seqnum: 0, connid: 0 98 13:01:04,4686584 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55267 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40991669, endtime: 40991715, seqnum: 0, connid: 0 98 13:01:04,4686658 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55267 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40991670, endtime: 40991715, seqnum: 0, connid: 0 98 13:01:04,4686717 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55267 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40991672, endtime: 40991715, seqnum: 0, connid: 0 98 13:01:04,4686783 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55267 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40991674, endtime: 40991715, seqnum: 0, connid: 0 98 13:01:04,4686838 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55267 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40991675, endtime: 40991715, seqnum: 0, connid: 0 98 13:01:04,4686902 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55267 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40991678, endtime: 40991715, seqnum: 0, connid: 0 98 13:01:04,4686958 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55267 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40991680, endtime: 40991715, seqnum: 0, connid: 0 98 13:01:04,4687251 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55267 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40991683, endtime: 40991715, seqnum: 0, connid: 0 98 13:01:04,4687309 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55267 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40991684, endtime: 40991715, seqnum: 0, connid: 0 98 13:01:04,4687373 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55267 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40991686, endtime: 40991715, seqnum: 0, connid: 0 98 13:01:04,4687429 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55267 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40991688, endtime: 40991715, seqnum: 0, connid: 0 98 13:01:04,7029176 MCLauncher.exe 6080 TCP Reconnect WIN-0UOTFKKVN1S:55268 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 0, seqnum: 0, connid: 0 98 13:01:04,8434767 MCLauncher.exe 6080 TCP Reconnect WIN-0UOTFKKVN1S:55270 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 0, seqnum: 0, connid: 0 98 13:01:04,9225197 MCLauncher.exe 6080 TCP Reconnect WIN-0UOTFKKVN1S:55269 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 0, seqnum: 0, connid: 0 98 13:01:05,8354631 MCLauncher.exe 6080 TCP TCPCopy WIN-0UOTFKKVN1S:54920 -> sheltex.company:8000 SUCCESS Length: 2, seqnum: 0, connid: 0 98 13:01:05,8354745 MCLauncher.exe 6080 TCP Receive WIN-0UOTFKKVN1S:54920 -> sheltex.company:8000 SUCCESS Length: 2, seqnum: 0, connid: 0 98 13:01:05,8358468 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54920 -> sheltex.company:8000 SUCCESS Length: 2, startime: 40991852, endtime: 40991852, seqnum: 0, connid: 0 98 13:01:06,4731619 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55272 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40991622, endtime: 40991916, seqnum: 0, connid: 0 98 13:01:06,4731791 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55272 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40991623, endtime: 40991916, seqnum: 0, connid: 0 98 13:01:06,4731871 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55272 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40991625, endtime: 40991916, seqnum: 0, connid: 0 98 13:01:06,4731946 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55272 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40991627, endtime: 40991916, seqnum: 0, connid: 0 98 13:01:06,4732010 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55272 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40991628, endtime: 40991916, seqnum: 0, connid: 0 98 13:01:06,4732084 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55272 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40991630, endtime: 40991916, seqnum: 0, connid: 0 98 13:01:06,4732301 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55243 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40991533, endtime: 40991916, seqnum: 0, connid: 0 98 13:01:06,4732373 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55243 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40991534, endtime: 40991916, seqnum: 0, connid: 0 98 13:01:06,4732434 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55243 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40991536, endtime: 40991916, seqnum: 0, connid: 0 98 13:01:06,4733132 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55243 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40991539, endtime: 40991916, seqnum: 0, connid: 0 98 13:01:06,4733209 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55243 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40991541, endtime: 40991916, seqnum: 0, connid: 0 98 13:01:06,4733279 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55243 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40991544, endtime: 40991916, seqnum: 0, connid: 0 98 13:01:06,4733337 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55243 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40991547, endtime: 40991916, seqnum: 0, connid: 0 98 13:01:06,4733409 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55243 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40991548, endtime: 40991916, seqnum: 0, connid: 0 98 13:01:06,4733470 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55243 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40991551, endtime: 40991916, seqnum: 0, connid: 0 98 13:01:06,4733542 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55243 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40991553, endtime: 40991916, seqnum: 0, connid: 0 98 13:01:06,4733603 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55243 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40991555, endtime: 40991916, seqnum: 0, connid: 0 98 13:01:06,4733675 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55243 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40991556, endtime: 40991916, seqnum: 0, connid: 0 98 13:01:06,4734500 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55243 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40991560, endtime: 40991916, seqnum: 0, connid: 0 98 13:01:07,8596274 MCLauncher.exe 6080 TCP Reconnect WIN-0UOTFKKVN1S:55275 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 0, seqnum: 0, connid: 0 98 13:01:07,9689739 MCLauncher.exe 6080 TCP Reconnect WIN-0UOTFKKVN1S:55276 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 0, seqnum: 0, connid: 0 98 13:01:08,1572643 MCLauncher.exe 6080 TCP Reconnect WIN-0UOTFKKVN1S:55277 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 0, seqnum: 0, connid: 0 98 13:01:09,4378791 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55243 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40991916, endtime: 40992212, seqnum: 0, connid: 0 98 13:01:09,4378963 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55243 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40991917, endtime: 40992212, seqnum: 0, connid: 0 98 13:01:09,4379035 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55243 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40991919, endtime: 40992212, seqnum: 0, connid: 0 98 13:01:09,4379110 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55243 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40991920, endtime: 40992212, seqnum: 0, connid: 0 98 13:01:09,4379168 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55243 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40991922, endtime: 40992212, seqnum: 0, connid: 0 98 13:01:09,4379231 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55243 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40991923, endtime: 40992212, seqnum: 0, connid: 0 98 13:01:09,4379287 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55243 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40991925, endtime: 40992212, seqnum: 0, connid: 0 98 13:01:09,4379353 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55243 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40991926, endtime: 40992212, seqnum: 0, connid: 0 98 13:01:09,4379406 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55243 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40991928, endtime: 40992212, seqnum: 0, connid: 0 98 13:01:09,4379719 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55243 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40991930, endtime: 40992212, seqnum: 0, connid: 0 98 13:01:09,4379777 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55243 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40991931, endtime: 40992212, seqnum: 0, connid: 0 98 13:01:09,4379844 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55243 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40991933, endtime: 40992212, seqnum: 0, connid: 0 98 13:01:09,4379899 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55243 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40991934, endtime: 40992212, seqnum: 0, connid: 0 98 13:01:09,6877435 MCLauncher.exe 6080 TCP Reconnect WIN-0UOTFKKVN1S:55275 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 0, seqnum: 0, connid: 0 98 13:01:09,7502415 MCLauncher.exe 6080 TCP Reconnect WIN-0UOTFKKVN1S:55276 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 0, seqnum: 0, connid: 0 98 13:01:09,8056893 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55272 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40991631, endtime: 40992249, seqnum: 0, connid: 0 98 13:01:09,8057109 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55272 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40991633, endtime: 40992249, seqnum: 0, connid: 0 98 13:01:09,8057189 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55272 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40991634, endtime: 40992249, seqnum: 0, connid: 0 98 13:01:09,8057272 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55272 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40991637, endtime: 40992249, seqnum: 0, connid: 0 98 13:01:09,8057452 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55272 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40991639, endtime: 40992249, seqnum: 0, connid: 0 98 13:01:09,8057605 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55272 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40991641, endtime: 40992249, seqnum: 0, connid: 0 98 13:01:09,8057707 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55272 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40991642, endtime: 40992249, seqnum: 0, connid: 0 98 13:01:09,8057821 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55272 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40991916, endtime: 40992249, seqnum: 0, connid: 0 98 13:01:09,8057890 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55272 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40991917, endtime: 40992249, seqnum: 0, connid: 0 98 13:01:09,8058253 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55272 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40991919, endtime: 40992249, seqnum: 0, connid: 0 98 13:01:09,8058320 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55272 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40991920, endtime: 40992249, seqnum: 0, connid: 0 98 13:01:09,8058392 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55272 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40991922, endtime: 40992249, seqnum: 0, connid: 0 98 13:01:09,8058450 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55272 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40991923, endtime: 40992249, seqnum: 0, connid: 0 98 13:01:09,9844996 MCLauncher.exe 6080 TCP Reconnect WIN-0UOTFKKVN1S:55277 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 0, seqnum: 0, connid: 0 98 13:01:10,4796132 MCLauncher.exe 6080 TCP Connect WIN-0UOTFKKVN1S:55276 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 0, mss: 1460, sackopt: 0, tsopt: 0, wsopt: 0, rcvwin: 64240, rcvwinscale: 0, sndwinscale: 0, seqnum: 0, connid: 0 98 13:01:10,4803615 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55276 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40992317, endtime: 40992317, seqnum: 0, connid: 0 98 13:01:10,5015419 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55276 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40992319, endtime: 40992319, seqnum: 0, connid: 0 98 13:01:10,5176250 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55276 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40992320, endtime: 40992320, seqnum: 0, connid: 0 98 13:01:10,5582599 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55276 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40992323, endtime: 40992324, seqnum: 0, connid: 0 98 13:01:10,5833898 MCLauncher.exe 6080 TCP Disconnect WIN-0UOTFKKVN1S:55276 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 0, seqnum: 0, connid: 0 98 13:01:10,7391947 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55272 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40992249, endtime: 40992343, seqnum: 0, connid: 0 98 13:01:10,7392122 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55272 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40992252, endtime: 40992343, seqnum: 0, connid: 0 98 13:01:10,7392194 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55272 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40992256, endtime: 40992343, seqnum: 0, connid: 0 98 13:01:10,7392269 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55272 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40992258, endtime: 40992343, seqnum: 0, connid: 0 98 13:01:10,7392327 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55272 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40992261, endtime: 40992343, seqnum: 0, connid: 0 98 13:01:10,7392393 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55272 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40992262, endtime: 40992343, seqnum: 0, connid: 0 98 13:01:10,7392449 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55272 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40992264, endtime: 40992343, seqnum: 0, connid: 0 98 13:01:10,7392515 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55272 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40992267, endtime: 40992343, seqnum: 0, connid: 0 98 13:01:10,7392568 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55272 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40992269, endtime: 40992343, seqnum: 0, connid: 0 98 13:01:10,7393180 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55272 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40992270, endtime: 40992343, seqnum: 0, connid: 0 98 13:01:10,7393249 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55272 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40992272, endtime: 40992343, seqnum: 0, connid: 0 98 13:01:10,7393316 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55272 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40992274, endtime: 40992343, seqnum: 0, connid: 0 98 13:01:10,8691631 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55243 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40992212, endtime: 40992356, seqnum: 0, connid: 0 98 13:01:10,8691830 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55243 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40992214, endtime: 40992356, seqnum: 0, connid: 0 98 13:01:10,8691911 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55243 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40992216, endtime: 40992356, seqnum: 0, connid: 0 98 13:01:10,8691991 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55243 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40992217, endtime: 40992356, seqnum: 0, connid: 0 98 13:01:10,8692052 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55243 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40992219, endtime: 40992356, seqnum: 0, connid: 0 98 13:01:10,8692127 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55243 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40992220, endtime: 40992356, seqnum: 0, connid: 0 98 13:01:10,8692188 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55243 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40992222, endtime: 40992356, seqnum: 0, connid: 0 98 13:01:10,8692260 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55243 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40992223, endtime: 40992356, seqnum: 0, connid: 0 98 13:01:10,8692318 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55243 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40992225, endtime: 40992356, seqnum: 0, connid: 0 98 13:01:10,8692634 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55243 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40992226, endtime: 40992356, seqnum: 0, connid: 0 98 13:01:10,8692692 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55243 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40992228, endtime: 40992356, seqnum: 0, connid: 0 98 13:01:10,8692759 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55243 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40992230, endtime: 40992356, seqnum: 0, connid: 0 98 13:01:10,8692814 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55243 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40992231, endtime: 40992356, seqnum: 0, connid: 0 98 13:01:11,1658970 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55222 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40990278, endtime: 40992385, seqnum: 0, connid: 0 98 13:01:11,1659187 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55222 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40990281, endtime: 40992385, seqnum: 0, connid: 0 98 13:01:11,1659267 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55222 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40990283, endtime: 40992385, seqnum: 0, connid: 0 98 13:01:11,1659345 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55222 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40990284, endtime: 40992385, seqnum: 0, connid: 0 98 13:01:11,1659403 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55222 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40990286, endtime: 40992385, seqnum: 0, connid: 0 98 13:01:11,1659472 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55222 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40990287, endtime: 40992385, seqnum: 0, connid: 0 98 13:01:11,1659527 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55222 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40990289, endtime: 40992385, seqnum: 0, connid: 0 98 13:01:11,1659597 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55222 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40990292, endtime: 40992385, seqnum: 0, connid: 0 98 13:01:11,1659652 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55222 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40990294, endtime: 40992385, seqnum: 0, connid: 0 98 13:01:11,1659932 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55222 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40990295, endtime: 40992385, seqnum: 0, connid: 0 98 13:01:11,1659996 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55222 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40990297, endtime: 40992385, seqnum: 0, connid: 0 98 13:01:11,1660062 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55222 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40990299, endtime: 40992385, seqnum: 0, connid: 0 98 13:01:11,1660118 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55222 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40990300, endtime: 40992385, seqnum: 0, connid: 0 98 13:01:12,2026305 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55243 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40992356, endtime: 40992489, seqnum: 0, connid: 0 98 13:01:12,2026474 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55243 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40992356, endtime: 40992489, seqnum: 0, connid: 0 98 13:01:12,2026549 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55243 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40992358, endtime: 40992489, seqnum: 0, connid: 0 98 13:01:12,2026627 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55243 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40992361, endtime: 40992489, seqnum: 0, connid: 0 98 13:01:12,2026685 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55243 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40992362, endtime: 40992489, seqnum: 0, connid: 0 98 13:01:12,2026754 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55243 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40992364, endtime: 40992489, seqnum: 0, connid: 0 98 13:01:12,2026809 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55243 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40992367, endtime: 40992489, seqnum: 0, connid: 0 98 13:01:12,2026879 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55243 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40992369, endtime: 40992489, seqnum: 0, connid: 0 98 13:01:12,2026937 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55243 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40992370, endtime: 40992489, seqnum: 0, connid: 0 98 13:01:12,2027250 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55243 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40992373, endtime: 40992489, seqnum: 0, connid: 0 98 13:01:12,2047650 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55243 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40992377, endtime: 40992489, seqnum: 0, connid: 0 98 13:01:12,2047785 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55243 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40992380, endtime: 40992489, seqnum: 0, connid: 0 98 13:01:12,2047857 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55243 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40992381, endtime: 40992489, seqnum: 0, connid: 0 98 13:01:13,5937605 MCLauncher.exe 6080 TCP Reconnect WIN-0UOTFKKVN1S:55281 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 0, seqnum: 0, connid: 0 98 13:01:13,9547582 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55267 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40991716, endtime: 40992664, seqnum: 0, connid: 0 98 13:01:13,9547748 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55267 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40991717, endtime: 40992664, seqnum: 0, connid: 0 98 13:01:13,9547834 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55267 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40991719, endtime: 40992664, seqnum: 0, connid: 0 98 13:01:13,9547898 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55267 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40991722, endtime: 40992664, seqnum: 0, connid: 0 98 13:01:13,9547964 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55267 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40991723, endtime: 40992664, seqnum: 0, connid: 0 98 13:01:13,9548017 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55267 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40991727, endtime: 40992664, seqnum: 0, connid: 0 98 13:01:13,9548083 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55267 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40991729, endtime: 40992664, seqnum: 0, connid: 0 98 13:01:13,9548136 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55267 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40991730, endtime: 40992664, seqnum: 0, connid: 0 98 13:01:13,9548202 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55267 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40991731, endtime: 40992664, seqnum: 0, connid: 0 98 13:01:13,9549094 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55267 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40991733, endtime: 40992664, seqnum: 0, connid: 0 98 13:01:13,9549175 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55267 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40991734, endtime: 40992664, seqnum: 0, connid: 0 98 13:01:13,9549227 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55267 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40991737, endtime: 40992664, seqnum: 0, connid: 0 98 13:01:13,9550039 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55267 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40991737, endtime: 40992664, seqnum: 0, connid: 0 98 13:01:14,0944557 MCLauncher.exe 6080 TCP Reconnect WIN-0UOTFKKVN1S:55282 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 0, seqnum: 0, connid: 0 98 13:01:14,3433913 MCLauncher.exe 6080 TCP Reconnect WIN-0UOTFKKVN1S:55283 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 0, seqnum: 0, connid: 0 98 13:01:14,5324009 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55243 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40992489, endtime: 40992722, seqnum: 0, connid: 0 98 13:01:14,5324217 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55243 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40992492, endtime: 40992722, seqnum: 0, connid: 0 98 13:01:14,5324300 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55243 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40992496, endtime: 40992722, seqnum: 0, connid: 0 98 13:01:14,5324383 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55243 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40992497, endtime: 40992722, seqnum: 0, connid: 0 98 13:01:14,5324444 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55243 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40992498, endtime: 40992722, seqnum: 0, connid: 0 98 13:01:14,5324516 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55243 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40992502, endtime: 40992722, seqnum: 0, connid: 0 98 13:01:14,5324574 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55243 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40992505, endtime: 40992722, seqnum: 0, connid: 0 98 13:01:14,5324646 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55243 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40992506, endtime: 40992722, seqnum: 0, connid: 0 98 13:01:14,5324707 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55243 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40992510, endtime: 40992722, seqnum: 0, connid: 0 98 13:01:14,5325015 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55243 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40992513, endtime: 40992722, seqnum: 0, connid: 0 98 13:01:14,5325076 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55243 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40992514, endtime: 40992722, seqnum: 0, connid: 0 98 13:01:14,5325148 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55243 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40992517, endtime: 40992722, seqnum: 0, connid: 0 98 13:01:14,5325206 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55243 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40992519, endtime: 40992722, seqnum: 0, connid: 0 98 13:01:14,5658654 MCLauncher.exe 6080 TCP Disconnect WIN-0UOTFKKVN1S:55222 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 0, seqnum: 0, connid: 0 98 13:01:16,0949452 MCLauncher.exe 6080 TCP TCPCopy WIN-0UOTFKKVN1S:54920 -> sheltex.company:8000 SUCCESS Length: 2, seqnum: 0, connid: 0 98 13:01:16,0949555 MCLauncher.exe 6080 TCP Receive WIN-0UOTFKKVN1S:54920 -> sheltex.company:8000 SUCCESS Length: 2, seqnum: 0, connid: 0 98 13:01:16,0959332 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54920 -> sheltex.company:8000 SUCCESS Length: 2, startime: 40992878, endtime: 40992878, seqnum: 0, connid: 0 98 13:01:19,5938722 MCLauncher.exe 6080 TCP Reconnect WIN-0UOTFKKVN1S:55281 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 0, seqnum: 0, connid: 0 98 13:01:20,1096799 MCLauncher.exe 6080 TCP Reconnect WIN-0UOTFKKVN1S:55282 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 0, seqnum: 0, connid: 0 98 13:01:20,3438313 MCLauncher.exe 6080 TCP Reconnect WIN-0UOTFKKVN1S:55283 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 0, seqnum: 0, connid: 0 98 13:01:23,7033595 MCLauncher.exe 6080 TCP Reconnect WIN-0UOTFKKVN1S:55286 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 0, seqnum: 0, connid: 0 98 13:01:24,0013568 MCLauncher.exe 6080 TCP Reconnect WIN-0UOTFKKVN1S:55287 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 0, seqnum: 0, connid: 0 98 13:01:24,0859367 MCLauncher.exe 6080 TCP Connect WIN-0UOTFKKVN1S:55287 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 0, mss: 1460, sackopt: 0, tsopt: 0, wsopt: 0, rcvwin: 64240, rcvwinscale: 0, sndwinscale: 0, seqnum: 0, connid: 0 98 13:01:24,0862620 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55287 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40993677, endtime: 40993677, seqnum: 0, connid: 0 98 13:01:24,0946399 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55287 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40993678, endtime: 40993678, seqnum: 0, connid: 0 98 13:01:24,1103110 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55287 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40993680, endtime: 40993680, seqnum: 0, connid: 0 98 13:01:24,1270103 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55287 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40993681, endtime: 40993681, seqnum: 0, connid: 0 98 13:01:24,1429139 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55287 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40993683, endtime: 40993683, seqnum: 0, connid: 0 98 13:01:24,1599251 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55287 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40993684, endtime: 40993685, seqnum: 0, connid: 0 98 13:01:24,1886262 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55287 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40993687, endtime: 40993687, seqnum: 0, connid: 0 98 13:01:24,2043272 MCLauncher.exe 6080 TCP Reconnect WIN-0UOTFKKVN1S:55288 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 0, seqnum: 0, connid: 0 98 13:01:24,2090405 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55287 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40993689, endtime: 40993690, seqnum: 0, connid: 0 98 13:01:24,2362992 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55287 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40993692, endtime: 40993692, seqnum: 0, connid: 0 98 13:01:24,2512442 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55287 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40993694, endtime: 40993694, seqnum: 0, connid: 0 98 13:01:24,2684139 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55287 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40993695, endtime: 40993695, seqnum: 0, connid: 0 98 13:01:24,2738245 MCLauncher.exe 6080 TCP Connect WIN-0UOTFKKVN1S:55290 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 0, mss: 1460, sackopt: 0, tsopt: 0, wsopt: 0, rcvwin: 64240, rcvwinscale: 0, sndwinscale: 0, seqnum: 0, connid: 0 98 13:01:24,2741498 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55290 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40993696, endtime: 40993696, seqnum: 0, connid: 0 98 13:01:24,2820894 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55290 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40993697, endtime: 40993697, seqnum: 0, connid: 0 98 13:01:24,2838492 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55287 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40993697, endtime: 40993697, seqnum: 0, connid: 0 98 13:01:24,2975128 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55290 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40993698, endtime: 40993698, seqnum: 0, connid: 0 98 13:01:24,2994965 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55287 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40993698, endtime: 40993699, seqnum: 0, connid: 0 98 13:01:24,3132737 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55290 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40993700, endtime: 40993700, seqnum: 0, connid: 0 98 13:01:24,3137053 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55287 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40993700, endtime: 40993700, seqnum: 0, connid: 0 98 13:01:24,3187439 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55290 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40993700, endtime: 40993700, seqnum: 0, connid: 0 98 13:01:24,3197247 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55287 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40993701, endtime: 40993701, seqnum: 0, connid: 0 98 13:01:24,3459899 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55290 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40993703, endtime: 40993703, seqnum: 0, connid: 0 98 13:01:24,3488942 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55287 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40993703, endtime: 40993703, seqnum: 0, connid: 0 98 13:01:24,3602142 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55290 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40993705, endtime: 40993705, seqnum: 0, connid: 0 98 13:01:24,3607179 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55287 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40993705, endtime: 40993705, seqnum: 0, connid: 0 98 13:01:24,3770905 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55290 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40993706, endtime: 40993706, seqnum: 0, connid: 0 98 13:01:24,3776369 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55287 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40993706, endtime: 40993706, seqnum: 0, connid: 0 98 13:01:24,3913775 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55290 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40993708, endtime: 40993708, seqnum: 0, connid: 0 98 13:01:24,3930669 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55287 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40993708, endtime: 40993708, seqnum: 0, connid: 0 98 13:01:24,4083790 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55290 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40993709, endtime: 40993709, seqnum: 0, connid: 0 98 13:01:24,4088932 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55287 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40993709, endtime: 40993709, seqnum: 0, connid: 0 98 13:01:24,4241391 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55290 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40993711, endtime: 40993711, seqnum: 0, connid: 0 98 13:01:24,4257427 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55287 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40993711, endtime: 40993711, seqnum: 0, connid: 0 98 13:01:24,4451391 MCLauncher.exe 6080 TCP Disconnect WIN-0UOTFKKVN1S:55260 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 0, seqnum: 0, connid: 0 98 13:01:24,4554932 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55287 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40993714, endtime: 40993714, seqnum: 0, connid: 0 98 13:01:24,4556240 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55290 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40993714, endtime: 40993714, seqnum: 0, connid: 0 98 13:01:24,4844971 MCLauncher.exe 6080 TCP Reconnect WIN-0UOTFKKVN1S:55289 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 0, seqnum: 0, connid: 0 98 13:01:24,4869371 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55290 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40993717, endtime: 40993717, seqnum: 0, connid: 0 98 13:01:24,4871036 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55287 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40993717, endtime: 40993717, seqnum: 0, connid: 0 98 13:01:24,5022780 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55287 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40993719, endtime: 40993719, seqnum: 0, connid: 0 98 13:01:24,5024199 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55290 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40993719, endtime: 40993719, seqnum: 0, connid: 0 98 13:01:24,5178308 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55290 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40993720, endtime: 40993720, seqnum: 0, connid: 0 98 13:01:24,5179932 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55287 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40993720, endtime: 40993720, seqnum: 0, connid: 0 98 13:01:24,5321142 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55287 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40993722, endtime: 40993722, seqnum: 0, connid: 0 98 13:01:24,5322624 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55290 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40993722, endtime: 40993722, seqnum: 0, connid: 0 98 13:01:24,5503176 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55290 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40993723, endtime: 40993724, seqnum: 0, connid: 0 98 13:01:24,5504916 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55287 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40993723, endtime: 40993724, seqnum: 0, connid: 0 98 13:01:24,5875190 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55290 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40993726, endtime: 40993727, seqnum: 0, connid: 0 98 13:01:24,5943617 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55290 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40993728, endtime: 40993728, seqnum: 0, connid: 0 98 13:01:24,6115090 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55290 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40993730, endtime: 40993730, seqnum: 0, connid: 0 98 13:01:24,6271239 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55290 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40993731, endtime: 40993731, seqnum: 0, connid: 0 98 13:01:24,6411069 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55287 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40993726, endtime: 40993733, seqnum: 0, connid: 0 98 13:01:24,6411238 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55287 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40993728, endtime: 40993733, seqnum: 0, connid: 0 98 13:01:24,6411310 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55287 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40993730, endtime: 40993733, seqnum: 0, connid: 0 98 13:01:24,6411382 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55287 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40993731, endtime: 40993733, seqnum: 0, connid: 0 98 13:01:24,6422124 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55287 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40993733, endtime: 40993733, seqnum: 0, connid: 0 98 13:01:24,6423268 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55290 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40993733, endtime: 40993733, seqnum: 0, connid: 0 98 13:01:24,6596940 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55290 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40993734, endtime: 40993735, seqnum: 0, connid: 0 98 13:01:24,6598647 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55287 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40993734, endtime: 40993735, seqnum: 0, connid: 0 98 13:01:24,6885273 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55287 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40993737, endtime: 40993737, seqnum: 0, connid: 0 98 13:01:24,6886774 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55290 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40993737, endtime: 40993737, seqnum: 0, connid: 0 98 13:01:24,7210121 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55290 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40993741, endtime: 40993741, seqnum: 0, connid: 0 98 13:01:24,7210340 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55287 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40993741, endtime: 40993741, seqnum: 0, connid: 0 98 13:01:24,7370963 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55287 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40993742, endtime: 40993742, seqnum: 0, connid: 0 98 13:01:24,7372254 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55290 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40993742, endtime: 40993742, seqnum: 0, connid: 0 98 13:01:24,7537997 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55290 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40993744, endtime: 40993744, seqnum: 0, connid: 0 98 13:01:24,7539388 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55287 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40993744, endtime: 40993744, seqnum: 0, connid: 0 98 13:01:24,7836273 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55287 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40993747, endtime: 40993747, seqnum: 0, connid: 0 98 13:01:24,7837392 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55290 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40993747, endtime: 40993747, seqnum: 0, connid: 0 98 13:01:24,8004704 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55290 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40993748, endtime: 40993749, seqnum: 0, connid: 0 98 13:01:24,8005842 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55287 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40993748, endtime: 40993749, seqnum: 0, connid: 0 98 13:01:24,8277596 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55290 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40993750, endtime: 40993751, seqnum: 0, connid: 0 98 13:01:24,8439241 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55290 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40993753, endtime: 40993753, seqnum: 0, connid: 0 98 13:01:24,8621478 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55290 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40993755, endtime: 40993755, seqnum: 0, connid: 0 98 13:01:24,8784337 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55290 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40993756, endtime: 40993756, seqnum: 0, connid: 0 98 13:01:24,9068197 MCLauncher.exe 6080 TCP Connect WIN-0UOTFKKVN1S:55291 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 0, mss: 1460, sackopt: 0, tsopt: 0, wsopt: 0, rcvwin: 64240, rcvwinscale: 0, sndwinscale: 0, seqnum: 0, connid: 0 98 13:01:24,9079842 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55291 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40993759, endtime: 40993759, seqnum: 0, connid: 0 98 13:01:24,9119993 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55290 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40993759, endtime: 40993760, seqnum: 0, connid: 0 98 13:01:24,9226000 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55291 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40993761, endtime: 40993761, seqnum: 0, connid: 0 98 13:01:24,9230494 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55290 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40993761, endtime: 40993761, seqnum: 0, connid: 0 98 13:01:24,9387213 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55291 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40993762, endtime: 40993762, seqnum: 0, connid: 0 98 13:01:24,9391951 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55290 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40993762, endtime: 40993763, seqnum: 0, connid: 0 98 13:01:24,9539173 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55291 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40993764, endtime: 40993764, seqnum: 0, connid: 0 98 13:01:24,9543423 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55290 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40993764, endtime: 40993764, seqnum: 0, connid: 0 98 13:01:24,9697799 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55291 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40993766, endtime: 40993766, seqnum: 0, connid: 0 98 13:01:24,9709540 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55290 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40993766, endtime: 40993766, seqnum: 0, connid: 0 98 13:01:25,0010698 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55291 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40993769, endtime: 40993769, seqnum: 0, connid: 0 98 13:01:25,0053982 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55290 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40993769, endtime: 40993769, seqnum: 0, connid: 0 98 13:01:25,0166796 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55291 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40993770, endtime: 40993770, seqnum: 0, connid: 0 98 13:01:25,0320964 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55291 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40993772, endtime: 40993772, seqnum: 0, connid: 0 98 13:01:25,0478271 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55291 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40993773, endtime: 40993773, seqnum: 0, connid: 0 98 13:01:25,0635783 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55291 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40993775, endtime: 40993775, seqnum: 0, connid: 0 98 13:01:25,0789754 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55291 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40993776, endtime: 40993777, seqnum: 0, connid: 0 98 13:01:25,0944327 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55291 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40993778, endtime: 40993778, seqnum: 0, connid: 0 98 13:01:25,1270203 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55291 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40993781, endtime: 40993781, seqnum: 0, connid: 0 98 13:01:25,1524925 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55291 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40993783, endtime: 40993784, seqnum: 0, connid: 0 98 13:01:25,1943634 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55291 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40993787, endtime: 40993788, seqnum: 0, connid: 0 98 13:01:25,2067581 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55291 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40993789, endtime: 40993789, seqnum: 0, connid: 0 98 13:01:25,2364394 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55291 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40993792, endtime: 40993792, seqnum: 0, connid: 0 98 13:01:25,2516714 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55291 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40993794, endtime: 40993794, seqnum: 0, connid: 0 98 13:01:25,2822251 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55291 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40993797, endtime: 40993797, seqnum: 0, connid: 0 98 13:01:25,2996409 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55291 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40993798, endtime: 40993799, seqnum: 0, connid: 0 98 13:01:25,3304573 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55291 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40993801, endtime: 40993802, seqnum: 0, connid: 0 98 13:01:25,3622830 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55291 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40993805, endtime: 40993805, seqnum: 0, connid: 0 98 13:01:25,3767688 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55291 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40993806, endtime: 40993806, seqnum: 0, connid: 0 98 13:01:25,4019247 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55291 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40993808, endtime: 40993809, seqnum: 0, connid: 0 98 13:01:25,4257130 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55291 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40993811, endtime: 40993811, seqnum: 0, connid: 0 98 13:01:25,6411659 MCLauncher.exe 6080 TCP Reconnect WIN-0UOTFKKVN1S:55289 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 0, seqnum: 0, connid: 0 98 13:01:26,2664202 MCLauncher.exe 6080 Thread Create SUCCESS Thread ID: 10032 98 13:01:26,2700230 MCLauncher.exe 6080 TCP TCPCopy WIN-0UOTFKKVN1S:54920 -> sheltex.company:8000 SUCCESS Length: 2, seqnum: 0, connid: 0 98 13:01:26,2700336 MCLauncher.exe 6080 TCP Receive WIN-0UOTFKKVN1S:54920 -> sheltex.company:8000 SUCCESS Length: 2, seqnum: 0, connid: 0 98 13:01:26,2707841 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54920 -> sheltex.company:8000 SUCCESS Length: 2, startime: 40993896, endtime: 40993896, seqnum: 0, connid: 0 98 13:01:27,4811455 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55267 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40992664, endtime: 40994017, seqnum: 0, connid: 0 98 13:01:27,4811627 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55267 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40992665, endtime: 40994017, seqnum: 0, connid: 0 98 13:01:27,4811702 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55267 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40992667, endtime: 40994017, seqnum: 0, connid: 0 98 13:01:27,4811780 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55267 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40992669, endtime: 40994017, seqnum: 0, connid: 0 98 13:01:27,4811838 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55267 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40992670, endtime: 40994017, seqnum: 0, connid: 0 98 13:01:27,4811910 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55267 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40992672, endtime: 40994017, seqnum: 0, connid: 0 98 13:01:27,4811965 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55267 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40992673, endtime: 40994017, seqnum: 0, connid: 0 98 13:01:27,4812037 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55267 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40992675, endtime: 40994017, seqnum: 0, connid: 0 98 13:01:27,4812093 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55267 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40992677, endtime: 40994017, seqnum: 0, connid: 0 98 13:01:27,4812353 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55267 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40992678, endtime: 40994017, seqnum: 0, connid: 0 98 13:01:27,4812414 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55267 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40992680, endtime: 40994017, seqnum: 0, connid: 0 98 13:01:27,4812483 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55267 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40992681, endtime: 40994017, seqnum: 0, connid: 0 98 13:01:27,4812544 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55267 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40992684, endtime: 40994017, seqnum: 0, connid: 0 98 13:01:28,8599377 MCLauncher.exe 6080 TCP Reconnect WIN-0UOTFKKVN1S:55293 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 0, seqnum: 0, connid: 0 98 13:01:29,2010097 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55287 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40993750, endtime: 40994189, seqnum: 0, connid: 0 98 13:01:29,2010261 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55287 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40993753, endtime: 40994189, seqnum: 0, connid: 0 98 13:01:29,2010333 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55287 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40993755, endtime: 40994189, seqnum: 0, connid: 0 98 13:01:29,2010408 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55287 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40993756, endtime: 40994189, seqnum: 0, connid: 0 98 13:01:29,2010463 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55287 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40993759, endtime: 40994189, seqnum: 0, connid: 0 98 13:01:29,2010530 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55287 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40993761, endtime: 40994189, seqnum: 0, connid: 0 98 13:01:29,2010585 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55287 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40993762, endtime: 40994189, seqnum: 0, connid: 0 98 13:01:29,2010649 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55287 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40993764, endtime: 40994189, seqnum: 0, connid: 0 98 13:01:29,2010704 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55287 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40993766, endtime: 40994189, seqnum: 0, connid: 0 98 13:01:29,2011003 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55287 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40993769, endtime: 40994189, seqnum: 0, connid: 0 98 13:01:29,2011064 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55287 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40993770, endtime: 40994189, seqnum: 0, connid: 0 98 13:01:29,2011128 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55287 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40993772, endtime: 40994189, seqnum: 0, connid: 0 98 13:01:29,2011184 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55287 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40993773, endtime: 40994189, seqnum: 0, connid: 0 98 13:01:29,7039765 MCLauncher.exe 6080 TCP Reconnect WIN-0UOTFKKVN1S:55286 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 0, seqnum: 0, connid: 0 98 13:01:30,1457141 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55290 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40993770, endtime: 40994283, seqnum: 0, connid: 0 98 13:01:30,1457351 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55290 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40993772, endtime: 40994283, seqnum: 0, connid: 0 98 13:01:30,1457429 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55290 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40993773, endtime: 40994283, seqnum: 0, connid: 0 98 13:01:30,1457512 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55290 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40993775, endtime: 40994283, seqnum: 0, connid: 0 98 13:01:30,1457573 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55290 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40993777, endtime: 40994283, seqnum: 0, connid: 0 98 13:01:30,1457645 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55290 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40993778, endtime: 40994283, seqnum: 0, connid: 0 98 13:01:30,1457700 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55290 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40993781, endtime: 40994283, seqnum: 0, connid: 0 98 13:01:30,1457770 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55290 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40993784, endtime: 40994283, seqnum: 0, connid: 0 98 13:01:30,1457828 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55290 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40993787, endtime: 40994283, seqnum: 0, connid: 0 98 13:01:30,1458146 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55290 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40993789, endtime: 40994283, seqnum: 0, connid: 0 98 13:01:30,1458207 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55290 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40993792, endtime: 40994283, seqnum: 0, connid: 0 98 13:01:30,1458462 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55290 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40993794, endtime: 40994283, seqnum: 0, connid: 0 98 13:01:30,1458540 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55290 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40993797, endtime: 40994283, seqnum: 0, connid: 0 98 13:01:30,2191375 MCLauncher.exe 6080 TCP Reconnect WIN-0UOTFKKVN1S:55288 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 0, seqnum: 0, connid: 0 98 13:01:30,6559516 MCLauncher.exe 6080 TCP Reconnect WIN-0UOTFKKVN1S:55293 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 0, seqnum: 0, connid: 0 98 13:01:32,3216959 MCLauncher.exe 6080 TCP Disconnect WIN-0UOTFKKVN1S:55267 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 0, seqnum: 0, connid: 0 98 13:01:32,8910785 MCLauncher.exe 6080 TCP Reconnect WIN-0UOTFKKVN1S:55308 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 0, seqnum: 0, connid: 0 98 13:01:33,4387053 MCLauncher.exe 6080 TCP Reconnect WIN-0UOTFKKVN1S:55322 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 0, seqnum: 0, connid: 0 98 13:01:33,4505206 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55287 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40994189, endtime: 40994614, seqnum: 0, connid: 0 98 13:01:33,4505381 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55287 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40994190, endtime: 40994614, seqnum: 0, connid: 0 98 13:01:33,4505455 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55287 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40994192, endtime: 40994614, seqnum: 0, connid: 0 98 13:01:33,4505530 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55287 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40994194, endtime: 40994614, seqnum: 0, connid: 0 98 13:01:33,4505586 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55287 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40994195, endtime: 40994614, seqnum: 0, connid: 0 98 13:01:33,4505652 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55287 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40994197, endtime: 40994614, seqnum: 0, connid: 0 98 13:01:33,4508522 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55287 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40994198, endtime: 40994614, seqnum: 0, connid: 0 98 13:01:33,4509475 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55287 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40994200, endtime: 40994614, seqnum: 0, connid: 0 98 13:01:33,4509578 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55287 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40994200, endtime: 40994614, seqnum: 0, connid: 0 98 13:01:33,4509656 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55287 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40994204, endtime: 40994614, seqnum: 0, connid: 0 98 13:01:33,4509717 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55287 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40994205, endtime: 40994614, seqnum: 0, connid: 0 98 13:01:33,4509786 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55287 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40994206, endtime: 40994614, seqnum: 0, connid: 0 98 13:01:33,4509841 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55287 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40994209, endtime: 40994614, seqnum: 0, connid: 0 98 13:01:34,0928953 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55290 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40994283, endtime: 40994678, seqnum: 0, connid: 0 98 13:01:34,0929144 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55290 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40994284, endtime: 40994678, seqnum: 0, connid: 0 98 13:01:34,0929219 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55290 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40994287, endtime: 40994678, seqnum: 0, connid: 0 98 13:01:34,0929294 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55290 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40994289, endtime: 40994678, seqnum: 0, connid: 0 98 13:01:34,0929349 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55290 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40994291, endtime: 40994678, seqnum: 0, connid: 0 98 13:01:34,0929415 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55290 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40994293, endtime: 40994678, seqnum: 0, connid: 0 98 13:01:34,0929471 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55290 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40994294, endtime: 40994678, seqnum: 0, connid: 0 98 13:01:34,0929537 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55290 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40994298, endtime: 40994678, seqnum: 0, connid: 0 98 13:01:34,0929590 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55290 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40994298, endtime: 40994678, seqnum: 0, connid: 0 98 13:01:34,0929898 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55290 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40994300, endtime: 40994678, seqnum: 0, connid: 0 98 13:01:34,0929956 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55290 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40994304, endtime: 40994678, seqnum: 0, connid: 0 98 13:01:34,0930019 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55290 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40994305, endtime: 40994678, seqnum: 0, connid: 0 98 13:01:34,0930274 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55290 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40994308, endtime: 40994678, seqnum: 0, connid: 0 98 13:01:34,3865320 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55291 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40993812, endtime: 40994707, seqnum: 0, connid: 0 98 13:01:34,3865492 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55291 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40993816, endtime: 40994707, seqnum: 0, connid: 0 98 13:01:34,3865583 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55291 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40993819, endtime: 40994707, seqnum: 0, connid: 0 98 13:01:34,3865650 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55291 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40993820, endtime: 40994707, seqnum: 0, connid: 0 98 13:01:34,3865722 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55291 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40993822, endtime: 40994707, seqnum: 0, connid: 0 98 13:01:34,3865780 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55291 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40993823, endtime: 40994707, seqnum: 0, connid: 0 98 13:01:34,3865849 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55291 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40993825, endtime: 40994707, seqnum: 0, connid: 0 98 13:01:34,3865908 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55291 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40993827, endtime: 40994707, seqnum: 0, connid: 0 98 13:01:34,3865980 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55291 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40993828, endtime: 40994707, seqnum: 0, connid: 0 98 13:01:34,3866240 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55291 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40993830, endtime: 40994707, seqnum: 0, connid: 0 98 13:01:34,3866315 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55291 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40993834, endtime: 40994707, seqnum: 0, connid: 0 98 13:01:34,3866373 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55291 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40993836, endtime: 40994707, seqnum: 0, connid: 0 98 13:01:34,3866442 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55291 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40993838, endtime: 40994707, seqnum: 0, connid: 0 98 13:01:35,1001652 MCLauncher.exe 6080 TCP Disconnect WIN-0UOTFKKVN1S:55243 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 0, seqnum: 0, connid: 0 98 13:01:35,4050579 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55287 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40994614, endtime: 40994809, seqnum: 0, connid: 0 98 13:01:35,4050770 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55287 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40994616, endtime: 40994809, seqnum: 0, connid: 0 98 13:01:35,4050845 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55287 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40994617, endtime: 40994809, seqnum: 0, connid: 0 98 13:01:35,4050923 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55287 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40994619, endtime: 40994809, seqnum: 0, connid: 0 98 13:01:35,4050981 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55287 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40994620, endtime: 40994809, seqnum: 0, connid: 0 98 13:01:35,4051045 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55287 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40994623, endtime: 40994809, seqnum: 0, connid: 0 98 13:01:35,4051103 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55287 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40994625, endtime: 40994809, seqnum: 0, connid: 0 98 13:01:35,4051169 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55287 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40994626, endtime: 40994809, seqnum: 0, connid: 0 98 13:01:35,4051228 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55287 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40994628, endtime: 40994809, seqnum: 0, connid: 0 98 13:01:35,4051549 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55287 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40994630, endtime: 40994809, seqnum: 0, connid: 0 98 13:01:35,4051607 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55287 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40994632, endtime: 40994809, seqnum: 0, connid: 0 98 13:01:35,4051674 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55287 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40994634, endtime: 40994809, seqnum: 0, connid: 0 98 13:01:35,4051729 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55287 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40994638, endtime: 40994809, seqnum: 0, connid: 0 98 13:01:36,4264890 MCLauncher.exe 6080 TCP TCPCopy WIN-0UOTFKKVN1S:54920 -> sheltex.company:8000 SUCCESS Length: 2, seqnum: 0, connid: 0 98 13:01:36,4265001 MCLauncher.exe 6080 TCP Receive WIN-0UOTFKKVN1S:54920 -> sheltex.company:8000 SUCCESS Length: 2, seqnum: 0, connid: 0 98 13:01:36,4279932 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54920 -> sheltex.company:8000 SUCCESS Length: 2, startime: 40994911, endtime: 40994911, seqnum: 0, connid: 0 98 13:01:36,5139321 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55290 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40994678, endtime: 40994920, seqnum: 0, connid: 0 98 13:01:36,5139504 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55290 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40994680, endtime: 40994920, seqnum: 0, connid: 0 98 13:01:36,5139576 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55290 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40994680, endtime: 40994920, seqnum: 0, connid: 0 98 13:01:36,5139651 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55290 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40994683, endtime: 40994920, seqnum: 0, connid: 0 98 13:01:36,5139706 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55290 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40994684, endtime: 40994920, seqnum: 0, connid: 0 98 13:01:36,5139772 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55290 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40994688, endtime: 40994920, seqnum: 0, connid: 0 98 13:01:36,5139828 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55290 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40994691, endtime: 40994920, seqnum: 0, connid: 0 98 13:01:36,5140656 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55290 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40994694, endtime: 40994920, seqnum: 0, connid: 0 98 13:01:36,5142017 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55290 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40994695, endtime: 40994920, seqnum: 0, connid: 0 98 13:01:36,5142125 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55290 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40994699, endtime: 40994920, seqnum: 0, connid: 0 98 13:01:36,5142191 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55290 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40994702, endtime: 40994920, seqnum: 0, connid: 0 98 13:01:36,5142266 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55290 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40994705, endtime: 40994920, seqnum: 0, connid: 0 98 13:01:36,5142327 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55290 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40994706, endtime: 40994920, seqnum: 0, connid: 0 98 13:01:38,3601859 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55287 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40994809, endtime: 40995105, seqnum: 0, connid: 0 98 13:01:38,3602073 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55287 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40994810, endtime: 40995105, seqnum: 0, connid: 0 98 13:01:38,3602158 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55287 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40994810, endtime: 40995105, seqnum: 0, connid: 0 98 13:01:38,3602239 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55287 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40994811, endtime: 40995105, seqnum: 0, connid: 0 98 13:01:38,3602300 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55287 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40994812, endtime: 40995105, seqnum: 0, connid: 0 98 13:01:38,3602538 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55287 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40994812, endtime: 40995105, seqnum: 0, connid: 0 98 13:01:38,3602607 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55287 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40994813, endtime: 40995105, seqnum: 0, connid: 0 98 13:01:38,3602682 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55287 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40994813, endtime: 40995105, seqnum: 0, connid: 0 98 13:01:38,3602746 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55287 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40994814, endtime: 40995105, seqnum: 0, connid: 0 98 13:01:38,3603170 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55287 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40994814, endtime: 40995105, seqnum: 0, connid: 0 98 13:01:38,3603256 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55287 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40994815, endtime: 40995105, seqnum: 0, connid: 0 98 13:01:38,3603350 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55287 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40994816, endtime: 40995105, seqnum: 0, connid: 0 98 13:01:38,3603425 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55287 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40994816, endtime: 40995105, seqnum: 0, connid: 0 98 13:01:38,9060196 MCLauncher.exe 6080 TCP Reconnect WIN-0UOTFKKVN1S:55308 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 0, seqnum: 0, connid: 0 98 13:01:39,4536087 MCLauncher.exe 6080 TCP Reconnect WIN-0UOTFKKVN1S:55322 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 0, seqnum: 0, connid: 0 98 13:01:40,1877679 MCLauncher.exe 6080 TCP Reconnect WIN-0UOTFKKVN1S:55324 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 0, seqnum: 0, connid: 0 98 13:01:40,8455031 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55290 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40994920, endtime: 40995353, seqnum: 0, connid: 0 98 13:01:40,8455247 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55290 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40994921, endtime: 40995353, seqnum: 0, connid: 0 98 13:01:40,8455330 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55290 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40994921, endtime: 40995353, seqnum: 0, connid: 0 98 13:01:40,8455410 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55290 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40994922, endtime: 40995353, seqnum: 0, connid: 0 98 13:01:40,8455471 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55290 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40994922, endtime: 40995353, seqnum: 0, connid: 0 98 13:01:40,8455543 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55290 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40994923, endtime: 40995353, seqnum: 0, connid: 0 98 13:01:40,8455604 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55290 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40994924, endtime: 40995353, seqnum: 0, connid: 0 98 13:01:40,8455673 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55290 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40994924, endtime: 40995353, seqnum: 0, connid: 0 98 13:01:40,8455732 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55290 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40994925, endtime: 40995353, seqnum: 0, connid: 0 98 13:01:40,8456039 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55290 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40994925, endtime: 40995353, seqnum: 0, connid: 0 98 13:01:40,8456103 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55290 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40994927, endtime: 40995353, seqnum: 0, connid: 0 98 13:01:40,8456172 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55290 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40994927, endtime: 40995353, seqnum: 0, connid: 0 98 13:01:40,8456380 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55290 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40994928, endtime: 40995353, seqnum: 0, connid: 0 98 13:01:43,0467402 MCLauncher.exe 6080 TCP Reconnect WIN-0UOTFKKVN1S:55325 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 0, seqnum: 0, connid: 0 98 13:01:43,0608698 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55287 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40995105, endtime: 40995575, seqnum: 0, connid: 0 98 13:01:43,0608881 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55287 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40995106, endtime: 40995575, seqnum: 0, connid: 0 98 13:01:43,0608959 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55287 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40995109, endtime: 40995575, seqnum: 0, connid: 0 98 13:01:43,0609036 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55287 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40995113, endtime: 40995575, seqnum: 0, connid: 0 98 13:01:43,0609100 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55287 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40995115, endtime: 40995575, seqnum: 0, connid: 0 98 13:01:43,0609172 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55287 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40995117, endtime: 40995575, seqnum: 0, connid: 0 98 13:01:43,0609230 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55287 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40995119, endtime: 40995575, seqnum: 0, connid: 0 98 13:01:43,0609302 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55287 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40995120, endtime: 40995575, seqnum: 0, connid: 0 98 13:01:43,0609363 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55287 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40995123, endtime: 40995575, seqnum: 0, connid: 0 98 13:01:43,0609673 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55287 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40995125, endtime: 40995575, seqnum: 0, connid: 0 98 13:01:43,0609737 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55287 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40995129, endtime: 40995575, seqnum: 0, connid: 0 98 13:01:43,0609806 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55287 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40995130, endtime: 40995575, seqnum: 0, connid: 0 98 13:01:43,0609867 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55287 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40995133, endtime: 40995575, seqnum: 0, connid: 0 98 13:01:43,5319479 MCLauncher.exe 6080 TCP Reconnect WIN-0UOTFKKVN1S:55326 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 0, seqnum: 0, connid: 0 98 13:01:43,8215546 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55290 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40995353, endtime: 40995651, seqnum: 0, connid: 0 98 13:01:43,8215737 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55290 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40995356, endtime: 40995651, seqnum: 0, connid: 0 98 13:01:43,8215809 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55290 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40995362, endtime: 40995651, seqnum: 0, connid: 0 98 13:01:43,8215881 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55290 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40995364, endtime: 40995651, seqnum: 0, connid: 0 98 13:01:43,8215942 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55290 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40995366, endtime: 40995651, seqnum: 0, connid: 0 98 13:01:43,8216009 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55290 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40995368, endtime: 40995651, seqnum: 0, connid: 0 98 13:01:43,8216067 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55290 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40995369, endtime: 40995651, seqnum: 0, connid: 0 98 13:01:43,8216136 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55290 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40995370, endtime: 40995651, seqnum: 0, connid: 0 98 13:01:43,8216192 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55290 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40995372, endtime: 40995651, seqnum: 0, connid: 0 98 13:01:43,8216682 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55290 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40995374, endtime: 40995651, seqnum: 0, connid: 0 98 13:01:43,8216757 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55290 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40995375, endtime: 40995651, seqnum: 0, connid: 0 98 13:01:43,8216823 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55290 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40995376, endtime: 40995651, seqnum: 0, connid: 0 98 13:01:43,8216884 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55290 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40995378, endtime: 40995651, seqnum: 0, connid: 0 98 13:01:44,7492388 MCLauncher.exe 6080 TCP Connect WIN-0UOTFKKVN1S:55327 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 0, mss: 1460, sackopt: 0, tsopt: 0, wsopt: 0, rcvwin: 64240, rcvwinscale: 0, sndwinscale: 0, seqnum: 0, connid: 0 98 13:01:44,7495610 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55327 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40995744, endtime: 40995744, seqnum: 0, connid: 0 98 13:01:44,7659708 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55327 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40995745, endtime: 40995745, seqnum: 0, connid: 0 98 13:01:44,7852345 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55327 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40995747, endtime: 40995747, seqnum: 0, connid: 0 98 13:01:44,8255434 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55327 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40995751, endtime: 40995751, seqnum: 0, connid: 0 98 13:01:44,8464874 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55327 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40995753, endtime: 40995753, seqnum: 0, connid: 0 98 13:01:44,8619087 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55327 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40995755, endtime: 40995755, seqnum: 0, connid: 0 98 13:01:44,8935886 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55327 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40995758, endtime: 40995758, seqnum: 0, connid: 0 98 13:01:44,9075431 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55327 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40995759, endtime: 40995759, seqnum: 0, connid: 0 98 13:01:44,9397201 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55327 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40995763, endtime: 40995763, seqnum: 0, connid: 0 98 13:01:44,9547875 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55327 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40995764, endtime: 40995764, seqnum: 0, connid: 0 98 13:01:44,9868931 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55327 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40995767, endtime: 40995767, seqnum: 0, connid: 0 98 13:01:45,0071916 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55327 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40995769, endtime: 40995769, seqnum: 0, connid: 0 98 13:01:45,0166126 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55327 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40995770, endtime: 40995770, seqnum: 0, connid: 0 98 13:01:45,0499956 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55327 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40995773, endtime: 40995774, seqnum: 0, connid: 0 98 13:01:45,0652237 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55327 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40995775, endtime: 40995775, seqnum: 0, connid: 0 98 13:01:45,0805339 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55327 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40995776, endtime: 40995777, seqnum: 0, connid: 0 98 13:01:45,1120930 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55327 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40995780, endtime: 40995780, seqnum: 0, connid: 0 98 13:01:45,1262451 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55327 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40995781, endtime: 40995781, seqnum: 0, connid: 0 98 13:01:45,1579403 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55327 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40995784, endtime: 40995784, seqnum: 0, connid: 0 98 13:01:45,1902517 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55327 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40995787, endtime: 40995788, seqnum: 0, connid: 0 98 13:01:45,2066844 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55327 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40995789, endtime: 40995789, seqnum: 0, connid: 0 98 13:01:45,2401799 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55327 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40995792, endtime: 40995793, seqnum: 0, connid: 0 98 13:01:45,2513766 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55327 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40995794, endtime: 40995794, seqnum: 0, connid: 0 98 13:01:45,2772340 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55327 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40995795, endtime: 40995796, seqnum: 0, connid: 0 98 13:01:45,3012317 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55327 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40995798, endtime: 40995799, seqnum: 0, connid: 0 98 13:01:45,3363996 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55327 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40995801, endtime: 40995802, seqnum: 0, connid: 0 98 13:01:45,3421180 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55327 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40995803, endtime: 40995803, seqnum: 0, connid: 0 98 13:01:45,8605137 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55327 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40995805, endtime: 40995855, seqnum: 0, connid: 0 98 13:01:45,8605358 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55327 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40995806, endtime: 40995855, seqnum: 0, connid: 0 98 13:01:45,8605444 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55327 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40995809, endtime: 40995855, seqnum: 0, connid: 0 98 13:01:45,8605633 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55327 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40995811, endtime: 40995855, seqnum: 0, connid: 0 98 13:01:45,8605752 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55327 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40995814, endtime: 40995855, seqnum: 0, connid: 0 98 13:01:45,8605835 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55327 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40995817, endtime: 40995855, seqnum: 0, connid: 0 98 13:01:45,8605902 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55327 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40995819, endtime: 40995855, seqnum: 0, connid: 0 98 13:01:45,8605979 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55327 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40995820, endtime: 40995855, seqnum: 0, connid: 0 98 13:01:45,8606046 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55327 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40995822, endtime: 40995855, seqnum: 0, connid: 0 98 13:01:45,8606699 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55327 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40995824, endtime: 40995855, seqnum: 0, connid: 0 98 13:01:45,8606780 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55327 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40995825, endtime: 40995855, seqnum: 0, connid: 0 98 13:01:45,8606855 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55327 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40995827, endtime: 40995855, seqnum: 0, connid: 0 98 13:01:46,1877845 MCLauncher.exe 6080 TCP Reconnect WIN-0UOTFKKVN1S:55324 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 0, seqnum: 0, connid: 0 98 13:01:46,3518773 MCLauncher.exe 6080 TCP TCPCopy WIN-0UOTFKKVN1S:54920 -> sheltex.company:8000 SUCCESS Length: 2, seqnum: 0, connid: 0 98 13:01:46,3518887 MCLauncher.exe 6080 TCP Receive WIN-0UOTFKKVN1S:54920 -> sheltex.company:8000 SUCCESS Length: 2, seqnum: 0, connid: 0 98 13:01:46,3521909 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54920 -> sheltex.company:8000 SUCCESS Length: 2, startime: 40995904, endtime: 40995904, seqnum: 0, connid: 0 98 13:01:47,0412459 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55290 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40995651, endtime: 40995973, seqnum: 0, connid: 0 98 13:01:47,0412639 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55290 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40995651, endtime: 40995973, seqnum: 0, connid: 0 98 13:01:47,0412711 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55290 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40995653, endtime: 40995973, seqnum: 0, connid: 0 98 13:01:47,0412786 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55290 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40995656, endtime: 40995973, seqnum: 0, connid: 0 98 13:01:47,0412844 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55290 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40995659, endtime: 40995973, seqnum: 0, connid: 0 98 13:01:47,0412911 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55290 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40995661, endtime: 40995973, seqnum: 0, connid: 0 98 13:01:47,0412966 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55290 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40995662, endtime: 40995973, seqnum: 0, connid: 0 98 13:01:47,0413030 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55290 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40995664, endtime: 40995973, seqnum: 0, connid: 0 98 13:01:47,0413085 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55290 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40995666, endtime: 40995973, seqnum: 0, connid: 0 98 13:01:47,0413382 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55290 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40995667, endtime: 40995973, seqnum: 0, connid: 0 98 13:01:47,0413443 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55290 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40995669, endtime: 40995973, seqnum: 0, connid: 0 98 13:01:47,0413507 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55290 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40995669, endtime: 40995973, seqnum: 0, connid: 0 98 13:01:47,0413565 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55290 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40995672, endtime: 40995973, seqnum: 0, connid: 0 98 13:01:47,2196393 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55290 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40995973, endtime: 40995991, seqnum: 0, connid: 0 98 13:01:47,4074503 MCLauncher.exe 6080 TCP Connect WIN-0UOTFKKVN1S:55328 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 0, mss: 1460, sackopt: 0, tsopt: 0, wsopt: 0, rcvwin: 64240, rcvwinscale: 0, sndwinscale: 0, seqnum: 0, connid: 0 98 13:01:47,4217065 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55328 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40996009, endtime: 40996011, seqnum: 0, connid: 0 98 13:01:47,4388565 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55328 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40996012, endtime: 40996012, seqnum: 0, connid: 0 98 13:01:47,4554248 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55328 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40996014, endtime: 40996014, seqnum: 0, connid: 0 98 13:01:47,4748156 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55328 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40996016, endtime: 40996016, seqnum: 0, connid: 0 98 13:01:47,5115281 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55328 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40996020, endtime: 40996020, seqnum: 0, connid: 0 98 13:01:47,5351263 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55328 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40996022, endtime: 40996022, seqnum: 0, connid: 0 98 13:01:47,5524343 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55328 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40996024, endtime: 40996024, seqnum: 0, connid: 0 98 13:01:47,5899094 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55328 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40996028, endtime: 40996028, seqnum: 0, connid: 0 98 13:01:47,6114467 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55328 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40996030, endtime: 40996030, seqnum: 0, connid: 0 98 13:01:47,6273043 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55328 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40996031, endtime: 40996031, seqnum: 0, connid: 0 98 13:01:47,6431075 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55328 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40996033, endtime: 40996033, seqnum: 0, connid: 0 98 13:01:47,6729096 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55328 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40996036, endtime: 40996036, seqnum: 0, connid: 0 98 13:01:47,6888257 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55328 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40996037, endtime: 40996037, seqnum: 0, connid: 0 98 13:01:47,7075111 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55328 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40996039, endtime: 40996039, seqnum: 0, connid: 0 98 13:01:47,7205331 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55328 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40996041, endtime: 40996041, seqnum: 0, connid: 0 98 13:01:47,7376385 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55328 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40996042, endtime: 40996042, seqnum: 0, connid: 0 98 13:01:47,7781311 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55328 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40996045, endtime: 40996046, seqnum: 0, connid: 0 98 13:01:47,7995361 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55328 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40996048, endtime: 40996049, seqnum: 0, connid: 0 98 13:01:47,8301265 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55328 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40996051, endtime: 40996052, seqnum: 0, connid: 0 98 13:01:47,8446558 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55328 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40996053, endtime: 40996053, seqnum: 0, connid: 0 98 13:01:47,8628357 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55328 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40996055, endtime: 40996055, seqnum: 0, connid: 0 98 13:01:47,8768844 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55328 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40996056, endtime: 40996056, seqnum: 0, connid: 0 98 13:01:47,9088514 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55328 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40996059, endtime: 40996059, seqnum: 0, connid: 0 98 13:01:47,9226515 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55328 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40996061, endtime: 40996061, seqnum: 0, connid: 0 98 13:01:47,9386230 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55328 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40996062, endtime: 40996062, seqnum: 0, connid: 0 98 13:01:47,9536968 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55328 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40996064, endtime: 40996064, seqnum: 0, connid: 0 98 13:01:47,9699938 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55328 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40996065, endtime: 40996066, seqnum: 0, connid: 0 98 13:01:47,9866831 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55328 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40996067, endtime: 40996067, seqnum: 0, connid: 0 98 13:01:48,0022492 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55328 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40996069, endtime: 40996069, seqnum: 0, connid: 0 98 13:01:48,0344744 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55328 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40996072, endtime: 40996072, seqnum: 0, connid: 0 98 13:01:48,0477944 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55328 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40996073, endtime: 40996073, seqnum: 0, connid: 0 98 13:01:48,0804419 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55328 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40996077, endtime: 40996077, seqnum: 0, connid: 0 98 13:01:48,0966688 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55328 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40996078, endtime: 40996078, seqnum: 0, connid: 0 98 13:01:48,1280382 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55328 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40996081, endtime: 40996081, seqnum: 0, connid: 0 98 13:01:48,1597902 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55328 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40996084, endtime: 40996085, seqnum: 0, connid: 0 98 13:01:48,1738037 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55328 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40996086, endtime: 40996086, seqnum: 0, connid: 0 98 13:01:48,1930505 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55328 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40996087, endtime: 40996088, seqnum: 0, connid: 0 98 13:01:48,2036077 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55328 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40996089, endtime: 40996089, seqnum: 0, connid: 0 98 13:01:48,2208882 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55328 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40996090, endtime: 40996091, seqnum: 0, connid: 0 98 13:01:48,9202589 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55287 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40995575, endtime: 40996161, seqnum: 0, connid: 0 98 13:01:48,9202919 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55287 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40995576, endtime: 40996161, seqnum: 0, connid: 0 98 13:01:48,9203032 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55287 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40995578, endtime: 40996161, seqnum: 0, connid: 0 98 13:01:48,9203101 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55287 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40995582, endtime: 40996161, seqnum: 0, connid: 0 98 13:01:48,9203179 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55287 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40995584, endtime: 40996161, seqnum: 0, connid: 0 98 13:01:48,9203243 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55287 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40995588, endtime: 40996161, seqnum: 0, connid: 0 98 13:01:48,9203315 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55287 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40995591, endtime: 40996161, seqnum: 0, connid: 0 98 13:01:48,9203376 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55287 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40995592, endtime: 40996161, seqnum: 0, connid: 0 98 13:01:48,9203450 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55287 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40995595, endtime: 40996161, seqnum: 0, connid: 0 98 13:01:48,9203755 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55287 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40995597, endtime: 40996161, seqnum: 0, connid: 0 98 13:01:48,9203830 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55287 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40995598, endtime: 40996161, seqnum: 0, connid: 0 98 13:01:48,9203885 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55287 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40995600, endtime: 40996161, seqnum: 0, connid: 0 98 13:01:48,9203957 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55287 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40995603, endtime: 40996161, seqnum: 0, connid: 0 98 13:01:49,0624662 MCLauncher.exe 6080 TCP Reconnect WIN-0UOTFKKVN1S:55325 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 0, seqnum: 0, connid: 0 98 13:01:49,1258444 MCLauncher.exe 6080 TCP Connect WIN-0UOTFKKVN1S:55325 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 0, mss: 1460, sackopt: 0, tsopt: 0, wsopt: 0, rcvwin: 64240, rcvwinscale: 0, sndwinscale: 0, seqnum: 0, connid: 0 98 13:01:49,1266327 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55325 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40996181, endtime: 40996181, seqnum: 0, connid: 0 98 13:01:49,1422182 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55325 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40996183, endtime: 40996183, seqnum: 0, connid: 0 98 13:01:49,1640474 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55325 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40996184, endtime: 40996185, seqnum: 0, connid: 0 98 13:01:49,1893928 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55325 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40996187, endtime: 40996188, seqnum: 0, connid: 0 98 13:01:49,2053429 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55325 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40996189, endtime: 40996189, seqnum: 0, connid: 0 98 13:01:49,2472776 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55325 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40996192, endtime: 40996193, seqnum: 0, connid: 0 98 13:01:49,2676603 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55325 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40996195, endtime: 40996195, seqnum: 0, connid: 0 98 13:01:49,2831934 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55325 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40996197, endtime: 40996197, seqnum: 0, connid: 0 98 13:01:49,3262391 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55325 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40996201, endtime: 40996201, seqnum: 0, connid: 0 98 13:01:49,3429220 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55325 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40996203, endtime: 40996203, seqnum: 0, connid: 0 98 13:01:49,3593783 MCLauncher.exe 6080 Thread Exit SUCCESS Thread ID: 9864, User Time: 0.0156250, Kernel Time: 0.0468750 98 13:01:49,4890184 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55290 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40995978, endtime: 40996218, seqnum: 0, connid: 0 98 13:01:49,4890480 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55290 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40995980, endtime: 40996218, seqnum: 0, connid: 0 98 13:01:49,4890663 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55290 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40995981, endtime: 40996218, seqnum: 0, connid: 0 98 13:01:49,4890799 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55290 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40995983, endtime: 40996218, seqnum: 0, connid: 0 98 13:01:49,4890948 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55290 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40995985, endtime: 40996218, seqnum: 0, connid: 0 98 13:01:49,4891076 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55290 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40995987, endtime: 40996218, seqnum: 0, connid: 0 98 13:01:49,4891198 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55290 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40995989, endtime: 40996218, seqnum: 0, connid: 0 98 13:01:49,4891295 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55290 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40995991, endtime: 40996218, seqnum: 0, connid: 0 98 13:01:49,4891406 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55290 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40995992, endtime: 40996218, seqnum: 0, connid: 0 98 13:01:49,4892597 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55290 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40995995, endtime: 40996218, seqnum: 0, connid: 0 98 13:01:49,4892733 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55290 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40995995, endtime: 40996218, seqnum: 0, connid: 0 98 13:01:49,4892827 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55290 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40995999, endtime: 40996218, seqnum: 0, connid: 0 98 13:01:49,4893334 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55290 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40996000, endtime: 40996218, seqnum: 0, connid: 0 98 13:01:49,5634038 MCLauncher.exe 6080 TCP Reconnect WIN-0UOTFKKVN1S:55326 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 0, seqnum: 0, connid: 0 98 13:01:49,6327988 MCLauncher.exe 6080 TCP Connect WIN-0UOTFKKVN1S:55326 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 0, mss: 1460, sackopt: 0, tsopt: 0, wsopt: 0, rcvwin: 64240, rcvwinscale: 0, sndwinscale: 0, seqnum: 0, connid: 0 98 13:01:49,6377393 MCLauncher.exe 6080 Thread Exit SUCCESS Thread ID: 13024, User Time: 0.0156250, Kernel Time: 0.0781250 98 13:01:49,7361920 MCLauncher.exe 6080 TCP Disconnect WIN-0UOTFKKVN1S:55326 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 0, seqnum: 0, connid: 0 98 13:01:49,8993719 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55328 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40996092, endtime: 40996259, seqnum: 0, connid: 0 98 13:01:49,9778278 MCLauncher.exe 6080 Thread Exit SUCCESS Thread ID: 9328, User Time: 0.0000000, Kernel Time: 0.0781250 98 13:01:50,0627754 MCLauncher.exe 6080 TCP Disconnect WIN-0UOTFKKVN1S:55325 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 0, seqnum: 0, connid: 0 98 13:01:50,3236303 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55328 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40996094, endtime: 40996301, seqnum: 0, connid: 0 98 13:01:50,3236458 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55328 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40996095, endtime: 40996301, seqnum: 0, connid: 0 98 13:01:50,3236541 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55328 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40996098, endtime: 40996301, seqnum: 0, connid: 0 98 13:01:50,3236608 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55328 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40996100, endtime: 40996301, seqnum: 0, connid: 0 98 13:01:50,3236677 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55328 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40996104, endtime: 40996301, seqnum: 0, connid: 0 98 13:01:50,3236735 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55328 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40996105, endtime: 40996301, seqnum: 0, connid: 0 98 13:01:50,3236805 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55328 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40996106, endtime: 40996301, seqnum: 0, connid: 0 98 13:01:50,3236860 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55328 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40996108, endtime: 40996301, seqnum: 0, connid: 0 98 13:01:50,3236929 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55328 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40996109, endtime: 40996301, seqnum: 0, connid: 0 98 13:01:50,3237215 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55328 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40996111, endtime: 40996301, seqnum: 0, connid: 0 98 13:01:50,3237287 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55328 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40996112, endtime: 40996301, seqnum: 0, connid: 0 98 13:01:50,3237345 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55328 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40996114, endtime: 40996301, seqnum: 0, connid: 0 98 13:01:50,3237417 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55328 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 5120, startime: 40996259, endtime: 40996301, seqnum: 0, connid: 0 98 13:01:50,8983027 MCLauncher.exe 6080 TCP Disconnect WIN-0UOTFKKVN1S:55328 -> ns3077914.ip-164-132-207.eu:25565 SUCCESS Length: 0, seqnum: 0, connid: 0 98 13:01:51,5553775 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55287 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40996161, endtime: 40996424, seqnum: 0, connid: 0 98 13:01:51,5553949 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55287 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40996162, endtime: 40996424, seqnum: 0, connid: 0 98 13:01:51,5554024 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55287 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40996164, endtime: 40996424, seqnum: 0, connid: 0 98 13:01:51,5554101 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55287 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40996166, endtime: 40996424, seqnum: 0, connid: 0 98 13:01:51,5554162 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55287 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40996167, endtime: 40996424, seqnum: 0, connid: 0 98 13:01:51,5554232 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55287 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40996169, endtime: 40996424, seqnum: 0, connid: 0 98 13:01:51,5554293 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55287 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40996172, endtime: 40996424, seqnum: 0, connid: 0 98 13:01:51,5554359 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55287 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40996175, endtime: 40996424, seqnum: 0, connid: 0 98 13:01:51,5554417 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55287 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40996177, endtime: 40996424, seqnum: 0, connid: 0 98 13:01:51,5554725 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55287 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40996178, endtime: 40996424, seqnum: 0, connid: 0 98 13:01:51,5554786 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55287 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40996180, endtime: 40996424, seqnum: 0, connid: 0 98 13:01:51,5554855 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55287 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40996181, endtime: 40996424, seqnum: 0, connid: 0 98 13:01:51,5554913 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55287 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40996183, endtime: 40996424, seqnum: 0, connid: 0 98 13:01:52,1981832 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55327 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40995828, endtime: 40996488, seqnum: 0, connid: 0 98 13:01:52,1982007 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55327 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40995855, endtime: 40996488, seqnum: 0, connid: 0 98 13:01:52,1982087 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55327 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40995856, endtime: 40996488, seqnum: 0, connid: 0 98 13:01:52,1982167 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55327 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40995858, endtime: 40996488, seqnum: 0, connid: 0 98 13:01:52,1982231 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55327 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40995859, endtime: 40996488, seqnum: 0, connid: 0 98 13:01:52,1982303 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55327 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40995861, endtime: 40996488, seqnum: 0, connid: 0 98 13:01:52,1982361 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55327 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40995863, endtime: 40996488, seqnum: 0, connid: 0 98 13:01:52,1982433 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55327 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40995866, endtime: 40996488, seqnum: 0, connid: 0 98 13:01:52,1982492 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55327 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40995867, endtime: 40996488, seqnum: 0, connid: 0 98 13:01:52,1982760 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55327 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40995869, endtime: 40996488, seqnum: 0, connid: 0 98 13:01:52,1982824 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55327 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40995870, endtime: 40996488, seqnum: 0, connid: 0 98 13:01:52,1984162 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55327 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40995872, endtime: 40996488, seqnum: 0, connid: 0 98 13:01:52,1984259 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55327 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40995875, endtime: 40996488, seqnum: 0, connid: 0 98 13:01:52,3777851 MCLauncher.exe 6080 Thread Exit SUCCESS Thread ID: 5892, User Time: 0.0312500, Kernel Time: 0.0000000 98 13:01:52,5290929 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55290 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40996218, endtime: 40996522, seqnum: 0, connid: 0 98 13:01:52,5291100 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55290 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40996220, endtime: 40996522, seqnum: 0, connid: 0 98 13:01:52,5291175 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55290 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40996222, endtime: 40996522, seqnum: 0, connid: 0 98 13:01:52,5291253 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55290 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40996225, endtime: 40996522, seqnum: 0, connid: 0 98 13:01:52,5291314 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55290 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40996229, endtime: 40996522, seqnum: 0, connid: 0 98 13:01:52,5291383 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55290 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40996232, endtime: 40996522, seqnum: 0, connid: 0 98 13:01:52,5291441 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55290 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40996236, endtime: 40996522, seqnum: 0, connid: 0 98 13:01:52,5291511 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55290 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40996238, endtime: 40996522, seqnum: 0, connid: 0 98 13:01:52,5291569 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55290 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40996240, endtime: 40996522, seqnum: 0, connid: 0 98 13:01:52,5292336 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55290 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40996241, endtime: 40996522, seqnum: 0, connid: 0 98 13:01:52,5292414 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55290 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40996244, endtime: 40996522, seqnum: 0, connid: 0 98 13:01:52,5292483 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55290 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40996246, endtime: 40996522, seqnum: 0, connid: 0 98 13:01:52,5296780 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55290 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40996248, endtime: 40996522, seqnum: 0, connid: 0 98 13:01:52,5478606 MCLauncher.exe 6080 Thread Exit SUCCESS Thread ID: 8696, User Time: 0.0000000, Kernel Time: 0.0312500 98 13:01:52,6848732 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55287 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40996424, endtime: 40996537, seqnum: 0, connid: 0 98 13:01:52,6849025 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55287 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40996425, endtime: 40996537, seqnum: 0, connid: 0 98 13:01:52,6849131 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55287 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40996426, endtime: 40996537, seqnum: 0, connid: 0 98 13:01:52,6849217 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55287 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40996429, endtime: 40996537, seqnum: 0, connid: 0 98 13:01:52,6849286 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55287 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40996433, endtime: 40996537, seqnum: 0, connid: 0 98 13:01:52,6849366 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55287 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40996434, endtime: 40996537, seqnum: 0, connid: 0 98 13:01:52,6849430 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55287 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40996436, endtime: 40996537, seqnum: 0, connid: 0 98 13:01:52,6849510 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55287 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40996439, endtime: 40996537, seqnum: 0, connid: 0 98 13:01:52,6849580 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55287 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40996441, endtime: 40996537, seqnum: 0, connid: 0 98 13:01:52,6849929 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55287 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40996442, endtime: 40996537, seqnum: 0, connid: 0 98 13:01:52,6849990 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55287 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40996444, endtime: 40996537, seqnum: 0, connid: 0 98 13:01:52,6850062 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55287 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40996445, endtime: 40996537, seqnum: 0, connid: 0 98 13:01:52,6850123 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55287 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40996447, endtime: 40996537, seqnum: 0, connid: 0 98 13:01:52,7040939 MCLauncher.exe 6080 Thread Exit SUCCESS Thread ID: 336, User Time: 0.0000000, Kernel Time: 0.0312500 98 13:01:52,7722988 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55287 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40996537, endtime: 40996546, seqnum: 0, connid: 0 98 13:01:53,2229651 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55272 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40992276, endtime: 40996591, seqnum: 0, connid: 0 98 13:01:53,2229814 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55272 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40992343, endtime: 40996591, seqnum: 0, connid: 0 98 13:01:53,2229892 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55272 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40992345, endtime: 40996591, seqnum: 0, connid: 0 98 13:01:53,2229969 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55272 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40992347, endtime: 40996591, seqnum: 0, connid: 0 98 13:01:53,2230030 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55272 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40992351, endtime: 40996591, seqnum: 0, connid: 0 98 13:01:53,2230099 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55272 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40992352, endtime: 40996591, seqnum: 0, connid: 0 98 13:01:53,2230158 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55272 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40992353, endtime: 40996591, seqnum: 0, connid: 0 98 13:01:53,2231047 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55272 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40992356, endtime: 40996591, seqnum: 0, connid: 0 98 13:01:53,2231792 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55272 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40992358, endtime: 40996591, seqnum: 0, connid: 0 98 13:01:53,2231914 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55272 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40992361, endtime: 40996591, seqnum: 0, connid: 0 98 13:01:53,2231983 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55272 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40992362, endtime: 40996591, seqnum: 0, connid: 0 98 13:01:53,2232058 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55272 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40992364, endtime: 40996591, seqnum: 0, connid: 0 98 13:01:53,2232119 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55272 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40992367, endtime: 40996591, seqnum: 0, connid: 0 98 13:01:53,2808695 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55327 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40996488, endtime: 40996597, seqnum: 0, connid: 0 98 13:01:53,2808875 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55327 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40996491, endtime: 40996597, seqnum: 0, connid: 0 98 13:01:53,2808966 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55327 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40996495, endtime: 40996597, seqnum: 0, connid: 0 98 13:01:53,2809052 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55327 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40996497, endtime: 40996597, seqnum: 0, connid: 0 98 13:01:53,2809122 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55327 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40996500, endtime: 40996597, seqnum: 0, connid: 0 98 13:01:53,2809196 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55327 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40996501, endtime: 40996597, seqnum: 0, connid: 0 98 13:01:53,2809260 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55327 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40996504, endtime: 40996597, seqnum: 0, connid: 0 98 13:01:53,2809479 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55290 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40996522, endtime: 40996597, seqnum: 0, connid: 0 98 13:01:53,8513985 MCLauncher.exe 6080 TCP Disconnect WIN-0UOTFKKVN1S:55287 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 0, seqnum: 0, connid: 0 98 13:01:54,0340511 MCLauncher.exe 6080 TCP Disconnect WIN-0UOTFKKVN1S:55272 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 0, seqnum: 0, connid: 0 98 13:01:54,1372472 MCLauncher.exe 6080 TCP Disconnect WIN-0UOTFKKVN1S:55290 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 0, seqnum: 0, connid: 0 98 13:01:54,5833463 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55291 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40994707, endtime: 40996727, seqnum: 0, connid: 0 98 13:01:54,5833629 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55291 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40994709, endtime: 40996727, seqnum: 0, connid: 0 98 13:01:54,5833704 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55291 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40994711, endtime: 40996727, seqnum: 0, connid: 0 98 13:01:54,5833781 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55291 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40994714, endtime: 40996727, seqnum: 0, connid: 0 98 13:01:54,5833839 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55291 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40994716, endtime: 40996727, seqnum: 0, connid: 0 98 13:01:54,5833909 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55291 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40994717, endtime: 40996727, seqnum: 0, connid: 0 98 13:01:54,5833967 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55291 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40994719, endtime: 40996727, seqnum: 0, connid: 0 98 13:01:54,5834033 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55291 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40994724, endtime: 40996727, seqnum: 0, connid: 0 98 13:01:54,5834089 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55291 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40994725, endtime: 40996727, seqnum: 0, connid: 0 98 13:01:54,5834371 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55291 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40994726, endtime: 40996727, seqnum: 0, connid: 0 98 13:01:54,5834432 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55291 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40994728, endtime: 40996727, seqnum: 0, connid: 0 98 13:01:54,5834499 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55291 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40994730, endtime: 40996727, seqnum: 0, connid: 0 98 13:01:54,5834557 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55291 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 5120, startime: 40994733, endtime: 40996727, seqnum: 0, connid: 0 98 13:01:54,8316148 MCLauncher.exe 6080 TCP Disconnect WIN-0UOTFKKVN1S:55327 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 0, seqnum: 0, connid: 0 98 13:01:56,1706910 MCLauncher.exe 6080 TCP Disconnect WIN-0UOTFKKVN1S:55291 -> ns3054486.ip-213-32-6.eu:25565 SUCCESS Length: 0, seqnum: 0, connid: 0 98 13:01:56,5135071 MCLauncher.exe 6080 TCP TCPCopy WIN-0UOTFKKVN1S:54920 -> sheltex.company:8000 SUCCESS Length: 2, seqnum: 0, connid: 0 98 13:01:56,5135173 MCLauncher.exe 6080 TCP Receive WIN-0UOTFKKVN1S:54920 -> sheltex.company:8000 SUCCESS Length: 2, seqnum: 0, connid: 0 98 13:01:56,5137598 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54920 -> sheltex.company:8000 SUCCESS Length: 2, startime: 40996920, endtime: 40996920, seqnum: 0, connid: 0 98 13:02:06,6586529 MCLauncher.exe 6080 TCP TCPCopy WIN-0UOTFKKVN1S:54920 -> sheltex.company:8000 SUCCESS Length: 2, seqnum: 0, connid: 0 98 13:02:06,6586642 MCLauncher.exe 6080 TCP Receive WIN-0UOTFKKVN1S:54920 -> sheltex.company:8000 SUCCESS Length: 2, seqnum: 0, connid: 0 98 13:02:06,6590202 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54920 -> sheltex.company:8000 SUCCESS Length: 2, startime: 40997934, endtime: 40997935, seqnum: 0, connid: 0 98 13:02:16,9505832 MCLauncher.exe 6080 TCP TCPCopy WIN-0UOTFKKVN1S:54920 -> sheltex.company:8000 SUCCESS Length: 2, seqnum: 0, connid: 0 98 13:02:16,9505946 MCLauncher.exe 6080 TCP Receive WIN-0UOTFKKVN1S:54920 -> sheltex.company:8000 SUCCESS Length: 2, seqnum: 0, connid: 0 98 13:02:16,9509819 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54920 -> sheltex.company:8000 SUCCESS Length: 2, startime: 40998964, endtime: 40998964, seqnum: 0, connid: 0 98 13:02:26,9686146 MCLauncher.exe 6080 TCP TCPCopy WIN-0UOTFKKVN1S:54920 -> sheltex.company:8000 SUCCESS Length: 2, seqnum: 0, connid: 0 98 13:02:26,9686268 MCLauncher.exe 6080 TCP Receive WIN-0UOTFKKVN1S:54920 -> sheltex.company:8000 SUCCESS Length: 2, seqnum: 0, connid: 0 98 13:02:26,9689991 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54920 -> sheltex.company:8000 SUCCESS Length: 2, startime: 40999965, endtime: 40999966, seqnum: 0, connid: 0 98 13:02:37,2649252 MCLauncher.exe 6080 TCP TCPCopy WIN-0UOTFKKVN1S:54920 -> sheltex.company:8000 SUCCESS Length: 2, seqnum: 0, connid: 0 98 13:02:37,2649379 MCLauncher.exe 6080 TCP Receive WIN-0UOTFKKVN1S:54920 -> sheltex.company:8000 SUCCESS Length: 2, seqnum: 0, connid: 0 98 13:02:37,2652862 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54920 -> sheltex.company:8000 SUCCESS Length: 2, startime: 41000995, endtime: 41000995, seqnum: 0, connid: 0 98 13:02:47,2490366 MCLauncher.exe 6080 TCP TCPCopy WIN-0UOTFKKVN1S:54920 -> sheltex.company:8000 SUCCESS Length: 2, seqnum: 0, connid: 0 98 13:02:47,2490499 MCLauncher.exe 6080 TCP Receive WIN-0UOTFKKVN1S:54920 -> sheltex.company:8000 SUCCESS Length: 2, seqnum: 0, connid: 0 98 13:02:47,2494605 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54920 -> sheltex.company:8000 SUCCESS Length: 2, startime: 41001994, endtime: 41001994, seqnum: 0, connid: 0 98 13:02:57,5319308 MCLauncher.exe 6080 TCP TCPCopy WIN-0UOTFKKVN1S:54920 -> sheltex.company:8000 SUCCESS Length: 2, seqnum: 0, connid: 0 98 13:02:57,5319416 MCLauncher.exe 6080 TCP Receive WIN-0UOTFKKVN1S:54920 -> sheltex.company:8000 SUCCESS Length: 2, seqnum: 0, connid: 0 98 13:02:57,5333296 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54920 -> sheltex.company:8000 SUCCESS Length: 2, startime: 41003022, endtime: 41003022, seqnum: 0, connid: 0 98 13:03:07,6379415 MCLauncher.exe 6080 TCP TCPCopy WIN-0UOTFKKVN1S:54920 -> sheltex.company:8000 SUCCESS Length: 2, seqnum: 0, connid: 0 98 13:03:07,6379562 MCLauncher.exe 6080 TCP Receive WIN-0UOTFKKVN1S:54920 -> sheltex.company:8000 SUCCESS Length: 2, seqnum: 0, connid: 0 98 13:03:07,6383441 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54920 -> sheltex.company:8000 SUCCESS Length: 2, startime: 41004032, endtime: 41004032, seqnum: 0, connid: 0 98 13:03:17,8130728 MCLauncher.exe 6080 TCP TCPCopy WIN-0UOTFKKVN1S:54920 -> sheltex.company:8000 SUCCESS Length: 2, seqnum: 0, connid: 0 98 13:03:17,8130834 MCLauncher.exe 6080 TCP Receive WIN-0UOTFKKVN1S:54920 -> sheltex.company:8000 SUCCESS Length: 2, seqnum: 0, connid: 0 98 13:03:17,8135502 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54920 -> sheltex.company:8000 SUCCESS Length: 2, startime: 41005050, endtime: 41005050, seqnum: 0, connid: 0 98 13:03:27,9141828 MCLauncher.exe 6080 TCP TCPCopy WIN-0UOTFKKVN1S:54920 -> sheltex.company:8000 SUCCESS Length: 2, seqnum: 0, connid: 0 98 13:03:27,9141941 MCLauncher.exe 6080 TCP Receive WIN-0UOTFKKVN1S:54920 -> sheltex.company:8000 SUCCESS Length: 2, seqnum: 0, connid: 0 98 13:03:27,9145482 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54920 -> sheltex.company:8000 SUCCESS Length: 2, startime: 41006060, endtime: 41006060, seqnum: 0, connid: 0 98 13:03:38,1294711 MCLauncher.exe 6080 TCP TCPCopy WIN-0UOTFKKVN1S:54920 -> sheltex.company:8000 SUCCESS Length: 2, seqnum: 0, connid: 0 98 13:03:38,1294822 MCLauncher.exe 6080 TCP Receive WIN-0UOTFKKVN1S:54920 -> sheltex.company:8000 SUCCESS Length: 2, seqnum: 0, connid: 0 98 13:03:38,1300349 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54920 -> sheltex.company:8000 SUCCESS Length: 2, startime: 41007082, endtime: 41007082, seqnum: 0, connid: 0 98 13:03:48,3771617 MCLauncher.exe 6080 TCP TCPCopy WIN-0UOTFKKVN1S:54920 -> sheltex.company:8000 SUCCESS Length: 2, seqnum: 0, connid: 0 98 13:03:48,3771728 MCLauncher.exe 6080 TCP Receive WIN-0UOTFKKVN1S:54920 -> sheltex.company:8000 SUCCESS Length: 2, seqnum: 0, connid: 0 98 13:03:48,3777593 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54920 -> sheltex.company:8000 SUCCESS Length: 2, startime: 41008106, endtime: 41008106, seqnum: 0, connid: 0 98 13:03:58,5953705 MCLauncher.exe 6080 TCP TCPCopy WIN-0UOTFKKVN1S:54920 -> sheltex.company:8000 SUCCESS Length: 2, seqnum: 0, connid: 0 98 13:03:58,5953819 MCLauncher.exe 6080 TCP Receive WIN-0UOTFKKVN1S:54920 -> sheltex.company:8000 SUCCESS Length: 2, seqnum: 0, connid: 0 98 13:03:58,5961327 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54920 -> sheltex.company:8000 SUCCESS Length: 2, startime: 41009128, endtime: 41009128, seqnum: 0, connid: 0 98 13:04:08,5378437 MCLauncher.exe 6080 TCP TCPCopy WIN-0UOTFKKVN1S:54920 -> sheltex.company:8000 SUCCESS Length: 2, seqnum: 0, connid: 0 98 13:04:08,5378789 MCLauncher.exe 6080 TCP Receive WIN-0UOTFKKVN1S:54920 -> sheltex.company:8000 SUCCESS Length: 2, seqnum: 0, connid: 0 98 13:04:08,5430210 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54920 -> sheltex.company:8000 SUCCESS Length: 2, startime: 41010122, endtime: 41010123, seqnum: 0, connid: 0 98 13:04:18,8540541 MCLauncher.exe 6080 TCP TCPCopy WIN-0UOTFKKVN1S:54920 -> sheltex.company:8000 SUCCESS Length: 2, seqnum: 0, connid: 0 98 13:04:18,8540647 MCLauncher.exe 6080 TCP Receive WIN-0UOTFKKVN1S:54920 -> sheltex.company:8000 SUCCESS Length: 2, seqnum: 0, connid: 0 98 13:04:18,8547986 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54920 -> sheltex.company:8000 SUCCESS Length: 2, startime: 41011154, endtime: 41011154, seqnum: 0, connid: 0 98 13:04:29,0021062 MCLauncher.exe 6080 TCP TCPCopy WIN-0UOTFKKVN1S:54920 -> sheltex.company:8000 SUCCESS Length: 2, seqnum: 0, connid: 0 98 13:04:29,0021179 MCLauncher.exe 6080 TCP Receive WIN-0UOTFKKVN1S:54920 -> sheltex.company:8000 SUCCESS Length: 2, seqnum: 0, connid: 0 98 13:04:29,0034619 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54920 -> sheltex.company:8000 SUCCESS Length: 2, startime: 41012169, endtime: 41012169, seqnum: 0, connid: 0 98 13:04:39,1263445 MCLauncher.exe 6080 TCP TCPCopy WIN-0UOTFKKVN1S:54920 -> sheltex.company:8000 SUCCESS Length: 2, seqnum: 0, connid: 0 98 13:04:39,1263545 MCLauncher.exe 6080 TCP Receive WIN-0UOTFKKVN1S:54920 -> sheltex.company:8000 SUCCESS Length: 2, seqnum: 0, connid: 0 98 13:04:39,1445230 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54920 -> sheltex.company:8000 SUCCESS Length: 2, startime: 41013183, endtime: 41013183, seqnum: 0, connid: 0 98 13:04:49,2751896 MCLauncher.exe 6080 TCP TCPCopy WIN-0UOTFKKVN1S:54920 -> sheltex.company:8000 SUCCESS Length: 2, seqnum: 0, connid: 0 98 13:04:49,2752001 MCLauncher.exe 6080 TCP Receive WIN-0UOTFKKVN1S:54920 -> sheltex.company:8000 SUCCESS Length: 2, seqnum: 0, connid: 0 98 13:04:49,2759717 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54920 -> sheltex.company:8000 SUCCESS Length: 2, startime: 41014196, endtime: 41014196, seqnum: 0, connid: 0 98 13:04:50,3794313 MCLauncher.exe 6080 RegQueryKey HKLM SUCCESS Query: HandleTags, HandleTags: 0x0 98 13:04:50,3795098 MCLauncher.exe 6080 RegQueryKey HKLM SUCCESS Query: Name 98 13:04:50,3795297 MCLauncher.exe 6080 RegOpenKey HKLM\SOFTWARE\WOW6432Node\Microsoft\CTF\KnownClasses NAME NOT FOUND Desired Access: Read 98 13:04:51,1918337 MCLauncher.exe 6080 Thread Create SUCCESS Thread ID: 9340 98 13:04:51,4553491 MCLauncher.exe 6080 TCP Connect WIN-0UOTFKKVN1S:55695 -> fr.cloudtree.ru:https SUCCESS Length: 0, mss: 1460, sackopt: 0, tsopt: 0, wsopt: 0, rcvwin: 64240, rcvwinscale: 0, sndwinscale: 0, seqnum: 0, connid: 0 98 13:04:51,4699661 MCLauncher.exe 6080 TCP Connect WIN-0UOTFKKVN1S:55696 -> fr.cloudtree.ru:https SUCCESS Length: 0, mss: 1460, sackopt: 0, tsopt: 0, wsopt: 0, rcvwin: 64240, rcvwinscale: 0, sndwinscale: 0, seqnum: 0, connid: 0 98 13:04:51,4699924 MCLauncher.exe 6080 TCP Connect WIN-0UOTFKKVN1S:55694 -> fr.cloudtree.ru:https SUCCESS Length: 0, mss: 1460, sackopt: 0, tsopt: 0, wsopt: 0, rcvwin: 64240, rcvwinscale: 0, sndwinscale: 0, seqnum: 0, connid: 0 98 13:04:51,5330110 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55695 -> fr.cloudtree.ru:https SUCCESS Length: 517, startime: 41014422, endtime: 41014422, seqnum: 0, connid: 0 98 13:04:51,5338103 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55696 -> fr.cloudtree.ru:https SUCCESS Length: 517, startime: 41014422, endtime: 41014422, seqnum: 0, connid: 0 98 13:04:51,5342744 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55694 -> fr.cloudtree.ru:https SUCCESS Length: 517, startime: 41014422, endtime: 41014422, seqnum: 0, connid: 0 98 13:04:51,6055537 MCLauncher.exe 6080 TCP TCPCopy WIN-0UOTFKKVN1S:55696 -> fr.cloudtree.ru:https SUCCESS Length: 1306, seqnum: 0, connid: 0 98 13:04:51,6055700 MCLauncher.exe 6080 TCP Receive WIN-0UOTFKKVN1S:55696 -> fr.cloudtree.ru:https SUCCESS Length: 1306, seqnum: 0, connid: 0 98 13:04:51,6062663 MCLauncher.exe 6080 TCP TCPCopy WIN-0UOTFKKVN1S:55696 -> fr.cloudtree.ru:https SUCCESS Length: 1420, seqnum: 0, connid: 0 98 13:04:51,6062726 MCLauncher.exe 6080 TCP Receive WIN-0UOTFKKVN1S:55696 -> fr.cloudtree.ru:https SUCCESS Length: 1420, seqnum: 0, connid: 0 98 13:04:51,6062851 MCLauncher.exe 6080 TCP TCPCopy WIN-0UOTFKKVN1S:55695 -> fr.cloudtree.ru:https SUCCESS Length: 1420, seqnum: 0, connid: 0 98 13:04:51,6062907 MCLauncher.exe 6080 TCP Receive WIN-0UOTFKKVN1S:55695 -> fr.cloudtree.ru:https SUCCESS Length: 1420, seqnum: 0, connid: 0 98 13:04:51,6062981 MCLauncher.exe 6080 TCP TCPCopy WIN-0UOTFKKVN1S:55695 -> fr.cloudtree.ru:https SUCCESS Length: 1192, seqnum: 0, connid: 0 98 13:04:51,6062998 MCLauncher.exe 6080 TCP Receive WIN-0UOTFKKVN1S:55695 -> fr.cloudtree.ru:https SUCCESS Length: 1192, seqnum: 0, connid: 0 98 13:04:51,6064358 MCLauncher.exe 6080 TCP TCPCopy WIN-0UOTFKKVN1S:55696 -> fr.cloudtree.ru:https SUCCESS Length: 512, seqnum: 0, connid: 0 98 13:04:51,6064389 MCLauncher.exe 6080 TCP Receive WIN-0UOTFKKVN1S:55696 -> fr.cloudtree.ru:https SUCCESS Length: 512, seqnum: 0, connid: 0 98 13:04:51,6067531 MCLauncher.exe 6080 TCP TCPCopy WIN-0UOTFKKVN1S:55695 -> fr.cloudtree.ru:https SUCCESS Length: 626, seqnum: 0, connid: 0 98 13:04:51,6067564 MCLauncher.exe 6080 TCP Receive WIN-0UOTFKKVN1S:55695 -> fr.cloudtree.ru:https SUCCESS Length: 626, seqnum: 0, connid: 0 98 13:04:51,6118201 MCLauncher.exe 6080 TCP TCPCopy WIN-0UOTFKKVN1S:55694 -> fr.cloudtree.ru:https SUCCESS Length: 1306, seqnum: 0, connid: 0 98 13:04:51,6118293 MCLauncher.exe 6080 TCP Receive WIN-0UOTFKKVN1S:55694 -> fr.cloudtree.ru:https SUCCESS Length: 1306, seqnum: 0, connid: 0 98 13:04:51,6178231 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55696 -> fr.cloudtree.ru:https SUCCESS Length: 158, startime: 41014430, endtime: 41014430, seqnum: 0, connid: 0 98 13:04:51,6184811 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55695 -> fr.cloudtree.ru:https SUCCESS Length: 158, startime: 41014430, endtime: 41014430, seqnum: 0, connid: 0 98 13:04:51,6209004 MCLauncher.exe 6080 TCP TCPCopy WIN-0UOTFKKVN1S:55694 -> fr.cloudtree.ru:https SUCCESS Length: 1306, seqnum: 0, connid: 0 98 13:04:51,6209106 MCLauncher.exe 6080 TCP Receive WIN-0UOTFKKVN1S:55694 -> fr.cloudtree.ru:https SUCCESS Length: 1306, seqnum: 0, connid: 0 98 13:04:51,6214462 MCLauncher.exe 6080 TCP TCPCopy WIN-0UOTFKKVN1S:55694 -> fr.cloudtree.ru:https SUCCESS Length: 626, seqnum: 0, connid: 0 98 13:04:51,6214512 MCLauncher.exe 6080 TCP Receive WIN-0UOTFKKVN1S:55694 -> fr.cloudtree.ru:https SUCCESS Length: 626, seqnum: 0, connid: 0 98 13:04:51,6252912 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55694 -> fr.cloudtree.ru:https SUCCESS Length: 158, startime: 41014431, endtime: 41014431, seqnum: 0, connid: 0 98 13:04:51,6898383 MCLauncher.exe 6080 TCP TCPCopy WIN-0UOTFKKVN1S:55695 -> fr.cloudtree.ru:https SUCCESS Length: 51, seqnum: 0, connid: 0 98 13:04:51,6898499 MCLauncher.exe 6080 TCP Receive WIN-0UOTFKKVN1S:55695 -> fr.cloudtree.ru:https SUCCESS Length: 51, seqnum: 0, connid: 0 98 13:04:51,7034129 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55695 -> fr.cloudtree.ru:https SUCCESS Length: 291, startime: 41014438, endtime: 41014439, seqnum: 0, connid: 0 98 13:04:51,7178572 MCLauncher.exe 6080 TCP TCPCopy WIN-0UOTFKKVN1S:55696 -> fr.cloudtree.ru:https SUCCESS Length: 51, seqnum: 0, connid: 0 98 13:04:51,7178694 MCLauncher.exe 6080 TCP Receive WIN-0UOTFKKVN1S:55696 -> fr.cloudtree.ru:https SUCCESS Length: 51, seqnum: 0, connid: 0 98 13:04:51,7192921 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55696 -> fr.cloudtree.ru:https SUCCESS Length: 292, startime: 41014440, endtime: 41014441, seqnum: 0, connid: 0 98 13:04:51,7440499 MCLauncher.exe 6080 TCP TCPCopy WIN-0UOTFKKVN1S:55694 -> fr.cloudtree.ru:https SUCCESS Length: 51, seqnum: 0, connid: 0 98 13:04:51,7440615 MCLauncher.exe 6080 TCP Receive WIN-0UOTFKKVN1S:55694 -> fr.cloudtree.ru:https SUCCESS Length: 51, seqnum: 0, connid: 0 98 13:04:51,7941372 MCLauncher.exe 6080 TCP TCPCopy WIN-0UOTFKKVN1S:55695 -> fr.cloudtree.ru:https SUCCESS Length: 539, seqnum: 0, connid: 0 98 13:04:51,7941493 MCLauncher.exe 6080 TCP Receive WIN-0UOTFKKVN1S:55695 -> fr.cloudtree.ru:https SUCCESS Length: 539, seqnum: 0, connid: 0 98 13:04:51,7948630 MCLauncher.exe 6080 TCP TCPCopy WIN-0UOTFKKVN1S:55696 -> fr.cloudtree.ru:https SUCCESS Length: 481, seqnum: 0, connid: 0 98 13:04:51,7948727 MCLauncher.exe 6080 TCP Receive WIN-0UOTFKKVN1S:55696 -> fr.cloudtree.ru:https SUCCESS Length: 481, seqnum: 0, connid: 0 98 13:04:59,4254684 MCLauncher.exe 6080 TCP TCPCopy WIN-0UOTFKKVN1S:54920 -> sheltex.company:8000 SUCCESS Length: 2, seqnum: 0, connid: 0 98 13:04:59,4254839 MCLauncher.exe 6080 TCP Receive WIN-0UOTFKKVN1S:54920 -> sheltex.company:8000 SUCCESS Length: 2, seqnum: 0, connid: 0 98 13:04:59,4262112 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54920 -> sheltex.company:8000 SUCCESS Length: 2, startime: 41015211, endtime: 41015211, seqnum: 0, connid: 0 98 13:05:09,5721596 MCLauncher.exe 6080 TCP TCPCopy WIN-0UOTFKKVN1S:54920 -> sheltex.company:8000 SUCCESS Length: 2, seqnum: 0, connid: 0 98 13:05:09,5721743 MCLauncher.exe 6080 TCP Receive WIN-0UOTFKKVN1S:54920 -> sheltex.company:8000 SUCCESS Length: 2, seqnum: 0, connid: 0 98 13:05:09,5729819 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54920 -> sheltex.company:8000 SUCCESS Length: 2, startime: 41016226, endtime: 41016226, seqnum: 0, connid: 0 98 13:05:19,7943375 MCLauncher.exe 6080 TCP TCPCopy WIN-0UOTFKKVN1S:54920 -> sheltex.company:8000 SUCCESS Length: 2, seqnum: 0, connid: 0 98 13:05:19,7943580 MCLauncher.exe 6080 TCP Receive WIN-0UOTFKKVN1S:54920 -> sheltex.company:8000 SUCCESS Length: 2, seqnum: 0, connid: 0 98 13:05:19,7955180 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54920 -> sheltex.company:8000 SUCCESS Length: 2, startime: 41017248, endtime: 41017248, seqnum: 0, connid: 0 98 13:05:21,3603361 MCLauncher.exe 6080 Thread Create SUCCESS Thread ID: 2896 98 13:05:21,4229873 MCLauncher.exe 6080 Thread Exit SUCCESS Thread ID: 9340, User Time: 0.0000000, Kernel Time: 0.0000000 98 13:05:29,8180795 MCLauncher.exe 6080 TCP TCPCopy WIN-0UOTFKKVN1S:54920 -> sheltex.company:8000 SUCCESS Length: 2, seqnum: 0, connid: 0 98 13:05:29,8180925 MCLauncher.exe 6080 TCP Receive WIN-0UOTFKKVN1S:54920 -> sheltex.company:8000 SUCCESS Length: 2, seqnum: 0, connid: 0 98 13:05:29,8187181 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54920 -> sheltex.company:8000 SUCCESS Length: 2, startime: 41018250, endtime: 41018250, seqnum: 0, connid: 0 98 13:05:31,7721951 MCLauncher.exe 6080 TCP TCPCopy WIN-0UOTFKKVN1S:55695 -> fr.cloudtree.ru:https SUCCESS Length: 31, seqnum: 0, connid: 0 98 13:05:31,7722104 MCLauncher.exe 6080 TCP Receive WIN-0UOTFKKVN1S:55695 -> fr.cloudtree.ru:https SUCCESS Length: 31, seqnum: 0, connid: 0 98 13:05:31,7994721 MCLauncher.exe 6080 TCP TCPCopy WIN-0UOTFKKVN1S:55696 -> fr.cloudtree.ru:https SUCCESS Length: 31, seqnum: 0, connid: 0 98 13:05:31,7994838 MCLauncher.exe 6080 TCP Receive WIN-0UOTFKKVN1S:55696 -> fr.cloudtree.ru:https SUCCESS Length: 31, seqnum: 0, connid: 0 98 13:05:31,8070599 MCLauncher.exe 6080 TCP Disconnect WIN-0UOTFKKVN1S:55695 -> fr.cloudtree.ru:https SUCCESS Length: 0, seqnum: 0, connid: 0 98 13:05:31,8074719 MCLauncher.exe 6080 TCP Disconnect WIN-0UOTFKKVN1S:55696 -> fr.cloudtree.ru:https SUCCESS Length: 0, seqnum: 0, connid: 0 98 13:05:39,9835845 MCLauncher.exe 6080 TCP TCPCopy WIN-0UOTFKKVN1S:54920 -> sheltex.company:8000 SUCCESS Length: 2, seqnum: 0, connid: 0 98 13:05:39,9835967 MCLauncher.exe 6080 TCP Receive WIN-0UOTFKKVN1S:54920 -> sheltex.company:8000 SUCCESS Length: 2, seqnum: 0, connid: 0 98 13:05:39,9844076 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54920 -> sheltex.company:8000 SUCCESS Length: 2, startime: 41019267, endtime: 41019267, seqnum: 0, connid: 0 98 13:05:50,2659262 MCLauncher.exe 6080 TCP TCPCopy WIN-0UOTFKKVN1S:54920 -> sheltex.company:8000 SUCCESS Length: 2, seqnum: 0, connid: 0 98 13:05:50,2659378 MCLauncher.exe 6080 TCP Receive WIN-0UOTFKKVN1S:54920 -> sheltex.company:8000 SUCCESS Length: 2, seqnum: 0, connid: 0 98 13:05:50,2716147 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54920 -> sheltex.company:8000 SUCCESS Length: 2, startime: 41020295, endtime: 41020296, seqnum: 0, connid: 0 98 13:05:51,5493662 MCLauncher.exe 6080 TCP TCPCopy WIN-0UOTFKKVN1S:55694 -> fr.cloudtree.ru:https SUCCESS Length: 31, seqnum: 0, connid: 0 98 13:05:51,5493809 MCLauncher.exe 6080 TCP Receive WIN-0UOTFKKVN1S:55694 -> fr.cloudtree.ru:https SUCCESS Length: 31, seqnum: 0, connid: 0 98 13:05:51,5500242 MCLauncher.exe 6080 TCP Disconnect WIN-0UOTFKKVN1S:55694 -> fr.cloudtree.ru:https SUCCESS Length: 0, seqnum: 0, connid: 0 98 13:05:53,4288399 MCLauncher.exe 6080 TCP TCPCopy WIN-0UOTFKKVN1S:54920 -> sheltex.company:8000 SUCCESS Length: 58, seqnum: 0, connid: 0 98 13:05:53,4288512 MCLauncher.exe 6080 TCP Receive WIN-0UOTFKKVN1S:54920 -> sheltex.company:8000 SUCCESS Length: 58, seqnum: 0, connid: 0 98 13:05:53,4296494 MCLauncher.exe 6080 Thread Create SUCCESS Thread ID: 7656 98 13:05:53,4299533 MCLauncher.exe 6080 Thread Create SUCCESS Thread ID: 5856 98 13:05:53,4305692 MCLauncher.exe 6080 Thread Create SUCCESS Thread ID: 11044 98 13:05:53,5213605 MCLauncher.exe 6080 TCP Connect WIN-0UOTFKKVN1S:55798 -> 54.36.38.171:25565 SUCCESS Length: 0, mss: 1460, sackopt: 0, tsopt: 0, wsopt: 0, rcvwin: 64240, rcvwinscale: 0, sndwinscale: 0, seqnum: 0, connid: 0 98 13:05:53,5213996 MCLauncher.exe 6080 TCP Connect WIN-0UOTFKKVN1S:55797 -> 54.36.38.171:25565 SUCCESS Length: 0, mss: 1460, sackopt: 0, tsopt: 0, wsopt: 0, rcvwin: 64240, rcvwinscale: 0, sndwinscale: 0, seqnum: 0, connid: 0 98 13:05:53,5214226 MCLauncher.exe 6080 TCP Connect WIN-0UOTFKKVN1S:55796 -> 54.36.38.171:25565 SUCCESS Length: 0, mss: 1460, sackopt: 0, tsopt: 0, wsopt: 0, rcvwin: 64240, rcvwinscale: 0, sndwinscale: 0, seqnum: 0, connid: 0 98 13:05:53,5221213 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55798 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41020621, endtime: 41020621, seqnum: 0, connid: 0 98 13:05:53,5223349 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55797 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41020621, endtime: 41020621, seqnum: 0, connid: 0 98 13:05:53,5226549 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55796 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41020621, endtime: 41020621, seqnum: 0, connid: 0 98 13:05:53,5316911 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55796 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41020622, endtime: 41020622, seqnum: 0, connid: 0 98 13:05:53,5317149 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55797 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41020622, endtime: 41020622, seqnum: 0, connid: 0 98 13:05:53,5320352 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55798 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41020622, endtime: 41020622, seqnum: 0, connid: 0 98 13:05:53,5484353 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55798 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41020623, endtime: 41020623, seqnum: 0, connid: 0 98 13:05:53,5484607 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55797 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41020623, endtime: 41020623, seqnum: 0, connid: 0 98 13:05:53,5488223 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55796 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41020623, endtime: 41020623, seqnum: 0, connid: 0 98 13:05:53,5635110 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55796 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41020625, endtime: 41020625, seqnum: 0, connid: 0 98 13:05:53,5635390 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55797 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41020625, endtime: 41020625, seqnum: 0, connid: 0 98 13:05:53,5635670 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55798 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41020625, endtime: 41020625, seqnum: 0, connid: 0 98 13:05:53,5798703 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55798 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41020627, endtime: 41020627, seqnum: 0, connid: 0 98 13:05:53,5798941 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55797 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41020627, endtime: 41020627, seqnum: 0, connid: 0 98 13:05:53,5802992 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55796 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41020627, endtime: 41020627, seqnum: 0, connid: 0 98 13:05:53,5944266 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55796 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41020628, endtime: 41020628, seqnum: 0, connid: 0 98 13:05:53,5944584 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55797 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41020628, endtime: 41020628, seqnum: 0, connid: 0 98 13:05:53,5948895 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55798 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41020628, endtime: 41020628, seqnum: 0, connid: 0 98 13:05:53,6108371 MCLauncher.exe 6080 RegOpenKey HKLM\Software\WOW6432Node\Policies\Microsoft\MUI\Settings REPARSE Desired Access: Read 98 13:05:53,6108601 MCLauncher.exe 6080 RegOpenKey HKLM\SOFTWARE\Policies\Microsoft\MUI\Settings NAME NOT FOUND Desired Access: Read 98 13:05:53,6108909 MCLauncher.exe 6080 RegOpenKey HKCU SUCCESS Desired Access: Maximum Allowed, Granted Access: All Access 98 13:05:53,6109161 MCLauncher.exe 6080 RegQueryKey HKCU SUCCESS Query: HandleTags, HandleTags: 0x0 98 13:05:53,6109305 MCLauncher.exe 6080 RegQueryKey HKCU SUCCESS Query: Name 98 13:05:53,6109413 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Policies\Microsoft\Control Panel\Desktop NAME NOT FOUND Desired Access: Read 98 13:05:53,6109621 MCLauncher.exe 6080 RegQueryKey HKCU SUCCESS Query: HandleTags, HandleTags: 0x0 98 13:05:53,6109699 MCLauncher.exe 6080 RegQueryKey HKCU SUCCESS Query: Name 98 13:05:53,6109779 MCLauncher.exe 6080 RegOpenKey HKCU\Control Panel\Desktop SUCCESS Desired Access: Read 98 13:05:53,6109937 MCLauncher.exe 6080 RegSetInfoKey HKCU\Control Panel\Desktop SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 98 13:05:53,6110020 MCLauncher.exe 6080 RegQueryValue HKCU\Control Panel\Desktop\PreferredUILanguages NAME NOT FOUND Length: 12 98 13:05:53,6110289 MCLauncher.exe 6080 RegCloseKey HKCU\Control Panel\Desktop SUCCESS 98 13:05:53,6110344 MCLauncher.exe 6080 RegCloseKey HKCU SUCCESS 98 13:05:53,6110477 MCLauncher.exe 6080 RegOpenKey HKLM\Software\WOW6432Node\Policies\Microsoft\MUI\Settings REPARSE Desired Access: Read 98 13:05:53,6110557 MCLauncher.exe 6080 RegOpenKey HKLM\SOFTWARE\Policies\Microsoft\MUI\Settings NAME NOT FOUND Desired Access: Read 98 13:05:53,6110718 MCLauncher.exe 6080 RegOpenKey HKCU SUCCESS Desired Access: Maximum Allowed, Granted Access: All Access 98 13:05:53,6110857 MCLauncher.exe 6080 RegQueryKey HKCU SUCCESS Query: HandleTags, HandleTags: 0x0 98 13:05:53,6110934 MCLauncher.exe 6080 RegQueryKey HKCU SUCCESS Query: Name 98 13:05:53,6111012 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Policies\Microsoft\Control Panel\Desktop NAME NOT FOUND Desired Access: Read 98 13:05:53,6111145 MCLauncher.exe 6080 RegQueryKey HKCU SUCCESS Query: HandleTags, HandleTags: 0x0 98 13:05:53,6111217 MCLauncher.exe 6080 RegQueryKey HKCU SUCCESS Query: Name 98 13:05:53,6111289 MCLauncher.exe 6080 RegOpenKey HKCU\Control Panel\Desktop\LanguageConfiguration SUCCESS Desired Access: Read 98 13:05:53,6111563 MCLauncher.exe 6080 RegSetInfoKey HKCU\Control Panel\Desktop\LanguageConfiguration SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 98 13:05:53,6111624 MCLauncher.exe 6080 RegEnumValue HKCU\Control Panel\Desktop\LanguageConfiguration NO MORE ENTRIES Index: 0, Length: 512 98 13:05:53,6111696 MCLauncher.exe 6080 RegCloseKey HKCU\Control Panel\Desktop\LanguageConfiguration SUCCESS 98 13:05:53,6111771 MCLauncher.exe 6080 RegCloseKey HKCU SUCCESS 98 13:05:53,6113480 MCLauncher.exe 6080 TCP Disconnect WIN-0UOTFKKVN1S:55798 -> 54.36.38.171:25565 SUCCESS Length: 0, seqnum: 0, connid: 0 98 13:05:53,6118490 MCLauncher.exe 6080 RegOpenKey HKLM\Software\WOW6432Node\Policies\Microsoft\MUI\Settings REPARSE Desired Access: Read 98 13:05:53,6118620 MCLauncher.exe 6080 RegOpenKey HKLM\SOFTWARE\Policies\Microsoft\MUI\Settings NAME NOT FOUND Desired Access: Read 98 13:05:53,6118819 MCLauncher.exe 6080 RegOpenKey HKCU SUCCESS Desired Access: Maximum Allowed, Granted Access: All Access 98 13:05:53,6118988 MCLauncher.exe 6080 RegQueryKey HKCU SUCCESS Query: HandleTags, HandleTags: 0x0 98 13:05:53,6119085 MCLauncher.exe 6080 RegQueryKey HKCU SUCCESS Query: Name 98 13:05:53,6119174 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Policies\Microsoft\Control Panel\Desktop NAME NOT FOUND Desired Access: Read 98 13:05:53,6119332 MCLauncher.exe 6080 RegQueryKey HKCU SUCCESS Query: HandleTags, HandleTags: 0x0 98 13:05:53,6119404 MCLauncher.exe 6080 RegQueryKey HKCU SUCCESS Query: Name 98 13:05:53,6119481 MCLauncher.exe 6080 RegOpenKey HKCU\Control Panel\Desktop SUCCESS Desired Access: Read 98 13:05:53,6119598 MCLauncher.exe 6080 RegSetInfoKey HKCU\Control Panel\Desktop SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 98 13:05:53,6120085 MCLauncher.exe 6080 RegQueryValue HKCU\Control Panel\Desktop\PreferredUILanguages NAME NOT FOUND Length: 12 98 13:05:53,6120302 MCLauncher.exe 6080 RegCloseKey HKCU\Control Panel\Desktop SUCCESS 98 13:05:53,6120351 MCLauncher.exe 6080 RegCloseKey HKCU SUCCESS 98 13:05:53,6120479 MCLauncher.exe 6080 RegOpenKey HKLM\Software\WOW6432Node\Policies\Microsoft\MUI\Settings REPARSE Desired Access: Read 98 13:05:53,6120556 MCLauncher.exe 6080 RegOpenKey HKLM\SOFTWARE\Policies\Microsoft\MUI\Settings NAME NOT FOUND Desired Access: Read 98 13:05:53,6120717 MCLauncher.exe 6080 RegOpenKey HKCU SUCCESS Desired Access: Maximum Allowed, Granted Access: All Access 98 13:05:53,6120858 MCLauncher.exe 6080 RegQueryKey HKCU SUCCESS Query: HandleTags, HandleTags: 0x0 98 13:05:53,6120936 MCLauncher.exe 6080 RegQueryKey HKCU SUCCESS Query: Name 98 13:05:53,6121559 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Policies\Microsoft\Control Panel\Desktop NAME NOT FOUND Desired Access: Read 98 13:05:53,6121726 MCLauncher.exe 6080 RegQueryKey HKCU SUCCESS Query: HandleTags, HandleTags: 0x0 98 13:05:53,6121817 MCLauncher.exe 6080 RegQueryKey HKCU SUCCESS Query: Name 98 13:05:53,6121892 MCLauncher.exe 6080 RegOpenKey HKCU\Control Panel\Desktop\LanguageConfiguration SUCCESS Desired Access: Read 98 13:05:53,6122014 MCLauncher.exe 6080 RegSetInfoKey HKCU\Control Panel\Desktop\LanguageConfiguration SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 98 13:05:53,6122075 MCLauncher.exe 6080 RegEnumValue HKCU\Control Panel\Desktop\LanguageConfiguration NO MORE ENTRIES Index: 0, Length: 512 98 13:05:53,6122144 MCLauncher.exe 6080 RegCloseKey HKCU\Control Panel\Desktop\LanguageConfiguration SUCCESS 98 13:05:53,6122188 MCLauncher.exe 6080 RegCloseKey HKCU SUCCESS 98 13:05:53,6122731 MCLauncher.exe 6080 TCP Disconnect WIN-0UOTFKKVN1S:55796 -> 54.36.38.171:25565 SUCCESS Length: 0, seqnum: 0, connid: 0 98 13:05:53,6408825 MCLauncher.exe 6080 RegOpenKey HKLM\Software\WOW6432Node\Policies\Microsoft\MUI\Settings REPARSE Desired Access: Read 98 13:05:53,6409049 MCLauncher.exe 6080 RegOpenKey HKLM\SOFTWARE\Policies\Microsoft\MUI\Settings NAME NOT FOUND Desired Access: Read 98 13:05:53,6409326 MCLauncher.exe 6080 RegOpenKey HKCU SUCCESS Desired Access: Maximum Allowed, Granted Access: All Access 98 13:05:53,6409559 MCLauncher.exe 6080 RegQueryKey HKCU SUCCESS Query: HandleTags, HandleTags: 0x0 98 13:05:53,6409656 MCLauncher.exe 6080 RegQueryKey HKCU SUCCESS Query: Name 98 13:05:53,6409747 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Policies\Microsoft\Control Panel\Desktop NAME NOT FOUND Desired Access: Read 98 13:05:53,6409922 MCLauncher.exe 6080 RegQueryKey HKCU SUCCESS Query: HandleTags, HandleTags: 0x0 98 13:05:53,6409997 MCLauncher.exe 6080 RegQueryKey HKCU SUCCESS Query: Name 98 13:05:53,6410072 MCLauncher.exe 6080 RegOpenKey HKCU\Control Panel\Desktop SUCCESS Desired Access: Read 98 13:05:53,6410213 MCLauncher.exe 6080 RegSetInfoKey HKCU\Control Panel\Desktop SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 98 13:05:53,6410277 MCLauncher.exe 6080 RegQueryValue HKCU\Control Panel\Desktop\PreferredUILanguages NAME NOT FOUND Length: 12 98 13:05:53,6410501 MCLauncher.exe 6080 RegCloseKey HKCU\Control Panel\Desktop SUCCESS 98 13:05:53,6410554 MCLauncher.exe 6080 RegCloseKey HKCU SUCCESS 98 13:05:53,6410673 MCLauncher.exe 6080 RegOpenKey HKLM\Software\WOW6432Node\Policies\Microsoft\MUI\Settings REPARSE Desired Access: Read 98 13:05:53,6410748 MCLauncher.exe 6080 RegOpenKey HKLM\SOFTWARE\Policies\Microsoft\MUI\Settings NAME NOT FOUND Desired Access: Read 98 13:05:53,6410897 MCLauncher.exe 6080 RegOpenKey HKCU SUCCESS Desired Access: Maximum Allowed, Granted Access: All Access 98 13:05:53,6411033 MCLauncher.exe 6080 RegQueryKey HKCU SUCCESS Query: HandleTags, HandleTags: 0x0 98 13:05:53,6411108 MCLauncher.exe 6080 RegQueryKey HKCU SUCCESS Query: Name 98 13:05:53,6411183 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Policies\Microsoft\Control Panel\Desktop NAME NOT FOUND Desired Access: Read 98 13:05:53,6411313 MCLauncher.exe 6080 RegQueryKey HKCU SUCCESS Query: HandleTags, HandleTags: 0x0 98 13:05:53,6411382 MCLauncher.exe 6080 RegQueryKey HKCU SUCCESS Query: Name 98 13:05:53,6411462 MCLauncher.exe 6080 RegOpenKey HKCU\Control Panel\Desktop\LanguageConfiguration SUCCESS Desired Access: Read 98 13:05:53,6411590 MCLauncher.exe 6080 RegSetInfoKey HKCU\Control Panel\Desktop\LanguageConfiguration SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 98 13:05:53,6411648 MCLauncher.exe 6080 RegEnumValue HKCU\Control Panel\Desktop\LanguageConfiguration NO MORE ENTRIES Index: 0, Length: 512 98 13:05:53,6411709 MCLauncher.exe 6080 RegCloseKey HKCU\Control Panel\Desktop\LanguageConfiguration SUCCESS 98 13:05:53,6411753 MCLauncher.exe 6080 RegCloseKey HKCU SUCCESS 98 13:05:53,6412562 MCLauncher.exe 6080 TCP Disconnect WIN-0UOTFKKVN1S:55797 -> 54.36.38.171:25565 SUCCESS Length: 0, seqnum: 0, connid: 0 98 13:05:53,6989299 MCLauncher.exe 6080 TCP Connect WIN-0UOTFKKVN1S:55799 -> 54.36.38.171:25565 SUCCESS Length: 0, mss: 1460, sackopt: 0, tsopt: 0, wsopt: 0, rcvwin: 64240, rcvwinscale: 0, sndwinscale: 0, seqnum: 0, connid: 0 98 13:05:53,6994122 MCLauncher.exe 6080 TCP Connect WIN-0UOTFKKVN1S:55800 -> 54.36.38.171:25565 SUCCESS Length: 0, mss: 1460, sackopt: 0, tsopt: 0, wsopt: 0, rcvwin: 64240, rcvwinscale: 0, sndwinscale: 0, seqnum: 0, connid: 0 98 13:05:53,6996261 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55799 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41020638, endtime: 41020639, seqnum: 0, connid: 0 98 13:05:53,6998641 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55800 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41020639, endtime: 41020639, seqnum: 0, connid: 0 98 13:05:53,7359166 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55800 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41020642, endtime: 41020642, seqnum: 0, connid: 0 98 13:05:53,7359385 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55799 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41020642, endtime: 41020642, seqnum: 0, connid: 0 98 13:05:53,7654297 MCLauncher.exe 6080 TCP Connect WIN-0UOTFKKVN1S:55801 -> 54.36.38.171:25565 SUCCESS Length: 0, mss: 1460, sackopt: 0, tsopt: 0, wsopt: 0, rcvwin: 64240, rcvwinscale: 0, sndwinscale: 0, seqnum: 0, connid: 0 98 13:05:53,7659395 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55801 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41020645, endtime: 41020645, seqnum: 0, connid: 0 98 13:05:53,7672957 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55799 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41020645, endtime: 41020645, seqnum: 0, connid: 0 98 13:05:53,7673311 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55800 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41020645, endtime: 41020645, seqnum: 0, connid: 0 98 13:05:53,7818957 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55801 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41020647, endtime: 41020647, seqnum: 0, connid: 0 98 13:05:53,7831045 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55800 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41020647, endtime: 41020647, seqnum: 0, connid: 0 98 13:05:53,7831355 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55799 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41020647, endtime: 41020647, seqnum: 0, connid: 0 98 13:05:53,8001579 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55801 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41020649, endtime: 41020649, seqnum: 0, connid: 0 98 13:05:53,8015695 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55799 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41020649, endtime: 41020649, seqnum: 0, connid: 0 98 13:05:53,8016046 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55800 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41020649, endtime: 41020649, seqnum: 0, connid: 0 98 13:05:53,8300045 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55801 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41020652, endtime: 41020652, seqnum: 0, connid: 0 98 13:05:53,8341014 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55800 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41020652, endtime: 41020652, seqnum: 0, connid: 0 98 13:05:53,8341346 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55799 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41020652, endtime: 41020652, seqnum: 0, connid: 0 98 13:05:53,8610465 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55799 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41020655, endtime: 41020655, seqnum: 0, connid: 0 98 13:05:53,8610725 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55800 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41020655, endtime: 41020655, seqnum: 0, connid: 0 98 13:05:53,8614557 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55801 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41020655, endtime: 41020655, seqnum: 0, connid: 0 98 13:05:53,8767240 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55801 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41020656, endtime: 41020656, seqnum: 0, connid: 0 98 13:05:53,8767486 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55800 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41020656, endtime: 41020656, seqnum: 0, connid: 0 98 13:05:53,8767603 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55799 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41020656, endtime: 41020656, seqnum: 0, connid: 0 98 13:05:53,9102802 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55799 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41020660, endtime: 41020660, seqnum: 0, connid: 0 98 13:05:53,9103034 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55800 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41020660, endtime: 41020660, seqnum: 0, connid: 0 98 13:05:53,9106636 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55801 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41020660, endtime: 41020660, seqnum: 0, connid: 0 98 13:05:53,9227236 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55801 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41020661, endtime: 41020661, seqnum: 0, connid: 0 98 13:05:53,9227491 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55800 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41020661, endtime: 41020661, seqnum: 0, connid: 0 98 13:05:53,9230854 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55799 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41020661, endtime: 41020661, seqnum: 0, connid: 0 98 13:05:53,9381609 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55799 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41020662, endtime: 41020662, seqnum: 0, connid: 0 98 13:05:53,9381825 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55800 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41020662, endtime: 41020662, seqnum: 0, connid: 0 98 13:05:53,9381938 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55801 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41020662, endtime: 41020662, seqnum: 0, connid: 0 98 13:05:53,9551034 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55801 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41020664, endtime: 41020664, seqnum: 0, connid: 0 98 13:05:53,9551350 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55800 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41020664, endtime: 41020664, seqnum: 0, connid: 0 98 13:05:53,9555353 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55799 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41020664, endtime: 41020664, seqnum: 0, connid: 0 98 13:05:53,9859037 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55799 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41020667, endtime: 41020667, seqnum: 0, connid: 0 98 13:05:53,9864916 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55800 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41020667, endtime: 41020667, seqnum: 0, connid: 0 98 13:05:53,9865146 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55801 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41020667, endtime: 41020667, seqnum: 0, connid: 0 98 13:05:54,0029116 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55801 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41020669, endtime: 41020669, seqnum: 0, connid: 0 98 13:05:54,0029446 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55800 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41020669, endtime: 41020669, seqnum: 0, connid: 0 98 13:05:54,0032790 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55799 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41020669, endtime: 41020669, seqnum: 0, connid: 0 98 13:05:54,0250897 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55799 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41020670, endtime: 41020671, seqnum: 0, connid: 0 98 13:05:54,0251157 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55800 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41020670, endtime: 41020671, seqnum: 0, connid: 0 98 13:05:54,0254742 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55801 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41020670, endtime: 41020671, seqnum: 0, connid: 0 98 13:05:54,0492035 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55801 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41020673, endtime: 41020674, seqnum: 0, connid: 0 98 13:05:54,0492276 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55800 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41020673, endtime: 41020674, seqnum: 0, connid: 0 98 13:05:54,0492396 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55799 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41020673, endtime: 41020674, seqnum: 0, connid: 0 98 13:05:54,0548998 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55799 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41020674, endtime: 41020674, seqnum: 0, connid: 0 98 13:05:54,0549203 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55800 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41020674, endtime: 41020674, seqnum: 0, connid: 0 98 13:05:54,0549319 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55801 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41020674, endtime: 41020674, seqnum: 0, connid: 0 98 13:05:54,0806234 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55801 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41020676, endtime: 41020677, seqnum: 0, connid: 0 98 13:05:54,0806547 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55800 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41020676, endtime: 41020677, seqnum: 0, connid: 0 98 13:05:54,0806660 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55799 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41020676, endtime: 41020677, seqnum: 0, connid: 0 98 13:05:54,1155770 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55799 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41020680, endtime: 41020680, seqnum: 0, connid: 0 98 13:05:54,1156000 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55800 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41020680, endtime: 41020680, seqnum: 0, connid: 0 98 13:05:54,1156122 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55801 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41020680, endtime: 41020680, seqnum: 0, connid: 0 98 13:05:54,1253233 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55801 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41020681, endtime: 41020681, seqnum: 0, connid: 0 98 13:05:54,1253485 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55800 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41020681, endtime: 41020681, seqnum: 0, connid: 0 98 13:05:54,1256995 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55799 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41020681, endtime: 41020681, seqnum: 0, connid: 0 98 13:05:54,1422082 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55799 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41020683, endtime: 41020683, seqnum: 0, connid: 0 98 13:05:54,1422329 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55800 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41020683, endtime: 41020683, seqnum: 0, connid: 0 98 13:05:54,1426049 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55801 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41020683, endtime: 41020683, seqnum: 0, connid: 0 98 13:05:54,1748246 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55801 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41020686, endtime: 41020686, seqnum: 0, connid: 0 98 13:05:54,1748498 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55800 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41020686, endtime: 41020686, seqnum: 0, connid: 0 98 13:05:54,1752117 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55799 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41020686, endtime: 41020686, seqnum: 0, connid: 0 98 13:05:54,2141278 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55799 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41020689, endtime: 41020690, seqnum: 0, connid: 0 98 13:05:54,2141522 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55800 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41020689, endtime: 41020690, seqnum: 0, connid: 0 98 13:05:54,2144913 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55801 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41020689, endtime: 41020690, seqnum: 0, connid: 0 98 13:05:54,2359737 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55801 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41020692, endtime: 41020692, seqnum: 0, connid: 0 98 13:05:54,2360014 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55800 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41020692, endtime: 41020692, seqnum: 0, connid: 0 98 13:05:54,2363632 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55799 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41020692, endtime: 41020692, seqnum: 0, connid: 0 98 13:05:54,2674281 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55799 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41020695, endtime: 41020695, seqnum: 0, connid: 0 98 13:05:54,2693598 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55800 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41020695, endtime: 41020696, seqnum: 0, connid: 0 98 13:05:54,2693955 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55801 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41020695, endtime: 41020696, seqnum: 0, connid: 0 98 13:05:54,2996927 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55801 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41020698, endtime: 41020699, seqnum: 0, connid: 0 98 13:05:54,2997151 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55800 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41020698, endtime: 41020699, seqnum: 0, connid: 0 98 13:05:54,2997265 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55799 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41020698, endtime: 41020699, seqnum: 0, connid: 0 98 13:05:54,3142650 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55799 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41020700, endtime: 41020700, seqnum: 0, connid: 0 98 13:05:54,3146266 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55800 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41020700, endtime: 41020700, seqnum: 0, connid: 0 98 13:05:54,3146457 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55801 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41020700, endtime: 41020700, seqnum: 0, connid: 0 98 13:05:54,3201727 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55800 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41020701, endtime: 41020701, seqnum: 0, connid: 0 98 13:05:54,3205193 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55799 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41020701, endtime: 41020701, seqnum: 0, connid: 0 98 13:05:54,3465700 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55799 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41020703, endtime: 41020703, seqnum: 0, connid: 0 98 13:05:54,3465913 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55800 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41020703, endtime: 41020703, seqnum: 0, connid: 0 98 13:05:54,3803135 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55799 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41020706, endtime: 41020707, seqnum: 0, connid: 0 98 13:05:56,2284106 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55799 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41020709, endtime: 41020891, seqnum: 0, connid: 0 98 13:05:56,2284269 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55799 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41020711, endtime: 41020891, seqnum: 0, connid: 0 98 13:05:56,2284352 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55799 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41020712, endtime: 41020891, seqnum: 0, connid: 0 98 13:05:56,2284436 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55799 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41020714, endtime: 41020891, seqnum: 0, connid: 0 98 13:05:56,2284499 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55799 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41020716, endtime: 41020891, seqnum: 0, connid: 0 98 13:05:56,2284577 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55799 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41020717, endtime: 41020891, seqnum: 0, connid: 0 98 13:05:56,2284641 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55799 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41020720, endtime: 41020891, seqnum: 0, connid: 0 98 13:05:56,2284715 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55799 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41020722, endtime: 41020891, seqnum: 0, connid: 0 98 13:05:56,2284807 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55799 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41020723, endtime: 41020891, seqnum: 0, connid: 0 98 13:05:56,2285120 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55799 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41020725, endtime: 41020891, seqnum: 0, connid: 0 98 13:05:56,2285186 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55799 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41020727, endtime: 41020891, seqnum: 0, connid: 0 98 13:05:56,2285258 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55799 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41020730, endtime: 41020891, seqnum: 0, connid: 0 98 13:05:56,2285322 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55799 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41020731, endtime: 41020891, seqnum: 0, connid: 0 98 13:05:56,3162609 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55800 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41020706, endtime: 41020900, seqnum: 0, connid: 0 98 13:05:56,3162795 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55800 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41020709, endtime: 41020900, seqnum: 0, connid: 0 98 13:05:56,3162875 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55800 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41020711, endtime: 41020900, seqnum: 0, connid: 0 98 13:05:56,3162950 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55800 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41020712, endtime: 41020900, seqnum: 0, connid: 0 98 13:05:56,3163011 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55800 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41020714, endtime: 41020900, seqnum: 0, connid: 0 98 13:05:56,3163086 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55800 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41020716, endtime: 41020900, seqnum: 0, connid: 0 98 13:05:56,3163144 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55800 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41020717, endtime: 41020900, seqnum: 0, connid: 0 98 13:05:56,3163219 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55800 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41020720, endtime: 41020900, seqnum: 0, connid: 0 98 13:05:56,3163282 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55800 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41020722, endtime: 41020900, seqnum: 0, connid: 0 98 13:05:56,3163559 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55800 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41020723, endtime: 41020900, seqnum: 0, connid: 0 98 13:05:56,3163620 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55800 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41020725, endtime: 41020900, seqnum: 0, connid: 0 98 13:05:56,3163695 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55800 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41020727, endtime: 41020900, seqnum: 0, connid: 0 98 13:05:56,3163773 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55800 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41020730, endtime: 41020900, seqnum: 0, connid: 0 98 13:05:57,1863718 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55799 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41020891, endtime: 41020987, seqnum: 0, connid: 0 98 13:05:57,1863903 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55799 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41020892, endtime: 41020987, seqnum: 0, connid: 0 98 13:05:57,1863981 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55799 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41020894, endtime: 41020987, seqnum: 0, connid: 0 98 13:05:57,1864061 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55799 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41020895, endtime: 41020987, seqnum: 0, connid: 0 98 13:05:57,1864125 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55799 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41020898, endtime: 41020987, seqnum: 0, connid: 0 98 13:05:57,1864203 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55799 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41020900, endtime: 41020987, seqnum: 0, connid: 0 98 13:05:57,1864266 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55799 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41020901, endtime: 41020987, seqnum: 0, connid: 0 98 13:05:57,1864341 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55799 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41020903, endtime: 41020987, seqnum: 0, connid: 0 98 13:05:57,1864405 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55799 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41020905, endtime: 41020987, seqnum: 0, connid: 0 98 13:05:57,1865255 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55799 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41020906, endtime: 41020987, seqnum: 0, connid: 0 98 13:05:57,1865336 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55799 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41020908, endtime: 41020987, seqnum: 0, connid: 0 98 13:05:57,1865413 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55799 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41020909, endtime: 41020987, seqnum: 0, connid: 0 98 13:05:57,1866835 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55799 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41020911, endtime: 41020987, seqnum: 0, connid: 0 98 13:05:58,0555866 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55800 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41020900, endtime: 41021074, seqnum: 0, connid: 0 98 13:05:58,0556038 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55800 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41020903, endtime: 41021074, seqnum: 0, connid: 0 98 13:05:58,0556118 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55800 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41020905, endtime: 41021074, seqnum: 0, connid: 0 98 13:05:58,0556196 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55800 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41020906, endtime: 41021074, seqnum: 0, connid: 0 98 13:05:58,0556257 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55800 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41020908, endtime: 41021074, seqnum: 0, connid: 0 98 13:05:58,0556335 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55800 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41020909, endtime: 41021074, seqnum: 0, connid: 0 98 13:05:58,0556398 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55800 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41020911, endtime: 41021074, seqnum: 0, connid: 0 98 13:05:58,0556473 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55800 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41020914, endtime: 41021074, seqnum: 0, connid: 0 98 13:05:58,0556537 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55800 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41020916, endtime: 41021074, seqnum: 0, connid: 0 98 13:05:58,0557329 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55800 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41020919, endtime: 41021074, seqnum: 0, connid: 0 98 13:05:58,0557410 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55800 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41020922, endtime: 41021074, seqnum: 0, connid: 0 98 13:05:58,0557515 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55800 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41020925, endtime: 41021074, seqnum: 0, connid: 0 98 13:05:58,0558188 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55800 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41020927, endtime: 41021074, seqnum: 0, connid: 0 98 13:05:58,2532018 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55799 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41020987, endtime: 41021094, seqnum: 0, connid: 0 98 13:05:58,2532273 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55799 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41020990, endtime: 41021094, seqnum: 0, connid: 0 98 13:05:58,2532381 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55799 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41020992, endtime: 41021094, seqnum: 0, connid: 0 98 13:05:58,2532512 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55799 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41020995, endtime: 41021094, seqnum: 0, connid: 0 98 13:05:58,2532614 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55799 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41020997, endtime: 41021094, seqnum: 0, connid: 0 98 13:05:58,2532742 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55799 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41020998, endtime: 41021094, seqnum: 0, connid: 0 98 13:05:58,2532841 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55799 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41021001, endtime: 41021094, seqnum: 0, connid: 0 98 13:05:58,2532971 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55799 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41021005, endtime: 41021094, seqnum: 0, connid: 0 98 13:05:58,2533060 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55799 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41021006, endtime: 41021094, seqnum: 0, connid: 0 98 13:05:58,2533988 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55799 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41021009, endtime: 41021094, seqnum: 0, connid: 0 98 13:05:58,2534066 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55799 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41021011, endtime: 41021094, seqnum: 0, connid: 0 98 13:05:58,2534171 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55799 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41021012, endtime: 41021094, seqnum: 0, connid: 0 98 13:05:58,2534786 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55799 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41021014, endtime: 41021094, seqnum: 0, connid: 0 98 13:05:58,9865670 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55800 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41021074, endtime: 41021167, seqnum: 0, connid: 0 98 13:05:58,9865853 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55800 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41021075, endtime: 41021167, seqnum: 0, connid: 0 98 13:05:58,9865933 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55800 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41021076, endtime: 41021167, seqnum: 0, connid: 0 98 13:05:58,9866016 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55800 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41021078, endtime: 41021167, seqnum: 0, connid: 0 98 13:05:58,9866083 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55800 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41021081, endtime: 41021167, seqnum: 0, connid: 0 98 13:05:58,9866157 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55800 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41021084, endtime: 41021167, seqnum: 0, connid: 0 98 13:05:58,9866221 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55800 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41021086, endtime: 41021167, seqnum: 0, connid: 0 98 13:05:58,9866296 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55800 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41021087, endtime: 41021167, seqnum: 0, connid: 0 98 13:05:58,9866360 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55800 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41021089, endtime: 41021167, seqnum: 0, connid: 0 98 13:05:58,9867119 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55800 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41021090, endtime: 41021167, seqnum: 0, connid: 0 98 13:05:58,9869285 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55800 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41021092, endtime: 41021167, seqnum: 0, connid: 0 98 13:05:58,9869416 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55800 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41021095, endtime: 41021167, seqnum: 0, connid: 0 98 13:05:58,9869493 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55800 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41021097, endtime: 41021167, seqnum: 0, connid: 0 98 13:05:59,7486933 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55799 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41021094, endtime: 41021243, seqnum: 0, connid: 0 98 13:05:59,7487121 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55799 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41021095, endtime: 41021243, seqnum: 0, connid: 0 98 13:05:59,7487199 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55799 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41021097, endtime: 41021243, seqnum: 0, connid: 0 98 13:05:59,7487277 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55799 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41021100, endtime: 41021243, seqnum: 0, connid: 0 98 13:05:59,7487338 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55799 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41021103, endtime: 41021243, seqnum: 0, connid: 0 98 13:05:59,7488097 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55799 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41021106, endtime: 41021243, seqnum: 0, connid: 0 98 13:05:59,7489352 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55799 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41021108, endtime: 41021244, seqnum: 0, connid: 0 98 13:05:59,7490659 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55799 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41021109, endtime: 41021244, seqnum: 0, connid: 0 98 13:05:59,7490740 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55799 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41021111, endtime: 41021244, seqnum: 0, connid: 0 98 13:05:59,7490812 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55799 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41021114, endtime: 41021244, seqnum: 0, connid: 0 98 13:05:59,7490870 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55799 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41021117, endtime: 41021244, seqnum: 0, connid: 0 98 13:05:59,7490937 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55799 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41021119, endtime: 41021244, seqnum: 0, connid: 0 98 13:05:59,7490995 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55799 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41021121, endtime: 41021244, seqnum: 0, connid: 0 98 13:05:59,9503940 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55800 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41021167, endtime: 41021264, seqnum: 0, connid: 0 98 13:05:59,9504117 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55800 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41021169, endtime: 41021264, seqnum: 0, connid: 0 98 13:05:59,9504192 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55800 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41021170, endtime: 41021264, seqnum: 0, connid: 0 98 13:05:59,9504267 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55800 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41021172, endtime: 41021264, seqnum: 0, connid: 0 98 13:05:59,9504328 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55800 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41021173, endtime: 41021264, seqnum: 0, connid: 0 98 13:05:59,9504397 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55800 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41021174, endtime: 41021264, seqnum: 0, connid: 0 98 13:05:59,9504455 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55800 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41021175, endtime: 41021264, seqnum: 0, connid: 0 98 13:05:59,9504524 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55800 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41021178, endtime: 41021264, seqnum: 0, connid: 0 98 13:05:59,9504583 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55800 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41021180, endtime: 41021264, seqnum: 0, connid: 0 98 13:05:59,9504863 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55800 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41021181, endtime: 41021264, seqnum: 0, connid: 0 98 13:05:59,9504923 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55800 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41021183, endtime: 41021264, seqnum: 0, connid: 0 98 13:05:59,9504993 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55800 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41021184, endtime: 41021264, seqnum: 0, connid: 0 98 13:05:59,9505054 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55800 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41021186, endtime: 41021264, seqnum: 0, connid: 0 98 13:06:00,2985440 MCLauncher.exe 6080 TCP TCPCopy WIN-0UOTFKKVN1S:54920 -> sheltex.company:8000 SUCCESS Length: 2, seqnum: 0, connid: 0 98 13:06:00,2985559 MCLauncher.exe 6080 TCP Receive WIN-0UOTFKKVN1S:54920 -> sheltex.company:8000 SUCCESS Length: 2, seqnum: 0, connid: 0 98 13:06:00,2991070 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54920 -> sheltex.company:8000 SUCCESS Length: 2, startime: 41021298, endtime: 41021299, seqnum: 0, connid: 0 98 13:06:00,4817457 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55799 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41021243, endtime: 41021317, seqnum: 0, connid: 0 98 13:06:00,4817626 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55799 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41021247, endtime: 41021317, seqnum: 0, connid: 0 98 13:06:00,4817698 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55799 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41021248, endtime: 41021317, seqnum: 0, connid: 0 98 13:06:00,4817775 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55799 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41021250, endtime: 41021317, seqnum: 0, connid: 0 98 13:06:00,4817833 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55799 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41021252, endtime: 41021317, seqnum: 0, connid: 0 98 13:06:00,4817905 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55799 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41021255, endtime: 41021317, seqnum: 0, connid: 0 98 13:06:00,4817961 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55799 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41021256, endtime: 41021317, seqnum: 0, connid: 0 98 13:06:00,4818027 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55799 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41021259, endtime: 41021317, seqnum: 0, connid: 0 98 13:06:00,4818085 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55799 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41021261, endtime: 41021317, seqnum: 0, connid: 0 98 13:06:00,4818387 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55799 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41021262, endtime: 41021317, seqnum: 0, connid: 0 98 13:06:00,4818448 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55799 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41021265, endtime: 41021317, seqnum: 0, connid: 0 98 13:06:00,4818515 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55799 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41021267, endtime: 41021317, seqnum: 0, connid: 0 98 13:06:00,4818573 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55799 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41021269, endtime: 41021317, seqnum: 0, connid: 0 98 13:06:00,7191021 MCLauncher.exe 6080 TCP TCPCopy WIN-0UOTFKKVN1S:54920 -> sheltex.company:8000 SUCCESS Length: 60, seqnum: 0, connid: 0 98 13:06:00,7191123 MCLauncher.exe 6080 TCP Receive WIN-0UOTFKKVN1S:54920 -> sheltex.company:8000 SUCCESS Length: 60, seqnum: 0, connid: 0 98 13:06:00,7207314 MCLauncher.exe 6080 Thread Create SUCCESS Thread ID: 5252 98 13:06:00,7211273 MCLauncher.exe 6080 Thread Create SUCCESS Thread ID: 8528 98 13:06:00,7215161 MCLauncher.exe 6080 Thread Create SUCCESS Thread ID: 11120 98 13:06:00,7971565 MCLauncher.exe 6080 TCP Connect WIN-0UOTFKKVN1S:55809 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 0, mss: 1460, sackopt: 0, tsopt: 0, wsopt: 0, rcvwin: 64240, rcvwinscale: 0, sndwinscale: 0, seqnum: 0, connid: 0 98 13:06:00,7977511 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55809 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41021348, endtime: 41021348, seqnum: 0, connid: 0 98 13:06:00,8122331 MCLauncher.exe 6080 TCP Connect WIN-0UOTFKKVN1S:55807 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 0, mss: 1460, sackopt: 0, tsopt: 0, wsopt: 0, rcvwin: 64240, rcvwinscale: 0, sndwinscale: 0, seqnum: 0, connid: 0 98 13:06:00,8128138 MCLauncher.exe 6080 TCP Connect WIN-0UOTFKKVN1S:55808 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 0, mss: 1460, sackopt: 0, tsopt: 0, wsopt: 0, rcvwin: 64240, rcvwinscale: 0, sndwinscale: 0, seqnum: 0, connid: 0 98 13:06:00,8129385 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55809 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41021350, endtime: 41021350, seqnum: 0, connid: 0 98 13:06:00,8133845 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55807 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41021350, endtime: 41021350, seqnum: 0, connid: 0 98 13:06:00,8138206 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55808 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41021350, endtime: 41021350, seqnum: 0, connid: 0 98 13:06:00,8290019 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55808 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41021351, endtime: 41021352, seqnum: 0, connid: 0 98 13:06:00,8290249 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55807 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41021351, endtime: 41021352, seqnum: 0, connid: 0 98 13:06:00,8290390 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55809 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41021351, endtime: 41021352, seqnum: 0, connid: 0 98 13:06:00,8446295 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55809 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41021353, endtime: 41021353, seqnum: 0, connid: 0 98 13:06:00,8446564 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55807 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41021353, endtime: 41021353, seqnum: 0, connid: 0 98 13:06:00,8449866 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55808 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41021353, endtime: 41021353, seqnum: 0, connid: 0 98 13:06:00,8602250 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55808 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41021355, endtime: 41021355, seqnum: 0, connid: 0 98 13:06:00,8602513 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55807 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41021355, endtime: 41021355, seqnum: 0, connid: 0 98 13:06:00,8605960 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55809 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41021355, endtime: 41021355, seqnum: 0, connid: 0 98 13:06:00,8762145 MCLauncher.exe 6080 RegOpenKey HKLM\Software\WOW6432Node\Policies\Microsoft\MUI\Settings REPARSE Desired Access: Read 98 13:06:00,8762383 MCLauncher.exe 6080 RegOpenKey HKLM\SOFTWARE\Policies\Microsoft\MUI\Settings NAME NOT FOUND Desired Access: Read 98 13:06:00,8762646 MCLauncher.exe 6080 RegOpenKey HKCU SUCCESS Desired Access: Maximum Allowed, Granted Access: All Access 98 13:06:00,8762879 MCLauncher.exe 6080 RegQueryKey HKCU SUCCESS Query: HandleTags, HandleTags: 0x0 98 13:06:00,8762976 MCLauncher.exe 6080 RegQueryKey HKCU SUCCESS Query: Name 98 13:06:00,8763073 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Policies\Microsoft\Control Panel\Desktop NAME NOT FOUND Desired Access: Read 98 13:06:00,8763261 MCLauncher.exe 6080 RegQueryKey HKCU SUCCESS Query: HandleTags, HandleTags: 0x0 98 13:06:00,8763333 MCLauncher.exe 6080 RegQueryKey HKCU SUCCESS Query: Name 98 13:06:00,8763416 MCLauncher.exe 6080 RegOpenKey HKCU\Control Panel\Desktop SUCCESS Desired Access: Read 98 13:06:00,8763563 MCLauncher.exe 6080 RegSetInfoKey HKCU\Control Panel\Desktop SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 98 13:06:00,8763630 MCLauncher.exe 6080 RegQueryValue HKCU\Control Panel\Desktop\PreferredUILanguages NAME NOT FOUND Length: 12 98 13:06:00,8763857 MCLauncher.exe 6080 RegCloseKey HKCU\Control Panel\Desktop SUCCESS 98 13:06:00,8763912 MCLauncher.exe 6080 RegCloseKey HKCU SUCCESS 98 13:06:00,8764028 MCLauncher.exe 6080 RegOpenKey HKLM\Software\WOW6432Node\Policies\Microsoft\MUI\Settings REPARSE Desired Access: Read 98 13:06:00,8764103 MCLauncher.exe 6080 RegOpenKey HKLM\SOFTWARE\Policies\Microsoft\MUI\Settings NAME NOT FOUND Desired Access: Read 98 13:06:00,8764258 MCLauncher.exe 6080 RegOpenKey HKCU SUCCESS Desired Access: Maximum Allowed, Granted Access: All Access 98 13:06:00,8764403 MCLauncher.exe 6080 RegQueryKey HKCU SUCCESS Query: HandleTags, HandleTags: 0x0 98 13:06:00,8764477 MCLauncher.exe 6080 RegQueryKey HKCU SUCCESS Query: Name 98 13:06:00,8764555 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Policies\Microsoft\Control Panel\Desktop NAME NOT FOUND Desired Access: Read 98 13:06:00,8764691 MCLauncher.exe 6080 RegQueryKey HKCU SUCCESS Query: HandleTags, HandleTags: 0x0 98 13:06:00,8764760 MCLauncher.exe 6080 RegQueryKey HKCU SUCCESS Query: Name 98 13:06:00,8764832 MCLauncher.exe 6080 RegOpenKey HKCU\Control Panel\Desktop\LanguageConfiguration SUCCESS Desired Access: Read 98 13:06:00,8764954 MCLauncher.exe 6080 RegSetInfoKey HKCU\Control Panel\Desktop\LanguageConfiguration SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 98 13:06:00,8765009 MCLauncher.exe 6080 RegEnumValue HKCU\Control Panel\Desktop\LanguageConfiguration NO MORE ENTRIES Index: 0, Length: 512 98 13:06:00,8765073 MCLauncher.exe 6080 RegCloseKey HKCU\Control Panel\Desktop\LanguageConfiguration SUCCESS 98 13:06:00,8765139 MCLauncher.exe 6080 RegCloseKey HKCU SUCCESS 98 13:06:00,8765907 MCLauncher.exe 6080 TCP Disconnect WIN-0UOTFKKVN1S:55809 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 0, seqnum: 0, connid: 0 98 13:06:00,8772628 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55807 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41021356, endtime: 41021356, seqnum: 0, connid: 0 98 13:06:00,8772833 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55808 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41021356, endtime: 41021356, seqnum: 0, connid: 0 98 13:06:00,9067034 MCLauncher.exe 6080 RegOpenKey HKLM\Software\WOW6432Node\Policies\Microsoft\MUI\Settings REPARSE Desired Access: Read 98 13:06:00,9067258 MCLauncher.exe 6080 RegOpenKey HKLM\SOFTWARE\Policies\Microsoft\MUI\Settings NAME NOT FOUND Desired Access: Read 98 13:06:00,9067535 MCLauncher.exe 6080 RegOpenKey HKCU SUCCESS Desired Access: Maximum Allowed, Granted Access: All Access 98 13:06:00,9067762 MCLauncher.exe 6080 RegQueryKey HKCU SUCCESS Query: HandleTags, HandleTags: 0x0 98 13:06:00,9067862 MCLauncher.exe 6080 RegQueryKey HKCU SUCCESS Query: Name 98 13:06:00,9067951 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Policies\Microsoft\Control Panel\Desktop NAME NOT FOUND Desired Access: Read 98 13:06:00,9068128 MCLauncher.exe 6080 RegQueryKey HKCU SUCCESS Query: HandleTags, HandleTags: 0x0 98 13:06:00,9068200 MCLauncher.exe 6080 RegQueryKey HKCU SUCCESS Query: Name 98 13:06:00,9068278 MCLauncher.exe 6080 RegOpenKey HKCU\Control Panel\Desktop SUCCESS Desired Access: Read 98 13:06:00,9068424 MCLauncher.exe 6080 RegSetInfoKey HKCU\Control Panel\Desktop SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 98 13:06:00,9068488 MCLauncher.exe 6080 RegQueryValue HKCU\Control Panel\Desktop\PreferredUILanguages NAME NOT FOUND Length: 12 98 13:06:00,9068718 MCLauncher.exe 6080 RegCloseKey HKCU\Control Panel\Desktop SUCCESS 98 13:06:00,9068771 MCLauncher.exe 6080 RegCloseKey HKCU SUCCESS 98 13:06:00,9068893 MCLauncher.exe 6080 RegOpenKey HKLM\Software\WOW6432Node\Policies\Microsoft\MUI\Settings REPARSE Desired Access: Read 98 13:06:00,9068967 MCLauncher.exe 6080 RegOpenKey HKLM\SOFTWARE\Policies\Microsoft\MUI\Settings NAME NOT FOUND Desired Access: Read 98 13:06:00,9069120 MCLauncher.exe 6080 RegOpenKey HKCU SUCCESS Desired Access: Maximum Allowed, Granted Access: All Access 98 13:06:00,9069261 MCLauncher.exe 6080 RegQueryKey HKCU SUCCESS Query: HandleTags, HandleTags: 0x0 98 13:06:00,9069336 MCLauncher.exe 6080 RegQueryKey HKCU SUCCESS Query: Name 98 13:06:00,9069414 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Policies\Microsoft\Control Panel\Desktop NAME NOT FOUND Desired Access: Read 98 13:06:00,9069541 MCLauncher.exe 6080 RegQueryKey HKCU SUCCESS Query: HandleTags, HandleTags: 0x0 98 13:06:00,9069610 MCLauncher.exe 6080 RegQueryKey HKCU SUCCESS Query: Name 98 13:06:00,9069685 MCLauncher.exe 6080 RegOpenKey HKCU\Control Panel\Desktop\LanguageConfiguration SUCCESS Desired Access: Read 98 13:06:00,9069804 MCLauncher.exe 6080 RegSetInfoKey HKCU\Control Panel\Desktop\LanguageConfiguration SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 98 13:06:00,9069857 MCLauncher.exe 6080 RegEnumValue HKCU\Control Panel\Desktop\LanguageConfiguration NO MORE ENTRIES Index: 0, Length: 512 98 13:06:00,9069921 MCLauncher.exe 6080 RegCloseKey HKCU\Control Panel\Desktop\LanguageConfiguration SUCCESS 98 13:06:00,9069962 MCLauncher.exe 6080 RegCloseKey HKCU SUCCESS 98 13:06:00,9070893 MCLauncher.exe 6080 TCP Disconnect WIN-0UOTFKKVN1S:55808 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 0, seqnum: 0, connid: 0 98 13:06:00,9074317 MCLauncher.exe 6080 RegOpenKey HKLM\Software\WOW6432Node\Policies\Microsoft\MUI\Settings REPARSE Desired Access: Read 98 13:06:00,9074417 MCLauncher.exe 6080 RegOpenKey HKLM\SOFTWARE\Policies\Microsoft\MUI\Settings NAME NOT FOUND Desired Access: Read 98 13:06:00,9074600 MCLauncher.exe 6080 RegOpenKey HKCU SUCCESS Desired Access: Maximum Allowed, Granted Access: All Access 98 13:06:00,9074755 MCLauncher.exe 6080 RegQueryKey HKCU SUCCESS Query: HandleTags, HandleTags: 0x0 98 13:06:00,9074835 MCLauncher.exe 6080 RegQueryKey HKCU SUCCESS Query: Name 98 13:06:00,9074916 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Policies\Microsoft\Control Panel\Desktop NAME NOT FOUND Desired Access: Read 98 13:06:00,9075052 MCLauncher.exe 6080 RegQueryKey HKCU SUCCESS Query: HandleTags, HandleTags: 0x0 98 13:06:00,9075121 MCLauncher.exe 6080 RegQueryKey HKCU SUCCESS Query: Name 98 13:06:00,9075193 MCLauncher.exe 6080 RegOpenKey HKCU\Control Panel\Desktop SUCCESS Desired Access: Read 98 13:06:00,9075315 MCLauncher.exe 6080 RegSetInfoKey HKCU\Control Panel\Desktop SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 98 13:06:00,9075370 MCLauncher.exe 6080 RegQueryValue HKCU\Control Panel\Desktop\PreferredUILanguages NAME NOT FOUND Length: 12 98 13:06:00,9075545 MCLauncher.exe 6080 RegCloseKey HKCU\Control Panel\Desktop SUCCESS 98 13:06:00,9075592 MCLauncher.exe 6080 RegCloseKey HKCU SUCCESS 98 13:06:00,9075705 MCLauncher.exe 6080 RegOpenKey HKLM\Software\WOW6432Node\Policies\Microsoft\MUI\Settings REPARSE Desired Access: Read 98 13:06:00,9075777 MCLauncher.exe 6080 RegOpenKey HKLM\SOFTWARE\Policies\Microsoft\MUI\Settings NAME NOT FOUND Desired Access: Read 98 13:06:00,9075927 MCLauncher.exe 6080 RegOpenKey HKCU SUCCESS Desired Access: Maximum Allowed, Granted Access: All Access 98 13:06:00,9076074 MCLauncher.exe 6080 RegQueryKey HKCU SUCCESS Query: HandleTags, HandleTags: 0x0 98 13:06:00,9076146 MCLauncher.exe 6080 RegQueryKey HKCU SUCCESS Query: Name 98 13:06:00,9076221 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Policies\Microsoft\Control Panel\Desktop NAME NOT FOUND Desired Access: Read 98 13:06:00,9076351 MCLauncher.exe 6080 RegQueryKey HKCU SUCCESS Query: HandleTags, HandleTags: 0x0 98 13:06:00,9076420 MCLauncher.exe 6080 RegQueryKey HKCU SUCCESS Query: Name 98 13:06:00,9076490 MCLauncher.exe 6080 RegOpenKey HKCU\Control Panel\Desktop\LanguageConfiguration SUCCESS Desired Access: Read 98 13:06:00,9076606 MCLauncher.exe 6080 RegSetInfoKey HKCU\Control Panel\Desktop\LanguageConfiguration SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 98 13:06:00,9076656 MCLauncher.exe 6080 RegEnumValue HKCU\Control Panel\Desktop\LanguageConfiguration NO MORE ENTRIES Index: 0, Length: 512 98 13:06:00,9076714 MCLauncher.exe 6080 RegCloseKey HKCU\Control Panel\Desktop\LanguageConfiguration SUCCESS 98 13:06:00,9076758 MCLauncher.exe 6080 RegCloseKey HKCU SUCCESS 98 13:06:00,9077551 MCLauncher.exe 6080 TCP Disconnect WIN-0UOTFKKVN1S:55807 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 0, seqnum: 0, connid: 0 98 13:06:00,9499765 MCLauncher.exe 6080 TCP Connect WIN-0UOTFKKVN1S:55810 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 0, mss: 1460, sackopt: 0, tsopt: 0, wsopt: 0, rcvwin: 64240, rcvwinscale: 0, sndwinscale: 0, seqnum: 0, connid: 0 98 13:06:00,9505198 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55810 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41021364, endtime: 41021364, seqnum: 0, connid: 0 98 13:06:00,9692826 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55810 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41021365, endtime: 41021366, seqnum: 0, connid: 0 98 13:06:00,9848628 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55800 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41021264, endtime: 41021367, seqnum: 0, connid: 0 98 13:06:00,9848797 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55800 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41021265, endtime: 41021367, seqnum: 0, connid: 0 98 13:06:00,9848872 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55800 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41021267, endtime: 41021367, seqnum: 0, connid: 0 98 13:06:00,9848949 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55800 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41021269, endtime: 41021367, seqnum: 0, connid: 0 98 13:06:00,9849010 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55800 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41021272, endtime: 41021367, seqnum: 0, connid: 0 98 13:06:00,9849080 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55800 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41021273, endtime: 41021367, seqnum: 0, connid: 0 98 13:06:00,9849138 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55800 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41021274, endtime: 41021367, seqnum: 0, connid: 0 98 13:06:00,9849207 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55800 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41021277, endtime: 41021367, seqnum: 0, connid: 0 98 13:06:00,9849265 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55800 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41021278, endtime: 41021367, seqnum: 0, connid: 0 98 13:06:00,9849562 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55800 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41021281, endtime: 41021367, seqnum: 0, connid: 0 98 13:06:00,9849626 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55800 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41021283, endtime: 41021367, seqnum: 0, connid: 0 98 13:06:00,9849692 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55800 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41021284, endtime: 41021367, seqnum: 0, connid: 0 98 13:06:00,9849753 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55800 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41021286, endtime: 41021367, seqnum: 0, connid: 0 98 13:06:00,9949975 MCLauncher.exe 6080 TCP Connect WIN-0UOTFKKVN1S:55811 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 0, mss: 1460, sackopt: 0, tsopt: 0, wsopt: 0, rcvwin: 64240, rcvwinscale: 0, sndwinscale: 0, seqnum: 0, connid: 0 98 13:06:00,9955541 MCLauncher.exe 6080 TCP Connect WIN-0UOTFKKVN1S:55812 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 0, mss: 1460, sackopt: 0, tsopt: 0, wsopt: 0, rcvwin: 64240, rcvwinscale: 0, sndwinscale: 0, seqnum: 0, connid: 0 98 13:06:00,9956802 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55811 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41021368, endtime: 41021368, seqnum: 0, connid: 0 98 13:06:00,9960224 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55812 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41021368, endtime: 41021368, seqnum: 0, connid: 0 98 13:06:01,0035192 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55810 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41021369, endtime: 41021369, seqnum: 0, connid: 0 98 13:06:01,0160585 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55812 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41021370, endtime: 41021370, seqnum: 0, connid: 0 98 13:06:01,0160829 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55811 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41021370, endtime: 41021370, seqnum: 0, connid: 0 98 13:06:01,0167669 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55810 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41021370, endtime: 41021370, seqnum: 0, connid: 0 98 13:06:01,0322566 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55811 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41021372, endtime: 41021372, seqnum: 0, connid: 0 98 13:06:01,0322818 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55812 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41021372, endtime: 41021372, seqnum: 0, connid: 0 98 13:06:01,0357156 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55810 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41021372, endtime: 41021372, seqnum: 0, connid: 0 98 13:06:01,0473196 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55812 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41021373, endtime: 41021373, seqnum: 0, connid: 0 98 13:06:01,0473409 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55811 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41021373, endtime: 41021373, seqnum: 0, connid: 0 98 13:06:01,0490739 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55810 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41021373, endtime: 41021374, seqnum: 0, connid: 0 98 13:06:01,0552395 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55811 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41021374, endtime: 41021374, seqnum: 0, connid: 0 98 13:06:01,0552603 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55812 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41021374, endtime: 41021374, seqnum: 0, connid: 0 98 13:06:01,0552716 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55810 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41021374, endtime: 41021374, seqnum: 0, connid: 0 98 13:06:01,0796074 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55810 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41021376, endtime: 41021377, seqnum: 0, connid: 0 98 13:06:01,0796332 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55812 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41021376, endtime: 41021377, seqnum: 0, connid: 0 98 13:06:01,0800244 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55811 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41021376, endtime: 41021377, seqnum: 0, connid: 0 98 13:06:01,0945379 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55811 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41021378, endtime: 41021378, seqnum: 0, connid: 0 98 13:06:01,0945640 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55812 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41021378, endtime: 41021378, seqnum: 0, connid: 0 98 13:06:01,0949197 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55810 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41021378, endtime: 41021378, seqnum: 0, connid: 0 98 13:06:01,1109989 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55810 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41021380, endtime: 41021380, seqnum: 0, connid: 0 98 13:06:01,1110167 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55812 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41021380, endtime: 41021380, seqnum: 0, connid: 0 98 13:06:01,1110283 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55811 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41021380, endtime: 41021380, seqnum: 0, connid: 0 98 13:06:01,1286607 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55811 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41021381, endtime: 41021381, seqnum: 0, connid: 0 98 13:06:01,1286862 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55812 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41021381, endtime: 41021381, seqnum: 0, connid: 0 98 13:06:01,1290422 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55810 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41021381, endtime: 41021382, seqnum: 0, connid: 0 98 13:06:01,1414992 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55810 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41021383, endtime: 41021383, seqnum: 0, connid: 0 98 13:06:01,1415253 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55812 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41021383, endtime: 41021383, seqnum: 0, connid: 0 98 13:06:01,1415380 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55811 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41021383, endtime: 41021383, seqnum: 0, connid: 0 98 13:06:01,1588050 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55811 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41021384, endtime: 41021384, seqnum: 0, connid: 0 98 13:06:01,1588307 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55812 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41021384, endtime: 41021384, seqnum: 0, connid: 0 98 13:06:01,1591848 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55810 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41021384, endtime: 41021385, seqnum: 0, connid: 0 98 13:06:01,1949888 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55810 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41021387, endtime: 41021388, seqnum: 0, connid: 0 98 13:06:01,1953697 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55812 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41021387, endtime: 41021388, seqnum: 0, connid: 0 98 13:06:01,1953863 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55811 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41021388, endtime: 41021388, seqnum: 0, connid: 0 98 13:06:01,2041989 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55811 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41021389, endtime: 41021389, seqnum: 0, connid: 0 98 13:06:01,2042258 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55812 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41021389, endtime: 41021389, seqnum: 0, connid: 0 98 13:06:01,2045439 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55810 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41021389, endtime: 41021389, seqnum: 0, connid: 0 98 13:06:01,2198105 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55810 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41021390, endtime: 41021391, seqnum: 0, connid: 0 98 13:06:01,2198382 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55812 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41021390, endtime: 41021391, seqnum: 0, connid: 0 98 13:06:01,2202241 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55811 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41021390, endtime: 41021391, seqnum: 0, connid: 0 98 13:06:01,2352433 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55811 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41021392, endtime: 41021392, seqnum: 0, connid: 0 98 13:06:01,2352788 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55812 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41021392, endtime: 41021392, seqnum: 0, connid: 0 98 13:06:01,2356847 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55810 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41021392, endtime: 41021392, seqnum: 0, connid: 0 98 13:06:01,2522335 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55810 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41021394, endtime: 41021394, seqnum: 0, connid: 0 98 13:06:01,2522604 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55812 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41021394, endtime: 41021394, seqnum: 0, connid: 0 98 13:06:01,2526505 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55811 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41021394, endtime: 41021394, seqnum: 0, connid: 0 98 13:06:01,2691799 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55811 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41021395, endtime: 41021396, seqnum: 0, connid: 0 98 13:06:01,2692032 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55812 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41021395, endtime: 41021396, seqnum: 0, connid: 0 98 13:06:01,2692146 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55810 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41021395, endtime: 41021396, seqnum: 0, connid: 0 98 13:06:01,2989571 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55810 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41021398, endtime: 41021399, seqnum: 0, connid: 0 98 13:06:01,2989790 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55812 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41021398, endtime: 41021399, seqnum: 0, connid: 0 98 13:06:01,2989901 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55811 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41021398, endtime: 41021399, seqnum: 0, connid: 0 98 13:06:01,3415869 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55811 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41021401, endtime: 41021403, seqnum: 0, connid: 0 98 13:06:01,3416132 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55812 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41021401, endtime: 41021403, seqnum: 0, connid: 0 98 13:06:01,3422219 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55810 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41021401, endtime: 41021403, seqnum: 0, connid: 0 98 13:06:01,3479617 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55810 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41021403, endtime: 41021403, seqnum: 0, connid: 0 98 13:06:01,3479830 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55812 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41021403, endtime: 41021403, seqnum: 0, connid: 0 98 13:06:01,3479946 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55811 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41021403, endtime: 41021403, seqnum: 0, connid: 0 98 13:06:01,3538170 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55811 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41021404, endtime: 41021404, seqnum: 0, connid: 0 98 13:06:01,3538416 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55812 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41021404, endtime: 41021404, seqnum: 0, connid: 0 98 13:06:01,3542140 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55810 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41021404, endtime: 41021404, seqnum: 0, connid: 0 98 13:06:01,3597604 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55810 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41021405, endtime: 41021405, seqnum: 0, connid: 0 98 13:06:01,3597839 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55812 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41021405, endtime: 41021405, seqnum: 0, connid: 0 98 13:06:01,3597958 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55811 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41021405, endtime: 41021405, seqnum: 0, connid: 0 98 13:06:01,3655073 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55811 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41021405, endtime: 41021405, seqnum: 0, connid: 0 98 13:06:01,3655290 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55812 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41021405, endtime: 41021405, seqnum: 0, connid: 0 98 13:06:01,3659041 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55810 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41021405, endtime: 41021405, seqnum: 0, connid: 0 98 13:06:01,3708814 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55811 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41021406, endtime: 41021406, seqnum: 0, connid: 0 98 13:06:01,3910868 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55811 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41021408, endtime: 41021408, seqnum: 0, connid: 0 98 13:06:01,3947199 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55810 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41021408, endtime: 41021408, seqnum: 0, connid: 0 98 13:06:01,3947390 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55812 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41021408, endtime: 41021408, seqnum: 0, connid: 0 98 13:06:01,4169057 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55812 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41021409, endtime: 41021410, seqnum: 0, connid: 0 98 13:06:01,4173753 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55810 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41021409, endtime: 41021410, seqnum: 0, connid: 0 98 13:06:01,4385712 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55810 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41021412, endtime: 41021412, seqnum: 0, connid: 0 98 13:06:01,4559811 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55810 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41021414, endtime: 41021414, seqnum: 0, connid: 0 98 13:06:01,5017569 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55810 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41021419, endtime: 41021419, seqnum: 0, connid: 0 98 13:06:01,5240092 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55810 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41021420, endtime: 41021421, seqnum: 0, connid: 0 98 13:06:01,5317113 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55810 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41021422, endtime: 41021422, seqnum: 0, connid: 0 98 13:06:01,5477085 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55810 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41021423, endtime: 41021423, seqnum: 0, connid: 0 98 13:06:01,5642679 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55810 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41021425, endtime: 41021425, seqnum: 0, connid: 0 98 13:06:01,5748506 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55799 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41021317, endtime: 41021426, seqnum: 0, connid: 0 98 13:06:01,5748678 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55799 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41021320, endtime: 41021426, seqnum: 0, connid: 0 98 13:06:01,5748755 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55799 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41021322, endtime: 41021426, seqnum: 0, connid: 0 98 13:06:01,5748836 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55799 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41021325, endtime: 41021426, seqnum: 0, connid: 0 98 13:06:01,5748897 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55799 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41021327, endtime: 41021426, seqnum: 0, connid: 0 98 13:06:01,5748972 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55799 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41021328, endtime: 41021426, seqnum: 0, connid: 0 98 13:06:01,5749035 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55799 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41021330, endtime: 41021426, seqnum: 0, connid: 0 98 13:06:01,5749107 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55799 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41021331, endtime: 41021426, seqnum: 0, connid: 0 98 13:06:01,5749168 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55799 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41021333, endtime: 41021426, seqnum: 0, connid: 0 98 13:06:01,5749470 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55799 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41021334, endtime: 41021426, seqnum: 0, connid: 0 98 13:06:01,5749537 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55799 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41021336, endtime: 41021426, seqnum: 0, connid: 0 98 13:06:01,5749609 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55799 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41021338, endtime: 41021426, seqnum: 0, connid: 0 98 13:06:01,5749673 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55799 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41021339, endtime: 41021426, seqnum: 0, connid: 0 98 13:06:01,5949300 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55810 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41021428, endtime: 41021428, seqnum: 0, connid: 0 98 13:06:01,6104681 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55810 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41021430, endtime: 41021430, seqnum: 0, connid: 0 98 13:06:01,6286413 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55810 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41021431, endtime: 41021431, seqnum: 0, connid: 0 98 13:06:01,6430485 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55810 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41021433, endtime: 41021433, seqnum: 0, connid: 0 98 13:06:01,6637670 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55800 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41021367, endtime: 41021435, seqnum: 0, connid: 0 98 13:06:01,6637842 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55800 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41021369, endtime: 41021435, seqnum: 0, connid: 0 98 13:06:01,6638047 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55800 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41021370, endtime: 41021435, seqnum: 0, connid: 0 98 13:06:01,6638177 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55800 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41021372, endtime: 41021435, seqnum: 0, connid: 0 98 13:06:01,6638244 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55800 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41021373, endtime: 41021435, seqnum: 0, connid: 0 98 13:06:01,6638319 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55800 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41021374, endtime: 41021435, seqnum: 0, connid: 0 98 13:06:01,6638377 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55800 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41021376, endtime: 41021435, seqnum: 0, connid: 0 98 13:06:01,6638452 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55800 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41021378, endtime: 41021435, seqnum: 0, connid: 0 98 13:06:01,6640674 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55800 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41021380, endtime: 41021435, seqnum: 0, connid: 0 98 13:06:01,6640834 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55800 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41021381, endtime: 41021435, seqnum: 0, connid: 0 98 13:06:01,6642394 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55800 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41021383, endtime: 41021435, seqnum: 0, connid: 0 98 13:06:01,6643940 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55800 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41021384, endtime: 41021435, seqnum: 0, connid: 0 98 13:06:01,6644040 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55800 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41021386, endtime: 41021435, seqnum: 0, connid: 0 98 13:06:01,6748573 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55810 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41021436, endtime: 41021436, seqnum: 0, connid: 0 98 13:06:01,6885323 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55810 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41021437, endtime: 41021437, seqnum: 0, connid: 0 98 13:06:01,7048328 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55810 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41021439, endtime: 41021439, seqnum: 0, connid: 0 98 13:06:01,7272101 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55810 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41021440, endtime: 41021441, seqnum: 0, connid: 0 98 13:06:02,4948061 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55799 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41021426, endtime: 41021518, seqnum: 0, connid: 0 98 13:06:02,4948255 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55799 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41021428, endtime: 41021518, seqnum: 0, connid: 0 98 13:06:02,4948341 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55799 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41021430, endtime: 41021518, seqnum: 0, connid: 0 98 13:06:02,4948421 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55799 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41021431, endtime: 41021518, seqnum: 0, connid: 0 98 13:06:02,4948487 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55799 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41021433, endtime: 41021518, seqnum: 0, connid: 0 98 13:06:02,4948562 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55799 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41021436, endtime: 41021518, seqnum: 0, connid: 0 98 13:06:02,4972536 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55799 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41021437, endtime: 41021518, seqnum: 0, connid: 0 98 13:06:02,4972677 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55799 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41021439, endtime: 41021518, seqnum: 0, connid: 0 98 13:06:02,4972749 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55799 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41021440, endtime: 41021518, seqnum: 0, connid: 0 98 13:06:02,4972821 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55799 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41021442, endtime: 41021518, seqnum: 0, connid: 0 98 13:06:02,4972877 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55799 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41021444, endtime: 41021518, seqnum: 0, connid: 0 98 13:06:02,4972943 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55799 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41021445, endtime: 41021518, seqnum: 0, connid: 0 98 13:06:02,4972999 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55799 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41021447, endtime: 41021518, seqnum: 0, connid: 0 98 13:06:02,7833732 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55800 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41021435, endtime: 41021547, seqnum: 0, connid: 0 98 13:06:02,7834037 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55800 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41021436, endtime: 41021547, seqnum: 0, connid: 0 98 13:06:02,7834176 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55800 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41021437, endtime: 41021547, seqnum: 0, connid: 0 98 13:06:02,7834309 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55800 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41021439, endtime: 41021547, seqnum: 0, connid: 0 98 13:06:02,7834414 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55800 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41021440, endtime: 41021547, seqnum: 0, connid: 0 98 13:06:02,7834541 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55800 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41021442, endtime: 41021547, seqnum: 0, connid: 0 98 13:06:02,7834652 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55800 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41021444, endtime: 41021547, seqnum: 0, connid: 0 98 13:06:02,7834780 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55800 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41021445, endtime: 41021547, seqnum: 0, connid: 0 98 13:06:02,7834891 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55800 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41021447, endtime: 41021547, seqnum: 0, connid: 0 98 13:06:02,7835423 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55800 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41021448, endtime: 41021547, seqnum: 0, connid: 0 98 13:06:02,7835536 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55800 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41021450, endtime: 41021547, seqnum: 0, connid: 0 98 13:06:02,7835661 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55800 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41021451, endtime: 41021547, seqnum: 0, connid: 0 98 13:06:02,7835766 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55800 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41021453, endtime: 41021547, seqnum: 0, connid: 0 98 13:06:03,3810255 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55799 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41021518, endtime: 41021607, seqnum: 0, connid: 0 98 13:06:03,3810424 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55799 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41021519, endtime: 41021607, seqnum: 0, connid: 0 98 13:06:03,3810496 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55799 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41021522, endtime: 41021607, seqnum: 0, connid: 0 98 13:06:03,3810568 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55799 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41021525, endtime: 41021607, seqnum: 0, connid: 0 98 13:06:03,3810627 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55799 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41021527, endtime: 41021607, seqnum: 0, connid: 0 98 13:06:03,3810818 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55799 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41021528, endtime: 41021607, seqnum: 0, connid: 0 98 13:06:03,3810901 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55799 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41021530, endtime: 41021607, seqnum: 0, connid: 0 98 13:06:03,3810973 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55799 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41021532, endtime: 41021607, seqnum: 0, connid: 0 98 13:06:03,3811037 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55799 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41021533, endtime: 41021607, seqnum: 0, connid: 0 98 13:06:03,3811366 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55799 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41021534, endtime: 41021607, seqnum: 0, connid: 0 98 13:06:03,3811424 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55799 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41021536, endtime: 41021607, seqnum: 0, connid: 0 98 13:06:03,3811494 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55799 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41021537, endtime: 41021607, seqnum: 0, connid: 0 98 13:06:03,3811552 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55799 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41021539, endtime: 41021607, seqnum: 0, connid: 0 98 13:06:03,6047594 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55800 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41021547, endtime: 41021629, seqnum: 0, connid: 0 98 13:06:03,6047757 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55800 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41021548, endtime: 41021629, seqnum: 0, connid: 0 98 13:06:03,6047832 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55800 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41021550, endtime: 41021629, seqnum: 0, connid: 0 98 13:06:03,6047912 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55800 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41021551, endtime: 41021629, seqnum: 0, connid: 0 98 13:06:03,6047973 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55800 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41021553, endtime: 41021629, seqnum: 0, connid: 0 98 13:06:03,6048043 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55800 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41021556, endtime: 41021629, seqnum: 0, connid: 0 98 13:06:03,6048101 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55800 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41021558, endtime: 41021629, seqnum: 0, connid: 0 98 13:06:03,6048170 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55800 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41021559, endtime: 41021629, seqnum: 0, connid: 0 98 13:06:03,6048228 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55800 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41021561, endtime: 41021629, seqnum: 0, connid: 0 98 13:06:03,6048516 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55800 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41021564, endtime: 41021629, seqnum: 0, connid: 0 98 13:06:03,6048577 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55800 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41021566, endtime: 41021629, seqnum: 0, connid: 0 98 13:06:03,6048644 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55800 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41021567, endtime: 41021629, seqnum: 0, connid: 0 98 13:06:03,6048702 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55800 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41021569, endtime: 41021629, seqnum: 0, connid: 0 98 13:06:03,9629748 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55799 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41021607, endtime: 41021665, seqnum: 0, connid: 0 98 13:06:03,9631001 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55799 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41021608, endtime: 41021665, seqnum: 0, connid: 0 98 13:06:03,9631120 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55799 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41021609, endtime: 41021665, seqnum: 0, connid: 0 98 13:06:03,9631203 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55799 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41021612, endtime: 41021665, seqnum: 0, connid: 0 98 13:06:03,9631264 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55799 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41021614, endtime: 41021665, seqnum: 0, connid: 0 98 13:06:03,9631336 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55799 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41021617, endtime: 41021665, seqnum: 0, connid: 0 98 13:06:03,9631394 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55799 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41021619, endtime: 41021665, seqnum: 0, connid: 0 98 13:06:03,9631463 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55799 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41021622, endtime: 41021665, seqnum: 0, connid: 0 98 13:06:03,9631521 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55799 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41021623, endtime: 41021665, seqnum: 0, connid: 0 98 13:06:03,9631591 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55799 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41021625, endtime: 41021665, seqnum: 0, connid: 0 98 13:06:03,9631649 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55799 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41021627, endtime: 41021665, seqnum: 0, connid: 0 98 13:06:03,9631904 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55799 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41021629, endtime: 41021665, seqnum: 0, connid: 0 98 13:06:03,9631965 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55799 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41021631, endtime: 41021665, seqnum: 0, connid: 0 98 13:06:04,5987461 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55800 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41021629, endtime: 41021728, seqnum: 0, connid: 0 98 13:06:04,5987639 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55800 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41021631, endtime: 41021728, seqnum: 0, connid: 0 98 13:06:04,5987722 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55800 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41021633, endtime: 41021728, seqnum: 0, connid: 0 98 13:06:04,5987811 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55800 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41021635, endtime: 41021728, seqnum: 0, connid: 0 98 13:06:04,5987877 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55800 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41021636, endtime: 41021728, seqnum: 0, connid: 0 98 13:06:04,5987952 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55800 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41021639, endtime: 41021728, seqnum: 0, connid: 0 98 13:06:04,5988013 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55800 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41021641, endtime: 41021728, seqnum: 0, connid: 0 98 13:06:04,5988090 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55800 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41021644, endtime: 41021728, seqnum: 0, connid: 0 98 13:06:04,5988154 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55800 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41021647, endtime: 41021728, seqnum: 0, connid: 0 98 13:06:04,5988437 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55800 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41021648, endtime: 41021728, seqnum: 0, connid: 0 98 13:06:04,5988503 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55800 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41021652, endtime: 41021728, seqnum: 0, connid: 0 98 13:06:04,5988578 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55800 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41021655, endtime: 41021728, seqnum: 0, connid: 0 98 13:06:04,5988639 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55800 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41021658, endtime: 41021728, seqnum: 0, connid: 0 98 13:06:05,3213097 MCLauncher.exe 6080 TCP Disconnect WIN-0UOTFKKVN1S:55801 -> 54.36.38.171:25565 SUCCESS Length: 0, seqnum: 0, connid: 0 98 13:06:05,7900082 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55800 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41021728, endtime: 41021848, seqnum: 0, connid: 0 98 13:06:05,7900323 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55800 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41021731, endtime: 41021848, seqnum: 0, connid: 0 98 13:06:05,7900442 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55800 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41021733, endtime: 41021848, seqnum: 0, connid: 0 98 13:06:05,7900572 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55800 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41021734, endtime: 41021848, seqnum: 0, connid: 0 98 13:06:05,7900675 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55800 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41021736, endtime: 41021848, seqnum: 0, connid: 0 98 13:06:05,7900786 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55800 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41021737, endtime: 41021848, seqnum: 0, connid: 0 98 13:06:05,7900880 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55800 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41021739, endtime: 41021848, seqnum: 0, connid: 0 98 13:06:05,7901004 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55800 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41021741, endtime: 41021848, seqnum: 0, connid: 0 98 13:06:05,7901107 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55800 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41021744, endtime: 41021848, seqnum: 0, connid: 0 98 13:06:05,7901664 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55800 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41021745, endtime: 41021848, seqnum: 0, connid: 0 98 13:06:05,7901772 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55800 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41021747, endtime: 41021848, seqnum: 0, connid: 0 98 13:06:05,7901897 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55800 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41021749, endtime: 41021848, seqnum: 0, connid: 0 98 13:06:05,7901999 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55800 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41021750, endtime: 41021848, seqnum: 0, connid: 0 98 13:06:06,0073215 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55810 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41021442, endtime: 41021869, seqnum: 0, connid: 0 98 13:06:06,0073404 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55810 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41021444, endtime: 41021869, seqnum: 0, connid: 0 98 13:06:06,0073481 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55810 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41021445, endtime: 41021869, seqnum: 0, connid: 0 98 13:06:06,0073559 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55810 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41021447, endtime: 41021869, seqnum: 0, connid: 0 98 13:06:06,0073617 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55810 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41021448, endtime: 41021869, seqnum: 0, connid: 0 98 13:06:06,0073686 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55810 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41021450, endtime: 41021869, seqnum: 0, connid: 0 98 13:06:06,0073742 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55810 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41021451, endtime: 41021869, seqnum: 0, connid: 0 98 13:06:06,0073913 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55810 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41021453, endtime: 41021869, seqnum: 0, connid: 0 98 13:06:06,0073994 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55810 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41021455, endtime: 41021869, seqnum: 0, connid: 0 98 13:06:06,0074637 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55810 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41021456, endtime: 41021869, seqnum: 0, connid: 0 98 13:06:06,0074709 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55810 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41021458, endtime: 41021869, seqnum: 0, connid: 0 98 13:06:06,0074783 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55810 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41021459, endtime: 41021869, seqnum: 0, connid: 0 98 13:06:06,3171647 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55799 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41021665, endtime: 41021900, seqnum: 0, connid: 0 98 13:06:06,3171932 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55799 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41021665, endtime: 41021900, seqnum: 0, connid: 0 98 13:06:06,3172023 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55799 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41021667, endtime: 41021900, seqnum: 0, connid: 0 98 13:06:06,3172109 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55799 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41021669, endtime: 41021900, seqnum: 0, connid: 0 98 13:06:06,3172176 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55799 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41021670, endtime: 41021900, seqnum: 0, connid: 0 98 13:06:06,3172253 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55799 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41021672, endtime: 41021900, seqnum: 0, connid: 0 98 13:06:06,3172317 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55799 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41021675, endtime: 41021900, seqnum: 0, connid: 0 98 13:06:06,3172395 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55799 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41021676, endtime: 41021900, seqnum: 0, connid: 0 98 13:06:06,3172458 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55799 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41021678, endtime: 41021900, seqnum: 0, connid: 0 98 13:06:06,3172774 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55799 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41021681, endtime: 41021900, seqnum: 0, connid: 0 98 13:06:06,3172841 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55799 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41021685, endtime: 41021900, seqnum: 0, connid: 0 98 13:06:06,3172913 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55799 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41021687, endtime: 41021900, seqnum: 0, connid: 0 98 13:06:06,3172977 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55799 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41021690, endtime: 41021900, seqnum: 0, connid: 0 98 13:06:06,6158405 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55800 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41021848, endtime: 41021930, seqnum: 0, connid: 0 98 13:06:06,6158591 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55800 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41021848, endtime: 41021930, seqnum: 0, connid: 0 98 13:06:06,6158665 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55800 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41021850, endtime: 41021930, seqnum: 0, connid: 0 98 13:06:06,6158740 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55800 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41021851, endtime: 41021930, seqnum: 0, connid: 0 98 13:06:06,6158798 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55800 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41021853, endtime: 41021930, seqnum: 0, connid: 0 98 13:06:06,6158870 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55800 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41021855, endtime: 41021930, seqnum: 0, connid: 0 98 13:06:06,6158926 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55800 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41021856, endtime: 41021930, seqnum: 0, connid: 0 98 13:06:06,6158992 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55800 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41021858, endtime: 41021930, seqnum: 0, connid: 0 98 13:06:06,6159048 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55800 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41021859, endtime: 41021930, seqnum: 0, connid: 0 98 13:06:06,6159350 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55800 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41021861, endtime: 41021930, seqnum: 0, connid: 0 98 13:06:06,6159411 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55800 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41021864, endtime: 41021930, seqnum: 0, connid: 0 98 13:06:06,6159477 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55800 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41021865, endtime: 41021930, seqnum: 0, connid: 0 98 13:06:06,6159533 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55800 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41021867, endtime: 41021930, seqnum: 0, connid: 0 98 13:06:07,5942415 MCLauncher.exe 6080 TCP Reconnect WIN-0UOTFKKVN1S:55815 -> 54.36.38.171:25565 SUCCESS Length: 0, seqnum: 0, connid: 0 98 13:06:08,0063793 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55799 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41021900, endtime: 41022069, seqnum: 0, connid: 0 98 13:06:08,0063973 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55799 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41021903, endtime: 41022069, seqnum: 0, connid: 0 98 13:06:08,0064053 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55799 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41021905, endtime: 41022069, seqnum: 0, connid: 0 98 13:06:08,0064133 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55799 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41021906, endtime: 41022069, seqnum: 0, connid: 0 98 13:06:08,0064197 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55799 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41021908, endtime: 41022069, seqnum: 0, connid: 0 98 13:06:08,0064269 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55799 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41021909, endtime: 41022069, seqnum: 0, connid: 0 98 13:06:08,0064330 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55799 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41021912, endtime: 41022069, seqnum: 0, connid: 0 98 13:06:08,0064402 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55799 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41021914, endtime: 41022069, seqnum: 0, connid: 0 98 13:06:08,0065765 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55799 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41021917, endtime: 41022069, seqnum: 0, connid: 0 98 13:06:08,0065890 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55799 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41021919, endtime: 41022069, seqnum: 0, connid: 0 98 13:06:08,0065956 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55799 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41021921, endtime: 41022069, seqnum: 0, connid: 0 98 13:06:08,0066031 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55799 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41021922, endtime: 41022069, seqnum: 0, connid: 0 98 13:06:08,0066095 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55799 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41021923, endtime: 41022069, seqnum: 0, connid: 0 98 13:06:08,5469563 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55800 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41021930, endtime: 41022123, seqnum: 0, connid: 0 98 13:06:08,5469741 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55800 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41021931, endtime: 41022123, seqnum: 0, connid: 0 98 13:06:08,5469818 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55800 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41021933, endtime: 41022123, seqnum: 0, connid: 0 98 13:06:08,5469893 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55800 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41021934, endtime: 41022123, seqnum: 0, connid: 0 98 13:06:08,5469951 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55800 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41021937, endtime: 41022123, seqnum: 0, connid: 0 98 13:06:08,5470020 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55800 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41021941, endtime: 41022123, seqnum: 0, connid: 0 98 13:06:08,5470076 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55800 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41021942, endtime: 41022123, seqnum: 0, connid: 0 98 13:06:08,5470142 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55800 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41021944, endtime: 41022123, seqnum: 0, connid: 0 98 13:06:08,5470300 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55800 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41021945, endtime: 41022123, seqnum: 0, connid: 0 98 13:06:08,5470624 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55800 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41021947, endtime: 41022123, seqnum: 0, connid: 0 98 13:06:08,5470685 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55800 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41021949, endtime: 41022123, seqnum: 0, connid: 0 98 13:06:08,5470755 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55800 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41021950, endtime: 41022123, seqnum: 0, connid: 0 98 13:06:08,5470810 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55800 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41021951, endtime: 41022123, seqnum: 0, connid: 0 98 13:06:08,9814583 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55799 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41022069, endtime: 41022167, seqnum: 0, connid: 0 98 13:06:08,9814769 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55799 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41022072, endtime: 41022167, seqnum: 0, connid: 0 98 13:06:08,9814855 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55799 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41022073, endtime: 41022167, seqnum: 0, connid: 0 98 13:06:08,9814935 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55799 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41022074, endtime: 41022167, seqnum: 0, connid: 0 98 13:06:08,9814999 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55799 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41022076, endtime: 41022167, seqnum: 0, connid: 0 98 13:06:08,9815074 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55799 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41022078, endtime: 41022167, seqnum: 0, connid: 0 98 13:06:08,9815132 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55799 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41022079, endtime: 41022167, seqnum: 0, connid: 0 98 13:06:08,9815204 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55799 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41022081, endtime: 41022167, seqnum: 0, connid: 0 98 13:06:08,9815265 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55799 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41022085, endtime: 41022167, seqnum: 0, connid: 0 98 13:06:08,9815550 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55799 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41022087, endtime: 41022167, seqnum: 0, connid: 0 98 13:06:08,9815611 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55799 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41022089, endtime: 41022167, seqnum: 0, connid: 0 98 13:06:08,9815683 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55799 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41022091, endtime: 41022167, seqnum: 0, connid: 0 98 13:06:08,9815883 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55799 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41022095, endtime: 41022167, seqnum: 0, connid: 0 98 13:06:09,7438803 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55799 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41022167, endtime: 41022243, seqnum: 0, connid: 0 98 13:06:09,7439052 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55799 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41022169, endtime: 41022243, seqnum: 0, connid: 0 98 13:06:09,7439144 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55799 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41022170, endtime: 41022243, seqnum: 0, connid: 0 98 13:06:09,7439232 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55799 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41022173, endtime: 41022243, seqnum: 0, connid: 0 98 13:06:09,7439299 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55799 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41022174, endtime: 41022243, seqnum: 0, connid: 0 98 13:06:09,7439374 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55799 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41022177, endtime: 41022243, seqnum: 0, connid: 0 98 13:06:09,7439432 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55799 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41022178, endtime: 41022243, seqnum: 0, connid: 0 98 13:06:09,7439507 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55799 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41022180, endtime: 41022243, seqnum: 0, connid: 0 98 13:06:09,7439565 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55799 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41022181, endtime: 41022243, seqnum: 0, connid: 0 98 13:06:09,7439886 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55799 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41022183, endtime: 41022243, seqnum: 0, connid: 0 98 13:06:09,7439950 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55799 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41022185, endtime: 41022243, seqnum: 0, connid: 0 98 13:06:09,7440022 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55799 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41022187, endtime: 41022243, seqnum: 0, connid: 0 98 13:06:09,7440080 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55799 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41022189, endtime: 41022243, seqnum: 0, connid: 0 98 13:06:10,4295416 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55800 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41022123, endtime: 41022312, seqnum: 0, connid: 0 98 13:06:10,4295680 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55800 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41022125, endtime: 41022312, seqnum: 0, connid: 0 98 13:06:10,4295785 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55800 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41022128, endtime: 41022312, seqnum: 0, connid: 0 98 13:06:10,4295874 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55800 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41022130, endtime: 41022312, seqnum: 0, connid: 0 98 13:06:10,4295943 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55800 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41022131, endtime: 41022312, seqnum: 0, connid: 0 98 13:06:10,4296026 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55800 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41022133, endtime: 41022312, seqnum: 0, connid: 0 98 13:06:10,4296092 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55800 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41022134, endtime: 41022312, seqnum: 0, connid: 0 98 13:06:10,4296173 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55800 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41022136, endtime: 41022312, seqnum: 0, connid: 0 98 13:06:10,4296239 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55800 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41022139, endtime: 41022312, seqnum: 0, connid: 0 98 13:06:10,4296569 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55800 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41022141, endtime: 41022312, seqnum: 0, connid: 0 98 13:06:10,4296635 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55800 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41022144, endtime: 41022312, seqnum: 0, connid: 0 98 13:06:10,4296708 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55800 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41022145, endtime: 41022312, seqnum: 0, connid: 0 98 13:06:10,4296768 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55800 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41022148, endtime: 41022312, seqnum: 0, connid: 0 98 13:06:10,5124953 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55800 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41022312, endtime: 41022320, seqnum: 0, connid: 0 98 13:06:10,5723826 MCLauncher.exe 6080 TCP TCPCopy WIN-0UOTFKKVN1S:54920 -> sheltex.company:8000 SUCCESS Length: 2, seqnum: 0, connid: 0 98 13:06:10,5723956 MCLauncher.exe 6080 TCP Receive WIN-0UOTFKKVN1S:54920 -> sheltex.company:8000 SUCCESS Length: 2, seqnum: 0, connid: 0 98 13:06:10,5731060 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54920 -> sheltex.company:8000 SUCCESS Length: 2, startime: 41022326, endtime: 41022326, seqnum: 0, connid: 0 98 13:06:10,5973902 MCLauncher.exe 6080 TCP Disconnect WIN-0UOTFKKVN1S:55812 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 0, seqnum: 0, connid: 0 98 13:06:10,5991240 MCLauncher.exe 6080 TCP Disconnect WIN-0UOTFKKVN1S:55811 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 0, seqnum: 0, connid: 0 98 13:06:10,6486401 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55799 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41022243, endtime: 41022333, seqnum: 0, connid: 0 98 13:06:10,6486650 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55799 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41022244, endtime: 41022333, seqnum: 0, connid: 0 98 13:06:10,6486747 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55799 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41022245, endtime: 41022333, seqnum: 0, connid: 0 98 13:06:10,6488285 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55799 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41022247, endtime: 41022333, seqnum: 0, connid: 0 98 13:06:10,6488401 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55799 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41022248, endtime: 41022333, seqnum: 0, connid: 0 98 13:06:10,6488487 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55799 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41022250, endtime: 41022333, seqnum: 0, connid: 0 98 13:06:10,6488553 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55799 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41022251, endtime: 41022333, seqnum: 0, connid: 0 98 13:06:10,6488631 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55799 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41022253, endtime: 41022333, seqnum: 0, connid: 0 98 13:06:10,6488692 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55799 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41022256, endtime: 41022333, seqnum: 0, connid: 0 98 13:06:10,6488769 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55799 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41022258, endtime: 41022333, seqnum: 0, connid: 0 98 13:06:10,6488830 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55799 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41022261, endtime: 41022333, seqnum: 0, connid: 0 98 13:06:10,6488905 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55799 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41022262, endtime: 41022333, seqnum: 0, connid: 0 98 13:06:10,6489132 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55799 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41022264, endtime: 41022334, seqnum: 0, connid: 0 98 13:06:11,0887297 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55810 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41021463, endtime: 41022377, seqnum: 0, connid: 0 98 13:06:11,0887500 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55810 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41021869, endtime: 41022377, seqnum: 0, connid: 0 98 13:06:11,0887580 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55810 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41021872, endtime: 41022377, seqnum: 0, connid: 0 98 13:06:11,0887663 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55810 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41021873, endtime: 41022377, seqnum: 0, connid: 0 98 13:06:11,0887727 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55810 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41021874, endtime: 41022377, seqnum: 0, connid: 0 98 13:06:11,0887799 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55810 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41021876, endtime: 41022377, seqnum: 0, connid: 0 98 13:06:11,0889373 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55810 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41021878, endtime: 41022378, seqnum: 0, connid: 0 98 13:06:11,0889489 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55810 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41021881, endtime: 41022378, seqnum: 0, connid: 0 98 13:06:11,0889555 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55810 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41021883, endtime: 41022378, seqnum: 0, connid: 0 98 13:06:11,0889630 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55810 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41021886, endtime: 41022378, seqnum: 0, connid: 0 98 13:06:11,0889691 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55810 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41021887, endtime: 41022378, seqnum: 0, connid: 0 98 13:06:11,0889763 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55810 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41021888, endtime: 41022378, seqnum: 0, connid: 0 98 13:06:11,0889827 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55810 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41021889, endtime: 41022378, seqnum: 0, connid: 0 98 13:06:12,2894688 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55800 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41022314, endtime: 41022498, seqnum: 0, connid: 0 98 13:06:12,2894962 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55800 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41022316, endtime: 41022498, seqnum: 0, connid: 0 98 13:06:12,2895064 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55800 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41022319, endtime: 41022498, seqnum: 0, connid: 0 98 13:06:12,2895131 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55800 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41022322, endtime: 41022498, seqnum: 0, connid: 0 98 13:06:12,2895206 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55800 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41022325, endtime: 41022498, seqnum: 0, connid: 0 98 13:06:12,2895264 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55800 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41022326, endtime: 41022498, seqnum: 0, connid: 0 98 13:06:12,2895336 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55800 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41022328, endtime: 41022498, seqnum: 0, connid: 0 98 13:06:12,2895394 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55800 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41022331, endtime: 41022498, seqnum: 0, connid: 0 98 13:06:12,2895469 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55800 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41022333, endtime: 41022498, seqnum: 0, connid: 0 98 13:06:12,2896153 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55800 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41022336, endtime: 41022498, seqnum: 0, connid: 0 98 13:06:12,2896236 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55800 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41022337, endtime: 41022498, seqnum: 0, connid: 0 98 13:06:12,2896297 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55800 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41022339, endtime: 41022498, seqnum: 0, connid: 0 98 13:06:12,4792305 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55800 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41022340, endtime: 41022517, seqnum: 0, connid: 0 98 13:06:12,4792461 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55800 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41022500, endtime: 41022517, seqnum: 0, connid: 0 98 13:06:12,4792732 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55800 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41022500, endtime: 41022517, seqnum: 0, connid: 0 98 13:06:12,4792862 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55800 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41022503, endtime: 41022517, seqnum: 0, connid: 0 98 13:06:12,4792990 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55800 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41022506, endtime: 41022517, seqnum: 0, connid: 0 98 13:06:12,4793089 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55800 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41022508, endtime: 41022517, seqnum: 0, connid: 0 98 13:06:12,4793214 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55800 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41022511, endtime: 41022517, seqnum: 0, connid: 0 98 13:06:12,4793314 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55800 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41022512, endtime: 41022517, seqnum: 0, connid: 0 98 13:06:12,4793425 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55800 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41022514, endtime: 41022517, seqnum: 0, connid: 0 98 13:06:12,4793519 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55800 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41022516, endtime: 41022517, seqnum: 0, connid: 0 98 13:06:12,4962152 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55800 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41022517, endtime: 41022518, seqnum: 0, connid: 0 98 13:06:12,5180270 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55800 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41022520, endtime: 41022520, seqnum: 0, connid: 0 98 13:06:12,5532671 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55800 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41022523, endtime: 41022524, seqnum: 0, connid: 0 98 13:06:13,6097824 MCLauncher.exe 6080 TCP Reconnect WIN-0UOTFKKVN1S:55815 -> 54.36.38.171:25565 SUCCESS Length: 0, seqnum: 0, connid: 0 98 13:06:13,6097915 MCLauncher.exe 6080 TCP Reconnect WIN-0UOTFKKVN1S:55836 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 0, seqnum: 0, connid: 0 98 13:06:13,6097938 MCLauncher.exe 6080 TCP Reconnect WIN-0UOTFKKVN1S:55837 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 0, seqnum: 0, connid: 0 98 13:06:13,7092475 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55799 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41022333, endtime: 41022640, seqnum: 0, connid: 0 98 13:06:13,7092813 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55799 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41022336, endtime: 41022640, seqnum: 0, connid: 0 98 13:06:13,7092957 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55799 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41022337, endtime: 41022640, seqnum: 0, connid: 0 98 13:06:13,7093084 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55799 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41022339, endtime: 41022640, seqnum: 0, connid: 0 98 13:06:13,7093184 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55799 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41022340, endtime: 41022640, seqnum: 0, connid: 0 98 13:06:13,7093289 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55799 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41022342, endtime: 41022640, seqnum: 0, connid: 0 98 13:06:13,7093383 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55799 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41022344, endtime: 41022640, seqnum: 0, connid: 0 98 13:06:13,7093511 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55799 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41022347, endtime: 41022640, seqnum: 0, connid: 0 98 13:06:13,7093599 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55799 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41022348, endtime: 41022640, seqnum: 0, connid: 0 98 13:06:13,7094040 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55799 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41022352, endtime: 41022640, seqnum: 0, connid: 0 98 13:06:13,7094106 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55799 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41022355, endtime: 41022640, seqnum: 0, connid: 0 98 13:06:13,7094173 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55799 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41022358, endtime: 41022640, seqnum: 0, connid: 0 98 13:06:13,7094231 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55799 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41022359, endtime: 41022640, seqnum: 0, connid: 0 98 13:06:15,5463709 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55800 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41022528, endtime: 41022823, seqnum: 0, connid: 0 98 13:06:15,5463909 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55800 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41022531, endtime: 41022823, seqnum: 0, connid: 0 98 13:06:15,5463989 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55800 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41022533, endtime: 41022823, seqnum: 0, connid: 0 98 13:06:15,5464069 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55800 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41022535, endtime: 41022823, seqnum: 0, connid: 0 98 13:06:15,5464130 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55800 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41022537, endtime: 41022823, seqnum: 0, connid: 0 98 13:06:15,5464202 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55800 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41022539, endtime: 41022823, seqnum: 0, connid: 0 98 13:06:15,5464260 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55800 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41022541, endtime: 41022823, seqnum: 0, connid: 0 98 13:06:15,5464333 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55800 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41022544, endtime: 41022823, seqnum: 0, connid: 0 98 13:06:15,5464391 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55800 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41022545, endtime: 41022823, seqnum: 0, connid: 0 98 13:06:15,5464887 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55800 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41022547, endtime: 41022823, seqnum: 0, connid: 0 98 13:06:15,5464967 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55800 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41022550, endtime: 41022823, seqnum: 0, connid: 0 98 13:06:15,5465042 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55800 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41022551, endtime: 41022823, seqnum: 0, connid: 0 98 13:06:15,5465103 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55800 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41022553, endtime: 41022823, seqnum: 0, connid: 0 98 13:06:15,6790129 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55799 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41022640, endtime: 41022837, seqnum: 0, connid: 0 98 13:06:15,6790314 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55799 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41022641, endtime: 41022837, seqnum: 0, connid: 0 98 13:06:15,6790386 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55799 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41022644, endtime: 41022837, seqnum: 0, connid: 0 98 13:06:15,6790461 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55799 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41022647, endtime: 41022837, seqnum: 0, connid: 0 98 13:06:15,6790517 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55799 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41022649, endtime: 41022837, seqnum: 0, connid: 0 98 13:06:15,6790583 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55799 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41022651, endtime: 41022837, seqnum: 0, connid: 0 98 13:06:15,6790639 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55799 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41022655, endtime: 41022837, seqnum: 0, connid: 0 98 13:06:15,6792168 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55799 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41022656, endtime: 41022837, seqnum: 0, connid: 0 98 13:06:15,6792326 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55799 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41022658, endtime: 41022837, seqnum: 0, connid: 0 98 13:06:15,6792448 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55799 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41022659, endtime: 41022837, seqnum: 0, connid: 0 98 13:06:15,6792517 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55799 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41022661, endtime: 41022837, seqnum: 0, connid: 0 98 13:06:15,6792595 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55799 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41022662, endtime: 41022837, seqnum: 0, connid: 0 98 13:06:15,6792658 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55799 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41022664, endtime: 41022837, seqnum: 0, connid: 0 98 13:06:17,1833338 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55810 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41022377, endtime: 41022987, seqnum: 0, connid: 0 98 13:06:17,1833535 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55810 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41022380, endtime: 41022987, seqnum: 0, connid: 0 98 13:06:17,1833629 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55810 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41022383, endtime: 41022987, seqnum: 0, connid: 0 98 13:06:17,1833699 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55810 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41022386, endtime: 41022987, seqnum: 0, connid: 0 98 13:06:17,1833776 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55810 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41022387, endtime: 41022987, seqnum: 0, connid: 0 98 13:06:17,1833837 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55810 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41022391, endtime: 41022987, seqnum: 0, connid: 0 98 13:06:17,1833909 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55810 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41022394, endtime: 41022987, seqnum: 0, connid: 0 98 13:06:17,1833970 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55810 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41022395, endtime: 41022987, seqnum: 0, connid: 0 98 13:06:17,1834039 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55810 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41022398, endtime: 41022987, seqnum: 0, connid: 0 98 13:06:17,1834100 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55810 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41022400, endtime: 41022987, seqnum: 0, connid: 0 98 13:06:17,1834419 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55810 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41022401, endtime: 41022987, seqnum: 0, connid: 0 98 13:06:17,1834485 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55810 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41022403, endtime: 41022987, seqnum: 0, connid: 0 98 13:06:17,1834555 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55810 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41022405, endtime: 41022987, seqnum: 0, connid: 0 98 13:06:17,7197914 MCLauncher.exe 6080 TCP Reconnect WIN-0UOTFKKVN1S:55843 -> 54.36.38.171:25565 SUCCESS Length: 0, seqnum: 0, connid: 0 98 13:06:18,8452066 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55799 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41022837, endtime: 41023153, seqnum: 0, connid: 0 98 13:06:18,8452216 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55799 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41022837, endtime: 41023153, seqnum: 0, connid: 0 98 13:06:18,8452296 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55799 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41022840, endtime: 41023153, seqnum: 0, connid: 0 98 13:06:18,8452376 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55799 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41022842, endtime: 41023153, seqnum: 0, connid: 0 98 13:06:18,8452440 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55799 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41022844, endtime: 41023153, seqnum: 0, connid: 0 98 13:06:18,8452515 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55799 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41022845, endtime: 41023153, seqnum: 0, connid: 0 98 13:06:18,8452576 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55799 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41022849, endtime: 41023153, seqnum: 0, connid: 0 98 13:06:18,8452648 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55799 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41022850, endtime: 41023153, seqnum: 0, connid: 0 98 13:06:18,8452712 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55799 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41022853, endtime: 41023153, seqnum: 0, connid: 0 98 13:06:18,8454028 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55799 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41022855, endtime: 41023153, seqnum: 0, connid: 0 98 13:06:18,8454116 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55799 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41022858, endtime: 41023153, seqnum: 0, connid: 0 98 13:06:18,8454194 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55799 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41022859, endtime: 41023153, seqnum: 0, connid: 0 98 13:06:18,8454258 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55799 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41022863, endtime: 41023153, seqnum: 0, connid: 0 98 13:06:19,5584353 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55810 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41022987, endtime: 41023224, seqnum: 0, connid: 0 98 13:06:19,5584567 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55810 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41022989, endtime: 41023224, seqnum: 0, connid: 0 98 13:06:19,5584647 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55810 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41022990, endtime: 41023224, seqnum: 0, connid: 0 98 13:06:19,5584724 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55810 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41022992, endtime: 41023224, seqnum: 0, connid: 0 98 13:06:19,5584785 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55810 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41022995, endtime: 41023224, seqnum: 0, connid: 0 98 13:06:19,5584855 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55810 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41022997, endtime: 41023224, seqnum: 0, connid: 0 98 13:06:19,5584913 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55810 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41023000, endtime: 41023224, seqnum: 0, connid: 0 98 13:06:19,5584982 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55810 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41023000, endtime: 41023224, seqnum: 0, connid: 0 98 13:06:19,5585040 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55810 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41023003, endtime: 41023224, seqnum: 0, connid: 0 98 13:06:19,5585356 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55810 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41023005, endtime: 41023224, seqnum: 0, connid: 0 98 13:06:19,5585420 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55810 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41023006, endtime: 41023224, seqnum: 0, connid: 0 98 13:06:19,5585489 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55810 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41023008, endtime: 41023224, seqnum: 0, connid: 0 98 13:06:19,5585547 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55810 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41023011, endtime: 41023224, seqnum: 0, connid: 0 98 13:06:19,6093929 MCLauncher.exe 6080 TCP Reconnect WIN-0UOTFKKVN1S:55836 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 0, seqnum: 0, connid: 0 98 13:06:19,6094014 MCLauncher.exe 6080 TCP Reconnect WIN-0UOTFKKVN1S:55837 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 0, seqnum: 0, connid: 0 98 13:06:20,6508338 MCLauncher.exe 6080 TCP TCPCopy WIN-0UOTFKKVN1S:54920 -> sheltex.company:8000 SUCCESS Length: 2, seqnum: 0, connid: 0 98 13:06:20,6508568 MCLauncher.exe 6080 TCP Receive WIN-0UOTFKKVN1S:54920 -> sheltex.company:8000 SUCCESS Length: 2, seqnum: 0, connid: 0 98 13:06:20,6513408 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54920 -> sheltex.company:8000 SUCCESS Length: 2, startime: 41023334, endtime: 41023334, seqnum: 0, connid: 0 98 13:06:21,0167896 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55799 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41023153, endtime: 41023370, seqnum: 0, connid: 0 98 13:06:21,0168110 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55799 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41023154, endtime: 41023370, seqnum: 0, connid: 0 98 13:06:21,0168193 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55799 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41023156, endtime: 41023370, seqnum: 0, connid: 0 98 13:06:21,0168273 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55799 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41023158, endtime: 41023370, seqnum: 0, connid: 0 98 13:06:21,0168337 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55799 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41023159, endtime: 41023370, seqnum: 0, connid: 0 98 13:06:21,0168553 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55799 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41023161, endtime: 41023370, seqnum: 0, connid: 0 98 13:06:21,0168678 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55799 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41023162, endtime: 41023370, seqnum: 0, connid: 0 98 13:06:21,0168805 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55799 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41023164, endtime: 41023370, seqnum: 0, connid: 0 98 13:06:21,0168874 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55799 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41023166, endtime: 41023370, seqnum: 0, connid: 0 98 13:06:21,0169207 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55799 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41023167, endtime: 41023370, seqnum: 0, connid: 0 98 13:06:21,0169271 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55799 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41023170, endtime: 41023370, seqnum: 0, connid: 0 98 13:06:21,0169343 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55799 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41023172, endtime: 41023370, seqnum: 0, connid: 0 98 13:06:21,0169404 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55799 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41023173, endtime: 41023370, seqnum: 0, connid: 0 98 13:06:21,6697373 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55800 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41022823, endtime: 41023436, seqnum: 0, connid: 0 98 13:06:21,6697556 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55800 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41022825, endtime: 41023436, seqnum: 0, connid: 0 98 13:06:21,6697631 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55800 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41022828, endtime: 41023436, seqnum: 0, connid: 0 98 13:06:21,6697711 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55800 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41022830, endtime: 41023436, seqnum: 0, connid: 0 98 13:06:21,6697772 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55800 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41022831, endtime: 41023436, seqnum: 0, connid: 0 98 13:06:21,6698091 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55800 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41022833, endtime: 41023436, seqnum: 0, connid: 0 98 13:06:21,6698215 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55800 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41022834, endtime: 41023436, seqnum: 0, connid: 0 98 13:06:21,6698332 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55800 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41022836, endtime: 41023436, seqnum: 0, connid: 0 98 13:06:21,6698432 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55800 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41022837, endtime: 41023436, seqnum: 0, connid: 0 98 13:06:21,6698831 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55800 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41022840, endtime: 41023436, seqnum: 0, connid: 0 98 13:06:21,6700202 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55800 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41022842, endtime: 41023436, seqnum: 0, connid: 0 98 13:06:21,6700318 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55800 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41022844, endtime: 41023436, seqnum: 0, connid: 0 98 13:06:21,6700388 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55800 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41022845, endtime: 41023436, seqnum: 0, connid: 0 98 13:06:23,4881664 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55810 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41023224, endtime: 41023617, seqnum: 0, connid: 0 98 13:06:23,4881872 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55810 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41023226, endtime: 41023617, seqnum: 0, connid: 0 98 13:06:23,4881950 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55810 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41023228, endtime: 41023617, seqnum: 0, connid: 0 98 13:06:23,4882027 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55810 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41023230, endtime: 41023617, seqnum: 0, connid: 0 98 13:06:23,4882088 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55810 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41023231, endtime: 41023617, seqnum: 0, connid: 0 98 13:06:23,4882157 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55810 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41023233, endtime: 41023617, seqnum: 0, connid: 0 98 13:06:23,4882216 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55810 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41023234, endtime: 41023617, seqnum: 0, connid: 0 98 13:06:23,4882282 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55810 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41023236, endtime: 41023617, seqnum: 0, connid: 0 98 13:06:23,4882340 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55810 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41023237, endtime: 41023617, seqnum: 0, connid: 0 98 13:06:23,4882825 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55810 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41023239, endtime: 41023617, seqnum: 0, connid: 0 98 13:06:23,4882900 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55810 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41023240, endtime: 41023617, seqnum: 0, connid: 0 98 13:06:23,4882969 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55810 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41023242, endtime: 41023617, seqnum: 0, connid: 0 98 13:06:23,4884219 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55810 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41023244, endtime: 41023617, seqnum: 0, connid: 0 98 13:06:23,7241946 MCLauncher.exe 6080 TCP Reconnect WIN-0UOTFKKVN1S:55847 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 0, seqnum: 0, connid: 0 98 13:06:23,7242063 MCLauncher.exe 6080 TCP Reconnect WIN-0UOTFKKVN1S:55848 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 0, seqnum: 0, connid: 0 98 13:06:23,7242099 MCLauncher.exe 6080 TCP Reconnect WIN-0UOTFKKVN1S:55843 -> 54.36.38.171:25565 SUCCESS Length: 0, seqnum: 0, connid: 0 98 13:06:25,9973071 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55800 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41023436, endtime: 41023868, seqnum: 0, connid: 0 98 13:06:25,9973253 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55800 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41023437, endtime: 41023868, seqnum: 0, connid: 0 98 13:06:25,9973447 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55800 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41023439, endtime: 41023868, seqnum: 0, connid: 0 98 13:06:25,9973564 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55800 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41023441, endtime: 41023868, seqnum: 0, connid: 0 98 13:06:25,9973630 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55800 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41023442, endtime: 41023868, seqnum: 0, connid: 0 98 13:06:25,9973702 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55800 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41023444, endtime: 41023868, seqnum: 0, connid: 0 98 13:06:25,9973766 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55800 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41023447, endtime: 41023868, seqnum: 0, connid: 0 98 13:06:25,9975437 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55800 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41023449, endtime: 41023868, seqnum: 0, connid: 0 98 13:06:25,9975545 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55800 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41023450, endtime: 41023868, seqnum: 0, connid: 0 98 13:06:25,9975628 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55800 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41023451, endtime: 41023868, seqnum: 0, connid: 0 98 13:06:25,9975692 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55800 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41023453, endtime: 41023868, seqnum: 0, connid: 0 98 13:06:25,9975766 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55800 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41023455, endtime: 41023868, seqnum: 0, connid: 0 98 13:06:25,9975830 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55800 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41023456, endtime: 41023868, seqnum: 0, connid: 0 98 13:06:27,4170860 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55799 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41023370, endtime: 41024010, seqnum: 0, connid: 0 98 13:06:27,4171049 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55799 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41023373, endtime: 41024010, seqnum: 0, connid: 0 98 13:06:27,4171124 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55799 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41023374, endtime: 41024010, seqnum: 0, connid: 0 98 13:06:27,4171198 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55799 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41023376, endtime: 41024010, seqnum: 0, connid: 0 98 13:06:27,4171257 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55799 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41023379, endtime: 41024010, seqnum: 0, connid: 0 98 13:06:27,4171326 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55799 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41023381, endtime: 41024010, seqnum: 0, connid: 0 98 13:06:27,4171381 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55799 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41023384, endtime: 41024010, seqnum: 0, connid: 0 98 13:06:27,4171450 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55799 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41023386, endtime: 41024010, seqnum: 0, connid: 0 98 13:06:27,4171506 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55799 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41023388, endtime: 41024010, seqnum: 0, connid: 0 98 13:06:27,4171800 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55799 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41023389, endtime: 41024010, seqnum: 0, connid: 0 98 13:06:27,4171858 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55799 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41023391, endtime: 41024010, seqnum: 0, connid: 0 98 13:06:27,4172082 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55799 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41023392, endtime: 41024010, seqnum: 0, connid: 0 98 13:06:27,4172154 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55799 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41023395, endtime: 41024010, seqnum: 0, connid: 0 98 13:06:27,8284001 MCLauncher.exe 6080 TCP Reconnect WIN-0UOTFKKVN1S:55852 -> 54.36.38.171:25565 SUCCESS Length: 0, seqnum: 0, connid: 0 98 13:06:29,0457082 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55800 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41023868, endtime: 41024173, seqnum: 0, connid: 0 98 13:06:29,0457245 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55800 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41023870, endtime: 41024173, seqnum: 0, connid: 0 98 13:06:29,0457317 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55800 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41023874, endtime: 41024173, seqnum: 0, connid: 0 98 13:06:29,0457395 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55800 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41023875, endtime: 41024173, seqnum: 0, connid: 0 98 13:06:29,0457453 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55800 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41023878, endtime: 41024173, seqnum: 0, connid: 0 98 13:06:29,0457522 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55800 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41023881, endtime: 41024173, seqnum: 0, connid: 0 98 13:06:29,0457578 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55800 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41023883, endtime: 41024173, seqnum: 0, connid: 0 98 13:06:29,0457647 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55800 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41023884, endtime: 41024173, seqnum: 0, connid: 0 98 13:06:29,0457703 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55800 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41023886, endtime: 41024173, seqnum: 0, connid: 0 98 13:06:29,0458010 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55800 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41023888, endtime: 41024173, seqnum: 0, connid: 0 98 13:06:29,0458068 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55800 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41023889, endtime: 41024173, seqnum: 0, connid: 0 98 13:06:29,0458138 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55800 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41023891, endtime: 41024173, seqnum: 0, connid: 0 98 13:06:29,0458193 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55800 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41023892, endtime: 41024173, seqnum: 0, connid: 0 98 13:06:29,7342404 MCLauncher.exe 6080 TCP Reconnect WIN-0UOTFKKVN1S:55847 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 0, seqnum: 0, connid: 0 98 13:06:29,7342487 MCLauncher.exe 6080 TCP Reconnect WIN-0UOTFKKVN1S:55848 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 0, seqnum: 0, connid: 0 98 13:06:29,9370812 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55810 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41023617, endtime: 41024262, seqnum: 0, connid: 0 98 13:06:29,9371003 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55810 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41023619, endtime: 41024262, seqnum: 0, connid: 0 98 13:06:29,9371097 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55810 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41023620, endtime: 41024262, seqnum: 0, connid: 0 98 13:06:29,9371355 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55810 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41023622, endtime: 41024262, seqnum: 0, connid: 0 98 13:06:29,9371441 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55810 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41023623, endtime: 41024262, seqnum: 0, connid: 0 98 13:06:29,9371504 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55810 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41023625, endtime: 41024262, seqnum: 0, connid: 0 98 13:06:29,9371582 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55810 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41023627, endtime: 41024262, seqnum: 0, connid: 0 98 13:06:29,9373075 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55810 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41023630, endtime: 41024262, seqnum: 0, connid: 0 98 13:06:29,9373194 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55810 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41023638, endtime: 41024262, seqnum: 0, connid: 0 98 13:06:29,9373261 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55810 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41023641, endtime: 41024262, seqnum: 0, connid: 0 98 13:06:29,9373336 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55810 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41023644, endtime: 41024262, seqnum: 0, connid: 0 98 13:06:29,9373397 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55810 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41023645, endtime: 41024262, seqnum: 0, connid: 0 98 13:06:29,9373471 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55810 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41023648, endtime: 41024262, seqnum: 0, connid: 0 98 13:06:30,9110013 MCLauncher.exe 6080 TCP TCPCopy WIN-0UOTFKKVN1S:54920 -> sheltex.company:8000 SUCCESS Length: 2, seqnum: 0, connid: 0 98 13:06:30,9110157 MCLauncher.exe 6080 TCP Receive WIN-0UOTFKKVN1S:54920 -> sheltex.company:8000 SUCCESS Length: 2, seqnum: 0, connid: 0 98 13:06:30,9114665 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54920 -> sheltex.company:8000 SUCCESS Length: 2, startime: 41024360, endtime: 41024360, seqnum: 0, connid: 0 98 13:06:31,9076332 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55799 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41024010, endtime: 41024459, seqnum: 0, connid: 0 98 13:06:31,9076537 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55799 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41024012, endtime: 41024459, seqnum: 0, connid: 0 98 13:06:31,9076623 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55799 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41024014, endtime: 41024459, seqnum: 0, connid: 0 98 13:06:31,9076706 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55799 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41024017, endtime: 41024459, seqnum: 0, connid: 0 98 13:06:31,9076767 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55799 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41024019, endtime: 41024459, seqnum: 0, connid: 0 98 13:06:31,9076841 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55799 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41024020, endtime: 41024459, seqnum: 0, connid: 0 98 13:06:31,9076900 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55799 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41024023, endtime: 41024459, seqnum: 0, connid: 0 98 13:06:31,9076972 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55799 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41024023, endtime: 41024459, seqnum: 0, connid: 0 98 13:06:31,9077033 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55799 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41024025, endtime: 41024459, seqnum: 0, connid: 0 98 13:06:31,9077312 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55799 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41024027, endtime: 41024459, seqnum: 0, connid: 0 98 13:06:31,9078667 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55799 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41024028, endtime: 41024459, seqnum: 0, connid: 0 98 13:06:31,9078786 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55799 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41024030, endtime: 41024459, seqnum: 0, connid: 0 98 13:06:31,9078858 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55799 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41024033, endtime: 41024459, seqnum: 0, connid: 0 98 13:06:32,9915354 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55800 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41024173, endtime: 41024568, seqnum: 0, connid: 0 98 13:06:32,9915543 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55800 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41024174, endtime: 41024568, seqnum: 0, connid: 0 98 13:06:32,9915623 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55800 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41024175, endtime: 41024568, seqnum: 0, connid: 0 98 13:06:32,9915701 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55800 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41024178, endtime: 41024568, seqnum: 0, connid: 0 98 13:06:32,9915767 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55800 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41024179, endtime: 41024568, seqnum: 0, connid: 0 98 13:06:32,9915839 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55800 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41024181, endtime: 41024568, seqnum: 0, connid: 0 98 13:06:32,9915897 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55800 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41024183, endtime: 41024568, seqnum: 0, connid: 0 98 13:06:32,9915969 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55800 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41024184, endtime: 41024568, seqnum: 0, connid: 0 98 13:06:32,9916028 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55800 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41024187, endtime: 41024568, seqnum: 0, connid: 0 98 13:06:32,9916324 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55800 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41024190, endtime: 41024568, seqnum: 0, connid: 0 98 13:06:32,9916388 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55800 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41024192, endtime: 41024568, seqnum: 0, connid: 0 98 13:06:32,9916460 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55800 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41024194, endtime: 41024568, seqnum: 0, connid: 0 98 13:06:32,9916518 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55800 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41024195, endtime: 41024568, seqnum: 0, connid: 0 98 13:06:33,0796908 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55800 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41024568, endtime: 41024577, seqnum: 0, connid: 0 98 13:06:33,8430212 MCLauncher.exe 6080 TCP Reconnect WIN-0UOTFKKVN1S:55852 -> 54.36.38.171:25565 SUCCESS Length: 0, seqnum: 0, connid: 0 98 13:06:33,8430301 MCLauncher.exe 6080 TCP Reconnect WIN-0UOTFKKVN1S:55854 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 0, seqnum: 0, connid: 0 98 13:06:33,8430320 MCLauncher.exe 6080 TCP Reconnect WIN-0UOTFKKVN1S:55855 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 0, seqnum: 0, connid: 0 98 13:06:33,9207476 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55810 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41024262, endtime: 41024661, seqnum: 0, connid: 0 98 13:06:33,9207656 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55810 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41024264, endtime: 41024661, seqnum: 0, connid: 0 98 13:06:33,9207731 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55810 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41024266, endtime: 41024661, seqnum: 0, connid: 0 98 13:06:33,9207806 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55810 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41024267, endtime: 41024661, seqnum: 0, connid: 0 98 13:06:33,9207861 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55810 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41024269, endtime: 41024661, seqnum: 0, connid: 0 98 13:06:33,9207930 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55810 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41024270, endtime: 41024661, seqnum: 0, connid: 0 98 13:06:33,9207986 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55810 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41024273, endtime: 41024661, seqnum: 0, connid: 0 98 13:06:33,9208052 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55810 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41024274, endtime: 41024661, seqnum: 0, connid: 0 98 13:06:33,9208108 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55810 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41024277, endtime: 41024661, seqnum: 0, connid: 0 98 13:06:33,9209837 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55810 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41024278, endtime: 41024661, seqnum: 0, connid: 0 98 13:06:33,9209950 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55810 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41024280, endtime: 41024661, seqnum: 0, connid: 0 98 13:06:33,9210031 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55810 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41024282, endtime: 41024661, seqnum: 0, connid: 0 98 13:06:33,9210094 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55810 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41024283, endtime: 41024661, seqnum: 0, connid: 0 98 13:06:34,1147597 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55799 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41024459, endtime: 41024680, seqnum: 0, connid: 0 98 13:06:34,1147797 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55799 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41024461, endtime: 41024680, seqnum: 0, connid: 0 98 13:06:34,1147877 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55799 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41024462, endtime: 41024680, seqnum: 0, connid: 0 98 13:06:34,1147954 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55799 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41024464, endtime: 41024680, seqnum: 0, connid: 0 98 13:06:34,1148018 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55799 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41024467, endtime: 41024680, seqnum: 0, connid: 0 98 13:06:34,1148090 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55799 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41024469, endtime: 41024680, seqnum: 0, connid: 0 98 13:06:34,1148148 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55799 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41024470, endtime: 41024680, seqnum: 0, connid: 0 98 13:06:34,1148220 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55799 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41024472, endtime: 41024680, seqnum: 0, connid: 0 98 13:06:34,1148279 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55799 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41024473, endtime: 41024680, seqnum: 0, connid: 0 98 13:06:34,1148575 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55799 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41024474, endtime: 41024680, seqnum: 0, connid: 0 98 13:06:34,1148642 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55799 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41024475, endtime: 41024680, seqnum: 0, connid: 0 98 13:06:34,1148714 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55799 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41024478, endtime: 41024680, seqnum: 0, connid: 0 98 13:06:34,1148775 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55799 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41024480, endtime: 41024680, seqnum: 0, connid: 0 98 13:06:34,9015853 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55800 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41024569, endtime: 41024759, seqnum: 0, connid: 0 98 13:06:34,9016091 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55800 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41024570, endtime: 41024759, seqnum: 0, connid: 0 98 13:06:34,9016238 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55800 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41024572, endtime: 41024759, seqnum: 0, connid: 0 98 13:06:34,9016346 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55800 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41024573, endtime: 41024759, seqnum: 0, connid: 0 98 13:06:34,9016468 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55800 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41024574, endtime: 41024759, seqnum: 0, connid: 0 98 13:06:34,9016576 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55800 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41024577, endtime: 41024759, seqnum: 0, connid: 0 98 13:06:34,9016704 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55800 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41024578, endtime: 41024759, seqnum: 0, connid: 0 98 13:06:34,9016798 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55800 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41024580, endtime: 41024759, seqnum: 0, connid: 0 98 13:06:34,9016903 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55800 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41024581, endtime: 41024759, seqnum: 0, connid: 0 98 13:06:34,9017870 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55800 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41024583, endtime: 41024759, seqnum: 0, connid: 0 98 13:06:34,9017995 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55800 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41024584, endtime: 41024759, seqnum: 0, connid: 0 98 13:06:34,9018083 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55800 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41024586, endtime: 41024759, seqnum: 0, connid: 0 98 13:06:34,9023832 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55800 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41024587, endtime: 41024759, seqnum: 0, connid: 0 98 13:06:36,0827315 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55800 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41024759, endtime: 41024877, seqnum: 0, connid: 0 98 13:06:36,0827517 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55800 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41024761, endtime: 41024877, seqnum: 0, connid: 0 98 13:06:36,0827606 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55800 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41024762, endtime: 41024877, seqnum: 0, connid: 0 98 13:06:36,0827692 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55800 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41024765, endtime: 41024877, seqnum: 0, connid: 0 98 13:06:36,0827755 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55800 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41024767, endtime: 41024877, seqnum: 0, connid: 0 98 13:06:36,0827827 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55800 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41024769, endtime: 41024877, seqnum: 0, connid: 0 98 13:06:36,0827888 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55800 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41024770, endtime: 41024877, seqnum: 0, connid: 0 98 13:06:36,0827963 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55800 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41024772, endtime: 41024877, seqnum: 0, connid: 0 98 13:06:36,0828024 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55800 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41024773, endtime: 41024877, seqnum: 0, connid: 0 98 13:06:36,0828869 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55800 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41024774, endtime: 41024877, seqnum: 0, connid: 0 98 13:06:36,0828947 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55800 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41024775, endtime: 41024877, seqnum: 0, connid: 0 98 13:06:36,0829024 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55800 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41024778, endtime: 41024877, seqnum: 0, connid: 0 98 13:06:36,0829672 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55800 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41024780, endtime: 41024877, seqnum: 0, connid: 0 98 13:06:36,9493038 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55799 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41024680, endtime: 41024964, seqnum: 0, connid: 0 98 13:06:36,9493232 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55799 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41024681, endtime: 41024964, seqnum: 0, connid: 0 98 13:06:36,9493306 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55799 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41024683, endtime: 41024964, seqnum: 0, connid: 0 98 13:06:36,9493381 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55799 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41024684, endtime: 41024964, seqnum: 0, connid: 0 98 13:06:36,9493442 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55799 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41024686, endtime: 41024964, seqnum: 0, connid: 0 98 13:06:36,9493512 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55799 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41024689, endtime: 41024964, seqnum: 0, connid: 0 98 13:06:36,9493567 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55799 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41024691, endtime: 41024964, seqnum: 0, connid: 0 98 13:06:36,9493636 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55799 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41024694, endtime: 41024964, seqnum: 0, connid: 0 98 13:06:36,9493692 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55799 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41024695, endtime: 41024964, seqnum: 0, connid: 0 98 13:06:36,9493996 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55799 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41024697, endtime: 41024964, seqnum: 0, connid: 0 98 13:06:36,9494057 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55799 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41024698, endtime: 41024964, seqnum: 0, connid: 0 98 13:06:36,9495409 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55799 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41024700, endtime: 41024964, seqnum: 0, connid: 0 98 13:06:36,9495523 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55799 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41024701, endtime: 41024964, seqnum: 0, connid: 0 98 13:06:37,9532801 MCLauncher.exe 6080 TCP Reconnect WIN-0UOTFKKVN1S:55874 -> 54.36.38.171:25565 SUCCESS Length: 0, seqnum: 0, connid: 0 98 13:06:38,1888744 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55810 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41024661, endtime: 41025087, seqnum: 0, connid: 0 98 13:06:38,1888933 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55810 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41024662, endtime: 41025087, seqnum: 0, connid: 0 98 13:06:38,1889010 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55810 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41024664, endtime: 41025087, seqnum: 0, connid: 0 98 13:06:38,1889085 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55810 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41024666, endtime: 41025087, seqnum: 0, connid: 0 98 13:06:38,1889146 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55810 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41024667, endtime: 41025087, seqnum: 0, connid: 0 98 13:06:38,1889215 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55810 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41024669, endtime: 41025087, seqnum: 0, connid: 0 98 13:06:38,1889271 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55810 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41024670, endtime: 41025087, seqnum: 0, connid: 0 98 13:06:38,1889337 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55810 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41024672, endtime: 41025087, seqnum: 0, connid: 0 98 13:06:38,1889392 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55810 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41024673, endtime: 41025087, seqnum: 0, connid: 0 98 13:06:38,1889703 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55810 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41024674, endtime: 41025088, seqnum: 0, connid: 0 98 13:06:38,1889764 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55810 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41024676, endtime: 41025088, seqnum: 0, connid: 0 98 13:06:38,1891127 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55810 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41024678, endtime: 41025088, seqnum: 0, connid: 0 98 13:06:38,1891238 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55810 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41024680, endtime: 41025088, seqnum: 0, connid: 0 98 13:06:39,6762315 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55799 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41024964, endtime: 41025236, seqnum: 0, connid: 0 98 13:06:39,6762515 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55799 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41024967, endtime: 41025236, seqnum: 0, connid: 0 98 13:06:39,6762595 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55799 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41024969, endtime: 41025236, seqnum: 0, connid: 0 98 13:06:39,6762675 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55799 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41024973, endtime: 41025236, seqnum: 0, connid: 0 98 13:06:39,6762739 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55799 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41024974, endtime: 41025236, seqnum: 0, connid: 0 98 13:06:39,6762811 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55799 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41024978, endtime: 41025236, seqnum: 0, connid: 0 98 13:06:39,6762872 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55799 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41024980, endtime: 41025236, seqnum: 0, connid: 0 98 13:06:39,6762941 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55799 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41024983, endtime: 41025236, seqnum: 0, connid: 0 98 13:06:39,6763002 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55799 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41024984, endtime: 41025236, seqnum: 0, connid: 0 98 13:06:39,6763296 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55799 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41024986, endtime: 41025236, seqnum: 0, connid: 0 98 13:06:39,6764662 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55799 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41024988, endtime: 41025236, seqnum: 0, connid: 0 98 13:06:39,6764792 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55799 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41024988, endtime: 41025236, seqnum: 0, connid: 0 98 13:06:39,6764864 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55799 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41024989, endtime: 41025236, seqnum: 0, connid: 0 98 13:06:39,7654067 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55799 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41025236, endtime: 41025245, seqnum: 0, connid: 0 98 13:06:39,8303963 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55800 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41024877, endtime: 41025252, seqnum: 0, connid: 0 98 13:06:39,8304165 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55800 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41024878, endtime: 41025252, seqnum: 0, connid: 0 98 13:06:39,8304243 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55800 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41024880, endtime: 41025252, seqnum: 0, connid: 0 98 13:06:39,8305878 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55800 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41024881, endtime: 41025252, seqnum: 0, connid: 0 98 13:06:39,8305974 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55800 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41024883, endtime: 41025252, seqnum: 0, connid: 0 98 13:06:39,8306052 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55800 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41024884, endtime: 41025252, seqnum: 0, connid: 0 98 13:06:39,8306113 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55800 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41024886, endtime: 41025252, seqnum: 0, connid: 0 98 13:06:39,8306185 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55800 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41024889, endtime: 41025252, seqnum: 0, connid: 0 98 13:06:39,8306246 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55800 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41024890, endtime: 41025252, seqnum: 0, connid: 0 98 13:06:39,8306318 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55800 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41024892, endtime: 41025252, seqnum: 0, connid: 0 98 13:06:39,8306379 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55800 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41024895, endtime: 41025252, seqnum: 0, connid: 0 98 13:06:39,8306448 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55800 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41024897, endtime: 41025252, seqnum: 0, connid: 0 98 13:06:39,8433395 MCLauncher.exe 6080 TCP Reconnect WIN-0UOTFKKVN1S:55854 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 0, seqnum: 0, connid: 0 98 13:06:39,8433487 MCLauncher.exe 6080 TCP Reconnect WIN-0UOTFKKVN1S:55855 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 0, seqnum: 0, connid: 0 98 13:06:41,0466480 MCLauncher.exe 6080 TCP TCPCopy WIN-0UOTFKKVN1S:54920 -> sheltex.company:8000 SUCCESS Length: 2, seqnum: 0, connid: 0 98 13:06:41,0466599 MCLauncher.exe 6080 TCP Receive WIN-0UOTFKKVN1S:54920 -> sheltex.company:8000 SUCCESS Length: 2, seqnum: 0, connid: 0 98 13:06:41,0504240 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54920 -> sheltex.company:8000 SUCCESS Length: 2, startime: 41025373, endtime: 41025374, seqnum: 0, connid: 0 98 13:06:42,3837656 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55799 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41025237, endtime: 41025507, seqnum: 0, connid: 0 98 13:06:42,3837822 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55799 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41025239, endtime: 41025507, seqnum: 0, connid: 0 98 13:06:42,3837917 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55799 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41025242, endtime: 41025507, seqnum: 0, connid: 0 98 13:06:42,3837989 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55799 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41025244, endtime: 41025507, seqnum: 0, connid: 0 98 13:06:42,3838066 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55799 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41025247, endtime: 41025507, seqnum: 0, connid: 0 98 13:06:42,3838130 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55799 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41025248, endtime: 41025507, seqnum: 0, connid: 0 98 13:06:42,3838202 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55799 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41025250, endtime: 41025507, seqnum: 0, connid: 0 98 13:06:42,3838263 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55799 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41025253, endtime: 41025507, seqnum: 0, connid: 0 98 13:06:42,3838338 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55799 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41025255, endtime: 41025507, seqnum: 0, connid: 0 98 13:06:42,3839180 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55799 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41025256, endtime: 41025507, seqnum: 0, connid: 0 98 13:06:42,3839271 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55799 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41025258, endtime: 41025507, seqnum: 0, connid: 0 98 13:06:42,3839335 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55799 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41025261, endtime: 41025507, seqnum: 0, connid: 0 98 13:06:42,3839936 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55799 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41025262, endtime: 41025507, seqnum: 0, connid: 0 98 13:06:43,7158472 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55799 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41025507, endtime: 41025640, seqnum: 0, connid: 0 98 13:06:43,7158849 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55799 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41025508, endtime: 41025640, seqnum: 0, connid: 0 98 13:06:43,7158957 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55799 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41025509, endtime: 41025640, seqnum: 0, connid: 0 98 13:06:43,7159059 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55799 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41025511, endtime: 41025640, seqnum: 0, connid: 0 98 13:06:43,7159137 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55799 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41025512, endtime: 41025640, seqnum: 0, connid: 0 98 13:06:43,7159228 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55799 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41025514, endtime: 41025640, seqnum: 0, connid: 0 98 13:06:43,7159303 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55799 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41025516, endtime: 41025640, seqnum: 0, connid: 0 98 13:06:43,7159397 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55799 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41025517, endtime: 41025640, seqnum: 0, connid: 0 98 13:06:43,7159475 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55799 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41025519, endtime: 41025640, seqnum: 0, connid: 0 98 13:06:43,7160287 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55799 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41025520, endtime: 41025640, seqnum: 0, connid: 0 98 13:06:43,7160373 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55799 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41025522, endtime: 41025640, seqnum: 0, connid: 0 98 13:06:43,7160450 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55799 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41025523, endtime: 41025640, seqnum: 0, connid: 0 98 13:06:43,7161115 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55799 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41025526, endtime: 41025640, seqnum: 0, connid: 0 98 13:06:43,9531452 MCLauncher.exe 6080 TCP Reconnect WIN-0UOTFKKVN1S:55874 -> 54.36.38.171:25565 SUCCESS Length: 0, seqnum: 0, connid: 0 98 13:06:43,9844417 MCLauncher.exe 6080 TCP Reconnect WIN-0UOTFKKVN1S:55881 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 0, seqnum: 0, connid: 0 98 13:06:43,9844494 MCLauncher.exe 6080 TCP Reconnect WIN-0UOTFKKVN1S:55882 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 0, seqnum: 0, connid: 0 98 13:06:45,5214905 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55800 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41024898, endtime: 41025821, seqnum: 0, connid: 0 98 13:06:45,5215065 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55800 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41025252, endtime: 41025821, seqnum: 0, connid: 0 98 13:06:45,5215134 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55800 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41025253, endtime: 41025821, seqnum: 0, connid: 0 98 13:06:45,5215206 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55800 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41025255, endtime: 41025821, seqnum: 0, connid: 0 98 13:06:45,5215262 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55800 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41025256, endtime: 41025821, seqnum: 0, connid: 0 98 13:06:45,5215326 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55800 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41025258, endtime: 41025821, seqnum: 0, connid: 0 98 13:06:45,5215381 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55800 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41025261, endtime: 41025821, seqnum: 0, connid: 0 98 13:06:45,5215445 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55800 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41025262, endtime: 41025821, seqnum: 0, connid: 0 98 13:06:45,5215497 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55800 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41025264, endtime: 41025821, seqnum: 0, connid: 0 98 13:06:45,5215774 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55800 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41025265, endtime: 41025821, seqnum: 0, connid: 0 98 13:06:45,5215833 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55800 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41025267, endtime: 41025821, seqnum: 0, connid: 0 98 13:06:45,5215896 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55800 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41025269, endtime: 41025821, seqnum: 0, connid: 0 98 13:06:45,5215949 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55800 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41025272, endtime: 41025821, seqnum: 0, connid: 0 98 13:06:45,6132057 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55799 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41025645, endtime: 41025830, seqnum: 0, connid: 0 98 13:06:45,6132259 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55799 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41025646, endtime: 41025830, seqnum: 0, connid: 0 98 13:06:45,6132337 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55799 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41025663, endtime: 41025830, seqnum: 0, connid: 0 98 13:06:45,6132417 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55799 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41025664, endtime: 41025830, seqnum: 0, connid: 0 98 13:06:45,6132475 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55799 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41025669, endtime: 41025830, seqnum: 0, connid: 0 98 13:06:45,6132547 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55799 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41025670, endtime: 41025830, seqnum: 0, connid: 0 98 13:06:45,6134030 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55799 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41025673, endtime: 41025830, seqnum: 0, connid: 0 98 13:06:45,6134146 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55799 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41025674, endtime: 41025830, seqnum: 0, connid: 0 98 13:06:45,6134212 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55799 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41025675, endtime: 41025830, seqnum: 0, connid: 0 98 13:06:45,6134287 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55799 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41025678, endtime: 41025830, seqnum: 0, connid: 0 98 13:06:45,6134351 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55799 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41025681, endtime: 41025830, seqnum: 0, connid: 0 98 13:06:45,6134562 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55799 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41025684, endtime: 41025830, seqnum: 0, connid: 0 98 13:06:45,6134683 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55799 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41025687, endtime: 41025830, seqnum: 0, connid: 0 98 13:06:46,0847775 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55810 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41025088, endtime: 41025877, seqnum: 0, connid: 0 98 13:06:46,0847955 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55810 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41025089, endtime: 41025877, seqnum: 0, connid: 0 98 13:06:46,0848044 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55810 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41025090, endtime: 41025877, seqnum: 0, connid: 0 98 13:06:46,0848108 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55810 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41025092, endtime: 41025877, seqnum: 0, connid: 0 98 13:06:46,0848180 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55810 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41025094, endtime: 41025877, seqnum: 0, connid: 0 98 13:06:46,0848235 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55810 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41025095, endtime: 41025877, seqnum: 0, connid: 0 98 13:06:46,0848302 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55810 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41025098, endtime: 41025877, seqnum: 0, connid: 0 98 13:06:46,0848357 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55810 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41025101, endtime: 41025877, seqnum: 0, connid: 0 98 13:06:46,0848424 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55810 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41025105, endtime: 41025877, seqnum: 0, connid: 0 98 13:06:46,0848479 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55810 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41025106, endtime: 41025877, seqnum: 0, connid: 0 98 13:06:46,0848775 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55810 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41025109, endtime: 41025877, seqnum: 0, connid: 0 98 13:06:46,0848831 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55810 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41025111, endtime: 41025877, seqnum: 0, connid: 0 98 13:06:46,0848900 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55810 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41025112, endtime: 41025877, seqnum: 0, connid: 0 98 13:06:46,1752837 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55810 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41025877, endtime: 41025886, seqnum: 0, connid: 0 98 13:06:48,0782069 MCLauncher.exe 6080 TCP Reconnect WIN-0UOTFKKVN1S:55883 -> 54.36.38.171:25565 SUCCESS Length: 0, seqnum: 0, connid: 0 98 13:06:48,1885068 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55799 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41025830, endtime: 41026087, seqnum: 0, connid: 0 98 13:06:48,1885270 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55799 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41025831, endtime: 41026087, seqnum: 0, connid: 0 98 13:06:48,1885350 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55799 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41025834, endtime: 41026087, seqnum: 0, connid: 0 98 13:06:48,1885433 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55799 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41025837, endtime: 41026087, seqnum: 0, connid: 0 98 13:06:48,1885497 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55799 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41025845, endtime: 41026087, seqnum: 0, connid: 0 98 13:06:48,1885575 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55799 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41025847, endtime: 41026087, seqnum: 0, connid: 0 98 13:06:48,1885633 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55799 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41025848, endtime: 41026087, seqnum: 0, connid: 0 98 13:06:48,1885705 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55799 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41025852, endtime: 41026087, seqnum: 0, connid: 0 98 13:06:48,1885766 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55799 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41025853, endtime: 41026087, seqnum: 0, connid: 0 98 13:06:48,1886079 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55799 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41025856, endtime: 41026087, seqnum: 0, connid: 0 98 13:06:48,1886140 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55799 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41025856, endtime: 41026087, seqnum: 0, connid: 0 98 13:06:48,1886215 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55799 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41025858, endtime: 41026087, seqnum: 0, connid: 0 98 13:06:48,1886273 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55799 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41025859, endtime: 41026087, seqnum: 0, connid: 0 98 13:06:48,4855169 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55800 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41025821, endtime: 41026117, seqnum: 0, connid: 0 98 13:06:48,4855394 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55800 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41025822, endtime: 41026117, seqnum: 0, connid: 0 98 13:06:48,4855474 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55800 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41025825, endtime: 41026117, seqnum: 0, connid: 0 98 13:06:48,4855555 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55800 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41025827, endtime: 41026117, seqnum: 0, connid: 0 98 13:06:48,4855615 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55800 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41025828, endtime: 41026117, seqnum: 0, connid: 0 98 13:06:48,4855687 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55800 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41025831, endtime: 41026117, seqnum: 0, connid: 0 98 13:06:48,4855748 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55800 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41025834, endtime: 41026117, seqnum: 0, connid: 0 98 13:06:48,4855820 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55800 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41025838, endtime: 41026117, seqnum: 0, connid: 0 98 13:06:48,4855879 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55800 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41025845, endtime: 41026117, seqnum: 0, connid: 0 98 13:06:48,4856175 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55800 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41025847, endtime: 41026117, seqnum: 0, connid: 0 98 13:06:48,4856239 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55800 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41025848, endtime: 41026117, seqnum: 0, connid: 0 98 13:06:48,4856308 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55800 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41025852, endtime: 41026117, seqnum: 0, connid: 0 98 13:06:48,4856366 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55800 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41025853, endtime: 41026117, seqnum: 0, connid: 0 98 13:06:48,5946501 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55800 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41026117, endtime: 41026128, seqnum: 0, connid: 0 98 13:06:49,9993249 MCLauncher.exe 6080 TCP Reconnect WIN-0UOTFKKVN1S:55881 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 0, seqnum: 0, connid: 0 98 13:06:49,9993351 MCLauncher.exe 6080 TCP Reconnect WIN-0UOTFKKVN1S:55882 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 0, seqnum: 0, connid: 0 98 13:06:51,1271585 MCLauncher.exe 6080 TCP TCPCopy WIN-0UOTFKKVN1S:54920 -> sheltex.company:8000 SUCCESS Length: 2, seqnum: 0, connid: 0 98 13:06:51,1271724 MCLauncher.exe 6080 TCP Receive WIN-0UOTFKKVN1S:54920 -> sheltex.company:8000 SUCCESS Length: 2, seqnum: 0, connid: 0 98 13:06:51,1297980 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54920 -> sheltex.company:8000 SUCCESS Length: 2, startime: 41026381, endtime: 41026382, seqnum: 0, connid: 0 98 13:06:51,3212454 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55810 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41025878, endtime: 41026401, seqnum: 0, connid: 0 98 13:06:51,3212609 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55810 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41025881, endtime: 41026401, seqnum: 0, connid: 0 98 13:06:51,3212690 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55810 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41025883, endtime: 41026401, seqnum: 0, connid: 0 98 13:06:51,3212748 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55810 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41025884, endtime: 41026401, seqnum: 0, connid: 0 98 13:06:51,3212814 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55810 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41025886, endtime: 41026401, seqnum: 0, connid: 0 98 13:06:51,3212867 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55810 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41025887, endtime: 41026401, seqnum: 0, connid: 0 98 13:06:51,3212931 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55810 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41025889, endtime: 41026401, seqnum: 0, connid: 0 98 13:06:51,3212983 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55810 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41025891, endtime: 41026401, seqnum: 0, connid: 0 98 13:06:51,3213047 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55810 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41025892, endtime: 41026401, seqnum: 0, connid: 0 98 13:06:51,3214416 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55810 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41025894, endtime: 41026401, seqnum: 0, connid: 0 98 13:06:51,3214529 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55810 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41025895, endtime: 41026401, seqnum: 0, connid: 0 98 13:06:51,3217056 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55810 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41025897, endtime: 41026401, seqnum: 0, connid: 0 98 13:06:51,3217197 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55810 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41025898, endtime: 41026401, seqnum: 0, connid: 0 98 13:06:52,8760831 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55799 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41026087, endtime: 41026556, seqnum: 0, connid: 0 98 13:06:52,8761036 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55799 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41026089, endtime: 41026556, seqnum: 0, connid: 0 98 13:06:52,8761117 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55799 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41026090, endtime: 41026556, seqnum: 0, connid: 0 98 13:06:52,8761197 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55799 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41026092, endtime: 41026556, seqnum: 0, connid: 0 98 13:06:52,8761261 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55799 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41026094, endtime: 41026556, seqnum: 0, connid: 0 98 13:06:52,8761330 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55799 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41026095, endtime: 41026556, seqnum: 0, connid: 0 98 13:06:52,8761391 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55799 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41026097, endtime: 41026556, seqnum: 0, connid: 0 98 13:06:52,8761460 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55799 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41026098, endtime: 41026556, seqnum: 0, connid: 0 98 13:06:52,8762070 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55799 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41026100, endtime: 41026556, seqnum: 0, connid: 0 98 13:06:52,8763170 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55799 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41026100, endtime: 41026556, seqnum: 0, connid: 0 98 13:06:52,8764837 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55799 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41026103, endtime: 41026556, seqnum: 0, connid: 0 98 13:06:52,8766037 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55799 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41026105, endtime: 41026556, seqnum: 0, connid: 0 98 13:06:52,8766140 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55799 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41026106, endtime: 41026556, seqnum: 0, connid: 0 98 13:06:54,0098042 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55800 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41026119, endtime: 41026670, seqnum: 0, connid: 0 98 13:06:54,0098281 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55800 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41026120, endtime: 41026670, seqnum: 0, connid: 0 98 13:06:54,0098430 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55800 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41026123, endtime: 41026670, seqnum: 0, connid: 0 98 13:06:54,0098544 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55800 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41026125, endtime: 41026670, seqnum: 0, connid: 0 98 13:06:54,0098671 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55800 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41026128, endtime: 41026670, seqnum: 0, connid: 0 98 13:06:54,0098776 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55800 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41026130, endtime: 41026670, seqnum: 0, connid: 0 98 13:06:54,0098896 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55800 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41026131, endtime: 41026670, seqnum: 0, connid: 0 98 13:06:54,0098998 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55800 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41026133, endtime: 41026670, seqnum: 0, connid: 0 98 13:06:54,0099120 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55800 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41026135, endtime: 41026670, seqnum: 0, connid: 0 98 13:06:54,0099519 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55800 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41026136, endtime: 41026670, seqnum: 0, connid: 0 98 13:06:54,0099644 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55800 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41026138, endtime: 41026670, seqnum: 0, connid: 0 98 13:06:54,0099746 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55800 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41026139, endtime: 41026670, seqnum: 0, connid: 0 98 13:06:54,0099868 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55800 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41026141, endtime: 41026670, seqnum: 0, connid: 0 98 13:06:54,0630522 MCLauncher.exe 6080 TCP Reconnect WIN-0UOTFKKVN1S:55889 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 0, seqnum: 0, connid: 0 98 13:06:54,0630622 MCLauncher.exe 6080 TCP Reconnect WIN-0UOTFKKVN1S:55890 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 0, seqnum: 0, connid: 0 98 13:06:54,0933472 MCLauncher.exe 6080 TCP Reconnect WIN-0UOTFKKVN1S:55883 -> 54.36.38.171:25565 SUCCESS Length: 0, seqnum: 0, connid: 0 98 13:06:54,0997549 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55800 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41026670, endtime: 41026679, seqnum: 0, connid: 0 98 13:06:54,0997704 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55800 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41026672, endtime: 41026679, seqnum: 0, connid: 0 98 13:06:54,0997779 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55800 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41026672, endtime: 41026679, seqnum: 0, connid: 0 98 13:06:54,0997857 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55800 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41026675, endtime: 41026679, seqnum: 0, connid: 0 98 13:06:54,0997920 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55800 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41026678, endtime: 41026679, seqnum: 0, connid: 0 98 13:06:54,1228195 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55800 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41026680, endtime: 41026681, seqnum: 0, connid: 0 98 13:06:54,1417524 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55800 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41026683, endtime: 41026683, seqnum: 0, connid: 0 98 13:06:54,1564425 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55800 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41026684, endtime: 41026684, seqnum: 0, connid: 0 98 13:06:54,1727869 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55800 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41026686, endtime: 41026686, seqnum: 0, connid: 0 98 13:06:54,1893144 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55800 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41026687, endtime: 41026688, seqnum: 0, connid: 0 98 13:06:54,2039859 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55800 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41026689, endtime: 41026689, seqnum: 0, connid: 0 98 13:06:54,2216479 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55800 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41026691, endtime: 41026691, seqnum: 0, connid: 0 98 13:06:55,6750019 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55810 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41026401, endtime: 41026836, seqnum: 0, connid: 0 98 13:06:55,6750194 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55810 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41026403, endtime: 41026836, seqnum: 0, connid: 0 98 13:06:55,6750269 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55810 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41026405, endtime: 41026836, seqnum: 0, connid: 0 98 13:06:55,6750344 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55810 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41026406, endtime: 41026836, seqnum: 0, connid: 0 98 13:06:55,6750405 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55810 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41026408, endtime: 41026836, seqnum: 0, connid: 0 98 13:06:55,6750474 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55810 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41026409, endtime: 41026836, seqnum: 0, connid: 0 98 13:06:55,6750532 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55810 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41026411, endtime: 41026836, seqnum: 0, connid: 0 98 13:06:55,6750598 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55810 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41026412, endtime: 41026836, seqnum: 0, connid: 0 98 13:06:55,6750770 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55810 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41026417, endtime: 41026836, seqnum: 0, connid: 0 98 13:06:55,6751637 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55810 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41026420, endtime: 41026836, seqnum: 0, connid: 0 98 13:06:55,6751715 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55810 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41026422, endtime: 41026836, seqnum: 0, connid: 0 98 13:06:55,6751784 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55810 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41026424, endtime: 41026836, seqnum: 0, connid: 0 98 13:06:55,6752621 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55810 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41026425, endtime: 41026836, seqnum: 0, connid: 0 98 13:06:57,3268907 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55800 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41026694, endtime: 41027001, seqnum: 0, connid: 0 98 13:06:58,0231351 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55799 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41026556, endtime: 41027071, seqnum: 0, connid: 0 98 13:06:58,0231531 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55799 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41026558, endtime: 41027071, seqnum: 0, connid: 0 98 13:06:58,0231619 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55799 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41026559, endtime: 41027071, seqnum: 0, connid: 0 98 13:06:58,0231686 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55799 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41026561, endtime: 41027071, seqnum: 0, connid: 0 98 13:06:58,0231758 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55799 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41026562, endtime: 41027071, seqnum: 0, connid: 0 98 13:06:58,0233841 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55799 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41026564, endtime: 41027071, seqnum: 0, connid: 0 98 13:06:58,0234733 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55799 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41026567, endtime: 41027071, seqnum: 0, connid: 0 98 13:06:58,0234825 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55799 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41026569, endtime: 41027071, seqnum: 0, connid: 0 98 13:06:58,0234900 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55799 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41026570, endtime: 41027071, seqnum: 0, connid: 0 98 13:06:58,0234958 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55799 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41026572, endtime: 41027071, seqnum: 0, connid: 0 98 13:06:58,0235024 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55799 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41026573, endtime: 41027071, seqnum: 0, connid: 0 98 13:06:58,0235080 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55799 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41026575, endtime: 41027071, seqnum: 0, connid: 0 98 13:06:58,0235149 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55799 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41026576, endtime: 41027071, seqnum: 0, connid: 0 98 13:06:58,1872534 MCLauncher.exe 6080 TCP Reconnect WIN-0UOTFKKVN1S:55906 -> 54.36.38.171:25565 SUCCESS Length: 0, seqnum: 0, connid: 0 98 13:06:59,8073486 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55810 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41026836, endtime: 41027249, seqnum: 0, connid: 0 98 13:06:59,8073713 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55810 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41026837, endtime: 41027249, seqnum: 0, connid: 0 98 13:06:59,8073790 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55810 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41026840, endtime: 41027249, seqnum: 0, connid: 0 98 13:06:59,8073874 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55810 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41026842, endtime: 41027249, seqnum: 0, connid: 0 98 13:06:59,8073935 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55810 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41026844, endtime: 41027249, seqnum: 0, connid: 0 98 13:06:59,8074007 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55810 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41026847, endtime: 41027249, seqnum: 0, connid: 0 98 13:06:59,8074223 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55810 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41026848, endtime: 41027249, seqnum: 0, connid: 0 98 13:06:59,8074325 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55810 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41026851, endtime: 41027249, seqnum: 0, connid: 0 98 13:06:59,8074394 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55810 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41026854, endtime: 41027249, seqnum: 0, connid: 0 98 13:06:59,8075237 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55810 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41026857, endtime: 41027249, seqnum: 0, connid: 0 98 13:06:59,8075311 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55810 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41026858, endtime: 41027249, seqnum: 0, connid: 0 98 13:06:59,8075384 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55810 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41026859, endtime: 41027249, seqnum: 0, connid: 0 98 13:07:00,0591316 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55799 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41027071, endtime: 41027275, seqnum: 0, connid: 0 98 13:07:00,0591493 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55799 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41027072, endtime: 41027275, seqnum: 0, connid: 0 98 13:07:00,0591568 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55799 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41027073, endtime: 41027275, seqnum: 0, connid: 0 98 13:07:00,0591643 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55799 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41027074, endtime: 41027275, seqnum: 0, connid: 0 98 13:07:00,0591704 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55799 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41027077, endtime: 41027275, seqnum: 0, connid: 0 98 13:07:00,0591770 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55799 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41027080, endtime: 41027275, seqnum: 0, connid: 0 98 13:07:00,0591825 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55799 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41027081, endtime: 41027275, seqnum: 0, connid: 0 98 13:07:00,0591892 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55799 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41027083, endtime: 41027275, seqnum: 0, connid: 0 98 13:07:00,0591947 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55799 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41027084, endtime: 41027275, seqnum: 0, connid: 0 98 13:07:00,0592424 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55799 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41027086, endtime: 41027275, seqnum: 0, connid: 0 98 13:07:00,0592493 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55799 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41027087, endtime: 41027275, seqnum: 0, connid: 0 98 13:07:00,0592562 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55799 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41027089, endtime: 41027275, seqnum: 0, connid: 0 98 13:07:00,0592618 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55799 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41027093, endtime: 41027275, seqnum: 0, connid: 0 98 13:07:00,0778173 MCLauncher.exe 6080 TCP Reconnect WIN-0UOTFKKVN1S:55889 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 0, seqnum: 0, connid: 0 98 13:07:00,0778262 MCLauncher.exe 6080 TCP Reconnect WIN-0UOTFKKVN1S:55890 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 0, seqnum: 0, connid: 0 98 13:07:00,2144184 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55800 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41026697, endtime: 41027290, seqnum: 0, connid: 0 98 13:07:00,2144362 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55800 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41026700, endtime: 41027290, seqnum: 0, connid: 0 98 13:07:00,2144442 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55800 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41026701, endtime: 41027290, seqnum: 0, connid: 0 98 13:07:00,2144525 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55800 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41026703, endtime: 41027290, seqnum: 0, connid: 0 98 13:07:00,2144589 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55800 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41026705, endtime: 41027290, seqnum: 0, connid: 0 98 13:07:00,2144666 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55800 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41026706, endtime: 41027290, seqnum: 0, connid: 0 98 13:07:00,2144727 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55800 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41026708, endtime: 41027290, seqnum: 0, connid: 0 98 13:07:00,2144802 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55800 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41026709, endtime: 41027290, seqnum: 0, connid: 0 98 13:07:00,2144863 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55800 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41026711, endtime: 41027290, seqnum: 0, connid: 0 98 13:07:00,2145683 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55800 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41026714, endtime: 41027290, seqnum: 0, connid: 0 98 13:07:00,2145761 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55800 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41026716, endtime: 41027290, seqnum: 0, connid: 0 98 13:07:00,2145836 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55800 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41026718, endtime: 41027290, seqnum: 0, connid: 0 98 13:07:00,2146686 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55800 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41027001, endtime: 41027290, seqnum: 0, connid: 0 98 13:07:01,2706971 MCLauncher.exe 6080 TCP TCPCopy WIN-0UOTFKKVN1S:54920 -> sheltex.company:8000 SUCCESS Length: 2, seqnum: 0, connid: 0 98 13:07:01,2707115 MCLauncher.exe 6080 TCP Receive WIN-0UOTFKKVN1S:54920 -> sheltex.company:8000 SUCCESS Length: 2, seqnum: 0, connid: 0 98 13:07:01,2711387 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54920 -> sheltex.company:8000 SUCCESS Length: 2, startime: 41027396, endtime: 41027396, seqnum: 0, connid: 0 98 13:07:03,4487256 MCLauncher.exe 6080 TCP Disconnect WIN-0UOTFKKVN1S:55799 -> 54.36.38.171:25565 SUCCESS Length: 0, seqnum: 0, connid: 0 98 13:07:03,6670222 MCLauncher.exe 6080 TCP Connect WIN-0UOTFKKVN1S:55915 -> 54.36.38.171:25565 SUCCESS Length: 0, mss: 1460, sackopt: 0, tsopt: 0, wsopt: 0, rcvwin: 64240, rcvwinscale: 0, sndwinscale: 0, seqnum: 0, connid: 0 98 13:07:03,6781499 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55915 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41027636, endtime: 41027636, seqnum: 0, connid: 0 98 13:07:03,7319469 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55915 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41027642, endtime: 41027642, seqnum: 0, connid: 0 98 13:07:03,7522948 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55915 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41027644, endtime: 41027644, seqnum: 0, connid: 0 98 13:07:03,8438211 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55915 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41027653, endtime: 41027653, seqnum: 0, connid: 0 98 13:07:03,8996071 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55915 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41027658, endtime: 41027659, seqnum: 0, connid: 0 98 13:07:03,9209895 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55915 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41027661, endtime: 41027661, seqnum: 0, connid: 0 98 13:07:04,0383202 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55915 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41027672, endtime: 41027672, seqnum: 0, connid: 0 98 13:07:04,0599242 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55915 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41027675, endtime: 41027675, seqnum: 0, connid: 0 98 13:07:04,0681977 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55915 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41027675, endtime: 41027675, seqnum: 0, connid: 0 98 13:07:04,1593236 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55915 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41027685, endtime: 41027685, seqnum: 0, connid: 0 98 13:07:04,2188286 MCLauncher.exe 6080 TCP Reconnect WIN-0UOTFKKVN1S:55906 -> 54.36.38.171:25565 SUCCESS Length: 0, seqnum: 0, connid: 0 98 13:07:04,2188400 MCLauncher.exe 6080 TCP Reconnect WIN-0UOTFKKVN1S:55913 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 0, seqnum: 0, connid: 0 98 13:07:04,2188430 MCLauncher.exe 6080 TCP Reconnect WIN-0UOTFKKVN1S:55914 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 0, seqnum: 0, connid: 0 98 13:07:04,4975905 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55915 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41027718, endtime: 41027718, seqnum: 0, connid: 0 98 13:07:04,5031178 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55915 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41027719, endtime: 41027719, seqnum: 0, connid: 0 98 13:07:04,5085982 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55915 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41027719, endtime: 41027719, seqnum: 0, connid: 0 98 13:07:04,5146599 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55915 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41027720, endtime: 41027720, seqnum: 0, connid: 0 98 13:07:04,5721612 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55915 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41027725, endtime: 41027726, seqnum: 0, connid: 0 98 13:07:04,5781864 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55915 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41027726, endtime: 41027726, seqnum: 0, connid: 0 98 13:07:04,5953048 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55915 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41027728, endtime: 41027728, seqnum: 0, connid: 0 98 13:07:04,6276860 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55915 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41027731, endtime: 41027731, seqnum: 0, connid: 0 98 13:07:04,6585498 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55915 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41027734, endtime: 41027734, seqnum: 0, connid: 0 98 13:07:04,6981516 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55915 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41027738, endtime: 41027738, seqnum: 0, connid: 0 98 13:07:04,7209509 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55915 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41027740, endtime: 41027741, seqnum: 0, connid: 0 98 13:07:04,7347870 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55915 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41027742, endtime: 41027742, seqnum: 0, connid: 0 98 13:07:04,7510297 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55915 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41027744, endtime: 41027744, seqnum: 0, connid: 0 98 13:07:04,7823121 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55915 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41027747, endtime: 41027747, seqnum: 0, connid: 0 98 13:07:04,7986008 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55915 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41027748, endtime: 41027748, seqnum: 0, connid: 0 98 13:07:04,8298253 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55915 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41027751, endtime: 41027752, seqnum: 0, connid: 0 98 13:07:04,8437205 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55915 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41027753, endtime: 41027753, seqnum: 0, connid: 0 98 13:07:04,8619691 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55915 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41027755, endtime: 41027755, seqnum: 0, connid: 0 98 13:07:04,8909289 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55915 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41027758, endtime: 41027758, seqnum: 0, connid: 0 98 13:07:04,9080352 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55915 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41027759, endtime: 41027759, seqnum: 0, connid: 0 98 13:07:04,9233359 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55915 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41027761, endtime: 41027761, seqnum: 0, connid: 0 98 13:07:04,9398955 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55915 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41027762, endtime: 41027763, seqnum: 0, connid: 0 98 13:07:04,9746647 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55915 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41027765, endtime: 41027766, seqnum: 0, connid: 0 98 13:07:04,9847376 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55915 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41027767, endtime: 41027767, seqnum: 0, connid: 0 98 13:07:05,0008625 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55915 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41027769, endtime: 41027769, seqnum: 0, connid: 0 98 13:07:05,0198974 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55915 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41027770, endtime: 41027771, seqnum: 0, connid: 0 98 13:07:05,0199198 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55800 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41027290, endtime: 41027771, seqnum: 0, connid: 0 98 13:07:05,0199295 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55800 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41027292, endtime: 41027771, seqnum: 0, connid: 0 98 13:07:05,0199364 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55800 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41027294, endtime: 41027771, seqnum: 0, connid: 0 98 13:07:05,0199439 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55800 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41027295, endtime: 41027771, seqnum: 0, connid: 0 98 13:07:05,0199497 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55800 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41027297, endtime: 41027771, seqnum: 0, connid: 0 98 13:07:05,0199569 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55800 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41027298, endtime: 41027771, seqnum: 0, connid: 0 98 13:07:05,0199630 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55800 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41027301, endtime: 41027771, seqnum: 0, connid: 0 98 13:07:05,0200398 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55800 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41027306, endtime: 41027771, seqnum: 0, connid: 0 98 13:07:05,0200487 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55800 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41027308, endtime: 41027771, seqnum: 0, connid: 0 98 13:07:05,0200559 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55800 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41027309, endtime: 41027771, seqnum: 0, connid: 0 98 13:07:05,0200619 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55800 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41027311, endtime: 41027771, seqnum: 0, connid: 0 98 13:07:05,0200694 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55800 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41027312, endtime: 41027771, seqnum: 0, connid: 0 98 13:07:05,0201478 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55800 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41027314, endtime: 41027771, seqnum: 0, connid: 0 98 13:07:05,0523819 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55915 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41027774, endtime: 41027774, seqnum: 0, connid: 0 98 13:07:05,0583794 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55915 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41027774, endtime: 41027774, seqnum: 0, connid: 0 98 13:07:05,5120351 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55915 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41027775, endtime: 41027820, seqnum: 0, connid: 0 98 13:07:05,5120503 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55915 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41027778, endtime: 41027820, seqnum: 0, connid: 0 98 13:07:05,5120572 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55915 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41027781, endtime: 41027820, seqnum: 0, connid: 0 98 13:07:05,5120642 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55915 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41027783, endtime: 41027820, seqnum: 0, connid: 0 98 13:07:05,5120694 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55915 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41027784, endtime: 41027820, seqnum: 0, connid: 0 98 13:07:07,1003542 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55915 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41027786, endtime: 41027979, seqnum: 0, connid: 0 98 13:07:07,1003702 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55915 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41027789, endtime: 41027979, seqnum: 0, connid: 0 98 13:07:07,1003794 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55915 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41027790, endtime: 41027979, seqnum: 0, connid: 0 98 13:07:07,1003860 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55915 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41027792, endtime: 41027979, seqnum: 0, connid: 0 98 13:07:07,1003932 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55915 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41027795, endtime: 41027979, seqnum: 0, connid: 0 98 13:07:07,1003991 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55915 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41027797, endtime: 41027979, seqnum: 0, connid: 0 98 13:07:07,1004060 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55915 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41027798, endtime: 41027979, seqnum: 0, connid: 0 98 13:07:07,1004118 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55915 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41027800, endtime: 41027979, seqnum: 0, connid: 0 98 13:07:07,1004187 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55915 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41027820, endtime: 41027979, seqnum: 0, connid: 0 98 13:07:07,1004464 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55915 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41027822, endtime: 41027979, seqnum: 0, connid: 0 98 13:07:07,1004539 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55915 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41027823, endtime: 41027979, seqnum: 0, connid: 0 98 13:07:07,1004597 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55915 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41027825, endtime: 41027979, seqnum: 0, connid: 0 98 13:07:07,1004667 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55915 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41027828, endtime: 41027979, seqnum: 0, connid: 0 98 13:07:07,1381280 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55810 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41026863, endtime: 41027982, seqnum: 0, connid: 0 98 13:07:07,1381482 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55810 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41027249, endtime: 41027982, seqnum: 0, connid: 0 98 13:07:07,1381560 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55810 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41027250, endtime: 41027982, seqnum: 0, connid: 0 98 13:07:07,1381637 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55810 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41027251, endtime: 41027982, seqnum: 0, connid: 0 98 13:07:07,1381701 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55810 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41027255, endtime: 41027982, seqnum: 0, connid: 0 98 13:07:07,1381773 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55810 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41027256, endtime: 41027982, seqnum: 0, connid: 0 98 13:07:07,1381834 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55810 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41027258, endtime: 41027982, seqnum: 0, connid: 0 98 13:07:07,1381906 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55810 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41027260, endtime: 41027982, seqnum: 0, connid: 0 98 13:07:07,1381964 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55810 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41027262, endtime: 41027982, seqnum: 0, connid: 0 98 13:07:07,1382288 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55810 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41027264, endtime: 41027982, seqnum: 0, connid: 0 98 13:07:07,1382349 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55810 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41027266, endtime: 41027982, seqnum: 0, connid: 0 98 13:07:07,1382419 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55810 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41027267, endtime: 41027982, seqnum: 0, connid: 0 98 13:07:07,1382477 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55810 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41027270, endtime: 41027982, seqnum: 0, connid: 0 98 13:07:07,7952703 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55800 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41027771, endtime: 41028048, seqnum: 0, connid: 0 98 13:07:07,7952867 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55800 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41027773, endtime: 41028048, seqnum: 0, connid: 0 98 13:07:07,7952947 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55800 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41027774, endtime: 41028048, seqnum: 0, connid: 0 98 13:07:07,7953027 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55800 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41027775, endtime: 41028048, seqnum: 0, connid: 0 98 13:07:07,7953091 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55800 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41027778, endtime: 41028048, seqnum: 0, connid: 0 98 13:07:07,7953163 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55800 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41027781, endtime: 41028048, seqnum: 0, connid: 0 98 13:07:07,7953224 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55800 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41027783, endtime: 41028048, seqnum: 0, connid: 0 98 13:07:07,7953296 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55800 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41027784, endtime: 41028048, seqnum: 0, connid: 0 98 13:07:07,7953357 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55800 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41027786, endtime: 41028048, seqnum: 0, connid: 0 98 13:07:07,7954177 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55800 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41027789, endtime: 41028048, seqnum: 0, connid: 0 98 13:07:07,7954257 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55800 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41027790, endtime: 41028048, seqnum: 0, connid: 0 98 13:07:07,7954335 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55800 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41027792, endtime: 41028048, seqnum: 0, connid: 0 98 13:07:07,7956715 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55800 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41027795, endtime: 41028048, seqnum: 0, connid: 0 98 13:07:08,3126359 MCLauncher.exe 6080 TCP Reconnect WIN-0UOTFKKVN1S:55916 -> 54.36.38.171:25565 SUCCESS Length: 0, seqnum: 0, connid: 0 98 13:07:10,2346374 MCLauncher.exe 6080 TCP Reconnect WIN-0UOTFKKVN1S:55913 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 0, seqnum: 0, connid: 0 98 13:07:10,2346460 MCLauncher.exe 6080 TCP Reconnect WIN-0UOTFKKVN1S:55914 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 0, seqnum: 0, connid: 0 98 13:07:10,6284751 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55915 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41027979, endtime: 41028331, seqnum: 0, connid: 0 98 13:07:10,6284928 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55915 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41027980, endtime: 41028331, seqnum: 0, connid: 0 98 13:07:10,6285000 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55915 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41027983, endtime: 41028331, seqnum: 0, connid: 0 98 13:07:10,6285072 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55915 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41027984, endtime: 41028331, seqnum: 0, connid: 0 98 13:07:10,6285130 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55915 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41027986, endtime: 41028331, seqnum: 0, connid: 0 98 13:07:10,6285200 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55915 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41027987, endtime: 41028331, seqnum: 0, connid: 0 98 13:07:10,6285255 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55915 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41027989, endtime: 41028331, seqnum: 0, connid: 0 98 13:07:10,6285319 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55915 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41027992, endtime: 41028331, seqnum: 0, connid: 0 98 13:07:10,6285374 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55915 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41027994, endtime: 41028331, seqnum: 0, connid: 0 98 13:07:10,6285676 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55915 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41027995, endtime: 41028331, seqnum: 0, connid: 0 98 13:07:10,6285734 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55915 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41027997, endtime: 41028331, seqnum: 0, connid: 0 98 13:07:10,6285798 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55915 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41028000, endtime: 41028331, seqnum: 0, connid: 0 98 13:07:10,6285856 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55915 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41028001, endtime: 41028331, seqnum: 0, connid: 0 98 13:07:11,3694360 MCLauncher.exe 6080 TCP TCPCopy WIN-0UOTFKKVN1S:54920 -> sheltex.company:8000 SUCCESS Length: 2, seqnum: 0, connid: 0 98 13:07:11,3694518 MCLauncher.exe 6080 TCP Receive WIN-0UOTFKKVN1S:54920 -> sheltex.company:8000 SUCCESS Length: 2, seqnum: 0, connid: 0 98 13:07:11,3698502 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54920 -> sheltex.company:8000 SUCCESS Length: 2, startime: 41028406, endtime: 41028406, seqnum: 0, connid: 0 98 13:07:12,3217563 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55800 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41028048, endtime: 41028501, seqnum: 0, connid: 0 98 13:07:12,3217832 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55800 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41028050, endtime: 41028501, seqnum: 0, connid: 0 98 13:07:12,3217948 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55800 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41028053, endtime: 41028501, seqnum: 0, connid: 0 98 13:07:12,3218062 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55800 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41028056, endtime: 41028501, seqnum: 0, connid: 0 98 13:07:12,3218153 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55800 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41028058, endtime: 41028501, seqnum: 0, connid: 0 98 13:07:12,3218267 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55800 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41028059, endtime: 41028501, seqnum: 0, connid: 0 98 13:07:12,3218361 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55800 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41028061, endtime: 41028501, seqnum: 0, connid: 0 98 13:07:12,3218466 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55800 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41028062, endtime: 41028501, seqnum: 0, connid: 0 98 13:07:12,3218552 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55800 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41028064, endtime: 41028501, seqnum: 0, connid: 0 98 13:07:12,3219605 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55800 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41028065, endtime: 41028501, seqnum: 0, connid: 0 98 13:07:12,3219691 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55800 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41028068, endtime: 41028501, seqnum: 0, connid: 0 98 13:07:12,3219769 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55800 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41028070, endtime: 41028501, seqnum: 0, connid: 0 98 13:07:12,3222594 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55800 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41028072, endtime: 41028501, seqnum: 0, connid: 0 98 13:07:13,1003880 MCLauncher.exe 6080 TCP Disconnect WIN-0UOTFKKVN1S:55800 -> 54.36.38.171:25565 SUCCESS Length: 0, seqnum: 0, connid: 0 98 13:07:13,1922578 MCLauncher.exe 6080 TCP Connect WIN-0UOTFKKVN1S:55925 -> 54.36.38.171:25565 SUCCESS Length: 0, mss: 1460, sackopt: 0, tsopt: 0, wsopt: 0, rcvwin: 64240, rcvwinscale: 0, sndwinscale: 0, seqnum: 0, connid: 0 98 13:07:13,1926659 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55925 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41028588, endtime: 41028588, seqnum: 0, connid: 0 98 13:07:13,2038825 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55925 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41028589, endtime: 41028589, seqnum: 0, connid: 0 98 13:07:13,2342049 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55925 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41028592, endtime: 41028592, seqnum: 0, connid: 0 98 13:07:13,2506815 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55925 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41028594, endtime: 41028594, seqnum: 0, connid: 0 98 13:07:13,2838980 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55925 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41028597, endtime: 41028597, seqnum: 0, connid: 0 98 13:07:13,2989770 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55925 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41028598, endtime: 41028599, seqnum: 0, connid: 0 98 13:07:13,3150939 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55925 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41028600, endtime: 41028600, seqnum: 0, connid: 0 98 13:07:13,3207016 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55925 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41028601, endtime: 41028601, seqnum: 0, connid: 0 98 13:07:13,3536610 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55925 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41028603, endtime: 41028604, seqnum: 0, connid: 0 98 13:07:13,3597784 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55925 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41028605, endtime: 41028605, seqnum: 0, connid: 0 98 13:07:13,3765915 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55925 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41028606, endtime: 41028606, seqnum: 0, connid: 0 98 13:07:13,3926577 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55925 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41028608, endtime: 41028608, seqnum: 0, connid: 0 98 13:07:13,4070458 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55925 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41028609, endtime: 41028609, seqnum: 0, connid: 0 98 13:07:13,4240443 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55925 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41028611, endtime: 41028611, seqnum: 0, connid: 0 98 13:07:13,4598319 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55925 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41028614, endtime: 41028615, seqnum: 0, connid: 0 98 13:07:13,4865462 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55925 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41028617, endtime: 41028617, seqnum: 0, connid: 0 98 13:07:13,5011091 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55925 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41028619, endtime: 41028619, seqnum: 0, connid: 0 98 13:07:13,5162106 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55925 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41028620, endtime: 41028620, seqnum: 0, connid: 0 98 13:07:13,5338402 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55925 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41028622, endtime: 41028622, seqnum: 0, connid: 0 98 13:07:13,5482934 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55925 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41028623, endtime: 41028623, seqnum: 0, connid: 0 98 13:07:13,5632165 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55925 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41028625, endtime: 41028625, seqnum: 0, connid: 0 98 13:07:13,5802532 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55925 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41028626, endtime: 41028627, seqnum: 0, connid: 0 98 13:07:13,5944936 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55925 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41028628, endtime: 41028628, seqnum: 0, connid: 0 98 13:07:13,6116293 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55925 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41028630, endtime: 41028630, seqnum: 0, connid: 0 98 13:07:13,6268726 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55925 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41028631, endtime: 41028631, seqnum: 0, connid: 0 98 13:07:13,6415014 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55925 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41028633, endtime: 41028633, seqnum: 0, connid: 0 98 13:07:13,7702851 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55925 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41028634, endtime: 41028646, seqnum: 0, connid: 0 98 13:07:13,7702998 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55925 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41028636, endtime: 41028646, seqnum: 0, connid: 0 98 13:07:13,7703073 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55925 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41028638, endtime: 41028646, seqnum: 0, connid: 0 98 13:07:13,7703150 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55925 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41028639, endtime: 41028646, seqnum: 0, connid: 0 98 13:07:13,7703211 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55925 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41028641, endtime: 41028646, seqnum: 0, connid: 0 98 13:07:13,7703281 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55925 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41028643, endtime: 41028646, seqnum: 0, connid: 0 98 13:07:13,7703339 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55925 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41028644, endtime: 41028646, seqnum: 0, connid: 0 98 13:07:13,7703411 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55925 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41028646, endtime: 41028646, seqnum: 0, connid: 0 98 13:07:13,7835722 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55925 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41028647, endtime: 41028647, seqnum: 0, connid: 0 98 13:07:13,7976486 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55925 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41028648, endtime: 41028648, seqnum: 0, connid: 0 98 13:07:13,8127154 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55925 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41028650, endtime: 41028650, seqnum: 0, connid: 0 98 13:07:13,8291626 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55925 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41028651, endtime: 41028652, seqnum: 0, connid: 0 98 13:07:13,8452266 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55925 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41028653, endtime: 41028653, seqnum: 0, connid: 0 98 13:07:14,0111388 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55810 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41027982, endtime: 41028670, seqnum: 0, connid: 0 98 13:07:14,0111554 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55810 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41027984, endtime: 41028670, seqnum: 0, connid: 0 98 13:07:14,0111637 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55810 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41027986, endtime: 41028670, seqnum: 0, connid: 0 98 13:07:14,0111698 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55810 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41027987, endtime: 41028670, seqnum: 0, connid: 0 98 13:07:14,0111765 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55810 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41027989, endtime: 41028670, seqnum: 0, connid: 0 98 13:07:14,0111817 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55810 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41027992, endtime: 41028670, seqnum: 0, connid: 0 98 13:07:14,0111884 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55810 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41027994, endtime: 41028670, seqnum: 0, connid: 0 98 13:07:14,0111939 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55810 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41027995, endtime: 41028670, seqnum: 0, connid: 0 98 13:07:14,0112003 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55810 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41027997, endtime: 41028670, seqnum: 0, connid: 0 98 13:07:14,0112056 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55810 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41028000, endtime: 41028670, seqnum: 0, connid: 0 98 13:07:14,0112372 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55810 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41028001, endtime: 41028670, seqnum: 0, connid: 0 98 13:07:14,0112427 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55810 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41028004, endtime: 41028670, seqnum: 0, connid: 0 98 13:07:14,0112494 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55810 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41028005, endtime: 41028670, seqnum: 0, connid: 0 98 13:07:14,0941672 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55810 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41028670, endtime: 41028678, seqnum: 0, connid: 0 98 13:07:14,3277862 MCLauncher.exe 6080 TCP Reconnect WIN-0UOTFKKVN1S:55916 -> 54.36.38.171:25565 SUCCESS Length: 0, seqnum: 0, connid: 0 98 13:07:14,3291961 MCLauncher.exe 6080 TCP Reconnect WIN-0UOTFKKVN1S:55923 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 0, seqnum: 0, connid: 0 98 13:07:14,3292055 MCLauncher.exe 6080 TCP Reconnect WIN-0UOTFKKVN1S:55924 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 0, seqnum: 0, connid: 0 98 13:07:14,4228433 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55915 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41028331, endtime: 41028711, seqnum: 0, connid: 0 98 13:07:14,4228629 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55915 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41028333, endtime: 41028711, seqnum: 0, connid: 0 98 13:07:14,4228710 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55915 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41028334, endtime: 41028711, seqnum: 0, connid: 0 98 13:07:14,4228790 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55915 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41028336, endtime: 41028711, seqnum: 0, connid: 0 98 13:07:14,4228981 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55915 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41028337, endtime: 41028711, seqnum: 0, connid: 0 98 13:07:14,4229114 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55915 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41028339, endtime: 41028711, seqnum: 0, connid: 0 98 13:07:14,4229211 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55915 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41028341, endtime: 41028711, seqnum: 0, connid: 0 98 13:07:14,4229322 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55915 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41028342, endtime: 41028711, seqnum: 0, connid: 0 98 13:07:14,4229391 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55915 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41028344, endtime: 41028711, seqnum: 0, connid: 0 98 13:07:14,4229726 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55915 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41028345, endtime: 41028711, seqnum: 0, connid: 0 98 13:07:14,4229790 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55915 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41028347, endtime: 41028711, seqnum: 0, connid: 0 98 13:07:14,4229862 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55915 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41028348, endtime: 41028711, seqnum: 0, connid: 0 98 13:07:14,4229923 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55915 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41028350, endtime: 41028711, seqnum: 0, connid: 0 98 13:07:17,6927574 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55925 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41028656, endtime: 41029038, seqnum: 0, connid: 0 98 13:07:17,6927790 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55925 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41028658, endtime: 41029038, seqnum: 0, connid: 0 98 13:07:17,6927873 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55925 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41028660, endtime: 41029038, seqnum: 0, connid: 0 98 13:07:17,6927959 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55925 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41028663, endtime: 41029038, seqnum: 0, connid: 0 98 13:07:17,6928028 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55925 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41028664, endtime: 41029038, seqnum: 0, connid: 0 98 13:07:17,6928103 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55925 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41028665, endtime: 41029038, seqnum: 0, connid: 0 98 13:07:17,6928164 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55925 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41028667, endtime: 41029038, seqnum: 0, connid: 0 98 13:07:17,6928238 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55925 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41028669, endtime: 41029038, seqnum: 0, connid: 0 98 13:07:17,6928299 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55925 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41028670, endtime: 41029038, seqnum: 0, connid: 0 98 13:07:17,6928590 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55925 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41028672, endtime: 41029038, seqnum: 0, connid: 0 98 13:07:17,6928657 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55925 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41028674, endtime: 41029038, seqnum: 0, connid: 0 98 13:07:17,6928729 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55925 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41028675, endtime: 41029038, seqnum: 0, connid: 0 98 13:07:17,6928790 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55925 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41028678, endtime: 41029038, seqnum: 0, connid: 0 98 13:07:18,2226093 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55915 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41028711, endtime: 41029091, seqnum: 0, connid: 0 98 13:07:18,2226293 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55915 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41028714, endtime: 41029091, seqnum: 0, connid: 0 98 13:07:18,2226373 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55915 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41028715, endtime: 41029091, seqnum: 0, connid: 0 98 13:07:18,2226453 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55915 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41028717, endtime: 41029091, seqnum: 0, connid: 0 98 13:07:18,2226514 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55915 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41028720, endtime: 41029091, seqnum: 0, connid: 0 98 13:07:18,2226586 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55915 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41028722, endtime: 41029091, seqnum: 0, connid: 0 98 13:07:18,2226644 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55915 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41028724, endtime: 41029091, seqnum: 0, connid: 0 98 13:07:18,2226711 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55915 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41028725, endtime: 41029091, seqnum: 0, connid: 0 98 13:07:18,2226769 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55915 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41028727, endtime: 41029091, seqnum: 0, connid: 0 98 13:07:18,2227063 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55915 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41028729, endtime: 41029091, seqnum: 0, connid: 0 98 13:07:18,2227121 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55915 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41028731, endtime: 41029091, seqnum: 0, connid: 0 98 13:07:18,2227190 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55915 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41028733, endtime: 41029091, seqnum: 0, connid: 0 98 13:07:18,2227243 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55915 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41028734, endtime: 41029091, seqnum: 0, connid: 0 98 13:07:18,4217029 MCLauncher.exe 6080 TCP Reconnect WIN-0UOTFKKVN1S:55933 -> 54.36.38.171:25565 SUCCESS Length: 0, seqnum: 0, connid: 0 98 13:07:19,4995108 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55810 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41028672, endtime: 41029219, seqnum: 0, connid: 0 98 13:07:19,4995268 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55810 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41028674, endtime: 41029219, seqnum: 0, connid: 0 98 13:07:19,4995351 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55810 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41028675, endtime: 41029219, seqnum: 0, connid: 0 98 13:07:19,4995415 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55810 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41028678, endtime: 41029219, seqnum: 0, connid: 0 98 13:07:19,4995484 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55810 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41028679, endtime: 41029219, seqnum: 0, connid: 0 98 13:07:19,4995540 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55810 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41028681, endtime: 41029219, seqnum: 0, connid: 0 98 13:07:19,4995609 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55810 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41028684, endtime: 41029219, seqnum: 0, connid: 0 98 13:07:19,4995665 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55810 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41028686, endtime: 41029219, seqnum: 0, connid: 0 98 13:07:19,4995731 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55810 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41028687, endtime: 41029219, seqnum: 0, connid: 0 98 13:07:19,4996601 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55810 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41028689, endtime: 41029219, seqnum: 0, connid: 0 98 13:07:19,4996692 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55810 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41028691, endtime: 41029219, seqnum: 0, connid: 0 98 13:07:19,4996753 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55810 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41028692, endtime: 41029219, seqnum: 0, connid: 0 98 13:07:19,4999471 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55810 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41028694, endtime: 41029219, seqnum: 0, connid: 0 98 13:07:20,3299209 MCLauncher.exe 6080 TCP Reconnect WIN-0UOTFKKVN1S:55923 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 0, seqnum: 0, connid: 0 98 13:07:20,3299289 MCLauncher.exe 6080 TCP Reconnect WIN-0UOTFKKVN1S:55924 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 0, seqnum: 0, connid: 0 98 13:07:21,0951159 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55915 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41029091, endtime: 41029378, seqnum: 0, connid: 0 98 13:07:21,0951347 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55915 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41029092, endtime: 41029378, seqnum: 0, connid: 0 98 13:07:21,0951422 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55915 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41029094, endtime: 41029378, seqnum: 0, connid: 0 98 13:07:21,0951502 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55915 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41029095, endtime: 41029378, seqnum: 0, connid: 0 98 13:07:21,0951566 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55915 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41029097, endtime: 41029378, seqnum: 0, connid: 0 98 13:07:21,0951638 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55915 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41029098, endtime: 41029378, seqnum: 0, connid: 0 98 13:07:21,0951699 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55915 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41029100, endtime: 41029378, seqnum: 0, connid: 0 98 13:07:21,0951774 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55915 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41029100, endtime: 41029378, seqnum: 0, connid: 0 98 13:07:21,0951835 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55915 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41029103, endtime: 41029378, seqnum: 0, connid: 0 98 13:07:21,0952165 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55915 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41029105, endtime: 41029378, seqnum: 0, connid: 0 98 13:07:21,0952223 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55915 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41029108, endtime: 41029378, seqnum: 0, connid: 0 98 13:07:21,0952289 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55915 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41029109, endtime: 41029378, seqnum: 0, connid: 0 98 13:07:21,0952342 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55915 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41029111, endtime: 41029378, seqnum: 0, connid: 0 98 13:07:21,4377544 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55925 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41029038, endtime: 41029412, seqnum: 0, connid: 0 98 13:07:21,4377843 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55925 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41029039, endtime: 41029412, seqnum: 0, connid: 0 98 13:07:21,4377954 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55925 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41029042, endtime: 41029412, seqnum: 0, connid: 0 98 13:07:21,4378154 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55925 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41029044, endtime: 41029412, seqnum: 0, connid: 0 98 13:07:21,4378323 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55925 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41029048, endtime: 41029412, seqnum: 0, connid: 0 98 13:07:21,4378472 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55925 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41029048, endtime: 41029412, seqnum: 0, connid: 0 98 13:07:21,4378586 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55925 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41029050, endtime: 41029412, seqnum: 0, connid: 0 98 13:07:21,4378716 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55925 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41029051, endtime: 41029412, seqnum: 0, connid: 0 98 13:07:21,4378796 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55925 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41029053, endtime: 41029412, seqnum: 0, connid: 0 98 13:07:21,4379226 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55925 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41029055, endtime: 41029412, seqnum: 0, connid: 0 98 13:07:21,4379295 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55925 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41029056, endtime: 41029412, seqnum: 0, connid: 0 98 13:07:21,4379370 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55925 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41029059, endtime: 41029412, seqnum: 0, connid: 0 98 13:07:21,4379436 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55925 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41029061, endtime: 41029412, seqnum: 0, connid: 0 98 13:07:21,5647303 MCLauncher.exe 6080 TCP TCPCopy WIN-0UOTFKKVN1S:54920 -> sheltex.company:8000 SUCCESS Length: 2, seqnum: 0, connid: 0 98 13:07:21,5647442 MCLauncher.exe 6080 TCP Receive WIN-0UOTFKKVN1S:54920 -> sheltex.company:8000 SUCCESS Length: 2, seqnum: 0, connid: 0 98 13:07:21,5650880 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54920 -> sheltex.company:8000 SUCCESS Length: 2, startime: 41029425, endtime: 41029425, seqnum: 0, connid: 0 98 13:07:23,6387708 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55915 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41029378, endtime: 41029632, seqnum: 0, connid: 0 98 13:07:23,6388029 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55915 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41029380, endtime: 41029632, seqnum: 0, connid: 0 98 13:07:23,6388121 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55915 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41029383, endtime: 41029632, seqnum: 0, connid: 0 98 13:07:23,6388215 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55915 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41029384, endtime: 41029632, seqnum: 0, connid: 0 98 13:07:23,6388281 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55915 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41029386, endtime: 41029632, seqnum: 0, connid: 0 98 13:07:23,6388362 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55915 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41029387, endtime: 41029632, seqnum: 0, connid: 0 98 13:07:23,6388428 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55915 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41029389, endtime: 41029632, seqnum: 0, connid: 0 98 13:07:23,6388506 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55915 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41029391, endtime: 41029632, seqnum: 0, connid: 0 98 13:07:23,6388569 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55915 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41029392, endtime: 41029632, seqnum: 0, connid: 0 98 13:07:23,6389007 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55915 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41029394, endtime: 41029633, seqnum: 0, connid: 0 98 13:07:23,6389165 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55915 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41029396, endtime: 41029633, seqnum: 0, connid: 0 98 13:07:23,6389401 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55915 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41029397, endtime: 41029633, seqnum: 0, connid: 0 98 13:07:23,6389475 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55915 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41029398, endtime: 41029633, seqnum: 0, connid: 0 98 13:07:24,4373269 MCLauncher.exe 6080 TCP Reconnect WIN-0UOTFKKVN1S:55933 -> 54.36.38.171:25565 SUCCESS Length: 0, seqnum: 0, connid: 0 98 13:07:24,4529617 MCLauncher.exe 6080 TCP Reconnect WIN-0UOTFKKVN1S:55936 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 0, seqnum: 0, connid: 0 98 13:07:24,4529703 MCLauncher.exe 6080 TCP Reconnect WIN-0UOTFKKVN1S:55937 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 0, seqnum: 0, connid: 0 98 13:07:26,3176420 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55925 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41029412, endtime: 41029900, seqnum: 0, connid: 0 98 13:07:26,3176603 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55925 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41029414, endtime: 41029900, seqnum: 0, connid: 0 98 13:07:26,3176775 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55925 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41029415, endtime: 41029900, seqnum: 0, connid: 0 98 13:07:26,3176897 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55925 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41029417, endtime: 41029900, seqnum: 0, connid: 0 98 13:07:26,3176961 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55925 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41029419, endtime: 41029900, seqnum: 0, connid: 0 98 13:07:26,3177033 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55925 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41029422, endtime: 41029900, seqnum: 0, connid: 0 98 13:07:26,3177094 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55925 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41029423, endtime: 41029900, seqnum: 0, connid: 0 98 13:07:26,3177168 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55925 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41029426, endtime: 41029900, seqnum: 0, connid: 0 98 13:07:26,3177224 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55925 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41029428, endtime: 41029900, seqnum: 0, connid: 0 98 13:07:26,3177556 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55925 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41029431, endtime: 41029900, seqnum: 0, connid: 0 98 13:07:26,3177617 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55925 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41029433, endtime: 41029900, seqnum: 0, connid: 0 98 13:07:26,3177684 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55925 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41029434, endtime: 41029900, seqnum: 0, connid: 0 98 13:07:26,3177739 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55925 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41029437, endtime: 41029900, seqnum: 0, connid: 0 98 13:07:26,5353649 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55915 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41029633, endtime: 41029922, seqnum: 0, connid: 0 98 13:07:26,5353851 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55915 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41029634, endtime: 41029922, seqnum: 0, connid: 0 98 13:07:26,5353934 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55915 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41029636, endtime: 41029922, seqnum: 0, connid: 0 98 13:07:26,5354014 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55915 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41029637, endtime: 41029922, seqnum: 0, connid: 0 98 13:07:26,5354078 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55915 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41029641, endtime: 41029922, seqnum: 0, connid: 0 98 13:07:26,5354150 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55915 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41029642, endtime: 41029922, seqnum: 0, connid: 0 98 13:07:26,5354208 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55915 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41029645, endtime: 41029922, seqnum: 0, connid: 0 98 13:07:26,5354280 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55915 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41029647, endtime: 41029922, seqnum: 0, connid: 0 98 13:07:26,5354339 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55915 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41029649, endtime: 41029922, seqnum: 0, connid: 0 98 13:07:26,5354632 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55915 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41029649, endtime: 41029922, seqnum: 0, connid: 0 98 13:07:26,5354693 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55915 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41029650, endtime: 41029922, seqnum: 0, connid: 0 98 13:07:26,5354762 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55915 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41029650, endtime: 41029922, seqnum: 0, connid: 0 98 13:07:26,5354821 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55915 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41029651, endtime: 41029922, seqnum: 0, connid: 0 98 13:07:27,0282722 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55810 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41029219, endtime: 41029971, seqnum: 0, connid: 0 98 13:07:27,0282883 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55810 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41029220, endtime: 41029971, seqnum: 0, connid: 0 98 13:07:27,0282955 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55810 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41029222, endtime: 41029971, seqnum: 0, connid: 0 98 13:07:27,0283033 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55810 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41029223, endtime: 41029971, seqnum: 0, connid: 0 98 13:07:27,0283091 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55810 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41029225, endtime: 41029971, seqnum: 0, connid: 0 98 13:07:27,0283160 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55810 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41029226, endtime: 41029971, seqnum: 0, connid: 0 98 13:07:27,0283215 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55810 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41029228, endtime: 41029971, seqnum: 0, connid: 0 98 13:07:27,0283285 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55810 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41029230, endtime: 41029971, seqnum: 0, connid: 0 98 13:07:27,0283340 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55810 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41029231, endtime: 41029971, seqnum: 0, connid: 0 98 13:07:27,0284169 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55810 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41029233, endtime: 41029971, seqnum: 0, connid: 0 98 13:07:27,0284241 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55810 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41029234, endtime: 41029971, seqnum: 0, connid: 0 98 13:07:27,0284313 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55810 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41029236, endtime: 41029971, seqnum: 0, connid: 0 98 13:07:27,0286194 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55810 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41029237, endtime: 41029971, seqnum: 0, connid: 0 98 13:07:28,5468954 MCLauncher.exe 6080 TCP Reconnect WIN-0UOTFKKVN1S:55942 -> 54.36.38.171:25565 SUCCESS Length: 0, seqnum: 0, connid: 0 98 13:07:30,4685750 MCLauncher.exe 6080 TCP Reconnect WIN-0UOTFKKVN1S:55936 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 0, seqnum: 0, connid: 0 98 13:07:30,4685844 MCLauncher.exe 6080 TCP Reconnect WIN-0UOTFKKVN1S:55937 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 0, seqnum: 0, connid: 0 98 13:07:30,7887138 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55915 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41029922, endtime: 41030347, seqnum: 0, connid: 0 98 13:07:30,7887437 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55915 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41029925, endtime: 41030347, seqnum: 0, connid: 0 98 13:07:30,7887581 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55915 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41029926, endtime: 41030347, seqnum: 0, connid: 0 98 13:07:30,7887742 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55915 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41029928, endtime: 41030347, seqnum: 0, connid: 0 98 13:07:30,7887866 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55915 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41029930, endtime: 41030347, seqnum: 0, connid: 0 98 13:07:30,7888022 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55915 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41029933, endtime: 41030347, seqnum: 0, connid: 0 98 13:07:30,7888155 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55915 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41029934, endtime: 41030347, seqnum: 0, connid: 0 98 13:07:30,7888307 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55915 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41029937, endtime: 41030347, seqnum: 0, connid: 0 98 13:07:30,7888448 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55915 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41029940, endtime: 41030347, seqnum: 0, connid: 0 98 13:07:30,7889049 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55915 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41029942, endtime: 41030348, seqnum: 0, connid: 0 98 13:07:30,7889194 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55915 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41029944, endtime: 41030348, seqnum: 0, connid: 0 98 13:07:30,7889343 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55915 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41029945, endtime: 41030348, seqnum: 0, connid: 0 98 13:07:30,7889473 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55915 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41029947, endtime: 41030348, seqnum: 0, connid: 0 98 13:07:31,1626153 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55925 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41029900, endtime: 41030385, seqnum: 0, connid: 0 98 13:07:31,1626422 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55925 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41029901, endtime: 41030385, seqnum: 0, connid: 0 98 13:07:31,1626530 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55925 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41029905, endtime: 41030385, seqnum: 0, connid: 0 98 13:07:31,1626616 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55925 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41029906, endtime: 41030385, seqnum: 0, connid: 0 98 13:07:31,1626680 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55925 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41029908, endtime: 41030385, seqnum: 0, connid: 0 98 13:07:31,1626757 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55925 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41029911, endtime: 41030385, seqnum: 0, connid: 0 98 13:07:31,1626821 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55925 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41029913, endtime: 41030385, seqnum: 0, connid: 0 98 13:07:31,1626896 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55925 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41029916, endtime: 41030385, seqnum: 0, connid: 0 98 13:07:31,1626957 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55925 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41029917, endtime: 41030385, seqnum: 0, connid: 0 98 13:07:31,1627270 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55925 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41029919, endtime: 41030385, seqnum: 0, connid: 0 98 13:07:31,1627336 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55925 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41029922, endtime: 41030385, seqnum: 0, connid: 0 98 13:07:31,1627414 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55925 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41029925, endtime: 41030385, seqnum: 0, connid: 0 98 13:07:31,1627475 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55925 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41029926, endtime: 41030385, seqnum: 0, connid: 0 98 13:07:31,2223043 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55810 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41029971, endtime: 41030391, seqnum: 0, connid: 0 98 13:07:31,2223284 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55810 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41029972, endtime: 41030391, seqnum: 0, connid: 0 98 13:07:31,2223414 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55810 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41029975, endtime: 41030391, seqnum: 0, connid: 0 98 13:07:31,2223525 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55810 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41029976, endtime: 41030391, seqnum: 0, connid: 0 98 13:07:31,2223611 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55810 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41029978, endtime: 41030391, seqnum: 0, connid: 0 98 13:07:31,2223705 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55810 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41029980, endtime: 41030391, seqnum: 0, connid: 0 98 13:07:31,2223782 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55810 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41029981, endtime: 41030391, seqnum: 0, connid: 0 98 13:07:31,2223874 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55810 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41029983, endtime: 41030391, seqnum: 0, connid: 0 98 13:07:31,2223957 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55810 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41029984, endtime: 41030391, seqnum: 0, connid: 0 98 13:07:31,2225087 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55810 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41029986, endtime: 41030391, seqnum: 0, connid: 0 98 13:07:31,2225204 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55810 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41029987, endtime: 41030391, seqnum: 0, connid: 0 98 13:07:31,2225326 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55810 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41029989, endtime: 41030391, seqnum: 0, connid: 0 98 13:07:31,2226866 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55810 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41029991, endtime: 41030391, seqnum: 0, connid: 0 98 13:07:31,7134670 MCLauncher.exe 6080 TCP TCPCopy WIN-0UOTFKKVN1S:54920 -> sheltex.company:8000 SUCCESS Length: 2, seqnum: 0, connid: 0 98 13:07:31,7134795 MCLauncher.exe 6080 TCP Receive WIN-0UOTFKKVN1S:54920 -> sheltex.company:8000 SUCCESS Length: 2, seqnum: 0, connid: 0 98 13:07:31,7139918 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54920 -> sheltex.company:8000 SUCCESS Length: 2, startime: 41030440, endtime: 41030440, seqnum: 0, connid: 0 98 13:07:34,0200777 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55925 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41030385, endtime: 41030671, seqnum: 0, connid: 0 98 13:07:34,0200955 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55925 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41030386, endtime: 41030671, seqnum: 0, connid: 0 98 13:07:34,0201027 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55925 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41030387, endtime: 41030671, seqnum: 0, connid: 0 98 13:07:34,0201102 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55925 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41030389, endtime: 41030671, seqnum: 0, connid: 0 98 13:07:34,0201163 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55925 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41030390, endtime: 41030671, seqnum: 0, connid: 0 98 13:07:34,0201232 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55925 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41030391, endtime: 41030671, seqnum: 0, connid: 0 98 13:07:34,0201287 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55925 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41030391, endtime: 41030671, seqnum: 0, connid: 0 98 13:07:34,0201354 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55925 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41030392, endtime: 41030671, seqnum: 0, connid: 0 98 13:07:34,0201409 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55925 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41030392, endtime: 41030671, seqnum: 0, connid: 0 98 13:07:34,0201708 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55925 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41030393, endtime: 41030671, seqnum: 0, connid: 0 98 13:07:34,0201764 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55925 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41030395, endtime: 41030671, seqnum: 0, connid: 0 98 13:07:34,0201830 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55925 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41030397, endtime: 41030671, seqnum: 0, connid: 0 98 13:07:34,0202819 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55925 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41030399, endtime: 41030671, seqnum: 0, connid: 0 98 13:07:34,5621099 MCLauncher.exe 6080 TCP Reconnect WIN-0UOTFKKVN1S:55942 -> 54.36.38.171:25565 SUCCESS Length: 0, seqnum: 0, connid: 0 98 13:07:34,5933369 MCLauncher.exe 6080 TCP Reconnect WIN-0UOTFKKVN1S:55949 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 0, seqnum: 0, connid: 0 98 13:07:34,5933466 MCLauncher.exe 6080 TCP Reconnect WIN-0UOTFKKVN1S:55950 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 0, seqnum: 0, connid: 0 98 13:07:36,3400683 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55810 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41030391, endtime: 41030903, seqnum: 0, connid: 0 98 13:07:36,3400836 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55810 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41030392, endtime: 41030903, seqnum: 0, connid: 0 98 13:07:36,3400919 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55810 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41030392, endtime: 41030903, seqnum: 0, connid: 0 98 13:07:36,3400983 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55810 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41030393, endtime: 41030903, seqnum: 0, connid: 0 98 13:07:36,3401052 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55810 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41030395, endtime: 41030903, seqnum: 0, connid: 0 98 13:07:36,3401107 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55810 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41030397, endtime: 41030903, seqnum: 0, connid: 0 98 13:07:36,3401174 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55810 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41030399, endtime: 41030903, seqnum: 0, connid: 0 98 13:07:36,3401229 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55810 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41030400, endtime: 41030903, seqnum: 0, connid: 0 98 13:07:36,3401298 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55810 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41030401, endtime: 41030903, seqnum: 0, connid: 0 98 13:07:36,3401985 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55810 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41030404, endtime: 41030903, seqnum: 0, connid: 0 98 13:07:36,3402066 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55810 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41030405, endtime: 41030903, seqnum: 0, connid: 0 98 13:07:36,3402121 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55810 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41030407, endtime: 41030903, seqnum: 0, connid: 0 98 13:07:36,4261158 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55810 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41030408, endtime: 41030911, seqnum: 0, connid: 0 98 13:07:36,4551051 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55915 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41030348, endtime: 41030914, seqnum: 0, connid: 0 98 13:07:36,4551247 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55915 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41030350, endtime: 41030914, seqnum: 0, connid: 0 98 13:07:36,4551336 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55915 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41030351, endtime: 41030914, seqnum: 0, connid: 0 98 13:07:36,4551405 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55915 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41030353, endtime: 41030914, seqnum: 0, connid: 0 98 13:07:36,4551474 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55915 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41030355, endtime: 41030914, seqnum: 0, connid: 0 98 13:07:36,4551533 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55915 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41030358, endtime: 41030914, seqnum: 0, connid: 0 98 13:07:36,4551602 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55915 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41030361, endtime: 41030914, seqnum: 0, connid: 0 98 13:07:36,4551660 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55915 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41030362, endtime: 41030914, seqnum: 0, connid: 0 98 13:07:36,4551729 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55915 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41030364, endtime: 41030914, seqnum: 0, connid: 0 98 13:07:36,4552062 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55915 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41030366, endtime: 41030914, seqnum: 0, connid: 0 98 13:07:36,4552139 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55915 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41030367, endtime: 41030914, seqnum: 0, connid: 0 98 13:07:36,4552198 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55915 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41030369, endtime: 41030914, seqnum: 0, connid: 0 98 13:07:36,4552270 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55915 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41030374, endtime: 41030914, seqnum: 0, connid: 0 98 13:07:38,5381728 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55925 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41030671, endtime: 41031122, seqnum: 0, connid: 0 98 13:07:38,5381903 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55925 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41030672, endtime: 41031122, seqnum: 0, connid: 0 98 13:07:38,5381978 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55925 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41030673, endtime: 41031122, seqnum: 0, connid: 0 98 13:07:38,5382055 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55925 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41030674, endtime: 41031122, seqnum: 0, connid: 0 98 13:07:38,5382113 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55925 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41030676, endtime: 41031122, seqnum: 0, connid: 0 98 13:07:38,5382183 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55925 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41030678, endtime: 41031122, seqnum: 0, connid: 0 98 13:07:38,5382241 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55925 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41030679, endtime: 41031122, seqnum: 0, connid: 0 98 13:07:38,5382307 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55925 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41030679, endtime: 41031122, seqnum: 0, connid: 0 98 13:07:38,5382365 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55925 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41030680, endtime: 41031122, seqnum: 0, connid: 0 98 13:07:38,5382684 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55925 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41030680, endtime: 41031122, seqnum: 0, connid: 0 98 13:07:38,5382742 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55925 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41030683, endtime: 41031122, seqnum: 0, connid: 0 98 13:07:38,5382809 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55925 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41030684, endtime: 41031122, seqnum: 0, connid: 0 98 13:07:38,5382867 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55925 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41030686, endtime: 41031122, seqnum: 0, connid: 0 98 13:07:38,6569512 MCLauncher.exe 6080 TCP Reconnect WIN-0UOTFKKVN1S:55951 -> 54.36.38.171:25565 SUCCESS Length: 0, seqnum: 0, connid: 0 98 13:07:38,7413081 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55810 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41030903, endtime: 41031143, seqnum: 0, connid: 0 98 13:07:38,7413250 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55810 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41030904, endtime: 41031143, seqnum: 0, connid: 0 98 13:07:38,7413325 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55810 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41030906, endtime: 41031143, seqnum: 0, connid: 0 98 13:07:38,7413397 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55810 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41030909, endtime: 41031143, seqnum: 0, connid: 0 98 13:07:38,7413455 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55810 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41030912, endtime: 41031143, seqnum: 0, connid: 0 98 13:07:38,7413522 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55810 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41030914, endtime: 41031143, seqnum: 0, connid: 0 98 13:07:38,7413574 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55810 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41030917, endtime: 41031143, seqnum: 0, connid: 0 98 13:07:38,7414995 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55810 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41030919, endtime: 41031143, seqnum: 0, connid: 0 98 13:07:38,7415101 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55810 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41030921, endtime: 41031143, seqnum: 0, connid: 0 98 13:07:38,7415181 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55810 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41030923, endtime: 41031143, seqnum: 0, connid: 0 98 13:07:38,7415245 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55810 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41030925, endtime: 41031143, seqnum: 0, connid: 0 98 13:07:38,7417486 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55810 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41030926, endtime: 41031143, seqnum: 0, connid: 0 98 13:07:38,7417597 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55810 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41030928, endtime: 41031143, seqnum: 0, connid: 0 98 13:07:40,4257945 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55915 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41030914, endtime: 41031311, seqnum: 0, connid: 0 98 13:07:40,4258133 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55915 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41030917, endtime: 41031311, seqnum: 0, connid: 0 98 13:07:40,4258211 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55915 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41030919, endtime: 41031311, seqnum: 0, connid: 0 98 13:07:40,4258288 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55915 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41030921, endtime: 41031311, seqnum: 0, connid: 0 98 13:07:40,4258346 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55915 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41030922, endtime: 41031311, seqnum: 0, connid: 0 98 13:07:40,4258421 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55915 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41030923, endtime: 41031311, seqnum: 0, connid: 0 98 13:07:40,4258479 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55915 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41030925, endtime: 41031311, seqnum: 0, connid: 0 98 13:07:40,4258549 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55915 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41030926, endtime: 41031311, seqnum: 0, connid: 0 98 13:07:40,4258610 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55915 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41030928, endtime: 41031311, seqnum: 0, connid: 0 98 13:07:40,4258892 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55915 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41030930, endtime: 41031311, seqnum: 0, connid: 0 98 13:07:40,4258953 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55915 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41030931, endtime: 41031311, seqnum: 0, connid: 0 98 13:07:40,4259020 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55915 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41030933, endtime: 41031311, seqnum: 0, connid: 0 98 13:07:40,4259078 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55915 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41030934, endtime: 41031311, seqnum: 0, connid: 0 98 13:07:40,5936813 MCLauncher.exe 6080 TCP Reconnect WIN-0UOTFKKVN1S:55949 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 0, seqnum: 0, connid: 0 98 13:07:40,5936899 MCLauncher.exe 6080 TCP Reconnect WIN-0UOTFKKVN1S:55950 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 0, seqnum: 0, connid: 0 98 13:07:40,7889346 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55925 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41031122, endtime: 41031348, seqnum: 0, connid: 0 98 13:07:40,7889617 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55925 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41031125, endtime: 41031348, seqnum: 0, connid: 0 98 13:07:40,7889739 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55925 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41031128, endtime: 41031348, seqnum: 0, connid: 0 98 13:07:40,7889861 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55925 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41031130, endtime: 41031348, seqnum: 0, connid: 0 98 13:07:40,7889964 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55925 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41031133, endtime: 41031348, seqnum: 0, connid: 0 98 13:07:40,7890080 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55925 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41031133, endtime: 41031348, seqnum: 0, connid: 0 98 13:07:40,7890177 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55925 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41031134, endtime: 41031348, seqnum: 0, connid: 0 98 13:07:40,7890296 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55925 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41031135, endtime: 41031348, seqnum: 0, connid: 0 98 13:07:40,7890399 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55925 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41031135, endtime: 41031348, seqnum: 0, connid: 0 98 13:07:40,7890870 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55925 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41031136, endtime: 41031348, seqnum: 0, connid: 0 98 13:07:40,7890969 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55925 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41031137, endtime: 41031348, seqnum: 0, connid: 0 98 13:07:40,7891083 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55925 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41031141, endtime: 41031348, seqnum: 0, connid: 0 98 13:07:40,7891474 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55925 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41031144, endtime: 41031348, seqnum: 0, connid: 0 98 13:07:41,8482548 MCLauncher.exe 6080 TCP TCPCopy WIN-0UOTFKKVN1S:54920 -> sheltex.company:8000 SUCCESS Length: 2, seqnum: 0, connid: 0 98 13:07:41,8482675 MCLauncher.exe 6080 TCP Receive WIN-0UOTFKKVN1S:54920 -> sheltex.company:8000 SUCCESS Length: 2, seqnum: 0, connid: 0 98 13:07:41,8487554 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54920 -> sheltex.company:8000 SUCCESS Length: 2, startime: 41031453, endtime: 41031453, seqnum: 0, connid: 0 98 13:07:43,0181830 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55915 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41031311, endtime: 41031570, seqnum: 0, connid: 0 98 13:07:43,0182021 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55915 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41031312, endtime: 41031570, seqnum: 0, connid: 0 98 13:07:43,0182104 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55915 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41031314, endtime: 41031570, seqnum: 0, connid: 0 98 13:07:43,0182181 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55915 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41031317, endtime: 41031570, seqnum: 0, connid: 0 98 13:07:43,0182240 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55915 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41031320, endtime: 41031570, seqnum: 0, connid: 0 98 13:07:43,0182309 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55915 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41031320, endtime: 41031570, seqnum: 0, connid: 0 98 13:07:43,0182367 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55915 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41031323, endtime: 41031570, seqnum: 0, connid: 0 98 13:07:43,0183032 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55915 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41031326, endtime: 41031570, seqnum: 0, connid: 0 98 13:07:43,0184282 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55915 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41031328, endtime: 41031570, seqnum: 0, connid: 0 98 13:07:43,0184398 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55915 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41031330, endtime: 41031570, seqnum: 0, connid: 0 98 13:07:43,0184464 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55915 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41031331, endtime: 41031570, seqnum: 0, connid: 0 98 13:07:43,0184539 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55915 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41031334, endtime: 41031570, seqnum: 0, connid: 0 98 13:07:43,0184600 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55915 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41031336, endtime: 41031570, seqnum: 0, connid: 0 98 13:07:44,6716640 MCLauncher.exe 6080 TCP Reconnect WIN-0UOTFKKVN1S:55951 -> 54.36.38.171:25565 SUCCESS Length: 0, seqnum: 0, connid: 0 98 13:07:44,7038310 MCLauncher.exe 6080 TCP Reconnect WIN-0UOTFKKVN1S:55960 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 0, seqnum: 0, connid: 0 98 13:07:44,7038388 MCLauncher.exe 6080 TCP Reconnect WIN-0UOTFKKVN1S:55961 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 0, seqnum: 0, connid: 0 98 13:07:45,1974138 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55915 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41031570, endtime: 41031788, seqnum: 0, connid: 0 98 13:07:45,1974310 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55915 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41031572, endtime: 41031788, seqnum: 0, connid: 0 98 13:07:45,1974382 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55915 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41031573, endtime: 41031788, seqnum: 0, connid: 0 98 13:07:45,1974457 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55915 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41031574, endtime: 41031788, seqnum: 0, connid: 0 98 13:07:45,1974515 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55915 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41031576, endtime: 41031788, seqnum: 0, connid: 0 98 13:07:45,1974582 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55915 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41031580, endtime: 41031788, seqnum: 0, connid: 0 98 13:07:45,1974634 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55915 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41031581, endtime: 41031788, seqnum: 0, connid: 0 98 13:07:45,1974704 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55915 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41031583, endtime: 41031788, seqnum: 0, connid: 0 98 13:07:45,1974759 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55915 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41031584, endtime: 41031788, seqnum: 0, connid: 0 98 13:07:45,1975089 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55915 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41031586, endtime: 41031788, seqnum: 0, connid: 0 98 13:07:45,1975144 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55915 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41031589, endtime: 41031788, seqnum: 0, connid: 0 98 13:07:45,1975208 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55915 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41031591, endtime: 41031788, seqnum: 0, connid: 0 98 13:07:45,1975263 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55915 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41031594, endtime: 41031788, seqnum: 0, connid: 0 98 13:07:45,4456444 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55915 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41031788, endtime: 41031813, seqnum: 0, connid: 0 98 13:07:46,0566189 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55925 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41031348, endtime: 41031874, seqnum: 0, connid: 0 98 13:07:46,0566378 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55925 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41031348, endtime: 41031874, seqnum: 0, connid: 0 98 13:07:46,0566453 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55925 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41031350, endtime: 41031874, seqnum: 0, connid: 0 98 13:07:46,0566527 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55925 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41031351, endtime: 41031874, seqnum: 0, connid: 0 98 13:07:46,0566586 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55925 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41031355, endtime: 41031874, seqnum: 0, connid: 0 98 13:07:46,0566652 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55925 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41031358, endtime: 41031874, seqnum: 0, connid: 0 98 13:07:46,0566708 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55925 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41031359, endtime: 41031874, seqnum: 0, connid: 0 98 13:07:46,0566777 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55925 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41031361, endtime: 41031874, seqnum: 0, connid: 0 98 13:07:46,0566832 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55925 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41031362, endtime: 41031874, seqnum: 0, connid: 0 98 13:07:46,0568181 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55925 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41031364, endtime: 41031874, seqnum: 0, connid: 0 98 13:07:46,0568306 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55925 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41031366, endtime: 41031874, seqnum: 0, connid: 0 98 13:07:46,0568386 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55925 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41031367, endtime: 41031874, seqnum: 0, connid: 0 98 13:07:46,0568453 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55925 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41031369, endtime: 41031874, seqnum: 0, connid: 0 98 13:07:46,3391928 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55925 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41031874, endtime: 41031903, seqnum: 0, connid: 0 98 13:07:46,3392100 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55925 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41031876, endtime: 41031903, seqnum: 0, connid: 0 98 13:07:46,3392169 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55925 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41031878, endtime: 41031903, seqnum: 0, connid: 0 98 13:07:46,3392241 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55925 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41031880, endtime: 41031903, seqnum: 0, connid: 0 98 13:07:46,3392300 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55925 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41031881, endtime: 41031903, seqnum: 0, connid: 0 98 13:07:46,3392369 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55925 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41031883, endtime: 41031903, seqnum: 0, connid: 0 98 13:07:46,3392424 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55925 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41031884, endtime: 41031903, seqnum: 0, connid: 0 98 13:07:46,3392491 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55925 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41031886, endtime: 41031903, seqnum: 0, connid: 0 98 13:07:46,3392543 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55925 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41031887, endtime: 41031903, seqnum: 0, connid: 0 98 13:07:46,3392862 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55925 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41031889, endtime: 41031903, seqnum: 0, connid: 0 98 13:07:46,3392917 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55925 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41031890, endtime: 41031903, seqnum: 0, connid: 0 98 13:07:46,3392984 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55925 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41031892, endtime: 41031903, seqnum: 0, connid: 0 98 13:07:46,3393039 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55925 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41031894, endtime: 41031903, seqnum: 0, connid: 0 98 13:07:48,2024995 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55810 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41031143, endtime: 41032089, seqnum: 0, connid: 0 98 13:07:48,2025172 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55810 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41031144, endtime: 41032089, seqnum: 0, connid: 0 98 13:07:48,2025264 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55810 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41031147, endtime: 41032089, seqnum: 0, connid: 0 98 13:07:48,2025330 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55810 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41031148, endtime: 41032089, seqnum: 0, connid: 0 98 13:07:48,2025402 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55810 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41031150, endtime: 41032089, seqnum: 0, connid: 0 98 13:07:48,2025460 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55810 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41031151, endtime: 41032089, seqnum: 0, connid: 0 98 13:07:48,2025668 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55810 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41031154, endtime: 41032089, seqnum: 0, connid: 0 98 13:07:48,2025787 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55810 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41031156, endtime: 41032089, seqnum: 0, connid: 0 98 13:07:48,2025915 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55810 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41031158, endtime: 41032089, seqnum: 0, connid: 0 98 13:07:48,2026383 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55810 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41031159, endtime: 41032089, seqnum: 0, connid: 0 98 13:07:48,2026499 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55810 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41031163, endtime: 41032089, seqnum: 0, connid: 0 98 13:07:48,2026599 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55810 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41031164, endtime: 41032089, seqnum: 0, connid: 0 98 13:07:48,2026715 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55810 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41031166, endtime: 41032089, seqnum: 0, connid: 0 98 13:07:48,2932356 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55810 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41032089, endtime: 41032098, seqnum: 0, connid: 0 98 13:07:48,2932528 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55810 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41032090, endtime: 41032098, seqnum: 0, connid: 0 98 13:07:48,2932600 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55810 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41032092, endtime: 41032098, seqnum: 0, connid: 0 98 13:07:48,2932675 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55810 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41032094, endtime: 41032098, seqnum: 0, connid: 0 98 13:07:48,2932733 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55810 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41032095, endtime: 41032098, seqnum: 0, connid: 0 98 13:07:48,3021842 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55810 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41032098, endtime: 41032099, seqnum: 0, connid: 0 98 13:07:48,3127318 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55810 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41032100, endtime: 41032100, seqnum: 0, connid: 0 98 13:07:48,3184483 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55810 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41032100, endtime: 41032100, seqnum: 0, connid: 0 98 13:07:48,3445705 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55810 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41032103, endtime: 41032103, seqnum: 0, connid: 0 98 13:07:48,3611077 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55810 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41032105, endtime: 41032105, seqnum: 0, connid: 0 98 13:07:48,3757393 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55810 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41032106, endtime: 41032106, seqnum: 0, connid: 0 98 13:07:48,3960766 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55810 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41032108, endtime: 41032108, seqnum: 0, connid: 0 98 13:07:48,7390556 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55915 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41031789, endtime: 41032143, seqnum: 0, connid: 0 98 13:07:48,7390717 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55915 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41031791, endtime: 41032143, seqnum: 0, connid: 0 98 13:07:48,7390806 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55915 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41031792, endtime: 41032143, seqnum: 0, connid: 0 98 13:07:48,7390869 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55915 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41031794, endtime: 41032143, seqnum: 0, connid: 0 98 13:07:48,7390941 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55915 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41031795, endtime: 41032143, seqnum: 0, connid: 0 98 13:07:48,7391000 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55915 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41031797, endtime: 41032143, seqnum: 0, connid: 0 98 13:07:48,7391069 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55915 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41031798, endtime: 41032143, seqnum: 0, connid: 0 98 13:07:48,7391124 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55915 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41031800, endtime: 41032143, seqnum: 0, connid: 0 98 13:07:48,7391194 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55915 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41031800, endtime: 41032143, seqnum: 0, connid: 0 98 13:07:48,7391944 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55915 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41031804, endtime: 41032143, seqnum: 0, connid: 0 98 13:07:48,7392030 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55915 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41031805, endtime: 41032143, seqnum: 0, connid: 0 98 13:07:48,7392091 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55915 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41031806, endtime: 41032143, seqnum: 0, connid: 0 98 13:07:48,7393357 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55915 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41031813, endtime: 41032143, seqnum: 0, connid: 0 98 13:07:48,7967567 MCLauncher.exe 6080 TCP Reconnect WIN-0UOTFKKVN1S:55966 -> 54.36.38.171:25565 SUCCESS Length: 0, seqnum: 0, connid: 0 98 13:07:50,7182363 MCLauncher.exe 6080 TCP Reconnect WIN-0UOTFKKVN1S:55960 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 0, seqnum: 0, connid: 0 98 13:07:50,7182451 MCLauncher.exe 6080 TCP Reconnect WIN-0UOTFKKVN1S:55961 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 0, seqnum: 0, connid: 0 98 13:07:52,0133641 MCLauncher.exe 6080 TCP TCPCopy WIN-0UOTFKKVN1S:54920 -> sheltex.company:8000 SUCCESS Length: 2, seqnum: 0, connid: 0 98 13:07:52,0133769 MCLauncher.exe 6080 TCP Receive WIN-0UOTFKKVN1S:54920 -> sheltex.company:8000 SUCCESS Length: 2, seqnum: 0, connid: 0 98 13:07:52,0138021 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54920 -> sheltex.company:8000 SUCCESS Length: 2, startime: 41032470, endtime: 41032470, seqnum: 0, connid: 0 98 13:07:52,1925360 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55915 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41032143, endtime: 41032488, seqnum: 0, connid: 0 98 13:07:52,1925554 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55915 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41032144, endtime: 41032488, seqnum: 0, connid: 0 98 13:07:52,1925637 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55915 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41032145, endtime: 41032488, seqnum: 0, connid: 0 98 13:07:52,1925717 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55915 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41032147, endtime: 41032488, seqnum: 0, connid: 0 98 13:07:52,1925781 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55915 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41032148, endtime: 41032488, seqnum: 0, connid: 0 98 13:07:52,1925856 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55915 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41032150, endtime: 41032488, seqnum: 0, connid: 0 98 13:07:52,1925917 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55915 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41032151, endtime: 41032488, seqnum: 0, connid: 0 98 13:07:52,1925986 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55915 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41032153, endtime: 41032488, seqnum: 0, connid: 0 98 13:07:52,1926047 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55915 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41032154, endtime: 41032488, seqnum: 0, connid: 0 98 13:07:52,1926837 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55915 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41032156, endtime: 41032488, seqnum: 0, connid: 0 98 13:07:52,1926914 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55915 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41032158, endtime: 41032488, seqnum: 0, connid: 0 98 13:07:52,1926989 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55915 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41032161, endtime: 41032488, seqnum: 0, connid: 0 98 13:07:52,1928258 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55915 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41032162, endtime: 41032488, seqnum: 0, connid: 0 98 13:07:53,8907912 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55925 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41031903, endtime: 41032658, seqnum: 0, connid: 0 98 13:07:53,8908048 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55925 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41031905, endtime: 41032658, seqnum: 0, connid: 0 98 13:07:53,8908131 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55925 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41031906, endtime: 41032658, seqnum: 0, connid: 0 98 13:07:53,8908192 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55925 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41031910, endtime: 41032658, seqnum: 0, connid: 0 98 13:07:53,8908261 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55925 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41031913, endtime: 41032658, seqnum: 0, connid: 0 98 13:07:53,8908314 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55925 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41031914, endtime: 41032658, seqnum: 0, connid: 0 98 13:07:53,8908380 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55925 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41031916, endtime: 41032658, seqnum: 0, connid: 0 98 13:07:53,8908433 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55925 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41031919, endtime: 41032658, seqnum: 0, connid: 0 98 13:07:53,8908497 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55925 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41031920, endtime: 41032658, seqnum: 0, connid: 0 98 13:07:53,8908787 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55925 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41031922, endtime: 41032658, seqnum: 0, connid: 0 98 13:07:53,8908854 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55925 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41031925, endtime: 41032658, seqnum: 0, connid: 0 98 13:07:53,8908907 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55925 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41031926, endtime: 41032658, seqnum: 0, connid: 0 98 13:07:53,8908973 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55925 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41031928, endtime: 41032658, seqnum: 0, connid: 0 98 13:07:54,0339541 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55915 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41032488, endtime: 41032672, seqnum: 0, connid: 0 98 13:07:54,0339713 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55915 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41032491, endtime: 41032672, seqnum: 0, connid: 0 98 13:07:54,0339788 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55915 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41032494, endtime: 41032672, seqnum: 0, connid: 0 98 13:07:54,0339860 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55915 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41032495, endtime: 41032672, seqnum: 0, connid: 0 98 13:07:54,0339915 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55915 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41032497, endtime: 41032672, seqnum: 0, connid: 0 98 13:07:54,0339981 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55915 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41032500, endtime: 41032672, seqnum: 0, connid: 0 98 13:07:54,0340037 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55915 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41032501, endtime: 41032672, seqnum: 0, connid: 0 98 13:07:54,0340103 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55915 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41032503, endtime: 41032672, seqnum: 0, connid: 0 98 13:07:54,0340156 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55915 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41032505, endtime: 41032672, seqnum: 0, connid: 0 98 13:07:54,0340921 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55915 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41032508, endtime: 41032672, seqnum: 0, connid: 0 98 13:07:54,0340993 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55915 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41032509, endtime: 41032672, seqnum: 0, connid: 0 98 13:07:54,0341059 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55915 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41032511, endtime: 41032672, seqnum: 0, connid: 0 98 13:07:54,0342245 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55915 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41032514, endtime: 41032672, seqnum: 0, connid: 0 98 13:07:54,8126553 MCLauncher.exe 6080 TCP Reconnect WIN-0UOTFKKVN1S:55966 -> 54.36.38.171:25565 SUCCESS Length: 0, seqnum: 0, connid: 0 98 13:07:54,8126644 MCLauncher.exe 6080 TCP Reconnect WIN-0UOTFKKVN1S:55970 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 0, seqnum: 0, connid: 0 98 13:07:54,8126669 MCLauncher.exe 6080 TCP Reconnect WIN-0UOTFKKVN1S:55971 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 0, seqnum: 0, connid: 0 98 13:07:55,9488691 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55925 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41032658, endtime: 41032863, seqnum: 0, connid: 0 98 13:07:55,9488901 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55925 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41032659, endtime: 41032863, seqnum: 0, connid: 0 98 13:07:55,9488982 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55925 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41032661, endtime: 41032863, seqnum: 0, connid: 0 98 13:07:55,9489065 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55925 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41032662, endtime: 41032863, seqnum: 0, connid: 0 98 13:07:55,9489126 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55925 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41032664, endtime: 41032863, seqnum: 0, connid: 0 98 13:07:55,9489198 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55925 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41032666, endtime: 41032863, seqnum: 0, connid: 0 98 13:07:55,9489259 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55925 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41032667, endtime: 41032863, seqnum: 0, connid: 0 98 13:07:55,9489331 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55925 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41032669, endtime: 41032863, seqnum: 0, connid: 0 98 13:07:55,9489392 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55925 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41032672, endtime: 41032863, seqnum: 0, connid: 0 98 13:07:55,9489694 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55925 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41032673, endtime: 41032864, seqnum: 0, connid: 0 98 13:07:55,9489757 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55925 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41032674, endtime: 41032864, seqnum: 0, connid: 0 98 13:07:55,9489827 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55925 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41032676, endtime: 41032864, seqnum: 0, connid: 0 98 13:07:55,9489888 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55925 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41032679, endtime: 41032864, seqnum: 0, connid: 0 98 13:07:57,2585005 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55915 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41032672, endtime: 41032994, seqnum: 0, connid: 0 98 13:07:57,2585208 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55915 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41032673, endtime: 41032994, seqnum: 0, connid: 0 98 13:07:57,2585288 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55915 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41032674, endtime: 41032994, seqnum: 0, connid: 0 98 13:07:57,2585368 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55915 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41032676, endtime: 41032994, seqnum: 0, connid: 0 98 13:07:57,2585429 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55915 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41032679, endtime: 41032994, seqnum: 0, connid: 0 98 13:07:57,2585499 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55915 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41032681, endtime: 41032994, seqnum: 0, connid: 0 98 13:07:57,2585557 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55915 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41032683, endtime: 41032994, seqnum: 0, connid: 0 98 13:07:57,2585626 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55915 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41032685, endtime: 41032994, seqnum: 0, connid: 0 98 13:07:57,2585684 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55915 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41032686, endtime: 41032994, seqnum: 0, connid: 0 98 13:07:57,2586524 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55915 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41032689, endtime: 41032994, seqnum: 0, connid: 0 98 13:07:57,2586598 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55915 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41032691, endtime: 41032994, seqnum: 0, connid: 0 98 13:07:57,2586671 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55915 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41032692, endtime: 41032994, seqnum: 0, connid: 0 98 13:07:57,2587615 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55915 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41032696, endtime: 41032994, seqnum: 0, connid: 0 98 13:07:58,9216453 MCLauncher.exe 6080 TCP Reconnect WIN-0UOTFKKVN1S:55974 -> 54.36.38.171:25565 SUCCESS Length: 0, seqnum: 0, connid: 0 98 13:07:59,1082669 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55915 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41032994, endtime: 41033179, seqnum: 0, connid: 0 98 13:07:59,1082860 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55915 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41032995, endtime: 41033179, seqnum: 0, connid: 0 98 13:07:59,1082935 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55915 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41032997, endtime: 41033179, seqnum: 0, connid: 0 98 13:07:59,1083013 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55915 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41032998, endtime: 41033179, seqnum: 0, connid: 0 98 13:07:59,1083071 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55915 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41033000, endtime: 41033179, seqnum: 0, connid: 0 98 13:07:59,1083140 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55915 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41033001, endtime: 41033179, seqnum: 0, connid: 0 98 13:07:59,1083195 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55915 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41033003, endtime: 41033179, seqnum: 0, connid: 0 98 13:07:59,1083262 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55915 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41033005, endtime: 41033179, seqnum: 0, connid: 0 98 13:07:59,1083320 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55915 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41033008, endtime: 41033179, seqnum: 0, connid: 0 98 13:07:59,1083636 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55915 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41033009, endtime: 41033179, seqnum: 0, connid: 0 98 13:07:59,1083697 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55915 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41033011, endtime: 41033179, seqnum: 0, connid: 0 98 13:07:59,1083763 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55915 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41033012, endtime: 41033179, seqnum: 0, connid: 0 98 13:07:59,1083822 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55915 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41033015, endtime: 41033179, seqnum: 0, connid: 0 98 13:07:59,5393949 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55925 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41032864, endtime: 41033223, seqnum: 0, connid: 0 98 13:07:59,5394193 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55925 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41032866, endtime: 41033223, seqnum: 0, connid: 0 98 13:07:59,5394304 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55925 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41032869, endtime: 41033223, seqnum: 0, connid: 0 98 13:07:59,5394379 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55925 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41032870, endtime: 41033223, seqnum: 0, connid: 0 98 13:07:59,5394440 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55925 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41032872, endtime: 41033223, seqnum: 0, connid: 0 98 13:07:59,5394517 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55925 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41032874, endtime: 41033223, seqnum: 0, connid: 0 98 13:07:59,5394578 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55925 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41032875, endtime: 41033223, seqnum: 0, connid: 0 98 13:07:59,5394650 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55925 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41032875, endtime: 41033223, seqnum: 0, connid: 0 98 13:07:59,5394711 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55925 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41032878, endtime: 41033223, seqnum: 0, connid: 0 98 13:07:59,5395021 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55925 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41032880, endtime: 41033223, seqnum: 0, connid: 0 98 13:07:59,5395082 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55925 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41032883, endtime: 41033223, seqnum: 0, connid: 0 98 13:07:59,5395152 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55925 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41032884, endtime: 41033223, seqnum: 0, connid: 0 98 13:07:59,5395207 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55925 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41032887, endtime: 41033223, seqnum: 0, connid: 0 98 13:08:00,8272345 MCLauncher.exe 6080 TCP Reconnect WIN-0UOTFKKVN1S:55970 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 0, seqnum: 0, connid: 0 98 13:08:00,8272434 MCLauncher.exe 6080 TCP Reconnect WIN-0UOTFKKVN1S:55971 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 0, seqnum: 0, connid: 0 98 13:08:01,7344992 MCLauncher.exe 6080 TCP Reconnect WIN-0UOTFKKVN1S:55977 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 0, seqnum: 0, connid: 0 98 13:08:02,2011563 MCLauncher.exe 6080 TCP TCPCopy WIN-0UOTFKKVN1S:54920 -> sheltex.company:8000 SUCCESS Length: 2, seqnum: 0, connid: 0 98 13:08:02,2011688 MCLauncher.exe 6080 TCP Receive WIN-0UOTFKKVN1S:54920 -> sheltex.company:8000 SUCCESS Length: 2, seqnum: 0, connid: 0 98 13:08:02,2015229 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54920 -> sheltex.company:8000 SUCCESS Length: 2, startime: 41033489, endtime: 41033489, seqnum: 0, connid: 0 98 13:08:02,7381668 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55915 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41033179, endtime: 41033542, seqnum: 0, connid: 0 98 13:08:02,7381837 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55915 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41033181, endtime: 41033542, seqnum: 0, connid: 0 98 13:08:02,7381915 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55915 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41033183, endtime: 41033542, seqnum: 0, connid: 0 98 13:08:02,7381995 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55915 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41033184, endtime: 41033542, seqnum: 0, connid: 0 98 13:08:02,7382056 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55915 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41033186, endtime: 41033542, seqnum: 0, connid: 0 98 13:08:02,7382126 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55915 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41033189, endtime: 41033542, seqnum: 0, connid: 0 98 13:08:02,7382187 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55915 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41033190, endtime: 41033542, seqnum: 0, connid: 0 98 13:08:02,7382259 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55915 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41033192, endtime: 41033542, seqnum: 0, connid: 0 98 13:08:02,7382317 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55915 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41033195, endtime: 41033542, seqnum: 0, connid: 0 98 13:08:02,7382605 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55915 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41033197, endtime: 41033542, seqnum: 0, connid: 0 98 13:08:02,7382669 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55915 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41033200, endtime: 41033542, seqnum: 0, connid: 0 98 13:08:02,7382741 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55915 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41033201, endtime: 41033542, seqnum: 0, connid: 0 98 13:08:02,7382802 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55915 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41033203, endtime: 41033542, seqnum: 0, connid: 0 98 13:08:03,8131881 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55810 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41032111, endtime: 41033650, seqnum: 0, connid: 0 98 13:08:03,8132119 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55810 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41032114, endtime: 41033650, seqnum: 0, connid: 0 98 13:08:03,8132205 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55810 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41032116, endtime: 41033650, seqnum: 0, connid: 0 98 13:08:03,8132288 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55810 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41032119, endtime: 41033650, seqnum: 0, connid: 0 98 13:08:03,8132355 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55810 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41032120, endtime: 41033650, seqnum: 0, connid: 0 98 13:08:03,8132429 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55810 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41032123, endtime: 41033650, seqnum: 0, connid: 0 98 13:08:03,8132490 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55810 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41032126, endtime: 41033650, seqnum: 0, connid: 0 98 13:08:03,8132562 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55810 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41032126, endtime: 41033650, seqnum: 0, connid: 0 98 13:08:03,8132623 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55810 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41032130, endtime: 41033650, seqnum: 0, connid: 0 98 13:08:03,8133111 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55810 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41032131, endtime: 41033650, seqnum: 0, connid: 0 98 13:08:03,8133244 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55810 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41032133, endtime: 41033650, seqnum: 0, connid: 0 98 13:08:03,8133369 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55810 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41032134, endtime: 41033650, seqnum: 0, connid: 0 98 13:08:03,8133479 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55810 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41032136, endtime: 41033650, seqnum: 0, connid: 0 98 13:08:04,9211945 MCLauncher.exe 6080 TCP Reconnect WIN-0UOTFKKVN1S:55982 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 0, seqnum: 0, connid: 0 98 13:08:04,9212031 MCLauncher.exe 6080 TCP Reconnect WIN-0UOTFKKVN1S:55983 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 0, seqnum: 0, connid: 0 98 13:08:04,9212059 MCLauncher.exe 6080 TCP Reconnect WIN-0UOTFKKVN1S:55974 -> 54.36.38.171:25565 SUCCESS Length: 0, seqnum: 0, connid: 0 98 13:08:06,0413376 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55925 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41033223, endtime: 41033873, seqnum: 0, connid: 0 98 13:08:06,0413590 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55925 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41033223, endtime: 41033873, seqnum: 0, connid: 0 98 13:08:06,0413673 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55925 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41033225, endtime: 41033873, seqnum: 0, connid: 0 98 13:08:06,0413759 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55925 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41033228, endtime: 41033873, seqnum: 0, connid: 0 98 13:08:06,0413822 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55925 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41033230, endtime: 41033873, seqnum: 0, connid: 0 98 13:08:06,0413900 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55925 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41033233, endtime: 41033873, seqnum: 0, connid: 0 98 13:08:06,0413964 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55925 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41033234, endtime: 41033873, seqnum: 0, connid: 0 98 13:08:06,0414036 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55925 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41033236, endtime: 41033873, seqnum: 0, connid: 0 98 13:08:06,0414094 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55925 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41033239, endtime: 41033873, seqnum: 0, connid: 0 98 13:08:06,0414426 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55925 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41033241, endtime: 41033873, seqnum: 0, connid: 0 98 13:08:06,0414493 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55925 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41033242, endtime: 41033873, seqnum: 0, connid: 0 98 13:08:06,0414568 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55925 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41033246, endtime: 41033873, seqnum: 0, connid: 0 98 13:08:06,0414629 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55925 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41033248, endtime: 41033873, seqnum: 0, connid: 0 98 13:08:07,1407368 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55915 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41033542, endtime: 41033983, seqnum: 0, connid: 0 98 13:08:07,1407570 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55915 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41033544, endtime: 41033983, seqnum: 0, connid: 0 98 13:08:07,1407650 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55915 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41033547, endtime: 41033983, seqnum: 0, connid: 0 98 13:08:07,1407728 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55915 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41033548, endtime: 41033983, seqnum: 0, connid: 0 98 13:08:07,1407786 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55915 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41033551, endtime: 41033983, seqnum: 0, connid: 0 98 13:08:07,1407855 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55915 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41033553, endtime: 41033983, seqnum: 0, connid: 0 98 13:08:07,1407913 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55915 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41033555, endtime: 41033983, seqnum: 0, connid: 0 98 13:08:07,1407980 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55915 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41033556, endtime: 41033983, seqnum: 0, connid: 0 98 13:08:07,1408035 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55915 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41033558, endtime: 41033983, seqnum: 0, connid: 0 98 13:08:07,1408346 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55915 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41033559, endtime: 41033983, seqnum: 0, connid: 0 98 13:08:07,1408407 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55915 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41033563, endtime: 41033983, seqnum: 0, connid: 0 98 13:08:07,1408473 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55915 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41033567, endtime: 41033983, seqnum: 0, connid: 0 98 13:08:07,1408528 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55915 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41033569, endtime: 41033983, seqnum: 0, connid: 0 98 13:08:07,7345069 MCLauncher.exe 6080 TCP Reconnect WIN-0UOTFKKVN1S:55977 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 0, seqnum: 0, connid: 0 98 13:08:09,0461274 MCLauncher.exe 6080 TCP Reconnect WIN-0UOTFKKVN1S:55988 -> 54.36.38.171:25565 SUCCESS Length: 0, seqnum: 0, connid: 0 98 13:08:10,9223606 MCLauncher.exe 6080 TCP Reconnect WIN-0UOTFKKVN1S:55982 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 0, seqnum: 0, connid: 0 98 13:08:10,9223687 MCLauncher.exe 6080 TCP Reconnect WIN-0UOTFKKVN1S:55983 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 0, seqnum: 0, connid: 0 98 13:08:11,2766738 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55925 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41033873, endtime: 41034396, seqnum: 0, connid: 0 98 13:08:11,2766937 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55925 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41033875, endtime: 41034396, seqnum: 0, connid: 0 98 13:08:11,2767034 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55925 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41033876, endtime: 41034396, seqnum: 0, connid: 0 98 13:08:11,2767103 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55925 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41033878, endtime: 41034396, seqnum: 0, connid: 0 98 13:08:11,2767181 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55925 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41033880, endtime: 41034396, seqnum: 0, connid: 0 98 13:08:11,2767242 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55925 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41033881, endtime: 41034396, seqnum: 0, connid: 0 98 13:08:11,2767314 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55925 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41033883, endtime: 41034396, seqnum: 0, connid: 0 98 13:08:11,2767375 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55925 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41033885, endtime: 41034396, seqnum: 0, connid: 0 98 13:08:11,2767447 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55925 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41033886, endtime: 41034396, seqnum: 0, connid: 0 98 13:08:11,2767508 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55925 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41033887, endtime: 41034396, seqnum: 0, connid: 0 98 13:08:11,2767821 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55925 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41033889, endtime: 41034396, seqnum: 0, connid: 0 98 13:08:11,2767885 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55925 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41033891, endtime: 41034396, seqnum: 0, connid: 0 98 13:08:11,2767962 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55925 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41033892, endtime: 41034396, seqnum: 0, connid: 0 98 13:08:11,3201256 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55915 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41033983, endtime: 41034401, seqnum: 0, connid: 0 98 13:08:11,3201441 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55915 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41033984, endtime: 41034401, seqnum: 0, connid: 0 98 13:08:11,3201516 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55915 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41033985, endtime: 41034401, seqnum: 0, connid: 0 98 13:08:11,3201591 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55915 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41033985, endtime: 41034401, seqnum: 0, connid: 0 98 13:08:11,3201655 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55915 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41033987, endtime: 41034401, seqnum: 0, connid: 0 98 13:08:11,3201724 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55915 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41033989, endtime: 41034401, seqnum: 0, connid: 0 98 13:08:11,3201782 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55915 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41033990, endtime: 41034401, seqnum: 0, connid: 0 98 13:08:11,3201851 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55915 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41033992, endtime: 41034401, seqnum: 0, connid: 0 98 13:08:11,3222675 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55915 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41033995, endtime: 41034401, seqnum: 0, connid: 0 98 13:08:11,3222811 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55915 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41033997, endtime: 41034401, seqnum: 0, connid: 0 98 13:08:11,3222880 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55915 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41033998, endtime: 41034401, seqnum: 0, connid: 0 98 13:08:11,3222955 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55915 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41034000, endtime: 41034401, seqnum: 0, connid: 0 98 13:08:11,3223010 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55915 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41034001, endtime: 41034401, seqnum: 0, connid: 0 98 13:08:11,3487432 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55925 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41034396, endtime: 41034403, seqnum: 0, connid: 0 98 13:08:11,3487599 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55925 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41034398, endtime: 41034403, seqnum: 0, connid: 0 98 13:08:11,3487673 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55925 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41034400, endtime: 41034403, seqnum: 0, connid: 0 98 13:08:11,3487748 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55925 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41034400, endtime: 41034403, seqnum: 0, connid: 0 98 13:08:11,3536399 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55925 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41034403, endtime: 41034404, seqnum: 0, connid: 0 98 13:08:11,3601302 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55925 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41034405, endtime: 41034405, seqnum: 0, connid: 0 98 13:08:11,3825114 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55925 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41034406, endtime: 41034407, seqnum: 0, connid: 0 98 13:08:11,3927007 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55925 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41034408, endtime: 41034408, seqnum: 0, connid: 0 98 13:08:11,4070073 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55925 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41034409, endtime: 41034409, seqnum: 0, connid: 0 98 13:08:11,4235905 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55925 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41034411, endtime: 41034411, seqnum: 0, connid: 0 98 13:08:11,4382351 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55925 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41034412, endtime: 41034412, seqnum: 0, connid: 0 98 13:08:11,4550164 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55925 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41034414, endtime: 41034414, seqnum: 0, connid: 0 98 13:08:11,4706870 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55925 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41034416, endtime: 41034416, seqnum: 0, connid: 0 98 13:08:11,8741246 MCLauncher.exe 6080 TCP Reconnect WIN-0UOTFKKVN1S:55992 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 0, seqnum: 0, connid: 0 98 13:08:12,3854429 MCLauncher.exe 6080 TCP TCPCopy WIN-0UOTFKKVN1S:54920 -> sheltex.company:8000 SUCCESS Length: 2, seqnum: 0, connid: 0 98 13:08:12,3854545 MCLauncher.exe 6080 TCP Receive WIN-0UOTFKKVN1S:54920 -> sheltex.company:8000 SUCCESS Length: 2, seqnum: 0, connid: 0 98 13:08:12,3858455 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54920 -> sheltex.company:8000 SUCCESS Length: 2, startime: 41034507, endtime: 41034507, seqnum: 0, connid: 0 98 13:08:13,6587814 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55915 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41034401, endtime: 41034634, seqnum: 0, connid: 0 98 13:08:13,6587997 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55915 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41034403, endtime: 41034634, seqnum: 0, connid: 0 98 13:08:13,6588072 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55915 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41034405, endtime: 41034634, seqnum: 0, connid: 0 98 13:08:13,6588147 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55915 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41034406, endtime: 41034634, seqnum: 0, connid: 0 98 13:08:13,6588202 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55915 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41034408, endtime: 41034634, seqnum: 0, connid: 0 98 13:08:13,6588269 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55915 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41034409, endtime: 41034634, seqnum: 0, connid: 0 98 13:08:13,6588321 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55915 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41034411, endtime: 41034634, seqnum: 0, connid: 0 98 13:08:13,6588388 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55915 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41034412, endtime: 41034634, seqnum: 0, connid: 0 98 13:08:13,6588443 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55915 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41034414, endtime: 41034634, seqnum: 0, connid: 0 98 13:08:13,6588745 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55915 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41034416, endtime: 41034634, seqnum: 0, connid: 0 98 13:08:13,6588803 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55915 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41034419, endtime: 41034634, seqnum: 0, connid: 0 98 13:08:13,6588870 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55915 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41034422, endtime: 41034634, seqnum: 0, connid: 0 98 13:08:13,6588925 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55915 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41034425, endtime: 41034634, seqnum: 0, connid: 0 98 13:08:15,0464610 MCLauncher.exe 6080 TCP Reconnect WIN-0UOTFKKVN1S:55994 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 0, seqnum: 0, connid: 0 98 13:08:15,0464709 MCLauncher.exe 6080 TCP Reconnect WIN-0UOTFKKVN1S:55995 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 0, seqnum: 0, connid: 0 98 13:08:15,0464731 MCLauncher.exe 6080 TCP Reconnect WIN-0UOTFKKVN1S:55988 -> 54.36.38.171:25565 SUCCESS Length: 0, seqnum: 0, connid: 0 98 13:08:16,9799531 MCLauncher.exe 6080 TCP Disconnect WIN-0UOTFKKVN1S:55810 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 0, seqnum: 0, connid: 0 98 13:08:17,2067681 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55915 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41034634, endtime: 41034989, seqnum: 0, connid: 0 98 13:08:17,2067861 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55915 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41034636, endtime: 41034989, seqnum: 0, connid: 0 98 13:08:17,2067941 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55915 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41034637, endtime: 41034989, seqnum: 0, connid: 0 98 13:08:17,2068024 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55915 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41034639, endtime: 41034989, seqnum: 0, connid: 0 98 13:08:17,2068091 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55915 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41034641, endtime: 41034989, seqnum: 0, connid: 0 98 13:08:17,2068163 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55915 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41034642, endtime: 41034989, seqnum: 0, connid: 0 98 13:08:17,2068227 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55915 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41034644, endtime: 41034989, seqnum: 0, connid: 0 98 13:08:17,2068299 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55915 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41034645, endtime: 41034989, seqnum: 0, connid: 0 98 13:08:17,2068360 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55915 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41034647, endtime: 41034989, seqnum: 0, connid: 0 98 13:08:17,2068656 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55915 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41034648, endtime: 41034989, seqnum: 0, connid: 0 98 13:08:17,2068720 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55915 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41034650, endtime: 41034989, seqnum: 0, connid: 0 98 13:08:17,2068789 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55915 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41034651, endtime: 41034989, seqnum: 0, connid: 0 98 13:08:17,2068850 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55915 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41034653, endtime: 41034989, seqnum: 0, connid: 0 98 13:08:17,8749350 MCLauncher.exe 6080 TCP Reconnect WIN-0UOTFKKVN1S:55992 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 0, seqnum: 0, connid: 0 98 13:08:17,9455480 MCLauncher.exe 6080 TCP Connect WIN-0UOTFKKVN1S:55992 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 0, mss: 1460, sackopt: 0, tsopt: 0, wsopt: 0, rcvwin: 64240, rcvwinscale: 0, sndwinscale: 0, seqnum: 0, connid: 0 98 13:08:17,9486103 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55992 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41035063, endtime: 41035063, seqnum: 0, connid: 0 98 13:08:17,9533397 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55992 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41035064, endtime: 41035064, seqnum: 0, connid: 0 98 13:08:17,9692801 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55992 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41035065, endtime: 41035066, seqnum: 0, connid: 0 98 13:08:18,0017352 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55992 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41035069, endtime: 41035069, seqnum: 0, connid: 0 98 13:08:18,0167583 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55992 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41035070, endtime: 41035070, seqnum: 0, connid: 0 98 13:08:18,0480413 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55992 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41035073, endtime: 41035073, seqnum: 0, connid: 0 98 13:08:18,0554523 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55992 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41035074, endtime: 41035074, seqnum: 0, connid: 0 98 13:08:18,0840400 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55992 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41035076, endtime: 41035077, seqnum: 0, connid: 0 98 13:08:18,0947926 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55992 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41035078, endtime: 41035078, seqnum: 0, connid: 0 98 13:08:18,1100179 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55992 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41035080, endtime: 41035080, seqnum: 0, connid: 0 98 13:08:18,1260129 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55992 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41035081, endtime: 41035081, seqnum: 0, connid: 0 98 13:08:18,1413618 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55992 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41035083, endtime: 41035083, seqnum: 0, connid: 0 98 13:08:18,1690680 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55992 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41035084, endtime: 41035086, seqnum: 0, connid: 0 98 13:08:18,1898472 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55992 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41035088, endtime: 41035088, seqnum: 0, connid: 0 98 13:08:18,2040272 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55992 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41035089, endtime: 41035089, seqnum: 0, connid: 0 98 13:08:18,2216241 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55992 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41035090, endtime: 41035091, seqnum: 0, connid: 0 98 13:08:18,2358828 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55992 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41035092, endtime: 41035092, seqnum: 0, connid: 0 98 13:08:18,2505017 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55992 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41035094, endtime: 41035094, seqnum: 0, connid: 0 98 13:08:18,2672633 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55992 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41035095, endtime: 41035095, seqnum: 0, connid: 0 98 13:08:18,2812973 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55992 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41035097, endtime: 41035097, seqnum: 0, connid: 0 98 13:08:18,2991183 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55992 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41035098, endtime: 41035099, seqnum: 0, connid: 0 98 13:08:18,3294111 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55992 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41035101, endtime: 41035102, seqnum: 0, connid: 0 98 13:08:18,3615357 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55992 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41035105, endtime: 41035105, seqnum: 0, connid: 0 98 13:08:18,3761233 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55992 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41035106, endtime: 41035106, seqnum: 0, connid: 0 98 13:08:18,3946764 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55992 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41035108, endtime: 41035108, seqnum: 0, connid: 0 98 13:08:18,4146684 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55992 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41035109, endtime: 41035110, seqnum: 0, connid: 0 98 13:08:19,0874921 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55992 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41035112, endtime: 41035177, seqnum: 0, connid: 0 98 13:08:19,0875110 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55992 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41035114, endtime: 41035177, seqnum: 0, connid: 0 98 13:08:19,0875184 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55992 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41035116, endtime: 41035177, seqnum: 0, connid: 0 98 13:08:19,0875262 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55992 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41035117, endtime: 41035177, seqnum: 0, connid: 0 98 13:08:19,0875320 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55992 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41035119, endtime: 41035177, seqnum: 0, connid: 0 98 13:08:19,0875390 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55992 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41035120, endtime: 41035177, seqnum: 0, connid: 0 98 13:08:19,0875445 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55992 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41035123, endtime: 41035177, seqnum: 0, connid: 0 98 13:08:19,0875633 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55992 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41035123, endtime: 41035177, seqnum: 0, connid: 0 98 13:08:19,0875747 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55992 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41035126, endtime: 41035177, seqnum: 0, connid: 0 98 13:08:19,0876121 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55992 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41035126, endtime: 41035177, seqnum: 0, connid: 0 98 13:08:19,0876187 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55992 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41035128, endtime: 41035177, seqnum: 0, connid: 0 98 13:08:19,0876254 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55992 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41035130, endtime: 41035177, seqnum: 0, connid: 0 98 13:08:19,1872752 MCLauncher.exe 6080 TCP Reconnect WIN-0UOTFKKVN1S:55998 -> 54.36.38.171:25565 SUCCESS Length: 0, seqnum: 0, connid: 0 98 13:08:19,8149801 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55915 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41034989, endtime: 41035250, seqnum: 0, connid: 0 98 13:08:19,8149981 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55915 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41034990, endtime: 41035250, seqnum: 0, connid: 0 98 13:08:19,8150064 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55915 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41034992, endtime: 41035250, seqnum: 0, connid: 0 98 13:08:19,8150144 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55915 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41034994, endtime: 41035250, seqnum: 0, connid: 0 98 13:08:19,8150211 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55915 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41034997, endtime: 41035250, seqnum: 0, connid: 0 98 13:08:19,8150286 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55915 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41034998, endtime: 41035250, seqnum: 0, connid: 0 98 13:08:19,8150347 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55915 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41035000, endtime: 41035250, seqnum: 0, connid: 0 98 13:08:19,8150421 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55915 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41035000, endtime: 41035250, seqnum: 0, connid: 0 98 13:08:19,8150482 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55915 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41035005, endtime: 41035250, seqnum: 0, connid: 0 98 13:08:19,8150790 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55915 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41035006, endtime: 41035250, seqnum: 0, connid: 0 98 13:08:19,8150856 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55915 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41035008, endtime: 41035250, seqnum: 0, connid: 0 98 13:08:19,8150928 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55915 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41035009, endtime: 41035250, seqnum: 0, connid: 0 98 13:08:19,8150992 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55915 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41035012, endtime: 41035250, seqnum: 0, connid: 0 98 13:08:19,9020258 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55915 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41035250, endtime: 41035259, seqnum: 0, connid: 0 98 13:08:20,7754004 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55925 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41034419, endtime: 41035346, seqnum: 0, connid: 0 98 13:08:20,7754187 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55925 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41034422, endtime: 41035346, seqnum: 0, connid: 0 98 13:08:20,7754264 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55925 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41034425, endtime: 41035346, seqnum: 0, connid: 0 98 13:08:20,7754339 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55925 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41034426, endtime: 41035346, seqnum: 0, connid: 0 98 13:08:20,7754397 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55925 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41034428, endtime: 41035346, seqnum: 0, connid: 0 98 13:08:20,7754467 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55925 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41034430, endtime: 41035346, seqnum: 0, connid: 0 98 13:08:20,7754525 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55925 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41034433, endtime: 41035346, seqnum: 0, connid: 0 98 13:08:20,7754741 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55925 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41034434, endtime: 41035346, seqnum: 0, connid: 0 98 13:08:20,7754849 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55925 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41034436, endtime: 41035346, seqnum: 0, connid: 0 98 13:08:20,7755290 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55925 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41034439, endtime: 41035346, seqnum: 0, connid: 0 98 13:08:20,7755353 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55925 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41034440, endtime: 41035346, seqnum: 0, connid: 0 98 13:08:20,7755420 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55925 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41034442, endtime: 41035346, seqnum: 0, connid: 0 98 13:08:20,7755475 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55925 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41034445, endtime: 41035346, seqnum: 0, connid: 0 98 13:08:20,7894793 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55925 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41035346, endtime: 41035348, seqnum: 0, connid: 0 98 13:08:20,7965406 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55925 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41035348, endtime: 41035348, seqnum: 0, connid: 0 98 13:08:20,8129540 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55925 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41035350, endtime: 41035350, seqnum: 0, connid: 0 98 13:08:20,8285157 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55925 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41035351, endtime: 41035351, seqnum: 0, connid: 0 98 13:08:20,8439926 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55925 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41035353, endtime: 41035353, seqnum: 0, connid: 0 98 13:08:20,8597426 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55925 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41035355, endtime: 41035355, seqnum: 0, connid: 0 98 13:08:20,8753500 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55925 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41035356, endtime: 41035356, seqnum: 0, connid: 0 98 13:08:20,8983643 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55925 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41035358, endtime: 41035358, seqnum: 0, connid: 0 98 13:08:20,9235500 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55925 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41035361, endtime: 41035361, seqnum: 0, connid: 0 98 13:08:20,9384085 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55925 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41035362, endtime: 41035362, seqnum: 0, connid: 0 98 13:08:20,9534042 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55925 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41035364, endtime: 41035364, seqnum: 0, connid: 0 98 13:08:20,9696965 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55925 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41035365, endtime: 41035366, seqnum: 0, connid: 0 98 13:08:20,9863667 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55925 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41035367, endtime: 41035367, seqnum: 0, connid: 0 98 13:08:21,0618725 MCLauncher.exe 6080 TCP Reconnect WIN-0UOTFKKVN1S:55994 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 0, seqnum: 0, connid: 0 98 13:08:21,0618811 MCLauncher.exe 6080 TCP Reconnect WIN-0UOTFKKVN1S:55995 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 0, seqnum: 0, connid: 0 98 13:08:22,2295255 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55992 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41035131, endtime: 41035492, seqnum: 0, connid: 0 98 13:08:22,2295435 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55992 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41035177, endtime: 41035492, seqnum: 0, connid: 0 98 13:08:22,2295507 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55992 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41035178, endtime: 41035492, seqnum: 0, connid: 0 98 13:08:22,2295582 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55992 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41035180, endtime: 41035492, seqnum: 0, connid: 0 98 13:08:22,2295640 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55992 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41035181, endtime: 41035492, seqnum: 0, connid: 0 98 13:08:22,2295709 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55992 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41035183, endtime: 41035492, seqnum: 0, connid: 0 98 13:08:22,2295762 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55992 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41035184, endtime: 41035492, seqnum: 0, connid: 0 98 13:08:22,2295828 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55992 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41035187, endtime: 41035492, seqnum: 0, connid: 0 98 13:08:22,2295884 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55992 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41035189, endtime: 41035492, seqnum: 0, connid: 0 98 13:08:22,2296158 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55992 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41035191, endtime: 41035492, seqnum: 0, connid: 0 98 13:08:22,2296216 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55992 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41035192, endtime: 41035492, seqnum: 0, connid: 0 98 13:08:22,2296283 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55992 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41035194, endtime: 41035492, seqnum: 0, connid: 0 98 13:08:22,2296338 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55992 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41035195, endtime: 41035492, seqnum: 0, connid: 0 98 13:08:22,6765598 MCLauncher.exe 6080 TCP TCPCopy WIN-0UOTFKKVN1S:54920 -> sheltex.company:8000 SUCCESS Length: 2, seqnum: 0, connid: 0 98 13:08:22,6765717 MCLauncher.exe 6080 TCP Receive WIN-0UOTFKKVN1S:54920 -> sheltex.company:8000 SUCCESS Length: 2, seqnum: 0, connid: 0 98 13:08:22,6769048 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54920 -> sheltex.company:8000 SUCCESS Length: 2, startime: 41035536, endtime: 41035536, seqnum: 0, connid: 0 98 13:08:23,7584343 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55915 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41035251, endtime: 41035644, seqnum: 0, connid: 0 98 13:08:23,7584507 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55915 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41035253, endtime: 41035644, seqnum: 0, connid: 0 98 13:08:23,7584590 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55915 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41035255, endtime: 41035644, seqnum: 0, connid: 0 98 13:08:23,7584654 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55915 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41035256, endtime: 41035644, seqnum: 0, connid: 0 98 13:08:23,7584720 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55915 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41035259, endtime: 41035644, seqnum: 0, connid: 0 98 13:08:23,7584775 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55915 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41035261, endtime: 41035644, seqnum: 0, connid: 0 98 13:08:23,7584842 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55915 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41035262, endtime: 41035644, seqnum: 0, connid: 0 98 13:08:23,7584897 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55915 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41035266, endtime: 41035644, seqnum: 0, connid: 0 98 13:08:23,7584967 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55915 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41035267, endtime: 41035644, seqnum: 0, connid: 0 98 13:08:23,7585753 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55915 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41035269, endtime: 41035644, seqnum: 0, connid: 0 98 13:08:23,7585834 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55915 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41035270, endtime: 41035644, seqnum: 0, connid: 0 98 13:08:23,7585889 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55915 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41035272, endtime: 41035644, seqnum: 0, connid: 0 98 13:08:23,7592303 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55915 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41035275, endtime: 41035645, seqnum: 0, connid: 0 98 13:08:25,1559804 MCLauncher.exe 6080 TCP Reconnect WIN-0UOTFKKVN1S:56007 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 0, seqnum: 0, connid: 0 98 13:08:25,1559892 MCLauncher.exe 6080 TCP Reconnect WIN-0UOTFKKVN1S:56008 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 0, seqnum: 0, connid: 0 98 13:08:25,1873598 MCLauncher.exe 6080 TCP Reconnect WIN-0UOTFKKVN1S:55998 -> 54.36.38.171:25565 SUCCESS Length: 0, seqnum: 0, connid: 0 98 13:08:27,2145716 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55915 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41035644, endtime: 41035990, seqnum: 0, connid: 0 98 13:08:27,2145896 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55915 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41035645, endtime: 41035990, seqnum: 0, connid: 0 98 13:08:27,2145974 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55915 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41035648, endtime: 41035990, seqnum: 0, connid: 0 98 13:08:27,2146054 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55915 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41035651, endtime: 41035990, seqnum: 0, connid: 0 98 13:08:27,2146115 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55915 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41035653, endtime: 41035990, seqnum: 0, connid: 0 98 13:08:27,2146187 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55915 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41035655, endtime: 41035990, seqnum: 0, connid: 0 98 13:08:27,2146248 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55915 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41035656, endtime: 41035990, seqnum: 0, connid: 0 98 13:08:27,2146320 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55915 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41035659, endtime: 41035990, seqnum: 0, connid: 0 98 13:08:27,2146379 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55915 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41035661, endtime: 41035990, seqnum: 0, connid: 0 98 13:08:27,2147176 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55915 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41035663, endtime: 41035990, seqnum: 0, connid: 0 98 13:08:27,2147260 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55915 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41035666, endtime: 41035990, seqnum: 0, connid: 0 98 13:08:27,2147332 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55915 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41035667, endtime: 41035990, seqnum: 0, connid: 0 98 13:08:27,2150593 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55915 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41035669, endtime: 41035990, seqnum: 0, connid: 0 98 13:08:28,5633714 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55925 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41035369, endtime: 41036125, seqnum: 0, connid: 0 98 13:08:28,5633874 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55925 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41035370, endtime: 41036125, seqnum: 0, connid: 0 98 13:08:28,5633963 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55925 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41035372, endtime: 41036125, seqnum: 0, connid: 0 98 13:08:28,5634157 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55925 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41035375, endtime: 41036125, seqnum: 0, connid: 0 98 13:08:28,5634237 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55925 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41035376, endtime: 41036125, seqnum: 0, connid: 0 98 13:08:28,5634298 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55925 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41035378, endtime: 41036125, seqnum: 0, connid: 0 98 13:08:28,5634370 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55925 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41035379, endtime: 41036125, seqnum: 0, connid: 0 98 13:08:28,5634428 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55925 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41035381, endtime: 41036125, seqnum: 0, connid: 0 98 13:08:28,5634500 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55925 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41035383, endtime: 41036125, seqnum: 0, connid: 0 98 13:08:28,5635279 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55925 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41035384, endtime: 41036125, seqnum: 0, connid: 0 98 13:08:28,5635359 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55925 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41035386, endtime: 41036125, seqnum: 0, connid: 0 98 13:08:28,5635415 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55925 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41035389, endtime: 41036125, seqnum: 0, connid: 0 98 13:08:28,5636523 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55925 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41035390, endtime: 41036125, seqnum: 0, connid: 0 98 13:08:29,3188151 MCLauncher.exe 6080 TCP Reconnect WIN-0UOTFKKVN1S:56013 -> 54.36.38.171:25565 SUCCESS Length: 0, seqnum: 0, connid: 0 98 13:08:31,1720635 MCLauncher.exe 6080 TCP Reconnect WIN-0UOTFKKVN1S:56007 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 0, seqnum: 0, connid: 0 98 13:08:31,1720721 MCLauncher.exe 6080 TCP Reconnect WIN-0UOTFKKVN1S:56008 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 0, seqnum: 0, connid: 0 98 13:08:31,4642706 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55915 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41035990, endtime: 41036415, seqnum: 0, connid: 0 98 13:08:31,4642994 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55915 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41035992, endtime: 41036415, seqnum: 0, connid: 0 98 13:08:31,4643111 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55915 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41035994, endtime: 41036415, seqnum: 0, connid: 0 98 13:08:31,4643194 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55915 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41035995, endtime: 41036415, seqnum: 0, connid: 0 98 13:08:31,4643258 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55915 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41035997, endtime: 41036415, seqnum: 0, connid: 0 98 13:08:31,4643332 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55915 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41035998, endtime: 41036415, seqnum: 0, connid: 0 98 13:08:31,4643393 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55915 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41036000, endtime: 41036415, seqnum: 0, connid: 0 98 13:08:31,4643468 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55915 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41036003, endtime: 41036415, seqnum: 0, connid: 0 98 13:08:31,4643529 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55915 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41036005, endtime: 41036415, seqnum: 0, connid: 0 98 13:08:31,4644344 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55915 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41036006, endtime: 41036415, seqnum: 0, connid: 0 98 13:08:31,4644416 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55915 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41036008, endtime: 41036415, seqnum: 0, connid: 0 98 13:08:31,4644485 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55915 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41036009, endtime: 41036415, seqnum: 0, connid: 0 98 13:08:31,4645250 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55915 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41036011, endtime: 41036415, seqnum: 0, connid: 0 98 13:08:32,7948464 MCLauncher.exe 6080 TCP TCPCopy WIN-0UOTFKKVN1S:54920 -> sheltex.company:8000 SUCCESS Length: 2, seqnum: 0, connid: 0 98 13:08:32,7948636 MCLauncher.exe 6080 TCP Receive WIN-0UOTFKKVN1S:54920 -> sheltex.company:8000 SUCCESS Length: 2, seqnum: 0, connid: 0 98 13:08:32,7952335 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54920 -> sheltex.company:8000 SUCCESS Length: 2, startime: 41036548, endtime: 41036548, seqnum: 0, connid: 0 98 13:08:34,1747648 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55925 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41036125, endtime: 41036686, seqnum: 0, connid: 0 98 13:08:34,1747828 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55925 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41036126, endtime: 41036686, seqnum: 0, connid: 0 98 13:08:34,1747900 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55925 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41036128, endtime: 41036686, seqnum: 0, connid: 0 98 13:08:34,1747972 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55925 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41036130, endtime: 41036686, seqnum: 0, connid: 0 98 13:08:34,1748030 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55925 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41036131, endtime: 41036686, seqnum: 0, connid: 0 98 13:08:34,1748094 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55925 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41036133, endtime: 41036686, seqnum: 0, connid: 0 98 13:08:34,1748149 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55925 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41036134, endtime: 41036686, seqnum: 0, connid: 0 98 13:08:34,1748216 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55925 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41036136, endtime: 41036686, seqnum: 0, connid: 0 98 13:08:34,1748271 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55925 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41036137, endtime: 41036686, seqnum: 0, connid: 0 98 13:08:34,1748573 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55925 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41036139, endtime: 41036686, seqnum: 0, connid: 0 98 13:08:34,1748631 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55925 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41036141, endtime: 41036686, seqnum: 0, connid: 0 98 13:08:34,1748698 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55925 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41036142, endtime: 41036686, seqnum: 0, connid: 0 98 13:08:34,1748753 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55925 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41036144, endtime: 41036686, seqnum: 0, connid: 0 98 13:08:35,2974579 MCLauncher.exe 6080 TCP Reconnect WIN-0UOTFKKVN1S:56017 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 0, seqnum: 0, connid: 0 98 13:08:35,2974660 MCLauncher.exe 6080 TCP Reconnect WIN-0UOTFKKVN1S:56018 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 0, seqnum: 0, connid: 0 98 13:08:35,3276116 MCLauncher.exe 6080 TCP Reconnect WIN-0UOTFKKVN1S:56013 -> 54.36.38.171:25565 SUCCESS Length: 0, seqnum: 0, connid: 0 98 13:08:35,4582776 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55992 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41035492, endtime: 41036814, seqnum: 0, connid: 0 98 13:08:35,4582942 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55992 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41035494, endtime: 41036814, seqnum: 0, connid: 0 98 13:08:35,4583034 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55992 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41035497, endtime: 41036814, seqnum: 0, connid: 0 98 13:08:35,4583267 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55992 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41035500, endtime: 41036814, seqnum: 0, connid: 0 98 13:08:35,4583397 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55992 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41035503, endtime: 41036814, seqnum: 0, connid: 0 98 13:08:35,4583502 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55992 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41035506, endtime: 41036814, seqnum: 0, connid: 0 98 13:08:35,4583624 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55992 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41035510, endtime: 41036814, seqnum: 0, connid: 0 98 13:08:35,4583721 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55992 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41035513, endtime: 41036814, seqnum: 0, connid: 0 98 13:08:35,4583799 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55992 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41035514, endtime: 41036814, seqnum: 0, connid: 0 98 13:08:35,4584563 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55992 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41035517, endtime: 41036814, seqnum: 0, connid: 0 98 13:08:35,4584657 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55992 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41035519, endtime: 41036814, seqnum: 0, connid: 0 98 13:08:35,4584718 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55992 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41035520, endtime: 41036814, seqnum: 0, connid: 0 98 13:08:35,4585680 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55992 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41035522, endtime: 41036814, seqnum: 0, connid: 0 98 13:08:35,5628890 MCLauncher.exe 6080 TCP Reconnect WIN-0UOTFKKVN1S:56019 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 0, seqnum: 0, connid: 0 98 13:08:36,5389278 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55915 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41036415, endtime: 41036923, seqnum: 0, connid: 0 98 13:08:36,5389497 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55915 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41036417, endtime: 41036923, seqnum: 0, connid: 0 98 13:08:36,5389599 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55915 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41036420, endtime: 41036923, seqnum: 0, connid: 0 98 13:08:36,5389666 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55915 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41036422, endtime: 41036923, seqnum: 0, connid: 0 98 13:08:36,5389743 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55915 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41036423, endtime: 41036923, seqnum: 0, connid: 0 98 13:08:36,5389804 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55915 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41036425, endtime: 41036923, seqnum: 0, connid: 0 98 13:08:36,5389879 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55915 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41036428, endtime: 41036923, seqnum: 0, connid: 0 98 13:08:36,5389937 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55915 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41036429, endtime: 41036923, seqnum: 0, connid: 0 98 13:08:36,5390009 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55915 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41036431, endtime: 41036923, seqnum: 0, connid: 0 98 13:08:36,5390702 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55915 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41036433, endtime: 41036923, seqnum: 0, connid: 0 98 13:08:36,5390788 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55915 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41036436, endtime: 41036923, seqnum: 0, connid: 0 98 13:08:36,5390843 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55915 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41036437, endtime: 41036923, seqnum: 0, connid: 0 98 13:08:37,0972916 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55915 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41036440, endtime: 41036978, seqnum: 0, connid: 0 98 13:08:38,9722662 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55925 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41036686, endtime: 41037166, seqnum: 0, connid: 0 98 13:08:38,9722853 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55925 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41036687, endtime: 41037166, seqnum: 0, connid: 0 98 13:08:38,9722936 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55925 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41036689, endtime: 41037166, seqnum: 0, connid: 0 98 13:08:38,9723016 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55925 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41036690, endtime: 41037166, seqnum: 0, connid: 0 98 13:08:38,9723080 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55925 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41036692, endtime: 41037166, seqnum: 0, connid: 0 98 13:08:38,9723149 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55925 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41036694, endtime: 41037166, seqnum: 0, connid: 0 98 13:08:38,9723210 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55925 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41036697, endtime: 41037166, seqnum: 0, connid: 0 98 13:08:38,9723280 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55925 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41036698, endtime: 41037166, seqnum: 0, connid: 0 98 13:08:38,9723341 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55925 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41036700, endtime: 41037166, seqnum: 0, connid: 0 98 13:08:38,9724094 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55925 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41036701, endtime: 41037166, seqnum: 0, connid: 0 98 13:08:38,9724172 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55925 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41036703, endtime: 41037166, seqnum: 0, connid: 0 98 13:08:38,9724244 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55925 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41036705, endtime: 41037166, seqnum: 0, connid: 0 98 13:08:38,9725252 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55925 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41036706, endtime: 41037166, seqnum: 0, connid: 0 98 13:08:39,4213172 MCLauncher.exe 6080 TCP Reconnect WIN-0UOTFKKVN1S:56025 -> 54.36.38.171:25565 SUCCESS Length: 0, seqnum: 0, connid: 0 98 13:08:40,5444166 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55915 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41036923, endtime: 41037323, seqnum: 0, connid: 0 98 13:08:40,5444296 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55915 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41036923, endtime: 41037323, seqnum: 0, connid: 0 98 13:08:40,5444368 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55915 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41036925, endtime: 41037323, seqnum: 0, connid: 0 98 13:08:40,5444440 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55915 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41036926, endtime: 41037323, seqnum: 0, connid: 0 98 13:08:40,5444498 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55915 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41036928, endtime: 41037323, seqnum: 0, connid: 0 98 13:08:40,5444565 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55915 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41036930, endtime: 41037323, seqnum: 0, connid: 0 98 13:08:40,5444620 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55915 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41036931, endtime: 41037323, seqnum: 0, connid: 0 98 13:08:40,5444686 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55915 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41036933, endtime: 41037323, seqnum: 0, connid: 0 98 13:08:40,5444742 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55915 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41036934, endtime: 41037323, seqnum: 0, connid: 0 98 13:08:40,5445019 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55915 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41036936, endtime: 41037323, seqnum: 0, connid: 0 98 13:08:40,5445077 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55915 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41036937, endtime: 41037323, seqnum: 0, connid: 0 98 13:08:40,5445144 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55915 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41036940, endtime: 41037323, seqnum: 0, connid: 0 98 13:08:40,5445199 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55915 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41036978, endtime: 41037323, seqnum: 0, connid: 0 98 13:08:41,3271969 MCLauncher.exe 6080 TCP Reconnect WIN-0UOTFKKVN1S:56017 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 0, seqnum: 0, connid: 0 98 13:08:41,3272052 MCLauncher.exe 6080 TCP Reconnect WIN-0UOTFKKVN1S:56018 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 0, seqnum: 0, connid: 0 98 13:08:41,5623881 MCLauncher.exe 6080 TCP Reconnect WIN-0UOTFKKVN1S:56019 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 0, seqnum: 0, connid: 0 98 13:08:42,4827572 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55925 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41037166, endtime: 41037517, seqnum: 0, connid: 0 98 13:08:42,4827746 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55925 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41037167, endtime: 41037517, seqnum: 0, connid: 0 98 13:08:42,4827824 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55925 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41037170, endtime: 41037517, seqnum: 0, connid: 0 98 13:08:42,4827902 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55925 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41037172, endtime: 41037517, seqnum: 0, connid: 0 98 13:08:42,4827965 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55925 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41037173, endtime: 41037517, seqnum: 0, connid: 0 98 13:08:42,4828037 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55925 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41037174, endtime: 41037517, seqnum: 0, connid: 0 98 13:08:42,4828098 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55925 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41037176, endtime: 41037517, seqnum: 0, connid: 0 98 13:08:42,4828168 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55925 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41037178, endtime: 41037517, seqnum: 0, connid: 0 98 13:08:42,4828223 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55925 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41037180, endtime: 41037517, seqnum: 0, connid: 0 98 13:08:42,4829004 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55925 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41037183, endtime: 41037517, seqnum: 0, connid: 0 98 13:08:42,4829079 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55925 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41037184, endtime: 41037517, seqnum: 0, connid: 0 98 13:08:42,4829151 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55925 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41037186, endtime: 41037517, seqnum: 0, connid: 0 98 13:08:42,4831428 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55925 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41037188, endtime: 41037517, seqnum: 0, connid: 0 98 13:08:42,9095526 MCLauncher.exe 6080 TCP TCPCopy WIN-0UOTFKKVN1S:54920 -> sheltex.company:8000 SUCCESS Length: 2, seqnum: 0, connid: 0 98 13:08:42,9095640 MCLauncher.exe 6080 TCP Receive WIN-0UOTFKKVN1S:54920 -> sheltex.company:8000 SUCCESS Length: 2, seqnum: 0, connid: 0 98 13:08:42,9099496 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54920 -> sheltex.company:8000 SUCCESS Length: 2, startime: 41037560, endtime: 41037560, seqnum: 0, connid: 0 98 13:08:42,9130363 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55915 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41037323, endtime: 41037560, seqnum: 0, connid: 0 98 13:08:42,9130485 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55915 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41037326, endtime: 41037560, seqnum: 0, connid: 0 98 13:08:42,9130560 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55915 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41037328, endtime: 41037560, seqnum: 0, connid: 0 98 13:08:42,9130632 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55915 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41037330, endtime: 41037560, seqnum: 0, connid: 0 98 13:08:42,9130690 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55915 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41037331, endtime: 41037560, seqnum: 0, connid: 0 98 13:08:42,9130756 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55915 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41037333, endtime: 41037560, seqnum: 0, connid: 0 98 13:08:42,9130809 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55915 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41037334, endtime: 41037560, seqnum: 0, connid: 0 98 13:08:42,9130876 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55915 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41037336, endtime: 41037560, seqnum: 0, connid: 0 98 13:08:42,9130931 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55915 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41037337, endtime: 41037560, seqnum: 0, connid: 0 98 13:08:42,9131640 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55915 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41037339, endtime: 41037560, seqnum: 0, connid: 0 98 13:08:42,9131710 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55915 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41037341, endtime: 41037560, seqnum: 0, connid: 0 98 13:08:42,9131776 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55915 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41037342, endtime: 41037560, seqnum: 0, connid: 0 98 13:08:42,9132616 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55915 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41037344, endtime: 41037560, seqnum: 0, connid: 0 98 13:08:45,4367218 MCLauncher.exe 6080 TCP Reconnect WIN-0UOTFKKVN1S:56035 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 0, seqnum: 0, connid: 0 98 13:08:45,4367304 MCLauncher.exe 6080 TCP Reconnect WIN-0UOTFKKVN1S:56036 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 0, seqnum: 0, connid: 0 98 13:08:45,4367329 MCLauncher.exe 6080 TCP Reconnect WIN-0UOTFKKVN1S:56025 -> 54.36.38.171:25565 SUCCESS Length: 0, seqnum: 0, connid: 0 98 13:08:45,7335710 MCLauncher.exe 6080 TCP Reconnect WIN-0UOTFKKVN1S:56037 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 0, seqnum: 0, connid: 0 98 13:08:47,3098479 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55925 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41037517, endtime: 41038000, seqnum: 0, connid: 0 98 13:08:47,3098665 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55925 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41037519, endtime: 41038000, seqnum: 0, connid: 0 98 13:08:47,3098745 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55925 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41037520, endtime: 41038000, seqnum: 0, connid: 0 98 13:08:47,3098825 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55925 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41037522, endtime: 41038000, seqnum: 0, connid: 0 98 13:08:47,3098889 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55925 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41037523, endtime: 41038000, seqnum: 0, connid: 0 98 13:08:47,3098964 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55925 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41037525, endtime: 41038000, seqnum: 0, connid: 0 98 13:08:47,3099025 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55925 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41037526, endtime: 41038000, seqnum: 0, connid: 0 98 13:08:47,3099100 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55925 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41037528, endtime: 41038000, seqnum: 0, connid: 0 98 13:08:47,3099160 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55925 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41037531, endtime: 41038000, seqnum: 0, connid: 0 98 13:08:47,3099961 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55925 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41037533, endtime: 41038000, seqnum: 0, connid: 0 98 13:08:47,3100044 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55925 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41037534, endtime: 41038000, seqnum: 0, connid: 0 98 13:08:47,3120519 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55925 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41037536, endtime: 41038000, seqnum: 0, connid: 0 98 13:08:47,3120627 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55925 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41037539, endtime: 41038000, seqnum: 0, connid: 0 98 13:08:49,3678828 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55915 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41037560, endtime: 41038205, seqnum: 0, connid: 0 98 13:08:49,3678994 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55915 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41037561, endtime: 41038205, seqnum: 0, connid: 0 98 13:08:49,3679080 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55915 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41037564, endtime: 41038205, seqnum: 0, connid: 0 98 13:08:49,3679147 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55915 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41037566, endtime: 41038205, seqnum: 0, connid: 0 98 13:08:49,3679219 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55915 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41037567, endtime: 41038205, seqnum: 0, connid: 0 98 13:08:49,3679277 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55915 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41037569, endtime: 41038205, seqnum: 0, connid: 0 98 13:08:49,3679346 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55915 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41037570, endtime: 41038205, seqnum: 0, connid: 0 98 13:08:49,3679402 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55915 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41037572, endtime: 41038205, seqnum: 0, connid: 0 98 13:08:49,3679468 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55915 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41037575, endtime: 41038205, seqnum: 0, connid: 0 98 13:08:49,3680139 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55915 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41037576, endtime: 41038205, seqnum: 0, connid: 0 98 13:08:49,3680225 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55915 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41037579, endtime: 41038205, seqnum: 0, connid: 0 98 13:08:49,3680280 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55915 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41037580, endtime: 41038205, seqnum: 0, connid: 0 98 13:08:49,4530318 MCLauncher.exe 6080 TCP Disconnect WIN-0UOTFKKVN1S:55915 -> 54.36.38.171:25565 SUCCESS Length: 0, seqnum: 0, connid: 0 98 13:08:49,5310137 MCLauncher.exe 6080 TCP Reconnect WIN-0UOTFKKVN1S:56039 -> 54.36.38.171:25565 SUCCESS Length: 0, seqnum: 0, connid: 0 98 13:08:49,5463072 MCLauncher.exe 6080 TCP Connect WIN-0UOTFKKVN1S:56041 -> 54.36.38.171:25565 SUCCESS Length: 0, mss: 1460, sackopt: 0, tsopt: 0, wsopt: 0, rcvwin: 64240, rcvwinscale: 0, sndwinscale: 0, seqnum: 0, connid: 0 98 13:08:49,5469001 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56041 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41038223, endtime: 41038223, seqnum: 0, connid: 0 98 13:08:49,5632539 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56041 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41038225, endtime: 41038225, seqnum: 0, connid: 0 98 13:08:49,5917563 MCLauncher.exe 6080 TCP Connect WIN-0UOTFKKVN1S:56039 -> 54.36.38.171:25565 SUCCESS Length: 0, mss: 1460, sackopt: 0, tsopt: 0, wsopt: 0, rcvwin: 64240, rcvwinscale: 0, sndwinscale: 0, seqnum: 0, connid: 0 98 13:08:49,5921001 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56039 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41038228, endtime: 41038228, seqnum: 0, connid: 0 98 13:08:49,5941556 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56041 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41038228, endtime: 41038228, seqnum: 0, connid: 0 98 13:08:49,6113320 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56041 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41038230, endtime: 41038230, seqnum: 0, connid: 0 98 13:08:49,6114605 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56039 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41038230, endtime: 41038230, seqnum: 0, connid: 0 98 13:08:49,6253757 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56039 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41038231, endtime: 41038231, seqnum: 0, connid: 0 98 13:08:49,6254422 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56041 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41038231, endtime: 41038231, seqnum: 0, connid: 0 98 13:08:49,6411471 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56041 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41038233, endtime: 41038233, seqnum: 0, connid: 0 98 13:08:49,6412754 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56039 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41038233, endtime: 41038233, seqnum: 0, connid: 0 98 13:08:49,6565483 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56039 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41038234, endtime: 41038234, seqnum: 0, connid: 0 98 13:08:49,6566110 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56041 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41038234, endtime: 41038234, seqnum: 0, connid: 0 98 13:08:49,6724785 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56041 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41038236, endtime: 41038236, seqnum: 0, connid: 0 98 13:08:49,6726010 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56039 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41038236, endtime: 41038236, seqnum: 0, connid: 0 98 13:08:49,6879050 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56039 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41038237, endtime: 41038237, seqnum: 0, connid: 0 98 13:08:49,6880585 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56041 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41038237, endtime: 41038237, seqnum: 0, connid: 0 98 13:08:49,7110962 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56041 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41038239, endtime: 41038240, seqnum: 0, connid: 0 98 13:08:49,7112342 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56039 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41038239, endtime: 41038240, seqnum: 0, connid: 0 98 13:08:49,7349200 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56039 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41038242, endtime: 41038242, seqnum: 0, connid: 0 98 13:08:49,7350610 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56041 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41038242, endtime: 41038242, seqnum: 0, connid: 0 98 13:08:49,7513772 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56041 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41038244, endtime: 41038244, seqnum: 0, connid: 0 98 13:08:49,7515035 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56039 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41038244, endtime: 41038244, seqnum: 0, connid: 0 98 13:08:49,7663216 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56039 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41038245, endtime: 41038245, seqnum: 0, connid: 0 98 13:08:49,7664573 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56041 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41038245, endtime: 41038245, seqnum: 0, connid: 0 98 13:08:49,7846302 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56041 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41038247, endtime: 41038247, seqnum: 0, connid: 0 98 13:08:49,7850519 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56039 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41038247, endtime: 41038247, seqnum: 0, connid: 0 98 13:08:49,7991272 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56039 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41038248, endtime: 41038249, seqnum: 0, connid: 0 98 13:08:49,7992164 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56041 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41038248, endtime: 41038249, seqnum: 0, connid: 0 98 13:08:49,8131091 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56041 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41038250, endtime: 41038250, seqnum: 0, connid: 0 98 13:08:49,8132479 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56039 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41038250, endtime: 41038250, seqnum: 0, connid: 0 98 13:08:49,8458325 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56039 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41038253, endtime: 41038253, seqnum: 0, connid: 0 98 13:08:49,8459400 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56041 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41038253, endtime: 41038253, seqnum: 0, connid: 0 98 13:08:49,8602796 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56041 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41038255, endtime: 41038255, seqnum: 0, connid: 0 98 13:08:49,8603397 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56039 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41038255, endtime: 41038255, seqnum: 0, connid: 0 98 13:08:49,8757562 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56039 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41038256, endtime: 41038256, seqnum: 0, connid: 0 98 13:08:49,8758474 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56041 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41038256, endtime: 41038256, seqnum: 0, connid: 0 98 13:08:49,8983318 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56041 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41038258, endtime: 41038258, seqnum: 0, connid: 0 98 13:08:49,8984404 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56039 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41038258, endtime: 41038258, seqnum: 0, connid: 0 98 13:08:49,9070558 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56039 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41038259, endtime: 41038259, seqnum: 0, connid: 0 98 13:08:49,9076146 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56041 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41038259, endtime: 41038259, seqnum: 0, connid: 0 98 13:08:49,9238362 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56041 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41038261, endtime: 41038261, seqnum: 0, connid: 0 98 13:08:49,9239482 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56039 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41038261, endtime: 41038261, seqnum: 0, connid: 0 98 13:08:49,9385643 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56039 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41038262, endtime: 41038262, seqnum: 0, connid: 0 98 13:08:49,9386898 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56041 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41038262, endtime: 41038262, seqnum: 0, connid: 0 98 13:08:49,9547668 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56041 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41038264, endtime: 41038264, seqnum: 0, connid: 0 98 13:08:49,9550397 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56039 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41038264, endtime: 41038264, seqnum: 0, connid: 0 98 13:08:49,9698899 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56039 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41038265, endtime: 41038266, seqnum: 0, connid: 0 98 13:08:49,9700461 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56041 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41038265, endtime: 41038266, seqnum: 0, connid: 0 98 13:08:49,9845475 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56041 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41038267, endtime: 41038267, seqnum: 0, connid: 0 98 13:08:49,9846290 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56039 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41038267, endtime: 41038267, seqnum: 0, connid: 0 98 13:08:50,0069145 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56039 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41038269, endtime: 41038269, seqnum: 0, connid: 0 98 13:08:50,0070423 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56041 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41038269, endtime: 41038269, seqnum: 0, connid: 0 98 13:08:50,0158116 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56041 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41038270, endtime: 41038270, seqnum: 0, connid: 0 98 13:08:50,0359212 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56041 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41038272, endtime: 41038272, seqnum: 0, connid: 0 98 13:08:50,0471600 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56041 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41038273, endtime: 41038273, seqnum: 0, connid: 0 98 13:08:50,0550810 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56041 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41038274, endtime: 41038274, seqnum: 0, connid: 0 98 13:08:50,0788100 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56041 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41038276, endtime: 41038276, seqnum: 0, connid: 0 98 13:08:50,0939550 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56041 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41038278, endtime: 41038278, seqnum: 0, connid: 0 98 13:08:50,1101146 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56041 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41038279, endtime: 41038280, seqnum: 0, connid: 0 98 13:08:50,1261786 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56041 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41038281, endtime: 41038281, seqnum: 0, connid: 0 98 13:08:50,1416070 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56041 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41038283, endtime: 41038283, seqnum: 0, connid: 0 98 13:08:50,1685366 MCLauncher.exe 6080 TCP Disconnect WIN-0UOTFKKVN1S:55992 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 0, seqnum: 0, connid: 0 98 13:08:50,1735942 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56041 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41038286, endtime: 41038286, seqnum: 0, connid: 0 98 13:08:50,1886575 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56041 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41038287, endtime: 41038287, seqnum: 0, connid: 0 98 13:08:50,2194143 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56041 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41038290, endtime: 41038291, seqnum: 0, connid: 0 98 13:08:50,2343005 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56041 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41038292, endtime: 41038292, seqnum: 0, connid: 0 98 13:08:50,2510599 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56041 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41038294, endtime: 41038294, seqnum: 0, connid: 0 98 13:08:50,2664922 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56041 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41038295, endtime: 41038295, seqnum: 0, connid: 0 98 13:08:50,2838124 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56041 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41038297, endtime: 41038297, seqnum: 0, connid: 0 98 13:08:50,3232571 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56041 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41038300, endtime: 41038301, seqnum: 0, connid: 0 98 13:08:50,8807008 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55925 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41038000, endtime: 41038357, seqnum: 0, connid: 0 98 13:08:50,8807208 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55925 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41038000, endtime: 41038357, seqnum: 0, connid: 0 98 13:08:50,8807294 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55925 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41038003, endtime: 41038357, seqnum: 0, connid: 0 98 13:08:50,8807377 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55925 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41038004, endtime: 41038357, seqnum: 0, connid: 0 98 13:08:50,8807443 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55925 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41038006, endtime: 41038357, seqnum: 0, connid: 0 98 13:08:50,8807515 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55925 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41038008, endtime: 41038357, seqnum: 0, connid: 0 98 13:08:50,8807576 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55925 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41038011, endtime: 41038357, seqnum: 0, connid: 0 98 13:08:50,8807648 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55925 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41038013, endtime: 41038357, seqnum: 0, connid: 0 98 13:08:50,8807709 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55925 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41038014, endtime: 41038357, seqnum: 0, connid: 0 98 13:08:50,8808003 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55925 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41038016, endtime: 41038357, seqnum: 0, connid: 0 98 13:08:50,8808067 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55925 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41038017, endtime: 41038357, seqnum: 0, connid: 0 98 13:08:50,8808136 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55925 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41038019, endtime: 41038357, seqnum: 0, connid: 0 98 13:08:50,8808197 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55925 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41038020, endtime: 41038357, seqnum: 0, connid: 0 98 13:08:51,4377616 MCLauncher.exe 6080 TCP Reconnect WIN-0UOTFKKVN1S:56035 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 0, seqnum: 0, connid: 0 98 13:08:51,4377699 MCLauncher.exe 6080 TCP Reconnect WIN-0UOTFKKVN1S:56036 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 0, seqnum: 0, connid: 0 98 13:08:51,4957542 MCLauncher.exe 6080 TCP Connect WIN-0UOTFKKVN1S:56036 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 0, mss: 1460, sackopt: 0, tsopt: 0, wsopt: 0, rcvwin: 64240, rcvwinscale: 0, sndwinscale: 0, seqnum: 0, connid: 0 98 13:08:51,4963365 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56036 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41038418, endtime: 41038418, seqnum: 0, connid: 0 98 13:08:51,5169099 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56036 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41038420, endtime: 41038420, seqnum: 0, connid: 0 98 13:08:51,5385247 MCLauncher.exe 6080 TCP Connect WIN-0UOTFKKVN1S:56035 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 0, mss: 1460, sackopt: 0, tsopt: 0, wsopt: 0, rcvwin: 64240, rcvwinscale: 0, sndwinscale: 0, seqnum: 0, connid: 0 98 13:08:51,5391988 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56035 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41038422, endtime: 41038423, seqnum: 0, connid: 0 98 13:08:51,5484225 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56035 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41038423, endtime: 41038423, seqnum: 0, connid: 0 98 13:08:51,5556307 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56036 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41038423, endtime: 41038424, seqnum: 0, connid: 0 98 13:08:51,5780417 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56035 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41038426, endtime: 41038426, seqnum: 0, connid: 0 98 13:08:51,5797617 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56036 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41038426, endtime: 41038427, seqnum: 0, connid: 0 98 13:08:51,5946147 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56035 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41038428, endtime: 41038428, seqnum: 0, connid: 0 98 13:08:51,5949170 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56036 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41038428, endtime: 41038428, seqnum: 0, connid: 0 98 13:08:51,6258314 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56036 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41038431, endtime: 41038431, seqnum: 0, connid: 0 98 13:08:51,6259342 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56035 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41038431, endtime: 41038431, seqnum: 0, connid: 0 98 13:08:51,6564447 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56035 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41038434, endtime: 41038434, seqnum: 0, connid: 0 98 13:08:51,6565569 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56036 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41038434, endtime: 41038434, seqnum: 0, connid: 0 98 13:08:51,6729936 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56036 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41038436, endtime: 41038436, seqnum: 0, connid: 0 98 13:08:51,6732504 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56035 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41038436, endtime: 41038436, seqnum: 0, connid: 0 98 13:08:51,6896732 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56035 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41038437, endtime: 41038438, seqnum: 0, connid: 0 98 13:08:51,6898258 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56036 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41038437, endtime: 41038438, seqnum: 0, connid: 0 98 13:08:51,7199892 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56036 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41038441, endtime: 41038441, seqnum: 0, connid: 0 98 13:08:51,7200748 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56035 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41038441, endtime: 41038441, seqnum: 0, connid: 0 98 13:08:51,7345435 MCLauncher.exe 6080 TCP Reconnect WIN-0UOTFKKVN1S:56037 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 0, seqnum: 0, connid: 0 98 13:08:51,7376294 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56035 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41038442, endtime: 41038442, seqnum: 0, connid: 0 98 13:08:51,7377867 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56036 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41038442, endtime: 41038442, seqnum: 0, connid: 0 98 13:08:51,7785079 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56036 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41038445, endtime: 41038446, seqnum: 0, connid: 0 98 13:08:51,7786278 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56035 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41038445, endtime: 41038446, seqnum: 0, connid: 0 98 13:08:51,7976220 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56035 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41038448, endtime: 41038448, seqnum: 0, connid: 0 98 13:08:51,7977486 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56036 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41038448, endtime: 41038448, seqnum: 0, connid: 0 98 13:08:51,8125024 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56036 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41038450, endtime: 41038450, seqnum: 0, connid: 0 98 13:08:51,8126672 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56035 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41038450, endtime: 41038450, seqnum: 0, connid: 0 98 13:08:51,8168231 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56041 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41038303, endtime: 41038450, seqnum: 0, connid: 0 98 13:08:51,8168408 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56041 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41038305, endtime: 41038450, seqnum: 0, connid: 0 98 13:08:51,8168483 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56041 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41038308, endtime: 41038450, seqnum: 0, connid: 0 98 13:08:51,8168555 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56041 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41038309, endtime: 41038450, seqnum: 0, connid: 0 98 13:08:51,8168613 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56041 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41038311, endtime: 41038450, seqnum: 0, connid: 0 98 13:08:51,8168682 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56041 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41038312, endtime: 41038450, seqnum: 0, connid: 0 98 13:08:51,8168738 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56041 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41038314, endtime: 41038450, seqnum: 0, connid: 0 98 13:08:51,8168810 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56041 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41038315, endtime: 41038450, seqnum: 0, connid: 0 98 13:08:51,8168865 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56041 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41038317, endtime: 41038450, seqnum: 0, connid: 0 98 13:08:51,8169161 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56041 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41038319, endtime: 41038450, seqnum: 0, connid: 0 98 13:08:51,8169220 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56041 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41038322, endtime: 41038450, seqnum: 0, connid: 0 98 13:08:51,8169286 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56041 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41038325, endtime: 41038450, seqnum: 0, connid: 0 98 13:08:51,8169342 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56041 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41038326, endtime: 41038450, seqnum: 0, connid: 0 98 13:08:51,8291609 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56035 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41038451, endtime: 41038452, seqnum: 0, connid: 0 98 13:08:51,8292701 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56036 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41038451, endtime: 41038452, seqnum: 0, connid: 0 98 13:08:51,8449517 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56036 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41038453, endtime: 41038453, seqnum: 0, connid: 0 98 13:08:51,8450855 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56035 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41038453, endtime: 41038453, seqnum: 0, connid: 0 98 13:08:51,8765278 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56035 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41038456, endtime: 41038456, seqnum: 0, connid: 0 98 13:08:51,8766447 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56036 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41038456, endtime: 41038456, seqnum: 0, connid: 0 98 13:08:51,8907898 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56036 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41038458, endtime: 41038458, seqnum: 0, connid: 0 98 13:08:51,8909480 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56035 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41038458, endtime: 41038458, seqnum: 0, connid: 0 98 13:08:51,9074218 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56035 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41038459, endtime: 41038459, seqnum: 0, connid: 0 98 13:08:51,9075243 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56036 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41038459, endtime: 41038459, seqnum: 0, connid: 0 98 13:08:51,9392743 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56036 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41038462, endtime: 41038463, seqnum: 0, connid: 0 98 13:08:51,9393910 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56035 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41038462, endtime: 41038463, seqnum: 0, connid: 0 98 13:08:51,9542927 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56035 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41038464, endtime: 41038464, seqnum: 0, connid: 0 98 13:08:51,9546601 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56036 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41038464, endtime: 41038464, seqnum: 0, connid: 0 98 13:08:51,9932557 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56036 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41038467, endtime: 41038468, seqnum: 0, connid: 0 98 13:08:51,9933754 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56035 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41038467, endtime: 41038468, seqnum: 0, connid: 0 98 13:08:52,0021519 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56035 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41038469, endtime: 41038469, seqnum: 0, connid: 0 98 13:08:52,0022581 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56036 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41038469, endtime: 41038469, seqnum: 0, connid: 0 98 13:08:52,0343913 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56036 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41038472, endtime: 41038472, seqnum: 0, connid: 0 98 13:08:52,0348160 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56035 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41038472, endtime: 41038472, seqnum: 0, connid: 0 98 13:08:52,0657704 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56035 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41038475, endtime: 41038475, seqnum: 0, connid: 0 98 13:08:52,0658748 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56036 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41038475, endtime: 41038475, seqnum: 0, connid: 0 98 13:08:52,0738554 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56035 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41038476, endtime: 41038476, seqnum: 0, connid: 0 98 13:08:52,6314978 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56041 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41038450, endtime: 41038532, seqnum: 0, connid: 0 98 13:08:53,1831892 MCLauncher.exe 6080 TCP TCPCopy WIN-0UOTFKKVN1S:54920 -> sheltex.company:8000 SUCCESS Length: 2, seqnum: 0, connid: 0 98 13:08:53,1832034 MCLauncher.exe 6080 TCP Receive WIN-0UOTFKKVN1S:54920 -> sheltex.company:8000 SUCCESS Length: 2, seqnum: 0, connid: 0 98 13:08:53,1835455 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54920 -> sheltex.company:8000 SUCCESS Length: 2, startime: 41038587, endtime: 41038587, seqnum: 0, connid: 0 98 13:08:54,6862670 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56041 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41038451, endtime: 41038737, seqnum: 0, connid: 0 98 13:08:54,6862845 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56041 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41038453, endtime: 41038737, seqnum: 0, connid: 0 98 13:08:54,6862936 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56041 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41038456, endtime: 41038737, seqnum: 0, connid: 0 98 13:08:54,6863006 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56041 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41038458, endtime: 41038737, seqnum: 0, connid: 0 98 13:08:54,6863083 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56041 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41038459, endtime: 41038737, seqnum: 0, connid: 0 98 13:08:54,6863147 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56041 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41038463, endtime: 41038737, seqnum: 0, connid: 0 98 13:08:54,6863222 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56041 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41038464, endtime: 41038737, seqnum: 0, connid: 0 98 13:08:54,6863283 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56041 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41038468, endtime: 41038737, seqnum: 0, connid: 0 98 13:08:54,6863355 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56041 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41038469, endtime: 41038737, seqnum: 0, connid: 0 98 13:08:54,6864103 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56041 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41038472, endtime: 41038737, seqnum: 0, connid: 0 98 13:08:54,6864194 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56041 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41038475, endtime: 41038737, seqnum: 0, connid: 0 98 13:08:54,6864258 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56041 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41038476, endtime: 41038737, seqnum: 0, connid: 0 98 13:08:54,6868968 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56041 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41038532, endtime: 41038737, seqnum: 0, connid: 0 98 13:08:55,6598506 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55925 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41038357, endtime: 41038835, seqnum: 0, connid: 0 98 13:08:55,6598678 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55925 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41038358, endtime: 41038835, seqnum: 0, connid: 0 98 13:08:55,6598750 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55925 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41038359, endtime: 41038835, seqnum: 0, connid: 0 98 13:08:55,6598824 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55925 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41038361, endtime: 41038835, seqnum: 0, connid: 0 98 13:08:55,6598883 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55925 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41038362, endtime: 41038835, seqnum: 0, connid: 0 98 13:08:55,6598952 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55925 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41038364, endtime: 41038835, seqnum: 0, connid: 0 98 13:08:55,6599007 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55925 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41038365, endtime: 41038835, seqnum: 0, connid: 0 98 13:08:55,6599074 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55925 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41038367, endtime: 41038835, seqnum: 0, connid: 0 98 13:08:55,6599126 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55925 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41038369, endtime: 41038835, seqnum: 0, connid: 0 98 13:08:55,6599412 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55925 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41038370, endtime: 41038835, seqnum: 0, connid: 0 98 13:08:55,6599470 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55925 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41038373, endtime: 41038835, seqnum: 0, connid: 0 98 13:08:55,6599536 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55925 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41038374, endtime: 41038835, seqnum: 0, connid: 0 98 13:08:55,6599592 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55925 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41038376, endtime: 41038835, seqnum: 0, connid: 0 98 13:08:55,8433412 MCLauncher.exe 6080 TCP Reconnect WIN-0UOTFKKVN1S:56044 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 0, seqnum: 0, connid: 0 98 13:08:58,8948492 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56041 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41038737, endtime: 41039158, seqnum: 0, connid: 0 98 13:08:58,8948742 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56041 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41038739, endtime: 41039158, seqnum: 0, connid: 0 98 13:08:58,8948830 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56041 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41038740, endtime: 41039158, seqnum: 0, connid: 0 98 13:08:58,8948922 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56041 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41038742, endtime: 41039158, seqnum: 0, connid: 0 98 13:08:58,8948991 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56041 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41038745, endtime: 41039158, seqnum: 0, connid: 0 98 13:08:58,8949069 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56041 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41038747, endtime: 41039158, seqnum: 0, connid: 0 98 13:08:58,8949135 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56041 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41038749, endtime: 41039158, seqnum: 0, connid: 0 98 13:08:58,8949213 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56041 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41038750, endtime: 41039158, seqnum: 0, connid: 0 98 13:08:58,8949274 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56041 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41038751, endtime: 41039158, seqnum: 0, connid: 0 98 13:08:58,8949933 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56041 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41038753, endtime: 41039158, seqnum: 0, connid: 0 98 13:08:58,8950011 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56041 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41038755, endtime: 41039158, seqnum: 0, connid: 0 98 13:08:58,8950083 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56041 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41038756, endtime: 41039158, seqnum: 0, connid: 0 98 13:08:59,1179223 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56041 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41038758, endtime: 41039180, seqnum: 0, connid: 0 98 13:08:59,2008092 MCLauncher.exe 6080 TCP Disconnect WIN-0UOTFKKVN1S:56039 -> 54.36.38.171:25565 SUCCESS Length: 0, seqnum: 0, connid: 0 98 13:08:59,9564394 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55925 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41038835, endtime: 41039264, seqnum: 0, connid: 0 98 13:08:59,9564587 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55925 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41038837, endtime: 41039264, seqnum: 0, connid: 0 98 13:08:59,9564668 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55925 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41038839, endtime: 41039264, seqnum: 0, connid: 0 98 13:08:59,9564748 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55925 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41038840, endtime: 41039264, seqnum: 0, connid: 0 98 13:08:59,9564812 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55925 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41038842, endtime: 41039264, seqnum: 0, connid: 0 98 13:08:59,9565006 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55925 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41038846, endtime: 41039264, seqnum: 0, connid: 0 98 13:08:59,9565097 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55925 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41038847, endtime: 41039264, seqnum: 0, connid: 0 98 13:08:59,9565175 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55925 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41038849, endtime: 41039264, seqnum: 0, connid: 0 98 13:08:59,9565239 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55925 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41038852, endtime: 41039264, seqnum: 0, connid: 0 98 13:08:59,9565582 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55925 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41038853, endtime: 41039264, seqnum: 0, connid: 0 98 13:08:59,9565643 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55925 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41038855, endtime: 41039264, seqnum: 0, connid: 0 98 13:08:59,9565712 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55925 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41038856, endtime: 41039264, seqnum: 0, connid: 0 98 13:08:59,9565771 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55925 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41038858, endtime: 41039264, seqnum: 0, connid: 0 98 13:09:01,0979973 MCLauncher.exe 6080 TCP Disconnect WIN-0UOTFKKVN1S:56036 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 0, seqnum: 0, connid: 0 98 13:09:01,1401295 MCLauncher.exe 6080 TCP Disconnect WIN-0UOTFKKVN1S:56035 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 0, seqnum: 0, connid: 0 98 13:09:01,8436512 MCLauncher.exe 6080 TCP Reconnect WIN-0UOTFKKVN1S:56044 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 0, seqnum: 0, connid: 0 98 13:09:02,2027394 MCLauncher.exe 6080 TCP Reconnect WIN-0UOTFKKVN1S:56049 -> 54.36.38.171:25565 SUCCESS Length: 0, seqnum: 0, connid: 0 98 13:09:03,2277157 MCLauncher.exe 6080 TCP TCPCopy WIN-0UOTFKKVN1S:54920 -> sheltex.company:8000 SUCCESS Length: 2, seqnum: 0, connid: 0 98 13:09:03,2277282 MCLauncher.exe 6080 TCP Receive WIN-0UOTFKKVN1S:54920 -> sheltex.company:8000 SUCCESS Length: 2, seqnum: 0, connid: 0 98 13:09:03,2281222 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54920 -> sheltex.company:8000 SUCCESS Length: 2, startime: 41039591, endtime: 41039591, seqnum: 0, connid: 0 98 13:09:03,6927906 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56041 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41039158, endtime: 41039638, seqnum: 0, connid: 0 98 13:09:03,6928094 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56041 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41039159, endtime: 41039638, seqnum: 0, connid: 0 98 13:09:03,6928286 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56041 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41039161, endtime: 41039638, seqnum: 0, connid: 0 98 13:09:03,6928369 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56041 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41039164, endtime: 41039638, seqnum: 0, connid: 0 98 13:09:03,6928446 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56041 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41039168, endtime: 41039638, seqnum: 0, connid: 0 98 13:09:03,6928510 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56041 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41039170, endtime: 41039638, seqnum: 0, connid: 0 98 13:09:03,6928582 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56041 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41039175, endtime: 41039638, seqnum: 0, connid: 0 98 13:09:03,6928643 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56041 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41039178, endtime: 41039638, seqnum: 0, connid: 0 98 13:09:03,6928718 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56041 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41039179, endtime: 41039638, seqnum: 0, connid: 0 98 13:09:03,6929463 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56041 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41039181, endtime: 41039638, seqnum: 0, connid: 0 98 13:09:03,6959424 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56041 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41039183, endtime: 41039638, seqnum: 0, connid: 0 98 13:09:03,6959540 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56041 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41039185, endtime: 41039638, seqnum: 0, connid: 0 98 13:09:03,6969024 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56041 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41039187, endtime: 41039638, seqnum: 0, connid: 0 98 13:09:04,1242760 MCLauncher.exe 6080 TCP Reconnect WIN-0UOTFKKVN1S:56051 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 0, seqnum: 0, connid: 0 98 13:09:04,1565370 MCLauncher.exe 6080 TCP Reconnect WIN-0UOTFKKVN1S:56052 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 0, seqnum: 0, connid: 0 98 13:09:05,7234953 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55925 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41039264, endtime: 41039841, seqnum: 0, connid: 0 98 13:09:05,7235139 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55925 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41039265, endtime: 41039841, seqnum: 0, connid: 0 98 13:09:05,7235214 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55925 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41039267, endtime: 41039841, seqnum: 0, connid: 0 98 13:09:05,7235291 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55925 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41039269, endtime: 41039841, seqnum: 0, connid: 0 98 13:09:05,7235347 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55925 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41039272, endtime: 41039841, seqnum: 0, connid: 0 98 13:09:05,7235416 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55925 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41039273, endtime: 41039841, seqnum: 0, connid: 0 98 13:09:05,7235474 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55925 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41039274, endtime: 41039841, seqnum: 0, connid: 0 98 13:09:05,7235541 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55925 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41039277, endtime: 41039841, seqnum: 0, connid: 0 98 13:09:05,7235596 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55925 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41039278, endtime: 41039841, seqnum: 0, connid: 0 98 13:09:05,7235887 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55925 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41039280, endtime: 41039841, seqnum: 0, connid: 0 98 13:09:05,7235945 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55925 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41039283, endtime: 41039841, seqnum: 0, connid: 0 98 13:09:05,7236015 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55925 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41039284, endtime: 41039841, seqnum: 0, connid: 0 98 13:09:05,7236070 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55925 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41039286, endtime: 41039841, seqnum: 0, connid: 0 98 13:09:05,9685874 MCLauncher.exe 6080 TCP Reconnect WIN-0UOTFKKVN1S:56054 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 0, seqnum: 0, connid: 0 98 13:09:06,0301063 MCLauncher.exe 6080 TCP Connect WIN-0UOTFKKVN1S:56054 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 0, mss: 1460, sackopt: 0, tsopt: 0, wsopt: 0, rcvwin: 64240, rcvwinscale: 0, sndwinscale: 0, seqnum: 0, connid: 0 98 13:09:06,0303981 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56054 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41039872, endtime: 41039872, seqnum: 0, connid: 0 98 13:09:06,0472229 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56054 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41039873, endtime: 41039873, seqnum: 0, connid: 0 98 13:09:06,0538725 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56054 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41039874, endtime: 41039874, seqnum: 0, connid: 0 98 13:09:06,0785122 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56054 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41039876, endtime: 41039876, seqnum: 0, connid: 0 98 13:09:06,0939079 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56054 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41039878, endtime: 41039878, seqnum: 0, connid: 0 98 13:09:06,1095477 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56054 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41039880, endtime: 41039880, seqnum: 0, connid: 0 98 13:09:06,1251537 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56054 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41039881, endtime: 41039881, seqnum: 0, connid: 0 98 13:09:06,1490681 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56054 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41039883, endtime: 41039884, seqnum: 0, connid: 0 98 13:09:06,1593150 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56054 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41039884, endtime: 41039885, seqnum: 0, connid: 0 98 13:09:06,1742655 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56054 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41039886, endtime: 41039886, seqnum: 0, connid: 0 98 13:09:06,2035260 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56054 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41039889, endtime: 41039889, seqnum: 0, connid: 0 98 13:09:06,2189585 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56054 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41039890, endtime: 41039891, seqnum: 0, connid: 0 98 13:09:06,2350982 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56054 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41039892, endtime: 41039892, seqnum: 0, connid: 0 98 13:09:06,2517720 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56054 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41039894, endtime: 41039894, seqnum: 0, connid: 0 98 13:09:06,2675195 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56054 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41039895, endtime: 41039895, seqnum: 0, connid: 0 98 13:09:06,2827931 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56054 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41039897, endtime: 41039897, seqnum: 0, connid: 0 98 13:09:06,3152003 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56054 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41039900, endtime: 41039900, seqnum: 0, connid: 0 98 13:09:06,3449085 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56054 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41039903, endtime: 41039903, seqnum: 0, connid: 0 98 13:09:06,3597227 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56054 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41039905, endtime: 41039905, seqnum: 0, connid: 0 98 13:09:06,3752389 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56054 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41039906, endtime: 41039906, seqnum: 0, connid: 0 98 13:09:06,3943849 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56054 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41039908, endtime: 41039908, seqnum: 0, connid: 0 98 13:09:06,4088744 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56054 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41039909, endtime: 41039909, seqnum: 0, connid: 0 98 13:09:06,4457062 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56054 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41039912, endtime: 41039913, seqnum: 0, connid: 0 98 13:09:06,4533097 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56054 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41039914, endtime: 41039914, seqnum: 0, connid: 0 98 13:09:06,4714026 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56054 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41039915, endtime: 41039916, seqnum: 0, connid: 0 98 13:09:06,8645316 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56054 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41039917, endtime: 41039955, seqnum: 0, connid: 0 98 13:09:06,8645509 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56054 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41039919, endtime: 41039955, seqnum: 0, connid: 0 98 13:09:06,8645587 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56054 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41039920, endtime: 41039955, seqnum: 0, connid: 0 98 13:09:06,8645770 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56054 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41039922, endtime: 41039955, seqnum: 0, connid: 0 98 13:09:06,8645850 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56054 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41039923, endtime: 41039955, seqnum: 0, connid: 0 98 13:09:06,8645925 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56054 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41039925, endtime: 41039955, seqnum: 0, connid: 0 98 13:09:06,8645983 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56054 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41039928, endtime: 41039955, seqnum: 0, connid: 0 98 13:09:06,8646058 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56054 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41039930, endtime: 41039955, seqnum: 0, connid: 0 98 13:09:06,8646119 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56054 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41039931, endtime: 41039955, seqnum: 0, connid: 0 98 13:09:06,8646449 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56054 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41039934, endtime: 41039955, seqnum: 0, connid: 0 98 13:09:06,8646510 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56054 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41039936, endtime: 41039955, seqnum: 0, connid: 0 98 13:09:06,8646579 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56054 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41039938, endtime: 41039955, seqnum: 0, connid: 0 98 13:09:06,8646634 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56054 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41039941, endtime: 41039955, seqnum: 0, connid: 0 98 13:09:07,4825929 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56041 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41039638, endtime: 41040017, seqnum: 0, connid: 0 98 13:09:07,4826292 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56041 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41039639, endtime: 41040017, seqnum: 0, connid: 0 98 13:09:07,4826381 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56041 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41039640, endtime: 41040017, seqnum: 0, connid: 0 98 13:09:07,4826466 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56041 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41039642, endtime: 41040017, seqnum: 0, connid: 0 98 13:09:07,4826536 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56041 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41039644, endtime: 41040017, seqnum: 0, connid: 0 98 13:09:07,4826613 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56041 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41039645, endtime: 41040017, seqnum: 0, connid: 0 98 13:09:07,4826680 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56041 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41039647, endtime: 41040017, seqnum: 0, connid: 0 98 13:09:07,4826757 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56041 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41039648, endtime: 41040017, seqnum: 0, connid: 0 98 13:09:07,4826821 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56041 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41039651, endtime: 41040017, seqnum: 0, connid: 0 98 13:09:07,4827611 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56041 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41039653, endtime: 41040017, seqnum: 0, connid: 0 98 13:09:07,4827683 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56041 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41039655, endtime: 41040017, seqnum: 0, connid: 0 98 13:09:07,4827752 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56041 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41039656, endtime: 41040017, seqnum: 0, connid: 0 98 13:09:07,4833282 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56041 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41039658, endtime: 41040017, seqnum: 0, connid: 0 98 13:09:08,2029458 MCLauncher.exe 6080 TCP Reconnect WIN-0UOTFKKVN1S:56049 -> 54.36.38.171:25565 SUCCESS Length: 0, seqnum: 0, connid: 0 98 13:09:10,1255596 MCLauncher.exe 6080 TCP Reconnect WIN-0UOTFKKVN1S:56051 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 0, seqnum: 0, connid: 0 98 13:09:10,1782626 MCLauncher.exe 6080 TCP Reconnect WIN-0UOTFKKVN1S:56052 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 0, seqnum: 0, connid: 0 98 13:09:10,2924513 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55925 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41039841, endtime: 41040298, seqnum: 0, connid: 0 98 13:09:10,2924712 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55925 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41039842, endtime: 41040298, seqnum: 0, connid: 0 98 13:09:10,2924795 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55925 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41039844, endtime: 41040298, seqnum: 0, connid: 0 98 13:09:10,2924881 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55925 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41039845, endtime: 41040298, seqnum: 0, connid: 0 98 13:09:10,2924948 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55925 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41039848, endtime: 41040298, seqnum: 0, connid: 0 98 13:09:10,2925020 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55925 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41039850, endtime: 41040298, seqnum: 0, connid: 0 98 13:09:10,2925083 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55925 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41039851, endtime: 41040298, seqnum: 0, connid: 0 98 13:09:10,2925155 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55925 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41039853, endtime: 41040298, seqnum: 0, connid: 0 98 13:09:10,2925216 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55925 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41039855, endtime: 41040298, seqnum: 0, connid: 0 98 13:09:10,2925560 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55925 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41039856, endtime: 41040298, seqnum: 0, connid: 0 98 13:09:10,2925624 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55925 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41039858, endtime: 41040298, seqnum: 0, connid: 0 98 13:09:10,2925696 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55925 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41039859, endtime: 41040298, seqnum: 0, connid: 0 98 13:09:10,2925757 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55925 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41039861, endtime: 41040298, seqnum: 0, connid: 0 98 13:09:11,2435093 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56041 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41040017, endtime: 41040393, seqnum: 0, connid: 0 98 13:09:11,2435268 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56041 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41040019, endtime: 41040393, seqnum: 0, connid: 0 98 13:09:11,2435342 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56041 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41040020, endtime: 41040393, seqnum: 0, connid: 0 98 13:09:11,2435417 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56041 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41040022, endtime: 41040393, seqnum: 0, connid: 0 98 13:09:11,2435475 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56041 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41040023, endtime: 41040393, seqnum: 0, connid: 0 98 13:09:11,2435545 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56041 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41040027, endtime: 41040393, seqnum: 0, connid: 0 98 13:09:11,2435600 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56041 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41040028, endtime: 41040393, seqnum: 0, connid: 0 98 13:09:11,2435667 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56041 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41040030, endtime: 41040393, seqnum: 0, connid: 0 98 13:09:11,2435722 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56041 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41040031, endtime: 41040393, seqnum: 0, connid: 0 98 13:09:11,2436722 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56041 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41040033, endtime: 41040393, seqnum: 0, connid: 0 98 13:09:11,2436797 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56041 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41040035, endtime: 41040393, seqnum: 0, connid: 0 98 13:09:11,2436866 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56041 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41040037, endtime: 41040393, seqnum: 0, connid: 0 98 13:09:11,2437664 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56041 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41040039, endtime: 41040393, seqnum: 0, connid: 0 98 13:09:12,3128576 MCLauncher.exe 6080 TCP Reconnect WIN-0UOTFKKVN1S:56064 -> 54.36.38.171:25565 SUCCESS Length: 0, seqnum: 0, connid: 0 98 13:09:12,9379664 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56041 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41040393, endtime: 41040562, seqnum: 0, connid: 0 98 13:09:12,9379852 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56041 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41040394, endtime: 41040562, seqnum: 0, connid: 0 98 13:09:12,9379927 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56041 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41040395, endtime: 41040562, seqnum: 0, connid: 0 98 13:09:12,9380004 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56041 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41040397, endtime: 41040562, seqnum: 0, connid: 0 98 13:09:12,9380063 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56041 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41040398, endtime: 41040562, seqnum: 0, connid: 0 98 13:09:12,9380135 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56041 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41040400, endtime: 41040562, seqnum: 0, connid: 0 98 13:09:12,9380190 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56041 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41040400, endtime: 41040562, seqnum: 0, connid: 0 98 13:09:12,9380259 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56041 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41040403, endtime: 41040562, seqnum: 0, connid: 0 98 13:09:12,9380315 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56041 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41040404, endtime: 41040562, seqnum: 0, connid: 0 98 13:09:12,9380625 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56041 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41040404, endtime: 41040562, seqnum: 0, connid: 0 98 13:09:12,9380683 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56041 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41040405, endtime: 41040562, seqnum: 0, connid: 0 98 13:09:12,9380750 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56041 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41040408, endtime: 41040562, seqnum: 0, connid: 0 98 13:09:12,9380805 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56041 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41040411, endtime: 41040562, seqnum: 0, connid: 0 98 13:09:13,3268057 MCLauncher.exe 6080 TCP TCPCopy WIN-0UOTFKKVN1S:54920 -> sheltex.company:8000 SUCCESS Length: 2, seqnum: 0, connid: 0 98 13:09:13,3268201 MCLauncher.exe 6080 TCP Receive WIN-0UOTFKKVN1S:54920 -> sheltex.company:8000 SUCCESS Length: 2, seqnum: 0, connid: 0 98 13:09:13,3272387 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54920 -> sheltex.company:8000 SUCCESS Length: 2, startime: 41040601, endtime: 41040601, seqnum: 0, connid: 0 98 13:09:14,2341559 MCLauncher.exe 6080 TCP Reconnect WIN-0UOTFKKVN1S:56066 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 0, seqnum: 0, connid: 0 98 13:09:14,2653815 MCLauncher.exe 6080 TCP Reconnect WIN-0UOTFKKVN1S:56067 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 0, seqnum: 0, connid: 0 98 13:09:14,2973416 MCLauncher.exe 6080 TCP Connect WIN-0UOTFKKVN1S:56066 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 0, mss: 1460, sackopt: 0, tsopt: 0, wsopt: 0, rcvwin: 64240, rcvwinscale: 0, sndwinscale: 0, seqnum: 0, connid: 0 98 13:09:14,2986501 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56066 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41040698, endtime: 41040698, seqnum: 0, connid: 0 98 13:09:14,3127703 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56066 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41040700, endtime: 41040700, seqnum: 0, connid: 0 98 13:09:14,3186846 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56066 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41040700, endtime: 41040700, seqnum: 0, connid: 0 98 13:09:14,3437956 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56066 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41040703, endtime: 41040703, seqnum: 0, connid: 0 98 13:09:14,3592611 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56066 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41040704, endtime: 41040705, seqnum: 0, connid: 0 98 13:09:14,3676905 MCLauncher.exe 6080 TCP Connect WIN-0UOTFKKVN1S:56067 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 0, mss: 1460, sackopt: 0, tsopt: 0, wsopt: 0, rcvwin: 64240, rcvwinscale: 0, sndwinscale: 0, seqnum: 0, connid: 0 98 13:09:14,3680177 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56067 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41040705, endtime: 41040705, seqnum: 0, connid: 0 98 13:09:14,3751270 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56067 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41040706, endtime: 41040706, seqnum: 0, connid: 0 98 13:09:14,3753769 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56066 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41040706, endtime: 41040706, seqnum: 0, connid: 0 98 13:09:14,3905369 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56067 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41040708, endtime: 41040708, seqnum: 0, connid: 0 98 13:09:14,3907549 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56066 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41040708, endtime: 41040708, seqnum: 0, connid: 0 98 13:09:14,4063523 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56067 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41040709, endtime: 41040709, seqnum: 0, connid: 0 98 13:09:14,4064584 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56066 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41040709, endtime: 41040709, seqnum: 0, connid: 0 98 13:09:14,4217780 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56067 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41040711, endtime: 41040711, seqnum: 0, connid: 0 98 13:09:14,4218533 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56066 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41040711, endtime: 41040711, seqnum: 0, connid: 0 98 13:09:14,4371743 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56067 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41040712, endtime: 41040712, seqnum: 0, connid: 0 98 13:09:14,4374671 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56066 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41040712, endtime: 41040712, seqnum: 0, connid: 0 98 13:09:14,4528606 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56067 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41040714, endtime: 41040714, seqnum: 0, connid: 0 98 13:09:14,4533272 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56066 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41040714, endtime: 41040714, seqnum: 0, connid: 0 98 13:09:14,4695109 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56067 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41040716, endtime: 41040716, seqnum: 0, connid: 0 98 13:09:14,4698674 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56066 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41040716, endtime: 41040716, seqnum: 0, connid: 0 98 13:09:14,5038822 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56067 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41040719, endtime: 41040719, seqnum: 0, connid: 0 98 13:09:14,5071974 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56066 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41040719, endtime: 41040719, seqnum: 0, connid: 0 98 13:09:14,5431654 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56066 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41040722, endtime: 41040723, seqnum: 0, connid: 0 98 13:09:14,5432651 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56067 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41040722, endtime: 41040723, seqnum: 0, connid: 0 98 13:09:14,5783623 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56067 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41040726, endtime: 41040726, seqnum: 0, connid: 0 98 13:09:14,5789544 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56066 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41040726, endtime: 41040727, seqnum: 0, connid: 0 98 13:09:14,5947696 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56066 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41040728, endtime: 41040728, seqnum: 0, connid: 0 98 13:09:14,5948660 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56067 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41040728, endtime: 41040728, seqnum: 0, connid: 0 98 13:09:14,6249429 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56067 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41040731, endtime: 41040731, seqnum: 0, connid: 0 98 13:09:14,6251809 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56066 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41040731, endtime: 41040731, seqnum: 0, connid: 0 98 13:09:14,6431798 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56066 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41040733, endtime: 41040733, seqnum: 0, connid: 0 98 13:09:14,6432513 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56067 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41040733, endtime: 41040733, seqnum: 0, connid: 0 98 13:09:14,6649947 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55925 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41040298, endtime: 41040735, seqnum: 0, connid: 0 98 13:09:14,6650155 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55925 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41040300, endtime: 41040735, seqnum: 0, connid: 0 98 13:09:14,6650246 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55925 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41040300, endtime: 41040735, seqnum: 0, connid: 0 98 13:09:14,6650329 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55925 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41040303, endtime: 41040735, seqnum: 0, connid: 0 98 13:09:14,6650390 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55925 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41040305, endtime: 41040735, seqnum: 0, connid: 0 98 13:09:14,6650462 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55925 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41040306, endtime: 41040735, seqnum: 0, connid: 0 98 13:09:14,6650520 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55925 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41040309, endtime: 41040735, seqnum: 0, connid: 0 98 13:09:14,6650592 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55925 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41040311, endtime: 41040735, seqnum: 0, connid: 0 98 13:09:14,6650653 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55925 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41040314, endtime: 41040735, seqnum: 0, connid: 0 98 13:09:14,6650969 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55925 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41040316, endtime: 41040735, seqnum: 0, connid: 0 98 13:09:14,6651027 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55925 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41040318, endtime: 41040735, seqnum: 0, connid: 0 98 13:09:14,6651094 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55925 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41040319, endtime: 41040735, seqnum: 0, connid: 0 98 13:09:14,6651149 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55925 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41040320, endtime: 41040735, seqnum: 0, connid: 0 98 13:09:14,6734557 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56067 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41040736, endtime: 41040736, seqnum: 0, connid: 0 98 13:09:14,6738103 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56066 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41040736, endtime: 41040736, seqnum: 0, connid: 0 98 13:09:14,6876171 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56066 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41040737, endtime: 41040737, seqnum: 0, connid: 0 98 13:09:14,6877055 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56067 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41040737, endtime: 41040737, seqnum: 0, connid: 0 98 13:09:14,7043909 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56067 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41040739, endtime: 41040739, seqnum: 0, connid: 0 98 13:09:14,7044862 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56066 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41040739, endtime: 41040739, seqnum: 0, connid: 0 98 13:09:14,7360928 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56066 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41040742, endtime: 41040742, seqnum: 0, connid: 0 98 13:09:14,7361809 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56067 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41040742, endtime: 41040742, seqnum: 0, connid: 0 98 13:09:14,7513470 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56067 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41040744, endtime: 41040744, seqnum: 0, connid: 0 98 13:09:14,7514478 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56066 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41040744, endtime: 41040744, seqnum: 0, connid: 0 98 13:09:14,7669773 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56066 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41040745, endtime: 41040745, seqnum: 0, connid: 0 98 13:09:14,7670544 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56067 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41040745, endtime: 41040745, seqnum: 0, connid: 0 98 13:09:14,7831715 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56067 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41040747, endtime: 41040747, seqnum: 0, connid: 0 98 13:09:14,7834420 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56066 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41040747, endtime: 41040747, seqnum: 0, connid: 0 98 13:09:14,8004806 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56066 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41040748, endtime: 41040749, seqnum: 0, connid: 0 98 13:09:14,8006178 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56067 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41040748, endtime: 41040749, seqnum: 0, connid: 0 98 13:09:14,8135499 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56067 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41040750, endtime: 41040750, seqnum: 0, connid: 0 98 13:09:14,8136535 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56066 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41040750, endtime: 41040750, seqnum: 0, connid: 0 98 13:09:14,8288697 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56067 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41040751, endtime: 41040751, seqnum: 0, connid: 0 98 13:09:14,8445475 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56067 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41040753, endtime: 41040753, seqnum: 0, connid: 0 98 13:09:15,2399422 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56066 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41040751, endtime: 41040793, seqnum: 0, connid: 0 98 13:09:15,2399597 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56066 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41040753, endtime: 41040793, seqnum: 0, connid: 0 98 13:09:15,2399674 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56066 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41040755, endtime: 41040793, seqnum: 0, connid: 0 98 13:09:15,2399757 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56066 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41040756, endtime: 41040793, seqnum: 0, connid: 0 98 13:09:15,2399821 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56066 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41040758, endtime: 41040793, seqnum: 0, connid: 0 98 13:09:15,2399896 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56066 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41040759, endtime: 41040793, seqnum: 0, connid: 0 98 13:09:15,2399957 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56066 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41040761, endtime: 41040793, seqnum: 0, connid: 0 98 13:09:15,2400029 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56066 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41040763, endtime: 41040793, seqnum: 0, connid: 0 98 13:09:15,2400090 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56066 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41040766, endtime: 41040793, seqnum: 0, connid: 0 98 13:09:15,2400381 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56066 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41040767, endtime: 41040793, seqnum: 0, connid: 0 98 13:09:15,2400447 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56066 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41040770, endtime: 41040793, seqnum: 0, connid: 0 98 13:09:16,1369408 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56066 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41040772, endtime: 41040882, seqnum: 0, connid: 0 98 13:09:16,1369591 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56066 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41040773, endtime: 41040882, seqnum: 0, connid: 0 98 13:09:16,1369688 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56066 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41040793, endtime: 41040882, seqnum: 0, connid: 0 98 13:09:16,1369760 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56066 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41040794, endtime: 41040882, seqnum: 0, connid: 0 98 13:09:16,1369840 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56066 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41040795, endtime: 41040882, seqnum: 0, connid: 0 98 13:09:16,1369907 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56066 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41040798, endtime: 41040882, seqnum: 0, connid: 0 98 13:09:16,1369984 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56066 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41040800, endtime: 41040882, seqnum: 0, connid: 0 98 13:09:16,1370087 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56066 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41040800, endtime: 41040882, seqnum: 0, connid: 0 98 13:09:16,1370173 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56066 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41040803, endtime: 41040882, seqnum: 0, connid: 0 98 13:09:16,1370472 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56066 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41040805, endtime: 41040882, seqnum: 0, connid: 0 98 13:09:16,1370547 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56066 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41040808, endtime: 41040882, seqnum: 0, connid: 0 98 13:09:16,1370605 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56066 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41040809, endtime: 41040882, seqnum: 0, connid: 0 98 13:09:16,1370677 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56066 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41040813, endtime: 41040882, seqnum: 0, connid: 0 98 13:09:16,5204119 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56041 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41040562, endtime: 41040921, seqnum: 0, connid: 0 98 13:09:16,5204285 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56041 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41040564, endtime: 41040921, seqnum: 0, connid: 0 98 13:09:16,5204357 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56041 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41040566, endtime: 41040921, seqnum: 0, connid: 0 98 13:09:16,5204429 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56041 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41040569, endtime: 41040921, seqnum: 0, connid: 0 98 13:09:16,5204487 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56041 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41040572, endtime: 41040921, seqnum: 0, connid: 0 98 13:09:16,5204556 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56041 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41040573, endtime: 41040921, seqnum: 0, connid: 0 98 13:09:16,5204609 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56041 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41040574, endtime: 41040921, seqnum: 0, connid: 0 98 13:09:16,5204781 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56041 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41040577, endtime: 41040921, seqnum: 0, connid: 0 98 13:09:16,5204850 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56041 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41040578, endtime: 41040921, seqnum: 0, connid: 0 98 13:09:16,5205144 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56041 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41040580, endtime: 41040921, seqnum: 0, connid: 0 98 13:09:16,5205202 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56041 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41040583, endtime: 41040921, seqnum: 0, connid: 0 98 13:09:16,5205268 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56041 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41040584, endtime: 41040921, seqnum: 0, connid: 0 98 13:09:16,5205324 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56041 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41040587, endtime: 41040921, seqnum: 0, connid: 0 98 13:09:17,5920868 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56054 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41039955, endtime: 41041028, seqnum: 0, connid: 0 98 13:09:17,5921040 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56054 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41039956, endtime: 41041028, seqnum: 0, connid: 0 98 13:09:17,5921134 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56054 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41039958, endtime: 41041028, seqnum: 0, connid: 0 98 13:09:17,5921201 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56054 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41039959, endtime: 41041028, seqnum: 0, connid: 0 98 13:09:17,5921273 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56054 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41039961, endtime: 41041028, seqnum: 0, connid: 0 98 13:09:17,5921331 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56054 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41039964, endtime: 41041028, seqnum: 0, connid: 0 98 13:09:17,5921403 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56054 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41039965, endtime: 41041028, seqnum: 0, connid: 0 98 13:09:17,5921461 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56054 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41039967, endtime: 41041028, seqnum: 0, connid: 0 98 13:09:17,5921530 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56054 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41039969, endtime: 41041028, seqnum: 0, connid: 0 98 13:09:17,5921927 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56054 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41039972, endtime: 41041028, seqnum: 0, connid: 0 98 13:09:17,5922024 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56054 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41039973, endtime: 41041028, seqnum: 0, connid: 0 98 13:09:17,5922090 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56054 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41039974, endtime: 41041028, seqnum: 0, connid: 0 98 13:09:17,5922173 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56054 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41039977, endtime: 41041028, seqnum: 0, connid: 0 98 13:09:18,1991646 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56041 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41040921, endtime: 41041089, seqnum: 0, connid: 0 98 13:09:18,1991837 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56041 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41040923, endtime: 41041089, seqnum: 0, connid: 0 98 13:09:18,1991917 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56041 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41040925, endtime: 41041089, seqnum: 0, connid: 0 98 13:09:18,1991997 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56041 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41040928, endtime: 41041089, seqnum: 0, connid: 0 98 13:09:18,1992058 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56041 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41040930, endtime: 41041089, seqnum: 0, connid: 0 98 13:09:18,1992130 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56041 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41040931, endtime: 41041089, seqnum: 0, connid: 0 98 13:09:18,1992186 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56041 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41040933, endtime: 41041089, seqnum: 0, connid: 0 98 13:09:18,1992258 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56041 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41040934, endtime: 41041089, seqnum: 0, connid: 0 98 13:09:18,1992319 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56041 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41040936, endtime: 41041089, seqnum: 0, connid: 0 98 13:09:18,1992837 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56041 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41040938, endtime: 41041089, seqnum: 0, connid: 0 98 13:09:18,1992912 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56041 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41040939, endtime: 41041089, seqnum: 0, connid: 0 98 13:09:18,1992981 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56041 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41040941, endtime: 41041089, seqnum: 0, connid: 0 98 13:09:18,1993042 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56041 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41040942, endtime: 41041089, seqnum: 0, connid: 0 98 13:09:18,3135006 MCLauncher.exe 6080 TCP Reconnect WIN-0UOTFKKVN1S:56064 -> 54.36.38.171:25565 SUCCESS Length: 0, seqnum: 0, connid: 0 98 13:09:19,4366182 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55925 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41040735, endtime: 41041212, seqnum: 0, connid: 0 98 13:09:19,4366362 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55925 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41040736, endtime: 41041212, seqnum: 0, connid: 0 98 13:09:19,4366437 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55925 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41040737, endtime: 41041212, seqnum: 0, connid: 0 98 13:09:19,4366512 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55925 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41040739, endtime: 41041212, seqnum: 0, connid: 0 98 13:09:19,4366567 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55925 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41040742, endtime: 41041212, seqnum: 0, connid: 0 98 13:09:19,4366636 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55925 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41040744, endtime: 41041212, seqnum: 0, connid: 0 98 13:09:19,4366692 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55925 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41040745, endtime: 41041212, seqnum: 0, connid: 0 98 13:09:19,4366761 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55925 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41040747, endtime: 41041212, seqnum: 0, connid: 0 98 13:09:19,4366817 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55925 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41040748, endtime: 41041212, seqnum: 0, connid: 0 98 13:09:19,4367146 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55925 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41040750, endtime: 41041212, seqnum: 0, connid: 0 98 13:09:19,4367204 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55925 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41040751, endtime: 41041212, seqnum: 0, connid: 0 98 13:09:19,4367271 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55925 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41040753, endtime: 41041212, seqnum: 0, connid: 0 98 13:09:19,4367324 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55925 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41040755, endtime: 41041212, seqnum: 0, connid: 0 98 13:09:20,1249279 MCLauncher.exe 6080 TCP Reconnect WIN-0UOTFKKVN1S:56069 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 0, seqnum: 0, connid: 0 98 13:09:20,1841927 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56041 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41041089, endtime: 41041287, seqnum: 0, connid: 0 98 13:09:20,1842124 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56041 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41041090, endtime: 41041287, seqnum: 0, connid: 0 98 13:09:20,1842202 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56041 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41041094, endtime: 41041287, seqnum: 0, connid: 0 98 13:09:20,1842279 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56041 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41041095, endtime: 41041287, seqnum: 0, connid: 0 98 13:09:20,1842340 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56041 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41041097, endtime: 41041287, seqnum: 0, connid: 0 98 13:09:20,1842407 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56041 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41041099, endtime: 41041287, seqnum: 0, connid: 0 98 13:09:20,1842465 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56041 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41041100, endtime: 41041287, seqnum: 0, connid: 0 98 13:09:20,1842534 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56041 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41041100, endtime: 41041287, seqnum: 0, connid: 0 98 13:09:20,1842589 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56041 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41041103, endtime: 41041287, seqnum: 0, connid: 0 98 13:09:20,1842875 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56041 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41041105, endtime: 41041287, seqnum: 0, connid: 0 98 13:09:20,1842933 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56041 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41041106, endtime: 41041287, seqnum: 0, connid: 0 98 13:09:20,1842999 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56041 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41041108, endtime: 41041287, seqnum: 0, connid: 0 98 13:09:20,1843058 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56041 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41041109, endtime: 41041287, seqnum: 0, connid: 0 98 13:09:21,7809446 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56041 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41041287, endtime: 41041447, seqnum: 0, connid: 0 98 13:09:21,7809775 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56041 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41041289, endtime: 41041447, seqnum: 0, connid: 0 98 13:09:21,7809897 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56041 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41041291, endtime: 41041447, seqnum: 0, connid: 0 98 13:09:21,7810016 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56041 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41041292, endtime: 41041447, seqnum: 0, connid: 0 98 13:09:21,7810102 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56041 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41041294, endtime: 41041447, seqnum: 0, connid: 0 98 13:09:21,7810216 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56041 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41041295, endtime: 41041447, seqnum: 0, connid: 0 98 13:09:21,7810316 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56041 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41041297, endtime: 41041447, seqnum: 0, connid: 0 98 13:09:21,7810427 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56041 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41041298, endtime: 41041447, seqnum: 0, connid: 0 98 13:09:21,7810523 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56041 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41041301, endtime: 41041447, seqnum: 0, connid: 0 98 13:09:21,7811236 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56041 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41041305, endtime: 41041447, seqnum: 0, connid: 0 98 13:09:21,7811344 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56041 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41041306, endtime: 41041447, seqnum: 0, connid: 0 98 13:09:21,7811449 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56041 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41041308, endtime: 41041447, seqnum: 0, connid: 0 98 13:09:21,7811546 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56041 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41041309, endtime: 41041447, seqnum: 0, connid: 0 98 13:09:22,2112226 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55925 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41041212, endtime: 41041490, seqnum: 0, connid: 0 98 13:09:22,2112400 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55925 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41041214, endtime: 41041490, seqnum: 0, connid: 0 98 13:09:22,2112481 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55925 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41041216, endtime: 41041490, seqnum: 0, connid: 0 98 13:09:22,2112558 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55925 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41041219, endtime: 41041490, seqnum: 0, connid: 0 98 13:09:22,2112619 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55925 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41041222, endtime: 41041490, seqnum: 0, connid: 0 98 13:09:22,2112691 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55925 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41041223, endtime: 41041490, seqnum: 0, connid: 0 98 13:09:22,2112750 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55925 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41041225, endtime: 41041490, seqnum: 0, connid: 0 98 13:09:22,2112819 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55925 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41041227, endtime: 41041490, seqnum: 0, connid: 0 98 13:09:22,2112874 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55925 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41041230, endtime: 41041490, seqnum: 0, connid: 0 98 13:09:22,2113187 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55925 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41041231, endtime: 41041490, seqnum: 0, connid: 0 98 13:09:22,2113373 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55925 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41041233, endtime: 41041490, seqnum: 0, connid: 0 98 13:09:22,2113517 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55925 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41041236, endtime: 41041490, seqnum: 0, connid: 0 98 13:09:22,2113622 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:55925 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41041237, endtime: 41041490, seqnum: 0, connid: 0 98 13:09:22,4218206 MCLauncher.exe 6080 TCP Reconnect WIN-0UOTFKKVN1S:56072 -> 54.36.38.171:25565 SUCCESS Length: 0, seqnum: 0, connid: 0 98 13:09:23,5513649 MCLauncher.exe 6080 TCP TCPCopy WIN-0UOTFKKVN1S:54920 -> sheltex.company:8000 SUCCESS Length: 2, seqnum: 0, connid: 0 98 13:09:23,5513773 MCLauncher.exe 6080 TCP Receive WIN-0UOTFKKVN1S:54920 -> sheltex.company:8000 SUCCESS Length: 2, seqnum: 0, connid: 0 98 13:09:23,5517616 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54920 -> sheltex.company:8000 SUCCESS Length: 2, startime: 41041624, endtime: 41041624, seqnum: 0, connid: 0 98 13:09:23,9703700 MCLauncher.exe 6080 TCP Disconnect WIN-0UOTFKKVN1S:56067 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 0, seqnum: 0, connid: 0 98 13:09:24,5507866 MCLauncher.exe 6080 TCP Disconnect WIN-0UOTFKKVN1S:55925 -> 54.36.38.171:25565 SUCCESS Length: 0, seqnum: 0, connid: 0 98 13:09:24,6798033 MCLauncher.exe 6080 TCP Connect WIN-0UOTFKKVN1S:56075 -> 54.36.38.171:25565 SUCCESS Length: 0, mss: 1460, sackopt: 0, tsopt: 0, wsopt: 0, rcvwin: 64240, rcvwinscale: 0, sndwinscale: 0, seqnum: 0, connid: 0 98 13:09:24,6801217 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56075 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41041737, endtime: 41041737, seqnum: 0, connid: 0 98 13:09:24,6868433 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56075 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41041737, endtime: 41041737, seqnum: 0, connid: 0 98 13:09:24,7029918 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56075 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41041739, endtime: 41041739, seqnum: 0, connid: 0 98 13:09:24,7184258 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56075 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41041740, endtime: 41041740, seqnum: 0, connid: 0 98 13:09:24,7349297 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56075 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41041742, endtime: 41041742, seqnum: 0, connid: 0 98 13:09:24,7654269 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56075 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41041745, endtime: 41041745, seqnum: 0, connid: 0 98 13:09:24,7820966 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56075 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41041747, endtime: 41041747, seqnum: 0, connid: 0 98 13:09:24,7977051 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56075 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41041748, endtime: 41041748, seqnum: 0, connid: 0 98 13:09:24,8281408 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56075 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41041751, endtime: 41041751, seqnum: 0, connid: 0 98 13:09:24,8451567 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56075 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41041753, endtime: 41041753, seqnum: 0, connid: 0 98 13:09:24,8605810 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56075 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41041755, endtime: 41041755, seqnum: 0, connid: 0 98 13:09:24,8910378 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56075 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41041758, endtime: 41041758, seqnum: 0, connid: 0 98 13:09:24,9071641 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56075 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41041759, endtime: 41041759, seqnum: 0, connid: 0 98 13:09:24,9237345 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56075 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41041761, endtime: 41041761, seqnum: 0, connid: 0 98 13:09:24,9378168 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56075 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41041762, endtime: 41041762, seqnum: 0, connid: 0 98 13:09:24,9576385 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56075 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41041764, endtime: 41041764, seqnum: 0, connid: 0 98 13:09:24,9695943 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56075 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41041765, endtime: 41041766, seqnum: 0, connid: 0 98 13:09:24,9848254 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56075 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41041767, endtime: 41041767, seqnum: 0, connid: 0 98 13:09:25,0082283 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56075 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41041769, endtime: 41041769, seqnum: 0, connid: 0 98 13:09:25,0160117 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56075 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41041770, endtime: 41041770, seqnum: 0, connid: 0 98 13:09:25,0487907 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56075 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41041773, endtime: 41041773, seqnum: 0, connid: 0 98 13:09:25,0548283 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56075 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41041774, endtime: 41041774, seqnum: 0, connid: 0 98 13:09:25,0828595 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56075 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41041776, endtime: 41041777, seqnum: 0, connid: 0 98 13:09:25,0952760 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56075 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41041778, endtime: 41041778, seqnum: 0, connid: 0 98 13:09:25,1102609 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56075 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41041780, endtime: 41041780, seqnum: 0, connid: 0 98 13:09:25,1273669 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56075 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41041781, endtime: 41041781, seqnum: 0, connid: 0 98 13:09:25,2837210 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56075 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41041784, endtime: 41041797, seqnum: 0, connid: 0 98 13:09:25,2837392 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56075 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41041786, endtime: 41041797, seqnum: 0, connid: 0 98 13:09:25,2837475 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56075 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41041787, endtime: 41041797, seqnum: 0, connid: 0 98 13:09:25,2837553 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56075 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41041790, endtime: 41041797, seqnum: 0, connid: 0 98 13:09:25,2837617 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56075 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41041792, endtime: 41041797, seqnum: 0, connid: 0 98 13:09:25,2837686 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56075 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41041794, endtime: 41041797, seqnum: 0, connid: 0 98 13:09:25,2837744 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56075 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41041795, endtime: 41041797, seqnum: 0, connid: 0 98 13:09:25,2837816 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56075 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41041797, endtime: 41041797, seqnum: 0, connid: 0 98 13:09:25,3049473 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56075 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41041798, endtime: 41041799, seqnum: 0, connid: 0 98 13:09:25,3125708 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56075 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41041800, endtime: 41041800, seqnum: 0, connid: 0 98 13:09:25,3183621 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56075 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41041800, endtime: 41041800, seqnum: 0, connid: 0 98 13:09:25,3466866 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56075 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41041803, endtime: 41041803, seqnum: 0, connid: 0 98 13:09:25,3684918 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56075 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41041805, endtime: 41041805, seqnum: 0, connid: 0 98 13:09:25,8811017 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56041 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41041447, endtime: 41041857, seqnum: 0, connid: 0 98 13:09:25,8811217 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56041 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41041448, endtime: 41041857, seqnum: 0, connid: 0 98 13:09:25,8811297 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56041 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41041450, endtime: 41041857, seqnum: 0, connid: 0 98 13:09:25,8811377 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56041 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41041451, endtime: 41041857, seqnum: 0, connid: 0 98 13:09:25,8811441 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56041 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41041453, endtime: 41041857, seqnum: 0, connid: 0 98 13:09:25,8811513 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56041 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41041455, endtime: 41041857, seqnum: 0, connid: 0 98 13:09:25,8811571 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56041 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41041456, endtime: 41041857, seqnum: 0, connid: 0 98 13:09:25,8811646 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56041 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41041458, endtime: 41041857, seqnum: 0, connid: 0 98 13:09:25,8811704 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56041 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41041459, endtime: 41041857, seqnum: 0, connid: 0 98 13:09:25,8812156 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56041 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41041461, endtime: 41041857, seqnum: 0, connid: 0 98 13:09:25,8812231 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56041 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41041462, endtime: 41041857, seqnum: 0, connid: 0 98 13:09:25,8812303 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56041 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41041464, endtime: 41041857, seqnum: 0, connid: 0 98 13:09:25,8812364 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56041 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41041465, endtime: 41041857, seqnum: 0, connid: 0 98 13:09:26,1401777 MCLauncher.exe 6080 TCP Reconnect WIN-0UOTFKKVN1S:56069 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 0, seqnum: 0, connid: 0 98 13:09:26,9837308 MCLauncher.exe 6080 TCP Reconnect WIN-0UOTFKKVN1S:56074 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 0, seqnum: 0, connid: 0 98 13:09:28,4221509 MCLauncher.exe 6080 TCP Reconnect WIN-0UOTFKKVN1S:56072 -> 54.36.38.171:25565 SUCCESS Length: 0, seqnum: 0, connid: 0 98 13:09:29,4381703 MCLauncher.exe 6080 TCP Reconnect WIN-0UOTFKKVN1S:56079 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 0, seqnum: 0, connid: 0 98 13:09:30,2346396 MCLauncher.exe 6080 TCP Reconnect WIN-0UOTFKKVN1S:56080 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 0, seqnum: 0, connid: 0 98 13:09:30,3288764 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56075 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41041806, endtime: 41042301, seqnum: 0, connid: 0 98 13:09:30,3288958 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56075 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41041808, endtime: 41042301, seqnum: 0, connid: 0 98 13:09:30,3289038 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56075 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41041809, endtime: 41042301, seqnum: 0, connid: 0 98 13:09:30,3289116 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56075 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41041811, endtime: 41042301, seqnum: 0, connid: 0 98 13:09:30,3289179 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56075 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41041812, endtime: 41042301, seqnum: 0, connid: 0 98 13:09:30,3289249 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56075 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41041814, endtime: 41042301, seqnum: 0, connid: 0 98 13:09:30,3289307 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56075 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41041816, endtime: 41042301, seqnum: 0, connid: 0 98 13:09:30,3289376 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56075 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41041819, endtime: 41042301, seqnum: 0, connid: 0 98 13:09:30,3289434 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56075 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41041820, endtime: 41042301, seqnum: 0, connid: 0 98 13:09:30,3289736 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56075 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41041822, endtime: 41042302, seqnum: 0, connid: 0 98 13:09:30,3289797 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56075 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41041823, endtime: 41042302, seqnum: 0, connid: 0 98 13:09:30,3289866 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56075 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41041825, endtime: 41042302, seqnum: 0, connid: 0 98 13:09:30,3289925 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56075 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41041826, endtime: 41042302, seqnum: 0, connid: 0 98 13:09:30,5670473 MCLauncher.exe 6080 TCP Disconnect WIN-0UOTFKKVN1S:56054 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 0, seqnum: 0, connid: 0 98 13:09:31,1798213 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56041 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41041857, endtime: 41042387, seqnum: 0, connid: 0 98 13:09:31,1798396 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56041 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41041858, endtime: 41042387, seqnum: 0, connid: 0 98 13:09:31,1798485 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56041 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41041859, endtime: 41042387, seqnum: 0, connid: 0 98 13:09:31,1798551 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56041 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41041862, endtime: 41042387, seqnum: 0, connid: 0 98 13:09:31,1798626 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56041 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41041864, endtime: 41042387, seqnum: 0, connid: 0 98 13:09:31,1798684 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56041 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41041865, endtime: 41042387, seqnum: 0, connid: 0 98 13:09:31,1798759 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56041 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41041867, endtime: 41042387, seqnum: 0, connid: 0 98 13:09:31,1798820 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56041 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41041869, endtime: 41042387, seqnum: 0, connid: 0 98 13:09:31,1798889 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56041 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41041872, endtime: 41042387, seqnum: 0, connid: 0 98 13:09:31,1799180 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56041 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41041873, endtime: 41042387, seqnum: 0, connid: 0 98 13:09:31,1799255 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56041 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41041874, endtime: 41042387, seqnum: 0, connid: 0 98 13:09:31,1799310 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56041 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41041875, endtime: 41042387, seqnum: 0, connid: 0 98 13:09:31,1799382 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56041 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41041878, endtime: 41042387, seqnum: 0, connid: 0 98 13:09:32,5308095 MCLauncher.exe 6080 TCP Reconnect WIN-0UOTFKKVN1S:56082 -> 54.36.38.171:25565 SUCCESS Length: 0, seqnum: 0, connid: 0 98 13:09:32,9843874 MCLauncher.exe 6080 TCP Reconnect WIN-0UOTFKKVN1S:56074 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 0, seqnum: 0, connid: 0 98 13:09:33,7109779 MCLauncher.exe 6080 TCP TCPCopy WIN-0UOTFKKVN1S:54920 -> sheltex.company:8000 SUCCESS Length: 2, seqnum: 0, connid: 0 98 13:09:33,7109899 MCLauncher.exe 6080 TCP Receive WIN-0UOTFKKVN1S:54920 -> sheltex.company:8000 SUCCESS Length: 2, seqnum: 0, connid: 0 98 13:09:33,7113619 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54920 -> sheltex.company:8000 SUCCESS Length: 2, startime: 41042640, endtime: 41042640, seqnum: 0, connid: 0 98 13:09:34,3652876 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56075 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41042302, endtime: 41042705, seqnum: 0, connid: 0 98 13:09:34,3653037 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56075 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41042305, endtime: 41042705, seqnum: 0, connid: 0 98 13:09:34,3653112 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56075 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41042308, endtime: 41042705, seqnum: 0, connid: 0 98 13:09:34,3653192 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56075 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41042309, endtime: 41042705, seqnum: 0, connid: 0 98 13:09:34,3653250 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56075 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41042311, endtime: 41042705, seqnum: 0, connid: 0 98 13:09:34,3653320 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56075 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41042315, endtime: 41042705, seqnum: 0, connid: 0 98 13:09:34,3653378 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56075 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41042317, endtime: 41042705, seqnum: 0, connid: 0 98 13:09:34,3653442 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56075 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41042320, endtime: 41042705, seqnum: 0, connid: 0 98 13:09:34,3653500 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56075 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41042323, endtime: 41042705, seqnum: 0, connid: 0 98 13:09:34,3653796 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56075 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41042325, endtime: 41042705, seqnum: 0, connid: 0 98 13:09:34,3653857 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56075 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41042326, endtime: 41042705, seqnum: 0, connid: 0 98 13:09:34,3653924 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56075 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41042328, endtime: 41042705, seqnum: 0, connid: 0 98 13:09:34,3653979 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56075 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41042330, endtime: 41042705, seqnum: 0, connid: 0 98 13:09:35,4528099 MCLauncher.exe 6080 TCP Reconnect WIN-0UOTFKKVN1S:56079 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 0, seqnum: 0, connid: 0 98 13:09:36,2344396 MCLauncher.exe 6080 TCP Reconnect WIN-0UOTFKKVN1S:56080 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 0, seqnum: 0, connid: 0 98 13:09:37,0935023 MCLauncher.exe 6080 TCP Reconnect WIN-0UOTFKKVN1S:56088 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 0, seqnum: 0, connid: 0 98 13:09:37,1698481 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56066 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41040882, endtime: 41042986, seqnum: 0, connid: 0 98 13:09:37,1698639 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56066 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41040884, endtime: 41042986, seqnum: 0, connid: 0 98 13:09:37,1698714 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56066 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41040886, endtime: 41042986, seqnum: 0, connid: 0 98 13:09:37,1698786 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56066 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41040887, endtime: 41042986, seqnum: 0, connid: 0 98 13:09:37,1698844 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56066 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41040889, endtime: 41042986, seqnum: 0, connid: 0 98 13:09:37,1698911 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56066 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41040892, endtime: 41042986, seqnum: 0, connid: 0 98 13:09:37,1699781 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56066 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41040896, endtime: 41042986, seqnum: 0, connid: 0 98 13:09:37,1699867 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56066 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41040897, endtime: 41042986, seqnum: 0, connid: 0 98 13:09:37,1699922 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56066 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41040900, endtime: 41042986, seqnum: 0, connid: 0 98 13:09:37,1699991 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56066 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41040901, endtime: 41042986, seqnum: 0, connid: 0 98 13:09:37,1700044 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56066 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41040903, endtime: 41042986, seqnum: 0, connid: 0 98 13:09:37,1700113 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56066 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41040906, endtime: 41042986, seqnum: 0, connid: 0 98 13:09:37,1700169 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56066 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41040908, endtime: 41042986, seqnum: 0, connid: 0 98 13:09:37,8276917 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56075 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41042705, endtime: 41043051, seqnum: 0, connid: 0 98 13:09:37,8277111 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56075 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41042708, endtime: 41043051, seqnum: 0, connid: 0 98 13:09:37,8277191 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56075 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41042709, endtime: 41043051, seqnum: 0, connid: 0 98 13:09:37,8277271 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56075 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41042711, endtime: 41043051, seqnum: 0, connid: 0 98 13:09:37,8277335 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56075 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41042715, endtime: 41043051, seqnum: 0, connid: 0 98 13:09:37,8277404 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56075 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41042717, endtime: 41043051, seqnum: 0, connid: 0 98 13:09:37,8277463 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56075 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41042720, endtime: 41043051, seqnum: 0, connid: 0 98 13:09:37,8277532 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56075 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41042722, endtime: 41043051, seqnum: 0, connid: 0 98 13:09:37,8277590 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56075 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41042723, endtime: 41043051, seqnum: 0, connid: 0 98 13:09:37,8277923 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56075 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41042727, endtime: 41043051, seqnum: 0, connid: 0 98 13:09:37,8277984 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56075 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41042729, endtime: 41043051, seqnum: 0, connid: 0 98 13:09:37,8278050 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56075 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41042731, endtime: 41043051, seqnum: 0, connid: 0 98 13:09:37,8278111 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56075 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41042734, endtime: 41043051, seqnum: 0, connid: 0 98 13:09:38,5313093 MCLauncher.exe 6080 TCP Reconnect WIN-0UOTFKKVN1S:56082 -> 54.36.38.171:25565 SUCCESS Length: 0, seqnum: 0, connid: 0 98 13:09:39,0776342 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56041 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41042387, endtime: 41043176, seqnum: 0, connid: 0 98 13:09:39,0776517 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56041 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41042387, endtime: 41043176, seqnum: 0, connid: 0 98 13:09:39,0776586 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56041 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41042389, endtime: 41043176, seqnum: 0, connid: 0 98 13:09:39,0776658 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56041 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41042390, endtime: 41043176, seqnum: 0, connid: 0 98 13:09:39,0776710 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56041 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41042392, endtime: 41043176, seqnum: 0, connid: 0 98 13:09:39,0776777 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56041 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41042394, endtime: 41043176, seqnum: 0, connid: 0 98 13:09:39,0776827 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56041 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41042395, endtime: 41043176, seqnum: 0, connid: 0 98 13:09:39,0776891 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56041 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41042397, endtime: 41043176, seqnum: 0, connid: 0 98 13:09:39,0776943 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56041 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41042398, endtime: 41043176, seqnum: 0, connid: 0 98 13:09:39,0777229 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56041 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41042400, endtime: 41043176, seqnum: 0, connid: 0 98 13:09:39,0777287 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56041 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41042400, endtime: 41043176, seqnum: 0, connid: 0 98 13:09:39,0777350 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56041 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41042403, endtime: 41043176, seqnum: 0, connid: 0 98 13:09:39,0777403 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56041 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41042405, endtime: 41043176, seqnum: 0, connid: 0 98 13:09:39,5619850 MCLauncher.exe 6080 TCP Reconnect WIN-0UOTFKKVN1S:56091 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 0, seqnum: 0, connid: 0 98 13:09:39,6414765 MCLauncher.exe 6080 TCP Connect WIN-0UOTFKKVN1S:56091 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 0, mss: 1460, sackopt: 0, tsopt: 0, wsopt: 0, rcvwin: 64240, rcvwinscale: 0, sndwinscale: 0, seqnum: 0, connid: 0 98 13:09:39,6418588 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56091 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41043233, endtime: 41043233, seqnum: 0, connid: 0 98 13:09:39,6562156 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56091 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41043234, endtime: 41043234, seqnum: 0, connid: 0 98 13:09:39,6718136 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56091 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41043236, endtime: 41043236, seqnum: 0, connid: 0 98 13:09:39,6872284 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56091 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41043237, endtime: 41043237, seqnum: 0, connid: 0 98 13:09:39,7030738 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56091 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41043239, endtime: 41043239, seqnum: 0, connid: 0 98 13:09:39,7194608 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56091 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41043240, endtime: 41043241, seqnum: 0, connid: 0 98 13:09:39,7353290 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56091 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41043242, endtime: 41043242, seqnum: 0, connid: 0 98 13:09:39,7659927 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56091 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41043245, endtime: 41043245, seqnum: 0, connid: 0 98 13:09:39,8015647 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56091 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41043249, endtime: 41043249, seqnum: 0, connid: 0 98 13:09:39,8125032 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56091 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41043250, endtime: 41043250, seqnum: 0, connid: 0 98 13:09:39,8294773 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56091 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41043251, endtime: 41043252, seqnum: 0, connid: 0 98 13:09:39,8596218 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56091 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41043254, endtime: 41043255, seqnum: 0, connid: 0 98 13:09:39,8773604 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56091 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41043256, endtime: 41043256, seqnum: 0, connid: 0 98 13:09:39,9089176 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56091 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41043259, endtime: 41043260, seqnum: 0, connid: 0 98 13:09:39,9400997 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56091 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41043262, endtime: 41043263, seqnum: 0, connid: 0 98 13:09:39,9717932 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56091 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41043265, endtime: 41043266, seqnum: 0, connid: 0 98 13:09:40,0028595 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56091 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41043269, endtime: 41043269, seqnum: 0, connid: 0 98 13:09:40,0159909 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56091 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41043270, endtime: 41043270, seqnum: 0, connid: 0 98 13:09:40,0384956 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56091 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41043272, endtime: 41043272, seqnum: 0, connid: 0 98 13:09:40,0468965 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56091 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41043273, endtime: 41043273, seqnum: 0, connid: 0 98 13:09:40,0549982 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56091 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41043274, endtime: 41043274, seqnum: 0, connid: 0 98 13:09:40,0783407 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56091 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41043276, endtime: 41043276, seqnum: 0, connid: 0 98 13:09:40,0955284 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56091 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41043278, endtime: 41043278, seqnum: 0, connid: 0 98 13:09:40,1114068 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56091 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41043280, endtime: 41043280, seqnum: 0, connid: 0 98 13:09:40,1486290 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56091 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41043283, endtime: 41043283, seqnum: 0, connid: 0 98 13:09:40,1721322 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56091 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41043286, endtime: 41043286, seqnum: 0, connid: 0 98 13:09:40,1879454 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56091 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41043287, endtime: 41043287, seqnum: 0, connid: 0 98 13:09:40,2048301 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56091 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41043289, endtime: 41043289, seqnum: 0, connid: 0 98 13:09:40,2394413 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56091 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41043292, endtime: 41043293, seqnum: 0, connid: 0 98 13:09:40,2518445 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56091 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41043294, endtime: 41043294, seqnum: 0, connid: 0 98 13:09:40,2826352 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56091 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41043297, endtime: 41043297, seqnum: 0, connid: 0 98 13:09:40,2985127 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56091 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41043298, endtime: 41043298, seqnum: 0, connid: 0 98 13:09:40,3136100 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56091 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41043300, endtime: 41043300, seqnum: 0, connid: 0 98 13:09:40,3201178 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56091 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41043301, endtime: 41043301, seqnum: 0, connid: 0 98 13:09:40,3431564 MCLauncher.exe 6080 TCP Reconnect WIN-0UOTFKKVN1S:56093 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 0, seqnum: 0, connid: 0 98 13:09:40,3454859 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56091 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41043303, endtime: 41043303, seqnum: 0, connid: 0 98 13:09:40,3597490 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56091 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41043304, endtime: 41043305, seqnum: 0, connid: 0 98 13:09:40,3752326 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56091 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41043306, endtime: 41043306, seqnum: 0, connid: 0 98 13:09:40,3921205 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56091 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41043308, endtime: 41043308, seqnum: 0, connid: 0 98 13:09:40,4074966 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56091 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41043309, endtime: 41043309, seqnum: 0, connid: 0 98 13:09:40,7181717 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56075 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41043051, endtime: 41043340, seqnum: 0, connid: 0 98 13:09:40,7181911 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56075 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41043053, endtime: 41043340, seqnum: 0, connid: 0 98 13:09:40,7181989 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56075 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41043055, endtime: 41043340, seqnum: 0, connid: 0 98 13:09:40,7182063 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56075 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41043056, endtime: 41043340, seqnum: 0, connid: 0 98 13:09:40,7182124 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56075 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41043058, endtime: 41043340, seqnum: 0, connid: 0 98 13:09:40,7182194 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56075 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41043059, endtime: 41043340, seqnum: 0, connid: 0 98 13:09:40,7182252 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56075 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41043061, endtime: 41043340, seqnum: 0, connid: 0 98 13:09:40,7182318 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56075 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41043062, endtime: 41043340, seqnum: 0, connid: 0 98 13:09:40,7182374 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56075 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41043064, endtime: 41043340, seqnum: 0, connid: 0 98 13:09:40,7182678 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56075 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41043066, endtime: 41043340, seqnum: 0, connid: 0 98 13:09:40,7182739 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56075 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41043067, endtime: 41043340, seqnum: 0, connid: 0 98 13:09:40,7182806 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56075 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41043069, endtime: 41043340, seqnum: 0, connid: 0 98 13:09:40,7182864 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56075 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41043070, endtime: 41043340, seqnum: 0, connid: 0 98 13:09:41,1911430 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56091 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41043312, endtime: 41043388, seqnum: 0, connid: 0 98 13:09:41,1911635 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56091 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41043314, endtime: 41043388, seqnum: 0, connid: 0 98 13:09:41,1911718 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56091 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41043316, endtime: 41043388, seqnum: 0, connid: 0 98 13:09:41,1911798 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56091 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41043317, endtime: 41043388, seqnum: 0, connid: 0 98 13:09:41,1911859 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56091 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41043319, endtime: 41043388, seqnum: 0, connid: 0 98 13:09:41,1911931 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56091 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41043321, endtime: 41043388, seqnum: 0, connid: 0 98 13:09:41,1911986 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56091 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41043322, endtime: 41043388, seqnum: 0, connid: 0 98 13:09:41,1912058 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56091 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41043323, endtime: 41043388, seqnum: 0, connid: 0 98 13:09:41,1912117 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56091 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41043325, endtime: 41043388, seqnum: 0, connid: 0 98 13:09:41,1961948 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56091 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41043326, endtime: 41043388, seqnum: 0, connid: 0 98 13:09:41,1962111 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56091 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41043328, endtime: 41043388, seqnum: 0, connid: 0 98 13:09:41,1962200 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56091 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41043330, endtime: 41043388, seqnum: 0, connid: 0 98 13:09:41,1962269 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56091 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41043331, endtime: 41043388, seqnum: 0, connid: 0 98 13:09:42,1033444 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56041 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41043176, endtime: 41043479, seqnum: 0, connid: 0 98 13:09:42,1033655 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56041 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41043178, endtime: 41043479, seqnum: 0, connid: 0 98 13:09:42,1033735 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56041 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41043180, endtime: 41043479, seqnum: 0, connid: 0 98 13:09:42,1033813 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56041 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41043183, endtime: 41043479, seqnum: 0, connid: 0 98 13:09:42,1033874 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56041 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41043184, endtime: 41043479, seqnum: 0, connid: 0 98 13:09:42,1033940 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56041 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41043186, endtime: 41043479, seqnum: 0, connid: 0 98 13:09:42,1033999 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56041 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41043187, endtime: 41043479, seqnum: 0, connid: 0 98 13:09:42,1034071 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56041 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41043189, endtime: 41043479, seqnum: 0, connid: 0 98 13:09:42,1034126 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56041 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41043190, endtime: 41043479, seqnum: 0, connid: 0 98 13:09:42,1034420 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56041 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41043192, endtime: 41043479, seqnum: 0, connid: 0 98 13:09:42,1034481 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56041 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41043194, endtime: 41043479, seqnum: 0, connid: 0 98 13:09:42,1034550 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56041 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41043195, endtime: 41043479, seqnum: 0, connid: 0 98 13:09:42,1034608 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56041 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41043197, endtime: 41043479, seqnum: 0, connid: 0 98 13:09:42,6401289 MCLauncher.exe 6080 TCP Reconnect WIN-0UOTFKKVN1S:56094 -> 54.36.38.171:25565 SUCCESS Length: 0, seqnum: 0, connid: 0 98 13:09:42,8534108 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56075 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41043340, endtime: 41043554, seqnum: 0, connid: 0 98 13:09:42,8534291 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56075 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41043342, endtime: 41043554, seqnum: 0, connid: 0 98 13:09:42,8534366 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56075 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41043345, endtime: 41043554, seqnum: 0, connid: 0 98 13:09:42,8534440 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56075 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41043347, endtime: 41043554, seqnum: 0, connid: 0 98 13:09:42,8534499 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56075 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41043350, endtime: 41043554, seqnum: 0, connid: 0 98 13:09:42,8534568 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56075 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41043351, endtime: 41043554, seqnum: 0, connid: 0 98 13:09:42,8534621 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56075 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41043353, endtime: 41043554, seqnum: 0, connid: 0 98 13:09:42,8534690 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56075 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41043356, endtime: 41043554, seqnum: 0, connid: 0 98 13:09:42,8534742 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56075 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41043358, endtime: 41043554, seqnum: 0, connid: 0 98 13:09:42,8535031 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56075 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41043361, endtime: 41043554, seqnum: 0, connid: 0 98 13:09:42,8535089 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56075 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41043364, endtime: 41043554, seqnum: 0, connid: 0 98 13:09:42,8535155 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56075 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41043365, endtime: 41043554, seqnum: 0, connid: 0 98 13:09:42,8535208 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56075 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41043367, endtime: 41043554, seqnum: 0, connid: 0 98 13:09:42,9254354 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56075 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41043554, endtime: 41043561, seqnum: 0, connid: 0 98 13:09:43,0940913 MCLauncher.exe 6080 TCP Reconnect WIN-0UOTFKKVN1S:56088 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 0, seqnum: 0, connid: 0 98 13:09:43,3216837 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56041 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41043479, endtime: 41043601, seqnum: 0, connid: 0 98 13:09:43,3217042 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56041 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41043480, endtime: 41043601, seqnum: 0, connid: 0 98 13:09:43,3217120 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56041 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41043481, endtime: 41043601, seqnum: 0, connid: 0 98 13:09:43,3217200 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56041 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41043483, endtime: 41043601, seqnum: 0, connid: 0 98 13:09:43,3217261 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56041 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41043484, endtime: 41043601, seqnum: 0, connid: 0 98 13:09:43,3217330 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56041 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41043486, endtime: 41043601, seqnum: 0, connid: 0 98 13:09:43,3217389 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56041 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41043487, endtime: 41043601, seqnum: 0, connid: 0 98 13:09:43,3217458 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56041 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41043489, endtime: 41043601, seqnum: 0, connid: 0 98 13:09:43,3217513 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56041 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41043490, endtime: 41043601, seqnum: 0, connid: 0 98 13:09:43,3217810 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56041 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41043492, endtime: 41043601, seqnum: 0, connid: 0 98 13:09:43,3217871 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56041 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41043494, endtime: 41043601, seqnum: 0, connid: 0 98 13:09:43,3217940 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56041 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41043495, endtime: 41043601, seqnum: 0, connid: 0 98 13:09:43,3217995 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56041 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41043497, endtime: 41043601, seqnum: 0, connid: 0 98 13:09:43,8675803 MCLauncher.exe 6080 TCP TCPCopy WIN-0UOTFKKVN1S:54920 -> sheltex.company:8000 SUCCESS Length: 2, seqnum: 0, connid: 0 98 13:09:43,8675922 MCLauncher.exe 6080 TCP Receive WIN-0UOTFKKVN1S:54920 -> sheltex.company:8000 SUCCESS Length: 2, seqnum: 0, connid: 0 98 13:09:43,8679712 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54920 -> sheltex.company:8000 SUCCESS Length: 2, startime: 41043655, endtime: 41043655, seqnum: 0, connid: 0 98 13:09:45,2086302 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56075 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41043555, endtime: 41043789, seqnum: 0, connid: 0 98 13:09:45,2086465 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56075 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41043556, endtime: 41043789, seqnum: 0, connid: 0 98 13:09:45,2086548 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56075 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41043558, endtime: 41043789, seqnum: 0, connid: 0 98 13:09:45,2086612 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56075 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41043559, endtime: 41043789, seqnum: 0, connid: 0 98 13:09:45,2086681 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56075 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41043561, endtime: 41043789, seqnum: 0, connid: 0 98 13:09:45,2086739 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56075 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41043564, endtime: 41043789, seqnum: 0, connid: 0 98 13:09:45,2086812 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56075 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41043565, endtime: 41043789, seqnum: 0, connid: 0 98 13:09:45,2086867 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56075 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41043567, endtime: 41043789, seqnum: 0, connid: 0 98 13:09:45,2086939 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56075 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41043569, endtime: 41043789, seqnum: 0, connid: 0 98 13:09:45,2087598 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56075 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41043570, endtime: 41043789, seqnum: 0, connid: 0 98 13:09:45,2107721 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56075 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41043572, endtime: 41043790, seqnum: 0, connid: 0 98 13:09:45,2107868 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56075 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41043573, endtime: 41043790, seqnum: 0, connid: 0 98 13:09:45,2911879 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56075 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41043574, endtime: 41043798, seqnum: 0, connid: 0 98 13:09:45,2912070 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56075 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41043789, endtime: 41043798, seqnum: 0, connid: 0 98 13:09:45,2912161 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56075 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41043790, endtime: 41043798, seqnum: 0, connid: 0 98 13:09:45,2912225 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56075 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41043792, endtime: 41043798, seqnum: 0, connid: 0 98 13:09:45,2912300 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56075 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41043794, endtime: 41043798, seqnum: 0, connid: 0 98 13:09:45,2912355 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56075 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41043795, endtime: 41043798, seqnum: 0, connid: 0 98 13:09:45,2912425 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56075 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41043797, endtime: 41043798, seqnum: 0, connid: 0 98 13:09:45,2976776 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56075 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41043798, endtime: 41043798, seqnum: 0, connid: 0 98 13:09:45,3139353 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56075 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41043800, endtime: 41043800, seqnum: 0, connid: 0 98 13:09:45,3191304 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56075 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41043801, endtime: 41043801, seqnum: 0, connid: 0 98 13:09:45,3445190 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56075 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41043803, endtime: 41043803, seqnum: 0, connid: 0 98 13:09:45,3595215 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56075 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41043804, endtime: 41043805, seqnum: 0, connid: 0 98 13:09:45,3751323 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56075 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41043806, endtime: 41043806, seqnum: 0, connid: 0 98 13:09:46,3432717 MCLauncher.exe 6080 TCP Reconnect WIN-0UOTFKKVN1S:56093 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 0, seqnum: 0, connid: 0 98 13:09:46,7403390 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56075 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41043808, endtime: 41043943, seqnum: 0, connid: 0 98 13:09:46,7403592 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56075 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41043811, endtime: 41043943, seqnum: 0, connid: 0 98 13:09:46,7403675 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56075 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41043814, endtime: 41043943, seqnum: 0, connid: 0 98 13:09:46,7403753 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56075 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41043816, endtime: 41043943, seqnum: 0, connid: 0 98 13:09:46,7403814 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56075 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41043817, endtime: 41043943, seqnum: 0, connid: 0 98 13:09:46,7403886 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56075 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41043819, endtime: 41043943, seqnum: 0, connid: 0 98 13:09:46,7403944 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56075 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41043820, endtime: 41043943, seqnum: 0, connid: 0 98 13:09:46,7404013 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56075 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41043822, endtime: 41043943, seqnum: 0, connid: 0 98 13:09:46,7404071 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56075 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41043823, endtime: 41043943, seqnum: 0, connid: 0 98 13:09:46,7404373 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56075 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41043825, endtime: 41043943, seqnum: 0, connid: 0 98 13:09:46,7404434 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56075 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41043827, endtime: 41043943, seqnum: 0, connid: 0 98 13:09:46,7404503 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56075 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41043828, endtime: 41043943, seqnum: 0, connid: 0 98 13:09:46,7404562 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56075 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41043831, endtime: 41043943, seqnum: 0, connid: 0 98 13:09:47,2189356 MCLauncher.exe 6080 TCP Reconnect WIN-0UOTFKKVN1S:56097 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 0, seqnum: 0, connid: 0 98 13:09:47,5811545 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56041 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41043601, endtime: 41044027, seqnum: 0, connid: 0 98 13:09:47,5811755 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56041 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41043603, endtime: 41044027, seqnum: 0, connid: 0 98 13:09:47,5811838 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56041 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41043606, endtime: 41044027, seqnum: 0, connid: 0 98 13:09:47,5811922 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56041 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41043608, endtime: 41044027, seqnum: 0, connid: 0 98 13:09:47,5811985 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56041 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41043611, endtime: 41044027, seqnum: 0, connid: 0 98 13:09:47,5812057 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56041 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41043612, endtime: 41044027, seqnum: 0, connid: 0 98 13:09:47,5812115 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56041 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41043617, endtime: 41044027, seqnum: 0, connid: 0 98 13:09:47,5812187 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56041 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41043620, endtime: 41044027, seqnum: 0, connid: 0 98 13:09:47,5812248 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56041 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41043624, endtime: 41044027, seqnum: 0, connid: 0 98 13:09:47,5812537 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56041 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41043625, endtime: 41044027, seqnum: 0, connid: 0 98 13:09:47,5812600 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56041 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41043627, endtime: 41044027, seqnum: 0, connid: 0 98 13:09:47,5812672 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56041 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41043628, endtime: 41044027, seqnum: 0, connid: 0 98 13:09:47,5812731 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56041 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41043631, endtime: 41044027, seqnum: 0, connid: 0 98 13:09:48,6558931 MCLauncher.exe 6080 TCP Reconnect WIN-0UOTFKKVN1S:56094 -> 54.36.38.171:25565 SUCCESS Length: 0, seqnum: 0, connid: 0 98 13:09:50,0514374 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56041 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41044027, endtime: 41044274, seqnum: 0, connid: 0 98 13:09:50,0514568 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56041 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41044028, endtime: 41044274, seqnum: 0, connid: 0 98 13:09:50,0514646 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56041 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41044031, endtime: 41044274, seqnum: 0, connid: 0 98 13:09:50,0514718 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56041 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41044033, endtime: 41044274, seqnum: 0, connid: 0 98 13:09:50,0514776 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56041 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41044034, endtime: 41044274, seqnum: 0, connid: 0 98 13:09:50,0514848 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56041 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41044036, endtime: 41044274, seqnum: 0, connid: 0 98 13:09:50,0514904 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56041 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41044039, endtime: 41044274, seqnum: 0, connid: 0 98 13:09:50,0514973 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56041 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41044040, endtime: 41044274, seqnum: 0, connid: 0 98 13:09:50,0515028 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56041 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41044042, endtime: 41044274, seqnum: 0, connid: 0 98 13:09:50,0515571 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56041 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41044046, endtime: 41044274, seqnum: 0, connid: 0 98 13:09:50,0515638 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56041 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41044048, endtime: 41044274, seqnum: 0, connid: 0 98 13:09:50,0515713 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56041 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41044050, endtime: 41044274, seqnum: 0, connid: 0 98 13:09:50,0515771 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56041 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41044053, endtime: 41044274, seqnum: 0, connid: 0 98 13:09:50,1119240 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56075 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41043943, endtime: 41044280, seqnum: 0, connid: 0 98 13:09:50,1119415 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56075 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41043944, endtime: 41044280, seqnum: 0, connid: 0 98 13:09:50,1119490 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56075 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41043945, endtime: 41044280, seqnum: 0, connid: 0 98 13:09:50,1119567 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56075 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41043947, endtime: 41044280, seqnum: 0, connid: 0 98 13:09:50,1119625 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56075 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41043948, endtime: 41044280, seqnum: 0, connid: 0 98 13:09:50,1119695 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56075 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41043951, endtime: 41044280, seqnum: 0, connid: 0 98 13:09:50,1119750 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56075 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41043954, endtime: 41044280, seqnum: 0, connid: 0 98 13:09:50,1119819 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56075 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41043955, endtime: 41044280, seqnum: 0, connid: 0 98 13:09:50,1119875 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56075 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41043956, endtime: 41044280, seqnum: 0, connid: 0 98 13:09:50,1120279 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56075 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41043960, endtime: 41044280, seqnum: 0, connid: 0 98 13:09:50,1120354 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56075 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41043961, endtime: 41044280, seqnum: 0, connid: 0 98 13:09:50,1120429 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56075 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41043963, endtime: 41044280, seqnum: 0, connid: 0 98 13:09:50,1120490 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56075 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41043966, endtime: 41044280, seqnum: 0, connid: 0 98 13:09:50,1259572 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56041 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41044274, endtime: 41044281, seqnum: 0, connid: 0 98 13:09:50,4683287 MCLauncher.exe 6080 TCP Reconnect WIN-0UOTFKKVN1S:56101 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 0, seqnum: 0, connid: 0 98 13:09:51,8601103 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56075 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41044280, endtime: 41044455, seqnum: 0, connid: 0 98 13:09:51,8601294 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56075 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41044283, endtime: 41044455, seqnum: 0, connid: 0 98 13:09:51,8601374 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56075 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41044287, endtime: 41044455, seqnum: 0, connid: 0 98 13:09:51,8601455 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56075 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41044288, endtime: 41044455, seqnum: 0, connid: 0 98 13:09:51,8601518 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56075 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41044289, endtime: 41044455, seqnum: 0, connid: 0 98 13:09:51,8601591 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56075 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41044291, endtime: 41044455, seqnum: 0, connid: 0 98 13:09:51,8601649 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56075 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41044292, endtime: 41044455, seqnum: 0, connid: 0 98 13:09:51,8601718 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56075 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41044294, endtime: 41044455, seqnum: 0, connid: 0 98 13:09:51,8601776 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56075 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41044295, endtime: 41044455, seqnum: 0, connid: 0 98 13:09:51,8602078 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56075 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41044298, endtime: 41044455, seqnum: 0, connid: 0 98 13:09:51,8602142 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56075 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41044300, endtime: 41044455, seqnum: 0, connid: 0 98 13:09:51,8602211 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56075 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41044301, endtime: 41044455, seqnum: 0, connid: 0 98 13:09:51,8602269 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56075 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41044303, endtime: 41044455, seqnum: 0, connid: 0 98 13:09:52,7816746 MCLauncher.exe 6080 TCP Reconnect WIN-0UOTFKKVN1S:56103 -> 54.36.38.171:25565 SUCCESS Length: 0, seqnum: 0, connid: 0 98 13:09:53,2336893 MCLauncher.exe 6080 TCP Reconnect WIN-0UOTFKKVN1S:56097 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 0, seqnum: 0, connid: 0 98 13:09:53,2647850 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56041 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41044274, endtime: 41044595, seqnum: 0, connid: 0 98 13:09:53,2648019 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56041 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41044276, endtime: 41044595, seqnum: 0, connid: 0 98 13:09:53,2648110 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56041 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41044278, endtime: 41044595, seqnum: 0, connid: 0 98 13:09:53,2648293 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56041 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41044280, endtime: 41044595, seqnum: 0, connid: 0 98 13:09:53,2648432 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56041 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41044283, endtime: 41044595, seqnum: 0, connid: 0 98 13:09:53,2648537 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56041 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41044287, endtime: 41044595, seqnum: 0, connid: 0 98 13:09:53,2648626 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56041 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41044288, endtime: 41044595, seqnum: 0, connid: 0 98 13:09:53,2648687 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56041 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41044289, endtime: 41044595, seqnum: 0, connid: 0 98 13:09:53,2648764 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56041 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41044291, endtime: 41044595, seqnum: 0, connid: 0 98 13:09:53,2649535 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56041 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41044292, endtime: 41044595, seqnum: 0, connid: 0 98 13:09:53,2649618 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56041 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41044294, endtime: 41044595, seqnum: 0, connid: 0 98 13:09:53,2649676 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56041 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41044295, endtime: 41044595, seqnum: 0, connid: 0 98 13:09:53,4481482 MCLauncher.exe 6080 TCP Disconnect WIN-0UOTFKKVN1S:56066 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 0, seqnum: 0, connid: 0 98 13:09:53,9443245 MCLauncher.exe 6080 TCP TCPCopy WIN-0UOTFKKVN1S:54920 -> sheltex.company:8000 SUCCESS Length: 2, seqnum: 0, connid: 0 98 13:09:53,9443367 MCLauncher.exe 6080 TCP Receive WIN-0UOTFKKVN1S:54920 -> sheltex.company:8000 SUCCESS Length: 2, seqnum: 0, connid: 0 98 13:09:53,9447099 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54920 -> sheltex.company:8000 SUCCESS Length: 2, startime: 41044663, endtime: 41044663, seqnum: 0, connid: 0 98 13:09:54,3386019 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56075 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41044455, endtime: 41044702, seqnum: 0, connid: 0 98 13:09:54,3386290 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56075 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41044456, endtime: 41044702, seqnum: 0, connid: 0 98 13:09:54,3386401 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56075 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41044459, endtime: 41044702, seqnum: 0, connid: 0 98 13:09:54,3386523 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56075 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41044463, endtime: 41044702, seqnum: 0, connid: 0 98 13:09:54,3386623 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56075 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41044465, endtime: 41044702, seqnum: 0, connid: 0 98 13:09:54,3386731 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56075 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41044467, endtime: 41044702, seqnum: 0, connid: 0 98 13:09:54,3386797 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56075 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41044469, endtime: 41044702, seqnum: 0, connid: 0 98 13:09:54,3386875 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56075 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41044472, endtime: 41044702, seqnum: 0, connid: 0 98 13:09:54,3386936 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56075 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41044473, endtime: 41044702, seqnum: 0, connid: 0 98 13:09:54,3387302 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56075 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41044474, endtime: 41044702, seqnum: 0, connid: 0 98 13:09:54,3387362 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56075 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41044477, endtime: 41044702, seqnum: 0, connid: 0 98 13:09:54,3387435 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56075 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41044478, endtime: 41044702, seqnum: 0, connid: 0 98 13:09:54,3387495 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56075 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41044481, endtime: 41044702, seqnum: 0, connid: 0 98 13:09:54,4214380 MCLauncher.exe 6080 TCP Reconnect WIN-0UOTFKKVN1S:56106 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 0, seqnum: 0, connid: 0 98 13:09:55,1314086 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56091 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41043388, endtime: 41044782, seqnum: 0, connid: 0 98 13:09:55,1314274 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56091 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41043389, endtime: 41044782, seqnum: 0, connid: 0 98 13:09:55,1314374 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56091 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41043391, endtime: 41044782, seqnum: 0, connid: 0 98 13:09:55,1314449 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56091 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41043392, endtime: 41044782, seqnum: 0, connid: 0 98 13:09:55,1314529 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56091 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41043394, endtime: 41044782, seqnum: 0, connid: 0 98 13:09:55,1314598 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56091 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41043395, endtime: 41044782, seqnum: 0, connid: 0 98 13:09:55,1336184 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56091 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41043397, endtime: 41044782, seqnum: 0, connid: 0 98 13:09:55,1336289 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56091 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41043400, endtime: 41044782, seqnum: 0, connid: 0 98 13:09:55,1336369 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56091 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41043401, endtime: 41044782, seqnum: 0, connid: 0 98 13:09:55,1336430 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56091 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41043404, endtime: 41044782, seqnum: 0, connid: 0 98 13:09:55,1336499 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56091 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41043405, endtime: 41044782, seqnum: 0, connid: 0 98 13:09:55,1336555 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56091 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41043406, endtime: 41044782, seqnum: 0, connid: 0 98 13:09:55,1336624 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56091 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41043408, endtime: 41044782, seqnum: 0, connid: 0 98 13:09:56,4842056 MCLauncher.exe 6080 TCP Reconnect WIN-0UOTFKKVN1S:56101 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 0, seqnum: 0, connid: 0 98 13:09:57,2820974 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56041 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41044298, endtime: 41044997, seqnum: 0, connid: 0 98 13:09:57,2821154 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56041 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41044595, endtime: 41044997, seqnum: 0, connid: 0 98 13:09:57,2821237 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56041 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41044597, endtime: 41044997, seqnum: 0, connid: 0 98 13:09:57,2821301 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56041 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41044598, endtime: 41044997, seqnum: 0, connid: 0 98 13:09:57,2821370 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56041 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41044600, endtime: 41044997, seqnum: 0, connid: 0 98 13:09:57,2821426 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56041 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41044600, endtime: 41044997, seqnum: 0, connid: 0 98 13:09:57,2821492 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56041 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41044603, endtime: 41044997, seqnum: 0, connid: 0 98 13:09:57,2821548 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56041 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41044605, endtime: 41044997, seqnum: 0, connid: 0 98 13:09:57,2821614 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56041 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41044606, endtime: 41044997, seqnum: 0, connid: 0 98 13:09:57,2821669 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56041 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41044608, endtime: 41044997, seqnum: 0, connid: 0 98 13:09:57,2821988 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56041 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41044611, endtime: 41044997, seqnum: 0, connid: 0 98 13:09:57,2822046 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56041 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41044614, endtime: 41044997, seqnum: 0, connid: 0 98 13:09:57,2822113 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56041 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41044616, endtime: 41044997, seqnum: 0, connid: 0 98 13:09:57,2835658 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56041 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41044997, endtime: 41044997, seqnum: 0, connid: 0 98 13:09:57,3208013 MCLauncher.exe 6080 TCP Reconnect WIN-0UOTFKKVN1S:56108 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 0, seqnum: 0, connid: 0 98 13:09:58,6383995 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56075 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41044702, endtime: 41045132, seqnum: 0, connid: 0 98 13:09:58,6384184 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56075 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41044705, endtime: 41045132, seqnum: 0, connid: 0 98 13:09:58,6384261 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56075 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41044706, endtime: 41045132, seqnum: 0, connid: 0 98 13:09:58,6384339 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56075 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41044709, endtime: 41045132, seqnum: 0, connid: 0 98 13:09:58,6384397 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56075 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41044711, endtime: 41045132, seqnum: 0, connid: 0 98 13:09:58,6384466 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56075 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41044712, endtime: 41045132, seqnum: 0, connid: 0 98 13:09:58,6384522 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56075 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41044715, endtime: 41045132, seqnum: 0, connid: 0 98 13:09:58,6384591 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56075 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41044717, endtime: 41045132, seqnum: 0, connid: 0 98 13:09:58,6384646 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56075 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41044719, endtime: 41045132, seqnum: 0, connid: 0 98 13:09:58,6385095 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56075 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41044727, endtime: 41045132, seqnum: 0, connid: 0 98 13:09:58,6385164 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56075 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41044730, endtime: 41045132, seqnum: 0, connid: 0 98 13:09:58,6385234 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56075 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41044731, endtime: 41045132, seqnum: 0, connid: 0 98 13:09:58,6385289 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56075 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41044735, endtime: 41045132, seqnum: 0, connid: 0 98 13:09:58,7138881 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56075 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41045132, endtime: 41045140, seqnum: 0, connid: 0 98 13:09:58,7966714 MCLauncher.exe 6080 TCP Reconnect WIN-0UOTFKKVN1S:56103 -> 54.36.38.171:25565 SUCCESS Length: 0, seqnum: 0, connid: 0 98 13:10:00,0697265 MCLauncher.exe 6080 RegOpenKey HKLM\Software\WOW6432Node\Policies\Microsoft\MUI\Settings REPARSE Desired Access: Read 98 13:10:00,0697492 MCLauncher.exe 6080 RegOpenKey HKLM\SOFTWARE\Policies\Microsoft\MUI\Settings NAME NOT FOUND Desired Access: Read 98 13:10:00,0697791 MCLauncher.exe 6080 RegOpenKey HKCU SUCCESS Desired Access: Maximum Allowed, Granted Access: All Access 98 13:10:00,0698029 MCLauncher.exe 6080 RegQueryKey HKCU SUCCESS Query: HandleTags, HandleTags: 0x0 98 13:10:00,0698284 MCLauncher.exe 6080 RegQueryKey HKCU SUCCESS Query: Name 98 13:10:00,0698442 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Policies\Microsoft\Control Panel\Desktop NAME NOT FOUND Desired Access: Read 98 13:10:00,0698672 MCLauncher.exe 6080 RegQueryKey HKCU SUCCESS Query: HandleTags, HandleTags: 0x0 98 13:10:00,0698752 MCLauncher.exe 6080 RegQueryKey HKCU SUCCESS Query: Name 98 13:10:00,0698833 MCLauncher.exe 6080 RegOpenKey HKCU\Control Panel\Desktop SUCCESS Desired Access: Read 98 13:10:00,0698977 MCLauncher.exe 6080 RegSetInfoKey HKCU\Control Panel\Desktop SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 98 13:10:00,0699041 MCLauncher.exe 6080 RegQueryValue HKCU\Control Panel\Desktop\PreferredUILanguages NAME NOT FOUND Length: 12 98 13:10:00,0699284 MCLauncher.exe 6080 RegCloseKey HKCU\Control Panel\Desktop SUCCESS 98 13:10:00,0699337 MCLauncher.exe 6080 RegCloseKey HKCU SUCCESS 98 13:10:00,0699459 MCLauncher.exe 6080 RegOpenKey HKLM\Software\WOW6432Node\Policies\Microsoft\MUI\Settings REPARSE Desired Access: Read 98 13:10:00,0699534 MCLauncher.exe 6080 RegOpenKey HKLM\SOFTWARE\Policies\Microsoft\MUI\Settings NAME NOT FOUND Desired Access: Read 98 13:10:00,0699681 MCLauncher.exe 6080 RegOpenKey HKCU SUCCESS Desired Access: Maximum Allowed, Granted Access: All Access 98 13:10:00,0699819 MCLauncher.exe 6080 RegQueryKey HKCU SUCCESS Query: HandleTags, HandleTags: 0x0 98 13:10:00,0699888 MCLauncher.exe 6080 RegQueryKey HKCU SUCCESS Query: Name 98 13:10:00,0699963 MCLauncher.exe 6080 RegOpenKey HKCU\Software\Policies\Microsoft\Control Panel\Desktop NAME NOT FOUND Desired Access: Read 98 13:10:00,0700091 MCLauncher.exe 6080 RegQueryKey HKCU SUCCESS Query: HandleTags, HandleTags: 0x0 98 13:10:00,0700160 MCLauncher.exe 6080 RegQueryKey HKCU SUCCESS Query: Name 98 13:10:00,0700229 MCLauncher.exe 6080 RegOpenKey HKCU\Control Panel\Desktop\LanguageConfiguration SUCCESS Desired Access: Read 98 13:10:00,0700348 MCLauncher.exe 6080 RegSetInfoKey HKCU\Control Panel\Desktop\LanguageConfiguration SUCCESS KeySetInformationClass: KeySetHandleTagsInformation, Length: 0 98 13:10:00,0700401 MCLauncher.exe 6080 RegEnumValue HKCU\Control Panel\Desktop\LanguageConfiguration NO MORE ENTRIES Index: 0, Length: 512 98 13:10:00,0700465 MCLauncher.exe 6080 RegCloseKey HKCU\Control Panel\Desktop\LanguageConfiguration SUCCESS 98 13:10:00,0700509 MCLauncher.exe 6080 RegCloseKey HKCU SUCCESS 98 13:10:00,4379040 MCLauncher.exe 6080 TCP Reconnect WIN-0UOTFKKVN1S:56106 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 0, seqnum: 0, connid: 0 98 13:10:00,5030333 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56041 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41044998, endtime: 41045319, seqnum: 0, connid: 0 98 13:10:00,5030496 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56041 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41045000, endtime: 41045319, seqnum: 0, connid: 0 98 13:10:00,5030568 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56041 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41045000, endtime: 41045319, seqnum: 0, connid: 0 98 13:10:00,5030643 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56041 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41045003, endtime: 41045319, seqnum: 0, connid: 0 98 13:10:00,5030701 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56041 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41045005, endtime: 41045319, seqnum: 0, connid: 0 98 13:10:00,5030770 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56041 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41045006, endtime: 41045319, seqnum: 0, connid: 0 98 13:10:00,5030826 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56041 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41045009, endtime: 41045319, seqnum: 0, connid: 0 98 13:10:00,5030892 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56041 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41045013, endtime: 41045319, seqnum: 0, connid: 0 98 13:10:00,5030948 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56041 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41045014, endtime: 41045319, seqnum: 0, connid: 0 98 13:10:00,5031790 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56041 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41045016, endtime: 41045319, seqnum: 0, connid: 0 98 13:10:00,5031892 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56041 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41045017, endtime: 41045319, seqnum: 0, connid: 0 98 13:10:00,5032003 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56041 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41045019, endtime: 41045319, seqnum: 0, connid: 0 98 13:10:00,5138551 MCLauncher.exe 6080 TCP Connect WIN-0UOTFKKVN1S:56106 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 0, mss: 1460, sackopt: 0, tsopt: 0, wsopt: 0, rcvwin: 64240, rcvwinscale: 0, sndwinscale: 0, seqnum: 0, connid: 0 98 13:10:00,5144532 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56106 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41045320, endtime: 41045320, seqnum: 0, connid: 0 98 13:10:00,5324428 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56106 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41045322, endtime: 41045322, seqnum: 0, connid: 0 98 13:10:00,5324641 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56075 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41045136, endtime: 41045322, seqnum: 0, connid: 0 98 13:10:00,5324716 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56075 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41045137, endtime: 41045322, seqnum: 0, connid: 0 98 13:10:00,5324790 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56075 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41045139, endtime: 41045322, seqnum: 0, connid: 0 98 13:10:00,5324849 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56075 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41045142, endtime: 41045322, seqnum: 0, connid: 0 98 13:10:00,5324918 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56075 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41045144, endtime: 41045322, seqnum: 0, connid: 0 98 13:10:00,5324973 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56075 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41045147, endtime: 41045322, seqnum: 0, connid: 0 98 13:10:00,5325040 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56075 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41045148, endtime: 41045322, seqnum: 0, connid: 0 98 13:10:00,5325095 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56075 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41045150, endtime: 41045322, seqnum: 0, connid: 0 98 13:10:00,5325805 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56075 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41045151, endtime: 41045322, seqnum: 0, connid: 0 98 13:10:00,5325877 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56075 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41045153, endtime: 41045322, seqnum: 0, connid: 0 98 13:10:00,5325946 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56075 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41045155, endtime: 41045322, seqnum: 0, connid: 0 98 13:10:00,5326004 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56075 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41045158, endtime: 41045322, seqnum: 0, connid: 0 98 13:10:00,5355932 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56075 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41045160, endtime: 41045322, seqnum: 0, connid: 0 98 13:10:00,5504774 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56106 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41045323, endtime: 41045324, seqnum: 0, connid: 0 98 13:10:00,5773993 MCLauncher.exe 6080 TCP Reconnect WIN-0UOTFKKVN1S:56109 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 0, seqnum: 0, connid: 0 98 13:10:00,5787308 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56106 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41045326, endtime: 41045326, seqnum: 0, connid: 0 98 13:10:00,5932144 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56041 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41045020, endtime: 41045328, seqnum: 0, connid: 0 98 13:10:00,5934497 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56106 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41045328, endtime: 41045328, seqnum: 0, connid: 0 98 13:10:00,6111909 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56106 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41045329, endtime: 41045330, seqnum: 0, connid: 0 98 13:10:00,6280445 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56106 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41045331, endtime: 41045331, seqnum: 0, connid: 0 98 13:10:00,6416674 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56106 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41045333, endtime: 41045333, seqnum: 0, connid: 0 98 13:10:00,6744240 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56106 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41045336, endtime: 41045336, seqnum: 0, connid: 0 98 13:10:00,7071765 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56106 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41045339, endtime: 41045339, seqnum: 0, connid: 0 98 13:10:00,7215911 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56106 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41045340, endtime: 41045341, seqnum: 0, connid: 0 98 13:10:00,7344875 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56106 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41045342, endtime: 41045342, seqnum: 0, connid: 0 98 13:10:00,7524236 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56106 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41045344, endtime: 41045344, seqnum: 0, connid: 0 98 13:10:00,7832101 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56106 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41045347, endtime: 41045347, seqnum: 0, connid: 0 98 13:10:00,7969739 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56106 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41045348, endtime: 41045348, seqnum: 0, connid: 0 98 13:10:00,8143066 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56106 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41045350, endtime: 41045350, seqnum: 0, connid: 0 98 13:10:00,8281707 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56106 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41045351, endtime: 41045351, seqnum: 0, connid: 0 98 13:10:00,8447539 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56106 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41045353, endtime: 41045353, seqnum: 0, connid: 0 98 13:10:00,8774518 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56106 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41045356, endtime: 41045356, seqnum: 0, connid: 0 98 13:10:00,8916445 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56106 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41045358, endtime: 41045358, seqnum: 0, connid: 0 98 13:10:00,9297677 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56106 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41045361, endtime: 41045362, seqnum: 0, connid: 0 98 13:10:00,9421435 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56106 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41045362, endtime: 41045363, seqnum: 0, connid: 0 98 13:10:00,9700506 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56106 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41045365, endtime: 41045366, seqnum: 0, connid: 0 98 13:10:00,9841192 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56106 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41045367, endtime: 41045367, seqnum: 0, connid: 0 98 13:10:01,0004807 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56106 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41045369, endtime: 41045369, seqnum: 0, connid: 0 98 13:10:01,0166093 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56106 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41045370, endtime: 41045370, seqnum: 0, connid: 0 98 13:10:01,0343367 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56106 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41045372, endtime: 41045372, seqnum: 0, connid: 0 98 13:10:01,0483951 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56106 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41045373, endtime: 41045373, seqnum: 0, connid: 0 98 13:10:01,4897346 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56106 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41045374, endtime: 41045418, seqnum: 0, connid: 0 98 13:10:01,4897534 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56106 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41045376, endtime: 41045418, seqnum: 0, connid: 0 98 13:10:01,4897614 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56106 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41045378, endtime: 41045418, seqnum: 0, connid: 0 98 13:10:01,4897689 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56106 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41045380, endtime: 41045418, seqnum: 0, connid: 0 98 13:10:01,4897750 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56106 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41045381, endtime: 41045418, seqnum: 0, connid: 0 98 13:10:01,4897819 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56106 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41045383, endtime: 41045418, seqnum: 0, connid: 0 98 13:10:01,4897875 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56106 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41045384, endtime: 41045418, seqnum: 0, connid: 0 98 13:10:01,4897944 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56106 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41045387, endtime: 41045418, seqnum: 0, connid: 0 98 13:10:01,4897999 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56106 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41045389, endtime: 41045418, seqnum: 0, connid: 0 98 13:10:01,4900158 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56106 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41045391, endtime: 41045418, seqnum: 0, connid: 0 98 13:10:02,5064555 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56075 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41045322, endtime: 41045519, seqnum: 0, connid: 0 98 13:10:02,5064782 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56075 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41045323, endtime: 41045519, seqnum: 0, connid: 0 98 13:10:02,5064870 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56075 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41045326, endtime: 41045519, seqnum: 0, connid: 0 98 13:10:02,5064962 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56075 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41045328, endtime: 41045519, seqnum: 0, connid: 0 98 13:10:02,5065031 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56075 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41045329, endtime: 41045519, seqnum: 0, connid: 0 98 13:10:02,5065111 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56075 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41045331, endtime: 41045519, seqnum: 0, connid: 0 98 13:10:02,5065178 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56075 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41045333, endtime: 41045519, seqnum: 0, connid: 0 98 13:10:02,5065258 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56075 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41045336, endtime: 41045519, seqnum: 0, connid: 0 98 13:10:02,5065325 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56075 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41045339, endtime: 41045519, seqnum: 0, connid: 0 98 13:10:02,5066231 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56075 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41045340, endtime: 41045519, seqnum: 0, connid: 0 98 13:10:02,5066314 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56075 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41045342, endtime: 41045519, seqnum: 0, connid: 0 98 13:10:02,5066389 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56075 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41045344, endtime: 41045519, seqnum: 0, connid: 0 98 13:10:02,5067270 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56075 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41045347, endtime: 41045519, seqnum: 0, connid: 0 98 13:10:02,9055599 MCLauncher.exe 6080 TCP Reconnect WIN-0UOTFKKVN1S:56110 -> 54.36.38.171:25565 SUCCESS Length: 0, seqnum: 0, connid: 0 98 13:10:03,3441485 MCLauncher.exe 6080 TCP Reconnect WIN-0UOTFKKVN1S:56108 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 0, seqnum: 0, connid: 0 98 13:10:04,1206527 MCLauncher.exe 6080 TCP TCPCopy WIN-0UOTFKKVN1S:54920 -> sheltex.company:8000 SUCCESS Length: 2, seqnum: 0, connid: 0 98 13:10:04,1206652 MCLauncher.exe 6080 TCP Receive WIN-0UOTFKKVN1S:54920 -> sheltex.company:8000 SUCCESS Length: 2, seqnum: 0, connid: 0 98 13:10:04,1210181 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54920 -> sheltex.company:8000 SUCCESS Length: 2, startime: 41045681, endtime: 41045681, seqnum: 0, connid: 0 98 13:10:04,3194523 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56106 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41045392, endtime: 41045701, seqnum: 0, connid: 0 98 13:10:04,3194717 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56106 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41045395, endtime: 41045701, seqnum: 0, connid: 0 98 13:10:04,3194797 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56106 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41045397, endtime: 41045701, seqnum: 0, connid: 0 98 13:10:04,3194875 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56106 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41045418, endtime: 41045701, seqnum: 0, connid: 0 98 13:10:04,3194936 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56106 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41045419, endtime: 41045701, seqnum: 0, connid: 0 98 13:10:04,3195008 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56106 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41045420, endtime: 41045701, seqnum: 0, connid: 0 98 13:10:04,3195066 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56106 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41045422, endtime: 41045701, seqnum: 0, connid: 0 98 13:10:04,3195135 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56106 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41045423, endtime: 41045701, seqnum: 0, connid: 0 98 13:10:04,3195191 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56106 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41045425, endtime: 41045701, seqnum: 0, connid: 0 98 13:10:04,3195498 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56106 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41045426, endtime: 41045701, seqnum: 0, connid: 0 98 13:10:04,3195559 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56106 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41045428, endtime: 41045701, seqnum: 0, connid: 0 98 13:10:04,3195626 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56106 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41045430, endtime: 41045701, seqnum: 0, connid: 0 98 13:10:04,3195684 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56106 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41045431, endtime: 41045701, seqnum: 0, connid: 0 98 13:10:04,7351539 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56075 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41045519, endtime: 41045742, seqnum: 0, connid: 0 98 13:10:04,7351741 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56075 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41045520, endtime: 41045742, seqnum: 0, connid: 0 98 13:10:04,7351943 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56075 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41045522, endtime: 41045742, seqnum: 0, connid: 0 98 13:10:04,7352071 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56075 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41045523, endtime: 41045742, seqnum: 0, connid: 0 98 13:10:04,7352165 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56075 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41045526, endtime: 41045742, seqnum: 0, connid: 0 98 13:10:04,7352248 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56075 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41045528, endtime: 41045742, seqnum: 0, connid: 0 98 13:10:04,7352350 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56075 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41045530, endtime: 41045742, seqnum: 0, connid: 0 98 13:10:04,7352436 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56075 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41045531, endtime: 41045742, seqnum: 0, connid: 0 98 13:10:04,7352497 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56075 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41045533, endtime: 41045742, seqnum: 0, connid: 0 98 13:10:04,7353256 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56075 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41045534, endtime: 41045742, seqnum: 0, connid: 0 98 13:10:04,7353334 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56075 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41045536, endtime: 41045742, seqnum: 0, connid: 0 98 13:10:04,7353409 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56075 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41045537, endtime: 41045742, seqnum: 0, connid: 0 98 13:10:04,7354317 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56075 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41045539, endtime: 41045742, seqnum: 0, connid: 0 98 13:10:06,4819690 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56041 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41045319, endtime: 41045917, seqnum: 0, connid: 0 98 13:10:06,4819867 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56041 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41045322, endtime: 41045917, seqnum: 0, connid: 0 98 13:10:06,4819956 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56041 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41045323, endtime: 41045917, seqnum: 0, connid: 0 98 13:10:06,4820022 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56041 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41045326, endtime: 41045917, seqnum: 0, connid: 0 98 13:10:06,4820094 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56041 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41045328, endtime: 41045917, seqnum: 0, connid: 0 98 13:10:06,4820155 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56041 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41045329, endtime: 41045917, seqnum: 0, connid: 0 98 13:10:06,4820224 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56041 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41045331, endtime: 41045917, seqnum: 0, connid: 0 98 13:10:06,4820285 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56041 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41045333, endtime: 41045917, seqnum: 0, connid: 0 98 13:10:06,4820355 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56041 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41045336, endtime: 41045917, seqnum: 0, connid: 0 98 13:10:06,4821147 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56041 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41045339, endtime: 41045917, seqnum: 0, connid: 0 98 13:10:06,4821233 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56041 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41045340, endtime: 41045917, seqnum: 0, connid: 0 98 13:10:06,4821294 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56041 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41045342, endtime: 41045917, seqnum: 0, connid: 0 98 13:10:06,4822144 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56041 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41045344, endtime: 41045917, seqnum: 0, connid: 0 98 13:10:06,5697154 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56075 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41045742, endtime: 41045926, seqnum: 0, connid: 0 98 13:10:06,5697337 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56075 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41045745, endtime: 41045926, seqnum: 0, connid: 0 98 13:10:06,5697417 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56075 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41045747, endtime: 41045926, seqnum: 0, connid: 0 98 13:10:06,5697497 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56075 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41045748, endtime: 41045926, seqnum: 0, connid: 0 98 13:10:06,5697558 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56075 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41045750, endtime: 41045926, seqnum: 0, connid: 0 98 13:10:06,5697630 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56075 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41045753, endtime: 41045926, seqnum: 0, connid: 0 98 13:10:06,5697689 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56075 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41045755, endtime: 41045926, seqnum: 0, connid: 0 98 13:10:06,5697758 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56075 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41045756, endtime: 41045926, seqnum: 0, connid: 0 98 13:10:06,5697816 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56075 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41045758, endtime: 41045926, seqnum: 0, connid: 0 98 13:10:06,5698667 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56075 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41045759, endtime: 41045926, seqnum: 0, connid: 0 98 13:10:06,5698741 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56075 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41045761, endtime: 41045926, seqnum: 0, connid: 0 98 13:10:06,5698813 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56075 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41045763, endtime: 41045926, seqnum: 0, connid: 0 98 13:10:06,5699797 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56075 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41045765, endtime: 41045926, seqnum: 0, connid: 0 98 13:10:06,5776403 MCLauncher.exe 6080 TCP Reconnect WIN-0UOTFKKVN1S:56109 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 0, seqnum: 0, connid: 0 98 13:10:07,4680458 MCLauncher.exe 6080 TCP Reconnect WIN-0UOTFKKVN1S:56116 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 0, seqnum: 0, connid: 0 98 13:10:08,5371724 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56041 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41045917, endtime: 41046122, seqnum: 0, connid: 0 98 13:10:08,5371926 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56041 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41045919, endtime: 41046122, seqnum: 0, connid: 0 98 13:10:08,5372006 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56041 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41045920, endtime: 41046122, seqnum: 0, connid: 0 98 13:10:08,5372084 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56041 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41045922, endtime: 41046122, seqnum: 0, connid: 0 98 13:10:08,5372148 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56041 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41045923, endtime: 41046122, seqnum: 0, connid: 0 98 13:10:08,5372220 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56041 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41045925, endtime: 41046122, seqnum: 0, connid: 0 98 13:10:08,5372278 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56041 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41045926, endtime: 41046122, seqnum: 0, connid: 0 98 13:10:08,5372347 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56041 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41045928, endtime: 41046122, seqnum: 0, connid: 0 98 13:10:08,5372403 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56041 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41045931, endtime: 41046122, seqnum: 0, connid: 0 98 13:10:08,5373164 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56041 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41045933, endtime: 41046122, seqnum: 0, connid: 0 98 13:10:08,5373239 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56041 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41045934, endtime: 41046122, seqnum: 0, connid: 0 98 13:10:08,5373309 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56041 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41045936, endtime: 41046122, seqnum: 0, connid: 0 98 13:10:08,5374273 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56041 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41045937, endtime: 41046122, seqnum: 0, connid: 0 98 13:10:08,9061581 MCLauncher.exe 6080 TCP Reconnect WIN-0UOTFKKVN1S:56110 -> 54.36.38.171:25565 SUCCESS Length: 0, seqnum: 0, connid: 0 98 13:10:09,2683887 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56075 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41045926, endtime: 41046195, seqnum: 0, connid: 0 98 13:10:09,2684064 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56075 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41045926, endtime: 41046195, seqnum: 0, connid: 0 98 13:10:09,2684136 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56075 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41045928, endtime: 41046195, seqnum: 0, connid: 0 98 13:10:09,2684211 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56075 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41045931, endtime: 41046195, seqnum: 0, connid: 0 98 13:10:09,2684269 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56075 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41045933, endtime: 41046195, seqnum: 0, connid: 0 98 13:10:09,2684341 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56075 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41045934, endtime: 41046195, seqnum: 0, connid: 0 98 13:10:09,2684399 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56075 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41045936, endtime: 41046195, seqnum: 0, connid: 0 98 13:10:09,2684466 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56075 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41045937, endtime: 41046195, seqnum: 0, connid: 0 98 13:10:09,2684521 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56075 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41045939, endtime: 41046195, seqnum: 0, connid: 0 98 13:10:09,2684831 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56075 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41045940, endtime: 41046195, seqnum: 0, connid: 0 98 13:10:09,2684887 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56075 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41045942, endtime: 41046195, seqnum: 0, connid: 0 98 13:10:09,2684953 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56075 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41045944, endtime: 41046195, seqnum: 0, connid: 0 98 13:10:09,2685009 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56075 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41045945, endtime: 41046195, seqnum: 0, connid: 0 98 13:10:10,4717115 MCLauncher.exe 6080 TCP Disconnect WIN-0UOTFKKVN1S:56091 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 0, seqnum: 0, connid: 0 98 13:10:10,6877806 MCLauncher.exe 6080 TCP Reconnect WIN-0UOTFKKVN1S:56117 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 0, seqnum: 0, connid: 0 98 13:10:10,8963110 MCLauncher.exe 6080 TCP Connect WIN-0UOTFKKVN1S:56117 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 0, mss: 1460, sackopt: 0, tsopt: 0, wsopt: 0, rcvwin: 64240, rcvwinscale: 0, sndwinscale: 0, seqnum: 0, connid: 0 98 13:10:10,8978755 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56117 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41046358, endtime: 41046358, seqnum: 0, connid: 0 98 13:10:10,9059370 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56117 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41046359, endtime: 41046359, seqnum: 0, connid: 0 98 13:10:10,9216367 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56117 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41046361, endtime: 41046361, seqnum: 0, connid: 0 98 13:10:10,9374452 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56117 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41046362, endtime: 41046362, seqnum: 0, connid: 0 98 13:10:10,9539176 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56117 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41046364, endtime: 41046364, seqnum: 0, connid: 0 98 13:10:10,9843137 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56117 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41046367, endtime: 41046367, seqnum: 0, connid: 0 98 13:10:11,0008841 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56117 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41046369, endtime: 41046369, seqnum: 0, connid: 0 98 13:10:11,0315642 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56117 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41046372, endtime: 41046372, seqnum: 0, connid: 0 98 13:10:11,0478612 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56117 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41046373, endtime: 41046373, seqnum: 0, connid: 0 98 13:10:11,0542579 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56117 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41046374, endtime: 41046374, seqnum: 0, connid: 0 98 13:10:11,0644951 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56117 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41046375, endtime: 41046375, seqnum: 0, connid: 0 98 13:10:11,0948397 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56117 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41046378, endtime: 41046378, seqnum: 0, connid: 0 98 13:10:11,1105219 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56117 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41046380, endtime: 41046380, seqnum: 0, connid: 0 98 13:10:11,1354486 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56117 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41046381, endtime: 41046382, seqnum: 0, connid: 0 98 13:10:11,1612018 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56117 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41046384, endtime: 41046385, seqnum: 0, connid: 0 98 13:10:11,1740032 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56117 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41046386, endtime: 41046386, seqnum: 0, connid: 0 98 13:10:11,2045248 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56117 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41046389, endtime: 41046389, seqnum: 0, connid: 0 98 13:10:11,2197858 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56117 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41046390, endtime: 41046391, seqnum: 0, connid: 0 98 13:10:11,2502858 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56117 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41046394, endtime: 41046394, seqnum: 0, connid: 0 98 13:10:11,2677731 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56117 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41046395, endtime: 41046395, seqnum: 0, connid: 0 98 13:10:11,2832225 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56117 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41046397, endtime: 41046397, seqnum: 0, connid: 0 98 13:10:11,2990582 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56117 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41046398, endtime: 41046399, seqnum: 0, connid: 0 98 13:10:11,3292720 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56117 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41046401, endtime: 41046402, seqnum: 0, connid: 0 98 13:10:11,3497803 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56117 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41046403, endtime: 41046404, seqnum: 0, connid: 0 98 13:10:11,3604148 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56117 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41046405, endtime: 41046405, seqnum: 0, connid: 0 98 13:10:11,3756429 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56117 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41046406, endtime: 41046406, seqnum: 0, connid: 0 98 13:10:11,4087198 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56117 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41046409, endtime: 41046409, seqnum: 0, connid: 0 98 13:10:11,4398484 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56117 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41046412, endtime: 41046413, seqnum: 0, connid: 0 98 13:10:11,4654065 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56041 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41046122, endtime: 41046415, seqnum: 0, connid: 0 98 13:10:11,4654257 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56041 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41046123, endtime: 41046415, seqnum: 0, connid: 0 98 13:10:11,4654334 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56041 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41046126, endtime: 41046415, seqnum: 0, connid: 0 98 13:10:11,4654412 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56041 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41046130, endtime: 41046415, seqnum: 0, connid: 0 98 13:10:11,4654473 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56041 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41046131, endtime: 41046415, seqnum: 0, connid: 0 98 13:10:11,4654542 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56041 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41046134, endtime: 41046415, seqnum: 0, connid: 0 98 13:10:11,4654603 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56041 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41046136, endtime: 41046415, seqnum: 0, connid: 0 98 13:10:11,4654672 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56041 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41046137, endtime: 41046415, seqnum: 0, connid: 0 98 13:10:11,4654730 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56041 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41046139, endtime: 41046415, seqnum: 0, connid: 0 98 13:10:11,4655528 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56041 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41046141, endtime: 41046415, seqnum: 0, connid: 0 98 13:10:11,4655603 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56041 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41046142, endtime: 41046415, seqnum: 0, connid: 0 98 13:10:11,4655672 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56041 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41046144, endtime: 41046415, seqnum: 0, connid: 0 98 13:10:11,4662621 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56041 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41046146, endtime: 41046415, seqnum: 0, connid: 0 98 13:10:12,4646530 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56117 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41046414, endtime: 41046515, seqnum: 0, connid: 0 98 13:10:12,4646721 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56117 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41046415, endtime: 41046515, seqnum: 0, connid: 0 98 13:10:12,4646798 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56117 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41046417, endtime: 41046515, seqnum: 0, connid: 0 98 13:10:12,4646873 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56117 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41046419, endtime: 41046515, seqnum: 0, connid: 0 98 13:10:12,4646934 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56117 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41046420, endtime: 41046515, seqnum: 0, connid: 0 98 13:10:12,4647031 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56117 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41046422, endtime: 41046515, seqnum: 0, connid: 0 98 13:10:12,4647117 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56117 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41046425, endtime: 41046515, seqnum: 0, connid: 0 98 13:10:12,4647219 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56117 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41046428, endtime: 41046515, seqnum: 0, connid: 0 98 13:10:12,4647305 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56117 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41046430, endtime: 41046515, seqnum: 0, connid: 0 98 13:10:12,4647696 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56117 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41046431, endtime: 41046515, seqnum: 0, connid: 0 98 13:10:12,5953228 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56075 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41046195, endtime: 41046528, seqnum: 0, connid: 0 98 13:10:12,5953414 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56075 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41046197, endtime: 41046528, seqnum: 0, connid: 0 98 13:10:12,5953492 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56075 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41046198, endtime: 41046528, seqnum: 0, connid: 0 98 13:10:12,5953569 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56075 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41046200, endtime: 41046528, seqnum: 0, connid: 0 98 13:10:12,5953627 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56075 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41046200, endtime: 41046528, seqnum: 0, connid: 0 98 13:10:12,5953699 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56075 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41046203, endtime: 41046528, seqnum: 0, connid: 0 98 13:10:12,5953755 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56075 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41046205, endtime: 41046528, seqnum: 0, connid: 0 98 13:10:12,5953932 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56075 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41046206, endtime: 41046528, seqnum: 0, connid: 0 98 13:10:12,5954007 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56075 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41046208, endtime: 41046528, seqnum: 0, connid: 0 98 13:10:12,5954309 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56075 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41046211, endtime: 41046528, seqnum: 0, connid: 0 98 13:10:12,5954370 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56075 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41046212, endtime: 41046528, seqnum: 0, connid: 0 98 13:10:12,5954439 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56075 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41046214, endtime: 41046528, seqnum: 0, connid: 0 98 13:10:12,5954497 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56075 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41046216, endtime: 41046528, seqnum: 0, connid: 0 98 13:10:13,0151475 MCLauncher.exe 6080 TCP Reconnect WIN-0UOTFKKVN1S:56118 -> 54.36.38.171:25565 SUCCESS Length: 0, seqnum: 0, connid: 0 98 13:10:13,3906798 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56106 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41045701, endtime: 41046608, seqnum: 0, connid: 0 98 13:10:13,3907097 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56106 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41045701, endtime: 41046608, seqnum: 0, connid: 0 98 13:10:13,3907250 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56106 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41045705, endtime: 41046608, seqnum: 0, connid: 0 98 13:10:13,3907325 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56106 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41045706, endtime: 41046608, seqnum: 0, connid: 0 98 13:10:13,3907405 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56106 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41045709, endtime: 41046608, seqnum: 0, connid: 0 98 13:10:13,3907463 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56106 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41045711, endtime: 41046608, seqnum: 0, connid: 0 98 13:10:13,3907538 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56106 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41045712, endtime: 41046608, seqnum: 0, connid: 0 98 13:10:13,3907599 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56106 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41045714, endtime: 41046608, seqnum: 0, connid: 0 98 13:10:13,3907674 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56106 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41045717, endtime: 41046608, seqnum: 0, connid: 0 98 13:10:13,3908350 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56106 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41045719, endtime: 41046608, seqnum: 0, connid: 0 98 13:10:13,3908430 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56106 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41045720, endtime: 41046608, seqnum: 0, connid: 0 98 13:10:13,3908486 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56106 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41045724, endtime: 41046608, seqnum: 0, connid: 0 98 13:10:13,4839909 MCLauncher.exe 6080 TCP Reconnect WIN-0UOTFKKVN1S:56116 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 0, seqnum: 0, connid: 0 98 13:10:13,8996049 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56117 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41046433, endtime: 41046659, seqnum: 0, connid: 0 98 13:10:13,8996224 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56117 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41046434, endtime: 41046659, seqnum: 0, connid: 0 98 13:10:13,8996298 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56117 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41046436, endtime: 41046659, seqnum: 0, connid: 0 98 13:10:13,8996373 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56117 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41046515, endtime: 41046659, seqnum: 0, connid: 0 98 13:10:13,8996429 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56117 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41046517, endtime: 41046659, seqnum: 0, connid: 0 98 13:10:13,8996498 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56117 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41046519, endtime: 41046659, seqnum: 0, connid: 0 98 13:10:13,8996553 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56117 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41046520, endtime: 41046659, seqnum: 0, connid: 0 98 13:10:13,8996620 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56117 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41046522, endtime: 41046659, seqnum: 0, connid: 0 98 13:10:13,8996675 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56117 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41046526, endtime: 41046659, seqnum: 0, connid: 0 98 13:10:13,8996974 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56117 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41046526, endtime: 41046659, seqnum: 0, connid: 0 98 13:10:13,8997033 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56117 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41046528, endtime: 41046659, seqnum: 0, connid: 0 98 13:10:13,8997099 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56117 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41046530, endtime: 41046659, seqnum: 0, connid: 0 98 13:10:13,8997155 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56117 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41046531, endtime: 41046659, seqnum: 0, connid: 0 98 13:10:13,9142792 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56041 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41046415, endtime: 41046660, seqnum: 0, connid: 0 98 13:10:13,9142952 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56041 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41046417, endtime: 41046660, seqnum: 0, connid: 0 98 13:10:13,9143025 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56041 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41046419, endtime: 41046660, seqnum: 0, connid: 0 98 13:10:13,9143102 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56041 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41046420, endtime: 41046660, seqnum: 0, connid: 0 98 13:10:13,9143160 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56041 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41046422, endtime: 41046660, seqnum: 0, connid: 0 98 13:10:13,9143227 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56041 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41046425, endtime: 41046660, seqnum: 0, connid: 0 98 13:10:13,9143285 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56041 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41046428, endtime: 41046660, seqnum: 0, connid: 0 98 13:10:13,9143351 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56041 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41046430, endtime: 41046660, seqnum: 0, connid: 0 98 13:10:13,9143407 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56041 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41046431, endtime: 41046660, seqnum: 0, connid: 0 98 13:10:13,9143701 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56041 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41046433, endtime: 41046660, seqnum: 0, connid: 0 98 13:10:13,9143759 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56041 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41046434, endtime: 41046660, seqnum: 0, connid: 0 98 13:10:13,9143825 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56041 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41046436, endtime: 41046660, seqnum: 0, connid: 0 98 13:10:13,9143883 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56041 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41046438, endtime: 41046660, seqnum: 0, connid: 0 98 13:10:14,4004344 MCLauncher.exe 6080 TCP TCPCopy WIN-0UOTFKKVN1S:54920 -> sheltex.company:8000 SUCCESS Length: 2, seqnum: 0, connid: 0 98 13:10:14,4004449 MCLauncher.exe 6080 TCP Receive WIN-0UOTFKKVN1S:54920 -> sheltex.company:8000 SUCCESS Length: 2, seqnum: 0, connid: 0 98 13:10:14,4007987 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54920 -> sheltex.company:8000 SUCCESS Length: 2, startime: 41046709, endtime: 41046709, seqnum: 0, connid: 0 98 13:10:15,7326346 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56075 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41046528, endtime: 41046842, seqnum: 0, connid: 0 98 13:10:15,7326526 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56075 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41046530, endtime: 41046842, seqnum: 0, connid: 0 98 13:10:15,7326609 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56075 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41046531, endtime: 41046842, seqnum: 0, connid: 0 98 13:10:15,7326689 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56075 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41046533, endtime: 41046842, seqnum: 0, connid: 0 98 13:10:15,7326750 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56075 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41046534, endtime: 41046842, seqnum: 0, connid: 0 98 13:10:15,7326822 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56075 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41046536, endtime: 41046842, seqnum: 0, connid: 0 98 13:10:15,7326881 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56075 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41046537, endtime: 41046842, seqnum: 0, connid: 0 98 13:10:15,7326950 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56075 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41046539, endtime: 41046842, seqnum: 0, connid: 0 98 13:10:15,7327011 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56075 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41046540, endtime: 41046842, seqnum: 0, connid: 0 98 13:10:15,7327296 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56075 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41046542, endtime: 41046842, seqnum: 0, connid: 0 98 13:10:15,7327357 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56075 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41046544, endtime: 41046842, seqnum: 0, connid: 0 98 13:10:15,7327426 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56075 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41046545, endtime: 41046842, seqnum: 0, connid: 0 98 13:10:15,7327485 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56075 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41046547, endtime: 41046842, seqnum: 0, connid: 0 98 13:10:16,9644815 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56041 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41046660, endtime: 41046965, seqnum: 0, connid: 0 98 13:10:16,9645017 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56041 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41046661, endtime: 41046965, seqnum: 0, connid: 0 98 13:10:16,9645097 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56041 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41046662, endtime: 41046965, seqnum: 0, connid: 0 98 13:10:16,9645175 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56041 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41046664, endtime: 41046965, seqnum: 0, connid: 0 98 13:10:16,9645233 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56041 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41046667, endtime: 41046965, seqnum: 0, connid: 0 98 13:10:16,9645305 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56041 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41046669, endtime: 41046965, seqnum: 0, connid: 0 98 13:10:16,9645363 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56041 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41046670, endtime: 41046965, seqnum: 0, connid: 0 98 13:10:16,9645435 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56041 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41046673, endtime: 41046965, seqnum: 0, connid: 0 98 13:10:16,9645491 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56041 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41046674, endtime: 41046965, seqnum: 0, connid: 0 98 13:10:16,9645798 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56041 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41046677, endtime: 41046965, seqnum: 0, connid: 0 98 13:10:16,9645859 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56041 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41046678, endtime: 41046965, seqnum: 0, connid: 0 98 13:10:16,9645926 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56041 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41046681, endtime: 41046965, seqnum: 0, connid: 0 98 13:10:16,9645984 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56041 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41046683, endtime: 41046965, seqnum: 0, connid: 0 98 13:10:17,5782465 MCLauncher.exe 6080 TCP Reconnect WIN-0UOTFKKVN1S:56121 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 0, seqnum: 0, connid: 0 98 13:10:18,7475158 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56075 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41046842, endtime: 41047143, seqnum: 0, connid: 0 98 13:10:18,7475383 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56075 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41046844, endtime: 41047143, seqnum: 0, connid: 0 98 13:10:18,7475471 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56075 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41046845, endtime: 41047143, seqnum: 0, connid: 0 98 13:10:18,7475557 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56075 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41046848, endtime: 41047143, seqnum: 0, connid: 0 98 13:10:18,7475618 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56075 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41046852, endtime: 41047143, seqnum: 0, connid: 0 98 13:10:18,7475693 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56075 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41046855, endtime: 41047143, seqnum: 0, connid: 0 98 13:10:18,7475754 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56075 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41046856, endtime: 41047143, seqnum: 0, connid: 0 98 13:10:18,7475829 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56075 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41046858, endtime: 41047143, seqnum: 0, connid: 0 98 13:10:18,7475887 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56075 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41046859, endtime: 41047143, seqnum: 0, connid: 0 98 13:10:18,7476189 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56075 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41046862, endtime: 41047143, seqnum: 0, connid: 0 98 13:10:18,7476253 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56075 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41046864, endtime: 41047143, seqnum: 0, connid: 0 98 13:10:18,7476325 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56075 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41046866, endtime: 41047143, seqnum: 0, connid: 0 98 13:10:18,7476386 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56075 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41046867, endtime: 41047143, seqnum: 0, connid: 0 98 13:10:19,0163987 MCLauncher.exe 6080 TCP Reconnect WIN-0UOTFKKVN1S:56118 -> 54.36.38.171:25565 SUCCESS Length: 0, seqnum: 0, connid: 0 98 13:10:21,7296621 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56106 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41045727, endtime: 41047442, seqnum: 0, connid: 0 98 13:10:21,7296809 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56106 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41046608, endtime: 41047442, seqnum: 0, connid: 0 98 13:10:21,7296900 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56106 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41046609, endtime: 41047442, seqnum: 0, connid: 0 98 13:10:21,7296964 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56106 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41046611, endtime: 41047442, seqnum: 0, connid: 0 98 13:10:21,7297036 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56106 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41046614, endtime: 41047442, seqnum: 0, connid: 0 98 13:10:21,7297097 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56106 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41046616, endtime: 41047442, seqnum: 0, connid: 0 98 13:10:21,7297164 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56106 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41046617, endtime: 41047442, seqnum: 0, connid: 0 98 13:10:21,7297222 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56106 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41046619, endtime: 41047442, seqnum: 0, connid: 0 98 13:10:21,7297288 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56106 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41046620, endtime: 41047442, seqnum: 0, connid: 0 98 13:10:21,7297346 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56106 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41046622, endtime: 41047442, seqnum: 0, connid: 0 98 13:10:21,7297665 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56106 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41046623, endtime: 41047442, seqnum: 0, connid: 0 98 13:10:21,7297887 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56106 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41046625, endtime: 41047442, seqnum: 0, connid: 0 98 13:10:21,7298006 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56106 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41046626, endtime: 41047442, seqnum: 0, connid: 0 98 13:10:21,8190245 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56106 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41047442, endtime: 41047451, seqnum: 0, connid: 0 98 13:10:23,1249534 MCLauncher.exe 6080 TCP Reconnect WIN-0UOTFKKVN1S:56128 -> 54.36.38.171:25565 SUCCESS Length: 0, seqnum: 0, connid: 0 98 13:10:23,2776094 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56075 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41047143, endtime: 41047596, seqnum: 0, connid: 0 98 13:10:23,2776290 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56075 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41047145, endtime: 41047596, seqnum: 0, connid: 0 98 13:10:23,2776371 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56075 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41047149, endtime: 41047596, seqnum: 0, connid: 0 98 13:10:23,2776451 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56075 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41047150, endtime: 41047596, seqnum: 0, connid: 0 98 13:10:23,2776512 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56075 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41047152, endtime: 41047596, seqnum: 0, connid: 0 98 13:10:23,2776581 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56075 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41047153, endtime: 41047596, seqnum: 0, connid: 0 98 13:10:23,2776640 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56075 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41047155, endtime: 41047596, seqnum: 0, connid: 0 98 13:10:23,2776712 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56075 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41047156, endtime: 41047596, seqnum: 0, connid: 0 98 13:10:23,2776770 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56075 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41047159, endtime: 41047596, seqnum: 0, connid: 0 98 13:10:23,2777113 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56075 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41047162, endtime: 41047596, seqnum: 0, connid: 0 98 13:10:23,2777174 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56075 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41047167, endtime: 41047596, seqnum: 0, connid: 0 98 13:10:23,2777244 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56075 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41047169, endtime: 41047596, seqnum: 0, connid: 0 98 13:10:23,2777302 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56075 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41047169, endtime: 41047596, seqnum: 0, connid: 0 98 13:10:23,2777424 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56041 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41046965, endtime: 41047596, seqnum: 0, connid: 0 98 13:10:23,2777487 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56041 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41046967, endtime: 41047596, seqnum: 0, connid: 0 98 13:10:23,2777562 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56041 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41046969, endtime: 41047596, seqnum: 0, connid: 0 98 13:10:23,2777620 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56041 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41046972, endtime: 41047596, seqnum: 0, connid: 0 98 13:10:23,2777695 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56041 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41046974, endtime: 41047596, seqnum: 0, connid: 0 98 13:10:23,2777756 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56041 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41046975, endtime: 41047596, seqnum: 0, connid: 0 98 13:10:23,2778349 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56041 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41046975, endtime: 41047596, seqnum: 0, connid: 0 98 13:10:23,2778421 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56041 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41046978, endtime: 41047596, seqnum: 0, connid: 0 98 13:10:23,2778490 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56041 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41046981, endtime: 41047596, seqnum: 0, connid: 0 98 13:10:23,2778548 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56041 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41046983, endtime: 41047596, seqnum: 0, connid: 0 98 13:10:23,2778618 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56041 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41046984, endtime: 41047596, seqnum: 0, connid: 0 98 13:10:23,2778676 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56041 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41046987, endtime: 41047596, seqnum: 0, connid: 0 98 13:10:23,2778745 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56041 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41046989, endtime: 41047596, seqnum: 0, connid: 0 98 13:10:23,5932685 MCLauncher.exe 6080 TCP Reconnect WIN-0UOTFKKVN1S:56121 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 0, seqnum: 0, connid: 0 98 13:10:24,3986851 MCLauncher.exe 6080 TCP TCPCopy WIN-0UOTFKKVN1S:54920 -> sheltex.company:8000 SUCCESS Length: 2, seqnum: 0, connid: 0 98 13:10:24,3986967 MCLauncher.exe 6080 TCP Receive WIN-0UOTFKKVN1S:54920 -> sheltex.company:8000 SUCCESS Length: 2, seqnum: 0, connid: 0 98 13:10:24,3990633 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54920 -> sheltex.company:8000 SUCCESS Length: 2, startime: 41047708, endtime: 41047709, seqnum: 0, connid: 0 98 13:10:25,9451211 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56117 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41046659, endtime: 41047863, seqnum: 0, connid: 0 98 13:10:25,9451371 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56117 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41046659, endtime: 41047863, seqnum: 0, connid: 0 98 13:10:25,9451457 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56117 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41046661, endtime: 41047863, seqnum: 0, connid: 0 98 13:10:25,9451521 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56117 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41046662, endtime: 41047863, seqnum: 0, connid: 0 98 13:10:25,9451590 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56117 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41046664, endtime: 41047863, seqnum: 0, connid: 0 98 13:10:25,9451646 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56117 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41046667, endtime: 41047863, seqnum: 0, connid: 0 98 13:10:25,9451712 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56117 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41046669, endtime: 41047863, seqnum: 0, connid: 0 98 13:10:25,9451767 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56117 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41046670, endtime: 41047863, seqnum: 0, connid: 0 98 13:10:25,9451939 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56117 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41046673, endtime: 41047863, seqnum: 0, connid: 0 98 13:10:25,9452770 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56117 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41046674, endtime: 41047863, seqnum: 0, connid: 0 98 13:10:25,9452859 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56117 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41046677, endtime: 41047863, seqnum: 0, connid: 0 98 13:10:25,9452920 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56117 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41046678, endtime: 41047863, seqnum: 0, connid: 0 98 13:10:25,9453543 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56117 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41046681, endtime: 41047863, seqnum: 0, connid: 0 98 13:10:27,1564580 MCLauncher.exe 6080 TCP Reconnect WIN-0UOTFKKVN1S:56131 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 0, seqnum: 0, connid: 0 98 13:10:27,5433698 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56041 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41047596, endtime: 41048023, seqnum: 0, connid: 0 98 13:10:27,5433870 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56041 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41047598, endtime: 41048023, seqnum: 0, connid: 0 98 13:10:27,5433939 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56041 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41047600, endtime: 41048023, seqnum: 0, connid: 0 98 13:10:27,5434012 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56041 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41047600, endtime: 41048023, seqnum: 0, connid: 0 98 13:10:27,5434070 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56041 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41047603, endtime: 41048023, seqnum: 0, connid: 0 98 13:10:27,5434139 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56041 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41047605, endtime: 41048023, seqnum: 0, connid: 0 98 13:10:27,5434192 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56041 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41047608, endtime: 41048023, seqnum: 0, connid: 0 98 13:10:27,5434258 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56041 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41047609, endtime: 41048023, seqnum: 0, connid: 0 98 13:10:27,5434311 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56041 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41047611, endtime: 41048023, seqnum: 0, connid: 0 98 13:10:27,5435233 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56041 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41047612, endtime: 41048023, seqnum: 0, connid: 0 98 13:10:27,5435325 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56041 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41047614, endtime: 41048023, seqnum: 0, connid: 0 98 13:10:27,5435419 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56041 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41047616, endtime: 41048023, seqnum: 0, connid: 0 98 13:10:27,5441952 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56041 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41047617, endtime: 41048023, seqnum: 0, connid: 0 98 13:10:27,7026604 MCLauncher.exe 6080 TCP Reconnect WIN-0UOTFKKVN1S:56132 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 0, seqnum: 0, connid: 0 98 13:10:27,7827826 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56106 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41047444, endtime: 41048047, seqnum: 0, connid: 0 98 13:10:27,7828058 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56106 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41047445, endtime: 41048047, seqnum: 0, connid: 0 98 13:10:27,7828200 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56106 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41047449, endtime: 41048047, seqnum: 0, connid: 0 98 13:10:27,7828305 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56106 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41047450, endtime: 41048047, seqnum: 0, connid: 0 98 13:10:27,7828427 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56106 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41047451, endtime: 41048047, seqnum: 0, connid: 0 98 13:10:27,7828524 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56106 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41047453, endtime: 41048047, seqnum: 0, connid: 0 98 13:10:27,7828640 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56106 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41047455, endtime: 41048047, seqnum: 0, connid: 0 98 13:10:27,7828737 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56106 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41047456, endtime: 41048047, seqnum: 0, connid: 0 98 13:10:27,7828862 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56106 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41047459, endtime: 41048047, seqnum: 0, connid: 0 98 13:10:27,7830682 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56106 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41047461, endtime: 41048047, seqnum: 0, connid: 0 98 13:10:27,7830815 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56106 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41047464, endtime: 41048047, seqnum: 0, connid: 0 98 13:10:27,7830940 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56106 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41047467, endtime: 41048047, seqnum: 0, connid: 0 98 13:10:27,7832826 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56106 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41047469, endtime: 41048047, seqnum: 0, connid: 0 98 13:10:28,4332650 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56075 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41047596, endtime: 41048112, seqnum: 0, connid: 0 98 13:10:28,4332813 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56075 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41047598, endtime: 41048112, seqnum: 0, connid: 0 98 13:10:28,4332905 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56075 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41047600, endtime: 41048112, seqnum: 0, connid: 0 98 13:10:28,4332974 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56075 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41047600, endtime: 41048112, seqnum: 0, connid: 0 98 13:10:28,4333049 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56075 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41047603, endtime: 41048112, seqnum: 0, connid: 0 98 13:10:28,4333110 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56075 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41047605, endtime: 41048112, seqnum: 0, connid: 0 98 13:10:28,4333182 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56075 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41047608, endtime: 41048112, seqnum: 0, connid: 0 98 13:10:28,4333240 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56075 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41047609, endtime: 41048112, seqnum: 0, connid: 0 98 13:10:28,4333309 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56075 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41047611, endtime: 41048112, seqnum: 0, connid: 0 98 13:10:28,4333595 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56075 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41047612, endtime: 41048112, seqnum: 0, connid: 0 98 13:10:28,4333672 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56075 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41047614, endtime: 41048112, seqnum: 0, connid: 0 98 13:10:28,4333731 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56075 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41047616, endtime: 41048112, seqnum: 0, connid: 0 98 13:10:28,4333803 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56075 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41047617, endtime: 41048112, seqnum: 0, connid: 0 98 13:10:29,1560150 MCLauncher.exe 6080 TCP Reconnect WIN-0UOTFKKVN1S:56128 -> 54.36.38.171:25565 SUCCESS Length: 0, seqnum: 0, connid: 0 98 13:10:29,6973748 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56041 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41048023, endtime: 41048238, seqnum: 0, connid: 0 98 13:10:29,6974011 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56041 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41048025, endtime: 41048238, seqnum: 0, connid: 0 98 13:10:29,6974130 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56041 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41048026, endtime: 41048238, seqnum: 0, connid: 0 98 13:10:29,6974227 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56041 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41048028, endtime: 41048238, seqnum: 0, connid: 0 98 13:10:29,6974291 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56041 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41048030, endtime: 41048238, seqnum: 0, connid: 0 98 13:10:29,6974368 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56041 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41048031, endtime: 41048238, seqnum: 0, connid: 0 98 13:10:29,6974432 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56041 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41048033, endtime: 41048238, seqnum: 0, connid: 0 98 13:10:29,6974507 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56041 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41048034, endtime: 41048238, seqnum: 0, connid: 0 98 13:10:29,6974568 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56041 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41048036, endtime: 41048238, seqnum: 0, connid: 0 98 13:10:29,6975698 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56041 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41048037, endtime: 41048238, seqnum: 0, connid: 0 98 13:10:29,6975812 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56041 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41048039, endtime: 41048238, seqnum: 0, connid: 0 98 13:10:29,6975931 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56041 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41048040, endtime: 41048238, seqnum: 0, connid: 0 98 13:10:29,6983339 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56041 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41048042, endtime: 41048238, seqnum: 0, connid: 0 98 13:10:31,4806344 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56075 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41048112, endtime: 41048417, seqnum: 0, connid: 0 98 13:10:31,4806541 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56075 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41048114, endtime: 41048417, seqnum: 0, connid: 0 98 13:10:31,4806626 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56075 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41048115, endtime: 41048417, seqnum: 0, connid: 0 98 13:10:31,4806710 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56075 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41048117, endtime: 41048417, seqnum: 0, connid: 0 98 13:10:31,4806776 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56075 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41048119, endtime: 41048417, seqnum: 0, connid: 0 98 13:10:31,4806851 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56075 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41048120, endtime: 41048417, seqnum: 0, connid: 0 98 13:10:31,4806915 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56075 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41048122, endtime: 41048417, seqnum: 0, connid: 0 98 13:10:31,4806987 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56075 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41048123, endtime: 41048417, seqnum: 0, connid: 0 98 13:10:31,4807050 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56075 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41048125, endtime: 41048417, seqnum: 0, connid: 0 98 13:10:31,4807352 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56075 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41048126, endtime: 41048417, seqnum: 0, connid: 0 98 13:10:31,4807419 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56075 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41048128, endtime: 41048417, seqnum: 0, connid: 0 98 13:10:31,4807491 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56075 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41048130, endtime: 41048417, seqnum: 0, connid: 0 98 13:10:31,4807552 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56075 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41048131, endtime: 41048417, seqnum: 0, connid: 0 98 13:10:31,9588309 MCLauncher.exe 6080 TCP Disconnect WIN-0UOTFKKVN1S:56041 -> 54.36.38.171:25565 SUCCESS Length: 0, seqnum: 0, connid: 0 98 13:10:32,0712976 MCLauncher.exe 6080 TCP Connect WIN-0UOTFKKVN1S:56137 -> 54.36.38.171:25565 SUCCESS Length: 0, mss: 1460, sackopt: 0, tsopt: 0, wsopt: 0, rcvwin: 64240, rcvwinscale: 0, sndwinscale: 0, seqnum: 0, connid: 0 98 13:10:32,0716955 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56137 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41048476, endtime: 41048476, seqnum: 0, connid: 0 98 13:10:32,1006833 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56137 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41048478, endtime: 41048479, seqnum: 0, connid: 0 98 13:10:32,1094200 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56137 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41048480, endtime: 41048480, seqnum: 0, connid: 0 98 13:10:32,1258142 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56137 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41048481, endtime: 41048481, seqnum: 0, connid: 0 98 13:10:32,1406902 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56137 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41048483, endtime: 41048483, seqnum: 0, connid: 0 98 13:10:32,1568930 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56137 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41048484, endtime: 41048484, seqnum: 0, connid: 0 98 13:10:32,1715271 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56137 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41048486, endtime: 41048486, seqnum: 0, connid: 0 98 13:10:32,1874584 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56137 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41048487, endtime: 41048487, seqnum: 0, connid: 0 98 13:10:32,2027790 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56137 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41048489, endtime: 41048489, seqnum: 0, connid: 0 98 13:10:32,2185632 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56137 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41048490, endtime: 41048490, seqnum: 0, connid: 0 98 13:10:32,2343108 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56137 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41048492, endtime: 41048492, seqnum: 0, connid: 0 98 13:10:32,2508266 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56137 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41048494, endtime: 41048494, seqnum: 0, connid: 0 98 13:10:32,2828496 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56137 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41048497, endtime: 41048497, seqnum: 0, connid: 0 98 13:10:32,2977799 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56137 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41048498, endtime: 41048498, seqnum: 0, connid: 0 98 13:10:32,3124960 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56137 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41048500, endtime: 41048500, seqnum: 0, connid: 0 98 13:10:32,3179795 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56137 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41048500, endtime: 41048500, seqnum: 0, connid: 0 98 13:10:32,3454670 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56137 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41048503, endtime: 41048503, seqnum: 0, connid: 0 98 13:10:32,3594077 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56137 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41048504, endtime: 41048505, seqnum: 0, connid: 0 98 13:10:32,3813982 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56137 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41048506, endtime: 41048507, seqnum: 0, connid: 0 98 13:10:32,4063293 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56137 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41048509, endtime: 41048509, seqnum: 0, connid: 0 98 13:10:32,4229253 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56137 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41048511, endtime: 41048511, seqnum: 0, connid: 0 98 13:10:32,4534876 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56137 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41048514, endtime: 41048514, seqnum: 0, connid: 0 98 13:10:32,4706271 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56137 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41048515, endtime: 41048516, seqnum: 0, connid: 0 98 13:10:32,4861384 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56137 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41048517, endtime: 41048517, seqnum: 0, connid: 0 98 13:10:32,5018901 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56137 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41048519, endtime: 41048519, seqnum: 0, connid: 0 98 13:10:32,5422929 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56137 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41048522, endtime: 41048523, seqnum: 0, connid: 0 98 13:10:32,9731993 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56137 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41048525, endtime: 41048566, seqnum: 0, connid: 0 98 13:10:32,9732184 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56137 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41048526, endtime: 41048566, seqnum: 0, connid: 0 98 13:10:32,9732265 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56137 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41048528, endtime: 41048566, seqnum: 0, connid: 0 98 13:10:32,9732348 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56137 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41048530, endtime: 41048566, seqnum: 0, connid: 0 98 13:10:32,9732414 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56137 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41048531, endtime: 41048566, seqnum: 0, connid: 0 98 13:10:32,9732489 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56137 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41048533, endtime: 41048566, seqnum: 0, connid: 0 98 13:10:32,9732553 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56137 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41048536, endtime: 41048566, seqnum: 0, connid: 0 98 13:10:32,9732628 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56137 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41048537, endtime: 41048566, seqnum: 0, connid: 0 98 13:10:32,9732688 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56137 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41048539, endtime: 41048566, seqnum: 0, connid: 0 98 13:10:32,9732974 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56137 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41048541, endtime: 41048566, seqnum: 0, connid: 0 98 13:10:32,9733040 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56137 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41048542, endtime: 41048566, seqnum: 0, connid: 0 98 13:10:32,9733112 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56137 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41048544, endtime: 41048566, seqnum: 0, connid: 0 98 13:10:32,9733176 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56137 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41048545, endtime: 41048566, seqnum: 0, connid: 0 98 13:10:33,1566783 MCLauncher.exe 6080 TCP Reconnect WIN-0UOTFKKVN1S:56131 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 0, seqnum: 0, connid: 0 98 13:10:33,2494452 MCLauncher.exe 6080 TCP Reconnect WIN-0UOTFKKVN1S:56136 -> 54.36.38.171:25565 SUCCESS Length: 0, seqnum: 0, connid: 0 98 13:10:33,7178517 MCLauncher.exe 6080 TCP Reconnect WIN-0UOTFKKVN1S:56132 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 0, seqnum: 0, connid: 0 98 13:10:34,5487325 MCLauncher.exe 6080 TCP TCPCopy WIN-0UOTFKKVN1S:54920 -> sheltex.company:8000 SUCCESS Length: 2, seqnum: 0, connid: 0 98 13:10:34,5487442 MCLauncher.exe 6080 TCP Receive WIN-0UOTFKKVN1S:54920 -> sheltex.company:8000 SUCCESS Length: 2, seqnum: 0, connid: 0 98 13:10:34,5491024 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54920 -> sheltex.company:8000 SUCCESS Length: 2, startime: 41048723, endtime: 41048724, seqnum: 0, connid: 0 98 13:10:35,9412173 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56106 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41048047, endtime: 41048863, seqnum: 0, connid: 0 98 13:10:35,9412309 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56106 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41048048, endtime: 41048863, seqnum: 0, connid: 0 98 13:10:35,9412398 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56106 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41048051, endtime: 41048863, seqnum: 0, connid: 0 98 13:10:35,9412464 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56106 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41048053, endtime: 41048863, seqnum: 0, connid: 0 98 13:10:35,9412536 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56106 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41048054, endtime: 41048863, seqnum: 0, connid: 0 98 13:10:35,9412595 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56106 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41048056, endtime: 41048863, seqnum: 0, connid: 0 98 13:10:35,9412661 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56106 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41048058, endtime: 41048863, seqnum: 0, connid: 0 98 13:10:35,9412852 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56106 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41048059, endtime: 41048863, seqnum: 0, connid: 0 98 13:10:35,9412933 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56106 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41048063, endtime: 41048863, seqnum: 0, connid: 0 98 13:10:35,9413553 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56106 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41048066, endtime: 41048863, seqnum: 0, connid: 0 98 13:10:35,9413639 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56106 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41048069, endtime: 41048863, seqnum: 0, connid: 0 98 13:10:35,9413697 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56106 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41048070, endtime: 41048863, seqnum: 0, connid: 0 98 13:10:35,9554913 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56106 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41048072, endtime: 41048864, seqnum: 0, connid: 0 98 13:10:35,9555079 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56106 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41048863, endtime: 41048864, seqnum: 0, connid: 0 98 13:10:35,9555162 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56106 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41048864, endtime: 41048864, seqnum: 0, connid: 0 98 13:10:35,9680624 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56106 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41048865, endtime: 41048865, seqnum: 0, connid: 0 98 13:10:35,9848692 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56106 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41048867, endtime: 41048867, seqnum: 0, connid: 0 98 13:10:36,0000643 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56106 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41048869, endtime: 41048869, seqnum: 0, connid: 0 98 13:10:36,0158851 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56106 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41048870, endtime: 41048870, seqnum: 0, connid: 0 98 13:10:36,0312520 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56106 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41048872, endtime: 41048872, seqnum: 0, connid: 0 98 13:10:36,0472309 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56106 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41048873, endtime: 41048873, seqnum: 0, connid: 0 98 13:10:36,0547045 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56106 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41048874, endtime: 41048874, seqnum: 0, connid: 0 98 13:10:36,0783293 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56106 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41048876, endtime: 41048876, seqnum: 0, connid: 0 98 13:10:36,0944623 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56106 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41048878, endtime: 41048878, seqnum: 0, connid: 0 98 13:10:36,1096358 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56106 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41048880, endtime: 41048880, seqnum: 0, connid: 0 98 13:10:36,2600340 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56075 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41048417, endtime: 41048895, seqnum: 0, connid: 0 98 13:10:36,2600526 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56075 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41048419, endtime: 41048895, seqnum: 0, connid: 0 98 13:10:36,2600601 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56075 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41048422, endtime: 41048895, seqnum: 0, connid: 0 98 13:10:36,2600678 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56075 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41048425, endtime: 41048895, seqnum: 0, connid: 0 98 13:10:36,2600737 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56075 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41048426, endtime: 41048895, seqnum: 0, connid: 0 98 13:10:36,2600803 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56075 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41048428, endtime: 41048895, seqnum: 0, connid: 0 98 13:10:36,2600861 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56075 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41048431, endtime: 41048895, seqnum: 0, connid: 0 98 13:10:36,2600933 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56075 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41048435, endtime: 41048895, seqnum: 0, connid: 0 98 13:10:36,2600992 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56075 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41048437, endtime: 41048895, seqnum: 0, connid: 0 98 13:10:36,2601302 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56075 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41048439, endtime: 41048895, seqnum: 0, connid: 0 98 13:10:36,2601360 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56075 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41048441, endtime: 41048895, seqnum: 0, connid: 0 98 13:10:36,2601427 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56075 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41048442, endtime: 41048895, seqnum: 0, connid: 0 98 13:10:36,2601485 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56075 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41048445, endtime: 41048895, seqnum: 0, connid: 0 98 13:10:37,0047618 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56137 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41048566, endtime: 41048969, seqnum: 0, connid: 0 98 13:10:37,0047801 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56137 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41048567, endtime: 41048969, seqnum: 0, connid: 0 98 13:10:37,0048133 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56137 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41048569, endtime: 41048969, seqnum: 0, connid: 0 98 13:10:37,0048294 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56137 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41048570, endtime: 41048969, seqnum: 0, connid: 0 98 13:10:37,0048391 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56137 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41048572, endtime: 41048969, seqnum: 0, connid: 0 98 13:10:37,0048477 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56137 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41048573, endtime: 41048969, seqnum: 0, connid: 0 98 13:10:37,0048546 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56137 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41048574, endtime: 41048969, seqnum: 0, connid: 0 98 13:10:37,0048627 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56137 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41048576, endtime: 41048969, seqnum: 0, connid: 0 98 13:10:37,0048693 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56137 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41048578, endtime: 41048969, seqnum: 0, connid: 0 98 13:10:37,0049034 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56137 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41048580, endtime: 41048969, seqnum: 0, connid: 0 98 13:10:37,0049100 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56137 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41048581, endtime: 41048969, seqnum: 0, connid: 0 98 13:10:37,0049172 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56137 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41048583, endtime: 41048969, seqnum: 0, connid: 0 98 13:10:37,0049236 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56137 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41048584, endtime: 41048969, seqnum: 0, connid: 0 98 13:10:37,2655380 MCLauncher.exe 6080 TCP Reconnect WIN-0UOTFKKVN1S:56141 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 0, seqnum: 0, connid: 0 98 13:10:37,8276302 MCLauncher.exe 6080 TCP Reconnect WIN-0UOTFKKVN1S:56142 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 0, seqnum: 0, connid: 0 98 13:10:39,2648551 MCLauncher.exe 6080 TCP Reconnect WIN-0UOTFKKVN1S:56136 -> 54.36.38.171:25565 SUCCESS Length: 0, seqnum: 0, connid: 0 98 13:10:41,0203700 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56137 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41048969, endtime: 41049371, seqnum: 0, connid: 0 98 13:10:41,0203872 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56137 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41048970, endtime: 41049371, seqnum: 0, connid: 0 98 13:10:41,0203947 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56137 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41048972, endtime: 41049371, seqnum: 0, connid: 0 98 13:10:41,0204022 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56137 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41048975, endtime: 41049371, seqnum: 0, connid: 0 98 13:10:41,0204080 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56137 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41048976, endtime: 41049371, seqnum: 0, connid: 0 98 13:10:41,0204146 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56137 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41048978, endtime: 41049371, seqnum: 0, connid: 0 98 13:10:41,0204202 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56137 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41048981, endtime: 41049371, seqnum: 0, connid: 0 98 13:10:41,0204266 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56137 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41048983, endtime: 41049371, seqnum: 0, connid: 0 98 13:10:41,0204321 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56137 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41048986, endtime: 41049371, seqnum: 0, connid: 0 98 13:10:41,0204626 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56137 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41048987, endtime: 41049371, seqnum: 0, connid: 0 98 13:10:41,0204684 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56137 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41048990, endtime: 41049371, seqnum: 0, connid: 0 98 13:10:41,0204750 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56137 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41048992, endtime: 41049371, seqnum: 0, connid: 0 98 13:10:41,0204803 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56137 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41048994, endtime: 41049371, seqnum: 0, connid: 0 98 13:10:42,1434142 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56075 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41048895, endtime: 41049483, seqnum: 0, connid: 0 98 13:10:42,1434345 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56075 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41048897, endtime: 41049483, seqnum: 0, connid: 0 98 13:10:42,1434439 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56075 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41048900, endtime: 41049483, seqnum: 0, connid: 0 98 13:10:42,1434508 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56075 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41048901, endtime: 41049483, seqnum: 0, connid: 0 98 13:10:42,1434580 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56075 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41048903, endtime: 41049483, seqnum: 0, connid: 0 98 13:10:42,1434644 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56075 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41048906, endtime: 41049483, seqnum: 0, connid: 0 98 13:10:42,1434719 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56075 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41048908, endtime: 41049483, seqnum: 0, connid: 0 98 13:10:42,1434777 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56075 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41048909, endtime: 41049483, seqnum: 0, connid: 0 98 13:10:42,1434852 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56075 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41048911, endtime: 41049483, seqnum: 0, connid: 0 98 13:10:42,1435478 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56075 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41048912, endtime: 41049483, seqnum: 0, connid: 0 98 13:10:42,1435566 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56075 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41048914, endtime: 41049483, seqnum: 0, connid: 0 98 13:10:42,1435625 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56075 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41048916, endtime: 41049483, seqnum: 0, connid: 0 98 13:10:42,1435697 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56075 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41048919, endtime: 41049483, seqnum: 0, connid: 0 98 13:10:42,8510910 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56106 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41048881, endtime: 41049554, seqnum: 0, connid: 0 98 13:10:42,8511096 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56106 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41048883, endtime: 41049554, seqnum: 0, connid: 0 98 13:10:42,8511287 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56106 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41048886, endtime: 41049554, seqnum: 0, connid: 0 98 13:10:42,8511378 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56106 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41048890, endtime: 41049554, seqnum: 0, connid: 0 98 13:10:42,8511445 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56106 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41048890, endtime: 41049554, seqnum: 0, connid: 0 98 13:10:42,8511517 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56106 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41048892, endtime: 41049554, seqnum: 0, connid: 0 98 13:10:42,8511575 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56106 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41048894, endtime: 41049554, seqnum: 0, connid: 0 98 13:10:42,8511647 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56106 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41048895, endtime: 41049554, seqnum: 0, connid: 0 98 13:10:42,8511705 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56106 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41048897, endtime: 41049554, seqnum: 0, connid: 0 98 13:10:42,8512024 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56106 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41048900, endtime: 41049554, seqnum: 0, connid: 0 98 13:10:42,8512085 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56106 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41048901, endtime: 41049554, seqnum: 0, connid: 0 98 13:10:42,8512151 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56106 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41048903, endtime: 41049554, seqnum: 0, connid: 0 98 13:10:42,8512209 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56106 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41048906, endtime: 41049554, seqnum: 0, connid: 0 98 13:10:42,9506275 MCLauncher.exe 6080 TCP Disconnect WIN-0UOTFKKVN1S:56117 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 0, seqnum: 0, connid: 0 98 13:10:43,2650235 MCLauncher.exe 6080 TCP Reconnect WIN-0UOTFKKVN1S:56141 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 0, seqnum: 0, connid: 0 98 13:10:43,3322498 MCLauncher.exe 6080 TCP Connect WIN-0UOTFKKVN1S:56141 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 0, mss: 1460, sackopt: 0, tsopt: 0, wsopt: 0, rcvwin: 64240, rcvwinscale: 0, sndwinscale: 0, seqnum: 0, connid: 0 98 13:10:43,3327319 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56141 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41049602, endtime: 41049602, seqnum: 0, connid: 0 98 13:10:43,3445087 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56141 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41049603, endtime: 41049603, seqnum: 0, connid: 0 98 13:10:43,3742920 MCLauncher.exe 6080 TCP Reconnect WIN-0UOTFKKVN1S:56147 -> 54.36.38.171:25565 SUCCESS Length: 0, seqnum: 0, connid: 0 98 13:10:43,3752425 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56141 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41049606, endtime: 41049606, seqnum: 0, connid: 0 98 13:10:43,3908646 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56141 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41049608, endtime: 41049608, seqnum: 0, connid: 0 98 13:10:43,4058417 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56141 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41049609, endtime: 41049609, seqnum: 0, connid: 0 98 13:10:43,4216710 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56141 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41049611, endtime: 41049611, seqnum: 0, connid: 0 98 13:10:43,4380991 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56141 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41049612, endtime: 41049612, seqnum: 0, connid: 0 98 13:10:43,4569721 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56141 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41049614, endtime: 41049614, seqnum: 0, connid: 0 98 13:10:43,4850972 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56141 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41049617, endtime: 41049617, seqnum: 0, connid: 0 98 13:10:43,4994631 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56141 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41049619, endtime: 41049619, seqnum: 0, connid: 0 98 13:10:43,5163849 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56141 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41049620, endtime: 41049620, seqnum: 0, connid: 0 98 13:10:43,5466341 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56141 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41049623, endtime: 41049623, seqnum: 0, connid: 0 98 13:10:43,5633204 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56141 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41049625, endtime: 41049625, seqnum: 0, connid: 0 98 13:10:43,6006919 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56141 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41049628, endtime: 41049629, seqnum: 0, connid: 0 98 13:10:43,6101955 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56141 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41049629, endtime: 41049630, seqnum: 0, connid: 0 98 13:10:43,6265490 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56141 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41049631, endtime: 41049631, seqnum: 0, connid: 0 98 13:10:43,6401660 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56141 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41049633, endtime: 41049633, seqnum: 0, connid: 0 98 13:10:43,6586044 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56141 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41049634, endtime: 41049634, seqnum: 0, connid: 0 98 13:10:43,6726434 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56141 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41049636, endtime: 41049636, seqnum: 0, connid: 0 98 13:10:43,7047647 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56141 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41049639, endtime: 41049639, seqnum: 0, connid: 0 98 13:10:43,7188879 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56141 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41049640, endtime: 41049640, seqnum: 0, connid: 0 98 13:10:43,7357717 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56141 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41049642, endtime: 41049642, seqnum: 0, connid: 0 98 13:10:43,7579628 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56141 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41049644, endtime: 41049644, seqnum: 0, connid: 0 98 13:10:43,7655957 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56141 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41049645, endtime: 41049645, seqnum: 0, connid: 0 98 13:10:43,7820570 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56141 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41049647, endtime: 41049647, seqnum: 0, connid: 0 98 13:10:43,8282198 MCLauncher.exe 6080 TCP Reconnect WIN-0UOTFKKVN1S:56142 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 0, seqnum: 0, connid: 0 98 13:10:44,3223005 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56137 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41049371, endtime: 41049701, seqnum: 0, connid: 0 98 13:10:44,3223196 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56137 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41049372, endtime: 41049701, seqnum: 0, connid: 0 98 13:10:44,3223273 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56137 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41049373, endtime: 41049701, seqnum: 0, connid: 0 98 13:10:44,3223351 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56137 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41049374, endtime: 41049701, seqnum: 0, connid: 0 98 13:10:44,3223412 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56137 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41049375, endtime: 41049701, seqnum: 0, connid: 0 98 13:10:44,3223481 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56137 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41049378, endtime: 41049701, seqnum: 0, connid: 0 98 13:10:44,3223536 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56137 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41049380, endtime: 41049701, seqnum: 0, connid: 0 98 13:10:44,3223606 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56137 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41049381, endtime: 41049701, seqnum: 0, connid: 0 98 13:10:44,3223664 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56137 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41049383, endtime: 41049701, seqnum: 0, connid: 0 98 13:10:44,3223963 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56137 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41049384, endtime: 41049701, seqnum: 0, connid: 0 98 13:10:44,3224024 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56137 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41049386, endtime: 41049701, seqnum: 0, connid: 0 98 13:10:44,3224093 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56137 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41049387, endtime: 41049701, seqnum: 0, connid: 0 98 13:10:44,3224152 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56137 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41049389, endtime: 41049701, seqnum: 0, connid: 0 98 13:10:44,8139993 MCLauncher.exe 6080 TCP TCPCopy WIN-0UOTFKKVN1S:54920 -> sheltex.company:8000 SUCCESS Length: 2, seqnum: 0, connid: 0 98 13:10:44,8140123 MCLauncher.exe 6080 TCP Receive WIN-0UOTFKKVN1S:54920 -> sheltex.company:8000 SUCCESS Length: 2, seqnum: 0, connid: 0 98 13:10:44,8145639 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54920 -> sheltex.company:8000 SUCCESS Length: 2, startime: 41049750, endtime: 41049750, seqnum: 0, connid: 0 98 13:10:46,0437572 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56141 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41049648, endtime: 41049873, seqnum: 0, connid: 0 98 13:10:46,0437774 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56141 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41049650, endtime: 41049873, seqnum: 0, connid: 0 98 13:10:46,0437854 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56141 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41049651, endtime: 41049873, seqnum: 0, connid: 0 98 13:10:46,0438051 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56141 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41049655, endtime: 41049873, seqnum: 0, connid: 0 98 13:10:46,0438176 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56141 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41049656, endtime: 41049873, seqnum: 0, connid: 0 98 13:10:46,0438259 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56141 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41049659, endtime: 41049873, seqnum: 0, connid: 0 98 13:10:46,0438323 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56141 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41049661, endtime: 41049873, seqnum: 0, connid: 0 98 13:10:46,0438403 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56141 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41049662, endtime: 41049873, seqnum: 0, connid: 0 98 13:10:46,0438467 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56141 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41049664, endtime: 41049873, seqnum: 0, connid: 0 98 13:10:46,0438824 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56141 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41049666, endtime: 41049873, seqnum: 0, connid: 0 98 13:10:46,0438888 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56141 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41049667, endtime: 41049873, seqnum: 0, connid: 0 98 13:10:46,0438957 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56141 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41049669, endtime: 41049873, seqnum: 0, connid: 0 98 13:10:46,0439018 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56141 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41049672, endtime: 41049873, seqnum: 0, connid: 0 98 13:10:47,4395151 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56075 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41049483, endtime: 41050013, seqnum: 0, connid: 0 98 13:10:47,4395331 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56075 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41049486, endtime: 41050013, seqnum: 0, connid: 0 98 13:10:47,4395403 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56075 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41049487, endtime: 41050013, seqnum: 0, connid: 0 98 13:10:47,4395475 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56075 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41049489, endtime: 41050013, seqnum: 0, connid: 0 98 13:10:47,4395528 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56075 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41049492, endtime: 41050013, seqnum: 0, connid: 0 98 13:10:47,4395594 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56075 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41049494, endtime: 41050013, seqnum: 0, connid: 0 98 13:10:47,4395650 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56075 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41049495, endtime: 41050013, seqnum: 0, connid: 0 98 13:10:47,4395714 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56075 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41049497, endtime: 41050013, seqnum: 0, connid: 0 98 13:10:47,4395766 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56075 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41049498, endtime: 41050013, seqnum: 0, connid: 0 98 13:10:47,4396049 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56075 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41049501, endtime: 41050013, seqnum: 0, connid: 0 98 13:10:47,4396107 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56075 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41049505, endtime: 41050013, seqnum: 0, connid: 0 98 13:10:47,4396171 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56075 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41049508, endtime: 41050013, seqnum: 0, connid: 0 98 13:10:47,4396223 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56075 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41049509, endtime: 41050013, seqnum: 0, connid: 0 98 13:10:47,9214269 MCLauncher.exe 6080 TCP Reconnect WIN-0UOTFKKVN1S:56149 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 0, seqnum: 0, connid: 0 98 13:10:49,3551646 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56106 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41049554, endtime: 41050204, seqnum: 0, connid: 0 98 13:10:49,3551820 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56106 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41049555, endtime: 41050204, seqnum: 0, connid: 0 98 13:10:49,3551909 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56106 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41049556, endtime: 41050204, seqnum: 0, connid: 0 98 13:10:49,3551973 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56106 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41049558, endtime: 41050204, seqnum: 0, connid: 0 98 13:10:49,3552045 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56106 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41049559, endtime: 41050204, seqnum: 0, connid: 0 98 13:10:49,3552103 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56106 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41049562, endtime: 41050204, seqnum: 0, connid: 0 98 13:10:49,3552172 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56106 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41049564, endtime: 41050204, seqnum: 0, connid: 0 98 13:10:49,3552227 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56106 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41049566, endtime: 41050204, seqnum: 0, connid: 0 98 13:10:49,3552297 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56106 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41049567, endtime: 41050204, seqnum: 0, connid: 0 98 13:10:49,3552574 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56106 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41049569, endtime: 41050204, seqnum: 0, connid: 0 98 13:10:49,3552646 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56106 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41049570, endtime: 41050204, seqnum: 0, connid: 0 98 13:10:49,3552701 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56106 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41049572, endtime: 41050204, seqnum: 0, connid: 0 98 13:10:49,3552773 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56106 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41049573, endtime: 41050204, seqnum: 0, connid: 0 98 13:10:49,3749561 MCLauncher.exe 6080 TCP Reconnect WIN-0UOTFKKVN1S:56147 -> 54.36.38.171:25565 SUCCESS Length: 0, seqnum: 0, connid: 0 98 13:10:49,8083269 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56137 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41049701, endtime: 41050249, seqnum: 0, connid: 0 98 13:10:49,8083424 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56137 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41049703, endtime: 41050249, seqnum: 0, connid: 0 98 13:10:49,8083512 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56137 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41049705, endtime: 41050249, seqnum: 0, connid: 0 98 13:10:49,8083579 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56137 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41049706, endtime: 41050249, seqnum: 0, connid: 0 98 13:10:49,8083651 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56137 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41049709, endtime: 41050249, seqnum: 0, connid: 0 98 13:10:49,8083712 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56137 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41049711, endtime: 41050249, seqnum: 0, connid: 0 98 13:10:49,8083781 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56137 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41049712, endtime: 41050249, seqnum: 0, connid: 0 98 13:10:49,8083839 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56137 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41049714, endtime: 41050249, seqnum: 0, connid: 0 98 13:10:49,8083909 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56137 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41049716, endtime: 41050249, seqnum: 0, connid: 0 98 13:10:49,8084205 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56137 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41049717, endtime: 41050249, seqnum: 0, connid: 0 98 13:10:49,8084277 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56137 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41049719, endtime: 41050249, seqnum: 0, connid: 0 98 13:10:49,8084332 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56137 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41049723, endtime: 41050249, seqnum: 0, connid: 0 98 13:10:49,8084402 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56137 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41049725, endtime: 41050249, seqnum: 0, connid: 0 98 13:10:49,9232738 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56075 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41050013, endtime: 41050261, seqnum: 0, connid: 0 98 13:10:49,9232924 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56075 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41050014, endtime: 41050261, seqnum: 0, connid: 0 98 13:10:49,9233001 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56075 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41050015, endtime: 41050261, seqnum: 0, connid: 0 98 13:10:49,9233076 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56075 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41050017, endtime: 41050261, seqnum: 0, connid: 0 98 13:10:49,9233131 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56075 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41050019, endtime: 41050261, seqnum: 0, connid: 0 98 13:10:49,9233198 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56075 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41050020, endtime: 41050261, seqnum: 0, connid: 0 98 13:10:49,9233256 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56075 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41050023, endtime: 41050261, seqnum: 0, connid: 0 98 13:10:49,9233323 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56075 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41050025, endtime: 41050261, seqnum: 0, connid: 0 98 13:10:49,9233375 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56075 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41050026, endtime: 41050261, seqnum: 0, connid: 0 98 13:10:49,9233816 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56075 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41050028, endtime: 41050261, seqnum: 0, connid: 0 98 13:10:49,9233885 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56075 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41050030, endtime: 41050261, seqnum: 0, connid: 0 98 13:10:49,9233954 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56075 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41050031, endtime: 41050261, seqnum: 0, connid: 0 98 13:10:49,9234010 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56075 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41050033, endtime: 41050261, seqnum: 0, connid: 0 98 13:10:50,7608001 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56075 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41050261, endtime: 41050345, seqnum: 0, connid: 0 98 13:10:50,7608331 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56075 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41050262, endtime: 41050345, seqnum: 0, connid: 0 98 13:10:50,7608422 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56075 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41050264, endtime: 41050345, seqnum: 0, connid: 0 98 13:10:50,7608508 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56075 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41050265, endtime: 41050345, seqnum: 0, connid: 0 98 13:10:50,7608577 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56075 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41050267, endtime: 41050345, seqnum: 0, connid: 0 98 13:10:50,7608652 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56075 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41050270, endtime: 41050345, seqnum: 0, connid: 0 98 13:10:50,7608716 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56075 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41050272, endtime: 41050345, seqnum: 0, connid: 0 98 13:10:50,7608791 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56075 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41050273, endtime: 41050345, seqnum: 0, connid: 0 98 13:10:50,7608857 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56075 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41050274, endtime: 41050345, seqnum: 0, connid: 0 98 13:10:50,7609190 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56075 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41050275, endtime: 41050345, seqnum: 0, connid: 0 98 13:10:50,7609253 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56075 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41050278, endtime: 41050345, seqnum: 0, connid: 0 98 13:10:50,7609323 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56075 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41050279, endtime: 41050345, seqnum: 0, connid: 0 98 13:10:50,7609381 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56075 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41050281, endtime: 41050345, seqnum: 0, connid: 0 98 13:10:53,4989265 MCLauncher.exe 6080 TCP Reconnect WIN-0UOTFKKVN1S:56154 -> 54.36.38.171:25565 SUCCESS Length: 0, seqnum: 0, connid: 0 98 13:10:53,8483925 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56075 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41050345, endtime: 41050653, seqnum: 0, connid: 0 98 13:10:53,8484133 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56075 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41050347, endtime: 41050653, seqnum: 0, connid: 0 98 13:10:53,8484210 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56075 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41050348, endtime: 41050653, seqnum: 0, connid: 0 98 13:10:53,8484291 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56075 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41050350, endtime: 41050653, seqnum: 0, connid: 0 98 13:10:53,8484354 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56075 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41050353, endtime: 41050653, seqnum: 0, connid: 0 98 13:10:53,8484424 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56075 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41050355, endtime: 41050653, seqnum: 0, connid: 0 98 13:10:53,8484479 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56075 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41050356, endtime: 41050653, seqnum: 0, connid: 0 98 13:10:53,8484548 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56075 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41050360, endtime: 41050653, seqnum: 0, connid: 0 98 13:10:53,8484606 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56075 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41050361, endtime: 41050653, seqnum: 0, connid: 0 98 13:10:53,8484925 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56075 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41050364, endtime: 41050653, seqnum: 0, connid: 0 98 13:10:53,8484989 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56075 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41050365, endtime: 41050653, seqnum: 0, connid: 0 98 13:10:53,8485055 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56075 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41050367, endtime: 41050653, seqnum: 0, connid: 0 98 13:10:53,8485113 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56075 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41050369, endtime: 41050653, seqnum: 0, connid: 0 98 13:10:53,9368556 MCLauncher.exe 6080 TCP Reconnect WIN-0UOTFKKVN1S:56149 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 0, seqnum: 0, connid: 0 98 13:10:54,0327060 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56137 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41050249, endtime: 41050672, seqnum: 0, connid: 0 98 13:10:54,0327231 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56137 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41050251, endtime: 41050672, seqnum: 0, connid: 0 98 13:10:54,0327306 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56137 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41050253, endtime: 41050672, seqnum: 0, connid: 0 98 13:10:54,0327381 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56137 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41050255, endtime: 41050672, seqnum: 0, connid: 0 98 13:10:54,0327439 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56137 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41050256, endtime: 41050672, seqnum: 0, connid: 0 98 13:10:54,0327511 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56137 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41050259, endtime: 41050672, seqnum: 0, connid: 0 98 13:10:54,0327567 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56137 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41050261, endtime: 41050672, seqnum: 0, connid: 0 98 13:10:54,0327633 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56137 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41050262, endtime: 41050672, seqnum: 0, connid: 0 98 13:10:54,0327849 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56137 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41050264, endtime: 41050672, seqnum: 0, connid: 0 98 13:10:54,0328220 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56137 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41050265, endtime: 41050672, seqnum: 0, connid: 0 98 13:10:54,0328279 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56137 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41050270, endtime: 41050672, seqnum: 0, connid: 0 98 13:10:54,0328348 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56137 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41050272, endtime: 41050672, seqnum: 0, connid: 0 98 13:10:54,0328406 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56137 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41050273, endtime: 41050672, seqnum: 0, connid: 0 98 13:10:55,0400044 MCLauncher.exe 6080 TCP TCPCopy WIN-0UOTFKKVN1S:54920 -> sheltex.company:8000 SUCCESS Length: 2, seqnum: 0, connid: 0 98 13:10:55,0400261 MCLauncher.exe 6080 TCP Receive WIN-0UOTFKKVN1S:54920 -> sheltex.company:8000 SUCCESS Length: 2, seqnum: 0, connid: 0 98 13:10:55,0403297 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54920 -> sheltex.company:8000 SUCCESS Length: 2, startime: 41050773, endtime: 41050773, seqnum: 0, connid: 0 98 13:10:55,0438915 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56141 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41049873, endtime: 41050773, seqnum: 0, connid: 0 98 13:10:55,0439065 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56141 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41049875, endtime: 41050773, seqnum: 0, connid: 0 98 13:10:55,0439154 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56141 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41049876, endtime: 41050773, seqnum: 0, connid: 0 98 13:10:55,0439217 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56141 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41049878, endtime: 41050773, seqnum: 0, connid: 0 98 13:10:55,0439289 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56141 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41049880, endtime: 41050773, seqnum: 0, connid: 0 98 13:10:55,0439348 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56141 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41049884, endtime: 41050773, seqnum: 0, connid: 0 98 13:10:55,0439417 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56141 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41049886, endtime: 41050773, seqnum: 0, connid: 0 98 13:10:55,0439472 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56141 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41049888, endtime: 41050773, seqnum: 0, connid: 0 98 13:10:55,0439542 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56141 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41049889, endtime: 41050773, seqnum: 0, connid: 0 98 13:10:55,0439819 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56141 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41049892, endtime: 41050773, seqnum: 0, connid: 0 98 13:10:55,0440071 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56141 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41049894, endtime: 41050773, seqnum: 0, connid: 0 98 13:10:55,0440176 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56141 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41049895, endtime: 41050773, seqnum: 0, connid: 0 98 13:10:55,0440303 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56141 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41049897, endtime: 41050773, seqnum: 0, connid: 0 98 13:10:56,0179023 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56075 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41050653, endtime: 41050870, seqnum: 0, connid: 0 98 13:10:56,0179256 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56075 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41050655, endtime: 41050870, seqnum: 0, connid: 0 98 13:10:56,0179339 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56075 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41050656, endtime: 41050870, seqnum: 0, connid: 0 98 13:10:56,0179419 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56075 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41050658, endtime: 41050870, seqnum: 0, connid: 0 98 13:10:56,0179483 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56075 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41050659, endtime: 41050870, seqnum: 0, connid: 0 98 13:10:56,0179555 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56075 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41050662, endtime: 41050870, seqnum: 0, connid: 0 98 13:10:56,0179613 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56075 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41050664, endtime: 41050870, seqnum: 0, connid: 0 98 13:10:56,0179685 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56075 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41050665, endtime: 41050870, seqnum: 0, connid: 0 98 13:10:56,0179743 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56075 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41050667, endtime: 41050870, seqnum: 0, connid: 0 98 13:10:56,0180317 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56075 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41050669, endtime: 41050870, seqnum: 0, connid: 0 98 13:10:56,0180405 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56075 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41050670, endtime: 41050870, seqnum: 0, connid: 0 98 13:10:56,0180480 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56075 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41050672, endtime: 41050870, seqnum: 0, connid: 0 98 13:10:56,0180541 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56075 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41050673, endtime: 41050870, seqnum: 0, connid: 0 98 13:10:56,6135556 MCLauncher.exe 6080 TCP Disconnect WIN-0UOTFKKVN1S:56075 -> 54.36.38.171:25565 SUCCESS Length: 0, seqnum: 0, connid: 0 98 13:10:56,7171438 MCLauncher.exe 6080 TCP Connect WIN-0UOTFKKVN1S:56160 -> 54.36.38.171:25565 SUCCESS Length: 0, mss: 1460, sackopt: 0, tsopt: 0, wsopt: 0, rcvwin: 64240, rcvwinscale: 0, sndwinscale: 0, seqnum: 0, connid: 0 98 13:10:56,7175417 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56160 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41050940, endtime: 41050940, seqnum: 0, connid: 0 98 13:10:56,7350203 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56160 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41050942, endtime: 41050942, seqnum: 0, connid: 0 98 13:10:56,7692190 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56160 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41050946, endtime: 41050946, seqnum: 0, connid: 0 98 13:10:56,7813457 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56160 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41050947, endtime: 41050947, seqnum: 0, connid: 0 98 13:10:56,7998489 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56160 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41050949, endtime: 41050949, seqnum: 0, connid: 0 98 13:10:56,8286653 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56160 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41050951, endtime: 41050951, seqnum: 0, connid: 0 98 13:10:56,8437806 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56160 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41050953, endtime: 41050953, seqnum: 0, connid: 0 98 13:10:56,8636865 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56160 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41050955, endtime: 41050955, seqnum: 0, connid: 0 98 13:10:56,8856621 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56106 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41050204, endtime: 41050957, seqnum: 0, connid: 0 98 13:10:56,8857003 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56106 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41050206, endtime: 41050957, seqnum: 0, connid: 0 98 13:10:56,8857144 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56106 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41050209, endtime: 41050957, seqnum: 0, connid: 0 98 13:10:56,8857238 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56106 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41050213, endtime: 41050957, seqnum: 0, connid: 0 98 13:10:56,8857308 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56106 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41050214, endtime: 41050957, seqnum: 0, connid: 0 98 13:10:56,8857388 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56106 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41050218, endtime: 41050957, seqnum: 0, connid: 0 98 13:10:56,8857452 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56106 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41050220, endtime: 41050957, seqnum: 0, connid: 0 98 13:10:56,8857624 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56106 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41050222, endtime: 41050957, seqnum: 0, connid: 0 98 13:10:56,8857787 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56106 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41050223, endtime: 41050957, seqnum: 0, connid: 0 98 13:10:56,8878195 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56106 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41050225, endtime: 41050957, seqnum: 0, connid: 0 98 13:10:56,8878306 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56106 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41050227, endtime: 41050957, seqnum: 0, connid: 0 98 13:10:56,8878389 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56106 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41050230, endtime: 41050957, seqnum: 0, connid: 0 98 13:10:56,8878450 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56106 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41050233, endtime: 41050957, seqnum: 0, connid: 0 98 13:10:56,8905396 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56160 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41050958, endtime: 41050958, seqnum: 0, connid: 0 98 13:10:56,9071591 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56160 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41050959, endtime: 41050959, seqnum: 0, connid: 0 98 13:10:56,9240662 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56160 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41050961, endtime: 41050961, seqnum: 0, connid: 0 98 13:10:56,9536150 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56160 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41050964, endtime: 41050964, seqnum: 0, connid: 0 98 13:10:56,9712106 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56160 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41050965, endtime: 41050966, seqnum: 0, connid: 0 98 13:10:57,0016505 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56160 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41050969, endtime: 41050969, seqnum: 0, connid: 0 98 13:10:57,0165245 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56160 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41050970, endtime: 41050970, seqnum: 0, connid: 0 98 13:10:57,0491800 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56160 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41050973, endtime: 41050974, seqnum: 0, connid: 0 98 13:10:57,0549408 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56160 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41050974, endtime: 41050974, seqnum: 0, connid: 0 98 13:10:57,0859611 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56160 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41050976, endtime: 41050977, seqnum: 0, connid: 0 98 13:10:57,1101054 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56160 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41050979, endtime: 41050980, seqnum: 0, connid: 0 98 13:10:57,1248914 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56160 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41050981, endtime: 41050981, seqnum: 0, connid: 0 98 13:10:57,1416211 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56160 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41050983, endtime: 41050983, seqnum: 0, connid: 0 98 13:10:57,1801219 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56160 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41050986, endtime: 41050987, seqnum: 0, connid: 0 98 13:10:57,1878216 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56160 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41050987, endtime: 41050987, seqnum: 0, connid: 0 98 13:10:57,2042751 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56160 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41050989, endtime: 41050989, seqnum: 0, connid: 0 98 13:10:57,2201967 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56160 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41050990, endtime: 41050991, seqnum: 0, connid: 0 98 13:10:57,2351990 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56160 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41050992, endtime: 41050992, seqnum: 0, connid: 0 98 13:10:57,2514079 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56160 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41050994, endtime: 41050994, seqnum: 0, connid: 0 98 13:10:57,2685845 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56160 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41050995, endtime: 41050995, seqnum: 0, connid: 0 98 13:10:57,2997891 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56160 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41050998, endtime: 41050999, seqnum: 0, connid: 0 98 13:10:57,3142786 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56160 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41051000, endtime: 41051000, seqnum: 0, connid: 0 98 13:10:57,3209221 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56160 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41051001, endtime: 41051001, seqnum: 0, connid: 0 98 13:10:57,3494600 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56160 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41051003, endtime: 41051004, seqnum: 0, connid: 0 98 13:10:57,3755088 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56160 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41051006, endtime: 41051006, seqnum: 0, connid: 0 98 13:10:57,3905726 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56160 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41051008, endtime: 41051008, seqnum: 0, connid: 0 98 13:10:57,4067488 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56160 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41051009, endtime: 41051009, seqnum: 0, connid: 0 98 13:10:57,8670458 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56160 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41051011, endtime: 41051055, seqnum: 0, connid: 0 98 13:10:57,8670611 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56160 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41051014, endtime: 41051055, seqnum: 0, connid: 0 98 13:10:57,8671633 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56160 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41051016, endtime: 41051055, seqnum: 0, connid: 0 98 13:10:58,0503403 MCLauncher.exe 6080 TCP Reconnect WIN-0UOTFKKVN1S:56158 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 0, seqnum: 0, connid: 0 98 13:10:59,3345064 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56137 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41050672, endtime: 41051202, seqnum: 0, connid: 0 98 13:10:59,3345264 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56137 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41050673, endtime: 41051202, seqnum: 0, connid: 0 98 13:10:59,3345366 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56137 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41050674, endtime: 41051202, seqnum: 0, connid: 0 98 13:10:59,3345441 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56137 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41050676, endtime: 41051202, seqnum: 0, connid: 0 98 13:10:59,3345527 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56137 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41050678, endtime: 41051202, seqnum: 0, connid: 0 98 13:10:59,3345594 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56137 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41050680, endtime: 41051202, seqnum: 0, connid: 0 98 13:10:59,3345671 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56137 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41050681, endtime: 41051202, seqnum: 0, connid: 0 98 13:10:59,3345735 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56137 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41050683, endtime: 41051202, seqnum: 0, connid: 0 98 13:10:59,3345812 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56137 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41050684, endtime: 41051202, seqnum: 0, connid: 0 98 13:10:59,3346109 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56137 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41050686, endtime: 41051202, seqnum: 0, connid: 0 98 13:10:59,3346192 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56137 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41050688, endtime: 41051202, seqnum: 0, connid: 0 98 13:10:59,3346256 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56137 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41050689, endtime: 41051202, seqnum: 0, connid: 0 98 13:10:59,3346330 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56137 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41050692, endtime: 41051202, seqnum: 0, connid: 0 98 13:10:59,5004622 MCLauncher.exe 6080 TCP Reconnect WIN-0UOTFKKVN1S:56154 -> 54.36.38.171:25565 SUCCESS Length: 0, seqnum: 0, connid: 0 98 13:11:00,4997853 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56141 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41050773, endtime: 41051319, seqnum: 0, connid: 0 98 13:11:00,4998069 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56141 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41050774, endtime: 41051319, seqnum: 0, connid: 0 98 13:11:00,4998158 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56141 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41050776, endtime: 41051319, seqnum: 0, connid: 0 98 13:11:00,4998394 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56141 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41050778, endtime: 41051319, seqnum: 0, connid: 0 98 13:11:00,4998532 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56141 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41050779, endtime: 41051319, seqnum: 0, connid: 0 98 13:11:00,4998659 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56141 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41050781, endtime: 41051319, seqnum: 0, connid: 0 98 13:11:00,4998768 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56141 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41050783, endtime: 41051319, seqnum: 0, connid: 0 98 13:11:00,4998889 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56141 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41050784, endtime: 41051319, seqnum: 0, connid: 0 98 13:11:00,4998961 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56141 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41050786, endtime: 41051319, seqnum: 0, connid: 0 98 13:11:00,4999355 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56141 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41050787, endtime: 41051319, seqnum: 0, connid: 0 98 13:11:00,4999419 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56141 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41050789, endtime: 41051319, seqnum: 0, connid: 0 98 13:11:00,4999491 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56141 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41050792, endtime: 41051319, seqnum: 0, connid: 0 98 13:11:00,4999554 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56141 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41050794, endtime: 41051319, seqnum: 0, connid: 0 98 13:11:02,4199948 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56160 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41051018, endtime: 41051511, seqnum: 0, connid: 0 98 13:11:02,4200112 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56160 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41051020, endtime: 41051511, seqnum: 0, connid: 0 98 13:11:02,4200198 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56160 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41051024, endtime: 41051511, seqnum: 0, connid: 0 98 13:11:02,4200262 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56160 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41051025, endtime: 41051511, seqnum: 0, connid: 0 98 13:11:02,4200331 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56160 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41051027, endtime: 41051511, seqnum: 0, connid: 0 98 13:11:02,4200483 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56160 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41051028, endtime: 41051511, seqnum: 0, connid: 0 98 13:11:02,4200575 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56160 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41051030, endtime: 41051511, seqnum: 0, connid: 0 98 13:11:02,4200636 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56160 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41051031, endtime: 41051511, seqnum: 0, connid: 0 98 13:11:02,4200710 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56160 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41051033, endtime: 41051511, seqnum: 0, connid: 0 98 13:11:02,4201043 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56160 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41051034, endtime: 41051511, seqnum: 0, connid: 0 98 13:11:02,4201115 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56160 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41051055, endtime: 41051511, seqnum: 0, connid: 0 98 13:11:02,4201170 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56160 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41051056, endtime: 41051511, seqnum: 0, connid: 0 98 13:11:02,4201240 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56160 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41051058, endtime: 41051511, seqnum: 0, connid: 0 98 13:11:03,5057326 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56106 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41050957, endtime: 41051619, seqnum: 0, connid: 0 98 13:11:03,5057495 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56106 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41050959, endtime: 41051619, seqnum: 0, connid: 0 98 13:11:03,5057587 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56106 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41050961, endtime: 41051619, seqnum: 0, connid: 0 98 13:11:03,5057653 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56106 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41050964, endtime: 41051619, seqnum: 0, connid: 0 98 13:11:03,5057725 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56106 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41050965, endtime: 41051619, seqnum: 0, connid: 0 98 13:11:03,5057794 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56106 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41050969, endtime: 41051619, seqnum: 0, connid: 0 98 13:11:03,5057853 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56106 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41050970, endtime: 41051619, seqnum: 0, connid: 0 98 13:11:03,5057922 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56106 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41050973, endtime: 41051619, seqnum: 0, connid: 0 98 13:11:03,5057977 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56106 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41050974, endtime: 41051619, seqnum: 0, connid: 0 98 13:11:03,5058287 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56106 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41050976, endtime: 41051619, seqnum: 0, connid: 0 98 13:11:03,5058348 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56106 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41050979, endtime: 41051619, seqnum: 0, connid: 0 98 13:11:03,5058415 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56106 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41050981, endtime: 41051619, seqnum: 0, connid: 0 98 13:11:03,5058470 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56106 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41050983, endtime: 41051619, seqnum: 0, connid: 0 98 13:11:03,7178351 MCLauncher.exe 6080 TCP Reconnect WIN-0UOTFKKVN1S:56163 -> 54.36.38.171:25565 SUCCESS Length: 0, seqnum: 0, connid: 0 98 13:11:03,8008746 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56137 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41051202, endtime: 41051649, seqnum: 0, connid: 0 98 13:11:03,8009012 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56137 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41051203, endtime: 41051649, seqnum: 0, connid: 0 98 13:11:03,8009134 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56137 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41051205, endtime: 41051649, seqnum: 0, connid: 0 98 13:11:03,8009261 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56137 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41051206, endtime: 41051649, seqnum: 0, connid: 0 98 13:11:03,8009328 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56137 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41051208, endtime: 41051649, seqnum: 0, connid: 0 98 13:11:03,8009405 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56137 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41051209, endtime: 41051649, seqnum: 0, connid: 0 98 13:11:03,8009464 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56137 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41051211, endtime: 41051649, seqnum: 0, connid: 0 98 13:11:03,8009541 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56137 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41051212, endtime: 41051649, seqnum: 0, connid: 0 98 13:11:03,8009608 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56137 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41051214, endtime: 41051649, seqnum: 0, connid: 0 98 13:11:03,8009968 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56137 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41051215, endtime: 41051649, seqnum: 0, connid: 0 98 13:11:03,8010032 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56137 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41051217, endtime: 41051649, seqnum: 0, connid: 0 98 13:11:03,8010104 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56137 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41051219, endtime: 41051649, seqnum: 0, connid: 0 98 13:11:03,8010165 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56137 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41051222, endtime: 41051649, seqnum: 0, connid: 0 98 13:11:04,0543903 MCLauncher.exe 6080 TCP Reconnect WIN-0UOTFKKVN1S:56158 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 0, seqnum: 0, connid: 0 98 13:11:05,1817798 MCLauncher.exe 6080 TCP TCPCopy WIN-0UOTFKKVN1S:54920 -> sheltex.company:8000 SUCCESS Length: 2, seqnum: 0, connid: 0 98 13:11:05,1817926 MCLauncher.exe 6080 TCP Receive WIN-0UOTFKKVN1S:54920 -> sheltex.company:8000 SUCCESS Length: 2, seqnum: 0, connid: 0 98 13:11:05,1821350 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54920 -> sheltex.company:8000 SUCCESS Length: 2, startime: 41051787, endtime: 41051787, seqnum: 0, connid: 0 98 13:11:05,6225106 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56160 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41051511, endtime: 41051831, seqnum: 0, connid: 0 98 13:11:05,6225447 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56160 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41051512, endtime: 41051831, seqnum: 0, connid: 0 98 13:11:05,6225536 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56160 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41051514, endtime: 41051831, seqnum: 0, connid: 0 98 13:11:05,6225622 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56160 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41051517, endtime: 41051831, seqnum: 0, connid: 0 98 13:11:05,6225685 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56160 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41051519, endtime: 41051831, seqnum: 0, connid: 0 98 13:11:05,6225760 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56160 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41051520, endtime: 41051831, seqnum: 0, connid: 0 98 13:11:05,6225821 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56160 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41051522, endtime: 41051831, seqnum: 0, connid: 0 98 13:11:05,6225896 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56160 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41051525, endtime: 41051831, seqnum: 0, connid: 0 98 13:11:05,6225957 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56160 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41051526, endtime: 41051831, seqnum: 0, connid: 0 98 13:11:05,6226287 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56160 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41051528, endtime: 41051831, seqnum: 0, connid: 0 98 13:11:05,6226347 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56160 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41051532, endtime: 41051831, seqnum: 0, connid: 0 98 13:11:05,6226417 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56160 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41051534, endtime: 41051831, seqnum: 0, connid: 0 98 13:11:05,6226475 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56160 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41051536, endtime: 41051831, seqnum: 0, connid: 0 98 13:11:07,6376661 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56160 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41051831, endtime: 41052032, seqnum: 0, connid: 0 98 13:11:07,6376844 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56160 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41051833, endtime: 41052032, seqnum: 0, connid: 0 98 13:11:07,6376922 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56160 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41051834, endtime: 41052032, seqnum: 0, connid: 0 98 13:11:07,6377005 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56160 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41051836, endtime: 41052032, seqnum: 0, connid: 0 98 13:11:07,6377072 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56160 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41051837, endtime: 41052032, seqnum: 0, connid: 0 98 13:11:07,6377144 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56160 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41051839, endtime: 41052032, seqnum: 0, connid: 0 98 13:11:07,6377204 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56160 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41051841, endtime: 41052032, seqnum: 0, connid: 0 98 13:11:07,6377277 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56160 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41051842, endtime: 41052032, seqnum: 0, connid: 0 98 13:11:07,6377337 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56160 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41051844, endtime: 41052032, seqnum: 0, connid: 0 98 13:11:07,6377637 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56160 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41051845, endtime: 41052032, seqnum: 0, connid: 0 98 13:11:07,6377700 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56160 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41051847, endtime: 41052032, seqnum: 0, connid: 0 98 13:11:07,6377772 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56160 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41051848, endtime: 41052032, seqnum: 0, connid: 0 98 13:11:07,6377833 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56160 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41051850, endtime: 41052032, seqnum: 0, connid: 0 98 13:11:08,2025818 MCLauncher.exe 6080 TCP Reconnect WIN-0UOTFKKVN1S:56166 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 0, seqnum: 0, connid: 0 98 13:11:08,7418716 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56137 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41051649, endtime: 41052143, seqnum: 0, connid: 0 98 13:11:08,7418894 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56137 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41051650, endtime: 41052143, seqnum: 0, connid: 0 98 13:11:08,7418971 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56137 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41051651, endtime: 41052143, seqnum: 0, connid: 0 98 13:11:08,7419046 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56137 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41051654, endtime: 41052143, seqnum: 0, connid: 0 98 13:11:08,7419104 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56137 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41051656, endtime: 41052143, seqnum: 0, connid: 0 98 13:11:08,7419173 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56137 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41051658, endtime: 41052143, seqnum: 0, connid: 0 98 13:11:08,7419229 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56137 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41051661, endtime: 41052143, seqnum: 0, connid: 0 98 13:11:08,7419298 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56137 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41051662, endtime: 41052143, seqnum: 0, connid: 0 98 13:11:08,7419351 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56137 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41051664, endtime: 41052143, seqnum: 0, connid: 0 98 13:11:08,7419639 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56137 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41051667, endtime: 41052143, seqnum: 0, connid: 0 98 13:11:08,7419700 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56137 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41051670, endtime: 41052143, seqnum: 0, connid: 0 98 13:11:08,7419766 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56137 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41051672, endtime: 41052143, seqnum: 0, connid: 0 98 13:11:08,7420780 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56137 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41051673, endtime: 41052143, seqnum: 0, connid: 0 98 13:11:09,7336107 MCLauncher.exe 6080 TCP Reconnect WIN-0UOTFKKVN1S:56163 -> 54.36.38.171:25565 SUCCESS Length: 0, seqnum: 0, connid: 0 98 13:11:10,0778896 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56141 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41051328, endtime: 41052276, seqnum: 0, connid: 0 98 13:11:10,0779110 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56141 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41051329, endtime: 41052276, seqnum: 0, connid: 0 98 13:11:10,0779204 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56141 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41051333, endtime: 41052276, seqnum: 0, connid: 0 98 13:11:10,0779273 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56141 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41051334, endtime: 41052276, seqnum: 0, connid: 0 98 13:11:10,0779351 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56141 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41051336, endtime: 41052276, seqnum: 0, connid: 0 98 13:11:10,0779415 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56141 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41051339, endtime: 41052276, seqnum: 0, connid: 0 98 13:11:10,0779633 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56141 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41051340, endtime: 41052276, seqnum: 0, connid: 0 98 13:11:10,0779750 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56141 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41051342, endtime: 41052276, seqnum: 0, connid: 0 98 13:11:10,0779861 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56141 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41051344, endtime: 41052276, seqnum: 0, connid: 0 98 13:11:10,0780318 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56141 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41051349, endtime: 41052276, seqnum: 0, connid: 0 98 13:11:10,0780401 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56141 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41051350, endtime: 41052276, seqnum: 0, connid: 0 98 13:11:10,0780462 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56141 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41051351, endtime: 41052276, seqnum: 0, connid: 0 98 13:11:10,0780539 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56141 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41051353, endtime: 41052276, seqnum: 0, connid: 0 98 13:11:11,3237475 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56106 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41051619, endtime: 41052401, seqnum: 0, connid: 0 98 13:11:11,3237639 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56106 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41051622, endtime: 41052401, seqnum: 0, connid: 0 98 13:11:11,3237727 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56106 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41051624, endtime: 41052401, seqnum: 0, connid: 0 98 13:11:11,3237788 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56106 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41051625, endtime: 41052401, seqnum: 0, connid: 0 98 13:11:11,3237860 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56106 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41051626, endtime: 41052401, seqnum: 0, connid: 0 98 13:11:11,3237916 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56106 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41051628, endtime: 41052401, seqnum: 0, connid: 0 98 13:11:11,3237985 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56106 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41051630, endtime: 41052401, seqnum: 0, connid: 0 98 13:11:11,3238040 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56106 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41051633, endtime: 41052401, seqnum: 0, connid: 0 98 13:11:11,3238107 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56106 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41051636, endtime: 41052401, seqnum: 0, connid: 0 98 13:11:11,3238866 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56106 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41051639, endtime: 41052401, seqnum: 0, connid: 0 98 13:11:11,3238949 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56106 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41051640, endtime: 41052401, seqnum: 0, connid: 0 98 13:11:11,3239010 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56106 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41051642, endtime: 41052401, seqnum: 0, connid: 0 98 13:11:11,3971139 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56160 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41052032, endtime: 41052408, seqnum: 0, connid: 0 98 13:11:11,3971325 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56160 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41052034, endtime: 41052408, seqnum: 0, connid: 0 98 13:11:11,3971399 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56160 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41052036, endtime: 41052408, seqnum: 0, connid: 0 98 13:11:11,3971474 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56160 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41052040, endtime: 41052408, seqnum: 0, connid: 0 98 13:11:11,3971535 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56160 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41052040, endtime: 41052408, seqnum: 0, connid: 0 98 13:11:11,3971602 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56160 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41052042, endtime: 41052408, seqnum: 0, connid: 0 98 13:11:11,3971657 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56160 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41052044, endtime: 41052408, seqnum: 0, connid: 0 98 13:11:11,3971726 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56160 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41052045, endtime: 41052408, seqnum: 0, connid: 0 98 13:11:11,3971782 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56160 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41052048, endtime: 41052408, seqnum: 0, connid: 0 98 13:11:11,3972067 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56160 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41052050, endtime: 41052408, seqnum: 0, connid: 0 98 13:11:11,3972128 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56160 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41052051, endtime: 41052408, seqnum: 0, connid: 0 98 13:11:11,3972195 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56160 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41052053, endtime: 41052408, seqnum: 0, connid: 0 98 13:11:11,3972250 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56160 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41052055, endtime: 41052408, seqnum: 0, connid: 0 98 13:11:12,3626265 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56137 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41052143, endtime: 41052505, seqnum: 0, connid: 0 98 13:11:12,3626423 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56137 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41052144, endtime: 41052505, seqnum: 0, connid: 0 98 13:11:12,3626501 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56137 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41052145, endtime: 41052505, seqnum: 0, connid: 0 98 13:11:12,3626584 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56137 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41052147, endtime: 41052505, seqnum: 0, connid: 0 98 13:11:12,3626650 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56137 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41052148, endtime: 41052505, seqnum: 0, connid: 0 98 13:11:12,3627033 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56137 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41052150, endtime: 41052505, seqnum: 0, connid: 0 98 13:11:12,3627110 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56137 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41052151, endtime: 41052505, seqnum: 0, connid: 0 98 13:11:12,3627188 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56137 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41052153, endtime: 41052505, seqnum: 0, connid: 0 98 13:11:12,3627249 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56137 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41052155, endtime: 41052505, seqnum: 0, connid: 0 98 13:11:12,3627601 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56137 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41052156, endtime: 41052505, seqnum: 0, connid: 0 98 13:11:12,3627659 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56137 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41052158, endtime: 41052505, seqnum: 0, connid: 0 98 13:11:12,3627731 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56137 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41052159, endtime: 41052505, seqnum: 0, connid: 0 98 13:11:12,3627789 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56137 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41052161, endtime: 41052505, seqnum: 0, connid: 0 98 13:11:13,8442006 MCLauncher.exe 6080 TCP Reconnect WIN-0UOTFKKVN1S:56168 -> 54.36.38.171:25565 SUCCESS Length: 0, seqnum: 0, connid: 0 98 13:11:14,2027943 MCLauncher.exe 6080 TCP Reconnect WIN-0UOTFKKVN1S:56166 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 0, seqnum: 0, connid: 0 98 13:11:15,2928660 MCLauncher.exe 6080 TCP TCPCopy WIN-0UOTFKKVN1S:54920 -> sheltex.company:8000 SUCCESS Length: 2, seqnum: 0, connid: 0 98 13:11:15,2928782 MCLauncher.exe 6080 TCP Receive WIN-0UOTFKKVN1S:54920 -> sheltex.company:8000 SUCCESS Length: 2, seqnum: 0, connid: 0 98 13:11:15,2931777 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:54920 -> sheltex.company:8000 SUCCESS Length: 2, startime: 41052798, endtime: 41052798, seqnum: 0, connid: 0 98 13:11:15,3105682 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56137 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41052505, endtime: 41052800, seqnum: 0, connid: 0 98 13:11:15,3105882 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56137 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41052506, endtime: 41052800, seqnum: 0, connid: 0 98 13:11:15,3105973 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56137 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41052508, endtime: 41052800, seqnum: 0, connid: 0 98 13:11:15,3106059 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56137 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41052511, endtime: 41052800, seqnum: 0, connid: 0 98 13:11:15,3106131 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56137 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41052512, endtime: 41052800, seqnum: 0, connid: 0 98 13:11:15,3106209 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56137 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41052514, endtime: 41052800, seqnum: 0, connid: 0 98 13:11:15,3106272 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56137 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41052515, endtime: 41052800, seqnum: 0, connid: 0 98 13:11:15,3106350 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56137 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41052517, endtime: 41052800, seqnum: 0, connid: 0 98 13:11:15,3106417 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56137 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41052519, endtime: 41052800, seqnum: 0, connid: 0 98 13:11:15,3106727 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56137 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41052522, endtime: 41052800, seqnum: 0, connid: 0 98 13:11:15,3106793 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56137 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41052523, endtime: 41052800, seqnum: 0, connid: 0 98 13:11:15,3106868 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56137 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41052530, endtime: 41052800, seqnum: 0, connid: 0 98 13:11:15,3106935 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56137 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41052533, endtime: 41052800, seqnum: 0, connid: 0 98 13:11:15,5559421 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56160 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41052408, endtime: 41052824, seqnum: 0, connid: 0 98 13:11:15,5559709 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56160 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41052409, endtime: 41052824, seqnum: 0, connid: 0 98 13:11:15,5559798 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56160 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41052411, endtime: 41052824, seqnum: 0, connid: 0 98 13:11:15,5559886 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56160 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41052412, endtime: 41052824, seqnum: 0, connid: 0 98 13:11:15,5559956 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56160 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41052414, endtime: 41052824, seqnum: 0, connid: 0 98 13:11:15,5560033 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56160 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41052416, endtime: 41052824, seqnum: 0, connid: 0 98 13:11:15,5560097 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56160 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41052417, endtime: 41052824, seqnum: 0, connid: 0 98 13:11:15,5560175 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56160 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41052419, endtime: 41052824, seqnum: 0, connid: 0 98 13:11:15,5560241 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56160 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41052420, endtime: 41052824, seqnum: 0, connid: 0 98 13:11:15,5560554 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56160 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41052422, endtime: 41052824, seqnum: 0, connid: 0 98 13:11:15,5560621 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56160 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41052423, endtime: 41052824, seqnum: 0, connid: 0 98 13:11:15,5560693 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56160 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41052425, endtime: 41052824, seqnum: 0, connid: 0 98 13:11:15,5560754 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56160 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41052426, endtime: 41052824, seqnum: 0, connid: 0 98 13:11:18,3120444 MCLauncher.exe 6080 TCP Reconnect WIN-0UOTFKKVN1S:56171 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 0, seqnum: 0, connid: 0 98 13:11:18,8322069 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56106 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41051644, endtime: 41053152, seqnum: 0, connid: 0 98 13:11:18,8322260 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56106 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41052401, endtime: 41053152, seqnum: 0, connid: 0 98 13:11:18,8322351 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56106 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41052403, endtime: 41053152, seqnum: 0, connid: 0 98 13:11:18,8322418 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56106 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41052405, endtime: 41053152, seqnum: 0, connid: 0 98 13:11:18,8322490 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56106 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41052406, endtime: 41053152, seqnum: 0, connid: 0 98 13:11:18,8322548 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56106 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41052408, endtime: 41053152, seqnum: 0, connid: 0 98 13:11:18,8322617 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56106 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41052409, endtime: 41053152, seqnum: 0, connid: 0 98 13:11:18,8322675 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56106 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41052411, endtime: 41053152, seqnum: 0, connid: 0 98 13:11:18,8322742 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56106 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41052412, endtime: 41053152, seqnum: 0, connid: 0 98 13:11:18,8322800 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56106 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41052414, endtime: 41053152, seqnum: 0, connid: 0 98 13:11:18,8323119 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56106 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41052416, endtime: 41053152, seqnum: 0, connid: 0 98 13:11:18,8323177 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56106 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41052417, endtime: 41053152, seqnum: 0, connid: 0 98 13:11:18,8323246 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56106 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41052419, endtime: 41053152, seqnum: 0, connid: 0 98 13:11:19,8585613 MCLauncher.exe 6080 TCP Reconnect WIN-0UOTFKKVN1S:56168 -> 54.36.38.171:25565 SUCCESS Length: 0, seqnum: 0, connid: 0 98 13:11:20,8045517 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56137 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41052800, endtime: 41053349, seqnum: 0, connid: 0 98 13:11:20,8045680 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56137 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41052800, endtime: 41053349, seqnum: 0, connid: 0 98 13:11:20,8045761 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56137 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41052803, endtime: 41053349, seqnum: 0, connid: 0 98 13:11:20,8045822 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56137 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41052805, endtime: 41053349, seqnum: 0, connid: 0 98 13:11:20,8045891 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56137 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41052806, endtime: 41053349, seqnum: 0, connid: 0 98 13:11:20,8045946 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56137 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41052808, endtime: 41053349, seqnum: 0, connid: 0 98 13:11:20,8046016 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56137 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41052809, endtime: 41053349, seqnum: 0, connid: 0 98 13:11:20,8046071 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56137 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41052811, endtime: 41053349, seqnum: 0, connid: 0 98 13:11:20,8046276 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56137 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41052812, endtime: 41053349, seqnum: 0, connid: 0 98 13:11:20,8046628 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56137 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41052814, endtime: 41053349, seqnum: 0, connid: 0 98 13:11:20,8046697 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56137 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41052816, endtime: 41053349, seqnum: 0, connid: 0 98 13:11:20,8046753 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56137 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41052819, endtime: 41053349, seqnum: 0, connid: 0 98 13:11:20,8052698 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56137 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41052822, endtime: 41053349, seqnum: 0, connid: 0 98 13:11:21,0398280 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56141 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41052276, endtime: 41053373, seqnum: 0, connid: 0 98 13:11:21,0398460 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56141 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41052278, endtime: 41053373, seqnum: 0, connid: 0 98 13:11:21,0398667 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56141 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41052281, endtime: 41053373, seqnum: 0, connid: 0 98 13:11:21,0398792 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56141 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41052284, endtime: 41053373, seqnum: 0, connid: 0 98 13:11:21,0398889 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56141 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41052287, endtime: 41053373, seqnum: 0, connid: 0 98 13:11:21,0399003 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56141 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41052289, endtime: 41053373, seqnum: 0, connid: 0 98 13:11:21,0399094 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56141 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41052291, endtime: 41053373, seqnum: 0, connid: 0 98 13:11:21,0399205 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56141 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41052292, endtime: 41053373, seqnum: 0, connid: 0 98 13:11:21,0399296 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56141 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41052295, endtime: 41053373, seqnum: 0, connid: 0 98 13:11:21,0399695 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56141 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41052298, endtime: 41053373, seqnum: 0, connid: 0 98 13:11:21,0399762 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56141 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41052300, endtime: 41053373, seqnum: 0, connid: 0 98 13:11:21,0399834 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56141 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41052300, endtime: 41053373, seqnum: 0, connid: 0 98 13:11:21,0399892 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56141 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41052303, endtime: 41053373, seqnum: 0, connid: 0 98 13:11:21,6673574 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56160 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41052824, endtime: 41053435, seqnum: 0, connid: 0 98 13:11:21,6673829 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56160 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41052825, endtime: 41053435, seqnum: 0, connid: 0 98 13:11:21,6673918 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56160 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41052826, endtime: 41053435, seqnum: 0, connid: 0 98 13:11:21,6674001 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56160 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41052828, endtime: 41053435, seqnum: 0, connid: 0 98 13:11:21,6674070 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56160 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41052829, endtime: 41053435, seqnum: 0, connid: 0 98 13:11:21,6674145 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56160 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41052831, endtime: 41053435, seqnum: 0, connid: 0 98 13:11:21,6674206 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56160 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41052834, endtime: 41053435, seqnum: 0, connid: 0 98 13:11:21,6674278 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56160 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41052836, endtime: 41053435, seqnum: 0, connid: 0 98 13:11:21,6674342 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56160 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41052839, endtime: 41053435, seqnum: 0, connid: 0 98 13:11:21,6674663 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56160 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41052841, endtime: 41053435, seqnum: 0, connid: 0 98 13:11:21,6674724 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56160 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41052842, endtime: 41053435, seqnum: 0, connid: 0 98 13:11:21,6674793 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56160 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41052844, endtime: 41053435, seqnum: 0, connid: 0 98 13:11:21,6674849 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56160 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41052845, endtime: 41053435, seqnum: 0, connid: 0 98 13:11:23,3745524 MCLauncher.exe 6080 TCP Reconnect WIN-0UOTFKKVN1S:56175 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 0, seqnum: 0, connid: 0 98 13:11:23,4749736 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56106 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41053152, endtime: 41053616, seqnum: 0, connid: 0 98 13:11:23,4749941 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56106 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41053153, endtime: 41053616, seqnum: 0, connid: 0 98 13:11:23,4750027 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56106 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41053155, endtime: 41053616, seqnum: 0, connid: 0 98 13:11:23,4750113 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56106 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41053156, endtime: 41053616, seqnum: 0, connid: 0 98 13:11:23,4750179 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56106 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41053158, endtime: 41053616, seqnum: 0, connid: 0 98 13:11:23,4750257 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56106 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41053159, endtime: 41053616, seqnum: 0, connid: 0 98 13:11:23,4750320 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56106 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41053161, endtime: 41053616, seqnum: 0, connid: 0 98 13:11:23,4750395 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56106 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41053162, endtime: 41053616, seqnum: 0, connid: 0 98 13:11:23,4750462 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56106 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41053166, endtime: 41053616, seqnum: 0, connid: 0 98 13:11:23,4750783 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56106 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41053167, endtime: 41053616, seqnum: 0, connid: 0 98 13:11:23,4750847 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56106 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41053169, endtime: 41053616, seqnum: 0, connid: 0 98 13:11:23,4750916 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56106 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41053170, endtime: 41053616, seqnum: 0, connid: 0 98 13:11:23,4750977 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56106 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 5120, startime: 41053172, endtime: 41053616, seqnum: 0, connid: 0 98 13:11:23,9845198 MCLauncher.exe 6080 TCP Reconnect WIN-0UOTFKKVN1S:56176 -> 54.36.38.171:25565 SUCCESS Length: 0, seqnum: 0, connid: 0 98 13:11:24,1161899 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56160 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41053435, endtime: 41053680, seqnum: 0, connid: 0 98 13:11:24,1162112 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56160 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41053437, endtime: 41053680, seqnum: 0, connid: 0 98 13:11:24,1162195 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56160 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41053441, endtime: 41053680, seqnum: 0, connid: 0 98 13:11:24,1162281 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56160 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41053444, endtime: 41053680, seqnum: 0, connid: 0 98 13:11:24,1162348 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56160 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41053447, endtime: 41053680, seqnum: 0, connid: 0 98 13:11:24,1162420 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56160 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41053449, endtime: 41053680, seqnum: 0, connid: 0 98 13:11:24,1162481 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56160 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41053451, endtime: 41053680, seqnum: 0, connid: 0 98 13:11:24,1162553 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56160 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41053451, endtime: 41053680, seqnum: 0, connid: 0 98 13:11:24,1162614 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56160 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41053453, endtime: 41053680, seqnum: 0, connid: 0 98 13:11:24,1162929 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56160 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41053456, endtime: 41053680, seqnum: 0, connid: 0 98 13:11:24,1162996 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56160 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41053458, endtime: 41053680, seqnum: 0, connid: 0 98 13:11:24,1163065 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56160 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41053459, endtime: 41053680, seqnum: 0, connid: 0 98 13:11:24,1163126 MCLauncher.exe 6080 TCP Send WIN-0UOTFKKVN1S:56160 -> 54.36.38.171:25565 SUCCESS Length: 5120, startime: 41053461, endtime: 41053680, seqnum: 0, connid: 0 98 13:11:24,3145545 MCLauncher.exe 6080 TCP Reconnect WIN-0UOTFKKVN1S:56171 -> ip188.ip-188-165-24.eu:25565 SUCCESS Length: 0, seqnum: 0, connid: 0